@1sat/wallet 0.0.41 → 0.0.43
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/index.d.ts +2 -2
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +2 -2
- package/dist/index.js.map +1 -1
- package/dist/permissions/index.d.ts +2 -3
- package/dist/permissions/index.d.ts.map +1 -1
- package/dist/permissions/index.js +1 -1
- package/dist/permissions/index.js.map +1 -1
- package/dist/permissions/manager.d.ts +50 -0
- package/dist/permissions/manager.d.ts.map +1 -0
- package/dist/permissions/manager.js +136 -0
- package/dist/permissions/manager.js.map +1 -0
- package/dist/permissions/types.d.ts +2 -63
- package/dist/permissions/types.d.ts.map +1 -1
- package/package.json +1 -1
- package/dist/permissions/adapter.d.ts +0 -91
- package/dist/permissions/adapter.d.ts.map +0 -1
- package/dist/permissions/adapter.js +0 -317
- package/dist/permissions/adapter.js.map +0 -1
package/dist/index.d.ts
CHANGED
|
@@ -8,6 +8,6 @@ export { FileBackupProvider, FileRestoreReader, Zip, ZipDeflate, unzip, type Bac
|
|
|
8
8
|
export { ChromeCWI, CWIEventName, EventCWI, createChromeCWI, createCWI, createEventCWI, createSigmaCWI, createWebCWI, type CWIResponseDetail, type CWITransport, type SigmaCWIConfig, type SigmaCWIResult, type WebCWIConfig, type WebCWIResult, } from './cwi';
|
|
9
9
|
export { parsePrivateKey } from './parsePrivateKey';
|
|
10
10
|
export { createWalletCore, DEFAULT_FEE_MODEL, DEFAULT_CONNECTION_TIMEOUT, type Chain, type WalletCoreConfig, type WalletCoreResult, } from './factory';
|
|
11
|
-
export { filterGroupedByMissing, InMemoryPermissionStore, isExpired,
|
|
12
|
-
export type {
|
|
11
|
+
export { filterGroupedByMissing, InMemoryPermissionStore, isExpired, LocalWalletPermissionsManager, normalizeOriginator, permissionKeyFromRequest, permissionKeysFromGroup, permissionKeyToString, } from './permissions';
|
|
12
|
+
export type { IPermissionStore, ListGrantsFilter, LocalWalletPermissionsManagerOptions, PermissionKey, PermissionType, StoredGrant, } from './permissions';
|
|
13
13
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAC7C,YAAY,EACX,eAAe,EACf,cAAc,EACd,oBAAoB,EACpB,UAAU,EACV,aAAa,EACb,UAAU,GACV,MAAM,aAAa,CAAA;AAGpB,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAGzD,OAAO,EACN,YAAY,EACZ,UAAU,EACV,UAAU,EACV,WAAW,EACX,iBAAiB,EACjB,WAAW,EACX,WAAW,EACX,aAAa,EACb,SAAS,GACT,MAAM,cAAc,CAAA;AAGrB,OAAO,EACN,YAAY,EACZ,aAAa,EACb,iBAAiB,EACjB,WAAW,EACX,OAAO,EACP,kBAAkB,EAClB,WAAW,EACX,OAAO,EACP,UAAU,EACV,WAAW,EACX,cAAc,EACd,aAAa,EACb,QAAQ,EACR,YAAY,EACZ,YAAY,EACZ,KAAK,KAAK,EACV,KAAK,UAAU,EACf,KAAK,IAAI,EACT,KAAK,SAAS,EACd,KAAK,YAAY,EACjB,KAAK,WAAW,EAChB,KAAK,MAAM,EACX,KAAK,YAAY,EACjB,KAAK,WAAW,EAChB,KAAK,KAAK,EACV,KAAK,GAAG,GACR,MAAM,YAAY,CAAA;AAGnB,OAAO,EACN,cAAc,EACd,iBAAiB,EACjB,YAAY,EACZ,KAAK,iBAAiB,GACtB,MAAM,gBAAgB,CAAA;AAGvB,OAAO,EACN,kBAAkB,EAClB,iBAAiB,EACjB,GAAG,EACH,UAAU,EACV,KAAK,EACL,KAAK,cAAc,EACnB,KAAK,sBAAsB,EAC3B,KAAK,mBAAmB,EACxB,KAAK,QAAQ,GACb,MAAM,UAAU,CAAA;AAGjB,OAAO,EACN,SAAS,EACT,YAAY,EACZ,QAAQ,EACR,eAAe,EACf,SAAS,EACT,cAAc,EACd,cAAc,EACd,YAAY,EACZ,KAAK,iBAAiB,EACtB,KAAK,YAAY,EACjB,KAAK,cAAc,EACnB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,YAAY,GACjB,MAAM,OAAO,CAAA;AAMd,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAGnD,OAAO,EACN,gBAAgB,EAChB,iBAAiB,EACjB,0BAA0B,EAC1B,KAAK,KAAK,EACV,KAAK,gBAAgB,EACrB,KAAK,gBAAgB,GACrB,MAAM,WAAW,CAAA;AAGlB,OAAO,EACN,sBAAsB,EACtB,uBAAuB,EACvB,SAAS,EACT,mBAAmB,EACnB,
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAC7C,YAAY,EACX,eAAe,EACf,cAAc,EACd,oBAAoB,EACpB,UAAU,EACV,aAAa,EACb,UAAU,GACV,MAAM,aAAa,CAAA;AAGpB,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAGzD,OAAO,EACN,YAAY,EACZ,UAAU,EACV,UAAU,EACV,WAAW,EACX,iBAAiB,EACjB,WAAW,EACX,WAAW,EACX,aAAa,EACb,SAAS,GACT,MAAM,cAAc,CAAA;AAGrB,OAAO,EACN,YAAY,EACZ,aAAa,EACb,iBAAiB,EACjB,WAAW,EACX,OAAO,EACP,kBAAkB,EAClB,WAAW,EACX,OAAO,EACP,UAAU,EACV,WAAW,EACX,cAAc,EACd,aAAa,EACb,QAAQ,EACR,YAAY,EACZ,YAAY,EACZ,KAAK,KAAK,EACV,KAAK,UAAU,EACf,KAAK,IAAI,EACT,KAAK,SAAS,EACd,KAAK,YAAY,EACjB,KAAK,WAAW,EAChB,KAAK,MAAM,EACX,KAAK,YAAY,EACjB,KAAK,WAAW,EAChB,KAAK,KAAK,EACV,KAAK,GAAG,GACR,MAAM,YAAY,CAAA;AAGnB,OAAO,EACN,cAAc,EACd,iBAAiB,EACjB,YAAY,EACZ,KAAK,iBAAiB,GACtB,MAAM,gBAAgB,CAAA;AAGvB,OAAO,EACN,kBAAkB,EAClB,iBAAiB,EACjB,GAAG,EACH,UAAU,EACV,KAAK,EACL,KAAK,cAAc,EACnB,KAAK,sBAAsB,EAC3B,KAAK,mBAAmB,EACxB,KAAK,QAAQ,GACb,MAAM,UAAU,CAAA;AAGjB,OAAO,EACN,SAAS,EACT,YAAY,EACZ,QAAQ,EACR,eAAe,EACf,SAAS,EACT,cAAc,EACd,cAAc,EACd,YAAY,EACZ,KAAK,iBAAiB,EACtB,KAAK,YAAY,EACjB,KAAK,cAAc,EACnB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,YAAY,GACjB,MAAM,OAAO,CAAA;AAMd,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAGnD,OAAO,EACN,gBAAgB,EAChB,iBAAiB,EACjB,0BAA0B,EAC1B,KAAK,KAAK,EACV,KAAK,gBAAgB,EACrB,KAAK,gBAAgB,GACrB,MAAM,WAAW,CAAA;AAGlB,OAAO,EACN,sBAAsB,EACtB,uBAAuB,EACvB,SAAS,EACT,6BAA6B,EAC7B,mBAAmB,EACnB,wBAAwB,EACxB,uBAAuB,EACvB,qBAAqB,GACrB,MAAM,eAAe,CAAA;AACtB,YAAY,EACX,gBAAgB,EAChB,gBAAgB,EAChB,oCAAoC,EACpC,aAAa,EACb,cAAc,EACd,WAAW,GACX,MAAM,eAAe,CAAA"}
|
package/dist/index.js
CHANGED
|
@@ -18,6 +18,6 @@ export { ChromeCWI, CWIEventName, EventCWI, createChromeCWI, createCWI, createEv
|
|
|
18
18
|
export { parsePrivateKey } from './parsePrivateKey';
|
|
19
19
|
// Factory core
|
|
20
20
|
export { createWalletCore, DEFAULT_FEE_MODEL, DEFAULT_CONNECTION_TIMEOUT, } from './factory';
|
|
21
|
-
// Permissions
|
|
22
|
-
export { filterGroupedByMissing, InMemoryPermissionStore, isExpired,
|
|
21
|
+
// Permissions — local-storage-backed WalletPermissionsManager
|
|
22
|
+
export { filterGroupedByMissing, InMemoryPermissionStore, isExpired, LocalWalletPermissionsManager, normalizeOriginator, permissionKeyFromRequest, permissionKeysFromGroup, permissionKeyToString, } from './permissions';
|
|
23
23
|
//# sourceMappingURL=index.js.map
|
package/dist/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,WAAW;AACX,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAU7C,UAAU;AACV,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAEzD,cAAc;AACd,OAAO,EACN,YAAY,EACZ,UAAU,EACV,UAAU,EACV,WAAW,EACX,iBAAiB,EACjB,WAAW,EACX,WAAW,EACX,aAAa,EACb,SAAS,GACT,MAAM,cAAc,CAAA;AAErB,WAAW;AACX,OAAO,EACN,YAAY,EACZ,aAAa,EACb,iBAAiB,EACjB,WAAW,EACX,OAAO,EACP,kBAAkB,EAClB,WAAW,EACX,OAAO,EACP,UAAU,EACV,WAAW,EACX,cAAc,EACd,aAAa,EACb,QAAQ,EACR,YAAY,EACZ,YAAY,GAYZ,MAAM,YAAY,CAAA;AAEnB,eAAe;AACf,OAAO,EACN,cAAc,EACd,iBAAiB,EACjB,YAAY,GAEZ,MAAM,gBAAgB,CAAA;AAEvB,SAAS;AACT,OAAO,EACN,kBAAkB,EAClB,iBAAiB,EACjB,GAAG,EACH,UAAU,EACV,KAAK,GAKL,MAAM,UAAU,CAAA;AAEjB,+BAA+B;AAC/B,OAAO,EACN,SAAS,EACT,YAAY,EACZ,QAAQ,EACR,eAAe,EACf,SAAS,EACT,cAAc,EACd,cAAc,EACd,YAAY,GAOZ,MAAM,OAAO,CAAA;AAEd,8EAA8E;AAC9E,sDAAsD;AAEtD,oBAAoB;AACpB,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAEnD,eAAe;AACf,OAAO,EACN,gBAAgB,EAChB,iBAAiB,EACjB,0BAA0B,GAI1B,MAAM,WAAW,CAAA;AAElB,
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,WAAW;AACX,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAU7C,UAAU;AACV,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAEzD,cAAc;AACd,OAAO,EACN,YAAY,EACZ,UAAU,EACV,UAAU,EACV,WAAW,EACX,iBAAiB,EACjB,WAAW,EACX,WAAW,EACX,aAAa,EACb,SAAS,GACT,MAAM,cAAc,CAAA;AAErB,WAAW;AACX,OAAO,EACN,YAAY,EACZ,aAAa,EACb,iBAAiB,EACjB,WAAW,EACX,OAAO,EACP,kBAAkB,EAClB,WAAW,EACX,OAAO,EACP,UAAU,EACV,WAAW,EACX,cAAc,EACd,aAAa,EACb,QAAQ,EACR,YAAY,EACZ,YAAY,GAYZ,MAAM,YAAY,CAAA;AAEnB,eAAe;AACf,OAAO,EACN,cAAc,EACd,iBAAiB,EACjB,YAAY,GAEZ,MAAM,gBAAgB,CAAA;AAEvB,SAAS;AACT,OAAO,EACN,kBAAkB,EAClB,iBAAiB,EACjB,GAAG,EACH,UAAU,EACV,KAAK,GAKL,MAAM,UAAU,CAAA;AAEjB,+BAA+B;AAC/B,OAAO,EACN,SAAS,EACT,YAAY,EACZ,QAAQ,EACR,eAAe,EACf,SAAS,EACT,cAAc,EACd,cAAc,EACd,YAAY,GAOZ,MAAM,OAAO,CAAA;AAEd,8EAA8E;AAC9E,sDAAsD;AAEtD,oBAAoB;AACpB,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAEnD,eAAe;AACf,OAAO,EACN,gBAAgB,EAChB,iBAAiB,EACjB,0BAA0B,GAI1B,MAAM,WAAW,CAAA;AAElB,8DAA8D;AAC9D,OAAO,EACN,sBAAsB,EACtB,uBAAuB,EACvB,SAAS,EACT,6BAA6B,EAC7B,mBAAmB,EACnB,wBAAwB,EACxB,uBAAuB,EACvB,qBAAqB,GACrB,MAAM,eAAe,CAAA"}
|
|
@@ -1,6 +1,5 @@
|
|
|
1
|
-
export { PermissionLedgerAdapter } from './adapter';
|
|
2
|
-
export type { PermissionLedgerAdapterOptions } from './adapter';
|
|
3
1
|
export { InMemoryPermissionStore } from './in-memory-store';
|
|
4
2
|
export { filterGroupedByMissing, isExpired, normalizeOriginator, permissionKeyFromRequest, permissionKeysFromGroup, permissionKeyToString, } from './key';
|
|
5
|
-
export
|
|
3
|
+
export { LocalWalletPermissionsManager, type LocalWalletPermissionsManagerOptions, } from './manager';
|
|
4
|
+
export type { IPermissionStore, ListGrantsFilter, PermissionKey, PermissionType, StoredGrant, } from './types';
|
|
6
5
|
//# sourceMappingURL=index.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/permissions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,MAAM,
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/permissions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,MAAM,mBAAmB,CAAA;AAC3D,OAAO,EACN,sBAAsB,EACtB,SAAS,EACT,mBAAmB,EACnB,wBAAwB,EACxB,uBAAuB,EACvB,qBAAqB,GACrB,MAAM,OAAO,CAAA;AACd,OAAO,EACN,6BAA6B,EAC7B,KAAK,oCAAoC,GACzC,MAAM,WAAW,CAAA;AAClB,YAAY,EACX,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,cAAc,EACd,WAAW,GACX,MAAM,SAAS,CAAA"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
export { PermissionLedgerAdapter } from './adapter';
|
|
2
1
|
export { InMemoryPermissionStore } from './in-memory-store';
|
|
3
2
|
export { filterGroupedByMissing, isExpired, normalizeOriginator, permissionKeyFromRequest, permissionKeysFromGroup, permissionKeyToString, } from './key';
|
|
3
|
+
export { LocalWalletPermissionsManager, } from './manager';
|
|
4
4
|
//# sourceMappingURL=index.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/permissions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,MAAM,
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/permissions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,MAAM,mBAAmB,CAAA;AAC3D,OAAO,EACN,sBAAsB,EACtB,SAAS,EACT,mBAAmB,EACnB,wBAAwB,EACxB,uBAAuB,EACvB,qBAAqB,GACrB,MAAM,OAAO,CAAA;AACd,OAAO,EACN,6BAA6B,GAE7B,MAAM,WAAW,CAAA"}
|
|
@@ -0,0 +1,50 @@
|
|
|
1
|
+
import type { WalletInterface } from '@bsv/sdk';
|
|
2
|
+
import { type CounterpartyPermissionEventHandler, type GroupedPermissionEventHandler, type PermissionEventHandler, type PermissionsManagerConfig, WalletPermissionsManager, type WalletPermissionsManagerCallbacks } from '@bsv/wallet-toolbox/out/src/index.client.js';
|
|
3
|
+
import type { IPermissionStore } from './types';
|
|
4
|
+
export interface LocalWalletPermissionsManagerOptions {
|
|
5
|
+
/** Store grants are persisted into and read from. */
|
|
6
|
+
store: IPermissionStore;
|
|
7
|
+
}
|
|
8
|
+
type AnyPermissionEventHandler = PermissionEventHandler | GroupedPermissionEventHandler | CounterpartyPermissionEventHandler;
|
|
9
|
+
/**
|
|
10
|
+
* `WalletPermissionsManager` variant that persists grants to an injected
|
|
11
|
+
* `IPermissionStore` instead of minting on-chain PushDrop tokens.
|
|
12
|
+
*
|
|
13
|
+
* Interface-compatible with `WalletPermissionsManager` — swap the class name
|
|
14
|
+
* and keep every other call the same (`bindCallback`, `grantPermission`,
|
|
15
|
+
* `denyPermission`, etc.).
|
|
16
|
+
*
|
|
17
|
+
* Behavior:
|
|
18
|
+
* - Store-hit short-circuits the prompt callback: `grantPermission` is
|
|
19
|
+
* invoked silently with `ephemeral: true` and the user's handler never
|
|
20
|
+
* runs.
|
|
21
|
+
* - Store-miss falls through to the user's handler as normal. When the
|
|
22
|
+
* handler calls `grantPermission(...)` on approve, the grant is written
|
|
23
|
+
* to the store and forwarded to the base class with `ephemeral: true`
|
|
24
|
+
* so nothing is minted on chain.
|
|
25
|
+
* - Counterparty pact grants pass through unchanged — those still go
|
|
26
|
+
* on-chain by design.
|
|
27
|
+
*/
|
|
28
|
+
export declare class LocalWalletPermissionsManager extends WalletPermissionsManager {
|
|
29
|
+
private readonly permissionStore;
|
|
30
|
+
private readonly pendingSingle;
|
|
31
|
+
private readonly pendingGrouped;
|
|
32
|
+
constructor(underlyingWallet: WalletInterface, adminOriginator: string, config: PermissionsManagerConfig | undefined, options: LocalWalletPermissionsManagerOptions);
|
|
33
|
+
bindCallback(eventName: keyof WalletPermissionsManagerCallbacks, handler: AnyPermissionEventHandler): number;
|
|
34
|
+
grantPermission(params: {
|
|
35
|
+
requestID: string;
|
|
36
|
+
expiry?: number;
|
|
37
|
+
ephemeral?: boolean;
|
|
38
|
+
}): Promise<void>;
|
|
39
|
+
denyPermission(requestID: string): Promise<void>;
|
|
40
|
+
grantGroupedPermission(params: {
|
|
41
|
+
requestID: string;
|
|
42
|
+
granted: Partial<import('@bsv/wallet-toolbox/out/src/index.client.js').GroupedPermissions>;
|
|
43
|
+
expiry?: number;
|
|
44
|
+
}): Promise<void>;
|
|
45
|
+
denyGroupedPermission(requestID: string): Promise<void>;
|
|
46
|
+
dismissGroupedPermission(requestID: string): Promise<void>;
|
|
47
|
+
revokeAllForOriginator(originator: string): Promise<import('@bsv/wallet-toolbox/out/src/index.client.js').PermissionToken[]>;
|
|
48
|
+
}
|
|
49
|
+
export {};
|
|
50
|
+
//# sourceMappingURL=manager.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"manager.d.ts","sourceRoot":"","sources":["../../src/permissions/manager.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,UAAU,CAAA;AAC/C,OAAO,EACN,KAAK,kCAAkC,EACvC,KAAK,6BAA6B,EAElC,KAAK,sBAAsB,EAE3B,KAAK,wBAAwB,EAC7B,wBAAwB,EACxB,KAAK,iCAAiC,EACtC,MAAM,6CAA6C,CAAA;AAOpD,OAAO,KAAK,EAAE,gBAAgB,EAAe,MAAM,SAAS,CAAA;AAE5D,MAAM,WAAW,oCAAoC;IACpD,qDAAqD;IACrD,KAAK,EAAE,gBAAgB,CAAA;CACvB;AAED,KAAK,yBAAyB,GAC3B,sBAAsB,GACtB,6BAA6B,GAC7B,kCAAkC,CAAA;AAErC;;;;;;;;;;;;;;;;;;GAkBG;AACH,qBAAa,6BAA8B,SAAQ,wBAAwB;IAC1E,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAkB;IAClD,OAAO,CAAC,QAAQ,CAAC,aAAa,CAG3B;IACH,OAAO,CAAC,QAAQ,CAAC,cAAc,CAA8C;gBAG5E,gBAAgB,EAAE,eAAe,EACjC,eAAe,EAAE,MAAM,EACvB,MAAM,EAAE,wBAAwB,YAAK,EACrC,OAAO,EAAE,oCAAoC;IAU9B,YAAY,CAC3B,SAAS,EAAE,MAAM,iCAAiC,EAClD,OAAO,EAAE,yBAAyB,GAChC,MAAM;IAoDa,eAAe,CAAC,MAAM,EAAE;QAC7C,SAAS,EAAE,MAAM,CAAA;QACjB,MAAM,CAAC,EAAE,MAAM,CAAA;QACf,SAAS,CAAC,EAAE,OAAO,CAAA;KACnB,GAAG,OAAO,CAAC,IAAI,CAAC;IAsBK,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAKhD,sBAAsB,CAAC,MAAM,EAAE;QACpD,SAAS,EAAE,MAAM,CAAA;QACjB,OAAO,EAAE,OAAO,CAAC,OAAO,6CAA6C,EAAE,kBAAkB,CAAC,CAAA;QAC1F,MAAM,CAAC,EAAE,MAAM,CAAA;KACf,GAAG,OAAO,CAAC,IAAI,CAAC;IAuBK,qBAAqB,CAC1C,SAAS,EAAE,MAAM,GACf,OAAO,CAAC,IAAI,CAAC;IAKM,wBAAwB,CAC7C,SAAS,EAAE,MAAM,GACf,OAAO,CAAC,IAAI,CAAC;IASM,sBAAsB,CAC3C,UAAU,EAAE,MAAM,GAChB,OAAO,CAAC,OAAO,6CAA6C,EAAE,eAAe,EAAE,CAAC;CAKnF"}
|
|
@@ -0,0 +1,136 @@
|
|
|
1
|
+
import { WalletPermissionsManager, } from '@bsv/wallet-toolbox/out/src/index.client.js';
|
|
2
|
+
import { isExpired, normalizeOriginator, permissionKeyFromRequest, permissionKeysFromGroup, } from './key';
|
|
3
|
+
/**
|
|
4
|
+
* `WalletPermissionsManager` variant that persists grants to an injected
|
|
5
|
+
* `IPermissionStore` instead of minting on-chain PushDrop tokens.
|
|
6
|
+
*
|
|
7
|
+
* Interface-compatible with `WalletPermissionsManager` — swap the class name
|
|
8
|
+
* and keep every other call the same (`bindCallback`, `grantPermission`,
|
|
9
|
+
* `denyPermission`, etc.).
|
|
10
|
+
*
|
|
11
|
+
* Behavior:
|
|
12
|
+
* - Store-hit short-circuits the prompt callback: `grantPermission` is
|
|
13
|
+
* invoked silently with `ephemeral: true` and the user's handler never
|
|
14
|
+
* runs.
|
|
15
|
+
* - Store-miss falls through to the user's handler as normal. When the
|
|
16
|
+
* handler calls `grantPermission(...)` on approve, the grant is written
|
|
17
|
+
* to the store and forwarded to the base class with `ephemeral: true`
|
|
18
|
+
* so nothing is minted on chain.
|
|
19
|
+
* - Counterparty pact grants pass through unchanged — those still go
|
|
20
|
+
* on-chain by design.
|
|
21
|
+
*/
|
|
22
|
+
export class LocalWalletPermissionsManager extends WalletPermissionsManager {
|
|
23
|
+
permissionStore;
|
|
24
|
+
pendingSingle = new Map();
|
|
25
|
+
pendingGrouped = new Map();
|
|
26
|
+
constructor(underlyingWallet, adminOriginator, config = {}, options) {
|
|
27
|
+
super(underlyingWallet, adminOriginator, config);
|
|
28
|
+
this.permissionStore = options.store;
|
|
29
|
+
}
|
|
30
|
+
// -----------------------------------------------------------------
|
|
31
|
+
// Callback binding — wrap user handlers with a store-first check
|
|
32
|
+
// -----------------------------------------------------------------
|
|
33
|
+
bindCallback(eventName, handler) {
|
|
34
|
+
if (eventName === 'onCounterpartyPermissionRequested') {
|
|
35
|
+
return super.bindCallback(eventName, handler);
|
|
36
|
+
}
|
|
37
|
+
if (eventName === 'onGroupedPermissionRequested') {
|
|
38
|
+
const userHandler = handler;
|
|
39
|
+
const wrapped = async (request) => {
|
|
40
|
+
this.pendingGrouped.set(request.requestID, request);
|
|
41
|
+
const keys = permissionKeysFromGroup(request.originator, request.permissions);
|
|
42
|
+
if (keys.length > 0) {
|
|
43
|
+
const grants = await Promise.all(keys.map((k) => this.permissionStore.findGrant(k)));
|
|
44
|
+
const allHit = grants.length === keys.length &&
|
|
45
|
+
grants.every((g) => g != null && !isExpired(g.expiry));
|
|
46
|
+
if (allHit) {
|
|
47
|
+
await super.dismissGroupedPermission(request.requestID);
|
|
48
|
+
this.pendingGrouped.delete(request.requestID);
|
|
49
|
+
return;
|
|
50
|
+
}
|
|
51
|
+
}
|
|
52
|
+
return userHandler(request);
|
|
53
|
+
};
|
|
54
|
+
return super.bindCallback(eventName, wrapped);
|
|
55
|
+
}
|
|
56
|
+
const userHandler = handler;
|
|
57
|
+
const wrapped = async (request) => {
|
|
58
|
+
this.pendingSingle.set(request.requestID, request);
|
|
59
|
+
const key = permissionKeyFromRequest(request);
|
|
60
|
+
const existing = await this.permissionStore.findGrant(key);
|
|
61
|
+
if (existing && !isExpired(existing.expiry)) {
|
|
62
|
+
await super.grantPermission({
|
|
63
|
+
requestID: request.requestID,
|
|
64
|
+
ephemeral: true,
|
|
65
|
+
});
|
|
66
|
+
this.pendingSingle.delete(request.requestID);
|
|
67
|
+
return;
|
|
68
|
+
}
|
|
69
|
+
return userHandler(request);
|
|
70
|
+
};
|
|
71
|
+
return super.bindCallback(eventName, wrapped);
|
|
72
|
+
}
|
|
73
|
+
// -----------------------------------------------------------------
|
|
74
|
+
// Grant / deny overrides — write store + force ephemeral
|
|
75
|
+
// -----------------------------------------------------------------
|
|
76
|
+
async grantPermission(params) {
|
|
77
|
+
const request = this.pendingSingle.get(params.requestID);
|
|
78
|
+
if (request) {
|
|
79
|
+
const key = permissionKeyFromRequest(request);
|
|
80
|
+
const grant = {
|
|
81
|
+
key,
|
|
82
|
+
expiry: params.expiry ?? 0,
|
|
83
|
+
grantedAt: Date.now(),
|
|
84
|
+
reason: request.reason,
|
|
85
|
+
};
|
|
86
|
+
if (request.type === 'spending' &&
|
|
87
|
+
request.spending?.satoshis != null) {
|
|
88
|
+
grant.authorizedAmount = request.spending.satoshis;
|
|
89
|
+
}
|
|
90
|
+
await this.permissionStore.putGrant(grant);
|
|
91
|
+
this.pendingSingle.delete(params.requestID);
|
|
92
|
+
}
|
|
93
|
+
return super.grantPermission({ ...params, ephemeral: true });
|
|
94
|
+
}
|
|
95
|
+
async denyPermission(requestID) {
|
|
96
|
+
this.pendingSingle.delete(requestID);
|
|
97
|
+
return super.denyPermission(requestID);
|
|
98
|
+
}
|
|
99
|
+
async grantGroupedPermission(params) {
|
|
100
|
+
const request = this.pendingGrouped.get(params.requestID);
|
|
101
|
+
if (request) {
|
|
102
|
+
const normalized = normalizeOriginator(request.originator);
|
|
103
|
+
const grantedKeys = permissionKeysFromGroup(normalized, params.granted);
|
|
104
|
+
const now = Date.now();
|
|
105
|
+
const expiry = params.expiry ?? 0;
|
|
106
|
+
for (const key of grantedKeys) {
|
|
107
|
+
const grant = { key, expiry, grantedAt: now };
|
|
108
|
+
if (key.type === 'spending' &&
|
|
109
|
+
params.granted.spendingAuthorization) {
|
|
110
|
+
grant.authorizedAmount = params.granted.spendingAuthorization.amount;
|
|
111
|
+
grant.reason = params.granted.spendingAuthorization.description;
|
|
112
|
+
}
|
|
113
|
+
await this.permissionStore.putGrant(grant);
|
|
114
|
+
}
|
|
115
|
+
this.pendingGrouped.delete(params.requestID);
|
|
116
|
+
}
|
|
117
|
+
return super.grantGroupedPermission(params);
|
|
118
|
+
}
|
|
119
|
+
async denyGroupedPermission(requestID) {
|
|
120
|
+
this.pendingGrouped.delete(requestID);
|
|
121
|
+
return super.denyGroupedPermission(requestID);
|
|
122
|
+
}
|
|
123
|
+
async dismissGroupedPermission(requestID) {
|
|
124
|
+
this.pendingGrouped.delete(requestID);
|
|
125
|
+
return super.dismissGroupedPermission(requestID);
|
|
126
|
+
}
|
|
127
|
+
// -----------------------------------------------------------------
|
|
128
|
+
// Revocation — remove from store in addition to on-chain
|
|
129
|
+
// -----------------------------------------------------------------
|
|
130
|
+
async revokeAllForOriginator(originator) {
|
|
131
|
+
const normalized = normalizeOriginator(originator);
|
|
132
|
+
await this.permissionStore.deleteAllForOriginator(normalized);
|
|
133
|
+
return super.revokeAllForOriginator(normalized);
|
|
134
|
+
}
|
|
135
|
+
}
|
|
136
|
+
//# sourceMappingURL=manager.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"manager.js","sourceRoot":"","sources":["../../src/permissions/manager.ts"],"names":[],"mappings":"AACA,OAAO,EAON,wBAAwB,GAExB,MAAM,6CAA6C,CAAA;AACpD,OAAO,EACN,SAAS,EACT,mBAAmB,EACnB,wBAAwB,EACxB,uBAAuB,GACvB,MAAM,OAAO,CAAA;AAad;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,OAAO,6BAA8B,SAAQ,wBAAwB;IACzD,eAAe,CAAkB;IACjC,aAAa,GAAG,IAAI,GAAG,EAGrC,CAAA;IACc,cAAc,GAAG,IAAI,GAAG,EAAoC,CAAA;IAE7E,YACC,gBAAiC,EACjC,eAAuB,EACvB,SAAmC,EAAE,EACrC,OAA6C;QAE7C,KAAK,CAAC,gBAAgB,EAAE,eAAe,EAAE,MAAM,CAAC,CAAA;QAChD,IAAI,CAAC,eAAe,GAAG,OAAO,CAAC,KAAK,CAAA;IACrC,CAAC;IAED,oEAAoE;IACpE,iEAAiE;IACjE,oEAAoE;IAEpD,YAAY,CAC3B,SAAkD,EAClD,OAAkC;QAElC,IAAI,SAAS,KAAK,mCAAmC,EAAE,CAAC;YACvD,OAAO,KAAK,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;QAC9C,CAAC;QACD,IAAI,SAAS,KAAK,8BAA8B,EAAE,CAAC;YAClD,MAAM,WAAW,GAAG,OAAwC,CAAA;YAC5D,MAAM,OAAO,GAAkC,KAAK,EAAE,OAAO,EAAE,EAAE;gBAChE,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;gBACnD,MAAM,IAAI,GAAG,uBAAuB,CACnC,OAAO,CAAC,UAAU,EAClB,OAAO,CAAC,WAAW,CACnB,CAAA;gBACD,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACrB,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAC/B,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAClD,CAAA;oBACD,MAAM,MAAM,GACX,MAAM,CAAC,MAAM,KAAK,IAAI,CAAC,MAAM;wBAC7B,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAA;oBACvD,IAAI,MAAM,EAAE,CAAC;wBACZ,MAAM,KAAK,CAAC,wBAAwB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;wBACvD,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;wBAC7C,OAAM;oBACP,CAAC;gBACF,CAAC;gBACD,OAAO,WAAW,CAAC,OAAO,CAAC,CAAA;YAC5B,CAAC,CAAA;YACD,OAAO,KAAK,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;QAC9C,CAAC;QAED,MAAM,WAAW,GAAG,OAAiC,CAAA;QACrD,MAAM,OAAO,GAA2B,KAAK,EAAE,OAAO,EAAE,EAAE;YACzD,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;YAClD,MAAM,GAAG,GAAG,wBAAwB,CAAC,OAAO,CAAC,CAAA;YAC7C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;YAC1D,IAAI,QAAQ,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC7C,MAAM,KAAK,CAAC,eAAe,CAAC;oBAC3B,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,SAAS,EAAE,IAAI;iBACf,CAAC,CAAA;gBACF,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;gBAC5C,OAAM;YACP,CAAC;YACD,OAAO,WAAW,CAAC,OAAO,CAAC,CAAA;QAC5B,CAAC,CAAA;QACD,OAAO,KAAK,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;IAC9C,CAAC;IAED,oEAAoE;IACpE,yDAAyD;IACzD,oEAAoE;IAEpD,KAAK,CAAC,eAAe,CAAC,MAIrC;QACA,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QACxD,IAAI,OAAO,EAAE,CAAC;YACb,MAAM,GAAG,GAAG,wBAAwB,CAAC,OAAO,CAAC,CAAA;YAC7C,MAAM,KAAK,GAAgB;gBAC1B,GAAG;gBACH,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,CAAC;gBAC1B,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;gBACrB,MAAM,EAAE,OAAO,CAAC,MAAM;aACtB,CAAA;YACD,IACC,OAAO,CAAC,IAAI,KAAK,UAAU;gBAC3B,OAAO,CAAC,QAAQ,EAAE,QAAQ,IAAI,IAAI,EACjC,CAAC;gBACF,KAAK,CAAC,gBAAgB,GAAG,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAA;YACnD,CAAC;YACD,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;YAC1C,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAC5C,CAAC;QACD,OAAO,KAAK,CAAC,eAAe,CAAC,EAAE,GAAG,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAA;IAC7D,CAAC;IAEe,KAAK,CAAC,cAAc,CAAC,SAAiB;QACrD,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QACpC,OAAO,KAAK,CAAC,cAAc,CAAC,SAAS,CAAC,CAAA;IACvC,CAAC;IAEe,KAAK,CAAC,sBAAsB,CAAC,MAI5C;QACA,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QACzD,IAAI,OAAO,EAAE,CAAC;YACb,MAAM,UAAU,GAAG,mBAAmB,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;YAC1D,MAAM,WAAW,GAAG,uBAAuB,CAAC,UAAU,EAAE,MAAM,CAAC,OAAO,CAAC,CAAA;YACvE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;YACtB,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,CAAC,CAAA;YACjC,KAAK,MAAM,GAAG,IAAI,WAAW,EAAE,CAAC;gBAC/B,MAAM,KAAK,GAAgB,EAAE,GAAG,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,CAAA;gBAC1D,IACC,GAAG,CAAC,IAAI,KAAK,UAAU;oBACvB,MAAM,CAAC,OAAO,CAAC,qBAAqB,EACnC,CAAC;oBACF,KAAK,CAAC,gBAAgB,GAAG,MAAM,CAAC,OAAO,CAAC,qBAAqB,CAAC,MAAM,CAAA;oBACpE,KAAK,CAAC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAA;gBAChE,CAAC;gBACD,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;YAC3C,CAAC;YACD,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAC7C,CAAC;QACD,OAAO,KAAK,CAAC,sBAAsB,CAAC,MAAM,CAAC,CAAA;IAC5C,CAAC;IAEe,KAAK,CAAC,qBAAqB,CAC1C,SAAiB;QAEjB,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QACrC,OAAO,KAAK,CAAC,qBAAqB,CAAC,SAAS,CAAC,CAAA;IAC9C,CAAC;IAEe,KAAK,CAAC,wBAAwB,CAC7C,SAAiB;QAEjB,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QACrC,OAAO,KAAK,CAAC,wBAAwB,CAAC,SAAS,CAAC,CAAA;IACjD,CAAC;IAED,oEAAoE;IACpE,yDAAyD;IACzD,oEAAoE;IAEpD,KAAK,CAAC,sBAAsB,CAC3C,UAAkB;QAElB,MAAM,UAAU,GAAG,mBAAmB,CAAC,UAAU,CAAC,CAAA;QAClD,MAAM,IAAI,CAAC,eAAe,CAAC,sBAAsB,CAAC,UAAU,CAAC,CAAA;QAC7D,OAAO,KAAK,CAAC,sBAAsB,CAAC,UAAU,CAAC,CAAA;IAChD,CAAC;CACD"}
|
|
@@ -1,4 +1,3 @@
|
|
|
1
|
-
import type { CounterpartyPermissionRequest, GroupedPermissionRequest, GroupedPermissions, PermissionRequest, PermissionToken } from '@bsv/wallet-toolbox';
|
|
2
1
|
/** The four BRC-100 permission categories. */
|
|
3
2
|
export type PermissionType = 'protocol' | 'basket' | 'certificate' | 'spending';
|
|
4
3
|
/** A normalized permission key, uniquely identifying a (originator, category, parameters) tuple. */
|
|
@@ -29,9 +28,7 @@ export type PermissionKey = {
|
|
|
29
28
|
*
|
|
30
29
|
* For spending (DSAP) grants, the ledger only stores the user-authorized cap
|
|
31
30
|
* (`authorizedAmount`). Actual monthly spend is read from the wallet's
|
|
32
|
-
* action history on every cap check via `WalletPermissionsManager.querySpentSince
|
|
33
|
-
* — the same mechanism WPM uses natively, so spent accounting remains exact
|
|
34
|
-
* and cross-device consistent.
|
|
31
|
+
* action history on every cap check via `WalletPermissionsManager.querySpentSince`.
|
|
35
32
|
*/
|
|
36
33
|
export interface StoredGrant {
|
|
37
34
|
key: PermissionKey;
|
|
@@ -50,7 +47,7 @@ export interface ListGrantsFilter {
|
|
|
50
47
|
type?: PermissionType;
|
|
51
48
|
}
|
|
52
49
|
/**
|
|
53
|
-
* Storage backend for permission grants
|
|
50
|
+
* Storage backend for permission grants used by `LocalWalletPermissionsManager`.
|
|
54
51
|
*
|
|
55
52
|
* Implementations should be keyed by the canonical string form of the
|
|
56
53
|
* `PermissionKey` (use `permissionKeyToString` from `./key`).
|
|
@@ -65,62 +62,4 @@ export interface IPermissionStore {
|
|
|
65
62
|
deleteAllForOriginator(originator: string): Promise<number>;
|
|
66
63
|
listGrants(filter?: ListGrantsFilter): Promise<StoredGrant[]>;
|
|
67
64
|
}
|
|
68
|
-
/** User decision returned from a single-permission prompt. */
|
|
69
|
-
export type PermissionPromptDecision = {
|
|
70
|
-
approved: true;
|
|
71
|
-
/** Optional override for the grant expiry in UNIX seconds. */
|
|
72
|
-
expiry?: number;
|
|
73
|
-
/** DSAP only — override the authorized amount (e.g. user chose a larger cap). */
|
|
74
|
-
authorizedAmount?: number;
|
|
75
|
-
} | {
|
|
76
|
-
approved: false;
|
|
77
|
-
};
|
|
78
|
-
/** User decision returned from a BRC-73 grouped-permission prompt. */
|
|
79
|
-
export type GroupedPermissionPromptDecision = {
|
|
80
|
-
approved: true;
|
|
81
|
-
/** Subset of the requested permissions that the user agreed to. */
|
|
82
|
-
granted: Partial<GroupedPermissions>;
|
|
83
|
-
expiry?: number;
|
|
84
|
-
} | {
|
|
85
|
-
approved: false;
|
|
86
|
-
};
|
|
87
|
-
/** User decision returned from a level-2 counterparty pact prompt. */
|
|
88
|
-
export type CounterpartyPermissionPromptDecision = {
|
|
89
|
-
approved: true;
|
|
90
|
-
granted: CounterpartyPermissionRequest['permissions'];
|
|
91
|
-
expiry?: number;
|
|
92
|
-
} | {
|
|
93
|
-
approved: false;
|
|
94
|
-
};
|
|
95
|
-
/**
|
|
96
|
-
* Prompt callbacks supplied by the consumer (the host app).
|
|
97
|
-
*
|
|
98
|
-
* The adapter calls these when a grant is needed after the store lookup
|
|
99
|
-
* comes back empty. Counterparty prompts are optional — if omitted, the
|
|
100
|
-
* adapter auto-denies counterparty requests so the dApp call fails cleanly
|
|
101
|
-
* instead of hanging forever.
|
|
102
|
-
*/
|
|
103
|
-
export interface PermissionPromptHandler {
|
|
104
|
-
onPermissionRequested(request: PermissionRequest & {
|
|
105
|
-
requestID: string;
|
|
106
|
-
}): Promise<PermissionPromptDecision>;
|
|
107
|
-
onGroupedPermissionRequested(request: GroupedPermissionRequest): Promise<GroupedPermissionPromptDecision>;
|
|
108
|
-
onCounterpartyPermissionRequested?(request: CounterpartyPermissionRequest): Promise<CounterpartyPermissionPromptDecision>;
|
|
109
|
-
}
|
|
110
|
-
/** The source a permission record was loaded from when listing all permissions. */
|
|
111
|
-
export type PermissionRecordSource = 'ledger' | 'onchain';
|
|
112
|
-
/**
|
|
113
|
-
* Unified record returned by the adapter's `listAllPermissions` helper.
|
|
114
|
-
*
|
|
115
|
-
* `source: 'ledger'` records are local `StoredGrant`s; `source: 'onchain'`
|
|
116
|
-
* records are WPM `PermissionToken` shapes surfaced for level-2 counterparty
|
|
117
|
-
* pacts (and any pre-migration on-chain tokens that still exist).
|
|
118
|
-
*/
|
|
119
|
-
export type PermissionRecord = ({
|
|
120
|
-
source: 'ledger';
|
|
121
|
-
} & StoredGrant) | {
|
|
122
|
-
source: 'onchain';
|
|
123
|
-
type: PermissionType;
|
|
124
|
-
token: PermissionToken;
|
|
125
|
-
};
|
|
126
65
|
//# sourceMappingURL=types.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/permissions/types.ts"],"names":[],"mappings":"AAAA,
|
|
1
|
+
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/permissions/types.ts"],"names":[],"mappings":"AAAA,8CAA8C;AAC9C,MAAM,MAAM,cAAc,GAAG,UAAU,GAAG,QAAQ,GAAG,aAAa,GAAG,UAAU,CAAA;AAE/E,oGAAoG;AACpG,MAAM,MAAM,aAAa,GACtB;IACA,IAAI,EAAE,UAAU,CAAA;IAChB,UAAU,EAAE,MAAM,CAAA;IAClB,UAAU,EAAE,OAAO,CAAA;IACnB,aAAa,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;IACxB,YAAY,EAAE,MAAM,CAAA;IACpB,YAAY,EAAE,MAAM,CAAA;CACnB,GACD;IACA,IAAI,EAAE,QAAQ,CAAA;IACd,UAAU,EAAE,MAAM,CAAA;IAClB,MAAM,EAAE,MAAM,CAAA;CACb,GACD;IACA,IAAI,EAAE,aAAa,CAAA;IACnB,UAAU,EAAE,MAAM,CAAA;IAClB,UAAU,EAAE,OAAO,CAAA;IACnB,QAAQ,EAAE,MAAM,CAAA;IAChB,QAAQ,EAAE,MAAM,CAAA;IAChB,MAAM,EAAE,MAAM,EAAE,CAAA;CACf,GACD;IACA,IAAI,EAAE,UAAU,CAAA;IAChB,UAAU,EAAE,MAAM,CAAA;CACjB,CAAA;AAEJ;;;;;;GAMG;AACH,MAAM,WAAW,WAAW;IAC3B,GAAG,EAAE,aAAa,CAAA;IAClB,yCAAyC;IACzC,MAAM,EAAE,MAAM,CAAA;IACd,qDAAqD;IACrD,SAAS,EAAE,MAAM,CAAA;IACjB,gEAAgE;IAChE,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,sDAAsD;IACtD,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACzB;AAED,sDAAsD;AACtD,MAAM,WAAW,gBAAgB;IAChC,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,IAAI,CAAC,EAAE,cAAc,CAAA;CACrB;AAED;;;;;;;;GAQG;AACH,MAAM,WAAW,gBAAgB;IAChC,SAAS,CAAC,GAAG,EAAE,aAAa,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAA;IAC1D,QAAQ,CAAC,KAAK,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAC3C,WAAW,CAAC,GAAG,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAC9C,sBAAsB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAA;IAC3D,UAAU,CAAC,MAAM,CAAC,EAAE,gBAAgB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC,CAAA;CAC7D"}
|
package/package.json
CHANGED
|
@@ -1,91 +0,0 @@
|
|
|
1
|
-
import type { WalletPermissionsManager } from '@bsv/wallet-toolbox';
|
|
2
|
-
import type { IPermissionStore, PermissionKey, PermissionPromptHandler, PermissionRecord } from './types';
|
|
3
|
-
export interface PermissionLedgerAdapterOptions {
|
|
4
|
-
/** The WPM instance to attach callbacks to. */
|
|
5
|
-
wallet: WalletPermissionsManager;
|
|
6
|
-
/** Persistent store for permission grants. */
|
|
7
|
-
store: IPermissionStore;
|
|
8
|
-
/** UI prompt callbacks. */
|
|
9
|
-
prompt: PermissionPromptHandler;
|
|
10
|
-
}
|
|
11
|
-
/**
|
|
12
|
-
* Bridges an {@link IPermissionStore} to a {@link WalletPermissionsManager}.
|
|
13
|
-
*
|
|
14
|
-
* The adapter owns WPM's permission callbacks. On every permission check:
|
|
15
|
-
*
|
|
16
|
-
* 1. It looks up a stored grant in the supplied store.
|
|
17
|
-
* 2. If a valid unexpired grant exists, it calls
|
|
18
|
-
* `wallet.grantPermission({ ephemeral: true })` silently. WPM resolves
|
|
19
|
-
* the pending dApp call without writing anything to the chain.
|
|
20
|
-
* 3. Otherwise it delegates to the host app's prompt handler. On approval,
|
|
21
|
-
* it writes the grant to the store and calls `grantPermission` ephemerally.
|
|
22
|
-
*
|
|
23
|
-
* BRC-73 grouped permissions are handled via `dismissGroupedPermission` after
|
|
24
|
-
* writing each sub-permission to the store. WPM's downstream per-method checks
|
|
25
|
-
* then find the entries on their individual callback paths. When a site adds
|
|
26
|
-
* a new permission between visits, the prompt receives only the missing
|
|
27
|
-
* subset — already-granted permissions are not re-listed.
|
|
28
|
-
*
|
|
29
|
-
* DSAP (spending) cap enforcement reads actual confirmed spend from the
|
|
30
|
-
* wallet's action history via `WalletPermissionsManager.querySpentSince` —
|
|
31
|
-
* the same mechanism WPM uses natively. No ledger-side counter is
|
|
32
|
-
* maintained, so failed broadcasts cannot cause drift.
|
|
33
|
-
*
|
|
34
|
-
* Level-2 counterparty pacts (`onCounterpartyPermissionRequested`) remain
|
|
35
|
-
* on-chain: the adapter just routes the UI decision to WPM's native
|
|
36
|
-
* `grantCounterpartyPermission` / `denyCounterpartyPermission`. If the
|
|
37
|
-
* consumer omits `prompt.onCounterpartyPermissionRequested`, the adapter
|
|
38
|
-
* auto-denies counterparty requests so the dApp call fails cleanly instead
|
|
39
|
-
* of hanging forever.
|
|
40
|
-
*
|
|
41
|
-
* Call {@link dispose} to unbind callbacks when tearing down the wallet.
|
|
42
|
-
*/
|
|
43
|
-
export declare class PermissionLedgerAdapter {
|
|
44
|
-
private readonly wallet;
|
|
45
|
-
private readonly store;
|
|
46
|
-
private readonly prompt;
|
|
47
|
-
private boundCallbacks;
|
|
48
|
-
constructor(options: PermissionLedgerAdapterOptions);
|
|
49
|
-
private bindCallbacks;
|
|
50
|
-
/** Unbinds every callback this adapter registered on the wallet. */
|
|
51
|
-
dispose(): void;
|
|
52
|
-
private handleSingle;
|
|
53
|
-
private handleSpending;
|
|
54
|
-
private handleGrouped;
|
|
55
|
-
private handleCounterparty;
|
|
56
|
-
private safeDeny;
|
|
57
|
-
/**
|
|
58
|
-
* Return the full union of local (ledger) grants and on-chain WPM tokens.
|
|
59
|
-
*
|
|
60
|
-
* Under the default setup, the on-chain side contains only level-2
|
|
61
|
-
* counterparty pacts (and any pre-migration tokens that still exist).
|
|
62
|
-
* Records are tagged with `source: 'ledger' | 'onchain'` so the revoke
|
|
63
|
-
* handler can route correctly.
|
|
64
|
-
*/
|
|
65
|
-
listAllPermissions(): Promise<PermissionRecord[]>;
|
|
66
|
-
/**
|
|
67
|
-
* Revoke a single ledger-backed grant.
|
|
68
|
-
*
|
|
69
|
-
* To revoke an on-chain (counterparty) token, call
|
|
70
|
-
* `wallet.revokePermission(token)` directly with the raw WPM token.
|
|
71
|
-
*/
|
|
72
|
-
revokeLedgerGrant(key: PermissionKey): Promise<void>;
|
|
73
|
-
/**
|
|
74
|
-
* Revoke every grant for an originator across both stores.
|
|
75
|
-
*
|
|
76
|
-
* Returns counts of what was removed from each side.
|
|
77
|
-
*/
|
|
78
|
-
revokeAllForOriginator(originator: string): Promise<{
|
|
79
|
-
ledger: number;
|
|
80
|
-
onchain: number;
|
|
81
|
-
}>;
|
|
82
|
-
/**
|
|
83
|
-
* Return the satoshi amount spent against the given DSAP grant in the
|
|
84
|
-
* current UTC month, read from the wallet's action history.
|
|
85
|
-
*
|
|
86
|
-
* Delegates to `WalletPermissionsManager.querySpentSince` for accuracy and
|
|
87
|
-
* cross-device consistency — the ledger does not track spend itself.
|
|
88
|
-
*/
|
|
89
|
-
querySpent(key: PermissionKey): Promise<number>;
|
|
90
|
-
}
|
|
91
|
-
//# sourceMappingURL=adapter.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"adapter.d.ts","sourceRoot":"","sources":["../../src/permissions/adapter.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAQX,wBAAwB,EAExB,MAAM,qBAAqB,CAAA;AAS5B,OAAO,KAAK,EACX,gBAAgB,EAChB,aAAa,EACb,uBAAuB,EACvB,gBAAgB,EAEhB,MAAM,SAAS,CAAA;AAEhB,MAAM,WAAW,8BAA8B;IAC9C,+CAA+C;IAC/C,MAAM,EAAE,wBAAwB,CAAA;IAChC,8CAA8C;IAC9C,KAAK,EAAE,gBAAgB,CAAA;IACvB,2BAA2B;IAC3B,MAAM,EAAE,uBAAuB,CAAA;CAC/B;AAQD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,qBAAa,uBAAuB;IACnC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA0B;IACjD,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAkB;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAyB;IAChD,OAAO,CAAC,cAAc,CAAoC;gBAE9C,OAAO,EAAE,8BAA8B;IAOnD,OAAO,CAAC,aAAa;IAoBrB,oEAAoE;IACpE,OAAO,IAAI,IAAI;YAWD,YAAY;YAmCZ,cAAc;YAwDd,aAAa;YAgEb,kBAAkB;YA8BlB,QAAQ;IAQtB;;;;;;;OAOG;IACG,kBAAkB,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAqCvD;;;;;OAKG;IACG,iBAAiB,CAAC,GAAG,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAI1D;;;;OAIG;IACG,sBAAsB,CAC3B,UAAU,EAAE,MAAM,GAChB,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAO/C;;;;;;OAMG;IACG,UAAU,CAAC,GAAG,EAAE,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC;CAMrD"}
|
|
@@ -1,317 +0,0 @@
|
|
|
1
|
-
import { filterGroupedByMissing, isExpired, normalizeOriginator, permissionKeyFromRequest, permissionKeyToString, permissionKeysFromGroup, } from './key';
|
|
2
|
-
/**
|
|
3
|
-
* Bridges an {@link IPermissionStore} to a {@link WalletPermissionsManager}.
|
|
4
|
-
*
|
|
5
|
-
* The adapter owns WPM's permission callbacks. On every permission check:
|
|
6
|
-
*
|
|
7
|
-
* 1. It looks up a stored grant in the supplied store.
|
|
8
|
-
* 2. If a valid unexpired grant exists, it calls
|
|
9
|
-
* `wallet.grantPermission({ ephemeral: true })` silently. WPM resolves
|
|
10
|
-
* the pending dApp call without writing anything to the chain.
|
|
11
|
-
* 3. Otherwise it delegates to the host app's prompt handler. On approval,
|
|
12
|
-
* it writes the grant to the store and calls `grantPermission` ephemerally.
|
|
13
|
-
*
|
|
14
|
-
* BRC-73 grouped permissions are handled via `dismissGroupedPermission` after
|
|
15
|
-
* writing each sub-permission to the store. WPM's downstream per-method checks
|
|
16
|
-
* then find the entries on their individual callback paths. When a site adds
|
|
17
|
-
* a new permission between visits, the prompt receives only the missing
|
|
18
|
-
* subset — already-granted permissions are not re-listed.
|
|
19
|
-
*
|
|
20
|
-
* DSAP (spending) cap enforcement reads actual confirmed spend from the
|
|
21
|
-
* wallet's action history via `WalletPermissionsManager.querySpentSince` —
|
|
22
|
-
* the same mechanism WPM uses natively. No ledger-side counter is
|
|
23
|
-
* maintained, so failed broadcasts cannot cause drift.
|
|
24
|
-
*
|
|
25
|
-
* Level-2 counterparty pacts (`onCounterpartyPermissionRequested`) remain
|
|
26
|
-
* on-chain: the adapter just routes the UI decision to WPM's native
|
|
27
|
-
* `grantCounterpartyPermission` / `denyCounterpartyPermission`. If the
|
|
28
|
-
* consumer omits `prompt.onCounterpartyPermissionRequested`, the adapter
|
|
29
|
-
* auto-denies counterparty requests so the dApp call fails cleanly instead
|
|
30
|
-
* of hanging forever.
|
|
31
|
-
*
|
|
32
|
-
* Call {@link dispose} to unbind callbacks when tearing down the wallet.
|
|
33
|
-
*/
|
|
34
|
-
export class PermissionLedgerAdapter {
|
|
35
|
-
wallet;
|
|
36
|
-
store;
|
|
37
|
-
prompt;
|
|
38
|
-
boundCallbacks = [];
|
|
39
|
-
constructor(options) {
|
|
40
|
-
this.wallet = options.wallet;
|
|
41
|
-
this.store = options.store;
|
|
42
|
-
this.prompt = options.prompt;
|
|
43
|
-
this.bindCallbacks();
|
|
44
|
-
}
|
|
45
|
-
bindCallbacks() {
|
|
46
|
-
const bind = (name, handler) => {
|
|
47
|
-
const id = this.wallet.bindCallback(name, handler);
|
|
48
|
-
this.boundCallbacks.push([name, id]);
|
|
49
|
-
};
|
|
50
|
-
const single = (r) => this.handleSingle(r);
|
|
51
|
-
const spending = (r) => this.handleSpending(r);
|
|
52
|
-
const grouped = (r) => this.handleGrouped(r);
|
|
53
|
-
const counterparty = (r) => this.handleCounterparty(r);
|
|
54
|
-
bind('onProtocolPermissionRequested', single);
|
|
55
|
-
bind('onBasketAccessRequested', single);
|
|
56
|
-
bind('onCertificateAccessRequested', single);
|
|
57
|
-
bind('onSpendingAuthorizationRequested', spending);
|
|
58
|
-
bind('onGroupedPermissionRequested', grouped);
|
|
59
|
-
bind('onCounterpartyPermissionRequested', counterparty);
|
|
60
|
-
}
|
|
61
|
-
/** Unbinds every callback this adapter registered on the wallet. */
|
|
62
|
-
dispose() {
|
|
63
|
-
for (const [name, id] of this.boundCallbacks) {
|
|
64
|
-
this.wallet.unbindCallback(name, id);
|
|
65
|
-
}
|
|
66
|
-
this.boundCallbacks = [];
|
|
67
|
-
}
|
|
68
|
-
// ---------------------------------------------------------------------
|
|
69
|
-
// Handlers
|
|
70
|
-
// ---------------------------------------------------------------------
|
|
71
|
-
async handleSingle(request) {
|
|
72
|
-
try {
|
|
73
|
-
const key = permissionKeyFromRequest(request);
|
|
74
|
-
const existing = await this.store.findGrant(key);
|
|
75
|
-
if (existing && !isExpired(existing.expiry)) {
|
|
76
|
-
await this.wallet.grantPermission({
|
|
77
|
-
requestID: request.requestID,
|
|
78
|
-
ephemeral: true,
|
|
79
|
-
});
|
|
80
|
-
return;
|
|
81
|
-
}
|
|
82
|
-
const decision = await this.prompt.onPermissionRequested(request);
|
|
83
|
-
if (decision.approved) {
|
|
84
|
-
await this.store.putGrant({
|
|
85
|
-
key,
|
|
86
|
-
expiry: decision.expiry ?? 0,
|
|
87
|
-
grantedAt: Date.now(),
|
|
88
|
-
reason: request.reason,
|
|
89
|
-
});
|
|
90
|
-
await this.wallet.grantPermission({
|
|
91
|
-
requestID: request.requestID,
|
|
92
|
-
ephemeral: true,
|
|
93
|
-
});
|
|
94
|
-
}
|
|
95
|
-
else {
|
|
96
|
-
await this.wallet.denyPermission(request.requestID);
|
|
97
|
-
}
|
|
98
|
-
}
|
|
99
|
-
catch (err) {
|
|
100
|
-
await this.safeDeny(request.requestID);
|
|
101
|
-
throw err;
|
|
102
|
-
}
|
|
103
|
-
}
|
|
104
|
-
async handleSpending(request) {
|
|
105
|
-
try {
|
|
106
|
-
if (request.type !== 'spending' || !request.spending) {
|
|
107
|
-
await this.wallet.denyPermission(request.requestID);
|
|
108
|
-
return;
|
|
109
|
-
}
|
|
110
|
-
const key = permissionKeyFromRequest(request);
|
|
111
|
-
const needed = request.spending.satoshis;
|
|
112
|
-
const existing = await this.store.findGrant(key);
|
|
113
|
-
if (existing &&
|
|
114
|
-
!isExpired(existing.expiry) &&
|
|
115
|
-
existing.key.type === 'spending' &&
|
|
116
|
-
existing.authorizedAmount != null) {
|
|
117
|
-
// Read actual confirmed spend for this originator this month directly
|
|
118
|
-
// from the wallet's action history. WPM's own `querySpentSince` only
|
|
119
|
-
// reads `token.originator` + `token.rawOriginator`, so we can pass a
|
|
120
|
-
// minimal stub rather than reconstruct a full PermissionToken.
|
|
121
|
-
const spent = await this.wallet.querySpentSince({
|
|
122
|
-
originator: existing.key.originator,
|
|
123
|
-
});
|
|
124
|
-
if (spent + needed <= existing.authorizedAmount) {
|
|
125
|
-
await this.wallet.grantPermission({
|
|
126
|
-
requestID: request.requestID,
|
|
127
|
-
ephemeral: true,
|
|
128
|
-
});
|
|
129
|
-
return;
|
|
130
|
-
}
|
|
131
|
-
}
|
|
132
|
-
const decision = await this.prompt.onPermissionRequested(request);
|
|
133
|
-
if (decision.approved) {
|
|
134
|
-
await this.store.putGrant({
|
|
135
|
-
key,
|
|
136
|
-
expiry: decision.expiry ?? 0,
|
|
137
|
-
grantedAt: Date.now(),
|
|
138
|
-
reason: request.reason,
|
|
139
|
-
authorizedAmount: decision.authorizedAmount ?? needed,
|
|
140
|
-
});
|
|
141
|
-
await this.wallet.grantPermission({
|
|
142
|
-
requestID: request.requestID,
|
|
143
|
-
ephemeral: true,
|
|
144
|
-
});
|
|
145
|
-
}
|
|
146
|
-
else {
|
|
147
|
-
await this.wallet.denyPermission(request.requestID);
|
|
148
|
-
}
|
|
149
|
-
}
|
|
150
|
-
catch (err) {
|
|
151
|
-
await this.safeDeny(request.requestID);
|
|
152
|
-
throw err;
|
|
153
|
-
}
|
|
154
|
-
}
|
|
155
|
-
async handleGrouped(request) {
|
|
156
|
-
try {
|
|
157
|
-
const neededKeys = permissionKeysFromGroup(request.originator, request.permissions);
|
|
158
|
-
const lookups = await Promise.all(neededKeys.map((k) => this.store.findGrant(k)));
|
|
159
|
-
const missingKeys = new Set();
|
|
160
|
-
for (let i = 0; i < neededKeys.length; i++) {
|
|
161
|
-
const g = lookups[i];
|
|
162
|
-
if (!g || isExpired(g.expiry)) {
|
|
163
|
-
missingKeys.add(permissionKeyToString(neededKeys[i]));
|
|
164
|
-
}
|
|
165
|
-
}
|
|
166
|
-
if (missingKeys.size === 0) {
|
|
167
|
-
await this.wallet.dismissGroupedPermission(request.requestID);
|
|
168
|
-
return;
|
|
169
|
-
}
|
|
170
|
-
// Hand the prompt only the sub-permissions that still need approval.
|
|
171
|
-
// On first visit this equals the full bundle; on a revisit where the
|
|
172
|
-
// site has added one new permission, only that new one is shown.
|
|
173
|
-
const trimmedPermissions = filterGroupedByMissing(request.originator, request.permissions, missingKeys);
|
|
174
|
-
const decision = await this.prompt.onGroupedPermissionRequested({
|
|
175
|
-
...request,
|
|
176
|
-
permissions: trimmedPermissions,
|
|
177
|
-
});
|
|
178
|
-
if (!decision.approved) {
|
|
179
|
-
await this.wallet.denyGroupedPermission(request.requestID);
|
|
180
|
-
return;
|
|
181
|
-
}
|
|
182
|
-
const normalized = normalizeOriginator(request.originator);
|
|
183
|
-
const grantedKeys = permissionKeysFromGroup(normalized, decision.granted);
|
|
184
|
-
const now = Date.now();
|
|
185
|
-
const expiry = decision.expiry ?? 0;
|
|
186
|
-
for (const key of grantedKeys) {
|
|
187
|
-
const grant = { key, expiry, grantedAt: now };
|
|
188
|
-
if (key.type === 'spending' && decision.granted.spendingAuthorization) {
|
|
189
|
-
grant.authorizedAmount = decision.granted.spendingAuthorization.amount;
|
|
190
|
-
grant.reason = decision.granted.spendingAuthorization.description;
|
|
191
|
-
}
|
|
192
|
-
await this.store.putGrant(grant);
|
|
193
|
-
}
|
|
194
|
-
await this.wallet.dismissGroupedPermission(request.requestID);
|
|
195
|
-
}
|
|
196
|
-
catch (err) {
|
|
197
|
-
await this.wallet
|
|
198
|
-
.denyGroupedPermission(request.requestID)
|
|
199
|
-
.catch(() => undefined);
|
|
200
|
-
throw err;
|
|
201
|
-
}
|
|
202
|
-
}
|
|
203
|
-
async handleCounterparty(request) {
|
|
204
|
-
// Level-2 counterparty pacts stay on-chain. The adapter does not consult
|
|
205
|
-
// the local store for these; it just routes the consumer's UI decision
|
|
206
|
-
// to WPM's native grant/deny (which writes the token to the chain).
|
|
207
|
-
const handler = this.prompt.onCounterpartyPermissionRequested;
|
|
208
|
-
if (!handler) {
|
|
209
|
-
await this.wallet.denyCounterpartyPermission(request.requestID);
|
|
210
|
-
return;
|
|
211
|
-
}
|
|
212
|
-
try {
|
|
213
|
-
const decision = await handler(request);
|
|
214
|
-
if (decision.approved) {
|
|
215
|
-
await this.wallet.grantCounterpartyPermission({
|
|
216
|
-
requestID: request.requestID,
|
|
217
|
-
granted: decision.granted,
|
|
218
|
-
expiry: decision.expiry,
|
|
219
|
-
});
|
|
220
|
-
}
|
|
221
|
-
else {
|
|
222
|
-
await this.wallet.denyCounterpartyPermission(request.requestID);
|
|
223
|
-
}
|
|
224
|
-
}
|
|
225
|
-
catch (err) {
|
|
226
|
-
await this.wallet
|
|
227
|
-
.denyCounterpartyPermission(request.requestID)
|
|
228
|
-
.catch(() => undefined);
|
|
229
|
-
throw err;
|
|
230
|
-
}
|
|
231
|
-
}
|
|
232
|
-
async safeDeny(requestID) {
|
|
233
|
-
await this.wallet.denyPermission(requestID).catch(() => undefined);
|
|
234
|
-
}
|
|
235
|
-
// ---------------------------------------------------------------------
|
|
236
|
-
// Management helpers (for consumers to rebuild UIs)
|
|
237
|
-
// ---------------------------------------------------------------------
|
|
238
|
-
/**
|
|
239
|
-
* Return the full union of local (ledger) grants and on-chain WPM tokens.
|
|
240
|
-
*
|
|
241
|
-
* Under the default setup, the on-chain side contains only level-2
|
|
242
|
-
* counterparty pacts (and any pre-migration tokens that still exist).
|
|
243
|
-
* Records are tagged with `source: 'ledger' | 'onchain'` so the revoke
|
|
244
|
-
* handler can route correctly.
|
|
245
|
-
*/
|
|
246
|
-
async listAllPermissions() {
|
|
247
|
-
const [ledger, protocols, baskets, spending, certs] = await Promise.all([
|
|
248
|
-
this.store.listGrants(),
|
|
249
|
-
this.wallet.listProtocolPermissions({}),
|
|
250
|
-
this.wallet.listBasketAccess({}),
|
|
251
|
-
this.wallet.listSpendingAuthorizations({}),
|
|
252
|
-
this.wallet.listCertificateAccess({}),
|
|
253
|
-
]);
|
|
254
|
-
const ledgerRecords = ledger.map((g) => ({
|
|
255
|
-
source: 'ledger',
|
|
256
|
-
...g,
|
|
257
|
-
}));
|
|
258
|
-
const onChain = [
|
|
259
|
-
...protocols.map((t) => ({
|
|
260
|
-
source: 'onchain',
|
|
261
|
-
type: 'protocol',
|
|
262
|
-
token: t,
|
|
263
|
-
})),
|
|
264
|
-
...baskets.map((t) => ({
|
|
265
|
-
source: 'onchain',
|
|
266
|
-
type: 'basket',
|
|
267
|
-
token: t,
|
|
268
|
-
})),
|
|
269
|
-
...spending.map((t) => ({
|
|
270
|
-
source: 'onchain',
|
|
271
|
-
type: 'spending',
|
|
272
|
-
token: t,
|
|
273
|
-
})),
|
|
274
|
-
...certs.map((t) => ({
|
|
275
|
-
source: 'onchain',
|
|
276
|
-
type: 'certificate',
|
|
277
|
-
token: t,
|
|
278
|
-
})),
|
|
279
|
-
];
|
|
280
|
-
return [...ledgerRecords, ...onChain];
|
|
281
|
-
}
|
|
282
|
-
/**
|
|
283
|
-
* Revoke a single ledger-backed grant.
|
|
284
|
-
*
|
|
285
|
-
* To revoke an on-chain (counterparty) token, call
|
|
286
|
-
* `wallet.revokePermission(token)` directly with the raw WPM token.
|
|
287
|
-
*/
|
|
288
|
-
async revokeLedgerGrant(key) {
|
|
289
|
-
await this.store.deleteGrant(key);
|
|
290
|
-
}
|
|
291
|
-
/**
|
|
292
|
-
* Revoke every grant for an originator across both stores.
|
|
293
|
-
*
|
|
294
|
-
* Returns counts of what was removed from each side.
|
|
295
|
-
*/
|
|
296
|
-
async revokeAllForOriginator(originator) {
|
|
297
|
-
const normalized = normalizeOriginator(originator);
|
|
298
|
-
const ledgerCount = await this.store.deleteAllForOriginator(normalized);
|
|
299
|
-
const onchainRevoked = await this.wallet.revokeAllForOriginator(normalized);
|
|
300
|
-
return { ledger: ledgerCount, onchain: onchainRevoked.length };
|
|
301
|
-
}
|
|
302
|
-
/**
|
|
303
|
-
* Return the satoshi amount spent against the given DSAP grant in the
|
|
304
|
-
* current UTC month, read from the wallet's action history.
|
|
305
|
-
*
|
|
306
|
-
* Delegates to `WalletPermissionsManager.querySpentSince` for accuracy and
|
|
307
|
-
* cross-device consistency — the ledger does not track spend itself.
|
|
308
|
-
*/
|
|
309
|
-
async querySpent(key) {
|
|
310
|
-
if (key.type !== 'spending')
|
|
311
|
-
return 0;
|
|
312
|
-
return this.wallet.querySpentSince({
|
|
313
|
-
originator: key.originator,
|
|
314
|
-
});
|
|
315
|
-
}
|
|
316
|
-
}
|
|
317
|
-
//# sourceMappingURL=adapter.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"adapter.js","sourceRoot":"","sources":["../../src/permissions/adapter.ts"],"names":[],"mappings":"AAWA,OAAO,EACN,sBAAsB,EACtB,SAAS,EACT,mBAAmB,EACnB,wBAAwB,EACxB,qBAAqB,EACrB,uBAAuB,GACvB,MAAM,OAAO,CAAA;AAwBd;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,MAAM,OAAO,uBAAuB;IAClB,MAAM,CAA0B;IAChC,KAAK,CAAkB;IACvB,MAAM,CAAyB;IACxC,cAAc,GAAkC,EAAE,CAAA;IAE1D,YAAY,OAAuC;QAClD,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAA;QAC5B,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAA;QAC1B,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAA;QAC5B,IAAI,CAAC,aAAa,EAAE,CAAA;IACrB,CAAC;IAEO,aAAa;QACpB,MAAM,IAAI,GAAG,CAAC,IAAkB,EAAE,OAAkC,EAAE,EAAE;YACvE,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;YAClD,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAA;QACrC,CAAC,CAAA;QAED,MAAM,MAAM,GAA2B,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;QAClE,MAAM,QAAQ,GAA2B,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,CAAA;QACtE,MAAM,OAAO,GAAkC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,CAAA;QAC3E,MAAM,YAAY,GAAuC,CAAC,CAAC,EAAE,EAAE,CAC9D,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAA;QAE3B,IAAI,CAAC,+BAA+B,EAAE,MAAM,CAAC,CAAA;QAC7C,IAAI,CAAC,yBAAyB,EAAE,MAAM,CAAC,CAAA;QACvC,IAAI,CAAC,8BAA8B,EAAE,MAAM,CAAC,CAAA;QAC5C,IAAI,CAAC,kCAAkC,EAAE,QAAQ,CAAC,CAAA;QAClD,IAAI,CAAC,8BAA8B,EAAE,OAAO,CAAC,CAAA;QAC7C,IAAI,CAAC,mCAAmC,EAAE,YAAY,CAAC,CAAA;IACxD,CAAC;IAED,oEAAoE;IACpE,OAAO;QACN,KAAK,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YAC9C,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,EAAE,CAAC,CAAA;QACrC,CAAC;QACD,IAAI,CAAC,cAAc,GAAG,EAAE,CAAA;IACzB,CAAC;IAED,wEAAwE;IACxE,WAAW;IACX,wEAAwE;IAEhE,KAAK,CAAC,YAAY,CACzB,OAAkD;QAElD,IAAI,CAAC;YACJ,MAAM,GAAG,GAAG,wBAAwB,CAAC,OAAO,CAAC,CAAA;YAC7C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;YAChD,IAAI,QAAQ,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC7C,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;oBACjC,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,SAAS,EAAE,IAAI;iBACf,CAAC,CAAA;gBACF,OAAM;YACP,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAA;YACjE,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBACvB,MAAM,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC;oBACzB,GAAG;oBACH,MAAM,EAAE,QAAQ,CAAC,MAAM,IAAI,CAAC;oBAC5B,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;oBACrB,MAAM,EAAE,OAAO,CAAC,MAAM;iBACtB,CAAC,CAAA;gBACF,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;oBACjC,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,SAAS,EAAE,IAAI;iBACf,CAAC,CAAA;YACH,CAAC;iBAAM,CAAC;gBACP,MAAM,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;YACpD,CAAC;QACF,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;YACtC,MAAM,GAAG,CAAA;QACV,CAAC;IACF,CAAC;IAEO,KAAK,CAAC,cAAc,CAC3B,OAAkD;QAElD,IAAI,CAAC;YACJ,IAAI,OAAO,CAAC,IAAI,KAAK,UAAU,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;gBACtD,MAAM,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;gBACnD,OAAM;YACP,CAAC;YACD,MAAM,GAAG,GAAG,wBAAwB,CAAC,OAAO,CAAC,CAAA;YAC7C,MAAM,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAA;YACxC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;YAEhD,IACC,QAAQ;gBACR,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC;gBAC3B,QAAQ,CAAC,GAAG,CAAC,IAAI,KAAK,UAAU;gBAChC,QAAQ,CAAC,gBAAgB,IAAI,IAAI,EAChC,CAAC;gBACF,sEAAsE;gBACtE,qEAAqE;gBACrE,qEAAqE;gBACrE,+DAA+D;gBAC/D,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;oBAC/C,UAAU,EAAE,QAAQ,CAAC,GAAG,CAAC,UAAU;iBAChB,CAAC,CAAA;gBACrB,IAAI,KAAK,GAAG,MAAM,IAAI,QAAQ,CAAC,gBAAgB,EAAE,CAAC;oBACjD,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;wBACjC,SAAS,EAAE,OAAO,CAAC,SAAS;wBAC5B,SAAS,EAAE,IAAI;qBACf,CAAC,CAAA;oBACF,OAAM;gBACP,CAAC;YACF,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAA;YACjE,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBACvB,MAAM,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC;oBACzB,GAAG;oBACH,MAAM,EAAE,QAAQ,CAAC,MAAM,IAAI,CAAC;oBAC5B,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;oBACrB,MAAM,EAAE,OAAO,CAAC,MAAM;oBACtB,gBAAgB,EAAE,QAAQ,CAAC,gBAAgB,IAAI,MAAM;iBACrD,CAAC,CAAA;gBACF,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;oBACjC,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,SAAS,EAAE,IAAI;iBACf,CAAC,CAAA;YACH,CAAC;iBAAM,CAAC;gBACP,MAAM,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;YACpD,CAAC;QACF,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;YACtC,MAAM,GAAG,CAAA;QACV,CAAC;IACF,CAAC;IAEO,KAAK,CAAC,aAAa,CAC1B,OAAiC;QAEjC,IAAI,CAAC;YACJ,MAAM,UAAU,GAAG,uBAAuB,CACzC,OAAO,CAAC,UAAU,EAClB,OAAO,CAAC,WAAW,CACnB,CAAA;YACD,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAChC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAC9C,CAAA;YACD,MAAM,WAAW,GAAG,IAAI,GAAG,EAAU,CAAA;YACrC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC5C,MAAM,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAA;gBACpB,IAAI,CAAC,CAAC,IAAI,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC/B,WAAW,CAAC,GAAG,CAAC,qBAAqB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;gBACtD,CAAC;YACF,CAAC;YAED,IAAI,WAAW,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;gBAC5B,MAAM,IAAI,CAAC,MAAM,CAAC,wBAAwB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;gBAC7D,OAAM;YACP,CAAC;YAED,qEAAqE;YACrE,qEAAqE;YACrE,iEAAiE;YACjE,MAAM,kBAAkB,GAAG,sBAAsB,CAChD,OAAO,CAAC,UAAU,EAClB,OAAO,CAAC,WAAW,EACnB,WAAW,CACX,CAAA;YACD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,4BAA4B,CAAC;gBAC/D,GAAG,OAAO;gBACV,WAAW,EAAE,kBAAkB;aAC/B,CAAC,CAAA;YACF,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBACxB,MAAM,IAAI,CAAC,MAAM,CAAC,qBAAqB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;gBAC1D,OAAM;YACP,CAAC;YAED,MAAM,UAAU,GAAG,mBAAmB,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;YAC1D,MAAM,WAAW,GAAG,uBAAuB,CAAC,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAA;YACzE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;YACtB,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,IAAI,CAAC,CAAA;YAEnC,KAAK,MAAM,GAAG,IAAI,WAAW,EAAE,CAAC;gBAC/B,MAAM,KAAK,GAAgB,EAAE,GAAG,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,CAAA;gBAC1D,IAAI,GAAG,CAAC,IAAI,KAAK,UAAU,IAAI,QAAQ,CAAC,OAAO,CAAC,qBAAqB,EAAE,CAAC;oBACvE,KAAK,CAAC,gBAAgB,GAAG,QAAQ,CAAC,OAAO,CAAC,qBAAqB,CAAC,MAAM,CAAA;oBACtE,KAAK,CAAC,MAAM,GAAG,QAAQ,CAAC,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAA;gBAClE,CAAC;gBACD,MAAM,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;YACjC,CAAC;YAED,MAAM,IAAI,CAAC,MAAM,CAAC,wBAAwB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;QAC9D,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,IAAI,CAAC,MAAM;iBACf,qBAAqB,CAAC,OAAO,CAAC,SAAS,CAAC;iBACxC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAA;YACxB,MAAM,GAAG,CAAA;QACV,CAAC;IACF,CAAC;IAEO,KAAK,CAAC,kBAAkB,CAC/B,OAAsC;QAEtC,yEAAyE;QACzE,uEAAuE;QACvE,oEAAoE;QACpE,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,iCAAiC,CAAA;QAC7D,IAAI,CAAC,OAAO,EAAE,CAAC;YACd,MAAM,IAAI,CAAC,MAAM,CAAC,0BAA0B,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;YAC/D,OAAM;QACP,CAAC;QACD,IAAI,CAAC;YACJ,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,CAAA;YACvC,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBACvB,MAAM,IAAI,CAAC,MAAM,CAAC,2BAA2B,CAAC;oBAC7C,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,OAAO,EAAE,QAAQ,CAAC,OAAO;oBACzB,MAAM,EAAE,QAAQ,CAAC,MAAM;iBACvB,CAAC,CAAA;YACH,CAAC;iBAAM,CAAC;gBACP,MAAM,IAAI,CAAC,MAAM,CAAC,0BAA0B,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;YAChE,CAAC;QACF,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,IAAI,CAAC,MAAM;iBACf,0BAA0B,CAAC,OAAO,CAAC,SAAS,CAAC;iBAC7C,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAA;YACxB,MAAM,GAAG,CAAA;QACV,CAAC;IACF,CAAC;IAEO,KAAK,CAAC,QAAQ,CAAC,SAAiB;QACvC,MAAM,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAA;IACnE,CAAC;IAED,wEAAwE;IACxE,oDAAoD;IACpD,wEAAwE;IAExE;;;;;;;OAOG;IACH,KAAK,CAAC,kBAAkB;QACvB,MAAM,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACvE,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE;YACvB,IAAI,CAAC,MAAM,CAAC,uBAAuB,CAAC,EAAE,CAAC;YACvC,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,EAAE,CAAC;YAChC,IAAI,CAAC,MAAM,CAAC,0BAA0B,CAAC,EAAE,CAAC;YAC1C,IAAI,CAAC,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC;SACrC,CAAC,CAAA;QACF,MAAM,aAAa,GAAuB,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC5D,MAAM,EAAE,QAAQ;YAChB,GAAG,CAAC;SACJ,CAAC,CAAC,CAAA;QACH,MAAM,OAAO,GAAuB;YACnC,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACxB,MAAM,EAAE,SAAkB;gBAC1B,IAAI,EAAE,UAAmB;gBACzB,KAAK,EAAE,CAAC;aACR,CAAC,CAAC;YACH,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACtB,MAAM,EAAE,SAAkB;gBAC1B,IAAI,EAAE,QAAiB;gBACvB,KAAK,EAAE,CAAC;aACR,CAAC,CAAC;YACH,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACvB,MAAM,EAAE,SAAkB;gBAC1B,IAAI,EAAE,UAAmB;gBACzB,KAAK,EAAE,CAAC;aACR,CAAC,CAAC;YACH,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACpB,MAAM,EAAE,SAAkB;gBAC1B,IAAI,EAAE,aAAsB;gBAC5B,KAAK,EAAE,CAAC;aACR,CAAC,CAAC;SACH,CAAA;QACD,OAAO,CAAC,GAAG,aAAa,EAAE,GAAG,OAAO,CAAC,CAAA;IACtC,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,iBAAiB,CAAC,GAAkB;QACzC,MAAM,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,CAAA;IAClC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,sBAAsB,CAC3B,UAAkB;QAElB,MAAM,UAAU,GAAG,mBAAmB,CAAC,UAAU,CAAC,CAAA;QAClD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,sBAAsB,CAAC,UAAU,CAAC,CAAA;QACvE,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,sBAAsB,CAAC,UAAU,CAAC,CAAA;QAC3E,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,CAAC,MAAM,EAAE,CAAA;IAC/D,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,UAAU,CAAC,GAAkB;QAClC,IAAI,GAAG,CAAC,IAAI,KAAK,UAAU;YAAE,OAAO,CAAC,CAAA;QACrC,OAAO,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;YAClC,UAAU,EAAE,GAAG,CAAC,UAAU;SACP,CAAC,CAAA;IACtB,CAAC;CACD"}
|