# Primal Wallet Control ## Overview The `primal_wallet_control.sh` script provides a generic solution for monitoring wallet transactions and ensuring that incoming transactions come from wallets with the same primal source. This implements a security system that detects unauthorized transactions and automatically redirects them to a dedicated UPLANETNAME\_INTRUSION wallet for centralized intrusion management. ## Context and Purpose ### UPlanet Ecosystem Architecture The UPlanet ecosystem operates on two distinct levels with different security requirements: #### **UPlanet ORIGIN (0000000000000000000000000000000000000000000000000000000000000000)** * **Level**: Basic access level for all users * **Security**: Standard Ğ1 transaction monitoring * **No Swarm Key**: Uses no swarm key * **Control**: Basic primal (can be any) transaction verification * **Purpose**: Entry point for new users with MULTIPASS and ZENCARD services #### **UPlanet Ẑen (Private Network)** * **Level**: Advanced level requiring Y-level activation (SSH<->IPFS key twin) * **Security**: Enhanced primal transaction control with intrusion detection + **WoT Dragon Identification** * **Swarm Key**: Uses private `~/.ipfs/swarm.key` for secure network isolation * **Control**: **Real-time token capitalization tool** - controls input € = output Ẑen emissions * **Purpose**: Secure financial operations and advanced services * **WoT Integration**: Links stations to WoT Dragon network via captain identification ### Custom Token Valuation in UPlanet Ẑen The ZEN Economy operates as a **Stable COIN system** that can work with **any asset class** while maintaining proper value equity through the primal wallet control mechanism: One of the most powerful features of UPlanet Ẑen is the ability to **define custom token valuations** based on the specific `swarm.key` used. While the technical value remains **0.1 Ğ1** per token, the **perceived and economic value** can be customized according to the community's needs: #### **Examples of Custom Token Valuations** | **Swarm Key Community** | **Token Value** | **Economic Model** | **Use Case** | | ----------------------- | ----------------------- | ------------------------ | ------------------------ | | **Forest Conservation** | 1 hectare of forest | Environmental credits | Carbon offset trading | | **Local Economy** | 10€ | Local currency | Regional commerce | | **Energy Network** | 1 kWh renewable | Energy credits | Green energy trading | | **Education** | 1 hour of tutoring | Knowledge credits | Skill exchange | | **Healthcare** | 1 consultation | Health credits | Medical services | | **Agriculture** | 1 kg organic produce | Food credits | Local food networks | | **Fiat Currencies** | 1 Ẑen = 1€, 1$, 1¥ | Exchange rate monitoring | Real-time forex tracking | | **Real Estate** | 1 Ẑen = 1m² land | Property valuation index | Market price updates | | **Commodities** | 1 Ẑen = 1kg gold/silver | Commodity price feeds | Live market data | | **DeFi Tokens** | 1 Ẑen = 1 USDC/DAI | Smart contract oracles | Blockchain price feeds | | **Energy Credits** | 1 Ẑen = 1 kWh | Energy market pricing | Grid price monitoring | | **Carbon Credits** | 1 Ẑen = 1 ton CO2 | Environmental markets | Carbon price tracking | ... #### **Benefits of Custom Valuation** 1. **Community-Specific Economics**: Each community can define its own economic model 2. **Real-World Asset Backing**: Tokens can represent tangible assets (forest, energy, etc.) 3. **Flexible Exchange Rates**: Different communities can have different €/Ẑen ratios 4. **Incentive Alignment**: Token values align with community goals and values 5. **Scalable Architecture**: Multiple communities can coexist with different valuations 6. **Universal Asset Support**: Any asset can be tokenized as ZEN 7. **Stable Value Preservation**: Each community maintains its defined value 8. **DeFi Compatibility**: Seamless integration with existing DeFi protocols 9. **Real-World Utility**: Direct backing by tangible assets 10. **Risk Diversification**: Multiple asset classes reduce systemic risk 11. **Community Autonomy**: Each community controls its own asset backing ... #### **Stable COIN Monitoring Architecture** ```mermaid graph TD A[Asset Input] --> B[Value Assessment] B --> C[Equity Calculation] C --> D[ZEN Token Emission] D --> E[Primal Wallet Control] E --> F[Transaction Verification] F --> G[Asset-Backed Validation] G --> H[Stable COIN Circulation] subgraph "Asset Classes" I[Fiat Currencies] J[Real Estate] K[Commodities] L[DeFi Tokens] M[Energy Credits] N[Carbon Credits] end subgraph "Monitoring Systems" O[Forex APIs] P[Property Indexes] Q[Commodity Markets] R[Blockchain Oracles] S[Energy Grids] T[Environmental Markets] end I --> O J --> P K --> Q L --> R M --> S N --> T O --> B P --> B Q --> B R --> B S --> B T --> B ``` #### **DeFi Integration Capabilities** The ZEN Economy can integrate with **any DeFi protocol** while maintaining stability: ```bash # DeFi Stable COIN Integration Examples # USDC Integration ~/.ipfs/swarm.key = "SharedSecretForUSDCBackedZEN" 1_Ẑen = 1_USDC = 0.1_Ğ1 # Monitoring: Chainlink price feeds, Aave liquidity pools # DAI Integration ~/.ipfs/swarm.key = "SharedSecretForDAIBackedZEN" 1_Ẑen = 1_DAI = 0.1_Ğ1 # Monitoring: MakerDAO oracle, Compound lending rates # Real Estate Tokenization ~/.ipfs/swarm.key = "SharedSecretForRealEstateZEN" 1_Ẑen = 1_REIT_token = 0.1_Ğ1 # Monitoring: Property valuation APIs, rental yield data # Commodity Backing ~/.ipfs/swarm.key = "SharedSecretForGoldBackedZEN" 1_Ẑen = 1_gram_gold = 0.1_Ğ1 # Monitoring: LBMA gold prices, vault verification ``` #### **Cross-Asset Arbitrage Prevention** The primal wallet control system prevents arbitrage between different asset-backed ZEN communities: ```bash # Security Mechanism function prevent_cross_asset_arbitrage() { # Each swarm.key community is isolated # No direct conversion between different asset-backed ZEN # All conversions must go through Ğ1 as intermediary # Maintains value equity across all asset classes } ``` ### Real-Time Token Capitalization Tool The `primal_wallet_control.sh` script is specifically designed for **UPlanet Ẑen** as a **Real-Time Token Capitalization Tool** that: 1. **Monitors Input Transactions**: Tracks incoming € (Euro) transactions 2. **Controls Output Emissions**: Manages Ẑen token emissions based on verified primal sources 3. **Prevents Unauthorized Access**: Ensures only wallets with matching primal sources can receive Ẑen tokens 4. **Maintains Network Integrity**: Protects the private UPlanet Ẑen network from external intrusions 5. **Enforces Custom Valuations**: Ensures token emissions respect the community's defined economic model ## Implementation Summary This implementation extracts and generalizes the primal transaction control functionality from `NOSTRCARD.refresh.sh` and `G1PalPay.sh` into a reusable, generic solution that eliminates cache dependencies and provides real-time security monitoring for the UPlanet Ẑen private network. ### Key Features Implemented #### 1. Generic Primal Transaction Control * **Real-time Verification**: Uses `G1primal.sh (GraphQL squid)` for live primal source verification * **Smart Cache Usage**: Uses existing cache files when available and recent for performance optimization * **History-based Detection**: Analyzes transaction history to count existing intrusions without cache dependency * **Automatic Redirection**: Immediately redirects unauthorized transactions to UPLANETNAME\_G1 * **Intrusion Tracking**: Counts intrusion attempts for monitoring and alerts * **Loop Prevention**: Avoids transaction loops by redirecting instead of refunding #### 2. Security Enhancements * **Systematic Redirection**: All intrusions redirected to UPLANETNAME\_INTRUSION for centralized management * **Automatic Wallet Creation**: Creates UPLANETNAME\_INTRUSION wallet automatically if it doesn't exist * **Email Alerts**: Sends detailed alerts for all intrusions with redirection notifications * **Fund Centralization**: Transfers intrusive amounts to dedicated INTRUSION wallet for analysis * **Loop Prevention**: No refunds to sender to avoid potential transaction loops * **History-based Detection**: Analyzes transaction history to count existing intrusions without cache #### 3. Integration Points * **NOSTR Card Refresh**: Monitors MULTIPASS wallet transactions * **G1PalPay**: Monitors player wallet transactions * **Extensible**: Can be used for any wallet requiring primal control ## Features * **Primal Transaction Verification**: Uses `G1primal.sh (GraphQL squid)` to verify the primal source of incoming transactions * **WoT Dragon Identification Exception**: Allows 0.01 Ğ1 transactions ONLY as second incoming transaction for WoT captain identification without primal control * **Automatic Redirection**: Automatically redirects unauthorized transactions to UPLANETNAME\_INTRUSION * **Intrusion Detection**: Tracks intrusion attempts for monitoring and cooperative fund recovery * **Email Alerts**: Sends detailed alerts for all intrusions with redirection notifications * **Smart Cache Usage**: Uses existing cache files when available and recent for performance optimization * **History-based Detection**: Analyzes transaction history to count existing intrusions without cache dependency * **Loop Prevention**: Eliminates transaction loops by redirecting instead of refunding to sender * **NODE Wallet Protection**: Now includes NODE wallet in cooperative wallet protection system ## Technical Implementation ### Core Functions 1. **`get_primal_source()`** - Retrieves primal source using G1primal.sh (GraphQL squid) 2. **`get_wallet_history()`** - Gets transaction history with retry logic 3. **`create_intrusion_wallet()`** - Creates UPLANETNAME\_INTRUSION wallet if it doesn't exist 4. **`send_alert_email()`** - Sends email alerts using templates 5. **`count_existing_intrusions()`** - Analyzes transaction history to count existing intrusion transactions 6. **`control_primal_transactions()`** - Main control function with redirection logic ### How It Works 1. **Cache Check**: Checks for existing cache files (`~/.zen/tmp/coucou/$pubkey.primal` and `~/.zen/tmp/coucou/$pubkey.history`) 2. **Transaction History Retrieval**: Gets the wallet's complete transaction history using `G1history.sh (GraphQL squid)` (or from cache if recent) 3. **Existing Intrusion Analysis**: Scans transaction history for existing intrusion transactions to avoid cache dependency 4. **WoT Dragon Exception**: if transaction is exactly 0.01 Ğ1 AND is the second incoming transaction it informs about WoT member identification. 5. **Primal Source Verification**: For each incoming transaction, verifies the primal source using `G1primal.sh (GraphQL squid)` (or from cache if recent) 6. **Intrusion Detection**: Compares the primal source with the expected master primal 7. **INTRUSION Wallet Creation**: Automatically creates UPLANETNAME\_INTRUSION wallet if it doesn't exist 8. **Automatic Redirection**: If an intrusion is detected, automatically redirects the transaction to UPLANETNAME\_INTRUSION 9. **Alert System**: Sends email alerts for all intrusions with redirection notifications 10. **Fund Centralization**: All intrusive amounts are centralized in the dedicated INTRUSION wallet ### WoT Dragon Identification Protocol The system supports a **two-step identification protocol** for linking UPlanet stations to the WoT Dragon network: #### **Step 1: Primal Transaction (Initialization)** * **Source**: UPLANETNAME\_G1 (unified primal source) * **Destination**: NODE wallet * **Amount**: **Exactly 1 Ğ1** (initialization transaction) * **Purpose**: Initializes NODE wallet (1 Ğ1 = 0 ẐEN) and establishes primal source * **Comment**: `UPLANET:${UPLANETG1PUB:0:8}:$IPFSNODEID:NODEINIT` * **Location**: `ZEN.ECONOMY.sh` line 151 * **Security**: **Standard primal control** - must match UPLANETNAME\_G1 primal #### **Step 2: WoT Identification (Exception)** * **Source**: WoT Dragon Snipe (any Ğ1 member) * **Destination**: Any wallet * **Amount**: **Exactly 0.01 Ğ1** (identification marker) * **Position**: **ONLY apply to the 2nd incoming transaction** in wallet history * **Purpose**: Links station to WoT Dragon network to Ğ1 member WoT identity * **Security**: **Bypasses primal control** - no intrusion alert triggered * **Cache**: Creates `~/.zen/tmp/coucou/$pubkey.2nd` with format `sender_pubkey:amount:date` * **Validation**: Any other transaction (not respecting same UPLANETNAME\_G1 primal) will be rejected as intrusion ## Usage ### Direct Script Execution ```bash ./primal_wallet_control.sh ``` ### Parameters * `wallet_dunikey`: Path to the wallet's dunikey file * `wallet_pubkey`: Wallet's public key * `master_primal`: Expected master primal source * `player_email`: Player's email for alerts ### Function Call ```bash # Source the script source ./primal_wallet_control.sh # Call the function control_primal_transactions \ "/path/to/wallet.dunikey" \ "5fTwfbYUtCeoaFLbyzaBYUcq46nBS26rciWJAkBugqpo" \ "g1LBF94vApBWxJExucfEQyTRkAN1eFEnD5EFA2ZN8J1PpcdZ5" \ "player@example.com" ``` ## Integration Examples ### NOSTR Card Integration ```bash # In NOSTRCARD.refresh.sh ${MY_PATH}/../tools/primal_wallet_control.sh \ "${HOME}/.zen/game/nostr/${PLAYER}/.secret.dunikey" \ "${G1PUBNOSTR}" \ "${UPLANETNAME_G1}" \ "${EMAIL}" ``` ### G1PalPay Integration ```bash # In G1PalPay.sh ${MY_PATH}/../tools/primal_wallet_control.sh \ "${HOME}/.zen/game/players/${PLAYER}/secret.dunikey" \ "${G1PUB}" \ "${UPLANETNAME_G1}" \ "${EMAIL}" ``` ## Security Features * **Smart Cache Usage**: Uses existing cache files when available and recent for performance optimization * **Real-time Fallback**: Falls back to live verification when cache is not available or outdated * **History-based Intrusion Detection**: Analyzes transaction history to count existing intrusions without cache dependency * **Automatic Wallet Creation**: Creates UPLANETNAME\_INTRUSION wallet automatically if needed * **Automatic Redirection**: Unauthorized transactions are immediately redirected to UPLANETNAME\_INTRUSION * **Loop Prevention**: No refunds to sender to avoid potential transaction loops * **Email Notifications**: Detailed alerts for all security events with redirection notifications * **Fund Centralization**: All intrusive amounts centralized in dedicated INTRUSION wallet for analysis ## Dependencies ### Required Tools * `gcli` - Duniter v2s blockchain client (payments via PAYforSURE.sh) * `G1primal.sh` / `G1history.sh` - GraphQL squid queries * `jq` - JSON parsing * `bc` - Mathematical calculations * `mailjet.sh` - Email notifications * `PAYforSURE.sh` - Secure payments * `duniter_getnode.sh` - BMAS node discovery * `keygen` - Wallet creation tool ### Cache Files The script uses existing cache files for performance optimization: * `~/.zen/tmp/coucou/$pubkey.primal` - Cached primal source (permanently valid) * `~/.zen/tmp/coucou/$pubkey.history` - Cached transaction history (valid for 30 minutes) * `~/.zen/tmp/coucou/$pubkey.2nd` - Second transaction detection cache (WoT Dragon member pubkey Identification) ### Templates The script uses HTML template for email alerts: * `templates/NOSTR/wallet_redirection.html` - For redirection notifications (all intrusions) ## Benefits Achieved ### 1. Code Reusability * **Single Implementation**: One script handles all primal control scenarios * **Consistent Behavior**: Same logic across different wallet types * **Maintainability**: Centralized updates and bug fixes ### 2. Enhanced Security * **Real-time Verification**: Uses live data when cache is not available or outdated * **Smart Cache Usage**: Leverages existing cache for performance while maintaining security * **History-based Detection**: Eliminates cache dependency for intrusion counting * **Automatic Response**: Immediate redirection and alert system * **Loop Prevention**: Eliminates transaction loops by redirecting instead of refunding ### 3. Improved Reliability * **Retry Logic**: Handles network failures gracefully * **Error Handling**: Comprehensive error checking and reporting * **Logging**: Detailed operation logging for debugging * **Cache Management**: Automatic cache creation and validation ### 4. Flexibility * **Simplified Logic**: Single redirection rule for all intrusions * **Template System**: Customizable email alerts for different intrusion types * **Extensible Design**: Easy to add new wallet types ## Error Handling * **Network Failures**: Retries up to 3 times for network operations * **Invalid JSON**: Validates JSON responses before processing * **Missing Files**: Creates required files if they don't exist * **Invalid Parameters**: Provides detailed usage information for incorrect parameters ## Logging The script provides detailed logging for: * Transaction processing * Primal verification results * Intrusion detection * Redirection operations * Fund centralization to INTRUSION wallet ## Security Considerations * **Private Key Security**: Ensure dunikey files have appropriate permissions (600) * **Email Security**: Verify email addresses to prevent alert spoofing * **Network Security**: Use secure connections for blockchain operations * **File Permissions**: Protect cache files and transaction logs from unauthorized access ## Troubleshooting ### Common Issues 1. **"gcli not found"**: Install gcli via `install/install_gcli.sh` 2. **"Invalid JSON response"**: Check network connectivity to BMAS nodes 3. **"Permission denied"**: Check file permissions for dunikey and log files 4. **"Email sending failed"**: Verify mailjet.sh configuration ### Debug Mode Add debug output by setting: ```bash export DEBUG=1 ``` ## Future Enhancements ### Potential Improvements * **Custom Alert Channels**: Cesium+, Slack, Discord, etc. ## License AGPL-3.0 - See LICENSE file for details. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://astroport-1.gitbook.io/astroport.one/tools/primal_wallet_control.readme.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.