logo

EIP-712 Signing

EIP-712 typed data domain, envelope structure, and per-operation type schemas

The Namefi API uses EIP-712 typed data signatures to authorize sensitive operations. Each request is signed with the caller's wallet, providing cryptographic proof of intent without exposing private keys.

EIP-712 domain

All Namefi EIP-712 signatures use the same domain separator:

const domain = {
  name: 'Namefi',
  version: '1',
};

No chainId or verifyingContract fields are included in the domain — the signature is chain-agnostic.

Envelope structure

Every EIP-712 operation wraps the request payload in a standard envelope. The envelope is the primaryType that gets signed:

{
  payloadType: string;   // The inner payload type name (e.g. "ToggleDomainParking")
  payload: T;            // The operation-specific payload
  timestamp: uint256;    // Unix timestamp in seconds (Math.trunc(Date.now() / 1000))
  nonce: string;         // Random hex string for replay protection
}

The client library builds this envelope automatically. If you are making raw HTTP requests, you must construct it yourself.

Example: signing a toggleDomainParking request

import { toHex } from 'viem';

// 1. The operation-specific payload
const payload = {
  normalizedDomainName: 'example.com',
  enableParking: true,
  overrideExistingRecords: false,
};

// 2. Wrap in the envelope
const envelope = {
  payloadType: 'ToggleDomainParking',
  payload,
  timestamp: Math.trunc(Date.now() / 1000),
  nonce: toHex(crypto.getRandomValues(new Uint8Array(32))),
};

// 3. Sign as EIP-712 typed data
const { signature, address } = await signer.signTypedData({
  domain: { name: 'Namefi', version: '1' },
  types: {
    ToggleDomainParking: [
      { name: 'normalizedDomainName', type: 'string' },
      { name: 'enableParking', type: 'bool' },
      { name: 'overrideExistingRecords', type: 'bool' },
    ],
    ToggleDomainParkingEnvelope: [
      { name: 'payloadType', type: 'string' },
      { name: 'payload', type: 'ToggleDomainParking' },
      { name: 'timestamp', type: 'uint256' },
      { name: 'nonce', type: 'string' },
    ],
  },
  primaryType: 'ToggleDomainParkingEnvelope',
  message: envelope,
});

// 4. Send with signature headers
const response = await fetch('https://backend.astra.namefi.io/v-next/dns/park', {
  method: 'PUT',
  headers: {
    'content-type': 'application/json',
    'x-namefi-signature': signature,
    'x-namefi-signer': address,
    'x-namefi-eip712-type': 'ToggleDomainParkingEnvelope',
  },
  body: JSON.stringify(envelope),
});

Request headers

EIP-712 authenticated requests require three headers:

HeaderValue
x-namefi-signatureThe hex-encoded EIP-712 signature
x-namefi-signerThe signer's checksummed Ethereum address
x-namefi-eip712-typeThe primaryType used for signing (the envelope type name)

Operations and their typed data schemas

DNS record operations

createDnsRecordCreateDnsRecordEnvelope

{
  "CreateDnsRecord": [
    { "name": "name", "type": "string" },
    { "name": "rdata", "type": "string" },
    { "name": "ttl", "type": "uint256" },
    { "name": "zoneName", "type": "string" }
  ],
  "CreateDnsRecordEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "CreateDnsRecord" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

updateRecordUpdateDnsRecordEnvelope

{
  "UpdateDnsRecord": [
    { "name": "id", "type": "string" },
    { "name": "zoneName", "type": "string" },
    { "name": "rdata", "type": "string" },
    { "name": "ttl", "type": "uint256" }
  ],
  "UpdateDnsRecordEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "UpdateDnsRecord" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

deleteRecordRecordSelectEnvelope

{
  "RecordSelect": [
    { "name": "id", "type": "string" },
    { "name": "zoneName", "type": "string" }
  ],
  "RecordSelectEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "RecordSelect" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

createRecords (batch) — CreateRecordsEnvelope

{
  "CreateRecords": [
    { "name": "records", "type": "CreateDnsRecord[]" },
    { "name": "zoneName", "type": "string" }
  ],
  "CreateRecordsEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "CreateRecords" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

updateRecords (batch) — UpdateRecordsEnvelope

{
  "UpdateZoneRecord": [
    { "name": "id", "type": "string" },
    { "name": "rdata", "type": "string" },
    { "name": "ttl", "type": "uint256" }
  ],
  "UpdateRecords": [
    { "name": "records", "type": "UpdateZoneRecord[]" },
    { "name": "zoneName", "type": "string" }
  ],
  "UpdateRecordsEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "UpdateRecords" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

deleteRecords (batch) — DeleteRecordsEnvelope

{
  "DeleteRecords": [
    { "name": "recordsIds", "type": "string[]" },
    { "name": "zoneName", "type": "string" }
  ],
  "DeleteRecordsEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "DeleteRecords" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

Domain parking operations

parkDomainParkDomainEnvelope

{
  "ParkDomain": [
    { "name": "normalizedDomainName", "type": "string" },
    { "name": "overrideExistingRecords", "type": "bool" }
  ],
  "ParkDomainEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "ParkDomain" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

toggleDomainParkingToggleDomainParkingEnvelope

{
  "ToggleDomainParking": [
    { "name": "normalizedDomainName", "type": "string" },
    { "name": "enableParking", "type": "bool" },
    { "name": "overrideExistingRecords", "type": "bool" }
  ],
  "ToggleDomainParkingEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "ToggleDomainParking" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

Order operations

registerDomainInstantRegisterDomainEnvelope or InstantRegisterDomainDefaultWalletEnvelope

When nftReceivinggWallet is provided:

{
  "InstantRegisterDomainEnvelope_Payload_NftReceivinggWallet": [
    { "name": "chainId", "type": "uint256" }
  ],
  "InstantRegisterDomain": [
    { "name": "normalizedDomainName", "type": "string" },
    { "name": "durationInYears", "type": "uint256" },
    { "name": "nftReceivinggWallet", "type": "InstantRegisterDomainEnvelope_Payload_NftReceivinggWallet" }
  ],
  "InstantRegisterDomainEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "InstantRegisterDomain" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

When using the default wallet (no nftReceivinggWallet):

{
  "InstantRegisterDomainDefaultWallet": [
    { "name": "normalizedDomainName", "type": "string" },
    { "name": "durationInYears", "type": "uint256" }
  ],
  "InstantRegisterDomainDefaultWalletEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "InstantRegisterDomainDefaultWallet" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

registerDomainForTrialRegisterTrialDomainEnvelope

{
  "RegisterTrialDomain": [
    { "name": "normalizedDomainName", "type": "string" }
  ],
  "RegisterTrialDomainEnvelope": [
    { "name": "payloadType", "type": "string" },
    { "name": "payload", "type": "RegisterTrialDomain" },
    { "name": "timestamp", "type": "uint256" },
    { "name": "nonce", "type": "string" }
  ]
}

Notes

  • The timestamp field uses Unix seconds (Math.trunc(Date.now() / 1000)), not milliseconds.
  • The nonce should be a random hex string for replay protection.
  • The client library handles envelope construction and signing automatically — the schemas above are for reference when building raw HTTP requests.
  • All envelope types follow the same four-field pattern: payloadType, payload, timestamp, nonce.

Authentication

Authenticate with the Namefi API using an API key, EIP-712 wallet signatures, or SIWE sessions

SIWE Authentication

Step-by-step Sign-In with Ethereum flow — nonce, message, sign, verify, and use the session token

On this page

EIP-712 domainEnvelope structureExample: signing a toggleDomainParking requestRequest headersOperations and their typed data schemasDNS record operationsDomain parking operationsOrder operationsNotes