fix: inboxes and app keys

pcarranzav · pcarranzav · commit 427d17401c7d · 2025-07-14T15:34:07.000-03:00
diff --git a/apps/connect/src/routes/authenticate.tsx b/apps/connect/src/routes/authenticate.tsx
@@ -407,8 +407,8 @@ function AuthenticateComponent() {
         appId: state.appInfo.appId,
         address: newAppIdentity.address,
         accountAddress,
-        signaturePublicKey: newAppIdentity.signaturePublicKey,
-        encryptionPublicKey: newAppIdentity.encryptionPublicKey,
+        signaturePublicKey: keys.signaturePublicKey,
+        encryptionPublicKey: keys.encryptionPublicKey,
         ciphertext,
         nonce,
         accountProof,
@@ -424,6 +424,8 @@ function AuthenticateComponent() {
         body: JSON.stringify(message),
       });
       const appIdentityResponse = await response.json();
+      // TODO: All apps are essentially using the same keys, we should change to using
+      // the newly created app identity keys, but that requires changing a lot of the verification logic in the server and HypergraphAppContext
       await encryptSpacesAndRedirect({
         accountAddress,
         appIdentity: {
@@ -432,8 +434,8 @@ function AuthenticateComponent() {
           accountAddress,
           encryptionPrivateKey: keys.encryptionPrivateKey,
           signaturePrivateKey: keys.signaturePrivateKey,
-          encryptionPublicKey: newAppIdentity.encryptionPublicKey,
-          signaturePublicKey: newAppIdentity.signaturePublicKey,
+          encryptionPublicKey: keys.encryptionPublicKey,
+          signaturePublicKey: keys.signaturePublicKey,
           sessionToken: appIdentityResponse.appIdentity.sessionToken,
           sessionTokenExpires: new Date(appIdentityResponse.appIdentity.sessionTokenExpires),
           permissionId,
diff --git a/packages/hypergraph-react/src/HypergraphAppContext.tsx b/packages/hypergraph-react/src/HypergraphAppContext.tsx
@@ -627,7 +627,7 @@ export function HypergraphAppProvider({
             }
             const inboxCreator = Inboxes.recoverAccountInboxCreatorKey(response.inbox);
             if (inboxCreator !== identity.signaturePublicKey) {
-              console.error('Invalid inbox creator', response.inbox);
+              console.error('Invalid inbox creator', response.inbox, inboxCreator, identity.signaturePublicKey);
               return;
             }
 
@@ -1019,7 +1019,7 @@ export function HypergraphAppProvider({
       }
       const message = await Inboxes.createSpaceInboxCreationMessage({
         author: {
-          accountAddress: identity.address,
+          accountAddress: identity.accountAddress,
           signaturePublicKey,
           encryptionPublicKey,
           signaturePrivateKey,
@@ -1118,7 +1118,7 @@ export function HypergraphAppProvider({
         throw new Error('Missing keys');
       }
       const message = await Inboxes.createAccountInboxCreationMessage({
-        accountAddress: identity.address,
+        accountAddress: identity.accountAddress,
         isPublic,
         authPolicy,
         encryptionPublicKey,
diff --git a/packages/hypergraph-react/src/hooks/useExternalSpaceInbox.ts b/packages/hypergraph-react/src/hooks/useExternalSpaceInbox.ts
@@ -51,8 +51,8 @@ export function useExternalSpaceInbox({
 
         let authorAccountAddress: string | null = null;
         let signaturePrivateKey: string | null = null;
-        if (identity?.address && inbox.authPolicy !== 'anonymous') {
-          authorAccountAddress = identity.address;
+        if (identity?.accountAddress && inbox.authPolicy !== 'anonymous') {
+          authorAccountAddress = identity.accountAddress;
           signaturePrivateKey = identity.signaturePrivateKey;
         } else if (inbox.authPolicy === 'requires_auth') {
           throw new Error('Cannot send message to a required auth inbox without an identity');
diff --git a/packages/hypergraph-react/src/hooks/useOwnSpaceInbox.ts b/packages/hypergraph-react/src/hooks/useOwnSpaceInbox.ts
@@ -104,8 +104,8 @@ export function useOwnSpaceInbox({
 
         let authorAccountAddress: string | null = null;
         let signaturePrivateKey: string | null = null;
-        if (identity?.address && ownInbox.authPolicy !== 'anonymous') {
-          authorAccountAddress = identity.address;
+        if (identity?.accountAddress && ownInbox.authPolicy !== 'anonymous') {
+          authorAccountAddress = identity.accountAddress;
           signaturePrivateKey = identity.signaturePrivateKey;
         } else if (ownInbox.authPolicy === 'requires_auth') {
           throw new Error('Cannot send message to a required auth inbox without an identity');

Original file line number	Diff line number	Diff line change
`@@ -627,7 +627,7 @@ export function HypergraphAppProvider({`
`627`	`627`	`}`
`628`	`628`	`const inboxCreator = Inboxes.recoverAccountInboxCreatorKey(response.inbox);`
`629`	`629`	`if (inboxCreator !== identity.signaturePublicKey) {`
`630`		`- console.error('Invalid inbox creator', response.inbox);`
	`630`	`+ console.error('Invalid inbox creator', response.inbox, inboxCreator, identity.signaturePublicKey);`
`631`	`631`	`return;`
`632`	`632`	`}`
`633`	`633`
`@@ -1019,7 +1019,7 @@ export function HypergraphAppProvider({`
`1019`	`1019`	`}`
`1020`	`1020`	`const message = await Inboxes.createSpaceInboxCreationMessage({`
`1021`	`1021`	`author: {`
`1022`		`- accountAddress: identity.address,`
	`1022`	`+ accountAddress: identity.accountAddress,`
`1023`	`1023`	`signaturePublicKey,`
`1024`	`1024`	`encryptionPublicKey,`
`1025`	`1025`	`signaturePrivateKey,`
`@@ -1118,7 +1118,7 @@ export function HypergraphAppProvider({`
`1118`	`1118`	`throw new Error('Missing keys');`
`1119`	`1119`	`}`
`1120`	`1120`	`const message = await Inboxes.createAccountInboxCreationMessage({`
`1121`		`- accountAddress: identity.address,`
	`1121`	`+ accountAddress: identity.accountAddress,`
`1122`	`1122`	`isPublic,`
`1123`	`1123`	`authPolicy,`
`1124`	`1124`	`encryptionPublicKey,`