Skip to content

Commit

Permalink
improve keypair
Browse files Browse the repository at this point in the history
  • Loading branch information
DenisCarriere committed Feb 14, 2024
1 parent cfc2b81 commit b535637
Show file tree
Hide file tree
Showing 5 changed files with 31 additions and 5 deletions.
15 changes: 15 additions & 0 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -64,6 +64,21 @@ x-signature-timestamp: 1707776632
}
```

## Generate Ed25519 public & private key pair

```bash
$ bunx substreams-sink-webhook keypair
{
"publicKey": "36a89085d54d866c60ecccc2bf332d1c0dd5f1a810af175b1cfb7ff9e64b67d6",
"privateKey": "67603675f8160b4e4ca67770eaf7df797f3a9617665a84ec3e9baf92c403fb4f"
}
```
or using `curl`

```bash
$ curl http://localhost:9102/keypair
```

## Validate Ed25519 signature

```typescript
Expand Down
3 changes: 1 addition & 2 deletions bin/cli.ts
Original file line number Diff line number Diff line change
Expand Up @@ -34,8 +34,7 @@ program
.description("Generate random Ed25519 private & public keys")
.action(() => {
const { publicKey, privateKey } = keyPair();
console.log(`PUBLIC_KEY=${publicKey}`);
console.log(`PRIVATE_KEY=${privateKey}`);
process.stdout.write(JSON.stringify({ publicKey, privateKey }, null, 2));
});

program
Expand Down
5 changes: 2 additions & 3 deletions index.ts
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ import type { WebhookRunOptions } from "./bin/cli.js";
import { banner } from "./src/banner.js";
import { toJSON, toText } from "./src/http.js";
import { ping } from "./src/ping.js";
import { checkKey, keyPair } from "./src/auth.js";
import { keyPair, parsePrivateKey } from "./src/auth.js";

export async function action(options: WebhookRunOptions) {
// Block Emitter
Expand All @@ -17,8 +17,7 @@ export async function action(options: WebhookRunOptions) {
const queue = new PQueue({ concurrency: 1 }); // all messages are sent in block order, no need to parallelize

// Ping URL to check if it's valid
const privateKey = options.privateKey;
checkKey(privateKey, "private");
const privateKey = parsePrivateKey(options.privateKey);
if (options.disablePing === "false") {
if (!(await ping(options.webhookUrl, privateKey))) {
logger.error("exiting from invalid PING response");
Expand Down
4 changes: 4 additions & 0 deletions src/auth.spec.ts
Original file line number Diff line number Diff line change
Expand Up @@ -83,3 +83,7 @@ describe("verify", () => {
expect(auth.verify(timestamp, body, sig, publicKey)).toBeTruthy();
});
});

test("parsePrivateKey", () => {
expect(auth.parsePrivateKey(privateKey + publicKey)).toBe(privateKey);
});
9 changes: 9 additions & 0 deletions src/auth.ts
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,15 @@ export function checkKey(key: Hex, type: "public" | "private") {
}
}

// TweetNaCl.js private key (includes public key)
// split the private key from the public key
export function parsePrivateKey(privateKey: string) {
if (typeof privateKey === "string" && privateKey.length === 128) {
return privateKey.slice(0, 64);
}
return privateKey;
}

export function checkSignature(signature: Hex) {
const length = typeof signature === "string" ? 128 : 64;
if (signature.length !== length) {
Expand Down

0 comments on commit b535637

Please sign in to comment.