Update app.py

app.py

@@ -57,27 +57,46 @@ async def relay_txn(payload: dict):
 
 
 @app.post("/sign-message")
-async def sign_message(payload: dict):
+async def sign_message(req: dict):
     #message = bytes(payload["message"])
 
     # 1️⃣ verify quantum proof (same as your txn logic)
-    proof = base58.b58decode(payload["winternitz_proof"])
-    anchor = base58.b58decode(payload["anchor"])
-    lap = payload["lap"]
+    #proof = base58.b58decode(payload["winternitz_proof"])
+    #anchor = base58.b58decode(payload["anchor"])
+    #lap = payload["lap"]
 
-    check = proof
-    for _ in range(lap):
-        check = hashlib.sha256(check).digest()
+    #check = proof
+    #for _ in range(256-lap):
+     #   check = hashlib.sha256(check).digest()
 
-    if check != anchor:
-        return {"success": False, "error": "Quantum auth failed"}
+    #if check != anchor:
+     #   return {"success": False, "error": "Quantum auth failed"}
 
-    # 2️⃣ server signs message hash
-    
 
-    return {
-        "success": True
-    }
+    #return {
+     #   "success": True
+    #}
+
+    payload = await req.json()
+
+    message = base58.b58decode(payload["message"])
+    signature = payload["signature"]        # list[str]
+    public_key = payload["public_key"]      # list[str]
+
+    msg_hash = hashlib.sha256(message).digest()
+
+    for i in range(len(signature)):
+        sig_i = base58.b58decode(signature[i])
+        pk_i = base58.b58decode(public_key[i])
+
+        check = sig_i
+        for _ in range(CHAIN_LENGTH - msg_hash[i]):
+            check = hashlib.sha256(check).digest()
+
+        if check != pk_i:
+            return {"status":False}
+
+    return {"status":True}