sonr/x/macaroon/keeper/issuer.go

package keeper

import (
	"crypto/sha256"
	"fmt"
	"time"

	sdk "github.com/cosmos/cosmos-sdk/types"
	"github.com/onsonr/sonr/internal/ctx"
	didtypes "github.com/onsonr/sonr/x/did/types"
	"gopkg.in/macaroon.v2"
)

var fourYears = time.Hour * 24 * 365 * 4

// IssueAdminMacaroon creates a macaroon with the specified parameters.
func (k Keeper) IssueAdminMacaroon(sdkctx sdk.Context, controller didtypes.ControllerI) (*macaroon.Macaroon, error) {
	sctx := ctx.GetSonrCTX(sdkctx)
	// Derive the root key by hashing the shared MPC public key
	rootKey := sha256.Sum256([]byte(controller.PublicKey()))
	// Create the macaroon
	m, err := macaroon.New(rootKey[:], []byte(controller.SonrAddress()), controller.ChainID(), macaroon.LatestVersion)
	if err != nil {
		return nil, err
	}

	// Add the block expiry caveat
	caveat := fmt.Sprintf("block-expiry=%d", sctx.GetBlockExpiration(fourYears))
	err = m.AddFirstPartyCaveat([]byte(caveat))
	if err != nil {
		return nil, err
	}

	return m, nil
}

// IssueServiceMacaroon creates a macaroon with the specified parameters.
func (k Keeper) IssueServiceMacaroon(sdkctx sdk.Context, sharedMPCPubKey, location, id string, blockExpiry uint64) (*macaroon.Macaroon, error) {
	// Derive the root key by hashing the shared MPC public key
	rootKey := sha256.Sum256([]byte(sharedMPCPubKey))
	// Create the macaroon
	m, err := macaroon.New(rootKey[:], []byte(id), location, macaroon.LatestVersion)
	if err != nil {
		return nil, err
	}

	// Add the block expiry caveat
	caveat := fmt.Sprintf("block-expiry=%d", blockExpiry)
	err = m.AddFirstPartyCaveat([]byte(caveat))
	if err != nil {
		return nil, err
	}

	return m, nil
}
feat: add rudimentary DidController table 2024-10-03 17:49:29 -04:00			`package keeper`

			`import (`
			`"crypto/sha256"`
			`"fmt"`
feature/1111 sync chain dwn endpoint (#1143) - feat(did): add assertion type to DID spec - refactor: update build process to include assets generation - refactor: update import paths for to - feat: introduce new authentication state management - feat: add current account route - feat: implement global toasts with custom HTML - refactor: remove unused session code - feat: add config.json to embedded assets - refactor: remove unused dependency on gorilla/sessions - refactor: simplify session management and remove unnecessary fields - fix: remove unnecessary import for unused protobuf types - feat: introduce separate HTTP contexts for Highway and DWN - fix(keeper): Handle missing controller during initial sync - refactor: extract DWN configuration from DWNContext - feat: add view route - fix: update configuration file name in embed.go - feat: improve vaultindex page loading experience - feat(hway): add highway context to echo context - chore(deps): bump onsonr/crypto from 1.32.0 to 1.33.0 - refactor: rename DWNSessionMiddleware to WebNodeSessionMiddleware - feat: rename client API to web node API - refactor: separate API and view routes - refactor: remove unused build targets in Makefile - feat: add Devbox integration to container - feat: add wasm support for dwn - refactor: update module proto import - feat: add default first and third party caveats - feat: Add target vault allocation mechanism - refactor: introduce standardized session cookie handling - fix: update service worker installation and ready states - feat: add worker handlers - feat: Enable SSH access to devcontainer - refactor: rename HighwayContext to HwayContext - feat: add block expiration calculation to sonr context - feat: remove config from cookie and header - feat(gen): Remove generated code for IPFS, Motr and Sonr - refactor: remove unused createMotrConfig function - feat: add project analytics with Repobeats - docs: Remove component details from README - refactor: rename SetConfig to injectConfig 2024-10-15 14:31:19 -04:00			`"time"`
feat: add rudimentary DidController table 2024-10-03 17:49:29 -04:00
			`sdk "github.com/cosmos/cosmos-sdk/types"`
feature/1111 sync chain dwn endpoint (#1143) - feat(did): add assertion type to DID spec - refactor: update build process to include assets generation - refactor: update import paths for to - feat: introduce new authentication state management - feat: add current account route - feat: implement global toasts with custom HTML - refactor: remove unused session code - feat: add config.json to embedded assets - refactor: remove unused dependency on gorilla/sessions - refactor: simplify session management and remove unnecessary fields - fix: remove unnecessary import for unused protobuf types - feat: introduce separate HTTP contexts for Highway and DWN - fix(keeper): Handle missing controller during initial sync - refactor: extract DWN configuration from DWNContext - feat: add view route - fix: update configuration file name in embed.go - feat: improve vaultindex page loading experience - feat(hway): add highway context to echo context - chore(deps): bump onsonr/crypto from 1.32.0 to 1.33.0 - refactor: rename DWNSessionMiddleware to WebNodeSessionMiddleware - feat: rename client API to web node API - refactor: separate API and view routes - refactor: remove unused build targets in Makefile - feat: add Devbox integration to container - feat: add wasm support for dwn - refactor: update module proto import - feat: add default first and third party caveats - feat: Add target vault allocation mechanism - refactor: introduce standardized session cookie handling - fix: update service worker installation and ready states - feat: add worker handlers - feat: Enable SSH access to devcontainer - refactor: rename HighwayContext to HwayContext - feat: add block expiration calculation to sonr context - feat: remove config from cookie and header - feat(gen): Remove generated code for IPFS, Motr and Sonr - refactor: remove unused createMotrConfig function - feat: add project analytics with Repobeats - docs: Remove component details from README - refactor: rename SetConfig to injectConfig 2024-10-15 14:31:19 -04:00			`"github.com/onsonr/sonr/internal/ctx"`
			`didtypes "github.com/onsonr/sonr/x/did/types"`
feat: add rudimentary DidController table 2024-10-03 17:49:29 -04:00			`"gopkg.in/macaroon.v2"`
			`)`

feature/1111 sync chain dwn endpoint (#1143) - feat(did): add assertion type to DID spec - refactor: update build process to include assets generation - refactor: update import paths for to - feat: introduce new authentication state management - feat: add current account route - feat: implement global toasts with custom HTML - refactor: remove unused session code - feat: add config.json to embedded assets - refactor: remove unused dependency on gorilla/sessions - refactor: simplify session management and remove unnecessary fields - fix: remove unnecessary import for unused protobuf types - feat: introduce separate HTTP contexts for Highway and DWN - fix(keeper): Handle missing controller during initial sync - refactor: extract DWN configuration from DWNContext - feat: add view route - fix: update configuration file name in embed.go - feat: improve vaultindex page loading experience - feat(hway): add highway context to echo context - chore(deps): bump onsonr/crypto from 1.32.0 to 1.33.0 - refactor: rename DWNSessionMiddleware to WebNodeSessionMiddleware - feat: rename client API to web node API - refactor: separate API and view routes - refactor: remove unused build targets in Makefile - feat: add Devbox integration to container - feat: add wasm support for dwn - refactor: update module proto import - feat: add default first and third party caveats - feat: Add target vault allocation mechanism - refactor: introduce standardized session cookie handling - fix: update service worker installation and ready states - feat: add worker handlers - feat: Enable SSH access to devcontainer - refactor: rename HighwayContext to HwayContext - feat: add block expiration calculation to sonr context - feat: remove config from cookie and header - feat(gen): Remove generated code for IPFS, Motr and Sonr - refactor: remove unused createMotrConfig function - feat: add project analytics with Repobeats - docs: Remove component details from README - refactor: rename SetConfig to injectConfig 2024-10-15 14:31:19 -04:00			`var fourYears = time.Hour * 24 * 365 * 4`

			`// IssueAdminMacaroon creates a macaroon with the specified parameters.`
			`func (k Keeper) IssueAdminMacaroon(sdkctx sdk.Context, controller didtypes.ControllerI) (*macaroon.Macaroon, error) {`
			`sctx := ctx.GetSonrCTX(sdkctx)`
			`// Derive the root key by hashing the shared MPC public key`
			`rootKey := sha256.Sum256([]byte(controller.PublicKey()))`
			`// Create the macaroon`
			`m, err := macaroon.New(rootKey[:], []byte(controller.SonrAddress()), controller.ChainID(), macaroon.LatestVersion)`
			`if err != nil {`
			`return nil, err`
			`}`

			`// Add the block expiry caveat`
			`caveat := fmt.Sprintf("block-expiry=%d", sctx.GetBlockExpiration(fourYears))`
			`err = m.AddFirstPartyCaveat([]byte(caveat))`
			`if err != nil {`
			`return nil, err`
			`}`

			`return m, nil`
			`}`

			`// IssueServiceMacaroon creates a macaroon with the specified parameters.`
			`func (k Keeper) IssueServiceMacaroon(sdkctx sdk.Context, sharedMPCPubKey, location, id string, blockExpiry uint64) (*macaroon.Macaroon, error) {`
feat: add rudimentary DidController table 2024-10-03 17:49:29 -04:00			`// Derive the root key by hashing the shared MPC public key`
			`rootKey := sha256.Sum256([]byte(sharedMPCPubKey))`
			`// Create the macaroon`
			`m, err := macaroon.New(rootKey[:], []byte(id), location, macaroon.LatestVersion)`
			`if err != nil {`
			`return nil, err`
			`}`

			`// Add the block expiry caveat`
			`caveat := fmt.Sprintf("block-expiry=%d", blockExpiry)`
			`err = m.AddFirstPartyCaveat([]byte(caveat))`
			`if err != nil {`
			`return nil, err`
			`}`

			`return m, nil`
			`}`