npm - @openzeppelin/adapter-stellar - Versions diffs - 1.0.0 - Mend

@openzeppelin/adapter-stellar 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (165) hide show

package/README.md +272 -0
package/dist/config.cjs +21 -0
package/dist/config.cjs.map +1 -0
package/dist/config.d.cts +8 -0
package/dist/config.d.cts.map +1 -0
package/dist/config.d.mts +8 -0
package/dist/config.d.mts.map +1 -0
package/dist/config.mjs +20 -0
package/dist/config.mjs.map +1 -0
package/dist/index.cjs +7564 -0
package/dist/index.cjs.map +1 -0
package/dist/index.d.cts +261 -0
package/dist/index.d.cts.map +1 -0
package/dist/index.d.mts +263 -0
package/dist/index.d.mts.map +1 -0
package/dist/index.mjs +7529 -0
package/dist/index.mjs.map +1 -0
package/dist/metadata.cjs +22 -0
package/dist/metadata.cjs.map +1 -0
package/dist/metadata.d.cts +7 -0
package/dist/metadata.d.cts.map +1 -0
package/dist/metadata.d.mts +7 -0
package/dist/metadata.d.mts.map +1 -0
package/dist/metadata.mjs +21 -0
package/dist/metadata.mjs.map +1 -0
package/dist/networks-BrV516-R.d.cts +15 -0
package/dist/networks-BrV516-R.d.cts.map +1 -0
package/dist/networks-C0MmhJcu.d.mts +15 -0
package/dist/networks-C0MmhJcu.d.mts.map +1 -0
package/dist/networks-DgUFSTiC.cjs +76 -0
package/dist/networks-DgUFSTiC.cjs.map +1 -0
package/dist/networks-QbEPbaGT.mjs +46 -0
package/dist/networks-QbEPbaGT.mjs.map +1 -0
package/dist/networks.cjs +8 -0
package/dist/networks.d.cts +2 -0
package/dist/networks.d.mts +2 -0
package/dist/networks.mjs +3 -0
package/dist/vite-config.cjs +43 -0
package/dist/vite-config.cjs.map +1 -0
package/dist/vite-config.d.cts +35 -0
package/dist/vite-config.d.cts.map +1 -0
package/dist/vite-config.d.mts +35 -0
package/dist/vite-config.d.mts.map +1 -0
package/dist/vite-config.mjs +42 -0
package/dist/vite-config.mjs.map +1 -0
package/package.json +114 -0
package/src/__tests__/getDefaultServiceConfig.test.ts +105 -0
package/src/access-control/actions.ts +214 -0
package/src/access-control/feature-detection.ts +238 -0
package/src/access-control/index.ts +54 -0
package/src/access-control/indexer-client.ts +1474 -0
package/src/access-control/onchain-reader.ts +446 -0
package/src/access-control/service.ts +1431 -0
package/src/access-control/validation.ts +256 -0
package/src/adapter.ts +659 -0
package/src/config.ts +43 -0
package/src/configuration/__tests__/explorer.test.ts +80 -0
package/src/configuration/__tests__/rpc.test.ts +355 -0
package/src/configuration/execution.ts +83 -0
package/src/configuration/explorer.ts +105 -0
package/src/configuration/index.ts +5 -0
package/src/configuration/network-services.ts +210 -0
package/src/configuration/rpc.ts +270 -0
package/src/configuration.ts +2 -0
package/src/contract/__tests__/complete-type-coverage.test.ts +78 -0
package/src/contract/index.ts +3 -0
package/src/contract/loader.ts +498 -0
package/src/contract/transformer.ts +1 -0
package/src/contract/type.ts +65 -0
package/src/index.ts +23 -0
package/src/mapping/constants.ts +89 -0
package/src/mapping/enum-metadata.ts +237 -0
package/src/mapping/field-generator.ts +296 -0
package/src/mapping/index.ts +5 -0
package/src/mapping/struct-fields.ts +106 -0
package/src/mapping/tuple-components.ts +43 -0
package/src/mapping/type-coverage-validator.ts +151 -0
package/src/mapping/type-mapper.ts +203 -0
package/src/metadata.ts +16 -0
package/src/networks/README.md +84 -0
package/src/networks/index.ts +19 -0
package/src/networks/mainnet.ts +20 -0
package/src/networks/testnet.ts +20 -0
package/src/networks.ts +2 -0
package/src/query/handler.ts +411 -0
package/src/query/index.ts +4 -0
package/src/query/view-checker.ts +32 -0
package/src/sac/spec-cache.ts +68 -0
package/src/sac/spec-source.ts +35 -0
package/src/sac/xdr.ts +101 -0
package/src/transaction/components/AdvancedInfo.tsx +34 -0
package/src/transaction/components/FeeConfiguration.tsx +41 -0
package/src/transaction/components/StellarRelayerOptions.tsx +60 -0
package/src/transaction/components/TransactionTiming.tsx +77 -0
package/src/transaction/components/index.ts +5 -0
package/src/transaction/components/useStellarRelayerOptions.ts +114 -0
package/src/transaction/eoa.ts +229 -0
package/src/transaction/execution-strategy.ts +33 -0
package/src/transaction/formatter.ts +296 -0
package/src/transaction/index.ts +4 -0
package/src/transaction/relayer.ts +575 -0
package/src/transaction/sender.ts +156 -0
package/src/transform/index.ts +4 -0
package/src/transform/input-parser.ts +9 -0
package/src/transform/output-formatter.ts +133 -0
package/src/transform/parsers/complex-parser.ts +157 -0
package/src/transform/parsers/generic-parser.ts +171 -0
package/src/transform/parsers/index.ts +86 -0
package/src/transform/parsers/primitive-parser.ts +123 -0
package/src/transform/parsers/scval-converter.ts +405 -0
package/src/transform/parsers/struct-parser.ts +324 -0
package/src/transform/parsers/types.ts +35 -0
package/src/types/__tests__/artifacts.test.ts +89 -0
package/src/types/artifacts.ts +19 -0
package/src/utils/__tests__/artifacts.test.ts +77 -0
package/src/utils/artifacts.ts +30 -0
package/src/utils/formatting.ts +122 -0
package/src/utils/index.ts +6 -0
package/src/utils/input-parsing.ts +336 -0
package/src/utils/safe-type-parser.ts +303 -0
package/src/utils/stellar-types.ts +35 -0
package/src/utils/type-detection.ts +163 -0
package/src/utils/xdr-ordering.ts +36 -0
package/src/validation/__tests__/address.test.ts +267 -0
package/src/validation/address.ts +136 -0
package/src/validation/eoa.ts +33 -0
package/src/validation/index.ts +3 -0
package/src/validation/relayer.ts +13 -0
package/src/vite-config.ts +67 -0
package/src/wallet/README.md +93 -0
package/src/wallet/__tests__/connection.test.ts +72 -0
package/src/wallet/components/StellarWalletUiRoot.tsx +161 -0
package/src/wallet/components/account/AccountDisplay.tsx +50 -0
package/src/wallet/components/connect/ConnectButton.tsx +100 -0
package/src/wallet/components/connect/ConnectorDialog.tsx +125 -0
package/src/wallet/components/index.ts +3 -0
package/src/wallet/connection.ts +151 -0
package/src/wallet/context/StellarWalletContext.ts +32 -0
package/src/wallet/context/index.ts +4 -0
package/src/wallet/context/useStellarWalletContext.ts +17 -0
package/src/wallet/hooks/facade-hooks.ts +31 -0
package/src/wallet/hooks/index.ts +7 -0
package/src/wallet/hooks/useStellarAccount.ts +27 -0
package/src/wallet/hooks/useStellarConnect.ts +60 -0
package/src/wallet/hooks/useStellarDisconnect.ts +47 -0
package/src/wallet/hooks/useUiKitConfig.ts +40 -0
package/src/wallet/implementation/wallets-kit-implementation.ts +379 -0
package/src/wallet/index.ts +11 -0
package/src/wallet/services/__tests__/configResolutionService.test.ts +163 -0
package/src/wallet/services/configResolutionService.ts +65 -0
package/src/wallet/stellar-wallets-kit/StellarWalletsKitConnectButton.tsx +82 -0
package/src/wallet/stellar-wallets-kit/__mocks__/@creit.tech/stellar-wallets-kit.ts +48 -0
package/src/wallet/stellar-wallets-kit/__tests__/export-service.test.ts +93 -0
package/src/wallet/stellar-wallets-kit/__tests__/stellarUiKitManager.test.ts +0 -0
package/src/wallet/stellar-wallets-kit/config-generator.ts +75 -0
package/src/wallet/stellar-wallets-kit/export-service.ts +19 -0
package/src/wallet/stellar-wallets-kit/index.ts +3 -0
package/src/wallet/stellar-wallets-kit/stellarUiKitManager.ts +235 -0
package/src/wallet/types.ts +19 -0
package/src/wallet/utils/__tests__/filterWalletComponents.test.ts +150 -0
package/src/wallet/utils/__tests__/uiKitService.test.ts +189 -0
package/src/wallet/utils/filterWalletComponents.ts +89 -0
package/src/wallet/utils/index.ts +3 -0
package/src/wallet/utils/stellarWalletImplementationManager.ts +118 -0
package/src/wallet/utils/uiKitService.ts +74 -0

package/src/access-control/indexer-client.ts ADDED Viewed

@@ -0,0 +1,1474 @@
+/**
+ * Stellar Indexer Client
+ *
+ * Provides access to historical access control events via a GraphQL indexer.
+ * Implements config precedence: runtime override > network-config default > derived-from-RPC (if safe) > none.
+ */
+import type {
+  HistoryChangeType,
+  HistoryEntry,
+  HistoryQueryOptions,
+  IndexerEndpointConfig,
+  PageInfo,
+  PaginatedHistoryResult,
+  RoleIdentifier,
+  StellarNetworkConfig,
+} from '@openzeppelin/ui-types';
+import { ConfigurationInvalid, IndexerUnavailable, OperationFailed } from '@openzeppelin/ui-types';
+import {
+  appConfigService,
+  isValidUrl,
+  logger,
+  userNetworkServiceConfigService,
+} from '@openzeppelin/ui-utils';
+const LOG_SYSTEM = 'StellarIndexerClient';
+/**
+ * Extracts the user-configured indexer endpoints from UserNetworkServiceConfigService.
+ * Validates URLs before returning them to prevent invalid URLs from causing runtime errors.
+ *
+ * @param networkId - The network ID to get the indexer config for
+ * @returns The indexer endpoint config if configured and valid, undefined otherwise
+ */
+function getUserIndexerEndpoints(networkId: string): IndexerEndpointConfig | undefined {
+  const svcCfg = userNetworkServiceConfigService.get(networkId, 'access-control-indexer');
+  if (!svcCfg || typeof svcCfg !== 'object') {
+    return undefined;
+  }
+  const endpoints: IndexerEndpointConfig = {};
+  // Check for indexerUri field (HTTP endpoint) and validate
+  if ('indexerUri' in svcCfg && svcCfg.indexerUri) {
+    const httpUrl = String(svcCfg.indexerUri).trim();
+    if (httpUrl && isValidUrl(httpUrl)) {
+      endpoints.http = httpUrl;
+    } else if (httpUrl) {
+      logger.warn(
+        LOG_SYSTEM,
+        `User-configured indexer HTTP URL for ${networkId} is invalid: ${httpUrl}. Ignoring.`
+      );
+    }
+  }
+  // Check for indexerWsUri field (WebSocket endpoint) and validate
+  if ('indexerWsUri' in svcCfg && svcCfg.indexerWsUri) {
+    const wsUrl = String(svcCfg.indexerWsUri).trim();
+    if (wsUrl && isValidUrl(wsUrl)) {
+      endpoints.ws = wsUrl;
+    } else if (wsUrl) {
+      logger.warn(
+        LOG_SYSTEM,
+        `User-configured indexer WebSocket URL for ${networkId} is invalid: ${wsUrl}. Ignoring.`
+      );
+    }
+  }
+  // Return undefined if no valid endpoints were found
+  if (!endpoints.http && !endpoints.ws) {
+    return undefined;
+  }
+  return endpoints;
+}
+/**
+ * GraphQL query response types for indexer
+ */
+interface IndexerHistoryEntry {
+  id: string;
+  role?: string; // Nullable for Ownership/Admin events
+  /** Account address - required for role events */
+  account?: string;
+  /** Event type */
+  eventType:
+    | 'ROLE_GRANTED'
+    | 'ROLE_REVOKED'
+    | 'ROLE_ADMIN_CHANGED'
+    | 'OWNERSHIP_TRANSFER_COMPLETED'
+    | 'OWNERSHIP_TRANSFER_STARTED'
+    | 'OWNERSHIP_RENOUNCED'
+    | 'ADMIN_TRANSFER_INITIATED'
+    | 'ADMIN_TRANSFER_COMPLETED'
+    | 'ADMIN_RENOUNCED';
+  txHash: string;
+  timestamp: string;
+  /** Block/ledger number */
+  blockNumber: string;
+  /** Previous owner (for OWNERSHIP_TRANSFER_STARTED, OWNERSHIP_TRANSFER_COMPLETED) */
+  previousOwner?: string;
+  /** New owner (for OWNERSHIP_TRANSFER_STARTED, OWNERSHIP_TRANSFER_COMPLETED, OWNERSHIP_RENOUNCED) */
+  newOwner?: string;
+  /** Previous admin (for ADMIN_TRANSFER_INITIATED, ADMIN_TRANSFER_COMPLETED) */
+  previousAdmin?: string;
+  /** New admin (for ADMIN_TRANSFER_INITIATED, ADMIN_TRANSFER_COMPLETED, ADMIN_RENOUNCED) */
+  newAdmin?: string;
+  /** Expiration ledger for pending transfers (OWNERSHIP_TRANSFER_STARTED, ADMIN_TRANSFER_INITIATED) */
+  liveUntilLedger?: number;
+}
+/**
+ * Ownership Transfer Started Event
+ *
+ * Contains details about a pending two-step ownership transfer from the indexer.
+ * Includes the expiration ledger (`liveUntilLedger`) for determining if the
+ * transfer has expired without requiring an additional on-chain query.
+ */
+export interface OwnershipTransferStartedEvent {
+  /** Previous owner (admin) who initiated the transfer */
+  previousOwner: string;
+  /** Pending owner address (account) - the new owner */
+  pendingOwner: string;
+  /** Transaction hash of the initiation */
+  txHash: string;
+  /** ISO8601 timestamp of the event */
+  timestamp: string;
+  /** Ledger sequence of the event */
+  ledger: number;
+  /** Expiration ledger - transfer must be accepted before this ledger */
+  liveUntilLedger: number;
+}
+/**
+ * Admin Transfer Initiated Event
+ *
+ * Contains details about a pending two-step admin transfer from the indexer.
+ * Includes the expiration ledger (`liveUntilLedger`) for determining if the
+ * transfer has expired without requiring an additional on-chain query.
+ */
+export interface AdminTransferInitiatedEvent {
+  /** Previous admin who initiated the transfer */
+  previousAdmin: string;
+  /** Pending admin address (account) - the new admin */
+  pendingAdmin: string;
+  /** Transaction hash of the initiation */
+  txHash: string;
+  /** ISO8601 timestamp of the event */
+  timestamp: string;
+  /** Ledger sequence of the event */
+  ledger: number;
+  /** Expiration ledger - transfer must be accepted before this ledger */
+  liveUntilLedger: number;
+}
+interface IndexerPageInfo {
+  hasNextPage: boolean;
+  endCursor?: string;
+}
+interface IndexerHistoryResponse {
+  data?: {
+    accessControlEvents?: {
+      nodes: IndexerHistoryEntry[];
+      pageInfo: IndexerPageInfo;
+    };
+  };
+  errors?: Array<{
+    message: string;
+  }>;
+}
+/**
+ * Response type for ownership transfer queries
+ */
+interface IndexerOwnershipTransferResponse {
+  data?: {
+    accessControlEvents?: {
+      nodes: IndexerHistoryEntry[];
+      pageInfo?: IndexerPageInfo;
+    };
+  };
+  errors?: Array<{
+    message: string;
+  }>;
+}
+/**
+ * Response type for role discovery query
+ */
+interface IndexerRoleDiscoveryResponse {
+  data?: {
+    accessControlEvents?: {
+      nodes: Array<{
+        role: string | null;
+      }>;
+    };
+  };
+  errors?: Array<{
+    message: string;
+  }>;
+}
+/**
+ * Grant information for a specific member
+ */
+export interface GrantInfo {
+  /** ISO8601 timestamp of the grant */
+  timestamp: string;
+  /** Transaction ID of the grant */
+  txId: string;
+  /** Block/ledger number of the grant */
+  ledger: number;
+}
+/**
+ * Stellar Indexer Client
+ * Handles GraphQL queries to the configured indexer for historical access control data
+ */
+export class StellarIndexerClient {
+  private readonly networkConfig: StellarNetworkConfig;
+  private resolvedEndpoints: IndexerEndpointConfig | null = null;
+  private availabilityChecked = false;
+  private isAvailable = false;
+  private readonly unsubscribeFromConfigChanges: () => void;
+  constructor(networkConfig: StellarNetworkConfig) {
+    this.networkConfig = networkConfig;
+    // Subscribe to indexer config changes to reset cache when user updates settings
+    this.unsubscribeFromConfigChanges = userNetworkServiceConfigService.subscribe(
+      networkConfig.id,
+      'access-control-indexer',
+      () => {
+        logger.info(
+          LOG_SYSTEM,
+          `User indexer config changed for ${networkConfig.id}, resetting cache`
+        );
+        this.resetCache();
+      }
+    );
+  }
+  /**
+   * Resets the resolved endpoints and availability cache.
+   * Called when user configuration changes to force re-resolution.
+   */
+  private resetCache(): void {
+    this.resolvedEndpoints = null;
+    this.availabilityChecked = false;
+    this.isAvailable = false;
+  }
+  /**
+   * Cleans up subscriptions when the client is no longer needed.
+   * Call this method when disposing of the client to prevent memory leaks.
+   */
+  public dispose(): void {
+    this.unsubscribeFromConfigChanges();
+  }
+  /**
+   * Check if indexer is available and configured
+   * @returns True if indexer endpoints are configured and reachable
+   */
+  async checkAvailability(): Promise<boolean> {
+    if (this.availabilityChecked) {
+      return this.isAvailable;
+    }
+    const endpoints = this.resolveIndexerEndpoints();
+    if (!endpoints.http) {
+      logger.info(LOG_SYSTEM, `No indexer configured for network ${this.networkConfig.id}`);
+      this.availabilityChecked = true;
+      this.isAvailable = false;
+      return false;
+    }
+    try {
+      // Simple connectivity check with a minimal query
+      const response = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({
+          query: '{ __typename }',
+        }),
+      });
+      if (response.ok) {
+        logger.info(
+          LOG_SYSTEM,
+          `Indexer available for network ${this.networkConfig.id} at ${endpoints.http}`
+        );
+        this.isAvailable = true;
+      } else {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer endpoint ${endpoints.http} returned status ${response.status}`
+        );
+        this.isAvailable = false;
+      }
+    } catch (error) {
+      logger.warn(
+        LOG_SYSTEM,
+        `Failed to connect to indexer at ${endpoints.http}: ${error instanceof Error ? error.message : String(error)}`
+      );
+      this.isAvailable = false;
+    }
+    this.availabilityChecked = true;
+    return this.isAvailable;
+  }
+  /**
+   * Query history entries for a contract with pagination support
+   * @param contractAddress The contract address to query
+   * @param options Optional filtering and pagination options
+   * @returns Promise resolving to paginated history result
+   * @throws IndexerUnavailable if indexer is not available
+   * @throws OperationFailed if query fails
+   */
+  async queryHistory(
+    contractAddress: string,
+    options?: HistoryQueryOptions
+  ): Promise<PaginatedHistoryResult> {
+    const isAvailable = await this.checkAvailability();
+    if (!isAvailable) {
+      throw new IndexerUnavailable(
+        'Indexer not available for this network',
+        contractAddress,
+        this.networkConfig.id
+      );
+    }
+    const endpoints = this.resolveIndexerEndpoints();
+    if (!endpoints.http) {
+      throw new ConfigurationInvalid(
+        'No indexer HTTP endpoint configured',
+        contractAddress,
+        'indexer.http'
+      );
+    }
+    // Build query with server-side filtering and pagination
+    const query = this.buildHistoryQuery(contractAddress, options);
+    const variables = this.buildQueryVariables(contractAddress, options);
+    try {
+      const response = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query, variables }),
+      });
+      if (!response.ok) {
+        throw new OperationFailed(
+          `Indexer query failed with status ${response.status}`,
+          contractAddress,
+          'queryHistory'
+        );
+      }
+      const result = (await response.json()) as IndexerHistoryResponse;
+      if (result.errors && result.errors.length > 0) {
+        const errorMessages = result.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer query errors: ${errorMessages}`,
+          contractAddress,
+          'queryHistory'
+        );
+      }
+      if (!result.data?.accessControlEvents?.nodes) {
+        logger.debug(LOG_SYSTEM, `No history data returned for contract ${contractAddress}`);
+        return {
+          items: [],
+          pageInfo: { hasNextPage: false },
+        };
+      }
+      const items = this.transformIndexerEntries(result.data.accessControlEvents.nodes);
+      const pageInfo: PageInfo = {
+        hasNextPage: result.data.accessControlEvents.pageInfo.hasNextPage,
+        endCursor: result.data.accessControlEvents.pageInfo.endCursor,
+      };
+      return { items, pageInfo };
+    } catch (error) {
+      logger.error(
+        LOG_SYSTEM,
+        `Failed to query indexer history: ${error instanceof Error ? error.message : String(error)}`
+      );
+      throw error;
+    }
+  }
+  /**
+   * Discover all unique role identifiers for a contract by querying historical events
+   *
+   * Queries all ROLE_GRANTED and ROLE_REVOKED events and extracts unique role values.
+   * This enables role enumeration even when knownRoleIds are not provided.
+   *
+   * @param contractAddress The contract address to discover roles for
+   * @returns Promise resolving to array of unique role identifiers
+   * @throws IndexerUnavailable if indexer is not available
+   * @throws OperationFailed if query fails
+   */
+  async discoverRoleIds(contractAddress: string): Promise<string[]> {
+    const isAvailable = await this.checkAvailability();
+    if (!isAvailable) {
+      throw new IndexerUnavailable(
+        'Indexer not available for this network',
+        contractAddress,
+        this.networkConfig.id
+      );
+    }
+    const endpoints = this.resolveIndexerEndpoints();
+    if (!endpoints.http) {
+      throw new ConfigurationInvalid(
+        'No indexer HTTP endpoint configured',
+        contractAddress,
+        'indexer.http'
+      );
+    }
+    logger.info(LOG_SYSTEM, `Discovering role IDs for contract ${contractAddress}`);
+    const query = this.buildRoleDiscoveryQuery();
+    const variables = { contract: contractAddress };
+    try {
+      const response = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query, variables }),
+      });
+      if (!response.ok) {
+        throw new OperationFailed(
+          `Indexer query failed with status ${response.status}`,
+          contractAddress,
+          'discoverRoleIds'
+        );
+      }
+      const result = (await response.json()) as IndexerRoleDiscoveryResponse;
+      if (result.errors && result.errors.length > 0) {
+        const errorMessages = result.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer query errors: ${errorMessages}`,
+          contractAddress,
+          'discoverRoleIds'
+        );
+      }
+      if (!result.data?.accessControlEvents?.nodes) {
+        logger.debug(LOG_SYSTEM, `No role events found for contract ${contractAddress}`);
+        return [];
+      }
+      // Extract unique role IDs, filtering out null/undefined values (ownership events)
+      const uniqueRoles = new Set<string>();
+      for (const node of result.data.accessControlEvents.nodes) {
+        if (node.role) {
+          uniqueRoles.add(node.role);
+        }
+      }
+      const roleIds = Array.from(uniqueRoles);
+      logger.info(
+        LOG_SYSTEM,
+        `Discovered ${roleIds.length} unique role(s) for ${contractAddress}`,
+        {
+          roles: roleIds,
+        }
+      );
+      return roleIds;
+    } catch (error) {
+      logger.error(
+        LOG_SYSTEM,
+        `Failed to discover role IDs: ${error instanceof Error ? error.message : String(error)}`
+      );
+      throw error;
+    }
+  }
+  /**
+   * Query the latest grant events for a set of members with a specific role
+   *
+   * Returns the most recent ROLE_GRANTED event for each member address.
+   * This is used to enrich role assignments with grant timestamps.
+   *
+   * @param contractAddress The contract address
+   * @param roleId The role identifier to query
+   * @param memberAddresses Array of member addresses to look up
+   * @returns Promise resolving to a Map of address -> GrantInfo
+   * @throws IndexerUnavailable if indexer is not available
+   * @throws OperationFailed if query fails
+   */
+  async queryLatestGrants(
+    contractAddress: string,
+    roleId: string,
+    memberAddresses: string[]
+  ): Promise<Map<string, GrantInfo>> {
+    if (memberAddresses.length === 0) {
+      return new Map();
+    }
+    const isAvailable = await this.checkAvailability();
+    if (!isAvailable) {
+      throw new IndexerUnavailable(
+        'Indexer not available for this network',
+        contractAddress,
+        this.networkConfig.id
+      );
+    }
+    const endpoints = this.resolveIndexerEndpoints();
+    if (!endpoints.http) {
+      throw new ConfigurationInvalid(
+        'No indexer HTTP endpoint configured',
+        contractAddress,
+        'indexer.http'
+      );
+    }
+    logger.debug(
+      LOG_SYSTEM,
+      `Querying latest grants for ${memberAddresses.length} member(s) with role ${roleId}`
+    );
+    const query = this.buildLatestGrantsQuery();
+    const variables = {
+      contract: contractAddress,
+      role: roleId,
+      accounts: memberAddresses,
+    };
+    try {
+      const response = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query, variables }),
+      });
+      if (!response.ok) {
+        throw new OperationFailed(
+          `Indexer query failed with status ${response.status}`,
+          contractAddress,
+          'queryLatestGrants'
+        );
+      }
+      const result = (await response.json()) as IndexerHistoryResponse;
+      if (result.errors && result.errors.length > 0) {
+        const errorMessages = result.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer query errors: ${errorMessages}`,
+          contractAddress,
+          'queryLatestGrants'
+        );
+      }
+      if (!result.data?.accessControlEvents?.nodes) {
+        logger.debug(LOG_SYSTEM, `No grant events found for role ${roleId}`);
+        return new Map();
+      }
+      // Build map of address -> latest grant info
+      // Since we order by TIMESTAMP_DESC, we take the first occurrence per account
+      const grantMap = new Map<string, GrantInfo>();
+      for (const entry of result.data.accessControlEvents.nodes) {
+        // For role grants, account is always present
+        const account = entry.account || '';
+        if (account && !grantMap.has(account)) {
+          grantMap.set(account, {
+            timestamp: entry.timestamp,
+            txId: entry.txHash,
+            ledger: parseInt(entry.blockNumber, 10),
+          });
+        }
+      }
+      logger.debug(
+        LOG_SYSTEM,
+        `Found grant info for ${grantMap.size} of ${memberAddresses.length} member(s)`
+      );
+      return grantMap;
+    } catch (error) {
+      logger.error(
+        LOG_SYSTEM,
+        `Failed to query latest grants: ${error instanceof Error ? error.message : String(error)}`
+      );
+      throw error;
+    }
+  }
+  /**
+   * Query the latest pending ownership transfer for a contract
+   *
+   * Queries the indexer for `OWNERSHIP_TRANSFER_INITIATED` events and checks if
+   * a corresponding `OWNERSHIP_TRANSFER_COMPLETED` event exists after the initiation.
+   * If no completion event exists, returns the pending transfer details.
+   *
+   * @param contractAddress The contract address to query
+   * @returns Promise resolving to pending transfer info, or null if no pending transfer
+   * @throws IndexerUnavailable if indexer is not available
+   * @throws OperationFailed if query fails
+   *
+   * @example
+   * ```typescript
+   * const pending = await client.queryPendingOwnershipTransfer('CABC...XYZ');
+   * if (pending) {
+   *   console.log(`Pending owner: ${pending.pendingOwner}`);
+   *   console.log(`Transfer started at ledger: ${pending.ledger}`);
+   * }
+   * ```
+   */
+  async queryPendingOwnershipTransfer(
+    contractAddress: string
+  ): Promise<OwnershipTransferStartedEvent | null> {
+    const isAvailable = await this.checkAvailability();
+    if (!isAvailable) {
+      throw new IndexerUnavailable(
+        'Indexer not available for this network',
+        contractAddress,
+        this.networkConfig.id
+      );
+    }
+    const endpoints = this.resolveIndexerEndpoints();
+    if (!endpoints.http) {
+      throw new ConfigurationInvalid(
+        'No indexer HTTP endpoint configured',
+        contractAddress,
+        'indexer.http'
+      );
+    }
+    logger.info(LOG_SYSTEM, `Querying pending ownership transfer for ${contractAddress}`);
+    // Step 1: Query latest OWNERSHIP_TRANSFER_STARTED event
+    const initiationQuery = this.buildOwnershipTransferStartedQuery();
+    const initiationVariables = { contract: contractAddress };
+    try {
+      const initiationResponse = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query: initiationQuery, variables: initiationVariables }),
+      });
+      if (!initiationResponse.ok) {
+        throw new OperationFailed(
+          `Indexer query failed with status ${initiationResponse.status}`,
+          contractAddress,
+          'queryPendingOwnershipTransfer'
+        );
+      }
+      const initiationResult =
+        (await initiationResponse.json()) as IndexerOwnershipTransferResponse;
+      if (initiationResult.errors && initiationResult.errors.length > 0) {
+        const errorMessages = initiationResult.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer query errors: ${errorMessages}`,
+          contractAddress,
+          'queryPendingOwnershipTransfer'
+        );
+      }
+      const initiatedNodes = initiationResult.data?.accessControlEvents?.nodes;
+      if (!initiatedNodes || initiatedNodes.length === 0) {
+        logger.debug(LOG_SYSTEM, `No ownership transfer initiated for ${contractAddress}`);
+        return null;
+      }
+      const latestInitiation = initiatedNodes[0];
+      // Step 2: Check if a completion event exists after the initiation
+      const completionQuery = this.buildOwnershipTransferCompletedQuery();
+      const completionVariables = {
+        contract: contractAddress,
+        afterTimestamp: latestInitiation.timestamp,
+      };
+      const completionResponse = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query: completionQuery, variables: completionVariables }),
+      });
+      if (!completionResponse.ok) {
+        throw new OperationFailed(
+          `Indexer completion query failed with status ${completionResponse.status}`,
+          contractAddress,
+          'queryPendingOwnershipTransfer'
+        );
+      }
+      const completionResult =
+        (await completionResponse.json()) as IndexerOwnershipTransferResponse;
+      // Check for GraphQL errors in completion query (same as initiation query)
+      if (completionResult.errors && completionResult.errors.length > 0) {
+        const errorMessages = completionResult.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer completion query errors: ${errorMessages}`,
+          contractAddress,
+          'queryPendingOwnershipTransfer'
+        );
+      }
+      const completedNodes = completionResult.data?.accessControlEvents?.nodes;
+      if (completedNodes && completedNodes.length > 0) {
+        // Transfer was completed after initiation - no pending transfer
+        logger.debug(LOG_SYSTEM, `Ownership transfer was completed for ${contractAddress}`);
+        return null;
+      }
+      // No completion - validate required fields before returning pending transfer info
+      if (!latestInitiation.previousOwner) {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer returned OWNERSHIP_TRANSFER_STARTED event without previousOwner field for ${contractAddress}. ` +
+            `This indicates incomplete indexer data. Treating as no valid pending transfer.`
+        );
+        return null;
+      }
+      if (!latestInitiation.newOwner) {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer returned OWNERSHIP_TRANSFER_STARTED event without newOwner field for ${contractAddress}. ` +
+            `This indicates incomplete indexer data. Treating as no valid pending transfer.`
+        );
+        return null;
+      }
+      // Validate liveUntilLedger is present (required for expiration checking)
+      if (
+        latestInitiation.liveUntilLedger === undefined ||
+        latestInitiation.liveUntilLedger === null
+      ) {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer returned OWNERSHIP_TRANSFER_STARTED event without liveUntilLedger for ${contractAddress}. ` +
+            `This may indicate an older indexer version. Treating as no valid pending transfer.`
+        );
+        return null;
+      }
+      logger.info(
+        LOG_SYSTEM,
+        `Found pending ownership transfer for ${contractAddress}: pending owner=${latestInitiation.newOwner}, expires at ledger ${latestInitiation.liveUntilLedger}`
+      );
+      return {
+        previousOwner: latestInitiation.previousOwner,
+        pendingOwner: latestInitiation.newOwner,
+        txHash: latestInitiation.txHash,
+        timestamp: latestInitiation.timestamp,
+        ledger: parseInt(latestInitiation.blockNumber, 10),
+        liveUntilLedger: latestInitiation.liveUntilLedger,
+      };
+    } catch (error) {
+      if (error instanceof IndexerUnavailable || error instanceof OperationFailed) {
+        throw error;
+      }
+      logger.error(
+        LOG_SYSTEM,
+        `Failed to query pending ownership transfer: ${error instanceof Error ? error.message : String(error)}`
+      );
+      throw new OperationFailed(
+        `Failed to query pending ownership transfer: ${(error as Error).message}`,
+        contractAddress,
+        'queryPendingOwnershipTransfer'
+      );
+    }
+  }
+  /**
+   * Query the latest pending admin transfer for a contract
+   *
+   * Queries the indexer for `ADMIN_TRANSFER_INITIATED` events and checks if
+   * a corresponding `ADMIN_TRANSFER_COMPLETED` event exists after the initiation.
+   * If no completion event exists, returns the pending transfer details.
+   *
+   * @param contractAddress The contract address to query
+   * @returns Promise resolving to pending transfer info, or null if no pending transfer
+   * @throws IndexerUnavailable if indexer is not available
+   * @throws OperationFailed if query fails
+   *
+   * @example
+   * ```typescript
+   * const pending = await client.queryPendingAdminTransfer('CABC...XYZ');
+   * if (pending) {
+   *   console.log(`Pending admin: ${pending.pendingAdmin}`);
+   *   console.log(`Transfer started at ledger: ${pending.ledger}`);
+   * }
+   * ```
+   */
+  async queryPendingAdminTransfer(
+    contractAddress: string
+  ): Promise<AdminTransferInitiatedEvent | null> {
+    const isAvailable = await this.checkAvailability();
+    if (!isAvailable) {
+      throw new IndexerUnavailable(
+        'Indexer not available for this network',
+        contractAddress,
+        this.networkConfig.id
+      );
+    }
+    const endpoints = this.resolveIndexerEndpoints();
+    if (!endpoints.http) {
+      throw new ConfigurationInvalid(
+        'No indexer HTTP endpoint configured',
+        contractAddress,
+        'indexer.http'
+      );
+    }
+    logger.info(LOG_SYSTEM, `Querying pending admin transfer for ${contractAddress}`);
+    // Step 1: Query latest ADMIN_TRANSFER_INITIATED event
+    const initiationQuery = this.buildAdminTransferInitiatedQuery();
+    const initiationVariables = { contract: contractAddress };
+    try {
+      const initiationResponse = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query: initiationQuery, variables: initiationVariables }),
+      });
+      if (!initiationResponse.ok) {
+        throw new OperationFailed(
+          `Indexer query failed with status ${initiationResponse.status}`,
+          contractAddress,
+          'queryPendingAdminTransfer'
+        );
+      }
+      const initiationResult =
+        (await initiationResponse.json()) as IndexerOwnershipTransferResponse;
+      if (initiationResult.errors && initiationResult.errors.length > 0) {
+        const errorMessages = initiationResult.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer query errors: ${errorMessages}`,
+          contractAddress,
+          'queryPendingAdminTransfer'
+        );
+      }
+      const initiatedNodes = initiationResult.data?.accessControlEvents?.nodes;
+      if (!initiatedNodes || initiatedNodes.length === 0) {
+        logger.debug(LOG_SYSTEM, `No admin transfer initiated for ${contractAddress}`);
+        return null;
+      }
+      const latestInitiation = initiatedNodes[0];
+      // Step 2: Check if a completion event exists after the initiation
+      const completionQuery = this.buildAdminTransferCompletedQuery();
+      const completionVariables = {
+        contract: contractAddress,
+        afterTimestamp: latestInitiation.timestamp,
+      };
+      const completionResponse = await fetch(endpoints.http, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ query: completionQuery, variables: completionVariables }),
+      });
+      if (!completionResponse.ok) {
+        throw new OperationFailed(
+          `Indexer completion query failed with status ${completionResponse.status}`,
+          contractAddress,
+          'queryPendingAdminTransfer'
+        );
+      }
+      const completionResult =
+        (await completionResponse.json()) as IndexerOwnershipTransferResponse;
+      // Check for GraphQL errors in completion query
+      if (completionResult.errors && completionResult.errors.length > 0) {
+        const errorMessages = completionResult.errors.map((e) => e.message).join('; ');
+        throw new OperationFailed(
+          `Indexer completion query errors: ${errorMessages}`,
+          contractAddress,
+          'queryPendingAdminTransfer'
+        );
+      }
+      const completedNodes = completionResult.data?.accessControlEvents?.nodes;
+      if (completedNodes && completedNodes.length > 0) {
+        // Transfer was completed after initiation - no pending transfer
+        logger.debug(LOG_SYSTEM, `Admin transfer was completed for ${contractAddress}`);
+        return null;
+      }
+      // No completion - validate required fields before returning pending transfer info
+      if (!latestInitiation.previousAdmin) {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer returned ADMIN_TRANSFER_INITIATED event without previousAdmin field for ${contractAddress}. ` +
+            `This indicates incomplete indexer data. Treating as no valid pending transfer.`
+        );
+        return null;
+      }
+      if (!latestInitiation.newAdmin) {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer returned ADMIN_TRANSFER_INITIATED event without newAdmin field for ${contractAddress}. ` +
+            `This indicates incomplete indexer data. Treating as no valid pending transfer.`
+        );
+        return null;
+      }
+      // Validate liveUntilLedger is present (required for expiration checking)
+      if (
+        latestInitiation.liveUntilLedger === undefined ||
+        latestInitiation.liveUntilLedger === null
+      ) {
+        logger.warn(
+          LOG_SYSTEM,
+          `Indexer returned ADMIN_TRANSFER_INITIATED event without liveUntilLedger for ${contractAddress}. ` +
+            `This may indicate an older indexer version. Treating as no valid pending transfer.`
+        );
+        return null;
+      }
+      logger.info(
+        LOG_SYSTEM,
+        `Found pending admin transfer for ${contractAddress}: pending admin=${latestInitiation.newAdmin}, expires at ledger ${latestInitiation.liveUntilLedger}`
+      );
+      return {
+        previousAdmin: latestInitiation.previousAdmin,
+        pendingAdmin: latestInitiation.newAdmin,
+        txHash: latestInitiation.txHash,
+        timestamp: latestInitiation.timestamp,
+        ledger: parseInt(latestInitiation.blockNumber, 10),
+        liveUntilLedger: latestInitiation.liveUntilLedger,
+      };
+    } catch (error) {
+      if (error instanceof IndexerUnavailable || error instanceof OperationFailed) {
+        throw error;
+      }
+      logger.error(
+        LOG_SYSTEM,
+        `Failed to query pending admin transfer: ${error instanceof Error ? error.message : String(error)}`
+      );
+      throw new OperationFailed(
+        `Failed to query pending admin transfer: ${(error as Error).message}`,
+        contractAddress,
+        'queryPendingAdminTransfer'
+      );
+    }
+  }
+  /**
+   * Build GraphQL query for OWNERSHIP_TRANSFER_STARTED events
+   *
+   * Note: The OpenZeppelin Stellar contract emits `ownership_transfer` event
+   * which is indexed as `OWNERSHIP_TRANSFER_STARTED`.
+   *
+   */
+  private buildOwnershipTransferStartedQuery(): string {
+    return `
+      query GetOwnershipTransferStarted($contract: String!) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }
+            eventType: { equalTo: OWNERSHIP_TRANSFER_STARTED }
+          }
+          orderBy: TIMESTAMP_DESC
+          first: 1
+        ) {
+          nodes {
+            id
+            previousOwner
+            newOwner
+            txHash
+            timestamp
+            blockNumber
+            liveUntilLedger
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Build GraphQL query for OWNERSHIP_TRANSFER_COMPLETED events after a given timestamp
+   */
+  private buildOwnershipTransferCompletedQuery(): string {
+    return `
+      query GetOwnershipTransferCompleted($contract: String!, $afterTimestamp: Datetime!) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }
+            eventType: { equalTo: OWNERSHIP_TRANSFER_COMPLETED }
+            timestamp: { greaterThan: $afterTimestamp }
+          }
+          orderBy: TIMESTAMP_DESC
+          first: 1
+        ) {
+          nodes {
+            id
+            txHash
+            timestamp
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Build GraphQL query for ADMIN_TRANSFER_INITIATED events
+   *
+   * Note: The OpenZeppelin Stellar contract emits `admin_transfer_initiated` event
+   * which is indexed as `ADMIN_TRANSFER_INITIATED`.
+   */
+  private buildAdminTransferInitiatedQuery(): string {
+    return `
+      query GetAdminTransferInitiated($contract: String!) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }
+            eventType: { equalTo: ADMIN_TRANSFER_INITIATED }
+          }
+          orderBy: TIMESTAMP_DESC
+          first: 1
+        ) {
+          nodes {
+            id
+            previousAdmin
+            newAdmin
+            txHash
+            timestamp
+            blockNumber
+            liveUntilLedger
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Build GraphQL query for ADMIN_TRANSFER_COMPLETED events after a given timestamp
+   */
+  private buildAdminTransferCompletedQuery(): string {
+    return `
+      query GetAdminTransferCompleted($contract: String!, $afterTimestamp: Datetime!) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }
+            eventType: { equalTo: ADMIN_TRANSFER_COMPLETED }
+            timestamp: { greaterThan: $afterTimestamp }
+          }
+          orderBy: TIMESTAMP_DESC
+          first: 1
+        ) {
+          nodes {
+            id
+            txHash
+            timestamp
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Resolve indexer endpoints with config precedence
+   * Priority:
+   * 1. User-configured indexer from UserNetworkServiceConfigService (localStorage)
+   * 2. Runtime override from AppConfigService (environment/JSON config)
+   * 3. Network config defaults (indexerUri/indexerWsUri)
+   * 4. Derived from RPC (if safe pattern exists)
+   * 5. None (returns empty object)
+   *
+   * @returns Resolved indexer endpoints
+   */
+  private resolveIndexerEndpoints(): IndexerEndpointConfig {
+    if (this.resolvedEndpoints) {
+      return this.resolvedEndpoints;
+    }
+    const networkId = this.networkConfig.id;
+    const endpoints: IndexerEndpointConfig = {};
+    // Priority 1: Check user-configured indexer from localStorage
+    const userIndexerConfig = getUserIndexerEndpoints(networkId);
+    if (userIndexerConfig) {
+      if (userIndexerConfig.http) {
+        endpoints.http = userIndexerConfig.http;
+      }
+      if (userIndexerConfig.ws) {
+        endpoints.ws = userIndexerConfig.ws;
+      }
+      if (endpoints.http || endpoints.ws) {
+        logger.info(
+          LOG_SYSTEM,
+          `Using user-configured indexer for ${networkId}: http=${endpoints.http}, ws=${endpoints.ws}`
+        );
+        this.resolvedEndpoints = endpoints;
+        return endpoints;
+      }
+    }
+    // Priority 2: Check AppConfigService for runtime override
+    const indexerOverride = appConfigService.getIndexerEndpointOverride(networkId);
+    if (indexerOverride) {
+      if (typeof indexerOverride === 'string') {
+        endpoints.http = indexerOverride;
+        logger.info(
+          LOG_SYSTEM,
+          `Using runtime indexer override for ${networkId}: ${indexerOverride}`
+        );
+      } else if (typeof indexerOverride === 'object') {
+        if ('http' in indexerOverride && indexerOverride.http) {
+          endpoints.http = indexerOverride.http;
+        }
+        if ('ws' in indexerOverride && indexerOverride.ws) {
+          endpoints.ws = indexerOverride.ws;
+        }
+        logger.info(
+          LOG_SYSTEM,
+          `Using runtime indexer override for ${networkId}: http=${endpoints.http}, ws=${endpoints.ws}`
+        );
+      }
+      this.resolvedEndpoints = endpoints;
+      return endpoints;
+    }
+    // Priority 3: Network config defaults (prefer accessControlIndexerUrl, fall back to indexerUri)
+    const defaultHttpUrl =
+      this.networkConfig.accessControlIndexerUrl ?? this.networkConfig.indexerUri;
+    if (defaultHttpUrl) {
+      endpoints.http = defaultHttpUrl;
+      logger.info(
+        LOG_SYSTEM,
+        `Using network config indexer URI for ${networkId}: ${endpoints.http}`
+      );
+    }
+    if (this.networkConfig.indexerWsUri) {
+      endpoints.ws = this.networkConfig.indexerWsUri;
+      logger.debug(
+        LOG_SYSTEM,
+        `Using network config indexer WS URI for ${networkId}: ${endpoints.ws}`
+      );
+    }
+    if (endpoints.http || endpoints.ws) {
+      this.resolvedEndpoints = endpoints;
+      return endpoints;
+    }
+    // Priority 4: Derive from RPC (only if safe, known pattern exists)
+    // Currently DISABLED - no safe derivation pattern implemented
+    // This would be enabled in the future when indexer/RPC relationship is well-defined
+    logger.debug(LOG_SYSTEM, `No indexer derivation pattern available for ${networkId}`);
+    // Priority 4: None - no indexer configured
+    logger.debug(LOG_SYSTEM, `No indexer endpoints configured for ${networkId}`);
+    this.resolvedEndpoints = endpoints;
+    return endpoints;
+  }
+  /**
+   * Maps internal changeType to GraphQL EventType enum
+   */
+  private mapChangeTypeToGraphQLEnum(changeType: HistoryChangeType): string {
+    const mapping: Record<HistoryChangeType, string> = {
+      GRANTED: 'ROLE_GRANTED',
+      REVOKED: 'ROLE_REVOKED',
+      ROLE_ADMIN_CHANGED: 'ROLE_ADMIN_CHANGED',
+      OWNERSHIP_TRANSFER_STARTED: 'OWNERSHIP_TRANSFER_STARTED',
+      OWNERSHIP_TRANSFER_COMPLETED: 'OWNERSHIP_TRANSFER_COMPLETED',
+      OWNERSHIP_RENOUNCED: 'OWNERSHIP_RENOUNCED',
+      ADMIN_TRANSFER_INITIATED: 'ADMIN_TRANSFER_INITIATED',
+      ADMIN_TRANSFER_COMPLETED: 'ADMIN_TRANSFER_COMPLETED',
+      ADMIN_TRANSFER_CANCELED: 'UNKNOWN', // EVM-only event, not applicable to Stellar
+      ADMIN_RENOUNCED: 'ADMIN_RENOUNCED',
+      ADMIN_DELAY_CHANGE_SCHEDULED: 'UNKNOWN', // EVM-only event, not applicable to Stellar
+      ADMIN_DELAY_CHANGE_CANCELED: 'UNKNOWN', // EVM-only event, not applicable to Stellar
+      UNKNOWN: 'UNKNOWN',
+    };
+    return mapping[changeType];
+  }
+  /**
+   * Build GraphQL query for history with SubQuery filtering and pagination
+   */
+  private buildHistoryQuery(_contractAddress: string, options?: HistoryQueryOptions): string {
+    const roleFilter = options?.roleId ? ', role: { equalTo: $role }' : '';
+    const accountFilter = options?.account ? ', account: { equalTo: $account }' : '';
+    // Type filter uses inline enum value (consistent with buildLatestGrantsQuery pattern)
+    const typeFilter = options?.changeType
+      ? `, eventType: { equalTo: ${this.mapChangeTypeToGraphQLEnum(options.changeType)} }`
+      : '';
+    const txFilter = options?.txId ? ', txHash: { equalTo: $txHash }' : '';
+    // Build combined timestamp filter to avoid duplicate keys
+    const timestampConditions: string[] = [];
+    if (options?.timestampFrom) {
+      timestampConditions.push('greaterThanOrEqualTo: $timestampFrom');
+    }
+    if (options?.timestampTo) {
+      timestampConditions.push('lessThanOrEqualTo: $timestampTo');
+    }
+    const timestampFilter =
+      timestampConditions.length > 0 ? `, timestamp: { ${timestampConditions.join(', ')} }` : '';
+    const ledgerFilter = options?.ledger ? ', blockNumber: { equalTo: $blockNumber }' : '';
+    const limitClause = options?.limit ? ', first: $limit' : '';
+    const cursorClause = options?.cursor ? ', after: $cursor' : '';
+    // Build variable declarations
+    // Note: SubQuery uses Datetime for timestamp filters and BigFloat for blockNumber filtering
+    const varDeclarations = [
+      '$contract: String!',
+      options?.roleId ? '$role: String' : '',
+      options?.account ? '$account: String' : '',
+      options?.txId ? '$txHash: String' : '',
+      options?.timestampFrom ? '$timestampFrom: Datetime' : '',
+      options?.timestampTo ? '$timestampTo: Datetime' : '',
+      options?.ledger ? '$blockNumber: BigFloat' : '',
+      options?.limit ? '$limit: Int' : '',
+      options?.cursor ? '$cursor: Cursor' : '',
+    ]
+      .filter(Boolean)
+      .join(', ');
+    return `
+      query GetHistory(${varDeclarations}) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }${roleFilter}${accountFilter}${typeFilter}${txFilter}${timestampFilter}${ledgerFilter}
+          }
+          orderBy: TIMESTAMP_DESC${limitClause}${cursorClause}
+        ) {
+          nodes {
+            id
+            role
+            account
+            eventType
+            txHash
+            timestamp
+            blockNumber
+            previousOwner
+            newOwner
+            previousAdmin
+            newAdmin
+          }
+          pageInfo {
+            hasNextPage
+            endCursor
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Build query variables including pagination cursor
+   */
+  private buildQueryVariables(
+    contractAddress: string,
+    options?: HistoryQueryOptions
+  ): Record<string, unknown> {
+    const variables: Record<string, unknown> = {
+      contract: contractAddress,
+    };
+    if (options?.roleId) {
+      variables.role = options.roleId;
+    }
+    if (options?.account) {
+      variables.account = options.account;
+    }
+    if (options?.txId) {
+      variables.txHash = options.txId;
+    }
+    if (options?.timestampFrom) {
+      variables.timestampFrom = options.timestampFrom;
+    }
+    if (options?.timestampTo) {
+      variables.timestampTo = options.timestampTo;
+    }
+    if (options?.ledger) {
+      // GraphQL expects blockNumber as string
+      variables.blockNumber = String(options.ledger);
+    }
+    if (options?.limit) {
+      variables.limit = options.limit;
+    }
+    if (options?.cursor) {
+      variables.cursor = options.cursor;
+    }
+    return variables;
+  }
+  /**
+   * Build GraphQL query for role discovery
+   * Queries all ROLE_GRANTED and ROLE_REVOKED events to extract unique role identifiers
+   * Note: EventType is a GraphQL enum, so values must not be quoted
+   */
+  private buildRoleDiscoveryQuery(): string {
+    return `
+      query DiscoverRoles($contract: String!) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }
+            eventType: { in: [ROLE_GRANTED, ROLE_REVOKED] }
+          }
+        ) {
+          nodes {
+            role
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Build GraphQL query for latest grants
+   * Queries ROLE_GRANTED events for a specific role and set of accounts
+   * Ordered by timestamp descending so first occurrence per account is the latest
+   */
+  private buildLatestGrantsQuery(): string {
+    return `
+      query LatestGrants($contract: String!, $role: String!, $accounts: [String!]!) {
+        accessControlEvents(
+          filter: {
+            contract: { equalTo: $contract }
+            role: { equalTo: $role }
+            account: { in: $accounts }
+            eventType: { equalTo: ROLE_GRANTED }
+          }
+          orderBy: TIMESTAMP_DESC
+        ) {
+          nodes {
+            account
+            txHash
+            timestamp
+            blockNumber
+          }
+        }
+      }
+    `;
+  }
+  /**
+   * Normalize account from indexer entry
+   *
+   * Multi-chain schema uses different fields for different event types:
+   * - Role events: `account` field
+   * - Ownership events: `newOwner` field (pending/new owner)
+   * - Admin events: `newAdmin` field (pending/new admin)
+   */
+  private normalizeAccount(entry: IndexerHistoryEntry): string {
+    // For role events, use account directly
+    if (
+      entry.eventType === 'ROLE_GRANTED' ||
+      entry.eventType === 'ROLE_REVOKED' ||
+      entry.eventType === 'ROLE_ADMIN_CHANGED'
+    ) {
+      return entry.account || '';
+    }
+    // For ownership events, use newOwner
+    if (
+      entry.eventType === 'OWNERSHIP_TRANSFER_STARTED' ||
+      entry.eventType === 'OWNERSHIP_TRANSFER_COMPLETED' ||
+      entry.eventType === 'OWNERSHIP_RENOUNCED'
+    ) {
+      return entry.newOwner || '';
+    }
+    // For admin events, use newAdmin
+    if (
+      entry.eventType === 'ADMIN_TRANSFER_INITIATED' ||
+      entry.eventType === 'ADMIN_TRANSFER_COMPLETED' ||
+      entry.eventType === 'ADMIN_RENOUNCED'
+    ) {
+      return entry.newAdmin || '';
+    }
+    // Fallback for unknown event types
+    return entry.account || '';
+  }
+  /**
+   * Transform indexer entries to standard HistoryEntry format
+   */
+  private transformIndexerEntries(entries: IndexerHistoryEntry[]): HistoryEntry[] {
+    return entries.map((entry) => {
+      const role: RoleIdentifier = {
+        id: entry.role || 'OWNER', // Map ownership events to special role
+      };
+      // Map SubQuery event types to internal types
+      let changeType: HistoryChangeType;
+      switch (entry.eventType) {
+        case 'ROLE_GRANTED':
+          changeType = 'GRANTED';
+          break;
+        case 'ROLE_REVOKED':
+          changeType = 'REVOKED';
+          break;
+        case 'ROLE_ADMIN_CHANGED':
+          changeType = 'ROLE_ADMIN_CHANGED';
+          break;
+        case 'OWNERSHIP_TRANSFER_STARTED':
+          changeType = 'OWNERSHIP_TRANSFER_STARTED';
+          break;
+        case 'OWNERSHIP_TRANSFER_COMPLETED':
+          changeType = 'OWNERSHIP_TRANSFER_COMPLETED';
+          break;
+        case 'OWNERSHIP_RENOUNCED':
+          changeType = 'OWNERSHIP_RENOUNCED';
+          break;
+        case 'ADMIN_TRANSFER_INITIATED':
+          changeType = 'ADMIN_TRANSFER_INITIATED';
+          break;
+        case 'ADMIN_TRANSFER_COMPLETED':
+          changeType = 'ADMIN_TRANSFER_COMPLETED';
+          break;
+        case 'ADMIN_RENOUNCED':
+          changeType = 'ADMIN_RENOUNCED';
+          break;
+        default:
+          // Use UNKNOWN for unrecognized types to make indexer schema issues visible
+          logger.warn(
+            LOG_SYSTEM,
+            `Unknown event type: ${entry.eventType}, assigning changeType to UNKNOWN`
+          );
+          changeType = 'UNKNOWN';
+      }
+      return {
+        role,
+        account: this.normalizeAccount(entry),
+        changeType,
+        txId: entry.txHash,
+        timestamp: entry.timestamp,
+        ledger: parseInt(entry.blockNumber, 10),
+      };
+    });
+  }
+}
+/**
+ * Factory function to create an indexer client for a network
+ * @param networkConfig The Stellar network configuration
+ * @returns A new indexer client instance
+ */
+export function createIndexerClient(networkConfig: StellarNetworkConfig): StellarIndexerClient {
+  return new StellarIndexerClient(networkConfig);
+}