hippius 0.2.35__tar.gz → 0.2.37__tar.gz

{hippius-0.2.35 → hippius-0.2.37}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: hippius
-Version: 0.2.35
+Version: 0.2.37
 Summary: Python SDK and CLI for Hippius blockchain storage
 Home-page: https://github.com/thenervelab/hippius-sdk
 Author: Dubs

{hippius-0.2.35 → hippius-0.2.37}/hippius_sdk/__init__.py

@@ -26,7 +26,7 @@ from hippius_sdk.config import (
 from hippius_sdk.ipfs import IPFSClient, S3PublishResult, S3DownloadResult
 from hippius_sdk.utils import format_cid, format_size, hex_to_ipfs_cid
 
-__version__ = "0.2.35"
+__version__ = "0.2.37"
 __all__ = [
     "HippiusClient",
     "IPFSClient",

{hippius-0.2.35 → hippius-0.2.37}/hippius_sdk/client.py

@@ -521,6 +521,7 @@ class HippiusClient:
         encrypt: bool,
         seed_phrase: str,
         subaccount_id: str,
+        bucket_name: str,
         store_node: str = "http://localhost:5001",
         pin_node: str = "https://store.hippius.network",
         substrate_url: str = "wss://rpc.hippius.network",
@@ -536,6 +537,8 @@ class HippiusClient:
             file_path: Path to the file to publish
             encrypt: Whether to encrypt the file before uploading
             seed_phrase: Seed phrase for blockchain transaction signing
+            subaccount_id: The subaccount/account identifier
+            bucket_name: The bucket name for key isolation
             store_node: IPFS node URL for initial upload (default: local node)
             pin_node: IPFS node URL for backup pinning (default: remote service)
             substrate_url: substrate url to use for the storage request.
@@ -554,6 +557,7 @@ class HippiusClient:
             encrypt,
             seed_phrase,
             subaccount_id,
+            bucket_name,
             store_node,
             pin_node,
             substrate_url,
@@ -564,6 +568,7 @@ class HippiusClient:
         cid: str,
         output_path: str,
         subaccount_id: str,
+        bucket_name: str,
         auto_decrypt: bool = True,
         download_node: str = "http://localhost:5001",
     ) -> S3DownloadResult:
@@ -571,16 +576,17 @@ class HippiusClient:
         Download a file from IPFS with automatic decryption.
 
         This method uses the download_node for immediate availability and automatically
-        manages decryption keys per seed phrase:
+        manages decryption keys per account+bucket combination:
         - Downloads the file from the specified download_node (local by default)
-        - If auto_decrypt=True, attempts to decrypt using stored keys for the seed phrase
+        - If auto_decrypt=True, attempts to decrypt using stored keys for the account+bucket
         - Falls back to client encryption key if key storage is not available
         - Returns the file in decrypted form if decryption succeeds
 
         Args:
             cid: Content Identifier (CID) of the file to download
             output_path: Path where the downloaded file will be saved
-            subaccount_id: The subaccount id as api key
+            subaccount_id: The subaccount/account identifier
+            bucket_name: The bucket name for key isolation
             auto_decrypt: Whether to attempt automatic decryption (default: True)
             download_node: IPFS node URL for download (default: local node)
 
@@ -593,5 +599,5 @@ class HippiusClient:
             ValueError: If decryption fails
         """
         return await self.ipfs_client.s3_download(
-            cid, output_path, subaccount_id, auto_decrypt, download_node
+            cid, output_path, subaccount_id, bucket_name, auto_decrypt, download_node
         )

{hippius-0.2.35 → hippius-0.2.37}/hippius_sdk/ipfs.py

@@ -1954,6 +1954,7 @@ class IPFSClient:
         encrypt: bool,
         seed_phrase: str,
         subaccount_id: str,
+        bucket_name: str,
         store_node: str = "http://localhost:5001",
         pin_node: str = "https://store.hippius.network",
         substrate_url: str = "wss://rpc.hippius.network",
@@ -1966,15 +1967,17 @@ class IPFSClient:
         2. Pins to pin_node (remote) for persistence and backup
         3. Publishes to substrate marketplace
 
-        This method automatically manages encryption keys per seed phrase:
-        - If encrypt=True, it will get or generate an encryption key for the seed phrase
+        This method automatically manages encryption keys per account+bucket combination:
+        - If encrypt=True, it will get or generate an encryption key for the account+bucket
         - Keys are stored in PostgreSQL and versioned (never deleted)
-        - Always uses the most recent key for a seed phrase
+        - Always uses the most recent key for an account+bucket combination
 
         Args:
             file_path: Path to the file to publish
             encrypt: Whether to encrypt the file before uploading
             seed_phrase: Seed phrase for blockchain transaction signing
+            subaccount_id: The subaccount/account identifier
+            bucket_name: The bucket name for key isolation
             store_node: IPFS node URL for initial upload (default: local node)
             pin_node: IPFS node URL for backup pinning (default: remote service)
             substrate_url: the substrate url to connect to for the storage request.
@@ -2008,19 +2011,26 @@ class IPFSClient:
                 key_storage_available = False
 
             if key_storage_available:
-                # Try to get existing key for this seed phrase
-                existing_key_b64 = await get_key_for_subaccount(subaccount_id)
+                # Create combined key identifier from account+bucket
+                account_bucket_key = f"{subaccount_id}:{bucket_name}"
+
+                # Try to get existing key for this account+bucket combination
+                existing_key_b64 = await get_key_for_subaccount(account_bucket_key)
 
                 if existing_key_b64:
                     # Use existing key
-                    logger.debug("Using existing encryption key for subaccount")
+                    logger.debug(
+                        "Using existing encryption key for account+bucket combination"
+                    )
                     encryption_key_bytes = base64.b64decode(existing_key_b64)
                     encryption_key_used = existing_key_b64
                 else:
-                    # Generate and store new key for this subaccount
-                    logger.info("Generating new encryption key for subaccount")
+                    # Generate and store new key for this account+bucket combination
+                    logger.info(
+                        "Generating new encryption key for account+bucket combination"
+                    )
                     new_key_b64 = await generate_and_store_key_for_subaccount(
-                        subaccount_id
+                        account_bucket_key
                     )
                     encryption_key_bytes = base64.b64decode(new_key_b64)
                     encryption_key_used = new_key_b64
@@ -2138,6 +2148,7 @@ class IPFSClient:
         cid: str,
         output_path: str,
         subaccount_id: str,
+        bucket_name: str,
         auto_decrypt: bool = True,
         download_node: str = "http://localhost:5001",
     ) -> S3DownloadResult:
@@ -2145,16 +2156,17 @@ class IPFSClient:
         Download a file from IPFS with automatic decryption.
 
         This method uses the download_node for immediate availability and automatically
-        manages decryption keys per seed phrase:
+        manages decryption keys per account+bucket combination:
         - Downloads the file from the specified download_node (local by default)
-        - If auto_decrypt=True, attempts to decrypt using stored keys for the seed phrase
+        - If auto_decrypt=True, attempts to decrypt using stored keys for the account+bucket
         - Falls back to client encryption key if key storage is not available
         - Returns the file in decrypted form if decryption succeeds
 
         Args:
             cid: Content Identifier (CID) of the file to download
             output_path: Path where the downloaded file will be saved
-            subaccount_id: The subaccount id as api key
+            subaccount_id: The subaccount/account identifier
+            bucket_name: The bucket name for key isolation
             auto_decrypt: Whether to attempt automatic decryption (default: True)
             download_node: IPFS node URL for download (default: local node)
 
@@ -2233,13 +2245,18 @@ class IPFSClient:
                 decryption_successful = False
 
                 if key_storage_available:
-                    # Try to get the encryption key for this seed phrase
+                    # Create combined key identifier from account+bucket
+                    account_bucket_key = f"{subaccount_id}:{bucket_name}"
+
+                    # Try to get the encryption key for this account+bucket combination
                     try:
-                        existing_key_b64 = await get_key_for_subaccount(subaccount_id)
+                        existing_key_b64 = await get_key_for_subaccount(
+                            account_bucket_key
+                        )
 
                         if existing_key_b64:
                             logger.debug(
-                                "Found encryption key for subaccount, attempting decryption"
+                                "Found encryption key for account+bucket combination, attempting decryption"
                             )
                             decryption_attempted = True
                             encryption_key_used = existing_key_b64
@@ -2273,7 +2290,9 @@ class IPFSClient:
                                 )
                                 # Continue to try fallback decryption
                         else:
-                            logger.debug("No encryption key found for seed phrase")
+                            logger.debug(
+                                "No encryption key found for account+bucket combination"
+                            )
 
                     except Exception as e:
                         logger.debug(f"Error retrieving key from storage: {e}")

{hippius-0.2.35 → hippius-0.2.37}/hippius_sdk/ipfs_core.py

@@ -65,7 +65,8 @@ class AsyncIPFSClient:
             files = {"file": (filename, file_content, "application/octet-stream")}
             # Explicitly set wrap-with-directory=false to prevent wrapping in directory
             response = await self.client.post(
-                f"{self.api_url}/api/v0/add?wrap-with-directory=false", files=files
+                f"{self.api_url}/api/v0/add?wrap-with-directory=false&cid-version=1",
+                files=files,
             )
             response.raise_for_status()
             return response.json()
@@ -85,7 +86,8 @@ class AsyncIPFSClient:
         files = {"file": (filename, data, "application/octet-stream")}
         # Explicitly set wrap-with-directory=false to prevent wrapping in directory
         response = await self.client.post(
-            f"{self.api_url}/api/v0/add?wrap-with-directory=false", files=files
+            f"{self.api_url}/api/v0/add?wrap-with-directory=false&cid-version=1",
+            files=files,
         )
         response.raise_for_status()
         return response.json()
@@ -346,7 +348,7 @@ class AsyncIPFSClient:
 
         # Make the request with directory flags
         response = await self.client.post(
-            f"{self.api_url}/api/v0/add?recursive=true&wrap-with-directory=true",
+            f"{self.api_url}/api/v0/add?recursive=true&wrap-with-directory=true&cid-version=1",
             files=files,
             timeout=300.0,  # 5 minute timeout for directory uploads
         )

{hippius-0.2.35 → hippius-0.2.37}/pyproject.toml

@@ -1,6 +1,6 @@
 [tool.poetry]
 name = "hippius"
-version = "0.2.35"
+version = "0.2.37"
 description = "Python SDK and CLI for Hippius blockchain storage"
 authors = ["Dubs <dubs@dubs.rs>"]
 readme = "README.md"