feat: add rofl key genearation use case

[uniyalabhishek]

Closes oasisprotocol/oasis-sdk#2298

This PR:

• Creates a new use case guide for key generation using appd REST
  • This guide goes through how to sign message on EVM chain. Base in this case
  • Generate key for Base via appd key REST API (secp…)
  • Send ETH(test) to ROFL key
  • (Deploy Contract via ROFL key)
  • Send ETH(test) back to user via RPC

The example repo can be found here: https://github.com/uniyalabhishek/demo-rofl-keygen

[netlify]

✅ Deploy Preview for oasisprotocol-docs ready!

Name	Link
🔨 Latest commit	f881b47
🔍 Latest deploy log	https://app.netlify.com/projects/oasisprotocol-docs/deploys/68e3a1dcfdbd4d0008d2d87d
😎 Deploy Preview	https://deploy-preview-1478--oasisprotocol-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[matevz]

First pass

[matevz]

I think KMS became a standard term now for managing the keys.

Suggested change

	tags: [ROFL, appd, keys, EVM]
	tags: [ROFL, appd, KMS, EVM]

[matevz]

Suggested change

	````
	```

[matevz]

Let's us the standard tree command-like project structure style.

Suggested change

	src/
	appd.ts # talks to appd over /run/rofl-appd.sock
	evm.ts # ethers helpers (provider, wallet, tx)
	keys.ts # tiny helpers (checksum)
	server.ts # HTTP API to drive the demo
	contracts/
	Counter.sol # optional sample contract
	src/
	├── appd.ts # talks to appd over /run/rofl-appd.sock
	├── evm.ts # ethers helpers (provider, wallet, tx)
	├── keys.ts # tiny helpers (checksum)
	└── server.ts # HTTP API to drive the demo
	contracts/
	└── Counter.sol # optional sample contract

[matevz]

I'd just use hardhat init and select typescript. Then install any extra deps. See how we did it for Sapphire: https://github.com/oasisprotocol/sapphire-paratime/blob/main/docs/quickstart.mdx#init-a-new-hardhat-project

[matevz]

For those who don't know what EVM stands for.

Suggested change

	description: Generate an EVM key inside ROFL via appd and use it to sign and send transactions on Base.
	description: Generate an Ethereum-compatible key inside ROFL via appd and use it to sign and send transactions on Base.

[matevz]

Follow best security practices and use SecretKey instead of PrivateKey.

Suggested change

	export async function getEvmPrivateKey(keyId: string): Promise<string> {
	export async function getEvmSecretKey(keyId: string): Promise<string> {

[matevz]

Suggested change

	export function privateKeyToWallet(pkHex: string): Wallet {
	return new Wallet(pkHex);
	}
	export function secretKeyToWallet(skHex: string): Wallet {
	return new Wallet(skHex);
	}

[matevz]

I think running another HTTP API is not a good idea. There is a REST server already running and accessible at /run/rofl/appd.sock for this purpose.

Users that want to have EVM-signing capability would need to integrate your HTTP API anyway, so why not connecting to appd directly? Instead of server.ts I'd write a simple test that uses appd, get the key, sign an EVM transaction and submit it to Base.

[matevz]

YOUR_PROXY is the machine name defined in compose.yaml. Also, https won't work out of the box since the domain is not managed by CA and self-signed certs are not allowed.