DFugere1
commented
2 years ago Hi,
Nice implementation of SEP-0010 server.
Testing the solution: I tested your implementation of SEP-0010 with the Rabet Wallet, the implementation always return the Rabet wallet with network as the Main Network.
When testing I could authenticate using the server implementation and I received my JWT auth bearer Token.
Testing the API Everything worked fine when using correctly.
When using incorrectly:
- The Connect Button, does nothing if already connected, not an issue, but not user friendly.
- The Send Button does noting if not connected, not an issue, but we could add a note saying to connect using the Rabet Wallet.
- The Sign and Request action both return message if used improperly.
Validating the JWT The JWT seem relevant and complete, it contain a header, a payload containing information for the Issuer, subject, issued time and expiration time and the signature.
Authentication Flow There is one step from the stellar-protocol I can't seem to validate, how do you confirm the signature is correct for the Client Account? (Step 15)
BlackBadPinguin
orsab
ElliotFriend
Link the bounty file
https://github.com/tyvdh/stellar-quest-bounties/blob/main/bounties/level-2/sep10-javascript-server.md
Mark your progress
Provide relevant details
REPO: https://github.com/orsab/stellar-bounty-l2-sep10 Demo on Repl.it: https://replit.com/@OrAlkin/stellar-bounty-l2-sep10