chore: storing inbox messages

Author: pcarranzav

apps/server/src/handlers/listAccountInboxes.ts

@@ -0,0 +1,33 @@
+import { prisma } from '../prisma';
+
+export async function listAccountInboxes({ accountId }: { accountId: string }) {
+  const inboxes = await prisma.accountInbox.findMany({
+    where: { accountId },
+    select: {
+      id: true,
+      isPublic: true,
+      authPolicy: true,
+      encryptionPublicKey: true,
+      account: {
+        select: {
+          id: true,
+        },
+      },
+      signatureHex: true,
+      signatureRecovery: true,
+    },
+  });
+  return inboxes.map((inbox) => {
+    return {
+      inboxId: inbox.id,
+      accountId: inbox.account.id,
+      isPublic: inbox.isPublic,
+      authPolicy: inbox.authPolicy,
+      encryptionPublicKey: inbox.encryptionPublicKey,
+      signature: {
+        hex: inbox.signatureHex,
+        recovery: inbox.signatureRecovery,
+      },
+    };
+  });
+}

apps/server/src/index.ts

@@ -660,6 +660,26 @@ webSocketServer.on('connection', async (webSocket: CustomWebSocket, request: Req
         }
         case 'create-account-inbox': {
           // TODO
+          // Check that the signature is valid for the corresponding accountId
+          // Create the inbox (if it doesn't exist)
+          // Broadcast the inbox to other clients from the same account
+          break;
+        }
+        case 'get-latest-space-inbox-messages': {
+          // TODO
+          break;
+        }
+        case 'get-latest-account-inbox-messages': {
+          // TODO
+          break;
+        }
+        case 'get-account-inboxes': {
+          const inboxes = await listAccountInboxes({ accountId });
+          const outgoingMessage: Messages.ResponseAccountInboxes = {
+            type: 'account-inboxes',
+            inboxes,
+          };
+          webSocket.send(Messages.serialize(outgoingMessage));
           break;
         }
         case 'create-update': {

packages/hypergraph-react/src/HypergraphAppContext.tsx

@@ -6,6 +6,7 @@ import type { DocHandle } from '@automerge/automerge-repo';
 import { RepoContext } from '@automerge/automerge-repo-react-hooks';
 import {
   Identity,
+  InboxMessageStorageEntry,
   Inboxes,
   Key,
   Messages,
@@ -58,6 +59,7 @@ export type HypergraphAppCtx = {
     params: Readonly<{ isPublic: boolean; authPolicy: Messages.InboxSenderAuthPolicy }>,
   ): Promise<unknown>;
   getLatestAccountInboxMessages(params: Readonly<{ accountId: string; inboxId: string }>): Promise<unknown>;
+  getOwnAccountInboxes(): Promise<unknown>;
   listPublicAccountInboxes(params: Readonly<{ accountId: string }>): Promise<unknown>;
   getAccountInbox(params: Readonly<{ accountId: string; inboxId: string }>): Promise<unknown>;
   sendAccountInboxMessage(
@@ -67,6 +69,7 @@ export type HypergraphAppCtx = {
       inboxId: string;
       encryptionPublicKey: string;
       signaturePrivateKey: string | null;
+      authorAccountId: string;
     }>,
   ): Promise<unknown>;
   listSpaces(): void;
@@ -114,6 +117,9 @@ export const HypergraphAppContext = createContext<HypergraphAppCtx>({
   async createAccountInbox() {
     throw new Error('createAccountInbox is missing');
   },
+  async getOwnAccountInboxes() {
+    throw new Error('getOwnAccountInboxes is missing');
+  },
   async getLatestAccountInboxMessages() {
     throw new Error('getLatestAccountInboxMessages is missing');
   },
@@ -448,6 +454,13 @@ export function HypergraphAppProvider({
                 return {
                   ...message,
                   plaintext: decryptedMessage,
+                  signature: message.signature
+                    ? {
+                        hex: message.signature.hex,
+                        recovery: message.signature.recovery,
+                      }
+                    : null,
+                  authorAccountId: message.authorAccountId ?? null,
                 };
               });
               // TODO filter messages checking the signatures are valid for the corresponding authorAccountId
@@ -552,6 +565,7 @@ export function HypergraphAppProvider({
                 ),
                 lastMessageClock: 0,
                 messages: [],
+                seenMessageIds: new Set<string>(),
               };
               store.send({
                 type: 'setSpaceInbox',
@@ -608,9 +622,18 @@ export function HypergraphAppProvider({
               console.error('Invalid inbox creator', response.inbox);
               return;
             }
+
+            let lastMessageClock = 0;
+            const messages: InboxMessageStorageEntry[] = [];
+
             store.send({
               type: 'setAccountInbox',
-              inbox: response.inbox,
+              inbox: {
+                ...response.inbox,
+                messages,
+                lastMessageClock,
+                seenMessageIds: new Set<string>(),
+              },
             });
             break;
           }
@@ -622,6 +645,109 @@ export function HypergraphAppProvider({
             // TODO: validate signature and decrypt message sealed box, then store it
             break;
           }
+          case 'account-inboxes': {
+            response.inboxes.map((inbox) => {
+              store.send({
+                type: 'setAccountInbox',
+                inbox: {
+                  ...inbox,
+                  messages: [],
+                  lastMessageClock: 0,
+                  seenMessageIds: new Set<string>(),
+                },
+              });
+            });
+            break;
+          }
+          case 'account-inbox-messages': {
+            // Validate the signature of the inbox corresponds to the current account's identity
+            if (!keys.signaturePrivateKey) {
+              console.error('No signature private key found to process account inbox');
+              return;
+            }
+            const inbox = store.getSnapshot().context.accountInboxes.find((i) => i.inboxId === response.inboxId);
+            if (!inbox) {
+              console.error('Inbox not found', response.inboxId);
+              return;
+            }
+
+            let lastMessageClock = 0;
+            const messages = response.messages.map((message) => {
+              const decryptedMessage = Inboxes.decryptInboxMessage({
+                ciphertext: message.ciphertext,
+                nonce: message.nonce,
+                ephemeralPublicKey: message.ephemeralPublicKey,
+                encryptionPrivateKey,
+              });
+              if (message.createdAt > lastMessageClock) {
+                lastMessageClock = message.createdAt;
+              }
+              return {
+                ...message,
+                plaintext: decryptedMessage,
+                signature: message.signature
+                  ? {
+                      hex: message.signature.hex,
+                      recovery: message.signature.recovery,
+                    }
+                  : null,
+                authorAccountId: message.authorAccountId ?? null,
+              };
+            });
+
+            store.send({
+              type: 'setAccountInboxMessages',
+              inboxId: response.inboxId,
+              messages,
+              lastMessageClock,
+            });
+            break;
+          }
+          case 'space-inbox-messages': {
+            const space = store.getSnapshot().context.spaces.find((s) => s.id === response.spaceId);
+            if (!space) {
+              console.error('Space not found', response.spaceId);
+              return;
+            }
+            const inbox = space.inboxes.find((i) => i.inboxId === response.inboxId);
+            if (!inbox) {
+              console.error('Inbox not found', response.inboxId);
+              return;
+            }
+
+            let lastMessageClock = 0;
+            const messages = response.messages.map((message) => {
+              const decryptedMessage = Inboxes.decryptInboxMessage({
+                ciphertext: message.ciphertext,
+                nonce: message.nonce,
+                ephemeralPublicKey: message.ephemeralPublicKey,
+                encryptionPrivateKey,
+              });
+              if (message.createdAt > lastMessageClock) {
+                lastMessageClock = message.createdAt;
+              }
+              return {
+                ...message,
+                signature: message.signature
+                  ? {
+                      hex: message.signature.hex,
+                      recovery: message.signature.recovery,
+                    }
+                  : null,
+                authorAccountId: message.authorAccountId ?? null,
+                plaintext: decryptedMessage,
+              };
+            });
+
+            store.send({
+              type: 'setSpaceInboxMessages',
+              spaceId: response.spaceId,
+              inboxId: response.inboxId,
+              messages,
+              lastMessageClock,
+            });
+            break;
+          }
           default: {
             Utils.assertExhaustive(response);
           }
@@ -759,7 +885,7 @@ export function HypergraphAppProvider({
         console.error('Space not found', spaceId);
         return;
       }
-      const inbox = space.inboxes.find((i) => i.id === inboxId);
+      const inbox = space.inboxes.find((i) => i.inboxId === inboxId);
       if (!inbox) {
         console.error('Inbox not found', inboxId);
         return;
@@ -790,6 +916,35 @@ export function HypergraphAppProvider({
     [syncServerUri],
   );
 
+  const sendSpaceInboxMessageForContext = useCallback(
+    async ({
+      spaceId,
+      inboxId,
+      message,
+      encryptionPublicKey,
+      signaturePrivateKey,
+      authorAccountId,
+    }: Readonly<{
+      spaceId: string;
+      inboxId: string;
+      message: string;
+      encryptionPublicKey: string;
+      signaturePrivateKey: string;
+      authorAccountId: string;
+    }>) => {
+      return await Inboxes.sendSpaceInboxMessage({
+        spaceId,
+        inboxId,
+        message,
+        encryptionPublicKey,
+        signaturePrivateKey,
+        syncServerUri,
+        authorAccountId,
+      });
+    },
+    [syncServerUri],
+  );
+
   const createAccountInboxForContext = useCallback(
     async ({ isPublic, authPolicy }: Readonly<{ isPublic: boolean; authPolicy: Messages.InboxSenderAuthPolicy }>) => {
       if (!accountId) {
@@ -833,6 +988,13 @@ export function HypergraphAppProvider({
     [websocketConnection],
   );
 
+  const getOwnAccountInboxesForContext = useCallback(async () => {
+    const message: Messages.RequestGetAccountInboxes = {
+      type: 'get-account-inboxes',
+    };
+    websocketConnection?.send(Messages.serialize(message));
+  }, [websocketConnection]);
+
   const listPublicAccountInboxesForContext = useCallback(
     async ({ accountId }: Readonly<{ accountId: string }>) => {
       return await Inboxes.listPublicAccountInboxes({ accountId, syncServerUri });
@@ -847,6 +1009,35 @@ export function HypergraphAppProvider({
     [syncServerUri],
   );
 
+  const sendAccountInboxMessageForContext = useCallback(
+    async ({
+      message,
+      accountId,
+      inboxId,
+      encryptionPublicKey,
+      signaturePrivateKey,
+      authorAccountId,
+    }: Readonly<{
+      message: string;
+      accountId: string;
+      inboxId: string;
+      encryptionPublicKey: string;
+      signaturePrivateKey: string | null;
+      authorAccountId: string;
+    }>) => {
+      return await Inboxes.sendAccountInboxMessage({
+        message,
+        accountId,
+        inboxId,
+        encryptionPublicKey,
+        signaturePrivateKey,
+        syncServerUri,
+        authorAccountId,
+      });
+    },
+    [syncServerUri],
+  );
+
   const acceptInvitationForContext = useCallback(
     async ({
       invitation,
@@ -1007,6 +1198,7 @@ export function HypergraphAppProvider({
         sendSpaceInboxMessage: sendSpaceInboxMessageForContext,
         createAccountInbox: createAccountInboxForContext,
         getLatestAccountInboxMessages: getLatestAccountInboxMessagesForContext,
+        getOwnAccountInboxes: getOwnAccountInboxesForContext,
         listPublicAccountInboxes: listPublicAccountInboxesForContext,
         getAccountInbox: getAccountInboxForContext,
         sendAccountInboxMessage: sendAccountInboxMessageForContext,