@ab-org/predicate-market-sdk 0.0.1

package/dist/auth/twitter.js

@@ -0,0 +1,94 @@
+function generateRandom(length) {
+    const array = new Uint8Array(length);
+    crypto.getRandomValues(array);
+    return Array.from(array, (b) => b.toString(16).padStart(2, "0")).join("");
+}
+function base64url(buffer) {
+    const bytes = new Uint8Array(buffer);
+    let binary = "";
+    for (const b of bytes)
+        binary += String.fromCharCode(b);
+    return btoa(binary).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+}
+async function createCodeChallenge(verifier) {
+    const encoder = new TextEncoder();
+    const data = encoder.encode(verifier);
+    const digest = await crypto.subtle.digest("SHA-256", data);
+    return base64url(digest);
+}
+const POPUP_WIDTH = 600;
+const POPUP_HEIGHT = 700;
+const MESSAGE_TYPE = "twitter-oauth-callback";
+const TWITTER_AUTH_URL = "https://twitter.com/i/oauth2/authorize";
+export function notifyTwitterCallback() {
+    const params = new URLSearchParams(window.location.search);
+    const code = params.get("code");
+    const state = params.get("state");
+    const error = params.get("error");
+    if (window.opener) {
+        window.opener.postMessage({ type: MESSAGE_TYPE, code, state, error }, window.location.origin);
+        window.close();
+    }
+}
+export async function signInWithTwitter(clientId, redirectUri) {
+    const codeVerifier = generateRandom(64);
+    const codeChallenge = await createCodeChallenge(codeVerifier);
+    const state = generateRandom(16);
+    const authUrl = new URL(TWITTER_AUTH_URL);
+    authUrl.searchParams.set("response_type", "code");
+    authUrl.searchParams.set("client_id", clientId);
+    authUrl.searchParams.set("redirect_uri", redirectUri);
+    authUrl.searchParams.set("scope", "tweet.read users.read offline.access");
+    authUrl.searchParams.set("state", state);
+    authUrl.searchParams.set("code_challenge", codeChallenge);
+    authUrl.searchParams.set("code_challenge_method", "S256");
+    const left = Math.round(screen.width / 2 - POPUP_WIDTH / 2);
+    const top = Math.round(screen.height / 2 - POPUP_HEIGHT / 2);
+    const popup = window.open(authUrl.toString(), "twitter-auth", `width=${POPUP_WIDTH},height=${POPUP_HEIGHT},left=${left},top=${top},toolbar=no,menubar=no`);
+    if (!popup) {
+        throw new Error("Failed to open Twitter login popup. Check your popup blocker.");
+    }
+    return new Promise((resolve, reject) => {
+        let settled = false;
+        const cleanup = () => {
+            window.removeEventListener("message", onMessage);
+            clearInterval(pollTimer);
+        };
+        const onMessage = (event) => {
+            if (event.origin !== window.location.origin)
+                return;
+            const data = event.data;
+            if (!data || data.type !== MESSAGE_TYPE)
+                return;
+            if (settled)
+                return;
+            settled = true;
+            cleanup();
+            if (data.error) {
+                reject(new Error(`Twitter auth error: ${data.error}`));
+                return;
+            }
+            if (!data.code) {
+                reject(new Error("No authorization code received from Twitter"));
+                return;
+            }
+            if (data.state !== state) {
+                reject(new Error("State mismatch - possible CSRF attack"));
+                return;
+            }
+            resolve({
+                code: data.code,
+                codeVerifier,
+                state,
+            });
+        };
+        const pollTimer = setInterval(() => {
+            if (popup.closed && !settled) {
+                settled = true;
+                cleanup();
+                reject(new Error("Twitter login popup was closed"));
+            }
+        }, 500);
+        window.addEventListener("message", onMessage);
+    });
+}

package/dist/constants/chains.d.ts

@@ -0,0 +1,22 @@
+export declare const testBsc: {
+    readonly chainId: "3131";
+    readonly name: "BSC_TENDERLY";
+    readonly chainName: "BSC_TENDERLY";
+    readonly nativeCurrencyName: "BSC";
+    readonly nativeCurrencySymbol: "BSC";
+    readonly nativeCurrencyDecimals: 18;
+    readonly rpcUrls: readonly ["https://virtual.binance.eu.rpc.tenderly.co/e643ea28-32eb-4fb9-8116-90be24f7defa"];
+    readonly blockExplorerUrl: "https://dashboard.tenderly.co/explorer/vnet/6593bc72-f548-497d-bff9-5be061436a48";
+    readonly platformType: "EVM";
+    readonly icon: "https://static.tomo.inc/token/bsc_new.svg";
+    readonly supportSwap: true;
+    readonly supportGift: true;
+    readonly supportHistory: true;
+};
+export declare const clientIds: {
+    readonly google: string;
+    readonly x: string;
+    readonly sdk: "MfLzAb2ItdDR3RZfE33ueqUhRf3mo1w0tBzLfExvLG72oUzvI6mgACtq19v6Vz7cmHVsfMBpbmr1fFU09sn30wbD";
+};
+export declare const BSC_USD1_ADDRESS = "0x8d0D000Ee44948FC98c9B98A4FA4921476f08B0d";
+export declare const BSC_USD1_PLATFORM_CONTRACT_ADDRESS = "0x1234567890123456789012345678901234567890";

package/dist/constants/chains.js

@@ -0,0 +1,23 @@
+import { getEnv } from "../utils/env.js";
+export const testBsc = {
+    chainId: "3131",
+    name: "BSC_TENDERLY",
+    chainName: "BSC_TENDERLY",
+    nativeCurrencyName: "BSC",
+    nativeCurrencySymbol: "BSC",
+    nativeCurrencyDecimals: 18,
+    rpcUrls: ["https://virtual.binance.eu.rpc.tenderly.co/e643ea28-32eb-4fb9-8116-90be24f7defa"],
+    blockExplorerUrl: "https://dashboard.tenderly.co/explorer/vnet/6593bc72-f548-497d-bff9-5be061436a48",
+    platformType: "EVM",
+    icon: "https://static.tomo.inc/token/bsc_new.svg",
+    supportSwap: true,
+    supportGift: true,
+    supportHistory: true,
+};
+export const clientIds = {
+    google: getEnv("GOOGLE_CLIENT_ID"),
+    x: getEnv("X_CLIENT_ID"),
+    sdk: "MfLzAb2ItdDR3RZfE33ueqUhRf3mo1w0tBzLfExvLG72oUzvI6mgACtq19v6Vz7cmHVsfMBpbmr1fFU09sn30wbD",
+};
+export const BSC_USD1_ADDRESS = "0x8d0D000Ee44948FC98c9B98A4FA4921476f08B0d";
+export const BSC_USD1_PLATFORM_CONTRACT_ADDRESS = "0x1234567890123456789012345678901234567890";

package/dist/index.d.ts

@@ -0,0 +1,19 @@
+export * from "./types.js";
+export * from "./auth/config.js";
+export * from "./auth/autoReconnect.js";
+export * from "./auth/google.js";
+export * from "./auth/twitter.js";
+export * from "./modules/deposit.js";
+export * from "./modules/withdraw.js";
+export * from "./modules/marketData.js";
+export * from "./modules/balanceQuery.js";
+export * from "./modules/withdrawExecutor.js";
+export * from "./policyAdapter.js";
+export * from "./ui/SignInModal.js";
+export * from "./ui/signInTypes.js";
+export * from "./ui/WalletSelectionModal.js";
+export * from "./ui/DepositModal.js";
+export * from "./ui/WithdrawModal.js";
+export * from "./ui/components/DropdownField.js";
+export * from "./ui/components/DepositDetailsPanel.js";
+export * from "./walletUtils.js";

package/dist/index.js

@@ -0,0 +1,19 @@
+export * from "./types.js";
+export * from "./auth/config.js";
+export * from "./auth/autoReconnect.js";
+export * from "./auth/google.js";
+export * from "./auth/twitter.js";
+export * from "./modules/deposit.js";
+export * from "./modules/withdraw.js";
+export * from "./modules/marketData.js";
+export * from "./modules/balanceQuery.js";
+export * from "./modules/withdrawExecutor.js";
+export * from "./policyAdapter.js";
+export * from "./ui/SignInModal.js";
+export * from "./ui/signInTypes.js";
+export * from "./ui/WalletSelectionModal.js";
+export * from "./ui/DepositModal.js";
+export * from "./ui/WithdrawModal.js";
+export * from "./ui/components/DropdownField.js";
+export * from "./ui/components/DepositDetailsPanel.js";
+export * from "./walletUtils.js";

package/dist/modules/api.d.ts

@@ -0,0 +1,144 @@
+/**
+ * Merchant API client (BaseUrl: https://merchant.tomo.services)
+ * 基于 axios 封装，类型与文档一致。
+ */
+import { type AxiosInstance } from "axios";
+/** 通用 API 响应：所有接口统一格式 */
+export interface ApiResponse<T> {
+    data: T | null;
+    code: number;
+    msg: string;
+    timestamp: number;
+}
+export interface TokenData {
+    symbol: string;
+    address: string;
+    decimals: number;
+}
+export interface ChainData {
+    chain_id: string;
+    network: string;
+    tokens: TokenData[];
+}
+export interface ChainsResponseData {
+    chains: ChainData[];
+    is_testnet: boolean;
+}
+export interface PlatformRegisterRequest {
+    platform_contract_address: string;
+    chain_id: string;
+}
+export interface PlatformRegisterResponseData {
+    deposit_address: string;
+    chain_id: string;
+}
+export type QuoteDirection = "deposit" | "withdraw";
+export interface QuoteRequest {
+    direction: QuoteDirection;
+    chain_id: string;
+    token_address: string;
+    token_amount?: string;
+    usd1_amount?: string;
+}
+export interface QuoteResponseData {
+    token_address: string;
+    token_symbol: string;
+    token_decimals: number;
+    rate: string;
+    chain_id: number;
+    deposit_address?: string;
+    usd1_amount?: string;
+    token_amount?: string;
+    expires_at?: string;
+}
+export type DepositOrderStatus = "received" | "processing" | "completed" | "failed" | "funded";
+export interface DepositOrderResponseData {
+    order_id: string;
+    status: DepositOrderStatus;
+    source_chain_id: string;
+    token_address: string;
+    token_amount?: string;
+    usd1_amount?: string;
+    deposit_address?: string;
+    source_tx_hash?: string;
+    created_at?: string;
+    updated_at?: string;
+}
+export type WithdrawOrderStatus = "pending" | "funded" | "processing" | "completed" | "failed" | "expired";
+export interface WithdrawOrderResponseData {
+    order_id: string;
+    status: WithdrawOrderStatus;
+    one_time_address?: string;
+    chain_id: string;
+    usd1_amount: string;
+    /** Fee (e.g. "0.01 USD1"); only present if backend includes it in GET /api/v1/orders/withdraw/:id. UI falls back to feeDisplay prop or "—". */
+    fee?: string;
+    target_chain_id: string;
+    target_address: string;
+    funding_tx_hash?: string;
+    dst_tx_hash?: string;
+    out_tx_hash?: string;
+    created_at?: string;
+    updated_at?: string;
+}
+export interface NativeSwapPayload {
+    chain_id: string;
+    token_address: string;
+    token_amount: string;
+    dst_chain_id: string;
+    dst_token_address: string;
+    recipient: string;
+}
+export interface PaymentPairData {
+    token_symbol: string;
+    token_amount: string;
+    token_address: string;
+    user_address: string;
+    chain_id: string;
+}
+export interface CreateOrderRequest {
+    intent_id: string;
+    order_type: "NATIVE_SWAP";
+    order_payload: NativeSwapPayload;
+    payment_pairs: PaymentPairData[];
+}
+export type PaymentSessionStatus = "CREATED" | "PENDING" | "FUNDED" | "CANCELED" | "CAPTURING" | "SUCCEED";
+export interface PaymentSessionResponseData {
+    payment_session_id: string;
+    created_at?: string;
+    status: PaymentSessionStatus;
+    one_time_wallet_address: string;
+    amount: string;
+    currency: string;
+    user_address?: string;
+    network?: string;
+    token_symbol?: string;
+    chain_id?: string;
+    funding_transaction_hash?: string | null;
+    capturable_amount?: string;
+    captured_amount?: string;
+}
+export interface CreateOrderResponseData {
+    order_id: string;
+    payment_sessions: PaymentSessionResponseData[];
+}
+/**
+ * 配置 Merchant API 的 baseURL（可选，默认 https://merchant.tomo.services）
+ */
+export declare function configureMerchantApi(): void;
+/**
+ * 获取当前 axios 实例（用于自定义请求）
+ */
+export declare function getMerchantApiClient(): AxiosInstance;
+/** GET /chains - 查询支持的链和代币列表 */
+export declare function getChains(): Promise<ChainsResponseData>;
+/** POST /api/v1/platform - 注册平台合约并获取充值地址 */
+export declare function registerPlatform(body: PlatformRegisterRequest): Promise<PlatformRegisterResponseData>;
+/** POST /api/v1/quote - 统一报价（充值/提现） */
+export declare function quote(body: QuoteRequest): Promise<QuoteResponseData>;
+/** GET /api/v1/orders/deposit/{order_id} - 查询充值订单状态 */
+export declare function getDepositOrder(orderId: string): Promise<DepositOrderResponseData>;
+/** GET /api/v1/orders/withdraw/{order_id} - 查询提现订单状态 */
+export declare function getWithdrawOrder(orderId: string): Promise<WithdrawOrderResponseData>;
+/** POST /order - 创建 NATIVE_SWAP 提现订单 */
+export declare function createOrder(body: CreateOrderRequest): Promise<CreateOrderResponseData>;

package/dist/modules/api.js

@@ -0,0 +1,93 @@
+/**
+ * Merchant API client (BaseUrl: https://merchant.tomo.services)
+ * 基于 axios 封装，类型与文档一致。
+ */
+import { getEnv } from "../utils/env.js";
+import axios from "axios";
+const DEFAULT_MERCHANT_BASE_URL = "https://merchant.tomo.services";
+// ─── Axios 实例与请求封装 ─────────────────────────────────────────────────────
+function createClient() {
+    const BASE_URL = getEnv("MERCHANT_BASE_URL") || DEFAULT_MERCHANT_BASE_URL;
+    return axios.create({
+        baseURL: BASE_URL,
+        timeout: 30000,
+        headers: { "Content-Type": "application/json" },
+    });
+}
+/** 解析通用响应并抛出业务错误 */
+function unwrap(res) {
+    if (res.code !== 0 || res.data === null) {
+        throw new Error(res.msg || "API error");
+    }
+    return res.data;
+}
+// 单例 client，可通过 configureMerchantApi 修改 baseURL
+let apiClient = createClient();
+/**
+ * 配置 Merchant API 的 baseURL（可选，默认 https://merchant.tomo.services）
+ */
+export function configureMerchantApi() {
+    apiClient = createClient();
+}
+/**
+ * 获取当前 axios 实例（用于自定义请求）
+ */
+export function getMerchantApiClient() {
+    return apiClient;
+}
+// ─── 接口方法（均 try-catch，失败时返回 mock）──────────────────────────────────
+/** GET /chains - 查询支持的链和代币列表 */
+export async function getChains() {
+    try {
+        const { data } = await apiClient.get("/chains");
+        return unwrap(data);
+    }
+    catch {
+        throw new Error('Failed to get chains');
+    }
+}
+/** POST /api/v1/platform - 注册平台合约并获取充值地址 */
+export async function registerPlatform(body) {
+    try {
+        const { data } = await apiClient.post("/api/v1/platform", body);
+        return unwrap(data);
+    }
+    catch {
+        throw new Error('Failed to register platform');
+    }
+}
+/** POST /api/v1/quote - 统一报价（充值/提现） */
+export async function quote(body) {
+    const { data } = await apiClient.post("/api/v1/quote", body);
+    return unwrap(data);
+}
+/** GET /api/v1/orders/deposit/{order_id} - 查询充值订单状态 */
+export async function getDepositOrder(orderId) {
+    try {
+        const { data } = await apiClient.get(`/api/v1/orders/deposit/${encodeURIComponent(orderId)}`);
+        return unwrap(data);
+    }
+    catch {
+        throw new Error('Failed to get deposit order');
+    }
+}
+/** GET /api/v1/orders/withdraw/{order_id} - 查询提现订单状态 */
+export async function getWithdrawOrder(orderId) {
+    try {
+        const { data } = await apiClient.get(`/api/v1/orders/withdraw/${encodeURIComponent(orderId)}`);
+        return unwrap(data);
+    }
+    catch {
+        throw new Error('Failed to get withdraw order');
+    }
+}
+/** POST /order - 创建 NATIVE_SWAP 提现订单 */
+export async function createOrder(body) {
+    try {
+        const { data } = await apiClient.post("/order", body);
+        return unwrap(data);
+    }
+    catch {
+        throw new Error('Failed to create order');
+    }
+}

package/dist/modules/balanceQuery.d.ts

@@ -0,0 +1,20 @@
+export interface Erc20BalanceResult {
+    raw: bigint;
+    formatted: string;
+    symbol: string;
+}
+/**
+ * Query any ERC-20 token balance via a raw JSON-RPC `eth_call`.
+ * No external library dependency – uses the global `fetch`.
+ */
+export declare function fetchErc20Balance(rpcUrl: string, tokenAddress: string, walletAddress: string): Promise<bigint>;
+export interface BscUsd1BalanceOptions {
+    rpcUrl?: string;
+    tokenAddress?: string;
+    decimals?: number;
+}
+/**
+ * Convenience wrapper – fetches the USD1 balance on BSC for a given wallet.
+ * All parameters have sensible defaults and can be overridden.
+ */
+export declare function fetchBscUsd1Balance(walletAddress: string, options?: BscUsd1BalanceOptions): Promise<Erc20BalanceResult>;

package/dist/modules/balanceQuery.js

@@ -0,0 +1,58 @@
+import { testBsc, BSC_USD1_ADDRESS } from "../constants/chains.js";
+const ERC20_BALANCE_OF_SELECTOR = "0x70a08231";
+const USD1_DECIMALS = testBsc.nativeCurrencyDecimals;
+const BSC_RPC_URL = testBsc.rpcUrls[0];
+function padAddress(address) {
+    return address.toLowerCase().replace("0x", "").padStart(64, "0");
+}
+function formatUnits(value, decimals) {
+    const divisor = 10n ** BigInt(decimals);
+    const intPart = value / divisor;
+    const fracPart = value % divisor;
+    if (fracPart === 0n)
+        return intPart.toString();
+    const fracStr = fracPart.toString().padStart(decimals, "0").replace(/0+$/, "");
+    return `${intPart}.${fracStr}`;
+}
+/** 格式化为显示用 balance，保留小数点后 2 位 */
+function formatBalanceDisplay(value, decimals) {
+    const full = formatUnits(value, decimals);
+    const n = Number(full);
+    return Number.isNaN(n) ? full : n.toFixed(2);
+}
+/**
+ * Query any ERC-20 token balance via a raw JSON-RPC `eth_call`.
+ * No external library dependency – uses the global `fetch`.
+ */
+export async function fetchErc20Balance(rpcUrl, tokenAddress, walletAddress) {
+    const data = `${ERC20_BALANCE_OF_SELECTOR}${padAddress(walletAddress)}`;
+    const response = await fetch(rpcUrl, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+            jsonrpc: "2.0",
+            id: 1,
+            method: "eth_call",
+            params: [{ to: tokenAddress, data }, "latest"],
+        }),
+    });
+    const json = (await response.json());
+    if (json.error)
+        throw new Error(json.error.message ?? "RPC error");
+    return BigInt(json.result ?? "0x0");
+}
+/**
+ * Convenience wrapper – fetches the USD1 balance on BSC for a given wallet.
+ * All parameters have sensible defaults and can be overridden.
+ */
+export async function fetchBscUsd1Balance(walletAddress, options) {
+    const rpcUrl = options?.rpcUrl ?? BSC_RPC_URL;
+    const tokenAddress = options?.tokenAddress ?? BSC_USD1_ADDRESS;
+    const decimals = options?.decimals ?? USD1_DECIMALS;
+    const raw = await fetchErc20Balance(rpcUrl, tokenAddress, walletAddress);
+    return {
+        raw,
+        formatted: formatBalanceDisplay(raw, decimals),
+        symbol: "USD1",
+    };
+}

package/dist/modules/deposit.d.ts

@@ -0,0 +1,31 @@
+import type { ChainInfo, CustodyAdapter, DepositAddressResult, MarketDataProvider, ModalController, QuoteResult, TokenInfo } from "../types.js";
+export interface DepositModalConfig {
+    preferredToken?: string;
+    preferredChain?: string;
+    onStatusChange?: (status: DepositStatus) => void;
+}
+export type DepositStatus = {
+    phase: "idle";
+} | {
+    phase: "address-issued";
+    depositId: string;
+    address: string;
+} | {
+    phase: "confirming";
+    depositId: string;
+} | {
+    phase: "settled";
+    depositId: string;
+    txHash?: string;
+} | {
+    phase: "failed";
+    reason: string;
+};
+export interface DepositController extends ModalController<DepositModalConfig> {
+    readonly status: DepositStatus;
+    fetchTokens(): Promise<TokenInfo[]>;
+    fetchChains(token: string): Promise<ChainInfo[]>;
+    fetchQuote(token: string, chain: string, amount: string): Promise<QuoteResult>;
+    fetchDepositAddress(token: string, chain: string): Promise<DepositAddressResult>;
+}
+export declare const createDepositController: (custody: CustodyAdapter, marketData: MarketDataProvider) => DepositController;

package/dist/modules/deposit.js

@@ -0,0 +1,57 @@
+import { sessionStore } from "@ab-org/sdk-core";
+function requireSession() {
+    const session = sessionStore.getState().session;
+    if (!session)
+        throw new Error("Login required");
+    return session;
+}
+export const createDepositController = (custody, marketData) => {
+    let status = { phase: "idle" };
+    const notify = (next, cb) => {
+        status = next;
+        cb?.(status);
+    };
+    const open = async (config) => {
+        const session = requireSession();
+        const chain = config?.preferredChain ??
+            session.chainContext?.settlementChain ??
+            session.chain ??
+            "AB_CORE";
+        const token = config?.preferredToken ?? "USD1";
+        try {
+            const { address } = await marketData.getDepositAddress(token, chain);
+            const depositId = `${chain}:${token}:${Date.now()}`;
+            notify({ phase: "address-issued", depositId, address }, config?.onStatusChange);
+            notify({ phase: "confirming", depositId }, config?.onStatusChange);
+            const { status: finalStatus, txHash } = await custody.getDepositStatus(depositId);
+            notify(finalStatus === "SETTLED"
+                ? { phase: "settled", depositId, txHash }
+                : { phase: "failed", reason: finalStatus }, config?.onStatusChange);
+        }
+        catch (error) {
+            notify({ phase: "failed", reason: error.message }, config?.onStatusChange);
+        }
+    };
+    return {
+        get status() {
+            return status;
+        },
+        open,
+        fetchTokens() {
+            requireSession();
+            return marketData.getSupportedTokens("deposit");
+        },
+        fetchChains(token) {
+            requireSession();
+            return marketData.getSupportedChains(token, "deposit");
+        },
+        fetchQuote(token, chain, amount) {
+            requireSession();
+            return marketData.getQuote({ token, chain, amount, direction: "deposit" });
+        },
+        fetchDepositAddress(token, chain) {
+            requireSession();
+            return marketData.getDepositAddress(token, chain);
+        },
+    };
+};

package/dist/modules/marketData.d.ts

@@ -0,0 +1,8 @@
+import type { MarketDataProvider } from "../types.js";
+/**
+ * Market data provider backed by merchant API.
+ * - getSupportedTokens / getSupportedChains: from GET https://merchant.tomo.services/chains
+ * - getQuote: mock (no quote API yet)
+ * - getDepositAddress: from session (no deposit-address API in this service)
+ */
+export declare function createMockMarketDataProvider(): MarketDataProvider;