go-nostr/nip46/dynamic-signer.go

package nip46

import (
	"context"
	"fmt"
	"slices"
	"sync"

	"github.com/mailru/easyjson"
	"github.com/nbd-wtf/go-nostr"
	"github.com/nbd-wtf/go-nostr/nip04"
	"github.com/nbd-wtf/go-nostr/nip44"
)

var _ Signer = (*DynamicSigner)(nil)

type DynamicSigner struct {
	sessionKeys []string
	sessions    []Session

	sync.Mutex

	getHandlerSecretKey func(handlerPubkey string) (string, error)
	getUserKeyer        func(handlerPubkey string) (nostr.Keyer, error)
	authorizeSigning    func(event nostr.Event, from string, secret string) bool
	authorizeEncryption func(from string, secret string) bool
	onEventSigned       func(event nostr.Event)
	getRelays           func(pubkey string) map[string]RelayReadWrite
}

func NewDynamicSigner(
	// the handler is the keypair we use to communicate with the NIP-46 client, decrypt requests, encrypt responses etc
	getHandlerSecretKey func(handlerPubkey string) (string, error),

	// this should correspond to the actual user on behalf of which we will respond to requests
	getUserKeyer func(handlerPubkey string) (nostr.Keyer, error),

	// this is called on every sign_event call, if it is nil it will be assumed that everything is authorized
	authorizeSigning func(event nostr.Event, from string, secret string) bool,

	// this is called on every encrypt or decrypt calls, if it is nil it will be assumed that everything is authorized
	authorizeEncryption func(from string, secret string) bool,

	// unless it is nil, this is called after every event is signed
	onEventSigned func(event nostr.Event),

	// unless it is nil, the results of this will be used in reply to get_relays
	getRelays func(pubkey string) map[string]RelayReadWrite,
) DynamicSigner {
	return DynamicSigner{
		getHandlerSecretKey: getHandlerSecretKey,
		getUserKeyer:        getUserKeyer,
		authorizeSigning:    authorizeSigning,
		authorizeEncryption: authorizeEncryption,
		onEventSigned:       onEventSigned,
		getRelays:           getRelays,
	}
}

func (p *DynamicSigner) GetSession(clientPubkey string) (Session, bool) {
	idx, exists := slices.BinarySearch(p.sessionKeys, clientPubkey)
	if exists {
		return p.sessions[idx], true
	}
	return Session{}, false
}

func (p *DynamicSigner) setSession(clientPubkey string, session Session) {
	p.Lock()
	defer p.Unlock()

	idx, exists := slices.BinarySearch(p.sessionKeys, clientPubkey)
	if exists {
		return
	}

	// add to pool
	p.sessionKeys = append(p.sessionKeys, "") // bogus append just to increase the capacity
	p.sessions = append(p.sessions, Session{})
	copy(p.sessionKeys[idx+1:], p.sessionKeys[idx:])
	copy(p.sessions[idx+1:], p.sessions[idx:])
	p.sessionKeys[idx] = clientPubkey
	p.sessions[idx] = session
}

func (p *DynamicSigner) HandleRequest(ctx context.Context, event *nostr.Event) (
	req Request,
	resp Response,
	eventResponse nostr.Event,
	err error,
) {
	if event.Kind != nostr.KindNostrConnect {
		return req, resp, eventResponse,
			fmt.Errorf("event kind is %d, but we expected %d", event.Kind, nostr.KindNostrConnect)
	}

	handler := event.Tags.GetFirst([]string{"p", ""})
	if handler == nil || !nostr.IsValid32ByteHex((*handler)[1]) {
		return req, resp, eventResponse, fmt.Errorf("invalid \"p\" tag")
	}

	handlerPubkey := (*handler)[1]
	handlerSecret, err := p.getHandlerSecretKey(handlerPubkey)
	if err != nil {
		return req, resp, eventResponse, fmt.Errorf("no private key for %s: %w", handlerPubkey, err)
	}
	userKeyer, err := p.getUserKeyer(handlerPubkey)
	if err != nil {
		return req, resp, eventResponse, fmt.Errorf("failed to get user keyer for %s: %w", handlerPubkey, err)
	}

	var session Session
	idx, exists := slices.BinarySearch(p.sessionKeys, event.PubKey)
	if exists {
		session = p.sessions[idx]
	} else {
		session = Session{}

		session.SharedKey, err = nip04.ComputeSharedSecret(event.PubKey, handlerSecret)
		if err != nil {
			return req, resp, eventResponse, fmt.Errorf("failed to compute shared secret: %w", err)
		}

		session.ConversationKey, err = nip44.GenerateConversationKey(event.PubKey, handlerSecret)
		if err != nil {
			return req, resp, eventResponse, fmt.Errorf("failed to compute shared secret: %w", err)
		}

		session.PublicKey, err = userKeyer.GetPublicKey(ctx)
		if err != nil {
			return req, resp, eventResponse, fmt.Errorf("failed to get public key: %w", err)
		}

		p.setSession(event.PubKey, session)
	}

	req, err = session.ParseRequest(event)
	if err != nil {
		return req, resp, eventResponse, fmt.Errorf("error parsing request: %w", err)
	}

	var secret string
	var result string
	var resultErr error

	switch req.Method {
	case "connect":
		if len(req.Params) >= 2 {
			secret = req.Params[1]
		}
		result = "ack"
	case "get_public_key":
		result = session.PublicKey
	case "sign_event":
		if len(req.Params) != 1 {
			resultErr = fmt.Errorf("wrong number of arguments to 'sign_event'")
			break
		}
		evt := nostr.Event{}
		err = easyjson.Unmarshal([]byte(req.Params[0]), &evt)
		if err != nil {
			resultErr = fmt.Errorf("failed to decode event/2: %w", err)
			break
		}
		if p.authorizeSigning != nil && !p.authorizeSigning(evt, event.PubKey, secret) {
			resultErr = fmt.Errorf("refusing to sign this event")
			break
		}

		err = userKeyer.SignEvent(ctx, &evt)
		if err != nil {
			resultErr = fmt.Errorf("failed to sign event: %w", err)
			break
		}
		jrevt, _ := easyjson.Marshal(evt)
		result = string(jrevt)
	case "get_relays":
		if p.getRelays == nil {
			jrelays, _ := json.Marshal(p.getRelays(session.PublicKey))
			result = string(jrelays)
		} else {
			result = "{}"
		}
	case "nip44_encrypt":
		if len(req.Params) != 2 {
			resultErr = fmt.Errorf("wrong number of arguments to 'nip04_encrypt'")
			break
		}
		thirdPartyPubkey := req.Params[0]
		if !nostr.IsValidPublicKey(thirdPartyPubkey) {
			resultErr = fmt.Errorf("first argument to 'nip04_encrypt' is not a pubkey string")
			break
		}
		if p.authorizeEncryption != nil && !p.authorizeEncryption(event.PubKey, secret) {
			resultErr = fmt.Errorf("refusing to encrypt")
			break
		}
		plaintext := req.Params[1]

		ciphertext, err := userKeyer.Encrypt(ctx, plaintext, thirdPartyPubkey)
		if err != nil {
			resultErr = fmt.Errorf("failed to encrypt: %w", err)
			break
		}
		result = ciphertext
	case "nip44_decrypt":
		if len(req.Params) != 2 {
			resultErr = fmt.Errorf("wrong number of arguments to 'nip04_decrypt'")
			break
		}
		thirdPartyPubkey := req.Params[0]
		if !nostr.IsValidPublicKey(thirdPartyPubkey) {
			resultErr = fmt.Errorf("first argument to 'nip04_decrypt' is not a pubkey string")
			break
		}
		if p.authorizeEncryption != nil && !p.authorizeEncryption(event.PubKey, secret) {
			resultErr = fmt.Errorf("refusing to decrypt")
			break
		}
		ciphertext := req.Params[1]

		plaintext, err := userKeyer.Decrypt(ctx, ciphertext, thirdPartyPubkey)
		if err != nil {
			resultErr = fmt.Errorf("failed to decrypt: %w", err)
			break
		}
		result = plaintext
	case "ping":
		result = "pong"
	default:
		return req, resp, eventResponse,
			fmt.Errorf("unknown method '%s'", req.Method)
	}

	resp, eventResponse, err = session.MakeResponse(req.ID, event.PubKey, result, resultErr)
	if err != nil {
		return req, resp, eventResponse, err
	}

	err = eventResponse.Sign(handlerSecret)
	if err != nil {
		return req, resp, eventResponse, err
	}

	return req, resp, eventResponse, err
}
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`package nip46`

			`import (`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`"context"`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`"fmt"`
use stdlib "slices". 2024-02-08 16:33:39 -03:00			`"slices"`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`"sync"`
use stdlib "slices". 2024-02-08 16:33:39 -03:00
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`"github.com/mailru/easyjson"`
			`"github.com/nbd-wtf/go-nostr"`
			`"github.com/nbd-wtf/go-nostr/nip04"`
nip46: dynamic signer sessions were missing nip44 conversation key. 2024-10-26 19:26:20 -03:00			`"github.com/nbd-wtf/go-nostr/nip44"`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`)`

nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`var _ Signer = (*DynamicSigner)(nil)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`type DynamicSigner struct {`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`sessionKeys []string`
			`sessions []Session`

nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`sync.Mutex`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`getHandlerSecretKey func(handlerPubkey string) (string, error)`
			`getUserKeyer func(handlerPubkey string) (nostr.Keyer, error)`
nip46: pass secret to authorize functions. 2024-05-15 16:13:12 -03:00			`authorizeSigning func(event nostr.Event, from string, secret string) bool`
			`authorizeEncryption func(from string, secret string) bool`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`onEventSigned func(event nostr.Event)`
			`getRelays func(pubkey string) map[string]RelayReadWrite`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`func NewDynamicSigner(`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`// the handler is the keypair we use to communicate with the NIP-46 client, decrypt requests, encrypt responses etc`
			`getHandlerSecretKey func(handlerPubkey string) (string, error),`

			`// this should correspond to the actual user on behalf of which we will respond to requests`
			`getUserKeyer func(handlerPubkey string) (nostr.Keyer, error),`

			`// this is called on every sign_event call, if it is nil it will be assumed that everything is authorized`
nip46: pass secret to authorize functions. 2024-05-15 16:13:12 -03:00			`authorizeSigning func(event nostr.Event, from string, secret string) bool,`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00
			`// this is called on every encrypt or decrypt calls, if it is nil it will be assumed that everything is authorized`
nip46: pass secret to authorize functions. 2024-05-15 16:13:12 -03:00			`authorizeEncryption func(from string, secret string) bool,`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00
			`// unless it is nil, this is called after every event is signed`
			`onEventSigned func(event nostr.Event),`

			`// unless it is nil, the results of this will be used in reply to get_relays`
			`getRelays func(pubkey string) map[string]RelayReadWrite,`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`) DynamicSigner {`
			`return DynamicSigner{`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`getHandlerSecretKey: getHandlerSecretKey,`
			`getUserKeyer: getUserKeyer,`
nip46: support nip44 in servers. 2024-05-15 16:00:30 -03:00			`authorizeSigning: authorizeSigning,`
			`authorizeEncryption: authorizeEncryption,`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`onEventSigned: onEventSigned,`
			`getRelays: getRelays,`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`}`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`func (p *DynamicSigner) GetSession(clientPubkey string) (Session, bool) {`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`idx, exists := slices.BinarySearch(p.sessionKeys, clientPubkey)`
			`if exists {`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`return p.sessions[idx], true`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`return Session{}, false`
			`}`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`func (p *DynamicSigner) setSession(clientPubkey string, session Session) {`
			`p.Lock()`
			`defer p.Unlock()`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`idx, exists := slices.BinarySearch(p.sessionKeys, clientPubkey)`
			`if exists {`
			`return`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

			`// add to pool`
			`p.sessionKeys = append(p.sessionKeys, "") // bogus append just to increase the capacity`
			`p.sessions = append(p.sessions, Session{})`
			`copy(p.sessionKeys[idx+1:], p.sessionKeys[idx:])`
			`copy(p.sessions[idx+1:], p.sessions[idx:])`
			`p.sessionKeys[idx] = clientPubkey`
			`p.sessions[idx] = session`
			`}`

nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`func (p DynamicSigner) HandleRequest(ctx context.Context, event nostr.Event) (`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`req Request,`
			`resp Response,`
			`eventResponse nostr.Event,`
			`err error,`
			`) {`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if event.Kind != nostr.KindNostrConnect {`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse,`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`fmt.Errorf("event kind is %d, but we expected %d", event.Kind, nostr.KindNostrConnect)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`handler := event.Tags.GetFirst([]string{"p", ""})`
			`if handler == nil \|\| !nostr.IsValid32ByteHex((*handler)[1]) {`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse, fmt.Errorf("invalid \"p\" tag")`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`handlerPubkey := (*handler)[1]`
			`handlerSecret, err := p.getHandlerSecretKey(handlerPubkey)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if err != nil {`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`return req, resp, eventResponse, fmt.Errorf("no private key for %s: %w", handlerPubkey, err)`
			`}`
			`userKeyer, err := p.getUserKeyer(handlerPubkey)`
			`if err != nil {`
			`return req, resp, eventResponse, fmt.Errorf("failed to get user keyer for %s: %w", handlerPubkey, err)`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`}`

			`var session Session`
			`idx, exists := slices.BinarySearch(p.sessionKeys, event.PubKey)`
			`if exists {`
			`session = p.sessions[idx]`
			`} else {`
			`session = Session{}`

nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`session.SharedKey, err = nip04.ComputeSharedSecret(event.PubKey, handlerSecret)`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`if err != nil {`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse, fmt.Errorf("failed to compute shared secret: %w", err)`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`}`
nip46: support decrypting with nip44. 2024-05-20 09:20:39 -03:00
nip46: dynamic signer sessions were missing nip44 conversation key. 2024-10-26 19:26:20 -03:00			`session.ConversationKey, err = nip44.GenerateConversationKey(event.PubKey, handlerSecret)`
			`if err != nil {`
			`return req, resp, eventResponse, fmt.Errorf("failed to compute shared secret: %w", err)`
			`}`

nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`session.PublicKey, err = userKeyer.GetPublicKey(ctx)`
			`if err != nil {`
			`return req, resp, eventResponse, fmt.Errorf("failed to get public key: %w", err)`
			`}`

nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`p.setSession(event.PubKey, session)`
nip46: fix HandleRequest request parsing logic Move out the `session.ParseRequest` call from the `else` branch. This caused an empty `Request` object to be used down in the function when the `Session` already existed. 2024-10-01 09:56:19 -06:00			`}`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00
nip46: fix HandleRequest request parsing logic Move out the `session.ParseRequest` call from the `else` branch. This caused an empty `Request` object to be used down in the function when the `Session` already existed. 2024-10-01 09:56:19 -06:00			`req, err = session.ParseRequest(event)`
			`if err != nil {`
			`return req, resp, eventResponse, fmt.Errorf("error parsing request: %w", err)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

nip46: pass secret to authorize functions. 2024-05-15 16:13:12 -03:00			`var secret string`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`var result string`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`var resultErr error`

			`switch req.Method {`
			`case "connect":`
nip46: pass secret to authorize functions. 2024-05-15 16:13:12 -03:00			`if len(req.Params) >= 2 {`
			`secret = req.Params[1]`
			`}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`result = "ack"`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`case "get_public_key":`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`result = session.PublicKey`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`case "sign_event":`
			`if len(req.Params) != 1 {`
			`resultErr = fmt.Errorf("wrong number of arguments to 'sign_event'")`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
			`evt := nostr.Event{}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`err = easyjson.Unmarshal([]byte(req.Params[0]), &evt)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if err != nil {`
			`resultErr = fmt.Errorf("failed to decode event/2: %w", err)`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`if p.authorizeSigning != nil && !p.authorizeSigning(evt, event.PubKey, secret) {`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`resultErr = fmt.Errorf("refusing to sign this event")`
			`break`
			`}`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00
			`err = userKeyer.SignEvent(ctx, &evt)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if err != nil {`
			`resultErr = fmt.Errorf("failed to sign event: %w", err)`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`jrevt, _ := easyjson.Marshal(evt)`
			`result = string(jrevt)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`case "get_relays":`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`if p.getRelays == nil {`
			`jrelays, _ := json.Marshal(p.getRelays(session.PublicKey))`
			`result = string(jrelays)`
			`} else {`
			`result = "{}"`
			`}`
make nip44 conversation key be static array. 2024-09-10 21:16:28 -03:00			`case "nip44_encrypt":`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if len(req.Params) != 2 {`
			`resultErr = fmt.Errorf("wrong number of arguments to 'nip04_encrypt'")`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`thirdPartyPubkey := req.Params[0]`
replace usage of IsValidPublicKeyHex() in subpackages. 2024-01-18 20:30:20 -03:00			`if !nostr.IsValidPublicKey(thirdPartyPubkey) {`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`resultErr = fmt.Errorf("first argument to 'nip04_encrypt' is not a pubkey string")`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`if p.authorizeEncryption != nil && !p.authorizeEncryption(event.PubKey, secret) {`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`resultErr = fmt.Errorf("refusing to encrypt")`
			`break`
			`}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`plaintext := req.Params[1]`
nip46: support nip44 in servers. 2024-05-15 16:00:30 -03:00
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`ciphertext, err := userKeyer.Encrypt(ctx, plaintext, thirdPartyPubkey)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if err != nil {`
			`resultErr = fmt.Errorf("failed to encrypt: %w", err)`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
			`result = ciphertext`
make nip44 conversation key be static array. 2024-09-10 21:16:28 -03:00			`case "nip44_decrypt":`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`if len(req.Params) != 2 {`
			`resultErr = fmt.Errorf("wrong number of arguments to 'nip04_decrypt'")`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`thirdPartyPubkey := req.Params[0]`
replace usage of IsValidPublicKeyHex() in subpackages. 2024-01-18 20:30:20 -03:00			`if !nostr.IsValidPublicKey(thirdPartyPubkey) {`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`resultErr = fmt.Errorf("first argument to 'nip04_decrypt' is not a pubkey string")`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`if p.authorizeEncryption != nil && !p.authorizeEncryption(event.PubKey, secret) {`
nip-46 dynamic and static signers. 2024-01-09 16:55:00 -03:00			`resultErr = fmt.Errorf("refusing to decrypt")`
			`break`
			`}`
nip46: make everything strings because pablo did it like that. 2023-12-01 17:23:59 -03:00			`ciphertext := req.Params[1]`
nip46: support nip44 in servers. 2024-05-15 16:00:30 -03:00
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`plaintext, err := userKeyer.Decrypt(ctx, ciphertext, thirdPartyPubkey)`
make nip44 conversation key be static array. 2024-09-10 21:16:28 -03:00			`if err != nil {`
nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`resultErr = fmt.Errorf("failed to decrypt: %w", err)`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`break`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`
			`result = plaintext`
implement ping method in nip46 signers 2024-10-01 19:10:05 +09:00			`case "ping":`
			`result = "pong"`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`default:`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse,`
nip46: improvements. 2023-12-01 17:20:29 -03:00			`fmt.Errorf("unknown method '%s'", req.Method)`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`

nip46: improvements. 2023-12-01 17:20:29 -03:00			`resp, eventResponse, err = session.MakeResponse(req.ID, event.PubKey, result, resultErr)`
nip46: fix variable name (was using the shared key as the secret key.) 2023-12-02 15:31:26 -03:00			`if err != nil {`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse, err`
nip46: fix variable name (was using the shared key as the secret key.) 2023-12-02 15:31:26 -03:00			`}`

nip46: revamp dynamic signer, require a ctx on HandleRequest(). 2024-10-14 16:26:01 -03:00			`err = eventResponse.Sign(handlerSecret)`
nip46: fix variable name (was using the shared key as the secret key.) 2023-12-02 15:31:26 -03:00			`if err != nil {`
nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse, err`
nip46: fix variable name (was using the shared key as the secret key.) 2023-12-02 15:31:26 -03:00			`}`

nip46: bunker implementation changes for more streamlined authorization prompts. 2024-03-02 08:16:11 -03:00			`return req, resp, eventResponse, err`
nip-46 signer flow helpers. 2023-12-01 16:15:24 -03:00			`}`