solana-labs / obsolete-dontuse-example-webwallet Goto Github PK
View Code? Open in Web Editor NEWExample Solana Web-based Wallet
Home Page: https://solana-example-webwallet.herokuapp.com/
License: MIT License
Example Solana Web-based Wallet
Home Page: https://solana-example-webwallet.herokuapp.com/
License: MIT License
Currently, transactions are signed with an insecure and temporary, in-browser keypair.
Sign transactions with a keypair in a secure enclave, such as a Ledger Nano S.
Submitting a transaction signature for confirmation causes a page refresh
No page refresh, submit an async request to confirm a valid transaction.
Wallet keys are ephemeral. While this is a burner wallet, we should store the keys. During account creation the browser could prompt the user to store the generated seed in the OS/Browser keychain as a regular password.
The confirm transaction section is not working correctly. After pasting a valid transaction signature, the input validation shows an error.
login to message
add funds
airdrop to wallet
send is still greyed out
Getting this error, when going through installation steps
00:19:17 โ pk: ((HEAD detached at v1.0.0)) example-webwallet $ npm install
npm ERR! code MODULE_NOT_FOUND
npm ERR! Cannot find module 'node-gyp/bin/node-gyp'
npm ERR! A complete log of this run can be found in:
npm ERR! /Users/pk/.npm/_logs/2019-07-12T14_19_32_966Z-debug.log
I'd like it if a small group of people who understand the needs can QA current work and assess remaining gaps and bugs CC @jstarry Besides you, who else would be good to pull in for QA, stakeholder-wise? Happy to help here if there isn't anyone better..
The new alert design displays in all uppercase but signatures are case-sensitive.
Change CSS to not uppercase the error message
Forwarding an issue created by @aeyakovenko here: https://github.com/solana-labs/ledger-app-solana/issues/3
Hardware wallets require parsing and displaying messages inside the TPM to confirm the signing request.
We could use wallet.solana.com as a trusted display as well. Basically decode and show the hash and the transaction details in our hosted wallet, confirm the hash on the ledger. Users should confirm the transaction hash from another machine, like a mobile device.
If solana.com is compromised users would not be able to sign messages, but funds should remain secure as long as the local machine is not compromised either.
Another idea:
Maybe this is overkill, but the cli transactions could require a co-signature from the web wallet. The web wallet key is not referenced in any instructions, but the signature would force the user to look at the web wallet with their phone preferably.
dApps should be able embed the web wallet in an iframe to request tokens. The web wallet should allow this and then communicate to the dApp that it should be closed (when transaction succeeds)
Designs in Figma:
Desktop: https://www.figma.com/file/VV63sXC9UbGAUczGOEOJVapn/Solana-Network-Explorer-MVP?node-id=2150%3A0
Mobile: https://www.figma.com/file/VV63sXC9UbGAUczGOEOJVapn/Solana-Network-Explorer-MVP?node-id=2281%3A3113 (we are working on a few more mobile screens for you)
Other items -->
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.