SIWE Generation (#47)

Co-authored-by: Joaquim Verges <joaquim.verges@gmail.com>

Author: 0xFirekeeper

Assets/Thirdweb/Core/Scripts/ThirdwebSDK.cs

@@ -1,4 +1,5 @@
 using System.Collections.Generic;
+using Nethereum.Siwe;
 using Nethereum.Web3;
 using Nethereum.Web3.Accounts;
 using UnityEngine;
@@ -85,28 +86,25 @@ public struct BiconomyOptions
 
         public Storage storage;
 
-        [System.Serializable]
         public class NativeSession
         {
             public int lastChainId = -1;
             public string lastRPC = null;
             public Account account = null;
             public Web3 web3 = null;
+            public Options options;
+            public SiweMessageService siweSession;
         }
 
         public NativeSession nativeSession;
 
-        public Options options;
-
         /// <summary>
         /// Create an instance of the thirdweb SDK. Requires a webGL browser context.
         /// </summary>
         /// <param name="chainOrRPC">The chain name or RPC url to connect to</param>
         /// <param name="options">Configuration options</param>
         public ThirdwebSDK(string chainOrRPC, int chainId = -1, Options options = new Options())
         {
-            this.options = options;
-
             this.chainOrRPC = chainOrRPC;
             this.wallet = new Wallet();
             this.deployer = new Deployer();
@@ -123,6 +121,8 @@ public class NativeSession
                 nativeSession.lastRPC = rpc;
                 nativeSession.lastChainId = chainId;
                 nativeSession.web3 = new Web3(nativeSession.lastRPC);
+                nativeSession.options = options;
+                nativeSession.siweSession = new Nethereum.Siwe.SiweMessageService();
             }
             else
             {

Assets/Thirdweb/Core/Scripts/TransactionManager.cs

@@ -49,10 +49,10 @@ public static async Task<TransactionReceipt> ThirdwebWriteRawResult<TWFunction>(
             var gas = await gasEstimator.EstimateGasAsync(contractAddress, functionMessage);
             functionMessage.Gas = gas.Value < 100000 ? 100000 : gas.Value;
 
-            if (ThirdwebManager.Instance.SDK.options.gasless != null && ThirdwebManager.Instance.SDK.options.gasless.Value.openzeppelin != null)
+            if (ThirdwebManager.Instance.SDK.nativeSession.options.gasless != null && ThirdwebManager.Instance.SDK.nativeSession.options.gasless.Value.openzeppelin != null)
             {
-                string relayerUrl = ThirdwebManager.Instance.SDK.options.gasless.Value.openzeppelin?.relayerUrl;
-                string relayerForwarderAddress = ThirdwebManager.Instance.SDK.options.gasless.Value.openzeppelin?.relayerForwarderAddress;
+                string relayerUrl = ThirdwebManager.Instance.SDK.nativeSession.options.gasless.Value.openzeppelin?.relayerUrl;
+                string relayerForwarderAddress = ThirdwebManager.Instance.SDK.nativeSession.options.gasless.Value.openzeppelin?.relayerForwarderAddress;
 
                 functionMessage.Nonce = (
                     await ThirdwebRead<MinimalForwarder.GetNonceFunction, MinimalForwarder.GetNonceOutputDTO>(

Assets/Thirdweb/Core/Scripts/Types.cs

@@ -379,17 +379,41 @@ public override string ToString()
     }
 
     [System.Serializable]
-    public struct LoginPayloadData
+    public class LoginPayloadData
     {
+        public string type;
         public string domain;
         public string address;
+        public string statement;
+        public string uri;
+        public string version;
+        public string chain_id;
         public string nonce;
+        public string issued_at;
         public string expiration_time;
-        public string chain_id;
+        public string invalid_before;
+        public List<string> resources;
+
+        public LoginPayloadData()
+        {
+            type = "evm";
+        }
 
         public override string ToString()
         {
-            return $"LoginPayloadData:" + $"\n>domain: {domain}" + $"\n>address: {address}" + $"\n>nonce: {nonce}" + $"\n>expiration_time: {expiration_time}" + $"\n>chain_id: {chain_id}";
+            return $"LoginPayloadData:"
+                + $"\n>type: {type}"
+                + $"\n>domain: {domain}"
+                + $"\n>address: {address}"
+                + $"\n>statement: {statement}"
+                + $"\n>uri: {uri}"
+                + $"\n>version: {version}"
+                + $"\n>chain_id: {chain_id}"
+                + $"\n>nonce: {nonce}"
+                + $"\n>issued_at: {issued_at}"
+                + $"\n>expiration_time: {expiration_time}"
+                + $"\n>invalid_before: {invalid_before}"
+                + $"\n>resources: {resources}";
         }
     }
 

Assets/Thirdweb/Core/Scripts/Wallet.cs

@@ -2,15 +2,14 @@
 using System.Threading.Tasks;
 using Nethereum.Signer;
 using Nethereum.Web3;
-using Nethereum.Web3.Accounts;
 using UnityEngine;
 using System;
-using WalletConnectSharp.Core;
 using WalletConnectSharp.Core.Models;
-using WalletConnectSharp.Core.Models.Ethereum;
 using WalletConnectSharp.Unity;
-using WalletConnectSharp.NEthereum.Account;
 using WalletConnectSharp.NEthereum;
+using Nethereum.Siwe.Core;
+using Nethereum.Siwe;
+using System.Collections.Generic;
 
 //using WalletConnectSharp.NEthereum;
 
@@ -45,6 +44,7 @@ public async Task<string> Connect(WalletConnection? walletConnection = null, str
                     newNativeSession.lastChainId = ThirdwebManager.Instance.SDK.nativeSession.lastChainId;
                     newNativeSession.account = null;
                     newNativeSession.web3 = WalletConnect.Instance.Session.BuildWeb3(new Uri(newNativeSession.lastRPC)).AsWalletAccount(true);
+                    newNativeSession.siweSession = new SiweMessageService();
                     ThirdwebManager.Instance.SDK.nativeSession = newNativeSession;
                     return WalletConnect.Instance.Session.Accounts[0];
                 }
@@ -54,6 +54,7 @@ public async Task<string> Connect(WalletConnection? walletConnection = null, str
                     newNativeSession.lastChainId = ThirdwebManager.Instance.SDK.nativeSession.lastChainId;
                     newNativeSession.account = Utils.UnlockOrGenerateAccount(newNativeSession.lastChainId, password, null); // TODO: Allow custom private keys/passwords
                     newNativeSession.web3 = new Web3(newNativeSession.account, newNativeSession.lastRPC);
+                    newNativeSession.siweSession = new SiweMessageService();
                     ThirdwebManager.Instance.SDK.nativeSession = newNativeSession;
                     return ThirdwebManager.Instance.SDK.nativeSession.account.Address;
                 }
@@ -80,6 +81,7 @@ public async Task Disconnect()
                 newNativeSession.lastChainId = ThirdwebManager.Instance.SDK.nativeSession.lastChainId;
                 newNativeSession.account = null;
                 newNativeSession.web3 = new Web3(newNativeSession.lastRPC); // fallback
+                newNativeSession.siweSession = new SiweMessageService();
                 ThirdwebManager.Instance.SDK.nativeSession = newNativeSession;
             }
         }
@@ -96,7 +98,105 @@ public async Task<LoginPayload> Authenticate(string domain)
             }
             else
             {
-                throw new UnityException("This functionality is not yet available on your current platform.");
+                var siwe = ThirdwebManager.Instance.SDK.nativeSession.siweSession;
+                var siweMsg = new SiweMessage()
+                {
+                    Resources = new List<string>(),
+                    Uri = $"https://{domain}",
+                    Statement = "Please ensure that the domain above matches the URL of the current website.",
+                    Address = await GetAddress(),
+                    Domain = domain,
+                    ChainId = (await GetChainId()).ToString(),
+                    Version = "1",
+                    Nonce = null,
+                    IssuedAt = null,
+                    ExpirationTime = null,
+                    NotBefore = null,
+                    RequestId = null
+                };
+                siweMsg.SetIssuedAtNow();
+                siweMsg.SetExpirationTime(DateTime.UtcNow.AddSeconds(60 * 5));
+                siweMsg.SetNotBefore(DateTime.UtcNow);
+                siweMsg = siwe.AssignNewNonce(siweMsg);
+
+                var finalMsg = SiweMessageStringBuilder.BuildMessage(siweMsg);
+                var signature = await Sign(finalMsg);
+                return new LoginPayload()
+                {
+                    signature = signature,
+                    payload = new LoginPayloadData()
+                    {
+                        domain = siweMsg.Domain,
+                        address = siweMsg.Address,
+                        statement = siweMsg.Statement,
+                        uri = siweMsg.Uri,
+                        version = siweMsg.Version,
+                        chain_id = siweMsg.ChainId,
+                        nonce = siweMsg.Nonce,
+                        issued_at = siweMsg.IssuedAt,
+                        expiration_time = siweMsg.ExpirationTime,
+                        invalid_before = siweMsg.NotBefore,
+                        resources = siweMsg.Resources,
+                    }
+                };
+            }
+        }
+
+        public async Task<string> Verify(LoginPayload payload)
+        {
+            if (Utils.IsWebGLBuild())
+            {
+                throw new UnityException("This functionality is not available on your current platform.");
+            }
+            else
+            {
+                var siwe = ThirdwebManager.Instance.SDK.nativeSession.siweSession;
+                var siweMessage = new SiweMessage()
+                {
+                    Domain = payload.payload.domain,
+                    Address = payload.payload.address,
+                    Statement = payload.payload.statement,
+                    Uri = payload.payload.uri,
+                    Version = payload.payload.version,
+                    ChainId = payload.payload.chain_id,
+                    Nonce = payload.payload.nonce,
+                    IssuedAt = payload.payload.issued_at,
+                    ExpirationTime = payload.payload.expiration_time,
+                    NotBefore = payload.payload.invalid_before,
+                    Resources = payload.payload.resources,
+                    RequestId = null
+                };
+                var signature = payload.signature;
+                var validUser = await siwe.IsUserAddressRegistered(siweMessage);
+                if (validUser)
+                {
+                    if (await siwe.IsMessageSignatureValid(siweMessage, signature))
+                    {
+                        if (siwe.IsMessageTheSameAsSessionStored(siweMessage))
+                        {
+                            if (siwe.HasMessageDateStartedAndNotExpired(siweMessage))
+                            {
+                                return siweMessage.Address;
+                            }
+                            else
+                            {
+                                return "Expired";
+                            }
+                        }
+                        else
+                        {
+                            return "Invalid Session";
+                        }
+                    }
+                    else
+                    {
+                        return "Invalid Signature";
+                    }
+                }
+                else
+                {
+                    return "Invalid User";
+                }
             }
         }
 
@@ -138,7 +238,7 @@ public async Task<string> GetAddress()
             {
                 if (Utils.ActiveWalletConnectSession())
                 {
-                    return WalletConnect.Instance.Session.Accounts[0];
+                    return Nethereum.Util.AddressUtil.Current.ConvertToChecksumAddress(WalletConnect.Instance.Session.Accounts[0]);
                 }
                 else if (ThirdwebManager.Instance.SDK.nativeSession.account != null)
                 {

Assets/Thirdweb/Examples/Scenes/Scene_Prefabs.unity

@@ -123,50 +123,6 @@ NavMeshSettings:
     debug:
       m_Flags: 0
   m_NavMeshData: {fileID: 0}
---- !u!1 &89313707
-GameObject:
-  m_ObjectHideFlags: 0
-  m_CorrespondingSourceObject: {fileID: 0}
-  m_PrefabInstance: {fileID: 0}
-  m_PrefabAsset: {fileID: 0}
-  serializedVersion: 6
-  m_Component:
-  - component: {fileID: 89313709}
-  - component: {fileID: 89313708}
-  m_Layer: 0
-  m_Name: AsyncCoroutineRunner
-  m_TagString: Untagged
-  m_Icon: {fileID: 0}
-  m_NavMeshLayer: 0
-  m_StaticEditorFlags: 0
-  m_IsActive: 1
---- !u!114 &89313708
-MonoBehaviour:
-  m_ObjectHideFlags: 0
-  m_CorrespondingSourceObject: {fileID: 0}
-  m_PrefabInstance: {fileID: 0}
-  m_PrefabAsset: {fileID: 0}
-  m_GameObject: {fileID: 89313707}
-  m_Enabled: 1
-  m_EditorHideFlags: 0
-  m_Script: {fileID: 11500000, guid: f11ec4617f62c224b99e34972dc917a8, type: 3}
-  m_Name: 
-  m_EditorClassIdentifier: 
---- !u!4 &89313709
-Transform:
-  m_ObjectHideFlags: 0
-  m_CorrespondingSourceObject: {fileID: 0}
-  m_PrefabInstance: {fileID: 0}
-  m_PrefabAsset: {fileID: 0}
-  m_GameObject: {fileID: 89313707}
-  m_LocalRotation: {x: 0, y: 0, z: 0, w: 1}
-  m_LocalPosition: {x: 0, y: 0, z: 0}
-  m_LocalScale: {x: 1, y: 1, z: 1}
-  m_ConstrainProportionsScale: 0
-  m_Children: []
-  m_Father: {fileID: 0}
-  m_RootOrder: 6
-  m_LocalEulerAnglesHint: {x: 0, y: 0, z: 0}
 --- !u!1 &136589466
 GameObject:
   m_ObjectHideFlags: 0
@@ -654,10 +610,6 @@ PrefabInstance:
       propertyPath: m_AnchorMax.y
       value: 0
       objectReference: {fileID: 0}
-    - target: {fileID: 7216536800389251089, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
-      propertyPath: m_AnchorMin.y
-      value: 0
-      objectReference: {fileID: 0}
     - target: {fileID: 7568917606152558407, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
       propertyPath: m_AnchorMax.y
       value: 0
@@ -988,7 +940,7 @@ PrefabInstance:
       objectReference: {fileID: 0}
     - target: {fileID: 7702873693426126306, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
       propertyPath: m_AnchoredPosition.x
-      value: -50
+      value: -49.999878
       objectReference: {fileID: 0}
     - target: {fileID: 7702873693426126306, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
       propertyPath: m_AnchoredPosition.y
@@ -1014,18 +966,6 @@ PrefabInstance:
       propertyPath: m_SizeDelta.y
       value: 0
       objectReference: {fileID: 0}
-    - target: {fileID: 7702873693758646612, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
-      propertyPath: m_AnchorMax.x
-      value: 0
-      objectReference: {fileID: 0}
-    - target: {fileID: 7702873693758646612, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
-      propertyPath: m_AnchorMax.y
-      value: 0
-      objectReference: {fileID: 0}
-    - target: {fileID: 7702873693758646612, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
-      propertyPath: m_SizeDelta.x
-      value: 0
-      objectReference: {fileID: 0}
     m_RemovedComponents: []
   m_SourcePrefab: {fileID: 100100000, guid: 487e6840fccf4594ca24581d2b3e9d25, type: 3}
 --- !u!224 &866517574 stripped

Assets/Thirdweb/Examples/Scripts/Prefabs/Prefab_ConnectWalletNative.cs

@@ -143,7 +143,7 @@ public async void OnConnect(WalletNative _wallet, string password = null)
                     address = await ThirdwebManager.Instance.SDK.wallet.Connect(null, password, null);
                     break;
                 case WalletNative.DeviceWalletNoPassword:
-                    address = await ThirdwebManager.Instance.SDK.wallet.Connect(null, password, null);
+                    address = await ThirdwebManager.Instance.SDK.wallet.Connect();
                     break;
                 case WalletNative.WalletConnect:
                     wcSessionData = await WalletConnect.Instance.EnableWalletConnect();

Assets/Thirdweb/Examples/Scripts/Prefabs/Prefab_Miscellaneous.cs

@@ -44,8 +44,33 @@ public async void Authenticate()
     {
         try
         {
-            LoginPayload data = await ThirdwebManager.Instance.SDK.wallet.Authenticate("example.com");
-            Debugger.Instance.Log("[Authenticate] Successful", data.ToString());
+            if (Utils.IsWebGLBuild())
+            {
+                LoginPayload data = await ThirdwebManager.Instance.SDK.wallet.Authenticate("example.com");
+                Debugger.Instance.Log("[Authenticate] Successful", data.ToString());
+            }
+            else
+            {
+                // Generate and sign
+                LoginPayload data = await ThirdwebManager.Instance.SDK.wallet.Authenticate("example.com");
+                // Verify
+                if (!Utils.IsWebGLBuild())
+                {
+                    string resultAddressOrError = await ThirdwebManager.Instance.SDK.wallet.Verify(data);
+                    if (await ThirdwebManager.Instance.SDK.wallet.GetAddress() == resultAddressOrError)
+                    {
+                        Debugger.Instance.Log("[Authenticate] Successful", resultAddressOrError);
+                    }
+                    else
+                    {
+                        Debugger.Instance.Log("[Authenticate] Invalid", resultAddressOrError);
+                    }
+                }
+                else
+                {
+                    Debugger.Instance.Log("[Authenticate] Successful", data.payload.ToString());
+                }
+            }
         }
         catch (System.Exception e)
         {