mirror of
https://github.com/selfxyz/self.git
synced 2026-02-19 02:24:25 -05:00
e77247f372
* feat: selfrica circuit and tests * chore: remove unused code * feat: test for ofac,date and olderthan * fix: public signal constant * feat: add contract tests * feat: helper function to gen TEE input * feat: gen circuit inputs with signature * feat: seralized base64 * fix: DateIsLessFullYear componenet * feat: register circuit for selfrica * feat: selfrica disclose circuit and test * fix: common module error * feat: add more test and fix constant * fix: commitment calculation * feat: selfrica contracts * test: selfrica register using unified circuit * feat: register persona and selfrica circuit * feat: selfrica circuit and tests * chore: remove unused code * feat: test for ofac,date and olderthan * fix: public signal constant * feat: add contract tests * feat: helper function to gen TEE input * feat: gen circuit inputs with signature * feat: seralized base64 * fix: DateIsLessFullYear componenet * feat: register circuit for selfrica * feat: selfrica disclose circuit and test * fix: common module error * feat: add more test and fix constant * fix: commitment calculation * feat: selfrica contracts * test: selfrica register using unified circuit * feat: register persona and selfrica circuit * refactor: contract size reduction for IdentityVerificationHubImplV2 export function logic to external libs, reduce compiler runs to 200, update deploy scripts to link new libs * feat: disclose circuit for persona * feat: update persona ofac trees * feat; register circuit for selfper * feat: disclose test for selfper * chore: refactor * chore : remove unused circuits * chore: rename selfper to kyc * chore: update comments * feat: constrain s to be 251 bit * feat: add range check on majority ASCII and comments * feat: range check on neg_r_inv * chore: remove is pk zero constrain * merge dev * feat: add registerPubkey function to Selfrica with GCPJWT Verification * test: add testing for GCPJWT verification on Selfrica * fix: script that calls register_selfrica circuits (ptau:14 -> ptau:15) * fix: get remaining Selfrica tests working with proper import paths * refactor: store pubkeys as string also add some comment code for registerPubkey function * refactor: remove registerPubkeyCommitment function some tests now skipped as awaiting changes to how pubkeys are stored (string instead of uint256) * feat: use hex decoding for the pubkey commitment * test: adjust tests for pubkey being string again * fix: remove old references to registerPubkey * docs: add full natspec for IdentityRegistrySelfricaImplV1 * docs: update files in rest of the repo for Selfrica attestation type * test: fix broken tests * fix: builds and move to kyc from selfrica * fix: constrain r_inv, Rx, s, T * feat: eddsa * feat: add onlyTEE check to registerPubkeyCommitment onlyOwner is able to change onlyTEE * refactor: update gcpRootCAPubkeyHash to be changeable by owner * feat: add events for update functions * style: move functions to be near other similar functions * fix: kyc happy flow * fix: all contract tests passing | fix: timestamp conversion with Date(), migrate to V2 for endToEnd test, scope formatting, fix register aadhaar issue by using block.timestamp instead of Date.now(), fix changed getter function name, enable MockGCPJWTVerifier with updated file paths, add missing LeanIMT import, fix user identifier format * audit: bind key offset-value offset and ensure image_digest only occurs once in the payload * fix: constrain bracket * chore: update comment * audit: hardcode attestation id * audit: make sure R and pubkey are on the curve * audit: ensure pubkey is within bounds * fix: all contract tests passing * feat: change max length to 99 from 74 * audit: don't check sha256 padding * audit: check the last window as well * audit: single occurance for eat_nonce and image_digest * audit: check if the certs are expired * audit: add the timestamp check to the contract * audit: make sure the person is less than 255 years of age * audit fixes * chore: yarn.lock * fix: build fixes * fix: aadhaar timestamp * lint * fix: types * format --------- Co-authored-by: vishal <vishalkoolkarni0045@gmail.com> Co-authored-by: Evi Nova <tranquil_flow@protonmail.com>
@selfxyz/mobile-sdk-alpha
Alpha SDK for registering and proving. Adapters-first, React Native-first with web shims. Minimal surface for scan → validate → generate proof → attestation verification.
- ESM-only with export conditions:
react-native,browser,default.react-nativeanddefaultresolve to the core build indist/index.js.browserpoints to a web bundle that exposes shimmed adapters.
- Tree-shaking friendly: named exports only,
"sideEffects": false. - NFC lifecycle must remain app-controlled; never scan with screen off.
- Android NFC enablement workaround remains app-side/event-driven.
- Do not auto-start servers in dev flows; document commands only.
Minimal API
createSelfClient({ config, adapters })scanNFC(opts),validateDocument(input),checkRegistration(input),generateProof(req, { signal, onProgress, timeoutMs })- Eventing:
on(event, cb),emit(event, payload) - Web shim:
webNFCScannerShim(throws for unsupported NFC on web)
Environment shims
- The
browserbuild replaces the scanner withwebNFCScannerShim, which throws for NFC scanning (not supported on web).
Installation & Setup
1. Install the package
npm install @selfxyz/mobile-sdk-alpha
# or
yarn add @selfxyz/mobile-sdk-alpha
2. Link native dependencies and assets
The SDK includes custom fonts that need to be linked to your app:
Automatic Linking (Recommended)
React Native autolinking (RN 0.60+) does not link assets by default. First, configure your app's assets:
Create or update react-native.config.js at the app root:
module.exports = {
assets: ['./node_modules/@selfxyz/mobile-sdk-alpha/assets/fonts'],
};
Then run:
npx react-native-asset
# or (Yarn 2+)
yarn dlx react-native-asset
This copies the font files to your iOS and Android projects.
Manual Linking
If autolinking doesn't work or you need manual control:
iOS:
-
Add fonts to your Xcode project:
- Open your Xcode workspace
- Drag the font files from
node_modules/@selfxyz/mobile-sdk-alpha/assets/fonts/to your project - Ensure "Copy items if needed" is checked
- Add to your app target
-
Update
Info.plistto include the fonts:<key>UIAppFonts</key> <array> <string>Advercase-Regular.otf</string> <string>DINOT-Medium.otf</string> <string>IBMPlexMono-Regular.otf</string> </array>
Android:
-
Ensure the
fontsdirectory exists:mkdir -p android/app/src/main/assets/fonts -
Copy font files to your Android project:
cp node_modules/@selfxyz/mobile-sdk-alpha/assets/fonts/* android/app/src/main/assets/fonts/
The fonts will be automatically available to your app.
3. Install peer dependencies
This SDK requires react-native-svg as a peer dependency. Install it in your app:
npm install react-native-svg
# or
yarn add react-native-svg
Minimum required version: react-native-svg@* (any version compatible with your React Native version)
For iOS, run pod install after installation:
cd ios && pod install && cd ..
4. Initialize the SDK
Provide scanner, network, and crypto adapters. storage, clock, and logger default to no-ops.
import { createSelfClient, webNFCScannerShim, extractMRZInfo } from '@selfxyz/mobile-sdk-alpha';
const sdk = createSelfClient({
config: {},
adapters: {
scanner: webNFCScannerShim, // Note: NFC not supported on web
network: yourNetworkAdapter,
crypto: yourCryptoAdapter,
},
});
Migration from Tamagui
If you're upgrading from a Tamagui-based version of this SDK, please note the following breaking changes:
Breaking Changes
1. UI Component System
- Removed: Tamagui dependency and Tamagui-based components
- Added: Custom React Native components with direct styling
- Impact: Any custom theme overrides or Tamagui-specific configurations will need to be replaced
2. Font System
- Changed: Fonts are now bundled directly with the package
- Required: Manual font linking step (see installation section above)
- Impact: You must run
react-native-assetor manually link fonts
3. Peer Dependencies
- Added:
react-native-svgis now a required peer dependency - Required: Install
react-native-svgin your app - Impact: SVG-based UI components now use
react-native-svgdirectly
Upgrade Steps
-
Remove Tamagui dependencies (if you installed them specifically for this SDK):
# Only if these were installed solely for the SDK npm uninstall @tamagui/core @tamagui/config -
Install required peer dependencies:
npm install react-native-svg cd ios && pod install && cd .. -
Link fonts following the asset linking instructions in the installation section above
-
Update your imports - Component imports remain the same, but internal implementation has changed:
// These imports still work import { PrimaryButton, Title, Body } from '@selfxyz/mobile-sdk-alpha/components'; -
Remove Tamagui configuration - If you had Tamagui config specifically for this SDK, it's no longer needed
-
Test your UI - Components now use platform-native styling instead of Tamagui
Style Customization
Component styling is no longer customizable via Tamagui themes. The SDK now uses fixed styles optimized for the verification flow. If you need to customize UI:
- Use the component composition patterns provided by the SDK
- Wrap SDK components with your own styled containers
- Use the
styleprop where available
SDK Events
The SDK emits events throughout the verification lifecycle. Subscribe using selfClient.on(event, callback).
Document Selection Events
SdkEvents.DOCUMENT_COUNTRY_SELECTED - Emitted when user selects a country during document flow
selfClient.on(SdkEvents.DOCUMENT_COUNTRY_SELECTED, payload => {
// payload: { countryCode: string, countryName: string, documentTypes: string[] }
console.log(`Country selected: ${payload.countryName} (${payload.countryCode})`);
console.log(`Available types: ${payload.documentTypes.join(', ')}`);
});
SdkEvents.DOCUMENT_TYPE_SELECTED - Emitted when user selects a document type
selfClient.on(SdkEvents.DOCUMENT_TYPE_SELECTED, payload => {
// payload: { documentType: string, documentName: string, countryCode: string }
console.log(`Document selected: ${payload.documentName} from ${payload.countryCode}`);
});
Verification Flow Events
PROVING_PASSPORT_DATA_NOT_FOUND- No passport data found; navigate to scanning screenPROVING_ACCOUNT_VERIFIED_SUCCESS- Identity verification successfulPROVING_REGISTER_ERROR_OR_FAILURE- Registration failed; checkhasValidDocumentflagPROVING_PASSPORT_NOT_SUPPORTED- Unsupported country/document; includescountryCodeanddocumentCategoryPROVING_ACCOUNT_RECOVERY_REQUIRED- Document registered with different credentials
System Events
ERROR- SDK operation errors and timeoutsPROGRESS- Long-running operation progress updatesPROOF_EVENT- Detailed proof generation events (for debugging)NFC_EVENT- NFC scanning lifecycle events (for debugging)
See SdkEvents enum and SDKEventMap in src/types/events.ts for complete payload definitions.
Processing utilities
import { extractMRZInfo, formatDateToYYMMDD, parseNFCResponse } from '@selfxyz/mobile-sdk-alpha';
const mrzInfo = extractMRZInfo(mrzString);
const compact = formatDateToYYMMDD('1974-08-12');
const nfc = parseNFCResponse(rawBytes);
Error handling
The SDK surfaces typed errors for clearer diagnostics:
NfcParseErrorandMrzParseErrorfor NFC and MRZ parsing issues (categoryvalidation)InitErrorfor initialization problems (categoryinit)LivenessErrorfor liveness failures (categoryliveness)
All errors extend SdkError, which includes a code, category, and retryable flag.
Testing
IMPORTANT: Do NOT mock this package in tests!
Use the REAL package methods, not mocked versions. When integrating this package into your application:
✅ DO: Use Real Package Methods (PII-safe)
- Import and use the actual functions from
@selfxyz/mobile-sdk-alpha - Write integration tests that exercise the real validation logic
- Test
isPassportDataValid()with realistic, synthetic passport data (NEVER real user data) - Verify
extractMRZInfo()using published sample MRZ strings (e.g., ICAO examples) - Ensure
parseNFCResponse()works with representative, synthetic NFC data
❌ DON'T: Mock the Package
- Don't mock
@selfxyz/mobile-sdk-alphain Jest setup - Don't replace real functions with mock implementations
- Don't use
jest.mock('@selfxyz/mobile-sdk-alpha')unless absolutely necessary
Example: Real Integration Test (PII-safe)
import { isPassportDataValid } from '@selfxyz/mobile-sdk-alpha';
describe('Real mobile-sdk-alpha Integration', () => {
it('should validate passport data with real logic using synthetic fixtures', () => {
// Use realistic, synthetic passport data - NEVER real user data
const syntheticPassportData = {
// ... realistic but non-PII test data
};
const result = isPassportDataValid(syntheticPassportData, callbacks);
expect(result).toBe(true); // Real validation result
});
});
⚠️ IMPORTANT: Never commit real user PII to the repository or test artifacts. Use only synthetic, anonymized, or approved test vectors.
Dev scripts
npm run validate:exports— ensure named exports only.npm run validate:pkg— check packaging and export conditions.npm run report:exports— output current public symbols.