ditto/src/sign.ts

import { type AppContext } from '@/app.ts';
import { getEventHash, getPublicKey, getSignature, HTTPException } from '@/deps.ts';
import ws from '@/stream.ts';

import type { Event, EventTemplate, SignedEvent } from '@/event.ts';

/** Get signing WebSocket from app context. */
function getSignStream(c: AppContext): WebSocket | undefined {
  const pubkey = c.get('pubkey');
  const session = c.get('session');

  if (pubkey && session) {
    const [socket] = ws.getSockets(`nostr:${pubkey}:${session}`);
    return socket;
  }
}

/**
 * Sign Nostr event using the app context.
 *
 * - If a secret key is provided, it will be used to sign the event.
 * - If a signing WebSocket is provided, it will be used to sign the event.
 */
async function signEvent<K extends number = number>(event: EventTemplate<K>, c: AppContext): Promise<SignedEvent<K>> {
  const seckey = c.get('seckey');
  const stream = getSignStream(c);

  if (!seckey && stream) {
    try {
      return await new Promise<SignedEvent<K>>((resolve, reject) => {
        const handleMessage = (e: MessageEvent) => {
          // TODO: parse and validate with zod
          const data = JSON.parse(e.data);
          if (data.event === 'nostr.sign') {
            stream.removeEventListener('message', handleMessage);
            resolve(JSON.parse(data.payload));
          }
        };
        stream.addEventListener('message', handleMessage);
        stream.send(JSON.stringify({ event: 'nostr.sign', payload: JSON.stringify(event) }));
        setTimeout(() => {
          stream.removeEventListener('message', handleMessage);
          reject();
        }, 60000);
      });
    } catch (_e) {
      throw new HTTPException(408, {
        res: c.json({ id: 'ditto.timeout', error: 'Signing timeout' }, 408),
      });
    }
  }

  if (!seckey) {
    throw new HTTPException(400, {
      res: c.json({ id: 'ditto.private_key', error: 'No private key' }, 400),
    });
  }

  (event as Event<K>).pubkey = getPublicKey(seckey);
  (event as Event<K>).id = getEventHash(event as Event<K>);
  (event as Event<K>).sig = getSignature(event as Event<K>, seckey);

  return event as SignedEvent<K>;
}

export { signEvent };
Sign events from app context 2023-04-30 02:48:22 +00:00			`import { type AppContext } from '@/app.ts';`
Throw a user-friendly error when a private key isn't provided 2023-05-07 20:43:38 +00:00			`import { getEventHash, getPublicKey, getSignature, HTTPException } from '@/deps.ts';`
Build a websocket topics framework 2023-05-21 00:39:05 +00:00			`import ws from '@/stream.ts';`
Sign events from app context 2023-04-30 02:48:22 +00:00
			`import type { Event, EventTemplate, SignedEvent } from '@/event.ts';`

Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`/** Get signing WebSocket from app context. */`
			`function getSignStream(c: AppContext): WebSocket \| undefined {`
Build a websocket topics framework 2023-05-21 00:39:05 +00:00			`const pubkey = c.get('pubkey');`
			`const session = c.get('session');`

			`if (pubkey && session) {`
			const [socket] = ws.getSockets(`nostr:${pubkey}:${session}`);
			`return socket;`
			`}`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`}`

Update streaming comments 2023-05-14 01:16:44 +00:00			`/**`
			`* Sign Nostr event using the app context.`
			`*`
			`* - If a secret key is provided, it will be used to sign the event.`
			`* - If a signing WebSocket is provided, it will be used to sign the event.`
			`*/`
Sign events from app context 2023-04-30 02:48:22 +00:00			`async function signEvent<K extends number = number>(event: EventTemplate<K>, c: AppContext): Promise<SignedEvent<K>> {`
Throw a user-friendly error when a private key isn't provided 2023-05-07 20:43:38 +00:00			`const seckey = c.get('seckey');`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`const stream = getSignStream(c);`

Update streaming comments 2023-05-14 01:16:44 +00:00			`if (!seckey && stream) {`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`try {`
			`return await new Promise<SignedEvent<K>>((resolve, reject) => {`
Build a websocket topics framework 2023-05-21 00:39:05 +00:00			`const handleMessage = (e: MessageEvent) => {`
sign: 504 --> 408 2023-05-14 02:25:43 +00:00			`// TODO: parse and validate with zod`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`const data = JSON.parse(e.data);`
			`if (data.event === 'nostr.sign') {`
Build a websocket topics framework 2023-05-21 00:39:05 +00:00			`stream.removeEventListener('message', handleMessage);`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`resolve(JSON.parse(data.payload));`
			`}`
Build a websocket topics framework 2023-05-21 00:39:05 +00:00			`};`
			`stream.addEventListener('message', handleMessage);`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`stream.send(JSON.stringify({ event: 'nostr.sign', payload: JSON.stringify(event) }));`
Build a websocket topics framework 2023-05-21 00:39:05 +00:00			`setTimeout(() => {`
			`stream.removeEventListener('message', handleMessage);`
			`reject();`
			`}, 60000);`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`});`
			`} catch (_e) {`
sign: 504 --> 408 2023-05-14 02:25:43 +00:00			`throw new HTTPException(408, {`
			`res: c.json({ id: 'ditto.timeout', error: 'Signing timeout' }, 408),`
Websocket signing kind of works!! 2023-05-14 00:46:47 +00:00			`});`
			`}`
			`}`
Throw a user-friendly error when a private key isn't provided 2023-05-07 20:43:38 +00:00
			`if (!seckey) {`
			`throw new HTTPException(400, {`
			`res: c.json({ id: 'ditto.private_key', error: 'No private key' }, 400),`
			`});`
			`}`
Sign events from app context 2023-04-30 02:48:22 +00:00
			`(event as Event<K>).pubkey = getPublicKey(seckey);`
			`(event as Event<K>).id = getEventHash(event as Event<K>);`
			`(event as Event<K>).sig = getSignature(event as Event<K>, seckey);`

			`return event as SignedEvent<K>;`
			`}`

			`export { signEvent };`