Android4337 is an Android SDK for building with ERC-4337.
- Smart Account: We offer a high-level API for deploying and managing smart accounts (currently supporting Safe Account).
- Bundler: Comprehensive support for all bundler methods as defined by ERC-4337.
- Paymaster: Enables paymaster for gas fee sponsorship.
- Signers: Supports both traditional EOA signers and Passkey signers, enabling flexible and secure authentication mechanisms.
- Modular and Extensible: Easily create and integrate your own smart account, bundlers, paymasters, and signers.
Android4337 SDK is published on Jitpack. To use it, add Jitpack repository to your root gradle file:
dependencyResolutionManagement {
repositoriesMode.set(RepositoriesMode.FAIL_ON_PROJECT_REPOS)
repositories {
mavenCentral()
maven { url 'https://jitpack.io' } // add this line
}
}Add the dependency:
dependencies {
implementation "com.github.cometh-hq:android4337:<latest_version>"
}set <last_version> instead of fixed version to get the latest version.
Don't forget to add the internet permission to your AndroidManifest.xml file:
<uses-permission android:name="android.permission.INTERNET" />// ...
val signer = EOASigner(WalletUtils.loadCredentials("MY_PASSWORD", "MY_PATH"))
val rpcService = HttpService("https://an-infura-or-similar-url.com/123")
val bundlerClient = SimpleBundlerClient(HttpService("https://cometh-or-similar-4337-provider/123"))
val chainId = 11155111 // for example, sepolia
val safeAccount = SafeAccount.createNewAccount(signer, bundlerClient, chainId, rpcService)
safeAccount.sendUserOperation("TO_ADDRESS", value = BigInteger.ZERO, data = "0x".toByteArray())Allows users to interact with their smart accounts, encapsulating ERC-4337 logic such as deploying the smart account on the first operation, estimating user operations, and sponsoring gas.
In this version of Android4337, we provide support for Safe Accounts.
fun createNewAccount(
signer: Signer,
bundlerClient: BundlerClient,
chainId: Int,
web3Service: Service,
config: SafeConfig = SafeConfig.getDefaultConfig(),
entryPointAddress: String = EntryPointContract.ENTRY_POINT_ADDRESS_V7,
paymasterClient: PaymasterClient? = null,
gasPriceProvider: UserOperationGasPriceProvider = RPCGasEstimator(web3Service),
)- signer: If not provided, user operation will be signed with
EcdsaSignerusing the provided credentials. For Passkey, usePasskeySigner. - config: If not provided, the default configuration will be used ( see Safe Config).
- entryPointAddress: The address of the entry point contract. By default, is uses the V7 entry point address.
- paymasterClient: If specified, it will be used when preparing the user operation to sponsor gas fees.
- gasPriceProvider: If not provided, the
RPCGasEstimatorwill be used with default parameters ( see Gas Price Provider). - web3jTransactionManager: If not provided, the
RawTransactionManagerwill be used with the provided credentials.RawTransactionManageris provided by web3j, you can use any other implementation ofTransactionManagerthat you want.
@WorkerThread
@Throws(IOException::class, RuntimeException::class)
fun fromAddress(
address: String,
signer: Signer,
bundlerClient: BundlerClient,
chainId: Int,
web3Service: Service,
config: SafeConfig = SafeConfig.getDefaultConfig(),
entryPointAddress: String = EntryPointContract.ENTRY_POINT_ADDRESS_V7,
paymasterClient: PaymasterClient? = null,
gasPriceProvider: UserOperationGasPriceProvider = RPCGasEstimator(web3Service),
)Only difference is that you need to provide the address of the Safe Account.
Any smart account implementation have to extend SmartAccount abstract class and implement the following methods:
abstract fun signOperation(userOperation: UserOperation, entryPointAddress: String): ByteArray
abstract fun getCallData(to: Address, value: BigInteger, data: ByteArray): ByteArray
abstract fun getFactoryAddress(): Address
abstract fun getFactoryData(): ByteArray
abstract fun getDummySignature(): StringSmartAccount provides the following methods::
fun prepareUserOperation(to: Address, value: BigInteger, data: ByteArray): UserOperationPrepares the user operation, get the initCode if the account is not deployed, calls the paymaster if available, and obtains the gas estimation.fun sendUserOperation(to: Address, value: BigInteger, data: ByteArray): StringPrepares the user operation, signs it, sends it to the bundler, and returns a user operation hash.fun getNonce(): BigIntegerReturns the current nonce for the smart wallet from the entry point.fun isDeployed(): BooleanReturns true if the smart account is already deployed.
To be compatible with Android4337, a smart account must provide the following methods (currently, we support Safe Accounts and provide the implementation):
fun signOperation(userOperation: UserOperation, entryPointAddress: String): ByteArraySigns the user operation with the signer associated with the smart account.fun getCallData(to: Address, value: BigInteger, data: ByteArray): ByteArrayReturns the callData to execute the transactions parameters (to, value, data and operation).fun getFactoryAddress(): AddressReturns the address of the factory to be used to deploy the wallet.fun getFactoryData(): ByteArrayReturns the call data to be passed to the factory to deploy the wallet.
To control a Smart Account, users need to provide their credentials. Android4337 uses the Credentials class
from web3j.
web3j offers a variety of methods to create or get credentials, such as:
val credentials = WalletUtils.loadCredentials("MY_PASSWORD", "MY_PATH")Please refer to the web3j documentation for more information.
To interact with the blockchain and call methods on smart contracts, you need a RPC.
val rpcService = HttpService("https://an-infura-or-similar-url.com/123")HttpService is a class from web3j. You can use any other implementation of Service or create your own.
To send, estimate, and get user operations receipts, you need a Bundler.
val bundlerService = HttpService("https://cometh-or-similar-4337-provider/123")
val bundlerClient = SimpleBundlerClient(bundlerService)Available Bundler RPC methods:
-
eth_sendUserOperation: This method submits a User Operation (UserOp) to the mempool. If the operation is accepted, it returns a userOpHash.
-
eth_estimateUserOperationGas : Estimates the gas values required for a given User Operation, including PreVerificationGas, VerificationGas, and CallGasLimit.
-
eth_getUserOperationByHash: Retrieves a User Operation and its transaction context based on a given userOpHash.
-
eth_getUserOperationReceipt: Fetches the receipt of a User Operation based on a given userOpHash. The receipt includes metadata and the final status of the UserOp.
You can create your own Bundler Client by implementing the BundlerClient interface.
To sponsor gas fees, you need a Paymaster.
val paymasterClient = PaymasterClient("https://cometh-or-similar-4337-provider/123")Available Paymaster RPC methods:
- pm_sponsorUserOperation: Submit a UserOperation to the paymaster. If approved for sponsorship, it returns the paymasterAndData along with updated gas values
- pm_supportedEntryPoints: returns an array of supported EntryPoint addresses.
To estimate gas prices (maxFeePerGas and maxPriorityFeePerGas).
We provide an implementation RPCGasEstimator but you can create your own by implementing the UserOperationGasPriceProvider interface.
interface UserOperationGasPriceProvider {
fun getGasPrice(): GasPrice
}See our Gas Provider implementation RPCGasEstimator for more details.
To sign user operations, you need a Signer. Android4337 provides two implementations:
EOASigner: Signs user operations using the provided credentials. Used by default.PasskeySigner: Signs user operations using a Passkey.
Passkeys provide enhanced security and simplify authentication through quick methods like biometrics. Supported by Apple, Google, and Microsoft, they are widely implemented on iOS and Android. Their adoption improves the user experience by making authentication faster and simpler.
On chain contracts use ERC-1271 and WebAuthn standards for verifying WebAuthn signatures with the secp256r1 curve.
Important
To enable passkey support for an Android app, you must associate your app with a website. Follow these instructions from the official Android guide.
Important
When initializing a Safe Account with a Passkey signer it will use the Safe WebAuthn Shared Signer to respect 4337 limitation. For more information have a look at Safe Documentation
There is one notable caveat when using the passkey module with ERC-4337 specifically, which is that ERC-4337 user operations can only deploy exactly one CREATE2 contract whose address matches the sender of the user operation. This means that deploying both the Safe account and its WebAuthn credential owner in a user operation's initCode is not possible.
In order to by pass this limitation you can use the SafeWebAuthnSharedSigner: a singleton that can be used as a Safe owner.
For more Infos : Safe passkey module
To sign user operations using the Passkey, you need to create a PasskeySigner instance and launch the passkey creation user flow.
coroutineScope.launch {
// will launch a passkey creation user flow if passkey not created yet, otherwise will use the existing passkey in Shared Preferences
// can throw a GetCredentialException (from CredentialsManager) if create_credentials fails
val passkeySigner = PasskeySigner.withSharedSigner(
context = context, // Android context
rpId = "my.rp.id", // must be your package name
userName = "user_name",
)
val passkey = passkeySigner.passkey // returns the passkey if created
}Then, you can use the PasskeySigner instance when creating a Safe Account:
val safeAccount = SafeAccount.createNewAccount(
// ...
signer = passkeySigner
)
// when sending an user operation, it will prompt the user to sign the operation using the passkey
safeAccount.sendUserOperation("TO_ADDRESS", value = BigInteger.ZERO, data = "0x".toByteArray())This will init a safe with a Passkey Signer using the Safe WebAuthn Shared Signer contract as owner. When deploying the safe, the Safe WebAuthn Shared Signer will be configured with the x and y of the passkey used.
You can check the sample app for a complete example (see sample).
Important
This configuration of Passkey signer should not be used for an undeployed safe, or the signer contract should have already been deployed. Due to 4337 limitations, only one CREATE2 contract should be deployed by the init code. Safe and signer cannot be deployed simultaneously.
val signer = EOASigner(WalletUtils.loadCredentials("MY_PASSWORD", "MY_PATH"))
val safeAccount = SafeAccount.createNewAccount(signer, bundlerClient, chainId, rpcService)
val accountAddress = safeAccount.safeAddress
coroutineScope.launch {
val passkeySigner = PasskeySigner.withSigner(
context = context,
rpId = "my.rp.id",
userName = "user_name",
web3jService = rpcService, // needed to get signer from the chain
)
// This will deploy the Safe Webauthn Contract and add its address as the owner of the safe
// It can throw a SmartAccountException
val userOpHash = safeAccount.deployAndEnablePasskeySigner(passkeySigner.passkey.x, passkeySigner.passkey.y)
// Create a SafeAccount with the new Passkey Signer
val safePassKeyAccount = SafeAccount.fromAddress(
address = accountAddress,
signer = signer,
bundlerClient = bundlerClient,
chainId = chainId,
web3Service = rpcService,
)
}Android4337 is built on top of web3j, an excellent Java (Android compatible) library for working with web3.
At this time, the most recent version of web3j compatible with Android is 4.8.9-android that we use in our project.
We encourage you to read the web3j web3j documentation for more details on how to use these components.
The initial project was crafted by the team at Cometh. However, we encourage anyone to help implement new features and to keep this library up-to-date. Please follow the contributing guidelines.
Released under the Apache License.