Skip to content

danielChuks/ASC-SSO

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
backend
backend
 
 
contracts
contracts
 
 
docs
docs
 
 
frontend/master-wallet
frontend/master-wallet
 
 
.gitignore
.gitignore
 
 
pyrightconfig.json
pyrightconfig.json
 
 
readme.md
readme.md
 
 

Repository files navigation

Lantra

Anonymous identity and DAO voting — log in to sites and vote on proposals without revealing your identity. Built on U2SSO (User-issued Unlinkable Single Sign-On) from ePrint 2025/618.

The Core Idea

  1. You create a secret only you know (Semaphore identity + r)
  2. You derive public values that prove you know it, without revealing it
  3. Commitments live on-chain (Solidity); backend verifies proofs and stores registrations

What Each Side Knows

Who What they know
You (browser) Semaphore identity and r — secrets only you have
IdR (blockchain) Commitments only — no secrets
Backend ZK proof, nullifier, pseudonym — never your identity

Step-by-Step Flow

Phase 1: Create identity (Home page)

You (browser):  Create Semaphore Identity + bootstrap seed
You (browser):  POST /registry/register for both commitments
Backend:        Calls IdR contract addCommitment() — stores on-chain
You (browser):  Store identity, r in localStorage

Phase 2: Register with a site (one-time per SP)

You (browser):  GET /registry/group → fetches commitments from IdR contract
You (browser):  Build Semaphore Group, generate ZK proof (membership + nullifier for sp_id)
You (browser):  Derive cskl = HKDF(r, sp_id), ϕ = Ed25519 public key
You (browser):  POST /verify/register (ϕ, nullifier_hash, proof, merkle_root)
Backend:        Verifies ZK proof, stores (pseudonym, nullifier) in PostgreSQL

Phase 3: Login (subsequent visits)

You (browser):  GET /verify/auth/challenge (sp_id, pseudonym)
You (browser):  Sign challenge with cskl (Ed25519)
You (browser):  POST /verify/auth (ϕ, challenge, signature)
Backend:        Verifies Ed25519; no ZK proof needed

Phase 4: DAO Voting

You (browser):  GET /dao/proposals → list proposals from DAOVoting contract
You (browser):  Generate ZK proof (scope=proposalId, message=voteChoice)
You (browser):  POST /dao/vote (proposal_id, vote_choice, proof, nullifier_hash, merkle_root)
Backend:        Verifies proof, checks nullifier in dao_votes, relays to castVote()

Storage

Data Where
Commitments On-chain (Solidity CommitmentRegistry)
sp_registrations PostgreSQL
auth_challenges PostgreSQL
dao_votes PostgreSQL (nullifier per proposal)
identity, r Browser localStorage

Quick Start

  1. Deploy contracts — See contracts/README.md
    • Local: npm run deploy:local (requires Hardhat node)
    • Sepolia: npm run deploy:dao:sepolia (requires contracts/.env and Sepolia ETH)
  2. Backend — PostgreSQL + .env with contract addresses, RPC URL, and keys
  3. Frontendcd frontend/master-wallet && npm run dev + .env.local with NEXT_PUBLIC_DAO_VOTING_CONTRACT_ADDRESS, NEXT_PUBLIC_DAO_CHAIN_ID
  4. Create identityLogin to LantraDAO Voting

Documentation

References

  • Paper — Anonymous Self-Credentials and their Application to Single-Sign-On
  • BoquilaID/U2SSO — IC3 hackathon implementation

About

asc-sso.vercel.app

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages