@cubist-labs/cubesigner-sdk 0.4.209 → 0.4.217

package/src/schema.ts

@@ -270,9 +270,18 @@ export interface paths {
      * List all contacts in the org.
      * Any org member is allowed to list all contacts in the org.
      *
-     * If a search condition is provided, the result will contain only the contacts
-     * who have an address starting with, or equaling, the given search string. The
-     * search is case-insensitive. If a search term is defined, we do not guarantee
+     * ## Search Condition
+     * The search condition is optional.
+     *
+     * - If the search condition starts with "label:...", this list will only hold contacts with
+     * the label provided after the ":". For example, "label:cubist:erc20_token" would return contacts that
+     * hold the label "cubist:erc20_token".
+     *
+     * - Otherwise, the result will contain only the contacts who have an address starting with, or
+     * equaling, the given search string. For example, "0xee" would return all contacts holding an
+     * address starting with "0xee". The search is case-insensitive.
+     *
+     * If a search term is defined, we do not guarantee
      * the number of results in a page. The behavior of this parameter may change
      * in the future (for example, making results more strictly paginated or
      * performing a fuzzy search rather than a prefix search).
@@ -535,6 +544,13 @@ export interface paths {
      */
     get: operations["public_org_info"];
   };
+  "/v0/org/{org_id}/internal/custom_chain_rpc": {
+    /**
+     * (INTERNAL) Custom chain RPC proxy
+     * @description (INTERNAL) Custom chain RPC proxy
+     */
+    post: operations["customChainRpcCall"];
+  };
   "/v0/org/{org_id}/internal/esplora": {
     /**
      * (INTERNAL) Esplora API Proxy
@@ -1753,6 +1769,8 @@ export interface components {
       btc?: components["schemas"]["BitcoinAddressInfo"][];
       /** @description EVM addresses. */
       evm?: components["schemas"]["EvmAddressInfo"][];
+      /** @description Solana addresses. */
+      sol?: components["schemas"]["SolanaAddressInfo"][];
       /** @description SUI addresses. */
       sui?: components["schemas"]["SuiAddressInfo"][];
     };
@@ -2551,6 +2569,8 @@ export interface components {
     };
     /** @enum {string} */
     BadGatewayErrorCode:
+      | "Generic"
+      | "CustomChainRpcError"
       | "EsploraApiError"
       | "SentryApiError"
       | "CallWebhookError"
@@ -2602,6 +2622,7 @@ export interface components {
       | "NameTaken"
       | "ContactNameInvalid"
       | "ContactAddressesInvalid"
+      | "ContactLabelInvalid"
       | "ContactModified"
       | "PolicyNotFound"
       | "PolicyVersionNotFound"
@@ -2749,6 +2770,9 @@ export interface components {
       | "InvalidTendermintRequest"
       | "PolicyVersionMaxReached"
       | "PolicyVersionInvalid"
+      | "PolicySecretLimitReached"
+      | "PolicySecretTooLarge"
+      | "InvalidImportKey"
       | "AlienOwnerInvalid"
       | "EmptyUpdateRequest"
       | "InvalidPolicyReference"
@@ -2934,6 +2958,7 @@ export interface components {
       | "IdpAuthenticate"
       | "IdpPasswordResetRequest"
       | "IdpPasswordResetConfirm"
+      | "CustomChainRpcCall"
       | "EsploraApiCall"
       | "ExecutePolicy"
       | "SentryApiCall"
@@ -3305,6 +3330,13 @@ export interface components {
     ConflictErrorCode: "ConcurrentRequestDisallowed" | "ConcurrentLockCreation";
     /** @description A contact in the org. */
     Contact: components["schemas"]["CommonFields"] & {
+      /**
+       * @description Labels to categorize this contact.
+       * @example [
+       *   "cubist:erc20_token"
+       * ]
+       */
+      labels?: components["schemas"]["ContactLabel"][];
       /**
        * @description The name for the contact. Must be a unique name among contacts in the
        * org. The name must consist of alphanumeric characters, spaces, `.` and `-`,
@@ -3327,12 +3359,21 @@ export interface components {
       | (components["schemas"]["SuiAddressInfo"] & {
           /** @enum {string} */
           network: "Sui";
+        })
+      | (components["schemas"]["SolanaAddressInfo"] & {
+          /** @enum {string} */
+          network: "Solana";
         });
     /** @description Information about a Contact. */
     ContactInfoResponse: components["schemas"]["Contact"] & {
       addresses: components["schemas"]["AddressMap"];
       id: components["schemas"]["Id"];
     };
+    /**
+     * @description Labels that can be applied to a contact.
+     * @enum {string}
+     */
+    ContactLabel: "cubist:erc20_token" | "cubist:spl_token";
     CreateAndUpdateKeyProperties: {
       edit_policy?: components["schemas"]["EditPolicy"] | null;
       /**
@@ -3363,6 +3404,13 @@ export interface components {
     CreateContactRequest: {
       addresses?: components["schemas"]["AddressMap"];
       edit_policy?: components["schemas"]["EditPolicy"] | null;
+      /**
+       * @description Optional labels to associate with the contact.
+       * @example [
+       *   "cubist:erc20_token"
+       * ]
+       */
+      labels?: components["schemas"]["ContactLabel"][];
       /** @description Optional user-defined metadata about the contact. */
       metadata?: unknown;
       /**
@@ -3552,6 +3600,23 @@ export interface components {
       /** @description CubeSigner's user identifier */
       user_id: string;
     };
+    /** @description Custom chain RPC request */
+    CustomChainRpcRequest: {
+      /** @description HTTP body */
+      body?: string | null;
+      chain: components["schemas"]["CustomChainSelector"];
+      /** @description HTTP relative path */
+      path: string;
+    };
+    CustomChainRpcResponse: unknown;
+    /** @description Custom chain selector */
+    CustomChainSelector: {
+      /** @description EVM chain */
+      Evm: {
+        /** @example 0x01 */
+        chain_id: string;
+      };
+    };
     /** @description Information about an org's custom chains. */
     CustomChainsData: {
       /** @description Custom EVM chains. */
@@ -4224,7 +4289,7 @@ export interface components {
       native_currency: components["schemas"]["EvmCurrencyInfo"];
       /**
        * @description The URL of the RPC provider for this chain.
-       * @example https://ethereum-rpc.publicnode.com/
+       * @example https://ethereum-rpc.publicnode.com
        */
       rpc_url: string;
     };
@@ -4388,6 +4453,7 @@ export interface components {
       | "manage:contact:update:name"
       | "manage:contact:update:addresses"
       | "manage:contact:update:owner"
+      | "manage:contact:update:labels"
       | "manage:contact:update:metadata"
       | "manage:contact:update:editPolicy"
       | "manage:contact:lookup:*"
@@ -5556,7 +5622,8 @@ export interface components {
       | "OrgExportCiphertextNotFound"
       | "UploadObjectNotFound"
       | "PolicySecretNotFound"
-      | "TimestreamDisabled";
+      | "TimestreamDisabled"
+      | "CustomChainNotFound";
     /** @description The configuration and status of a notification endpoint */
     NotificationEndpoint: components["schemas"]["NotificationEndpointSubscription"] & {
       status: components["schemas"]["SubscriptionStatus"];
@@ -6474,24 +6541,26 @@ export interface components {
     }) &
       Record<string, never>;
     /**
-     * @description The possible actions that can be performed on a [NamedPolicy] that are restricted by ACL.
+     * PolicyAction
+     * @description The access-controlled actions that can be performed on a named policy.
+     * @example read:policy
      * @enum {string}
      */
     PolicyAction:
-      | "ReadAll"
-      | "ReadPolicy"
-      | "ReadLogs"
-      | "UpdateAll"
-      | "UpdateName"
-      | "UpdateRules"
-      | "UpdateMetadata"
-      | "UpdateEditPolicy"
-      | "UpdateOwner"
-      | "UpdateAcl"
-      | "Delete"
-      | "Attach"
-      | "Sign"
-      | "Invoke";
+      | "read:*"
+      | "read:policy"
+      | "read:logs"
+      | "update:*"
+      | "update:name"
+      | "update:rules"
+      | "update:metadata"
+      | "update:editPolicy"
+      | "update:owner"
+      | "update:acl"
+      | "delete"
+      | "attach"
+      | "sign"
+      | "invoke";
     /** @description The id for attaching a named policy to a key, role, or key in role. */
     PolicyAttachedToId: OneOf<
       [
@@ -6532,6 +6601,8 @@ export interface components {
        * ]
        */
       allowed_http_authorities: string[];
+      /** @description The maximum number of policy secrets for the Org. */
+      org_secrets_limit?: number | null;
     };
     PolicyErrorCode:
       | components["schemas"]["PolicyErrorOwnCodes"]
@@ -7348,6 +7419,20 @@ export interface components {
      * A wrapper type for serialization that encodes a `Duration` as a `u64` representing the number of seconds.
      */
     Seconds: number;
+    /**
+     * SecretAction
+     * @description The access-controlled actions that can be performed on an individual policy secret.
+     * @example read:secret
+     * @enum {string}
+     */
+    SecretAction:
+      | "read:*"
+      | "read:info"
+      | "read:secret"
+      | "update:*"
+      | "update:secret"
+      | "update:acl"
+      | "delete";
     /** @description Information about a specific secret. */
     SecretInfo: {
       /** @description The access-control entries for this secret. */
@@ -7548,6 +7633,20 @@ export interface components {
       /** @description The message to sign following the EIP-191 standard. */
       message: string;
     };
+    /** @description A Solana address and the cluster it is on. */
+    SolanaAddressInfo: {
+      /**
+       * @description The Solana address.
+       * @example EPw4LsNwCYCYXace1BKvwLcd7oeZzRiYGuGE5zfPvoPy
+       */
+      address: string;
+      cluster: components["schemas"]["SolanaCluster"];
+    };
+    /**
+     * @description Supported Solana clusters.
+     * @enum {string}
+     */
+    SolanaCluster: "mainnet" | "devnet" | "testnet";
     /**
      * @description Solana signing request
      * @example {
@@ -8082,6 +8181,13 @@ export interface components {
     UpdateContactRequest: {
       addresses?: components["schemas"]["AddressMap"] | null;
       edit_policy?: components["schemas"]["EditPolicy"] | null;
+      /**
+       * @description A new set of labels for the contact.
+       * @example [
+       *   "cubist:erc20_token"
+       * ]
+       */
+      labels?: components["schemas"]["ContactLabel"][] | null;
       /** @description A new value for the optional user-defined metadata about the contact. */
       metadata?: unknown;
       /**
@@ -8112,6 +8218,16 @@ export interface components {
        */
       version?: number | null;
     };
+    /** @description Policy Engine configurations. */
+    UpdateOrgPolicyEngineConfigs: {
+      /**
+       * @description Allowed domains for HTTP requests
+       * @example [
+       *   "cubist.dev:443"
+       * ]
+       */
+      allowed_http_authorities: string[];
+    };
     UpdateOrgRequest: {
       alien_login_requirement?: components["schemas"]["SecondFactorRequirement"] | null;
       /**
@@ -8198,7 +8314,7 @@ export interface components {
        * ]
        */
       policy?: Record<string, never>[] | null;
-      policy_engine_configuration?: components["schemas"]["PolicyEngineConfiguration"] | null;
+      policy_engine_configuration?: components["schemas"]["UpdateOrgPolicyEngineConfigs"] | null;
       /**
        * @description If set, all user logins will require the claim `cubesigner_scope_ceiling` to be present in
        * the user's token. This claim is an array of scopes (e.g. `[ "manage:keys:list", "sign:evm:tx" ]`),
@@ -8920,6 +9036,12 @@ export interface components {
         };
       };
     };
+    /** @description Response to [CustomChainRpcRequest] */
+    CustomChainRpcResponse: {
+      content: {
+        "application/json": unknown;
+      };
+    };
     /** @description The result of a Diffie Hellman key exchange */
     DiffieHellmanResponse: {
       content: {
@@ -11066,9 +11188,18 @@ export interface operations {
    * List all contacts in the org.
    * Any org member is allowed to list all contacts in the org.
    *
-   * If a search condition is provided, the result will contain only the contacts
-   * who have an address starting with, or equaling, the given search string. The
-   * search is case-insensitive. If a search term is defined, we do not guarantee
+   * ## Search Condition
+   * The search condition is optional.
+   *
+   * - If the search condition starts with "label:...", this list will only hold contacts with
+   * the label provided after the ":". For example, "label:cubist:erc20_token" would return contacts that
+   * hold the label "cubist:erc20_token".
+   *
+   * - Otherwise, the result will contain only the contacts who have an address starting with, or
+   * equaling, the given search string. For example, "0xee" would return all contacts holding an
+   * address starting with "0xee". The search is case-insensitive.
+   *
+   * If a search term is defined, we do not guarantee
    * the number of results in a page. The behavior of this parameter may change
    * in the future (for example, making results more strictly paginated or
    * performing a fuzzy search rather than a prefix search).
@@ -11089,7 +11220,7 @@ export interface operations {
          * the exact value previously returned as 'last_evaluated_key' from the same endpoint.
          */
         "page.start"?: string | null;
-        /** @description An entire address, or prefix of an address, that returned contacts must have. Must be at least 3 characters. */
+        /** @description Either 'label:...', which lists contacts with the label provided after the ':'. Or, an entire address, or prefix of an address, that returned contacts must have. When searching by address, it must be at least 3 characters. */
         search?: string | null;
       };
       path: {
@@ -11922,6 +12053,34 @@ export interface operations {
       };
     };
   };
+  /**
+   * (INTERNAL) Custom chain RPC proxy
+   * @description (INTERNAL) Custom chain RPC proxy
+   */
+  customChainRpcCall: {
+    parameters: {
+      path: {
+        /**
+         * @description Name or ID of the desired Org
+         * @example Org#124dfe3e-3bbd-487d-80c0-53c55e8ab87a
+         */
+        org_id: string;
+      };
+    };
+    requestBody: {
+      content: {
+        "application/json": components["schemas"]["CustomChainRpcRequest"];
+      };
+    };
+    responses: {
+      200: components["responses"]["CustomChainRpcResponse"];
+      default: {
+        content: {
+          "application/json": components["schemas"]["ErrorResponse"];
+        };
+      };
+    };
+  };
   /**
    * (INTERNAL) Esplora API Proxy
    * @description (INTERNAL) Esplora API Proxy

package/src/schema_types.ts

@@ -111,6 +111,8 @@ export type SuiChain = schemas["SuiChain"];
 export type CreateContactRequest = schemas["CreateContactRequest"];
 export type UpdateContactRequest = schemas["UpdateContactRequest"];
 export type ListContactsResponse = schemas["PaginatedListContactsResponse"];
+export type ContactLabel = schemas["ContactLabel"];
+export type ContactAddressData = schemas["ContactAddressData"];
 
 export type CreateSignerSessionRequest = schemas["CreateTokenRequest"];
 export type RefreshSignerSessionRequest = schemas["AuthData"];
@@ -276,9 +278,12 @@ export type InvitationAcceptRequest = schemas["InvitationAcceptRequest"];
 
 export type KeyTypeAndDerivationPath = schemas["KeyTypeAndDerivationPath"];
 
-export type PolicyInfo = schemas["PolicyInfo"];
+export type PolicyInfo = schemas["PolicyInfo"] & {
+  acl?: JsonValue[];
+};
 export type UpdatePolicyRequest = schemas["UpdatePolicyRequest"] & {
   rules?: JsonValue[];
+  acl?: JsonValue[];
 };
 export type ListPoliciesResponse = schemas["PaginatedListPoliciesResponse"];
 export type PolicyType = schemas["PolicyType"];
@@ -287,8 +292,14 @@ export type PolicyAttachedToId = schemas["PolicyAttachedToId"];
 export type UploadWasmPolicyRequest = schemas["UploadWasmPolicyRequest"];
 export type UploadWasmPolicyResponse = schemas["UploadWasmPolicyResponse"];
 export type InvokePolicyRequest = schemas["InvokePolicyRequest"];
+
+export type WasmRule = schemas["WasmRule"];
+export type InvokeC2FResponse = InvokePolicyResponse;
 export type InvokePolicyResponse = schemas["InvokePolicyResponse"];
+export type C2FResponse = WasmPolicyResponse;
 export type WasmPolicyResponse = schemas["WasmPolicyResponse"];
-export type WasmRule = schemas["WasmRule"];
-
+export type C2FConfiguration = PolicyEngineConfiguration;
 export type PolicyEngineConfiguration = schemas["PolicyEngineConfiguration"];
+
+export type PolicyAction = schemas["PolicyAction"];
+export type SecretAction = schemas["SecretAction"];

package/src/scopes.ts

@@ -120,6 +120,7 @@ export const AllScopes: Record<ExplicitScope, string> =
   "manage:contact:update:addresses"             : "Allows access only to the contact 'update' endpoint, but restricts updates to the contact's 'addresses' field.",
   "manage:contact:update:owner"                 : "Allows access only to the contact 'update' endpoint, but restricts updates to the contact's 'owner' field.",
   "manage:contact:update:metadata"              : "Allows access only to the contact 'update' endpoint, but restricts updates to the contact's 'metadata' field.",
+  "manage:contact:update:labels"                : "Allows access only to the contact 'update' endpoint, but restricts updates to the contact's 'labels' field.",
   "manage:contact:update:editPolicy"            : "Allows access only to the contact 'update' endpoint, but restricts updates to the contact's 'edit_policy' field.",
   "manage:contact:lookup:*"                     : "Allows access to the contact `lookup` endpoints",
   "manage:contact:lookup:address"               : "Allows access only to the contact 'lookup by address' endpoint",