Logo

dev-resources.site

for different kinds of informations.

safe-signer: creating an ethers.Signer from the third party secret storages

Published at
4/25/2023
Categories
ethereum
web3
wallet
security
Author
foxgem
Main Article
https://dev.to/foxgem/safe-signer-creating-an-etherssigner-from-the-third-party-secret-storages-3e3k
Categories
4 categories in total
ethereum
open
web3
open
wallet
open
security
open
safe-signer: creating an ethers.Signer from the third party secret storages

If you need a wallet or singer in your backend server, this project is for you.

It aims to create an ethers.Signer from the third party secret storages. Currently, it supports:

  • Private key
    • This is only for testing purposes, not recommend in production environments.
  • Environment variables
  • AWS Secrets Manager
  • AWS Key Management Service (KMS)
  • Hashicorp Vault

NOTE:

Currently it supports ethers@^5 only.

How to use

Install

Node >= 16.

npm i @dteam/safe-signer

Import

Javascript:

const SafeSigner = require('@dteam/safe-signer');

Typescript:

import SafeSigner from '@dteam/safe-signer';

Examples

  1. fromPrivateKey will return a Wallet. 
const privateKeyWallet = await SafeSigner.fromPrivateKey('YOUR_PRIVATE_KEY');
  1. fromEnv will return a Wallet. 
const envWallet = await SafeSigner.fromEnv('ENV_VAR_FOR_PRIVATE_KEY');
  1. fromAwsSecretsManager will return a Wallet. 
const awsSecretsManagerWallet = await SafeSigner.fromAwsSecretsManager(
  {
    SecretId: 'FULL_ARN_FOR_SECRET',
    SecretKeyName: 'KEY_NAME_STORED_PRIVATE_KEY',
  },
  {
    credentials: {
      accessKeyId: 'YOUR_AWS_ACCESS_KEY_ID',
      secretAccessKey: 'YOUR_AWS_SECRET_ACCESS_KEY',
    },
    region: 'YOUR_REGION',
  }
);
  1. fromHashicorpVault will return a Wallet. 
const hashicorpVaultWallet = await SafeSigner.fromHashicorpVault(
  {
    // you can set to your own vault server
    // baseUrl: 'http://127.0.0.1:8200/v1',
    rootPath: 'secret',
    timeout: 6000,
    secretName: 'wallet-secret',
    secretKey: 'privateKey',
  },
  // login method can be any of the following:
  // {token: 'plaintext-token'}
  // {appRole: {roleId: 'roleId', secretId: 'secretId'}}
  // {cert: {certName: 'certName'}}
  // {k8s: {role: 'role', jwt: 'jwt'}}
  // {ldap: {username: 'user', password: 'password'}}
  // {userpass: {username: 'user', password: 'password'}}
  {token: 'vault-plaintext-token'},
  {secretName: 'wallet-secret', secretKey: 'privateKey'}
);
  1. fromAwsKms will return a Signer because you can't get the raw private key from AWS KMS. 
const awsKmsSigner = await SafeSigner.fromAwsKms('YOUR_AWS_KMS_KEY_ARN', {
  credentials: {
    accessKeyId: 'YOUR_AWS_ACCESS_KEY_ID',
    secretAccessKey: 'YOUR_AWS_SECRET_ACCESS_KEY',
  },
  region: 'YOUR_REGION',
});

For more details, you can check its github repo: https://github.com/DTeam-Top/safe-signer

Articles
12 articles in total
Favicon
Casual Talk on Farcaster Development
Favicon
A Farcaster Frame Starter For Slides
Favicon
safe-signer: creating an ethers.Signer from the third party secret storages
Favicon
Using Remix Analyzer For Solidity Syntax Analysis.
Favicon
Troubleshooting: "UNPREDICTABLE_GAS_LIMIT" thrown when calling a readonly contract method.
Favicon
CFOX: A shell for eth dapp developers
Favicon
A Map of circom
Favicon
Troubleshooting: replacement fee too low
Favicon
Quick IPFS
Favicon
Troubleshooting: compiled against a different Node version
Favicon
Quick notes on cryptography for js devs
Favicon
st2: a fork of "string-table" with more enhancements.

Featured ones:

Favicon
Open
abubakersiddique761
Favicon
Open
0x3d_site
Favicon
Open
0x2e_tech
Favicon
Open
0x4c-quest
Favicon
Open
gittech