Skip to main content

Register accounts

Account registration allows you to create new accounts within the system. There are two methods for registering accounts: using an admin operation or defining a custom operation.

Registering with FT4 admin operation

The FT4 admin operation, ft4.admin.register_account requires an auth descriptor as a parameter. An auth descriptor specifies who can access an account, what actions they're allowed to perform, and the lifetime of the auth descriptor. The access to an account is determined by a public key when FT authentication (native postchain signatures) is used or an EVM account address when an EVM wallet is used for authentication. The actions allowed by the auth descriptor are specified with authorization keys, and expiration rules determine the activation and validity duration of the auth descriptor. For more information, see auth descriptor.

To register an account using FT authentication, follow these steps:

  1. Generate a new keypair for the account:

    chr keygen > user.keypair

  2. Retrieve the generated public key:

    grep pubkey user.keypair

    The output would be in the following format:

    pubkey:    0351D4F299E3D33EC745C9F3C2F74934960F58411BE8BAE52A1E6EC8D0BA26AEDB

  3. Register the account using the FT4 admin operation:

    chr tx ft4.admin.register_account \
        '[0, [["A","T"], x"0351D4F299E3D33EC745C9F3C2F74934960F58411BE8BAE52A1E6EC8D0BA26AEDB"], null]' \
        --await --secret ft4-admin.keypair

    In the above command, 0 represents a single signature auth descriptor, while A (account) and T (transfer) are auth flags defined in the FT library. It's important to note that when calling FT account operations, such as ft4.add_auth_descriptor or ft4.delete_auth_descriptor, the authentication'll fail unless the auth descriptor used has the A flag. Similarly, when calling the transfer operation, the transfer'll be rejected if the auth descriptor doesn't have the T flag.

  4. You can add a query that returns all accounts to verify if the account exists. Add the following query to your code:

    query get_all_accounts() = ft4.acc.account @* {} (.id);

  5. Update and wait for the blockchain to reflect the changes:

    chr node update

  6. You can now execute the query to retrieve all accounts:

    chr query get_all_accounts

    The output'll display the account ID(s), such as:

    [x"5E2488889F72939DD4D0A034FB91893ACBF14C7EDBCEF2A9F5C621A07169EAD2"]

Registering with a custom operation

When registering an account with a custom operation, it's essential to protect the operation to prevent potential spam attacks on the blockchain. In this example, we require users to provide a voucher during registration. To enable this capability, we must create a register and an admin operation to add vouchers.

  1. Define the voucher entity and the add_voucher operation in your code:

    entity voucher {
      hash: byte_array;
      mutable is_used: boolean = false;
    }

    operation add_voucher(hash: byte_array) {
      ft4.admin.require_admin();
      create voucher(hash);
    }

  2. Define the register_account operation, which includes voucher validation and account creation:

    operation register_account(ft4.acc.auth_descriptor, voucher_code: text) {
      // extract pubkey from auth descriptor
      val pubkey = byte_array.from_gtv(auth_descriptor.args[1]);

      // check if provided key is signer
      op_context.is_signer(pubkey);

      val hash = voucher_code.hash();
      val voucher = require(
        voucher @? { hash },
        "Provided voucher with code <%s> does not exist".format(voucher_code)
      );
      require(
        not voucher.is_used,
        "Provided voucher with code <%s> is already used".format(voucher_code)
      );
      voucher.is_used = true;
      ft4.acc.create_account_with_auth(auth_descriptor);
    }

  3. After adding the code snippets to the appropriate sections in your main.rell file, update the blockchain to apply the changes.

  4. Generate a voucher hash using the chr repl command as follows:

    chr repl
    Rell 0.13.0
    Type '\q' to quit or '\?' for help.
    >>>

  5. Inside the Rell REPL, generate a voucher hash by executing the following command:

    "voucher_1".hash()

    The output would be a hash in the format:

    0xe1e72d0c6c975815bd3259d81e67253d98cf90d888b4c7cb393c8cfb9043baf3

  6. Add the voucher hash to the blockchain using the admin operation:

    chr tx add_voucher \
      'x"e1e72d0c6c975815bd3259d81e67253d98cf90d888b4c7cb393c8cfb9043baf3"' \
      --await --secret ft4-admin.keypair

    Ensure that you remove the 0x prefix from the generated hash.

  7. Generate a new keypair for the user who'll register the account, and retrieve it:

    chr keygen > user-2.keypair
    grep pubkey user-2.keypair

  8. Register the account using the custom operation register_account:

    chr tx register_account \
      '[0, [["A", "T"], x"03772E03AE22835384164AA90E28C84F78C97D29A2635861DC3F7E32F0CC8FDF51"], null]' \
      voucher_1 \
      --await --secret user-2.keypair

    In the above command, replace x"03772E03AE22835384164AA90E28C84F78C97D29A2635861DC3F7E32F0CC8FDF51" with the generated pubkey for the user.

  9. To verify the successful account registration, execute the get_all_accounts query again. You should now see two account IDs, or one if you didn't follow the first half of the guide:

    chr query get_all_accounts

    The output would include the account IDs:

    [x"5E2488889F72939DD4D0A034FB91893ACBF14C7EDBCEF2A9F5C621A07169EAD2", x"79C71AF3C9C951BED380F8ADAB2E407C15CC4A9EB942AA222D870136C45801CE"]

Registering with an auth server

To simplify the registration process, we've built a basic back—end app that allows you to rate limit registrations to your blockchain. This app is called auth server.

When the auth server is running, people can register an account by following specific criteria. For more details about configuring the server, see guide.