go-nostr/nip46/client.go

package nip46

import (
	"context"
	"encoding/json"
	"fmt"
	"math/rand"
	"net/url"
	"strconv"
	"sync/atomic"

	"github.com/mailru/easyjson"
	"github.com/nbd-wtf/go-nostr"
	"github.com/nbd-wtf/go-nostr/nip04"
	"github.com/puzpuzpuz/xsync/v3"
)

type BunkerClient struct {
	serial          atomic.Uint64
	clientSecretKey string
	pool            *nostr.SimplePool
	target          string
	relays          []string
	sharedSecret    []byte
	listeners       *xsync.MapOf[string, chan Response]
	expectingAuth   *xsync.MapOf[string, struct{}]
	idPrefix        string
	onAuth          func(string)

	// memoized
	getPublicKeyResponse string
}

// ConnectBunker establishes an RPC connection to a NIP-46 signer using the relays and secret provided in the bunkerURL.
// pool can be passed to reuse an existing pool, otherwise a new pool will be created.
func ConnectBunker(
	ctx context.Context,
	clientSecretKey string,
	bunkerURLOrNIP05 string,
	pool *nostr.SimplePool,
	onAuth func(string),
) (*BunkerClient, error) {
	parsed, err := url.Parse(bunkerURLOrNIP05)
	if err != nil {
		return nil, fmt.Errorf("invalid url: %w", err)
	}

	// assume it's a bunker url (will fail later if not)
	secret := parsed.Query().Get("secret")
	relays := parsed.Query()["relay"]
	targetPublicKey := parsed.Host

	if parsed.Scheme == "" {
		// could be a NIP-05
		pubkey, relays_, err := queryWellKnownNostrJson(ctx, bunkerURLOrNIP05)
		if err != nil {
			return nil, fmt.Errorf("failed to query nip05: %w", err)
		}
		targetPublicKey = pubkey
		relays = relays_
	} else if parsed.Scheme == "bunker" {
		// this is what we were expecting, so just move on
	} else {
		// otherwise fail here
		return nil, fmt.Errorf("wrong scheme '%s', must be bunker://", parsed.Scheme)
	}
	if !nostr.IsValidPublicKey(targetPublicKey) {
		return nil, fmt.Errorf("'%s' is not a valid public key hex", targetPublicKey)
	}

	bunker := NewBunker(
		ctx,
		clientSecretKey,
		targetPublicKey,
		relays,
		pool,
		onAuth,
	)

	_, err = bunker.RPC(ctx, "connect", []string{targetPublicKey, secret})
	return bunker, err
}

func NewBunker(
	ctx context.Context,
	clientSecretKey string,
	targetPublicKey string,
	relays []string,
	pool *nostr.SimplePool,
	onAuth func(string),
) *BunkerClient {
	if pool == nil {
		pool = nostr.NewSimplePool(ctx)
	}

	clientPublicKey, _ := nostr.GetPublicKey(clientSecretKey)
	sharedSecret, _ := nip04.ComputeSharedSecret(targetPublicKey, clientSecretKey)

	bunker := &BunkerClient{
		pool:            pool,
		clientSecretKey: clientSecretKey,
		target:          targetPublicKey,
		relays:          relays,
		sharedSecret:    sharedSecret,
		listeners:       xsync.NewMapOf[string, chan Response](),
		expectingAuth:   xsync.NewMapOf[string, struct{}](),
		onAuth:          onAuth,
		idPrefix:        "gn-" + strconv.Itoa(rand.Intn(65536)),
	}

	go func() {
		now := nostr.Now()
		events := pool.SubMany(ctx, relays, nostr.Filters{
			{
				Tags:      nostr.TagMap{"p": []string{clientPublicKey}},
				Kinds:     []int{nostr.KindNostrConnect},
				Since:     &now,
				LimitZero: true,
			},
		})
		for ie := range events {
			if ie.Kind != nostr.KindNostrConnect {
				continue
			}

			var resp Response
			plain, err := nip04.Decrypt(ie.Content, sharedSecret)
			if err != nil {
				continue
			}

			err = json.Unmarshal([]byte(plain), &resp)
			if err != nil {
				continue
			}

			if resp.Result == "auth_url" {
				// special case
				authURL := resp.Error
				if _, ok := bunker.expectingAuth.Load(resp.ID); ok {
					bunker.onAuth(authURL)
				}
				continue
			}

			if dispatcher, ok := bunker.listeners.Load(resp.ID); ok {
				dispatcher <- resp
			}
		}
	}()

	return bunker
}

func (bunker *BunkerClient) Ping(ctx context.Context) error {
	_, err := bunker.RPC(ctx, "ping", []string{})
	if err != nil {
		return err
	}
	return nil
}

func (bunker *BunkerClient) GetPublicKey(ctx context.Context) (string, error) {
	if bunker.getPublicKeyResponse != "" {
		return bunker.getPublicKeyResponse, nil
	}
	resp, err := bunker.RPC(ctx, "get_public_key", []string{})
	bunker.getPublicKeyResponse = resp
	return resp, err
}

func (bunker *BunkerClient) SignEvent(ctx context.Context, evt *nostr.Event) error {
	resp, err := bunker.RPC(ctx, "sign_event", []string{evt.String()})
	if err == nil {
		err = easyjson.Unmarshal([]byte(resp), evt)
	}
	return err
}

func (bunker *BunkerClient) RPC(ctx context.Context, method string, params []string) (string, error) {
	id := bunker.idPrefix + "-" + strconv.FormatUint(bunker.serial.Add(1), 10)
	req, err := json.Marshal(Request{
		ID:     id,
		Method: method,
		Params: params,
	})
	if err != nil {
		return "", err
	}

	content, err := nip04.Encrypt(string(req), bunker.sharedSecret)
	if err != nil {
		return "", fmt.Errorf("error encrypting request: %w", err)
	}

	evt := nostr.Event{
		Content:   content,
		CreatedAt: nostr.Now(),
		Kind:      nostr.KindNostrConnect,
		Tags:      nostr.Tags{{"p", bunker.target}},
	}
	if err := evt.Sign(bunker.clientSecretKey); err != nil {
		return "", fmt.Errorf("failed to sign request event: %w", err)
	}

	respWaiter := make(chan Response)
	bunker.listeners.Store(id, respWaiter)
	hasWorked := false

	for _, r := range bunker.relays {
		relay, err := bunker.pool.EnsureRelay(r)
		if err == nil {
			hasWorked = true
		}
		relay.Publish(ctx, evt)
	}

	if !hasWorked {
		return "", fmt.Errorf("couldn't connect to any relay")
	}

	resp := <-respWaiter
	if resp.Error != "" {
		return "", fmt.Errorf("response error: %s", resp.Error)
	}

	return resp.Result, nil
}
nip46: client. 2024-02-06 00:45:36 -03:00			`package nip46`

			`import (`
			`"context"`
			`"encoding/json"`
			`"fmt"`
nip46: add a random element to id generation. 2024-02-11 11:07:01 -03:00			`"math/rand"`
nip46: client. 2024-02-06 00:45:36 -03:00			`"net/url"`
			`"strconv"`
			`"sync/atomic"`

			`"github.com/mailru/easyjson"`
			`"github.com/nbd-wtf/go-nostr"`
			`"github.com/nbd-wtf/go-nostr/nip04"`
			`"github.com/puzpuzpuz/xsync/v3"`
			`)`

			`type BunkerClient struct {`
			`serial atomic.Uint64`
			`clientSecretKey string`
			`pool *nostr.SimplePool`
			`target string`
			`relays []string`
			`sharedSecret []byte`
			`listeners *xsync.MapOf[string, chan Response]`
nip46: auth_url support. 2024-02-29 20:37:16 -03:00			`expectingAuth *xsync.MapOf[string, struct{}]`
nip46: add a random element to id generation. 2024-02-11 11:07:01 -03:00			`idPrefix string`
nip46: auth_url support. 2024-02-29 20:37:16 -03:00			`onAuth func(string)`
nip46: client. 2024-02-06 00:45:36 -03:00
			`// memoized`
			`getPublicKeyResponse string`
			`}`

			`// ConnectBunker establishes an RPC connection to a NIP-46 signer using the relays and secret provided in the bunkerURL.`
			`// pool can be passed to reuse an existing pool, otherwise a new pool will be created.`
			`func ConnectBunker(`
			`ctx context.Context,`
			`clientSecretKey string,`
nip46: support nip05 identifier in client. 2024-02-29 16:28:46 -03:00			`bunkerURLOrNIP05 string,`
nip46: client. 2024-02-06 00:45:36 -03:00			`pool *nostr.SimplePool,`
nip46: auth_url support. 2024-02-29 20:37:16 -03:00			`onAuth func(string),`
nip46: client. 2024-02-06 00:45:36 -03:00			`) (*BunkerClient, error) {`
nip46: support nip05 identifier in client. 2024-02-29 16:28:46 -03:00			`parsed, err := url.Parse(bunkerURLOrNIP05)`
nip46: client. 2024-02-06 00:45:36 -03:00			`if err != nil {`
			`return nil, fmt.Errorf("invalid url: %w", err)`
			`}`

nip46: support nip05 identifier in client. 2024-02-29 16:28:46 -03:00			`// assume it's a bunker url (will fail later if not)`
			`secret := parsed.Query().Get("secret")`
			`relays := parsed.Query()["relay"]`
nip46: create_account 2024-02-29 20:29:08 -03:00			`targetPublicKey := parsed.Host`
nip46: support nip05 identifier in client. 2024-02-29 16:28:46 -03:00
			`if parsed.Scheme == "" {`
			`// could be a NIP-05`
			`pubkey, relays_, err := queryWellKnownNostrJson(ctx, bunkerURLOrNIP05)`
			`if err != nil {`
			`return nil, fmt.Errorf("failed to query nip05: %w", err)`
			`}`
nip46: create_account 2024-02-29 20:29:08 -03:00			`targetPublicKey = pubkey`
nip46: support nip05 identifier in client. 2024-02-29 16:28:46 -03:00			`relays = relays_`
			`} else if parsed.Scheme == "bunker" {`
			`// this is what we were expecting, so just move on`
			`} else {`
			`// otherwise fail here`
nip46: client. 2024-02-06 00:45:36 -03:00			`return nil, fmt.Errorf("wrong scheme '%s', must be bunker://", parsed.Scheme)`
			`}`
nip46: create_account 2024-02-29 20:29:08 -03:00			`if !nostr.IsValidPublicKey(targetPublicKey) {`
			`return nil, fmt.Errorf("'%s' is not a valid public key hex", targetPublicKey)`
nip46: client. 2024-02-06 00:45:36 -03:00			`}`

nip46: create_account 2024-02-29 20:29:08 -03:00			`bunker := NewBunker(`
			`ctx,`
			`clientSecretKey,`
			`targetPublicKey,`
			`relays,`
			`pool,`
nip46: auth_url support. 2024-02-29 20:37:16 -03:00			`onAuth,`
nip46: create_account 2024-02-29 20:29:08 -03:00			`)`

nip46: fix pubkey passed to "connect". 2024-03-04 09:30:45 -03:00			`_, err = bunker.RPC(ctx, "connect", []string{targetPublicKey, secret})`
nip46: create_account 2024-02-29 20:29:08 -03:00			`return bunker, err`
			`}`

			`func NewBunker(`
			`ctx context.Context,`
			`clientSecretKey string,`
			`targetPublicKey string,`
			`relays []string,`
			`pool *nostr.SimplePool,`
nip46: auth_url support. 2024-02-29 20:37:16 -03:00			`onAuth func(string),`
nip46: create_account 2024-02-29 20:29:08 -03:00			`) *BunkerClient {`
nip46: client. 2024-02-06 00:45:36 -03:00			`if pool == nil {`
			`pool = nostr.NewSimplePool(ctx)`
			`}`

nip46: create_account 2024-02-29 20:29:08 -03:00			`clientPublicKey, _ := nostr.GetPublicKey(clientSecretKey)`
			`sharedSecret, _ := nip04.ComputeSharedSecret(targetPublicKey, clientSecretKey)`
nip46: client. 2024-02-06 00:45:36 -03:00
			`bunker := &BunkerClient{`
nip46: fix assigning client secret key to struct. 2024-03-02 07:48:41 -03:00			`pool: pool,`
			`clientSecretKey: clientSecretKey,`
			`target: targetPublicKey,`
			`relays: relays,`
			`sharedSecret: sharedSecret,`
			`listeners: xsync.NewMapOf[string, chan Response](),`
			`expectingAuth: xsync.NewMapOf[string, struct{}](),`
			`onAuth: onAuth,`
			`idPrefix: "gn-" + strconv.Itoa(rand.Intn(65536)),`
nip46: client. 2024-02-06 00:45:36 -03:00			`}`

			`go func() {`
nip46: client small tweaks. 2024-04-25 18:25:35 -03:00			`now := nostr.Now()`
nip46: client. 2024-02-06 00:45:36 -03:00			`events := pool.SubMany(ctx, relays, nostr.Filters{`
			`{`
nip46: client sends limit: 0 2024-05-15 16:59:38 -03:00			`Tags: nostr.TagMap{"p": []string{clientPublicKey}},`
			`Kinds: []int{nostr.KindNostrConnect},`
			`Since: &now,`
			`LimitZero: true,`
nip46: client. 2024-02-06 00:45:36 -03:00			`},`
			`})`
			`for ie := range events {`
			`if ie.Kind != nostr.KindNostrConnect {`
			`continue`
			`}`

			`var resp Response`
nip46: create_account 2024-02-29 20:29:08 -03:00			`plain, err := nip04.Decrypt(ie.Content, sharedSecret)`
nip46: client. 2024-02-06 00:45:36 -03:00			`if err != nil {`
			`continue`
			`}`

			`err = json.Unmarshal([]byte(plain), &resp)`
			`if err != nil {`
			`continue`
			`}`

nip46: auth_url support. 2024-02-29 20:37:16 -03:00			`if resp.Result == "auth_url" {`
			`// special case`
			`authURL := resp.Error`
			`if _, ok := bunker.expectingAuth.Load(resp.ID); ok {`
			`bunker.onAuth(authURL)`
			`}`
			`continue`
			`}`

nip46: client. 2024-02-06 00:45:36 -03:00			`if dispatcher, ok := bunker.listeners.Load(resp.ID); ok {`
			`dispatcher <- resp`
			`}`
			`}`
			`}()`

nip46: create_account 2024-02-29 20:29:08 -03:00			`return bunker`
nip46: client. 2024-02-06 00:45:36 -03:00			`}`

			`func (bunker *BunkerClient) Ping(ctx context.Context) error {`
			`_, err := bunker.RPC(ctx, "ping", []string{})`
			`if err != nil {`
			`return err`
			`}`
			`return nil`
			`}`

			`func (bunker *BunkerClient) GetPublicKey(ctx context.Context) (string, error) {`
			`if bunker.getPublicKeyResponse != "" {`
			`return bunker.getPublicKeyResponse, nil`
			`}`
			`resp, err := bunker.RPC(ctx, "get_public_key", []string{})`
			`bunker.getPublicKeyResponse = resp`
			`return resp, err`
			`}`

			`func (bunker BunkerClient) SignEvent(ctx context.Context, evt nostr.Event) error {`
			`resp, err := bunker.RPC(ctx, "sign_event", []string{evt.String()})`
			`if err == nil {`
			`err = easyjson.Unmarshal([]byte(resp), evt)`
			`}`
			`return err`
			`}`

			`func (bunker *BunkerClient) RPC(ctx context.Context, method string, params []string) (string, error) {`
nip46: add a random element to id generation. 2024-02-11 11:07:01 -03:00			`id := bunker.idPrefix + "-" + strconv.FormatUint(bunker.serial.Add(1), 10)`
nip46: client. 2024-02-06 00:45:36 -03:00			`req, err := json.Marshal(Request{`
			`ID: id,`
			`Method: method,`
			`Params: params,`
			`})`
			`if err != nil {`
			`return "", err`
			`}`

			`content, err := nip04.Encrypt(string(req), bunker.sharedSecret)`
			`if err != nil {`
			`return "", fmt.Errorf("error encrypting request: %w", err)`
			`}`

			`evt := nostr.Event{`
			`Content: content,`
			`CreatedAt: nostr.Now(),`
			`Kind: nostr.KindNostrConnect,`
			`Tags: nostr.Tags{{"p", bunker.target}},`
			`}`
			`if err := evt.Sign(bunker.clientSecretKey); err != nil {`
			`return "", fmt.Errorf("failed to sign request event: %w", err)`
			`}`

			`respWaiter := make(chan Response)`
			`bunker.listeners.Store(id, respWaiter)`
			`hasWorked := false`
nip46: client small tweaks. 2024-04-25 18:25:35 -03:00
nip46: client. 2024-02-06 00:45:36 -03:00			`for _, r := range bunker.relays {`
			`relay, err := bunker.pool.EnsureRelay(r)`
			`if err == nil {`
			`hasWorked = true`
			`}`
			`relay.Publish(ctx, evt)`
			`}`
nip46: client small tweaks. 2024-04-25 18:25:35 -03:00
nip46: client. 2024-02-06 00:45:36 -03:00			`if !hasWorked {`
			`return "", fmt.Errorf("couldn't connect to any relay")`
			`}`

			`resp := <-respWaiter`
			`if resp.Error != "" {`
			`return "", fmt.Errorf("response error: %s", resp.Error)`
			`}`

			`return resp.Result, nil`
			`}`