JS API#
The Aleo Oracle SDK for JavaScript is a Node.js package.
This SDK doesn't use default exports.
Internally, this API uses Fetch API. It may be possible to use it in any JS environment, given that you provide an implementation for the Fetch API.
Since the client allows configuring custom Notarization and Verification backends, it also allows providing
an override for Fetch options that are used for communicating with those backends - see OracleClient constructor.
Index#
- Installation
- Constants:
- Types:
- class
AttestationError - class
AttestationIntegrityError - class
DebugAttestationError - class
OracleClient: - type
AttestationRequest - type
AttestationResponse - type
ClientConfig - type
CustomBackendAllowedFetchOptions - type
CustomBackendConfig - type
DebugRequestResponse - type
EnclaveInfo - type
EncodingOptions - type
InfoOptions - type
NotarizationOptions - type
OracleData - type
PositionInfo - type
ProofPositionalInfo - type
SgxInfo
- class
Installation#
Install the SDK by running npm install @zkportal/aleo-oracle-sdk.
Constants#
DEFAULT_FETCH_OPTIONS#
Default Fetch API options that are applied to all requests towards the Notarization and Verification backends.
DEFAULT_NOTARIZATION_BACKENDS#
List of notarization backend configurations that is going to be used if no notarizer configuration is provided to the client.
Type: CustomBackendConfig[].
[
{
address: 'sgx.aleooracle.xyz',
port: 443,
https: true,
apiPrefix: '',
resolve: true,
init: DEFAULT_FETCH_OPTIONS,
},
]
DEFAULT_NOTARIZATION_HEADERS#
Default HTTP request headers that are added to all requests towards the Attestation Target.
{
'Accept': '*/*',
'User-Agent': 'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36',
'Upgrade-Insecure-Requests': '1',
'DNT': '1',
}
DEFAULT_NOTARIZATION_OPTIONS#
Type: NotarizationOptions
DEFAULT_VERIFICATION_BACKEND#
List of notarization backend configurations that is going to be used if no verifier configuration is provided to the client.
Type: CustomBackendConfig.
{
address: 'verifier.aleooracle.xyz',
port: 443,
https: true,
apiPrefix: '',
resolve: true,
init: DEFAULT_FETCH_OPTIONS,
}
Types#
class AttestationError#
Extends: Error
| Property | Type | Description |
|---|---|---|
errorDetails |
string | undefined |
Extra error details |
responseStatusCode |
number | undefined |
Attestation target's response status code, which will be present if the error has occurred during or after performing a request to the target |
class AttestationIntegrityError#
Extends: Error
class DebugAttestationError#
Extends: Error
| Property | Type | Description |
|---|---|---|
errorDetails |
string | undefined |
Extra error details |
responseStatusCode |
number | undefined |
Attestation target's response status code, which will be present if the error has occurred during or after performing a request to the target |
responseBody |
string |
Full response body received in the attestation target's response. |
extractedData |
string |
Extracted data from responseBody using the provided selector. |
class OracleClient#
constructor#
| Argument | Description | Required | Default value |
|---|---|---|---|
config: ClientConfig |
Client configuration for setting up Notarization and Verification backends, logging, etc. | undefined |
notarize#
| Argument | Description | Required | Default value |
|---|---|---|---|
req: AttestationRequest |
Attestation request | ||
options: NotarizationOptions |
Options for client-side notarization behavior | DEFAULT_NOTARIZATION_OPTIONS |
| Return type | Description |
|---|---|
Promise<AttestationResponse[]> |
List of attestation results. Returned only if all enclaves produced successful attestations. |
| Thrown type | Reason |
|---|---|
AttestationError |
One of the Notarization Backends failed to perform notarization or attestation. |
Error |
Failed to parse one or more responses. |
| Fetch API errors | Fetch failed. |
testSelector#
| Argument | Description | Required | Default value |
|---|---|---|---|
req: AttestationRequest |
Attestation request | ||
timeout: number |
Request timeout | DEFAULT_NOTARIZATION_OPTIONS |
| Return type | Description |
|---|---|
Promise<DebugRequestResponse[]> |
List of results of notarization and Attestation Data extraction. Returned only if all enclaves produced successful notarizations. |
| Thrown type | Reason |
|---|---|
DebugAttestationError |
One of the Notarization Backends failed to perform a selector test. |
Error |
Failed to parse one or more responses. |
| Fetch API errors | Fetch failed. |
enclavesInfo#
| Argument | Description | Required | Default value |
|---|---|---|---|
options: InfoOptions |
Get enclaves information request options | undefined |
| Return type | Description |
|---|---|
Promise<EnclaveInfo[]> |
List of results containing enclave information |
| Thrown type | Reason |
|---|---|
AttestationError |
Failed to fetch enclave information from one or more Notarization Backends. |
Error |
Failed to parse one or more responses. |
| Fetch API errors | Fetch failed. |
getAttestedRandom#
| Argument | Description | Required | Default value |
|---|---|---|---|
max: bigint |
Upper bound for the random number, exclusive - [0, max) |
||
options: NotarizationOptions |
Options for client-side notarization behavior | DEFAULT_NOTARIZATION_OPTIONS |
| Return type | Description |
|---|---|
Promise<AttestationResponse[]> |
List of attestation results. Returned only if all enclaves produced successful attestations. |
| Thrown type | Reason |
|---|---|
AttestationError |
One of the Notarization Backends failed to perform notarization or attestation. |
Error |
Failed to parse one or more responses. |
| Fetch API errors | Fetch failed. |
type AttestationRequest#
A request for notarization and notarization of an HTTPS resource, and extraction of Attestation Data from the response using a data selector. Also describes the expected response format, and the way to encode the extracted Attestation Data for an Aleo program.
| Property | Type | Description |
|---|---|---|
url |
string |
URL of a resource to attest - Attestation Target. Should be specified without a scheme - assumes HTTPS. |
requestMethod |
'GET' | 'POST' |
HTTP method to be used for a request to the Attestation Target. |
selector |
string | undefined |
Element selector for extracting data from the attestation resource - XPath for HTML, JSON key path for JSON. See the Guide about selectors. |
responseFormat |
'html' | 'json' |
Expected Attestation Target response format. |
htmlResultType |
'element' | 'value' |
The type of extraction for the HTML response after applying the selector. See the Guide about the HTML extraction result types. Ignored if responseFormat is not html. |
requestBody |
string | undefined |
A body for a POST request to the Attestation Target. |
requestContentType |
string | undefined |
Content-Type request header for the Attestation Target request. |
requestHeaders |
{ [header: string]: string } |
HTTP headers to add to the request to the Attestation Target. See the Guide about request headers. Will merge DEFAULT_NOTARIZATION_HEADERS with this dictionary. |
encodingOptions |
EncodingOptions |
Information about how to encode Attestation Data to an Aleo program-compatible format. See the Guide about Aleo encoding and encoding documentation. |
type AttestationResponse#
Notarization backend's response for an attestation request.
| Property | Type | Description |
|---|---|---|
enclaveUrl |
string |
Url of the Notarization Backend the report came from. |
attestationReport |
string |
Attestation Report in Base64 encoding, created by the TEE using the extracted data. |
attestationType |
'sgx' |
Which TEE technology produces the attestation report within this response. |
attestationData |
string |
Data extracted from the Attestation Target's response using the provided selector. The data is always a string, as seen in the raw HTTP response. See the Guide about the Attestation Data. |
responseBody |
string |
Full response body received in the Attestation Target's response. |
responseStatusCode |
number |
Status code of the Attestation Target's response. |
nonce |
string | undefined |
|
timestamp |
number |
Unix timestamp of the attestation date time as seen by the server. |
oracleData |
OracleData |
Information formatted for a direct use in an Aleo program, like Aleo-formated attestation report. |
attestationRequest |
AttestationRequest |
Original attestation request. |
type ClientConfig#
Oracle client configuration object.
| Property | Type | Description |
|---|---|---|
notarizer |
CustomBackendConfig | undefined |
Can be set to use self-hosted Oracle Notarization service for testing. |
verifier |
CustomBackendConfig | undefined |
Can be set to use a self-hosted Oracle Notarization Verification service. |
quiet |
boolean | undefined |
Disables Oracle Client logging. |
logger |
((...args: any[]) => void) | undefined |
Custom logging function to use if not quiet. Default value is console.log. |
type CustomBackendAllowedFetchOptions#
type CustomBackendConfig#
Configuration for a backend that an Oracle client will be using for notarization/verification.
| Property | Type | Description |
|---|---|---|
address |
string |
Domain name or IP address of the backend |
port |
number |
The port that the backend listens on for the API requests |
https |
boolean |
Whether the client should use HTTPS to connect to the backend |
apiPrefix |
string | undefined |
Optional API prefix to prepend to the API endpoints |
resolve |
boolean |
Whether the client should resolve the backend (when it's a domain name). If the domain name is resolved to more than one IP, then the requests will be sent to all of the resolved servers, and the first response will be used. Must be used with the default backends. |
init |
CustomBackendAllowedFetchOptions | undefined |
Custom Fetch API options for requests towards this backend. If not provided, will use DEFAULT_FETCH_OPTIONS. |
type DebugRequestResponse#
Notarization response for debugging selectors.
| Property | Type | Description |
|---|---|---|
responseBody |
string |
Full response body received in the Attestation Target's response. |
responseStatusCode |
number |
Status code of the Attestation Target's response. |
extractedData |
string |
Extracted data from responseBody using attestation request selector. |
type EnclaveInfo#
Information about the TEE the Notarization Backend is running in.
| Property | Type | Description |
|---|---|---|
enclaveUrl |
string |
URL of the Notarization Backend the report came from. |
reportType |
string |
Which TEE technology produces the attestation report within this response. |
info |
SgxInfo |
Information about the TEE. |
signerPubKey |
string |
Public key of the report signing key that was generated in the enclave. |
type EncodingOptions#
Describes the way to interpret extracted Attestation Data for encoding to an Aleo program-compatible format.
See the Guide about Aleo encoding.
| Property | Type | Description |
|---|---|---|
value |
'string' | 'int' | 'float' |
Attestation Data type to use to interpret the Attestation Data to encode it to the Aleo format. |
precision |
number | undefined |
If the value is 'float', it sets the precision of the Attestation Data. Must be equal or more than the number of digits in the fractional part. |
type InfoOptions#
Request options for the enclave information request
| Property | Type | Description |
|---|---|---|
timeout |
number | undefined |
Request timeout in ms. If not set, the default timeout for the Fetch API implementation will be used. |
type NotarizationOptions#
Client options for notarization. See the Guide to notarization and attestation.
| Property | Type | Description |
|---|---|---|
dataShouldMatch |
boolean |
If multiple attesters are used, the client will check that the attestation data is exactly the same in all attestation responses. |
timeout |
number | undefined |
Attestation request timeout in ms. If not set, the default timeout for the Fetch API implementation will be used. |
maxTimeDeviation |
number | undefined |
If multiple attesters are used this option controls the maximum deviation in milliseconds between attestation timestamps. |
type OracleData#
Attestation-related information formatted for direct use in an Aleo program. See the Guide about Aleo encoding and encoding documentation for details on how these values are created.
| Property | Type | Description |
|---|---|---|
signature |
string |
Schnorr signature of a verified Attestation Report as Aleo's signature. |
userData |
string |
Aleo-encoded data that was used to create hash included in the Attestation Report. See the Guide about Aleo encoding. |
report |
string |
Aleo-encoded Attestation Report. |
address |
string |
Public key signature was created against. |
encodedPositions |
ProofPositionalInfo |
Object containing information about positions of data included in the Attestation Response hash. |
encodedRequest |
string |
Aleo-encoded request. See the Guide to understanding encoded request and request hash. |
requestHash |
string |
Poseidon8 hash of the encodedRequest as Aleo's u128. |
type PositionInfo#
Describes position and length of a property encoded to an Aleo program format.
| Property | Type | Description |
|---|---|---|
Pos |
number |
Index of the u128 where the encoded property starts. |
Len |
number |
Number of u128s the encoded property takes. |
type ProofPositionalInfo#
Information about positions of different properties in the Aleo-encoded Attestation Response. Counting is done on Aleo u128 properties. Counting starts from 0.
Positions don't take nested structs into account, and can overflow the limit on the number properties that types are allowed to have in Aleo.
See the encoding documentation.
| Property | Type | Description |
|---|---|---|
data |
PositionInfo |
Position and length of AttestationResponse.oracleData.userData. |
timestamp |
PositionInfo |
Position and length of AttestationResponse.timestamp. |
statusCode |
PositionInfo |
Position and length of AttestationResponse.responseStatusCode |
method |
PositionInfo |
Position and length of AttestationResponse.attestationRequest.requestMethod |
responseFormat |
PositionInfo |
Position and length of AttestationResponse.attestationRequest.responseFormat |
url |
PositionInfo |
Position and length of AttestationResponse.attestationRequest.url. |
selector |
PositionInfo |
Position and length of AttestationResponse.attestationRequest.selector. |
encodingOptions |
PositionInfo |
Position and length of AttestationResponse.attestationRequest.encodingOptions. |
requestHeaders |
PositionInfo |
Position and length of AttestationResponse.attestationRequest.requestHeaders. |
optionalFields |
PositionInfo |
Position and length of htmlResultType, requestBody, and requestContentType in AttestationResponse.attestationRequest. |
type SgxInfo#
Information about Intel SGX enclave a Notarization Backend is running in. Includes some extra properties that are encoded for use in Aleo programs for convenience.
| Property | Type | Description |
|---|---|---|
securityVersion |
number |
Security version of the enclave. For SGX enclaves, this is the ISVSVN value. |
debug |
boolean |
If true, the enclave is running in debug mode. |
uniqueId |
string |
The unique ID for the enclave. For SGX enclaves, this is the MRENCLAVE value. Encoded to Base64. |
aleoUniqueId |
string[] |
Same as uniqueId but encoded for use in Aleo as 2 u128s. |
signerId |
string |
The signer ID for the enclave. For SGX enclaves, this is the MRSIGNER value. Encoded to Base64. |
aleoSignerId |
string[] |
Same as signerId but encoded for use in Aleo as 2 u128s. |
productId |
string |
The Product ID for the enclave - ISVPRODID value. Encoded to Base64. |
aleoProductId |
string |
Same as ProductID but encoded for use in Aleo as a u128. |
tcbStatus |
number |
The status of the enclave's TCB level. |