@dynamic-labs/sdk-react-core 4.66.0 → 4.67.0

package/src/lib/utils/constants/values.cjs

@@ -10,6 +10,7 @@ const DEFAULT_NUMBER_OF_WALLETS_TO_SHOW = 10;
 // https://www.iana.org/assignments/jwt/jwt.xhtml#claims
 // https://github.com/jaredhanson/id-blockchain-claims-in-jwt/blob/main/draft.md
 const ChainEnumToVerifiedCredentialName = {
+    ALEO: 'aleo',
     ALGO: 'algorand',
     BTC: 'bip122', // see: https://namespaces.chainagnostic.org/bip122/caip2
     COSMOS: 'cosmos',
@@ -22,6 +23,7 @@ const ChainEnumToVerifiedCredentialName = {
     TON: 'ton',
 };
 const VerifiedCredentialNameToChainEnum = {
+    aleo: sdkApiCore.ChainEnum.Aleo,
     algorand: sdkApiCore.ChainEnum.Algo,
     bip122: sdkApiCore.ChainEnum.Btc,
     cosmos: sdkApiCore.ChainEnum.Cosmos,

package/src/lib/utils/constants/values.js

@@ -6,6 +6,7 @@ const DEFAULT_NUMBER_OF_WALLETS_TO_SHOW = 10;
 // https://www.iana.org/assignments/jwt/jwt.xhtml#claims
 // https://github.com/jaredhanson/id-blockchain-claims-in-jwt/blob/main/draft.md
 const ChainEnumToVerifiedCredentialName = {
+    ALEO: 'aleo',
     ALGO: 'algorand',
     BTC: 'bip122', // see: https://namespaces.chainagnostic.org/bip122/caip2
     COSMOS: 'cosmos',
@@ -18,6 +19,7 @@ const ChainEnumToVerifiedCredentialName = {
     TON: 'ton',
 };
 const VerifiedCredentialNameToChainEnum = {
+    aleo: ChainEnum.Aleo,
     algorand: ChainEnum.Algo,
     bip122: ChainEnum.Btc,
     cosmos: ChainEnum.Cosmos,

package/src/lib/utils/functions/compareChains/compareChains.cjs

@@ -4,6 +4,7 @@
 Object.defineProperty(exports, '__esModule', { value: true });
 
 const synonyms = {
+    aleo: 'ALEO',
     bip122: 'BTC',
     bitcoin: 'BTC',
     eip155: 'EVM',

package/src/lib/utils/functions/compareChains/compareChains.js

@@ -1,5 +1,6 @@
 'use client'
 const synonyms = {
+    aleo: 'ALEO',
     bip122: 'BTC',
     bitcoin: 'BTC',
     eip155: 'EVM',

package/src/lib/utils/hooks/index.d.ts

@@ -109,4 +109,4 @@ export type { CheckWalletLockStateParams, UnlockWalletParams, UpdatePasswordPara
 export { usePromptWalletUnlock } from './usePromptWalletUnlock';
 export { useGetWalletPassword } from './useGetWalletPassword';
 export { useStepUpAuthentication } from './useStepUpAuthentication';
-export type { StepUpAuthenticationState, UseStepUpAuthenticationParams, UseStepUpAuthenticationReturn, VerifyOtpParams, VerifyWalletParams, } from './useStepUpAuthentication';
+export type { IsStepUpRequiredParams, StepUpAuthenticationState, UseStepUpAuthenticationParams, UseStepUpAuthenticationReturn, VerifyOtpParams, VerifyPasskeyMfaParams, VerifyTotpMfaParams, VerifyWalletParams, } from './useStepUpAuthentication';

package/src/lib/utils/hooks/useDynamicWaas/useDynamicWaas.cjs

@@ -545,7 +545,7 @@ const useDynamicWaas = () => {
         });
         yield refresh();
     });
-    const upgradeToDynamicWaas = React.useCallback((_j) => _tslib.__awaiter(void 0, [_j], void 0, function* ({ privateKey, wallet, }) {
+    const upgradeToDynamicWaas = React.useCallback((_j) => _tslib.__awaiter(void 0, [_j], void 0, function* ({ privateKey, wallet, password, }) {
         isUpgrading.current = true;
         if (!primaryWallet) {
             throw new utils.DynamicError('Primary wallet not found');
@@ -568,6 +568,7 @@ const useDynamicWaas = () => {
             yield walletConnector.importPrivateKey({
                 chainName,
                 legacyWalletId: normalizedWalletId,
+                password,
                 privateKey,
                 publicAddressCheck: wallet.address,
             });

package/src/lib/utils/hooks/useDynamicWaas/useDynamicWaas.d.ts

@@ -54,8 +54,9 @@ export declare const useDynamicWaas: () => {
     needsSettingsProcessing: boolean;
     processSignOnWalletSettings: () => Promise<void>;
     shouldInitializeWaas: boolean;
-    upgradeToDynamicWaas: ({ privateKey, wallet, }: {
+    upgradeToDynamicWaas: ({ privateKey, wallet, password, }: {
         privateKey: string;
         wallet: Wallet<WalletConnectorCore.WalletConnector>;
+        password?: string;
     }) => Promise<void>;
 };

package/src/lib/utils/hooks/useDynamicWaas/useDynamicWaas.js

@@ -541,7 +541,7 @@ const useDynamicWaas = () => {
         });
         yield refresh();
     });
-    const upgradeToDynamicWaas = useCallback((_j) => __awaiter(void 0, [_j], void 0, function* ({ privateKey, wallet, }) {
+    const upgradeToDynamicWaas = useCallback((_j) => __awaiter(void 0, [_j], void 0, function* ({ privateKey, wallet, password, }) {
         isUpgrading.current = true;
         if (!primaryWallet) {
             throw new DynamicError('Primary wallet not found');
@@ -564,6 +564,7 @@ const useDynamicWaas = () => {
             yield walletConnector.importPrivateKey({
                 chainName,
                 legacyWalletId: normalizedWalletId,
+                password,
                 privateKey,
                 publicAddressCheck: wallet.address,
             });

package/src/lib/utils/hooks/useNetworkConfigurationsFromProjectSettings/useNetworkConfigurationsFromProjectSettings.cjs

@@ -5,8 +5,8 @@ Object.defineProperty(exports, '__esModule', { value: true });
 
 var React = require('react');
 
-const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNetworkOverrides, evmNetworksOverrides, solanaNetworksOverrides, tronNetworksOverrides, aptosNetworksOverrides, stellarNetworksOverrides, tonNetworksOverrides, bitcoinNetworksOverrides, }) => React.useMemo(() => {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l;
+const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, aleoNetworksOverrides, cosmosNetworkOverrides, evmNetworksOverrides, solanaNetworksOverrides, tronNetworksOverrides, aptosNetworksOverrides, stellarNetworksOverrides, tonNetworksOverrides, bitcoinNetworksOverrides, }) => React.useMemo(() => {
+    var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l, _m;
     const networks = projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.networks;
     if (!networks)
         return {};
@@ -21,6 +21,7 @@ const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNe
     const aptos = networks.find((configurations) => configurations.chainName === 'aptos');
     const ton = networks.find((configurations) => configurations.chainName === 'ton');
     const bitcoin = networks.find((configurations) => configurations.chainName === 'bitcoin');
+    const aleo = networks.find((configurations) => configurations.chainName === 'aleo');
     let cosmosNetworks = (_a = cosmos === null || cosmos === void 0 ? void 0 : cosmos.networks) === null || _a === void 0 ? void 0 : _a.map((net) => createNetwork(net, Number.parseInt));
     cosmosNetworks = overrideNetworks(cosmosNetworkOverrides, cosmosNetworks);
     let evmNetworks = (_b = evm === null || evm === void 0 ? void 0 : evm.networks) === null || _b === void 0 ? void 0 : _b.map((net) => createNetwork(net, Number.parseInt));
@@ -48,7 +49,10 @@ const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNe
     stellarNetworks = overrideNetworks(stellarNetworksOverrides, stellarNetworks);
     let bitcoinNetworks = (_l = bitcoin === null || bitcoin === void 0 ? void 0 : bitcoin.networks) === null || _l === void 0 ? void 0 : _l.map((net) => createNetwork(net, Number.parseInt));
     bitcoinNetworks = overrideNetworks(bitcoinNetworksOverrides, bitcoinNetworks);
+    let aleoNetworks = (_m = aleo === null || aleo === void 0 ? void 0 : aleo.networks) === null || _m === void 0 ? void 0 : _m.map((net) => createNetwork(net));
+    aleoNetworks = overrideNetworks(aleoNetworksOverrides, aleoNetworks);
     const networkConfigurations = {
+        aleo: aleoNetworks,
         aptos: aptosNetworks,
         bitcoin: bitcoinNetworks,
         cosmos: cosmosNetworks,
@@ -64,6 +68,7 @@ const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNe
     return networkConfigurations;
 }, [
     projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.networks,
+    aleoNetworksOverrides,
     cosmosNetworkOverrides,
     evmNetworksOverrides,
     solanaNetworksOverrides,

package/src/lib/utils/hooks/useNetworkConfigurationsFromProjectSettings/useNetworkConfigurationsFromProjectSettings.d.ts

@@ -2,6 +2,7 @@ import type { ProjectSettings } from '@dynamic-labs/sdk-api-core';
 import type { NetworksOverrides } from '../../../context/DynamicContext';
 type UseNetworkConfigurationsFromProjectSettingsProps = {
     projectSettings: ProjectSettings | undefined;
+    aleoNetworksOverrides?: NetworksOverrides;
     evmNetworksOverrides?: NetworksOverrides;
     cosmosNetworkOverrides?: NetworksOverrides;
     solanaNetworksOverrides?: NetworksOverrides;
@@ -11,5 +12,5 @@ type UseNetworkConfigurationsFromProjectSettingsProps = {
     tonNetworksOverrides?: NetworksOverrides;
     bitcoinNetworksOverrides?: NetworksOverrides;
 };
-export declare const useNetworkConfigurationsFromProjectSettings: ({ projectSettings, cosmosNetworkOverrides, evmNetworksOverrides, solanaNetworksOverrides, tronNetworksOverrides, aptosNetworksOverrides, stellarNetworksOverrides, tonNetworksOverrides, bitcoinNetworksOverrides, }: UseNetworkConfigurationsFromProjectSettingsProps) => {};
+export declare const useNetworkConfigurationsFromProjectSettings: ({ projectSettings, aleoNetworksOverrides, cosmosNetworkOverrides, evmNetworksOverrides, solanaNetworksOverrides, tronNetworksOverrides, aptosNetworksOverrides, stellarNetworksOverrides, tonNetworksOverrides, bitcoinNetworksOverrides, }: UseNetworkConfigurationsFromProjectSettingsProps) => {};
 export {};

package/src/lib/utils/hooks/useNetworkConfigurationsFromProjectSettings/useNetworkConfigurationsFromProjectSettings.js

@@ -1,8 +1,8 @@
 'use client'
 import { useMemo } from 'react';
 
-const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNetworkOverrides, evmNetworksOverrides, solanaNetworksOverrides, tronNetworksOverrides, aptosNetworksOverrides, stellarNetworksOverrides, tonNetworksOverrides, bitcoinNetworksOverrides, }) => useMemo(() => {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l;
+const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, aleoNetworksOverrides, cosmosNetworkOverrides, evmNetworksOverrides, solanaNetworksOverrides, tronNetworksOverrides, aptosNetworksOverrides, stellarNetworksOverrides, tonNetworksOverrides, bitcoinNetworksOverrides, }) => useMemo(() => {
+    var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l, _m;
     const networks = projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.networks;
     if (!networks)
         return {};
@@ -17,6 +17,7 @@ const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNe
     const aptos = networks.find((configurations) => configurations.chainName === 'aptos');
     const ton = networks.find((configurations) => configurations.chainName === 'ton');
     const bitcoin = networks.find((configurations) => configurations.chainName === 'bitcoin');
+    const aleo = networks.find((configurations) => configurations.chainName === 'aleo');
     let cosmosNetworks = (_a = cosmos === null || cosmos === void 0 ? void 0 : cosmos.networks) === null || _a === void 0 ? void 0 : _a.map((net) => createNetwork(net, Number.parseInt));
     cosmosNetworks = overrideNetworks(cosmosNetworkOverrides, cosmosNetworks);
     let evmNetworks = (_b = evm === null || evm === void 0 ? void 0 : evm.networks) === null || _b === void 0 ? void 0 : _b.map((net) => createNetwork(net, Number.parseInt));
@@ -44,7 +45,10 @@ const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNe
     stellarNetworks = overrideNetworks(stellarNetworksOverrides, stellarNetworks);
     let bitcoinNetworks = (_l = bitcoin === null || bitcoin === void 0 ? void 0 : bitcoin.networks) === null || _l === void 0 ? void 0 : _l.map((net) => createNetwork(net, Number.parseInt));
     bitcoinNetworks = overrideNetworks(bitcoinNetworksOverrides, bitcoinNetworks);
+    let aleoNetworks = (_m = aleo === null || aleo === void 0 ? void 0 : aleo.networks) === null || _m === void 0 ? void 0 : _m.map((net) => createNetwork(net));
+    aleoNetworks = overrideNetworks(aleoNetworksOverrides, aleoNetworks);
     const networkConfigurations = {
+        aleo: aleoNetworks,
         aptos: aptosNetworks,
         bitcoin: bitcoinNetworks,
         cosmos: cosmosNetworks,
@@ -60,6 +64,7 @@ const useNetworkConfigurationsFromProjectSettings = ({ projectSettings, cosmosNe
     return networkConfigurations;
 }, [
     projectSettings === null || projectSettings === void 0 ? void 0 : projectSettings.networks,
+    aleoNetworksOverrides,
     cosmosNetworkOverrides,
     evmNetworksOverrides,
     solanaNetworksOverrides,

package/src/lib/utils/hooks/useStepUpAuthentication/index.d.ts

@@ -1,2 +1,2 @@
 export { useStepUpAuthentication } from './useStepUpAuthentication';
-export type { StepUpAuthenticationState, UseStepUpAuthenticationParams, UseStepUpAuthenticationReturn, VerifyOtpParams, VerifyWalletParams, } from './useStepUpAuthentication';
+export type { IsStepUpRequiredParams, StepUpAuthenticationState, UseStepUpAuthenticationParams, UseStepUpAuthenticationReturn, VerifyOtpParams, VerifyPasskeyMfaParams, VerifyTotpMfaParams, VerifyWalletParams, } from './useStepUpAuthentication';

package/src/lib/utils/hooks/useStepUpAuthentication/useStepUpAuthentication.cjs

@@ -24,12 +24,13 @@ require('@dynamic-labs/multi-wallet');
 require('react-international-phone');
 require('../../../store/state/nonce/nonce.cjs');
 require('@dynamic-labs/locale');
-require('../../../store/state/dynamicContextProps/dynamicContextProps.cjs');
+var dynamicContextProps = require('../../../store/state/dynamicContextProps/dynamicContextProps.cjs');
 require('../../../store/state/primaryWalletId/primaryWalletId.cjs');
 require('../../../store/state/connectedWalletsInfo/connectedWalletsInfo.cjs');
 require('../../functions/getWaasAddressTypeLabel/getWaasAddressTypeLabel.cjs');
 require('../../../events/dynamicEvents.cjs');
 var useUser = require('../../../client/extension/user/useUser/useUser.cjs');
+var hasElevatedAccessToken = require('../../../client/extension/functions/hasElevatedAccessToken/hasElevatedAccessToken.cjs');
 var useConnectAndSign = require('../authenticationHooks/useConnectAndSign/useConnectAndSign.cjs');
 var UserWalletsContext = require('../../../context/UserWalletsContext/UserWalletsContext.cjs');
 
@@ -72,47 +73,55 @@ const dispatchOtp = (credential) => _tslib.__awaiter(void 0, void 0, void 0, fun
         : sendSmsOtp(credential);
 });
 /**
- * Perform step-up authentication for an already-authenticated user via OTP.
+ * Perform step-up authentication for an already-authenticated user.
  *
- * Automatically selects the first sign-in enabled email or SMS credential on
- * the user, or targets a specific credential when `credentialId` is provided.
+ * Supports multiple verification methods:
+ * - **OTP** (email/SMS): `sendOtp()` then `verifyOtp()`
+ * - **Wallet**: `verifyWallet()` for wallet signature verification
+ * - **Passkey MFA**: `verifyPasskeyMfa()` for passkey-based MFA
+ * - **TOTP MFA**: `verifyTotpMfa()` for authenticator app codes
  *
- * @param params.credentialId - Optional id of a specific verified credential to
- *   use. Must be an email or SMS credential. Defaults to the first sign-in
- *   enabled email or SMS credential on the authenticated user.
+ * For OTP and wallet methods, automatically selects the first sign-in enabled
+ * credential, or targets a specific one when `credentialId` is provided.
  *
- * @returns `sendOtp` – sends the OTP to the resolved credential.
- * @returns `verifyOtp` – verifies the OTP code supplied by the user.
- * @returns `state` – current loading / error / otpVerification state.
- * @returns `resetState` – resets state back to its initial value.
+ * @param params.credentialId - Optional id of a specific verified credential or
+ *   wallet to use. For OTP, must be an email or SMS credential. Defaults to the
+ *   first sign-in enabled email or SMS credential on the authenticated user.
  *
  * @example
  * ```tsx
- * const { sendOtp, verifyOtp, state } = useStepUpAuthentication();
- *
- * // Step 1: send OTP
+ * // OTP flow
+ * const { sendOtp, verifyOtp } = useStepUpAuthentication();
  * await sendOtp();
+ * const result = await verifyOtp({ verificationToken: '123456', requestedScopes: ['wallet:export'] });
+ *
+ * // Passkey MFA flow
+ * const { verifyPasskeyMfa } = useStepUpAuthentication();
+ * const result = await verifyPasskeyMfa({ requestedScopes: ['wallet:export'] });
  *
- * // Step 2: after the user enters the code
- * const result = await verifyOtp({ verificationToken: '123456' });
+ * // TOTP MFA flow
+ * const { verifyTotpMfa } = useStepUpAuthentication();
+ * const result = await verifyTotpMfa({ code: '123456', requestedScopes: ['wallet:export'] });
  * ```
  */
 const useStepUpAuthentication = ({ credentialId, } = {}) => {
     const user = useUser.useUser();
+    const environmentId = dynamicContextProps.useEnvironmentId();
     const [state, setState] = React.useState(INITIAL_STATE);
     const connectAndSign = useConnectAndSign.useConnectAndSign();
     const { userWallets } = UserWalletsContext.useInternalUserWallets();
     // Ref keeps the latest otpVerification available inside the verifyOtp
     // callback without creating a stale closure over state.
     const otpVerificationRef = React.useRef(null);
+    const isStepUpRequired = React.useCallback(({ scope }) => !hasElevatedAccessToken.hasElevatedAccessToken(scope), []);
     const resetState = React.useCallback(() => {
         otpVerificationRef.current = null;
         setState(INITIAL_STATE);
     }, []);
     const setError = React.useCallback((errorMessage) => {
         setState((prev) => (Object.assign(Object.assign({}, prev), { error: errorMessage, isLoading: false })));
-        logger.logger.error(errorMessage);
-    }, []);
+        logger.logger.error(errorMessage, { environmentId, userId: user === null || user === void 0 ? void 0 : user.id });
+    }, [environmentId, user === null || user === void 0 ? void 0 : user.id]);
     const sendOtp = React.useCallback(() => _tslib.__awaiter(void 0, void 0, void 0, function* () {
         const credentials = user === null || user === void 0 ? void 0 : user.verifiedCredentials;
         if (!(credentials === null || credentials === void 0 ? void 0 : credentials.length)) {
@@ -138,10 +147,20 @@ const useStepUpAuthentication = ({ credentialId, } = {}) => {
         catch (error) {
             const errorMessage = error instanceof Error ? error.message : 'Failed to send OTP';
             setState((prev) => (Object.assign(Object.assign({}, prev), { error: errorMessage, isLoading: false })));
-            logger.logger.error('Failed to send OTP for step-up authentication', { error });
+            logger.logger.error('Failed to send OTP for step-up authentication', {
+                environmentId,
+                error,
+                userId: user === null || user === void 0 ? void 0 : user.id,
+            });
             return null;
         }
-    }), [credentialId, setError, user === null || user === void 0 ? void 0 : user.verifiedCredentials]);
+    }), [
+        credentialId,
+        environmentId,
+        setError,
+        user === null || user === void 0 ? void 0 : user.id,
+        user === null || user === void 0 ? void 0 : user.verifiedCredentials,
+    ]);
     const verifyOtp = React.useCallback((_a) => _tslib.__awaiter(void 0, [_a], void 0, function* ({ requestedScopes, verificationToken, }) {
         const otpVerification = otpVerificationRef.current;
         if (!otpVerification) {
@@ -162,11 +181,13 @@ const useStepUpAuthentication = ({ credentialId, } = {}) => {
             const errorMessage = error instanceof Error ? error.message : 'Failed to verify OTP';
             setState((prev) => (Object.assign(Object.assign({}, prev), { error: errorMessage, isLoading: false })));
             logger.logger.error('Failed to verify OTP for step-up authentication', {
+                environmentId,
                 error,
+                userId: user === null || user === void 0 ? void 0 : user.id,
             });
             return null;
         }
-    }), [setError]);
+    }), [environmentId, setError, user === null || user === void 0 ? void 0 : user.id]);
     const verifyWallet = React.useCallback((_b) => _tslib.__awaiter(void 0, [_b], void 0, function* ({ requestedScopes }) {
         setState((prev) => (Object.assign(Object.assign({}, prev), { error: null, isLoading: true })));
         const wallet = userWallets.find((w) => w.id === credentialId);
@@ -187,11 +208,69 @@ const useStepUpAuthentication = ({ credentialId, } = {}) => {
                 : 'Failed to verify wallet for step-up authentication';
             setState((prev) => (Object.assign(Object.assign({}, prev), { error: errorMessage, isLoading: false })));
             logger.logger.error('Failed to verify wallet for step-up authentication', {
+                environmentId,
                 error,
+                userId: user === null || user === void 0 ? void 0 : user.id,
+            });
+        }
+    }), [
+        connectAndSign,
+        credentialId,
+        environmentId,
+        setError,
+        user === null || user === void 0 ? void 0 : user.id,
+        userWallets,
+    ]);
+    const verifyPasskeyMfa = React.useCallback((_c) => _tslib.__awaiter(void 0, [_c], void 0, function* ({ requestedScopes, }) {
+        setState((prev) => (Object.assign(Object.assign({}, prev), { error: null, isLoading: true })));
+        try {
+            // requestedScopes is available in @dynamic-labs-sdk/client >= 0.14.0
+            const response = yield client.authenticatePasskeyMFA({
+                requestedScopes,
             });
+            setState((prev) => (Object.assign(Object.assign({}, prev), { error: null, isLoading: false })));
+            return response;
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error
+                ? error.message
+                : 'Failed to authenticate passkey for step-up authentication';
+            setState((prev) => (Object.assign(Object.assign({}, prev), { error: errorMessage, isLoading: false })));
+            logger.logger.error('Failed to authenticate passkey for step-up authentication', { environmentId, error, userId: user === null || user === void 0 ? void 0 : user.id });
+            return null;
+        }
+    }), [environmentId, user === null || user === void 0 ? void 0 : user.id]);
+    const verifyTotpMfa = React.useCallback((_d) => _tslib.__awaiter(void 0, [_d], void 0, function* ({ code, deviceId, requestedScopes, }) {
+        setState((prev) => (Object.assign(Object.assign({}, prev), { error: null, isLoading: true })));
+        try {
+            // requestedScopes is available in @dynamic-labs-sdk/client >= 0.14.0
+            const response = yield client.authenticateTotpMfaDevice({
+                code,
+                deviceId,
+                requestedScopes,
+            });
+            setState((prev) => (Object.assign(Object.assign({}, prev), { error: null, isLoading: false })));
+            return response;
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error
+                ? error.message
+                : 'Failed to authenticate TOTP device for step-up authentication';
+            setState((prev) => (Object.assign(Object.assign({}, prev), { error: errorMessage, isLoading: false })));
+            logger.logger.error('Failed to authenticate TOTP device for step-up authentication', { environmentId, error, userId: user === null || user === void 0 ? void 0 : user.id });
+            return null;
         }
-    }), [connectAndSign, credentialId, setError, userWallets]);
-    return { resetState, sendOtp, state, verifyOtp, verifyWallet };
+    }), [environmentId, user === null || user === void 0 ? void 0 : user.id]);
+    return {
+        isStepUpRequired,
+        resetState,
+        sendOtp,
+        state,
+        verifyOtp,
+        verifyPasskeyMfa,
+        verifyTotpMfa,
+        verifyWallet,
+    };
 };
 
 exports.useStepUpAuthentication = useStepUpAuthentication;

package/src/lib/utils/hooks/useStepUpAuthentication/useStepUpAuthentication.d.ts

@@ -12,40 +12,60 @@ export type VerifyOtpParams = {
 export type VerifyWalletParams = {
     requestedScopes?: TokenScope[];
 };
+export type VerifyPasskeyMfaParams = {
+    requestedScopes?: TokenScope[];
+};
+export type VerifyTotpMfaParams = {
+    code: string;
+    deviceId?: string;
+    requestedScopes?: TokenScope[];
+};
+export type IsStepUpRequiredParams = {
+    scope: TokenScope;
+};
 export type UseStepUpAuthenticationParams = {
     credentialId?: string;
 };
 export type UseStepUpAuthenticationReturn = {
+    isStepUpRequired: (params: IsStepUpRequiredParams) => boolean;
     resetState: () => void;
     sendOtp: () => Promise<OTPVerification | null>;
     state: StepUpAuthenticationState;
     verifyOtp: (params: VerifyOtpParams) => Promise<VerifyResponse | null>;
+    verifyPasskeyMfa: (params: VerifyPasskeyMfaParams) => Promise<VerifyResponse | null>;
+    verifyTotpMfa: (params: VerifyTotpMfaParams) => Promise<VerifyResponse | null>;
     verifyWallet: (params: VerifyWalletParams) => Promise<void>;
 };
 /**
- * Perform step-up authentication for an already-authenticated user via OTP.
+ * Perform step-up authentication for an already-authenticated user.
  *
- * Automatically selects the first sign-in enabled email or SMS credential on
- * the user, or targets a specific credential when `credentialId` is provided.
+ * Supports multiple verification methods:
+ * - **OTP** (email/SMS): `sendOtp()` then `verifyOtp()`
+ * - **Wallet**: `verifyWallet()` for wallet signature verification
+ * - **Passkey MFA**: `verifyPasskeyMfa()` for passkey-based MFA
+ * - **TOTP MFA**: `verifyTotpMfa()` for authenticator app codes
  *
- * @param params.credentialId - Optional id of a specific verified credential to
- *   use. Must be an email or SMS credential. Defaults to the first sign-in
- *   enabled email or SMS credential on the authenticated user.
+ * For OTP and wallet methods, automatically selects the first sign-in enabled
+ * credential, or targets a specific one when `credentialId` is provided.
  *
- * @returns `sendOtp` – sends the OTP to the resolved credential.
- * @returns `verifyOtp` – verifies the OTP code supplied by the user.
- * @returns `state` – current loading / error / otpVerification state.
- * @returns `resetState` – resets state back to its initial value.
+ * @param params.credentialId - Optional id of a specific verified credential or
+ *   wallet to use. For OTP, must be an email or SMS credential. Defaults to the
+ *   first sign-in enabled email or SMS credential on the authenticated user.
  *
  * @example
  * ```tsx
- * const { sendOtp, verifyOtp, state } = useStepUpAuthentication();
- *
- * // Step 1: send OTP
+ * // OTP flow
+ * const { sendOtp, verifyOtp } = useStepUpAuthentication();
  * await sendOtp();
+ * const result = await verifyOtp({ verificationToken: '123456', requestedScopes: ['wallet:export'] });
+ *
+ * // Passkey MFA flow
+ * const { verifyPasskeyMfa } = useStepUpAuthentication();
+ * const result = await verifyPasskeyMfa({ requestedScopes: ['wallet:export'] });
  *
- * // Step 2: after the user enters the code
- * const result = await verifyOtp({ verificationToken: '123456' });
+ * // TOTP MFA flow
+ * const { verifyTotpMfa } = useStepUpAuthentication();
+ * const result = await verifyTotpMfa({ code: '123456', requestedScopes: ['wallet:export'] });
  * ```
  */
 export declare const useStepUpAuthentication: ({ credentialId, }?: UseStepUpAuthenticationParams) => UseStepUpAuthenticationReturn;