@kynesyslabs/demosdk 2.6.0 → 2.7.0

package/build/ipfs/IPFSOperations.js

@@ -0,0 +1,293 @@
+"use strict";
+/**
+ * IPFS Operations for Demos Network SDK
+ *
+ * Provides payload creators for IPFS transactions and helper utilities.
+ * Works with the Demos transaction system for add, pin, and unpin operations.
+ *
+ * @fileoverview IPFS operations module for SDK
+ *
+ * @example
+ * ```typescript
+ * import { ipfs } from '@kynesyslabs/demosdk'
+ *
+ * // Create add payload for transaction
+ * const addPayload = ipfs.IPFSOperations.createAddPayload(
+ *   Buffer.from('Hello IPFS!'),
+ *   'hello.txt'
+ * )
+ *
+ * // Create pin payload for existing CID
+ * const pinPayload = ipfs.IPFSOperations.createPinPayload(
+ *   'QmExampleCID...'
+ * )
+ *
+ * // Create unpin payload
+ * const unpinPayload = ipfs.IPFSOperations.createUnpinPayload(
+ *   'QmExampleCID...'
+ * )
+ * ```
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IPFSOperations = exports.IPFS_CONSTANTS = void 0;
+// REVIEW: IPFS Operations class for Demos Network SDK
+// ============================================================================
+// Constants
+// ============================================================================
+/**
+ * IPFS configuration constants
+ */
+exports.IPFS_CONSTANTS = {
+    /** Maximum content size for direct upload (1GB) */
+    MAX_CONTENT_SIZE: 1024 * 1024 * 1024,
+    /** CIDv0 pattern (Qm followed by base58 characters) */
+    CID_V0_PATTERN: /^Qm[1-9A-HJ-NP-Za-km-z]{44}$/,
+    /** CIDv1 patterns (bafy or bafk prefix with base32 characters) */
+    CID_V1_PATTERN: /^(bafy|bafk|bafz|bafb)[a-z2-7]{50,}$/i,
+};
+// ============================================================================
+// Main Class
+// ============================================================================
+/**
+ * IPFS Operations class for creating payloads and utility functions
+ *
+ * This class provides static methods to create transaction payloads for IPFS operations.
+ * The payloads can be used with the Demos transaction system.
+ *
+ * @example
+ * ```typescript
+ * import { ipfs, websdk } from '@kynesyslabs/demosdk'
+ *
+ * // Initialize Demos client
+ * const demos = new websdk.Demos({ rpcUrl: 'https://rpc.demos.network' })
+ *
+ * // Create add payload
+ * const addPayload = ipfs.IPFSOperations.createAddPayload(
+ *   Buffer.from('My content'),
+ *   'myfile.txt'
+ * )
+ *
+ * // Build and send transaction (pseudocode - actual tx flow depends on integration)
+ * // The payload goes in transaction.content.data as ['ipfs', payload]
+ * ```
+ */
+class IPFSOperations {
+    // ========================================================================
+    // Payload Creators (for transactions)
+    // ========================================================================
+    /**
+     * Create a payload for IPFS_ADD operation
+     *
+     * Uploads content to IPFS and automatically pins it to the sender's account.
+     *
+     * @param content - Content to upload (Buffer, Uint8Array, or string)
+     * @param options - Optional filename and metadata
+     * @returns IPFSAddPayload for transaction creation
+     *
+     * @example
+     * ```typescript
+     * // Simple text upload
+     * const payload = IPFSOperations.createAddPayload(
+     *   'Hello, IPFS!',
+     *   { filename: 'hello.txt' }
+     * )
+     *
+     * // Binary content
+     * const imageBuffer = fs.readFileSync('image.png')
+     * const imagePayload = IPFSOperations.createAddPayload(
+     *   imageBuffer,
+     *   { filename: 'image.png', metadata: { type: 'image/png' } }
+     * )
+     * ```
+     */
+    static createAddPayload(content, options = {}) {
+        // Convert content to base64
+        let base64Content;
+        if (typeof content === "string") {
+            base64Content = Buffer.from(content).toString("base64");
+        }
+        else {
+            // Both Buffer and Uint8Array can be converted via Buffer.from
+            base64Content = Buffer.from(content).toString("base64");
+        }
+        return {
+            operation: "IPFS_ADD",
+            content: base64Content,
+            filename: options.filename,
+            metadata: options.metadata,
+        };
+    }
+    /**
+     * Create a payload for IPFS_PIN operation
+     *
+     * Pins an existing CID to the sender's account.
+     *
+     * @param cid - Content Identifier to pin
+     * @param options - Optional duration and metadata
+     * @returns IPFSPinPayload for transaction creation
+     *
+     * @example
+     * ```typescript
+     * // Pin indefinitely
+     * const payload = IPFSOperations.createPinPayload('QmExample...')
+     *
+     * // Pin with duration (blocks)
+     * const timedPayload = IPFSOperations.createPinPayload('QmExample...', {
+     *   duration: 1000000, // ~30 days at 2.5s blocks
+     *   metadata: { source: 'user-upload' }
+     * })
+     * ```
+     */
+    static createPinPayload(cid, options = {}) {
+        // Validate CID format
+        if (!this.isValidCID(cid)) {
+            throw new Error(`Invalid CID format: ${cid}`);
+        }
+        return {
+            operation: "IPFS_PIN",
+            cid,
+            duration: options.duration,
+            metadata: options.metadata,
+        };
+    }
+    /**
+     * Create a payload for IPFS_UNPIN operation
+     *
+     * Removes a pin from the sender's account.
+     *
+     * @param cid - Content Identifier to unpin
+     * @returns IPFSUnpinPayload for transaction creation
+     *
+     * @example
+     * ```typescript
+     * const payload = IPFSOperations.createUnpinPayload('QmExample...')
+     * ```
+     */
+    static createUnpinPayload(cid) {
+        // Validate CID format
+        if (!this.isValidCID(cid)) {
+            throw new Error(`Invalid CID format: ${cid}`);
+        }
+        return {
+            operation: "IPFS_UNPIN",
+            cid,
+        };
+    }
+    // ========================================================================
+    // Validation Utilities
+    // ========================================================================
+    /**
+     * Validate a CID format
+     *
+     * Supports both CIDv0 (Qm...) and CIDv1 (bafy.../bafk...) formats.
+     *
+     * @param cid - Content Identifier to validate
+     * @returns true if CID is valid format
+     *
+     * @example
+     * ```typescript
+     * IPFSOperations.isValidCID('QmExample...') // true for valid CIDv0
+     * IPFSOperations.isValidCID('bafyExample...') // true for valid CIDv1
+     * IPFSOperations.isValidCID('invalid') // false
+     * ```
+     */
+    static isValidCID(cid) {
+        if (!cid || typeof cid !== "string") {
+            return false;
+        }
+        return (exports.IPFS_CONSTANTS.CID_V0_PATTERN.test(cid) ||
+            exports.IPFS_CONSTANTS.CID_V1_PATTERN.test(cid));
+    }
+    /**
+     * Validate content size
+     *
+     * @param content - Content to validate
+     * @returns true if content size is within limit
+     *
+     * @example
+     * ```typescript
+     * const largeBuffer = Buffer.alloc(2 * 1024 * 1024 * 1024) // 2GB
+     * IPFSOperations.isValidContentSize(largeBuffer) // false
+     * ```
+     */
+    static isValidContentSize(content) {
+        let size;
+        if (typeof content === "string") {
+            size = Buffer.byteLength(content);
+        }
+        else {
+            size = content.length;
+        }
+        return size <= exports.IPFS_CONSTANTS.MAX_CONTENT_SIZE;
+    }
+    /**
+     * Get content size in bytes
+     *
+     * @param content - Content to measure
+     * @returns Size in bytes
+     */
+    static getContentSize(content) {
+        if (typeof content === "string") {
+            return Buffer.byteLength(content);
+        }
+        return content.length;
+    }
+    // ========================================================================
+    // Content Encoding Utilities
+    // ========================================================================
+    /**
+     * Encode content to base64
+     *
+     * @param content - Content to encode
+     * @returns Base64 encoded string
+     */
+    static encodeContent(content) {
+        if (typeof content === "string") {
+            return Buffer.from(content).toString("base64");
+        }
+        // Both Buffer and Uint8Array can be converted via Buffer.from
+        return Buffer.from(content).toString("base64");
+    }
+    /**
+     * Decode base64 content to Buffer
+     *
+     * @param base64Content - Base64 encoded content
+     * @returns Decoded Buffer
+     */
+    static decodeContent(base64Content) {
+        return Buffer.from(base64Content, "base64");
+    }
+    /**
+     * Decode base64 content to string
+     *
+     * @param base64Content - Base64 encoded content
+     * @param encoding - Text encoding (default: 'utf-8')
+     * @returns Decoded string
+     */
+    static decodeContentAsString(base64Content, encoding = "utf-8") {
+        return Buffer.from(base64Content, "base64").toString(encoding);
+    }
+    // ========================================================================
+    // Type Guards
+    // ========================================================================
+    /**
+     * Check if payload is an add operation
+     */
+    static isAddPayload(payload) {
+        return payload.operation === "IPFS_ADD";
+    }
+    /**
+     * Check if payload is a pin operation
+     */
+    static isPinPayload(payload) {
+        return payload.operation === "IPFS_PIN";
+    }
+    /**
+     * Check if payload is an unpin operation
+     */
+    static isUnpinPayload(payload) {
+        return payload.operation === "IPFS_UNPIN";
+    }
+}
+exports.IPFSOperations = IPFSOperations;
+//# sourceMappingURL=IPFSOperations.js.map

package/build/ipfs/IPFSOperations.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"IPFSOperations.js","sourceRoot":"","sources":["../../../src/ipfs/IPFSOperations.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;;;AASH,sDAAsD;AAEtD,+EAA+E;AAC/E,YAAY;AACZ,+EAA+E;AAE/E;;GAEG;AACU,QAAA,cAAc,GAAG;IAC1B,mDAAmD;IACnD,gBAAgB,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI;IAEpC,uDAAuD;IACvD,cAAc,EAAE,8BAA8B;IAE9C,kEAAkE;IAClE,cAAc,EAAE,uCAAuC;CACjD,CAAA;AAuFV,+EAA+E;AAC/E,aAAa;AACb,+EAA+E;AAE/E;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAa,cAAc;IACvB,2EAA2E;IAC3E,sCAAsC;IACtC,2EAA2E;IAE3E;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;IACH,MAAM,CAAC,gBAAgB,CACnB,OAAqC,EACrC,UAAsB,EAAE;QAExB,4BAA4B;QAC5B,IAAI,aAAqB,CAAA;QACzB,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC9B,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;QAC3D,CAAC;aAAM,CAAC;YACJ,8DAA8D;YAC9D,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;QAC3D,CAAC;QAED,OAAO;YACH,SAAS,EAAE,UAAU;YACrB,OAAO,EAAE,aAAa;YACtB,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,QAAQ,EAAE,OAAO,CAAC,QAAQ;SAC7B,CAAA;IACL,CAAC;IAED;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,MAAM,CAAC,gBAAgB,CACnB,GAAW,EACX,UAAsB,EAAE;QAExB,sBAAsB;QACtB,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,EAAE,CAAC,CAAA;QACjD,CAAC;QAED,OAAO;YACH,SAAS,EAAE,UAAU;YACrB,GAAG;YACH,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,QAAQ,EAAE,OAAO,CAAC,QAAQ;SAC7B,CAAA;IACL,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,MAAM,CAAC,kBAAkB,CAAC,GAAW;QACjC,sBAAsB;QACtB,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,EAAE,CAAC,CAAA;QACjD,CAAC;QAED,OAAO;YACH,SAAS,EAAE,YAAY;YACvB,GAAG;SACN,CAAA;IACL,CAAC;IAED,2EAA2E;IAC3E,uBAAuB;IACvB,2EAA2E;IAE3E;;;;;;;;;;;;;;OAcG;IACH,MAAM,CAAC,UAAU,CAAC,GAAW;QACzB,IAAI,CAAC,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YAClC,OAAO,KAAK,CAAA;QAChB,CAAC;QAED,OAAO,CACH,sBAAc,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC;YACvC,sBAAc,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,CAC1C,CAAA;IACL,CAAC;IAED;;;;;;;;;;;OAWG;IACH,MAAM,CAAC,kBAAkB,CAAC,OAAqC;QAC3D,IAAI,IAAY,CAAA;QAChB,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC9B,IAAI,GAAG,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAA;QACrC,CAAC;aAAM,CAAC;YACJ,IAAI,GAAG,OAAO,CAAC,MAAM,CAAA;QACzB,CAAC;QAED,OAAO,IAAI,IAAI,sBAAc,CAAC,gBAAgB,CAAA;IAClD,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,cAAc,CAAC,OAAqC;QACvD,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAA;QACrC,CAAC;QACD,OAAO,OAAO,CAAC,MAAM,CAAA;IACzB,CAAC;IAED,2EAA2E;IAC3E,6BAA6B;IAC7B,2EAA2E;IAE3E;;;;;OAKG;IACH,MAAM,CAAC,aAAa,CAAC,OAAqC;QACtD,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;QAClD,CAAC;QACD,8DAA8D;QAC9D,OAAO,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;IAClD,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,aAAa,CAAC,aAAqB;QACtC,OAAO,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAA;IAC/C,CAAC;IAED;;;;;;OAMG;IACH,MAAM,CAAC,qBAAqB,CACxB,aAAqB,EACrB,WAA2B,OAAO;QAElC,OAAO,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;IAClE,CAAC;IAED,2EAA2E;IAC3E,cAAc;IACd,2EAA2E;IAE3E;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,OAAoB;QACpC,OAAO,OAAO,CAAC,SAAS,KAAK,UAAU,CAAA;IAC3C,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,OAAoB;QACpC,OAAO,OAAO,CAAC,SAAS,KAAK,UAAU,CAAA;IAC3C,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,OAAoB;QACtC,OAAO,OAAO,CAAC,SAAS,KAAK,YAAY,CAAA;IAC7C,CAAC;CACJ;AAtPD,wCAsPC"}

package/build/ipfs/index.d.ts

@@ -0,0 +1,3 @@
+export { IPFSOperations, IPFS_CONSTANTS } from "./IPFSOperations";
+export type { AddOptions, PinOptions, IPFSStatusResponse, IPFSAddResponse, IPFSGetResponse, PinInfo, IPFSPinsResponse, } from "./IPFSOperations";
+export type { IPFSOperationType, IPFSAddPayload, IPFSPinPayload, IPFSUnpinPayload, IPFSPayload, } from "../types/blockchain/TransactionSubtypes/IPFSTransaction";

package/build/ipfs/index.js

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IPFS_CONSTANTS = exports.IPFSOperations = void 0;
+var IPFSOperations_1 = require("./IPFSOperations");
+Object.defineProperty(exports, "IPFSOperations", { enumerable: true, get: function () { return IPFSOperations_1.IPFSOperations; } });
+Object.defineProperty(exports, "IPFS_CONSTANTS", { enumerable: true, get: function () { return IPFSOperations_1.IPFS_CONSTANTS; } });
+//# sourceMappingURL=index.js.map

package/build/ipfs/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/ipfs/index.ts"],"names":[],"mappings":";;;AAAA,mDAAiE;AAAxD,gHAAA,cAAc,OAAA;AAAE,gHAAA,cAAc,OAAA"}

package/build/keyserver/KeyServerClient.d.ts

@@ -0,0 +1,60 @@
+/**
+ * Key Server Client
+ *
+ * Client for interacting with Key Server OAuth endpoints.
+ * Enables dApps to verify user ownership of GitHub/Discord accounts
+ * with DAHR attestation.
+ */
+import type { KeyServerClientConfig, OAuthService, OAuthInitOptions, OAuthInitResult, OAuthPollResult, OAuthVerifyOptions, OAuthVerificationResult } from "./types";
+export declare class KeyServerClient {
+    private readonly endpoint;
+    private readonly nodePubKey;
+    constructor(config: KeyServerClientConfig);
+    /**
+     * Get list of available OAuth providers
+     *
+     * @returns Array of available provider names
+     * @throws OAuthError if request fails
+     */
+    getProviders(): Promise<OAuthService[]>;
+    /**
+     * Initiate an OAuth verification flow
+     *
+     * @param service - OAuth provider ("github" or "discord")
+     * @param options - Optional configuration
+     * @returns OAuth flow initiation result with authUrl and state
+     * @throws OAuthError if initiation fails
+     */
+    initiateOAuth(service: OAuthService, options?: OAuthInitOptions): Promise<OAuthInitResult>;
+    /**
+     * Poll for OAuth verification result
+     *
+     * @param state - State identifier from initiateOAuth
+     * @returns Current status of the OAuth flow
+     * @throws OAuthError if polling fails
+     */
+    pollOAuth(state: string): Promise<OAuthPollResult>;
+    /**
+     * Convenience method: initiate OAuth and wait for completion
+     *
+     * This method handles the full OAuth flow:
+     * 1. Initiates the OAuth flow
+     * 2. Calls onAuthUrl callback for dApp to display the URL
+     * 3. Polls until completion, timeout, or failure
+     * 4. Returns the verified user info and attestation
+     *
+     * @param service - OAuth provider ("github" or "discord")
+     * @param options - Configuration including callbacks
+     * @returns Final verification result
+     * @throws OAuthError if verification fails or times out
+     */
+    verifyOAuth(service: OAuthService, options?: OAuthVerifyOptions): Promise<OAuthVerificationResult>;
+    /**
+     * Internal fetch wrapper with error handling
+     */
+    private fetch;
+    /**
+     * Sleep utility for polling
+     */
+    private sleep;
+}

package/build/keyserver/KeyServerClient.js

@@ -0,0 +1,171 @@
+"use strict";
+/**
+ * Key Server Client
+ *
+ * Client for interacting with Key Server OAuth endpoints.
+ * Enables dApps to verify user ownership of GitHub/Discord accounts
+ * with DAHR attestation.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.KeyServerClient = void 0;
+const errors_1 = require("./errors");
+const DEFAULT_TIMEOUT = 600000; // 10 minutes
+const DEFAULT_POLL_INTERVAL = 2000; // 2 seconds
+class KeyServerClient {
+    constructor(config) {
+        // Normalize endpoint (remove trailing slash)
+        this.endpoint = config.endpoint.replace(/\/$/, "");
+        this.nodePubKey = config.nodePubKey;
+    }
+    /**
+     * Get list of available OAuth providers
+     *
+     * @returns Array of available provider names
+     * @throws OAuthError if request fails
+     */
+    async getProviders() {
+        const response = await this.fetch("/oauth/providers", { method: "GET" });
+        if (!response.success || !response.providers) {
+            throw new errors_1.OAuthError("OAUTH_NOT_AVAILABLE", response.error?.message || "Failed to get providers");
+        }
+        return response.providers;
+    }
+    /**
+     * Initiate an OAuth verification flow
+     *
+     * @param service - OAuth provider ("github" or "discord")
+     * @param options - Optional configuration
+     * @returns OAuth flow initiation result with authUrl and state
+     * @throws OAuthError if initiation fails
+     */
+    async initiateOAuth(service, options) {
+        const response = await this.fetch("/oauth/init", {
+            method: "POST",
+            body: JSON.stringify({
+                service,
+                nodePubKey: this.nodePubKey,
+                scopes: options?.scopes,
+            }),
+        });
+        if (!response.success) {
+            throw errors_1.OAuthError.fromResponse(response.error || { code: "INTERNAL_ERROR", message: "Unknown error" });
+        }
+        return {
+            success: true,
+            authUrl: response.authUrl,
+            state: response.state,
+            expiresAt: response.expiresAt,
+        };
+    }
+    /**
+     * Poll for OAuth verification result
+     *
+     * @param state - State identifier from initiateOAuth
+     * @returns Current status of the OAuth flow
+     * @throws OAuthError if polling fails
+     */
+    async pollOAuth(state) {
+        const response = await this.fetch("/oauth/poll", {
+            method: "POST",
+            body: JSON.stringify({
+                state,
+                nodePubKey: this.nodePubKey,
+            }),
+        });
+        return response;
+    }
+    /**
+     * Convenience method: initiate OAuth and wait for completion
+     *
+     * This method handles the full OAuth flow:
+     * 1. Initiates the OAuth flow
+     * 2. Calls onAuthUrl callback for dApp to display the URL
+     * 3. Polls until completion, timeout, or failure
+     * 4. Returns the verified user info and attestation
+     *
+     * @param service - OAuth provider ("github" or "discord")
+     * @param options - Configuration including callbacks
+     * @returns Final verification result
+     * @throws OAuthError if verification fails or times out
+     */
+    async verifyOAuth(service, options) {
+        const timeout = options?.timeout ?? DEFAULT_TIMEOUT;
+        const pollInterval = options?.pollInterval ?? DEFAULT_POLL_INTERVAL;
+        // Step 1: Initiate OAuth flow
+        const initResult = await this.initiateOAuth(service, {
+            scopes: options?.scopes,
+            timeout,
+        });
+        // Step 2: Notify dApp of auth URL
+        if (options?.onAuthUrl) {
+            options.onAuthUrl(initResult.authUrl, initResult.state);
+        }
+        // Step 3: Poll for result
+        const startTime = Date.now();
+        let attempt = 0;
+        while (Date.now() - startTime < timeout) {
+            attempt++;
+            // Wait before polling (except first attempt)
+            if (attempt > 1) {
+                await this.sleep(pollInterval);
+            }
+            const pollResult = await this.pollOAuth(initResult.state);
+            // Notify dApp of poll status
+            if (options?.onPoll) {
+                options.onPoll(attempt, pollResult.status);
+            }
+            // Check for terminal states
+            switch (pollResult.status) {
+                case "completed":
+                    if (!pollResult.result || !pollResult.attestation) {
+                        throw new errors_1.OAuthError("INTERNAL_ERROR", "Completed but missing result or attestation");
+                    }
+                    return {
+                        success: true,
+                        user: pollResult.result,
+                        attestation: pollResult.attestation,
+                    };
+                case "failed":
+                    throw errors_1.OAuthError.fromResponse(pollResult.error || { code: "OAUTH_PROVIDER_ERROR", message: "Verification failed" });
+                case "expired":
+                    throw new errors_1.OAuthError("OAUTH_EXPIRED", "OAuth flow expired");
+                case "pending":
+                    // Continue polling
+                    break;
+            }
+        }
+        // Timeout reached
+        throw new errors_1.OAuthError("OAUTH_TIMEOUT", `OAuth verification timed out after ${timeout}ms`);
+    }
+    /**
+     * Internal fetch wrapper with error handling
+     */
+    async fetch(path, options) {
+        const url = `${this.endpoint}${path}`;
+        try {
+            const response = await fetch(url, {
+                ...options,
+                headers: {
+                    "Content-Type": "application/json",
+                    ...options.headers,
+                },
+            });
+            const data = await response.json();
+            return data;
+        }
+        catch (error) {
+            if (error instanceof errors_1.OAuthError) {
+                throw error;
+            }
+            throw new errors_1.OAuthError("NETWORK_ERROR", `Failed to connect to Key Server: ${error.message}`, { url, originalError: String(error) });
+        }
+    }
+    /**
+     * Sleep utility for polling
+     */
+    sleep(ms) {
+        return new Promise((resolve) => setTimeout(resolve, ms));
+    }
+}
+exports.KeyServerClient = KeyServerClient;
+//# sourceMappingURL=KeyServerClient.js.map

package/build/keyserver/KeyServerClient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"KeyServerClient.js","sourceRoot":"","sources":["../../../src/keyserver/KeyServerClient.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;AAaH,qCAAsC;AAEtC,MAAM,eAAe,GAAG,MAAM,CAAC,CAAC,aAAa;AAC7C,MAAM,qBAAqB,GAAG,IAAI,CAAC,CAAC,YAAY;AAEhD,MAAa,eAAe;IAIxB,YAAY,MAA6B;QACrC,6CAA6C;QAC7C,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACnD,IAAI,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;IACxC,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,YAAY;QACd,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAC7B,kBAAkB,EAClB,EAAE,MAAM,EAAE,KAAK,EAAE,CACpB,CAAC;QAEF,IAAI,CAAC,QAAQ,CAAC,OAAO,IAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;YAC3C,MAAM,IAAI,mBAAU,CAChB,qBAAqB,EACrB,QAAQ,CAAC,KAAK,EAAE,OAAO,IAAI,yBAAyB,CACvD,CAAC;QACN,CAAC;QAED,OAAO,QAAQ,CAAC,SAAS,CAAC;IAC9B,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,aAAa,CACf,OAAqB,EACrB,OAA0B;QAE1B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAC7B,aAAa,EACb;YACI,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACjB,OAAO;gBACP,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,MAAM,EAAE,OAAO,EAAE,MAAM;aAC1B,CAAC;SACL,CACJ,CAAC;QAEF,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,mBAAU,CAAC,YAAY,CACzB,QAAQ,CAAC,KAAK,IAAI,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,eAAe,EAAE,CACzE,CAAC;QACN,CAAC;QAED,OAAO;YACH,OAAO,EAAE,IAAI;YACb,OAAO,EAAE,QAAQ,CAAC,OAAO;YACzB,KAAK,EAAE,QAAQ,CAAC,KAAK;YACrB,SAAS,EAAE,QAAQ,CAAC,SAAS;SAChC,CAAC;IACN,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,SAAS,CAAC,KAAa;QACzB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAC7B,aAAa,EACb;YACI,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACjB,KAAK;gBACL,UAAU,EAAE,IAAI,CAAC,UAAU;aAC9B,CAAC;SACL,CACJ,CAAC;QAEF,OAAO,QAAQ,CAAC;IACpB,CAAC;IAED;;;;;;;;;;;;;OAaG;IACH,KAAK,CAAC,WAAW,CACb,OAAqB,EACrB,OAA4B;QAE5B,MAAM,OAAO,GAAG,OAAO,EAAE,OAAO,IAAI,eAAe,CAAC;QACpD,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,qBAAqB,CAAC;QAEpE,8BAA8B;QAC9B,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE;YACjD,MAAM,EAAE,OAAO,EAAE,MAAM;YACvB,OAAO;SACV,CAAC,CAAC;QAEH,kCAAkC;QAClC,IAAI,OAAO,EAAE,SAAS,EAAE,CAAC;YACrB,OAAO,CAAC,SAAS,CAAC,UAAU,CAAC,OAAO,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC;QAC5D,CAAC;QAED,0BAA0B;QAC1B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,IAAI,OAAO,GAAG,CAAC,CAAC;QAEhB,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,OAAO,EAAE,CAAC;YACtC,OAAO,EAAE,CAAC;YAEV,6CAA6C;YAC7C,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;gBACd,MAAM,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;YACnC,CAAC;YAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YAE1D,6BAA6B;YAC7B,IAAI,OAAO,EAAE,MAAM,EAAE,CAAC;gBAClB,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC;YAC/C,CAAC;YAED,4BAA4B;YAC5B,QAAQ,UAAU,CAAC,MAAM,EAAE,CAAC;gBACxB,KAAK,WAAW;oBACZ,IAAI,CAAC,UAAU,CAAC,MAAM,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;wBAChD,MAAM,IAAI,mBAAU,CAChB,gBAAgB,EAChB,6CAA6C,CAChD,CAAC;oBACN,CAAC;oBACD,OAAO;wBACH,OAAO,EAAE,IAAI;wBACb,IAAI,EAAE,UAAU,CAAC,MAAM;wBACvB,WAAW,EAAE,UAAU,CAAC,WAAW;qBACtC,CAAC;gBAEN,KAAK,QAAQ;oBACT,MAAM,mBAAU,CAAC,YAAY,CACzB,UAAU,CAAC,KAAK,IAAI,EAAE,IAAI,EAAE,sBAAsB,EAAE,OAAO,EAAE,qBAAqB,EAAE,CACvF,CAAC;gBAEN,KAAK,SAAS;oBACV,MAAM,IAAI,mBAAU,CAChB,eAAe,EACf,oBAAoB,CACvB,CAAC;gBAEN,KAAK,SAAS;oBACV,mBAAmB;oBACnB,MAAM;YACd,CAAC;QACL,CAAC;QAED,kBAAkB;QAClB,MAAM,IAAI,mBAAU,CAChB,eAAe,EACf,sCAAsC,OAAO,IAAI,CACpD,CAAC;IACN,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,KAAK,CACf,IAAY,EACZ,OAAoB;QAEpB,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,EAAE,CAAC;QAEtC,IAAI,CAAC;YACD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAC9B,GAAG,OAAO;gBACV,OAAO,EAAE;oBACL,cAAc,EAAE,kBAAkB;oBAClC,GAAG,OAAO,CAAC,OAAO;iBACrB;aACJ,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,OAAO,IAAS,CAAC;QACrB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,IAAI,KAAK,YAAY,mBAAU,EAAE,CAAC;gBAC9B,MAAM,KAAK,CAAC;YAChB,CAAC;YAED,MAAM,IAAI,mBAAU,CAChB,eAAe,EACf,oCAAqC,KAAe,CAAC,OAAO,EAAE,EAC9D,EAAE,GAAG,EAAE,aAAa,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CACxC,CAAC;QACN,CAAC;IACL,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,EAAU;QACpB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;IAC7D,CAAC;CACJ;AA7ND,0CA6NC"}

package/build/keyserver/errors.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Key Server OAuth Errors
+ */
+/**
+ * Error codes for OAuth operations
+ */
+export type OAuthErrorCode = "OAUTH_INVALID_SERVICE" | "OAUTH_NOT_CONFIGURED" | "OAUTH_NOT_AVAILABLE" | "OAUTH_DENIED" | "OAUTH_EXPIRED" | "OAUTH_PROVIDER_ERROR" | "OAUTH_STATE_NOT_FOUND" | "OAUTH_STATE_MISMATCH" | "OAUTH_TIMEOUT" | "NETWORK_ERROR" | "INTERNAL_ERROR";
+/**
+ * OAuth-specific error class
+ */
+export declare class OAuthError extends Error {
+    readonly code: OAuthErrorCode;
+    readonly details?: Record<string, unknown>;
+    constructor(code: OAuthErrorCode, message: string, details?: Record<string, unknown>);
+    /**
+     * Create error from Key Server error response
+     */
+    static fromResponse(error: {
+        code: string;
+        message: string;
+    }): OAuthError;
+}

package/build/keyserver/errors.js

@@ -0,0 +1,29 @@
+"use strict";
+/**
+ * Key Server OAuth Errors
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthError = void 0;
+/**
+ * OAuth-specific error class
+ */
+class OAuthError extends Error {
+    constructor(code, message, details) {
+        super(message);
+        this.name = "OAuthError";
+        this.code = code;
+        this.details = details;
+        // Maintains proper stack trace in V8 environments
+        if (Error.captureStackTrace) {
+            Error.captureStackTrace(this, OAuthError);
+        }
+    }
+    /**
+     * Create error from Key Server error response
+     */
+    static fromResponse(error) {
+        return new OAuthError(error.code, error.message);
+    }
+}
+exports.OAuthError = OAuthError;
+//# sourceMappingURL=errors.js.map

package/build/keyserver/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../../src/keyserver/errors.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAkBH;;GAEG;AACH,MAAa,UAAW,SAAQ,KAAK;IAIjC,YACI,IAAoB,EACpB,OAAe,EACf,OAAiC;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,YAAY,CAAC;QACzB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QAEvB,kDAAkD;QAClD,IAAI,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAC1B,KAAK,CAAC,iBAAiB,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC9C,CAAC;IACL,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,KAGnB;QACG,OAAO,IAAI,UAAU,CACjB,KAAK,CAAC,IAAsB,EAC5B,KAAK,CAAC,OAAO,CAChB,CAAC;IACN,CAAC;CACJ;AAhCD,gCAgCC"}

package/build/keyserver/index.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Key Server Module
+ *
+ * Client for Key Server OAuth verification with DAHR attestation.
+ * Enables dApps to verify user ownership of GitHub/Discord accounts.
+ *
+ * @example
+ * ```typescript
+ * import { KeyServerClient } from "@kynesyslabs/demosdk/keyserver";
+ *
+ * const client = new KeyServerClient({
+ *     endpoint: "http://localhost:3030",
+ *     nodePubKey: nodePublicKey,
+ * });
+ *
+ * // Full verification flow
+ * const result = await client.verifyOAuth("github", {
+ *     onAuthUrl: (url) => window.open(url),
+ *     onPoll: (attempt, status) => console.log(`Poll ${attempt}: ${status}`),
+ * });
+ *
+ * console.log("Verified user:", result.user.username);
+ * console.log("Attestation:", result.attestation);
+ * ```
+ */
+export { KeyServerClient } from "./KeyServerClient";
+export { OAuthError } from "./errors";
+export { verifyAttestation, verifyOAuthAttestation } from "./verification";
+export type { OAuthErrorCode } from "./errors";
+export type { VerifyAttestationOptions, AttestationVerificationResult, } from "./verification";
+export type { KeyServerClientConfig, OAuthService, OAuthInitOptions, OAuthInitResult, OAuthPollResult, OAuthVerifyOptions, OAuthVerificationResult, OAuthStatus, OAuthUserInfo, DAHRAttestation, OAuthProvidersResponse, } from "./types";