@@ -22,7 +68,7 @@ export default function Layout() {
to="/investor"
className="text-sm text-[var(--muted-foreground)] hover:text-[var(--foreground)]"
>
- Investor View
+ Shared with me
@@ -78,6 +124,7 @@ export default function Layout() {
+
diff --git a/dapp/src/contracts/EncryptedDataRoom.json b/dapp/src/contracts/EncryptedDataRoom.json
new file mode 100644
index 0000000..d28f514
--- /dev/null
+++ b/dapp/src/contracts/EncryptedDataRoom.json
@@ -0,0 +1,668 @@
+[
+ {
+ "type": "function",
+ "name": "NO_PARENT",
+ "inputs": [],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "addDocuments",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "cids",
+ "type": "string[]",
+ "internalType": "string[]"
+ },
+ {
+ "name": "names",
+ "type": "string[]",
+ "internalType": "string[]"
+ },
+ {
+ "name": "wrappedKeys",
+ "type": "bytes[]",
+ "internalType": "bytes[]"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "confidentialProtocolId",
+ "inputs": [],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "createFolder",
+ "inputs": [
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "name",
+ "type": "string",
+ "internalType": "string"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "createRoom",
+ "inputs": [
+ {
+ "name": "name",
+ "type": "string",
+ "internalType": "string"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "documentKeyVersion",
+ "inputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "getDocument",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "docIndex",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "cid",
+ "type": "string",
+ "internalType": "string"
+ },
+ {
+ "name": "name",
+ "type": "string",
+ "internalType": "string"
+ },
+ {
+ "name": "createdAt",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "keyVersion",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "wrappedKey",
+ "type": "bytes",
+ "internalType": "bytes"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "getFolders",
+ "inputs": [
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256[]",
+ "internalType": "uint256[]"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "getMembers",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "address[]",
+ "internalType": "address[]"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "getParentRoom",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "getRoom",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "owner",
+ "type": "address",
+ "internalType": "address"
+ },
+ {
+ "name": "name",
+ "type": "string",
+ "internalType": "string"
+ },
+ {
+ "name": "documentCount",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "memberCount",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "isParent",
+ "type": "bool",
+ "internalType": "bool"
+ },
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "childCount",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "getRoomKey",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "bytes32",
+ "internalType": "euint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "grantAccess",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "users",
+ "type": "address[]",
+ "internalType": "address[]"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "grantAccessToAllFolders",
+ "inputs": [
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "user",
+ "type": "address",
+ "internalType": "address"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "hasAccess",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "bool",
+ "internalType": "bool"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "rekeyRoom",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "revokeAccess",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "users",
+ "type": "address[]",
+ "internalType": "address[]"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "revokeAccessFromAllFolders",
+ "inputs": [
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "user",
+ "type": "address",
+ "internalType": "address"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "roomCount",
+ "inputs": [],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "roomKeyVersion",
+ "inputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "rooms",
+ "inputs": [
+ {
+ "name": "",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "owner",
+ "type": "address",
+ "internalType": "address"
+ },
+ {
+ "name": "name",
+ "type": "string",
+ "internalType": "string"
+ },
+ {
+ "name": "documentCount",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "memberCount",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "isParent",
+ "type": "bool",
+ "internalType": "bool"
+ },
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "childCount",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "function",
+ "name": "updateDocumentKeys",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ },
+ {
+ "name": "docIndices",
+ "type": "uint256[]",
+ "internalType": "uint256[]"
+ },
+ {
+ "name": "newWrappedKeys",
+ "type": "bytes[]",
+ "internalType": "bytes[]"
+ }
+ ],
+ "outputs": [],
+ "stateMutability": "nonpayable"
+ },
+ {
+ "type": "function",
+ "name": "validateAccess",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "internalType": "uint256"
+ }
+ ],
+ "outputs": [
+ {
+ "name": "",
+ "type": "bytes32",
+ "internalType": "ebool"
+ }
+ ],
+ "stateMutability": "view"
+ },
+ {
+ "type": "event",
+ "name": "DocumentAdded",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ },
+ {
+ "name": "docIndex",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ }
+ ],
+ "anonymous": false
+ },
+ {
+ "type": "event",
+ "name": "FolderCreated",
+ "inputs": [
+ {
+ "name": "parentId",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ },
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ }
+ ],
+ "anonymous": false
+ },
+ {
+ "type": "event",
+ "name": "MembershipChanged",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ }
+ ],
+ "anonymous": false
+ },
+ {
+ "type": "event",
+ "name": "RoomCreated",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ },
+ {
+ "name": "owner",
+ "type": "address",
+ "indexed": true,
+ "internalType": "address"
+ }
+ ],
+ "anonymous": false
+ },
+ {
+ "type": "event",
+ "name": "RoomRekeyed",
+ "inputs": [
+ {
+ "name": "roomId",
+ "type": "uint256",
+ "indexed": true,
+ "internalType": "uint256"
+ },
+ {
+ "name": "newVersion",
+ "type": "uint256",
+ "indexed": false,
+ "internalType": "uint256"
+ }
+ ],
+ "anonymous": false
+ },
+ {
+ "type": "error",
+ "name": "AlreadyMember",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "BatchTooLarge",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "CannotNestDeeper",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "InvalidAddress",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "IsParentRoom",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "LengthMismatch",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "NotMember",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "NotParentRoom",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "NotRoomOwner",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "RoomNotFound",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "Unauthorized",
+ "inputs": []
+ },
+ {
+ "type": "error",
+ "name": "ZamaProtocolUnsupported",
+ "inputs": []
+ }
+]
\ No newline at end of file
diff --git a/dapp/src/hooks/dataroom/index.ts b/dapp/src/hooks/dataroom/index.ts
new file mode 100644
index 0000000..b6dbbf5
--- /dev/null
+++ b/dapp/src/hooks/dataroom/index.ts
@@ -0,0 +1,17 @@
+export { ZERO_BYTES32 } from "./shared";
+export { useRoomCount } from "./useRoomCount";
+export { useRoom } from "./useRoom";
+export { useAccessibleFolders } from "./useAccessibleFolders";
+export { useDocument } from "./useDocument";
+export { useRoomMembers } from "./useRoomMembers";
+export { useRoomKey, useRoomKeyHandle } from "./useRoomKey";
+export { useHasAccessToAnyFolder } from "./useHasAccessToAnyFolder";
+export { useCreateRoom } from "./useCreateRoom";
+export { useCreateFolder } from "./useCreateFolder";
+export { useAddDocuments } from "./useAddDocuments";
+export { useGrantAccess } from "./useGrantAccess";
+export { useRevokeAccess } from "./useRevokeAccess";
+export { useGrantAccessToAllFolders } from "./useGrantAccessToAllFolders";
+export { useRevokeAccessFromAllFolders } from "./useRevokeAccessFromAllFolders";
+export { useRekeyAndRewrap, RekeyPhase } from "./useRekeyAndRewrap";
+export type { RekeyProgress } from "./useRekeyAndRewrap";
diff --git a/dapp/src/hooks/dataroom/shared.ts b/dapp/src/hooks/dataroom/shared.ts
new file mode 100644
index 0000000..08b1e3d
--- /dev/null
+++ b/dapp/src/hooks/dataroom/shared.ts
@@ -0,0 +1,28 @@
+import { useMemo } from "react";
+import type { JsonRpcSigner } from "ethers";
+import { DATAROOM_ADDRESS, CHAIN_ID } from "@/contracts";
+import { EncryptedDataRoom__factory } from "@/types";
+import type { EncryptedDataRoom } from "@/types";
+import { useEthersProvider, useEthersSigner } from "@/lib/ethers-adapter";
+
+export { CHAIN_ID, DATAROOM_ADDRESS };
+export { EncryptedDataRoom__factory };
+export type { EncryptedDataRoom };
+export { useEthersSigner };
+
+export const ZERO_BYTES32 = "0x0000000000000000000000000000000000000000000000000000000000000000";
+
+/** Read-only contract (no wallet needed). */
+export function usePublicContract(): EncryptedDataRoom | null {
+ const provider = useEthersProvider({ chainId: CHAIN_ID });
+ return useMemo(() => {
+ if (!provider) return null;
+ return EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, provider);
+ }, [provider]);
+}
+
+/** Signer-backed typed contract (needs connected wallet). */
+export async function getSignerContract(signerPromise: Promise
) {
+ const signer = await signerPromise;
+ return EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, signer);
+}
diff --git a/dapp/src/hooks/dataroom/useAccessibleFolders.ts b/dapp/src/hooks/dataroom/useAccessibleFolders.ts
new file mode 100644
index 0000000..bd46f00
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useAccessibleFolders.ts
@@ -0,0 +1,18 @@
+import { useQuery } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useAccessibleFolders(parentId: bigint | undefined, isOwner: boolean) {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ return useQuery({
+ queryKey: ["dataroom", "accessibleFolders", parentId?.toString(), isOwner],
+ queryFn: async () => {
+ const contract = await getSignerContract(signerPromise!);
+ const folderIds = await contract.getFolders(parentId!);
+ if (isOwner || folderIds.length === 0) return folderIds;
+ const flags = await Promise.all(folderIds.map((fId) => contract.hasAccess(fId)));
+ return folderIds.filter((_, i) => flags[i]);
+ },
+ enabled: !!signerPromise && parentId !== undefined,
+ structuralSharing: false,
+ });
+}
diff --git a/dapp/src/hooks/dataroom/useAddDocuments.ts b/dapp/src/hooks/dataroom/useAddDocuments.ts
new file mode 100644
index 0000000..f323d11
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useAddDocuments.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useAddDocuments() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const addDocuments = useCallback(async (roomId: bigint, cids: string[], names: string[], wrappedKeys: string[]) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.addDocuments(roomId, cids, names, wrappedKeys);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { addDocuments, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useCreateFolder.ts b/dapp/src/hooks/dataroom/useCreateFolder.ts
new file mode 100644
index 0000000..3c38a5a
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useCreateFolder.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useCreateFolder() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const createFolder = useCallback(async (parentId: bigint, name: string) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.createFolder(parentId, name);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { createFolder, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useCreateRoom.ts b/dapp/src/hooks/dataroom/useCreateRoom.ts
new file mode 100644
index 0000000..0df93ef
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useCreateRoom.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useCreateRoom() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const createRoom = useCallback(async (name: string) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.createRoom(name);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { createRoom, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useDocument.ts b/dapp/src/hooks/dataroom/useDocument.ts
new file mode 100644
index 0000000..33714dd
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useDocument.ts
@@ -0,0 +1,12 @@
+import { useQuery } from "@tanstack/react-query";
+import { usePublicContract } from "./shared";
+
+export function useDocument(roomId: bigint | undefined, docIndex: bigint | undefined) {
+ const contract = usePublicContract();
+ return useQuery({
+ queryKey: ["dataroom", "document", roomId?.toString(), docIndex?.toString()],
+ queryFn: () => contract!.getDocument(roomId!, docIndex!),
+ enabled: !!contract && roomId !== undefined && docIndex !== undefined,
+ structuralSharing: false,
+ });
+}
diff --git a/dapp/src/hooks/dataroom/useGrantAccess.ts b/dapp/src/hooks/dataroom/useGrantAccess.ts
new file mode 100644
index 0000000..2e53aff
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useGrantAccess.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useGrantAccess() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const grantAccess = useCallback(async (roomId: bigint, user: string) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.grantAccess(roomId, [user]);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { grantAccess, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useGrantAccessToAllFolders.ts b/dapp/src/hooks/dataroom/useGrantAccessToAllFolders.ts
new file mode 100644
index 0000000..443362a
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useGrantAccessToAllFolders.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useGrantAccessToAllFolders() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const grantAccessToAllFolders = useCallback(async (parentId: bigint, user: string) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.grantAccessToAllFolders(parentId, user);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { grantAccessToAllFolders, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useHasAccessToAnyFolder.ts b/dapp/src/hooks/dataroom/useHasAccessToAnyFolder.ts
new file mode 100644
index 0000000..419826f
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useHasAccessToAnyFolder.ts
@@ -0,0 +1,17 @@
+import { useQuery } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useHasAccessToAnyFolder(parentId: bigint | undefined) {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ return useQuery({
+ queryKey: ["dataroom", "hasAccessToAnyFolder", parentId?.toString()],
+ queryFn: async () => {
+ const contract = await getSignerContract(signerPromise!);
+ const folderIds = await contract.getFolders(parentId!);
+ if (folderIds.length === 0) return false;
+ const flags = await Promise.all(folderIds.map((fId) => contract.hasAccess(fId)));
+ return flags.some((flag) => flag);
+ },
+ enabled: !!signerPromise && parentId !== undefined,
+ });
+}
diff --git a/dapp/src/hooks/dataroom/useRekeyAndRewrap.ts b/dapp/src/hooks/dataroom/useRekeyAndRewrap.ts
new file mode 100644
index 0000000..c3e69b6
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRekeyAndRewrap.ts
@@ -0,0 +1,98 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+import { deriveAesKey, hexToBytes, unwrapKey, wrapKey, bytesToHex } from "@/lib/crypto";
+import { decryptRoomKey } from "@/lib/fhe";
+
+export const RekeyPhase = {
+ Idle: "idle",
+ Rekeying: "rekeying",
+ Rewrapping: "rewrapping",
+ Updating: "updating",
+ Done: "done",
+ Error: "error",
+} as const;
+
+export type RekeyPhase = (typeof RekeyPhase)[keyof typeof RekeyPhase];
+
+export type RekeyProgress = {
+ phase: RekeyPhase;
+ current: number;
+ total: number;
+ error?: string;
+};
+
+export function useRekeyAndRewrap() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [progress, setProgress] = useState({
+ phase: RekeyPhase.Idle,
+ current: 0,
+ total: 0,
+ });
+
+ const rekeyAndRewrap = useCallback(
+ async (
+ folderId: bigint,
+ documentCount: number,
+ oldRoomKeyHex: string,
+ ) => {
+ if (!signerPromise) return;
+
+ try {
+ const contract = await getSignerContract(signerPromise);
+
+ // Phase 1: Rekey on-chain
+ setProgress({ phase: RekeyPhase.Rekeying, current: 0, total: 0 });
+ const tx = await contract.rekeyRoom(folderId);
+ await tx.wait();
+
+ // If no documents, we're done
+ if (documentCount === 0) {
+ setProgress({ phase: RekeyPhase.Done, current: 0, total: 0 });
+ queryClient.invalidateQueries({ refetchType: "all" });
+ return;
+ }
+
+ const signer = await signerPromise!;
+ const newKeyHandle = await contract.getRoomKey(folderId);
+ const newKeyHex = await decryptRoomKey(newKeyHandle, signer);
+
+ // Phase 2: Re-wrap all document CEKs locally (no Storacha I/O)
+ setProgress({ phase: RekeyPhase.Rewrapping, current: 0, total: documentCount });
+ const oldWrappingKey = await deriveAesKey(hexToBytes(oldRoomKeyHex));
+ const newWrappingKey = await deriveAesKey(hexToBytes(newKeyHex));
+ const newWrappedKeys: string[] = [];
+
+ for (let i = 0; i < documentCount; i++) {
+ setProgress({ phase: RekeyPhase.Rewrapping, current: i + 1, total: documentCount });
+ const doc = await contract.getDocument(folderId, BigInt(i));
+ const wrappedCek = hexToBytes(doc.wrappedKey);
+ const cek = await unwrapKey(wrappedCek, oldWrappingKey);
+ const newWrapped = await wrapKey(cek, newWrappingKey);
+ newWrappedKeys.push(bytesToHex(newWrapped));
+ }
+
+ // Phase 3: Update all wrapped keys on-chain in a single transaction
+ setProgress({ phase: RekeyPhase.Updating, current: 0, total: documentCount });
+ const docIndices = Array.from({ length: documentCount }, (_, i) => BigInt(i));
+ const updateTx = await contract.updateDocumentKeys(folderId, docIndices, newWrappedKeys);
+ await updateTx.wait();
+ setProgress({ phase: RekeyPhase.Updating, current: documentCount, total: documentCount });
+
+ setProgress({ phase: RekeyPhase.Done, current: documentCount, total: documentCount });
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ const message = e instanceof Error ? e.message : "Unknown error";
+ setProgress((prev) => ({ ...prev, phase: RekeyPhase.Error, error: message }));
+ }
+ },
+ [signerPromise, queryClient]
+ );
+
+ const reset = useCallback(() => {
+ setProgress({ phase: RekeyPhase.Idle, current: 0, total: 0 });
+ }, []);
+
+ return { rekeyAndRewrap, progress, reset };
+}
diff --git a/dapp/src/hooks/dataroom/useRevokeAccess.ts b/dapp/src/hooks/dataroom/useRevokeAccess.ts
new file mode 100644
index 0000000..c3c306d
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRevokeAccess.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useRevokeAccess() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const revokeAccess = useCallback(async (roomId: bigint, user: string) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.revokeAccess(roomId, [user]);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { revokeAccess, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useRevokeAccessFromAllFolders.ts b/dapp/src/hooks/dataroom/useRevokeAccessFromAllFolders.ts
new file mode 100644
index 0000000..b7860bc
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRevokeAccessFromAllFolders.ts
@@ -0,0 +1,32 @@
+import { useState, useCallback } from "react";
+import { useQueryClient } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useRevokeAccessFromAllFolders() {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ const queryClient = useQueryClient();
+ const [isPending, setIsPending] = useState(false);
+ const [isConfirming, setIsConfirming] = useState(false);
+ const [error, setError] = useState(null);
+
+ const revokeAccessFromAllFolders = useCallback(async (parentId: bigint, user: string) => {
+ if (!signerPromise) return;
+ setIsPending(true);
+ setError(null);
+ try {
+ const contract = await getSignerContract(signerPromise);
+ const tx = await contract.revokeAccessFromAllFolders(parentId, user);
+ setIsPending(false);
+ setIsConfirming(true);
+ await tx.wait();
+ setIsConfirming(false);
+ queryClient.invalidateQueries({ refetchType: "all" });
+ } catch (e) {
+ setIsPending(false);
+ setIsConfirming(false);
+ setError(e as Error);
+ }
+ }, [signerPromise, queryClient]);
+
+ return { revokeAccessFromAllFolders, isPending, isConfirming, error };
+}
diff --git a/dapp/src/hooks/dataroom/useRoom.ts b/dapp/src/hooks/dataroom/useRoom.ts
new file mode 100644
index 0000000..d97f2d2
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRoom.ts
@@ -0,0 +1,12 @@
+import { useQuery } from "@tanstack/react-query";
+import { usePublicContract } from "./shared";
+
+export function useRoom(roomId: bigint | undefined) {
+ const contract = usePublicContract();
+ return useQuery({
+ queryKey: ["dataroom", "room", roomId?.toString()],
+ queryFn: () => contract!.getRoom(roomId!),
+ enabled: !!contract && roomId !== undefined,
+ structuralSharing: false,
+ });
+}
diff --git a/dapp/src/hooks/dataroom/useRoomCount.ts b/dapp/src/hooks/dataroom/useRoomCount.ts
new file mode 100644
index 0000000..60f245b
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRoomCount.ts
@@ -0,0 +1,12 @@
+import { useQuery } from "@tanstack/react-query";
+import { usePublicContract } from "./shared";
+
+export function useRoomCount() {
+ const contract = usePublicContract();
+ return useQuery({
+ queryKey: ["dataroom", "roomCount"],
+ queryFn: () => contract!.roomCount(),
+ enabled: !!contract,
+ structuralSharing: false,
+ });
+}
diff --git a/dapp/src/hooks/dataroom/useRoomKey.ts b/dapp/src/hooks/dataroom/useRoomKey.ts
new file mode 100644
index 0000000..1aaf643
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRoomKey.ts
@@ -0,0 +1,36 @@
+import { useQuery } from "@tanstack/react-query";
+import { EncryptedDataRoom__factory, DATAROOM_ADDRESS, useEthersSigner, CHAIN_ID } from "./shared";
+import { decryptRoomKey } from "@/lib/fhe";
+
+export function useRoomKey(roomId: bigint | undefined, enabled = true) {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ return useQuery({
+ queryKey: ["dataroom", "roomKey", roomId?.toString()],
+ queryFn: async () => {
+ const signer = await signerPromise!;
+ const contract = EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, signer);
+ const handle = await contract.getRoomKey(roomId!);
+ return decryptRoomKey(handle, signer);
+ },
+ enabled: !!signerPromise && roomId !== undefined && enabled,
+ staleTime: Infinity,
+ retry: false,
+ structuralSharing: false,
+ });
+}
+
+export function useRoomKeyHandle(roomId: bigint | undefined) {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ return useQuery({
+ queryKey: ["dataroom", "roomKeyHandle", roomId?.toString()],
+ queryFn: async () => {
+ const signer = await signerPromise!;
+ const contract = EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, signer);
+ return contract.getRoomKey(roomId!);
+ },
+ enabled: !!signerPromise && roomId !== undefined,
+ staleTime: Infinity,
+ retry: false,
+ structuralSharing: false,
+ });
+}
diff --git a/dapp/src/hooks/dataroom/useRoomMembers.ts b/dapp/src/hooks/dataroom/useRoomMembers.ts
new file mode 100644
index 0000000..b18214e
--- /dev/null
+++ b/dapp/src/hooks/dataroom/useRoomMembers.ts
@@ -0,0 +1,15 @@
+import { useQuery } from "@tanstack/react-query";
+import { getSignerContract, useEthersSigner, CHAIN_ID } from "./shared";
+
+export function useRoomMembers(roomId: bigint | undefined, enabled = true) {
+ const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
+ return useQuery({
+ queryKey: ["dataroom", "members", roomId?.toString()],
+ queryFn: async () => {
+ const contract = await getSignerContract(signerPromise!);
+ return contract.getMembers(roomId!);
+ },
+ enabled: !!signerPromise && roomId !== undefined && enabled,
+ structuralSharing: false,
+ });
+}
diff --git a/dapp/src/hooks/useDataRoom.ts b/dapp/src/hooks/useDataRoom.ts
deleted file mode 100644
index ff3d291..0000000
--- a/dapp/src/hooks/useDataRoom.ts
+++ /dev/null
@@ -1,407 +0,0 @@
-import { useMemo, useState, useCallback } from "react";
-import { useQuery, useQueryClient } from "@tanstack/react-query";
-import type { JsonRpcSigner } from "ethers";
-import { DATAROOM_ADDRESS, CHAIN_ID } from "@/contracts";
-import { EncryptedDataRoom__factory } from "@/types";
-import type { EncryptedDataRoom } from "@/types";
-import { useEthersProvider, useEthersSigner } from "@/lib/ethers-adapter";
-import { deriveAesKey, hexToBytes, unwrapKey, wrapKey, bytesToHex } from "@/lib/crypto";
-import { decryptRoomKey } from "@/lib/fhe";
-
-export const ZERO_BYTES32 = "0x0000000000000000000000000000000000000000000000000000000000000000";
-
-/** Read-only contract (no wallet needed). */
-function usePublicContract(): EncryptedDataRoom | null {
- const provider = useEthersProvider({ chainId: CHAIN_ID });
- return useMemo(() => {
- if (!provider) return null;
- return EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, provider);
- }, [provider]);
-}
-
-/** Signer-backed typed contract (needs connected wallet). */
-async function getSignerContract(signerPromise: Promise) {
- const signer = await signerPromise;
- return EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, signer);
-}
-
-export function useRoomCount() {
- const contract = usePublicContract();
- return useQuery({
- queryKey: ["dataroom", "roomCount"],
- queryFn: () => contract!.roomCount(),
- enabled: !!contract,
- structuralSharing: false,
- });
-}
-
-export function useRoom(roomId: bigint | undefined) {
- const contract = usePublicContract();
- return useQuery({
- queryKey: ["dataroom", "room", roomId?.toString()],
- queryFn: () => contract!.getRoom(roomId!),
- enabled: !!contract && roomId !== undefined,
- structuralSharing: false,
- });
-}
-
-export function useFolders(parentId: bigint | undefined) {
- const contract = usePublicContract();
- return useQuery({
- queryKey: ["dataroom", "folders", parentId?.toString()],
- queryFn: () => contract!.getFolders(parentId!),
- enabled: !!contract && parentId !== undefined,
- structuralSharing: false,
- });
-}
-
-export function useDocument(roomId: bigint | undefined, docIndex: bigint | undefined) {
- const contract = usePublicContract();
- return useQuery({
- queryKey: ["dataroom", "document", roomId?.toString(), docIndex?.toString()],
- queryFn: () => contract!.getDocument(roomId!, docIndex!),
- enabled: !!contract && roomId !== undefined && docIndex !== undefined,
- structuralSharing: false,
- });
-}
-
-export function useRoomMembers(roomId: bigint | undefined, enabled = true) {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- return useQuery({
- queryKey: ["dataroom", "members", roomId?.toString()],
- queryFn: async () => {
- const contract = await getSignerContract(signerPromise!);
- return contract.getMembers(roomId!);
- },
- enabled: !!signerPromise && roomId !== undefined && enabled,
- structuralSharing: false,
- });
-}
-
-export function useRoomKey(roomId: bigint | undefined, enabled = true) {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- return useQuery({
- queryKey: ["dataroom", "roomKey", roomId?.toString()],
- queryFn: async () => {
- const signer = await signerPromise!;
- const contract = EncryptedDataRoom__factory.connect(DATAROOM_ADDRESS, signer);
- const handle = await contract.getRoomKey(roomId!);
- return decryptRoomKey(handle, signer);
- },
- enabled: !!signerPromise && roomId !== undefined && enabled,
- staleTime: Infinity,
- structuralSharing: false,
- });
-}
-
-
-export function useHasAccessToAnyFolder(parentId: bigint | undefined) {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- return useQuery({
- queryKey: ["dataroom", "hasAccessToAnyFolder", parentId?.toString()],
- queryFn: async () => {
- const contract = await getSignerContract(signerPromise!);
- const folderIds = await contract.getFolders(parentId!);
- if (folderIds.length === 0) return false;
- const flags = await Promise.all(folderIds.map((fId) => contract.validateAccess(fId)));
- return flags.some((flag) => flag !== ZERO_BYTES32);
- },
- enabled: !!signerPromise && parentId !== undefined,
- });
-}
-
-export function useCreateRoom() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const createRoom = useCallback(async (name: string) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.createRoom(name);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { createRoom, isPending, isConfirming, error };
-}
-
-export function useCreateFolder() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const createFolder = useCallback(async (parentId: bigint, name: string) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.createFolder(parentId, name);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { createFolder, isPending, isConfirming, error };
-}
-
-export function useAddDocuments() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const addDocuments = useCallback(async (roomId: bigint, cids: string[], names: string[], wrappedKeys: string[]) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.addDocuments(roomId, cids, names, wrappedKeys);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { addDocuments, isPending, isConfirming, error };
-}
-
-export function useGrantAccess() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const grantAccess = useCallback(async (roomId: bigint, user: string) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.grantAccess(roomId, [user]);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { grantAccess, isPending, isConfirming, error };
-}
-
-export function useRevokeAccess() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const revokeAccess = useCallback(async (roomId: bigint, user: string) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.revokeAccess(roomId, [user]);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { revokeAccess, isPending, isConfirming, error };
-}
-
-export function useGrantAccessToAllFolders() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const grantAccessToAllFolders = useCallback(async (parentId: bigint, user: string) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.grantAccessToAllFolders(parentId, user);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { grantAccessToAllFolders, isPending, isConfirming, error };
-}
-
-export function useRevokeAccessFromAllFolders() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [isPending, setIsPending] = useState(false);
- const [isConfirming, setIsConfirming] = useState(false);
- const [error, setError] = useState(null);
-
- const revokeAccessFromAllFolders = useCallback(async (parentId: bigint, user: string) => {
- if (!signerPromise) return;
- setIsPending(true);
- setError(null);
- try {
- const contract = await getSignerContract(signerPromise);
- const tx = await contract.revokeAccessFromAllFolders(parentId, user);
- setIsPending(false);
- setIsConfirming(true);
- await tx.wait();
- setIsConfirming(false);
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- setIsPending(false);
- setIsConfirming(false);
- setError(e as Error);
- }
- }, [signerPromise, queryClient]);
-
- return { revokeAccessFromAllFolders, isPending, isConfirming, error };
-}
-
-export const RekeyPhase = {
- Idle: "idle",
- Rekeying: "rekeying",
- Rewrapping: "rewrapping",
- Updating: "updating",
- Done: "done",
- Error: "error",
-} as const;
-
-export type RekeyPhase = (typeof RekeyPhase)[keyof typeof RekeyPhase];
-
-export type RekeyProgress = {
- phase: RekeyPhase;
- current: number;
- total: number;
- error?: string;
-};
-
-export function useRekeyAndRewrap() {
- const signerPromise = useEthersSigner({ chainId: CHAIN_ID });
- const queryClient = useQueryClient();
- const [progress, setProgress] = useState({
- phase: RekeyPhase.Idle,
- current: 0,
- total: 0,
- });
-
- const rekeyAndRewrap = useCallback(
- async (
- folderId: bigint,
- documentCount: number,
- oldRoomKeyHex: string,
- ) => {
- if (!signerPromise) return;
-
- try {
- const contract = await getSignerContract(signerPromise);
-
- // Phase 1: Rekey on-chain
- setProgress({ phase: RekeyPhase.Rekeying, current: 0, total: 0 });
- const tx = await contract.rekeyRoom(folderId);
- await tx.wait();
-
- // If no documents, we're done
- if (documentCount === 0) {
- setProgress({ phase: RekeyPhase.Done, current: 0, total: 0 });
- queryClient.invalidateQueries({ refetchType: "all" });
- return;
- }
-
- const signer = await signerPromise!;
- const newKeyHandle = await contract.getRoomKey(folderId);
- const newKeyHex = await decryptRoomKey(newKeyHandle, signer);
-
- // Phase 2: Re-wrap all document CEKs locally (no Storacha I/O)
- setProgress({ phase: RekeyPhase.Rewrapping, current: 0, total: documentCount });
- const oldWrappingKey = await deriveAesKey(hexToBytes(oldRoomKeyHex));
- const newWrappingKey = await deriveAesKey(hexToBytes(newKeyHex));
- const newWrappedKeys: string[] = [];
-
- for (let i = 0; i < documentCount; i++) {
- setProgress({ phase: RekeyPhase.Rewrapping, current: i + 1, total: documentCount });
- const doc = await contract.getDocument(folderId, BigInt(i));
- const wrappedCek = hexToBytes(doc.wrappedKey);
- const cek = await unwrapKey(wrappedCek, oldWrappingKey);
- const newWrapped = await wrapKey(cek, newWrappingKey);
- newWrappedKeys.push(bytesToHex(newWrapped));
- }
-
- // Phase 3: Update all wrapped keys on-chain in a single transaction
- setProgress({ phase: RekeyPhase.Updating, current: 0, total: documentCount });
- const docIndices = Array.from({ length: documentCount }, (_, i) => BigInt(i));
- const updateTx = await contract.updateDocumentKeys(folderId, docIndices, newWrappedKeys);
- await updateTx.wait();
- setProgress({ phase: RekeyPhase.Updating, current: documentCount, total: documentCount });
-
- setProgress({ phase: RekeyPhase.Done, current: documentCount, total: documentCount });
- queryClient.invalidateQueries({ refetchType: "all" });
- } catch (e) {
- const message = e instanceof Error ? e.message : "Unknown error";
- setProgress((prev) => ({ ...prev, phase: RekeyPhase.Error, error: message }));
- }
- },
- [signerPromise, queryClient]
- );
-
- const reset = useCallback(() => {
- setProgress({ phase: RekeyPhase.Idle, current: 0, total: 0 });
- }, []);
-
- return { rekeyAndRewrap, progress, reset };
-}
diff --git a/dapp/src/lib/crypto.ts b/dapp/src/lib/crypto.ts
index f2ffc30..4ba6760 100644
--- a/dapp/src/lib/crypto.ts
+++ b/dapp/src/lib/crypto.ts
@@ -88,6 +88,7 @@ export async function wrapKey(cek: Uint8Array, wrappingKey: CryptoKey): Promise<
/** Unwrap (decrypt) a wrapped CEK. Input is IV‖ciphertext‖tag. */
export async function unwrapKey(wrapped: Uint8Array, wrappingKey: CryptoKey): Promise {
+ if (wrapped.length < IV_BYTES + 16) throw new Error("Wrapped key too short");
const iv = wrapped.slice(0, IV_BYTES);
const ciphertext = wrapped.slice(IV_BYTES);
const plaintext = await crypto.subtle.decrypt({ name: ALGO, iv }, wrappingKey, ciphertext);
diff --git a/dapp/src/lib/fhe.ts b/dapp/src/lib/fhe.ts
index 7c53780..bd4360e 100644
--- a/dapp/src/lib/fhe.ts
+++ b/dapp/src/lib/fhe.ts
@@ -1,5 +1,3 @@
-import { createInstance, SepoliaConfig, MainnetConfig } from "@zama-fhe/relayer-sdk/web";
-import type { FhevmInstance } from "@zama-fhe/relayer-sdk/web";
import type { JsonRpcSigner } from "ethers";
import { CHAIN_ID, DATAROOM_ADDRESS } from "@/contracts";
@@ -12,26 +10,47 @@ const rpcUrls: Record = {
[1]: import.meta.env.VITE_RPC_URL || "https://eth.llamarpc.com",
};
-const networkConfigs: Record = {
- [11155111]: SepoliaConfig,
- [1]: MainnetConfig,
-};
+// Load the relayer SDK UMD bundle from Zama's CDN. This handles WASM init internally
+const SDK_CDN_URL = "https://cdn.zama.org/relayer-sdk-js/0.4.2/relayer-sdk-js.umd.cjs";
+function loadSDKScript(): Promise {
+ return new Promise((resolve, reject) => {
+ const w = window as unknown as Record;
+ if (w.relayerSDK) { resolve(); return; }
+ const script = document.createElement("script");
+ script.src = SDK_CDN_URL;
+ script.onload = () => resolve();
+ script.onerror = () => reject(new Error(`Failed to load relayer SDK from ${SDK_CDN_URL}`));
+ document.head.appendChild(script);
+ });
+}
-let instancePromise: Promise | null = null;
+// eslint-disable-next-line @typescript-eslint/no-explicit-any
+let instancePromise: Promise | null = null;
-function getInstance(): Promise {
+async function getInstance() {
if (!instancePromise) {
- const config = networkConfigs[CHAIN_ID];
- const network = rpcUrls[CHAIN_ID];
- if (!config || !network) {
- throw new Error(`No FHE config for chain ${CHAIN_ID}. Supported: Sepolia (11155111), Mainnet (1).`);
- }
- instancePromise = createInstance({ ...config, network });
+ instancePromise = (async () => {
+ await loadSDKScript();
+ const { initSDK, createInstance, SepoliaConfig, MainnetConfig } =
+ await import("@zama-fhe/relayer-sdk/bundle");
+
+ const presets: Record = {
+ [11155111]: SepoliaConfig,
+ [1]: MainnetConfig,
+ };
+ const preset = presets[CHAIN_ID];
+ const network = rpcUrls[CHAIN_ID];
+ if (!preset || !network) {
+ throw new Error(`No FHE config for chain ${CHAIN_ID}. Supported: Sepolia (11155111), Mainnet (1).`);
+ }
+
+ await initSDK();
+ return createInstance({ ...preset, network });
+ })();
}
return instancePromise;
}
-
const CACHE_PREFIX = "fhe:";
function getCached(handle: string): string | null {
@@ -42,6 +61,10 @@ function getCached(handle: string): string | null {
}
}
+export function hasCachedKey(handle: string): boolean {
+ return getCached(handle) !== null;
+}
+
function setCached(handle: string, hex: string): void {
try {
sessionStorage.setItem(CACHE_PREFIX + handle.toLowerCase(), hex);
@@ -97,11 +120,6 @@ export async function decryptEuint256(
return hex;
}
-/**
- * Convenience: decrypt the room key for a folder.
- * On mock chains (Anvil), this is a no-op — the handle IS the key.
- * On FHE chains, performs the full user decryption flow.
- */
export async function decryptRoomKey(
handle: string,
signer: JsonRpcSigner,
diff --git a/dapp/src/pages/Dashboard/components/RoomCard.tsx b/dapp/src/pages/Dashboard/components/RoomCard.tsx
index c0d9e43..5175f85 100644
--- a/dapp/src/pages/Dashboard/components/RoomCard.tsx
+++ b/dapp/src/pages/Dashboard/components/RoomCard.tsx
@@ -1,6 +1,6 @@
import { Link } from "react-router-dom";
import { ChevronRight, FolderOpen } from "lucide-react";
-import { useRoom } from "@/hooks/useDataRoom";
+import { useRoom } from "@/hooks/dataroom";
import { CopyableAddress } from "@/components/CopyableAddress";
export function RoomCard({ roomId }: { roomId: bigint }) {
diff --git a/dapp/src/pages/Dashboard/index.tsx b/dapp/src/pages/Dashboard/index.tsx
index d9fdf6c..b1f4313 100644
--- a/dapp/src/pages/Dashboard/index.tsx
+++ b/dapp/src/pages/Dashboard/index.tsx
@@ -1,7 +1,7 @@
import { useState } from "react";
import { useAccount } from "wagmi";
import { Plus, FolderLock, Loader2 } from "lucide-react";
-import { useRoomCount, useCreateRoom } from "@/hooks/useDataRoom";
+import { useRoomCount, useCreateRoom } from "@/hooks/dataroom";
import { RoomCard } from "./components/RoomCard";
export default function Dashboard() {
@@ -74,6 +74,13 @@ export default function Dashboard() {