https://github.com/espaciofuturoio/stellar-passkey

Stellar - NextJS - Passkey Demo - How to use passkeys to perform a stellar authentication
https://github.com/espaciofuturoio/stellar-passkey

demo nextjs passkeys reactjs stellar

Last synced: 9 days ago
JSON representation

Stellar - NextJS - Passkey Demo - How to use passkeys to perform a stellar authentication

• Host: GitHub
• URL: https://github.com/espaciofuturoio/stellar-passkey
• Owner: espaciofuturoio
• Created: 2025-01-30T15:26:20.000Z (3 months ago)
• Default Branch: main
• Last Pushed: 2025-03-08T00:59:40.000Z (about 2 months ago)
• Last Synced: 2025-03-27T21:48:09.524Z (27 days ago)
• Topics: demo, nextjs, passkeys, reactjs, stellar
• Language: TypeScript
• Homepage: https://stellar-passkey-demo.espaciofuturo.io
• Size: 4.66 MB
• Stars: 5
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# Passkey Project

## [Demo](https://passkey-demo.espaciofuturo.io)



  



## Overview

The Passkey project is a web application that implements WebAuthn for secure user authentication. It leverages the `@simplewebauthn` library to handle registration and authentication processes, using Redis for data storage.

## Features

- User registration and authentication using WebAuthn.

- Secure storage of user credentials.

- Mock Redis for local development.

## Prerequisites

- Bun.js or Node.js (version 20 or higher)

- Redis (for production use)

## Setup

1. **Clone the repository:**

   ```bash

   git clone [email protected]:espaciofuturoio/stellar-passkey.git

   cd stellar-passkey

   ```

2. **Install dependencies:**

   ```bash

   bun i

   ```

3. **Environment Configuration:**

   Create a `.env` file in the root directory and configure the following variables:

   ```plaintext

    PORT=3000

    ENV=development

    REDIS_URL=''

    RP_ID='["localhost"]'

    RP_NAME='["App"]'

    EXPECTED_ORIGIN='["http://localhost:3000"]'

    CHALLENGE_TTL_SECONDS=60

   ```

4. **Run the application:**

   For development:

   ```bash

   bun run dev

   ```

## Usage

### API Endpoints

- **Generate Registration Options:**

  `POST /api/generate-registration-options`

  - Request Body: `{ "identifier": "[email protected]" }`

  - Response: WebAuthn registration options.

- **Verify Registration:**

  `POST /api/verify-registration`

  - Request Body: `{ "identifier": "[email protected]", "registrationResponse": {...} }`

  - Response: Verification result.

- **Generate Authentication Options:**

  `POST /api/generate-authentication-options`

  - Request Body: `{ "identifier": "[email protected]" }`

  - Response: WebAuthn authentication options.

- **Verify Authentication:**

  `POST /api/verify-authentication`

  - Request Body: `{ "identifier": "[email protected]", "authenticationResponse": {...} }`

  - Response: Verification result.

### Custom Hooks

#### `usePasskeyAuthentication`

This hook manages the authentication process using WebAuthn and passkeys.

- **Parameters:**

  - `identifier`: A string representing the user's identifier.

- **Returns:**

  - `isAuthenticating`: Boolean indicating if authentication is in progress.

  - `authSuccess`: String message on successful authentication.

  - `authError`: String message on authentication error.

  - `handleAuth`: Function to initiate the authentication process.

  - `isAuthenticated`: Boolean indicating if the user is authenticated.

#### `usePasskeyRegistration`

This hook manages the registration process using WebAuthn and passkeys.

- **Parameters:**

  - `identifier`: A string representing the user's identifier.

- **Returns:**

  - `isCreatingPasskey`: Boolean indicating if registration is in progress.

  - `regSuccess`: String message on successful registration.

  - `regError`: String message on registration error.

  - `handleRegister`: Function to initiate the registration process.

  - `isRegistered`: Boolean indicating if the user is registered.

#### `useStellar`

This hook manages Stellar operations such as deploying contracts and signing transactions.

- **Returns:**

  - `onRegister`: Function to handle registration with Stellar.

  - `onSign`: Function to handle signing of transactions.

  - `prepareSign`: Function to prepare data for signing.

  - `deployee`: The current deployee address.

  - `loadingRegister`: Boolean indicating if registration is in progress.

  - `loadingSign`: Boolean indicating if signing is in progress.

  - `loadingDeployee`: Boolean indicating if deployee data is being loaded.

  - `contractData`: Data related to the deployed contract.

## Code Structure

- **`package.json`:** Lists project dependencies and scripts.

- **`src/app/libs/passkey.ts`:** Handles WebAuthn registration and authentication logic.

- **`src/app/libs/env.ts`:** Manages environment variables using Zod for validation.

- **`src/app/libs/redis.ts`:** Provides functions to interact with Redis for storing challenges and user data.

- **`src/hooks/usePasskeyAuthentication.ts`:** Custom hook for handling user authentication.

- **`src/hooks/usePasskeyRegistration.ts`:** Custom hook for handling user registration.

- **`src/app/api`:** Contains API routes for handling registration and authentication requests.

## References

- [WebAuthn Documentation](https://webauthn.guide/)

- [SimpleWebAuthn](https://simplewebauthn.dev/)

- [Passkeys Guide](https://www.passkeys.com/guide)

- [Stellar](https://stellar.org/learn)

- [Cross platform Stellar smart wallet demo](https://github.com/kalepail/soroban-passkey)

## Stellar Integration

### Derivation Address

The application uses Stellar for blockchain operations. Each user is associated with a unique derivation address, which is generated using the Stellar SDK. This address is used for various operations such as deploying contracts and voting.

### Signing Process

The signing process involves creating a transaction that is signed using the user's private key. This ensures that all operations are securely authorized by the user. The application handles signing through the `useStellar` hook, which interacts with the Stellar network to perform operations like deploying contracts and voting.

## Passkey Integration

### Overview

The Passkey project leverages passkeys for secure and convenient user authentication. Passkeys are a modern authentication method that replaces traditional passwords with cryptographic keys, providing a seamless and secure user experience.

### How Passkeys Work

- **Registration:** During registration, a passkey is generated and stored securely on the user's device. This passkey is used to create a unique derivation address on the Stellar network.

- **Authentication:** When a user attempts to authenticate, the passkey is used to sign a challenge, verifying the user's identity without transmitting sensitive information.

### Benefits of Passkeys

- **Security:** Passkeys eliminate the need for passwords, reducing the risk of phishing and credential theft.

- **Convenience:** Users can authenticate with a simple biometric scan or device unlock, streamlining the login process.

- **Privacy:** Passkeys ensure that sensitive information never leaves the user's device, enhancing privacy.

## Contributing

Contributions are welcome! Please open an issue or submit a pull request for any improvements or bug fixes.

## License

This project is licensed under the MIT License.