feat: start using zod for schema validation and type definitions

Author: FedericoAmura

package.json

@@ -42,8 +42,8 @@
     "@dotenvx/dotenvx": "^1.6.4",
     "@ethersproject/abi": "^5.7.0",
     "@ethersproject/providers": "^5.7.2",
-    "@lit-protocol/contracts": "^0.0.63",
     "@lit-protocol/accs-schemas": "^0.0.12",
+    "@lit-protocol/contracts": "^0.0.63",
     "@metamask/eth-sig-util": "5.0.2",
     "@mysten/sui.js": "^0.37.1",
     "@openagenda/verror": "^3.1.4",
@@ -72,7 +72,9 @@
     "tslib": "^2.7.0",
     "tweetnacl": "^1.0.3",
     "tweetnacl-util": "^0.15.1",
-    "uint8arrays": "^4.0.3"
+    "uint8arrays": "^4.0.3",
+    "zod": "^3.23.8",
+    "zod-validation-error": "^3.4.0"
   },
   "devDependencies": {
     "@nrwl/devkit": "19.6.3",
@@ -98,11 +100,11 @@
     "buffer": "^6.0.3",
     "chalk": "^5.3.0",
     "cypress": "11.0.1",
-    "esbuild-node-externals": "^1.14.0",
     "cypress-metamask": "^1.0.5-development",
     "cypress-metamask-v2": "^1.7.2",
     "esbuild": "^0.17.3",
     "esbuild-node-builtins": "^0.1.0",
+    "esbuild-node-externals": "^1.14.0",
     "esbuild-plugin-tsc": "^0.4.0",
     "eslint": "8.48.0",
     "eslint-config-next": "12.2.3",

packages/contracts-sdk/src/lib/contracts-sdk.ts

@@ -6,8 +6,11 @@ import {
   EpochInfo,
   GasLimitParam,
   LIT_NETWORKS_KEYS,
+  LitNetworkKeysSchema,
   LitContractContext,
+  LitContractContextSchema,
   LitContractResolverContext,
+  LitContractResolverContextSchema,
   MintCapacityCreditsContext,
   MintCapacityCreditsRes,
   MintNextAndAddAuthMethods,
@@ -638,9 +641,11 @@ export class LitContracts {
     context?: LitContractContext | LitContractResolverContext,
     rpcUrl?: string
   ) {
+    const _network = LitNetworkKeysSchema.parse(network);
+
     let provider: ethers.providers.StaticJsonRpcProvider;
 
-    const _rpcUrl = rpcUrl || RPC_URL_BY_NETWORK[network];
+    const _rpcUrl = rpcUrl || RPC_URL_BY_NETWORK[_network];
 
     if (context && 'provider' in context!) {
       provider = context.provider;
@@ -653,7 +658,7 @@ export class LitContracts {
 
     if (!context) {
       const contractData = await LitContracts._resolveContractContext(
-        network
+        _network
         //context
       );
 
@@ -669,7 +674,7 @@ export class LitContracts {
             info: {
               address,
               abi,
-              network,
+              _network,
             },
           },
           '❌ Required contract data is missing'
@@ -718,7 +723,7 @@ export class LitContracts {
         }
         // eslint-disable-next-line @typescript-eslint/ban-ts-comment
         //@ts-ignore data is callable as an array type
-        const stakingABI = NETWORK_CONTEXT_BY_NETWORK[network].data.find(
+        const stakingABI = NETWORK_CONTEXT_BY_NETWORK[_network].data.find(
           (data: any) => {
             return data.name === 'Staking';
           }
@@ -737,9 +742,10 @@ export class LitContracts {
     provider: ethers.providers.StaticJsonRpcProvider,
     contractNames?: ContractName[]
   ): Promise<LitContractContext> {
+    const _context = LitContractResolverContextSchema.parse(context);
     const resolverContract = new ethers.Contract(
-      context.resolverAddress,
-      context.abi,
+      _context.resolverAddress,
+      _context.abi,
       provider
     );
 
@@ -847,10 +853,13 @@ export class LitContracts {
       // if there is a resolver address we use the resolver contract to query the rest of the contracts
       // here we override context to be what is returned from the resolver which is of type LitContractContext
       if (context?.resolverAddress) {
+        const _context = LitContractResolverContextSchema.parse(context);
         context = await LitContracts._getContractsFromResolver(
-          context as LitContractResolverContext,
+          _context,
           provider
         );
+      } else {
+        context = LitContractContextSchema.parse(context);
       }
 
       const flatten = [];

packages/lit-node-client-nodejs/src/lib/lit-node-client-nodejs.ts

@@ -154,7 +154,7 @@ export class LitNodeClientNodeJs
 
     super(args);
 
-    if (args !== undefined && args !== null && 'defaultAuthCallback' in args) {
+    if ('defaultAuthCallback' in args) {
       this.defaultAuthCallback = args.defaultAuthCallback;
     }
   }

packages/misc/src/lib/helper/session-sigs-validator.spec.ts

@@ -10,6 +10,7 @@ describe('validateSessionSigs', () => {
       capabilities: [
         {
           sig: 'valid-capability-sig',
+          derivedVia: 'some-method',
           signedMessage: `Capability Signed Message
 Expiration Time: 2099-12-31T23:59:59Z`,
           address: '0xValidAddress',
@@ -43,7 +44,7 @@ Expiration Time: 2099-12-31T23:59:59Z`,
 
     expect(validationResult.isValid).toBe(false);
     expect(validationResult.errors).toContain(
-      "Session Sig 'session1': Main signedMessage is not valid JSON."
+      "Session Sig 'session1': Main signedMessage is not valid."
     );
   });
 
@@ -65,7 +66,7 @@ Expiration Time: 2099-12-31T23:59:59Z`,
 
     expect(validationResult.isValid).toBe(false);
     expect(validationResult.errors).toContain(
-      "Session Sig 'session1': Capabilities not found in main signedMessage."
+      `Session Sig 'session1': Validation error: Required at "capabilities"`
     );
   });
 
@@ -87,7 +88,9 @@ Expiration Time: 2099-12-31T23:59:59Z`,
 
     expect(validationResult.isValid).toBe(false);
     expect(validationResult.errors).toContainEqual(
-      expect.stringContaining('No capabilities found in main signedMessage.')
+      expect.stringContaining(
+        `Session Sig 'session1': Validation error: Array must contain at least 1 element(s) at "capabilities"`
+      )
     );
   });
 
@@ -199,6 +202,7 @@ Expiration Time: invalid-date-format`; // Invalid expiration date in capability
         capabilities: [
           {
             sig: 'valid-capability-sig',
+            derivedVia: 'some-method',
             signedMessage: `Capability Signed Message
 Expiration Time: invalid-date-format`, // Invalid date format
             address: '0xValidAddress',
@@ -218,7 +222,7 @@ Expiration Time: invalid-date-format`, // Invalid date format
 
     expect(validationResult.isValid).toBe(false);
     expect(validationResult.errors).toContain(
-      "Session Sig 'session2': Main signedMessage is not valid JSON."
+      "Session Sig 'session2': Main signedMessage is not valid."
     );
     expect(validationResult.errors).toContainEqual(
       expect.stringContaining(

packages/misc/src/lib/helper/session-sigs-validator.ts

@@ -1,8 +1,10 @@
+import { fromError, isZodErrorLike } from 'zod-validation-error';
 import {
   AuthSig,
   Capability,
   ParsedSessionMessage,
   ParsedSignedMessage,
+  ParsedSessionMessageSchema,
   SessionSigsMap,
 } from '@lit-protocol/types';
 
@@ -135,32 +137,41 @@ function parseCapabilities(capabilities: Capability[]): ValidationResult {
 export function validateSessionSig(sessionSig: AuthSig): ValidationResult {
   const errors: string[] = [];
 
-  // Parse the main signedMessage
-  let parsedSignedMessage: ParsedSessionMessage;
+  // JSON Parse the main signedMessage
+  let signedMessage: any;
   try {
-    parsedSignedMessage = JSON.parse(sessionSig.signedMessage);
+    signedMessage = JSON.parse(sessionSig.signedMessage);
   } catch (error) {
-    errors.push('Main signedMessage is not valid JSON.');
+    errors.push('Main signedMessage is not valid.');
+    if (isZodErrorLike(error)) {
+      const validationError = fromError(error);
+      errors.push(validationError.toString());
+    }
     return { isValid: false, errors };
   }
 
-  // Validate capabilities
-  const capabilities: Capability[] = parsedSignedMessage.capabilities;
+  // Validate signedMessage schema
+  let parsedSessionMessage: ParsedSessionMessage;
+  try {
+    parsedSessionMessage = ParsedSessionMessageSchema.parse(signedMessage);
+  } catch (error) {
+    if (isZodErrorLike(error)) {
+      const validationError = fromError(error);
+      errors.push(validationError.toString());
+    }
+    return { isValid: false, errors };
+  }
 
-  if (!capabilities) {
-    errors.push('Capabilities not found in main signedMessage.');
-  } else if (capabilities.length === 0) {
-    errors.push('No capabilities found in main signedMessage.');
-  } else {
-    const capabilitiesValidationResult = parseCapabilities(capabilities);
+  // Validate capabilities
+  const capabilities: Capability[] = parsedSessionMessage.capabilities;
+  const capabilitiesValidationResult = parseCapabilities(capabilities);
 
-    if (!capabilitiesValidationResult.isValid) {
-      errors.push(...capabilitiesValidationResult.errors);
-    }
+  if (!capabilitiesValidationResult.isValid) {
+    errors.push(...capabilitiesValidationResult.errors);
   }
 
   // Validate outer expiration
-  const outerExpirationTimeStr = parsedSignedMessage['expiration'];
+  const outerExpirationTimeStr = parsedSessionMessage['expiration'];
 
   if (outerExpirationTimeStr) {
     const validationResult = validateExpiration(