Question about the JS-SDK

fourtimesperday · December 28, 2022, 3:30am

hello guys, I have some questions regarding the JS-Code, in the following function:
static async authenticate(options) {

authenticate(options),
when to pass a custom signing message and when to use MoralisWeb3.getSigningData() instead? In the Moralis docs and Youtube video no parameter is passed to authenticate() though.
accountsLower = accounts.map(v => v.toLowerCase());
why tolowercase?
await ParseUser.logInWith(‘moralisEth’, { authData });
Does this also work when the user doesn’t exist yet? I’m wondering why the parse method “signUp” is not used instead.
what does following do?: user.setACL(new ParseACL(user));

Yomoo · October 1, 2021, 3:00pm

Hey @fourtimesperday

This is really cool that you decided to take a look at the source code of Moralis JS-SDK.
It has own logic which built on Parse.

You should use authenticate({signingMessage:"Hi"}) only
All addresses in the Moralis Database storted in Lower Case.
Signup requires provided username and password. Moralis.authenticate() automatically creates a new User in the table if it wasn’t registered before.
Take a look at Role-Based Security for Other Objects docs

Hope this will help you

Yomoo · October 1, 2021, 3:01pm

If you’d like to contribute to our open source Moralis JS SDK - feel free to open PRs https://github.com/MoralisWeb3/Moralis-JS-SDK

fourtimesperday · October 1, 2021, 3:15pm

[quote=“Yomoo, post:2, topic:2903”]
You should use authenticate({signingMessage:"Hi"}) only
[/quote]
How come? the [docs](You cannot post a link to that host) don’t say anything about that, or?
But WHY?
It’s not clear, Moralis.authenticate also requires username and password.

Yomoo · October 1, 2021, 5:00pm

If you will not specify {signingMessage:"Hi"} it will show default Message : Moralis Authentication docs
Docs
Moralis.authenticate is a crypto authenticaton. Moralis.login is non-crypto

fourtimesperday · October 1, 2021, 7:01pm

The problem I currently see with Moralis.authenticate is that it is automatically creating an user, it doesn’t differentiate between login and sign-up. Normally each app has a separate login and sign-up button/process so I’m confused how to use that function in practice because I would expect a separate function with different callbacks for login and signup, like for example for login you would have the callback “user doesn’t exist” and then you would ask the user if he wants to create an account and so on.

Yomoo · October 1, 2021, 8:06pm

Normally you login/signup with your login&password. But you can’t implement this logic with your metamask for example, right?

If you want to create a required info like email, password, username and etc you can use something like:

let user = await Moralis.authenticate();
if (!user.get("email")) {
  //redirect to user profile edit page
}

wannabeKazakh · February 1, 2022, 3:54pm

I just ran into the lowercase problem. Not sure I agree with doing with this. I just happened to notice that the address was lower cased coming out of Moralis.authenticate when I was not getting any results on a web3 query looking for the address. I really think you should leave this up to developers.