@localfirst/auth
is a TypeScript library providing decentralized authentication and
authorization for team collaboration, using a secure chain of cryptographic signatures.
๐ค You're building a local-first app to enable distributed collaboration without a central server.
๐ You want to authenticate users and manage their permissions.
๐ซ You don't want to depend on a centralized authentication server or a key management service.
๐ You want to provide a easy and seamless experience to users creating and joining teams
๐ค You don't want to expose any of the underlying cryptographic complexity.
This library uses a conflict-free replicated state container based on a signature chain (provided by the CRDX library) to manage team membership, permissions, and authentication.
All changes to the team's membership and permissions are recorded on the signature chain as a sequence of signed and hash-chained actions.
Every team member keeps a complete replica of the signature chain and can validate other members' actions independently. All authorizations can be traced back to the root action, created by the team's founding member. The chain thereby builds a tamper-proof, distributed web of trust.
The team's signature chain also acts as a self-contained certificate authority or public key infrastructure (PKI) solution. At any point in time we calculate the team's current state from it, which includes each member's public keys, as well as their status and roles. This allows us to provide authenticated and encrypted peer-to-peer connections between members.
Invitations are handled using a Seitan token exchange. Once admitted to the team, each member generates their own cryptographic keys for signatures and encryption. They also generate device-level keys that are stored in each devices' secure storage, and which never leave the device.
When roles are changed, members leave, or devices are lost or replaced, keys are rotated and associated data re-encrypted.
๐ Learn more: Internals
This repo includes a demo app. This will eventually simulate a simple group chat app, although the chat part hasn't been built yet; just the group membership parts.
To run the app, clone the repo and run
yarn dev
The app will be available at http://localhost:3000 .
This demo is also run by Cypress tests, which exercise most of the libary's functionality. To run these:
yarn dev:cy
This library provides a Team
class, which wraps the signature chain and encapsulates the team's
members, devices, and roles. With this object, you can invite new members and manage their
permissions.
This object can also use the public keys embedded in the signature chain, along with the user's own secret keys, to provide encryption and signature verification within the team.
- Storage This library does not provide storage for user information (including keys) or the signature chain.
- Networking This library includes a protocol for synchronizing the team's signature chains, but you need to provide a working socket connecting us to a peer. (The demo uses @localfirst/relay, which is a tiny relay server and client that bridges two WebSocket connections to allow peers to talk directly to each other.)
yarn add @localfirst/auth
import { user, team } from '@localfirst/auth'
// ๐ฉ๐พ Alice
const alice = user.create('alice')
const alicesTeam = team.create({ name: 'Spies ะฏ Us', context: { user: alice } })
Usernames (alice
in the example) identify a person uniquely within the team. You could use
existing user IDs or names, or email addresses.
// ๐ฉ๐พ Alice
const { secretKey } = alicesTeam.invite('bob')
The invitation key is a single-use secret that only Alice and Bob will ever know. By default, it is
a 16-character string like aj7x d2jr 9c8f zrbs
, and to make it easier to retype if needed, it is
in base-30 format, which omits easily confused characters. It might be typed directly into your
application, or appended to a URL that Bob can click to accept:
Alice has invited you to team XYZ. To accept, click: http://xyz.org/accept/aj7x+d2jr+9c8f+zrbs
Alice will send the invitation to Bob via a side channel she already trusts (phone call, email, SMS, WhatsApp, Telegram, etc).
Bob uses the secret invitation key to generate proof that he was invited, without divulging the key.
// ๐จ๐ปโ๐ฆฒ Bob
import { accept } from '@localfirst/auth'
const proofOfInvitation = accept('aj7x d2jr 9c8f zrbs')
When Bob shows up to join the team, anyone can validate his proof of invitation to admit him to the team - it doesn't have to be an admin.
// ๐ณ๐ฝโโ๏ธ Charlie
team.admit(proofOfInvitation)
const success = team.has('bob') // TRUE
// ๐ฉ๐พ Alice
team.addRole('managers')
team.addMemberRole('bob', 'managers')
// ๐ฉ๐พ Alice
const isAdmin = team.isAdmin('bob') // TRUE
// ๐ฉ๐พ Alice
const message = 'the condor flies at midnight'
const encrypted = team.encrypt(message, 'managers')
// ๐จ๐ปโ๐ฆฒ Bob
const decrypted = team.decrypt(encrypted) // 'the condor flies at midnight'
๐ Learn more: API documentation.
๐ก This project is inspired by and borrows heavily from Keybase: The signature chain is inspired by their implementation for Keybase Teams, and the invitation mechanism is based on their Seitan token exchange specification, proposed as a more secure alternative to TOFU, or Trust On First Use.
๐ฎ This library was originally called taco-js
. TACO stands for Trust After
Confirmation Of invitation.