@dynamic-labs/react-native-extension 4.67.3-device-registration.0 → 4.68.0

package/index.cjs

@@ -14,7 +14,6 @@ var expoLinking = require('expo-linking');
 var expoWebBrowser = require('expo-web-browser');
 var expoSecureStore = require('expo-secure-store');
 var reactNativePasskeyStamper = require('@turnkey/react-native-passkey-stamper');
-var expoModulesCore = require('expo-modules-core');
 
 function _interopNamespace(e) {
   if (e && e.__esModule) return e;
@@ -34,7 +33,7 @@ function _interopNamespace(e) {
   return Object.freeze(n);
 }
 
-var version = "4.67.3-device-registration.0";
+var version = "4.68.0";
 
 function _extends() {
   return _extends = Object.assign ? Object.assign.bind() : function (n) {
@@ -647,69 +646,6 @@ const setupTurnkeyPasskeyHandler = core => {
   }));
 };
 
-// eslint-disable-next-line import/no-extraneous-dependencies
-const getKeychain = () => {
-  try {
-    const keychain = expoModulesCore.requireNativeModule('Keychain');
-    return keychain;
-  } catch (error) {
-    logger.warn('Could not get dynamic keychain, using unavailable keychain');
-    const unavailableKeychain = {
-      deleteKey: () => {
-        throw new Error('Keychain is not available');
-      },
-      generateKeyPair: () => {
-        throw new Error('Keychain is not available');
-      },
-      getPublicKey: () => {
-        throw new Error('Keychain is not available');
-      },
-      hasKey: () => {
-        throw new Error('Keychain is not available');
-      },
-      isAvailable: () => Promise.resolve(false),
-      sign: () => {
-        throw new Error('Keychain is not available');
-      }
-    };
-    return unavailableKeychain;
-  }
-};
-
-const setupKeychainHandler = core => {
-  const keychainRequestChannel = messageTransport.createRequestChannel(core.messageTransport);
-  const keychain = getKeychain();
-  keychainRequestChannel.handle('keychain_isAvailable', () => __awaiter(void 0, void 0, void 0, function* () {
-    return keychain.isAvailable();
-  }));
-  keychainRequestChannel.handle('keychain_hasKey', _a => __awaiter(void 0, [_a], void 0, function* ({
-    key
-  }) {
-    return keychain.hasKey(key);
-  }));
-  keychainRequestChannel.handle('keychain_generateKey', _b => __awaiter(void 0, [_b], void 0, function* ({
-    key
-  }) {
-    return keychain.generateKeyPair(key);
-  }));
-  keychainRequestChannel.handle('keychain_getPublicKey', _c => __awaiter(void 0, [_c], void 0, function* ({
-    key
-  }) {
-    return keychain.getPublicKey(key);
-  }));
-  keychainRequestChannel.handle('keychain_sign', _d => __awaiter(void 0, [_d], void 0, function* ({
-    key,
-    payload
-  }) {
-    return keychain.sign(key, payload);
-  }));
-  keychainRequestChannel.handle('keychain_removeKey', _e => __awaiter(void 0, [_e], void 0, function* ({
-    key
-  }) {
-    return keychain.deleteKey(key);
-  }));
-};
-
 const defaultWebviewUrl = `https://webview.dynamicauth.com/${version}`;
 const ReactNativeExtension = ({
   webviewUrl: _webviewUrl = defaultWebviewUrl,
@@ -733,7 +669,6 @@ const ReactNativeExtension = ({
   setupTurnkeyPasskeyHandler(core);
   setupPlatformHandler(core);
   setupStorageHandler(core);
-  setupKeychainHandler(core);
   return {
     reactNative: {
       WebView: createWebView({

package/index.js

@@ -10,9 +10,8 @@ import { createURL, getInitialURL, addEventListener, openURL } from 'expo-linkin
 import { openAuthSessionAsync } from 'expo-web-browser';
 import { getItemAsync, deleteItemAsync, setItemAsync } from 'expo-secure-store';
 import { createPasskey, PasskeyStamper } from '@turnkey/react-native-passkey-stamper';
-import { requireNativeModule } from 'expo-modules-core';
 
-var version = "4.67.3-device-registration.0";
+var version = "4.68.0";
 
 function _extends() {
   return _extends = Object.assign ? Object.assign.bind() : function (n) {
@@ -625,69 +624,6 @@ const setupTurnkeyPasskeyHandler = core => {
   }));
 };
 
-// eslint-disable-next-line import/no-extraneous-dependencies
-const getKeychain = () => {
-  try {
-    const keychain = requireNativeModule('Keychain');
-    return keychain;
-  } catch (error) {
-    logger.warn('Could not get dynamic keychain, using unavailable keychain');
-    const unavailableKeychain = {
-      deleteKey: () => {
-        throw new Error('Keychain is not available');
-      },
-      generateKeyPair: () => {
-        throw new Error('Keychain is not available');
-      },
-      getPublicKey: () => {
-        throw new Error('Keychain is not available');
-      },
-      hasKey: () => {
-        throw new Error('Keychain is not available');
-      },
-      isAvailable: () => Promise.resolve(false),
-      sign: () => {
-        throw new Error('Keychain is not available');
-      }
-    };
-    return unavailableKeychain;
-  }
-};
-
-const setupKeychainHandler = core => {
-  const keychainRequestChannel = createRequestChannel(core.messageTransport);
-  const keychain = getKeychain();
-  keychainRequestChannel.handle('keychain_isAvailable', () => __awaiter(void 0, void 0, void 0, function* () {
-    return keychain.isAvailable();
-  }));
-  keychainRequestChannel.handle('keychain_hasKey', _a => __awaiter(void 0, [_a], void 0, function* ({
-    key
-  }) {
-    return keychain.hasKey(key);
-  }));
-  keychainRequestChannel.handle('keychain_generateKey', _b => __awaiter(void 0, [_b], void 0, function* ({
-    key
-  }) {
-    return keychain.generateKeyPair(key);
-  }));
-  keychainRequestChannel.handle('keychain_getPublicKey', _c => __awaiter(void 0, [_c], void 0, function* ({
-    key
-  }) {
-    return keychain.getPublicKey(key);
-  }));
-  keychainRequestChannel.handle('keychain_sign', _d => __awaiter(void 0, [_d], void 0, function* ({
-    key,
-    payload
-  }) {
-    return keychain.sign(key, payload);
-  }));
-  keychainRequestChannel.handle('keychain_removeKey', _e => __awaiter(void 0, [_e], void 0, function* ({
-    key
-  }) {
-    return keychain.deleteKey(key);
-  }));
-};
-
 const defaultWebviewUrl = `https://webview.dynamicauth.com/${version}`;
 const ReactNativeExtension = ({
   webviewUrl: _webviewUrl = defaultWebviewUrl,
@@ -711,7 +647,6 @@ const ReactNativeExtension = ({
   setupTurnkeyPasskeyHandler(core);
   setupPlatformHandler(core);
   setupStorageHandler(core);
-  setupKeychainHandler(core);
   return {
     reactNative: {
       WebView: createWebView({

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@dynamic-labs/react-native-extension",
-  "version": "4.67.3-device-registration.0",
+  "version": "4.68.0",
   "main": "./index.cjs",
   "module": "./index.js",
   "types": "./src/index.d.ts",
@@ -18,11 +18,11 @@
     "@turnkey/react-native-passkey-stamper": "1.2.7",
     "@react-native-documents/picker": "^11.0.0",
     "react-native-fs": ">=2.20.0",
-    "@dynamic-labs/assert-package-version": "4.67.3-device-registration.0",
-    "@dynamic-labs/client": "4.67.3-device-registration.0",
-    "@dynamic-labs/logger": "4.67.3-device-registration.0",
-    "@dynamic-labs/message-transport": "4.67.3-device-registration.0",
-    "@dynamic-labs/webview-messages": "4.67.3-device-registration.0"
+    "@dynamic-labs/assert-package-version": "4.68.0",
+    "@dynamic-labs/client": "4.68.0",
+    "@dynamic-labs/logger": "4.68.0",
+    "@dynamic-labs/message-transport": "4.68.0",
+    "@dynamic-labs/webview-messages": "4.68.0"
   },
   "peerDependencies": {
     "react": ">=18.0.0 <20.0.0",
@@ -30,7 +30,6 @@
     "react-native-webview": "^13.6.4",
     "expo-linking": ">=6.2.2",
     "expo-web-browser": ">=12.0.0",
-    "expo-secure-store": ">=12.0.0",
-    "expo-modules-core": ">=2.0.0"
+    "expo-secure-store": ">=12.0.0"
   }
 }

package/android/AndroidManifest.xml

@@ -1 +0,0 @@
-<manifest xmlns:android="http://schemas.android.com/apk/res/android" />

package/android/KeyStoreKeyManager.kt

@@ -1,148 +0,0 @@
-package xyz.dynamic.keychain
-
-import android.content.Context
-import android.content.pm.PackageManager
-import android.os.Build
-import android.security.keystore.KeyGenParameterSpec
-import android.security.keystore.KeyProperties
-import android.security.keystore.StrongBoxUnavailableException
-import java.security.KeyPairGenerator
-import java.security.KeyStore
-import java.security.Signature
-import java.security.spec.ECGenParameterSpec
-
-/// Platform-agnostic Android KeyStore key manager.
-/// Provides P-256 key generation, signing, and management backed by hardware TEE/StrongBox.
-/// All public keys are returned in uncompressed SEC1 format (65 bytes: 04 || x || y).
-/// All binary data uses base64url encoding (RFC 4648 §5, no padding).
-class KeyStoreKeyManager {
-
-  fun isAvailable(context: Context?): Boolean {
-    return try {
-      val keyStore = KeyStore.getInstance(ANDROID_KEYSTORE)
-      keyStore.load(null)
-      val hasStrongBox = if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.P && context != null) {
-        context.packageManager.hasSystemFeature(PackageManager.FEATURE_STRONGBOX_KEYSTORE)
-      } else {
-        false
-      }
-      // Even without StrongBox, Android KeyStore provides TEE-backed keys on most devices
-      hasStrongBox || Build.VERSION.SDK_INT >= Build.VERSION_CODES.M
-    } catch (e: Exception) {
-      false
-    }
-  }
-
-  fun hasKey(alias: String): Boolean {
-    val keyStore = loadKeyStore()
-    return keyStore.containsAlias(alias)
-  }
-
-  fun generateKeyPair(alias: String): String {
-    val specBuilder = KeyGenParameterSpec.Builder(
-      alias,
-      KeyProperties.PURPOSE_SIGN or KeyProperties.PURPOSE_VERIFY
-    )
-      .setAlgorithmParameterSpec(ECGenParameterSpec("secp256r1"))
-      .setDigests(KeyProperties.DIGEST_SHA256)
-
-    if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.P) {
-      specBuilder.setIsStrongBoxBacked(true)
-    }
-
-    val keyPair = try {
-      val kpg = KeyPairGenerator.getInstance(KeyProperties.KEY_ALGORITHM_EC, ANDROID_KEYSTORE)
-      kpg.initialize(specBuilder.build())
-      kpg.generateKeyPair()
-    } catch (e: Exception) {
-      if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.P && e is StrongBoxUnavailableException) {
-        // Retry without StrongBox
-        specBuilder.setIsStrongBoxBacked(false)
-        val kpg = KeyPairGenerator.getInstance(KeyProperties.KEY_ALGORITHM_EC, ANDROID_KEYSTORE)
-        kpg.initialize(specBuilder.build())
-        kpg.generateKeyPair()
-      } else {
-        throw e
-      }
-    }
-
-    val publicKeyBytes = extractUncompressedPublicKey(keyPair.public.encoded)
-    return base64urlEncode(publicKeyBytes)
-  }
-
-  fun getPublicKey(alias: String): String? {
-    val keyStore = loadKeyStore()
-    val entry = keyStore.getEntry(alias, null)
-
-    if (entry == null || entry !is KeyStore.PrivateKeyEntry) {
-      return null
-    }
-
-    val publicKeyBytes = extractUncompressedPublicKey(entry.certificate.publicKey.encoded)
-    return base64urlEncode(publicKeyBytes)
-  }
-
-  fun sign(alias: String, payload: ByteArray): String {
-    val keyStore = loadKeyStore()
-    val entry = keyStore.getEntry(alias, null)
-
-    if (entry == null || entry !is KeyStore.PrivateKeyEntry) {
-      throw IllegalArgumentException("Key not found: $alias")
-    }
-
-    val signature = Signature.getInstance("SHA256withECDSA")
-    signature.initSign(entry.privateKey)
-    signature.update(payload)
-    val signatureBytes = signature.sign()
-
-    return base64urlEncode(signatureBytes)
-  }
-
-  fun deleteKey(alias: String) {
-    val keyStore = loadKeyStore()
-    keyStore.deleteEntry(alias)
-  }
-
-  // region Private helpers
-
-  private fun loadKeyStore(): KeyStore {
-    val keyStore = KeyStore.getInstance(ANDROID_KEYSTORE)
-    keyStore.load(null)
-    return keyStore
-  }
-
-  /**
-   * Extract uncompressed SEC1 public key (65 bytes: 04 || x || y)
-   * from X.509 SubjectPublicKeyInfo DER encoding.
-   *
-   * For a P-256 key, the SubjectPublicKeyInfo contains the uncompressed
-   * point at the end of the DER structure. The point is always 65 bytes.
-   */
-  private fun extractUncompressedPublicKey(x509Encoded: ByteArray): ByteArray {
-    val uncompressedPointLength = 65
-    return x509Encoded.copyOfRange(
-      x509Encoded.size - uncompressedPointLength,
-      x509Encoded.size
-    )
-  }
-
-  private fun base64urlEncode(data: ByteArray): String {
-    return android.util.Base64.encodeToString(
-      data,
-      android.util.Base64.URL_SAFE or android.util.Base64.NO_WRAP or android.util.Base64.NO_PADDING
-    )
-  }
-
-  companion object {
-    private const val ANDROID_KEYSTORE = "AndroidKeyStore"
-
-    fun base64urlDecode(input: String): ByteArray {
-      return android.util.Base64.decode(
-        input,
-        android.util.Base64.URL_SAFE or android.util.Base64.NO_WRAP or android.util.Base64.NO_PADDING
-      )
-    }
-  }
-
-  // endregion
-}

package/android/KeychainModule.kt

@@ -1,71 +0,0 @@
-package xyz.dynamic.keychain
-
-import expo.modules.kotlin.modules.Module
-import expo.modules.kotlin.modules.ModuleDefinition
-import expo.modules.kotlin.Promise
-
-class KeychainModule : Module() {
-  private val keyManager = KeyStoreKeyManager()
-
-  override fun definition() = ModuleDefinition {
-    Name("Keychain")
-
-    AsyncFunction("isAvailable") { promise: Promise ->
-      try {
-        val context = appContext.reactContext
-        promise.resolve(keyManager.isAvailable(context))
-      } catch (e: Exception) {
-        promise.resolve(false)
-      }
-    }
-
-    AsyncFunction("hasKey") { key: String, promise: Promise ->
-      try {
-        promise.resolve(keyManager.hasKey(key))
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to check key: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("generateKeyPair") { key: String, promise: Promise ->
-      try {
-        val publicKey = keyManager.generateKeyPair(key)
-        promise.resolve(mapOf("publicKey" to publicKey))
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to generate key pair: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("getPublicKey") { key: String, promise: Promise ->
-      try {
-        val publicKey = keyManager.getPublicKey(key)
-        if (publicKey == null) {
-          promise.resolve(null)
-        } else {
-          promise.resolve(mapOf("publicKey" to publicKey))
-        }
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to get public key: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("sign") { key: String, payload: String, promise: Promise ->
-      try {
-        val payloadData = KeyStoreKeyManager.base64urlDecode(payload)
-        val signature = keyManager.sign(key, payloadData)
-        promise.resolve(mapOf("signature" to signature))
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to sign: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("deleteKey") { key: String, promise: Promise ->
-      try {
-        keyManager.deleteKey(key)
-        promise.resolve(null)
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to delete key: ${e.message}", e)
-      }
-    }
-  }
-}

package/android/build.gradle

@@ -1,32 +0,0 @@
-apply plugin: 'com.android.library'
-apply plugin: 'kotlin-android'
-apply plugin: 'expo-module'
-
-group = 'xyz.dynamic.keychain'
-
-android {
-  namespace 'xyz.dynamic.keychain'
-  compileSdkVersion safeExtGet("compileSdkVersion", 34)
-
-  defaultConfig {
-    minSdkVersion safeExtGet("minSdkVersion", 23)
-    targetSdkVersion safeExtGet("targetSdkVersion", 34)
-  }
-
-  compileOptions {
-    sourceCompatibility JavaVersion.VERSION_17
-    targetCompatibility JavaVersion.VERSION_17
-  }
-
-  kotlinOptions {
-    jvmTarget = '17'
-  }
-}
-
-dependencies {
-  implementation project(':expo-modules-core')
-}
-
-def safeExtGet(prop, fallback) {
-  rootProject.ext.has(prop) ? rootProject.ext.get(prop) : fallback
-}

package/android/dynamic/keychain/KeyStoreKeyManager.kt

@@ -1,148 +0,0 @@
-package xyz.dynamic.keychain
-
-import android.content.Context
-import android.content.pm.PackageManager
-import android.os.Build
-import android.security.keystore.KeyGenParameterSpec
-import android.security.keystore.KeyProperties
-import android.security.keystore.StrongBoxUnavailableException
-import java.security.KeyPairGenerator
-import java.security.KeyStore
-import java.security.Signature
-import java.security.spec.ECGenParameterSpec
-
-/// Platform-agnostic Android KeyStore key manager.
-/// Provides P-256 key generation, signing, and management backed by hardware TEE/StrongBox.
-/// All public keys are returned in uncompressed SEC1 format (65 bytes: 04 || x || y).
-/// All binary data uses base64url encoding (RFC 4648 §5, no padding).
-class KeyStoreKeyManager {
-
-  fun isAvailable(context: Context?): Boolean {
-    return try {
-      val keyStore = KeyStore.getInstance(ANDROID_KEYSTORE)
-      keyStore.load(null)
-      val hasStrongBox = if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.P && context != null) {
-        context.packageManager.hasSystemFeature(PackageManager.FEATURE_STRONGBOX_KEYSTORE)
-      } else {
-        false
-      }
-      // Even without StrongBox, Android KeyStore provides TEE-backed keys on most devices
-      hasStrongBox || Build.VERSION.SDK_INT >= Build.VERSION_CODES.M
-    } catch (e: Exception) {
-      false
-    }
-  }
-
-  fun hasKey(alias: String): Boolean {
-    val keyStore = loadKeyStore()
-    return keyStore.containsAlias(alias)
-  }
-
-  fun generateKeyPair(alias: String): String {
-    val specBuilder = KeyGenParameterSpec.Builder(
-      alias,
-      KeyProperties.PURPOSE_SIGN or KeyProperties.PURPOSE_VERIFY
-    )
-      .setAlgorithmParameterSpec(ECGenParameterSpec("secp256r1"))
-      .setDigests(KeyProperties.DIGEST_SHA256)
-
-    if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.P) {
-      specBuilder.setIsStrongBoxBacked(true)
-    }
-
-    val keyPair = try {
-      val kpg = KeyPairGenerator.getInstance(KeyProperties.KEY_ALGORITHM_EC, ANDROID_KEYSTORE)
-      kpg.initialize(specBuilder.build())
-      kpg.generateKeyPair()
-    } catch (e: Exception) {
-      if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.P && e is StrongBoxUnavailableException) {
-        // Retry without StrongBox
-        specBuilder.setIsStrongBoxBacked(false)
-        val kpg = KeyPairGenerator.getInstance(KeyProperties.KEY_ALGORITHM_EC, ANDROID_KEYSTORE)
-        kpg.initialize(specBuilder.build())
-        kpg.generateKeyPair()
-      } else {
-        throw e
-      }
-    }
-
-    val publicKeyBytes = extractUncompressedPublicKey(keyPair.public.encoded)
-    return base64urlEncode(publicKeyBytes)
-  }
-
-  fun getPublicKey(alias: String): String? {
-    val keyStore = loadKeyStore()
-    val entry = keyStore.getEntry(alias, null)
-
-    if (entry == null || entry !is KeyStore.PrivateKeyEntry) {
-      return null
-    }
-
-    val publicKeyBytes = extractUncompressedPublicKey(entry.certificate.publicKey.encoded)
-    return base64urlEncode(publicKeyBytes)
-  }
-
-  fun sign(alias: String, payload: ByteArray): String {
-    val keyStore = loadKeyStore()
-    val entry = keyStore.getEntry(alias, null)
-
-    if (entry == null || entry !is KeyStore.PrivateKeyEntry) {
-      throw IllegalArgumentException("Key not found: $alias")
-    }
-
-    val signature = Signature.getInstance("SHA256withECDSA")
-    signature.initSign(entry.privateKey)
-    signature.update(payload)
-    val signatureBytes = signature.sign()
-
-    return base64urlEncode(signatureBytes)
-  }
-
-  fun deleteKey(alias: String) {
-    val keyStore = loadKeyStore()
-    keyStore.deleteEntry(alias)
-  }
-
-  // region Private helpers
-
-  private fun loadKeyStore(): KeyStore {
-    val keyStore = KeyStore.getInstance(ANDROID_KEYSTORE)
-    keyStore.load(null)
-    return keyStore
-  }
-
-  /**
-   * Extract uncompressed SEC1 public key (65 bytes: 04 || x || y)
-   * from X.509 SubjectPublicKeyInfo DER encoding.
-   *
-   * For a P-256 key, the SubjectPublicKeyInfo contains the uncompressed
-   * point at the end of the DER structure. The point is always 65 bytes.
-   */
-  private fun extractUncompressedPublicKey(x509Encoded: ByteArray): ByteArray {
-    val uncompressedPointLength = 65
-    return x509Encoded.copyOfRange(
-      x509Encoded.size - uncompressedPointLength,
-      x509Encoded.size
-    )
-  }
-
-  private fun base64urlEncode(data: ByteArray): String {
-    return android.util.Base64.encodeToString(
-      data,
-      android.util.Base64.URL_SAFE or android.util.Base64.NO_WRAP or android.util.Base64.NO_PADDING
-    )
-  }
-
-  companion object {
-    private const val ANDROID_KEYSTORE = "AndroidKeyStore"
-
-    fun base64urlDecode(input: String): ByteArray {
-      return android.util.Base64.decode(
-        input,
-        android.util.Base64.URL_SAFE or android.util.Base64.NO_WRAP or android.util.Base64.NO_PADDING
-      )
-    }
-  }
-
-  // endregion
-}

package/android/dynamic/keychain/KeychainModule.kt

@@ -1,71 +0,0 @@
-package xyz.dynamic.keychain
-
-import expo.modules.kotlin.modules.Module
-import expo.modules.kotlin.modules.ModuleDefinition
-import expo.modules.kotlin.Promise
-
-class KeychainModule : Module() {
-  private val keyManager = KeyStoreKeyManager()
-
-  override fun definition() = ModuleDefinition {
-    Name("Keychain")
-
-    AsyncFunction("isAvailable") { promise: Promise ->
-      try {
-        val context = appContext.reactContext
-        promise.resolve(keyManager.isAvailable(context))
-      } catch (e: Exception) {
-        promise.resolve(false)
-      }
-    }
-
-    AsyncFunction("hasKey") { key: String, promise: Promise ->
-      try {
-        promise.resolve(keyManager.hasKey(key))
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to check key: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("generateKeyPair") { key: String, promise: Promise ->
-      try {
-        val publicKey = keyManager.generateKeyPair(key)
-        promise.resolve(mapOf("publicKey" to publicKey))
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to generate key pair: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("getPublicKey") { key: String, promise: Promise ->
-      try {
-        val publicKey = keyManager.getPublicKey(key)
-        if (publicKey == null) {
-          promise.resolve(null)
-        } else {
-          promise.resolve(mapOf("publicKey" to publicKey))
-        }
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to get public key: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("sign") { key: String, payload: String, promise: Promise ->
-      try {
-        val payloadData = KeyStoreKeyManager.base64urlDecode(payload)
-        val signature = keyManager.sign(key, payloadData)
-        promise.resolve(mapOf("signature" to signature))
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to sign: ${e.message}", e)
-      }
-    }
-
-    AsyncFunction("deleteKey") { key: String, promise: Promise ->
-      try {
-        keyManager.deleteKey(key)
-        promise.resolve(null)
-      } catch (e: Exception) {
-        promise.reject("ERR_KEYCHAIN", "Failed to delete key: ${e.message}", e)
-      }
-    }
-  }
-}