From 325adae00923ca01025f7edf11fd366643bb6d59 Mon Sep 17 00:00:00 2001 From: cmd Date: Fri, 3 Feb 2023 15:50:58 -0600 Subject: [PATCH] Add method for deriving HMAC keys from the private key. I ran into an issue where I want to derive child-keys from the parent private key, but there is currently no way to do this with the current spec. I propose adding a `window.nostr.getDerivedKey(key: string): string` method to the spec, which is a simple HMAC method using the private key and a user supplied key. HMAC has wide-spread support in the WebCrypto spec, and is easy to implement. https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto Here is some reference code for performing a simple HMAC operation using WebCrypto API: ```ts async function hmac ( // Perform an HMAC signing operation. key : Uint8Array, data : Uint8Array, fmt : string = 'SHA-256' ) : Promise { const cryptoKey = await importKey(key, fmt) return crypto.subtle .sign('HMAC', cryptoKey, data) .then((buffer) => new Uint8Array(buffer)) } async function importKey ( // Create a CryptoKey from the // supplied key and format string. key : Uint8Array, fmt : string = 'SHA-256' ) : Promise { const config = { name: 'HMAC', hash: fmt } return crypto.subtle.importKey( 'raw', key, config, false, ['sign', 'verify'] ) } ``` --- 07.md | 1 + 1 file changed, 1 insertion(+) diff --git a/07.md b/07.md index 8ebb4d99..559d4826 100644 --- a/07.md +++ b/07.md @@ -12,6 +12,7 @@ That object must define the following methods: ``` async window.nostr.getPublicKey(): string // returns a public key as hex +async window.nostr.getDerivedKey(key: string): string // returns a key derived from hmac(key, prvkey). async window.nostr.signEvent(event: Event): Event // takes an event object, adds `id`, `pubkey` and `sig` and returns it ```