reown-com
diff --git a/‎.dockerignore‎
Lines changed: 7 additions & 0 deletions b/‎.dockerignore‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎.github/workflows/deploy-sign-sample.yml‎
Lines changed: 81 additions & 0 deletions b/‎.github/workflows/deploy-sign-sample.yml‎
Lines changed: 81 additions & 0 deletions
diff --git a/‎.github/workflows/publish_sign_canary.yml‎
Lines changed: 64 additions & 0 deletions b/‎.github/workflows/publish_sign_canary.yml‎
Lines changed: 64 additions & 0 deletions
diff --git a/‎canary/Dockerfile‎
Lines changed: 23 additions & 0 deletions b/‎canary/Dockerfile‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎crates/yttrium/Cargo.toml‎
Lines changed: 14 additions & 3 deletions b/‎crates/yttrium/Cargo.toml‎
Lines changed: 14 additions & 3 deletions
@@ -0,0 +1,7 @@
+/gradle
+/.jj
+/.git
+/target
+/benchmark
+/crates/rust-sample-wallet/dist
+/crates/rust-sample-wallet/node_modules
@@ -0,0 +1,81 @@
+name: Deploy Sign Sample to Github Pages
+
+on:
+  push:
+    branches:
+      - main
+      - push-tlltnpmvwzwm
+  workflow_dispatch:
+
+permissions:
+  contents: write # for committing to gh-pages branch.
+  pages: write
+  id-token: write
+
+# Allow only one concurrent deployment, skipping runs queued between the run in-progress and latest queued.
+# However, do NOT cancel in-progress runs as we want to allow these production deployments to complete.
+concurrency:
+  group: "pages"
+  cancel-in-progress: false
+
+jobs:
+  Github-Pages-Release:
+
+    timeout-minutes: 10
+
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v4 # repo checkout
+
+      # Install Rust Nightly Toolchain, with Clippy & Rustfmt
+      - name: Install nightly Rust
+        uses: dtolnay/rust-toolchain@nightly
+        with:
+          components: clippy, rustfmt
+
+      - name: Add WASM target
+        run: rustup target add wasm32-unknown-unknown
+
+      - name: Download and install Trunk binary
+        run: wget -qO- https://github.com/trunk-rs/trunk/releases/download/v0.18.4/trunk-x86_64-unknown-linux-gnu.tar.gz | tar -xzf-
+
+      - name: Build with Trunk
+        # "${GITHUB_REPOSITORY#*/}" evaluates into the name of the repository
+        # using --public-url something will allow trunk to modify all the href paths like from favicon.ico to repo_name/favicon.ico .
+        # this is necessary for github pages where the site is deployed to username.github.io/repo_name and all files must be requested
+        # relatively as favicon.ico. if we skip public-url option, the href paths will instead request username.github.io/favicon.ico which
+        # will obviously return error 404 not found.
+        run: ../../trunk build --release --public-url "${GITHUB_REPOSITORY#*/}"
+        working-directory: crates/rust-sample-wallet
+        env:
+          REOWN_PROJECT_ID: ${{ vars.REOWN_PROJECT_ID }}
+
+
+      # Deploy to gh-pages branch
+      # - name: Deploy 🚀
+      #   uses: JamesIves/github-pages-deploy-action@v4
+      #   with:
+      #     folder: dist
+
+
+      # Deploy with Github Static Pages
+
+      - name: Setup Pages
+        uses: actions/configure-pages@v4
+        with:
+          enablement: true
+
+      - name: Upload artifact
+        uses: actions/upload-pages-artifact@v3
+        with:
+          # Upload dist dir
+          path: './crates/rust-sample-wallet/dist'
+
+      - name: Deploy to GitHub Pages 🚀
+        id: deployment
+        uses: actions/deploy-pages@v4
@@ -0,0 +1,64 @@
+name: publish_sign_canary
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+      - push-yruotstkupns
+      - push-tlltnpmvwzwm
+
+concurrency: ${{ github.workflow }}
+
+env:
+  TERM: linux
+
+jobs:
+  push:
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+    steps:
+      - name: Configure AWS Credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ECR_PUBLISHER_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_ECR_PUBLISHER_SECRET_ACCESS_KEY }}
+          aws-region: eu-central-1
+
+      - name: Login to Amazon ECR
+        id: login-ecr
+        uses: aws-actions/amazon-ecr-login@v2
+        with:
+          mask-password: 'true'
+
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Cache Docker layers
+        uses: actions/cache@v4
+        with:
+          path: /tmp/.buildx-cache
+          key: ${{ runner.os }}-buildx-${{ github.sha }}
+          restore-keys: |
+            ${{ runner.os }}-buildx-
+
+      - name: Build, tag, and push image to Amazon ECR
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          file: canary/Dockerfile
+          push: true
+          tags: ${{ steps.login-ecr.outputs.registry }}/rust-sign-client:${{ github.sha }},${{ steps.login-ecr.outputs.registry }}/rust-sign-client:main
+          cache-from: type=local,src=/tmp/.buildx-cache
+          cache-to: type=local,dest=/tmp/.buildx-cache-new
+
+      # Temp fix
+      # https://github.com/docker/build-push-action/issues/252
+      # https://github.com/moby/buildkit/issues/1896
+      - name: Move cache
+        run: |
+          rm -rf /tmp/.buildx-cache
+          mv /tmp/.buildx-cache-new /tmp/.buildx-cache
@@ -0,0 +1,23 @@
+FROM rust:1 AS chef 
+# We only pay the installation cost once, 
+# it will be cached from the second build onwards
+RUN cargo install cargo-chef 
+WORKDIR /app
+
+FROM chef AS planner
+COPY . .
+RUN cargo chef prepare  --recipe-path recipe.json
+
+FROM chef AS builder
+COPY --from=planner /app/recipe.json recipe.json
+# Build dependencies - this is the caching Docker layer!
+RUN cargo chef cook --release --recipe-path recipe.json
+# Build application
+COPY . .
+RUN cargo build --release --bin sign-canary --features=sign_canary
+
+# We do not need the Rust toolchain to run the binary!
+FROM debian:bookworm-slim AS runtime
+WORKDIR /app
+COPY --from=builder /app/target/release/sign-canary /usr/local/bin
+ENTRYPOINT ["/usr/local/bin/sign-canary"]
@@ -13,6 +13,11 @@ name = "uniffi-bindgen"
 path = "uniffi-bindgen.rs"
 required-features = ["uniffi"]
 
+[[bin]]
+name = "sign-canary"
+path = "src/bin/sign_canary.rs"
+required-features = ["sign_canary"]
+
 [features]
 default = ["eip155", "erc6492_client", "chain_abstraction_client"]
 full = ["all_platforms", "all_clients", "all_namespaces"]
@@ -96,6 +101,12 @@ sign_client = [
     "dep:tokio-util",
 ]
 
+sign_canary = [
+    "sign_client",
+    "dep:aws-config",
+    "dep:aws-sdk-cloudwatch",
+]
+
 # Features enabling test coverage
 test_full = [
     "test_pimlico_api",
@@ -236,6 +247,9 @@ x25519-dalek = { version = "3.0.0-pre.0", features = [
 hkdf = { version = "0.13.0-rc.0", optional = true }
 sha2 = { version = "0.11.0-rc.0", optional = true }
 
+aws-config = { version = "1.1.7", features = ["behavior-version-latest"], optional = true }
+aws-sdk-cloudwatch = { version = "1.91.0", optional = true }
+
 [dev-dependencies]
 # mocking
 wiremock = { version = "0.6.0", default-features = false }
@@ -250,8 +264,5 @@ serial_test.workspace = true
 chacha20poly1305 = { workspace = true, features = ["alloc", "os_rng"] }
 data-encoding = { workspace = true }
 
-aws-config = { version = "1.1.7", features = ["behavior-version-latest"] }
-aws-sdk-cloudwatch = { version = "1.91.0" }
-
 [package.metadata.wasm-pack.profile.release]
 wasm-opt = ['-Oz']