npm - @lumiapassport/ui-kit - Versions diffs - 1.14.20 → 1.14.22 - Mend

@lumiapassport/ui-kit 1.14.20 → 1.14.22

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/dist/iframe/index.html CHANGED Viewed

@@ -15,7 +15,7 @@
     <meta http-equiv="X-Content-Type-Options" content="nosniff" />
     <meta http-equiv="Referrer-Policy" content="strict-origin-when-cross-origin" />
-    <title>Lumia Passport Secure Wallet - iframe version 1.14.20</title>
+    <title>Lumia Passport Secure Wallet - iframe version 1.14.22</title>
     <!-- Styles will be injected by build process -->
     <style>

package/dist/iframe/main.js CHANGED Viewed

@@ -1570,6 +1570,12 @@ var AuthorizationManager = class {
     const metadata = await this.fetchProjectMetadata(projectId);
     return metadata?.trustedAuthorizedApp === true;
   }
+  /**
+   * Get project metadata (name, logo, etc.) - uses cache
+   */
+  async getProjectMetadata(projectId) {
+    return this.fetchProjectMetadata(projectId);
+  }
   /**
    * Fetch project metadata from public API (with caching)
    */
@@ -3874,6 +3880,84 @@ var TrustedAppsManager = class {
   }
 };
+// src/iframe/lib/opted-out-apps-manager.ts
+var STORAGE_KEY2 = "lumia_passport_opted_out_apps";
+var OptedOutAppsManager = class {
+  /**
+   * Check if user has opted out of auto-trust for this app
+   */
+  isOptedOut(userId, projectId, origin) {
+    const optedOutApps = this.getOptedOutApps();
+    const result = optedOutApps.some(
+      (app) => app.userId === userId && app.projectId === projectId && app.origin === origin
+    );
+    return result;
+  }
+  /**
+   * Add app to opted-out list (when user removes ecosystem app from trusted list)
+   */
+  addOptedOut(userId, projectId, origin) {
+    const optedOutApps = this.getOptedOutApps();
+    const exists = optedOutApps.some(
+      (app) => app.userId === userId && app.projectId === projectId && app.origin === origin
+    );
+    if (exists) {
+      return;
+    }
+    optedOutApps.push({
+      userId,
+      projectId,
+      origin,
+      optedOutAt: Date.now()
+    });
+    this.saveOptedOutApps(optedOutApps);
+  }
+  /**
+   * Remove app from opted-out list (when user manually re-trusts via checkbox)
+   */
+  removeOptedOut(userId, projectId, origin) {
+    const optedOutApps = this.getOptedOutApps();
+    const filtered = optedOutApps.filter(
+      (app) => !(app.userId === userId && app.projectId === projectId && app.origin === origin)
+    );
+    this.saveOptedOutApps(filtered);
+  }
+  /**
+   * Clear all opted-out apps for a user (when clearing all trusted apps)
+   */
+  clearOptedOutForUser(userId) {
+    const optedOutApps = this.getOptedOutApps();
+    const filtered = optedOutApps.filter((app) => app.userId !== userId);
+    this.saveOptedOutApps(filtered);
+  }
+  /**
+   * Get all opted-out apps from storage
+   */
+  getOptedOutApps() {
+    try {
+      const data = localStorage.getItem(STORAGE_KEY2);
+      if (!data) {
+        return [];
+      }
+      const apps = JSON.parse(data);
+      return Array.isArray(apps) ? apps : [];
+    } catch (error) {
+      console.error("[OptedOutApps] Error reading opted-out apps:", error);
+      return [];
+    }
+  }
+  /**
+   * Save opted-out apps to storage
+   */
+  saveOptedOutApps(apps) {
+    try {
+      localStorage.setItem(STORAGE_KEY2, JSON.stringify(apps));
+    } catch (error) {
+      console.error("[OptedOutApps] Error saving opted-out apps:", error);
+    }
+  }
+};
 // src/iframe/lib/signing-manager.ts
 var SigningManager = class extends TokenRefreshApiClient {
   constructor() {
@@ -3886,6 +3970,7 @@ var SigningManager = class extends TokenRefreshApiClient {
     this.metadataCache = /* @__PURE__ */ new Map();
     this.storage = new StorageManager();
     this.trustedApps = new TrustedAppsManager();
+    this.optedOutApps = new OptedOutAppsManager();
   }
   /**
    * Initialize WASM module
@@ -3993,6 +4078,7 @@ var SigningManager = class extends TokenRefreshApiClient {
       }
       if (confirmResult.trustApp) {
         this.trustedApps.addTrustedApp(userId, projectId, origin, confirmResult.appName, confirmResult.appLogo);
+        this.optedOutApps.removeOptedOut(userId, projectId, origin);
       }
     } else if (isMinimalOperation) {
       console.log("[iframe][Sign] Auto-approving minimal safe operation (account deployment)");
@@ -4241,6 +4327,7 @@ var SigningManager = class extends TokenRefreshApiClient {
       }
       if (confirmResult.trustApp) {
         this.trustedApps.addTrustedApp(userId, projectId, origin, confirmResult.appName, confirmResult.appLogo);
+        this.optedOutApps.removeOptedOut(userId, projectId, origin);
       }
     }
     const keyshareData = this.storage.loadKeyshare(userId);
@@ -4315,7 +4402,7 @@ var SigningManager = class extends TokenRefreshApiClient {
 };
 // src/iframe/main.ts
-var IFRAME_VERSION = "1.14.20";
+var IFRAME_VERSION = "1.14.22";
 var IframeWallet = class {
   constructor() {
     console.log("=".repeat(60));
@@ -4328,6 +4415,7 @@ var IframeWallet = class {
     this.authManager = new AuthorizationManager();
     this.storage = new StorageManager();
     this.trustedApps = new TrustedAppsManager();
+    this.optedOutApps = new OptedOutAppsManager();
     this.backupManager = new BackupManager();
     this.binance = new BinanceOnrampAPI(this.messenger.sendResponse.bind(this.messenger));
     this.rampnow = new RampnowOnrampAPI(this.messenger.sendResponse.bind(this.messenger));
@@ -4454,6 +4542,26 @@ var IframeWallet = class {
         console.log(`[iframe] Project ${projectId} is a trusted authorized app, auto-authorizing`);
         await this.authManager.storeAuthorization(userId, projectId, origin);
         console.log(`[iframe] \u2705 Auto-authorization granted for trusted app: ${userId} -> ${projectId}`);
+        try {
+          const isOptedOut = this.optedOutApps.isOptedOut(userId, projectId, origin);
+          console.log(`[iframe] Checking opt-out status: ${isOptedOut}`);
+          if (!isOptedOut) {
+            const metadata = await this.authManager.getProjectMetadata(projectId);
+            console.log(`[iframe] Got metadata for auto-trust:`, metadata?.name, metadata?.logo);
+            this.trustedApps.addTrustedApp(
+              userId,
+              projectId,
+              origin,
+              metadata?.name,
+              metadata?.logo
+            );
+            console.log(`[iframe] \u2705 Auto-added to trusted apps list for seamless transactions`);
+          } else {
+            console.log(`[iframe] \u2139\uFE0F User opted-out of auto-trust for this app, skipping`);
+          }
+        } catch (error) {
+          console.error(`[iframe] \u274C Error adding to trusted apps list:`, error);
+        }
       } else {
         console.log(`[iframe] Authorization needed for project: ${projectId}`);
         const projectInfo = {
@@ -4650,6 +4758,15 @@ var IframeWallet = class {
       console.error("[iframe] REMOVE_TRUSTED_APP: Session validation failed");
       throw new Error("Invalid session");
     }
+    const isEcosystemApp = await this.authManager.isTrustedAuthorizedApp(projectId);
+    if (isEcosystemApp) {
+      try {
+        this.optedOutApps.addOptedOut(userId, projectId, appOrigin);
+        console.log(`[iframe] \u2139\uFE0F Ecosystem app removed - added to opted-out list`);
+      } catch (e) {
+        console.error("[iframe] Failed to persist opted-out flag; proceeding with removal:", e);
+      }
+    }
     this.trustedApps.removeTrustedApp(userId, projectId, appOrigin);
     this.messenger.sendResponse(
       messageId,