mirror of https://github.com/3lLobo/zkAuth.git synced 2026-01-09 12:27:55 -05:00

Files

snyk-bot 7d344e2127 fix: backend/package.json & backend/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-OPENZEPPELINCONTRACTS-5425827

2023-04-19 00:01:11 +00:00

artifacts

workingDemo

2022-09-26 20:41:26 +02:00

circuits

add test for checking hash change

2022-09-22 19:05:19 +05:30

contracts

Merge branch 'main' into contractEdit

2022-09-29 21:21:20 +02:00

deploy

Deploy modified contarcts

2022-09-24 17:21:00 +02:00

scripts

add ui files for zk and contracts

2022-09-23 13:59:23 +05:30

test

add test for checking hash change

2022-09-22 19:05:19 +05:30

tests

TotpAuth deployed to Optimism ⭕

2022-09-18 19:03:16 +02:00

typechain-types

Contract and frontend interaction edits

2022-09-26 17:17:16 +02:00

.env.example

Hardhat

2022-09-26 20:10:21 +02:00

.gitignore

add artifacts

2022-09-26 19:17:06 +02:00

.prettierignore

Prettier 💅

2022-09-15 00:47:06 +02:00

artifacts.zip

Contract and frontend interaction edits

2022-09-26 17:17:16 +02:00

config.ts

workingDemo

2022-09-26 20:41:26 +02:00

hardhat.config.ts

Hardhat

2022-09-26 20:10:21 +02:00

package-lock.json

fix: backend/package.json & backend/package-lock.json to reduce vulnerabilities

2023-04-19 00:01:11 +00:00

package.json

fix: backend/package.json & backend/package-lock.json to reduce vulnerabilities

2023-04-19 00:01:11 +00:00

README.md

Merge branch 'main' into contractEdit

2022-09-29 21:21:20 +02:00

tsconfig.json

hardhat-deploy and modify factory

2022-09-24 11:07:11 +02:00

README.md

This is the smart-contract crib

We disclose the smart-logic, turing the wheels of the zkAuthenticator. One step closer to zero trust and away from web2.

The zkAuth onchain authentication can be invoked by both wallets and contracts. For optimal security and user-experience, incorporate it with 2nd gen Wallets (ERC 4337) or similar contracts supporting paymasters.

The turing wheels

Here an walk-through of our complete contracts:

zkWalletFactory

Upon successfully setting up 2FA, the msg.sender gets assigned a personal ZkSocialRecoveryWallet. The Factory takes on the tasks of creating those wallets, mapping addresses to wallets and connecting to the hash-verifier for social recovery.

HashCheckVerifier

The logic used to recover wa compromised wallet and reassign its owner.

OtpMerkleTreeVerifier

The logic to verify the wallet specific 2 factor authentication.

Delpoy on Optimism Görli

First set your private key on a .env file

yarn hardhat deploy --network optimsm-goerli

Cyborg Run 🏃‍♂️

How to setup the project, compile the contracts, run the test and deploy.

@Rish check if you can scale scope the tests :)

Yarn, remix and hardhat:

yarn hardhat node

yarn remixed -s . --remix-ide https://remix.ethereum.org

yarn hardhat test

Optimism

A blocqchain with free lunch, I mean, free gas! How could we not choose for Optimism?

Contracts on Optimism-Goerli

Last deployment: 26.9.2022

export const address = { 
      zkWalletFactory: "0xcaF6c8C45c4fA0d2F6BFcE0c904FBedE08c773f1",
      HashCheckVerifier: "0xDFD466d2A14cB2895f2C8BCacc67BDEF37C60De0",
      OtpMerkleTreeVerifier: "0x87469041b414E1f2dEC2e79e32f4E911E7f50622",
    }

Deployer wallet:

0x369551E7c1D29756e18BA4Ed7f85f2E6663e1e8d

Testnet Explorer

Faucets

Notes4devs

A collection of more and less relevant technical tips and hacqs for our fellow devs and future selfs.

Onchain sha256 Hashing

How to calculate and submit hash:

convert TOTP (eg. 123456) to bytes/hex with ethers. Padding left!!! Then sha256 it and insert 0x at the start. That's it, now it should match the sha256 on-chain.

123456 as hex: 0x000000000000000000000000000000000000000000000000000000000001e240

123456 to hex to sha256 hash: 0x4a438cf911dc63bd7d53c1be977516e82f4d8f19b950d72d6730d4717709eae1

bytes32 sha256 from hex