Local SIWE auth fix

0xFirekeeper · 0xFirekeeper · commit 6c6c40ffe562 · 2025-03-13T00:54:28.000+07:00
diff --git a/Thirdweb/Thirdweb.Wallets/InAppWallet/EcosystemWallet/EcosystemWallet.cs b/Thirdweb/Thirdweb.Wallets/InAppWallet/EcosystemWallet/EcosystemWallet.cs
@@ -238,6 +238,7 @@ private static async Task<string> GenerateWallet(IThirdwebHttpClient httpClient)
 
     private async Task<string> PostAuth(Server.VerifyResult result)
     {
+        this.HttpClient.RemoveHeader("Authorization");
         this.HttpClient.AddHeader("Authorization", $"Bearer embedded-wallet-token:{result.AuthToken}");
 
         string address;
@@ -770,7 +771,7 @@ public async Task<string> LoginWithOauth(
         payload = HttpUtility.UrlDecode(queryDict["payload"]);
         var payloadData = JsonConvert.DeserializeObject<LoginPayloadData>(payload);
 
-        var serverRes = await this.EmbeddedWallet.SignInWithSiweRawAsync(payloadData, signature).ConfigureAwait(false);
+        var serverRes = await this.EmbeddedWallet.SignInWithSiweExternalRawAsync(payloadData, signature).ConfigureAwait(false);
         return serverRes;
     }
 
diff --git a/Thirdweb/Thirdweb.Wallets/InAppWallet/EmbeddedWallet.Authentication/Server.cs b/Thirdweb/Thirdweb.Wallets/InAppWallet/EmbeddedWallet.Authentication/Server.cs
@@ -15,6 +15,7 @@ internal abstract class ServerBase
 
     internal abstract Task<LoginPayloadData> FetchSiwePayloadAsync(string address, string chainId);
     internal abstract Task<Server.VerifyResult> VerifySiweAsync(LoginPayloadData payload, string signature);
+    internal abstract Task<Server.VerifyResult> VerifySiweExternalAsync(LoginPayloadData payload, string signature);
 
     internal abstract Task<Server.VerifyResult> VerifyBackendAsync(string walletSecret);
 
@@ -141,6 +142,18 @@ internal override async Task<LoginPayloadData> FetchSiwePayloadAsync(string addr
     }
 
     internal override async Task<VerifyResult> VerifySiweAsync(LoginPayloadData payload, string signature)
+    {
+        var uri = MakeUri2024("/login/siwe/callback");
+        var content = MakeHttpContent(new { signature, payload });
+        ThirdwebHttpResponseMessage response;
+        response = await this._httpClient.PostAsync(uri.ToString(), content).ConfigureAwait(false);
+        await CheckStatusCodeAsync(response).ConfigureAwait(false);
+
+        var authResult = await DeserializeAsync<AuthResultType>(response).ConfigureAwait(false);
+        return await this.InvokeAuthResultLambdaAsync(authResult).ConfigureAwait(false);
+    }
+
+    internal override async Task<VerifyResult> VerifySiweExternalAsync(LoginPayloadData payload, string signature)
     {
         var uri = MakeUri2024("/login/siwe/callback");
         var content = MakeHttpContent(new { signature, payload });
diff --git a/Thirdweb/Thirdweb.Wallets/InAppWallet/EmbeddedWallet/EmbeddedWallet.SIWE.cs b/Thirdweb/Thirdweb.Wallets/InAppWallet/EmbeddedWallet/EmbeddedWallet.SIWE.cs
@@ -14,8 +14,8 @@ internal partial class EmbeddedWallet
         return await this._server.VerifySiweAsync(payload, signature).ConfigureAwait(false);
     }
 
-    public async Task<Server.VerifyResult> SignInWithSiweRawAsync(LoginPayloadData payload, string signature)
+    public async Task<Server.VerifyResult> SignInWithSiweExternalRawAsync(LoginPayloadData payload, string signature)
     {
-        return await this._server.VerifySiweAsync(payload, signature).ConfigureAwait(false);
+        return await this._server.VerifySiweExternalAsync(payload, signature).ConfigureAwait(false);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -238,6 +238,7 @@ private static async Task<string> GenerateWallet(IThirdwebHttpClient httpClient)`
`238`	`238`
`239`	`239`	`private async Task<string> PostAuth(Server.VerifyResult result)`
`240`	`240`	`{`
	`241`	`+ this.HttpClient.RemoveHeader("Authorization");`
`241`	`242`	`this.HttpClient.AddHeader("Authorization", $"Bearer embedded-wallet-token:{result.AuthToken}");`
`242`	`243`
`243`	`244`	`string address;`
`@@ -770,7 +771,7 @@ public async Task<string> LoginWithOauth(`
`770`	`771`	`payload = HttpUtility.UrlDecode(queryDict["payload"]);`
`771`	`772`	`var payloadData = JsonConvert.DeserializeObject<LoginPayloadData>(payload);`
`772`	`773`
`773`		`- var serverRes = await this.EmbeddedWallet.SignInWithSiweRawAsync(payloadData, signature).ConfigureAwait(false);`
	`774`	`+ var serverRes = await this.EmbeddedWallet.SignInWithSiweExternalRawAsync(payloadData, signature).ConfigureAwait(false);`
`774`	`775`	`return serverRes;`
`775`	`776`	`}`
`776`	`777`
Original file line number	Diff line number	Diff line change
`@@ -14,8 +14,8 @@ internal partial class EmbeddedWallet`
`14`	`14`	`return await this._server.VerifySiweAsync(payload, signature).ConfigureAwait(false);`
`15`	`15`	`}`
`16`	`16`
`17`		`- public async Task<Server.VerifyResult> SignInWithSiweRawAsync(LoginPayloadData payload, string signature)`
	`17`	`+ public async Task<Server.VerifyResult> SignInWithSiweExternalRawAsync(LoginPayloadData payload, string signature)`
`18`	`18`	`{`
`19`		`- return await this._server.VerifySiweAsync(payload, signature).ConfigureAwait(false);`
	`19`	`+ return await this._server.VerifySiweExternalAsync(payload, signature).ConfigureAwait(false);`
`20`	`20`	`}`
`21`	`21`	`}`