auth-helpers package with SessionCapabilityObject

[hwrdtm]

What

Closes LIT-247

Apologies for the big PR! If you want I can break it down into smaller chunks.

This PR:

• Introduces a new auth-helpers package that contains an abstraction over various session capability object implementations - today, we will roll out with using a SIWE ReCap based implementation that implements ISessionCapabilityObject.
• Introduce ILitResource which is an abstraction over any LIT-related logical resource, and LitAbility which is a specific action upon a LIT resource. For a user to make a request, they will couple them together as a LitResourceAbilityRequest - we check for compatibility on the SDK and Rust node side, so that you can't logically do a decryption ability over a Rate Limit Increase NFT resource.
• Made lit-node-client-nodejs use stronger types and fix usages of session sigs here and there.
  • Store walletSig (auth sigs)
• Integrate getSessionSigs to use auth-helpers session capability object generation / verification.
• Allow passing optional statement to AuthCallbackParams

Examples:

Creating an ACC LIT resource and then requesting to perform the signing operation over it, by generating session sigs with the SDK, which the SDK will generate a session capability object with wildcard abilities for this specific ACC resource (*/*):

    const litResource = new LitAccessControlConditionResource(hashedResourceId);

    let sessionSigs = savedParams.litNodeClient.getSessionSigs({
      chain: 'ethereum',
      resourceAbilityRequests: [
        {
          resource: litResource,
          ability: LitAbility.AccessControlConditionSigning,
        },
      ],
    });

TODO

• Test against Rust node validation logic (locally)
• Use siwe-recap at 0.0.2-alpha.0
• Update to use more descriptive resource prefixes

Testing

Manually tested from OAuth PKP repo, works as intended.

E2E:

• yarn tools --dev --apps
• yarn tools --test --e2e html

Packages:

• npx nx run lit-node-client-nodejs:test
• npx nx run auth-helpers:test

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
html-test-app-lit-js-sdk-v2	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	May 16, 2023 6:43pm

[hwrdtm]

Apologies for the big PR! If anyone wants I can break it down further.

[hwrdtm]

New concept that I'm introducing to SDK users.

[hwrdtm]

Abstraction over any concrete session capability object implementation.

[hwrdtm]

abstraction over any LIT-related logical resource.

[hwrdtm]

Needed until spruceid/recap-ts#11 is done.

[hwrdtm]

this file contains entry points to getting session capability objects, that are all currently implemented by Recap.

[hwrdtm]

breaking change, but, as discussed we will proceed like so with heads up to users and that's it.

[hwrdtm]

I wanted to introduce LitResource and LitAbility to better separate those two concepts, rather than have everything be encoded into a single string and parsing in a way that is (IMO) less legible.

[joshLong145]

can verification fail?

[hwrdtm]

yea it can

[Ansonhkg]

lgtm! can we also update this repo readme with simple instructions on why and how to use it, example code etc.? also a changelog for the breaking change

[Ansonhkg]

love it btw!

[hwrdtm]

lgtm! can we also update this repo readme with simple instructions on why and how to use it, example code etc.? also a changelog for the breaking change

I can do changelog but I plan to update our website docs soon anyways, so I'll just do it there. I don't think the root README.md is the best place for it.

[hwrdtm]

@Ansonhkg node side changes have been merged per https://github.com/LIT-Protocol/lit-assets/pull/149 and this PR is ready to go. Let's merge and publish this. Docs will come shortly after.

[Ansonhkg]

@hwrdtm Published to latest 2.1.166