SDP-1863: Implement SEP-45 challenge creation

[philipliu]

What

This implements the SEP-45 challenge creation flow https://github.com/stellar/stellar-protocol/blob/master/ecosystem/sep-0045.md#challenge.

Why

The Anchor Platform has been removed, so we need to reimplement SEP-45.

Known limitations

The HTTP handler, dependency injection, and challenge validation will be implemented separately to keep the size of this PR reasonable.

Checklist

• Title follows SDP-1234: Add new feature or Chore: Refactor package xyz format. The Jira ticket code was included if available.
• PR has a focused scope and doesn't mix features with refactoring
• Tests are included (if applicable)
• CHANGELOG.md is updated (if applicable)
• CONFIG/SECRETS changes are updated in helmcharts and deployments (if applicable)
• Preview deployment works as expected
• Ready for production

[stellar-jenkins]

stellar-disbursement-platform-backend-preview is available here:
SDP: https://sdp-backend-pr942.previews.kube001.services.stellar-ops.com/health
AP: https://sdp-ap-pr942.previews.kube001.services.stellar-ops.com/health
Frontend: https://sdp-backend-dashboard-pr942.previews.kube001.services.stellar-ops.com

[stellar-jenkins]

stellar-disbursement-platform-backend-preview is available here:
SDP: https://sdp-backend-pr942.previews.kube001.services.stellar-ops.com/health
AP: https://sdp-ap-pr942.previews.kube001.services.stellar-ops.com/health
Frontend: https://sdp-backend-dashboard-pr942.previews.kube001.services.stellar-ops.com

[Copilot]

Pull Request Overview

This PR implements the SEP-45 challenge creation flow as part of replacing the Anchor Platform functionality. It introduces a new SEP-45 service with utilities for XDR manipulation, Soroban authorization entry signing, and contract invocation.

Key changes:

• Adds SEP45Service for creating authentication challenges using Soroban smart contracts
• Implements XDR utilities for building and signing Soroban authorization entries
• Extends RPC client with ledger sequence retrieval capability

Reviewed Changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
internal/utils/xdr.go	New utility functions for constructing ScMapEntry values and signing Soroban authorization entries with signature verification
internal/stellar/rpc_client.go	Adds GetLatestLedgerSequence method to retrieve current ledger for signature expiration calculation
internal/stellar/rpc.go	Updates RPCClient interface with new ledger sequence method
internal/stellar/mocks/rpc_client.go	Auto-generated mock implementation for the updated interface
internal/services/sep45_service.go	Implements SEP-45 challenge creation with domain validation, TOML client domain verification, and server signature generation
internal/services/sep45_service_test.go	Comprehensive test suite covering validation, domain checks, client attribution, and signature generation

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[marwen-abid]

LGTM!

[marwen-abid]

Nice! I like that you extracted everything that may cause a failure downstream early on. We should do this more often.

[marwen-abid]

nit: Should wrap this error

[marwen-abid]

nit: We should name this ServerSigningKey or SigningKey or SEP1key .

[marwen-abid]

I believe this is a redundant type conversion. It can just be return signedEntries, nil

[marwen-abid]

We should have unit tests for this file. Maybe in another PR ?

[philipliu]

I'll add it in this PR. I forgot about this 😓

[stellar-jenkins]

stellar-disbursement-platform-backend-preview is available here:
SDP: https://sdp-backend-pr942.previews.kube001.services.stellar-ops.com/health
AP: https://sdp-ap-pr942.previews.kube001.services.stellar-ops.com/health
Frontend: https://sdp-backend-dashboard-pr942.previews.kube001.services.stellar-ops.com