stacker.news/pages/api/lnurlp/[username]/pay.js

import models from '../../../../api/models'
import lnd from '../../../../api/lnd'
import { createInvoice } from 'ln-service'
import { lnurlPayDescriptionHashForUser } from '../../../../lib/lnurl'
import serialize from '../../../../api/resolvers/serial'
import * as secp256k1 from '@noble/secp256k1'
import { createHash } from 'crypto'

export default async ({ query: { username, amount, nostr } }, res) => {
  const user = await models.user.findUnique({ where: { name: username } })
  if (!user) {
    return res.status(400).json({ status: 'ERROR', reason: `user @${username} does not exist` })
  }
  try {
  // if nostr, decode, validate sig, check tags, set description hash
    let description, descriptionHash, noteStr
    if (nostr) {
      noteStr = decodeURIComponent(nostr)
      const note = JSON.parse(noteStr)
      const hasPTag = note.tags?.filter(t => t[0] === 'p').length >= 1
      const hasETag = note.tags?.filter(t => t[0] === 'e').length <= 1
      if (await secp256k1.schnorr.verify(note.sig, note.id, note.pubkey) &&
      hasPTag && hasETag) {
        description = user.hideInvoiceDesc ? undefined : 'zap'
        descriptionHash = createHash('sha256').update(noteStr).digest('hex')
      } else {
        res.status(400).json({ status: 'ERROR', reason: 'invalid NIP-57 note' })
        return
      }
    } else {
      description = user.hideInvoiceDesc ? undefined : `Funding @${username} on stacker.news`
      descriptionHash = lnurlPayDescriptionHashForUser(username)
    }

    if (!amount || amount < 1000) {
      return res.status(400).json({ status: 'ERROR', reason: 'amount must be >=1000 msats' })
    }

    // generate invoice
    const expiresAt = new Date(new Date().setMinutes(new Date().getMinutes() + 1))
    const invoice = await createInvoice({
      description: description,
      description_hash: descriptionHash,
      lnd,
      mtokens: amount,
      expires_at: expiresAt
    })

    await serialize(models,
      models.$queryRaw`SELECT * FROM create_invoice(${invoice.id}, ${invoice.request},
        ${expiresAt}, ${Number(amount)}, ${user.id}, ${noteStr || description})`)

    return res.status(200).json({
      pr: invoice.request,
      routes: []
    })
  } catch (error) {
    console.log(error)
    res.status(400).json({ status: 'ERROR', reason: error.message })
  }
}
WIP lightning addr 2021-10-07 18:37:59 +00:00			`import models from '../../../../api/models'`
			`import lnd from '../../../../api/lnd'`
			`import { createInvoice } from 'ln-service'`
fix nip57? 2023-02-15 17:20:26 +00:00			`import { lnurlPayDescriptionHashForUser } from '../../../../lib/lnurl'`
fix lnaddr not checking 2022-01-09 16:50:51 +00:00			`import serialize from '../../../../api/resolvers/serial'`
support NIP-57 2023-02-14 18:46:34 +00:00			`import * as secp256k1 from '@noble/secp256k1'`
			`import { createHash } from 'crypto'`
WIP lightning addr 2021-10-07 18:37:59 +00:00
support NIP-57 2023-02-14 18:46:34 +00:00			`export default async ({ query: { username, amount, nostr } }, res) => {`
WIP lightning addr 2021-10-07 18:37:59 +00:00			`const user = await models.user.findUnique({ where: { name: username } })`
			`if (!user) {`
			return res.status(400).json({ status: 'ERROR', reason: `user @${username} does not exist` })
			`}`
support NIP-57 2023-02-14 18:46:34 +00:00			`try {`
			`// if nostr, decode, validate sig, check tags, set description hash`
fix nip57? 2023-02-15 17:20:26 +00:00			`let description, descriptionHash, noteStr`
support NIP-57 2023-02-14 18:46:34 +00:00			`if (nostr) {`
fix nip57? 2023-02-15 17:20:26 +00:00			`noteStr = decodeURIComponent(nostr)`
support NIP-57 2023-02-14 18:46:34 +00:00			`const note = JSON.parse(noteStr)`
			`const hasPTag = note.tags?.filter(t => t[0] === 'p').length >= 1`
			`const hasETag = note.tags?.filter(t => t[0] === 'e').length <= 1`
			`if (await secp256k1.schnorr.verify(note.sig, note.id, note.pubkey) &&`
			`hasPTag && hasETag) {`
fix nip57? 2023-02-15 17:20:26 +00:00			`description = user.hideInvoiceDesc ? undefined : 'zap'`
support NIP-57 2023-02-14 18:46:34 +00:00			`descriptionHash = createHash('sha256').update(noteStr).digest('hex')`
			`} else {`
			`res.status(400).json({ status: 'ERROR', reason: 'invalid NIP-57 note' })`
			`return`
			`}`
			`} else {`
fix nip57? 2023-02-15 17:20:26 +00:00			description = user.hideInvoiceDesc ? undefined : `Funding @${username} on stacker.news`
support NIP-57 2023-02-14 18:46:34 +00:00			`descriptionHash = lnurlPayDescriptionHashForUser(username)`
			`}`
WIP lightning addr 2021-10-07 18:37:59 +00:00
support NIP-57 2023-02-14 18:46:34 +00:00			`if (!amount \|\| amount < 1000) {`
			`return res.status(400).json({ status: 'ERROR', reason: 'amount must be >=1000 msats' })`
			`}`
WIP lightning addr 2021-10-07 18:37:59 +00:00
support NIP-57 2023-02-14 18:46:34 +00:00			`// generate invoice`
			`const expiresAt = new Date(new Date().setMinutes(new Date().getMinutes() + 1))`
WIP lightning addr 2021-10-07 18:37:59 +00:00			`const invoice = await createInvoice({`
support NIP-57 2023-02-14 18:46:34 +00:00			`description: description,`
attempt description hash encoding 2021-10-07 20:36:12 +00:00			`description_hash: descriptionHash,`
WIP lightning addr 2021-10-07 18:37:59 +00:00			`lnd,`
			`mtokens: amount,`
			`expires_at: expiresAt`
			`})`

fix lnaddr not checking 2022-01-09 16:50:51 +00:00			`await serialize(models,`
			models.$queryRaw`SELECT * FROM create_invoice(${invoice.id}, ${invoice.request},
fix nip57? 2023-02-15 17:20:26 +00:00			${expiresAt}, ${Number(amount)}, ${user.id}, ${noteStr \|\| description})`)
WIP lightning addr 2021-10-07 18:37:59 +00:00
			`return res.status(200).json({`
adhere to lnurlp spec better 2022-05-19 13:18:28 +00:00			`pr: invoice.request,`
			`routes: []`
WIP lightning addr 2021-10-07 18:37:59 +00:00			`})`
			`} catch (error) {`
			`console.log(error)`
constrain invoice quantity and amount 2022-08-30 20:33:39 +00:00			`res.status(400).json({ status: 'ERROR', reason: error.message })`
WIP lightning addr 2021-10-07 18:37:59 +00:00			`}`
			`}`