@b3dotfun/sdk 0.1.68-alpha.10 → 0.1.68-alpha.11

package/dist/cjs/global-account/react/hooks/useAuthentication.js

@@ -147,8 +147,9 @@ function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
         }
     }, [activeWallet, partnerId, authenticate, setIsAuthenticated, setIsAuthenticating, setUser, setHasStartedConnecting]);
     const logout = (0, react_2.useCallback)(async (callback) => {
-        // Only disconnect ecosystem/smart wallets, preserve EOA wallets (e.g. MetaMask)
-        // so they remain available after re-login.
+        // Disconnect ecosystem/smart wallets from the connected wallets list.
+        // EOA wallets (MetaMask, Coinbase Wallet) are left in the list so they can
+        // auto-reconnect on next login without requiring a new approval popup.
         // Use walletsRef.current (not the stale closure value) so we always get current wallets —
         // autoConnectCore captures logout from the first render when wallets is still [].
         walletsRef.current.forEach(wallet => {
@@ -157,18 +158,25 @@ function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
                 disconnect(wallet);
             }
         });
-        // Always disconnect the active wallet to clear thirdweb's activeAccountStore.
-        // Without this, any auto-reconnected wallet (e.g. Coinbase Wallet, MetaMask)
-        // keeps activeAccount set, and ConnectEmbed renders show=false (blank modal).
+        // Unconditionally disconnect the active wallet to clear thirdweb's activeAccountStore.
+        // This is separate from the loop above: even if the active wallet is an EOA (e.g.
+        // Coinbase Wallet), we must disconnect it so activeAccount becomes undefined.
+        // Without this, ConnectEmbed renders show=false (blank modal) because it checks
+        // show = !activeAccount. Note: thirdweb's disconnect() is idempotent — calling it
+        // on an already-disconnected wallet (from the loop above) is a no-op.
         // We use the exact reference from activeWalletRef because thirdweb's
         // onWalletDisconnect uses strict identity (===) to decide whether to clear
         // activeAccountStore.
+        // Tradeoff: EOA wallets (MetaMask, Coinbase Wallet) will be removed from
+        // connectedWallets and require a new approval popup on next login.
+        // This is acceptable because a working login form is more critical than
+        // skipping one wallet approval step.
         if (activeWalletRef.current) {
             debug("@@logout:disconnecting active wallet", activeWalletRef.current.id);
             disconnect(activeWalletRef.current);
         }
-        // Clear user-specific storage but preserve wallet connection state
-        // so EOA wallets (e.g. MetaMask) can auto-reconnect on next login
+        // Clear user-specific storage (auth tokens, cached user data).
+        // Thirdweb's wallet connection state is managed separately via disconnect() above.
         if (typeof localStorage !== "undefined") {
             localStorage.removeItem("lastAuthProvider");
             localStorage.removeItem("b3-user");
@@ -192,19 +200,19 @@ function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
     [disconnect, setIsAuthenticated, setIsAuthenticating, setUser, setIsConnected, onLogoutCallback]);
     const onConnect = (0, react_2.useCallback)(async (_walleAutoConnectedWith, allConnectedWallets) => {
         debug("@@useAuthentication:onConnect", { _walleAutoConnectedWith, allConnectedWallets });
-        const ecosystemWalletToDisconnect = allConnectedWallets.find(w => w.id.startsWith("ecosystem."));
+        const connectedEcosystemWallet = allConnectedWallets.find(w => w.id.startsWith("ecosystem."));
         try {
-            if (!ecosystemWalletToDisconnect) {
+            if (!connectedEcosystemWallet) {
                 throw new Error("No smart wallet found during auto-connect");
             }
-            debug("@@useAuthentication:onConnect", { wallet: ecosystemWalletToDisconnect });
+            debug("@@useAuthentication:onConnect", { wallet: connectedEcosystemWallet });
             setHasStartedConnecting(true);
             setIsConnected(true);
             setIsAuthenticating(true);
-            await setActiveWallet(ecosystemWalletToDisconnect);
-            const userAuth = await authenticateUser(ecosystemWalletToDisconnect);
+            await setActiveWallet(connectedEcosystemWallet);
+            const userAuth = await authenticateUser(connectedEcosystemWallet);
             if (userAuth && onConnectCallback) {
-                await onConnectCallback(ecosystemWalletToDisconnect, userAuth.accessToken);
+                await onConnectCallback(connectedEcosystemWallet, userAuth.accessToken);
             }
         }
         catch (error) {
@@ -215,17 +223,21 @@ function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
             // We can't rely on logout()'s activeWalletRef here because it's updated
             // via useEffect (deferred until after paint), but this callback may run
             // entirely within a single React commit cycle — before the ref updates.
-            if (ecosystemWalletToDisconnect) {
-                debug("@@useAuthentication:onConnect:disconnecting ecosystem wallet", ecosystemWalletToDisconnect.id);
-                disconnect(ecosystemWalletToDisconnect);
+            // Note: logout() below may also call disconnect() on the same wallet via
+            // activeWalletRef — thirdweb's disconnect() is idempotent so this is safe.
+            if (connectedEcosystemWallet) {
+                debug("@@useAuthentication:onConnect:disconnecting ecosystem wallet", connectedEcosystemWallet.id);
+                disconnect(connectedEcosystemWallet);
             }
             // Also disconnect the wallet that autoConnectCore set as active.
             // When only a non-ecosystem wallet (e.g. MetaMask) auto-reconnects,
-            // ecosystemWalletToDisconnect is undefined, so the block above is skipped.
+            // connectedEcosystemWallet is undefined, so the block above is skipped.
             // But autoConnectCore already set this wallet as thirdweb's activeWallet,
             // leaving activeAccount set. ConnectEmbed checks show = !activeAccount,
             // so if we don't clear it, the login form renders blank.
-            if (_walleAutoConnectedWith && _walleAutoConnectedWith !== ecosystemWalletToDisconnect) {
+            // Uses object identity (===) which is safe because thirdweb returns
+            // stable references for connected wallet instances.
+            if (_walleAutoConnectedWith && _walleAutoConnectedWith !== connectedEcosystemWallet) {
                 debug("@@useAuthentication:onConnect:disconnecting auto-connected wallet", _walleAutoConnectedWith.id);
                 disconnect(_walleAutoConnectedWith);
             }

package/dist/esm/global-account/react/hooks/useAuthentication.js

@@ -141,8 +141,9 @@ export function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
         }
     }, [activeWallet, partnerId, authenticate, setIsAuthenticated, setIsAuthenticating, setUser, setHasStartedConnecting]);
     const logout = useCallback(async (callback) => {
-        // Only disconnect ecosystem/smart wallets, preserve EOA wallets (e.g. MetaMask)
-        // so they remain available after re-login.
+        // Disconnect ecosystem/smart wallets from the connected wallets list.
+        // EOA wallets (MetaMask, Coinbase Wallet) are left in the list so they can
+        // auto-reconnect on next login without requiring a new approval popup.
         // Use walletsRef.current (not the stale closure value) so we always get current wallets —
         // autoConnectCore captures logout from the first render when wallets is still [].
         walletsRef.current.forEach(wallet => {
@@ -151,18 +152,25 @@ export function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
                 disconnect(wallet);
             }
         });
-        // Always disconnect the active wallet to clear thirdweb's activeAccountStore.
-        // Without this, any auto-reconnected wallet (e.g. Coinbase Wallet, MetaMask)
-        // keeps activeAccount set, and ConnectEmbed renders show=false (blank modal).
+        // Unconditionally disconnect the active wallet to clear thirdweb's activeAccountStore.
+        // This is separate from the loop above: even if the active wallet is an EOA (e.g.
+        // Coinbase Wallet), we must disconnect it so activeAccount becomes undefined.
+        // Without this, ConnectEmbed renders show=false (blank modal) because it checks
+        // show = !activeAccount. Note: thirdweb's disconnect() is idempotent — calling it
+        // on an already-disconnected wallet (from the loop above) is a no-op.
         // We use the exact reference from activeWalletRef because thirdweb's
         // onWalletDisconnect uses strict identity (===) to decide whether to clear
         // activeAccountStore.
+        // Tradeoff: EOA wallets (MetaMask, Coinbase Wallet) will be removed from
+        // connectedWallets and require a new approval popup on next login.
+        // This is acceptable because a working login form is more critical than
+        // skipping one wallet approval step.
         if (activeWalletRef.current) {
             debug("@@logout:disconnecting active wallet", activeWalletRef.current.id);
             disconnect(activeWalletRef.current);
         }
-        // Clear user-specific storage but preserve wallet connection state
-        // so EOA wallets (e.g. MetaMask) can auto-reconnect on next login
+        // Clear user-specific storage (auth tokens, cached user data).
+        // Thirdweb's wallet connection state is managed separately via disconnect() above.
         if (typeof localStorage !== "undefined") {
             localStorage.removeItem("lastAuthProvider");
             localStorage.removeItem("b3-user");
@@ -186,19 +194,19 @@ export function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
     [disconnect, setIsAuthenticated, setIsAuthenticating, setUser, setIsConnected, onLogoutCallback]);
     const onConnect = useCallback(async (_walleAutoConnectedWith, allConnectedWallets) => {
         debug("@@useAuthentication:onConnect", { _walleAutoConnectedWith, allConnectedWallets });
-        const ecosystemWalletToDisconnect = allConnectedWallets.find(w => w.id.startsWith("ecosystem."));
+        const connectedEcosystemWallet = allConnectedWallets.find(w => w.id.startsWith("ecosystem."));
         try {
-            if (!ecosystemWalletToDisconnect) {
+            if (!connectedEcosystemWallet) {
                 throw new Error("No smart wallet found during auto-connect");
             }
-            debug("@@useAuthentication:onConnect", { wallet: ecosystemWalletToDisconnect });
+            debug("@@useAuthentication:onConnect", { wallet: connectedEcosystemWallet });
             setHasStartedConnecting(true);
             setIsConnected(true);
             setIsAuthenticating(true);
-            await setActiveWallet(ecosystemWalletToDisconnect);
-            const userAuth = await authenticateUser(ecosystemWalletToDisconnect);
+            await setActiveWallet(connectedEcosystemWallet);
+            const userAuth = await authenticateUser(connectedEcosystemWallet);
             if (userAuth && onConnectCallback) {
-                await onConnectCallback(ecosystemWalletToDisconnect, userAuth.accessToken);
+                await onConnectCallback(connectedEcosystemWallet, userAuth.accessToken);
             }
         }
         catch (error) {
@@ -209,17 +217,21 @@ export function useAuthentication(partnerId, { skipAutoConnect = false } = {}) {
             // We can't rely on logout()'s activeWalletRef here because it's updated
             // via useEffect (deferred until after paint), but this callback may run
             // entirely within a single React commit cycle — before the ref updates.
-            if (ecosystemWalletToDisconnect) {
-                debug("@@useAuthentication:onConnect:disconnecting ecosystem wallet", ecosystemWalletToDisconnect.id);
-                disconnect(ecosystemWalletToDisconnect);
+            // Note: logout() below may also call disconnect() on the same wallet via
+            // activeWalletRef — thirdweb's disconnect() is idempotent so this is safe.
+            if (connectedEcosystemWallet) {
+                debug("@@useAuthentication:onConnect:disconnecting ecosystem wallet", connectedEcosystemWallet.id);
+                disconnect(connectedEcosystemWallet);
             }
             // Also disconnect the wallet that autoConnectCore set as active.
             // When only a non-ecosystem wallet (e.g. MetaMask) auto-reconnects,
-            // ecosystemWalletToDisconnect is undefined, so the block above is skipped.
+            // connectedEcosystemWallet is undefined, so the block above is skipped.
             // But autoConnectCore already set this wallet as thirdweb's activeWallet,
             // leaving activeAccount set. ConnectEmbed checks show = !activeAccount,
             // so if we don't clear it, the login form renders blank.
-            if (_walleAutoConnectedWith && _walleAutoConnectedWith !== ecosystemWalletToDisconnect) {
+            // Uses object identity (===) which is safe because thirdweb returns
+            // stable references for connected wallet instances.
+            if (_walleAutoConnectedWith && _walleAutoConnectedWith !== connectedEcosystemWallet) {
                 debug("@@useAuthentication:onConnect:disconnecting auto-connected wallet", _walleAutoConnectedWith.id);
                 disconnect(_walleAutoConnectedWith);
             }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@b3dotfun/sdk",
-  "version": "0.1.68-alpha.10",
+  "version": "0.1.68-alpha.11",
   "source": "src/index.ts",
   "main": "./dist/cjs/index.js",
   "react-native": "./dist/cjs/index.native.js",

package/src/global-account/react/hooks/useAuthentication.ts

@@ -168,8 +168,9 @@ export function useAuthentication(partnerId: string, { skipAutoConnect = false }
 
   const logout = useCallback(
     async (callback?: () => void) => {
-      // Only disconnect ecosystem/smart wallets, preserve EOA wallets (e.g. MetaMask)
-      // so they remain available after re-login.
+      // Disconnect ecosystem/smart wallets from the connected wallets list.
+      // EOA wallets (MetaMask, Coinbase Wallet) are left in the list so they can
+      // auto-reconnect on next login without requiring a new approval popup.
       // Use walletsRef.current (not the stale closure value) so we always get current wallets —
       // autoConnectCore captures logout from the first render when wallets is still [].
       walletsRef.current.forEach(wallet => {
@@ -179,19 +180,26 @@ export function useAuthentication(partnerId: string, { skipAutoConnect = false }
         }
       });
 
-      // Always disconnect the active wallet to clear thirdweb's activeAccountStore.
-      // Without this, any auto-reconnected wallet (e.g. Coinbase Wallet, MetaMask)
-      // keeps activeAccount set, and ConnectEmbed renders show=false (blank modal).
+      // Unconditionally disconnect the active wallet to clear thirdweb's activeAccountStore.
+      // This is separate from the loop above: even if the active wallet is an EOA (e.g.
+      // Coinbase Wallet), we must disconnect it so activeAccount becomes undefined.
+      // Without this, ConnectEmbed renders show=false (blank modal) because it checks
+      // show = !activeAccount. Note: thirdweb's disconnect() is idempotent — calling it
+      // on an already-disconnected wallet (from the loop above) is a no-op.
       // We use the exact reference from activeWalletRef because thirdweb's
       // onWalletDisconnect uses strict identity (===) to decide whether to clear
       // activeAccountStore.
+      // Tradeoff: EOA wallets (MetaMask, Coinbase Wallet) will be removed from
+      // connectedWallets and require a new approval popup on next login.
+      // This is acceptable because a working login form is more critical than
+      // skipping one wallet approval step.
       if (activeWalletRef.current) {
         debug("@@logout:disconnecting active wallet", activeWalletRef.current.id);
         disconnect(activeWalletRef.current);
       }
 
-      // Clear user-specific storage but preserve wallet connection state
-      // so EOA wallets (e.g. MetaMask) can auto-reconnect on next login
+      // Clear user-specific storage (auth tokens, cached user data).
+      // Thirdweb's wallet connection state is managed separately via disconnect() above.
       if (typeof localStorage !== "undefined") {
         localStorage.removeItem("lastAuthProvider");
         localStorage.removeItem("b3-user");
@@ -221,21 +229,21 @@ export function useAuthentication(partnerId: string, { skipAutoConnect = false }
   const onConnect = useCallback(
     async (_walleAutoConnectedWith: Wallet, allConnectedWallets: Wallet[]) => {
       debug("@@useAuthentication:onConnect", { _walleAutoConnectedWith, allConnectedWallets });
-      const ecosystemWalletToDisconnect = allConnectedWallets.find(w => w.id.startsWith("ecosystem."));
+      const connectedEcosystemWallet = allConnectedWallets.find(w => w.id.startsWith("ecosystem."));
       try {
-        if (!ecosystemWalletToDisconnect) {
+        if (!connectedEcosystemWallet) {
           throw new Error("No smart wallet found during auto-connect");
         }
 
-        debug("@@useAuthentication:onConnect", { wallet: ecosystemWalletToDisconnect });
+        debug("@@useAuthentication:onConnect", { wallet: connectedEcosystemWallet });
         setHasStartedConnecting(true);
         setIsConnected(true);
         setIsAuthenticating(true);
-        await setActiveWallet(ecosystemWalletToDisconnect);
-        const userAuth = await authenticateUser(ecosystemWalletToDisconnect);
+        await setActiveWallet(connectedEcosystemWallet);
+        const userAuth = await authenticateUser(connectedEcosystemWallet);
 
         if (userAuth && onConnectCallback) {
-          await onConnectCallback(ecosystemWalletToDisconnect, userAuth.accessToken);
+          await onConnectCallback(connectedEcosystemWallet, userAuth.accessToken);
         }
       } catch (error) {
         debug("@@useAuthentication:onConnect:failed", { error });
@@ -245,17 +253,21 @@ export function useAuthentication(partnerId: string, { skipAutoConnect = false }
         // We can't rely on logout()'s activeWalletRef here because it's updated
         // via useEffect (deferred until after paint), but this callback may run
         // entirely within a single React commit cycle — before the ref updates.
-        if (ecosystemWalletToDisconnect) {
-          debug("@@useAuthentication:onConnect:disconnecting ecosystem wallet", ecosystemWalletToDisconnect.id);
-          disconnect(ecosystemWalletToDisconnect);
+        // Note: logout() below may also call disconnect() on the same wallet via
+        // activeWalletRef — thirdweb's disconnect() is idempotent so this is safe.
+        if (connectedEcosystemWallet) {
+          debug("@@useAuthentication:onConnect:disconnecting ecosystem wallet", connectedEcosystemWallet.id);
+          disconnect(connectedEcosystemWallet);
         }
         // Also disconnect the wallet that autoConnectCore set as active.
         // When only a non-ecosystem wallet (e.g. MetaMask) auto-reconnects,
-        // ecosystemWalletToDisconnect is undefined, so the block above is skipped.
+        // connectedEcosystemWallet is undefined, so the block above is skipped.
         // But autoConnectCore already set this wallet as thirdweb's activeWallet,
         // leaving activeAccount set. ConnectEmbed checks show = !activeAccount,
         // so if we don't clear it, the login form renders blank.
-        if (_walleAutoConnectedWith && _walleAutoConnectedWith !== ecosystemWalletToDisconnect) {
+        // Uses object identity (===) which is safe because thirdweb returns
+        // stable references for connected wallet instances.
+        if (_walleAutoConnectedWith && _walleAutoConnectedWith !== connectedEcosystemWallet) {
           debug("@@useAuthentication:onConnect:disconnecting auto-connected wallet", _walleAutoConnectedWith.id);
           disconnect(_walleAutoConnectedWith);
         }