Pro 2758

[nikhilkumar1612]

Description

• enabled safe mode for both /saveKey and /deleteKey endpoints.
• added kms integration for private key encryption.
• new private keys are generated when a new api key is registered.
• added authentication for /saveKey and /deleteKey using hmac signature along with timestamp validation.

Types of changes

What types of changes does your code introduce?

• Bugfix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Documentation Update
• Code style update (formatting, renaming)
• Refactoring (no functional changes, no api changes)
• Build related changes
• Other (please describe):

Further comments (optional)

• all changes are tested using a hardcoded bundler api key.
• private keys are not yet using kms for encryption.
• balance validation for /deleteKey endpoint includes native balances as well as sponsor balance on native paymasters.

[linear]

PRO-2758 Save and delete key Arka changes

[nikhilkumar1612]

@ch4r10t33r using 7 days because only 7-30 days values are allowed for scheduled deletion.

[cloudflare-workers-and-pages]

Deploying arka with    Cloudflare Pages

Latest commit:	1a7179d
Status:	✅  Deploy successful!
Preview URL:	https://40e67923.arka-3qg.pages.dev
Branch Preview URL:	https://pro-2758.arka-3qg.pages.dev

View logs

[ch4r10t33r]

LGTM

[vignesha22]

We need to also create a record on the connected db since the sponsorship olivies are handled by that so even in unsafeMode as false create one record on was secrets as above and also include database record creation for the same which also includes addition of policy record by default for the same apiKey

[nikhilkumar1612]

@vignesha22 does this mean we have to delete the record also on /deleteKey endpoint ?

[vignesha22]

LGTM