Moved auth system from nostr_core_lib back into ginxsom. Still debugging but so many changes I wanted to commit.

Trash/auth_test_tmp/auth_disabled.txt

@@ -0,0 +1 @@
+Upload with auth disabled

Trash/auth_test_tmp/blacklisted_file.txt

@@ -0,0 +1 @@
+test content for hash blacklist

Trash/auth_test_tmp/blacklisted_upload.txt

@@ -0,0 +1 @@
+Content from blacklisted user

Trash/auth_test_tmp/corrupted_sig.txt

@@ -0,0 +1 @@
+corrupted_sig_test

Trash/auth_test_tmp/expired_event.txt

@@ -0,0 +1 @@
+expired_event_test

Trash/auth_test_tmp/hash_mismatch.txt

@@ -0,0 +1 @@
+hash_mismatch_test

Trash/auth_test_tmp/missing_t_tag.txt

@@ -0,0 +1 @@
+missing_t_tag_test

Trash/auth_test_tmp/missing_x_tag.txt

@@ -0,0 +1 @@
+missing_x_tag_test

Trash/auth_test_tmp/nip42_challenge

@@ -0,0 +1 @@
+2ca8fe3cf3eb0fa615b26e0ad83c15ebf57682a1ef8f65272f332dd2e7cc8f07

Trash/auth_test_tmp/nip42_test.txt

@@ -0,0 +1 @@
+NIP-42 authentication test content

Trash/auth_test_tmp/nonhex_key.txt

@@ -0,0 +1 @@
+nonhex_key_test

Trash/auth_test_tmp/random_upload.txt

@@ -0,0 +1 @@
+Content from random user

Trash/auth_test_tmp/short_key.txt

@@ -0,0 +1 @@
+short_key_test

Trash/auth_test_tmp/whitelisted_upload.txt

@@ -0,0 +1 @@
+Content from whitelisted user

Trash/auth_test_tmp/wrong_kind.txt

@@ -0,0 +1 @@
+wrong_kind_test

Trash/debug_auth.log

@@ -0,0 +1,435 @@
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a1fff0ffefb9eace7230c24e50731f0a91c62f9cefdfe77121c2f607125dffae'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '802058364873910dc6e8611c2232242484211a18724c1292486b107939de7298'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '368a3fad122be49471eb18b87dbb61fe65dd71048aced9712c2299abc6390aca'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied by hash blacklist rule: TEST_HASH_BLACKLIST
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '5a5628938aa5fc67b79f5c843c813bf7823f4307935b6eb372f1250c1ccd447d'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '92e62f9708cef7d7f4675250267a35182300df6e1c5b6cf0bd207912d94c9016'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 1, reason: Request validation passed
+AUTH: pubkey extracted: '0396b426090284a28294078dce53fe73791ab623c3fc46ab4409fea05109a6db'
+AUTH: resource_hash: '0f0ad694efb237aca094aac7670578531921118c8063cc3f362bb1c5516ae488'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Unsupported event kind for authentication
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NIP-42 authentication requires relay_url and challenge_id
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'ab0bf82111fa362282601efffd2b09f42270aaefa57afd05feda24b757950c27'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '2b51c4abbdfe0e5ae9ec0e19b9b4d78ad34da5d5f78f21baaa393f71c3e61c96'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '802058364873910dc6e8611c2232242484211a18724c1292486b107939de7298'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '368a3fad122be49471eb18b87dbb61fe65dd71048aced9712c2299abc6390aca'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied by hash blacklist rule: TEST_HASH_BLACKLIST
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '5a5628938aa5fc67b79f5c843c813bf7823f4307935b6eb372f1250c1ccd447d'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '92e62f9708cef7d7f4675250267a35182300df6e1c5b6cf0bd207912d94c9016'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 1, reason: Request validation passed
+AUTH: pubkey extracted: '0396b426090284a28294078dce53fe73791ab623c3fc46ab4409fea05109a6db'
+AUTH: resource_hash: '0f0ad694efb237aca094aac7670578531921118c8063cc3f362bb1c5516ae488'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Unsupported event kind for authentication
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NIP-42 authentication requires relay_url and challenge_id
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'ab0bf82111fa362282601efffd2b09f42270aaefa57afd05feda24b757950c27'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '802058364873910dc6e8611c2232242484211a18724c1292486b107939de7298'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '368a3fad122be49471eb18b87dbb61fe65dd71048aced9712c2299abc6390aca'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied by hash blacklist rule: TEST_HASH_BLACKLIST
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '5a5628938aa5fc67b79f5c843c813bf7823f4307935b6eb372f1250c1ccd447d'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '92e62f9708cef7d7f4675250267a35182300df6e1c5b6cf0bd207912d94c9016'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 1, reason: Request validation passed
+AUTH: pubkey extracted: '0396b426090284a28294078dce53fe73791ab623c3fc46ab4409fea05109a6db'
+AUTH: resource_hash: '0f0ad694efb237aca094aac7670578531921118c8063cc3f362bb1c5516ae488'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Unsupported event kind for authentication
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NIP-42 authentication requires relay_url and challenge_id
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'ab0bf82111fa362282601efffd2b09f42270aaefa57afd05feda24b757950c27'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '18b38ac540aa99331dd8ee37f8481d54a6bf62849ec33be19682e485d3f548c3'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '802058364873910dc6e8611c2232242484211a18724c1292486b107939de7298'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '368a3fad122be49471eb18b87dbb61fe65dd71048aced9712c2299abc6390aca'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied by hash blacklist rule: TEST_HASH_BLACKLIST
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '5a5628938aa5fc67b79f5c843c813bf7823f4307935b6eb372f1250c1ccd447d'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '92e62f9708cef7d7f4675250267a35182300df6e1c5b6cf0bd207912d94c9016'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 1, reason: Request validation passed
+AUTH: pubkey extracted: '0396b426090284a28294078dce53fe73791ab623c3fc46ab4409fea05109a6db'
+AUTH: resource_hash: '0f0ad694efb237aca094aac7670578531921118c8063cc3f362bb1c5516ae488'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Failed to parse authorization header
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NOSTR event validation failed
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Unsupported event kind for authentication
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Blossom event does not authorize this operation
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Invalid JSON in authorization
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'a6c3dfd8af9c4b831fdb05a523a3ea398ba48b5d7213b0adb264aef88fd6bc68'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: NIP-42 authentication requires relay_url and challenge_id
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'ab0bf82111fa362282601efffd2b09f42270aaefa57afd05feda24b757950c27'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: Denied - pubkey not in whitelist (found 1 whitelist rules)
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '6ae8a75555209fd6c44157c0aed8016e763ff435a19cf186f76863140143ff72'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '2072c39b66b888c7e88d818c5854d2d3c63a00e9c77a816045ef49f73a9c8ac7'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: 'f152f642ead301c2a32ba3376852c0fa5b45ec770aacc2ee687fb5f9064defe4'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES
+AUTH: nostr_validate_request returned: 0, valid: 0, reason: 
+AUTH: pubkey extracted: <NONE>
+AUTH: resource_hash: '4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32'
+AUTH: operation: 'upload'
+AUTH: auth_header present: YES

Trash/debug_pubkey_corruption.log

@@ -0,0 +1,6 @@
+EVENT_JSON: {"kind":24242,"id":"c7f967dca87bdc95b9336eaab7b2db45cc104ac629915aaed235abbdc6a61c70","pubkey":"87d3561f19b74adbe8bf840682992466068830a9d8c36b4a0c99d36f826cb6cb","created_at":1757347696,"tags":[["t","upload"],["expiration","1757351296"],["x","4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32"]],"content":"","sig":"8138a221fbe7c92a96f0c9eaa157ab4366530212549c633759b92a8d3e68ea7c2ef72e27181815618db8481b41cab6d4b187cd08dd647ec277d40dbe4b28fb07"}
+
+RAW_PUBKEY: length=64, content='87d3561f19b74adbe8bf840682992466068830a9d8c36b4a0c99d36f826cb6cb'
+EVENT_JSON: {"kind":24242,"id":"9138329ea2a1e5bc7371ffce9172246a656773d753804d06882f2e6128a2e3af","pubkey":"87d3561f19b74adbe8bf840682992466068830a9d8c36b4a0c99d36f826cb6cb","created_at":1757347821,"tags":[["t","upload"],["expiration","1757351420"],["x","4ea47c723453762df3f90473ee1d5d8de6456a724116563bf24eaba35ce5cc32"]],"content":"","sig":"cdc19f7bcce369bfa963db81912d4976253b50869b76aa2c2d0c4d1fd1e7ef937b66a0ae37a0477912833fa9d26da520d84ddf44dfe4d14af54624d50f8832f0"}
+
+RAW_PUBKEY: length=64, content='87d3561f19b74adbe8bf840682992466068830a9d8c36b4a0c99d36f826cb6cb'

Trash/simple_auth_test.sh

@@ -0,0 +1,49 @@
+#!/bin/bash
+
+# Simple authentication test
+set -e
+
+SERVER_URL="http://localhost:9001"
+UPLOAD_ENDPOINT="${SERVER_URL}/upload"
+TEST_USER1_PRIVKEY="5c0c523f52a5b6fad39ed2403092df8cebc36318b39383bca6c00808626fab3a"
+
+echo "=== Simple Authentication Test ==="
+
+# Create a small test file
+echo "Test file content $(date)" > /tmp/simple_test.txt
+FILE_HASH=$(sha256sum /tmp/simple_test.txt | cut -d' ' -f1)
+
+echo "Test file hash: $FILE_HASH"
+
+# Create auth event
+EVENT=$(nak event -k 24242 -c "" \
+    --tag "t=upload" \
+    --tag "x=${FILE_HASH}" \
+    --tag "expiration=$(date -d '+1 hour' +%s)" \
+    --sec "$TEST_USER1_PRIVKEY")
+
+echo "Generated event: $EVENT"
+
+# Create auth header
+AUTH_HEADER="Nostr $(echo "$EVENT" | base64 -w 0)"
+
+echo "Auth header length: ${#AUTH_HEADER}"
+
+# Test upload
+echo "Testing upload..."
+HTTP_STATUS=$(curl -s -w "%{http_code}" \
+    -H "Authorization: $AUTH_HEADER" \
+    -H "Content-Type: text/plain" \
+    --data-binary "@/tmp/simple_test.txt" \
+    -X PUT "$UPLOAD_ENDPOINT" \
+    -o /tmp/upload_response.txt)
+
+echo "HTTP Status: $HTTP_STATUS"
+echo "Response:"
+cat /tmp/upload_response.txt
+echo
+
+# Cleanup
+rm -f /tmp/simple_test.txt /tmp/upload_response.txt
+
+echo "Test completed with status: $HTTP_STATUS"

Trash/simple_comprehensive_test.sh

@@ -0,0 +1,62 @@
+#!/bin/bash
+
+# Simple comprehensive auth test
+SERVER_URL="http://localhost:9001"
+UPLOAD_ENDPOINT="${SERVER_URL}/upload"
+DB_PATH="../db/ginxsom.db"
+
+# Test keys
+TEST_USER1_PRIVKEY="5c0c523f52a5b6fad39ed2403092df8cebc36318b39383bca6c00808626fab3a"  
+TEST_USER1_PUBKEY="79be667ef9dcbbac55a06295ce870b07029bfcdb2dce28d959f2815b16f81798"
+
+echo "=== Simple Authentication Test ==="
+
+# Test 1: Basic upload
+echo "Test 1: Basic upload"
+echo "test content" > test1.txt
+file_hash=$(sha256sum test1.txt | cut -d" " -f1)
+
+# Create auth event
+event=$(nak event -k 24242 -c "" --tag "t=upload" --tag "expiration=$(date -d "+1 hour" +%s)" --tag "x=$file_hash" --sec "$TEST_USER1_PRIVKEY")
+auth_header="Nostr $(echo "$event" | base64 -w 0)"
+
+# Make upload request
+response=$(curl -s -w "%{http_code}" -H "Authorization: $auth_header" -H "Content-Type: text/plain" --data-binary "@test1.txt" -X PUT "$UPLOAD_ENDPOINT" -o response1.json)
+
+if [ "$response" = "200" ]; then
+    echo "✓ Basic upload test PASSED (HTTP $response)"
+else
+    echo "✗ Basic upload test FAILED (HTTP $response)"
+    cat response1.json
+fi
+
+# Test 2: Whitelist rule
+echo
+echo "Test 2: Pubkey whitelist"
+
+# Clear rules and add whitelist
+sqlite3 "$DB_PATH" "DELETE FROM auth_rules WHERE description LIKE %TEST_%;"
+sqlite3 "$DB_PATH" "DELETE FROM auth_cache;"
+sqlite3 "$DB_PATH" "INSERT INTO auth_rules (rule_type, rule_target, operation, priority, enabled, description) VALUES (pubkey_whitelist, , upload, 10, 1, TEST_WHITELIST);"
+
+echo "test content 2" > test2.txt
+file_hash2=$(sha256sum test2.txt | cut -d" " -f1)
+
+event2=$(nak event -k 24242 -c "" --tag "t=upload" --tag "expiration=$(date -d "+1 hour" +%s)" --tag "x=$file_hash2" --sec "$TEST_USER1_PRIVKEY")
+auth_header2="Nostr $(echo "$event2" | base64 -w 0)"
+
+response2=$(curl -s -w "%{http_code}" -H "Authorization: $auth_header2" -H "Content-Type: text/plain" --data-binary "@test2.txt" -X PUT "$UPLOAD_ENDPOINT" -o response2.json)
+
+if [ "$response2" = "200" ]; then
+    echo "✓ Whitelist test PASSED (HTTP $response2)"
+else
+    echo "✗ Whitelist test FAILED (HTTP $response2)"
+    cat response2.json
+fi
+
+# Cleanup
+rm -f test1.txt test2.txt response1.json response2.json
+sqlite3 "$DB_PATH" "DELETE FROM auth_rules WHERE description LIKE %TEST_%;"
+sqlite3 "$DB_PATH" "DELETE FROM auth_cache;"
+
+echo "=== Tests completed ==="

Trash/tests/auth_test_tmp/auth_disabled.txt

@@ -0,0 +1 @@
+Upload with auth disabled

Trash/tests/auth_test_tmp/blacklisted_file.txt

@@ -0,0 +1 @@
+test content for hash blacklist

Trash/tests/auth_test_tmp/blacklisted_upload.txt

@@ -0,0 +1 @@
+Content from blacklisted user

Trash/tests/auth_test_tmp/corrupted_sig.txt

@@ -0,0 +1 @@
+corrupted_sig_test

Trash/tests/auth_test_tmp/expired_event.txt

@@ -0,0 +1 @@
+expired_event_test

Trash/tests/auth_test_tmp/hash_mismatch.txt

@@ -0,0 +1 @@
+hash_mismatch_test

Trash/tests/auth_test_tmp/missing_t_tag.txt

@@ -0,0 +1 @@
+missing_t_tag_test

Trash/tests/auth_test_tmp/missing_x_tag.txt

@@ -0,0 +1 @@
+missing_x_tag_test

Trash/tests/auth_test_tmp/nonhex_key.txt

@@ -0,0 +1 @@
+nonhex_key_test

Trash/tests/auth_test_tmp/random_upload.txt

@@ -0,0 +1 @@
+Content from random user

Trash/tests/auth_test_tmp/short_key.txt

@@ -0,0 +1 @@
+short_key_test

Trash/tests/auth_test_tmp/whitelisted_upload.txt

@@ -0,0 +1 @@
+Content from whitelisted user

Trash/tests/auth_test_tmp/wrong_kind.txt

@@ -0,0 +1 @@
+wrong_kind_test