@fogo/sessions-sdk 0.0.1

package/LICENSE

@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

package/cjs/adapter.d.ts

@@ -0,0 +1,37 @@
+import type { Transaction } from "@solana/kit";
+import type { Connection, TransactionError, TransactionInstruction } from "@solana/web3.js";
+import { PublicKey } from "@solana/web3.js";
+export type SessionAdapter = {
+    chainId: string;
+    connection: Connection;
+    payer: PublicKey;
+    domain: string;
+    sendTransaction: (sessionKey: CryptoKeyPair, instructions: TransactionInstruction[]) => Promise<TransactionResult>;
+};
+export declare enum TransactionResultType {
+    Success = 0,
+    Failed = 1
+}
+declare const TransactionResult: {
+    Success: (signature: string) => {
+        type: TransactionResultType.Success;
+        signature: string;
+    };
+    Failed: (signature: string, error: TransactionError) => {
+        type: TransactionResultType.Failed;
+        signature: string;
+        error: TransactionError;
+    };
+};
+export type TransactionResult = ReturnType<(typeof TransactionResult)[keyof typeof TransactionResult]>;
+export declare const createSolanaWalletAdapter: (options: {
+    connection: Connection;
+    sponsor: PublicKey;
+    addressLookupTableAddress?: string | undefined;
+    domain?: string | undefined;
+} & ({
+    paymasterUrl: string;
+} | {
+    sendToPaymaster: (transaction: Transaction) => Promise<string>;
+})) => Promise<SessionAdapter>;
+export {};

package/cjs/adapter.js

@@ -0,0 +1,142 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createSolanaWalletAdapter = exports.TransactionResultType = void 0;
+const anchor_1 = require("@coral-xyz/anchor");
+const sessions_idls_1 = require("@fogo/sessions-idls");
+const compat_1 = require("@solana/compat");
+const kit_1 = require("@solana/kit");
+const web3_js_1 = require("@solana/web3.js");
+// eslint-disable-next-line no-constant-binary-expression, @typescript-eslint/no-unnecessary-condition, valid-typeof
+const IS_BROWSER = typeof globalThis.window !== undefined;
+var TransactionResultType;
+(function (TransactionResultType) {
+    TransactionResultType[TransactionResultType["Success"] = 0] = "Success";
+    TransactionResultType[TransactionResultType["Failed"] = 1] = "Failed";
+})(TransactionResultType || (exports.TransactionResultType = TransactionResultType = {}));
+const TransactionResult = {
+    Success: (signature) => ({
+        type: TransactionResultType.Success,
+        signature,
+    }),
+    Failed: (signature, error) => ({
+        type: TransactionResultType.Failed,
+        signature,
+        error,
+    }),
+};
+const createSolanaWalletAdapter = async (options) => {
+    const addressLookupTables = await getAddressLookupTables(options.connection, options.addressLookupTableAddress);
+    return {
+        connection: options.connection,
+        payer: options.sponsor,
+        chainId: await fetchChainId(options.connection),
+        domain: getDomain(options.domain),
+        sendTransaction: async (sessionKey, instructions) => {
+            const rpc = (0, kit_1.createSolanaRpc)(options.connection.rpcEndpoint);
+            const { value: latestBlockhash } = await rpc.getLatestBlockhash().send();
+            const sessionKeySigner = await (0, kit_1.createSignerFromKeyPair)(sessionKey);
+            const transaction = await (0, kit_1.partiallySignTransactionMessageWithSigners)((0, kit_1.pipe)((0, kit_1.createTransactionMessage)({ version: 0 }), (tx) => (0, kit_1.setTransactionMessageFeePayer)((0, compat_1.fromLegacyPublicKey)(options.sponsor), tx), (tx) => (0, kit_1.setTransactionMessageLifetimeUsingBlockhash)(latestBlockhash, tx), (tx) => (0, kit_1.appendTransactionMessageInstructions)(instructions.map((instruction) => (0, compat_1.fromLegacyTransactionInstruction)(instruction)), tx), (tx) => (0, kit_1.compressTransactionMessageUsingAddressLookupTables)(tx, Object.fromEntries(addressLookupTables?.map((table) => [
+                (0, compat_1.fromLegacyPublicKey)(table.key),
+                table.state.addresses.map((address) => (0, compat_1.fromLegacyPublicKey)(address)),
+            ]) ?? [])), (tx) => (0, kit_1.addSignersToTransactionMessage)([sessionKeySigner], tx)));
+            const signature = "sendToPaymaster" in options
+                ? await options.sendToPaymaster(transaction)
+                : await sendToPaymaster(options.paymasterUrl, transaction);
+            const lastValidBlockHeight = await rpc.getSlot().send();
+            const confirmationResult = await options.connection.confirmTransaction({
+                signature,
+                blockhash: latestBlockhash.blockhash.toString(),
+                lastValidBlockHeight: Number(lastValidBlockHeight),
+            });
+            return confirmationResult.value.err === null
+                ? TransactionResult.Success(signature)
+                : TransactionResult.Failed(signature, confirmationResult.value.err);
+        },
+    };
+};
+exports.createSolanaWalletAdapter = createSolanaWalletAdapter;
+const sendToPaymaster = async (paymasterUrl, transaction) => {
+    const response = await fetch(paymasterUrl, {
+        method: "POST",
+        headers: {
+            "Content-Type": "application/json",
+        },
+        body: JSON.stringify({
+            transaction: (0, kit_1.getBase64EncodedWireTransaction)(transaction),
+        }),
+    });
+    if (response.status === 200) {
+        return response.text();
+    }
+    else {
+        throw new PaymasterResponseError(response.status, await response.text());
+    }
+};
+const getAddressLookupTables = async (connection, addressLookupTableAddress) => {
+    if (addressLookupTableAddress === undefined) {
+        return [];
+    }
+    else {
+        const addressLookupTableResult = await connection.getAddressLookupTable(new web3_js_1.PublicKey(addressLookupTableAddress));
+        return addressLookupTableResult.value
+            ? [addressLookupTableResult.value]
+            : undefined;
+    }
+};
+const fetchChainId = async (connection) => {
+    const chainIdProgram = new sessions_idls_1.ChainIdProgram(new anchor_1.AnchorProvider(connection, { publicKey: new web3_js_1.Keypair().publicKey }, {})); // We mock the wallet because we don't need to sign anything
+    const { chainIdAccount: chainIdAddress } = await chainIdProgram.methods
+        .set("")
+        .pubkeys(); // We use Anchor to derive the chain ID address, not caring about the actual argument of `set`
+    if (chainIdAddress === undefined) {
+        throw new NoChainIdAddressError();
+    }
+    const chainId = await chainIdProgram.account.chainId.fetch(chainIdAddress);
+    return chainId.chainId;
+};
+const getDomain = (requestedDomain) => {
+    const detectedDomain = IS_BROWSER ? globalThis.location.origin : undefined;
+    if (requestedDomain === undefined) {
+        if (detectedDomain === undefined) {
+            throw new DomainRequiredError();
+        }
+        else {
+            return detectedDomain;
+        }
+    }
+    else {
+        if (detectedDomain === undefined ||
+            detectedDomain === requestedDomain ||
+            process.env.NODE_ENV !== "production" // eslint-disable-line n/no-process-env
+        ) {
+            return requestedDomain;
+        }
+        else {
+            throw new DomainOverrideNotAllowedError();
+        }
+    }
+};
+class PaymasterResponseError extends Error {
+    constructor(statusCode, message) {
+        super(`Paymaster sent a ${statusCode.toString()} response: ${message}`);
+        this.name = "PaymasterResponseError";
+    }
+}
+class NoChainIdAddressError extends Error {
+    constructor() {
+        super("Failed to derive chain ID address");
+        this.name = "NoChainIdAddressError";
+    }
+}
+class DomainRequiredError extends Error {
+    constructor() {
+        super("On platforms where the origin cannot be determined, you must pass a domain to create a session.");
+        this.name = "DomainRequiredError";
+    }
+}
+class DomainOverrideNotAllowedError extends Error {
+    constructor() {
+        super("You cannot create a session for a different domain.");
+        this.name = "DomainOverrideNotAllowedError";
+    }
+}

package/cjs/index.d.ts

@@ -0,0 +1,47 @@
+import type { TransactionError } from "@solana/web3.js";
+import { PublicKey, TransactionInstruction } from "@solana/web3.js";
+import type { SessionAdapter, TransactionResult } from "./adapter.js";
+export { type SessionAdapter, type TransactionResult, TransactionResultType, createSolanaWalletAdapter, } from "./adapter.js";
+type EstablishSessionOptions = {
+    adapter: SessionAdapter;
+    walletPublicKey: PublicKey;
+    signMessage: (message: Uint8Array) => Promise<Uint8Array>;
+    expires: Date;
+    limits: Map<PublicKey, bigint>;
+    extra?: string | undefined;
+};
+export declare const establishSession: (options: EstablishSessionOptions) => Promise<EstablishSessionResult>;
+export declare const replaceSession: (options: {
+    adapter: SessionAdapter;
+    session: Session;
+    signMessage: (message: Uint8Array) => Promise<Uint8Array>;
+    expires: Date;
+    limits: Map<PublicKey, bigint>;
+    extra?: string | undefined;
+}) => Promise<EstablishSessionResult>;
+export declare const reestablishSession: (adapter: SessionAdapter, walletPublicKey: PublicKey, sessionKey: CryptoKeyPair) => Promise<Session>;
+export declare const getDomainRecordAddress: (domain: string) => PublicKey;
+export declare enum SessionResultType {
+    Success = 0,
+    Failed = 1
+}
+declare const EstablishSessionResult: {
+    Success: (signature: string, session: Session) => {
+        type: SessionResultType.Success;
+        signature: string;
+        session: Session;
+    };
+    Failed: (signature: string, error: TransactionError) => {
+        type: SessionResultType.Failed;
+        signature: string;
+        error: TransactionError;
+    };
+};
+type EstablishSessionResult = ReturnType<(typeof EstablishSessionResult)[keyof typeof EstablishSessionResult]>;
+export type Session = {
+    sessionPublicKey: PublicKey;
+    sessionKey: CryptoKeyPair;
+    walletPublicKey: PublicKey;
+    payer: PublicKey;
+    sendTransaction: (instructions: TransactionInstruction[]) => Promise<TransactionResult>;
+};

package/cjs/index.js

@@ -0,0 +1,192 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SessionResultType = exports.getDomainRecordAddress = exports.reestablishSession = exports.replaceSession = exports.establishSession = exports.createSolanaWalletAdapter = exports.TransactionResultType = void 0;
+const anchor_1 = require("@coral-xyz/anchor");
+const sessions_idls_1 = require("@fogo/sessions-idls");
+const mpl_token_metadata_1 = require("@metaplex-foundation/mpl-token-metadata");
+const umi_1 = require("@metaplex-foundation/umi");
+const umi_bundle_defaults_1 = require("@metaplex-foundation/umi-bundle-defaults");
+const sha2_1 = require("@noble/hashes/sha2");
+const kit_1 = require("@solana/kit");
+const spl_token_1 = require("@solana/spl-token");
+const web3_js_1 = require("@solana/web3.js");
+const adapter_js_1 = require("./adapter.js");
+var adapter_js_2 = require("./adapter.js");
+Object.defineProperty(exports, "TransactionResultType", { enumerable: true, get: function () { return adapter_js_2.TransactionResultType; } });
+Object.defineProperty(exports, "createSolanaWalletAdapter", { enumerable: true, get: function () { return adapter_js_2.createSolanaWalletAdapter; } });
+const MESSAGE_HEADER = `Fogo Sessions:
+Signing this intent will allow this app to interact with your on-chain balances. Please make sure you trust this app and the domain in the message matches the domain of the current web application.
+`;
+const CURRENT_MAJOR = "0";
+const CURRENT_MINOR = "1";
+const establishSession = async (options) => {
+    const sessionKey = await (0, kit_1.generateKeyPair)();
+    const tokenInfo = await getTokenInfo(options);
+    const [intentInstruction, startSessionInstruction] = await Promise.all([
+        buildIntentInstruction(options, sessionKey, tokenInfo),
+        buildStartSessionInstruction(options, sessionKey, tokenInfo),
+    ]);
+    const result = await options.adapter.sendTransaction(sessionKey, [
+        intentInstruction,
+        ...buildCreateAssociatedTokenAccountInstructions(options, tokenInfo),
+        startSessionInstruction,
+    ]);
+    switch (result.type) {
+        case adapter_js_1.TransactionResultType.Success: {
+            return EstablishSessionResult.Success(result.signature, await createSession(options.adapter, options.walletPublicKey, sessionKey));
+        }
+        case adapter_js_1.TransactionResultType.Failed: {
+            return EstablishSessionResult.Failed(result.signature, result.error);
+        }
+    }
+};
+exports.establishSession = establishSession;
+const replaceSession = async (options) => (0, exports.establishSession)({
+    ...options,
+    walletPublicKey: options.session.walletPublicKey,
+});
+exports.replaceSession = replaceSession;
+// TODO we really should check to ensure the session is still valid...
+const reestablishSession = async (adapter, walletPublicKey, sessionKey) => createSession(adapter, walletPublicKey, sessionKey);
+exports.reestablishSession = reestablishSession;
+const createSession = async (adapter, walletPublicKey, sessionKey) => ({
+    sessionPublicKey: new web3_js_1.PublicKey(await (0, kit_1.getAddressFromPublicKey)(sessionKey.publicKey)),
+    walletPublicKey,
+    sessionKey,
+    payer: adapter.payer,
+    sendTransaction: (instructions) => adapter.sendTransaction(sessionKey, instructions),
+});
+const SymbolOrMintType = {
+    Symbol: "Symbol",
+    Mint: "Mint",
+};
+const SymbolOrMint = {
+    Symbol: (symbol) => ({
+        type: SymbolOrMintType.Symbol,
+        symbol,
+    }),
+    Mint: (mint) => ({
+        type: SymbolOrMintType.Mint,
+        mint,
+    }),
+};
+const getTokenInfo = async (options) => {
+    const umi = (0, umi_bundle_defaults_1.createUmi)(options.adapter.connection.rpcEndpoint);
+    return Promise.all(options.limits.entries().map(async ([mint, amount]) => {
+        const metaplexMint = (0, umi_1.publicKey)(mint.toBase58());
+        const metadataAddress = (0, mpl_token_metadata_1.findMetadataPda)(umi, { mint: metaplexMint })[0];
+        const [mintInfo, metadata] = await Promise.all([
+            (0, spl_token_1.getMint)(options.adapter.connection, mint),
+            (0, mpl_token_metadata_1.safeFetchMetadata)(umi, metadataAddress),
+        ]);
+        return {
+            symbolOrMint: metadata?.symbol
+                ? SymbolOrMint.Symbol(metadata.symbol)
+                : SymbolOrMint.Mint(mint),
+            metadataAddress: new web3_js_1.PublicKey(metadataAddress),
+            amount,
+            mint,
+            decimals: mintInfo.decimals,
+        };
+    }));
+};
+const buildIntentInstruction = async (options, sessionKey, tokens) => {
+    const message = await buildMessage({
+        chainId: options.adapter.chainId,
+        domain: options.adapter.domain,
+        sessionKey,
+        expires: options.expires,
+        tokens,
+        extra: options.extra,
+    });
+    const intentSignature = await options.signMessage(message);
+    return web3_js_1.Ed25519Program.createInstructionWithPublicKey({
+        publicKey: options.walletPublicKey.toBytes(),
+        signature: intentSignature,
+        message: message,
+    });
+};
+const buildMessage = async (body) => new TextEncoder().encode([
+    MESSAGE_HEADER,
+    serializeKV({
+        version: `${CURRENT_MAJOR}.${CURRENT_MINOR}`,
+        chain_id: body.chainId,
+        domain: body.domain,
+        expires: body.expires.toISOString(),
+        session_key: await (0, kit_1.getAddressFromPublicKey)(body.sessionKey.publicKey),
+        tokens: serializeTokenList(body.tokens),
+        ...(body.extra && { extra: body.extra }),
+    }),
+].join("\n"));
+const serializeKV = (data) => Object.entries(data)
+    .map(([key, value]) => [key, ":", value.startsWith("\n") ? "" : " ", value].join(""))
+    .join("\n");
+const serializeTokenList = (tokens) => tokens
+    .values()
+    .filter(({ amount }) => amount > 0n)
+    .map(({ symbolOrMint, amount, decimals }) => `\n-${symbolOrMint.type === SymbolOrMintType.Symbol ? symbolOrMint.symbol : symbolOrMint.mint.toBase58()}: ${amountToString(amount, decimals)}`)
+    .toArray()
+    .join("");
+const amountToString = (amount, decimals) => {
+    const asStr = amount.toString();
+    const whole = asStr.length > decimals ? asStr.slice(0, asStr.length - decimals) : "0";
+    const decimal = asStr.length > decimals ? asStr.slice(asStr.length - decimals) : asStr;
+    const decimalPadded = decimal.padStart(decimals, "0");
+    const decimalTruncated = decimalPadded.replace(/0+$/, "");
+    return [
+        whole,
+        ...(decimalTruncated === "" ? [] : [".", decimalTruncated]),
+    ].join("");
+};
+const buildCreateAssociatedTokenAccountInstructions = (options, tokens) => tokens.map(({ mint }) => (0, spl_token_1.createAssociatedTokenAccountIdempotentInstruction)(options.adapter.payer, (0, spl_token_1.getAssociatedTokenAddressSync)(mint, options.walletPublicKey), options.walletPublicKey, mint));
+const getDomainRecordAddress = (domain) => {
+    const hash = (0, sha2_1.sha256)(domain);
+    return web3_js_1.PublicKey.findProgramAddressSync([Buffer.from("domain-record"), hash], new web3_js_1.PublicKey(sessions_idls_1.DomainRegistryIdl.address))[0];
+};
+exports.getDomainRecordAddress = getDomainRecordAddress;
+const buildStartSessionInstruction = async (options, sessionKey, tokens) => new sessions_idls_1.SessionManagerProgram(new anchor_1.AnchorProvider(options.adapter.connection, {}, {})).methods
+    .startSession()
+    .accounts({
+    sponsor: options.adapter.payer,
+    session: await (0, kit_1.getAddressFromPublicKey)(sessionKey.publicKey),
+    domainRegistry: (0, exports.getDomainRecordAddress)(options.adapter.domain),
+})
+    .remainingAccounts(tokens.flatMap(({ symbolOrMint, mint, metadataAddress }) => [
+    {
+        pubkey: (0, spl_token_1.getAssociatedTokenAddressSync)(mint, options.walletPublicKey),
+        isWritable: true,
+        isSigner: false,
+    },
+    {
+        pubkey: mint,
+        isWritable: false,
+        isSigner: false,
+    },
+    ...(symbolOrMint.type === SymbolOrMintType.Symbol
+        ? [
+            {
+                pubkey: metadataAddress,
+                isWritable: false,
+                isSigner: false,
+            },
+        ]
+        : []),
+]))
+    .instruction();
+var SessionResultType;
+(function (SessionResultType) {
+    SessionResultType[SessionResultType["Success"] = 0] = "Success";
+    SessionResultType[SessionResultType["Failed"] = 1] = "Failed";
+})(SessionResultType || (exports.SessionResultType = SessionResultType = {}));
+const EstablishSessionResult = {
+    Success: (signature, session) => ({
+        type: SessionResultType.Success,
+        signature,
+        session,
+    }),
+    Failed: (signature, error) => ({
+        type: SessionResultType.Failed,
+        signature,
+        error,
+    }),
+};

package/cjs/package.json

@@ -0,0 +1 @@
+{"type":"commonjs"}

package/cjs/paymaster.d.ts

@@ -0,0 +1,7 @@
+import type { Transaction, Rpc, SolanaRpcApi } from "@solana/kit";
+import { Keypair } from "@solana/web3.js";
+export declare const sponsorAndSend: (rpc: Rpc<SolanaRpcApi>, sponsor: CryptoKeyPair, transaction: Transaction) => Promise<import("@solana/kit").Signature>;
+export declare const createPaymasterEndpoint: (options: {
+    rpc: string;
+    sponsor: Keypair;
+}) => Promise<(req: Request) => Promise<Response>>;

package/cjs/paymaster.js

@@ -0,0 +1,55 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createPaymasterEndpoint = exports.sponsorAndSend = void 0;
+const compat_1 = require("@solana/compat");
+const kit_1 = require("@solana/kit");
+const zod_1 = require("zod");
+const sponsorAndSend = async (rpc, sponsor, transaction) => {
+    const signedTransaction = await (0, kit_1.signTransaction)([sponsor], transaction);
+    await rpc
+        .sendTransaction((0, kit_1.getBase64EncodedWireTransaction)(signedTransaction), {
+        encoding: "base64",
+        skipPreflight: true,
+    })
+        .send();
+    return (0, kit_1.getSignatureFromTransaction)(signedTransaction);
+};
+exports.sponsorAndSend = sponsorAndSend;
+const createPaymasterEndpoint = async (options) => {
+    const rpc = (0, kit_1.createSolanaRpc)(options.rpc);
+    const sponsor = await (0, compat_1.fromLegacyKeypair)(options.sponsor);
+    return async (req) => {
+        const data = postBodySchema.parse(await req.json());
+        try {
+            const transaction = (0, kit_1.getTransactionDecoder)().decode((0, kit_1.getBase64Encoder)().encode(data.transaction));
+            try {
+                return new Response(await (0, exports.sponsorAndSend)(rpc, sponsor, transaction));
+            }
+            catch (error) {
+                // eslint-disable-next-line no-console
+                console.error(error);
+                return new Response(`Failed to sponsor and send: ${serializeError(error)}`, { status: 500 });
+            }
+        }
+        catch (error) {
+            // eslint-disable-next-line no-console
+            console.error(error);
+            return new Response("Failed to deserialize transaction", { status: 400 });
+        }
+    };
+};
+exports.createPaymasterEndpoint = createPaymasterEndpoint;
+const postBodySchema = zod_1.z.strictObject({
+    transaction: zod_1.z.string(),
+});
+const serializeError = (error) => {
+    if (error instanceof Error) {
+        return error.message;
+    }
+    else if (typeof error === "string") {
+        return error.toString();
+    }
+    else {
+        return "Unknown Error";
+    }
+};

package/esm/adapter.d.ts

@@ -0,0 +1,37 @@
+import type { Transaction } from "@solana/kit";
+import type { Connection, TransactionError, TransactionInstruction } from "@solana/web3.js";
+import { PublicKey } from "@solana/web3.js";
+export type SessionAdapter = {
+    chainId: string;
+    connection: Connection;
+    payer: PublicKey;
+    domain: string;
+    sendTransaction: (sessionKey: CryptoKeyPair, instructions: TransactionInstruction[]) => Promise<TransactionResult>;
+};
+export declare enum TransactionResultType {
+    Success = 0,
+    Failed = 1
+}
+declare const TransactionResult: {
+    Success: (signature: string) => {
+        type: TransactionResultType.Success;
+        signature: string;
+    };
+    Failed: (signature: string, error: TransactionError) => {
+        type: TransactionResultType.Failed;
+        signature: string;
+        error: TransactionError;
+    };
+};
+export type TransactionResult = ReturnType<(typeof TransactionResult)[keyof typeof TransactionResult]>;
+export declare const createSolanaWalletAdapter: (options: {
+    connection: Connection;
+    sponsor: PublicKey;
+    addressLookupTableAddress?: string | undefined;
+    domain?: string | undefined;
+} & ({
+    paymasterUrl: string;
+} | {
+    sendToPaymaster: (transaction: Transaction) => Promise<string>;
+})) => Promise<SessionAdapter>;
+export {};

package/esm/adapter.js

@@ -0,0 +1,138 @@
+import { AnchorProvider } from "@coral-xyz/anchor";
+import { ChainIdProgram } from "@fogo/sessions-idls";
+import { fromLegacyPublicKey, fromLegacyTransactionInstruction, } from "@solana/compat";
+import { createTransactionMessage, setTransactionMessageFeePayer, setTransactionMessageLifetimeUsingBlockhash, appendTransactionMessageInstructions, getBase64EncodedWireTransaction, partiallySignTransactionMessageWithSigners, pipe, createSolanaRpc, addSignersToTransactionMessage, compressTransactionMessageUsingAddressLookupTables, createSignerFromKeyPair, } from "@solana/kit";
+import { PublicKey, Keypair } from "@solana/web3.js";
+// eslint-disable-next-line no-constant-binary-expression, @typescript-eslint/no-unnecessary-condition, valid-typeof
+const IS_BROWSER = typeof globalThis.window !== undefined;
+export var TransactionResultType;
+(function (TransactionResultType) {
+    TransactionResultType[TransactionResultType["Success"] = 0] = "Success";
+    TransactionResultType[TransactionResultType["Failed"] = 1] = "Failed";
+})(TransactionResultType || (TransactionResultType = {}));
+const TransactionResult = {
+    Success: (signature) => ({
+        type: TransactionResultType.Success,
+        signature,
+    }),
+    Failed: (signature, error) => ({
+        type: TransactionResultType.Failed,
+        signature,
+        error,
+    }),
+};
+export const createSolanaWalletAdapter = async (options) => {
+    const addressLookupTables = await getAddressLookupTables(options.connection, options.addressLookupTableAddress);
+    return {
+        connection: options.connection,
+        payer: options.sponsor,
+        chainId: await fetchChainId(options.connection),
+        domain: getDomain(options.domain),
+        sendTransaction: async (sessionKey, instructions) => {
+            const rpc = createSolanaRpc(options.connection.rpcEndpoint);
+            const { value: latestBlockhash } = await rpc.getLatestBlockhash().send();
+            const sessionKeySigner = await createSignerFromKeyPair(sessionKey);
+            const transaction = await partiallySignTransactionMessageWithSigners(pipe(createTransactionMessage({ version: 0 }), (tx) => setTransactionMessageFeePayer(fromLegacyPublicKey(options.sponsor), tx), (tx) => setTransactionMessageLifetimeUsingBlockhash(latestBlockhash, tx), (tx) => appendTransactionMessageInstructions(instructions.map((instruction) => fromLegacyTransactionInstruction(instruction)), tx), (tx) => compressTransactionMessageUsingAddressLookupTables(tx, Object.fromEntries(addressLookupTables?.map((table) => [
+                fromLegacyPublicKey(table.key),
+                table.state.addresses.map((address) => fromLegacyPublicKey(address)),
+            ]) ?? [])), (tx) => addSignersToTransactionMessage([sessionKeySigner], tx)));
+            const signature = "sendToPaymaster" in options
+                ? await options.sendToPaymaster(transaction)
+                : await sendToPaymaster(options.paymasterUrl, transaction);
+            const lastValidBlockHeight = await rpc.getSlot().send();
+            const confirmationResult = await options.connection.confirmTransaction({
+                signature,
+                blockhash: latestBlockhash.blockhash.toString(),
+                lastValidBlockHeight: Number(lastValidBlockHeight),
+            });
+            return confirmationResult.value.err === null
+                ? TransactionResult.Success(signature)
+                : TransactionResult.Failed(signature, confirmationResult.value.err);
+        },
+    };
+};
+const sendToPaymaster = async (paymasterUrl, transaction) => {
+    const response = await fetch(paymasterUrl, {
+        method: "POST",
+        headers: {
+            "Content-Type": "application/json",
+        },
+        body: JSON.stringify({
+            transaction: getBase64EncodedWireTransaction(transaction),
+        }),
+    });
+    if (response.status === 200) {
+        return response.text();
+    }
+    else {
+        throw new PaymasterResponseError(response.status, await response.text());
+    }
+};
+const getAddressLookupTables = async (connection, addressLookupTableAddress) => {
+    if (addressLookupTableAddress === undefined) {
+        return [];
+    }
+    else {
+        const addressLookupTableResult = await connection.getAddressLookupTable(new PublicKey(addressLookupTableAddress));
+        return addressLookupTableResult.value
+            ? [addressLookupTableResult.value]
+            : undefined;
+    }
+};
+const fetchChainId = async (connection) => {
+    const chainIdProgram = new ChainIdProgram(new AnchorProvider(connection, { publicKey: new Keypair().publicKey }, {})); // We mock the wallet because we don't need to sign anything
+    const { chainIdAccount: chainIdAddress } = await chainIdProgram.methods
+        .set("")
+        .pubkeys(); // We use Anchor to derive the chain ID address, not caring about the actual argument of `set`
+    if (chainIdAddress === undefined) {
+        throw new NoChainIdAddressError();
+    }
+    const chainId = await chainIdProgram.account.chainId.fetch(chainIdAddress);
+    return chainId.chainId;
+};
+const getDomain = (requestedDomain) => {
+    const detectedDomain = IS_BROWSER ? globalThis.location.origin : undefined;
+    if (requestedDomain === undefined) {
+        if (detectedDomain === undefined) {
+            throw new DomainRequiredError();
+        }
+        else {
+            return detectedDomain;
+        }
+    }
+    else {
+        if (detectedDomain === undefined ||
+            detectedDomain === requestedDomain ||
+            process.env.NODE_ENV !== "production" // eslint-disable-line n/no-process-env
+        ) {
+            return requestedDomain;
+        }
+        else {
+            throw new DomainOverrideNotAllowedError();
+        }
+    }
+};
+class PaymasterResponseError extends Error {
+    constructor(statusCode, message) {
+        super(`Paymaster sent a ${statusCode.toString()} response: ${message}`);
+        this.name = "PaymasterResponseError";
+    }
+}
+class NoChainIdAddressError extends Error {
+    constructor() {
+        super("Failed to derive chain ID address");
+        this.name = "NoChainIdAddressError";
+    }
+}
+class DomainRequiredError extends Error {
+    constructor() {
+        super("On platforms where the origin cannot be determined, you must pass a domain to create a session.");
+        this.name = "DomainRequiredError";
+    }
+}
+class DomainOverrideNotAllowedError extends Error {
+    constructor() {
+        super("You cannot create a session for a different domain.");
+        this.name = "DomainOverrideNotAllowedError";
+    }
+}

package/esm/index.d.ts

@@ -0,0 +1,47 @@
+import type { TransactionError } from "@solana/web3.js";
+import { PublicKey, TransactionInstruction } from "@solana/web3.js";
+import type { SessionAdapter, TransactionResult } from "./adapter.js";
+export { type SessionAdapter, type TransactionResult, TransactionResultType, createSolanaWalletAdapter, } from "./adapter.js";
+type EstablishSessionOptions = {
+    adapter: SessionAdapter;
+    walletPublicKey: PublicKey;
+    signMessage: (message: Uint8Array) => Promise<Uint8Array>;
+    expires: Date;
+    limits: Map<PublicKey, bigint>;
+    extra?: string | undefined;
+};
+export declare const establishSession: (options: EstablishSessionOptions) => Promise<EstablishSessionResult>;
+export declare const replaceSession: (options: {
+    adapter: SessionAdapter;
+    session: Session;
+    signMessage: (message: Uint8Array) => Promise<Uint8Array>;
+    expires: Date;
+    limits: Map<PublicKey, bigint>;
+    extra?: string | undefined;
+}) => Promise<EstablishSessionResult>;
+export declare const reestablishSession: (adapter: SessionAdapter, walletPublicKey: PublicKey, sessionKey: CryptoKeyPair) => Promise<Session>;
+export declare const getDomainRecordAddress: (domain: string) => PublicKey;
+export declare enum SessionResultType {
+    Success = 0,
+    Failed = 1
+}
+declare const EstablishSessionResult: {
+    Success: (signature: string, session: Session) => {
+        type: SessionResultType.Success;
+        signature: string;
+        session: Session;
+    };
+    Failed: (signature: string, error: TransactionError) => {
+        type: SessionResultType.Failed;
+        signature: string;
+        error: TransactionError;
+    };
+};
+type EstablishSessionResult = ReturnType<(typeof EstablishSessionResult)[keyof typeof EstablishSessionResult]>;
+export type Session = {
+    sessionPublicKey: PublicKey;
+    sessionKey: CryptoKeyPair;
+    walletPublicKey: PublicKey;
+    payer: PublicKey;
+    sendTransaction: (instructions: TransactionInstruction[]) => Promise<TransactionResult>;
+};

package/esm/index.js

@@ -0,0 +1,183 @@
+import { AnchorProvider, Wallet } from "@coral-xyz/anchor";
+import { DomainRegistryIdl, SessionManagerProgram } from "@fogo/sessions-idls";
+import { findMetadataPda, safeFetchMetadata, } from "@metaplex-foundation/mpl-token-metadata";
+import { publicKey as metaplexPublicKey } from "@metaplex-foundation/umi";
+import { createUmi } from "@metaplex-foundation/umi-bundle-defaults";
+import { sha256 } from "@noble/hashes/sha2";
+import { generateKeyPair, getAddressFromPublicKey } from "@solana/kit";
+import { createAssociatedTokenAccountIdempotentInstruction, getAssociatedTokenAddressSync, getMint, } from "@solana/spl-token";
+import { Ed25519Program, PublicKey, TransactionInstruction, } from "@solana/web3.js";
+import { TransactionResultType } from "./adapter.js";
+export { TransactionResultType, createSolanaWalletAdapter, } from "./adapter.js";
+const MESSAGE_HEADER = `Fogo Sessions:
+Signing this intent will allow this app to interact with your on-chain balances. Please make sure you trust this app and the domain in the message matches the domain of the current web application.
+`;
+const CURRENT_MAJOR = "0";
+const CURRENT_MINOR = "1";
+export const establishSession = async (options) => {
+    const sessionKey = await generateKeyPair();
+    const tokenInfo = await getTokenInfo(options);
+    const [intentInstruction, startSessionInstruction] = await Promise.all([
+        buildIntentInstruction(options, sessionKey, tokenInfo),
+        buildStartSessionInstruction(options, sessionKey, tokenInfo),
+    ]);
+    const result = await options.adapter.sendTransaction(sessionKey, [
+        intentInstruction,
+        ...buildCreateAssociatedTokenAccountInstructions(options, tokenInfo),
+        startSessionInstruction,
+    ]);
+    switch (result.type) {
+        case TransactionResultType.Success: {
+            return EstablishSessionResult.Success(result.signature, await createSession(options.adapter, options.walletPublicKey, sessionKey));
+        }
+        case TransactionResultType.Failed: {
+            return EstablishSessionResult.Failed(result.signature, result.error);
+        }
+    }
+};
+export const replaceSession = async (options) => establishSession({
+    ...options,
+    walletPublicKey: options.session.walletPublicKey,
+});
+// TODO we really should check to ensure the session is still valid...
+export const reestablishSession = async (adapter, walletPublicKey, sessionKey) => createSession(adapter, walletPublicKey, sessionKey);
+const createSession = async (adapter, walletPublicKey, sessionKey) => ({
+    sessionPublicKey: new PublicKey(await getAddressFromPublicKey(sessionKey.publicKey)),
+    walletPublicKey,
+    sessionKey,
+    payer: adapter.payer,
+    sendTransaction: (instructions) => adapter.sendTransaction(sessionKey, instructions),
+});
+const SymbolOrMintType = {
+    Symbol: "Symbol",
+    Mint: "Mint",
+};
+const SymbolOrMint = {
+    Symbol: (symbol) => ({
+        type: SymbolOrMintType.Symbol,
+        symbol,
+    }),
+    Mint: (mint) => ({
+        type: SymbolOrMintType.Mint,
+        mint,
+    }),
+};
+const getTokenInfo = async (options) => {
+    const umi = createUmi(options.adapter.connection.rpcEndpoint);
+    return Promise.all(options.limits.entries().map(async ([mint, amount]) => {
+        const metaplexMint = metaplexPublicKey(mint.toBase58());
+        const metadataAddress = findMetadataPda(umi, { mint: metaplexMint })[0];
+        const [mintInfo, metadata] = await Promise.all([
+            getMint(options.adapter.connection, mint),
+            safeFetchMetadata(umi, metadataAddress),
+        ]);
+        return {
+            symbolOrMint: metadata?.symbol
+                ? SymbolOrMint.Symbol(metadata.symbol)
+                : SymbolOrMint.Mint(mint),
+            metadataAddress: new PublicKey(metadataAddress),
+            amount,
+            mint,
+            decimals: mintInfo.decimals,
+        };
+    }));
+};
+const buildIntentInstruction = async (options, sessionKey, tokens) => {
+    const message = await buildMessage({
+        chainId: options.adapter.chainId,
+        domain: options.adapter.domain,
+        sessionKey,
+        expires: options.expires,
+        tokens,
+        extra: options.extra,
+    });
+    const intentSignature = await options.signMessage(message);
+    return Ed25519Program.createInstructionWithPublicKey({
+        publicKey: options.walletPublicKey.toBytes(),
+        signature: intentSignature,
+        message: message,
+    });
+};
+const buildMessage = async (body) => new TextEncoder().encode([
+    MESSAGE_HEADER,
+    serializeKV({
+        version: `${CURRENT_MAJOR}.${CURRENT_MINOR}`,
+        chain_id: body.chainId,
+        domain: body.domain,
+        expires: body.expires.toISOString(),
+        session_key: await getAddressFromPublicKey(body.sessionKey.publicKey),
+        tokens: serializeTokenList(body.tokens),
+        ...(body.extra && { extra: body.extra }),
+    }),
+].join("\n"));
+const serializeKV = (data) => Object.entries(data)
+    .map(([key, value]) => [key, ":", value.startsWith("\n") ? "" : " ", value].join(""))
+    .join("\n");
+const serializeTokenList = (tokens) => tokens
+    .values()
+    .filter(({ amount }) => amount > 0n)
+    .map(({ symbolOrMint, amount, decimals }) => `\n-${symbolOrMint.type === SymbolOrMintType.Symbol ? symbolOrMint.symbol : symbolOrMint.mint.toBase58()}: ${amountToString(amount, decimals)}`)
+    .toArray()
+    .join("");
+const amountToString = (amount, decimals) => {
+    const asStr = amount.toString();
+    const whole = asStr.length > decimals ? asStr.slice(0, asStr.length - decimals) : "0";
+    const decimal = asStr.length > decimals ? asStr.slice(asStr.length - decimals) : asStr;
+    const decimalPadded = decimal.padStart(decimals, "0");
+    const decimalTruncated = decimalPadded.replace(/0+$/, "");
+    return [
+        whole,
+        ...(decimalTruncated === "" ? [] : [".", decimalTruncated]),
+    ].join("");
+};
+const buildCreateAssociatedTokenAccountInstructions = (options, tokens) => tokens.map(({ mint }) => createAssociatedTokenAccountIdempotentInstruction(options.adapter.payer, getAssociatedTokenAddressSync(mint, options.walletPublicKey), options.walletPublicKey, mint));
+export const getDomainRecordAddress = (domain) => {
+    const hash = sha256(domain);
+    return PublicKey.findProgramAddressSync([Buffer.from("domain-record"), hash], new PublicKey(DomainRegistryIdl.address))[0];
+};
+const buildStartSessionInstruction = async (options, sessionKey, tokens) => new SessionManagerProgram(new AnchorProvider(options.adapter.connection, {}, {})).methods
+    .startSession()
+    .accounts({
+    sponsor: options.adapter.payer,
+    session: await getAddressFromPublicKey(sessionKey.publicKey),
+    domainRegistry: getDomainRecordAddress(options.adapter.domain),
+})
+    .remainingAccounts(tokens.flatMap(({ symbolOrMint, mint, metadataAddress }) => [
+    {
+        pubkey: getAssociatedTokenAddressSync(mint, options.walletPublicKey),
+        isWritable: true,
+        isSigner: false,
+    },
+    {
+        pubkey: mint,
+        isWritable: false,
+        isSigner: false,
+    },
+    ...(symbolOrMint.type === SymbolOrMintType.Symbol
+        ? [
+            {
+                pubkey: metadataAddress,
+                isWritable: false,
+                isSigner: false,
+            },
+        ]
+        : []),
+]))
+    .instruction();
+export var SessionResultType;
+(function (SessionResultType) {
+    SessionResultType[SessionResultType["Success"] = 0] = "Success";
+    SessionResultType[SessionResultType["Failed"] = 1] = "Failed";
+})(SessionResultType || (SessionResultType = {}));
+const EstablishSessionResult = {
+    Success: (signature, session) => ({
+        type: SessionResultType.Success,
+        signature,
+        session,
+    }),
+    Failed: (signature, error) => ({
+        type: SessionResultType.Failed,
+        signature,
+        error,
+    }),
+};

package/esm/package.json

@@ -0,0 +1 @@
+{"type":"module"}

package/esm/paymaster.d.ts

@@ -0,0 +1,7 @@
+import type { Transaction, Rpc, SolanaRpcApi } from "@solana/kit";
+import { Keypair } from "@solana/web3.js";
+export declare const sponsorAndSend: (rpc: Rpc<SolanaRpcApi>, sponsor: CryptoKeyPair, transaction: Transaction) => Promise<import("@solana/kit").Signature>;
+export declare const createPaymasterEndpoint: (options: {
+    rpc: string;
+    sponsor: Keypair;
+}) => Promise<(req: Request) => Promise<Response>>;

package/esm/paymaster.js

@@ -0,0 +1,51 @@
+import { fromLegacyKeypair } from "@solana/compat";
+import { signTransaction, createSolanaRpc, getBase64EncodedWireTransaction, getTransactionDecoder, getBase64Encoder, getSignatureFromTransaction, } from "@solana/kit";
+import { Keypair } from "@solana/web3.js";
+import { z } from "zod";
+export const sponsorAndSend = async (rpc, sponsor, transaction) => {
+    const signedTransaction = await signTransaction([sponsor], transaction);
+    await rpc
+        .sendTransaction(getBase64EncodedWireTransaction(signedTransaction), {
+        encoding: "base64",
+        skipPreflight: true,
+    })
+        .send();
+    return getSignatureFromTransaction(signedTransaction);
+};
+export const createPaymasterEndpoint = async (options) => {
+    const rpc = createSolanaRpc(options.rpc);
+    const sponsor = await fromLegacyKeypair(options.sponsor);
+    return async (req) => {
+        const data = postBodySchema.parse(await req.json());
+        try {
+            const transaction = getTransactionDecoder().decode(getBase64Encoder().encode(data.transaction));
+            try {
+                return new Response(await sponsorAndSend(rpc, sponsor, transaction));
+            }
+            catch (error) {
+                // eslint-disable-next-line no-console
+                console.error(error);
+                return new Response(`Failed to sponsor and send: ${serializeError(error)}`, { status: 500 });
+            }
+        }
+        catch (error) {
+            // eslint-disable-next-line no-console
+            console.error(error);
+            return new Response("Failed to deserialize transaction", { status: 400 });
+        }
+    };
+};
+const postBodySchema = z.strictObject({
+    transaction: z.string(),
+});
+const serializeError = (error) => {
+    if (error instanceof Error) {
+        return error.message;
+    }
+    else if (typeof error === "string") {
+        return error.toString();
+    }
+    else {
+        return "Unknown Error";
+    }
+};

package/package.json

@@ -0,0 +1,52 @@
+{
+  "name": "@fogo/sessions-sdk",
+  "version": "0.0.1",
+  "description": "A set of utilities for integrating with Fogo sessions",
+  "keywords": [
+    "fogo",
+    "sessions",
+    "crypto",
+    "wallet"
+  ],
+  "type": "module",
+  "main": "./cjs/index.js",
+  "types": "./cjs/index.d.ts",
+  "engines": {
+    "node": ">=18"
+  },
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./esm/index.d.ts",
+        "default": "./esm/index.js"
+      },
+      "require": {
+        "types": "./cjs/index.d.ts",
+        "default": "./cjs/index.js"
+      }
+    },
+    "./paymaster": {
+      "import": {
+        "types": "./esm/paymaster.d.ts",
+        "default": "./esm/paymaster.js"
+      },
+      "require": {
+        "types": "./cjs/paymaster.d.ts",
+        "default": "./cjs/paymaster.js"
+      }
+    }
+  },
+  "dependencies": {
+    "@coral-xyz/anchor": "^0.31.1",
+    "@metaplex-foundation/mpl-token-metadata": "^3.4.0",
+    "@metaplex-foundation/umi": "^1.2.0",
+    "@metaplex-foundation/umi-bundle-defaults": "^1.2.0",
+    "@solana/compat": "^2.1.1",
+    "@solana/kit": "^2.1.1",
+    "@solana/spl-token": "^0.4.13",
+    "@solana/web3.js": "^1.92.3",
+    "bs58": "^6.0.0",
+    "zod": "^3.25.62",
+    "@fogo/sessions-idls": "0.0.1"
+  }
+}