npm - w3pk - Versions diffs - 0.1.0 → 0.3.0 - Mend

w3pk 0.1.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/README.md CHANGED Viewed

@@ -2,174 +2,83 @@
 WebAuthn SDK for passwordless authentication with client-side encrypted Ethereum wallets.
----
 ## Install
 ```bash
 npm install w3pk
-# or
-pnpm add w3pk
-# or
-yarn add w3pk
 ```
----
-## Integration
-### Basic Setup
+## Quick Start
 ```typescript
 import { createWeb3Passkey } from 'w3pk'
+import { startRegistration, startAuthentication } from '@simplewebauthn/browser'
 const w3pk = createWeb3Passkey({
   apiBaseUrl: 'https://webauthn.w3hc.org'
 })
-```
-### Configuration Options
+// Generate wallet
+const wallet = await w3pk.generateWallet()
+console.log('Backup this mnemonic:', wallet.mnemonic)
-```typescript
-const w3pk = createWeb3Passkey({
-  apiBaseUrl: string,                                      // Required: Backend API URL
-  timeout?: number,                                        // Optional: Request timeout (default: 30000ms)
-  debug?: boolean,                                         // Optional: Enable debug logs (default: false)
-  onError?: (error) => void,                              // Optional: Global error handler
-  onAuthStateChanged?: (isAuth, user?) => void            // Optional: Auth state callback
+// Register
+const beginRes = await fetch('https://webauthn.w3hc.org/webauthn/register/begin', {
+  method: 'POST',
+  headers: { 'Content-Type': 'application/json' },
+  body: JSON.stringify({ username: 'alice', ethereumAddress: wallet.address })
 })
-```
+const { data } = await beginRes.json()
+const credential = await startRegistration(data.options)
-### Complete Integration Example
+await w3pk.register({
+  username: 'alice',
+  ethereumAddress: wallet.address,
+  mnemonic: wallet.mnemonic,
+  credentialId: credential.id,
+  challenge: data.options.challenge
+})
-```typescript
-import { createWeb3Passkey } from 'w3pk'
-import { startRegistration, startAuthentication } from '@simplewebauthn/browser'
+// Login
+const result = await w3pk.login()
+console.log('Logged in:', result.user?.username)
-// Initialize SDK
-const w3pk = createWeb3Passkey({
-  apiBaseUrl: 'https://webauthn.w3hc.org',
-  debug: true,
-  onAuthStateChanged: (isAuthenticated, user) => {
-    console.log('Auth state:', isAuthenticated, user?.username)
-  },
-  onError: (error) => {
-    console.error('SDK Error:', error.message)
-  }
+// Sign message
+const authBeginRes = await fetch('https://webauthn.w3hc.org/webauthn/authenticate/usernameless/begin', {
+  method: 'POST'
 })
+const authData = await authBeginRes.json()
+const authCredential = await startAuthentication(authData.data.options)
-// 1. Registration Flow
-async function registerUser(username: string) {
-  try {
-    // Generate BIP39 wallet
-    const wallet = await w3pk.generateWallet()
-    // IMPORTANT: Show mnemonic to user for backup
-    alert(`⚠️ BACKUP THIS MNEMONIC:\n\n${wallet.mnemonic}\n\nYou will need it to recover your wallet!`)
-    // Get registration options from backend
-    const beginResponse = await fetch('https://webauthn.w3hc.org/webauthn/register/begin', {
-      method: 'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body: JSON.stringify({
-        username,
-        ethereumAddress: wallet.address
-      })
-    })
-    const { data } = await beginResponse.json()
-    // Create WebAuthn credential (triggers biometric prompt)
-    const credential = await startRegistration(data.options)
-    // Register with w3pk SDK
-    await w3pk.register({
-      username,
-      ethereumAddress: wallet.address,
-      mnemonic: wallet.mnemonic,
-      credentialId: credential.id,
-      challenge: data.options.challenge
-    })
-    console.log('✅ Registration successful!')
-    console.log('Address:', wallet.address)
-  } catch (error) {
-    console.error('Registration failed:', error)
-  }
-}
-// 2. Login Flow (Usernameless)
-async function login() {
-  try {
-    const result = await w3pk.authenticateUsernameless()
-    if (result.verified && result.user) {
-      console.log('✅ Logged in as:', result.user.username)
-      console.log('Address:', result.user.ethereumAddress)
-    }
-  } catch (error) {
-    console.error('Login failed:', error)
-  }
-}
-// 3. Message Signing Flow
-async function signMessage(message: string) {
-  try {
-    // Get fresh authentication challenge
-    const beginResponse = await fetch('https://webauthn.w3hc.org/webauthn/authenticate/usernameless/begin', {
-      method: 'POST'
-    })
-    const { data } = await beginResponse.json()
-    // Authenticate user (triggers biometric prompt)
-    const credential = await startAuthentication(data.options)
-    // Sign message with encrypted wallet
-    const signature = await w3pk.signMessage(
-      message,
-      credential.id,
-      data.options.challenge
-    )
-    console.log('✅ Message signed!')
-    console.log('Signature:', signature)
-    return signature
-  } catch (error) {
-    console.error('Signing failed:', error)
-  }
-}
-// 4. Logout
-function logout() {
-  w3pk.logout()
-  console.log('✅ Logged out')
-}
-// Usage
-await registerUser('alice')
-await login()
-await signMessage('Hello, Web3!')
-logout()
+const signature = await w3pk.signMessage(
+  'Hello, Web3!',
+  authCredential.id,
+  authData.data.options.challenge
+)
 ```
-### API Reference
+## API
-#### Wallet Methods
+### Configuration
 ```typescript
-// Generate new BIP39 wallet (12-word mnemonic)
-const wallet = await w3pk.generateWallet()
-// Returns: { address: string, mnemonic: string }
-// Check if wallet exists for current user (browser only)
-const hasWallet = await w3pk.hasWallet()
-// Returns: boolean
+createWeb3Passkey({
+  apiBaseUrl: string,              // Required: Backend URL
+  timeout?: number,                // Optional: Request timeout (default: 30000ms)
+  debug?: boolean,                 // Optional: Enable logs (default: false)
+  onError?: (error) => void,       // Optional: Error handler
+  onAuthStateChanged?: (isAuth, user?) => void  // Optional: Auth callback
+})
 ```
-#### Authentication Methods
+### Methods
 ```typescript
-// Register new user (browser only)
+// Generate BIP39 wallet (12-word mnemonic)
+await w3pk.generateWallet()
+// Returns: { address: string, mnemonic: string }
+// Register new user
 await w3pk.register({
   username: string,
   ethereumAddress: string,
@@ -178,42 +87,37 @@ await w3pk.register({
   challenge: string
 })
-// Login without username (browser only)
-const result = await w3pk.authenticateUsernameless()
+// Login (usernameless)
+await w3pk.login()
 // Returns: { verified: boolean, user?: { id, username, ethereumAddress } }
-// Login with specific address (browser only)
-const result = await w3pk.authenticate(ethereumAddress: string)
-// Returns: { verified: boolean, user?: { id, username, ethereumAddress } }
+// Authenticate with address
+await w3pk.authenticate(ethereumAddress: string)
-// Logout current user
-w3pk.logout()
-```
+// Sign message (requires fresh auth)
+await w3pk.signMessage(message: string, credentialId: string, challenge: string)
+// Returns: string (signature)
-#### Message Signing
+// Logout
+w3pk.logout()
-```typescript
-// Sign message with encrypted wallet (browser only, requires fresh auth)
-const signature = await w3pk.signMessage(
-  message: string,
-  credentialId: string,
-  challenge: string
-)
-// Returns: string (Ethereum signature)
+// Check wallet exists
+await w3pk.hasWallet()
+// Returns: boolean
 ```
-#### Properties
+### Properties
 ```typescript
-w3pk.isAuthenticated        // boolean - Current auth state
-w3pk.user                   // UserInfo | null - Current user info
-w3pk.version                // string - SDK version
-w3pk.isBrowserEnvironment   // boolean - Check if running in browser
+w3pk.isAuthenticated        // boolean
+w3pk.user                   // UserInfo | null
+w3pk.version                // string
+w3pk.isBrowserEnvironment   // boolean
 ```
-### Backend Integration
+## Backend
-This SDK requires a WebAuthn backend API. Use [nestjs-webauthn](https://github.com/w3hc/nestjs-webauthn):
+Requires [nestjs-webauthn](https://github.com/w3hc/nestjs-webauthn):
 ```bash
 git clone https://github.com/w3hc/nestjs-webauthn
@@ -222,240 +126,33 @@ pnpm install
 pnpm start:dev
 ```
-Configure your backend URL in the SDK:
-```typescript
-const w3pk = createWeb3Passkey({
-  apiBaseUrl: 'http://localhost:3000'  // Your backend URL
-})
-```
-### Environment Support
-| Feature | Node.js | Browser |
-|---------|---------|---------|
-| Wallet Generation | ✅ | ✅ |
-| WebAuthn Registration | ❌ | ✅ |
-| WebAuthn Authentication | ❌ | ✅ |
-| Message Signing | ❌ | ✅ |
-| Encrypted Storage | ❌ | ✅ |
-The SDK gracefully handles non-browser environments and will show appropriate warnings.
-### Security Notes
-⚠️ **Critical Security Information:**
-- **Mnemonics are encrypted client-side** using keys derived from WebAuthn credentials
-- **Private keys never leave the browser** - all cryptographic operations happen locally
-- **Users MUST backup their 12-word mnemonic** during registration
-- **No mnemonic backup = no wallet recovery** - if the device is lost, the wallet is lost
-- **Each device stores its own encrypted wallet** in IndexedDB
-- **Message signing requires fresh WebAuthn authentication** for security
-### Browser Support
-- Chrome 67+ (all platforms)
-- Firefox 60+ (all platforms)
-- Safari 14+ (macOS, iOS)
-- Edge 18+ (Windows)
-WebAuthn/FIDO2 compatible authenticators required (biometrics, security keys, etc.)
----
-## Contribute
-### Prerequisites
-```bash
-pnpm install
-```
-### Development
+## Security
-```bash
-# Watch mode (rebuilds on changes)
-pnpm dev
+- ✅ Client-side AES-GCM-256 encryption
+- ✅ PBKDF2 key derivation from WebAuthn credentials
+- ✅ Private keys never leave the browser
+- ✅ IndexedDB encrypted storage per device
+- ⚠️ Users MUST backup their 12-word mnemonic
-# Build for production
-pnpm build
-```
-### Testing
-#### Node.js Tests (Wallet Generation)
-Run the Node.js test to verify wallet generation works:
+## Testing
 ```bash
+# Node.js test (wallet generation)
 pnpm test
-```
-**Expected output:**
-```
-w3pk: Running in non-browser environment, some features disabled
-SDK initialized successfully
-Is authenticated: false
-Current user: null
-SDK version: 0.1.0
-Wallet generated: 0x304d39f46FbD7464Fa799034629bD93091ACe0EA
-Wallet generated:
-  Address: 0x304d39f46FbD7464Fa799034629bD93091ACe0EA
-  Mnemonic: tortoise barrel margin object loyal cart mechanic suffer scorpion athlete tide city
-```
-#### Browser Tests (Full Features)
-Test all features including WebAuthn authentication and message signing:
-1. **Start your backend:**
-   ```bash
-   cd nestjs-webauthn
-   pnpm start:dev
-   ```
-2. **Serve the test files:**
-   ```bash
-   pnpm test:browser
-   ```
-3. **Open in browser:**
-   ```
-   http://localhost:3000/test/browser-test.html
-   ```
-4. **Test the features:**
-   - Click "Generate Wallet" - Creates a new BIP39 wallet
-   - Click "Register" - Creates WebAuthn credential and encrypts mnemonic
-   - Click "Login (Usernameless)" - Authenticates with biometric/passkey
-   - Click "Logout" - Clears authentication state
-**Browser test features:**
-- ✅ Real WebAuthn credential creation
-- ✅ Biometric authentication prompts
-- ✅ Wallet encryption/decryption
-- ✅ IndexedDB storage
-- ✅ Message signing with encrypted keys
-### Project Structure
-```
-w3pk/
-├── src/
-│   ├── auth/              # WebAuthn authentication flows
-│   │   ├── authenticate.ts
-│   │   ├── register.ts
-│   │   ├── types.ts
-│   │   └── usernameless.ts
-│   ├── core/              # SDK core
-│   │   ├── config.ts
-│   │   ├── errors.ts
-│   │   └── sdk.ts
-│   ├── wallet/            # Wallet & crypto
-│   │   ├── crypto.ts      # AES-GCM encryption
-│   │   ├── generate.ts    # BIP39 generation
-│   │   ├── signing.ts     # Message signing
-│   │   ├── storage.ts     # IndexedDB
-│   │   └── types.ts
-│   ├── utils/             # Utilities
-│   │   ├── api.ts         # API client
-│   │   └── validation.ts  # Input validation
-│   ├── types/             # Shared types
-│   │   └── index.ts
-│   └── index.ts           # Main export
-├── test/
-│   ├── test.ts            # Node.js tests
-│   └── browser-test.html  # Browser tests
-├── dist/                  # Built files
-├── package.json
-├── tsconfig.json
-└── tsup.config.ts
-```
-### Making Changes
-1. **Fork the repository**
-2. **Create a feature branch:**
-   ```bash
-   git checkout -b feature/my-feature
-   ```
-3. **Make your changes in `src/`**
-4. **Test your changes:**
-   ```bash
-   pnpm build
-   pnpm test
-   pnpm test:browser
-   ```
-5. **Commit and push:**
-   ```bash
-   git add .
-   git commit -m "feat: add my feature"
-   git push origin feature/my-feature
-   ```
-6. **Open a Pull Request**
-### Publishing
-```bash
-# Bump version
-npm version patch|minor|major
-# Build and publish
+# Build
 pnpm build
-npm publish
-```
-### Code Style
-- **TypeScript** with strict mode
-- **ESM + CommonJS** dual package
-- **Functional** where possible
-- **Clear error messages** for debugging
-- **JSDoc comments** for public APIs
----
-## Features
-- 🔐 **Passwordless Authentication** - WebAuthn/FIDO2 biometric login
-- 💼 **BIP39 HD Wallets** - Standard 12-word mnemonics, BIP44 derivation (m/44'/60'/0'/0/0)
-- 🔒 **Client-Side Encryption** - AES-GCM-256 with PBKDF2 key derivation
-- 💾 **IndexedDB Storage** - Encrypted wallets stored locally per device
-- ✍️ **Message Signing** - Ethereum message signing with encrypted keys
-- 🌐 **Zero Server Trust** - Private keys never leave the client
-- 🔄 **Usernameless Auth** - Streamlined authentication flow
----
-## License
-GPL-3.0-or-later
----
-## Links
-- **GitHub:** https://github.com/w3hc/w3pk
-- **Backend API:** https://github.com/w3hc/nestjs-webauthn
-- **Issues:** https://github.com/w3hc/w3pk/issues
-- **NPM:** https://www.npmjs.com/package/w3pk
----
+# Watch mode
+pnpm dev
+```
 ## Support
-Reach out to [Julien Béranger](https://github.com/julienbrg):
+Contact [Julien Béranger](https://github.com/julienbrg):
 - Element: [@julienbrg:matrix.org](https://matrix.to/#/@julienbrg:matrix.org)
 - Farcaster: [julien-](https://warpcast.com/julien-)
 - Telegram: [@julienbrg](https://t.me/julienbrg)
 - Twitter: [@julienbrg](https://twitter.com/julienbrg)
-- Discord: [julienbrg](https://discordapp.com/users/julienbrg)
-- LinkedIn: [julienberanger](https://www.linkedin.com/in/julienberanger/)
-<img src="https://bafkreid5xwxz4bed67bxb2wjmwsec4uhlcjviwy7pkzwoyu5oesjd3sp64.ipfs.w3s.link" alt="built-with-ethereum-w3hc" width="100"/>
+<img src="https://bafkreid5xwxz4bed67bxb2wjmwsec4uhlcjviwy7pkzwoyu5oesjd3sp64.ipfs.w3s.link" alt="built-with-ethereum-w3hc" width="100"/>

package/dist/index.d.mts CHANGED Viewed

@@ -4,6 +4,7 @@
 interface UserInfo {
     id: string;
     username: string;
+    displayName: string;
     ethereumAddress: string;
 }
 interface WalletInfo {
@@ -70,22 +71,13 @@ interface Web3PasskeyConfig {
 }
 /**
- * Authentication-related types
+ * Main Web3Passkey SDK class
  */
 interface AuthResult {
     verified: boolean;
-    user?: {
-        id: string;
-        username: string;
-        ethereumAddress: string;
-    };
+    user?: UserInfo;
 }
-/**
- * Main Web3Passkey SDK class
- */
 declare class Web3Passkey {
     private config;
     private apiClient;
@@ -99,6 +91,7 @@ declare class Web3Passkey {
     private saveAuthState;
     private clearAuthState;
     private notifyAuthStateChange;
+    private createUserInfo;
     /**
      * Generate a new BIP39 wallet
      * @returns Wallet info with mnemonic (user MUST backup)
@@ -110,39 +103,37 @@ declare class Web3Passkey {
     hasWallet(): Promise<boolean>;
     /**
      * Register a new user with WebAuthn
+     * Handles the complete registration flow internally
+     * Automatically generates wallet if not provided
+     *
      * @param username Username for the account
-     * @param ethereumAddress Ethereum address from generated wallet
-     * @param mnemonic BIP39 mnemonic to encrypt and store
-     * @param credentialId WebAuthn credential ID (from registration response)
-     * @param challenge Challenge used in registration
+     * @param ethereumAddress Optional: Ethereum address (will generate if not provided)
+     * @param mnemonic Optional: BIP39 mnemonic (will generate if not provided)
+     * @returns Object containing ethereumAddress and mnemonic (only if generated)
      */
     register(options: {
         username: string;
+        ethereumAddress?: string;
+        mnemonic?: string;
+    }): Promise<{
         ethereumAddress: string;
-        mnemonic: string;
-        credentialId: string;
-        challenge: string;
-    }): Promise<void>;
-    /**
-     * Authenticate with Ethereum address
-     */
-    authenticate(ethereumAddress: string): Promise<AuthResult>;
+        mnemonic?: string;
+    }>;
     /**
      * Authenticate without username (usernameless flow)
      */
-    authenticateUsernameless(): Promise<AuthResult>;
+    login(): Promise<AuthResult>;
     /**
      * Logout current user
      */
     logout(): void;
     /**
      * Sign a message with encrypted wallet
-     * Requires fresh WebAuthn authentication
+     * Handles fresh WebAuthn authentication internally
+     *
      * @param message Message to sign
-     * @param credentialId WebAuthn credential ID (from fresh auth)
-     * @param challenge Challenge from fresh auth
      */
-    signMessage(message: string, credentialId: string, challenge: string): Promise<string>;
+    signMessage(message: string): Promise<string>;
     /**
      * Check if user is authenticated
      */
@@ -168,4 +159,4 @@ declare class Web3Passkey {
 declare function createWeb3Passkey(config: Web3PasskeyConfig): Web3Passkey;
-export { ApiError, type AuthResult, AuthenticationError, CryptoError, RegistrationError, StorageError, type UserInfo, WalletError, type WalletInfo, Web3Passkey, type Web3PasskeyConfig, Web3PasskeyError, createWeb3Passkey, createWeb3Passkey as default };
+export { ApiError, AuthenticationError, CryptoError, RegistrationError, StorageError, type UserInfo, WalletError, type WalletInfo, Web3Passkey, type Web3PasskeyConfig, Web3PasskeyError, createWeb3Passkey, createWeb3Passkey as default };