@dyne/keypairoom
Advanced tools
Component to generate and regenerate a keypair, in a deterministic and private way. The cryptographic part consists of two Zenroom smart contracts, the first executed server-side to generate a seed (based on public data such as user name), the second generate client side, based on the output of the first smart contract and on private information, namely "The challenges".
{
"theBackend":{
"keypair":{
"private_key":"Aku7vkJ7K01gQehKELav3qaQfTeTMZKgK+5VhaR3Ui0=",
"public_key":"BBCQg21VcjsmfTmNsg+I+8m1Cm0neaYONTqRnXUjsJLPa8075IYH+a9w2wRO7rFM1cKmv19Igd7ntDZcUvLq3xI="
}
},
"theBackendPassword":"myVerySecretPassword",
"userData":{
"username":"JohnDoe",
"email":"john@doe.com",
"phone":"12345678"
}
}
{
"userChallenges": {
"whereMyParentsMet": "Paris",
"myFirstPet": "ScoobyDoo",
"myHomeTown": "Amsterdam",
"nameOfFirstTeacher": "null",
"surnameOfMotherBeforeWedding": "null"
},
"username": "JohnDoe",
"key_derivation": "qf3skXnPGFMrE28UJS7S8BdT8g=="
}
See here what the scripts will return:
Client side: generation of keypair and optional hashing of challenges
And here the Swagger for both scripts (search for the names of the APIs on the page)
The deployment is done via restroom-mw and can be installed using the script deployAPI.sh or the Dockerfile, info about Dockerfile deployment here.
To configure backend environment variables please put an .env file at the top of your project like this or rename .env.sample to .env:
#BACKEND CREDENTIALS
BACKEND_PRIVATE_KEY=Aku7vkJ7K01gQehKELav3qaQfTeTMZKgK+5VhaR3Ui0=
BACKEND_PUBLIC_KEY=BBCQg21VcjsmfTmNsg+I+8m1Cm0neaYONTqRnXUjsJLPa8075IYH+a9w2wRO7rFM1cKmv19Igd7ntDZcUvLq3xI=
BACKEND_PASSWORD=myVerySecretPassword
#UNCOMMENT HERE IF YOU WANT TO OVERRIDE DEFAULT WITH A DIFFERENT CONTRACT
#SERVER_SIDE_CONTRACT=zencode/Keypair-Creation-Server-Side.zen
#CLIENT_SIDE_CONTRACT=zencode/Keypair-Creation-Client-Side.zen
#UNCOMMENT HERE IF YOU WANT TO OVERRIDE FOLDER OR FILENAME default: prop/questions-en_GB.json
#QUESTION_FOLDER=props/
#QUESTION_FILE_PREPEND=questions-
FAQs
Keypair library
We found that @dyne/keypairoom demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
GemStuffer abuses RubyGems as an exfiltration channel, packaging scraped UK council portal data into junk gems published from new accounts.
Company News
Socket was named to the Rising in Cyber 2026 list, recognizing 30 private cybersecurity startups selected by CISOs and security executives.
Research
Socket detected 84 compromised TanStack npm package artifacts modified with suspected CI credential-stealing malware.