Skip to main content

Javascript Server

Installation

yarn add @turnkey/sdk-server

Initializing

import { Turnkey } from "@turnkey/sdk-server";
import turnkeyConfig from "./turnkey.json"
const turnkey = new Turnkey(turnkeyConfig);

Parameters

An object containing configuration settings for the Server Client.

defaultOrganizationIdstringrequired

The root organization that requests will be made from unless otherwise specified

apiBaseUrlstringrequired

The base URL that API requests will be sent to (use https://api.turnkey.com when making requests to Turnkey's API)

apiPrivateKeystring

The API Private Key to sign requests with (this will normally be the API Private Key to your root organization)

apiPublicKeystring

The API Public Key associated with the configured API Private Key above

Turnkey Clients

Calls to Turnkey's API must be signed with a valid credential from the user initiating the API call. When using the Server SDK, the user initiating the API call is normally your root organization, and the API call is authenticated with the API keypair you create on the Turnkey dashboard.

1. API Client

The api client will sign requests with the injected apiPrivateKey, and apiPublicKey credentials.

const apiClient = turnkey.apiClient();
const walletsResponse = await apiClient.getWallets();

// this will sign the request with the configured api credentials

API Proxies

There are certain actions that are initiated by users, but require the activity to be signed by the root organization itself. Examples of this include the initial creation of the user subOrganization, sending an email to a user with a login credential as part of an emailAuth flow, and initializing an email recovery flow with the initEmailRecovery activity.

These can be implemented in your backend by creating an apiClient and handling requests from your browser application at different routes, but we have also provided a convenience method for doing this by having allowing a single apiProxy to handle requests at a single route and automatically sign specific user actions with the root organization's credentials.

1. Express Proxy Handler

const turnkeyProxyHandler = turnkey.expressProxyHandler({
allowedMethods: [
"createSubOrganization",
"emailAuth",
"initUserEmailRecovery",
"getSubOrgIds"
]
});
app.post("/apiProxy", turnkeyProxyHandler)

// this will sign requests made with the client-side `serverSign` function with the root organization's API key for the allowedMethods in the config

2. Next JS Proxy Handler

TODO: Add Documentation for NextJS Proxy Handler

Examples

TODO: Add Examples of Server SDK Flows