feat: add getAuthContext component

Ansonhkg · Ansonhkg · commit 85a79b4a0f29 · 2025-04-23T16:31:40.000+01:00
diff --git a/packages/auth/src/lib/AuthManager/authContexts/getEoaAuthContext.ts b/packages/auth/src/lib/AuthManager/authContexts/getEoaAuthContext.ts
@@ -1,7 +1,6 @@
 import {
   createSiweMessageWithRecaps,
-  generateAuthSig,
-  ResourceAbilityRequestBuilder,
+  generateAuthSig
 } from '@lit-protocol/auth-helpers';
 import { LitNodeClient } from '@lit-protocol/lit-node-client';
 import {
@@ -20,24 +19,15 @@ interface GetEoaAuthContextParams {
     };
     signerAddress: `0x${string}`;
   };
-  resources?: LitResourceAbilityRequest[];
+  resources: LitResourceAbilityRequest[];
   capabilityAuthSigs?: AuthSig[];
 }
 
-export const getEoaAuthContext = ({
-  litNodeClient,
-  identity: { pkpPublicKey, signer, signerAddress },
-  resources,
-  capabilityAuthSigs,
-}: GetEoaAuthContextParams) => {
-  const resourceBuilder = new ResourceAbilityRequestBuilder();
-  resourceBuilder.addPKPSigningRequest('*');
-  const resourceRequests = resourceBuilder.build();
-
+export const getEoaAuthContext = (params: GetEoaAuthContextParams) => {
   return {
-    pkpPublicKey,
+    pkpPublicKey: params.identity.pkpPublicKey,
     chain: 'ethereum',
-    resourceAbilityRequests: resources || resourceRequests,
+    resourceAbilityRequests: params.resources,
     authNeededCallback: async ({
       uri,
       expiration,
@@ -59,20 +49,20 @@ export const getEoaAuthContext = ({
         uri: uri,
         expiration: expiration,
         resources: resourceAbilityRequests,
-        walletAddress: signerAddress,
-        nonce: await litNodeClient.getLatestBlockhash(),
-        litNodeClient: litNodeClient,
+        walletAddress: params.identity.signerAddress,
+        nonce: await params.litNodeClient.getLatestBlockhash(),
+        litNodeClient: params.litNodeClient,
       });
 
       const authSig = await generateAuthSig({
-        signer: signer,
+        signer: params.identity.signer,
         toSign,
       });
 
       return authSig;
     },
-    ...(capabilityAuthSigs && {
-      capabilityAuthSigs: [...capabilityAuthSigs],
+    ...(params.capabilityAuthSigs && {
+      capabilityAuthSigs: [...params.capabilityAuthSigs],
     }),
   };
 };
diff --git a/packages/auth/src/lib/AuthManager/authContexts/getPkpAuthContext.ts b/packages/auth/src/lib/AuthManager/authContexts/getPkpAuthContext.ts
@@ -0,0 +1,43 @@
+import { LitNodeClient } from '@lit-protocol/lit-node-client';
+import {
+  AuthMethod,
+  AuthSig,
+  AuthenticationContext,
+  LitResourceAbilityRequest,
+} from '@lit-protocol/types';
+import { Hex } from 'viem';
+
+/**
+ * Interface for parameters required to get the native auth context.
+ */
+interface GetNativeAuthContextParams {
+  litNodeClient: LitNodeClient;
+  identity: {
+    pkpPublicKey: Hex;
+    authMethods: AuthMethod[];
+  };
+  resources: LitResourceAbilityRequest[];
+  capabilityAuthSigs?: AuthSig[];
+  expiration?: string;
+}
+
+/**
+ * Get the auth context for a Lit supported native auth method (eg. WebAuthn, Discord, Google).
+ * This context is needed for requesting session signatures with PKP-based authentication.
+ *
+ * @param {GetNativeAuthContextParams} params - Parameters for getting the native auth context.
+ * @returns {AuthenticationContext} The authentication context object.
+ */
+export const getPkpAuthContext = (
+  params: GetNativeAuthContextParams
+): AuthenticationContext => {
+  const authContext = params.litNodeClient.getPkpAuthContext({
+    pkpPublicKey: params.identity.pkpPublicKey,
+    authMethods: params.identity.authMethods,
+    expiration: params.expiration,
+    resourceAbilityRequests: params.resources,
+    capabilityAuthSigs: params.capabilityAuthSigs,
+  });
+
+  return authContext;
+};
diff --git a/packages/auth/src/lib/AuthManager/getAuthContext.ts b/packages/auth/src/lib/AuthManager/getAuthContext.ts
@@ -1,62 +1,132 @@
-import { AUTH_METHOD_TYPE_TYPE } from '@lit-protocol/constants';
+import { ResourceAbilityRequestBuilder } from '@lit-protocol/auth-helpers';
+import { LitNodeClient } from '@lit-protocol/lit-node-client';
 import {
-  AuthCallbackParams,
+  AuthenticationContext,
+  AuthMethod,
   AuthSig,
   LitResourceAbilityRequest,
 } from '@lit-protocol/types';
+import { Hex } from 'viem';
 import { getEoaAuthContext } from './authContexts/getEoaAuthContext';
-import { LitNodeClient } from '@lit-protocol/lit-node-client';
+import { getPkpAuthContext } from './authContexts/getPkpAuthContext';
 
-export interface AuthenticationContext {
-  pkpPublicKey: string;
-  chain: string;
-  resourceAbilityRequests: LitResourceAbilityRequest[];
-  authNeededCallback: (params: AuthCallbackParams) => Promise<AuthSig>;
+interface BaseAuthContextParams {
+  pkpPublicKey: Hex;
+  litNodeClient: LitNodeClient;
   capabilityAuthSigs?: AuthSig[];
+  resources?: LitResourceAbilityRequest[];
 }
 
-export interface GetAuthContextParams {
-  authMethodType: AUTH_METHOD_TYPE_TYPE;
-  pkpAddress: `0x${string}`;
-  litNodeClient: LitNodeClient;
+interface EthWalletAuthParams extends BaseAuthContextParams {
+  authMethodType: 'EthWallet';
   signer: {
     signMessage: (message: any) => Promise<string>;
-    getAddress?: () => Promise<string>;
+    address: string | Hex;
   };
 }
 
-export const getAuthContext = (
+interface PkpAuthParams extends BaseAuthContextParams {
+  authMethodType:
+    | 'Google'
+    | 'Discord'
+    | 'WebAuthn'
+    | 'StytchEmailFactorOtp'
+    | 'StytchSmsFactorOtp';
+  authMethods: AuthMethod[];
+}
+
+export type GetAuthContextParams = EthWalletAuthParams | PkpAuthParams;
+
+/**
+ * Get Auth Context prepares the ingredients for the Auth Context
+ */
+export const getAuthContext = async (
   params: GetAuthContextParams
-): AuthenticationContext => {
+): Promise<AuthenticationContext> => {
+  let finalResources = params.resources;
+  if (!finalResources) {
+    const resourceBuilder = new ResourceAbilityRequestBuilder();
+    resourceBuilder.addPKPSigningRequest('*');
+    finalResources = resourceBuilder.build();
+  }
+
+  const finalCapabilityAuthSigs = [...(params.capabilityAuthSigs ?? [])];
+
   switch (params.authMethodType) {
-    case 'EthWallet':
+    case 'EthWallet': {
+      const { signer } = params;
+
+      if (!signer.address) {
+        throw new Error(
+          'For EthWallet auth method, signer object must have an `address` property.'
+        );
+      }
+
+      const signerAddress = signer.address;
+      const finalSignerAddress = (
+        signerAddress?.startsWith('0x') ? signerAddress : `0x${signerAddress}`
+      ) as Hex;
+
       return getEoaAuthContext({
         litNodeClient: params.litNodeClient,
         identity: {
-          pkpPublicKey: params.pkpAddress,
-          signer: params.signer,
-          signerAddress: params.pkpAddress,
+          signer: signer,
+          signerAddress: finalSignerAddress,
+          pkpPublicKey: params.pkpPublicKey,
+        },
+        resources: finalResources,
+        capabilityAuthSigs: finalCapabilityAuthSigs,
+      });
+    }
+    case 'Google':
+    case 'Discord':
+    case 'WebAuthn':
+    case 'StytchEmailFactorOtp':
+    case 'StytchSmsFactorOtp': {
+      const { authMethods } = params;
+      return getPkpAuthContext({
+        litNodeClient: params.litNodeClient,
+        identity: {
+          pkpPublicKey: params.pkpPublicKey,
+          authMethods: authMethods,
         },
+        resources: finalResources,
+        capabilityAuthSigs: finalCapabilityAuthSigs,
       });
+    }
     default:
-      throw new Error(`Unsupported auth method type: ${params.authMethodType}`);
+      throw new Error(
+        `Unsupported or unhandled auth method type: ${
+          (params as any).authMethodType
+        }`
+      );
   }
 };
 
 // if (import.meta.main) {
-//   const litNodeClient = new LitNodeClient({
-//     litNetwork: 'naga-dev',
-//   });
-//   const authContext = getAuthContext({
-//     authMethodType: 'EthWallet',
-//     pkpAddress: '0x0000000000000000000000000000000000000000',
-//     litNodeClient: litNodeClient,
-//     signer: {
-//       signMessage: async (message: any) => {
-//         return '0x0000000000000000000000000000000000000000';
-//       },
-//     },
-//   });
-
-//   console.log('authContext', authContext);
+//   (async () => {
+//     const litNodeClient = new LitNodeClient({
+//       litNetwork: 'naga-dev',
+//       debug: false,
+//     });
+
+//     await litNodeClient.connect();
+
+//     const anvilPrivateKey =
+//       '0x59c6995e998f97a5a0044966f0945389dc9e86dae88c7a8412f4603b6b78690d';
+
+//     const ethersWallet = new ethers.Wallet(anvilPrivateKey);
+//     const viemAccount = privateKeyToAccount(anvilPrivateKey);
+
+//     const authContext = await getAuthContext({
+//       authMethodType: 'EthWallet',
+//       litNodeClient: litNodeClient,
+//       signer: ethersWallet,
+//       pkpPublicKey:
+//         '0x04e5603fe1cc5ce207c12950939738583b599f22a152c3672a4c0eee887d75dd405246ac3ed2430283935a99733eac9520581af9923c0fc04fad1d67d60908ce18',
+//     });
+
+//     console.log('authContext', authContext);
+//     process.exit();
+//   })();
 // }
