@getpara/core-sdk 2.26.0 → 2.28.0

package/dist/cjs/ParaCore.js

@@ -1406,6 +1406,15 @@ const _ParaCore = class _ParaCore {
       if (!wallet) {
         throw new Error("wallet not found");
       }
+      if (wallet.scheme === "ED25519") {
+        return yield this.platformUtils.getED25519PrivateKey(
+          this.ctx,
+          this.userId,
+          wallet.id,
+          wallet.signer,
+          this.retrieveSessionCookie()
+        );
+      }
       if (wallet.scheme !== "DKLS") {
         throw new Error("invalid wallet scheme");
       }
@@ -1580,8 +1589,8 @@ const _ParaCore = class _ParaCore {
    * Resend a verification email for the current user.
    */
   resendVerificationCode(_0) {
-    return __async(this, arguments, function* ({ type: reason = "SIGNUP" }) {
-      return yield __privateGet(this, _authService).resendVerificationCode({ type: reason });
+    return __async(this, arguments, function* ({ type: reason = "SIGNUP", deliveryChannel }) {
+      return yield __privateGet(this, _authService).resendVerificationCode({ type: reason, deliveryChannel });
     });
   }
   /**
@@ -2817,15 +2826,16 @@ const _ParaCore = class _ParaCore {
   }
   sendLoginCode() {
     return __async(this, null, function* () {
-      const { userId } = yield this.ctx.client.sendLoginVerificationCode(this.authInfo);
+      const { userId, deliveryChannel, fallbackUsed, fallbackChannel, isSmsAllowed } = yield this.ctx.client.sendLoginVerificationCode(this.authInfo);
       this.setUserId(userId);
+      return { deliveryChannel, fallbackUsed, fallbackChannel, isSmsAllowed };
     });
   }
   exportPrivateKey() {
     return __async(this, arguments, function* (args = {}) {
       let walletId = args == null ? void 0 : args.walletId;
       if (!(args == null ? void 0 : args.walletId)) {
-        walletId = this.findWalletId(void 0, { forbidPregen: true, scheme: ["DKLS"] });
+        walletId = this.findWalletId(void 0, { forbidPregen: true, scheme: ["DKLS", "ED25519"] });
       }
       const wallet = this.wallets[walletId];
       if (this.externalWallets[walletId]) {
@@ -2834,9 +2844,6 @@ const _ParaCore = class _ParaCore {
       if (!wallet || !wallet.signer) {
         throw new Error("Wallet not found with id: " + walletId);
       }
-      if (wallet.scheme !== "DKLS") {
-        throw new Error("Cannot export private key for a Solana wallet");
-      }
       if (wallet.isPregen && !!wallet.pregenIdentifier && wallet.pregenIdentifierType !== "GUEST_ID") {
         throw new Error("Cannot export private key for a pregenerated wallet");
       }

package/dist/cjs/constants.js

@@ -46,7 +46,7 @@ __export(constants_exports, {
   TRANSACTION_REVIEW_TIMEOUT_MS: () => TRANSACTION_REVIEW_TIMEOUT_MS
 });
 module.exports = __toCommonJS(constants_exports);
-const PARA_CORE_VERSION = "2.26.0";
+const PARA_CORE_VERSION = "2.28.0";
 const PREFIX = "@CAPSULE/";
 const PARA_PREFIX = "@PARA/";
 const LOCAL_STORAGE_AUTH_INFO = `${PREFIX}authInfo`;

package/dist/cjs/index.js

@@ -82,6 +82,7 @@ __export(src_exports, {
   getNetworkPrefix: () => import_onRamps.getNetworkPrefix,
   getOnRampAssets: () => import_onRamps.getOnRampAssets,
   getOnRampNetworks: () => import_onRamps.getOnRampNetworks,
+  getParaConnectBaseUrl: () => import_url.getParaConnectBaseUrl,
   getPortalBaseURL: () => import_url.getPortalBaseURL,
   getPortalDomain: () => import_utils.getPortalDomain,
   getPublicKeyFromSignature: () => import_utils2.getPublicKeyFromSignature,
@@ -182,6 +183,7 @@ var src_default = import_ParaCore.ParaCore;
   getNetworkPrefix,
   getOnRampAssets,
   getOnRampNetworks,
+  getParaConnectBaseUrl,
   getPortalBaseURL,
   getPortalDomain,
   getPublicKeyFromSignature,

package/dist/cjs/services/AuthService.js

@@ -687,7 +687,7 @@ class AuthService {
       const { url } = yield this.getNewCredentialAndUrl({ isForNewDevice: true, authMethod });
       return url;
     });
-    this.resendVerificationCode = (_0) => __async(this, [_0], function* ({ type: reason = "SIGNUP" }) {
+    this.resendVerificationCode = (_0) => __async(this, [_0], function* ({ type: reason = "SIGNUP", deliveryChannel }) {
       let type, linkedAccountId;
       switch (reason) {
         case "SIGNUP":
@@ -709,10 +709,11 @@ class AuthService {
       if (type !== "EMAIL" && type !== "PHONE") {
         throw new Error("invalid auth type for verification code");
       }
-      yield __privateGet(this, _paraCoreInterface).ctx.client.resendVerificationCode(__spreadValues({
+      return yield __privateGet(this, _paraCoreInterface).ctx.client.resendVerificationCode(__spreadValues({
         userId,
         type,
-        linkedAccountId
+        linkedAccountId,
+        deliveryChannel
       }, __privateGet(this, _paraCoreInterface).getVerificationEmailProps()));
     });
     __privateSet(this, _paraCoreInterface, paraCore.getAuthServiceInterface());

package/dist/cjs/services/PregenWalletService.js

@@ -71,7 +71,7 @@ var import_events = require("../types/events.js");
 var import_shareDistribution = require("../shares/shareDistribution.js");
 var import_constants = require("../constants.js");
 var import_stateListener = require("../utils/stateListener.js");
-var _stateManager, _authService, _walletService, _pollingService, _paraCoreInterface, _isCreateGuestWalletsPending, _fetchOverridePromise;
+var _stateManager, _authService, _walletService, _pollingService, _paraCoreInterface, _isCreateGuestWalletsPending, _fetchOverridePromise, _claimPregenWalletEntities;
 class PregenWalletService {
   constructor(paraCore) {
     __privateAdd(this, _stateManager);
@@ -129,37 +129,50 @@ class PregenWalletService {
       }
       const { supportedWalletTypes } = yield __privateGet(this, _paraCoreInterface).assertPartner();
       const pregenWallets = yield this.getPregenWallets();
-      let recoverySecret, walletIds = {};
+      let recoverySecret;
+      let walletIds = {};
       if (pregenWallets.length > 0) {
-        try {
-          const shares = yield __privateGet(this, _paraCoreInterface).ctx.enclaveClient.getPregenShares({
-            userId: __privateGet(this, _authService).userId,
-            walletIds: pregenWallets.map((w) => w.id),
-            partnerId: pregenWallets[0].partnerId
-          });
-          for (const share of shares) {
-            const wallet = pregenWallets.find((w) => w.id === share.walletId);
-            if (wallet) {
-              __privateGet(this, _walletService).wallets[wallet.id] = {
-                id: wallet.id,
-                address: wallet.address,
-                scheme: wallet.scheme,
-                type: wallet.type,
-                partnerId: wallet.partnerId,
-                isPregen: wallet.isPregen,
-                pregenIdentifier: wallet.pregenIdentifier,
-                pregenIdentifierType: wallet.pregenIdentifierType,
-                signer: share.signer,
-                createdAt: String(wallet.createdAt)
-              };
+        let candidates = pregenWallets.filter((w) => {
+          var _a;
+          return !!((_a = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a.signer);
+        });
+        if (candidates.length === 0) {
+          try {
+            const shares = yield __privateGet(this, _paraCoreInterface).ctx.enclaveClient.getPregenShares({
+              userId: __privateGet(this, _authService).userId,
+              walletIds: pregenWallets.map((w) => w.id),
+              partnerId: pregenWallets[0].partnerId
+            });
+            for (const share of shares) {
+              const wallet = pregenWallets.find((w) => w.id === share.walletId);
+              if (wallet) {
+                __privateGet(this, _walletService).wallets[wallet.id] = {
+                  id: wallet.id,
+                  address: wallet.address,
+                  scheme: wallet.scheme,
+                  type: wallet.type,
+                  partnerId: wallet.partnerId,
+                  isPregen: wallet.isPregen,
+                  pregenIdentifier: wallet.pregenIdentifier,
+                  pregenIdentifierType: wallet.pregenIdentifierType,
+                  signer: share.signer,
+                  createdAt: String(wallet.createdAt)
+                };
+              }
             }
+          } catch (err) {
+            console.warn("[performClaimPregenWallets] Failed to fetch pregen shares:", err);
           }
-        } catch (err) {
-          console.warn("[performClaimPregenWallets] Failed to fetch pregen shares:", err);
+          candidates = pregenWallets.filter((w) => {
+            var _a;
+            return !!((_a = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a.signer);
+          });
         }
-        recoverySecret = yield this.claimPregenWallets();
+        const { recoverySecret: claimRecoverySecret, claimedWalletIds } = yield __privateGet(this, _claimPregenWalletEntities).call(this, candidates);
+        recoverySecret = claimRecoverySecret;
+        const claimed = candidates.filter((w) => claimedWalletIds.includes(w.id));
         walletIds = supportedWalletTypes.reduce((acc, { type }) => {
-          const wallet = pregenWallets.find((w) => !!import_wallet2.WalletSchemeTypeMap[w.scheme][type]);
+          const wallet = claimed.find((w) => !!import_wallet2.WalletSchemeTypeMap[w.scheme][type]);
           if (!wallet) {
             return acc;
           }
@@ -173,22 +186,42 @@ class PregenWalletService {
       return resp;
     });
     this.claimPregenWallets = (..._0) => __async(this, [..._0], function* ({ pregenId } = {}) {
-      var _a;
       __privateGet(this, _paraCoreInterface).requireApiKey();
       const pregenWallets = pregenId ? yield this.getPregenWallets({ pregenId }) : yield this.getPregenWallets();
       if (pregenWallets.length === 0) {
         return void 0;
       }
-      const missingWallets = pregenWallets.filter((wallet) => !__privateGet(this, _walletService).wallets[wallet.id]);
-      if (missingWallets.length > 0) {
-        throw new Error(
-          `Cannot claim pregen wallets because wallet data is missing. Please call setUserShare first to load the wallet data for the following wallet IDs: ${missingWallets.map((w) => w.id).join(", ")}`
+      const { recoverySecret } = yield __privateGet(this, _claimPregenWalletEntities).call(this, pregenWallets);
+      return recoverySecret;
+    });
+    // Claims only the pregen entities for which the SDK has local signer
+    // material. Wallets without signer material are skipped (warned, not
+    // thrown) so a stale/duplicate backend row cannot block login.
+    // Returns the wallet IDs the backend confirmed claiming so callers can
+    // surface only confirmed wallets.
+    __privateAdd(this, _claimPregenWalletEntities, (pregenWallets) => __async(this, null, function* () {
+      var _a;
+      const claimable = pregenWallets.filter((w) => {
+        var _a2;
+        return !!((_a2 = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a2.signer);
+      });
+      const skipped = pregenWallets.filter((w) => {
+        var _a2;
+        return !((_a2 = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a2.signer);
+      });
+      if (skipped.length > 0) {
+        console.warn(
+          "[claimPregenWallets] Skipping pregen wallets without local share material:",
+          skipped.map((w) => w.id)
         );
       }
+      if (claimable.length === 0) {
+        return { recoverySecret: void 0, claimedWalletIds: [] };
+      }
       let newRecoverySecret;
       const { walletIds } = yield __privateGet(this, _paraCoreInterface).ctx.client.claimPregenWallets({
         userId: __privateGet(this, _authService).userId,
-        walletIds: pregenWallets.map((w) => w.id)
+        walletIds: claimable.map((w) => w.id)
       });
       for (const walletId of walletIds) {
         const wallet = __privateGet(this, _walletService).wallets[walletId];
@@ -233,8 +266,8 @@ class PregenWalletService {
         });
       }
       yield __privateGet(this, _walletService).setWallets(__privateGet(this, _walletService).wallets);
-      return newRecoverySecret;
-    });
+      return { recoverySecret: newRecoverySecret, claimedWalletIds: walletIds };
+    }));
     this.getPregenWallets = (..._0) => __async(this, [..._0], function* ({ pregenId } = {}) {
       const pregenIds = pregenId ? (0, import_user_management_client.toPregenIds)(pregenId) : this.pregenIds;
       if (!pregenIds || Object.keys(pregenIds).length === 0) {
@@ -438,6 +471,7 @@ _pollingService = new WeakMap();
 _paraCoreInterface = new WeakMap();
 _isCreateGuestWalletsPending = new WeakMap();
 _fetchOverridePromise = new WeakMap();
+_claimPregenWalletEntities = new WeakMap();
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   PregenWalletService

package/dist/cjs/state/CoreStateManager.js

@@ -115,7 +115,7 @@ const _CoreStateManager = class _CoreStateManager {
    * Extracts all data needed by UI consumers from authStateResult.
    */
   computeAuthStateInfo(authContext, walletContext) {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n, _o, _p, _q, _r, _s, _t, _u, _v, _w, _x, _y, _z, _A, _B;
+    var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n, _o, _p, _q, _r, _s, _t, _u, _v, _w, _x, _y, _z, _A, _B, _C, _D, _E;
     const defaultAuthStateInfo = {
       userId: null,
       isPasskeySupported: false,
@@ -129,6 +129,9 @@ const _CoreStateManager = class _CoreStateManager {
       pinUrl: null,
       passkeyId: null,
       verificationUrl: null,
+      deliveryChannel: null,
+      fallbackUsed: false,
+      fallbackChannel: null,
       externalWalletVerification: null,
       recoverySecret: null,
       isNewUser: false
@@ -164,6 +167,9 @@ const _CoreStateManager = class _CoreStateManager {
     let verificationUrl = null;
     let passkeyHints = null;
     let passkeyId = null;
+    let deliveryChannel = null;
+    let fallbackUsed = false;
+    let fallbackChannel = null;
     if (stage === "login") {
       const loginState = authStateResult;
       const authMethods = (_j = loginState.loginAuthMethods) != null ? _j : [];
@@ -190,6 +196,9 @@ const _CoreStateManager = class _CoreStateManager {
     } else if (stage === "verify") {
       const verifyState = authStateResult;
       verificationUrl = (_w = verifyState.loginUrl) != null ? _w : null;
+      deliveryChannel = (_x = verifyState.deliveryChannel) != null ? _x : null;
+      fallbackUsed = (_y = verifyState.fallbackUsed) != null ? _y : false;
+      fallbackChannel = (_z = verifyState.fallbackChannel) != null ? _z : null;
     }
     return {
       userId,
@@ -204,10 +213,13 @@ const _CoreStateManager = class _CoreStateManager {
       pinUrl,
       passkeyId,
       verificationUrl,
+      deliveryChannel,
+      fallbackUsed,
+      fallbackChannel,
       externalWalletVerification: externalWalletVerification ? {
-        signatureVerificationMessage: (_x = externalWalletVerification.signatureVerificationMessage) != null ? _x : "",
-        walletAddress: (_z = (_y = externalWalletVerification.externalWallet) == null ? void 0 : _y.address) != null ? _z : "",
-        walletType: (_B = (_A = externalWalletVerification.externalWallet) == null ? void 0 : _A.type) != null ? _B : ""
+        signatureVerificationMessage: (_A = externalWalletVerification.signatureVerificationMessage) != null ? _A : "",
+        walletAddress: (_C = (_B = externalWalletVerification.externalWallet) == null ? void 0 : _B.address) != null ? _C : "",
+        walletType: (_E = (_D = externalWalletVerification.externalWallet) == null ? void 0 : _D.type) != null ? _E : ""
       } : null,
       recoverySecret,
       isNewUser
@@ -268,7 +280,7 @@ const _CoreStateManager = class _CoreStateManager {
   }
   authStateInfoEqual(a, b) {
     var _a, _b, _c, _d, _e, _f, _g, _h, _i;
-    return a.userId === b.userId && a.isPasskeySupported === b.isPasskeySupported && a.hasPasskey === b.hasPasskey && a.hasPassword === b.hasPassword && a.hasPin === b.hasPin && a.passkeyUrl === b.passkeyUrl && a.passkeyKnownDeviceUrl === b.passkeyKnownDeviceUrl && a.passwordUrl === b.passwordUrl && a.pinUrl === b.pinUrl && a.passkeyId === b.passkeyId && a.verificationUrl === b.verificationUrl && a.recoverySecret === b.recoverySecret && a.isNewUser === b.isNewUser && ((_a = a.externalWalletVerification) == null ? void 0 : _a.signatureVerificationMessage) === ((_b = b.externalWalletVerification) == null ? void 0 : _b.signatureVerificationMessage) && ((_c = a.externalWalletVerification) == null ? void 0 : _c.walletAddress) === ((_d = b.externalWalletVerification) == null ? void 0 : _d.walletAddress) && ((_e = a.externalWalletVerification) == null ? void 0 : _e.walletType) === ((_f = b.externalWalletVerification) == null ? void 0 : _f.walletType) && ((_g = a.passkeyHints) == null ? void 0 : _g.length) === ((_h = b.passkeyHints) == null ? void 0 : _h.length) && ((_i = a.passkeyHints) != null ? _i : []).every(
+    return a.userId === b.userId && a.isPasskeySupported === b.isPasskeySupported && a.hasPasskey === b.hasPasskey && a.hasPassword === b.hasPassword && a.hasPin === b.hasPin && a.passkeyUrl === b.passkeyUrl && a.passkeyKnownDeviceUrl === b.passkeyKnownDeviceUrl && a.passwordUrl === b.passwordUrl && a.pinUrl === b.pinUrl && a.passkeyId === b.passkeyId && a.verificationUrl === b.verificationUrl && a.deliveryChannel === b.deliveryChannel && a.fallbackUsed === b.fallbackUsed && a.fallbackChannel === b.fallbackChannel && a.recoverySecret === b.recoverySecret && a.isNewUser === b.isNewUser && ((_a = a.externalWalletVerification) == null ? void 0 : _a.signatureVerificationMessage) === ((_b = b.externalWalletVerification) == null ? void 0 : _b.signatureVerificationMessage) && ((_c = a.externalWalletVerification) == null ? void 0 : _c.walletAddress) === ((_d = b.externalWalletVerification) == null ? void 0 : _d.walletAddress) && ((_e = a.externalWalletVerification) == null ? void 0 : _e.walletType) === ((_f = b.externalWalletVerification) == null ? void 0 : _f.walletType) && ((_g = a.passkeyHints) == null ? void 0 : _g.length) === ((_h = b.passkeyHints) == null ? void 0 : _h.length) && ((_i = a.passkeyHints) != null ? _i : []).every(
       (hint, i) => hint.useragent === b.passkeyHints[i].useragent && hint.aaguid === b.passkeyHints[i].aaguid
     );
   }

package/dist/cjs/state/machines/walletStateMachine.js

@@ -215,6 +215,28 @@ function createWalletStateMachine(paraCoreInterface) {
         ]
       },
       needs_wallets: {
+        // `needs_wallets` is otherwise a passive state that waits for the consumer
+        // to dispatch `WAIT_FOR_WALLET_CREATION`. That contract is fine for
+        // `isNewUser` reaching this state without auto-create (`checking_wallet_state`
+        // guard at line ~127), but it traps existing users who landed here via
+        // `waiting_for_wallets` COMPLETE with `needsWallet=true` — i.e., an
+        // authenticated user whose wallets don't satisfy the partner's
+        // `supportedWalletTypes` (e.g. EVM-only user logging into a Solana-only
+        // partner). Their auth flow set `shouldAutoCreateWallets: true` via
+        // `authenticateWithOAuth` / `authenticateWithEmailOrPhone`, but the
+        // existing `claiming_wallets` guard requires `isNewUser ||
+        // shouldClaimGuestWallets`, neither of which is true for them, so
+        // auto-create silently never happens.
+        //
+        // When `shouldAutoCreate` is true, route directly to `creating_wallets`.
+        // `createWalletPerType` is partner-aware via `#getMissingTypes`, so it
+        // provisions exactly the missing required types (no duplicates).
+        always: [
+          {
+            target: "creating_wallets",
+            guard: "shouldAutoCreate"
+          }
+        ],
         on: {
           WAIT_FOR_WALLET_CREATION: {
             target: "claiming_wallets",

package/dist/cjs/utils/stateErrorHelpers.js

@@ -45,7 +45,12 @@ function formatStateError(error, defaultMessage) {
     return new Error(error);
   }
   if (error && typeof error === "object" && "message" in error) {
-    return new Error(String(error.message));
+    const src = error;
+    const normalized = Object.assign(new Error(String(src.message)), {});
+    if ("code" in src) normalized.code = src.code;
+    if ("status" in src) normalized.status = src.status;
+    if ("data" in src) normalized.data = src.data;
+    return normalized;
   }
   if (error && typeof error === "object" && "error" in error) {
     return formatStateError(error.error, defaultMessage);

package/dist/esm/ParaCore.js

@@ -1348,6 +1348,15 @@ const _ParaCore = class _ParaCore {
       if (!wallet) {
         throw new Error("wallet not found");
       }
+      if (wallet.scheme === "ED25519") {
+        return yield this.platformUtils.getED25519PrivateKey(
+          this.ctx,
+          this.userId,
+          wallet.id,
+          wallet.signer,
+          this.retrieveSessionCookie()
+        );
+      }
       if (wallet.scheme !== "DKLS") {
         throw new Error("invalid wallet scheme");
       }
@@ -1522,8 +1531,8 @@ const _ParaCore = class _ParaCore {
    * Resend a verification email for the current user.
    */
   resendVerificationCode(_0) {
-    return __async(this, arguments, function* ({ type: reason = "SIGNUP" }) {
-      return yield __privateGet(this, _authService).resendVerificationCode({ type: reason });
+    return __async(this, arguments, function* ({ type: reason = "SIGNUP", deliveryChannel }) {
+      return yield __privateGet(this, _authService).resendVerificationCode({ type: reason, deliveryChannel });
     });
   }
   /**
@@ -2759,15 +2768,16 @@ const _ParaCore = class _ParaCore {
   }
   sendLoginCode() {
     return __async(this, null, function* () {
-      const { userId } = yield this.ctx.client.sendLoginVerificationCode(this.authInfo);
+      const { userId, deliveryChannel, fallbackUsed, fallbackChannel, isSmsAllowed } = yield this.ctx.client.sendLoginVerificationCode(this.authInfo);
       this.setUserId(userId);
+      return { deliveryChannel, fallbackUsed, fallbackChannel, isSmsAllowed };
     });
   }
   exportPrivateKey() {
     return __async(this, arguments, function* (args = {}) {
       let walletId = args == null ? void 0 : args.walletId;
       if (!(args == null ? void 0 : args.walletId)) {
-        walletId = this.findWalletId(void 0, { forbidPregen: true, scheme: ["DKLS"] });
+        walletId = this.findWalletId(void 0, { forbidPregen: true, scheme: ["DKLS", "ED25519"] });
       }
       const wallet = this.wallets[walletId];
       if (this.externalWallets[walletId]) {
@@ -2776,9 +2786,6 @@ const _ParaCore = class _ParaCore {
       if (!wallet || !wallet.signer) {
         throw new Error("Wallet not found with id: " + walletId);
       }
-      if (wallet.scheme !== "DKLS") {
-        throw new Error("Cannot export private key for a Solana wallet");
-      }
       if (wallet.isPregen && !!wallet.pregenIdentifier && wallet.pregenIdentifierType !== "GUEST_ID") {
         throw new Error("Cannot export private key for a pregenerated wallet");
       }

package/dist/esm/constants.js

@@ -1,5 +1,5 @@
 import "./chunk-7B52C2XE.js";
-const PARA_CORE_VERSION = "2.26.0";
+const PARA_CORE_VERSION = "2.28.0";
 const PREFIX = "@CAPSULE/";
 const PARA_PREFIX = "@PARA/";
 const LOCAL_STORAGE_AUTH_INFO = `${PREFIX}authInfo`;

package/dist/esm/index.js

@@ -83,7 +83,7 @@ export * from "./utils/phone.js";
 export * from "./utils/config.js";
 import { isWalletSupported } from "./utils/wallet.js";
 import { getNetworkPrefix, getOnRampAssets, getOnRampNetworks, toAssetInfoArray } from "./utils/onRamps.js";
-import { getPortalBaseURL } from "./utils/url.js";
+import { getPortalBaseURL, getParaConnectBaseUrl } from "./utils/url.js";
 import { retrieve } from "./transmission/transmissionUtils.js";
 const paraVersion = ParaCore.version;
 var src_default = ParaCore;
@@ -142,6 +142,7 @@ export {
   getNetworkPrefix,
   getOnRampAssets,
   getOnRampNetworks,
+  getParaConnectBaseUrl,
   getPortalBaseURL,
   getPortalDomain,
   getPublicKeyFromSignature,

package/dist/esm/services/AuthService.js

@@ -618,7 +618,7 @@ class AuthService {
       const { url } = yield this.getNewCredentialAndUrl({ isForNewDevice: true, authMethod });
       return url;
     });
-    this.resendVerificationCode = (_0) => __async(this, [_0], function* ({ type: reason = "SIGNUP" }) {
+    this.resendVerificationCode = (_0) => __async(this, [_0], function* ({ type: reason = "SIGNUP", deliveryChannel }) {
       let type, linkedAccountId;
       switch (reason) {
         case "SIGNUP":
@@ -640,10 +640,11 @@ class AuthService {
       if (type !== "EMAIL" && type !== "PHONE") {
         throw new Error("invalid auth type for verification code");
       }
-      yield __privateGet(this, _paraCoreInterface).ctx.client.resendVerificationCode(__spreadValues({
+      return yield __privateGet(this, _paraCoreInterface).ctx.client.resendVerificationCode(__spreadValues({
         userId,
         type,
-        linkedAccountId
+        linkedAccountId,
+        deliveryChannel
       }, __privateGet(this, _paraCoreInterface).getVerificationEmailProps()));
     });
     __privateSet(this, _paraCoreInterface, paraCore.getAuthServiceInterface());

package/dist/esm/services/PregenWalletService.js

@@ -6,7 +6,7 @@ import {
   __spreadProps,
   __spreadValues
 } from "../chunk-7B52C2XE.js";
-var _stateManager, _authService, _walletService, _pollingService, _paraCoreInterface, _isCreateGuestWalletsPending, _fetchOverridePromise;
+var _stateManager, _authService, _walletService, _pollingService, _paraCoreInterface, _isCreateGuestWalletsPending, _fetchOverridePromise, _claimPregenWalletEntities;
 import {
   isPregenAuth,
   toPregenIds,
@@ -81,37 +81,50 @@ class PregenWalletService {
       }
       const { supportedWalletTypes } = yield __privateGet(this, _paraCoreInterface).assertPartner();
       const pregenWallets = yield this.getPregenWallets();
-      let recoverySecret, walletIds = {};
+      let recoverySecret;
+      let walletIds = {};
       if (pregenWallets.length > 0) {
-        try {
-          const shares = yield __privateGet(this, _paraCoreInterface).ctx.enclaveClient.getPregenShares({
-            userId: __privateGet(this, _authService).userId,
-            walletIds: pregenWallets.map((w) => w.id),
-            partnerId: pregenWallets[0].partnerId
-          });
-          for (const share of shares) {
-            const wallet = pregenWallets.find((w) => w.id === share.walletId);
-            if (wallet) {
-              __privateGet(this, _walletService).wallets[wallet.id] = {
-                id: wallet.id,
-                address: wallet.address,
-                scheme: wallet.scheme,
-                type: wallet.type,
-                partnerId: wallet.partnerId,
-                isPregen: wallet.isPregen,
-                pregenIdentifier: wallet.pregenIdentifier,
-                pregenIdentifierType: wallet.pregenIdentifierType,
-                signer: share.signer,
-                createdAt: String(wallet.createdAt)
-              };
+        let candidates = pregenWallets.filter((w) => {
+          var _a;
+          return !!((_a = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a.signer);
+        });
+        if (candidates.length === 0) {
+          try {
+            const shares = yield __privateGet(this, _paraCoreInterface).ctx.enclaveClient.getPregenShares({
+              userId: __privateGet(this, _authService).userId,
+              walletIds: pregenWallets.map((w) => w.id),
+              partnerId: pregenWallets[0].partnerId
+            });
+            for (const share of shares) {
+              const wallet = pregenWallets.find((w) => w.id === share.walletId);
+              if (wallet) {
+                __privateGet(this, _walletService).wallets[wallet.id] = {
+                  id: wallet.id,
+                  address: wallet.address,
+                  scheme: wallet.scheme,
+                  type: wallet.type,
+                  partnerId: wallet.partnerId,
+                  isPregen: wallet.isPregen,
+                  pregenIdentifier: wallet.pregenIdentifier,
+                  pregenIdentifierType: wallet.pregenIdentifierType,
+                  signer: share.signer,
+                  createdAt: String(wallet.createdAt)
+                };
+              }
             }
+          } catch (err) {
+            console.warn("[performClaimPregenWallets] Failed to fetch pregen shares:", err);
           }
-        } catch (err) {
-          console.warn("[performClaimPregenWallets] Failed to fetch pregen shares:", err);
+          candidates = pregenWallets.filter((w) => {
+            var _a;
+            return !!((_a = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a.signer);
+          });
         }
-        recoverySecret = yield this.claimPregenWallets();
+        const { recoverySecret: claimRecoverySecret, claimedWalletIds } = yield __privateGet(this, _claimPregenWalletEntities).call(this, candidates);
+        recoverySecret = claimRecoverySecret;
+        const claimed = candidates.filter((w) => claimedWalletIds.includes(w.id));
         walletIds = supportedWalletTypes.reduce((acc, { type }) => {
-          const wallet = pregenWallets.find((w) => !!WalletSchemeTypeMap[w.scheme][type]);
+          const wallet = claimed.find((w) => !!WalletSchemeTypeMap[w.scheme][type]);
           if (!wallet) {
             return acc;
           }
@@ -125,22 +138,42 @@ class PregenWalletService {
       return resp;
     });
     this.claimPregenWallets = (..._0) => __async(this, [..._0], function* ({ pregenId } = {}) {
-      var _a;
       __privateGet(this, _paraCoreInterface).requireApiKey();
       const pregenWallets = pregenId ? yield this.getPregenWallets({ pregenId }) : yield this.getPregenWallets();
       if (pregenWallets.length === 0) {
         return void 0;
       }
-      const missingWallets = pregenWallets.filter((wallet) => !__privateGet(this, _walletService).wallets[wallet.id]);
-      if (missingWallets.length > 0) {
-        throw new Error(
-          `Cannot claim pregen wallets because wallet data is missing. Please call setUserShare first to load the wallet data for the following wallet IDs: ${missingWallets.map((w) => w.id).join(", ")}`
+      const { recoverySecret } = yield __privateGet(this, _claimPregenWalletEntities).call(this, pregenWallets);
+      return recoverySecret;
+    });
+    // Claims only the pregen entities for which the SDK has local signer
+    // material. Wallets without signer material are skipped (warned, not
+    // thrown) so a stale/duplicate backend row cannot block login.
+    // Returns the wallet IDs the backend confirmed claiming so callers can
+    // surface only confirmed wallets.
+    __privateAdd(this, _claimPregenWalletEntities, (pregenWallets) => __async(this, null, function* () {
+      var _a;
+      const claimable = pregenWallets.filter((w) => {
+        var _a2;
+        return !!((_a2 = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a2.signer);
+      });
+      const skipped = pregenWallets.filter((w) => {
+        var _a2;
+        return !((_a2 = __privateGet(this, _walletService).wallets[w.id]) == null ? void 0 : _a2.signer);
+      });
+      if (skipped.length > 0) {
+        console.warn(
+          "[claimPregenWallets] Skipping pregen wallets without local share material:",
+          skipped.map((w) => w.id)
         );
       }
+      if (claimable.length === 0) {
+        return { recoverySecret: void 0, claimedWalletIds: [] };
+      }
       let newRecoverySecret;
       const { walletIds } = yield __privateGet(this, _paraCoreInterface).ctx.client.claimPregenWallets({
         userId: __privateGet(this, _authService).userId,
-        walletIds: pregenWallets.map((w) => w.id)
+        walletIds: claimable.map((w) => w.id)
       });
       for (const walletId of walletIds) {
         const wallet = __privateGet(this, _walletService).wallets[walletId];
@@ -185,8 +218,8 @@ class PregenWalletService {
         });
       }
       yield __privateGet(this, _walletService).setWallets(__privateGet(this, _walletService).wallets);
-      return newRecoverySecret;
-    });
+      return { recoverySecret: newRecoverySecret, claimedWalletIds: walletIds };
+    }));
     this.getPregenWallets = (..._0) => __async(this, [..._0], function* ({ pregenId } = {}) {
       const pregenIds = pregenId ? toPregenIds(pregenId) : this.pregenIds;
       if (!pregenIds || Object.keys(pregenIds).length === 0) {
@@ -390,6 +423,7 @@ _pollingService = new WeakMap();
 _paraCoreInterface = new WeakMap();
 _isCreateGuestWalletsPending = new WeakMap();
 _fetchOverridePromise = new WeakMap();
+_claimPregenWalletEntities = new WeakMap();
 export {
   PregenWalletService
 };

package/dist/esm/state/CoreStateManager.js

@@ -80,7 +80,7 @@ const _CoreStateManager = class _CoreStateManager {
    * Extracts all data needed by UI consumers from authStateResult.
    */
   computeAuthStateInfo(authContext, walletContext) {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n, _o, _p, _q, _r, _s, _t, _u, _v, _w, _x, _y, _z, _A, _B;
+    var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l, _m, _n, _o, _p, _q, _r, _s, _t, _u, _v, _w, _x, _y, _z, _A, _B, _C, _D, _E;
     const defaultAuthStateInfo = {
       userId: null,
       isPasskeySupported: false,
@@ -94,6 +94,9 @@ const _CoreStateManager = class _CoreStateManager {
       pinUrl: null,
       passkeyId: null,
       verificationUrl: null,
+      deliveryChannel: null,
+      fallbackUsed: false,
+      fallbackChannel: null,
       externalWalletVerification: null,
       recoverySecret: null,
       isNewUser: false
@@ -129,6 +132,9 @@ const _CoreStateManager = class _CoreStateManager {
     let verificationUrl = null;
     let passkeyHints = null;
     let passkeyId = null;
+    let deliveryChannel = null;
+    let fallbackUsed = false;
+    let fallbackChannel = null;
     if (stage === "login") {
       const loginState = authStateResult;
       const authMethods = (_j = loginState.loginAuthMethods) != null ? _j : [];
@@ -155,6 +161,9 @@ const _CoreStateManager = class _CoreStateManager {
     } else if (stage === "verify") {
       const verifyState = authStateResult;
       verificationUrl = (_w = verifyState.loginUrl) != null ? _w : null;
+      deliveryChannel = (_x = verifyState.deliveryChannel) != null ? _x : null;
+      fallbackUsed = (_y = verifyState.fallbackUsed) != null ? _y : false;
+      fallbackChannel = (_z = verifyState.fallbackChannel) != null ? _z : null;
     }
     return {
       userId,
@@ -169,10 +178,13 @@ const _CoreStateManager = class _CoreStateManager {
       pinUrl,
       passkeyId,
       verificationUrl,
+      deliveryChannel,
+      fallbackUsed,
+      fallbackChannel,
       externalWalletVerification: externalWalletVerification ? {
-        signatureVerificationMessage: (_x = externalWalletVerification.signatureVerificationMessage) != null ? _x : "",
-        walletAddress: (_z = (_y = externalWalletVerification.externalWallet) == null ? void 0 : _y.address) != null ? _z : "",
-        walletType: (_B = (_A = externalWalletVerification.externalWallet) == null ? void 0 : _A.type) != null ? _B : ""
+        signatureVerificationMessage: (_A = externalWalletVerification.signatureVerificationMessage) != null ? _A : "",
+        walletAddress: (_C = (_B = externalWalletVerification.externalWallet) == null ? void 0 : _B.address) != null ? _C : "",
+        walletType: (_E = (_D = externalWalletVerification.externalWallet) == null ? void 0 : _D.type) != null ? _E : ""
       } : null,
       recoverySecret,
       isNewUser
@@ -233,7 +245,7 @@ const _CoreStateManager = class _CoreStateManager {
   }
   authStateInfoEqual(a, b) {
     var _a, _b, _c, _d, _e, _f, _g, _h, _i;
-    return a.userId === b.userId && a.isPasskeySupported === b.isPasskeySupported && a.hasPasskey === b.hasPasskey && a.hasPassword === b.hasPassword && a.hasPin === b.hasPin && a.passkeyUrl === b.passkeyUrl && a.passkeyKnownDeviceUrl === b.passkeyKnownDeviceUrl && a.passwordUrl === b.passwordUrl && a.pinUrl === b.pinUrl && a.passkeyId === b.passkeyId && a.verificationUrl === b.verificationUrl && a.recoverySecret === b.recoverySecret && a.isNewUser === b.isNewUser && ((_a = a.externalWalletVerification) == null ? void 0 : _a.signatureVerificationMessage) === ((_b = b.externalWalletVerification) == null ? void 0 : _b.signatureVerificationMessage) && ((_c = a.externalWalletVerification) == null ? void 0 : _c.walletAddress) === ((_d = b.externalWalletVerification) == null ? void 0 : _d.walletAddress) && ((_e = a.externalWalletVerification) == null ? void 0 : _e.walletType) === ((_f = b.externalWalletVerification) == null ? void 0 : _f.walletType) && ((_g = a.passkeyHints) == null ? void 0 : _g.length) === ((_h = b.passkeyHints) == null ? void 0 : _h.length) && ((_i = a.passkeyHints) != null ? _i : []).every(
+    return a.userId === b.userId && a.isPasskeySupported === b.isPasskeySupported && a.hasPasskey === b.hasPasskey && a.hasPassword === b.hasPassword && a.hasPin === b.hasPin && a.passkeyUrl === b.passkeyUrl && a.passkeyKnownDeviceUrl === b.passkeyKnownDeviceUrl && a.passwordUrl === b.passwordUrl && a.pinUrl === b.pinUrl && a.passkeyId === b.passkeyId && a.verificationUrl === b.verificationUrl && a.deliveryChannel === b.deliveryChannel && a.fallbackUsed === b.fallbackUsed && a.fallbackChannel === b.fallbackChannel && a.recoverySecret === b.recoverySecret && a.isNewUser === b.isNewUser && ((_a = a.externalWalletVerification) == null ? void 0 : _a.signatureVerificationMessage) === ((_b = b.externalWalletVerification) == null ? void 0 : _b.signatureVerificationMessage) && ((_c = a.externalWalletVerification) == null ? void 0 : _c.walletAddress) === ((_d = b.externalWalletVerification) == null ? void 0 : _d.walletAddress) && ((_e = a.externalWalletVerification) == null ? void 0 : _e.walletType) === ((_f = b.externalWalletVerification) == null ? void 0 : _f.walletType) && ((_g = a.passkeyHints) == null ? void 0 : _g.length) === ((_h = b.passkeyHints) == null ? void 0 : _h.length) && ((_i = a.passkeyHints) != null ? _i : []).every(
       (hint, i) => hint.useragent === b.passkeyHints[i].useragent && hint.aaguid === b.passkeyHints[i].aaguid
     );
   }

package/dist/esm/state/machines/walletStateMachine.js

@@ -161,6 +161,28 @@ function createWalletStateMachine(paraCoreInterface) {
         ]
       },
       needs_wallets: {
+        // `needs_wallets` is otherwise a passive state that waits for the consumer
+        // to dispatch `WAIT_FOR_WALLET_CREATION`. That contract is fine for
+        // `isNewUser` reaching this state without auto-create (`checking_wallet_state`
+        // guard at line ~127), but it traps existing users who landed here via
+        // `waiting_for_wallets` COMPLETE with `needsWallet=true` — i.e., an
+        // authenticated user whose wallets don't satisfy the partner's
+        // `supportedWalletTypes` (e.g. EVM-only user logging into a Solana-only
+        // partner). Their auth flow set `shouldAutoCreateWallets: true` via
+        // `authenticateWithOAuth` / `authenticateWithEmailOrPhone`, but the
+        // existing `claiming_wallets` guard requires `isNewUser ||
+        // shouldClaimGuestWallets`, neither of which is true for them, so
+        // auto-create silently never happens.
+        //
+        // When `shouldAutoCreate` is true, route directly to `creating_wallets`.
+        // `createWalletPerType` is partner-aware via `#getMissingTypes`, so it
+        // provisions exactly the missing required types (no duplicates).
+        always: [
+          {
+            target: "creating_wallets",
+            guard: "shouldAutoCreate"
+          }
+        ],
         on: {
           WAIT_FOR_WALLET_CREATION: {
             target: "claiming_wallets",

package/dist/esm/utils/stateErrorHelpers.js

@@ -23,7 +23,12 @@ function formatStateError(error, defaultMessage) {
     return new Error(error);
   }
   if (error && typeof error === "object" && "message" in error) {
-    return new Error(String(error.message));
+    const src = error;
+    const normalized = Object.assign(new Error(String(src.message)), {});
+    if ("code" in src) normalized.code = src.code;
+    if ("status" in src) normalized.status = src.status;
+    if ("data" in src) normalized.data = src.data;
+    return normalized;
   }
   if (error && typeof error === "object" && "error" in error) {
     return formatStateError(error.error, defaultMessage);

package/dist/types/ParaCore.d.ts

@@ -489,7 +489,7 @@ export declare abstract class ParaCore implements CoreInterface {
     /**
      * Resend a verification email for the current user.
      */
-    resendVerificationCode({ type: reason }: ResendVerificationCodeParams): Promise<void>;
+    resendVerificationCode({ type: reason, deliveryChannel }: ResendVerificationCodeParams): Promise<import("./services/types").ResendVerificationCodeResponse>;
     /**
      * Checks if the current session is active.
      * @returns `true` if active, `false` otherwise
@@ -866,6 +866,11 @@ export declare abstract class ParaCore implements CoreInterface {
         config?: BalancesConfig;
         refetch?: boolean;
     }): Promise<import("@getpara/user-management-client").ProfileBalance>;
-    protected sendLoginCode(): Promise<void>;
+    protected sendLoginCode(): Promise<{
+        deliveryChannel: import("@getpara/user-management-client").DeliveryChannel;
+        fallbackUsed: boolean;
+        fallbackChannel: import("@getpara/user-management-client").DeliveryChannel;
+        isSmsAllowed: boolean;
+    }>;
     exportPrivateKey(args?: CoreMethodParams<'exportPrivateKey'>): CoreMethodResponse<'exportPrivateKey'>;
 }

package/dist/types/PlatformUtils.d.ts

@@ -10,6 +10,7 @@ export type EventHandler<T = any> = (data: T) => void;
 export interface PlatformUtils {
     sdkType: SDKType;
     getPrivateKey(ctx: Ctx, userId: string, walletId: string, share: string, sessionCookie: string): Promise<string>;
+    getED25519PrivateKey(ctx: Ctx, userId: string, walletId: string, share: string, sessionCookie: string): Promise<string>;
     keygen(ctx: Ctx, userId: string, type: Exclude<TWalletType, 'SOLANA'>, secretKey: string | null, // should be acceptable as null in RN as we don't pre-gen them
     sessionCookie: string, emailProps?: BackupKitEmailProps): Promise<{
         signer: string;

package/dist/types/index.d.ts

@@ -22,7 +22,7 @@ export * from './utils/phone.js';
 export * from './utils/config.js';
 export { isWalletSupported } from './utils/wallet.js';
 export { getNetworkPrefix, getOnRampAssets, getOnRampNetworks, toAssetInfoArray } from './utils/onRamps.js';
-export { getPortalBaseURL } from './utils/url.js';
+export { getPortalBaseURL, getParaConnectBaseUrl } from './utils/url.js';
 export { retrieve as transmissionUtilsRetrieve } from './transmission/transmissionUtils.js';
 export type { ShareData } from './shares/enclave.js';
 export type { StateSnapshot, AuthStateInfo } from './state/types/core';

package/dist/types/services/types/AuthServiceTypes.d.ts

@@ -1,4 +1,4 @@
-import type { Auth, AuthExtras, AuthMethod, AuthType, ExternalWalletInfo, PrimaryAuth, PrimaryAuthInfo, ServerAuthState, ServerAuthStateLogin, TAuthMethod, Theme, TOAuthMethod } from '@getpara/user-management-client';
+import type { Auth, AuthExtras, AuthMethod, AuthType, DeliveryChannel, ExternalWalletInfo, PrimaryAuth, PrimaryAuthInfo, ServerAuthState, ServerAuthStateLogin, TAuthMethod, Theme, TOAuthMethod } from '@getpara/user-management-client';
 import type { AuthState, AuthStateDone, AuthStateLogin, AuthStateSignup, AuthStateVerify, CoreAuthInfo, WithCustomTheme, WithSessionLookupId, WithShorten, WithUseShortUrls } from '../../types/index.js';
 import type { InitOAuthPollingParams, PollingCallbacks } from './PollingServiceTypes.js';
 import { PerformConnectExternalWalletResponse, ExternalSignMessageParams } from './ExternalWalletServiceTypes.js';
@@ -142,6 +142,13 @@ export type AddCredentialMethod = (_: AddCredentialParams) => Promise<string | u
 export type SupportedUserAuthMethodsMethod = () => Promise<Set<AuthMethod>>;
 export interface ResendVerificationCodeParams {
     type?: 'SIGNUP' | 'LINK_ACCOUNT' | 'LOGIN';
+    deliveryChannel?: DeliveryChannel;
 }
-export type ResendVerificationCodeMethod = (_: ResendVerificationCodeParams) => Promise<void>;
+export interface ResendVerificationCodeResponse {
+    deliveryChannel?: DeliveryChannel;
+    fallbackUsed?: boolean;
+    fallbackChannel?: DeliveryChannel;
+    isSmsAllowed?: boolean;
+}
+export type ResendVerificationCodeMethod = (_: ResendVerificationCodeParams) => Promise<ResendVerificationCodeResponse>;
 export {};

package/dist/types/state/machines/coreStateMachine.d.ts

@@ -2784,6 +2784,10 @@ export declare function createCoreStateMachine(paraCoreInterface: StateMachineIn
                 }];
             };
             readonly needs_wallets: {
+                readonly always: readonly [{
+                    readonly target: "creating_wallets";
+                    readonly guard: "shouldAutoCreate";
+                }];
                 readonly on: {
                     readonly WAIT_FOR_WALLET_CREATION: {
                         readonly target: "claiming_wallets";
@@ -6426,6 +6430,10 @@ export declare function createCoreStateMachine(paraCoreInterface: StateMachineIn
                     }];
                 };
                 readonly needs_wallets: {
+                    readonly always: readonly [{
+                        readonly target: "creating_wallets";
+                        readonly guard: "shouldAutoCreate";
+                    }];
                     readonly on: {
                         readonly WAIT_FOR_WALLET_CREATION: {
                             readonly target: "claiming_wallets";
@@ -10141,6 +10149,10 @@ export declare function createCoreStateMachine(paraCoreInterface: StateMachineIn
                                         }];
                                     };
                                     readonly needs_wallets: {
+                                        readonly always: readonly [{
+                                            readonly target: "creating_wallets";
+                                            readonly guard: "shouldAutoCreate";
+                                        }];
                                         readonly on: {
                                             readonly WAIT_FOR_WALLET_CREATION: {
                                                 readonly target: "claiming_wallets";
@@ -13794,6 +13806,10 @@ export declare function createCoreStateMachine(paraCoreInterface: StateMachineIn
                                         }];
                                     };
                                     readonly needs_wallets: {
+                                        readonly always: readonly [{
+                                            readonly target: "creating_wallets";
+                                            readonly guard: "shouldAutoCreate";
+                                        }];
                                         readonly on: {
                                             readonly WAIT_FOR_WALLET_CREATION: {
                                                 readonly target: "claiming_wallets";
@@ -17541,6 +17557,10 @@ export declare function createCoreStateMachine(paraCoreInterface: StateMachineIn
                                         }];
                                     };
                                     readonly needs_wallets: {
+                                        readonly always: readonly [{
+                                            readonly target: "creating_wallets";
+                                            readonly guard: "shouldAutoCreate";
+                                        }];
                                         readonly on: {
                                             readonly WAIT_FOR_WALLET_CREATION: {
                                                 readonly target: "claiming_wallets";
@@ -21195,6 +21215,10 @@ export declare function createCoreStateMachine(paraCoreInterface: StateMachineIn
                                         }];
                                     };
                                     readonly needs_wallets: {
+                                        readonly always: readonly [{
+                                            readonly target: "creating_wallets";
+                                            readonly guard: "shouldAutoCreate";
+                                        }];
                                         readonly on: {
                                             readonly WAIT_FOR_WALLET_CREATION: {
                                                 readonly target: "claiming_wallets";

package/dist/types/state/machines/walletStateMachine.d.ts

@@ -211,6 +211,10 @@ export declare function createWalletStateMachine(paraCoreInterface: StateMachine
             }];
         };
         readonly needs_wallets: {
+            readonly always: readonly [{
+                readonly target: "creating_wallets";
+                readonly guard: "shouldAutoCreate";
+            }];
             readonly on: {
                 readonly WAIT_FOR_WALLET_CREATION: {
                     readonly target: "claiming_wallets";

package/dist/types/state/types/core.d.ts

@@ -1,4 +1,4 @@
-import type { BiometricLocationHint, CurrentWalletIds, ServerAuthState } from '@getpara/user-management-client';
+import type { BiometricLocationHint, CurrentWalletIds, DeliveryChannel, ServerAuthState } from '@getpara/user-management-client';
 import type { AuthState, Wallet, WithCustomTheme, WithUseShortUrls } from '../../types/index.js';
 import { AuthMachine, AuthPhase } from './auth.js';
 import { WalletMachine, WalletPhase } from './wallet.js';
@@ -87,6 +87,12 @@ export type AuthStateInfo = {
     passkeyId: string | null;
     /** Verification URL for email/phone verification in SLO */
     verificationUrl: string | null;
+    /** Channel the OTP was sent over — set on phone verifications so the UI can render channel-specific copy */
+    deliveryChannel: DeliveryChannel | null;
+    /** True when the server had to fall back from the primary channel (WhatsApp → SMS typically) */
+    fallbackUsed: boolean;
+    /** The channel actually used when fallbackUsed is true */
+    fallbackChannel: DeliveryChannel | null;
     /** External wallet verification data when signature is needed */
     externalWalletVerification: {
         signatureVerificationMessage: string;

package/dist/types/types/coreApi.d.ts

@@ -1,9 +1,9 @@
-import { ExternalWalletInfo, OnRampPurchase, OnRampPurchaseCreateParams, Setup2faResponse, VerifiedAuth, WalletEntity, WalletParams, TWalletType, IssueJwtParams, IssueJwtResponse, TLinkedAccountType, LinkedAccounts, AuthMethod } from '@getpara/user-management-client';
+import { ExternalWalletInfo, OnRampPurchase, OnRampPurchaseCreateParams, Setup2faResponse, VerifiedAuth, WalletEntity, WalletParams, TWalletType, IssueJwtParams, IssueJwtResponse, TLinkedAccountType, LinkedAccounts, AuthMethod, DeliveryChannel } from '@getpara/user-management-client';
 import type { OAuthResponse, WithCustomTheme, WithUseShortUrls, Verify2faParams, Verify2faResponse, AuthStateSignup, StorageType, CoreAuthInfo, TelegramParams } from './';
 import { ParaCore } from '../ParaCore.js';
 import { FullSignatureRes, Wallet } from './wallet.js';
 import { AccountLinkInProgress } from './accountLinking.js';
-import type { WaitForLoginParams, WaitForLoginResponse, WaitForSignupParams, WaitForWalletCreationParams, WaitForWalletCreationResponse, GetOAuthUrlParams, AddCredentialParams, LoginExternalWalletParams, LoginExternalWalletResponse, ResendVerificationCodeParams, SignUpOrLogInParams, SignUpOrLogInResponse, VerifyOAuthProcessParams, VerifyExternalWalletParams, VerifyExternalWalletResponse, VerifyFarcasterParams, VerifyTelegramParams, ClaimPregenWalletsParams, ClaimPregenWalletsResponse, CreateGuestWalletsResponse, CreatePregenWalletParams, CreatePregenWalletPerTypeParams, CreatePregenWalletPerTypeResponse, CreatePregenWalletResponse, CreateWalletParams, CreateWalletPerTypeParams, CreateWalletPerTypeResponse, CreateWalletResponse, DistributeNewWalletShareParams, GetPregenWalletsParams, GetPregenWalletsResponse, GetWalletBalanceParams, HasPregenWalletParams, PollingCallbacks, RefreshShareParams, RefreshShareResponse, RequestFaucetParams, RequestFaucetResponse, UpdatePregenWalletIdentifierParams, BaseVerifyExternalWalletParams, AuthenticateWithEmailOrPhoneParams, AuthenticateWithEmailOrPhoneResponse, AuthenticateWithOAuthParams, AuthenticateWithOAuthResponse } from '../services/types';
+import type { WaitForLoginParams, WaitForLoginResponse, WaitForSignupParams, WaitForWalletCreationParams, WaitForWalletCreationResponse, GetOAuthUrlParams, AddCredentialParams, LoginExternalWalletParams, LoginExternalWalletResponse, ResendVerificationCodeParams, ResendVerificationCodeResponse, SignUpOrLogInParams, SignUpOrLogInResponse, VerifyOAuthProcessParams, VerifyExternalWalletParams, VerifyExternalWalletResponse, VerifyFarcasterParams, VerifyTelegramParams, ClaimPregenWalletsParams, ClaimPregenWalletsResponse, CreateGuestWalletsResponse, CreatePregenWalletParams, CreatePregenWalletPerTypeParams, CreatePregenWalletPerTypeResponse, CreatePregenWalletResponse, CreateWalletParams, CreateWalletPerTypeParams, CreateWalletPerTypeResponse, CreateWalletResponse, DistributeNewWalletShareParams, GetPregenWalletsParams, GetPregenWalletsResponse, GetWalletBalanceParams, HasPregenWalletParams, PollingCallbacks, RefreshShareParams, RefreshShareResponse, RequestFaucetParams, RequestFaucetResponse, UpdatePregenWalletIdentifierParams, BaseVerifyExternalWalletParams, AuthenticateWithEmailOrPhoneParams, AuthenticateWithEmailOrPhoneResponse, AuthenticateWithOAuthParams, AuthenticateWithOAuthResponse } from '../services/types';
 export declare const PARA_CORE_METHODS: readonly ["getAuthInfo", "signUpOrLogIn", "verifyNewAccount", "waitForLogin", "waitForSignup", "waitForWalletCreation", "getOAuthUrl", "verifyOAuth", "getFarcasterConnectUri", "verifyFarcaster", "verifyTelegram", "resendVerificationCode", "loginExternalWallet", "verifyExternalWallet", "setup2fa", "enable2fa", "verify2fa", "logout", "clearStorage", "isSessionActive", "isFullyLoggedIn", "refreshSession", "keepSessionAlive", "exportSession", "waitAndExportSession", "importSession", "getVerificationToken", "getWallets", "getWalletsByType", "fetchWallets", "createWallet", "createWalletPerType", "getPregenWallets", "hasPregenWallet", "updatePregenWalletIdentifier", "createPregenWallet", "createPregenWalletPerType", "claimPregenWallets", "createGuestWallets", "distributeNewWalletShare", "getUserShare", "setUserShare", "refreshShare", "signMessage", "signTransaction", "initiateOnRampTransaction", "getWalletBalance", "requestFaucet", "issueJwt", "getLinkedAccounts", "accountLinkInProgress", "addCredential", "exportPrivateKey", "authenticateWithEmailOrPhone", "authenticateWithOAuth"];
 export declare const PARA_INTERNAL_METHODS: readonly ["linkAccount", "unlinkAccount", "verifyEmailOrPhoneLink", "verifyOAuthLink", "verifyFarcasterLink", "verifyTelegramLink", "verifyExternalWalletLink", "accountLinkInProgress", "prepareLogin", "sendLoginCode", "supportedUserAuthMethods"];
 export type CoreMethodName = (typeof PARA_CORE_METHODS)[number];
@@ -189,7 +189,7 @@ export type CoreMethods = Record<CoreMethodName, {
     };
     resendVerificationCode: {
         params: ResendVerificationCodeParams;
-        response: void;
+        response: ResendVerificationCodeResponse;
     };
     logout: {
         params: LogoutParams;
@@ -427,7 +427,12 @@ export type InternalMethods = {
     };
     sendLoginCode: {
         params: void;
-        response: void;
+        response: {
+            deliveryChannel?: DeliveryChannel;
+            fallbackUsed?: boolean;
+            fallbackChannel?: DeliveryChannel;
+            isSmsAllowed?: boolean;
+        };
     };
     supportedUserAuthMethods: {
         params: void;

package/package.json

@@ -1,11 +1,11 @@
 {
   "name": "@getpara/core-sdk",
-  "version": "2.26.0",
+  "version": "2.28.0",
   "dependencies": {
     "@celo/utils": "^8.0.2",
     "@cosmjs/encoding": "^0.32.4",
     "@ethereumjs/util": "^9.1.0",
-    "@getpara/user-management-client": "2.26.0",
+    "@getpara/user-management-client": "2.28.0",
     "@noble/hashes": "^1.5.0",
     "axios": "^1.8.4",
     "base64url": "^3.0.1",
@@ -30,7 +30,7 @@
     "dist",
     "package.json"
   ],
-  "gitHead": "02eb43f55b1c5f8bed6685940b6344551610f42a",
+  "gitHead": "cb74d2b02aed6a8a5373249418b315d686b83b66",
   "main": "dist/cjs/index.js",
   "module": "dist/esm/index.js",
   "scripts": {