@getpara/core-sdk 1.7.1 → 2.0.0-alpha.3

package/dist/cjs/index.js

@@ -61,6 +61,7 @@ var __accessCheck = (obj, member, msg) => member.has(obj) || __typeError("Cannot
 var __privateGet = (obj, member, getter) => (__accessCheck(obj, member, "read from private field"), getter ? getter.call(obj) : member.get(obj));
 var __privateAdd = (obj, member, value) => member.has(obj) ? __typeError("Cannot add the same private member more than once") : member instanceof WeakSet ? member.add(obj) : member.set(obj, value);
 var __privateSet = (obj, member, value, setter) => (__accessCheck(obj, member, "write to private field"), setter ? setter.call(obj, value) : member.set(obj, value), value);
+var __privateMethod = (obj, member, method) => (__accessCheck(obj, member, "access private method"), method);
 var __async = (__this, __arguments, generator) => {
   return new Promise((resolve, reject) => {
     var fulfilled = (value) => {
@@ -98,6 +99,7 @@ __export(src_exports, {
   OnRampProvider: () => import_user_management_client6.OnRampProvider,
   OnRampPurchaseStatus: () => import_user_management_client6.OnRampPurchaseStatus,
   OnRampPurchaseType: () => import_user_management_client6.OnRampPurchaseType,
+  PARA_CORE_METHODS: () => PARA_CORE_METHODS,
   PREGEN_IDENTIFIER_TYPES: () => import_user_management_client6.PREGEN_IDENTIFIER_TYPES,
   ParaEvent: () => ParaEvent,
   PopupType: () => PopupType,
@@ -109,6 +111,7 @@ __export(src_exports, {
   TransactionReviewTimeout: () => TransactionReviewTimeout,
   WalletScheme: () => import_user_management_client6.WalletScheme,
   WalletType: () => import_user_management_client6.WalletType,
+  constructUrl: () => constructUrl,
   decimalToHex: () => decimalToHex,
   decryptPrivateKey: () => decryptPrivateKey,
   decryptPrivateKeyAndDecryptShare: () => decryptPrivateKeyAndDecryptShare,
@@ -116,12 +119,14 @@ __export(src_exports, {
   decryptWithKeyPair: () => decryptWithKeyPair,
   decryptWithPrivateKey: () => decryptWithPrivateKey,
   default: () => src_default,
+  displayPhoneNumber: () => displayPhoneNumber,
   distributeNewShare: () => distributeNewShare,
   encodePrivateKeyToPemHex: () => encodePrivateKeyToPemHex,
   encryptPrivateKey: () => encryptPrivateKey,
   encryptPrivateKeyWithPassword: () => encryptPrivateKeyWithPassword,
   encryptWithDerivedPublicKey: () => encryptWithDerivedPublicKey,
   entityToWallet: () => entityToWallet,
+  formatPhoneNumber: () => formatPhoneNumber,
   getAsymmetricKeyPair: () => getAsymmetricKeyPair,
   getBaseMPCNetworkUrl: () => getBaseMPCNetworkUrl,
   getBaseOAuthUrl: () => getBaseOAuthUrl,
@@ -143,10 +148,9 @@ __export(src_exports, {
   initClient: () => initClient,
   isWalletSupported: () => isWalletSupported,
   mpcComputationClient: () => mpcComputationClient_exports,
-  normalizePhoneNumber: () => normalizePhoneNumber,
   paraVersion: () => paraVersion,
   publicKeyFromHex: () => publicKeyFromHex,
-  stringToPhoneNumber: () => stringToPhoneNumber,
+  shortenUrl: () => shortenUrl,
   toAssetInfoArray: () => toAssetInfoArray,
   transmissionUtilsRetrieve: () => retrieve,
   truncateAddress: () => truncateAddress,
@@ -163,6 +167,23 @@ var import_node_forge2 = __toESM(require("node-forge"));
 var import_base64url = __toESM(require("base64url"));
 var import_node_forge = __toESM(require("node-forge"));
 
+// src/utils/autobind.ts
+function autoBind(instance) {
+  let proto = instance;
+  while (proto && proto !== Object.prototype) {
+    for (const key of Object.getOwnPropertyNames(proto)) {
+      const value = instance[key];
+      if (typeof value === "function" && key !== "constructor") {
+        try {
+          instance[key] = value.bind(instance);
+        } catch (e) {
+        }
+      }
+    }
+    proto = Object.getPrototypeOf(proto);
+  }
+}
+
 // src/utils/events.ts
 function dispatchEvent(type, data, error) {
   typeof window !== "undefined" && !!window.dispatchEvent && window.dispatchEvent(
@@ -175,7 +196,6 @@ var import_encoding = require("@cosmjs/encoding");
 var import_sha256 = require("@noble/hashes/sha256");
 var import_ripemd160 = require("@noble/hashes/ripemd160");
 var import_elliptic = __toESM(require("elliptic"));
-var import_libphonenumber_js = __toESM(require("libphonenumber-js"));
 var secp256k1 = new import_elliptic.default.ec("secp256k1");
 function hexStringToBase64(hexString) {
   if (hexString.substring(0, 2) === "0x") {
@@ -232,12 +252,72 @@ function truncateAddress(str, addressType, { prefix = addressType === "COSMOS" ?
   const headLength = (addressType === "COSMOS" ? prefix.length : addressType === "SOLANA" ? 0 : 2) + 4;
   return `${str.slice(0, headLength)}...${str.slice(-4)}`;
 }
-function stringToPhoneNumber(str) {
-  var _a;
-  return (_a = (0, import_libphonenumber_js.default)(str)) == null ? void 0 : _a.formatInternational().replace(/[^\d+]/g, "");
+
+// src/utils/json.ts
+function jsonParse(data, validate) {
+  try {
+    const res = JSON.parse(data);
+    if (validate && !validate(res)) {
+      return void 0;
+    }
+    return res;
+  } catch (e) {
+    return void 0;
+  }
+}
+
+// src/constants.ts
+var PARA_CORE_VERSION = '2.0.0-alpha.0';
+var PREFIX = "@CAPSULE/";
+var LOCAL_STORAGE_AUTH_INFO = `${PREFIX}authInfo`;
+var LOCAL_STORAGE_EMAIL = `${PREFIX}e-mail`;
+var LOCAL_STORAGE_PHONE = `${PREFIX}phone`;
+var LOCAL_STORAGE_COUNTRY_CODE = `${PREFIX}countryCode`;
+var LOCAL_STORAGE_FARCASTER_USERNAME = `${PREFIX}farcasterUsername`;
+var LOCAL_STORAGE_TELEGRAM_USER_ID = `${PREFIX}telegramUserId`;
+var LOCAL_STORAGE_USER_ID = `${PREFIX}userId`;
+var LOCAL_STORAGE_ED25519_WALLETS = `${PREFIX}ed25519Wallets`;
+var LOCAL_STORAGE_WALLETS = `${PREFIX}wallets`;
+var LOCAL_STORAGE_EXTERNAL_WALLETS = `${PREFIX}externalWallets`;
+var LOCAL_STORAGE_CURRENT_WALLET_IDS = `${PREFIX}currentWalletIds`;
+var LOCAL_STORAGE_SESSION_COOKIE = `${PREFIX}sessionCookie`;
+var SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR = `${PREFIX}loginEncryptionKeyPair`;
+var POLLING_INTERVAL_MS = 2e3;
+var SHORT_POLLING_INTERVAL_MS = 1e3;
+var POLLING_TIMEOUT_MS = 3e5;
+
+// src/utils/listeners.ts
+function storageListener(e) {
+  if (!e.url.includes(window.location.origin)) {
+    return;
+  }
+  if (e.key === LOCAL_STORAGE_EXTERNAL_WALLETS) {
+    this.updateExternalWalletsFromStorage();
+  }
+  if (e.key === SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR) {
+    this.updateLoginEncryptionKeyPairFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_SESSION_COOKIE) {
+    this.updateSessionCookieFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_CURRENT_WALLET_IDS) {
+    this.updateWalletIdsFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_WALLETS || e.key === LOCAL_STORAGE_ED25519_WALLETS) {
+    this.updateWalletsFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_AUTH_INFO) {
+    this.updateAuthInfoFromStorage();
+  }
+  if (e.key === LOCAL_STORAGE_USER_ID) {
+    this.updateUserIdFromStorage();
+  }
 }
-function normalizePhoneNumber(countryCode, number) {
-  return stringToPhoneNumber(`${countryCode[0] !== "+" ? "+" : ""}${countryCode}${number}`);
+function setupListeners() {
+  if (typeof window !== "undefined" && window.addEventListener && window.location) {
+    window.removeEventListener("storage", storageListener.bind(this));
+    window.addEventListener("storage", storageListener.bind(this));
+  }
 }
 
 // src/utils/onRamps.ts
@@ -276,6 +356,31 @@ function getOnRampAssets(data, {
   ];
 }
 
+// src/utils/phone.ts
+var import_libphonenumber_js = __toESM(require("libphonenumber-js"));
+function formatPhoneNumber(phone, countryCode, { forDisplay = false } = {}) {
+  phone = phone.toString();
+  countryCode = countryCode == null ? void 0 : countryCode.toString();
+  let sanitizedNumber, parsedNumber;
+  if (!!countryCode) {
+    sanitizedNumber = phone.replace(/\D/g, "");
+    if (/^\+\d+$/.test(countryCode)) {
+      countryCode = countryCode.slice(1);
+    }
+    parsedNumber = (0, import_libphonenumber_js.default)(sanitizedNumber, { defaultCallingCode: countryCode });
+  } else {
+    sanitizedNumber = `+${phone.replace(/\D/g, "")}`;
+    parsedNumber = (0, import_libphonenumber_js.default)(sanitizedNumber);
+  }
+  if (parsedNumber == null ? void 0 : parsedNumber.isValid()) {
+    return forDisplay ? parsedNumber.formatInternational() : parsedNumber.formatInternational().replace(/[^\d+]/g, "");
+  }
+  return null;
+}
+function displayPhoneNumber(phone, countryCode) {
+  return formatPhoneNumber(phone, countryCode, { forDisplay: true });
+}
+
 // src/utils/polling.ts
 function waitUntilTrue(condition, timeoutMs, intervalMs) {
   return __async(this, null, function* () {
@@ -290,6 +395,48 @@ function waitUntilTrue(condition, timeoutMs, intervalMs) {
   });
 }
 
+// src/utils/types.ts
+function isServerAuthState(obj) {
+  return "stage" in obj && Object.keys(obj).length > 0;
+}
+
+// src/transmission/transmissionUtils.ts
+var import_ecies = require("@celo/utils/lib/ecies.js");
+var import_buffer = require("buffer");
+var eutil = __toESM(require("ethereumjs-util"));
+var import_crypto = require("crypto");
+function upload(message, userManagementClient) {
+  return __async(this, null, function* () {
+    let secret;
+    let publicKeyUint8Array;
+    while (true) {
+      try {
+        secret = (0, import_crypto.randomBytes)(32).toString("hex");
+        publicKeyUint8Array = eutil.privateToPublic(import_buffer.Buffer.from(secret, "hex"));
+        break;
+      } catch (e) {
+        continue;
+      }
+    }
+    const pubkey = import_buffer.Buffer.from(publicKeyUint8Array);
+    const data = (0, import_ecies.Encrypt)(pubkey, import_buffer.Buffer.from(message, "ucs2")).toString("base64");
+    const {
+      data: { id }
+    } = yield userManagementClient.tempTrasmissionInit(data);
+    return encodeURIComponent(id + "|" + secret);
+  });
+}
+function retrieve(uriEncodedMessage, userManagementClient) {
+  return __async(this, null, function* () {
+    const [id, secret] = decodeURIComponent(uriEncodedMessage).split("|");
+    const response = yield userManagementClient.tempTrasmission(id);
+    const data = response.data.message;
+    const buf = import_buffer.Buffer.from(data, "base64");
+    const res = import_buffer.Buffer.from((0, import_ecies.Decrypt)(import_buffer.Buffer.from(secret, "hex"), buf).buffer).toString("ucs2");
+    return res;
+  });
+}
+
 // src/types/config.ts
 var Environment = /* @__PURE__ */ ((Environment2) => {
   Environment2["DEV"] = "DEV";
@@ -307,6 +454,49 @@ var EnabledFlow = /* @__PURE__ */ ((EnabledFlow2) => {
   return EnabledFlow2;
 })(EnabledFlow || {});
 
+// src/types/coreApi.ts
+var PARA_CORE_METHODS = [
+  "signUpOrLogIn",
+  "verifyNewAccount",
+  "waitForLogin",
+  "waitForSignup",
+  "waitForWalletCreation",
+  "verifyOAuth",
+  "verifyFarcaster",
+  "verifyTelegram",
+  "resendVerificationCode",
+  "loginExternalWallet",
+  "verifyExternalWallet",
+  "setup2fa",
+  "enable2fa",
+  "verify2fa",
+  "logout",
+  "clearStorage",
+  "isSessionActive",
+  "isFullyLoggedIn",
+  "refreshSession",
+  "keepSessionAlive",
+  "exportSession",
+  "importSession",
+  "getVerificationToken",
+  "fetchWallets",
+  "createWallet",
+  "createWalletPerType",
+  "getPregenWallets",
+  "hasPregenWallet",
+  "updatePregenWalletIdentifier",
+  "createPregenWallet",
+  "createPregenWalletPerType",
+  "claimPregenWallets",
+  "distributeNewWalletShare",
+  "getUserShare",
+  "setUserShare",
+  "refreshShare",
+  "signMessage",
+  "signTransaction",
+  "initiateOnRampTransaction"
+];
+
 // src/types/wallet.ts
 var PregenIdentifierType = /* @__PURE__ */ ((PregenIdentifierType2) => {
   PregenIdentifierType2["EMAIL"] = "EMAIL";
@@ -335,13 +525,13 @@ var PopupType = /* @__PURE__ */ ((PopupType2) => {
 })(PopupType || {});
 
 // src/types/recovery.ts
-var RecoveryStatus = /* @__PURE__ */ ((RecoveryStatus3) => {
-  RecoveryStatus3["INITIATED"] = "INITIATED";
-  RecoveryStatus3["READY"] = "READY";
-  RecoveryStatus3["EXPIRED"] = "EXPIRED";
-  RecoveryStatus3["FINISHED"] = "FINISHED";
-  RecoveryStatus3["CANCELLED"] = "CANCELLED";
-  return RecoveryStatus3;
+var RecoveryStatus = /* @__PURE__ */ ((RecoveryStatus2) => {
+  RecoveryStatus2["INITIATED"] = "INITIATED";
+  RecoveryStatus2["READY"] = "READY";
+  RecoveryStatus2["EXPIRED"] = "EXPIRED";
+  RecoveryStatus2["FINISHED"] = "FINISHED";
+  RecoveryStatus2["CANCELLED"] = "CANCELLED";
+  return RecoveryStatus2;
 })(RecoveryStatus || {});
 
 // src/types/events.ts
@@ -429,6 +619,15 @@ function constructUrl({
   });
   return url.toString();
 }
+function shortenUrl(ctx, url) {
+  return __async(this, null, function* () {
+    const compressedUrl = yield upload(url, ctx.client);
+    return constructUrl({
+      base: getPortalBaseURL(ctx),
+      path: `/short/${compressedUrl}`
+    });
+  });
+}
 
 // src/utils/wallet.ts
 var import_user_management_client = require("@getpara/user-management-client");
@@ -453,7 +652,7 @@ function isPregenIdentifierMatch(a, b, type) {
     case "EMAIL":
       return a.toLowerCase() === b.toLowerCase();
     case "PHONE":
-      return stringToPhoneNumber(a) === stringToPhoneNumber(b);
+      return formatPhoneNumber(a) === formatPhoneNumber(b);
     case "CUSTOM_ID":
       return a === b;
     default:
@@ -503,6 +702,9 @@ function migrateWallet(obj) {
   }
   return obj;
 }
+function supportedWalletTypesEq(a, b) {
+  return a.length === b.length && a.every(({ type, optional }, index) => b[index].type === type && b[index].optional === optional);
+}
 
 // src/cryptography/utils.ts
 var rsa = import_node_forge.default.pki.rsa;
@@ -817,7 +1019,7 @@ function initClient({
 }) {
   return new import_user_management_client2.default({
     userManagementHost: getBaseUrl(env),
-    version: ["DEV" /* DEV */, "SANDBOX" /* SANDBOX */].includes(env) ? "dev" : version,
+    version: ["DEV" /* DEV */, "SANDBOX" /* SANDBOX */].includes(env) ? "dev-v2" : version,
     apiKey,
     partnerId,
     opts: { useFetchAdapter },
@@ -865,8 +1067,8 @@ var import_user_management_client4 = require("@getpara/user-management-client");
 var import_user_management_client3 = require("@getpara/user-management-client");
 
 // src/shares/KeyContainer.ts
-var import_ecies = require("@celo/utils/lib/ecies.js");
-var eutil = __toESM(require("ethereumjs-util"));
+var import_ecies2 = require("@celo/utils/lib/ecies.js");
+var eutil2 = __toESM(require("ethereumjs-util"));
 var forge2 = __toESM(require("node-forge"));
 var KeyContainer = class _KeyContainer {
   constructor(walletId, keyshare, address) {
@@ -886,7 +1088,7 @@ var KeyContainer = class _KeyContainer {
     }
   }
   getPublicEncryptionKey() {
-    return Buffer.from(eutil.privateToPublic(Buffer.from(this.backupDecryptionKey, "hex")));
+    return Buffer.from(eutil2.privateToPublic(Buffer.from(this.backupDecryptionKey, "hex")));
   }
   getPublicEncryptionKeyHex() {
     return this.getPublicEncryptionKey().toString("hex");
@@ -894,7 +1096,7 @@ var KeyContainer = class _KeyContainer {
   encryptForSelf(backup) {
     try {
       const pubkey = this.getPublicEncryptionKey();
-      const data = (0, import_ecies.Encrypt)(pubkey, Buffer.from(backup, "ucs2")).toString("base64");
+      const data = (0, import_ecies2.Encrypt)(pubkey, Buffer.from(backup, "ucs2")).toString("base64");
       return data;
     } catch (error) {
       throw Error("Error encrypting backup");
@@ -902,7 +1104,7 @@ var KeyContainer = class _KeyContainer {
   }
   static encryptWithPublicKey(publicKey, backup) {
     try {
-      const data = (0, import_ecies.Encrypt)(publicKey, Buffer.from(backup, "ucs2")).toString("base64");
+      const data = (0, import_ecies2.Encrypt)(publicKey, Buffer.from(backup, "ucs2")).toString("base64");
       return data;
     } catch (error) {
       throw Error("Error encrypting backup");
@@ -911,7 +1113,7 @@ var KeyContainer = class _KeyContainer {
   decrypt(encryptedBackup) {
     try {
       const buf = Buffer.from(encryptedBackup, "base64");
-      const data = (0, import_ecies.Decrypt)(Buffer.from(this.backupDecryptionKey, "hex"), buf);
+      const data = (0, import_ecies2.Decrypt)(Buffer.from(this.backupDecryptionKey, "hex"), buf);
       return Buffer.from(data.buffer).toString("ucs2");
     } catch (error) {
       throw Error("Error decrypting backup");
@@ -1043,43 +1245,6 @@ function distributeNewShare(_0) {
   });
 }
 
-// src/transmission/transmissionUtils.ts
-var import_ecies2 = require("@celo/utils/lib/ecies.js");
-var import_buffer = require("buffer");
-var eutil2 = __toESM(require("ethereumjs-util"));
-var import_crypto = require("crypto");
-function upload(message, userManagementClient) {
-  return __async(this, null, function* () {
-    let secret;
-    let publicKeyUint8Array;
-    while (true) {
-      try {
-        secret = (0, import_crypto.randomBytes)(32).toString("hex");
-        publicKeyUint8Array = eutil2.privateToPublic(import_buffer.Buffer.from(secret, "hex"));
-        break;
-      } catch (e) {
-        continue;
-      }
-    }
-    const pubkey = import_buffer.Buffer.from(publicKeyUint8Array);
-    const data = (0, import_ecies2.Encrypt)(pubkey, import_buffer.Buffer.from(message, "ucs2")).toString("base64");
-    const {
-      data: { id }
-    } = yield userManagementClient.tempTrasmissionInit(data);
-    return encodeURIComponent(id + "|" + secret);
-  });
-}
-function retrieve(uriEncodedMessage, userManagementClient) {
-  return __async(this, null, function* () {
-    const [id, secret] = decodeURIComponent(uriEncodedMessage).split("|");
-    const response = yield userManagementClient.tempTrasmission(id);
-    const data = response.data.message;
-    const buf = import_buffer.Buffer.from(data, "base64");
-    const res = import_buffer.Buffer.from((0, import_ecies2.Decrypt)(import_buffer.Buffer.from(secret, "hex"), buf).buffer).toString("ucs2");
-    return res;
-  });
-}
-
 // src/errors.ts
 var TransactionReviewError = class extends Error {
   constructor(transactionReviewUrl) {
@@ -1103,68 +1268,6 @@ var TransactionReviewTimeout = class extends Error {
   }
 };
 
-// src/constants.ts
-var PARA_CORE_VERSION = '1.7.1';
-var PREFIX = "@CAPSULE/";
-var LOCAL_STORAGE_EMAIL = `${PREFIX}e-mail`;
-var LOCAL_STORAGE_PHONE = `${PREFIX}phone`;
-var LOCAL_STORAGE_COUNTRY_CODE = `${PREFIX}countryCode`;
-var LOCAL_STORAGE_FARCASTER_USERNAME = `${PREFIX}farcasterUsername`;
-var LOCAL_STORAGE_TELEGRAM_USER_ID = `${PREFIX}telegramUserId`;
-var LOCAL_STORAGE_EXTERNAL_WALLET_USER_ID = `${PREFIX}externalWalletUserId`;
-var LOCAL_STORAGE_USER_ID = `${PREFIX}userId`;
-var LOCAL_STORAGE_ED25519_WALLETS = `${PREFIX}ed25519Wallets`;
-var LOCAL_STORAGE_WALLETS = `${PREFIX}wallets`;
-var LOCAL_STORAGE_EXTERNAL_WALLETS = `${PREFIX}externalWallets`;
-var LOCAL_STORAGE_CURRENT_WALLET_IDS = `${PREFIX}currentWalletIds`;
-var LOCAL_STORAGE_SESSION_COOKIE = `${PREFIX}sessionCookie`;
-var SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR = `${PREFIX}loginEncryptionKeyPair`;
-var POLLING_INTERVAL_MS = 2e3;
-var SHORT_POLLING_INTERVAL_MS = 1e3;
-
-// src/utils/listeners.ts
-function storageListener(e) {
-  if (!e.url.includes(window.location.origin)) {
-    return;
-  }
-  if (e.key === LOCAL_STORAGE_EXTERNAL_WALLETS) {
-    this.updateExternalWalletsFromStorage();
-  }
-  if (e.key === SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR) {
-    this.updateLoginEncryptionKeyPairFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_SESSION_COOKIE) {
-    this.updateSessionCookieFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_CURRENT_WALLET_IDS) {
-    this.updateWalletIdsFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_WALLETS || e.key === LOCAL_STORAGE_ED25519_WALLETS) {
-    this.updateWalletsFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_EMAIL) {
-    this.updateEmailFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_COUNTRY_CODE) {
-    this.updateCountryCodeFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_PHONE) {
-    this.updatePhoneFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_USER_ID) {
-    this.updateUserIdFromStorage();
-  }
-  if (e.key === LOCAL_STORAGE_TELEGRAM_USER_ID) {
-    this.updateTelegramUserIdFromStorage();
-  }
-}
-function setupListeners() {
-  if (typeof window !== "undefined" && window.addEventListener && window.location) {
-    window.removeEventListener("storage", storageListener.bind(this));
-    window.addEventListener("storage", storageListener.bind(this));
-  }
-}
-
 // src/ParaCore.ts
 if (typeof global !== "undefined") {
   global.Buffer = global.Buffer || import_buffer2.Buffer;
@@ -1176,7 +1279,7 @@ if (typeof global !== "undefined") {
   self.global = self.global || self;
 }
 var { pki, jsbn } = import_node_forge2.default;
-var _supportedWalletTypes, _supportedWalletTypesOpt;
+var _authInfo, _partner, _ParaCore_instances, assertPartner_fn, toAuthInfo_fn, setAuthInfo_fn, getPartner_fn, prepareAuthState_fn, prepareLogin_fn, prepareLoginState_fn, prepareSignUpState_fn;
 var _ParaCore = class _ParaCore {
   /**
    * Constructs a new `ParaCore` instance.
@@ -1186,6 +1289,10 @@ var _ParaCore = class _ParaCore {
    * @returns - A new ParaCore instance.
    */
   constructor(env, apiKey, opts) {
+    __privateAdd(this, _ParaCore_instances);
+    __privateAdd(this, _authInfo);
+    this.isNativePasskey = false;
+    __privateAdd(this, _partner);
     this.isAwaitingAccountCreation = false;
     this.isAwaitingLogin = false;
     this.isAwaitingFarcaster = false;
@@ -1194,14 +1301,19 @@ var _ParaCore = class _ParaCore {
      * The IDs of the currently active wallets, for each supported wallet type. Any signer integrations will default to the first viable wallet ID in this dictionary.
      */
     this.currentWalletIds = {};
-    __privateAdd(this, _supportedWalletTypes);
-    __privateAdd(this, _supportedWalletTypesOpt);
+    /**
+     * Wallets associated with the `ParaCore` instance.
+     */
+    this.externalWallets = {};
     this.localStorageGetItem = (key) => {
       return this.platformUtils.localStorage.get(key);
     };
     this.localStorageSetItem = (key, value) => {
       return this.platformUtils.localStorage.set(key, value);
     };
+    this.localStorageRemoveItem = (key) => {
+      return this.platformUtils.localStorage.removeItem(key);
+    };
     this.sessionStorageGetItem = (key) => {
       return this.platformUtils.sessionStorage.get(key);
     };
@@ -1227,32 +1339,35 @@ var _ParaCore = class _ParaCore {
       }
     });
     this.initializeFromStorage = () => {
-      this.updateEmailFromStorage();
-      this.updateCountryCodeFromStorage();
-      this.updatePhoneFromStorage();
+      this.updateExternalWalletsFromStorage();
+      this.updateAuthInfoFromStorage();
       this.updateUserIdFromStorage();
-      this.updateTelegramUserIdFromStorage();
       this.updateWalletsFromStorage();
       this.updateWalletIdsFromStorage();
       this.updateSessionCookieFromStorage();
       this.updateLoginEncryptionKeyPairFromStorage();
-      this.updateExternalWalletsFromStorage();
     };
-    this.updateTelegramUserIdFromStorage = () => {
-      this.telegramUserId = this.localStorageGetItem(LOCAL_STORAGE_TELEGRAM_USER_ID) || void 0;
+    this.updateAuthInfoFromStorage = () => {
+      var _a;
+      const storageAuthInfo = this.localStorageGetItem(LOCAL_STORAGE_AUTH_INFO) || void 0;
+      let authInfo = jsonParse(storageAuthInfo);
+      if (!authInfo) {
+        const authParams = {
+          email: this.localStorageGetItem(LOCAL_STORAGE_EMAIL) || void 0,
+          phone: this.localStorageGetItem(LOCAL_STORAGE_PHONE) || void 0,
+          countryCode: this.localStorageGetItem(LOCAL_STORAGE_COUNTRY_CODE) || void 0,
+          farcasterUsername: this.localStorageGetItem(LOCAL_STORAGE_FARCASTER_USERNAME) || void 0,
+          telegramUserId: this.localStorageGetItem(LOCAL_STORAGE_TELEGRAM_USER_ID) || void 0,
+          // Using id here since we store the bech32 address for cosmos in the address field of the wallet
+          externalWalletAddress: ((_a = this.externalWalletWithParaAuth) == null ? void 0 : _a.id) || void 0
+        };
+        authInfo = __privateMethod(this, _ParaCore_instances, toAuthInfo_fn).call(this, authParams);
+      }
+      __privateSet(this, _authInfo, authInfo);
     };
     this.updateUserIdFromStorage = () => {
       this.userId = this.localStorageGetItem(LOCAL_STORAGE_USER_ID) || void 0;
     };
-    this.updatePhoneFromStorage = () => {
-      this.phone = this.localStorageGetItem(LOCAL_STORAGE_PHONE) || void 0;
-    };
-    this.updateCountryCodeFromStorage = () => {
-      this.countryCode = this.localStorageGetItem(LOCAL_STORAGE_COUNTRY_CODE) || void 0;
-    };
-    this.updateEmailFromStorage = () => {
-      this.email = this.localStorageGetItem(LOCAL_STORAGE_EMAIL) || void 0;
-    };
     this.updateWalletsFromStorage = () => __async(this, null, function* () {
       var _a;
       const _currentWalletIds = (_a = this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS)) != null ? _a : void 0;
@@ -1282,7 +1397,7 @@ var _ParaCore = class _ParaCore {
     this.updateWalletIdsFromStorage = () => {
       var _a;
       const _currentWalletIds = (_a = this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS)) != null ? _a : void 0;
-      const currentWalletIds = [void 0, null, "undefined"].includes(_currentWalletIds) ? {} : (() => {
+      const currentWalletIds = [void 0, null, "undefined", "null"].includes(_currentWalletIds) ? {} : (() => {
         const fromJson = JSON.parse(_currentWalletIds);
         return Array.isArray(fromJson) ? Object.keys(import_user_management_client5.WalletType).reduce((acc, type) => {
           const wallet = Object.values(this.wallets).find(
@@ -1319,6 +1434,9 @@ var _ParaCore = class _ParaCore {
      * @deprecated alias for `createWalletPerType`
      **/
     this.createWalletPerMissingType = this.createWalletPerType;
+    if (!apiKey) {
+      throw new Error("A Para API key is required.");
+    }
     if (!opts) opts = {};
     let isE2E = false;
     if (env === "E2E") {
@@ -1376,86 +1494,101 @@ var _ParaCore = class _ParaCore {
       useDKLS: opts.useDKLSForCreation || !opts.offloadMPCComputationURL,
       disableWebSockets: !!opts.disableWebSockets,
       wasmOverride: opts.wasmOverride,
-      cosmosPrefix: this.cosmosPrefix,
       isE2E
     };
     if (opts.offloadMPCComputationURL) {
       this.ctx.mpcComputationClient = initClient2(opts.offloadMPCComputationURL, opts.disableWorkers);
     }
-    try {
-      __privateSet(this, _supportedWalletTypes, opts.supportedWalletTypes ? (() => {
-        if (Object.values(opts.supportedWalletTypes).every(
-          (config) => !!config && typeof config === "object" && config.optional
-        )) {
-          throw new Error("at least one wallet type must be non-optional");
-        }
-        if (!Object.keys(opts.supportedWalletTypes).every((type) => Object.values(import_user_management_client5.WalletType).includes(type))) {
-          throw new Error("unsupported wallet type");
-        }
-        __privateSet(this, _supportedWalletTypesOpt, opts.supportedWalletTypes);
-        return Object.entries(opts.supportedWalletTypes).reduce((acc, [key, value]) => {
-          var _a;
-          if (!value) {
-            return acc;
-          }
-          if (key === import_user_management_client5.WalletType.COSMOS && typeof value === "object" && !!value.prefix) {
-            this.cosmosPrefix = value.prefix;
-          }
-          return [...acc, { type: key, optional: value === true ? false : (_a = value.optional) != null ? _a : false }];
-        }, []);
-      })() : void 0);
-    } catch (e) {
-      __privateSet(this, _supportedWalletTypes, void 0);
-    }
     if (!this.platformUtils.isSyncStorage || opts.useStorageOverrides) {
       return;
     }
     this.initializeFromStorage();
     setupListeners.bind(this)();
+    autoBind(this);
   }
-  get isEmail() {
-    return !!this.email && !this.phone && !this.countryCode && !this.farcasterUsername && !this.telegramUserId && !this.externalWalletWithParaAuth;
+  get authInfo() {
+    return __privateGet(this, _authInfo);
   }
-  get isPhone() {
-    return !!this.phone && !!this.countryCode && !this.email && !this.farcasterUsername && !this.telegramUserId && !this.externalWalletWithParaAuth;
+  get email() {
+    var _a;
+    return (0, import_user_management_client5.isEmail)((_a = __privateGet(this, _authInfo)) == null ? void 0 : _a.auth) ? __privateGet(this, _authInfo).auth.email : void 0;
   }
-  get isFarcaster() {
-    return !!this.farcasterUsername && !this.email && !this.phone && !this.countryCode && !this.telegramUserId && !this.externalWalletWithParaAuth;
+  get phone() {
+    var _a;
+    return (0, import_user_management_client5.isPhone)((_a = __privateGet(this, _authInfo)) == null ? void 0 : _a.auth) ? __privateGet(this, _authInfo).auth.phone : void 0;
   }
-  get isTelegram() {
-    return !!this.telegramUserId && !this.email && !this.phone && !this.countryCode && !this.farcasterUsername && !this.externalWalletWithParaAuth;
+  get farcasterUsername() {
+    var _a;
+    return (0, import_user_management_client5.isFarcaster)((_a = __privateGet(this, _authInfo)) == null ? void 0 : _a.auth) ? __privateGet(this, _authInfo).auth.farcasterUsername : void 0;
+  }
+  get telegramUserId() {
+    var _a;
+    return (0, import_user_management_client5.isTelegram)((_a = __privateGet(this, _authInfo)) == null ? void 0 : _a.auth) ? __privateGet(this, _authInfo).auth.telegramUserId : void 0;
   }
   get externalWalletWithParaAuth() {
     const externalWallets = Object.values(this.externalWallets);
     return externalWallets.find((w) => w.isExternalWithParaAuth);
   }
-  get isExternalWalletAuth() {
-    return !!this.externalWalletWithParaAuth && !this.email && !this.phone && !this.countryCode && !this.farcasterUsername && !this.telegramUserId;
+  get externalWalletConnectionType() {
+    if (this.isExternalWalletAuth) {
+      return "AUTHENTICATED";
+    } else if (!!Object.keys(this.externalWallets).length) {
+      return "CONNECTION_ONLY";
+    }
+    return "NONE";
   }
-  get currentWalletIdsArray() {
-    return this.supportedWalletTypes.reduce((acc, { type }) => {
-      var _a;
-      return [
-        ...acc,
-        ...((_a = this.currentWalletIds[type]) != null ? _a : []).map((id) => {
-          return [id, type];
-        })
-      ];
-    }, []);
+  get isEmail() {
+    var _a;
+    return (0, import_user_management_client5.isEmail)((_a = this.authInfo) == null ? void 0 : _a.auth);
   }
-  get currentWalletIdsUnique() {
-    return [...new Set(Object.values(this.currentWalletIds).flat())];
+  get isPhone() {
+    var _a;
+    return (0, import_user_management_client5.isPhone)((_a = this.authInfo) == null ? void 0 : _a.auth);
   }
-  /**
-   * A map of pre-generated wallet identifiers that can be claimed in the current instance.
-   */
-  get pregenIds() {
-    return __spreadValues({}, Object.values(this.wallets).filter((wallet) => !this.userId || this.isPregenWalletClaimable(wallet)).reduce((acc, wallet) => {
-      var _a, _b;
-      if (((_a = acc[wallet.pregenIdentifierType]) != null ? _a : []).includes(wallet.pregenIdentifier)) {
-        return acc;
-      }
-      return __spreadProps(__spreadValues({}, acc), {
+  get isFarcaster() {
+    var _a;
+    return (0, import_user_management_client5.isFarcaster)((_a = this.authInfo) == null ? void 0 : _a.auth);
+  }
+  get isTelegram() {
+    var _a;
+    return (0, import_user_management_client5.isTelegram)((_a = this.authInfo) == null ? void 0 : _a.auth);
+  }
+  get isExternalWalletAuth() {
+    var _a;
+    return (0, import_user_management_client5.isExternalWallet)((_a = __privateGet(this, _authInfo)) == null ? void 0 : _a.auth);
+  }
+  get partnerId() {
+    var _a;
+    return (_a = __privateGet(this, _partner)) == null ? void 0 : _a.id;
+  }
+  get currentWalletIdsArray() {
+    var _a, _b;
+    return ((_b = (_a = __privateGet(this, _partner)) == null ? void 0 : _a.supportedWalletTypes) != null ? _b : Object.keys(this.currentWalletIds).map((type) => ({ type }))).reduce(
+      (acc, { type }) => {
+        var _a2;
+        return [
+          ...acc,
+          ...((_a2 = this.currentWalletIds[type]) != null ? _a2 : []).map((id) => {
+            return [id, type];
+          })
+        ];
+      },
+      []
+    );
+  }
+  get currentWalletIdsUnique() {
+    return [...new Set(Object.values(this.currentWalletIds).flat())];
+  }
+  /**
+   * A map of pre-generated wallet identifiers that can be claimed in the current instance.
+   */
+  get pregenIds() {
+    return __spreadValues({}, Object.values(this.wallets).filter((wallet) => !this.userId || this.isPregenWalletClaimable(wallet)).reduce((acc, wallet) => {
+      var _a, _b;
+      if (((_a = acc[wallet.pregenIdentifierType]) != null ? _a : []).includes(wallet.pregenIdentifier)) {
+        return acc;
+      }
+      return __spreadProps(__spreadValues({}, acc), {
         [wallet.pregenIdentifierType]: [
           .../* @__PURE__ */ new Set([...(_b = acc[wallet.pregenIdentifierType]) != null ? _b : [], wallet.pregenIdentifier])
         ]
@@ -1469,11 +1602,16 @@ var _ParaCore = class _ParaCore {
     return this.currentWalletIdsArray.length > 1;
   }
   get supportedWalletTypes() {
+    var _a, _b;
+    return (_b = (_a = __privateGet(this, _partner)) == null ? void 0 : _a.supportedWalletTypes) != null ? _b : [];
+  }
+  get cosmosPrefix() {
     var _a;
-    return (_a = __privateGet(this, _supportedWalletTypes)) != null ? _a : [];
+    return (_a = __privateGet(this, _partner)) == null ? void 0 : _a.cosmosPrefix;
   }
   get isWalletTypeEnabled() {
-    return this.supportedWalletTypes.reduce((acc, { type }) => {
+    var _a;
+    return (((_a = __privateGet(this, _partner)) == null ? void 0 : _a.supportedWalletTypes) || []).reduce((acc, { type }) => {
       return __spreadProps(__spreadValues({}, acc), { [type]: true });
     }, {});
   }
@@ -1522,7 +1660,7 @@ var _ParaCore = class _ParaCore {
   }
   isWalletSupported(wallet) {
     var _a, _b;
-    return !__privateGet(this, _supportedWalletTypes) || isWalletSupported((_b = (_a = this.supportedWalletTypes) == null ? void 0 : _a.map(({ type }) => type)) != null ? _b : [], wallet);
+    return !((_a = __privateGet(this, _partner)) == null ? void 0 : _a.supportedWalletTypes) || isWalletSupported((_b = __privateGet(this, _partner).supportedWalletTypes.map(({ type }) => type)) != null ? _b : [], wallet);
   }
   isWalletOwned(wallet) {
     return this.isWalletSupported(wallet) && !(wallet == null ? void 0 : wallet.pregenIdentifier) && !(wallet == null ? void 0 : wallet.pregenIdentifierType) && !!this.userId && (wallet == null ? void 0 : wallet.userId) === this.userId;
@@ -1538,7 +1676,7 @@ var _ParaCore = class _ParaCore {
     ));
   }
   isWalletUsable(walletId, { type: types, scheme: schemes, forbidPregen = false } = {}, throwError = false) {
-    var _a;
+    var _a, _b;
     let error;
     if ((_a = this.externalWallets) == null ? void 0 : _a[walletId]) {
       return true;
@@ -1553,10 +1691,10 @@ var _ParaCore = class _ParaCore {
       } else if (!isOwned && !isUnclaimed) {
         error = `wallet with id ${wallet == null ? void 0 : wallet.id} is not owned by the current user`;
       } else if (!this.isWalletSupported(wallet)) {
-        error = `wallet with id ${wallet == null ? void 0 : wallet.id} and type ${wallet == null ? void 0 : wallet.type} is not supported, supported types are: ${this.supportedWalletTypes.map(({ type }) => type).join(", ")}`;
+        error = `wallet with id ${wallet.id} and type ${wallet.type} is not supported, supported types are: ${(((_b = __privateGet(this, _partner)) == null ? void 0 : _b.supportedWalletTypes) || []).map(({ type }) => type).join(", ")}`;
       } else if (types && (!getEquivalentTypes(types).includes(wallet == null ? void 0 : wallet.type) || isOwned && !types.some((type) => {
-        var _a2, _b;
-        return (_b = (_a2 = this.currentWalletIds) == null ? void 0 : _a2[type]) == null ? void 0 : _b.includes(walletId);
+        var _a2, _b2;
+        return (_b2 = (_a2 = this.currentWalletIds) == null ? void 0 : _a2[type]) == null ? void 0 : _b2.includes(walletId);
       }))) {
         error = `wallet with id ${wallet == null ? void 0 : wallet.id} and type ${wallet == null ? void 0 : wallet.type} cannot be selected`;
       } else if (schemes && !schemes.includes(wallet == null ? void 0 : wallet.scheme)) {
@@ -1580,10 +1718,10 @@ var _ParaCore = class _ParaCore {
    * @returns the formatted address
    */
   getDisplayAddress(walletId, options = {}) {
-    var _a;
+    var _a, _b, _c, _d;
     if (this.externalWallets[walletId]) {
       const wallet2 = this.externalWallets[walletId];
-      return options.truncate ? truncateAddress(wallet2.address, wallet2.type, { prefix: this.cosmosPrefix }) : wallet2.address;
+      return options.truncate ? truncateAddress(wallet2.address, wallet2.type, { prefix: (_a = __privateGet(this, _partner)) == null ? void 0 : _a.cosmosPrefix }) : wallet2.address;
     }
     const wallet = this.findWallet(walletId, options.addressType);
     if (!wallet) {
@@ -1592,13 +1730,13 @@ var _ParaCore = class _ParaCore {
     let str;
     switch (wallet.type) {
       case import_user_management_client5.WalletType.COSMOS:
-        str = getCosmosAddress(wallet.publicKey, (_a = this.cosmosPrefix) != null ? _a : "cosmos");
+        str = getCosmosAddress(wallet.publicKey, (_c = (_b = __privateGet(this, _partner)) == null ? void 0 : _b.cosmosPrefix) != null ? _c : "cosmos");
         break;
       default:
         str = wallet.address;
         break;
     }
-    return options.truncate ? truncateAddress(str, wallet.type, { prefix: this.cosmosPrefix }) : str;
+    return options.truncate ? truncateAddress(str, wallet.type, { prefix: (_d = __privateGet(this, _partner)) == null ? void 0 : _d.cosmosPrefix }) : str;
   }
   /**
    * Returns a unique hash for a wallet suitable for use as an identicon seed.
@@ -1623,8 +1761,25 @@ var _ParaCore = class _ParaCore {
   }
   constructPortalUrl(_0) {
     return __async(this, arguments, function* (type, opts = {}) {
-      var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n;
-      const base = type === "onRamp" ? getPortalBaseURL(this.ctx) : yield this.getPortalURL(opts.partnerId);
+      var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m;
+      const [isCreate, isLogin, isOnRamp] = [
+        ["createAuth", "createPassword"].includes(type),
+        ["loginAuth", "loginPassword"].includes(type),
+        type === "onRamp"
+      ];
+      let auth;
+      if (isCreate || isLogin) {
+        auth = this.assertIsAuthSet().auth;
+      }
+      let sessionId = opts.sessionId;
+      if ((isLogin || isOnRamp) && !sessionId) {
+        const session = yield this.touchSession(true);
+        sessionId = session.sessionId;
+      }
+      if (!this.loginEncryptionKeyPair) {
+        yield this.setLoginEncryptionKeyPair();
+      }
+      const base = type === "onRamp" ? getPortalBaseURL(this.ctx) : yield this.getPortalURL();
       let path;
       switch (type) {
         case "createPassword": {
@@ -1655,61 +1810,50 @@ var _ParaCore = class _ParaCore {
           throw new Error(`invalid URL type ${type}`);
         }
       }
-      const [isCreate, isLogin, isOnRamp] = [
-        ["createAuth", "createPassword"].includes(type),
-        ["loginAuth", "loginPassword"].includes(type),
-        type === "onRamp"
-      ];
-      const partner = opts.partnerId ? (_a = (yield this.ctx.client.getPartner(opts.partnerId)).data) == null ? void 0 : _a.partner : void 0;
+      const partner = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      const thisDevice = (_a = opts.thisDevice) != null ? _a : {
+        encryptionKey: getPublicKeyHex(this.loginEncryptionKeyPair),
+        sessionId
+      };
       const params = __spreadValues(__spreadValues(__spreadValues(__spreadValues({
         apiKey: this.ctx.apiKey,
-        partnerId: opts.partnerId,
-        portalFont: ((_b = opts.theme) == null ? void 0 : _b.font) || (partner == null ? void 0 : partner.font) || ((_c = this.portalTheme) == null ? void 0 : _c.font),
-        portalBorderRadius: ((_d = opts.theme) == null ? void 0 : _d.borderRadius) || ((_e = this.portalTheme) == null ? void 0 : _e.borderRadius),
-        portalThemeMode: ((_f = opts.theme) == null ? void 0 : _f.mode) || (partner == null ? void 0 : partner.themeMode) || ((_g = this.portalTheme) == null ? void 0 : _g.mode),
-        portalAccentColor: ((_h = opts.theme) == null ? void 0 : _h.accentColor) || (partner == null ? void 0 : partner.accentColor) || ((_i = this.portalTheme) == null ? void 0 : _i.accentColor),
-        portalForegroundColor: ((_j = opts.theme) == null ? void 0 : _j.foregroundColor) || (partner == null ? void 0 : partner.foregroundColor) || ((_k = this.portalTheme) == null ? void 0 : _k.foregroundColor),
-        portalBackgroundColor: ((_l = opts.theme) == null ? void 0 : _l.backgroundColor) || (partner == null ? void 0 : partner.backgroundColor) || this.portalBackgroundColor || ((_m = this.portalTheme) == null ? void 0 : _m.backgroundColor),
+        partnerId: partner.id,
+        portalFont: ((_b = opts.portalTheme) == null ? void 0 : _b.font) || (partner == null ? void 0 : partner.font) || ((_c = this.portalTheme) == null ? void 0 : _c.font),
+        portalBorderRadius: ((_d = opts.portalTheme) == null ? void 0 : _d.borderRadius) || ((_e = this.portalTheme) == null ? void 0 : _e.borderRadius),
+        portalThemeMode: ((_f = opts.portalTheme) == null ? void 0 : _f.mode) || (partner == null ? void 0 : partner.themeMode) || ((_g = this.portalTheme) == null ? void 0 : _g.mode),
+        portalAccentColor: ((_h = opts.portalTheme) == null ? void 0 : _h.accentColor) || (partner == null ? void 0 : partner.accentColor) || ((_i = this.portalTheme) == null ? void 0 : _i.accentColor),
+        portalForegroundColor: ((_j = opts.portalTheme) == null ? void 0 : _j.foregroundColor) || (partner == null ? void 0 : partner.foregroundColor) || ((_k = this.portalTheme) == null ? void 0 : _k.foregroundColor),
+        portalBackgroundColor: ((_l = opts.portalTheme) == null ? void 0 : _l.backgroundColor) || (partner == null ? void 0 : partner.backgroundColor) || this.portalBackgroundColor || ((_m = this.portalTheme) == null ? void 0 : _m.backgroundColor),
         portalPrimaryButtonColor: this.portalPrimaryButtonColor,
         portalTextColor: this.portalTextColor,
         portalPrimaryButtonTextColor: this.portalPrimaryButtonTextColor,
-        isForNewDevice: opts.isForNewDevice ? opts.isForNewDevice.toString() : void 0,
-        supportedWalletTypes: __privateGet(this, _supportedWalletTypesOpt) ? JSON.stringify(__privateGet(this, _supportedWalletTypesOpt)) : void 0
-      }, isCreate || isLogin ? __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({}, opts.authType === "email" ? { email: this.email } : {}), opts.authType === "phone" ? { phone: this.phone, countryCode: this.countryCode } : {}), opts.authType === "farcaster" ? { farcasterUsername: this.farcasterUsername } : {}), opts.authType === "telegram" ? { telegramUserId: this.telegramUserId } : {}), opts.authType === "externalWallet" ? {
-        // Using id here since we store the bech32 address for cosmos in the address field of the wallet
-        externalWalletAddress: (_n = this.externalWalletWithParaAuth) == null ? void 0 : _n.id
-      } : {}) : {}), isLogin || isOnRamp ? { sessionId: opts.sessionId } : {}), isLogin ? {
-        encryptionKey: opts.loginEncryptionPublicKey,
-        newDeviceSessionLookupId: opts.newDeviceSessionId,
-        newDeviceEncryptionKey: opts.newDeviceEncryptionKey,
-        pregenIds: JSON.stringify(this.pregenIds),
-        displayName: opts.displayName,
-        pfpUrl: opts.pfpUrl
-      } : {}), opts.params || {});
-      return constructUrl({ base, path, params });
+        isForNewDevice: opts.isForNewDevice ? opts.isForNewDevice.toString() : void 0
+      }, auth && (isCreate || isLogin) ? auth : {}), isOnRamp ? { sessionId } : {}), isLogin ? __spreadProps(__spreadValues({
+        sessionId: thisDevice.sessionId,
+        encryptionKey: thisDevice.encryptionKey
+      }, opts.newDevice ? {
+        newDeviceSessionLookupId: opts.newDevice.sessionId,
+        newDeviceEncryptionKey: opts.newDevice.encryptionKey
+      } : {}), {
+        pregenIds: JSON.stringify(this.pregenIds)
+      }) : {}), opts.params || {});
+      const url = constructUrl({ base, path, params });
+      if (opts.shorten) {
+        return shortenUrl(this.ctx, url);
+      }
+      return url;
     });
   }
   touchSession(regenerate = false) {
     return __async(this, null, function* () {
-      const res = yield this.ctx.client.touchSession(regenerate);
-      this.setSupportedWalletTypes(res.data.supportedWalletTypes, res.data.cosmosPrefix);
-      return res;
+      var _a, _b, _c;
+      const session = yield this.ctx.client.touchSession(regenerate);
+      if (!__privateGet(this, _partner) || ((_a = __privateGet(this, _partner)) == null ? void 0 : _a.id) !== session.partnerId || !supportedWalletTypesEq(((_b = __privateGet(this, _partner)) == null ? void 0 : _b.supportedWalletTypes) || [], session.supportedWalletTypes) || (((_c = __privateGet(this, _partner)) == null ? void 0 : _c.cosmosPrefix) || "cosmos") !== session.cosmosPrefix) {
+        yield __privateMethod(this, _ParaCore_instances, getPartner_fn).call(this, session.partnerId);
+      }
+      return session;
     });
   }
-  setSupportedWalletTypes(supportedWalletTypes, cosmosPrefix) {
-    if (supportedWalletTypes && !__privateGet(this, _supportedWalletTypes)) {
-      __privateSet(this, _supportedWalletTypes, supportedWalletTypes);
-      Object.keys(this.currentWalletIds).forEach((type) => {
-        var _a;
-        if (!((_a = __privateGet(this, _supportedWalletTypes)) == null ? void 0 : _a.some(({ type: supportedType }) => supportedType === type))) {
-          delete this.currentWalletIds[type];
-        }
-      });
-    }
-    if (cosmosPrefix && !this.cosmosPrefix) {
-      this.cosmosPrefix = cosmosPrefix;
-    }
-  }
   getVerificationEmailProps() {
     return {
       brandColor: this.emailPrimaryColor,
@@ -1739,12 +1883,26 @@ var _ParaCore = class _ParaCore {
    */
   init() {
     return __async(this, null, function* () {
-      var _a;
-      this.email = (yield this.localStorageGetItem(LOCAL_STORAGE_EMAIL)) || void 0;
-      this.countryCode = (yield this.localStorageGetItem(LOCAL_STORAGE_COUNTRY_CODE)) || void 0;
-      this.phone = (yield this.localStorageGetItem(LOCAL_STORAGE_PHONE)) || void 0;
+      var _a, _b;
       this.userId = (yield this.localStorageGetItem(LOCAL_STORAGE_USER_ID)) || void 0;
-      this.telegramUserId = (yield this.localStorageGetItem(LOCAL_STORAGE_TELEGRAM_USER_ID)) || void 0;
+      const storageAuthInfo = (yield this.localStorageGetItem(LOCAL_STORAGE_AUTH_INFO)) || void 0;
+      const stringExternalWallets = yield this.localStorageGetItem(LOCAL_STORAGE_EXTERNAL_WALLETS);
+      const _externalWallets = JSON.parse(stringExternalWallets || "{}");
+      yield this.setExternalWallets(_externalWallets);
+      let authInfo = jsonParse(storageAuthInfo);
+      if (!authInfo) {
+        const authParams = {
+          email: (yield this.localStorageGetItem(LOCAL_STORAGE_EMAIL)) || void 0,
+          phone: (yield this.localStorageGetItem(LOCAL_STORAGE_PHONE)) || void 0,
+          countryCode: (yield this.localStorageGetItem(LOCAL_STORAGE_COUNTRY_CODE)) || void 0,
+          farcasterUsername: (yield this.localStorageGetItem(LOCAL_STORAGE_FARCASTER_USERNAME)) || void 0,
+          telegramUserId: (yield this.localStorageGetItem(LOCAL_STORAGE_TELEGRAM_USER_ID)) || void 0,
+          // Using id here since we store the bech32 address for cosmos in the address field of the wallet
+          externalWalletAddress: ((_a = this.externalWalletWithParaAuth) == null ? void 0 : _a.id) || void 0
+        };
+        authInfo = __privateMethod(this, _ParaCore_instances, toAuthInfo_fn).call(this, authParams);
+      }
+      __privateSet(this, _authInfo, authInfo);
       const stringWallets = this.platformUtils.secureStorage ? yield this.platformUtils.secureStorage.get(LOCAL_STORAGE_WALLETS) : yield this.localStorageGetItem(LOCAL_STORAGE_WALLETS);
       const _wallets = JSON.parse(stringWallets || "{}");
       const stringEd25519Wallets = this.platformUtils.secureStorage ? yield this.platformUtils.secureStorage.get(LOCAL_STORAGE_ED25519_WALLETS) : yield this.localStorageGetItem(LOCAL_STORAGE_ED25519_WALLETS);
@@ -1757,7 +1915,7 @@ var _ParaCore = class _ParaCore {
         return __spreadValues(__spreadValues({}, res), !res[key] ? { [key]: migrateWallet(_ed25519Wallets[key]) } : {});
       }, {}));
       yield this.setWallets(wallets);
-      const _currentWalletIds = (_a = yield this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS)) != null ? _a : void 0;
+      const _currentWalletIds = (_b = yield this.localStorageGetItem(LOCAL_STORAGE_CURRENT_WALLET_IDS)) != null ? _b : void 0;
       const currentWalletIds = [void 0, null, "undefined", "null"].includes(_currentWalletIds) ? {} : (() => {
         const fromJson = JSON.parse(_currentWalletIds);
         return Array.isArray(fromJson) ? Object.keys(import_user_management_client5.WalletType).reduce((acc, type) => {
@@ -1776,21 +1934,42 @@ var _ParaCore = class _ParaCore {
       if (loginEncryptionKey && loginEncryptionKey !== "undefined") {
         this.loginEncryptionKeyPair = this.convertEncryptionKeyPair(JSON.parse(loginEncryptionKey));
       }
-      const stringExternalWallets = yield this.localStorageGetItem(LOCAL_STORAGE_EXTERNAL_WALLETS);
-      const _externalWallets = JSON.parse(stringExternalWallets || "{}");
-      yield this.setExternalWallets(_externalWallets);
       setupListeners.bind(this)();
       yield this.touchSession();
     });
   }
+  setAuth(_0) {
+    return __async(this, arguments, function* (auth, { extras = {}, userId } = {}) {
+      const authInfo = __spreadValues(__spreadValues({}, (0, import_user_management_client5.extractAuthInfo)(auth, { isRequired: true })), extras || {});
+      yield __privateMethod(this, _ParaCore_instances, setAuthInfo_fn).call(this, authInfo);
+      if (!!userId) {
+        yield this.setUserId(userId);
+      }
+      return __privateGet(this, _authInfo);
+    });
+  }
+  assertUserId() {
+    if (!this.userId) {
+      throw new Error("no userId is set");
+    }
+    return this.userId;
+  }
+  assertIsAuthSet(allowed) {
+    if (!__privateGet(this, _authInfo)) {
+      throw new Error("auth is not set");
+    }
+    if (allowed && !allowed.includes(__privateGet(this, _authInfo).authType)) {
+      throw new Error(`invalid auth type, expected ${allowed.join(", ")}`);
+    }
+    return __privateGet(this, _authInfo);
+  }
   /**
    * Sets the email associated with the `ParaCore` instance.
    * @param email - Email to set.
    */
   setEmail(email) {
     return __async(this, null, function* () {
-      this.email = email;
-      yield this.localStorageSetItem(LOCAL_STORAGE_EMAIL, email);
+      yield this.setAuth({ email });
     });
   }
   /**
@@ -1799,8 +1978,7 @@ var _ParaCore = class _ParaCore {
    */
   setTelegramUserId(telegramUserId) {
     return __async(this, null, function* () {
-      this.telegramUserId = telegramUserId;
-      yield this.localStorageSetItem(LOCAL_STORAGE_TELEGRAM_USER_ID, telegramUserId);
+      yield this.setAuth({ telegramUserId });
     });
   }
   /**
@@ -1808,12 +1986,9 @@ var _ParaCore = class _ParaCore {
    * @param phone - Phone number to set.
    * @param countryCode - Country Code to set.
    */
-  setPhoneNumber(phone, countryCode) {
+  setPhone(phone, countryCode) {
     return __async(this, null, function* () {
-      this.phone = phone;
-      this.countryCode = countryCode;
-      yield this.localStorageSetItem(LOCAL_STORAGE_PHONE, phone);
-      yield this.localStorageSetItem(LOCAL_STORAGE_COUNTRY_CODE, countryCode);
+      yield this.setAuth({ phone: formatPhoneNumber(phone, countryCode) });
     });
   }
   /**
@@ -1822,8 +1997,7 @@ var _ParaCore = class _ParaCore {
    */
   setFarcasterUsername(farcasterUsername) {
     return __async(this, null, function* () {
-      this.farcasterUsername = farcasterUsername;
-      yield this.localStorageSetItem(LOCAL_STORAGE_FARCASTER_USERNAME, farcasterUsername);
+      yield this.setAuth({ farcasterUsername });
     });
   }
   /**
@@ -1915,22 +2089,12 @@ var _ParaCore = class _ParaCore {
   getEmail() {
     return this.email;
   }
-  /**
-   * Gets the phone object associated with the `ParaCore` instance.
-   * @returns - phone object with phone number and country code associated with the `ParaCore` instance.
-   */
-  getPhone() {
-    return { phone: this.phone, countryCode: this.countryCode };
-  }
   /**
    * Gets the formatted phone number associated with the `ParaCore` instance.
    * @returns - formatted phone number associated with the `ParaCore` instance.
    */
   getPhoneNumber() {
-    if (!this.phone || !this.countryCode) {
-      return void 0;
-    }
-    return normalizePhoneNumber(this.countryCode, this.phone);
+    return this.phone;
   }
   /**
    * Gets the farcaster username associated with the `ParaCore` instance.
@@ -1959,23 +2123,6 @@ var _ParaCore = class _ParaCore {
       dispatchEvent(ParaEvent.WALLETS_CHANGE_EVENT, null);
     });
   }
-  /**
-   * Fetches the most recent OAuth account metadata for the signed-in user.
-   * If applicable, this will include the user's most recent metadata from their Google, Apple, Facebook, X, Discord, Farcaster, or Telegram account, the last time they signed in to your app.
-   * @returns {Promise<AccountMetadata>} the user's account metadata.
-   */
-  getAccountMetadata() {
-    return __async(this, null, function* () {
-      if (!(yield this.isSessionActive()) || !this.userId) {
-        throw new Error("no signed-in user");
-      }
-      const {
-        data: { partnerId }
-      } = yield this.touchSession();
-      const { accountMetadata } = yield this.ctx.client.getAccountMetadata(this.userId, partnerId);
-      return accountMetadata;
-    });
-  }
   /**
    * Validates that a wallet ID is present on the instance, usable, and matches the desired filters.
    * If no ID is passed, this will instead return the first valid, usable wallet ID that matches the filters.
@@ -2029,8 +2176,10 @@ var _ParaCore = class _ParaCore {
   }
   findWallet(idOrAddress, overrideType, filter = {}) {
     var _a, _c, _d;
-    if (!this.isExternalWalletAuth && !idOrAddress && Object.keys(this.externalWallets).length > 0) {
-      return Object.values(this.externalWallets)[0];
+    if (!this.isExternalWalletAuth) {
+      if (!idOrAddress && Object.keys(this.externalWallets).length > 0) {
+        return Object.values(this.externalWallets)[0];
+      }
     }
     if ((_a = this.externalWallets) == null ? void 0 : _a[idOrAddress]) {
       return this.externalWallets[idOrAddress];
@@ -2077,10 +2226,8 @@ var _ParaCore = class _ParaCore {
   }
   assertIsValidWalletType(type, walletTypes) {
     return __async(this, null, function* () {
-      if (!__privateGet(this, _supportedWalletTypes)) {
-        yield this.touchSession();
-      }
-      if (!type || !Object.values(import_user_management_client5.WalletType).includes(type) || !(walletTypes != null ? walletTypes : this.supportedWalletTypes.map(({ type: type2 }) => type2)).includes(type)) {
+      const { supportedWalletTypes } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      if (!type || !Object.values(import_user_management_client5.WalletType).includes(type) || !(walletTypes != null ? walletTypes : supportedWalletTypes.map(({ type: type2 }) => type2)).includes(type)) {
         throw new Error(`wallet type ${type} is not supported`);
       }
       return type;
@@ -2088,33 +2235,29 @@ var _ParaCore = class _ParaCore {
   }
   getMissingTypes() {
     return __async(this, null, function* () {
-      if (!__privateGet(this, _supportedWalletTypes)) {
-        yield this.touchSession();
-      }
-      return this.supportedWalletTypes.filter(
+      const { supportedWalletTypes } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      return supportedWalletTypes.filter(
         ({ type: t, optional }) => !optional && Object.values(this.wallets).every((w) => !this.isWalletOwned(w) || !WalletSchemeTypeMap[w.scheme][t])
       ).map(({ type }) => type);
     });
   }
   getTypesToCreate(types) {
     return __async(this, null, function* () {
-      if (!__privateGet(this, _supportedWalletTypes)) {
-        yield this.touchSession();
-      }
+      const { supportedWalletTypes } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
       return getSchemes(types != null ? types : yield this.getMissingTypes()).map((scheme) => {
         switch (scheme) {
           case import_user_management_client5.WalletScheme.ED25519:
             return import_user_management_client5.WalletType.SOLANA;
           default:
-            return this.supportedWalletTypes.some(({ type, optional }) => type === import_user_management_client5.WalletType.COSMOS && !optional) ? import_user_management_client5.WalletType.COSMOS : import_user_management_client5.WalletType.EVM;
+            return supportedWalletTypes.some(({ type, optional }) => type === import_user_management_client5.WalletType.COSMOS && !optional) ? import_user_management_client5.WalletType.COSMOS : import_user_management_client5.WalletType.EVM;
         }
       });
     });
   }
-  getPartnerURL(partnerId) {
+  getPartnerURL() {
     return __async(this, null, function* () {
-      const res = yield this.ctx.client.getPartner(partnerId);
-      return res.data.partner.portalUrl;
+      const { portalUrl } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      return portalUrl;
     });
   }
   /**
@@ -2122,75 +2265,9 @@ var _ParaCore = class _ParaCore {
    * @param partnerId: string - id of the partner to get the portal URL for
    * @returns - portal URL
    */
-  getPortalURL(partnerId) {
-    return __async(this, null, function* () {
-      return partnerId && (yield this.getPartnerURL(partnerId)) || getPortalBaseURL(this.ctx);
-    });
-  }
-  getWebAuthURLForCreate(_a) {
-    return __async(this, null, function* () {
-      var _b = _a, {
-        webAuthId
-      } = _b, options = __objRest(_b, [
-        "webAuthId"
-      ]);
-      return this.constructPortalUrl("createAuth", __spreadProps(__spreadValues({}, options), { pathId: webAuthId }));
-    });
-  }
-  getPasswordURLForCreate(_c) {
-    return __async(this, null, function* () {
-      var _d = _c, {
-        passwordId
-      } = _d, options = __objRest(_d, [
-        "passwordId"
-      ]);
-      return this.constructPortalUrl("createPassword", __spreadProps(__spreadValues({}, options), {
-        pathId: passwordId
-      }));
-    });
-  }
-  getShortUrl(compressedUrl) {
-    return constructUrl({
-      base: getPortalBaseURL(this.ctx),
-      path: `/short/${compressedUrl}`
-    });
-  }
-  shortenLoginLink(link) {
-    return __async(this, null, function* () {
-      const url = yield upload(link, this.ctx.client);
-      return this.getShortUrl(url);
-    });
-  }
-  /**
-   * Generates a URL for registering a new WebAuth passkey.
-   * @param {GetWebAuthUrlForLoginParams} opts the options object
-   * @returns - the URL for creating a new passkey
-   */
-  getWebAuthURLForLogin(opts) {
-    return __async(this, null, function* () {
-      return this.constructPortalUrl("loginAuth", opts);
-    });
-  }
-  /**
-   * Generates a URL for registering a new user password.
-   * @param {GetWebAuthUrlForLoginParams} opts the options object
-   * @returns - the URL for creating a new password
-   */
-  getPasswordURLForLogin(opts) {
-    return __async(this, null, function* () {
-      return this.constructPortalUrl("loginPassword", opts);
-    });
-  }
-  /**
-   * Generates a URL for registering a new WebAuth passkey for a phone number.
-   * @param {Omit<GetWebAuthUrlForLoginParams, 'authType'>} opts the options object
-   * @returns - web auth url
-   */
-  getWebAuthURLForLoginForPhone(opts) {
+  getPortalURL() {
     return __async(this, null, function* () {
-      return this.constructPortalUrl("loginAuth", __spreadValues({
-        authType: "phone"
-      }, opts));
+      return (yield this.getPartnerURL()) || getPortalBaseURL(this.ctx);
     });
   }
   /**
@@ -2253,1769 +2330,1680 @@ var _ParaCore = class _ParaCore {
     });
   }
   /**
-   * Checks if a user exists for an email address.
-   * @param {Object} opts the options object
-   * @param {string} opts.email the email to check.
-   * @returns true if user exists, false otherwise.
+   * Resend a verification email for the current user.
    */
-  checkIfUserExists(_0) {
-    return __async(this, arguments, function* ({ email }) {
-      const res = yield this.ctx.client.checkUserExists({ email });
-      return res.data.exists;
+  resendVerificationCode() {
+    return __async(this, null, function* () {
+      yield this.ctx.client.resendVerificationCode(__spreadValues({
+        userId: this.userId
+      }, this.getVerificationEmailProps()));
     });
   }
   /**
-   * Checks if a user exists for a phone number.
-   * @param {Object} opts the options object
-   * @param {string} opts.phone - phone number to check.
-   * @param {string} opts.countryCode - the country code.
-   * @returns true if user exists, false otherwise.
+   * Checks if the current session is active.
+   * @returns `true` if active, `false` otherwise
    */
-  checkIfUserExistsByPhone(_0) {
-    return __async(this, arguments, function* ({ phone, countryCode }) {
-      const res = yield this.ctx.client.checkUserExists({ phone, countryCode });
-      return res.data.exists;
+  isSessionActive() {
+    return __async(this, null, function* () {
+      if (this.externalWalletConnectionType === "CONNECTION_ONLY") {
+        return true;
+      }
+      const { isAuthenticated } = yield this.touchSession();
+      return !!isAuthenticated;
     });
   }
   /**
-   * Creates a new user.
-   * @param {Object} opts the options object
-   * @param {string} opts.email the email to use.
-   */
-  createUser(_0) {
-    return __async(this, arguments, function* ({ email }) {
-      this.requireApiKey();
-      yield this.setEmail(email);
-      const { userId } = yield this.ctx.client.createUser(__spreadValues({
-        email: this.email
-      }, this.getVerificationEmailProps()));
-      yield this.setUserId(userId);
+   * Checks if a session is active and a wallet exists.
+   * @returns `true` if active, `false` otherwise
+   **/
+  isFullyLoggedIn() {
+    return __async(this, null, function* () {
+      if (this.externalWalletConnectionType === "CONNECTION_ONLY") {
+        return true;
+      }
+      const isSessionActive = yield this.isSessionActive();
+      return isSessionActive && this.currentWalletIdsArray.length > 0 && this.currentWalletIdsArray.reduce((acc, [id]) => acc && !!this.wallets[id], true);
     });
   }
-  /**
-   * Creates a new user with a phone number.
-   * @param {Object} opts the options object
-   * @param {string} opts.phone - the phone number to use for creating the user.
-   * @param {string} opts.countryCode - the country code to use for creating the user.
-   */
-  createUserByPhone(_0) {
-    return __async(this, arguments, function* ({ phone, countryCode }) {
-      this.requireApiKey();
-      yield this.setPhoneNumber(phone, countryCode);
-      const { userId } = yield this.ctx.client.createUser({
-        phone: this.phone,
-        countryCode: this.countryCode
-      });
-      yield this.setUserId(userId);
+  supportedAuthMethods(auth) {
+    return __async(this, null, function* () {
+      const { supportedAuthMethods } = yield this.ctx.client.getSupportedAuthMethods(auth);
+      const authMethods = /* @__PURE__ */ new Set();
+      for (const type of supportedAuthMethods) {
+        switch (type) {
+          case "PASSWORD":
+            authMethods.add(import_user_management_client5.AuthMethod.PASSWORD);
+            break;
+          case "BIOMETRIC":
+            authMethods.add(import_user_management_client5.AuthMethod.PASSKEY);
+            break;
+        }
+      }
+      return authMethods;
     });
   }
   /**
-   * Logs in or creates a new user using an external wallet address.
-   * @param {Object} opts the options object
-   * @param {string} opts.address the external wallet address to use for identification.
-   * @param {WalletType} opts.type type of external wallet to use for identification.
-   * @param {string} opts.provider the name of the provider for the external wallet.
+   * Get hints associated with the users stored biometrics.
+   * @deprecated
+   * @returns Array containing useragents and AAGuids for stored biometrics
    */
-  externalWalletLogin(wallet) {
+  getUserBiometricLocationHints() {
     return __async(this, null, function* () {
-      this.requireApiKey();
-      const res = yield this.ctx.client.externalWalletLogin({
-        externalAddress: wallet.address,
-        type: wallet.type,
-        externalWalletProvider: wallet.provider,
-        // If the wallet isn't using full Para auth we want to track the login here
-        shouldTrackUser: !wallet.withFullParaAuth
-      });
-      yield this.setExternalWallet(wallet);
-      yield this.setUserId(res.userId);
-      return res;
+      const { auth } = this.assertIsAuthSet();
+      return yield this.ctx.client.getBiometricLocationHints(auth);
     });
   }
   /**
-   * Returns whether or not the user is connected with only an external wallet, not an external wallet with Para auth.
-   */
-  isUsingExternalWallet() {
-    return !this.isExternalWalletAuth && !!Object.keys(this.externalWallets).length;
-  }
-  /**
-   * Passes the email code obtained from the user for verification.
-   * @param {Object} opts the options object
-   * @param {string} verificationCode the six-digit code to check
-   * @returns {string} the web auth url for creating a new credential
-   */
-  verifyEmail(_0) {
-    return __async(this, arguments, function* ({ verificationCode }) {
-      yield this.ctx.client.verifyEmail(this.userId, { verificationCode });
-      return this.getSetUpBiometricsURL();
-    });
-  }
-  verifyExternalWallet(_0) {
+   * Updates the session with the user management server, possibly
+   * opening a popup to refresh the session.
+   *
+   * @param {Object} opts the options object.
+   * @param {boolean} [shouldOpenPopup] - if `true`, the running device will open a popup to reauthenticate the user.
+   * @returns a URL for the user to reauthenticate.
+   **/
+  refreshSession() {
     return __async(this, arguments, function* ({
-      address,
-      signedMessage,
-      cosmosPublicKeyHex,
-      cosmosSigner
-    }) {
-      yield this.ctx.client.verifyExternalWallet(this.userId, { address, signedMessage, cosmosPublicKeyHex, cosmosSigner });
-      return this.getSetUpBiometricsURL({ authType: "externalWallet" });
-    });
-  }
-  /**
-   * Passes the phone code obtained from the user for verification.
-   * @param {Object} opts the options object
-   * @param {string} verificationCode the six-digit code to check
-   * @returns {string} the web auth url for creating a new credential
-   */
-  verifyPhone(_0) {
-    return __async(this, arguments, function* ({ verificationCode }) {
-      yield this.ctx.client.verifyPhone(this.userId, { verificationCode });
-      return this.getSetUpBiometricsURLForPhone();
+      shouldOpenPopup = false
+    } = {}) {
+      const { sessionId } = yield this.touchSession(true);
+      if (!this.loginEncryptionKeyPair) {
+        yield this.setLoginEncryptionKeyPair();
+      }
+      const link = yield this.getLoginUrl({
+        sessionId
+      });
+      if (shouldOpenPopup) {
+        this.platformUtils.openPopup(link);
+      }
+      return link;
     });
   }
   /**
-   * Validates the response received from an attempted Telegram login for authenticity, then
-   * creates or retrieves the corresponding Para user and prepares the Para instance to sign in with that user.
-   * @param authResponse - the response JSON object received from the Telegram widget.
-   * @returns `{ isValid: boolean; telegramUserId?: string; userId?: string; isNewUser?: boolean; supportedAuthMethods?: AuthMethod[]; biometricHints?: BiometricLocationHint[] }`
-   */
-  verifyTelegram(authObject) {
+   * Call this method after login to ensure that the user ID is set
+   * internally.
+   **/
+  userSetupAfterLogin() {
     return __async(this, null, function* () {
-      const res = yield this.ctx.client.verifyTelegram(authObject);
-      if (res.isValid) {
-        yield this.setUserId(res.userId);
-        yield this.setTelegramUserId(res.telegramUserId);
-        yield this.touchSession(true);
-        if (!this.loginEncryptionKeyPair) {
-          yield this.setLoginEncryptionKeyPair();
-        }
-      }
-      return res;
+      const session = yield this.touchSession();
+      yield this.setUserId(session.userId);
+      if (session.currentWalletIds && session.currentWalletIds !== this.currentWalletIds)
+        yield this.setCurrentWalletIds(session.currentWalletIds, {
+          sessionLookupId: this.isPortal() ? session.sessionLookupId : void 0
+        });
+      return session;
     });
   }
   /**
-   * Performs 2FA verification.
-   * @param {Object} opts the options object
-   * @param {string} opts.email the email to use for performing a 2FA verification.
-   * @param {string} opts.verificationCode the verification code to received via 2FA.
-   * @returns {Object} `{ address, initiatedAt, status, userId, walletId }`
-   */
-  verify2FA(_0) {
-    return __async(this, arguments, function* ({ email, verificationCode }) {
-      const res = yield this.ctx.client.verify2FA(email, verificationCode);
-      return {
-        initiatedAt: res.data.initiatedAt,
-        status: res.data.status,
-        userId: res.data.userId,
-        wallets: res.data.wallets
-      };
+   * Get transmission shares associated with session.
+   * @param {Object} opts the options object.
+   * @param {boolean} opts.isForNewDevice - true if this device is registering.
+   * @returns - transmission keyshares.
+   **/
+  getTransmissionKeyShares() {
+    return __async(this, arguments, function* ({ isForNewDevice = false } = {}) {
+      const session = yield this.touchSession();
+      const sessionLookupId = isForNewDevice ? `${session.sessionLookupId}-new-device` : session.sessionLookupId;
+      return this.ctx.client.getTransmissionKeyshares(this.userId, sessionLookupId);
     });
   }
   /**
-   * Performs 2FA verification.
-   * @param {Object} opts the options object
-   * @param {string} opts.phone the phone number
-   * @param {string} opts.countryCode - the country code
-   * @param {string} opts.verificationCode - verification code to received via 2FA.
-   * @returns {Object} `{ address, initiatedAt, status, userId, walletId }`
-   */
-  verify2FAForPhone(_0) {
-    return __async(this, arguments, function* ({
-      phone,
-      countryCode,
-      verificationCode
-    }) {
-      const res = yield this.ctx.client.verify2FAForPhone(phone, countryCode, verificationCode);
-      return {
-        initiatedAt: res.data.initiatedAt,
-        status: res.data.status,
-        userId: res.data.userId,
-        wallets: res.data.wallets
-      };
-    });
-  }
-  /**
-   * Sets up two-factor authentication for the current user.
-   * @returns {string} uri - uri to use for setting up 2FA
-   * */
-  setup2FA() {
-    return __async(this, null, function* () {
-      const res = yield this.ctx.client.setup2FA(this.userId);
-      return {
-        uri: res.data.uri
-      };
-    });
-  }
-  /**
-   * Enables 2FA.
-   * @param {Object} opts the options object
-   * @param {string} opts.verificationCode - the verification code received via 2FA.
-   */
-  enable2FA(_0) {
-    return __async(this, arguments, function* ({ verificationCode }) {
-      yield this.ctx.client.enable2FA(this.userId, verificationCode);
-    });
-  }
-  /**
-   * Determines if 2FA has been set up.
-   * @returns {Object} `{ isSetup: boolean }` - true if 2FA is setup, false otherwise
-   */
-  check2FAStatus() {
-    return __async(this, null, function* () {
-      if (!this.userId) {
-        return { isSetup: false };
-      }
-      const res = yield this.ctx.client.check2FAStatus(this.userId);
-      return {
-        isSetup: res.data.isSetup
-      };
-    });
-  }
-  /**
-   * Resend a verification email for the current user.
-   */
-  resendVerificationCode() {
-    return __async(this, null, function* () {
-      yield this.ctx.client.resendVerificationCode(__spreadValues({
-        userId: this.userId
-      }, this.getVerificationEmailProps()));
-    });
-  }
-  /**
-   * Resend a verification SMS for the current user.
-   */
-  resendVerificationCodeByPhone() {
-    return __async(this, null, function* () {
-      yield this.ctx.client.resendVerificationCodeByPhone({
-        userId: this.userId
-      });
-    });
-  }
-  /**
-   * Returns a URL for setting up a new WebAuth passkey.
-   * @param {Object} opts the options object
-   * @param {string} opts.authType - the auth type to use
-   * @param {boolean} opts.isForNewDevice whether the passkey is for a new device of an existing user
-   * @returns {string} the URL
-   */
-  getSetUpBiometricsURL() {
-    return __async(this, arguments, function* ({
-      authType = "email",
-      isForNewDevice = false
-    } = {}) {
-      const res = yield this.ctx.client.addSessionPublicKey(this.userId, {
-        status: import_user_management_client5.PublicKeyStatus.PENDING,
-        type: import_user_management_client5.PublicKeyType.WEB
-      });
-      return this.getWebAuthURLForCreate({
-        authType,
-        isForNewDevice,
-        webAuthId: res.data.id,
-        partnerId: res.data.partnerId
-      });
-    });
-  }
-  /**
-   * Returns a URL for setting up a new WebAuth passkey for a phone number.
-   * @param {Object} opts the options object
-   * @param {boolean} opts.isForNewDevice whether the passkey is for a new device of an existing user
-   * @returns {string} the URL
-   */
-  getSetUpBiometricsURLForPhone() {
+   * Call this method after login to perform setup.
+   * @param {Object} opts the options object.
+   * @param {any[]} opts.temporaryShares optional temporary shares to use for decryption.
+   * @param {boolean} [opts.skipSessionRefresh] - whether or not to skip refreshing the session.
+   **/
+  setupAfterLogin() {
     return __async(this, arguments, function* ({
-      isForNewDevice = false
+      temporaryShares,
+      skipSessionRefresh = false
     } = {}) {
-      const res = yield this.ctx.client.addSessionPublicKey(this.userId, {
-        status: import_user_management_client5.PublicKeyStatus.PENDING,
-        type: import_user_management_client5.PublicKeyType.WEB
-      });
-      return this.getWebAuthURLForCreate({
-        authType: "phone",
-        isForNewDevice,
-        webAuthId: res.data.id,
-        partnerId: res.data.partnerId
+      if (!temporaryShares) {
+        temporaryShares = (yield this.getTransmissionKeyShares()).data.temporaryShares;
+      }
+      temporaryShares.forEach((share) => {
+        const signer = decryptWithPrivateKey(this.loginEncryptionKeyPair.privateKey, share.encryptedShare, share.encryptedKey);
+        this.wallets[share.walletId] = {
+          id: share.walletId,
+          signer
+        };
       });
+      yield this.deleteLoginEncryptionKeyPair();
+      yield this.populateWalletAddresses();
+      yield this.touchSession(!skipSessionRefresh);
     });
   }
   /**
-   * Returns a URL for setting up a new password.
-   * @param {Object} opts the options object
-   * @param {string} opts.authType - the auth type to use
-   * @param {boolean} opts.isForNewDevice whether the passkey is for a new device of an existing user
-   * @param {Theme} [opts.theme] the portal theme to use in place of the partner's default
-   * @returns {string} the URL
-   */
-  getSetupPasswordURL() {
+   * Distributes a new wallet recovery share.
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the wallet to distribute the recovery share for.
+   * @param {string} opts.userShare optional user share generate the recovery share from. Defaults to the signer from the passed in walletId
+   * @param {boolean} opts.skipBiometricShareCreation whether or not to skip biometric share creation. Used when regenerating recovery shares.
+   * @param {boolean} opts.forceRefreshRecovery whether or not to force recovery secret regeneration. Used when regenerating recovery shares.
+   * @returns {string} the recovery share.
+   **/
+  distributeNewWalletShare(_0) {
     return __async(this, arguments, function* ({
-      authType = "email",
-      isForNewDevice = false,
-      theme
-    } = {}) {
-      const res = yield this.ctx.client.addSessionPasswordPublicKey(this.userId, {
-        status: import_user_management_client5.PasswordStatus.PENDING
-      });
-      return this.getPasswordURLForCreate({
-        authType,
-        isForNewDevice,
-        passwordId: res.data.id,
-        partnerId: res.data.partnerId,
-        theme
+      walletId,
+      userShare,
+      skipBiometricShareCreation = false,
+      forceRefresh = false
+    }) {
+      let userSigner = userShare;
+      if (!userSigner) {
+        userSigner = this.wallets[walletId].signer;
+      }
+      const recoveryShare = skipBiometricShareCreation ? yield sendRecoveryForShare({
+        ctx: this.ctx,
+        userId: this.userId,
+        walletId,
+        userSigner,
+        emailProps: this.getBackupKitEmailProps(),
+        forceRefresh
+      }) : yield distributeNewShare({
+        ctx: this.ctx,
+        userId: this.userId,
+        walletId,
+        userShare: userSigner,
+        emailProps: this.getBackupKitEmailProps()
       });
+      return recoveryShare;
     });
   }
-  /**
-   * Checks if the current session is active.
-   * @returns `true` if active, `false` otherwise
-   */
-  isSessionActive() {
+  waitForWalletAddress(walletId) {
     return __async(this, null, function* () {
-      if (this.isUsingExternalWallet()) {
-        return true;
+      let maxPolls = 0;
+      while (true) {
+        try {
+          if (maxPolls === 10) {
+            break;
+          }
+          ++maxPolls;
+          const res = yield this.ctx.client.getWallets(this.userId);
+          const wallet = res.data.wallets.find((w) => w.id === walletId);
+          if (wallet && wallet.address) {
+            return;
+          }
+          yield new Promise((resolve) => setTimeout(resolve, SHORT_POLLING_INTERVAL_MS));
+        } catch (err) {
+          console.error(err);
+        }
       }
-      const res = yield this.touchSession();
-      return !!res.data.isAuthenticated;
+      throw new Error("timed out waiting for wallet address");
     });
   }
   /**
-   * Checks if a session is active and a wallet exists.
-   * @returns `true` if active, `false` otherwise
+   * Waits for a pregen wallet address to be created.
+   *
+   * @param pregenIdentifier - the identifier of the user the pregen wallet is associated with.
+   * @param walletId - the wallet id
+   * @param pregenIdentifierType - the identifier type of the user the pregen wallet is associated with.
+   * @returns - recovery share.
    **/
-  isFullyLoggedIn() {
-    return __async(this, null, function* () {
-      if (this.isUsingExternalWallet()) {
-        return true;
-      }
-      const isSessionActive = yield this.isSessionActive();
-      return isSessionActive && this.currentWalletIdsArray.length > 0 && this.currentWalletIdsArray.reduce((acc, [id]) => acc && !!this.wallets[id], true);
-    });
-  }
-  supportedAuthMethods(auth) {
+  waitForPregenWalletAddress(walletId) {
     return __async(this, null, function* () {
-      const { supportedAuthMethods } = yield this.ctx.client.getSupportedAuthMethods(auth);
-      const authMethods = /* @__PURE__ */ new Set();
-      for (const type of supportedAuthMethods) {
-        switch (type) {
-          case "PASSWORD":
-            authMethods.add(import_user_management_client5.AuthMethod.PASSWORD);
-            break;
-          case "BIOMETRIC":
-            authMethods.add(import_user_management_client5.AuthMethod.PASSKEY);
+      let maxPolls = 0;
+      while (true) {
+        try {
+          if (maxPolls === 10) {
             break;
+          }
+          ++maxPolls;
+          const res = yield this.getPregenWallets();
+          const wallet = res.find((w) => w.id === walletId);
+          if (wallet && wallet.address) {
+            return;
+          }
+          yield new Promise((resolve) => setTimeout(resolve, SHORT_POLLING_INTERVAL_MS));
+        } catch (err) {
+          console.error(err);
         }
       }
-      return authMethods;
-    });
-  }
-  /**
-   * Get hints associated with the users stored biometrics.
-   * @returns Array containing useragents and AAGuids for stored biometrics
-   */
-  getUserBiometricLocationHints() {
-    return __async(this, null, function* () {
-      var _a;
-      if (!this.email && !this.phone && !this.farcasterUsername && !this.telegramUserId && !this.isExternalWalletAuth) {
-        throw new Error(
-          "one of email, phone, farcaster username, telegram user id or external wallet with Para auth are required to get biometric location hints"
-        );
-      }
-      return yield this.ctx.client.getBiometricLocationHints({
-        email: this.email,
-        phone: this.phone,
-        countryCode: this.countryCode,
-        farcasterUsername: this.farcasterUsername,
-        telegramUserId: this.telegramUserId,
-        // Using id here since we store the bech32 address for cosmos in the address field of the wallet
-        externalWalletAddress: (_a = this.externalWalletWithParaAuth) == null ? void 0 : _a.id
-      });
-    });
-  }
-  setAuth(auth) {
-    return __async(this, null, function* () {
-      const authInfo = (0, import_user_management_client5.extractAuthInfo)(auth);
-      if (!authInfo) {
-        return void 0;
-      }
-      switch (authInfo.authType) {
-        case "email":
-          yield this.setEmail(authInfo.identifier);
-          break;
-        case "phone":
-          yield this.setPhoneNumber(authInfo.auth.phone, authInfo.auth.countryCode);
-          break;
-        case "farcaster":
-          yield this.setFarcasterUsername(authInfo.identifier);
-          break;
-        case "telegram":
-          yield this.setTelegramUserId(authInfo.identifier);
-          break;
-      }
-      return authInfo;
+      throw new Error("timed out waiting for wallet address");
     });
   }
   /**
-   * Initiates a login.
-   * @param {Object} opts the options object
-   * @param {String} opts.email - the email to login with
-   * @param {boolean} opts.useShortURL - whether to shorten the link
-   * @returns - the WebAuth URL for logging in
+   * Creates several new wallets with the desired types. If no types are provided, this method
+   * will create one for each of the non-optional types specified in the instance's `supportedWalletTypes`
+   * object that are not already present. This is automatically called upon account creation to ensure that
+   * the user has a wallet of each required type.
+   *
+   * @param {Object} [opts] the options object.
+   * @param {boolean} [opts.skipDistribute] if `true`, the wallets' recovery share will not be distributed.
+   * @param {WalletType[]} [opts.types] the types of wallets to create.
+   * @returns {Object} the wallets created, their ids, and the recovery secret.
    **/
-  initiateUserLogin(_e) {
-    return __async(this, null, function* () {
-      var _f = _e, { useShortUrl = false } = _f, auth = __objRest(_f, ["useShortUrl"]);
-      const authInfo = yield this.setAuth(auth);
-      if (!authInfo) {
-        return;
-      }
-      const res = yield this.touchSession(true);
-      if (!this.loginEncryptionKeyPair) {
-        yield this.setLoginEncryptionKeyPair();
-      }
-      const webAuthLoginURL = yield this.getWebAuthURLForLogin({
-        authType: authInfo.authType,
-        sessionId: res.data.sessionId,
-        partnerId: res.data.partnerId,
-        loginEncryptionPublicKey: getPublicKeyHex(this.loginEncryptionKeyPair)
-      });
-      if (!useShortUrl) {
-        return webAuthLoginURL;
+  createWalletPerType() {
+    return __async(this, arguments, function* ({
+      skipDistribute = false,
+      types
+    } = {}) {
+      const wallets = [];
+      const walletIds = {};
+      let recoverySecret;
+      for (const type of yield this.getTypesToCreate(types)) {
+        const [wallet, recoveryShare] = yield this.createWallet({ type, skipDistribute });
+        wallets.push(wallet);
+        getEquivalentTypes(type).filter((t) => !!this.isWalletTypeEnabled[t]).forEach((t) => {
+          walletIds[t] = [wallet.id];
+        });
+        if (recoveryShare) {
+          recoverySecret = recoveryShare;
+        }
       }
-      return this.shortenLoginLink(webAuthLoginURL);
+      return { wallets, walletIds, recoverySecret };
     });
   }
   /**
-   * Initiates a login.
-   * @param email - the email to login with
-   * @returns - a set of supported auth methods for the user
-   **/
-  initiateUserLoginV2(auth) {
-    return __async(this, null, function* () {
-      const authInfo = yield this.setAuth(auth);
-      if (!authInfo) {
-        return;
-      }
-      yield this.touchSession(true);
-      if (!this.loginEncryptionKeyPair) {
-        yield this.setLoginEncryptionKeyPair();
-      }
-      return yield this.supportedAuthMethods(authInfo.auth);
-    });
-  }
-  /**
-   * Initiates a login.
-   * @param opts the options object
-   * @param opts.phone the phone number
-   * @param opts.countryCode the country code
-   * @param opts.useShortURL - whether to shorten the link
-   * @returns - the WebAuth URL for logging in
+   * Refresh the current user share for a wallet.
+   *
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the wallet id to refresh.
+   * @param {string} opts.share the current user share.
+   * @param {string} [opts.oldPartnerId] the current partner id.
+   * @param {string} [opts.newPartnerId] the new partner id to set, if any.
+   * @param {string} [opts.keyShareProtocolId]
+   * @param {boolean} [opts.redistributeBackupEncryptedShares] whether or not to redistribute backup encrypted shares.
+   * @returns {Object} the new user share and recovery secret.
    **/
-  initiateUserLoginForPhone(_g) {
-    return __async(this, null, function* () {
-      var _h = _g, {
-        useShortUrl = false
-      } = _h, auth = __objRest(_h, [
-        "useShortUrl"
-      ]);
-      yield this.setAuth(auth);
-      const res = yield this.touchSession(true);
-      if (!this.loginEncryptionKeyPair) {
-        yield this.setLoginEncryptionKeyPair();
-      }
-      const webAuthLoginURL = yield this.getWebAuthURLForLoginForPhone({
-        sessionId: res.data.sessionId,
-        loginEncryptionPublicKey: getPublicKeyHex(this.loginEncryptionKeyPair),
-        partnerId: res.data.partnerId
+  refreshShare(_0) {
+    return __async(this, arguments, function* ({
+      walletId,
+      share,
+      oldPartnerId,
+      newPartnerId,
+      keyShareProtocolId,
+      redistributeBackupEncryptedShares
+    }) {
+      const { signer, protocolId } = yield this.platformUtils.refresh(
+        this.ctx,
+        this.retrieveSessionCookie(),
+        this.userId,
+        walletId,
+        share,
+        oldPartnerId,
+        newPartnerId,
+        keyShareProtocolId
+      );
+      const recoverySecret = yield distributeNewShare({
+        ctx: this.ctx,
+        userId: this.userId,
+        walletId,
+        userShare: signer,
+        ignoreRedistributingBackupEncryptedShare: !redistributeBackupEncryptedShares,
+        emailProps: this.getBackupKitEmailProps(),
+        partnerId: newPartnerId,
+        protocolId
       });
-      if (!useShortUrl) {
-        return webAuthLoginURL;
-      }
-      return this.shortenLoginLink(webAuthLoginURL);
+      return { signer, recoverySecret, protocolId };
     });
   }
   /**
-   * Waits for the session to be active.
+   * Creates a new wallet.
+   * @param {Object} opts the options object.
+   * @param {WalletType} opts.type the type of wallet to create.
+   * @param {boolean} opts.skipDistribute - if true, recovery share will not be distributed.
+   * @returns {[Wallet, string | null]} `[wallet, recoveryShare]` - the wallet object and the new recovery share.
    **/
-  waitForAccountCreation() {
-    return __async(this, arguments, function* ({ popupWindow } = {}) {
-      yield this.touchSession();
-      if (!this.isExternalWalletAuth) {
-        this.externalWallets = {};
-      }
-      this.isAwaitingAccountCreation = true;
-      while (this.isAwaitingAccountCreation) {
-        try {
-          yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-          if (yield this.isSessionActive()) {
-            this.isAwaitingAccountCreation = false;
-            dispatchEvent(ParaEvent.ACCOUNT_CREATION_EVENT, true);
-            return true;
-          } else {
-            if (popupWindow == null ? void 0 : popupWindow.closed) {
-              this.isAwaitingAccountCreation = false;
-              return false;
-            }
-          }
-        } catch (err) {
-          console.error(err);
-        }
-      }
-      return false;
-    });
-  }
-  waitForPasskeyAndCreateWallet() {
+  createWallet() {
     return __async(this, arguments, function* ({
-      popupWindow
+      type: _type,
+      skipDistribute = false
     } = {}) {
-      yield this.waitForAccountCreation({ popupWindow });
-      const pregenWallets = yield this.getPregenWallets();
-      let recoverySecret, walletIds = {};
-      if (pregenWallets.length > 0) {
-        recoverySecret = yield this.claimPregenWallets();
-        walletIds = this.supportedWalletTypes.reduce((acc, { type }) => {
-          var _a;
-          return __spreadProps(__spreadValues({}, acc), {
-            [type]: [(_a = pregenWallets.find((w) => !!WalletSchemeTypeMap[w.scheme][type])) == null ? void 0 : _a.id]
-          });
-        }, {});
+      var _a, _b;
+      this.requireApiKey();
+      const { supportedWalletTypes } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      const walletType = yield this.assertIsValidWalletType(
+        _type != null ? _type : (_a = supportedWalletTypes.find(({ optional }) => !optional)) == null ? void 0 : _a.type
+      );
+      let signer;
+      let wallet;
+      let keygenRes;
+      switch (walletType) {
+        case import_user_management_client5.WalletType.SOLANA: {
+          keygenRes = yield this.platformUtils.ed25519Keygen(
+            this.ctx,
+            this.userId,
+            this.retrieveSessionCookie(),
+            this.getBackupKitEmailProps()
+          );
+          break;
+        }
+        default: {
+          keygenRes = yield this.platformUtils.keygen(
+            this.ctx,
+            this.userId,
+            walletType,
+            null,
+            this.retrieveSessionCookie(),
+            this.getBackupKitEmailProps()
+          );
+          break;
+        }
       }
-      const created = yield this.createWalletPerType();
-      recoverySecret = recoverySecret != null ? recoverySecret : created.recoverySecret;
-      walletIds = __spreadValues(__spreadValues({}, walletIds), created.walletIds);
-      const resp = { walletIds, recoverySecret };
-      dispatchEvent(ParaEvent.ACCOUNT_SETUP_EVENT, resp);
-      return resp;
+      const walletId = keygenRes.walletId;
+      signer = keygenRes.signer;
+      this.wallets[walletId] = {
+        id: walletId,
+        signer,
+        scheme: walletType === import_user_management_client5.WalletType.SOLANA ? import_user_management_client5.WalletScheme.ED25519 : import_user_management_client5.WalletScheme.DKLS,
+        type: walletType
+      };
+      wallet = this.wallets[walletId];
+      yield this.waitForWalletAddress(wallet.id);
+      yield this.populateWalletAddresses();
+      let recoveryShare = null;
+      if (!skipDistribute) {
+        recoveryShare = yield distributeNewShare({
+          ctx: this.ctx,
+          userId: this.userId,
+          walletId: wallet.id,
+          userShare: signer,
+          emailProps: this.getBackupKitEmailProps()
+        });
+      }
+      yield this.setCurrentWalletIds(__spreadProps(__spreadValues({}, this.currentWalletIds), {
+        [walletType]: [.../* @__PURE__ */ new Set([...(_b = this.currentWalletIds[walletType]) != null ? _b : [], walletId])]
+      }));
+      const walletNoSigner = __spreadValues({}, wallet);
+      delete walletNoSigner.signer;
+      dispatchEvent(ParaEvent.WALLET_CREATED, {
+        wallet: walletNoSigner,
+        recoverySecret: recoveryShare
+      });
+      return [wallet, recoveryShare];
     });
   }
+  encodeWalletBase64(wallet) {
+    const walletJson = JSON.stringify(wallet);
+    const base64Wallet = Buffer.from(walletJson).toString("base64");
+    return base64Wallet;
+  }
   /**
-   * Initiates a Farcaster login attempt and return the URI for the user to connect.
-   * You can create a QR code with this URI that works with Farcaster's mobile app.
-   * @return {string} the Farcaster connect URI
-   */
-  getFarcasterConnectURL() {
-    return __async(this, null, function* () {
-      yield this.logout();
-      yield this.touchSession(true);
-      const {
-        data: { connect_uri }
-      } = yield this.ctx.client.initializeFarcasterLogin();
-      return connect_uri;
-    });
+   * Encodes the current wallets encoded in Base 64.
+   * @returns {string} the encoded wallet string
+   **/
+  getUserShare() {
+    if (Object.values(this.wallets).length === 0) {
+      return null;
+    }
+    return Object.values(this.wallets).map((wallet) => this.encodeWalletBase64(wallet)).join("-");
   }
   /**
-   * Awaits the response from a user's attempt to log in with Farcaster.
-   * If successful, this returns the user's Farcaster username and profile picture and indicates whether the user already exists.
-   * @return {Object} `{userExists: boolean; username: string; pfpUrl?: string | null }` - the user's information and whether the user already exists.
-   */
-  waitForFarcasterStatus() {
+   * Sets the current wallets from a Base 64 string.
+   * @param {string} base64Wallet the encoded wallet string
+   **/
+  setUserShare(base64Wallets) {
     return __async(this, null, function* () {
-      this.isAwaitingFarcaster = true;
-      while (this.isAwaitingFarcaster) {
-        try {
-          yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-          const res = yield this.ctx.client.getFarcasterAuthStatus();
-          if (res.data.state === "completed") {
-            const { userId, userExists, username, pfpUrl } = res.data;
-            yield this.setUserId(userId);
-            yield this.setFarcasterUsername(username);
-            return {
-              userExists,
-              username,
-              pfpUrl
-            };
-          }
-        } catch (err) {
-          console.error(err);
-          this.isAwaitingFarcaster = false;
-        }
+      if (!base64Wallets) {
+        return;
+      }
+      const base64WalletsSplit = base64Wallets.split("-");
+      for (const base64Wallet of base64WalletsSplit) {
+        const walletJson = Buffer.from(base64Wallet, "base64").toString();
+        const wallet = migrateWallet(JSON.parse(walletJson));
+        this.wallets[wallet.id] = wallet;
+        yield this.setWallets(this.wallets);
       }
     });
   }
-  /**
-   * Generates a URL for the user to log in with OAuth using a desire method.
-   *
-   * @param {Object} opts the options object
-   * @param {OAuthMethod} opts.method the third-party service to use for OAuth.
-   * @param {string} [opts.deeplinkUrl] the deeplink to redirect to after the OAuth flow. This is for mobile only.
-   * @returns {string} the URL for the user to log in with OAuth.
-   */
-  getOAuthURL(_0) {
-    return __async(this, arguments, function* ({ method, deeplinkUrl }) {
-      yield this.logout();
-      const res = yield this.touchSession(true);
-      return constructUrl({
-        base: method === import_user_management_client5.OAuthMethod.TELEGRAM ? getPortalBaseURL(this.ctx, true) : getBaseOAuthUrl(this.ctx.env),
-        path: `/auth/${method.toLowerCase()}`,
+  getTransactionReviewUrl(transactionId, timeoutMs) {
+    return __async(this, null, function* () {
+      return this.constructPortalUrl("txReview", {
+        pathId: transactionId,
         params: {
-          apiKey: this.ctx.apiKey,
-          sessionLookupId: res.data.sessionLookupId,
-          deeplinkUrl
+          email: this.email,
+          timeoutMs: timeoutMs == null ? void 0 : timeoutMs.toString()
         }
       });
     });
   }
-  /**
-   * Awaits the response from a user's attempt to log in with OAuth.
-   * If successful, this returns the user's email address and indicates whether the user already exists.
-   *
-   * @param {Object} opts the options object.
-   * @param {Window} [opts.popupWindow] the popup window being used for login.
-   * @return {Object} `{ email?: string; isError?: boolean; userExists: boolean; }` the result data
-   */
-  waitForOAuth() {
-    return __async(this, arguments, function* ({ popupWindow } = {}) {
-      this.isAwaitingOAuth = true;
-      while (this.isAwaitingOAuth) {
-        try {
-          if (popupWindow == null ? void 0 : popupWindow.closed) {
-            return { isError: true, userExists: false };
-          }
-          yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-          if (this.isAwaitingOAuth) {
-            const res = yield this.touchSession();
-            if (res.data.userId) {
-              const { userId, email } = res.data;
-              if (!this.loginEncryptionKeyPair) {
-                yield this.setLoginEncryptionKeyPair();
-              }
-              yield this.setUserId(userId);
-              yield this.setEmail(email);
-              const userExists = yield this.checkIfUserExists({ email });
-              this.isAwaitingOAuth = false;
-              return {
-                userExists,
-                email
-              };
-            }
-          }
-        } catch (err) {
-          console.error(err);
+  getOnRampTransactionUrl(_a) {
+    return __async(this, null, function* () {
+      var _b = _a, {
+        purchaseId,
+        providerKey
+      } = _b, walletParams = __objRest(_b, [
+        "purchaseId",
+        "providerKey"
+      ]);
+      const { sessionId } = yield this.touchSession();
+      const [key, identifier] = (0, import_user_management_client5.extractWalletRef)(walletParams);
+      return this.constructPortalUrl("onRamp", {
+        pathId: purchaseId,
+        sessionId,
+        params: {
+          [key]: identifier,
+          providerKey,
+          currentWalletIds: JSON.stringify(this.currentWalletIds)
         }
-      }
-      return { userExists: false };
+      });
     });
   }
   /**
-   * Waits for the session to be active and sets up the user.
+   * Signs a message using one of the current wallets.
    *
-   * @param {Object} opts the options object
-   * @param {Window} [opts.popupWindow] the popup window being used for login.
-   * @param {boolean} [opts.skipSessionRefresh] whether to skip refreshing the session.
-   * @returns {Object} `{ isComplete: boolean; isError: boolean; needsWallet: boolean; partnerId: string; }` the result data
+   * If you want to sign the keccak256 hash of a message, hash the
+   * message first and then pass in the base64 encoded hash.
+   * @param {Object} opts the options object.
+   * @param {string} opts.walletId the id of the wallet to sign with.
+   * @param {string} opts.messageBase64 the base64 encoding of exact message that should be signed
+   * @param {number} [opts.timeout] optional timeout in milliseconds. If not present, defaults to 30 seconds.
+   * @param {string} [opts.cosmosSignDocBase64] the Cosmos `SignDoc` in base64, if applicable
    **/
-  waitForLoginAndSetup() {
+  signMessage(_0) {
     return __async(this, arguments, function* ({
-      popupWindow,
-      skipSessionRefresh = false
-    } = {}) {
-      var _a;
-      if (!this.isExternalWalletAuth) {
-        this.externalWallets = {};
+      walletId,
+      messageBase64,
+      timeoutMs = 3e4,
+      cosmosSignDocBase64,
+      isCanceled = () => false,
+      onCancel,
+      onPoll
+    }) {
+      this.assertIsValidWalletId(walletId);
+      const wallet = this.wallets[walletId];
+      let signerId = this.userId;
+      if (wallet.partnerId && !wallet.userId) {
+        signerId = wallet.partnerId;
       }
-      this.isAwaitingLogin = true;
-      while (this.isAwaitingLogin) {
-        try {
-          yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-          if (!(yield this.isSessionActive())) {
-            if (popupWindow == null ? void 0 : popupWindow.closed) {
-              const resp2 = { isComplete: false, isError: true };
-              dispatchEvent(ParaEvent.LOGIN_EVENT, resp2, "failed to setup user");
-              return resp2;
-            }
-            continue;
-          }
-          const postLoginData = yield this.userSetupAfterLogin();
-          const needsWallet = (_a = postLoginData.data.needsWallet) != null ? _a : false;
-          if (!needsWallet) {
-            if (this.currentWalletIdsArray.length === 0) {
-              if (popupWindow == null ? void 0 : popupWindow.closed) {
-                const resp2 = { isComplete: false, isError: true };
-                dispatchEvent(ParaEvent.LOGIN_EVENT, resp2, "failed to setup user");
-                return resp2;
-              } else {
-                continue;
-              }
-            }
-          }
-          const fetchedWallets = yield this.fetchWallets();
-          const tempSharesRes = yield this.getTransmissionKeyShares();
-          if (tempSharesRes.data.temporaryShares.length === fetchedWallets.length) {
-            yield this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
-            yield this.claimPregenWallets();
-            const resp2 = {
-              isComplete: true,
-              needsWallet: needsWallet || Object.values(this.wallets).length === 0,
-              partnerId: postLoginData.data.partnerId
-            };
-            dispatchEvent(ParaEvent.LOGIN_EVENT, resp2);
-            return resp2;
-          }
+      let signRes = yield this.signMessageInner({ wallet, signerId, messageBase64, cosmosSignDocBase64 });
+      let timeStart = Date.now();
+      if (signRes.pendingTransactionId) {
+        this.platformUtils.openPopup(
+          yield this.getTransactionReviewUrl(signRes.pendingTransactionId, timeoutMs),
+          { type: cosmosSignDocBase64 ? "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ : "SIGN_MESSAGE_REVIEW" /* SIGN_MESSAGE_REVIEW */ }
+        );
+      } else {
+        dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes);
+        return signRes;
+      }
+      while (true) {
+        if (isCanceled() || Date.now() - timeStart > timeoutMs) {
+          onCancel == null ? void 0 : onCancel();
+          break;
+        }
+        yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
+        try {
+          yield this.ctx.client.getPendingTransaction(this.userId, signRes.pendingTransactionId);
         } catch (err) {
-          console.error(err);
+          const error = new TransactionReviewDenied();
+          dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes, error.message);
+          throw error;
+        }
+        signRes = yield this.signMessageInner({ wallet, signerId, messageBase64, cosmosSignDocBase64 });
+        if (signRes.pendingTransactionId) {
+          onPoll == null ? void 0 : onPoll();
+          continue;
+        } else {
+          break;
         }
       }
-      const resp = { isComplete: false };
-      dispatchEvent(ParaEvent.LOGIN_EVENT, resp, "exitted login without setting up user");
-      return resp;
-    });
-  }
-  /**
-   * Updates the session with the user management server, possibly
-   * opening a popup to refresh the session.
-   *
-   * @param {Object} opts the options object.
-   * @param {boolean} [shouldOpenPopup] - if `true`, the running device will open a popup to reauthenticate the user.
-   * @returns a URL for the user to reauthenticate.
-   **/
-  refreshSession() {
-    return __async(this, arguments, function* ({ shouldOpenPopup = false } = {}) {
-      const res = yield this.touchSession(true);
-      if (!this.loginEncryptionKeyPair) {
-        yield this.setLoginEncryptionKeyPair();
-      }
-      const link = yield this.getWebAuthURLForLogin({
-        sessionId: res.data.sessionId,
-        loginEncryptionPublicKey: getPublicKeyHex(this.loginEncryptionKeyPair)
-      });
-      if (shouldOpenPopup) {
-        this.platformUtils.openPopup(link);
+      if (signRes.pendingTransactionId) {
+        const error = new TransactionReviewTimeout(
+          yield this.getTransactionReviewUrl(signRes.pendingTransactionId),
+          signRes.pendingTransactionId
+        );
+        dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes, error.message);
+        throw error;
       }
-      return link;
-    });
-  }
-  /**
-   * Call this method after login to ensure that the user ID is set
-   * internally.
-   **/
-  userSetupAfterLogin() {
-    return __async(this, null, function* () {
-      const res = yield this.touchSession();
-      yield this.setUserId(res.data.userId);
-      if (res.data.currentWalletIds && res.data.currentWalletIds !== this.currentWalletIds)
-        yield this.setCurrentWalletIds(res.data.currentWalletIds, {
-          sessionLookupId: this.isPortal() ? res.data.sessionLookupId : void 0
-        });
-      return res;
-    });
-  }
-  /**
-   * Get transmission shares associated with session.
-   * @param {Object} opts the options object.
-   * @param {boolean} opts.isForNewDevice - true if this device is registering.
-   * @returns - transmission keyshares.
-   **/
-  getTransmissionKeyShares() {
-    return __async(this, arguments, function* ({ isForNewDevice = false } = {}) {
-      const res = yield this.touchSession();
-      const sessionLookupId = isForNewDevice ? `${res.data.sessionLookupId}-new-device` : res.data.sessionLookupId;
-      return this.ctx.client.getTransmissionKeyshares(this.userId, sessionLookupId);
+      dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes);
+      return signRes;
     });
   }
-  /**
-   * Call this method after login to perform setup.
-   * @param {Object} opts the options object.
-   * @param {any[]} opts.temporaryShares optional temporary shares to use for decryption.
-   * @param {boolean} [opts.skipSessionRefresh] - whether or not to skip refreshing the session.
-   **/
-  setupAfterLogin() {
+  signMessageInner(_0) {
     return __async(this, arguments, function* ({
-      temporaryShares,
-      skipSessionRefresh = false
-    } = {}) {
-      if (!temporaryShares) {
-        temporaryShares = (yield this.getTransmissionKeyShares()).data.temporaryShares;
+      wallet,
+      signerId,
+      messageBase64,
+      cosmosSignDocBase64
+    }) {
+      let signRes;
+      switch (wallet.scheme) {
+        case import_user_management_client5.WalletScheme.ED25519:
+          signRes = yield this.platformUtils.ed25519Sign(
+            this.ctx,
+            signerId,
+            wallet.id,
+            wallet.signer,
+            messageBase64,
+            this.retrieveSessionCookie()
+          );
+          break;
+        default:
+          signRes = yield this.platformUtils.signMessage(
+            this.ctx,
+            signerId,
+            wallet.id,
+            wallet.signer,
+            messageBase64,
+            this.retrieveSessionCookie(),
+            wallet.scheme === import_user_management_client5.WalletScheme.DKLS,
+            cosmosSignDocBase64
+          );
+          break;
       }
-      temporaryShares.forEach((share) => {
-        const signer = decryptWithPrivateKey(this.loginEncryptionKeyPair.privateKey, share.encryptedShare, share.encryptedKey);
-        this.wallets[share.walletId] = {
-          id: share.walletId,
-          signer
-        };
-      });
-      yield this.deleteLoginEncryptionKeyPair();
-      yield this.populateWalletAddresses();
-      yield this.touchSession(!skipSessionRefresh);
+      return signRes;
     });
   }
   /**
-   * Distributes a new wallet recovery share.
+   * Signs a transaction.
    * @param {Object} opts the options object.
-   * @param {string} opts.walletId the wallet to distribute the recovery share for.
-   * @param {string} opts.userShare optional user share generate the recovery share from. Defaults to the signer from the passed in walletId
-   * @param {boolean} opts.skipBiometricShareCreation whether or not to skip biometric share creation. Used when regenerating recovery shares.
-   * @param {boolean} opts.forceRefreshRecovery whether or not to force recovery secret regeneration. Used when regenerating recovery shares.
-   * @returns {string} the recovery share.
+   * @param {string} opts.walletId the id of the wallet to sign with.
+   * @param {string} opts.rlpEncodedTxBase64 the transaction to sign, in RLP base64 encoding
+   * @param {string} [opts.chainId] the EVM chain id of the chain the transaction is being sent on, if applicable
+   * @param {number} [opts.timeoutMs] the amount of time to wait for the user to sign the transaction, in milliseconds
    **/
-  distributeNewWalletShare(_0) {
+  signTransaction(_0) {
     return __async(this, arguments, function* ({
       walletId,
-      userShare,
-      skipBiometricShareCreation = false,
-      forceRefresh = false
+      rlpEncodedTxBase64,
+      chainId,
+      timeoutMs = 3e4,
+      isCanceled = () => false,
+      onCancel,
+      onPoll
     }) {
-      let userSigner = userShare;
-      if (!userSigner) {
-        userSigner = this.wallets[walletId].signer;
+      this.assertIsValidWalletId(walletId);
+      const wallet = this.wallets[walletId];
+      let signerId = this.userId;
+      if (wallet.partnerId && !wallet.userId) {
+        signerId = wallet.partnerId;
       }
-      const recoveryShare = skipBiometricShareCreation ? yield sendRecoveryForShare({
-        ctx: this.ctx,
-        userId: this.userId,
-        walletId,
-        userSigner,
-        emailProps: this.getBackupKitEmailProps(),
-        forceRefresh
-      }) : yield distributeNewShare({
-        ctx: this.ctx,
-        userId: this.userId,
+      let signRes = yield this.platformUtils.signTransaction(
+        this.ctx,
+        signerId,
         walletId,
-        userShare: userSigner,
-        emailProps: this.getBackupKitEmailProps()
-      });
-      return recoveryShare;
-    });
-  }
-  waitForWalletAddress(walletId) {
-    return __async(this, null, function* () {
-      let maxPolls = 0;
+        this.wallets[walletId].signer,
+        rlpEncodedTxBase64,
+        chainId,
+        this.retrieveSessionCookie(),
+        wallet.scheme === import_user_management_client5.WalletScheme.DKLS
+      );
+      let timeStart = Date.now();
+      if (signRes.pendingTransactionId) {
+        this.platformUtils.openPopup(
+          yield this.getTransactionReviewUrl(signRes.pendingTransactionId, timeoutMs),
+          { type: "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ }
+        );
+      } else {
+        dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes);
+        return signRes;
+      }
       while (true) {
+        if (isCanceled() || Date.now() - timeStart > timeoutMs) {
+          onCancel == null ? void 0 : onCancel();
+          break;
+        }
+        yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
         try {
-          if (maxPolls === 10) {
-            break;
-          }
-          ++maxPolls;
-          const res = yield this.ctx.client.getWallets(this.userId);
-          const wallet = res.data.wallets.find((w) => w.id === walletId);
-          if (wallet && wallet.address) {
-            return;
-          }
-          yield new Promise((resolve) => setTimeout(resolve, SHORT_POLLING_INTERVAL_MS));
+          yield this.ctx.client.getPendingTransaction(this.userId, signRes.pendingTransactionId);
         } catch (err) {
-          console.error(err);
+          const error = new TransactionReviewDenied();
+          dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes, error.message);
+          throw error;
+        }
+        signRes = yield this.platformUtils.signTransaction(
+          this.ctx,
+          signerId,
+          walletId,
+          this.wallets[walletId].signer,
+          rlpEncodedTxBase64,
+          chainId,
+          this.retrieveSessionCookie(),
+          wallet.scheme === import_user_management_client5.WalletScheme.DKLS
+        );
+        if (signRes.pendingTransactionId) {
+          onPoll == null ? void 0 : onPoll();
+          continue;
+        } else {
+          break;
         }
       }
-      throw new Error("timed out waiting for wallet address");
+      if (signRes.pendingTransactionId) {
+        const error = new TransactionReviewTimeout(
+          yield this.getTransactionReviewUrl(signRes.pendingTransactionId),
+          signRes.pendingTransactionId
+        );
+        dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes, error.message);
+        throw error;
+      }
+      dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes);
+      return signRes;
     });
   }
+  isProviderModalDisabled() {
+    return !!this.disableProviderModal;
+  }
   /**
-   * Waits for a pregen wallet address to be created.
-   *
-   * @param pregenIdentifier - the identifier of the user the pregen wallet is associated with.
-   * @param walletId - the wallet id
-   * @param pregenIdentifierType - the identifier type of the user the pregen wallet is associated with.
-   * @returns - recovery share.
+   * Starts a on-ramp or off-ramp transaction and returns the Para Portal link for the user to finalize and complete it.
+   * @param {Object} opts the options object
+   * @param {OnRampPurchaseCreateParams} opts.params the transaction settings.
+   * @param {boolean} opts.shouldOpenPopup if `true`, a popup window with the link will be opened.
+   * @param {string} opts.walletId the wallet ID to use for the transaction, where funds will be sent or withdrawn.
+   * @param {string} opts.externalWalletAddress the external wallet address to send funds to or withdraw funds from, if using an external wallet.
    **/
-  waitForPregenWalletAddress(walletId) {
+  initiateOnRampTransaction(options) {
     return __async(this, null, function* () {
-      let maxPolls = 0;
-      while (true) {
-        try {
-          if (maxPolls === 10) {
-            break;
-          }
-          ++maxPolls;
-          const res = yield this.getPregenWallets();
-          const wallet = res.find((w) => w.id === walletId);
-          if (wallet && wallet.address) {
-            return;
-          }
-          yield new Promise((resolve) => setTimeout(resolve, SHORT_POLLING_INTERVAL_MS));
-        } catch (err) {
-          console.error(err);
-        }
+      var _b;
+      const _a = options, { params, shouldOpenPopup } = _a, walletParams = __objRest(_a, ["params", "shouldOpenPopup"]);
+      const onRampPurchase = yield this.ctx.client.createOnRampPurchase(__spreadValues({
+        userId: this.userId,
+        params: __spreadProps(__spreadValues({}, params), {
+          address: (_b = walletParams.externalWalletAddress) != null ? _b : this.getDisplayAddress(walletParams.walletId, { addressType: params.walletType })
+        })
+      }, walletParams));
+      const portalUrl = yield this.getOnRampTransactionUrl(__spreadValues({
+        purchaseId: onRampPurchase.id,
+        providerKey: onRampPurchase.providerKey
+      }, walletParams));
+      if (shouldOpenPopup) {
+        this.platformUtils.openPopup(portalUrl, { type: "ON_RAMP_TRANSACTION" /* ON_RAMP_TRANSACTION */ });
       }
-      throw new Error("timed out waiting for wallet address");
+      return { onRampPurchase, portalUrl };
     });
   }
   /**
-   * Creates several new wallets with the desired types. If no types are provided, this method
-   * will create one for each of the non-optional types specified in the instance's `supportedWalletTypes`
-   * object that are not already present. This is automatically called upon account creation to ensure that
-   * the user has a wallet of each required type.
-   *
-   * @param {Object} [opts] the options object.
-   * @param {boolean} [opts.skipDistribute] if `true`, the wallets' recovery share will not be distributed.
-   * @param {WalletType[]} [opts.types] the types of wallets to create.
-   * @returns {Object} the wallets created, their ids, and the recovery secret.
+   * Returns `true` if session was successfully kept alive, `false` otherwise.
    **/
-  createWalletPerType() {
-    return __async(this, arguments, function* ({
-      skipDistribute = false,
-      types
-    } = {}) {
-      const wallets = [];
-      const walletIds = {};
-      let recoverySecret;
-      for (const type of yield this.getTypesToCreate(types)) {
-        const [wallet, recoveryShare] = yield this.createWallet({ type, skipDistribute });
-        wallets.push(wallet);
-        getEquivalentTypes(type).filter((t) => !!this.isWalletTypeEnabled[t]).forEach((t) => {
-          walletIds[t] = [wallet.id];
-        });
-        if (recoveryShare) {
-          recoverySecret = recoveryShare;
-        }
+  keepSessionAlive() {
+    return __async(this, null, function* () {
+      try {
+        yield this.ctx.client.keepSessionAlive(this.userId);
+        return true;
+      } catch (err) {
+        return false;
       }
-      return { wallets, walletIds, recoverySecret };
     });
   }
   /**
-   * Refresh the current user share for a wallet.
-   *
-   * @param {Object} opts the options object.
-   * @param {string} opts.walletId the wallet id to refresh.
-   * @param {string} opts.share the current user share.
-   * @param {string} [opts.oldPartnerId] the current partner id.
-   * @param {string} [opts.newPartnerId] the new partner id to set, if any.
-   * @param {string} [opts.keyShareProtocolId]
-   * @param {boolean} [opts.redistributeBackupEncryptedShares] whether or not to redistribute backup encrypted shares.
-   * @returns {Object} the new user share and recovery secret.
-   **/
-  refreshShare(_0) {
-    return __async(this, arguments, function* ({
-      walletId,
-      share,
-      oldPartnerId,
-      newPartnerId,
-      keyShareProtocolId,
-      redistributeBackupEncryptedShares
-    }) {
-      const { signer, protocolId } = yield this.platformUtils.refresh(
-        this.ctx,
-        this.retrieveSessionCookie(),
-        this.userId,
-        walletId,
-        share,
-        oldPartnerId,
-        newPartnerId,
-        keyShareProtocolId
-      );
-      const recoverySecret = yield distributeNewShare({
-        ctx: this.ctx,
-        userId: this.userId,
-        walletId,
-        userShare: signer,
-        ignoreRedistributingBackupEncryptedShare: !redistributeBackupEncryptedShares,
-        emailProps: this.getBackupKitEmailProps(),
-        partnerId: newPartnerId,
-        protocolId
-      });
-      return { signer, recoverySecret, protocolId };
-    });
+   * Serialize the current session for import by another Para instance.
+   * @returns {string} the serialized session
+   */
+  exportSession() {
+    const sessionInfo = {
+      authInfo: __privateGet(this, _authInfo),
+      userId: this.userId,
+      wallets: this.wallets,
+      currentWalletIds: this.currentWalletIds,
+      sessionCookie: this.retrieveSessionCookie(),
+      externalWallets: this.externalWallets
+    };
+    return Buffer.from(JSON.stringify(sessionInfo)).toString("base64");
   }
   /**
-   * Creates a new wallet.
-   * @param {Object} opts the options object.
-   * @param {WalletType} opts.type the type of wallet to create.
-   * @param {boolean} opts.skipDistribute - if true, recovery share will not be distributed.
-   * @returns {[Wallet, string | null]} `[wallet, recoveryShare]` - the wallet object and the new recovery share.
-   **/
-  createWallet() {
-    return __async(this, arguments, function* ({
-      type: _type,
-      skipDistribute = false
-    } = {}) {
+   * Imports a session serialized by another Para instance.
+   * @param {string} serializedInstanceBase64 the serialized session
+   */
+  importSession(serializedInstanceBase64) {
+    return __async(this, null, function* () {
       var _a, _b;
-      this.requireApiKey();
-      const walletType = yield this.assertIsValidWalletType(
-        _type != null ? _type : (_a = this.supportedWalletTypes.find(({ optional }) => !optional)) == null ? void 0 : _a.type
-      );
-      let signer;
-      let wallet;
-      let keygenRes;
-      switch (walletType) {
-        case import_user_management_client5.WalletType.SOLANA: {
-          keygenRes = yield this.platformUtils.ed25519Keygen(
-            this.ctx,
-            this.userId,
-            this.retrieveSessionCookie(),
-            this.getBackupKitEmailProps()
-          );
-          break;
-        }
-        default: {
-          keygenRes = yield this.platformUtils.keygen(
-            this.ctx,
-            this.userId,
-            walletType,
-            null,
-            this.retrieveSessionCookie(),
-            this.getBackupKitEmailProps()
-          );
-          break;
+      const serializedInstance = Buffer.from(serializedInstanceBase64, "base64").toString("utf8");
+      const sessionInfo = jsonParse(serializedInstance);
+      const authInfo = (_a = sessionInfo.authInfo) != null ? _a : __privateMethod(this, _ParaCore_instances, toAuthInfo_fn).call(this, sessionInfo);
+      yield __privateMethod(this, _ParaCore_instances, setAuthInfo_fn).call(this, authInfo);
+      yield this.setUserId(sessionInfo.userId);
+      yield this.setWallets(sessionInfo.wallets);
+      yield this.setExternalWallets(sessionInfo.externalWallets || {});
+      for (const walletId of Object.keys(this.wallets)) {
+        if (!this.wallets[walletId].userId) {
+          this.wallets[walletId].userId = this.userId;
         }
       }
-      const walletId = keygenRes.walletId;
-      signer = keygenRes.signer;
-      this.wallets[walletId] = {
-        id: walletId,
-        signer,
-        scheme: walletType === import_user_management_client5.WalletType.SOLANA ? import_user_management_client5.WalletScheme.ED25519 : import_user_management_client5.WalletScheme.DKLS,
-        type: walletType
-      };
-      wallet = this.wallets[walletId];
-      yield this.waitForWalletAddress(wallet.id);
-      yield this.populateWalletAddresses();
-      let recoveryShare = null;
-      if (!skipDistribute) {
-        recoveryShare = yield distributeNewShare({
-          ctx: this.ctx,
-          userId: this.userId,
-          walletId: wallet.id,
-          userShare: signer,
-          emailProps: this.getBackupKitEmailProps()
-        });
+      if (Object.keys(sessionInfo.currentWalletIds).length !== 0) {
+        yield this.setCurrentWalletIds(sessionInfo.currentWalletIds);
+      } else {
+        const currentWalletIds = {};
+        for (const walletId of Object.keys(sessionInfo.wallets)) {
+          currentWalletIds[sessionInfo.wallets[walletId].type] = [
+            ...(_b = currentWalletIds[sessionInfo.wallets[walletId].type]) != null ? _b : [],
+            walletId
+          ];
+        }
+        yield this.setCurrentWalletIds(currentWalletIds);
       }
-      yield this.setCurrentWalletIds(__spreadProps(__spreadValues({}, this.currentWalletIds), {
-        [walletType]: [...(_b = this.currentWalletIds[walletType]) != null ? _b : [], walletId]
-      }));
-      const walletNoSigner = __spreadValues({}, wallet);
-      delete walletNoSigner.signer;
-      dispatchEvent(ParaEvent.WALLET_CREATED, {
-        wallet: walletNoSigner,
-        recoverySecret: recoveryShare
-      });
-      return [wallet, recoveryShare];
+      this.persistSessionCookie(sessionInfo.sessionCookie);
     });
   }
   /**
-   * Creates a new pregenerated wallet.
-   *
-   * @param {Object} opts the options object.
-   * @param {string} opts.pregenIdentifier the identifier associated with the new wallet.
-   * @param {TPregenIdentifierType} [opts.pregenIdentifierType] the identifier type. Defaults to `EMAIL`.
-   * @param {WalletType} [opts.type] the type of wallet to create. Defaults to the first non-optional type in the instance's `supportedWalletTypes` array.
-   * @returns {Wallet} the created wallet.
-   **/
-  createPregenWallet(opts) {
-    return __async(this, null, function* () {
-      var _a, _b;
-      const {
-        type: _type = (_a = this.supportedWalletTypes.find(({ optional }) => !optional)) == null ? void 0 : _a.type,
-        pregenIdentifier,
-        pregenIdentifierType = "EMAIL"
-      } = opts;
-      this.requireApiKey();
-      const walletType = yield this.assertIsValidWalletType(
-        _type != null ? _type : (_b = this.supportedWalletTypes.find(({ optional }) => !optional)) == null ? void 0 : _b.type
-      );
-      let keygenRes;
-      switch (walletType) {
-        case import_user_management_client5.WalletType.SOLANA:
-          keygenRes = yield this.platformUtils.ed25519PreKeygen(
-            this.ctx,
-            pregenIdentifier,
-            pregenIdentifierType,
-            this.retrieveSessionCookie()
-          );
-          break;
-        default:
-          keygenRes = yield this.platformUtils.preKeygen(
-            this.ctx,
-            void 0,
-            pregenIdentifier,
-            pregenIdentifierType,
-            walletType,
-            null,
-            this.retrieveSessionCookie()
-          );
-          break;
-      }
-      const { signer, walletId } = keygenRes;
-      this.wallets[walletId] = {
-        id: walletId,
-        signer,
-        scheme: walletType === import_user_management_client5.WalletType.SOLANA ? import_user_management_client5.WalletScheme.ED25519 : import_user_management_client5.WalletScheme.DKLS,
-        type: walletType,
-        isPregen: true,
-        pregenIdentifier,
-        pregenIdentifierType
-      };
-      yield this.waitForPregenWalletAddress(walletId);
-      yield this.populatePregenWalletAddresses();
-      return this.wallets[walletId];
-    });
-  }
+   * @deprecated
+   */
+  // protected exitAccountCreation() {
+  //   this.isAwaitingAccountCreation = false;
+  // }
   /**
-   * Creates new pregenerated wallets for each desired type.
-   * If no types are provided, this method will create one for each of the non-optional types
-   * specified in the instance's `supportedWalletTypes` array that are not already present.
-   * @param {Object} opts the options object.
-   * @param {string} opts.pregenIdentifier the identifier to associate each wallet with.
-   * @param {TPregenIdentifierType} opts.pregenIdentifierType - either `'EMAIL'` or `'PHONE'`.
-   * @param {WalletType[]} [opts.types] the wallet types to create. Defaults to any types the instance supports that are not already present.
-   * @returns {Wallet[]} an array containing the created wallets.
-   **/
-  createPregenWalletPerType(_0) {
-    return __async(this, arguments, function* ({
-      types,
-      pregenIdentifier,
-      pregenIdentifierType = "EMAIL"
-    }) {
-      const wallets = [];
-      for (const type of yield this.getTypesToCreate(types)) {
-        const wallet = yield this.createPregenWallet({ type, pregenIdentifier, pregenIdentifierType });
-        wallets.push(wallet);
-      }
-      return wallets;
-    });
-  }
+   * @deprecated
+   */
+  // protected exitLogin() {
+  //   this.isAwaitingLogin = false;
+  // }
   /**
-   * Claims a pregenerated wallet.
-   *
-   * @param {Object} opts the options object.
-   * @param {string} opts.pregenIdentifier string the identifier of the user claiming the wallet
-   * @param {TPregenIdentifierType} opts.pregenIdentifierType type of the identifier of the user claiming the wallet
-   * @returns {[Wallet, string | null]} `[wallet, recoveryShare]` - the wallet object and the new recovery share.
-   **/
-  claimPregenWallets() {
-    return __async(this, arguments, function* ({
-      pregenIdentifier,
-      pregenIdentifierType = !!pregenIdentifier ? "EMAIL" : void 0
-    } = {}) {
-      var _a;
-      this.requireApiKey();
-      const pregenWallets = pregenIdentifier && pregenIdentifierType ? yield this.getPregenWallets({ pregenIdentifier, pregenIdentifierType }) : yield this.getPregenWallets();
-      if (pregenWallets.length === 0) {
-        return void 0;
-      }
-      const missingWallets = pregenWallets.filter((wallet) => !this.wallets[wallet.id]);
-      if (missingWallets.length > 0) {
-        throw new Error(
-          `Cannot claim pregen wallets because wallet data is missing. Please call setUserShare first to load the wallet data for the following wallet IDs: ${missingWallets.map((w) => w.id).join(", ")}`
-        );
-      }
-      let newRecoverySecret;
-      const { walletIds } = yield this.ctx.client.claimPregenWallets({
-        userId: this.userId,
-        walletIds: pregenWallets.map((w) => w.id)
-      });
-      for (const walletId of walletIds) {
-        const wallet = this.wallets[walletId];
-        let refreshedShare;
-        if (wallet.scheme === import_user_management_client5.WalletScheme.ED25519) {
-          const distributeRes = yield distributeNewShare({
-            ctx: this.ctx,
-            userId: this.userId,
-            walletId: wallet.id,
-            userShare: this.wallets[wallet.id].signer,
-            emailProps: this.getBackupKitEmailProps(),
-            partnerId: wallet.partnerId
-          });
-          if (distributeRes.length > 0) {
-            newRecoverySecret = distributeRes;
-          }
-        } else {
-          refreshedShare = yield this.refreshShare({
-            walletId: wallet.id,
-            share: this.wallets[wallet.id].signer,
-            oldPartnerId: wallet.partnerId,
-            newPartnerId: wallet.partnerId,
-            redistributeBackupEncryptedShares: true
-          });
-          if (refreshedShare.recoverySecret) {
-            newRecoverySecret = refreshedShare.recoverySecret;
-          }
-        }
-        this.wallets[wallet.id] = __spreadProps(__spreadValues({}, this.wallets[wallet.id]), {
-          signer: (_a = refreshedShare == null ? void 0 : refreshedShare.signer) != null ? _a : wallet.signer,
-          userId: this.userId,
-          pregenIdentifier: void 0,
-          pregenIdentifierType: void 0
-        });
-        const walletNoSigner = __spreadValues({}, this.wallets[wallet.id]);
-        delete walletNoSigner.signer;
-        dispatchEvent(ParaEvent.PREGEN_WALLET_CLAIMED, {
-          wallet: walletNoSigner,
-          recoverySecret: newRecoverySecret
-        });
-      }
-      yield this.setWallets(this.wallets);
-      return newRecoverySecret;
-    });
-  }
+   * @deprecated
+   */
+  // protected exitFarcaster() {
+  //   this.isAwaitingFarcaster = false;
+  // }
   /**
-   * Updates the identifier for a pregen wallet.
-   * @param {Object} opts the options object.
-   * @param {string} opts.walletId the pregen wallet ID
-   * @param {string} opts.newPregenIdentifier the new identtifier
-   * @param {TPregenIdentifierType} opts.newPregenIdentifierType: the new identifier type
-   **/
-  updatePregenWalletIdentifier(_0) {
-    return __async(this, arguments, function* ({
-      walletId,
-      newPregenIdentifier,
-      newPregenIdentifierType
-    }) {
-      this.requireApiKey();
-      yield this.ctx.client.updatePregenWallet(walletId, {
-        pregenIdentifier: newPregenIdentifier,
-        pregenIdentifierType: newPregenIdentifierType
-      });
-      if (!!this.wallets[walletId]) {
-        this.wallets[walletId] = __spreadProps(__spreadValues({}, this.wallets[walletId]), {
-          pregenIdentifier: newPregenIdentifier,
-          pregenIdentifierType: newPregenIdentifierType
-        });
-        yield this.setWallets(this.wallets);
-      }
-    });
-  }
+   * @deprecated
+   */
+  // protected exitOAuth() {
+  //   this.isAwaitingOAuth = false;
+  // }
   /**
-   * Checks if a pregen Wallet exists for the given identifier with the current partner.
-   * @param {Object} opts the options object.
-   * @param {string} opts.pregenIdentifier string the identifier of the user claiming the wallet
-   * @param {TPregenIdentifierType} opts.pregenIdentifierType type of the string of the identifier of the user claiming the wallet
-   * @returns {boolean} whether the pregen wallet exists
-   **/
-  hasPregenWallet(_0) {
-    return __async(this, arguments, function* ({
-      pregenIdentifier,
-      pregenIdentifierType
-    }) {
-      this.requireApiKey();
-      const res = yield this.getPregenWallets({ pregenIdentifier, pregenIdentifierType });
-      const wallet = res.find((w) => w.pregenIdentifier === pregenIdentifier && w.pregenIdentifierType === pregenIdentifierType);
-      if (!wallet) {
-        return false;
-      }
-      return true;
-    });
-  }
+   * @deprecated
+   */
+  // protected exitLoops() {
+  //   this.exitAccountCreation();
+  //   this.exitLogin();
+  //   this.exitFarcaster();
+  //   this.exitOAuth();
+  // }
   /**
-   * Get pregen wallets for the given identifier.
-   * @param {Object} opts the options object.
-   * @param {string} opts.pregenIdentifier - the identifier of the user claiming the wallet
-   * @param {TPregenIdentifierType} opts.pregenIdentifierType - type of the identifier of the user claiming the wallet
-   * @returns {Promise<WalletEntity[]>} the array of found wallets
+   * Retrieves a token to verify the current session.
+   * @returns {Promise<string>} the ID
    **/
-  getPregenWallets() {
-    return __async(this, arguments, function* ({
-      pregenIdentifier,
-      pregenIdentifierType = !!pregenIdentifier ? "EMAIL" : void 0
-    } = {}) {
-      this.requireApiKey();
-      const res = yield this.ctx.client.getPregenWallets(
-        pregenIdentifier && pregenIdentifierType ? { [pregenIdentifierType]: [pregenIdentifier] } : this.pregenIds,
-        this.isPortal(),
-        this.userId
-      );
-      return res.wallets.filter((w) => this.isWalletSupported(entityToWallet(w)));
+  getVerificationToken() {
+    return __async(this, null, function* () {
+      const { sessionLookupId } = yield this.touchSession();
+      return sessionLookupId;
     });
   }
-  encodeWalletBase64(wallet) {
-    const walletJson = JSON.stringify(wallet);
-    const base64Wallet = Buffer.from(walletJson).toString("base64");
-    return base64Wallet;
-  }
-  /**
-   * Encodes the current wallets encoded in Base 64.
-   * @returns {string} the encoded wallet string
-   **/
-  getUserShare() {
-    if (Object.values(this.wallets).length === 0) {
-      return null;
-    }
-    return Object.values(this.wallets).map((wallet) => this.encodeWalletBase64(wallet)).join("-");
-  }
   /**
-   * Sets the current wallets from a Base 64 string.
-   * @param {string} base64Wallet the encoded wallet string
-   **/
-  setUserShare(base64Wallets) {
-    return __async(this, null, function* () {
-      if (!base64Wallets) {
-        return;
-      }
-      const base64WalletsSplit = base64Wallets.split("-");
-      for (const base64Wallet of base64WalletsSplit) {
-        const walletJson = Buffer.from(base64Wallet, "base64").toString();
-        const wallet = migrateWallet(JSON.parse(walletJson));
-        this.wallets[wallet.id] = wallet;
+   * Logs the user out.
+   * @param {Object} opts the options object.
+   * @param {boolean} opts.clearPregenWallets if `true`, will remove all pregen wallets from storage
+   **/
+  logout() {
+    return __async(this, arguments, function* ({ clearPregenWallets = false } = {}) {
+      yield this.ctx.client.logout();
+      yield this.clearStorage();
+      if (!clearPregenWallets) {
+        Object.entries(this.wallets).forEach(([id, wallet]) => {
+          if (!wallet.pregenIdentifier) {
+            delete this.wallets[id];
+          }
+        });
         yield this.setWallets(this.wallets);
+      } else {
+        this.wallets = {};
       }
+      this.currentWalletIds = {};
+      this.externalWallets = {};
+      this.loginEncryptionKeyPair = void 0;
+      __privateSet(this, _authInfo, void 0);
+      this.userId = void 0;
+      this.sessionCookie = void 0;
+      dispatchEvent(ParaEvent.LOGOUT_EVENT, null);
     });
   }
-  getTransactionReviewUrl(transactionId, timeoutMs) {
-    return __async(this, null, function* () {
-      const res = yield this.touchSession();
-      return this.constructPortalUrl("txReview", {
-        partnerId: res.data.partnerId,
-        pathId: transactionId,
-        params: {
-          email: this.email,
-          timeoutMs: timeoutMs == null ? void 0 : timeoutMs.toString()
-        }
-      });
-    });
-  }
-  getOnRampTransactionUrl(_i) {
+  /** @deprecated */
+  getSupportedCreateAuthMethods() {
     return __async(this, null, function* () {
-      var _j = _i, {
-        purchaseId,
-        providerKey
-      } = _j, walletParams = __objRest(_j, [
-        "purchaseId",
-        "providerKey"
-      ]);
-      const res = yield this.touchSession();
-      const [key, identifier] = (0, import_user_management_client5.extractWalletRef)(walletParams);
-      return this.constructPortalUrl("onRamp", {
-        partnerId: res.data.partnerId,
-        pathId: purchaseId,
-        sessionId: res.data.sessionId,
-        params: {
-          [key]: identifier,
-          providerKey,
-          currentWalletIds: JSON.stringify(this.currentWalletIds)
-        }
-      });
+      const partner = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      let supportedAuthMethods = /* @__PURE__ */ new Set();
+      for (const authMethod of partner.supportedAuthMethods) {
+        supportedAuthMethods.add(import_user_management_client5.AuthMethod[authMethod]);
+      }
+      return supportedAuthMethods;
     });
   }
   /**
-   * Signs a message using one of the current wallets.
+   * Converts to a string, removing sensitive data when logging this class.
    *
-   * If you want to sign the keccak256 hash of a message, hash the
-   * message first and then pass in the base64 encoded hash.
-   * @param {Object} opts the options object.
-   * @param {string} opts.walletId the id of the wallet to sign with.
-   * @param {string} opts.messageBase64 the base64 encoding of exact message that should be signed
-   * @param {number} [opts.timeout] optional timeout in milliseconds. If not present, defaults to 30 seconds.
-   * @param {string} [opts.cosmosSignDocBase64] the Cosmos `SignDoc` in base64, if applicable
+   * Doesn't work for all types of logging.
    **/
-  signMessage(_0) {
-    return __async(this, arguments, function* ({
-      walletId,
-      messageBase64,
-      timeoutMs = 3e4,
-      cosmosSignDocBase64
-    }) {
-      this.assertIsValidWalletId(walletId);
-      const wallet = this.wallets[walletId];
-      let signerId = this.userId;
-      if (wallet.partnerId && !wallet.userId) {
-        signerId = wallet.partnerId;
-      }
-      let signRes = yield this.signMessageInner({ wallet, signerId, messageBase64, cosmosSignDocBase64 });
-      let timeStart = Date.now();
-      if (signRes.pendingTransactionId) {
-        this.platformUtils.openPopup(
-          yield this.getTransactionReviewUrl(signRes.pendingTransactionId, timeoutMs),
-          { type: cosmosSignDocBase64 ? "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ : "SIGN_MESSAGE_REVIEW" /* SIGN_MESSAGE_REVIEW */ }
-        );
-      } else {
-        dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes);
-        return signRes;
+  toString() {
+    var _a, _b, _c;
+    const redactedWallets = Object.keys(this.wallets).reduce(
+      (acc, walletId) => __spreadProps(__spreadValues({}, acc), {
+        [walletId]: __spreadProps(__spreadValues({}, this.wallets[walletId]), {
+          signer: this.wallets[walletId].signer ? "[REDACTED]" : void 0
+        })
+      }),
+      {}
+    );
+    const redactedExternalWallets = Object.keys(this.externalWallets).reduce(
+      (acc, walletId) => __spreadProps(__spreadValues({}, acc), {
+        [walletId]: __spreadProps(__spreadValues({}, this.externalWallets[walletId]), {
+          signer: this.externalWallets[walletId].signer ? "[REDACTED]" : void 0
+        })
+      }),
+      {}
+    );
+    const obj = {
+      partnerId: (_a = __privateGet(this, _partner)) == null ? void 0 : _a.id,
+      supportedWalletTypes: (_b = __privateGet(this, _partner)) == null ? void 0 : _b.supportedWalletTypes,
+      cosmosPrefix: (_c = __privateGet(this, _partner)) == null ? void 0 : _c.cosmosPrefix,
+      authInfo: __privateGet(this, _authInfo),
+      userId: this.userId,
+      pregenIds: this.pregenIds,
+      currentWalletIds: this.currentWalletIds,
+      wallets: redactedWallets,
+      externalWallets: redactedExternalWallets,
+      loginEncryptionKeyPair: this.loginEncryptionKeyPair ? "[REDACTED]" : void 0,
+      ctx: {
+        apiKey: this.ctx.apiKey,
+        disableWorkers: this.ctx.disableWorkers,
+        disableWebSockets: this.ctx.disableWebSockets,
+        env: this.ctx.env,
+        offloadMPCComputationURL: this.ctx.offloadMPCComputationURL,
+        useLocalFiles: this.ctx.useLocalFiles,
+        useDKLS: this.ctx.useDKLS,
+        cosmosPrefix: this.ctx.cosmosPrefix
       }
-      yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-      while (true) {
-        if (Date.now() - timeStart > timeoutMs) {
+    };
+    return `Para ${JSON.stringify(obj, null, 2)}`;
+  }
+  /** NEW METHODS */
+  getNewCredentialAndUrl() {
+    return __async(this, arguments, function* ({
+      authMethod = "PASSKEY",
+      isForNewDevice = false,
+      portalTheme,
+      shorten = false
+    } = {}) {
+      this.assertIsAuthSet();
+      let credentialId, urlType;
+      switch (authMethod) {
+        case "PASSKEY":
+          ({
+            data: { id: credentialId }
+          } = yield this.ctx.client.addSessionPublicKey(this.userId, {
+            status: import_user_management_client5.PublicKeyStatus.PENDING,
+            type: import_user_management_client5.PublicKeyType.WEB
+          }));
+          urlType = "createAuth";
           break;
-        }
-        try {
-          yield this.ctx.client.getPendingTransaction(this.userId, signRes.pendingTransactionId);
-        } catch (err) {
-          const error = new TransactionReviewDenied();
-          dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes, error.message);
-          throw error;
-        }
-        signRes = yield this.signMessageInner({ wallet, signerId, messageBase64, cosmosSignDocBase64 });
-        if (signRes.pendingTransactionId) {
-          yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-        } else {
+        case "PASSWORD":
+          ({
+            data: { id: credentialId }
+          } = yield this.ctx.client.addSessionPasswordPublicKey(this.userId, {
+            status: import_user_management_client5.PasswordStatus.PENDING
+          }));
+          urlType = "createPassword";
           break;
-        }
-      }
-      if (signRes.pendingTransactionId) {
-        const error = new TransactionReviewTimeout(
-          yield this.getTransactionReviewUrl(signRes.pendingTransactionId),
-          signRes.pendingTransactionId
-        );
-        dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes, error.message);
-        throw error;
       }
-      dispatchEvent(ParaEvent.SIGN_MESSAGE_EVENT, signRes);
-      return signRes;
+      const url = yield this.constructPortalUrl(urlType, {
+        isForNewDevice,
+        pathId: credentialId,
+        portalTheme,
+        shorten
+      });
+      return { credentialId, url };
     });
   }
-  signMessageInner(_0) {
+  /**
+   * Returns a Para Portal URL for logging in with a WebAuth passkey or a password.
+   * @param {Object} opts the options object
+   * @param {String} opts.auth - the user auth to sign up or log in with, in the form ` { email: string } | { phone: `+${number}` } `
+   * @param {boolean} opts.useShortUrls - whether to shorten the generated portal URLs
+   * @param {Theme} opts.portalTheme the Para Portal theme to apply to the password creation URL, if other than the default theme
+   * @returns {SignUpOrLogInResponse} an object in the form of either: `{ stage: 'verify' }` or `{ stage: 'login'; passkeyUrl?: string; passwordUrl?: string; biometricHints?: BiometricLocationHint[] }`
+   */
+  getLoginUrl(_0) {
     return __async(this, arguments, function* ({
-      wallet,
-      signerId,
-      messageBase64,
-      cosmosSignDocBase64
+      authMethod = "PASSKEY",
+      shorten = false,
+      portalTheme,
+      sessionId
     }) {
-      let signRes;
-      switch (wallet.scheme) {
-        case import_user_management_client5.WalletScheme.ED25519:
-          signRes = yield this.platformUtils.ed25519Sign(
-            this.ctx,
-            signerId,
-            wallet.id,
-            wallet.signer,
-            messageBase64,
-            this.retrieveSessionCookie()
-          );
+      if (!sessionId) {
+        sessionId = (yield this.touchSession()).sessionLookupId;
+      }
+      this.assertIsAuthSet();
+      let urlType;
+      switch (authMethod) {
+        case "PASSKEY":
+          urlType = "loginAuth";
           break;
-        default:
-          signRes = yield this.platformUtils.signMessage(
-            this.ctx,
-            signerId,
-            wallet.id,
-            wallet.signer,
-            messageBase64,
-            this.retrieveSessionCookie(),
-            wallet.scheme === import_user_management_client5.WalletScheme.DKLS,
-            cosmosSignDocBase64
-          );
+        case "PASSWORD":
+          urlType = "loginPassword";
           break;
+        default:
+          throw new Error(`invalid authentication method: '${authMethod}'`);
       }
-      return signRes;
+      return this.constructPortalUrl(urlType, {
+        sessionId,
+        shorten,
+        portalTheme
+      });
     });
   }
-  /**
-   * Signs a transaction.
-   * @param {Object} opts the options object.
-   * @param {string} opts.walletId the id of the wallet to sign with.
-   * @param {string} opts.rlpEncodedTxBase64 the transaction to sign, in RLP base64 encoding
-   * @param {string} [opts.chainId] the EVM chain id of the chain the transaction is being sent on, if applicable
-   * @param {number} [opts.timeoutMs] the amount of time to wait for the user to sign the transaction, in milliseconds
-   **/
-  signTransaction(_0) {
-    return __async(this, arguments, function* ({
-      walletId,
-      rlpEncodedTxBase64,
-      chainId,
-      timeoutMs = 3e4
-    }) {
-      this.assertIsValidWalletId(walletId);
-      const wallet = this.wallets[walletId];
-      let signerId = this.userId;
-      if (wallet.partnerId && !wallet.userId) {
-        signerId = wallet.partnerId;
-      }
-      let signRes = yield this.platformUtils.signTransaction(
-        this.ctx,
-        signerId,
-        walletId,
-        this.wallets[walletId].signer,
-        rlpEncodedTxBase64,
-        chainId,
-        this.retrieveSessionCookie(),
-        wallet.scheme === import_user_management_client5.WalletScheme.DKLS
-      );
-      let timeStart = Date.now();
-      if (signRes.pendingTransactionId) {
-        this.platformUtils.openPopup(
-          yield this.getTransactionReviewUrl(signRes.pendingTransactionId, timeoutMs),
-          { type: "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ }
-        );
-      } else {
-        dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes);
-        return signRes;
-      }
-      yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-      while (true) {
-        if (Date.now() - timeStart > timeoutMs) {
-          break;
-        }
-        try {
-          yield this.ctx.client.getPendingTransaction(this.userId, signRes.pendingTransactionId);
-        } catch (err) {
-          const error = new TransactionReviewDenied();
-          dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes, error.message);
-          throw error;
+  getOAuthUrl(_0) {
+    return __async(this, arguments, function* ({ method, deeplinkUrl }) {
+      yield this.logout();
+      const { sessionLookupId } = yield this.touchSession(true);
+      return constructUrl({
+        base: getBaseOAuthUrl(this.ctx.env),
+        path: `/auth/${method}`,
+        params: {
+          apiKey: this.ctx.apiKey,
+          sessionLookupId,
+          deeplinkUrl
         }
-        signRes = yield this.platformUtils.signTransaction(
-          this.ctx,
-          signerId,
-          walletId,
-          this.wallets[walletId].signer,
-          rlpEncodedTxBase64,
-          chainId,
-          this.retrieveSessionCookie(),
-          wallet.scheme === import_user_management_client5.WalletScheme.DKLS
-        );
-        if (signRes.pendingTransactionId) {
-          yield new Promise((resolve) => setTimeout(resolve, POLLING_INTERVAL_MS));
-        } else {
-          break;
+      });
+    });
+  }
+  signUpOrLogIn(_c) {
+    return __async(this, null, function* () {
+      var _d = _c, { auth } = _d, urlOptions = __objRest(_d, ["auth"]);
+      const serverAuthState = yield this.ctx.client.signUpOrLogIn(__spreadValues(__spreadValues({}, auth), this.getVerificationEmailProps()));
+      return __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, urlOptions);
+    });
+  }
+  verifyNewAccount(_e) {
+    return __async(this, null, function* () {
+      var _f = _e, {
+        verificationCode
+      } = _f, urlOptions = __objRest(_f, [
+        "verificationCode"
+      ]);
+      this.assertIsAuthSet(["email", "phone"]);
+      const userId = this.assertUserId();
+      const serverAuthState = yield this.ctx.client.verifyNewAccount(userId, {
+        verificationCode
+      });
+      return __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, urlOptions);
+    });
+  }
+  verifyOAuth(_g) {
+    return __async(this, null, function* () {
+      var _h = _g, {
+        method,
+        deeplinkUrl,
+        isCanceled = () => false,
+        onCancel,
+        onPoll,
+        onOAuthUrl
+      } = _h, urlOptions = __objRest(_h, [
+        "method",
+        "deeplinkUrl",
+        "isCanceled",
+        "onCancel",
+        "onPoll",
+        "onOAuthUrl"
+      ]);
+      const sessionLookupId = yield __privateMethod(this, _ParaCore_instances, prepareLogin_fn).call(this);
+      const oAuthUrl = constructUrl({
+        base: getBaseOAuthUrl(this.ctx.env),
+        path: `/auth/${method}`,
+        params: {
+          apiKey: this.ctx.apiKey,
+          sessionLookupId,
+          deeplinkUrl
         }
+      });
+      onOAuthUrl(oAuthUrl);
+      const startedAt = Date.now();
+      return new Promise((resolve, reject) => {
+        (() => __async(this, null, function* () {
+          while (true) {
+            try {
+              if (isCanceled() || Date.now() - startedAt > POLLING_TIMEOUT_MS) {
+                onCancel == null ? void 0 : onCancel();
+                return reject("canceled");
+              }
+              yield new Promise((_resolve) => setTimeout(_resolve, POLLING_INTERVAL_MS));
+              const serverAuthState = yield this.ctx.client.verifyOAuth();
+              if (isServerAuthState(serverAuthState)) {
+                const authState = yield __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, __spreadProps(__spreadValues({}, urlOptions), { sessionLookupId }));
+                return resolve(authState);
+              }
+              onPoll == null ? void 0 : onPoll();
+            } catch (err) {
+              console.error(err);
+              onPoll == null ? void 0 : onPoll();
+            }
+          }
+        }))();
+      });
+    });
+  }
+  verifyFarcaster(_i) {
+    return __async(this, null, function* () {
+      var _j = _i, {
+        isCanceled = () => false,
+        onConnectUri,
+        onCancel,
+        onPoll
+      } = _j, urlOptions = __objRest(_j, [
+        "isCanceled",
+        "onConnectUri",
+        "onCancel",
+        "onPoll"
+      ]);
+      const {
+        data: { connect_uri: connectUri }
+      } = yield this.ctx.client.initializeFarcasterLogin();
+      onConnectUri(connectUri);
+      return new Promise((resolve, reject) => {
+        (() => __async(this, null, function* () {
+          const startedAt = Date.now();
+          while (true) {
+            try {
+              if (isCanceled() || Date.now() - startedAt > POLLING_TIMEOUT_MS) {
+                onCancel == null ? void 0 : onCancel();
+                return reject("canceled");
+              }
+              yield new Promise((_resolve) => setTimeout(_resolve, POLLING_INTERVAL_MS));
+              const serverAuthState = yield this.ctx.client.getFarcasterAuthStatus();
+              if (isServerAuthState(serverAuthState)) {
+                const authState = yield __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, urlOptions);
+                return resolve(authState);
+              }
+              onPoll == null ? void 0 : onPoll();
+            } catch (e) {
+              console.error(e);
+              return reject(e);
+            }
+          }
+        }))();
+      });
+    });
+  }
+  /**
+   * Validates the response received from an attempted Telegram login for authenticity, then
+   * creates or retrieves the corresponding Para user and prepares the Para instance to sign in with that user.
+   * @param authResponse - the response JSON object received from the Telegram widget.
+   * @returns `{ isValid: boolean; telegramUserId?: string; userId?: string; isNewUser?: boolean; supportedAuthMethods?: AuthMethod[]; biometricHints?: BiometricLocationHint[] }`
+   */
+  verifyTelegram(_k) {
+    return __async(this, null, function* () {
+      var _l = _k, {
+        telegramAuthResponse
+      } = _l, urlOptions = __objRest(_l, [
+        "telegramAuthResponse"
+      ]);
+      try {
+        const serverAuthState = yield this.ctx.client.verifyTelegram(telegramAuthResponse);
+        return __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, urlOptions);
+      } catch (e) {
+        throw new Error(e.message);
       }
-      if (signRes.pendingTransactionId) {
-        const error = new TransactionReviewTimeout(
-          yield this.getTransactionReviewUrl(signRes.pendingTransactionId),
-          signRes.pendingTransactionId
-        );
-        dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes, error.message);
-        throw error;
-      }
-      dispatchEvent(ParaEvent.SIGN_TRANSACTION_EVENT, signRes);
-      return signRes;
     });
   }
   /**
-   * @deprecated
-   * Sends a transaction.
-   * @param walletId - id of the wallet to send the transaction from.
-   * @param rlpEncodedTxBase64 - rlp encoded tx as base64 string
-   * @param chainId - chain id of the chain the transaction is being sent on.
+   * Waits for the session to be active and sets up the user.
+   *
+   * @param {Object} opts the options object
+   * @param {Window} [opts.popupWindow] the popup window being used for login.
+   * @param {boolean} [opts.skipSessionRefresh] whether to skip refreshing the session.
+   * @returns {Object} `{ isComplete: boolean; isError: boolean; needsWallet: boolean; partnerId: string; }` the result data
    **/
-  sendTransaction(_0) {
+  waitForLogin() {
     return __async(this, arguments, function* ({
-      walletId,
-      rlpEncodedTxBase64,
-      chainId
+      isCanceled = () => false,
+      onCancel,
+      onPoll,
+      skipSessionRefresh = false
+    } = {}) {
+      const startedAt = Date.now();
+      return new Promise((resolve, reject) => {
+        (() => __async(this, null, function* () {
+          var _a;
+          if (!this.isExternalWalletAuth) {
+            this.externalWallets = {};
+          }
+          while (true) {
+            if (isCanceled() || Date.now() - startedAt > POLLING_TIMEOUT_MS) {
+              dispatchEvent(ParaEvent.LOGIN_EVENT, { isComplete: false }, "failed to setup user");
+              onCancel == null ? void 0 : onCancel();
+              return reject("canceled");
+            }
+            yield new Promise((resolve2) => setTimeout(resolve2, POLLING_INTERVAL_MS));
+            try {
+              let session = yield this.touchSession();
+              if (!session.isAuthenticated) {
+                onPoll == null ? void 0 : onPoll();
+                continue;
+              }
+              session = yield this.userSetupAfterLogin();
+              const needsWallet = (_a = session.needsWallet) != null ? _a : false;
+              if (!needsWallet) {
+                if (this.currentWalletIdsArray.length === 0) {
+                  onPoll == null ? void 0 : onPoll();
+                  continue;
+                }
+              }
+              const fetchedWallets = yield this.fetchWallets();
+              const tempSharesRes = yield this.getTransmissionKeyShares();
+              if (tempSharesRes.data.temporaryShares.length === fetchedWallets.length) {
+                yield this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
+                yield this.claimPregenWallets();
+                const resp = {
+                  needsWallet: needsWallet || Object.values(this.wallets).length === 0,
+                  partnerId: session.partnerId
+                };
+                dispatchEvent(ParaEvent.LOGIN_EVENT, resp);
+                return resolve(resp);
+              }
+              onPoll == null ? void 0 : onPoll();
+            } catch (err) {
+              console.error(err);
+              onPoll == null ? void 0 : onPoll();
+            }
+          }
+        }))();
+      });
+    });
+  }
+  waitForSignup(_0) {
+    return __async(this, arguments, function* ({
+      isCanceled = () => false,
+      onCancel,
+      onPoll
     }) {
-      this.assertIsValidWalletId(walletId);
-      const wallet = this.wallets[walletId];
-      const signRes = yield this.platformUtils.sendTransaction(
-        this.ctx,
-        this.userId,
-        walletId,
-        this.wallets[walletId].signer,
-        rlpEncodedTxBase64,
-        chainId,
-        this.retrieveSessionCookie(),
-        wallet.scheme === import_user_management_client5.WalletScheme.DKLS
-      );
-      if (signRes.pendingTransactionId) {
-        this.platformUtils.openPopup(
-          yield this.getTransactionReviewUrl(signRes.pendingTransactionId),
-          { type: "SIGN_TRANSACTION_REVIEW" /* SIGN_TRANSACTION_REVIEW */ }
-        );
-        const error = new TransactionReviewError(
-          yield this.getTransactionReviewUrl(signRes.pendingTransactionId)
-        );
-        throw error;
+      const startedAt = Date.now();
+      return new Promise((resolve, reject) => {
+        (() => __async(this, null, function* () {
+          yield this.touchSession();
+          if (!this.isExternalWalletAuth) {
+            this.externalWallets = {};
+          }
+          while (true) {
+            try {
+              if (isCanceled() || Date.now() - startedAt > POLLING_TIMEOUT_MS) {
+                onCancel == null ? void 0 : onCancel();
+                dispatchEvent(ParaEvent.ACCOUNT_CREATION_EVENT, false, "failed to sign up user");
+                return reject("canceled");
+              }
+              yield new Promise((_resolve) => setTimeout(_resolve, POLLING_INTERVAL_MS));
+              if (yield this.isSessionActive()) {
+                dispatchEvent(ParaEvent.ACCOUNT_CREATION_EVENT, true);
+                return resolve(true);
+              }
+              onPoll == null ? void 0 : onPoll();
+            } catch (err) {
+              console.error(err);
+              onPoll == null ? void 0 : onPoll();
+            }
+          }
+        }))();
+      });
+    });
+  }
+  waitForWalletCreation() {
+    return __async(this, arguments, function* ({
+      isCanceled = () => false,
+      onCancel
+    } = {}) {
+      yield this.waitForSignup({ isCanceled, onCancel });
+      const { supportedWalletTypes } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      const pregenWallets = yield this.getPregenWallets();
+      let recoverySecret, walletIds = {};
+      if (pregenWallets.length > 0) {
+        recoverySecret = yield this.claimPregenWallets();
+        walletIds = supportedWalletTypes.reduce((acc, { type }) => {
+          var _a;
+          return __spreadProps(__spreadValues({}, acc), {
+            [type]: [(_a = pregenWallets.find((w) => !!WalletSchemeTypeMap[w.scheme][type])) == null ? void 0 : _a.id]
+          });
+        }, {});
       }
-      return signRes;
+      const created = yield this.createWalletPerType();
+      recoverySecret = recoverySecret != null ? recoverySecret : created.recoverySecret;
+      walletIds = __spreadValues(__spreadValues({}, walletIds), created.walletIds);
+      const resp = { walletIds, recoverySecret };
+      dispatchEvent(ParaEvent.ACCOUNT_SETUP_EVENT, resp);
+      return resp;
     });
   }
-  isProviderModalDisabled() {
-    return !!this.disableProviderModal;
+  loginExternalWallet(_m) {
+    return __async(this, null, function* () {
+      var _n = _m, {
+        externalWallet
+      } = _n, urlOptions = __objRest(_n, [
+        "externalWallet"
+      ]);
+      this.requireApiKey();
+      const serverAuthState = yield this.ctx.client.loginExternalWallet({ externalWallet });
+      return __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, urlOptions);
+    });
+  }
+  verifyExternalWallet(_o) {
+    return __async(this, null, function* () {
+      var _p = _o, {
+        externalWallet,
+        signedMessage,
+        cosmosPublicKeyHex,
+        cosmosSigner
+      } = _p, urlOptions = __objRest(_p, [
+        "externalWallet",
+        "signedMessage",
+        "cosmosPublicKeyHex",
+        "cosmosSigner"
+      ]);
+      const serverAuthState = yield this.ctx.client.verifyExternalWallet(this.userId, {
+        externalWallet,
+        signedMessage,
+        cosmosPublicKeyHex,
+        cosmosSigner
+      });
+      return __privateMethod(this, _ParaCore_instances, prepareAuthState_fn).call(this, serverAuthState, urlOptions);
+    });
   }
   /**
-   * Starts a on-ramp or off-ramp transaction and returns the Para Portal link for the user to finalize and complete it.
+   * Performs 2FA verification.
    * @param {Object} opts the options object
-   * @param {OnRampPurchaseCreateParams} opts.params the transaction settings.
-   * @param {boolean} opts.shouldOpenPopup if `true`, a popup window with the link will be opened.
-   * @param {string} opts.walletId the wallet ID to use for the transaction, where funds will be sent or withdrawn.
-   * @param {string} opts.externalWalletAddress the external wallet address to send funds to or withdraw funds from, if using an external wallet.
-   **/
-  initiateOnRampTransaction(options) {
+   * @param {string} opts.email the email to use for performing a 2FA verification.
+   * @param {string} opts.verificationCode the verification code to received via 2FA.
+   * @returns {Object} `{ address, initiatedAt, status, userId, walletId }`
+   */
+  verify2fa(_0) {
+    return __async(this, arguments, function* ({ auth, verificationCode }) {
+      const res = yield this.ctx.client.verify2FA(auth, verificationCode);
+      return {
+        initiatedAt: res.data.initiatedAt,
+        status: res.data.status,
+        userId: res.data.userId,
+        wallets: res.data.wallets
+      };
+    });
+  }
+  /**
+   * Sets up two-factor authentication for the current user.
+   * @returns {string} uri - uri to use for setting up 2FA
+   * */
+  setup2fa() {
     return __async(this, null, function* () {
-      var _b;
-      const _a = options, { params, shouldOpenPopup } = _a, walletParams = __objRest(_a, ["params", "shouldOpenPopup"]);
-      const onRampPurchase = yield this.ctx.client.createOnRampPurchase(__spreadValues({
-        userId: this.userId,
-        params: __spreadProps(__spreadValues({}, params), {
-          address: (_b = walletParams.externalWalletAddress) != null ? _b : this.getDisplayAddress(walletParams.walletId, { addressType: params.walletType })
-        })
-      }, walletParams));
-      const portalUrl = yield this.getOnRampTransactionUrl(__spreadValues({
-        purchaseId: onRampPurchase.id,
-        providerKey: onRampPurchase.providerKey
-      }, walletParams));
-      if (shouldOpenPopup) {
-        this.platformUtils.openPopup(portalUrl, { type: "ON_RAMP_TRANSACTION" /* ON_RAMP_TRANSACTION */ });
-      }
-      return { onRampPurchase, portalUrl };
+      const userId = this.assertUserId();
+      const res = yield this.ctx.client.setup2FA(userId);
+      return res;
     });
   }
   /**
-   * Returns `true` if session was successfully kept alive, `false` otherwise.
+   * Enables 2FA.
+   * @param {Object} opts the options object
+   * @param {string} opts.verificationCode - the verification code received via 2FA.
+   */
+  enable2fa(_0) {
+    return __async(this, arguments, function* ({ verificationCode }) {
+      const userId = this.assertUserId();
+      yield this.ctx.client.enable2FA(userId, verificationCode);
+    });
+  }
+  /**
+   * Creates a new pregenerated wallet.
+   *
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier the identifier associated with the new wallet.
+   * @param {TPregenIdentifierType} [opts.pregenIdentifierType] the identifier type. Defaults to `EMAIL`.
+   * @param {WalletType} [opts.type] the type of wallet to create. Defaults to the first non-optional type in the instance's `supportedWalletTypes` array.
+   * @returns {Wallet} the created wallet.
    **/
-  keepSessionAlive() {
+  createPregenWallet(opts) {
     return __async(this, null, function* () {
-      try {
-        yield this.ctx.client.keepSessionAlive(this.userId);
-        return true;
-      } catch (err) {
-        return false;
+      var _a, _b;
+      const { supportedWalletTypes } = yield __privateMethod(this, _ParaCore_instances, assertPartner_fn).call(this);
+      const { type: _type = (_a = supportedWalletTypes.find(({ optional }) => !optional)) == null ? void 0 : _a.type, pregenId } = opts;
+      this.requireApiKey();
+      const walletType = yield this.assertIsValidWalletType(
+        _type != null ? _type : (_b = supportedWalletTypes.find(({ optional }) => !optional)) == null ? void 0 : _b.type
+      );
+      const [pregenIdentifierType, pregenIdentifier] = (0, import_user_management_client5.toPregenTypeAndId)(pregenId);
+      let keygenRes;
+      switch (walletType) {
+        case import_user_management_client5.WalletType.SOLANA:
+          keygenRes = yield this.platformUtils.ed25519PreKeygen(
+            this.ctx,
+            pregenIdentifier,
+            pregenIdentifierType,
+            this.retrieveSessionCookie()
+          );
+          break;
+        default:
+          keygenRes = yield this.platformUtils.preKeygen(
+            this.ctx,
+            void 0,
+            pregenIdentifier,
+            pregenIdentifierType,
+            walletType,
+            null,
+            this.retrieveSessionCookie()
+          );
+          break;
       }
+      const { signer, walletId } = keygenRes;
+      this.wallets[walletId] = {
+        id: walletId,
+        signer,
+        scheme: walletType === import_user_management_client5.WalletType.SOLANA ? import_user_management_client5.WalletScheme.ED25519 : import_user_management_client5.WalletScheme.DKLS,
+        type: walletType,
+        isPregen: true,
+        pregenIdentifier,
+        pregenIdentifierType
+      };
+      yield this.waitForPregenWalletAddress(walletId);
+      yield this.populatePregenWalletAddresses();
+      return this.wallets[walletId];
     });
   }
   /**
-   * Serialize the current session for import by another Para instance.
-   * @param {boolean} excludeSigners - whether or not to exclude the signer from the exported wallets.
-   * @returns {string} the serialized session
-   */
-  exportSession({ excludeSigners } = {}) {
-    const sessionInfo = {
-      email: this.email,
-      userId: this.userId,
-      wallets: structuredClone(this.wallets),
-      currentWalletIds: this.currentWalletIds,
-      sessionCookie: this.sessionCookie,
-      phone: this.phone,
-      countryCode: this.countryCode,
-      telegramUserId: this.telegramUserId,
-      farcasterUsername: this.farcasterUsername,
-      externalWallets: this.externalWallets
-    };
-    if (excludeSigners) {
-      for (const wallet of Object.values(sessionInfo.wallets)) {
-        delete wallet.signer;
+   * Creates new pregenerated wallets for each desired type.
+   * If no types are provided, this method will create one for each of the non-optional types
+   * specified in the instance's `supportedWalletTypes` array that are not already present.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier the identifier to associate each wallet with.
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType - either `'EMAIL'` or `'PHONE'`.
+   * @param {WalletType[]} [opts.types] the wallet types to create. Defaults to any types the instance supports that are not already present.
+   * @returns {Wallet[]} an array containing the created wallets.
+   **/
+  createPregenWalletPerType(_0) {
+    return __async(this, arguments, function* ({
+      types,
+      pregenId
+    }) {
+      const wallets = [];
+      for (const type of yield this.getTypesToCreate(types)) {
+        const wallet = yield this.createPregenWallet({ type, pregenId });
+        wallets.push(wallet);
       }
-    }
-    return Buffer.from(JSON.stringify(sessionInfo)).toString("base64");
+      return wallets;
+    });
   }
   /**
-   * Imports a session serialized by another Para instance.
-   * @param {string} serializedInstanceBase64 the serialized session
-   */
-  importSession(serializedInstanceBase64) {
-    return __async(this, null, function* () {
+   * Claims a pregenerated wallet.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier string the identifier of the user claiming the wallet
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType type of the identifier of the user claiming the wallet
+   * @returns {[Wallet, string | null]} `[wallet, recoveryShare]` - the wallet object and the new recovery share.
+   **/
+  claimPregenWallets() {
+    return __async(this, arguments, function* ({
+      pregenId
+    } = {}) {
       var _a;
-      const serializedInstance = Buffer.from(serializedInstanceBase64, "base64").toString("utf8");
-      const sessionInfo = JSON.parse(serializedInstance);
-      yield this.setEmail(sessionInfo.email);
-      yield this.setTelegramUserId(sessionInfo.telegramUserId);
-      yield this.setFarcasterUsername(sessionInfo.farcasterUsername);
-      yield this.setUserId(sessionInfo.userId);
-      yield this.setWallets(sessionInfo.wallets);
-      yield this.setExternalWallets(sessionInfo.externalWallets || {});
-      for (const walletId of Object.keys(this.wallets)) {
-        if (!this.wallets[walletId].userId) {
-          this.wallets[walletId].userId = this.userId;
-        }
+      this.requireApiKey();
+      const pregenWallets = pregenId ? yield this.getPregenWallets({ pregenId }) : yield this.getPregenWallets();
+      if (pregenWallets.length === 0) {
+        return void 0;
       }
-      if (Object.keys(sessionInfo.currentWalletIds).length !== 0) {
-        yield this.setCurrentWalletIds(sessionInfo.currentWalletIds);
-      } else {
-        const currentWalletIds = {};
-        for (const walletId of Object.keys(sessionInfo.wallets)) {
-          currentWalletIds[sessionInfo.wallets[walletId].type] = [
-            ...(_a = currentWalletIds[sessionInfo.wallets[walletId].type]) != null ? _a : [],
-            walletId
-          ];
+      let newRecoverySecret;
+      const { walletIds } = yield this.ctx.client.claimPregenWallets({
+        userId: this.userId,
+        walletIds: pregenWallets.map((w) => w.id)
+      });
+      for (const walletId of walletIds) {
+        const wallet = this.wallets[walletId];
+        let refreshedShare;
+        if (wallet.scheme === import_user_management_client5.WalletScheme.ED25519) {
+          const distributeRes = yield distributeNewShare({
+            ctx: this.ctx,
+            userId: this.userId,
+            walletId: wallet.id,
+            userShare: this.wallets[wallet.id].signer,
+            emailProps: this.getBackupKitEmailProps(),
+            partnerId: wallet.partnerId
+          });
+          if (distributeRes.length > 0) {
+            newRecoverySecret = distributeRes;
+          }
+        } else {
+          refreshedShare = yield this.refreshShare({
+            walletId: wallet.id,
+            share: this.wallets[wallet.id].signer,
+            oldPartnerId: wallet.partnerId,
+            newPartnerId: wallet.partnerId,
+            redistributeBackupEncryptedShares: true
+          });
+          if (refreshedShare.recoverySecret) {
+            newRecoverySecret = refreshedShare.recoverySecret;
+          }
         }
-        yield this.setCurrentWalletIds(currentWalletIds);
+        this.wallets[wallet.id] = __spreadProps(__spreadValues({}, this.wallets[wallet.id]), {
+          signer: (_a = refreshedShare == null ? void 0 : refreshedShare.signer) != null ? _a : wallet.signer,
+          userId: this.userId,
+          pregenIdentifier: void 0,
+          pregenIdentifierType: void 0
+        });
+        const walletNoSigner = __spreadValues({}, this.wallets[wallet.id]);
+        delete walletNoSigner.signer;
+        dispatchEvent(ParaEvent.PREGEN_WALLET_CLAIMED, {
+          wallet: walletNoSigner,
+          recoverySecret: newRecoverySecret
+        });
       }
-      this.persistSessionCookie(sessionInfo.sessionCookie);
-      yield this.setPhoneNumber(sessionInfo.phone, sessionInfo.countryCode);
-    });
-  }
-  exitAccountCreation() {
-    this.isAwaitingAccountCreation = false;
-  }
-  exitLogin() {
-    this.isAwaitingLogin = false;
-  }
-  exitFarcaster() {
-    this.isAwaitingFarcaster = false;
-  }
-  exitOAuth() {
-    this.isAwaitingOAuth = false;
-  }
-  exitLoops() {
-    this.exitAccountCreation();
-    this.exitLogin();
-    this.exitFarcaster();
-    this.exitOAuth();
-  }
-  /**
-   * Retrieves a token to verify the current session.
-   * @returns {Promise<string>} the ID
-   **/
-  getVerificationToken() {
-    return __async(this, null, function* () {
-      const { data } = yield this.touchSession();
-      return data.sessionLookupId;
+      yield this.setWallets(this.wallets);
+      return newRecoverySecret;
     });
   }
   /**
-   * Logs the user out.
+   * Updates the identifier for a pregen wallet.
    * @param {Object} opts the options object.
-   * @param {boolean} opts.clearPregenWallets if `true`, will remove all pregen wallets from storage
+   * @param {string} opts.walletId the pregen wallet ID
+   * @param {string} opts.newPregenIdentifier the new identtifier
+   * @param {TPregenIdentifierType} opts.newPregenIdentifierType: the new identifier type
    **/
-  logout() {
-    return __async(this, arguments, function* ({ clearPregenWallets = false } = {}) {
-      yield this.ctx.client.logout();
-      yield this.clearStorage();
-      if (!clearPregenWallets) {
-        Object.entries(this.wallets).forEach(([id, wallet]) => {
-          if (!wallet.pregenIdentifier) {
-            delete this.wallets[id];
-          }
+  updatePregenWalletIdentifier(_0) {
+    return __async(this, arguments, function* ({
+      walletId,
+      newPregenId
+    }) {
+      this.requireApiKey();
+      const [newPregenIdentifierType, newPregenIdentifier] = (0, import_user_management_client5.toPregenTypeAndId)(newPregenId);
+      yield this.ctx.client.updatePregenWallet(walletId, {
+        pregenIdentifier: newPregenIdentifier,
+        pregenIdentifierType: newPregenIdentifierType
+      });
+      if (!!this.wallets[walletId]) {
+        this.wallets[walletId] = __spreadProps(__spreadValues({}, this.wallets[walletId]), {
+          pregenIdentifier: newPregenIdentifier,
+          pregenIdentifierType: newPregenIdentifierType
         });
         yield this.setWallets(this.wallets);
-      } else {
-        this.wallets = {};
       }
-      this.currentWalletIds = {};
-      this.externalWallets = {};
-      this.loginEncryptionKeyPair = void 0;
-      this.email = void 0;
-      this.telegramUserId = void 0;
-      this.phone = void 0;
-      this.countryCode = void 0;
-      this.userId = void 0;
-      this.sessionCookie = void 0;
-      dispatchEvent(ParaEvent.LOGOUT_EVENT, null);
     });
   }
-  getSupportedCreateAuthMethods() {
-    return __async(this, null, function* () {
-      const res = yield this.touchSession();
-      const partnerId = res.data.partnerId;
-      const partnerRes = yield this.ctx.client.getPartner(partnerId);
-      let supportedAuthMethods = /* @__PURE__ */ new Set();
-      for (const authMethod of partnerRes.data.partner.supportedAuthMethods) {
-        supportedAuthMethods.add(import_user_management_client5.AuthMethod[authMethod]);
+  /**
+   * Checks if a pregen Wallet exists for the given identifier with the current partner.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier string the identifier of the user claiming the wallet
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType type of the string of the identifier of the user claiming the wallet
+   * @returns {boolean} whether the pregen wallet exists
+   **/
+  hasPregenWallet(_0) {
+    return __async(this, arguments, function* ({ pregenId }) {
+      this.requireApiKey();
+      const [pregenIdentifierType, pregenIdentifier] = (0, import_user_management_client5.toPregenTypeAndId)(pregenId);
+      const wallets = yield this.getPregenWallets({ pregenId });
+      const wallet = wallets.find(
+        (w) => w.pregenIdentifier === pregenIdentifier && w.pregenIdentifierType === pregenIdentifierType
+      );
+      if (!wallet) {
+        return false;
       }
-      return supportedAuthMethods;
+      return true;
     });
   }
   /**
-   * Converts to a string, removing sensitive data when logging this class.
-   *
-   * Doesn't work for all types of logging.
+   * Get pregen wallets for the given identifier.
+   * @param {Object} opts the options object.
+   * @param {string} opts.pregenIdentifier - the identifier of the user claiming the wallet
+   * @param {TPregenIdentifierType} opts.pregenIdentifierType - type of the identifier of the user claiming the wallet
+   * @returns {Promise<WalletEntity[]>} the array of found wallets
    **/
-  toString() {
-    const redactedWallets = Object.keys(this.wallets).reduce(
-      (acc, walletId) => __spreadProps(__spreadValues({}, acc), {
-        [walletId]: __spreadProps(__spreadValues({}, this.wallets[walletId]), {
-          signer: this.wallets[walletId].signer ? "[REDACTED]" : void 0
-        })
-      }),
-      {}
-    );
-    const redactedExternalWallets = Object.keys(this.externalWallets).reduce(
-      (acc, walletId) => __spreadProps(__spreadValues({}, acc), {
-        [walletId]: __spreadProps(__spreadValues({}, this.externalWallets[walletId]), {
-          signer: this.externalWallets[walletId].signer ? "[REDACTED]" : void 0
-        })
-      }),
-      {}
-    );
-    const obj = {
-      supportedWalletTypes: this.supportedWalletTypes,
-      cosmosPrefix: this.cosmosPrefix,
-      email: this.email,
-      phone: this.phone,
-      countryCode: this.countryCode,
-      telegramUserId: this.telegramUserId,
-      farcasterUsername: this.farcasterUsername,
-      userId: this.userId,
-      pregenIds: this.pregenIds,
-      currentWalletIds: this.currentWalletIds,
-      wallets: redactedWallets,
-      externalWallets: redactedExternalWallets,
-      loginEncryptionKeyPair: this.loginEncryptionKeyPair ? "[REDACTED]" : void 0,
-      ctx: {
-        apiKey: this.ctx.apiKey,
-        disableWorkers: this.ctx.disableWorkers,
-        disableWebSockets: this.ctx.disableWebSockets,
-        env: this.ctx.env,
-        offloadMPCComputationURL: this.ctx.offloadMPCComputationURL,
-        useLocalFiles: this.ctx.useLocalFiles,
-        useDKLS: this.ctx.useDKLS,
-        cosmosPrefix: this.ctx.cosmosPrefix
-      }
-    };
-    return `Para ${JSON.stringify(obj, null, 2)}`;
+  getPregenWallets() {
+    return __async(this, arguments, function* ({ pregenId } = {}) {
+      this.requireApiKey();
+      const res = yield this.ctx.client.getPregenWallets(
+        pregenId ? (0, import_user_management_client5.toPregenIds)(pregenId) : this.pregenIds,
+        this.isPortal(),
+        this.userId
+      );
+      return res.wallets.filter((w) => this.isWalletSupported(entityToWallet(w)));
+    });
   }
 };
-_supportedWalletTypes = new WeakMap();
-_supportedWalletTypesOpt = new WeakMap();
+_authInfo = new WeakMap();
+_partner = new WeakMap();
+_ParaCore_instances = new WeakSet();
+assertPartner_fn = function() {
+  return __async(this, null, function* () {
+    var _a, _b;
+    if (!__privateGet(this, _partner)) {
+      yield this.touchSession();
+    }
+    if (((_a = __privateGet(this, _partner)) == null ? void 0 : _a.cosmosPrefix) && this.ctx.cosmosPrefix !== __privateGet(this, _partner).cosmosPrefix) {
+      this.ctx.cosmosPrefix = (_b = __privateGet(this, _partner)) == null ? void 0 : _b.cosmosPrefix;
+    }
+    return __privateGet(this, _partner);
+  });
+};
+toAuthInfo_fn = function({
+  email,
+  phone,
+  countryCode,
+  farcasterUsername,
+  telegramUserId,
+  externalWalletAddress
+}) {
+  let auth;
+  switch (true) {
+    case !!email:
+      auth = { email };
+      break;
+    case !!phone:
+      {
+        const validPhone = formatPhoneNumber(phone, countryCode);
+        if (validPhone) auth = { phone: formatPhoneNumber(phone, countryCode) };
+      }
+      break;
+    case !!farcasterUsername:
+      auth = { farcasterUsername };
+      break;
+    case !!telegramUserId:
+      auth = { telegramUserId };
+      break;
+    case !!externalWalletAddress:
+      auth = { externalWalletAddress };
+      break;
+  }
+  return (0, import_user_management_client5.extractAuthInfo)(auth);
+};
+setAuthInfo_fn = function(authInfo) {
+  return __async(this, null, function* () {
+    __privateSet(this, _authInfo, authInfo);
+    yield this.localStorageSetItem(LOCAL_STORAGE_AUTH_INFO, JSON.stringify(authInfo));
+    yield this.localStorageRemoveItem(LOCAL_STORAGE_EMAIL);
+    yield this.localStorageRemoveItem(LOCAL_STORAGE_PHONE);
+    yield this.localStorageRemoveItem(LOCAL_STORAGE_COUNTRY_CODE);
+    yield this.localStorageRemoveItem(LOCAL_STORAGE_FARCASTER_USERNAME);
+    yield this.localStorageRemoveItem(LOCAL_STORAGE_TELEGRAM_USER_ID);
+  });
+};
+getPartner_fn = function(partnerId) {
+  return __async(this, null, function* () {
+    const res = yield this.ctx.client.getPartner(partnerId);
+    __privateSet(this, _partner, res.data.partner);
+    return __privateGet(this, _partner);
+  });
+};
+prepareAuthState_fn = function(_0) {
+  return __async(this, arguments, function* (serverAuthState, opts = {}) {
+    if (!opts.sessionLookupId && serverAuthState.stage === "login") {
+      opts.sessionLookupId = yield __privateMethod(this, _ParaCore_instances, prepareLogin_fn).call(this);
+    }
+    const { auth, externalWallet, userId, displayName, pfpUrl, username } = serverAuthState;
+    const authInfo = __spreadValues(__spreadValues({}, (0, import_user_management_client5.extractAuthInfo)(auth, { isRequired: true })), Object.fromEntries(
+      Object.entries({
+        displayName,
+        pfpUrl,
+        username,
+        externalWallet
+      }).filter(([_, v]) => !!v)
+    ));
+    yield __privateMethod(this, _ParaCore_instances, setAuthInfo_fn).call(this, authInfo);
+    yield this.assertIsAuthSet();
+    if (!!externalWallet) {
+      yield this.setExternalWallet(externalWallet);
+    }
+    if (!!userId) {
+      yield this.setUserId(userId);
+    }
+    let authState;
+    switch (serverAuthState.stage) {
+      case "verify":
+        authState = serverAuthState;
+        break;
+      case "login":
+        authState = yield __privateMethod(this, _ParaCore_instances, prepareLoginState_fn).call(this, serverAuthState, __spreadProps(__spreadValues({}, opts), { sessionLookupId: opts.sessionLookupId }));
+        break;
+      case "signup":
+        authState = yield __privateMethod(this, _ParaCore_instances, prepareSignUpState_fn).call(this, serverAuthState, opts);
+        break;
+    }
+    return authState;
+  });
+};
+prepareLogin_fn = function() {
+  return __async(this, null, function* () {
+    yield this.logout();
+    const { sessionLookupId } = yield this.touchSession(true);
+    if (!this.loginEncryptionKeyPair) {
+      yield this.setLoginEncryptionKeyPair();
+    }
+    return sessionLookupId;
+  });
+};
+prepareLoginState_fn = function(_0, _1) {
+  return __async(this, arguments, function* (loginState, {
+    useShortUrls: shorten = false,
+    portalTheme,
+    sessionLookupId
+  }) {
+    const _a = loginState, { loginAuthMethods } = _a, authState = __objRest(_a, ["loginAuthMethods"]);
+    return __spreadValues(__spreadValues(__spreadValues({}, authState), !this.isNativePasskey && loginAuthMethods.includes(import_user_management_client5.AuthMethod.PASSKEY) ? {
+      passkeyUrl: yield this.getLoginUrl({ sessionId: sessionLookupId, shorten, portalTheme }),
+      passkeyKnownDeviceUrl: yield this.constructPortalUrl("loginAuth", {
+        sessionId: sessionLookupId,
+        newDevice: {
+          sessionId: sessionLookupId,
+          encryptionKey: getPublicKeyHex(this.loginEncryptionKeyPair)
+        },
+        shorten,
+        portalTheme
+      })
+    } : {}), loginAuthMethods.includes(import_user_management_client5.AuthMethod.PASSWORD) ? {
+      passwordUrl: yield this.constructPortalUrl("loginPassword", {
+        sessionId: sessionLookupId,
+        shorten,
+        portalTheme
+      })
+    } : {});
+  });
+};
+prepareSignUpState_fn = function(_0, _1) {
+  return __async(this, arguments, function* (serverSignupState, { useShortUrls: shorten = false, portalTheme }) {
+    const _a = serverSignupState, { signupAuthMethods } = _a, authState = __objRest(_a, ["signupAuthMethods"]);
+    const [isPasskey, isPassword] = [
+      signupAuthMethods.includes(import_user_management_client5.AuthMethod.PASSKEY),
+      signupAuthMethods.includes(import_user_management_client5.AuthMethod.PASSWORD)
+    ];
+    if (!isPasskey && !isPassword) {
+      throw new Error(
+        "No supported authentication methods found. Please ensure you have enabled either WebAuth passkeys or passwords in your Developer Portal settings."
+      );
+    }
+    const signupState = authState;
+    if (isPasskey) {
+      const { url: passkeyUrl, credentialId: passkeyId } = yield this.getNewCredentialAndUrl({
+        authMethod: "PASSKEY",
+        shorten
+      });
+      signupState.passkeyUrl = passkeyUrl;
+      signupState.passkeyId = passkeyId;
+    }
+    if (isPassword) {
+      const { url: passwordUrl, credentialId: passwordId } = yield this.getNewCredentialAndUrl({
+        authMethod: "PASSWORD",
+        portalTheme,
+        shorten
+      });
+      signupState.passwordUrl = passwordUrl;
+      signupState.passwordId = passwordId;
+    }
+    return signupState;
+  });
+};
 _ParaCore.version = PARA_CORE_VERSION;
 var ParaCore = _ParaCore;
 
@@ -4038,6 +4026,7 @@ var src_default = ParaCore;
   OnRampProvider,
   OnRampPurchaseStatus,
   OnRampPurchaseType,
+  PARA_CORE_METHODS,
   PREGEN_IDENTIFIER_TYPES,
   ParaEvent,
   PopupType,
@@ -4049,18 +4038,21 @@ var src_default = ParaCore;
   TransactionReviewTimeout,
   WalletScheme,
   WalletType,
+  constructUrl,
   decimalToHex,
   decryptPrivateKey,
   decryptPrivateKeyAndDecryptShare,
   decryptPrivateKeyWithPassword,
   decryptWithKeyPair,
   decryptWithPrivateKey,
+  displayPhoneNumber,
   distributeNewShare,
   encodePrivateKeyToPemHex,
   encryptPrivateKey,
   encryptPrivateKeyWithPassword,
   encryptWithDerivedPublicKey,
   entityToWallet,
+  formatPhoneNumber,
   getAsymmetricKeyPair,
   getBaseMPCNetworkUrl,
   getBaseOAuthUrl,
@@ -4082,10 +4074,9 @@ var src_default = ParaCore;
   initClient,
   isWalletSupported,
   mpcComputationClient,
-  normalizePhoneNumber,
   paraVersion,
   publicKeyFromHex,
-  stringToPhoneNumber,
+  shortenUrl,
   toAssetInfoArray,
   transmissionUtilsRetrieve,
   truncateAddress,