ic_siws 0.1.0

Integrate Solana wallet-based authentication (SIWS) with applications on the Internet Computer (ICP) platform.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179

use crate::{
    delegation::{
        create_delegation, create_delegation_hash, create_user_canister_pubkey, generate_seed,
        DelegationError,
    },
    hash,
    rand::generate_nonce,
    settings::Settings,
    signature_map::SignatureMap,
    siws::{SiwsMessage, SiwsMessageError},
    solana::{verify_sol_signature, SolError, SolPubkey, SolSignature},
    time::get_current_time,
    with_settings, SIWS_MESSAGES,
};
use candid::{CandidType, Principal};
use serde::Deserialize;
use serde_bytes::ByteBuf;
use simple_asn1::ASN1EncodeErr;
use std::fmt;

const MAX_SIGS_TO_PRUNE: usize = 10;

type Nonce = String;

/// This function is the first step of the user login process. It validates the provided Solana address,
/// creates a SIWS message and its `nonce`, saves it for future use, and returns it. The `nonce` is
/// used by the login function to prevent replay attacks. It is also used as part of the SIWS
/// message key, to ensure that a new SIWS message is created for each login attempt.
///
/// # Example
/// ```ignore
/// use ic_siws::{
///   login::prepare_login,
///   solana::SolPubkey
/// };
///
/// let address = SolPubkey::from_str("Awes4Tr6TX8JDzEhCZY2QVNimT6iD1zWHzf1vNyGvpLM").unwrap()
/// let message = prepare_login(&address).unwrap();
/// ```
pub fn prepare_login(address: &SolPubkey) -> SiwsMessage {
    let nonce = generate_nonce();
    let message = SiwsMessage::new(address, &nonce);

    // Save the SIWS message for use in the login call
    SIWS_MESSAGES.with_borrow_mut(|siws_messages| {
        siws_messages.insert(address, message.clone(), &nonce);
    });

    message
}

/// Login details are returned after a successful login. They contain the expiration time of the
/// delegation and the user canister public key.
#[derive(Clone, Debug, CandidType, Deserialize)]
pub struct LoginDetails {
    /// The session expiration time in nanoseconds since the UNIX epoch. This is the time at which
    /// the delegation will no longer be valid.
    pub expiration: u64,

    /// The user canister public key. This key is used to derive the user principal.
    pub user_canister_pubkey: ByteBuf,
}

pub enum LoginError {
    SignatureError(SolError),
    SiwsMessageError(SiwsMessageError),
    AddressMismatch,
    DelegationError(DelegationError),
    ASN1EncodeErr(ASN1EncodeErr),
}

impl From<SolError> for LoginError {
    fn from(err: SolError) -> Self {
        LoginError::SignatureError(err)
    }
}

impl From<SiwsMessageError> for LoginError {
    fn from(err: SiwsMessageError) -> Self {
        LoginError::SiwsMessageError(err)
    }
}

impl From<DelegationError> for LoginError {
    fn from(err: DelegationError) -> Self {
        LoginError::DelegationError(err)
    }
}

impl From<ASN1EncodeErr> for LoginError {
    fn from(err: ASN1EncodeErr) -> Self {
        LoginError::ASN1EncodeErr(err)
    }
}

impl fmt::Display for LoginError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            LoginError::SignatureError(e) => write!(f, "{}", e),
            LoginError::SiwsMessageError(e) => write!(f, "{}", e),
            LoginError::AddressMismatch => write!(f, "Recovered address does not match"),
            LoginError::DelegationError(e) => write!(f, "{}", e),
            LoginError::ASN1EncodeErr(e) => write!(f, "{}", e),
        }
    }
}

/// Handles the second step of the user login process. It verifies a signature against the stored SIWS message,
/// creates a delegation for the session, adds it to the signature map, and returns login details
///
/// # Parameters
/// * `signature`: The SIWS message signature to verify.
/// * `address`: The Solana address used to sign the SIWS message.
/// * `session_key`: A unique session key to be used for the delegation.
/// * `signature_map`: A mutable reference to `SignatureMap` to which the delegation hash will be added
///   after successful validation.
/// * `canister_id`: The principal of the canister performing the login.
/// * `nonce`: The nonce generated during the `prepare_login` call.
///
/// # Returns
/// A `Result` that, on success, contains the [LoginDetails] with session expiration and user canister
/// public key, or an error of type [`LoginError`] on failure.
pub fn login(
    signature: &SolSignature,
    address: &SolPubkey,
    session_key: ByteBuf,
    signature_map: &mut SignatureMap,
    canister_id: &Principal,
    nonce: &Nonce,
) -> Result<LoginDetails, LoginError> {
    // Remove expired SIWS messages from the state before proceeding. The init settings determines
    // the time to live for SIWS messages.
    SIWS_MESSAGES.with_borrow_mut(|siws_messages| {
        // Prune any expired SIWS messages from the state.
        siws_messages.prune_expired();

        // Get the previously created SIWS message for current address. If it has expired or does not
        // exist, return an error.
        let message = siws_messages.get(address, nonce)?;
        let message_string: String = message.clone().into();

        // Verify the supplied signature and public key against the stored SIWS message.
        let verification_result = verify_sol_signature(&message_string, signature, address);

        // Ensure the SIWS message is removed from the state both on success and on failure.
        siws_messages.remove(address, nonce);

        // Handle the result of the signature verification.
        verification_result?;

        // The delegation is valid for the duration of the session as defined in the settings.
        let expiration = with_settings!(|settings: &Settings| {
            message
                .issued_at
                .saturating_add(settings.session_expires_in)
        });

        // The seed is what uniquely identifies the delegation. It is derived from the salt, the
        // Solana address and the SIWS message URI.
        let seed = generate_seed(address);

        // Before adding the signature to the signature map, prune any expired signatures.
        signature_map.prune_expired(get_current_time(), MAX_SIGS_TO_PRUNE);

        // Create the delegation and add its hash to the signature map. The seed is used as the map key.
        let delegation = create_delegation(session_key, expiration)?;
        let delegation_hash = create_delegation_hash(&delegation);
        signature_map.put(hash::hash_bytes(seed), delegation_hash);

        // Create the user canister public key from the seed. From this key, the client can derive the
        // user principal.
        let user_canister_pubkey = create_user_canister_pubkey(canister_id, seed.to_vec())?;

        Ok(LoginDetails {
            expiration,
            user_canister_pubkey: ByteBuf::from(user_canister_pubkey),
        })
    })
}