Metadata-Version: 2.4
Name: ciphera
Version: 0.1.1
Summary: Zero-Knowledge KYC for Algorand — verify KYC status on-chain without exposing personal data
Project-URL: Homepage, https://github.com/Aditya060806/Ciphera
Project-URL: Repository, https://github.com/Aditya060806/Ciphera
Project-URL: Issues, https://github.com/Aditya060806/Ciphera/issues
Project-URL: Documentation, https://github.com/Aditya060806/Ciphera#readme
Author-email: Aditya Pandey <adityapandey060806@gmail.com>
License: MIT License
        
        Copyright (c) 2026 Aditya Pandey
        
        Permission is hereby granted, free of charge, to any person obtaining a copy
        of this software and associated documentation files (the "Software"), to deal
        in the Software without restriction, including without limitation the rights
        to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
        copies of the Software, and to permit persons to whom the Software is
        furnished to do so, subject to the following conditions:
        
        The above copyright notice and this permission notice shall be included in all
        copies or substantial portions of the Software.
        
        THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
        IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
        FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
        AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
        LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
        OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
        SOFTWARE.
License-File: LICENSE
Keywords: aadhaar,algorand,blockchain,groth16,kyc,privacy,snarkjs,zero-knowledge,zk-proof
Classifier: Development Status :: 3 - Alpha
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: MIT License
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.9
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Security :: Cryptography
Classifier: Topic :: Software Development :: Libraries :: Python Modules
Requires-Python: >=3.9
Requires-Dist: py-algorand-sdk>=2.6.0
Provides-Extra: algorand
Requires-Dist: py-algorand-sdk>=2.6.0; extra == 'algorand'
Provides-Extra: dev
Requires-Dist: build>=1.0; extra == 'dev'
Requires-Dist: pytest-asyncio>=0.23; extra == 'dev'
Requires-Dist: pytest>=7.0; extra == 'dev'
Requires-Dist: twine>=5.0; extra == 'dev'
Description-Content-Type: text/markdown

<div align="center">

<img src="https://raw.githubusercontent.com/Aditya060806/Ciphera/master/widget/public/Ciphera%20logo.png" alt="Ciphera Logo" width="140" />

# ciphera

**Zero-Knowledge KYC for Algorand — Python SDK**

[![PyPI version](https://img.shields.io/pypi/v/ciphera?logo=pypi)](https://pypi.org/project/ciphera)
[![Python](https://img.shields.io/pypi/pyversions/ciphera)](https://pypi.org/project/ciphera)
[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
[![Algorand](https://img.shields.io/badge/Built%20on-Algorand-00D2FF)](https://algorand.com)

*Query KYC status on Algorand. Verify ZK proofs. No personal data — ever.*

</div>

---

## Install

```bash
pip install ciphera
```

---

## What is Ciphera?

Ciphera is a privacy-preserving zero-knowledge KYC system on Algorand. Users prove they are verified Indian adults **without exposing any personal information** — ZK proofs are generated entirely in the browser and verified on-chain.

The Python SDK is designed for **issuer backends** and **dApps** that need to:
- Query KYC status on-chain
- Verify Groth16 ZK proofs server-side
- Integrate Ciphera into existing Python/FastAPI backends

---

## Quick Start

### Check KYC Status (any dApp)

```python
from ciphera import CipheraClient

client = CipheraClient()  # Algorand Testnet (default)

status = client.verify_kyc()
print(status.is_verified)        # True if credentials exist
print(status.total_registered)   # e.g. 42
print(status.app_id)             # 756272073
```

### Check a Specific Nullifier

```python
from ciphera import CipheraClient

client = CipheraClient()

# Check if a specific 32-byte nullifier is registered on-chain
registered = client.is_nullifier_registered("3b1f8a2c" + "0" * 56)
print(registered)  # True / False
```

### Verify a ZK Proof (Issuer Backend)

```python
import json
from ciphera import verify_proof

with open("verification_key.json") as f:
    vk = json.load(f)

result = verify_proof(
    verification_key=vk,
    proof=proof_dict,              # from browser SDK
    public_signals=signals_list,   # from browser SDK
    expected_app_id=756272073      # prevents cross-app attacks
)

if result.valid:
    print(result.nullifier_hex)               # 32-byte hex to register on-chain
    print(result.public_signals.is_adult)     # "1"
    print(result.public_signals.is_indian)    # "1"
else:
    print(result.error)
```

### Connect to Different Networks

```python
from ciphera import CipheraClient

# Testnet (default)
client = CipheraClient()

# Mainnet
client = CipheraClient(network="mainnet")

# LocalNet (development)
client = CipheraClient(network="localnet")

# Custom Algod endpoint
client = CipheraClient(
    algod_url="https://my-algod.example.com",
    algod_token="my-api-token"
)
```

---

## API Reference

### `CipheraClient`

```python
CipheraClient(
    network="testnet",   # "testnet" | "mainnet" | "localnet"
    algod_url=None,      # Override Algod endpoint URL
    algod_token="",      # Override Algod API token
    contract_ids=None,   # Override deployed contract IDs (dict)
)
```

| Method | Returns | Description |
|---|---|---|
| `verify_kyc(wallet_address=None)` | `KYCStatus` | Query NullifierRegistry on-chain |
| `is_nullifier_registered(hex)` | `bool` | Direct box storage check for a nullifier |
| `get_credential_asa_id()` | `int` | KYCRED ASA token ID |
| `CipheraClient.explorer_tx_url(txid)` | `str` | Allo.info TX explorer URL |
| `CipheraClient.explorer_app_url(app_id)` | `str` | Allo.info app explorer URL |

---

### `verify_proof(vk, proof, public_signals, expected_app_id=None)`

Verify a Groth16 ZK proof server-side using snarkjs (via Node.js subprocess).

> ⚠️ **Requires Node.js** — `node` must be installed and available in PATH.

| Parameter | Type | Required | Description |
|---|---|---|---|
| `verification_key` | `dict`, `str`, or `Path` | ✅ | Groth16 verification key (dict, JSON string, or file path) |
| `proof` | `dict` | ✅ | Groth16 proof from the browser SDK |
| `public_signals` | `list[str]` | ✅ | Public signals list from the browser SDK |
| `expected_app_id` | `int \| str` | ❌ | Guard against cross-app replay attacks |

Returns: `ProofResult`

---

## Data Models

```python
from dataclasses import dataclass
from typing import Optional

@dataclass
class KYCStatus:
    is_verified: bool       # True if KYC credentials are registered
    app_id: int             # NullifierRegistry app ID
    total_registered: Optional[int]  # Total credentials in registry
    nullifier: Optional[str]         # Registered nullifier hex
    error: Optional[str]             # Error message if query failed

@dataclass
class ProofResult:
    valid: bool                          # True if proof is valid
    nullifier_hex: Optional[str]         # 32-byte nullifier hex (on-chain ready)
    public_signals: Optional[PublicSignals]  # Parsed public signals
    error: Optional[str]                 # Error message if verification failed

@dataclass
class PublicSignals:
    nullifier: str           # BN254 field element (decimal string)
    merkle_root: str         # SMT root
    app_id: str              # NullifierRegistry app ID
    is_indian: str           # "1" (circuit-enforced)
    is_adult: str            # "1" (circuit-enforced, age >= 18)
    is_kyc_verified: str     # "1" (circuit-enforced)

    @property
    def nullifier_hex(self) -> str: ...  # Nullifier as 32-byte hex
```

---

## Exceptions

```python
from ciphera.exceptions import CipheraError, ProofVerificationError, NetworkError

try:
    status = client.verify_kyc()
except NetworkError as e:
    print(f"Algorand query failed: {e}")
except CipheraError as e:
    print(f"Ciphera error: {e}")
```

| Exception | When raised |
|---|---|
| `CipheraError` | Base class for all Ciphera SDK errors |
| `ProofVerificationError` | ZK proof verification fails |
| `NetworkError` | Algorand network request fails |
| `ContractError` | Smart contract interaction fails |

---

## Deployed Contracts (Algorand Testnet)

| Contract | App ID | Explorer |
|---|---|---|
| NullifierRegistry | `756272073` | [allo.info ↗](https://allo.info/application/756272073) |
| SMTRegistry | `756272075` | [allo.info ↗](https://allo.info/application/756272075) |
| KYCBoxStorage | `756272299` | [allo.info ↗](https://allo.info/application/756272299) |
| CredentialManager | `756281076` | [allo.info ↗](https://allo.info/application/756281076) |
| KYCRED ASA | `756281102` | [allo.info ↗](https://allo.info/asset/756281102) |

---

## Requirements

| Requirement | Version |
|---|---|
| Python | 3.9+ |
| `py-algorand-sdk` | ≥ 2.6.0 (auto-installed) |
| Node.js | Any (only for `verify_proof()`) |

---

## Links

[GitHub](https://github.com/Aditya060806/Ciphera) · [PyPI](https://pypi.org/project/ciphera) · [npm](https://www.npmjs.com/package/ciphera-sdk) · [Issues](https://github.com/Aditya060806/Ciphera/issues)

---

## License

MIT © [Aditya Pandey](https://github.com/Aditya060806)
