Skip to content

refactor: implement stealth api as rust crate #17

Merged
LORDBABUINO merged 16 commits into
stealth-bitcoin:mainfrom
satsfy:add-api
May 26, 2026
Merged

refactor: implement stealth api as rust crate #17
LORDBABUINO merged 16 commits into
stealth-bitcoin:mainfrom
satsfy:add-api

Conversation

@satsfy

@satsfy satsfy commented Mar 26, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator

Depends on #16 (it will be in draft mode until its merged)

Solves #10. This PR is a combination of rust refactors from @brenorb in #15 and me.

Implements an HTTP API for stealth as rust create stealth-api with POST /api/wallet/scan, request validation, structured error responses, RPC autodetection, and regtest end-to-end tests.

Replaces instructions on README on how to use stealth api.

Reviewer Notes

Open the branch locally, run cargo build to verify it compiles and run cargo test. Inspect the e2e test in api/tests/.

Run the api with cargo run --bin stealth-api and test that call:

curl 'http://localhost:20899/api/wallet/scan' \
  -H 'content-type: application/json' \
  -d '{"descriptor":"wpkh(xpub.../0/*)"}' | jq

@satsfy satsfy changed the title Add api refactor: implement stealth api as rust crate Mar 26, 2026
This was referenced Mar 26, 2026
Open
Open
@satsfy satsfy force-pushed the add-api branch 2 times, most recently from 3be5813 to c230e67 Compare April 5, 2026 23:28
@satsfy satsfy marked this pull request as ready for review April 5, 2026 23:31
@satsfy

satsfy commented Apr 9, 2026

Copy link
Copy Markdown
Collaborator Author

@LORDBABUINO this and PR #19 are also open for review.

LORDBABUINO
LORDBABUINO previously requested changes Apr 12, 2026
View reviewed changes
Comment thread api/src/main.rs Outdated
Comment thread api/src/lib.rs
Comment thread api/src/routes/wallet.rs
Comment thread api/tests/e2e_regtest_scan.rs Outdated
Comment thread api/src/preflight.rs Outdated
Comment thread README.md Outdated
Comment thread README.md
Comment thread api/src/main.rs
LORDBABUINO added 14 commits May 11, 2026 20:17
@LORDBABUINO
Merge remote-tracking branch 'origin/main' into satsfy-pr17-rebase
9e1cadc 
# Conflicts:
#	Cargo.toml
#	README.md
#	bitcoin.conf.example
@LORDBABUINO
refactor(api): drop dead-code cookie loop in detect_cookie_file
3ab2fb3 
The second loop is unreachable: the first loop returns as soon as it
finds an existing candidate. Collapse to a single iterator chain.
@LORDBABUINO
feat(api): add permissive CORS layer
ca827db 
Browser-based frontends need CORS to call the API. Apply
tower_http::cors::CorsLayer::permissive() at the router level so
the frontend (and other origins during development) can reach the
scan endpoint.
@LORDBABUINO
refactor(api): use match for scan input validation
446fb9e 
The if-chain and counter pattern is a 5-arm tuple match in disguise.
Pattern match on (descriptor, descriptors, utxos) directly: every
valid case picks exactly one variant, the empty tuple is a clear
missing-input error, and the wildcard catches mutual-exclusion
violations.
@LORDBABUINO
refactor(api): use read_cookie_file in e2e regtest tests
2dcb2d2 
Replace the inline cookie split with stealth_bitcoincore::read_cookie_file,
which already implements the same parsing with proper error handling.
Removes duplication and keeps the cookie format in one place.
@LORDBABUINO
refactor(api): remove preflight descriptor validation
25a0594 
The Bitcoin Core node is the authority on descriptor validity.
Reimplementing descriptor shape/prefix/checksum checks here creates
a divergence risk with the node's own validator and adds maintenance
surface for no real safety gain. Invalid descriptors now fail at the
node, surfaced through AnalysisError.

- delete api/src/preflight.rs and its module declaration
- drop ValidationError from ApiError (no remaining producers)
- remove the validate() call from the scan handler
- drop the two tests that asserted preflight-specific rejection codes
@LORDBABUINO
docs: point readme bitcoin.conf section to bitcoin.conf.example
a24dc0a 
Replace the inline cat heredoc with a single cp instruction so the
example config stays canonical (the file is already in the repo and
also drives ./scripts/setup.sh).
@LORDBABUINO
docs: use scripts/setup.sh in readme quickstart
52fb5b4 
Replace the giant inline bootstrap-and-scan bash block with the
setup.sh script that already does the same thing (and is maintained
alongside the regtest harness). The reader sees four short steps —
setup, start API, scan, CLI alternative — instead of 40 lines of
shell to copy-paste correctly.
@LORDBABUINO
refactor(api): use ini crate to parse bitcoin.conf
86e0b40 
Replace the hand-rolled INI parser in read_bitcoin_conf_credentials
with the rust-ini crate (imported as 'ini'). The function shrinks
from ~35 lines to 6 and we stop maintaining INI parsing semantics
in this repo.
@LORDBABUINO
refactor(frontend): point frontend at rust stealth-api
9e4df8e
@LORDBABUINO
fix(engine): use sort_by_key with Reverse for clippy 1.95
53a84a8
@LORDBABUINO
fix(api): also read rpc credentials from network-specific bitcoin.con…
34501db 
…f sections
@LORDBABUINO
fix(api): reject empty descriptors/utxos arrays with bad_request
2e6f676
@LORDBABUINO
chore: untrack and gitignore yarn install-state.gz
830008a
@LORDBABUINO LORDBABUINO dismissed their stale review May 26, 2026 17:12

all concerns addressed

@LORDBABUINO LORDBABUINO merged commit cba5c74 into stealth-bitcoin:main May 26, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@LORDBABUINO LORDBABUINO LORDBABUINO left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@satsfy @LORDBABUINO