@mentaproject/signer-react-native 0.0.1

package/dist/signer.js

@@ -0,0 +1,378 @@
+import { Passkey } from "react-native-passkey";
+import { hashTypedData, keccak256, } from "viem";
+import { extractPublicKeyFromAttestation, encodeUncompressedPublicKey, isValidP256PublicKey, COSEParseError, } from "./utils/cose.js";
+import { bytesToBase64Url, base64UrlToHex } from "./utils/base64url.js";
+import { parseWebAuthnAssertion, encodeWebAuthnSignature, createAssertionOptions, SignatureError, } from "./utils/passkey.js";
+/**
+ * Error thrown when passkey operations fail.
+ */
+export class PasskeySignerError extends Error {
+    cause;
+    constructor(message, cause) {
+        super(message);
+        this.cause = cause;
+        this.name = "PasskeySignerError";
+    }
+}
+/**
+ * ReactNativePasskeySigner implements SmartAccountSigner using WebAuthn/Passkeys.
+ *
+ * This signer uses the device's biometric authentication (Face ID, Touch ID, fingerprint)
+ * to sign messages and transactions for ERC-4337 smart accounts.
+ *
+ * The public key is a P-256 (secp256r1) key stored in the device's secure enclave.
+ *
+ * @example
+ * ```typescript
+ * // Register a new passkey
+ * const signer = await ReactNativePasskeySigner.register("user@example.com", {
+ *   rpId: "example.com",
+ *   rpName: "Example App",
+ * });
+ *
+ * // Sign a message (triggers biometric prompt)
+ * const signature = await signer.signMessage({
+ *   message: { raw: userOpHash },
+ * });
+ * ```
+ */
+export class ReactNativePasskeySigner {
+    source = "passkey";
+    /**
+     * The credential ID in Base64URL format.
+     */
+    credentialId;
+    /**
+     * The credential ID as hex.
+     */
+    credentialIdHex;
+    /**
+     * The P-256 public key coordinates (x, y).
+     */
+    publicKeyCoordinates;
+    /**
+     * The encoded public key (uncompressed SEC1 format: 0x04 || x || y).
+     */
+    publicKey;
+    /**
+     * Configuration for passkey operations.
+     */
+    config;
+    /**
+     * Creates a new ReactNativePasskeySigner instance.
+     * Use the static `register` or `fromCredential` methods instead of calling this directly.
+     *
+     * @param credential - The passkey credential data
+     * @param config - Configuration for passkey operations
+     */
+    constructor(credential, config) {
+        this.credentialId = credential.credentialId;
+        this.credentialIdHex = credential.credentialIdHex;
+        this.publicKeyCoordinates = credential.publicKey;
+        this.publicKey = credential.publicKeyHex;
+        this.config = {
+            ...config,
+            timeout: config.timeout ?? 60000,
+            userVerification: config.userVerification ?? "required",
+            signatureFormat: config.signatureFormat ?? "kernel",
+        };
+    }
+    /**
+     * Registers a new passkey and returns a signer instance.
+     *
+     * This triggers the device's WebAuthn registration flow:
+     * 1. Shows a system prompt to create a new passkey
+     * 2. User authenticates with biometrics
+     * 3. Device generates a new P-256 key pair in the secure enclave
+     * 4. Returns the public key and credential ID
+     *
+     * @param username - The username for the passkey (displayed in system UI)
+     * @param config - Configuration for the passkey
+     * @returns A new ReactNativePasskeySigner instance
+     * @throws PasskeySignerError if registration fails
+     */
+    static async register(username, config) {
+        // Generate a random user ID
+        const userId = new Uint8Array(32);
+        crypto.getRandomValues(userId);
+        const userIdB64 = bytesToBase64Url(userId);
+        // Generate a random challenge
+        const challenge = new Uint8Array(32);
+        crypto.getRandomValues(challenge);
+        const challengeB64 = bytesToBase64Url(challenge);
+        try {
+            // Call the native passkey creation
+            const result = await Passkey.create({
+                challenge: challengeB64,
+                rp: {
+                    id: config.rpId,
+                    name: config.rpName,
+                },
+                user: {
+                    id: userIdB64,
+                    name: username,
+                    displayName: username,
+                },
+                pubKeyCredParams: [
+                    {
+                        type: "public-key",
+                        alg: -7, // ES256 (P-256 with SHA-256)
+                    },
+                ],
+                authenticatorSelection: {
+                    authenticatorAttachment: "platform",
+                    residentKey: "required",
+                    requireResidentKey: true,
+                    userVerification: config.userVerification ?? "required",
+                },
+                timeout: config.timeout ?? 60000,
+                attestation: "none",
+            });
+            // Extract the credential ID
+            const credentialId = result.id;
+            const credentialIdHex = base64UrlToHex(credentialId);
+            // Parse the attestation to extract the public key
+            // The attestationObject contains the COSE-encoded public key
+            if (!result.response.attestationObject) {
+                throw new PasskeySignerError("Registration response missing attestationObject");
+            }
+            const { publicKey } = extractPublicKeyFromAttestation(result.response.attestationObject);
+            // Validate the public key
+            if (!isValidP256PublicKey(publicKey)) {
+                throw new PasskeySignerError("Invalid public key extracted from attestation");
+            }
+            // Encode the public key in uncompressed format
+            const publicKeyHex = encodeUncompressedPublicKey(publicKey);
+            const credential = {
+                credentialId,
+                credentialIdHex,
+                publicKey,
+                publicKeyHex,
+            };
+            return new ReactNativePasskeySigner(credential, config);
+        }
+        catch (error) {
+            if (error instanceof COSEParseError) {
+                throw new PasskeySignerError(`Failed to parse attestation: ${error.message}`, error);
+            }
+            if (error instanceof PasskeySignerError) {
+                throw error;
+            }
+            throw new PasskeySignerError(`Passkey registration failed: ${error instanceof Error ? error.message : "Unknown error"}`, error);
+        }
+    }
+    /**
+     * Creates a signer from an existing credential.
+     *
+     * Use this when you have previously registered a passkey and stored the credential data.
+     *
+     * @param credential - The stored credential data
+     * @param config - Configuration for passkey operations
+     * @returns A new ReactNativePasskeySigner instance
+     */
+    static fromCredential(credential, config) {
+        if (!isValidP256PublicKey(credential.publicKey)) {
+            throw new PasskeySignerError("Invalid public key in credential");
+        }
+        return new ReactNativePasskeySigner(credential, config);
+    }
+    /**
+     * Signs a message using the passkey.
+     *
+     * This triggers the device's biometric authentication prompt.
+     * The message can be a string or raw bytes (typically a UserOpHash).
+     *
+     * @param params - The message to sign
+     * @returns The encoded signature
+     * @throws PasskeySignerError if signing fails
+     */
+    async signMessage({ message, }) {
+        // Convert message to bytes
+        let messageBytes;
+        if (typeof message === "string") {
+            // For string messages, hash with EIP-191 prefix
+            const encoder = new TextEncoder();
+            const msgBytes = encoder.encode(message);
+            const prefix = `\x19Ethereum Signed Message:\n${msgBytes.length}`;
+            const prefixBytes = encoder.encode(prefix);
+            const combined = new Uint8Array(prefixBytes.length + msgBytes.length);
+            combined.set(prefixBytes, 0);
+            combined.set(msgBytes, prefixBytes.length);
+            // Hash the prefixed message
+            const hash = keccak256(combined);
+            messageBytes = this.hexToBytes(hash);
+        }
+        else if ("raw" in message) {
+            // For raw bytes, use them directly (typically already a hash)
+            if (typeof message.raw === "string") {
+                messageBytes = this.hexToBytes(message.raw);
+            }
+            else {
+                messageBytes = message.raw;
+            }
+        }
+        else {
+            throw new PasskeySignerError("Invalid message format");
+        }
+        // Create challenge from the message bytes
+        const challenge = bytesToBase64Url(messageBytes);
+        return this.signWithPasskey(challenge);
+    }
+    /**
+     * Signs typed data according to EIP-712.
+     *
+     * @param typedData - The typed data to sign
+     * @returns The encoded signature
+     * @throws PasskeySignerError if signing fails
+     */
+    async signTypedData(typedData) {
+        // Hash the typed data according to EIP-712
+        const hash = hashTypedData(typedData);
+        // Convert hash to bytes for challenge
+        const messageBytes = this.hexToBytes(hash);
+        const challenge = bytesToBase64Url(messageBytes);
+        return this.signWithPasskey(challenge);
+    }
+    /**
+     * Returns the address derived from the public key.
+     *
+     * Note: P-256 keys don't directly map to Ethereum addresses.
+     * This returns a pseudo-address derived from the public key hash.
+     * The actual smart account address is determined by the account implementation.
+     *
+     * @returns A derived address (not a real EOA address)
+     */
+    async getAddress() {
+        // Derive an address from the public key by hashing it
+        // This is not a real EOA address, just an identifier
+        const hash = keccak256(this.publicKey);
+        // Take the last 20 bytes
+        return `0x${hash.slice(-40)}`;
+    }
+    /**
+     * Returns the X coordinate of the public key.
+     */
+    getPublicKeyX() {
+        return this.publicKeyCoordinates.x;
+    }
+    /**
+     * Returns the Y coordinate of the public key.
+     */
+    getPublicKeyY() {
+        return this.publicKeyCoordinates.y;
+    }
+    /**
+     * Returns the full credential data for storage/restoration.
+     */
+    getCredential() {
+        return {
+            credentialId: this.credentialId,
+            credentialIdHex: this.credentialIdHex,
+            publicKey: this.publicKeyCoordinates,
+            publicKeyHex: this.publicKey,
+        };
+    }
+    /**
+     * Sets the signature encoding format.
+     *
+     * @param format - The format to use for encoding signatures
+     * @returns A new signer instance with the updated format
+     */
+    withSignatureFormat(format) {
+        return new ReactNativePasskeySigner(this.getCredential(), {
+            ...this.config,
+            signatureFormat: format,
+        });
+    }
+    /**
+     * Internal method to sign a challenge with the passkey.
+     *
+     * @param challenge - The Base64URL-encoded challenge
+     * @returns The encoded signature
+     */
+    async signWithPasskey(challenge) {
+        try {
+            // Create assertion options
+            const options = createAssertionOptions(challenge, this.config.rpId, this.credentialId, this.config.userVerification, this.config.timeout);
+            // Call native passkey assertion
+            const result = await Passkey.get(options);
+            // Parse the assertion response
+            const webAuthnSignature = parseWebAuthnAssertion({
+                authenticatorData: result.response.authenticatorData,
+                clientDataJSON: result.response.clientDataJSON,
+                signature: result.response.signature,
+            });
+            // Encode the signature according to the configured format
+            return encodeWebAuthnSignature(webAuthnSignature, this.config.signatureFormat);
+        }
+        catch (error) {
+            if (error instanceof SignatureError) {
+                throw new PasskeySignerError(`Signature parsing failed: ${error.message}`, error);
+            }
+            throw new PasskeySignerError(`Passkey signing failed: ${error instanceof Error ? error.message : "Unknown error"}`, error);
+        }
+    }
+    /**
+     * Converts a hex string to Uint8Array.
+     */
+    hexToBytes(hex) {
+        const cleanHex = hex.startsWith("0x") ? hex.slice(2) : hex;
+        const bytes = new Uint8Array(cleanHex.length / 2);
+        for (let i = 0; i < cleanHex.length; i += 2) {
+            bytes[i / 2] = parseInt(cleanHex.slice(i, i + 2), 16);
+        }
+        return bytes;
+    }
+}
+/**
+ * Type guard to check if a value is a valid PasskeyCredential.
+ */
+export function isPasskeyCredential(value) {
+    if (typeof value !== "object" || value === null) {
+        return false;
+    }
+    const obj = value;
+    return (typeof obj.credentialId === "string" &&
+        typeof obj.credentialIdHex === "string" &&
+        obj.credentialIdHex.startsWith("0x") &&
+        typeof obj.publicKey === "object" &&
+        obj.publicKey !== null &&
+        typeof obj.publicKey.x === "string" &&
+        typeof obj.publicKey.y === "string" &&
+        typeof obj.publicKeyHex === "string" &&
+        obj.publicKeyHex.startsWith("0x"));
+}
+/**
+ * Serializes a PasskeyCredential to a JSON-safe object.
+ */
+export function serializeCredential(credential) {
+    return {
+        credentialId: credential.credentialId,
+        credentialIdHex: credential.credentialIdHex,
+        publicKeyX: credential.publicKey.x,
+        publicKeyY: credential.publicKey.y,
+        publicKeyHex: credential.publicKeyHex,
+    };
+}
+/**
+ * Deserializes a PasskeyCredential from a JSON object.
+ */
+export function deserializeCredential(data) {
+    if (!data.credentialId ||
+        !data.credentialIdHex ||
+        !data.publicKeyX ||
+        !data.publicKeyY ||
+        !data.publicKeyHex) {
+        throw new PasskeySignerError("Invalid serialized credential data");
+    }
+    return {
+        credentialId: data.credentialId,
+        credentialIdHex: data.credentialIdHex,
+        publicKey: {
+            x: data.publicKeyX,
+            y: data.publicKeyY,
+        },
+        publicKeyHex: data.publicKeyHex,
+    };
+}
+//# sourceMappingURL=signer.js.map

package/dist/signer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signer.js","sourceRoot":"","sources":["../src/signer.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAC/C,OAAO,EAKL,aAAa,EACb,SAAS,GACV,MAAM,MAAM,CAAC;AAUd,OAAO,EACL,+BAA+B,EAC/B,2BAA2B,EAC3B,oBAAoB,EACpB,cAAc,GACf,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AACxE,OAAO,EACL,sBAAsB,EACtB,uBAAuB,EACvB,sBAAsB,EACtB,cAAc,GACf,MAAM,oBAAoB,CAAC;AAE5B;;GAEG;AACH,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAGzB;IAFlB,YACE,OAAe,EACC,KAAe;QAE/B,KAAK,CAAC,OAAO,CAAC,CAAC;QAFC,UAAK,GAAL,KAAK,CAAU;QAG/B,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;IACnC,CAAC;CACF;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,MAAM,OAAO,wBAAwB;IACnB,MAAM,GAAG,SAAkB,CAAC;IAE5C;;OAEG;IACa,YAAY,CAAS;IAErC;;OAEG;IACa,eAAe,CAAM;IAErC;;OAEG;IACa,oBAAoB,CAAgB;IAEpD;;OAEG;IACa,SAAS,CAAM;IAE/B;;OAEG;IACc,MAAM,CAAiC;IAExD;;;;;;OAMG;IACH,YACE,UAA6B,EAC7B,MAAsC;QAEtC,IAAI,CAAC,YAAY,GAAG,UAAU,CAAC,YAAY,CAAC;QAC5C,IAAI,CAAC,eAAe,GAAG,UAAU,CAAC,eAAe,CAAC;QAClD,IAAI,CAAC,oBAAoB,GAAG,UAAU,CAAC,SAAS,CAAC;QACjD,IAAI,CAAC,SAAS,GAAG,UAAU,CAAC,YAAY,CAAC;QACzC,IAAI,CAAC,MAAM,GAAG;YACZ,GAAG,MAAM;YACT,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,KAAK;YAChC,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,IAAI,UAAU;YACvD,eAAe,EAAE,MAAM,CAAC,eAAe,IAAI,QAAQ;SACpD,CAAC;IACJ,CAAC;IAED;;;;;;;;;;;;;OAaG;IACI,MAAM,CAAC,KAAK,CAAC,QAAQ,CAC1B,QAAgB,EAChB,MAAsC;QAEtC,4BAA4B;QAC5B,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;QAClC,MAAM,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QAC/B,MAAM,SAAS,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAE3C,8BAA8B;QAC9B,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;QACrC,MAAM,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;QAClC,MAAM,YAAY,GAAG,gBAAgB,CAAC,SAAS,CAAC,CAAC;QAEjD,IAAI,CAAC;YACH,mCAAmC;YACnC,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,MAAM,CAAC;gBAClC,SAAS,EAAE,YAAY;gBACvB,EAAE,EAAE;oBACF,EAAE,EAAE,MAAM,CAAC,IAAI;oBACf,IAAI,EAAE,MAAM,CAAC,MAAM;iBACpB;gBACD,IAAI,EAAE;oBACJ,EAAE,EAAE,SAAS;oBACb,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,QAAQ;iBACtB;gBACD,gBAAgB,EAAE;oBAChB;wBACE,IAAI,EAAE,YAAY;wBAClB,GAAG,EAAE,CAAC,CAAC,EAAE,6BAA6B;qBACvC;iBACF;gBACD,sBAAsB,EAAE;oBACtB,uBAAuB,EAAE,UAAU;oBACnC,WAAW,EAAE,UAAU;oBACvB,kBAAkB,EAAE,IAAI;oBACxB,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,IAAI,UAAU;iBACxD;gBACD,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,KAAK;gBAChC,WAAW,EAAE,MAAM;aACpB,CAAC,CAAC;YAEH,4BAA4B;YAC5B,MAAM,YAAY,GAAG,MAAM,CAAC,EAAE,CAAC;YAC/B,MAAM,eAAe,GAAG,cAAc,CAAC,YAAY,CAAC,CAAC;YAErD,kDAAkD;YAClD,6DAA6D;YAC7D,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,CAAC;gBACvC,MAAM,IAAI,kBAAkB,CAC1B,iDAAiD,CAClD,CAAC;YACJ,CAAC;YAED,MAAM,EAAE,SAAS,EAAE,GAAG,+BAA+B,CACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,CAClC,CAAC;YAEF,0BAA0B;YAC1B,IAAI,CAAC,oBAAoB,CAAC,SAAS,CAAC,EAAE,CAAC;gBACrC,MAAM,IAAI,kBAAkB,CAC1B,+CAA+C,CAChD,CAAC;YACJ,CAAC;YAED,+CAA+C;YAC/C,MAAM,YAAY,GAAG,2BAA2B,CAAC,SAAS,CAAC,CAAC;YAE5D,MAAM,UAAU,GAAsB;gBACpC,YAAY;gBACZ,eAAe;gBACf,SAAS;gBACT,YAAY;aACb,CAAC;YAEF,OAAO,IAAI,wBAAwB,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;QAC1D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,cAAc,EAAE,CAAC;gBACpC,MAAM,IAAI,kBAAkB,CAC1B,gCAAgC,KAAK,CAAC,OAAO,EAAE,EAC/C,KAAK,CACN,CAAC;YACJ,CAAC;YACD,IAAI,KAAK,YAAY,kBAAkB,EAAE,CAAC;gBACxC,MAAM,KAAK,CAAC;YACd,CAAC;YACD,MAAM,IAAI,kBAAkB,CAC1B,gCAAgC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EAC1F,KAAK,CACN,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;OAQG;IACI,MAAM,CAAC,cAAc,CAC1B,UAA6B,EAC7B,MAAsC;QAEtC,IAAI,CAAC,oBAAoB,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAChD,MAAM,IAAI,kBAAkB,CAAC,kCAAkC,CAAC,CAAC;QACnE,CAAC;QAED,OAAO,IAAI,wBAAwB,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;IAC1D,CAAC;IAED;;;;;;;;;OASG;IACI,KAAK,CAAC,WAAW,CAAC,EACvB,OAAO,GAGR;QACC,2BAA2B;QAC3B,IAAI,YAAwB,CAAC;QAE7B,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAChC,gDAAgD;YAChD,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;YAClC,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;YACzC,MAAM,MAAM,GAAG,iCAAiC,QAAQ,CAAC,MAAM,EAAE,CAAC;YAClE,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAE3C,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,WAAW,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;YACtE,QAAQ,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;YAC7B,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,WAAW,CAAC,MAAM,CAAC,CAAC;YAE3C,4BAA4B;YAC5B,MAAM,IAAI,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;YACjC,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QACvC,CAAC;aAAM,IAAI,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,8DAA8D;YAC9D,IAAI,OAAO,OAAO,CAAC,GAAG,KAAK,QAAQ,EAAE,CAAC;gBACpC,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,GAAU,CAAC,CAAC;YACrD,CAAC;iBAAM,CAAC;gBACN,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC;YAC7B,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,kBAAkB,CAAC,wBAAwB,CAAC,CAAC;QACzD,CAAC;QAED,0CAA0C;QAC1C,MAAM,SAAS,GAAG,gBAAgB,CAAC,YAAY,CAAC,CAAC;QAEjD,OAAO,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;IACzC,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,aAAa,CAGxB,SAAwD;QACxD,2CAA2C;QAC3C,MAAM,IAAI,GAAG,aAAa,CAAC,SAAS,CAAC,CAAC;QAEtC,sCAAsC;QACtC,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAC3C,MAAM,SAAS,GAAG,gBAAgB,CAAC,YAAY,CAAC,CAAC;QAEjD,OAAO,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;IACzC,CAAC;IAED;;;;;;;;OAQG;IACI,KAAK,CAAC,UAAU;QACrB,sDAAsD;QACtD,qDAAqD;QACrD,MAAM,IAAI,GAAG,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACvC,yBAAyB;QACzB,OAAO,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,EAAa,CAAC;IAC3C,CAAC;IAED;;OAEG;IACI,aAAa;QAClB,OAAO,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC;IACrC,CAAC;IAED;;OAEG;IACI,aAAa;QAClB,OAAO,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC;IACrC,CAAC;IAED;;OAEG;IACI,aAAa;QAClB,OAAO;YACL,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,SAAS,EAAE,IAAI,CAAC,oBAAoB;YACpC,YAAY,EAAE,IAAI,CAAC,SAAS;SAC7B,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACI,mBAAmB,CACxB,MAA+B;QAE/B,OAAO,IAAI,wBAAwB,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE;YACxD,GAAG,IAAI,CAAC,MAAM;YACd,eAAe,EAAE,MAAM;SACxB,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACK,KAAK,CAAC,eAAe,CAAC,SAAiB;QAC7C,IAAI,CAAC;YACH,2BAA2B;YAC3B,MAAM,OAAO,GAAG,sBAAsB,CACpC,SAAS,EACT,IAAI,CAAC,MAAM,CAAC,IAAI,EAChB,IAAI,CAAC,YAAY,EACjB,IAAI,CAAC,MAAM,CAAC,gBAAgB,EAC5B,IAAI,CAAC,MAAM,CAAC,OAAO,CACpB,CAAC;YAEF,gCAAgC;YAChC,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAE1C,+BAA+B;YAC/B,MAAM,iBAAiB,GAAG,sBAAsB,CAAC;gBAC/C,iBAAiB,EAAE,MAAM,CAAC,QAAQ,CAAC,iBAAiB;gBACpD,cAAc,EAAE,MAAM,CAAC,QAAQ,CAAC,cAAc;gBAC9C,SAAS,EAAE,MAAM,CAAC,QAAQ,CAAC,SAAS;aACrC,CAAC,CAAC;YAEH,0DAA0D;YAC1D,OAAO,uBAAuB,CAC5B,iBAAiB,EACjB,IAAI,CAAC,MAAM,CAAC,eAAe,CAC5B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,cAAc,EAAE,CAAC;gBACpC,MAAM,IAAI,kBAAkB,CAC1B,6BAA6B,KAAK,CAAC,OAAO,EAAE,EAC5C,KAAK,CACN,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,kBAAkB,CAC1B,2BAA2B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EACrF,KAAK,CACN,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACK,UAAU,CAAC,GAAQ;QACzB,MAAM,QAAQ,GAAG,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;QAC3D,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAClD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5C,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACxD,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CACjC,KAAc;IAEd,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;QAChD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,GAAG,GAAG,KAAgC,CAAC;IAE7C,OAAO,CACL,OAAO,GAAG,CAAC,YAAY,KAAK,QAAQ;QACpC,OAAO,GAAG,CAAC,eAAe,KAAK,QAAQ;QACvC,GAAG,CAAC,eAAe,CAAC,UAAU,CAAC,IAAI,CAAC;QACpC,OAAO,GAAG,CAAC,SAAS,KAAK,QAAQ;QACjC,GAAG,CAAC,SAAS,KAAK,IAAI;QACtB,OAAQ,GAAG,CAAC,SAAqC,CAAC,CAAC,KAAK,QAAQ;QAChE,OAAQ,GAAG,CAAC,SAAqC,CAAC,CAAC,KAAK,QAAQ;QAChE,OAAO,GAAG,CAAC,YAAY,KAAK,QAAQ;QACpC,GAAG,CAAC,YAAY,CAAC,UAAU,CAAC,IAAI,CAAC,CAClC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CACjC,UAA6B;IAE7B,OAAO;QACL,YAAY,EAAE,UAAU,CAAC,YAAY;QACrC,eAAe,EAAE,UAAU,CAAC,eAAe;QAC3C,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC;QAClC,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC;QAClC,YAAY,EAAE,UAAU,CAAC,YAAY;KACtC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CACnC,IAA4B;IAE5B,IACE,CAAC,IAAI,CAAC,YAAY;QAClB,CAAC,IAAI,CAAC,eAAe;QACrB,CAAC,IAAI,CAAC,UAAU;QAChB,CAAC,IAAI,CAAC,UAAU;QAChB,CAAC,IAAI,CAAC,YAAY,EAClB,CAAC;QACD,MAAM,IAAI,kBAAkB,CAAC,oCAAoC,CAAC,CAAC;IACrE,CAAC;IAED,OAAO;QACL,YAAY,EAAE,IAAI,CAAC,YAAY;QAC/B,eAAe,EAAE,IAAI,CAAC,eAAsB;QAC5C,SAAS,EAAE;YACT,CAAC,EAAE,IAAI,CAAC,UAAiB;YACzB,CAAC,EAAE,IAAI,CAAC,UAAiB;SAC1B;QACD,YAAY,EAAE,IAAI,CAAC,YAAmB;KACvC,CAAC;AACJ,CAAC"}

package/dist/types/index.d.ts

@@ -0,0 +1,117 @@
+import type { Address, Hex, TypedData, TypedDataDefinition } from "viem";
+/**
+ * Represents the source of a SmartAccountSigner - either a custom source or a known type.
+ */
+export type SmartAccountSignerSource = "passkey" | "custom";
+/**
+ * Interface for signing messages and typed data for Smart Accounts.
+ * Compatible with permissionless.js and viem account abstraction.
+ */
+export interface SmartAccountSigner<TSource extends SmartAccountSignerSource = SmartAccountSignerSource> {
+    /** The type/source of the signer */
+    readonly source: TSource;
+    /** The public key associated with this signer (for passkeys, this is the encoded P256 key) */
+    readonly publicKey: Hex;
+    /**
+     * Signs a message and returns the signature.
+     * For passkeys, this triggers the biometric prompt.
+     */
+    signMessage: (params: {
+        message: SignableMessage;
+    }) => Promise<Hex>;
+    /**
+     * Signs typed data according to EIP-712 and returns the signature.
+     * For passkeys, this triggers the biometric prompt.
+     */
+    signTypedData: <const TTypedData extends TypedData | Record<string, unknown>, TPrimaryType extends keyof TTypedData | "EIP712Domain" = keyof TTypedData>(typedData: TypedDataDefinition<TTypedData, TPrimaryType>) => Promise<Hex>;
+    /**
+     * Returns the address derived from or associated with this signer.
+     * For passkeys with P256 keys, this may be a derived address or the account address.
+     */
+    getAddress: () => Promise<Address>;
+}
+/**
+ * Message types that can be signed.
+ * Matches viem's SignableMessage type.
+ */
+export type SignableMessage = string | {
+    raw: Hex | Uint8Array;
+};
+/**
+ * Configuration for WebAuthn/Passkey operations.
+ */
+export interface PasskeyConfig {
+    /** The Relying Party ID (usually the domain) */
+    rpId: string;
+    /** The Relying Party name for display */
+    rpName: string;
+    /** Challenge timeout in milliseconds (default: 60000) */
+    timeout?: number;
+    /** User verification requirement */
+    userVerification?: "required" | "preferred" | "discouraged";
+}
+/**
+ * Represents the parsed public key coordinates from a P256/secp256r1 key.
+ */
+export interface P256PublicKey {
+    /** X coordinate of the public key (32 bytes) */
+    x: Hex;
+    /** Y coordinate of the public key (32 bytes) */
+    y: Hex;
+}
+/**
+ * Credential data stored after passkey registration.
+ */
+export interface PasskeyCredential {
+    /** The credential ID in base64url format */
+    credentialId: string;
+    /** The raw credential ID as hex */
+    credentialIdHex: Hex;
+    /** The public key coordinates */
+    publicKey: P256PublicKey;
+    /** The encoded public key for the signer interface */
+    publicKeyHex: Hex;
+}
+/**
+ * WebAuthn authenticator data structure.
+ */
+export interface AuthenticatorData {
+    /** RP ID hash (32 bytes) */
+    rpIdHash: Hex;
+    /** Flags byte */
+    flags: number;
+    /** Sign counter */
+    signCount: number;
+    /** Raw authenticator data */
+    raw: Hex;
+}
+/**
+ * Parsed WebAuthn assertion response for signing.
+ */
+export interface WebAuthnSignature {
+    /** Raw authenticator data */
+    authenticatorData: Hex;
+    /** Client data JSON string */
+    clientDataJSON: string;
+    /** The r component of the signature (32 bytes) */
+    r: Hex;
+    /** The s component of the signature (32 bytes) */
+    s: Hex;
+    /** Challenge location in clientDataJSON */
+    challengeLocation: number;
+    /** Response type location in clientDataJSON */
+    responseTypeLocation: number;
+}
+/**
+ * Options for signature encoding format.
+ * Different smart contract implementations expect different formats.
+ */
+export type SignatureEncodingFormat = "kernel" | "rhinestone" | "raw";
+/**
+ * Configuration for the ReactNativePasskeySigner.
+ */
+export interface ReactNativePasskeySignerConfig extends PasskeyConfig {
+    /** The format to use when encoding signatures */
+    signatureFormat?: SignatureEncodingFormat;
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,GAAG,EAAE,SAAS,EAAE,mBAAmB,EAAE,MAAM,MAAM,CAAC;AAEzE;;GAEG;AACH,MAAM,MAAM,wBAAwB,GAAG,SAAS,GAAG,QAAQ,CAAC;AAE5D;;;GAGG;AACH,MAAM,WAAW,kBAAkB,CACjC,OAAO,SAAS,wBAAwB,GAAG,wBAAwB;IAEnE,oCAAoC;IACpC,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC;IAEzB,8FAA8F;IAC9F,QAAQ,CAAC,SAAS,EAAE,GAAG,CAAC;IAExB;;;OAGG;IACH,WAAW,EAAE,CAAC,MAAM,EAAE;QAAE,OAAO,EAAE,eAAe,CAAA;KAAE,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;IAEpE;;;OAGG;IACH,aAAa,EAAE,CACb,KAAK,CAAC,UAAU,SAAS,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC5D,YAAY,SAAS,MAAM,UAAU,GAAG,cAAc,GAAG,MAAM,UAAU,EAEzE,SAAS,EAAE,mBAAmB,CAAC,UAAU,EAAE,YAAY,CAAC,KACrD,OAAO,CAAC,GAAG,CAAC,CAAC;IAElB;;;OAGG;IACH,UAAU,EAAE,MAAM,OAAO,CAAC,OAAO,CAAC,CAAC;CACpC;AAED;;;GAGG;AACH,MAAM,MAAM,eAAe,GACvB,MAAM,GACN;IACE,GAAG,EAAE,GAAG,GAAG,UAAU,CAAC;CACvB,CAAC;AAEN;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,gDAAgD;IAChD,IAAI,EAAE,MAAM,CAAC;IACb,yCAAyC;IACzC,MAAM,EAAE,MAAM,CAAC;IACf,yDAAyD;IACzD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oCAAoC;IACpC,gBAAgB,CAAC,EAAE,UAAU,GAAG,WAAW,GAAG,aAAa,CAAC;CAC7D;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,gDAAgD;IAChD,CAAC,EAAE,GAAG,CAAC;IACP,gDAAgD;IAChD,CAAC,EAAE,GAAG,CAAC;CACR;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,4CAA4C;IAC5C,YAAY,EAAE,MAAM,CAAC;IACrB,mCAAmC;IACnC,eAAe,EAAE,GAAG,CAAC;IACrB,iCAAiC;IACjC,SAAS,EAAE,aAAa,CAAC;IACzB,sDAAsD;IACtD,YAAY,EAAE,GAAG,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,4BAA4B;IAC5B,QAAQ,EAAE,GAAG,CAAC;IACd,iBAAiB;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,mBAAmB;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,6BAA6B;IAC7B,GAAG,EAAE,GAAG,CAAC;CACV;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,6BAA6B;IAC7B,iBAAiB,EAAE,GAAG,CAAC;IACvB,8BAA8B;IAC9B,cAAc,EAAE,MAAM,CAAC;IACvB,kDAAkD;IAClD,CAAC,EAAE,GAAG,CAAC;IACP,kDAAkD;IAClD,CAAC,EAAE,GAAG,CAAC;IACP,2CAA2C;IAC3C,iBAAiB,EAAE,MAAM,CAAC;IAC1B,+CAA+C;IAC/C,oBAAoB,EAAE,MAAM,CAAC;CAC9B;AAED;;;GAGG;AACH,MAAM,MAAM,uBAAuB,GAC/B,QAAQ,GACR,YAAY,GACZ,KAAK,CAAC;AAEV;;GAEG;AACH,MAAM,WAAW,8BAA+B,SAAQ,aAAa;IACnE,iDAAiD;IACjD,eAAe,CAAC,EAAE,uBAAuB,CAAC;CAC3C"}

package/dist/types/index.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":""}

package/dist/utils/base64url.d.ts

@@ -0,0 +1,75 @@
+import { type Hex } from "viem";
+/**
+ * Converts a Base64URL encoded string to a Uint8Array.
+ * Base64URL uses - instead of + and _ instead of /, with no padding.
+ *
+ * @param base64url - The Base64URL encoded string
+ * @returns The decoded bytes as Uint8Array
+ */
+export declare function base64UrlToBytes(base64url: string): Uint8Array;
+/**
+ * Converts a Uint8Array to a Base64URL encoded string.
+ *
+ * @param bytes - The bytes to encode
+ * @returns The Base64URL encoded string (no padding)
+ */
+export declare function bytesToBase64Url(bytes: Uint8Array): string;
+/**
+ * Converts a Base64URL encoded string to a Hex string.
+ *
+ * @param base64url - The Base64URL encoded string
+ * @returns The hex representation with 0x prefix
+ */
+export declare function base64UrlToHex(base64url: string): Hex;
+/**
+ * Converts a Hex string to a Base64URL encoded string.
+ *
+ * @param hex - The hex string (with or without 0x prefix)
+ * @returns The Base64URL encoded string
+ */
+export declare function hexToBase64Url(hex: Hex): string;
+/**
+ * Converts a Uint8Array to a Hex string.
+ *
+ * @param bytes - The bytes to convert
+ * @returns The hex representation with 0x prefix
+ */
+export declare function bytesToHex(bytes: Uint8Array): Hex;
+/**
+ * Converts a Hex string to a Uint8Array.
+ *
+ * @param hex - The hex string (with or without 0x prefix)
+ * @returns The bytes as Uint8Array
+ */
+export declare function hexToBytes(hex: Hex): Uint8Array;
+/**
+ * Converts a UTF-8 string to a Base64URL encoded string.
+ *
+ * @param str - The UTF-8 string
+ * @returns The Base64URL encoded string
+ */
+export declare function stringToBase64Url(str: string): string;
+/**
+ * Converts a Base64URL encoded string to a UTF-8 string.
+ *
+ * @param base64url - The Base64URL encoded string
+ * @returns The decoded UTF-8 string
+ */
+export declare function base64UrlToString(base64url: string): string;
+/**
+ * Pads a hex value to ensure it has the specified byte length.
+ * Useful for ensuring coordinates are 32 bytes.
+ *
+ * @param hex - The hex string to pad
+ * @param byteLength - The desired byte length (default: 32)
+ * @returns The padded hex string with 0x prefix
+ */
+export declare function padHex(hex: Hex, byteLength?: number): Hex;
+/**
+ * Concatenates multiple Hex values into a single Hex value.
+ *
+ * @param hexValues - The hex values to concatenate
+ * @returns The concatenated hex string with 0x prefix
+ */
+export declare function concatHex(...hexValues: Hex[]): Hex;
+//# sourceMappingURL=base64url.d.ts.map

package/dist/utils/base64url.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base64url.d.ts","sourceRoot":"","sources":["../../src/utils/base64url.ts"],"names":[],"mappings":"AAAA,OAAO,EAAS,KAAK,GAAG,EAAE,MAAM,MAAM,CAAC;AAEvC;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,SAAS,EAAE,MAAM,GAAG,UAAU,CAoB9D;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAY1D;AAED;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,GAAG,CAGrD;AAED;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,GAAG,EAAE,GAAG,GAAG,MAAM,CAW/C;AAED;;;;;GAKG;AACH,wBAAgB,UAAU,CAAC,KAAK,EAAE,UAAU,GAAG,GAAG,CAEjD;AAED;;;;;GAKG;AACH,wBAAgB,UAAU,CAAC,GAAG,EAAE,GAAG,GAAG,UAAU,CAO/C;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAIrD;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,CAI3D;AAED;;;;;;;GAOG;AACH,wBAAgB,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,UAAU,SAAK,GAAG,GAAG,CASrD;AAED;;;;;GAKG;AACH,wBAAgB,SAAS,CAAC,GAAG,SAAS,EAAE,GAAG,EAAE,GAAG,GAAG,CAKlD"}