@bopen-io/wallet-toolbox 1.7.18 → 1.7.19

package/out/src/__tests/WalletPermissionsManager.flows.test.js

@@ -0,0 +1,380 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const WalletPermissionsManager_fixtures_1 = require("./WalletPermissionsManager.fixtures");
+const WalletPermissionsManager_1 = require("../WalletPermissionsManager");
+const globals_1 = require("@jest/globals");
+// We mock the underlying @bsv/sdk references with our test fixtures:
+globals_1.jest.mock('@bsv/sdk', () => WalletPermissionsManager_fixtures_1.MockedBSV_SDK);
+/**
+ * A lightweight helper that forces the manager to never find any on-chain token.
+ * We do this so we can reliably test the request flow (i.e., that it truly initiates
+ * a new permission request if no token is found).
+ */
+function mockNoTokensFound(manager) {
+    globals_1.jest.spyOn(manager, 'findProtocolToken').mockResolvedValue(undefined);
+    globals_1.jest.spyOn(manager, 'findBasketToken').mockResolvedValue(undefined);
+    globals_1.jest.spyOn(manager, 'findCertificateToken').mockResolvedValue(undefined);
+    globals_1.jest.spyOn(manager, 'findSpendingToken').mockResolvedValue(undefined);
+}
+describe('WalletPermissionsManager - Permission Request Flow & Active Requests', () => {
+    let underlying;
+    let manager;
+    beforeEach(() => {
+        underlying = (0, WalletPermissionsManager_fixtures_1.mockUnderlyingWallet)();
+        manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.test.com');
+    });
+    afterEach(() => {
+        globals_1.jest.clearAllMocks();
+    });
+    /**
+     * UNIT TESTS
+     */
+    describe('Unit Tests: requestPermissionFlow & activeRequests map', () => {
+        it('should coalesce parallel requests for the same resource into a single user prompt', async () => {
+            // We want to test the underlying private method "requestPermissionFlow" indirectly
+            // or we can test it via a public method that calls it. We'll do so via ensureProtocolPermission.
+            // Force no token found => triggers a request flow
+            mockNoTokensFound(manager);
+            // Spy on the manager's "onProtocolPermissionRequested" callbacks
+            const requestCallback = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', requestCallback);
+            // Make two parallel calls for the same resource
+            const callA = manager.ensureProtocolPermission({
+                originator: 'example.com',
+                privileged: false,
+                protocolID: [1, 'someproto'],
+                counterparty: 'self',
+                reason: 'UnitTest - same resource A',
+                seekPermission: true,
+                usageType: 'signing'
+            });
+            const callB = manager.ensureProtocolPermission({
+                originator: 'example.com',
+                privileged: false,
+                protocolID: [1, 'someproto'],
+                counterparty: 'self',
+                reason: 'UnitTest - same resource B',
+                seekPermission: true,
+                usageType: 'signing'
+            });
+            // Wait a short moment for the async request flow to trigger
+            await new Promise(res => setTimeout(res, 5));
+            // We expect only one "onProtocolPermissionRequested" event for both calls
+            expect(requestCallback).toHaveBeenCalledTimes(1);
+            // Now let's deny the request:
+            // Grab the requestID that the manager gave us from the callback param
+            const callbackArg = requestCallback.mock.calls[0][0];
+            const requestID = callbackArg.requestID;
+            expect(typeof requestID).toBe('string'); // manager-generated
+            // Deny the request
+            await manager.denyPermission(requestID);
+            // Both calls should reject
+            await expect(callA).rejects.toThrow(/Permission denied/);
+            await expect(callB).rejects.toThrow(/Permission denied/);
+            // Confirm activeRequests map is empty after denial
+            const activeRequests = manager.activeRequests;
+            expect(activeRequests.size).toBe(0);
+        });
+        it('should generate two distinct user prompts for two different permission requests', async () => {
+            // Force no tokens
+            mockNoTokensFound(manager);
+            // Spy on basket & protocol request callbacks
+            const protocolRequestCb = globals_1.jest.fn(() => { });
+            const basketRequestCb = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', protocolRequestCb);
+            manager.bindCallback('onBasketAccessRequested', basketRequestCb);
+            // Make one call for protocol usage
+            const pCall = manager.ensureProtocolPermission({
+                originator: 'example.com',
+                privileged: false,
+                protocolID: [1, 'proto-A'],
+                counterparty: 'self',
+                reason: 'Different request A',
+                seekPermission: true,
+                usageType: 'signing'
+            });
+            // Make a second call for basket usage
+            const bCall = manager.ensureBasketAccess({
+                originator: 'example.com',
+                basket: 'some-basket',
+                reason: 'Different request B',
+                seekPermission: true,
+                usageType: 'insertion'
+            });
+            // Wait a moment for them to trigger
+            await new Promise(res => setTimeout(res, 5));
+            // We expect one protocol request AND one basket request
+            expect(protocolRequestCb).toHaveBeenCalledTimes(1);
+            expect(basketRequestCb).toHaveBeenCalledTimes(1);
+            // Deny protocol request
+            const pReqID = protocolRequestCb.mock.calls[0][0].requestID;
+            await manager.denyPermission(pReqID);
+            // Deny basket request
+            const bReqID = basketRequestCb.mock.calls[0][0].requestID;
+            await manager.denyPermission(bReqID);
+            // Both calls should have rejected
+            await expect(pCall).rejects.toThrow(/Permission denied/);
+            await expect(bCall).rejects.toThrow(/Permission denied/);
+            // activeRequests is empty
+            const activeRequests = manager.activeRequests;
+            expect(activeRequests.size).toBe(0);
+        });
+        it('should resolve all parallel requests when permission is granted, referencing the same requestID', async () => {
+            // No tokens => triggers request flow
+            mockNoTokensFound(manager);
+            const requestCb = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', requestCb);
+            // Parallel calls
+            const promiseA = manager.ensureProtocolPermission({
+                originator: 'example.com',
+                privileged: false,
+                protocolID: [1, 'proto-X'],
+                counterparty: 'anyone',
+                reason: 'Test parallel grant A',
+                seekPermission: true,
+                usageType: 'encrypting'
+            });
+            const promiseB = manager.ensureProtocolPermission({
+                originator: 'example.com',
+                privileged: false,
+                protocolID: [1, 'proto-X'],
+                counterparty: 'anyone',
+                reason: 'Test parallel grant B',
+                seekPermission: true,
+                usageType: 'encrypting'
+            });
+            // Let the request event fire
+            await new Promise(res => setTimeout(res, 5));
+            expect(requestCb).toHaveBeenCalledTimes(1);
+            // Extract the requestID from the callback
+            const { requestID } = requestCb.mock.calls[0][0];
+            // Now we grant permission for that same requestID
+            // Because ephemeral is false by default, the manager will attempt to create on-chain tokens
+            // We'll mock the internal createPermissionOnChain so it doesn't blow up
+            const createOnChainSpy = globals_1.jest.spyOn(manager, 'createPermissionOnChain').mockResolvedValue(undefined);
+            await manager.grantPermission({ requestID });
+            // Both calls should resolve with `true` (the manager returns a boolean)
+            await expect(promiseA).resolves.toBe(true);
+            await expect(promiseB).resolves.toBe(true);
+            // activeRequests map is empty
+            const activeRequests = manager.activeRequests;
+            expect(activeRequests.size).toBe(0);
+            // The manager tried to create an on-chain permission token once
+            expect(createOnChainSpy).toHaveBeenCalledTimes(1);
+        });
+        it('should reject only the matching request queue on deny if requestID is specified', async () => {
+            // This scenario tests the manager's partial denial logic where we pass { requestID }
+            // to only reject the queued requests with that ID, leaving others (with a different requestID)
+            // in the queue.
+            mockNoTokensFound(manager);
+            // We do two separate calls for the same resource but at different times, resulting in separate queues.
+            // Actually, the manager normally merges them into one queue if the resource is the same.
+            // So let's do two different resources to ensure we get two separate keys.
+            const protoCb = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', protoCb);
+            // Resource 1
+            const p1Promise = manager.ensureProtocolPermission({
+                originator: 'siteA.com',
+                privileged: false,
+                protocolID: [1, 'proto-siteA'],
+                counterparty: 'self',
+                usageType: 'encrypting'
+            });
+            await new Promise(res => setTimeout(res, 5));
+            const p1ReqID = protoCb.mock.calls[0][0].requestID;
+            // At this point, resource 1 is pending in activeRequests. We'll not resolve it yet.
+            // Resource 2
+            const p2Promise = manager.ensureProtocolPermission({
+                originator: 'siteB.com',
+                privileged: false,
+                protocolID: [1, 'proto-siteB'],
+                counterparty: 'self',
+                usageType: 'encrypting'
+            });
+            await new Promise(res => setTimeout(res, 5));
+            // the second call triggers a second onProtocolPermissionRequested callback
+            expect(protoCb).toHaveBeenCalledTimes(2);
+            const p2ReqID = protoCb.mock.calls[1][0].requestID;
+            // Deny the second request only
+            await manager.denyPermission(p2ReqID);
+            await expect(p2Promise).rejects.toThrow(/Permission denied/);
+            // But the first request is still waiting
+            const activeRequests = manager.activeRequests;
+            expect(activeRequests.size).toBe(1);
+            // Now let's deny the first request too
+            await manager.denyPermission(p1ReqID);
+            await expect(p1Promise).rejects.toThrow(/Permission denied/);
+            // The queue is empty now
+            expect(activeRequests.size).toBe(0);
+        });
+    });
+    /**
+     * INTEGRATION TESTS
+     */
+    describe('Integration Tests: ephemeral vs. persistent tokens', () => {
+        it('should not create a token if ephemeral=true, so subsequent calls re-trigger the request', async () => {
+            // We'll do a "protocol" permission scenario:
+            mockNoTokensFound(manager);
+            // Bind the request callback
+            const requestCb = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', requestCb);
+            // Force any on-chain creation attempt to be spied on
+            const createTokenSpy = globals_1.jest.spyOn(manager, 'createPermissionOnChain');
+            // 1) Call ensureProtocolPermission => triggers request
+            const pCall1 = manager.ensureProtocolPermission({
+                originator: 'appdomain.com',
+                privileged: false,
+                protocolID: [1, 'ephemeral-proto'],
+                counterparty: 'self',
+                reason: 'test ephemeral #1',
+                usageType: 'signing'
+            });
+            // Wait for request callback
+            await new Promise(res => setTimeout(res, 5));
+            expect(requestCb).toHaveBeenCalledTimes(1);
+            const reqID1 = requestCb.mock.calls[0][0].requestID;
+            // Grant ephemeral
+            await manager.grantPermission({
+                requestID: reqID1,
+                ephemeral: true
+            });
+            // pCall1 is resolved
+            await expect(pCall1).resolves.toBe(true);
+            // Because ephemeral=true, we do NOT create an on-chain token
+            expect(createTokenSpy).not.toHaveBeenCalled();
+            manager.permissionCache = new Map();
+            // 2) Immediately call ensureProtocolPermission again for the same resource
+            // Because ephemeral usage didn't store a token, it should re-prompt.
+            const pCall2 = manager.ensureProtocolPermission({
+                originator: 'appdomain.com',
+                privileged: false,
+                protocolID: [1, 'ephemeral-proto'],
+                counterparty: 'self',
+                reason: 'test ephemeral #2',
+                usageType: 'signing'
+            });
+            await new Promise(res => setTimeout(res, 5));
+            // We expect a new request callback
+            expect(requestCb).toHaveBeenCalledTimes(2);
+            // We'll deny the second request
+            const reqID2 = requestCb.mock.calls[1][0].requestID;
+            await manager.denyPermission(reqID2);
+            await expect(pCall2).rejects.toThrow(/Permission denied/);
+        });
+        it('should create a token if ephemeral=false, so subsequent calls do not re-trigger if unexpired', async () => {
+            // We want the manager to truly create a token. We'll confirm that
+            // subsequent calls for the same resource skip user prompt.
+            mockNoTokensFound(manager);
+            // We'll also ensure no token is found "the first time."
+            // But on subsequent calls, we can mock that the manager sees the newly created token.
+            // Let's spy on "createPermissionOnChain" so we can intercept the new token
+            const createTokenSpy = globals_1.jest.spyOn(manager, 'createPermissionOnChain').mockResolvedValue(undefined); // no real on-chain creation
+            // Spy on "findProtocolToken" so we can simulate that the second time it's called,
+            // there's a valid token. We'll do this by setting the mock to return undefined the first time,
+            // and a valid token the second time (or we can just rely on the manager's logic).
+            let firstFindCall = true;
+            globals_1.jest.spyOn(manager, 'findProtocolToken').mockImplementation(async () => {
+                if (firstFindCall) {
+                    firstFindCall = false;
+                    return undefined; // first time triggers request
+                }
+                // second time => pretend we found a valid token
+                const mockToken = {
+                    tx: [],
+                    txid: 'abcdef',
+                    outputIndex: 0,
+                    outputScript: '00',
+                    satoshis: 1,
+                    originator: 'persistentdomain.com',
+                    expiry: Math.floor(Date.now() / 1000) + 3600, // unexpired
+                    privileged: false,
+                    protocol: 'persist-proto',
+                    securityLevel: 1,
+                    counterparty: 'self'
+                };
+                return mockToken;
+            });
+            // We'll observe the request callback
+            const requestCb = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', requestCb);
+            // 1) First call => no token => triggers request
+            const call1 = manager.ensureProtocolPermission({
+                originator: 'persistentdomain.com',
+                privileged: false,
+                protocolID: [1, 'persist-proto'],
+                counterparty: 'self',
+                reason: 'test persistent #1',
+                usageType: 'signing'
+            });
+            await new Promise(res => setTimeout(res, 5));
+            expect(requestCb).toHaveBeenCalledTimes(1);
+            // Grant ephemeral=false => triggers createPermissionOnChain
+            const reqID = requestCb.mock.calls[0][0].requestID;
+            await manager.grantPermission({ requestID: reqID, ephemeral: false });
+            await expect(call1).resolves.toBe(true);
+            expect(createTokenSpy).toHaveBeenCalledTimes(1);
+            // 2) Second call => the manager should find the token we just "created" => no request prompt
+            const call2 = manager.ensureProtocolPermission({
+                originator: 'persistentdomain.com',
+                privileged: false,
+                protocolID: [1, 'persist-proto'],
+                counterparty: 'self',
+                reason: 'test persistent #2',
+                usageType: 'signing'
+            });
+            // We do not expect a new user prompt => requestCb remains at 1
+            await new Promise(res => setTimeout(res, 5));
+            expect(requestCb).toHaveBeenCalledTimes(1);
+            // The second call should resolve immediately, no prompt
+            await expect(call2).resolves.toBe(true);
+        });
+        it('should handle renewal if the found token is expired, passing previousToken in the request', async () => {
+            // We'll test the "renewal" flow:
+            // If the manager finds a token but it's expired, it sets { renewal: true, previousToken } in the request.
+            // We'll mock findProtocolToken to return an expired token
+            const expiredToken = {
+                tx: [],
+                txid: 'expiredTxid123',
+                outputIndex: 0,
+                outputScript: '76a914xxxx...88ac',
+                satoshis: 1,
+                originator: 'renewme.com',
+                expiry: Math.floor(Date.now() / 1000) - 100, // in the past
+                privileged: false,
+                protocol: 'renew-proto',
+                securityLevel: 1,
+                counterparty: 'self'
+            };
+            globals_1.jest.spyOn(manager, 'findProtocolToken').mockResolvedValue(expiredToken);
+            // Spy on request callback
+            const requestCb = globals_1.jest.fn(() => { });
+            manager.bindCallback('onProtocolPermissionRequested', requestCb);
+            // We'll also spy on "renewPermissionOnChain" to see if it's called
+            const renewSpy = globals_1.jest.spyOn(manager, 'renewPermissionOnChain').mockResolvedValue(undefined);
+            // Call ensureProtocolPermission => sees expired token => triggers request with renewal
+            const promise = manager.ensureProtocolPermission({
+                originator: 'renewme.com',
+                privileged: false,
+                protocolID: [1, 'renew-proto'],
+                counterparty: 'self',
+                reason: 'test renewal',
+                usageType: 'encrypting'
+            });
+            // Wait for request callback
+            await new Promise(res => setTimeout(res, 10));
+            expect(requestCb).toHaveBeenCalledTimes(1);
+            // Confirm the callback param includes `renewal=true` and `previousToken=expiredToken`
+            const { renewal, previousToken } = requestCb.mock.calls[0][0];
+            expect(renewal).toBe(true);
+            expect(previousToken.txid).toBe('expiredTxid123');
+            // Grant ephemeral=false => manager calls renewPermissionOnChain
+            const { requestID } = requestCb.mock.calls[0][0];
+            await manager.grantPermission({ requestID, ephemeral: false });
+            await expect(promise).resolves.toBe(true);
+            expect(renewSpy).toHaveBeenCalledTimes(1);
+            // The first arg is the old token, second is request, etc.
+            expect(renewSpy).toHaveBeenCalledWith(expiredToken, expect.objectContaining({ originator: 'renewme.com' }), expect.any(Number), undefined);
+        });
+    });
+});
+//# sourceMappingURL=WalletPermissionsManager.flows.test.js.map

package/out/src/__tests/WalletPermissionsManager.flows.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"WalletPermissionsManager.flows.test.js","sourceRoot":"","sources":["../../../src/__tests/WalletPermissionsManager.flows.test.ts"],"names":[],"mappings":";;AAAA,2FAAyF;AACzF,0EAAuF;AAEvF,2CAAoC;AAEpC,qEAAqE;AACrE,cAAI,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,EAAE,CAAC,iDAAa,CAAC,CAAA;AAE1C;;;;GAIG;AACH,SAAS,iBAAiB,CAAC,OAAiC;IAC1D,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,mBAAmB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA;IAC5E,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,iBAAiB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA;IAC1E,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,sBAAsB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA;IAC/E,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,mBAAmB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA;AAC9E,CAAC;AAED,QAAQ,CAAC,sEAAsE,EAAE,GAAG,EAAE;IACpF,IAAI,UAAmD,CAAA;IACvD,IAAI,OAAiC,CAAA;IAErC,UAAU,CAAC,GAAG,EAAE;QACd,UAAU,GAAG,IAAA,wDAAoB,GAAE,CAAA;QACnC,OAAO,GAAG,IAAI,mDAAwB,CAAC,UAAU,EAAE,gBAAgB,CAAC,CAAA;IACtE,CAAC,CAAC,CAAA;IAEF,SAAS,CAAC,GAAG,EAAE;QACb,cAAI,CAAC,aAAa,EAAE,CAAA;IACtB,CAAC,CAAC,CAAA;IAEF;;OAEG;IACH,QAAQ,CAAC,wDAAwD,EAAE,GAAG,EAAE;QACtE,EAAE,CAAC,mFAAmF,EAAE,KAAK,IAAI,EAAE;YACjG,mFAAmF;YACnF,iGAAiG;YAEjG,kDAAkD;YAClD,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAE1B,iEAAiE;YACjE,MAAM,eAAe,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACzC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,eAAe,CAAC,CAAA;YAEtE,gDAAgD;YAChD,MAAM,KAAK,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC7C,UAAU,EAAE,aAAa;gBACzB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,WAAW,CAAC;gBAC5B,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,4BAA4B;gBACpC,cAAc,EAAE,IAAI;gBACpB,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC7C,UAAU,EAAE,aAAa;gBACzB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,WAAW,CAAC;gBAC5B,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,4BAA4B;gBACpC,cAAc,EAAE,IAAI;gBACpB,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YAEF,4DAA4D;YAC5D,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAE5C,0EAA0E;YAC1E,MAAM,CAAC,eAAe,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAEhD,8BAA8B;YAC9B,sEAAsE;YACtE,MAAM,WAAW,GAAI,eAAe,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;YAC7D,MAAM,SAAS,GAAG,WAAW,CAAC,SAAS,CAAA;YACvC,MAAM,CAAC,OAAO,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA,CAAC,oBAAoB;YAE5D,mBAAmB;YACnB,MAAM,OAAO,CAAC,cAAc,CAAC,SAAS,CAAC,CAAA;YAEvC,2BAA2B;YAC3B,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;YACxD,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;YAExD,mDAAmD;YACnD,MAAM,cAAc,GAAI,OAAe,CAAC,cAAoC,CAAA;YAC5E,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACrC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,iFAAiF,EAAE,KAAK,IAAI,EAAE;YAC/F,kBAAkB;YAClB,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAE1B,6CAA6C;YAC7C,MAAM,iBAAiB,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YAC3C,MAAM,eAAe,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACzC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,iBAAiB,CAAC,CAAA;YACxE,OAAO,CAAC,YAAY,CAAC,yBAAyB,EAAE,eAAe,CAAC,CAAA;YAEhE,mCAAmC;YACnC,MAAM,KAAK,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC7C,UAAU,EAAE,aAAa;gBACzB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,CAAC;gBAC1B,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,qBAAqB;gBAC7B,cAAc,EAAE,IAAI;gBACpB,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YAEF,sCAAsC;YACtC,MAAM,KAAK,GAAG,OAAO,CAAC,kBAAkB,CAAC;gBACvC,UAAU,EAAE,aAAa;gBACzB,MAAM,EAAE,aAAa;gBACrB,MAAM,EAAE,qBAAqB;gBAC7B,cAAc,EAAE,IAAI;gBACpB,SAAS,EAAE,WAAW;aACvB,CAAC,CAAA;YAEF,oCAAoC;YACpC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAE5C,wDAAwD;YACxD,MAAM,CAAC,iBAAiB,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAClD,MAAM,CAAC,eAAe,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAEhD,wBAAwB;YACxB,MAAM,MAAM,GAAI,iBAAiB,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YACpE,MAAM,OAAO,CAAC,cAAc,CAAC,MAAM,CAAC,CAAA;YAEpC,sBAAsB;YACtB,MAAM,MAAM,GAAI,eAAe,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAClE,MAAM,OAAO,CAAC,cAAc,CAAC,MAAM,CAAC,CAAA;YAEpC,kCAAkC;YAClC,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;YACxD,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;YAExD,0BAA0B;YAC1B,MAAM,cAAc,GAAI,OAAe,CAAC,cAAoC,CAAA;YAC5E,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACrC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,iGAAiG,EAAE,KAAK,IAAI,EAAE;YAC/G,qCAAqC;YACrC,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAE1B,MAAM,SAAS,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACnC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,SAAS,CAAC,CAAA;YAEhE,iBAAiB;YACjB,MAAM,QAAQ,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAChD,UAAU,EAAE,aAAa;gBACzB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,CAAC;gBAC1B,YAAY,EAAE,QAAQ;gBACtB,MAAM,EAAE,uBAAuB;gBAC/B,cAAc,EAAE,IAAI;gBACpB,SAAS,EAAE,YAAY;aACxB,CAAC,CAAA;YAEF,MAAM,QAAQ,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAChD,UAAU,EAAE,aAAa;gBACzB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,CAAC;gBAC1B,YAAY,EAAE,QAAQ;gBACtB,MAAM,EAAE,uBAAuB;gBAC/B,cAAc,EAAE,IAAI;gBACpB,SAAS,EAAE,YAAY;aACxB,CAAC,CAAA;YAEF,6BAA6B;YAC7B,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAE1C,0CAA0C;YAC1C,MAAM,EAAE,SAAS,EAAE,GAAI,SAAS,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;YACzD,kDAAkD;YAClD,4FAA4F;YAC5F,wEAAwE;YACxE,MAAM,gBAAgB,GAAG,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,yBAAyB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA;YAE3G,MAAM,OAAO,CAAC,eAAe,CAAC,EAAE,SAAS,EAAE,CAAC,CAAA;YAE5C,wEAAwE;YACxE,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YAC1C,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YAE1C,8BAA8B;YAC9B,MAAM,cAAc,GAAI,OAAe,CAAC,cAAoC,CAAA;YAC5E,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;YAEnC,gEAAgE;YAChE,MAAM,CAAC,gBAAgB,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;QACnD,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,iFAAiF,EAAE,KAAK,IAAI,EAAE;YAC/F,qFAAqF;YACrF,+FAA+F;YAC/F,gBAAgB;YAEhB,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAE1B,uGAAuG;YACvG,yFAAyF;YACzF,0EAA0E;YAC1E,MAAM,OAAO,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACjC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,OAAO,CAAC,CAAA;YAE9D,aAAa;YACb,MAAM,SAAS,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBACjD,UAAU,EAAE,WAAW;gBACvB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,aAAa,CAAC;gBAC9B,YAAY,EAAE,MAAM;gBACpB,SAAS,EAAE,YAAY;aACxB,CAAC,CAAA;YACF,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,MAAM,OAAO,GAAI,OAAO,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAC3D,oFAAoF;YAEpF,aAAa;YACb,MAAM,SAAS,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBACjD,UAAU,EAAE,WAAW;gBACvB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,aAAa,CAAC;gBAC9B,YAAY,EAAE,MAAM;gBACpB,SAAS,EAAE,YAAY;aACxB,CAAC,CAAA;YACF,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,2EAA2E;YAC3E,MAAM,CAAC,OAAO,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YACxC,MAAM,OAAO,GAAI,OAAO,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAE3D,+BAA+B;YAC/B,MAAM,OAAO,CAAC,cAAc,CAAC,OAAO,CAAC,CAAA;YACrC,MAAM,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;YAE5D,yCAAyC;YACzC,MAAM,cAAc,GAAI,OAAe,CAAC,cAAoC,CAAA;YAC5E,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;YAEnC,uCAAuC;YACvC,MAAM,OAAO,CAAC,cAAc,CAAC,OAAO,CAAC,CAAA;YACrC,MAAM,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;YAE5D,yBAAyB;YACzB,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACrC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF;;OAEG;IACH,QAAQ,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAClE,EAAE,CAAC,yFAAyF,EAAE,KAAK,IAAI,EAAE;YACvG,6CAA6C;YAC7C,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAE1B,4BAA4B;YAC5B,MAAM,SAAS,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACnC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,SAAS,CAAC,CAAA;YAEhE,qDAAqD;YACrD,MAAM,cAAc,GAAG,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,yBAAyB,CAAC,CAAA;YAE5E,uDAAuD;YACvD,MAAM,MAAM,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC9C,UAAU,EAAE,eAAe;gBAC3B,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,iBAAiB,CAAC;gBAClC,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,mBAAmB;gBAC3B,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YAEF,4BAA4B;YAC5B,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAC1C,MAAM,MAAM,GAAI,SAAS,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAE5D,kBAAkB;YAClB,MAAM,OAAO,CAAC,eAAe,CAAC;gBAC5B,SAAS,EAAE,MAAM;gBACjB,SAAS,EAAE,IAAI;aAChB,CAAC,CAAA;YAEF,qBAAqB;YACrB,MAAM,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YAExC,6DAA6D;YAC7D,MAAM,CAAC,cAAc,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAG5C;YAAC,OAAe,CAAC,eAAe,GAAG,IAAI,GAAG,EAAE,CAAA;YAE7C,2EAA2E;YAC3E,qEAAqE;YACrE,MAAM,MAAM,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC9C,UAAU,EAAE,eAAe;gBAC3B,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,iBAAiB,CAAC;gBAClC,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,mBAAmB;gBAC3B,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YAEF,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,mCAAmC;YACnC,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAE1C,gCAAgC;YAChC,MAAM,MAAM,GAAI,SAAS,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAC5D,MAAM,OAAO,CAAC,cAAc,CAAC,MAAM,CAAC,CAAA;YAEpC,MAAM,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;QAC3D,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,8FAA8F,EAAE,KAAK,IAAI,EAAE;YAC5G,kEAAkE;YAClE,2DAA2D;YAE3D,iBAAiB,CAAC,OAAO,CAAC,CAAA;YAC1B,wDAAwD;YACxD,sFAAsF;YAEtF,2EAA2E;YAC3E,MAAM,cAAc,GAAG,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,yBAAyB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA,CAAC,4BAA4B;YAEtI,kFAAkF;YAClF,+FAA+F;YAC/F,kFAAkF;YAClF,IAAI,aAAa,GAAG,IAAI,CAAA;YACxB,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,mBAAmB,CAAC,CAAC,kBAAkB,CAAC,KAAK,IAAI,EAAE;gBAC5E,IAAI,aAAa,EAAE,CAAC;oBAClB,aAAa,GAAG,KAAK,CAAA;oBACrB,OAAO,SAAS,CAAA,CAAC,8BAA8B;gBACjD,CAAC;gBACD,gDAAgD;gBAChD,MAAM,SAAS,GAAoB;oBACjC,EAAE,EAAE,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,CAAC;oBACd,YAAY,EAAE,IAAI;oBAClB,QAAQ,EAAE,CAAC;oBACX,UAAU,EAAE,sBAAsB;oBAClC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI,EAAE,YAAY;oBAC1D,UAAU,EAAE,KAAK;oBACjB,QAAQ,EAAE,eAAe;oBACzB,aAAa,EAAE,CAAC;oBAChB,YAAY,EAAE,MAAM;iBACrB,CAAA;gBACD,OAAO,SAAS,CAAA;YAClB,CAAC,CAAC,CAAA;YAEF,qCAAqC;YACrC,MAAM,SAAS,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACnC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,SAAS,CAAC,CAAA;YAEhE,gDAAgD;YAChD,MAAM,KAAK,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC7C,UAAU,EAAE,sBAAsB;gBAClC,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC;gBAChC,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,oBAAoB;gBAC5B,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YACF,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAE1C,4DAA4D;YAC5D,MAAM,KAAK,GAAI,SAAS,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAC3D,MAAM,OAAO,CAAC,eAAe,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAA;YACrE,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YAEvC,MAAM,CAAC,cAAc,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAE/C,6FAA6F;YAC7F,MAAM,KAAK,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC7C,UAAU,EAAE,sBAAsB;gBAClC,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC;gBAChC,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,oBAAoB;gBAC5B,SAAS,EAAE,SAAS;aACrB,CAAC,CAAA;YAEF,+DAA+D;YAC/D,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAA;YAC5C,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAE1C,wDAAwD;YACxD,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACzC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,2FAA2F,EAAE,KAAK,IAAI,EAAE;YACzG,iCAAiC;YACjC,0GAA0G;YAE1G,0DAA0D;YAC1D,MAAM,YAAY,GAAoB;gBACpC,EAAE,EAAE,EAAE;gBACN,IAAI,EAAE,gBAAgB;gBACtB,WAAW,EAAE,CAAC;gBACd,YAAY,EAAE,mBAAmB;gBACjC,QAAQ,EAAE,CAAC;gBACX,UAAU,EAAE,aAAa;gBACzB,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,GAAG,EAAE,cAAc;gBAC3D,UAAU,EAAE,KAAK;gBACjB,QAAQ,EAAE,aAAa;gBACvB,aAAa,EAAE,CAAC;gBAChB,YAAY,EAAE,MAAM;aACrB,CAAA;YACD,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,mBAAmB,CAAC,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAA;YAE/E,0BAA0B;YAC1B,MAAM,SAAS,GAAG,cAAI,CAAC,EAAE,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;YACnC,OAAO,CAAC,YAAY,CAAC,+BAA+B,EAAE,SAAS,CAAC,CAAA;YAEhE,mEAAmE;YACnE,MAAM,QAAQ,GAAG,cAAI,CAAC,KAAK,CAAC,OAAc,EAAE,wBAAwB,CAAC,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAA;YAElG,uFAAuF;YACvF,MAAM,OAAO,GAAG,OAAO,CAAC,wBAAwB,CAAC;gBAC/C,UAAU,EAAE,aAAa;gBACzB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,CAAC,CAAC,EAAE,aAAa,CAAC;gBAC9B,YAAY,EAAE,MAAM;gBACpB,MAAM,EAAE,cAAc;gBACtB,SAAS,EAAE,YAAY;aACxB,CAAC,CAAA;YAEF,4BAA4B;YAC5B,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAA;YAC7C,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YAE1C,sFAAsF;YACtF,MAAM,EAAE,OAAO,EAAE,aAAa,EAAE,GAAI,SAAS,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;YACtE,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YAC1B,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;YAEjD,gEAAgE;YAChE,MAAM,EAAE,SAAS,EAAE,GAAI,SAAS,CAAC,IAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;YACzD,MAAM,OAAO,CAAC,eAAe,CAAC,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAA;YAE9D,MAAM,MAAM,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACzC,MAAM,CAAC,QAAQ,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;YACzC,0DAA0D;YAC1D,MAAM,CAAC,QAAQ,CAAC,CAAC,oBAAoB,CACnC,YAAY,EACZ,MAAM,CAAC,gBAAgB,CAAC,EAAE,UAAU,EAAE,aAAa,EAAE,CAAC,EACtD,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAClB,SAAS,CACV,CAAA;QACH,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/out/src/__tests/WalletPermissionsManager.initialization.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=WalletPermissionsManager.initialization.test.d.ts.map

package/out/src/__tests/WalletPermissionsManager.initialization.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"WalletPermissionsManager.initialization.test.d.ts","sourceRoot":"","sources":["../../../src/__tests/WalletPermissionsManager.initialization.test.ts"],"names":[],"mappings":""}

package/out/src/__tests/WalletPermissionsManager.initialization.test.js

@@ -0,0 +1,227 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const WalletPermissionsManager_fixtures_1 = require("./WalletPermissionsManager.fixtures");
+const WalletPermissionsManager_1 = require("../WalletPermissionsManager");
+jest.mock('@bsv/sdk', () => WalletPermissionsManager_fixtures_1.MockedBSV_SDK);
+describe('WalletPermissionsManager - Initialization & Configuration', () => {
+    let underlying;
+    beforeEach(() => {
+        // Create a fresh underlying mock wallet before each test
+        underlying = (0, WalletPermissionsManager_fixtures_1.mockUnderlyingWallet)();
+    });
+    afterEach(() => {
+        jest.clearAllMocks();
+    });
+    it('should initialize with default config if none is provided', () => {
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com');
+        // The manager internally defaults all config flags to true.
+        const internalConfig = manager.config;
+        expect(internalConfig.seekProtocolPermissionsForSigning).toBe(true);
+        expect(internalConfig.seekProtocolPermissionsForEncrypting).toBe(true);
+        expect(internalConfig.seekPermissionsForIdentityKeyRevelation).toBe(true);
+        expect(internalConfig.encryptWalletMetadata).toBe(true);
+        // The manager should store the admin originator
+        const admin = manager.adminOriginator;
+        expect(admin).toBe('admin.domain.com');
+    });
+    it('should initialize with partial config overrides, merging with defaults', () => {
+        const partialConfig = {
+            seekProtocolPermissionsForSigning: false,
+            encryptWalletMetadata: false
+            // The rest remain default = true
+        };
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com', partialConfig);
+        const internalConfig = manager.config;
+        // Overridden to false
+        expect(internalConfig.seekProtocolPermissionsForSigning).toBe(false);
+        expect(internalConfig.encryptWalletMetadata).toBe(false);
+        // Remaining defaults still true
+        expect(internalConfig.seekBasketInsertionPermissions).toBe(true);
+        expect(internalConfig.seekSpendingPermissions).toBe(true);
+    });
+    it('should initialize with all config flags set to false', () => {
+        const allFalse = {
+            seekProtocolPermissionsForSigning: false,
+            seekProtocolPermissionsForEncrypting: false,
+            seekProtocolPermissionsForHMAC: false,
+            seekPermissionsForKeyLinkageRevelation: false,
+            seekPermissionsForPublicKeyRevelation: false,
+            seekPermissionsForIdentityKeyRevelation: false,
+            seekPermissionsForIdentityResolution: false,
+            seekBasketInsertionPermissions: false,
+            seekBasketRemovalPermissions: false,
+            seekBasketListingPermissions: false,
+            seekPermissionWhenApplyingActionLabels: false,
+            seekPermissionWhenListingActionsByLabel: false,
+            seekCertificateDisclosurePermissions: false,
+            seekCertificateAcquisitionPermissions: false,
+            seekCertificateRelinquishmentPermissions: false,
+            seekCertificateListingPermissions: false,
+            encryptWalletMetadata: false,
+            seekSpendingPermissions: false,
+            differentiatePrivilegedOperations: false
+        };
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com', allFalse);
+        const internalConfig = manager.config;
+        for (const [k, v] of Object.entries(allFalse)) {
+            expect(internalConfig[k]).toBe(v);
+        }
+    });
+    it('should consider calls from the adminOriginator as admin, bypassing checks', async () => {
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com');
+        // If we call a method that normally triggers permission checks (like createAction with a basket),
+        // but pass in originator="admin.domain.com", we expect NO permission prompt or error.
+        // We'll do a minimal createAction call.
+        const result = await manager.createAction({
+            description: 'Insertion to user basket',
+            outputs: [
+                {
+                    lockingScript: 'abcd',
+                    satoshis: 1000,
+                    outputDescription: 'some out desc',
+                    basket: 'some-user-basket'
+                }
+            ]
+        }, 'admin.domain.com');
+        // If the manager truly bypassed checks for the admin, it won't queue a request
+        // nor throw an error. The call should just succeed.
+        expect(result).toBeDefined();
+        // Confirm the underlying createAction was actually called
+        expect(underlying.createAction).toHaveBeenCalledTimes(1);
+        // activeRequests map should be empty
+        const activeRequests = manager.activeRequests;
+        expect(activeRequests.size).toBe(0);
+    });
+    it('should skip protocol permission checks for signing if seekProtocolPermissionsForSigning=false', async () => {
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com', {
+            seekProtocolPermissionsForSigning: false
+        });
+        // Non-admin origin attempts "createSignature" with a protocolID
+        // Normally, if config was true, we'd expect a request for permission.
+        // But here we expect it to skip and proceed.
+        await expect(manager.createSignature({
+            protocolID: [1, 'some-protocol'],
+            privileged: false,
+            data: [0x01, 0x02],
+            keyID: '1'
+        }, 'app.nonadmin.com')).resolves.not.toThrow();
+        // underlying createSignature is invoked
+        expect(underlying.createSignature).toHaveBeenCalledTimes(1);
+        // The manager’s internal request queue should remain empty
+        const activeRequests = manager.activeRequests;
+        expect(activeRequests.size).toBe(0);
+    });
+    it('should enforce protocol permission checks for signing if seekProtocolPermissionsForSigning=true', async () => {
+        // By default, or explicitly set to true, the manager enforces permission checks
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com', {
+            seekProtocolPermissionsForSigning: true
+        });
+        // Non-admin origin tries createSignature -> must prompt for protocol permission
+        const createSigPromise = manager.createSignature({
+            protocolID: [1, 'test-protocol'],
+            keyID: '1',
+            data: [0x10, 0x20],
+            privileged: false
+        }, 'nonadmin.com');
+        // The manager triggers a request. Let's see if the request queue has an entry:
+        const activeRequests = manager.activeRequests;
+        // We may not see an entry synchronously because `ensureProtocolPermission()` is async,
+        // but once the promise gets to that stage, it populates the queue.
+        // Wait a short tick to let the async code run
+        await new Promise(res => setTimeout(res, 10));
+        expect(activeRequests.size).toBeGreaterThan(0);
+        // We'll forcibly deny the request so the test can conclude:
+        const firstRequestKey = Array.from(activeRequests.keys())[0];
+        const firstRequestQueue = activeRequests.get(firstRequestKey);
+        if (firstRequestQueue && firstRequestQueue.pending.length > 0) {
+            manager.denyPermission(firstRequestKey);
+        }
+        // The promise eventually rejects with "Permission denied."
+        await expect(createSigPromise).rejects.toThrow(/Permission denied/);
+    });
+    it('should skip basket insertion permission checks if seekBasketInsertionPermissions=false', async () => {
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com', {
+            seekBasketInsertionPermissions: false
+        });
+        // Spending authorization is still required, grant it.
+        manager.bindCallback('onSpendingAuthorizationRequested', jest.fn(x => {
+            manager.grantPermission({ requestID: x.requestID, ephemeral: true });
+        }));
+        // Non-admin origin tries to createAction specifying a basket
+        await expect(manager.createAction({
+            description: 'Insert to user basket',
+            outputs: [
+                {
+                    lockingScript: '1234',
+                    satoshis: 888,
+                    basket: 'somebasket',
+                    outputDescription: 'some out desc'
+                }
+            ]
+        }, 'some-user.com')).resolves.not.toThrow();
+        // Because insertion checks are disabled, no permission request should be queued
+        const activeRequests = manager.activeRequests;
+        expect(activeRequests.size).toBe(0);
+    });
+    it('should skip all permission checks if all relevant config flags are false (except admin-only baskets, etc.)', async () => {
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com', {
+            // Only turning off relevant categories, i.e. we might set all false except we keep
+            // differentiatePrivilegedOperations at default just to verify. Or set it to false as well.
+            seekProtocolPermissionsForSigning: false,
+            seekProtocolPermissionsForEncrypting: false,
+            seekProtocolPermissionsForHMAC: false,
+            seekPermissionsForKeyLinkageRevelation: false,
+            seekPermissionsForPublicKeyRevelation: false,
+            seekPermissionsForIdentityKeyRevelation: false,
+            seekPermissionsForIdentityResolution: false,
+            seekBasketInsertionPermissions: false,
+            seekBasketRemovalPermissions: false,
+            seekBasketListingPermissions: false,
+            seekPermissionWhenApplyingActionLabels: false,
+            seekPermissionWhenListingActionsByLabel: false,
+            seekCertificateDisclosurePermissions: false,
+            seekCertificateAcquisitionPermissions: false,
+            seekCertificateRelinquishmentPermissions: false,
+            seekCertificateListingPermissions: false,
+            encryptWalletMetadata: false,
+            seekSpendingPermissions: false,
+            differentiatePrivilegedOperations: false
+        });
+        // We'll do a few calls that would normally require checks:
+        // 1) createSignature from non-admin
+        await expect(manager.createSignature({ protocolID: [1, 'some-protocol'], data: [0x01], keyID: '1' }, 'nonadmin.com')).resolves.not.toThrow();
+        // 2) createAction to insert in a basket
+        await expect(manager.createAction({
+            description: 'Inserting stuff',
+            outputs: [
+                {
+                    lockingScript: '012345',
+                    satoshis: 1,
+                    basket: 'user-basket',
+                    outputDescription: 'some out desc'
+                }
+            ]
+        }, 'nonadmin.com')).resolves.not.toThrow();
+        // 3) Acquire certificate
+        await expect(manager.acquireCertificate({
+            type: 'base64-cert-type',
+            certifier: '02abc...',
+            acquisitionProtocol: 'direct',
+            fields: { name: 'Bob' }
+        }, 'nonadmin.com')).resolves.not.toThrow();
+        // Confirm no queued requests
+        const activeRequests = manager.activeRequests;
+        expect(activeRequests.size).toBe(0);
+    });
+    it('should block usage of an admin-only protocol name if not called by admin', async () => {
+        const manager = new WalletPermissionsManager_1.WalletPermissionsManager(underlying, 'admin.domain.com');
+        // A protocol name that starts with "admin"
+        await expect(manager.createSignature({
+            protocolID: [1, 'admin super-secret-protocol'],
+            data: [1, 2, 3],
+            keyID: '1',
+            privileged: false
+        }, 'nonadmin.com')).rejects.toThrow(/admin-only/i);
+    });
+});
+//# sourceMappingURL=WalletPermissionsManager.initialization.test.js.map