aiolabs/webapp
8
0
Fork 0
Code Issues 65 Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: aiolabs:386273baabeb959c15e57cddd9bbbe1dab3d2347
Branches Tags
aiolabs:main
aiolabs:dev
..
compare: aiolabs:c07de62af195c9c8270698989574aac0551f3ced
Branches Tags
aiolabs:dev
aiolabs:main

No commits in common. "386273baabeb959c15e57cddd9bbbe1dab3d2347" and "c07de62af195c9c8270698989574aac0551f3ced" have entirely different histories.
386273baab ... c07de62af1

2 changed files with 15 additions and 18 deletions
Download patch file Download diff file Expand all files Collapse all files

24
src/lib/api/lnbits.ts
View file

@ -40,12 +40,8 @@ interface User {
username?: string username?: string
email?: string email?: string
pubkey?: string pubkey?: string
// The `prvkey` field was removed from this interface as the final step of // pragma: allowlist secret
// phase-1 per aiolabs/lnbits#9 / design-questions Q1.2 Option (b). LNbits prvkey?: string // Nostr signing key for user
// signs server-side via the NostrSigner abstraction (PR #26) and exposes
// `signer_type` instead of raw key material on /api/v1/auth. Bucket-B
// sign-sites (kind 1 / 4 / 5 / 7 / 31925 / 10003 / 1111 etc.) migrate to
// POST /api/v1/auth/sign-event (PR #29) in phase 2.
external_id?: string external_id?: string
extensions: string[] extensions: string[]
wallets: Wallet[] wallets: Wallet[]
@ -178,22 +174,20 @@ export class LnbitsAPI extends BaseService {
async getCurrentUser(): Promise<User> { async getCurrentUser(): Promise<User> {
// First get basic user info from /auth // First get basic user info from /auth
const basicUser = await this.request<User>('/auth') const basicUser = await this.request<User>('/auth')
// /auth/nostr/me used to return the user's prvkey for client-side signing; // Then get Nostr keys from /auth/nostr/me (this was working in main branch)
// post-aiolabs/lnbits#9 phase-1 the server signs and the endpoint returns
// only the pubkey. We keep the call to merge the pubkey (which the basic
// /auth response also includes on the post-cascade server; this is the
// belt-and-suspenders fallback for older lnbits revisions until we ship a
// signer_type-aware client).
try { try {
const nostrUser = await this.request<User>('/auth/nostr/me') const nostrUser = await this.request<User>('/auth/nostr/me')
// Merge the data - basic user info + Nostr keys
return { return {
...basicUser, ...basicUser,
pubkey: nostrUser.pubkey, pubkey: nostrUser.pubkey,
prvkey: nostrUser.prvkey
} }
} catch (error) { } catch (error) {
console.warn('Failed to fetch Nostr pubkey from /auth/nostr/me, returning basic user info:', error) console.warn('Failed to fetch Nostr keys, returning basic user info:', error)
// Return basic user info without Nostr keys if the endpoint fails
return basicUser return basicUser
} }
} }

9
src/modules/base/auth/auth-service.ts
View file

@ -180,14 +180,17 @@ export class AuthService extends BaseService {
this.isLoading.value = true this.isLoading.value = true
const updatedUser = await this.lnbitsAPI.updateProfile(data) const updatedUser = await this.lnbitsAPI.updateProfile(data)
// Preserve pubkey from existing user since /auth/update doesn't return it. // Preserve prvkey and pubkey from existing user since /auth/update doesn't return them
// Kind-0 metadata is published server-side by lnbits's PATCH /auth handler
// (aiolabs/lnbits commit 869f67c3); no webapp-side broadcast path remains.
this.user.value = { this.user.value = {
...updatedUser, ...updatedUser,
pubkey: this.user.value?.pubkey || updatedUser.pubkey, pubkey: this.user.value?.pubkey || updatedUser.pubkey,
prvkey: this.user.value?.prvkey || updatedUser.prvkey
} }
// Kind-0 metadata is published server-side by lnbits's PATCH /auth handler
// (aiolabs/lnbits commit 869f67c3) once the cascade is deployed. The webapp
// no longer maintains its own broadcast path.
} catch (error) { } catch (error) {
const err = this.handleError(error, 'updateProfile') const err = this.handleError(error, 'updateProfile')
throw err throw err