@coinbase/cdp-core 0.0.68 → 0.0.69

package/README.md

@@ -302,6 +302,155 @@ if (signedIn) {
 }
 ```
 
+### Multi-Factor Authentication
+
+The SDK supports Time-based One-Time Password (TOTP) multi-factor authentication to add an extra layer of security to your application. Users can enroll in MFA using authenticator apps like Google Authenticator or Authy.
+
+> **Important**: Users must be authenticated (signed in) before they can enroll in MFA or perform MFA verification.
+
+#### MFA Enrollment Flow
+
+The enrollment flow consists of two steps:
+1. **Initiate enrollment** - Generate a TOTP secret and QR code
+2. **Submit enrollment** - Verify the user's authenticator app is configured correctly
+
+```typescript lines
+import { 
+  initiateMfaEnrollment, 
+  submitMfaEnrollment,
+  getCurrentUser 
+} from "@coinbase/cdp-core";
+
+// Step 1: Initiate MFA enrollment (user must be signed in)
+const enrollment = await initiateMfaEnrollment({ 
+  mfaMethod: "totp" 
+});
+
+// Display QR code for user to scan with their authenticator app
+console.log("Scan this QR code URL:", enrollment.authUrl);
+// Or display the secret for manual entry
+console.log("Or enter this secret manually:", enrollment.secret);
+
+// Step 2: After user adds to their authenticator app, verify with the 6-digit code
+const result = await submitMfaEnrollment({
+  mfaMethod: "totp",
+  mfaCode: "123456" // The 6-digit code from the user's authenticator app
+});
+
+// After successful enrollment, the user object is updated with MFA information
+console.log("MFA enrolled for user:", result.user.userId);
+console.log("MFA enrollment info:", result.user.mfaMethods?.totp);
+// Output: { enrolledAt: "2024-01-01T00:00:00Z" }
+
+// The current user now has MFA enabled
+const user = await getCurrentUser();
+console.log("User MFA status:", user.mfaMethods);
+```
+
+#### MFA Verification Flow
+
+When performing sensitive operations that require MFA verification, use the verification flow:
+
+```typescript lines
+import { 
+  initiateMfaVerification, 
+  submitMfaVerification 
+} from "@coinbase/cdp-core";
+
+// Step 1: Initiate MFA verification (user must be signed in and enrolled in MFA)
+await initiateMfaVerification({ 
+  mfaMethod: "totp" 
+});
+
+// Step 2: Submit the 6-digit code from the user's authenticator app
+await submitMfaVerification({
+  mfaMethod: "totp",
+  mfaCode: "654321" // The current 6-digit code from the authenticator app
+});
+
+// MFA verification successful - user can now perform sensitive operations
+console.log("MFA verification completed");
+```
+
+#### Complete Example: MFA Setup and Usage
+
+```typescript lines
+import {
+  initialize,
+  signInWithEmail,
+  verifyEmailOTP,
+  initiateMfaEnrollment,
+  submitMfaEnrollment,
+  initiateMfaVerification,
+  submitMfaVerification,
+  getCurrentUser,
+  signEvmTransaction
+} from "@coinbase/cdp-core";
+
+// Initialize the SDK
+await initialize({
+  projectId: "your-project-id"
+});
+
+// Sign in the user first
+const { flowId } = await signInWithEmail({ 
+  email: "user@example.com" 
+});
+
+const { user } = await verifyEmailOTP({
+  flowId,
+  otp: "123456"
+});
+
+// Check if user has MFA enabled
+if (!user.mfaMethods?.totp) {
+  // Enroll in MFA
+  const enrollment = await initiateMfaEnrollment({ 
+    mfaMethod: "totp" 
+  });
+  
+  // Show QR code to user (in a real app, you'd display this as an actual QR code)
+  console.log("Please scan this QR code with your authenticator app:");
+  console.log(enrollment.authUrl);
+  
+  // Get the code from user input
+  const mfaCode = prompt("Enter the 6-digit code from your authenticator app:");
+  
+  // Complete enrollment
+  const result = await submitMfaEnrollment({
+    mfaMethod: "totp",
+    mfaCode
+  });
+  
+  console.log("MFA successfully enabled!");
+  console.log("Enrolled at:", result.user.mfaMethods.totp.enrolledAt);
+}
+
+// Later, when performing a sensitive operation that requires MFA...
+try {
+  // Attempt the operation
+  await signEvmTransaction({ /* ... */ });
+} catch (error) {
+  // If MFA is required, the operation will fail
+  // Initiate MFA verification
+  await initiateMfaVerification({ 
+    mfaMethod: "totp" 
+  });
+  
+  // Get MFA code from user
+  const verificationCode = prompt("Enter your 6-digit MFA code:");
+  
+  // Submit verification
+  await submitMfaVerification({
+    mfaMethod: "totp",
+    mfaCode: verificationCode
+  });
+  
+  // Retry the operation after successful MFA verification
+  await signEvmTransaction({ /* ... */ });
+}
+```
+
 ### Create Accounts Manually
 
 If you configured your SDK without `createOnLogin`, you can manually create accounts for authenticated users when needed. This gives you full control over when accounts are created.
@@ -910,4 +1059,3 @@ const client = createWalletClient({
   chain: mainnet,
 });
 ```
-

package/dist/esm/index.native113.js

@@ -1,4 +1,4 @@
-import { version as r } from "./index.native150.js";
+import { version as r } from "./index.native151.js";
 function e() {
   return r;
 }

package/dist/esm/index.native114.js

@@ -1,4 +1,7 @@
-const o = "2.33.0";
+import { getCurrentUser as r } from "./index.native7.js";
+async function n() {
+  return (await r())?.evmAccounts || [];
+}
 export {
-  o as version
+  n as handleAccounts
 };

package/dist/esm/index.native115.js

@@ -1,7 +1,21 @@
-import { getCurrentUser as r } from "./index.native7.js";
-async function n() {
-  return (await r())?.evmAccounts || [];
+import { signEvmHash as o } from "./index.native7.js";
+import { validateUserOwnsEOA as a, EIP1193ProviderError as i, STANDARD_ERROR_CODES as s } from "./index.native26.js";
+async function h(t) {
+  const [n, e] = t;
+  await a(e);
+  try {
+    const { signature: r } = await o({
+      evmAccount: e,
+      hash: n
+    });
+    return r;
+  } catch (r) {
+    throw new i(
+      s.provider.userRejectedRequest,
+      r instanceof Error ? r.message : "Signing failed"
+    );
+  }
 }
 export {
-  n as handleAccounts
+  h as handleEthSign
 };

package/dist/esm/index.native116.js

@@ -1,21 +1,10 @@
-import { signEvmHash as o } from "./index.native7.js";
-import { validateUserOwnsEOA as a, EIP1193ProviderError as i, STANDARD_ERROR_CODES as s } from "./index.native26.js";
-async function h(t) {
-  const [n, e] = t;
-  await a(e);
-  try {
-    const { signature: r } = await o({
-      evmAccount: e,
-      hash: n
-    });
-    return r;
-  } catch (r) {
-    throw new i(
-      s.provider.userRejectedRequest,
-      r instanceof Error ? r.message : "Signing failed"
-    );
-  }
+import { EIP1193ProviderError as t, STANDARD_ERROR_CODES as r } from "./index.native26.js";
+async function a(o, e) {
+  throw new t(
+    r.provider.unsupportedMethod,
+    "wallet_getCallsStatus is not supported with EOAs"
+  );
 }
 export {
-  h as handleEthSign
+  a as handleGetCallsStatus
 };

package/dist/esm/index.native117.js

@@ -1,10 +1,6 @@
-import { EIP1193ProviderError as t, STANDARD_ERROR_CODES as r } from "./index.native26.js";
-async function a(o, e) {
-  throw new t(
-    r.provider.unsupportedMethod,
-    "wallet_getCallsStatus is not supported with EOAs"
-  );
+async function e() {
+  return {};
 }
 export {
-  a as handleGetCallsStatus
+  e as handleGetCapabilities
 };

package/dist/esm/index.native118.js

@@ -1,6 +1,26 @@
-async function e() {
-  return {};
+import { hexToString as s, hashMessage as i, bytesToString as a } from "viem";
+import { signEvmMessage as g } from "./index.native7.js";
+import { validateUserOwnsAddress as c, EIP1193ProviderError as d, STANDARD_ERROR_CODES as f } from "./index.native26.js";
+async function p(r) {
+  const [n, t] = r;
+  await c(t);
+  const o = u(n);
+  try {
+    const { signature: e } = await g({
+      evmAccount: t,
+      message: o
+    });
+    return e;
+  } catch (e) {
+    throw new d(
+      f.provider.userRejectedRequest,
+      e instanceof Error ? e.message : "Signing failed"
+    );
+  }
+}
+function u(r) {
+  return typeof r == "string" ? s(r) : typeof r.raw == "string" ? r.raw : i(a(r.raw));
 }
 export {
-  e as handleGetCapabilities
+  p as handlePersonalSign
 };

package/dist/esm/index.native119.js

@@ -1,26 +1,11 @@
-import { hexToString as s, hashMessage as i, bytesToString as a } from "viem";
-import { signEvmMessage as g } from "./index.native7.js";
-import { validateUserOwnsAddress as c, EIP1193ProviderError as d, STANDARD_ERROR_CODES as f } from "./index.native26.js";
-async function p(r) {
-  const [n, t] = r;
-  await c(t);
-  const o = u(n);
-  try {
-    const { signature: e } = await g({
-      evmAccount: t,
-      message: o
-    });
-    return e;
-  } catch (e) {
-    throw new d(
-      f.provider.userRejectedRequest,
-      e instanceof Error ? e.message : "Signing failed"
-    );
-  }
-}
-function u(r) {
-  return typeof r == "string" ? s(r) : typeof r.raw == "string" ? r.raw : i(a(r.raw));
+import { fromNumber as c } from "./index.native155.js";
+import { validateUserConnected as o } from "./index.native26.js";
+async function i(t, e) {
+  const n = await o();
+  return t.emit("connect", {
+    chainId: c(e.getState().chainId)
+  }), n.evmAccounts || [];
 }
 export {
-  p as handlePersonalSign
+  i as handleRequestAccounts
 };

package/dist/esm/index.native120.js

@@ -1,11 +1,10 @@
-import { fromNumber as c } from "./index.native155.js";
-import { validateUserConnected as o } from "./index.native26.js";
-async function i(t, e) {
-  const n = await o();
-  return t.emit("connect", {
-    chainId: c(e.getState().chainId)
-  }), n.evmAccounts || [];
+import { EIP1193ProviderError as r, STANDARD_ERROR_CODES as o } from "./index.native26.js";
+async function n(e, t) {
+  throw new r(
+    o.provider.unsupportedMethod,
+    "wallet_sendCalls is not supported with EOAs"
+  );
 }
 export {
-  i as handleRequestAccounts
+  n as handleSendCalls
 };

package/dist/esm/index.native121.js

@@ -1,10 +1,74 @@
-import { EIP1193ProviderError as r, STANDARD_ERROR_CODES as o } from "./index.native26.js";
-async function n(e, t) {
-  throw new r(
-    o.provider.unsupportedMethod,
-    "wallet_sendCalls is not supported with EOAs"
-  );
+import { createWalletClient as u } from "viem";
+import { sendEvmTransaction as l, signEvmTransaction as w } from "./index.native7.js";
+import { isChainIdSupportedForCDPSends as v, sendTransactionChainIdToNameMapping as T } from "./index.native40.js";
+import { RPCRequestError as t, STANDARD_ERROR_CODES as i, validateUserOwnsEOA as P } from "./index.native26.js";
+async function E(e, d, m) {
+  const [a] = e;
+  if (!a || typeof a != "object")
+    throw new t(
+      i.rpc.invalidParams,
+      "Transaction parameter must be an object"
+    );
+  if (!a.to)
+    throw new t(
+      i.rpc.invalidParams,
+      "Transaction must include 'to' field"
+    );
+  await P(a.from);
+  const o = d.getState(), r = a.chainId ? Number(a.chainId) : o.chainId;
+  if (v(r))
+    try {
+      const { transactionHash: n } = await l({
+        evmAccount: a.from,
+        transaction: { ...c(a), chainId: r },
+        network: T[r]
+      });
+      return n;
+    } catch (n) {
+      throw new t(
+        i.rpc.transactionRejected,
+        n instanceof Error ? n.message : "Transaction failed"
+      );
+    }
+  else
+    try {
+      const n = u({
+        // Safe as we check before calling this handler that chainId is configured
+        chain: o.chains.find((s) => s.id === r),
+        transport: m[r],
+        account: a.from
+      }), p = o.chains.find((s) => s.id === r), h = await n.prepareTransactionRequest({
+        ...c(a),
+        chain: p
+      }), { signedTransaction: f } = await w({
+        evmAccount: a.from,
+        transaction: {
+          ...h,
+          type: "eip1559"
+        }
+      });
+      return await n.sendRawTransaction({
+        serializedTransaction: f
+      });
+    } catch (n) {
+      throw new t(
+        i.rpc.transactionRejected,
+        n instanceof Error ? n.message : "Transaction failed"
+      );
+    }
+}
+function c(e) {
+  return {
+    to: e.to,
+    data: e.data,
+    value: e.value ? BigInt(e.value) : void 0,
+    nonce: e.nonce ? Number(e.nonce) : void 0,
+    gas: e.gas ? BigInt(e.gas) : void 0,
+    maxFeePerGas: e.maxFeePerGas ? BigInt(e.maxFeePerGas) : void 0,
+    maxPriorityFeePerGas: e.maxPriorityFeePerGas ? BigInt(e.maxPriorityFeePerGas) : void 0,
+    type: "eip1559"
+  };
 }
 export {
-  n as handleSendCalls
+  E as handleSendTransaction
 };

package/dist/esm/index.native122.js

@@ -1,74 +1,21 @@
-import { createWalletClient as u } from "viem";
-import { sendEvmTransaction as l, signEvmTransaction as w } from "./index.native7.js";
-import { isChainIdSupportedForCDPSends as v, sendTransactionChainIdToNameMapping as T } from "./index.native40.js";
-import { RPCRequestError as t, STANDARD_ERROR_CODES as i, validateUserOwnsEOA as P } from "./index.native26.js";
-async function E(e, d, m) {
-  const [a] = e;
-  if (!a || typeof a != "object")
-    throw new t(
-      i.rpc.invalidParams,
-      "Transaction parameter must be an object"
+import { signEvmTypedData as n } from "./index.native7.js";
+import { validateUserOwnsEOA as o, EIP1193ProviderError as i, STANDARD_ERROR_CODES as s } from "./index.native26.js";
+async function p(t) {
+  const [r, a] = t;
+  await o(r);
+  try {
+    const { signature: e } = await n({
+      evmAccount: r,
+      typedData: JSON.parse(a)
+    });
+    return e;
+  } catch (e) {
+    throw new i(
+      s.provider.userRejectedRequest,
+      e instanceof Error ? e.message : "Signing failed"
     );
-  if (!a.to)
-    throw new t(
-      i.rpc.invalidParams,
-      "Transaction must include 'to' field"
-    );
-  await P(a.from);
-  const o = d.getState(), r = a.chainId ? Number(a.chainId) : o.chainId;
-  if (v(r))
-    try {
-      const { transactionHash: n } = await l({
-        evmAccount: a.from,
-        transaction: { ...c(a), chainId: r },
-        network: T[r]
-      });
-      return n;
-    } catch (n) {
-      throw new t(
-        i.rpc.transactionRejected,
-        n instanceof Error ? n.message : "Transaction failed"
-      );
-    }
-  else
-    try {
-      const n = u({
-        // Safe as we check before calling this handler that chainId is configured
-        chain: o.chains.find((s) => s.id === r),
-        transport: m[r],
-        account: a.from
-      }), p = o.chains.find((s) => s.id === r), h = await n.prepareTransactionRequest({
-        ...c(a),
-        chain: p
-      }), { signedTransaction: f } = await w({
-        evmAccount: a.from,
-        transaction: {
-          ...h,
-          type: "eip1559"
-        }
-      });
-      return await n.sendRawTransaction({
-        serializedTransaction: f
-      });
-    } catch (n) {
-      throw new t(
-        i.rpc.transactionRejected,
-        n instanceof Error ? n.message : "Transaction failed"
-      );
-    }
-}
-function c(e) {
-  return {
-    to: e.to,
-    data: e.data,
-    value: e.value ? BigInt(e.value) : void 0,
-    nonce: e.nonce ? Number(e.nonce) : void 0,
-    gas: e.gas ? BigInt(e.gas) : void 0,
-    maxFeePerGas: e.maxFeePerGas ? BigInt(e.maxFeePerGas) : void 0,
-    maxPriorityFeePerGas: e.maxPriorityFeePerGas ? BigInt(e.maxPriorityFeePerGas) : void 0,
-    type: "eip1559"
-  };
+  }
 }
 export {
-  E as handleSendTransaction
+  p as handleSignTypedData
 };

package/dist/esm/index.native123.js

@@ -1,21 +1,6 @@
-import { signEvmTypedData as n } from "./index.native7.js";
-import { validateUserOwnsEOA as o, EIP1193ProviderError as i, STANDARD_ERROR_CODES as s } from "./index.native26.js";
-async function p(t) {
-  const [r, a] = t;
-  await o(r);
-  try {
-    const { signature: e } = await n({
-      evmAccount: r,
-      typedData: JSON.parse(a)
-    });
-    return e;
-  } catch (e) {
-    throw new i(
-      s.provider.userRejectedRequest,
-      e instanceof Error ? e.message : "Signing failed"
-    );
-  }
+async function a(n) {
+  return `0x${n.getState().chainId.toString(16)}`;
 }
 export {
-  p as handleSignTypedData
+  a as handleChainId
 };

package/dist/esm/index.native124.js

@@ -1,6 +1,7 @@
-async function a(n) {
-  return `0x${n.getState().chainId.toString(16)}`;
+import { getCurrentUser as t, signOut as n } from "./index.native7.js";
+async function i() {
+  await t() && await n();
 }
 export {
-  a as handleChainId
+  i as handleDisconnect
 };

package/dist/esm/index.native125.js

@@ -1,7 +1,7 @@
-import { getCurrentUser as t, signOut as n } from "./index.native7.js";
-async function i() {
-  await t() && await n();
+function a(t, e) {
+  const n = Number.parseInt(t[0].chainId, 16);
+  e.getState().setChainId(n);
 }
 export {
-  i as handleDisconnect
+  a as handleSwitchEthereumChain
 };

package/dist/esm/index.native126.js

@@ -1,7 +1,7 @@
-function a(t, e) {
-  const n = Number.parseInt(t[0].chainId, 16);
-  e.getState().setChainId(n);
+import { getCurrentUser as r } from "./index.native7.js";
+async function n() {
+  return (await r())?.evmSmartAccounts || [];
 }
 export {
-  a as handleSwitchEthereumChain
+  n as handleAccounts
 };

package/dist/esm/index.native127.js

@@ -1,7 +1,22 @@
-import { getCurrentUser as r } from "./index.native7.js";
-async function n() {
-  return (await r())?.evmSmartAccounts || [];
+import { signAndWrapTypedDataForSmartAccount as s } from "./index.native47.js";
+import { validateUserOwnsSmartAccount as c, EIP1193ProviderError as i, STANDARD_ERROR_CODES as d } from "./index.native26.js";
+async function h(e, n) {
+  const [a, t] = e, o = await c(t);
+  try {
+    const { signature: r } = await s({
+      smartAccount: t,
+      ownerAddress: o.evmAccounts[0],
+      hash: a,
+      chainId: n.getState().chainId
+    });
+    return r;
+  } catch (r) {
+    throw new i(
+      d.provider.userRejectedRequest,
+      r instanceof Error ? r.message : "Signing failed"
+    );
+  }
 }
 export {
-  n as handleAccounts
+  h as handleEthSign
 };

package/dist/esm/index.native128.js

@@ -1,22 +1,55 @@
-import { signAndWrapTypedDataForSmartAccount as s } from "./index.native47.js";
-import { validateUserOwnsSmartAccount as c, EIP1193ProviderError as i, STANDARD_ERROR_CODES as d } from "./index.native26.js";
-async function h(e, n) {
-  const [a, t] = e, o = await c(t);
+import { getUserOperation as u } from "./index.native7.js";
+import { isChainIdSupportedForCDPUserOps as p, userOperationChainIdToNameMapping as r, userOperationNameToChainIdMapping as m } from "./index.native40.js";
+import { validateUserHasEvmSmartAccount as d, RPCRequestError as o, STANDARD_ERROR_CODES as n } from "./index.native26.js";
+async function I(t, s) {
+  const i = t[0], c = (await d()).evmSmartAccounts?.[0], a = s.getState().chainId;
+  if (!p(a) || !r[a])
+    throw new o(
+      n.rpc.invalidParams,
+      "Chain ID is not supported for user operations"
+    );
   try {
-    const { signature: r } = await s({
-      smartAccount: t,
-      ownerAddress: o.evmAccounts[0],
-      hash: a,
-      chainId: n.getState().chainId
+    const e = await u({
+      userOperationHash: i,
+      evmSmartAccount: c,
+      network: r[a]
     });
-    return r;
-  } catch (r) {
-    throw new i(
-      d.provider.userRejectedRequest,
-      r instanceof Error ? r.message : "Signing failed"
+    return l(e);
+  } catch (e) {
+    throw console.log("Failed to get user operation status", e), new o(
+      n.rpc.internal,
+      "Failed to get user operation status"
     );
   }
 }
+function l(t) {
+  return {
+    atomic: !0,
+    chainId: m[t.network] ?? 0,
+    receipts: t.receipts?.map((s) => ({
+      transactionHash: s.transactionHash,
+      blockHash: s.blockHash,
+      blockNumber: BigInt(s.blockNumber ?? 0),
+      gasUsed: BigInt(s.gasUsed ?? 0),
+      logs: [],
+      status: ""
+    })),
+    id: t.userOpHash,
+    status: h(t.status),
+    version: "1"
+  };
+}
+function h(t) {
+  switch (t) {
+    case "dropped":
+    case "failed":
+      return 400;
+    case "complete":
+      return 200;
+    default:
+      return 100;
+  }
+}
 export {
-  h as handleEthSign
+  I as handleGetCallsStatus
 };