🍀🌱 ↣ Add new routes for auth handling, new plans & continuing Vite mi…

…gration Signal-K/Silfur#25 Signal-K/Silfur#24
Signal-K · Dec 24, 2022 · bfd45cd · Gizmotronn · Dec 24, 2022 · bfd45cd
1 parent 6967f5c
commit bfd45cd
Show file tree

Hide file tree

Showing 30 changed files with 10,317 additions and 11,143 deletions.
diff --git a/.DS_Store b/.DS_Store
diff --git a/Server/.gitignore b/Server/.gitignore
@@ -1,2 +1,3 @@
 env
-.vscode
+.vscode
+.env
diff --git a/Server/Home/package.json b/Server/Home/package.json
diff --git a/Server/Home/yarn.lock b/Server/Home/yarn.lock
diff --git a/Server/Pipfile b/Server/Pipfile
@@ -7,8 +7,10 @@ name = "pypi"
 moralis = "*"
 flask = "*"
 flask_cors = "*"
+thirdweb-sdk = "*"
+python-dotenv = "*"
 
 [dev-packages]
 
 [requires]
-python_version = "3.10"
+python_version = "3.10"
diff --git a/Server/Pipfile.lock b/Server/Pipfile.lock
diff --git a/Server/README.md b/Server/README.md
@@ -0,0 +1 @@
+Make sure to initialise the Flask app with `pipenv` and run the command `export FLASK_APP=app.py`
diff --git a/Server/app.py b/Server/app.py
@@ -1,57 +1,72 @@
-from flask import Flask
-from flask import request
-from moralis import auth
-from flask_cors import CORS
+from flask import Flask, request, make_response, jsonify
+from thirdweb.types import LoginPayload
+from thirdweb import ThirdwebSDK
+from datetime import datetime, timedelta
+import os
 
-# Flask application setup
 app = Flask(__name__)
-CORS(app)
-apiKey = "kJfYYpmMmfKhvaWMdD3f3xMMb24B4MHBDDVrfjslkKgTilvMgdwr1bwKUr8vWdHH" # Move to env
-
-# Authentication routes -> move to auth.py later
-# Request a challenge when a user attempts to connect their wallet
-@app.route('/requestChallenge', methods=['GET'])
-def reqChallenge():
-    args = request.args # Fetch the arguments from the request
-
-    # Get request body -> compare with data from Moralis
-    body = {
-        "domain": "sailors.skinetics.tech",
-        "chainId": args.get("chainId"),
-        "address": args.get("address"),
-        "statement": "Please confirm authentication by signing this transaction",
-        "uri": "https://ipfs.skinetics.tech/auth/1...",
-        "expirationTime": "2023-01-01T00:00:00.000Z",
-        "notBefore": "2020-01-01T00:00:00.000Z",
-        "resources": ['https://docs.skinetics.tech/crypto/auth/signing'],
-        "timeout": 30,
-    }
-
-    # Deliver the result to Moralis client
-    result = auth.challenge.request_challenge_evm(
-        api_key=apiKey,
-        body=body,
-    )
 
-    return result
+@app.route('/', methods=["GET"])
+def index():
+    return "Hello World"
+
+@app.route('/login', methods=['POST'])
+def login():
+    private_key = os.environ.get("PRIVATE_KEY")
+
+    if not private_key:
+        print("Missing PRIVATE_KEY environment variable")
+        return "Wallet private key not set", 400
 
-# Verify signature from user
-@app.route('/verifyChallenge', methods=['GET'])
-def verifyChallenge():
-    args = request.args
+    sdk = ThirdwebSDK.from_private_key(private_key, 'mumbai') # Initialise the sdk using the wallet and on mumbai testnet chain
+    payload = LoginPayload.from_json(request.json['payload'])
 
-    body = { # Request body
-        "message": args.get("message"),
-        "signature": args.get("signature"),
-    },
+    # Generate access token using signed payload
+    domain = 'sailors.skinetics.tech'
+    token = sdk.auth.generate_auth_token(domain, payload)
+
+    res = make_response()
+    res.set_cookie(
+        'access_token',
+        token,
+        path='/',
+        httponly=True,
+        secure=True,
+        samesite='strict',
+    )
+    return res, 200
 
-    result = auth.challenge.verify_challenge_evm(
-        api_key=apiKey,
-        body=body,
-    ),
+@app.route('/authenticate', methods=['POST'])
+def authenticate():
+    private_key = os.environ.get("PRIVATE_KEY")
+
+    if not private_key:
+        print("Missing PRIVATE_KEY environment variable")
+        return "Wallet private key not set", 400
 
-    return result
+    sdk = ThirdwebSDK.from_private_key(private_key, 'mumbai')
 
-# Initialising Flask application
-if __name__ == '__main__':
-    app.run(host='127.0.0.1', port='5000', debug=True)
+    # Get access token from cookies
+    token = request.cookies.get('access_token')
+    if not token:
+        return 'Unauthorised', 401
+
+    domain = 'sailors.skinetics.tech'
+
+    try:
+        address = sdk.auth.authenticate(domain, token)
+    except:
+        return "Unauthorized", 401
+
+    print(jsonify(address))
+    return jsonify(address), 200
+
+@app.route('/logout', methods=['POST'])
+def logout():
+    res = make_response()
+    res.set_cookie(
+        'access_token',
+        'none',
+        expires=datetime.utcnow() + timedelta(second = 5)
+    )
+    return res, 200
diff --git a/Server/frontend/.eslintrc.json b/Server/frontend/.eslintrc.json
@@ -0,0 +1,3 @@
+{
+  "extends": "next/core-web-vitals"
+}
diff --git a/Server/frontend/.gitignore b/Server/frontend/.gitignore
@@ -0,0 +1,36 @@
+# See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
+
+# dependencies
+/node_modules
+/.pnp
+.pnp.js
+
+# testing
+/coverage
+
+# next.js
+/.next/
+/out/
+
+# production
+/build
+
+# misc
+.DS_Store
+*.pem
+
+# debug
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+.pnpm-debug.log*
+
+# local env files
+.env*.local
+
+# vercel
+.vercel
+
+# typescript
+*.tsbuildinfo
+next-env.d.ts
diff --git a/Server/frontend/hooks/useAuthenticate.ts b/Server/frontend/hooks/useAuthenticate.ts
@@ -0,0 +1,36 @@
+import { useSDK } from '@thirdweb-dev/react';
+
+export default function useAuthenticate() {
+    const domain = 'sailors.skinetics.tech';
+    const sdk = useSDK();
+
+    async function login() {
+        const payload = await sdk?.auth.login(domain);
+        await fetch("/api/login", {
+            method: "POST",
+            headers: {
+                'Content-Type': 'application/json',
+            },
+            body: JSON.stringify({ payload }),
+        });
+    }
+
+    async function authenticate() {
+        const res = await fetch("/api/authenticate", {
+            method: "POST",
+        });
+        return res; // From flask server/api
+    }
+
+    async function logout() {
+        await fetch("/api/logout", {
+            method: "POST",
+        });
+    }
+
+    return {
+        login,
+        authenticate,
+        logout,
+    };
+}
diff --git a/Server/frontend/next.config.js b/Server/frontend/next.config.js
@@ -0,0 +1,14 @@
+/** @type {import('next').NextConfig} */
+const nextConfig = {
+  reactStrictMode: true,
+  async rewrites() {
+    return [
+      {
+        source: '/api/:path*',
+        destination: 'http://localhost:5000/:path*' // Proxy to Backend
+      }
+    ]
+  }
+}
+
+module.exports = nextConfig;
diff --git a/Server/frontend/package.json b/Server/frontend/package.json
@@ -0,0 +1,29 @@
+{
+  "name": "sailors-auth-frontend",
+  "version": "0.1.0",
+  "private": true,
+  "scripts": {
+    "dev": "next dev",
+    "build": "next build",
+    "start": "next start",
+    "lint": "next lint"
+  },
+  "dependencies": {
+    "@supabase/supabase-js": "^2.2.2",
+    "@thirdweb-dev/auth": "^2.0.38",
+    "@thirdweb-dev/react": "^3.6.8",
+    "@thirdweb-dev/sdk": "^3.6.8",
+    "ethers": "^5.7.2",
+    "next": "13.1.0",
+    "react": "18.2.0",
+    "react-dom": "^18.2.0"
+  },
+  "devDependencies": {
+    "@types/cookie": "^0.5.1",
+    "@types/node": "^17.0.35",
+    "@types/react": "^17.0.45",
+    "eslint": "8.30.0",
+    "eslint-config-next": "13.1.0",
+    "typescript": "^4.7.2"
+  }
+}
diff --git a/Server/frontend/pages/_app.tsx b/Server/frontend/pages/_app.tsx
@@ -0,0 +1,21 @@
+import type { AppProps } from "next/app";
+import { ChainId, ThirdwebProvider } from "@thirdweb-dev/react";
+
+const activeChainId = ChainId.Mumbai;
+
+function MyApp({ Component, pageProps }: AppProps) {
+  return (
+    <ThirdwebProvider 
+      desiredChainId={activeChainId}
+      authConfig={{
+        domain: "sailors.skinetics.tech",
+        authUrl: "/api/auth",
+        loginRedirect: "/"
+      }}
+    >
+      <Component {...pageProps} />
+    </ThirdwebProvider>
+  )
+}
+
+export default MyApp;
diff --git a/Server/frontend/pages/api/auth/[...thirdweb].ts b/Server/frontend/pages/api/auth/[...thirdweb].ts
@@ -0,0 +1,43 @@
+import { ThirdwebAuth } from "@thirdweb-dev/auth/next";
+import { createClient } from '@supabase/supabase-js';
+
+export const supabase = createClient(
+    process.env.SUPABASE_URL || "",
+    process.env.SUPABASE_SERVICE_ROLE || ""
+);
+
+export const { ThirdwebAuthHandler, getUser } = ThirdwebAuth({
+    privateKey: process.env.PRIVATE_KEY || "",
+    domain: "sailors.skinetics.tech",
+    callbacks: {
+        login: async (address: string) => {
+            const { data: user } = await supabase
+                .from("users")
+                .select("*")
+                .eq("address", address.toLowerCase())
+                .single();
+
+            if (!user) {
+                const res = await supabase
+                    .from("users")
+                    .insert({ address: address.toLowerCase() })
+                    .single();
+
+                if (res.error) {
+                    throw new Error("Failed to create user!");
+                }
+            }
+        },
+        user: async (address: string) => {
+            const { data: user } = await supabase
+                .from("users")
+                .select("*")
+                .eq("address", address.toLowerCase())
+                .single();
+
+            return user;
+        },
+    },
+});
+
+export default ThirdwebAuthHandler();