@dynamic-labs/sdk-react-core 3.0.3 → 4.0.0-alpha.1

package/src/lib/utils/hooks/useEmbeddedWalletSessionKeys/useEmbeddedWalletSessionKeys.js

@@ -1,10 +1,10 @@
 'use client'
 import { __awaiter } from '../../../../../_virtual/_tslib.js';
 import { useCallback } from 'react';
-import { StorageService } from '@dynamic-labs/utils';
-import { SECURE_ENCLAVE_WALLET_SESSION_KEYS, SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS } from '../../constants/sessionStorage.js';
-import { p256Keygen } from '../useEmbeddedWallet/useSecureEnclaveEmbeddedWallet/utils.js';
-import '@dynamic-labs/sdk-api-core';
+import { StorageService, InvalidEmbeddedWalletSessionKeyError } from '@dynamic-labs/utils';
+import { EmbeddedWalletVersionEnum } from '@dynamic-labs/sdk-api-core';
+import { SECURE_ENCLAVE_WALLET_SESSION_KEYS, SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS } from '../../constants/localStorage.js';
+import { p256Sign, p256Keygen } from '../useEmbeddedWallet/useSecureEnclaveEmbeddedWallet/utils.js';
 import '../../../shared/logger.js';
 import '@dynamic-labs/iconic';
 import '@dynamic-labs/wallet-connector-core';
@@ -20,39 +20,95 @@ import '@dynamic-labs/multi-wallet';
 import 'react-international-phone';
 import '../../../store/state/projectSettings/projectSettings.js';
 import { registerSessionKey } from '../../../data/api/embeddedWallets/embeddedWallets.js';
-import '../../../store/state/user/user.js';
+import { useUser } from '../../../store/state/user/user.js';
 import '../../../locale/locale.js';
+import { dynamicEvents } from '../../../events/dynamicEvents.js';
 
-const useEmbeddedWalletSessionKeys = (environmentId) => {
+const useEmbeddedWalletSessionKeys = ({ environmentId, projectSettings, }) => {
+    const { user } = useUser();
+    // scenario 1: first time session register on first transaction.
+    // Keys will have been previously generated at this point in local storage but marked as not registered
+    // scenario 2: 2nd time register after expiration (key refresh)
+    // scenario 3: refresh/rerender page - session still active
+    // scenario 4: refresh/rerender page - session no longer active
     const registerEmbeddedWalletSessionKey = (...args_1) => __awaiter(void 0, [...args_1], void 0, function* ({ ignoreRestore = false, } = {}) {
         // check if session keys are already stored in session storage
         const sessionKeysSS = StorageService.getItem(SECURE_ENCLAVE_WALLET_SESSION_KEYS, SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS);
-        if (sessionKeysSS && !ignoreRestore) {
-            const sessionKeysInSS = JSON.parse(Buffer.from(sessionKeysSS, 'base64').toString());
-            return sessionKeysInSS;
+        const decodedSessionKeys = sessionKeysSS
+            ? JSON.parse(Buffer.from(sessionKeysSS, 'base64').toString())
+            : undefined;
+        if (!decodedSessionKeys) {
+            dynamicEvents.emit('triggerLogout');
+            throw new Error('Could not find session keys. Re-authentication is required to create new session keys.');
         }
-        const { publicKey, privateKey } = yield generateSessionKey();
-        yield registerSessionKey({
-            environmentId,
-            publicKey,
-        });
-        return { privateKey, publicKey };
+        if (!user) {
+            throw new Error('User not found');
+        }
+        if (decodedSessionKeys.expirationDate &&
+            new Date() <= new Date(decodedSessionKeys.expirationDate) &&
+            !ignoreRestore) {
+            // scenario 3
+            return decodedSessionKeys;
+        }
+        let publicKey;
+        let privateKey;
+        let privateKeyJwk;
+        let prevSessionKeySignature = undefined;
+        if (!decodedSessionKeys.registered) {
+            // scenario 1
+            ({ publicKey, privateKey, privateKeyJwk } = decodedSessionKeys);
+        }
+        else {
+            // scenario 2 and 4
+            const { publicKey: nextPublicKey, privateKey: nextPrivateKey, privateKeyJwk: nextPrivateKeyJwk, } = yield generateSessionKey();
+            publicKey = nextPublicKey;
+            privateKey = nextPrivateKey;
+            privateKeyJwk = nextPrivateKeyJwk;
+            prevSessionKeySignature = yield p256Sign(decodedSessionKeys.privateKeyJwk, user.sessionId);
+        }
+        let resp;
+        try {
+            resp = yield registerSessionKey({
+                environmentId,
+                prevSessionKeySignature,
+                publicKey,
+            });
+        }
+        catch (error) {
+            if (error instanceof InvalidEmbeddedWalletSessionKeyError) {
+                // this can happen if the public key passed during initial registration
+                // does not match the root session public key that the backend expects
+                dynamicEvents.emit('triggerLogout');
+            }
+            throw error;
+        }
+        const expirationDate = new Date(resp.expiresAt * 1000);
+        StorageService.setItem(SECURE_ENCLAVE_WALLET_SESSION_KEYS, toEncodedFormat(publicKey, privateKey, privateKeyJwk, true, expirationDate), SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS);
+        return { expirationDate, privateKey, publicKey };
     });
     const generateSessionKey = () => __awaiter(void 0, void 0, void 0, function* () {
-        const { private: privateKey, public: publicKey } = yield p256Keygen();
+        const { private: privateKey, public: publicKey, privateJwk, } = yield p256Keygen();
         // convert to base64 and store the session keys in session storage
-        const newSessionKeys = { privateKey, publicKey };
-        const sessionKeysString = JSON.stringify(newSessionKeys);
-        const sessionKeysBase64 = Buffer.from(sessionKeysString).toString('base64');
-        StorageService.setItem(SECURE_ENCLAVE_WALLET_SESSION_KEYS, sessionKeysBase64, SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS);
-        return { privateKey, publicKey };
+        StorageService.setItem(SECURE_ENCLAVE_WALLET_SESSION_KEYS, toEncodedFormat(publicKey, privateKey, privateJwk, false), SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS);
+        return { privateKey, privateKeyJwk: privateJwk, publicKey };
     });
+    const shouldRegisterSessionKeysOnSignin = () => {
+        var _a;
+        return ((_a = projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.sdk.embeddedWallets) === null || _a === void 0 ? void 0 : _a.defaultWalletVersion) ===
+            EmbeddedWalletVersionEnum.V2;
+    };
+    const toEncodedFormat = (publicKey, privateKey, privateKeyJwk, registered, expirationDate) => {
+        const sessionKeys = {
+            expirationDate,
+            privateKey,
+            privateKeyJwk,
+            publicKey,
+            registered,
+        };
+        const sessionKeysString = JSON.stringify(sessionKeys);
+        return Buffer.from(sessionKeysString).toString('base64');
+    };
     const removeSessionKey = useCallback(() => StorageService.removeItem(SECURE_ENCLAVE_WALLET_SESSION_KEYS, SECURE_ENCLAVE_WALLET_SESSION_KEYS_STORAGE_OPTIONS), []);
-    const shouldRegisterSessionKeysOnSignin = () => false;
-    // TODO: uncomment this once we actually implement and enforce session key chaining
-    // GVTY-2206
-    // projectSettings?.sdk?.embeddedWallets?.defaultWalletVersion ===
-    // EmbeddedWalletVersionEnum.V2;
     return {
         generateSessionKey,
         registerEmbeddedWalletSessionKey,

package/src/lib/utils/hooks/useEndUserWarning/index.d.ts

@@ -0,0 +1 @@
+export { useEndUserWarning } from './useEndUserWarning';

package/src/lib/utils/hooks/useEndUserWarning/useEndUserWarning.cjs

@@ -0,0 +1,37 @@
+'use client'
+'use strict';
+
+Object.defineProperty(exports, '__esModule', { value: true });
+
+var React = require('react');
+var sdkApiCore = require('@dynamic-labs/sdk-api-core');
+var logger = require('../../../shared/logger.cjs');
+require('@dynamic-labs/iconic');
+require('@dynamic-labs/wallet-connector-core');
+require('react/jsx-runtime');
+require('../../../context/ViewContext/ViewContext.cjs');
+require('@dynamic-labs/wallet-book');
+require('@dynamic-labs/utils');
+require('../../constants/colors.cjs');
+require('../../constants/values.cjs');
+require('../../../store/state/loadingAndLifecycle.cjs');
+require('../../../shared/consts/index.cjs');
+
+let didLog = false;
+const useEndUserWarning = ({ projectSettings, }) => {
+    React.useEffect(() => {
+        var _a;
+        if (!didLog && (projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.environmentName) === sdkApiCore.EnvironmentEnum.Live) {
+            didLog = true;
+            logger.logger.info('%cWarning!', 'color: red; font-size: 32px;');
+            logger.logger.info('%cThis is a browser feature intended for developers. You are reading this message because you opened the browser console, a developer tool.\n\n%c1. Never share your tokens or sensitive information with anyone.\n2. Do not paste any code you do not fully understand.\n3. If someone instructed you to do this, it is likely a scam.\n\n%cInjecting code into your browser could result in loss of tokens or control of your account that cannot be recovered or protected.', 'font-size: 16px;', 'font-size: 12px;', 'color: red; font-size: 12px;');
+            if (((_a = projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.general) === null || _a === void 0 ? void 0 : _a.supportUrls) &&
+                Object.values(projectSettings.general.supportUrls).length > 0) {
+                logger.logger.info(`%cFor more information, visit ${Object.values(projectSettings.general.supportUrls)[0]}`, 'font-size: 12px;');
+            }
+        }
+        // eslint-disable-next-line react-hooks/exhaustive-deps
+    }, [projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.environmentName]);
+};
+
+exports.useEndUserWarning = useEndUserWarning;

package/src/lib/utils/hooks/useEndUserWarning/useEndUserWarning.d.ts

@@ -0,0 +1,5 @@
+import { ProjectSettings } from '@dynamic-labs/sdk-api-core';
+export declare const resetEndUserWarning: () => void;
+export declare const useEndUserWarning: ({ projectSettings, }: {
+    projectSettings?: ProjectSettings;
+}) => void;

package/src/lib/utils/hooks/useEndUserWarning/useEndUserWarning.js

@@ -0,0 +1,33 @@
+'use client'
+import { useEffect } from 'react';
+import { EnvironmentEnum } from '@dynamic-labs/sdk-api-core';
+import { logger } from '../../../shared/logger.js';
+import '@dynamic-labs/iconic';
+import '@dynamic-labs/wallet-connector-core';
+import 'react/jsx-runtime';
+import '../../../context/ViewContext/ViewContext.js';
+import '@dynamic-labs/wallet-book';
+import '@dynamic-labs/utils';
+import '../../constants/colors.js';
+import '../../constants/values.js';
+import '../../../store/state/loadingAndLifecycle.js';
+import '../../../shared/consts/index.js';
+
+let didLog = false;
+const useEndUserWarning = ({ projectSettings, }) => {
+    useEffect(() => {
+        var _a;
+        if (!didLog && (projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.environmentName) === EnvironmentEnum.Live) {
+            didLog = true;
+            logger.info('%cWarning!', 'color: red; font-size: 32px;');
+            logger.info('%cThis is a browser feature intended for developers. You are reading this message because you opened the browser console, a developer tool.\n\n%c1. Never share your tokens or sensitive information with anyone.\n2. Do not paste any code you do not fully understand.\n3. If someone instructed you to do this, it is likely a scam.\n\n%cInjecting code into your browser could result in loss of tokens or control of your account that cannot be recovered or protected.', 'font-size: 16px;', 'font-size: 12px;', 'color: red; font-size: 12px;');
+            if (((_a = projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.general) === null || _a === void 0 ? void 0 : _a.supportUrls) &&
+                Object.values(projectSettings.general.supportUrls).length > 0) {
+                logger.info(`%cFor more information, visit ${Object.values(projectSettings.general.supportUrls)[0]}`, 'font-size: 12px;');
+            }
+        }
+        // eslint-disable-next-line react-hooks/exhaustive-deps
+    }, [projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.environmentName]);
+};
+
+export { useEndUserWarning };

package/src/lib/utils/hooks/useExternalAuth/useExternalAuth.cjs

@@ -95,8 +95,11 @@ require('../../../store/state/tokenBalances.cjs');
 var useInternalDynamicContext = require('../../../context/DynamicContext/useDynamicContext/useInternalDynamicContext.cjs');
 
 const useExternalAuth = () => {
-    const { environmentId, setShowAuthFlow, setCallback } = useInternalDynamicContext.useInternalDynamicContext();
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys(environmentId);
+    const { environmentId, setShowAuthFlow, setCallback, projectSettings } = useInternalDynamicContext.useInternalDynamicContext();
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     /**
      * Uses a properly-conifigured non-Dynamic external JWT and user ID to sign-in to Dynamic.
      * When successful, this should grant the user the ability to access Dynamic's functionality

package/src/lib/utils/hooks/useExternalAuth/useExternalAuth.js

@@ -91,8 +91,11 @@ import '../../../store/state/tokenBalances.js';
 import { useInternalDynamicContext } from '../../../context/DynamicContext/useDynamicContext/useInternalDynamicContext.js';
 
 const useExternalAuth = () => {
-    const { environmentId, setShowAuthFlow, setCallback } = useInternalDynamicContext();
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys(environmentId);
+    const { environmentId, setShowAuthFlow, setCallback, projectSettings } = useInternalDynamicContext();
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     /**
      * Uses a properly-conifigured non-Dynamic external JWT and user ID to sign-in to Dynamic.
      * When successful, this should grant the user the ability to access Dynamic's functionality

package/src/lib/utils/hooks/useSetWalletConnectorFetchers/useSetWalletConnectorFetchers.cjs

@@ -92,8 +92,8 @@ require('../../../context/ConnectWithOtpContext/constants.cjs');
 require('../../../context/ReinitializeContext/ReinitializeContextProvider.cjs');
 require('../../../store/state/tokenBalances.cjs');
 
-const useSetWalletConnectorFetchers = (walletOptions, environmentId) => {
-    const { registerEmbeddedWalletSessionKey, removeSessionKey } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys(environmentId);
+const useSetWalletConnectorFetchers = (walletOptions, environmentId, projectSettings) => {
+    const { registerEmbeddedWalletSessionKey, removeSessionKey } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys({ environmentId, projectSettings });
     if (!(walletOptions === null || walletOptions === void 0 ? void 0 : walletOptions.length))
         return;
     const { fetchAuthToken, fetchBackupCode, fetchPasscode } = getCoinbaseMPCConnectorFetchers.getCoinbaseMPCConnectorFetchers({ environmentId });

package/src/lib/utils/hooks/useSetWalletConnectorFetchers/useSetWalletConnectorFetchers.d.ts

@@ -1,2 +1,3 @@
+import { ProjectSettings } from '@dynamic-labs/sdk-api-core';
 import { WalletOption } from '../../../shared';
-export declare const useSetWalletConnectorFetchers: (walletOptions: WalletOption[] | undefined, environmentId: string) => void;
+export declare const useSetWalletConnectorFetchers: (walletOptions: WalletOption[] | undefined, environmentId: string, projectSettings: ProjectSettings | undefined) => void;

package/src/lib/utils/hooks/useSetWalletConnectorFetchers/useSetWalletConnectorFetchers.js

@@ -88,8 +88,8 @@ import '../../../context/ConnectWithOtpContext/constants.js';
 import '../../../context/ReinitializeContext/ReinitializeContextProvider.js';
 import '../../../store/state/tokenBalances.js';
 
-const useSetWalletConnectorFetchers = (walletOptions, environmentId) => {
-    const { registerEmbeddedWalletSessionKey, removeSessionKey } = useEmbeddedWalletSessionKeys(environmentId);
+const useSetWalletConnectorFetchers = (walletOptions, environmentId, projectSettings) => {
+    const { registerEmbeddedWalletSessionKey, removeSessionKey } = useEmbeddedWalletSessionKeys({ environmentId, projectSettings });
     if (!(walletOptions === null || walletOptions === void 0 ? void 0 : walletOptions.length))
         return;
     const { fetchAuthToken, fetchBackupCode, fetchPasscode } = getCoinbaseMPCConnectorFetchers({ environmentId });

package/src/lib/utils/hooks/useSocialAuth/useSocialAuth.cjs

@@ -128,7 +128,10 @@ const useSocialAuth = ({ sessionTimeout, onSettled, onError, onFarcasterUrl, })
     const { initAuth } = useUserAuth.useUserAuth({
         authMethod: 'social',
     });
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys(environmentId);
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     const [isProcessing, setIsProcessing] = React.useState(false);
     const [error, setError] = React.useState();
     const clearError = () => {
@@ -283,7 +286,7 @@ const useSocialAuth = ({ sessionTimeout, onSettled, onError, onFarcasterUrl, })
             }
         }
     });
-    const completeConnection = (_d) => _tslib.__awaiter(void 0, [_d], void 0, function* ({ authMode, provider, state, authCode, captchaToken, verifier, telegramAuthToken, }) {
+    const completeConnection = (_d) => _tslib.__awaiter(void 0, [_d], void 0, function* ({ authMode, provider, state, authCode, captchaToken, verifier, telegramAuthToken, forceCreateUser = false, }) {
         try {
             let sessionPublicKey = undefined;
             if (shouldRegisterSessionKeysOnSignin()) {
@@ -293,10 +296,11 @@ const useSocialAuth = ({ sessionTimeout, onSettled, onError, onFarcasterUrl, })
             if (authMode === 'signin') {
                 if (provider === sdkApiCore.ProviderEnum.Telegram && telegramAuthToken) {
                     const apiCall = () => oauth.telegramSignIn(environmentId, {
+                        forceCreateUser,
                         sessionPublicKey,
                         telegramAuthToken,
                     });
-                    yield signInAccount(provider, apiCall);
+                    return yield signInAccount(provider, apiCall);
                 }
                 else if (provider === sdkApiCore.ProviderEnum.Telegram) {
                     const apiCall = () => oauth.telegramSignIn(environmentId, {

package/src/lib/utils/hooks/useSocialAuth/useSocialAuth.d.ts

@@ -18,7 +18,7 @@ export type ConnectSocialAccountProps = {
 };
 export declare const useSocialAuth: ({ sessionTimeout, onSettled, onError, onFarcasterUrl, }: UseSocialAuthProps) => {
     readonly checkValidProvider: (provider: ProviderEnum, authMode: SocialAuthMode) => boolean;
-    readonly completeConnection: ({ authMode, provider, state, authCode, captchaToken, verifier, telegramAuthToken, }: {
+    readonly completeConnection: ({ authMode, provider, state, authCode, captchaToken, verifier, telegramAuthToken, forceCreateUser, }: {
         authMode: SocialAuthMode;
         provider: ProviderEnum;
         state: string;
@@ -26,6 +26,7 @@ export declare const useSocialAuth: ({ sessionTimeout, onSettled, onError, onFar
         authCode?: string | undefined;
         verifier?: string | undefined;
         telegramAuthToken?: string | undefined;
+        forceCreateUser?: boolean | undefined;
     }) => Promise<void>;
     readonly connectSocialAccount: ({ authMode, provider, validator, captchaToken, redirectUrl, telegramAuthToken, }: ConnectSocialAccountProps) => Promise<void>;
     readonly error: SocialOAuthError | undefined;

package/src/lib/utils/hooks/useSocialAuth/useSocialAuth.js

@@ -124,7 +124,10 @@ const useSocialAuth = ({ sessionTimeout, onSettled, onError, onFarcasterUrl, })
     const { initAuth: initAuth$1 } = useUserAuth({
         authMethod: 'social',
     });
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys(environmentId);
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     const [isProcessing, setIsProcessing] = useState(false);
     const [error, setError] = useState();
     const clearError = () => {
@@ -279,7 +282,7 @@ const useSocialAuth = ({ sessionTimeout, onSettled, onError, onFarcasterUrl, })
             }
         }
     });
-    const completeConnection = (_d) => __awaiter(void 0, [_d], void 0, function* ({ authMode, provider, state, authCode, captchaToken, verifier, telegramAuthToken, }) {
+    const completeConnection = (_d) => __awaiter(void 0, [_d], void 0, function* ({ authMode, provider, state, authCode, captchaToken, verifier, telegramAuthToken, forceCreateUser = false, }) {
         try {
             let sessionPublicKey = undefined;
             if (shouldRegisterSessionKeysOnSignin()) {
@@ -289,10 +292,11 @@ const useSocialAuth = ({ sessionTimeout, onSettled, onError, onFarcasterUrl, })
             if (authMode === 'signin') {
                 if (provider === ProviderEnum.Telegram && telegramAuthToken) {
                     const apiCall = () => telegramSignIn(environmentId, {
+                        forceCreateUser,
                         sessionPublicKey,
                         telegramAuthToken,
                     });
-                    yield signInAccount(provider, apiCall);
+                    return yield signInAccount(provider, apiCall);
                 }
                 else if (provider === ProviderEnum.Telegram) {
                     const apiCall = () => telegramSignIn(environmentId, {

package/src/lib/utils/hooks/useTelegramLogin/useTelegramLogin.cjs

@@ -4,7 +4,6 @@
 Object.defineProperty(exports, '__esModule', { value: true });
 
 var _tslib = require('../../../../../_virtual/_tslib.cjs');
-var React = require('react');
 var sdkApiCore = require('@dynamic-labs/sdk-api-core');
 require('../../constants/values.cjs');
 require('@dynamic-labs/utils');
@@ -16,6 +15,7 @@ require('@dynamic-labs/iconic');
 require('@dynamic-labs/wallet-connector-core');
 require('react/jsx-runtime');
 require('../../../context/ViewContext/ViewContext.cjs');
+require('react');
 require('@dynamic-labs/wallet-book');
 require('../../../store/state/loadingAndLifecycle.cjs');
 require('../../../shared/consts/index.cjs');
@@ -99,30 +99,31 @@ const useTelegramLogin = () => {
     const { completeConnection } = useSocialAuth.useSocialAuth({
         sessionTimeout: 20000,
     });
-    React.useEffect(() => {
-        const telegramSignIn = () => _tslib.__awaiter(void 0, void 0, void 0, function* () {
-            // in non-browser environments like Node.js
-            // or during server-side rendering (e.g., with frameworks like Next.js).
-            if (typeof window === 'undefined') {
-                return;
-            }
-            const search = new URLSearchParams(window.location.search);
-            const telegramAuthToken = search.get('telegramAuthToken');
-            if (!isProviderEnabled.isProviderEnabled(providers, sdkApiCore.ProviderEnum.Telegram) ||
-                user ||
-                !telegramAuthToken ||
-                !sdkHasLoaded) {
-                return;
-            }
-            yield completeConnection({
-                authMode: 'signin',
-                provider: sdkApiCore.ProviderEnum.Telegram,
-                state: '',
-                telegramAuthToken,
-            });
+    const telegramSignIn = (...args_1) => _tslib.__awaiter(void 0, [...args_1], void 0, function* ({ forceCreateUser = false, } = {}) {
+        // in non-browser environments like Node.js
+        // or during server-side rendering (e.g., with frameworks like Next.js).
+        if (typeof window === 'undefined') {
+            return;
+        }
+        const search = new URLSearchParams(window.location.search);
+        const telegramAuthToken = search.get('telegramAuthToken');
+        if (!isProviderEnabled.isProviderEnabled(providers, sdkApiCore.ProviderEnum.Telegram) ||
+            user ||
+            !telegramAuthToken ||
+            !sdkHasLoaded) {
+            return;
+        }
+        yield completeConnection({
+            authMode: 'signin',
+            forceCreateUser,
+            provider: sdkApiCore.ProviderEnum.Telegram,
+            state: '',
+            telegramAuthToken,
         });
-        telegramSignIn();
-    }, [sdkHasLoaded]);
+    });
+    return {
+        telegramSignIn,
+    };
 };
 
 exports.useTelegramLogin = useTelegramLogin;

package/src/lib/utils/hooks/useTelegramLogin/useTelegramLogin.d.ts

@@ -1 +1,7 @@
-export declare const useTelegramLogin: () => void;
+interface TelegramConfig {
+    forceCreateUser?: boolean;
+}
+export declare const useTelegramLogin: () => {
+    telegramSignIn: ({ forceCreateUser, }?: TelegramConfig) => Promise<void>;
+};
+export {};

package/src/lib/utils/hooks/useTelegramLogin/useTelegramLogin.js

@@ -1,6 +1,5 @@
 'use client'
 import { __awaiter } from '../../../../../_virtual/_tslib.js';
-import { useEffect } from 'react';
 import { ProviderEnum } from '@dynamic-labs/sdk-api-core';
 import '../../constants/values.js';
 import '@dynamic-labs/utils';
@@ -12,6 +11,7 @@ import '@dynamic-labs/iconic';
 import '@dynamic-labs/wallet-connector-core';
 import 'react/jsx-runtime';
 import '../../../context/ViewContext/ViewContext.js';
+import 'react';
 import '@dynamic-labs/wallet-book';
 import '../../../store/state/loadingAndLifecycle.js';
 import '../../../shared/consts/index.js';
@@ -95,30 +95,31 @@ const useTelegramLogin = () => {
     const { completeConnection } = useSocialAuth({
         sessionTimeout: 20000,
     });
-    useEffect(() => {
-        const telegramSignIn = () => __awaiter(void 0, void 0, void 0, function* () {
-            // in non-browser environments like Node.js
-            // or during server-side rendering (e.g., with frameworks like Next.js).
-            if (typeof window === 'undefined') {
-                return;
-            }
-            const search = new URLSearchParams(window.location.search);
-            const telegramAuthToken = search.get('telegramAuthToken');
-            if (!isProviderEnabled(providers, ProviderEnum.Telegram) ||
-                user ||
-                !telegramAuthToken ||
-                !sdkHasLoaded) {
-                return;
-            }
-            yield completeConnection({
-                authMode: 'signin',
-                provider: ProviderEnum.Telegram,
-                state: '',
-                telegramAuthToken,
-            });
+    const telegramSignIn = (...args_1) => __awaiter(void 0, [...args_1], void 0, function* ({ forceCreateUser = false, } = {}) {
+        // in non-browser environments like Node.js
+        // or during server-side rendering (e.g., with frameworks like Next.js).
+        if (typeof window === 'undefined') {
+            return;
+        }
+        const search = new URLSearchParams(window.location.search);
+        const telegramAuthToken = search.get('telegramAuthToken');
+        if (!isProviderEnabled(providers, ProviderEnum.Telegram) ||
+            user ||
+            !telegramAuthToken ||
+            !sdkHasLoaded) {
+            return;
+        }
+        yield completeConnection({
+            authMode: 'signin',
+            forceCreateUser,
+            provider: ProviderEnum.Telegram,
+            state: '',
+            telegramAuthToken,
         });
-        telegramSignIn();
-    }, [sdkHasLoaded]);
+    });
+    return {
+        telegramSignIn,
+    };
 };
 
 export { useTelegramLogin };

package/src/lib/utils/hooks/useVerifyWallet/useVerifyWallet.cjs

@@ -110,7 +110,10 @@ const useVerifyWallet = ({ consumeNonce, displaySiweStatement, environmentId, pr
     const { multiWalletWidgetState, debugError, multiWallet: multiWalletEnabled, appName, primaryWalletId, setShowAuthFlow, setPrimaryWalletId, siweStatement, connectedWallets, authMode, user, setAuthMode, removeConnectedWalletsInfo, events, primaryWallet, enableConnectOnlyFallback, selectedWalletConnector, } = useInternalDynamicContext.useInternalDynamicContext();
     const { addedWalletsIds } = UserWalletsContext.useInternalUserWallets();
     const { initAuth } = useUserAuth.useUserAuth({ authMethod: 'wallet' });
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys(environmentId);
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     // If the user is not already logged it means that we only need to verify
     // We need this boolean to distinguish between logic for verify or linking.
     const verifyOnly = !user;

package/src/lib/utils/hooks/useVerifyWallet/useVerifyWallet.js

@@ -106,7 +106,10 @@ const useVerifyWallet = ({ consumeNonce, displaySiweStatement, environmentId, pr
     const { multiWalletWidgetState, debugError, multiWallet: multiWalletEnabled, appName, primaryWalletId, setShowAuthFlow, setPrimaryWalletId, siweStatement, connectedWallets, authMode, user, setAuthMode, removeConnectedWalletsInfo, events, primaryWallet, enableConnectOnlyFallback, selectedWalletConnector, } = useInternalDynamicContext();
     const { addedWalletsIds } = useInternalUserWallets();
     const { initAuth } = useUserAuth({ authMethod: 'wallet' });
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys(environmentId);
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     // If the user is not already logged it means that we only need to verify
     // We need this boolean to distinguish between logic for verify or linking.
     const verifyOnly = !user;

package/src/lib/views/EmailVerification/EmailVerification.cjs

@@ -140,7 +140,10 @@ const EmailVerification = ({ isEmailRecoveryFlow = false, showRetryButton: _show
     const { initAuth, completeAuth, cancelAuth } = useUserAuth.useUserAuth({
         authMethod: 'email',
     });
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys(environmentId);
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys.useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     // When true, causes the component to call emailVerificationX callback on unmount
     const callCallbackOnUnmount = React.useRef(true);
     useOnUnmount.useOnUnmount(() => {

package/src/lib/views/EmailVerification/EmailVerification.js

@@ -136,7 +136,10 @@ const EmailVerification = ({ isEmailRecoveryFlow = false, showRetryButton: _show
     const { initAuth, completeAuth, cancelAuth } = useUserAuth({
         authMethod: 'email',
     });
-    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys(environmentId);
+    const { generateSessionKey, shouldRegisterSessionKeysOnSignin } = useEmbeddedWalletSessionKeys({
+        environmentId,
+        projectSettings,
+    });
     // When true, causes the component to call emailVerificationX callback on unmount
     const callCallbackOnUnmount = useRef(true);
     useOnUnmount(() => {