The @turnkey/sdk-react-native package simplifies the integration of the Turnkey API into React Native applications. It provides secure session management, authentication, and cryptographic operations using react-native-keychain, @turnkey/crypto, @turnkey/api-key-stamper, and @turnkey/http.
-
Install the following dependencies in your React Native project:
react-native-keychainreact-native-inappbrowser-reborn@turnkey/crypto@turnkey/api-key-stamper@turnkey/http-
@turnkey/sdk-react-native(this package)
-
Ensure your app is properly configured for secure storage and authentication.
-
You must polyfill random byte generation to ensure
generateP256KeyPairfrom@turnkey/cryptoworks properly by importingreact-native-get-random-valuesat the entry point of your application:import "react-native-get-random-values";
import { TurnkeyProvider } from "@turnkey/sdk-react-native";
import { useRouter } from "expo-router";
import React from "react";
export const AppProviders = ({ children }: { children: React.ReactNode }) => {
const router = useRouter();
const turnkeyConfig = {
apiBaseUrl: "https://api.turnkey.com",
organizationId: "<your organization id>",
onSessionCreated: (session) => {
console.log("Session Created", session);
},
onSessionSelected: (session) => {
console.log("Session Selected", session);
router.replace("/dashboard");
},
onSessionExpired: (session) => {
console.log("Session Expired", session);
router.push("/");
},
onSessionCleared: (session) => {
console.log("Session Cleared", session);
router.push("/");
},
onSessionExpiryWarning: (session) => {
console.log("Session is expiring in 15 seconds", session);
},
};
return <TurnkeyProvider config={turnkeyConfig}>{children}</TurnkeyProvider>;
};To enable secure authentication, the following storage keys are used:
-
@turnkey/embedded-key: Stores the private key that corresponds to the public key used when initiating the session request to Turnkey. -
@turnkey/refresh-embedded-key: Stores the private key that corresponds to the public key used when refreshing an active session. -
@turnkey/session: Default session storage key, storing the session credentials, including the private key, public key, and expiry time, which are decrypted from the credential bundle after a session is created. -
@turnkey/session-keys: Stores the list of stored session keys. -
@turnkey/selected-session: Stores the currently selected session key.
-
createEmbeddedKey({ sessionKey? }): Generates a new embedded key pair and securely stores the private key.- If
sessionKeyis provided, the embedded key will be stored under that key in secure storage. - This allows for creating different embedded keys for different sessions, which is useful when initiating multiple authentication flows simultaneously.
- If
-
createSession({ bundle, expirationSeconds?, sessionKey? }): Creates a session. (API Docs)- If
sessionKeyis provided, the session will be stored under that key in secure storage. - If no session exists, the first session created is automatically selected.
- If a session with the same
sessionKeyalready exists in secure storage, an error is thrown.
- If
-
refreshSession({ expirationSeconds?, sessionKey? }): Refreshes and extends the expiration time of an existing session.- Uses the current session to create a new session with an updated expiration time.
- If
sessionKeyis not provided, the currently selected session is refreshed. - If
expirationSecondsis not provided, the default expiration time is used.
-
setSelectedSession({ sessionKey }): Selects a session by its key (Used when handling multiple sessions). -
clearSession({ sessionKey? }): Removes the specified session from secure storage. If nosessionKeyis provided, the currently selected session is removed. -
clearAllSessions(): Clears all sessions from secure storage.
-
updateUser({ email?, phone? }): Updates the user's email and/or phone number. (API Docs) -
refreshUser(): Fetches the latest user data. (API Docs)
-
createWallet({ walletName, accounts, mnemonicLength? }): Creates a wallet. (API Docs) -
importWallet({ walletName, mnemonic, accounts }): Imports a wallet. (API Docs) -
exportWallet({ walletId }): Exports a wallet mnemonic. (API Docs)
-
signRawPayload({ signWith, payload, encoding, hashFunction }): Signs a payload. (API Docs)
-
handleGoogleOAuth({ clientId, redirectUri, nonce, scheme, onIdToken }): Handles the Google OAuth authentication flow.
Most users won't need multiple sessions, but if your app requires switching between multiple sessions, here’s what you need to know:
This SDK supports multiple sessions, allowing you to create and switch between different session keys using setSelectedSession({ sessionKey }). When a session is selected, the client, user, and session information are updated accordingly, so that all subsequent function calls (like updateUser or createWallet) apply to the selected session.
-
Creating a Session with a Custom Id: You can pass a
sessionKeywhen callingcreateSession. If provided, the session will be stored in secure storage under that ID, allowing for multiple sessions. -
Switching Sessions: Use
setSelectedSession({ sessionKey })to switch between stored sessions. The client, user, and session information will automatically update. - Session Expiry Management: Each session has an expiry time, and expired sessions will be automatically cleared.
-
Callbacks for Session Events:
-
onSessionCreated: Called when a session is created. -
onSessionSelected: Called when a session is selected. -
onSessionExpired: Called when a session expires. -
onSessionCleared: Called when a session is cleared. -
onSessionExpiryWarning: Called 15 seconds before a session expires, giving you an opportunity to refresh the session or notify the user.
-
When are multiple sessions useful?
Using multiple sessions can be beneficial when enabling different authentication methods for various operations. For example, you might authenticate a user with OTP for login while using a passkey-based session for signing transactions.
Check out this repository for a full working example.