@neus/sdk 1.0.12 → 1.1.1

package/cjs/index.cjs

@@ -167,6 +167,89 @@ var init_errors = __esm({
   }
 });
 
+// sponsor.js
+async function fetchSponsorGrant(params = {}) {
+  const {
+    apiUrl = "https://api.neus.network",
+    appId,
+    orgWallet,
+    verifierIds = [],
+    targetChains = [],
+    origin,
+    expiresInSeconds = 900,
+    fetchImpl = fetch
+  } = params;
+  const normalizedAppId = typeof appId === "string" ? appId.trim() : "";
+  const normalizedOrg = typeof orgWallet === "string" ? orgWallet.trim().toLowerCase() : "";
+  if (!normalizedAppId) {
+    throw new ValidationError("appId is required for sponsor grant");
+  }
+  if (!normalizedOrg || !/^0x[a-f0-9]{40}$/.test(normalizedOrg)) {
+    throw new ValidationError("orgWallet must be a valid EVM address");
+  }
+  let base = String(apiUrl || "https://api.neus.network").replace(/\/+$/, "");
+  try {
+    const url = new URL(base);
+    if (url.hostname.endsWith("neus.network") && url.protocol === "http:") {
+      url.protocol = "https:";
+    }
+    base = url.toString().replace(/\/+$/, "");
+  } catch {
+  }
+  const headers = {
+    "Content-Type": "application/json",
+    Accept: "application/json",
+    "X-Neus-App": normalizedAppId,
+    "X-Neus-Sdk": "js"
+  };
+  if (typeof origin === "string" && origin.trim()) {
+    headers.Origin = origin.trim();
+  }
+  const body = {
+    orgWallet: normalizedOrg,
+    scope: "sponsored-verification",
+    expiresInSeconds,
+    ...Array.isArray(verifierIds) && verifierIds.length > 0 ? { verifierIds: verifierIds.map((v) => String(v).trim()).filter(Boolean).slice(0, 25) } : {},
+    ...Array.isArray(targetChains) && targetChains.length > 0 ? { targetChains: targetChains.filter((n) => Number.isFinite(Number(n))).slice(0, 25) } : {}
+  };
+  let response;
+  try {
+    response = await fetchImpl(`${base}/api/v1/sponsor/grant`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify(body)
+    });
+  } catch (error) {
+    throw new NetworkError(`Sponsor grant request failed: ${error?.message || String(error)}`);
+  }
+  let payload;
+  try {
+    payload = await response.json();
+  } catch {
+    payload = { success: false, error: { message: "Invalid JSON response" } };
+  }
+  if (!response.ok || payload?.success !== true) {
+    throw ApiError.fromResponse(response, payload);
+  }
+  const token = payload?.data?.sponsorGrant;
+  if (!token || typeof token !== "string") {
+    throw new ApiError("Sponsor grant response missing sponsorGrant token", payload?.error);
+  }
+  return {
+    sponsorGrant: token,
+    exp: payload?.data?.exp,
+    orgWallet: payload?.data?.orgWallet || normalizedOrg,
+    appId: payload?.data?.appId || normalizedAppId,
+    maxCredits: payload?.data?.maxCredits
+  };
+}
+var init_sponsor = __esm({
+  "sponsor.js"() {
+    "use strict";
+    init_errors();
+  }
+});
+
 // utils.js
 function encodeBase58Bytes(input) {
   let source;
@@ -956,6 +1039,8 @@ function getHostedCheckoutUrl(opts = {}) {
   if (opts.intent) params.set("intent", String(opts.intent));
   if (opts.origin) params.set("origin", String(opts.origin));
   if (opts.oauthProvider) params.set("oauthProvider", String(opts.oauthProvider));
+  if (opts.appId) params.set("appId", String(opts.appId));
+  if (opts.billingWallet) params.set("billingWallet", String(opts.billingWallet).trim().toLowerCase());
   const qs = params.toString();
   return qs ? `${base}?${qs}` : base;
 }
@@ -1091,6 +1176,7 @@ var init_client = __esm({
   "client.js"() {
     "use strict";
     init_errors();
+    init_sponsor();
     init_utils();
     FALLBACK_PUBLIC_VERIFIER_CATALOG = {
       "ownership-basic": { supportsDirectApi: true },
@@ -1283,6 +1369,17 @@ var init_client = __esm({
           if (data.agentType && !["ai", "bot", "service", "automation", "agent"].includes(data.agentType)) {
             return { valid: false, error: "agentType must be one of: ai, bot, service, automation, agent" };
           }
+          if (data.defaultRuntime && typeof data.defaultRuntime === "object") {
+            if (data.defaultRuntime.provider && typeof data.defaultRuntime.provider === "string" && data.defaultRuntime.provider.length > 64) {
+              return { valid: false, error: "defaultRuntime.provider must be 64 chars or less" };
+            }
+            if (data.defaultRuntime.model && typeof data.defaultRuntime.model === "string" && data.defaultRuntime.model.length > 128) {
+              return { valid: false, error: "defaultRuntime.model must be 128 chars or less" };
+            }
+            if (data.defaultRuntime.mode && typeof data.defaultRuntime.mode === "string" && data.defaultRuntime.mode.length > 64) {
+              return { valid: false, error: "defaultRuntime.mode must be 64 chars or less" };
+            }
+          }
           break;
         case "agent-delegation":
           if (!data.controllerWallet || !validateWalletAddress(data.controllerWallet)) {
@@ -1297,6 +1394,18 @@ var init_client = __esm({
           if (data.expiresAt && (typeof data.expiresAt !== "number" || data.expiresAt < Date.now())) {
             return { valid: false, error: "expiresAt must be a future timestamp" };
           }
+          if (data.model && typeof data.model === "string" && data.model.length > 128) {
+            return { valid: false, error: "model must be 128 chars or less" };
+          }
+          if (data.provider && typeof data.provider === "string" && data.provider.length > 64) {
+            return { valid: false, error: "provider must be 64 chars or less" };
+          }
+          if (data.allowedActions && Array.isArray(data.allowedActions) && data.allowedActions.length > 32) {
+            return { valid: false, error: "allowedActions must have 32 items or less" };
+          }
+          if (data.deniedActions && Array.isArray(data.deniedActions) && data.deniedActions.length > 32) {
+            return { valid: false, error: "deniedActions must have 32 items or less" };
+          }
           break;
         case "ai-content-moderation":
           if (!data.content || typeof data.content !== "string") {
@@ -1407,6 +1516,54 @@ var init_client = __esm({
           }
         } catch {
         }
+        this._sponsorGrantCache = null;
+      }
+      _getBillingWallet() {
+        const raw = this.config.billingWallet || this.config.sponsorOrgWallet || this.config.orgWallet || null;
+        if (typeof raw !== "string") return null;
+        const trimmed = raw.trim().toLowerCase();
+        return /^0x[a-f0-9]{40}$/.test(trimmed) ? trimmed : null;
+      }
+      _resolveIntegratorOrigin() {
+        if (typeof this.config.appOrigin === "string" && this.config.appOrigin.trim()) {
+          return this.config.appOrigin.trim();
+        }
+        try {
+          if (typeof window !== "undefined" && window.location?.origin) {
+            return window.location.origin;
+          }
+        } catch {
+        }
+        return null;
+      }
+      async _resolveSponsorGrantHeaders(verifierIds = []) {
+        const appId = typeof this.config.appId === "string" ? this.config.appId.trim() : "";
+        const orgWallet = this._getBillingWallet();
+        if (!appId || !orgWallet) {
+          return {};
+        }
+        const normalizedVerifierIds = Array.isArray(verifierIds) ? verifierIds.map((v) => String(v || "").trim()).filter(Boolean).slice(0, 25) : [];
+        const cacheKey = `${appId}:${orgWallet}:${normalizedVerifierIds.join(",")}`;
+        const now = Date.now();
+        if (this._sponsorGrantCache && this._sponsorGrantCache.key === cacheKey && this._sponsorGrantCache.expMs > now + 3e4) {
+          return { "X-Sponsor-Grant": this._sponsorGrantCache.token };
+        }
+        const origin = this._resolveIntegratorOrigin();
+        const grant = await fetchSponsorGrant({
+          apiUrl: this.baseUrl,
+          appId,
+          orgWallet,
+          verifierIds: normalizedVerifierIds,
+          origin
+        });
+        const expSeconds = Number(grant?.exp);
+        const expMs = Number.isFinite(expSeconds) && expSeconds > 0 ? expSeconds * 1e3 : now + 15 * 60 * 1e3;
+        this._sponsorGrantCache = {
+          key: cacheKey,
+          token: grant.sponsorGrant,
+          expMs
+        };
+        return { "X-Sponsor-Grant": grant.sponsorGrant };
       }
       _getHubChainId() {
         const configured = Number(this.config?.hubChainId);
@@ -1830,9 +1987,13 @@ var init_client = __esm({
             verificationData = {
               agentId: data2.agentId,
               agentWallet: data2?.agentWallet || walletAddress2,
+              ...data2?.agentChainRef && { agentChainRef: data2.agentChainRef },
+              ...data2?.agentAccountId && { agentAccountId: data2.agentAccountId },
               ...data2?.agentLabel && { agentLabel: data2.agentLabel },
               ...data2?.agentType && { agentType: data2.agentType },
+              ...data2?.avatar && { avatar: data2.avatar },
               ...data2?.description && { description: data2.description },
+              ...data2?.defaultRuntime && { defaultRuntime: data2.defaultRuntime },
               ...data2?.capabilities && { capabilities: data2.capabilities },
               ...data2?.instructions && { instructions: data2.instructions },
               ...data2?.skills && { skills: data2.skills },
@@ -1844,7 +2005,11 @@ var init_client = __esm({
             }
             verificationData = {
               controllerWallet: data2?.controllerWallet || walletAddress2,
+              ...data2?.controllerChainRef && { controllerChainRef: data2.controllerChainRef },
               agentWallet: data2.agentWallet,
+              ...data2?.agentChainRef && { agentChainRef: data2.agentChainRef },
+              ...data2?.controllerAccountId && { controllerAccountId: data2.controllerAccountId },
+              ...data2?.agentAccountId && { agentAccountId: data2.agentAccountId },
               ...data2?.agentId && { agentId: data2.agentId },
               ...data2?.scope && { scope: data2.scope },
               ...data2?.permissions && { permissions: data2.permissions },
@@ -1853,7 +2018,13 @@ var init_client = __esm({
               ...data2?.receiptDisclosure && { receiptDisclosure: data2.receiptDisclosure },
               ...data2?.expiresAt && { expiresAt: data2.expiresAt },
               ...data2?.instructions && { instructions: data2.instructions },
-              ...data2?.skills && { skills: data2.skills }
+              ...data2?.skills && { skills: data2.skills },
+              ...data2?.model && { model: data2.model },
+              ...data2?.provider && { provider: data2.provider },
+              ...data2?.runtimePolicy && { runtimePolicy: data2.runtimePolicy },
+              ...data2?.allowedActions && { allowedActions: data2.allowedActions },
+              ...data2?.deniedActions && { deniedActions: data2.deniedActions },
+              ...data2?.approvalPolicy && { approvalPolicy: data2.approvalPolicy }
             };
           } else if (verifier === "ai-content-moderation") {
             if (!data2?.content) {
@@ -2065,26 +2236,25 @@ ${bytes.length}`;
           ...delegationQHash && { delegationQHash },
           options: optionsPayload
         };
-        const response = await this._makeRequest("POST", "/api/v1/verification", requestData);
+        const sponsorHeaders = await this._resolveSponsorGrantHeaders(normalizedVerifierIds);
+        const response = await this._makeRequest("POST", "/api/v1/verification", requestData, sponsorHeaders);
         if (!response.success) {
           throw new ApiError(`Verification failed: ${response.error?.message || "Unknown error"}`, response.error);
         }
         return this._formatResponse(response);
       }
       async getProof(qHash) {
-        const resolvedQHash = qHash;
-        if (!resolvedQHash || typeof resolvedQHash !== "string") {
+        if (!qHash || typeof qHash !== "string") {
           throw new ValidationError("qHash is required");
         }
-        const response = await this._makeRequest("GET", `/api/v1/proofs/${resolvedQHash}`);
+        const response = await this._makeRequest("GET", `/api/v1/proofs/${qHash}`);
         if (!response.success) {
           throw new ApiError(`Failed to get proof: ${response.error?.message || "Unknown error"}`, response.error);
         }
         return this._formatResponse(response);
       }
       async getPrivateProof(qHash, wallet = null) {
-        const resolvedQHash = qHash;
-        if (!resolvedQHash || typeof resolvedQHash !== "string") {
+        if (!qHash || typeof qHash !== "string") {
           throw new ValidationError("qHash is required");
         }
         const isPreSignedAuth = wallet && typeof wallet === "object" && typeof wallet.walletAddress === "string" && typeof wallet.signature === "string" && typeof wallet.signedTimestamp === "number";
@@ -2097,7 +2267,7 @@ ${bytes.length}`;
             ...typeof auth.chain === "string" && auth.chain.trim() ? { "x-chain": auth.chain.trim() } : {},
             ...typeof auth.signatureMethod === "string" && auth.signatureMethod.trim() ? { "x-signature-method": auth.signatureMethod.trim() } : {}
           };
-          const response2 = await this._makeRequest("GET", `/api/v1/proofs/${resolvedQHash}`, null, headers);
+          const response2 = await this._makeRequest("GET", `/api/v1/proofs/${qHash}`, null, headers);
           if (!response2.success) {
             throw new ApiError(
               `Failed to access private proof: ${response2.error?.message || "Unauthorized"}`,
@@ -2118,7 +2288,7 @@ ${bytes.length}`;
         const message = constructVerificationMessage({
           walletAddress,
           signedTimestamp,
-          data: { action: "access_private_proof", qHash: resolvedQHash },
+          data: { action: "access_private_proof", qHash },
           verifierIds: ["ownership-basic"],
           ...signerIsEvm ? { chainId: this._getHubChainId() } : { chain }
         });
@@ -2136,7 +2306,7 @@ ${bytes.length}`;
           }
           throw new ValidationError(`Failed to sign message: ${error.message}`);
         }
-        const response = await this._makeRequest("GET", `/api/v1/proofs/${resolvedQHash}`, null, {
+        const response = await this._makeRequest("GET", `/api/v1/proofs/${qHash}`, null, {
           "x-wallet-address": walletAddress,
           "x-signature": signature,
           "x-signed-timestamp": signedTimestamp.toString(),
@@ -2174,20 +2344,19 @@ ${bytes.length}`;
         };
       }
       async pollProofStatus(qHash, options = {}) {
-        const resolvedQHash = qHash;
         const {
           interval = 5e3,
           timeout = 12e4,
           onProgress
         } = options;
-        if (!resolvedQHash || typeof resolvedQHash !== "string") {
+        if (!qHash || typeof qHash !== "string") {
           throw new ValidationError("qHash is required");
         }
         const startTime = Date.now();
         let consecutiveRateLimits = 0;
         while (Date.now() - startTime < timeout) {
           try {
-            const status = await this.getProof(resolvedQHash);
+            const status = await this.getProof(qHash);
             consecutiveRateLimits = 0;
             if (onProgress && typeof onProgress === "function") {
               onProgress(status.data || status);
@@ -2230,8 +2399,7 @@ ${bytes.length}`;
         }
       }
       async revokeOwnProof(qHash, wallet) {
-        const resolvedQHash = qHash;
-        if (!resolvedQHash || typeof resolvedQHash !== "string") {
+        if (!qHash || typeof qHash !== "string") {
           throw new ValidationError("qHash is required");
         }
         const providerWallet = wallet || this._getDefaultBrowserWallet();
@@ -2246,7 +2414,7 @@ ${bytes.length}`;
         const message = constructVerificationMessage({
           walletAddress: address,
           signedTimestamp,
-          data: { action: "revoke_proof", qHash: resolvedQHash },
+          data: { action: "revoke_proof", qHash },
           verifierIds: ["ownership-basic"],
           ...signerIsEvm ? { chainId: this._getHubChainId() } : { chain }
         });
@@ -2264,7 +2432,7 @@ ${bytes.length}`;
           }
           throw new ValidationError(`Failed to sign revocation: ${error.message}`);
         }
-        const res = await this._makeRequest("POST", `/api/v1/proofs/revoke-self/${resolvedQHash}`, {
+        const res = await this._makeRequest("POST", `/api/v1/proofs/revoke-self/${qHash}`, {
           walletAddress: address,
           signature,
           signedTimestamp,
@@ -2462,7 +2630,20 @@ ${bytes.length}`;
             };
           }
         }
-        const response = await this._makeRequest("GET", `/api/v1/proofs/check?${qs.toString()}`, null, headersOverride);
+        let mergedHeaders = headersOverride;
+        if (!mergedHeaders) {
+          try {
+            const sponsorHeaders = await this._resolveSponsorGrantHeaders(
+              Array.isArray(params.verifierIds) ? params.verifierIds : params.verifierIds ? [params.verifierIds] : []
+            );
+            if (sponsorHeaders && Object.keys(sponsorHeaders).length > 0) {
+              mergedHeaders = sponsorHeaders;
+            }
+          } catch (error) {
+            this._log("Sponsor grant unavailable for gateCheck (continuing without)", error?.message || String(error));
+          }
+        }
+        const response = await this._makeRequest("GET", `/api/v1/proofs/check?${qs.toString()}`, null, mergedHeaders);
         if (!response.success) {
           throw new ApiError(`Gate check failed: ${response.error?.message || "Unknown error"}`, response.error);
         }
@@ -2671,10 +2852,7 @@ ${bytes.length}`;
         }
       }
       _formatResponse(response) {
-        const qHash = response?.data?.qHash || response?.qHash || response?.data?.resource?.qHash || response?.data?.proofId || // Legacy input compatibility only. Do not expose or store proofId.
-        response?.proofId || // Legacy input compatibility only. Do not expose or store proofId.
-        response?.data?.resource?.proofId || // Legacy input compatibility only. Do not expose or store proofId.
-        response?.data?.id;
+        const qHash = response?.data?.qHash || response?.qHash || response?.data?.resource?.qHash || response?.data?.id;
         const status = response?.data?.status || response?.status || response?.data?.resource?.status || (response?.success ? "completed" : "unknown");
         return {
           success: response.success,
@@ -2754,6 +2932,7 @@ __export(index_exports, {
   default: () => index_default,
   delay: () => delay,
   deriveDid: () => deriveDid,
+  fetchSponsorGrant: () => fetchSponsorGrant,
   formatTimestamp: () => formatTimestamp,
   formatVerificationStatus: () => formatVerificationStatus,
   getHostedCheckoutUrl: () => getHostedCheckoutUrl,
@@ -2820,6 +2999,7 @@ function combineGates(...gates) {
 }
 
 // index.js
+init_sponsor();
 init_errors();
 var index_default = {
   NeusClient: () => Promise.resolve().then(() => (init_client(), client_exports)).then((m) => m.NeusClient),
@@ -2862,6 +3042,7 @@ var index_default = {
   createVerificationData,
   delay,
   deriveDid,
+  fetchSponsorGrant,
   formatTimestamp,
   formatVerificationStatus,
   getHostedCheckoutUrl,

package/cjs/utils.cjs

@@ -1012,6 +1012,8 @@ function getHostedCheckoutUrl(opts = {}) {
   if (opts.intent) params.set("intent", String(opts.intent));
   if (opts.origin) params.set("origin", String(opts.origin));
   if (opts.oauthProvider) params.set("oauthProvider", String(opts.oauthProvider));
+  if (opts.appId) params.set("appId", String(opts.appId));
+  if (opts.billingWallet) params.set("billingWallet", String(opts.billingWallet).trim().toLowerCase());
   const qs = params.toString();
   return qs ? `${base}?${qs}` : base;
 }