You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The new functionality requires changes to any SDK implementing challenge verification.
Details and Reference Implementations
The Stellar Go SDK is the first SDK we've implemented this new functionality and it can be used as a reference. It has implemented the following changes and similar changes may be required in this SDK:
Deprecated the existing verification function (VerifyChallengeTx).
Added new functions to:
Read the client account ID out of a challenge transaction without verifying client signatures, so that servers can lookup the signers of the account before verifying. (ReadChallengeTx)
Verify signatures on a challenge transaction meet a threshold. (VerifyChallengeTxThreshold)
Verify signatures on a challenge transaction match signers. (VerifyChallengeTxSigners)
Increased the timeout on the challenge transaction from 5 minutes to 15 minutes.
Summary
A change has been released in SEP-10 Web Authentication v1.3.0 that adds support for:
SEP-10 v1.3.0 Change: stellar/stellar-protocol@ea0d7ed
The new functionality requires changes to any SDK implementing challenge verification.
Details and Reference Implementations
The Stellar Go SDK is the first SDK we've implemented this new functionality and it can be used as a reference. It has implemented the following changes and similar changes may be required in this SDK:
VerifyChallengeTx).ReadChallengeTx)VerifyChallengeTxThreshold)VerifyChallengeTxSigners)Go SDK Change: stellar/go@8ff0848
An example of a SEP-10 server using the v1.3.0 verification process is implemented here:
https://github.com/stellar/go/tree/master/exp/services/webauth
If anyone has any questions feel free to join us in
#dev-discussioninstellar.publicKeybase.The text was updated successfully, but these errors were encountered: