/solana-as-api

Primary LanguagePython

solana-as-api

This repo provides references for a few simple flows

  1. Body signature
    1. Sign a message with your solana keys client side
    2. Add the message into the body of an API request
    3. Verify the signature

solana-as-api/make_signed_requests.py

Lines 37 to 41 in 7b92f17

json_data = {
'verify_key_str': verify_key_str,
'signed_message': signed_message_str,
'signed_signature': signed_signature_str
}

  1. Header Sig
    1. Same as body signature, except the authorization token is within the headers - "Authorization: bearer <token>"

solana-as-api/make_signed_header.py

Lines 40 to 43 in 7b92f17

headers = {
'Content-Type': 'application/json',
'Authorization': f'bearer {verify_key_str}.{signed_message_str}.{signed_signature_str}'
}

  1. Oauth type flow (pictured below)
    1. Send tx to Solana
      • this could include a value transfer
    2. recieve the tx hash back
    3. Send tx hash to server signed to show the api request was made by the same entity that submitted the Solana tx
    • This is a great use case for Solana because
      • latency really affects UX
      • Tx finality is important because an off protocol API response will be triggered. A rollback would be bad

alt text

Get all NFTs from a wallet https://solanacookbook.com/references/nfts.html#candy-machine-v1

solana-keygen new --outfile ~/.config/solana/burner3.json

https://developer.token.io/seasons_rest_api_doc/content/e-rest/jwt_auth.htm

Next steps, TODOs:

  • Sign in with Solana
  • JWT type format
  • token gating flow
    • Some tokens represent different rate limits. How do you queue if there is ever a capacity reached?
    • AMM?
  • Token tx flow
  • Utilize the usage field of NFTs for access rights
  • Sync with Tiago on the octane type relayer flow for DeFi

to setup

poetry install

to start server

poetry run dev

To end process

ps -ef|grep python or sudo lsof -i:3333

pkill -9 kill -9