Shogun SDK Documentation v1.1.4 - v6.3.0
Shogun Core 📦
Overview
Shogun Core is a comprehensive SDK for building decentralized applications (dApps) that simplifies authentication, wallet management, and decentralized data storage. It combines GunDB's peer-to-peer networking with modern authentication standards and blockchain integration.
Features
- 🔐 Multiple Authentication Methods: Password, WebAuthn (biometrics), Web3 (MetaMask), Nostr, ZK-Proof (anonymous)
- 🌐 Decentralized Storage: Built on GunDB for peer-to-peer data synchronization
- 🔌 Plugin System: Extensible architecture with built-in plugins
- 💼 Smart Wallet: Account Abstraction with multi-sig, social recovery, and batch transactions
- 🔑 Automatic Crypto Identity Management: RSA, AES, Signal Protocol, PGP, MLS, and SFrame keys
- 📱 Reactive Programming: RxJS integration for real-time data streams
- 🛡️ Security: End-to-end encryption and secure key management
- 🎯 TypeScript: Full TypeScript support with comprehensive type definitions
Installation
npm install shogun-core
# or
yarn add shogun-core
Quick Start
import { ShogunCore } from "shogun-core";
import Gun from "gun";
// Create Gun instance first
const gun = Gun({
peers: ['https://gun-manhattan.herokuapp.com/gun']
});
// Initialize Shogun Core with the Gun instance
const shogun = new ShogunCore({
gunInstance: gun,
// Enable authentication plugins
web3: { enabled: true },
webauthn: {
enabled: true,
rpName: "My Awesome App",
rpId: window.location.hostname,
},
nostr: { enabled: true },
zkproof: {
enabled: true,
defaultGroupId: "my-app-users",
},
// Optional: Configure crypto identity auto-generation
crypto: {
autoGenerateOnAuth: true, // Generate crypto identities automatically after auth
},
});
// Register Smart Wallet plugin separately if needed
import { SmartWalletPlugin } from "shogun-core";
const smartWalletPlugin = new SmartWalletPlugin({
enabled: true,
factoryAddress: "0x...",
defaultRequiredSignatures: 1,
defaultRequiredGuardians: 2,
});
shogun.register(smartWalletPlugin);
Basic Database Operations
const db = shogun.db;
// Store data using Gun chaining
await db.get('users').get('alice').get('profile').put({
name: 'Alice Smith',
email: 'alice@example.com'
});
// Read data
const profile = await db.get('users').get('alice').get('profile').once().then();
// Update specific fields
await db.get('users').get('alice').get('profile').get('name').put('Alice Johnson');
// Iterate over collections with .map()
db.get('users').map((user, userId) => {
console.log(`User ${userId}:`, user);
});
Authentication Methods
1. Traditional Authentication
// Sign up
const signUpResult = await shogun.signUp("username", "password");
if (signUpResult.success) {
console.log("User created:", signUpResult.username);
}
// Login
const loginResult = await shogun.login("username", "password");
if (loginResult.success) {
console.log("Logged in as:", loginResult.username);
}
2. Web3 Plugin API
const web3Plugin = shogun.getPlugin("web3");
if (web3Plugin && web3Plugin.isAvailable()) {
const connectionResult = await web3Plugin.connectMetaMask();
if (connectionResult.success) {
const address = connectionResult.address!;
// Login with Web3 wallet
const loginResult = await web3Plugin.login(address);
if (loginResult.success) {
console.log("Web3 login successful");
}
// Register new user
const signUpResult = await web3Plugin.signUp(address);
if (signUpResult.success) {
console.log("Web3 registration successful");
}
}
}
3. WebAuthn Plugin API
const webauthnPlugin = shogun.getPlugin("webauthn");
if (webauthnPlugin && webauthnPlugin.isSupported()) {
// Register with seed phrase for multi-device support
const signUpResult = await webauthnPlugin.signUp("username", {
generateSeedPhrase: true
});
if (signUpResult.success && signUpResult.seedPhrase) {
console.log("🔑 SAVE THESE 12 WORDS:", signUpResult.seedPhrase);
}
// Import account on another device
const importResult = await webauthnPlugin.importFromSeed(
"username",
"word1 word2 word3 word4 word5 word6 word7 word8 word9 word10 word11 word12"
);
// Authenticate
const loginResult = await webauthnPlugin.login("username");
if (loginResult.success) {
console.log("WebAuthn authentication successful");
}
}
4. Nostr Plugin API
const nostrPlugin = shogun.getPlugin("nostr");
if (nostrPlugin && nostrPlugin.isAvailable()) {
const connectionResult = await nostrPlugin.connectNostrWallet();
if (connectionResult.success) {
const address = connectionResult.address!;
const loginResult = await nostrPlugin.login(address);
if (loginResult.success) {
console.log("Nostr login successful");
}
const signUpResult = await nostrPlugin.signUp(address);
if (signUpResult.success) {
console.log("Nostr registration successful");
}
}
}
5. ZK-Proof Plugin API
const zkPlugin = shogun.getPlugin("zkproof");
if (zkPlugin && zkPlugin.isAvailable()) {
// Sign up with ZK-Proof (creates anonymous identity)
const signUpResult = await zkPlugin.signUp();
if (signUpResult.success && signUpResult.seedPhrase) {
console.log("🔑 SAVE THIS TRAPDOOR:", signUpResult.seedPhrase);
}
// Login with trapdoor (anonymous authentication)
const loginResult = await zkPlugin.login(trapdoor);
if (loginResult.success) {
console.log("ZK-Proof login successful (anonymous)");
}
}
6. Smart Wallet Plugin API
import { SmartWalletPlugin } from "shogun-core";
// Register Smart Wallet plugin
const smartWalletPlugin = new SmartWalletPlugin({
enabled: true,
factoryAddress: "0x...", // Smart Wallet Factory contract address
defaultRequiredSignatures: 1,
defaultRequiredGuardians: 2,
});
shogun.register(smartWalletPlugin);
// Configure signer (derive EOA from WebAuthn seed phrase)
const webauthnPlugin = shogun.getPlugin("webauthn");
const signUpResult = await webauthnPlugin.signUp("alice", {
generateSeedPhrase: true
});
import { derive } from "shogun-core";
const wallet = await derive(signUpResult.seedPhrase!, "alice", {
includeSecp256k1Ethereum: true
});
await smartWalletPlugin.setSigner(wallet.secp256k1Ethereum.privateKey);
// Create Smart Wallet with guardians
const result = await smartWalletPlugin.createWalletWithGuardians(
wallet.secp256k1Ethereum.address,
[guardian1, guardian2],
1, // 1 signature required
2 // 2 guardians for recovery
);
if (result.success) {
console.log("Smart Wallet created:", result.walletAddress);
}
Crypto Identity Management
Shogun Core provides automatic crypto identity generation for every authenticated user. All crypto identities are created automatically during the signup process and stored securely in the decentralized database.
Automatic Identity Generation
When a user signs up, Shogun Core automatically generates comprehensive crypto identities:
- RSA-4096 Key Pairs: For asymmetric encryption and digital signatures
- AES-256 Symmetric Keys: For fast symmetric encryption operations
- Signal Protocol Identities: For end-to-end encrypted messaging
- PGP Key Pairs: For email encryption and digital signatures
- MLS Groups: For group messaging and collaboration
- SFrame Keys: For media encryption and streaming
Generating Crypto Identities
import { CryptoIdentityManager } from "shogun-core";
import type { ISEAPair } from "gun/types";
// Create CryptoIdentityManager instance
const cryptoManager = new CryptoIdentityManager();
// Generate crypto identities for a user
const seaPair: ISEAPair = /* your SEA pair */;
const result = await cryptoManager.generateAllIdentities("username", seaPair);
if (result.success && result.identities) {
console.log("RSA Key Pair:", !!result.identities.rsa);
console.log("AES Key:", !!result.identities.aes);
console.log("Signal Identity:", !!result.identities.signal);
console.log("PGP Keys:", !!result.identities.pgp);
console.log("MLS Group:", !!result.identities.mls);
console.log("SFrame Key:", !!result.identities.sframe);
// Access specific identity data
if (result.identities.rsa) {
console.log("RSA Public Key:", result.identities.rsa.publicKey);
console.log("RSA Private Key:", result.identities.rsa.privateKey);
}
if (result.identities.aes) {
console.log("AES Key:", result.identities.aes);
}
if (result.identities.signal) {
console.log("Signal Identity:", result.identities.signal);
}
if (result.identities.pgp) {
console.log("PGP Public Key:", result.identities.pgp.publicKey);
console.log("PGP Private Key:", result.identities.pgp.privateKey);
}
if (result.identities.mls) {
console.log("MLS Group ID:", result.identities.mls.groupId);
console.log("MLS Member ID:", result.identities.mls.memberId);
}
if (result.identities.sframe) {
console.log("SFrame Key ID:", result.identities.sframe.keyId);
}
// Note: Save identities to GunDB from the frontend if needed
} else {
console.error("Failed to generate identities:", result.error);
}
Complete Example
import { ShogunCore, CryptoIdentityManager } from "shogun-core";
import Gun from "gun";
// Initialize Shogun Core
const gun = Gun({
peers: ['https://gun-manhattan.herokuapp.com/gun']
});
const shogun = new ShogunCore({
gunInstance: gun
});
// Register user
const signupResult = await shogun.signUp("alice", "password123");
if (signupResult.success && signupResult.sea) {
console.log("User registered:", signupResult.username);
// Generate crypto identities
const cryptoManager = new CryptoIdentityManager();
const result = await cryptoManager.generateAllIdentities(
signupResult.username,
signupResult.sea
);
if (result.success && result.identities) {
console.log("✅ All crypto identities generated successfully");
console.log("Identities available:", Object.keys(result.identities));
// Save identities to GunDB from the frontend if needed
// The manager only generates identities, saving is handled by the frontend
}
}
Identity Structure
The CryptoIdentities interface contains:
interface CryptoIdentities {
rsa?: JWKKeyPair; // RSA-4096 key pair
aes?: JsonWebKey; // AES-256 symmetric key
signal?: SignalUser; // Signal Protocol identity
pgp?: PGPKeyPair; // PGP key pair
mls?: { // MLS group membership
groupId: string;
memberId: string;
};
sframe?: { // SFrame media key
keyId: number;
};
createdAt: number; // Creation timestamp
version: string; // Identity version
}
Error Handling
const result = await cryptoManager.generateAllIdentities("username", seaPair);
if (!result.success) {
switch (result.error) {
case "Failed to generate crypto identities":
console.log("Identity generation failed");
break;
default:
console.error("Unknown error:", result.error);
}
}
Browser Usage (CDN)
<!DOCTYPE html>
<html>
<head>
<title>Shogun Core in Browser</title>
</head>
<body>
<h1>My dApp</h1>
<script src="https://cdn.jsdelivr.net/npm/gun/gun.js"></script>
<script src="https://cdn.jsdelivr.net/npm/gun/sea.js"></script>
<script src="https://cdn.jsdelivr.net/npm/shogun-core/dist/browser/shogun-core.js"></script>
<script>
// Create Gun instance first
const gun = Gun({
peers: ["https://gun-manhattan.herokuapp.com/gun"]
});
// Initialize Shogun Core
const shogunCore = new window.SHOGUN_CORE({
gunInstance: gun,
web3: { enabled: true },
webauthn: {
enabled: true,
rpName: "My Browser dApp",
rpId: window.location.hostname,
},
});
console.log("Shogun Core initialized in browser!", shogunCore);
</script>
</body>
</html>
Event System
// Listen for authentication events
shogun.on("auth:login", (data) => {
console.log("User logged in:", data.username);
console.log("Authentication method:", data.method);
});
shogun.on("auth:logout", () => {
console.log("User logged out");
});
shogun.on("auth:signup", (data) => {
console.log("New user signed up:", data.username);
});
// Listen for errors
shogun.on("error", (error) => {
console.error("Shogun error:", error.message);
});
Configuration Options
interface ShogunCoreConfig {
gunInstance: IGunInstance<any>; // Required: existing Gun instance
// Plugin configurations
webauthn?: {
enabled?: boolean;
rpName?: string;
rpId?: string;
};
web3?: {
enabled?: boolean;
};
nostr?: {
enabled?: boolean;
};
zkproof?: {
enabled?: boolean;
defaultGroupId?: string;
deterministic?: boolean;
minEntropy?: number;
};
// Crypto identity configuration
crypto?: {
/**
* When true (default), generate and save crypto identities automatically after auth.
* Set to false to skip automatic crypto identity generation.
*/
autoGenerateOnAuth?: boolean;
};
postAuth?: {
enabled?: boolean;
};
// Timeouts
timeouts?: {
login?: number;
signup?: number;
operation?: number;
};
plugins?: {
autoRegister?: ShogunPlugin[];
};
disableAutoRecall?: boolean; // Disable automatic session recall on init
silent?: boolean; // Disable console logs
}
Note: SmartWalletPlugin must be registered separately using shogun.register() as it's not included in the main configuration.
Testing
# Install dependencies
yarn install
# Run all tests with coverage
yarn test:ci
# Watch mode
yarn test:watch
# Coverage report
yarn coverage
# Plugin tests only
yarn test src/__tests__/plugins
Support
License
This project is licensed under the MIT License - see the LICENSE file for details.