TREZOR Connect is a platform for easy integration of TREZOR into 3rd party services. It provides websites with functionality to authenticate users, access public keys and sign transactions. User interface is presented in a secure popup window:
User needs to confirm actions on his TREZOR:
More general (and slightly obsolete) info can be found here.
Examples of usage can be found on https://trezor.github.io/connect/examples/
First, you need to include the library in your page:
<script src="https://trezor.github.io/connect/connect.js"></script>
Bower package trezor-connect
is also available.
All API calls have a callback argument. Callback is guaranteed to get called
with a result object, even if user closes the window, network connection times
out, etc. In case of failure, result.success
is false and result.error
is
the error message. It is recommended to log the error message and let user
restart the action.
- Login
- Export public key
- Sign transaction
- Request payment (including broadcasting the resulting transaction to the network)
- Sign message
- Symmetric key-value encryption
- Get account info (including info about balance and first unused address)
Challenge-response authentication via TREZOR. To protect against replay attacks,
you must use a server-side generated and randomized challenge_hidden
for every
attempt. You can also provide a visual challenge that will be shown on the
device.
Service backend needs to check whether the signature matches the generated
challenge_hidden
, provided challenge_visual
and stored public_key
fields.
If that is the case, the backend either creates an account (if the public_key
identity is seen for the first time) or signs in the user (if the public_key
identity is already a known user).
To understand the full mechanics, please consult the Challenge-Response chapter of SLIP-0013: Authentication using deterministic hierarchy.
// site icon, optional. at least 48x48px
var hosticon = 'https://example.com/icon.png';
// server-side generated and randomized challenges
var challenge_hidden = '';
var challenge_visual = '';
TrezorConnect.requestLogin(hosticon, challenge_hidden, challenge_visual, function (result) {
if (result.success) {
console.log('Public key:', result.public_key); // pubkey in hex
console.log('Signature:', result.signature); // signature in hex
console.log('Version 2:', result.version === 2); // version field
} else {
console.error('Error:', result.error);
}
});
All <trezor:login>
tags get transformed into HTML login buttons. The
parameters are exactly the same as for
TrezorConnect.requestLogin
, but callback
represents
name of global function that gets called with the result.
<script>
function trezorLoginCallback(result) {
if (result.success) {
console.log('Public key:', result.public_key); // pubkey in hex
console.log('Signature:', result.signature); // signature in hex
console.log('Version 2:', result.version === 2); // version field
} else {
console.error('Error:', result.error);
}
}
</script>
<!-- callback is a name of global function -->
<!-- challenges are server-side generated and randomized -->
<!-- site icon is optional and at least 48x48px -->
<!-- text is optional -->
<trezor:login callback="trezorLoginCallback"
challenge_hidden="0123456789abcdef"
challenge_visual="Lorem Ipsum"
text="Sign in with TREZOR"
icon="https://example.com/icon.png"></trezor:login>
<trezor:login>
tags are rendered after loading the TREZOR Connect script. In
case you need to render dynamically created content, call
TrezorConnect.renderLoginButtons()
.
You can restyle the login button to fit the look of your website. See the
example in examples/login-restyled.html
. The
default CSS being used is login_buttons.css
:
Here is the reference implementation of the server-side signature verification written in various languages:
- C#:
examples/server.cs
- Javascript:
examples/server.js
- PHP:
examples/server.php
- Python:
examples/server.py
- Ruby:
examples/server.rb
TrezorConnect.getXPubKey(path, callback)
retrieves BIP32 extended public key
by path. User is presented with a description of the requested key and asked to
confirm the export.
var path = "m/44'/0'/0'"; // first BIP44 account
// var path = [44 | 0x80000000,
// 0 | 0x80000000,
// 0 | 0x80000000]; // same, in raw form
TrezorConnect.getXPubKey(path, function (result) {
if (result.success) {
console.log('XPUB:', result.xpubkey); // serialized XPUB
} else {
console.error('Error:', result.error); // error message
}
});
If you omit the path, BIP-0044 account discovery is performed and user is presented with a list of discovered accounts. Node of selected account is then exported. Example.
TrezorConnect.signTx(inputs, outputs, callback)
asks device to sign given
inputs and outputs of pre-composed transaction. User is asked to confirm all tx
details on TREZOR.
inputs
: array ofTxInputType
outputs
: array ofTxOutputType
// spend one change output
var inputs = [{
address_n: [44 | 0x80000000, 0 | 0x80000000, 2 | 0x80000000, 1, 0],
prev_index: 0,
prev_hash: 'b035d89d4543ce5713c553d69431698116a822c57c03ddacf3f04b763d1999ac'
}];
// send to 1 address output and one change output
var outputs = [{
address_n: [44 | 0x80000000, 0 | 0x80000000, 2 | 0x80000000, 1, 1],
amount: 3181747,
script_type: 'PAYTOADDRESS'
}, {
address: '18WL2iZKmpDYWk1oFavJapdLALxwSjcSk2',
amount: 200000,
script_type: 'PAYTOADDRESS'
}];
TrezorConnect.signTx(inputs, outputs, function (result) {
if (result.success) {
console.log('Transaction:', result.serialized_tx); // tx in hex
console.log('Signatures:', result.signatures); // array of signatures, in hex
} else {
console.error('Error:', result.error); // error message
}
});
TrezorConnect.composeAndSignTx(recipients, callback)
requests a payment from
the user's wallet to a set of given recipients. Internally, a BIP-0044 account
discovery is performed, user is presented with a list of accounts. After
selecting an account, transaction is composed by internal coin-selection
preferences. Transaction is then signed and returned in the same format as
signTx
. Change output is added automatically, if needed.
var recipients = [{
address: '18WL2iZKmpDYWk1oFavJapdLALxwSjcSk2',
amount: 200000
}];
TrezorConnect.composeAndSignTx(recipients, function (result) {
if (result.success) {
console.log('Serialized TX:', result.serialized_tx); // tx in hex
console.log('Signatures:', result.signatures); // array of signatures, in hex
} else {
console.error('Error:', result.error); // error message
}
});
You can also push and broadcast the resulting transaction to the Bitcoin network with a call.
TrezorConnect.composeAndSignTx(outputs, function (result) {
if (result.success) {
TrezorConnect.pushTransaction(result.serialized_tx, function (pushResult) {
if (pushResult.success) {
console.log('Transaction pushed. Id:', pushResult.txid); // ID of the transaction
} else {
console.error('Error:', pushResult.error); // error message
}
});
} else {
console.error('Error:', result.error); // error message
}
});
TrezorConnect.signMessage(path, message, callback [,coin])
asks device to
sign a message using the private key derived by given BIP32 path. Path can be specified
either as an array of numbers or as string m/A'/B'/C/...
Message is signed and address + signature is returned
var path="m/44'/0'/0";
var message='Example message';
TrezorConnect.signMessage(path, message, function (result) {
if (result.success) {
console.log('Message signed!', result.signature); // signature in base64
console.log('Signing address:', result.address); // address in standard b58c form
} else {
console.error('Error:', result.error); // error message
}
});
note: The argument coin is optional and defaults to "Bitcoin" if missing.
The message can be UTF-8; however, TREZOR is not displaying non-ascii characters, and third-party apps are not dealing with them correctly either. Therefore, using ASCII only is recommended.
TrezorConnect.cipherKeyValue(path, key, value, encrypt, ask_on_encrypt, ask_on_decrypt, callback)
asks device to
encrypt value
using the private key derived by given BIP32 path and the given key. Path can be specified
either as an array of numbers or as string m/A'/B'/C/... , value must be hexadecimal value - with length a multiple of 16 bytes (so 32 letters in hexadecimal).
More information can be found in SLIP-0011. IV is always computed automatically.
var path = "m/44'/0'/0";
var key = 'This is displayed on TREZOR on encrypt.';
var value = '1c0ffeec0ffeec0ffeec0ffeec0ffee1';
var encrypt = true;
var ask_on_encrypt = true;
var ask_on_decrypt = false;
TrezorConnect.cipherKeyValue(path, key, value, encrypt, ask_on_encrypt, ask_on_decrypt, function (result) {
if (result.success) {
console.log('Encrypted!', result.value); // in hexadecimal
} else {
console.error('Error:', result.error); // error message
}
});
TrezorConnect.getAccountInfo(description, callback)
gets an info of an account.
var description = "m/44'/0'/2'"; // third account (see below)
TrezorConnect.getAccountInfo(description, function (result) {
if (result.success) { // success
console.log('Account ID: ', result.id);
console.log('Account path: ', result.path);
console.log('Serialized account path: ', result.serializedPath);
console.log('Xpub', result.xpub);
console.log('Fresh address (first unused address): ', result.freshAddress);
console.log('Fresh address ID: ', result.freshAddressId);
console.log('Fresh address path: ', result.freshAddressPath);
console.log('Serialized fresh address path: ', result.serializedFreshAddressPath);
console.log('Balance in satoshis (including unconfirmed):', result.balance);
console.log('Balance in satoshis (only confirmed):', result.confirmed);
} else {
console.error('Error:', result.error); // error message
}
});
Description can be one of the following:
null
(orundefined
) - in that case, the user is presented with his accounts and has to select one- path - either as a string (
"m/44'/0'/2'
), or as an array ([44 | 0x80000000, 0 | 0x80000000, 2 | 0x80000000]
)- it has to be a BIP44 path for Bitcoin, meaning it has to start with
44'/0'/
.
- it has to be a BIP44 path for Bitcoin, meaning it has to start with
- id - ID of the account (either as a string or as a number)
- note that accounts have zero-based IDs, but the numbering on the screen start with "Account #1"; so account with id 2 is "Account #3", etc.
- xpub - xpub of the account
- the xpub must start with
xpub
, and has to belong to one of the first 10 accounts
- the xpub must start with