@buildersgarden/siwa 0.0.14 → 0.0.15

package/dist/erc8128.d.ts

@@ -11,7 +11,7 @@
  */
 import type { Address, PublicClient } from 'viem';
 import { type EthHttpSigner, type NonceStore } from '@slicekit/erc8128';
-import type { Signer, SignerType } from './signer.js';
+import type { Signer, SignerType } from './signer/index.js';
 export interface VerifyOptions {
     receiptSecret: string;
     rpcUrl?: string;

package/dist/index.d.ts

@@ -1,4 +1,4 @@
-export * from './signer.js';
+export * from './signer/index.js';
 export * from './keystore.js';
 export * from './siwa.js';
 export * from './identity.js';

package/dist/index.js

@@ -1,4 +1,4 @@
-export * from './signer.js';
+export * from './signer/index.js';
 export * from './keystore.js';
 export * from './siwa.js';
 export * from './identity.js';

package/dist/receipt.d.ts

@@ -14,7 +14,7 @@
  * Format: base64url(json).base64url(hmac-sha256)
  * Same token format as nonce tokens in siwa.ts.
  */
-import type { SignerType } from './signer.js';
+import type { SignerType } from './signer/index.js';
 export interface ReceiptPayload {
     address: string;
     agentId: number;

package/dist/registry.d.ts

@@ -8,7 +8,7 @@
  *   npm install viem
  */
 import { type PublicClient } from 'viem';
-import type { TransactionSigner } from './signer.js';
+import type { TransactionSigner } from './signer/index.js';
 /** Service endpoint types defined in ERC-8004 */
 export type ServiceType = 'web' | 'A2A' | 'MCP' | 'OASF' | 'ENS' | 'DID' | 'email';
 /** Trust models defined in ERC-8004 */

package/dist/{express.d.ts → server-side-wrappers/express.d.ts}

@@ -15,8 +15,8 @@
  * ```
  */
 import type { RequestHandler } from 'express';
-import { type SiwaAgent, type VerifyOptions } from './erc8128.js';
-import type { SignerType } from './signer.js';
+import { type SiwaAgent, type VerifyOptions } from '../erc8128.js';
+import type { SignerType } from '../signer/index.js';
 export type { SiwaAgent };
 declare global {
     namespace Express {

package/dist/{express.js → server-side-wrappers/express.js}

@@ -15,7 +15,7 @@
  * ```
  */
 import express from 'express';
-import { verifyAuthenticatedRequest, expressToFetchRequest, resolveReceiptSecret, } from './erc8128.js';
+import { verifyAuthenticatedRequest, expressToFetchRequest, resolveReceiptSecret, } from '../erc8128.js';
 // ---------------------------------------------------------------------------
 // CORS middleware
 // ---------------------------------------------------------------------------

package/dist/server-side-wrappers/fastify.d.ts

@@ -0,0 +1,58 @@
+/**
+ * fastify.ts
+ *
+ * Server-side wrappers for Fastify applications.
+ * Uses preHandler hooks for authentication.
+ *
+ * @example
+ * ```ts
+ * import Fastify from "fastify";
+ * import { siwaPlugin, siwaAuth } from "@buildersgarden/siwa/fastify";
+ *
+ * const fastify = Fastify();
+ * await fastify.register(siwaPlugin);
+ *
+ * fastify.post("/api/protected", { preHandler: siwaAuth() }, async (req) => {
+ *   return { agent: req.agent };
+ * });
+ * ```
+ */
+import type { FastifyPluginAsync, preHandlerHookHandler } from 'fastify';
+import { type SiwaAgent, type VerifyOptions } from '../erc8128.js';
+import type { SignerType } from '../signer/index.js';
+export type { SiwaAgent };
+declare module 'fastify' {
+    interface FastifyRequest {
+        agent?: SiwaAgent;
+    }
+}
+export interface SiwaAuthOptions {
+    /** HMAC secret for receipt verification. Defaults to RECEIPT_SECRET or SIWA_SECRET env. */
+    receiptSecret?: string;
+    /** RPC URL for optional onchain verification. */
+    rpcUrl?: string;
+    /** Enable onchain ownerOf check. */
+    verifyOnchain?: boolean;
+    /** Public client for ERC-1271 or onchain checks. */
+    publicClient?: VerifyOptions['publicClient'];
+    /** Allowed signer types. Omit to accept all. */
+    allowedSignerTypes?: SignerType[];
+}
+export interface SiwaPluginOptions {
+    /** CORS allowed origin(s). Defaults to true (reflect origin). */
+    origin?: boolean | string | string[];
+    /** Allowed headers including SIWA-specific ones. */
+    allowedHeaders?: string[];
+}
+/**
+ * Fastify plugin that sets up CORS with SIWA-specific headers.
+ * Requires @fastify/cors to be installed.
+ */
+export declare const siwaPlugin: FastifyPluginAsync<SiwaPluginOptions>;
+/**
+ * Fastify preHandler that verifies ERC-8128 HTTP Message Signatures + SIWA receipt.
+ *
+ * On success, sets `req.agent` with the verified agent identity.
+ * On failure, responds with 401.
+ */
+export declare function siwaAuth(options?: SiwaAuthOptions): preHandlerHookHandler;

package/dist/server-side-wrappers/fastify.js

@@ -0,0 +1,111 @@
+/**
+ * fastify.ts
+ *
+ * Server-side wrappers for Fastify applications.
+ * Uses preHandler hooks for authentication.
+ *
+ * @example
+ * ```ts
+ * import Fastify from "fastify";
+ * import { siwaPlugin, siwaAuth } from "@buildersgarden/siwa/fastify";
+ *
+ * const fastify = Fastify();
+ * await fastify.register(siwaPlugin);
+ *
+ * fastify.post("/api/protected", { preHandler: siwaAuth() }, async (req) => {
+ *   return { agent: req.agent };
+ * });
+ * ```
+ */
+import { verifyAuthenticatedRequest, resolveReceiptSecret, } from '../erc8128.js';
+// ---------------------------------------------------------------------------
+// CORS headers
+// ---------------------------------------------------------------------------
+const DEFAULT_SIWA_HEADERS = [
+    'Content-Type',
+    'X-SIWA-Receipt',
+    'Signature',
+    'Signature-Input',
+    'Content-Digest',
+];
+// ---------------------------------------------------------------------------
+// Request conversion helper
+// ---------------------------------------------------------------------------
+/**
+ * Convert a Fastify request to a Fetch Request for verification.
+ */
+function toFetchRequest(req) {
+    const url = `${req.protocol}://${req.hostname}${req.url}`;
+    return new Request(url, {
+        method: req.method,
+        headers: req.headers,
+        body: req.method !== 'GET' && req.method !== 'HEAD'
+            ? JSON.stringify(req.body)
+            : undefined,
+    });
+}
+// ---------------------------------------------------------------------------
+// Fastify plugin
+// ---------------------------------------------------------------------------
+/**
+ * Fastify plugin that sets up CORS with SIWA-specific headers.
+ * Requires @fastify/cors to be installed.
+ */
+export const siwaPlugin = async (fastify, options) => {
+    // Try to register @fastify/cors if available
+    try {
+        const cors = await import('@fastify/cors');
+        await fastify.register(cors.default ?? cors, {
+            origin: options?.origin ?? true,
+            allowedHeaders: options?.allowedHeaders ?? DEFAULT_SIWA_HEADERS,
+        });
+    }
+    catch {
+        // @fastify/cors not installed, set headers manually
+        fastify.addHook('onSend', async (req, reply) => {
+            reply.header('Access-Control-Allow-Origin', '*');
+            reply.header('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
+            reply.header('Access-Control-Allow-Headers', (options?.allowedHeaders ?? DEFAULT_SIWA_HEADERS).join(', '));
+        });
+        // Handle OPTIONS preflight
+        fastify.options('*', async (req, reply) => {
+            reply.status(204).send();
+        });
+    }
+};
+// ---------------------------------------------------------------------------
+// Auth preHandler
+// ---------------------------------------------------------------------------
+/**
+ * Fastify preHandler that verifies ERC-8128 HTTP Message Signatures + SIWA receipt.
+ *
+ * On success, sets `req.agent` with the verified agent identity.
+ * On failure, responds with 401.
+ */
+export function siwaAuth(options) {
+    return async (req, reply) => {
+        const hasSignature = req.headers['signature'] && req.headers['x-siwa-receipt'];
+        if (!hasSignature) {
+            return reply.status(401).send({
+                error: 'Unauthorized — provide ERC-8128 Signature + X-SIWA-Receipt headers',
+            });
+        }
+        try {
+            const secret = resolveReceiptSecret(options?.receiptSecret);
+            const result = await verifyAuthenticatedRequest(toFetchRequest(req), {
+                receiptSecret: secret,
+                rpcUrl: options?.rpcUrl,
+                verifyOnchain: options?.verifyOnchain,
+                publicClient: options?.publicClient,
+                allowedSignerTypes: options?.allowedSignerTypes,
+            });
+            if (!result.valid) {
+                return reply.status(401).send({ error: result.error });
+            }
+            req.agent = result.agent;
+        }
+        catch (err) {
+            return reply.status(401).send({ error: `ERC-8128 auth failed: ${err.message}` });
+        }
+    };
+}

package/dist/server-side-wrappers/hono.d.ts

@@ -0,0 +1,54 @@
+/**
+ * hono.ts
+ *
+ * Server-side wrappers for Hono applications.
+ * Uses web standard Request/Response APIs.
+ *
+ * @example
+ * ```ts
+ * import { Hono } from "hono";
+ * import { siwaMiddleware, siwaCors } from "@buildersgarden/siwa/hono";
+ *
+ * const app = new Hono();
+ * app.use("*", siwaCors());
+ * app.post("/api/protected", siwaMiddleware(), (c) => {
+ *   return c.json({ agent: c.get("agent") });
+ * });
+ * ```
+ */
+import type { MiddlewareHandler } from 'hono';
+import { type SiwaAgent, type VerifyOptions } from '../erc8128.js';
+import type { SignerType } from '../signer/index.js';
+export type { SiwaAgent };
+export interface SiwaMiddlewareOptions {
+    /** HMAC secret for receipt verification. Defaults to RECEIPT_SECRET or SIWA_SECRET env. */
+    receiptSecret?: string;
+    /** RPC URL for optional onchain verification. */
+    rpcUrl?: string;
+    /** Enable onchain ownerOf check. */
+    verifyOnchain?: boolean;
+    /** Public client for ERC-1271 or onchain checks. */
+    publicClient?: VerifyOptions['publicClient'];
+    /** Allowed signer types. Omit to accept all. */
+    allowedSignerTypes?: SignerType[];
+}
+export interface SiwaCorsOptions {
+    /** Allowed origin(s). Defaults to "*". */
+    origin?: string;
+    /** Allowed HTTP methods. */
+    methods?: string[];
+    /** Allowed headers. */
+    headers?: string[];
+}
+/**
+ * CORS middleware pre-configured with SIWA-specific headers.
+ * Handles OPTIONS preflight automatically.
+ */
+export declare function siwaCors(options?: SiwaCorsOptions): MiddlewareHandler;
+/**
+ * Hono middleware that verifies ERC-8128 HTTP Message Signatures + SIWA receipt.
+ *
+ * On success, sets `c.set("agent", agent)` with the verified agent identity.
+ * On failure, responds with 401.
+ */
+export declare function siwaMiddleware(options?: SiwaMiddlewareOptions): MiddlewareHandler;

package/dist/server-side-wrappers/hono.js

@@ -0,0 +1,82 @@
+/**
+ * hono.ts
+ *
+ * Server-side wrappers for Hono applications.
+ * Uses web standard Request/Response APIs.
+ *
+ * @example
+ * ```ts
+ * import { Hono } from "hono";
+ * import { siwaMiddleware, siwaCors } from "@buildersgarden/siwa/hono";
+ *
+ * const app = new Hono();
+ * app.use("*", siwaCors());
+ * app.post("/api/protected", siwaMiddleware(), (c) => {
+ *   return c.json({ agent: c.get("agent") });
+ * });
+ * ```
+ */
+import { verifyAuthenticatedRequest, resolveReceiptSecret, } from '../erc8128.js';
+// ---------------------------------------------------------------------------
+// CORS middleware
+// ---------------------------------------------------------------------------
+const DEFAULT_SIWA_HEADERS = [
+    'Content-Type',
+    'X-SIWA-Receipt',
+    'Signature',
+    'Signature-Input',
+    'Content-Digest',
+];
+/**
+ * CORS middleware pre-configured with SIWA-specific headers.
+ * Handles OPTIONS preflight automatically.
+ */
+export function siwaCors(options) {
+    const origin = options?.origin ?? '*';
+    const methods = options?.methods ?? ['GET', 'POST', 'OPTIONS'];
+    const headers = options?.headers ?? DEFAULT_SIWA_HEADERS;
+    return async (c, next) => {
+        c.header('Access-Control-Allow-Origin', origin);
+        c.header('Access-Control-Allow-Methods', methods.join(', '));
+        c.header('Access-Control-Allow-Headers', headers.join(', '));
+        if (c.req.method === 'OPTIONS') {
+            return c.body(null, 204);
+        }
+        await next();
+    };
+}
+// ---------------------------------------------------------------------------
+// Auth middleware
+// ---------------------------------------------------------------------------
+/**
+ * Hono middleware that verifies ERC-8128 HTTP Message Signatures + SIWA receipt.
+ *
+ * On success, sets `c.set("agent", agent)` with the verified agent identity.
+ * On failure, responds with 401.
+ */
+export function siwaMiddleware(options) {
+    return async (c, next) => {
+        const hasSignature = c.req.header('signature') && c.req.header('x-siwa-receipt');
+        if (!hasSignature) {
+            return c.json({ error: 'Unauthorized — provide ERC-8128 Signature + X-SIWA-Receipt headers' }, 401);
+        }
+        try {
+            const secret = resolveReceiptSecret(options?.receiptSecret);
+            const result = await verifyAuthenticatedRequest(c.req.raw, {
+                receiptSecret: secret,
+                rpcUrl: options?.rpcUrl,
+                verifyOnchain: options?.verifyOnchain,
+                publicClient: options?.publicClient,
+                allowedSignerTypes: options?.allowedSignerTypes,
+            });
+            if (!result.valid) {
+                return c.json({ error: result.error }, 401);
+            }
+            c.set('agent', result.agent);
+            await next();
+        }
+        catch (err) {
+            return c.json({ error: `ERC-8128 auth failed: ${err.message}` }, 401);
+        }
+    };
+}

package/dist/{next.d.ts → server-side-wrappers/next.d.ts}

@@ -16,8 +16,8 @@
  * export { siwaOptions as OPTIONS };
  * ```
  */
-import { type SiwaAgent } from './erc8128.js';
-import type { SignerType } from './signer.js';
+import { type SiwaAgent } from '../erc8128.js';
+import type { SignerType } from '../signer/index.js';
 export type { SiwaAgent };
 export interface WithSiwaOptions {
     /** HMAC secret for receipt verification. Defaults to RECEIPT_SECRET or SIWA_SECRET env. */

package/dist/{next.js → server-side-wrappers/next.js}

@@ -16,7 +16,7 @@
  * export { siwaOptions as OPTIONS };
  * ```
  */
-import { verifyAuthenticatedRequest, nextjsToFetchRequest, resolveReceiptSecret, } from './erc8128.js';
+import { verifyAuthenticatedRequest, nextjsToFetchRequest, resolveReceiptSecret, } from '../erc8128.js';
 // ---------------------------------------------------------------------------
 // CORS helpers
 // ---------------------------------------------------------------------------

package/dist/signer/circle.d.ts

@@ -0,0 +1,79 @@
+/**
+ * circle.ts
+ *
+ * Circle developer-controlled wallet signer implementation.
+ */
+import type { CircleDeveloperControlledWalletsClient } from "@circle-fin/developer-controlled-wallets";
+import type { Address } from "viem";
+import type { Signer } from "./types.js";
+/**
+ * Configuration for the Circle SIWA signer.
+ */
+export interface CircleSiwaSignerConfig {
+    /** Circle API key */
+    apiKey: string;
+    /** Circle entity secret */
+    entitySecret: string;
+    /** Circle wallet ID */
+    walletId: string;
+    /** Wallet address (optional - will be fetched from Circle if not provided) */
+    walletAddress?: Address;
+}
+/**
+ * Configuration using an existing Circle client.
+ */
+export interface CircleSiwaSignerClientConfig {
+    /** Existing Circle client instance */
+    client: CircleDeveloperControlledWalletsClient;
+    /** Circle wallet ID */
+    walletId: string;
+    /** Wallet address (optional - will be fetched from Circle if not provided) */
+    walletAddress?: Address;
+}
+/**
+ * Creates a SIWA Signer that wraps Circle's developer-controlled wallet SDK.
+ *
+ * This signer implements the core Signer interface for SIWA message signing.
+ * It supports both standard message signing (EIP-191) and raw hex signing
+ * for ERC-8128 HTTP message signatures.
+ *
+ * The wallet address can be provided explicitly or fetched automatically
+ * from Circle using the wallet ID.
+ *
+ * @param config - Circle wallet configuration
+ * @returns A Promise that resolves to a Signer compatible with SIWA's signSIWAMessage function
+ *
+ * @example
+ * ```typescript
+ * import { signSIWAMessage, generateNonce } from '@buildersgarden/siwa/siwa';
+ * import { createCircleSiwaSigner } from '@buildersgarden/siwa/signer';
+ *
+ * // Address is fetched automatically from Circle
+ * const signer = await createCircleSiwaSigner({
+ *   apiKey: process.env.CIRCLE_API_KEY!,
+ *   entitySecret: process.env.CIRCLE_ENTITY_SECRET!,
+ *   walletId: 'your-wallet-id',
+ * });
+ *
+ * const { message, signature, address } = await signSIWAMessage({
+ *   domain: 'example.com',
+ *   uri: 'https://example.com/login',
+ *   agentId: 123,
+ *   agentRegistry: 'eip155:84532:0x...',
+ *   chainId: 84532,
+ *   nonce: generateNonce(),
+ *   issuedAt: new Date().toISOString(),
+ * }, signer);
+ * ```
+ */
+export declare function createCircleSiwaSigner(config: CircleSiwaSignerConfig): Promise<Signer>;
+/**
+ * Creates a SIWA Signer from an existing Circle client instance.
+ *
+ * Use this when you already have a Circle client initialized and want
+ * to reuse it for SIWA signing.
+ *
+ * @param config - Configuration with existing Circle client
+ * @returns A Promise that resolves to a Signer compatible with SIWA's signSIWAMessage function
+ */
+export declare function createCircleSiwaSignerFromClient(config: CircleSiwaSignerClientConfig): Promise<Signer>;

package/dist/signer/circle.js

@@ -0,0 +1,120 @@
+/**
+ * circle.ts
+ *
+ * Circle developer-controlled wallet signer implementation.
+ */
+import { initiateDeveloperControlledWalletsClient } from "@circle-fin/developer-controlled-wallets";
+/**
+ * Fetches wallet address from Circle API using the wallet ID.
+ */
+async function fetchWalletAddress(client, walletId) {
+    const response = await client.getWallet({ id: walletId });
+    const address = response.data?.wallet?.address;
+    if (!address) {
+        throw new Error(`Failed to fetch wallet address for wallet ID: ${walletId}`);
+    }
+    return address;
+}
+/**
+ * Creates a SIWA Signer that wraps Circle's developer-controlled wallet SDK.
+ *
+ * This signer implements the core Signer interface for SIWA message signing.
+ * It supports both standard message signing (EIP-191) and raw hex signing
+ * for ERC-8128 HTTP message signatures.
+ *
+ * The wallet address can be provided explicitly or fetched automatically
+ * from Circle using the wallet ID.
+ *
+ * @param config - Circle wallet configuration
+ * @returns A Promise that resolves to a Signer compatible with SIWA's signSIWAMessage function
+ *
+ * @example
+ * ```typescript
+ * import { signSIWAMessage, generateNonce } from '@buildersgarden/siwa/siwa';
+ * import { createCircleSiwaSigner } from '@buildersgarden/siwa/signer';
+ *
+ * // Address is fetched automatically from Circle
+ * const signer = await createCircleSiwaSigner({
+ *   apiKey: process.env.CIRCLE_API_KEY!,
+ *   entitySecret: process.env.CIRCLE_ENTITY_SECRET!,
+ *   walletId: 'your-wallet-id',
+ * });
+ *
+ * const { message, signature, address } = await signSIWAMessage({
+ *   domain: 'example.com',
+ *   uri: 'https://example.com/login',
+ *   agentId: 123,
+ *   agentRegistry: 'eip155:84532:0x...',
+ *   chainId: 84532,
+ *   nonce: generateNonce(),
+ *   issuedAt: new Date().toISOString(),
+ * }, signer);
+ * ```
+ */
+export async function createCircleSiwaSigner(config) {
+    const client = initiateDeveloperControlledWalletsClient({
+        apiKey: config.apiKey,
+        entitySecret: config.entitySecret,
+    });
+    return createCircleSiwaSignerFromClient({
+        client,
+        walletId: config.walletId,
+        ...(config.walletAddress && { walletAddress: config.walletAddress }),
+    });
+}
+/**
+ * Creates a SIWA Signer from an existing Circle client instance.
+ *
+ * Use this when you already have a Circle client initialized and want
+ * to reuse it for SIWA signing.
+ *
+ * @param config - Configuration with existing Circle client
+ * @returns A Promise that resolves to a Signer compatible with SIWA's signSIWAMessage function
+ */
+export async function createCircleSiwaSignerFromClient(config) {
+    const { client, walletId } = config;
+    // Fetch wallet address from Circle if not provided
+    const walletAddress = config.walletAddress ?? (await fetchWalletAddress(client, walletId));
+    return {
+        /**
+         * Returns the wallet address.
+         */
+        async getAddress() {
+            return walletAddress;
+        },
+        /**
+         * Signs a message using EIP-191 personal_sign.
+         * Used for standard SIWA message signing.
+         */
+        async signMessage(message) {
+            const response = await client.signMessage({
+                walletId,
+                message,
+                encodedByHex: false,
+            });
+            const signature = response.data?.signature;
+            if (!signature) {
+                throw new Error("Circle signMessage failed: no signature returned");
+            }
+            return signature;
+        },
+        /**
+         * Signs raw hex bytes.
+         * Used by ERC-8128 for HTTP message signatures.
+         */
+        async signRawMessage(rawHex) {
+            // Strip 0x prefix if present for Circle API
+            const hexMessage = rawHex.startsWith("0x") ? rawHex.slice(2) : rawHex;
+            const response = await client.signMessage({
+                walletId,
+                message: hexMessage,
+                encodedByHex: true,
+            });
+            const signature = response.data?.signature;
+            if (!signature) {
+                throw new Error("Circle signRawMessage failed: no signature returned");
+            }
+            return signature;
+        },
+    };
+}

package/dist/signer/index.d.ts

@@ -0,0 +1,30 @@
+/**
+ * signer/index.ts
+ *
+ * Wallet-agnostic signing abstraction for SIWA.
+ *
+ * This module provides a `Signer` interface that abstracts signing operations,
+ * allowing developers to use any wallet provider without changing the SDK.
+ *
+ * Available signer implementations:
+ *   - createKeyringProxySigner(config)         — Keyring proxy server (HMAC-authenticated)
+ *   - createLocalAccountSigner(account)        — viem LocalAccount (privateKeyToAccount)
+ *   - createWalletClientSigner(client)         — viem WalletClient (Privy, MetaMask, etc.)
+ *   - createCircleSiwaSigner(config)           — Circle developer-controlled wallet
+ *   - createCircleSiwaSignerFromClient(config) — Circle with existing client
+ *   - createPrivySiwaSigner(config)            — Privy server wallet
+ *
+ * Usage:
+ *   import { signSIWAMessage, createLocalAccountSigner } from '@buildersgarden/siwa';
+ *   import { privateKeyToAccount } from 'viem/accounts';
+ *
+ *   const account = privateKeyToAccount('0x...');
+ *   const signer = createLocalAccountSigner(account);
+ *   const { message, signature } = await signSIWAMessage(fields, signer);
+ */
+export type { Signer, SignerType, TransactionSigner, TransactionRequest, KeyringProxyConfig, } from './types.js';
+export { createKeyringProxySigner } from './keyring-proxy.js';
+export { createLocalAccountSigner } from './local-account.js';
+export { createWalletClientSigner } from './wallet-client.js';
+export { createCircleSiwaSigner, createCircleSiwaSignerFromClient, type CircleSiwaSignerConfig, type CircleSiwaSignerClientConfig, } from './circle.js';
+export { createPrivySiwaSigner, type PrivySiwaSignerConfig, } from './privy.js';

package/dist/signer/index.js

@@ -0,0 +1,30 @@
+/**
+ * signer/index.ts
+ *
+ * Wallet-agnostic signing abstraction for SIWA.
+ *
+ * This module provides a `Signer` interface that abstracts signing operations,
+ * allowing developers to use any wallet provider without changing the SDK.
+ *
+ * Available signer implementations:
+ *   - createKeyringProxySigner(config)         — Keyring proxy server (HMAC-authenticated)
+ *   - createLocalAccountSigner(account)        — viem LocalAccount (privateKeyToAccount)
+ *   - createWalletClientSigner(client)         — viem WalletClient (Privy, MetaMask, etc.)
+ *   - createCircleSiwaSigner(config)           — Circle developer-controlled wallet
+ *   - createCircleSiwaSignerFromClient(config) — Circle with existing client
+ *   - createPrivySiwaSigner(config)            — Privy server wallet
+ *
+ * Usage:
+ *   import { signSIWAMessage, createLocalAccountSigner } from '@buildersgarden/siwa';
+ *   import { privateKeyToAccount } from 'viem/accounts';
+ *
+ *   const account = privateKeyToAccount('0x...');
+ *   const signer = createLocalAccountSigner(account);
+ *   const { message, signature } = await signSIWAMessage(fields, signer);
+ */
+// Signer implementations
+export { createKeyringProxySigner } from './keyring-proxy.js';
+export { createLocalAccountSigner } from './local-account.js';
+export { createWalletClientSigner } from './wallet-client.js';
+export { createCircleSiwaSigner, createCircleSiwaSignerFromClient, } from './circle.js';
+export { createPrivySiwaSigner, } from './privy.js';