OZExternalSigner

public struct OZExternalSigner : OZSmartAccountSigner, Equatable, Hashable

A signer that delegates signature verification to a custom verifier contract.

External signers point at a verifier contract (C… strkey) and carry the public-key bytes (and any auxiliary authentication data) the verifier needs. This enables non-native signature schemes such as WebAuthn (secp256r1) and Ed25519 to drive Smart Account authorization.

Use the webAuthn and ed25519 factory methods for the two well-known schemes; the raw initializer is available when integrating with a custom verifier.

Example:

let webAuthn = try OZExternalSigner.webAuthn(
    verifierAddress: "CBCD1234...",
    publicKey: secp256r1PublicKey,
    credentialId: credentialId
)
let ed25519 = try OZExternalSigner.ed25519(
    verifierAddress: "CDEF5678...",
    publicKey: ed25519PublicKey
)

Show on GitHub

verifierAddress
Contract address (C… strkey) of the signature verifier.
Declaration
Swift

public let verifierAddress: String
Show on GitHub
keyData
Public-key bytes plus any auxiliary authentication data (for example, a WebAuthn credential id appended to the public key).
Declaration
Swift

public let keyData: Data
Show on GitHub


                    
                    
                    init(verifierAddress:keyData:)

Initializes a new OZExternalSigner with raw verifier address and key data.

Most callers should prefer the webAuthn or ed25519 factories, which validate the concrete public-key format before constructing the signer.

Throws

SmartAccountValidationException.InvalidAddress if verifierAddress is not a valid contract strkey; SmartAccountValidationException.InvalidInput if keyData is empty.

Declaration

Swift

public init(verifierAddress: String, keyData: Data) throws

Parameters

`verifierAddress`	Contract address (`C…` strkey) of the signature verifier.
`keyData`	Public-key bytes plus any auxiliary authentication data; must not be empty.

Show on GitHub

toScVal()
Converts the external signer to its on-chain representation.

Returns an SCValXDR.vec([Symbol("External"), Address(verifierAddress), Bytes(keyData)]).

Throws
SmartAccountValidationException.InvalidInput if the verifier address cannot be encoded into an SCAddressXDR.
Declaration
Swift

public func toScVal() throws -> SCValXDR
Return Value

The SCValXDR representation of this signer.

Show on GitHub
uniqueKey
Declaration
Swift

public var uniqueKey: String { get }
Show on GitHub


                    
                    
                    ==(_:_:)

Uses constant-time byte comparison via Data.constantTimeEquals for keyData — see that extension for the timing-attack rationale. Both fields are always evaluated regardless of the address result (bitwise AND, not short-circuit).

Declaration

Swift

public static func == (lhs: OZExternalSigner, rhs: OZExternalSigner) -> Bool

Parameters

`lhs`	The first signer to compare.
`rhs`	The second signer to compare.

Return Value

true when both verifierAddress and keyData match.

Show on GitHub


                    
                    
                    hash(into:)

Declaration

Swift

public func hash(into hasher: inout Hasher)

Show on GitHub


                    
                    
                    webAuthn(verifierAddress:publicKey:credentialId:)

Creates a WebAuthn external signer using an uncompressed secp256r1 public key.

The resulting signer’s keyData is publicKey || credentialId, matching the layout expected by WebAuthn verifier contracts.

Throws

SmartAccountValidationException.InvalidInput if publicKey is the wrong size, has the wrong leading byte, or credentialId is empty.
SmartAccountValidationException.InvalidAddress if verifierAddress is not a valid C… strkey.

Declaration

Swift

public static func webAuthn(
    verifierAddress: String,
    publicKey: Data,
    credentialId: Data
) throws -> OZExternalSigner

Parameters

`verifierAddress`	Contract address (`C…` strkey) of the WebAuthn verifier.
`publicKey`	Uncompressed secp256r1 public key (`SmartAccountConstants.secp256r1PublicKeySize` bytes; first byte must equal `SmartAccountConstants.uncompressedPubkeyPrefix`).
`credentialId`	WebAuthn credential identifier; must not be empty.

Return Value

An OZExternalSigner configured for WebAuthn signature verification.

Show on GitHub


                    
                    
                    ed25519(verifierAddress:publicKey:)

Creates an Ed25519 external signer using a 32-byte Ed25519 public key.

Throws

SmartAccountValidationException.InvalidInput if publicKey is not 32 bytes long.
SmartAccountValidationException.InvalidAddress if verifierAddress is not a valid C… strkey.

Declaration

Swift

public static func ed25519(
    verifierAddress: String,
    publicKey: Data
) throws -> OZExternalSigner

Parameters

`verifierAddress`	Contract address (`C…` strkey) of the Ed25519 verifier.
`publicKey`	Ed25519 public key (`SmartAccountConstants.ed25519PublicKeySize` bytes).

Return Value

An OZExternalSigner configured for Ed25519 signature verification.

Show on GitHub