feat: moved mbe ping enclave to api-ts

Ticket: WP-4593

Author: mohammadalfaiyazbitgo

cert.key

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

package.json

@@ -14,14 +14,19 @@
     "test:watch": "jest --watch",
     "test:coverage": "jest --coverage",
     "lint": "eslint --quiet .",
-    "generate-test-ssl": "openssl req -x509 -newkey rsa:2048 -keyout test-ssl-key.pem -out test-ssl-cert.pem -days 365 -nodes -subj '/CN=localhost'"
+    "generate-test-ssl": "openssl req -x509 -newkey rsa:2048 -keyout test-ssl-key.pem -out test-ssl-cert.pem -days 365 -nodes -subj '/CN=localhost'",
+    "generate-openapi": "npx openapi-generator ./src/masterExpressApi.ts > src/masterExpressApi.openapi.json"
   },
   "dependencies": {
     "@bitgo/sdk-core": "^33.2.0",
     "bitgo": "^44.2.0",
     "body-parser": "^1.20.3",
     "connect-timeout": "^1.9.0",
     "debug": "^3.1.0",
+    "@api-ts/io-ts-http": "^3.2.1",
+    "@api-ts/express-wrapper": "^1.0.33",
+    "@api-ts/response": "^2.1.0",
+    "io-ts": "~2.1.3",
     "express": "4.17.3",
     "lodash": "^4.17.20",
     "morgan": "^1.9.1",
@@ -31,6 +36,7 @@
     "zod": "^3.25.48"
   },
   "devDependencies": {
+    "@api-ts/openapi-generator": "^5.7.0",
     "@types/body-parser": "^1.17.0",
     "@types/connect-timeout": "^1.9.0",
     "@types/debug": "^4.1.12",

src/config.ts

@@ -209,7 +209,7 @@ function masterExpressEnvConfig(): Partial<MasterExpressConfig> {
     timeout: Number(readEnvVar('BITGO_TIMEOUT')),
     keepAliveTimeout: Number(readEnvVar('BITGO_KEEP_ALIVE_TIMEOUT')),
     headersTimeout: Number(readEnvVar('BITGO_HEADERS_TIMEOUT')),
-    // BitGo API settings
+    // BitGo MasterExpressApi settings
     env: readEnvVar('BITGO_ENV') as EnvironmentName,
     customRootUri: readEnvVar('BITGO_CUSTOM_ROOT_URI'),
     enableSSL: readEnvVar('BITGO_ENABLE_SSL') !== 'false', // Default to true unless explicitly set to false

src/errors.ts

@@ -17,7 +17,7 @@ export class EnclavedError extends Error {
 }
 
 /**
- * Error for API responses
+ * Error for MasterExpressApi responses
  */
 export class ApiResponseError extends EnclavedError {
   public result: any;

src/masterBitgoExpress/enclavedExpressClient.ts

@@ -70,7 +70,7 @@ export class EnclavedExpressClient {
     try {
       debugLogger('Creating independent keychain for coin: %s', this.coin);
       const { body: keychain } = await superagent
-        .post(`${this.url}/api/${this.coin}/key/independent`)
+        .post(`${this.url}/${this.coin}/key/independentKey`)
         .ca(this.sslCert)
         .agent(
           new https.Agent({

src/masterBitgoExpress/generateWallet.ts

@@ -1,68 +1,65 @@
 import {
-  GenerateWalletOptions,
   promiseProps,
   RequestTracer,
   SupplementGenerateWalletOptions,
   Keychain,
   KeychainsTriplet,
-  Wallet,
   WalletWithKeychains,
   AddKeychainOptions,
+  WalletData,
 } from '@bitgo/sdk-core';
 import { createEnclavedExpressClient } from './enclavedExpressClient';
-import _ from 'lodash';
-import { BitGoRequest } from '../types/request';
+import { BitGo } from 'bitgo';
+
+export type GenerateWalletOnPremParams = {
+  coin: string;
+  label: string;
+  enterprise?: string;
+  multisigType?: string;
+  isDistributedCustody?: boolean;
+};
 
 /**
  * This route is used to generate a multisig wallet when enclaved express is enabled
  */
-export async function handleGenerateWalletOnPrem(req: BitGoRequest) {
-  const bitgo = req.bitgo;
-  const baseCoin = bitgo.coin(req.params.coin);
-
-  const enclavedExpressClient = createEnclavedExpressClient(req.params.coin);
+export async function handleGenerateWalletOnPrem({
+  bitGo,
+  params,
+}: {
+  bitGo: BitGo;
+  params: GenerateWalletOnPremParams;
+}): Promise<WalletWithKeychains> {
+  const baseCoin = bitGo.coin(params.coin);
+
+  const enclavedExpressClient = createEnclavedExpressClient(params.coin);
   if (!enclavedExpressClient) {
     throw new Error(
       'Enclaved express client not configured - enclaved express features will be disabled',
     );
   }
 
-  const params = req.body as GenerateWalletOptions;
   const reqId = new RequestTracer();
 
   // Assign the default multiSig type value based on the coin
   if (!params.multisigType) {
     params.multisigType = baseCoin.getDefaultMultisigType();
   }
 
-  if (typeof params.label !== 'string') {
-    throw new Error('missing required string parameter label');
-  }
-
-  const { label, enterprise } = params;
-
   // Create wallet parameters with type assertion to allow 'onprem' subtype
   const walletParams = {
-    label: label,
+    label: params.label,
     m: 2,
     n: 3,
     keys: [],
     type: 'cold',
-    subType: 'onprem',
+    subType: 'onPrem',
     multisigType: 'onchain',
   } as unknown as SupplementGenerateWalletOptions; // TODO: Add onprem to the SDK subType and remove "unknown" type casting
 
-  if (!_.isUndefined(enterprise)) {
-    if (!_.isString(enterprise)) {
-      throw new Error('invalid enterprise argument, expecting string');
-    }
-    walletParams.enterprise = enterprise;
-  }
-
   const userKeychainPromise = async (): Promise<Keychain> => {
     const userKeychain = await enclavedExpressClient.createIndependentKeychain({
       source: 'user',
-      coin: req.params.coin,
+      coin: params.coin,
       type: 'independent',
     });
     const userKeychainParams: AddKeychainOptions = {
@@ -73,13 +70,13 @@ export async function handleGenerateWalletOnPrem(req: BitGoRequest) {
     };
 
     const newUserKeychain = await baseCoin.keychains().add(userKeychainParams);
-    return _.extend({}, newUserKeychain, userKeychain);
+    return { ...newUserKeychain, ...userKeychain };
   };
 
   const backupKeychainPromise = async (): Promise<Keychain> => {
     const backupKeychain = await enclavedExpressClient.createIndependentKeychain({
       source: 'backup',
-      coin: req.params.coin,
+      coin: params.coin,
       type: 'independent',
     });
     const backupKeychainParams: AddKeychainOptions = {
@@ -90,7 +87,7 @@ export async function handleGenerateWalletOnPrem(req: BitGoRequest) {
     };
 
     const newBackupKeychain = await baseCoin.keychains().add(backupKeychainParams);
-    return _.extend({}, newBackupKeychain, backupKeychain);
+    return { ...newBackupKeychain, ...backupKeychain };
   };
 
   const { userKeychain, backupKeychain, bitgoKeychain }: KeychainsTriplet = await promiseProps({
@@ -113,16 +110,21 @@ export async function handleGenerateWalletOnPrem(req: BitGoRequest) {
 
   const finalWalletParams = await baseCoin.supplementGenerateWallet(walletParams, keychains);
 
-  bitgo.setRequestTracer(reqId);
-  const newWallet = await bitgo.post(baseCoin.url('/wallet/add')).send(finalWalletParams).result();
+  bitGo.setRequestTracer(reqId);
+  const wallet = await baseCoin.wallets().add({
+    ...finalWalletParams,
+    enterprise: params.enterprise,
+    reqId,
+    isDistributedCustody: params.isDistributedCustody,
+  });
 
-  const result: WalletWithKeychains = {
-    wallet: new Wallet(bitgo, baseCoin, newWallet),
+  const result = {
+    wallet: wallet as WalletData,
     userKeychain: userKeychain,
     backupKeychain: backupKeychain,
     bitgoKeychain: bitgoKeychain,
     responseType: 'WalletWithKeychains',
   };
 
-  return { ...result, wallet: result.wallet.toJSON() };
+  return result as unknown as WalletWithKeychains;
 }