Decrypt API Rework (#560)

Author: derekpierre

examples/taco/nextjs/src/hooks/useTaco.ts

@@ -6,6 +6,7 @@ import {
   encrypt,
   initialize,
   ThresholdMessageKit,
+  USER_ADDRESS_PARAM_DEFAULT,
 } from '@nucypher/taco';
 import { ethers } from 'ethers';
 import { useCallback, useEffect, useState } from 'react';
@@ -32,12 +33,13 @@ export default function useTaco({
       }
       const messageKit = ThresholdMessageKit.fromBytes(encryptedBytes);
       const authProvider = new EIP4361AuthProvider(provider, signer);
-      return decrypt(
-        provider,
-        domain,
-        messageKit,
+      const conditionContext =
+        conditions.context.ConditionContext.fromMessageKit(messageKit);
+      conditionContext.addAuthProvider(
+        USER_ADDRESS_PARAM_DEFAULT,
         authProvider,
       );
+      return decrypt(provider, domain, messageKit, conditionContext);
     },
     [isInit, provider, domain],
   );

examples/taco/nodejs/src/index.ts

@@ -1,15 +1,16 @@
 import { format } from 'node:util';
 
 import {
+  EIP4361AuthProvider,
+  ThresholdMessageKit,
+  USER_ADDRESS_PARAM_DEFAULT,
   conditions,
   decrypt,
   domains,
-  EIP4361AuthProvider,
   encrypt,
   fromBytes,
   initialize,
   isAuthorized,
-  ThresholdMessageKit,
   toBytes,
   toHexString,
 } from '@nucypher/taco';
@@ -108,17 +109,22 @@ const decryptFromBytes = async (encryptedBytes: Uint8Array) => {
     domain: 'localhost',
     uri: 'http://localhost:3000',
   };
-  const authProvider = new EIP4361AuthProvider(
-    provider,
-    consumerSigner,
-    siweParams,
-  );
-  return decrypt(
-    provider,
-    domain,
-    messageKit,
-    authProvider,
-  );
+  const conditionContext =
+    conditions.context.ConditionContext.fromMessageKit(messageKit);
+
+  // illustrative optional example of checking what context parameters are required
+  // unnecessary if you already know what the condition contains
+  if (
+    conditionContext.requestedContextParameters.has(USER_ADDRESS_PARAM_DEFAULT)
+  ) {
+    const authProvider = new EIP4361AuthProvider(
+      provider,
+      consumerSigner,
+      siweParams,
+    );
+    conditionContext.addAuthProvider(USER_ADDRESS_PARAM_DEFAULT, authProvider);
+  }
+  return decrypt(provider, domain, messageKit, conditionContext);
 };
 
 const runExample = async () => {

examples/taco/react/src/hooks/useTaco.ts

@@ -6,6 +6,7 @@ import {
   encrypt,
   initialize,
   ThresholdMessageKit,
+  USER_ADDRESS_PARAM_DEFAULT,
 } from '@nucypher/taco';
 import { ethers } from 'ethers';
 import { useCallback, useEffect, useState } from 'react';
@@ -32,12 +33,13 @@ export default function useTaco({
       }
       const messageKit = ThresholdMessageKit.fromBytes(encryptedBytes);
       const authProvider = new EIP4361AuthProvider(provider, signer);
-      return decrypt(
-        provider,
-        domain,
-        messageKit,
+      const conditionContext =
+        conditions.context.ConditionContext.fromMessageKit(messageKit);
+      conditionContext.addAuthProvider(
+        USER_ADDRESS_PARAM_DEFAULT,
         authProvider,
       );
+      return decrypt(provider, domain, messageKit, conditionContext);
     },
     [isInit, provider, domain],
   );

examples/taco/webpack-5/src/index.ts

@@ -7,6 +7,7 @@ import {
   fromBytes,
   initialize,
   toBytes,
+  USER_ADDRESS_PARAM_DEFAULT,
 } from '@nucypher/taco';
 import { ethers } from 'ethers';
 import { hexlify } from 'ethers/lib/utils';
@@ -61,11 +62,14 @@ const runExample = async () => {
 
   console.log('Decrypting message...');
   const authProvider = new EIP4361AuthProvider(provider, signer);
+  const conditionContext =
+    conditions.context.ConditionContext.fromMessageKit(messageKit);
+  conditionContext.addAuthProvider(USER_ADDRESS_PARAM_DEFAULT, authProvider);
   const decryptedBytes = await decrypt(
     provider,
     domain,
     messageKit,
-    authProvider,
+    conditionContext,
   );
   const decryptedMessage = fromBytes(decryptedBytes);
   console.log('Decrypted message:', decryptedMessage);

packages/shared/src/porter.ts

@@ -38,9 +38,7 @@ export const getPorterUri = async (domain: Domain): Promise<string> => {
   return (await getPorterUris(domain))[0];
 };
 
-export const getPorterUris = async (
-  domain: Domain,
-): Promise<string[]> => {
+export const getPorterUris = async (domain: Domain): Promise<string[]> => {
   const fullList = [];
   const uri = defaultPorterUri[domain];
   if (!uri) {

packages/shared/test/porter.test.ts

@@ -57,7 +57,7 @@ describe('getPorterUris', () => {
   it('Get URIs from source', async () => {
     for (const domain of Object.values(domains)) {
       const uris = await getPorterUrisFromSource(domain);
-      expect(uris.length).toBeGreaterThan(0);
+      expect(uris.length).toBeGreaterThanOrEqual(0);
       const fullList = await getPorterUris(domain);
       expect(fullList).toEqual(expect.arrayContaining(uris));
     }

packages/taco-auth/src/auth-provider.ts

@@ -1,20 +1,5 @@
 import { AuthSignature } from './auth-sig';
-import { EIP4361AuthProvider } from './providers';
-
-export const EIP4361_AUTH_METHOD = 'EIP4361';
 
 export interface AuthProvider {
   getOrCreateAuthSignature(): Promise<AuthSignature>;
 }
-
-export type AuthProviders = {
-  [EIP4361_AUTH_METHOD]?: EIP4361AuthProvider;
-  // Fallback to satisfy type checking
-  [key: string]: AuthProvider | undefined;
-};
-
-export const USER_ADDRESS_PARAM_DEFAULT = ':userAddress';
-
-export const AUTH_METHOD_FOR_PARAM: Record<string, string> = {
-  [USER_ADDRESS_PARAM_DEFAULT]: EIP4361_AUTH_METHOD,
-};

packages/taco-auth/src/auth-sig.ts

@@ -1,8 +1,10 @@
 import { EthAddressSchema } from '@nucypher/shared';
 import { z } from 'zod';
 
-import { EIP4361_AUTH_METHOD } from './auth-provider';
-import { EIP4361TypedDataSchema } from './providers';
+import {
+  EIP4361_AUTH_METHOD,
+  EIP4361TypedDataSchema,
+} from './providers/eip4361/common';
 
 export const authSignatureSchema = z.object({
   signature: z.string(),

packages/taco-auth/src/providers/eip4361/common.ts

@@ -0,0 +1,17 @@
+import { SiweMessage } from 'siwe';
+import { z } from 'zod';
+
+export const EIP4361_AUTH_METHOD = 'EIP4361';
+
+const isSiweMessage = (message: string): boolean => {
+  try {
+    new SiweMessage(message);
+    return true;
+  } catch {
+    return false;
+  }
+};
+
+export const EIP4361TypedDataSchema = z
+  .string()
+  .refine(isSiweMessage, { message: 'Invalid SIWE message' });

…kages/taco-auth/src/providers/eip4361.ts …co-auth/src/providers/eip4361/eip4361.tspackages/taco-auth/src/providers/eip4361.ts renamed to packages/taco-auth/src/providers/eip4361/eip4361.ts packages/taco-auth/src/providers/eip4361.ts renamed to packages/taco-auth/src/providers/eip4361/eip4361.ts

@@ -1,23 +1,12 @@
 import { ethers } from 'ethers';
 import { generateNonce, SiweMessage } from 'siwe';
-import { z } from 'zod';
 
-import { EIP4361_AUTH_METHOD } from '../auth-provider';
-import { AuthSignature } from '../auth-sig';
-import { LocalStorage } from '../storage';
+import { AuthSignature } from '../../auth-sig';
+import { LocalStorage } from '../../storage';
 
-const isSiweMessage = (message: string): boolean => {
-  try {
-    new SiweMessage(message);
-    return true;
-  } catch {
-    return false;
-  }
-};
+import { EIP4361_AUTH_METHOD } from './common';
 
-export const EIP4361TypedDataSchema = z
-  .string()
-  .refine(isSiweMessage, { message: 'Invalid SIWE message' });
+export const USER_ADDRESS_PARAM_DEFAULT = ':userAddress';
 
 export type EIP4361AuthProviderParams = {
   domain: string;