Mint via Contracts
You can mint a PKP NFT from the PKP contract on Chronicle - Lit's custom EVM rollup testnet - using
- The Lit explorer,
- The Lit relayer (sign up for an API key here) or
- The contracts directly using the contracts-sdk (Here is the handy helper contract on Chronicle to mint and assign auth methods. You can view all of the deployed contract addresses here).
The NFT represents root ownership of the PKP. The NFT owner can grant other users (via a wallet address) or grant Lit Actions the ability to use the PKP to sign and decrypt data. They also have the ability to assign additional authentication methods, described at the bottom of the page.
Installing the required packages
yarn add @lit-protocol/lit-auth-client
yarn add @lit-protocol/contracts-sdk
Initializing your LitContract instance
import { LitContracts } from '@lit-protocol/contracts-sdk';
// if no signer is provided, it will attempt to use window.etheruem
const contractClient = new LitContracts({ signer });
await contractClient.connect();
Minting a PKP and adding permitted scopes
Permitted scopes are a crucial part of defining the capabilities of authentication methods. They determine what actions an authentication method can perform within the system. For instance, the SignAnything scope allows an auth method to sign any data, while the PersonalSign scope restricts it to signing messages using the EIP-191 scheme.
You can also set scopes: [] which will mean that the auth method can only be used for authentication, but not authorization. This means that the auth method can be used to prove that the user is who they say they are, but cannot be used to sign transactions or messages. You can read more about Auth Method scopes here.
The following code block demonstrates how to mint a PKP with specific permitted scopes:
import { AuthMethodScope, AuthMethodType } from '@lit-protocol/constants';
const authMethod = {
authMethodType: AuthMethodType.EthWallet,
accessToken: JSON.stringify(authSig),
};
const mintInfo = await contractClient.mintWithAuth({
authMethod: authMethod,
scopes: [
// AuthMethodScope.NoPermissions,
AuthMethodScope.SignAnything,
AuthMethodScope.PersonalSign
],
});
// output:
{
pkp: {
tokenId: string;
publicKey: string;
ethAddress: string;
};
tx: ethers.ContractReceipt;
}
Minting PKPs using the Lit relayer
The relayer is an open source project, and we run one for your use. The source code is available here. If you want to use our Relayer, you'll need a free API key which you can get by filling out this form.
Authenticating using signMessage Callback
If you wish to sign with an ethers wallet type or signer you may use the signMessage callback to implement a signing callback for the SIWE message.
import { LitAuthClient } from '@lit-protocol/lit-auth-client';
import { AuthMethodScope, AuthMethodType, ProviderType } from '@lit-protocol/constants';
import * as ethers from 'ethers';
const provider = new ethers.providers.JsonRpcProvider("your rpc url");
let wallet = new ethers.Wallet("your wallet private key", provider);
const authProvider = litAuthClient.initProvider(ProviderType.EthWallet);
let authMethod = authProvider.authenticate({
signMessage: (message: string) => {
return await wallet.signMessage(message);
}
});
// -- setting scope for the auth method
// <https://developer.litprotocol.com/v3/sdk/wallets/auth-methods/#auth-method-scopes>
const options = {
permittedAuthMethodScopes: [[AuthMethodScope.SignAnything]],
};
const mintTx = await authProvider.mintPKPThroughRelayer(
authMethod,
options
);
Authenticating using Web3 Provider
In the case where you wish to generagte a signature from a browser extension wallet (MetaMask, Brave Wallet, etc)
you may simply call authenticate which calls checkAndSignAuthMessage.
import { LitAuthClient } from '@lit-protocol/lit-auth-client';
import { AuthMethodScope, AuthMethodType, ProviderType } from '@lit-protocol/constants';
import {Wallet} from 'ethers';
const authProvider = litAuthClient.initProvider(ProviderType.EthWallet);
// Will call `checkAndSignAuthMessage({chain: ethereum})`
let authMethod = await authProvider.authenticate({chain: "ethereum"});
// -- setting scope for the auth method
// <https://developer.litprotocol.com/v3/sdk/wallets/auth-methods/#auth-method-scopes>
const options = {
permittedAuthMethodScopes: [[AuthMethodScope.SignAnything]],
};
const mintTx = await authProvider.mintPKPThroughRelayer(
authMethod,
options
);
Demos:
Minting a PKP with an auth method and permitted scopes (Easy)
Minting a PKP with an auth method and permitted scopes (Advanced)
Minting a PKP with no permissions, then add permitted scopes
Minting a PKP using the relayer, adding permitted scopes, and getting session sigs
infoNot finding the answer you're looking for? Share your feedback on these docs by creating an issue in our GitHub Issues and Reports repository or get support by visiting our Support page.