kylefang/session-key-aspect
1
0
Fork 0
mirror of https://github.com/zhigang1992/session-key-aspect.git synced 2026-01-12 22:52:16 +08:00
Code Issues Packages Projects Releases Wiki Activity
4 Commits 2 Branches 0 Tags
ddaa7f0efa7cb865bfdec0acc6b46e75db4e2195
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
cppppppp7 ddaa7f0efa add md img
2023-12-02 00:04:25 +08:00
aspect
init project
2023-12-02 00:01:05 +08:00
img
add md img
2023-12-02 00:04:25 +08:00
js_client
init project
2023-12-02 00:01:14 +08:00
.gitignore
init project
2023-12-02 00:01:05 +08:00
README.md
init project
2023-12-02 00:01:05 +08:00

README.md

Abstract

Sesscion-Key Aspect allows EoA to extend several sub-keys named Session Key.

Session keys are able to stand in for EoA private key to sign a specific transaction. These keys will automatically expire at the block height, which is set by EoA. They are also limited to sign specific transactions, calling only specific smart contract methods.

Project Intro

  • Folder 'aspect' implements the session key Aspect; check inside README.md to learn more.
  • Folder 'js_client' implements the session key Aspect javascript client; check inside README.md to learn more.

Overview

1. EoA binding session key to Aspect

截屏2023-11-09 15.37.26.png

Additional info:

  • Specific contract is a contract address. For example, if its a DEX contract address, it means that the session key is only limited to calling an Artex contract.

  • Specific methods is a list of method signature of Specific contract. For example, if its [0x0000CAFE, 0xCAFE0000,] , it means that the session key is only limited to this two method.

2. Use session key to sign transaction

截屏2023-11-09 15.32.38.png

Additional info :

  • The from is still the address of EoA.

  • The signature v,r,s is generated by private key of sKey.

3. Artela verify the transaction

截屏2023-11-09 15.52.20.png

Additional info

  • The transaction may be signed by the EoA privaten point needs to be verified by the EoA public key again if the Aspect returns key, so the joi false.

4. Call contract

截屏2023-11-09 15.54.18.png

Additional info

  • Smart contract doesnt know which keys sign the tx.

  • When the smart contract accesses msg.sender , the value is from in the transaction.

Implements

Session-key Aspect project contains two components.

  • Client, sessioin-key-aspect.js, a client for the dApp front end to use session key.
  • Aspect, wasm bytecode deployed on Artela
  • Explorer, extend Artela explorer to show Aspect info

截屏2023-11-09 16.16.17.png

Client Details

sessioin-key-aspect.js is the client of Session-key Aspect.

It contains 3 key modules:

  • session-key store
  • signer
  • aspect-client

session-key store offers:

  • generate key pair in the front end

  • manage key pair in the browser cache

    ( including store, load, clear, etc.)

signer offers:

  • high-level API for dApp to use the session key

  • load session key from

Whats the difference between AA

It works like AA (abstract account). For example, we can design a kind of AA that can be signed by a main private key and some session keys.

But it will be more flexible than AA.

  • EoA can not extend to AA.

    If you want to use session-key enable AA, you have to transfer your assets from your EoA to a new AA. This user experience might be terrible in some situations.

    By Session-Key Aspect, an EoA can send a transaction to bind it with Session-Key Aspect, and then the EoA will upgrade to a kind of AA that supports the session key. It neednt transfer its assets.

  • Users only need to manage one key.

    If you use AA, you might manage several AA wallets with different function. By using Aspect to extend EoA, you just use one wallet with several extension functions.

Description
No description provided
Readme 879 KiB
Languages
JavaScript 61.2%
TypeScript 36.1%
CSS 2.2%
HTML 0.5%