pipegate 0.6.0

A payment authentication middleware with stablecoins
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155

use alloy::{
    hex::{self},
    primitives::Signed,
    providers::ProviderBuilder,
    sol,
};
use reqwest::Client;
use serde_json::json;

use crate::{
    error::AuthError,
    middleware::stream_payment::{
        types::{SignedStream, StreamsConfig},
        utils::create_stream_message,
    },
};

sol!(
    #[allow(missing_docs)]
    #[sol(rpc)]
    CFAv1Forwarder,
    "src/abi/CFAv1Forwarder.json"
);

#[allow(dead_code)]
pub(crate) async fn verify_stream_via_indexer(
    stream: SignedStream,
    config: StreamsConfig,
) -> Result<bool, AuthError> {
    // Creating the message
    let reconstructed_message = create_stream_message(stream.sender);
    println!("Message: 0x{}", hex::encode(&reconstructed_message));

    let signature = stream.signature;
    println!("Signature: 0x{}", hex::encode(&signature.as_bytes()));

    // Recovering the address from the signature
    let recovered = match signature.recover_address_from_msg(reconstructed_message) {
        Ok(address) => address,
        Err(_) => return Err(AuthError::InvalidSignature),
    };
    println!("Recovered address: {}", recovered);

    // Verify the recovered address against the sender for the stream
    if recovered != stream.sender {
        println!("Failed: Recovered address mismatch");
        return Err(AuthError::InvalidSignature);
    }

    let client = Client::new();

    let url = "https://subgraph-endpoints.superfluid.dev/base-sepolia/protocol-v1";

    let query = json!({
        "query": "query ($recipient: String!, $sender: String!, $amount: String!, $token: String!) {
            account(id: $recipient) {
                inflows(where: { sender: $sender, currentFlowRate: $amount, token: $token }) {
                    currentFlowRate
                    createdAtTimestamp
                    id
                }
            }
        }",
        "variables": {
            "recipient": config.recipient.to_string().to_lowercase(),
            "sender": stream.sender.to_string().to_lowercase(),
            "amount": config.amount.to_string(),
            "token": config.token_address.to_string().to_lowercase(),
        }
    });

    let response = client
        .post(url)
        .header("Content-Type", "application/json")
        .json(&query)
        .send()
        .await
        .map_err(|e| {
            println!("Failed: Network error: {}", e);
            AuthError::NetworkError("Failed to fetch stream data from indexer".to_string())
        })?
        .json::<serde_json::Value>()
        .await
        .map_err(|e| {
            println!("Failed: JSON parse error: {}", e);
            AuthError::NetworkError("Failed to parse stream data from indexer".to_string())
        })?;

    if let Some(inflows) = response["data"]["account"]["inflows"].as_array() {
        if !inflows.is_empty() {
            println!("✅ Stream is active! Inflow record found.");
        } else {
            println!("❌ No active inflow detected.");
            return Err(AuthError::InvalidStream(
                "No active inflow detected".to_string(),
            ));
        }
    } else {
        println!("❌ No inflow data found.");
        return Err(AuthError::InvalidStream("No inflow data found".to_string()));
    }

    Ok(true)
}

pub async fn verify_stream(stream: SignedStream, config: StreamsConfig) -> Result<bool, AuthError> {
    // Creating the message
    let reconstructed_message = create_stream_message(stream.sender);
    println!("Message: 0x{}", hex::encode(&reconstructed_message));

    let signature = stream.signature;
    println!("Signature: 0x{}", hex::encode(&signature.as_bytes()));

    // Recovering the address from the signature
    let recovered = match signature.recover_address_from_msg(reconstructed_message) {
        Ok(address) => address,
        Err(_) => return Err(AuthError::InvalidSignature),
    };
    println!("Recovered address: {}", recovered);

    // Verify the recovered address against the sender for the stream
    if recovered != stream.sender {
        println!("Failed: Recovered address mismatch");
        return Err(AuthError::InvalidSignature);
    }

    let provider = ProviderBuilder::new().on_http(config.rpc_url.parse().unwrap());

    let cfav1_forwarder = CFAv1Forwarder::new(config.cfa_forwarder, provider);

    // Fetch the stream flow from sender to recipient, if it exists, using CFAv1Forwarder
    let flow_info = cfav1_forwarder
        .getFlowInfo(config.token_address, stream.sender, config.recipient)
        .call()
        .await
        .map_err(|e| AuthError::ContractError(e.to_string()))?;

    // Check if the flow exists
    if flow_info.flowrate == Signed::ZERO {
        println!("Failed: No stream flow found");
        return Err(AuthError::InvalidStream("No stream flow found".to_string()));
    } else {
        println!("Stream flow found");
        println!("Flow rate: {}", flow_info.flowrate);
        // check the flowRate matches with what recipient expects
        if flow_info.flowrate != config.amount {
            println!("Failed: Invalid stream flow rate");
            return Err(AuthError::InvalidStream(
                "Invalid stream flow rate".to_string(),
            ));
        }
    }

    Ok(true)
}