d72323b1c6
Big-picture changes since 01be8e7:
New routes — /trump /btc /kol /trades /analytics /archive plus four
SEO landing pages (/methodology /glossary /case-studies /contact),
all served under /[locale]. Each has dedicated metadata + JSON-LD.
KOL page (new) — DigestWidget + OnchainWidget + TalkVsTradesWidget,
filter by handle/ticker, click-through to per-post detail with the
original AI-extracted ticker/conviction/quote.
BTC page (new) — tabbed: macro-bottom (AHR999 + 200WMA + Pi Cycle)
and funding-rate reversal, with live sparkline + threshold bands.
Telegram card on Settings — wallet-link code generation, status,
disconnect. Preferences moved into the bot itself (/trump /btc etc.)
so the card stays minimal.
SignalMonitor (new) — ETH/LINK Bollinger breakout monitor in its own
component, shares the singleton WsProvider so no second WS opens.
WS singleton refactor (lib/wsContext) — shared WsProvider + useWsSubscribe
hook. Cleanup now actively closes the socket on unmount; previously the
local `ws` couldn't be reached from cleanup and leaked one connection
per StrictMode remount.
OpenPositions polling no longer pops MetaMask in the background —
splits into load('first') for user-initiated and load('poll') that
uses getCachedViewEnvelope without signing.
i18n shelved — proxy.ts (Next 16 middleware rename) wires next-intl
but only Navbar + layout footer have translations. Rest of UI used
isZh ternary scattered across 28 files. All `const isZh = locale === 'zh'`
flipped to `const isZh = false` so every site renders English; Chinese
branches kept as dead code so revival is one regex away.
LanguageSwitch hidden but file kept. zh-CN hreflang removed from
metadata + sitemap to avoid duplicate-content penalties.
Wallet error handling — lib/walletError.ts: isUserRejection walks EIP-1193
code 4001 + .cause chain; previous string-match for "reject"/"denied"
broke for users running MetaMask in non-English UIs. 12 call sites
migrated across 5 components.
PWA icons — app/icon.tsx + app/apple-icon.tsx render the brand "α" via
Next's ImageResponse so no static PNG asset is required. manifest.ts
references /icon and /apple-icon dynamic routes.
OG image + sitemap + robots — dynamic 1200×630 OG card; robots blocks
both /en/settings and /zh/settings; sitemap only emits /en routes;
JSON-LD covers SoftwareApplication + Organization + 10-Q FAQPage.
Landing page polish — Launch Dashboard button stripped of magnetic
hover + shimmer + lift + glow expansion (multiple users found it busy);
hero scramble alphabet swapped to alphanumeric (was block characters);
"15 KOL feeds" copy updated to 19 in 5 places.
PostCards source icons — new entries for btc_bottom_reversal,
funding_reversal, kol_divergence so they no longer fall through to
the generic "first letter" fallback.
Archive page filter — excludes funding_reversal + kol_divergence
(previously only excluded truth + btc_bottom_reversal so new live
signals leaked into the legacy archive).
Cache + skeleton loading — lib/cache.ts SWR module with per-key TTL,
applied across the major pages so navigation feels instant.
SignConfirmSheet — 4 hardcoded Chinese strings translated to English
(English users were seeing zh-only "需要钱包签名" etc).
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
116 lines
4.0 KiB
TypeScript
116 lines
4.0 KiB
TypeScript
/**
|
|
* Signed-request helper. Must match backend/app/services/signed_request.py exactly.
|
|
*
|
|
* Message format:
|
|
* TrumpSignal · {ACTION}
|
|
* wallet: {wallet_lowercase}
|
|
* timestamp: {ms}
|
|
* body: {sha256_hex or "-"}
|
|
*/
|
|
|
|
async function sha256Hex(text: string): Promise<string> {
|
|
const buf = await crypto.subtle.digest('SHA-256', new TextEncoder().encode(text))
|
|
return Array.from(new Uint8Array(buf))
|
|
.map((b) => b.toString(16).padStart(2, '0'))
|
|
.join('')
|
|
}
|
|
|
|
/** Canonical JSON: sorted keys, no whitespace. Must match Python's json.dumps(..., sort_keys, separators). */
|
|
function canonicalJson(v: unknown): string {
|
|
if (v === null || typeof v !== 'object') return JSON.stringify(v)
|
|
if (Array.isArray(v)) return '[' + v.map(canonicalJson).join(',') + ']'
|
|
const keys = Object.keys(v as object).sort()
|
|
return '{' + keys.map((k) => JSON.stringify(k) + ':' + canonicalJson((v as Record<string, unknown>)[k])).join(',') + '}'
|
|
}
|
|
|
|
export async function bodyHash(body: unknown | null): Promise<string> {
|
|
if (body === null || body === undefined) return '-'
|
|
return sha256Hex(canonicalJson(body))
|
|
}
|
|
|
|
export async function buildSignMessage(
|
|
action: string,
|
|
wallet: string,
|
|
timestampMs: number,
|
|
body: unknown | null,
|
|
): Promise<string> {
|
|
const h = await bodyHash(body)
|
|
return `TrumpSignal · ${action}\nwallet: ${wallet.toLowerCase()}\ntimestamp: ${timestampMs}\nbody: ${h}`
|
|
}
|
|
|
|
export interface SignedEnvelope {
|
|
wallet: string
|
|
timestamp: number
|
|
signature: string
|
|
}
|
|
|
|
/**
|
|
* Produce {timestamp, signature} for a given action + optional body.
|
|
* Caller supplies wagmi's `signMessageAsync`.
|
|
*/
|
|
/**
|
|
* Get-or-create a cached "view" envelope for a wallet. Reused across page loads
|
|
* within a 4-minute window (server accepts 5-min skew). Backend's replay-guard
|
|
* is disabled for the view action so the same sig can be used multiple times.
|
|
*/
|
|
const VIEW_TTL_MS = 20 * 60 * 1000 // 20 min — backend's replay-guard is disabled for view actions
|
|
|
|
/**
|
|
* Read-only: returns a cached, not-yet-expired view envelope if one exists.
|
|
* Never signs — never triggers a wallet popup. Returns null if no fresh cache.
|
|
*/
|
|
export function getCachedViewEnvelope(action: string, wallet: string): SignedEnvelope | null {
|
|
if (typeof window === 'undefined') return null
|
|
const cacheKey = `ts:view:${action}:${wallet.toLowerCase()}`
|
|
const raw = sessionStorage.getItem(cacheKey)
|
|
if (!raw) return null
|
|
try {
|
|
const env = JSON.parse(raw) as SignedEnvelope
|
|
if (Date.now() - env.timestamp < VIEW_TTL_MS) return env
|
|
} catch (err) {
|
|
console.warn('[signedRequest] corrupt cached envelope, ignoring', err)
|
|
sessionStorage.removeItem(cacheKey)
|
|
}
|
|
return null
|
|
}
|
|
|
|
export async function getOrCreateViewEnvelope(params: {
|
|
action: string
|
|
wallet: string
|
|
signMessageAsync: (args: { message: string }) => Promise<string>
|
|
}): Promise<SignedEnvelope> {
|
|
if (typeof window === 'undefined') throw new Error('view envelope requires browser')
|
|
const wallet = params.wallet.toLowerCase()
|
|
const cacheKey = `ts:view:${params.action}:${wallet}`
|
|
const raw = sessionStorage.getItem(cacheKey)
|
|
if (raw) {
|
|
try {
|
|
const env = JSON.parse(raw) as SignedEnvelope
|
|
if (Date.now() - env.timestamp < VIEW_TTL_MS) return env
|
|
} catch (err) {
|
|
console.warn('[signedRequest] corrupt cached envelope, ignoring', err)
|
|
sessionStorage.removeItem(cacheKey)
|
|
}
|
|
}
|
|
const env = await signRequest({
|
|
action: params.action,
|
|
wallet,
|
|
body: null,
|
|
signMessageAsync: params.signMessageAsync,
|
|
})
|
|
sessionStorage.setItem(cacheKey, JSON.stringify(env))
|
|
return env
|
|
}
|
|
|
|
export async function signRequest(params: {
|
|
action: string
|
|
wallet: string
|
|
body: unknown | null
|
|
signMessageAsync: (args: { message: string }) => Promise<string>
|
|
}): Promise<SignedEnvelope> {
|
|
const timestamp = Date.now()
|
|
const message = await buildSignMessage(params.action, params.wallet, timestamp, params.body)
|
|
const signature = await params.signMessageAsync({ message })
|
|
return { wallet: params.wallet.toLowerCase(), timestamp, signature }
|
|
}
|