hexpreview

lib/siwe.ex

defmodule Siwe do
  @moduledoc """
  Siwe provides validation and parsing for Sign-In with Ethereum messages and signatures.
  Exposes the verify!(message, signature) which raises if invalid
  and returns a Message if valid.
  """

  use Rustler, otp_app: :siwe, crate: "siwe_ex"

  # The result of the Siwe.verify!, a formatted form
  # of what siwe-rs uses
  defmodule Message do
    defstruct domain: "",
              address: "",
              statement: "",
              uri: "",
              version: "",
              chain_id: "",
              nonce: "",
              issued_at: "",
              expiration_time: nil,
              # or a string datetime
              not_before: nil,
              # or a string datetime
              request_id: nil,
              # or string
              resources: []
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  @doc false
  @spec from_str(String.t()) :: Message.t()
  defp from_str(_msg) do
    :erlang.nif_error(:nif_not_loaded)
  end

  @spec to_str(Message.t()) :: String.t()
  defp to_str(_msg) do
    :erlang.nif_error(:nif_not_loaded)
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  @doc false
  @spec validate_sig(Message.t(), String.t()) :: boolean()
  def validate_sig(_msg, _sig) do
    :erlang.nif_error(:nif_not_loaded)
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  @doc false
  @spec validate_time(Message.t()) :: boolean()
  def validate_time(_msg) do
    :erlang.nif_error(:nif_not_loaded)
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  # Optimized form of validate_sig(m) && validate_time(m)
  @doc false
  @spec validate(Message.t(), String.t()) :: boolean()
  def validate(_msg, _sig) do
    :erlang.nif_error(:nif_not_loaded)
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  # Optimized form of validate_sig(from_str(s))
  @doc false
  @spec parse_if_valid_sig(String.t(), String.t()) :: Message.t()
  defp parse_if_valid_sig(_msg, _sig) do
    :erlang.nif_error(:nif_not_loaded)
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  # Optimized form of validate_time(from_str(s))
  @doc false
  @spec parse_if_valid_time(String.t()) :: Message.t()
  defp parse_if_valid_time(_msg) do
    :erlang.nif_error(:nif_not_loaded)
  end

  # Overwritten by the Rustler NIF, uses siwe-rs to do the heavy lifting.
  # Optimized form of validate(from_str(s)) && from_str(s)
  @doc false
  @spec parse_if_valid(String.t(), String.t()) :: Message.t()
  defp parse_if_valid(_msg, _sig) do
    :erlang.nif_error(:nif_not_loaded)
  end

  @doc """
    Parses a SIWE message string into Siwe.Message struct if conforming to standards.
    Will parse messages without checking for validity.
  """
  @spec from_str!(String.t()) :: Message
  def from_str!(msg) do
    from_str(msg)
  end

  @doc """
    Formats parsed SIWE message into string matching signing material
  """
  @spec to_str!(String.t()) :: Message.t()
  def to_str!(msg) do
    to_str(msg)
  end

  @doc """
    Parses a SIWE message string into a Siwe Message Struct if the given signature matches
    the message string.
  """
  @spec parse_if_valid_sig!(String.t(), String.t()) :: Message.t()
  def parse_if_valid_sig!(msg, sig) do
    parse_if_valid_sig(msg, sig)
  end

  @doc """
    Parses a SIWE message string into a Siwe Message Struct if the current time is valid in
    terms of the message string.
  """
  @spec parse_if_valid_time!(String.t()) :: Message.t()
  def parse_if_valid_time!(msg) do
    parse_if_valid_time(msg)
  end

  @doc """
   Tests that a message and signature pair correspond and that the current
   time is valid (after not_before, and before expiration_time)
   any validation of other fields to server's expectation are left
   to the calling application. Just a wrapper around the Rustler NIF

   Returns a Message structure based on the passed message

   ## Examples
    iex> Siwe.parse_if_valid!(Enum.join(["login.xyz wants you to sign in with your Ethereum account:",
    ...> "0xfA151B5453CE69ABf60f0dbdE71F6C9C5868800E",
    ...> "",
    ...> "Sign-In With Ethereum Example Statement",
    ...> "",
    ...> "URI: https://login.xyz",
    ...> "Version: 1",
    ...> "Chain ID: 1",
    ...> "Nonce: ToTaLLyRanDOM",
    ...> "Issued At: 2021-12-17T00:38:39.834Z",
    ...> ], "\\n"),
    ...> "0x8d1327a1abbdf172875e5be41706c50fc3bede8af363b67aefbb543d6d082fb76a22057d7cb6d668ceba883f7d70ab7f1dc015b76b51d226af9d610fa20360ad1c")
    %{ __struct__: Siwe, address: "0xfA151B5453CE69ABf60f0dbdE71F6C9C5868800E", chain_id: "1", domain: "login.xyz", expiration_time: nil, issued_at: "2021-12-17T00:38:39.834Z", nonce: "ToTaLLyRanDOM", not_before: nil, request_id: nil, resources: [], statement: "Sign-In With Ethereum Example Statement", uri: "https://login.xyz", version: "1" }
  """
  @spec parse_if_valid!(String.t(), String.t()) :: Message.t()
  def parse_if_valid!(message, signature) do
    parse_if_valid(message, signature)
  end
end