@metamask/ramps-controller 8.0.0 → 9.0.0

package/dist/RampsController.mjs

@@ -9,7 +9,7 @@ var __classPrivateFieldSet = (this && this.__classPrivateFieldSet) || function (
     if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot write private member to an object whose class did not declare it");
     return (kind === "a" ? f.call(receiver, value) : f ? f.value = value : state.set(receiver, value)), value;
 };
-var _RampsController_instances, _RampsController_requestCacheTTL, _RampsController_requestCacheMaxSize, _RampsController_pendingRequests, _RampsController_pendingResourceCount, _RampsController_quotePollingInterval, _RampsController_quotePollingOptions, _RampsController_clearPendingResourceCountForDependentResources, _RampsController_removeRequestState, _RampsController_cleanupState, _RampsController_fireAndForget, _RampsController_restartPollingIfActive, _RampsController_updateResourceField, _RampsController_setResourceLoading, _RampsController_setResourceError, _RampsController_updateRequestState;
+var _RampsController_instances, _RampsController_requestCacheTTL, _RampsController_requestCacheMaxSize, _RampsController_pendingRequests, _RampsController_pendingResourceCount, _RampsController_quotePollingInterval, _RampsController_quotePollingOptions, _RampsController_clearPendingResourceCountForDependentResources, _RampsController_abortDependentRequests, _RampsController_mutateRequests, _RampsController_removeRequestState, _RampsController_cleanupState, _RampsController_fireAndForget, _RampsController_restartPollingIfActive, _RampsController_requireRegion, _RampsController_isRegionCurrent, _RampsController_isTokenCurrent, _RampsController_isProviderCurrent, _RampsController_updateResourceField, _RampsController_setResourceLoading, _RampsController_setResourceError, _RampsController_updateRequestState, _RampsController_syncWidgetUrl, _RampsController_syncTransakAuthOnError;
 import { BaseController } from "@metamask/base-controller";
 import { DEFAULT_REQUEST_CACHE_TTL, DEFAULT_REQUEST_CACHE_MAX_SIZE, createCacheKey, isCacheExpired, createLoadingState, createSuccessState, createErrorState, RequestStatus } from "./RequestCache.mjs";
 // === GENERAL ===
@@ -32,6 +32,32 @@ export const RAMPS_CONTROLLER_REQUIRED_SERVICE_ACTIONS = [
     'RampsService:getPaymentMethods',
     'RampsService:getQuotes',
     'RampsService:getBuyWidgetUrl',
+    'RampsService:getOrder',
+    'RampsService:getOrderFromCallback',
+    'TransakService:setApiKey',
+    'TransakService:setAccessToken',
+    'TransakService:clearAccessToken',
+    'TransakService:sendUserOtp',
+    'TransakService:verifyUserOtp',
+    'TransakService:logout',
+    'TransakService:getUserDetails',
+    'TransakService:getBuyQuote',
+    'TransakService:getKycRequirement',
+    'TransakService:getAdditionalRequirements',
+    'TransakService:createOrder',
+    'TransakService:getOrder',
+    'TransakService:getUserLimits',
+    'TransakService:requestOtt',
+    'TransakService:generatePaymentWidgetUrl',
+    'TransakService:submitPurposeOfUsageForm',
+    'TransakService:patchUser',
+    'TransakService:submitSsnDetails',
+    'TransakService:confirmPayment',
+    'TransakService:getTranslation',
+    'TransakService:getIdProofStatus',
+    'TransakService:cancelOrder',
+    'TransakService:cancelAllActiveOrders',
+    'TransakService:getActiveOrders',
 ];
 /**
  * Default TTL for quotes requests (15 seconds).
@@ -78,12 +104,24 @@ const rampsControllerMetadata = {
         includeInStateLogs: false,
         usedInUi: true,
     },
+    widgetUrl: {
+        persist: false,
+        includeInDebugSnapshot: true,
+        includeInStateLogs: false,
+        usedInUi: true,
+    },
     requests: {
         persist: false,
         includeInDebugSnapshot: true,
         includeInStateLogs: false,
         usedInUi: true,
     },
+    nativeProviders: {
+        persist: false,
+        includeInDebugSnapshot: true,
+        includeInStateLogs: false,
+        usedInUi: true,
+    },
 };
 /**
  * Creates a default resource state object.
@@ -118,9 +156,46 @@ export function getDefaultRampsControllerState() {
         tokens: createDefaultResourceState(null, null),
         paymentMethods: createDefaultResourceState([], null),
         quotes: createDefaultResourceState(null, null),
+        widgetUrl: createDefaultResourceState(null),
         requests: {},
+        nativeProviders: {
+            transak: {
+                isAuthenticated: false,
+                userDetails: createDefaultResourceState(null),
+                buyQuote: createDefaultResourceState(null),
+                kycRequirement: createDefaultResourceState(null),
+            },
+        },
     };
 }
+const DEPENDENT_RESOURCE_KEYS = [
+    'providers',
+    'tokens',
+    'paymentMethods',
+    'quotes',
+];
+const DEPENDENT_RESOURCE_KEYS_SET = new Set(DEPENDENT_RESOURCE_KEYS);
+function resetResource(state, resourceType, defaultResource) {
+    const def = defaultResource ?? getDefaultRampsControllerState()[resourceType];
+    const resource = state[resourceType];
+    resource.data = def.data;
+    resource.selected = def.selected;
+    resource.isLoading = def.isLoading;
+    resource.error = def.error;
+}
+/**
+ * Resets the widgetUrl resource to its default state.
+ * Mutates state in place; use from within controller update() for atomic updates.
+ *
+ * @param state - The state object to mutate.
+ */
+function resetWidgetUrl(state) {
+    const def = getDefaultRampsControllerState().widgetUrl;
+    state.widgetUrl.data = def.data;
+    state.widgetUrl.selected = def.selected;
+    state.widgetUrl.isLoading = def.isLoading;
+    state.widgetUrl.error = def.error;
+}
 /**
  * Resets region-dependent resources (userRegion, providers, tokens, paymentMethods, quotes).
  * Mutates state in place; use from within controller update() for atomic updates.
@@ -133,22 +208,11 @@ function resetDependentResources(state, options) {
     if (options?.clearUserRegionData) {
         state.userRegion = null;
     }
-    state.providers.selected = null;
-    state.providers.data = [];
-    state.providers.isLoading = false;
-    state.providers.error = null;
-    state.tokens.selected = null;
-    state.tokens.data = null;
-    state.tokens.isLoading = false;
-    state.tokens.error = null;
-    state.paymentMethods.data = [];
-    state.paymentMethods.selected = null;
-    state.paymentMethods.isLoading = false;
-    state.paymentMethods.error = null;
-    state.quotes.data = null;
-    state.quotes.selected = null;
-    state.quotes.isLoading = false;
-    state.quotes.error = null;
+    const defaultState = getDefaultRampsControllerState();
+    for (const key of DEPENDENT_RESOURCE_KEYS) {
+        resetResource(state, key, defaultState[key]);
+    }
+    resetWidgetUrl(state);
 }
 // === HELPER FUNCTIONS ===
 /**
@@ -272,31 +336,49 @@ export class RampsController extends BaseController {
         __classPrivateFieldSet(this, _RampsController_requestCacheMaxSize, requestCacheMaxSize, "f");
     }
     /**
-     * Executes a request with caching and deduplication.
+     * Executes a request with caching, deduplication, and at most one in-flight
+     * request per resource type.
      *
-     * If a request with the same cache key is already in flight, returns the
-     * existing promise. If valid cached data exists, returns it without making
-     * a new request.
+     * 1. **Same cache key in flight** – If a request with this cache key is
+     *    already pending, returns that promise (deduplication; no second request).
      *
-     * @param cacheKey - Unique identifier for this request.
-     * @param fetcher - Function that performs the actual fetch. Receives an AbortSignal.
-     * @param options - Options for cache behavior.
-     * @returns The result of the request.
+     * 2. **Cache hit** – If valid, non-expired data exists in state.requests for
+     *    this key and forceRefresh is not set, returns that data without fetching.
+     *
+     * 3. **New request** – Creates an AbortController and fires the fetcher.
+     *    If options.resourceType is set, tags the pending request with that
+     *    resource type (so #abortDependentRequests can cancel it on region
+     *    change or cleanup) and ref-counts resource-level loading state.
+     *    On success or error, updates request state and resource error;
+     *    in finally, clears resource loading only if this request was not
+     *    aborted.
+     *
+     * @param cacheKey - Unique identifier for this request (e.g. from createCacheKey).
+     * @param fetcher - Async function that performs the fetch. Receives an AbortSignal
+     *   that is aborted when this request is superseded by another for the same resource.
+     * @param options - Optional forceRefresh, ttl, and resourceType for loading/error state.
+     * @returns The result of the request (from cache, joined promise, or fetcher).
      */
     async executeRequest(cacheKey, fetcher, options) {
+        // Get TTL for verifying cache expiration
         const ttl = options?.ttl ?? __classPrivateFieldGet(this, _RampsController_requestCacheTTL, "f");
-        // Check for existing pending request - join it instead of making a duplicate
+        // DEDUPLICATION:
+        // Check if a request is already in flight for this cache key
+        // If so, return the original promise for that request
         const pending = __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").get(cacheKey);
         if (pending) {
             return pending.promise;
         }
+        // CACHE HIT:
+        // If cache is not expired, return the cached data
         if (!options?.forceRefresh) {
             const cached = this.state.requests[cacheKey];
             if (cached && !isCacheExpired(cached, ttl)) {
                 return cached.data;
             }
         }
-        // Create abort controller for this request
+        // Create a new abort controller for this request
+        // Record the time the request was started
         const abortController = new AbortController();
         const lastFetchedAt = Date.now();
         const { resourceType } = options ?? {};
@@ -315,15 +397,11 @@ export class RampsController extends BaseController {
         const promise = (async () => {
             try {
                 const data = await fetcher(abortController.signal);
-                // Don't update state if aborted
                 if (abortController.signal.aborted) {
                     throw new Error('Request was aborted');
                 }
                 __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_updateRequestState).call(this, cacheKey, createSuccessState(data, lastFetchedAt));
                 if (resourceType) {
-                    // We need the extra logic because there are two situations where we’re allowed to clear the error:
-                    // No callback → always clear
-                    // Callback present → clear only when isResultCurrent() returns true.
                     const isCurrent = !options?.isResultCurrent || options.isResultCurrent();
                     if (isCurrent) {
                         __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_setResourceError).call(this, resourceType, null);
@@ -332,7 +410,6 @@ export class RampsController extends BaseController {
                 return data;
             }
             catch (error) {
-                // Don't update state if aborted
                 if (abortController.signal.aborted) {
                     throw error;
                 }
@@ -347,13 +424,12 @@ export class RampsController extends BaseController {
                 throw error;
             }
             finally {
-                // Only delete if this is still our entry (not replaced by a new request)
-                const currentPending = __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").get(cacheKey);
-                if (currentPending?.abortController === abortController) {
+                if (__classPrivateFieldGet(this, _RampsController_pendingRequests, "f").get(cacheKey)?.abortController ===
+                    abortController) {
                     __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").delete(cacheKey);
                 }
                 // Clear resource-level loading state only when no requests for this resource remain
-                if (resourceType) {
+                if (resourceType && !abortController.signal.aborted) {
                     const count = __classPrivateFieldGet(this, _RampsController_pendingResourceCount, "f").get(resourceType) ?? 0;
                     const next = Math.max(0, count - 1);
                     if (next === 0) {
@@ -366,8 +442,11 @@ export class RampsController extends BaseController {
                 }
             }
         })();
-        // Store pending request for deduplication
-        __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").set(cacheKey, { promise, abortController });
+        __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").set(cacheKey, {
+            promise,
+            abortController,
+            resourceType,
+        });
         return promise;
     }
     /**
@@ -421,9 +500,8 @@ export class RampsController extends BaseController {
                 !this.state.tokens.data ||
                 this.state.providers.data.length === 0;
             if (regionChanged) {
+                __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_abortDependentRequests).call(this);
                 __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_clearPendingResourceCountForDependentResources).call(this);
-            }
-            if (regionChanged) {
                 this.stopQuotePolling();
             }
             this.update((state) => {
@@ -464,15 +542,11 @@ export class RampsController extends BaseController {
             this.stopQuotePolling();
             this.update((state) => {
                 state.providers.selected = null;
-                state.paymentMethods.data = [];
-                state.paymentMethods.selected = null;
+                resetResource(state, 'paymentMethods');
             });
             return;
         }
-        const regionCode = this.state.userRegion?.regionCode;
-        if (!regionCode) {
-            throw new Error('Region is required. Cannot set selected provider without valid region information.');
-        }
+        const regionCode = __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const providers = this.state.providers.data;
         if (!providers || providers.length === 0) {
             throw new Error('Providers not loaded. Cannot set selected provider before providers are fetched.');
@@ -483,9 +557,9 @@ export class RampsController extends BaseController {
         }
         this.update((state) => {
             state.providers.selected = provider;
-            state.paymentMethods.data = [];
-            state.paymentMethods.selected = null;
+            resetResource(state, 'paymentMethods');
             state.quotes.selected = null;
+            resetWidgetUrl(state);
         });
         __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_fireAndForget).call(this, this.getPaymentMethods(regionCode, { provider: provider.id }).then(() => {
             // Restart quote polling after payment methods are fetched
@@ -513,10 +587,7 @@ export class RampsController extends BaseController {
         await this.setUserRegion(regionCode, options);
     }
     hydrateState(options) {
-        const regionCode = this.state.userRegion?.regionCode;
-        if (!regionCode) {
-            throw new Error('Region code is required. Cannot hydrate state without valid region information.');
-        }
+        const regionCode = __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_fireAndForget).call(this, this.getTokens(regionCode, 'buy', options));
         __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_fireAndForget).call(this, this.getProviders(regionCode, options));
     }
@@ -534,7 +605,7 @@ export class RampsController extends BaseController {
             return this.messenger.call('RampsService:getCountries');
         }, { ...options, resourceType: 'countries' });
         this.update((state) => {
-            state.countries.data = countries;
+            state.countries.data = Array.isArray(countries) ? [...countries] : [];
         });
         return countries;
     }
@@ -549,10 +620,7 @@ export class RampsController extends BaseController {
      * @returns The tokens response containing topTokens and allTokens.
      */
     async getTokens(region, action = 'buy', options) {
-        const regionToUse = region ?? this.state.userRegion?.regionCode;
-        if (!regionToUse) {
-            throw new Error('Region is required. Either provide a region parameter or ensure userRegion is set in controller state.');
-        }
+        const regionToUse = region ?? __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const normalizedRegion = regionToUse.toLowerCase().trim();
         const cacheKey = createCacheKey('getTokens', [
             normalizedRegion,
@@ -566,8 +634,7 @@ export class RampsController extends BaseController {
         }, {
             ...options,
             resourceType: 'tokens',
-            isResultCurrent: () => this.state.userRegion?.regionCode === undefined ||
-                this.state.userRegion?.regionCode === normalizedRegion,
+            isResultCurrent: () => __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_isRegionCurrent).call(this, normalizedRegion),
         });
         this.update((state) => {
             const userRegionCode = state.userRegion?.regionCode;
@@ -590,15 +657,11 @@ export class RampsController extends BaseController {
             this.stopQuotePolling();
             this.update((state) => {
                 state.tokens.selected = null;
-                state.paymentMethods.data = [];
-                state.paymentMethods.selected = null;
+                resetResource(state, 'paymentMethods');
             });
             return;
         }
-        const regionCode = this.state.userRegion?.regionCode;
-        if (!regionCode) {
-            throw new Error('Region is required. Cannot set selected token without valid region information.');
-        }
+        const regionCode = __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const tokens = this.state.tokens.data;
         if (!tokens) {
             throw new Error('Tokens not loaded. Cannot set selected token before tokens are fetched.');
@@ -610,9 +673,9 @@ export class RampsController extends BaseController {
         }
         this.update((state) => {
             state.tokens.selected = token;
-            state.paymentMethods.data = [];
-            state.paymentMethods.selected = null;
+            resetResource(state, 'paymentMethods');
             state.quotes.selected = null;
+            resetWidgetUrl(state);
         });
         __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_fireAndForget).call(this, this.getPaymentMethods(regionCode, { assetId: token.assetId }).then(() => {
             __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_restartPollingIfActive).call(this);
@@ -632,10 +695,7 @@ export class RampsController extends BaseController {
      * @returns The providers response containing providers array.
      */
     async getProviders(region, options) {
-        const regionToUse = region ?? this.state.userRegion?.regionCode;
-        if (!regionToUse) {
-            throw new Error('Region is required. Either provide a region parameter or ensure userRegion is set in controller state.');
-        }
+        const regionToUse = region ?? __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const normalizedRegion = regionToUse.toLowerCase().trim();
         const cacheKey = createCacheKey('getProviders', [
             normalizedRegion,
@@ -654,8 +714,7 @@ export class RampsController extends BaseController {
         }, {
             ...options,
             resourceType: 'providers',
-            isResultCurrent: () => this.state.userRegion?.regionCode === undefined ||
-                this.state.userRegion?.regionCode === normalizedRegion,
+            isResultCurrent: () => __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_isRegionCurrent).call(this, normalizedRegion),
         });
         this.update((state) => {
             const userRegionCode = state.userRegion?.regionCode;
@@ -677,13 +736,10 @@ export class RampsController extends BaseController {
      * @returns The payment methods response containing payments array.
      */
     async getPaymentMethods(region, options) {
-        const regionCode = region ?? this.state.userRegion?.regionCode ?? null;
+        const regionCode = region ?? __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const fiatToUse = options?.fiat ?? this.state.userRegion?.country?.currency ?? null;
         const assetIdToUse = options?.assetId ?? this.state.tokens.selected?.assetId ?? '';
         const providerToUse = options?.provider ?? this.state.providers.selected?.id ?? '';
-        if (!regionCode) {
-            throw new Error('Region is required. Either provide a region parameter or ensure userRegion is set in controller state.');
-        }
         if (!fiatToUse) {
             throw new Error('Fiat currency is required. Either provide a fiat parameter or ensure userRegion is set in controller state.');
         }
@@ -706,10 +762,9 @@ export class RampsController extends BaseController {
             ...options,
             resourceType: 'paymentMethods',
             isResultCurrent: () => {
-                const regionMatch = this.state.userRegion?.regionCode === undefined ||
-                    this.state.userRegion?.regionCode === normalizedRegion;
-                const tokenMatch = (this.state.tokens.selected?.assetId ?? '') === assetIdToUse;
-                const providerMatch = (this.state.providers.selected?.id ?? '') === providerToUse;
+                const regionMatch = __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_isRegionCurrent).call(this, normalizedRegion);
+                const tokenMatch = __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_isTokenCurrent).call(this, assetIdToUse);
+                const providerMatch = __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_isProviderCurrent).call(this, providerToUse);
                 return regionMatch && tokenMatch && providerMatch;
             },
         });
@@ -779,7 +834,7 @@ export class RampsController extends BaseController {
      * @returns The quotes response containing success, sorted, error, and customActions.
      */
     async getQuotes(options) {
-        const regionToUse = options.region ?? this.state.userRegion?.regionCode;
+        const regionToUse = options.region ?? __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const fiatToUse = options.fiat ?? this.state.userRegion?.country?.currency;
         const paymentMethodsToUse = options.paymentMethods ??
             this.state.paymentMethods.data.map((pm) => pm.id);
@@ -787,9 +842,6 @@ export class RampsController extends BaseController {
             this.state.providers.data.map((provider) => provider.id);
         const action = options.action ?? 'buy';
         const assetIdToUse = options.assetId ?? this.state.tokens.selected?.assetId;
-        if (!regionToUse) {
-            throw new Error('Region is required. Either provide a region parameter or ensure userRegion is set in controller state.');
-        }
         if (!fiatToUse) {
             throw new Error('Fiat currency is required. Either provide a fiat parameter or ensure userRegion is set in controller state.');
         }
@@ -840,8 +892,7 @@ export class RampsController extends BaseController {
             forceRefresh: options.forceRefresh,
             ttl: options.ttl ?? DEFAULT_QUOTES_TTL,
             resourceType: 'quotes',
-            isResultCurrent: () => this.state.userRegion?.regionCode === undefined ||
-                this.state.userRegion?.regionCode === normalizedRegion,
+            isResultCurrent: () => __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_isRegionCurrent).call(this, normalizedRegion),
         });
         this.update((state) => {
             const userRegionCode = state.userRegion?.regionCode;
@@ -857,21 +908,20 @@ export class RampsController extends BaseController {
      * If the response contains exactly one quote, it is auto-selected.
      * If multiple quotes are returned, the existing selection is preserved if still valid.
      *
+     * Returns early (no-op) if the selected payment method is not yet set,
+     * allowing callers to invoke this before payment-method selection is finalized.
+     *
      * @param options - Parameters for fetching quotes.
      * @param options.walletAddress - The destination wallet address.
      * @param options.amount - The amount (in fiat for buy, crypto for sell).
      * @param options.redirectUrl - Optional redirect URL after order completion.
-     * @throws If required dependencies (region, token, provider, payment method) are not set.
+     * @throws If required dependencies (region, token, provider) are not set.
      */
     startQuotePolling(options) {
-        // Validate required dependencies
-        const regionCode = this.state.userRegion?.regionCode;
+        __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_requireRegion).call(this);
         const token = this.state.tokens.selected;
         const provider = this.state.providers.selected;
         const paymentMethod = this.state.paymentMethods.selected;
-        if (!regionCode) {
-            throw new Error('Region is required. Cannot start quote polling without valid region information.');
-        }
         if (!token) {
             throw new Error('Token is required. Cannot start quote polling without a selected token.');
         }
@@ -896,10 +946,12 @@ export class RampsController extends BaseController {
                 providers: [provider.id],
                 forceRefresh: true,
             }).then((response) => {
+                let newSelectedQuote = null;
                 // Auto-select logic: only when exactly one quote is returned
                 this.update((state) => {
                     if (response.success.length === 1) {
-                        state.quotes.selected = response.success[0];
+                        newSelectedQuote = response.success[0];
+                        state.quotes.selected = newSelectedQuote;
                     }
                     else {
                         // Keep existing selection if still valid, but update with fresh data
@@ -908,11 +960,12 @@ export class RampsController extends BaseController {
                             const freshQuote = response.success.find((quote) => quote.provider === currentSelection.provider &&
                                 quote.quote.paymentMethod ===
                                     currentSelection.quote.paymentMethod);
-                            // Update with fresh quote data, or clear if no longer valid
-                            state.quotes.selected = freshQuote ?? null;
+                            newSelectedQuote = freshQuote ?? null;
+                            state.quotes.selected = newSelectedQuote;
                         }
                     }
                 });
+                __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncWidgetUrl).call(this, newSelectedQuote);
                 return undefined;
             }));
         };
@@ -934,6 +987,7 @@ export class RampsController extends BaseController {
     }
     /**
      * Manually sets the selected quote.
+     * Automatically triggers a widget URL fetch for the new quote.
      *
      * @param quote - The quote to select, or null to clear the selection.
      */
@@ -941,6 +995,7 @@ export class RampsController extends BaseController {
         this.update((state) => {
             state.quotes.selected = quote;
         });
+        __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncWidgetUrl).call(this, quote);
     }
     /**
      * Cleans up controller resources.
@@ -958,6 +1013,8 @@ export class RampsController extends BaseController {
      *
      * @param quote - The quote to fetch the widget URL from.
      * @returns Promise resolving to the widget URL string, or null if not available.
+     * @deprecated Read `state.widgetUrl` instead. The widget URL is now automatically
+     * fetched and stored in state whenever the selected quote changes.
      */
     async getWidgetUrl(quote) {
         const buyUrl = quote.quote?.buyURL;
@@ -968,33 +1025,458 @@ export class RampsController extends BaseController {
             const buyWidget = await this.messenger.call('RampsService:getBuyWidgetUrl', buyUrl);
             return buyWidget.url ?? null;
         }
-        catch (error) {
-            console.error('Error fetching widget URL:', error);
+        catch {
             return null;
         }
     }
+    /**
+     * Fetches an order from the unified V2 API endpoint.
+     * Returns a normalized RampsOrder for all provider types (aggregator and native).
+     *
+     * @param providerCode - The provider code (e.g., "transak", "transak-native", "moonpay").
+     * @param orderCode - The order identifier.
+     * @param wallet - The wallet address associated with the order.
+     * @returns The unified order data.
+     */
+    async getOrder(providerCode, orderCode, wallet) {
+        return await this.messenger.call('RampsService:getOrder', providerCode, orderCode, wallet);
+    }
+    /**
+     * Extracts an order from a provider callback URL.
+     * Sends the callback URL to the V2 backend for provider-specific parsing,
+     * then fetches the full order. This is the V2 equivalent of the aggregator
+     * SDK's `getOrderFromCallback`.
+     *
+     * @param providerCode - The provider code (e.g., "transak", "moonpay").
+     * @param callbackUrl - The full callback URL the provider redirected to.
+     * @param wallet - The wallet address associated with the order.
+     * @returns The unified order data.
+     */
+    async getOrderFromCallback(providerCode, callbackUrl, wallet) {
+        return await this.messenger.call('RampsService:getOrderFromCallback', providerCode, callbackUrl, wallet);
+    }
+    /**
+     * Sets the Transak API key used for all Transak API requests.
+     *
+     * @param apiKey - The Transak API key.
+     */
+    transakSetApiKey(apiKey) {
+        this.messenger.call('TransakService:setApiKey', apiKey);
+    }
+    /**
+     * Sets the Transak access token and marks the user as authenticated.
+     *
+     * @param token - The access token received from Transak auth.
+     */
+    transakSetAccessToken(token) {
+        this.messenger.call('TransakService:setAccessToken', token);
+        this.transakSetAuthenticated(true);
+    }
+    /**
+     * Clears the Transak access token and marks the user as unauthenticated.
+     */
+    transakClearAccessToken() {
+        this.messenger.call('TransakService:clearAccessToken');
+        this.transakSetAuthenticated(false);
+    }
+    /**
+     * Updates the Transak authentication flag in controller state.
+     *
+     * @param isAuthenticated - Whether the user is authenticated with Transak.
+     */
+    transakSetAuthenticated(isAuthenticated) {
+        this.update((state) => {
+            state.nativeProviders.transak.isAuthenticated = isAuthenticated;
+        });
+    }
+    /**
+     * Resets all Transak state back to defaults (unauthenticated, no data).
+     */
+    transakResetState() {
+        this.messenger.call('TransakService:clearAccessToken');
+        this.update((state) => {
+            state.nativeProviders.transak =
+                getDefaultRampsControllerState().nativeProviders.transak;
+        });
+    }
+    /**
+     * Sends a one-time password to the user's email for Transak authentication.
+     *
+     * @param email - The user's email address.
+     * @returns The OTP response containing a state token for verification.
+     */
+    async transakSendUserOtp(email) {
+        return this.messenger.call('TransakService:sendUserOtp', email);
+    }
+    /**
+     * Verifies a one-time password and authenticates the user with Transak.
+     * Updates the controller's authentication state on success.
+     *
+     * @param email - The user's email address.
+     * @param verificationCode - The OTP code entered by the user.
+     * @param stateToken - The state token from the sendUserOtp response.
+     * @returns The access token for subsequent authenticated requests.
+     */
+    async transakVerifyUserOtp(email, verificationCode, stateToken) {
+        const token = await this.messenger.call('TransakService:verifyUserOtp', email, verificationCode, stateToken);
+        this.transakSetAuthenticated(true);
+        return token;
+    }
+    /**
+     * Logs the user out of Transak. Clears authentication state and user details
+     * regardless of whether the API call succeeds or fails.
+     *
+     * @returns A message indicating the logout result.
+     */
+    async transakLogout() {
+        try {
+            const result = await this.messenger.call('TransakService:logout');
+            return result;
+        }
+        finally {
+            this.transakClearAccessToken();
+            this.update((state) => {
+                state.nativeProviders.transak.userDetails.data = null;
+            });
+        }
+    }
+    /**
+     * Fetches the authenticated user's details from Transak.
+     * Updates the userDetails resource state with loading/success/error states.
+     *
+     * @returns The user's profile and KYC details.
+     */
+    async transakGetUserDetails() {
+        this.update((state) => {
+            state.nativeProviders.transak.userDetails.isLoading = true;
+            state.nativeProviders.transak.userDetails.error = null;
+        });
+        try {
+            const details = await this.messenger.call('TransakService:getUserDetails');
+            this.update((state) => {
+                state.nativeProviders.transak.userDetails.data = details;
+                state.nativeProviders.transak.userDetails.isLoading = false;
+            });
+            return details;
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            const errorMessage = error?.message ?? 'Unknown error';
+            this.update((state) => {
+                state.nativeProviders.transak.userDetails.isLoading = false;
+                state.nativeProviders.transak.userDetails.error = errorMessage;
+            });
+            throw error;
+        }
+    }
+    /**
+     * Fetches a buy quote from Transak for the given parameters.
+     * Updates the buyQuote resource state with loading/success/error states.
+     *
+     * @param fiatCurrency - The fiat currency code (e.g., "USD").
+     * @param cryptoCurrency - The cryptocurrency identifier.
+     * @param network - The blockchain network identifier.
+     * @param paymentMethod - The payment method identifier.
+     * @param fiatAmount - The fiat amount as a string.
+     * @returns The buy quote with pricing and fee details.
+     */
+    async transakGetBuyQuote(fiatCurrency, cryptoCurrency, network, paymentMethod, fiatAmount) {
+        this.update((state) => {
+            state.nativeProviders.transak.buyQuote.isLoading = true;
+            state.nativeProviders.transak.buyQuote.error = null;
+        });
+        try {
+            const quote = await this.messenger.call('TransakService:getBuyQuote', fiatCurrency, cryptoCurrency, network, paymentMethod, fiatAmount);
+            this.update((state) => {
+                state.nativeProviders.transak.buyQuote.data = quote;
+                state.nativeProviders.transak.buyQuote.isLoading = false;
+            });
+            return quote;
+        }
+        catch (error) {
+            const errorMessage = error?.message ?? 'Unknown error';
+            this.update((state) => {
+                state.nativeProviders.transak.buyQuote.isLoading = false;
+                state.nativeProviders.transak.buyQuote.error = errorMessage;
+            });
+            throw error;
+        }
+    }
+    /**
+     * Fetches the KYC requirement for a given quote.
+     * Updates the kycRequirement resource state with loading/success/error states.
+     *
+     * @param quoteId - The quote ID to check KYC requirements for.
+     * @returns The KYC requirement status and whether the user can place an order.
+     */
+    async transakGetKycRequirement(quoteId) {
+        this.update((state) => {
+            state.nativeProviders.transak.kycRequirement.isLoading = true;
+            state.nativeProviders.transak.kycRequirement.error = null;
+        });
+        try {
+            const requirement = await this.messenger.call('TransakService:getKycRequirement', quoteId);
+            this.update((state) => {
+                state.nativeProviders.transak.kycRequirement.data = requirement;
+                state.nativeProviders.transak.kycRequirement.isLoading = false;
+            });
+            return requirement;
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            const errorMessage = error?.message ?? 'Unknown error';
+            this.update((state) => {
+                state.nativeProviders.transak.kycRequirement.isLoading = false;
+                state.nativeProviders.transak.kycRequirement.error = errorMessage;
+            });
+            throw error;
+        }
+    }
+    /**
+     * Fetches additional KYC requirements (e.g., ID proof, address proof) for a quote.
+     *
+     * @param quoteId - The quote ID to check additional requirements for.
+     * @returns The list of additional forms required.
+     */
+    async transakGetAdditionalRequirements(quoteId) {
+        try {
+            return await this.messenger.call('TransakService:getAdditionalRequirements', quoteId);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Creates a new order on Transak. If an existing order conflicts (HTTP 409),
+     * active orders are cancelled and the creation is retried.
+     *
+     * @param quoteId - The quote ID to create an order from.
+     * @param walletAddress - The destination wallet address.
+     * @param paymentMethodId - The payment method to use.
+     * @returns The created deposit order.
+     */
+    async transakCreateOrder(quoteId, walletAddress, paymentMethodId) {
+        try {
+            return await this.messenger.call('TransakService:createOrder', quoteId, walletAddress, paymentMethodId);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Fetches an existing order from Transak by order ID.
+     *
+     * @param orderId - The order ID (deposit format or raw Transak format).
+     * @param wallet - The wallet address associated with the order.
+     * @param paymentDetails - Optional payment details to attach to the order.
+     * @returns The deposit order details.
+     */
+    async transakGetOrder(orderId, wallet, paymentDetails) {
+        return this.messenger.call('TransakService:getOrder', orderId, wallet, paymentDetails);
+    }
+    /**
+     * Fetches the user's spending limits for a given currency and payment method.
+     *
+     * @param fiatCurrency - The fiat currency code.
+     * @param paymentMethod - The payment method identifier.
+     * @param kycType - The KYC level type.
+     * @returns The user's limits, spending, and remaining amounts.
+     */
+    async transakGetUserLimits(fiatCurrency, paymentMethod, kycType) {
+        try {
+            return await this.messenger.call('TransakService:getUserLimits', fiatCurrency, paymentMethod, kycType);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Requests a one-time token (OTT) for the Transak payment widget.
+     *
+     * @returns The OTT response containing the token.
+     */
+    async transakRequestOtt() {
+        try {
+            return await this.messenger.call('TransakService:requestOtt');
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Generates a URL for the Transak payment widget with pre-filled parameters.
+     *
+     * @param ottToken - The one-time token for widget authentication.
+     * @param quote - The buy quote to pre-fill in the widget.
+     * @param walletAddress - The destination wallet address.
+     * @param extraParams - Optional additional URL parameters.
+     * @returns The fully constructed widget URL string.
+     */
+    transakGeneratePaymentWidgetUrl(ottToken, quote, walletAddress, extraParams) {
+        return this.messenger.call('TransakService:generatePaymentWidgetUrl', ottToken, quote, walletAddress, extraParams);
+    }
+    /**
+     * Submits the user's purpose of usage form for KYC compliance.
+     *
+     * @param purpose - Array of purpose strings selected by the user.
+     * @returns A promise that resolves when the form is submitted.
+     */
+    async transakSubmitPurposeOfUsageForm(purpose) {
+        try {
+            return await this.messenger.call('TransakService:submitPurposeOfUsageForm', purpose);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Updates the user's personal or address details on Transak.
+     *
+     * @param data - The user data fields to update.
+     * @returns The API response data.
+     */
+    async transakPatchUser(data) {
+        try {
+            return await this.messenger.call('TransakService:patchUser', data);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Submits the user's SSN for identity verification.
+     *
+     * @param ssn - The Social Security Number.
+     * @param quoteId - The quote ID associated with the order requiring SSN.
+     * @returns The API response data.
+     */
+    async transakSubmitSsnDetails(ssn, quoteId) {
+        try {
+            return await this.messenger.call('TransakService:submitSsnDetails', ssn, quoteId);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Confirms payment for an order after the user has completed payment.
+     *
+     * @param orderId - The order ID to confirm payment for.
+     * @param paymentMethodId - The payment method used.
+     * @returns Whether the payment confirmation was successful.
+     */
+    async transakConfirmPayment(orderId, paymentMethodId) {
+        try {
+            return await this.messenger.call('TransakService:confirmPayment', orderId, paymentMethodId);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Translates generic ramps identifiers to Transak-specific identifiers.
+     *
+     * @param request - The translation request with optional identifiers to translate.
+     * @returns The translated Transak-specific identifiers.
+     */
+    async transakGetTranslation(request) {
+        return this.messenger.call('TransakService:getTranslation', request);
+    }
+    /**
+     * Checks the status of an ID proof submission for KYC.
+     *
+     * @param workFlowRunId - The workflow run ID to check status for.
+     * @returns The current ID proof status.
+     */
+    async transakGetIdProofStatus(workFlowRunId) {
+        try {
+            return await this.messenger.call('TransakService:getIdProofStatus', workFlowRunId);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Cancels a specific Transak order.
+     *
+     * @param depositOrderId - The deposit order ID to cancel.
+     * @returns A promise that resolves when the order is cancelled.
+     */
+    async transakCancelOrder(depositOrderId) {
+        try {
+            return await this.messenger.call('TransakService:cancelOrder', depositOrderId);
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Cancels all active Transak orders. Individual cancellation failures
+     * are collected and returned rather than thrown.
+     *
+     * @returns An array of errors from any failed cancellations (empty if all succeeded).
+     */
+    async transakCancelAllActiveOrders() {
+        try {
+            return await this.messenger.call('TransakService:cancelAllActiveOrders');
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
+    /**
+     * Fetches all active Transak orders for the authenticated user.
+     *
+     * @returns The list of active orders.
+     */
+    async transakGetActiveOrders() {
+        try {
+            return await this.messenger.call('TransakService:getActiveOrders');
+        }
+        catch (error) {
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_syncTransakAuthOnError).call(this, error);
+            throw error;
+        }
+    }
 }
 _RampsController_requestCacheTTL = new WeakMap(), _RampsController_requestCacheMaxSize = new WeakMap(), _RampsController_pendingRequests = new WeakMap(), _RampsController_pendingResourceCount = new WeakMap(), _RampsController_quotePollingInterval = new WeakMap(), _RampsController_quotePollingOptions = new WeakMap(), _RampsController_instances = new WeakSet(), _RampsController_clearPendingResourceCountForDependentResources = function _RampsController_clearPendingResourceCountForDependentResources() {
-    const types = [
-        'providers',
-        'tokens',
-        'paymentMethods',
-        'quotes',
-    ];
-    for (const resourceType of types) {
+    for (const resourceType of DEPENDENT_RESOURCE_KEYS) {
         __classPrivateFieldGet(this, _RampsController_pendingResourceCount, "f").delete(resourceType);
     }
-}, _RampsController_removeRequestState = function _RampsController_removeRequestState(cacheKey) {
+}, _RampsController_abortDependentRequests = function _RampsController_abortDependentRequests() {
+    for (const [cacheKey, pending] of __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").entries()) {
+        if (pending.resourceType &&
+            DEPENDENT_RESOURCE_KEYS_SET.has(pending.resourceType)) {
+            pending.abortController.abort();
+            __classPrivateFieldGet(this, _RampsController_pendingRequests, "f").delete(cacheKey);
+            __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_removeRequestState).call(this, cacheKey);
+        }
+    }
+}, _RampsController_mutateRequests = function _RampsController_mutateRequests(fn) {
     this.update((state) => {
         const requests = state.requests;
+        fn(requests);
+    });
+}, _RampsController_removeRequestState = function _RampsController_removeRequestState(cacheKey) {
+    __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_mutateRequests).call(this, (requests) => {
         delete requests[cacheKey];
     });
 }, _RampsController_cleanupState = function _RampsController_cleanupState() {
     this.stopQuotePolling();
+    __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_abortDependentRequests).call(this);
     __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_clearPendingResourceCountForDependentResources).call(this);
-    this.update((state) => resetDependentResources(state, {
-        clearUserRegionData: true,
-    }));
+    this.update((state) => resetDependentResources(state, { clearUserRegionData: true }));
 }, _RampsController_fireAndForget = function _RampsController_fireAndForget(promise) {
     promise.catch((_error) => undefined);
 }, _RampsController_restartPollingIfActive = function _RampsController_restartPollingIfActive() {
@@ -1009,6 +1491,21 @@ _RampsController_requestCacheTTL = new WeakMap(), _RampsController_requestCacheM
             // when dependencies are available
         }
     }
+}, _RampsController_requireRegion = function _RampsController_requireRegion() {
+    const regionCode = this.state.userRegion?.regionCode;
+    if (!regionCode) {
+        throw new Error('Region is required. Cannot proceed without valid region information.');
+    }
+    return regionCode;
+}, _RampsController_isRegionCurrent = function _RampsController_isRegionCurrent(normalizedRegion) {
+    const current = this.state.userRegion?.regionCode;
+    return current === undefined || current === normalizedRegion;
+}, _RampsController_isTokenCurrent = function _RampsController_isTokenCurrent(normalizedAssetId) {
+    const current = this.state.tokens.selected?.assetId ?? '';
+    return current === normalizedAssetId;
+}, _RampsController_isProviderCurrent = function _RampsController_isProviderCurrent(normalizedProviderId) {
+    const current = this.state.providers.selected?.id ?? '';
+    return current === normalizedProviderId;
 }, _RampsController_updateResourceField = function _RampsController_updateResourceField(resourceType, field, value) {
     this.update((state) => {
         const resource = state[resourceType];
@@ -1023,11 +1520,8 @@ _RampsController_requestCacheTTL = new WeakMap(), _RampsController_requestCacheM
 }, _RampsController_updateRequestState = function _RampsController_updateRequestState(cacheKey, requestState) {
     const maxSize = __classPrivateFieldGet(this, _RampsController_requestCacheMaxSize, "f");
     const ttl = __classPrivateFieldGet(this, _RampsController_requestCacheTTL, "f");
-    this.update((state) => {
-        const requests = state.requests;
+    __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_mutateRequests).call(this, (requests) => {
         requests[cacheKey] = requestState;
-        // Evict expired entries based on TTL
-        // Only evict SUCCESS states that have exceeded their TTL
         const keys = Object.keys(requests);
         for (const key of keys) {
             const entry = requests[key];
@@ -1036,16 +1530,13 @@ _RampsController_requestCacheTTL = new WeakMap(), _RampsController_requestCacheM
                 delete requests[key];
             }
         }
-        // Evict oldest entries if cache still exceeds max size
         const remainingKeys = Object.keys(requests);
         if (remainingKeys.length > maxSize) {
-            // Sort by timestamp (oldest first)
             const sortedKeys = remainingKeys.sort((a, b) => {
                 const aTime = requests[a]?.timestamp ?? 0;
                 const bTime = requests[b]?.timestamp ?? 0;
                 return aTime - bTime;
             });
-            // Remove oldest entries until we're under the limit
             const entriesToRemove = remainingKeys.length - maxSize;
             for (let i = 0; i < entriesToRemove; i++) {
                 const keyToRemove = sortedKeys[i];
@@ -1055,5 +1546,44 @@ _RampsController_requestCacheTTL = new WeakMap(), _RampsController_requestCacheM
             }
         }
     });
+}, _RampsController_syncWidgetUrl = function _RampsController_syncWidgetUrl(quote) {
+    const buyUrl = quote?.quote?.buyURL;
+    if (!buyUrl) {
+        this.update((state) => {
+            resetWidgetUrl(state);
+        });
+        return;
+    }
+    if (this.state.widgetUrl.data === null) {
+        this.update((state) => {
+            state.widgetUrl.isLoading = true;
+            state.widgetUrl.error = null;
+        });
+    }
+    __classPrivateFieldGet(this, _RampsController_instances, "m", _RampsController_fireAndForget).call(this, this.messenger
+        .call('RampsService:getBuyWidgetUrl', buyUrl)
+        .then((buyWidget) => {
+        this.update((state) => {
+            state.widgetUrl.data = buyWidget;
+            state.widgetUrl.isLoading = false;
+            state.widgetUrl.error = null;
+        });
+        return undefined;
+    })
+        .catch((error) => {
+        this.update((state) => {
+            state.widgetUrl.isLoading = false;
+            state.widgetUrl.error =
+                error instanceof Error
+                    ? error.message
+                    : 'Failed to fetch widget URL';
+        });
+    }));
+}, _RampsController_syncTransakAuthOnError = function _RampsController_syncTransakAuthOnError(error) {
+    if (error instanceof Error &&
+        'httpStatus' in error &&
+        error.httpStatus === 401) {
+        this.transakSetAuthenticated(false);
+    }
 };
 //# sourceMappingURL=RampsController.mjs.map