From 89b6deeaa1cc36670e37d1d531e68378d039586c Mon Sep 17 00:00:00 2001
From: Maharshi Mishra <maharshi@tor.us>
Date: Mon, 21 Oct 2024 21:24:10 +0530
Subject: [PATCH] Added Telegram server code, Mini app code

---
 .gitignore                                    |   1 +
 .../{src => }/.env                            |   0
 .../server/api/index.js                       |  78 +++++--
 .../sfa-web-ton-telegram-example/src/App.css  |  80 +++++++-
 .../sfa-web-ton-telegram-example/src/App.tsx  | 194 ++++++++++--------
 .../src/TelegramAppWrapper.tsx                |  32 ---
 .../src/assets/Logo.svg                       |  16 ++
 .../src/hooks/useClientOnce.ts                |   9 +
 .../src/hooks/useMockTelegramInitData.ts      |  90 +++++---
 .../src/index.tsx                             |   7 +-
 .../src/tonRpc.ts                             |  11 +-
 .../tsconfig.json                             |   2 +-
 .../vite.config.ts                            |   9 +
 13 files changed, 350 insertions(+), 179 deletions(-)
 rename single-factor-auth-web/sfa-web-ton-telegram-example/{src => }/.env (100%)
 delete mode 100644 single-factor-auth-web/sfa-web-ton-telegram-example/src/TelegramAppWrapper.tsx
 create mode 100644 single-factor-auth-web/sfa-web-ton-telegram-example/src/assets/Logo.svg
 create mode 100644 single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useClientOnce.ts

diff --git a/.gitignore b/.gitignore
index 3ebb0791..22a1485d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -102,3 +102,4 @@ tests/cases/user/prettier/prettier
 .expo
 build
 single-factor-auth-web/sfa-web-ton-telegram-example/src/.env
+single-factor-auth-web/sfa-web-ton-telegram-example/src/.env
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/.env b/single-factor-auth-web/sfa-web-ton-telegram-example/.env
similarity index 100%
rename from single-factor-auth-web/sfa-web-ton-telegram-example/src/.env
rename to single-factor-auth-web/sfa-web-ton-telegram-example/.env
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/server/api/index.js b/single-factor-auth-web/sfa-web-ton-telegram-example/server/api/index.js
index d1078dc4..ebc8f808 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/server/api/index.js
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/server/api/index.js
@@ -6,29 +6,35 @@ const path = require("path");
 const { AuthDataValidator } = require("@telegram-auth/server");
 const { objectToAuthDataMap } = require("@telegram-auth/server/utils");
 const RateLimit = require("express-rate-limit");
-const cors = require('cors');
 
 dotenv.config();
 
 const app = express();
 app.use(express.json()); // Middleware to parse JSON requests
 
-const { TELEGRAM_BOT_TOKEN, SERVER_URL, JWT_KEY_ID } = process.env;
+const { TELEGRAM_BOT_TOKEN, JWT_KEY_ID, APP_URL } = process.env;
 const privateKey = fs.readFileSync(path.resolve(__dirname, "privateKey.pem"), "utf8");
 
-// CORS configuration
-const corsOptions = {
-  origin: SERVER_URL || 'http://localhost:3000', // Use the SERVER_URL from .env or fallback to localhost during dev
-  credentials: true, // This allows cookies/credentials to be sent across domains
-  methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'], // Allowed HTTP methods
-  allowedHeaders: ['Origin', 'X-Requested-With', 'Content-Type', 'Accept', 'Authorization'], // Allowed headers
-};
+// Define allowed origins
+const allowedOrigins = [APP_URL]; // Add more origins if needed
 
-// Apply CORS middleware to all routes
-app.use(cors(corsOptions));
+// CORS configuration
+app.use((req, res, next) => {
+  const origin = req.headers.origin;
+  if (allowedOrigins.includes(origin)) {
+    res.setHeader('Access-Control-Allow-Origin', origin); // Allow only the allowed origins
+    res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
+    res.setHeader('Access-Control-Allow-Headers', 'Content-Type, Authorization, X-Requested-With, Accept');
+    res.setHeader('Access-Control-Allow-Credentials', 'true'); // Allow credentials like cookies
+  }
 
-// Handle preflight requests (OPTIONS method) for all routes
-app.options('*', cors(corsOptions));
+  // Handle preflight requests (OPTIONS method)
+  if (req.method === 'OPTIONS') {
+    res.setHeader('Access-Control-Allow-Headers', 'Content-Type, Authorization, X-Requested-With, Accept');
+    return res.sendStatus(204); // Send no content status for OPTIONS requests
+  }
+  next(); // Pass control to the next middleware
+});
 
 // Rate limiter configuration
 const limiter = RateLimit({
@@ -41,33 +47,66 @@ app.use(limiter);
 
 // Helper function to generate JWT token
 const generateJwtToken = (userData) => {
+  console.log("id", userData.id);
   const payload = {
     telegram_id: userData.id,
     username: userData.username,
-    avatar_url: userData.photo_url,
+    avatar_url: userData.photo_url || "https://www.gravatar.com/avatar", // Default photo URL if not available
     sub: userData.id.toString(),
     name: userData.first_name,
     iss: "https://api.telegram.org",
     iat: Math.floor(Date.now() / 1000),
-    exp: Math.floor(Date.now() / 1000) + 60 * 60,
+    exp: Math.floor(Date.now() / 1000) + 60 * 60, // Token valid for 1 hour
   };
   return jwt.sign(payload, privateKey, { algorithm: "RS256", keyid: JWT_KEY_ID });
 };
 
-// Validate Telegram data and generate JWT
-app.post("/auth/telegram", async (req, res) => {
-  const { initDataRaw } = req.body;
+// Route 1: Test route to check if the server is running
+app.get("/test", (req, res) => {
+  res.json({ message: "Connection successful. Server is running!" });
+});
 
+// Route 2: Telegram authentication route
+app.post("/auth/telegram", async (req, res) => {
+  const { initDataRaw, isMocked } = req.body;
+  console.log("Received initDataRaw:", initDataRaw);
+  console.log("isMocked:", isMocked);
   if (!initDataRaw) {
     return res.status(400).json({ error: "initDataRaw is required" });
   }
 
+  if (isMocked) {
+    // Directly parse the mocked initDataRaw without validation
+    const data = new URLSearchParams(initDataRaw);
+    const user = JSON.parse(decodeURIComponent(data.get("user"))); // Decode the 'user' parameter from initDataRaw
+
+    const mockUser = {
+      id: user.id,
+      username: user.username,
+      photo_url: user.photo_url || "https://www.gravatar.com/avatar", // Default photo URL for mocked user
+      first_name: user.first_name,
+    };
+
+    console.log("Parsed mock user data:", mockUser);
+
+    const JWTtoken = generateJwtToken(mockUser);
+    return res.json({ token: JWTtoken });
+  }
+
+  // For real scenarios, proceed with validation
   const validator = new AuthDataValidator({ botToken: TELEGRAM_BOT_TOKEN });
   const data = objectToAuthDataMap(new URLSearchParams(initDataRaw));
 
   try {
     const user = await validator.validate(data);
-    const JWTtoken = generateJwtToken(user);
+
+    // Ensure a photo URL is available or use a default one
+    const validatedUser = {
+      ...user,
+      photo_url: user.photo_url || "https://www.gravatar.com/avatar", // Fallback photo URL if missing
+    };
+
+    const JWTtoken = generateJwtToken(validatedUser);
     res.json({ token: JWTtoken });
   } catch (error) {
     console.error("Error validating Telegram data:", error);
@@ -75,4 +114,5 @@ app.post("/auth/telegram", async (req, res) => {
   }
 });
 
+// Start the server
 app.listen(3000, () => console.log("Server ready on port 3000."));
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.css b/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.css
index 243c0dd1..340c540a 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.css
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.css
@@ -1,3 +1,4 @@
+/* Main Container */
 .container {
   width: 60%;
   margin: auto;
@@ -28,8 +29,8 @@
 
 .grid {
   display: flex;
-  align-items: center;
   flex-direction: column;
+  align-items: center;
 }
 
 .card {
@@ -101,3 +102,80 @@
   font-size: 16px;
   font-family: monospace;
 }
+
+/* Updated box sizes */
+.user-info-box, .info-box {
+  padding: 15px;
+  margin: 15px 0;
+  border: 1px solid #ccc;
+  border-radius: 10px;
+  background-color: #f9f9f9;
+  box-shadow: 0 4px 8px rgba(0, 0, 0, 0.1);
+  width: 350px;
+  height: auto;
+  display: flex;
+  align-items: center;
+  justify-content: center;
+  text-align: center;
+  cursor: pointer;
+  transition: background-color 0.3s ease;
+}
+
+.info-box:hover {
+  background-color: #eef;
+}
+
+.loader-container {
+  display: flex;
+  justify-content: center;
+  align-items: center;
+  height: 100%;
+}
+
+/* Ellipsis for long strings */
+p {
+  white-space: nowrap;
+  overflow: hidden;
+  text-overflow: ellipsis;
+  max-width: 100%; /* Ensure ellipsis kicks in at full box width */
+}
+
+/* Adjust alignment and spacing of ID and Logo */
+.id-with-logo {
+  display: inline-flex;
+  align-items: center; /* Vertically align the text and logo */
+  gap: 4px; /* Reduce the gap between the ID and the logo */
+  margin-bottom: 0; /* Remove unnecessary margin below the ID */
+  max-width: fit-content; /* Adjust width to fit content only */
+}
+
+/* Style the logo */
+.telegram-logo {
+  width: 20px;
+  height: 20px;
+  margin-left: 4px; /* Minimal space between the ID and logo */
+}
+
+/* Adjust overall spacing for user-info-box */
+.user-info-box {
+  padding: 15px;
+  margin: 10px 0; /* Adjust the margin for better spacing */
+  border: 1px solid #ccc;
+  border-radius: 10px;
+  background-color: #f9f9f9;
+  box-shadow: 0 4px 8px rgba(0, 0, 0, 0.1);
+  width: 350px;
+  height: auto;
+  display: flex;
+  align-items: center;
+  text-align: center;
+  cursor: pointer;
+  transition: background-color 0.3s ease;
+}
+
+.user-avatar {
+  width: 50px;
+  height: 50px;
+  border-radius: 50%;
+  margin-right: 10px;
+}
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.tsx b/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.tsx
index 4d5e26d3..5e060e03 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.tsx
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/App.tsx
@@ -3,10 +3,11 @@ import { Web3Auth, decodeToken } from "@web3auth/single-factor-auth";
 import { CHAIN_NAMESPACES, WEB3AUTH_NETWORK } from "@web3auth/base";
 import { CommonPrivateKeyProvider } from "@web3auth/base-provider";
 import { getHttpEndpoint } from "@orbs-network/ton-access";
-import { useLaunchParams, isTMA } from "@telegram-apps/sdk-react";
-import { mockTelegramEnvironment } from "./hooks/useMockTelegramInitData";
-// import TonRPC from "./tonRpc";
+import TonRPC from "./tonRpc"; // Import the TonRPC class
+import { useLaunchParams } from "@telegram-apps/sdk-react";
+import { useTelegramMock } from "./hooks/useMockTelegramInitData";
 import Loading from "./Loading";
+import TelegramLogo from "./assets/Logo.svg"; // Assuming the logo is in the assets folder
 import "./App.css";
 
 const verifier = "w3a-telegram-demo";
@@ -14,38 +15,16 @@ const clientId = "BPi5PB_UiIZ-cPz1GtV5i1I2iOSOHuimiXBI0e-Oe_u6X3oVAbCiAZOTEBtTXw
 
 function App() {
   const [isLoggingIn, setIsLoggingIn] = useState(false);
-  const [loggedIn, setLoggedIn] = useState(false);
-  const [provider, setProvider] = useState<any>(null);
-  const [initDataRaw, setInitDataRaw] = useState<string | null>(null);
   const [web3authSfa, setWeb3authSfa] = useState<Web3Auth | null>(null);
   const [web3AuthInitialized, setWeb3AuthInitialized] = useState(false);
+  const [userData, setUserData] = useState<any | null>(null); // State to hold parsed user info
+  const [tonAccountAddress, setTonAccountAddress] = useState<string | null>(null);
+  const [signedMessage, setSignedMessage] = useState<string | null>(null);
+  const [isLoggedIn, setIsLoggedIn] = useState(false);
 
-  const { initDataRaw: launchData } = useLaunchParams() || {};
+  const { initDataRaw } = useLaunchParams() || {};
 
-  useEffect(() => {
-    const checkTelegramEnvironment = async () => {
-      if (await isTMA()) {
-        console.log("Running inside Telegram Mini App.");
-      } else {
-        console.warn("Not running inside Telegram Mini App. Mocking environment for development...");
-        if (process.env.NODE_ENV === "development") {
-          mockTelegramEnvironment();
-        }
-      }
-
-      if (launchData) {
-        console.log("initDataRaw found: ", launchData);
-        setInitDataRaw(launchData);
-      } else {
-        console.warn("initDataRaw not found or undefined. Using mock data.");
-        if (process.env.NODE_ENV === "development") {
-          mockTelegramEnvironment();
-        }
-      }
-    };
-
-    checkTelegramEnvironment();
-  }, [launchData]);
+  useTelegramMock(); // Initialize the Telegram mock data
 
   useEffect(() => {
     const initializeWeb3Auth = async () => {
@@ -79,12 +58,13 @@ function App() {
           privateKeyProvider,
         });
 
-        console.log("Web3Auth initialized.");
         setWeb3authSfa(web3authInstance);
 
+        console.log("Initializing Web3Auth...");
         await web3authInstance.init(); // Ensure Web3Auth is initialized
+        console.log("Web3Auth initialized.");
+
         setWeb3AuthInitialized(true);
-        console.log("Web3Auth is now ready.");
       } catch (error) {
         console.error("Error fetching TON Testnet RPC endpoint: ", error);
       }
@@ -95,12 +75,22 @@ function App() {
 
   useEffect(() => {
     const connectWeb3Auth = async () => {
-      if (web3authSfa && web3AuthInitialized && !loggedIn && initDataRaw) {
+      if (web3authSfa && web3AuthInitialized && initDataRaw) {
         setIsLoggingIn(true);
         try {
-          console.log("Starting Web3Auth connection...");
+          console.log("Checking Web3Auth connection status...");
+
+          if (web3authSfa.status === "connected") {
+            await web3authSfa.logout();
+            console.log("Logged out successfully.");
+          }
 
-          const idToken = await getIdTokenFromServer();
+          if (web3authSfa.status === "not_ready") {
+            await web3authSfa.init();
+            console.log("Web3Auth initialized.");
+          }
+
+          const idToken = await getIdTokenFromServer(initDataRaw);
           if (!idToken) {
             console.error("No ID token found.");
             setIsLoggingIn(false);
@@ -116,79 +106,113 @@ function App() {
             idToken: idToken,
           });
 
-          setProvider(web3authSfa.provider);
-          setLoggedIn(true);
           console.log("Successfully logged in.");
+          setUserData(payload);
+          setIsLoggedIn(true);
+
+          // Initialize TonRPC and fetch the account address
+          const tonRpc = new TonRPC(web3authSfa.provider);
+          const tonAddress = await tonRpc.getAccounts();
+          setTonAccountAddress(tonAddress); // Set the TON address dynamically
+
+          // Sign a message and set it
+          const messageToSign = "Hello, TON!";
+          const signedMsg = await tonRpc.signMessage(messageToSign);
+          setSignedMessage(signedMsg); // Set the signed message
         } catch (error) {
           console.error("Error during Web3Auth connection:", error);
         } finally {
           setIsLoggingIn(false);
         }
-      } else {
-        console.warn("Web3Auth is not ready or already logged in.");
       }
     };
 
     if (web3AuthInitialized && initDataRaw) {
       connectWeb3Auth();
     }
-  }, [initDataRaw, loggedIn, web3authSfa, web3AuthInitialized]);
-
-  const getIdTokenFromServer = async () => {
-    console.log("Requesting ID token from server with initDataRaw: ", initDataRaw);
-    try {
-      const response = await fetch(`${process.env.REACT_APP_SERVER_URL}/auth/telegram`, {
-        method: "POST",
-        headers: {
-          "Content-Type": "application/json",
-          Accept: "application/json",
-        },
-        body: JSON.stringify({ initDataRaw }),
-        credentials: "include",
-        mode: "cors",
-      });
-      if (!response.ok) {
-        throw new Error(`HTTP error! status: ${response.status}`);
-      }
-      const data = await response.json();
-      console.log("ID token received: ", data.token);
-      return data.token;
-    } catch (error) {
-      console.error("Error fetching ID token from server: ", error);
-      return null;
-    }
+  }, [initDataRaw, web3authSfa, web3AuthInitialized]);
+
+  const getIdTokenFromServer = async (initDataRaw: string) => {
+    const isMocked = !!sessionStorage.getItem("____mocked");
+
+    const response = await fetch(`${process.env.SERVER_URL}/auth/telegram`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({ initDataRaw, isMocked }),
+    });
+
+    const data = await response.json();
+    console.log("Received ID token from server:", data.token);
+    return data.token;
   };
 
-  const getUserInfo = async () => {
-    if (!provider) {
-      console.log("Web3Auth Single Factor Auth SDK not initialized yet");
-      return;
-    }
-    const userInfo = await web3authSfa?.getUserInfo();
-    console.log(userInfo);
+  const copyToClipboard = (text: string) => {
+    navigator.clipboard.writeText(text);
+    alert("Copied to clipboard!");
   };
 
-  const loginView = (
-    <>
-      <div className="flex-container">
-        <button onClick={getUserInfo} className="card">
-          Get User Info
-        </button>
-        {/* Add other actions here */}
+  const userInfoBox = (
+    <div className="user-info-box">
+      <img src={userData?.avatar_url} alt="User avatar" className="user-avatar" />
+      <div className="user-info">
+        <div className="id-with-logo">
+          <p>
+            <strong>ID:</strong> {userData?.telegram_id}
+          </p>
+          <img src={TelegramLogo} alt="Telegram Logo" className="telegram-logo" />
+        </div>
+        <p>
+          <strong>Username:</strong> {userData?.username}
+        </p>
+        <p>
+          <strong>Name:</strong> {userData?.name}
+        </p>
       </div>
-    </>
+    </div>
+  );
+
+  const tonAccountBox = (
+    <div className="info-box" onClick={() => copyToClipboard(tonAccountAddress || "")}>
+      <p>
+        <strong>TON Account:</strong> {tonAccountAddress}
+      </p>
+    </div>
+  );
+
+  const signedMessageBox = (
+    <div className="info-box" onClick={() => copyToClipboard(signedMessage || "")}>
+      <p>
+        <strong>Signed Message:</strong> {signedMessage}
+      </p>
+    </div>
   );
 
   const logoutView = (
-    <button onClick={async () => await web3authSfa?.init()} className="card">
-      Login
-    </button>
+    <div className="loader-container">
+      <Loading />
+    </div>
   );
 
   return (
     <div className="container">
-      <h1 className="title">Web3Auth SFA React TON Example</h1>
-      {isLoggingIn ? <Loading /> : <div className="grid">{provider ? (loggedIn ? loginView : logoutView) : null}</div>}
+      <h1 className="title">Web3Auth TON Telegram MiniApp</h1>
+      {isLoggingIn ? (
+        <Loading />
+      ) : (
+        <div className="grid">
+          {isLoggedIn ? (
+            <>
+              {userInfoBox}
+              {tonAccountBox}
+              {signedMessageBox}
+            </>
+          ) : (
+            logoutView
+          )}
+        </div>
+      )}
       <footer className="footer">
         <a href="https://github.com/Web3Auth" target="_blank" rel="noopener noreferrer">
           Source code
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/TelegramAppWrapper.tsx b/single-factor-auth-web/sfa-web-ton-telegram-example/src/TelegramAppWrapper.tsx
deleted file mode 100644
index ae763701..00000000
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/src/TelegramAppWrapper.tsx
+++ /dev/null
@@ -1,32 +0,0 @@
-import { useEffect } from "react";
-import { isTMA, init } from "@telegram-apps/sdk-react";
-import { mockTelegramEnvironment } from "./hooks/useMockTelegramInitData";
-import App from "./App";
-
-const TelegramAppWrapper = () => {
-  useEffect(() => {
-    const checkTelegramEnvironment = async () => {
-      const telegramEnv = await isTMA(); // Check if it's Telegram Mini App
-      
-      if (telegramEnv) {
-        console.log("Running inside Telegram Mini App. Initializing...");
-        try {
-          init(); // Initialize Telegram SDK
-        } catch (error) {
-          console.error("Error initializing Telegram Mini App:", error);
-        }
-      } else {
-        console.warn("Not running inside Telegram Mini App. Mocking environment for development...");
-        if (process.env.NODE_ENV === "development") {
-          mockTelegramEnvironment();
-        }
-      }
-    };
-
-    checkTelegramEnvironment();
-  }, []);
-
-  return <App />;
-};
-
-export default TelegramAppWrapper;
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/assets/Logo.svg b/single-factor-auth-web/sfa-web-ton-telegram-example/src/assets/Logo.svg
new file mode 100644
index 00000000..c67526fd
--- /dev/null
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/assets/Logo.svg
@@ -0,0 +1,16 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg width="1000px" height="1000px" viewBox="0 0 1000 1000" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
+    <!-- Generator: Sketch 53.2 (72643) - https://sketchapp.com -->
+    <title>Artboard</title>
+    <desc>Created with Sketch.</desc>
+    <defs>
+        <linearGradient x1="50%" y1="0%" x2="50%" y2="99.2583404%" id="linearGradient-1">
+            <stop stop-color="#2AABEE" offset="0%"></stop>
+            <stop stop-color="#229ED9" offset="100%"></stop>
+        </linearGradient>
+    </defs>
+    <g id="Artboard" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd">
+        <circle id="Oval" fill="url(#linearGradient-1)" cx="500" cy="500" r="500"></circle>
+        <path d="M226.328419,494.722069 C372.088573,431.216685 469.284839,389.350049 517.917216,369.122161 C656.772535,311.36743 685.625481,301.334815 704.431427,301.003532 C708.567621,300.93067 717.815839,301.955743 723.806446,306.816707 C728.864797,310.92121 730.256552,316.46581 730.922551,320.357329 C731.588551,324.248848 732.417879,333.113828 731.758626,340.040666 C724.234007,419.102486 691.675104,610.964674 675.110982,699.515267 C668.10208,736.984342 654.301336,749.547532 640.940618,750.777006 C611.904684,753.448938 589.856115,731.588035 561.733393,713.153237 C517.726886,684.306416 492.866009,666.349181 450.150074,638.200013 C400.78442,605.66878 432.786119,587.789048 460.919462,558.568563 C468.282091,550.921423 596.21508,434.556479 598.691227,424.000355 C599.00091,422.680135 599.288312,417.758981 596.36474,415.160431 C593.441168,412.561881 589.126229,413.450484 586.012448,414.157198 C581.598758,415.158943 511.297793,461.625274 375.109553,553.556189 C355.154858,567.258623 337.080515,573.934908 320.886524,573.585046 C303.033948,573.199351 268.692754,563.490928 243.163606,555.192408 C211.851067,545.013936 186.964484,539.632504 189.131547,522.346309 C190.260287,513.342589 202.659244,504.134509 226.328419,494.722069 Z" id="Path-3" fill="#FFFFFF"></path>
+    </g>
+</svg>
\ No newline at end of file
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useClientOnce.ts b/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useClientOnce.ts
new file mode 100644
index 00000000..1294086d
--- /dev/null
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useClientOnce.ts
@@ -0,0 +1,9 @@
+import { useRef } from 'react';
+
+export function useClientOnce(fn: () => void): void {
+  const canCall = useRef(true);
+  if (typeof window !== 'undefined' && canCall.current) {
+    canCall.current = false;
+    fn();
+  }
+}
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useMockTelegramInitData.ts b/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useMockTelegramInitData.ts
index 2de4620d..59f0eb10 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useMockTelegramInitData.ts
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/hooks/useMockTelegramInitData.ts
@@ -1,34 +1,66 @@
-import { mockTelegramEnv, parseInitData } from "@telegram-apps/sdk-react"; 
+/* eslint-disable camelcase */
+import { mockTelegramEnv, parseInitData, retrieveLaunchParams } from '@telegram-apps/sdk-react';
 
-export function mockTelegramEnvironment() {
-  console.log("Mocking Telegram environment...");
-  
-  const mockInitDataRaw = new URLSearchParams([
-    ['user', JSON.stringify({
-      id: 123456789,
-      first_name: "John",
-      last_name: "Doe",
-      username: "johndoe",
-      language_code: "en",
-      is_premium: false,
-      allows_write_to_pm: true
-    })],
-    ['hash', 'abc123def456'],
-    ['auth_date', '1700000000'],
-  ]).toString();
+/**
+ * Mocks Telegram environment in development mode.
+ */
+export function useTelegramMock(): void {
+  if (process.env.NODE_ENV !== "development") return; // Only run in development mode
 
-  mockTelegramEnv({
-    initDataRaw: mockInitDataRaw,
-    initData: parseInitData(mockInitDataRaw),
-    platform: "web", // Simulate a web platform
-    version: "7.1",
-    themeParams: {
-      accentTextColor: '#6ab2f2',
-      bgColor: '#ffffff',
-      buttonColor: '#5288c1',
-      buttonTextColor: '#ffffff',
+  let shouldMock: boolean;
+
+  try {
+      retrieveLaunchParams();
+      shouldMock = !!sessionStorage.getItem('____mocked');
+    } catch (e) {
+      shouldMock = true;
     }
-  });
 
-  console.info("Telegram environment successfully mocked.");
+    if (shouldMock) {
+      const randomId = Math.floor(Math.random() * 1000000000); // Generate a random id between 0 and 1 billion
+
+      const initDataRaw = new URLSearchParams([
+        [
+          'user',
+          JSON.stringify({
+            id: randomId, // Randomized user ID
+            first_name: 'Andrew',
+            last_name: 'Rogue',
+            username: 'rogue',
+            language_code: 'en',
+            is_premium: true,
+            allows_write_to_pm: true,
+          }),
+        ],
+        ["hash", "89d6079ad6762351f38c6dbbc41bb53048019256a9443988af7a48bcad16ba31"],
+        ["auth_date", "1716922846"], // Use a fixed or provided auth_date
+        ["start_param", "debug"],
+        ["chat_type", "sender"],
+        ["chat_instance", "8428209589180549439"],
+      ]).toString();
+
+    mockTelegramEnv({
+      themeParams: {
+        accentTextColor: '#6ab2f2',
+        bgColor: '#17212b',
+        buttonColor: '#5288c1',
+        buttonTextColor: '#ffffff',
+        destructiveTextColor: '#ec3942',
+        headerBgColor: '#17212b',
+        hintColor: '#708499',
+        linkColor: "#6ab3f3",
+        secondaryBgColor: "#232e3c",
+        sectionBgColor: "#17212b",
+        sectionHeaderTextColor: "#6ab3f3",
+        subtitleTextColor: "#708499",
+        textColor: "#f5f5f5",
+      },
+      initData: parseInitData(initDataRaw),
+      initDataRaw,
+      version: "7.7",
+      platform: "tdesktop",
+    });
+
+    sessionStorage.setItem("____mocked", "1");
+  }
 }
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/index.tsx b/single-factor-auth-web/sfa-web-ton-telegram-example/src/index.tsx
index 06158613..ea4e551a 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/src/index.tsx
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/index.tsx
@@ -1,10 +1,11 @@
 import ReactDOM from "react-dom/client";
 import "./index.css";
-import TelegramAppWrapper from "./TelegramAppWrapper";
+import App from "./App";
 import reportWebVitals from "./reportWebVitals";
-
+import { useTelegramMock } from "./hooks/useMockTelegramInitData";
 const root = ReactDOM.createRoot(document.getElementById("root") as HTMLElement);
-root.render(<TelegramAppWrapper />);
+useTelegramMock();
+root.render(<App />);
 
 // If you want to start measuring performance in your app, pass a function
 // to log results (for example: reportWebVitals(console.log))
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/src/tonRpc.ts b/single-factor-auth-web/sfa-web-ton-telegram-example/src/tonRpc.ts
index b616ef64..e89d3514 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/src/tonRpc.ts
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/src/tonRpc.ts
@@ -2,21 +2,14 @@ import type { IProvider } from "@web3auth/base";
 import { getHttpEndpoint } from "@orbs-network/ton-access";
 import TonWeb from "tonweb";
 
+const rpc = await getHttpEndpoint(); 
+
 export default class TonRPC {
     private provider: IProvider;
     private tonweb: TonWeb;
 
     constructor(provider: IProvider) {
         this.provider = provider;
-        // Initialize tonweb in the constructor
-        this.initTonWeb();
-    }
-
-    private async initTonWeb() {
-        const rpc = await getHttpEndpoint({
-            network: "testnet",
-            protocol: "json-rpc",
-        });
         this.tonweb = new TonWeb(new TonWeb.HttpProvider(rpc));
     }
 
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/tsconfig.json b/single-factor-auth-web/sfa-web-ton-telegram-example/tsconfig.json
index 74e62edd..31d681c7 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/tsconfig.json
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/tsconfig.json
@@ -11,7 +11,7 @@
       "dom.iterable",
       "esnext"
     ],
-    "module": "es2020",
+    "module": "esnext",
     "moduleResolution": "node",
     "noEmit": true,
     "noFallthroughCasesInSwitch": true,
diff --git a/single-factor-auth-web/sfa-web-ton-telegram-example/vite.config.ts b/single-factor-auth-web/sfa-web-ton-telegram-example/vite.config.ts
index 76c9ac6e..a89a4249 100644
--- a/single-factor-auth-web/sfa-web-ton-telegram-example/vite.config.ts
+++ b/single-factor-auth-web/sfa-web-ton-telegram-example/vite.config.ts
@@ -16,4 +16,13 @@ export default defineConfig({
   build: {
     target: 'es2020',
   },
+  server: {
+    proxy: {
+      "/auth": {
+        target: process.env.SERVER_URL,
+        changeOrigin: true,
+        secure: false,
+      },
+    },
+  },
 });