@aastar/sdk 0.18.0 → 0.20.1

package/dist/chunk-XFI3AK32.js

@@ -0,0 +1,416 @@
+import { x402Actions } from './chunk-ZSSNU3UF.js';
+import { toHex } from 'viem';
+
+var EIP3009_TYPES = {
+  TransferWithAuthorization: [
+    { name: "from", type: "address" },
+    { name: "to", type: "address" },
+    { name: "value", type: "uint256" },
+    { name: "validAfter", type: "uint256" },
+    { name: "validBefore", type: "uint256" },
+    { name: "nonce", type: "bytes32" }
+  ],
+  // Distinct typehash from TransferWithAuthorization — prevents replay across variants.
+  // msg.sender must equal `to` on-chain (CallerMustBeRecipient error if violated).
+  ReceiveWithAuthorization: [
+    { name: "from", type: "address" },
+    { name: "to", type: "address" },
+    { name: "value", type: "uint256" },
+    { name: "validAfter", type: "uint256" },
+    { name: "validBefore", type: "uint256" },
+    { name: "nonce", type: "bytes32" }
+  ],
+  CancelAuthorization: [
+    { name: "authorizer", type: "address" },
+    { name: "nonce", type: "bytes32" }
+  ]
+};
+function getEIP3009Domain(tokenName, tokenVersion, chainId, verifyingContract) {
+  return {
+    name: tokenName,
+    version: tokenVersion,
+    chainId,
+    verifyingContract
+  };
+}
+function generateNonce() {
+  const bytes = new Uint8Array(32);
+  globalThis.crypto.getRandomValues(bytes);
+  return toHex(bytes);
+}
+var GTOKEN_EIP712_DOMAIN = { name: "GToken", version: "1" };
+async function signTransferWithAuthorization(walletClient, params) {
+  const domain = getEIP3009Domain(params.tokenName, params.tokenVersion, params.chainId, params.verifyingContract);
+  const account = walletClient.account;
+  if (!account) {
+    throw new Error("WalletClient must have an account");
+  }
+  return walletClient.signTypedData({
+    account,
+    domain,
+    types: EIP3009_TYPES,
+    primaryType: "TransferWithAuthorization",
+    message: {
+      from: params.from,
+      to: params.to,
+      value: params.value,
+      validAfter: params.validAfter,
+      validBefore: params.validBefore,
+      nonce: params.nonce
+    }
+  });
+}
+async function signGTokenTransferWithAuthorization(walletClient, params) {
+  const account = walletClient.account;
+  if (!account) {
+    throw new Error("WalletClient must have an account");
+  }
+  if (account.address.toLowerCase() !== params.from.toLowerCase()) {
+    throw new Error(`Signer ${account.address} does not match from ${params.from}`);
+  }
+  if (params.validBefore <= params.validAfter) {
+    throw new Error("validBefore must be greater than validAfter");
+  }
+  if (params.validBefore - params.validAfter > 300n) {
+    throw new Error(`Authorization window ${params.validBefore - params.validAfter}s exceeds MAX_AUTH_VALIDITY (300s)`);
+  }
+  return signTransferWithAuthorization(walletClient, params);
+}
+async function signReceiveWithAuthorization(walletClient, params) {
+  const account = walletClient.account;
+  if (!account) {
+    throw new Error("WalletClient must have an account");
+  }
+  if (account.address.toLowerCase() !== params.from.toLowerCase()) {
+    throw new Error(`Signer ${account.address} does not match from ${params.from}`);
+  }
+  if (params.validBefore <= params.validAfter) {
+    throw new Error("validBefore must be greater than validAfter");
+  }
+  if (params.validBefore - params.validAfter > 300n) {
+    throw new Error(`Authorization window ${params.validBefore - params.validAfter}s exceeds MAX_AUTH_VALIDITY (300s)`);
+  }
+  return walletClient.signTypedData({
+    account,
+    domain: getEIP3009Domain(params.tokenName, params.tokenVersion, params.chainId, params.verifyingContract),
+    types: EIP3009_TYPES,
+    primaryType: "ReceiveWithAuthorization",
+    message: {
+      from: params.from,
+      to: params.to,
+      value: params.value,
+      validAfter: params.validAfter,
+      validBefore: params.validBefore,
+      nonce: params.nonce
+    }
+  });
+}
+async function signCancelAuthorization(walletClient, params) {
+  const account = walletClient.account;
+  if (!account) {
+    throw new Error("WalletClient must have an account");
+  }
+  if (account.address.toLowerCase() !== params.authorizer.toLowerCase()) {
+    throw new Error(`Signer ${account.address} does not match authorizer ${params.authorizer}`);
+  }
+  return walletClient.signTypedData({
+    account,
+    domain: getEIP3009Domain(params.tokenName, params.tokenVersion, params.chainId, params.verifyingContract),
+    types: EIP3009_TYPES,
+    primaryType: "CancelAuthorization",
+    message: {
+      authorizer: params.authorizer,
+      nonce: params.nonce
+    }
+  });
+}
+
+// ../x402/dist/payment-header.js
+var HEADER_PAYMENT_REQUIRED = "PAYMENT-REQUIRED";
+var HEADER_PAYMENT_SIGNATURE = "PAYMENT-SIGNATURE";
+var HEADER_PAYMENT_RESPONSE = "PAYMENT-RESPONSE";
+var HEADER_V1_PAYMENT = "X-PAYMENT";
+var HEADER_V1_PAYMENT_RESPONSE = "X-PAYMENT-RESPONSE";
+function toBase64(data) {
+  const json = JSON.stringify(data);
+  if (typeof Buffer !== "undefined") {
+    return Buffer.from(json).toString("base64");
+  }
+  return btoa(json);
+}
+function fromBase64(encoded) {
+  let json;
+  if (typeof Buffer !== "undefined") {
+    json = Buffer.from(encoded, "base64").toString("utf-8");
+  } else {
+    json = atob(encoded);
+  }
+  return JSON.parse(json);
+}
+function encodePaymentRequired(req) {
+  return toBase64(req);
+}
+function decodePaymentRequired(encoded) {
+  return fromBase64(encoded);
+}
+function encodePaymentPayload(payload) {
+  return toBase64(payload);
+}
+function decodePaymentPayload(encoded) {
+  return fromBase64(encoded);
+}
+function encodeSettleResponse(resp) {
+  return toBase64(resp);
+}
+function decodeSettleResponse(encoded) {
+  return fromBase64(encoded);
+}
+function extractPaymentRequired(response) {
+  const v2 = response.headers.get(HEADER_PAYMENT_REQUIRED);
+  if (v2)
+    return decodePaymentRequired(v2);
+  const v1 = response.headers.get("X-PAYMENT-REQUIRED");
+  if (v1)
+    return decodePaymentRequired(v1);
+  return null;
+}
+function extractSettleResponse(response) {
+  const v2 = response.headers.get(HEADER_PAYMENT_RESPONSE);
+  if (v2)
+    return decodeSettleResponse(v2);
+  const v1 = response.headers.get(HEADER_V1_PAYMENT_RESPONSE);
+  if (v1)
+    return decodeSettleResponse(v1);
+  return null;
+}
+
+// ../x402/dist/facilitator.js
+var FacilitatorClient = class {
+  url;
+  createAuthHeaders;
+  constructor(config) {
+    this.url = config.url.replace(/\/$/, "");
+    this.createAuthHeaders = config.createAuthHeaders;
+  }
+  async getHeaders(endpoint) {
+    const base = { "Content-Type": "application/json" };
+    if (!this.createAuthHeaders)
+      return base;
+    const auth = await this.createAuthHeaders();
+    return { ...base, ...auth[endpoint] };
+  }
+  /**
+   * POST /verify — validate payment signature off-chain (~100ms).
+   */
+  async verify(paymentPayload, paymentRequirements) {
+    const resp = await fetch(`${this.url}/verify`, {
+      method: "POST",
+      headers: await this.getHeaders("verify"),
+      body: JSON.stringify({
+        x402Version: 2,
+        paymentPayload,
+        paymentRequirements
+      })
+    });
+    if (!resp.ok) {
+      throw new Error(`Facilitator /verify failed: ${resp.status} ${await resp.text()}`);
+    }
+    return resp.json();
+  }
+  /**
+   * POST /settle — execute on-chain settlement (~2s on Base).
+   */
+  async settle(paymentPayload, paymentRequirements) {
+    const resp = await fetch(`${this.url}/settle`, {
+      method: "POST",
+      headers: await this.getHeaders("settle"),
+      body: JSON.stringify({
+        x402Version: 2,
+        paymentPayload,
+        paymentRequirements
+      })
+    });
+    if (!resp.ok) {
+      throw new Error(`Facilitator /settle failed: ${resp.status} ${await resp.text()}`);
+    }
+    return resp.json();
+  }
+  /**
+   * GET /supported — query facilitator capabilities.
+   */
+  async supported() {
+    const resp = await fetch(`${this.url}/supported`, {
+      method: "GET",
+      headers: await this.getHeaders("supported")
+    });
+    if (!resp.ok) {
+      throw new Error(`Facilitator /supported failed: ${resp.status} ${await resp.text()}`);
+    }
+    return resp.json();
+  }
+};
+
+// ../x402/dist/X402Client.js
+function toNetworkId(chainId) {
+  return `eip155:${chainId}`;
+}
+var X402Client = class {
+  actions;
+  config;
+  facilitatorClient;
+  constructor(config) {
+    if (!config.walletClient.account) {
+      throw new Error("WalletClient must have an account configured");
+    }
+    this.config = config;
+    this.actions = x402Actions(config.superPaymasterAddress)(config.walletClient);
+    if (config.facilitator) {
+      this.facilitatorClient = new FacilitatorClient(config.facilitator);
+    }
+  }
+  /**
+   * Create a signed payment payload (EIP-3009 TransferWithAuthorization).
+   * Returns a base64-encoded PaymentPayload ready for PAYMENT-SIGNATURE header.
+   */
+  async createPayment(params) {
+    const nonce = params.nonce || generateNonce();
+    const now = BigInt(Math.floor(Date.now() / 1e3));
+    const validAfter = params.validAfter ?? now - 600n;
+    const validBefore = params.validBefore ?? now + 3600n;
+    const tokenName = this.config.tokenName || "USDC";
+    const tokenVersion = this.config.tokenVersion || "2";
+    const signature = await signTransferWithAuthorization(this.config.walletClient, {
+      from: params.from,
+      to: params.to,
+      value: params.amount,
+      validAfter,
+      validBefore,
+      nonce,
+      tokenName,
+      tokenVersion,
+      chainId: this.config.chainId,
+      verifyingContract: params.asset
+    });
+    const payload = {
+      x402Version: 2,
+      accepted: {
+        scheme: "exact",
+        network: toNetworkId(this.config.chainId),
+        asset: params.asset,
+        amount: params.amount.toString(),
+        payTo: params.to,
+        maxTimeoutSeconds: 3600,
+        extra: { name: tokenName, version: tokenVersion }
+      },
+      payload: {
+        signature,
+        authorization: {
+          from: params.from,
+          to: params.to,
+          value: params.amount.toString(),
+          validAfter: validAfter.toString(),
+          validBefore: validBefore.toString(),
+          nonce
+        }
+      }
+    };
+    return {
+      payload,
+      encoded: encodePaymentPayload(payload),
+      nonce
+    };
+  }
+  /**
+   * Settle payment on-chain via SuperPaymaster (self-facilitated).
+   * Uses EIP-3009 transferWithAuthorization path.
+   */
+  async settleOnChain(params) {
+    return this.actions.settleX402Payment({
+      ...params,
+      account: this.config.walletClient.account
+    });
+  }
+  /**
+   * Settle payment on-chain via direct transfer (for xPNTs and pre-approved tokens).
+   */
+  async settleDirectOnChain(params) {
+    return this.actions.settleX402PaymentDirect({
+      ...params,
+      account: this.config.walletClient.account
+    });
+  }
+  /**
+   * Get facilitator fee quote from on-chain contract.
+   */
+  async getQuote() {
+    const feeBPS = await this.actions.facilitatorFeeBPS();
+    return { feeBPS };
+  }
+  /**
+   * Check if a nonce has been used.
+   */
+  async checkNonce(nonce) {
+    return this.actions.x402SettlementNonces({ nonce });
+  }
+  /**
+   * Settle via external facilitator (Coinbase, self-hosted, etc.).
+   * Requires facilitator config in constructor.
+   */
+  async settleViaFacilitator(payload, requirements) {
+    if (!this.facilitatorClient) {
+      throw new Error("No facilitator configured. Pass facilitator config to X402Client constructor.");
+    }
+    return this.facilitatorClient.settle(payload, requirements);
+  }
+  /**
+   * x402-aware fetch wrapper.
+   * Automatically handles 402 → sign → retry flow per x402 v2 spec.
+   *
+   * Pattern from: @x402/fetch wrapFetchWithPayment
+   *
+   * Flow:
+   * 1. Make initial request
+   * 2. If 402, extract PaymentRequired from PAYMENT-REQUIRED header
+   * 3. Select best payment option (applies policy: max amount check)
+   * 4. Sign EIP-3009 authorization
+   * 5. Retry with PAYMENT-SIGNATURE header
+   */
+  async x402Fetch(url, init) {
+    const firstResponse = await fetch(url, init);
+    if (firstResponse.status !== 402) {
+      return firstResponse;
+    }
+    const paymentRequired = extractPaymentRequired(firstResponse);
+    if (!paymentRequired || !paymentRequired.accepts?.length) {
+      throw new Error("402 response missing PAYMENT-REQUIRED header or empty accepts");
+    }
+    const myNetwork = toNetworkId(this.config.chainId);
+    let selected = paymentRequired.accepts.find((a) => a.network === myNetwork && a.scheme === "exact");
+    if (!selected) {
+      selected = paymentRequired.accepts.find((a) => a.network.startsWith("eip155:"));
+    }
+    if (!selected) {
+      throw new Error(`No compatible payment option for network ${myNetwork}`);
+    }
+    if (this.config.maxAmountPerRequest && BigInt(selected.amount) > this.config.maxAmountPerRequest) {
+      throw new Error(`Payment amount ${selected.amount} exceeds max ${this.config.maxAmountPerRequest}`);
+    }
+    const account = this.config.walletClient.account;
+    if (!account) {
+      throw new Error("WalletClient must have an account for automatic payment");
+    }
+    const { encoded } = await this.createPayment({
+      from: account.address,
+      to: selected.payTo,
+      asset: selected.asset,
+      amount: BigInt(selected.amount)
+    });
+    const retryHeaders = new Headers(init?.headers);
+    retryHeaders.set(HEADER_PAYMENT_SIGNATURE, encoded);
+    return fetch(url, { ...init, headers: retryHeaders });
+  }
+};
+
+export { EIP3009_TYPES, FacilitatorClient, GTOKEN_EIP712_DOMAIN, HEADER_PAYMENT_REQUIRED, HEADER_PAYMENT_RESPONSE, HEADER_PAYMENT_SIGNATURE, HEADER_V1_PAYMENT, HEADER_V1_PAYMENT_RESPONSE, X402Client, decodePaymentPayload, decodePaymentRequired, decodeSettleResponse, encodePaymentPayload, encodePaymentRequired, encodeSettleResponse, extractPaymentRequired, extractSettleResponse, generateNonce, getEIP3009Domain, signCancelAuthorization, signGTokenTransferWithAuthorization, signReceiveWithAuthorization, signTransferWithAuthorization };
+//# sourceMappingURL=chunk-XFI3AK32.js.map
+//# sourceMappingURL=chunk-XFI3AK32.js.map

package/dist/chunk-XFI3AK32.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../x402/dist/eip3009.js","../../x402/dist/payment-header.js","../../x402/dist/facilitator.js","../../x402/dist/X402Client.js"],"names":[],"mappings":";;;AACO,IAAM,aAAA,GAAgB;AAAA,EACzB,yBAAA,EAA2B;AAAA,IACvB,EAAE,IAAA,EAAM,MAAA,EAAQ,IAAA,EAAM,SAAA,EAAU;AAAA,IAChC,EAAE,IAAA,EAAM,IAAA,EAAM,IAAA,EAAM,SAAA,EAAU;AAAA,IAC9B,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,IACjC,EAAE,IAAA,EAAM,YAAA,EAAc,IAAA,EAAM,SAAA,EAAU;AAAA,IACtC,EAAE,IAAA,EAAM,aAAA,EAAe,IAAA,EAAM,SAAA,EAAU;AAAA,IACvC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA;AAAU,GACrC;AAAA;AAAA;AAAA,EAGA,wBAAA,EAA0B;AAAA,IACtB,EAAE,IAAA,EAAM,MAAA,EAAQ,IAAA,EAAM,SAAA,EAAU;AAAA,IAChC,EAAE,IAAA,EAAM,IAAA,EAAM,IAAA,EAAM,SAAA,EAAU;AAAA,IAC9B,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,IACjC,EAAE,IAAA,EAAM,YAAA,EAAc,IAAA,EAAM,SAAA,EAAU;AAAA,IACtC,EAAE,IAAA,EAAM,aAAA,EAAe,IAAA,EAAM,SAAA,EAAU;AAAA,IACvC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA;AAAU,GACrC;AAAA,EACA,mBAAA,EAAqB;AAAA,IACjB,EAAE,IAAA,EAAM,YAAA,EAAc,IAAA,EAAM,SAAA,EAAU;AAAA,IACtC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA;AAAU;AAEzC;AACO,SAAS,gBAAA,CAAiB,SAAA,EAAW,YAAA,EAAc,OAAA,EAAS,iBAAA,EAAmB;AAClF,EAAA,OAAO;AAAA,IACH,IAAA,EAAM,SAAA;AAAA,IACN,OAAA,EAAS,YAAA;AAAA,IACT,OAAA;AAAA,IACA;AAAA,GACJ;AACJ;AACO,SAAS,aAAA,GAAgB;AAC5B,EAAA,MAAM,KAAA,GAAQ,IAAI,UAAA,CAAW,EAAE,CAAA;AAC/B,EAAA,UAAA,CAAW,MAAA,CAAO,gBAAgB,KAAK,CAAA;AACvC,EAAA,OAAO,MAAM,KAAK,CAAA;AACtB;AAEO,IAAM,oBAAA,GAAuB,EAAE,IAAA,EAAM,QAAA,EAAU,SAAS,GAAA;AAC/D,eAAsB,6BAAA,CAA8B,cAAc,MAAA,EAAQ;AACtE,EAAA,MAAM,MAAA,GAAS,iBAAiB,MAAA,CAAO,SAAA,EAAW,OAAO,YAAA,EAAc,MAAA,CAAO,OAAA,EAAS,MAAA,CAAO,iBAAiB,CAAA;AAC/G,EAAA,MAAM,UAAU,YAAA,CAAa,OAAA;AAC7B,EAAA,IAAI,CAAC,OAAA,EAAS;AACV,IAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,EACvD;AACA,EAAA,OAAO,aAAa,aAAA,CAAc;AAAA,IAC9B,OAAA;AAAA,IACA,MAAA;AAAA,IACA,KAAA,EAAO,aAAA;AAAA,IACP,WAAA,EAAa,2BAAA;AAAA,IACb,OAAA,EAAS;AAAA,MACL,MAAM,MAAA,CAAO,IAAA;AAAA,MACb,IAAI,MAAA,CAAO,EAAA;AAAA,MACX,OAAO,MAAA,CAAO,KAAA;AAAA,MACd,YAAY,MAAA,CAAO,UAAA;AAAA,MACnB,aAAa,MAAA,CAAO,WAAA;AAAA,MACpB,OAAO,MAAA,CAAO;AAAA;AAClB,GACH,CAAA;AACL;AAOA,eAAsB,mCAAA,CAAoC,cAAc,MAAA,EAAQ;AAC5E,EAAA,MAAM,UAAU,YAAA,CAAa,OAAA;AAC7B,EAAA,IAAI,CAAC,OAAA,EAAS;AACV,IAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,EACvD;AACA,EAAA,IAAI,QAAQ,OAAA,CAAQ,WAAA,OAAkB,MAAA,CAAO,IAAA,CAAK,aAAY,EAAG;AAC7D,IAAA,MAAM,IAAI,MAAM,CAAA,OAAA,EAAU,OAAA,CAAQ,OAAO,CAAA,qBAAA,EAAwB,MAAA,CAAO,IAAI,CAAA,CAAE,CAAA;AAAA,EAClF;AAEA,EAAA,IAAI,MAAA,CAAO,WAAA,IAAe,MAAA,CAAO,UAAA,EAAY;AACzC,IAAA,MAAM,IAAI,MAAM,6CAA6C,CAAA;AAAA,EACjE;AACA,EAAA,IAAI,MAAA,CAAO,WAAA,GAAc,MAAA,CAAO,UAAA,GAAa,IAAA,EAAM;AAC/C,IAAA,MAAM,IAAI,KAAA,CAAM,CAAA,qBAAA,EAAwB,OAAO,WAAA,GAAc,MAAA,CAAO,UAAU,CAAA,kCAAA,CAAoC,CAAA;AAAA,EACtH;AACA,EAAA,OAAO,6BAAA,CAA8B,cAAc,MAAM,CAAA;AAC7D;AAMA,eAAsB,4BAAA,CAA6B,cAAc,MAAA,EAAQ;AACrE,EAAA,MAAM,UAAU,YAAA,CAAa,OAAA;AAC7B,EAAA,IAAI,CAAC,OAAA,EAAS;AACV,IAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,EACvD;AACA,EAAA,IAAI,QAAQ,OAAA,CAAQ,WAAA,OAAkB,MAAA,CAAO,IAAA,CAAK,aAAY,EAAG;AAC7D,IAAA,MAAM,IAAI,MAAM,CAAA,OAAA,EAAU,OAAA,CAAQ,OAAO,CAAA,qBAAA,EAAwB,MAAA,CAAO,IAAI,CAAA,CAAE,CAAA;AAAA,EAClF;AAEA,EAAA,IAAI,MAAA,CAAO,WAAA,IAAe,MAAA,CAAO,UAAA,EAAY;AACzC,IAAA,MAAM,IAAI,MAAM,6CAA6C,CAAA;AAAA,EACjE;AACA,EAAA,IAAI,MAAA,CAAO,WAAA,GAAc,MAAA,CAAO,UAAA,GAAa,IAAA,EAAM;AAC/C,IAAA,MAAM,IAAI,KAAA,CAAM,CAAA,qBAAA,EAAwB,OAAO,WAAA,GAAc,MAAA,CAAO,UAAU,CAAA,kCAAA,CAAoC,CAAA;AAAA,EACtH;AACA,EAAA,OAAO,aAAa,aAAA,CAAc;AAAA,IAC9B,OAAA;AAAA,IACA,MAAA,EAAQ,iBAAiB,MAAA,CAAO,SAAA,EAAW,OAAO,YAAA,EAAc,MAAA,CAAO,OAAA,EAAS,MAAA,CAAO,iBAAiB,CAAA;AAAA,IACxG,KAAA,EAAO,aAAA;AAAA,IACP,WAAA,EAAa,0BAAA;AAAA,IACb,OAAA,EAAS;AAAA,MACL,MAAM,MAAA,CAAO,IAAA;AAAA,MACb,IAAI,MAAA,CAAO,EAAA;AAAA,MACX,OAAO,MAAA,CAAO,KAAA;AAAA,MACd,YAAY,MAAA,CAAO,UAAA;AAAA,MACnB,aAAa,MAAA,CAAO,WAAA;AAAA,MACpB,OAAO,MAAA,CAAO;AAAA;AAClB,GACH,CAAA;AACL;AAKA,eAAsB,uBAAA,CAAwB,cAAc,MAAA,EAAQ;AAChE,EAAA,MAAM,UAAU,YAAA,CAAa,OAAA;AAC7B,EAAA,IAAI,CAAC,OAAA,EAAS;AACV,IAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,EACvD;AACA,EAAA,IAAI,QAAQ,OAAA,CAAQ,WAAA,OAAkB,MAAA,CAAO,UAAA,CAAW,aAAY,EAAG;AACnE,IAAA,MAAM,IAAI,MAAM,CAAA,OAAA,EAAU,OAAA,CAAQ,OAAO,CAAA,2BAAA,EAA8B,MAAA,CAAO,UAAU,CAAA,CAAE,CAAA;AAAA,EAC9F;AACA,EAAA,OAAO,aAAa,aAAA,CAAc;AAAA,IAC9B,OAAA;AAAA,IACA,MAAA,EAAQ,iBAAiB,MAAA,CAAO,SAAA,EAAW,OAAO,YAAA,EAAc,MAAA,CAAO,OAAA,EAAS,MAAA,CAAO,iBAAiB,CAAA;AAAA,IACxG,KAAA,EAAO,aAAA;AAAA,IACP,WAAA,EAAa,qBAAA;AAAA,IACb,OAAA,EAAS;AAAA,MACL,YAAY,MAAA,CAAO,UAAA;AAAA,MACnB,OAAO,MAAA,CAAO;AAAA;AAClB,GACH,CAAA;AACL;;;ACxIO,IAAM,uBAAA,GAA0B;AAChC,IAAM,wBAAA,GAA2B;AACjC,IAAM,uBAAA,GAA0B;AAEhC,IAAM,iBAAA,GAAoB;AAC1B,IAAM,0BAAA,GAA6B;AAI1C,SAAS,SAAS,IAAA,EAAM;AACpB,EAAA,MAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA;AAChC,EAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AAC/B,IAAA,OAAO,MAAA,CAAO,IAAA,CAAK,IAAI,CAAA,CAAE,SAAS,QAAQ,CAAA;AAAA,EAC9C;AACA,EAAA,OAAO,KAAK,IAAI,CAAA;AACpB;AACA,SAAS,WAAW,OAAA,EAAS;AACzB,EAAA,IAAI,IAAA;AACJ,EAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AAC/B,IAAA,IAAA,GAAO,OAAO,IAAA,CAAK,OAAA,EAAS,QAAQ,CAAA,CAAE,SAAS,OAAO,CAAA;AAAA,EAC1D,CAAA,MACK;AACD,IAAA,IAAA,GAAO,KAAK,OAAO,CAAA;AAAA,EACvB;AACA,EAAA,OAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAC1B;AAEO,SAAS,sBAAsB,GAAA,EAAK;AACvC,EAAA,OAAO,SAAS,GAAG,CAAA;AACvB;AACO,SAAS,sBAAsB,OAAA,EAAS;AAC3C,EAAA,OAAO,WAAW,OAAO,CAAA;AAC7B;AAEO,SAAS,qBAAqB,OAAA,EAAS;AAC1C,EAAA,OAAO,SAAS,OAAO,CAAA;AAC3B;AACO,SAAS,qBAAqB,OAAA,EAAS;AAC1C,EAAA,OAAO,WAAW,OAAO,CAAA;AAC7B;AAEO,SAAS,qBAAqB,IAAA,EAAM;AACvC,EAAA,OAAO,SAAS,IAAI,CAAA;AACxB;AACO,SAAS,qBAAqB,OAAA,EAAS;AAC1C,EAAA,OAAO,WAAW,OAAO,CAAA;AAC7B;AAQO,SAAS,uBAAuB,QAAA,EAAU;AAC7C,EAAA,MAAM,EAAA,GAAK,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,uBAAuB,CAAA;AACvD,EAAA,IAAI,EAAA;AACA,IAAA,OAAO,sBAAsB,EAAE,CAAA;AAEnC,EAAA,MAAM,EAAA,GAAK,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,oBAAoB,CAAA;AACpD,EAAA,IAAI,EAAA;AACA,IAAA,OAAO,sBAAsB,EAAE,CAAA;AACnC,EAAA,OAAO,IAAA;AACX;AAIO,SAAS,sBAAsB,QAAA,EAAU;AAC5C,EAAA,MAAM,EAAA,GAAK,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,uBAAuB,CAAA;AACvD,EAAA,IAAI,EAAA;AACA,IAAA,OAAO,qBAAqB,EAAE,CAAA;AAClC,EAAA,MAAM,EAAA,GAAK,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,0BAA0B,CAAA;AAC1D,EAAA,IAAI,EAAA;AACA,IAAA,OAAO,qBAAqB,EAAE,CAAA;AAClC,EAAA,OAAO,IAAA;AACX;;;AC1EO,IAAM,oBAAN,MAAwB;AAAA,EAC3B,GAAA;AAAA,EACA,iBAAA;AAAA,EACA,YAAY,MAAA,EAAQ;AAChB,IAAA,IAAA,CAAK,GAAA,GAAM,MAAA,CAAO,GAAA,CAAI,OAAA,CAAQ,OAAO,EAAE,CAAA;AACvC,IAAA,IAAA,CAAK,oBAAoB,MAAA,CAAO,iBAAA;AAAA,EACpC;AAAA,EACA,MAAM,WAAW,QAAA,EAAU;AACvB,IAAA,MAAM,IAAA,GAAO,EAAE,cAAA,EAAgB,kBAAA,EAAmB;AAClD,IAAA,IAAI,CAAC,IAAA,CAAK,iBAAA;AACN,MAAA,OAAO,IAAA;AACX,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,iBAAA,EAAkB;AAC1C,IAAA,OAAO,EAAE,GAAG,IAAA,EAAM,GAAG,IAAA,CAAK,QAAQ,CAAA,EAAE;AAAA,EACxC;AAAA;AAAA;AAAA;AAAA,EAIA,MAAM,MAAA,CAAO,cAAA,EAAgB,mBAAA,EAAqB;AAC9C,IAAA,MAAM,OAAO,MAAM,KAAA,CAAM,CAAA,EAAG,IAAA,CAAK,GAAG,CAAA,OAAA,CAAA,EAAW;AAAA,MAC3C,MAAA,EAAQ,MAAA;AAAA,MACR,OAAA,EAAS,MAAM,IAAA,CAAK,UAAA,CAAW,QAAQ,CAAA;AAAA,MACvC,IAAA,EAAM,KAAK,SAAA,CAAU;AAAA,QACjB,WAAA,EAAa,CAAA;AAAA,QACb,cAAA;AAAA,QACA;AAAA,OACH;AAAA,KACJ,CAAA;AACD,IAAA,IAAI,CAAC,KAAK,EAAA,EAAI;AACV,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,4BAAA,EAA+B,IAAA,CAAK,MAAM,IAAI,MAAM,IAAA,CAAK,IAAA,EAAM,CAAA,CAAE,CAAA;AAAA,IACrF;AACA,IAAA,OAAO,KAAK,IAAA,EAAK;AAAA,EACrB;AAAA;AAAA;AAAA;AAAA,EAIA,MAAM,MAAA,CAAO,cAAA,EAAgB,mBAAA,EAAqB;AAC9C,IAAA,MAAM,OAAO,MAAM,KAAA,CAAM,CAAA,EAAG,IAAA,CAAK,GAAG,CAAA,OAAA,CAAA,EAAW;AAAA,MAC3C,MAAA,EAAQ,MAAA;AAAA,MACR,OAAA,EAAS,MAAM,IAAA,CAAK,UAAA,CAAW,QAAQ,CAAA;AAAA,MACvC,IAAA,EAAM,KAAK,SAAA,CAAU;AAAA,QACjB,WAAA,EAAa,CAAA;AAAA,QACb,cAAA;AAAA,QACA;AAAA,OACH;AAAA,KACJ,CAAA;AACD,IAAA,IAAI,CAAC,KAAK,EAAA,EAAI;AACV,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,4BAAA,EAA+B,IAAA,CAAK,MAAM,IAAI,MAAM,IAAA,CAAK,IAAA,EAAM,CAAA,CAAE,CAAA;AAAA,IACrF;AACA,IAAA,OAAO,KAAK,IAAA,EAAK;AAAA,EACrB;AAAA;AAAA;AAAA;AAAA,EAIA,MAAM,SAAA,GAAY;AACd,IAAA,MAAM,OAAO,MAAM,KAAA,CAAM,CAAA,EAAG,IAAA,CAAK,GAAG,CAAA,UAAA,CAAA,EAAc;AAAA,MAC9C,MAAA,EAAQ,KAAA;AAAA,MACR,OAAA,EAAS,MAAM,IAAA,CAAK,UAAA,CAAW,WAAW;AAAA,KAC7C,CAAA;AACD,IAAA,IAAI,CAAC,KAAK,EAAA,EAAI;AACV,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,+BAAA,EAAkC,IAAA,CAAK,MAAM,IAAI,MAAM,IAAA,CAAK,IAAA,EAAM,CAAA,CAAE,CAAA;AAAA,IACxF;AACA,IAAA,OAAO,KAAK,IAAA,EAAK;AAAA,EACrB;AACJ;;;AChEA,SAAS,YAAY,OAAA,EAAS;AAC1B,EAAA,OAAO,UAAU,OAAO,CAAA,CAAA;AAC5B;AACO,IAAM,aAAN,MAAiB;AAAA,EACpB,OAAA;AAAA,EACA,MAAA;AAAA,EACA,iBAAA;AAAA,EACA,YAAY,MAAA,EAAQ;AAChB,IAAA,IAAI,CAAC,MAAA,CAAO,YAAA,CAAa,OAAA,EAAS;AAC9B,MAAA,MAAM,IAAI,MAAM,8CAA8C,CAAA;AAAA,IAClE;AACA,IAAA,IAAA,CAAK,MAAA,GAAS,MAAA;AAEd,IAAA,IAAA,CAAK,UAAU,WAAA,CAAY,MAAA,CAAO,qBAAqB,CAAA,CAAE,OAAO,YAAY,CAAA;AAC5E,IAAA,IAAI,OAAO,WAAA,EAAa;AACpB,MAAA,IAAA,CAAK,iBAAA,GAAoB,IAAI,iBAAA,CAAkB,MAAA,CAAO,WAAW,CAAA;AAAA,IACrE;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAAc,MAAA,EAAQ;AACxB,IAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,KAAA,IAAS,aAAA,EAAc;AAC5C,IAAA,MAAM,GAAA,GAAM,OAAO,IAAA,CAAK,KAAA,CAAM,KAAK,GAAA,EAAI,GAAI,GAAI,CAAC,CAAA;AAChD,IAAA,MAAM,UAAA,GAAa,MAAA,CAAO,UAAA,IAAe,GAAA,GAAM,IAAA;AAC/C,IAAA,MAAM,WAAA,GAAc,MAAA,CAAO,WAAA,IAAgB,GAAA,GAAM,KAAA;AACjD,IAAA,MAAM,SAAA,GAAY,IAAA,CAAK,MAAA,CAAO,SAAA,IAAa,MAAA;AAC3C,IAAA,MAAM,YAAA,GAAe,IAAA,CAAK,MAAA,CAAO,YAAA,IAAgB,GAAA;AACjD,IAAA,MAAM,SAAA,GAAY,MAAM,6BAAA,CAA8B,IAAA,CAAK,OAAO,YAAA,EAAc;AAAA,MAC5E,MAAM,MAAA,CAAO,IAAA;AAAA,MACb,IAAI,MAAA,CAAO,EAAA;AAAA,MACX,OAAO,MAAA,CAAO,MAAA;AAAA,MACd,UAAA;AAAA,MACA,WAAA;AAAA,MACA,KAAA;AAAA,MACA,SAAA;AAAA,MACA,YAAA;AAAA,MACA,OAAA,EAAS,KAAK,MAAA,CAAO,OAAA;AAAA,MACrB,mBAAmB,MAAA,CAAO;AAAA,KAC7B,CAAA;AACD,IAAA,MAAM,OAAA,GAAU;AAAA,MACZ,WAAA,EAAa,CAAA;AAAA,MACb,QAAA,EAAU;AAAA,QACN,MAAA,EAAQ,OAAA;AAAA,QACR,OAAA,EAAS,WAAA,CAAY,IAAA,CAAK,MAAA,CAAO,OAAO,CAAA;AAAA,QACxC,OAAO,MAAA,CAAO,KAAA;AAAA,QACd,MAAA,EAAQ,MAAA,CAAO,MAAA,CAAO,QAAA,EAAS;AAAA,QAC/B,OAAO,MAAA,CAAO,EAAA;AAAA,QACd,iBAAA,EAAmB,IAAA;AAAA,QACnB,KAAA,EAAO,EAAE,IAAA,EAAM,SAAA,EAAW,SAAS,YAAA;AAAa,OACpD;AAAA,MACA,OAAA,EAAS;AAAA,QACL,SAAA;AAAA,QACA,aAAA,EAAe;AAAA,UACX,MAAM,MAAA,CAAO,IAAA;AAAA,UACb,IAAI,MAAA,CAAO,EAAA;AAAA,UACX,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,QAAA,EAAS;AAAA,UAC9B,UAAA,EAAY,WAAW,QAAA,EAAS;AAAA,UAChC,WAAA,EAAa,YAAY,QAAA,EAAS;AAAA,UAClC;AAAA;AACJ;AACJ,KACJ;AACA,IAAA,OAAO;AAAA,MACH,OAAA;AAAA,MACA,OAAA,EAAS,qBAAqB,OAAO,CAAA;AAAA,MACrC;AAAA,KACJ;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAAc,MAAA,EAAQ;AACxB,IAAA,OAAO,IAAA,CAAK,QAAQ,iBAAA,CAAkB;AAAA,MAClC,GAAG,MAAA;AAAA,MACH,OAAA,EAAS,IAAA,CAAK,MAAA,CAAO,YAAA,CAAa;AAAA,KACrC,CAAA;AAAA,EACL;AAAA;AAAA;AAAA;AAAA,EAIA,MAAM,oBAAoB,MAAA,EAAQ;AAC9B,IAAA,OAAO,IAAA,CAAK,QAAQ,uBAAA,CAAwB;AAAA,MACxC,GAAG,MAAA;AAAA,MACH,OAAA,EAAS,IAAA,CAAK,MAAA,CAAO,YAAA,CAAa;AAAA,KACrC,CAAA;AAAA,EACL;AAAA;AAAA;AAAA;AAAA,EAIA,MAAM,QAAA,GAAW;AACb,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA,CAAQ,iBAAA,EAAkB;AACpD,IAAA,OAAO,EAAE,MAAA,EAAO;AAAA,EACpB;AAAA;AAAA;AAAA;AAAA,EAIA,MAAM,WAAW,KAAA,EAAO;AACpB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAQ,oBAAA,CAAqB,EAAE,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,oBAAA,CAAqB,OAAA,EAAS,YAAA,EAAc;AAC9C,IAAA,IAAI,CAAC,KAAK,iBAAA,EAAmB;AACzB,MAAA,MAAM,IAAI,MAAM,+EAA+E,CAAA;AAAA,IACnG;AACA,IAAA,OAAO,IAAA,CAAK,iBAAA,CAAkB,MAAA,CAAO,OAAA,EAAS,YAAY,CAAA;AAAA,EAC9D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,SAAA,CAAU,GAAA,EAAK,IAAA,EAAM;AACvB,IAAA,MAAM,aAAA,GAAgB,MAAM,KAAA,CAAM,GAAA,EAAK,IAAI,CAAA;AAC3C,IAAA,IAAI,aAAA,CAAc,WAAW,GAAA,EAAK;AAC9B,MAAA,OAAO,aAAA;AAAA,IACX;AAGA,IAAA,MAAM,eAAA,GAAkB,uBAAuB,aAAa,CAAA;AAC5D,IAAA,IAAI,CAAC,eAAA,IAAmB,CAAC,eAAA,CAAgB,SAAS,MAAA,EAAQ;AACtD,MAAA,MAAM,IAAI,MAAM,+DAA+D,CAAA;AAAA,IACnF;AAEA,IAAA,MAAM,SAAA,GAAY,WAAA,CAAY,IAAA,CAAK,MAAA,CAAO,OAAO,CAAA;AACjD,IAAA,IAAI,QAAA,GAAW,eAAA,CAAgB,OAAA,CAAQ,IAAA,CAAK,CAAC,CAAA,KAAM,CAAA,CAAE,OAAA,KAAY,SAAA,IAAa,CAAA,CAAE,MAAA,KAAW,OAAO,CAAA;AAClG,IAAA,IAAI,CAAC,QAAA,EAAU;AAEX,MAAA,QAAA,GAAW,eAAA,CAAgB,QAAQ,IAAA,CAAK,CAAC,MAAM,CAAA,CAAE,OAAA,CAAQ,UAAA,CAAW,SAAS,CAAC,CAAA;AAAA,IAClF;AACA,IAAA,IAAI,CAAC,QAAA,EAAU;AACX,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,yCAAA,EAA4C,SAAS,CAAA,CAAE,CAAA;AAAA,IAC3E;AAEA,IAAA,IAAI,IAAA,CAAK,OAAO,mBAAA,IAAuB,MAAA,CAAO,SAAS,MAAM,CAAA,GAAI,IAAA,CAAK,MAAA,CAAO,mBAAA,EAAqB;AAC9F,MAAA,MAAM,IAAI,MAAM,CAAA,eAAA,EAAkB,QAAA,CAAS,MAAM,CAAA,aAAA,EAAgB,IAAA,CAAK,MAAA,CAAO,mBAAmB,CAAA,CAAE,CAAA;AAAA,IACtG;AACA,IAAA,MAAM,OAAA,GAAU,IAAA,CAAK,MAAA,CAAO,YAAA,CAAa,OAAA;AACzC,IAAA,IAAI,CAAC,OAAA,EAAS;AACV,MAAA,MAAM,IAAI,MAAM,yDAAyD,CAAA;AAAA,IAC7E;AAEA,IAAA,MAAM,EAAE,OAAA,EAAQ,GAAI,MAAM,KAAK,aAAA,CAAc;AAAA,MACzC,MAAM,OAAA,CAAQ,OAAA;AAAA,MACd,IAAI,QAAA,CAAS,KAAA;AAAA,MACb,OAAO,QAAA,CAAS,KAAA;AAAA,MAChB,MAAA,EAAQ,MAAA,CAAO,QAAA,CAAS,MAAM;AAAA,KACjC,CAAA;AAED,IAAA,MAAM,YAAA,GAAe,IAAI,OAAA,CAAQ,IAAA,EAAM,OAAO,CAAA;AAC9C,IAAA,YAAA,CAAa,GAAA,CAAI,0BAA0B,OAAO,CAAA;AAClD,IAAA,OAAO,MAAM,GAAA,EAAK,EAAE,GAAG,IAAA,EAAM,OAAA,EAAS,cAAc,CAAA;AAAA,EACxD;AACJ","file":"chunk-XFI3AK32.js","sourcesContent":["import { toHex } from 'viem';\nexport const EIP3009_TYPES = {\n    TransferWithAuthorization: [\n        { name: 'from', type: 'address' },\n        { name: 'to', type: 'address' },\n        { name: 'value', type: 'uint256' },\n        { name: 'validAfter', type: 'uint256' },\n        { name: 'validBefore', type: 'uint256' },\n        { name: 'nonce', type: 'bytes32' },\n    ],\n    // Distinct typehash from TransferWithAuthorization — prevents replay across variants.\n    // msg.sender must equal `to` on-chain (CallerMustBeRecipient error if violated).\n    ReceiveWithAuthorization: [\n        { name: 'from', type: 'address' },\n        { name: 'to', type: 'address' },\n        { name: 'value', type: 'uint256' },\n        { name: 'validAfter', type: 'uint256' },\n        { name: 'validBefore', type: 'uint256' },\n        { name: 'nonce', type: 'bytes32' },\n    ],\n    CancelAuthorization: [\n        { name: 'authorizer', type: 'address' },\n        { name: 'nonce', type: 'bytes32' },\n    ],\n};\nexport function getEIP3009Domain(tokenName, tokenVersion, chainId, verifyingContract) {\n    return {\n        name: tokenName,\n        version: tokenVersion,\n        chainId,\n        verifyingContract,\n    };\n}\nexport function generateNonce() {\n    const bytes = new Uint8Array(32);\n    globalThis.crypto.getRandomValues(bytes);\n    return toHex(bytes);\n}\n// GToken EIP-712 domain constants (GTokenAuthorization v2.2.0)\nexport const GTOKEN_EIP712_DOMAIN = { name: 'GToken', version: '1' };\nexport async function signTransferWithAuthorization(walletClient, params) {\n    const domain = getEIP3009Domain(params.tokenName, params.tokenVersion, params.chainId, params.verifyingContract);\n    const account = walletClient.account;\n    if (!account) {\n        throw new Error('WalletClient must have an account');\n    }\n    return walletClient.signTypedData({\n        account,\n        domain,\n        types: EIP3009_TYPES,\n        primaryType: 'TransferWithAuthorization',\n        message: {\n            from: params.from,\n            to: params.to,\n            value: params.value,\n            validAfter: params.validAfter,\n            validBefore: params.validBefore,\n            nonce: params.nonce,\n        },\n    });\n}\n/**\n * Sign a TransferWithAuthorization for GTokenAuthorization (EIP-3009).\n * GToken-specific wrapper: enforces MAX_AUTH_VALIDITY = 300s before signing.\n * Use this instead of the generic signTransferWithAuthorization when the\n * verifying contract is GTokenAuthorization.\n */\nexport async function signGTokenTransferWithAuthorization(walletClient, params) {\n    const account = walletClient.account;\n    if (!account) {\n        throw new Error('WalletClient must have an account');\n    }\n    if (account.address.toLowerCase() !== params.from.toLowerCase()) {\n        throw new Error(`Signer ${account.address} does not match from ${params.from}`);\n    }\n    // GTokenAuthorization enforces MAX_AUTH_VALIDITY = 300s on-chain.\n    if (params.validBefore <= params.validAfter) {\n        throw new Error('validBefore must be greater than validAfter');\n    }\n    if (params.validBefore - params.validAfter > 300n) {\n        throw new Error(`Authorization window ${params.validBefore - params.validAfter}s exceeds MAX_AUTH_VALIDITY (300s)`);\n    }\n    return signTransferWithAuthorization(walletClient, params);\n}\n/**\n * Sign a ReceiveWithAuthorization for GTokenAuthorization (EIP-3009).\n * The signed `to` address must be the one submitting the transaction on-chain.\n * Note: `xPNTsToken` is NOT included in the signature (it's a relay-supplied hint for RC-2).\n */\nexport async function signReceiveWithAuthorization(walletClient, params) {\n    const account = walletClient.account;\n    if (!account) {\n        throw new Error('WalletClient must have an account');\n    }\n    if (account.address.toLowerCase() !== params.from.toLowerCase()) {\n        throw new Error(`Signer ${account.address} does not match from ${params.from}`);\n    }\n    // GTokenAuthorization enforces MAX_AUTH_VALIDITY = 300s on-chain (RC-1).\n    if (params.validBefore <= params.validAfter) {\n        throw new Error('validBefore must be greater than validAfter');\n    }\n    if (params.validBefore - params.validAfter > 300n) {\n        throw new Error(`Authorization window ${params.validBefore - params.validAfter}s exceeds MAX_AUTH_VALIDITY (300s)`);\n    }\n    return walletClient.signTypedData({\n        account,\n        domain: getEIP3009Domain(params.tokenName, params.tokenVersion, params.chainId, params.verifyingContract),\n        types: EIP3009_TYPES,\n        primaryType: 'ReceiveWithAuthorization',\n        message: {\n            from: params.from,\n            to: params.to,\n            value: params.value,\n            validAfter: params.validAfter,\n            validBefore: params.validBefore,\n            nonce: params.nonce,\n        },\n    });\n}\n/**\n * Sign a CancelAuthorization for GTokenAuthorization (EIP-3009).\n * Must be signed by the original `authorizer` address.\n */\nexport async function signCancelAuthorization(walletClient, params) {\n    const account = walletClient.account;\n    if (!account) {\n        throw new Error('WalletClient must have an account');\n    }\n    if (account.address.toLowerCase() !== params.authorizer.toLowerCase()) {\n        throw new Error(`Signer ${account.address} does not match authorizer ${params.authorizer}`);\n    }\n    return walletClient.signTypedData({\n        account,\n        domain: getEIP3009Domain(params.tokenName, params.tokenVersion, params.chainId, params.verifyingContract),\n        types: EIP3009_TYPES,\n        primaryType: 'CancelAuthorization',\n        message: {\n            authorizer: params.authorizer,\n            nonce: params.nonce,\n        },\n    });\n}\n","// ============================================================\n// x402 v2 HTTP Header Names\n// Ref: github.com/coinbase/x402/blob/main/specs/x402-specification-v2.md\n// ============================================================\n/** v2 header names (standard) */\nexport const HEADER_PAYMENT_REQUIRED = 'PAYMENT-REQUIRED';\nexport const HEADER_PAYMENT_SIGNATURE = 'PAYMENT-SIGNATURE';\nexport const HEADER_PAYMENT_RESPONSE = 'PAYMENT-RESPONSE';\n/** v1 header names (backward compat) */\nexport const HEADER_V1_PAYMENT = 'X-PAYMENT';\nexport const HEADER_V1_PAYMENT_RESPONSE = 'X-PAYMENT-RESPONSE';\n// ============================================================\n// Encoding / Decoding (Base64 JSON — per x402 spec)\n// ============================================================\nfunction toBase64(data) {\n    const json = JSON.stringify(data);\n    if (typeof Buffer !== 'undefined') {\n        return Buffer.from(json).toString('base64');\n    }\n    return btoa(json);\n}\nfunction fromBase64(encoded) {\n    let json;\n    if (typeof Buffer !== 'undefined') {\n        json = Buffer.from(encoded, 'base64').toString('utf-8');\n    }\n    else {\n        json = atob(encoded);\n    }\n    return JSON.parse(json);\n}\n// --- PaymentRequired (402 response) ---\nexport function encodePaymentRequired(req) {\n    return toBase64(req);\n}\nexport function decodePaymentRequired(encoded) {\n    return fromBase64(encoded);\n}\n// --- PaymentPayload (client → server) ---\nexport function encodePaymentPayload(payload) {\n    return toBase64(payload);\n}\nexport function decodePaymentPayload(encoded) {\n    return fromBase64(encoded);\n}\n// --- SettleResponse (server → client) ---\nexport function encodeSettleResponse(resp) {\n    return toBase64(resp);\n}\nexport function decodeSettleResponse(encoded) {\n    return fromBase64(encoded);\n}\n// ============================================================\n// Header Extraction Helpers\n// ============================================================\n/**\n * Extract PaymentRequired from a 402 Response.\n * Tries v2 header first, falls back to v1.\n */\nexport function extractPaymentRequired(response) {\n    const v2 = response.headers.get(HEADER_PAYMENT_REQUIRED);\n    if (v2)\n        return decodePaymentRequired(v2);\n    // v1 fallback: check body or X-PAYMENT-REQUIRED\n    const v1 = response.headers.get('X-PAYMENT-REQUIRED');\n    if (v1)\n        return decodePaymentRequired(v1);\n    return null;\n}\n/**\n * Extract SettleResponse from a successful response.\n */\nexport function extractSettleResponse(response) {\n    const v2 = response.headers.get(HEADER_PAYMENT_RESPONSE);\n    if (v2)\n        return decodeSettleResponse(v2);\n    const v1 = response.headers.get(HEADER_V1_PAYMENT_RESPONSE);\n    if (v1)\n        return decodeSettleResponse(v1);\n    return null;\n}\n","/**\n * HTTP Facilitator Client — standard x402 v2 facilitator API.\n * Compatible with Coinbase hosted facilitator and self-hosted instances.\n *\n * Ref: coinbase/x402 HTTPFacilitatorClient pattern\n */\nexport class FacilitatorClient {\n    url;\n    createAuthHeaders;\n    constructor(config) {\n        this.url = config.url.replace(/\\/$/, '');\n        this.createAuthHeaders = config.createAuthHeaders;\n    }\n    async getHeaders(endpoint) {\n        const base = { 'Content-Type': 'application/json' };\n        if (!this.createAuthHeaders)\n            return base;\n        const auth = await this.createAuthHeaders();\n        return { ...base, ...auth[endpoint] };\n    }\n    /**\n     * POST /verify — validate payment signature off-chain (~100ms).\n     */\n    async verify(paymentPayload, paymentRequirements) {\n        const resp = await fetch(`${this.url}/verify`, {\n            method: 'POST',\n            headers: await this.getHeaders('verify'),\n            body: JSON.stringify({\n                x402Version: 2,\n                paymentPayload,\n                paymentRequirements,\n            }),\n        });\n        if (!resp.ok) {\n            throw new Error(`Facilitator /verify failed: ${resp.status} ${await resp.text()}`);\n        }\n        return resp.json();\n    }\n    /**\n     * POST /settle — execute on-chain settlement (~2s on Base).\n     */\n    async settle(paymentPayload, paymentRequirements) {\n        const resp = await fetch(`${this.url}/settle`, {\n            method: 'POST',\n            headers: await this.getHeaders('settle'),\n            body: JSON.stringify({\n                x402Version: 2,\n                paymentPayload,\n                paymentRequirements,\n            }),\n        });\n        if (!resp.ok) {\n            throw new Error(`Facilitator /settle failed: ${resp.status} ${await resp.text()}`);\n        }\n        return resp.json();\n    }\n    /**\n     * GET /supported — query facilitator capabilities.\n     */\n    async supported() {\n        const resp = await fetch(`${this.url}/supported`, {\n            method: 'GET',\n            headers: await this.getHeaders('supported'),\n        });\n        if (!resp.ok) {\n            throw new Error(`Facilitator /supported failed: ${resp.status} ${await resp.text()}`);\n        }\n        return resp.json();\n    }\n}\n","import { x402Actions } from '@aastar/core';\nimport { signTransferWithAuthorization, generateNonce } from './eip3009.js';\nimport { encodePaymentPayload, extractPaymentRequired, HEADER_PAYMENT_SIGNATURE, } from './payment-header.js';\nimport { FacilitatorClient } from './facilitator.js';\n/** CAIP-2 network identifier from chainId */\nfunction toNetworkId(chainId) {\n    return `eip155:${chainId}`;\n}\nexport class X402Client {\n    actions;\n    config;\n    facilitatorClient;\n    constructor(config) {\n        if (!config.walletClient.account) {\n            throw new Error('WalletClient must have an account configured');\n        }\n        this.config = config;\n        // walletClient supports both readContract and writeContract — single instance suffices\n        this.actions = x402Actions(config.superPaymasterAddress)(config.walletClient);\n        if (config.facilitator) {\n            this.facilitatorClient = new FacilitatorClient(config.facilitator);\n        }\n    }\n    /**\n     * Create a signed payment payload (EIP-3009 TransferWithAuthorization).\n     * Returns a base64-encoded PaymentPayload ready for PAYMENT-SIGNATURE header.\n     */\n    async createPayment(params) {\n        const nonce = params.nonce || generateNonce();\n        const now = BigInt(Math.floor(Date.now() / 1000));\n        const validAfter = params.validAfter ?? (now - 600n); // 10 min grace (per x402 spec)\n        const validBefore = params.validBefore ?? (now + 3600n);\n        const tokenName = this.config.tokenName || 'USDC';\n        const tokenVersion = this.config.tokenVersion || '2';\n        const signature = await signTransferWithAuthorization(this.config.walletClient, {\n            from: params.from,\n            to: params.to,\n            value: params.amount,\n            validAfter,\n            validBefore,\n            nonce,\n            tokenName,\n            tokenVersion,\n            chainId: this.config.chainId,\n            verifyingContract: params.asset,\n        });\n        const payload = {\n            x402Version: 2,\n            accepted: {\n                scheme: 'exact',\n                network: toNetworkId(this.config.chainId),\n                asset: params.asset,\n                amount: params.amount.toString(),\n                payTo: params.to,\n                maxTimeoutSeconds: 3600,\n                extra: { name: tokenName, version: tokenVersion },\n            },\n            payload: {\n                signature,\n                authorization: {\n                    from: params.from,\n                    to: params.to,\n                    value: params.amount.toString(),\n                    validAfter: validAfter.toString(),\n                    validBefore: validBefore.toString(),\n                    nonce,\n                },\n            },\n        };\n        return {\n            payload,\n            encoded: encodePaymentPayload(payload),\n            nonce,\n        };\n    }\n    /**\n     * Settle payment on-chain via SuperPaymaster (self-facilitated).\n     * Uses EIP-3009 transferWithAuthorization path.\n     */\n    async settleOnChain(params) {\n        return this.actions.settleX402Payment({\n            ...params,\n            account: this.config.walletClient.account,\n        });\n    }\n    /**\n     * Settle payment on-chain via direct transfer (for xPNTs and pre-approved tokens).\n     */\n    async settleDirectOnChain(params) {\n        return this.actions.settleX402PaymentDirect({\n            ...params,\n            account: this.config.walletClient.account,\n        });\n    }\n    /**\n     * Get facilitator fee quote from on-chain contract.\n     */\n    async getQuote() {\n        const feeBPS = await this.actions.facilitatorFeeBPS();\n        return { feeBPS };\n    }\n    /**\n     * Check if a nonce has been used.\n     */\n    async checkNonce(nonce) {\n        return this.actions.x402SettlementNonces({ nonce });\n    }\n    /**\n     * Settle via external facilitator (Coinbase, self-hosted, etc.).\n     * Requires facilitator config in constructor.\n     */\n    async settleViaFacilitator(payload, requirements) {\n        if (!this.facilitatorClient) {\n            throw new Error('No facilitator configured. Pass facilitator config to X402Client constructor.');\n        }\n        return this.facilitatorClient.settle(payload, requirements);\n    }\n    /**\n     * x402-aware fetch wrapper.\n     * Automatically handles 402 → sign → retry flow per x402 v2 spec.\n     *\n     * Pattern from: @x402/fetch wrapFetchWithPayment\n     *\n     * Flow:\n     * 1. Make initial request\n     * 2. If 402, extract PaymentRequired from PAYMENT-REQUIRED header\n     * 3. Select best payment option (applies policy: max amount check)\n     * 4. Sign EIP-3009 authorization\n     * 5. Retry with PAYMENT-SIGNATURE header\n     */\n    async x402Fetch(url, init) {\n        const firstResponse = await fetch(url, init);\n        if (firstResponse.status !== 402) {\n            return firstResponse;\n        }\n        // Step 2: Extract payment requirements\n        // TODO: some server implementations put PaymentRequired in the response body instead of headers\n        const paymentRequired = extractPaymentRequired(firstResponse);\n        if (!paymentRequired || !paymentRequired.accepts?.length) {\n            throw new Error('402 response missing PAYMENT-REQUIRED header or empty accepts');\n        }\n        // Step 3: Select payment option (filter by network + policy)\n        const myNetwork = toNetworkId(this.config.chainId);\n        let selected = paymentRequired.accepts.find((a) => a.network === myNetwork && a.scheme === 'exact');\n        if (!selected) {\n            // Fallback: any EVM option\n            selected = paymentRequired.accepts.find((a) => a.network.startsWith('eip155:'));\n        }\n        if (!selected) {\n            throw new Error(`No compatible payment option for network ${myNetwork}`);\n        }\n        // Policy check: max amount\n        if (this.config.maxAmountPerRequest && BigInt(selected.amount) > this.config.maxAmountPerRequest) {\n            throw new Error(`Payment amount ${selected.amount} exceeds max ${this.config.maxAmountPerRequest}`);\n        }\n        const account = this.config.walletClient.account;\n        if (!account) {\n            throw new Error('WalletClient must have an account for automatic payment');\n        }\n        // Step 4: Sign\n        const { encoded } = await this.createPayment({\n            from: account.address,\n            to: selected.payTo,\n            asset: selected.asset,\n            amount: BigInt(selected.amount),\n        });\n        // Step 5: Retry with payment signature\n        const retryHeaders = new Headers(init?.headers);\n        retryHeaders.set(HEADER_PAYMENT_SIGNATURE, encoded);\n        return fetch(url, { ...init, headers: retryHeaders });\n    }\n}\n"]}