Skip to content
/ Cere-Identity-Custody-SDK Public

This repository provides description about Cere Identity Abstraction

3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Cerebellum-Network/Cere-Identity-Custody-SDK

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit

README.md

README.md

 
 

Repository files navigation

Cere Identity/Custody SDK

Purpose of this project/repo

The tools, API’s, and packaging facilitate a seamless user onboarding process for any application to connect to any Cere or Substrate-based blockchain networks. There is a pre-configured custodial identity service provided by Cere Network to allow immediate setup and testing against the Cere testnet, and to provide as a template for any other network and identity management to be used instead.

Key components

  • Embedded Wallet - An embeddable custodial wallet that is designed to be integrated into any app or website. It is optimized to work with Cere main net, testnet, and any other substrate network. It needs to work with a custodial identity service.
  • Pre-configured Cere Identity Service within the embeddable wallet supports auth/key creation/ recovery/etc to generate and custody the identity
  • The identity service implements the Transaction Gateway which is the interface that you can use to implement your own identity service (not Cere hosted solution) to work with the embedded wallet.
  • Testing tools/ etc.

Hierarchy

Hierarchy
├── Embedded Wallet (client-side)
│   └── Abstract Base Wallet
│        ├── Javascript Implementation (already impl)
│        ├── Android implementation
│        └── iOS implementation        
│   
└── Custodial Service Interface (server-side)
│   └── Cere Identity Service Desc/Inst  
│   └── How to impl/extend your own
├── Tools / Tests

Overview diagram

image

1. Embedded Custody Wallet

Responsibilities

  • Send onboarding request to Identity Service
  • Store key pair in the local storage on the device/browser
    • Users should not be able to use this key pair. It is encrypted by secret configured inside Custody Service.

Abstract Base Wallet

interface OneTimeTokenResponse {
  accessToken: string
}

interface SessionTokenResponse {
  accessToken: string
}

interface KeyPairResponse {
  publicKey: string,
  privateKey: string,
}

class abstract AbstractBaseWalletOnboardingSDK {
   public function getOneTimeAccessToken(appId: string, externalUserId: string): OneTimeTokenResponse;

   public function getSessionToken(sessionToken: string): SessionTokenResponse;

   public function getKeyPair(sessionToken: string): KeyPairResponse;
}

Javascript Implementation

Repository

Configuration/Overriding defaults

  • This package is configured to talk to Cere Network Identity Service by default. But you can override it to use your own implementation
  • In order to specify a custom identityURL you should provide a parameter to the constructor during the object instantiation. Otherwise CERE custody service will be used.
const custodySDK = new CustodySDK();
custodySDK.setIdentityEndpoint(<URL to the Custody Service>);
  • In order to specify custom blockchain URL, use setBlockchainEndpoint helper (This switching can be implemented using simple dropdown in UI):
custodySDK.setBlockchainEndpoint("<URL to your ownBlockchain here>");

iOS Implementation

  • In Progress

Android Implementation

  • In Progress

2. Identity/Custody Service

The server-side services for hosting and custodying of user identities

Responsibilities

  • Store mapping between user’s wallet Public Key and application User ID
  • Provide a possibility to restore private key in case of lost or using on different devices

API Interface

Create access token to onboard new user:

Request: 
// POST 
Endpoint: /onboarding/access-tokens 
Body: {"appId": String, "userId": String}

Response: 
{"accessToken": <Temporary token to send request>}

Create new user using temporary access token:

Request: 
// POST 
Endpoint: /onboarding/users 
Body: {"appId": String, "userId": String}
Headers: {"Authentication": <Temporary token from previous response>} 

Response: 
{"accessToken": <JWT token to get User's data>}

Get user’s wallet using JWT token:

Request: 
// GET
Endpoint: /onboarding/users
Headers: {"Authentication": <JWT token from previous response>} 

Response:
{"publicKey": <User's public key>, "privateKey": <User's private key>}
  • Here privateKey - is an encrypted key, which can be used for signing transactions only.

Pre-Configured Cere Identity Service

  • Cere Network provides the service, which implements the API interface described in the section above.
  • This is a hosted service designed to work with Cere Test Net.
  • You can override this in order to work with any Substrate compatible Networks.
  • In order to use your own Identity Service implementation, you need to override this endpoint as described here.

3. Tools/Tests

This section consist of some useful Tools

Example application with Embedded Wallet

Repository
Quick Start
git clone https://github.com/Cerebellum-Network/Embedded-Wallet-App-Example
npm start

About

This repository provides description about Cere Identity Abstraction

Resources

Readme
Activity
Custom properties

Stars

3 stars

Watchers

7 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published