wip: only auto login SIWE when using a url to login

Author: gregfromstl

packages/thirdweb/src/auth/core/sign-and-login.ts

@@ -0,0 +1,36 @@
+import type { SiweAuthOptions } from "./types.js";
+import type { Account, Wallet } from "../../wallets/interfaces/wallet.js";
+import { getCachedChain } from "../../chains/utils.js";
+
+export async function signAndLogin(params: {
+  activeWallet: Wallet;
+  activeAccount: Account;
+  authOptions: SiweAuthOptions;
+}) {
+  const { activeWallet, activeAccount, authOptions } = params;
+
+  const chain = activeWallet.getChain();
+  if (!chain) {
+    throw new Error("No active chain");
+  }
+
+  const [payload, { signLoginPayload }] = await Promise.all([
+    authOptions.getLoginPayload({
+      address: activeAccount.address,
+      chainId: chain.id,
+    }),
+    // we lazy-load this because it's only needed when logging in
+    import("./sign-login-payload.js"),
+  ]);
+
+  if (payload.chain_id) {
+    await activeWallet.switchChain(getCachedChain(Number(payload.chain_id)));
+  }
+
+  const signedPayload = await signLoginPayload({
+    payload,
+    account: activeAccount,
+  });
+
+  return await authOptions.doLogin(signedPayload);
+}

packages/thirdweb/src/auth/core/types.ts

@@ -1,7 +1,9 @@
 import type { ThirdwebClient } from "../../client/client.js";
 import type { Account } from "../../wallets/interfaces/wallet.js";
+import type { VerifyLoginPayloadParams } from "./verify-login-payload.js";
 
 /**
+ * Options for creating an Auth instance
  * @auth
  */
 export type AuthOptions = {
@@ -44,3 +46,43 @@ export type LoginPayload = {
   invalid_before: string;
   resources?: string[];
 };
+
+/**
+ * Options for Setting up SIWE (Sign in with Ethereum) Authentication
+ * @auth
+ */
+export type SiweAuthOptions = {
+  // we pass address and chainId and retrieve a login payload (we do not care how)
+
+  /**
+   * Method to get the login payload for given address and chainId
+   * @param params - The parameters to get the login payload for.
+   */
+  getLoginPayload: (params: {
+    address: string;
+    chainId: number;
+  }) => Promise<LoginPayload>;
+
+  // we pass the login payload and signature and the developer passes this to the auth server however they want
+
+  /**
+   * Method to login with the signed login payload
+   * @param params
+   */
+  doLogin: (params: VerifyLoginPayloadParams) => Promise<void>;
+
+  // we call this internally when a user explicitly disconnects their wallet
+
+  /**
+   * Method to logout the user
+   */
+  doLogout: () => Promise<void>;
+
+  // the developer specifies how to check if the user is logged in, this is called internally by the component
+
+  /**
+   * Method to check if the user is logged in or not
+   * @param address
+   */
+  isLoggedIn: (address: string) => Promise<boolean>;
+};

packages/thirdweb/src/exports/auth.ts

@@ -21,7 +21,11 @@ export type {
   VerifyLoginPayloadResult,
 } from "../auth/core/verify-login-payload.js";
 export type { GenerateLoginPayloadParams } from "../auth/core/generate-login-payload.js";
-export type { AuthOptions, LoginPayload } from "../auth/core/types.js";
+export type {
+  AuthOptions,
+  LoginPayload,
+  SiweAuthOptions,
+} from "../auth/core/types.js";
 
 // meant to be used on the "client" side to sign the login payload with a given account
 export {

packages/thirdweb/src/exports/react.ts

@@ -123,8 +123,8 @@ export {
 export { AutoConnect } from "../react/web/ui/AutoConnect/AutoConnect.js";
 export type { AutoConnectProps } from "../wallets/connection/types.js";
 
-// auth
-export type { SiweAuthOptions } from "../react/core/hooks/auth/useSiweAuth.js";
+// auth - its in core but must export from here to avoid breaking changes
+export type { SiweAuthOptions } from "../auth/core/types.js";
 
 export {
   PayEmbed,

packages/thirdweb/src/react/core/hooks/auth/useSiweAuth.ts

@@ -1,48 +1,7 @@
 import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query";
-import type { LoginPayload } from "../../../../auth/core/types.js";
-import type { VerifyLoginPayloadParams } from "../../../../auth/core/verify-login-payload.js";
-import { getCachedChain } from "../../../../chains/utils.js";
 import type { Account, Wallet } from "../../../../wallets/interfaces/wallet.js";
-
-/**
- * Options for Setting up SIWE (Sign in with Ethereum) Authentication
- * @auth
- */
-export type SiweAuthOptions = {
-  // we pass address and chainId and retrieve a login payload (we do not care how)
-
-  /**
-   * Method to get the login payload for given address and chainId
-   * @param params - The parameters to get the login payload for.
-   */
-  getLoginPayload: (params: {
-    address: string;
-    chainId: number;
-  }) => Promise<LoginPayload>;
-
-  // we pass the login payload and signature and the developer passes this to the auth server however they want
-
-  /**
-   * Method to login with the signed login payload
-   * @param params
-   */
-  doLogin: (params: VerifyLoginPayloadParams) => Promise<void>;
-
-  // we call this internally when a user explicitly disconnects their wallet
-
-  /**
-   * Method to logout the user
-   */
-  doLogout: () => Promise<void>;
-
-  // the developer specifies how to check if the user is logged in, this is called internally by the component
-
-  /**
-   * Method to check if the user is logged in or not
-   * @param address
-   */
-  isLoggedIn: (address: string) => Promise<boolean>;
-};
+import { signAndLogin } from "../../../../auth/core/sign-and-login.js";
+import type { SiweAuthOptions } from "../../../../auth/core/types.js";
 
 /**
  * @internal
@@ -81,34 +40,15 @@ export function useSiweAuth(
       if (!activeWallet) {
         throw new Error("No active wallet");
       }
-      const chain = activeWallet.getChain();
-      if (!chain) {
-        throw new Error("No active chain");
-      }
       if (!activeAccount) {
         throw new Error("No active account");
       }
-      const [payload, { signLoginPayload }] = await Promise.all([
-        authOptions.getLoginPayload({
-          address: activeAccount.address,
-          chainId: chain.id,
-        }),
-        // we lazy-load this because it's only needed when logging in
-        import("../../../../auth/core/sign-login-payload.js"),
-      ]);
 
-      if (payload.chain_id) {
-        await activeWallet.switchChain(
-          getCachedChain(Number(payload.chain_id)),
-        );
-      }
-
-      const signedPayload = await signLoginPayload({
-        payload,
-        account: activeAccount,
+      await signAndLogin({
+        activeWallet,
+        activeAccount,
+        authOptions,
       });
-
-      return await authOptions.doLogin(signedPayload);
     },
     onSuccess: () => {
       return queryClient.invalidateQueries({

packages/thirdweb/src/react/core/hooks/connection/ConnectButtonProps.ts

@@ -18,12 +18,12 @@ import type { CurrencyMeta } from "../../../web/ui/ConnectWallet/screens/Buy/fia
 import type { WelcomeScreen } from "../../../web/ui/ConnectWallet/screens/types.js";
 import type { LocaleId } from "../../../web/ui/types.js";
 import type { Theme } from "../../design-system/index.js";
+import type { SiweAuthOptions } from "../../../../auth/core/types.js";
 import type {
   SupportedNFTs,
   SupportedTokens,
   TokenInfo,
 } from "../../utils/defaultTokens.js";
-import type { SiweAuthOptions } from "../auth/useSiweAuth.js";
 
 export type PaymentInfo = {
   /**
@@ -44,21 +44,21 @@ export type PaymentInfo = {
    */
   feePayer?: "sender" | "receiver";
 } & (
-  | {
+    | {
       /**
        * The amount of tokens to receive in ETH or tokens.
        * ex: 0.1 ETH or 100 USDC
        */
       amount: string;
     }
-  | {
+    | {
       /**
        * The amount of tokens to receive in wei.
        * ex: 1000000000000000000 wei
        */
       amountWei: bigint;
     }
-);
+  );
 
 export type PayUIOptions = Prettify<
   {
@@ -73,33 +73,33 @@ export type PayUIOptions = Prettify<
      * For example, if you want to allow selecting chain and but disable selecting token, you can set `allowEdits` to `{ token: false, chain: true }`
      */
     buyWithCrypto?:
-      | false
-      | {
-          testMode?: boolean;
-          prefillSource?: {
-            chain: Chain;
-            token?: TokenInfo;
-            allowEdits?: {
-              token: boolean;
-              chain: boolean;
-            };
-          };
+    | false
+    | {
+      testMode?: boolean;
+      prefillSource?: {
+        chain: Chain;
+        token?: TokenInfo;
+        allowEdits?: {
+          token: boolean;
+          chain: boolean;
         };
+      };
+    };
 
     /**
      * By default "Credit card" option is enabled. you can disable it by setting `buyWithFiat` to `false`
      *
      * You can also enable the test mode for the on-ramp provider to test on-ramp without using real credit card.
      */
     buyWithFiat?:
-      | {
-          testMode?: boolean;
-          prefillSource?: {
-            currency?: CurrencyMeta["shorthand"];
-          };
-          preferredProvider?: FiatProvider;
-        }
-      | false;
+    | {
+      testMode?: boolean;
+      prefillSource?: {
+        currency?: CurrencyMeta["shorthand"];
+      };
+      preferredProvider?: FiatProvider;
+    }
+    | false;
 
     /**
      * Extra details to store with the purchase.
@@ -114,18 +114,18 @@ export type PayUIOptions = Prettify<
     onPurchaseSuccess?: (
       info:
         | {
-            type: "crypto";
-            status: BuyWithCryptoStatus;
-          }
+          type: "crypto";
+          status: BuyWithCryptoStatus;
+        }
         | {
-            type: "fiat";
-            status: BuyWithFiatStatus;
-          }
+          type: "fiat";
+          status: BuyWithFiatStatus;
+        }
         | {
-            type: "transaction";
-            chainId: number;
-            transactionHash: Hex;
-          },
+          type: "transaction";
+          chainId: number;
+          transactionHash: Hex;
+        },
     ) => void;
     /**
      * Customize the display of the PayEmbed UI.
@@ -638,10 +638,10 @@ export type ConnectButtonProps = {
    * ```
    */
   autoConnect?:
-    | {
-        timeout: number;
-      }
-    | boolean;
+  | {
+    timeout: number;
+  }
+  | boolean;
 
   /**
    * Metadata of the app that will be passed to connected wallet. Setting this is highly recommended.

packages/thirdweb/src/react/core/hooks/connection/ConnectEmbedProps.ts

@@ -6,7 +6,7 @@ import type { AppMetadata } from "../../../../wallets/types.js";
 import type { WelcomeScreen } from "../../../web/ui/ConnectWallet/screens/types.js";
 import type { LocaleId } from "../../../web/ui/types.js";
 import type { Theme } from "../../design-system/index.js";
-import type { SiweAuthOptions } from "../auth/useSiweAuth.js";
+import type { SiweAuthOptions } from "../../../../auth/core/types.js";
 
 export type ConnectEmbedProps = {
   /**
@@ -104,10 +104,10 @@ export type ConnectEmbedProps = {
    * ```
    */
   autoConnect?:
-    | {
-        timeout: number;
-      }
-    | boolean;
+  | {
+    timeout: number;
+  }
+  | boolean;
 
   /**
    * The [`Chain`](https://portal.thirdweb.com/references/typescript/v5/Chain) object of the blockchain you want the wallet to connect to
@@ -323,9 +323,9 @@ export type ConnectEmbedProps = {
    * Set it to `true` to show the default title and icon
    */
   header?:
-    | {
-        title?: string;
-        titleIcon?: string;
-      }
-    | true;
+  | {
+    title?: string;
+    titleIcon?: string;
+  }
+  | true;
 };