re-enable signature checking

2024-03-23 14:16:43 -05:00 · 2024-03-23 14:16:43 -05:00 · 25e515e0bb
parent 2f9e31852d
commit 25e515e0bb
1 changed files with 11 additions and 13 deletions
--- a/client/src/utils/Post.js
+++ b/client/src/utils/Post.js
@ -1,7 +1,7 @@
 import axios from 'axios';
 // trailing slash is deliberate, to differentiate this package from the core node module
 import { Buffer } from 'buffer/';
-// import { recoverPersonalSignature } from '@metamask/eth-sig-util/dist/personal-sign';
+import { recoverPersonalSignature } from '@metamask/eth-sig-util';
 import objectHash from 'object-hash/dist/object_hash';

 // Make Buffer available to recoverPersonalSignature
@ -25,18 +25,16 @@ class Post {
    if (hash !== derivedHash) {
      throw new Error('Hash mismatch');
    }
-    // TODO: Verify signature
-    // Disabling this because @metamask/eth-sig-util is a nodejs module
-    // and we need to figure out how to bundle it.
-    // let recovered;
-    // try {
-    //   recovered = recoverPersonalSignature({ data: content, signature });
-    // } catch (e) {
-    //   throw new Error('Signature error', e);
-    // }
-    // if (recovered !== author) {
-    //   throw new Error('Author mismatch');
-    // }
+    // Verify signature
+    let recovered;
+    try {
+      recovered = recoverPersonalSignature({ data: content, signature });
+    } catch (e) {
+      throw new Error('Signature error', e);
+    }
+    if (recovered !== author) {
+      throw new Error('Author mismatch');
+    }
    return new Post({
      content, author, signature, hash,
    });