`siwe_auth` responders
ClosedPublic
Actions

Authored by atul on Mar 3 2023, 10:38 AM.

Details

Reviewers

ashoat
tomek

Commits

rCOMMa1d55785a1c3: [lib] Introduce `identityKeysBlobValidator` and use in…

Summary

identityKeysBlobValidator ensures that the structure of the JSON.parse()d signedIdentityKeysBlob.payload is correct and throws a ServerError if it isn't.

Test Plan

Made sure login/register/siwe_auth works on native. Made sure login/siwe_auth works on web.

Diff Detail

Repository

rCOMM Comm

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

atul created this revision.Mar 3 2023, 10:38 AM

atul published this revision for review.Mar 3 2023, 10:40 AM

Harbormaster completed remote builds in B17096: Diff 23409.Mar 3 2023, 10:53 AM

ashoat accepted this revision.Mar 3 2023, 12:07 PM

ashoat added inline comments.

lib/utils/crypto-utils.js
3 ↗	(On Diff #23409)	Any reason this is in `lib` instead of `keyserver`? I don't think it will be included in JS bundles, so no serious concern... but I can't imagine this function being called outside of `keyserver` (let me know if I'm missing something)

This revision is now accepted and ready to land.Mar 3 2023, 12:07 PM

atul added inline comments.Mar 3 2023, 12:13 PM

lib/utils/crypto-utils.js
3 ↗	(On Diff #23409)	That's fair, we do only use these validators on the `keyserver`. I guess my reasoning was A. We already have a `crypto-utils.js` in `lib` so one less `crypto-utils.js` file. B. The corresponding flow types live in `lib/types/crypto-types.js` so the `lib/utils/crypto-utils.js` symmetry was nice but neither reason is great. I'll create a separate `crypto-utils` in `keyserver`. (Also considered putting these in `validation-utils`, but I thought it'd be better to keep that "general purpose" with general utilities like `tRegex` and `tNumEnum` instead of cluttering it up with like "business logic specific" validators.)