@buildersgarden/siwa 0.0.8 → 0.0.9

package/dist/erc8128.d.ts

@@ -93,3 +93,12 @@ export declare function expressToFetchRequest(req: {
     headers: Record<string, string | string[] | undefined>;
     rawBody?: string;
 }): Request;
+/**
+ * Normalize a Next.js/serverless Request for ERC-8128 verification.
+ *
+ * Behind reverse proxies (Vercel, Railway, Cloudflare), the request URL
+ * may reflect internal routing instead of the public origin. This helper
+ * reads X-Forwarded-Host / X-Forwarded-Proto headers and reconstructs
+ * the URL to match what the agent signed.
+ */
+export declare function nextjsToFetchRequest(req: Request): Request;

package/dist/erc8128.js

@@ -226,6 +226,29 @@ export function expressToFetchRequest(req) {
         body: hasBody ? (req.rawBody ?? null) : null,
     });
 }
+/**
+ * Normalize a Next.js/serverless Request for ERC-8128 verification.
+ *
+ * Behind reverse proxies (Vercel, Railway, Cloudflare), the request URL
+ * may reflect internal routing instead of the public origin. This helper
+ * reads X-Forwarded-Host / X-Forwarded-Proto headers and reconstructs
+ * the URL to match what the agent signed.
+ */
+export function nextjsToFetchRequest(req) {
+    const forwardedHost = req.headers.get('x-forwarded-host') || req.headers.get('host');
+    const forwardedProto = req.headers.get('x-forwarded-proto') || 'https';
+    if (!forwardedHost)
+        return req; // no proxy headers, return as-is
+    const url = new URL(req.url);
+    const publicUrl = `${forwardedProto}://${forwardedHost}${url.pathname}${url.search}`;
+    return new Request(publicUrl, {
+        method: req.method,
+        headers: req.headers,
+        body: req.body,
+        // @ts-ignore - duplex required for streaming bodies in Node 18+
+        duplex: 'half',
+    });
+}
 /**
  * Lazily create a viem PublicClient from an RPC URL.
  */

package/dist/keystore.d.ts

@@ -76,11 +76,12 @@ export declare function getAddress(config?: KeystoreConfig): Promise<string | nu
  */
 export declare function signMessage(message: string, config?: KeystoreConfig): Promise<SignResult>;
 /**
- * Sign a raw hex message via the keyring proxy (no EIP-191 prefix).
+ * Sign a raw hex message via the keyring proxy.
  *
  * Used internally by the ERC-8128 signer — the signature base bytes are
  * passed as a hex string and signed with `{ raw: true }` so the proxy
- * treats them as raw bytes rather than applying personal_sign wrapping.
+ * interprets them as raw bytes (not UTF-8). Note: the proxy still applies
+ * EIP-191 personal_sign wrapping (viem `signMessage({ message: { raw } })`).
  */
 export declare function signRawMessage(rawHex: string, config?: KeystoreConfig): Promise<SignResult>;
 /**

package/dist/keystore.js

@@ -81,11 +81,12 @@ export async function signMessage(message, config = {}) {
     return { signature: data.signature, address: data.address };
 }
 /**
- * Sign a raw hex message via the keyring proxy (no EIP-191 prefix).
+ * Sign a raw hex message via the keyring proxy.
  *
  * Used internally by the ERC-8128 signer — the signature base bytes are
  * passed as a hex string and signed with `{ raw: true }` so the proxy
- * treats them as raw bytes rather than applying personal_sign wrapping.
+ * interprets them as raw bytes (not UTF-8). Note: the proxy still applies
+ * EIP-191 personal_sign wrapping (viem `signMessage({ message: { raw } })`).
  */
 export async function signRawMessage(rawHex, config = {}) {
     const data = await proxyRequest(config, "/sign-message", {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@buildersgarden/siwa",
-  "version": "0.0.8",
+  "version": "0.0.9",
   "type": "module",
   "exports": {
     ".": {