@cmdoss/memwal-sdk 0.6.2 → 0.8.0

package/src/wallet/MainWalletService.ts

@@ -1,318 +1,318 @@
-/**
- * @deprecated This service is deprecated and will be removed in the next major version.
- * Use {@link CapabilityService} from `../services/CapabilityService` instead.
- *
- * The new capability-based architecture replaces HD wallet management with
- * MemoryCap objects that follow the SEAL PrivateData pattern.
- *
- * Migration guide:
- * - MainWalletService.deriveContextId() -> Use MemoryCap with appId directly
- * - MainWalletService.createMainWallet() -> CapabilityService.create(appId)
- * - MainWalletService.getMainWallet() -> CapabilityService.list()
- *
- * @see CapabilityService for the new implementation
- *
- * --------------------------------
- * OLD DOCUMENTATION (for reference):
- * --------------------------------
- * MainWalletService - Core wallet identity and key management
- *
- * Manages the primary wallet identity for users, including:
- * - Wallet creation and metadata management
- * - Context ID derivation for app isolation
- * - SEAL key rotation and session management
- * - On-chain wallet registry integration
- */
-
-import { sha3_256 } from '@noble/hashes/sha3.js';
-import { SuiClient } from '@mysten/sui/client';
-import { Transaction } from '@mysten/sui/transactions';
-// Use Web Crypto API (browser-compatible)
-const randomBytes = (size: number): Uint8Array => {
-  const bytes = new Uint8Array(size);
-  crypto.getRandomValues(bytes);
-  return bytes;
-};
-
-// Helper to convert Uint8Array to hex string
-const bytesToHex = (bytes: Uint8Array): string => {
-  return Array.from(bytes).map(b => b.toString(16).padStart(2, '0')).join('');
-};
-
-import {
-  MainWallet,
-  CreateMainWalletOptions,
-  DeriveContextIdOptions,
-  RotateKeysOptions,
-  RotateKeysResult,
-  DerivedContext
-} from '../core/types/wallet';
-
-/**
- * Configuration for MainWalletService
- */
-export interface MainWalletServiceConfig {
-  /** Sui client instance */
-  suiClient: SuiClient;
-  /** Package ID for Move contracts */
-  packageId: string;
-}
-
-/**
- * MainWalletService handles core wallet identity management
- * @deprecated Use {@link CapabilityService} instead
- */
-export class MainWalletService {
-  private suiClient: SuiClient;
-  private packageId: string;
-
-  constructor(config: MainWalletServiceConfig) {
-    this.suiClient = config.suiClient;
-    this.packageId = config.packageId;
-  }
-
-  /**
-   * Get main wallet metadata for a user
-   * @param userAddress - User's Sui address
-   * @returns MainWallet metadata or null if not found
-   */
-  async getMainWallet(userAddress: string): Promise<MainWallet | null> {
-    try {
-      // Query for main wallet object by owner
-      const response = await this.suiClient.getOwnedObjects({
-        owner: userAddress,
-        filter: {
-          StructType: `${this.packageId}::wallet::MainWallet`
-        },
-        options: {
-          showContent: true,
-          showType: true
-        }
-      });
-
-      if (response.data.length === 0) {
-        return null;
-      }
-
-      // Get the first (should be only) main wallet
-      const walletObject = response.data[0];
-      if (!walletObject.data?.content || walletObject.data.content.dataType !== 'moveObject') {
-        throw new Error('Invalid main wallet object structure');
-      }
-
-      const fields = walletObject.data.content.fields as any;
-      
-      return {
-        owner: userAddress,
-        walletId: walletObject.data.objectId,
-        createdAt: parseInt(fields.created_at || '0'),
-        salts: {
-          context: fields.context_salt || ''
-        }
-      };
-    } catch (error) {
-      console.error('Error fetching main wallet:', error);
-      return null;
-    }
-  }
-
-  /**
-   * Create a new main wallet for a user
-   * @param options - Creation options
-   * @returns Created MainWallet metadata
-   */
-  async createMainWallet(options: CreateMainWalletOptions): Promise<MainWallet> {
-    // Generate salts if not provided
-    const contextSalt = options.salts?.context || this.generateSalt();
-    
-    // For now, return a simulated MainWallet since we need Move contract deployment first
-    // TODO: Implement actual on-chain wallet creation once wallet.move is deployed
-    const walletId = `wallet_${options.userAddress}_${Date.now()}`;
-    
-    return {
-      owner: options.userAddress,
-      walletId,
-      createdAt: Date.now(),
-      salts: {
-        context: contextSalt
-      }
-    };
-  }
-
-  /**
-   * Derive a deterministic context ID for app isolation
-   * @param options - Derivation options
-   * @returns Deterministic context ID (hash only, for backward compatibility)
-   */
-  async deriveContextId(options: DeriveContextIdOptions): Promise<string> {
-    let salt = options.salt;
-    
-    // If no salt provided, get it from main wallet
-    if (!salt) {
-      const mainWallet = await this.getMainWallet(options.userAddress);
-      if (!mainWallet) {
-        throw new Error('Main wallet not found - create one first');
-      }
-      salt = mainWallet.salts.context;
-    }
-
-    // Derive context ID: sha3_256(userAddress | appId | salt)
-    const input = `${options.userAddress}|${options.appId}|${salt}`;
-    const inputBytes = new TextEncoder().encode(input);
-    const hash = sha3_256(inputBytes);
-    
-    return `0x${Array.from(hash).map(b => b.toString(16).padStart(2, '0')).join('')}`;
-  }
-
-  /**
-   * Get full context information (deterministic ID + object address if exists)
-   * @param userAddress - User's Sui address
-   * @param appId - Application identifier
-   * @returns DerivedContext with contextId and optional objectAddress
-   */
-  async getContextInfo(
-    userAddress: string,
-    appId: string
-  ): Promise<DerivedContext> {
-    // Derive deterministic ID
-    const contextId = await this.deriveContextId({ userAddress, appId });
-    
-    // Check if context wallet object exists on-chain
-    const mainWallet = await this.getMainWallet(userAddress);
-    if (!mainWallet) {
-      return { contextId, appId, exists: false };
-    }
-    
-    // Try to find context wallet as dynamic field
-    try {
-      const response = await this.suiClient.getDynamicFieldObject({
-        parentId: mainWallet.walletId,
-        name: {
-          type: '0x1::string::String',
-          value: appId
-        }
-      });
-      
-      if (response.data) {
-        return {
-          contextId,
-          appId,
-          objectAddress: response.data.objectId,
-          exists: true
-        };
-      }
-    } catch (error) {
-      // Context not found as dynamic field
-      console.debug(`Context wallet not found for appId: ${appId}`);
-    }
-    
-    return { contextId, appId, exists: false };
-  }
-
-  /**
-   * Check if a context wallet exists on-chain
-   * @param userAddress - User's Sui address
-   * @param appId - Application identifier
-   * @returns True if context wallet exists as dynamic field
-   */
-  async contextExists(
-    userAddress: string,
-    appId: string
-  ): Promise<boolean> {
-    const contextInfo = await this.getContextInfo(userAddress, appId);
-    return contextInfo.exists;
-  }
-
-  /**
-   * Rotate SEAL session and backup keys for a user
-   * @param options - Rotation options
-   * @returns Result of key rotation
-   */
-  async rotateKeys(options: RotateKeysOptions): Promise<RotateKeysResult> {
-    const { userAddress, sessionKeyTtlMin = 60 } = options;
-
-    try {
-      // TODO: Implement actual key rotation with SEAL service
-      // For now, return a simulated result
-      const sessionKeyId = `session_${userAddress}_${Date.now()}`;
-      const expiresAt = Date.now() + (sessionKeyTtlMin * 60 * 1000);
-
-      return {
-        sessionKeyId,
-        expiresAt,
-        backupKeyRotated: true
-      };
-    } catch (error) {
-      console.error('Error rotating keys:', error);
-      throw new Error(`Failed to rotate keys: ${error instanceof Error ? error.message : 'Unknown error'}`);
-    }
-  }
-
-  /**
-   * Check if a main wallet exists for a user
-   * @param userAddress - User's Sui address
-   * @returns True if main wallet exists
-   */
-  async hasMainWallet(userAddress: string): Promise<boolean> {
-    const wallet = await this.getMainWallet(userAddress);
-    return wallet !== null;
-  }
-
-  /**
-   * Generate a cryptographically secure salt
-   * @returns Random salt as hex string
-   */
-  private generateSalt(): string {
-    const bytes = randomBytes(32);
-    return bytesToHex(bytes);
-  }
-
-  /**
-   * Validate a user address format
-   * @param address - Address to validate
-   * @returns True if valid Sui address format
-   */
-  private isValidSuiAddress(address: string): boolean {
-    return /^0x[a-fA-F0-9]{64}$/.test(address);
-  }
-
-  /**
-   * Get main wallet with validation
-   * @param userAddress - User's Sui address
-   * @returns MainWallet metadata
-   * @throws Error if wallet not found or address invalid
-   */
-  async getMainWalletRequired(userAddress: string): Promise<MainWallet> {
-    if (!this.isValidSuiAddress(userAddress)) {
-      throw new Error(`Invalid Sui address format: ${userAddress}`);
-    }
-
-    const wallet = await this.getMainWallet(userAddress);
-    if (!wallet) {
-      throw new Error(`Main wallet not found for address: ${userAddress}`);
-    }
-
-    return wallet;
-  }
-
-  /**
-   * Create main wallet if it doesn't exist
-   * @param userAddress - User's Sui address
-   * @returns Existing or newly created MainWallet
-   */
-  async ensureMainWallet(userAddress: string): Promise<MainWallet> {
-    if (!this.isValidSuiAddress(userAddress)) {
-      throw new Error(`Invalid Sui address format: ${userAddress}`);
-    }
-
-    const existing = await this.getMainWallet(userAddress);
-    if (existing) {
-      return existing;
-    }
-
-    // Create new main wallet
-    return await this.createMainWallet({
-      userAddress
-    });
-  }
+/**
+ * @deprecated This service is deprecated and will be removed in the next major version.
+ * Use {@link CapabilityService} from `../services/CapabilityService` instead.
+ *
+ * The new capability-based architecture replaces HD wallet management with
+ * MemoryCap objects that follow the SEAL PrivateData pattern.
+ *
+ * Migration guide:
+ * - MainWalletService.deriveContextId() -> Use MemoryCap with appId directly
+ * - MainWalletService.createMainWallet() -> CapabilityService.create(appId)
+ * - MainWalletService.getMainWallet() -> CapabilityService.list()
+ *
+ * @see CapabilityService for the new implementation
+ *
+ * --------------------------------
+ * OLD DOCUMENTATION (for reference):
+ * --------------------------------
+ * MainWalletService - Core wallet identity and key management
+ *
+ * Manages the primary wallet identity for users, including:
+ * - Wallet creation and metadata management
+ * - Context ID derivation for app isolation
+ * - SEAL key rotation and session management
+ * - On-chain wallet registry integration
+ */
+
+import { sha3_256 } from '@noble/hashes/sha3.js';
+import { SuiClient } from '@mysten/sui/client';
+import { Transaction } from '@mysten/sui/transactions';
+// Use Web Crypto API (browser-compatible)
+const randomBytes = (size: number): Uint8Array => {
+  const bytes = new Uint8Array(size);
+  crypto.getRandomValues(bytes);
+  return bytes;
+};
+
+// Helper to convert Uint8Array to hex string
+const bytesToHex = (bytes: Uint8Array): string => {
+  return Array.from(bytes).map(b => b.toString(16).padStart(2, '0')).join('');
+};
+
+import {
+  MainWallet,
+  CreateMainWalletOptions,
+  DeriveContextIdOptions,
+  RotateKeysOptions,
+  RotateKeysResult,
+  DerivedContext
+} from '../core/types/wallet';
+
+/**
+ * Configuration for MainWalletService
+ */
+export interface MainWalletServiceConfig {
+  /** Sui client instance */
+  suiClient: SuiClient;
+  /** Package ID for Move contracts */
+  packageId: string;
+}
+
+/**
+ * MainWalletService handles core wallet identity management
+ * @deprecated Use {@link CapabilityService} instead
+ */
+export class MainWalletService {
+  private suiClient: SuiClient;
+  private packageId: string;
+
+  constructor(config: MainWalletServiceConfig) {
+    this.suiClient = config.suiClient;
+    this.packageId = config.packageId;
+  }
+
+  /**
+   * Get main wallet metadata for a user
+   * @param userAddress - User's Sui address
+   * @returns MainWallet metadata or null if not found
+   */
+  async getMainWallet(userAddress: string): Promise<MainWallet | null> {
+    try {
+      // Query for main wallet object by owner
+      const response = await this.suiClient.getOwnedObjects({
+        owner: userAddress,
+        filter: {
+          StructType: `${this.packageId}::wallet::MainWallet`
+        },
+        options: {
+          showContent: true,
+          showType: true
+        }
+      });
+
+      if (response.data.length === 0) {
+        return null;
+      }
+
+      // Get the first (should be only) main wallet
+      const walletObject = response.data[0];
+      if (!walletObject.data?.content || walletObject.data.content.dataType !== 'moveObject') {
+        throw new Error('Invalid main wallet object structure');
+      }
+
+      const fields = walletObject.data.content.fields as any;
+      
+      return {
+        owner: userAddress,
+        walletId: walletObject.data.objectId,
+        createdAt: parseInt(fields.created_at || '0'),
+        salts: {
+          context: fields.context_salt || ''
+        }
+      };
+    } catch (error) {
+      console.error('Error fetching main wallet:', error);
+      return null;
+    }
+  }
+
+  /**
+   * Create a new main wallet for a user
+   * @param options - Creation options
+   * @returns Created MainWallet metadata
+   */
+  async createMainWallet(options: CreateMainWalletOptions): Promise<MainWallet> {
+    // Generate salts if not provided
+    const contextSalt = options.salts?.context || this.generateSalt();
+    
+    // For now, return a simulated MainWallet since we need Move contract deployment first
+    // TODO: Implement actual on-chain wallet creation once wallet.move is deployed
+    const walletId = `wallet_${options.userAddress}_${Date.now()}`;
+    
+    return {
+      owner: options.userAddress,
+      walletId,
+      createdAt: Date.now(),
+      salts: {
+        context: contextSalt
+      }
+    };
+  }
+
+  /**
+   * Derive a deterministic context ID for app isolation
+   * @param options - Derivation options
+   * @returns Deterministic context ID (hash only, for backward compatibility)
+   */
+  async deriveContextId(options: DeriveContextIdOptions): Promise<string> {
+    let salt = options.salt;
+    
+    // If no salt provided, get it from main wallet
+    if (!salt) {
+      const mainWallet = await this.getMainWallet(options.userAddress);
+      if (!mainWallet) {
+        throw new Error('Main wallet not found - create one first');
+      }
+      salt = mainWallet.salts.context;
+    }
+
+    // Derive context ID: sha3_256(userAddress | appId | salt)
+    const input = `${options.userAddress}|${options.appId}|${salt}`;
+    const inputBytes = new TextEncoder().encode(input);
+    const hash = sha3_256(inputBytes);
+    
+    return `0x${Array.from(hash).map(b => b.toString(16).padStart(2, '0')).join('')}`;
+  }
+
+  /**
+   * Get full context information (deterministic ID + object address if exists)
+   * @param userAddress - User's Sui address
+   * @param appId - Application identifier
+   * @returns DerivedContext with contextId and optional objectAddress
+   */
+  async getContextInfo(
+    userAddress: string,
+    appId: string
+  ): Promise<DerivedContext> {
+    // Derive deterministic ID
+    const contextId = await this.deriveContextId({ userAddress, appId });
+    
+    // Check if context wallet object exists on-chain
+    const mainWallet = await this.getMainWallet(userAddress);
+    if (!mainWallet) {
+      return { contextId, appId, exists: false };
+    }
+    
+    // Try to find context wallet as dynamic field
+    try {
+      const response = await this.suiClient.getDynamicFieldObject({
+        parentId: mainWallet.walletId,
+        name: {
+          type: '0x1::string::String',
+          value: appId
+        }
+      });
+      
+      if (response.data) {
+        return {
+          contextId,
+          appId,
+          objectAddress: response.data.objectId,
+          exists: true
+        };
+      }
+    } catch (error) {
+      // Context not found as dynamic field
+      console.debug(`Context wallet not found for appId: ${appId}`);
+    }
+    
+    return { contextId, appId, exists: false };
+  }
+
+  /**
+   * Check if a context wallet exists on-chain
+   * @param userAddress - User's Sui address
+   * @param appId - Application identifier
+   * @returns True if context wallet exists as dynamic field
+   */
+  async contextExists(
+    userAddress: string,
+    appId: string
+  ): Promise<boolean> {
+    const contextInfo = await this.getContextInfo(userAddress, appId);
+    return contextInfo.exists;
+  }
+
+  /**
+   * Rotate SEAL session and backup keys for a user
+   * @param options - Rotation options
+   * @returns Result of key rotation
+   */
+  async rotateKeys(options: RotateKeysOptions): Promise<RotateKeysResult> {
+    const { userAddress, sessionKeyTtlMin = 60 } = options;
+
+    try {
+      // TODO: Implement actual key rotation with SEAL service
+      // For now, return a simulated result
+      const sessionKeyId = `session_${userAddress}_${Date.now()}`;
+      const expiresAt = Date.now() + (sessionKeyTtlMin * 60 * 1000);
+
+      return {
+        sessionKeyId,
+        expiresAt,
+        backupKeyRotated: true
+      };
+    } catch (error) {
+      console.error('Error rotating keys:', error);
+      throw new Error(`Failed to rotate keys: ${error instanceof Error ? error.message : 'Unknown error'}`);
+    }
+  }
+
+  /**
+   * Check if a main wallet exists for a user
+   * @param userAddress - User's Sui address
+   * @returns True if main wallet exists
+   */
+  async hasMainWallet(userAddress: string): Promise<boolean> {
+    const wallet = await this.getMainWallet(userAddress);
+    return wallet !== null;
+  }
+
+  /**
+   * Generate a cryptographically secure salt
+   * @returns Random salt as hex string
+   */
+  private generateSalt(): string {
+    const bytes = randomBytes(32);
+    return bytesToHex(bytes);
+  }
+
+  /**
+   * Validate a user address format
+   * @param address - Address to validate
+   * @returns True if valid Sui address format
+   */
+  private isValidSuiAddress(address: string): boolean {
+    return /^0x[a-fA-F0-9]{64}$/.test(address);
+  }
+
+  /**
+   * Get main wallet with validation
+   * @param userAddress - User's Sui address
+   * @returns MainWallet metadata
+   * @throws Error if wallet not found or address invalid
+   */
+  async getMainWalletRequired(userAddress: string): Promise<MainWallet> {
+    if (!this.isValidSuiAddress(userAddress)) {
+      throw new Error(`Invalid Sui address format: ${userAddress}`);
+    }
+
+    const wallet = await this.getMainWallet(userAddress);
+    if (!wallet) {
+      throw new Error(`Main wallet not found for address: ${userAddress}`);
+    }
+
+    return wallet;
+  }
+
+  /**
+   * Create main wallet if it doesn't exist
+   * @param userAddress - User's Sui address
+   * @returns Existing or newly created MainWallet
+   */
+  async ensureMainWallet(userAddress: string): Promise<MainWallet> {
+    if (!this.isValidSuiAddress(userAddress)) {
+      throw new Error(`Invalid Sui address format: ${userAddress}`);
+    }
+
+    const existing = await this.getMainWallet(userAddress);
+    if (existing) {
+      return existing;
+    }
+
+    // Create new main wallet
+    return await this.createMainWallet({
+      userAddress
+    });
+  }
 }