npm - @bopen-io/wallet-toolbox - Versions diffs - 1.7.18 - Mend

@bopen-io/wallet-toolbox 1.7.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (390) hide show

package/.claude/settings.local.json +10 -0
package/.env.template +22 -0
package/.github/ISSUE_TEMPLATE/bug_report.md +40 -0
package/.github/ISSUE_TEMPLATE/discussion.md +24 -0
package/.github/pull_request_template.md +22 -0
package/.github/workflows/push.yaml +145 -0
package/.prettierrc +10 -0
package/CHANGELOG.md +280 -0
package/CONTRIBUTING.md +89 -0
package/README.md +43 -0
package/docs/README.md +85 -0
package/docs/client.md +19627 -0
package/docs/monitor.md +953 -0
package/docs/open-rpc/index.html +46 -0
package/docs/services.md +6377 -0
package/docs/setup.md +1268 -0
package/docs/storage.md +5367 -0
package/docs/wallet.md +19626 -0
package/jest.config.ts +25 -0
package/license.md +28 -0
package/out/tsconfig.all.tsbuildinfo +1 -0
package/package.json +63 -0
package/src/CWIStyleWalletManager.ts +1999 -0
package/src/Setup.ts +579 -0
package/src/SetupClient.ts +322 -0
package/src/SetupWallet.ts +108 -0
package/src/SimpleWalletManager.ts +526 -0
package/src/Wallet.ts +1169 -0
package/src/WalletAuthenticationManager.ts +153 -0
package/src/WalletLogger.ts +213 -0
package/src/WalletPermissionsManager.ts +3660 -0
package/src/WalletSettingsManager.ts +114 -0
package/src/__tests/CWIStyleWalletManager.test.d.ts.map +1 -0
package/src/__tests/CWIStyleWalletManager.test.js.map +1 -0
package/src/__tests/CWIStyleWalletManager.test.ts +675 -0
package/src/__tests/WalletPermissionsManager.callbacks.test.ts +323 -0
package/src/__tests/WalletPermissionsManager.checks.test.ts +844 -0
package/src/__tests/WalletPermissionsManager.encryption.test.ts +412 -0
package/src/__tests/WalletPermissionsManager.fixtures.ts +307 -0
package/src/__tests/WalletPermissionsManager.flows.test.ts +462 -0
package/src/__tests/WalletPermissionsManager.initialization.test.ts +300 -0
package/src/__tests/WalletPermissionsManager.pmodules.test.ts +798 -0
package/src/__tests/WalletPermissionsManager.proxying.test.ts +724 -0
package/src/__tests/WalletPermissionsManager.tokens.test.ts +503 -0
package/src/index.all.ts +27 -0
package/src/index.client.ts +25 -0
package/src/index.mobile.ts +21 -0
package/src/index.ts +1 -0
package/src/monitor/Monitor.ts +412 -0
package/src/monitor/MonitorDaemon.ts +188 -0
package/src/monitor/README.md +3 -0
package/src/monitor/__test/MonitorDaemon.man.test.ts +45 -0
package/src/monitor/tasks/TaskCheckForProofs.ts +243 -0
package/src/monitor/tasks/TaskCheckNoSends.ts +73 -0
package/src/monitor/tasks/TaskClock.ts +33 -0
package/src/monitor/tasks/TaskFailAbandoned.ts +54 -0
package/src/monitor/tasks/TaskMonitorCallHistory.ts +26 -0
package/src/monitor/tasks/TaskNewHeader.ts +93 -0
package/src/monitor/tasks/TaskPurge.ts +68 -0
package/src/monitor/tasks/TaskReorg.ts +89 -0
package/src/monitor/tasks/TaskReviewStatus.ts +48 -0
package/src/monitor/tasks/TaskSendWaiting.ts +122 -0
package/src/monitor/tasks/TaskSyncWhenIdle.ts +26 -0
package/src/monitor/tasks/TaskUnFail.ts +151 -0
package/src/monitor/tasks/WalletMonitorTask.ts +47 -0
package/src/sdk/CertOpsWallet.ts +18 -0
package/src/sdk/PrivilegedKeyManager.ts +372 -0
package/src/sdk/README.md +13 -0
package/src/sdk/WERR_errors.ts +234 -0
package/src/sdk/WalletError.ts +170 -0
package/src/sdk/WalletErrorFromJson.ts +80 -0
package/src/sdk/WalletServices.interfaces.ts +700 -0
package/src/sdk/WalletSigner.interfaces.ts +11 -0
package/src/sdk/WalletStorage.interfaces.ts +606 -0
package/src/sdk/__test/CertificateLifeCycle.test.ts +131 -0
package/src/sdk/__test/PrivilegedKeyManager.test.ts +738 -0
package/src/sdk/__test/WalletError.test.ts +318 -0
package/src/sdk/__test/validationHelpers.test.ts +21 -0
package/src/sdk/index.ts +10 -0
package/src/sdk/types.ts +226 -0
package/src/services/README.md +11 -0
package/src/services/ServiceCollection.ts +248 -0
package/src/services/Services.ts +603 -0
package/src/services/__tests/ARC.man.test.ts +123 -0
package/src/services/__tests/ARC.timeout.man.test.ts +79 -0
package/src/services/__tests/ArcGorillaPool.man.test.ts +108 -0
package/src/services/__tests/arcServices.test.ts +8 -0
package/src/services/__tests/bitrails.test.ts +56 -0
package/src/services/__tests/getMerklePath.test.ts +15 -0
package/src/services/__tests/getRawTx.test.ts +13 -0
package/src/services/__tests/postBeef.test.ts +104 -0
package/src/services/__tests/verifyBeef.test.ts +50 -0
package/src/services/chaintracker/BHServiceClient.ts +212 -0
package/src/services/chaintracker/ChaintracksChainTracker.ts +71 -0
package/src/services/chaintracker/__tests/ChaintracksChainTracker.test.ts +33 -0
package/src/services/chaintracker/__tests/ChaintracksServiceClient.test.ts +29 -0
package/src/services/chaintracker/chaintracks/Api/BlockHeaderApi.ts +72 -0
package/src/services/chaintracker/chaintracks/Api/BulkIngestorApi.ts +83 -0
package/src/services/chaintracker/chaintracks/Api/BulkStorageApi.ts +92 -0
package/src/services/chaintracker/chaintracks/Api/ChaintracksApi.ts +64 -0
package/src/services/chaintracker/chaintracks/Api/ChaintracksClientApi.ts +189 -0
package/src/services/chaintracker/chaintracks/Api/ChaintracksFetchApi.ts +18 -0
package/src/services/chaintracker/chaintracks/Api/ChaintracksFsApi.ts +58 -0
package/src/services/chaintracker/chaintracks/Api/ChaintracksStorageApi.ts +386 -0
package/src/services/chaintracker/chaintracks/Api/LiveIngestorApi.ts +25 -0
package/src/services/chaintracker/chaintracks/Chaintracks.ts +609 -0
package/src/services/chaintracker/chaintracks/ChaintracksService.ts +199 -0
package/src/services/chaintracker/chaintracks/ChaintracksServiceClient.ts +154 -0
package/src/services/chaintracker/chaintracks/Ingest/BulkIngestorBase.ts +176 -0
package/src/services/chaintracker/chaintracks/Ingest/BulkIngestorCDN.ts +174 -0
package/src/services/chaintracker/chaintracks/Ingest/BulkIngestorCDNBabbage.ts +18 -0
package/src/services/chaintracker/chaintracks/Ingest/BulkIngestorWhatsOnChainCdn.ts +113 -0
package/src/services/chaintracker/chaintracks/Ingest/BulkIngestorWhatsOnChainWs.ts +81 -0
package/src/services/chaintracker/chaintracks/Ingest/LiveIngestorBase.ts +86 -0
package/src/services/chaintracker/chaintracks/Ingest/LiveIngestorTeranodeP2P.ts +59 -0
package/src/services/chaintracker/chaintracks/Ingest/LiveIngestorWhatsOnChainPoll.ts +104 -0
package/src/services/chaintracker/chaintracks/Ingest/LiveIngestorWhatsOnChainWs.ts +66 -0
package/src/services/chaintracker/chaintracks/Ingest/WhatsOnChainIngestorWs.ts +566 -0
package/src/services/chaintracker/chaintracks/Ingest/WhatsOnChainServices.ts +219 -0
package/src/services/chaintracker/chaintracks/Ingest/__tests/BulkIngestorCDNBabbage.test.ts +54 -0
package/src/services/chaintracker/chaintracks/Ingest/__tests/LiveIngestorWhatsOnChainPoll.test.ts +33 -0
package/src/services/chaintracker/chaintracks/Ingest/__tests/WhatsOnChainServices.test.ts +124 -0
package/src/services/chaintracker/chaintracks/Storage/BulkStorageBase.ts +92 -0
package/src/services/chaintracker/chaintracks/Storage/ChaintracksKnexMigrations.ts +104 -0
package/src/services/chaintracker/chaintracks/Storage/ChaintracksStorageBase.ts +382 -0
package/src/services/chaintracker/chaintracks/Storage/ChaintracksStorageIdb.ts +574 -0
package/src/services/chaintracker/chaintracks/Storage/ChaintracksStorageKnex.ts +438 -0
package/src/services/chaintracker/chaintracks/Storage/ChaintracksStorageMemory.ts +29 -0
package/src/services/chaintracker/chaintracks/Storage/ChaintracksStorageNoDb.ts +304 -0
package/src/services/chaintracker/chaintracks/Storage/__tests/ChaintracksStorageIdb.test.ts +102 -0
package/src/services/chaintracker/chaintracks/Storage/__tests/ChaintracksStorageKnex.test.ts +45 -0
package/src/services/chaintracker/chaintracks/__tests/Chaintracks.test.ts +77 -0
package/src/services/chaintracker/chaintracks/__tests/ChaintracksClientApi.test.ts +192 -0
package/src/services/chaintracker/chaintracks/__tests/LocalCdnServer.ts +75 -0
package/src/services/chaintracker/chaintracks/__tests/createIdbChaintracks.test.ts +62 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest349/mainNetBlockHeaders.json +1 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest349/mainNet_0.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest349/mainNet_1.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest349/mainNet_2.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest349/mainNet_3.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest379/mainNetBlockHeaders.json +1 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest379/mainNet_0.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest379/mainNet_1.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest379/mainNet_2.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest379/mainNet_3.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest399/mainNetBlockHeaders.json +1 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest399/mainNet_0.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest399/mainNet_1.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest399/mainNet_2.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest399/mainNet_3.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest402/mainNetBlockHeaders.json +1 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest402/mainNet_0.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest402/mainNet_1.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest402/mainNet_2.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest402/mainNet_3.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest402/mainNet_4.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest499/mainNetBlockHeaders.json +1 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest499/mainNet_0.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest499/mainNet_1.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest499/mainNet_2.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest499/mainNet_3.headers +0 -0
package/src/services/chaintracker/chaintracks/__tests/data/cdnTest499/mainNet_4.headers +0 -0
package/src/services/chaintracker/chaintracks/createDefaultIdbChaintracksOptions.ts +92 -0
package/src/services/chaintracker/chaintracks/createDefaultKnexChaintracksOptions.ts +111 -0
package/src/services/chaintracker/chaintracks/createDefaultNoDbChaintracksOptions.ts +91 -0
package/src/services/chaintracker/chaintracks/createIdbChaintracks.ts +60 -0
package/src/services/chaintracker/chaintracks/createKnexChaintracks.ts +65 -0
package/src/services/chaintracker/chaintracks/createNoDbChaintracks.ts +60 -0
package/src/services/chaintracker/chaintracks/index.all.ts +12 -0
package/src/services/chaintracker/chaintracks/index.client.ts +4 -0
package/src/services/chaintracker/chaintracks/index.mobile.ts +37 -0
package/src/services/chaintracker/chaintracks/util/BulkFileDataManager.ts +975 -0
package/src/services/chaintracker/chaintracks/util/BulkFileDataReader.ts +60 -0
package/src/services/chaintracker/chaintracks/util/BulkFilesReader.ts +336 -0
package/src/services/chaintracker/chaintracks/util/BulkHeaderFile.ts +247 -0
package/src/services/chaintracker/chaintracks/util/ChaintracksFetch.ts +69 -0
package/src/services/chaintracker/chaintracks/util/ChaintracksFs.ts +141 -0
package/src/services/chaintracker/chaintracks/util/HeightRange.ts +153 -0
package/src/services/chaintracker/chaintracks/util/SingleWriterMultiReaderLock.ts +76 -0
package/src/services/chaintracker/chaintracks/util/__tests/BulkFileDataManager.test.ts +304 -0
package/src/services/chaintracker/chaintracks/util/__tests/ChaintracksFetch.test.ts +60 -0
package/src/services/chaintracker/chaintracks/util/__tests/HeightRange.test.ts +67 -0
package/src/services/chaintracker/chaintracks/util/__tests/SingleWriterMultiReaderLock.test.ts +49 -0
package/src/services/chaintracker/chaintracks/util/blockHeaderUtilities.ts +573 -0
package/src/services/chaintracker/chaintracks/util/dirtyHashes.ts +29 -0
package/src/services/chaintracker/chaintracks/util/validBulkHeaderFilesByFileHash.ts +432 -0
package/src/services/chaintracker/index.all.ts +4 -0
package/src/services/chaintracker/index.client.ts +4 -0
package/src/services/chaintracker/index.mobile.ts +4 -0
package/src/services/createDefaultWalletServicesOptions.ts +77 -0
package/src/services/index.ts +1 -0
package/src/services/processingErrors/arcSuccessError.json +76 -0
package/src/services/providers/ARC.ts +350 -0
package/src/services/providers/Bitails.ts +256 -0
package/src/services/providers/SdkWhatsOnChain.ts +83 -0
package/src/services/providers/WhatsOnChain.ts +883 -0
package/src/services/providers/__tests/WhatsOnChain.test.ts +242 -0
package/src/services/providers/__tests/exchangeRates.test.ts +18 -0
package/src/services/providers/exchangeRates.ts +265 -0
package/src/services/providers/getBeefForTxid.ts +369 -0
package/src/signer/README.md +5 -0
package/src/signer/WalletSigner.ts +17 -0
package/src/signer/methods/acquireDirectCertificate.ts +52 -0
package/src/signer/methods/buildSignableTransaction.ts +183 -0
package/src/signer/methods/completeSignedTransaction.ts +117 -0
package/src/signer/methods/createAction.ts +172 -0
package/src/signer/methods/internalizeAction.ts +106 -0
package/src/signer/methods/proveCertificate.ts +43 -0
package/src/signer/methods/signAction.ts +54 -0
package/src/storage/README.md +14 -0
package/src/storage/StorageIdb.ts +2304 -0
package/src/storage/StorageKnex.ts +1425 -0
package/src/storage/StorageProvider.ts +810 -0
package/src/storage/StorageReader.ts +194 -0
package/src/storage/StorageReaderWriter.ts +432 -0
package/src/storage/StorageSyncReader.ts +34 -0
package/src/storage/WalletStorageManager.ts +943 -0
package/src/storage/__test/StorageIdb.test.ts +43 -0
package/src/storage/__test/WalletStorageManager.test.ts +275 -0
package/src/storage/__test/adminStats.man.test.ts +89 -0
package/src/storage/__test/getBeefForTransaction.test.ts +385 -0
package/src/storage/index.all.ts +11 -0
package/src/storage/index.client.ts +7 -0
package/src/storage/index.mobile.ts +6 -0
package/src/storage/methods/ListActionsSpecOp.ts +70 -0
package/src/storage/methods/ListOutputsSpecOp.ts +129 -0
package/src/storage/methods/__test/GenerateChange/generateChangeSdk.test.ts +1057 -0
package/src/storage/methods/__test/GenerateChange/randomValsUsed1.ts +20 -0
package/src/storage/methods/__test/offsetKey.test.ts +274 -0
package/src/storage/methods/attemptToPostReqsToNetwork.ts +389 -0
package/src/storage/methods/createAction.ts +947 -0
package/src/storage/methods/generateChange.ts +556 -0
package/src/storage/methods/getBeefForTransaction.ts +139 -0
package/src/storage/methods/getSyncChunk.ts +293 -0
package/src/storage/methods/internalizeAction.ts +562 -0
package/src/storage/methods/listActionsIdb.ts +183 -0
package/src/storage/methods/listActionsKnex.ts +226 -0
package/src/storage/methods/listCertificates.ts +73 -0
package/src/storage/methods/listOutputsIdb.ts +203 -0
package/src/storage/methods/listOutputsKnex.ts +263 -0
package/src/storage/methods/offsetKey.ts +89 -0
package/src/storage/methods/processAction.ts +420 -0
package/src/storage/methods/purgeData.ts +251 -0
package/src/storage/methods/purgeDataIdb.ts +10 -0
package/src/storage/methods/reviewStatus.ts +101 -0
package/src/storage/methods/reviewStatusIdb.ts +43 -0
package/src/storage/methods/utils.Buffer.ts +33 -0
package/src/storage/methods/utils.ts +56 -0
package/src/storage/remoting/StorageClient.ts +567 -0
package/src/storage/remoting/StorageMobile.ts +544 -0
package/src/storage/remoting/StorageServer.ts +291 -0
package/src/storage/remoting/__test/StorageClient.test.ts +113 -0
package/src/storage/schema/KnexMigrations.ts +489 -0
package/src/storage/schema/StorageIdbSchema.ts +150 -0
package/src/storage/schema/entities/EntityBase.ts +210 -0
package/src/storage/schema/entities/EntityCertificate.ts +188 -0
package/src/storage/schema/entities/EntityCertificateField.ts +136 -0
package/src/storage/schema/entities/EntityCommission.ts +148 -0
package/src/storage/schema/entities/EntityOutput.ts +290 -0
package/src/storage/schema/entities/EntityOutputBasket.ts +153 -0
package/src/storage/schema/entities/EntityOutputTag.ts +121 -0
package/src/storage/schema/entities/EntityOutputTagMap.ts +123 -0
package/src/storage/schema/entities/EntityProvenTx.ts +319 -0
package/src/storage/schema/entities/EntityProvenTxReq.ts +580 -0
package/src/storage/schema/entities/EntitySyncState.ts +389 -0
package/src/storage/schema/entities/EntityTransaction.ts +306 -0
package/src/storage/schema/entities/EntityTxLabel.ts +121 -0
package/src/storage/schema/entities/EntityTxLabelMap.ts +123 -0
package/src/storage/schema/entities/EntityUser.ts +112 -0
package/src/storage/schema/entities/MergeEntity.ts +73 -0
package/src/storage/schema/entities/__tests/CertificateFieldTests.test.ts +353 -0
package/src/storage/schema/entities/__tests/CertificateTests.test.ts +354 -0
package/src/storage/schema/entities/__tests/CommissionTests.test.ts +371 -0
package/src/storage/schema/entities/__tests/OutputBasketTests.test.ts +278 -0
package/src/storage/schema/entities/__tests/OutputTagMapTests.test.ts +242 -0
package/src/storage/schema/entities/__tests/OutputTagTests.test.ts +288 -0
package/src/storage/schema/entities/__tests/OutputTests.test.ts +464 -0
package/src/storage/schema/entities/__tests/ProvenTxReqTests.test.ts +340 -0
package/src/storage/schema/entities/__tests/ProvenTxTests.test.ts +504 -0
package/src/storage/schema/entities/__tests/SyncStateTests.test.ts +288 -0
package/src/storage/schema/entities/__tests/TransactionTests.test.ts +604 -0
package/src/storage/schema/entities/__tests/TxLabelMapTests.test.ts +361 -0
package/src/storage/schema/entities/__tests/TxLabelTests.test.ts +198 -0
package/src/storage/schema/entities/__tests/stampLogTests.test.ts +90 -0
package/src/storage/schema/entities/__tests/usersTests.test.ts +340 -0
package/src/storage/schema/entities/index.ts +16 -0
package/src/storage/schema/tables/TableCertificate.ts +21 -0
package/src/storage/schema/tables/TableCertificateField.ts +12 -0
package/src/storage/schema/tables/TableCommission.ts +13 -0
package/src/storage/schema/tables/TableMonitorEvent.ts +9 -0
package/src/storage/schema/tables/TableOutput.ts +64 -0
package/src/storage/schema/tables/TableOutputBasket.ts +12 -0
package/src/storage/schema/tables/TableOutputTag.ts +10 -0
package/src/storage/schema/tables/TableOutputTagMap.ts +9 -0
package/src/storage/schema/tables/TableProvenTx.ts +14 -0
package/src/storage/schema/tables/TableProvenTxReq.ts +65 -0
package/src/storage/schema/tables/TableSettings.ts +17 -0
package/src/storage/schema/tables/TableSyncState.ts +18 -0
package/src/storage/schema/tables/TableTransaction.ts +54 -0
package/src/storage/schema/tables/TableTxLabel.ts +10 -0
package/src/storage/schema/tables/TableTxLabelMap.ts +9 -0
package/src/storage/schema/tables/TableUser.ts +16 -0
package/src/storage/schema/tables/index.ts +16 -0
package/src/storage/sync/StorageMySQLDojoReader.ts +696 -0
package/src/storage/sync/index.ts +1 -0
package/src/utility/Format.ts +133 -0
package/src/utility/README.md +3 -0
package/src/utility/ReaderUint8Array.ts +187 -0
package/src/utility/ScriptTemplateBRC29.ts +73 -0
package/src/utility/__tests/utilityHelpers.noBuffer.test.ts +109 -0
package/src/utility/aggregateResults.ts +68 -0
package/src/utility/identityUtils.ts +159 -0
package/src/utility/index.all.ts +7 -0
package/src/utility/index.client.ts +7 -0
package/src/utility/parseTxScriptOffsets.ts +29 -0
package/src/utility/stampLog.ts +69 -0
package/src/utility/tscProofToMerklePath.ts +48 -0
package/src/utility/utilityHelpers.buffer.ts +34 -0
package/src/utility/utilityHelpers.noBuffer.ts +60 -0
package/src/utility/utilityHelpers.ts +275 -0
package/src/wab-client/WABClient.ts +94 -0
package/src/wab-client/__tests/WABClient.man.test.ts +59 -0
package/src/wab-client/auth-method-interactors/AuthMethodInteractor.ts +47 -0
package/src/wab-client/auth-method-interactors/DevConsoleInteractor.ts +73 -0
package/src/wab-client/auth-method-interactors/PersonaIDInteractor.ts +35 -0
package/src/wab-client/auth-method-interactors/TwilioPhoneInteractor.ts +72 -0
package/syncVersions.js +71 -0
package/test/Wallet/StorageClient/storageClient.man.test.ts +75 -0
package/test/Wallet/action/abortAction.test.ts +47 -0
package/test/Wallet/action/createAction.test.ts +299 -0
package/test/Wallet/action/createAction2.test.ts +1273 -0
package/test/Wallet/action/createActionToGenerateBeefs.man.test.ts +293 -0
package/test/Wallet/action/internalizeAction.a.test.ts +286 -0
package/test/Wallet/action/internalizeAction.test.ts +682 -0
package/test/Wallet/action/relinquishOutput.test.ts +37 -0
package/test/Wallet/certificate/acquireCertificate.test.ts +298 -0
package/test/Wallet/certificate/listCertificates.test.ts +346 -0
package/test/Wallet/construct/Wallet.constructor.test.ts +57 -0
package/test/Wallet/get/getHeaderForHeight.test.ts +82 -0
package/test/Wallet/get/getHeight.test.ts +52 -0
package/test/Wallet/get/getKnownTxids.test.ts +86 -0
package/test/Wallet/get/getNetwork.test.ts +27 -0
package/test/Wallet/get/getVersion.test.ts +27 -0
package/test/Wallet/list/listActions.test.ts +279 -0
package/test/Wallet/list/listActions2.test.ts +1381 -0
package/test/Wallet/list/listCertificates.test.ts +118 -0
package/test/Wallet/list/listOutputs.test.ts +447 -0
package/test/Wallet/live/walletLive.man.test.ts +521 -0
package/test/Wallet/local/localWallet.man.test.ts +93 -0
package/test/Wallet/local/localWallet2.man.test.ts +277 -0
package/test/Wallet/signAction/mountaintop.man.test.ts +130 -0
package/test/Wallet/specOps/specOps.man.test.ts +220 -0
package/test/Wallet/support/janitor.man.test.ts +40 -0
package/test/Wallet/support/operations.man.test.ts +407 -0
package/test/Wallet/support/reqErrorReview.2025.05.06.man.test.ts +347 -0
package/test/Wallet/sync/Wallet.sync.test.ts +215 -0
package/test/Wallet/sync/Wallet.updateWalletLegacyTestData.man.test.ts +203 -0
package/test/Wallet/sync/setActive.test.ts +170 -0
package/test/WalletClient/LocalKVStore.man.test.ts +114 -0
package/test/WalletClient/WERR.man.test.ts +35 -0
package/test/bsv-ts-sdk/LocalKVStore.test.ts +102 -0
package/test/checkDB.ts +57 -0
package/test/checkdb +0 -0
package/test/examples/backup.man.test.ts +59 -0
package/test/examples/pushdrop.test.ts +282 -0
package/test/monitor/Monitor.test.ts +620 -0
package/test/services/Services.test.ts +263 -0
package/test/storage/KnexMigrations.test.ts +86 -0
package/test/storage/StorageMySQLDojoReader.man.test.ts +60 -0
package/test/storage/count.test.ts +177 -0
package/test/storage/find.test.ts +195 -0
package/test/storage/findLegacy.test.ts +67 -0
package/test/storage/idb/allocateChange.test.ts +251 -0
package/test/storage/idb/count.test.ts +158 -0
package/test/storage/idb/find.test.ts +177 -0
package/test/storage/idb/idbSpeed.test.ts +36 -0
package/test/storage/idb/insert.test.ts +268 -0
package/test/storage/idb/transactionAbort.test.ts +108 -0
package/test/storage/idb/update.test.ts +999 -0
package/test/storage/insert.test.ts +278 -0
package/test/storage/update.test.ts +1021 -0
package/test/storage/update2.test.ts +897 -0
package/test/utils/TestUtilsWalletStorage.ts +2526 -0
package/test/utils/localWalletMethods.ts +363 -0
package/test/utils/removeFailedFromDatabase.sql +17 -0
package/ts2md.json +44 -0
package/tsconfig.all.json +31 -0
package/tsconfig.client.json +29 -0
package/tsconfig.json +17 -0
package/tsconfig.mobile.json +28 -0

package/src/__tests/WalletPermissionsManager.proxying.test.ts ADDED Viewed

@@ -0,0 +1,724 @@
+import { mockUnderlyingWallet, MockedBSV_SDK, MockTransaction } from './WalletPermissionsManager.fixtures'
+import { WalletPermissionsManager, PermissionsManagerConfig } from '../WalletPermissionsManager'
+jest.mock('@bsv/sdk', () => MockedBSV_SDK)
+describe('WalletPermissionsManager - Regression & Integration with Underlying Wallet', () => {
+  let underlying: jest.Mocked<any>
+  let manager: WalletPermissionsManager
+  beforeEach(() => {
+    // Create a fresh underlying mock wallet
+    underlying = mockUnderlyingWallet()
+    // Default config: everything enforced for maximum coverage
+    const defaultConfig: PermissionsManagerConfig = {
+      seekProtocolPermissionsForSigning: true,
+      seekProtocolPermissionsForEncrypting: true,
+      seekProtocolPermissionsForHMAC: true,
+      seekPermissionsForKeyLinkageRevelation: true,
+      seekPermissionsForPublicKeyRevelation: true,
+      seekPermissionsForIdentityKeyRevelation: true,
+      seekPermissionsForIdentityResolution: true,
+      seekBasketInsertionPermissions: true,
+      seekBasketRemovalPermissions: true,
+      seekBasketListingPermissions: true,
+      seekPermissionWhenApplyingActionLabels: true,
+      seekPermissionWhenListingActionsByLabel: true,
+      seekCertificateDisclosurePermissions: true,
+      seekCertificateAcquisitionPermissions: true,
+      seekCertificateRelinquishmentPermissions: true,
+      seekCertificateListingPermissions: true,
+      encryptWalletMetadata: true,
+      seekSpendingPermissions: true,
+      differentiatePrivilegedOperations: true
+    }
+    // We pass "admin.test" as the admin origin
+    manager = new WalletPermissionsManager(underlying, 'admin.test', defaultConfig)
+    // For these tests, we don't want to deal with UI prompts or real user interactions.
+    // We stub out any permission requests by auto-granting ephemeral in all cases
+    manager.bindCallback('onProtocolPermissionRequested', async req => {
+      await manager.grantPermission({
+        requestID: req.requestID,
+        ephemeral: true
+      })
+    })
+    manager.bindCallback('onBasketAccessRequested', async req => {
+      await manager.grantPermission({
+        requestID: req.requestID,
+        ephemeral: true
+      })
+    })
+    manager.bindCallback('onCertificateAccessRequested', async req => {
+      await manager.grantPermission({
+        requestID: req.requestID,
+        ephemeral: true
+      })
+    })
+    manager.bindCallback('onSpendingAuthorizationRequested', async req => {
+      // If the request is for a netSpent above some threshold, let's simulate a denial for one test scenario
+      // By default, we'll just ephemeral-grant.
+      await manager.grantPermission({
+        requestID: req.requestID,
+        ephemeral: true
+      })
+    })
+  })
+  afterEach(() => {
+    jest.clearAllMocks()
+  })
+  /* -------------------------------------------------------------------------
+   * createAction / signAction / abortAction
+   * ----------------------------------------------------------------------- */
+  it('should pass createAction calls through, label them, handle metadata encryption, and check spending authorization', async () => {
+    try {
+      // We'll mock the "netSpent" scenario to be >0 by returning some mock input & output satoshis from the signableTransaction.
+      // The underlying mock createAction returns a signableTransaction with tx = []
+      // We can stub out the mock so that the manager sees inputs/outputs with certain sat amounts.
+      // But we have to remember the manager is parsing the signableTransaction via fromAtomicBEEF(…).
+      // We'll control that by adjusting the mock signableTransaction in the underlying.
+      // let's set a custom signableTransaction that returns 500 sat in inputs, 1000 in outputs, and 100 in fee
+      underlying.createAction.mockResolvedValueOnce({
+        signableTransaction: {
+          // The manager calls Transaction.fromAtomicBEEF() on this
+          tx: [0xde, 0xad], // not used in detail, but let's just pass some array
+          reference: 'test-ref'
+        }
+      })
+      // We also need to configure the fromAtomicBEEF mock so it returns a transaction with the specified inputs/outputs
+      const mockTx = new MockTransaction()
+      mockTx.fee = 100
+      // We'll define exactly one input we consider "originator-provided" with 500 sat
+      mockTx.inputs = [
+        {
+          sourceTXID: 'aaa',
+          sourceOutputIndex: 0,
+          sourceTransaction: {
+            outputs: [{ satoshis: 500 }]
+          }
+        }
+      ]
+      // We'll define 2 outputs. The manager will read the output amounts from the createAction call's "args.outputs" too,
+      // but we also set them here in case it cross-references them. We'll keep it consistent (2 outputs with total 1000).
+      mockTx.outputs = [{ satoshis: 600 }, { satoshis: 400 }]
+      // Now override fromAtomicBEEF to return our mockTx:
+      ;(MockedBSV_SDK.Transaction.fromAtomicBEEF as jest.Mock).mockReturnValue(mockTx)
+      // Attempt to create an action from a non-admin origin
+      await manager.createAction(
+        {
+          description: 'User purchase',
+          inputs: [
+            {
+              outpoint: 'aaa.0',
+              unlockingScriptLength: 73,
+              inputDescription: 'My input'
+            }
+          ],
+          outputs: [
+            {
+              lockingScript: '00abcd',
+              satoshis: 1000,
+              outputDescription: 'Purchase output',
+              basket: 'my-basket'
+            }
+          ],
+          labels: ['user-label', 'something-else']
+        },
+        'shop.example.com'
+      )
+      // The manager should have:
+      // 1) Called underlying.createAction
+      // 2) Inserted "admin originator shop.example.com" & "admin month YYYY-MM" into labels
+      // 3) Encrypted the metadata fields (description, inputDescription, outputDescription)
+      // 4) Ensured we needed spending permission for netSpent= (1000 + fee100) - 500 = 600
+      //    The onSpendingAuthorizationRequested callback ephemeral-granted it.
+      expect(underlying.createAction).toHaveBeenCalledTimes(1)
+      const callArgs = underlying.createAction.mock.calls[0][0]
+      expect(callArgs.labels).toContain('admin originator shop.example.com')
+      expect(callArgs.labels).toEqual(
+        expect.arrayContaining([
+          expect.stringContaining('admin month'),
+          'user-label',
+          'something-else',
+          'admin originator shop.example.com'
+        ])
+      )
+      // Confirm the metadata was replaced with some ciphertext array in createAction call
+      expect(callArgs.description).not.toBe('User purchase') // manager encrypts it
+      if (callArgs.inputs[0].inputDescription) {
+        expect(callArgs.inputs[0].inputDescription).not.toBe('My input')
+      }
+      if (callArgs.outputs[0].outputDescription) {
+        expect(callArgs.outputs[0].outputDescription).not.toBe('Purchase output')
+      }
+      // Also confirm we set signAndProcess to false if origin is non-admin
+      expect(callArgs.options.signAndProcess).toBe(false)
+      // The manager will parse the resulting signableTransaction, see netSpent=600, and request spending permission.
+      // Our callback ephemeral-granted.  So everything should proceed with no error.
+      // The manager returns the partial result from underlying
+      // We don't have a final sign call from the manager because signAndProcess is forcibly false.
+    } catch (eu) {
+      expect(true).toBe(false)
+    }
+  })
+  it('should abort the action if spending permission is denied', async () => {
+    // This time let's forcibly DENY the onSpendingAuthorizationRequested callback
+    manager.unbindCallback('onSpendingAuthorizationRequested', 0) // Unbind the ephemeral-grant
+    manager.bindCallback('onSpendingAuthorizationRequested', async req => {
+      await manager.denyPermission(req.requestID)
+    })
+    // We'll use the same approach: netSpent > 0 triggers the spending authorization check.
+    underlying.createAction.mockResolvedValueOnce({
+      signableTransaction: {
+        tx: [0xde],
+        reference: 'test-ref-2'
+      }
+    })
+    // Mock parse tx for netSpent
+    const mockTx = new MockTransaction()
+    mockTx.fee = 100
+    mockTx.inputs = [
+      {
+        sourceTXID: 'bbb',
+        sourceOutputIndex: 0,
+        sourceTransaction: {
+          outputs: [{ satoshis: 0 }]
+        }
+      }
+    ]
+    mockTx.outputs = [{ satoshis: 100 }]
+    ;(MockedBSV_SDK.Transaction.fromAtomicBEEF as jest.Mock).mockReturnValue(mockTx)
+    await expect(
+      manager.createAction(
+        {
+          description: 'User tries to spend 100 + fee=100 from 0 input => netSpent=200',
+          outputs: [
+            {
+              lockingScript: 'abc123',
+              satoshis: 100,
+              outputDescription: 'some out desc',
+              basket: 'some-basket'
+            }
+          ]
+        },
+        'user.example.com'
+      )
+    ).rejects.toThrow(/Permission denied/)
+    // We expect the manager to call underlying.abortAction with reference 'test-ref-2'
+    expect(underlying.abortAction).toHaveBeenCalledTimes(1)
+    expect(underlying.abortAction).toHaveBeenCalledWith({
+      reference: 'test-ref-2'
+    })
+  })
+  it('should throw an error if a non-admin tries signAndProcess=true', async () => {
+    // Non-admin tries signAndProcess=true => manager throws
+    await expect(
+      manager.createAction(
+        {
+          description: 'Trying signAndProcess from non-admin',
+          outputs: [
+            {
+              lockingScript: '1234',
+              satoshis: 50,
+              basket: 'user-basket',
+              outputDescription: 'Description'
+            }
+          ],
+          options: {
+            signAndProcess: true
+          }
+        },
+        'someuser.com'
+      )
+    ).rejects.toThrow(/Only the admin originator can set signAndProcess=true/)
+  })
+  it('should proxy signAction calls directly if invoked by the user', async () => {
+    // Typically, signAction is used after createAction returns a partial signableTransaction
+    // We'll confirm it passes arguments verbatim to underlying
+    const result = await manager.signAction(
+      {
+        reference: 'my-ref',
+        spends: {
+          0: {
+            unlockingScript: 'my-script'
+          }
+        }
+      },
+      'nonadmin.com'
+    )
+    expect(underlying.signAction).toHaveBeenCalledTimes(1)
+    expect(underlying.signAction).toHaveBeenCalledWith(
+      {
+        reference: 'my-ref',
+        spends: {
+          0: {
+            unlockingScript: 'my-script'
+          }
+        }
+      },
+      'nonadmin.com'
+    )
+    // returns the underlying result
+    expect(result.txid).toBe('fake-txid')
+  })
+  it('should proxy abortAction calls directly', async () => {
+    const result = await manager.abortAction({ reference: 'abort-me' }, 'someuser.com')
+    expect(underlying.abortAction).toHaveBeenCalledTimes(1)
+    expect(underlying.abortAction).toHaveBeenCalledWith({ reference: 'abort-me' }, 'someuser.com')
+    expect(result).toEqual({ aborted: true })
+  })
+  /* -------------------------------------------------------------------------
+   * listActions / internalizeAction
+   * ----------------------------------------------------------------------- */
+  it('should call listActions on the underlying wallet and decrypt metadata fields if encryptWalletMetadata=true', async () => {
+    // Underlying returns some encrypted metadata
+    underlying.listActions.mockResolvedValueOnce({
+      totalActions: 1,
+      actions: [
+        {
+          actionTXID: 'aaa',
+          description: 'EncryptedStuff',
+          inputs: [
+            {
+              outpoint: 'xxx.0',
+              inputDescription: 'EncryptedIn'
+            }
+          ],
+          outputs: [
+            {
+              lockingScript: 'deadbeef',
+              outputDescription: 'EncryptedOut',
+              customInstructions: 'EncryptedCustom'
+            }
+          ],
+          labels: ['user-label']
+        }
+      ]
+    })
+    // We'll have the manager attempt to decrypt. The manager calls `underlying.decrypt`
+    // which is mocked to return plaintext [42, 42, 42, 42, 42, 42, 42]. That is "asterisk-asterisk" in ASCII
+    // So let's see how the manager transforms it back to a string: fromCharCode(42,42) => "**"
+    // However, note that the manager's "maybeDecryptMetadata()" tries to decrypt the field
+    // If it works, it returns the decrypted string. Our underlying mock decrypt => "[42,42]" => "**"
+    // So let's expect the final returned fields to be "**".
+    const result = await manager.listActions({ labels: ['some-label'] }, 'nonadmin.com')
+    expect(underlying.listActions).toHaveBeenCalledTimes(1)
+    // The manager calls ensureLabelAccess first, which triggers a protocol permission request
+    // we ephemeral-grant. Then it calls underlying.listActions.
+    expect(result.actions[0].description).toBe('*****') // Decrypted from [42, 42, 42, 42, 42, 42, 42]
+    expect(result.actions[0].inputs![0].inputDescription).toBe('*****')
+    expect(result.actions[0].outputs![0].outputDescription).toBe('*****')
+    expect(result.actions[0].outputs![0].customInstructions).toBe('*****')
+  })
+  it('should pass internalizeAction calls to underlying, after ensuring basket permissions and encrypting customInstructions if config=on', async () => {
+    await manager.internalizeAction(
+      {
+        tx: [],
+        description: 'Internalizing outputs with basket insertion',
+        outputs: [
+          {
+            outputIndex: 0,
+            protocol: 'basket insertion',
+            insertionRemittance: {
+              basket: 'some-basket',
+              customInstructions: 'plaintext instructions'
+            }
+          }
+        ]
+      },
+      'someuser.com'
+    )
+    // The manager ensures basket insertion => ephemeral permission granted
+    // Then it encrypts 'plaintext instructions' before passing it to underlying
+    expect(underlying.internalizeAction).toHaveBeenCalledTimes(1)
+    const callArgs = underlying.internalizeAction.mock.calls[0][0]
+    expect(callArgs.outputs[0].insertionRemittance.customInstructions).not.toBe('plaintext instructions')
+    // There's no direct check that the string is "**" or something, because it's encrypted.
+    // We just confirm it was changed from the original plaintext.
+  })
+  /* -------------------------------------------------------------------------
+   * listOutputs / relinquishOutput
+   * ----------------------------------------------------------------------- */
+  it('should ensure basket listing permission then call listOutputs, decrypting customInstructions', async () => {
+    jest.spyOn(MockedBSV_SDK.Transaction, 'fromBEEF').mockImplementation(() => {
+      const mockTx = new MockTransaction()
+      // Add outputs with lockingScript
+      mockTx.outputs = [
+        {
+          lockingScript: {
+            // Ensure this matches what PushDrop.decode expects to work with
+            toHex: () => 'mockLockingScriptHex'
+          }
+        }
+      ]
+      return mockTx
+    })
+    underlying.listOutputs.mockResolvedValue({
+      totalOutputs: 1,
+      outputs: [
+        {
+          outpoint: 'zzz.0',
+          satoshis: 100,
+          lockingScript: 'mockscript',
+          customInstructions: 'EncryptedWeird'
+        }
+      ]
+    })
+    const result = await manager.listOutputs({ basket: 'user-basket' }, 'app.example.com')
+    // manager ephemeral-grants basket permission
+    expect(underlying.listOutputs).toHaveBeenCalledTimes(2)
+    expect(underlying.listOutputs.mock.calls).toEqual([
+      [
+        {
+          basket: 'admin basket-access',
+          include: 'entire transactions',
+          tagQueryMode: 'all',
+          tags: ['originator app.example.com', 'basket user-basket']
+        },
+        'admin.test' // querying to see if we have permission
+      ],
+      [
+        {
+          basket: 'user-basket'
+        },
+        'app.example.com' // the actual underlying call
+      ]
+    ])
+    expect(result.outputs[0].customInstructions).toBe('*****') // from [42,42] decryption
+  })
+  it('should ensure basket removal permission then call relinquishOutput', async () => {
+    await manager.relinquishOutput(
+      {
+        output: 'xxx.0',
+        basket: 'some-basket'
+      },
+      'nonadmin.com'
+    )
+    expect(underlying.relinquishOutput).toHaveBeenCalledTimes(1)
+    expect(underlying.relinquishOutput).toHaveBeenCalledWith({ output: 'xxx.0', basket: 'some-basket' }, 'nonadmin.com')
+  })
+  /* -------------------------------------------------------------------------
+   * getPublicKey / revealCounterpartyKeyLinkage / revealSpecificKeyLinkage
+   * ----------------------------------------------------------------------- */
+  it('should call getPublicKey on underlying after ensuring protocol permission', async () => {
+    const result = await manager.getPublicKey(
+      {
+        protocolID: [1, 'test-pubkey'],
+        keyID: 'my-key'
+      },
+      'user.example.com'
+    )
+    expect(underlying.getPublicKey).toHaveBeenCalledTimes(1)
+    expect(underlying.getPublicKey).toHaveBeenCalledWith(
+      {
+        protocolID: [1, 'test-pubkey'],
+        keyID: 'my-key'
+      },
+      'user.example.com'
+    )
+    expect(result.publicKey).toBe('029999...')
+  })
+  it('should call revealCounterpartyKeyLinkage with permission check, pass result', async () => {
+    const result = await manager.revealCounterpartyKeyLinkage(
+      {
+        privileged: true,
+        verifier: '0222aaa',
+        counterparty: '02bbbccc',
+        privilegedReason: 'test reason'
+      },
+      'user.example.com'
+    )
+    expect(underlying.revealCounterpartyKeyLinkage).toHaveBeenCalledTimes(1)
+    expect(underlying.revealCounterpartyKeyLinkage).toHaveBeenCalledWith(
+      {
+        privileged: true,
+        verifier: '0222aaa',
+        counterparty: '02bbbccc',
+        privilegedReason: 'test reason'
+      },
+      'user.example.com'
+    )
+    expect(result.prover).toBe('02abcdef...')
+  })
+  it('should call revealSpecificKeyLinkage with permission check, pass result', async () => {
+    const result = await manager.revealSpecificKeyLinkage(
+      {
+        privileged: false,
+        verifier: '0222ddd',
+        protocolID: [2, 'special'],
+        keyID: '5',
+        counterparty: '022222',
+        privilegedReason: 'need to check link'
+      },
+      'user.example.com'
+    )
+    expect(underlying.revealSpecificKeyLinkage).toHaveBeenCalledTimes(1)
+    expect(underlying.revealSpecificKeyLinkage).toHaveBeenCalledWith(
+      {
+        privileged: false,
+        verifier: '0222ddd',
+        protocolID: [2, 'special'],
+        keyID: '5',
+        counterparty: '022222',
+        privilegedReason: 'need to check link'
+      },
+      'user.example.com'
+    )
+    expect(result.prover).toBe('02abcdef...')
+  })
+  /* -------------------------------------------------------------------------
+   * encrypt / decrypt / createHmac / verifyHmac / createSignature / verifySignature
+   * ----------------------------------------------------------------------- */
+  it('should proxy encrypt() calls after checking protocol permission', async () => {
+    const result = await manager.encrypt(
+      {
+        protocolID: [1, 'secret-proto'],
+        plaintext: [1, 2, 3],
+        keyID: 'mykey'
+      },
+      'user.example.com'
+    )
+    expect(underlying.encrypt).toHaveBeenCalledTimes(1)
+    expect(result.ciphertext).toEqual([42, 42, 42, 42, 42, 42, 42]) // from the mock
+  })
+  it('should proxy decrypt() calls after checking protocol permission', async () => {
+    const result = await manager.decrypt(
+      {
+        protocolID: [1, 'secret-proto'],
+        ciphertext: [99, 99],
+        keyID: 'somekey'
+      },
+      'user.example.com'
+    )
+    expect(underlying.decrypt).toHaveBeenCalledTimes(1)
+    expect(result.plaintext).toEqual([42, 42, 42, 42, 42])
+  })
+  it('should proxy createHmac() calls', async () => {
+    const result = await manager.createHmac(
+      {
+        protocolID: [2, 'hmac-proto'],
+        data: [11, 22],
+        keyID: 'hmacKey'
+      },
+      'someone.com'
+    )
+    expect(underlying.createHmac).toHaveBeenCalledTimes(1)
+    expect(result.hmac).toEqual([0xaa])
+  })
+  it('should proxy verifyHmac() calls', async () => {
+    const result = await manager.verifyHmac(
+      {
+        protocolID: [2, 'hmac-proto'],
+        data: [11, 22],
+        hmac: [0xaa],
+        keyID: 'hmacKey'
+      },
+      'someone.com'
+    )
+    expect(underlying.verifyHmac).toHaveBeenCalledTimes(1)
+    expect(result.valid).toBe(true)
+  })
+  it('should proxy createSignature() calls (already tested the netSpent logic in createAction, but let’s double-check)', async () => {
+    // We tested permission checks for signing in earlier tests, but let's confirm pass-through
+    const result = await manager.createSignature(
+      {
+        protocolID: [1, 'sign-proto'],
+        data: [10, 20],
+        keyID: '1'
+      },
+      'user.com'
+    )
+    expect(underlying.createSignature).toHaveBeenCalledTimes(1)
+    expect(result.signature).toEqual([0x30, 0x44])
+  })
+  it('should proxy verifySignature() calls', async () => {
+    const result = await manager.verifySignature(
+      {
+        protocolID: [1, 'verify-proto'],
+        data: [3, 4],
+        signature: [0x30, 0x44],
+        keyID: '2'
+      },
+      'user.com'
+    )
+    expect(underlying.verifySignature).toHaveBeenCalledTimes(1)
+    expect(result.valid).toBe(true)
+  })
+  /* -------------------------------------------------------------------------
+   * acquireCertificate / listCertificates / proveCertificate / relinquishCertificate
+   * ----------------------------------------------------------------------- */
+  it('should call acquireCertificate, verifying permission if config.seekCertificateAcquisitionPermissions=true', async () => {
+    const result = await manager.acquireCertificate(
+      {
+        type: 'my-cert',
+        certifier: '02aaaa...',
+        acquisitionProtocol: 'direct',
+        fields: { hello: 'world' }
+      },
+      'user.cert.com'
+    )
+    expect(underlying.acquireCertificate).toHaveBeenCalledTimes(1)
+    expect(result.type).toBe('some-cert-type')
+  })
+  it('should call listCertificates, verifying permission if config.seekCertificateListingPermissions=true', async () => {
+    const result = await manager.listCertificates(
+      {
+        privileged: false,
+        certifiers: [],
+        types: []
+      },
+      'some.corp'
+    )
+    expect(underlying.listCertificates).toHaveBeenCalledTimes(1)
+    expect(result.totalCertificates).toBe(0)
+  })
+  it('should call proveCertificate after ensuring certificate permission', async () => {
+    const result = await manager.proveCertificate(
+      {
+        privileged: true,
+        verifier: '02vvvv',
+        certificate: {
+          type: 'kyc',
+          subject: '02aaaa...',
+          certifier: '02cccc...',
+          fields: { name: 'Alice' }
+        },
+        fieldsToReveal: ['name']
+      },
+      'user.corp'
+    )
+    expect(underlying.proveCertificate).toHaveBeenCalledTimes(1)
+    expect(result.keyringForVerifier).toBeDefined()
+  })
+  it('should call relinquishCertificate if config.seekCertificateRelinquishmentPermissions=true', async () => {
+    const result = await manager.relinquishCertificate(
+      {
+        type: 'some-cert',
+        serialNumber: 'raisin bran',
+        certifier: '023333'
+      },
+      'user-abc.com'
+    )
+    expect(underlying.relinquishCertificate).toHaveBeenCalledTimes(1)
+    expect(result).toEqual({ relinquished: true })
+  })
+  /* -------------------------------------------------------------------------
+   * discoverByIdentityKey / discoverByAttributes
+   * ----------------------------------------------------------------------- */
+  it('should call discoverByIdentityKey after ensuring identity resolution permission', async () => {
+    const result = await manager.discoverByIdentityKey({ identityKey: '0222fff...' }, 'someone-trying-lookup.com')
+    expect(underlying.discoverByIdentityKey).toHaveBeenCalledTimes(1)
+    expect(result.certificates.length).toBe(0)
+  })
+  it('should call discoverByAttributes after ensuring identity resolution permission', async () => {
+    const result = await manager.discoverByAttributes({ attributes: { name: 'Bob' } }, 'someone-trying-lookup.com')
+    expect(underlying.discoverByAttributes).toHaveBeenCalledTimes(1)
+    expect(result.certificates.length).toBe(0)
+  })
+  /* -------------------------------------------------------------------------
+   * isAuthenticated / waitForAuthentication / getHeight / getHeaderForHeight
+   * getNetwork / getVersion
+   * ----------------------------------------------------------------------- */
+  it('should proxy isAuthenticated without any special permission checks', async () => {
+    const result = await manager.isAuthenticated({}, 'someone.com')
+    expect(result.authenticated).toBe(true)
+    expect(underlying.isAuthenticated).toHaveBeenCalledTimes(1)
+  })
+  it('should proxy waitForAuthentication without any special permission checks', async () => {
+    const result = await manager.waitForAuthentication({}, 'someone.com')
+    expect(result.authenticated).toBe(true)
+    expect(underlying.waitForAuthentication).toHaveBeenCalledTimes(1)
+  }, 30000)
+  it('should proxy getHeight', async () => {
+    const result = await manager.getHeight({}, 'someone.com')
+    expect(result.height).toBe(777777)
+    expect(underlying.getHeight).toHaveBeenCalledTimes(1)
+  })
+  it('should proxy getHeaderForHeight', async () => {
+    const result = await manager.getHeaderForHeight({ height: 100000 }, 'someone.com')
+    expect(result.header).toMatch(/000000000000abc/)
+    expect(underlying.getHeaderForHeight).toHaveBeenCalledTimes(1)
+  })
+  it('should proxy getNetwork', async () => {
+    const result = await manager.getNetwork({}, 'someone.com')
+    expect(result.network).toBe('testnet')
+    expect(underlying.getNetwork).toHaveBeenCalledTimes(1)
+  })
+  it('should proxy getVersion', async () => {
+    const result = await manager.getVersion({}, 'someone.com')
+    expect(result.version).toBe('vendor-1.0.0')
+    expect(underlying.getVersion).toHaveBeenCalledTimes(1)
+  })
+  /* -------------------------------------------------------------------------
+   * Error propagation from underlying
+   * ----------------------------------------------------------------------- */
+  it('should propagate errors from the underlying wallet calls', async () => {
+    // Let's have underlying.createAction throw
+    underlying.createAction.mockRejectedValueOnce(new Error('Under-wallet failure'))
+    await expect(manager.createAction({ description: 'test error', outputs: [] }, 'someuser.com')).rejects.toThrow(
+      /Under-wallet failure/
+    )
+  })
+})