@emblemvault/auth-sdk 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (67) hide show
  1. package/LICENSE +21 -0
  2. package/README.md +180 -0
  3. package/dist/EmblemAuthSDK.d.ts +150 -0
  4. package/dist/EmblemAuthSDK.d.ts.map +1 -0
  5. package/dist/SessionManager.d.ts +57 -0
  6. package/dist/SessionManager.d.ts.map +1 -0
  7. package/dist/emblem-auth.min.js +15 -0
  8. package/dist/emblem-auth.min.js.map +1 -0
  9. package/dist/emblem-auth.umd.js +15 -0
  10. package/dist/emblem-auth.umd.js.map +1 -0
  11. package/dist/index.d.ts +8 -0
  12. package/dist/index.d.ts.map +1 -0
  13. package/dist/index.js +2 -0
  14. package/dist/index.js.map +1 -0
  15. package/dist/index.mjs +2 -0
  16. package/dist/index.mjs.map +1 -0
  17. package/dist/signers/ethers.d.ts +20 -0
  18. package/dist/signers/ethers.d.ts.map +1 -0
  19. package/dist/signers/ethers.js +2 -0
  20. package/dist/signers/ethers.js.map +1 -0
  21. package/dist/signers/ethers.mjs +2 -0
  22. package/dist/signers/ethers.mjs.map +1 -0
  23. package/dist/signers/http.d.ts +4 -0
  24. package/dist/signers/http.d.ts.map +1 -0
  25. package/dist/signers/index.d.ts +9 -0
  26. package/dist/signers/index.d.ts.map +1 -0
  27. package/dist/signers/index.js +2 -0
  28. package/dist/signers/index.js.map +1 -0
  29. package/dist/signers/index.mjs +2 -0
  30. package/dist/signers/index.mjs.map +1 -0
  31. package/dist/signers/solana.d.ts +32 -0
  32. package/dist/signers/solana.d.ts.map +1 -0
  33. package/dist/signers/solana.js +2 -0
  34. package/dist/signers/solana.js.map +1 -0
  35. package/dist/signers/solana.mjs +2 -0
  36. package/dist/signers/solana.mjs.map +1 -0
  37. package/dist/signers/utils.d.ts +10 -0
  38. package/dist/signers/utils.d.ts.map +1 -0
  39. package/dist/signers/validation.d.ts +43 -0
  40. package/dist/signers/validation.d.ts.map +1 -0
  41. package/dist/signers/vault.d.ts +3 -0
  42. package/dist/signers/vault.d.ts.map +1 -0
  43. package/dist/signers/viem.d.ts +15 -0
  44. package/dist/signers/viem.d.ts.map +1 -0
  45. package/dist/signers/viem.js +2 -0
  46. package/dist/signers/viem.js.map +1 -0
  47. package/dist/signers/viem.mjs +2 -0
  48. package/dist/signers/viem.mjs.map +1 -0
  49. package/dist/signers/web3.d.ts +13 -0
  50. package/dist/signers/web3.d.ts.map +1 -0
  51. package/dist/signers/web3.js +2 -0
  52. package/dist/signers/web3.js.map +1 -0
  53. package/dist/signers/web3.mjs +2 -0
  54. package/dist/signers/web3.mjs.map +1 -0
  55. package/dist/types/auth.d.ts +96 -0
  56. package/dist/types/auth.d.ts.map +1 -0
  57. package/dist/types/config.d.ts +43 -0
  58. package/dist/types/config.d.ts.map +1 -0
  59. package/dist/types/events.d.ts +27 -0
  60. package/dist/types/events.d.ts.map +1 -0
  61. package/dist/types/index.d.ts +6 -0
  62. package/dist/types/index.d.ts.map +1 -0
  63. package/dist/types/session.d.ts +63 -0
  64. package/dist/types/session.d.ts.map +1 -0
  65. package/dist/types/signers.d.ts +37 -0
  66. package/dist/types/signers.d.ts.map +1 -0
  67. package/package.json +145 -0
package/dist/signers/validation.d.ts ADDED
@@ -0,0 +1,43 @@
1
+ import type { SignerConfig } from '../types/signers';
2
+ /**
3
+ * Environment detection utilities for warning about unsafe usage patterns
4
+ */
5
+ /**
6
+ * Detect if code is running in a browser environment
7
+ */
8
+ export declare function isBrowserEnvironment(): boolean;
9
+ /**
10
+ * Check if we're in a Node.js server environment
11
+ */
12
+ export declare function isNodeEnvironment(): boolean;
13
+ /**
14
+ * Validate baseUrl format
15
+ */
16
+ export declare function validateBaseUrl(baseUrl?: string): void;
17
+ /**
18
+ * Validate Ethereum address format
19
+ */
20
+ export declare function validateEthereumAddress(address: string): void;
21
+ /**
22
+ * Validate vault ID
23
+ */
24
+ export declare function validateVaultId(vaultId: string): void;
25
+ /**
26
+ * Safe number conversion with bounds checking
27
+ */
28
+ export declare function toSafeNumber(value: unknown, fieldName: string): number;
29
+ /**
30
+ * Extended config with security options
31
+ */
32
+ export interface SignerSecurityConfig extends SignerConfig {
33
+ /**
34
+ * Enable debug logging for security-related checks
35
+ * @default false
36
+ */
37
+ debugSecurity?: boolean;
38
+ }
39
+ /**
40
+ * Validate signer configuration
41
+ */
42
+ export declare function validateSignerConfig(config: SignerSecurityConfig): void;
43
+ //# sourceMappingURL=validation.d.ts.map
package/dist/signers/validation.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"validation.d.ts","sourceRoot":"","sources":["../../src/signers/validation.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAC;AAErD;;GAEG;AAEH;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,OAAO,CAE9C;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,OAAO,CAI3C;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAiBtD;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAY7D;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAQrD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,CAUtE;AAED;;GAEG;AACH,MAAM,WAAW,oBAAqB,SAAQ,YAAY;IACxD;;;OAGG;IACH,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,oBAAoB,GAAG,IAAI,CAuBvE"}
package/dist/signers/vault.d.ts ADDED
@@ -0,0 +1,3 @@
1
+ import type { SignerConfig, SignerVaultInfo } from '../types/signers';
2
+ export declare function fetchVaultInfo(config: SignerConfig): Promise<SignerVaultInfo>;
3
+ //# sourceMappingURL=vault.d.ts.map
package/dist/signers/vault.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"vault.d.ts","sourceRoot":"","sources":["../../src/signers/vault.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,eAAe,EAAO,MAAM,kBAAkB,CAAC;AAG3E,wBAAsB,cAAc,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,eAAe,CAAC,CAyBnF"}
package/dist/signers/viem.d.ts ADDED
@@ -0,0 +1,15 @@
1
+ import type { Hex, SignerConfig, SignerVaultInfo } from '../types/signers';
2
+ interface ViemAccount {
3
+ address: Hex;
4
+ signMessage: (args: {
5
+ message: unknown;
6
+ }) => Promise<Hex>;
7
+ signTypedData: (typedData: unknown) => Promise<Hex>;
8
+ signTransaction: (tx: unknown, opts?: unknown) => Promise<Hex>;
9
+ type: 'local';
10
+ source: 'custom';
11
+ publicKey?: Hex;
12
+ }
13
+ export declare function toViemAccount(config: SignerConfig, infoOverride?: SignerVaultInfo): Promise<ViemAccount>;
14
+ export {};
15
+ //# sourceMappingURL=viem.d.ts.map
package/dist/signers/viem.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"viem.d.ts","sourceRoot":"","sources":["../../src/signers/viem.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,GAAG,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAM3E,UAAU,WAAW;IACnB,OAAO,EAAE,GAAG,CAAC;IACb,WAAW,EAAE,CAAC,IAAI,EAAE;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;IAC1D,aAAa,EAAE,CAAC,SAAS,EAAE,OAAO,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;IACpD,eAAe,EAAE,CAAC,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;IAC/D,IAAI,EAAE,OAAO,CAAC;IACd,MAAM,EAAE,QAAQ,CAAC;IACjB,SAAS,CAAC,EAAE,GAAG,CAAC;CACjB;AAED,wBAAsB,aAAa,CACjC,MAAM,EAAE,YAAY,EACpB,YAAY,CAAC,EAAE,eAAe,GAC7B,OAAO,CAAC,WAAW,CAAC,CAkEtB"}
package/dist/signers/viem.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";function e(e){if(e&&e.__esModule)return e;var t=Object.create(null);return e&&Object.keys(e).forEach(function(r){if("default"!==r){var a=Object.getOwnPropertyDescriptor(e,r);Object.defineProperty(t,r,a.get?a:{enumerable:!0,get:function(){return e[r]}})}}),t.default=e,Object.freeze(t)}async function t(e,t,r){const a=r.baseUrl??"https://api.emblemvault.ai",n=await async function(e){if("function"==typeof e.getAuthHeaders){const t=await e.getAuthHeaders();if(t&&"object"==typeof t)return t}const t=e.jwt??("function"==typeof e.getJwt?await e.getJwt():void 0)??e.sdk?.getSession()?.authToken??void 0;if(t)return{Authorization:`Bearer ${t}`};if(e.apiKey)return{"x-api-key":e.apiKey};throw new Error("No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey")}(r),i=await fetch(`${a}${e}`,{method:"POST",headers:{"content-type":"application/json",...n},body:JSON.stringify(t,(e,t)=>"bigint"==typeof t?t.toString():t)});if(!i.ok){const e=await i.text().catch(()=>"");throw new Error(function(e,t){let r=`Emblem signer error ${e}`;return e>=500?r+=": Internal server error":401===e||403===e?r+=": Authentication failed":404===e?r+=": Resource not found":405===e?r+=": Method not allowed":t&&(r+=`: ${t.substring(0,200)}`),r}(i.status,e))}return i.json()}function r(e,t){const r=Number(e);if(!Number.isSafeInteger(r))throw new Error(`${t} value ${e} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`);return r}function a(e){return"bigint"==typeof e?"0x"+e.toString(16):e}function n(e){let t="0x";for(let r=0;r<e.length;r++)t+=e[r].toString(16).padStart(2,"0");return t}Object.defineProperty(exports,"__esModule",{value:!0}),exports.toViemAccount=async function(i,s){const o=s??await async function(e){const r=await t("/vault/info",{},e);if(!r||!r.vaultId||!r.evmAddress)throw new Error("Invalid vault info response: missing required fields");if(!String(r.evmAddress).startsWith("0x"))throw new Error("Invalid evmAddress format in response");return{vaultId:r.vaultId,tokenId:r.vaultId,address:r.address||"",evmAddress:r.evmAddress,created_by:r.created_by}}(i),{evmAddress:d,vaultId:c}=o,{toAccount:u}=await Promise.resolve().then(function(){return e(require("viem/accounts"))});return u({address:d,async signMessage({message:e}){let r,a=!1;if("string"==typeof e)r=e,a=!1;else if(e&&void 0!==e.raw){const t=e.raw;r="string"==typeof t?t:n(t),a=!0}else if(e instanceof Uint8Array)r=n(e),a=!1;else{if("string"!=typeof(s=e)||!/^0x[0-9a-fA-F]*$/.test(s))throw new Error(`Unsupported message type: ${typeof e}. Expected string, Uint8Array, or hex string.`);r=e,a=!1}var s;return(await t("/sign-eth-message",{vaultId:c,message:r,raw:a},i)).signature},async signTypedData(e){const{domain:r,types:a,message:n}=e;return(await t("/sign-typed-message",{vaultId:c,domain:r,types:a,message:n},i)).signature},async signTransaction(e,n){const s=function(e){const t={...e};return void 0!==t.value&&(t.value=a(t.value)),void 0!==t.gas&&(t.gasLimit=a(t.gas),delete t.gas),void 0!==t.gasLimit&&(t.gasLimit=a(t.gasLimit)),void 0!==t.gasPrice&&(t.gasPrice=a(t.gasPrice)),void 0!==t.maxFeePerGas&&(t.maxFeePerGas=a(t.maxFeePerGas)),void 0!==t.maxPriorityFeePerGas&&(t.maxPriorityFeePerGas=a(t.maxPriorityFeePerGas)),void 0!==t.nonce&&(t.nonce=r(t.nonce,"nonce")),void 0!==t.chainId&&(t.chainId=r(t.chainId,"chainId")),void 0===t.maxFeePerGas&&void 0===t.maxPriorityFeePerGas||(void 0===t.gasPrice&&void 0!==t.maxFeePerGas&&(t.gasPrice=t.maxFeePerGas),delete t.maxFeePerGas,delete t.maxPriorityFeePerGas),delete t.type,delete t.accessList,delete t.account,delete t.chain,delete t.from,t}(e);return(await t("/sign-eth-tx",{vaultId:c,transaction:s},i)).signedTransaction}})};
2
+ //# sourceMappingURL=viem.js.map
package/dist/signers/viem.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"viem.js","sources":["../../src/signers/http.ts","../../src/signers/validation.ts","../../src/signers/utils.ts","../../src/signers/viem.ts","../../src/signers/vault.ts"],"sourcesContent":["import type { SignerConfig } from '../types/signers';\n\nfunction sanitizeErrorMessage(status: number, text: string): string {\n // Sanitize error messages to avoid leaking sensitive server information\n let errorMessage = `Emblem signer error ${status}`;\n\n if (status >= 500) {\n errorMessage += ': Internal server error';\n } else if (status === 401 || status === 403) {\n errorMessage += ': Authentication failed';\n } else if (status === 404) {\n errorMessage += ': Resource not found';\n } else if (status === 405) {\n errorMessage += ': Method not allowed';\n } else if (text) {\n // For 4xx client errors, include limited error details\n errorMessage += `: ${text.substring(0, 200)}`; // Limit to 200 chars\n }\n\n return errorMessage;\n}\n\nasync function resolveAuthHeaders(config: SignerConfig): Promise<Record<string, string>> {\n // Priority: custom headers -> jwt/getJwt/sdk -> apiKey (deprecated)\n if (typeof config.getAuthHeaders === 'function') {\n const h = await config.getAuthHeaders();\n if (h && typeof h === 'object') return h;\n }\n\n const tok =\n config.jwt ??\n (typeof config.getJwt === 'function' ? await config.getJwt() : undefined) ??\n config.sdk?.getSession()?.authToken ??\n undefined;\n\n if (tok) {\n return { Authorization: `Bearer ${tok}` };\n }\n\n // apiKey is deprecated but still supported as fallback\n if (config.apiKey) {\n return { 'x-api-key': config.apiKey };\n }\n\n throw new Error(\n 'No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey'\n );\n}\n\nexport async function emblemPost<T = unknown>(\n path: string,\n body: unknown,\n config: SignerConfig\n): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'POST',\n headers: {\n 'content-type': 'application/json',\n ...authHeaders,\n },\n body: JSON.stringify(body, (_key: string, value: unknown) =>\n typeof value === 'bigint' ? value.toString() : value\n ),\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n\nexport async function emblemGet<T = unknown>(path: string, config: SignerConfig): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'GET',\n headers: authHeaders,\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n","import type { SignerConfig } from '../types/signers';\n\n/**\n * Environment detection utilities for warning about unsafe usage patterns\n */\n\n/**\n * Detect if code is running in a browser environment\n */\nexport function isBrowserEnvironment(): boolean {\n return typeof window !== 'undefined' && typeof document !== 'undefined';\n}\n\n/**\n * Check if we're in a Node.js server environment\n */\nexport function isNodeEnvironment(): boolean {\n return (\n typeof process !== 'undefined' && process.versions != null && process.versions.node != null\n );\n}\n\n/**\n * Validate baseUrl format\n */\nexport function validateBaseUrl(baseUrl?: string): void {\n if (!baseUrl) return; // undefined is ok, will use default\n\n if (!baseUrl.startsWith('http://') && !baseUrl.startsWith('https://')) {\n throw new Error('baseUrl must be a valid HTTP(S) URL');\n }\n\n // Warn about http (not https)\n if (\n baseUrl.startsWith('http://') &&\n !baseUrl.includes('localhost') &&\n !baseUrl.includes('127.0.0.1')\n ) {\n console.warn(\n '[Emblem Security Warning] baseUrl uses HTTP instead of HTTPS. This is insecure for production use.'\n );\n }\n}\n\n/**\n * Validate Ethereum address format\n */\nexport function validateEthereumAddress(address: string): void {\n if (!address || typeof address !== 'string') {\n throw new Error('Address is required');\n }\n\n if (!address.startsWith('0x')) {\n throw new Error('Address must start with 0x');\n }\n\n if (!/^0x[0-9a-fA-F]{40}$/.test(address)) {\n throw new Error('Invalid Ethereum address format');\n }\n}\n\n/**\n * Validate vault ID\n */\nexport function validateVaultId(vaultId: string): void {\n if (!vaultId || typeof vaultId !== 'string') {\n throw new Error('vaultId is required');\n }\n\n if (vaultId.trim() === '') {\n throw new Error('vaultId cannot be empty');\n }\n}\n\n/**\n * Safe number conversion with bounds checking\n */\nexport function toSafeNumber(value: unknown, fieldName: string): number {\n const num = Number(value);\n\n if (!Number.isSafeInteger(num)) {\n throw new Error(\n `${fieldName} value ${value} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`\n );\n }\n\n return num;\n}\n\n/**\n * Extended config with security options\n */\nexport interface SignerSecurityConfig extends SignerConfig {\n /**\n * Enable debug logging for security-related checks\n * @default false\n */\n debugSecurity?: boolean;\n}\n\n/**\n * Validate signer configuration\n */\nexport function validateSignerConfig(config: SignerSecurityConfig): void {\n // Validate auth: require at least one method (jwt, getJwt, getAuthHeaders)\n const hasJwt = !!config.jwt;\n const hasGetJwt = typeof config.getJwt === 'function';\n const hasHeaders = typeof config.getAuthHeaders === 'function';\n\n if (!hasJwt && !hasGetJwt && !hasHeaders) {\n throw new Error('Authentication required: provide jwt, getJwt(), or getAuthHeaders()');\n }\n\n // Validate baseUrl if provided\n if (config.baseUrl) {\n validateBaseUrl(config.baseUrl);\n }\n\n // Security audit logging\n if (config.debugSecurity) {\n console.log('[Emblem Security Debug]', {\n environment: isBrowserEnvironment() ? 'browser' : 'node',\n hasBaseUrl: !!config.baseUrl,\n timestamp: new Date().toISOString(),\n });\n }\n}\n","import type { Hex } from '../types/signers';\nimport { toSafeNumber } from './validation';\n\nexport function toHexIfBigInt(v: unknown): unknown {\n return typeof v === 'bigint' ? '0x' + v.toString(16) : v;\n}\n\n/**\n * viem txs sometimes have bigint / hex / optional fields. Ethers serializers\n * accept hex strings for numeric fields. Normalize where helpful.\n */\nexport function normalizeTxForEmblem(tx: Record<string, unknown>): Record<string, unknown> {\n const out: Record<string, unknown> = { ...tx };\n\n if (out.value !== undefined) out.value = toHexIfBigInt(out.value);\n if (out.gas !== undefined) {\n out.gasLimit = toHexIfBigInt(out.gas);\n delete out.gas;\n }\n if (out.gasLimit !== undefined) out.gasLimit = toHexIfBigInt(out.gasLimit);\n if (out.gasPrice !== undefined) out.gasPrice = toHexIfBigInt(out.gasPrice);\n if (out.maxFeePerGas !== undefined) out.maxFeePerGas = toHexIfBigInt(out.maxFeePerGas);\n if (out.maxPriorityFeePerGas !== undefined)\n out.maxPriorityFeePerGas = toHexIfBigInt(out.maxPriorityFeePerGas);\n if (out.nonce !== undefined) out.nonce = toSafeNumber(out.nonce, 'nonce');\n if (out.chainId !== undefined) out.chainId = toSafeNumber(out.chainId, 'chainId');\n\n // Some backends only accept legacy fields; fold EIP-1559 into gasPrice and drop unsupported keys\n if (out.maxFeePerGas !== undefined || out.maxPriorityFeePerGas !== undefined) {\n if (out.gasPrice === undefined && out.maxFeePerGas !== undefined) {\n out.gasPrice = out.maxFeePerGas;\n }\n delete out.maxFeePerGas;\n delete out.maxPriorityFeePerGas;\n }\n\n // Remove fields commonly unsupported by legacy serializers\n delete out.type;\n delete out.accessList;\n delete out.account;\n delete out.chain;\n delete out.from;\n\n return out;\n}\n\nexport function isHexString(value: unknown): value is Hex {\n return typeof value === 'string' && /^0x[0-9a-fA-F]*$/.test(value);\n}\n\nexport function bytesToHex(bytes: ArrayLike<number>): Hex {\n let out = '0x';\n for (let i = 0; i < bytes.length; i++) {\n out += (bytes[i] as number).toString(16).padStart(2, '0');\n }\n return out as Hex;\n}\n","import type { Hex, SignerConfig, SignerVaultInfo } from '../types/signers';\nimport { emblemPost } from './http';\nimport { bytesToHex, isHexString, normalizeTxForEmblem } from './utils';\nimport { fetchVaultInfo } from './vault';\n\n// Minimal viem types to avoid hard dependency\ninterface ViemAccount {\n address: Hex;\n signMessage: (args: { message: unknown }) => Promise<Hex>;\n signTypedData: (typedData: unknown) => Promise<Hex>;\n signTransaction: (tx: unknown, opts?: unknown) => Promise<Hex>;\n type: 'local';\n source: 'custom';\n publicKey?: Hex;\n}\n\nexport async function toViemAccount(\n config: SignerConfig,\n infoOverride?: SignerVaultInfo\n): Promise<ViemAccount> {\n const info = infoOverride ?? (await fetchVaultInfo(config));\n const { evmAddress, vaultId } = info;\n\n // Dynamically import viem's toAccount\n const { toAccount } = await import('viem/accounts');\n\n return toAccount({\n address: evmAddress,\n\n async signMessage({ message }: { message: unknown }): Promise<Hex> {\n let payload: string;\n let isRaw = false;\n\n if (typeof message === 'string') {\n payload = message;\n isRaw = false;\n } else if (message && typeof (message as { raw?: unknown }).raw !== 'undefined') {\n const raw = (message as { raw: unknown }).raw;\n payload = typeof raw === 'string' ? raw : bytesToHex(raw as ArrayLike<number>);\n isRaw = true;\n } else if (message instanceof Uint8Array) {\n payload = bytesToHex(message);\n isRaw = false;\n } else if (isHexString(message)) {\n payload = message as string;\n isRaw = false;\n } else {\n // Don't silently convert objects to \"[object Object]\"\n throw new Error(\n `Unsupported message type: ${typeof message}. Expected string, Uint8Array, or hex string.`\n );\n }\n\n const data = await emblemPost<{\n signerAddress: string;\n signature: Hex;\n }>('/sign-eth-message', { vaultId, message: payload, raw: isRaw }, config);\n\n return data.signature;\n },\n\n async signTypedData(typedData: unknown): Promise<Hex> {\n const { domain, types, message } = typedData as {\n domain: unknown;\n types: unknown;\n message: unknown;\n };\n const data = await emblemPost<{\n signerAddress: string;\n signature: Hex;\n }>('/sign-typed-message', { vaultId, domain, types, message }, config);\n\n return data.signature;\n },\n\n async signTransaction(tx: unknown, _opts?: unknown): Promise<Hex> {\n const normalizedTx = normalizeTxForEmblem(tx as Record<string, unknown>);\n\n const data = await emblemPost<{\n signedTransaction: Hex;\n }>('/sign-eth-tx', { vaultId, transaction: normalizedTx }, config);\n\n return data.signedTransaction;\n },\n }) as ViemAccount;\n}\n","import type { SignerConfig, SignerVaultInfo, Hex } from '../types/signers';\nimport { emblemPost } from './http';\n\nexport async function fetchVaultInfo(config: SignerConfig): Promise<SignerVaultInfo> {\n // Note: The server only supports POST for /vault/info\n const data: Partial<{\n vaultId: string;\n address: string;\n evmAddress: Hex;\n created_by?: string;\n }> = await emblemPost('/vault/info', {}, config);\n\n // Validate required response data (vaultId + evmAddress are required for EVM)\n if (!data || !data.vaultId || !data.evmAddress) {\n throw new Error('Invalid vault info response: missing required fields');\n }\n\n if (!String(data.evmAddress).startsWith('0x')) {\n throw new Error('Invalid evmAddress format in response');\n }\n\n return {\n vaultId: data.vaultId,\n tokenId: data.vaultId,\n address: data.address || '', // Solana address may be absent; keep optional\n evmAddress: data.evmAddress as Hex,\n created_by: data.created_by,\n };\n}\n"],"names":["async","emblemPost","path","body","config","baseUrl","authHeaders","getAuthHeaders","h","tok","jwt","getJwt","undefined","sdk","getSession","authToken","Authorization","apiKey","Error","resolveAuthHeaders","res","fetch","method","headers","JSON","stringify","_key","value","toString","ok","text","catch","status","errorMessage","substring","sanitizeErrorMessage","json","toSafeNumber","fieldName","num","Number","isSafeInteger","MAX_SAFE_INTEGER","toHexIfBigInt","v","bytesToHex","bytes","out","i","length","padStart","infoOverride","info","data","vaultId","evmAddress","String","startsWith","tokenId","address","created_by","fetchVaultInfo","toAccount","Promise","resolve","then","_interopNamespace","require","signMessage","message","payload","isRaw","raw","Uint8Array","test","signature","signTypedData","typedData","domain","types","signTransaction","tx","_opts","normalizedTx","gas","gasLimit","gasPrice","maxFeePerGas","maxPriorityFeePerGas","nonce","chainId","type","accessList","account","chain","from","normalizeTxForEmblem","transaction","signedTransaction"],"mappings":"0SAiDOA,eAAeC,EACpBC,EACAC,EACAC,GAEA,MAAMC,EAAUD,EAAOC,SAAW,6BAC5BC,QAjCRN,eAAkCI,GAEhC,GAAqC,mBAA1BA,EAAOG,eAA+B,CAC/C,MAAMC,QAAUJ,EAAOG,iBACvB,GAAIC,GAAkB,iBAANA,EAAgB,OAAOA,CACxC,CAED,MAAMC,EACJL,EAAOM,MACmB,mBAAlBN,EAAOO,aAA8BP,EAAOO,cAAWC,IAC/DR,EAAOS,KAAKC,cAAcC,gBAC1BH,EAEF,GAAIH,EACF,MAAO,CAAEO,cAAe,UAAUP,KAIpC,GAAIL,EAAOa,OACT,MAAO,CAAE,YAAab,EAAOa,QAG/B,MAAM,IAAIC,MACR,uFAEJ,CAQ4BC,CAAmBf,GACvCgB,QAAYC,MAAM,GAAGhB,IAAUH,IAAQ,CAC3CoB,OAAQ,OACRC,QAAS,CACP,eAAgB,sBACbjB,GAELH,KAAMqB,KAAKC,UAAUtB,EAAM,CAACuB,EAAcC,IACvB,iBAAVA,EAAqBA,EAAMC,WAAaD,KAInD,IAAKP,EAAIS,GAAI,CACX,MAAMC,QAAaV,EAAIU,OAAOC,MAAM,IAAM,IAC1C,MAAM,IAAIb,MAnEd,SAA8Bc,EAAgBF,GAE5C,IAAIG,EAAe,uBAAuBD,IAe1C,OAbIA,GAAU,IACZC,GAAgB,0BACI,MAAXD,GAA6B,MAAXA,EAC3BC,GAAgB,0BACI,MAAXD,EACTC,GAAgB,uBACI,MAAXD,EACTC,GAAgB,uBACPH,IAETG,GAAgB,KAAKH,EAAKI,UAAU,EAAG,QAGlCD,CACT,CAiDoBE,CAAqBf,EAAIY,OAAQF,GAClD,CAED,OAAOV,EAAIgB,MACb,CCIgB,SAAAC,EAAaV,EAAgBW,GAC3C,MAAMC,EAAMC,OAAOb,GAEnB,IAAKa,OAAOC,cAAcF,GACxB,MAAM,IAAIrB,MACR,GAAGoB,WAAmBX,sCAA0Ca,OAAOE,qBAI3E,OAAOH,CACT,CCpFM,SAAUI,EAAcC,GAC5B,MAAoB,iBAANA,EAAiB,KAAOA,EAAEhB,SAAS,IAAMgB,CACzD,CA6CM,SAAUC,EAAWC,GACzB,IAAIC,EAAM,KACV,IAAK,IAAIC,EAAI,EAAGA,EAAIF,EAAMG,OAAQD,IAChCD,GAAQD,EAAME,GAAcpB,SAAS,IAAIsB,SAAS,EAAG,KAEvD,OAAOH,CACT,8ECxCO/C,eACLI,EACA+C,GAEA,MAAMC,EAAOD,SCjBRnD,eAA8BI,GAEnC,MAAMiD,QAKKpD,EAAW,cAAe,CAAE,EAAEG,GAGzC,IAAKiD,IAASA,EAAKC,UAAYD,EAAKE,WAClC,MAAM,IAAIrC,MAAM,wDAGlB,IAAKsC,OAAOH,EAAKE,YAAYE,WAAW,MACtC,MAAM,IAAIvC,MAAM,yCAGlB,MAAO,CACLoC,QAASD,EAAKC,QACdI,QAASL,EAAKC,QACdK,QAASN,EAAKM,SAAW,GACzBJ,WAAYF,EAAKE,WACjBK,WAAYP,EAAKO,WAErB,CDRsCC,CAAezD,IAC7CmD,WAAEA,EAAUD,QAAEA,GAAYF,GAG1BU,UAAEA,SAAoBC,QAAAC,UAAAC,KAAA,WAAA,OAAAC,EAAAC,QAAO,iBAAe,GAElD,OAAOL,EAAU,CACfH,QAASJ,EAET,iBAAMa,EAAYC,QAAEA,IAClB,IAAIC,EACAC,GAAQ,EAEZ,GAAuB,iBAAZF,EACTC,EAAUD,EACVE,GAAQ,OACH,GAAIF,QAAyD,IAAtCA,EAA8BG,IAAqB,CAC/E,MAAMA,EAAOH,EAA6BG,IAC1CF,EAAyB,iBAARE,EAAmBA,EAAM3B,EAAW2B,GACrDD,GAAQ,CACT,MAAM,GAAIF,aAAmBI,WAC5BH,EAAUzB,EAAWwB,GACrBE,GAAQ,MACH,IDIa,iBADE5C,ECHC0C,KDIS,mBAAmBK,KAAK/C,GCCtD,MAAM,IAAIT,MACR,oCAAoCmD,kDALtCC,EAAUD,EACVE,GAAQ,CAMT,CDLD,IAAsB5C,ECYtB,aALmB1B,EAGhB,oBAAqB,CAAEqD,UAASe,QAASC,EAASE,IAAKD,GAASnE,IAEvDuE,SACb,EAED,mBAAMC,CAAcC,GAClB,MAAMC,OAAEA,EAAMC,MAAEA,EAAKV,QAAEA,GAAYQ,EAUnC,aALmB5E,EAGhB,sBAAuB,CAAEqD,UAASwB,SAAQC,QAAOV,WAAWjE,IAEnDuE,SACb,EAED,qBAAMK,CAAgBC,EAAaC,GACjC,MAAMC,EDjEN,SAA+BF,GACnC,MAAMlC,EAA+B,IAAKkC,GA+B1C,YA7BkBrE,IAAdmC,EAAIpB,QAAqBoB,EAAIpB,MAAQgB,EAAcI,EAAIpB,aAC3Cf,IAAZmC,EAAIqC,MACNrC,EAAIsC,SAAW1C,EAAcI,EAAIqC,YAC1BrC,EAAIqC,UAEQxE,IAAjBmC,EAAIsC,WAAwBtC,EAAIsC,SAAW1C,EAAcI,EAAIsC,gBAC5CzE,IAAjBmC,EAAIuC,WAAwBvC,EAAIuC,SAAW3C,EAAcI,EAAIuC,gBACxC1E,IAArBmC,EAAIwC,eAA4BxC,EAAIwC,aAAe5C,EAAcI,EAAIwC,oBACxC3E,IAA7BmC,EAAIyC,uBACNzC,EAAIyC,qBAAuB7C,EAAcI,EAAIyC,4BAC7B5E,IAAdmC,EAAI0C,QAAqB1C,EAAI0C,MAAQpD,EAAaU,EAAI0C,MAAO,eAC7C7E,IAAhBmC,EAAI2C,UAAuB3C,EAAI2C,QAAUrD,EAAaU,EAAI2C,QAAS,iBAG9C9E,IAArBmC,EAAIwC,mBAA2D3E,IAA7BmC,EAAIyC,4BACnB5E,IAAjBmC,EAAIuC,eAA+C1E,IAArBmC,EAAIwC,eACpCxC,EAAIuC,SAAWvC,EAAIwC,qBAEdxC,EAAIwC,oBACJxC,EAAIyC,6BAINzC,EAAI4C,YACJ5C,EAAI6C,kBACJ7C,EAAI8C,eACJ9C,EAAI+C,aACJ/C,EAAIgD,KAEJhD,CACT,CCgC2BiD,CAAqBf,GAM1C,aAJmBhF,EAEhB,eAAgB,CAAEqD,UAAS2C,YAAad,GAAgB/E,IAE/C8F,iBACb,GAEL"}
package/dist/signers/viem.mjs ADDED
@@ -0,0 +1,2 @@
1
+ async function e(e,t,a){const r=a.baseUrl??"https://api.emblemvault.ai",i=await async function(e){if("function"==typeof e.getAuthHeaders){const t=await e.getAuthHeaders();if(t&&"object"==typeof t)return t}const t=e.jwt??("function"==typeof e.getJwt?await e.getJwt():void 0)??e.sdk?.getSession()?.authToken??void 0;if(t)return{Authorization:`Bearer ${t}`};if(e.apiKey)return{"x-api-key":e.apiKey};throw new Error("No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey")}(a),n=await fetch(`${r}${e}`,{method:"POST",headers:{"content-type":"application/json",...i},body:JSON.stringify(t,(e,t)=>"bigint"==typeof t?t.toString():t)});if(!n.ok){const e=await n.text().catch(()=>"");throw new Error(function(e,t){let a=`Emblem signer error ${e}`;return e>=500?a+=": Internal server error":401===e||403===e?a+=": Authentication failed":404===e?a+=": Resource not found":405===e?a+=": Method not allowed":t&&(a+=`: ${t.substring(0,200)}`),a}(n.status,e))}return n.json()}function t(e,t){const a=Number(e);if(!Number.isSafeInteger(a))throw new Error(`${t} value ${e} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`);return a}function a(e){return"bigint"==typeof e?"0x"+e.toString(16):e}function r(e){let t="0x";for(let a=0;a<e.length;a++)t+=e[a].toString(16).padStart(2,"0");return t}async function i(i,n){const s=n??await async function(t){const a=await e("/vault/info",{},t);if(!a||!a.vaultId||!a.evmAddress)throw new Error("Invalid vault info response: missing required fields");if(!String(a.evmAddress).startsWith("0x"))throw new Error("Invalid evmAddress format in response");return{vaultId:a.vaultId,tokenId:a.vaultId,address:a.address||"",evmAddress:a.evmAddress,created_by:a.created_by}}(i),{evmAddress:o,vaultId:d}=s,{toAccount:c}=await import("viem/accounts");return c({address:o,async signMessage({message:t}){let a,n=!1;if("string"==typeof t)a=t,n=!1;else if(t&&void 0!==t.raw){const e=t.raw;a="string"==typeof e?e:r(e),n=!0}else if(t instanceof Uint8Array)a=r(t),n=!1;else{if("string"!=typeof(s=t)||!/^0x[0-9a-fA-F]*$/.test(s))throw new Error(`Unsupported message type: ${typeof t}. Expected string, Uint8Array, or hex string.`);a=t,n=!1}var s;return(await e("/sign-eth-message",{vaultId:d,message:a,raw:n},i)).signature},async signTypedData(t){const{domain:a,types:r,message:n}=t;return(await e("/sign-typed-message",{vaultId:d,domain:a,types:r,message:n},i)).signature},async signTransaction(r,n){const s=function(e){const r={...e};return void 0!==r.value&&(r.value=a(r.value)),void 0!==r.gas&&(r.gasLimit=a(r.gas),delete r.gas),void 0!==r.gasLimit&&(r.gasLimit=a(r.gasLimit)),void 0!==r.gasPrice&&(r.gasPrice=a(r.gasPrice)),void 0!==r.maxFeePerGas&&(r.maxFeePerGas=a(r.maxFeePerGas)),void 0!==r.maxPriorityFeePerGas&&(r.maxPriorityFeePerGas=a(r.maxPriorityFeePerGas)),void 0!==r.nonce&&(r.nonce=t(r.nonce,"nonce")),void 0!==r.chainId&&(r.chainId=t(r.chainId,"chainId")),void 0===r.maxFeePerGas&&void 0===r.maxPriorityFeePerGas||(void 0===r.gasPrice&&void 0!==r.maxFeePerGas&&(r.gasPrice=r.maxFeePerGas),delete r.maxFeePerGas,delete r.maxPriorityFeePerGas),delete r.type,delete r.accessList,delete r.account,delete r.chain,delete r.from,r}(r);return(await e("/sign-eth-tx",{vaultId:d,transaction:s},i)).signedTransaction}})}export{i as toViemAccount};
2
+ //# sourceMappingURL=viem.mjs.map
package/dist/signers/viem.mjs.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"viem.mjs","sources":["../../src/signers/http.ts","../../src/signers/validation.ts","../../src/signers/utils.ts","../../src/signers/viem.ts","../../src/signers/vault.ts"],"sourcesContent":["import type { SignerConfig } from '../types/signers';\n\nfunction sanitizeErrorMessage(status: number, text: string): string {\n // Sanitize error messages to avoid leaking sensitive server information\n let errorMessage = `Emblem signer error ${status}`;\n\n if (status >= 500) {\n errorMessage += ': Internal server error';\n } else if (status === 401 || status === 403) {\n errorMessage += ': Authentication failed';\n } else if (status === 404) {\n errorMessage += ': Resource not found';\n } else if (status === 405) {\n errorMessage += ': Method not allowed';\n } else if (text) {\n // For 4xx client errors, include limited error details\n errorMessage += `: ${text.substring(0, 200)}`; // Limit to 200 chars\n }\n\n return errorMessage;\n}\n\nasync function resolveAuthHeaders(config: SignerConfig): Promise<Record<string, string>> {\n // Priority: custom headers -> jwt/getJwt/sdk -> apiKey (deprecated)\n if (typeof config.getAuthHeaders === 'function') {\n const h = await config.getAuthHeaders();\n if (h && typeof h === 'object') return h;\n }\n\n const tok =\n config.jwt ??\n (typeof config.getJwt === 'function' ? await config.getJwt() : undefined) ??\n config.sdk?.getSession()?.authToken ??\n undefined;\n\n if (tok) {\n return { Authorization: `Bearer ${tok}` };\n }\n\n // apiKey is deprecated but still supported as fallback\n if (config.apiKey) {\n return { 'x-api-key': config.apiKey };\n }\n\n throw new Error(\n 'No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey'\n );\n}\n\nexport async function emblemPost<T = unknown>(\n path: string,\n body: unknown,\n config: SignerConfig\n): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'POST',\n headers: {\n 'content-type': 'application/json',\n ...authHeaders,\n },\n body: JSON.stringify(body, (_key: string, value: unknown) =>\n typeof value === 'bigint' ? value.toString() : value\n ),\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n\nexport async function emblemGet<T = unknown>(path: string, config: SignerConfig): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'GET',\n headers: authHeaders,\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n","import type { SignerConfig } from '../types/signers';\n\n/**\n * Environment detection utilities for warning about unsafe usage patterns\n */\n\n/**\n * Detect if code is running in a browser environment\n */\nexport function isBrowserEnvironment(): boolean {\n return typeof window !== 'undefined' && typeof document !== 'undefined';\n}\n\n/**\n * Check if we're in a Node.js server environment\n */\nexport function isNodeEnvironment(): boolean {\n return (\n typeof process !== 'undefined' && process.versions != null && process.versions.node != null\n );\n}\n\n/**\n * Validate baseUrl format\n */\nexport function validateBaseUrl(baseUrl?: string): void {\n if (!baseUrl) return; // undefined is ok, will use default\n\n if (!baseUrl.startsWith('http://') && !baseUrl.startsWith('https://')) {\n throw new Error('baseUrl must be a valid HTTP(S) URL');\n }\n\n // Warn about http (not https)\n if (\n baseUrl.startsWith('http://') &&\n !baseUrl.includes('localhost') &&\n !baseUrl.includes('127.0.0.1')\n ) {\n console.warn(\n '[Emblem Security Warning] baseUrl uses HTTP instead of HTTPS. This is insecure for production use.'\n );\n }\n}\n\n/**\n * Validate Ethereum address format\n */\nexport function validateEthereumAddress(address: string): void {\n if (!address || typeof address !== 'string') {\n throw new Error('Address is required');\n }\n\n if (!address.startsWith('0x')) {\n throw new Error('Address must start with 0x');\n }\n\n if (!/^0x[0-9a-fA-F]{40}$/.test(address)) {\n throw new Error('Invalid Ethereum address format');\n }\n}\n\n/**\n * Validate vault ID\n */\nexport function validateVaultId(vaultId: string): void {\n if (!vaultId || typeof vaultId !== 'string') {\n throw new Error('vaultId is required');\n }\n\n if (vaultId.trim() === '') {\n throw new Error('vaultId cannot be empty');\n }\n}\n\n/**\n * Safe number conversion with bounds checking\n */\nexport function toSafeNumber(value: unknown, fieldName: string): number {\n const num = Number(value);\n\n if (!Number.isSafeInteger(num)) {\n throw new Error(\n `${fieldName} value ${value} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`\n );\n }\n\n return num;\n}\n\n/**\n * Extended config with security options\n */\nexport interface SignerSecurityConfig extends SignerConfig {\n /**\n * Enable debug logging for security-related checks\n * @default false\n */\n debugSecurity?: boolean;\n}\n\n/**\n * Validate signer configuration\n */\nexport function validateSignerConfig(config: SignerSecurityConfig): void {\n // Validate auth: require at least one method (jwt, getJwt, getAuthHeaders)\n const hasJwt = !!config.jwt;\n const hasGetJwt = typeof config.getJwt === 'function';\n const hasHeaders = typeof config.getAuthHeaders === 'function';\n\n if (!hasJwt && !hasGetJwt && !hasHeaders) {\n throw new Error('Authentication required: provide jwt, getJwt(), or getAuthHeaders()');\n }\n\n // Validate baseUrl if provided\n if (config.baseUrl) {\n validateBaseUrl(config.baseUrl);\n }\n\n // Security audit logging\n if (config.debugSecurity) {\n console.log('[Emblem Security Debug]', {\n environment: isBrowserEnvironment() ? 'browser' : 'node',\n hasBaseUrl: !!config.baseUrl,\n timestamp: new Date().toISOString(),\n });\n }\n}\n","import type { Hex } from '../types/signers';\nimport { toSafeNumber } from './validation';\n\nexport function toHexIfBigInt(v: unknown): unknown {\n return typeof v === 'bigint' ? '0x' + v.toString(16) : v;\n}\n\n/**\n * viem txs sometimes have bigint / hex / optional fields. Ethers serializers\n * accept hex strings for numeric fields. Normalize where helpful.\n */\nexport function normalizeTxForEmblem(tx: Record<string, unknown>): Record<string, unknown> {\n const out: Record<string, unknown> = { ...tx };\n\n if (out.value !== undefined) out.value = toHexIfBigInt(out.value);\n if (out.gas !== undefined) {\n out.gasLimit = toHexIfBigInt(out.gas);\n delete out.gas;\n }\n if (out.gasLimit !== undefined) out.gasLimit = toHexIfBigInt(out.gasLimit);\n if (out.gasPrice !== undefined) out.gasPrice = toHexIfBigInt(out.gasPrice);\n if (out.maxFeePerGas !== undefined) out.maxFeePerGas = toHexIfBigInt(out.maxFeePerGas);\n if (out.maxPriorityFeePerGas !== undefined)\n out.maxPriorityFeePerGas = toHexIfBigInt(out.maxPriorityFeePerGas);\n if (out.nonce !== undefined) out.nonce = toSafeNumber(out.nonce, 'nonce');\n if (out.chainId !== undefined) out.chainId = toSafeNumber(out.chainId, 'chainId');\n\n // Some backends only accept legacy fields; fold EIP-1559 into gasPrice and drop unsupported keys\n if (out.maxFeePerGas !== undefined || out.maxPriorityFeePerGas !== undefined) {\n if (out.gasPrice === undefined && out.maxFeePerGas !== undefined) {\n out.gasPrice = out.maxFeePerGas;\n }\n delete out.maxFeePerGas;\n delete out.maxPriorityFeePerGas;\n }\n\n // Remove fields commonly unsupported by legacy serializers\n delete out.type;\n delete out.accessList;\n delete out.account;\n delete out.chain;\n delete out.from;\n\n return out;\n}\n\nexport function isHexString(value: unknown): value is Hex {\n return typeof value === 'string' && /^0x[0-9a-fA-F]*$/.test(value);\n}\n\nexport function bytesToHex(bytes: ArrayLike<number>): Hex {\n let out = '0x';\n for (let i = 0; i < bytes.length; i++) {\n out += (bytes[i] as number).toString(16).padStart(2, '0');\n }\n return out as Hex;\n}\n","import type { Hex, SignerConfig, SignerVaultInfo } from '../types/signers';\nimport { emblemPost } from './http';\nimport { bytesToHex, isHexString, normalizeTxForEmblem } from './utils';\nimport { fetchVaultInfo } from './vault';\n\n// Minimal viem types to avoid hard dependency\ninterface ViemAccount {\n address: Hex;\n signMessage: (args: { message: unknown }) => Promise<Hex>;\n signTypedData: (typedData: unknown) => Promise<Hex>;\n signTransaction: (tx: unknown, opts?: unknown) => Promise<Hex>;\n type: 'local';\n source: 'custom';\n publicKey?: Hex;\n}\n\nexport async function toViemAccount(\n config: SignerConfig,\n infoOverride?: SignerVaultInfo\n): Promise<ViemAccount> {\n const info = infoOverride ?? (await fetchVaultInfo(config));\n const { evmAddress, vaultId } = info;\n\n // Dynamically import viem's toAccount\n const { toAccount } = await import('viem/accounts');\n\n return toAccount({\n address: evmAddress,\n\n async signMessage({ message }: { message: unknown }): Promise<Hex> {\n let payload: string;\n let isRaw = false;\n\n if (typeof message === 'string') {\n payload = message;\n isRaw = false;\n } else if (message && typeof (message as { raw?: unknown }).raw !== 'undefined') {\n const raw = (message as { raw: unknown }).raw;\n payload = typeof raw === 'string' ? raw : bytesToHex(raw as ArrayLike<number>);\n isRaw = true;\n } else if (message instanceof Uint8Array) {\n payload = bytesToHex(message);\n isRaw = false;\n } else if (isHexString(message)) {\n payload = message as string;\n isRaw = false;\n } else {\n // Don't silently convert objects to \"[object Object]\"\n throw new Error(\n `Unsupported message type: ${typeof message}. Expected string, Uint8Array, or hex string.`\n );\n }\n\n const data = await emblemPost<{\n signerAddress: string;\n signature: Hex;\n }>('/sign-eth-message', { vaultId, message: payload, raw: isRaw }, config);\n\n return data.signature;\n },\n\n async signTypedData(typedData: unknown): Promise<Hex> {\n const { domain, types, message } = typedData as {\n domain: unknown;\n types: unknown;\n message: unknown;\n };\n const data = await emblemPost<{\n signerAddress: string;\n signature: Hex;\n }>('/sign-typed-message', { vaultId, domain, types, message }, config);\n\n return data.signature;\n },\n\n async signTransaction(tx: unknown, _opts?: unknown): Promise<Hex> {\n const normalizedTx = normalizeTxForEmblem(tx as Record<string, unknown>);\n\n const data = await emblemPost<{\n signedTransaction: Hex;\n }>('/sign-eth-tx', { vaultId, transaction: normalizedTx }, config);\n\n return data.signedTransaction;\n },\n }) as ViemAccount;\n}\n","import type { SignerConfig, SignerVaultInfo, Hex } from '../types/signers';\nimport { emblemPost } from './http';\n\nexport async function fetchVaultInfo(config: SignerConfig): Promise<SignerVaultInfo> {\n // Note: The server only supports POST for /vault/info\n const data: Partial<{\n vaultId: string;\n address: string;\n evmAddress: Hex;\n created_by?: string;\n }> = await emblemPost('/vault/info', {}, config);\n\n // Validate required response data (vaultId + evmAddress are required for EVM)\n if (!data || !data.vaultId || !data.evmAddress) {\n throw new Error('Invalid vault info response: missing required fields');\n }\n\n if (!String(data.evmAddress).startsWith('0x')) {\n throw new Error('Invalid evmAddress format in response');\n }\n\n return {\n vaultId: data.vaultId,\n tokenId: data.vaultId,\n address: data.address || '', // Solana address may be absent; keep optional\n evmAddress: data.evmAddress as Hex,\n created_by: data.created_by,\n };\n}\n"],"names":["async","emblemPost","path","body","config","baseUrl","authHeaders","getAuthHeaders","h","tok","jwt","getJwt","undefined","sdk","getSession","authToken","Authorization","apiKey","Error","resolveAuthHeaders","res","fetch","method","headers","JSON","stringify","_key","value","toString","ok","text","catch","status","errorMessage","substring","sanitizeErrorMessage","json","toSafeNumber","fieldName","num","Number","isSafeInteger","MAX_SAFE_INTEGER","toHexIfBigInt","v","bytesToHex","bytes","out","i","length","padStart","toViemAccount","infoOverride","info","data","vaultId","evmAddress","String","startsWith","tokenId","address","created_by","fetchVaultInfo","toAccount","import","signMessage","message","payload","isRaw","raw","Uint8Array","test","signature","signTypedData","typedData","domain","types","signTransaction","tx","_opts","normalizedTx","gas","gasLimit","gasPrice","maxFeePerGas","maxPriorityFeePerGas","nonce","chainId","type","accessList","account","chain","from","normalizeTxForEmblem","transaction","signedTransaction"],"mappings":"AAiDOA,eAAeC,EACpBC,EACAC,EACAC,GAEA,MAAMC,EAAUD,EAAOC,SAAW,6BAC5BC,QAjCRN,eAAkCI,GAEhC,GAAqC,mBAA1BA,EAAOG,eAA+B,CAC/C,MAAMC,QAAUJ,EAAOG,iBACvB,GAAIC,GAAkB,iBAANA,EAAgB,OAAOA,CACxC,CAED,MAAMC,EACJL,EAAOM,MACmB,mBAAlBN,EAAOO,aAA8BP,EAAOO,cAAWC,IAC/DR,EAAOS,KAAKC,cAAcC,gBAC1BH,EAEF,GAAIH,EACF,MAAO,CAAEO,cAAe,UAAUP,KAIpC,GAAIL,EAAOa,OACT,MAAO,CAAE,YAAab,EAAOa,QAG/B,MAAM,IAAIC,MACR,uFAEJ,CAQ4BC,CAAmBf,GACvCgB,QAAYC,MAAM,GAAGhB,IAAUH,IAAQ,CAC3CoB,OAAQ,OACRC,QAAS,CACP,eAAgB,sBACbjB,GAELH,KAAMqB,KAAKC,UAAUtB,EAAM,CAACuB,EAAcC,IACvB,iBAAVA,EAAqBA,EAAMC,WAAaD,KAInD,IAAKP,EAAIS,GAAI,CACX,MAAMC,QAAaV,EAAIU,OAAOC,MAAM,IAAM,IAC1C,MAAM,IAAIb,MAnEd,SAA8Bc,EAAgBF,GAE5C,IAAIG,EAAe,uBAAuBD,IAe1C,OAbIA,GAAU,IACZC,GAAgB,0BACI,MAAXD,GAA6B,MAAXA,EAC3BC,GAAgB,0BACI,MAAXD,EACTC,GAAgB,uBACI,MAAXD,EACTC,GAAgB,uBACPH,IAETG,GAAgB,KAAKH,EAAKI,UAAU,EAAG,QAGlCD,CACT,CAiDoBE,CAAqBf,EAAIY,OAAQF,GAClD,CAED,OAAOV,EAAIgB,MACb,CCIgB,SAAAC,EAAaV,EAAgBW,GAC3C,MAAMC,EAAMC,OAAOb,GAEnB,IAAKa,OAAOC,cAAcF,GACxB,MAAM,IAAIrB,MACR,GAAGoB,WAAmBX,sCAA0Ca,OAAOE,qBAI3E,OAAOH,CACT,CCpFM,SAAUI,EAAcC,GAC5B,MAAoB,iBAANA,EAAiB,KAAOA,EAAEhB,SAAS,IAAMgB,CACzD,CA6CM,SAAUC,EAAWC,GACzB,IAAIC,EAAM,KACV,IAAK,IAAIC,EAAI,EAAGA,EAAIF,EAAMG,OAAQD,IAChCD,GAAQD,EAAME,GAAcpB,SAAS,IAAIsB,SAAS,EAAG,KAEvD,OAAOH,CACT,CCxCO/C,eAAemD,EACpB/C,EACAgD,GAEA,MAAMC,EAAOD,SCjBRpD,eAA8BI,GAEnC,MAAMkD,QAKKrD,EAAW,cAAe,CAAE,EAAEG,GAGzC,IAAKkD,IAASA,EAAKC,UAAYD,EAAKE,WAClC,MAAM,IAAItC,MAAM,wDAGlB,IAAKuC,OAAOH,EAAKE,YAAYE,WAAW,MACtC,MAAM,IAAIxC,MAAM,yCAGlB,MAAO,CACLqC,QAASD,EAAKC,QACdI,QAASL,EAAKC,QACdK,QAASN,EAAKM,SAAW,GACzBJ,WAAYF,EAAKE,WACjBK,WAAYP,EAAKO,WAErB,CDRsCC,CAAe1D,IAC7CoD,WAAEA,EAAUD,QAAEA,GAAYF,GAG1BU,UAAEA,SAAoBC,OAAO,iBAEnC,OAAOD,EAAU,CACfH,QAASJ,EAET,iBAAMS,EAAYC,QAAEA,IAClB,IAAIC,EACAC,GAAQ,EAEZ,GAAuB,iBAAZF,EACTC,EAAUD,EACVE,GAAQ,OACH,GAAIF,QAAyD,IAAtCA,EAA8BG,IAAqB,CAC/E,MAAMA,EAAOH,EAA6BG,IAC1CF,EAAyB,iBAARE,EAAmBA,EAAMxB,EAAWwB,GACrDD,GAAQ,CACT,MAAM,GAAIF,aAAmBI,WAC5BH,EAAUtB,EAAWqB,GACrBE,GAAQ,MACH,IDIa,iBADEzC,ECHCuC,KDIS,mBAAmBK,KAAK5C,GCCtD,MAAM,IAAIT,MACR,oCAAoCgD,kDALtCC,EAAUD,EACVE,GAAQ,CAMT,CDLD,IAAsBzC,ECYtB,aALmB1B,EAGhB,oBAAqB,CAAEsD,UAASW,QAASC,EAASE,IAAKD,GAAShE,IAEvDoE,SACb,EAED,mBAAMC,CAAcC,GAClB,MAAMC,OAAEA,EAAMC,MAAEA,EAAKV,QAAEA,GAAYQ,EAUnC,aALmBzE,EAGhB,sBAAuB,CAAEsD,UAASoB,SAAQC,QAAOV,WAAW9D,IAEnDoE,SACb,EAED,qBAAMK,CAAgBC,EAAaC,GACjC,MAAMC,EDjEN,SAA+BF,GACnC,MAAM/B,EAA+B,IAAK+B,GA+B1C,YA7BkBlE,IAAdmC,EAAIpB,QAAqBoB,EAAIpB,MAAQgB,EAAcI,EAAIpB,aAC3Cf,IAAZmC,EAAIkC,MACNlC,EAAImC,SAAWvC,EAAcI,EAAIkC,YAC1BlC,EAAIkC,UAEQrE,IAAjBmC,EAAImC,WAAwBnC,EAAImC,SAAWvC,EAAcI,EAAImC,gBAC5CtE,IAAjBmC,EAAIoC,WAAwBpC,EAAIoC,SAAWxC,EAAcI,EAAIoC,gBACxCvE,IAArBmC,EAAIqC,eAA4BrC,EAAIqC,aAAezC,EAAcI,EAAIqC,oBACxCxE,IAA7BmC,EAAIsC,uBACNtC,EAAIsC,qBAAuB1C,EAAcI,EAAIsC,4BAC7BzE,IAAdmC,EAAIuC,QAAqBvC,EAAIuC,MAAQjD,EAAaU,EAAIuC,MAAO,eAC7C1E,IAAhBmC,EAAIwC,UAAuBxC,EAAIwC,QAAUlD,EAAaU,EAAIwC,QAAS,iBAG9C3E,IAArBmC,EAAIqC,mBAA2DxE,IAA7BmC,EAAIsC,4BACnBzE,IAAjBmC,EAAIoC,eAA+CvE,IAArBmC,EAAIqC,eACpCrC,EAAIoC,SAAWpC,EAAIqC,qBAEdrC,EAAIqC,oBACJrC,EAAIsC,6BAINtC,EAAIyC,YACJzC,EAAI0C,kBACJ1C,EAAI2C,eACJ3C,EAAI4C,aACJ5C,EAAI6C,KAEJ7C,CACT,CCgC2B8C,CAAqBf,GAM1C,aAJmB7E,EAEhB,eAAgB,CAAEsD,UAASuC,YAAad,GAAgB5E,IAE/C2F,iBACb,GAEL"}
package/dist/signers/web3.d.ts ADDED
@@ -0,0 +1,13 @@
1
+ import type { Hex, SignerConfig, SignerVaultInfo } from '../types/signers';
2
+ export declare class EmblemWeb3Adapter {
3
+ #private;
4
+ readonly address: Hex;
5
+ constructor(address: Hex, vaultId: string, config: SignerConfig);
6
+ signMessage(message: string | Uint8Array): Promise<Hex>;
7
+ signTypedData(domain: Record<string, unknown>, types: Record<string, unknown>, message: Record<string, unknown>): Promise<Hex>;
8
+ signTransaction(tx: Record<string, unknown>): Promise<{
9
+ rawTransaction: Hex;
10
+ }>;
11
+ }
12
+ export declare function toWeb3Adapter(config: SignerConfig, infoOverride?: SignerVaultInfo): Promise<EmblemWeb3Adapter>;
13
+ //# sourceMappingURL=web3.d.ts.map
package/dist/signers/web3.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"web3.d.ts","sourceRoot":"","sources":["../../src/signers/web3.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,GAAG,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAK3E,qBAAa,iBAAiB;;IAC5B,QAAQ,CAAC,OAAO,EAAE,GAAG,CAAC;gBAIV,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY;IAMzD,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC;IAUvD,aAAa,CACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC/B,OAAO,CAAC,GAAG,CAAC;IAST,eAAe,CAAC,EAAE,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC;QAAE,cAAc,EAAE,GAAG,CAAA;KAAE,CAAC;CASrF;AAED,wBAAsB,aAAa,CACjC,MAAM,EAAE,YAAY,EACpB,YAAY,CAAC,EAAE,eAAe,GAC7B,OAAO,CAAC,iBAAiB,CAAC,CAG5B"}
package/dist/signers/web3.js ADDED
@@ -0,0 +1,2 @@
1
+ "use strict";function e(e,t,r,a){if("a"===r&&!a)throw new TypeError("Private accessor was defined without a getter");if("function"==typeof t?e!==t||!a:!t.has(e))throw new TypeError("Cannot read private member from an object whose class did not declare it");return"m"===r?a:"a"===r?a.call(e):a?a.value:t.get(e)}function t(e,t,r,a,i){if("m"===a)throw new TypeError("Private method is not writable");if("a"===a&&!i)throw new TypeError("Private accessor was defined without a setter");if("function"==typeof t?e!==t||!i:!t.has(e))throw new TypeError("Cannot write private member to an object whose class did not declare it");return"a"===a?i.call(e,r):i?i.value=r:t.set(e,r),r}async function r(e,t,r){const a=r.baseUrl??"https://api.emblemvault.ai",i=await async function(e){if("function"==typeof e.getAuthHeaders){const t=await e.getAuthHeaders();if(t&&"object"==typeof t)return t}const t=e.jwt??("function"==typeof e.getJwt?await e.getJwt():void 0)??e.sdk?.getSession()?.authToken??void 0;if(t)return{Authorization:`Bearer ${t}`};if(e.apiKey)return{"x-api-key":e.apiKey};throw new Error("No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey")}(r),n=await fetch(`${a}${e}`,{method:"POST",headers:{"content-type":"application/json",...i},body:JSON.stringify(t,(e,t)=>"bigint"==typeof t?t.toString():t)});if(!n.ok){const e=await n.text().catch(()=>"");throw new Error(function(e,t){let r=`Emblem signer error ${e}`;return e>=500?r+=": Internal server error":401===e||403===e?r+=": Authentication failed":404===e?r+=": Resource not found":405===e?r+=": Method not allowed":t&&(r+=`: ${t.substring(0,200)}`),r}(n.status,e))}return n.json()}function a(e,t){const r=Number(e);if(!Number.isSafeInteger(r))throw new Error(`${t} value ${e} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`);return r}function i(e){return"bigint"==typeof e?"0x"+e.toString(16):e}var n,s;Object.defineProperty(exports,"__esModule",{value:!0}),"function"==typeof SuppressedError&&SuppressedError;class o{constructor(e,r,a){n.set(this,void 0),s.set(this,void 0),this.address=e,t(this,n,r,"f"),t(this,s,a,"f")}async signMessage(t){const a="string"==typeof t?t:function(e){let t="0x";for(let r=0;r<e.length;r++)t+=e[r].toString(16).padStart(2,"0");return t}(t);return(await r("/sign-eth-message",{vaultId:e(this,n,"f"),message:a},e(this,s,"f"))).signature}async signTypedData(t,a,i){return(await r("/sign-typed-message",{vaultId:e(this,n,"f"),domain:t,types:a,message:i},e(this,s,"f"))).signature}async signTransaction(t){const o=function(e){const t={...e};return void 0!==t.value&&(t.value=i(t.value)),void 0!==t.gas&&(t.gasLimit=i(t.gas),delete t.gas),void 0!==t.gasLimit&&(t.gasLimit=i(t.gasLimit)),void 0!==t.gasPrice&&(t.gasPrice=i(t.gasPrice)),void 0!==t.maxFeePerGas&&(t.maxFeePerGas=i(t.maxFeePerGas)),void 0!==t.maxPriorityFeePerGas&&(t.maxPriorityFeePerGas=i(t.maxPriorityFeePerGas)),void 0!==t.nonce&&(t.nonce=a(t.nonce,"nonce")),void 0!==t.chainId&&(t.chainId=a(t.chainId,"chainId")),void 0===t.maxFeePerGas&&void 0===t.maxPriorityFeePerGas||(void 0===t.gasPrice&&void 0!==t.maxFeePerGas&&(t.gasPrice=t.maxFeePerGas),delete t.maxFeePerGas,delete t.maxPriorityFeePerGas),delete t.type,delete t.accessList,delete t.account,delete t.chain,delete t.from,t}(t);return{rawTransaction:(await r("/sign-eth-tx",{vaultId:e(this,n,"f"),transaction:o},e(this,s,"f"))).signedTransaction}}}n=new WeakMap,s=new WeakMap,exports.EmblemWeb3Adapter=o,exports.toWeb3Adapter=async function(e,t){const a=t??await async function(e){const t=await r("/vault/info",{},e);if(!t||!t.vaultId||!t.evmAddress)throw new Error("Invalid vault info response: missing required fields");if(!String(t.evmAddress).startsWith("0x"))throw new Error("Invalid evmAddress format in response");return{vaultId:t.vaultId,tokenId:t.vaultId,address:t.address||"",evmAddress:t.evmAddress,created_by:t.created_by}}(e);return new o(a.evmAddress,a.vaultId,e)};
2
+ //# sourceMappingURL=web3.js.map
package/dist/signers/web3.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"web3.js","sources":["../../node_modules/tslib/tslib.es6.js","../../src/signers/http.ts","../../src/signers/validation.ts","../../src/signers/utils.ts","../../src/signers/web3.ts","../../src/signers/vault.ts"],"sourcesContent":["/******************************************************************************\r\nCopyright (c) Microsoft Corporation.\r\n\r\nPermission to use, copy, modify, and/or distribute this software for any\r\npurpose with or without fee is hereby granted.\r\n\r\nTHE SOFTWARE IS PROVIDED \"AS IS\" AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH\r\nREGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY\r\nAND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT,\r\nINDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM\r\nLOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR\r\nOTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR\r\nPERFORMANCE OF THIS SOFTWARE.\r\n***************************************************************************** */\r\n/* global Reflect, Promise, SuppressedError, Symbol, Iterator */\r\n\r\nvar extendStatics = function(d, b) {\r\n extendStatics = Object.setPrototypeOf ||\r\n ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||\r\n function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };\r\n return extendStatics(d, b);\r\n};\r\n\r\nexport function __extends(d, b) {\r\n if (typeof b !== \"function\" && b !== null)\r\n throw new TypeError(\"Class extends value \" + String(b) + \" is not a constructor or null\");\r\n extendStatics(d, b);\r\n function __() { this.constructor = d; }\r\n d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());\r\n}\r\n\r\nexport var __assign = function() {\r\n __assign = Object.assign || function __assign(t) {\r\n for (var s, i = 1, n = arguments.length; i < n; i++) {\r\n s = arguments[i];\r\n for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p)) t[p] = s[p];\r\n }\r\n return t;\r\n }\r\n return __assign.apply(this, arguments);\r\n}\r\n\r\nexport function __rest(s, e) {\r\n var t = {};\r\n for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)\r\n t[p] = s[p];\r\n if (s != null && typeof Object.getOwnPropertySymbols === \"function\")\r\n for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {\r\n if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))\r\n t[p[i]] = s[p[i]];\r\n }\r\n return t;\r\n}\r\n\r\nexport function __decorate(decorators, target, key, desc) {\r\n var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;\r\n if (typeof Reflect === \"object\" && typeof Reflect.decorate === \"function\") r = Reflect.decorate(decorators, target, key, desc);\r\n else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;\r\n return c > 3 && r && Object.defineProperty(target, key, r), r;\r\n}\r\n\r\nexport function __param(paramIndex, decorator) {\r\n return function (target, key) { decorator(target, key, paramIndex); }\r\n}\r\n\r\nexport function __esDecorate(ctor, descriptorIn, decorators, contextIn, initializers, extraInitializers) {\r\n function accept(f) { if (f !== void 0 && typeof f !== \"function\") throw new TypeError(\"Function expected\"); return f; }\r\n var kind = contextIn.kind, key = kind === \"getter\" ? \"get\" : kind === \"setter\" ? \"set\" : \"value\";\r\n var target = !descriptorIn && ctor ? contextIn[\"static\"] ? ctor : ctor.prototype : null;\r\n var descriptor = descriptorIn || (target ? Object.getOwnPropertyDescriptor(target, contextIn.name) : {});\r\n var _, done = false;\r\n for (var i = decorators.length - 1; i >= 0; i--) {\r\n var context = {};\r\n for (var p in contextIn) context[p] = p === \"access\" ? {} : contextIn[p];\r\n for (var p in contextIn.access) context.access[p] = contextIn.access[p];\r\n context.addInitializer = function (f) { if (done) throw new TypeError(\"Cannot add initializers after decoration has completed\"); extraInitializers.push(accept(f || null)); };\r\n var result = (0, decorators[i])(kind === \"accessor\" ? { get: descriptor.get, set: descriptor.set } : descriptor[key], context);\r\n if (kind === \"accessor\") {\r\n if (result === void 0) continue;\r\n if (result === null || typeof result !== \"object\") throw new TypeError(\"Object expected\");\r\n if (_ = accept(result.get)) descriptor.get = _;\r\n if (_ = accept(result.set)) descriptor.set = _;\r\n if (_ = accept(result.init)) initializers.unshift(_);\r\n }\r\n else if (_ = accept(result)) {\r\n if (kind === \"field\") initializers.unshift(_);\r\n else descriptor[key] = _;\r\n }\r\n }\r\n if (target) Object.defineProperty(target, contextIn.name, descriptor);\r\n done = true;\r\n};\r\n\r\nexport function __runInitializers(thisArg, initializers, value) {\r\n var useValue = arguments.length > 2;\r\n for (var i = 0; i < initializers.length; i++) {\r\n value = useValue ? initializers[i].call(thisArg, value) : initializers[i].call(thisArg);\r\n }\r\n return useValue ? value : void 0;\r\n};\r\n\r\nexport function __propKey(x) {\r\n return typeof x === \"symbol\" ? x : \"\".concat(x);\r\n};\r\n\r\nexport function __setFunctionName(f, name, prefix) {\r\n if (typeof name === \"symbol\") name = name.description ? \"[\".concat(name.description, \"]\") : \"\";\r\n return Object.defineProperty(f, \"name\", { configurable: true, value: prefix ? \"\".concat(prefix, \" \", name) : name });\r\n};\r\n\r\nexport function __metadata(metadataKey, metadataValue) {\r\n if (typeof Reflect === \"object\" && typeof Reflect.metadata === \"function\") return Reflect.metadata(metadataKey, metadataValue);\r\n}\r\n\r\nexport function __awaiter(thisArg, _arguments, P, generator) {\r\n function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }\r\n return new (P || (P = Promise))(function (resolve, reject) {\r\n function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }\r\n function rejected(value) { try { step(generator[\"throw\"](value)); } catch (e) { reject(e); } }\r\n function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }\r\n step((generator = generator.apply(thisArg, _arguments || [])).next());\r\n });\r\n}\r\n\r\nexport function __generator(thisArg, body) {\r\n var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === \"function\" ? Iterator : Object).prototype);\r\n return g.next = verb(0), g[\"throw\"] = verb(1), g[\"return\"] = verb(2), typeof Symbol === \"function\" && (g[Symbol.iterator] = function() { return this; }), g;\r\n function verb(n) { return function (v) { return step([n, v]); }; }\r\n function step(op) {\r\n if (f) throw new TypeError(\"Generator is already executing.\");\r\n while (g && (g = 0, op[0] && (_ = 0)), _) try {\r\n if (f = 1, y && (t = op[0] & 2 ? y[\"return\"] : op[0] ? y[\"throw\"] || ((t = y[\"return\"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;\r\n if (y = 0, t) op = [op[0] & 2, t.value];\r\n switch (op[0]) {\r\n case 0: case 1: t = op; break;\r\n case 4: _.label++; return { value: op[1], done: false };\r\n case 5: _.label++; y = op[1]; op = [0]; continue;\r\n case 7: op = _.ops.pop(); _.trys.pop(); continue;\r\n default:\r\n if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }\r\n if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }\r\n if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }\r\n if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }\r\n if (t[2]) _.ops.pop();\r\n _.trys.pop(); continue;\r\n }\r\n op = body.call(thisArg, _);\r\n } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }\r\n if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };\r\n }\r\n}\r\n\r\nexport var __createBinding = Object.create ? (function(o, m, k, k2) {\r\n if (k2 === undefined) k2 = k;\r\n var desc = Object.getOwnPropertyDescriptor(m, k);\r\n if (!desc || (\"get\" in desc ? !m.__esModule : desc.writable || desc.configurable)) {\r\n desc = { enumerable: true, get: function() { return m[k]; } };\r\n }\r\n Object.defineProperty(o, k2, desc);\r\n}) : (function(o, m, k, k2) {\r\n if (k2 === undefined) k2 = k;\r\n o[k2] = m[k];\r\n});\r\n\r\nexport function __exportStar(m, o) {\r\n for (var p in m) if (p !== \"default\" && !Object.prototype.hasOwnProperty.call(o, p)) __createBinding(o, m, p);\r\n}\r\n\r\nexport function __values(o) {\r\n var s = typeof Symbol === \"function\" && Symbol.iterator, m = s && o[s], i = 0;\r\n if (m) return m.call(o);\r\n if (o && typeof o.length === \"number\") return {\r\n next: function () {\r\n if (o && i >= o.length) o = void 0;\r\n return { value: o && o[i++], done: !o };\r\n }\r\n };\r\n throw new TypeError(s ? \"Object is not iterable.\" : \"Symbol.iterator is not defined.\");\r\n}\r\n\r\nexport function __read(o, n) {\r\n var m = typeof Symbol === \"function\" && o[Symbol.iterator];\r\n if (!m) return o;\r\n var i = m.call(o), r, ar = [], e;\r\n try {\r\n while ((n === void 0 || n-- > 0) && !(r = i.next()).done) ar.push(r.value);\r\n }\r\n catch (error) { e = { error: error }; }\r\n finally {\r\n try {\r\n if (r && !r.done && (m = i[\"return\"])) m.call(i);\r\n }\r\n finally { if (e) throw e.error; }\r\n }\r\n return ar;\r\n}\r\n\r\n/** @deprecated */\r\nexport function __spread() {\r\n for (var ar = [], i = 0; i < arguments.length; i++)\r\n ar = ar.concat(__read(arguments[i]));\r\n return ar;\r\n}\r\n\r\n/** @deprecated */\r\nexport function __spreadArrays() {\r\n for (var s = 0, i = 0, il = arguments.length; i < il; i++) s += arguments[i].length;\r\n for (var r = Array(s), k = 0, i = 0; i < il; i++)\r\n for (var a = arguments[i], j = 0, jl = a.length; j < jl; j++, k++)\r\n r[k] = a[j];\r\n return r;\r\n}\r\n\r\nexport function __spreadArray(to, from, pack) {\r\n if (pack || arguments.length === 2) for (var i = 0, l = from.length, ar; i < l; i++) {\r\n if (ar || !(i in from)) {\r\n if (!ar) ar = Array.prototype.slice.call(from, 0, i);\r\n ar[i] = from[i];\r\n }\r\n }\r\n return to.concat(ar || Array.prototype.slice.call(from));\r\n}\r\n\r\nexport function __await(v) {\r\n return this instanceof __await ? (this.v = v, this) : new __await(v);\r\n}\r\n\r\nexport function __asyncGenerator(thisArg, _arguments, generator) {\r\n if (!Symbol.asyncIterator) throw new TypeError(\"Symbol.asyncIterator is not defined.\");\r\n var g = generator.apply(thisArg, _arguments || []), i, q = [];\r\n return i = Object.create((typeof AsyncIterator === \"function\" ? AsyncIterator : Object).prototype), verb(\"next\"), verb(\"throw\"), verb(\"return\", awaitReturn), i[Symbol.asyncIterator] = function () { return this; }, i;\r\n function awaitReturn(f) { return function (v) { return Promise.resolve(v).then(f, reject); }; }\r\n function verb(n, f) { if (g[n]) { i[n] = function (v) { return new Promise(function (a, b) { q.push([n, v, a, b]) > 1 || resume(n, v); }); }; if (f) i[n] = f(i[n]); } }\r\n function resume(n, v) { try { step(g[n](v)); } catch (e) { settle(q[0][3], e); } }\r\n function step(r) { r.value instanceof __await ? Promise.resolve(r.value.v).then(fulfill, reject) : settle(q[0][2], r); }\r\n function fulfill(value) { resume(\"next\", value); }\r\n function reject(value) { resume(\"throw\", value); }\r\n function settle(f, v) { if (f(v), q.shift(), q.length) resume(q[0][0], q[0][1]); }\r\n}\r\n\r\nexport function __asyncDelegator(o) {\r\n var i, p;\r\n return i = {}, verb(\"next\"), verb(\"throw\", function (e) { throw e; }), verb(\"return\"), i[Symbol.iterator] = function () { return this; }, i;\r\n function verb(n, f) { i[n] = o[n] ? function (v) { return (p = !p) ? { value: __await(o[n](v)), done: false } : f ? f(v) : v; } : f; }\r\n}\r\n\r\nexport function __asyncValues(o) {\r\n if (!Symbol.asyncIterator) throw new TypeError(\"Symbol.asyncIterator is not defined.\");\r\n var m = o[Symbol.asyncIterator], i;\r\n return m ? m.call(o) : (o = typeof __values === \"function\" ? __values(o) : o[Symbol.iterator](), i = {}, verb(\"next\"), verb(\"throw\"), verb(\"return\"), i[Symbol.asyncIterator] = function () { return this; }, i);\r\n function verb(n) { i[n] = o[n] && function (v) { return new Promise(function (resolve, reject) { v = o[n](v), settle(resolve, reject, v.done, v.value); }); }; }\r\n function settle(resolve, reject, d, v) { Promise.resolve(v).then(function(v) { resolve({ value: v, done: d }); }, reject); }\r\n}\r\n\r\nexport function __makeTemplateObject(cooked, raw) {\r\n if (Object.defineProperty) { Object.defineProperty(cooked, \"raw\", { value: raw }); } else { cooked.raw = raw; }\r\n return cooked;\r\n};\r\n\r\nvar __setModuleDefault = Object.create ? (function(o, v) {\r\n Object.defineProperty(o, \"default\", { enumerable: true, value: v });\r\n}) : function(o, v) {\r\n o[\"default\"] = v;\r\n};\r\n\r\nvar ownKeys = function(o) {\r\n ownKeys = Object.getOwnPropertyNames || function (o) {\r\n var ar = [];\r\n for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;\r\n return ar;\r\n };\r\n return ownKeys(o);\r\n};\r\n\r\nexport function __importStar(mod) {\r\n if (mod && mod.__esModule) return mod;\r\n var result = {};\r\n if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== \"default\") __createBinding(result, mod, k[i]);\r\n __setModuleDefault(result, mod);\r\n return result;\r\n}\r\n\r\nexport function __importDefault(mod) {\r\n return (mod && mod.__esModule) ? mod : { default: mod };\r\n}\r\n\r\nexport function __classPrivateFieldGet(receiver, state, kind, f) {\r\n if (kind === \"a\" && !f) throw new TypeError(\"Private accessor was defined without a getter\");\r\n if (typeof state === \"function\" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError(\"Cannot read private member from an object whose class did not declare it\");\r\n return kind === \"m\" ? f : kind === \"a\" ? f.call(receiver) : f ? f.value : state.get(receiver);\r\n}\r\n\r\nexport function __classPrivateFieldSet(receiver, state, value, kind, f) {\r\n if (kind === \"m\") throw new TypeError(\"Private method is not writable\");\r\n if (kind === \"a\" && !f) throw new TypeError(\"Private accessor was defined without a setter\");\r\n if (typeof state === \"function\" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError(\"Cannot write private member to an object whose class did not declare it\");\r\n return (kind === \"a\" ? f.call(receiver, value) : f ? f.value = value : state.set(receiver, value)), value;\r\n}\r\n\r\nexport function __classPrivateFieldIn(state, receiver) {\r\n if (receiver === null || (typeof receiver !== \"object\" && typeof receiver !== \"function\")) throw new TypeError(\"Cannot use 'in' operator on non-object\");\r\n return typeof state === \"function\" ? receiver === state : state.has(receiver);\r\n}\r\n\r\nexport function __addDisposableResource(env, value, async) {\r\n if (value !== null && value !== void 0) {\r\n if (typeof value !== \"object\" && typeof value !== \"function\") throw new TypeError(\"Object expected.\");\r\n var dispose, inner;\r\n if (async) {\r\n if (!Symbol.asyncDispose) throw new TypeError(\"Symbol.asyncDispose is not defined.\");\r\n dispose = value[Symbol.asyncDispose];\r\n }\r\n if (dispose === void 0) {\r\n if (!Symbol.dispose) throw new TypeError(\"Symbol.dispose is not defined.\");\r\n dispose = value[Symbol.dispose];\r\n if (async) inner = dispose;\r\n }\r\n if (typeof dispose !== \"function\") throw new TypeError(\"Object not disposable.\");\r\n if (inner) dispose = function() { try { inner.call(this); } catch (e) { return Promise.reject(e); } };\r\n env.stack.push({ value: value, dispose: dispose, async: async });\r\n }\r\n else if (async) {\r\n env.stack.push({ async: true });\r\n }\r\n return value;\r\n\r\n}\r\n\r\nvar _SuppressedError = typeof SuppressedError === \"function\" ? SuppressedError : function (error, suppressed, message) {\r\n var e = new Error(message);\r\n return e.name = \"SuppressedError\", e.error = error, e.suppressed = suppressed, e;\r\n};\r\n\r\nexport function __disposeResources(env) {\r\n function fail(e) {\r\n env.error = env.hasError ? new _SuppressedError(e, env.error, \"An error was suppressed during disposal.\") : e;\r\n env.hasError = true;\r\n }\r\n var r, s = 0;\r\n function next() {\r\n while (r = env.stack.pop()) {\r\n try {\r\n if (!r.async && s === 1) return s = 0, env.stack.push(r), Promise.resolve().then(next);\r\n if (r.dispose) {\r\n var result = r.dispose.call(r.value);\r\n if (r.async) return s |= 2, Promise.resolve(result).then(next, function(e) { fail(e); return next(); });\r\n }\r\n else s |= 1;\r\n }\r\n catch (e) {\r\n fail(e);\r\n }\r\n }\r\n if (s === 1) return env.hasError ? Promise.reject(env.error) : Promise.resolve();\r\n if (env.hasError) throw env.error;\r\n }\r\n return next();\r\n}\r\n\r\nexport function __rewriteRelativeImportExtension(path, preserveJsx) {\r\n if (typeof path === \"string\" && /^\\.\\.?\\//.test(path)) {\r\n return path.replace(/\\.(tsx)$|((?:\\.d)?)((?:\\.[^./]+?)?)\\.([cm]?)ts$/i, function (m, tsx, d, ext, cm) {\r\n return tsx ? preserveJsx ? \".jsx\" : \".js\" : d && (!ext || !cm) ? m : (d + ext + \".\" + cm.toLowerCase() + \"js\");\r\n });\r\n }\r\n return path;\r\n}\r\n\r\nexport default {\r\n __extends: __extends,\r\n __assign: __assign,\r\n __rest: __rest,\r\n __decorate: __decorate,\r\n __param: __param,\r\n __esDecorate: __esDecorate,\r\n __runInitializers: __runInitializers,\r\n __propKey: __propKey,\r\n __setFunctionName: __setFunctionName,\r\n __metadata: __metadata,\r\n __awaiter: __awaiter,\r\n __generator: __generator,\r\n __createBinding: __createBinding,\r\n __exportStar: __exportStar,\r\n __values: __values,\r\n __read: __read,\r\n __spread: __spread,\r\n __spreadArrays: __spreadArrays,\r\n __spreadArray: __spreadArray,\r\n __await: __await,\r\n __asyncGenerator: __asyncGenerator,\r\n __asyncDelegator: __asyncDelegator,\r\n __asyncValues: __asyncValues,\r\n __makeTemplateObject: __makeTemplateObject,\r\n __importStar: __importStar,\r\n __importDefault: __importDefault,\r\n __classPrivateFieldGet: __classPrivateFieldGet,\r\n __classPrivateFieldSet: __classPrivateFieldSet,\r\n __classPrivateFieldIn: __classPrivateFieldIn,\r\n __addDisposableResource: __addDisposableResource,\r\n __disposeResources: __disposeResources,\r\n __rewriteRelativeImportExtension: __rewriteRelativeImportExtension,\r\n};\r\n","import type { SignerConfig } from '../types/signers';\n\nfunction sanitizeErrorMessage(status: number, text: string): string {\n // Sanitize error messages to avoid leaking sensitive server information\n let errorMessage = `Emblem signer error ${status}`;\n\n if (status >= 500) {\n errorMessage += ': Internal server error';\n } else if (status === 401 || status === 403) {\n errorMessage += ': Authentication failed';\n } else if (status === 404) {\n errorMessage += ': Resource not found';\n } else if (status === 405) {\n errorMessage += ': Method not allowed';\n } else if (text) {\n // For 4xx client errors, include limited error details\n errorMessage += `: ${text.substring(0, 200)}`; // Limit to 200 chars\n }\n\n return errorMessage;\n}\n\nasync function resolveAuthHeaders(config: SignerConfig): Promise<Record<string, string>> {\n // Priority: custom headers -> jwt/getJwt/sdk -> apiKey (deprecated)\n if (typeof config.getAuthHeaders === 'function') {\n const h = await config.getAuthHeaders();\n if (h && typeof h === 'object') return h;\n }\n\n const tok =\n config.jwt ??\n (typeof config.getJwt === 'function' ? await config.getJwt() : undefined) ??\n config.sdk?.getSession()?.authToken ??\n undefined;\n\n if (tok) {\n return { Authorization: `Bearer ${tok}` };\n }\n\n // apiKey is deprecated but still supported as fallback\n if (config.apiKey) {\n return { 'x-api-key': config.apiKey };\n }\n\n throw new Error(\n 'No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey'\n );\n}\n\nexport async function emblemPost<T = unknown>(\n path: string,\n body: unknown,\n config: SignerConfig\n): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'POST',\n headers: {\n 'content-type': 'application/json',\n ...authHeaders,\n },\n body: JSON.stringify(body, (_key: string, value: unknown) =>\n typeof value === 'bigint' ? value.toString() : value\n ),\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n\nexport async function emblemGet<T = unknown>(path: string, config: SignerConfig): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'GET',\n headers: authHeaders,\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n","import type { SignerConfig } from '../types/signers';\n\n/**\n * Environment detection utilities for warning about unsafe usage patterns\n */\n\n/**\n * Detect if code is running in a browser environment\n */\nexport function isBrowserEnvironment(): boolean {\n return typeof window !== 'undefined' && typeof document !== 'undefined';\n}\n\n/**\n * Check if we're in a Node.js server environment\n */\nexport function isNodeEnvironment(): boolean {\n return (\n typeof process !== 'undefined' && process.versions != null && process.versions.node != null\n );\n}\n\n/**\n * Validate baseUrl format\n */\nexport function validateBaseUrl(baseUrl?: string): void {\n if (!baseUrl) return; // undefined is ok, will use default\n\n if (!baseUrl.startsWith('http://') && !baseUrl.startsWith('https://')) {\n throw new Error('baseUrl must be a valid HTTP(S) URL');\n }\n\n // Warn about http (not https)\n if (\n baseUrl.startsWith('http://') &&\n !baseUrl.includes('localhost') &&\n !baseUrl.includes('127.0.0.1')\n ) {\n console.warn(\n '[Emblem Security Warning] baseUrl uses HTTP instead of HTTPS. This is insecure for production use.'\n );\n }\n}\n\n/**\n * Validate Ethereum address format\n */\nexport function validateEthereumAddress(address: string): void {\n if (!address || typeof address !== 'string') {\n throw new Error('Address is required');\n }\n\n if (!address.startsWith('0x')) {\n throw new Error('Address must start with 0x');\n }\n\n if (!/^0x[0-9a-fA-F]{40}$/.test(address)) {\n throw new Error('Invalid Ethereum address format');\n }\n}\n\n/**\n * Validate vault ID\n */\nexport function validateVaultId(vaultId: string): void {\n if (!vaultId || typeof vaultId !== 'string') {\n throw new Error('vaultId is required');\n }\n\n if (vaultId.trim() === '') {\n throw new Error('vaultId cannot be empty');\n }\n}\n\n/**\n * Safe number conversion with bounds checking\n */\nexport function toSafeNumber(value: unknown, fieldName: string): number {\n const num = Number(value);\n\n if (!Number.isSafeInteger(num)) {\n throw new Error(\n `${fieldName} value ${value} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`\n );\n }\n\n return num;\n}\n\n/**\n * Extended config with security options\n */\nexport interface SignerSecurityConfig extends SignerConfig {\n /**\n * Enable debug logging for security-related checks\n * @default false\n */\n debugSecurity?: boolean;\n}\n\n/**\n * Validate signer configuration\n */\nexport function validateSignerConfig(config: SignerSecurityConfig): void {\n // Validate auth: require at least one method (jwt, getJwt, getAuthHeaders)\n const hasJwt = !!config.jwt;\n const hasGetJwt = typeof config.getJwt === 'function';\n const hasHeaders = typeof config.getAuthHeaders === 'function';\n\n if (!hasJwt && !hasGetJwt && !hasHeaders) {\n throw new Error('Authentication required: provide jwt, getJwt(), or getAuthHeaders()');\n }\n\n // Validate baseUrl if provided\n if (config.baseUrl) {\n validateBaseUrl(config.baseUrl);\n }\n\n // Security audit logging\n if (config.debugSecurity) {\n console.log('[Emblem Security Debug]', {\n environment: isBrowserEnvironment() ? 'browser' : 'node',\n hasBaseUrl: !!config.baseUrl,\n timestamp: new Date().toISOString(),\n });\n }\n}\n","import type { Hex } from '../types/signers';\nimport { toSafeNumber } from './validation';\n\nexport function toHexIfBigInt(v: unknown): unknown {\n return typeof v === 'bigint' ? '0x' + v.toString(16) : v;\n}\n\n/**\n * viem txs sometimes have bigint / hex / optional fields. Ethers serializers\n * accept hex strings for numeric fields. Normalize where helpful.\n */\nexport function normalizeTxForEmblem(tx: Record<string, unknown>): Record<string, unknown> {\n const out: Record<string, unknown> = { ...tx };\n\n if (out.value !== undefined) out.value = toHexIfBigInt(out.value);\n if (out.gas !== undefined) {\n out.gasLimit = toHexIfBigInt(out.gas);\n delete out.gas;\n }\n if (out.gasLimit !== undefined) out.gasLimit = toHexIfBigInt(out.gasLimit);\n if (out.gasPrice !== undefined) out.gasPrice = toHexIfBigInt(out.gasPrice);\n if (out.maxFeePerGas !== undefined) out.maxFeePerGas = toHexIfBigInt(out.maxFeePerGas);\n if (out.maxPriorityFeePerGas !== undefined)\n out.maxPriorityFeePerGas = toHexIfBigInt(out.maxPriorityFeePerGas);\n if (out.nonce !== undefined) out.nonce = toSafeNumber(out.nonce, 'nonce');\n if (out.chainId !== undefined) out.chainId = toSafeNumber(out.chainId, 'chainId');\n\n // Some backends only accept legacy fields; fold EIP-1559 into gasPrice and drop unsupported keys\n if (out.maxFeePerGas !== undefined || out.maxPriorityFeePerGas !== undefined) {\n if (out.gasPrice === undefined && out.maxFeePerGas !== undefined) {\n out.gasPrice = out.maxFeePerGas;\n }\n delete out.maxFeePerGas;\n delete out.maxPriorityFeePerGas;\n }\n\n // Remove fields commonly unsupported by legacy serializers\n delete out.type;\n delete out.accessList;\n delete out.account;\n delete out.chain;\n delete out.from;\n\n return out;\n}\n\nexport function isHexString(value: unknown): value is Hex {\n return typeof value === 'string' && /^0x[0-9a-fA-F]*$/.test(value);\n}\n\nexport function bytesToHex(bytes: ArrayLike<number>): Hex {\n let out = '0x';\n for (let i = 0; i < bytes.length; i++) {\n out += (bytes[i] as number).toString(16).padStart(2, '0');\n }\n return out as Hex;\n}\n","import type { Hex, SignerConfig, SignerVaultInfo } from '../types/signers';\nimport { emblemPost } from './http';\nimport { bytesToHex, normalizeTxForEmblem } from './utils';\nimport { fetchVaultInfo } from './vault';\n\nexport class EmblemWeb3Adapter {\n readonly address: Hex;\n readonly #vaultId: string;\n readonly #config: SignerConfig;\n\n constructor(address: Hex, vaultId: string, config: SignerConfig) {\n this.address = address;\n this.#vaultId = vaultId;\n this.#config = config;\n }\n\n async signMessage(message: string | Uint8Array): Promise<Hex> {\n const payload = typeof message === 'string' ? message : bytesToHex(message);\n const data = await emblemPost<{ signerAddress: string; signature: Hex }>(\n '/sign-eth-message',\n { vaultId: this.#vaultId, message: payload },\n this.#config\n );\n return data.signature;\n }\n\n async signTypedData(\n domain: Record<string, unknown>,\n types: Record<string, unknown>,\n message: Record<string, unknown>\n ): Promise<Hex> {\n const data = await emblemPost<{ signerAddress: string; signature: Hex }>(\n '/sign-typed-message',\n { vaultId: this.#vaultId, domain, types, message },\n this.#config\n );\n return data.signature;\n }\n\n async signTransaction(tx: Record<string, unknown>): Promise<{ rawTransaction: Hex }> {\n const normalized = normalizeTxForEmblem(tx);\n const resp = await emblemPost<{ signedTransaction: Hex }>(\n '/sign-eth-tx',\n { vaultId: this.#vaultId, transaction: normalized },\n this.#config\n );\n return { rawTransaction: resp.signedTransaction };\n }\n}\n\nexport async function toWeb3Adapter(\n config: SignerConfig,\n infoOverride?: SignerVaultInfo\n): Promise<EmblemWeb3Adapter> {\n const info = infoOverride ?? (await fetchVaultInfo(config));\n return new EmblemWeb3Adapter(info.evmAddress, info.vaultId, config);\n}\n","import type { SignerConfig, SignerVaultInfo, Hex } from '../types/signers';\nimport { emblemPost } from './http';\n\nexport async function fetchVaultInfo(config: SignerConfig): Promise<SignerVaultInfo> {\n // Note: The server only supports POST for /vault/info\n const data: Partial<{\n vaultId: string;\n address: string;\n evmAddress: Hex;\n created_by?: string;\n }> = await emblemPost('/vault/info', {}, config);\n\n // Validate required response data (vaultId + evmAddress are required for EVM)\n if (!data || !data.vaultId || !data.evmAddress) {\n throw new Error('Invalid vault info response: missing required fields');\n }\n\n if (!String(data.evmAddress).startsWith('0x')) {\n throw new Error('Invalid evmAddress format in response');\n }\n\n return {\n vaultId: data.vaultId,\n tokenId: data.vaultId,\n address: data.address || '', // Solana address may be absent; keep optional\n evmAddress: data.evmAddress as Hex,\n created_by: data.created_by,\n };\n}\n"],"names":["__classPrivateFieldGet","receiver","state","kind","f","TypeError","has","call","value","get","__classPrivateFieldSet","set","async","emblemPost","path","body","config","baseUrl","authHeaders","getAuthHeaders","h","tok","jwt","getJwt","undefined","sdk","getSession","authToken","Authorization","apiKey","Error","resolveAuthHeaders","res","fetch","method","headers","JSON","stringify","_key","toString","ok","text","catch","status","errorMessage","substring","sanitizeErrorMessage","json","toSafeNumber","fieldName","num","Number","isSafeInteger","MAX_SAFE_INTEGER","toHexIfBigInt","v","SuppressedError","EmblemWeb3Adapter","constructor","address","vaultId","_EmblemWeb3Adapter_vaultId","this","_EmblemWeb3Adapter_config","signMessage","message","payload","bytes","out","i","length","padStart","bytesToHex","signature","signTypedData","domain","types","signTransaction","tx","normalized","gas","gasLimit","gasPrice","maxFeePerGas","maxPriorityFeePerGas","nonce","chainId","type","accessList","account","chain","from","normalizeTxForEmblem","rawTransaction","transaction","signedTransaction","infoOverride","info","data","evmAddress","String","startsWith","tokenId","created_by","fetchVaultInfo"],"mappings":"aA8RO,SAASA,EAAuBC,EAAUC,EAAOC,EAAMC,GAC1D,GAAa,MAATD,IAAiBC,EAAG,MAAM,IAAIC,UAAU,iDAC5C,GAAqB,mBAAVH,EAAuBD,IAAaC,IAAUE,GAAKF,EAAMI,IAAIL,GAAW,MAAM,IAAII,UAAU,4EACvG,MAAgB,MAATF,EAAeC,EAAa,MAATD,EAAeC,EAAEG,KAAKN,GAAYG,EAAIA,EAAEI,MAAQN,EAAMO,IAAIR,EACxF,CAEO,SAASS,EAAuBT,EAAUC,EAAOM,EAAOL,EAAMC,GACjE,GAAa,MAATD,EAAc,MAAM,IAAIE,UAAU,kCACtC,GAAa,MAATF,IAAiBC,EAAG,MAAM,IAAIC,UAAU,iDAC5C,GAAqB,mBAAVH,EAAuBD,IAAaC,IAAUE,GAAKF,EAAMI,IAAIL,GAAW,MAAM,IAAII,UAAU,2EACvG,MAAiB,MAATF,EAAeC,EAAEG,KAAKN,EAAUO,GAASJ,EAAIA,EAAEI,MAAQA,EAAQN,EAAMS,IAAIV,EAAUO,GAASA,CACxG,CCxPOI,eAAeC,EACpBC,EACAC,EACAC,GAEA,MAAMC,EAAUD,EAAOC,SAAW,6BAC5BC,QAjCRN,eAAkCI,GAEhC,GAAqC,mBAA1BA,EAAOG,eAA+B,CAC/C,MAAMC,QAAUJ,EAAOG,iBACvB,GAAIC,GAAkB,iBAANA,EAAgB,OAAOA,CACxC,CAED,MAAMC,EACJL,EAAOM,MACmB,mBAAlBN,EAAOO,aAA8BP,EAAOO,cAAWC,IAC/DR,EAAOS,KAAKC,cAAcC,gBAC1BH,EAEF,GAAIH,EACF,MAAO,CAAEO,cAAe,UAAUP,KAIpC,GAAIL,EAAOa,OACT,MAAO,CAAE,YAAab,EAAOa,QAG/B,MAAM,IAAIC,MACR,uFAEJ,CAQ4BC,CAAmBf,GACvCgB,QAAYC,MAAM,GAAGhB,IAAUH,IAAQ,CAC3CoB,OAAQ,OACRC,QAAS,CACP,eAAgB,sBACbjB,GAELH,KAAMqB,KAAKC,UAAUtB,EAAM,CAACuB,EAAc9B,IACvB,iBAAVA,EAAqBA,EAAM+B,WAAa/B,KAInD,IAAKwB,EAAIQ,GAAI,CACX,MAAMC,QAAaT,EAAIS,OAAOC,MAAM,IAAM,IAC1C,MAAM,IAAIZ,MAnEd,SAA8Ba,EAAgBF,GAE5C,IAAIG,EAAe,uBAAuBD,IAe1C,OAbIA,GAAU,IACZC,GAAgB,0BACI,MAAXD,GAA6B,MAAXA,EAC3BC,GAAgB,0BACI,MAAXD,EACTC,GAAgB,uBACI,MAAXD,EACTC,GAAgB,uBACPH,IAETG,GAAgB,KAAKH,EAAKI,UAAU,EAAG,QAGlCD,CACT,CAiDoBE,CAAqBd,EAAIW,OAAQF,GAClD,CAED,OAAOT,EAAIe,MACb,CCIgB,SAAAC,EAAaxC,EAAgByC,GAC3C,MAAMC,EAAMC,OAAO3C,GAEnB,IAAK2C,OAAOC,cAAcF,GACxB,MAAM,IAAIpB,MACR,GAAGmB,WAAmBzC,sCAA0C2C,OAAOE,qBAI3E,OAAOH,CACT,CCpFM,SAAUI,EAAcC,GAC5B,MAAoB,iBAANA,EAAiB,KAAOA,EAAEhB,SAAS,IAAMgB,CACzD,gEHmUkD,mBAApBC,iBAAiCA,sBInUlDC,EAKX,WAAAC,CAAYC,EAAcC,EAAiB5C,GAHlC6C,EAAiBlD,IAAAmD,UAAA,GACjBC,EAAsBpD,IAAAmD,UAAA,GAG7BA,KAAKH,QAAUA,EACfjD,EAAAoD,KAAID,EAAYD,EAAO,KACvBlD,EAAAoD,KAAIC,EAAW/C,EAAM,IACtB,CAED,iBAAMgD,CAAYC,GAChB,MAAMC,EAA6B,iBAAZD,EAAuBA,EDiC5C,SAAqBE,GACzB,IAAIC,EAAM,KACV,IAAK,IAAIC,EAAI,EAAGA,EAAIF,EAAMG,OAAQD,IAChCD,GAAQD,EAAME,GAAc9B,SAAS,IAAIgC,SAAS,EAAG,KAEvD,OAAOH,CACT,CCvC4DI,CAAWP,GAMnE,aALmBpD,EACjB,oBACA,CAAE+C,QAAS5D,EAAA8D,KAAaD,EAAA,KAAEI,QAASC,GACnClE,EAAA8D,KAAYC,EAAA,OAEFU,SACb,CAED,mBAAMC,CACJC,EACAC,EACAX,GAOA,aALmBpD,EACjB,sBACA,CAAE+C,QAAS5D,EAAA8D,YAAea,SAAQC,QAAOX,WACzCjE,EAAA8D,KAAYC,EAAA,OAEFU,SACb,CAED,qBAAMI,CAAgBC,GACpB,MAAMC,ED7BJ,SAA+BD,GACnC,MAAMV,EAA+B,IAAKU,GA+B1C,YA7BkBtD,IAAd4C,EAAI5D,QAAqB4D,EAAI5D,MAAQ8C,EAAcc,EAAI5D,aAC3CgB,IAAZ4C,EAAIY,MACNZ,EAAIa,SAAW3B,EAAcc,EAAIY,YAC1BZ,EAAIY,UAEQxD,IAAjB4C,EAAIa,WAAwBb,EAAIa,SAAW3B,EAAcc,EAAIa,gBAC5CzD,IAAjB4C,EAAIc,WAAwBd,EAAIc,SAAW5B,EAAcc,EAAIc,gBACxC1D,IAArB4C,EAAIe,eAA4Bf,EAAIe,aAAe7B,EAAcc,EAAIe,oBACxC3D,IAA7B4C,EAAIgB,uBACNhB,EAAIgB,qBAAuB9B,EAAcc,EAAIgB,4BAC7B5D,IAAd4C,EAAIiB,QAAqBjB,EAAIiB,MAAQrC,EAAaoB,EAAIiB,MAAO,eAC7C7D,IAAhB4C,EAAIkB,UAAuBlB,EAAIkB,QAAUtC,EAAaoB,EAAIkB,QAAS,iBAG9C9D,IAArB4C,EAAIe,mBAA2D3D,IAA7B4C,EAAIgB,4BACnB5D,IAAjB4C,EAAIc,eAA+C1D,IAArB4C,EAAIe,eACpCf,EAAIc,SAAWd,EAAIe,qBAEdf,EAAIe,oBACJf,EAAIgB,6BAINhB,EAAImB,YACJnB,EAAIoB,kBACJpB,EAAIqB,eACJrB,EAAIsB,aACJtB,EAAIuB,KAEJvB,CACT,CCJuBwB,CAAqBd,GAMxC,MAAO,CAAEe,sBALUhF,EACjB,eACA,CAAE+C,QAAS5D,EAAA8D,KAAaD,EAAA,KAAEiC,YAAaf,GACvC/E,EAAA8D,KAAYC,EAAA,OAEgBgC,kBAC/B,gFAGInF,eACLI,EACAgF,GAEA,MAAMC,EAAOD,SCnDRpF,eAA8BI,GAEnC,MAAMkF,QAKKrF,EAAW,cAAe,CAAE,EAAEG,GAGzC,IAAKkF,IAASA,EAAKtC,UAAYsC,EAAKC,WAClC,MAAM,IAAIrE,MAAM,wDAGlB,IAAKsE,OAAOF,EAAKC,YAAYE,WAAW,MACtC,MAAM,IAAIvE,MAAM,yCAGlB,MAAO,CACL8B,QAASsC,EAAKtC,QACd0C,QAASJ,EAAKtC,QACdD,QAASuC,EAAKvC,SAAW,GACzBwC,WAAYD,EAAKC,WACjBI,WAAYL,EAAKK,WAErB,CD0BsCC,CAAexF,GACnD,OAAO,IAAIyC,EAAkBwC,EAAKE,WAAYF,EAAKrC,QAAS5C,EAC9D"}
package/dist/signers/web3.mjs ADDED
@@ -0,0 +1,2 @@
1
+ function e(e,t,r,a){if("a"===r&&!a)throw new TypeError("Private accessor was defined without a getter");if("function"==typeof t?e!==t||!a:!t.has(e))throw new TypeError("Cannot read private member from an object whose class did not declare it");return"m"===r?a:"a"===r?a.call(e):a?a.value:t.get(e)}function t(e,t,r,a,i){if("m"===a)throw new TypeError("Private method is not writable");if("a"===a&&!i)throw new TypeError("Private accessor was defined without a setter");if("function"==typeof t?e!==t||!i:!t.has(e))throw new TypeError("Cannot write private member to an object whose class did not declare it");return"a"===a?i.call(e,r):i?i.value=r:t.set(e,r),r}async function r(e,t,r){const a=r.baseUrl??"https://api.emblemvault.ai",i=await async function(e){if("function"==typeof e.getAuthHeaders){const t=await e.getAuthHeaders();if(t&&"object"==typeof t)return t}const t=e.jwt??("function"==typeof e.getJwt?await e.getJwt():void 0)??e.sdk?.getSession()?.authToken??void 0;if(t)return{Authorization:`Bearer ${t}`};if(e.apiKey)return{"x-api-key":e.apiKey};throw new Error("No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey")}(r),n=await fetch(`${a}${e}`,{method:"POST",headers:{"content-type":"application/json",...i},body:JSON.stringify(t,(e,t)=>"bigint"==typeof t?t.toString():t)});if(!n.ok){const e=await n.text().catch(()=>"");throw new Error(function(e,t){let r=`Emblem signer error ${e}`;return e>=500?r+=": Internal server error":401===e||403===e?r+=": Authentication failed":404===e?r+=": Resource not found":405===e?r+=": Method not allowed":t&&(r+=`: ${t.substring(0,200)}`),r}(n.status,e))}return n.json()}function a(e,t){const r=Number(e);if(!Number.isSafeInteger(r))throw new Error(`${t} value ${e} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`);return r}function i(e){return"bigint"==typeof e?"0x"+e.toString(16):e}var n,s;"function"==typeof SuppressedError&&SuppressedError;class o{constructor(e,r,a){n.set(this,void 0),s.set(this,void 0),this.address=e,t(this,n,r,"f"),t(this,s,a,"f")}async signMessage(t){const a="string"==typeof t?t:function(e){let t="0x";for(let r=0;r<e.length;r++)t+=e[r].toString(16).padStart(2,"0");return t}(t);return(await r("/sign-eth-message",{vaultId:e(this,n,"f"),message:a},e(this,s,"f"))).signature}async signTypedData(t,a,i){return(await r("/sign-typed-message",{vaultId:e(this,n,"f"),domain:t,types:a,message:i},e(this,s,"f"))).signature}async signTransaction(t){const o=function(e){const t={...e};return void 0!==t.value&&(t.value=i(t.value)),void 0!==t.gas&&(t.gasLimit=i(t.gas),delete t.gas),void 0!==t.gasLimit&&(t.gasLimit=i(t.gasLimit)),void 0!==t.gasPrice&&(t.gasPrice=i(t.gasPrice)),void 0!==t.maxFeePerGas&&(t.maxFeePerGas=i(t.maxFeePerGas)),void 0!==t.maxPriorityFeePerGas&&(t.maxPriorityFeePerGas=i(t.maxPriorityFeePerGas)),void 0!==t.nonce&&(t.nonce=a(t.nonce,"nonce")),void 0!==t.chainId&&(t.chainId=a(t.chainId,"chainId")),void 0===t.maxFeePerGas&&void 0===t.maxPriorityFeePerGas||(void 0===t.gasPrice&&void 0!==t.maxFeePerGas&&(t.gasPrice=t.maxFeePerGas),delete t.maxFeePerGas,delete t.maxPriorityFeePerGas),delete t.type,delete t.accessList,delete t.account,delete t.chain,delete t.from,t}(t);return{rawTransaction:(await r("/sign-eth-tx",{vaultId:e(this,n,"f"),transaction:o},e(this,s,"f"))).signedTransaction}}}async function d(e,t){const a=t??await async function(e){const t=await r("/vault/info",{},e);if(!t||!t.vaultId||!t.evmAddress)throw new Error("Invalid vault info response: missing required fields");if(!String(t.evmAddress).startsWith("0x"))throw new Error("Invalid evmAddress format in response");return{vaultId:t.vaultId,tokenId:t.vaultId,address:t.address||"",evmAddress:t.evmAddress,created_by:t.created_by}}(e);return new o(a.evmAddress,a.vaultId,e)}n=new WeakMap,s=new WeakMap;export{o as EmblemWeb3Adapter,d as toWeb3Adapter};
2
+ //# sourceMappingURL=web3.mjs.map
package/dist/signers/web3.mjs.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"web3.mjs","sources":["../../node_modules/tslib/tslib.es6.js","../../src/signers/http.ts","../../src/signers/validation.ts","../../src/signers/utils.ts","../../src/signers/web3.ts","../../src/signers/vault.ts"],"sourcesContent":["/******************************************************************************\r\nCopyright (c) Microsoft Corporation.\r\n\r\nPermission to use, copy, modify, and/or distribute this software for any\r\npurpose with or without fee is hereby granted.\r\n\r\nTHE SOFTWARE IS PROVIDED \"AS IS\" AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH\r\nREGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY\r\nAND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT,\r\nINDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM\r\nLOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR\r\nOTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR\r\nPERFORMANCE OF THIS SOFTWARE.\r\n***************************************************************************** */\r\n/* global Reflect, Promise, SuppressedError, Symbol, Iterator */\r\n\r\nvar extendStatics = function(d, b) {\r\n extendStatics = Object.setPrototypeOf ||\r\n ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||\r\n function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };\r\n return extendStatics(d, b);\r\n};\r\n\r\nexport function __extends(d, b) {\r\n if (typeof b !== \"function\" && b !== null)\r\n throw new TypeError(\"Class extends value \" + String(b) + \" is not a constructor or null\");\r\n extendStatics(d, b);\r\n function __() { this.constructor = d; }\r\n d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());\r\n}\r\n\r\nexport var __assign = function() {\r\n __assign = Object.assign || function __assign(t) {\r\n for (var s, i = 1, n = arguments.length; i < n; i++) {\r\n s = arguments[i];\r\n for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p)) t[p] = s[p];\r\n }\r\n return t;\r\n }\r\n return __assign.apply(this, arguments);\r\n}\r\n\r\nexport function __rest(s, e) {\r\n var t = {};\r\n for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)\r\n t[p] = s[p];\r\n if (s != null && typeof Object.getOwnPropertySymbols === \"function\")\r\n for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {\r\n if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))\r\n t[p[i]] = s[p[i]];\r\n }\r\n return t;\r\n}\r\n\r\nexport function __decorate(decorators, target, key, desc) {\r\n var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;\r\n if (typeof Reflect === \"object\" && typeof Reflect.decorate === \"function\") r = Reflect.decorate(decorators, target, key, desc);\r\n else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;\r\n return c > 3 && r && Object.defineProperty(target, key, r), r;\r\n}\r\n\r\nexport function __param(paramIndex, decorator) {\r\n return function (target, key) { decorator(target, key, paramIndex); }\r\n}\r\n\r\nexport function __esDecorate(ctor, descriptorIn, decorators, contextIn, initializers, extraInitializers) {\r\n function accept(f) { if (f !== void 0 && typeof f !== \"function\") throw new TypeError(\"Function expected\"); return f; }\r\n var kind = contextIn.kind, key = kind === \"getter\" ? \"get\" : kind === \"setter\" ? \"set\" : \"value\";\r\n var target = !descriptorIn && ctor ? contextIn[\"static\"] ? ctor : ctor.prototype : null;\r\n var descriptor = descriptorIn || (target ? Object.getOwnPropertyDescriptor(target, contextIn.name) : {});\r\n var _, done = false;\r\n for (var i = decorators.length - 1; i >= 0; i--) {\r\n var context = {};\r\n for (var p in contextIn) context[p] = p === \"access\" ? {} : contextIn[p];\r\n for (var p in contextIn.access) context.access[p] = contextIn.access[p];\r\n context.addInitializer = function (f) { if (done) throw new TypeError(\"Cannot add initializers after decoration has completed\"); extraInitializers.push(accept(f || null)); };\r\n var result = (0, decorators[i])(kind === \"accessor\" ? { get: descriptor.get, set: descriptor.set } : descriptor[key], context);\r\n if (kind === \"accessor\") {\r\n if (result === void 0) continue;\r\n if (result === null || typeof result !== \"object\") throw new TypeError(\"Object expected\");\r\n if (_ = accept(result.get)) descriptor.get = _;\r\n if (_ = accept(result.set)) descriptor.set = _;\r\n if (_ = accept(result.init)) initializers.unshift(_);\r\n }\r\n else if (_ = accept(result)) {\r\n if (kind === \"field\") initializers.unshift(_);\r\n else descriptor[key] = _;\r\n }\r\n }\r\n if (target) Object.defineProperty(target, contextIn.name, descriptor);\r\n done = true;\r\n};\r\n\r\nexport function __runInitializers(thisArg, initializers, value) {\r\n var useValue = arguments.length > 2;\r\n for (var i = 0; i < initializers.length; i++) {\r\n value = useValue ? initializers[i].call(thisArg, value) : initializers[i].call(thisArg);\r\n }\r\n return useValue ? value : void 0;\r\n};\r\n\r\nexport function __propKey(x) {\r\n return typeof x === \"symbol\" ? x : \"\".concat(x);\r\n};\r\n\r\nexport function __setFunctionName(f, name, prefix) {\r\n if (typeof name === \"symbol\") name = name.description ? \"[\".concat(name.description, \"]\") : \"\";\r\n return Object.defineProperty(f, \"name\", { configurable: true, value: prefix ? \"\".concat(prefix, \" \", name) : name });\r\n};\r\n\r\nexport function __metadata(metadataKey, metadataValue) {\r\n if (typeof Reflect === \"object\" && typeof Reflect.metadata === \"function\") return Reflect.metadata(metadataKey, metadataValue);\r\n}\r\n\r\nexport function __awaiter(thisArg, _arguments, P, generator) {\r\n function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }\r\n return new (P || (P = Promise))(function (resolve, reject) {\r\n function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }\r\n function rejected(value) { try { step(generator[\"throw\"](value)); } catch (e) { reject(e); } }\r\n function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }\r\n step((generator = generator.apply(thisArg, _arguments || [])).next());\r\n });\r\n}\r\n\r\nexport function __generator(thisArg, body) {\r\n var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === \"function\" ? Iterator : Object).prototype);\r\n return g.next = verb(0), g[\"throw\"] = verb(1), g[\"return\"] = verb(2), typeof Symbol === \"function\" && (g[Symbol.iterator] = function() { return this; }), g;\r\n function verb(n) { return function (v) { return step([n, v]); }; }\r\n function step(op) {\r\n if (f) throw new TypeError(\"Generator is already executing.\");\r\n while (g && (g = 0, op[0] && (_ = 0)), _) try {\r\n if (f = 1, y && (t = op[0] & 2 ? y[\"return\"] : op[0] ? y[\"throw\"] || ((t = y[\"return\"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;\r\n if (y = 0, t) op = [op[0] & 2, t.value];\r\n switch (op[0]) {\r\n case 0: case 1: t = op; break;\r\n case 4: _.label++; return { value: op[1], done: false };\r\n case 5: _.label++; y = op[1]; op = [0]; continue;\r\n case 7: op = _.ops.pop(); _.trys.pop(); continue;\r\n default:\r\n if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }\r\n if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }\r\n if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }\r\n if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }\r\n if (t[2]) _.ops.pop();\r\n _.trys.pop(); continue;\r\n }\r\n op = body.call(thisArg, _);\r\n } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }\r\n if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };\r\n }\r\n}\r\n\r\nexport var __createBinding = Object.create ? (function(o, m, k, k2) {\r\n if (k2 === undefined) k2 = k;\r\n var desc = Object.getOwnPropertyDescriptor(m, k);\r\n if (!desc || (\"get\" in desc ? !m.__esModule : desc.writable || desc.configurable)) {\r\n desc = { enumerable: true, get: function() { return m[k]; } };\r\n }\r\n Object.defineProperty(o, k2, desc);\r\n}) : (function(o, m, k, k2) {\r\n if (k2 === undefined) k2 = k;\r\n o[k2] = m[k];\r\n});\r\n\r\nexport function __exportStar(m, o) {\r\n for (var p in m) if (p !== \"default\" && !Object.prototype.hasOwnProperty.call(o, p)) __createBinding(o, m, p);\r\n}\r\n\r\nexport function __values(o) {\r\n var s = typeof Symbol === \"function\" && Symbol.iterator, m = s && o[s], i = 0;\r\n if (m) return m.call(o);\r\n if (o && typeof o.length === \"number\") return {\r\n next: function () {\r\n if (o && i >= o.length) o = void 0;\r\n return { value: o && o[i++], done: !o };\r\n }\r\n };\r\n throw new TypeError(s ? \"Object is not iterable.\" : \"Symbol.iterator is not defined.\");\r\n}\r\n\r\nexport function __read(o, n) {\r\n var m = typeof Symbol === \"function\" && o[Symbol.iterator];\r\n if (!m) return o;\r\n var i = m.call(o), r, ar = [], e;\r\n try {\r\n while ((n === void 0 || n-- > 0) && !(r = i.next()).done) ar.push(r.value);\r\n }\r\n catch (error) { e = { error: error }; }\r\n finally {\r\n try {\r\n if (r && !r.done && (m = i[\"return\"])) m.call(i);\r\n }\r\n finally { if (e) throw e.error; }\r\n }\r\n return ar;\r\n}\r\n\r\n/** @deprecated */\r\nexport function __spread() {\r\n for (var ar = [], i = 0; i < arguments.length; i++)\r\n ar = ar.concat(__read(arguments[i]));\r\n return ar;\r\n}\r\n\r\n/** @deprecated */\r\nexport function __spreadArrays() {\r\n for (var s = 0, i = 0, il = arguments.length; i < il; i++) s += arguments[i].length;\r\n for (var r = Array(s), k = 0, i = 0; i < il; i++)\r\n for (var a = arguments[i], j = 0, jl = a.length; j < jl; j++, k++)\r\n r[k] = a[j];\r\n return r;\r\n}\r\n\r\nexport function __spreadArray(to, from, pack) {\r\n if (pack || arguments.length === 2) for (var i = 0, l = from.length, ar; i < l; i++) {\r\n if (ar || !(i in from)) {\r\n if (!ar) ar = Array.prototype.slice.call(from, 0, i);\r\n ar[i] = from[i];\r\n }\r\n }\r\n return to.concat(ar || Array.prototype.slice.call(from));\r\n}\r\n\r\nexport function __await(v) {\r\n return this instanceof __await ? (this.v = v, this) : new __await(v);\r\n}\r\n\r\nexport function __asyncGenerator(thisArg, _arguments, generator) {\r\n if (!Symbol.asyncIterator) throw new TypeError(\"Symbol.asyncIterator is not defined.\");\r\n var g = generator.apply(thisArg, _arguments || []), i, q = [];\r\n return i = Object.create((typeof AsyncIterator === \"function\" ? AsyncIterator : Object).prototype), verb(\"next\"), verb(\"throw\"), verb(\"return\", awaitReturn), i[Symbol.asyncIterator] = function () { return this; }, i;\r\n function awaitReturn(f) { return function (v) { return Promise.resolve(v).then(f, reject); }; }\r\n function verb(n, f) { if (g[n]) { i[n] = function (v) { return new Promise(function (a, b) { q.push([n, v, a, b]) > 1 || resume(n, v); }); }; if (f) i[n] = f(i[n]); } }\r\n function resume(n, v) { try { step(g[n](v)); } catch (e) { settle(q[0][3], e); } }\r\n function step(r) { r.value instanceof __await ? Promise.resolve(r.value.v).then(fulfill, reject) : settle(q[0][2], r); }\r\n function fulfill(value) { resume(\"next\", value); }\r\n function reject(value) { resume(\"throw\", value); }\r\n function settle(f, v) { if (f(v), q.shift(), q.length) resume(q[0][0], q[0][1]); }\r\n}\r\n\r\nexport function __asyncDelegator(o) {\r\n var i, p;\r\n return i = {}, verb(\"next\"), verb(\"throw\", function (e) { throw e; }), verb(\"return\"), i[Symbol.iterator] = function () { return this; }, i;\r\n function verb(n, f) { i[n] = o[n] ? function (v) { return (p = !p) ? { value: __await(o[n](v)), done: false } : f ? f(v) : v; } : f; }\r\n}\r\n\r\nexport function __asyncValues(o) {\r\n if (!Symbol.asyncIterator) throw new TypeError(\"Symbol.asyncIterator is not defined.\");\r\n var m = o[Symbol.asyncIterator], i;\r\n return m ? m.call(o) : (o = typeof __values === \"function\" ? __values(o) : o[Symbol.iterator](), i = {}, verb(\"next\"), verb(\"throw\"), verb(\"return\"), i[Symbol.asyncIterator] = function () { return this; }, i);\r\n function verb(n) { i[n] = o[n] && function (v) { return new Promise(function (resolve, reject) { v = o[n](v), settle(resolve, reject, v.done, v.value); }); }; }\r\n function settle(resolve, reject, d, v) { Promise.resolve(v).then(function(v) { resolve({ value: v, done: d }); }, reject); }\r\n}\r\n\r\nexport function __makeTemplateObject(cooked, raw) {\r\n if (Object.defineProperty) { Object.defineProperty(cooked, \"raw\", { value: raw }); } else { cooked.raw = raw; }\r\n return cooked;\r\n};\r\n\r\nvar __setModuleDefault = Object.create ? (function(o, v) {\r\n Object.defineProperty(o, \"default\", { enumerable: true, value: v });\r\n}) : function(o, v) {\r\n o[\"default\"] = v;\r\n};\r\n\r\nvar ownKeys = function(o) {\r\n ownKeys = Object.getOwnPropertyNames || function (o) {\r\n var ar = [];\r\n for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;\r\n return ar;\r\n };\r\n return ownKeys(o);\r\n};\r\n\r\nexport function __importStar(mod) {\r\n if (mod && mod.__esModule) return mod;\r\n var result = {};\r\n if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== \"default\") __createBinding(result, mod, k[i]);\r\n __setModuleDefault(result, mod);\r\n return result;\r\n}\r\n\r\nexport function __importDefault(mod) {\r\n return (mod && mod.__esModule) ? mod : { default: mod };\r\n}\r\n\r\nexport function __classPrivateFieldGet(receiver, state, kind, f) {\r\n if (kind === \"a\" && !f) throw new TypeError(\"Private accessor was defined without a getter\");\r\n if (typeof state === \"function\" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError(\"Cannot read private member from an object whose class did not declare it\");\r\n return kind === \"m\" ? f : kind === \"a\" ? f.call(receiver) : f ? f.value : state.get(receiver);\r\n}\r\n\r\nexport function __classPrivateFieldSet(receiver, state, value, kind, f) {\r\n if (kind === \"m\") throw new TypeError(\"Private method is not writable\");\r\n if (kind === \"a\" && !f) throw new TypeError(\"Private accessor was defined without a setter\");\r\n if (typeof state === \"function\" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError(\"Cannot write private member to an object whose class did not declare it\");\r\n return (kind === \"a\" ? f.call(receiver, value) : f ? f.value = value : state.set(receiver, value)), value;\r\n}\r\n\r\nexport function __classPrivateFieldIn(state, receiver) {\r\n if (receiver === null || (typeof receiver !== \"object\" && typeof receiver !== \"function\")) throw new TypeError(\"Cannot use 'in' operator on non-object\");\r\n return typeof state === \"function\" ? receiver === state : state.has(receiver);\r\n}\r\n\r\nexport function __addDisposableResource(env, value, async) {\r\n if (value !== null && value !== void 0) {\r\n if (typeof value !== \"object\" && typeof value !== \"function\") throw new TypeError(\"Object expected.\");\r\n var dispose, inner;\r\n if (async) {\r\n if (!Symbol.asyncDispose) throw new TypeError(\"Symbol.asyncDispose is not defined.\");\r\n dispose = value[Symbol.asyncDispose];\r\n }\r\n if (dispose === void 0) {\r\n if (!Symbol.dispose) throw new TypeError(\"Symbol.dispose is not defined.\");\r\n dispose = value[Symbol.dispose];\r\n if (async) inner = dispose;\r\n }\r\n if (typeof dispose !== \"function\") throw new TypeError(\"Object not disposable.\");\r\n if (inner) dispose = function() { try { inner.call(this); } catch (e) { return Promise.reject(e); } };\r\n env.stack.push({ value: value, dispose: dispose, async: async });\r\n }\r\n else if (async) {\r\n env.stack.push({ async: true });\r\n }\r\n return value;\r\n\r\n}\r\n\r\nvar _SuppressedError = typeof SuppressedError === \"function\" ? SuppressedError : function (error, suppressed, message) {\r\n var e = new Error(message);\r\n return e.name = \"SuppressedError\", e.error = error, e.suppressed = suppressed, e;\r\n};\r\n\r\nexport function __disposeResources(env) {\r\n function fail(e) {\r\n env.error = env.hasError ? new _SuppressedError(e, env.error, \"An error was suppressed during disposal.\") : e;\r\n env.hasError = true;\r\n }\r\n var r, s = 0;\r\n function next() {\r\n while (r = env.stack.pop()) {\r\n try {\r\n if (!r.async && s === 1) return s = 0, env.stack.push(r), Promise.resolve().then(next);\r\n if (r.dispose) {\r\n var result = r.dispose.call(r.value);\r\n if (r.async) return s |= 2, Promise.resolve(result).then(next, function(e) { fail(e); return next(); });\r\n }\r\n else s |= 1;\r\n }\r\n catch (e) {\r\n fail(e);\r\n }\r\n }\r\n if (s === 1) return env.hasError ? Promise.reject(env.error) : Promise.resolve();\r\n if (env.hasError) throw env.error;\r\n }\r\n return next();\r\n}\r\n\r\nexport function __rewriteRelativeImportExtension(path, preserveJsx) {\r\n if (typeof path === \"string\" && /^\\.\\.?\\//.test(path)) {\r\n return path.replace(/\\.(tsx)$|((?:\\.d)?)((?:\\.[^./]+?)?)\\.([cm]?)ts$/i, function (m, tsx, d, ext, cm) {\r\n return tsx ? preserveJsx ? \".jsx\" : \".js\" : d && (!ext || !cm) ? m : (d + ext + \".\" + cm.toLowerCase() + \"js\");\r\n });\r\n }\r\n return path;\r\n}\r\n\r\nexport default {\r\n __extends: __extends,\r\n __assign: __assign,\r\n __rest: __rest,\r\n __decorate: __decorate,\r\n __param: __param,\r\n __esDecorate: __esDecorate,\r\n __runInitializers: __runInitializers,\r\n __propKey: __propKey,\r\n __setFunctionName: __setFunctionName,\r\n __metadata: __metadata,\r\n __awaiter: __awaiter,\r\n __generator: __generator,\r\n __createBinding: __createBinding,\r\n __exportStar: __exportStar,\r\n __values: __values,\r\n __read: __read,\r\n __spread: __spread,\r\n __spreadArrays: __spreadArrays,\r\n __spreadArray: __spreadArray,\r\n __await: __await,\r\n __asyncGenerator: __asyncGenerator,\r\n __asyncDelegator: __asyncDelegator,\r\n __asyncValues: __asyncValues,\r\n __makeTemplateObject: __makeTemplateObject,\r\n __importStar: __importStar,\r\n __importDefault: __importDefault,\r\n __classPrivateFieldGet: __classPrivateFieldGet,\r\n __classPrivateFieldSet: __classPrivateFieldSet,\r\n __classPrivateFieldIn: __classPrivateFieldIn,\r\n __addDisposableResource: __addDisposableResource,\r\n __disposeResources: __disposeResources,\r\n __rewriteRelativeImportExtension: __rewriteRelativeImportExtension,\r\n};\r\n","import type { SignerConfig } from '../types/signers';\n\nfunction sanitizeErrorMessage(status: number, text: string): string {\n // Sanitize error messages to avoid leaking sensitive server information\n let errorMessage = `Emblem signer error ${status}`;\n\n if (status >= 500) {\n errorMessage += ': Internal server error';\n } else if (status === 401 || status === 403) {\n errorMessage += ': Authentication failed';\n } else if (status === 404) {\n errorMessage += ': Resource not found';\n } else if (status === 405) {\n errorMessage += ': Method not allowed';\n } else if (text) {\n // For 4xx client errors, include limited error details\n errorMessage += `: ${text.substring(0, 200)}`; // Limit to 200 chars\n }\n\n return errorMessage;\n}\n\nasync function resolveAuthHeaders(config: SignerConfig): Promise<Record<string, string>> {\n // Priority: custom headers -> jwt/getJwt/sdk -> apiKey (deprecated)\n if (typeof config.getAuthHeaders === 'function') {\n const h = await config.getAuthHeaders();\n if (h && typeof h === 'object') return h;\n }\n\n const tok =\n config.jwt ??\n (typeof config.getJwt === 'function' ? await config.getJwt() : undefined) ??\n config.sdk?.getSession()?.authToken ??\n undefined;\n\n if (tok) {\n return { Authorization: `Bearer ${tok}` };\n }\n\n // apiKey is deprecated but still supported as fallback\n if (config.apiKey) {\n return { 'x-api-key': config.apiKey };\n }\n\n throw new Error(\n 'No authentication available: provide jwt, getJwt(), getAuthHeaders(), sdk, or apiKey'\n );\n}\n\nexport async function emblemPost<T = unknown>(\n path: string,\n body: unknown,\n config: SignerConfig\n): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'POST',\n headers: {\n 'content-type': 'application/json',\n ...authHeaders,\n },\n body: JSON.stringify(body, (_key: string, value: unknown) =>\n typeof value === 'bigint' ? value.toString() : value\n ),\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n\nexport async function emblemGet<T = unknown>(path: string, config: SignerConfig): Promise<T> {\n const baseUrl = config.baseUrl ?? 'https://api.emblemvault.ai';\n const authHeaders = await resolveAuthHeaders(config);\n const res = await fetch(`${baseUrl}${path}`, {\n method: 'GET',\n headers: authHeaders,\n });\n\n if (!res.ok) {\n const text = await res.text().catch(() => '');\n throw new Error(sanitizeErrorMessage(res.status, text));\n }\n\n return res.json() as Promise<T>;\n}\n","import type { SignerConfig } from '../types/signers';\n\n/**\n * Environment detection utilities for warning about unsafe usage patterns\n */\n\n/**\n * Detect if code is running in a browser environment\n */\nexport function isBrowserEnvironment(): boolean {\n return typeof window !== 'undefined' && typeof document !== 'undefined';\n}\n\n/**\n * Check if we're in a Node.js server environment\n */\nexport function isNodeEnvironment(): boolean {\n return (\n typeof process !== 'undefined' && process.versions != null && process.versions.node != null\n );\n}\n\n/**\n * Validate baseUrl format\n */\nexport function validateBaseUrl(baseUrl?: string): void {\n if (!baseUrl) return; // undefined is ok, will use default\n\n if (!baseUrl.startsWith('http://') && !baseUrl.startsWith('https://')) {\n throw new Error('baseUrl must be a valid HTTP(S) URL');\n }\n\n // Warn about http (not https)\n if (\n baseUrl.startsWith('http://') &&\n !baseUrl.includes('localhost') &&\n !baseUrl.includes('127.0.0.1')\n ) {\n console.warn(\n '[Emblem Security Warning] baseUrl uses HTTP instead of HTTPS. This is insecure for production use.'\n );\n }\n}\n\n/**\n * Validate Ethereum address format\n */\nexport function validateEthereumAddress(address: string): void {\n if (!address || typeof address !== 'string') {\n throw new Error('Address is required');\n }\n\n if (!address.startsWith('0x')) {\n throw new Error('Address must start with 0x');\n }\n\n if (!/^0x[0-9a-fA-F]{40}$/.test(address)) {\n throw new Error('Invalid Ethereum address format');\n }\n}\n\n/**\n * Validate vault ID\n */\nexport function validateVaultId(vaultId: string): void {\n if (!vaultId || typeof vaultId !== 'string') {\n throw new Error('vaultId is required');\n }\n\n if (vaultId.trim() === '') {\n throw new Error('vaultId cannot be empty');\n }\n}\n\n/**\n * Safe number conversion with bounds checking\n */\nexport function toSafeNumber(value: unknown, fieldName: string): number {\n const num = Number(value);\n\n if (!Number.isSafeInteger(num)) {\n throw new Error(\n `${fieldName} value ${value} exceeds safe integer range (max: ${Number.MAX_SAFE_INTEGER})`\n );\n }\n\n return num;\n}\n\n/**\n * Extended config with security options\n */\nexport interface SignerSecurityConfig extends SignerConfig {\n /**\n * Enable debug logging for security-related checks\n * @default false\n */\n debugSecurity?: boolean;\n}\n\n/**\n * Validate signer configuration\n */\nexport function validateSignerConfig(config: SignerSecurityConfig): void {\n // Validate auth: require at least one method (jwt, getJwt, getAuthHeaders)\n const hasJwt = !!config.jwt;\n const hasGetJwt = typeof config.getJwt === 'function';\n const hasHeaders = typeof config.getAuthHeaders === 'function';\n\n if (!hasJwt && !hasGetJwt && !hasHeaders) {\n throw new Error('Authentication required: provide jwt, getJwt(), or getAuthHeaders()');\n }\n\n // Validate baseUrl if provided\n if (config.baseUrl) {\n validateBaseUrl(config.baseUrl);\n }\n\n // Security audit logging\n if (config.debugSecurity) {\n console.log('[Emblem Security Debug]', {\n environment: isBrowserEnvironment() ? 'browser' : 'node',\n hasBaseUrl: !!config.baseUrl,\n timestamp: new Date().toISOString(),\n });\n }\n}\n","import type { Hex } from '../types/signers';\nimport { toSafeNumber } from './validation';\n\nexport function toHexIfBigInt(v: unknown): unknown {\n return typeof v === 'bigint' ? '0x' + v.toString(16) : v;\n}\n\n/**\n * viem txs sometimes have bigint / hex / optional fields. Ethers serializers\n * accept hex strings for numeric fields. Normalize where helpful.\n */\nexport function normalizeTxForEmblem(tx: Record<string, unknown>): Record<string, unknown> {\n const out: Record<string, unknown> = { ...tx };\n\n if (out.value !== undefined) out.value = toHexIfBigInt(out.value);\n if (out.gas !== undefined) {\n out.gasLimit = toHexIfBigInt(out.gas);\n delete out.gas;\n }\n if (out.gasLimit !== undefined) out.gasLimit = toHexIfBigInt(out.gasLimit);\n if (out.gasPrice !== undefined) out.gasPrice = toHexIfBigInt(out.gasPrice);\n if (out.maxFeePerGas !== undefined) out.maxFeePerGas = toHexIfBigInt(out.maxFeePerGas);\n if (out.maxPriorityFeePerGas !== undefined)\n out.maxPriorityFeePerGas = toHexIfBigInt(out.maxPriorityFeePerGas);\n if (out.nonce !== undefined) out.nonce = toSafeNumber(out.nonce, 'nonce');\n if (out.chainId !== undefined) out.chainId = toSafeNumber(out.chainId, 'chainId');\n\n // Some backends only accept legacy fields; fold EIP-1559 into gasPrice and drop unsupported keys\n if (out.maxFeePerGas !== undefined || out.maxPriorityFeePerGas !== undefined) {\n if (out.gasPrice === undefined && out.maxFeePerGas !== undefined) {\n out.gasPrice = out.maxFeePerGas;\n }\n delete out.maxFeePerGas;\n delete out.maxPriorityFeePerGas;\n }\n\n // Remove fields commonly unsupported by legacy serializers\n delete out.type;\n delete out.accessList;\n delete out.account;\n delete out.chain;\n delete out.from;\n\n return out;\n}\n\nexport function isHexString(value: unknown): value is Hex {\n return typeof value === 'string' && /^0x[0-9a-fA-F]*$/.test(value);\n}\n\nexport function bytesToHex(bytes: ArrayLike<number>): Hex {\n let out = '0x';\n for (let i = 0; i < bytes.length; i++) {\n out += (bytes[i] as number).toString(16).padStart(2, '0');\n }\n return out as Hex;\n}\n","import type { Hex, SignerConfig, SignerVaultInfo } from '../types/signers';\nimport { emblemPost } from './http';\nimport { bytesToHex, normalizeTxForEmblem } from './utils';\nimport { fetchVaultInfo } from './vault';\n\nexport class EmblemWeb3Adapter {\n readonly address: Hex;\n readonly #vaultId: string;\n readonly #config: SignerConfig;\n\n constructor(address: Hex, vaultId: string, config: SignerConfig) {\n this.address = address;\n this.#vaultId = vaultId;\n this.#config = config;\n }\n\n async signMessage(message: string | Uint8Array): Promise<Hex> {\n const payload = typeof message === 'string' ? message : bytesToHex(message);\n const data = await emblemPost<{ signerAddress: string; signature: Hex }>(\n '/sign-eth-message',\n { vaultId: this.#vaultId, message: payload },\n this.#config\n );\n return data.signature;\n }\n\n async signTypedData(\n domain: Record<string, unknown>,\n types: Record<string, unknown>,\n message: Record<string, unknown>\n ): Promise<Hex> {\n const data = await emblemPost<{ signerAddress: string; signature: Hex }>(\n '/sign-typed-message',\n { vaultId: this.#vaultId, domain, types, message },\n this.#config\n );\n return data.signature;\n }\n\n async signTransaction(tx: Record<string, unknown>): Promise<{ rawTransaction: Hex }> {\n const normalized = normalizeTxForEmblem(tx);\n const resp = await emblemPost<{ signedTransaction: Hex }>(\n '/sign-eth-tx',\n { vaultId: this.#vaultId, transaction: normalized },\n this.#config\n );\n return { rawTransaction: resp.signedTransaction };\n }\n}\n\nexport async function toWeb3Adapter(\n config: SignerConfig,\n infoOverride?: SignerVaultInfo\n): Promise<EmblemWeb3Adapter> {\n const info = infoOverride ?? (await fetchVaultInfo(config));\n return new EmblemWeb3Adapter(info.evmAddress, info.vaultId, config);\n}\n","import type { SignerConfig, SignerVaultInfo, Hex } from '../types/signers';\nimport { emblemPost } from './http';\n\nexport async function fetchVaultInfo(config: SignerConfig): Promise<SignerVaultInfo> {\n // Note: The server only supports POST for /vault/info\n const data: Partial<{\n vaultId: string;\n address: string;\n evmAddress: Hex;\n created_by?: string;\n }> = await emblemPost('/vault/info', {}, config);\n\n // Validate required response data (vaultId + evmAddress are required for EVM)\n if (!data || !data.vaultId || !data.evmAddress) {\n throw new Error('Invalid vault info response: missing required fields');\n }\n\n if (!String(data.evmAddress).startsWith('0x')) {\n throw new Error('Invalid evmAddress format in response');\n }\n\n return {\n vaultId: data.vaultId,\n tokenId: data.vaultId,\n address: data.address || '', // Solana address may be absent; keep optional\n evmAddress: data.evmAddress as Hex,\n created_by: data.created_by,\n };\n}\n"],"names":["__classPrivateFieldGet","receiver","state","kind","f","TypeError","has","call","value","get","__classPrivateFieldSet","set","async","emblemPost","path","body","config","baseUrl","authHeaders","getAuthHeaders","h","tok","jwt","getJwt","undefined","sdk","getSession","authToken","Authorization","apiKey","Error","resolveAuthHeaders","res","fetch","method","headers","JSON","stringify","_key","toString","ok","text","catch","status","errorMessage","substring","sanitizeErrorMessage","json","toSafeNumber","fieldName","num","Number","isSafeInteger","MAX_SAFE_INTEGER","toHexIfBigInt","v","SuppressedError","EmblemWeb3Adapter","constructor","address","vaultId","_EmblemWeb3Adapter_vaultId","this","_EmblemWeb3Adapter_config","signMessage","message","payload","bytes","out","i","length","padStart","bytesToHex","signature","signTypedData","domain","types","signTransaction","tx","normalized","gas","gasLimit","gasPrice","maxFeePerGas","maxPriorityFeePerGas","nonce","chainId","type","accessList","account","chain","from","normalizeTxForEmblem","rawTransaction","transaction","signedTransaction","toWeb3Adapter","infoOverride","info","data","evmAddress","String","startsWith","tokenId","created_by","fetchVaultInfo"],"mappings":"AA8RO,SAASA,EAAuBC,EAAUC,EAAOC,EAAMC,GAC1D,GAAa,MAATD,IAAiBC,EAAG,MAAM,IAAIC,UAAU,iDAC5C,GAAqB,mBAAVH,EAAuBD,IAAaC,IAAUE,GAAKF,EAAMI,IAAIL,GAAW,MAAM,IAAII,UAAU,4EACvG,MAAgB,MAATF,EAAeC,EAAa,MAATD,EAAeC,EAAEG,KAAKN,GAAYG,EAAIA,EAAEI,MAAQN,EAAMO,IAAIR,EACxF,CAEO,SAASS,EAAuBT,EAAUC,EAAOM,EAAOL,EAAMC,GACjE,GAAa,MAATD,EAAc,MAAM,IAAIE,UAAU,kCACtC,GAAa,MAATF,IAAiBC,EAAG,MAAM,IAAIC,UAAU,iDAC5C,GAAqB,mBAAVH,EAAuBD,IAAaC,IAAUE,GAAKF,EAAMI,IAAIL,GAAW,MAAM,IAAII,UAAU,2EACvG,MAAiB,MAATF,EAAeC,EAAEG,KAAKN,EAAUO,GAASJ,EAAIA,EAAEI,MAAQA,EAAQN,EAAMS,IAAIV,EAAUO,GAASA,CACxG,CCxPOI,eAAeC,EACpBC,EACAC,EACAC,GAEA,MAAMC,EAAUD,EAAOC,SAAW,6BAC5BC,QAjCRN,eAAkCI,GAEhC,GAAqC,mBAA1BA,EAAOG,eAA+B,CAC/C,MAAMC,QAAUJ,EAAOG,iBACvB,GAAIC,GAAkB,iBAANA,EAAgB,OAAOA,CACxC,CAED,MAAMC,EACJL,EAAOM,MACmB,mBAAlBN,EAAOO,aAA8BP,EAAOO,cAAWC,IAC/DR,EAAOS,KAAKC,cAAcC,gBAC1BH,EAEF,GAAIH,EACF,MAAO,CAAEO,cAAe,UAAUP,KAIpC,GAAIL,EAAOa,OACT,MAAO,CAAE,YAAab,EAAOa,QAG/B,MAAM,IAAIC,MACR,uFAEJ,CAQ4BC,CAAmBf,GACvCgB,QAAYC,MAAM,GAAGhB,IAAUH,IAAQ,CAC3CoB,OAAQ,OACRC,QAAS,CACP,eAAgB,sBACbjB,GAELH,KAAMqB,KAAKC,UAAUtB,EAAM,CAACuB,EAAc9B,IACvB,iBAAVA,EAAqBA,EAAM+B,WAAa/B,KAInD,IAAKwB,EAAIQ,GAAI,CACX,MAAMC,QAAaT,EAAIS,OAAOC,MAAM,IAAM,IAC1C,MAAM,IAAIZ,MAnEd,SAA8Ba,EAAgBF,GAE5C,IAAIG,EAAe,uBAAuBD,IAe1C,OAbIA,GAAU,IACZC,GAAgB,0BACI,MAAXD,GAA6B,MAAXA,EAC3BC,GAAgB,0BACI,MAAXD,EACTC,GAAgB,uBACI,MAAXD,EACTC,GAAgB,uBACPH,IAETG,GAAgB,KAAKH,EAAKI,UAAU,EAAG,QAGlCD,CACT,CAiDoBE,CAAqBd,EAAIW,OAAQF,GAClD,CAED,OAAOT,EAAIe,MACb,CCIgB,SAAAC,EAAaxC,EAAgByC,GAC3C,MAAMC,EAAMC,OAAO3C,GAEnB,IAAK2C,OAAOC,cAAcF,GACxB,MAAM,IAAIpB,MACR,GAAGmB,WAAmBzC,sCAA0C2C,OAAOE,qBAI3E,OAAOH,CACT,CCpFM,SAAUI,EAAcC,GAC5B,MAAoB,iBAANA,EAAiB,KAAOA,EAAEhB,SAAS,IAAMgB,CACzD,SHmUkD,mBAApBC,iBAAiCA,sBInUlDC,EAKX,WAAAC,CAAYC,EAAcC,EAAiB5C,GAHlC6C,EAAiBlD,IAAAmD,UAAA,GACjBC,EAAsBpD,IAAAmD,UAAA,GAG7BA,KAAKH,QAAUA,EACfjD,EAAAoD,KAAID,EAAYD,EAAO,KACvBlD,EAAAoD,KAAIC,EAAW/C,EAAM,IACtB,CAED,iBAAMgD,CAAYC,GAChB,MAAMC,EAA6B,iBAAZD,EAAuBA,EDiC5C,SAAqBE,GACzB,IAAIC,EAAM,KACV,IAAK,IAAIC,EAAI,EAAGA,EAAIF,EAAMG,OAAQD,IAChCD,GAAQD,EAAME,GAAc9B,SAAS,IAAIgC,SAAS,EAAG,KAEvD,OAAOH,CACT,CCvC4DI,CAAWP,GAMnE,aALmBpD,EACjB,oBACA,CAAE+C,QAAS5D,EAAA8D,KAAaD,EAAA,KAAEI,QAASC,GACnClE,EAAA8D,KAAYC,EAAA,OAEFU,SACb,CAED,mBAAMC,CACJC,EACAC,EACAX,GAOA,aALmBpD,EACjB,sBACA,CAAE+C,QAAS5D,EAAA8D,YAAea,SAAQC,QAAOX,WACzCjE,EAAA8D,KAAYC,EAAA,OAEFU,SACb,CAED,qBAAMI,CAAgBC,GACpB,MAAMC,ED7BJ,SAA+BD,GACnC,MAAMV,EAA+B,IAAKU,GA+B1C,YA7BkBtD,IAAd4C,EAAI5D,QAAqB4D,EAAI5D,MAAQ8C,EAAcc,EAAI5D,aAC3CgB,IAAZ4C,EAAIY,MACNZ,EAAIa,SAAW3B,EAAcc,EAAIY,YAC1BZ,EAAIY,UAEQxD,IAAjB4C,EAAIa,WAAwBb,EAAIa,SAAW3B,EAAcc,EAAIa,gBAC5CzD,IAAjB4C,EAAIc,WAAwBd,EAAIc,SAAW5B,EAAcc,EAAIc,gBACxC1D,IAArB4C,EAAIe,eAA4Bf,EAAIe,aAAe7B,EAAcc,EAAIe,oBACxC3D,IAA7B4C,EAAIgB,uBACNhB,EAAIgB,qBAAuB9B,EAAcc,EAAIgB,4BAC7B5D,IAAd4C,EAAIiB,QAAqBjB,EAAIiB,MAAQrC,EAAaoB,EAAIiB,MAAO,eAC7C7D,IAAhB4C,EAAIkB,UAAuBlB,EAAIkB,QAAUtC,EAAaoB,EAAIkB,QAAS,iBAG9C9D,IAArB4C,EAAIe,mBAA2D3D,IAA7B4C,EAAIgB,4BACnB5D,IAAjB4C,EAAIc,eAA+C1D,IAArB4C,EAAIe,eACpCf,EAAIc,SAAWd,EAAIe,qBAEdf,EAAIe,oBACJf,EAAIgB,6BAINhB,EAAImB,YACJnB,EAAIoB,kBACJpB,EAAIqB,eACJrB,EAAIsB,aACJtB,EAAIuB,KAEJvB,CACT,CCJuBwB,CAAqBd,GAMxC,MAAO,CAAEe,sBALUhF,EACjB,eACA,CAAE+C,QAAS5D,EAAA8D,KAAaD,EAAA,KAAEiC,YAAaf,GACvC/E,EAAA8D,KAAYC,EAAA,OAEgBgC,kBAC/B,EAGInF,eAAeoF,EACpBhF,EACAiF,GAEA,MAAMC,EAAOD,SCnDRrF,eAA8BI,GAEnC,MAAMmF,QAKKtF,EAAW,cAAe,CAAE,EAAEG,GAGzC,IAAKmF,IAASA,EAAKvC,UAAYuC,EAAKC,WAClC,MAAM,IAAItE,MAAM,wDAGlB,IAAKuE,OAAOF,EAAKC,YAAYE,WAAW,MACtC,MAAM,IAAIxE,MAAM,yCAGlB,MAAO,CACL8B,QAASuC,EAAKvC,QACd2C,QAASJ,EAAKvC,QACdD,QAASwC,EAAKxC,SAAW,GACzByC,WAAYD,EAAKC,WACjBI,WAAYL,EAAKK,WAErB,CD0BsCC,CAAezF,GACnD,OAAO,IAAIyC,EAAkByC,EAAKE,WAAYF,EAAKtC,QAAS5C,EAC9D"}
package/dist/types/auth.d.ts ADDED
@@ -0,0 +1,96 @@
1
+ import type { AuthNetwork } from './config';
2
+ export interface WalletAuthParams {
3
+ /**
4
+ * Blockchain network
5
+ */
6
+ network: AuthNetwork;
7
+ /**
8
+ * Message that was signed
9
+ */
10
+ message: string;
11
+ /**
12
+ * Signature from wallet
13
+ */
14
+ signature: string;
15
+ /**
16
+ * Public key (required for Solana and Hedera)
17
+ */
18
+ publicKey?: string;
19
+ /**
20
+ * Wallet address
21
+ */
22
+ address?: string;
23
+ }
24
+ export interface AuthInitResponse {
25
+ /**
26
+ * Server-signed state parameter
27
+ */
28
+ state: string;
29
+ /**
30
+ * One-time auth request ID
31
+ */
32
+ authRequestId: string;
33
+ /**
34
+ * Nonce for validation
35
+ */
36
+ nonce: string;
37
+ /**
38
+ * Expiration time in seconds
39
+ */
40
+ expiresIn: number;
41
+ /**
42
+ * PKCE code challenge if applicable
43
+ */
44
+ codeChallenge?: string;
45
+ }
46
+ export interface AuthError extends Error {
47
+ /**
48
+ * Error code
49
+ */
50
+ code?: string;
51
+ /**
52
+ * HTTP status code if applicable
53
+ */
54
+ status?: number;
55
+ /**
56
+ * Additional error details
57
+ */
58
+ payload?: Record<string, unknown>;
59
+ }
60
+ export interface PostMessageData {
61
+ /**
62
+ * Message type
63
+ */
64
+ type: 'emblem-auth-success' | 'emblem-auth-error';
65
+ /**
66
+ * Session data if successful
67
+ */
68
+ session?: unknown;
69
+ /**
70
+ * Error details if failed
71
+ */
72
+ error?: string;
73
+ /**
74
+ * Nonce for validation
75
+ */
76
+ nonce?: string;
77
+ /**
78
+ * App ID
79
+ */
80
+ appId?: string;
81
+ }
82
+ /**
83
+ * Vault information returned by the API
84
+ */
85
+ export interface VaultInfo {
86
+ vaultId: string;
87
+ tokenId?: string;
88
+ evmAddress?: string;
89
+ solanaAddress?: string;
90
+ address?: string;
91
+ hederaAccountId?: string;
92
+ createdAt?: string;
93
+ created_by?: string;
94
+ metadata?: Record<string, any>;
95
+ }
96
+ //# sourceMappingURL=auth.d.ts.map
package/dist/types/auth.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/types/auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAE5C,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,OAAO,EAAE,WAAW,CAAC;IAErB;;OAEG;IACH,OAAO,EAAE,MAAM,CAAC;IAEhB;;OAEG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IAEd;;OAEG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IAEd;;OAEG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,SAAU,SAAQ,KAAK;IACtC;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED,MAAM,WAAW,eAAe;IAC9B;;OAEG;IACH,IAAI,EAAE,qBAAqB,GAAG,mBAAmB,CAAC;IAElD;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAChC"}
package/dist/types/config.d.ts ADDED
@@ -0,0 +1,43 @@
1
+ import type { AuthSession } from './session';
2
+ import type { AuthError } from './auth';
3
+ export type ModalMode = 'iframe' | 'popup' | 'auto';
4
+ export type AuthNetwork = 'ethereum' | 'solana' | 'hedera';
5
+ export interface EmblemAuthConfig {
6
+ /**
7
+ * Unique application identifier registered with Emblem Vault
8
+ */
9
+ appId: string;
10
+ /**
11
+ * Auth service URL (registration site) - handles auth modal, init, bootstrap
12
+ * @default 'https://auth.emblemvault.ai'
13
+ */
14
+ authUrl?: string;
15
+ /**
16
+ * Backend API URL - for vault operations and signing
17
+ * @default 'https://api.emblemvault.ai'
18
+ */
19
+ apiUrl?: string;
20
+ /**
21
+ * Modal display mode
22
+ * @default 'auto'
23
+ */
24
+ modalMode?: ModalMode;
25
+ /**
26
+ * Persist session to localStorage (stay logged in)
27
+ * @default true
28
+ */
29
+ persistSession?: boolean;
30
+ /**
31
+ * Supported authentication networks
32
+ */
33
+ supportedNetworks?: AuthNetwork[];
34
+ /**
35
+ * Callback when authentication succeeds
36
+ */
37
+ onSuccess?: (session: AuthSession) => void;
38
+ /**
39
+ * Callback when authentication fails
40
+ */
41
+ onError?: (error: AuthError) => void;
42
+ }
43
+ //# sourceMappingURL=config.d.ts.map
package/dist/types/config.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../src/types/config.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAExC,MAAM,MAAM,SAAS,GAAG,QAAQ,GAAG,OAAO,GAAG,MAAM,CAAC;AACpD,MAAM,MAAM,WAAW,GAAG,UAAU,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAE3D,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IAEd;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,SAAS,CAAC,EAAE,SAAS,CAAC;IAEtB;;;OAGG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;IAEzB;;OAEG;IACH,iBAAiB,CAAC,EAAE,WAAW,EAAE,CAAC;IAElC;;OAEG;IACH,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,WAAW,KAAK,IAAI,CAAC;IAE3C;;OAEG;IACH,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,SAAS,KAAK,IAAI,CAAC;CACtC"}
package/dist/types/events.d.ts ADDED
@@ -0,0 +1,27 @@
1
+ import type { AuthSession, SessionRefreshInfo } from './session';
2
+ import type { AuthError } from './auth';
3
+ export interface AuthEventMap {
4
+ /**
5
+ * Fired when a new session is established or updated
6
+ */
7
+ session: (session: AuthSession | null) => void;
8
+ /**
9
+ * Fired when the session expires
10
+ */
11
+ sessionExpired: (session: AuthSession) => void;
12
+ /**
13
+ * Fired when the session is refreshed
14
+ */
15
+ sessionRefreshed: (session: AuthSession) => void;
16
+ /**
17
+ * Fired before session refresh attempt
18
+ */
19
+ sessionWillRefresh: (info: SessionRefreshInfo) => void;
20
+ /**
21
+ * Fired when an auth error occurs
22
+ */
23
+ authError: (error: AuthError) => void;
24
+ }
25
+ export type AuthEventKey = keyof AuthEventMap;
26
+ export type AuthEventHandler<K extends AuthEventKey> = AuthEventMap[K];
27
+ //# sourceMappingURL=events.d.ts.map
package/dist/types/events.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"events.d.ts","sourceRoot":"","sources":["../../src/types/events.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,kBAAkB,EAAE,MAAM,WAAW,CAAC;AACjE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAExC,MAAM,WAAW,YAAY;IAC3B;;OAEG;IACH,OAAO,EAAE,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,KAAK,IAAI,CAAC;IAE/C;;OAEG;IACH,cAAc,EAAE,CAAC,OAAO,EAAE,WAAW,KAAK,IAAI,CAAC;IAE/C;;OAEG;IACH,gBAAgB,EAAE,CAAC,OAAO,EAAE,WAAW,KAAK,IAAI,CAAC;IAEjD;;OAEG;IACH,kBAAkB,EAAE,CAAC,IAAI,EAAE,kBAAkB,KAAK,IAAI,CAAC;IAEvD;;OAEG;IACH,SAAS,EAAE,CAAC,KAAK,EAAE,SAAS,KAAK,IAAI,CAAC;CACvC;AAED,MAAM,MAAM,YAAY,GAAG,MAAM,YAAY,CAAC;AAC9C,MAAM,MAAM,gBAAgB,CAAC,CAAC,SAAS,YAAY,IAAI,YAAY,CAAC,CAAC,CAAC,CAAC"}