# Sign-in With Ethereum
### Examples
{% tabs %}
{% tab title="curl" %}
```cpp
curl --location --request POST "localhost:9680/rpc" \
--header 'Content-Type: application/json' \
--data-raw '{
"request": {
"method": "personal_sign",
"params": [
"localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z",
"0x638105AA1B69406560f6428aEFACe3DB9da83c64"
]
},
"chain": {
"chainId": "1"
}
}'
```
{% endtab %}
{% tab title="Unity" %}
```cpp
using System.Collections;
using UnityEngine;
using UnityEngine.Networking;
public class PersonalSign : MonoBehaviour
{
void Start()
{
StartCoroutine(Sign());
}
private IEnumerator Sign()
{
string jsonString = "{ \"request\": { \"method\": \"personal_sign\", \"params\": [\"localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z\", \"0x638105AA1B69406560f6428aEFACe3DB9da83c64\"] }, \"chain\": { \"chainId\": \"1\" } }";
byte[] jsonBytes = System.Text.Encoding.UTF8.GetBytes(jsonString);
UnityWebRequest request = new UnityWebRequest("localhost:9680/rpc", "POST");
request.uploadHandler = new UploadHandlerRaw(jsonBytes);
request.downloadHandler = new DownloadHandlerBuffer();
request.SetRequestHeader("Content-Type", "application/json");
yield return request.SendWebRequest();
Debug.Log(request.error);
Debug.Log(request.downloadHandler.text);
}
}
```
{% endtab %}
{% tab title="Unreal C++" %}
```cpp
#include "HyperPlayUtils.h"
#include "Endpoints/RpcCall.h"
void OnRpcResponse(FString Response, int32 StatusCode)
{
const bool bWasSuccessful = HyperPlayUtils::StatusCodeIsSuccess(StatusCode);
UE_LOG(LogTemp, Display, TEXT("Rpc Get Balance Success: %s"), bWasSuccessful ? "true" : "false");
UE_LOG(LogTemp, Display, TEXT("Rpc Get Balance Response: %s"), *Response);
}
int main(){
const FString request("{ \"request\":{ \"method\": \"personal_sign\", \"params\": [\"localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z\", \"0x638105AA1B69406560f6428aEFACe3DB9da83c64\"] }, \"chain\":{ \"chainId\":\"1\" } }");
URpcCall* RpcCallInstance = URpcCall::RpcCall(nullptr,
request,
5);
RpcCallInstance->GetOnCompletedDelegate().AddRaw(this, &OnRpcResponse);
RpcCallInstance->Activate();
}
```
{% endtab %}
{% endtabs %}
### Sample Response
The following signature will be returned:
```
0x85583ed06e09efd25f0f5b9f948e092f70753182ccd36cfcaa5aa6f7dde6916d7a8fbc367180573f32a6f75410ee99ef202300d991cecac53a6a86baa1c2f1251b
```
### Overview
Sign-in with Ethereum (**SIWE**) is a form of authentication that enables users to control their digital identity without relying on a traditional intermediary. Here's how it generally works:
1. **Ethereum Account**: To use "Sign in with Ethereum," you need an Ethereum account. This typically involves creating a digital wallet that generates a unique address and cryptographic keys. The wallet stores your private key securely and allows you to interact with the Ethereum network.
2. **Application Integration**: Applications or services that support "Sign in with Ethereum" integrate with the Ethereum blockchain by utilizing the Ethereum Name Service (ENS) or other similar systems. ENS provides human-readable names for Ethereum addresses, making it easier for users to identify and connect their Ethereum accounts.
3. **User Authentication**: When you choose to sign in with Ethereum on a supported application, it initiates a request to your Ethereum wallet to authenticate your identity. The application generates a unique cryptographic challenge or request message.
4. **Wallet Interaction**: Your Ethereum wallet receives the authentication request message and prompts you to confirm the action. You typically need to approve the message by providing your wallet's digital signature using your private key to sign in. This signature serves as proof of your ownership of the Ethereum account.
5. **Verification and Access**: Once you provide the signed message, the application validates the signature using the corresponding public key associated with your Ethereum account. If the verification is successful, the application grants you access to its services, treating your Ethereum account as a form of authentication. It's important to note that while "Sign in with Ethereum" provides benefits in terms of decentralization and security; it's still essential to exercise caution and protect your private key to prevent unauthorized access to your Ethereum account.
### Let's review the process within HyperPlay
#### This will be split into three parts
* Creating the message
* Signing the message
* Verifying the signature
{% tabs %}
{% tab title="Creating the message" %}
The server will create a message for the client to sign.
```cpp
const siwe = require("siwe");
const message = new siwe.SiweMessage({
domain: "localhost:8080",
address: "0x6Ee9894c677EFa1c56392e5E7533DE76004C8D94", // address of signer
statement: "This is a test statement",
uri: "http://localhost:8080",
version: "1",
chainId: "1",
});
const siweMessage = message.prepareMessage();
console.log(siweMessage);
```
**The *****siweMessage***** will look something like this:**
```cpp
localhost:8080 wants you to sign in with your Ethereum account:
0x6Ee9894c677EFa1c56392e5E7533DE76004C8D94
This is a test statement
URI: http://localhost:8080
Version: 1
Chain ID: 1
Nonce: BIiotOrXWUldCD6Z5
Issued At: 2023-05-09T22:09:03.350Z
```
**Or**
```cpp
localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z
```
{% endtab %}
{% tab title="Signing the message" %}
The client will use their wallet to sign the message.
#### Browser
```cpp
```
**There should be a popup to sign**
**cURL with HyperPlay**
```cpp
curl --location --request POST "localhost:9680/rpc" \
--header 'Content-Type: application/json' \
--data-raw '{
"request": {
"method": "personal_sign",
"params": [
"localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z",
"0x638105AA1B69406560f6428aEFACe3DB9da83c64"
]
},
"chain": {
"chainId": "1"
}
}'
```
**If connected to MetaMask SDK, there should be a popup on mobile to sign.**
#### Using Unity with HyperPlay
```cpp
using System.Collections;
using UnityEngine;
using UnityEngine.Networking;
public class PersonalSign : MonoBehaviour
{
void Start()
{
StartCoroutine(Sign());
}
private IEnumerator Sign()
{
string jsonString = "{ \"request\": { \"method\": \"personal_sign\", \"params\": [\"localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z\", \"0x638105AA1B69406560f6428aEFACe3DB9da83c64\"] }, \"chain\": { \"chainId\": \"1\" } }";
byte[] jsonBytes = System.Text.Encoding.UTF8.GetBytes(jsonString);
UnityWebRequest request = new UnityWebRequest("localhost:9680/rpc", "POST");
request.uploadHandler = new UploadHandlerRaw(jsonBytes);
request.downloadHandler = new DownloadHandlerBuffer();
request.SetRequestHeader("Content-Type", "application/json");
yield return request.SendWebRequest();
Debug.Log(request.error);
Debug.Log(request.downloadHandler.text);
}
}
```
#### Using Unreal C++ with HyperPlay
```cpp
#include "HyperPlayUtils.h"
#include "Endpoints/RpcCall.h"
void OnRpcResponse(FString Response, int32 StatusCode)
{
const bool bWasSuccessful = HyperPlayUtils::StatusCodeIsSuccess(StatusCode);
UE_LOG(LogTemp, Display, TEXT("Rpc Get Balance Success: %s"), bWasSuccessful ? "true" : "false");
UE_LOG(LogTemp, Display, TEXT("Rpc Get Balance Response: %s"), *Response);
}
int main(){
const FString request("{ \"request\":{ \"method\": \"personal_sign\", \"params\": [\"localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z\", \"0x638105AA1B69406560f6428aEFACe3DB9da83c64\"] }, \"chain\":{ \"chainId\":\"1\" } }");
URpcCall* RpcCallInstance = URpcCall::RpcCall(nullptr,
request,
5);
RpcCallInstance->GetOnCompletedDelegate().AddRaw(this, &OnRpcResponse);
RpcCallInstance->Activate();
}
```
{% endtab %}
{% tab title="Verifying the signature" %}
**The signature will look something like this:**
```cpp
0x85583ed06e09efd25f0f5b9f948e092f70753182ccd36cfcaa5aa6f7dde6916d7a8fbc367180573f32a6f75410ee99ef202300d991cecac53a6a86baa1c2f1251b
```
\
**The message and signature will be sent back to the server to verify.**
```cpp
const siwe = require("siwe");
(async () => {
const message = "localhost:8080 wants you to sign in with your Ethereum account:\n0x638105AA1B69406560f6428aEFACe3DB9da83c64\n\nSign in with Ethereum to the app.\n\nURI: http://localhost:8080\nVersion: 1\nChain ID: 1\nNonce: BIiotOrXWUldCD6Z5\nIssued At: 2023-05-09T22:09:03.350Z";
const signature = "0x85583ed06e09efd25f0f5b9f948e092f70753182ccd36cfcaa5aa6f7dde6916d7a8fbc367180573f32a6f75410ee99ef202300d991cecac53a6a86baa1c2f1251b";
const siweMessage = new siwe.SiweMessage(message);
const verify = await siweMessage.verify({ signature });
console.log({ verify });
})();
```
**Is verified**
```cpp
{
verify: {
success: true,
data: SiweMessage {
domain: 'localhost:8080',
address: '0x638105AA1B69406560f6428aEFACe3DB9da83c64',
statement: 'Sign in with Ethereum to the app.',
uri: 'http://localhost:8080',
version: '1',
nonce: 'BIiotOrXWUldCD6Z5',
issuedAt: '2023-05-09T22:09:03.350Z',
expirationTime: undefined,
notBefore: undefined,
requestId: undefined,
chainId: 1,
resources: undefined
}
}
}
```
**Once verified, the server will grant appropriate access.**
{% endtab %}
{% endtabs %}
### Conclusion
By leveraging the power of Ethereum's blockchain technology, this decentralized login mechanism offers enhanced security, data privacy, and user control. It streamlines the authentication process, promoting interoperability and convenience across various platforms. Moreover, the trust and transparency inherent in Ethereum's blockchain foster confidence in the authentication process.
### **Sources**
{% embed url="" %}
{% embed url="" %}
{% embed url="" %}
