Documentation GitHub npm

Global

Members

# constant AuthClawbackEnabledFlag

When set using Operation.setOptions option, then any trustlines created by this account can have a ClawbackOp operation submitted for the corresponding asset.

See:

View Source js-stellar-base/src/operation.js, line 56

# constant AuthImmutableFlag

When set using Operation.setOptions option, then none of the authorization flags can be set and the account can never be deleted.

See:

View Source js-stellar-base/src/operation.js, line 46

# constant AuthRequiredFlag

When set using Operation.setOptions option, requires the issuing account to give other accounts permission before they can hold the issuing account’s credit.

See:

View Source js-stellar-base/src/operation.js, line 30

# constant AuthRevocableFlag

When set using Operation.setOptions option, allows the issuing account to revoke its credit held by other accounts.

See:

View Source js-stellar-base/src/operation.js, line 38

# constant BASE_FEE

Minimum base fee for transactions. If this fee is below the network minimum, the transaction will fail. The more operations in the transaction, the greater the required fee. Use Server#fetchBaseFee to get an accurate value of minimum transaction fee on the network.

See:

View Source js-stellar-base/src/transaction_builder.js, line 28

# LinearSleepStrategy

A function that returns the number of milliseconds to sleep on a given iteration.

View Source lib/rpc/server.js, line 66

# constant MemoHash

Type of Memo.

View Source js-stellar-base/src/memo.js, line 20

# constant MemoID

Type of Memo.

View Source js-stellar-base/src/memo.js, line 12

# constant MemoNone

Type of Memo.

View Source js-stellar-base/src/memo.js, line 8

# constant MemoReturn

Type of Memo.

View Source js-stellar-base/src/memo.js, line 24

# constant MemoText

Type of Memo.

View Source js-stellar-base/src/memo.js, line 16

Object

# constant Networks

Contains passphrases for common networks:

  • Networks.PUBLIC: Public Global Stellar Network ; September 2015
  • Networks.TESTNET: Test SDF Network ; September 2015
  • Networks.FUTURENET: Test SDF Future Network ; October 2022
  • Networks.STANDALONE: Standalone Network ; February 2017

View Source js-stellar-base/src/network.js, line 10

# constant TimeoutInfinite

See:

View Source js-stellar-base/src/transaction_builder.js, line 35

# _default

Tools for interacting with smart contracts, such as Client, Spec, and AssembledTransaction. You can import these from the /contract entrypoint, if your version of Node and your TypeScript configuration allow it:

View Source lib/index.js, line 94

Example
import { Client } from '@stellar/stellar-sdk/contract';

# constant defaultConfig

Global config parameters.

View Source lib/config.js, line 11

Methods

# asciiCompare(a, b) → {number}

Compares two ASCII strings in lexographic order with uppercase precedence.

Parameters:
Name Type Description
a string

the first string to compare
b string

the second

View Source js-stellar-base/src/asset.js, line 292

like all compare()s: -1 if a < b, 0 if a == b, and 1 if a > b

number

# authorizeEntry(entry, signer, validUntilLedgerSeq, networkPassphraseopt) → {Promise.<xdr.SorobanAuthorizationEntry>}

Actually authorizes an existing authorization entry using the given the credentials and expiration details, returning a signed copy.

This "fills out" the authorization entry with a signature, indicating to the Operation.invokeHostFunction its attached to that:

  • a particular identity (i.e. signing Keypair or other signer)
  • approving the execution of an invocation tree (i.e. a simulation-acquired xdr.SorobanAuthorizedInvocation or otherwise built)
  • on a particular network (uniquely identified by its passphrase, see Networks)
  • until a particular ledger sequence is reached.

This one lets you pass a either a Keypair (or, more accurately, anything with a sign(Buffer): Buffer method) or a callback function (see SigningCallback) to handle signing the envelope hash.

Parameters:
Name Type Attributes Description
entry xdr.SorobanAuthorizationEntry

an unsigned authorization entr
signer Keypair | SigningCallback

either a Keypair instance or a function which takes a xdr.HashIdPreimageSorobanAuthorization input payload and returns EITHER

 (a) an object containing a `signature` of the hash of the raw payload bytes
     as a Buffer-like and a `publicKey` string representing who just
     created this signature, or
 (b) just the naked signature of the hash of the raw payload bytes (where
     the signing key is implied to be the address in the `entry`).

The latter option (b) is JUST for backwards compatibility and will be removed in the future.
validUntilLedgerSeq number

the (exclusive) future ledger sequence number until which this authorization entry should be valid (if currentLedgerSeq==validUntil, this is expired))
networkPassphrase string <optional>

the network passphrase is incorprated into the signature (see Networks for options)
See:

View Source js-stellar-base/src/auth.js, line 116

a promise for an authorization entry that you can pass along to Operation.invokeHostFunction

Promise.<xdr.SorobanAuthorizationEntry>
Example
import {
  SorobanRpc,
  Transaction,
  Networks,
  authorizeEntry
} from '@stellar/stellar-sdk';

// Assume signPayloadCallback is a well-formed signing callback.
//
// It might, for example, pop up a modal from a browser extension, send the
// transaction to a third-party service for signing, or just do simple
// signing via Keypair like it does here:
function signPayloadCallback(payload) {
   return signer.sign(hash(payload.toXDR());
}

function multiPartyAuth(
   server: SorobanRpc.Server,
   // assume this involves multi-party auth
   tx: Transaction,
) {
   return server
     .simulateTransaction(tx)
     .then((simResult) => {
         tx.operations[0].auth.map(entry =>
           authorizeEntry(
             entry,
             signPayloadCallback,
             currentLedger + 1000,
             Networks.TESTNET);
         ));

         return server.prepareTransaction(tx, simResult);
     })
     .then((preppedTx) => {
       preppedTx.sign(source);
       return server.sendTransaction(preppedTx);
     });
}

# authorizeInvocation(signer, validUntilLedgerSeq, invocation, publicKeyopt, networkPassphraseopt) → {Promise.<xdr.SorobanAuthorizationEntry>}

This builds an entry from scratch, allowing you to express authorization as a function of:

  • a particular identity (i.e. signing Keypair or other signer)
  • approving the execution of an invocation tree (i.e. a simulation-acquired xdr.SorobanAuthorizedInvocation or otherwise built)
  • on a particular network (uniquely identified by its passphrase, see Networks)
  • until a particular ledger sequence is reached.

This is in contrast to authorizeEntry, which signs an existing entry.

Parameters:
Name Type Attributes Description
signer Keypair | SigningCallback

either a Keypair instance (or anything with a .sign(buf): Buffer-like method) or a function which takes a payload (a xdr.HashIdPreimageSorobanAuthorization instance) input and returns the signature of the hash of the raw payload bytes (where the signing key should correspond to the address in the entry)
validUntilLedgerSeq number

the (exclusive) future ledger sequence number until which this authorization entry should be valid (if currentLedgerSeq==validUntilLedgerSeq, this is expired))
invocation xdr.SorobanAuthorizedInvocation

the invocation tree that we're authorizing (likely, this comes from transaction simulation)
publicKey string <optional>

the public identity of the signer (when providing a Keypair to signer, this can be omitted, as it just uses Keypair.publicKey)
networkPassphrase string <optional>

the network passphrase is incorprated into the signature (see Networks for options, default: Networks.FUTURENET)
See:

View Source js-stellar-base/src/auth.js, line 226

a promise for an authorization entry that you can pass along to Operation.invokeHostFunction

Promise.<xdr.SorobanAuthorizationEntry>

# buildChallengeTx(serverKeypair, clientAccountID, homeDomain, timeout, networkPassphrase, webAuthDomain, memo, clientDomain, clientSigningKey)

Returns a valid SEP-10 challenge transaction which you can use for Stellar Web Authentication.

Parameters:
Name Type Default Description
serverKeypair

Keypair for server's signing account.
clientAccountID

The stellar account (G...) or muxed account (M...) that the wallet wishes to authenticate with the server.
homeDomain

The fully qualified domain name of the service requiring authentication
timeout 300

Challenge duration (default to 5 minutes).
networkPassphrase

The network passphrase. If you pass this argument then timeout is required.
webAuthDomain

The fully qualified domain name of the service issuing the challenge.
memo null

The memo to attach to the challenge transaction. The memo must be of type id. If the clientaccountID is a muxed account, memos cannot be used.
clientDomain null

The fully qualified domain of the client requesting the challenge. Only necessary when the 'client_domain' parameter is passed.
clientSigningKey null

The public key assigned to the SIGNING_KEY attribute specified on the stellar.toml hosted on the client domain. Only necessary when the 'client_domain' parameter is passed.
See:

View Source lib/webauth/challenge_transaction.js, line 56

Will throw if clientAccountID is a muxed account, and memo` is present.

Error

Will throw if clientDomain is provided, but clientSigningKey is missing

Error

A base64 encoded string of the raw TransactionEnvelope xdr struct for the transaction.

Example
import { Keypair, Networks, WebAuth } from 'stellar-sdk'

let serverKeyPair = Keypair.fromSecret("server-secret")
let challenge = WebAuth.buildChallengeTx(
   serverKeyPair,
   "client-stellar-account-id",
   "stellar.org",
   300,
   Networks.TESTNET);

# buildInvocationTree(root) → {InvocationTree}

Turns a raw invocation tree into a human-readable format.

This is designed to make the invocation tree easier to understand in order to inform users about the side-effects of their contract calls. This will help make informed decisions about whether or not a particular invocation will result in what you expect it to.

Parameters:
Name Type Description
root xdr.SorobanAuthorizedInvocation

the raw XDR of the invocation, likely acquired from transaction simulation. this is either from the Operation.invokeHostFunction itself (the func field), or from the authorization entries (xdr.SorobanAuthorizationEntry, the rootInvocation field)

View Source js-stellar-base/src/invocation.js, line 85

a human-readable version of the invocation tree

InvocationTree
Example
Here, we show a browser modal after simulating an arbitrary transaction,
`tx`, which we assume has an `Operation.invokeHostFunction` inside of it:

```typescript
import { Server, buildInvocationTree } from '@stellar/stellar-sdk';

const s = new Server("fill in accordingly");

s.simulateTransaction(tx).then(
 (resp: SorobanRpc.SimulateTransactionResponse) => {
   if (SorobanRpc.isSuccessfulSim(resp) && ) {
     // bold assumption: there's a valid result with an auth entry
     alert(
       "You are authorizing the following invocation:\n" +
       JSON.stringify(
         buildInvocationTree(resp.result!.auth[0].rootInvocation()),
         null,
         2
       )
     );
   }
 }
);
```

# decodeAddressToMuxedAccount(address) → {xdr.MuxedAccount}

Converts a Stellar address (in G... or M... form) to an xdr.MuxedAccount structure, using the ed25519 representation when possible.

This supports full muxed accounts, where an M... address will resolve to both its underlying G... address and an integer ID.

Parameters:
Name Type Description
address string

G... or M... address to encode into XDR

View Source js-stellar-base/src/util/decode_encode_muxed_account.js, line 14

a muxed account object for this address string

xdr.MuxedAccount

# encodeMuxedAccount(address, id) → {xdr.MuxedAccount}

Transform a Stellar address (G...) and an ID into its XDR representation.

Parameters:
Name Type Description
address string

a Stellar G... address
id string

a Uint64 ID represented as a string

View Source js-stellar-base/src/util/decode_encode_muxed_account.js, line 55

  • XDR representation of the above muxed account
xdr.MuxedAccount

# encodeMuxedAccountToAddress(muxedAccount) → {string}

Converts an xdr.MuxedAccount to its StrKey representation.

This returns its "M..." string representation if there is a muxing ID within the object and returns the "G..." representation otherwise.

Parameters:
Name Type Description
muxedAccount xdr.MuxedAccount

Raw account to stringify
See:

View Source js-stellar-base/src/util/decode_encode_muxed_account.js, line 36

Stringified G... (corresponding to the underlying pubkey) or M... address (corresponding to both the key and the muxed ID)

string

# extractBaseAddress(address) → {string}

Extracts the underlying base (G...) address from an M-address.

Parameters:
Name Type Description
address string

an account address (either M... or G...)

View Source js-stellar-base/src/util/decode_encode_muxed_account.js, line 76

a Stellar public key address (G...)

string

# getLiquidityPoolId(liquidityPoolType, liquidityPoolParameters) → {Buffer}

getLiquidityPoolId computes the Pool ID for the given assets, fee and pool type.

Parameters:
Name Type Description
liquidityPoolType string

– A string representing the liquidity pool type.
liquidityPoolParameters object

– The liquidity pool parameters.
assetA Asset

– The first asset in the Pool, it must respect the rule assetA < assetB.
assetB Asset

– The second asset in the Pool, it must respect the rule assetA < assetB.
fee number

– The liquidity pool fee. For now the only fee supported is 30.
See:

View Source js-stellar-base/src/get_liquidity_pool_id.js, line 22

the raw Pool ID buffer, which can be stringfied with toString('hex')

Buffer

# humanizeEvents(events) → {Array.<SorobanEvent>}

Converts raw diagnostic or contract events into something with a flatter, human-readable, and understandable structure.

Parameters:
Name Type Description
events Array.<xdr.DiagnosticEvent> | Array.<xdr.ContractEvent>

either contract events or diagnostic events to parse into a friendly format

View Source js-stellar-base/src/events.js, line 18

a list of human-readable event structures, where each element has the following properties:

  • type: a string of one of 'system', 'contract', 'diagnostic
  • contractId?: optionally, a C... encoded strkey
  • topics: a list of scValToNative invocations on the topics
  • data: similarly, a scValToNative invocation on the raw event data
Array.<SorobanEvent>

# isValid(versionByteName, encoded) → {Boolean}

Sanity-checks whether or not a strkey appears valid.

Parameters:
Name Type Description
versionByteName string

the type of strkey to expect in encoded
encoded string

the strkey to validate

View Source js-stellar-base/src/strkey.js, line 286

whether or not the encoded strkey appears valid for the versionByteName strkey type (see versionBytes, above).

Boolean

# isValidDate(d) → {boolean}

Checks whether a provided object is a valid Date.

Parameters:
Name Type Description
d Date

date object

View Source js-stellar-base/src/transaction_builder.js, line 845

boolean

# nativeToScVal(val, optsopt) → {xdr.ScVal}

Attempts to convert native types into smart contract values (xdr.ScVal).

Provides conversions from smart contract XDR values (xdr.ScVal) to native JavaScript types.

The conversions are as follows:

  • xdr.ScVal -> passthrough

  • null/undefined -> scvVoid

  • string -> scvString (a copy is made)

  • UintArray8 -> scvBytes (a copy is made)

  • boolean -> scvBool

  • number/bigint -> the smallest possible XDR integer type that will fit the input value (if you want a specific type, use ScInt)

  • Address or Contract -> scvAddress (for contracts and public keys)

  • Array -> scvVec after attempting to convert each item of type T to an xdr.ScVal (recursively). note that all values must be the same type!

  • object -> scvMap after attempting to convert each key and value to an xdr.ScVal (recursively). note that there is no restriction on types matching anywhere (unlike arrays)

When passing an integer-like native value, you can also optionally specify a type which will force a particular interpretation of that value.

Note that not all type specifications are compatible with all ScVals, e.g. toScVal("a string", {type: "i256"}) will throw.

Parameters:
Name Type Attributes Description
val any

a native (or convertible) input value to wrap
opts object <optional>

an optional set of hints around the type of conversion you'd like to see
type string <optional>

there is different behavior for different input types for val:

- when `val` is an integer-like type (i.e. number|bigint), this will be
  forwarded to ScInt or forced to be u32/i32.

- when `val` is an array type, this is forwarded to the recursion

- when `val` is an object type (key-value entries), this should be an
  object in which each key has a pair of types (to represent forced types
  for the key and the value), where `null` (or a missing entry) indicates
  the default interpretation(s) (refer to the examples, below)

- when `val` is a string type, this can be 'string' or 'symbol' to force
  a particular interpretation of `val`.

- when `val` is a bytes-like type, this can be 'string', 'symbol', or
  'bytes' to force a particular interpretation

As a simple example, nativeToScVal("hello", {type: 'symbol'}) will return an scvSymbol, whereas without the type it would have been an scvString.
See:

View Source js-stellar-base/src/scval.js, line 144

if...

  • there are arrays with more than one type in them
  • there are values that do not have a sensible conversion (e.g. random XDR types, custom classes)
  • the type of the input object (or some inner value of said object) cannot be determined (via typeof)
  • the type you specified (via opts.type) is incompatible with the value you passed in (val), e.g. nativeToScVal("a string", { type: 'i128' }), though this does not apply for types that ignore opts (e.g. addresses).
TypeError

a wrapped, smart, XDR version of the input value

xdr.ScVal
Examples
nativeToScVal(1000);                   // gives ScValType === scvU64
nativeToScVal(1000n);                  // gives ScValType === scvU64
nativeToScVal(1n << 100n);             // gives ScValType === scvU128
nativeToScVal(1000, { type: 'u32' });  // gives ScValType === scvU32
nativeToScVal(1000, { type: 'i125' }); // gives ScValType === scvI256
nativeToScVal("a string");                     // gives ScValType === scvString
nativeToScVal("a string", { type: 'symbol' }); // gives scvSymbol
nativeToScVal(new Uint8Array(5));                      // scvBytes
nativeToScVal(new Uint8Array(5), { type: 'symbol' });  // scvSymbol
nativeToScVal(null); // scvVoid
nativeToScVal(true); // scvBool
nativeToScVal([1, 2, 3]);                    // gives scvVec with each element as scvU64
nativeToScVal([1, 2, 3], { type: 'i128' });  // scvVec<scvI128>
nativeToScVal([1, '2'], { type: ['i128', 'symbol'] });  // scvVec with diff types
nativeToScVal([1, '2', 3], { type: ['i128', 'symbol'] });
   // scvVec with diff types, using the default when omitted
nativeToScVal({ 'hello': 1, 'world': [ true, false ] }, {
  type: {
    'hello': [ 'symbol', 'i128' ],
  }
})
// gives scvMap with entries: [
//     [ scvSymbol, scvI128 ],
//     [ scvString, scvArray<scvBool> ]
// ]
import {
  nativeToScVal,
  scValToNative,
  ScInt,
  xdr
} from '@stellar/stellar-base';

let gigaMap = {
  bool: true,
  void: null,
  u32: xdr.ScVal.scvU32(1),
  i32: xdr.ScVal.scvI32(1),
  u64: 1n,
  i64: -1n,
  u128: new ScInt(1).toU128(),
  i128: new ScInt(1).toI128(),
  u256: new ScInt(1).toU256(),
  i256: new ScInt(1).toI256(),
  map: {
    arbitrary: 1n,
    nested: 'values',
    etc: false
  },
  vec: ['same', 'type', 'list'],
  vec: ['diff', 1, 'type', 2, 'list'],
};

// then, simply:
let scv = nativeToScVal(gigaMap);    // scv.switch() == xdr.ScValType.scvMap()

// then...
someContract.call("method", scv);

// Similarly, the inverse should work:
scValToNative(scv) == gigaMap;       // true

# readChallengeTx(challengeTx, serverAccountID, networkPassphrase, homeDomains, webAuthDomain)

Reads a SEP-10 challenge transaction and returns the decoded transaction and client account ID contained within.

It also verifies that the transaction has been signed by the server.

It does not verify that the transaction has been signed by the client or that any signatures other than the server's on the transaction are valid. Use one of the following functions to completely verify the transaction:

  • module:WebAuth~verifyChallengeTxThreshold
  • module:WebAuth~verifyChallengeTxSigners
Parameters:
Name Type Description
challengeTx

SEP0010 challenge transaction in base64.
serverAccountID

The server's stellar account (public key).
networkPassphrase

The network passphrase, e.g.: 'Test SDF Network ; September 2015' (see Networks)
homeDomains

The home domain that is expected to be included in the first Manage Data operation's string key. If an array is provided, one of the domain names in the array must match.
webAuthDomain

The home domain that is expected to be included as the value of the Manage Data operation with the 'web_auth_domain' key. If no such operation is included, this parameter is not used.
See:

View Source lib/webauth/challenge_transaction.js, line 133

The actual transaction and the Stellar public key (master key) used to sign the Manage Data operation, the matched home domain, and the memo attached to the transaction, which will be null if not present.

# scValToBigInt(scv) → {bigint}

Transforms an opaque xdr.ScVal into a native bigint, if possible.

If you then want to use this in the abstractions provided by this module, you can pass it to the constructor of XdrLargeInt.

Parameters:
Name Type Description
scv xdr.ScVal

the raw XDR value to parse into an integer

View Source js-stellar-base/src/numbers/index.js, line 28

if the scv input value doesn't represent an integer

TypeError

the native value of this input value

bigint
Example
let scv = contract.call("add", x, y); // assume it returns an xdr.ScVal
let bigi = scValToBigInt(scv);

new ScInt(bigi);               // if you don't care about types, and
new XdrLargeInt('i128', bigi); // if you do

# scValToNative(scv) → {any}

Given a smart contract value, attempt to convert it to a native type. Possible conversions include:

  • void -> null
  • u32, i32 -> number
  • u64, i64, u128, i128, u256, i256, timepoint, duration -> bigint
  • vec -> Array of any of the above (via recursion)
  • map -> key-value object of any of the above (via recursion)
  • bool -> boolean
  • bytes -> Uint8Array
  • symbol -> string
  • string -> string IF the underlying buffer can be decoded as ascii/utf8, Uint8Array of the raw contents in any error case

If no viable conversion can be determined, this just "unwraps" the smart value to return its underlying XDR value.

Parameters:
Name Type Description
scv xdr.ScVal

the input smart contract value
See:

View Source js-stellar-base/src/scval.js, line 314

any

# specFromWasm(wasm)

Obtains the contract spec XDR from a contract's wasm binary.

Parameters:
Name Type Description
wasm

The contract's wasm binary as a Buffer.

View Source lib/contract/wasm_spec_parser.js, line 14

If the contract spec cannot be obtained from the provided wasm binary.

Error

The XDR buffer representing the contract spec.

# verifyChallengeTxSigners(challengeTx, serverAccountID, networkPassphrase, signers, homeDomains, webAuthDomain)

Verifies that for a SEP 10 challenge transaction all signatures on the transaction are accounted for. A transaction is verified if it is signed by the server account, and all other signatures match a signer that has been provided as an argument (as the accountIDs list). Additional signers can be provided that do not have a signature, but all signatures must be matched to a signer (accountIDs) for verification to succeed. If verification succeeds, a list of signers that were found is returned, not including the server account ID.

Signers that are not prefixed as an address/account ID strkey (G...) will be ignored.

Errors will be raised if:

  • The transaction is invalid according to module:WebAuth~readChallengeTx.
  • No client signatures are found on the transaction.
  • One or more signatures in the transaction are not identifiable as the server account or one of the signers provided in the arguments.
Parameters:
Name Type Description
challengeTx

SEP0010 challenge transaction in base64.
serverAccountID

The server's stellar account (public key).
networkPassphrase

The network passphrase, e.g.: 'Test SDF Network ; September 2015' (see Networks).
signers

The signers public keys. This list should contain the public keys for all signers that have signed the transaction.
homeDomains

The home domain(s) that should be included in the first Manage Data operation's string key. Required in readChallengeTx().
webAuthDomain

The home domain that is expected to be included as the value of the Manage Data operation with the 'web_auth_domain' key, if present. Used in readChallengeTx().
See:

View Source lib/webauth/challenge_transaction.js, line 319

The list of signers public keys that have signed the transaction, excluding the server account ID.

Example
import { Networks, TransactionBuilder, WebAuth }  from 'stellar-sdk';

const serverKP = Keypair.random();
const clientKP1 = Keypair.random();
const clientKP2 = Keypair.random();

// Challenge, possibly built in the server side
const challenge = WebAuth.buildChallengeTx(
  serverKP,
  clientKP1.publicKey(),
  "SDF",
  300,
  Networks.TESTNET
);

// clock.tick(200);  // Simulates a 200 ms delay when communicating from server to client

// Transaction gathered from a challenge, possibly from the client side
const transaction = TransactionBuilder.fromXDR(challenge, Networks.TESTNET);
transaction.sign(clientKP1, clientKP2);
const signedChallenge = transaction
        .toEnvelope()
        .toXDR("base64")
        .toString();

// The result below should be equal to [clientKP1.publicKey(), clientKP2.publicKey()]
WebAuth.verifyChallengeTxSigners(
   signedChallenge,
   serverKP.publicKey(),
   Networks.TESTNET,
   threshold,
   [clientKP1.publicKey(), clientKP2.publicKey()]
);

# verifyChallengeTxThreshold(challengeTx, serverAccountID, networkPassphrase, threshold, signerSummary, homeDomains, webAuthDomain)

Verifies that for a SEP-10 challenge transaction all signatures on the transaction are accounted for and that the signatures meet a threshold on an account. A transaction is verified if it is signed by the server account, and all other signatures match a signer that has been provided as an argument, and those signatures meet a threshold on the account.

Signers that are not prefixed as an address/account ID strkey (G...) will be ignored.

Errors will be raised if:

  • The transaction is invalid according to module:WebAuth~readChallengeTx.
  • No client signatures are found on the transaction.
  • One or more signatures in the transaction are not identifiable as the server account or one of the signers provided in the arguments.
  • The signatures are all valid but do not meet the threshold.
Parameters:
Name Type Description
challengeTx

SEP0010 challenge transaction in base64.
serverAccountID

The server's stellar account (public key).
networkPassphrase

The network passphrase, e.g.: 'Test SDF Network ; September 2015' (see Networks).
threshold

The required signatures threshold for verifying this transaction.
signerSummary

a map of all authorized signers to their weights. It's used to validate if the transaction signatures have met the given threshold.
homeDomains

The home domain(s) that should be included in the first Manage Data operation's string key. Required in verifyChallengeTxSigners() => readChallengeTx().
webAuthDomain

The home domain that is expected to be included as the value of the Manage Data operation with the 'web_auth_domain' key, if present. Used in verifyChallengeTxSigners() => readChallengeTx().
See:

View Source lib/webauth/challenge_transaction.js, line 503

Will throw if the collective weight of the transaction's signers does not meet the necessary threshold to verify this transaction.

module:WebAuth.InvalidChallengeError

The list of signers public keys that have signed the transaction, excluding the server account ID, given that the threshold was met.

Example
import { Networks, TransactionBuilder, WebAuth } from 'stellar-sdk';

const serverKP = Keypair.random();
const clientKP1 = Keypair.random();
const clientKP2 = Keypair.random();

// Challenge, possibly built in the server side
const challenge = WebAuth.buildChallengeTx(
  serverKP,
  clientKP1.publicKey(),
  "SDF",
  300,
  Networks.TESTNET
);

// clock.tick(200);  // Simulates a 200 ms delay when communicating from server to client

// Transaction gathered from a challenge, possibly from the client side
const transaction = TransactionBuilder.fromXDR(challenge, Networks.TESTNET);
transaction.sign(clientKP1, clientKP2);
const signedChallenge = transaction
        .toEnvelope()
        .toXDR("base64")
        .toString();

// Defining the threshold and signerSummary
const threshold = 3;
const signerSummary = [
   {
     key: this.clientKP1.publicKey(),
     weight: 1,
   },
   {
     key: this.clientKP2.publicKey(),
     weight: 2,
   },
 ];

// The result below should be equal to [clientKP1.publicKey(), clientKP2.publicKey()]
WebAuth.verifyChallengeTxThreshold(
   signedChallenge,
   serverKP.publicKey(),
   Networks.TESTNET,
   threshold,
   signerSummary
);

# walkInvocationTree(root, callback) → {void}

Executes a callback function on each node in the tree until stopped.

Nodes are walked in a depth-first order. Returning false from the callback stops further depth exploration at that node, but it does not stop the walk in a "global" view.

Parameters:
Name Type Description
root xdr.SorobanAuthorizedInvocation

the tree to explore
callback InvocationWalker

the callback to execute for each node

View Source js-stellar-base/src/invocation.js, line 199

void

Type Definitions

object

# ChallengeTxDetails

A parsed and validated challenge transaction, and some of its constituent details.

Properties:
Name Type Attributes Description
tx Transaction

The challenge transaction.
clientAccountId string

The Stellar public key (master key) used to sign the Manage Data operation.
matchedHomeDomain string

The matched home domain.
memo string <optional>

The memo attached to the transaction, which will be null if not present

View Source lib/webauth/utils.d.ts, line 48

# CreateInvocation

Properties:
Name Type Attributes Description
type 'wasm' | 'sac'

a type indicating if this creation was a custom contract or a wrapping of an existing Stellar asset
token string <optional>

when type=='sac', the canonical Asset that is being wrapped by this Stellar Asset Contract
wasm object <optional>

when type=='wasm', add'l creation parameters
hash string

hex hash of WASM bytecode backing this contract
address string

contract address of this deployment
salt string

hex salt that the user consumed when creating this contract (encoded in the resulting address)
constructorArgs Array.<any> <optional>

a list of natively-represented values (see scValToNative) that are passed to the constructor when creating this contract

View Source js-stellar-base/src/invocation.js, line 5

# ExecuteInvocation

Properties:
Name Type Description
source string

the strkey of the contract (C...) being invoked
function string

the name of the function being invoked
args Array.<any>

the natively-represented parameters to the function invocation (see scValToNative for rules on how they're represented a JS types)

View Source js-stellar-base/src/invocation.js, line 23

# InvocationTree

Properties:
Name Type Description
type 'execute' | 'create'

the type of invocation occurring, either contract creation or host function execution
args CreateInvocation | ExecuteInvocation

the parameters to the invocation, depending on the type
invocations Array.<InvocationTree>

any sub-invocations that (may) occur as a result of this invocation (i.e. a tree of call stacks)

View Source js-stellar-base/src/invocation.js, line 33

# InvocationWalker(node, depth, parentopt) → {boolean|null|void}

Parameters:
Name Type Attributes Description
node xdr.SorobanAuthorizedInvocation

the currently explored node
depth number

the depth of the tree this node is occurring at (the root starts at a depth of 1)
parent xdr.SorobanAuthorizedInvocation <optional>

this nodes parent node, if any (i.e. this doesn't exist at the root)

View Source js-stellar-base/src/invocation.js, line 175

returning exactly false is a hint to stop exploring, other values are ignored

boolean | null | void

# SignAuthEntry(authEntry, opts, authEntry, optsopt)

A function to request a wallet to sign an authorization entry preimage.

Similar to signing a transaction, this function takes an authorization entry preimage provided by the requester and applies a signature to it. It returns a signed hash of the same authorization entry and the signer address back to the requester.

Parameters:
Name Type Attributes Description
authEntry

The authorization entry preimage to be signed.
opts

Options for signing the authorization entry.
networkPassphrase

The network's passphrase on which the authorization entry is intended to be signed.
address

The public key of the account that should be used to sign.
authEntry string
opts object <optional>

View Source lib/contract/types.d.ts, line 84

A promise resolving to an object with the signed authorization entry and optional signer address and error.

# SignTransaction(xdr, opts, xdr, optsopt)

A function to request a wallet to sign a built transaction

This function takes an XDR provided by the requester and applies a signature to it. It returns a base64-encoded string XDR-encoded Transaction Envelope with Decorated Signatures and the signer address back to the requester.

Parameters:
Name Type Attributes Description
xdr

The XDR string representing the transaction to be signed.
opts

Options for signing the transaction.
networkPassphrase

The network's passphrase on which the transaction is intended to be signed.
address

The public key of the account that should be used to sign.
submit

If set to true, submits the transaction immediately after signing.
submitUrl

The URL of the network to which the transaction should be submitted, if applicable.
xdr string
opts object <optional>

View Source lib/contract/types.d.ts, line 65

A promise resolving to an object with the signed transaction XDR and optional signer address and error.

# async SigningCallback(preimage)

Parameters:
Name Type Description
preimage xdr.HashIdPreimage

the entire authorization envelope whose hash you should sign, so that you can inspect the entire structure if necessary (rather than blindly signing a hash)

View Source js-stellar-base/src/auth.js, line 11

# SleepStrategy(iter)

A function that returns the number of milliseconds to sleep on a given iteration.

Parameters:
Name Type Description
iter number

View Source lib/rpc/server.d.ts, line 13