Add NIP-46 signing

Author: moysa

src/App.tsx

@@ -19,26 +19,13 @@ import 'media-chrome';
 import "media-chrome/media-theme-element";
 import 'hls-video-element';
 import 'videojs-video-element';
-import { generatePrivateKey, getPublicKey, nip19 } from './lib/nTools';
-
+import { nip46 } from './lib/nTools';
+import { generateAppKeys } from './lib/PrimalNip46';
 
 
 export const version = import.meta.env.PRIMAL_VERSION;
 export const APP_ID = `web_${version}_${Math.floor(Math.random()*10000000000)}`;
 
-const generateAppKeys = () => {
-    if (localStorage.getItem('appNsec')) return;
-
-    let sk = generatePrivateKey();
-    let pk = getPublicKey(sk);
-
-    localStorage.setItem('appNsec', nip19.nsecEncode(sk));
-    localStorage.setItem('appPubkey', pk);
-  }
-
-export const getAppPK = () => localStorage.getItem('pk');
-
-
 const App: Component = () => {
 
   onMount(() => {

src/components/LiveVideo/ChatMessage.tsx

@@ -862,7 +862,6 @@ const ChatMessage: Component<{
   const renderUserMention = (item: NoteContent) => {
     return <For each={item.tokens}>
       {(token) => {
-        console.log('USER MENTION: ', token);
         let [nostr, id] = token.split(':');
 
         if (!id) {

src/components/LoginModal/LoginModal.tsx

@@ -1,23 +1,22 @@
 import { useIntl } from '@cookbook/solid-intl';
-import { Component, createEffect, createSignal, Match, Switch } from 'solid-js';
+import { Component, createEffect, createSignal, Match, Show, Switch } from 'solid-js';
 
 import { login as tLogin, actions as tActions } from '../../translations';
 
 import styles from './LoginModal.module.scss';
 import { hookForDev } from '../../lib/devTools';
 import ButtonPrimary from '../Buttons/ButtonPrimary';
 import CreatePinModal from '../CreatePinModal/CreatePinModal';
-import TextInput from '../TextInput/TextInput';
-import { nip19 } from '../../lib/nTools';
+import { nip19, nip46, SimplePool } from '../../lib/nTools';
 import { storeSec } from '../../lib/localStore';
 import AdvancedSearchDialog from '../AdvancedSearch/AdvancedSearchDialog';
-import { accountStore, loginUsingExtension, loginUsingLocalNsec, loginUsingNpub, setSec } from '../../stores/accountStore';
+import { accountStore, doAfterLogin, loginUsingExtension, loginUsingLocalNsec, loginUsingNpub, setLoginType, setPublicKey, setSec } from '../../stores/accountStore';
 import { Tabs } from '@kobalte/core/tabs';
 
-import extensionIcon from '../../assets/images/extension.svg';
-import nsecIcon from '../../assets/images/nsec.svg';
 import { useToastContext } from '../Toaster/Toaster';
 import QrCode from '../QrCode/QrCode';
+import { useAppContext } from '../../contexts/AppContext';
+import { generateClientConnectionUrl, getAppSK, storeBunker } from '../../lib/PrimalNip46';
 
 const LoginModal: Component<{
   id?: string,
@@ -27,11 +26,13 @@ const LoginModal: Component<{
 
   const intl = useIntl();
   const toaster = useToastContext();
+  const app = useAppContext();
 
   const [step, setStep] = createSignal<'login' | 'pin' | 'none'>('login')
   const [enteredKey, setEnteredKey] = createSignal('');
   const [enteredNpub, setEnteredNpub] = createSignal('');
 
+  const [clientUrl, setClientUrl] = createSignal('');
 
   const [activeTab, setActiveTab] = createSignal('simple');
 
@@ -105,12 +106,7 @@ const LoginModal: Component<{
   };
 
   createEffect(() => {
-    if (props.open && step() === 'login') {
-      nsecInput?.focus();
-    }
-  });
-
-  createEffect(() => {
+    if (!props.open) return;
     if (activeTab() === 'nsec') {
       setTimeout(() => {
         nsecInput?.focus();
@@ -122,8 +118,38 @@ const LoginModal: Component<{
         npubInput?.focus();
       }, 100)
     }
+
+    if (activeTab() === 'simple') {
+      setupSigner();
+    }
   });
 
+  const setupSigner = async () => {
+    const clientUrl = generateClientConnectionUrl();
+
+    if (clientUrl.length === 0) return;
+
+    setClientUrl(clientUrl);
+
+    const sec = getAppSK();
+    if (!sec) return;
+
+    const pool = new SimplePool()
+    const signer = await nip46.BunkerSigner.fromURI(sec, clientUrl, { pool })
+
+    storeBunker(signer);
+    const pk = await signer.getPublicKey();
+
+    setLoginType('nip46');
+    setPublicKey(pk);
+    doAfterLogin(pk);
+
+    // cleanup
+    await signer.close()
+    pool.close([])
+
+  }
+
   const onKeyUp = (e: KeyboardEvent) => {
     if (e.code === 'Enter' && isValidNsec()) {
       onLogin();
@@ -167,11 +193,13 @@ const LoginModal: Component<{
                 <Tabs.Content value="simple" >
                   <div class={styles.extensionLogin}>
                     <div class={styles.qrCode}>
-                      <QrCode
-                        data="https://primal.net"
-                        width={234}
-                        height={234}
-                      />
+                      <Show when={clientUrl().length > 0}>
+                        <QrCode
+                          data={clientUrl()}
+                          width={234}
+                          height={234}
+                        />
+                      </Show>
                     </div>
                     <div class={styles.simpleDesc}>
                       <div class={styles.loginExplain}>

src/contexts/AppContext.tsx

@@ -8,20 +8,44 @@ import {
   onMount,
   useContext
 } from "solid-js";
-import { MediaEvent, MediaVariant, NostrBlossom, NostrEOSE, NostrEvent, NostrEventContent, NostrEvents, NostrLiveChat, PrimalArticle, PrimalDVM, PrimalNote, PrimalUser, ZapOption } from "../types/primal";
+import {
+  NostrBlossom,
+  NostrEOSE,
+  NostrEvent,
+  NostrEventContent,
+  NostrEvents,
+  NostrLiveChat,
+  PrimalArticle,
+  PrimalDVM,
+  PrimalNote,
+  PrimalUser,
+  ZapOption,
+} from "../types/primal";
+import {
+  connect,
+  disconnect,
+  isConnected,
+  readData,
+  refreshSocketListeners,
+  removeSocketListeners,
+  socket,
+} from "../sockets";
+import {
+  accountStore,
+  hasPublicKey,
+  logUserIn,
+  reconnectSuspendedRelays,
+  suspendRelays,
+} from "../stores/accountStore";
 import { CashuMint } from "@cashu/cashu-ts";
 import { Tier, TierCost } from "../components/SubscribeToAuthorModal/SubscribeToAuthorModal";
-import { connect, disconnect, isConnected, isNotConnected, readData, refreshSocketListeners, removeSocketListeners, socket } from "../sockets";
-import { nip19, Relay } from "../lib/nTools";
+import { nip19, nip46 } from "../lib/nTools";
 import { logInfo } from "../lib/logger";
 import { Kind } from "../constants";
 import { LegendCustomizationConfig } from "../lib/premium";
-import { config } from "@milkdown/core";
 import { StreamingData } from "../lib/streaming";
-import { accountStore, hasPublicKey, logUserIn, reconnectSuspendedRelays, suspendRelays } from "../stores/accountStore";
 import { loadLegendCustomization, saveLegendCustomization } from "../lib/localStore";
 
-
 export type ReactionStats = {
   likes: number,
   zaps: number,
@@ -120,6 +144,7 @@ export type AppContextStore = {
   memberCohortInfo: Record<string, CohortInfo>,
   showProfileQr: PrimalUser | undefined,
   reportContent: PrimalNote | PrimalArticle | NostrLiveChat | undefined,
+  signer: nip46.BunkerSigner | undefined,
   actions: {
     openReactionModal: (noteId: string, stats: ReactionStats) => void,
     closeReactionModal: () => void,
@@ -220,6 +245,7 @@ const initialData: Omit<AppContextStore, 'actions'> = {
   subscribeToTier: () => {},
   showProfileQr: undefined,
   reportContent: undefined,
+  signer: undefined,
 };
 
 export const AppContext = createContext<AppContextStore>();

src/lib/PrimalNip46.ts

@@ -0,0 +1,128 @@
+import { verifyEvent, nip46, nip19, getPublicKey, generatePrivateKey } from '../lib/nTools';
+import { NostrExtension, NostrRelayEvent, NostrRelays, NostrRelaySignedEvent } from '../types/primal';
+import { uuidv4 } from '../utils';
+import { logWarning } from './logger';
+
+export let appSigner: nip46.BunkerSigner | undefined;
+
+export const setAppSigner = (bunker: nip46.BunkerSigner) => {
+  appSigner = bunker;
+}
+
+export const generateAppKeys = () => {
+  if (localStorage.getItem('appNsec')) return;
+
+  let sk = generatePrivateKey();
+  let pk = getPublicKey(sk);
+
+  localStorage.setItem('appNsec', nip19.nsecEncode(sk));
+  localStorage.setItem('appPubkey', pk);
+}
+
+export const getAppPK = () => localStorage.getItem('appPubkey');
+
+export const getAppSK = () => {
+  const nsec = localStorage.getItem('appNsec');
+
+  if (!nsec) return;
+
+  try {
+    const decoded = nip19.decode(nsec);
+
+    if (decoded.type !== 'nsec') return;
+
+    return decoded.data;
+  } catch (e) {
+    logWarning('Failed to decode App nsec: ', e);
+    return;
+  }
+}
+
+export const generateClientConnectionUrl = (): string => {
+  const clientPubkey = getAppPK();
+
+  if (!clientPubkey) return '';
+
+  const n = localStorage.getItem('clientConnectionUrl') ||
+    nip46.createNostrConnectURI({
+      clientPubkey,
+      relays: ['wss://relay.primal.net'],
+      secret: `sec-${uuidv4()}`, // A secret to verify the bunker's response
+      name: `Primal_Web_App`
+    });
+
+  localStorage.setItem('clientConnectionUrl', n);
+
+  return n;
+}
+
+export const storeBunker = (bunker: nip46.BunkerSigner) => {
+  const remotePubkey = bunker.bp.pubkey;
+  const relays = bunker.bp.relays.reduce<string>((acc, r, i) => i === 0 ? `relay=${r}` : `${acc}&relay=${r}`,'');
+  const secret = bunker.bp.secret;
+
+  const bunkerUrl = `bunker://${remotePubkey}?${relays}&secret=${secret}`;
+
+  localStorage.setItem('bunkerUrl', bunkerUrl);
+
+  return bunkerUrl;
+}
+
+export const PrimalNip46: (pk?: string) => NostrExtension = (pk?: string) => {
+  const gPk: () => Promise<string> = async () => {
+      if (!appSigner) throw('no-bunker-found');
+    return await appSigner?.getPublicKey();
+  };
+
+  const gRl: () => Promise<NostrRelays> = () => new Promise<NostrRelays>((resolve) => {resolve({})});
+
+  const encrypt: (pubkey: string, message: string) => Promise<string> =
+    async (pubkey, message) => {
+      if (!appSigner) throw('no-bunker-found');
+      return appSigner?.nip04Encrypt(pubkey, message);
+    };
+
+  const decrypt: (pubkey: string, message: string) => Promise<string> =
+    async (pubkey, message) => {
+      if (!appSigner) throw('no-bunker-found');
+      return appSigner?.nip04Decrypt(pubkey, message);
+    };
+
+  const encrypt44: (pubkey: string, message: string) => Promise<string> =
+    async (pubkey, message) => {
+      if (!appSigner) throw('no-bunker-found');
+      return appSigner?.nip44Encrypt(pubkey, message);
+    };
+
+  const decrypt44: (pubkey: string, message: string) => Promise<string> =
+    async (pubkey, message) => {
+      if (!appSigner) throw('no-bunker-found');
+      return appSigner.nip44Encrypt(pubkey, message);
+    };
+
+  const signEvent = async (event: NostrRelayEvent) => {
+    if (!appSigner) throw('no-bunker-found');
+
+    let evt = await appSigner.signEvent(event);
+
+    const isVerified = verifyEvent(evt);
+
+    if (!isVerified) throw('event-sig-not-verified');
+
+    return evt as NostrRelaySignedEvent;
+  };
+
+  return {
+    getPublicKey: gPk,
+    getRelays: gRl,
+    nip04: {
+      encrypt,
+      decrypt,
+    },
+    nip44: {
+      encrypt: encrypt44,
+      decrypt: decrypt44,
+    },
+    signEvent,
+  };
+};

src/lib/nTools.ts

@@ -6,6 +6,8 @@ import {
   SimplePool
 } from 'nostr-tools';
 
+import * as nip46 from 'nostr-tools/nip46'
+
 // @ts-ignore
 import { AbstractRelay as Relay } from 'nostr-tools/abstract-relay';
 import { Relay as RelayFactory } from 'nostr-tools';
@@ -32,6 +34,7 @@ export {
   nip05,
   nip19,
   nip44,
+  nip46,
   nip47,
   nip57,
   utils,

src/lib/nostrAPI.ts

@@ -8,6 +8,7 @@ import {
   SendPaymentResponse,
   WebLnExtension,
  } from "../types/primal";
+import { PrimalNip46 } from "./PrimalNip46";
 import { PrimalNostr } from "./PrimalNostr";
 
 
@@ -100,8 +101,7 @@ const enqueueNostr = async <T>(action: (nostr: NostrExtension) => Promise<T>) =>
   }
 
   if (loginType === 'nip46') {
-    // TODO actually implement nip46 signer
-    nostr = PrimalNostr();
+    nostr = PrimalNip46();
 
     if (nostr === undefined) {
       throw('no_nostr_nip46');