TheRON/kane-diagnostics
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

Updated

Browse Source
This commit is contained in:
TheRON
2026-06-14 07:45:02 -04:00
parent e3128639df
commit b08450904d
3 changed files with 150 additions and 282 deletions
Download Patch File Download Diff File Expand all files Collapse all files

212
hubzilla/addon/g1wallet/g1wallet_renderer.php
View File

@@ -2,8 +2,6 @@
/**
* g1wallet_renderer.php — All HTML rendering for g1wallet.
* Knows nothing about network calls or POST handling.
* Knows nothing about crypto — that lives entirely in g1wallet.js.
*/
// -----------------------------------------------------------------------------
@@ -12,142 +10,142 @@
function g1wallet_render_access_wall() {
$directory_url = g1wallet_h(z_root() . '/channel/theron');
$hostname = g1wallet_h(App::get_hostname());
return '
<div class="g1wallet-content">
<div class="alert alert-info" role="alert">
<strong>SASE verification required to access the Ğ1 Wallet.</strong>
This wallet is available to verified HOA participants only.
To participate, you must complete the SASE process.
Visit <a href="' . $directory_url . '">' . g1wallet_h(App::get_hostname()) . '</a> to begin.
This feature is available to verified HOA participants only.
Visit <a href="' . $directory_url . '">' . $hostname . '</a> to begin the verification process.
</div>
</div>
';
}
// -----------------------------------------------------------------------------
// WALLET LANDING
// LANDING PAGE
// -----------------------------------------------------------------------------
function g1wallet_render_landing($access) {
// Wallet landing: shows unlock form or unlocked interface depending on JS session state.
// JS swaps to the unlocked view on successful derivation.
$channel_id = local_channel();
$stored_addr = $channel_id ? get_pconfig($channel_id, 'g1wallet', 'g1_address') : '';
$balance = '';
// If address is stored, fetch balance via cry01 chain query.
if ($stored_addr) {
$balance = g1wallet_fetch_balance($stored_addr);
}
$out = '<div class="g1wallet-content">';
$out .= '<div class="g1wallet-header mb-3">';
$out .= '<h2>Ğ1 Wallet</h2>';
$out .= '<p class="text-muted">Your self-sovereign Ğ1 identity. Keys are derived in your browser and never leave your device.</p>';
$out .= '<p class="text-muted">Register your Ğ1 address to display your balance and participate in cost-bearing civic actions.</p>';
// Optional notice
$out .= '<div class="alert alert-light border small mb-3">';
$out .= '<strong>Optional.</strong> The Ğ1 Wallet is not required for browsing or submitting diagnostic records. ';
$out .= 'However, future actions such as Scenario submission will require a small Ğ1 payment. ';
$out .= 'The transaction record serves as proof of participation and is included in the attestation record.';
$out .= '</div>';
// Optional participation notice.
$out .= '<p class="text-muted small g1wallet-optional-notice">';
$out .= 'The Ğ1 Wallet is <strong>optional</strong>. ';
$out .= 'Ğ1 is a libre currency independent of fiat, used for valuing and bartering surplus capacity among private individuals. ';
$out .= 'The Civic Infrastructure implements it for participants who choose to engage in that economy. ';
$out .= 'It is not required for participation in the diagnostic record system. ';
$out .= 'Future addons such as Barter will require an active wallet — this page is where you manage it.';
$out .= '</p>';
// Current address + balance
if ($stored_addr) {
$out .= '<div class="g1wallet-address-display mb-4">';
$out .= '<h5>Registered Address</h5>';
$out .= '<p class="font-monospace small text-break">' . g1wallet_h($stored_addr) . '</p>';
// Locked view — shown by default. JS hides this and shows unlocked-view on successful derivation.
$out .= '<div id="g1wallet-locked-view">';
$out .= g1wallet_render_unlock_form();
$out .= '</div>';
// Unlocked view — hidden by default. JS populates and shows this after derivation.
$out .= '<div id="g1wallet-unlocked-view" style="display:none;">';
$out .= g1wallet_render_unlocked_placeholder($access);
$out .= '</div>';
$out .= '</div>';
return $out;
}
// -----------------------------------------------------------------------------
// UNLOCK FORM
// -----------------------------------------------------------------------------
function g1wallet_render_unlock_form() {
// Renders the wallet unlock form.
// The form is handled entirely by g1wallet.js — it does NOT POST to the server.
// The mnemonic never leaves the browser.
//
// Derivation (Duniter v2 / Substrate / Ğecko standard):
// 12-word BIP39 mnemonic
// → mnemonicToEntropy() → 16 bytes of raw entropy
// → use entropy directly as 32-byte Ed25519 seed (zero-padded right)
// → derive Ed25519 keypair (SubtleCrypto, non-extractable private key)
// → SS58-encode public key with Ğ1 network prefix → g1... address
$out = '<div class="g1wallet-unlock-form">';
$out .= '<h4>Unlock Your Wallet</h4>';
$out .= '<p class="text-muted small">Enter your 12-word Ğ1 mnemonic phrase. It is used only in your browser to derive your keypair. It is never sent to the server.</p>';
$out .= '<div class="mb-3">';
$out .= '<label class="form-label" for="g1wallet-mnemonic">Mnemonic Phrase <span class="text-danger">*</span></label>';
$out .= '<textarea class="form-control font-monospace" id="g1wallet-mnemonic" name="g1wallet_mnemonic"
rows="2" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false"
placeholder="word1 word2 word3 word4 word5 word6 word7 word8 word9 word10 word11 word12"></textarea>';
$out .= '<div class="form-text">Your 12-word Ğ1 mnemonic — the recovery phrase generated when your Ğ1 account was created. Words are separated by single spaces, lowercase, English wordlist.</div>';
$out .= '</div>';
$out .= '<div id="g1wallet-unlock-error" class="alert alert-danger" style="display:none;" role="alert"></div>';
$out .= '<div class="mt-3">';
$out .= '<button type="button" id="g1wallet-unlock-btn" class="btn btn-primary">Unlock Wallet</button>';
$out .= '<span id="g1wallet-unlock-spinner" class="ms-2 text-muted small" style="display:none;">Deriving keypair…</span>';
$out .= '</div>';
$out .= '</div>';
return $out;
}
// -----------------------------------------------------------------------------
// UNLOCKED INTERFACE
// -----------------------------------------------------------------------------
function g1wallet_render_unlocked_placeholder($access) {
// Unlocked wallet interface.
// Populated by g1wallet.js after key derivation.
$out = '<div class="g1wallet-unlocked">';
$out .= '<div class="alert alert-success d-flex justify-content-between align-items-center">';
$out .= '<span><strong>Wallet unlocked.</strong></span>';
$out .= '<button type="button" id="g1wallet-lock-btn" class="btn btn-sm btn-outline-secondary">Lock</button>';
$out .= '</div>';
$out .= '<div class="mb-3">';
$out .= '<h5 class="g1wallet-section-label">Public Key (Ğ1 Address)</h5>';
$out .= '<p id="g1wallet-pubkey-display" class="font-monospace text-muted small">—</p>';
$out .= '</div>';
$out .= '<div class="mb-3">';
$out .= '<h5 class="g1wallet-section-label">Ğ1 Balance</h5>';
$out .= '<p id="g1wallet-balance-display" class="text-muted fst-italic">Not yet loaded.</p>';
$out .= '<button type="button" id="g1wallet-refresh-balance-btn" class="btn btn-sm btn-outline-primary">Refresh Balance</button>';
$out .= '</div>';
// Hidden form to store pubkey in channel settings — posted once after first unlock.
// g1wallet.js posts to this via fetch() after derivation, not via form submit.
$out .= '<form id="g1wallet-pubkey-form" style="display:none;">';
$out .= g1wallet_csrf_token();
$out .= '<input type="hidden" id="g1wallet-pubkey-input" name="g1_pubkey" value="">';
$out .= '</form>';
if ($access === 'operator') {
$out .= '<div class="mt-3">';
$out .= '<p class="text-muted small">You are the operator. Your Ğ1 public key is stored in your channel settings, not in config.</p>';
if ($balance !== '') {
$out .= '<p class="mb-1"><strong>Balance:</strong> ' . g1wallet_h($balance) . ' Ğ1</p>';
} else {
$out .= '<p class="text-muted small">Balance unavailable.</p>';
}
$out .= '</div>';
}
// Address registration form
$out .= '<div class="g1wallet-address-form">';
$out .= '<h5>' . ($stored_addr ? 'Update Address' : 'Register Your Ğ1 Address') . '</h5>';
$out .= '<p class="text-muted small">Paste your Ğ1 address (starts with <code>g1</code>, 4647 characters). ';
$out .= 'You can find it in the Ğecko app or any Ğ1 wallet application.</p>';
$out .= '<form method="post" action="/g1wallet/address">';
$out .= g1wallet_csrf_token();
$out .= '<div class="mb-3">';
$out .= '<label class="form-label" for="g1wallet-address">Ğ1 Address <span class="text-danger">*</span></label>';
$out .= '<input type="text" class="form-control font-monospace" id="g1wallet-address" name="g1_address"';
$out .= ' value="' . g1wallet_h($stored_addr) . '"';
$out .= ' placeholder="g1..." autocomplete="off" spellcheck="false" maxlength="48">';
$out .= '</div>';
$out .= '<button type="submit" class="btn btn-primary">Save Address</button>';
$out .= '</form>';
$out .= '</div>';
$out .= '</div>';
return $out;
}
// -----------------------------------------------------------------------------
// BALANCE FETCH
// -----------------------------------------------------------------------------
function g1wallet_fetch_balance($g1_address) {
// Delegates to cry01 chain query via the orchestrator RPC endpoint.
// Returns formatted balance string (e.g. "12.50") or empty string on failure.
// Reuses the same config/RPC path as cry01.
$cry01_config_raw = @file_get_contents('addon/cry01/config.json');
if ($cry01_config_raw === false) return '';
$cry01_config = json_decode($cry01_config_raw, true);
if (json_last_error() !== JSON_ERROR_NONE) return '';
$rpc_endpoint = rtrim($cry01_config['g1_rpc_endpoint'] ?? '', '/');
if (!$rpc_endpoint) return '';
// Decode SS58 address to 32-byte account ID, build storage key, query RPC.
// These functions live in cry01_substrate.php and cry01_chain.php.
if (!function_exists('cry01_ss58_decode')) {
require_once 'addon/cry01/cry01_substrate.php';
}
if (!function_exists('cry01_storage_key')) {
require_once 'addon/cry01/cry01_chain.php';
}
$account_id = cry01_ss58_decode($g1_address);
if (!$account_id) return '';
$storage_key = cry01_storage_key($account_id);
$raw_result = cry01_rpc_state_get_storage($rpc_endpoint, $storage_key);
if ($raw_result === null) return '';
$account_info = cry01_decode_account_info($raw_result);
if (!$account_info) return '';
// Balance is in centimes (100 units = 1 Ğ1).
$free_centimes = $account_info['free'] ?? '0';
return cry01_format_balance($free_centimes);
}
function cry01_format_balance($centimes_string) {
// Converts centimes string to "X.XX" Ğ1 string using string arithmetic.
if (!function_exists('cry01_decimal_string_add')) {
require_once 'addon/cry01/cry01_substrate.php';
}
// Integer division by 100 via string — avoid bcmath dependency.
$len = strlen($centimes_string);
if ($len <= 2) {
$whole = '0';
$frac = str_pad($centimes_string, 2, '0', STR_PAD_LEFT);
} else {
$whole = substr($centimes_string, 0, $len - 2);
$frac = substr($centimes_string, $len - 2);
}
return $whole . '.' . $frac;
}
// -----------------------------------------------------------------------------
// ERROR
// -----------------------------------------------------------------------------
function g1wallet_render_error($message) {
// Shows a plain-language error. Never shows a blank page or stack trace.
return '<div class="g1wallet-content"><div class="alert alert-danger">'
. g1wallet_h($message)
. '</div></div>';