@neus/sdk 1.0.1 → 1.0.3

package/cjs/utils.cjs

@@ -1,3 +1,4 @@
+"use strict";
 var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
@@ -44,9 +45,15 @@ __export(utils_exports, {
   isSupportedChain: () => isSupportedChain,
   isTerminalStatus: () => isTerminalStatus,
   normalizeAddress: () => normalizeAddress,
+  resolveDID: () => resolveDID,
+  resolveZkPassportConfig: () => resolveZkPassportConfig,
+  signMessage: () => signMessage,
+  standardizeVerificationRequest: () => standardizeVerificationRequest,
+  toHexUtf8: () => toHexUtf8,
   validateQHash: () => validateQHash,
   validateSignatureComponents: () => validateSignatureComponents,
   validateTimestamp: () => validateTimestamp,
+  validateUniversalAddress: () => validateUniversalAddress,
   validateVerifierPayload: () => validateVerifierPayload,
   validateWalletAddress: () => validateWalletAddress,
   withRetry: () => withRetry
@@ -75,8 +82,95 @@ var SDKError = class _SDKError extends Error {
     };
   }
 };
+var ApiError = class _ApiError extends SDKError {
+  constructor(message, statusCode = 500, code = "API_ERROR", response = null) {
+    super(message, code);
+    this.name = "ApiError";
+    this.statusCode = statusCode;
+    this.response = response;
+    this.isClientError = statusCode >= 400 && statusCode < 500;
+    this.isServerError = statusCode >= 500;
+    this.isRetryable = this.isServerError || statusCode === 429;
+  }
+  static fromResponse(response, responseData) {
+    const statusCode = response.status;
+    const message = responseData?.error?.message || responseData?.message || `API request failed with status ${statusCode}`;
+    const code = responseData?.error?.code || "API_ERROR";
+    return new _ApiError(message, statusCode, code, responseData);
+  }
+  toJSON() {
+    return {
+      ...super.toJSON(),
+      statusCode: this.statusCode,
+      isClientError: this.isClientError,
+      isServerError: this.isServerError,
+      isRetryable: this.isRetryable
+    };
+  }
+};
+var ValidationError = class extends SDKError {
+  constructor(message, field = null, value = null) {
+    super(message, "VALIDATION_ERROR");
+    this.name = "ValidationError";
+    this.field = field;
+    this.value = value;
+    this.isRetryable = false;
+  }
+  toJSON() {
+    return {
+      ...super.toJSON(),
+      field: this.field,
+      value: this.value,
+      isRetryable: this.isRetryable
+    };
+  }
+};
 
 // utils.js
+var BASE58_ALPHABET = "123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz";
+function encodeBase58Bytes(input) {
+  let source;
+  if (input instanceof Uint8Array) {
+    source = input;
+  } else if (input instanceof ArrayBuffer) {
+    source = new Uint8Array(input);
+  } else if (ArrayBuffer.isView(input)) {
+    source = new Uint8Array(input.buffer, input.byteOffset, input.byteLength);
+  } else if (typeof Buffer !== "undefined" && typeof Buffer.isBuffer === "function" && Buffer.isBuffer(input)) {
+    source = new Uint8Array(input);
+  } else {
+    throw new SDKError("Unsupported non-EVM signature byte format", "INVALID_SIGNATURE_FORMAT");
+  }
+  if (source.length === 0)
+    return "";
+  let zeroes = 0;
+  while (zeroes < source.length && source[zeroes] === 0) {
+    zeroes++;
+  }
+  const iFactor = Math.log(256) / Math.log(58);
+  const size = (source.length - zeroes) * iFactor + 1 >>> 0;
+  const b58 = new Uint8Array(size);
+  let length = 0;
+  for (let i = zeroes; i < source.length; i++) {
+    let carry = source[i];
+    let j = 0;
+    for (let k = size - 1; (carry !== 0 || j < length) && k >= 0; k--, j++) {
+      carry += 256 * b58[k];
+      b58[k] = carry % 58;
+      carry = carry / 58 | 0;
+    }
+    length = j;
+  }
+  let it = size - length;
+  while (it < size && b58[it] === 0) {
+    it++;
+  }
+  let out = BASE58_ALPHABET[0].repeat(zeroes);
+  for (; it < size; it++) {
+    out += BASE58_ALPHABET[b58[it]];
+  }
+  return out;
+}
 function deterministicStringify(obj) {
   if (obj === null || obj === void 0) {
     return JSON.stringify(obj);
@@ -108,7 +202,7 @@ function constructVerificationMessage({ walletAddress, signedTimestamp, data, ve
   }
   const chainContext = typeof chain === "string" && chain.length > 0 ? chain : chainId;
   if (!chainContext) {
-    throw new SDKError("chainId is required (or provide chain for preview mode)", "INVALID_CHAIN_CONTEXT");
+    throw new SDKError("chainId is required (or provide chain for universal mode)", "INVALID_CHAIN_CONTEXT");
   }
   if (chainContext === chainId && typeof chainId !== "number") {
     throw new SDKError("chainId must be a number when provided", "INVALID_CHAIN_ID");
@@ -135,6 +229,29 @@ function validateWalletAddress(address) {
   }
   return /^0x[a-fA-F0-9]{40}$/.test(address);
 }
+function validateUniversalAddress(address, chain) {
+  if (!address || typeof address !== "string")
+    return false;
+  const value = address.trim();
+  if (!value)
+    return false;
+  const chainRef = typeof chain === "string" ? chain.trim().toLowerCase() : "";
+  const namespace = chainRef.includes(":") ? chainRef.split(":")[0] : "";
+  if (validateWalletAddress(value))
+    return true;
+  if (namespace === "eip155")
+    return false;
+  if (namespace === "solana") {
+    return /^[1-9A-HJ-NP-Za-km-z]{32,44}$/.test(value);
+  }
+  if (namespace === "bip122") {
+    return /^(bc1|tb1|bcrt1)[a-z0-9]{11,87}$/.test(value.toLowerCase()) || /^[13mn2][a-km-zA-HJ-NP-Z1-9]{25,62}$/.test(value);
+  }
+  if (namespace === "near") {
+    return /^[a-z0-9._-]{2,64}$/.test(value);
+  }
+  return /^[A-Za-z0-9][A-Za-z0-9._:-]{1,127}$/.test(value);
+}
 function validateTimestamp(timestamp, maxAgeMs = 5 * 60 * 1e3) {
   if (!timestamp || typeof timestamp !== "number") {
     return false;
@@ -156,7 +273,7 @@ function createVerificationData(content, owner, reference = null) {
   };
   return {
     content,
-    owner: owner.toLowerCase(),
+    owner: validateWalletAddress(owner) ? owner.toLowerCase() : owner,
     reference: reference || {
       // Must be a valid backend enum value; 'content' is not supported.
       type: "other",
@@ -181,6 +298,261 @@ function deriveDid(address, chainIdOrChain) {
     return `did:pkh:eip155:${chainContext}:${address.toLowerCase()}`;
   }
 }
+async function resolveDID(params, options = {}) {
+  const endpointPath = options.endpoint || "/api/v1/profile/did/resolve";
+  const apiUrl = typeof options.apiUrl === "string" ? options.apiUrl.trim() : "";
+  const resolveEndpoint = (path) => {
+    if (!path || typeof path !== "string")
+      return null;
+    const trimmedPath = path.trim();
+    if (!trimmedPath)
+      return null;
+    if (/^https?:\/\//i.test(trimmedPath))
+      return trimmedPath;
+    if (trimmedPath.startsWith("/")) {
+      if (!apiUrl)
+        return trimmedPath;
+      try {
+        return new URL(trimmedPath, apiUrl.endsWith("/") ? apiUrl : `${apiUrl}/`).toString();
+      } catch {
+        return null;
+      }
+    }
+    const base = apiUrl || NEUS_CONSTANTS.API_BASE_URL;
+    if (!base || typeof base !== "string")
+      return null;
+    try {
+      return new URL(trimmedPath, base.endsWith("/") ? base : `${base}/`).toString();
+    } catch {
+      return null;
+    }
+  };
+  const endpoint = resolveEndpoint(endpointPath);
+  if (!endpoint) {
+    throw new SDKError("resolveDID requires a valid endpoint", "INVALID_ENDPOINT");
+  }
+  const payload = {
+    walletAddress: params?.walletAddress,
+    chainId: params?.chainId,
+    chain: params?.chain
+  };
+  const isRelative = endpoint.startsWith("/") || !/^https?:\/\//i.test(endpoint);
+  const credentialsMode = options.credentials !== void 0 ? options.credentials : isRelative ? "same-origin" : "omit";
+  try {
+    const response = await fetch(endpoint, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Accept: "application/json",
+        ...options.headers || {}
+      },
+      body: JSON.stringify(payload),
+      credentials: credentialsMode
+    });
+    const json = await response.json().catch(() => null);
+    if (!response.ok) {
+      const msg = json?.error?.message || json?.error || json?.message || "DID resolution failed";
+      throw new SDKError(msg, "DID_RESOLVE_FAILED", json);
+    }
+    const did = json?.data?.did || json?.did;
+    if (!did || typeof did !== "string") {
+      throw new SDKError("DID resolution missing DID", "DID_RESOLVE_MISSING", json);
+    }
+    return { did, data: json?.data || null, raw: json };
+  } catch (error) {
+    if (error instanceof SDKError)
+      throw error;
+    throw new SDKError(`DID resolution failed: ${error?.message || error}`, "DID_RESOLVE_FAILED");
+  }
+}
+async function standardizeVerificationRequest(params, options = {}) {
+  const endpointPath = options.endpoint || "/api/v1/verification/standardize";
+  const apiUrl = typeof options.apiUrl === "string" ? options.apiUrl.trim() : "";
+  const resolveEndpoint = (path) => {
+    if (!path || typeof path !== "string")
+      return null;
+    const trimmedPath = path.trim();
+    if (!trimmedPath)
+      return null;
+    if (/^https?:\/\//i.test(trimmedPath))
+      return trimmedPath;
+    if (trimmedPath.startsWith("/")) {
+      if (!apiUrl)
+        return trimmedPath;
+      try {
+        return new URL(trimmedPath, apiUrl.endsWith("/") ? apiUrl : `${apiUrl}/`).toString();
+      } catch {
+        return null;
+      }
+    }
+    const base = apiUrl || NEUS_CONSTANTS.API_BASE_URL;
+    if (!base || typeof base !== "string")
+      return null;
+    try {
+      return new URL(trimmedPath, base.endsWith("/") ? base : `${base}/`).toString();
+    } catch {
+      return null;
+    }
+  };
+  const endpoint = resolveEndpoint(endpointPath);
+  if (!endpoint) {
+    throw new SDKError("standardizeVerificationRequest requires a valid endpoint", "INVALID_ENDPOINT");
+  }
+  const isRelative = endpoint.startsWith("/") || !/^https?:\/\//i.test(endpoint);
+  const credentialsMode = options.credentials !== void 0 ? options.credentials : isRelative ? "same-origin" : "omit";
+  try {
+    const response = await fetch(endpoint, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Accept: "application/json",
+        ...options.headers || {}
+      },
+      body: JSON.stringify(params || {}),
+      credentials: credentialsMode
+    });
+    const json = await response.json().catch(() => null);
+    if (!response.ok) {
+      const msg = json?.error?.message || json?.error || json?.message || "Standardize request failed";
+      throw new SDKError(msg, "STANDARDIZE_FAILED", json);
+    }
+    return json?.data || json;
+  } catch (error) {
+    if (error instanceof SDKError)
+      throw error;
+    throw new SDKError(`Standardize request failed: ${error?.message || error}`, "STANDARDIZE_FAILED");
+  }
+}
+function resolveZkPassportConfig(overrides = {}) {
+  const defaults = {
+    provider: "zkpassport",
+    scope: "basic_kyc",
+    checkSanctions: true,
+    requireFaceMatch: true,
+    faceMatchMode: "strict"
+  };
+  return {
+    ...defaults,
+    ...overrides && typeof overrides === "object" ? overrides : {}
+  };
+}
+function toHexUtf8(value) {
+  const input = typeof value === "string" ? value : String(value || "");
+  const bytes = new TextEncoder().encode(input);
+  return `0x${Array.from(bytes, (b) => b.toString(16).padStart(2, "0")).join("")}`;
+}
+async function signMessage({ provider, message, walletAddress, chain } = {}) {
+  const msg = typeof message === "string" ? message : String(message || "");
+  if (!msg) {
+    throw new SDKError("signMessage: message is required", "INVALID_ARGUMENT");
+  }
+  const resolvedProvider = provider || (typeof window !== "undefined" && window?.ethereum ? window.ethereum : null);
+  if (!resolvedProvider) {
+    throw new SDKError("signMessage: provider is required", "SIGNER_UNAVAILABLE");
+  }
+  const chainStr = typeof chain === "string" && chain.trim().length > 0 ? chain.trim() : "eip155";
+  const namespace = chainStr.includes(":") ? chainStr.split(":")[0] || "eip155" : "eip155";
+  const resolveAddress = async () => {
+    if (typeof walletAddress === "string" && walletAddress.trim().length > 0)
+      return walletAddress;
+    if (namespace === "solana") {
+      if (resolvedProvider?.publicKey && typeof resolvedProvider.publicKey.toBase58 === "function") {
+        const pk = resolvedProvider.publicKey.toBase58();
+        if (typeof pk === "string" && pk)
+          return pk;
+      }
+      if (typeof resolvedProvider.getAddress === "function") {
+        const addr = await resolvedProvider.getAddress().catch(() => null);
+        if (typeof addr === "string" && addr)
+          return addr;
+      }
+      if (typeof resolvedProvider.address === "string" && resolvedProvider.address)
+        return resolvedProvider.address;
+      return null;
+    }
+    if (typeof resolvedProvider.address === "string" && resolvedProvider.address)
+      return resolvedProvider.address;
+    if (typeof resolvedProvider.getAddress === "function")
+      return await resolvedProvider.getAddress();
+    if (typeof resolvedProvider.request === "function") {
+      let accounts = await resolvedProvider.request({ method: "eth_accounts" }).catch(() => []);
+      if (!Array.isArray(accounts) || accounts.length === 0) {
+        accounts = await resolvedProvider.request({ method: "eth_requestAccounts" }).catch(() => []);
+      }
+      if (Array.isArray(accounts) && accounts[0])
+        return accounts[0];
+    }
+    return null;
+  };
+  if (namespace !== "eip155") {
+    if (typeof resolvedProvider.signMessage === "function") {
+      const encoded = typeof msg === "string" ? new TextEncoder().encode(msg) : msg;
+      const result = await resolvedProvider.signMessage(encoded);
+      if (typeof result === "string" && result)
+        return result;
+      if (result instanceof Uint8Array)
+        return encodeBase58Bytes(result);
+      if (result instanceof ArrayBuffer)
+        return encodeBase58Bytes(new Uint8Array(result));
+      if (ArrayBuffer.isView(result))
+        return encodeBase58Bytes(result);
+      if (typeof Buffer !== "undefined" && typeof Buffer.isBuffer === "function" && Buffer.isBuffer(result))
+        return encodeBase58Bytes(result);
+    }
+    throw new SDKError("Non-EVM signing requires provider.signMessage", "SIGNER_UNAVAILABLE");
+  }
+  const address = await resolveAddress();
+  if (typeof resolvedProvider.request === "function" && address) {
+    let firstPersonalSignError = null;
+    try {
+      const sig = await resolvedProvider.request({ method: "personal_sign", params: [msg, address] });
+      if (typeof sig === "string" && sig)
+        return sig;
+    } catch (error) {
+      firstPersonalSignError = error;
+    }
+    let secondPersonalSignError = null;
+    try {
+      const sig = await resolvedProvider.request({ method: "personal_sign", params: [address, msg] });
+      if (typeof sig === "string" && sig)
+        return sig;
+    } catch (error) {
+      secondPersonalSignError = error;
+      const signatureErrorMessage = String(
+        error?.message || error?.reason || firstPersonalSignError?.message || firstPersonalSignError?.reason || ""
+      ).toLowerCase();
+      const needsHex = /byte|bytes|invalid byte sequence|encoding|non-hex/i.test(signatureErrorMessage);
+      if (needsHex) {
+        try {
+          const hexMsg = toHexUtf8(msg);
+          const sig = await resolvedProvider.request({ method: "personal_sign", params: [hexMsg, address] });
+          if (typeof sig === "string" && sig)
+            return sig;
+        } catch {
+        }
+      }
+    }
+    try {
+      const sig = await resolvedProvider.request({ method: "eth_sign", params: [address, msg] });
+      if (typeof sig === "string" && sig)
+        return sig;
+    } catch {
+    }
+    if (secondPersonalSignError || firstPersonalSignError) {
+      const lastError = secondPersonalSignError || firstPersonalSignError;
+      const isUserRejection = [4001, "ACTION_REJECTED"].includes(lastError?.code);
+      if (isUserRejection) {
+        throw lastError;
+      }
+    }
+  }
+  if (typeof resolvedProvider.signMessage === "function") {
+    const result = await resolvedProvider.signMessage(msg);
+    if (typeof result === "string" && result)
+      return result;
+  }
+  throw new SDKError("Unable to sign message with provided wallet/provider", "SIGNER_UNAVAILABLE");
+}
 function isTerminalStatus(status) {
   if (!status || typeof status !== "string")
     return false;
@@ -384,10 +756,24 @@ var StatusPoller = class {
           }
           setTimeout(pollAttempt, this.currentInterval);
         } catch (error) {
-          reject(new SDKError(
-            `Polling failed: ${error.message}`,
-            "POLLING_ERROR"
-          ));
+          if (error instanceof ValidationError) {
+            reject(error);
+            return;
+          }
+          if (error instanceof ApiError && error.statusCode === 429 || error?.isRetryable === true) {
+            if (this.options.exponentialBackoff) {
+              const next = Math.min(this.currentInterval * 2, this.options.maxInterval);
+              const jitter = next * (0.5 + Math.random() * 0.5);
+              this.currentInterval = Math.max(250, Math.floor(jitter));
+            }
+            if (this.attempt >= this.options.maxAttempts) {
+              reject(new SDKError("Verification polling timeout", "POLLING_TIMEOUT"));
+              return;
+            }
+            setTimeout(pollAttempt, this.currentInterval);
+            return;
+          }
+          reject(new SDKError(`Polling failed: ${error.message}`, "POLLING_ERROR"));
         }
       };
       pollAttempt();
@@ -453,7 +839,7 @@ function validateVerifierPayload(verifierId, data) {
         result.missing.push(key);
     });
     if (!("ownerAddress" in data)) {
-      result.warnings.push("ownerAddress omitted (most deployments default to the signed walletAddress)");
+      result.warnings.push("ownerAddress omitted (defaults to the signed walletAddress)");
     }
   } else if (id === "token-holding") {
     ["contractAddress", "minBalance", "chainId"].forEach((key) => {
@@ -461,13 +847,17 @@ function validateVerifierPayload(verifierId, data) {
         result.missing.push(key);
     });
     if (!("ownerAddress" in data)) {
-      result.warnings.push("ownerAddress omitted (most deployments default to the signed walletAddress)");
+      result.warnings.push("ownerAddress omitted (defaults to the signed walletAddress)");
     }
   } else if (id === "ownership-basic") {
-    ["content"].forEach((key) => {
-      if (!(key in data))
-        result.missing.push(key);
-    });
+    if (!("owner" in data))
+      result.missing.push("owner");
+    const hasContent = typeof data.content === "string" && data.content.length > 0;
+    const hasContentHash = typeof data.contentHash === "string" && data.contentHash.length > 0;
+    const hasRefId = typeof data.reference?.id === "string" && data.reference.id.length > 0;
+    if (!hasContent && !hasContentHash && !hasRefId) {
+      result.missing.push("content (or contentHash or reference.id)");
+    }
   }
   if (result.missing.length > 0) {
     result.valid = false;
@@ -611,9 +1001,15 @@ function validateSignatureComponents({ walletAddress, signature, signedTimestamp
   isSupportedChain,
   isTerminalStatus,
   normalizeAddress,
+  resolveDID,
+  resolveZkPassportConfig,
+  signMessage,
+  standardizeVerificationRequest,
+  toHexUtf8,
   validateQHash,
   validateSignatureComponents,
   validateTimestamp,
+  validateUniversalAddress,
   validateVerifierPayload,
   validateWalletAddress,
   withRetry