@getpara/core-sdk 2.0.0-alpha.62 → 2.0.0-alpha.64

package/dist/cjs/utils/wallet.js

@@ -45,6 +45,7 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 var wallet_exports = {};
 __export(wallet_exports, {
   WalletSchemeTypeMap: () => WalletSchemeTypeMap,
+  currentWalletIdsEq: () => currentWalletIdsEq,
   entityToWallet: () => entityToWallet,
   getEquivalentTypes: () => getEquivalentTypes,
   getSchemes: () => getSchemes,
@@ -146,9 +147,23 @@ function mergeCurrentWalletIds(original, additional) {
 function newUuid() {
   return uuid.v4();
 }
+function currentWalletIdsEq(a, b) {
+  if (!a && !b) return true;
+  if (!a || !b) return false;
+  const aKeys = Object.keys(a);
+  const bKeys = Object.keys(b);
+  if (aKeys.length !== bKeys.length) return false;
+  return aKeys.every((key) => {
+    var _a, _b;
+    const aIds = ((_a = a[key]) == null ? void 0 : _a.sort()) || [];
+    const bIds = ((_b = b[key]) == null ? void 0 : _b.sort()) || [];
+    return aIds.length === bIds.length && aIds.every((id, index) => id === bIds[index]);
+  });
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   WalletSchemeTypeMap,
+  currentWalletIdsEq,
   entityToWallet,
   getEquivalentTypes,
   getSchemes,

package/dist/cjs/utils/window.js

@@ -0,0 +1,38 @@
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var window_exports = {};
+__export(window_exports, {
+  isPortal: () => isPortal
+});
+module.exports = __toCommonJS(window_exports);
+var import_url = require("./url.js");
+function isPortal(ctx, env) {
+  var _a, _b;
+  if (typeof window === "undefined") return false;
+  const normalizedUrl = (_b = (_a = window.location) == null ? void 0 : _a.host) == null ? void 0 : _b.replace("getpara", "usecapsule");
+  const isOnPortalDomain = (0, import_url.getPortalBaseURL)(env ? { env } : ctx).includes(normalizedUrl);
+  if (!isOnPortalDomain) return false;
+  const isInIframe = window.parent !== window && !window.opener;
+  const isInPopup = window.opener && window.parent === window;
+  const isDirectAccess = !window.opener && !window.parent;
+  return isInIframe || isInPopup || isDirectAccess;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  isPortal
+});

package/dist/esm/ParaCore.js

@@ -8,7 +8,7 @@ import {
   __spreadProps,
   __spreadValues
 } from "./chunk-W5CT3TVS.js";
-var _authInfo, _ParaCore_instances, assertPartner_fn, guestWalletIds_get, guestWalletIdsArray_get, toAuthInfo_fn, setAuthInfo_fn, getPartner_fn, assertIsLinkingAccount_fn, assertIsLinkingAccountOrStart_fn, getOAuthUrl_fn, createPregenWallet_fn, _isCreateGuestWalletsPending, prepareAuthState_fn, prepareDoneState_fn, prepareVerificationState_fn, prepareLoginState_fn, prepareSignUpState_fn;
+var _authInfo, _ParaCore_instances, assertPartner_fn, guestWalletIds_get, guestWalletIdsArray_get, toAuthInfo_fn, setAuthInfo_fn, getPartner_fn, assertIsLinkingAccount_fn, assertIsLinkingAccountOrStart_fn, getOAuthUrl_fn, waitForLoginProcess_fn, createPregenWallet_fn, _isCreateGuestWalletsPending, prepareAuthState_fn, prepareDoneState_fn, prepareVerificationState_fn, prepareLoginState_fn, prepareSignUpState_fn;
 import { Buffer as NodeBuffer } from "buffer";
 if (typeof global !== "undefined") {
   global.Buffer = global.Buffer || NodeBuffer;
@@ -70,7 +70,9 @@ import {
   WalletSchemeTypeMap,
   shortenUrl,
   isServerAuthState,
-  splitPhoneNumber
+  splitPhoneNumber,
+  currentWalletIdsEq,
+  isPortal
 } from "./utils/index.js";
 import { TransactionReviewDenied, TransactionReviewTimeout } from "./errors.js";
 import * as constants from "./constants.js";
@@ -80,6 +82,7 @@ const _ParaCore = class _ParaCore {
     __privateAdd(this, _ParaCore_instances);
     this.popupWindow = null;
     __privateAdd(this, _authInfo);
+    // Track expected wallet IDs during wallet switching
     this.isNativePasskey = false;
     this.isReady = false;
     this.accountLinkInProgress = void 0;
@@ -98,20 +101,33 @@ const _ParaCore = class _ParaCore {
      */
     this.externalWallets = {};
     this.onRampPopup = void 0;
+    this.nonPersistedStorageKeys = [];
     this.localStorageGetItem = (key) => {
-      return this.platformUtils.localStorage.get(key);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.localStorage.get(key);
+      }
     };
     this.localStorageSetItem = (key, value) => {
-      return this.platformUtils.localStorage.set(key, value);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.localStorage.set(key, value);
+      }
     };
     this.localStorageRemoveItem = (key) => {
       return this.platformUtils.localStorage.removeItem(key);
     };
     this.sessionStorageGetItem = (key) => {
-      return this.platformUtils.sessionStorage.get(key);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.sessionStorage.get(key);
+      }
     };
     this.sessionStorageSetItem = (key, value) => {
-      return this.platformUtils.sessionStorage.set(key, value);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.sessionStorage.set(key, value);
+      }
     };
     this.sessionStorageRemoveItem = (key) => {
       return this.platformUtils.sessionStorage.removeItem(key);
@@ -268,7 +284,7 @@ const _ParaCore = class _ParaCore {
       this.setExternalWallets(_externalWallets);
     };
     this.initializeWorker = () => __async(this, null, function* () {
-      if (!this.isWorkerInitialized && !this.ctx.disableWebSockets && !this.ctx.disableWorkers) {
+      if (!this.isWorkerInitialized && !this.ctx.disableWebSockets && !this.ctx.disableWorkers && !this.isPortal()) {
         try {
           this.isWorkerInitialized = true;
           yield this.platformUtils.initializeWorker(this.ctx);
@@ -592,15 +608,7 @@ const _ParaCore = class _ParaCore {
     };
   }
   isPortal(envOverride) {
-    var _a;
-    if (typeof window === "undefined") return false;
-    return !!((_a = window.location) == null ? void 0 : _a.host) && getPortalBaseURL(envOverride ? { env: envOverride } : this.ctx).includes(window.location.host);
-  }
-  isRecoveryPortal(envOverride) {
-    var _a, _b;
-    if (typeof window === "undefined") return false;
-    const normalizedUrl = (_b = (_a = window.location) == null ? void 0 : _a.host) == null ? void 0 : _b.replace("getpara", "usecapsule");
-    return !!normalizedUrl && getPortalBaseURL(envOverride ? { env: envOverride } : this.ctx).includes(normalizedUrl);
+    return isPortal(this.ctx, envOverride);
   }
   isParaConnect() {
     var _a;
@@ -725,14 +733,26 @@ const _ParaCore = class _ParaCore {
   constructPortalUrl(_0) {
     return __async(this, arguments, function* (type, opts = {}) {
       var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m;
-      const [isCreate, isLogin, isOnRamp, isOAuth, isOAuthCallback, isTelegramLogin, isFarcasterLogin] = [
+      const [
+        isCreate,
+        isLogin,
+        isOnRamp,
+        isOAuth,
+        isOAuthCallback,
+        isTelegramLogin,
+        isFarcasterLogin,
+        isAddNewCredential,
+        isSwitchWallets
+      ] = [
         ["createAuth", "createPassword", "createPIN"].includes(type),
-        ["loginAuth", "loginPassword", "loginPIN", "loginOTP"].includes(type),
+        ["loginAuth", "loginPassword", "loginPIN", "loginOTP", "switchWallets"].includes(type),
         type === "onRamp",
         type === "oAuth",
         type === "oAuthCallback",
         ["telegramLogin", "telegramLoginVerify"].includes(type),
-        type === "loginFarcaster"
+        type === "loginFarcaster",
+        type === "addNewCredential",
+        type === "switchWallets"
       ];
       if (isOAuth && !opts.oAuthMethod) {
         throw new Error("oAuthMethod is required for oAuth portal URLs");
@@ -807,6 +827,14 @@ const _ParaCore = class _ParaCore {
           path = "/auth/farcaster";
           break;
         }
+        case "switchWallets": {
+          path = `/auth/wallets`;
+          break;
+        }
+        case "addNewCredential": {
+          path = "/auth/add-new-credential";
+          break;
+        }
         default: {
           throw new Error(`invalid URL type ${type}`);
         }
@@ -825,8 +853,9 @@ const _ParaCore = class _ParaCore {
         encryptionKey: getPublicKeyHex(this.loginEncryptionKeyPair),
         sessionId
       };
-      const params = __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({
+      const params = __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({
         apiKey: this.ctx.apiKey,
+        origin: typeof window !== "undefined" ? window.location.origin : void 0,
         partnerId: partner == null ? void 0 : partner.id,
         portalFont: ((_b = opts.portalTheme) == null ? void 0 : _b.font) || ((_c = this.portalTheme) == null ? void 0 : _c.font) || (partner == null ? void 0 : partner.font),
         portalBorderRadius: ((_d = opts.portalTheme) == null ? void 0 : _d.borderRadius) || ((_e = this.portalTheme) == null ? void 0 : _e.borderRadius),
@@ -838,12 +867,12 @@ const _ParaCore = class _ParaCore {
         portalTextColor: this.portalTextColor,
         portalPrimaryButtonTextColor: this.portalPrimaryButtonTextColor,
         isForNewDevice: opts.isForNewDevice ? opts.isForNewDevice.toString() : void 0
-      }, isCreate || isLogin ? __spreadProps(__spreadValues({
+      }, this.authInfo && (isCreate || isLogin || isAddNewCredential || isOAuthCallback || isSwitchWallets) ? __spreadProps(__spreadValues({
         authInfo: JSON.stringify(this.authInfo)
       }, isPhone(this.authInfo.auth) ? splitPhoneNumber(this.authInfo.auth.phone) : this.authInfo.auth), {
         pfpUrl: this.authInfo.pfpUrl,
         displayName: this.authInfo.displayName
-      }) : {}), isOnRamp ? { origin: typeof window !== "undefined" ? window.location.origin : void 0, email: this.email } : {}), isLogin || isOAuth || isOAuthCallback || isTelegramLogin || isFarcasterLogin ? __spreadProps(__spreadValues({
+      }) : {}), isOnRamp ? { email: this.email } : {}), isLogin || isOAuth || isOAuthCallback || isTelegramLogin || isFarcasterLogin || isAddNewCredential ? __spreadProps(__spreadValues({
         sessionId: thisDevice.sessionId,
         encryptionKey: thisDevice.encryptionKey
       }, opts.newDevice ? {
@@ -853,7 +882,10 @@ const _ParaCore = class _ParaCore {
         pregenIds: JSON.stringify(this.pregenIds)
       }) : {}), isOAuth || isOAuthCallback || isFarcasterLogin ? {
         appScheme: opts.appScheme
-      } : {}), isTelegramLogin ? { isEmbed: "true" } : {}), opts.params || {});
+      } : {}), isTelegramLogin ? { isEmbed: "true" } : {}), isSwitchWallets ? __spreadValues(__spreadValues({}, this.currentWalletIds ? { currentWalletIds: JSON.stringify(this.currentWalletIds) } : {}), this.userId ? { userId: this.userId } : {}) : {}), opts.params || {}), isAddNewCredential ? __spreadProps(__spreadValues({}, opts.addNewCredentialType && { addNewCredentialType: opts.addNewCredentialType.toString() }), {
+        addNewCredentialPasskeyId: opts.addNewCredentialPasskeyId,
+        addNewCredentialPasswordId: opts.addNewCredentialPasswordId
+      }) : {});
       const url = constructUrl({ base, path, params });
       if (opts.shorten) {
         return shortenUrl(this.ctx, url);
@@ -897,7 +929,7 @@ const _ParaCore = class _ParaCore {
         throw error;
       }
       if (!this.partner || ((_a = this.partner) == null ? void 0 : _a.id) !== session.partnerId || !supportedWalletTypesEq(((_b = this.partner) == null ? void 0 : _b.supportedWalletTypes) || [], session.supportedWalletTypes) || (((_c = this.partner) == null ? void 0 : _c.cosmosPrefix) || "cosmos") !== session.cosmosPrefix) {
-        if (!session.partnerId && !this.isRecoveryPortal()) {
+        if (!session.partnerId && !this.isPortal()) {
           this.displayModalError(
             `Invalid API Key. Please ensure you have a valid API key for the current environment: ${(_d = this.ctx.env) == null ? void 0 : _d.toUpperCase()}.`
           );
@@ -928,6 +960,9 @@ Need help? Visit: https://docs.getpara.com or contact support
           yield __privateMethod(this, _ParaCore_instances, getPartner_fn).call(this, session.partnerId);
         }
       }
+      if (session.currentWalletIds && !currentWalletIdsEq(session.currentWalletIds, this.currentWalletIds)) {
+        yield this.setCurrentWalletIds(session.currentWalletIds);
+      }
       return session;
     });
   }
@@ -1388,6 +1423,7 @@ Need help? Visit: https://docs.getpara.com or contact support
         if (!wallet) return null;
         return {
           id: wallet.id,
+          partner: wallet.partner,
           type,
           address: this.getDisplayAddress(id, { addressType: type }),
           name: wallet.name
@@ -1498,7 +1534,7 @@ Need help? Visit: https://docs.getpara.com or contact support
   }
   populateWalletAddresses() {
     return __async(this, null, function* () {
-      const res = yield this.ctx.client.getWallets(this.userId, true);
+      const res = yield (this.isPortal() ? this.ctx.client.getAllWallets : this.ctx.client.getWallets)(this.userId, true);
       const wallets = res.data.wallets;
       wallets.forEach((entity) => {
         if (this.wallets[entity.id]) {
@@ -1767,6 +1803,9 @@ Need help? Visit: https://docs.getpara.com or contact support
       if (this.externalWalletConnectionType === "VERIFICATION") {
         return isSessionActive;
       }
+      if (this.walletSwitchIds) {
+        return isSessionActive;
+      }
       return isSessionActive && (this.isNoWalletConfig || this.currentWalletIdsArray.length > 0 && this.currentWalletIdsArray.reduce((acc, [id]) => acc && !!this.wallets[id], true));
     });
   }
@@ -1780,6 +1819,7 @@ Need help? Visit: https://docs.getpara.com or contact support
   }
   /**
    * Get the auth methods available to an existing user
+   * @deprecated Use supportedUserAuthMethods instead
    */
   supportedAuthMethods(auth) {
     return __async(this, null, function* () {
@@ -1798,6 +1838,37 @@ Need help? Visit: https://docs.getpara.com or contact support
       return authMethods;
     });
   }
+  /**
+   * Get the auth methods available to an existing user
+   */
+  supportedUserAuthMethods() {
+    return __async(this, null, function* () {
+      yield this.assertIsAuthSet();
+      const { supportedAuthMethods, hasPasswordWithoutPIN } = yield this.ctx.client.getSupportedAuthMethodsV2(
+        this.authInfo.auth
+      );
+      const authMethods = /* @__PURE__ */ new Set();
+      for (const type of supportedAuthMethods) {
+        switch (type) {
+          case "PASSWORD":
+            if (hasPasswordWithoutPIN) {
+              authMethods.add(AuthMethod.PASSWORD);
+            }
+            break;
+          case "PASSKEY":
+            authMethods.add(AuthMethod.PASSKEY);
+            break;
+          case "PIN":
+            authMethods.add(AuthMethod.PIN);
+            break;
+          case "BASIC_LOGIN":
+            authMethods.add(AuthMethod.BASIC_LOGIN);
+            break;
+        }
+      }
+      return authMethods;
+    });
+  }
   /**
    * Get hints associated with the users stored biometrics.
    * @deprecated
@@ -2091,61 +2162,26 @@ Need help? Visit: https://docs.getpara.com or contact support
    * @param {boolean} [opts.skipSessionRefresh] whether to skip refreshing the session.
    * @returns {Object} `{ isComplete: boolean; isError: boolean; needsWallet: boolean; partnerId: string; }` the result data
    **/
-  waitForLogin() {
-    return __async(this, arguments, function* ({
-      isCanceled = () => false,
-      onCancel,
-      onPoll,
-      skipSessionRefresh = false
-    } = {}) {
-      const startedAt = Date.now();
-      return new Promise((resolve, reject) => {
-        (() => __async(this, null, function* () {
-          var _a;
-          if (!this.isExternalWalletAuth) {
-            this.externalWallets = {};
-          }
-          while (true) {
-            if (isCanceled() || Date.now() - startedAt > constants.POLLING_TIMEOUT_MS) {
-              dispatchEvent(ParaEvent.LOGIN_EVENT, { isComplete: false }, "failed to setup user");
-              onCancel == null ? void 0 : onCancel();
-              return reject("canceled");
-            }
-            yield new Promise((resolve2) => setTimeout(resolve2, constants.POLLING_INTERVAL_MS));
-            try {
-              let session = yield this.touchSession();
-              if (!session.isAuthenticated) {
-                onPoll == null ? void 0 : onPoll();
-                continue;
-              }
-              session = yield this.userSetupAfterLogin();
-              const needsWallet = (_a = session.needsWallet) != null ? _a : false;
-              if (!needsWallet) {
-                if (this.currentWalletIdsArray.length === 0) {
-                  onPoll == null ? void 0 : onPoll();
-                  continue;
-                }
-              }
-              const fetchedWallets = yield this.fetchWallets();
-              const tempSharesRes = yield this.getTransmissionKeyShares();
-              if (tempSharesRes.data.temporaryShares.length === fetchedWallets.length) {
-                yield this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
-                yield this.claimPregenWallets();
-                const resp = {
-                  needsWallet: needsWallet || Object.values(this.wallets).length === 0,
-                  partnerId: session.partnerId
-                };
-                dispatchEvent(ParaEvent.LOGIN_EVENT, resp);
-                return resolve(resp);
-              }
-              onPoll == null ? void 0 : onPoll();
-            } catch (err) {
-              console.error(err);
-              onPoll == null ? void 0 : onPoll();
-            }
-          }
-        }))();
-      });
+  waitForLogin(args) {
+    return __async(this, null, function* () {
+      return yield __privateMethod(this, _ParaCore_instances, waitForLoginProcess_fn).call(this, args);
+    });
+  }
+  waitForWalletSwitching(args) {
+    return __async(this, null, function* () {
+      return yield __privateMethod(this, _ParaCore_instances, waitForLoginProcess_fn).call(this, __spreadProps(__spreadValues({}, args), { isSwitchingWallets: true }));
+    });
+  }
+  /**
+   * Gets the switch wallets URL for wallet selection.
+   * The authMethod is automatically included in the URL if available.
+   *
+   * @returns {Promise<{ url: string; authMethod: TAuthMethod }>} The switch wallets URL and authMethod
+   */
+  getSwitchWalletsUrl() {
+    return __async(this, null, function* () {
+      const url = yield this.constructPortalUrl("switchWallets");
+      return url;
     });
   }
   /**
@@ -2275,7 +2311,7 @@ Need help? Visit: https://docs.getpara.com or contact support
             break;
           }
           ++maxPolls;
-          const res = yield this.ctx.client.getWallets(this.userId);
+          const res = yield (this.isPortal() ? this.ctx.client.getAllWallets : this.ctx.client.getWallets)(this.userId);
           const wallet = res.data.wallets.find((w) => w.id === walletId);
           if (wallet && wallet.address) {
             return;
@@ -3142,49 +3178,80 @@ Need help? Visit: https://docs.getpara.com or contact support
   }
   getNewCredentialAndUrl() {
     return __async(this, arguments, function* ({
-      authMethod = "PASSKEY",
+      authMethod: optsAuthMethod,
       isForNewDevice = false,
       portalTheme,
       shorten = false
     } = {}) {
+      const userAuthMethods = yield this.supportedUserAuthMethods();
+      const isEnclaveUser = userAuthMethods.has(AuthMethod.BASIC_LOGIN);
+      if (isEnclaveUser) {
+        isForNewDevice = true;
+      }
+      const authMethods = optsAuthMethod ? [optsAuthMethod] : isForNewDevice ? ["PASSKEY", "PIN", "PASSWORD"] : ["PASSKEY"];
       this.assertIsAuthSet();
-      let credentialId, urlType;
-      switch (authMethod) {
-        case "PASSKEY":
-          ({
-            data: { id: credentialId }
-          } = yield this.ctx.client.addSessionPublicKey(this.userId, {
-            status: AuthMethodStatus.PENDING,
-            type: PublicKeyType.WEB
-          }));
-          urlType = "createAuth";
-          break;
-        case "PASSWORD":
+      const canAddPasswordOrPIN = !userAuthMethods.has(AuthMethod.PASSWORD) && !userAuthMethods.has(AuthMethod.PIN);
+      let passkeyId, passwordId, urlType;
+      if (authMethods.includes("PASSKEY") && (yield this.isPasskeySupported())) {
+        ({
+          data: { id: passkeyId }
+        } = yield this.ctx.client.addSessionPublicKey(this.userId, {
+          status: AuthMethodStatus.PENDING,
+          type: PublicKeyType.WEB
+        }));
+        urlType = "createAuth";
+      }
+      if (authMethods.includes("PASSWORD")) {
+        if (!canAddPasswordOrPIN) {
+          if (optsAuthMethod === "PASSWORD") throw new Error("A user cannot have more than one password or PIN.");
+        } else {
           ({
-            data: { id: credentialId }
+            data: { id: passwordId }
           } = yield this.ctx.client.addSessionPasswordPublicKey(this.userId, {
             status: AuthMethodStatus.PENDING
           }));
           urlType = "createPassword";
-          break;
-        case "PIN":
+        }
+      }
+      if (authMethods.includes("PIN")) {
+        if (!canAddPasswordOrPIN) {
+          if (optsAuthMethod === "PIN") throw new Error("A user cannot have more than one password or PIN.");
+        } else {
           ({
-            data: { id: credentialId }
+            data: { id: passwordId }
           } = yield this.ctx.client.addSessionPasswordPublicKey(this.userId, {
             status: AuthMethodStatus.PENDING
           }));
           urlType = "createPIN";
-          break;
+        }
+      }
+      const credentialId = passkeyId != null ? passkeyId : passwordId;
+      if (this.isNativePasskey && authMethods.includes("PASSKEY")) {
+        return { credentialId };
       }
-      const url = this.isNativePasskey && urlType === "createAuth" ? void 0 : yield this.constructPortalUrl(urlType, {
+      const { sessionId } = yield this.touchSession();
+      const url = yield this.constructPortalUrl(isForNewDevice ? "addNewCredential" : urlType, {
         isForNewDevice,
         pathId: credentialId,
         portalTheme,
-        shorten
+        shorten,
+        sessionId: isForNewDevice ? sessionId : void 0,
+        addNewCredentialType: optsAuthMethod,
+        addNewCredentialPasskeyId: passkeyId,
+        addNewCredentialPasswordId: passwordId
       });
       return __spreadValues({ credentialId }, url ? { url } : {});
     });
   }
+  addCredential(_0) {
+    return __async(this, arguments, function* ({ authMethod }) {
+      if (authMethod === "PASSKEY" && !(yield this.isPasskeySupported())) {
+        throw new Error("Passkeys are not supported.");
+      }
+      const { url } = yield this.getNewCredentialAndUrl({ isForNewDevice: true, authMethod });
+      return url;
+    });
+  }
   /**
    * Returns a Para Portal URL for logging in with a WebAuth passkey, password, PIN or OTP.
    * @param {Object} opts the options object
@@ -3525,7 +3592,8 @@ getOAuthUrl_fn = function(_0) {
     appScheme,
     accountLinkInProgress,
     sessionLookupId,
-    encryptionKey
+    encryptionKey,
+    portalCallbackParams
   }) {
     if (!accountLinkInProgress && !this.isPortal()) {
       return yield this.constructPortalUrl("oAuth", { sessionId: sessionLookupId, oAuthMethod: method, appScheme });
@@ -3539,13 +3607,14 @@ getOAuthUrl_fn = function(_0) {
       path: `/auth/${method.toLowerCase()}`,
       params: __spreadProps(__spreadValues({
         apiKey: this.ctx.apiKey,
+        origin: typeof window !== "undefined" ? window.location.origin : void 0,
         sessionLookupId,
         portalSessionLookupId,
         appScheme
       }, accountLinkInProgress ? {
         linkedAccountId: this.accountLinkInProgress.id
       } : {}), {
-        callback: !accountLinkInProgress && (yield this.constructPortalUrl("oAuthCallback", {
+        callback: !accountLinkInProgress && (yield this.constructPortalUrl("oAuthCallback", __spreadValues({
           sessionId: sessionLookupId,
           oAuthMethod: method,
           appScheme,
@@ -3553,11 +3622,97 @@ getOAuthUrl_fn = function(_0) {
             sessionId: sessionLookupId,
             encryptionKey
           }
-        }))
+        }, this.isPortal() && { params: portalCallbackParams })))
       })
     });
   });
 };
+waitForLoginProcess_fn = function() {
+  return __async(this, arguments, function* ({
+    isCanceled = () => false,
+    onCancel,
+    onPoll,
+    skipSessionRefresh = false,
+    isSwitchingWallets = false
+  } = {}) {
+    const startedAt = Date.now();
+    return new Promise((resolve, reject) => {
+      (() => __async(this, null, function* () {
+        var _a;
+        if (!this.isExternalWalletAuth && !isSwitchingWallets) {
+          this.externalWallets = {};
+        }
+        while (true) {
+          if (isCanceled() || Date.now() - startedAt > constants.POLLING_TIMEOUT_MS) {
+            if (isSwitchingWallets) {
+              this.walletSwitchIds = void 0;
+            } else {
+              dispatchEvent(ParaEvent.LOGIN_EVENT, { isComplete: false }, "failed to setup user");
+            }
+            onCancel == null ? void 0 : onCancel();
+            return reject("canceled");
+          }
+          yield new Promise((resolve2) => setTimeout(resolve2, constants.POLLING_INTERVAL_MS));
+          try {
+            let session = yield this.touchSession();
+            const shouldContinuePolling = !isSwitchingWallets && !session.isAuthenticated || isSwitchingWallets && !this.walletSwitchIds;
+            if (shouldContinuePolling) {
+              onPoll == null ? void 0 : onPoll();
+              continue;
+            }
+            session = yield this.userSetupAfterLogin();
+            const needsWallet = (_a = session.needsWallet) != null ? _a : false;
+            if (isSwitchingWallets) {
+              if (this.walletSwitchIds) {
+                const walletIdsMatch = currentWalletIdsEq(session.currentWalletIds, this.walletSwitchIds);
+                if (!walletIdsMatch) {
+                  onPoll == null ? void 0 : onPoll();
+                  continue;
+                }
+              } else {
+                onPoll == null ? void 0 : onPoll();
+                continue;
+              }
+            } else if (!needsWallet) {
+              if (this.currentWalletIdsArray.length === 0) {
+                onPoll == null ? void 0 : onPoll();
+                continue;
+              }
+            }
+            const tempSharesRes = yield this.getTransmissionKeyShares();
+            let hasSharesForCurrentWallets;
+            if (!isSwitchingWallets) {
+              const fetchedWallets = yield this.fetchWallets();
+              hasSharesForCurrentWallets = tempSharesRes.data.temporaryShares.length === fetchedWallets.length;
+            } else {
+              hasSharesForCurrentWallets = this.currentWalletIdsArray.every(([walletId]) => {
+                return tempSharesRes.data.temporaryShares.some((share) => share.walletId === walletId);
+              });
+            }
+            if (hasSharesForCurrentWallets) {
+              yield this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
+              yield this.claimPregenWallets();
+              const resp = {
+                needsWallet: needsWallet || Object.values(this.wallets).length === 0,
+                partnerId: session.partnerId
+              };
+              if (isSwitchingWallets) {
+                this.walletSwitchIds = void 0;
+              } else {
+                dispatchEvent(ParaEvent.LOGIN_EVENT, resp);
+              }
+              return resolve(resp);
+            }
+            onPoll == null ? void 0 : onPoll();
+          } catch (err) {
+            console.error(err);
+            onPoll == null ? void 0 : onPoll();
+          }
+        }
+      }))();
+    });
+  });
+};
 createPregenWallet_fn = function(opts) {
   return __async(this, null, function* () {
     var _a, _b;

package/dist/esm/constants.js

@@ -1,5 +1,5 @@
 import "./chunk-W5CT3TVS.js";
-const PARA_CORE_VERSION = "2.0.0-alpha.62";
+const PARA_CORE_VERSION = "2.0.0-alpha.64";
 const PREFIX = "@CAPSULE/";
 const PARA_PREFIX = "@PARA/";
 const LOCAL_STORAGE_AUTH_INFO = `${PREFIX}authInfo`;
@@ -17,6 +17,7 @@ const LOCAL_STORAGE_CURRENT_WALLET_IDS = `${PREFIX}currentWalletIds`;
 const LOCAL_STORAGE_SESSION_COOKIE = `${PREFIX}sessionCookie`;
 const LOCAL_STORAGE_ENCLAVE_JWT = `${PREFIX}enclaveJwt`;
 const LOCAL_STORAGE_ENCLAVE_REFRESH_JWT = `${PREFIX}enclaveRefreshJwt`;
+const LOCAL_STORAGE_AUTH_METHOD = `${PREFIX}authMethod`;
 const SESSION_STORAGE_LOGIN_ENCRYPTION_KEY_PAIR = `${PREFIX}loginEncryptionKeyPair`;
 const POLLING_INTERVAL_MS = 2e3;
 const SHORT_POLLING_INTERVAL_MS = 1e3;
@@ -27,6 +28,7 @@ export {
   ACCOUNT_LINK_CONFLICT,
   EXTERNAL_WALLET_CONNECTION_ONLY_USER_ID,
   LOCAL_STORAGE_AUTH_INFO,
+  LOCAL_STORAGE_AUTH_METHOD,
   LOCAL_STORAGE_COUNTRY_CODE,
   LOCAL_STORAGE_CURRENT_WALLET_IDS,
   LOCAL_STORAGE_ED25519_WALLETS,