@getpara/core-sdk 1.4.2 → 1.4.4-dev.0

package/dist/cjs/index.js

@@ -1,2 +1,3793 @@
-var wt=Object.create;var se=Object.defineProperty;var It=Object.getOwnPropertyDescriptor;var Pt=Object.getOwnPropertyNames;var At=Object.getPrototypeOf,Tt=Object.prototype.hasOwnProperty;var Ue=(i,e)=>{for(var t in e)se(i,t,{get:e[t],enumerable:!0})},Ne=(i,e,t,r)=>{if(e&&typeof e=="object"||typeof e=="function")for(let s of Pt(e))!Tt.call(i,s)&&s!==t&&se(i,s,{get:()=>e[s],enumerable:!(r=It(e,s))||r.enumerable});return i};var P=(i,e,t)=>(t=i!=null?wt(At(i)):{},Ne(e||!i||!i.__esModule?se(t,"default",{value:i,enumerable:!0}):t,i)),Wt=i=>Ne(se({},"__esModule",{value:!0}),i);var Jt={};Ue(Jt,{AuthMethod:()=>u.AuthMethod,EmailTheme:()=>u.EmailTheme,EnabledFlow:()=>$e,Environment:()=>Ve,KeyContainer:()=>b,NON_ED25519:()=>u.NON_ED25519,Network:()=>u.Network,OAuthMethod:()=>u.OAuthMethod,OnRampAsset:()=>u.OnRampAsset,OnRampMethod:()=>Ee,OnRampProvider:()=>u.OnRampProvider,OnRampPurchaseStatus:()=>u.OnRampPurchaseStatus,OnRampPurchaseType:()=>u.OnRampPurchaseType,PREGEN_IDENTIFIER_TYPES:()=>u.PREGEN_IDENTIFIER_TYPES,ParaEvent:()=>h,PopupType:()=>ae,PregenIdentifierType:()=>Se,RecoveryStatus:()=>we,STORAGE_PREFIX:()=>f,TransactionReviewDenied:()=>$,TransactionReviewError:()=>te,TransactionReviewTimeout:()=>H,WalletScheme:()=>u.WalletScheme,WalletType:()=>u.WalletType,decimalToHex:()=>bt,decryptPrivateKey:()=>Ce,decryptPrivateKeyAndDecryptShare:()=>st,decryptPrivateKeyWithPassword:()=>Re,decryptWithKeyPair:()=>tt,decryptWithPrivateKey:()=>F,default:()=>jt,distributeNewShare:()=>v,encodePrivateKeyToPemHex:()=>pe,encryptPrivateKey:()=>Qe,encryptPrivateKeyWithPassword:()=>nt,encryptWithDerivedPublicKey:()=>Z,entityToWallet:()=>x,getAsymmetricKeyPair:()=>B,getBaseMPCNetworkUrl:()=>Mt,getBaseOAuthUrl:()=>Oe,getBaseUrl:()=>xe,getCosmosAddress:()=>ye,getDerivedPrivateKeyAndDecrypt:()=>rt,getOnRampAssets:()=>Me,getOnRampNetworks:()=>Fe,getPortalBaseURL:()=>T,getPortalDomain:()=>Ie,getPublicKeyFromSignature:()=>Ze,getPublicKeyHex:()=>L,getSHA256HashHex:()=>We,hashPasswordWithSalt:()=>it,hexStringToBase64:()=>Rt,hexToDecimal:()=>Lt,hexToSignature:()=>Ot,hexToUint8Array:()=>xt,initClient:()=>de,isWalletSupported:()=>le,mpcComputationClient:()=>ue,normalizePhoneNumber:()=>fe,paraVersion:()=>Ht,publicKeyFromHex:()=>Xe,stringToPhoneNumber:()=>D,toAssetInfoArray:()=>ne,transmissionUtilsRetrieve:()=>ht,truncateAddress:()=>ie,waitUntilTrue:()=>Ut});module.exports=Wt(Jt);var me=require("buffer"),p=require("@getpara/user-management-client"),Et=P(require("node-forge"));var Je=P(require("base64url")),E=P(require("node-forge"));function g(i,e,t){typeof window<"u"&&window.dispatchEvent&&window.dispatchEvent(new CustomEvent(i,{detail:{data:e,...t&&{error:new Error(t)}}}))}var ke=require("@cosmjs/encoding"),Ke=require("@noble/hashes/sha256"),De=require("@noble/hashes/ripemd160"),Ge=P(require("elliptic")),Be=P(require("libphonenumber-js")),Ct=new Ge.default.ec("secp256k1");function Rt(i){return i.substring(0,2)==="0x"&&(i=i.substring(2)),Buffer.from(i,"hex").toString("base64")}function Ot(i){return{r:`0x${i.slice(2,66)}`,s:`0x${i.slice(66,130)}`,v:BigInt(i.slice(130,132))}}function xt(i){return i.startsWith("0x")&&(i=i.slice(2)),new Uint8Array(Buffer.from(i,"hex"))}function Lt(i){return i.startsWith("0x")&&(i=i.slice(2)),`${parseInt(i,16)}`}function bt(i){return`0x${parseInt(i).toString(16)}`}function vt(i){switch(i.length){case 33:return i;case 65:return Uint8Array.from(Ct.keyFromPublic(i).getPublic(!0,"array"));default:throw new Error("Invalid pubkey length")}}function _t(i){if(i.length!==33)throw new Error(`Invalid Secp256k1 pubkey length (compressed): ${i.length}`);return(0,De.ripemd160)((0,Ke.sha256)(i))}function ye(i,e){let t=new Uint8Array(Buffer.from(i.startsWith("0x")?i.slice(2):i,"hex")),r=vt(t);return(0,ke.toBech32)(e,_t(r))}function ie(i,e,{prefix:t=e==="COSMOS"?"cosmos":void 0}={}){let r=(e==="COSMOS"?t.length:e==="SOLANA"?0:2)+4;return`${i.slice(0,r)}...${i.slice(-4)}`}function D(i){return(0,Be.default)(i)?.formatInternational().replace(/[^\d+]/g,"")}function fe(i,e){return D(`${i[0]!=="+"?"+":""}${i}${e}`)}function ne(i){let e=[];return Object.keys(i).forEach(t=>{let r=i[t];Object.keys(r).forEach(s=>{let n=r[s];Object.keys(n).forEach(a=>{let o=n[a];e.push([t,s,a,o])})})}),e}function Fe(i,{walletType:e,allowed:t}={}){return[...new Set(ne(i).filter(([r,s])=>(!e||r===e)&&(!t||t.includes(s))).map(([r,s])=>s))]}function Me(i,{walletType:e,network:t,allowed:r}={}){return[...new Set(ne(i).filter(([s,n,a])=>(!e||s===e)&&(!t||n===t)&&(!Array.isArray(r)||r.includes(a))).map(([,,s])=>s))]}async function Ut(i,e,t){let r=Date.now();for(;Date.now()-r<e;){if(await i())return!0;await new Promise(s=>setTimeout(s,t))}return!1}var Ve=(a=>(a.DEV="DEV",a.SANDBOX="SANDBOX",a.BETA="BETA",a.PROD="PROD",a.DEVELOPMENT="BETA",a.PRODUCTION="PROD",a))(Ve||{}),$e=(r=>(r.BUY="BUY",r.RECEIVE="RECEIVE",r.WITHDRAW="WITHDRAW",r))($e||{});var Se=(t=>(t.EMAIL="EMAIL",t.PHONE="PHONE",t))(Se||{});var Ee=(s=>(s.ACH="ACH",s.DEBIT="Debit",s.CREDIT="Credit",s.APPLE_PAY="Apple Pay",s))(Ee||{});var ae=(a=>(a.SIGN_TRANSACTION_REVIEW="SIGN_TRANSACTION_REVIEW",a.SIGN_MESSAGE_REVIEW="SIGN_MESSAGE_REVIEW",a.LOGIN_PASSKEY="LOGIN_PASSKEY",a.CREATE_PASSKEY="CREATE_PASSKEY",a.OAUTH="OAUTH",a.ON_RAMP_TRANSACTION="ON_RAMP_TRANSACTION",a))(ae||{});var we=(n=>(n.INITIATED="INITIATED",n.READY="READY",n.EXPIRED="EXPIRED",n.FINISHED="FINISHED",n.CANCELLED="CANCELLED",n))(we||{});var A="para",h=(d=>(d.LOGIN_EVENT=`${A}Login`,d.ACCOUNT_CREATION_EVENT=`${A}AccountCreation`,d.ACCOUNT_SETUP_EVENT=`${A}AccountSetup`,d.LOGOUT_EVENT=`${A}Logout`,d.SIGN_MESSAGE_EVENT=`${A}SignMessage`,d.SIGN_TRANSACTION_EVENT=`${A}SignTransaction`,d.EXTERNAL_WALLET_CHANGE_EVENT=`${A}ExternalWalletChange`,d.WALLETS_CHANGE_EVENT=`${A}WalletsChange`,d.WALLET_CREATED=`${A}WalletCreated`,d.PREGEN_WALLET_CLAIMED=`${A}PregenWalletClaimed`,d))(h||{});function Ie(i,e){if(e)return"localhost";switch(i){case"DEV":return"localhost";case"SANDBOX":return"app.sandbox.usecapsule.com";case"BETA":return"app.beta.usecapsule.com";case"PROD":return"app.usecapsule.com";default:throw new Error(`env: ${i} not supported`)}}function T({env:i,isE2E:e},t,r){if(e)return r?"https://app.sandbox.usecapsule.com":"http://localhost:3003";let s=Ie(i);return i==="DEV"?t?"http://127.0.0.1:3003":`http://${s}:3003`:`https://${s}`}function Nt(i){switch(i){case"DEV":return"localhost";case"SANDBOX":return"connect.sandbox.getpara.com";case"BETA":return"connect.beta.getpara.com";case"PROD":return"connect.getpara.com";default:throw new Error(`env: ${i} not supported`)}}function He({env:i},e){let t=Nt(i);return i==="DEV"?e?"http://127.0.0.1:3008":`http://${t}:3008`:`https://${t}`}function oe({base:i,path:e,params:t={}}){let r=new URL(e,i);return Object.entries(t).forEach(([s,n])=>{n&&n!=="undefined"&&n!=="null"&&r.searchParams.set(s,n.toString())}),r.toString()}var S=require("@getpara/user-management-client");var I={[S.WalletScheme.DKLS]:{[S.WalletType.EVM]:!0,[S.WalletType.COSMOS]:!0},[S.WalletScheme.CGGMP]:{[S.WalletType.EVM]:!0,[S.WalletType.COSMOS]:!0},[S.WalletScheme.ED25519]:{[S.WalletType.SOLANA]:!0}};function je(i,e,t){if(!i||!e)return!1;switch(t){case"EMAIL":return i.toLowerCase()===e.toLowerCase();case"PHONE":return D(i)===D(e);case"CUSTOM_ID":return i===e;default:return i.replace(/^@/g,"").toLowerCase()===e.replace(/^@/g,"").toLowerCase()}}function le(i,e){return i.some(t=>!!I[e.scheme][t])}function Pe(i){return Object.keys(I).filter(e=>e===S.WalletScheme.CGGMP?!1:(Array.isArray(i)?i:Object.keys(i)).some(t=>I[e][t]))}function kt(i){return[...new Set(i.reduce((e,t)=>[...e,...Object.keys(I[t]).filter(r=>I[t][r])],[]))]}function Ae(i){return kt(Pe((Array.isArray(i)?i:[i]).map(e=>S.WalletType[e])))}function x(i){return{...i,scheme:i.scheme,type:i.type,pregenIdentifierType:i.pregenIdentifierType}}function G(i){return["USER","PREGEN"].includes(i.type)&&(i.isPregen=i.type==="PREGEN",i.type=i.scheme===S.WalletScheme.ED25519?S.WalletType.SOLANA:S.WalletType.EVM),i.scheme&&!i.type&&(i.type=i.scheme===S.WalletScheme.ED25519?S.WalletType.SOLANA:S.WalletType.EVM),i}var Kt=E.default.pki.rsa,Te="RSA-OAEP",Ye="794241bc819a125a7b78ea313decc0bc",ce=new Uint8Array([23,66,157,146,179,158,117,120,184,73,123,81]);function We(i){let e=E.default.md.sha256.create();return e.update(i),e.digest().toHex()}function L(i){let e=E.default.pki.publicKeyToRSAPublicKeyPem(i.publicKey);return Buffer.from(e,"utf-8").toString("hex")}function Xe(i){let e=qe(i);return E.default.pki.publicKeyFromPem(e)}function qe(i){return Buffer.from(i,"hex").toString("utf-8")}function pe(i){let e=E.default.pki.privateKeyToPem(i.privateKey);return Buffer.from(e,"utf-8").toString("hex")}function ze(i){let e=Buffer.from(i,"hex").toString("utf-8");return E.default.pki.privateKeyFromPem(e)}async function Qe(i,e){let t=pe(i),r=await window.crypto.subtle.importKey("raw",Buffer.from(e,"base64"),{name:"AES-GCM",length:256},!0,["encrypt","decrypt"]),s=new TextEncoder().encode(t),n=await window.crypto.subtle.encrypt({name:"AES-GCM",iv:ce},r,s);return Buffer.from(n).toString("base64")}async function Ce(i,e){let t=await crypto.subtle.importKey("raw",Buffer.from(e,"base64"),{name:"AES-GCM",length:256},!0,["encrypt","decrypt"]),r=await crypto.subtle.decrypt({name:"AES-GCM",iv:ce},t,Buffer.from(i,"base64")),s=new TextDecoder().decode(r);return ze(s)}async function B(i,e){let t=E.default.random.createInstance();e&&(t.seedFileSync=s=>e,t.seedFile=(s,n)=>{n(null,e)});let r={bits:2048,e:65537,prng:t};if(!i.disableWorkers){r.workLoad=100,r.workers=e?1:-1;let s=await fetch(`${T(i)}/static/js/prime.worker.min.js`),n=new Blob([await s.text()],{type:"application/javascript"});r.workerScript=URL.createObjectURL(n)}return new Promise((s,n)=>Kt.generateKeyPair(r,(a,o)=>{a&&n(a),s(o)}))}async function Ze(i,e){let t=Je.default.encode(e),r=await B(i,t);return L(r)}function Dt(i){let e=E.default.random.getBytesSync(16),t=E.default.cipher.createCipher("AES-CBC",e);t.start({iv:Ye}),t.update(E.default.util.createBuffer(i)),t.finish();let r=t.output.toHex();return{key:e,encryptedMessageHex:r}}function et(i,e){let t=E.default.cipher.createDecipher("AES-CBC",i);return t.start({iv:Ye}),t.update(E.default.util.createBuffer(E.default.util.hexToBytes(e))),t.finish(),t.output.toString()}function tt(i,e,t){let r=Buffer.from(t,"hex").toString("utf-8"),s=i.privateKey.decrypt(r,Te);return et(s,e)}function F(i,e,t){let r=Buffer.from(t,"hex").toString("utf-8"),s=i.decrypt(r,Te);return et(s,e)}async function Gt(i,{seedValue:e,encryptedMessageHex:t,encryptedKeyHex:r}){let s=await B(i,e);return F(s.privateKey,t,r)}async function rt(i,e,t){return Promise.all(t.map(async r=>({walletId:r.walletId,walletScheme:r.walletScheme,partnerId:r.partnerId,signer:await Gt(i,{seedValue:e,encryptedMessageHex:r.encryptedShare,encryptedKeyHex:r.encryptedKey}),protocolId:r.protocolId})))}async function st(i,e,t){let r;try{r=await Ce(t,i)}catch{}try{r=await Re(t,i)}catch{}if(!r)throw new Error("Could not decrypt private key");return e.map(s=>({walletId:s.walletId,walletScheme:s.walletScheme,partnerId:s.partnerId,signer:F(r,s.encryptedShare,s.encryptedKey),protocolId:s.protocolId}))}function Z(i,e){let{key:t,encryptedMessageHex:r}=Dt(e),s=qe(i),a=E.default.pki.publicKeyFromPem(s).encrypt(t,Te),o=Buffer.from(a,"utf-8").toString("hex");return{encryptedMessageHex:r,encryptedKeyHex:o}}function it(i){let e=Bt(),t=e+i,r=We(t);return{salt:e,hash:r}}function Bt(i=16){return E.default.util.bytesToHex(E.default.random.getBytesSync(i))}async function Ft(i){let e=Buffer.from(i,"hex");return await window.crypto.subtle.importKey("raw",e,{name:"AES-GCM",length:256},!0,["encrypt","decrypt"])}async function nt(i,e){let t=await Ft(e),r=pe(i),s=new TextEncoder().encode(r),n=await window.crypto.subtle.encrypt({name:"AES-GCM",iv:ce},t,s);return Buffer.from(n).toString("base64")}async function Re(i,e){let t=await crypto.subtle.importKey("raw",Buffer.from(e,"hex"),{name:"AES-GCM",length:256},!0,["encrypt","decrypt"]),r=await crypto.subtle.decrypt({name:"AES-GCM",iv:ce},t,Buffer.from(i,"base64")),s=new TextDecoder().decode(r);return ze(s)}var at=P(require("@getpara/user-management-client"));function Oe(i){switch(i){case"DEV":return"http://localhost:8080/";case"SANDBOX":return"https://api.sandbox.usecapsule.com/";case"BETA":return"https://api.beta.usecapsule.com/";case"PROD":return"https://api.usecapsule.com/";default:throw new Error(`unsupported env: ${i}`)}}function xe(i){switch(i){case"DEV":return"http://localhost:8080/";case"SANDBOX":return"https://api.sandbox.getpara.com/";case"BETA":return"https://api.beta.getpara.com/";case"PROD":return"https://api.getpara.com/";default:throw new Error(`unsupported env: ${i}`)}}function Mt(i,e){let t=e?"ws":"http";switch(i){case"DEV":return`${t}://localhost:3000`;case"SANDBOX":return`${t}s://mpc-network.sandbox.getpara.com`;case"BETA":return`${t}s://mpc-network.beta.getpara.com`;case"PROD":return`${t}s://mpc-network.prod.getpara.com`;default:throw new Error(`unsupported env: ${i}`)}}function de({env:i,version:e,apiKey:t,partnerId:r,useFetchAdapter:s=!1,retrieveSessionCookie:n,persistSessionCookie:a}){return new at.default({userManagementHost:xe(i),version:["DEV","SANDBOX"].includes(i)?"dev":e,apiKey:t,partnerId:r,opts:{useFetchAdapter:s},retrieveSessionCookie:n,persistSessionCookie:a})}var ue={};Ue(ue,{initClient:()=>Le});var ot=P(require("axios"));function Le(i,e){let t=ot.default.create({baseURL:i});return e&&(t.defaults.adapter=function(r){return fetch(r.baseURL+r.url,{method:r.method,headers:r.headers,body:r.data,credentials:r.withCredentials?"include":void 0}).then(s=>s.text().then(n=>({data:n,status:s.status,statusText:s.statusText,headers:s.headers,config:r,request:fetch}))).catch(function(s){throw s})}),t}var V=require("@getpara/user-management-client");var M=require("@getpara/user-management-client");var ee=require("@celo/utils/lib/ecies.js"),lt=P(require("ethereumjs-util")),ct=P(require("node-forge")),b=class i{constructor(e,t,r){this.walletId=e,this.keyshare=t,this.address=r,this.backupDecryptionKey=Buffer.from(ct.random.getBytesSync(32),"binary").toString("hex")}static buildFrom(e){try{let t=JSON.parse(e);return Object.assign(new i("","",""),t)}catch{let r=new i("","","");return r.backupDecryptionKey=e.split("|")[0],r}}getPublicEncryptionKey(){return Buffer.from(lt.privateToPublic(Buffer.from(this.backupDecryptionKey,"hex")))}getPublicEncryptionKeyHex(){return this.getPublicEncryptionKey().toString("hex")}encryptForSelf(e){try{let t=this.getPublicEncryptionKey();return(0,ee.Encrypt)(t,Buffer.from(e,"ucs2")).toString("base64")}catch{throw Error("Error encrypting backup")}}static encryptWithPublicKey(e,t){try{return(0,ee.Encrypt)(e,Buffer.from(t,"ucs2")).toString("base64")}catch{throw Error("Error encrypting backup")}}decrypt(e){try{let t=Buffer.from(e,"base64"),r=(0,ee.Decrypt)(Buffer.from(this.backupDecryptionKey,"hex"),t);return Buffer.from(r.buffer).toString("ucs2")}catch{throw Error("Error decrypting backup")}}};async function he({ctx:i,userId:e,walletId:t,otherEncryptedShares:r=[],userSigner:s,ignoreRedistributingBackupEncryptedShare:n=!1,emailProps:a={},forceRefresh:o=!1}){if(n)return await i.client.uploadUserKeyShares(e,r.map(w=>({walletId:t,...w}))),"";let l,c,{recoveryPublicKeys:d}=await i.client.getRecoveryPublicKeys(e);if(o||!d?.length){c=new b(t,"","");let{recoveryPublicKeys:w}=await i.client.persistRecoveryPublicKeys(e,[c.getPublicEncryptionKeyHex()]),m=c.encryptForSelf(s);l=[{walletId:t,encryptedShare:m,type:M.KeyShareType.USER,encryptor:M.EncryptorType.RECOVERY,recoveryPublicKeyId:w[0].id}]}else l=d.map(w=>{let{id:m,publicKey:y}=w,W=b.encryptWithPublicKey(Buffer.from(y,"hex"),s);return{walletId:t,encryptedShare:W,type:M.KeyShareType.USER,encryptor:M.EncryptorType.RECOVERY,recoveryPublicKeyId:m}});return await i.client.uploadUserKeyShares(e,[...r.map(w=>({walletId:t,...w})),...n?[]:l]),await i.client.distributeParaShare({userId:e,walletId:t,useDKLS:i.useDKLS,...a}),c?JSON.stringify(c):""}async function v({ctx:i,userId:e,walletId:t,userShare:r,ignoreRedistributingBackupEncryptedShare:s=!1,emailProps:n={},partnerId:a,protocolId:o}){let c=(await i.client.getSessionPublicKeys(e)).data.keys.map(y=>{if(!y.publicKey)return;let{encryptedMessageHex:W,encryptedKeyHex:K}=Z(y.sigDerivedPublicKey,r);return{encryptedShare:W,encryptedKey:K,type:V.KeyShareType.USER,encryptor:V.EncryptorType.BIOMETRICS,biometricPublicKey:y.sigDerivedPublicKey,partnerId:a,protocolId:o}}).filter(Boolean),w=(await i.client.getPasswords({userId:e})).map(y=>{if(y.status==="PENDING")return;let{encryptedMessageHex:W,encryptedKeyHex:K}=Z(y.sigDerivedPublicKey,r);return{encryptedShare:W,encryptedKey:K,type:V.KeyShareType.USER,encryptor:V.EncryptorType.PASSWORD,passwordId:y.id,partnerId:a,protocolId:o}}).filter(Boolean),m=[...c,...w];return await he({ctx:i,userId:e,walletId:t,otherEncryptedShares:m,userSigner:r,ignoreRedistributingBackupEncryptedShare:s,emailProps:n})}var ge=require("@celo/utils/lib/ecies.js"),_=require("buffer"),pt=P(require("ethereumjs-util")),dt=require("crypto");async function ut(i,e){let t,r;for(;;)try{t=(0,dt.randomBytes)(32).toString("hex"),r=pt.privateToPublic(_.Buffer.from(t,"hex"));break}catch{continue}let s=_.Buffer.from(r),n=(0,ge.Encrypt)(s,_.Buffer.from(i,"ucs2")).toString("base64"),{data:{id:a}}=await e.tempTrasmissionInit(n);return encodeURIComponent(a+"|"+t)}async function ht(i,e){let[t,r]=decodeURIComponent(i).split("|"),n=(await e.tempTrasmission(t)).data.message,a=_.Buffer.from(n,"base64");return _.Buffer.from((0,ge.Decrypt)(_.Buffer.from(r,"hex"),a).buffer).toString("ucs2")}var te=class extends Error{constructor(e){super("transaction review error"),this.name="TransactionReviewError",this.transactionReviewUrl=e}},$=class extends Error{constructor(){super("transaction review has been denied by the user"),this.name="TransactionReviewDenied"}},H=class extends Error{constructor(e,t){super("transaction review has timed out"),this.name="TransactionReviewTimeout",this.transactionReviewUrl=e,this.pendingTransactionId=t}};var gt='1.4.1',f="@CAPSULE/",j=`${f}e-mail`,J=`${f}phone`,Y=`${f}countryCode`,mt=`${f}farcasterUsername`,X=`${f}telegramUserId`,q=`${f}userId`,U=`${f}ed25519Wallets`,C=`${f}wallets`,z=`${f}externalWallets`,N=`${f}currentWalletIds`,Q=`${f}currentExternalWalletAddresses`,O=`${f}sessionCookie`,k=`${f}loginEncryptionKeyPair`,R=2e3,be=1e3;function ft(i){i.url.includes(window.location.origin)&&(i.key===Q&&this.updateCurrentExternalWalletAddressesFromStorage(),i.key===z&&this.updateExternalWalletsFromStorage(),i.key===k&&this.updateLoginEncryptionKeyPairFromStorage(),i.key===O&&this.updateSessionCookieFromStorage(),i.key===N&&this.updateWalletIdsFromStorage(),(i.key===C||i.key===U)&&this.updateWalletsFromStorage(),i.key===j&&this.updateEmailFromStorage(),i.key===Y&&this.updateCountryCodeFromStorage(),i.key===J&&this.updatePhoneFromStorage(),i.key===q&&this.updateUserIdFromStorage(),i.key===X&&this.updateTelegramUserIdFromStorage())}function ve(){typeof window<"u"&&window.addEventListener&&window.location&&(window.removeEventListener("storage",ft.bind(this)),window.addEventListener("storage",ft.bind(this)))}typeof global<"u"?global.Buffer=global.Buffer||me.Buffer:typeof window<"u"?(window.Buffer=window.Buffer||me.Buffer,window.global=window.global||window):(self.Buffer=self.Buffer||me.Buffer,self.global=self.global||self);var{pki:St,jsbn:$t}=Et.default,re=class i{constructor(e,t,r){this.isAwaitingAccountCreation=!1;this.isAwaitingLogin=!1;this.isAwaitingFarcaster=!1;this.isAwaitingOAuth=!1;this.currentWalletIds={};this.#e=void 0;this.#t=void 0;this.localStorageGetItem=e=>this.platformUtils.localStorage.get(e);this.localStorageSetItem=(e,t)=>this.platformUtils.localStorage.set(e,t);this.sessionStorageGetItem=e=>this.platformUtils.sessionStorage.get(e);this.sessionStorageSetItem=(e,t)=>this.platformUtils.sessionStorage.set(e,t);this.sessionStorageRemoveItem=e=>this.platformUtils.sessionStorage.removeItem(e);this.retrieveSessionCookie=()=>this.sessionCookie;this.clearStorage=async(e="all")=>{let t=e==="all";(t||e==="local")&&this.platformUtils.localStorage.clear(f),(t||e==="session")&&this.platformUtils.sessionStorage.clear(f),(t||e==="secure")&&this.platformUtils.secureStorage&&this.platformUtils.secureStorage.clear(f)};this.initializeFromStorage=()=>{this.updateEmailFromStorage(),this.updateCountryCodeFromStorage(),this.updatePhoneFromStorage(),this.updateUserIdFromStorage(),this.updateTelegramUserIdFromStorage(),this.updateWalletsFromStorage(),this.updateWalletIdsFromStorage(),this.updateSessionCookieFromStorage(),this.updateLoginEncryptionKeyPairFromStorage(),this.updateExternalWalletsFromStorage(),this.updateCurrentExternalWalletAddressesFromStorage()};this.updateTelegramUserIdFromStorage=()=>{this.telegramUserId=this.localStorageGetItem(X)||void 0};this.updateUserIdFromStorage=()=>{this.userId=this.localStorageGetItem(q)||void 0};this.updatePhoneFromStorage=()=>{this.phone=this.localStorageGetItem(J)||void 0};this.updateCountryCodeFromStorage=()=>{this.countryCode=this.localStorageGetItem(Y)||void 0};this.updateEmailFromStorage=()=>{this.email=this.localStorageGetItem(j)||void 0};this.updateWalletsFromStorage=async()=>{let e=this.localStorageGetItem(N)??void 0,t=[void 0,null,"undefined"].includes(e)?{}:(()=>{let l=JSON.parse(e);return Array.isArray(l)?Object.keys(p.WalletType).reduce((c,d)=>{let w=Object.values(this.wallets).find(m=>l.includes(m.id)&&I[m.scheme][d]);return{...c,...w&&!c[d]?{[d]:[w.id]}:{}}},{}):l})();this.setCurrentWalletIds(t);let r=this.platformUtils.secureStorage?this.platformUtils.secureStorage.get(C):this.localStorageGetItem(C),s=JSON.parse(r||"{}"),n=this.platformUtils.secureStorage?this.platformUtils.secureStorage.get(U):this.localStorageGetItem(U),a=JSON.parse(n||"{}"),o={...Object.keys(s).reduce((l,c)=>({...l,[c]:G(s[c])}),{}),...Object.keys(a).reduce((l,c)=>({...l,...l[c]?{}:{[c]:G(a[c])}}),{})};this.setWallets(o)};this.updateWalletIdsFromStorage=()=>{let e=this.localStorageGetItem(N)??void 0,t=[void 0,null,"undefined"].includes(e)?{}:(()=>{let r=JSON.parse(e);return Array.isArray(r)?Object.keys(p.WalletType).reduce((s,n)=>{let a=Object.values(this.wallets).find(o=>r.includes(o.id)&&I[o.scheme][n]);return{...s,...a&&!s[n]?{[n]:[a.id]}:{}}},{}):r})();this.setCurrentWalletIds(t),Object.values(this.wallets).filter(r=>this.isWalletOwned(r)).length>0&&this.currentWalletIdsArray.length===0&&this.findWalletId(void 0,{forbidPregen:!0})};this.updateSessionCookieFromStorage=()=>{this.sessionCookie=this.localStorageGetItem(O)||this.sessionStorageGetItem(O)||void 0};this.updateLoginEncryptionKeyPairFromStorage=()=>{let e=this.sessionStorageGetItem(k);e&&e!=="undefined"&&(this.loginEncryptionKeyPair=this.convertEncryptionKeyPair(JSON.parse(e)))};this.updateExternalWalletsFromStorage=()=>{let e=this.localStorageGetItem(z),t=JSON.parse(e||"{}");this.setExternalWallets(t)};this.updateCurrentExternalWalletAddressesFromStorage=()=>{let e=this.localStorageGetItem(Q)||void 0;this.currentExternalWalletAddresses=e?JSON.parse(e):void 0};this.createWalletPerMissingType=this.createWalletPerType;r||(r={}),this.emailPrimaryColor=r.emailPrimaryColor,this.emailTheme=r.emailTheme,this.homepageUrl=r.homepageUrl,this.supportUrl=r.supportUrl,this.xUrl=r.xUrl,this.githubUrl=r.githubUrl,this.linkedinUrl=r.linkedinUrl,this.portalBackgroundColor=r.portalBackgroundColor,this.portalPrimaryButtonColor=r.portalPrimaryButtonColor,this.portalTextColor=r.portalTextColor,this.portalPrimaryButtonTextColor=r.portalPrimaryButtonTextColor,this.portalTheme=r.portalTheme,this.platformUtils=this.getPlatformUtils(),this.disableProviderModal=this.platformUtils.disableProviderModal,r.useStorageOverrides&&(this.localStorageGetItem=r.localStorageGetItemOverride,this.localStorageSetItem=r.localStorageSetItemOverride,this.sessionStorageGetItem=r.sessionStorageGetItemOverride,this.sessionStorageSetItem=r.sessionStorageSetItemOverride,this.sessionStorageRemoveItem=r.sessionStorageRemoveItemOverride,this.clearStorage=r.clearStorageOverride),r.useSessionStorage&&(this.localStorageGetItem=this.sessionStorageGetItem,this.localStorageSetItem=this.sessionStorageSetItem),this.persistSessionCookie=s=>{this.sessionCookie=s,(r.useSessionStorage?this.sessionStorageSetItem:this.localStorageSetItem)(O,s)},this.ctx={env:e,apiKey:t,client:de({env:e,version:i.version,apiKey:t,partnerId:this.isPortal(e)?r.portalPartnerId:void 0,useFetchAdapter:!!r.disableWorkers,retrieveSessionCookie:this.retrieveSessionCookie,persistSessionCookie:this.persistSessionCookie}),disableWorkers:r.disableWorkers,offloadMPCComputationURL:r.offloadMPCComputationURL,useLocalFiles:r.useLocalFiles,useDKLS:r.useDKLSForCreation||!r.offloadMPCComputationURL,disableWebSockets:!!r.disableWebSockets,wasmOverride:r.wasmOverride,cosmosPrefix:this.cosmosPrefix},r.offloadMPCComputationURL&&(this.ctx.mpcComputationClient=Le(r.offloadMPCComputationURL,r.disableWorkers));try{this.#e=r.supportedWalletTypes?(()=>{if(Object.values(r.supportedWalletTypes).every(s=>!!s&&typeof s=="object"&&s.optional))throw new Error("at least one wallet type must be non-optional");if(!Object.keys(r.supportedWalletTypes).every(s=>Object.values(p.WalletType).includes(s)))throw new Error("unsupported wallet type");return this.#t=r.supportedWalletTypes,Object.entries(r.supportedWalletTypes).reduce((s,[n,a])=>a?(n===p.WalletType.COSMOS&&typeof a=="object"&&a.prefix&&(this.cosmosPrefix=a.prefix),[...s,{type:n,optional:a===!0?!1:a.optional??!1}]):s,[])})():void 0}catch{this.#e=void 0}!this.platformUtils.isSyncStorage||r.useStorageOverrides||(this.initializeFromStorage(),ve.bind(this)())}static{this.version=gt}get isEmail(){return!!this.email&&!this.phone&&!this.countryCode&&!this.farcasterUsername&&!this.telegramUserId}get isPhone(){return!!this.phone&&!!this.countryCode&&!this.email&&!this.farcasterUsername&&!this.telegramUserId}get isFarcaster(){return!!this.farcasterUsername&&!this.email&&!this.phone&&!this.countryCode&&!this.telegramUserId}get isTelegram(){return!!this.telegramUserId&&!this.email&&!this.phone&&!this.countryCode&&!this.farcasterUsername}get currentWalletIdsArray(){return this.supportedWalletTypes.reduce((e,{type:t})=>[...e,...(this.currentWalletIds[t]??[]).map(r=>[r,t])],[])}get currentWalletIdsUnique(){return[...new Set(Object.values(this.currentWalletIds).flat())]}get pregenIds(){return{...Object.values(this.wallets).filter(e=>!this.userId||this.isPregenWalletClaimable(e)).reduce((e,t)=>(e[t.pregenIdentifierType]??[]).includes(t.pregenIdentifier)?e:{...e,[t.pregenIdentifierType]:[...new Set([...e[t.pregenIdentifierType]??[],t.pregenIdentifier])]},{})}}get isMultiWallet(){return this.currentWalletIdsArray.length>1}#e;#t;get supportedWalletTypes(){return this.#e??[]}get isWalletTypeEnabled(){return this.supportedWalletTypes.reduce((e,{type:t})=>({...e,[t]:!0}),{})}convertBigInt(e){let t=new $t.BigInteger(null);return t.data=e.data,t.s=e.s,t.t=e.t,t}convertEncryptionKeyPair(e){return{privateKey:St.setRsaPrivateKey(this.convertBigInt(e.privateKey.n),this.convertBigInt(e.privateKey.e),this.convertBigInt(e.privateKey.d),this.convertBigInt(e.privateKey.p),this.convertBigInt(e.privateKey.q),this.convertBigInt(e.privateKey.dP),this.convertBigInt(e.privateKey.dQ),this.convertBigInt(e.privateKey.qInv)),publicKey:St.setRsaPublicKey(this.convertBigInt(e.publicKey.n),this.convertBigInt(e.publicKey.e))}}isPortal(e){return typeof window>"u"?!1:!!window.location?.host&&T(e?{env:e}:this.ctx).includes(window.location.host)}isParaConnect(){return typeof window>"u"?!1:!!window.location?.host&&He(this.ctx).includes(window.location.host)}requireApiKey(){if(!this.ctx.apiKey)throw new Error(`in order to create a wallet or user with Para, you
-        must provide an API key to the Para instance`)}isWalletSupported(e){return!this.#e||le(this.supportedWalletTypes.map(({type:t})=>t)??[],e)}isWalletOwned(e){return this.isWalletSupported(e)&&!e.pregenIdentifier&&!e.pregenIdentifierType&&!!this.userId&&e.userId===this.userId}isPregenWalletUnclaimed(e){return this.isWalletSupported(e)&&(!e.userId||e.isPregen&&!!e.pregenIdentifier&&!!e.pregenIdentifierType)}isPregenWalletClaimable(e){return this.isWalletSupported(e)&&this.isPregenWalletUnclaimed(e)&&(!["EMAIL","PHONE","TELEGRAM"].includes(e.pregenIdentifierType)||je(e.pregenIdentifierType==="EMAIL"?this.email:e.pregenIdentifierType==="TELEGRAM"?this.telegramUserId:this.getPhoneNumber(),e.pregenIdentifier,e.pregenIdentifierType))}isWalletUsable(e,{type:t,scheme:r,forbidPregen:s=!1}={},n=!1){let a;if(!this.wallets[e])a=`wallet with id ${e} does not exist`;else{let o=this.wallets[e],[l,c]=[this.isPregenWalletUnclaimed(o),this.isWalletOwned(o)];s&&l?a=`pre-generated wallet with id ${o.id} cannot be selected`:!c&&!l?a=`wallet with id ${o.id} is not owned by the current user`:this.isWalletSupported(o)?t&&(!Ae(t).includes(o.type)||c&&!t.some(d=>this.currentWalletIds?.[d]?.includes(e)))?a=`wallet with id ${o.id} and type ${o.type} cannot be selected`:r&&!r.includes(o.scheme)&&(a=`wallet with id ${o.id} and scheme ${o.scheme} cannot be selected`):a=`wallet with id ${o.id} and type ${o.type} is not supported, supported types are: ${this.supportedWalletTypes.map(({type:d})=>d).join(", ")}`}if(a){if(n)throw new Error(a);return!1}return!0}getDisplayAddress(e,t={}){if(this.externalWallets[e]){let n=this.externalWallets[e];return t.truncate?ie(n.address,n.type,{prefix:this.cosmosPrefix}):n.address}let r=this.findWallet(e,t.addressType);if(!r)return;let s;switch(r.type){case p.WalletType.COSMOS:s=ye(r.publicKey,this.cosmosPrefix??"cosmos");break;default:s=r.address;break}return t.truncate?ie(s,r.type,{prefix:this.cosmosPrefix}):s}getIdenticonHash(e,t){if(this.externalWallets[e]){let s=this.externalWallets[e];return`${s.id}-${s.address}-${s.type}`}let r=this.findWallet(e,t);return r?`${r.id}-${r.address}-${r.type}`:void 0}getWallets(){return this.wallets}getAddress(e){return e?this.wallets[e].address:Object.values(this.wallets)?.[0]?.address}async constructPortalUrl(e,t={}){let r=e==="onRamp"?T(this.ctx):await this.getPortalURL(t.partnerId),s;switch(e){case"createPassword":{s=`/web/users/${this.userId}/passwords/${t.pathId}`;break}case"createAuth":{s=`/web/users/${this.userId}/biometrics/${t.pathId}`;break}case"loginPassword":{s="/web/passwords/login";break}case"loginAuth":{s="/web/biometrics/login";break}case"txReview":{s=`/web/users/${this.userId}/transaction-review/${t.pathId}`;break}case"onRamp":{s=`/web/users/${this.userId}/on-ramp-transaction/${t.pathId}`;break}default:throw new Error(`invalid URL type ${e}`)}let[n,a,o]=[["createAuth","createPassword"].includes(e),["loginAuth","loginPassword"].includes(e),e==="onRamp"],l=t.partnerId?(await this.ctx.client.getPartner(t.partnerId)).data?.partner:void 0,c={apiKey:this.ctx.apiKey,partnerId:t.partnerId,portalFont:t.theme?.font||l?.font||this.portalTheme?.font,portalBorderRadius:t.theme?.borderRadius||this.portalTheme?.borderRadius,portalThemeMode:t.theme?.mode||l?.themeMode||this.portalTheme?.mode,portalAccentColor:t.theme?.accentColor||l?.accentColor||this.portalTheme?.accentColor,portalForegroundColor:t.theme?.foregroundColor||l?.foregroundColor||this.portalTheme?.foregroundColor,portalBackgroundColor:t.theme?.backgroundColor||l?.backgroundColor||this.portalBackgroundColor||this.portalTheme?.backgroundColor,portalPrimaryButtonColor:this.portalPrimaryButtonColor,portalTextColor:this.portalTextColor,portalPrimaryButtonTextColor:this.portalPrimaryButtonTextColor,isForNewDevice:t.isForNewDevice?t.isForNewDevice.toString():void 0,supportedWalletTypes:this.#t?JSON.stringify(this.#t):void 0,...n||a?{...t.authType==="email"?{email:this.email}:{},...t.authType==="phone"?{phone:this.phone,countryCode:this.countryCode}:{},...t.authType==="farcaster"?{farcasterUsername:this.farcasterUsername}:{},...t.authType==="telegram"?{telegramUserId:this.telegramUserId}:{}}:{},...a||o?{sessionId:t.sessionId}:{},...a?{encryptionKey:t.loginEncryptionPublicKey,newDeviceSessionLookupId:t.newDeviceSessionId,newDeviceEncryptionKey:t.newDeviceEncryptionKey,pregenIds:JSON.stringify(this.pregenIds),displayName:t.displayName,pfpUrl:t.pfpUrl}:{},...t.params||{}};return oe({base:r,path:s,params:c})}async touchSession(e=!1){let t=await this.ctx.client.touchSession(e);return this.setSupportedWalletTypes(t.data.supportedWalletTypes,t.data.cosmosPrefix),t}setSupportedWalletTypes(e,t){e&&!this.#e&&(this.#e=e,Object.keys(this.currentWalletIds).forEach(r=>{this.#e?.some(({type:s})=>s===r)||delete this.currentWalletIds[r]})),t&&!this.cosmosPrefix&&(this.cosmosPrefix=t)}getVerificationEmailProps(){return{brandColor:this.emailPrimaryColor,theme:this.emailTheme,supportUrl:this.supportUrl,homepageUrl:this.homepageUrl,xUrl:this.xUrl,githubUrl:this.githubUrl,linkedinUrl:this.linkedinUrl}}getBackupKitEmailProps(){return{brandColor:this.emailPrimaryColor,theme:this.emailTheme,homepageUrl:this.homepageUrl,xUrl:this.xUrl,linkedinUrl:this.linkedinUrl,githubUrl:this.githubUrl,supportUrl:this.supportUrl}}async init(){this.email=await this.localStorageGetItem(j)||void 0,this.countryCode=await this.localStorageGetItem(Y)||void 0,this.phone=await this.localStorageGetItem(J)||void 0,this.userId=await this.localStorageGetItem(q)||void 0,this.telegramUserId=await this.localStorageGetItem(X)||void 0;let e=this.platformUtils.secureStorage?await this.platformUtils.secureStorage.get(C):await this.localStorageGetItem(C),t=JSON.parse(e||"{}"),r=this.platformUtils.secureStorage?await this.platformUtils.secureStorage.get(U):await this.localStorageGetItem(U),s=JSON.parse(r||"{}"),n={...Object.keys(t).reduce((m,y)=>({...m,[y]:G(t[y])}),{}),...Object.keys(s).reduce((m,y)=>({...m,...m[y]?{}:{[y]:G(s[y])}}),{})};await this.setWallets(n);let a=await this.localStorageGetItem(N)??void 0,o=[void 0,null,"undefined","null"].includes(a)?{}:(()=>{let m=JSON.parse(a);return Array.isArray(m)?Object.keys(p.WalletType).reduce((y,W)=>{let K=Object.values(this.wallets).find(_e=>m.includes(_e.id)&&I[_e.scheme][W]);return{...y,...K&&!y[W]?{[W]:[K.id]}:{}}},{}):m})();await this.setCurrentWalletIds(o),this.sessionCookie=await this.localStorageGetItem(O)||await this.sessionStorageGetItem(O)||void 0,Object.values(this.wallets).filter(m=>this.isWalletOwned(m)).length>0&&this.currentWalletIdsArray.length===0&&this.findWalletId(void 0,{forbidPregen:!0});let l=await this.sessionStorageGetItem(k);l&&l!=="undefined"&&(this.loginEncryptionKeyPair=this.convertEncryptionKeyPair(JSON.parse(l)));let c=await this.localStorageGetItem(z),d=JSON.parse(c||"{}");await this.setExternalWallets(d);let w=await this.localStorageGetItem(Q)||void 0;this.currentExternalWalletAddresses=w?JSON.parse(w):void 0,ve.bind(this)(),await this.touchSession()}async setEmail(e){this.email=e,await this.localStorageSetItem(j,e)}async setTelegramUserId(e){this.telegramUserId=e,await this.localStorageSetItem(X,e)}async setPhoneNumber(e,t){this.phone=e,this.countryCode=t,await this.localStorageSetItem(J,e),await this.localStorageSetItem(Y,t)}async setFarcasterUsername(e){this.farcasterUsername=e,await this.localStorageSetItem(mt,e)}async setExternalWallet({address:e,type:t,provider:r,addressBech32:s}){this.externalWallets={[e]:{id:e,address:s??e,type:t,name:r,isExternal:!0,signer:""}},this.currentExternalWalletAddresses=[e],this.setCurrentExternalWalletAddresses(this.currentExternalWalletAddresses),this.setExternalWallets(this.externalWallets),g(h.EXTERNAL_WALLET_CHANGE_EVENT,null)}async setUserId(e){this.userId=e,await this.localStorageSetItem(q,e)}async setWallets(e){if(this.wallets=e,this.platformUtils.secureStorage){await this.platformUtils.secureStorage.set(C,JSON.stringify(e));return}await this.localStorageSetItem(C,JSON.stringify(e))}async setExternalWallets(e){this.externalWallets=e,await this.localStorageSetItem(z,JSON.stringify(e))}async setCurrentExternalWalletAddresses(e){this.currentExternalWalletAddresses=e,await this.localStorageSetItem(Q,JSON.stringify(e))}async setLoginEncryptionKeyPair(e){e||(e=await B(this.ctx)),this.loginEncryptionKeyPair=e,await this.sessionStorageSetItem(k,JSON.stringify(e))}async deleteLoginEncryptionKeyPair(){this.loginEncryptionKeyPair=void 0,await this.sessionStorageRemoveItem(k)}getUserId(){return this.userId}getEmail(){return this.email}getPhone(){return{phone:this.phone,countryCode:this.countryCode}}getPhoneNumber(){if(!(!this.phone||!this.countryCode))return fe(this.countryCode,this.phone)}getFarcasterUsername(){return this.farcasterUsername}async setCurrentWalletIds(e,{needsWallet:t=!1,sessionLookupId:r,newDeviceSessionLookupId:s}={}){this.currentWalletIds=e,await this.localStorageSetItem(N,JSON.stringify(this.currentWalletIds)),r&&await this.ctx.client.setCurrentWalletIds(this.getUserId(),this.currentWalletIds,t,r,s),g(h.WALLETS_CHANGE_EVENT,null)}findWalletId(e,t={}){if(e)this.assertIsValidWalletId(e,t);else{for(let r of[...this.currentWalletIdsUnique,...Object.keys(this.wallets)])if(this.isWalletUsable(r,t)){e=r;break}if(!e)throw new Error("no valid wallet id found")}return e}findWalletByAddress(e,t){if(this.externalWallets[e])return this.externalWallets[e];let r;if(Object.entries(this.currentWalletIds).forEach(([s,n])=>{let a=Object.keys(this.wallets).filter(o=>this.wallets[o].type===s&&this.isPregenWalletClaimable(this.wallets[o]));[...n,...a].forEach(o=>{e.toLowerCase()===this.getDisplayAddress(o,{addressType:s}).toLowerCase()&&(r=this.wallets[o])})}),!r)throw new Error(`wallet with address ${e} not found`);return this.assertIsValidWalletId(r.id,t),r}findWallet(e,t,r={}){if(!e&&Object.keys(this.externalWallets).length>0)return Object.values(this.externalWallets)[0];if(this.externalWallets[e])return this.externalWallets[e];try{let s=this.findWalletId(e,r);if(s&&this.wallets[s]){let{signer:n,...a}=this.wallets[s],o=t??this.currentWalletIdsArray.find(([l])=>l===s)?.[1]??a.type;return{...a,type:p.WalletType[o]}}}catch{return}}get availableWallets(){return[...this.currentWalletIdsArray.map(([e,t])=>[e,t,!1]).map(([e,t])=>{let r=this.findWallet(e,t);return r?{id:r.id,type:t,address:this.getDisplayAddress(e,{addressType:t}),name:r.name}:null}).filter(e=>e!==null),...Object.values(this.externalWallets??{})]}getWalletsByType(e){return Object.values(this.wallets).filter(t=>this.isWalletUsable(t.id,{type:[e]}))}assertIsValidWalletId(e,t={}){this.isWalletUsable(e,t,!0)}async assertIsValidWalletType(e,t){if(this.#e||await this.touchSession(),!e||!Object.values(p.WalletType).includes(e)||!(t??this.supportedWalletTypes.map(({type:r})=>r)).includes(e))throw new Error(`wallet type ${e} is not supported`);return e}async getMissingTypes(){return this.#e||await this.touchSession(),this.supportedWalletTypes.filter(({type:e,optional:t})=>!t&&Object.values(this.wallets).every(r=>!this.isWalletOwned(r)||!I[r.scheme][e])).map(({type:e})=>e)}async getTypesToCreate(e){return this.#e||await this.touchSession(),Pe(e??await this.getMissingTypes()).map(t=>{switch(t){case p.WalletScheme.ED25519:return p.WalletType.SOLANA;default:return this.supportedWalletTypes.some(({type:r,optional:s})=>r===p.WalletType.COSMOS&&!s)?p.WalletType.COSMOS:p.WalletType.EVM}})}async getPartnerURL(e){return(await this.ctx.client.getPartner(e)).data.partner.portalUrl}async getPortalURL(e){return e&&await this.getPartnerURL(e)||T(this.ctx)}async getWebAuthURLForCreate({webAuthId:e,...t}){return this.constructPortalUrl("createAuth",{...t,pathId:e})}async getPasswordURLForCreate({passwordId:e,...t}){return this.constructPortalUrl("createPassword",{...t,pathId:e})}getShortUrl(e){return oe({base:T(this.ctx),path:`/short/${e}`})}async shortenLoginLink(e){let t=await ut(e,this.ctx.client);return this.getShortUrl(t)}async getWebAuthURLForLogin(e){return this.constructPortalUrl("loginAuth",e)}async getPasswordURLForLogin(e){return this.constructPortalUrl("loginPassword",e)}async getWebAuthURLForLoginForPhone(e){return this.constructPortalUrl("loginAuth",{authType:"phone",...e})}async getPrivateKey(e){let t=Object.values(this.wallets),r=e?this.wallets[e]:t?.[0];if(!r)throw new Error("wallet not found");if(r.scheme!==p.WalletScheme.DKLS)throw new Error("invalid wallet scheme");return await this.platformUtils.getPrivateKey(this.ctx,this.userId,r.id,r.signer,this.retrieveSessionCookie())}async fetchWallets(){return(await(this.isPortal()||this.isParaConnect()?this.ctx.client.getAllWallets(this.userId):this.ctx.client.getWallets(this.userId,!0))).data.wallets.filter(t=>!!t.address&&(this.isParaConnect()||!this.isParaConnect()&&this.isWalletSupported(x(t))))}async populateWalletAddresses(){(await this.ctx.client.getWallets(this.userId,!0)).data.wallets.forEach(r=>{this.wallets[r.id]&&(this.wallets[r.id]={...x(r),...this.wallets[r.id]})}),await this.setWallets(this.wallets)}async populatePregenWalletAddresses(){(await this.getPregenWallets()).forEach(t=>{this.wallets[t.id]&&(this.wallets[t.id]={...x(t),...this.wallets[t.id]})}),await this.setWallets(this.wallets)}async checkIfUserExists({email:e}){return(await this.ctx.client.checkUserExists({email:e})).data.exists}async checkIfUserExistsByPhone({phone:e,countryCode:t}){return(await this.ctx.client.checkUserExists({phone:e,countryCode:t})).data.exists}async createUser({email:e}){this.requireApiKey(),await this.setEmail(e);let{userId:t}=await this.ctx.client.createUser({email:this.email,...this.getVerificationEmailProps()});await this.setUserId(t)}async createUserByPhone({phone:e,countryCode:t}){this.requireApiKey(),await this.setPhoneNumber(e,t);let{userId:r}=await this.ctx.client.createUser({phone:this.phone,countryCode:this.countryCode});await this.setUserId(r)}async externalWalletLogin(e){this.requireApiKey();let t=await this.ctx.client.externalWalletLogin({externalAddress:e.address,type:e.type,externalWalletProvider:e.provider,shouldTrackUser:e.shouldTrackUser});return await this.setExternalWallet(e),await this.setUserId(t.userId),t}isUsingExternalWallet(){return!!Object.keys(this.externalWallets).length}async verifyEmail({verificationCode:e}){return await this.ctx.client.verifyEmail(this.userId,{verificationCode:e}),this.getSetUpBiometricsURL()}async verifyExternalWallet({address:e,signedMessage:t,cosmosPublicKeyHex:r,cosmosSigner:s}){return await this.ctx.client.verifyExternalWallet(this.userId,{address:e,signedMessage:t,cosmosPublicKeyHex:r,cosmosSigner:s}),this.getSetUpBiometricsURL()}async verifyPhone({verificationCode:e}){return await this.ctx.client.verifyPhone(this.userId,{verificationCode:e}),this.getSetUpBiometricsURLForPhone()}async verifyTelegram(e){let t=await this.ctx.client.verifyTelegram(e);return t.isValid&&(await this.setUserId(t.userId),await this.setTelegramUserId(t.telegramUserId),await this.touchSession(!0),this.loginEncryptionKeyPair||await this.setLoginEncryptionKeyPair()),t}async verify2FA({email:e,verificationCode:t}){let r=await this.ctx.client.verify2FA(e,t);return{initiatedAt:r.data.initiatedAt,status:r.data.status,userId:r.data.userId,wallets:r.data.wallets}}async verify2FAForPhone({phone:e,countryCode:t,verificationCode:r}){let s=await this.ctx.client.verify2FAForPhone(e,t,r);return{initiatedAt:s.data.initiatedAt,status:s.data.status,userId:s.data.userId,wallets:s.data.wallets}}async setup2FA(){return{uri:(await this.ctx.client.setup2FA(this.userId)).data.uri}}async enable2FA({verificationCode:e}){await this.ctx.client.enable2FA(this.userId,e)}async check2FAStatus(){return this.userId?{isSetup:(await this.ctx.client.check2FAStatus(this.userId)).data.isSetup}:{isSetup:!1}}async resendVerificationCode(){await this.ctx.client.resendVerificationCode({userId:this.userId,...this.getVerificationEmailProps()})}async resendVerificationCodeByPhone(){await this.ctx.client.resendVerificationCodeByPhone({userId:this.userId})}async getSetUpBiometricsURL({authType:e="email",isForNewDevice:t=!1}={}){let r=await this.ctx.client.addSessionPublicKey(this.userId,{status:p.PublicKeyStatus.PENDING,type:p.PublicKeyType.WEB});return this.getWebAuthURLForCreate({authType:e,isForNewDevice:t,webAuthId:r.data.id,partnerId:r.data.partnerId})}async getSetUpBiometricsURLForPhone({isForNewDevice:e=!1}={}){let t=await this.ctx.client.addSessionPublicKey(this.userId,{status:p.PublicKeyStatus.PENDING,type:p.PublicKeyType.WEB});return this.getWebAuthURLForCreate({authType:"phone",isForNewDevice:e,webAuthId:t.data.id,partnerId:t.data.partnerId})}async getSetupPasswordURL({authType:e="email",isForNewDevice:t=!1,theme:r}={}){let s=await this.ctx.client.addSessionPasswordPublicKey(this.userId,{status:p.PasswordStatus.PENDING});return this.getPasswordURLForCreate({authType:e,isForNewDevice:t,passwordId:s.data.id,partnerId:s.data.partnerId,theme:r})}async isSessionActive(){return this.isUsingExternalWallet()?!0:!!(await this.touchSession()).data.isAuthenticated}async isFullyLoggedIn(){return this.isUsingExternalWallet()?!0:await this.isSessionActive()&&this.currentWalletIdsArray.length>0&&this.currentWalletIdsArray.reduce((t,[r])=>t&&!!this.wallets[r],!0)}async supportedAuthMethods(e){let{supportedAuthMethods:t}=await this.ctx.client.getSupportedAuthMethods(e),r=new Set;for(let s of t)switch(s){case"PASSWORD":r.add(p.AuthMethod.PASSWORD);break;case"BIOMETRIC":r.add(p.AuthMethod.PASSKEY);break}return r}async getUserBiometricLocationHints(){if(!this.email&&!this.phone&&!this.farcasterUsername&&!this.telegramUserId)throw new Error("one of email, phone or farcaster username are required to get biometric location hints");return await this.ctx.client.getBiometricLocationHints({email:this.email,phone:this.phone,countryCode:this.countryCode,farcasterUsername:this.farcasterUsername,telegramUserId:this.telegramUserId})}async setAuth(e){let t=(0,p.extractAuthInfo)(e);if(t){switch(t.authType){case"email":await this.setEmail(t.identifier);break;case"phone":await this.setPhoneNumber(t.auth.phone,t.auth.countryCode);break;case"farcaster":await this.setFarcasterUsername(t.identifier);break;case"telegram":await this.setTelegramUserId(t.identifier);break}return t}}async initiateUserLogin({useShortUrl:e=!1,...t}){let r=await this.setAuth(t);if(!r)return;let s=await this.touchSession(!0);this.loginEncryptionKeyPair||await this.setLoginEncryptionKeyPair();let n=await this.getWebAuthURLForLogin({authType:r.authType,sessionId:s.data.sessionId,partnerId:s.data.partnerId,loginEncryptionPublicKey:L(this.loginEncryptionKeyPair)});return e?this.shortenLoginLink(n):n}async initiateUserLoginV2(e){let t=await this.setAuth(e);if(t)return await this.touchSession(!0),this.loginEncryptionKeyPair||await this.setLoginEncryptionKeyPair(),await this.supportedAuthMethods(t.auth)}async initiateUserLoginForPhone({useShortUrl:e=!1,...t}){await this.setAuth(t);let r=await this.touchSession(!0);this.loginEncryptionKeyPair||await this.setLoginEncryptionKeyPair();let s=await this.getWebAuthURLForLoginForPhone({sessionId:r.data.sessionId,loginEncryptionPublicKey:L(this.loginEncryptionKeyPair),partnerId:r.data.partnerId});return e?this.shortenLoginLink(s):s}async waitForAccountCreation({popupWindow:e}={}){for(await this.touchSession(),this.currentExternalWalletAddresses=void 0,this.externalWallets={},this.isAwaitingAccountCreation=!0;this.isAwaitingAccountCreation;)try{if(await new Promise(t=>setTimeout(t,R)),await this.isSessionActive())return this.isAwaitingAccountCreation=!1,g(h.ACCOUNT_CREATION_EVENT,!0),!0;if(e?.closed)return this.isAwaitingAccountCreation=!1,!1}catch(t){console.error(t)}return!1}async waitForPasskeyAndCreateWallet({popupWindow:e}={}){await this.waitForAccountCreation({popupWindow:e});let t=await this.getPregenWallets(),r,s={};t.length>0&&(r=await this.claimPregenWallets(),s=this.supportedWalletTypes.reduce((o,{type:l})=>({...o,[l]:[t.find(c=>!!I[c.scheme][l])?.id]}),{}));let n=await this.createWalletPerType();r=r??n.recoverySecret,s={...s,...n.walletIds};let a={walletIds:s,recoverySecret:r};return g(h.ACCOUNT_SETUP_EVENT,a),a}async getFarcasterConnectURL(){await this.logout(),await this.touchSession(!0);let{data:{connect_uri:e}}=await this.ctx.client.initializeFarcasterLogin();return e}async waitForFarcasterStatus(){for(this.isAwaitingFarcaster=!0;this.isAwaitingFarcaster;)try{await new Promise(t=>setTimeout(t,R));let e=await this.ctx.client.getFarcasterAuthStatus();if(e.data.state==="completed"){let{userId:t,userExists:r,username:s,pfpUrl:n}=e.data;return await this.setUserId(t),await this.setFarcasterUsername(s),{userExists:r,username:s,pfpUrl:n}}}catch(e){console.error(e),this.isAwaitingFarcaster=!1}}async getOAuthURL({method:e,deeplinkUrl:t}){await this.logout();let r=await this.touchSession(!0);return oe({base:e===p.OAuthMethod.TELEGRAM?T(this.ctx,!0):Oe(this.ctx.env),path:`/auth/${e.toLowerCase()}`,params:{apiKey:this.ctx.apiKey,sessionLookupId:r.data.sessionLookupId,deeplinkUrl:t}})}async waitForOAuth({popupWindow:e}={}){for(this.isAwaitingOAuth=!0;this.isAwaitingOAuth;)try{if(e?.closed)return{isError:!0,userExists:!1};if(await new Promise(t=>setTimeout(t,R)),this.isAwaitingOAuth){let t=await this.touchSession();if(t.data.userId){let{userId:r,email:s}=t.data;this.loginEncryptionKeyPair||await this.setLoginEncryptionKeyPair(),await this.setUserId(r),await this.setEmail(s);let n=await this.checkIfUserExists({email:s});return this.isAwaitingOAuth=!1,{userExists:n,email:s}}}}catch(t){console.error(t)}return{userExists:!1}}async waitForLoginAndSetup({popupWindow:e,skipSessionRefresh:t=!1}={}){for(this.currentExternalWalletAddresses=void 0,this.externalWallets={},this.isAwaitingLogin=!0;this.isAwaitingLogin;)try{if(await new Promise(l=>setTimeout(l,R)),!await this.isSessionActive()){if(e?.closed){let l={isComplete:!1,isError:!0};return g(h.LOGIN_EVENT,l,"failed to setup user"),l}continue}let s=await this.userSetupAfterLogin(),n=s.data.needsWallet??!1;if(!n&&this.currentWalletIdsArray.length===0)if(e?.closed){let l={isComplete:!1,isError:!0};return g(h.LOGIN_EVENT,l,"failed to setup user"),l}else continue;let a=await this.fetchWallets(),o=await this.getTransmissionKeyShares();if(o.data.temporaryShares.length===a.length){await this.setupAfterLogin({temporaryShares:o.data.temporaryShares,skipSessionRefresh:t}),await this.claimPregenWallets();let l={isComplete:!0,needsWallet:n||Object.values(this.wallets).length===0,partnerId:s.data.partnerId};return g(h.LOGIN_EVENT,l),l}}catch(s){console.error(s)}let r={isComplete:!1};return g(h.LOGIN_EVENT,r,"exitted login without setting up user"),r}async refreshSession({shouldOpenPopup:e=!1}={}){let t=await this.touchSession(!0);this.loginEncryptionKeyPair||await this.setLoginEncryptionKeyPair();let r=await this.getWebAuthURLForLogin({sessionId:t.data.sessionId,loginEncryptionPublicKey:L(this.loginEncryptionKeyPair)});return e&&this.platformUtils.openPopup(r),r}async userSetupAfterLogin(){let e=await this.touchSession();return await this.setUserId(e.data.userId),e.data.currentWalletIds&&e.data.currentWalletIds!==this.currentWalletIds&&await this.setCurrentWalletIds(e.data.currentWalletIds,{sessionLookupId:this.isPortal()?e.data.sessionLookupId:void 0}),e}async getTransmissionKeyShares({isForNewDevice:e=!1}={}){let t=await this.touchSession(),r=e?`${t.data.sessionLookupId}-new-device`:t.data.sessionLookupId;return this.ctx.client.getTransmissionKeyshares(this.userId,r)}async setupAfterLogin({temporaryShares:e,skipSessionRefresh:t=!1}={}){e||(e=(await this.getTransmissionKeyShares()).data.temporaryShares),e.forEach(r=>{let s=F(this.loginEncryptionKeyPair.privateKey,r.encryptedShare,r.encryptedKey);this.wallets[r.walletId]={id:r.walletId,signer:s}}),await this.deleteLoginEncryptionKeyPair(),await this.populateWalletAddresses(),await this.touchSession(!t)}async distributeNewWalletShare({walletId:e,userShare:t,skipBiometricShareCreation:r=!1,forceRefresh:s=!1}){let n=t;return n||(n=this.wallets[e].signer),r?await he({ctx:this.ctx,userId:this.userId,walletId:e,userSigner:n,emailProps:this.getBackupKitEmailProps(),forceRefresh:s}):await v({ctx:this.ctx,userId:this.userId,walletId:e,userShare:n,emailProps:this.getBackupKitEmailProps()})}async waitForWalletAddress(e){let t=0;for(;;)try{if(t===10)break;++t;let s=(await this.ctx.client.getWallets(this.userId)).data.wallets.find(n=>n.id===e);if(s&&s.address)return;await new Promise(n=>setTimeout(n,be))}catch(r){console.error(r)}throw new Error("timed out waiting for wallet address")}async waitForPregenWalletAddress(e){let t=0;for(;;)try{if(t===10)break;++t;let s=(await this.getPregenWallets()).find(n=>n.id===e);if(s&&s.address)return;await new Promise(n=>setTimeout(n,be))}catch(r){console.error(r)}throw new Error("timed out waiting for wallet address")}async createWalletPerType({skipDistribute:e=!1,types:t}={}){let r=[],s={},n;for(let a of await this.getTypesToCreate(t)){let[o,l]=await this.createWallet({type:a,skipDistribute:e});r.push(o),Ae(a).filter(c=>!!this.isWalletTypeEnabled[c]).forEach(c=>{s[c]=[o.id]}),l&&(n=l)}return{wallets:r,walletIds:s,recoverySecret:n}}async refreshShare({walletId:e,share:t,oldPartnerId:r,newPartnerId:s,keyShareProtocolId:n,redistributeBackupEncryptedShares:a}){let{signer:o,protocolId:l}=await this.platformUtils.refresh(this.ctx,this.retrieveSessionCookie(),this.userId,e,t,r,s,n),c=await v({ctx:this.ctx,userId:this.userId,walletId:e,userShare:o,ignoreRedistributingBackupEncryptedShare:!a,emailProps:this.getBackupKitEmailProps(),partnerId:s,protocolId:l});return{signer:o,recoverySecret:c,protocolId:l}}async createWallet({type:e,skipDistribute:t=!1}={}){this.requireApiKey();let r=await this.assertIsValidWalletType(e??this.supportedWalletTypes.find(({optional:d})=>!d)?.type),s,n,a;switch(r){case p.WalletType.SOLANA:{a=await this.platformUtils.ed25519Keygen(this.ctx,this.userId,this.retrieveSessionCookie(),this.getBackupKitEmailProps());break}default:{a=await this.platformUtils.keygen(this.ctx,this.userId,r,null,this.retrieveSessionCookie(),this.getBackupKitEmailProps());break}}let o=a.walletId;s=a.signer,this.wallets[o]={id:o,signer:s,scheme:r===p.WalletType.SOLANA?p.WalletScheme.ED25519:p.WalletScheme.DKLS,type:r},n=this.wallets[o],await this.waitForWalletAddress(n.id),await this.populateWalletAddresses();let l=null;t||(l=await v({ctx:this.ctx,userId:this.userId,walletId:n.id,userShare:s,emailProps:this.getBackupKitEmailProps()})),await this.setCurrentWalletIds({...this.currentWalletIds,[r]:[...this.currentWalletIds[r]??[],o]});let c={...n};return delete c.signer,g(h.WALLET_CREATED,{wallet:c,recoverySecret:l}),[n,l]}async createPregenWallet(e){let{type:t=this.supportedWalletTypes.find(({optional:c})=>!c)?.type,pregenIdentifier:r,pregenIdentifierType:s="EMAIL"}=e;this.requireApiKey();let n=await this.assertIsValidWalletType(t??this.supportedWalletTypes.find(({optional:c})=>!c)?.type),a;switch(n){case p.WalletType.SOLANA:a=await this.platformUtils.ed25519PreKeygen(this.ctx,r,s,this.retrieveSessionCookie());break;default:a=await this.platformUtils.preKeygen(this.ctx,void 0,r,s,n,null,this.retrieveSessionCookie());break}let{signer:o,walletId:l}=a;return this.wallets[l]={id:l,signer:o,scheme:n===p.WalletType.SOLANA?p.WalletScheme.ED25519:p.WalletScheme.DKLS,type:n,isPregen:!0,pregenIdentifier:r,pregenIdentifierType:s},await this.waitForPregenWalletAddress(l),await this.populatePregenWalletAddresses(),this.wallets[l]}async createPregenWalletPerType({types:e,pregenIdentifier:t,pregenIdentifierType:r="EMAIL"}){let s=[];for(let n of await this.getTypesToCreate(e)){let a=await this.createPregenWallet({type:n,pregenIdentifier:t,pregenIdentifierType:r});s.push(a)}return s}async claimPregenWallets({pregenIdentifier:e,pregenIdentifierType:t=e?"EMAIL":void 0}={}){this.requireApiKey();let r=e&&t?await this.getPregenWallets({pregenIdentifier:e,pregenIdentifierType:t}):await this.getPregenWallets();if(r.length===0)return;let s,{walletIds:n}=await this.ctx.client.claimPregenWallets({userId:this.userId,walletIds:r.map(a=>a.id)});for(let a of n){let o=this.wallets[a],l;if(o.scheme===p.WalletScheme.ED25519){let d=await v({ctx:this.ctx,userId:this.userId,walletId:o.id,userShare:this.wallets[o.id].signer,emailProps:this.getBackupKitEmailProps(),partnerId:o.partnerId});d.length>0&&(s=d)}else l=await this.refreshShare({walletId:o.id,share:this.wallets[o.id].signer,oldPartnerId:o.partnerId,newPartnerId:o.partnerId,redistributeBackupEncryptedShares:!0}),l.recoverySecret&&(s=l.recoverySecret);this.wallets[o.id]={...this.wallets[o.id],signer:l?.signer??o.signer,userId:this.userId,pregenIdentifier:void 0,pregenIdentifierType:void 0};let c={...this.wallets[o.id]};delete c.signer,g(h.PREGEN_WALLET_CLAIMED,{wallet:c,recoverySecret:s})}return await this.setWallets(this.wallets),s}async updatePregenWalletIdentifier({walletId:e,newPregenIdentifier:t,newPregenIdentifierType:r}){this.requireApiKey(),await this.ctx.client.updatePregenWallet(e,{pregenIdentifier:t,pregenIdentifierType:r}),this.wallets[e]&&(this.wallets[e]={...this.wallets[e],pregenIdentifier:t,pregenIdentifierType:r},await this.setWallets(this.wallets))}async hasPregenWallet({pregenIdentifier:e,pregenIdentifierType:t}){return this.requireApiKey(),!!(await this.getPregenWallets({pregenIdentifier:e,pregenIdentifierType:t})).find(n=>n.pregenIdentifier===e&&n.pregenIdentifierType===t)}async getPregenWallets({pregenIdentifier:e,pregenIdentifierType:t=e?"EMAIL":void 0}={}){return this.requireApiKey(),(await this.ctx.client.getPregenWallets(e&&t?{[t]:[e]}:this.pregenIds,this.isPortal(),this.userId)).wallets.filter(s=>this.isWalletSupported(x(s)))}encodeWalletBase64(e){let t=JSON.stringify(e);return Buffer.from(t).toString("base64")}getUserShare(){return Object.values(this.wallets).length===0?null:Object.values(this.wallets).map(e=>this.encodeWalletBase64(e)).join("-")}async setUserShare(e){if(!e)return;let t=e.split("-");for(let r of t){let s=Buffer.from(r,"base64").toString(),n=G(JSON.parse(s));this.wallets[n.id]=n,await this.setWallets(this.wallets)}}async getTransactionReviewUrl(e,t){let r=await this.touchSession();return this.constructPortalUrl("txReview",{partnerId:r.data.partnerId,pathId:e,params:{email:this.email,timeoutMs:t?.toString()}})}async getOnRampTransactionUrl({purchaseId:e,providerKey:t,...r}){let s=await this.touchSession(),[n,a]=(0,p.extractWalletRef)(r);return this.constructPortalUrl("onRamp",{partnerId:s.data.partnerId,pathId:e,sessionId:s.data.sessionId,params:{[n]:a,providerKey:t,currentWalletIds:JSON.stringify(this.currentWalletIds)}})}async signMessage({walletId:e,messageBase64:t,timeoutMs:r=3e4,cosmosSignDocBase64:s}){this.assertIsValidWalletId(e);let n=this.wallets[e],a=this.userId;n.partnerId&&!n.userId&&(a=n.partnerId);let o=await this.signMessageInner({wallet:n,signerId:a,messageBase64:t,cosmosSignDocBase64:s}),l=Date.now();if(o.pendingTransactionId)this.platformUtils.openPopup(await this.getTransactionReviewUrl(o.pendingTransactionId,r),{type:s?"SIGN_TRANSACTION_REVIEW":"SIGN_MESSAGE_REVIEW"});else return g(h.SIGN_MESSAGE_EVENT,o),o;for(await new Promise(c=>setTimeout(c,R));!(Date.now()-l>r);){try{await this.ctx.client.getPendingTransaction(this.userId,o.pendingTransactionId)}catch{let d=new $;throw g(h.SIGN_MESSAGE_EVENT,o,d.message),d}if(o=await this.signMessageInner({wallet:n,signerId:a,messageBase64:t,cosmosSignDocBase64:s}),o.pendingTransactionId)await new Promise(c=>setTimeout(c,R));else break}if(o.pendingTransactionId){let c=new H(await this.getTransactionReviewUrl(o.pendingTransactionId),o.pendingTransactionId);throw g(h.SIGN_MESSAGE_EVENT,o,c.message),c}return g(h.SIGN_MESSAGE_EVENT,o),o}async signMessageInner({wallet:e,signerId:t,messageBase64:r,cosmosSignDocBase64:s}){let n;switch(e.scheme){case p.WalletScheme.ED25519:n=await this.platformUtils.ed25519Sign(this.ctx,t,e.id,e.signer,r,this.retrieveSessionCookie());break;default:n=await this.platformUtils.signMessage(this.ctx,t,e.id,e.signer,r,this.retrieveSessionCookie(),e.scheme===p.WalletScheme.DKLS,s);break}return n}async signTransaction({walletId:e,rlpEncodedTxBase64:t,chainId:r,timeoutMs:s=3e4}){this.assertIsValidWalletId(e);let n=this.wallets[e],a=this.userId;n.partnerId&&!n.userId&&(a=n.partnerId);let o=await this.platformUtils.signTransaction(this.ctx,a,e,this.wallets[e].signer,t,r,this.retrieveSessionCookie(),n.scheme===p.WalletScheme.DKLS),l=Date.now();if(o.pendingTransactionId)this.platformUtils.openPopup(await this.getTransactionReviewUrl(o.pendingTransactionId,s),{type:"SIGN_TRANSACTION_REVIEW"});else return g(h.SIGN_TRANSACTION_EVENT,o),o;for(await new Promise(c=>setTimeout(c,R));!(Date.now()-l>s);){try{await this.ctx.client.getPendingTransaction(this.userId,o.pendingTransactionId)}catch{let d=new $;throw g(h.SIGN_TRANSACTION_EVENT,o,d.message),d}if(o=await this.platformUtils.signTransaction(this.ctx,a,e,this.wallets[e].signer,t,r,this.retrieveSessionCookie(),n.scheme===p.WalletScheme.DKLS),o.pendingTransactionId)await new Promise(c=>setTimeout(c,R));else break}if(o.pendingTransactionId){let c=new H(await this.getTransactionReviewUrl(o.pendingTransactionId),o.pendingTransactionId);throw g(h.SIGN_TRANSACTION_EVENT,o,c.message),c}return g(h.SIGN_TRANSACTION_EVENT,o),o}async sendTransaction({walletId:e,rlpEncodedTxBase64:t,chainId:r}){this.assertIsValidWalletId(e);let s=this.wallets[e],n=await this.platformUtils.sendTransaction(this.ctx,this.userId,e,this.wallets[e].signer,t,r,this.retrieveSessionCookie(),s.scheme===p.WalletScheme.DKLS);if(n.pendingTransactionId)throw this.platformUtils.openPopup(await this.getTransactionReviewUrl(n.pendingTransactionId),{type:"SIGN_TRANSACTION_REVIEW"}),new te(await this.getTransactionReviewUrl(n.pendingTransactionId));return n}isProviderModalDisabled(){return!!this.disableProviderModal}async initiateOnRampTransaction(e){let{params:t,shouldOpenPopup:r,...s}=e,n=await this.ctx.client.createOnRampPurchase({userId:this.userId,params:{...t,address:s.externalWalletAddress??this.getDisplayAddress(s.walletId,{addressType:t.walletType})},...s}),a=await this.getOnRampTransactionUrl({purchaseId:n.id,providerKey:n.providerKey,...s});return r&&this.platformUtils.openPopup(a,{type:"ON_RAMP_TRANSACTION"}),{onRampPurchase:n,portalUrl:a}}async keepSessionAlive(){try{return await this.ctx.client.keepSessionAlive(this.userId),!0}catch{return!1}}exportSession(){let e={email:this.email,userId:this.userId,wallets:this.wallets,currentWalletIds:this.currentWalletIds,sessionCookie:this.sessionCookie,phone:this.phone,countryCode:this.countryCode,telegramUserId:this.telegramUserId,farcasterUsername:this.farcasterUsername,externalWallets:this.externalWallets};return Buffer.from(JSON.stringify(e)).toString("base64")}async importSession(e){let t=Buffer.from(e,"base64").toString("utf8"),r=JSON.parse(t);await this.setEmail(r.email),await this.setTelegramUserId(r.telegramUserId),await this.setFarcasterUsername(r.farcasterUsername),await this.setUserId(r.userId),await this.setWallets(r.wallets),await this.setExternalWallets(r.externalWallets||{});for(let s of Object.keys(this.wallets))this.wallets[s].userId||(this.wallets[s].userId=this.userId);if(Object.keys(r.currentWalletIds).length!==0)await this.setCurrentWalletIds(r.currentWalletIds);else{let s={};for(let n of Object.keys(r.wallets))s[r.wallets[n].type]=[...s[r.wallets[n].type]??[],n];await this.setCurrentWalletIds(s)}this.persistSessionCookie(r.sessionCookie),await this.setPhoneNumber(r.phone,r.countryCode)}exitAccountCreation(){this.isAwaitingAccountCreation=!1}exitLogin(){this.isAwaitingLogin=!1}exitFarcaster(){this.isAwaitingFarcaster=!1}exitOAuth(){this.isAwaitingOAuth=!1}exitLoops(){this.exitAccountCreation(),this.exitLogin(),this.exitFarcaster(),this.exitOAuth()}async getVerificationToken(){let{data:e}=await this.touchSession();return e.sessionLookupId}async logout({clearPregenWallets:e=!1}={}){await this.ctx.client.logout(),await this.clearStorage(),e?this.wallets={}:(Object.entries(this.wallets).forEach(([t,r])=>{r.pregenIdentifier||delete this.wallets[t]}),await this.setWallets(this.wallets)),this.currentWalletIds={},this.currentExternalWalletAddresses=void 0,this.externalWallets={},this.loginEncryptionKeyPair=void 0,this.email=void 0,this.telegramUserId=void 0,this.phone=void 0,this.countryCode=void 0,this.userId=void 0,this.sessionCookie=void 0,g(h.LOGOUT_EVENT,null)}async getSupportedCreateAuthMethods(){let t=(await this.touchSession()).data.partnerId,r=await this.ctx.client.getPartner(t),s=new Set;for(let n of r.data.partner.supportedAuthMethods)s.add(p.AuthMethod[n]);return s}toString(){let e=Object.keys(this.wallets).reduce((r,s)=>({...r,[s]:{...this.wallets[s],signer:this.wallets[s].signer?"[REDACTED]":void 0}}),{}),t={supportedWalletTypes:this.supportedWalletTypes,cosmosPrefix:this.cosmosPrefix,email:this.email,phone:this.phone,countryCode:this.countryCode,telegramUserId:this.telegramUserId,farcasterUsername:this.farcasterUsername,userId:this.userId,pregenIds:this.pregenIds,currentWalletIds:this.currentWalletIds,wallets:e,loginEncryptionKeyPair:this.loginEncryptionKeyPair?"[REDACTED]":void 0,ctx:{apiKey:this.ctx.apiKey,disableWorkers:this.ctx.disableWorkers,disableWebSockets:this.ctx.disableWebSockets,env:this.ctx.env,offloadMPCComputationURL:this.ctx.offloadMPCComputationURL,useLocalFiles:this.ctx.useLocalFiles,useDKLS:this.ctx.useDKLS,cosmosPrefix:this.ctx.cosmosPrefix}};return`Para ${JSON.stringify(t,null,2)}`}};var u=require("@getpara/user-management-client"),Ht=re.version,jt=re;0&&(module.exports={AuthMethod,EmailTheme,EnabledFlow,Environment,KeyContainer,NON_ED25519,Network,OAuthMethod,OnRampAsset,OnRampMethod,OnRampProvider,OnRampPurchaseStatus,OnRampPurchaseType,PREGEN_IDENTIFIER_TYPES,ParaEvent,PopupType,PregenIdentifierType,RecoveryStatus,STORAGE_PREFIX,TransactionReviewDenied,TransactionReviewError,TransactionReviewTimeout,WalletScheme,WalletType,decimalToHex,decryptPrivateKey,decryptPrivateKeyAndDecryptShare,decryptPrivateKeyWithPassword,decryptWithKeyPair,decryptWithPrivateKey,distributeNewShare,encodePrivateKeyToPemHex,encryptPrivateKey,encryptPrivateKeyWithPassword,encryptWithDerivedPublicKey,entityToWallet,getAsymmetricKeyPair,getBaseMPCNetworkUrl,getBaseOAuthUrl,getBaseUrl,getCosmosAddress,getDerivedPrivateKeyAndDecrypt,getOnRampAssets,getOnRampNetworks,getPortalBaseURL,getPortalDomain,getPublicKeyFromSignature,getPublicKeyHex,getSHA256HashHex,hashPasswordWithSalt,hexStringToBase64,hexToDecimal,hexToSignature,hexToUint8Array,initClient,isWalletSupported,mpcComputationClient,normalizePhoneNumber,paraVersion,publicKeyFromHex,stringToPhoneNumber,toAssetInfoArray,transmissionUtilsRetrieve,truncateAddress,waitUntilTrue});
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var src_exports = {};
+__export(src_exports, {
+  AuthMethod: () => import_user_management_client6.AuthMethod,
+  EmailTheme: () => import_user_management_client6.EmailTheme,
+  EnabledFlow: () => EnabledFlow,
+  Environment: () => Environment,
+  KeyContainer: () => KeyContainer,
+  NON_ED25519: () => import_user_management_client6.NON_ED25519,
+  Network: () => import_user_management_client6.Network,
+  OAuthMethod: () => import_user_management_client6.OAuthMethod,
+  OnRampAsset: () => import_user_management_client6.OnRampAsset,
+  OnRampMethod: () => OnRampMethod,
+  OnRampProvider: () => import_user_management_client6.OnRampProvider,
+  OnRampPurchaseStatus: () => import_user_management_client6.OnRampPurchaseStatus,
+  OnRampPurchaseType: () => import_user_management_client6.OnRampPurchaseType,
+  PREGEN_IDENTIFIER_TYPES: () => import_user_management_client6.PREGEN_IDENTIFIER_TYPES,
+  ParaEvent: () => ParaEvent,
+  PopupType: () => PopupType,
+  PregenIdentifierType: () => PregenIdentifierType,
+  RecoveryStatus: () => RecoveryStatus,
+  STORAGE_PREFIX: () => PREFIX,
+  TransactionReviewDenied: () => TransactionReviewDenied,
+  TransactionReviewError: () => TransactionReviewError,
+  TransactionReviewTimeout: () => TransactionReviewTimeout,
+  WalletScheme: () => import_user_management_client6.WalletScheme,
+  WalletType: () => import_user_management_client6.WalletType,
+  decimalToHex: () => decimalToHex,
+  decryptPrivateKey: () => decryptPrivateKey,
+  decryptPrivateKeyAndDecryptShare: () => decryptPrivateKeyAndDecryptShare,
+  decryptPrivateKeyWithPassword: () => decryptPrivateKeyWithPassword,
+  decryptWithKeyPair: () => decryptWithKeyPair,
+  decryptWithPrivateKey: () => decryptWithPrivateKey,
+  default: () => src_default,
+  distributeNewShare: () => distributeNewShare,
+  encodePrivateKeyToPemHex: () => encodePrivateKeyToPemHex,
+  encryptPrivateKey: () => encryptPrivateKey,
+  encryptPrivateKeyWithPassword: () => encryptPrivateKeyWithPassword,
+  encryptWithDerivedPublicKey: () => encryptWithDerivedPublicKey,
+  entityToWallet: () => entityToWallet,
+  getAsymmetricKeyPair: () => getAsymmetricKeyPair,
+  getBaseMPCNetworkUrl: () => getBaseMPCNetworkUrl,
+  getBaseOAuthUrl: () => getBaseOAuthUrl,
+  getBaseUrl: () => getBaseUrl,
+  getCosmosAddress: () => getCosmosAddress,
+  getDerivedPrivateKeyAndDecrypt: () => getDerivedPrivateKeyAndDecrypt,
+  getOnRampAssets: () => getOnRampAssets,
+  getOnRampNetworks: () => getOnRampNetworks,
+  getPortalBaseURL: () => getPortalBaseURL,
+  getPortalDomain: () => getPortalDomain,
+  getPublicKeyFromSignature: () => getPublicKeyFromSignature,
+  getPublicKeyHex: () => getPublicKeyHex,
+  getSHA256HashHex: () => getSHA256HashHex,
+  hashPasswordWithSalt: () => hashPasswordWithSalt,
+  hexStringToBase64: () => hexStringToBase64,
+  hexToDecimal: () => hexToDecimal,
+  hexToSignature: () => hexToSignature,
+  hexToUint8Array: () => hexToUint8Array,
+  initClient: () => initClient,
+  isWalletSupported: () => isWalletSupported,
+  mpcComputationClient: () => mpcComputationClient_exports,
+  normalizePhoneNumber: () => normalizePhoneNumber,
+  paraVersion: () => paraVersion,
+  publicKeyFromHex: () => publicKeyFromHex,
+  stringToPhoneNumber: () => stringToPhoneNumber,
+  toAssetInfoArray: () => toAssetInfoArray,
+  transmissionUtilsRetrieve: () => retrieve,
+  truncateAddress: () => truncateAddress,
+  waitUntilTrue: () => waitUntilTrue
+});
+module.exports = __toCommonJS(src_exports);
+
+// src/ParaCore.ts
+var import_buffer2 = require("buffer");
+var import_user_management_client5 = require("@getpara/user-management-client");
+var import_node_forge2 = __toESM(require("node-forge"));
+
+// src/cryptography/utils.ts
+var import_base64url = __toESM(require("base64url"));
+var import_node_forge = __toESM(require("node-forge"));
+
+// src/utils/events.ts
+function dispatchEvent(type, data, error) {
+  typeof window !== "undefined" && !!window.dispatchEvent && window.dispatchEvent(
+    new CustomEvent(type, { detail: { data, ...error && { error: new Error(error) } } })
+  );
+}
+
+// src/utils/formatting.ts
+var import_encoding = require("@cosmjs/encoding");
+var import_sha256 = require("@noble/hashes/sha256");
+var import_ripemd160 = require("@noble/hashes/ripemd160");
+var import_elliptic = __toESM(require("elliptic"));
+var import_libphonenumber_js = __toESM(require("libphonenumber-js"));
+var secp256k1 = new import_elliptic.default.ec("secp256k1");
+function hexStringToBase64(hexString) {
+  if (hexString.substring(0, 2) === "0x") {
+    hexString = hexString.substring(2);
+  }
+  return Buffer.from(hexString, "hex").toString("base64");
+}
+function hexToSignature(hexSig) {
+  return {
+    r: `0x${hexSig.slice(2, 66)}`,
+    s: `0x${hexSig.slice(66, 130)}`,
+    v: BigInt(hexSig.slice(130, 132))
+  };
+}
+function hexToUint8Array(hex) {
+  if (hex.startsWith("0x")) {
+    hex = hex.slice(2);
+  }
+  return new Uint8Array(Buffer.from(hex, "hex"));
+}
+function hexToDecimal(hex) {
+  if (hex.startsWith("0x")) {
+    hex = hex.slice(2);
+  }
+  return `${parseInt(hex, 16)}`;
+}
+function decimalToHex(decimal) {
+  return `0x${parseInt(decimal).toString(16)}`;
+}
+function compressPubkey(pubkey) {
+  switch (pubkey.length) {
+    case 33:
+      return pubkey;
+    case 65:
+      return Uint8Array.from(secp256k1.keyFromPublic(pubkey).getPublic(true, "array"));
+    default:
+      throw new Error("Invalid pubkey length");
+  }
+}
+function rawSecp256k1PubkeyToRawAddress(pubkeyData) {
+  if (pubkeyData.length !== 33) {
+    throw new Error(`Invalid Secp256k1 pubkey length (compressed): ${pubkeyData.length}`);
+  }
+  return (0, import_ripemd160.ripemd160)((0, import_sha256.sha256)(pubkeyData));
+}
+function getCosmosAddress(publicKey, prefix) {
+  const uncompressedPublicKey = new Uint8Array(
+    Buffer.from(publicKey.startsWith("0x") ? publicKey.slice(2) : publicKey, "hex")
+  );
+  const compressedPublicKey = compressPubkey(uncompressedPublicKey);
+  return (0, import_encoding.toBech32)(prefix, rawSecp256k1PubkeyToRawAddress(compressedPublicKey));
+}
+function truncateAddress(str, addressType, { prefix = addressType === "COSMOS" ? "cosmos" : void 0 } = {}) {
+  const headLength = (addressType === "COSMOS" ? prefix.length : addressType === "SOLANA" ? 0 : 2) + 4;
+  return `${str.slice(0, headLength)}...${str.slice(-4)}`;
+}
+function stringToPhoneNumber(str) {
+  return (0, import_libphonenumber_js.default)(str)?.formatInternational().replace(/[^\d+]/g, "");
+}
+function normalizePhoneNumber(countryCode, number) {
+  return stringToPhoneNumber(`${countryCode[0] !== "+" ? "+" : ""}${countryCode}${number}`);
+}
+
+// src/utils/onRamps.ts
+function toAssetInfoArray(data) {
+  const result = [];
+  Object.keys(data).forEach((walletType) => {
+    const networks = data[walletType];
+    Object.keys(networks).forEach((network) => {
+      const assets = networks[network];
+      Object.keys(assets).forEach((asset) => {
+        const providerInfo = assets[asset];
+        result.push([walletType, network, asset, providerInfo]);
+      });
+    });
+  });
+  return result;
+}
+function getOnRampNetworks(data, { walletType, allowed } = {}) {
+  return [
+    ...new Set(
+      toAssetInfoArray(data).filter(([type, network]) => (!walletType || type === walletType) && (!allowed || allowed.includes(network))).map(([_, network]) => network)
+    )
+  ];
+}
+function getOnRampAssets(data, {
+  walletType,
+  network,
+  allowed
+} = {}) {
+  return [
+    ...new Set(
+      toAssetInfoArray(data).filter(
+        ([t, n, a]) => (!walletType || t === walletType) && (!network || n === network) && (!Array.isArray(allowed) || allowed.includes(a))
+      ).map(([, , asset]) => asset)
+    )
+  ];
+}
+
+// src/utils/polling.ts
+async function waitUntilTrue(condition, timeoutMs, intervalMs) {
+  const start = Date.now();
+  while (Date.now() - start < timeoutMs) {
+    if (await condition()) {
+      return true;
+    }
+    await new Promise((resolve) => setTimeout(resolve, intervalMs));
+  }
+  return false;
+}
+
+// src/types/config.ts
+var Environment = /* @__PURE__ */ ((Environment3) => {
+  Environment3["DEV"] = "DEV";
+  Environment3["SANDBOX"] = "SANDBOX";
+  Environment3["BETA"] = "BETA";
+  Environment3["PROD"] = "PROD";
+  Environment3["DEVELOPMENT"] = "BETA";
+  Environment3["PRODUCTION"] = "PROD";
+  return Environment3;
+})(Environment || {});
+var EnabledFlow = /* @__PURE__ */ ((EnabledFlow2) => {
+  EnabledFlow2["BUY"] = "BUY";
+  EnabledFlow2["RECEIVE"] = "RECEIVE";
+  EnabledFlow2["WITHDRAW"] = "WITHDRAW";
+  return EnabledFlow2;
+})(EnabledFlow || {});
+
+// src/types/wallet.ts
+var PregenIdentifierType = /* @__PURE__ */ ((PregenIdentifierType2) => {
+  PregenIdentifierType2["EMAIL"] = "EMAIL";
+  PregenIdentifierType2["PHONE"] = "PHONE";
+  return PregenIdentifierType2;
+})(PregenIdentifierType || {});
+
+// src/types/onRamps.ts
+var OnRampMethod = /* @__PURE__ */ ((OnRampMethod2) => {
+  OnRampMethod2["ACH"] = "ACH";
+  OnRampMethod2["DEBIT"] = "Debit";
+  OnRampMethod2["CREDIT"] = "Credit";
+  OnRampMethod2["APPLE_PAY"] = "Apple Pay";
+  return OnRampMethod2;
+})(OnRampMethod || {});
+
+// src/types/popup.ts
+var PopupType = /* @__PURE__ */ ((PopupType2) => {
+  PopupType2["SIGN_TRANSACTION_REVIEW"] = "SIGN_TRANSACTION_REVIEW";
+  PopupType2["SIGN_MESSAGE_REVIEW"] = "SIGN_MESSAGE_REVIEW";
+  PopupType2["LOGIN_PASSKEY"] = "LOGIN_PASSKEY";
+  PopupType2["CREATE_PASSKEY"] = "CREATE_PASSKEY";
+  PopupType2["OAUTH"] = "OAUTH";
+  PopupType2["ON_RAMP_TRANSACTION"] = "ON_RAMP_TRANSACTION";
+  return PopupType2;
+})(PopupType || {});
+
+// src/types/recovery.ts
+var RecoveryStatus = /* @__PURE__ */ ((RecoveryStatus3) => {
+  RecoveryStatus3["INITIATED"] = "INITIATED";
+  RecoveryStatus3["READY"] = "READY";
+  RecoveryStatus3["EXPIRED"] = "EXPIRED";
+  RecoveryStatus3["FINISHED"] = "FINISHED";
+  RecoveryStatus3["CANCELLED"] = "CANCELLED";
+  return RecoveryStatus3;
+})(RecoveryStatus || {});
+
+// src/types/events.ts
+var EVENT_PREFIX = "para";
+var ParaEvent = ((ParaEvent2) => {
+  ParaEvent2["LOGIN_EVENT"] = `${EVENT_PREFIX}Login`;
+  ParaEvent2["ACCOUNT_CREATION_EVENT"] = `${EVENT_PREFIX}AccountCreation`;
+  ParaEvent2["ACCOUNT_SETUP_EVENT"] = `${EVENT_PREFIX}AccountSetup`;
+  ParaEvent2["LOGOUT_EVENT"] = `${EVENT_PREFIX}Logout`;
+  ParaEvent2["SIGN_MESSAGE_EVENT"] = `${EVENT_PREFIX}SignMessage`;
+  ParaEvent2["SIGN_TRANSACTION_EVENT"] = `${EVENT_PREFIX}SignTransaction`;
+  ParaEvent2["EXTERNAL_WALLET_CHANGE_EVENT"] = `${EVENT_PREFIX}ExternalWalletChange`;
+  ParaEvent2["WALLETS_CHANGE_EVENT"] = `${EVENT_PREFIX}WalletsChange`;
+  ParaEvent2["WALLET_CREATED"] = `${EVENT_PREFIX}WalletCreated`;
+  ParaEvent2["PREGEN_WALLET_CLAIMED"] = `${EVENT_PREFIX}PregenWalletClaimed`;
+  return ParaEvent2;
+})(ParaEvent || {});
+
+// src/utils/url.ts
+function getPortalDomain(env, isE2E) {
+  if (isE2E) {
+    return `localhost`;
+  }
+  switch (env) {
+    case "DEV" /* DEV */:
+      return "localhost";
+    case "SANDBOX" /* SANDBOX */:
+      return "app.sandbox.usecapsule.com";
+    case "BETA" /* BETA */:
+      return "app.beta.usecapsule.com";
+    case "PROD" /* PROD */:
+      return "app.usecapsule.com";
+    default:
+      throw new Error(`env: ${env} not supported`);
+  }
+}
+function getPortalBaseURL({ env, isE2E }, useLocalIp, isForWasm) {
+  if (isE2E) {
+    if (isForWasm) {
+      return `https://app.sandbox.usecapsule.com`;
+    }
+    return `http://localhost:3003`;
+  }
+  const domain = getPortalDomain(env);
+  if (env === "DEV" /* DEV */) {
+    if (useLocalIp) {
+      return `http://127.0.0.1:3003`;
+    }
+    return `http://${domain}:3003`;
+  }
+  return `https://${domain}`;
+}
+function getParaConnectDomain(env) {
+  switch (env) {
+    case "DEV" /* DEV */:
+      return "localhost";
+    case "SANDBOX" /* SANDBOX */:
+      return "connect.sandbox.getpara.com";
+    case "BETA" /* BETA */:
+      return "connect.beta.getpara.com";
+    case "PROD" /* PROD */:
+      return "connect.getpara.com";
+    default:
+      throw new Error(`env: ${env} not supported`);
+  }
+}
+function getParaConnectBaseUrl({ env }, useLocalIp) {
+  const domain = getParaConnectDomain(env);
+  if (env === "DEV" /* DEV */) {
+    if (useLocalIp) {
+      return `http://127.0.0.1:3008`;
+    }
+    return `http://${domain}:3008`;
+  }
+  return `https://${domain}`;
+}
+function constructUrl({
+  base,
+  path,
+  params = {}
+}) {
+  const url = new URL(path, base);
+  Object.entries(params).forEach(([key, value]) => {
+    if (!!value && value !== "undefined" && value !== "null") url.searchParams.set(key, value.toString());
+  });
+  return url.toString();
+}
+
+// src/utils/wallet.ts
+var import_user_management_client = require("@getpara/user-management-client");
+var WalletSchemeTypeMap = {
+  [import_user_management_client.WalletScheme.DKLS]: {
+    [import_user_management_client.WalletType.EVM]: true,
+    [import_user_management_client.WalletType.COSMOS]: true
+  },
+  [import_user_management_client.WalletScheme.CGGMP]: {
+    [import_user_management_client.WalletType.EVM]: true,
+    [import_user_management_client.WalletType.COSMOS]: true
+  },
+  [import_user_management_client.WalletScheme.ED25519]: {
+    [import_user_management_client.WalletType.SOLANA]: true
+  }
+};
+function isPregenIdentifierMatch(a, b, type) {
+  if (!a || !b) {
+    return false;
+  }
+  switch (type) {
+    case "EMAIL":
+      return a.toLowerCase() === b.toLowerCase();
+    case "PHONE":
+      return stringToPhoneNumber(a) === stringToPhoneNumber(b);
+    case "CUSTOM_ID":
+      return a === b;
+    default:
+      return a.replace(/^@/g, "").toLowerCase() === b.replace(/^@/g, "").toLowerCase();
+  }
+}
+function isWalletSupported(types, wallet) {
+  return types.some((walletType) => !!WalletSchemeTypeMap[wallet.scheme][walletType]);
+}
+function getSchemes(types) {
+  return Object.keys(WalletSchemeTypeMap).filter((scheme) => {
+    if (scheme === import_user_management_client.WalletScheme.CGGMP) {
+      return false;
+    }
+    return (Array.isArray(types) ? types : Object.keys(types)).some((type) => WalletSchemeTypeMap[scheme][type]);
+  });
+}
+function getWalletTypes(schemes) {
+  return [
+    ...new Set(
+      schemes.reduce((acc, scheme) => {
+        return [...acc, ...Object.keys(WalletSchemeTypeMap[scheme]).filter((type) => WalletSchemeTypeMap[scheme][type])];
+      }, [])
+    )
+  ];
+}
+function getEquivalentTypes(types) {
+  return getWalletTypes(getSchemes((Array.isArray(types) ? types : [types]).map((t) => import_user_management_client.WalletType[t])));
+}
+function entityToWallet(w) {
+  return {
+    ...w,
+    scheme: w.scheme,
+    type: w.type,
+    pregenIdentifierType: w.pregenIdentifierType
+  };
+}
+function migrateWallet(obj) {
+  if (["USER", "PREGEN"].includes(obj.type)) {
+    obj.isPregen = obj.type === "PREGEN";
+    obj.type = obj.scheme === import_user_management_client.WalletScheme.ED25519 ? import_user_management_client.WalletType.SOLANA : import_user_management_client.WalletType.EVM;
+  }
+  if (!!obj.scheme && !obj.type) {
+    obj.type = obj.scheme === import_user_management_client.WalletScheme.ED25519 ? import_user_management_client.WalletType.SOLANA : import_user_management_client.WalletType.EVM;
+  }
+  return obj;
+}
+
+// src/cryptography/utils.ts
+var rsa = import_node_forge.default.pki.rsa;
+var RSA_ENCRYPTION_SCHEME = "RSA-OAEP";
+var CONSTANT_IV = "794241bc819a125a7b78ea313decc0bc";
+var CONSTANT_IV_AES = new Uint8Array([23, 66, 157, 146, 179, 158, 117, 120, 184, 73, 123, 81]);
+function getSHA256HashHex(str) {
+  const md = import_node_forge.default.md.sha256.create();
+  md.update(str);
+  return md.digest().toHex();
+}
+function getPublicKeyHex(keyPair) {
+  const pem = import_node_forge.default.pki.publicKeyToRSAPublicKeyPem(keyPair.publicKey);
+  return Buffer.from(pem, "utf-8").toString("hex");
+}
+function publicKeyFromHex(publicKeyHex) {
+  const pem = publicKeyHexToPem(publicKeyHex);
+  return import_node_forge.default.pki.publicKeyFromPem(pem);
+}
+function publicKeyHexToPem(publicKeyHex) {
+  return Buffer.from(publicKeyHex, "hex").toString("utf-8");
+}
+function encodePrivateKeyToPemHex(keyPair) {
+  const pem = import_node_forge.default.pki.privateKeyToPem(keyPair.privateKey);
+  return Buffer.from(pem, "utf-8").toString("hex");
+}
+function decodePrivateKeyPemHex(privateKeyPemHex) {
+  const pem = Buffer.from(privateKeyPemHex, "hex").toString("utf-8");
+  return import_node_forge.default.pki.privateKeyFromPem(pem);
+}
+async function encryptPrivateKey(keyPair, key) {
+  const privateKeyPemHex = encodePrivateKeyToPemHex(keyPair);
+  const cryptoKey = await window.crypto.subtle.importKey(
+    "raw",
+    Buffer.from(key, "base64"),
+    {
+      name: "AES-GCM",
+      length: 256
+    },
+    true,
+    ["encrypt", "decrypt"]
+  );
+  const encodedPlaintext = new TextEncoder().encode(privateKeyPemHex);
+  const ciphertext = await window.crypto.subtle.encrypt(
+    { name: "AES-GCM", iv: CONSTANT_IV_AES },
+    cryptoKey,
+    encodedPlaintext
+  );
+  return Buffer.from(ciphertext).toString("base64");
+}
+async function decryptPrivateKey(encryptedPrivateKeyPemHex, key) {
+  const secretKey = await crypto.subtle.importKey(
+    "raw",
+    Buffer.from(key, "base64"),
+    {
+      name: "AES-GCM",
+      length: 256
+    },
+    true,
+    ["encrypt", "decrypt"]
+  );
+  const cleartext = await crypto.subtle.decrypt(
+    { name: "AES-GCM", iv: CONSTANT_IV_AES },
+    secretKey,
+    Buffer.from(encryptedPrivateKeyPemHex, "base64")
+  );
+  const privateKeyPemHex = new TextDecoder().decode(cleartext);
+  const privateKey = decodePrivateKeyPemHex(privateKeyPemHex);
+  return privateKey;
+}
+async function getAsymmetricKeyPair(ctx, seedValue) {
+  const prng = import_node_forge.default.random.createInstance();
+  if (seedValue) {
+    prng.seedFileSync = (_n) => seedValue;
+    prng.seedFile = (_n, cb) => {
+      cb(null, seedValue);
+    };
+  }
+  const options = {
+    bits: 2048,
+    e: 65537,
+    prng
+  };
+  if (!ctx.disableWorkers) {
+    options.workLoad = 100;
+    options.workers = seedValue ? 1 : -1;
+    const workerRes = await fetch(`${getPortalBaseURL(ctx)}/static/js/prime.worker.min.js`);
+    const workerBlob = new Blob([await workerRes.text()], { type: "application/javascript" });
+    options.workerScript = URL.createObjectURL(workerBlob);
+  }
+  return new Promise(
+    (resolve, reject) => rsa.generateKeyPair(options, (err, keypair) => {
+      if (err) {
+        reject(err);
+      }
+      resolve(keypair);
+    })
+  );
+}
+async function getPublicKeyFromSignature(ctx, userHandle) {
+  const encodedUserHandle = import_base64url.default.encode(userHandle);
+  const keyPair = await getAsymmetricKeyPair(ctx, encodedUserHandle);
+  return getPublicKeyHex(keyPair);
+}
+function symmetricKeyEncryptMessage(message) {
+  const key = import_node_forge.default.random.getBytesSync(16);
+  const cipher = import_node_forge.default.cipher.createCipher("AES-CBC", key);
+  cipher.start({ iv: CONSTANT_IV });
+  cipher.update(import_node_forge.default.util.createBuffer(message));
+  cipher.finish();
+  const encryptedMessageHex = cipher.output.toHex();
+  return { key, encryptedMessageHex };
+}
+function decipherEncryptedMessageHex(key, encryptedMessageHex) {
+  const decipher = import_node_forge.default.cipher.createDecipher("AES-CBC", key);
+  decipher.start({ iv: CONSTANT_IV });
+  decipher.update(import_node_forge.default.util.createBuffer(import_node_forge.default.util.hexToBytes(encryptedMessageHex)));
+  decipher.finish();
+  return decipher.output.toString();
+}
+function decryptWithKeyPair(keyPair, encryptedMessageHex, encryptedKeyHex) {
+  const encryptedKey = Buffer.from(encryptedKeyHex, "hex").toString("utf-8");
+  const key = keyPair.privateKey.decrypt(encryptedKey, RSA_ENCRYPTION_SCHEME);
+  return decipherEncryptedMessageHex(key, encryptedMessageHex);
+}
+function decryptWithPrivateKey(privateKey, encryptedMessageHex, encryptedKeyHex) {
+  const encryptedKey = Buffer.from(encryptedKeyHex, "hex").toString("utf-8");
+  const key = privateKey.decrypt(encryptedKey, RSA_ENCRYPTION_SCHEME);
+  return decipherEncryptedMessageHex(key, encryptedMessageHex);
+}
+async function decryptWithDerivedPrivateKey(ctx, {
+  seedValue,
+  encryptedMessageHex,
+  encryptedKeyHex
+}) {
+  const keyPair = await getAsymmetricKeyPair(ctx, seedValue);
+  return decryptWithPrivateKey(keyPair.privateKey, encryptedMessageHex, encryptedKeyHex);
+}
+async function getDerivedPrivateKeyAndDecrypt(ctx, seedValue, encryptedShares) {
+  return Promise.all(
+    encryptedShares.map(async (share) => ({
+      walletId: share.walletId,
+      walletScheme: share.walletScheme,
+      partnerId: share.partnerId,
+      signer: await decryptWithDerivedPrivateKey(ctx, {
+        seedValue,
+        encryptedMessageHex: share.encryptedShare,
+        encryptedKeyHex: share.encryptedKey
+      }),
+      protocolId: share.protocolId
+    }))
+  );
+}
+async function decryptPrivateKeyAndDecryptShare(encryptionKey, encryptedShares, encryptedPrivateKey) {
+  let privateKey;
+  try {
+    privateKey = await decryptPrivateKey(encryptedPrivateKey, encryptionKey);
+  } catch (e) {
+  }
+  try {
+    privateKey = await decryptPrivateKeyWithPassword(encryptedPrivateKey, encryptionKey);
+  } catch (e) {
+  }
+  if (!privateKey) {
+    throw new Error("Could not decrypt private key");
+  }
+  return encryptedShares.map((share) => ({
+    walletId: share.walletId,
+    walletScheme: share.walletScheme,
+    partnerId: share.partnerId,
+    signer: decryptWithPrivateKey(privateKey, share.encryptedShare, share.encryptedKey),
+    protocolId: share.protocolId
+  }));
+}
+function encryptWithDerivedPublicKey(publicKeyHex, message) {
+  const { key, encryptedMessageHex } = symmetricKeyEncryptMessage(message);
+  const publicKeyPem = publicKeyHexToPem(publicKeyHex);
+  const publicKey = import_node_forge.default.pki.publicKeyFromPem(publicKeyPem);
+  const encryptedKey = publicKey.encrypt(key, RSA_ENCRYPTION_SCHEME);
+  const encryptedKeyHex = Buffer.from(encryptedKey, "utf-8").toString("hex");
+  return { encryptedMessageHex, encryptedKeyHex };
+}
+function hashPasswordWithSalt(password) {
+  const salt = generateSalt();
+  const saltedPassword = salt + password;
+  const hash = getSHA256HashHex(saltedPassword);
+  return { salt, hash };
+}
+function generateSalt(length = 16) {
+  return import_node_forge.default.util.bytesToHex(import_node_forge.default.random.getBytesSync(length));
+}
+async function deriveCryptoKeyFromPassword(hashedPassword) {
+  const keyBuffer = Buffer.from(hashedPassword, "hex");
+  return await window.crypto.subtle.importKey(
+    "raw",
+    keyBuffer,
+    {
+      name: "AES-GCM",
+      length: 256
+    },
+    true,
+    ["encrypt", "decrypt"]
+  );
+}
+async function encryptPrivateKeyWithPassword(keyPair, hashedPassword) {
+  const cryptoKey = await deriveCryptoKeyFromPassword(hashedPassword);
+  const privateKeyPemHex = encodePrivateKeyToPemHex(keyPair);
+  const encodedPlaintext = new TextEncoder().encode(privateKeyPemHex);
+  const ciphertext = await window.crypto.subtle.encrypt(
+    { name: "AES-GCM", iv: CONSTANT_IV_AES },
+    cryptoKey,
+    encodedPlaintext
+  );
+  return Buffer.from(ciphertext).toString("base64");
+}
+async function decryptPrivateKeyWithPassword(encryptedPrivateKeyPemHex, hashedPassword) {
+  const secretKey = await crypto.subtle.importKey(
+    "raw",
+    Buffer.from(hashedPassword, "hex"),
+    {
+      name: "AES-GCM",
+      length: 256
+    },
+    true,
+    ["encrypt", "decrypt"]
+  );
+  const cleartext = await crypto.subtle.decrypt(
+    { name: "AES-GCM", iv: CONSTANT_IV_AES },
+    secretKey,
+    Buffer.from(encryptedPrivateKeyPemHex, "base64")
+  );
+  const privateKeyPemHex = new TextDecoder().decode(cleartext);
+  const privateKey = decodePrivateKeyPemHex(privateKeyPemHex);
+  return privateKey;
+}
+
+// src/external/userManagementClient.ts
+var import_user_management_client2 = __toESM(require("@getpara/user-management-client"));
+function getBaseOAuthUrl(env) {
+  switch (env) {
+    case "DEV" /* DEV */:
+      return "http://localhost:8080/";
+    case "SANDBOX" /* SANDBOX */:
+      return "https://api.sandbox.usecapsule.com/";
+    case "BETA" /* BETA */:
+      return "https://api.beta.usecapsule.com/";
+    case "PROD" /* PROD */:
+      return "https://api.usecapsule.com/";
+    default:
+      throw new Error(`unsupported env: ${env}`);
+  }
+}
+function getBaseUrl(env) {
+  switch (env) {
+    case "DEV" /* DEV */:
+      return "http://localhost:8080/";
+    case "SANDBOX" /* SANDBOX */:
+      return "https://api.sandbox.getpara.com/";
+    case "BETA" /* BETA */:
+      return "https://api.beta.getpara.com/";
+    case "PROD" /* PROD */:
+      return "https://api.getpara.com/";
+    default:
+      throw new Error(`unsupported env: ${env}`);
+  }
+}
+function getBaseMPCNetworkUrl(env, useWebsocket) {
+  const prefix = useWebsocket ? "ws" : "http";
+  switch (env) {
+    case "DEV" /* DEV */:
+      return `${prefix}://localhost:3000`;
+    case "SANDBOX" /* SANDBOX */:
+      return `${prefix}s://mpc-network.sandbox.getpara.com`;
+    case "BETA" /* BETA */:
+      return `${prefix}s://mpc-network.beta.getpara.com`;
+    case "PROD" /* PROD */:
+      return `${prefix}s://mpc-network.prod.getpara.com`;
+    default:
+      throw new Error(`unsupported env: ${env}`);
+  }
+}
+function initClient({
+  env,
+  version,
+  apiKey,
+  partnerId,
+  useFetchAdapter = false,
+  retrieveSessionCookie,
+  persistSessionCookie
+}) {
+  return new import_user_management_client2.default({
+    userManagementHost: getBaseUrl(env),
+    version: ["DEV" /* DEV */, "SANDBOX" /* SANDBOX */].includes(env) ? "dev" : version,
+    apiKey,
+    partnerId,
+    opts: { useFetchAdapter },
+    retrieveSessionCookie,
+    persistSessionCookie
+  });
+}
+
+// src/external/mpcComputationClient.ts
+var mpcComputationClient_exports = {};
+__export(mpcComputationClient_exports, {
+  initClient: () => initClient2
+});
+var import_axios = __toESM(require("axios"));
+function initClient2(baseURL, useAdapter) {
+  const client = import_axios.default.create({ baseURL });
+  if (useAdapter) {
+    client.defaults.adapter = function(config) {
+      return fetch(config.baseURL + config.url, {
+        method: config.method,
+        headers: config.headers,
+        body: config.data,
+        credentials: config.withCredentials ? "include" : void 0
+      }).then(
+        (response) => response.text().then((text) => ({
+          data: text,
+          status: response.status,
+          statusText: response.statusText,
+          headers: response.headers,
+          config,
+          request: fetch
+        }))
+      ).catch(function(reason) {
+        throw reason;
+      });
+    };
+  }
+  return client;
+}
+
+// src/shares/shareDistribution.ts
+var import_user_management_client4 = require("@getpara/user-management-client");
+
+// src/shares/recovery.ts
+var import_user_management_client3 = require("@getpara/user-management-client");
+
+// src/shares/KeyContainer.ts
+var import_ecies = require("@celo/utils/lib/ecies.js");
+var eutil = __toESM(require("ethereumjs-util"));
+var forge2 = __toESM(require("node-forge"));
+var KeyContainer = class _KeyContainer {
+  constructor(walletId, keyshare, address) {
+    this.walletId = walletId;
+    this.keyshare = keyshare;
+    this.address = address;
+    this.backupDecryptionKey = Buffer.from(forge2.random.getBytesSync(32), "binary").toString("hex");
+  }
+  static buildFrom(serializedContainer) {
+    try {
+      const parsedObject = JSON.parse(serializedContainer);
+      return Object.assign(new _KeyContainer("", "", ""), parsedObject);
+    } catch (e) {
+      const container = new _KeyContainer("", "", "");
+      container.backupDecryptionKey = serializedContainer.split("|")[0];
+      return container;
+    }
+  }
+  getPublicEncryptionKey() {
+    return Buffer.from(eutil.privateToPublic(Buffer.from(this.backupDecryptionKey, "hex")));
+  }
+  getPublicEncryptionKeyHex() {
+    return this.getPublicEncryptionKey().toString("hex");
+  }
+  encryptForSelf(backup) {
+    try {
+      const pubkey = this.getPublicEncryptionKey();
+      const data = (0, import_ecies.Encrypt)(pubkey, Buffer.from(backup, "ucs2")).toString("base64");
+      return data;
+    } catch (error) {
+      throw Error("Error encrypting backup");
+    }
+  }
+  static encryptWithPublicKey(publicKey, backup) {
+    try {
+      const data = (0, import_ecies.Encrypt)(publicKey, Buffer.from(backup, "ucs2")).toString("base64");
+      return data;
+    } catch (error) {
+      throw Error("Error encrypting backup");
+    }
+  }
+  decrypt(encryptedBackup) {
+    try {
+      const buf = Buffer.from(encryptedBackup, "base64");
+      const data = (0, import_ecies.Decrypt)(Buffer.from(this.backupDecryptionKey, "hex"), buf);
+      return Buffer.from(data.buffer).toString("ucs2");
+    } catch (error) {
+      throw Error("Error decrypting backup");
+    }
+  }
+};
+
+// src/shares/recovery.ts
+async function sendRecoveryForShare({
+  ctx,
+  userId,
+  walletId,
+  otherEncryptedShares = [],
+  userSigner,
+  ignoreRedistributingBackupEncryptedShare = false,
+  emailProps = {},
+  forceRefresh = false
+}) {
+  if (ignoreRedistributingBackupEncryptedShare) {
+    await ctx.client.uploadUserKeyShares(
+      userId,
+      otherEncryptedShares.map((share) => ({
+        walletId,
+        ...share
+      }))
+    );
+    return "";
+  }
+  let userBackupKeyShareOptsArr;
+  let recoveryPrivateKeyContainer;
+  const { recoveryPublicKeys } = await ctx.client.getRecoveryPublicKeys(userId);
+  if (forceRefresh || !recoveryPublicKeys?.length) {
+    recoveryPrivateKeyContainer = new KeyContainer(walletId, "", "");
+    const { recoveryPublicKeys: recoveryPublicKeys2 } = await ctx.client.persistRecoveryPublicKeys(userId, [
+      recoveryPrivateKeyContainer.getPublicEncryptionKeyHex()
+    ]);
+    const encryptedUserBackup = recoveryPrivateKeyContainer.encryptForSelf(userSigner);
+    userBackupKeyShareOptsArr = [
+      {
+        walletId,
+        encryptedShare: encryptedUserBackup,
+        type: import_user_management_client3.KeyShareType.USER,
+        encryptor: import_user_management_client3.EncryptorType.RECOVERY,
+        recoveryPublicKeyId: recoveryPublicKeys2[0].id
+      }
+    ];
+  } else {
+    userBackupKeyShareOptsArr = recoveryPublicKeys.map((recoveryPublicKey) => {
+      const { id: recoveryPublicKeyId, publicKey } = recoveryPublicKey;
+      const encryptedUserBackup = KeyContainer.encryptWithPublicKey(Buffer.from(publicKey, "hex"), userSigner);
+      return {
+        walletId,
+        encryptedShare: encryptedUserBackup,
+        type: import_user_management_client3.KeyShareType.USER,
+        encryptor: import_user_management_client3.EncryptorType.RECOVERY,
+        recoveryPublicKeyId
+      };
+    });
+  }
+  await ctx.client.uploadUserKeyShares(userId, [
+    ...otherEncryptedShares.map((share) => ({
+      walletId,
+      ...share
+    })),
+    ...ignoreRedistributingBackupEncryptedShare ? [] : userBackupKeyShareOptsArr
+  ]);
+  await ctx.client.distributeParaShare({
+    userId,
+    walletId,
+    useDKLS: ctx.useDKLS,
+    ...emailProps
+  });
+  return recoveryPrivateKeyContainer ? JSON.stringify(recoveryPrivateKeyContainer) : "";
+}
+
+// src/shares/shareDistribution.ts
+async function distributeNewShare({
+  ctx,
+  userId,
+  walletId,
+  userShare,
+  ignoreRedistributingBackupEncryptedShare = false,
+  emailProps = {},
+  partnerId,
+  protocolId
+}) {
+  const publicKeysRes = await ctx.client.getSessionPublicKeys(userId);
+  const biometricEncryptedShares = publicKeysRes.data.keys.map((key) => {
+    if (!key.publicKey) {
+      return;
+    }
+    const { encryptedMessageHex, encryptedKeyHex } = encryptWithDerivedPublicKey(key.sigDerivedPublicKey, userShare);
+    return {
+      encryptedShare: encryptedMessageHex,
+      encryptedKey: encryptedKeyHex,
+      type: import_user_management_client4.KeyShareType.USER,
+      encryptor: import_user_management_client4.EncryptorType.BIOMETRICS,
+      biometricPublicKey: key.sigDerivedPublicKey,
+      partnerId,
+      protocolId
+    };
+  }).filter(Boolean);
+  const passwords = await ctx.client.getPasswords({ userId });
+  const passwordEncryptedShares = passwords.map((password) => {
+    if (password.status === "PENDING") {
+      return;
+    }
+    const { encryptedMessageHex, encryptedKeyHex } = encryptWithDerivedPublicKey(password.sigDerivedPublicKey, userShare);
+    return {
+      encryptedShare: encryptedMessageHex,
+      encryptedKey: encryptedKeyHex,
+      type: import_user_management_client4.KeyShareType.USER,
+      encryptor: import_user_management_client4.EncryptorType.PASSWORD,
+      passwordId: password.id,
+      partnerId,
+      protocolId
+    };
+  }).filter(Boolean);
+  const allEncryptedShares = [...biometricEncryptedShares, ...passwordEncryptedShares];
+  return await sendRecoveryForShare({
+    ctx,
+    userId,
+    walletId,
+    otherEncryptedShares: allEncryptedShares,
+    userSigner: userShare,
+    ignoreRedistributingBackupEncryptedShare,
+    emailProps
+  });
+}
+
+// src/transmission/transmissionUtils.ts
+var import_ecies2 = require("@celo/utils/lib/ecies.js");
+var import_buffer = require("buffer");
+var eutil2 = __toESM(require("ethereumjs-util"));
+var import_crypto = require("crypto");
+async function upload(message, userManagementClient) {
+  let secret;
+  let publicKeyUint8Array;
+  while (true) {
+    try {
+      secret = (0, import_crypto.randomBytes)(32).toString("hex");
+      publicKeyUint8Array = eutil2.privateToPublic(import_buffer.Buffer.from(secret, "hex"));
+      break;
+    } catch (e) {
+      continue;
+    }
+  }
+  const pubkey = import_buffer.Buffer.from(publicKeyUint8Array);
+  const data = (0, import_ecies2.Encrypt)(pubkey, import_buffer.Buffer.from(message, "ucs2")).toString("base64");
+  const {
+    data: { id }
+  } = await userManagementClient.tempTrasmissionInit(data);
+  return encodeURIComponent(id + "|" + secret);
+}
+async function retrieve(uriEncodedMessage, userManagementClient) {
+  const [id, secret] = decodeURIComponent(uriEncodedMessage).split("|");
+  const response = await userManagementClient.tempTrasmission(id);
+  const data = response.data.message;
+  const buf = import_buffer.Buffer.from(data, "base64");
+  const res = import_buffer.Buffer.from((0, import_ecies2.Decrypt)(import_buffer.Buffer.from(secret, "hex"), buf).buffer).toString("ucs2");
+  return res;
+}
+
+// src/errors.ts
+var TransactionReviewError = class extends Error {
+  constructor(transactionReviewUrl) {
+    super("transaction review error");
+    this.name = "TransactionReviewError";
+    this.transactionReviewUrl = transactionReviewUrl;
+  }
+};
+var TransactionReviewDenied = class extends Error {
+  constructor() {
+    super("transaction review has been denied by the user");
+    this.name = "TransactionReviewDenied";
+  }
+};
+var TransactionReviewTimeout = class extends Error {
+  constructor(transactionReviewUrl, pendingTransactionId) {
+    super("transaction review has timed out");
+    this.name = "TransactionReviewTimeout";
+    this.transactionReviewUrl = transactionReviewUrl;
+    this.pendingTransactionId = pendingTransactionId;
+  }
+};
+
+// src/constants.ts
+var PARA_CORE_VERSION = '1.4.4-dev.0';
+var PREFIX = "@CAPSULE/";
+var LOCAL_STORAGE_EMAIL = `${PREFIX}e-mail`;
+var LOCAL_STORAGE_PHONE = `${PREFIX}phone`;
+var LOCAL_STORAGE_COUNTRY_CODE = `${PREFIX}countryCode`;
+var LOCAL_STORAGE_FARCASTER_USERNAME = `${PREFIX}farcasterUsername`;
+var LOCAL_STORAGE_TELEGRAM_USER_ID = `${PREFIX}telegramUserId`;
+var LOCAL_STORAGE_USER_ID = `${PREFIX}userId`;
+var LOCAL_STORAGE_ED25519_WALLETS = `${PREFIX}ed25519Wallets`;
+var LOCAL_STORAGE_WALLETS = `${PREFIX}wallets`;
+var LOCAL_STORAGE_EXTERNAL_WALLETS = `${PREFIX}externalWallets`;
+var LOCAL_STORAGE_CURRENT_WALLET_IDS = `${PREFIX}currentWalletIds`;
+var LOCAL_STORAGE_CURRENT_EXTERNAL_WALLET_ADDRESSES = `${PREFIX}currentExternalWalletAddresses`;
+var LOCAL_STORAGE_SESSION_COOKIE = `${PREFIX}sessionCookie`;
+var SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR = `${PREFIX}loginEncryptionKeyPair`;
+var POLLING_INTERVAL_MS = 2e3;
+var SHORT_POLLING_INTERVAL_MS = 1e3;
+
+// src/utils/listeners.ts
+function storageListener(e) {
+  if (!e.url.includes(window.location.origin)) {
+    return;
+  }
+  if (e.key === LOCAL_STORAGE_CURRENT_EXTERNAL_WALLET_ADDRESSES) {
+    this.updateCurrentExternalWalletAddressesFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_EXTERNAL_WALLETS) {
+    this.updateExternalWalletsFromStorage();
+  }
+  if (e.key === SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR) {
+    this.updateLoginEncryptionKeyPairFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_SESSION_COOKIE) {
+    this.updateSessionCookieFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_CURRENT_WALLET_IDS) {
+    this.updateWalletIdsFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_WALLETS || e.key === LOCAL_STORAGE_ED25519_WALLETS) {
+    this.updateWalletsFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_EMAIL) {
+    this.updateEmailFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_COUNTRY_CODE) {
+    this.updateCountryCodeFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_PHONE) {
+    this.updatePhoneFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_USER_ID) {
+    this.updateUserIdFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_TELEGRAM_USER_ID) {
+    this.updateTelegramUserIdFromStorage();
+  }
+}
+function setupListeners() {
+  if (typeof window !== "undefined" && window.addEventListener && window.location) {
+    window.removeEventListener("storage", storageListener.bind(this));
+    window.addEventListener("storage", storageListener.bind(this));
+  }
+}
+
+// src/ParaCore.ts
+if (typeof global !== "undefined") {
+  global.Buffer = global.Buffer || import_buffer2.Buffer;
+} else if (typeof window !== "undefined") {
+  window.Buffer = window.Buffer || import_buffer2.Buffer;
+  window.global = window.global || window;
+} else {
+  self.Buffer = self.Buffer || import_buffer2.Buffer;
+  self.global = self.global || self;
+}
+var { pki, jsbn } = import_node_forge2.default;
+var ParaCore = class _ParaCore {
+  /**
+   * Constructs a new `ParaCore` instance.
+   * @param env - `Environment` to use.
+   * @param apiKey - API key to use.
+   * @param opts - Additional constructor options; see `ConstructorOpts`.
+   * @returns - A new ParaCore instance.
+   */
+  constructor(env, apiKey, opts) {
+    this.isAwaitingAccountCreation = false;
+    this.isAwaitingLogin = false;
+    this.isAwaitingFarcaster = false;
+    this.isAwaitingOAuth = false;
+    /**
+     * The IDs of the currently active wallets, for each supported wallet type. Any signer integrations will default to the first viable wallet ID in this dictionary.
+     */
+    this.currentWalletIds = {};
+    this.#supportedWalletTypes = void 0;
+    this.#supportedWalletTypesOpt = void 0;
+    this.localStorageGetItem = (key) => {
+      return this.platformUtils.localStorage.get(key);
+    };
+    this.localStorageSetItem = (key, value) => {
+      return this.platformUtils.localStorage.set(key, value);
+    };
+    this.sessionStorageGetItem = (key) => {
+      return this.platformUtils.sessionStorage.get(key);
+    };
+    this.sessionStorageSetItem = (key, value) => {
+      return this.platformUtils.sessionStorage.set(key, value);
+    };
+    this.sessionStorageRemoveItem = (key) => {
+      return this.platformUtils.sessionStorage.removeItem(key);
+    };
+    this.retrieveSessionCookie = () => {
+      return this.sessionCookie;
+    };
+    /**
+     * Remove all local storage and prefixed session storage.
+     * @param {'local' | 'session' | 'secure' | 'all'} type - Type of storage to clear. Defaults to 'all'.
+     */
+    this.clearStorage = async (type = "all") => {
+      const isAll = type === "all";
+      (isAll || type === "local") && this.platformUtils.localStorage.clear(PREFIX);
+      (isAll || type === "session") && this.platformUtils.sessionStorage.clear(PREFIX);
+      if ((isAll || type === "secure") && this.platformUtils.secureStorage) {
+        this.platformUtils.secureStorage.clear(PREFIX);
+      }
+    };
+    this.initializeFromStorage = () => {
+      this.updateEmailFromStorage();
+      this.updateCountryCodeFromStorage();
+      this.updatePhoneFromStorage();
+      this.updateUserIdFromStorage();
+      this.updateTelegramUserIdFromStorage();
+      this.updateWalletsFromStorage();
+      this.updateWalletIdsFromStorage();
+      this.updateSessionCookieFromStorage();
+      this.updateLoginEncryptionKeyPairFromStorage();
+      this.updateExternalWalletsFromStorage();
+      this.updateCurrentExternalWalletAddressesFromStorage();
+    };
+    this.updateTelegramUserIdFromStorage = () => {
+      this.telegramUserId = this.localStorageGetItem(LOCAL_STORAGE_TELEGRAM_USER_ID) || void 0;
+    };
+    this.updateUserIdFromStorage = () => {
+      this.userId = this.localStorageGetItem(LOCAL_STORAGE_USER_ID) || void 0;
+    };
+    this.updatePhoneFromStorage = () => {
+      this.phone = this.localStorageGetItem(LOCAL_STORAGE_PHONE) || void 0;
+    };
+    this.updateCountryCodeFromStorage = () => {
+      this.countryCode = this.localStorageGetItem(LOCAL_STORAGE_COUNTRY_CODE) || void 0;
+    };
+    this.updateEmailFromStorage = () => {
+      this.email = this.localStorageGetItem(LOCAL_STORAGE_EMAIL) || void 0;
+    };
+    this.updateWalletsFromStorage = async () => {
+      const _currentWalletIds = this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS) ?? void 0;
+      const currentWalletIds = [void 0, null, "undefined"].includes(_currentWalletIds) ? {} : (() => {
+        const fromJson = JSON.parse(_currentWalletIds);
+        return Array.isArray(fromJson) ? Object.keys(import_user_management_client5.WalletType).reduce((acc, type) => {
+          const wallet = Object.values(this.wallets).find(
+            (w) => fromJson.includes(w.id) && WalletSchemeTypeMap[w.scheme][type]
+          );
+          return {
+            ...acc,
+            ...wallet && !acc[type] ? { [type]: [wallet.id] } : {}
+          };
+        }, {}) : fromJson;
+      })();
+      this.setCurrentWalletIds(currentWalletIds);
+      const stringWallets = this.platformUtils.secureStorage ? this.platformUtils.secureStorage.get(LOCAL_STORAGE_WALLETS) : this.localStorageGetItem(LOCAL_STORAGE_WALLETS);
+      const _wallets = JSON.parse(stringWallets || "{}");
+      const stringEd25519Wallets = this.platformUtils.secureStorage ? this.platformUtils.secureStorage.get(LOCAL_STORAGE_ED25519_WALLETS) : this.localStorageGetItem(LOCAL_STORAGE_ED25519_WALLETS);
+      const _ed25519Wallets = JSON.parse(stringEd25519Wallets || "{}");
+      const wallets = {
+        ...Object.keys(_wallets).reduce((res, key) => {
+          return {
+            ...res,
+            [key]: migrateWallet(_wallets[key])
+          };
+        }, {}),
+        ...Object.keys(_ed25519Wallets).reduce((res, key) => {
+          return {
+            ...res,
+            ...!res[key] ? { [key]: migrateWallet(_ed25519Wallets[key]) } : {}
+          };
+        }, {})
+      };
+      this.setWallets(wallets);
+    };
+    this.updateWalletIdsFromStorage = () => {
+      const _currentWalletIds = this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS) ?? void 0;
+      const currentWalletIds = [void 0, null, "undefined"].includes(_currentWalletIds) ? {} : (() => {
+        const fromJson = JSON.parse(_currentWalletIds);
+        return Array.isArray(fromJson) ? Object.keys(import_user_management_client5.WalletType).reduce((acc, type) => {
+          const wallet = Object.values(this.wallets).find(
+            (w) => fromJson.includes(w.id) && WalletSchemeTypeMap[w.scheme][type]
+          );
+          return {
+            ...acc,
+            ...wallet && !acc[type] ? { [type]: [wallet.id] } : {}
+          };
+        }, {}) : fromJson;
+      })();
+      this.setCurrentWalletIds(currentWalletIds);
+      if (Object.values(this.wallets).filter((w) => this.isWalletOwned(w)).length > 0 && this.currentWalletIdsArray.length === 0) {
+        this.findWalletId(void 0, { forbidPregen: true });
+      }
+    };
+    this.updateSessionCookieFromStorage = () => {
+      this.sessionCookie = this.localStorageGetItem(LOCAL_STORAGE_SESSION_COOKIE) || this.sessionStorageGetItem(LOCAL_STORAGE_SESSION_COOKIE) || void 0;
+    };
+    this.updateLoginEncryptionKeyPairFromStorage = () => {
+      const loginEncryptionKey = this.sessionStorageGetItem(SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR);
+      if (loginEncryptionKey && loginEncryptionKey !== "undefined") {
+        this.loginEncryptionKeyPair = this.convertEncryptionKeyPair(JSON.parse(loginEncryptionKey));
+      }
+    };
+    this.updateExternalWalletsFromStorage = () => {
+      const stringExternalWallets = this.localStorageGetItem(LOCAL_STORAGE_EXTERNAL_WALLETS);
+      const _externalWallets = JSON.parse(stringExternalWallets || "{}");
+      this.setExternalWallets(_externalWallets);
+    };
+    this.updateCurrentExternalWalletAddressesFromStorage = () => {
+      const _currentExternalWalletAddresses = this.localStorageGetItem(LOCAL_STORAGE_CURRENT_EXTERNAL_WALLET_ADDRESSES) || void 0;
+      this.currentExternalWalletAddresses = _currentExternalWalletAddresses ? JSON.parse(_currentExternalWalletAddresses) : void 0;
+    };
+    /**
+     * Creates several new wallets with the desired types. If no types are provided, this method
+     * will create one for each of the non-optional types specified in the instance's `supportedWalletTypes`
+     * object that are not already present. This is automatically called upon account creation to ensure that
+     * the user has a wallet of each required type.
+     *
+     * @deprecated alias for `createWalletPerType`
+     **/
+    this.createWalletPerMissingType = this.createWalletPerType;
+    if (!opts) opts = {};
+    this.emailPrimaryColor = opts.emailPrimaryColor;
+    this.emailTheme = opts.emailTheme;
+    this.homepageUrl = opts.homepageUrl;
+    this.supportUrl = opts.supportUrl;
+    this.xUrl = opts.xUrl;
+    this.githubUrl = opts.githubUrl;
+    this.linkedinUrl = opts.linkedinUrl;
+    this.portalBackgroundColor = opts.portalBackgroundColor;
+    this.portalPrimaryButtonColor = opts.portalPrimaryButtonColor;
+    this.portalTextColor = opts.portalTextColor;
+    this.portalPrimaryButtonTextColor = opts.portalPrimaryButtonTextColor;
+    this.portalTheme = opts.portalTheme;
+    this.platformUtils = this.getPlatformUtils();
+    this.disableProviderModal = this.platformUtils.disableProviderModal;
+    if (opts.useStorageOverrides) {
+      this.localStorageGetItem = opts.localStorageGetItemOverride;
+      this.localStorageSetItem = opts.localStorageSetItemOverride;
+      this.sessionStorageGetItem = opts.sessionStorageGetItemOverride;
+      this.sessionStorageSetItem = opts.sessionStorageSetItemOverride;
+      this.sessionStorageRemoveItem = opts.sessionStorageRemoveItemOverride;
+      this.clearStorage = opts.clearStorageOverride;
+    }
+    if (opts.useSessionStorage) {
+      this.localStorageGetItem = this.sessionStorageGetItem;
+      this.localStorageSetItem = this.sessionStorageSetItem;
+    }
+    this.persistSessionCookie = (cookie) => {
+      this.sessionCookie = cookie;
+      (opts.useSessionStorage ? this.sessionStorageSetItem : this.localStorageSetItem)(
+        LOCAL_STORAGE_SESSION_COOKIE,
+        cookie
+      );
+    };
+    this.ctx = {
+      env,
+      apiKey,
+      client: initClient({
+        env,
+        version: _ParaCore.version,
+        apiKey,
+        partnerId: this.isPortal(env) ? opts.portalPartnerId : void 0,
+        useFetchAdapter: !!opts.disableWorkers,
+        retrieveSessionCookie: this.retrieveSessionCookie,
+        persistSessionCookie: this.persistSessionCookie
+      }),
+      disableWorkers: opts.disableWorkers,
+      offloadMPCComputationURL: opts.offloadMPCComputationURL,
+      useLocalFiles: opts.useLocalFiles,
+      useDKLS: opts.useDKLSForCreation || !opts.offloadMPCComputationURL,
+      disableWebSockets: !!opts.disableWebSockets,
+      wasmOverride: opts.wasmOverride,
+      cosmosPrefix: this.cosmosPrefix
+    };
+    if (opts.offloadMPCComputationURL) {
+      this.ctx.mpcComputationClient = initClient2(opts.offloadMPCComputationURL, opts.disableWorkers);
+    }
+    try {
+      this.#supportedWalletTypes = opts.supportedWalletTypes ? (() => {
+        if (Object.values(opts.supportedWalletTypes).every(
+          (config) => !!config && typeof config === "object" && config.optional
+        )) {
+          throw new Error("at least one wallet type must be non-optional");
+        }
+        if (!Object.keys(opts.supportedWalletTypes).every((type) => Object.values(import_user_management_client5.WalletType).includes(type))) {
+          throw new Error("unsupported wallet type");
+        }
+        this.#supportedWalletTypesOpt = opts.supportedWalletTypes;
+        return Object.entries(opts.supportedWalletTypes).reduce((acc, [key, value]) => {
+          if (!value) {
+            return acc;
+          }
+          if (key === import_user_management_client5.WalletType.COSMOS && typeof value === "object" && !!value.prefix) {
+            this.cosmosPrefix = value.prefix;
+          }
+          return [...acc, { type: key, optional: value === true ? false : value.optional ?? false }];
+        }, []);
+      })() : void 0;
+    } catch (e) {
+      this.#supportedWalletTypes = void 0;
+    }
+    if (!this.platformUtils.isSyncStorage || opts.useStorageOverrides) {
+      return;
+    }
+    this.initializeFromStorage();
+    setupListeners.bind(this)();
+  }
+  static {
+    this.version = PARA_CORE_VERSION;
+  }
+  get isEmail() {
+    return !!this.email && !this.phone && !this.countryCode && !this.farcasterUsername && !this.telegramUserId;
+  }
+  get isPhone() {
+    return !!this.phone && !!this.countryCode && !this.email && !this.farcasterUsername && !this.telegramUserId;
+  }
+  get isFarcaster() {
+    return !!this.farcasterUsername && !this.email && !this.phone && !this.countryCode && !this.telegramUserId;
+  }
+  get isTelegram() {
+    return !!this.telegramUserId && !this.email && !this.phone && !this.countryCode && !this.farcasterUsername;
+  }
+  get currentWalletIdsArray() {
+    return this.supportedWalletTypes.reduce((acc, { type }) => {
+      return [
+        ...acc,
+        ...(this.currentWalletIds[type] ?? []).map((id) => {
+          return [id, type];
+        })
+      ];
+    }, []);
+  }
+  get currentWalletIdsUnique() {
+    return [...new Set(Object.values(this.currentWalletIds).flat())];
+  }
+  /**
+   * A map of pre-generated wallet identifiers that can be claimed in the current instance.
+   */
+  get pregenIds() {
+    return {
+      ...Object.values(this.wallets).filter((wallet) => !this.userId || this.isPregenWalletClaimable(wallet)).reduce((acc, wallet) => {
+        if ((acc[wallet.pregenIdentifierType] ?? []).includes(wallet.pregenIdentifier)) {
+          return acc;
+        }
+        return {
+          ...acc,
+          [wallet.pregenIdentifierType]: [
+            .../* @__PURE__ */ new Set([...acc[wallet.pregenIdentifierType] ?? [], wallet.pregenIdentifier])
+          ]
+        };
+      }, {})
+    };
+  }
+  /**
+   * Whether the instance has multiple wallets connected.
+   */
+  get isMultiWallet() {
+    return this.currentWalletIdsArray.length > 1;
+  }
+  #supportedWalletTypes;
+  #supportedWalletTypesOpt;
+  get supportedWalletTypes() {
+    return this.#supportedWalletTypes ?? [];
+  }
+  get isWalletTypeEnabled() {
+    return this.supportedWalletTypes.reduce((acc, { type }) => {
+      return { ...acc, [type]: true };
+    }, {});
+  }
+  convertBigInt(bigInt) {
+    const convertedBigInt = new jsbn.BigInteger(null);
+    convertedBigInt.data = bigInt.data;
+    convertedBigInt.s = bigInt.s;
+    convertedBigInt.t = bigInt.t;
+    return convertedBigInt;
+  }
+  convertEncryptionKeyPair(jsonKeyPair) {
+    return {
+      privateKey: pki.setRsaPrivateKey(
+        this.convertBigInt(jsonKeyPair.privateKey.n),
+        this.convertBigInt(jsonKeyPair.privateKey.e),
+        this.convertBigInt(jsonKeyPair.privateKey.d),
+        this.convertBigInt(jsonKeyPair.privateKey.p),
+        this.convertBigInt(jsonKeyPair.privateKey.q),
+        this.convertBigInt(jsonKeyPair.privateKey.dP),
+        this.convertBigInt(jsonKeyPair.privateKey.dQ),
+        this.convertBigInt(jsonKeyPair.privateKey.qInv)
+      ),
+      publicKey: pki.setRsaPublicKey(
+        this.convertBigInt(jsonKeyPair.publicKey.n),
+        this.convertBigInt(jsonKeyPair.publicKey.e)
+      )
+    };
+  }
+  isPortal(envOverride) {
+    if (typeof window === "undefined") return false;
+    return !!window.location?.host && getPortalBaseURL(envOverride ? { env: envOverride } : this.ctx).includes(window.location.host);
+  }
+  isParaConnect() {
+    if (typeof window === "undefined") return false;
+    return !!window.location?.host && getParaConnectBaseUrl(this.ctx).includes(window.location.host);
+  }
+  requireApiKey() {
+    if (!this.ctx.apiKey) {
+      throw new Error(
+        `in order to create a wallet or user with Para, you
+        must provide an API key to the Para instance`
+      );
+    }
+  }
+  isWalletSupported(wallet) {
+    return !this.#supportedWalletTypes || isWalletSupported(this.supportedWalletTypes.map(({ type }) => type) ?? [], wallet);
+  }
+  isWalletOwned(wallet) {
+    return this.isWalletSupported(wallet) && !wallet.pregenIdentifier && !wallet.pregenIdentifierType && !!this.userId && wallet.userId === this.userId;
+  }
+  isPregenWalletUnclaimed(wallet) {
+    return this.isWalletSupported(wallet) && (!wallet.userId || wallet.isPregen && !!wallet.pregenIdentifier && !!wallet.pregenIdentifierType);
+  }
+  isPregenWalletClaimable(wallet) {
+    return this.isWalletSupported(wallet) && this.isPregenWalletUnclaimed(wallet) && (!["EMAIL", "PHONE", "TELEGRAM"].includes(wallet.pregenIdentifierType) || isPregenIdentifierMatch(
+      wallet.pregenIdentifierType === "EMAIL" ? this.email : wallet.pregenIdentifierType === "TELEGRAM" ? this.telegramUserId : this.getPhoneNumber(),
+      wallet.pregenIdentifier,
+      wallet.pregenIdentifierType
+    ));
+  }
+  isWalletUsable(walletId, { type: types, scheme: schemes, forbidPregen = false } = {}, throwError = false) {
+    let error;
+    if (!this.wallets[walletId]) {
+      error = `wallet with id ${walletId} does not exist`;
+    } else {
+      const wallet = this.wallets[walletId];
+      const [isUnclaimed, isOwned] = [this.isPregenWalletUnclaimed(wallet), this.isWalletOwned(wallet)];
+      if (forbidPregen && isUnclaimed) {
+        error = `pre-generated wallet with id ${wallet.id} cannot be selected`;
+      } else if (!isOwned && !isUnclaimed) {
+        error = `wallet with id ${wallet.id} is not owned by the current user`;
+      } else if (!this.isWalletSupported(wallet)) {
+        error = `wallet with id ${wallet.id} and type ${wallet.type} is not supported, supported types are: ${this.supportedWalletTypes.map(({ type }) => type).join(", ")}`;
+      } else if (types && (!getEquivalentTypes(types).includes(wallet.type) || isOwned && !types.some((type) => this.currentWalletIds?.[type]?.includes(walletId)))) {
+        error = `wallet with id ${wallet.id} and type ${wallet.type} cannot be selected`;
+      } else if (schemes && !schemes.includes(wallet.scheme)) {
+        error = `wallet with id ${wallet.id} and scheme ${wallet.scheme} cannot be selected`;
+      }
+    }
+    if (error) {
+      if (throwError) {
+        throw new Error(error);
+      }
+      return false;
+    }
+    return true;
+  }
+  /**
+   * Returns the formatted address for the desired wallet ID, depending on your app settings.
+   * @param {string} walletId the ID of the wallet address to display.
+   * @param {object} options additional options for formatting the address.
+   * @param {boolean} options.truncate whether to truncate the address.
+   * @param {WalletType} options.addressType the type of address to display.
+   * @returns the formatted address
+   */
+  getDisplayAddress(walletId, options = {}) {
+    if (this.externalWallets[walletId]) {
+      const wallet2 = this.externalWallets[walletId];
+      return options.truncate ? truncateAddress(wallet2.address, wallet2.type, { prefix: this.cosmosPrefix }) : wallet2.address;
+    }
+    const wallet = this.findWallet(walletId, options.addressType);
+    if (!wallet) {
+      return void 0;
+    }
+    let str;
+    switch (wallet.type) {
+      case import_user_management_client5.WalletType.COSMOS:
+        str = getCosmosAddress(wallet.publicKey, this.cosmosPrefix ?? "cosmos");
+        break;
+      default:
+        str = wallet.address;
+        break;
+    }
+    return options.truncate ? truncateAddress(str, wallet.type, { prefix: this.cosmosPrefix }) : str;
+  }
+  /**
+   * Returns a unique hash for a wallet suitable for use as an identicon seed.
+   * @param {string} walletId the ID of the wallet.
+   * @param {boolean} options.addressType used to format the hash for another wallet type.
+   * @returns the identicon hash string
+   */
+  getIdenticonHash(walletId, overrideType) {
+    if (this.externalWallets[walletId]) {
+      const wallet2 = this.externalWallets[walletId];
+      return `${wallet2.id}-${wallet2.address}-${wallet2.type}`;
+    }
+    const wallet = this.findWallet(walletId, overrideType);
+    return wallet ? `${wallet.id}-${wallet.address}-${wallet.type}` : void 0;
+  }
+  getWallets() {
+    return this.wallets;
+  }
+  getAddress(walletId) {
+    return walletId ? this.wallets[walletId].address : Object.values(this.wallets)?.[0]?.address;
+  }
+  async constructPortalUrl(type, opts = {}) {
+    const base = type === "onRamp" ? getPortalBaseURL(this.ctx) : await this.getPortalURL(opts.partnerId);
+    let path;
+    switch (type) {
+      case "createPassword": {
+        path = `/web/users/${this.userId}/passwords/${opts.pathId}`;
+        break;
+      }
+      case "createAuth": {
+        path = `/web/users/${this.userId}/biometrics/${opts.pathId}`;
+        break;
+      }
+      case "loginPassword": {
+        path = "/web/passwords/login";
+        break;
+      }
+      case "loginAuth": {
+        path = "/web/biometrics/login";
+        break;
+      }
+      case "txReview": {
+        path = `/web/users/${this.userId}/transaction-review/${opts.pathId}`;
+        break;
+      }
+      case "onRamp": {
+        path = `/web/users/${this.userId}/on-ramp-transaction/${opts.pathId}`;
+        break;
+      }
+      default: {
+        throw new Error(`invalid URL type ${type}`);
+      }
+    }
+    const [isCreate, isLogin, isOnRamp] = [
+      ["createAuth", "createPassword"].includes(type),
+      ["loginAuth", "loginPassword"].includes(type),
+      type === "onRamp"
+    ];
+    const partner = opts.partnerId ? (await this.ctx.client.getPartner(opts.partnerId)).data?.partner : void 0;
+    const params = {
+      apiKey: this.ctx.apiKey,
+      partnerId: opts.partnerId,
+      portalFont: opts.theme?.font || partner?.font || this.portalTheme?.font,
+      portalBorderRadius: opts.theme?.borderRadius || this.portalTheme?.borderRadius,
+      portalThemeMode: opts.theme?.mode || partner?.themeMode || this.portalTheme?.mode,
+      portalAccentColor: opts.theme?.accentColor || partner?.accentColor || this.portalTheme?.accentColor,
+      portalForegroundColor: opts.theme?.foregroundColor || partner?.foregroundColor || this.portalTheme?.foregroundColor,
+      portalBackgroundColor: opts.theme?.backgroundColor || partner?.backgroundColor || this.portalBackgroundColor || this.portalTheme?.backgroundColor,
+      portalPrimaryButtonColor: this.portalPrimaryButtonColor,
+      portalTextColor: this.portalTextColor,
+      portalPrimaryButtonTextColor: this.portalPrimaryButtonTextColor,
+      isForNewDevice: opts.isForNewDevice ? opts.isForNewDevice.toString() : void 0,
+      supportedWalletTypes: this.#supportedWalletTypesOpt ? JSON.stringify(this.#supportedWalletTypesOpt) : void 0,
+      ...isCreate || isLogin ? {
+        ...opts.authType === "email" ? { email: this.email } : {},
+        ...opts.authType === "phone" ? { phone: this.phone, countryCode: this.countryCode } : {},
+        ...opts.authType === "farcaster" ? { farcasterUsername: this.farcasterUsername } : {},
+        ...opts.authType === "telegram" ? { telegramUserId: this.telegramUserId } : {}
+      } : {},
+      ...isLogin || isOnRamp ? { sessionId: opts.sessionId } : {},
+      ...isLogin ? {
+        encryptionKey: opts.loginEncryptionPublicKey,
+        newDeviceSessionLookupId: opts.newDeviceSessionId,
+        newDeviceEncryptionKey: opts.newDeviceEncryptionKey,
+        pregenIds: JSON.stringify(this.pregenIds),
+        displayName: opts.displayName,
+        pfpUrl: opts.pfpUrl
+      } : {},
+      ...opts.params || {}
+    };
+    return constructUrl({ base, path, params });
+  }
+  async touchSession(regenerate = false) {
+    const res = await this.ctx.client.touchSession(regenerate);
+    this.setSupportedWalletTypes(res.data.supportedWalletTypes, res.data.cosmosPrefix);
+    return res;
+  }
+  setSupportedWalletTypes(supportedWalletTypes, cosmosPrefix) {
+    if (supportedWalletTypes && !this.#supportedWalletTypes) {
+      this.#supportedWalletTypes = supportedWalletTypes;
+      Object.keys(this.currentWalletIds).forEach((type) => {
+        if (!this.#supportedWalletTypes?.some(({ type: supportedType }) => supportedType === type)) {
+          delete this.currentWalletIds[type];
+        }
+      });
+    }
+    if (cosmosPrefix && !this.cosmosPrefix) {
+      this.cosmosPrefix = cosmosPrefix;
+    }
+  }
+  getVerificationEmailProps() {
+    return {
+      brandColor: this.emailPrimaryColor,
+      theme: this.emailTheme,
+      supportUrl: this.supportUrl,
+      homepageUrl: this.homepageUrl,
+      xUrl: this.xUrl,
+      githubUrl: this.githubUrl,
+      linkedinUrl: this.linkedinUrl
+    };
+  }
+  getBackupKitEmailProps() {
+    return {
+      brandColor: this.emailPrimaryColor,
+      theme: this.emailTheme,
+      homepageUrl: this.homepageUrl,
+      xUrl: this.xUrl,
+      linkedinUrl: this.linkedinUrl,
+      githubUrl: this.githubUrl,
+      supportUrl: this.supportUrl
+    };
+  }
+  /**
+   * Initialize storage relating to a `ParaCore` instance.
+   *
+   * Init only needs to be called for storage that is async.
+   */
+  async init() {
+    this.email = await this.localStorageGetItem(LOCAL_STORAGE_EMAIL) || void 0;
+    this.countryCode = await this.localStorageGetItem(LOCAL_STORAGE_COUNTRY_CODE) || void 0;
+    this.phone = await this.localStorageGetItem(LOCAL_STORAGE_PHONE) || void 0;
+    this.userId = await this.localStorageGetItem(LOCAL_STORAGE_USER_ID) || void 0;
+    this.telegramUserId = await this.localStorageGetItem(LOCAL_STORAGE_TELEGRAM_USER_ID) || void 0;
+    const stringWallets = this.platformUtils.secureStorage ? await this.platformUtils.secureStorage.get(LOCAL_STORAGE_WALLETS) : await this.localStorageGetItem(LOCAL_STORAGE_WALLETS);
+    const _wallets = JSON.parse(stringWallets || "{}");
+    const stringEd25519Wallets = this.platformUtils.secureStorage ? await this.platformUtils.secureStorage.get(LOCAL_STORAGE_ED25519_WALLETS) : await this.localStorageGetItem(LOCAL_STORAGE_ED25519_WALLETS);
+    const _ed25519Wallets = JSON.parse(stringEd25519Wallets || "{}");
+    const wallets = {
+      ...Object.keys(_wallets).reduce((res, key) => {
+        return {
+          ...res,
+          [key]: migrateWallet(_wallets[key])
+        };
+      }, {}),
+      ...Object.keys(_ed25519Wallets).reduce((res, key) => {
+        return {
+          ...res,
+          ...!res[key] ? { [key]: migrateWallet(_ed25519Wallets[key]) } : {}
+        };
+      }, {})
+    };
+    await this.setWallets(wallets);
+    const _currentWalletIds = await this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS) ?? void 0;
+    const currentWalletIds = [void 0, null, "undefined", "null"].includes(_currentWalletIds) ? {} : (() => {
+      const fromJson = JSON.parse(_currentWalletIds);
+      return Array.isArray(fromJson) ? Object.keys(import_user_management_client5.WalletType).reduce((acc, type) => {
+        const wallet = Object.values(this.wallets).find(
+          (w) => fromJson.includes(w.id) && WalletSchemeTypeMap[w.scheme][type]
+        );
+        return {
+          ...acc,
+          ...wallet && !acc[type] ? { [type]: [wallet.id] } : {}
+        };
+      }, {}) : fromJson;
+    })();
+    await this.setCurrentWalletIds(currentWalletIds);
+    this.sessionCookie = await this.localStorageGetItem(LOCAL_STORAGE_SESSION_COOKIE) || await this.sessionStorageGetItem(LOCAL_STORAGE_SESSION_COOKIE) || void 0;
+    if (Object.values(this.wallets).filter((w) => this.isWalletOwned(w)).length > 0 && this.currentWalletIdsArray.length === 0) {
+      this.findWalletId(void 0, { forbidPregen: true });
+    }
+    const loginEncryptionKey = await this.sessionStorageGetItem(SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR);
+    if (loginEncryptionKey && loginEncryptionKey !== "undefined") {
+      this.loginEncryptionKeyPair = this.convertEncryptionKeyPair(JSON.parse(loginEncryptionKey));
+    }
+    const stringExternalWallets = await this.localStorageGetItem(LOCAL_STORAGE_EXTERNAL_WALLETS);
+    const _externalWallets = JSON.parse(stringExternalWallets || "{}");
+    await this.setExternalWallets(_externalWallets);
+    const _currentExternalWalletAddresses = await this.localStorageGetItem(LOCAL_STORAGE_CURRENT_EXTERNAL_WALLET_ADDRESSES) || void 0;
+    this.currentExternalWalletAddresses = _currentExternalWalletAddresses ? JSON.parse(_currentExternalWalletAddresses) : void 0;
+    setupListeners.bind(this)();
+    await this.touchSession();
+  }
+  /**
+   * Sets the email associated with the `ParaCore` instance.
+   * @param email - Email to set.
+   */
+  async setEmail(email) {
+    this.email = email;
+    await this.localStorageSetItem(LOCAL_STORAGE_EMAIL, email);
+  }
+  /**
+   * Sets the Telegram user ID associated with the `ParaCore` instance.
+   * @param telegramUserId - Telegram user ID to set.
+   */
+  async setTelegramUserId(telegramUserId) {
+    this.telegramUserId = telegramUserId;
+    await this.localStorageSetItem(LOCAL_STORAGE_TELEGRAM_USER_ID, telegramUserId);
+  }
+  /**
+   * Sets the phone number associated with the `ParaCore` instance.
+   * @param phone - Phone number to set.
+   * @param countryCode - Country Code to set.
+   */
+  async setPhoneNumber(phone, countryCode) {
+    this.phone = phone;
+    this.countryCode = countryCode;
+    await this.localStorageSetItem(LOCAL_STORAGE_PHONE, phone);
+    await this.localStorageSetItem(LOCAL_STORAGE_COUNTRY_CODE, countryCode);
+  }
+  /**
+   * Sets the farcaster username associated with the `ParaCore` instance.
+   * @param farcasterUsername - Farcaster Username to set.
+   */
+  async setFarcasterUsername(farcasterUsername) {
+    this.farcasterUsername = farcasterUsername;
+    await this.localStorageSetItem(LOCAL_STORAGE_FARCASTER_USERNAME, farcasterUsername);
+  }
+  /**
+   * Sets the external wallet address and type associated with the `ParaCore` instance.
+   * @param externalAddress - External wallet address to set.
+   * @param externalType - Type of external wallet to set.
+   */
+  async setExternalWallet({ address, type, provider, addressBech32 }) {
+    this.externalWallets = {
+      [address]: {
+        id: address,
+        address: addressBech32 ?? address,
+        type,
+        name: provider,
+        isExternal: true,
+        signer: ""
+      }
+    };
+    this.currentExternalWalletAddresses = [address];
+    this.setCurrentExternalWalletAddresses(this.currentExternalWalletAddresses);
+    this.setExternalWallets(this.externalWallets);
+    dispatchEvent(ParaEvent.EXTERNAL_WALLET_CHANGE_EVENT, null);
+  }
+  /**
+   * Sets the user id associated with the `ParaCore` instance.
+   * @param userId - User id to set.
+   */
+  async setUserId(userId) {
+    this.userId = userId;
+    await this.localStorageSetItem(LOCAL_STORAGE_USER_ID, userId);
+  }
+  /**
+   * Sets the wallets associated with the `ParaCore` instance.
+   * @param wallets - Wallets to set.
+   */
+  async setWallets(wallets) {
+    this.wallets = wallets;
+    if (this.platformUtils.secureStorage) {
+      await this.platformUtils.secureStorage.set(LOCAL_STORAGE_WALLETS, JSON.stringify(wallets));
+      return;
+    }
+    await this.localStorageSetItem(LOCAL_STORAGE_WALLETS, JSON.stringify(wallets));
+  }
+  /**
+   * Sets the external wallets associated with the `ParaCore` instance.
+   * @param externalWallets - External wallets to set.
+   */
+  async setExternalWallets(externalWallets) {
+    this.externalWallets = externalWallets;
+    await this.localStorageSetItem(LOCAL_STORAGE_EXTERNAL_WALLETS, JSON.stringify(externalWallets));
+  }
+  async setCurrentExternalWalletAddresses(currentExternalWalletAddresses) {
+    this.currentExternalWalletAddresses = currentExternalWalletAddresses;
+    await this.localStorageSetItem(
+      LOCAL_STORAGE_CURRENT_EXTERNAL_WALLET_ADDRESSES,
+      JSON.stringify(currentExternalWalletAddresses)
+    );
+  }
+  /**
+   * Sets the login encryption key pair associated with the `ParaCore` instance.
+   * @param keyPair - Encryption key pair generated from loginEncryptionKey.
+   */
+  async setLoginEncryptionKeyPair(keyPair) {
+    if (!keyPair) {
+      keyPair = await getAsymmetricKeyPair(this.ctx);
+    }
+    this.loginEncryptionKeyPair = keyPair;
+    await this.sessionStorageSetItem(SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR, JSON.stringify(keyPair));
+  }
+  async deleteLoginEncryptionKeyPair() {
+    this.loginEncryptionKeyPair = void 0;
+    await this.sessionStorageRemoveItem(SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR);
+  }
+  /**
+   * Gets the userId associated with the `ParaCore` instance.
+   * @returns - userId associated with the `ParaCore` instance.
+   */
+  getUserId() {
+    return this.userId;
+  }
+  /**
+   * Gets the email associated with the `ParaCore` instance.
+   * @returns - email associated with the `ParaCore` instance.
+   */
+  getEmail() {
+    return this.email;
+  }
+  /**
+   * Gets the phone object associated with the `ParaCore` instance.
+   * @returns - phone object with phone number and country code associated with the `ParaCore` instance.
+   */
+  getPhone() {
+    return { phone: this.phone, countryCode: this.countryCode };
+  }
+  /**
+   * Gets the formatted phone number associated with the `ParaCore` instance.
+   * @returns - formatted phone number associated with the `ParaCore` instance.
+   */
+  getPhoneNumber() {
+    if (!this.phone || !this.countryCode) {
+      return void 0;
+    }
+    return normalizePhoneNumber(this.countryCode, this.phone);
+  }
+  /**
+   * Gets the farcaster username associated with the `ParaCore` instance.
+   * @returns - farcaster username associated with the `ParaCore` instance.
+   */
+  getFarcasterUsername() {
+    return this.farcasterUsername;
+  }
+  async setCurrentWalletIds(currentWalletIds, {
+    needsWallet = false,
+    sessionLookupId,
+    newDeviceSessionLookupId
+  } = {}) {
+    this.currentWalletIds = currentWalletIds;
+    await this.localStorageSetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS, JSON.stringify(this.currentWalletIds));
+    if (sessionLookupId) {
+      await this.ctx.client.setCurrentWalletIds(
+        this.getUserId(),
+        this.currentWalletIds,
+        needsWallet,
+        sessionLookupId,
+        newDeviceSessionLookupId
+      );
+    }
+    dispatchEvent(ParaEvent.WALLETS_CHANGE_EVENT, null);
+  }
+  /**
+   * Validates that a wallet ID is present on the instance, usable, and matches the desired filters.
+   * If no ID is passed, this will instead return the first valid, usable wallet ID that matches the filters.
+   * @param {string} [walletId] the wallet ID to validate.
+   * @param {WalletFilters} [filter={}] a `WalletFilters` object specifying allowed types, schemes, and whether to forbid unclaimed pregen wallets.
+   * @returns {string} the wallet ID originally passed, or the one found.
+   */
+  findWalletId(walletId, filter = {}) {
+    if (walletId) {
+      this.assertIsValidWalletId(walletId, filter);
+    } else {
+      for (const id of [...this.currentWalletIdsUnique, ...Object.keys(this.wallets)]) {
+        if (this.isWalletUsable(id, filter)) {
+          walletId = id;
+          break;
+        }
+      }
+      if (!walletId) {
+        throw new Error(`no valid wallet id found`);
+      }
+    }
+    return walletId;
+  }
+  /**
+   * Retrieves a wallet with the given address, if present.
+   * If no ID is passed, this will instead return the first valid, usable wallet ID that matches the filters.
+   * @param {string} [walletId] the wallet ID to validate.
+   * @param {WalletFilters} [filter={}] a `WalletFilters` object specifying allowed types, schemes, and whether to forbid unclaimed pregen wallets.
+   * @returns {string} the wallet ID originally passed, or the one found.
+   */
+  findWalletByAddress(address, filter) {
+    if (this.externalWallets[address]) {
+      return this.externalWallets[address];
+    }
+    let wallet;
+    Object.entries(this.currentWalletIds).forEach(([type, walletIds]) => {
+      const pregenWalletIds = Object.keys(this.wallets).filter(
+        (id) => this.wallets[id].type === type && this.isPregenWalletClaimable(this.wallets[id])
+      );
+      [...walletIds, ...pregenWalletIds].forEach((id) => {
+        if (address.toLowerCase() === this.getDisplayAddress(id, { addressType: type }).toLowerCase()) {
+          wallet = this.wallets[id];
+        }
+      });
+    });
+    if (!wallet) {
+      throw new Error(`wallet with address ${address} not found`);
+    }
+    this.assertIsValidWalletId(wallet.id, filter);
+    return wallet;
+  }
+  findWallet(idOrAddress, overrideType, filter = {}) {
+    if (!idOrAddress && Object.keys(this.externalWallets).length > 0) {
+      return Object.values(this.externalWallets)[0];
+    }
+    if (this.externalWallets[idOrAddress]) {
+      return this.externalWallets[idOrAddress];
+    }
+    try {
+      const walletId = this.findWalletId(idOrAddress, filter);
+      if (walletId && !!this.wallets[walletId]) {
+        const { signer: _signer, ...wallet } = this.wallets[walletId];
+        const type = overrideType ?? this.currentWalletIdsArray.find(([id]) => id === walletId)?.[1] ?? wallet.type;
+        return {
+          ...wallet,
+          type: import_user_management_client5.WalletType[type]
+        };
+      }
+    } catch (e) {
+      return void 0;
+    }
+  }
+  get availableWallets() {
+    return [
+      ...this.currentWalletIdsArray.map(([address, type]) => [address, type, false]).map(([id, type]) => {
+        const wallet = this.findWallet(id, type);
+        if (!wallet) return null;
+        return {
+          id: wallet.id,
+          type,
+          address: this.getDisplayAddress(id, { addressType: type }),
+          name: wallet.name
+        };
+      }).filter((obj) => obj !== null),
+      ...Object.values(this.externalWallets ?? {})
+    ];
+  }
+  /**
+   * Retrieves all usable wallets with the provided type (`'EVM' | 'COSMOS' | 'SOLANA'`)
+   * @param {string} type the wallet type to filter by.
+   * @returns {Wallet[]} an array of matching wallets.
+   */
+  getWalletsByType(type) {
+    return Object.values(this.wallets).filter((w) => this.isWalletUsable(w.id, { type: [type] }));
+  }
+  assertIsValidWalletId(walletId, condition = {}) {
+    this.isWalletUsable(walletId, condition, true);
+  }
+  async assertIsValidWalletType(type, walletTypes) {
+    if (!this.#supportedWalletTypes) {
+      await this.touchSession();
+    }
+    if (!type || !Object.values(import_user_management_client5.WalletType).includes(type) || !(walletTypes ?? this.supportedWalletTypes.map(({ type: type2 }) => type2)).includes(type)) {
+      throw new Error(`wallet type ${type} is not supported`);
+    }
+    return type;
+  }
+  async getMissingTypes() {
+    if (!this.#supportedWalletTypes) {
+      await this.touchSession();
+    }
+    return this.supportedWalletTypes.filter(
+      ({ type: t, optional }) => !optional && Object.values(this.wallets).every((w) => !this.isWalletOwned(w) || !WalletSchemeTypeMap[w.scheme][t])
+    ).map(({ type }) => type);
+  }
+  async getTypesToCreate(types) {
+    if (!this.#supportedWalletTypes) {
+      await this.touchSession();
+    }
+    return getSchemes(types ?? await this.getMissingTypes()).map((scheme) => {
+      switch (scheme) {
+        case import_user_management_client5.WalletScheme.ED25519:
+          return import_user_management_client5.WalletType.SOLANA;
+        default:
+          return this.supportedWalletTypes.some(({ type, optional }) => type === import_user_management_client5.WalletType.COSMOS && !optional) ? import_user_management_client5.WalletType.COSMOS : import_user_management_client5.WalletType.EVM;
+      }
+    });
+  }
+  async getPartnerURL(partnerId) {
+    const res = await this.ctx.client.getPartner(partnerId);
+    return res.data.partner.portalUrl;
+  }
+  /**
+   * URL of the portal, which can be associated with a partner id
+   * @param partnerId: string - id of the partner to get the portal URL for
+   * @returns - portal URL
+   */
+  async getPortalURL(partnerId) {
+    return partnerId && await this.getPartnerURL(partnerId) || getPortalBaseURL(this.ctx);
+  }
+  async getWebAuthURLForCreate({
+    webAuthId,
+    ...options
+  }) {
+    return this.constructPortalUrl("createAuth", { ...options, pathId: webAuthId });
+  }
+  async getPasswordURLForCreate({
+    passwordId,
+    ...options
+  }) {
+    return this.constructPortalUrl("createPassword", {
+      ...options,
+      pathId: passwordId
+    });
+  }
+  getShortUrl(compressedUrl) {
+    return constructUrl({
+      base: getPortalBaseURL(this.ctx),
+      path: `/short/${compressedUrl}`
+    });
+  }
+  async shortenLoginLink(link) {
+    const url = await upload(link, this.ctx.client);
+    return this.getShortUrl(url);
+  }
+  /**
+   * Generates a URL for registering a new WebAuth passkey.
+   * @param {GetWebAuthUrlForLoginParams} opts the options object
+   * @returns - the URL for creating a new passkey
+   */
+  async getWebAuthURLForLogin(opts) {
+    return this.constructPortalUrl("loginAuth", opts);
+  }
+  /**
+   * Generates a URL for registering a new user password.
+   * @param {GetWebAuthUrlForLoginParams} opts the options object
+   * @returns - the URL for creating a new password
+   */
+  async getPasswordURLForLogin(opts) {
+    return this.constructPortalUrl("loginPassword", opts);
+  }
+  /**
+   * Generates a URL for registering a new WebAuth passkey for a phone number.
+   * @param {Omit<GetWebAuthUrlForLoginParams, 'authType'>} opts the options object
+   * @returns - web auth url
+   */
+  async getWebAuthURLForLoginForPhone(opts) {
+    return this.constructPortalUrl("loginAuth", {
+      authType: "phone",
+      ...opts
+    });
+  }
+  /**
+   * Gets the private key for the given wallet.
+   * @param {string } [walletId] id of the wallet to get the private key for. Will default to the first wallet if not provided.
+   * @returns - the private key string.
+   */
+  async getPrivateKey(walletId) {
+    const wallets = Object.values(this.wallets);
+    const wallet = walletId ? this.wallets[walletId] : wallets?.[0];
+    if (!wallet) {
+      throw new Error("wallet not found");
+    }
+    if (wallet.scheme !== import_user_management_client5.WalletScheme.DKLS) {
+      throw new Error("invalid wallet scheme");
+    }
+    return await this.platformUtils.getPrivateKey(
+      this.ctx,
+      this.userId,
+      wallet.id,
+      wallet.signer,
+      this.retrieveSessionCookie()
+    );
+  }
+  /**
+   * Fetches the wallets associated with the user.
+   * @returns {WalletEntity[]} wallets that were fetched.
+   */
+  async fetchWallets() {
+    const res = await (this.isPortal() || this.isParaConnect() ? this.ctx.client.getAllWallets(this.userId) : this.ctx.client.getWallets(this.userId, true));
+    return res.data.wallets.filter(
+      (wallet) => !!wallet.address && (this.isParaConnect() || !this.isParaConnect() && this.isWalletSupported(entityToWallet(wallet)))
+    );
+  }
+  async populateWalletAddresses() {
+    const res = await this.ctx.client.getWallets(this.userId, true);
+    const wallets = res.data.wallets;
+    wallets.forEach((entity) => {
+      if (this.wallets[entity.id]) {
+        this.wallets[entity.id] = {
+          ...entityToWallet(entity),
+          ...this.wallets[entity.id]
+        };
+      }
+    });
+    await this.setWallets(this.wallets);
+  }
+  async populatePregenWalletAddresses() {
+    const res = await this.getPregenWallets();
+    res.forEach((entity) => {
+      if (this.wallets[entity.id]) {
+        this.wallets[entity.id] = {
+          ...entityToWallet(entity),
+          ...this.wallets[entity.id]
+        };
+      }
+    });
+    await this.setWallets(this.wallets);
+  }
+  /**
+   * Checks if a user exists for an email address.
+   * @param {Object} opts the options object
+   * @param {string} opts.email the email to check.
+   * @returns true if user exists, false otherwise.
+   */
+  async checkIfUserExists({ email }) {
+    const res = await this.ctx.client.checkUserExists({ email });
+    return res.data.exists;
+  }
+  /**
+   * Checks if a user exists for a phone number.
+   * @param {Object} opts the options object
+   * @param {string} opts.phone - phone number to check.
+   * @param {string} opts.countryCode - the country code.
+   * @returns true if user exists, false otherwise.
+   */
+  async checkIfUserExistsByPhone({ phone, countryCode }) {
+    const res = await this.ctx.client.checkUserExists({ phone, countryCode });
+    return res.data.exists;
+  }
+  /**
+   * Creates a new user.
+   * @param {Object} opts the options object
+   * @param {string} opts.email the email to use.
+   */
+  async createUser({ email }) {
+    this.requireApiKey();
+    await this.setEmail(email);
+    const { userId } = await this.ctx.client.createUser({
+      email: this.email,
+      ...this.getVerificationEmailProps()
+    });
+    await this.setUserId(userId);
+  }
+  /**
+   * Creates a new user with a phone number.
+   * @param {Object} opts the options object
+   * @param {string} opts.phone - the phone number to use for creating the user.
+   * @param {string} opts.countryCode - the country code to use for creating the user.
+   */
+  async createUserByPhone({ phone, countryCode }) {
+    this.requireApiKey();
+    await this.setPhoneNumber(phone, countryCode);
+    const { userId } = await this.ctx.client.createUser({
+      phone: this.phone,
+      countryCode: this.countryCode
+    });
+    await this.setUserId(userId);
+  }
+  /**
+   * Logs in or creates a new user using an external wallet address.
+   * @param {Object} opts the options object
+   * @param {string} opts.address the external wallet address to use for identification.
+   * @param {WalletType} opts.type type of external wallet to use for identification.
+   * @param {string} opts.provider the name of the provider for the external wallet.
+   */
+  async externalWalletLogin(wallet) {
+    this.requireApiKey();
+    const res = await this.ctx.client.externalWalletLogin({
+      externalAddress: wallet.address,
+      type: wallet.type,
+      externalWalletProvider: wallet.provider,
+      shouldTrackUser: wallet.shouldTrackUser
+    });
+    await this.setExternalWallet(wallet);
+    await this.setUserId(res.userId);
+    return res;
+  }
+  /**
+   * Returns whether or not the user is connected with an external wallet.
+   */
+  isUsingExternalWallet() {
+    return !!Object.keys(this.externalWallets).length;
+  }
+  /**
+   * Passes the email code obtained from the user for verification.
+   * @param {Object} opts the options object
+   * @param {string} verificationCode the six-digit code to check
+   * @returns {string} the web auth url for creating a new credential
+   */
+  async verifyEmail({ verificationCode }) {
+    await this.ctx.client.verifyEmail(this.userId, { verificationCode });
+    return this.getSetUpBiometricsURL();
+  }
+  async verifyExternalWallet({
+    address,
+    signedMessage,
+    cosmosPublicKeyHex,
+    cosmosSigner
+  }) {
+    await this.ctx.client.verifyExternalWallet(this.userId, { address, signedMessage, cosmosPublicKeyHex, cosmosSigner });
+    return this.getSetUpBiometricsURL();
+  }
+  /**
+   * Passes the phone code obtained from the user for verification.
+   * @param {Object} opts the options object
+   * @param {string} verificationCode the six-digit code to check
+   * @returns {string} the web auth url for creating a new credential
+   */
+  async verifyPhone({ verificationCode }) {
+    await this.ctx.client.verifyPhone(this.userId, { verificationCode });
+    return this.getSetUpBiometricsURLForPhone();
+  }
+  /**
+   * Validates the response received from an attempted Telegram login for authenticity, then
+   * creates or retrieves the corresponding Para user and prepares the Para instance to sign in with that user.
+   * @param authResponse - the response JSON object received from the Telegram widget.
+   * @returns `{ isValid: boolean; telegramUserId?: string; userId?: string; isNewUser?: boolean; supportedAuthMethods?: AuthMethod[]; biometricHints?: BiometricLocationHint[] }`
+   */
+  async verifyTelegram(authObject) {
+    const res = await this.ctx.client.verifyTelegram(authObject);
+    if (res.isValid) {
+      await this.setUserId(res.userId);
+      await this.setTelegramUserId(res.telegramUserId);
+      await this.touchSession(true);
+      if (!this.loginEncryptionKeyPair) {
+        await this.setLoginEncryptionKeyPair();
+      }
+    }
+    return res;
+  }
+  /**
+   * Performs 2FA verification.
+   * @param {Object} opts the options object
+   * @param {string} opts.email the email to use for performing a 2FA verification.
+   * @param {string} opts.verificationCode the verification code to received via 2FA.
+   * @returns {Object} `{ address, initiatedAt, status, userId, walletId }`
+   */
+  async verify2FA({ email, verificationCode }) {
+    const res = await this.ctx.client.verify2FA(email, verificationCode);
+    return {
+      initiatedAt: res.data.initiatedAt,
+      status: res.data.status,
+      userId: res.data.userId,
+      wallets: res.data.wallets
+    };
+  }
+  /**
+   * Performs 2FA verification.
+   * @param {Object} opts the options object
+   * @param {string} opts.phone the phone number
+   * @param {string} opts.countryCode - the country code
+   * @param {string} opts.verificationCode - verification code to received via 2FA.
+   * @returns {Object} `{ address, initiatedAt, status, userId, walletId }`
+   */
+  async verify2FAForPhone({
+    phone,
+    countryCode,
+    verificationCode
+  }) {
+    const res = await this.ctx.client.verify2FAForPhone(phone, countryCode, verificationCode);
+    return {
+      initiatedAt: res.data.initiatedAt,
+      status: res.data.status,
+      userId: res.data.userId,
+      wallets: res.data.wallets
+    };
+  }
+  /**
+   * Sets up two-factor authentication for the current user.
+   * @returns {string} uri - uri to use for setting up 2FA
+   * */
+  async setup2FA() {
+    const res = await this.ctx.client.setup2FA(this.userId);
+    return {
+      uri: res.data.uri
+    };
+  }
+  /**
+   * Enables 2FA.
+   * @param {Object} opts the options object
+   * @param {string} opts.verificationCode - the verification code received via 2FA.
+   */
+  async enable2FA({ verificationCode }) {
+    await this.ctx.client.enable2FA(this.userId, verificationCode);
+  }
+  /**
+   * Determines if 2FA has been set up.
+   * @returns {Object} `{ isSetup: boolean }` - true if 2FA is setup, false otherwise
+   */
+  async check2FAStatus() {
+    if (!this.userId) {
+      return { isSetup: false };
+    }
+    const res = await this.ctx.client.check2FAStatus(this.userId);
+    return {
+      isSetup: res.data.isSetup
+    };
+  }
+  /**
+   * Resend a verification email for the current user.
+   */
+  async resendVerificationCode() {
+    await this.ctx.client.resendVerificationCode({
+      userId: this.userId,
+      ...this.getVerificationEmailProps()
+    });
+  }
+  /**
+   * Resend a verification SMS for the current user.
+   */
+  async resendVerificationCodeByPhone() {
+    await this.ctx.client.resendVerificationCodeByPhone({
+      userId: this.userId
+    });
+  }
+  /**
+   * Returns a URL for setting up a new WebAuth passkey.
+   * @param {Object} opts the options object
+   * @param {string} opts.authType - the auth type to use
+   * @param {boolean} opts.isForNewDevice whether the passkey is for a new device of an existing user
+   * @returns {string} the URL
+   */
+  async getSetUpBiometricsURL({
+    authType = "email",
+    isForNewDevice = false
+  } = {}) {
+    const res = await this.ctx.client.addSessionPublicKey(this.userId, {
+      status: import_user_management_client5.PublicKeyStatus.PENDING,
+      type: import_user_management_client5.PublicKeyType.WEB
+    });
+    return this.getWebAuthURLForCreate({
+      authType,
+      isForNewDevice,
+      webAuthId: res.data.id,
+      partnerId: res.data.partnerId
+    });
+  }
+  /**
+   * Returns a URL for setting up a new WebAuth passkey for a phone number.
+   * @param {Object} opts the options object
+   * @param {boolean} opts.isForNewDevice whether the passkey is for a new device of an existing user
+   * @returns {string} the URL
+   */
+  async getSetUpBiometricsURLForPhone({
+    isForNewDevice = false
+  } = {}) {
+    const res = await this.ctx.client.addSessionPublicKey(this.userId, {
+      status: import_user_management_client5.PublicKeyStatus.PENDING,
+      type: import_user_management_client5.PublicKeyType.WEB
+    });
+    return this.getWebAuthURLForCreate({
+      authType: "phone",
+      isForNewDevice,
+      webAuthId: res.data.id,
+      partnerId: res.data.partnerId
+    });
+  }
+  /**
+   * Returns a URL for setting up a new password.
+   * @param {Object} opts the options object
+   * @param {string} opts.authType - the auth type to use
+   * @param {boolean} opts.isForNewDevice whether the passkey is for a new device of an existing user
+   * @param {Theme} [opts.theme] the portal theme to use in place of the partner's default
+   * @returns {string} the URL
+   */
+  async getSetupPasswordURL({
+    authType = "email",
+    isForNewDevice = false,
+    theme
+  } = {}) {
+    const res = await this.ctx.client.addSessionPasswordPublicKey(this.userId, {
+      status: import_user_management_client5.PasswordStatus.PENDING
+    });
+    return this.getPasswordURLForCreate({
+      authType,
+      isForNewDevice,
+      passwordId: res.data.id,
+      partnerId: res.data.partnerId,
+      theme
+    });
+  }
+  /**
+   * Checks if the current session is active.
+   * @returns `true` if active, `false` otherwise
+   */
+  async isSessionActive() {
+    if (this.isUsingExternalWallet()) {
+      return true;
+    }
+    const res = await this.touchSession();
+    return !!res.data.isAuthenticated;
+  }
+  /**
+   * Checks if a session is active and a wallet exists.
+   * @returns `true` if active, `false` otherwise
+   **/
+  async isFullyLoggedIn() {
+    if (this.isUsingExternalWallet()) {
+      return true;
+    }
+    const isSessionActive = await this.isSessionActive();
+    return isSessionActive && this.currentWalletIdsArray.length > 0 && this.currentWalletIdsArray.reduce((acc, [id]) => acc && !!this.wallets[id], true);
+  }
+  async supportedAuthMethods(auth) {
+    const { supportedAuthMethods } = await this.ctx.client.getSupportedAuthMethods(auth);
+    const authMethods = /* @__PURE__ */ new Set();
+    for (const type of supportedAuthMethods) {
+      switch (type) {
+        case "PASSWORD":
+          authMethods.add(import_user_management_client5.AuthMethod.PASSWORD);
+          break;
+        case "BIOMETRIC":
+          authMethods.add(import_user_management_client5.AuthMethod.PASSKEY);
+          break;
+      }
+    }
+    return authMethods;
+  }
+  /**
+   * Get hints associated with the users stored biometrics.
+   * @returns Array containing useragents and AAGuids for stored biometrics
+   */
+  async getUserBiometricLocationHints() {
+    if (!this.email && !this.phone && !this.farcasterUsername && !this.telegramUserId) {
+      throw new Error("one of email, phone or farcaster username are required to get biometric location hints");
+    }
+    return await this.ctx.client.getBiometricLocationHints({
+      email: this.email,
+      phone: this.phone,
+      countryCode: this.countryCode,
+      farcasterUsername: this.farcasterUsername,
+      telegramUserId: this.telegramUserId
+    });
+  }
+  async setAuth(auth) {
+    const authInfo = (0, import_user_management_client5.extractAuthInfo)(auth);
+    if (!authInfo) {
+      return void 0;
+    }
+    switch (authInfo.authType) {
+      case "email":
+        await this.setEmail(authInfo.identifier);
+        break;
+      case "phone":
+        await this.setPhoneNumber(authInfo.auth.phone, authInfo.auth.countryCode);
+        break;
+      case "farcaster":
+        await this.setFarcasterUsername(authInfo.identifier);
+        break;
+      case "telegram":
+        await this.setTelegramUserId(authInfo.identifier);
+        break;
+    }
+    return authInfo;
+  }
+  /**
+   * Initiates a login.
+   * @param {Object} opts the options object
+   * @param {String} opts.email - the email to login with
+   * @param {boolean} opts.useShortURL - whether to shorten the link
+   * @returns - the WebAuth URL for logging in
+   **/
+  async initiateUserLogin({ useShortUrl = false, ...auth }) {
+    const authInfo = await this.setAuth(auth);
+    if (!authInfo) {
+      return;
+    }
+    const res = await this.touchSession(true);
+    if (!this.loginEncryptionKeyPair) {
+      await this.setLoginEncryptionKeyPair();
+    }
+    const webAuthLoginURL = await this.getWebAuthURLForLogin({
+      authType: authInfo.authType,
+      sessionId: res.data.sessionId,
+      partnerId: res.data.partnerId,
+      loginEncryptionPublicKey: getPublicKeyHex(this.loginEncryptionKeyPair)
+    });
+    if (!useShortUrl) {
+      return webAuthLoginURL;
+    }
+    return this.shortenLoginLink(webAuthLoginURL);
+  }
+  /**
+   * Initiates a login.
+   * @param email - the email to login with
+   * @returns - a set of supported auth methods for the user
+   **/
+  async initiateUserLoginV2(auth) {
+    const authInfo = await this.setAuth(auth);
+    if (!authInfo) {
+      return;
+    }
+    await this.touchSession(true);
+    if (!this.loginEncryptionKeyPair) {
+      await this.setLoginEncryptionKeyPair();
+    }
+    return await this.supportedAuthMethods(authInfo.auth);
+  }
+  /**
+   * Initiates a login.
+   * @param opts the options object
+   * @param opts.phone the phone number
+   * @param opts.countryCode the country code
+   * @param opts.useShortURL - whether to shorten the link
+   * @returns - the WebAuth URL for logging in
+   **/
+  async initiateUserLoginForPhone({
+    useShortUrl = false,
+    ...auth
+  }) {
+    await this.setAuth(auth);
+    const res = await this.touchSession(true);
+    if (!this.loginEncryptionKeyPair) {
+      await this.setLoginEncryptionKeyPair();
+    }
+    const webAuthLoginURL = await this.getWebAuthURLForLoginForPhone({
+      sessionId: res.data.sessionId,
+      loginEncryptionPublicKey: getPublicKeyHex(this.loginEncryptionKeyPair),
+      partnerId: res.data.partnerId
+    });
+    if (!useShortUrl) {
+      return webAuthLoginURL;
+    }
+    return this.shortenLoginLink(webAuthLoginURL);
+  }
+  /**
+   * Waits for the session to be active.
+   **/
+  async waitForAccountCreation({ popupWindow } = {}) {
+    await this.touchSession();
+    this.currentExternalWalletAddresses = void 0;
+    this.externalWallets = {};
+    this.isAwaitingAccountCreation = true;
+    while (this.isAwaitingAccountCreation) {
+      try {
+        await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+        if (await this.isSessionActive()) {
+          this.isAwaitingAccountCreation = false;
+          dispatchEvent(ParaEvent.ACCOUNT_CREATION_EVENT, true);
+          return true;
+        } else {
+          if (popupWindow?.closed) {
+            this.isAwaitingAccountCreation = false;
+            return false;
+          }
+        }
+      } catch (err) {
+        console.error(err);
+      }
+    }
+    return false;
+  }
+  async waitForPasskeyAndCreateWallet({
+    popupWindow
+  } = {}) {
+    await this.waitForAccountCreation({ popupWindow });
+    const pregenWallets = await this.getPregenWallets();
+    let recoverySecret, walletIds = {};
+    if (pregenWallets.length > 0) {
+      recoverySecret = await this.claimPregenWallets();
+      walletIds = this.supportedWalletTypes.reduce((acc, { type }) => {
+        return {
+          ...acc,
+          [type]: [pregenWallets.find((w) => !!WalletSchemeTypeMap[w.scheme][type])?.id]
+        };
+      }, {});
+    }
+    const created = await this.createWalletPerType();
+    recoverySecret = recoverySecret ?? created.recoverySecret;
+    walletIds = { ...walletIds, ...created.walletIds };
+    const resp = { walletIds, recoverySecret };
+    dispatchEvent(ParaEvent.ACCOUNT_SETUP_EVENT, resp);
+    return resp;
+  }
+  /**
+   * Initiates a Farcaster login attempt and return the URI for the user to connect.
+   * You can create a QR code with this URI that works with Farcaster's mobile app.
+   * @return {string} the Farcaster connect URI
+   */
+  async getFarcasterConnectURL() {
+    await this.logout();
+    await this.touchSession(true);
+    const {
+      data: { connect_uri }
+    } = await this.ctx.client.initializeFarcasterLogin();
+    return connect_uri;
+  }
+  /**
+   * Awaits the response from a user's attempt to log in with Farcaster.
+   * If successful, this returns the user's Farcaster username and profile picture and indicates whether the user already exists.
+   * @return {Object} `{userExists: boolean; username: string; pfpUrl?: string | null }` - the user's information and whether the user already exists.
+   */
+  async waitForFarcasterStatus() {
+    this.isAwaitingFarcaster = true;
+    while (this.isAwaitingFarcaster) {
+      try {
+        await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+        const res = await this.ctx.client.getFarcasterAuthStatus();
+        if (res.data.state === "completed") {
+          const { userId, userExists, username, pfpUrl } = res.data;
+          await this.setUserId(userId);
+          await this.setFarcasterUsername(username);
+          return {
+            userExists,
+            username,
+            pfpUrl
+          };
+        }
+      } catch (err) {
+        console.error(err);
+        this.isAwaitingFarcaster = false;
+      }
+    }
+  }
+  /**
+   * Generates a URL for the user to log in with OAuth using a desire method.
+   *
+   * @param {Object} opts the options object
+   * @param {OAuthMethod} opts.method the third-party service to use for OAuth.
+   * @param {string} [opts.deeplinkUrl] the deeplink to redirect to after the OAuth flow. This is for mobile only.
+   * @returns {string} the URL for the user to log in with OAuth.
+   */
+  async getOAuthURL({ method, deeplinkUrl }) {
+    await this.logout();
+    const res = await this.touchSession(true);
+    return constructUrl({
+      base: method === import_user_management_client5.OAuthMethod.TELEGRAM ? getPortalBaseURL(this.ctx, true) : getBaseOAuthUrl(this.ctx.env),
+      path: `/auth/${method.toLowerCase()}`,
+      params: {
+        apiKey: this.ctx.apiKey,
+        sessionLookupId: res.data.sessionLookupId,
+        deeplinkUrl
+      }
+    });
+  }
+  /**
+   * Awaits the response from a user's attempt to log in with OAuth.
+   * If successful, this returns the user's email address and indicates whether the user already exists.
+   *
+   * @param {Object} opts the options object.
+   * @param {Window} [opts.popupWindow] the popup window being used for login.
+   * @return {Object} `{ email?: string; isError?: boolean; userExists: boolean; }` the result data
+   */
+  async waitForOAuth({ popupWindow } = {}) {
+    this.isAwaitingOAuth = true;
+    while (this.isAwaitingOAuth) {
+      try {
+        if (popupWindow?.closed) {
+          return { isError: true, userExists: false };
+        }
+        await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+        if (this.isAwaitingOAuth) {
+          const res = await this.touchSession();
+          if (res.data.userId) {
+            const { userId, email } = res.data;
+            if (!this.loginEncryptionKeyPair) {
+              await this.setLoginEncryptionKeyPair();
+            }
+            await this.setUserId(userId);
+            await this.setEmail(email);
+            const userExists = await this.checkIfUserExists({ email });
+            this.isAwaitingOAuth = false;
+            return {
+              userExists,
+              email
+            };
+          }
+        }
+      } catch (err) {
+        console.error(err);
+      }
+    }
+    return { userExists: false };
+  }
+  /**
+   * Waits for the session to be active and sets up the user.
+   *
+   * @param {Object} opts the options object
+   * @param {Window} [opts.popupWindow] the popup window being used for login.
+   * @param {boolean} [opts.skipSessionRefresh] whether to skip refreshing the session.
+   * @returns {Object} `{ isComplete: boolean; isError: boolean; needsWallet: boolean; partnerId: string; }` the result data
+   **/
+  async waitForLoginAndSetup({
+    popupWindow,
+    skipSessionRefresh = false
+  } = {}) {
+    this.currentExternalWalletAddresses = void 0;
+    this.externalWallets = {};
+    this.isAwaitingLogin = true;
+    while (this.isAwaitingLogin) {
+      try {
+        await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+        if (!await this.isSessionActive()) {
+          if (popupWindow?.closed) {
+            const resp2 = { isComplete: false, isError: true };
+            dispatchEvent(ParaEvent.LOGIN_EVENT, resp2, "failed to setup user");
+            return resp2;
+          }
+          continue;
+        }
+        const postLoginData = await this.userSetupAfterLogin();
+        const needsWallet = postLoginData.data.needsWallet ?? false;
+        if (!needsWallet) {
+          if (this.currentWalletIdsArray.length === 0) {
+            if (popupWindow?.closed) {
+              const resp2 = { isComplete: false, isError: true };
+              dispatchEvent(ParaEvent.LOGIN_EVENT, resp2, "failed to setup user");
+              return resp2;
+            } else {
+              continue;
+            }
+          }
+        }
+        const fetchedWallets = await this.fetchWallets();
+        const tempSharesRes = await this.getTransmissionKeyShares();
+        if (tempSharesRes.data.temporaryShares.length === fetchedWallets.length) {
+          await this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
+          await this.claimPregenWallets();
+          const resp2 = {
+            isComplete: true,
+            needsWallet: needsWallet || Object.values(this.wallets).length === 0,
+            partnerId: postLoginData.data.partnerId
+          };
+          dispatchEvent(ParaEvent.LOGIN_EVENT, resp2);
+          return resp2;
+        }
+      } catch (err) {
+        console.error(err);
+      }
+    }
+    const resp = { isComplete: false };
+    dispatchEvent(ParaEvent.LOGIN_EVENT, resp, "exitted login without setting up user");
+    return resp;
+  }
+  /**
+   * Updates the session with the user management server, possibly
+   * opening a popup to refresh the session.
+   *
+   * @param {Object} opts the options object.
+   * @param {boolean} [shouldOpenPopup] - if `true`, the running device will open a popup to reauthenticate the user.
+   * @returns a URL for the user to reauthenticate.
+   **/
+  async refreshSession({ shouldOpenPopup = false } = {}) {
+    const res = await this.touchSession(true);
+    if (!this.loginEncryptionKeyPair) {
+      await this.setLoginEncryptionKeyPair();
+    }
+    const link = await this.getWebAuthURLForLogin({
+      sessionId: res.data.sessionId,
+      loginEncryptionPublicKey: getPublicKeyHex(this.loginEncryptionKeyPair)
+    });
+    if (shouldOpenPopup) {
+      this.platformUtils.openPopup(link);
+    }
+    return link;
+  }
+  /**
+   * Call this method after login to ensure that the user ID is set
+   * internally.
+   **/
+  async userSetupAfterLogin() {
+    const res = await this.touchSession();
+    await this.setUserId(res.data.userId);
+    if (res.data.currentWalletIds && res.data.currentWalletIds !== this.currentWalletIds)
+      await this.setCurrentWalletIds(res.data.currentWalletIds, {
+        sessionLookupId: this.isPortal() ? res.data.sessionLookupId : void 0
+      });
+    return res;
+  }
+  /**
+   * Get transmission shares associated with session.
+   * @param {Object} opts the options object.
+   * @param {boolean} opts.isForNewDevice - true if this device is registering.
+   * @returns - transmission keyshares.
+   **/
+  async getTransmissionKeyShares({ isForNewDevice = false } = {}) {
+    const res = await this.touchSession();
+    const sessionLookupId = isForNewDevice ? `${res.data.sessionLookupId}-new-device` : res.data.sessionLookupId;
+    return this.ctx.client.getTransmissionKeyshares(this.userId, sessionLookupId);
+  }
+  /**
+   * Call this method after login to perform setup.
+   * @param {Object} opts the options object.
+   * @param {any[]} opts.temporaryShares optional temporary shares to use for decryption.
+   * @param {boolean} [opts.skipSessionRefresh] - whether or not to skip refreshing the session.
+   **/
+  async setupAfterLogin({
+    temporaryShares,
+    skipSessionRefresh = false
+  } = {}) {
+    if (!temporaryShares) {
+      temporaryShares = (await this.getTransmissionKeyShares()).data.temporaryShares;
+    }
+    temporaryShares.forEach((share) => {
+      const signer = decryptWithPrivateKey(this.loginEncryptionKeyPair.privateKey, share.encryptedShare, share.encryptedKey);
+      this.wallets[share.walletId] = {
+        id: share.walletId,
+        signer
+      };
+    });
+    await this.deleteLoginEncryptionKeyPair();
+    await this.populateWalletAddresses();
+    await this.touchSession(!skipSessionRefresh);
+  }
+  /**
+   * Distributes a new wallet recovery share.
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the wallet to distribute the recovery share for.
+   * @param {string} opts.userShare optional user share generate the recovery share from. Defaults to the signer from the passed in walletId
+   * @param {boolean} opts.skipBiometricShareCreation whether or not to skip biometric share creation. Used when regenerating recovery shares.
+   * @param {boolean} opts.forceRefreshRecovery whether or not to force recovery secret regeneration. Used when regenerating recovery shares.
+   * @returns {string} the recovery share.
+   **/
+  async distributeNewWalletShare({
+    walletId,
+    userShare,
+    skipBiometricShareCreation = false,
+    forceRefresh = false
+  }) {
+    let userSigner = userShare;
+    if (!userSigner) {
+      userSigner = this.wallets[walletId].signer;
+    }
+    const recoveryShare = skipBiometricShareCreation ? await sendRecoveryForShare({
+      ctx: this.ctx,
+      userId: this.userId,
+      walletId,
+      userSigner,
+      emailProps: this.getBackupKitEmailProps(),
+      forceRefresh
+    }) : await distributeNewShare({
+      ctx: this.ctx,
+      userId: this.userId,
+      walletId,
+      userShare: userSigner,
+      emailProps: this.getBackupKitEmailProps()
+    });
+    return recoveryShare;
+  }
+  async waitForWalletAddress(walletId) {
+    let maxPolls = 0;
+    while (true) {
+      try {
+        if (maxPolls === 10) {
+          break;
+        }
+        ++maxPolls;
+        const res = await this.ctx.client.getWallets(this.userId);
+        const wallet = res.data.wallets.find((w) => w.id === walletId);
+        if (wallet && wallet.address) {
+          return;
+        }
+        await new Promise((resolve) => setTimeout(resolve, SHORT_POLLING_INTERVAL_MS));
+      } catch (err) {
+        console.error(err);
+      }
+    }
+    throw new Error("timed out waiting for wallet address");
+  }
+  /**
+   * Waits for a pregen wallet address to be created.
+   *
+   * @param pregenIdentifier - the identifier of the user the pregen wallet is associated with.
+   * @param walletId - the wallet id
+   * @param pregenIdentifierType - the identifier type of the user the pregen wallet is associated with.
+   * @returns - recovery share.
+   **/
+  async waitForPregenWalletAddress(walletId) {
+    let maxPolls = 0;
+    while (true) {
+      try {
+        if (maxPolls === 10) {
+          break;
+        }
+        ++maxPolls;
+        const res = await this.getPregenWallets();
+        const wallet = res.find((w) => w.id === walletId);
+        if (wallet && wallet.address) {
+          return;
+        }
+        await new Promise((resolve) => setTimeout(resolve, SHORT_POLLING_INTERVAL_MS));
+      } catch (err) {
+        console.error(err);
+      }
+    }
+    throw new Error("timed out waiting for wallet address");
+  }
+  /**
+   * Creates several new wallets with the desired types. If no types are provided, this method
+   * will create one for each of the non-optional types specified in the instance's `supportedWalletTypes`
+   * object that are not already present. This is automatically called upon account creation to ensure that
+   * the user has a wallet of each required type.
+   *
+   * @param {Object} [opts] the options object.
+   * @param {boolean} [opts.skipDistribute] if `true`, the wallets' recovery share will not be distributed.
+   * @param {WalletType[]} [opts.types] the types of wallets to create.
+   * @returns {Object} the wallets created, their ids, and the recovery secret.
+   **/
+  async createWalletPerType({
+    skipDistribute = false,
+    types
+  } = {}) {
+    const wallets = [];
+    const walletIds = {};
+    let recoverySecret;
+    for (const type of await this.getTypesToCreate(types)) {
+      const [wallet, recoveryShare] = await this.createWallet({ type, skipDistribute });
+      wallets.push(wallet);
+      getEquivalentTypes(type).filter((t) => !!this.isWalletTypeEnabled[t]).forEach((t) => {
+        walletIds[t] = [wallet.id];
+      });
+      if (recoveryShare) {
+        recoverySecret = recoveryShare;
+      }
+    }
+    return { wallets, walletIds, recoverySecret };
+  }
+  /**
+   * Refresh the current user share for a wallet.
+   *
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the wallet id to refresh.
+   * @param {string} opts.share the current user share.
+   * @param {string} [opts.oldPartnerId] the current partner id.
+   * @param {string} [opts.newPartnerId] the new partner id to set, if any.
+   * @param {string} [opts.keyShareProtocolId]
+   * @param {boolean} [opts.redistributeBackupEncryptedShares] whether or not to redistribute backup encrypted shares.
+   * @returns {Object} the new user share and recovery secret.
+   **/
+  async refreshShare({
+    walletId,
+    share,
+    oldPartnerId,
+    newPartnerId,
+    keyShareProtocolId,
+    redistributeBackupEncryptedShares
+  }) {
+    const { signer, protocolId } = await this.platformUtils.refresh(
+      this.ctx,
+      this.retrieveSessionCookie(),
+      this.userId,
+      walletId,
+      share,
+      oldPartnerId,
+      newPartnerId,
+      keyShareProtocolId
+    );
+    const recoverySecret = await distributeNewShare({
+      ctx: this.ctx,
+      userId: this.userId,
+      walletId,
+      userShare: signer,
+      ignoreRedistributingBackupEncryptedShare: !redistributeBackupEncryptedShares,
+      emailProps: this.getBackupKitEmailProps(),
+      partnerId: newPartnerId,
+      protocolId
+    });
+    return { signer, recoverySecret, protocolId };
+  }
+  /**
+   * Creates a new wallet.
+   * @param {Object} opts the options object.
+   * @param {WalletType} opts.type the type of wallet to create.
+   * @param {boolean} opts.skipDistribute - if true, recovery share will not be distributed.
+   * @returns {[Wallet, string | null]} `[wallet, recoveryShare]` - the wallet object and the new recovery share.
+   **/
+  async createWallet({
+    type: _type,
+    skipDistribute = false
+  } = {}) {
+    this.requireApiKey();
+    const walletType = await this.assertIsValidWalletType(
+      _type ?? this.supportedWalletTypes.find(({ optional }) => !optional)?.type
+    );
+    let signer;
+    let wallet;
+    let keygenRes;
+    switch (walletType) {
+      case import_user_management_client5.WalletType.SOLANA: {
+        keygenRes = await this.platformUtils.ed25519Keygen(
+          this.ctx,
+          this.userId,
+          this.retrieveSessionCookie(),
+          this.getBackupKitEmailProps()
+        );
+        break;
+      }
+      default: {
+        keygenRes = await this.platformUtils.keygen(
+          this.ctx,
+          this.userId,
+          walletType,
+          null,
+          this.retrieveSessionCookie(),
+          this.getBackupKitEmailProps()
+        );
+        break;
+      }
+    }
+    const walletId = keygenRes.walletId;
+    signer = keygenRes.signer;
+    this.wallets[walletId] = {
+      id: walletId,
+      signer,
+      scheme: walletType === import_user_management_client5.WalletType.SOLANA ? import_user_management_client5.WalletScheme.ED25519 : import_user_management_client5.WalletScheme.DKLS,
+      type: walletType
+    };
+    wallet = this.wallets[walletId];
+    await this.waitForWalletAddress(wallet.id);
+    await this.populateWalletAddresses();
+    let recoveryShare = null;
+    if (!skipDistribute) {
+      recoveryShare = await distributeNewShare({
+        ctx: this.ctx,
+        userId: this.userId,
+        walletId: wallet.id,
+        userShare: signer,
+        emailProps: this.getBackupKitEmailProps()
+      });
+    }
+    await this.setCurrentWalletIds({
+      ...this.currentWalletIds,
+      [walletType]: [...this.currentWalletIds[walletType] ?? [], walletId]
+    });
+    const walletNoSigner = { ...wallet };
+    delete walletNoSigner.signer;
+    dispatchEvent(ParaEvent.WALLET_CREATED, {
+      wallet: walletNoSigner,
+      recoverySecret: recoveryShare
+    });
+    return [wallet, recoveryShare];
+  }
+  /**
+   * Creates a new pregenerated wallet.
+   *
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier the identifier associated with the new wallet.
+   * @param {TPregenIdentifierType} [opts.pregenIdentifierType] the identifier type. Defaults to `EMAIL`.
+   * @param {WalletType} [opts.type] the type of wallet to create. Defaults to the first non-optional type in the instance's `supportedWalletTypes` array.
+   * @returns {Wallet} the created wallet.
+   **/
+  async createPregenWallet(opts) {
+    const {
+      type: _type = this.supportedWalletTypes.find(({ optional }) => !optional)?.type,
+      pregenIdentifier,
+      pregenIdentifierType = "EMAIL"
+    } = opts;
+    this.requireApiKey();
+    const walletType = await this.assertIsValidWalletType(
+      _type ?? this.supportedWalletTypes.find(({ optional }) => !optional)?.type
+    );
+    let keygenRes;
+    switch (walletType) {
+      case import_user_management_client5.WalletType.SOLANA:
+        keygenRes = await this.platformUtils.ed25519PreKeygen(
+          this.ctx,
+          pregenIdentifier,
+          pregenIdentifierType,
+          this.retrieveSessionCookie()
+        );
+        break;
+      default:
+        keygenRes = await this.platformUtils.preKeygen(
+          this.ctx,
+          void 0,
+          pregenIdentifier,
+          pregenIdentifierType,
+          walletType,
+          null,
+          this.retrieveSessionCookie()
+        );
+        break;
+    }
+    const { signer, walletId } = keygenRes;
+    this.wallets[walletId] = {
+      id: walletId,
+      signer,
+      scheme: walletType === import_user_management_client5.WalletType.SOLANA ? import_user_management_client5.WalletScheme.ED25519 : import_user_management_client5.WalletScheme.DKLS,
+      type: walletType,
+      isPregen: true,
+      pregenIdentifier,
+      pregenIdentifierType
+    };
+    await this.waitForPregenWalletAddress(walletId);
+    await this.populatePregenWalletAddresses();
+    return this.wallets[walletId];
+  }
+  /**
+   * Creates new pregenerated wallets for each desired type.
+   * If no types are provided, this method will create one for each of the non-optional types
+   * specified in the instance's `supportedWalletTypes` array that are not already present.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier the identifier to associate each wallet with.
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType - either `'EMAIL'` or `'PHONE'`.
+   * @param {WalletType[]} [opts.types] the wallet types to create. Defaults to any types the instance supports that are not already present.
+   * @returns {Wallet[]} an array containing the created wallets.
+   **/
+  async createPregenWalletPerType({
+    types,
+    pregenIdentifier,
+    pregenIdentifierType = "EMAIL"
+  }) {
+    const wallets = [];
+    for (const type of await this.getTypesToCreate(types)) {
+      const wallet = await this.createPregenWallet({ type, pregenIdentifier, pregenIdentifierType });
+      wallets.push(wallet);
+    }
+    return wallets;
+  }
+  /**
+   * Claims a pregenerated wallet.
+   *
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier string the identifier of the user claiming the wallet
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType type of the identifier of the user claiming the wallet
+   * @returns {[Wallet, string | null]} `[wallet, recoveryShare]` - the wallet object and the new recovery share.
+   **/
+  async claimPregenWallets({
+    pregenIdentifier,
+    pregenIdentifierType = !!pregenIdentifier ? "EMAIL" : void 0
+  } = {}) {
+    this.requireApiKey();
+    const pregenWallets = pregenIdentifier && pregenIdentifierType ? await this.getPregenWallets({ pregenIdentifier, pregenIdentifierType }) : await this.getPregenWallets();
+    if (pregenWallets.length === 0) {
+      return void 0;
+    }
+    let newRecoverySecret;
+    const { walletIds } = await this.ctx.client.claimPregenWallets({
+      userId: this.userId,
+      walletIds: pregenWallets.map((w) => w.id)
+    });
+    for (const walletId of walletIds) {
+      const wallet = this.wallets[walletId];
+      let refreshedShare;
+      if (wallet.scheme === import_user_management_client5.WalletScheme.ED25519) {
+        const distributeRes = await distributeNewShare({
+          ctx: this.ctx,
+          userId: this.userId,
+          walletId: wallet.id,
+          userShare: this.wallets[wallet.id].signer,
+          emailProps: this.getBackupKitEmailProps(),
+          partnerId: wallet.partnerId
+        });
+        if (distributeRes.length > 0) {
+          newRecoverySecret = distributeRes;
+        }
+      } else {
+        refreshedShare = await this.refreshShare({
+          walletId: wallet.id,
+          share: this.wallets[wallet.id].signer,
+          oldPartnerId: wallet.partnerId,
+          newPartnerId: wallet.partnerId,
+          redistributeBackupEncryptedShares: true
+        });
+        if (refreshedShare.recoverySecret) {
+          newRecoverySecret = refreshedShare.recoverySecret;
+        }
+      }
+      this.wallets[wallet.id] = {
+        ...this.wallets[wallet.id],
+        signer: refreshedShare?.signer ?? wallet.signer,
+        userId: this.userId,
+        pregenIdentifier: void 0,
+        pregenIdentifierType: void 0
+      };
+      const walletNoSigner = { ...this.wallets[wallet.id] };
+      delete walletNoSigner.signer;
+      dispatchEvent(ParaEvent.PREGEN_WALLET_CLAIMED, {
+        wallet: walletNoSigner,
+        recoverySecret: newRecoverySecret
+      });
+    }
+    await this.setWallets(this.wallets);
+    return newRecoverySecret;
+  }
+  /**
+   * Updates the identifier for a pregen wallet.
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the pregen wallet ID
+   * @param {string} opts.newPregenIdentifier the new identtifier
+   * @param {TPregenIdentifierType} opts.newPregenIdentifierType: the new identifier type
+   **/
+  async updatePregenWalletIdentifier({
+    walletId,
+    newPregenIdentifier,
+    newPregenIdentifierType
+  }) {
+    this.requireApiKey();
+    await this.ctx.client.updatePregenWallet(walletId, {
+      pregenIdentifier: newPregenIdentifier,
+      pregenIdentifierType: newPregenIdentifierType
+    });
+    if (!!this.wallets[walletId]) {
+      this.wallets[walletId] = {
+        ...this.wallets[walletId],
+        pregenIdentifier: newPregenIdentifier,
+        pregenIdentifierType: newPregenIdentifierType
+      };
+      await this.setWallets(this.wallets);
+    }
+  }
+  /**
+   * Checks if a pregen Wallet exists for the given identifier with the current partner.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier string the identifier of the user claiming the wallet
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType type of the string of the identifier of the user claiming the wallet
+   * @returns {boolean} whether the pregen wallet exists
+   **/
+  async hasPregenWallet({
+    pregenIdentifier,
+    pregenIdentifierType
+  }) {
+    this.requireApiKey();
+    const res = await this.getPregenWallets({ pregenIdentifier, pregenIdentifierType });
+    const wallet = res.find((w) => w.pregenIdentifier === pregenIdentifier && w.pregenIdentifierType === pregenIdentifierType);
+    if (!wallet) {
+      return false;
+    }
+    return true;
+  }
+  /**
+   * Get pregen wallets for the given identifier.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier - the identifier of the user claiming the wallet
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType - type of the identifier of the user claiming the wallet
+   * @returns {Promise<WalletEntity[]>} the array of found wallets
+   **/
+  async getPregenWallets({
+    pregenIdentifier,
+    pregenIdentifierType = !!pregenIdentifier ? "EMAIL" : void 0
+  } = {}) {
+    this.requireApiKey();
+    const res = await this.ctx.client.getPregenWallets(
+      pregenIdentifier && pregenIdentifierType ? { [pregenIdentifierType]: [pregenIdentifier] } : this.pregenIds,
+      this.isPortal(),
+      this.userId
+    );
+    return res.wallets.filter((w) => this.isWalletSupported(entityToWallet(w)));
+  }
+  encodeWalletBase64(wallet) {
+    const walletJson = JSON.stringify(wallet);
+    const base64Wallet = Buffer.from(walletJson).toString("base64");
+    return base64Wallet;
+  }
+  /**
+   * Encodes the current wallets encoded in Base 64.
+   * @returns {string} the encoded wallet string
+   **/
+  getUserShare() {
+    if (Object.values(this.wallets).length === 0) {
+      return null;
+    }
+    return Object.values(this.wallets).map((wallet) => this.encodeWalletBase64(wallet)).join("-");
+  }
+  /**
+   * Sets the current wallets from a Base 64 string.
+   * @param {string} base64Wallet the encoded wallet string
+   **/
+  async setUserShare(base64Wallets) {
+    if (!base64Wallets) {
+      return;
+    }
+    const base64WalletsSplit = base64Wallets.split("-");
+    for (const base64Wallet of base64WalletsSplit) {
+      const walletJson = Buffer.from(base64Wallet, "base64").toString();
+      const wallet = migrateWallet(JSON.parse(walletJson));
+      this.wallets[wallet.id] = wallet;
+      await this.setWallets(this.wallets);
+    }
+  }
+  async getTransactionReviewUrl(transactionId, timeoutMs) {
+    const res = await this.touchSession();
+    return this.constructPortalUrl("txReview", {
+      partnerId: res.data.partnerId,
+      pathId: transactionId,
+      params: {
+        email: this.email,
+        timeoutMs: timeoutMs?.toString()
+      }
+    });
+  }
+  async getOnRampTransactionUrl({
+    purchaseId,
+    providerKey,
+    ...walletParams
+  }) {
+    const res = await this.touchSession();
+    const [key, identifier] = (0, import_user_management_client5.extractWalletRef)(walletParams);
+    return this.constructPortalUrl("onRamp", {
+      partnerId: res.data.partnerId,
+      pathId: purchaseId,
+      sessionId: res.data.sessionId,
+      params: {
+        [key]: identifier,
+        providerKey,
+        currentWalletIds: JSON.stringify(this.currentWalletIds)
+      }
+    });
+  }
+  /**
+   * Signs a message using one of the current wallets.
+   *
+   * If you want to sign the keccak256 hash of a message, hash the
+   * message first and then pass in the base64 encoded hash.
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the id of the wallet to sign with.
+   * @param {string} opts.messageBase64 the base64 encoding of exact message that should be signed
+   * @param {number} [opts.timeout] optional timeout in milliseconds. If not present, defaults to 30 seconds.
+   * @param {string} [opts.cosmosSignDocBase64] the Cosmos `SignDoc` in base64, if applicable
+   **/
+  async signMessage({
+    walletId,
+    messageBase64,
+    timeoutMs = 3e4,
+    cosmosSignDocBase64
+  }) {
+    this.assertIsValidWalletId(walletId);
+    const wallet = this.wallets[walletId];
+    let signerId = this.userId;
+    if (wallet.partnerId && !wallet.userId) {
+      signerId = wallet.partnerId;
+    }
+    let signRes = await this.signMessageInner({ wallet, signerId, messageBase64, cosmosSignDocBase64 });
+    let timeStart = Date.now();
+    if (signRes.pendingTransactionId) {
+      this.platformUtils.openPopup(
+        await this.getTransactionReviewUrl(signRes.pendingTransactionId, timeoutMs),
+        { type: cosmosSignDocBase64 ? "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ : "SIGN_MESSAGE_REVIEW" /* SIGN_MESSAGE_REVIEW */ }
+      );
+    } else {
+      dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes);
+      return signRes;
+    }
+    await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+    while (true) {
+      if (Date.now() - timeStart > timeoutMs) {
+        break;
+      }
+      try {
+        await this.ctx.client.getPendingTransaction(this.userId, signRes.pendingTransactionId);
+      } catch (err) {
+        const error = new TransactionReviewDenied();
+        dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes, error.message);
+        throw error;
+      }
+      signRes = await this.signMessageInner({ wallet, signerId, messageBase64, cosmosSignDocBase64 });
+      if (signRes.pendingTransactionId) {
+        await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+      } else {
+        break;
+      }
+    }
+    if (signRes.pendingTransactionId) {
+      const error = new TransactionReviewTimeout(
+        await this.getTransactionReviewUrl(signRes.pendingTransactionId),
+        signRes.pendingTransactionId
+      );
+      dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes, error.message);
+      throw error;
+    }
+    dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes);
+    return signRes;
+  }
+  async signMessageInner({
+    wallet,
+    signerId,
+    messageBase64,
+    cosmosSignDocBase64
+  }) {
+    let signRes;
+    switch (wallet.scheme) {
+      case import_user_management_client5.WalletScheme.ED25519:
+        signRes = await this.platformUtils.ed25519Sign(
+          this.ctx,
+          signerId,
+          wallet.id,
+          wallet.signer,
+          messageBase64,
+          this.retrieveSessionCookie()
+        );
+        break;
+      default:
+        signRes = await this.platformUtils.signMessage(
+          this.ctx,
+          signerId,
+          wallet.id,
+          wallet.signer,
+          messageBase64,
+          this.retrieveSessionCookie(),
+          wallet.scheme === import_user_management_client5.WalletScheme.DKLS,
+          cosmosSignDocBase64
+        );
+        break;
+    }
+    return signRes;
+  }
+  /**
+   * Signs a transaction.
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the id of the wallet to sign with.
+   * @param {string} opts.rlpEncodedTxBase64 the transaction to sign, in RLP base64 encoding
+   * @param {string} [opts.chainId] the EVM chain id of the chain the transaction is being sent on, if applicable
+   * @param {number} [opts.timeoutMs] the amount of time to wait for the user to sign the transaction, in milliseconds
+   **/
+  async signTransaction({
+    walletId,
+    rlpEncodedTxBase64,
+    chainId,
+    timeoutMs = 3e4
+  }) {
+    this.assertIsValidWalletId(walletId);
+    const wallet = this.wallets[walletId];
+    let signerId = this.userId;
+    if (wallet.partnerId && !wallet.userId) {
+      signerId = wallet.partnerId;
+    }
+    let signRes = await this.platformUtils.signTransaction(
+      this.ctx,
+      signerId,
+      walletId,
+      this.wallets[walletId].signer,
+      rlpEncodedTxBase64,
+      chainId,
+      this.retrieveSessionCookie(),
+      wallet.scheme === import_user_management_client5.WalletScheme.DKLS
+    );
+    let timeStart = Date.now();
+    if (signRes.pendingTransactionId) {
+      this.platformUtils.openPopup(
+        await this.getTransactionReviewUrl(signRes.pendingTransactionId, timeoutMs),
+        { type: "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ }
+      );
+    } else {
+      dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes);
+      return signRes;
+    }
+    await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+    while (true) {
+      if (Date.now() - timeStart > timeoutMs) {
+        break;
+      }
+      try {
+        await this.ctx.client.getPendingTransaction(this.userId, signRes.pendingTransactionId);
+      } catch (err) {
+        const error = new TransactionReviewDenied();
+        dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes, error.message);
+        throw error;
+      }
+      signRes = await this.platformUtils.signTransaction(
+        this.ctx,
+        signerId,
+        walletId,
+        this.wallets[walletId].signer,
+        rlpEncodedTxBase64,
+        chainId,
+        this.retrieveSessionCookie(),
+        wallet.scheme === import_user_management_client5.WalletScheme.DKLS
+      );
+      if (signRes.pendingTransactionId) {
+        await new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+      } else {
+        break;
+      }
+    }
+    if (signRes.pendingTransactionId) {
+      const error = new TransactionReviewTimeout(
+        await this.getTransactionReviewUrl(signRes.pendingTransactionId),
+        signRes.pendingTransactionId
+      );
+      dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes, error.message);
+      throw error;
+    }
+    dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes);
+    return signRes;
+  }
+  /**
+   * @deprecated
+   * Sends a transaction.
+   * @param walletId - id of the wallet to send the transaction from.
+   * @param rlpEncodedTxBase64 - rlp encoded tx as base64 string
+   * @param chainId - chain id of the chain the transaction is being sent on.
+   **/
+  async sendTransaction({
+    walletId,
+    rlpEncodedTxBase64,
+    chainId
+  }) {
+    this.assertIsValidWalletId(walletId);
+    const wallet = this.wallets[walletId];
+    const signRes = await this.platformUtils.sendTransaction(
+      this.ctx,
+      this.userId,
+      walletId,
+      this.wallets[walletId].signer,
+      rlpEncodedTxBase64,
+      chainId,
+      this.retrieveSessionCookie(),
+      wallet.scheme === import_user_management_client5.WalletScheme.DKLS
+    );
+    if (signRes.pendingTransactionId) {
+      this.platformUtils.openPopup(
+        await this.getTransactionReviewUrl(signRes.pendingTransactionId),
+        { type: "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ }
+      );
+      const error = new TransactionReviewError(
+        await this.getTransactionReviewUrl(signRes.pendingTransactionId)
+      );
+      throw error;
+    }
+    return signRes;
+  }
+  isProviderModalDisabled() {
+    return !!this.disableProviderModal;
+  }
+  /**
+   * Starts a on-ramp or off-ramp transaction and returns the Para Portal link for the user to finalize and complete it.
+   * @param {Object} opts the options object
+   * @param {OnRampPurchaseCreateParams} opts.params the transaction settings.
+   * @param {boolean} opts.shouldOpenPopup if `true`, a popup window with the link will be opened.
+   * @param {string} opts.walletId the wallet ID to use for the transaction, where funds will be sent or withdrawn.
+   * @param {string} opts.externalWalletAddress the external wallet address to send funds to or withdraw funds from, if using an external wallet.
+   **/
+  async initiateOnRampTransaction(options) {
+    const { params, shouldOpenPopup, ...walletParams } = options;
+    const onRampPurchase = await this.ctx.client.createOnRampPurchase({
+      userId: this.userId,
+      params: {
+        ...params,
+        address: walletParams.externalWalletAddress ?? this.getDisplayAddress(walletParams.walletId, { addressType: params.walletType })
+      },
+      ...walletParams
+    });
+    const portalUrl = await this.getOnRampTransactionUrl({
+      purchaseId: onRampPurchase.id,
+      providerKey: onRampPurchase.providerKey,
+      ...walletParams
+    });
+    if (shouldOpenPopup) {
+      this.platformUtils.openPopup(portalUrl, { type: "ON_RAMP_TRANSACTION" /* ON_RAMP_TRANSACTION */ });
+    }
+    return { onRampPurchase, portalUrl };
+  }
+  /**
+   * Returns `true` if session was successfully kept alive, `false` otherwise.
+   **/
+  async keepSessionAlive() {
+    try {
+      await this.ctx.client.keepSessionAlive(this.userId);
+      return true;
+    } catch (err) {
+      return false;
+    }
+  }
+  /**
+   * Serialize the current session for import by another Para instance.
+   * @returns {string} the serialized session
+   */
+  exportSession() {
+    const sessionInfo = {
+      email: this.email,
+      userId: this.userId,
+      wallets: this.wallets,
+      currentWalletIds: this.currentWalletIds,
+      sessionCookie: this.sessionCookie,
+      phone: this.phone,
+      countryCode: this.countryCode,
+      telegramUserId: this.telegramUserId,
+      farcasterUsername: this.farcasterUsername,
+      externalWallets: this.externalWallets
+    };
+    return Buffer.from(JSON.stringify(sessionInfo)).toString("base64");
+  }
+  /**
+   * Imports a session serialized by another Para instance.
+   * @param {string} serializedInstanceBase64 the serialized session
+   */
+  async importSession(serializedInstanceBase64) {
+    const serializedInstance = Buffer.from(serializedInstanceBase64, "base64").toString("utf8");
+    const sessionInfo = JSON.parse(serializedInstance);
+    await this.setEmail(sessionInfo.email);
+    await this.setTelegramUserId(sessionInfo.telegramUserId);
+    await this.setFarcasterUsername(sessionInfo.farcasterUsername);
+    await this.setUserId(sessionInfo.userId);
+    await this.setWallets(sessionInfo.wallets);
+    await this.setExternalWallets(sessionInfo.externalWallets || {});
+    for (const walletId of Object.keys(this.wallets)) {
+      if (!this.wallets[walletId].userId) {
+        this.wallets[walletId].userId = this.userId;
+      }
+    }
+    if (Object.keys(sessionInfo.currentWalletIds).length !== 0) {
+      await this.setCurrentWalletIds(sessionInfo.currentWalletIds);
+    } else {
+      const currentWalletIds = {};
+      for (const walletId of Object.keys(sessionInfo.wallets)) {
+        currentWalletIds[sessionInfo.wallets[walletId].type] = [
+          ...currentWalletIds[sessionInfo.wallets[walletId].type] ?? [],
+          walletId
+        ];
+      }
+      await this.setCurrentWalletIds(currentWalletIds);
+    }
+    this.persistSessionCookie(sessionInfo.sessionCookie);
+    await this.setPhoneNumber(sessionInfo.phone, sessionInfo.countryCode);
+  }
+  exitAccountCreation() {
+    this.isAwaitingAccountCreation = false;
+  }
+  exitLogin() {
+    this.isAwaitingLogin = false;
+  }
+  exitFarcaster() {
+    this.isAwaitingFarcaster = false;
+  }
+  exitOAuth() {
+    this.isAwaitingOAuth = false;
+  }
+  exitLoops() {
+    this.exitAccountCreation();
+    this.exitLogin();
+    this.exitFarcaster();
+    this.exitOAuth();
+  }
+  /**
+   * Retrieves a token to verify the current session.
+   * @returns {Promise<string>} the ID
+   **/
+  async getVerificationToken() {
+    const { data } = await this.touchSession();
+    return data.sessionLookupId;
+  }
+  /**
+   * Logs the user out.
+   * @param {Object} opts the options object.
+   * @param {boolean} opts.clearPregenWallets if `true`, will remove all pregen wallets from storage
+   **/
+  async logout({ clearPregenWallets = false } = {}) {
+    await this.ctx.client.logout();
+    await this.clearStorage();
+    if (!clearPregenWallets) {
+      Object.entries(this.wallets).forEach(([id, wallet]) => {
+        if (!wallet.pregenIdentifier) {
+          delete this.wallets[id];
+        }
+      });
+      await this.setWallets(this.wallets);
+    } else {
+      this.wallets = {};
+    }
+    this.currentWalletIds = {};
+    this.currentExternalWalletAddresses = void 0;
+    this.externalWallets = {};
+    this.loginEncryptionKeyPair = void 0;
+    this.email = void 0;
+    this.telegramUserId = void 0;
+    this.phone = void 0;
+    this.countryCode = void 0;
+    this.userId = void 0;
+    this.sessionCookie = void 0;
+    dispatchEvent(ParaEvent.LOGOUT_EVENT, null);
+  }
+  async getSupportedCreateAuthMethods() {
+    const res = await this.touchSession();
+    const partnerId = res.data.partnerId;
+    const partnerRes = await this.ctx.client.getPartner(partnerId);
+    let supportedAuthMethods = /* @__PURE__ */ new Set();
+    for (const authMethod of partnerRes.data.partner.supportedAuthMethods) {
+      supportedAuthMethods.add(import_user_management_client5.AuthMethod[authMethod]);
+    }
+    return supportedAuthMethods;
+  }
+  /**
+   * Converts to a string, removing sensitive data when logging this class.
+   *
+   * Doesn't work for all types of logging.
+   **/
+  toString() {
+    const redactedWallets = Object.keys(this.wallets).reduce(
+      (acc, walletId) => ({
+        ...acc,
+        [walletId]: {
+          ...this.wallets[walletId],
+          signer: this.wallets[walletId].signer ? "[REDACTED]" : void 0
+        }
+      }),
+      {}
+    );
+    const obj = {
+      supportedWalletTypes: this.supportedWalletTypes,
+      cosmosPrefix: this.cosmosPrefix,
+      email: this.email,
+      phone: this.phone,
+      countryCode: this.countryCode,
+      telegramUserId: this.telegramUserId,
+      farcasterUsername: this.farcasterUsername,
+      userId: this.userId,
+      pregenIds: this.pregenIds,
+      currentWalletIds: this.currentWalletIds,
+      wallets: redactedWallets,
+      loginEncryptionKeyPair: this.loginEncryptionKeyPair ? "[REDACTED]" : void 0,
+      ctx: {
+        apiKey: this.ctx.apiKey,
+        disableWorkers: this.ctx.disableWorkers,
+        disableWebSockets: this.ctx.disableWebSockets,
+        env: this.ctx.env,
+        offloadMPCComputationURL: this.ctx.offloadMPCComputationURL,
+        useLocalFiles: this.ctx.useLocalFiles,
+        useDKLS: this.ctx.useDKLS,
+        cosmosPrefix: this.ctx.cosmosPrefix
+      }
+    };
+    return `Para ${JSON.stringify(obj, null, 2)}`;
+  }
+};
+
+// src/index.ts
+var import_user_management_client6 = require("@getpara/user-management-client");
+var paraVersion = ParaCore.version;
+var src_default = ParaCore;
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AuthMethod,
+  EmailTheme,
+  EnabledFlow,
+  Environment,
+  KeyContainer,
+  NON_ED25519,
+  Network,
+  OAuthMethod,
+  OnRampAsset,
+  OnRampMethod,
+  OnRampProvider,
+  OnRampPurchaseStatus,
+  OnRampPurchaseType,
+  PREGEN_IDENTIFIER_TYPES,
+  ParaEvent,
+  PopupType,
+  PregenIdentifierType,
+  RecoveryStatus,
+  STORAGE_PREFIX,
+  TransactionReviewDenied,
+  TransactionReviewError,
+  TransactionReviewTimeout,
+  WalletScheme,
+  WalletType,
+  decimalToHex,
+  decryptPrivateKey,
+  decryptPrivateKeyAndDecryptShare,
+  decryptPrivateKeyWithPassword,
+  decryptWithKeyPair,
+  decryptWithPrivateKey,
+  distributeNewShare,
+  encodePrivateKeyToPemHex,
+  encryptPrivateKey,
+  encryptPrivateKeyWithPassword,
+  encryptWithDerivedPublicKey,
+  entityToWallet,
+  getAsymmetricKeyPair,
+  getBaseMPCNetworkUrl,
+  getBaseOAuthUrl,
+  getBaseUrl,
+  getCosmosAddress,
+  getDerivedPrivateKeyAndDecrypt,
+  getOnRampAssets,
+  getOnRampNetworks,
+  getPortalBaseURL,
+  getPortalDomain,
+  getPublicKeyFromSignature,
+  getPublicKeyHex,
+  getSHA256HashHex,
+  hashPasswordWithSalt,
+  hexStringToBase64,
+  hexToDecimal,
+  hexToSignature,
+  hexToUint8Array,
+  initClient,
+  isWalletSupported,
+  mpcComputationClient,
+  normalizePhoneNumber,
+  paraVersion,
+  publicKeyFromHex,
+  stringToPhoneNumber,
+  toAssetInfoArray,
+  transmissionUtilsRetrieve,
+  truncateAddress,
+  waitUntilTrue
+});