Feat: private key signer

[katspaugh]

What it solves

An experimental web3-onboard module to allow connecting directly with a private key as a Safe signer.

The idea is that you can have a (non-primary) signer key stored in your password manager/OS keychain and log in with it like with a password.

The private key is then stored in the session storage and it reconnects if the page is reloaded.

adc2f">

[github-actions]

Branch preview

✅ Deploy successful!

Website:
https://pk--walletweb.review.5afe.dev/home?safe=eth:0xA77DE01e157f9f57C7c4A326eeE9C4874D0598b6

Storybook:
https://pk--walletweb.review.5afe.dev/storybook/

[github-actions]

ESLint Summary View Full Report

Annotations are provided inline on the Files Changed tab. You can also see all annotations that were generated on the annotations page.

Type	Occurrences	Fixable
Errors	0	0
Warnings	0	0
Ignored	0	N/A

• Result: ✅ success
• Annotations: 0 total

---

^{Report generated by eslint-plus-action}

[github-actions]

📦 Next.js Bundle Analysis for safe-wallet-web

This analysis was generated by the Next.js Bundle Analysis action. 🤖

⚠️ Global Bundle Size Increased

Page	Size (compressed)
global	1003.74 KB (🟡 +52.28 KB)

Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

Two Pages Changed Size

The following pages changed size from the code in this PR compared to its base branch:

Page	Size (compressed)	First Load
/	24.86 KB (🟡 +1 B)	1 MB
/licenses	4.97 KB (🟢 -29 B)	1008.71 KB

Details

Only the gzipped size is provided here based on an expert tip.

First Load is the size of the global bundle plus the bundle for the individual page. If a user were to show up to your website and land on a given page, the first load size represents the amount of javascript that user would need to download. If next/link is used, subsequent page loads would only need to download that page's bundle (the number in the "Size" column), since the global bundle has already been downloaded.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

Next to the size is how much the size has increased or decreased compared with the base branch of this PR. If this percentage has increased by 20% or more, there will be a red status indicator applied, indicating that special attention should be given to this.

[github-actions]

Coverage report

St.❔	Category	Percentage	Covered / Total
🟡	Statements	79.18% (-0.26% 🔻)	11555/14593
🔴	Branches	58.3% (-0.11% 🔻)	2791/4787
🟡	Functions	66.18% (-0.54% 🔻)	1851/2797
🟢	Lines	80.5% (-0.25% 🔻)	10416/12939

Show new covered files 🐣

St.❔	File	Statements	Branches	Functions	Lines
🔴	... / index.ts	16.39%	0%	0%	17.86%
🟢	... / pk-popup-store.ts	80%	50%	0%	88.89%
🟡	... / session.ts	70%	50%	50%	71.43%

Show files with reduced coverage 🔻

St.❔	File	Statements	Branches	Functions	Lines
🟡	... / wallets.ts	65% (-2.57% 🔻)	25% (-3.57% 🔻)	77.78%	68.75% (-1.25% 🔻)

Test suite run success

1444 tests passing in 199 suites.

Report generated by 🧪jest coverage report action from a7f0855

[francovenica]

It looks really promising! and it will going to be really useful for automation to be able to switch owners, so test on 2/x safes can be performed

My initial feedback.

• Clear the storage when you disconnect. One for safty reasons (hopefully no laptop is stolen ever, but just in case) and second because now when you disconnect and connect again, it takes the same Pk you already introduced, so there is actually no way to connect with a different owner beyond clearing the LS
• Switching networks is not possible. (maybe not possible since there is not a wallet to ask for a network changing, but still something to take in account)

[github-actions]

ESLint Summary View Full Report

Annotations are provided inline on the Files Changed tab. You can also see all annotations that were generated on the annotations page.

Type	Occurrences	Fixable
Errors	0	0
Warnings	0	0
Ignored	0	N/A

• Result: ✅ success
• Annotations: 0 total

---

^{Report generated by eslint-plus-action}

[katspaugh]

@francovenica fixed both, thank you!

[schmanu]

If I understand correctly this is meant to mainly be a tool for our e2e tests to use multiple signers.

I think we should make sure that this won't accidentally turned on in prod.

[schmanu]

I think we ensure that this wallet can only be enabled when IS_PRODUCTION is false as it is a tool for our e2e tests.

[katspaugh]

To enable it, you'd have to go to the production config service, create a PK wallet, and enable it on a chain. Don't think this can be done accidentally.

Edit: actually you have to create a wallet for it to be disabled if not explicitly enabled. The config service is a little bit backwards...

[schmanu]

Nit:

Suggested change

	const signedMessage = await wallet.signTypedData(params[1].domain, params[1].data, params[1].value)
	return signedMessage
	return wallet.signTypedData(params[1].domain, params[1].data, params[1].value)

[schmanu]

In that case we can merge it, but need to document somewhere not to enable this wallet for new chains / in prod.

[katspaugh]

@schmanu I ended up adding a prod check as you suggested because this will allow us to use this wallet on dev even if the CGW toggle is set to prod.