add: ability to create Vector Accounts with BIP39

The ability to create Vector Accounts (which is essentially a BIP39-derived Nostr Keypair) has finally arrived.

Author: JSKitty

src-tauri/Cargo.lock

@@ -19,6 +19,7 @@ tauri-build = { version = "2.2.0", features = [] }
 
 [dependencies]
 nostr-sdk = { version = "0.41.0", features = ["nip04", "nip06", "nip44", "nip59", "nip96"] }
+bip39 = { version = "2.1.0", features = ["rand"] }
 tokio = { version = "1.44.1", features = ["sync"] }
 futures-util = "0.3.31"
 tauri = { version = "2.5.0", features = ["protocol-asset", "image-png"] }

src-tauri/Cargo.toml

@@ -13,6 +13,7 @@ pub struct VectorDB {
     pub db_version: Option<u64>,
     pub theme: Option<String>,
     pub pkey: Option<String>,
+    pub seed: Option<String>,
 }
 
 const DB_PATH: &str = "vector.json";
@@ -236,10 +237,16 @@ pub fn get_db<R: Runtime>(handle: AppHandle<R>) -> Result<VectorDB, String> {
         _ => None,
     };
 
+    let seed = match store.get("seed") {
+        Some(value) if value.is_string() => Some(value.as_str().unwrap().to_string()),
+        _ => None,
+    };
+    
     Ok(VectorDB {
         db_version,
         theme,
         pkey,
+        seed,
     })
 }
 
@@ -291,6 +298,31 @@ pub fn get_pkey<R: Runtime>(handle: AppHandle<R>) -> Result<Option<String>, Stri
     }
 }
 
+#[command]
+pub async fn set_seed<R: Runtime>(handle: AppHandle<R>, seed: String) -> Result<(), String> {
+    let store = get_store(&handle);
+    // Encrypt the seed phrase before storing it
+    let encrypted_seed = crate::internal_encrypt(seed, None).await;
+    store.set("seed".to_string(), serde_json::json!(encrypted_seed));
+    Ok(())
+}
+
+#[command]
+pub async fn get_seed<R: Runtime>(handle: AppHandle<R>) -> Result<Option<String>, String> {
+    let store = get_store(&handle);
+    match store.get("seed") {
+        Some(value) if value.is_string() => {
+            let encrypted_seed = value.as_str().unwrap().to_string();
+            // Decrypt the seed phrase
+            match crate::internal_decrypt(encrypted_seed, None).await {
+                Ok(decrypted) => Ok(Some(decrypted)),
+                Err(_) => Err("Failed to decrypt seed phrase".to_string()),
+            }
+        },
+        _ => Ok(None),
+    }
+}
+
 #[command]
 pub fn remove_setting<R: Runtime>(handle: AppHandle<R>, key: String) -> Result<bool, String> {
     let store = get_store(&handle);

src-tauri/src/db.rs

@@ -57,6 +57,8 @@ static PUBLIC_NIP96_CONFIG: OnceCell<ServerConfig> = OnceCell::new();
 static TRUSTED_PRIVATE_NIP96: &str = "https://medea-small.jskitty.cat";
 static PRIVATE_NIP96_CONFIG: OnceCell<ServerConfig> = OnceCell::new();
 
+
+static MNEMONIC_SEED: OnceCell<String> = OnceCell::new();
 static ENCRYPTION_KEY: OnceCell<[u8; 32]> = OnceCell::new();
 static NOSTR_CLIENT: OnceCell<Client> = OnceCell::new();
 static TAURI_APP: OnceCell<AppHandle> = OnceCell::new();
@@ -2362,7 +2364,19 @@ pub async fn internal_decrypt(ciphertext: String, password: Option<String>) -> R
 // Tauri command that uses the internal function
 #[tauri::command]
 async fn encrypt(input: String, password: Option<String>) -> String {
-    internal_encrypt(input, password).await
+    let res = internal_encrypt(input, password).await;
+
+    // If we have one; save the in-memory seedphrase in an encrypted at-rest format
+    match MNEMONIC_SEED.get() {
+        Some(seed) => {
+            // Save the seed phrase to the database
+            let handle = TAURI_APP.get().unwrap();
+            let _ = db::set_seed(handle.clone(), seed.to_string()).await;
+        }
+        _ => ()
+    }
+
+    res
 }
 
 // Tauri command that uses the internal function
@@ -2628,6 +2642,40 @@ async fn logout<R: Runtime>(handle: AppHandle<R>) {
     handle.restart();
 }
 
+/// Creates a new Nostr keypair derived from a BIP39 Seed Phrase
+#[tauri::command]
+async fn create_account() -> Result<LoginKeyPair, String> {
+    // Generate a BIP39 Mnemonic Seed Phrase
+    let mnemonic = bip39::Mnemonic::generate(12).map_err(|e| e.to_string())?;
+    let mnemonic_string = mnemonic.to_string();
+
+    // Derive our nsec from our Mnemonic
+    let keys = Keys::from_mnemonic(mnemonic_string.clone(), None).map_err(|e| e.to_string())?;
+
+    // Initialise the Nostr client
+    let client = Client::builder()
+        .signer(keys.clone())
+        .opts(Options::new().gossip(false))
+        .build();
+    NOSTR_CLIENT.set(client).unwrap();
+
+    // Add our profile (at least, the npub of it) to our state
+    let npub = keys.public_key.to_bech32().map_err(|e| e.to_string())?;
+    let mut profile = Profile::new();
+    profile.id = npub.clone();
+    profile.mine = true;
+    STATE.lock().await.profiles.push(profile);
+
+    // Save the seed in memory, ready for post-pin-setup encryption
+    let _ = MNEMONIC_SEED.set(mnemonic_string);
+
+    // Return the keypair in the same format as the login function
+    Ok(LoginKeyPair {
+        public: npub,
+        private: keys.secret_key().to_bech32().map_err(|e| e.to_string())?,
+    })
+}
+
 /// Marks a specific message as read
 #[tauri::command]
 async fn mark_as_read(npub: String) -> bool {
@@ -2760,6 +2808,8 @@ pub fn run() {
             db::set_theme,
             db::get_pkey,
             db::set_pkey,
+            db::get_seed,
+            db::set_seed,
             db::remove_setting,
             fetch_messages,
             message,
@@ -2784,7 +2834,8 @@ pub fn run() {
             fetch_msg_metadata,
             mark_as_read,
             update_unread_counter,
-            logout
+            logout,
+            create_account
         ])
         .run(tauri::generate_context!())
         .expect("error while running tauri application");

src-tauri/src/lib.rs

@@ -125,7 +125,14 @@ <h2 style="color: #ff2ea9;">Dangerzone</h2>
       <div id="login-form" class="fadein-anim">
         <img src="./icons/vector-logo.svg" style="width: 260px; margin-top: 50px;">
         <h4 class="startup-subtext-gradient" style="margin-top: 5px;">Private & Encrypted Messenger</h4>
-        <div id="login-import" style="position: absolute; bottom: 0px; width: 100%;">
+        <div id="login-start">
+          <button id="start-account-creation-btn" style="background-color: #59fcb3; color: black; width: 225px;">Create Account</button>
+          <br>
+          <button id="start-login-btn" style="background-color: transparent; border-color: #59fcb3; margin-top: 10px; width: 225px;">Login</button>
+          <br>
+          <img src="./icons/by-formlesslabs.svg" style="width: 275px;">
+        </div>
+        <div id="login-import" style="position: absolute; bottom: 0px; width: 100%; display: none;">
           <img src="./icons/by-formlesslabs.svg" style="width: 275px;">
           <div class="row input-box" style="height: 52px;">
             <input type="password" style="width: 100%; margin-left: 10px; margin-top: 5px; margin-bottom: 5px; background-color: black;" id="login-input" placeholder="Enter nsec or Seed Phrase..." />

src/index.html

@@ -12,6 +12,9 @@ getVersion().then(v => {
 
 const domTheme = document.getElementById('theme');
 
+const domLoginStart = document.getElementById('login-start');
+const domLoginAccountCreationBtn = document.getElementById('start-account-creation-btn');
+const domLoginAccountBtn = document.getElementById('start-login-btn');
 const domLogin = document.getElementById('login-form');
 const domLoginImport = document.getElementById('login-import');
 const domLoginInput = document.getElementById('login-input');
@@ -1112,6 +1115,7 @@ function renderCurrentProfile(cProfile) {
  * @param {boolean} fUnlock - Whether we're unlocking an existing key, or encrypting the given one
  */
 function openEncryptionFlow(pkey, fUnlock = false) {
+    domLoginStart.style.display = 'none';
     domLoginImport.style.display = 'none';
     domLoginEncrypt.style.display = '';
 
@@ -2025,6 +2029,21 @@ window.addEventListener("DOMContentLoaded", async () => {
     // Hook up our static buttons
     domSettingsBtn.onclick = openSettings;
     domChatlistBtn.onclick = openChatlist;
+    domLoginAccountCreationBtn.onclick = async () => {
+        try {
+            const { public, private } = await invoke("create_account");
+            strPubkey = public;
+            // Open the Encryption Flow
+            openEncryptionFlow(private);
+        } catch (e) {
+            // Display the backend error
+            popupConfirm(e, '', true);
+        }
+    };
+    domLoginAccountBtn.onclick = () => {
+        domLoginImport.style.display = '';
+        domLoginStart.style.display = 'none';
+    };
     domLoginBtn.onclick = async () => {
         // Import and derive our keys
         try {