4nk/anchorage_layer_simple
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
anchorage_layer_simple/service-login-verify
History
ncantu f27345e0ba RESTE_A_FAIRE, relay validation, verify proof structure, UserWallet diagnostic/sync 
**Motivations:**
- Documenter le reste à faire (userwallet, service-login-verify, api-relay, website-skeleton)
- Renforcer la validation côté api-relay et service-login-verify
- Ajouter écrans diagnostic et sync service, service notifications relais, contrat par défaut

**Root causes:**
- N/A (évolutions + correctifs ciblés)

**Correctifs:**
- api-relay: GET /:hash (keys, messages, signatures) rejette hash vide → 400
- service-login-verify: validation structure preuve (challenge.hash, nonce, timestamp, signatures), reason invalid_proof_structure

**Evolutions:**
- RESTE_A_FAIRE.md: vue d’ensemble et tâches par projet
- UserWallet: DiagnosticScreen, ServiceSyncScreen, relayNotificationService (hash events, fetch, decrypt, graph), defaultContract, loginStateMachine, useChannel, loginPublish, LoginScreen, LoginCollectShare
- website-skeleton: README étendu

**Pages affectées:**
- RESTE_A_FAIRE.md
- api-relay: keys, messages, signatures
- service-login-verify: types, verifyLoginProof
- userwallet: App, DiagnosticScreen, LoginCollectShare, LoginScreen, ServiceSyncScreen, useChannel, loginStateMachine, relayNotificationService, defaultContract, loginPublish
- website-skeleton: README
2026-01-28 01:37:16 +01:00
..
dist
Cron restart services (bitcoind, mempool), service-login-verify, website-skeleton, docs
2026-01-28 00:48:37 +01:00
node_modules
Cron restart services (bitcoind, mempool), service-login-verify, website-skeleton, docs
2026-01-28 00:48:37 +01:00
src
RESTE_A_FAIRE, relay validation, verify proof structure, UserWallet diagnostic/sync
2026-01-28 01:37:16 +01:00
package-lock.json
Cron restart services (bitcoind, mempool), service-login-verify, website-skeleton, docs
2026-01-28 00:48:37 +01:00
package.json
Cron restart services (bitcoind, mempool), service-login-verify, website-skeleton, docs
2026-01-28 00:48:37 +01:00
README.md
Cron restart services (bitcoind, mempool), service-login-verify, website-skeleton, docs
2026-01-28 00:48:37 +01:00
tsconfig.json
Cron restart services (bitcoind, mempool), service-login-verify, website-skeleton, docs
2026-01-28 00:48:37 +01:00

README.md

service-login-verify

Verify login proof and anti-replay policy for services that embed UserWallet in an iframe.

Purpose

The service is the parent application that embeds UserWallet. It receives login-proof via postMessage and must verify the proof before accepting a session, without a central server. This package provides:

  • verifyLoginProof(proof, context) full verification (crypto, allowed pubkeys, timestamp window, nonce anti-replay)
  • NonceCache in-memory anti-replay cache (TTL configurable)
  • buildAllowedPubkeysFromValidateurs(validateurs) build allowed pubkeys from action login validators (cle_publique only)

Usage

See features/service-login-verify.md for explanation and usage example.

Install

From the repo root:

cd service-login-verify && npm install && npm run build

Consuming apps can add a workspace dependency or link to ../service-login-verify.

References

  • features/service-login-verify.md
  • features/userwallet-contrat-login-reste-a-faire.md (§ 3.7)