@acta-markets/ts-sdk 0.0.20-beta → 0.0.22-beta

package/dist/cjs/generated/errors/actaContract.js

@@ -7,7 +7,7 @@
  * @see https://github.com/codama-idl/codama
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED = exports.ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT = exports.ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS = exports.ACTA_CONTRACT_ERROR__ORACLE_SOURCE_LOCKED = exports.ACTA_CONTRACT_ERROR__ORACLE_ALREADY_UPDATED = exports.ACTA_CONTRACT_ERROR__ORACLE_CLOSE_TOO_EARLY = exports.ACTA_CONTRACT_ERROR__UNAUTHORIZED = exports.ACTA_CONTRACT_ERROR__INVALID_TIMESTAMP = exports.ACTA_CONTRACT_ERROR__INVALID_PROGRAM_ID = exports.ACTA_CONTRACT_ERROR__INSUFFICIENT_FUNDS = exports.ACTA_CONTRACT_ERROR__MINT_MISMATCH = exports.ACTA_CONTRACT_ERROR__MATH_OVERFLOW = exports.ACTA_CONTRACT_ERROR__INVALID_INSTRUCTION_DATA = exports.ACTA_CONTRACT_ERROR__SIGNED_MESSAGE_MISMATCH = exports.ACTA_CONTRACT_ERROR__SIGNER_MISMATCH = exports.ACTA_CONTRACT_ERROR__INVALID_SIGNATURE_COUNT = exports.ACTA_CONTRACT_ERROR__INVALID_ORDER_ID = exports.ACTA_CONTRACT_ERROR__CANNOT_LIQUIDATE_FUNDED = exports.ACTA_CONTRACT_ERROR__POSITION_TYPE_MISMATCH = exports.ACTA_CONTRACT_ERROR__POSITION_NOT_ITM = exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_SETTLED = exports.ACTA_CONTRACT_ERROR__POSITION_NOT_FUNDED = exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_FUNDED = exports.ACTA_CONTRACT_ERROR__POSITION_NOT_OPEN = exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_OPEN = exports.ACTA_CONTRACT_ERROR__ORACLE_INVALID_PRICE = exports.ACTA_CONTRACT_ERROR__ORACLE_INACTIVE = exports.ACTA_CONTRACT_ERROR__ORACLE_STALE = exports.ACTA_CONTRACT_ERROR__ORACLE_EXPIRY_MISMATCH = exports.ACTA_CONTRACT_ERROR__INVALID_ORACLE_ACCOUNT = exports.ACTA_CONTRACT_ERROR__INVALID_ORACLE_TYPE = exports.ACTA_CONTRACT_ERROR__MARKET_NOT_EMPTY = exports.ACTA_CONTRACT_ERROR__MARKET_EXPIRED = exports.ACTA_CONTRACT_ERROR__MARKET_NOT_FINALIZED = exports.ACTA_CONTRACT_ERROR__MARKET_FINALIZED = exports.ACTA_CONTRACT_ERROR__MAKER_NOT_OWNER = exports.ACTA_CONTRACT_ERROR__MAKER_NOT_REGISTERED = exports.ACTA_CONTRACT_ERROR__MAKER_ALREADY_REGISTERED = exports.ACTA_CONTRACT_ERROR__ACCOUNT_ALREADY_INITIALIZED = exports.ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_DATA = exports.ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_COUNT = exports.ACTA_CONTRACT_ERROR__ACCOUNT_NOT_INITIALIZED = exports.ACTA_CONTRACT_ERROR__INVALID_PDA = exports.ACTA_CONTRACT_ERROR__INVALID_OWNER = exports.ACTA_CONTRACT_ERROR__NOT_SIGNED = void 0;
+exports.ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET = exports.ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED = exports.ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT = exports.ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS = exports.ACTA_CONTRACT_ERROR__ORACLE_SOURCE_LOCKED = exports.ACTA_CONTRACT_ERROR__ORACLE_ALREADY_UPDATED = exports.ACTA_CONTRACT_ERROR__ORACLE_CLOSE_TOO_EARLY = exports.ACTA_CONTRACT_ERROR__UNAUTHORIZED = exports.ACTA_CONTRACT_ERROR__INVALID_TIMESTAMP = exports.ACTA_CONTRACT_ERROR__INVALID_PROGRAM_ID = exports.ACTA_CONTRACT_ERROR__INSUFFICIENT_FUNDS = exports.ACTA_CONTRACT_ERROR__MINT_MISMATCH = exports.ACTA_CONTRACT_ERROR__MATH_OVERFLOW = exports.ACTA_CONTRACT_ERROR__INVALID_INSTRUCTION_DATA = exports.ACTA_CONTRACT_ERROR__SIGNED_MESSAGE_MISMATCH = exports.ACTA_CONTRACT_ERROR__SIGNER_MISMATCH = exports.ACTA_CONTRACT_ERROR__INVALID_SIGNATURE_COUNT = exports.ACTA_CONTRACT_ERROR__INVALID_ORDER_ID = exports.ACTA_CONTRACT_ERROR__CANNOT_LIQUIDATE_FUNDED = exports.ACTA_CONTRACT_ERROR__POSITION_TYPE_MISMATCH = exports.ACTA_CONTRACT_ERROR__POSITION_NOT_ITM = exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_SETTLED = exports.ACTA_CONTRACT_ERROR__POSITION_NOT_FUNDED = exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_FUNDED = exports.ACTA_CONTRACT_ERROR__POSITION_NOT_OPEN = exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_OPEN = exports.ACTA_CONTRACT_ERROR__ORACLE_INVALID_PRICE = exports.ACTA_CONTRACT_ERROR__ORACLE_INACTIVE = exports.ACTA_CONTRACT_ERROR__ORACLE_STALE = exports.ACTA_CONTRACT_ERROR__ORACLE_EXPIRY_MISMATCH = exports.ACTA_CONTRACT_ERROR__INVALID_ORACLE_ACCOUNT = exports.ACTA_CONTRACT_ERROR__INVALID_ORACLE_TYPE = exports.ACTA_CONTRACT_ERROR__MARKET_NOT_EMPTY = exports.ACTA_CONTRACT_ERROR__MARKET_EXPIRED = exports.ACTA_CONTRACT_ERROR__MARKET_NOT_FINALIZED = exports.ACTA_CONTRACT_ERROR__MARKET_FINALIZED = exports.ACTA_CONTRACT_ERROR__MAKER_NOT_OWNER = exports.ACTA_CONTRACT_ERROR__MAKER_NOT_REGISTERED = exports.ACTA_CONTRACT_ERROR__MAKER_ALREADY_REGISTERED = exports.ACTA_CONTRACT_ERROR__ACCOUNT_ALREADY_INITIALIZED = exports.ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_DATA = exports.ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_COUNT = exports.ACTA_CONTRACT_ERROR__ACCOUNT_NOT_INITIALIZED = exports.ACTA_CONTRACT_ERROR__INVALID_PDA = exports.ACTA_CONTRACT_ERROR__INVALID_OWNER = exports.ACTA_CONTRACT_ERROR__NOT_SIGNED = void 0;
 exports.getActaContractErrorMessage = getActaContractErrorMessage;
 exports.isActaContractError = isActaContractError;
 const kit_1 = require("@solana/kit");
@@ -102,6 +102,8 @@ exports.ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS = 0x432; // 1074
 exports.ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT = 0x433; // 1075
 /** MarketNotExpired: Market has not expired yet */
 exports.ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED = 0x434; // 1076
+/** OracleNotExpiredYet: Oracle has not expired yet (cannot update price before expiry) */
+exports.ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET = 0x435; // 1077
 let actaContractErrorMessages;
 if (process.env.NODE_ENV !== "production") {
     actaContractErrorMessages = {
@@ -138,6 +140,7 @@ if (process.env.NODE_ENV !== "production") {
         [exports.ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS]: `Oracle is still linked to active markets`,
         [exports.ACTA_CONTRACT_ERROR__ORACLE_INACTIVE]: `Oracle inactive`,
         [exports.ACTA_CONTRACT_ERROR__ORACLE_INVALID_PRICE]: `Oracle price invalid (zero or negative)`,
+        [exports.ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET]: `Oracle has not expired yet (cannot update price before expiry)`,
         [exports.ACTA_CONTRACT_ERROR__ORACLE_SOURCE_LOCKED]: `Oracle source fields are locked after first update`,
         [exports.ACTA_CONTRACT_ERROR__ORACLE_STALE]: `Oracle price is stale (updated_at before expiry)`,
         [exports.ACTA_CONTRACT_ERROR__POSITION_ALREADY_FUNDED]: `Position already funded by maker`,

package/dist/cjs/idl/acta_contract.json

@@ -2312,6 +2312,11 @@
             "code": 1076,
             "name": "MarketNotExpired",
             "msg": "Market has not expired yet"
+        },
+        {
+            "code": 1077,
+            "name": "OracleNotExpiredYet",
+            "msg": "Oracle has not expired yet (cannot update price before expiry)"
         }
     ]
 }

package/dist/cjs/idl/hash.js

@@ -1,4 +1,4 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.ACTA_IDL_SHA256 = void 0;
-exports.ACTA_IDL_SHA256 = "34f93515df3ceed9854715fb73e9fe0de615383e5ff3f0d627ecd029e65e5688";
+exports.ACTA_IDL_SHA256 = "2ccf0a77f682ff60b8201e2bca7f4bd026500a2fb9637d46dad7a8de3b2ee313";

package/dist/cjs/ws/auth.js

@@ -7,6 +7,9 @@
  * - Client signs UTF-8 bytes of that text and responds:
  *   `AuthChallenge { challenge, signature: base58(ed25519(utf8(challenge))), pubkey }`
  *
+ * The same `signMessage` primitive is reused for any UTF-8-bytes signing
+ * (e.g. `acta:redeem:v1:{pubkey}:{code}` for invite redemption).
+ *
  * Source of truth (server):
  * - rust-backend/rfq-server/src/server/ws.rs
  * - rust-backend/rfq-server/src/session/handler.rs
@@ -52,9 +55,9 @@ class KeypairAuthProvider {
     async getPublicKey() {
         return this.address;
     }
-    async signChallenge(challenge) {
-        const challengeBytes = utf8ToBytes(challenge);
-        const signatureBytes = await (0, keys_1.signBytes)(this.privateKey, challengeBytes);
+    async signMessage(message) {
+        const messageBytes = utf8ToBytes(message);
+        const signatureBytes = await (0, keys_1.signBytes)(this.privateKey, messageBytes);
         return bytesToBase58(signatureBytes);
     }
 }
@@ -76,10 +79,10 @@ class WalletAuthProvider {
             throw new Error("Wallet not connected (missing public key)");
         return pk;
     }
-    async signChallenge(challenge) {
-        const challengeBytes = utf8ToBytes(challenge);
+    async signMessage(message) {
+        const messageBytes = utf8ToBytes(message);
         // Some wallet APIs expect a mutable `Uint8Array`; codecs return `ReadonlyUint8Array`.
-        const sig = await this.wallet.signMessage(new Uint8Array(challengeBytes));
+        const sig = await this.wallet.signMessage(new Uint8Array(messageBytes));
         return bytesToBase58(sig);
     }
 }
@@ -89,16 +92,16 @@ exports.WalletAuthProvider = WalletAuthProvider;
  */
 class CustomAuthProvider {
     getPublicKeyFn;
-    signChallengeFn;
-    constructor(getPublicKey, signChallenge) {
+    signMessageFn;
+    constructor(getPublicKey, signMessage) {
         this.getPublicKeyFn = getPublicKey;
-        this.signChallengeFn = signChallenge;
+        this.signMessageFn = signMessage;
     }
     async getPublicKey() {
         return this.getPublicKeyFn();
     }
-    async signChallenge(challenge) {
-        return this.signChallengeFn(challenge);
+    async signMessage(message) {
+        return this.signMessageFn(message);
     }
 }
 exports.CustomAuthProvider = CustomAuthProvider;

package/dist/cjs/ws/client.js

@@ -4,6 +4,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.ActaWsClient = void 0;
 const flows_1 = require("./flows");
 const wirePolicy_1 = require("./wirePolicy");
+const referral_1 = require("./referral");
 function toGenericServerError(err) {
     const message = err instanceof Error ? err.message : String(err);
     return { type: "generic", data: { code: "client_error", message } };
@@ -110,8 +111,8 @@ class ActaWsClient extends TypedEventEmitter {
     pingTimer = null;
     shouldReconnect = true;
     subscribedChannels = new Set(["rfqs"]);
-    subscribedMarkets = new Set();
-    hasMarketScope = false;
+    underlyingMintScope = null; // null = all
+    quoteMintScope = null; // null = all
     marketDescriptorsByMarket = new Map();
     state = {
         stats: null,
@@ -339,9 +340,118 @@ class ActaWsClient extends TypedEventEmitter {
         });
         return requestId;
     }
+    /** Maker-only: get balances per deposited token (total, locked, available). */
+    getMakerBalances() {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        this.send({
+            type: "GetMakerBalances",
+            data: { request_id: requestId },
+        });
+        return requestId;
+    }
+    /** Maker-only: get open positions with optional filters. */
+    getMakerPositions(args) {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        const data = {
+            request_id: requestId,
+            ...args,
+        };
+        this.send({ type: "GetMakerPositions", data });
+        return requestId;
+    }
+    /** Maker-only: get trade history with keyset pagination. */
+    getMyTrades(args) {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        const data = {
+            request_id: requestId,
+            ...args,
+        };
+        this.send({ type: "GetMyTrades", data });
+        return requestId;
+    }
+    /** Maker-only: get position, notional, and balance caps. */
+    getMyCaps() {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        this.send({
+            type: "GetMyCaps",
+            data: { request_id: requestId },
+        });
+        return requestId;
+    }
+    /** Maker-only: get markets where maker has deposits, with optional filters and stats. */
+    getMarketsForMaker(args) {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        const data = {
+            request_id: requestId,
+            ...args,
+        };
+        this.send({ type: "GetMarketsForMaker", data });
+        return requestId;
+    }
+    /** Maker-only: get submitted quotes with status. */
+    getMyQuotes(args) {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        const data = {
+            request_id: requestId,
+            active_only: args?.active_only ?? true,
+        };
+        this.send({ type: "GetMyQuotes", data });
+        return requestId;
+    }
     logout() {
         this.send({ type: "Logout" });
     }
+    // ========================================================================
+    // Referral / invite
+    // ========================================================================
+    /**
+     * Redeem an invite code. Authentication is proven by the session;
+     * no additional signature is required. Validation runs client-side —
+     * invalid inputs throw `ReferralCodeError` without a round-trip.
+     */
+    redeemInvite(rawCode) {
+        this.ensureAuthenticated();
+        const parsed = (0, referral_1.parseReferralCode)(rawCode);
+        if (!parsed.ok)
+            throw new referral_1.ReferralCodeError(parsed.error);
+        const requestId = this.nextRequestId();
+        this.send({
+            type: "RedeemInvite",
+            data: { request_id: requestId, code: parsed.code },
+        });
+        return requestId;
+    }
+    /**
+     * Claim a vanity referral code (one-shot per taker). Validation
+     * runs client-side — invalid inputs throw `ReferralCodeError`.
+     */
+    async claimReferralCode(rawCode) {
+        this.ensureAuthenticated();
+        const parsed = (0, referral_1.parseReferralCode)(rawCode);
+        if (!parsed.ok)
+            throw new referral_1.ReferralCodeError(parsed.error);
+        const requestId = this.nextRequestId();
+        this.send({
+            type: "ClaimReferralCode",
+            data: { request_id: requestId, code: parsed.code },
+        });
+        return requestId;
+    }
+    getMyReferralInfo() {
+        this.ensureAuthenticated();
+        const requestId = this.nextRequestId();
+        this.send({
+            type: "GetMyReferralInfo",
+            data: { request_id: requestId },
+        });
+        return requestId;
+    }
     getOrderStatus(orderIdHex) {
         this.ensureAuthenticated();
         const requestId = this.nextRequestId();
@@ -395,21 +505,25 @@ class ActaWsClient extends TypedEventEmitter {
         });
         return requestId;
     }
-    subscribe(channels, markets) {
+    subscribe(channels, opts) {
         this.ensureAuthenticated();
         const request_id = this.nextRequestId();
         for (const c of channels)
             this.subscribedChannels.add(c);
-        if (markets) {
-            this.hasMarketScope = true;
-            this.subscribedMarkets = new Set(markets);
+        if (opts?.underlying_mints) {
+            this.underlyingMintScope = new Set(opts.underlying_mints);
         }
-        this.send({
-            type: "Subscribe",
-            data: this.hasMarketScope
-                ? { request_id, channels, markets: Array.from(this.subscribedMarkets) }
-                : { request_id, channels },
-        });
+        if (opts?.quote_mints) {
+            this.quoteMintScope = new Set(opts.quote_mints);
+        }
+        const data = { request_id, channels };
+        if (this.underlyingMintScope) {
+            data.underlying_mints = Array.from(this.underlyingMintScope);
+        }
+        if (this.quoteMintScope) {
+            data.quote_mints = Array.from(this.quoteMintScope);
+        }
+        this.send({ type: "Subscribe", data });
         return request_id;
     }
     unsubscribe(channels) {
@@ -423,6 +537,58 @@ class ActaWsClient extends TypedEventEmitter {
         });
         return request_id;
     }
+    addMints(opts) {
+        this.ensureAuthenticated();
+        const request_id = this.nextRequestId();
+        if (opts.underlying_mints) {
+            if (!this.underlyingMintScope)
+                this.underlyingMintScope = new Set();
+            for (const m of opts.underlying_mints)
+                this.underlyingMintScope.add(m);
+        }
+        if (opts.quote_mints) {
+            if (!this.quoteMintScope)
+                this.quoteMintScope = new Set();
+            for (const m of opts.quote_mints)
+                this.quoteMintScope.add(m);
+        }
+        this.send({ type: "AddMints", data: { request_id, ...opts } });
+        return request_id;
+    }
+    removeMints(opts) {
+        this.ensureAuthenticated();
+        const request_id = this.nextRequestId();
+        if (opts.underlying_mints && this.underlyingMintScope) {
+            for (const m of opts.underlying_mints)
+                this.underlyingMintScope.delete(m);
+            if (this.underlyingMintScope.size === 0)
+                this.underlyingMintScope = null;
+        }
+        if (opts.quote_mints && this.quoteMintScope) {
+            for (const m of opts.quote_mints)
+                this.quoteMintScope.delete(m);
+            if (this.quoteMintScope.size === 0)
+                this.quoteMintScope = null;
+        }
+        this.send({ type: "RemoveMints", data: { request_id, ...opts } });
+        return request_id;
+    }
+    addChannels(channels) {
+        this.ensureAuthenticated();
+        const request_id = this.nextRequestId();
+        for (const c of channels)
+            this.subscribedChannels.add(c);
+        this.send({ type: "AddChannels", data: { request_id, channels } });
+        return request_id;
+    }
+    removeChannels(channels) {
+        this.ensureAuthenticated();
+        const request_id = this.nextRequestId();
+        for (const c of channels)
+            this.subscribedChannels.delete(c);
+        this.send({ type: "RemoveChannels", data: { request_id, channels } });
+        return request_id;
+    }
     ping() {
         if (this.ws?.readyState === WS_OPEN) {
             this.send({ type: "Ping" });
@@ -573,6 +739,21 @@ class ActaWsClient extends TypedEventEmitter {
             case "MyCaps":
                 this.emit("myCaps", message.data);
                 break;
+            case "MakerBalances":
+                this.emit("makerBalances", message.data);
+                break;
+            case "MakerPositions":
+                this.emit("makerPositions", message.data);
+                break;
+            case "MyTrades":
+                this.emit("myTrades", message.data);
+                break;
+            case "MakerMarkets":
+                this.emit("makerMarkets", message.data);
+                break;
+            case "MyQuotes":
+                this.emit("myQuotes", message.data);
+                break;
             case "MyActiveRfqs":
                 this.handleMyActiveRfqs(message.data);
                 break;
@@ -730,6 +911,30 @@ class ActaWsClient extends TypedEventEmitter {
             case "UnsubscribeAck":
                 this.emit("unsubscribeAck", message.data);
                 break;
+            case "SubscriptionUpdated":
+                {
+                    const d = message.data;
+                    // Sync local state from the server's authoritative response.
+                    this.subscribedChannels = new Set(d.channels);
+                    this.underlyingMintScope =
+                        d.underlying_mints != null ? new Set(d.underlying_mints) : null;
+                    this.quoteMintScope =
+                        d.quote_mints != null ? new Set(d.quote_mints) : null;
+                    this.emit("subscriptionUpdated", d);
+                }
+                break;
+            case "RequireInvite":
+                this.emit("requireInvite");
+                break;
+            case "InviteRedeemed":
+                this.emit("inviteRedeemed", message.data);
+                break;
+            case "ReferralCodeClaimed":
+                this.emit("referralCodeClaimed", message.data);
+                break;
+            case "MyReferralInfo":
+                this.emit("myReferralInfo", message.data);
+                break;
         }
     }
     /** Taker-only: request current indicative prices for a market + position_type. */
@@ -755,7 +960,7 @@ class ActaWsClient extends TypedEventEmitter {
         try {
             const [pubkey, signature] = await Promise.all([
                 this.authProvider.getPublicKey(),
-                this.authProvider.signChallenge(challenge),
+                this.authProvider.signMessage(challenge),
             ]);
             this.send({
                 type: "AuthChallenge",
@@ -815,9 +1020,13 @@ class ActaWsClient extends TypedEventEmitter {
         if (this.subscribedChannels.size > 0) {
             const channels = Array.from(this.subscribedChannels);
             const request_id = this.nextRequestId();
-            const data = this.hasMarketScope
-                ? { request_id, channels, markets: Array.from(this.subscribedMarkets) }
-                : { request_id, channels };
+            const data = { request_id, channels };
+            if (this.underlyingMintScope) {
+                data.underlying_mints = Array.from(this.underlyingMintScope);
+            }
+            if (this.quoteMintScope) {
+                data.quote_mints = Array.from(this.quoteMintScope);
+            }
             this.send({ type: "Subscribe", data });
         }
     }

package/dist/cjs/ws/client.test.js

@@ -53,7 +53,7 @@ function parseClientMessage(payload) {
 function makeAuthProvider(pubkey = "pubkey", signature = "signature") {
     return {
         getPublicKey: jest.fn().mockResolvedValue(pubkey),
-        signChallenge: jest.fn().mockResolvedValue(signature),
+        signMessage: jest.fn().mockResolvedValue(signature),
     };
 }
 function makeHarness(overrides = {}) {

package/dist/cjs/ws/index.js

@@ -22,3 +22,4 @@ __exportStar(require("./sponsoredTx"), exports);
 __exportStar(require("./apy"), exports);
 __exportStar(require("./discovery"), exports);
 __exportStar(require("./sizing"), exports);
+__exportStar(require("./referral"), exports);

package/dist/cjs/ws/referral.js

@@ -0,0 +1,57 @@
+"use strict";
+/**
+ * Referral / invite redemption helpers.
+ *
+ * Mirrors the server-side validation defined in
+ * rust-backend/acta-types/src/invite.rs (ReferralCode::parse).
+ * Client-side validation must stay bit-identical to the server on
+ * the same input. A hardcoded fixture table is kept here and on the
+ * rust side; if either drifts, the cross-impl test will catch it.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ReferralCodeError = exports.REFERRAL_CODE_MAX_LEN = exports.REFERRAL_CODE_MIN_LEN = void 0;
+exports.normalizeReferralCode = normalizeReferralCode;
+exports.parseReferralCode = parseReferralCode;
+exports.REFERRAL_CODE_MIN_LEN = 4;
+exports.REFERRAL_CODE_MAX_LEN = 16;
+class ReferralCodeError extends Error {
+    detail;
+    constructor(detail) {
+        super(detail.kind === "length"
+            ? `code length must be between ${detail.min} and ${detail.max}`
+            : "code must contain only ASCII letters and digits");
+        this.detail = detail;
+        this.name = "ReferralCodeError";
+    }
+}
+exports.ReferralCodeError = ReferralCodeError;
+/**
+ * Trim + ASCII uppercase. No length or charset check. Useful for
+ * showing a live preview as the user types.
+ */
+function normalizeReferralCode(input) {
+    return input.trim().toUpperCase();
+}
+/**
+ * Parse + validate + normalize a user-supplied referral code.
+ * Mirrors `ReferralCode::parse` on the server. A successful result
+ * carries the canonical branded `ReferralCode`.
+ */
+function parseReferralCode(input) {
+    const normalized = normalizeReferralCode(input);
+    if (normalized.length < exports.REFERRAL_CODE_MIN_LEN ||
+        normalized.length > exports.REFERRAL_CODE_MAX_LEN) {
+        return {
+            ok: false,
+            error: {
+                kind: "length",
+                min: exports.REFERRAL_CODE_MIN_LEN,
+                max: exports.REFERRAL_CODE_MAX_LEN,
+            },
+        };
+    }
+    if (!/^[A-Z0-9]+$/.test(normalized)) {
+        return { ok: false, error: { kind: "charset" } };
+    }
+    return { ok: true, code: normalized };
+}

package/dist/cjs/ws/referral.test.js

@@ -0,0 +1,55 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const referral_1 = require("./referral");
+// =============================================================================
+// Cross-impl fixture.
+//
+// Bit-for-bit identical to the fixture in
+//   rust-backend/acta-types/src/invite.rs::tests
+// If either side changes, update both.
+// =============================================================================
+const ACCEPT_FIXTURES = [
+    ["NIKITA", "NIKITA"],
+    ["nikita", "NIKITA"],
+    ["  abc1 ", "ABC1"],
+    ["ABCD", "ABCD"],
+    ["1234567890ABCDEF", "1234567890ABCDEF"],
+];
+describe("parseReferralCode", () => {
+    test.each(ACCEPT_FIXTURES)("accepts %j → %j", (input, expected) => {
+        const res = (0, referral_1.parseReferralCode)(input);
+        expect(res.ok).toBe(true);
+        if (res.ok)
+            expect(res.code).toBe(expected);
+    });
+    test("rejects too short", () => {
+        const res = (0, referral_1.parseReferralCode)("abc");
+        expect(res.ok).toBe(false);
+        if (!res.ok)
+            expect(res.error.kind).toBe("length");
+    });
+    test("rejects too long", () => {
+        const res = (0, referral_1.parseReferralCode)("A".repeat(17));
+        expect(res.ok).toBe(false);
+        if (!res.ok)
+            expect(res.error.kind).toBe("length");
+    });
+    test("rejects non-ascii", () => {
+        const res = (0, referral_1.parseReferralCode)("абвгд");
+        expect(res.ok).toBe(false);
+        // Cyrillic passes length but fails charset.
+        if (!res.ok)
+            expect(res.error.kind).toBe("charset");
+    });
+    test("rejects punctuation", () => {
+        const res = (0, referral_1.parseReferralCode)("ABC-12");
+        expect(res.ok).toBe(false);
+        if (!res.ok)
+            expect(res.error.kind).toBe("charset");
+    });
+});
+describe("normalizeReferralCode", () => {
+    test("trims and uppercases", () => {
+        expect((0, referral_1.normalizeReferralCode)("  nikita ")).toBe("NIKITA");
+    });
+});

package/dist/generated/errors/actaContract.d.ts

@@ -96,7 +96,9 @@ export declare const ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS = 1074;
 export declare const ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT = 1075;
 /** MarketNotExpired: Market has not expired yet */
 export declare const ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED = 1076;
-export type ActaContractError = typeof ACTA_CONTRACT_ERROR__ACCOUNT_ALREADY_INITIALIZED | typeof ACTA_CONTRACT_ERROR__ACCOUNT_NOT_INITIALIZED | typeof ACTA_CONTRACT_ERROR__CANNOT_LIQUIDATE_FUNDED | typeof ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT | typeof ACTA_CONTRACT_ERROR__INSUFFICIENT_FUNDS | typeof ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_COUNT | typeof ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_DATA | typeof ACTA_CONTRACT_ERROR__INVALID_INSTRUCTION_DATA | typeof ACTA_CONTRACT_ERROR__INVALID_ORACLE_ACCOUNT | typeof ACTA_CONTRACT_ERROR__INVALID_ORACLE_TYPE | typeof ACTA_CONTRACT_ERROR__INVALID_ORDER_ID | typeof ACTA_CONTRACT_ERROR__INVALID_OWNER | typeof ACTA_CONTRACT_ERROR__INVALID_PDA | typeof ACTA_CONTRACT_ERROR__INVALID_PROGRAM_ID | typeof ACTA_CONTRACT_ERROR__INVALID_SIGNATURE_COUNT | typeof ACTA_CONTRACT_ERROR__INVALID_TIMESTAMP | typeof ACTA_CONTRACT_ERROR__MAKER_ALREADY_REGISTERED | typeof ACTA_CONTRACT_ERROR__MAKER_NOT_OWNER | typeof ACTA_CONTRACT_ERROR__MAKER_NOT_REGISTERED | typeof ACTA_CONTRACT_ERROR__MARKET_EXPIRED | typeof ACTA_CONTRACT_ERROR__MARKET_FINALIZED | typeof ACTA_CONTRACT_ERROR__MARKET_NOT_EMPTY | typeof ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED | typeof ACTA_CONTRACT_ERROR__MARKET_NOT_FINALIZED | typeof ACTA_CONTRACT_ERROR__MATH_OVERFLOW | typeof ACTA_CONTRACT_ERROR__MINT_MISMATCH | typeof ACTA_CONTRACT_ERROR__NOT_SIGNED | typeof ACTA_CONTRACT_ERROR__ORACLE_ALREADY_UPDATED | typeof ACTA_CONTRACT_ERROR__ORACLE_CLOSE_TOO_EARLY | typeof ACTA_CONTRACT_ERROR__ORACLE_EXPIRY_MISMATCH | typeof ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS | typeof ACTA_CONTRACT_ERROR__ORACLE_INACTIVE | typeof ACTA_CONTRACT_ERROR__ORACLE_INVALID_PRICE | typeof ACTA_CONTRACT_ERROR__ORACLE_SOURCE_LOCKED | typeof ACTA_CONTRACT_ERROR__ORACLE_STALE | typeof ACTA_CONTRACT_ERROR__POSITION_ALREADY_FUNDED | typeof ACTA_CONTRACT_ERROR__POSITION_ALREADY_OPEN | typeof ACTA_CONTRACT_ERROR__POSITION_ALREADY_SETTLED | typeof ACTA_CONTRACT_ERROR__POSITION_NOT_FUNDED | typeof ACTA_CONTRACT_ERROR__POSITION_NOT_ITM | typeof ACTA_CONTRACT_ERROR__POSITION_NOT_OPEN | typeof ACTA_CONTRACT_ERROR__POSITION_TYPE_MISMATCH | typeof ACTA_CONTRACT_ERROR__SIGNED_MESSAGE_MISMATCH | typeof ACTA_CONTRACT_ERROR__SIGNER_MISMATCH | typeof ACTA_CONTRACT_ERROR__UNAUTHORIZED;
+/** OracleNotExpiredYet: Oracle has not expired yet (cannot update price before expiry) */
+export declare const ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET = 1077;
+export type ActaContractError = typeof ACTA_CONTRACT_ERROR__ACCOUNT_ALREADY_INITIALIZED | typeof ACTA_CONTRACT_ERROR__ACCOUNT_NOT_INITIALIZED | typeof ACTA_CONTRACT_ERROR__CANNOT_LIQUIDATE_FUNDED | typeof ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT | typeof ACTA_CONTRACT_ERROR__INSUFFICIENT_FUNDS | typeof ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_COUNT | typeof ACTA_CONTRACT_ERROR__INVALID_ACCOUNT_DATA | typeof ACTA_CONTRACT_ERROR__INVALID_INSTRUCTION_DATA | typeof ACTA_CONTRACT_ERROR__INVALID_ORACLE_ACCOUNT | typeof ACTA_CONTRACT_ERROR__INVALID_ORACLE_TYPE | typeof ACTA_CONTRACT_ERROR__INVALID_ORDER_ID | typeof ACTA_CONTRACT_ERROR__INVALID_OWNER | typeof ACTA_CONTRACT_ERROR__INVALID_PDA | typeof ACTA_CONTRACT_ERROR__INVALID_PROGRAM_ID | typeof ACTA_CONTRACT_ERROR__INVALID_SIGNATURE_COUNT | typeof ACTA_CONTRACT_ERROR__INVALID_TIMESTAMP | typeof ACTA_CONTRACT_ERROR__MAKER_ALREADY_REGISTERED | typeof ACTA_CONTRACT_ERROR__MAKER_NOT_OWNER | typeof ACTA_CONTRACT_ERROR__MAKER_NOT_REGISTERED | typeof ACTA_CONTRACT_ERROR__MARKET_EXPIRED | typeof ACTA_CONTRACT_ERROR__MARKET_FINALIZED | typeof ACTA_CONTRACT_ERROR__MARKET_NOT_EMPTY | typeof ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED | typeof ACTA_CONTRACT_ERROR__MARKET_NOT_FINALIZED | typeof ACTA_CONTRACT_ERROR__MATH_OVERFLOW | typeof ACTA_CONTRACT_ERROR__MINT_MISMATCH | typeof ACTA_CONTRACT_ERROR__NOT_SIGNED | typeof ACTA_CONTRACT_ERROR__ORACLE_ALREADY_UPDATED | typeof ACTA_CONTRACT_ERROR__ORACLE_CLOSE_TOO_EARLY | typeof ACTA_CONTRACT_ERROR__ORACLE_EXPIRY_MISMATCH | typeof ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS | typeof ACTA_CONTRACT_ERROR__ORACLE_INACTIVE | typeof ACTA_CONTRACT_ERROR__ORACLE_INVALID_PRICE | typeof ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET | typeof ACTA_CONTRACT_ERROR__ORACLE_SOURCE_LOCKED | typeof ACTA_CONTRACT_ERROR__ORACLE_STALE | typeof ACTA_CONTRACT_ERROR__POSITION_ALREADY_FUNDED | typeof ACTA_CONTRACT_ERROR__POSITION_ALREADY_OPEN | typeof ACTA_CONTRACT_ERROR__POSITION_ALREADY_SETTLED | typeof ACTA_CONTRACT_ERROR__POSITION_NOT_FUNDED | typeof ACTA_CONTRACT_ERROR__POSITION_NOT_ITM | typeof ACTA_CONTRACT_ERROR__POSITION_NOT_OPEN | typeof ACTA_CONTRACT_ERROR__POSITION_TYPE_MISMATCH | typeof ACTA_CONTRACT_ERROR__SIGNED_MESSAGE_MISMATCH | typeof ACTA_CONTRACT_ERROR__SIGNER_MISMATCH | typeof ACTA_CONTRACT_ERROR__UNAUTHORIZED;
 export declare function getActaContractErrorMessage(code: ActaContractError): string;
 export declare function isActaContractError<TProgramErrorCode extends ActaContractError>(error: unknown, transactionMessage: {
     instructions: Record<number, {

package/dist/generated/errors/actaContract.js

@@ -97,6 +97,8 @@ export const ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS = 0x432; // 1074
 export const ACTA_CONTRACT_ERROR__DUPLICATE_ACCOUNT = 0x433; // 1075
 /** MarketNotExpired: Market has not expired yet */
 export const ACTA_CONTRACT_ERROR__MARKET_NOT_EXPIRED = 0x434; // 1076
+/** OracleNotExpiredYet: Oracle has not expired yet (cannot update price before expiry) */
+export const ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET = 0x435; // 1077
 let actaContractErrorMessages;
 if (process.env.NODE_ENV !== "production") {
     actaContractErrorMessages = {
@@ -133,6 +135,7 @@ if (process.env.NODE_ENV !== "production") {
         [ACTA_CONTRACT_ERROR__ORACLE_HAS_ACTIVE_MARKETS]: `Oracle is still linked to active markets`,
         [ACTA_CONTRACT_ERROR__ORACLE_INACTIVE]: `Oracle inactive`,
         [ACTA_CONTRACT_ERROR__ORACLE_INVALID_PRICE]: `Oracle price invalid (zero or negative)`,
+        [ACTA_CONTRACT_ERROR__ORACLE_NOT_EXPIRED_YET]: `Oracle has not expired yet (cannot update price before expiry)`,
         [ACTA_CONTRACT_ERROR__ORACLE_SOURCE_LOCKED]: `Oracle source fields are locked after first update`,
         [ACTA_CONTRACT_ERROR__ORACLE_STALE]: `Oracle price is stale (updated_at before expiry)`,
         [ACTA_CONTRACT_ERROR__POSITION_ALREADY_FUNDED]: `Position already funded by maker`,

package/dist/idl/acta_contract.json

@@ -2312,6 +2312,11 @@
             "code": 1076,
             "name": "MarketNotExpired",
             "msg": "Market has not expired yet"
+        },
+        {
+            "code": 1077,
+            "name": "OracleNotExpiredYet",
+            "msg": "Oracle has not expired yet (cannot update price before expiry)"
         }
     ]
 }

package/dist/idl/hash.d.ts

@@ -1 +1 @@
-export declare const ACTA_IDL_SHA256 = "34f93515df3ceed9854715fb73e9fe0de615383e5ff3f0d627ecd029e65e5688";
+export declare const ACTA_IDL_SHA256 = "2ccf0a77f682ff60b8201e2bca7f4bd026500a2fb9637d46dad7a8de3b2ee313";

package/dist/idl/hash.js

@@ -1 +1 @@
-export const ACTA_IDL_SHA256 = "34f93515df3ceed9854715fb73e9fe0de615383e5ff3f0d627ecd029e65e5688";
+export const ACTA_IDL_SHA256 = "2ccf0a77f682ff60b8201e2bca7f4bd026500a2fb9637d46dad7a8de3b2ee313";

package/dist/ws/auth.d.ts

@@ -6,6 +6,9 @@
  * - Client signs UTF-8 bytes of that text and responds:
  *   `AuthChallenge { challenge, signature: base58(ed25519(utf8(challenge))), pubkey }`
  *
+ * The same `signMessage` primitive is reused for any UTF-8-bytes signing
+ * (e.g. `acta:redeem:v1:{pubkey}:{code}` for invite redemption).
+ *
  * Source of truth (server):
  * - rust-backend/rfq-server/src/server/ws.rs
  * - rust-backend/rfq-server/src/session/handler.rs
@@ -13,8 +16,8 @@
 export interface AuthProvider {
     /** Base58-encoded public key (address). */
     getPublicKey(): Promise<string>;
-    /** Base58-encoded ed25519 signature over UTF-8 bytes of the challenge text. */
-    signChallenge(challenge: string): Promise<string>;
+    /** Base58-encoded ed25519 signature over UTF-8 bytes of the message. */
+    signMessage(message: string): Promise<string>;
 }
 /**
  * Auth provider backed by a `CryptoKeyPair`.
@@ -31,7 +34,7 @@ export declare class KeypairAuthProvider implements AuthProvider {
     /** Create from Solana CLI keypair JSON (array of numbers). */
     static fromJson(json: number[] | string): Promise<KeypairAuthProvider>;
     getPublicKey(): Promise<string>;
-    signChallenge(challenge: string): Promise<string>;
+    signMessage(message: string): Promise<string>;
 }
 /**
  * Wallet-like provider (browser wallets, custom signers, etc.)
@@ -43,7 +46,7 @@ export declare class WalletAuthProvider implements AuthProvider {
     private readonly wallet;
     constructor(wallet: WalletLike);
     getPublicKey(): Promise<string>;
-    signChallenge(challenge: string): Promise<string>;
+    signMessage(message: string): Promise<string>;
 }
 export type WalletLike = {
     /** Preferred: base58 address string. */
@@ -60,8 +63,8 @@ export type WalletLike = {
  */
 export declare class CustomAuthProvider implements AuthProvider {
     private readonly getPublicKeyFn;
-    private readonly signChallengeFn;
-    constructor(getPublicKey: () => Promise<string>, signChallenge: (challenge: string) => Promise<string>);
+    private readonly signMessageFn;
+    constructor(getPublicKey: () => Promise<string>, signMessage: (message: string) => Promise<string>);
     getPublicKey(): Promise<string>;
-    signChallenge(challenge: string): Promise<string>;
+    signMessage(message: string): Promise<string>;
 }