Skip to content
/ litmus-api-web3 Public

REST API authentication using polkdot substrate account.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

umrbrwn/litmus-api-web3

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
.vscode
.vscode
 
 
prisma
prisma
 
 
src
src
 
 
.env
.env
 
 
.gitignore
.gitignore
 
 
README.MD
README.MD
 
 
package.json
package.json
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

Little Litmus!

Litmus is a purpose built expressjs and polkadot based RESTful API to demonstrate Node.js and Web3.0 skills. It offers two APIs:

  1. POST /api/v1/signin It offers authentication by using substrate account and signature verification, and returns a API signed bearer token as identity for substrate account. Please see the demo section.
  2. GET /api/v1/secret Its token authenticated API that returns random magic strings from Postgres.

The app uses some of the famous npm packages, i.e. express, joi, dotenv, prisma ORM, passport, pino logger with ECS formatting, and more importantly polkadot to verify signatures.

How it works:

  1. Call /challengecode API with your address aka username, and it will give you an arbitrary challenge code that expires after 3 minutes.
  2. Call /signin API with your username, a message containing your username and the challenge code, signature of the message, and the challenge code
  3. If everything works, it will give an signed token that you can use to call other endpoints of Litmus API, for example /secret.

Web3 Version: Switch to dev branch for Web3 version, that uses Polkadot account for auth.

DEMO:

curl --location --request POST 'http://localhost:3000/api/v1/challengecode' \
--header 'Content-Type: application/json' \
--data-raw '{
    "address": "14GgSVJ1unwjVw4CuMGXYz4P4yT1HzVqEDEiExhiCS84EGQo"
}'

curl --location --request POST 'http://localhost:3000/api/v1/signin' \
--header 'Content-Type: application/json' \
--data-raw '{
    "username": "14GgSVJ1unwjVw4CuMGXYz4P4yT1HzVqEDEiExhiCS84EGQo",
    "message": "Sign-in request for address 14GgSVJ1unwjVw4CuMGXYz4P4yT1HzVqEDEiExhiCS84EGQo and challenge code ff27a34ee04346ba820b5d2460349d4f..",
    "signature": "0xfc03197bd2110f613677913e3d52afbc1ecda9099109f01300a97acde7122d305d87d115cf173632319c6666d829a4585a45462cb3d2df5513f7d5a68c9f1785",
    "challengeCode": "ff27a34ee04346ba820b5d2460349d4f"
}'
    
curl --location --request GET 'http://localhost:3000/api/v1/secret' \
--header 'Authorization: Bearer {TOKEN}'

How to setup:

It requires Node v16.17.0 and yarn cli, and Postgres and Prisma Client for db connectivity.

  1. yarn install

  2. npm run db:migrate:up

  3. npm run db:seed

  4. npm start

Learn more about Prisma: Add Prisma to an existing project that uses a relational database (15 min) | typescript-postgres | Prisma Docs

More on polkadot signature verification: Verify Signature | polkadot{​.js}​​​​​​​​

Polkadot playground: Polkadot/Substrate Portal​​​​​​​

Setup environment variables:

Generate RSA keys for bearer token signing and verification.

  1. mkdir ./certs && ssh-keygen -t rsa -m PEM -b 2048 -C "example@example.com" -f ./certs/cert.pem

  2. LITMUS_API_PORT=3000

  3. DATABASE_URL={POSTGRES-CONNECTION-STRING}

About

REST API authentication using polkdot substrate account.

Topics

nodejs expressjs substrate polkadot-js

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages