Skip to content

feat(auth): server-issued wallet auth challenge#402

Draft
Ryanmello07 wants to merge 9 commits into
mainfrom
feat/wallet-auth-challenge
Draft

feat(auth): server-issued wallet auth challenge#402
Ryanmello07 wants to merge 9 commits into
mainfrom
feat/wallet-auth-challenge

Conversation

@Ryanmello07

@Ryanmello07 Ryanmello07 commented Jun 28, 2026

Copy link
Copy Markdown

Summary

Replace client-generated wallet login messages with a server-issued, single-use, expiring challenge to prevent replay attacks.

What's new

  • New wallet_auth_challenge table + index.
  • POST /auth/wallet-challenge endpoint returns { challenge, timestamp, expires_in, message_template }.
  • UseWalletAuthChallenge verifies:
    • Signature is valid for the wallet.
    • Challenge exists and has not been used.
    • Challenge has not expired.
    • Timestamp is within an acceptable clock-skew window (past + future).
  • Wallet login (/auth/login) and wallet network create (/auth/network-create) now require a valid challenge.
  • Dashboard PR: https://github.com/Ryanmello07/urnetwork-webmanager/pull/new/feat/wallet-auth-challenge

Security properties

  • Each signature is bound to a unique challenge value and timestamp generated by the server.
  • One challenge = one use. Replaying a spent signature fails immediately.
  • Challenges expire after 5 minutes and timestamps outside ±5-minute skew are rejected.

Review notes

  • Go runtime tests require the project test DB env (WARP_ENV / pg.yml) which is not available in this container; go build ./... and go vet ./model/... pass locally.
  • Coordinated merge with the dashboard PR is needed; older clients that don't request challenges will no longer be able to log in with a wallet.

Julius VPS and others added 9 commits June 28, 2026 05:40
db: add wallet_auth_challenge table
9f5bcfc
model: add wallet auth challenge lifecycle
c52a34f
api: add POST /auth/wallet-challenge endpoint
14a7304
auth: add challenge fields to WalletAuthArgs
e87ec0b
test: wallet auth challenge replay/expiry/timestamp
a3a5d36
auth,network: enforce server wallet challenge before wallet login/create
6be0998
test(wallet-auth-challenge): use real Solana keypair for signatures
80c5cb5 
Replace hardcoded signature placeholders with locally generated Solana
keypairs so the happy path and replay/timestamp tests exercise real
signature verification against the server-issued challenge.
@Ryanmello07
test: fix test database locale for systems without en_US.UTF-8 template
15bc702
@Ryanmello07
fix(test_util): use portable template0 for temp test databases
6a46652 
Replace the environment-specific TEMPLATE=template_utf8 with the
built-in TEMPLATE='template0' so wallet auth challenge tests (and
all other integration tests) can create temp DBs on any standard
PostgreSQL install without a custom template database.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Ryanmello07