MarketTakers/arbiter
5
0
Fork 0
Code Issues 27 Pull Requests 4 Packages Projects Releases Wiki Activity

SDK-client-UA-registration #34

Merged
Skipper merged 21 commits from SDK-client-UA-registration into main 2026-03-22 11:11:11 +00:00
Conversation 1 Commits 21 Files Changed 25 +1028 -184
CleverWild commented 2026-03-16 17:35:56 +00:00
Member
Copy Link
No description provided.
CleverWild added 5 commits 2026-03-16 17:35:56 +00:00
feat(poc): add terrors PoC crate scaffold and error types 02980468db 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
feat(poc): add db and auth modules with terrors error chains 3360d3c8c7
feat(poc): complete terrors PoC with main scenarios 66026e903a
feat(PoC): terrors crate usage
Some checks failed
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
099f76166e
feat(poc): enhance SDK client error handling in user agent module
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
a5a9bc73b0
CleverWild added 1 commit 2026-03-16 17:46:54 +00:00
fix(server): restore online client approval UX with sdk management
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
c90af9c196
CleverWild added 1 commit 2026-03-17 18:42:45 +00:00
chore: remove invalidly committed PoC crate
Some checks failed
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
6f03ce4d1d
CleverWild added 1 commit 2026-03-17 18:45:02 +00:00
feat: compat migrations
Some checks failed
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
77c3babec7
Skipper requested changes 2026-03-18 21:11:23 +00:00
Skipper left a comment
Owner
Copy Link

I have marked small issues by comments.

The bigger issue is design of arbiter-client. You require client to supply private key together with target address and it's easy to confuse the two.
Instead, I would do this:

  • Connect stream in ArbiterClient instance
  • This ArbiterClient in turn could produce ArbiterEvmWallet with data fetched from server. this "wallet handle" structure would share the connection and implement related Signer traits
I have marked small issues by comments. The bigger issue is design of `arbiter-client`. You require client to supply private key together with target address and it's easy to confuse the two. Instead, I would do this: - Connect stream in `ArbiterClient` instance - This `ArbiterClient` in turn could produce `ArbiterEvmWallet` with data fetched from server. this "wallet handle" structure would share the connection and implement related `Signer` traits
protobufs/user_agent.proto Outdated
@@ -80,6 +129,9 @@ message UserAgentRequest {
arbiter.evm.EvmGrantDeleteRequest evm_grant_delete = 9;
arbiter.evm.EvmGrantListRequest evm_grant_list = 10;
ClientConnectionResponse client_connection_response = 11;
SdkClientApproveRequest sdk_client_approve = 12;
Skipper commented 2026-03-18 20:42:09 +00:00
Owner
Copy Link

Rename remaining Client* request-response pairs to match Sdk* prefix style

Rename remaining `Client*` request-response pairs to match `Sdk*` prefix style
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +98,4 @@
impl ArbiterSigner {
pub async fn connect_grpc(
url: ArbiterUrl,
key: ed25519_dalek::SigningKey,
Skipper commented 2026-03-18 20:45:01 +00:00
Owner
Copy Link

introduce Storage abstraction to store private key as file.
On first start, it should be transparently created.

This aligns with online approval flow.

introduce `Storage` abstraction to store private key as file. On first start, it should be transparently created. This aligns with online approval flow.
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +99,4 @@
pub async fn connect_grpc(
url: ArbiterUrl,
key: ed25519_dalek::SigningKey,
address: Address,
Skipper commented 2026-03-18 20:47:39 +00:00
Owner
Copy Link

Address wrong. How could consumer know address beforehand?
What if it doesn't exist? Same goes for chain_id

Address wrong. How could consumer know address beforehand? What if it doesn't exist? Same goes for chain_id
👍 1
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +104,4 @@
let anchor = webpki::anchor_from_trusted_cert(&url.ca_cert)?.to_owned();
let tls = ClientTlsConfig::new().trust_anchor(anchor);
// NOTE: We intentionally keep the same URL construction strategy as the user-agent crate
Skipper commented 2026-03-18 20:45:43 +00:00
Owner
Copy Link

obsolete comment

obsolete comment
😆 1
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +112,4 @@
.await?;
let mut client = ArbiterServiceClient::new(channel);
let (tx, rx) = mpsc::channel(16);
Skipper commented 2026-03-18 20:44:13 +00:00
Owner
Copy Link

move 16 to const. Put it in arbiter-proto.

move `16` to const. Put it in `arbiter-proto`.
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +129,4 @@
})
}
async fn sign_transaction_via_arbiter(
Skipper commented 2026-03-18 20:46:41 +00:00
Owner
Copy Link

Put this code directly in TxSigner impl?

Put this code directly in `TxSigner` impl?
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +154,4 @@
)),
};
let mut transport = self.transport.lock().await;
Skipper commented 2026-03-18 20:49:35 +00:00
Owner
Copy Link

Generally, functions should do only one of two things: check something or do something.
I would have splitted transport flow (handshake?) into separate function

Generally, functions should do only one of two things: check something or do something. I would have splitted transport flow (handshake?) into separate function
CleverWild marked this conversation as resolved
server/crates/arbiter-client/src/lib.rs Outdated
@@ -13,0 +216,4 @@
.await
.map_err(|_| ConnectError::UnexpectedAuthResponse)?;
// Current server flow does not emit `AuthOk` for SDK clients, so we proceed after
Skipper commented 2026-03-18 20:59:04 +00:00
Owner
Copy Link

lol, this should be fixed on server-side. Had same problem with user agent auth

lol, this should be fixed on server-side. Had same problem with user agent auth
CleverWild marked this conversation as resolved
server/crates/arbiter-server/src/actors/client/auth.rs Outdated
@@ -64,0 +63,4 @@
async fn get_nonce(
db: &db::DatabasePool,
pubkey: &VerifyingKey,
) -> Result<Option<(i32, i32)>, Error> {
Skipper commented 2026-03-18 21:00:08 +00:00
Owner
Copy Link

I would create newtype for client-id here to not to confuse it with nonce

I would create newtype for client-id here to not to confuse it with nonce
CleverWild marked this conversation as resolved
server/crates/arbiter-server/src/actors/router/mod.rs Outdated
@@ -99,7 +99,6 @@ async fn request_client_approval(
while let Some(result) = pool.join_next().await {
match result {
Ok(Ok(approved)) => {
// cancel other pending requests
Skipper commented 2026-03-18 21:03:56 +00:00
Owner
Copy Link

return comments back, please

return comments back, please
👍 1
CleverWild marked this conversation as resolved
server/crates/arbiter-server/src/actors/user_agent/mod.rs Outdated
@@ -31,2 +39,4 @@
}
impl TransportResponseError {
pub fn is_terminal(&self) -> bool {
Skipper commented 2026-03-18 21:05:46 +00:00
Owner
Copy Link

https://lib.rs/crates/fatality
should be a better fit

https://lib.rs/crates/fatality should be a better fit
CleverWild marked this conversation as resolved
server/crates/arbiter-server/src/actors/user_agent/session.rs Outdated
@@ -334,0 +382,4 @@
.execute(&mut conn)
.await;
match insert_result {
Skipper commented 2026-03-18 21:08:03 +00:00
Owner
Copy Link

Sqlite supports RETURNING clauses on insert statement:
https://docs.rs/diesel/latest/diesel/query_builder/struct.InsertStatement.html#method.returning

Sqlite supports `RETURNING` clauses on insert statement: https://docs.rs/diesel/latest/diesel/query_builder/struct.InsertStatement.html#method.returning
👍 1
CleverWild marked this conversation as resolved
Skipper changed title from SDK-client-UA-registration + PoC-terrors to SDK-client-UA-registration 2026-03-18 23:33:18 +00:00
CleverWild added 9 commits 2026-03-19 18:09:18 +00:00
fix: return very important comment 434738bae5
chore: make const for buffer size f56668d9f6
refactor(proto): align remaining ClientConnection protobuf pairs with SdkClient* naming e89983de3a
feat(client): add file-backed signing key storage with transparent first-run key creation c87456ae2f
refactor(client): decouple grpc connect from wallet address and add explicit wallet configuration 3993d3a8cc
refactor(arbiter-client): split auth handshake into check/do steps and simplify TxSigner signing flow ec70561c93
feat(client-auth): emit and require AuthOk for SDK client challenge flow e1a8553142
refactor(client-auth): introduce ClientId newtype to avoid client_id/nonce confusion 971db0e919 
refactor(user-agent): replace manual terminality helper with fatality::Fatality
perf(user-agent): use sqlite INSERT ... RETURNING for sdk client approve
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
784261f4d8
CleverWild added 1 commit 2026-03-21 20:14:54 +00:00
Merge remote-tracking branch 'origin/main' into SDK-client-UA-registration
Some checks failed
ci/woodpecker/pr/server-audit Pipeline failed
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
f015d345f4
CleverWild requested review from Skipper 2026-03-21 20:38:31 +00:00
Skipper added 1 commit 2026-03-21 23:10:58 +00:00
chore(deps): update Rust dependencies and add cargo-edit
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
e135519c06
Skipper added 2 commits 2026-03-22 11:06:07 +00:00
refactor(client): split into more modules 1f07fd6a98
refactor(client): redesign of wallet handle
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
eb37ee0a0c
Skipper merged commit 2148faa376 into main 2026-03-22 11:11:11 +00:00
Skipper deleted branch SDK-client-UA-registration 2026-03-22 11:11:11 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Skipper
Labels
Clear labels
Compat
Breaking
Breaking change that won't be backward compatible
Difficulty
High
3
Hard difficulty. Experience needed to fix: A lot.
Difficulty
Low
1
Easy difficulty. Experience needed to fix: Not much. Good first issue.
Difficulty
Medium
2
Medium difficulty. Experience needed to fix: Intermediate.
Kind
Bug
This is a bug.
Kind
Enhancement
Improve existing functionality.
Kind
Feature
New functionality
Kind
RFC
Request for comments
Kind
Security
This is security issue
Kind
Testing
This is testing issue.
Kind
Tracking issue
An issue tracking the progress of sth. like the implementation of an RFC
Priority
Critical
1
The priority is critical
Priority
High
2
The priority is high
Priority
Low
4
The priority is low
Priority
Medium
3
The priority is medium
Reviewed
Confirmed
1
Issue has been confirmed
Reviewed
Duplicate
2
This issue or pull request already exists
Reviewed
Invalid
3
Invalid issue
Reviewed
Pending
4
Requires review by dev
Reviewed
Won't Fix
3
This issue won't be fixed
Status
Abandoned
3
Somebody has started to work on this but abandoned work
Status
Blocked
1
Something is blocking this issue or pull request
Status
Need More Info
2
Feedback is required to reproduce issue or to continue work
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
CleverWild Skipper goodvin testuser
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: MarketTakers/arbiter#34
Delete Branch "SDK-client-UA-registration"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?