nostr-bbs-core 3.0.0-rc7

Shared Nostr protocol primitives for the nostr-bbs forum (client + workers)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183

//! NIP-09: Event Deletion — kind 5 deletion request events.
//!
//! A deletion event targets one or more events by their IDs, signaling to relays
//! and clients that the author wishes those events to be removed. Only the original
//! author's deletion events are honored.

use k256::schnorr::SigningKey;
use thiserror::Error;

use crate::event::{sign_event, NostrEvent, UnsignedEvent};

/// Kind for NIP-09 deletion events.
const KIND_DELETION: u64 = 5;

/// Errors specific to NIP-09 deletion event creation.
#[derive(Debug, Error)]
pub enum DeletionError {
    /// No target event IDs were provided.
    #[error("at least one target event ID is required")]
    NoTargets,

    /// A target event ID is not a valid 64-character hex string.
    #[error("invalid target event ID: {0}")]
    InvalidTargetId(String),

    /// The signing key is invalid.
    #[error("invalid signing key: {0}")]
    InvalidKey(String),

    /// Signing the deletion event failed.
    #[error("signing failed: {0}")]
    SigningFailed(String),
}

/// Create a kind-5 deletion event targeting one or more events.
///
/// Per NIP-09, the deletion event contains `["e", "<event-id>"]` tags for each
/// target. An optional `reason` string is placed in the `content` field.
///
/// # Arguments
/// * `privkey` - 32-byte secp256k1 secret key of the event author
/// * `target_ids` - Hex-encoded event IDs to request deletion of
/// * `reason` - Optional human-readable reason for the deletion
///
/// # Errors
/// Returns `DeletionError` if no targets are provided, any target ID is
/// invalid, or signing fails.
pub fn create_deletion_event(
    privkey: &[u8; 32],
    target_ids: &[String],
    reason: Option<&str>,
) -> Result<NostrEvent, DeletionError> {
    if target_ids.is_empty() {
        return Err(DeletionError::NoTargets);
    }

    // Validate all target IDs are 64-char hex
    for id in target_ids {
        if id.len() != 64 || hex::decode(id).is_err() {
            return Err(DeletionError::InvalidTargetId(id.clone()));
        }
    }

    let signing_key =
        SigningKey::from_bytes(privkey).map_err(|e| DeletionError::InvalidKey(e.to_string()))?;
    let pubkey = hex::encode(signing_key.verifying_key().to_bytes());

    let tags: Vec<Vec<String>> = target_ids
        .iter()
        .map(|id| vec!["e".to_string(), id.clone()])
        .collect();

    let now = now_secs();

    let unsigned = UnsignedEvent {
        pubkey,
        created_at: now,
        kind: KIND_DELETION,
        tags,
        content: reason.unwrap_or("").to_string(),
    };

    sign_event(unsigned, &signing_key).map_err(|e| DeletionError::SigningFailed(e.to_string()))
}

/// Get current Unix timestamp, platform-aware.
fn now_secs() -> u64 {
    #[cfg(target_arch = "wasm32")]
    {
        (js_sys::Date::now() / 1000.0) as u64
    }
    #[cfg(not(target_arch = "wasm32"))]
    {
        std::time::SystemTime::now()
            .duration_since(std::time::UNIX_EPOCH)
            .expect("system clock before UNIX epoch")
            .as_secs()
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::event::verify_event;
    use k256::schnorr::SigningKey;

    fn test_signing_key() -> (SigningKey, [u8; 32]) {
        let secret = [0x01u8; 32];
        let sk = SigningKey::from_bytes(&secret).unwrap();
        (sk, secret)
    }

    #[test]
    fn create_deletion_single_target() {
        let (sk, privkey) = test_signing_key();
        let pubkey = hex::encode(sk.verifying_key().to_bytes());
        let target = "aa".repeat(32);

        let event = create_deletion_event(&privkey, std::slice::from_ref(&target), None).unwrap();

        assert_eq!(event.kind, 5);
        assert_eq!(event.pubkey, pubkey);
        assert_eq!(event.content, "");
        assert_eq!(event.tags.len(), 1);
        assert_eq!(event.tags[0], vec!["e", &target]);
        assert!(verify_event(&event));
    }

    #[test]
    fn create_deletion_multiple_targets_with_reason() {
        let (_, privkey) = test_signing_key();
        let targets = vec!["bb".repeat(32), "cc".repeat(32), "dd".repeat(32)];
        let reason = "spam cleanup";

        let event = create_deletion_event(&privkey, &targets, Some(reason)).unwrap();

        assert_eq!(event.kind, 5);
        assert_eq!(event.content, reason);
        assert_eq!(event.tags.len(), 3);
        for (i, target) in targets.iter().enumerate() {
            assert_eq!(event.tags[i][0], "e");
            assert_eq!(event.tags[i][1], *target);
        }
        assert!(verify_event(&event));
    }

    #[test]
    fn create_deletion_no_targets_rejected() {
        let (_, privkey) = test_signing_key();
        let result = create_deletion_event(&privkey, &[], None);
        assert!(matches!(result, Err(DeletionError::NoTargets)));
    }

    #[test]
    fn create_deletion_invalid_target_id_rejected() {
        let (_, privkey) = test_signing_key();
        let result = create_deletion_event(&privkey, &["not-hex".to_string()], None);
        assert!(matches!(result, Err(DeletionError::InvalidTargetId(_))));
    }

    #[test]
    fn create_deletion_short_target_id_rejected() {
        let (_, privkey) = test_signing_key();
        let result = create_deletion_event(&privkey, &["aabb".to_string()], None);
        assert!(matches!(result, Err(DeletionError::InvalidTargetId(_))));
    }

    #[test]
    fn create_deletion_verifies_signature() {
        let (_, privkey) = test_signing_key();
        let target = "ee".repeat(32);
        let event = create_deletion_event(&privkey, &[target], Some("test reason")).unwrap();
        assert!(verify_event(&event));
    }

    #[test]
    fn create_deletion_empty_reason_is_empty_content() {
        let (_, privkey) = test_signing_key();
        let target = "ff".repeat(32);
        let event = create_deletion_event(&privkey, &[target], None).unwrap();
        assert_eq!(event.content, "");
    }
}