Skip to content

Commit

Permalink
correct NIP-42 auth flow
Browse files Browse the repository at this point in the history
  • Loading branch information
@prolic
prolic committed Nov 13, 2024
1 parent 7732c76 commit c003550
Show file tree
Hide file tree
Showing 6 changed files with 156 additions and 46 deletions.
2 changes: 0 additions & 2 deletions src/Futr.hs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -235,8 +235,6 @@ loginWithAccount obj a = do
forM_ rs $ \relay' -> void $ async $ connect $ getUri relay'

void $ async $ do
threadDelay 100000 -- 100ms miinum delay to wait for connections to establish

atLeastOneConnected <- awaitAtLeastOneConnected
-- Update UI state after connections are established
when atLeastOneConnected $ do
Expand Down
4 changes: 1 addition & 3 deletions src/Nostr/Publisher.hs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ import Data.List (nub, partition)
import Data.Map.Strict qualified as Map
import Data.Text (Text, pack)
import Effectful
import Effectful.Concurrent (Concurrent, threadDelay)
import Effectful.Concurrent (Concurrent)
import Effectful.Concurrent.Async (async)
import Effectful.Concurrent.STM (atomically, writeTChan)
import Effectful.Dispatch.Dynamic (interpret)
Expand Down Expand Up @@ -96,7 +96,6 @@ runPublisher = interpret $ \_ -> \case
forM_ newRelays $ \r -> async $ do
connected <- connectRelay r
when connected $ do
threadDelay 100000 -- wait 100ms for authentication
writeToChannel event r
disconnectRelay r

Expand Down Expand Up @@ -155,7 +154,6 @@ runPublisher = interpret $ \_ -> \case
forM_ newRelays $ \r -> async $ do
connected <- connectRelay r
when connected $ do
threadDelay 100000 -- wait 100ms for authentication
writeToChannel event' r
disconnectRelay r

Expand Down
186 changes: 150 additions & 36 deletions src/Nostr/RelayConnection.hs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,9 +3,10 @@
module Nostr.RelayConnection where

import Control.Exception (SomeException, try)
import Control.Monad (void, when)
import Control.Monad (forM_,void, when)
import Data.Aeson (eitherDecode, encode)
import Data.ByteString.Lazy qualified as BSL
import Data.List (find)
import Data.Map.Strict qualified as Map
import Data.Text qualified as T
import Effectful
Expand All @@ -31,7 +32,7 @@ import Nostr.Types ( Event(..), RelayURI
import Nostr.Types qualified as NT
import Nostr.Util
import Types ( AppState(..), ConnectionError(..), ConnectionState(..)
, PublishStatus(..),RelayPoolState(..), RelayData(..)
, RelayPoolState(..), RelayData(..)
, SubscriptionDetails(..), SubscriptionEvent(..), UIUpdates(..), emptyUpdates )


Expand Down Expand Up @@ -99,7 +100,9 @@ runRelayConnection = interpret $ \_ -> \case
, lastError = Nothing
, connectionAttempts = 0
, notices = []
, authenticated = False
, pendingRequests = []
, pendingEvents = []
, pendingAuthId = Nothing
}
modify @RelayPoolState $ \st ->
st { activeConnections = Map.insert r rd (activeConnections st) }
Expand All @@ -124,12 +127,12 @@ connectWithRetry r maxRetries requestChan = do
if attempts >= maxRetries
then do
modify @RelayPoolState $ \st' ->
st' { activeConnections = Map.adjust
st' { activeConnections = Map.adjust
(\d -> d { connectionState = Disconnected
, lastError = Just MaxRetriesReached
})
r
(activeConnections st')
, lastError = Just MaxRetriesReached
})
r
(activeConnections st')
}
return False
else do
Expand Down Expand Up @@ -202,13 +205,28 @@ nostrClient connectionMVar r requestChan runE conn = runE $ do
case msg of
NT.Disconnect -> do
liftIO $ WS.sendClose conn (T.pack "Bye!")
return () -- Exit the loop after disconnect
return ()
NT.SendEvent event -> do
result <- liftIO $ try @SomeException $ WS.sendTextData conn $ encode msg
case result of
Left ex -> do
logError $ "Error sending data to " <> r <> ": " <> T.pack (show ex)
return ()
Right _ -> do
-- Store the event in the state for potential retry
modify @RelayPoolState $ \st ->
st { activeConnections = Map.adjust
(\rd -> rd { pendingEvents = event : pendingEvents rd })
r
(activeConnections st)
}
sendLoop
_ -> do
result <- liftIO $ try @SomeException $ WS.sendTextData conn $ encode msg
case result of
Left ex -> do
logError $ "Error sending data to " <> r <> ": " <> T.pack (show ex)
return () -- Exit the loop on error
return ()
Right _ -> sendLoop


Expand Down Expand Up @@ -239,20 +257,78 @@ handleResponse relayURI' r = case r of
return emptyUpdates

Closed subId' msg -> do
enqueueEvent subId' (SubscriptionClosed msg)
modify @RelayPoolState $ \st ->
st { activeConnections = Map.adjust
(\rd -> rd { activeSubscriptions = Map.delete subId' (activeSubscriptions rd) })
relayURI'
(activeConnections st)
}
if "auth-required" `T.isPrefixOf` msg
then do
logDebug $ "Auth required for subscription " <> T.pack (show subId') <> " from " <> relayURI'
-- Queue the subscription for retry after authentication
st <- get @RelayPoolState
case Map.lookup relayURI' (activeConnections st) of
Just rd ->
case Map.lookup subId' (activeSubscriptions rd) of
Just subDetails -> do
let subscription = NT.Subscription
{ NT.subId = subId'
, NT.filters = subscriptionFilters subDetails
}
handleAuthRequired relayURI' (NT.Subscribe subscription)
Nothing -> logError $ "No subscription found for " <> T.pack (show subId')
Nothing -> logError $ "Received auth-required but no connection found: " <> relayURI'
else do
enqueueEvent subId' (SubscriptionClosed msg)
modify @RelayPoolState $ \st ->
st { activeConnections = Map.adjust
(\rd -> rd { activeSubscriptions = Map.delete subId' (activeSubscriptions rd) })
relayURI'
(activeConnections st)
}
return emptyUpdates

Ok eventId' accepted' msg -> do
modify @RelayPoolState $ \st ->
st { publishStatus = Map.adjust (\relayMap ->
Map.insert relayURI' (if accepted' then Success else Failure msg) relayMap
) eventId' (publishStatus st) }
if "auth-required" `T.isPrefixOf` msg
then do
st <- get @RelayPoolState
case Map.lookup relayURI' (activeConnections st) of
Just rd ->
case find (\e -> NT.eventId e == eventId') (pendingEvents rd) of
Just event -> handleAuthRequired relayURI' (NT.SendEvent event)
Nothing -> logDebug $ "No pending event found for " <> T.pack (show eventId')
Nothing -> logError $ "Received auth-required but no connection found: " <> relayURI'
else do
st <- get @RelayPoolState
case Map.lookup relayURI' (activeConnections st) of
Just rd ->
case pendingAuthId rd of
Just authId | authId == eventId' && accepted' -> do
let pendingReqs = pendingRequests rd
let pendingEvts = pendingEvents rd

logDebug $ "Auth successful, retrying " <> T.pack (show (length pendingReqs))
<> " pending requests and "
<> T.pack (show (length pendingEvts))
<> " pending events for " <> relayURI'

-- Clear pending lists and auth ID
modify @RelayPoolState $ \st' ->
st' { activeConnections = Map.adjust
(\rd' -> rd' { pendingRequests = []
, pendingEvents = []
, pendingAuthId = Nothing
})
relayURI'
(activeConnections st')
}

-- Retry events and requests
forM_ pendingEvts $ \evt -> do
logDebug $ "Retrying event: " <> T.pack (show $ eventId evt)
atomically $ writeTChan (requestChannel rd) (SendEvent evt)

forM_ pendingReqs $ \req -> do
logDebug $ "Retrying request: " <> T.pack (show req)
atomically $ writeTChan (requestChannel rd) req
_ -> logDebug $ "Received OK for event " <> T.pack (show eventId')
<> " (accepted: " <> T.pack (show accepted') <> ")"
Nothing -> logError $ "Received OK but no connection found: " <> relayURI'
return $ emptyUpdates { publishStatusChanged = True }

Notice msg -> do
Expand All @@ -265,22 +341,33 @@ handleResponse relayURI' r = case r of
return $ emptyUpdates { noticesChanged = True }

Auth challenge -> do
now <- getCurrentTime
kp <- getKeyPair
let unsignedEvent = createCanonicalAuthentication relayURI' challenge (keyPairToPubKeyXO kp) now
signedEventMaybe <- signEvent unsignedEvent kp
case signedEventMaybe of
Just signedEvent -> do
st <- get @RelayPoolState
case Map.lookup relayURI' (activeConnections st) of
Just rd -> do
atomically $ writeTChan (requestChannel rd) (Authenticate signedEvent)
logDebug $ "Received auth challenge from " <> relayURI' <> ": " <> challenge
st <- get @RelayPoolState
case Map.lookup relayURI' (activeConnections st) of
Just rd -> do
now <- getCurrentTime
kp <- getKeyPair
let unsignedEvent = createCanonicalAuthentication relayURI' challenge (keyPairToPubKeyXO kp) now
logDebug $ "Created unsigned auth event: " <> T.pack (show unsignedEvent)
signedEventMaybe <- signEvent unsignedEvent kp
case signedEventMaybe of
Just signedEvent -> do
logDebug $ "Successfully signed auth event: " <> T.pack (show signedEvent)
modify @RelayPoolState $ \st' ->
st' { activeConnections = Map.adjust (\rd' -> rd' { authenticated = True }) relayURI' (activeConnections st') }
-- @todo re-sending events?
Nothing -> logError $ "Error handling relay authentication, no channel found: " <> relayURI'
Nothing -> logError "Failed to sign canonical authentication event"
return emptyUpdates
st' { activeConnections = Map.adjust
(\rd' -> rd' { pendingAuthId = Just (eventId signedEvent) })
relayURI'
(activeConnections st')
}
atomically $ writeTChan (requestChannel rd) (Authenticate signedEvent)
return emptyUpdates
Nothing -> do
logError "Failed to sign canonical authentication event"
return emptyUpdates
Nothing -> do
logError $ "Error handling relay authentication, no channel found: " <> relayURI'
return emptyUpdates

where
enqueueEvent :: RelayConnectionEff es => SubscriptionId -> SubscriptionEvent -> Eff es ()
enqueueEvent subId' event' = do
Expand All @@ -290,3 +377,30 @@ handleResponse relayURI' r = case r of
Just sd -> atomically $ writeTQueue (responseQueue sd) event'
Nothing -> error $ "No subscription found for " <> show subId'
Nothing -> error $ "No connection found for " <> show relayURI'


-- | Handle authentication required.
handleAuthRequired :: RelayConnectionEff es => RelayURI -> Request -> Eff es ()
handleAuthRequired relayURI' request = do
logDebug $ "Handling auth required for " <> relayURI' <> " with request: " <> T.pack (show request)
st <- get @RelayPoolState
case Map.lookup relayURI' (activeConnections st) of
Just rd -> do

Check warning on line 388 in src/Nostr/RelayConnection.hs

View workflow job for this annotation

GitHub Actions / Flatpak Build and Release 

Defined but not used: ‘rd’

Check warning on line 388 in src/Nostr/RelayConnection.hs

View workflow job for this annotation

GitHub Actions / 9.6.6 on ubuntu-latest 

Defined but not used: ‘rd’
case request of
SendEvent evt -> do
logDebug $ "Queueing event for retry: " <> T.pack (show $ eventId evt)
modify @RelayPoolState $ \st' ->
st' { activeConnections = Map.adjust
(\rd' -> rd' { pendingEvents = evt : pendingEvents rd' })
relayURI'
(activeConnections st')
}
_ -> do
logDebug $ "Queueing request for retry: " <> T.pack (show request)
modify @RelayPoolState $ \st' ->
st' { activeConnections = Map.adjust
(\rd' -> rd' { pendingRequests = request : pendingRequests rd' })
relayURI'
(activeConnections st')
}
Nothing -> logError $ "Cannot queue request for retry - no connection found: " <> relayURI'
2 changes: 1 addition & 1 deletion src/Nostr/RelayPool.hs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -114,7 +114,7 @@ runRelayPool = interpret $ \_ -> \case
else if all (== Disconnected) states
then return False
else do
threadDelay 100000 -- 100ms delay
threadDelay 50000 -- 50ms delay
loop
loop

Expand Down
4 changes: 1 addition & 3 deletions src/Nostr/Subscription.hs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -168,9 +168,7 @@ handleEvent' event' = do
importDMRelays (pubKey event') preferredRelays (createdAt event')
forM_ preferredRelays $ \r -> async $ do
connected <- connectRelay $ getUri r
when connected $ do
threadDelay 100000 -- 100ms delay to wait for auth
handleRelaySubscription $ getUri r
when connected $ handleRelaySubscription $ getUri r

pure $ emptyUpdates { dmRelaysChanged = True }

Expand Down
4 changes: 3 additions & 1 deletion src/Types.hs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -103,7 +103,9 @@ data RelayData = RelayData
, notices :: [Text]
, lastError :: Maybe ConnectionError
, connectionAttempts :: Int
, authenticated :: Bool
, pendingRequests :: [Request]
, pendingEvents :: [Event]
, pendingAuthId :: Maybe EventId
}


Expand Down

0 comments on commit c003550

Please sign in to comment.