Merge pull request #49 from Stakely/develop

Improved docs organization and writing

Author: iicc1

Dockerfile

@@ -2,7 +2,7 @@
 
 # Stage 1: Base image.
 ## Start with a base image containing NodeJS so we can build Docusaurus.
-FROM node:lts-slim as base
+FROM node:24-slim as base
 ## Enable corepack.
 # RUN corepack enable 
 ## Set the working directory to `/opt/docusaurus`.

docs/staking-api/authentication.md

@@ -1,78 +1,84 @@
 ---
-sidebar_position: 4
+sidebar_position: 3
 ---
 
 import AppUrl from '@site/src/components/AppUrl';
 
 # Authentication
 
-This page outlines the necessary steps and protocols for securely interacting with our API, ensuring that your data remains safe and your transactions are securely processed.
+This section explains how to authenticate requests to the Stakely Staking API and securely interact with its endpoints.
 
-## Auth
 
-To use the Staking API, you must be registered with an account on <AppUrl />. If you don't have an account yet, you can <AppUrl path="/sign-up">register here</AppUrl>.
+## Create API keys
 
-Once registered, <AppUrl path="/sign-in">login into your account</AppUrl>, you'll have access to all the products that Stakely offers, all using the same simplified account.
+To use the Staking API, you must have an account on <AppUrl />. If you do not have one yet, you can <AppUrl path="/sign-up">register here</AppUrl>.
 
-Manage your API keys in the Staking API dashboard at <AppUrl path="/staking-api" />. The dashboard provides a simple interface to create new keys, view existing keys, and delete keys you no longer need.
+Once registered, <AppUrl path="/sign-in">log in to your account</AppUrl>. A single account provides access to all Stakely products, including the Staking API.
 
-## Using the API Keys
+API keys are managed from the Staking API dashboard at <AppUrl path="/staking-api" />. From there, you can create new keys, view existing ones, and revoke keys when no longer needed.
 
-To access the crafting and reporting endpoints, you must authenticate using API keys generated through the Staking API web app at <AppUrl />.
+
+## Using API keys
+
+All API requests must be authenticated using an API key generated through the Staking API dashboard.
 
 Include your API key in the `X-API-KEY` header with every request:
+
 ```http
 X-API-KEY: your-api-key-here
 ```
 
-For examples and pre-created code snippets in various programming languages, which will help you integrate our services smoothly, please refer to our API schema available [here](/staking-api/api-reference).
+Examples and ready-to-use code snippets in different programming languages are provided in later sections of the documentation, within each network-specific integration guide.
+
+
+
+## Response signature verification (optional)
 
-## Security and Verification
+As an additional security measure, each HTTP response includes a cryptographic signature in the `x-signature` response header. This signature allows clients to verify the integrity and authenticity of the response payload.
+
+The signature is generated by signing the SHA-256 hash of the HTTP response body using Stakely’s RSA private key. Clients can verify the signature using the corresponding RSA public key provided below.
 
-Ensuring the security of all transactions and data exchanges remains our top priority. To accomplish this, we have implemented a method where the signature of each HTTP response can be found in the header under the name `x-signature`. This signature is the SHA256 hash of the HTTP response body, signed using the Elliptic Curve Digital Signature Algorithm (ECDSA) with the SECP256k1 curve. To verify the integrity and authenticity of the data received, you must use the corresponding public key, which is readily accessible on the expandable bellow.
 <details>
-  <summary>**PUBLIC KEY**</summary>
-  <div>
-    <div>Copy this value for signature verification:</div>
-    <br/>
-    ```markup
-    -----BEGIN PUBLIC KEY-----
-    MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TpKOJfmku7aEIrKaCMM
-    xjA10UCixAryVsB+PIoLKTEsUiNfctwbeXcpQuPOit9H7by+ezgg/A4SCog/Dtc7
-    fTp4Gnnq/adLNDllMeKoQCeIz/3N7TqItr+74NTAm6TkwR4lriIy/XiDpIak530f
-    8ZXFnmQTz3Cffbio3A9DhgwC5OWjSgkYdU35Rti36OGM6pnPlipxm7KD/9ddjc+H
-    vRY8o6kbp8Cy9QsXZqivHVvcFQ61gl8TMpgcziNgI+tDiof/SM6x6KGxuGT3s40J
-    TZ0g98GKgynkRW22OPfK3vP1FZ0UmIRJ6tAWYTNntGjLM+vM1OOsGk+5BmEkxy/B
-    HwIDAQAB
-    -----END PUBLIC KEY-----
-    ```
-  </div>
+  <summary><strong>Public key</strong></summary>
+
+```text
+-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TpKOJfmku7aEIrKaCMM
+xjA10UCixAryVsB+PIoLKTEsUiNfctwbeXcpQuPOit9H7by+ezgg/A4SCog/Dtc7
+fTp4Gnnq/adLNDllMeKoQCeIz/3N7TqItr+74NTAm6TkwR4lriIy/XiDpIak530f
+8ZXFnmQTz3Cffbio3A9DhgwC5OWjSgkYdU35Rti36OGM6pnPlipxm7KD/9ddjc+H
+vRY8o6kbp8Cy9QsXZqivHVvcFQ61gl8TMpgcziNgI+tDiof/SM6x6KGxuGT3s40J
+TZ0g98GKgynkRW22OPfK3vP1FZ0UmIRJ6tAWYTNntGjLM+vM1OOsGk+5BmEkxy/B
+HwIDAQAB
+-----END PUBLIC KEY-----
+```
+
 </details>
-This approach ensures that the data remains unaltered during transmission, thereby preserving the security and integrity of your interactions. While verification of the signature on the client side is optional, we encourage its implementation as an additional measure to further ensure the authenticity and integrity of the data received.
 
-Here is an example code on how you can verify returned signature:
+Signature verification on the client side is optional but recommended, especially for integrations requiring additional guarantees around data integrity.
 
-- Node.js Example:
-  - Replace `publicKey` with the provided Staking API public key.
-  - Replace `data` with the returned JSON payload at the request.
-  - Replace `signature` with the returned signature string value located at `x-signature` header
 
+### Example: signature verification in Node.js
 
 ```javascript
 const crypto = require('crypto');
 
 function verifySignature(publicKey, data, signature) {
-    const verifier = crypto.createVerify('RSA-SHA256');
-    verifier.update(data);
-    return verifier.verify(publicKey, signature, 'base64');
+  const verifier = crypto.createVerify('RSA-SHA256');
+  verifier.update(data);
+  return verifier.verify(publicKey, signature, 'base64');
 }
 
-// Example usage:
-const publicKey = '-----BEGIN PUBLIC KEY-----\n...\n-----END PUBLIC KEY-----';  // Your public key here
-const receivedData = '{"data":"Example payload"}';  // JSON string as received from the server
-const receivedSignature = 'received_signature_from_header';  // Signature received from the X-Signature header
+// Example usage
+const publicKey = '-----BEGIN PUBLIC KEY-----\n...\n-----END PUBLIC KEY-----';
+const receivedData = '{"data":"Example payload"}';
+const receivedSignature = 'signature-from-x-signature-header';
 
 const isValid = verifySignature(publicKey, receivedData, receivedSignature);
 console.log('Is the signature valid?', isValid);
+```
+
+
+### Next steps
 
-```
+Once authenticated, you can start interacting with the network-specific staking endpoints described in the following sections.

docs/staking-api/cosmos-hub/_category_.json

@@ -0,0 +1,8 @@
+{
+  "label": "Cosmos Hub",
+  "position": 4,
+  "link": {
+    "type": "doc",
+    "id": "staking-api/cosmos-hub/index"
+  }
+}

docs/staking-api/cosmos-hub/index.md

@@ -0,0 +1,23 @@
+---
+title: Cosmos Hub
+---
+
+# Cosmos Hub
+
+This section covers Cosmos Hub staking integrations using the Stakely Staking API. It includes Cosmos-specific notes, transaction signing examples, and the staking flows supported by Stakely.
+
+## Useful links
+
+- Stakely, Cosmos (ATOM) staking overview: https://stakely.io/staking/cosmos-atom-staking  
+- Cosmos Hub delegator FAQ: https://hub.cosmos.network/main/delegators/delegator-faq  
+- Cosmos SDK documentation: https://docs.cosmos.network/main  
+
+## What you will find in this section
+
+- **Signing transactions**: how to sign Cosmos transactions returned by the crafting endpoints, with examples for common signing setups.  
+- **Native staking**: end-to-end flows and endpoints for delegating, redelegating, and undelegating on Cosmos Hub.  
+
+## Notes
+
+- Cosmos integrations require specifying the correct `chain_id` for the target network. The API provides a dedicated endpoint to list all available Cosmos networks and their corresponding `chain_id` values.
+- All staking operations are executed on-chain. Stakely prepares the transaction payloads, while signing is performed by your application using your preferred signing method.

…pi/cosmos/native-staking/_category_.json …osmos-hub/native-staking/_category_.jsondocs/staking-api/cosmos/native-staking/_category_.json renamed to docs/staking-api/cosmos-hub/native-staking/_category_.json docs/staking-api/cosmos/native-staking/_category_.json renamed to docs/staking-api/cosmos-hub/native-staking/_category_.json

@@ -1,6 +1,6 @@
 {
   "label": "Native Staking",
-  "position":4,
+  "position": 3,
   "link": {
     "type": "generated-index",
     "description": "Cosmos Hub Native Staking Module"

…g-api/cosmos/native-staking/endpoints.md …i/cosmos-hub/native-staking/endpoints.mddocs/staking-api/cosmos/native-staking/endpoints.md renamed to docs/staking-api/cosmos-hub/native-staking/endpoints.md docs/staking-api/cosmos/native-staking/endpoints.md renamed to docs/staking-api/cosmos-hub/native-staking/endpoints.md

@@ -1,5 +1,5 @@
 ---
-sidebar_position: 3
+sidebar_position: 2
 ---
 
 import StakingOpenApiLink from '@site/src/components/StakingOpenApiLink';
@@ -45,8 +45,7 @@ Need support for another network? Reach out at [admin@stakely.io](mailto:admin@s
 
 If you are unsure which Cosmos networks are enabled for your account you can ask the API directly.
 
-- Endpoint: [`/api/v1/cosmos/native/networks`](/staking-api/api-reference#tag/cosmoshub/get/apiv1cosmoshubnativenetworks)
-
+- Endpoint: [`/api/v1/cosmos/native/networks`](/staking-api/api-reference#tag/cosmoshub/GET/api/v1/cosmoshub/native/networks)
 Each object in the response includes:
 
 | Field | Description |
@@ -62,7 +61,7 @@ ____
 
 Craft a stake transaction:
 
-- Endpoint: [`/api/v1/cosmos/native/action/stake`](/staking-api/api-reference#tag/cosmoshub/post/apiv1cosmoshubnativeactionstake)
+- Endpoint: [`/api/v1/cosmos/native/action/stake`](/staking-api/api-reference#tag/cosmoshub/POST/api/v1/cosmoshub/native/action/stake)
 
 #### Description
 
@@ -82,7 +81,7 @@ ____
 
 Craft an unstake transaction:
 
-- Endpoint: [`/api/v1/cosmos/native/action/unstake`](/staking-api/api-reference#tag/cosmoshub/post/apiv1cosmoshubnativeactionunstake)
+- Endpoint: [`/api/v1/cosmos/native/action/unstake`](/staking-api/api-reference#tag/cosmoshub/POST/api/v1/cosmoshub/native/action/unstake)
 
 #### Description
 
@@ -102,7 +101,7 @@ ____
 
 Craft a claim rewards transaction:
 
-- Endpoint: [`/api/v1/cosmos/native/action/claim-rewards`](/staking-api/api-reference#tag/cosmoshub/post/apiv1cosmoshubnativeactionclaimrewards)
+- Endpoint: [`/api/v1/cosmos/native/action/claim-rewards`](/staking-api/api-reference#tag/cosmoshub/POST/api/v1/cosmoshub/native/action/claim-rewards)
 
 #### Description
 
@@ -122,7 +121,7 @@ ____
 
 Gathers signature and unsigned tx:
 
-- Endpoint: [`/api/v1/cosmos/native/action/prepare`](/staking-api/api-reference#tag/cosmoshub/post/apiv1cosmoshubnativeactionprepare)
+- Endpoint: [`/api/v1/cosmos/native/action/prepare`](/staking-api/api-reference#tag/cosmoshub/POST/api/v1/cosmoshub/native/action/prepare)
 
 #### Description
 
@@ -142,7 +141,7 @@ ____
 
 Broadcast a signed transaction
 
-- Endpoint: [`/api/v1/cosmos/native/action/broadcast`](/staking-api/api-reference#tag/cosmoshub/post/apiv1cosmoshubnativeactionbroadcast)
+- Endpoint: [`/api/v1/cosmos/native/action/broadcast`](/staking-api/api-reference#tag/cosmoshub/POST/api/v1/cosmoshub/native/action/broadcast)
 
 #### Description
 
@@ -154,4 +153,4 @@ Broadcast a signed transaction. Usually you will brodcast the signed transaction
 
 #### Returned
 
-[`BroadcastActionResponseDto`](/staking-api/api-reference#model/broadcastctionresponsedto)
+[`BroadcastActionResponseDto`](/staking-api/api-reference#model/broadcastctionresponsedto)

…pi/cosmos/native-staking/staking-flow.md …osmos-hub/native-staking/staking-flow.mddocs/staking-api/cosmos/native-staking/staking-flow.md renamed to docs/staking-api/cosmos-hub/native-staking/staking-flow.md docs/staking-api/cosmos/native-staking/staking-flow.md renamed to docs/staking-api/cosmos-hub/native-staking/staking-flow.md

@@ -16,21 +16,52 @@ Unstaking in Cosmos ecosystem is called undelegation. It is the process of withd
 
     1. **Initiate Undelegation**: Use the undelegate function to start the process of withdrawing your staked ATOMs from the validator.
     2. **Unbonding Period**: Undelegated tokens are locked for a 21-day unbonding period, during which they do not earn rewards and cannot be transferred.
-    3. **Completion**: After the unbonding period, tokens are released and can be freely transferred or restaked.
+    3. **Completion**: After the unbonding period, tokens are automatically released and can be freely transferred or restaked.
 
 ### Claiming Rewards
 
 Rewards generated from staking are not automatically added to your wallet; they must be claimed manually.
 
-    1. **Check Accumulated Rewards**: Verify your accumulated rewards through the rewards function or just check the explorer.
+    1. **Check Accumulated Rewards**: Verify your accumulated rewards through the rewards function or just check an explorer.
     2. **Claim Rewards**: Use the `withdraw_rewards` function to transfer your accumulated staking rewards into your wallet.
     3. Reinvestment or Transfer: After claiming, rewards can be reinvested by staking them with a validator or used for other transactions.
 
 
-___
+# Staking API Diagram
 
-### Extra information
+```mermaid
+sequenceDiagram
+autonumber
+actor User
+participant Staking API
+User->>+Staking API: Stake action
+Note left of User: Offline: Stake 10 ATOM
+Note right of Staking API: 🔨 Stake action crafting
+Staking API-->>-User: Stake action return
+activate User
+rect rgb(255,178,216)
+Note left of User: 📝 Sign unsigned transaction:
+Note left of User:  a) Locally with private key 🔑
+Note left of User:  b) Custodian 🏦
+end
+deactivate User
 
-:::info
-You can have a look to [Protocol-staking-CosmosHub](https://learn.protocolstaking.info/detailed-explainers/staking-mechanism/cosmos-hub) **detailed information** .
-:::
+User->>+Staking API: Prepare
+Note right of Staking API: 🔏  Adds signature to tx
+Staking API-->>-User: Returns signed transaction
+activate User
+rect rgba(228, 173, 77, 0.8)
+Note left of User: With the signed transaction you can:
+Note left of User: Broadcast it by yourself using any RPC
+Note left of User: Send it to the broadcast endpoint
+end
+deactivate User
+User->>+Staking API: Broadcast
+Note right of Staking API: 📡  Broadcast to the network
+Staking API-->>-User: Returns broadcasted transaction status
+activate User
+rect rgba(50, 156, 0, 0.8)
+Note left of User:  If success, transaction is already onchain! 🚀
+end
+deactivate User
+```

docs/staking-api/cosmos/how-to-sign.md docs/staking-api/cosmos-hub/signing.mddocs/staking-api/cosmos/how-to-sign.md renamed to docs/staking-api/cosmos-hub/signing.md

@@ -1,17 +1,29 @@
 ---
-sidebar_position: 33
+sidebar_position: 2
+title: Signing
 ---
-# How to sign
 
-Once you have completed the first action of the flow (as explained in the diagram), you will need to sign the unsigned transaction.
+# How to sign transactions
 
-There are several ways to achieve this. We will explain a couple of them:
+After calling a crafting endpoint, the API returns an unsigned Cosmos transaction payload. This payload must be signed before it can be broadcast to the network.
 
-## Signing with private key
+Signing is fully handled by your application. The Stakely Staking API never has access to private keys.
 
-### Signing with Cosmos SDK JS using a Private Key:
+The signing concepts and examples described in this section apply to all Cosmos Hub staking flows supported by the API, regardless of the specific staking method used.
+
+Below are common signing approaches supported by Cosmos-based tooling.
+
+
+## Signing with a private key
+
+### Signing with Cosmos SDK JS
+
+This approach uses the Cosmos SDK JavaScript libraries to sign transactions locally with a private key.
+
+The crafted transaction payload returned by the API is passed to the SDK signer, which produces a valid Cosmos signature. The resulting signed transaction can then be broadcast to the network.
+
+This method is typically used in backend services, scripts, or environments where private keys are managed directly by the application.
 
-This method involves the use of the Cosmos SDK JavaScript library, which allows developers to interact with the Cosmos blockchain directly from a JavaScript application. To sign a transaction, a developer typically imports the SDK, creates a transaction object, and then uses a private key to sign this object. This signing process is crucial as it verifies the identity of the transaction initiator and ensures the transaction cannot be altered without the initiator's consent.
 
 Complete with your own wallet private key or seed at `.env`
 
@@ -20,7 +32,6 @@ COSMOS_WALLET_SEED=
 COSMOS_WALLET_PRIVATE_KEY=
 COSMOS_RPC=
 COSMOS_WALLET_ADDRESS=
-
 ```
 
 ```javascript
@@ -87,19 +98,17 @@ const { signature_hex, tx_body_hex } = await signUnsignedTxWithPk({unsigned_tx_h
 3. Once you have the signature proceed calling `action/prepare`
 
 
-## Signing by using external custodian integration
+## Signing using external custodians or MPC wallets
 
-### Fireblocks
+Transactions can also be signed using external custodians or MPC-based wallets. In this setup, private keys are never exposed to the application and signing is delegated to the external signing service.
 
-Using external custodian services such as [Fireblocks](https://www.fireblocks.com/) provides an additional layer of security for transaction signing.
-
-Fireblocks, as a custodian, manages the private keys on behalf of the user, ensuring they are stored securely and are not exposed during the transaction process.
+### Fireblocks
 
-To sign a transaction, the transaction details are sent to Fireblocks via its API.
+Fireblocks is an example of a third-party custodian that can be used to sign Cosmos transactions generated by the Stakely Staking API.
 
-Fireblocks then signs the transaction securely within its infrastructure and returns the signed transaction, ready for submission to the blockchain network.
+The crafted transaction payload is submitted to Fireblocks through its API. Fireblocks performs the signing operation within its secure environment and returns a signed transaction, which can then be broadcast to the blockchain network.
 
-On the code example we will be providing a Javascript example with the usage of [Fireblocks SDK JS/TS](https://github.com/fireblocks/fireblocks-sdk-js)
+The following code example demonstrates this flow using the Fireblocks JavaScript/TypeScript SDK.
 
 
 Complete with your own Fireblocks credentials at `.env`