Merge pull request #105 from MeshJS/API

QSchlegel · web-flow · commit 74ac03244752 · 2025-06-24T15:37:11.000+02:00
add submitDatum endpoint
diff --git a/prisma/migrations/20250624120947_add_signable_callback_remote/migration.sql b/prisma/migrations/20250624120947_add_signable_callback_remote/migration.sql
@@ -0,0 +1,3 @@
+-- AlterTable
+ALTER TABLE "Signable" ADD COLUMN     "callbackUrl" TEXT,
+ADD COLUMN     "remoteOrigin" TEXT;
diff --git a/prisma/schema.prisma b/prisma/schema.prisma
@@ -60,6 +60,8 @@ model Signable {
   state             Int
   createdAt         DateTime @default(now())
   updatedAt         DateTime @updatedAt
+  callbackUrl       String?
+  remoteOrigin      String?
 }
 
 model NewWallet {
diff --git a/src/components/pages/wallet/signing/signable-card.tsx b/src/components/pages/wallet/signing/signable-card.tsx
@@ -2,15 +2,13 @@ import React, { useMemo, useState, useCallback } from "react";
 import { Signable } from "@prisma/client";
 
 import { useWallet } from "@meshsdk/react";
-import { csl } from "@meshsdk/core-csl";
-import { pubKeyAddress, serializeAddressObj } from "@meshsdk/core";
 import { sign } from "@/utils/signing";
 
 import { useToast } from "@/hooks/use-toast";
 import useAppWallet from "@/hooks/useAppWallet";
 import { api } from "@/utils/api";
 import { useUserStore } from "@/lib/zustand/user";
-import { dateToFormatted, getFirstAndLast, lovelaceToAda } from "@/utils/strings";
+import { dateToFormatted, getFirstAndLast } from "@/utils/strings";
 import sendDiscordMessage from "@/lib/discord/sendDiscordMessage";
 import { TooltipProvider, TooltipTrigger } from "@radix-ui/react-tooltip";
 import { QuestionMarkIcon } from "@radix-ui/react-icons";
@@ -224,7 +222,7 @@ function SignableCard({
     try {
       setLoading(true);
       const userRewardAddress = (await wallet.getRewardAddresses())[0];
-      const nonce = generateNonce("Reject this transaction: ");
+      const nonce = generateNonce("Reject this Datum: ");
       const signature = await wallet.signData(nonce, userRewardAddress);
       const result = await checkSignature(nonce, signature);
 
@@ -314,7 +312,7 @@ function SignableCard({
               </DropdownMenuItem>
               <DropdownMenuSeparator />
               <DropdownMenuItem onClick={deletePayload}>
-                Delete Transaction
+                Delete Datum
               </DropdownMenuItem>
             </DropdownMenuContent>
           </DropdownMenu>
@@ -344,7 +342,8 @@ function SignableCard({
                 </TableHeader>
                 <TableBody>
                   {signable.signatures.map((sigStr, idx) => {
-                    const [sigPart = "", keyPart = ""] = sigStr.split(", key: ");
+                    const [sigPart = "", keyPart = ""] =
+                      sigStr.split(", key: ");
                     const signature = sigPart.replace("signature: ", "");
                     return (
                       <TableRow key={idx}>
diff --git a/src/pages/api/v1/addTransaction.ts b/src/pages/api/v1/addTransaction.ts
@@ -2,10 +2,13 @@ import type { NextApiRequest, NextApiResponse } from "next";
 import { db } from "@/server/db";
 import { verifyJwt } from "@/lib/verifyJwt";
 import { cors } from "@/lib/cors";
+import { getProvider } from "@/utils/get-provider";
 
-export default async function handler(req: NextApiRequest, res: NextApiResponse) {
-
-    await cors(req, res);
+export default async function handler(
+  req: NextApiRequest,
+  res: NextApiResponse,
+) {
+  await cors(req, res);
   if (req.method === "OPTIONS") {
     return res.status(200).end();
   }
@@ -31,48 +34,59 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
     expires: new Date(Date.now() + 60 * 60 * 1000).toISOString(),
   };
 
+  const {
+    walletId,
+    address,
+    txCbor,
+    txJson,
+    description = "External Tx",
+    callbackUrl,
+  } = req.body;
 
-//JSON.stringify(txBuilder.meshTxBuilderBody),
-
-
-  const { walletId, address, txCbor, txJson, description="External Tx" } = req.body;
-
-  console.log( walletId)
-
-  if (!walletId ) {
+  if (!walletId) {
     return res.status(400).json({ error: "Missing required field walletId!" });
   }
-  if (!address ) {
+  if (!address) {
     return res.status(400).json({ error: "Missing required field address!" });
   }
   // Optionally check that the address matches the session user.id for security
   if (session.user.id !== address) {
     return res.status(403).json({ error: "Address mismatch" });
   }
-  if (!txCbor ) {
+  if (!txCbor) {
     return res.status(400).json({ error: "Missing required field txCbor!" });
   }
-  if (!txJson ) {
+  if (!txJson) {
     return res.status(400).json({ error: "Missing required field txJson!" });
   }
-
+  const wallet = await db.wallet.findUnique({ where: { id: walletId } });
+  const reqSigners = wallet?.numRequiredSigners;
+  const type = wallet?.type;
+  const network = address.includes("test") ? 0 : 1;
 
   try {
-    const newTx = await db.transaction.create({
-      data: {
-        walletId,
-        txJson: typeof txJson === "object" ? JSON.stringify(txJson) : txJson,
-        txCbor,
-        signedAddresses: [address],
-        rejectedAddresses: [],
-        description,
-        state: 0,
-      },
-    });
+    let newTx;
+    //ToDo refactor to more cases.
+    if (reqSigners === 1 || type === "any") {
+      const blockchainProvider = getProvider(network);
+      newTx = blockchainProvider.submitTx(txCbor);
+    } else {
+      newTx = await db.transaction.create({
+        data: {
+          walletId,
+          txJson: typeof txJson === "object" ? JSON.stringify(txJson) : txJson,
+          txCbor,
+          signedAddresses: [address],
+          rejectedAddresses: [],
+          description,
+          state: 0,
+        },
+      });
+    }
 
     res.status(201).json(newTx);
   } catch (error) {
     console.error("Error creating transaction:", error);
     res.status(500).json({ error: "Internal Server Error" });
   }
-}
+}
diff --git a/src/pages/api/v1/submitDatum.ts b/src/pages/api/v1/submitDatum.ts
@@ -0,0 +1,99 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+import { db } from "@/server/db";
+import { verifyJwt } from "@/lib/verifyJwt";
+import { cors } from "@/lib/cors";
+import { DataSignature } from "@meshsdk/core";
+import { checkSignature } from "@meshsdk/core-cst";
+
+export default async function handler(
+  req: NextApiRequest,
+  res: NextApiResponse,
+) {
+  await cors(req, res);
+  if (req.method === "OPTIONS") {
+    return res.status(200).end();
+  }
+
+  if (req.method !== "POST") {
+    return res.status(405).json({ error: "Method Not Allowed" });
+  }
+
+  const authHeader = req.headers.authorization;
+  const token = authHeader?.startsWith("Bearer ") ? authHeader.slice(7) : null;
+
+  if (!token) {
+    return res.status(401).json({ error: "Unauthorized - Missing token" });
+  }
+
+  const payload = verifyJwt(token);
+  if (!payload) {
+    return res.status(401).json({ error: "Invalid or expired token" });
+  }
+
+  const session = {
+    user: { id: payload.address },
+    expires: new Date(Date.now() + 60 * 60 * 1000).toISOString(),
+  };
+
+  const {
+    walletId,
+    signature,
+    key,
+    address,
+    datum,
+    callbackUrl,
+    description = "External Tx",
+  } = req.body;
+
+  if (!walletId) {
+    return res.status(400).json({ error: "Missing required field walletId!" });
+  }
+  if (!signature) {
+    return res.status(400).json({ error: "Missing required field signature!" });
+  }
+  if (!signature) {
+    return res.status(400).json({ error: "Missing required field key!" });
+  }
+  if (!address) {
+    return res.status(400).json({ error: "Missing required field address!" });
+  }
+  // Optionally check that the address matches the session user.id for security
+  if (session.user.id !== address) {
+    return res.status(403).json({ error: "Address mismatch" });
+  }
+  if (!datum) {
+    return res.status(400).json({ error: "Missing required field Datum!" });
+  }
+  if (!callbackUrl) {
+    return res.status(400).json({ error: "Missing required field Datum!" });
+  }
+
+  const sig: DataSignature = { signature: signature, key: key };
+
+  const isValid = await checkSignature(datum, sig, address);
+
+  if (!isValid) {
+    return res.status(401).json({ error: "Invalid signature" });
+  }
+  
+  try {
+    const newSignable = await db.signable.create({
+      data: {
+        walletId,
+        payload: datum,
+        signatures: [`signature: ${sig.signature}, key: ${sig.key}`],
+        signedAddresses: [address],
+        rejectedAddresses: [],
+        description,
+        callbackUrl: callbackUrl || null,
+        remoteOrigin: req.headers.origin || null,
+        state: 0,
+      },
+    });
+
+    res.status(201).json(newSignable);
+  } catch (error) {
+    console.error("Error creating signable:", error);
+    res.status(500).json({ error: "Internal Server Error" });
+  }
+}
diff --git a/src/utils/swagger.ts b/src/utils/swagger.ts

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+-- AlterTable`
	`2`	`+ALTER TABLE "Signable" ADD COLUMN "callbackUrl" TEXT,`
	`3`	`+ADD COLUMN "remoteOrigin" TEXT;`
Original file line number	Diff line number	Diff line change
`@@ -60,6 +60,8 @@ model Signable {`
`60`	`60`	`state Int`
`61`	`61`	`createdAt DateTime @default(now())`
`62`	`62`	`updatedAt DateTime @updatedAt`
	`63`	`+ callbackUrl String?`
	`64`	`+ remoteOrigin String?`
`63`	`65`	`}`
`64`	`66`
`65`	`67`	`model NewWallet {`