@dynamic-labs/ton 4.61.2 → 4.61.4

package/CHANGELOG.md

@@ -1,4 +1,20 @@
 
+### [4.61.4](https://github.com/dynamic-labs/dynamic-auth/compare/v4.61.3...v4.61.4) (2026-02-15)
+
+### [4.61.3](https://github.com/dynamic-labs/dynamic-auth/compare/v4.61.2...v4.61.3) (2026-02-13)
+
+
+### Features
+
+* add reset widget password flow for WaaS wallets ([#10437](https://github.com/dynamic-labs/dynamic-auth/issues/10437)) ([7490069](https://github.com/dynamic-labs/dynamic-auth/commit/7490069b70b04be5d70c472c17b132c6a5eddcd5))
+
+
+### Bug Fixes
+
+* add broken ton wallet mobile connection ([#10435](https://github.com/dynamic-labs/dynamic-auth/issues/10435)) ([a71cd88](https://github.com/dynamic-labs/dynamic-auth/commit/a71cd88fd4e80af6a8956cdb5cc389a34e4e00f1))
+* infinite loop when rapidly entering phone number ([#10434](https://github.com/dynamic-labs/dynamic-auth/issues/10434)) ([39a57cc](https://github.com/dynamic-labs/dynamic-auth/commit/39a57cc51b879abbb63bd129a489adcd8522b261))
+* invalidate non matching ton connect proof ([#10438](https://github.com/dynamic-labs/dynamic-auth/issues/10438)) ([406ba34](https://github.com/dynamic-labs/dynamic-auth/commit/406ba34ba9053953a4b5a5d6ead6d7e8a1718423))
+
 ### [4.61.2](https://github.com/dynamic-labs/dynamic-auth/compare/v4.61.1...v4.61.2) (2026-02-12)
 
 

package/package.cjs

@@ -3,6 +3,6 @@
 
 Object.defineProperty(exports, '__esModule', { value: true });
 
-var version = "4.61.2";
+var version = "4.61.4";
 
 exports.version = version;

package/package.js

@@ -1,4 +1,4 @@
 'use client'
-var version = "4.61.2";
+var version = "4.61.4";
 
 export { version };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@dynamic-labs/ton",
-  "version": "4.61.2",
+  "version": "4.61.4",
   "description": "A React SDK for implementing wallet web3 authentication and authorization to your website.",
   "author": "Dynamic Labs, Inc.",
   "license": "MIT",
@@ -18,14 +18,14 @@
   },
   "homepage": "https://www.dynamic.xyz/",
   "dependencies": {
-    "@dynamic-labs/assert-package-version": "4.61.2",
-    "@dynamic-labs/logger": "4.61.2",
+    "@dynamic-labs/assert-package-version": "4.61.4",
+    "@dynamic-labs/logger": "4.61.4",
     "@dynamic-labs/sdk-api-core": "0.0.864",
-    "@dynamic-labs/types": "4.61.2",
-    "@dynamic-labs/utils": "4.61.2",
-    "@dynamic-labs/waas": "4.61.2",
-    "@dynamic-labs/wallet-book": "4.61.2",
-    "@dynamic-labs/wallet-connector-core": "4.61.2",
+    "@dynamic-labs/types": "4.61.4",
+    "@dynamic-labs/utils": "4.61.4",
+    "@dynamic-labs/waas": "4.61.4",
+    "@dynamic-labs/wallet-book": "4.61.4",
+    "@dynamic-labs/wallet-connector-core": "4.61.4",
     "@ton/core": "0.62.0",
     "@ton/crypto": "3.3.0",
     "@ton/ton": "16.0.0",

package/src/connectors/TonConnectConnector/TonConnectConnector.cjs

@@ -57,6 +57,7 @@ class TonConnectConnector extends walletConnectorCore.WalletConnectorBase {
         this.connectedChain = 'TON';
         this.supportedChains = ['TON'];
         this.canConnectViaQrCode = false;
+        this.canHandleMultipleConnections = false;
         this.connectedWallet = null;
         this.pendingProofPayload = null;
         this.lastConnectionUrl = null;
@@ -160,8 +161,10 @@ class TonConnectConnector extends walletConnectorCore.WalletConnectorBase {
                             bridgeUrl: matchingWallet.bridgeUrl,
                             universalLink: matchingWallet.universalLink,
                         }, connectOptions);
-                        this.lastConnectionUrl = connectionUrl;
-                        utils.PlatformService.openURL(connectionUrl);
+                        // Append return strategy so the wallet redirects back to the browser
+                        const urlWithReturn = this.appendReturnStrategy(connectionUrl);
+                        this.lastConnectionUrl = urlWithReturn;
+                        utils.PlatformService.openURL(urlWithReturn);
                         return;
                     }
                     tonConnect.connect(matchingWallet, connectOptions);
@@ -203,32 +206,24 @@ class TonConnectConnector extends walletConnectorCore.WalletConnectorBase {
             if (tonConnect.connected && ((_a = tonConnect.account) === null || _a === void 0 ? void 0 : _a.address)) {
                 return this.convertAddressToUserFriendly(tonConnect.account.address);
             }
-            // On mobile without the wallet's JS bridge available,
-            // start bridge connection and redirect to wallet app.
-            // Return undefined — connection completes when user returns.
-            if (utils.isMobile() && !this.isInstalledOnBrowser()) {
-                yield this.connect();
-                return undefined;
-            }
-            // If not connected, initiate connection and wait for it to complete
+            // If not connected, initiate connection and wait for it to complete.
+            // connect() handles platform differences internally (injected provider,
+            // bridge deep link, etc.).  Unlike other chain connectors whose
+            // providers return a promise that resolves on connection completion,
+            // TonConnect SDK's connect() on mobile bridge connections returns the
+            // URL synchronously and notifies later via onStatusChange.  We poll
+            // until `tonConnect.connected` becomes true as a workaround.
             try {
-                // Start the connection process (shows QR code/deep link)
                 yield this.connect();
-                // After connect() returns, the QR code is shown but connection is not yet established
-                // Wait for the connection to be established by polling or waiting for status change
-                // TON Connect SDK doesn't provide a clean way to wait, so we poll
                 const maxWaitTime = 300000; // 5 minutes
                 const pollInterval = 500; // Check every 500ms
                 const startTime = Date.now();
                 while (!tonConnect.connected && Date.now() - startTime < maxWaitTime) {
                     yield new Promise((resolve) => setTimeout(resolve, pollInterval));
-                    // Check if connected after the delay
                     if (tonConnect.connected && ((_b = tonConnect.account) === null || _b === void 0 ? void 0 : _b.address)) {
-                        const userFriendlyAddress = this.convertAddressToUserFriendly(tonConnect.account.address);
-                        return userFriendlyAddress;
+                        return this.convertAddressToUserFriendly(tonConnect.account.address);
                     }
                 }
-                // If we get here, either timeout or still not connected
                 if (!tonConnect.connected) {
                     throw new utils.DynamicError('Connection timeout - user did not approve the connection');
                 }
@@ -558,6 +553,23 @@ class TonConnectConnector extends walletConnectorCore.WalletConnectorBase {
         // Serialize to base64 BOC (Bag of Cells) format
         return mainCell.toBoc().toString('base64');
     }
+    /**
+     * Append a return strategy to a TonConnect universal link.
+     * The `ret` parameter tells the wallet where to redirect after approval.
+     * `back` instructs the wallet to return to the previous app (browser).
+     */
+    appendReturnStrategy(url) {
+        try {
+            const parsed = new URL(url);
+            parsed.searchParams.append('ret', 'back');
+            return parsed.toString();
+        }
+        catch (_a) {
+            // If URL parsing fails, append as query string manually
+            const separator = url.includes('?') ? '&' : '?';
+            return `${url}${separator}ret=back`;
+        }
+    }
     /**
      * Check if error is a user rejection
      */
@@ -576,10 +588,10 @@ class TonConnectConnector extends walletConnectorCore.WalletConnectorBase {
         return _tslib.__awaiter(this, void 0, void 0, function* () {
             var _a, _b, _c, _d, _e, _f;
             const tonConnect = this.getTonConnect();
-            // If already connected with a proof, return it
+            // If already connected with a proof that matches the requested payload, return it
             if ((_b = (_a = this.connectedWallet) === null || _a === void 0 ? void 0 : _a.connectItems) === null || _b === void 0 ? void 0 : _b.tonProof) {
                 const { tonProof } = this.connectedWallet.connectItems;
-                if ('proof' in tonProof) {
+                if ('proof' in tonProof && tonProof.proof.payload === payload) {
                     debugLog.debugLog('[TON Connect] Returning existing proof from connection');
                     return {
                         address: this.connectedWallet.account.address,
@@ -590,9 +602,9 @@ class TonConnectConnector extends walletConnectorCore.WalletConnectorBase {
                     };
                 }
             }
-            // If connected but no proof, disconnect and reconnect with proof
+            // If connected but no matching proof, disconnect and reconnect with new proof
             if (tonConnect.connected) {
-                debugLog.debugLog('[TON Connect] Already connected without proof, disconnecting to reconnect with tonProof');
+                debugLog.debugLog('[TON Connect] Already connected without matching proof, disconnecting to reconnect with tonProof');
                 yield tonConnect.disconnect();
                 this.connectedWallet = null;
             }

package/src/connectors/TonConnectConnector/TonConnectConnector.d.ts

@@ -17,6 +17,7 @@ export declare class TonConnectConnector extends WalletConnectorBase<typeof TonW
     connectedChain: Chain;
     supportedChains: Chain[];
     canConnectViaQrCode: boolean;
+    canHandleMultipleConnections: boolean;
     private tonConnect;
     private tonNetworks;
     private connectedWallet;
@@ -125,6 +126,12 @@ export declare class TonConnectConnector extends WalletConnectorBase<typeof TonW
      * The Cell is then serialized to base64 BOC format for TON Connect SDK
      */
     encodeComment(comment: string): string;
+    /**
+     * Append a return strategy to a TonConnect universal link.
+     * The `ret` parameter tells the wallet where to redirect after approval.
+     * `back` instructs the wallet to return to the previous app (browser).
+     */
+    private appendReturnStrategy;
     /**
      * Check if error is a user rejection
      */

package/src/connectors/TonConnectConnector/TonConnectConnector.js

@@ -53,6 +53,7 @@ class TonConnectConnector extends WalletConnectorBase {
         this.connectedChain = 'TON';
         this.supportedChains = ['TON'];
         this.canConnectViaQrCode = false;
+        this.canHandleMultipleConnections = false;
         this.connectedWallet = null;
         this.pendingProofPayload = null;
         this.lastConnectionUrl = null;
@@ -156,8 +157,10 @@ class TonConnectConnector extends WalletConnectorBase {
                             bridgeUrl: matchingWallet.bridgeUrl,
                             universalLink: matchingWallet.universalLink,
                         }, connectOptions);
-                        this.lastConnectionUrl = connectionUrl;
-                        PlatformService.openURL(connectionUrl);
+                        // Append return strategy so the wallet redirects back to the browser
+                        const urlWithReturn = this.appendReturnStrategy(connectionUrl);
+                        this.lastConnectionUrl = urlWithReturn;
+                        PlatformService.openURL(urlWithReturn);
                         return;
                     }
                     tonConnect.connect(matchingWallet, connectOptions);
@@ -199,32 +202,24 @@ class TonConnectConnector extends WalletConnectorBase {
             if (tonConnect.connected && ((_a = tonConnect.account) === null || _a === void 0 ? void 0 : _a.address)) {
                 return this.convertAddressToUserFriendly(tonConnect.account.address);
             }
-            // On mobile without the wallet's JS bridge available,
-            // start bridge connection and redirect to wallet app.
-            // Return undefined — connection completes when user returns.
-            if (isMobile() && !this.isInstalledOnBrowser()) {
-                yield this.connect();
-                return undefined;
-            }
-            // If not connected, initiate connection and wait for it to complete
+            // If not connected, initiate connection and wait for it to complete.
+            // connect() handles platform differences internally (injected provider,
+            // bridge deep link, etc.).  Unlike other chain connectors whose
+            // providers return a promise that resolves on connection completion,
+            // TonConnect SDK's connect() on mobile bridge connections returns the
+            // URL synchronously and notifies later via onStatusChange.  We poll
+            // until `tonConnect.connected` becomes true as a workaround.
             try {
-                // Start the connection process (shows QR code/deep link)
                 yield this.connect();
-                // After connect() returns, the QR code is shown but connection is not yet established
-                // Wait for the connection to be established by polling or waiting for status change
-                // TON Connect SDK doesn't provide a clean way to wait, so we poll
                 const maxWaitTime = 300000; // 5 minutes
                 const pollInterval = 500; // Check every 500ms
                 const startTime = Date.now();
                 while (!tonConnect.connected && Date.now() - startTime < maxWaitTime) {
                     yield new Promise((resolve) => setTimeout(resolve, pollInterval));
-                    // Check if connected after the delay
                     if (tonConnect.connected && ((_b = tonConnect.account) === null || _b === void 0 ? void 0 : _b.address)) {
-                        const userFriendlyAddress = this.convertAddressToUserFriendly(tonConnect.account.address);
-                        return userFriendlyAddress;
+                        return this.convertAddressToUserFriendly(tonConnect.account.address);
                     }
                 }
-                // If we get here, either timeout or still not connected
                 if (!tonConnect.connected) {
                     throw new DynamicError('Connection timeout - user did not approve the connection');
                 }
@@ -554,6 +549,23 @@ class TonConnectConnector extends WalletConnectorBase {
         // Serialize to base64 BOC (Bag of Cells) format
         return mainCell.toBoc().toString('base64');
     }
+    /**
+     * Append a return strategy to a TonConnect universal link.
+     * The `ret` parameter tells the wallet where to redirect after approval.
+     * `back` instructs the wallet to return to the previous app (browser).
+     */
+    appendReturnStrategy(url) {
+        try {
+            const parsed = new URL(url);
+            parsed.searchParams.append('ret', 'back');
+            return parsed.toString();
+        }
+        catch (_a) {
+            // If URL parsing fails, append as query string manually
+            const separator = url.includes('?') ? '&' : '?';
+            return `${url}${separator}ret=back`;
+        }
+    }
     /**
      * Check if error is a user rejection
      */
@@ -572,10 +584,10 @@ class TonConnectConnector extends WalletConnectorBase {
         return __awaiter(this, void 0, void 0, function* () {
             var _a, _b, _c, _d, _e, _f;
             const tonConnect = this.getTonConnect();
-            // If already connected with a proof, return it
+            // If already connected with a proof that matches the requested payload, return it
             if ((_b = (_a = this.connectedWallet) === null || _a === void 0 ? void 0 : _a.connectItems) === null || _b === void 0 ? void 0 : _b.tonProof) {
                 const { tonProof } = this.connectedWallet.connectItems;
-                if ('proof' in tonProof) {
+                if ('proof' in tonProof && tonProof.proof.payload === payload) {
                     debugLog('[TON Connect] Returning existing proof from connection');
                     return {
                         address: this.connectedWallet.account.address,
@@ -586,9 +598,9 @@ class TonConnectConnector extends WalletConnectorBase {
                     };
                 }
             }
-            // If connected but no proof, disconnect and reconnect with proof
+            // If connected but no matching proof, disconnect and reconnect with new proof
             if (tonConnect.connected) {
-                debugLog('[TON Connect] Already connected without proof, disconnecting to reconnect with tonProof');
+                debugLog('[TON Connect] Already connected without matching proof, disconnecting to reconnect with tonProof');
                 yield tonConnect.disconnect();
                 this.connectedWallet = null;
             }