@graphprotocol/hypergraph 0.0.1 → 0.0.3

package/dist/entity/variant-schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"variant-schema.js","names":["constUndefined","dual","Option","ParseResult","pipeArguments","Predicate","Schema","Struct_","TypeId","Symbol","for","cacheSymbol","isStruct","u","hasProperty","FieldTypeId","isField","extract","args","self","variant","options","cache","cacheKey","isDefault","undefined","fields","key","Object","keys","value","isSchema","schemas","Struct","make","Class","identifier","annotations","idField","Field","select","String","deletedField","Boolean","versionField","relationField","optional","id","extractFields","__deleted","__version","_relation","variantStruct","schema","defaultVariant","Base","variants","defineProperty","title","FieldOnly","obj","FieldExcept","includes","UnionVariants","members","Union","fieldEvolve","f","field","fromEntries","map","evolve","fieldFromKey","mapping","entries","renameFieldValue","extractVariants","Override","Overrideable","from","to","transformOrFail","Undefined","pipe","brand","decode","_","succeed","encode","dt","generate","none","some","propertySignature","withConstructorDefault","StructProto","arguments","create","FieldProto","VariantUnion","filter","member","isPropertySignature","fromKey"],"sources":["../../src/entity/variant-schema.ts"],"sourcesContent":[null],"mappings":"AAKA,SAASA,cAAc,EAAEC,IAAI,QAAQ,iBAAiB;AACtD,OAAO,KAAKC,MAAM,MAAM,eAAe;AACvC,OAAO,KAAKC,WAAW,MAAM,oBAAoB;AACjD,SAAwBC,aAAa,QAAQ,iBAAiB;AAC9D,OAAO,KAAKC,SAAS,MAAM,kBAAkB;AAC7C,OAAO,KAAKC,MAAM,MAAM,eAAe;AAEvC,OAAO,KAAKC,OAAO,MAAM,eAAe;AAExC;;;;AAIA,OAAO,MAAMC,MAAM,gBAAkBC,MAAM,CAACC,GAAG,CAAC,oCAAoC,CAAC;AAQrF,MAAMC,WAAW,gBAAGF,MAAM,CAACC,GAAG,CAAC,0CAA0C,CAAC;AAY1E;;;;AAIA,OAAO,MAAME,QAAQ,GAAIC,CAAU,IAAuBR,SAAS,CAACS,WAAW,CAACD,CAAC,EAAEL,MAAM,CAAC;AAoC1F;;;;AAIA,OAAO,MAAMO,WAAW,gBAAkBN,MAAM,CAACC,GAAG,CAAC,0CAA0C,CAAC;AAiBhG;;;;AAIA,OAAO,MAAMM,OAAO,GAAIH,CAAU,IAAsBR,SAAS,CAACS,WAAW,CAACD,CAAC,EAAEE,WAAW,CAAC;AA4E7F,MAAME,OAAO,gBAcThB,IAAI,CACLiB,IAAI,IAAKN,QAAQ,CAACM,IAAI,CAAC,CAAC,CAAC,CAAC,EAC3B,CACEC,IAAO,EACPC,OAAU,EACVC,OAEC,KACgB;EACjB,MAAMC,KAAK,GAAGH,IAAI,CAACR,WAAW,CAAC,KAAKQ,IAAI,CAACR,WAAW,CAAC,GAAG,EAAE,CAAC;EAC3D,MAAMY,QAAQ,GAAGF,OAAO,EAAEG,SAAS,KAAK,IAAI,GAAG,WAAW,GAAGJ,OAAO;EACpE,IAAIE,KAAK,CAACC,QAAQ,CAAC,KAAKE,SAAS,EAAE;IACjC,OAAOH,KAAK,CAACC,QAAQ,CAAQ;EAC/B;EACA,MAAMG,MAAM,GAAwB,EAAE;EACtC,KAAK,MAAMC,GAAG,IAAIC,MAAM,CAACC,IAAI,CAACV,IAAI,CAACX,MAAM,CAAC,CAAC,EAAE;IAC3C,MAAMsB,KAAK,GAAGX,IAAI,CAACX,MAAM,CAAC,CAACmB,GAAG,CAAC;IAC/B,IAAInB,MAAM,IAAIsB,KAAK,EAAE;MACnB,IAAIT,OAAO,EAAEG,SAAS,KAAK,IAAI,IAAIlB,MAAM,CAACyB,QAAQ,CAACD,KAAK,CAAC,EAAE;QACzDJ,MAAM,CAACC,GAAG,CAAC,GAAGG,KAAK;MACrB,CAAC,MAAM;QACLJ,MAAM,CAACC,GAAG,CAAC,GAAGV,OAAO,CAACa,KAAK,EAAEV,OAAO,CAAC;MACvC;IACF,CAAC,MAAM,IAAIL,WAAW,IAAIe,KAAK,EAAE;MAC/B,IAAIV,OAAO,IAAIU,KAAK,CAACE,OAAO,EAAE;QAC5BN,MAAM,CAACC,GAAG,CAAC,GAAGG,KAAK,CAACE,OAAO,CAACZ,OAAO,CAAC;MACtC;IACF,CAAC,MAAM;MACLM,MAAM,CAACC,GAAG,CAAC,GAAGG,KAAK;IACrB;EACF;EACA,OAAQR,KAAK,CAACC,QAAQ,CAAC,GAAGjB,MAAM,CAAC2B,MAAM,CAACP,MAAM,CAAQ;AACxD,CAAC,CACF;AAED;;;;AAIA,OAAO,MAAMA,MAAM,GAA2BP,IAAO,IAAgBA,IAAI,CAACX,MAAM,CAAC;AA0GjF;;;;AAIA,OAAO,MAAM0B,IAAI,GAA0Fb,OAG1G,IA6IG;EACF,SAASc,KAAKA,CAAOC,UAAkB;IACrC,OAAO,CAACV,MAAqB,EAAEW,WAA6C,KAAI;MAC9E,MAAMC,OAAO,GAAGC,KAAK,CAAC;QACpBC,MAAM,EAAElC,MAAM,CAACmC;OAChB,CAAC;MACF,MAAMC,YAAY,GAAGH,KAAK,CAAC;QACzBC,MAAM,EAAElC,MAAM,CAACqC;OAChB,CAAC;MACF,MAAMC,YAAY,GAAGL,KAAK,CAAC;QACzBC,MAAM,EAAElC,MAAM,CAACmC;OAChB,CAAC;MACF,MAAMI,aAAa,GAAGN,KAAK,CAAC;QAC1BC,MAAM,EAAElC,MAAM,CAACwC,QAAQ,CACrBxC,MAAM,CAAC2B,MAAM,CAAC;UACZc,EAAE,EAAEzC,MAAM,CAACmC;SACZ,CAAC;OAEL,CAAC;MAEF,MAAMO,aAAa,GAAkB;QACnC,GAAGtB,MAAM;QACTqB,EAAE,EAAET,OAAO;QACXW,SAAS,EAAEP,YAAY;QACvBQ,SAAS,EAAEN,YAAY;QACvBO,SAAS,EAAEN;OACZ;MACD,MAAMO,aAAa,GAAGnB,MAAM,CAACe,aAAa,CAAC;MAC3C,MAAMK,MAAM,GAAGpC,OAAO,CAACmC,aAAa,EAAE/B,OAAO,CAACiC,cAAc,EAAE;QAC5D9B,SAAS,EAAE;OACZ,CAAC;MACF,MAAM+B,IAAK,SAAQjD,MAAM,CAAC6B,KAAK,CAAMC,UAAU,CAAC,CAACiB,MAAM,CAAC3B,MAAM,EAAEW,WAAW,CAAC;QAC1E,QAAQ7B,MAAM,IAAIwC,aAAa;;MAEjC,KAAK,MAAM5B,OAAO,IAAIC,OAAO,CAACmC,QAAQ,EAAE;QACtC5B,MAAM,CAAC6B,cAAc,CAACF,IAAI,EAAEnC,OAAO,EAAE;UACnCU,KAAK,EAAEb,OAAO,CAACmC,aAAa,EAAEhC,OAAO,CAAC,CAACiB,WAAW,CAAC;YACjDD,UAAU,EAAE,GAAGA,UAAU,IAAIhB,OAAO,EAAE;YACtCsC,KAAK,EAAE,GAAGtB,UAAU,IAAIhB,OAAO;WAChC;SACF,CAAC;MACJ;MACA,OAAOmC,IAAI;IACb,CAAC;EACH;EACA,SAASI,SAASA,CAAwB,GAAG9B,IAAU;IACrD,OAAoEwB,MAAS,IAAI;MAC/E,MAAMO,GAAG,GAAsB,EAAE;MACjC,KAAK,MAAMjC,GAAG,IAAIE,IAAI,EAAE;QACtB+B,GAAG,CAACjC,GAAG,CAAC,GAAG0B,MAAM;MACnB;MACA,OAAOd,KAAK,CAACqB,GAAG,CAAC;IACnB,CAAC;EACH;EACA,SAASC,WAAWA,CAAwB,GAAGhC,IAAU;IACvD,OAAoEwB,MAAS,IAAI;MAC/E,MAAMO,GAAG,GAAsB,EAAE;MACjC,KAAK,MAAMxC,OAAO,IAAIC,OAAO,CAACmC,QAAQ,EAAE;QACtC,IAAI,CAAC3B,IAAI,CAACiC,QAAQ,CAAC1C,OAAO,CAAC,EAAE;UAC3BwC,GAAG,CAACxC,OAAO,CAAC,GAAGiC,MAAM;QACvB;MACF;MACA,OAAOd,KAAK,CAACqB,GAAG,CAAC;IACnB,CAAC;EACH;EACA,SAASG,aAAaA,CAAC,GAAGC,OAAmC;IAC3D,OAAOC,KAAK,CAACD,OAAO,EAAE3C,OAAO,CAACmC,QAAQ,CAAC;EACzC;EACA,MAAMU,WAAW,GAAGjE,IAAI,CACtB,CAAC,EACD,CACEkB,IAAmE,EACnEgD,CAA6D,KAC/C;IACd,MAAMC,KAAK,GAAGpD,OAAO,CAACG,IAAI,CAAC,GACvBA,IAAI,GACJoB,KAAK,CAACX,MAAM,CAACyC,WAAW,CAAChD,OAAO,CAACmC,QAAQ,CAACc,GAAG,CAAElD,OAAO,IAAK,CAACA,OAAO,EAAED,IAAI,CAAC,CAAC,CAAC,CAAC;IACjF,OAAOoB,KAAK,CAAChC,OAAO,CAACgE,MAAM,CAACH,KAAK,CAACpC,OAAO,EAAEmC,CAAC,CAAC,CAAC;EAChD,CAAC,CACF;EACD,MAAMK,YAAY,GAAGvE,IAAI,CACvB,CAAC,EACD,CACEkB,IAKgC,EAChCsD,OAA+B,KACjB;IACd,MAAMb,GAAG,GAAwB,EAAE;IACnC,IAAI5C,OAAO,CAACG,IAAI,CAAC,EAAE;MACjB,KAAK,MAAM,CAACQ,GAAG,EAAE0B,MAAM,CAAC,IAAIzB,MAAM,CAAC8C,OAAO,CAACvD,IAAI,CAACa,OAAO,CAAC,EAAE;QACxD4B,GAAG,CAACjC,GAAG,CAAC,GAAG8C,OAAO,CAAC9C,GAAG,CAAC,KAAKF,SAAS,GAAGkD,gBAAgB,CAACtB,MAAa,EAAEoB,OAAO,CAAC9C,GAAG,CAAC,CAAC,GAAG0B,MAAM;MAChG;IACF,CAAC,MAAM;MACL,KAAK,MAAM1B,GAAG,IAAIN,OAAO,CAACmC,QAAQ,EAAE;QAClCI,GAAG,CAACjC,GAAG,CAAC,GAAG8C,OAAO,CAAC9C,GAAG,CAAC,KAAKF,SAAS,GAAGkD,gBAAgB,CAACxD,IAAW,EAAEsD,OAAO,CAAC9C,GAAG,CAAC,CAAC,GAAGR,IAAI;MAC5F;IACF;IACA,OAAOoB,KAAK,CAACqB,GAAG,CAAC;EACnB,CAAC,CACF;EACD,MAAMgB,eAAe,GAAG3E,IAAI,CAAC,CAAC,EAAE,CAACkB,IAAiB,EAAEC,OAAe,KACjEH,OAAO,CAACE,IAAI,EAAEC,OAAO,EAAE;IACrBI,SAAS,EAAEJ,OAAO,KAAKC,OAAO,CAACiC;GAChC,CAAC,CACH;EACD,OAAO;IACLrB,MAAM;IACNM,KAAK;IACLoB,SAAS;IACTE,WAAW;IACX1B,KAAK;IACL8B,KAAK,EAAEF,aAAa;IACpBG,WAAW;IACXM,YAAY;IACZvD,OAAO,EAAE2D;GACH;AACV,CAAC;AAED;;;;AAIA,OAAO,MAAMC,QAAQ,GAAO/C,KAAQ,IAA4BA,KAAY;AAS5E;;;;AAIA,OAAO,MAAMgD,YAAY,GAAGA,CAC1BC,IAAuC,EACvCC,EAA0B,EAC1B3D,OAEC,KAEDf,MAAM,CAAC2E,eAAe,CAACF,IAAI,EAAEzE,MAAM,CAAC2D,KAAK,CAAC3D,MAAM,CAAC4E,SAAS,EAAEF,EAAE,CAACG,IAAI,CAAC7E,MAAM,CAAC8E,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE;EAC9FC,MAAM,EAAGC,CAAC,IAAKnF,WAAW,CAACoF,OAAO,CAAC9D,SAAS,CAAC;EAC7C+D,MAAM,EAAGC,EAAE,IAAKpE,OAAO,CAACqE,QAAQ,CAACD,EAAE,KAAKhE,SAAS,GAAGvB,MAAM,CAACyF,IAAI,EAAE,GAAGzF,MAAM,CAAC0F,IAAI,CAACH,EAAE,CAAC;CACpF,CAAC,CAACN,IAAI,CAAC7E,MAAM,CAACuF,iBAAiB,EAAEvF,MAAM,CAACwF,sBAAsB,CAAC9F,cAAc,CAAC,CAAC;AAElF,MAAM+F,WAAW,GAAG;EAClBZ,IAAIA,CAAA;IACF,OAAO/E,aAAa,CAAC,IAAI,EAAE4F,SAAS,CAAC;EACvC;CACD;AAED,MAAM/D,MAAM,GAAkCP,MAAS,IAAe;EACpE,MAAMP,IAAI,GAAGS,MAAM,CAACqE,MAAM,CAACF,WAAW,CAAC;EACvC5E,IAAI,CAACX,MAAM,CAAC,GAAGkB,MAAM;EACrB,OAAOP,IAAI;AACb,CAAC;AAED,MAAM+E,UAAU,GAAG;EACjB,CAACnF,WAAW,GAAGA,WAAW;EAC1BoE,IAAIA,CAAA;IACF,OAAO/E,aAAa,CAAC,IAAI,EAAE4F,SAAS,CAAC;EACvC;CACD;AAED,MAAMzD,KAAK,GAAkCP,OAAU,IAAc;EACnE,MAAMb,IAAI,GAAGS,MAAM,CAACqE,MAAM,CAACC,UAAU,CAAC;EACtC/E,IAAI,CAACa,OAAO,GAAGA,OAAO;EACtB,OAAOb,IAAI;AACb,CAAC;AAED,MAAM8C,KAAK,GAAGA,CACZD,OAAgB,EAChBR,QAAkB,KAChB;EACF,MAAM2C,YAAa,SAAS7F,MAAM,CAAC2D,KAAK,CAAC,GAAGD,OAAO,CAACoC,MAAM,CAAEC,MAAM,IAAK/F,MAAM,CAACyB,QAAQ,CAACsE,MAAM,CAAC,CAAC,CAAS;EACxG,KAAK,MAAMjF,OAAO,IAAIoC,QAAQ,EAAE;IAC9B5B,MAAM,CAAC6B,cAAc,CAAC0C,YAAY,EAAE/E,OAAO,EAAE;MAC3CU,KAAK,EAAExB,MAAM,CAAC2D,KAAK,CAAC,GAAGD,OAAO,CAACM,GAAG,CAAE+B,MAAM,IAAKpF,OAAO,CAACoF,MAAM,EAAEjF,OAAO,CAAC,CAAC;KACzE,CAAC;EACJ;EACA,OAAO+E,YAAY;AACrB,CAAC;AAED,MAAMxB,gBAAgB,GAAGA,CAA6DxD,IAAO,EAAEQ,GAAW,KACxGrB,MAAM,CAACgG,mBAAmB,CAACnF,IAAI,CAAC,GAAGb,MAAM,CAACiG,OAAO,CAACpF,IAAI,EAAEQ,GAAG,CAAC,GAAGrB,MAAM,CAACiG,OAAO,CAACjG,MAAM,CAACuF,iBAAiB,CAAC1E,IAAI,CAAC,EAAEQ,GAAG,CAAC","ignoreList":[]}

package/dist/identity/auth-storage.d.ts

@@ -0,0 +1,6 @@
+import type { PrivateAppIdentity } from '../connect/types.js';
+import type { Storage } from './types.js';
+export declare const storeIdentity: (storage: Storage, identity: PrivateAppIdentity) => void;
+export declare const loadIdentity: (storage: Storage) => PrivateAppIdentity | null;
+export declare const wipeIdentity: (storage: Storage) => void;
+//# sourceMappingURL=auth-storage.d.ts.map

package/dist/identity/auth-storage.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth-storage.d.ts","sourceRoot":"","sources":["../../src/identity/auth-storage.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AAE1C,eAAO,MAAM,aAAa,GAAI,SAAS,OAAO,EAAE,UAAU,kBAAkB,SAS3E,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,SAAS,OAAO,KAAG,kBAAkB,GAAG,IA+BpE,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,SAAS,OAAO,SAS5C,CAAC"}
+{"version":3,"file":"auth-storage.d.ts","sourceRoot":"","sources":["../../src/identity/auth-storage.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AAE1C,eAAO,MAAM,aAAa,GAAI,SAAS,OAAO,EAAE,UAAU,kBAAkB,SAW3E,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,SAAS,OAAO,KAAG,kBAAkB,GAAG,IAqCpE,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,SAAS,OAAO,SAW5C,CAAC"}

package/dist/identity/auth-storage.js

@@ -0,0 +1,52 @@
+export const storeIdentity = (storage, identity) => {
+  storage.setItem('hypergraph:app-identity-address', identity.address);
+  storage.setItem('hypergraph:app-identity-address-private-key', identity.addressPrivateKey);
+  storage.setItem('hypergraph:app-identity-account-address', identity.accountAddress);
+  storage.setItem('hypergraph:signature-public-key', identity.signaturePublicKey);
+  storage.setItem('hypergraph:signature-private-key', identity.signaturePrivateKey);
+  storage.setItem('hypergraph:encryption-public-key', identity.encryptionPublicKey);
+  storage.setItem('hypergraph:encryption-private-key', identity.encryptionPrivateKey);
+  storage.setItem('hypergraph:session-token', identity.sessionToken);
+  storage.setItem('hypergraph:session-token-expires', identity.sessionTokenExpires.toISOString());
+  storage.setItem('hypergraph:permission-id', identity.permissionId);
+};
+export const loadIdentity = storage => {
+  const address = storage.getItem('hypergraph:app-identity-address');
+  const addressPrivateKey = storage.getItem('hypergraph:app-identity-address-private-key');
+  const accountAddress = storage.getItem('hypergraph:app-identity-account-address');
+  const signaturePublicKey = storage.getItem('hypergraph:signature-public-key');
+  const signaturePrivateKey = storage.getItem('hypergraph:signature-private-key');
+  const encryptionPublicKey = storage.getItem('hypergraph:encryption-public-key');
+  const encryptionPrivateKey = storage.getItem('hypergraph:encryption-private-key');
+  const sessionToken = storage.getItem('hypergraph:session-token');
+  const sessionTokenExpires = storage.getItem('hypergraph:session-token-expires');
+  const permissionId = storage.getItem('hypergraph:permission-id');
+  if (!address || !addressPrivateKey || !accountAddress || !signaturePublicKey || !signaturePrivateKey || !encryptionPublicKey || !encryptionPrivateKey || !sessionToken || !sessionTokenExpires || !permissionId) {
+    return null;
+  }
+  return {
+    address,
+    addressPrivateKey,
+    accountAddress,
+    signaturePublicKey,
+    signaturePrivateKey,
+    encryptionPublicKey,
+    encryptionPrivateKey,
+    sessionToken,
+    sessionTokenExpires: new Date(sessionTokenExpires),
+    permissionId
+  };
+};
+export const wipeIdentity = storage => {
+  storage.removeItem('hypergraph:app-identity-address');
+  storage.removeItem('hypergraph:app-identity-address-private-key');
+  storage.removeItem('hypergraph:app-identity-account-address');
+  storage.removeItem('hypergraph:signature-public-key');
+  storage.removeItem('hypergraph:signature-private-key');
+  storage.removeItem('hypergraph:encryption-public-key');
+  storage.removeItem('hypergraph:encryption-private-key');
+  storage.removeItem('hypergraph:session-token');
+  storage.removeItem('hypergraph:session-token-expires');
+  storage.removeItem('hypergraph:permission-id');
+};
+//# sourceMappingURL=auth-storage.js.map

package/dist/identity/auth-storage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-storage.js","names":["storeIdentity","storage","identity","setItem","address","addressPrivateKey","accountAddress","signaturePublicKey","signaturePrivateKey","encryptionPublicKey","encryptionPrivateKey","sessionToken","sessionTokenExpires","toISOString","permissionId","loadIdentity","getItem","Date","wipeIdentity","removeItem"],"sources":["../../src/identity/auth-storage.ts"],"sourcesContent":[null],"mappings":"AAGA,OAAO,MAAMA,aAAa,GAAGA,CAACC,OAAgB,EAAEC,QAA4B,KAAI;EAC9ED,OAAO,CAACE,OAAO,CAAC,iCAAiC,EAAED,QAAQ,CAACE,OAAO,CAAC;EACpEH,OAAO,CAACE,OAAO,CAAC,6CAA6C,EAAED,QAAQ,CAACG,iBAAiB,CAAC;EAC1FJ,OAAO,CAACE,OAAO,CAAC,yCAAyC,EAAED,QAAQ,CAACI,cAAc,CAAC;EACnFL,OAAO,CAACE,OAAO,CAAC,iCAAiC,EAAED,QAAQ,CAACK,kBAAkB,CAAC;EAC/EN,OAAO,CAACE,OAAO,CAAC,kCAAkC,EAAED,QAAQ,CAACM,mBAAmB,CAAC;EACjFP,OAAO,CAACE,OAAO,CAAC,kCAAkC,EAAED,QAAQ,CAACO,mBAAmB,CAAC;EACjFR,OAAO,CAACE,OAAO,CAAC,mCAAmC,EAAED,QAAQ,CAACQ,oBAAoB,CAAC;EACnFT,OAAO,CAACE,OAAO,CAAC,0BAA0B,EAAED,QAAQ,CAACS,YAAY,CAAC;EAClEV,OAAO,CAACE,OAAO,CAAC,kCAAkC,EAAED,QAAQ,CAACU,mBAAmB,CAACC,WAAW,EAAE,CAAC;EAC/FZ,OAAO,CAACE,OAAO,CAAC,0BAA0B,EAAED,QAAQ,CAACY,YAAY,CAAC;AACpE,CAAC;AAED,OAAO,MAAMC,YAAY,GAAId,OAAgB,IAA+B;EAC1E,MAAMG,OAAO,GAAGH,OAAO,CAACe,OAAO,CAAC,iCAAiC,CAAC;EAClE,MAAMX,iBAAiB,GAAGJ,OAAO,CAACe,OAAO,CAAC,6CAA6C,CAAC;EACxF,MAAMV,cAAc,GAAGL,OAAO,CAACe,OAAO,CAAC,yCAAyC,CAAC;EACjF,MAAMT,kBAAkB,GAAGN,OAAO,CAACe,OAAO,CAAC,iCAAiC,CAAC;EAC7E,MAAMR,mBAAmB,GAAGP,OAAO,CAACe,OAAO,CAAC,kCAAkC,CAAC;EAC/E,MAAMP,mBAAmB,GAAGR,OAAO,CAACe,OAAO,CAAC,kCAAkC,CAAC;EAC/E,MAAMN,oBAAoB,GAAGT,OAAO,CAACe,OAAO,CAAC,mCAAmC,CAAC;EACjF,MAAML,YAAY,GAAGV,OAAO,CAACe,OAAO,CAAC,0BAA0B,CAAC;EAChE,MAAMJ,mBAAmB,GAAGX,OAAO,CAACe,OAAO,CAAC,kCAAkC,CAAC;EAC/E,MAAMF,YAAY,GAAGb,OAAO,CAACe,OAAO,CAAC,0BAA0B,CAAC;EAChE,IACE,CAACZ,OAAO,IACR,CAACC,iBAAiB,IAClB,CAACC,cAAc,IACf,CAACC,kBAAkB,IACnB,CAACC,mBAAmB,IACpB,CAACC,mBAAmB,IACpB,CAACC,oBAAoB,IACrB,CAACC,YAAY,IACb,CAACC,mBAAmB,IACpB,CAACE,YAAY,EACb;IACA,OAAO,IAAI;EACb;EACA,OAAO;IACLV,OAAO;IACPC,iBAAiB;IACjBC,cAAc;IACdC,kBAAkB;IAClBC,mBAAmB;IACnBC,mBAAmB;IACnBC,oBAAoB;IACpBC,YAAY;IACZC,mBAAmB,EAAE,IAAIK,IAAI,CAACL,mBAAmB,CAAC;IAClDE;GACD;AACH,CAAC;AAED,OAAO,MAAMI,YAAY,GAAIjB,OAAgB,IAAI;EAC/CA,OAAO,CAACkB,UAAU,CAAC,iCAAiC,CAAC;EACrDlB,OAAO,CAACkB,UAAU,CAAC,6CAA6C,CAAC;EACjElB,OAAO,CAACkB,UAAU,CAAC,yCAAyC,CAAC;EAC7DlB,OAAO,CAACkB,UAAU,CAAC,iCAAiC,CAAC;EACrDlB,OAAO,CAACkB,UAAU,CAAC,kCAAkC,CAAC;EACtDlB,OAAO,CAACkB,UAAU,CAAC,kCAAkC,CAAC;EACtDlB,OAAO,CAACkB,UAAU,CAAC,mCAAmC,CAAC;EACvDlB,OAAO,CAACkB,UAAU,CAAC,0BAA0B,CAAC;EAC9ClB,OAAO,CAACkB,UAAU,CAAC,kCAAkC,CAAC;EACtDlB,OAAO,CAACkB,UAAU,CAAC,0BAA0B,CAAC;AAChD,CAAC","ignoreList":[]}

package/dist/identity/get-verified-identity.d.ts

@@ -0,0 +1,7 @@
+import type { Chain } from 'viem';
+export declare const getVerifiedIdentity: (accountAddress: string, syncServerUri: string, chain: Chain, rpcUrl: string) => Promise<{
+    accountAddress: string;
+    encryptionPublicKey: string;
+    signaturePublicKey: string;
+}>;
+//# sourceMappingURL=get-verified-identity.d.ts.map

package/dist/identity/get-verified-identity.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"get-verified-identity.d.ts","sourceRoot":"","sources":["../../src/identity/get-verified-identity.ts"],"names":[],"mappings":"AAKA,eAAO,MAAM,mBAAmB,GAC9B,gBAAgB,MAAM,EACtB,eAAe,MAAM,KACpB,OAAO,CAAC;IACT,cAAc,EAAE,MAAM,CAAC;IACvB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,kBAAkB,EAAE,MAAM,CAAC;CAC5B,CAwCA,CAAC"}
+{"version":3,"file":"get-verified-identity.d.ts","sourceRoot":"","sources":["../../src/identity/get-verified-identity.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,MAAM,CAAC;AAKlC,eAAO,MAAM,mBAAmB,GAC9B,gBAAgB,MAAM,EACtB,eAAe,MAAM,EACrB,OAAO,KAAK,EACZ,QAAQ,MAAM,KACb,OAAO,CAAC;IACT,cAAc,EAAE,MAAM,CAAC;IACvB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,kBAAkB,EAAE,MAAM,CAAC;CAC5B,CA0CA,CAAC"}

package/dist/identity/get-verified-identity.js

@@ -0,0 +1,37 @@
+import * as Schema from 'effect/Schema';
+import * as Messages from '../messages/index.js';
+import { store } from '../store.js';
+import { verifyIdentityOwnership } from './prove-ownership.js';
+export const getVerifiedIdentity = async (accountAddress, syncServerUri, chain, rpcUrl) => {
+  const storeState = store.getSnapshot();
+  const identity = storeState.context.identities[accountAddress];
+  if (identity) {
+    return {
+      accountAddress,
+      encryptionPublicKey: identity.encryptionPublicKey,
+      signaturePublicKey: identity.signaturePublicKey
+    };
+  }
+  const res = await fetch(`${syncServerUri}/identity?accountAddress=${accountAddress}`);
+  if (res.status !== 200) {
+    throw new Error('Failed to fetch identity');
+  }
+  const resDecoded = Schema.decodeUnknownSync(Messages.ResponseIdentity)(await res.json());
+  if (!(await verifyIdentityOwnership(resDecoded.accountAddress, resDecoded.signaturePublicKey, resDecoded.accountProof, resDecoded.keyProof, chain, rpcUrl))) {
+    throw new Error('Invalid identity in getVerifiedIdentity');
+  }
+  store.send({
+    type: 'addVerifiedIdentity',
+    accountAddress: resDecoded.accountAddress,
+    encryptionPublicKey: resDecoded.encryptionPublicKey,
+    signaturePublicKey: resDecoded.signaturePublicKey,
+    accountProof: resDecoded.accountProof,
+    keyProof: resDecoded.keyProof
+  });
+  return {
+    accountAddress: resDecoded.accountAddress,
+    encryptionPublicKey: resDecoded.encryptionPublicKey,
+    signaturePublicKey: resDecoded.signaturePublicKey
+  };
+};
+//# sourceMappingURL=get-verified-identity.js.map

package/dist/identity/get-verified-identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-verified-identity.js","names":["Schema","Messages","store","verifyIdentityOwnership","getVerifiedIdentity","accountAddress","syncServerUri","chain","rpcUrl","storeState","getSnapshot","identity","context","identities","encryptionPublicKey","signaturePublicKey","res","fetch","status","Error","resDecoded","decodeUnknownSync","ResponseIdentity","json","accountProof","keyProof","send","type"],"sources":["../../src/identity/get-verified-identity.ts"],"sourcesContent":[null],"mappings":"AAAA,OAAO,KAAKA,MAAM,MAAM,eAAe;AAEvC,OAAO,KAAKC,QAAQ,MAAM,sBAAsB;AAChD,SAASC,KAAK,QAAQ,aAAa;AACnC,SAASC,uBAAuB,QAAQ,sBAAsB;AAE9D,OAAO,MAAMC,mBAAmB,GAAG,MAAAA,CACjCC,cAAsB,EACtBC,aAAqB,EACrBC,KAAY,EACZC,MAAc,KAKX;EACH,MAAMC,UAAU,GAAGP,KAAK,CAACQ,WAAW,EAAE;EACtC,MAAMC,QAAQ,GAAGF,UAAU,CAACG,OAAO,CAACC,UAAU,CAACR,cAAc,CAAC;EAC9D,IAAIM,QAAQ,EAAE;IACZ,OAAO;MACLN,cAAc;MACdS,mBAAmB,EAAEH,QAAQ,CAACG,mBAAmB;MACjDC,kBAAkB,EAAEJ,QAAQ,CAACI;KAC9B;EACH;EACA,MAAMC,GAAG,GAAG,MAAMC,KAAK,CAAC,GAAGX,aAAa,4BAA4BD,cAAc,EAAE,CAAC;EACrF,IAAIW,GAAG,CAACE,MAAM,KAAK,GAAG,EAAE;IACtB,MAAM,IAAIC,KAAK,CAAC,0BAA0B,CAAC;EAC7C;EACA,MAAMC,UAAU,GAAGpB,MAAM,CAACqB,iBAAiB,CAACpB,QAAQ,CAACqB,gBAAgB,CAAC,CAAC,MAAMN,GAAG,CAACO,IAAI,EAAE,CAAC;EAExF,IACE,EAAE,MAAMpB,uBAAuB,CAC7BiB,UAAU,CAACf,cAAc,EACzBe,UAAU,CAACL,kBAAkB,EAC7BK,UAAU,CAACI,YAAY,EACvBJ,UAAU,CAACK,QAAQ,EACnBlB,KAAK,EACLC,MAAM,CACP,CAAC,EACF;IACA,MAAM,IAAIW,KAAK,CAAC,yCAAyC,CAAC;EAC5D;EAEAjB,KAAK,CAACwB,IAAI,CAAC;IACTC,IAAI,EAAE,qBAAqB;IAC3BtB,cAAc,EAAEe,UAAU,CAACf,cAAc;IACzCS,mBAAmB,EAAEM,UAAU,CAACN,mBAAmB;IACnDC,kBAAkB,EAAEK,UAAU,CAACL,kBAAkB;IACjDS,YAAY,EAAEJ,UAAU,CAACI,YAAY;IACrCC,QAAQ,EAAEL,UAAU,CAACK;GACtB,CAAC;EACF,OAAO;IACLpB,cAAc,EAAEe,UAAU,CAACf,cAAc;IACzCS,mBAAmB,EAAEM,UAAU,CAACN,mBAAmB;IACnDC,kBAAkB,EAAEK,UAAU,CAACL;GAChC;AACH,CAAC","ignoreList":[]}

package/dist/identity/identity-encryption.d.ts

@@ -0,0 +1,7 @@
+import type { IdentityKeys, Signer } from './types.js';
+export declare const encryptIdentity: (signer: Signer, accountAddress: string, keys: IdentityKeys) => Promise<{
+    ciphertext: string;
+    nonce: string;
+}>;
+export declare const decryptIdentity: (signer: Signer, accountAddress: string, ciphertext: string, nonce: string) => Promise<IdentityKeys>;
+//# sourceMappingURL=identity-encryption.d.ts.map

package/dist/identity/identity-encryption.js

@@ -0,0 +1,120 @@
+import { gcm } from '@noble/ciphers/aes';
+import { randomBytes } from '@noble/ciphers/webcrypto';
+import { hkdf } from '@noble/hashes/hkdf';
+import { sha256 } from '@noble/hashes/sha256';
+import { verifyMessage } from 'viem';
+import { bytesToHex, canonicalize, hexToBytes } from '../utils/index.js';
+// Adapted from the XMTP approach to encrypt keys
+// See: https://github.com/xmtp/xmtp-js/blob/8d6e5a65813902926baac8150a648587acbaad92/sdks/js-sdk/src/keystore/providers/NetworkKeyManager.ts#L79-L116
+// (We reimplement their encrypt/decrypt functions using noble).
+const hkdfDeriveKey = (secret, salt) => {
+  return hkdf(sha256, secret, salt, '', 32);
+};
+// This implements the same encryption as  https://github.com/xmtp/xmtp-js/blob/336471de4ea95416ad0f4f9850d3f12bb0a13f1e/sdks/js-sdk/src/encryption/encryption.ts#L18
+// But using @noble/ciphers instead of the WebCrypto API.
+// The XMTP code was audited by Certik: https://skynet.certik.com/projects/xmtp
+//
+// Worth noting that GCM nonce collision would break the encryption,
+// and 12 bytes is not a lot. So this function should not be used to encrypt
+// a large number of messages with the same secret. In our case it should be okay
+// as each secret is only used to encrypt a single identity. If we need
+// something more secure for a larger number of messages we should use a
+// different encryption scheme, e.g. XAES-256-GCM, see https://words.filippo.io/dispatches/xaes-256-gcm/
+const encrypt = (msg, secret) => {
+  const hkdfSalt = randomBytes(32);
+  const gcmNonce = randomBytes(12);
+  const derivedKey = hkdfDeriveKey(secret, hkdfSalt);
+  const aes = gcm(derivedKey, gcmNonce);
+  const ciphertext = aes.encrypt(msg);
+  // TODO: Use Effect Schema and better serialization?
+  const ciphertextJson = canonicalize({
+    aes256GcmHkdfSha256: {
+      payload: bytesToHex(ciphertext),
+      hkdfSalt: bytesToHex(hkdfSalt),
+      gcmNonce: bytesToHex(gcmNonce)
+    }
+  });
+  return bytesToHex(new TextEncoder().encode(ciphertextJson));
+};
+// This implements the same decryption as  https://github.com/xmtp/xmtp-js/blob/336471de4ea95416ad0f4f9850d3f12bb0a13f1e/sdks/js-sdk/src/encryption/encryption.ts#L41
+// But using @noble/ciphers instead of the WebCrypto API
+// The XMTP code was audited by Certik: https://skynet.certik.com/projects/xmtp
+const decrypt = (ciphertext, secret) => {
+  const ciphertextJson = new TextDecoder().decode(hexToBytes(ciphertext));
+  const {
+    aes256GcmHkdfSha256
+  } = JSON.parse(ciphertextJson);
+  const hkdfSalt = hexToBytes(aes256GcmHkdfSha256.hkdfSalt);
+  const gcmNonce = hexToBytes(aes256GcmHkdfSha256.gcmNonce);
+  const derivedKey = hkdfDeriveKey(secret, hkdfSalt);
+  const aes = gcm(derivedKey, gcmNonce);
+  return aes.decrypt(hexToBytes(aes256GcmHkdfSha256.payload));
+};
+const signatureMessage = nonce => {
+  return `The Graph: sign to encrypt/decrypt identity keys.\nNonce: ${bytesToHex(nonce)}\n`;
+};
+export const encryptIdentity = async (signer, accountAddress, keys) => {
+  const nonce = randomBytes(32);
+  const message = signatureMessage(nonce);
+  const signature = await signer.signMessage(message);
+  // Check that the signature is valid
+  const valid = await verifyMessage({
+    address: accountAddress,
+    message,
+    signature
+  });
+  if (!valid) {
+    throw new Error('Invalid signature');
+  }
+  const secretKey = hexToBytes(signature);
+  // We use a simple plaintext encoding:
+  // Hex keys separated by newlines
+  const keysTxt = [keys.encryptionPublicKey, keys.encryptionPrivateKey, keys.signaturePublicKey, keys.signaturePrivateKey].join('\n');
+  const keysMsg = new TextEncoder().encode(keysTxt);
+  const ciphertext = encrypt(keysMsg, secretKey);
+  return {
+    ciphertext,
+    nonce: bytesToHex(nonce)
+  };
+};
+export const decryptIdentity = async (signer, accountAddress, ciphertext, nonce) => {
+  const message = signatureMessage(hexToBytes(nonce));
+  const signature = await signer.signMessage(message);
+  // Check that the signature is valid
+  const valid = await verifyMessage({
+    address: accountAddress,
+    message,
+    signature
+  });
+  if (!valid) {
+    throw new Error('Invalid signature');
+  }
+  const secretKey = hexToBytes(signature);
+  let keysMsg;
+  try {
+    keysMsg = await decrypt(ciphertext, secretKey);
+  } catch (e) {
+    // See https://github.com/xmtp/xmtp-js/blob/8d6e5a65813902926baac8150a648587acbaad92/sdks/js-sdk/src/keystore/providers/NetworkKeyManager.ts#L142-L146
+    if (secretKey.length !== 65) {
+      throw new Error('Expected 65 bytes before trying a different recovery byte');
+    }
+    // Try the other version of recovery byte, either +27 or -27
+    const lastByte = secretKey[secretKey.length - 1];
+    let newSecret = secretKey.slice(0, secretKey.length - 1);
+    if (lastByte < 27) {
+      newSecret = new Uint8Array([...newSecret, lastByte + 27]);
+    } else {
+      newSecret = new Uint8Array([...newSecret, lastByte - 27]);
+    }
+    keysMsg = await decrypt(ciphertext, newSecret);
+  }
+  const keysTxt = new TextDecoder().decode(keysMsg);
+  const [encryptionPublicKey, encryptionPrivateKey, signaturePublicKey, signaturePrivateKey] = keysTxt.split('\n');
+  return {
+    encryptionPublicKey,
+    encryptionPrivateKey,
+    signaturePublicKey,
+    signaturePrivateKey
+  };
+};
+//# sourceMappingURL=identity-encryption.js.map

package/dist/identity/identity-encryption.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity-encryption.js","names":["gcm","randomBytes","hkdf","sha256","verifyMessage","bytesToHex","canonicalize","hexToBytes","hkdfDeriveKey","secret","salt","encrypt","msg","hkdfSalt","gcmNonce","derivedKey","aes","ciphertext","ciphertextJson","aes256GcmHkdfSha256","payload","TextEncoder","encode","decrypt","TextDecoder","decode","JSON","parse","signatureMessage","nonce","encryptIdentity","signer","accountAddress","keys","message","signature","signMessage","valid","address","Error","secretKey","keysTxt","encryptionPublicKey","encryptionPrivateKey","signaturePublicKey","signaturePrivateKey","join","keysMsg","decryptIdentity","e","length","lastByte","newSecret","slice","Uint8Array","split"],"sources":["../../src/identity/identity-encryption.ts"],"sourcesContent":[null],"mappings":"AAAA,SAASA,GAAG,QAAQ,oBAAoB;AACxC,SAASC,WAAW,QAAQ,0BAA0B;AACtD,SAASC,IAAI,QAAQ,oBAAoB;AACzC,SAASC,MAAM,QAAQ,sBAAsB;AAE7C,SAASC,aAAa,QAAQ,MAAM;AAEpC,SAASC,UAAU,EAAEC,YAAY,EAAEC,UAAU,QAAQ,mBAAmB;AAGxE;AACA;AACA;AAEA,MAAMC,aAAa,GAAGA,CAACC,MAAkB,EAAEC,IAAgB,KAAgB;EACzE,OAAOR,IAAI,CAACC,MAAM,EAAEM,MAAM,EAAEC,IAAI,EAAE,EAAE,EAAE,EAAE,CAAC;AAC3C,CAAC;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMC,OAAO,GAAGA,CAACC,GAAe,EAAEH,MAAkB,KAAY;EAC9D,MAAMI,QAAQ,GAAGZ,WAAW,CAAC,EAAE,CAAC;EAChC,MAAMa,QAAQ,GAAGb,WAAW,CAAC,EAAE,CAAC;EAChC,MAAMc,UAAU,GAAGP,aAAa,CAACC,MAAM,EAAEI,QAAQ,CAAC;EAElD,MAAMG,GAAG,GAAGhB,GAAG,CAACe,UAAU,EAAED,QAAQ,CAAC;EAErC,MAAMG,UAAU,GAAGD,GAAG,CAACL,OAAO,CAACC,GAAG,CAAC;EAEnC;EACA,MAAMM,cAAc,GAAGZ,YAAY,CAAC;IAClCa,mBAAmB,EAAE;MACnBC,OAAO,EAAEf,UAAU,CAACY,UAAU,CAAC;MAC/BJ,QAAQ,EAAER,UAAU,CAACQ,QAAQ,CAAC;MAC9BC,QAAQ,EAAET,UAAU,CAACS,QAAQ;;GAEhC,CAAC;EACF,OAAOT,UAAU,CAAC,IAAIgB,WAAW,EAAE,CAACC,MAAM,CAACJ,cAAc,CAAC,CAAC;AAC7D,CAAC;AAED;AACA;AACA;AACA,MAAMK,OAAO,GAAGA,CAACN,UAAkB,EAAER,MAAkB,KAAgB;EACrE,MAAMS,cAAc,GAAG,IAAIM,WAAW,EAAE,CAACC,MAAM,CAAClB,UAAU,CAACU,UAAU,CAAC,CAAC;EACvE,MAAM;IAAEE;EAAmB,CAAE,GAAGO,IAAI,CAACC,KAAK,CAACT,cAAc,CAAC;EAC1D,MAAML,QAAQ,GAAGN,UAAU,CAACY,mBAAmB,CAACN,QAAQ,CAAC;EACzD,MAAMC,QAAQ,GAAGP,UAAU,CAACY,mBAAmB,CAACL,QAAQ,CAAC;EACzD,MAAMC,UAAU,GAAGP,aAAa,CAACC,MAAM,EAAEI,QAAQ,CAAC;EAElD,MAAMG,GAAG,GAAGhB,GAAG,CAACe,UAAU,EAAED,QAAQ,CAAC;EAErC,OAAOE,GAAG,CAACO,OAAO,CAAChB,UAAU,CAACY,mBAAmB,CAACC,OAAO,CAAC,CAAC;AAC7D,CAAC;AAED,MAAMQ,gBAAgB,GAAIC,KAAiB,IAAY;EACrD,OAAO,6DAA6DxB,UAAU,CAACwB,KAAK,CAAC,IAAI;AAC3F,CAAC;AAED,OAAO,MAAMC,eAAe,GAAG,MAAAA,CAC7BC,MAAc,EACdC,cAAsB,EACtBC,IAAkB,KACgC;EAClD,MAAMJ,KAAK,GAAG5B,WAAW,CAAC,EAAE,CAAC;EAC7B,MAAMiC,OAAO,GAAGN,gBAAgB,CAACC,KAAK,CAAC;EACvC,MAAMM,SAAS,GAAI,MAAMJ,MAAM,CAACK,WAAW,CAACF,OAAO,CAAS;EAE5D;EACA,MAAMG,KAAK,GAAG,MAAMjC,aAAa,CAAC;IAChCkC,OAAO,EAAEN,cAAqB;IAC9BE,OAAO;IACPC;GACD,CAAC;EACF,IAAI,CAACE,KAAK,EAAE;IACV,MAAM,IAAIE,KAAK,CAAC,mBAAmB,CAAC;EACtC;EACA,MAAMC,SAAS,GAAGjC,UAAU,CAAC4B,SAAS,CAAC;EACvC;EACA;EACA,MAAMM,OAAO,GAAG,CACdR,IAAI,CAACS,mBAAmB,EACxBT,IAAI,CAACU,oBAAoB,EACzBV,IAAI,CAACW,kBAAkB,EACvBX,IAAI,CAACY,mBAAmB,CACzB,CAACC,IAAI,CAAC,IAAI,CAAC;EACZ,MAAMC,OAAO,GAAG,IAAI1B,WAAW,EAAE,CAACC,MAAM,CAACmB,OAAO,CAAC;EACjD,MAAMxB,UAAU,GAAGN,OAAO,CAACoC,OAAO,EAAEP,SAAS,CAAC;EAC9C,OAAO;IAAEvB,UAAU;IAAEY,KAAK,EAAExB,UAAU,CAACwB,KAAK;EAAC,CAAE;AACjD,CAAC;AAED,OAAO,MAAMmB,eAAe,GAAG,MAAAA,CAC7BjB,MAAc,EACdC,cAAsB,EACtBf,UAAkB,EAClBY,KAAa,KACY;EACzB,MAAMK,OAAO,GAAGN,gBAAgB,CAACrB,UAAU,CAACsB,KAAK,CAAC,CAAC;EACnD,MAAMM,SAAS,GAAI,MAAMJ,MAAM,CAACK,WAAW,CAACF,OAAO,CAAS;EAE5D;EACA,MAAMG,KAAK,GAAG,MAAMjC,aAAa,CAAC;IAChCkC,OAAO,EAAEN,cAAqB;IAC9BE,OAAO;IACPC;GACD,CAAC;EACF,IAAI,CAACE,KAAK,EAAE;IACV,MAAM,IAAIE,KAAK,CAAC,mBAAmB,CAAC;EACtC;EACA,MAAMC,SAAS,GAAGjC,UAAU,CAAC4B,SAAS,CAAC;EACvC,IAAIY,OAAmB;EACvB,IAAI;IACFA,OAAO,GAAG,MAAMxB,OAAO,CAACN,UAAU,EAAEuB,SAAS,CAAC;EAChD,CAAC,CAAC,OAAOS,CAAC,EAAE;IACV;IACA,IAAIT,SAAS,CAACU,MAAM,KAAK,EAAE,EAAE;MAC3B,MAAM,IAAIX,KAAK,CAAC,2DAA2D,CAAC;IAC9E;IACA;IACA,MAAMY,QAAQ,GAAGX,SAAS,CAACA,SAAS,CAACU,MAAM,GAAG,CAAC,CAAC;IAChD,IAAIE,SAAS,GAAGZ,SAAS,CAACa,KAAK,CAAC,CAAC,EAAEb,SAAS,CAACU,MAAM,GAAG,CAAC,CAAC;IACxD,IAAIC,QAAQ,GAAG,EAAE,EAAE;MACjBC,SAAS,GAAG,IAAIE,UAAU,CAAC,CAAC,GAAGF,SAAS,EAAED,QAAQ,GAAG,EAAE,CAAC,CAAC;IAC3D,CAAC,MAAM;MACLC,SAAS,GAAG,IAAIE,UAAU,CAAC,CAAC,GAAGF,SAAS,EAAED,QAAQ,GAAG,EAAE,CAAC,CAAC;IAC3D;IACAJ,OAAO,GAAG,MAAMxB,OAAO,CAACN,UAAU,EAAEmC,SAAS,CAAC;EAChD;EACA,MAAMX,OAAO,GAAG,IAAIjB,WAAW,EAAE,CAACC,MAAM,CAACsB,OAAO,CAAC;EACjD,MAAM,CAACL,mBAAmB,EAAEC,oBAAoB,EAAEC,kBAAkB,EAAEC,mBAAmB,CAAC,GAAGJ,OAAO,CAACc,KAAK,CAAC,IAAI,CAAC;EAChH,OAAO;IAAEb,mBAAmB;IAAEC,oBAAoB;IAAEC,kBAAkB;IAAEC;EAAmB,CAAE;AAC/F,CAAC","ignoreList":[]}

package/dist/identity/index.d.ts

@@ -0,0 +1,7 @@
+export * from './auth-storage.js';
+export * from './get-verified-identity.js';
+export * from './identity-encryption.js';
+export * from './prove-ownership.js';
+export * from './logout.js';
+export * from './types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/identity/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/identity/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC;AAClC,cAAc,4BAA4B,CAAC;AAC3C,cAAc,0BAA0B,CAAC;AACzC,cAAc,aAAa,CAAC;AAC5B,cAAc,sBAAsB,CAAC;AACrC,cAAc,YAAY,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/identity/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC;AAClC,cAAc,4BAA4B,CAAC;AAC3C,cAAc,0BAA0B,CAAC;AACzC,cAAc,sBAAsB,CAAC;AACrC,cAAc,aAAa,CAAC;AAC5B,cAAc,YAAY,CAAC"}

package/dist/identity/index.js

@@ -0,0 +1,7 @@
+export * from './auth-storage.js';
+export * from './get-verified-identity.js';
+export * from './identity-encryption.js';
+export * from './prove-ownership.js';
+export * from './logout.js';
+export * from './types.js';
+//# sourceMappingURL=index.js.map

package/dist/identity/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","names":[],"sources":["../../src/identity/index.ts"],"sourcesContent":[null],"mappings":"AAAA,cAAc,mBAAmB;AACjC,cAAc,4BAA4B;AAC1C,cAAc,0BAA0B;AACxC,cAAc,sBAAsB;AACpC,cAAc,aAAa;AAC3B,cAAc,YAAY","ignoreList":[]}

package/dist/identity/logout.d.ts

@@ -0,0 +1,3 @@
+import type { Storage } from './types.js';
+export declare function logout(storage: Storage): void;
+//# sourceMappingURL=logout.d.ts.map

package/dist/identity/logout.js

@@ -0,0 +1,9 @@
+import { store } from './../store.js';
+import { wipeIdentity } from './auth-storage.js';
+export function logout(storage) {
+  wipeIdentity(storage);
+  store.send({
+    type: 'resetAuth'
+  });
+}
+//# sourceMappingURL=logout.js.map

package/dist/identity/logout.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logout.js","names":["store","wipeIdentity","logout","storage","send","type"],"sources":["../../src/identity/logout.ts"],"sourcesContent":[null],"mappings":"AAAA,SAASA,KAAK,QAAQ,eAAe;AACrC,SAASC,YAAY,QAAQ,mBAAmB;AAGhD,OAAM,SAAUC,MAAMA,CAACC,OAAgB;EACrCF,YAAY,CAACE,OAAO,CAAC;EACrBH,KAAK,CAACI,IAAI,CAAC;IAAEC,IAAI,EAAE;EAAW,CAAE,CAAC;AACnC","ignoreList":[]}

package/dist/identity/prove-ownership.d.ts

@@ -0,0 +1,15 @@
+import { type Chain, type WalletClient } from 'viem';
+import type { SmartAccountClient } from 'permissionless';
+import type { IdentityKeys } from './types.js';
+export declare const getAccountProofMessage: (accountAddress: string, publicKey: string) => string;
+export declare const getKeyProofMessage: (accountAddress: string, publicKey: string) => string;
+export declare const accountProofDomain: {
+    name: string;
+    version: string;
+};
+export declare const proveIdentityOwnership: (walletClient: WalletClient, smartAccountClient: SmartAccountClient, accountAddress: string, keys: IdentityKeys) => Promise<{
+    accountProof: string;
+    keyProof: string;
+}>;
+export declare const verifyIdentityOwnership: (accountAddress: string, publicKey: string, accountProof: string, keyProof: string, chain: Chain, rpcUrl: string) => Promise<boolean>;
+//# sourceMappingURL=prove-ownership.d.ts.map

package/dist/identity/prove-ownership.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"prove-ownership.d.ts","sourceRoot":"","sources":["../../src/identity/prove-ownership.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,YAAY,CAAC;AAEvD,eAAO,MAAM,sBAAsB,GAAI,gBAAgB,MAAM,EAAE,WAAW,MAAM,KAAG,MAElF,CAAC;AAEF,eAAO,MAAM,kBAAkB,GAAI,gBAAgB,MAAM,EAAE,WAAW,MAAM,KAAG,MAE9E,CAAC;AAEF,eAAO,MAAM,sBAAsB,GACjC,QAAQ,MAAM,EACd,gBAAgB,MAAM,EACtB,MAAM,YAAY,KACjB,OAAO,CAAC;IAAE,YAAY,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,CAQpD,CAAC;AAEF,eAAO,MAAM,uBAAuB,GAClC,gBAAgB,MAAM,EACtB,WAAW,MAAM,EACjB,cAAc,MAAM,EACpB,UAAU,MAAM,KACf,OAAO,CAAC,OAAO,CAwBjB,CAAC"}
+{"version":3,"file":"prove-ownership.d.ts","sourceRoot":"","sources":["../../src/identity/prove-ownership.ts"],"names":[],"mappings":"AAAA,OAAO,EAAQ,KAAK,KAAK,EAAY,KAAK,YAAY,EAAqC,MAAM,MAAM,CAAC;AAGxG,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAEzD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE/C,eAAO,MAAM,sBAAsB,GAAI,gBAAgB,MAAM,EAAE,WAAW,MAAM,KAAG,MAElF,CAAC;AAEF,eAAO,MAAM,kBAAkB,GAAI,gBAAgB,MAAM,EAAE,WAAW,MAAM,KAAG,MAE9E,CAAC;AAEF,eAAO,MAAM,kBAAkB;;;CAG9B,CAAC;AAEF,eAAO,MAAM,sBAAsB,GACjC,cAAc,YAAY,EAC1B,oBAAoB,kBAAkB,EACtC,gBAAgB,MAAM,EACtB,MAAM,YAAY,KACjB,OAAO,CAAC;IAAE,YAAY,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,CAwBpD,CAAC;AAEF,eAAO,MAAM,uBAAuB,GAClC,gBAAgB,MAAM,EACtB,WAAW,MAAM,EACjB,cAAc,MAAM,EACpB,UAAU,MAAM,EAChB,OAAO,KAAK,EACZ,QAAQ,MAAM,KACb,OAAO,CAAC,OAAO,CA2CjB,CAAC"}

package/dist/identity/prove-ownership.js

@@ -0,0 +1,90 @@
+import { http, createPublicClient, verifyMessage } from 'viem';
+import { privateKeyToAccount } from 'viem/accounts';
+import { publicKeyToAddress } from '../utils/index.js';
+export const getAccountProofMessage = (accountAddress, publicKey) => {
+  return `This message proves I am the owner of the account ${accountAddress} and the public key ${publicKey}`;
+};
+export const getKeyProofMessage = (accountAddress, publicKey) => {
+  return `The public key ${publicKey} is owned by the account ${accountAddress}`;
+};
+export const accountProofDomain = {
+  name: 'Hypergraph',
+  version: '1'
+};
+export const proveIdentityOwnership = async (walletClient, smartAccountClient, accountAddress, keys) => {
+  if (!smartAccountClient.account) {
+    throw new Error('Smart account client does not have an account');
+  }
+  if (!smartAccountClient.chain) {
+    throw new Error('Smart account client does not have a chain');
+  }
+  const publicKey = keys.signaturePublicKey;
+  const keyProofMessage = getKeyProofMessage(accountAddress, publicKey);
+  const accountProof = await smartAccountClient.account.signTypedData({
+    message: {
+      message: getAccountProofMessage(accountAddress, publicKey)
+    },
+    types: {
+      Message: [{
+        name: 'message',
+        type: 'string'
+      }]
+    },
+    domain: accountProofDomain,
+    primaryType: 'Message'
+  });
+  console.log('accountProof', accountProof);
+  const account = privateKeyToAccount(keys.signaturePrivateKey);
+  const keyProof = await account.signMessage({
+    message: keyProofMessage
+  });
+  return {
+    accountProof,
+    keyProof
+  };
+};
+export const verifyIdentityOwnership = async (accountAddress, publicKey, accountProof, keyProof, chain, rpcUrl) => {
+  const keyProofMessage = getKeyProofMessage(accountAddress, publicKey);
+  const publicClient = createPublicClient({
+    chain,
+    transport: http(rpcUrl)
+  });
+  // console.log('publicClient', publicClient);
+  // console.log('rpcUrl', rpcUrl);
+  // console.log('chain', chain);
+  // console.log('accountProof', accountProof);
+  // console.log('accountAddress', accountAddress);
+  // console.log('publicKey', publicKey);
+  const accountProofMessage = getAccountProofMessage(accountAddress, publicKey);
+  const validAccountProof = await publicClient.verifyTypedData({
+    address: accountAddress,
+    message: {
+      message: accountProofMessage
+    },
+    types: {
+      Message: [{
+        name: 'message',
+        type: 'string'
+      }]
+    },
+    domain: accountProofDomain,
+    primaryType: 'Message',
+    signature: accountProof
+  });
+  if (!validAccountProof) {
+    console.log('Invalid account proof');
+    return false;
+  }
+  const keyAddress = publicKeyToAddress(publicKey);
+  const validKeyProof = await verifyMessage({
+    address: keyAddress,
+    message: keyProofMessage,
+    signature: keyProof
+  });
+  if (!validKeyProof) {
+    console.log('Invalid key proof');
+    return false;
+  }
+  return true;
+};
+//# sourceMappingURL=prove-ownership.js.map

package/dist/identity/prove-ownership.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prove-ownership.js","names":["http","createPublicClient","verifyMessage","privateKeyToAccount","publicKeyToAddress","getAccountProofMessage","accountAddress","publicKey","getKeyProofMessage","accountProofDomain","name","version","proveIdentityOwnership","walletClient","smartAccountClient","keys","account","Error","chain","signaturePublicKey","keyProofMessage","accountProof","signTypedData","message","types","Message","type","domain","primaryType","console","log","signaturePrivateKey","keyProof","signMessage","verifyIdentityOwnership","rpcUrl","publicClient","transport","accountProofMessage","validAccountProof","verifyTypedData","address","signature","keyAddress","validKeyProof"],"sources":["../../src/identity/prove-ownership.ts"],"sourcesContent":[null],"mappings":"AAAA,SAASA,IAAI,EAA2CC,kBAAkB,EAAEC,aAAa,QAAQ,MAAM;AACvG,SAASC,mBAAmB,QAAQ,eAAe;AAGnD,SAASC,kBAAkB,QAAQ,mBAAmB;AAGtD,OAAO,MAAMC,sBAAsB,GAAGA,CAACC,cAAsB,EAAEC,SAAiB,KAAY;EAC1F,OAAO,qDAAqDD,cAAc,uBAAuBC,SAAS,EAAE;AAC9G,CAAC;AAED,OAAO,MAAMC,kBAAkB,GAAGA,CAACF,cAAsB,EAAEC,SAAiB,KAAY;EACtF,OAAO,kBAAkBA,SAAS,4BAA4BD,cAAc,EAAE;AAChF,CAAC;AAED,OAAO,MAAMG,kBAAkB,GAAG;EAChCC,IAAI,EAAE,YAAY;EAClBC,OAAO,EAAE;CACV;AAED,OAAO,MAAMC,sBAAsB,GAAG,MAAAA,CACpCC,YAA0B,EAC1BC,kBAAsC,EACtCR,cAAsB,EACtBS,IAAkB,KACqC;EACvD,IAAI,CAACD,kBAAkB,CAACE,OAAO,EAAE;IAC/B,MAAM,IAAIC,KAAK,CAAC,+CAA+C,CAAC;EAClE;EACA,IAAI,CAACH,kBAAkB,CAACI,KAAK,EAAE;IAC7B,MAAM,IAAID,KAAK,CAAC,4CAA4C,CAAC;EAC/D;EACA,MAAMV,SAAS,GAAGQ,IAAI,CAACI,kBAAkB;EACzC,MAAMC,eAAe,GAAGZ,kBAAkB,CAACF,cAAc,EAAEC,SAAS,CAAC;EAErE,MAAMc,YAAY,GAAG,MAAMP,kBAAkB,CAACE,OAAO,CAACM,aAAa,CAAC;IAClEC,OAAO,EAAE;MACPA,OAAO,EAAElB,sBAAsB,CAACC,cAAc,EAAEC,SAAS;KAC1D;IACDiB,KAAK,EAAE;MACLC,OAAO,EAAE,CAAC;QAAEf,IAAI,EAAE,SAAS;QAAEgB,IAAI,EAAE;MAAQ,CAAE;KAC9C;IACDC,MAAM,EAAElB,kBAAkB;IAC1BmB,WAAW,EAAE;GACd,CAAC;EACFC,OAAO,CAACC,GAAG,CAAC,cAAc,EAAET,YAAY,CAAC;EACzC,MAAML,OAAO,GAAGb,mBAAmB,CAACY,IAAI,CAACgB,mBAA0B,CAAC;EACpE,MAAMC,QAAQ,GAAG,MAAMhB,OAAO,CAACiB,WAAW,CAAC;IAAEV,OAAO,EAAEH;EAAe,CAAE,CAAC;EACxE,OAAO;IAAEC,YAAY;IAAEW;EAAQ,CAAE;AACnC,CAAC;AAED,OAAO,MAAME,uBAAuB,GAAG,MAAAA,CACrC5B,cAAsB,EACtBC,SAAiB,EACjBc,YAAoB,EACpBW,QAAgB,EAChBd,KAAY,EACZiB,MAAc,KACM;EACpB,MAAMf,eAAe,GAAGZ,kBAAkB,CAACF,cAAc,EAAEC,SAAS,CAAC;EACrE,MAAM6B,YAAY,GAAGnC,kBAAkB,CAAC;IACtCiB,KAAK;IACLmB,SAAS,EAAErC,IAAI,CAACmC,MAAM;GACvB,CAAC;EACF;EACA;EACA;EAEA;EACA;EACA;EAEA,MAAMG,mBAAmB,GAAGjC,sBAAsB,CAACC,cAAc,EAAEC,SAAS,CAAC;EAC7E,MAAMgC,iBAAiB,GAAG,MAAMH,YAAY,CAACI,eAAe,CAAC;IAC3DC,OAAO,EAAEnC,cAAqB;IAC9BiB,OAAO,EAAE;MACPA,OAAO,EAAEe;KACV;IACDd,KAAK,EAAE;MACLC,OAAO,EAAE,CAAC;QAAEf,IAAI,EAAE,SAAS;QAAEgB,IAAI,EAAE;MAAQ,CAAE;KAC9C;IACDC,MAAM,EAAElB,kBAAkB;IAC1BmB,WAAW,EAAE,SAAS;IACtBc,SAAS,EAAErB;GACZ,CAAC;EACF,IAAI,CAACkB,iBAAiB,EAAE;IACtBV,OAAO,CAACC,GAAG,CAAC,uBAAuB,CAAC;IACpC,OAAO,KAAK;EACd;EAEA,MAAMa,UAAU,GAAGvC,kBAAkB,CAACG,SAAS,CAAQ;EACvD,MAAMqC,aAAa,GAAG,MAAM1C,aAAa,CAAC;IACxCuC,OAAO,EAAEE,UAAU;IACnBpB,OAAO,EAAEH,eAAe;IACxBsB,SAAS,EAAEV;GACZ,CAAC;EACF,IAAI,CAACY,aAAa,EAAE;IAClBf,OAAO,CAACC,GAAG,CAAC,mBAAmB,CAAC;IAChC,OAAO,KAAK;EACd;EACA,OAAO,IAAI;AACb,CAAC","ignoreList":[]}

package/dist/identity/types.d.ts

@@ -0,0 +1,37 @@
+import { Schema } from 'effect';
+export type Storage = {
+    getItem: (key: string) => string | null;
+    setItem: (key: string, value: string) => void;
+    removeItem: (key: string) => void;
+};
+export type SignMessage = (message: string) => Promise<string> | string;
+export type GetAddress = () => Promise<string> | string;
+export type Signer = {
+    getAddress: GetAddress;
+    signMessage: SignMessage;
+};
+export type IdentityKeys = {
+    encryptionPublicKey: string;
+    encryptionPrivateKey: string;
+    signaturePublicKey: string;
+    signaturePrivateKey: string;
+};
+export declare const KeysSchema: Schema.Struct<{
+    encryptionPublicKey: typeof Schema.String;
+    encryptionPrivateKey: typeof Schema.String;
+    signaturePublicKey: typeof Schema.String;
+    signaturePrivateKey: typeof Schema.String;
+}>;
+export type KeysSchema = Schema.Schema.Type<typeof KeysSchema>;
+export type Identity = IdentityKeys & {
+    accountAddress: string;
+};
+export type PublicIdentity = {
+    accountAddress: string;
+    encryptionPublicKey: string;
+    signaturePublicKey: string;
+};
+export declare class InvalidIdentityError {
+    readonly _tag = "InvalidIdentityError";
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/identity/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/identity/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAEhC,MAAM,MAAM,OAAO,GAAG;IACpB,OAAO,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,MAAM,GAAG,IAAI,CAAC;IACxC,OAAO,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IAC9C,UAAU,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,IAAI,CAAC;CACnC,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG,CAAC,OAAO,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC;AACxE,MAAM,MAAM,UAAU,GAAG,MAAM,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC;AACxD,MAAM,MAAM,MAAM,GAAG;IACnB,UAAU,EAAE,UAAU,CAAC;IACvB,WAAW,EAAE,WAAW,CAAC;CAC1B,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;CAC7B,CAAC;AAEF,eAAO,MAAM,UAAU;;;;;EAKrB,CAAC;AAEH,MAAM,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,UAAU,CAAC,CAAC;AAE/D,MAAM,MAAM,QAAQ,GAAG,YAAY,GAAG;IACpC,cAAc,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG;IAC3B,cAAc,EAAE,MAAM,CAAC;IACvB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,kBAAkB,EAAE,MAAM,CAAC;CAC5B,CAAC;AAEF,qBAAa,oBAAoB;IAC/B,QAAQ,CAAC,IAAI,0BAA0B;CACxC"}

package/dist/identity/types.js

@@ -0,0 +1,11 @@
+import { Schema } from 'effect';
+export const KeysSchema = /*#__PURE__*/Schema.Struct({
+  encryptionPublicKey: Schema.String,
+  encryptionPrivateKey: Schema.String,
+  signaturePublicKey: Schema.String,
+  signaturePrivateKey: Schema.String
+});
+export class InvalidIdentityError {
+  _tag = 'InvalidIdentityError';
+}
+//# sourceMappingURL=types.js.map

package/dist/identity/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","names":["Schema","KeysSchema","Struct","encryptionPublicKey","String","encryptionPrivateKey","signaturePublicKey","signaturePrivateKey","InvalidIdentityError","_tag"],"sources":["../../src/identity/types.ts"],"sourcesContent":[null],"mappings":"AAAA,SAASA,MAAM,QAAQ,QAAQ;AAsB/B,OAAO,MAAMC,UAAU,gBAAGD,MAAM,CAACE,MAAM,CAAC;EACtCC,mBAAmB,EAAEH,MAAM,CAACI,MAAM;EAClCC,oBAAoB,EAAEL,MAAM,CAACI,MAAM;EACnCE,kBAAkB,EAAEN,MAAM,CAACI,MAAM;EACjCG,mBAAmB,EAAEP,MAAM,CAACI;CAC7B,CAAC;AAcF,OAAM,MAAOI,oBAAoB;EACtBC,IAAI,GAAG,sBAAsB","ignoreList":[]}

package/dist/inboxes/create-inbox.d.ts

@@ -0,0 +1,22 @@
+import * as Messages from '../messages/index.js';
+import * as SpaceEvents from '../space-events/index.js';
+import type * as Inboxes from './types.js';
+type CreateAccountInboxParams = {
+    accountAddress: string;
+    isPublic: boolean;
+    authPolicy: Inboxes.InboxSenderAuthPolicy;
+    encryptionPublicKey: string;
+    signaturePrivateKey: string;
+};
+type CreateSpaceInboxParams = {
+    author: SpaceEvents.Author;
+    spaceId: string;
+    isPublic: boolean;
+    authPolicy: Inboxes.InboxSenderAuthPolicy;
+    spaceSecretKey: string;
+    previousEventHash: string;
+};
+export declare function createAccountInboxCreationMessage({ accountAddress, isPublic, authPolicy, encryptionPublicKey, signaturePrivateKey, }: CreateAccountInboxParams): Messages.RequestCreateAccountInbox;
+export declare function createSpaceInboxCreationMessage({ author, spaceId, isPublic, authPolicy, spaceSecretKey, previousEventHash, }: CreateSpaceInboxParams): Promise<Messages.RequestCreateSpaceInboxEvent>;
+export {};
+//# sourceMappingURL=create-inbox.d.ts.map

package/dist/inboxes/create-inbox.js

@@ -0,0 +1,76 @@
+import { secp256k1 } from '@noble/curves/secp256k1';
+import { randomBytes } from '@noble/hashes/utils';
+import { cryptoBoxKeyPair } from '@serenity-kit/noble-sodium';
+import { Effect } from 'effect';
+import * as Messages from '../messages/index.js';
+import * as SpaceEvents from '../space-events/index.js';
+import { bytesToHex, canonicalize, hexToBytes, stringToUint8Array } from '../utils/index.js';
+// The caller should have already verified that the accountAddress, signaturePrivateKey and encryptionPublicKey belong to the same account
+export function createAccountInboxCreationMessage({
+  accountAddress,
+  isPublic,
+  authPolicy,
+  encryptionPublicKey,
+  signaturePrivateKey
+}) {
+  // Generate a 32 byte random inbox id
+  const inboxId = bytesToHex(randomBytes(32));
+  // This message can prove to anyone wanting to send a message to the inbox that it is indeed from the account
+  // and that the public key belongs to the account
+  const messageToSign = stringToUint8Array(canonicalize({
+    accountAddress,
+    inboxId,
+    encryptionPublicKey
+  }));
+  const signature = secp256k1.sign(messageToSign, hexToBytes(signaturePrivateKey), {
+    prehash: true
+  });
+  return {
+    type: 'create-account-inbox',
+    inboxId: inboxId,
+    accountAddress,
+    isPublic,
+    authPolicy,
+    encryptionPublicKey,
+    signature: {
+      hex: signature.toCompactHex(),
+      recovery: signature.recovery
+    }
+  };
+}
+export async function createSpaceInboxCreationMessage({
+  author,
+  spaceId,
+  isPublic,
+  authPolicy,
+  spaceSecretKey,
+  previousEventHash
+}) {
+  // Same as createAccountInboxMessage but with spaceId instead of accountAddress, and generating a keypair for the inbox
+  const inboxId = bytesToHex(randomBytes(32));
+  const {
+    publicKey,
+    privateKey
+  } = cryptoBoxKeyPair();
+  // encrypt the inbox secret key with the space secret key
+  const encryptedInboxSecretKey = Messages.encryptMessage({
+    message: privateKey,
+    secretKey: hexToBytes(spaceSecretKey)
+  });
+  const spaceEvent = await Effect.runPromise(SpaceEvents.createInbox({
+    spaceId,
+    inboxId,
+    encryptionPublicKey: bytesToHex(publicKey),
+    secretKey: bytesToHex(encryptedInboxSecretKey),
+    isPublic,
+    authPolicy,
+    author,
+    previousEventHash
+  }));
+  return {
+    type: 'create-space-inbox-event',
+    spaceId,
+    event: spaceEvent
+  };
+}
+//# sourceMappingURL=create-inbox.js.map