@b3dotfun/sdk 0.1.70-alpha.3 → 0.1.70-alpha.5

package/dist/esm/global-account/client-manager.js

@@ -2,22 +2,26 @@ import { createClient } from "@b3dotfun/b3-api";
 import rest from "@feathersjs/rest-client";
 import socketio from "@feathersjs/socketio-client";
 import io from "socket.io-client";
-import { authenticate as authenticateB3, B3_API_URL, clientOptions } from "../app.shared.js";
+import { authenticate as authenticateB3, getB3ApiUrl, clientOptions } from "../app.shared.js";
 // Global state to track which client type is active
 let currentClientType = "rest";
 let currentClient = null;
 // Socket client instance
 let socketClient = null;
 let socketInstance = null;
+let socketClientUrl = null;
 // REST client instance
 let restClient = null;
+let restClientUrl = null;
 /**
  * Creates a socket client
  */
 function createSocketClient() {
-    if (!socketClient) {
-        socketInstance = io(B3_API_URL, { transports: ["websocket"] });
+    const url = getB3ApiUrl();
+    if (!socketClient || socketClientUrl !== url) {
+        socketInstance = io(url, { transports: ["websocket"] });
         socketClient = createClient(socketio(socketInstance), clientOptions);
+        socketClientUrl = url;
     }
     return socketClient;
 }
@@ -33,12 +37,22 @@ function resolveFetch() {
     return require("cross-fetch").fetch;
 }
 function createRestClient() {
-    if (!restClient) {
-        const connection = rest(B3_API_URL).fetch(resolveFetch());
+    const url = getB3ApiUrl();
+    if (!restClient || restClientUrl !== url) {
+        const connection = rest(url).fetch(resolveFetch());
         restClient = createClient(connection, clientOptions);
+        restClientUrl = url;
     }
     return restClient;
 }
+/** Reset all cached clients (called when API URL changes). */
+export function resetClients() {
+    socketClient = null;
+    socketClientUrl = null;
+    restClient = null;
+    restClientUrl = null;
+    currentClient = null;
+}
 /**
  * Sets the active client type and creates the appropriate client
  *

package/dist/esm/global-account/react/components/B3Provider/B3Provider.d.ts

@@ -10,7 +10,7 @@ import { ClientType } from "../../../client-manager";
 /**
  * Main B3Provider component
  */
-export declare function B3Provider({ theme, children, accountOverride, environment, automaticallySetFirstEoa, defaultEoaProvider, simDuneApiKey, toaster: _toaster, clientType, rpcUrls, partnerId, stripePublishableKey, onConnect, onLogout, connectors, overrideDefaultConnectors, createClientReferenceId, defaultPermissions, disableBSMNTAuthentication, queryClient, authStrategy, }: {
+export declare function B3Provider({ theme, children, accountOverride, environment, automaticallySetFirstEoa, defaultEoaProvider, simDuneApiKey, toaster: _toaster, clientType, rpcUrls, partnerId, stripePublishableKey, onConnect, onLogout, connectors, overrideDefaultConnectors, createClientReferenceId, defaultPermissions, disableBSMNTAuthentication, queryClient, authStrategy, apiUrl, }: {
     theme: "light" | "dark";
     children: React.ReactNode;
     accountOverride?: Account;
@@ -39,4 +39,13 @@ export declare function B3Provider({ theme, children, accountOverride, environme
     queryClient?: QueryClient;
     /** Auth strategy: "thirdweb" (default, ecosystem wallet) or "better-auth" (email/password via Better Auth) */
     authStrategy?: AuthStrategy;
+    /**
+     * Override the B3 API URL. When provided, all SDK requests (auth, Feathers,
+     * BetterAuth) will use this URL instead of the `NEXT_PUBLIC_B3_API` env var.
+     *
+     * Useful for local development: pass `http://localhost:3031` to route
+     * OAuth callbacks and session checks through your local B3 API.
+     * If omitted, defaults to `NEXT_PUBLIC_B3_API` or `https://api.b3.fun`.
+     */
+    apiUrl?: string;
 }): import("react/jsx-runtime").JSX.Element;

package/dist/esm/global-account/react/components/B3Provider/B3Provider.js

@@ -5,7 +5,9 @@ import { loadGA4Script } from "../../../../global-account/utils/analytics.js";
 import { WalletProvider } from "../../../../wallet/react/index.js";
 import "@relayprotocol/relay-kit-ui/styles.css";
 import { useEffect, useMemo } from "react";
-import { setClientType } from "../../../client-manager.js";
+import { resetClients, setClientType } from "../../../client-manager.js";
+import { setB3ApiUrl } from "../../../../app.shared.js";
+import { resetBetterAuthClient } from "../../../better-auth-client.js";
 import { StyleRoot } from "../StyleRoot.js";
 import { setToastContext, ToastProvider, useToastContext } from "../Toast/index.js";
 import AuthenticationProvider from "./AuthenticationProvider.js";
@@ -17,7 +19,19 @@ import { LocalSDKProvider } from "./LocalSDKProvider.js";
  */
 export function B3Provider({ theme = "light", children, accountOverride, environment, automaticallySetFirstEoa, defaultEoaProvider, simDuneApiKey, 
 // deprecated since v0.0.87
-toaster: _toaster, clientType = "rest", rpcUrls, partnerId, stripePublishableKey, onConnect, onLogout, connectors, overrideDefaultConnectors = false, createClientReferenceId, defaultPermissions, disableBSMNTAuthentication = false, queryClient, authStrategy = "thirdweb", }) {
+toaster: _toaster, clientType = "rest", rpcUrls, partnerId, stripePublishableKey, onConnect, onLogout, connectors, overrideDefaultConnectors = false, createClientReferenceId, defaultPermissions, disableBSMNTAuthentication = false, queryClient, authStrategy = "thirdweb", apiUrl, }) {
+    // Override the B3 API URL when the `apiUrl` prop is provided.
+    // Must run before client initialization and auth providers mount.
+    useEffect(() => {
+        setB3ApiUrl(apiUrl ?? null);
+        if (apiUrl) {
+            resetBetterAuthClient();
+            resetClients();
+        }
+        return () => {
+            setB3ApiUrl(null);
+        };
+    }, [apiUrl]);
     // Initialize Google Analytics on mount
     useEffect(() => {
         loadGA4Script();

package/dist/esm/global-account/react/components/B3Provider/BetterAuthProvider.js

@@ -4,7 +4,7 @@ import { B3_AUTH_COOKIE_NAME } from "../../../../shared/constants/index.js";
 import { debugB3React } from "../../../../shared/utils/debug.js";
 import Cookies from "js-cookie";
 import { useEffect, useRef } from "react";
-import { betterAuthClient } from "../../../better-auth-client.js";
+import { getBetterAuthClient } from "../../../better-auth-client.js";
 import { useUserQuery } from "../../hooks/useUserQuery.js";
 const debug = debugB3React("BetterAuthProvider");
 /**
@@ -40,7 +40,7 @@ const BetterAuthProvider = ({ partnerId }) => {
         app.logout = async () => {
             debug("Patched logout: clearing Better Auth session");
             try {
-                await betterAuthClient.signOut();
+                await getBetterAuthClient().signOut();
             }
             catch {
                 debug("Better Auth signOut failed (non-critical)");
@@ -74,9 +74,50 @@ const BetterAuthProvider = ({ partnerId }) => {
             catch {
                 debug("No existing Feathers JWT");
             }
-            // 2. Check for a Better Auth session (e.g. after OAuth redirect sets a cookie)
+            // 2. Check for _ba_token in URL (OAuth callback with third-party cookie bypass).
+            //    When the API and frontend are on different domains, browsers with third-party
+            //    cookie blocking (Firefox TCP, Safari ITP, Chrome Privacy Sandbox) prevent the
+            //    better-auth.session_token cookie from being sent on cross-origin requests.
+            //    The B3 API injects the session token into the redirect URL as _ba_token,
+            //    allowing direct exchange without relying on cookies.
+            const params = new URLSearchParams(window.location.search);
+            const baToken = params.get("_ba_token");
+            if (baToken) {
+                debug("Found _ba_token in URL, exchanging for Feathers JWT");
+                // Clean the token from the URL immediately (security)
+                params.delete("_ba_token");
+                const cleanSearch = params.toString();
+                const cleanUrl = window.location.pathname + (cleanSearch ? `?${cleanSearch}` : "") + window.location.hash;
+                window.history.replaceState({}, "", cleanUrl);
+                try {
+                    const response = await app.authenticate({
+                        strategy: "better-auth",
+                        accessToken: baToken,
+                        partnerId,
+                    });
+                    if (response.accessToken) {
+                        Cookies.set(B3_AUTH_COOKIE_NAME, response.accessToken, {
+                            secure: true,
+                            sameSite: "Lax",
+                        });
+                    }
+                    if (response.user) {
+                        setUser(response.user);
+                        setIsAuthenticated(true);
+                        setIsConnected(true);
+                    }
+                    debug("_ba_token exchanged for Feathers JWT", { userId: response.user?.userId });
+                    setIsAuthenticating(false);
+                    return;
+                }
+                catch (err) {
+                    debug("_ba_token exchange failed", err);
+                }
+            }
+            // 3. Check for a Better Auth session via cookie (works when API and frontend
+            //    share a domain or when cookies aren't partitioned)
             try {
-                const session = await betterAuthClient.getSession();
+                const session = await getBetterAuthClient().getSession();
                 if (session.data?.session?.token) {
                     debug("Better Auth session found, exchanging for Feathers JWT", {
                         betterAuthUserId: session.data.user?.id,
@@ -105,7 +146,7 @@ const BetterAuthProvider = ({ partnerId }) => {
             catch {
                 debug("No Better Auth session to restore");
             }
-            // 3. Nothing found — show login UI
+            // 4. Nothing found — show login UI
             setIsAuthenticating(false);
         };
         restoreSession();

package/dist/esm/global-account/react/components/SignInWithB3/SignInWithB3Flow.js

@@ -4,7 +4,6 @@ import { LoginStepBetterAuth } from "./steps/LoginStepBetterAuth.js";
 import { debugB3React } from "../../../../shared/utils/debug.js";
 import { useCallback, useEffect, useRef, useState } from "react";
 import { useActiveAccount } from "thirdweb/react";
-import { SignInWithB3Privy } from "./SignInWithB3Privy.js";
 import { LoginStep, LoginStepContainer } from "./steps/LoginStep.js";
 import { LoginStepCustom } from "./steps/LoginStepCustom.js";
 const debug = debugB3React("SignInWithB3Flow");
@@ -251,10 +250,7 @@ export function SignInWithB3Flow({ strategies, onLoginSuccess, onSessionKeySucce
         }
         else {
             // Custom strategy
-            if (strategies?.[0] === "privy") {
-                content = _jsx(SignInWithB3Privy, { onSuccess: handleLoginSuccess, chain: chain });
-            }
-            else if (strategies) {
+            if (strategies) {
                 // Strategies are explicitly provided
                 content = (_jsx(LoginStepCustom, { strategies: strategies, chain: chain, onSuccess: handleLoginSuccess, onError: onError, automaticallySetFirstEoa: !!automaticallySetFirstEoa }));
             }

package/dist/esm/global-account/react/components/SignInWithB3/utils/signInUtils.d.ts

@@ -2,10 +2,11 @@ import { Chain } from "thirdweb";
 import { SingleStepAuthArgsType, Wallet } from "thirdweb/wallets";
 type WalletType = Wallet["id"];
 type StrategyType = SingleStepAuthArgsType["strategy"];
-type CustomStrategyType = "basement" | "privy";
+declare const customStrategies: readonly ["basement"];
+type CustomStrategyType = (typeof customStrategies)[number];
 type AllowedStrategies = StrategyType | WalletType | CustomStrategyType | "email";
 type NonWalletStrategyType = Exclude<AllowedStrategies, WalletType>;
-export declare const allowedStrategies: readonly ["apple", "google", "github", "x", "discord", "email", "guest", "walletConnect", "io.metamask", "com.coinbase.wallet", "basement", "privy"];
+export declare const allowedStrategies: readonly ["apple", "google", "github", "x", "discord", "email", "guest", "walletConnect", "io.metamask", "com.coinbase.wallet", "basement"];
 export type AllowedStrategy = (typeof allowedStrategies)[number];
 export declare function isWalletType(strategy: AllowedStrategies): strategy is WalletType;
 export declare function isStrategyType(strategy: AllowedStrategies): strategy is NonWalletStrategyType;

package/dist/esm/global-account/react/components/SignInWithB3/utils/signInUtils.js

@@ -1,6 +1,5 @@
 import { createWallet } from "thirdweb/wallets";
-const customStrategies = ["basement", "privy"];
-// type CustomStrategy = (typeof customStrategies)[number];
+const customStrategies = ["basement"];
 export const allowedStrategies = [
     // Auth strategies
     "apple",
@@ -15,7 +14,6 @@ export const allowedStrategies = [
     "io.metamask",
     "com.coinbase.wallet",
     // Custom strategies
-    // TODO: Audit we don't use "privy" directly anymore
     ...customStrategies,
 ];
 export function isWalletType(strategy) {

package/dist/esm/global-account/react/components/index.d.ts

@@ -14,7 +14,6 @@ export { PermissionItem } from "./SignInWithB3/components/PermissionItem";
 export { WalletRow } from "./SignInWithB3/components/WalletRow";
 export { SignInWithB3 } from "./SignInWithB3/SignInWithB3";
 export { SignInWithB3Flow } from "./SignInWithB3/SignInWithB3Flow";
-export { SignInWithB3Privy } from "./SignInWithB3/SignInWithB3Privy";
 export { LoginStepContainer } from "./SignInWithB3/steps/LoginStep";
 export { getConnectOptionsFromStrategy, isWalletType, type AllowedStrategy } from "./SignInWithB3/utils/signInUtils";
 export { ManageAccount } from "./ManageAccount/ManageAccount";

package/dist/esm/global-account/react/components/index.js

@@ -16,7 +16,6 @@ export { PermissionItem } from "./SignInWithB3/components/PermissionItem.js";
 export { WalletRow } from "./SignInWithB3/components/WalletRow.js";
 export { SignInWithB3 } from "./SignInWithB3/SignInWithB3.js";
 export { SignInWithB3Flow } from "./SignInWithB3/SignInWithB3Flow.js";
-export { SignInWithB3Privy } from "./SignInWithB3/SignInWithB3Privy.js";
 export { LoginStepContainer } from "./SignInWithB3/steps/LoginStep.js";
 export { getConnectOptionsFromStrategy, isWalletType } from "./SignInWithB3/utils/signInUtils.js";
 // ManageAccount Components

package/dist/esm/global-account/react/hooks/index.d.ts

@@ -17,7 +17,6 @@ export { useFirstEOA } from "./useFirstEOA";
 export { useGetAllTWSigners, type TWSignerWithMetadata } from "./useGetAllTWSigners";
 export { useGetGeo } from "./useGetGeo";
 export { useGlobalAccount } from "./useGlobalAccount";
-export { useHandleConnectWithPrivy } from "./useHandleConnectWithPrivy";
 export { useHasMounted } from "./useHasMounted";
 export { useIsMobile } from "./useIsMobile";
 export { useIsomorphicLayoutEffect } from "./useIsomorphicLayoutEffect";

package/dist/esm/global-account/react/hooks/index.js

@@ -17,7 +17,6 @@ export { useFirstEOA } from "./useFirstEOA.js";
 export { useGetAllTWSigners } from "./useGetAllTWSigners.js";
 export { useGetGeo } from "./useGetGeo.js";
 export { useGlobalAccount } from "./useGlobalAccount.js";
-export { useHandleConnectWithPrivy } from "./useHandleConnectWithPrivy.js";
 export { useHasMounted } from "./useHasMounted.js";
 export { useIsMobile } from "./useIsMobile.js";
 export { useIsomorphicLayoutEffect } from "./useIsomorphicLayoutEffect.js";

package/dist/esm/global-account/react/hooks/useBetterAuth.js

@@ -2,7 +2,7 @@ import app from "../../../global-account/app.js";
 import { useAuthStore, useB3Config } from "../../../global-account/react/index.js";
 import { debugB3React } from "../../../shared/utils/debug.js";
 import { useCallback } from "react";
-import { betterAuthClient } from "../../better-auth-client.js";
+import { getBetterAuthClient } from "../../better-auth-client.js";
 import { useUserQuery } from "./useUserQuery.js";
 const debug = debugB3React("useBetterAuth");
 /** Thrown when email verification is required before the user can sign in. */
@@ -49,7 +49,7 @@ export function useBetterAuth() {
         setHasStartedConnecting(true);
         setIsAuthenticating(true);
         try {
-            const result = await betterAuthClient.signIn.email({ email, password });
+            const result = await getBetterAuthClient().signIn.email({ email, password });
             if (result.error) {
                 throw new Error(result.error.message || "Sign in failed");
             }
@@ -70,7 +70,7 @@ export function useBetterAuth() {
         setHasStartedConnecting(true);
         setIsAuthenticating(true);
         try {
-            const result = await betterAuthClient.signUp.email({ email, password, name });
+            const result = await getBetterAuthClient().signUp.email({ email, password, name });
             if (result.error) {
                 throw new Error(result.error.message || "Sign up failed");
             }
@@ -79,7 +79,7 @@ export function useBetterAuth() {
                 // requireEmailVerification is enabled — send verification email with
                 // a callbackURL Better Auth redirects to after server-side verify.
                 // Pass verifyCallbackURL to land on a dedicated confirmation page.
-                await betterAuthClient.sendVerificationEmail({
+                await getBetterAuthClient().sendVerificationEmail({
                     email,
                     callbackURL: verifyCallbackURL || `${window.location.origin}?authStrategy=better-auth`,
                 });
@@ -98,7 +98,7 @@ export function useBetterAuth() {
         setHasStartedConnecting(true);
         setIsAuthenticating(true);
         try {
-            const result = await betterAuthClient.signIn.social({
+            const result = await getBetterAuthClient().signIn.social({
                 provider,
                 callbackURL: window.location.href,
             });
@@ -116,7 +116,7 @@ export function useBetterAuth() {
     }, [setIsAuthenticating, setHasStartedConnecting]);
     const requestPasswordReset = useCallback(async (email, redirectTo) => {
         debug("Requesting password reset", { email });
-        const result = await betterAuthClient.requestPasswordReset({
+        const result = await getBetterAuthClient().requestPasswordReset({
             email,
             redirectTo,
         });
@@ -128,7 +128,7 @@ export function useBetterAuth() {
     }, []);
     const resetPassword = useCallback(async (newPassword, token) => {
         debug("Resetting password");
-        const result = await betterAuthClient.resetPassword({
+        const result = await getBetterAuthClient().resetPassword({
             newPassword,
             token,
         });
@@ -145,6 +145,6 @@ export function useBetterAuth() {
         requestPasswordReset,
         resetPassword,
         exchangeForFeathersJWT,
-        betterAuthClient,
+        betterAuthClient: getBetterAuthClient(),
     };
 }

package/dist/esm/global-account/types/b3-api.types.d.ts

@@ -3,9 +3,13 @@
  */
 type ObjectId = string;
 interface PartnerIds {
+    /** @deprecated Privy is no longer used for authentication. This field exists for legacy data compatibility only. */
     privyId?: string;
     thirdwebId?: string;
 }
+/**
+ * @deprecated Privy is no longer used for authentication. This type exists for legacy data compatibility only.
+ */
 interface PrivyLinkedAccount {
     type: string;
     address?: string;
@@ -45,6 +49,7 @@ interface User {
     createdAt: number;
     updatedAt: number;
     partnerIds: PartnerIds;
+    /** @deprecated Privy is no longer used for authentication. This field exists for legacy data compatibility only. */
     privyLinkedAccounts?: PrivyLinkedAccount[];
     twProfiles?: TWProfile[];
 }

package/dist/types/app.shared.d.ts

@@ -1,6 +1,14 @@
 import { ClientApplication } from "@b3dotfun/b3-api";
 import { AuthenticationClient } from "@feathersjs/authentication-client";
+/** Default API URL derived from environment variables. */
 export declare const B3_API_URL: string;
+/**
+ * Override the B3 API URL at runtime. Called by `B3Provider` when an
+ * `apiUrl` prop is provided. Pass `null` to revert to the default.
+ */
+export declare function setB3ApiUrl(url: string | null): void;
+/** Get the current B3 API URL (prefers runtime override, then env var). */
+export declare function getB3ApiUrl(): string;
 export declare const authenticate: (app: ClientApplication, accessToken: string, identityToken: string, params?: Record<string, any>) => Promise<import("@feathersjs/authentication").AuthenticationResult | null>;
 export declare class MyAuthenticationClient extends AuthenticationClient {
     getFromLocation(location: any): Promise<any>;

package/dist/types/global-account/better-auth-client.d.ts

@@ -940,6 +940,14 @@ export declare function createB3BetterAuthClient(baseURL?: string): {
         };
     };
 };
+/** Get the shared BetterAuth client, creating it if needed. */
+export declare function getBetterAuthClient(): B3BetterAuthClient;
+/** Force-recreate the client on next access (e.g. after API URL change). */
+export declare function resetBetterAuthClient(): void;
+/**
+ * @deprecated Use `getBetterAuthClient()` instead. This static singleton
+ * does not reflect runtime API URL changes via `B3Provider apiUrl` prop.
+ */
 export declare const betterAuthClient: {
     signIn: {
         social: <FetchOptions extends import("@better-auth/core").ClientFetchOption<Partial<{

package/dist/types/global-account/client-manager.d.ts

@@ -1,5 +1,7 @@
 import { ClientApplication } from "@b3dotfun/b3-api";
 export type ClientType = "socket" | "rest";
+/** Reset all cached clients (called when API URL changes). */
+export declare function resetClients(): void;
 /**
  * Sets the active client type and creates the appropriate client
  *

package/dist/types/global-account/react/components/B3Provider/B3Provider.d.ts

@@ -10,7 +10,7 @@ import { ClientType } from "../../../client-manager";
 /**
  * Main B3Provider component
  */
-export declare function B3Provider({ theme, children, accountOverride, environment, automaticallySetFirstEoa, defaultEoaProvider, simDuneApiKey, toaster: _toaster, clientType, rpcUrls, partnerId, stripePublishableKey, onConnect, onLogout, connectors, overrideDefaultConnectors, createClientReferenceId, defaultPermissions, disableBSMNTAuthentication, queryClient, authStrategy, }: {
+export declare function B3Provider({ theme, children, accountOverride, environment, automaticallySetFirstEoa, defaultEoaProvider, simDuneApiKey, toaster: _toaster, clientType, rpcUrls, partnerId, stripePublishableKey, onConnect, onLogout, connectors, overrideDefaultConnectors, createClientReferenceId, defaultPermissions, disableBSMNTAuthentication, queryClient, authStrategy, apiUrl, }: {
     theme: "light" | "dark";
     children: React.ReactNode;
     accountOverride?: Account;
@@ -39,4 +39,13 @@ export declare function B3Provider({ theme, children, accountOverride, environme
     queryClient?: QueryClient;
     /** Auth strategy: "thirdweb" (default, ecosystem wallet) or "better-auth" (email/password via Better Auth) */
     authStrategy?: AuthStrategy;
+    /**
+     * Override the B3 API URL. When provided, all SDK requests (auth, Feathers,
+     * BetterAuth) will use this URL instead of the `NEXT_PUBLIC_B3_API` env var.
+     *
+     * Useful for local development: pass `http://localhost:3031` to route
+     * OAuth callbacks and session checks through your local B3 API.
+     * If omitted, defaults to `NEXT_PUBLIC_B3_API` or `https://api.b3.fun`.
+     */
+    apiUrl?: string;
 }): import("react/jsx-runtime").JSX.Element;

package/dist/types/global-account/react/components/SignInWithB3/utils/signInUtils.d.ts

@@ -2,10 +2,11 @@ import { Chain } from "thirdweb";
 import { SingleStepAuthArgsType, Wallet } from "thirdweb/wallets";
 type WalletType = Wallet["id"];
 type StrategyType = SingleStepAuthArgsType["strategy"];
-type CustomStrategyType = "basement" | "privy";
+declare const customStrategies: readonly ["basement"];
+type CustomStrategyType = (typeof customStrategies)[number];
 type AllowedStrategies = StrategyType | WalletType | CustomStrategyType | "email";
 type NonWalletStrategyType = Exclude<AllowedStrategies, WalletType>;
-export declare const allowedStrategies: readonly ["apple", "google", "github", "x", "discord", "email", "guest", "walletConnect", "io.metamask", "com.coinbase.wallet", "basement", "privy"];
+export declare const allowedStrategies: readonly ["apple", "google", "github", "x", "discord", "email", "guest", "walletConnect", "io.metamask", "com.coinbase.wallet", "basement"];
 export type AllowedStrategy = (typeof allowedStrategies)[number];
 export declare function isWalletType(strategy: AllowedStrategies): strategy is WalletType;
 export declare function isStrategyType(strategy: AllowedStrategies): strategy is NonWalletStrategyType;

package/dist/types/global-account/react/components/index.d.ts

@@ -14,7 +14,6 @@ export { PermissionItem } from "./SignInWithB3/components/PermissionItem";
 export { WalletRow } from "./SignInWithB3/components/WalletRow";
 export { SignInWithB3 } from "./SignInWithB3/SignInWithB3";
 export { SignInWithB3Flow } from "./SignInWithB3/SignInWithB3Flow";
-export { SignInWithB3Privy } from "./SignInWithB3/SignInWithB3Privy";
 export { LoginStepContainer } from "./SignInWithB3/steps/LoginStep";
 export { getConnectOptionsFromStrategy, isWalletType, type AllowedStrategy } from "./SignInWithB3/utils/signInUtils";
 export { ManageAccount } from "./ManageAccount/ManageAccount";

package/dist/types/global-account/react/hooks/index.d.ts

@@ -17,7 +17,6 @@ export { useFirstEOA } from "./useFirstEOA";
 export { useGetAllTWSigners, type TWSignerWithMetadata } from "./useGetAllTWSigners";
 export { useGetGeo } from "./useGetGeo";
 export { useGlobalAccount } from "./useGlobalAccount";
-export { useHandleConnectWithPrivy } from "./useHandleConnectWithPrivy";
 export { useHasMounted } from "./useHasMounted";
 export { useIsMobile } from "./useIsMobile";
 export { useIsomorphicLayoutEffect } from "./useIsomorphicLayoutEffect";

package/dist/types/global-account/types/b3-api.types.d.ts

@@ -3,9 +3,13 @@
  */
 type ObjectId = string;
 interface PartnerIds {
+    /** @deprecated Privy is no longer used for authentication. This field exists for legacy data compatibility only. */
     privyId?: string;
     thirdwebId?: string;
 }
+/**
+ * @deprecated Privy is no longer used for authentication. This type exists for legacy data compatibility only.
+ */
 interface PrivyLinkedAccount {
     type: string;
     address?: string;
@@ -45,6 +49,7 @@ interface User {
     createdAt: number;
     updatedAt: number;
     partnerIds: PartnerIds;
+    /** @deprecated Privy is no longer used for authentication. This field exists for legacy data compatibility only. */
     privyLinkedAccounts?: PrivyLinkedAccount[];
     twProfiles?: TWProfile[];
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@b3dotfun/sdk",
-  "version": "0.1.70-alpha.3",
+  "version": "0.1.70-alpha.5",
   "source": "src/index.ts",
   "main": "./dist/cjs/index.js",
   "react-native": "./dist/cjs/index.native.js",
@@ -311,6 +311,7 @@
     "@feathersjs/socketio-client": "5.0.33",
     "@feathersjs/typebox": "5.0.33",
     "@fingerprintjs/fingerprintjs-pro-react": "^2.7.0",
+    "@headlessui/react": "^2.2.10",
     "@hey-api/client-fetch": "0.8.3",
     "@hey-api/openapi-ts": "0.64.13",
     "@lottiefiles/dotlottie-react": "0.7.2",
@@ -399,7 +400,6 @@
   },
   "peerDependencies": {
     "@fingerprintjs/fingerprintjs-pro-react": "^2.7.0",
-    "@privy-io/react-auth": "^2.8.0",
     "@react-three/postprocessing": "2.16.6",
     "@tanstack/react-query": "5.55.0",
     "@wagmi/core": "2.20.3",

package/src/app.shared.ts

@@ -4,9 +4,29 @@ import Cookies from "js-cookie";
 import { B3_AUTH_COOKIE_NAME } from "./shared/constants";
 import { getSessionDurationDays } from "./shared/utils/session-duration";
 
+/** Default API URL derived from environment variables. */
 export const B3_API_URL =
   process.env.EXPO_PUBLIC_B3_API || process.env.NEXT_PUBLIC_B3_API || process.env.PUBLIC_B3_API || "https://api.b3.fun";
 
+/**
+ * Runtime-overridable API URL. Set by `B3Provider` when an `apiUrl` prop
+ * is provided. Falls back to the env-var-derived `B3_API_URL`.
+ */
+let _apiUrlOverride: string | null = null;
+
+/**
+ * Override the B3 API URL at runtime. Called by `B3Provider` when an
+ * `apiUrl` prop is provided. Pass `null` to revert to the default.
+ */
+export function setB3ApiUrl(url: string | null): void {
+  _apiUrlOverride = url;
+}
+
+/** Get the current B3 API URL (prefers runtime override, then env var). */
+export function getB3ApiUrl(): string {
+  return _apiUrlOverride || B3_API_URL;
+}
+
 export const authenticate = async (
   app: ClientApplication,
   accessToken: string,

package/src/global-account/better-auth-client.ts

@@ -1,11 +1,11 @@
 import { createAuthClient } from "better-auth/client";
-import { B3_API_URL } from "../app.shared";
+import { getB3ApiUrl } from "../app.shared";
 
 export type B3BetterAuthClient = ReturnType<typeof createB3BetterAuthClient>;
 
-export function createB3BetterAuthClient(baseURL: string = B3_API_URL) {
+export function createB3BetterAuthClient(baseURL?: string) {
   return createAuthClient({
-    baseURL,
+    baseURL: baseURL ?? getB3ApiUrl(),
     basePath: "/auth",
     fetchOptions: {
       credentials: "include",
@@ -13,5 +13,29 @@ export function createB3BetterAuthClient(baseURL: string = B3_API_URL) {
   });
 }
 
-// Default singleton for standard usage
+// Lazily-initialized singleton. Recreated when the API URL changes via
+// `resetBetterAuthClient()` (called by B3Provider when `apiUrl` changes).
+let _client: B3BetterAuthClient | null = null;
+let _clientUrl: string | null = null;
+
+/** Get the shared BetterAuth client, creating it if needed. */
+export function getBetterAuthClient(): B3BetterAuthClient {
+  const url = getB3ApiUrl();
+  if (!_client || _clientUrl !== url) {
+    _client = createB3BetterAuthClient(url);
+    _clientUrl = url;
+  }
+  return _client;
+}
+
+/** Force-recreate the client on next access (e.g. after API URL change). */
+export function resetBetterAuthClient(): void {
+  _client = null;
+  _clientUrl = null;
+}
+
+/**
+ * @deprecated Use `getBetterAuthClient()` instead. This static singleton
+ * does not reflect runtime API URL changes via `B3Provider apiUrl` prop.
+ */
 export const betterAuthClient = createB3BetterAuthClient();