@0xsequence/connect 5.4.7 → 6.0.0-beta.0

package/dist/esm/utils/checkAuthStatus.d.ts

@@ -0,0 +1,39 @@
+/**
+ * Checks if the user is logged in by calling the auth status endpoint.
+ *
+ * ## Why JSONP instead of fetch?
+ *
+ * This function uses JSONP (JSON with Padding) instead of a standard `fetch` request for
+ * important cross-origin cookie access reasons:
+ *
+ * 1. **Third-party cookie restrictions**: Modern browsers (especially Safari) heavily restrict
+ *    third-party cookie access. When using `fetch` with `credentials: 'include'`, the browser
+ *    may block cookies from being sent to a different origin (e.g., wallet.sequence.app from
+ *    your dapp's domain).
+ *
+ * 2. **JSONP bypasses cookie restrictions**: JSONP works by dynamically inserting a `<script>`
+ *    tag. Script tags are treated as first-party requests by browsers, allowing cookies to be
+ *    sent with the request. The wallet's auth endpoint uses these cookies to determine login status.
+ *
+ * 3. **No CORS preflight**: JSONP also avoids CORS preflight requests (OPTIONS), which can
+ *    introduce latency and additional complexity.
+ *
+ * ## How it works
+ *
+ * 1. We create a unique callback function name and register it on `window`
+ * 2. We inject a `<script>` tag pointing to the auth status endpoint with the callback name
+ * 3. The endpoint returns JavaScript like: `callbackName({ authState: 'signed-in' })`
+ * 4. When the script executes, it calls our callback with the auth data
+ * 5. We clean up the script tag and callback function
+ *
+ * ## Security considerations
+ *
+ * - Only trusted wallet URLs should be passed to this function
+ * - The callback name includes randomness to prevent collisions and hijacking
+ * - We restore any original window property that may have been shadowed
+ *
+ * @param walletUrl - The wallet URL to check auth status against (must be a trusted endpoint)
+ * @returns Promise<boolean> - Returns true if user is logged in, false otherwise
+ */
+export declare const checkAuthStatus: (walletUrl: string) => Promise<boolean>;
+//# sourceMappingURL=checkAuthStatus.d.ts.map

package/dist/esm/utils/checkAuthStatus.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkAuthStatus.d.ts","sourceRoot":"","sources":["../../../src/utils/checkAuthStatus.ts"],"names":[],"mappings":"AASA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,eAAO,MAAM,eAAe,GAAU,WAAW,MAAM,KAAG,OAAO,CAAC,OAAO,CAgFxE,CAAA"}

package/dist/esm/utils/checkAuthStatus.js

@@ -0,0 +1,111 @@
+import { AUTH_STATUS_TIMEOUT_MS } from '../constants.js';
+import { normalizeWalletUrl } from './walletConfiguration.js';
+/**
+ * Checks if the user is logged in by calling the auth status endpoint.
+ *
+ * ## Why JSONP instead of fetch?
+ *
+ * This function uses JSONP (JSON with Padding) instead of a standard `fetch` request for
+ * important cross-origin cookie access reasons:
+ *
+ * 1. **Third-party cookie restrictions**: Modern browsers (especially Safari) heavily restrict
+ *    third-party cookie access. When using `fetch` with `credentials: 'include'`, the browser
+ *    may block cookies from being sent to a different origin (e.g., wallet.sequence.app from
+ *    your dapp's domain).
+ *
+ * 2. **JSONP bypasses cookie restrictions**: JSONP works by dynamically inserting a `<script>`
+ *    tag. Script tags are treated as first-party requests by browsers, allowing cookies to be
+ *    sent with the request. The wallet's auth endpoint uses these cookies to determine login status.
+ *
+ * 3. **No CORS preflight**: JSONP also avoids CORS preflight requests (OPTIONS), which can
+ *    introduce latency and additional complexity.
+ *
+ * ## How it works
+ *
+ * 1. We create a unique callback function name and register it on `window`
+ * 2. We inject a `<script>` tag pointing to the auth status endpoint with the callback name
+ * 3. The endpoint returns JavaScript like: `callbackName({ authState: 'signed-in' })`
+ * 4. When the script executes, it calls our callback with the auth data
+ * 5. We clean up the script tag and callback function
+ *
+ * ## Security considerations
+ *
+ * - Only trusted wallet URLs should be passed to this function
+ * - The callback name includes randomness to prevent collisions and hijacking
+ * - We restore any original window property that may have been shadowed
+ *
+ * @param walletUrl - The wallet URL to check auth status against (must be a trusted endpoint)
+ * @returns Promise<boolean> - Returns true if user is logged in, false otherwise
+ */
+export const checkAuthStatus = async (walletUrl) => {
+    const normalizedUrl = normalizeWalletUrl(walletUrl);
+    if (!normalizedUrl) {
+        return false;
+    }
+    return new Promise(resolve => {
+        let resolved = false;
+        const callbackName = `sequenceAuthStatusCallback_${Date.now()}_${Math.random().toString(36).slice(2)}`;
+        const originalCallback = window[callbackName];
+        // Create script tag to load the JSONP endpoint
+        const script = document.createElement('script');
+        script.src = `${normalizedUrl}/api/auth/status.js?callback=${callbackName}&_=${Date.now()}`;
+        script.async = true;
+        script.defer = true;
+        // Cleanup helper to avoid code duplication
+        const cleanup = () => {
+            script.remove();
+            if (originalCallback) {
+                ;
+                window[callbackName] = originalCallback;
+            }
+            else {
+                delete window[callbackName];
+            }
+            if (timeoutId) {
+                clearTimeout(timeoutId);
+            }
+        };
+        // Create a callback that will receive the auth status data
+        const authCallback = (data) => {
+            if (resolved) {
+                return;
+            }
+            resolved = true;
+            cleanup();
+            // Check if user is signed in
+            const isV3WalletSignedIn = data.authState === 'signed-in';
+            resolve(isV3WalletSignedIn);
+        };
+        window[callbackName] = authCallback;
+        // Handle script load - if callback wasn't called, resolve as false after a short delay
+        script.addEventListener('load', () => {
+            setTimeout(() => {
+                if (!resolved) {
+                    resolved = true;
+                    cleanup();
+                    resolve(false);
+                }
+            }, 0);
+        });
+        // Handle script error
+        script.addEventListener('error', () => {
+            if (!resolved) {
+                resolved = true;
+                cleanup();
+                console.warn('Failed to load auth status script');
+                resolve(false);
+            }
+        });
+        // Timeout fallback in case callback is never called
+        const timeoutId = setTimeout(() => {
+            if (!resolved) {
+                resolved = true;
+                cleanup();
+                resolve(false);
+            }
+        }, AUTH_STATUS_TIMEOUT_MS);
+        // Append script to document head to trigger load
+        document.head.appendChild(script);
+    });
+};
+//# sourceMappingURL=checkAuthStatus.js.map

package/dist/esm/utils/checkAuthStatus.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkAuthStatus.js","sourceRoot":"","sources":["../../../src/utils/checkAuthStatus.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,sBAAsB,EAAE,MAAM,iBAAiB,CAAA;AAExD,OAAO,EAAE,kBAAkB,EAAE,MAAM,0BAA0B,CAAA;AAO7D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,KAAK,EAAE,SAAiB,EAAoB,EAAE;IAC3E,MAAM,aAAa,GAAG,kBAAkB,CAAC,SAAS,CAAC,CAAA;IAEnD,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,KAAK,CAAA;IACd,CAAC;IAED,OAAO,IAAI,OAAO,CAAU,OAAO,CAAC,EAAE;QACpC,IAAI,QAAQ,GAAG,KAAK,CAAA;QACpB,MAAM,YAAY,GAAG,8BAA8B,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAA;QACtG,MAAM,gBAAgB,GAAI,MAAc,CAAC,YAAY,CAAC,CAAA;QAEtD,+CAA+C;QAC/C,MAAM,MAAM,GAAG,QAAQ,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAA;QAC/C,MAAM,CAAC,GAAG,GAAG,GAAG,aAAa,gCAAgC,YAAY,MAAM,IAAI,CAAC,GAAG,EAAE,EAAE,CAAA;QAC3F,MAAM,CAAC,KAAK,GAAG,IAAI,CAAA;QACnB,MAAM,CAAC,KAAK,GAAG,IAAI,CAAA;QAEnB,2CAA2C;QAC3C,MAAM,OAAO,GAAG,GAAG,EAAE;YACnB,MAAM,CAAC,MAAM,EAAE,CAAA;YACf,IAAI,gBAAgB,EAAE,CAAC;gBACrB,CAAC;gBAAC,MAAc,CAAC,YAAY,CAAC,GAAG,gBAAgB,CAAA;YACnD,CAAC;iBAAM,CAAC;gBACN,OAAQ,MAAc,CAAC,YAAY,CAAC,CAAA;YACtC,CAAC;YACD,IAAI,SAAS,EAAE,CAAC;gBACd,YAAY,CAAC,SAAS,CAAC,CAAA;YACzB,CAAC;QACH,CAAC,CAAA;QAED,2DAA2D;QAC3D,MAAM,YAAY,GAAG,CAAC,IAAoB,EAAE,EAAE;YAC5C,IAAI,QAAQ,EAAE,CAAC;gBACb,OAAM;YACR,CAAC;YACD,QAAQ,GAAG,IAAI,CAAA;YACf,OAAO,EAAE,CAAA;YAET,6BAA6B;YAC7B,MAAM,kBAAkB,GAAG,IAAI,CAAC,SAAS,KAAK,WAAW,CAAA;YACzD,OAAO,CAAC,kBAAkB,CAAC,CAAA;QAC7B,CAAC,CAGA;QAAC,MAAc,CAAC,YAAY,CAAC,GAAG,YAAY,CAAA;QAE7C,uFAAuF;QACvF,MAAM,CAAC,gBAAgB,CAAC,MAAM,EAAE,GAAG,EAAE;YACnC,UAAU,CAAC,GAAG,EAAE;gBACd,IAAI,CAAC,QAAQ,EAAE,CAAC;oBACd,QAAQ,GAAG,IAAI,CAAA;oBACf,OAAO,EAAE,CAAA;oBACT,OAAO,CAAC,KAAK,CAAC,CAAA;gBAChB,CAAC;YACH,CAAC,EAAE,CAAC,CAAC,CAAA;QACP,CAAC,CAAC,CAAA;QAEF,sBAAsB;QACtB,MAAM,CAAC,gBAAgB,CAAC,OAAO,EAAE,GAAG,EAAE;YACpC,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,QAAQ,GAAG,IAAI,CAAA;gBACf,OAAO,EAAE,CAAA;gBACT,OAAO,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAA;gBACjD,OAAO,CAAC,KAAK,CAAC,CAAA;YAChB,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,oDAAoD;QACpD,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE;YAChC,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,QAAQ,GAAG,IAAI,CAAA;gBACf,OAAO,EAAE,CAAA;gBACT,OAAO,CAAC,KAAK,CAAC,CAAA;YAChB,CAAC;QACH,CAAC,EAAE,sBAAsB,CAAC,CAAA;QAE1B,iDAAiD;QACjD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;IACnC,CAAC,CAAC,CAAA;AACJ,CAAC,CAAA"}

package/dist/esm/utils/ethAuth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ethAuth.d.ts","sourceRoot":"","sources":["../../../src/utils/ethAuth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAA;AAGpD,OAAO,KAAK,EAAE,OAAO,EAAE,yBAAyB,EAAE,MAAM,OAAO,CAAA;AAC/D,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAA;AAGtD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAI9C,eAAO,MAAM,gBAAgB,GAC3B,cAAc,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,EAC3C,SAAS,OAAO,CAAC,WAAW,CAAC,KAC5B,OAAO,CAAC,YAAY,CAuCtB,CAAA;AAED,eAAO,MAAM,gBAAgB,GAC3B,cAAc,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,EAC3C,cAAc,yBAAyB,CAAC,GAAG,EAAE,GAAG,CAAC,EACjD,OAAO,YAAY,KAClB,OAAO,CAAC,OAAO,CAUjB,CAAA"}
+{"version":3,"file":"ethAuth.d.ts","sourceRoot":"","sources":["../../../src/utils/ethAuth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAA;AAEpD,OAAO,KAAK,EAAE,OAAO,EAAE,yBAAyB,EAAE,MAAM,OAAO,CAAA;AAC/D,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAA;AAGtD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C,eAAO,MAAM,gBAAgB,GAC3B,cAAc,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,EAC3C,SAAS,OAAO,CAAC,WAAW,CAAC,KAC5B,OAAO,CAAC,YAAY,CAoFtB,CAAA;AAED,eAAO,MAAM,gBAAgB,GAC3B,cAAc,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,EAC3C,cAAc,yBAAyB,CAAC,GAAG,EAAE,GAAG,CAAC,EACjD,OAAO,YAAY,KAClB,OAAO,CAAC,OAAO,CA8BjB,CAAA"}

package/dist/esm/utils/ethAuth.js

@@ -1,42 +1,95 @@
 import { ETHAuth, Proof } from '@0xsequence/ethauth';
-import { isValidTypedDataSignature } from '@0xsequence/provider';
 import { DEFAULT_SESSION_EXPIRATION, LocalStorageKey } from '../constants/index.js';
-import { publicClientToProvider, walletClientToSigner } from './adapters.js';
 export const signEthAuthProof = async (walletClient, storage) => {
-    const proofInformation = await storage.getItem(LocalStorageKey.EthAuthProof);
-    // if proof information was generated and saved upon wallet connection, use that
-    if (proofInformation) {
-        return proofInformation;
-    }
-    // generate a new proof
-    const proofSettings = await storage.getItem(LocalStorageKey.EthAuthSettings);
+    const ethAuth = new ETHAuth();
+    const walletAddress = walletClient.account.address;
+    const normalizedWalletAddress = walletAddress.toLowerCase();
+    const [proofInformation, proofSettings] = await Promise.all([
+        storage.getItem(LocalStorageKey.EthAuthProof),
+        storage.getItem(LocalStorageKey.EthAuthSettings)
+    ]);
+    const clearCachedProof = () => storage.removeItem(LocalStorageKey.EthAuthProof);
     if (!proofSettings) {
+        if (proofInformation) {
+            await clearCachedProof();
+        }
         throw new Error('No ETHAuth settings found');
     }
-    const walletAddress = walletClient.account.address;
+    const expectedApp = proofSettings.app || 'app';
+    const expectedOrigin = proofSettings.origin;
+    const expectedNonce = proofSettings.nonce;
+    const expectedExpiry = proofSettings.expiry ? Math.max(proofSettings.expiry, 200) : DEFAULT_SESSION_EXPIRATION;
+    // if proof information was generated and saved upon wallet connection, use that
+    if (proofInformation) {
+        try {
+            const decodedProof = await ethAuth.decodeProof(proofInformation.proofString, true);
+            const cachedExpiry = decodedProof.claims.exp && decodedProof.claims.iat ? decodedProof.claims.exp - decodedProof.claims.iat : null;
+            const isMatchingProof = decodedProof.address === normalizedWalletAddress &&
+                (decodedProof.claims.app || 'app') === expectedApp &&
+                (decodedProof.claims.ogn ?? undefined) === (expectedOrigin ?? undefined) &&
+                (decodedProof.claims.n ?? undefined) === (expectedNonce ?? undefined) &&
+                cachedExpiry !== null &&
+                Math.abs(cachedExpiry - expectedExpiry) <= 1;
+            if (isMatchingProof) {
+                return proofInformation;
+            }
+            await clearCachedProof();
+        }
+        catch {
+            await clearCachedProof();
+        }
+    }
     const proof = new Proof();
     proof.address = walletAddress;
-    proof.claims.app = proofSettings.app || 'app';
-    proof.claims.ogn = proofSettings.origin;
-    proof.claims.n = proofSettings.nonce;
-    proof.setExpiryIn(proofSettings.expiry ? Math.max(proofSettings.expiry, 200) : DEFAULT_SESSION_EXPIRATION);
+    proof.setIssuedAtNow();
+    proof.claims.app = expectedApp;
+    proof.claims.ogn = expectedOrigin;
+    proof.claims.n = expectedNonce;
+    proof.setExpiryIn(expectedExpiry);
     const typedData = proof.messageTypedData();
-    const signer = await walletClientToSigner(walletClient);
-    const signature = await signer.signTypedData(typedData.domain, typedData.types, typedData.message);
+    const primaryType = Object.keys(typedData.types).find(key => key !== 'EIP712Domain' && typedData.types[key]) || 'Proof';
+    const signature = await walletClient.signTypedData({
+        account: walletClient.account.address,
+        domain: {
+            name: typedData.domain.name,
+            version: typedData.domain.version,
+            chainId: typedData.domain.chainId == null ? undefined : BigInt(typedData.domain.chainId),
+            verifyingContract: typedData.domain.verifyingContract || undefined,
+            salt: typedData.domain.salt || undefined
+        },
+        primaryType,
+        types: typedData.types,
+        message: typedData.message
+    });
     proof.signature = signature;
-    const ethAuth = new ETHAuth();
     const proofString = await ethAuth.encodeProof(proof, true);
-    return {
-        typedData,
-        proofString
-    };
+    const proofPayload = { typedData, proofString };
+    await storage.setItem(LocalStorageKey.EthAuthProof, proofPayload);
+    return proofPayload;
 };
 export const validateEthProof = async (walletClient, publicClient, proof) => {
-    const walletAddress = walletClient.account.address;
+    const walletAddress = walletClient.account.address.toLowerCase();
     const ethAuth = new ETHAuth();
     const decodedProof = await ethAuth.decodeProof(proof.proofString, true);
-    const provider = publicClientToProvider(publicClient);
-    const isValid = await isValidTypedDataSignature(walletAddress, proof.typedData, decodedProof.signature, provider);
+    if (decodedProof.address !== walletAddress) {
+        return false;
+    }
+    const typedData = decodedProof.messageTypedData();
+    const primaryType = Object.keys(typedData.types).find(key => key !== 'EIP712Domain' && typedData.types[key]) || 'Proof';
+    const isValid = await publicClient.verifyTypedData({
+        address: walletClient.account.address,
+        domain: {
+            name: typedData.domain.name || undefined,
+            version: typedData.domain.version || undefined,
+            chainId: typedData.domain.chainId == null ? undefined : BigInt(typedData.domain.chainId),
+            verifyingContract: typedData.domain.verifyingContract || undefined,
+            salt: typedData.domain.salt || undefined
+        },
+        types: typedData.types,
+        primaryType,
+        message: typedData.message,
+        signature: decodedProof.signature
+    });
     return isValid;
 };
 //# sourceMappingURL=ethAuth.js.map

package/dist/esm/utils/ethAuth.js.map

@@ -1 +1 @@
-{"version":3,"file":"ethAuth.js","sourceRoot":"","sources":["../../../src/utils/ethAuth.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AACpD,OAAO,EAAE,yBAAyB,EAAE,MAAM,sBAAsB,CAAA;AAIhE,OAAO,EAAE,0BAA0B,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AAGnF,OAAO,EAAE,sBAAsB,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAA;AAE5E,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,EACnC,YAA2C,EAC3C,OAA6B,EACN,EAAE;IACzB,MAAM,gBAAgB,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,YAAY,CAAC,CAAA;IAE5E,gFAAgF;IAChF,IAAI,gBAAgB,EAAE,CAAC;QACrB,OAAO,gBAAgB,CAAA;IACzB,CAAC;IAED,uBAAuB;IACvB,MAAM,aAAa,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,eAAe,CAAC,CAAA;IAE5E,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAA;IAC9C,CAAC;IAED,MAAM,aAAa,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,CAAA;IAElD,MAAM,KAAK,GAAG,IAAI,KAAK,EAAE,CAAA;IACzB,KAAK,CAAC,OAAO,GAAG,aAAa,CAAA;IAE7B,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,aAAa,CAAC,GAAG,IAAI,KAAK,CAAA;IAC7C,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,aAAa,CAAC,MAAM,CAAA;IACvC,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,aAAa,CAAC,KAAK,CAAA;IAEpC,KAAK,CAAC,WAAW,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,0BAA0B,CAAC,CAAA;IAE1G,MAAM,SAAS,GAAG,KAAK,CAAC,gBAAgB,EAAE,CAAA;IAC1C,MAAM,MAAM,GAAG,MAAM,oBAAoB,CAAC,YAAY,CAAC,CAAA;IACvD,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,MAAM,EAAE,SAAS,CAAC,KAAK,EAAE,SAAS,CAAC,OAAO,CAAC,CAAA;IAElG,KAAK,CAAC,SAAS,GAAG,SAAS,CAAA;IAE3B,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAA;IAC7B,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;IAE1D,OAAO;QACL,SAAS;QACT,WAAW;KACZ,CAAA;AACH,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,EACnC,YAA2C,EAC3C,YAAiD,EACjD,KAAmB,EACD,EAAE;IACpB,MAAM,aAAa,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,CAAA;IAClD,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAA;IAE7B,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,KAAK,CAAC,WAAW,EAAE,IAAI,CAAC,CAAA;IACvE,MAAM,QAAQ,GAAG,sBAAsB,CAAC,YAAY,CAAC,CAAA;IAErD,MAAM,OAAO,GAAG,MAAM,yBAAyB,CAAC,aAAa,EAAE,KAAK,CAAC,SAAS,EAAE,YAAY,CAAC,SAAS,EAAE,QAAe,CAAC,CAAA;IAExH,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA"}
+{"version":3,"file":"ethAuth.js","sourceRoot":"","sources":["../../../src/utils/ethAuth.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAIpD,OAAO,EAAE,0BAA0B,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AAGnF,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,EACnC,YAA2C,EAC3C,OAA6B,EACN,EAAE;IACzB,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAA;IAC7B,MAAM,aAAa,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,CAAA;IAClD,MAAM,uBAAuB,GAAG,aAAa,CAAC,WAAW,EAAE,CAAA;IAE3D,MAAM,CAAC,gBAAgB,EAAE,aAAa,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAC1D,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,YAAY,CAAC;QAC7C,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,eAAe,CAAC;KACjD,CAAC,CAAA;IACF,MAAM,gBAAgB,GAAG,GAAG,EAAE,CAAC,OAAO,CAAC,UAAU,CAAC,eAAe,CAAC,YAAY,CAAC,CAAA;IAE/E,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,IAAI,gBAAgB,EAAE,CAAC;YACrB,MAAM,gBAAgB,EAAE,CAAA;QAC1B,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAA;IAC9C,CAAC;IAED,MAAM,WAAW,GAAG,aAAa,CAAC,GAAG,IAAI,KAAK,CAAA;IAC9C,MAAM,cAAc,GAAG,aAAa,CAAC,MAAM,CAAA;IAC3C,MAAM,aAAa,GAAG,aAAa,CAAC,KAAK,CAAA;IACzC,MAAM,cAAc,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,0BAA0B,CAAA;IAE9G,gFAAgF;IAChF,IAAI,gBAAgB,EAAE,CAAC;QACrB,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,gBAAgB,CAAC,WAAW,EAAE,IAAI,CAAC,CAAA;YAClF,MAAM,YAAY,GAChB,YAAY,CAAC,MAAM,CAAC,GAAG,IAAI,YAAY,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,GAAG,YAAY,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAA;YAE/G,MAAM,eAAe,GACnB,YAAY,CAAC,OAAO,KAAK,uBAAuB;gBAChD,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,IAAI,KAAK,CAAC,KAAK,WAAW;gBAClD,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,IAAI,SAAS,CAAC,KAAK,CAAC,cAAc,IAAI,SAAS,CAAC;gBACxE,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,IAAI,SAAS,CAAC,KAAK,CAAC,aAAa,IAAI,SAAS,CAAC;gBACrE,YAAY,KAAK,IAAI;gBACrB,IAAI,CAAC,GAAG,CAAC,YAAY,GAAG,cAAc,CAAC,IAAI,CAAC,CAAA;YAE9C,IAAI,eAAe,EAAE,CAAC;gBACpB,OAAO,gBAAgB,CAAA;YACzB,CAAC;YAED,MAAM,gBAAgB,EAAE,CAAA;QAC1B,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,gBAAgB,EAAE,CAAA;QAC1B,CAAC;IACH,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,KAAK,EAAE,CAAA;IACzB,KAAK,CAAC,OAAO,GAAG,aAAa,CAAA;IAC7B,KAAK,CAAC,cAAc,EAAE,CAAA;IAEtB,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,WAAW,CAAA;IAC9B,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,cAAc,CAAA;IACjC,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,aAAa,CAAA;IAE9B,KAAK,CAAC,WAAW,CAAC,cAAc,CAAC,CAAA;IAEjC,MAAM,SAAS,GAAG,KAAK,CAAC,gBAAgB,EAAE,CAAA;IAE1C,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,cAAc,IAAI,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,OAAO,CAAA;IAEvH,MAAM,SAAS,GAAG,MAAM,YAAY,CAAC,aAAa,CAAC;QACjD,OAAO,EAAE,YAAY,CAAC,OAAO,CAAC,OAAO;QACrC,MAAM,EAAE;YACN,IAAI,EAAE,SAAS,CAAC,MAAM,CAAC,IAAI;YAC3B,OAAO,EAAE,SAAS,CAAC,MAAM,CAAC,OAAO;YACjC,OAAO,EAAE,SAAS,CAAC,MAAM,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,OAAc,CAAC;YAC/F,iBAAiB,EAAG,SAAS,CAAC,MAAM,CAAC,iBAAmC,IAAI,SAAS;YACrF,IAAI,EAAG,SAAS,CAAC,MAAM,CAAC,IAAsB,IAAI,SAAS;SAC5D;QACD,WAAW;QACX,KAAK,EAAE,SAAS,CAAC,KAAK;QACtB,OAAO,EAAE,SAAS,CAAC,OAAO;KAC3B,CAAC,CAAA;IAEF,KAAK,CAAC,SAAS,GAAG,SAAS,CAAA;IAE3B,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;IAC1D,MAAM,YAAY,GAAG,EAAE,SAAS,EAAE,WAAW,EAAE,CAAA;IAE/C,MAAM,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,YAAY,EAAE,YAAY,CAAC,CAAA;IAEjE,OAAO,YAAY,CAAA;AACrB,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,EACnC,YAA2C,EAC3C,YAAiD,EACjD,KAAmB,EACD,EAAE;IACpB,MAAM,aAAa,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,EAAE,CAAA;IAChE,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAA;IAE7B,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,KAAK,CAAC,WAAW,EAAE,IAAI,CAAC,CAAA;IAEvE,IAAI,YAAY,CAAC,OAAO,KAAK,aAAa,EAAE,CAAC;QAC3C,OAAO,KAAK,CAAA;IACd,CAAC;IAED,MAAM,SAAS,GAAG,YAAY,CAAC,gBAAgB,EAAE,CAAA;IAEjD,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,cAAc,IAAI,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,OAAO,CAAA;IAEvH,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,eAAe,CAAC;QACjD,OAAO,EAAE,YAAY,CAAC,OAAO,CAAC,OAAO;QACrC,MAAM,EAAE;YACN,IAAI,EAAE,SAAS,CAAC,MAAM,CAAC,IAAI,IAAI,SAAS;YACxC,OAAO,EAAE,SAAS,CAAC,MAAM,CAAC,OAAO,IAAI,SAAS;YAC9C,OAAO,EAAE,SAAS,CAAC,MAAM,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,OAAc,CAAC;YAC/F,iBAAiB,EAAG,SAAS,CAAC,MAAM,CAAC,iBAAmC,IAAI,SAAS;YACrF,IAAI,EAAG,SAAS,CAAC,MAAM,CAAC,IAAsB,IAAI,SAAS;SAC5D;QACD,KAAK,EAAE,SAAS,CAAC,KAAY;QAC7B,WAAW;QACX,OAAO,EAAE,SAAS,CAAC,OAAO;QAC1B,SAAS,EAAE,YAAY,CAAC,SAA0B;KACnD,CAAC,CAAA;IAEF,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA"}

package/dist/esm/utils/session/constants.d.ts

@@ -0,0 +1,9 @@
+import { Permission } from '@0xsequence/dapp-client';
+export declare const SEQUENCE_VALUE_FORWARDER = "0xABAAd93EeE2a569cF0632f39B10A9f5D734777ca";
+export declare const PARAMETER_OPERATIONS: {
+    EQUAL: Permission.ParameterOperation;
+    NOT_EQUAL: Permission.ParameterOperation;
+    LESS_THAN_OR_EQUAL: Permission.ParameterOperation;
+    GREATER_THAN_OR_EQUAL: Permission.ParameterOperation;
+};
+//# sourceMappingURL=constants.d.ts.map

package/dist/esm/utils/session/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../../../src/utils/session/constants.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAA;AAEpD,eAAO,MAAM,wBAAwB,+CAA+C,CAAA;AAEpF,eAAO,MAAM,oBAAoB;;;;;CAKhC,CAAA"}

package/dist/esm/utils/session/constants.js

@@ -0,0 +1,9 @@
+import { Permission } from '@0xsequence/dapp-client';
+export const SEQUENCE_VALUE_FORWARDER = '0xABAAd93EeE2a569cF0632f39B10A9f5D734777ca';
+export const PARAMETER_OPERATIONS = {
+    EQUAL: Permission.ParameterOperation.EQUAL,
+    NOT_EQUAL: Permission.ParameterOperation.NOT_EQUAL,
+    LESS_THAN_OR_EQUAL: Permission.ParameterOperation.LESS_THAN_OR_EQUAL,
+    GREATER_THAN_OR_EQUAL: Permission.ParameterOperation.GREATER_THAN_OR_EQUAL
+};
+//# sourceMappingURL=constants.js.map

package/dist/esm/utils/session/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../../../src/utils/session/constants.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAA;AAEpD,MAAM,CAAC,MAAM,wBAAwB,GAAG,4CAA4C,CAAA;AAEpF,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,KAAK,EAAE,UAAU,CAAC,kBAAkB,CAAC,KAAK;IAC1C,SAAS,EAAE,UAAU,CAAC,kBAAkB,CAAC,SAAS;IAClD,kBAAkB,EAAE,UAAU,CAAC,kBAAkB,CAAC,kBAAkB;IACpE,qBAAqB,EAAE,UAAU,CAAC,kBAAkB,CAAC,qBAAqB;CAC3E,CAAA"}

package/dist/esm/utils/session/createContractPermission.d.ts

@@ -0,0 +1,79 @@
+import type { CreateContractPermissionOptions, CreateContractPermissionsOptions, Permission } from './types.js';
+/**
+ * Creates a permission for a single smart contract function.
+ *
+ * This helper function generates a permission object for a specific contract function,
+ * This is useful when you want to build permissions for individual contracts functions separately.
+ *
+ * @param options The configuration ({@link CreateContractPermissionOptions}) for the single contract permission.
+ * @returns A Permission ({@link Permission}) for the function on the contract.
+ *
+ * @note If no functions are provided, the dApp can call any function on the contract for the user.
+ *
+ * @example
+ *
+ * import { createContractPermission } from '@0xsequence/connect'
+ * import { parseUnits } from 'viem'
+ *
+ * // Allow dApp to transfer up to 1 USDC to any address untill the session expires.
+ * const permission = createContractPermission({
+ *         address: '0x...',
+ *         functionSignature: 'function transfer(address to, uint256 value)',
+ *         rules: [
+ *           {
+ *             param: 'value',
+ *             type: 'uint256',
+ *             condition: 'LESS_THAN_OR_EQUAL',
+ *             value: parseUnits('1', 6),
+ *             cumulative: true
+ *           }
+ *         ]
+ * })
+ *
+ */
+declare function createContractPermission(options: CreateContractPermissionOptions): Permission;
+/**
+ * Creates contract permissions for multiple smart contract functions.
+ *
+ * This helper function generates permission objects that define what functions a dApp can call
+ * on a specific smart contract, with optional parameter constraints and spending limits.
+ *
+ * @param options The configuration ({@link CreateContractPermissionsOptions}) for multiple contract permissions.
+ * @returns An array of Permissions ({@link Permission}).
+ *
+ * @note If no functions are provided, the dApp can call any function on the contract for the user.
+ *
+ * @example
+ * ```typescript
+ * import { createContractPermissions } from '@0xsequence/connect'
+ *
+ * // Allow dApp to approve a DEX contract and transfer up to 10 USDC to any address until the session expires.
+ * const permissions = createContractPermissions({
+ *   address: '0x...',
+ *   functions: [
+ *     {
+ *       functionSignature: 'function transfer(address to, uint256 value)',
+ *       rules: [{
+ *         param: 'value',
+ *         type: 'uint256',
+ *         condition: 'LESS_THAN_OR_EQUAL',
+ *         value: parseUnits('10', 6),
+ *         cumulative: true
+ *       }]
+ *     },
+ *     {
+ *       functionSignature: 'function approve(address spender, uint256 value)',
+ *       rules: [{
+ *         param: 'spender',
+ *         type: 'address',
+ *         condition: 'EQUAL',
+ *         value: '0x...' // Could be a DEX contract address for swaps
+ *       }]
+ *     }
+ *   ]
+ * })
+ * ```
+ */
+declare function createContractPermissions(options: CreateContractPermissionsOptions): Permission[];
+export { createContractPermission, createContractPermissions };
+//# sourceMappingURL=createContractPermission.d.ts.map

package/dist/esm/utils/session/createContractPermission.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"createContractPermission.d.ts","sourceRoot":"","sources":["../../../../src/utils/session/createContractPermission.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EACV,+BAA+B,EAC/B,gCAAgC,EAEhC,UAAU,EAEX,MAAM,YAAY,CAAA;AASnB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,iBAAS,wBAAwB,CAAC,OAAO,EAAE,+BAA+B,GAAG,UAAU,CAoFtF;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAyCG;AACH,iBAAS,yBAAyB,CAAC,OAAO,EAAE,gCAAgC,GAAG,UAAU,EAAE,CAiC1F;AAED,OAAO,EAAE,wBAAwB,EAAE,yBAAyB,EAAE,CAAA"}

package/dist/esm/utils/session/createContractPermission.js

@@ -0,0 +1,191 @@
+import { Utils } from '@0xsequence/dapp-client';
+import { PARAMETER_OPERATIONS } from './constants.js';
+const operationMap = {
+    EQUAL: PARAMETER_OPERATIONS.EQUAL,
+    NOT_EQUAL: PARAMETER_OPERATIONS.NOT_EQUAL,
+    LESS_THAN_OR_EQUAL: PARAMETER_OPERATIONS.LESS_THAN_OR_EQUAL,
+    GREATER_THAN_OR_EQUAL: PARAMETER_OPERATIONS.GREATER_THAN_OR_EQUAL
+};
+/**
+ * Creates a permission for a single smart contract function.
+ *
+ * This helper function generates a permission object for a specific contract function,
+ * This is useful when you want to build permissions for individual contracts functions separately.
+ *
+ * @param options The configuration ({@link CreateContractPermissionOptions}) for the single contract permission.
+ * @returns A Permission ({@link Permission}) for the function on the contract.
+ *
+ * @note If no functions are provided, the dApp can call any function on the contract for the user.
+ *
+ * @example
+ *
+ * import { createContractPermission } from '@0xsequence/connect'
+ * import { parseUnits } from 'viem'
+ *
+ * // Allow dApp to transfer up to 1 USDC to any address untill the session expires.
+ * const permission = createContractPermission({
+ *         address: '0x...',
+ *         functionSignature: 'function transfer(address to, uint256 value)',
+ *         rules: [
+ *           {
+ *             param: 'value',
+ *             type: 'uint256',
+ *             condition: 'LESS_THAN_OR_EQUAL',
+ *             value: parseUnits('1', 6),
+ *             cumulative: true
+ *           }
+ *         ]
+ * })
+ *
+ */
+function createContractPermission(options) {
+    if (!options.address) {
+        throw new Error('createContractPermission: Contract address is required.');
+    }
+    // if no functions are provided, dapp can call any function on the contract
+    if (!options.functionSignature) {
+        const builder = Utils.PermissionBuilder.for(options.address).allowAll();
+        return builder.build();
+    }
+    let builder = Utils.PermissionBuilder.for(options.address);
+    builder = builder.forFunction(options.functionSignature);
+    if (options.onlyOnce === true) {
+        builder = builder.onlyOnce();
+    }
+    if (options.rules) {
+        for (const rule of options.rules) {
+            const isCumulative = rule.cumulative !== false;
+            const operation = operationMap[rule.condition];
+            // Use a switch statement to call the correct type-specific builder method.
+            switch (rule.type) {
+                case 'address':
+                    builder = builder.withAddressParam(rule.param, rule.value, operation, isCumulative);
+                    break;
+                case 'int256':
+                    builder = builder.withIntNParam(rule.param, BigInt(rule.value), 256, operation, isCumulative);
+                    break;
+                case 'int8':
+                    builder = builder.withIntNParam(rule.param, BigInt(rule.value), 8, operation, isCumulative);
+                    break;
+                case 'int16':
+                    builder = builder.withIntNParam(rule.param, BigInt(rule.value), 16, operation, isCumulative);
+                    break;
+                case 'int32':
+                    builder = builder.withIntNParam(rule.param, BigInt(rule.value), 32, operation, isCumulative);
+                    break;
+                case 'int64':
+                    builder = builder.withIntNParam(rule.param, BigInt(rule.value), 64, operation, isCumulative);
+                    break;
+                case 'int128':
+                    builder = builder.withIntNParam(rule.param, BigInt(rule.value), 128, operation, isCumulative);
+                    break;
+                case 'uint256':
+                    builder = builder.withUintNParam(rule.param, BigInt(rule.value), 256, operation, isCumulative);
+                    break;
+                case 'uint8':
+                    builder = builder.withUintNParam(rule.param, BigInt(rule.value), 8, operation, isCumulative);
+                    break;
+                case 'uint16':
+                    builder = builder.withUintNParam(rule.param, BigInt(rule.value), 16, operation, isCumulative);
+                    break;
+                case 'uint32':
+                    builder = builder.withUintNParam(rule.param, BigInt(rule.value), 32, operation, isCumulative);
+                    break;
+                case 'uint64':
+                    builder = builder.withUintNParam(rule.param, BigInt(rule.value), 64, operation, isCumulative);
+                    break;
+                case 'uint128':
+                    builder = builder.withUintNParam(rule.param, BigInt(rule.value), 128, operation, isCumulative);
+                    break;
+                case 'string':
+                    builder = builder.withStringParam(rule.param, rule.value);
+                    break;
+                case 'bool':
+                    builder = builder.withBoolParam(rule.param, rule.value, operation);
+                    break;
+                case 'bytes':
+                    builder = builder.withBytesParam(rule.param, rule.value);
+                    break;
+                case 'bytesN':
+                    builder = builder.withBytesNParam(rule.param, rule.value);
+                    break;
+                default:
+                    throw new Error(`createContractPermission: Unsupported parameter type "${rule.type}".`);
+            }
+        }
+    }
+    // Build and add this function's Permission object
+    return builder.build();
+}
+/**
+ * Creates contract permissions for multiple smart contract functions.
+ *
+ * This helper function generates permission objects that define what functions a dApp can call
+ * on a specific smart contract, with optional parameter constraints and spending limits.
+ *
+ * @param options The configuration ({@link CreateContractPermissionsOptions}) for multiple contract permissions.
+ * @returns An array of Permissions ({@link Permission}).
+ *
+ * @note If no functions are provided, the dApp can call any function on the contract for the user.
+ *
+ * @example
+ * ```typescript
+ * import { createContractPermissions } from '@0xsequence/connect'
+ *
+ * // Allow dApp to approve a DEX contract and transfer up to 10 USDC to any address until the session expires.
+ * const permissions = createContractPermissions({
+ *   address: '0x...',
+ *   functions: [
+ *     {
+ *       functionSignature: 'function transfer(address to, uint256 value)',
+ *       rules: [{
+ *         param: 'value',
+ *         type: 'uint256',
+ *         condition: 'LESS_THAN_OR_EQUAL',
+ *         value: parseUnits('10', 6),
+ *         cumulative: true
+ *       }]
+ *     },
+ *     {
+ *       functionSignature: 'function approve(address spender, uint256 value)',
+ *       rules: [{
+ *         param: 'spender',
+ *         type: 'address',
+ *         condition: 'EQUAL',
+ *         value: '0x...' // Could be a DEX contract address for swaps
+ *       }]
+ *     }
+ *   ]
+ * })
+ * ```
+ */
+function createContractPermissions(options) {
+    if (!options.address) {
+        throw new Error('createContractPermissions: Contract address is required.');
+    }
+    const allPermissions = [];
+    // if no functions are provided, dapp can call any function on the contract
+    if (!options.functions || options.functions.length === 0) {
+        const permission = createContractPermission({
+            address: options.address
+        });
+        allPermissions.push(permission);
+    }
+    // For each function in this contract, create a separate Permission object
+    for (const func of options.functions || []) {
+        if (!func.functionSignature) {
+            throw new Error('createContractPermissions: `signature` is required for each function permission.');
+        }
+        // Use createContractPermission for each individual function
+        const permission = createContractPermission({
+            address: options.address,
+            functionSignature: func.functionSignature,
+            rules: func.rules,
+            onlyOnce: func.onlyOnce
+        });
+        allPermissions.push(permission);
+    }
+    return allPermissions;
+}
+export { createContractPermission, createContractPermissions };
+//# sourceMappingURL=createContractPermission.js.map

package/dist/esm/utils/session/createContractPermission.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"createContractPermission.js","sourceRoot":"","sources":["../../../../src/utils/session/createContractPermission.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAA;AAG/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAA;AASrD,MAAM,YAAY,GAAmD;IACnE,KAAK,EAAE,oBAAoB,CAAC,KAAK;IACjC,SAAS,EAAE,oBAAoB,CAAC,SAAS;IACzC,kBAAkB,EAAE,oBAAoB,CAAC,kBAAkB;IAC3D,qBAAqB,EAAE,oBAAoB,CAAC,qBAAqB;CAClE,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,SAAS,wBAAwB,CAAC,OAAwC;IACxE,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAA;IAC5E,CAAC;IAED,2EAA2E;IAC3E,IAAI,CAAC,OAAO,CAAC,iBAAiB,EAAE,CAAC;QAC/B,MAAM,OAAO,GAAG,KAAK,CAAC,iBAAiB,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAA;QACvE,OAAO,OAAO,CAAC,KAAK,EAAE,CAAA;IACxB,CAAC;IAED,IAAI,OAAO,GAAG,KAAK,CAAC,iBAAiB,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,CAAA;IAC1D,OAAO,GAAG,OAAO,CAAC,WAAW,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAA;IAExD,IAAI,OAAO,CAAC,QAAQ,KAAK,IAAI,EAAE,CAAC;QAC9B,OAAO,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAA;IAC9B,CAAC;IAED,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;QAClB,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YACjC,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,KAAK,KAAK,CAAA;YAC9C,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;YAE9C,2EAA2E;YAC3E,QAAQ,IAAI,CAAC,IAAI,EAAE,CAAC;gBAClB,KAAK,SAAS;oBACZ,OAAO,GAAG,OAAO,CAAC,gBAAgB,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,KAAgB,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC9F,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC7F,MAAK;gBACP,KAAK,MAAM;oBACT,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC3F,MAAK;gBACP,KAAK,OAAO;oBACV,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC5F,MAAK;gBACP,KAAK,OAAO;oBACV,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC5F,MAAK;gBACP,KAAK,OAAO;oBACV,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC5F,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC7F,MAAK;gBACP,KAAK,SAAS;oBACZ,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC9F,MAAK;gBACP,KAAK,OAAO;oBACV,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC5F,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC7F,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC7F,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC7F,MAAK;gBACP,KAAK,SAAS;oBACZ,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,SAAS,EAAE,YAAY,CAAC,CAAA;oBAC9F,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,KAAe,CAAC,CAAA;oBACnE,MAAK;gBACP,KAAK,MAAM;oBACT,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,KAAgB,EAAE,SAAS,CAAC,CAAA;oBAC7E,MAAK;gBACP,KAAK,OAAO;oBACV,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,KAAY,CAAC,CAAA;oBAC/D,MAAK;gBACP,KAAK,QAAQ;oBACX,OAAO,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,KAAY,CAAC,CAAA;oBAChE,MAAK;gBACP;oBACE,MAAM,IAAI,KAAK,CAAC,yDAAyD,IAAI,CAAC,IAAI,IAAI,CAAC,CAAA;YAC3F,CAAC;QACH,CAAC;IACH,CAAC;IAED,kDAAkD;IAClD,OAAO,OAAO,CAAC,KAAK,EAAE,CAAA;AACxB,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAyCG;AACH,SAAS,yBAAyB,CAAC,OAAyC;IAC1E,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;IAC7E,CAAC;IAED,MAAM,cAAc,GAAiB,EAAE,CAAA;IAEvC,2EAA2E;IAC3E,IAAI,CAAC,OAAO,CAAC,SAAS,IAAI,OAAO,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzD,MAAM,UAAU,GAAG,wBAAwB,CAAC;YAC1C,OAAO,EAAE,OAAO,CAAC,OAAO;SACzB,CAAC,CAAA;QACF,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;IACjC,CAAC;IAED,0EAA0E;IAC1E,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,SAAS,IAAI,EAAE,EAAE,CAAC;QAC3C,IAAI,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,kFAAkF,CAAC,CAAA;QACrG,CAAC;QAED,4DAA4D;QAC5D,MAAM,UAAU,GAAG,wBAAwB,CAAC;YAC1C,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;YACzC,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,QAAQ,EAAE,IAAI,CAAC,QAAQ;SACxB,CAAC,CAAA;QAEF,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;IACjC,CAAC;IAED,OAAO,cAAc,CAAA;AACvB,CAAC;AAED,OAAO,EAAE,wBAAwB,EAAE,yBAAyB,EAAE,CAAA"}

package/dist/esm/utils/session/createExplicitSessionParams.d.ts

@@ -0,0 +1,14 @@
+import { type ExplicitSessionConfig } from '@0xsequence/dapp-client';
+import type { ExplicitSessionParams } from './types.js';
+/**
+ * Assembles an Explicit Session Config object, to be used to create an explicit session.
+ *
+ * This helper function creates an explicit session between the dapp and the connected user wallet.
+ *
+ * It automatically includes a permission for the SEQUENCE_VALUE_FORWARDER contract to enable the dApp to pay gas fees using the user's native token.
+ *
+ * @param options The complete configuration for the session.
+ * @returns The final, ready-to-use object that can be used with Sequence V3 connectors.
+ */
+export declare function createExplicitSessionConfig(params: ExplicitSessionParams): ExplicitSessionConfig;
+//# sourceMappingURL=createExplicitSessionParams.d.ts.map

package/dist/esm/utils/session/createExplicitSessionParams.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"createExplicitSessionParams.d.ts","sourceRoot":"","sources":["../../../../src/utils/session/createExplicitSessionParams.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,qBAAqB,EAAE,MAAM,yBAAyB,CAAA;AAGpE,OAAO,KAAK,EAAE,qBAAqB,EAAc,MAAM,YAAY,CAAA;AAEnE;;;;;;;;;GASG;AACH,wBAAgB,2BAA2B,CAAC,MAAM,EAAE,qBAAqB,GAAG,qBAAqB,CA+BhG"}