@0xmonaco/core 0.1.0

package/dist/api/auth/api.js

@@ -0,0 +1,359 @@
+/**
+ * Auth API Implementation
+ *
+ * Handles authentication operations including challenge creation, signature verification,
+ * and backend authentication. All operations go through the API Gateway.
+ *
+ * This class provides a complete interface for authentication on the Monaco protocol,
+ * including frontend wallet authentication and backend service authentication.
+ *
+ * @example
+ * ```typescript
+ * const authAPI = new AuthAPIImpl(walletClient, apiUrl, chain);
+ *
+ * // Complete authentication flow
+ * const authResult = await authAPI.authenticate(clientId);
+ *
+ * // Or step-by-step flow
+ * const challenge = await authAPI.createChallenge(userAddress, clientId);
+ * const signature = await authAPI.signChallenge(challenge.message);
+ * const authResult = await authAPI.verifySignature(
+ *   userAddress,
+ *   signature,
+ *   challenge.nonce,
+ *   clientId
+ * );
+ *
+ * // Authenticate backend service
+ * const backendAuth = await authAPI.authenticateBackend(secretKey);
+ * ```
+ */
+import { APIError, InvalidConfigError } from "../../errors";
+export class AuthAPIImpl {
+    /**
+     * Creates a new AuthAPI instance.
+     *
+     * @param walletClient - The viem wallet client for signing operations
+     * @param apiUrl - The base URL for the Monaco API Gateway
+     * @param chain - The blockchain network configuration
+     */
+    constructor(walletClient, apiUrl, chain) {
+        this.walletClient = walletClient;
+        this.apiUrl = apiUrl;
+        this.chain = chain;
+    }
+    /**
+     * Complete authentication flow for frontend applications.
+     *
+     * This method handles the entire authentication process:
+     * 1. Creates a challenge
+     * 2. Signs the challenge message
+     * 3. Verifies the signature and returns JWT tokens
+     *
+     * @param clientId - Client ID of the application
+     * @returns Promise resolving to the verification response with JWT tokens
+     * @throws {APIError} When authentication fails
+     * @throws {InvalidConfigError} When wallet account is not available
+     *
+     * @example
+     * ```typescript
+     * // Complete authentication in one call
+     * const authResult = await authAPI.authenticate("my-app-client-id");
+     * console.log(`Access token: ${authResult.access_token}`);
+     * console.log(`User ID: ${authResult.user.id}`);
+     * ```
+     */
+    async authenticate(clientId) {
+        try {
+            const account = this.walletClient.account;
+            if (!account) {
+                throw new InvalidConfigError("No account available in wallet client", "account");
+            }
+            // 1. Create challenge
+            const challenge = await this.createChallenge(account.address, clientId);
+            // 2. Sign the challenge message
+            const signature = await this.signChallenge(challenge.message);
+            // 3. Verify signature and get tokens
+            return await this.verifySignature(account.address, signature, challenge.nonce, clientId);
+        }
+        catch (error) {
+            throw new APIError("Failed to complete authentication flow", `${this.apiUrl}/api/v1/auth`, undefined);
+        }
+    }
+    /**
+     * Signs a challenge message using the wallet client.
+     *
+     * Signs the provided message using the wallet's private key.
+     * This is used in the authentication flow to prove ownership of the wallet.
+     *
+     * @param message - The message to sign
+     * @returns Promise resolving to the signature
+     * @throws {InvalidConfigError} When wallet account is not available
+     * @throws {APIError} When signing fails
+     *
+     * @example
+     * ```typescript
+     * const challenge = await authAPI.createChallenge(address, clientId);
+     * const signature = await authAPI.signChallenge(challenge.message);
+     * console.log(`Signature: ${signature}`);
+     * ```
+     */
+    async signChallenge(message) {
+        try {
+            const account = this.walletClient.account;
+            if (!account) {
+                throw new InvalidConfigError("No account available in wallet client", "account");
+            }
+            // Sign the message using the wallet client
+            const signature = await this.walletClient.signMessage({
+                account,
+                message,
+            });
+            return signature;
+        }
+        catch (error) {
+            throw new APIError("Failed to sign challenge message", "wallet_client", undefined);
+        }
+    }
+    /**
+     * Creates a challenge for frontend authentication.
+     *
+     * Generates a unique nonce and message that the user must sign with their wallet.
+     * This is the first step in the authentication flow for frontend applications.
+     *
+     * @param address - Wallet address of the user
+     * @param clientId - Client ID of the application
+     * @returns Promise resolving to the challenge response
+     * @throws {APIError} When challenge creation fails
+     *
+     * @example
+     * ```typescript
+     * const challenge = await authAPI.createChallenge(
+     *   "0x1234...",
+     *   "my-app-client-id"
+     * );
+     * console.log(`Challenge message: ${challenge.message}`);
+     * console.log(`Nonce: ${challenge.nonce}`);
+     * ```
+     */
+    async createChallenge(address, clientId) {
+        try {
+            const response = await fetch(`${this.apiUrl}/api/v1/auth/challenge`, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    address,
+                    client_id: clientId,
+                    chain_id: this.chain.id,
+                }),
+            });
+            if (!response.ok) {
+                throw new APIError(`API request failed: ${response.status}`, `${this.apiUrl}/api/v1/auth/challenge`, response.status);
+            }
+            const data = await response.json();
+            return {
+                nonce: data.nonce,
+                message: data.message,
+                expiresAt: data.expires_at,
+            };
+        }
+        catch (error) {
+            throw new APIError("Failed to create authentication challenge", `${this.apiUrl}/api/v1/auth/challenge`, undefined);
+        }
+    }
+    /**
+     * Verifies a signature for frontend authentication.
+     *
+     * Validates the signature against the challenge and returns JWT tokens for
+     * authenticated API access. This is the second step in the authentication flow.
+     *
+     * @param address - Wallet address of the user
+     * @param signature - Signature of the challenge message
+     * @param nonce - Nonce from the challenge response
+     * @param clientId - Client ID of the application
+     * @returns Promise resolving to the verification response with JWT tokens
+     * @throws {APIError} When signature verification fails
+     *
+     * @example
+     * ```typescript
+     * // First create a challenge
+     * const challenge = await authAPI.createChallenge(address, clientId);
+     *
+     * // User signs the challenge message with their wallet
+     * const signature = await wallet.signMessage(challenge.message);
+     *
+     * // Verify the signature and get tokens
+     * const authResult = await authAPI.verifySignature(
+     *   address,
+     *   signature,
+     *   challenge.nonce,
+     *   clientId
+     * );
+     *
+     * console.log(`Access token: ${authResult.accessToken}`);
+     * console.log(`User ID: ${authResult.user.id}`);
+     * ```
+     */
+    async verifySignature(address, signature, nonce, clientId) {
+        try {
+            const response = await fetch(`${this.apiUrl}/api/v1/auth/verify`, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    address,
+                    signature,
+                    nonce,
+                    client_id: clientId,
+                    chain_id: this.chain.id,
+                }),
+            });
+            if (!response.ok) {
+                throw new APIError(`API request failed: ${response.status}`, `${this.apiUrl}/api/v1/auth/verify`, response.status);
+            }
+            const data = await response.json();
+            return {
+                accessToken: data.access_token,
+                refreshToken: data.refresh_token,
+                expiresAt: data.expires_at,
+                user: {
+                    id: data.user.id,
+                    address: data.user.address,
+                    username: data.user.username,
+                },
+            };
+        }
+        catch (error) {
+            throw new APIError("Failed to verify signature", `${this.apiUrl}/api/v1/auth/verify`, undefined);
+        }
+    }
+    /**
+     * Authenticates a backend service using a secret key.
+     *
+     * Returns JWT tokens for API access. This method is used for backend services
+     * that need to authenticate with the Monaco API Gateway.
+     *
+     * @param secretKey - Secret key of the application
+     * @returns Promise resolving to the backend auth response with JWT tokens
+     * @throws {APIError} When backend authentication fails
+     *
+     * @example
+     * ```typescript
+     * const backendAuth = await authAPI.authenticateBackend("my-secret-key");
+     * console.log(`Backend access token: ${backendAuth.accessToken}`);
+     * console.log(`Application: ${backendAuth.application.name}`);
+     * ```
+     */
+    async authenticateBackend(secretKey) {
+        try {
+            const response = await fetch(`${this.apiUrl}/api/v1/auth/backend`, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    secret_key: secretKey,
+                    chain_id: this.chain.id,
+                }),
+            });
+            if (!response.ok) {
+                throw new APIError(`API request failed: ${response.status}`, `${this.apiUrl}/api/v1/auth/backend`, response.status);
+            }
+            const data = await response.json();
+            return {
+                accessToken: data.access_token,
+                expiresAt: data.expires_at,
+                application: {
+                    id: data.application.id,
+                    name: data.application.name,
+                    clientId: data.application.client_id,
+                },
+            };
+        }
+        catch (error) {
+            throw new APIError("Failed to authenticate backend service", `${this.apiUrl}/api/v1/auth/backend`, undefined);
+        }
+    }
+    /**
+     * Refreshes an access token using a refresh token.
+     *
+     * Obtains a new access token using a valid refresh token. This is useful for
+     * maintaining long-term authentication without requiring the user to sign
+     * a new challenge.
+     *
+     * @param refreshToken - The refresh token to use
+     * @returns Promise resolving to new access and refresh tokens
+     * @throws {APIError} When token refresh fails
+     *
+     * @example
+     * ```typescript
+     * const newTokens = await authAPI.refreshToken(refreshToken);
+     * console.log(`New access token: ${newTokens.accessToken}`);
+     * console.log(`Expires at: ${new Date(newTokens.expiresAt * 1000)}`);
+     * ```
+     */
+    async refreshToken(refreshToken) {
+        try {
+            const response = await fetch(`${this.apiUrl}/api/v1/auth/refresh`, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    refresh_token: refreshToken,
+                }),
+            });
+            if (!response.ok) {
+                throw new APIError(`API request failed: ${response.status}`, `${this.apiUrl}/api/v1/auth/refresh`, response.status);
+            }
+            const data = await response.json();
+            return {
+                accessToken: data.access_token,
+                expiresAt: data.expires_at,
+            };
+        }
+        catch (error) {
+            throw new APIError("Failed to refresh token", `${this.apiUrl}/api/v1/auth/refresh`, undefined);
+        }
+    }
+    /**
+     * Revokes a refresh token.
+     *
+     * Invalidates a refresh token, preventing it from being used to obtain
+     * new access tokens. This is useful for logout functionality or when
+     * a token has been compromised.
+     *
+     * @param refreshToken - The refresh token to revoke
+     * @returns Promise resolving when the token is revoked
+     * @throws {APIError} When token revocation fails
+     *
+     * @example
+     * ```typescript
+     * await authAPI.revokeToken(refreshToken);
+     * console.log("Token revoked successfully");
+     * ```
+     */
+    async revokeToken(refreshToken) {
+        try {
+            const response = await fetch(`${this.apiUrl}/api/v1/auth/revoke`, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    refresh_token: refreshToken,
+                }),
+            });
+            if (!response.ok) {
+                throw new APIError(`API request failed: ${response.status}`, `${this.apiUrl}/api/v1/auth/revoke`, response.status);
+            }
+        }
+        catch (error) {
+            throw new APIError("Failed to revoke token", `${this.apiUrl}/api/v1/auth/revoke`, undefined);
+        }
+    }
+}
+//# sourceMappingURL=api.js.map

package/dist/api/auth/api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.js","sourceRoot":"","sources":["../../../src/api/auth/api.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AAUH,OAAO,EAAE,QAAQ,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAC;AAE5D,MAAM,OAAO,WAAW;IACtB;;;;;;OAMG;IACH,YACmB,YAA0B,EAC1B,MAAc,EACd,KAAY;QAFZ,iBAAY,GAAZ,YAAY,CAAc;QAC1B,WAAM,GAAN,MAAM,CAAQ;QACd,UAAK,GAAL,KAAK,CAAO;IAC5B,CAAC;IAEJ;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,KAAK,CAAC,YAAY,CAAC,QAAgB;QACjC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC;YAC1C,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,kBAAkB,CAC1B,uCAAuC,EACvC,SAAS,CACV,CAAC;YACJ,CAAC;YAED,sBAAsB;YACtB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;YAExE,gCAAgC;YAChC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YAE9D,qCAAqC;YACrC,OAAO,MAAM,IAAI,CAAC,eAAe,CAC/B,OAAO,CAAC,OAAO,EACf,SAAS,EACT,SAAS,CAAC,KAAK,EACf,QAAQ,CACT,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,wCAAwC,EACxC,GAAG,IAAI,CAAC,MAAM,cAAc,EAC5B,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;OAiBG;IACH,KAAK,CAAC,aAAa,CAAC,OAAe;QACjC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC;YAC1C,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,kBAAkB,CAC1B,uCAAuC,EACvC,SAAS,CACV,CAAC;YACJ,CAAC;YAED,2CAA2C;YAC3C,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC;gBACpD,OAAO;gBACP,OAAO;aACR,CAAC,CAAC;YAEH,OAAO,SAAS,CAAC;QACnB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,kCAAkC,EAClC,eAAe,EACf,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,KAAK,CAAC,eAAe,CAAC,OAAe,EAAE,QAAgB;QACrD,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,wBAAwB,EAAE;gBACnE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,OAAO;oBACP,SAAS,EAAE,QAAQ;oBACnB,QAAQ,EAAE,IAAI,CAAC,KAAK,CAAC,EAAE;iBACxB,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,QAAQ,CAChB,uBAAuB,QAAQ,CAAC,MAAM,EAAE,EACxC,GAAG,IAAI,CAAC,MAAM,wBAAwB,EACtC,QAAQ,CAAC,MAAM,CAChB,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,OAAO;gBACL,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,OAAO,EAAE,IAAI,CAAC,OAAO;gBACrB,SAAS,EAAE,IAAI,CAAC,UAAU;aAC3B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,2CAA2C,EAC3C,GAAG,IAAI,CAAC,MAAM,wBAAwB,EACtC,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgCG;IACH,KAAK,CAAC,eAAe,CACnB,OAAe,EACf,SAAiB,EACjB,KAAa,EACb,QAAgB;QAEhB,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,qBAAqB,EAAE;gBAChE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,OAAO;oBACP,SAAS;oBACT,KAAK;oBACL,SAAS,EAAE,QAAQ;oBACnB,QAAQ,EAAE,IAAI,CAAC,KAAK,CAAC,EAAE;iBACxB,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,QAAQ,CAChB,uBAAuB,QAAQ,CAAC,MAAM,EAAE,EACxC,GAAG,IAAI,CAAC,MAAM,qBAAqB,EACnC,QAAQ,CAAC,MAAM,CAChB,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,OAAO;gBACL,WAAW,EAAE,IAAI,CAAC,YAAY;gBAC9B,YAAY,EAAE,IAAI,CAAC,aAAa;gBAChC,SAAS,EAAE,IAAI,CAAC,UAAU;gBAC1B,IAAI,EAAE;oBACJ,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,EAAE;oBAChB,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,OAAO;oBAC1B,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ;iBAC7B;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,4BAA4B,EAC5B,GAAG,IAAI,CAAC,MAAM,qBAAqB,EACnC,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,KAAK,CAAC,mBAAmB,CAAC,SAAiB;QACzC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,sBAAsB,EAAE;gBACjE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,UAAU,EAAE,SAAS;oBACrB,QAAQ,EAAE,IAAI,CAAC,KAAK,CAAC,EAAE;iBACxB,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,QAAQ,CAChB,uBAAuB,QAAQ,CAAC,MAAM,EAAE,EACxC,GAAG,IAAI,CAAC,MAAM,sBAAsB,EACpC,QAAQ,CAAC,MAAM,CAChB,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,OAAO;gBACL,WAAW,EAAE,IAAI,CAAC,YAAY;gBAC9B,SAAS,EAAE,IAAI,CAAC,UAAU;gBAC1B,WAAW,EAAE;oBACX,EAAE,EAAE,IAAI,CAAC,WAAW,CAAC,EAAE;oBACvB,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI;oBAC3B,QAAQ,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;iBACrC;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,wCAAwC,EACxC,GAAG,IAAI,CAAC,MAAM,sBAAsB,EACpC,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;OAiBG;IACH,KAAK,CAAC,YAAY,CAAC,YAAoB;QACrC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,sBAAsB,EAAE;gBACjE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,aAAa,EAAE,YAAY;iBAC5B,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,QAAQ,CAChB,uBAAuB,QAAQ,CAAC,MAAM,EAAE,EACxC,GAAG,IAAI,CAAC,MAAM,sBAAsB,EACpC,QAAQ,CAAC,MAAM,CAChB,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,OAAO;gBACL,WAAW,EAAE,IAAI,CAAC,YAAY;gBAC9B,SAAS,EAAE,IAAI,CAAC,UAAU;aAC3B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,yBAAyB,EACzB,GAAG,IAAI,CAAC,MAAM,sBAAsB,EACpC,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,KAAK,CAAC,WAAW,CAAC,YAAoB;QACpC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,qBAAqB,EAAE;gBAChE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,aAAa,EAAE,YAAY;iBAC5B,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,QAAQ,CAChB,uBAAuB,QAAQ,CAAC,MAAM,EAAE,EACxC,GAAG,IAAI,CAAC,MAAM,qBAAqB,EACnC,QAAQ,CAAC,MAAM,CAChB,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,QAAQ,CAChB,wBAAwB,EACxB,GAAG,IAAI,CAAC,MAAM,qBAAqB,EACnC,SAAS,CACV,CAAC;QACJ,CAAC;IACH,CAAC;CACF"}

package/dist/api/auth/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Auth API Module
+ */
+export { AuthAPIImpl } from "./api";
+export type { AuthAPI } from "@0xmonaco/types";
+//# sourceMappingURL=index.d.ts.map

package/dist/api/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/api/auth/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,OAAO,CAAC;AACpC,YAAY,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC"}

package/dist/api/auth/index.js

@@ -0,0 +1,5 @@
+/**
+ * Auth API Module
+ */
+export { AuthAPIImpl } from "./api";
+//# sourceMappingURL=index.js.map

package/dist/api/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/api/auth/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,OAAO,CAAC"}

package/dist/api/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * API Module Exports
+ *
+ * This module exports the new simplified APIs for the Monaco SDK.
+ */
+export * from "./vault";
+export * from "./trading";
+//# sourceMappingURL=index.d.ts.map

package/dist/api/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/api/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,SAAS,CAAC;AACxB,cAAc,WAAW,CAAC"}

package/dist/api/index.js

@@ -0,0 +1,8 @@
+/**
+ * API Module Exports
+ *
+ * This module exports the new simplified APIs for the Monaco SDK.
+ */
+export * from "./vault";
+export * from "./trading";
+//# sourceMappingURL=index.js.map

package/dist/api/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/api/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,SAAS,CAAC;AACxB,cAAc,WAAW,CAAC"}

package/dist/api/trading/api.d.ts

@@ -0,0 +1,152 @@
+/**
+ * Trading API Implementation
+ *
+ * Handles trading operations including order placement and management.
+ * All operations use JWT authentication and go through the API Gateway.
+ *
+ * This class provides a complete interface for trading operations on the Monaco protocol,
+ * including various order types, order management, and position operations.
+ *
+ * @example
+ * ```typescript
+ * const tradingAPI = new TradingAPIImpl(apiUrl);
+ * tradingAPI.setAccessToken(jwtToken);
+ *
+ * // Place a limit order
+ * const order = await tradingAPI.placeLimitOrder(
+ *   "ETH-USD",
+ *   "BUY",
+ *   "1.5",
+ *   "2000.50"
+ * );
+ *
+ * // Get open orders
+ * const openOrders = await tradingAPI.getOpenOrders({ market: "ETH-USD" });
+ * ```
+ */
+import type { TradingAPI, CreateOrderResponse, CancelOrderResponse, UpdateOrderResponse, OrderSide } from "@0xmonaco/types";
+export declare class TradingAPIImpl implements TradingAPI {
+    private readonly apiUrl;
+    private accessToken?;
+    /**
+     * Creates a new TradingAPI instance.
+     *
+     * @param apiUrl - The base URL for the Monaco API Gateway
+     */
+    constructor(apiUrl: string);
+    /**
+     * Set the access token for the TradingAPI
+     * @param token - The access token to set
+     */
+    setAccessToken(token: string): void;
+    /**
+     * Internal method to make authenticated API requests.
+     *
+     * @param endpoint - The API endpoint to call
+     * @param options - Request options
+     * @returns Promise resolving to the response data
+     * @throws {APIError} When API communication fails
+     */
+    private makeRequest;
+    /**
+     * Places a limit order on the order book.
+     *
+     * Limit orders are executed only when the market price reaches or improves upon
+     * the specified price. They provide price protection but may not execute immediately.
+     *
+     * @param market - The trading pair identifier (e.g., "ETH-USD")
+     * @param side - The order side ("BUY" or "SELL")
+     * @param quantity - The order quantity as string
+     * @param price - The limit price as string
+     * @param options - Optional parameters for the limit order
+     * @param options.tradingMode - Trading mode (e.g., "SPOT")
+     * @returns Promise resolving to CreateOrderResponse with order details
+     *
+     * @example
+     * ```typescript
+     * const order = await tradingAPI.placeLimitOrder(
+     *   "ETH-USD",
+     *   "BUY",
+     *   "1.5",
+     *   "2000.50",
+     *   { tradingMode: "SPOT" }
+     * );
+     * console.log(`Limit order placed: ${order.order_id}`);
+     * ```
+     */
+    placeLimitOrder(market: string, side: OrderSide, quantity: string, price: string, options?: {
+        tradingMode?: string;
+    }): Promise<CreateOrderResponse>;
+    /**
+     * Places a market order for immediate execution.
+     *
+     * Market orders execute immediately at the current market price. They provide
+     * immediate execution but may experience slippage.
+     *
+     * @param market - The trading pair identifier (e.g., "ETH-USD")
+     * @param side - The order side ("BUY" or "SELL")
+     * @param quantity - The order quantity as string
+     * @param options - Optional parameters for the market order
+     * @param options.tradingMode - Trading mode (e.g., "SPOT")
+     * @returns Promise resolving to CreateOrderResponse with order details
+     *
+     * @example
+     * ```typescript
+     * const order = await tradingAPI.placeMarketOrder(
+     *   "ETH-USD",
+     *   "SELL",
+     *   "0.5",
+     *   { tradingMode: "SPOT" }
+     * );
+     * ```
+     */
+    placeMarketOrder(market: string, side: OrderSide, quantity: string, options?: {
+        tradingMode?: string;
+    }): Promise<CreateOrderResponse>;
+    /**
+     * Cancels an existing order.
+     *
+     * Cancels an open order by its ID. The order must be in an open state to be cancelled.
+     * Cancelled orders cannot be recovered.
+     *
+     * @param orderId - The ID of the order to cancel
+     * @returns Promise resolving to CancelOrderResponse with cancellation details
+     * @throws {OrderError} When cancellation fails
+     * @throws {APIError} When API communication fails
+     *
+     * @example
+     * ```typescript
+     * const result = await tradingAPI.cancelOrder("order_123");
+     * console.log(`Order cancelled: ${result.status}`);
+     * ```
+     */
+    cancelOrder(orderId: string): Promise<CancelOrderResponse>;
+    /**
+     * Updates an existing order (price and/or quantity).
+     *
+     * Updates an open order by changing its price or quantity.
+     * This creates a new order and cancels the old one.
+     *
+     * @param orderId - The ID of the order to update
+     * @param updates - Fields to update
+     * @param updates.price - New price (optional)
+     * @param updates.quantity - New quantity (optional)
+     * @returns Promise resolving to UpdateOrderResponse with update details
+     * @throws {OrderError} When update fails
+     * @throws {APIError} When API communication fails
+     *
+     * @example
+     * ```typescript
+     * const result = await tradingAPI.updateOrder("order_123", {
+     *   price: "2100.00",
+     *   quantity: "2.0"
+     * });
+     * console.log(`Order updated: ${result.order_id}`);
+     * ```
+     */
+    updateOrder(orderId: string, updates: {
+        price?: string;
+        quantity?: string;
+    }): Promise<UpdateOrderResponse>;
+}
+//# sourceMappingURL=api.d.ts.map

package/dist/api/trading/api.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../../../src/api/trading/api.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAO,KAAK,EACV,UAAU,EACV,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,SAAS,EAEV,MAAM,iBAAiB,CAAC;AAGzB,qBAAa,cAAe,YAAW,UAAU;IAQnC,OAAO,CAAC,QAAQ,CAAC,MAAM;IAPnC,OAAO,CAAC,WAAW,CAAC,CAAS;IAE7B;;;;OAIG;gBAC0B,MAAM,EAAE,MAAM;IAE3C;;;OAGG;IACH,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI;IAInC;;;;;;;OAOG;YACW,WAAW;IAgCzB;;;;;;;;;;;;;;;;;;;;;;;;;OAyBG;IACG,eAAe,CACnB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,SAAS,EACf,QAAQ,EAAE,MAAM,EAChB,KAAK,EAAE,MAAM,EACb,OAAO,CAAC,EAAE;QACR,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,GACA,OAAO,CAAC,mBAAmB,CAAC;IA2B/B;;;;;;;;;;;;;;;;;;;;;;OAsBG;IACG,gBAAgB,CACpB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,SAAS,EACf,QAAQ,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE;QACR,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,GACA,OAAO,CAAC,mBAAmB,CAAC;IA2B/B;;;;;;;;;;;;;;;;OAgBG;IACG,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,CAAC;IAsBhE;;;;;;;;;;;;;;;;;;;;;;OAsBG;IACG,WAAW,CACf,OAAO,EAAE,MAAM,EACf,OAAO,EAAE;QACP,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GACA,OAAO,CAAC,mBAAmB,CAAC;CA0BhC"}