@getpara/core-sdk 2.0.0-alpha.63 → 2.0.0-alpha.65

package/dist/esm/ParaCore.js

@@ -8,7 +8,7 @@ import {
   __spreadProps,
   __spreadValues
 } from "./chunk-W5CT3TVS.js";
-var _authInfo, _ParaCore_instances, assertPartner_fn, guestWalletIds_get, guestWalletIdsArray_get, toAuthInfo_fn, setAuthInfo_fn, getPartner_fn, assertIsLinkingAccount_fn, assertIsLinkingAccountOrStart_fn, getOAuthUrl_fn, createPregenWallet_fn, _isCreateGuestWalletsPending, prepareAuthState_fn, prepareDoneState_fn, prepareVerificationState_fn, prepareLoginState_fn, prepareSignUpState_fn;
+var _authInfo, _ParaCore_instances, assertPartner_fn, guestWalletIds_get, guestWalletIdsArray_get, toAuthInfo_fn, setAuthInfo_fn, getPartner_fn, assertIsLinkingAccount_fn, assertIsLinkingAccountOrStart_fn, getOAuthUrl_fn, waitForLoginProcess_fn, createPregenWallet_fn, _isCreateGuestWalletsPending, prepareAuthState_fn, prepareDoneState_fn, prepareVerificationState_fn, prepareLoginState_fn, prepareSignUpState_fn;
 import { Buffer as NodeBuffer } from "buffer";
 if (typeof global !== "undefined") {
   global.Buffer = global.Buffer || NodeBuffer;
@@ -70,7 +70,9 @@ import {
   WalletSchemeTypeMap,
   shortenUrl,
   isServerAuthState,
-  splitPhoneNumber
+  splitPhoneNumber,
+  currentWalletIdsEq,
+  isPortal
 } from "./utils/index.js";
 import { TransactionReviewDenied, TransactionReviewTimeout } from "./errors.js";
 import * as constants from "./constants.js";
@@ -80,6 +82,7 @@ const _ParaCore = class _ParaCore {
     __privateAdd(this, _ParaCore_instances);
     this.popupWindow = null;
     __privateAdd(this, _authInfo);
+    this.isSwitchingWallets = false;
     this.isNativePasskey = false;
     this.isReady = false;
     this.accountLinkInProgress = void 0;
@@ -98,20 +101,33 @@ const _ParaCore = class _ParaCore {
      */
     this.externalWallets = {};
     this.onRampPopup = void 0;
+    this.nonPersistedStorageKeys = [];
     this.localStorageGetItem = (key) => {
-      return this.platformUtils.localStorage.get(key);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.localStorage.get(key);
+      }
     };
     this.localStorageSetItem = (key, value) => {
-      return this.platformUtils.localStorage.set(key, value);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.localStorage.set(key, value);
+      }
     };
     this.localStorageRemoveItem = (key) => {
       return this.platformUtils.localStorage.removeItem(key);
     };
     this.sessionStorageGetItem = (key) => {
-      return this.platformUtils.sessionStorage.get(key);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.sessionStorage.get(key);
+      }
     };
     this.sessionStorageSetItem = (key, value) => {
-      return this.platformUtils.sessionStorage.set(key, value);
+      var _a;
+      if (!((_a = this.nonPersistedStorageKeys) != null ? _a : []).includes(key)) {
+        return this.platformUtils.sessionStorage.set(key, value);
+      }
     };
     this.sessionStorageRemoveItem = (key) => {
       return this.platformUtils.sessionStorage.removeItem(key);
@@ -268,7 +284,7 @@ const _ParaCore = class _ParaCore {
       this.setExternalWallets(_externalWallets);
     };
     this.initializeWorker = () => __async(this, null, function* () {
-      if (!this.isWorkerInitialized && !this.ctx.disableWebSockets && !this.ctx.disableWorkers) {
+      if (!this.isWorkerInitialized && !this.ctx.disableWebSockets && !this.ctx.disableWorkers && !this.isPortal()) {
         try {
           this.isWorkerInitialized = true;
           yield this.platformUtils.initializeWorker(this.ctx);
@@ -592,15 +608,7 @@ const _ParaCore = class _ParaCore {
     };
   }
   isPortal(envOverride) {
-    var _a;
-    if (typeof window === "undefined") return false;
-    return !!((_a = window.location) == null ? void 0 : _a.host) && getPortalBaseURL(envOverride ? { env: envOverride } : this.ctx).includes(window.location.host);
-  }
-  isRecoveryPortal(envOverride) {
-    var _a, _b;
-    if (typeof window === "undefined") return false;
-    const normalizedUrl = (_b = (_a = window.location) == null ? void 0 : _a.host) == null ? void 0 : _b.replace("getpara", "usecapsule");
-    return !!normalizedUrl && getPortalBaseURL(envOverride ? { env: envOverride } : this.ctx).includes(normalizedUrl);
+    return isPortal(this.ctx, envOverride);
   }
   isParaConnect() {
     var _a;
@@ -725,14 +733,28 @@ const _ParaCore = class _ParaCore {
   constructPortalUrl(_0) {
     return __async(this, arguments, function* (type, opts = {}) {
       var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m;
-      const [isCreate, isLogin, isOnRamp, isOAuth, isOAuthCallback, isTelegramLogin, isFarcasterLogin] = [
+      const [
+        isCreate,
+        isLogin,
+        isOnRamp,
+        isOAuth,
+        isOAuthCallback,
+        isTelegramLogin,
+        isFarcasterLogin,
+        isAddNewCredential,
+        isSwitchWallets,
+        isExportPrivateKey
+      ] = [
         ["createAuth", "createPassword", "createPIN"].includes(type),
-        ["loginAuth", "loginPassword", "loginPIN", "loginOTP"].includes(type),
+        ["loginAuth", "loginPassword", "loginPIN", "loginOTP", "switchWallets"].includes(type),
         type === "onRamp",
         type === "oAuth",
         type === "oAuthCallback",
         ["telegramLogin", "telegramLoginVerify"].includes(type),
-        type === "loginFarcaster"
+        type === "loginFarcaster",
+        type === "addNewCredential",
+        type === "switchWallets",
+        type === "exportPrivateKey"
       ];
       if (isOAuth && !opts.oAuthMethod) {
         throw new Error("oAuthMethod is required for oAuth portal URLs");
@@ -741,7 +763,7 @@ const _ParaCore = class _ParaCore {
         this.assertIsAuthSet();
       }
       let sessionId = opts.sessionId;
-      if ((isLogin || isOnRamp || isTelegramLogin || isFarcasterLogin) && !sessionId) {
+      if ((isLogin || isOnRamp || isTelegramLogin || isFarcasterLogin || isExportPrivateKey) && !sessionId) {
         const session = yield this.touchSession(true);
         sessionId = session.sessionId;
       }
@@ -807,6 +829,18 @@ const _ParaCore = class _ParaCore {
           path = "/auth/farcaster";
           break;
         }
+        case "switchWallets": {
+          path = `/auth/wallets`;
+          break;
+        }
+        case "addNewCredential": {
+          path = "/auth/add-new-credential";
+          break;
+        }
+        case "exportPrivateKey": {
+          path = `/web/users/${this.userId}/private-key/${opts.pathId}`;
+          break;
+        }
         default: {
           throw new Error(`invalid URL type ${type}`);
         }
@@ -825,8 +859,9 @@ const _ParaCore = class _ParaCore {
         encryptionKey: getPublicKeyHex(this.loginEncryptionKeyPair),
         sessionId
       };
-      const params = __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({
+      const params = __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({
         apiKey: this.ctx.apiKey,
+        origin: typeof window !== "undefined" ? window.location.origin : void 0,
         partnerId: partner == null ? void 0 : partner.id,
         portalFont: ((_b = opts.portalTheme) == null ? void 0 : _b.font) || ((_c = this.portalTheme) == null ? void 0 : _c.font) || (partner == null ? void 0 : partner.font),
         portalBorderRadius: ((_d = opts.portalTheme) == null ? void 0 : _d.borderRadius) || ((_e = this.portalTheme) == null ? void 0 : _e.borderRadius),
@@ -838,12 +873,12 @@ const _ParaCore = class _ParaCore {
         portalTextColor: this.portalTextColor,
         portalPrimaryButtonTextColor: this.portalPrimaryButtonTextColor,
         isForNewDevice: opts.isForNewDevice ? opts.isForNewDevice.toString() : void 0
-      }, isCreate || isLogin ? __spreadProps(__spreadValues({
+      }, this.authInfo && (isCreate || isLogin || isAddNewCredential || isOAuthCallback || isSwitchWallets || isExportPrivateKey) ? __spreadProps(__spreadValues({
         authInfo: JSON.stringify(this.authInfo)
       }, isPhone(this.authInfo.auth) ? splitPhoneNumber(this.authInfo.auth.phone) : this.authInfo.auth), {
         pfpUrl: this.authInfo.pfpUrl,
         displayName: this.authInfo.displayName
-      }) : {}), isOnRamp ? { origin: typeof window !== "undefined" ? window.location.origin : void 0, email: this.email } : {}), isLogin || isOAuth || isOAuthCallback || isTelegramLogin || isFarcasterLogin ? __spreadProps(__spreadValues({
+      }) : {}), isOnRamp ? { email: this.email } : {}), isLogin || isOAuth || isOAuthCallback || isTelegramLogin || isFarcasterLogin || isAddNewCredential || isExportPrivateKey ? __spreadProps(__spreadValues({
         sessionId: thisDevice.sessionId,
         encryptionKey: thisDevice.encryptionKey
       }, opts.newDevice ? {
@@ -853,7 +888,10 @@ const _ParaCore = class _ParaCore {
         pregenIds: JSON.stringify(this.pregenIds)
       }) : {}), isOAuth || isOAuthCallback || isFarcasterLogin ? {
         appScheme: opts.appScheme
-      } : {}), isTelegramLogin ? { isEmbed: "true" } : {}), opts.params || {});
+      } : {}), isTelegramLogin ? { isEmbed: "true" } : {}), isSwitchWallets ? __spreadValues(__spreadValues({}, this.currentWalletIds ? { currentWalletIds: JSON.stringify(this.currentWalletIds) } : {}), this.userId ? { userId: this.userId } : {}) : {}), opts.params || {}), isAddNewCredential ? __spreadProps(__spreadValues({}, opts.addNewCredentialType && { addNewCredentialType: opts.addNewCredentialType.toString() }), {
+        addNewCredentialPasskeyId: opts.addNewCredentialPasskeyId,
+        addNewCredentialPasswordId: opts.addNewCredentialPasswordId
+      }) : {});
       const url = constructUrl({ base, path, params });
       if (opts.shorten) {
         return shortenUrl(this.ctx, url);
@@ -897,7 +935,7 @@ const _ParaCore = class _ParaCore {
         throw error;
       }
       if (!this.partner || ((_a = this.partner) == null ? void 0 : _a.id) !== session.partnerId || !supportedWalletTypesEq(((_b = this.partner) == null ? void 0 : _b.supportedWalletTypes) || [], session.supportedWalletTypes) || (((_c = this.partner) == null ? void 0 : _c.cosmosPrefix) || "cosmos") !== session.cosmosPrefix) {
-        if (!session.partnerId && !this.isRecoveryPortal()) {
+        if (!session.partnerId && !this.isPortal()) {
           this.displayModalError(
             `Invalid API Key. Please ensure you have a valid API key for the current environment: ${(_d = this.ctx.env) == null ? void 0 : _d.toUpperCase()}.`
           );
@@ -928,6 +966,9 @@ Need help? Visit: https://docs.getpara.com or contact support
           yield __privateMethod(this, _ParaCore_instances, getPartner_fn).call(this, session.partnerId);
         }
       }
+      if (session.currentWalletIds && !currentWalletIdsEq(session.currentWalletIds, this.currentWalletIds)) {
+        yield this.setCurrentWalletIds(session.currentWalletIds);
+      }
       return session;
     });
   }
@@ -1388,6 +1429,7 @@ Need help? Visit: https://docs.getpara.com or contact support
         if (!wallet) return null;
         return {
           id: wallet.id,
+          partner: wallet.partner,
           type,
           address: this.getDisplayAddress(id, { addressType: type }),
           name: wallet.name
@@ -1498,7 +1540,7 @@ Need help? Visit: https://docs.getpara.com or contact support
   }
   populateWalletAddresses() {
     return __async(this, null, function* () {
-      const res = yield this.ctx.client.getWallets(this.userId, true);
+      const res = yield (this.isPortal() ? this.ctx.client.getAllWallets : this.ctx.client.getWallets)(this.userId, true);
       const wallets = res.data.wallets;
       wallets.forEach((entity) => {
         if (this.wallets[entity.id]) {
@@ -1767,6 +1809,9 @@ Need help? Visit: https://docs.getpara.com or contact support
       if (this.externalWalletConnectionType === "VERIFICATION") {
         return isSessionActive;
       }
+      if (this.isSwitchingWallets) {
+        return isSessionActive;
+      }
       return isSessionActive && (this.isNoWalletConfig || this.currentWalletIdsArray.length > 0 && this.currentWalletIdsArray.reduce((acc, [id]) => acc && !!this.wallets[id], true));
     });
   }
@@ -1780,6 +1825,7 @@ Need help? Visit: https://docs.getpara.com or contact support
   }
   /**
    * Get the auth methods available to an existing user
+   * @deprecated Use supportedUserAuthMethods instead
    */
   supportedAuthMethods(auth) {
     return __async(this, null, function* () {
@@ -1798,6 +1844,37 @@ Need help? Visit: https://docs.getpara.com or contact support
       return authMethods;
     });
   }
+  /**
+   * Get the auth methods available to an existing user
+   */
+  supportedUserAuthMethods() {
+    return __async(this, null, function* () {
+      yield this.assertIsAuthSet();
+      const { supportedAuthMethods, hasPasswordWithoutPIN } = yield this.ctx.client.getSupportedAuthMethodsV2(
+        this.authInfo.auth
+      );
+      const authMethods = /* @__PURE__ */ new Set();
+      for (const type of supportedAuthMethods) {
+        switch (type) {
+          case "PASSWORD":
+            if (hasPasswordWithoutPIN) {
+              authMethods.add(AuthMethod.PASSWORD);
+            }
+            break;
+          case "PASSKEY":
+            authMethods.add(AuthMethod.PASSKEY);
+            break;
+          case "PIN":
+            authMethods.add(AuthMethod.PIN);
+            break;
+          case "BASIC_LOGIN":
+            authMethods.add(AuthMethod.BASIC_LOGIN);
+            break;
+        }
+      }
+      return authMethods;
+    });
+  }
   /**
    * Get hints associated with the users stored biometrics.
    * @deprecated
@@ -2091,61 +2168,26 @@ Need help? Visit: https://docs.getpara.com or contact support
    * @param {boolean} [opts.skipSessionRefresh] whether to skip refreshing the session.
    * @returns {Object} `{ isComplete: boolean; isError: boolean; needsWallet: boolean; partnerId: string; }` the result data
    **/
-  waitForLogin() {
-    return __async(this, arguments, function* ({
-      isCanceled = () => false,
-      onCancel,
-      onPoll,
-      skipSessionRefresh = false
-    } = {}) {
-      const startedAt = Date.now();
-      return new Promise((resolve, reject) => {
-        (() => __async(this, null, function* () {
-          var _a;
-          if (!this.isExternalWalletAuth) {
-            this.externalWallets = {};
-          }
-          while (true) {
-            if (isCanceled() || Date.now() - startedAt > constants.POLLING_TIMEOUT_MS) {
-              dispatchEvent(ParaEvent.LOGIN_EVENT, { isComplete: false }, "failed to setup user");
-              onCancel == null ? void 0 : onCancel();
-              return reject("canceled");
-            }
-            yield new Promise((resolve2) => setTimeout(resolve2, constants.POLLING_INTERVAL_MS));
-            try {
-              let session = yield this.touchSession();
-              if (!session.isAuthenticated) {
-                onPoll == null ? void 0 : onPoll();
-                continue;
-              }
-              session = yield this.userSetupAfterLogin();
-              const needsWallet = (_a = session.needsWallet) != null ? _a : false;
-              if (!needsWallet) {
-                if (this.currentWalletIdsArray.length === 0) {
-                  onPoll == null ? void 0 : onPoll();
-                  continue;
-                }
-              }
-              const fetchedWallets = yield this.fetchWallets();
-              const tempSharesRes = yield this.getTransmissionKeyShares();
-              if (tempSharesRes.data.temporaryShares.length === fetchedWallets.length) {
-                yield this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
-                yield this.claimPregenWallets();
-                const resp = {
-                  needsWallet: needsWallet || Object.values(this.wallets).length === 0,
-                  partnerId: session.partnerId
-                };
-                dispatchEvent(ParaEvent.LOGIN_EVENT, resp);
-                return resolve(resp);
-              }
-              onPoll == null ? void 0 : onPoll();
-            } catch (err) {
-              console.error(err);
-              onPoll == null ? void 0 : onPoll();
-            }
-          }
-        }))();
-      });
+  waitForLogin(args) {
+    return __async(this, null, function* () {
+      return yield __privateMethod(this, _ParaCore_instances, waitForLoginProcess_fn).call(this, args);
+    });
+  }
+  waitForWalletSwitching(args) {
+    return __async(this, null, function* () {
+      return yield __privateMethod(this, _ParaCore_instances, waitForLoginProcess_fn).call(this, __spreadProps(__spreadValues({}, args), { isSwitchingWallets: true }));
+    });
+  }
+  /**
+   * Gets the switch wallets URL for wallet selection.
+   * The authMethod is automatically included in the URL if available.
+   *
+   * @returns {Promise<{ url: string; authMethod: TAuthMethod }>} The switch wallets URL and authMethod
+   */
+  getSwitchWalletsUrl() {
+    return __async(this, null, function* () {
+      const url = yield this.constructPortalUrl("switchWallets");
+      return url;
     });
   }
   /**
@@ -2275,7 +2317,7 @@ Need help? Visit: https://docs.getpara.com or contact support
             break;
           }
           ++maxPolls;
-          const res = yield this.ctx.client.getWallets(this.userId);
+          const res = yield (this.isPortal() ? this.ctx.client.getAllWallets : this.ctx.client.getWallets)(this.userId);
           const wallet = res.data.wallets.find((w) => w.id === walletId);
           if (wallet && wallet.address) {
             return;
@@ -3142,49 +3184,80 @@ Need help? Visit: https://docs.getpara.com or contact support
   }
   getNewCredentialAndUrl() {
     return __async(this, arguments, function* ({
-      authMethod = "PASSKEY",
+      authMethod: optsAuthMethod,
       isForNewDevice = false,
       portalTheme,
       shorten = false
     } = {}) {
+      const userAuthMethods = yield this.supportedUserAuthMethods();
+      const isEnclaveUser = userAuthMethods.has(AuthMethod.BASIC_LOGIN);
+      if (isEnclaveUser) {
+        isForNewDevice = true;
+      }
+      const authMethods = optsAuthMethod ? [optsAuthMethod] : isForNewDevice ? ["PASSKEY", "PIN", "PASSWORD"] : ["PASSKEY"];
       this.assertIsAuthSet();
-      let credentialId, urlType;
-      switch (authMethod) {
-        case "PASSKEY":
-          ({
-            data: { id: credentialId }
-          } = yield this.ctx.client.addSessionPublicKey(this.userId, {
-            status: AuthMethodStatus.PENDING,
-            type: PublicKeyType.WEB
-          }));
-          urlType = "createAuth";
-          break;
-        case "PASSWORD":
+      const canAddPasswordOrPIN = !userAuthMethods.has(AuthMethod.PASSWORD) && !userAuthMethods.has(AuthMethod.PIN);
+      let passkeyId, passwordId, urlType;
+      if (authMethods.includes("PASSKEY") && (yield this.isPasskeySupported())) {
+        ({
+          data: { id: passkeyId }
+        } = yield this.ctx.client.addSessionPublicKey(this.userId, {
+          status: AuthMethodStatus.PENDING,
+          type: PublicKeyType.WEB
+        }));
+        urlType = "createAuth";
+      }
+      if (authMethods.includes("PASSWORD")) {
+        if (!canAddPasswordOrPIN) {
+          if (optsAuthMethod === "PASSWORD") throw new Error("A user cannot have more than one password or PIN.");
+        } else {
           ({
-            data: { id: credentialId }
+            data: { id: passwordId }
           } = yield this.ctx.client.addSessionPasswordPublicKey(this.userId, {
             status: AuthMethodStatus.PENDING
           }));
           urlType = "createPassword";
-          break;
-        case "PIN":
+        }
+      }
+      if (authMethods.includes("PIN")) {
+        if (!canAddPasswordOrPIN) {
+          if (optsAuthMethod === "PIN") throw new Error("A user cannot have more than one password or PIN.");
+        } else {
           ({
-            data: { id: credentialId }
+            data: { id: passwordId }
           } = yield this.ctx.client.addSessionPasswordPublicKey(this.userId, {
             status: AuthMethodStatus.PENDING
           }));
           urlType = "createPIN";
-          break;
+        }
+      }
+      const credentialId = passkeyId != null ? passkeyId : passwordId;
+      if (this.isNativePasskey && authMethods.includes("PASSKEY")) {
+        return { credentialId };
       }
-      const url = this.isNativePasskey && urlType === "createAuth" ? void 0 : yield this.constructPortalUrl(urlType, {
+      const { sessionId } = yield this.touchSession();
+      const url = yield this.constructPortalUrl(isForNewDevice ? "addNewCredential" : urlType, {
         isForNewDevice,
         pathId: credentialId,
         portalTheme,
-        shorten
+        shorten,
+        sessionId: isForNewDevice ? sessionId : void 0,
+        addNewCredentialType: optsAuthMethod,
+        addNewCredentialPasskeyId: passkeyId,
+        addNewCredentialPasswordId: passwordId
       });
       return __spreadValues({ credentialId }, url ? { url } : {});
     });
   }
+  addCredential(_0) {
+    return __async(this, arguments, function* ({ authMethod }) {
+      if (authMethod === "PASSKEY" && !(yield this.isPasskeySupported())) {
+        throw new Error("Passkeys are not supported.");
+      }
+      const { url } = yield this.getNewCredentialAndUrl({ isForNewDevice: true, authMethod });
+      return url;
+    });
+  }
   /**
    * Returns a Para Portal URL for logging in with a WebAuth passkey, password, PIN or OTP.
    * @param {Object} opts the options object
@@ -3412,6 +3485,40 @@ Need help? Visit: https://docs.getpara.com or contact support
       this.setUserId(userId);
     });
   }
+  exportPrivateKey() {
+    return __async(this, arguments, function* (args = {}) {
+      let walletId = args == null ? void 0 : args.walletId;
+      if (!(args == null ? void 0 : args.walletId)) {
+        walletId = this.findWalletId(void 0, { forbidPregen: true, scheme: ["DKLS"] });
+      }
+      const wallet = this.wallets[walletId];
+      if (this.externalWallets[walletId]) {
+        throw new Error("Cannot export private key for an external wallet");
+      }
+      if (!wallet || !wallet.signer) {
+        throw new Error("Wallet not found with id: " + walletId);
+      }
+      if (wallet.scheme !== "DKLS") {
+        throw new Error("Cannot export private key for a Solana wallet");
+      }
+      if (wallet.isPregen && !!wallet.pregenIdentifier && wallet.pregenIdentifierType !== "GUEST_ID") {
+        throw new Error("Cannot export private key for a pregenerated wallet");
+      }
+      if (args.shouldOpenPopup) {
+        this.popupWindow = yield this.platformUtils.openPopup("about:blank", { type: PopupType.EXPORT_PRIVATE_KEY });
+      }
+      const exportPrivateKeyUrl = yield this.constructPortalUrl("exportPrivateKey", {
+        pathId: walletId
+      });
+      if (args.shouldOpenPopup) {
+        this.popupWindow.location.href = exportPrivateKeyUrl;
+      }
+      return {
+        url: exportPrivateKeyUrl,
+        popupWindow: this.popupWindow
+      };
+    });
+  }
 };
 _authInfo = new WeakMap();
 _ParaCore_instances = new WeakSet();
@@ -3525,7 +3632,8 @@ getOAuthUrl_fn = function(_0) {
     appScheme,
     accountLinkInProgress,
     sessionLookupId,
-    encryptionKey
+    encryptionKey,
+    portalCallbackParams
   }) {
     if (!accountLinkInProgress && !this.isPortal()) {
       return yield this.constructPortalUrl("oAuth", { sessionId: sessionLookupId, oAuthMethod: method, appScheme });
@@ -3539,13 +3647,14 @@ getOAuthUrl_fn = function(_0) {
       path: `/auth/${method.toLowerCase()}`,
       params: __spreadProps(__spreadValues({
         apiKey: this.ctx.apiKey,
+        origin: typeof window !== "undefined" ? window.location.origin : void 0,
         sessionLookupId,
         portalSessionLookupId,
         appScheme
       }, accountLinkInProgress ? {
         linkedAccountId: this.accountLinkInProgress.id
       } : {}), {
-        callback: !accountLinkInProgress && (yield this.constructPortalUrl("oAuthCallback", {
+        callback: !accountLinkInProgress && (yield this.constructPortalUrl("oAuthCallback", __spreadValues({
           sessionId: sessionLookupId,
           oAuthMethod: method,
           appScheme,
@@ -3553,11 +3662,172 @@ getOAuthUrl_fn = function(_0) {
             sessionId: sessionLookupId,
             encryptionKey
           }
-        }))
+        }, this.isPortal() && { params: portalCallbackParams })))
       })
     });
   });
 };
+waitForLoginProcess_fn = function() {
+  return __async(this, arguments, function* ({
+    isCanceled = () => false,
+    onCancel,
+    onPoll,
+    skipSessionRefresh = false,
+    isSwitchingWallets = false
+  } = {}) {
+    this.devLog("[waitForLoginProcess] Starting", {
+      isSwitchingWallets,
+      skipSessionRefresh,
+      isExternalWalletAuth: this.isExternalWalletAuth
+    });
+    const startedAt = Date.now();
+    let originalCurrentWalletIdsHash;
+    if (isSwitchingWallets) {
+      this.devLog("[waitForLoginProcess] Wallet switching mode enabled");
+      this.isSwitchingWallets = true;
+      const session = yield this.touchSession();
+      originalCurrentWalletIdsHash = session.currentWalletIdsHash;
+      this.devLog("[waitForLoginProcess] Original wallet IDs hash", { originalCurrentWalletIdsHash });
+    }
+    return new Promise((resolve, reject) => {
+      (() => __async(this, null, function* () {
+        var _a;
+        if (!this.isExternalWalletAuth && !isSwitchingWallets) {
+          this.devLog("[waitForLoginProcess] Clearing external wallets");
+          this.externalWallets = {};
+        }
+        let pollCount = 0;
+        while (true) {
+          pollCount++;
+          this.devLog("[waitForLoginProcess] Poll iteration", {
+            pollCount,
+            elapsedMs: Date.now() - startedAt
+          });
+          if (isCanceled() || Date.now() - startedAt > constants.POLLING_TIMEOUT_MS) {
+            this.devLog("[waitForLoginProcess] Canceled or timed out", {
+              wasCanceled: isCanceled(),
+              timedOut: Date.now() - startedAt > constants.POLLING_TIMEOUT_MS,
+              elapsedMs: Date.now() - startedAt
+            });
+            if (isSwitchingWallets) {
+              this.isSwitchingWallets = false;
+            } else {
+              dispatchEvent(ParaEvent.LOGIN_EVENT, { isComplete: false }, "failed to setup user");
+            }
+            onCancel == null ? void 0 : onCancel();
+            return reject("canceled");
+          }
+          yield new Promise((resolve2) => setTimeout(resolve2, constants.POLLING_INTERVAL_MS));
+          try {
+            this.devLog("[waitForLoginProcess] Touching session");
+            let session = yield this.touchSession();
+            this.devLog("[waitForLoginProcess] Session state", {
+              isAuthenticated: session.isAuthenticated,
+              currentWalletIdsHash: session.currentWalletIdsHash,
+              needsWallet: session.needsWallet
+            });
+            const shouldContinuePolling = isSwitchingWallets ? originalCurrentWalletIdsHash === session.currentWalletIdsHash : !session.isAuthenticated;
+            this.devLog("[waitForLoginProcess] Should continue polling", {
+              shouldContinuePolling,
+              isSwitchingWallets,
+              originalCurrentWalletIdsHash,
+              sessionCurrentWalletIdsHash: session.currentWalletIdsHash,
+              isAuthenticated: session.isAuthenticated
+            });
+            if (shouldContinuePolling) {
+              onPoll == null ? void 0 : onPoll();
+              continue;
+            }
+            this.devLog("[waitForLoginProcess] Authentication check passed, setting up user");
+            session = yield this.userSetupAfterLogin();
+            const needsWallet = (_a = session.needsWallet) != null ? _a : false;
+            this.devLog("[waitForLoginProcess] User setup complete", { needsWallet });
+            if (isSwitchingWallets) {
+              const isWalletSwitchingComplete = originalCurrentWalletIdsHash !== session.currentWalletIdsHash;
+              this.devLog("[waitForLoginProcess] Wallet switching check", {
+                isWalletSwitchingComplete,
+                originalHash: originalCurrentWalletIdsHash,
+                sessionHash: session.currentWalletIdsHash
+              });
+              if (!isWalletSwitchingComplete) {
+                onPoll == null ? void 0 : onPoll();
+                continue;
+              }
+            } else if (!needsWallet) {
+              this.devLog("[waitForLoginProcess] Checking wallet IDs", {
+                currentWalletIdsArrayLength: this.currentWalletIdsArray.length
+              });
+              if (this.currentWalletIdsArray.length === 0) {
+                this.devLog("[waitForLoginProcess] No wallet IDs yet, continuing to poll");
+                onPoll == null ? void 0 : onPoll();
+                continue;
+              }
+            }
+            this.devLog("[waitForLoginProcess] Getting transmission key shares");
+            const tempSharesRes = yield this.getTransmissionKeyShares();
+            this.devLog("[waitForLoginProcess] Transmission shares received", {
+              shareCount: tempSharesRes.data.temporaryShares.length,
+              shares: tempSharesRes.data.temporaryShares.map((s) => ({
+                walletId: s.walletId,
+                walletScheme: s.walletScheme
+              }))
+            });
+            let hasSharesForCurrentWallets;
+            if (!isSwitchingWallets) {
+              this.devLog("[waitForLoginProcess] Fetching wallets");
+              const fetchedWallets = yield this.fetchWallets();
+              this.devLog("[waitForLoginProcess] Wallets fetched", {
+                walletCount: fetchedWallets.length,
+                wallets: fetchedWallets.map((w) => ({ id: w.id, type: w.type, scheme: w.scheme }))
+              });
+              hasSharesForCurrentWallets = tempSharesRes.data.temporaryShares.length === fetchedWallets.length;
+            } else {
+              hasSharesForCurrentWallets = this.currentWalletIdsArray.every(([walletId]) => {
+                return tempSharesRes.data.temporaryShares.some((share) => share.walletId === walletId);
+              });
+            }
+            this.devLog("[waitForLoginProcess] Checking shares for current wallets", {
+              hasSharesForCurrentWallets,
+              currentWalletIdsCount: this.currentWalletIdsArray.length,
+              shareCount: tempSharesRes.data.temporaryShares.length
+            });
+            if (hasSharesForCurrentWallets) {
+              this.devLog("[waitForLoginProcess] Setting up after login");
+              yield this.setupAfterLogin({ temporaryShares: tempSharesRes.data.temporaryShares, skipSessionRefresh });
+              this.devLog("[waitForLoginProcess] Setup after login complete");
+              this.devLog("[waitForLoginProcess] Claiming pregen wallets");
+              yield this.claimPregenWallets();
+              this.devLog("[waitForLoginProcess] Pregen wallets claimed");
+              const resp = {
+                needsWallet: needsWallet || Object.values(this.wallets).length === 0,
+                partnerId: session.partnerId
+              };
+              this.devLog("[waitForLoginProcess] Login process complete", {
+                needsWallet: resp.needsWallet,
+                partnerId: resp.partnerId,
+                walletCount: Object.values(this.wallets).length,
+                isSwitchingWallets
+              });
+              if (isSwitchingWallets) {
+                this.devLog("[waitForLoginProcess] Clearing wallet switching state");
+                this.isSwitchingWallets = false;
+              } else {
+                this.devLog("[waitForLoginProcess] Dispatching LOGIN_EVENT");
+                dispatchEvent(ParaEvent.LOGIN_EVENT, resp);
+              }
+              return resolve(resp);
+            }
+            this.devLog("[waitForLoginProcess] Not all shares available yet, continuing to poll");
+            onPoll == null ? void 0 : onPoll();
+          } catch (err) {
+            console.error("[waitForLoginProcess] Error during polling iteration", err);
+            onPoll == null ? void 0 : onPoll();
+          }
+        }
+      }))();
+    });
+  });
+};
 createPregenWallet_fn = function(opts) {
   return __async(this, null, function* () {
     var _a, _b;