bostr/auth.js

"use strict";
const { validateEvent, verifyEvent } = require("nostr-tools");
const { authorized_keys, private_keys } = require(process.env.BOSTR_CONFIG_PATH || "./config");

module.exports = (authKey, data, ws, req) => {
  if (!validateEvent(data) || !verifyEvent(data)) {
    ws.send(JSON.stringify(["NOTICE", "error: invalid challenge response."]));
    return false;
  }

  if ((authorized_keys?.length || Object.keys(private_keys).length) && !authorized_keys?.includes(data.pubkey) && !(private_keys && private_keys[data.pubkey])) {
    ws.send(JSON.stringify(["OK", data.id, false, "unauthorized."]));
    return false;
  }

  if (data.kind != 22242) {
    ws.send(JSON.stringify(["OK", data.id, false, "not kind 22242."]));
    return false;
  }

  const tags = new Map(data.tags);

  if (!tags.get("relay").includes(req.headers.host)) {
    ws.send(JSON.stringify(["OK", data.id, false, "unmatched relay url."]));
    return false;
  };

  if (tags.get("challenge") !== authKey) {
    ws.send(JSON.stringify(["OK", data.id, false, "unmatched challenge string."]));
    return false;
  }

  ws.send(JSON.stringify(["OK", data.id, true, `Hello ${data.pubkey}`]));
  return true;
}
code: apply use strict in js codes Signed-off-by: Yonle <yonle@lecturify.net> 2024-02-22 17:08:09 +07:00			`"use strict";`
auth: fix bug on using event validation Signed-off-by: Yonle <yonle@lecturify.net> 2024-02-18 12:56:00 +07:00			`const { validateEvent, verifyEvent } = require("nostr-tools");`
cli: fix error due to non-updated auth.js Signed-off-by: Yonle <yonle@lecturify.net> 2024-02-19 19:38:31 +07:00			`const { authorized_keys, private_keys } = require(process.env.BOSTR_CONFIG_PATH \|\| "./config");`
introduce nip42 and public/personal usage Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-16 21:53:58 +07:00
enable nip42 function for public bouncer. Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-20 21:21:22 +07:00			`module.exports = (authKey, data, ws, req) => {`
auth: fix bug on using event validation Signed-off-by: Yonle <yonle@lecturify.net> 2024-02-18 12:56:00 +07:00			`if (!validateEvent(data) \|\| !verifyEvent(data)) {`
introduce nip42 and public/personal usage Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-16 21:53:58 +07:00			`ws.send(JSON.stringify(["NOTICE", "error: invalid challenge response."]));`
			`return false;`
			`}`

bouncer: if nobot is being set, don't perform request for bot/scraper/crawler/similiar. Signed-off-by: Yonle <yonle@lecturify.net> 2024-03-27 23:15:16 +07:00			`if ((authorized_keys?.length \|\| Object.keys(private_keys).length) && !authorized_keys?.includes(data.pubkey) && !(private_keys && private_keys[data.pubkey])) {`
introduce nip42 and public/personal usage Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-16 21:53:58 +07:00			`ws.send(JSON.stringify(["OK", data.id, false, "unauthorized."]));`
			`return false;`
			`}`

			`if (data.kind != 22242) {`
			`ws.send(JSON.stringify(["OK", data.id, false, "not kind 22242."]));`
			`return false;`
			`}`

			`const tags = new Map(data.tags);`
code: renaming & reworking as per nostr-tools Signed-off-by: Yonle <yonle@lecturify.net> 2024-02-17 19:35:33 +07:00
introduce nip42 and public/personal usage Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-16 21:53:58 +07:00			`if (!tags.get("relay").includes(req.headers.host)) {`
			`ws.send(JSON.stringify(["OK", data.id, false, "unmatched relay url."]));`
			`return false;`
			`};`

			`if (tags.get("challenge") !== authKey) {`
			`ws.send(JSON.stringify(["OK", data.id, false, "unmatched challenge string."]));`
			`return false;`
			`}`

enable nip42 function for public bouncer. Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-20 21:21:22 +07:00			ws.send(JSON.stringify(["OK", data.id, true, `Hello ${data.pubkey}`]));
introduce nip42 and public/personal usage Signed-off-by: Yonle <yonle@lecturify.net> 2023-11-16 21:53:58 +07:00			`return true;`
			`}`