Class FederatedKeylessAccount

Account implementation for the FederatedKeyless authentication scheme.

Used to represent a FederatedKeyless based account and sign transactions with it.

Use FederatedKeylessAccount.create() to instantiate a KeylessAccount with a JWT, proof, EphemeralKeyPair and the address the JWKs are installed that will be used to verify the JWT.

When the proof expires or the JWT becomes invalid, the KeylessAccount must be instantiated again with a new JWT, EphemeralKeyPair, and corresponding proof.

Hierarchy (view full)

AbstractKeylessAccount
- FederatedKeylessAccount

Methods

bcsToBytes

bcsToBytes(): Uint8Array
Serializes a Serializable value to its BCS representation. This function is the TypeScript SDK equivalent of bcs::to_bytes in Move.

Returns Uint8Array
the BCS representation of the Serializable instance as a byte buffer.
Inherited from AbstractKeylessAccount.bcsToBytes
- Defined in src/bcs/serializer.ts:29

bcsToHex

bcsToHex(): Hex
Converts the BCS-serialized bytes of a value into a Hex instance. This function provides a Hex representation of the BCS-serialized data for easier handling and manipulation.

Returns Hex
A Hex instance with the BCS-serialized bytes loaded into its underlying Uint8Array.
Inherited from AbstractKeylessAccount.bcsToHex
- Defined in src/bcs/serializer.ts:40

init

init(promise): Promise<void>
This initializes the asynchronous proof fetch
Parameters
- promise: Promise<ZeroKnowledgeSig>
Returns Promise<void>
Inherited from AbstractKeylessAccount.init
- Defined in src/account/AbstractKeylessAccount.ts:146

isExpired

isExpired(): boolean
Checks if the proof is expired. If so the account must be re-derived with a new EphemeralKeyPair and JWT token.

Returns boolean
boolean
Inherited from AbstractKeylessAccount.isExpired
- Defined in src/account/AbstractKeylessAccount.ts:175

serialize

serialize(serializer): void
Parameters
- serializer: Serializer
Returns void
Overrides AbstractKeylessAccount.serialize
- Defined in src/account/FederatedKeylessAccount.ts:50

sign

sign(message): KeylessSignature
Sign the given message using Keyless.
Parameters
- message: HexInput
  in HexInput format
Returns KeylessSignature
Signature
Inherited from AbstractKeylessAccount.sign
- Defined in src/account/AbstractKeylessAccount.ts:216

signTransaction

signTransaction(transaction): KeylessSignature
Sign the given transaction with Keyless. Signs the transaction and proof to guard against proof malleability.
Parameters
- transaction: AnyRawTransaction
  the transaction to be signed
Returns KeylessSignature
KeylessSignature
Inherited from AbstractKeylessAccount.signTransaction
- Defined in src/account/AbstractKeylessAccount.ts:242

signTransactionWithAuthenticator

signTransactionWithAuthenticator(transaction): AccountAuthenticatorSingleKey
Sign a transaction using Keyless.
Parameters
- transaction: AnyRawTransaction
  the raw transaction
Returns AccountAuthenticatorSingleKey
the AccountAuthenticator containing the signature of the transaction, together with the account's public key
Inherited from AbstractKeylessAccount.signTransactionWithAuthenticator
- Defined in src/account/AbstractKeylessAccount.ts:195

signWithAuthenticator

signWithAuthenticator(message): AccountAuthenticatorSingleKey
Sign a message using Keyless.
Parameters
- message: HexInput
  the message to sign, as binary input
Returns AccountAuthenticatorSingleKey
the AccountAuthenticator containing the signature, together with the account's public key
Inherited from AbstractKeylessAccount.signWithAuthenticator
- Defined in src/account/AbstractKeylessAccount.ts:184

toString

toString(): string
Returns the hex string representation of the Serializable value with the 0x prefix.

Returns string
the hex formatas a string prefixed by 0x.
Inherited from AbstractKeylessAccount.toString
- Defined in src/bcs/serializer.ts:57

toStringWithoutPrefix

toStringWithoutPrefix(): string
Returns the hex string representation of the Serializable value without the 0x prefix.

Returns string
the hex format as a string without 0x prefix.
Inherited from AbstractKeylessAccount.toStringWithoutPrefix
- Defined in src/bcs/serializer.ts:49

verifySignature

verifySignature(args): boolean
Note - This function is currently incomplete and should only be used to verify ownership of the KeylessAccount

Verifies a signature given the message.

TODO: Groth16 proof verification
Parameters
- args: {
  message: HexInput;
  signature: KeylessSignature;
  }
  - message: HexInput
    the message that was signed.
  - signature: KeylessSignature
    the KeylessSignature to verify
Returns boolean
boolean
Inherited from AbstractKeylessAccount.verifySignature
- Defined in src/account/AbstractKeylessAccount.ts:263

waitForProofFetch

waitForProofFetch(): Promise<void>
Waits for asynchronous proof fetching to finish.

Returns Promise<void>
Inherited from AbstractKeylessAccount.waitForProofFetch
- Defined in src/account/AbstractKeylessAccount.ts:205

`Static`create

create(args): FederatedKeylessAccount
Parameters
- args: {
      address?: AccountAddress;
      ephemeralKeyPair: EphemeralKeyPair;
      jwkAddress: AccountAddressInput;
      jwt: string;
      pepper: HexInput;
      proof: ZeroKnowledgeSig | Promise<ZeroKnowledgeSig>;
      proofFetchCallback?: ProofFetchCallback;
      uidKey?: string;
  }
  - Optionaladdress?: AccountAddress
  - ephemeralKeyPair: EphemeralKeyPair
  - jwkAddress: AccountAddressInput
  - jwt: string
  - pepper: HexInput
  - proof: ZeroKnowledgeSig | Promise<ZeroKnowledgeSig>
  - OptionalproofFetchCallback?: ProofFetchCallback
  - OptionaluidKey?: string
Returns FederatedKeylessAccount
- Defined in src/account/FederatedKeylessAccount.ts:83

`Static`deserialize

deserialize(deserializer): FederatedKeylessAccount
Parameters
- deserializer: Deserializer
Returns FederatedKeylessAccount
- Defined in src/account/FederatedKeylessAccount.ts:62

`Static`fromBytes

fromBytes(bytes): FederatedKeylessAccount
Parameters
- bytes: Uint8Array
Returns FederatedKeylessAccount
- Defined in src/account/FederatedKeylessAccount.ts:79

Properties

`Readonly`accountAddress

accountAddress: AccountAddress

Account address associated with the account

`Readonly`aud

aud: string

The value of the 'aud' claim on the JWT, also known as client ID. This is the identifier for the dApp's OIDC registration with the identity provider.

`Readonly`ephemeralKeyPair

ephemeralKeyPair: EphemeralKeyPair

The EphemeralKeyPair used to generate sign.

`Readonly`jwt

jwt: string

The JWT token used to derive the account

`Readonly`pepper

pepper: Uint8Array

A value contains 31 bytes of entropy that preserves privacy of the account. Typically fetched from a pepper provider.

proof

proof: undefined | ZeroKnowledgeSig

The zero knowledge signature (if ready) which contains the proof used to validate the EphemeralKeyPair.

`Readonly`proofOrPromise

proofOrPromise: ZeroKnowledgeSig | Promise<ZeroKnowledgeSig>

The proof of the EphemeralKeyPair or a promise that provides the proof. This is used to allow for awaiting on fetching the proof.

`Readonly`publicKey

publicKey: FederatedKeylessPublicKey

The FederatedKeylessPublicKey associated with the account

`Readonly`signingScheme

signingScheme: SigningScheme

Signing scheme used to sign transactions

`Readonly`uidKey

uidKey: string

The claim on the JWT to identify a user. This is typically 'sub' or 'email'.

`Readonly`uidVal

uidVal: string

The value of the uidKey claim on the JWT. This intended to be a stable user identifier.

`Static` `Readonly`PEPPER_LENGTH

PEPPER_LENGTH: number = 31

Class FederatedKeylessAccount

Hierarchy (view full)

Index

Methods

Properties

Methods

bcsToBytes

Returns Uint8Array

bcsToHex

Returns Hex

init

Parameters

Returns Promise<void>

isExpired

Returns boolean

serialize

Parameters

Returns void

sign

Parameters

Returns KeylessSignature

signTransaction

Parameters

Returns KeylessSignature

signTransactionWithAuthenticator

Parameters

Returns AccountAuthenticatorSingleKey

signWithAuthenticator

Parameters

Returns AccountAuthenticatorSingleKey

toString

Returns string

toStringWithoutPrefix

Returns string

verifySignature

Parameters

message: HexInput

signature: KeylessSignature

Returns boolean

waitForProofFetch

Returns Promise<void>

Staticcreate

Parameters

Optionaladdress?: AccountAddress

ephemeralKeyPair: EphemeralKeyPair

jwkAddress: AccountAddressInput

jwt: string

pepper: HexInput

proof: ZeroKnowledgeSig | Promise<ZeroKnowledgeSig>

OptionalproofFetchCallback?: ProofFetchCallback

OptionaluidKey?: string

Returns FederatedKeylessAccount

Staticdeserialize

Parameters

Returns FederatedKeylessAccount

StaticfromBytes

Parameters

Returns FederatedKeylessAccount

Properties

ReadonlyaccountAddress

Readonlyaud

ReadonlyephemeralKeyPair

Readonlyjwt

Readonlypepper

proof

ReadonlyproofOrPromise

ReadonlypublicKey

ReadonlysigningScheme

ReadonlyuidKey

ReadonlyuidVal

Static ReadonlyPEPPER_LENGTH

Settings

On This Page

`Static`create

`Optional`address?: AccountAddress

`Optional`proofFetchCallback?: ProofFetchCallback

`Optional`uidKey?: string

`Static`deserialize

`Static`fromBytes

`Readonly`accountAddress

`Readonly`aud

`Readonly`ephemeralKeyPair

`Readonly`jwt

`Readonly`pepper

`Readonly`proofOrPromise

`Readonly`publicKey

`Readonly`signingScheme

`Readonly`uidKey

`Readonly`uidVal

`Static` `Readonly`PEPPER_LENGTH