@elizaos/plugin-steward-app 2.0.3-beta.6 → 2.0.3-beta.7

package/dist/routes/wallet-compat-routes.js

@@ -0,0 +1,206 @@
+import { loadElizaConfig } from "@elizaos/agent/config/config";
+import {
+  ensureCompatApiAuthorized,
+  ensureCompatSensitiveRouteAuthorized,
+  getCompatApiToken,
+  isDevEnvironment
+} from "@elizaos/app-core/api/auth";
+import {
+  isLoopbackRemoteAddress,
+  readCompatJsonBody
+} from "@elizaos/app-core/api/compat-route-shared";
+import {
+  sendJsonError as sendJsonErrorResponse,
+  sendJson as sendJsonResponse
+} from "@elizaos/app-core/api/response";
+import { deriveAgentVaultId } from "@elizaos/app-core/security/agent-vault-id";
+import {
+  createNodePlatformSecureStore,
+  isWalletOsStoreReadEnabled
+} from "@elizaos/app-core/security/platform-secure-store-node";
+import { logger } from "@elizaos/core";
+import { getWalletAddresses } from "../api/wallet.js";
+import { fetchEvmNfts } from "../api/wallet-evm-balance.js";
+import { resolveWalletRpcReadiness } from "../api/wallet-rpc.js";
+import {
+  deleteWalletSecretsFromOsStore,
+  migrateWalletPrivateKeysToOsStore
+} from "../security/wallet-os-store-actions.js";
+import { getStewardBridgeStatus, isStewardConfigured } from "./steward-bridge.js";
+async function handleWalletCompatRoutes(req, res, _state) {
+  const method = (req.method ?? "GET").toUpperCase();
+  const url = new URL(req.url ?? "/", "http://localhost");
+  if (!url.pathname.startsWith("/api/wallet/")) {
+    return false;
+  }
+  if (method === "GET" && url.pathname === "/api/wallet/os-store") {
+    if (!ensureCompatApiAuthorized(req, res)) {
+      return true;
+    }
+    try {
+      const store = createNodePlatformSecureStore();
+      const available = await store.isAvailable();
+      sendJsonResponse(res, 200, {
+        backend: store.backend,
+        available,
+        readEnabled: isWalletOsStoreReadEnabled(),
+        vaultId: deriveAgentVaultId()
+      });
+    } catch (err) {
+      logger.warn(
+        `[wallet][os-store] GET status failed: ${err instanceof Error ? err.message : String(err)}`
+      );
+      sendJsonResponse(res, 500, { error: "os-store status failed" });
+    }
+    return true;
+  }
+  if (method === "POST" && url.pathname === "/api/wallet/os-store") {
+    if (!ensureCompatSensitiveRouteAuthorized(req, res)) {
+      return true;
+    }
+    const body = await readCompatJsonBody(req, res);
+    if (!body) {
+      return true;
+    }
+    const action = typeof body.action === "string" ? body.action.trim() : "";
+    try {
+      if (action === "migrate") {
+        const result = await migrateWalletPrivateKeysToOsStore();
+        if (result.unavailable) {
+          sendJsonResponse(res, 503, {
+            ok: false,
+            error: "OS secret store unavailable on this host"
+          });
+          return true;
+        }
+        sendJsonResponse(res, 200, {
+          ok: true,
+          migrated: result.migrated,
+          failed: result.failed
+        });
+        return true;
+      }
+      if (action === "delete") {
+        await deleteWalletSecretsFromOsStore();
+        sendJsonResponse(res, 200, { ok: true });
+        return true;
+      }
+    } catch (err) {
+      logger.warn(
+        `[wallet][os-store] POST failed: ${err instanceof Error ? err.message : String(err)}`
+      );
+      sendJsonResponse(res, 500, {
+        error: err instanceof Error ? err.message : "os-store action failed"
+      });
+      return true;
+    }
+    sendJsonResponse(res, 400, { error: "Unknown action" });
+    return true;
+  }
+  if (method === "GET" && url.pathname === "/api/wallet/keys") {
+    if (!isLoopbackRemoteAddress(req.socket.remoteAddress)) {
+      sendJsonErrorResponse(res, 403, "loopback only");
+      return true;
+    }
+    if (!isDevEnvironment() && !getCompatApiToken()) {
+      sendJsonErrorResponse(
+        res,
+        403,
+        "Sensitive endpoint requires API token authentication"
+      );
+      return true;
+    }
+    if (!ensureCompatSensitiveRouteAuthorized(req, res)) {
+      return true;
+    }
+    const config = loadElizaConfig();
+    if (config.meta?.firstRunComplete === true) {
+      sendJsonResponse(res, 403, {
+        error: "Wallet keys are only available during first run"
+      });
+      return true;
+    }
+    if (isStewardConfigured()) {
+      try {
+        const addresses = getWalletAddresses();
+        const stewardStatus = await getStewardBridgeStatus({
+          evmAddress: addresses.evmAddress
+        });
+        sendJsonResponse(res, 200, {
+          evmPrivateKey: "[managed-by-steward]",
+          evmAddress: addresses.evmAddress ?? stewardStatus.evmAddress ?? "",
+          solanaPrivateKey: "[managed-by-steward]",
+          solanaAddress: addresses.solanaAddress ?? "",
+          steward: {
+            configured: true,
+            connected: stewardStatus.connected,
+            agentId: stewardStatus.agentId
+          }
+        });
+        return true;
+      } catch {
+      }
+    }
+    const evmKey = process.env.EVM_PRIVATE_KEY ?? "";
+    const solKey = process.env.SOLANA_PRIVATE_KEY ?? "";
+    try {
+      const addresses = getWalletAddresses();
+      sendJsonResponse(res, 200, {
+        evmPrivateKey: evmKey,
+        evmAddress: addresses.evmAddress ?? "",
+        solanaPrivateKey: solKey,
+        solanaAddress: addresses.solanaAddress ?? ""
+      });
+    } catch {
+      sendJsonResponse(res, 200, {
+        evmPrivateKey: evmKey,
+        evmAddress: "",
+        solanaPrivateKey: solKey,
+        solanaAddress: ""
+      });
+    }
+    return true;
+  }
+  if (method === "GET" && url.pathname === "/api/wallet/nfts") {
+    if (!ensureCompatApiAuthorized(req, res)) {
+      return true;
+    }
+    const config = loadElizaConfig();
+    const addresses = getWalletAddresses();
+    const rpcReadiness = resolveWalletRpcReadiness(config);
+    const alchemyKey = process.env.ALCHEMY_API_KEY?.trim() || null;
+    const ankrKey = process.env.ANKR_API_KEY?.trim() || null;
+    const result = {
+      evm: [],
+      solana: null
+    };
+    if (addresses.evmAddress && rpcReadiness.evmBalanceReady) {
+      try {
+        result.evm = await fetchEvmNfts(addresses.evmAddress, {
+          alchemyKey,
+          ankrKey,
+          cloudManagedAccess: rpcReadiness.cloudManagedAccess,
+          bscRpcUrls: rpcReadiness.bscRpcUrls,
+          ethereumRpcUrls: rpcReadiness.ethereumRpcUrls,
+          baseRpcUrls: rpcReadiness.baseRpcUrls,
+          avaxRpcUrls: rpcReadiness.avalancheRpcUrls,
+          nodeRealBscRpcUrl: process.env.NODEREAL_BSC_RPC_URL,
+          quickNodeBscRpcUrl: process.env.QUICKNODE_BSC_RPC_URL,
+          bscRpcUrl: process.env.BSC_RPC_URL,
+          ethereumRpcUrl: process.env.ETHEREUM_RPC_URL,
+          baseRpcUrl: process.env.BASE_RPC_URL,
+          avaxRpcUrl: process.env.AVALANCHE_RPC_URL
+        });
+      } catch (err) {
+        logger.warn(`[wallet] EVM NFT fetch failed: ${err}`);
+      }
+    }
+    sendJsonResponse(res, 200, result);
+    return true;
+  }
+  return false;
+}
+export {
+  handleWalletCompatRoutes
+};
+//# sourceMappingURL=wallet-compat-routes.js.map

package/dist/routes/wallet-compat-routes.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/routes/wallet-compat-routes.ts"],"sourcesContent":["/**\n * Wallet OS-store, keys, and NFT compat routes.\n *\n * Handles:\n *   GET  /api/wallet/os-store  — keychain/secret-service backend status\n *   POST /api/wallet/os-store  — migrate / delete wallet secrets in OS store\n *   GET  /api/wallet/keys      — EVM + Solana keys (loopback + first-run gate)\n *   GET  /api/wallet/nfts      — EVM NFT fetch\n */\nimport type http from \"node:http\";\nimport { loadElizaConfig } from \"@elizaos/agent/config/config\";\nimport {\n  ensureCompatApiAuthorized,\n  ensureCompatSensitiveRouteAuthorized,\n  getCompatApiToken,\n  isDevEnvironment,\n} from \"@elizaos/app-core/api/auth\";\nimport {\n  type CompatRuntimeState,\n  isLoopbackRemoteAddress,\n  readCompatJsonBody,\n} from \"@elizaos/app-core/api/compat-route-shared\";\nimport {\n  sendJsonError as sendJsonErrorResponse,\n  sendJson as sendJsonResponse,\n} from \"@elizaos/app-core/api/response\";\nimport { deriveAgentVaultId } from \"@elizaos/app-core/security/agent-vault-id\";\nimport {\n  createNodePlatformSecureStore,\n  isWalletOsStoreReadEnabled,\n} from \"@elizaos/app-core/security/platform-secure-store-node\";\nimport { logger } from \"@elizaos/core\";\nimport type { ElizaConfig } from \"@elizaos/shared\";\nimport { getWalletAddresses } from \"../api/wallet.js\";\nimport { fetchEvmNfts } from \"../api/wallet-evm-balance.js\";\nimport { resolveWalletRpcReadiness } from \"../api/wallet-rpc.js\";\nimport {\n  deleteWalletSecretsFromOsStore,\n  migrateWalletPrivateKeysToOsStore,\n} from \"../security/wallet-os-store-actions.js\";\nimport { getStewardBridgeStatus, isStewardConfigured } from \"./steward-bridge.js\";\n\nexport async function handleWalletCompatRoutes(\n  req: http.IncomingMessage,\n  res: http.ServerResponse,\n  _state: CompatRuntimeState,\n): Promise<boolean> {\n  const method = (req.method ?? \"GET\").toUpperCase();\n  const url = new URL(req.url ?? \"/\", \"http://localhost\");\n\n  // Quick prefix check — all routes here live under /api/wallet/\n  if (!url.pathname.startsWith(\"/api/wallet/\")) {\n    return false;\n  }\n\n  // ── GET /api/wallet/os-store ─────────────────────────────────────────\n  if (method === \"GET\" && url.pathname === \"/api/wallet/os-store\") {\n    if (!ensureCompatApiAuthorized(req, res)) {\n      return true;\n    }\n\n    try {\n      const store = createNodePlatformSecureStore();\n      const available = await store.isAvailable();\n      sendJsonResponse(res, 200, {\n        backend: store.backend,\n        available,\n        readEnabled: isWalletOsStoreReadEnabled(),\n        vaultId: deriveAgentVaultId(),\n      });\n    } catch (err) {\n      logger.warn(\n        `[wallet][os-store] GET status failed: ${err instanceof Error ? err.message : String(err)}`,\n      );\n      sendJsonResponse(res, 500, { error: \"os-store status failed\" });\n    }\n    return true;\n  }\n\n  // ── POST /api/wallet/os-store ────────────────────────────────────────\n  if (method === \"POST\" && url.pathname === \"/api/wallet/os-store\") {\n    if (!ensureCompatSensitiveRouteAuthorized(req, res)) {\n      return true;\n    }\n\n    const body = await readCompatJsonBody(req, res);\n    if (!body) {\n      return true;\n    }\n\n    const action = typeof body.action === \"string\" ? body.action.trim() : \"\";\n\n    try {\n      if (action === \"migrate\") {\n        const result = await migrateWalletPrivateKeysToOsStore();\n        if (result.unavailable) {\n          sendJsonResponse(res, 503, {\n            ok: false,\n            error: \"OS secret store unavailable on this host\",\n          });\n          return true;\n        }\n        sendJsonResponse(res, 200, {\n          ok: true,\n          migrated: result.migrated,\n          failed: result.failed,\n        });\n        return true;\n      }\n      if (action === \"delete\") {\n        await deleteWalletSecretsFromOsStore();\n        sendJsonResponse(res, 200, { ok: true });\n        return true;\n      }\n    } catch (err) {\n      logger.warn(\n        `[wallet][os-store] POST failed: ${err instanceof Error ? err.message : String(err)}`,\n      );\n      sendJsonResponse(res, 500, {\n        error: err instanceof Error ? err.message : \"os-store action failed\",\n      });\n      return true;\n    }\n\n    sendJsonResponse(res, 400, { error: \"Unknown action\" });\n    return true;\n  }\n\n  // ── GET /api/wallet/keys (first-run only, loopback only) ─────────────\n  // Security note: this compat route exists only for the embedded desktop\n  // first-run flow, where the renderer needs to display the keys already\n  // generated inside the local runtime. Electrobun injects a loopback\n  // `http://127.0.0.1:<port>` API base plus a generated API token before the\n  // renderer mounts, and ensureCompatSensitiveRouteAuthorized fails closed if\n  // that token is missing. The route is also permanently disabled once\n  // firstRunComplete flips true so the backup screen cannot be reopened as a\n  // general-purpose key export endpoint.\n  if (method === \"GET\" && url.pathname === \"/api/wallet/keys\") {\n    if (!isLoopbackRemoteAddress(req.socket.remoteAddress)) {\n      sendJsonErrorResponse(res, 403, \"loopback only\");\n      return true;\n    }\n\n    // In production without a configured token, reject even from loopback.\n    // Electrobun injects a generated token before the renderer mounts; a\n    // missing token signals the renderer has not been properly initialised.\n    if (!isDevEnvironment() && !getCompatApiToken()) {\n      sendJsonErrorResponse(\n        res,\n        403,\n        \"Sensitive endpoint requires API token authentication\",\n      );\n      return true;\n    }\n\n    if (!ensureCompatSensitiveRouteAuthorized(req, res)) {\n      return true;\n    }\n\n    const config = loadElizaConfig();\n    if (config.meta?.firstRunComplete === true) {\n      sendJsonResponse(res, 403, {\n        error: \"Wallet keys are only available during first run\",\n      });\n      return true;\n    }\n\n    // When Steward is configured, return masked keys with Steward status\n    if (isStewardConfigured()) {\n      try {\n        const addresses = getWalletAddresses();\n        const stewardStatus = await getStewardBridgeStatus({\n          evmAddress: addresses.evmAddress,\n        });\n        sendJsonResponse(res, 200, {\n          evmPrivateKey: \"[managed-by-steward]\",\n          evmAddress: addresses.evmAddress ?? stewardStatus.evmAddress ?? \"\",\n          solanaPrivateKey: \"[managed-by-steward]\",\n          solanaAddress: addresses.solanaAddress ?? \"\",\n          steward: {\n            configured: true,\n            connected: stewardStatus.connected,\n            agentId: stewardStatus.agentId,\n          },\n        });\n        return true;\n      } catch {\n        // fall through to legacy path\n      }\n    }\n\n    const evmKey = process.env.EVM_PRIVATE_KEY ?? \"\";\n    const solKey = process.env.SOLANA_PRIVATE_KEY ?? \"\";\n\n    try {\n      const addresses = getWalletAddresses();\n      sendJsonResponse(res, 200, {\n        evmPrivateKey: evmKey,\n        evmAddress: addresses.evmAddress ?? \"\",\n        solanaPrivateKey: solKey,\n        solanaAddress: addresses.solanaAddress ?? \"\",\n      });\n    } catch {\n      sendJsonResponse(res, 200, {\n        evmPrivateKey: evmKey,\n        evmAddress: \"\",\n        solanaPrivateKey: solKey,\n        solanaAddress: \"\",\n      });\n    }\n    return true;\n  }\n\n  // ── GET /api/wallet/nfts ─────────────────────────────────────────────\n  if (method === \"GET\" && url.pathname === \"/api/wallet/nfts\") {\n    if (!ensureCompatApiAuthorized(req, res)) {\n      return true;\n    }\n\n    const config: ElizaConfig = loadElizaConfig();\n    const addresses = getWalletAddresses();\n    const rpcReadiness = resolveWalletRpcReadiness(config);\n    const alchemyKey = process.env.ALCHEMY_API_KEY?.trim() || null;\n    const ankrKey = process.env.ANKR_API_KEY?.trim() || null;\n    const result: {\n      evm: Array<{ chain: string; nfts: unknown[] }>;\n      solana: { nfts: unknown[] } | null;\n    } = {\n      evm: [],\n      solana: null,\n    };\n\n    if (addresses.evmAddress && rpcReadiness.evmBalanceReady) {\n      try {\n        result.evm = await fetchEvmNfts(addresses.evmAddress, {\n          alchemyKey,\n          ankrKey,\n          cloudManagedAccess: rpcReadiness.cloudManagedAccess,\n          bscRpcUrls: rpcReadiness.bscRpcUrls,\n          ethereumRpcUrls: rpcReadiness.ethereumRpcUrls,\n          baseRpcUrls: rpcReadiness.baseRpcUrls,\n          avaxRpcUrls: rpcReadiness.avalancheRpcUrls,\n          nodeRealBscRpcUrl: process.env.NODEREAL_BSC_RPC_URL,\n          quickNodeBscRpcUrl: process.env.QUICKNODE_BSC_RPC_URL,\n          bscRpcUrl: process.env.BSC_RPC_URL,\n          ethereumRpcUrl: process.env.ETHEREUM_RPC_URL,\n          baseRpcUrl: process.env.BASE_RPC_URL,\n          avaxRpcUrl: process.env.AVALANCHE_RPC_URL,\n        });\n      } catch (err) {\n        logger.warn(`[wallet] EVM NFT fetch failed: ${err}`);\n      }\n    }\n\n    sendJsonResponse(res, 200, result);\n    return true;\n  }\n\n  return false;\n}\n"],"mappings":"AAUA,SAAS,uBAAuB;AAChC;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP;AAAA,EAEE;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE,iBAAiB;AAAA,EACjB,YAAY;AAAA,OACP;AACP,SAAS,0BAA0B;AACnC;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP,SAAS,cAAc;AAEvB,SAAS,0BAA0B;AACnC,SAAS,oBAAoB;AAC7B,SAAS,iCAAiC;AAC1C;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP,SAAS,wBAAwB,2BAA2B;AAE5D,eAAsB,yBACpB,KACA,KACA,QACkB;AAClB,QAAM,UAAU,IAAI,UAAU,OAAO,YAAY;AACjD,QAAM,MAAM,IAAI,IAAI,IAAI,OAAO,KAAK,kBAAkB;AAGtD,MAAI,CAAC,IAAI,SAAS,WAAW,cAAc,GAAG;AAC5C,WAAO;AAAA,EACT;AAGA,MAAI,WAAW,SAAS,IAAI,aAAa,wBAAwB;AAC/D,QAAI,CAAC,0BAA0B,KAAK,GAAG,GAAG;AACxC,aAAO;AAAA,IACT;AAEA,QAAI;AACF,YAAM,QAAQ,8BAA8B;AAC5C,YAAM,YAAY,MAAM,MAAM,YAAY;AAC1C,uBAAiB,KAAK,KAAK;AAAA,QACzB,SAAS,MAAM;AAAA,QACf;AAAA,QACA,aAAa,2BAA2B;AAAA,QACxC,SAAS,mBAAmB;AAAA,MAC9B,CAAC;AAAA,IACH,SAAS,KAAK;AACZ,aAAO;AAAA,QACL,yCAAyC,eAAe,QAAQ,IAAI,UAAU,OAAO,GAAG,CAAC;AAAA,MAC3F;AACA,uBAAiB,KAAK,KAAK,EAAE,OAAO,yBAAyB,CAAC;AAAA,IAChE;AACA,WAAO;AAAA,EACT;AAGA,MAAI,WAAW,UAAU,IAAI,aAAa,wBAAwB;AAChE,QAAI,CAAC,qCAAqC,KAAK,GAAG,GAAG;AACnD,aAAO;AAAA,IACT;AAEA,UAAM,OAAO,MAAM,mBAAmB,KAAK,GAAG;AAC9C,QAAI,CAAC,MAAM;AACT,aAAO;AAAA,IACT;AAEA,UAAM,SAAS,OAAO,KAAK,WAAW,WAAW,KAAK,OAAO,KAAK,IAAI;AAEtE,QAAI;AACF,UAAI,WAAW,WAAW;AACxB,cAAM,SAAS,MAAM,kCAAkC;AACvD,YAAI,OAAO,aAAa;AACtB,2BAAiB,KAAK,KAAK;AAAA,YACzB,IAAI;AAAA,YACJ,OAAO;AAAA,UACT,CAAC;AACD,iBAAO;AAAA,QACT;AACA,yBAAiB,KAAK,KAAK;AAAA,UACzB,IAAI;AAAA,UACJ,UAAU,OAAO;AAAA,UACjB,QAAQ,OAAO;AAAA,QACjB,CAAC;AACD,eAAO;AAAA,MACT;AACA,UAAI,WAAW,UAAU;AACvB,cAAM,+BAA+B;AACrC,yBAAiB,KAAK,KAAK,EAAE,IAAI,KAAK,CAAC;AACvC,eAAO;AAAA,MACT;AAAA,IACF,SAAS,KAAK;AACZ,aAAO;AAAA,QACL,mCAAmC,eAAe,QAAQ,IAAI,UAAU,OAAO,GAAG,CAAC;AAAA,MACrF;AACA,uBAAiB,KAAK,KAAK;AAAA,QACzB,OAAO,eAAe,QAAQ,IAAI,UAAU;AAAA,MAC9C,CAAC;AACD,aAAO;AAAA,IACT;AAEA,qBAAiB,KAAK,KAAK,EAAE,OAAO,iBAAiB,CAAC;AACtD,WAAO;AAAA,EACT;AAWA,MAAI,WAAW,SAAS,IAAI,aAAa,oBAAoB;AAC3D,QAAI,CAAC,wBAAwB,IAAI,OAAO,aAAa,GAAG;AACtD,4BAAsB,KAAK,KAAK,eAAe;AAC/C,aAAO;AAAA,IACT;AAKA,QAAI,CAAC,iBAAiB,KAAK,CAAC,kBAAkB,GAAG;AAC/C;AAAA,QACE;AAAA,QACA;AAAA,QACA;AAAA,MACF;AACA,aAAO;AAAA,IACT;AAEA,QAAI,CAAC,qCAAqC,KAAK,GAAG,GAAG;AACnD,aAAO;AAAA,IACT;AAEA,UAAM,SAAS,gBAAgB;AAC/B,QAAI,OAAO,MAAM,qBAAqB,MAAM;AAC1C,uBAAiB,KAAK,KAAK;AAAA,QACzB,OAAO;AAAA,MACT,CAAC;AACD,aAAO;AAAA,IACT;AAGA,QAAI,oBAAoB,GAAG;AACzB,UAAI;AACF,cAAM,YAAY,mBAAmB;AACrC,cAAM,gBAAgB,MAAM,uBAAuB;AAAA,UACjD,YAAY,UAAU;AAAA,QACxB,CAAC;AACD,yBAAiB,KAAK,KAAK;AAAA,UACzB,eAAe;AAAA,UACf,YAAY,UAAU,cAAc,cAAc,cAAc;AAAA,UAChE,kBAAkB;AAAA,UAClB,eAAe,UAAU,iBAAiB;AAAA,UAC1C,SAAS;AAAA,YACP,YAAY;AAAA,YACZ,WAAW,cAAc;AAAA,YACzB,SAAS,cAAc;AAAA,UACzB;AAAA,QACF,CAAC;AACD,eAAO;AAAA,MACT,QAAQ;AAAA,MAER;AAAA,IACF;AAEA,UAAM,SAAS,QAAQ,IAAI,mBAAmB;AAC9C,UAAM,SAAS,QAAQ,IAAI,sBAAsB;AAEjD,QAAI;AACF,YAAM,YAAY,mBAAmB;AACrC,uBAAiB,KAAK,KAAK;AAAA,QACzB,eAAe;AAAA,QACf,YAAY,UAAU,cAAc;AAAA,QACpC,kBAAkB;AAAA,QAClB,eAAe,UAAU,iBAAiB;AAAA,MAC5C,CAAC;AAAA,IACH,QAAQ;AACN,uBAAiB,KAAK,KAAK;AAAA,QACzB,eAAe;AAAA,QACf,YAAY;AAAA,QACZ,kBAAkB;AAAA,QAClB,eAAe;AAAA,MACjB,CAAC;AAAA,IACH;AACA,WAAO;AAAA,EACT;AAGA,MAAI,WAAW,SAAS,IAAI,aAAa,oBAAoB;AAC3D,QAAI,CAAC,0BAA0B,KAAK,GAAG,GAAG;AACxC,aAAO;AAAA,IACT;AAEA,UAAM,SAAsB,gBAAgB;AAC5C,UAAM,YAAY,mBAAmB;AACrC,UAAM,eAAe,0BAA0B,MAAM;AACrD,UAAM,aAAa,QAAQ,IAAI,iBAAiB,KAAK,KAAK;AAC1D,UAAM,UAAU,QAAQ,IAAI,cAAc,KAAK,KAAK;AACpD,UAAM,SAGF;AAAA,MACF,KAAK,CAAC;AAAA,MACN,QAAQ;AAAA,IACV;AAEA,QAAI,UAAU,cAAc,aAAa,iBAAiB;AACxD,UAAI;AACF,eAAO,MAAM,MAAM,aAAa,UAAU,YAAY;AAAA,UACpD;AAAA,UACA;AAAA,UACA,oBAAoB,aAAa;AAAA,UACjC,YAAY,aAAa;AAAA,UACzB,iBAAiB,aAAa;AAAA,UAC9B,aAAa,aAAa;AAAA,UAC1B,aAAa,aAAa;AAAA,UAC1B,mBAAmB,QAAQ,IAAI;AAAA,UAC/B,oBAAoB,QAAQ,IAAI;AAAA,UAChC,WAAW,QAAQ,IAAI;AAAA,UACvB,gBAAgB,QAAQ,IAAI;AAAA,UAC5B,YAAY,QAAQ,IAAI;AAAA,UACxB,YAAY,QAAQ,IAAI;AAAA,QAC1B,CAAC;AAAA,MACH,SAAS,KAAK;AACZ,eAAO,KAAK,kCAAkC,GAAG,EAAE;AAAA,MACrD;AAAA,IACF;AAEA,qBAAiB,KAAK,KAAK,MAAM;AACjC,WAAO;AAAA,EACT;AAEA,SAAO;AACT;","names":[]}

package/dist/routes/wallet-core-routes.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Core wallet routes — wraps handleWalletRoutes from the local api/ copy
+ * for registration as plugin routes.
+ *
+ * Handles:
+ *   GET  /api/wallet/addresses
+ *   GET  /api/wallet/balances
+ *   POST /api/wallet/import
+ *   POST /api/wallet/generate
+ *   GET  /api/wallet/config
+ *   PUT  /api/wallet/config
+ *   POST /api/wallet/export
+ */
+import type http from "node:http";
+export declare function handleWalletCoreRoutes(req: http.IncomingMessage, res: http.ServerResponse, state: unknown): Promise<boolean>;
+//# sourceMappingURL=wallet-core-routes.d.ts.map

package/dist/routes/wallet-core-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"wallet-core-routes.d.ts","sourceRoot":"","sources":["../../src/routes/wallet-core-routes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAkBlC,wBAAsB,sBAAsB,CAC1C,GAAG,EAAE,IAAI,CAAC,eAAe,EACzB,GAAG,EAAE,IAAI,CAAC,cAAc,EACxB,KAAK,EAAE,OAAO,GACb,OAAO,CAAC,OAAO,CAAC,CA6DlB"}

package/dist/routes/wallet-core-routes.js

@@ -0,0 +1,48 @@
+import { loadElizaConfig, saveElizaConfig } from "@elizaos/agent/config/config";
+import { readCompatJsonBody } from "@elizaos/app-core/api/compat-route-shared";
+import { sendJson, sendJsonError } from "@elizaos/app-core/api/response";
+import { resolveWalletExportRejection } from "@elizaos/plugin-wallet";
+import {
+  DEFAULT_WALLET_ROUTE_DEPENDENCIES,
+  handleWalletRoutes
+} from "../api/wallet-routes.js";
+function ensureWalletKeysInEnvAndConfig(_config) {
+  return false;
+}
+async function handleWalletCoreRoutes(req, res, state) {
+  const method = req.method?.toUpperCase() ?? "GET";
+  const url = new URL(
+    req.url ?? "/",
+    `http://${req.headers.host ?? "localhost"}`
+  );
+  const pathname = url.pathname;
+  if (!pathname.startsWith("/api/wallet/")) return false;
+  if (pathname.startsWith("/api/wallet/trade/") || pathname.startsWith("/api/wallet/transfer/") || pathname.startsWith("/api/wallet/steward") || pathname.startsWith("/api/wallet/browser-") || pathname === "/api/wallet/os-store" || pathname === "/api/wallet/keys" || pathname === "/api/wallet/nfts" || pathname === "/api/wallet/production-defaults" || pathname === "/api/wallet/trading/profile") {
+    return false;
+  }
+  const config = loadElizaConfig();
+  const routeState = state && typeof state === "object" ? state : null;
+  const restartRuntime = typeof routeState?.restartRuntime === "function" ? routeState.restartRuntime : void 0;
+  const scheduleRuntimeRestart = typeof routeState?.scheduleRuntimeRestart === "function" ? routeState.scheduleRuntimeRestart : void 0;
+  return handleWalletRoutes({
+    req,
+    res,
+    method,
+    pathname,
+    config,
+    saveConfig: saveElizaConfig,
+    ensureWalletKeysInEnvAndConfig,
+    resolveWalletExportRejection: (r, body) => resolveWalletExportRejection(r, body),
+    readJsonBody: readCompatJsonBody,
+    json: (r, data, status) => sendJson(r, status ?? 200, data),
+    error: (r, message, status) => sendJsonError(r, status ?? 500, message),
+    deps: DEFAULT_WALLET_ROUTE_DEPENDENCIES,
+    restartRuntime,
+    scheduleRuntimeRestart,
+    runtime: routeState?.runtime ?? null
+  });
+}
+export {
+  handleWalletCoreRoutes
+};
+//# sourceMappingURL=wallet-core-routes.js.map

package/dist/routes/wallet-core-routes.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/routes/wallet-core-routes.ts"],"sourcesContent":["/**\n * Core wallet routes — wraps handleWalletRoutes from the local api/ copy\n * for registration as plugin routes.\n *\n * Handles:\n *   GET  /api/wallet/addresses\n *   GET  /api/wallet/balances\n *   POST /api/wallet/import\n *   POST /api/wallet/generate\n *   GET  /api/wallet/config\n *   PUT  /api/wallet/config\n *   POST /api/wallet/export\n */\nimport type http from \"node:http\";\nimport { loadElizaConfig, saveElizaConfig } from \"@elizaos/agent/config/config\";\nimport { readCompatJsonBody } from \"@elizaos/app-core/api/compat-route-shared\";\nimport { sendJson, sendJsonError } from \"@elizaos/app-core/api/response\";\nimport type { AgentRuntime } from \"@elizaos/core\";\nimport { resolveWalletExportRejection } from \"@elizaos/plugin-wallet\";\nimport type { ElizaConfig } from \"@elizaos/shared\";\nimport {\n  DEFAULT_WALLET_ROUTE_DEPENDENCIES,\n  handleWalletRoutes,\n} from \"../api/wallet-routes.js\";\n\nfunction ensureWalletKeysInEnvAndConfig(_config: ElizaConfig): boolean {\n  // Auto-provisioning is disabled by default; the wallet generate route handles\n  // key creation explicitly.\n  return false;\n}\n\nexport async function handleWalletCoreRoutes(\n  req: http.IncomingMessage,\n  res: http.ServerResponse,\n  state: unknown,\n): Promise<boolean> {\n  const method = req.method?.toUpperCase() ?? \"GET\";\n  const url = new URL(\n    req.url ?? \"/\",\n    `http://${req.headers.host ?? \"localhost\"}`,\n  );\n  const pathname = url.pathname;\n\n  // Only handle /api/wallet/* paths (not trade/steward sub-paths handled elsewhere)\n  if (!pathname.startsWith(\"/api/wallet/\")) return false;\n  // Skip paths handled by other compat handlers\n  if (\n    pathname.startsWith(\"/api/wallet/trade/\") ||\n    pathname.startsWith(\"/api/wallet/transfer/\") ||\n    pathname.startsWith(\"/api/wallet/steward\") ||\n    pathname.startsWith(\"/api/wallet/browser-\") ||\n    pathname === \"/api/wallet/os-store\" ||\n    pathname === \"/api/wallet/keys\" ||\n    pathname === \"/api/wallet/nfts\" ||\n    pathname === \"/api/wallet/production-defaults\" ||\n    pathname === \"/api/wallet/trading/profile\"\n  ) {\n    return false;\n  }\n\n  const config = loadElizaConfig();\n  const routeState =\n    state && typeof state === \"object\"\n      ? (state as {\n          runtime?: unknown;\n          restartRuntime?: unknown;\n          scheduleRuntimeRestart?: unknown;\n        })\n      : null;\n  const restartRuntime =\n    typeof routeState?.restartRuntime === \"function\"\n      ? (routeState.restartRuntime as (reason: string) => Promise<boolean>)\n      : undefined;\n  const scheduleRuntimeRestart =\n    typeof routeState?.scheduleRuntimeRestart === \"function\"\n      ? (routeState.scheduleRuntimeRestart as (reason: string) => void)\n      : undefined;\n\n  return handleWalletRoutes({\n    req,\n    res,\n    method,\n    pathname,\n    config,\n    saveConfig: saveElizaConfig,\n    ensureWalletKeysInEnvAndConfig,\n    resolveWalletExportRejection: (r, body) =>\n      resolveWalletExportRejection(r, body as never) as never,\n    readJsonBody: readCompatJsonBody as never,\n    json: (r, data, status) => sendJson(r, status ?? 200, data),\n    error: (r, message, status) => sendJsonError(r, status ?? 500, message),\n    deps: DEFAULT_WALLET_ROUTE_DEPENDENCIES,\n    restartRuntime,\n    scheduleRuntimeRestart,\n    runtime: (routeState?.runtime as AgentRuntime | null | undefined) ?? null,\n  });\n}\n"],"mappings":"AAcA,SAAS,iBAAiB,uBAAuB;AACjD,SAAS,0BAA0B;AACnC,SAAS,UAAU,qBAAqB;AAExC,SAAS,oCAAoC;AAE7C;AAAA,EACE;AAAA,EACA;AAAA,OACK;AAEP,SAAS,+BAA+B,SAA+B;AAGrE,SAAO;AACT;AAEA,eAAsB,uBACpB,KACA,KACA,OACkB;AAClB,QAAM,SAAS,IAAI,QAAQ,YAAY,KAAK;AAC5C,QAAM,MAAM,IAAI;AAAA,IACd,IAAI,OAAO;AAAA,IACX,UAAU,IAAI,QAAQ,QAAQ,WAAW;AAAA,EAC3C;AACA,QAAM,WAAW,IAAI;AAGrB,MAAI,CAAC,SAAS,WAAW,cAAc,EAAG,QAAO;AAEjD,MACE,SAAS,WAAW,oBAAoB,KACxC,SAAS,WAAW,uBAAuB,KAC3C,SAAS,WAAW,qBAAqB,KACzC,SAAS,WAAW,sBAAsB,KAC1C,aAAa,0BACb,aAAa,sBACb,aAAa,sBACb,aAAa,qCACb,aAAa,+BACb;AACA,WAAO;AAAA,EACT;AAEA,QAAM,SAAS,gBAAgB;AAC/B,QAAM,aACJ,SAAS,OAAO,UAAU,WACrB,QAKD;AACN,QAAM,iBACJ,OAAO,YAAY,mBAAmB,aACjC,WAAW,iBACZ;AACN,QAAM,yBACJ,OAAO,YAAY,2BAA2B,aACzC,WAAW,yBACZ;AAEN,SAAO,mBAAmB;AAAA,IACxB;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,YAAY;AAAA,IACZ;AAAA,IACA,8BAA8B,CAAC,GAAG,SAChC,6BAA6B,GAAG,IAAa;AAAA,IAC/C,cAAc;AAAA,IACd,MAAM,CAAC,GAAG,MAAM,WAAW,SAAS,GAAG,UAAU,KAAK,IAAI;AAAA,IAC1D,OAAO,CAAC,GAAG,SAAS,WAAW,cAAc,GAAG,UAAU,KAAK,OAAO;AAAA,IACtE,MAAM;AAAA,IACN;AAAA,IACA;AAAA,IACA,SAAU,YAAY,WAA+C;AAAA,EACvE,CAAC;AACH;","names":[]}

package/dist/routes/wallet-trade-compat-routes.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Wallet trade / transfer compat routes.
+ *
+ * Handles:
+ *   POST /api/wallet/trade/execute    — BSC DEX trade execution
+ *   POST /api/wallet/transfer/execute — token / BNB transfer execution
+ */
+import type http from "node:http";
+import { type CompatRuntimeState } from "@elizaos/app-core/api/compat-route-shared";
+export declare function handleWalletTradeCompatRoutes(req: http.IncomingMessage, res: http.ServerResponse, _state: CompatRuntimeState): Promise<boolean>;
+//# sourceMappingURL=wallet-trade-compat-routes.d.ts.map

package/dist/routes/wallet-trade-compat-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"wallet-trade-compat-routes.d.ts","sourceRoot":"","sources":["../../src/routes/wallet-trade-compat-routes.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAGlC,OAAO,EACL,KAAK,kBAAkB,EAExB,MAAM,2CAA2C,CAAC;AAuInD,wBAAsB,6BAA6B,CACjD,GAAG,EAAE,IAAI,CAAC,eAAe,EACzB,GAAG,EAAE,IAAI,CAAC,cAAc,EACxB,MAAM,EAAE,kBAAkB,GACzB,OAAO,CAAC,OAAO,CAAC,CAsjBlB"}