v0.7.11 - Got api back working after switching to static build

src/request_validator.c

@@ -53,6 +53,7 @@ extern struct expiration_config {
 // Configuration functions from C-relay
 extern int get_config_bool(const char* key, int default_value);
 extern int get_config_int(const char* key, int default_value);
+extern const char* get_admin_pubkey_cached(void);
 
 // NIP-42 constants (from nostr_core_lib)
 #define NOSTR_NIP42_AUTH_EVENT_KIND 22242
@@ -294,10 +295,26 @@ int nostr_validate_unified_request(const char* json_string, size_t json_length)
   }
 
   /////////////////////////////////////////////////////////////////////
-  //  PHASE 3: EVENT KIND SPECIFIC VALIDATION
+  //  PHASE 3: ADMIN EVENT BYPASS CHECK
   /////////////////////////////////////////////////////////////////////
 
-  // 8. Handle NIP-42 authentication challenge events (kind 22242)
+  // 8. Check if this is a kind 23456 admin event from authorized admin
+  // This must happen AFTER signature validation but BEFORE auth rules
+  if (event_kind == 23456) {
+    const char* admin_pubkey = get_admin_pubkey_cached();
+    if (admin_pubkey && strcmp(event_pubkey, admin_pubkey) == 0) {
+      // Valid admin event - bypass remaining validation
+      cJSON_Delete(event);
+      return NOSTR_SUCCESS;
+    }
+    // Not from admin - continue with normal validation
+  }
+
+  /////////////////////////////////////////////////////////////////////
+  //  PHASE 4: EVENT KIND SPECIFIC VALIDATION
+  /////////////////////////////////////////////////////////////////////
+
+  // 9. Handle NIP-42 authentication challenge events (kind 22242)
   if (event_kind == 22242) {
     // Check NIP-42 mode using unified cache
     const char* nip42_enabled = get_config_value("nip42_auth_enabled");
@@ -315,13 +332,13 @@ int nostr_validate_unified_request(const char* json_string, size_t json_length)
   }
 
   /////////////////////////////////////////////////////////////////////
-  //  PHASE 4: AUTHENTICATION RULES (Database Queries)
+  //  PHASE 5: AUTHENTICATION RULES (Database Queries)
   /////////////////////////////////////////////////////////////////////
 
-  // 9. Check if authentication rules are enabled
+  // 10. Check if authentication rules are enabled
   if (!auth_required) {
   } else {
-    // 10. Check database authentication rules (only if auth enabled)
+    // 11. Check database authentication rules (only if auth enabled)
 
     // Create operation string with event kind for more specific rule matching
     char operation_str[64];
@@ -340,16 +357,16 @@ int nostr_validate_unified_request(const char* json_string, size_t json_length)
   }
 
   /////////////////////////////////////////////////////////////////////
-  //  PHASE 5: ADDITIONAL VALIDATIONS (C-relay specific)
+  //  PHASE 6: ADDITIONAL VALIDATIONS (C-relay specific)
   /////////////////////////////////////////////////////////////////////
 
-  // 11. NIP-13 Proof of Work validation
+  // 12. NIP-13 Proof of Work validation
   pthread_mutex_lock(&g_unified_cache.cache_lock);
   int pow_enabled = g_unified_cache.pow_config.enabled;
   int pow_min_difficulty = g_unified_cache.pow_config.min_pow_difficulty;
   int pow_validation_flags = g_unified_cache.pow_config.validation_flags;
   pthread_mutex_unlock(&g_unified_cache.cache_lock);
-  
+
   if (pow_enabled && pow_min_difficulty > 0) {
     nostr_pow_result_t pow_result;
     int pow_validation_result = nostr_validate_pow(event, pow_min_difficulty,
@@ -361,7 +378,7 @@ int nostr_validate_unified_request(const char* json_string, size_t json_length)
     }
   }
 
-  // 12. NIP-40 Expiration validation
+  // 13. NIP-40 Expiration validation
   // Always check expiration tags if present (following NIP-40 specification)
 
   cJSON *expiration_tag = NULL;