Stellar Community Fund

By Smart Account Onboarding

G2C

SCF #41

$150.0K

Build

Awarded

Products & Services

This submission delivers an end-to-end, open-source G→C onboarding + passkey account abstraction stack for Soroban, packaged as reusable ecosystem primitives: a 3-contract Smart Account suite, a reference Passkey Wallet Web App, and an Onboarding SDK that any wallet or dApp can embed.

I- Soroban Smart Account Contract Suite (deterministic C-address lifecycle + passkeys)

Three Soroban contracts that cover the full lifecycle of C-address creation and passkey-based authentication, optimized for low per-user deployment cost and predictable onboarding flows.

1) Factory (Deterministic Deployment)

Deterministically deploys a user Smart Account via Stellar/Soroban deterministic deployment (deployer_with_address).
get_c_address(funder, …) allows wallets/dApps to pre-compute the future C-address before deployment, enabling pre-funding (onramps, escrow rails, “fund-first” onboarding).
create_account(funder, credential_pubkey, …) deploys + initializes the Smart Account and registers the user’s passkey as the initial signer, while lazy-deploying a shared component (the WebAuthn verifier) when required.

=> Outcome: one-call provisioning that turns G→C migration into a simple, deterministic onboarding primitive for the ecosystem.

Smart Account (Account Abstraction + On-chain Policy)

Implements OpenZeppelin smart-account interfaces/traits (e.g., CustomAccountInterface, SmartAccount, ExecutionEntryPoint).
Uses Stellar/Soroban’s native __check_auth hook to enforce:
- Passkey-authenticated execution (WebAuthn-backed signatures).
- Scoped session keys via OZ context rules (least-privilege dApp access: allowlists, spend limits, expirations).
- On-chain policy enforcement so trust boundaries remain verifiable and auditable.

=> Outcome: modern wallet UX (passkeys + sessions) with security guarantees enforced on-chain.

3) WebAuthn Verifier (Shared P-256 Verifier)

Stateless secp256r1 / P-256 verifier implementing OpenZeppelin’s Verifier trait.
Deployed once and reused across all Smart Accounts to keep per-account deployment overhead low.

=> Outcome: passkeys become a first-class signing method for Soroban Smart Accounts without per-user verifier deployments.

II- Passkey Wallet Web App (reference implementation + integration target)

A standalone, browser-based wallet that manages Soroban Smart Accounts with passkeys and provides a clean, auditable UX for G→C onboarding and day-to-day dApp interactions.

Key capabilities:

Passkey onboarding: create/register passkeys via the WebAuthn browser API; sign Soroban authorization entries with no seed phrase.
Guided G→C onboarding flow: generate an ephemeral G-address, detect funding, create passkey, deploy the C-address Smart Account — with atomic on-chain execution wherever applicable.
dApp request routing (stable callback URL): a persistent wallet URL endpoint that dApps can redirect to with a signing request, then redirect back with signed authorization entries (deep-link UX).
Large request + multi-sig friendliness: optional store-and-forward via refractor.space when payloads don’t fit in URLs and to simplify multi-step / multi-signer orchestration.
Session key management UI: create/revoke scoped session keys aligned with on-chain OZ context rules.
Gas abstraction: integrates Stellar Development Foundation’s OpenZeppelin Relayer / Channels Service so users can transact without holding XLM for fees.
Wallet parity basics: token balances + transfer history for the Smart Account, comparable to existing Stellar wallets.

=> Outcome: proves end-to-end feasibility, provides a UX baseline, and serves as a reference client for ecosystem integrators.

III- Onboarding SDK (embed G→C + passkeys into any wallet or dApp)

An open-source JavaScript/TypeScript SDK that lets third-party wallets and dApps adopt C-address onboarding and Smart Account interactions without re-implementing the flow.

Includes:

Pre-built UI components for G→C migration (funding step, passkey creation, deployment confirmation).
Transaction builders + helpers for Factory interactions, Smart Account operations, session key creation, and policy configuration.
Transport adapters for deep-links and refractor.space (oversized payload handling + smoother multi-party signing).
Documentation + examples showing how to add C-address support to an existing wallet and how dApps can request signatures safely.

=> Outcome: turns Smart Accounts + passkey onboarding into a reusable ecosystem primitive, accelerating adoption across wallets, dApps, and onboarding rails.

Requested Budget

$150.0K

Traction Evidence

We built a working PoC of the wallet web app at https://mysoroban.xyz/dapp. It demonstrates the full onboarding workflow (G→C) and the core dApp interaction pattern where the “wallet” is a subdomain per smart-account contract, solving the WebAuthn constraint that passkeys are scoped to origins/domains (previously implying “one passkey per dApp”).

Concretely: a dApp redirects the user to their account subdomain with the hash of the auth entry in the URL; the wallet uses the passkey to sign the authorization entry and redirects back. Next, we’ll pass the full transaction payload, submit it via the OpenZeppelin relayer (fee abstraction), and return execution results to the dApp. For payloads too large for URLs (and smoother multisig flows), we’ll store unsigned transactions on refractor.space by Stellar Expert.

Team credibility: The Aha Company has a strong delivery record, including major contributions to the Stellar CLI, and institutional work such as bringing Société Générale-Forge’s EURCV onto Stellar rails. We’ve also shipped multiple Stellar Community Fund–funded deliverables (e.g., Loam, Moonlight, Scaffold Stellar), and we actively support ecosystem governance and developer education (mostly through hackathons).

Tranche 1 (Deliverable Roadmap) - MVP

Deliverable 1: Smart Contracts — Feature Complete

Brief description:

- Factory, Smart Account, and WebAuthn Verifier contracts finalized with full test suite.

- Factory supports create_account and get_c_address; Smart Account implements OZ SmartAccount + CustomAccountInterface + ExecutionEntryPoint with context rules.

Proof of completion: All contracts compile, pass unit/integration tests, and deploy to Stellar testnet. Test suite covers onboarding flow, passkey auth, and session key scoping.

Estimated completion: 4 weeks after approval.

Budget: $12,000

Deliverable 2: Basic Wallet Web App

Brief description:
- Passkey creation and transaction signing via WebAuthn browser API.

- G->C onboarding flow: ephemeral G-address generation, fund detection, passkey registration, atomic deployment + fund transfer.

Proof of completion: User can fund a G-address, create a passkey, and migrate to a C-address on testnet via the web app.

Estimated completion: 6 weeks after approval.

Budget: $18,000

Tranche 2 (Deliverable Roadmap) - Testnet

Deliverable 3: Full dApp Interaction Flow

Brief description:

- Transaction receiving via URL-embedded XDR and refractor.space integration.

- Transaction review UI with human-readable operation display.

Proof of completion: A sample dApp can send an unsigned transaction to the wallet (via both methods), wallet displays it for review, user signs with passkey, and the signed transaction executes on testnet.

Estimated completion: 10 weeks after approval.

Budget: $15,000

Deliverable 4: OZ Relayer Integration + Session Keys

Brief description:

- Gas abstraction: wallet can submit transactions via OZ Relayer so users transact without holding XLM.

- Session key UI: users can grant dApps scoped signing permissions (contract restrictions, spending limits, time windows) via context rules.

Proof of completion: Demonstrate gas-abstracted transaction on testnet. Session key can be created with scope restrictions and used by a dApp to execute a scoped transaction.

Estimated completion: 13 weeks after approval.

Budget: $18,000

Deliverable 5: Wallet Feature Parity

Brief description:

- Token balance display (all assets held by the C-address).

- Transfer history view.

- View and manage policies and keys

Proof of completion: Features added to the web wallet

Estimated completion: 14 weeks after approval.

Budget: $12,000

Tranche 3 (Deliverable Roadmap) - Mainnet

Deliverable 6: Mainnet Deployment + Audit Fixes

Brief description:

- Deploy all contracts to Stellar mainnet.

- Address findings from the SCF-provided security audit.

Proof of completion: Contracts deployed to mainnet, all critical and high audit findings resolved, audit report published.

Estimated completion: 17 weeks after approval.

Budget: $24,000

Deliverable 7: Onboarding SDK + Documentation

Brief description:

- Open-source JavaScript/TypeScript SDK with pre-built components for G->C onboarding, factory interactions, and refractor.space integration.

- Developer documentation covering SDK usage, contract ABIs, and integration guides.

Proof of completion: SDK published to npm, documentation site live, SDK can be used to add C-address onboarding to an existing app.

Estimated completion: 19 weeks after approval.

Budget: $21,600

Deliverable 8: Example Integrations

Brief completion:

- Reference integrations demonstrating how existing wallets and dApps can adopt C-address support using the SDK.

Proof of completion: At least two example integrations published (e.g., a simple dApp using refractor.space, and a wallet adding C-address onboarding via the SDK).

Estimated completion: 20 weeks after approval.

Budget: $14,400

Team

1) Chad O, CEO

Chad is a Web2 startup + consulting veteran who moved into Web3 in 2019. After working on Ethereum DAO dApps, he joined Near Inc. in 2020 (building NEAR Protocol) and co-founded The Aha Company in 2021. He’s led the design and implementation of key Stellar smart-contract developer workflows.

Connect → GitHub | LinkedIn

2) Willem Wyndham, CTO

Willem is a programming languages + security specialist (PhD track at University of Maryland) who shifted into blockchain runtime engineering at NEAR Protocol. He brings deep expertise in Rust (programming language) and WebAssembly, with a focus on execution environments and securit, now leading The Aha Company’s technical architecture.

Connect → GitHub | LinkedIn

3) Enzo Soyer, COO

Enzo combines engineering and business training (CentraleSupélec, ESSEC Business School) with hands-on operator experience across Web3 ventures. As COO of The Aha Company, he leads strategy, partnerships, and execution, turning complex blockchain systems into shippable products and scalable business lines.

Connect → LinkedIn

4) Fabricius Zatti, Principal Engineer

Fabricius is a tech leader with 15 years of experience, including 5+ years building Web3 systems for institutions such as the Central Bank of Indonesia, MoneyGram, IOG, and the Stellar Development Foundation. He has deep expertise in Stellar and smart contracts, with hands-on experience across Ethereum (EVM + L2s), NEAR Protocol, Solana, and Cardano. He’s active in the Linux Foundation Decentralized Trust ecosystem, holds Hyperledger Fabric Practitioner and Hyperledger Besu certifications, and has contributed to Hyperledger Cacti.

Connect → Github | Linked