@phantom/browser-sdk 1.0.0-beta.21 → 1.0.0-beta.22

package/README.md

@@ -15,7 +15,7 @@ import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
 // Connect to Phantom browser extension
 const sdk = new BrowserSDK({
-  providerType: "injected",
+  providers: ["injected"], // Only allow browser extension
   addressTypes: [AddressType.solana, AddressType.ethereum],
 });
 
@@ -35,14 +35,14 @@ const solanaResult = await sdk.solana.signAndSendTransaction(mySolanaTransaction
 const ethResult = await sdk.ethereum.sendTransaction(myEthTransaction);
 ```
 
-### Embedded Provider
+### Embedded Provider (Multiple Auth Methods)
 
 ```typescript
 import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
-// Create embedded non-custodial wallet
+// Create embedded non-custodial wallet with multiple auth providers
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom"], // Allow Google, Apple, and Phantom Login
   addressTypes: [AddressType.solana, AddressType.ethereum],
   appId: "your-app-id", // Get your app ID from phantom.com/portal
 });
@@ -72,14 +72,15 @@ After instantiating the SDK, use `sdk.connect()` to establish a connection to th
 ```typescript
 import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
-// 1. Create SDK instance
+// 1. Create SDK instance with allowed providers
 const sdk = new BrowserSDK({
-  providerType: "injected",
+  providers: ["google", "apple", "phantom", "injected"], // Allowed auth providers
   addressTypes: [AddressType.solana, AddressType.ethereum],
+  appId: "your-app-id", // Required when using embedded providers
 });
 
-// 2. Connect to wallet (provider parameter is required)
-const { addresses } = await sdk.connect({ provider: "injected" });
+// 2. Connect to wallet (provider parameter must be in allowed providers list)
+const { addresses } = await sdk.connect({ provider: "google" });
 console.log("Connected addresses:", addresses);
 
 // 3. Use chain-specific methods
@@ -182,39 +183,50 @@ const accounts = await sdk.ethereum.getAccounts();
 const isConnected = sdk.ethereum.isConnected();
 ```
 
-## Provider Types
+## Authentication Providers
+
+The SDK supports multiple authentication providers that you configure via the `providers` array:
+
+### Available Providers
 
-### Injected Provider
+- **`"injected"`** - Phantom browser extension (no `appId` required)
+- **`"google"`** - Google OAuth (requires `appId`)
+- **`"apple"`** - Apple ID (requires `appId`)
+- **`"phantom"`** - Phantom Login (requires `appId`)
+- **`"x"`** - X/Twitter (requires `appId`)
+- **`"tiktok"`** - TikTok (requires `appId`)
 
-Uses the Phantom browser extension installed by the user. No additional configuration needed.
+### Configuration Examples
+
+**Injected Provider Only (Browser Extension)**
 
 ```typescript
 const sdk = new BrowserSDK({
-  providerType: "injected",
+  providers: ["injected"], // Only allow browser extension
   addressTypes: [AddressType.solana, AddressType.ethereum],
 });
 ```
 
-### Embedded Provider
-
-Creates a non-custodial wallet embedded in your application. Requires API configuration.
+**Multiple Authentication Methods**
 
 ```typescript
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom", "injected"], // Allow all methods
   addressTypes: [AddressType.solana, AddressType.ethereum],
-  appId: "your-app-id", // Get your app ID from phantom.com/portal
+  appId: "your-app-id", // Required for embedded providers (google, apple, phantom, x, tiktok)
   authOptions: {
-    authUrl: "https://connect.phantom.app/login", // optional, defaults to "https://connect.phantom.app/login"
+    authUrl: "https://connect.phantom.app/login", // optional
     redirectUrl: "https://yourapp.com/callback", // optional, defaults to current page
   },
-  autoConnect: true, // optional, auto-connect to existing session (default: true for embedded)
+  autoConnect: true, // optional, auto-connect to existing session (default: true when embedded providers are used)
 });
 ```
 
 ### Embedded Wallet Type
 
-#### User Wallet (`'user-wallet'`)
+When using embedded providers (google, apple, phantom, etc.), you can specify the wallet type:
+
+#### User Wallet (`'user-wallet'`) - Default
 
 - **Uses Phantom authentication** - user logs in with existing Phantom account
 - **Potentially funded** - brings in user's existing wallet balance
@@ -223,9 +235,10 @@ const sdk = new BrowserSDK({
 
 ```typescript
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom"],
   appId: "your-app-id",
   addressTypes: [AddressType.solana, AddressType.ethereum],
+  embeddedWalletType: "user-wallet", // default, can be omitted
 });
 ```
 
@@ -236,17 +249,16 @@ const sdk = new BrowserSDK({
 | `AddressType.solana`   | Solana Mainnet, Devnet, Testnet       |
 | `AddressType.ethereum` | Ethereum, Polygon, Arbitrum, and more |
 
-
 ### Auto-Connect Feature
 
 The SDK can automatically reconnect to existing sessions when instantiated, providing a seamless user experience.
 
 ```typescript
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom"],
   appId: "your-app-id",
   addressTypes: [AddressType.solana],
-  autoConnect: true, // Default: true for embedded, false for injected
+  autoConnect: true, // Default: true when embedded providers are used, false for injected-only
 });
 
 // SDK will automatically check for existing valid session and connect in background
@@ -258,7 +270,7 @@ if (sdk.isConnected()) {
   const addresses = await sdk.getAddresses();
 } else {
   // First time or session expired, need to connect manually
-  await sdk.connect();
+  await sdk.connect({ provider: "google" });
 }
 ```
 
@@ -266,14 +278,14 @@ if (sdk.isConnected()) {
 
 ```typescript
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom"],
   appId: "your-app-id",
   addressTypes: [AddressType.solana],
   autoConnect: false, // Disable auto-connect
 });
 
 // Now you must manually call connect() every time
-await sdk.connect();
+await sdk.connect({ provider: "google" });
 ```
 
 ## API Reference
@@ -288,21 +300,26 @@ new BrowserSDK(config: BrowserSDKConfig)
 
 ```typescript
 interface BrowserSDKConfig {
-  providerType: "injected" | "embedded";
+  // List of allowed authentication providers (REQUIRED)
+  providers: AuthProviderType[]; // e.g., ["google", "apple", "phantom", "injected"]
+
   addressTypes?: [AddressType, ...AddressType[]]; // Networks to enable (e.g., [AddressType.solana])
 
-  // Required for embedded provider only
-  appId?: string; // Your app ID from phantom.com/portal (required for embedded provider)
-  
+  // Required when using embedded providers (google, apple, phantom, x, tiktok)
+  appId?: string; // Your app ID from phantom.com/portal
+
   // Optional configuration
   apiBaseUrl?: string; // Phantom API base URL (optional, has default)
   authOptions?: {
     authUrl?: string; // Custom auth URL (optional, defaults to "https://connect.phantom.app/login")
     redirectUrl?: string; // Custom redirect URL after authentication (optional)
   };
-  embeddedWalletType?: "user-wallet"; // Wallet type (optional, defaults to "user-wallet", currently the only supported type)
-  autoConnect?: boolean; // Enable auto-connect to existing sessions (optional, defaults to true for embedded)
+  embeddedWalletType?: "user-wallet"; // Wallet type (optional, defaults to "user-wallet")
+  autoConnect?: boolean; // Auto-connect to existing session (default: true when embedded providers used)
 }
+
+// Valid provider types
+type AuthProviderType = "google" | "apple" | "phantom" | "x" | "tiktok" | "injected";
 ```
 
 ### Extension Detection
@@ -347,6 +364,7 @@ if (isAvailable) {
 Connect to wallet and get addresses for configured AddressTypes.
 
 **Parameters:**
+
 - `options: AuthOptions` (required) - Authentication options
   - `provider: "google" | "apple" | "jwt" | "phantom" | "injected"` (required) - Authentication provider to use
   - `jwtToken?: string` (optional) - JWT token (required when `provider` is "jwt")
@@ -362,7 +380,7 @@ const result = await sdk.connect({ provider: "phantom" });
 // Connect with Google authentication
 const result = await sdk.connect({ provider: "google" });
 
-// Returns: { addresses: WalletAddress[], status: "pending" | "completed", providerType: "embedded" | "injected" }
+// Returns: { addresses: WalletAddress[], status: "pending" | "completed", provider: "google" | "apple" | "injected" ...  }
 // addresses only includes types from addressTypes config
 ```
 
@@ -554,18 +572,18 @@ await sdk.ethereum.switchChain(42161); // Arbitrum One
 
 **Supported EVM Networks:**
 
-| Network | Chain ID | Usage |
-|---------|----------|-------|
-| Ethereum Mainnet | `1` | `switchChain(1)` |
+| Network          | Chain ID   | Usage                   |
+| ---------------- | ---------- | ----------------------- |
+| Ethereum Mainnet | `1`        | `switchChain(1)`        |
 | Ethereum Sepolia | `11155111` | `switchChain(11155111)` |
-| Polygon Mainnet | `137` | `switchChain(137)` |
-| Polygon Amoy | `80002` | `switchChain(80002)` |
-| Base Mainnet | `8453` | `switchChain(8453)` |
-| Base Sepolia | `84532` | `switchChain(84532)` |
-| Arbitrum One | `42161` | `switchChain(42161)` |
-| Arbitrum Sepolia | `421614` | `switchChain(421614)` |
-| Monad Mainnet | `143` | `switchChain(143)` |
-| Monad Testnet | `10143` | `switchChain(10143)` |
+| Polygon Mainnet  | `137`      | `switchChain(137)`      |
+| Polygon Amoy     | `80002`    | `switchChain(80002)`    |
+| Base Mainnet     | `8453`     | `switchChain(8453)`     |
+| Base Sepolia     | `84532`    | `switchChain(84532)`    |
+| Arbitrum One     | `42161`    | `switchChain(42161)`    |
+| Arbitrum Sepolia | `421614`   | `switchChain(421614)`   |
+| Monad Mainnet    | `143`      | `switchChain(143)`      |
+| Monad Testnet    | `10143`    | `switchChain(10143)`    |
 
 #### getChainId()
 
@@ -609,66 +627,66 @@ The SDK provides typed event handlers that allow you to listen for connection st
 #### Available Events
 
 ```typescript
-import { BrowserSDK } from '@phantom/browser-sdk';
+import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 import type {
   ConnectEventData,
   ConnectStartEventData,
   ConnectErrorEventData,
-  DisconnectEventData
-} from '@phantom/browser-sdk';
+  DisconnectEventData,
+} from "@phantom/browser-sdk";
 
 const sdk = new BrowserSDK({
-  providerType: 'embedded',
-  appId: 'your-app-id',
+  providers: ["google", "apple", "phantom"],
+  appId: "your-app-id",
   addressTypes: [AddressType.solana],
 });
 
 // 1. connect_start - Fired when connection starts
-sdk.on('connect_start', (data: ConnectStartEventData) => {
-  console.log('Connection starting:', data.source); // "auto-connect" | "manual-connect"
-  console.log('Auth options:', data.authOptions?.provider); // "google" | "apple" | etc.
+sdk.on("connect_start", (data: ConnectStartEventData) => {
+  console.log("Connection starting:", data.source); // "auto-connect" | "manual-connect"
+  console.log("Auth options:", data.authOptions?.provider); // "google" | "apple" | etc.
 });
 
 // 2. connect - Fired when connection succeeds (includes full ConnectResult)
-sdk.on('connect', (data: ConnectEventData) => {
-  console.log('Connected successfully!');
-  console.log('Provider type:', data.providerType); // "embedded" | "injected"
-  console.log('Wallet ID:', data.walletId); // only for embedded providers
-  console.log('Addresses:', data.addresses); // WalletAddress[]
-  console.log('Status:', data.status); // "pending" | "completed"
-  console.log('Source:', data.source); // "auto-connect" | "manual-connect" | "manual-existing" | "existing-session" | "manual"
+sdk.on("connect", (data: ConnectEventData) => {
+  console.log("Connected successfully!");
+  console.log("Provider type:", data.provider); // "google" | "apple" | "injected" ...
+  console.log("Wallet ID:", data.walletId); // only for embedded providers
+  console.log("Addresses:", data.addresses); // WalletAddress[]
+  console.log("Status:", data.status); // "pending" | "completed"
+  console.log("Source:", data.source); // "auto-connect" | "manual-connect" | "manual-existing" | "existing-session" | "manual"
 });
 
 // 3. connect_error - Fired when connection fails
-sdk.on('connect_error', (data: ConnectErrorEventData) => {
-  console.error('Connection failed:', data.error);
-  console.log('Source:', data.source); // "auto-connect" | "manual-connect"
+sdk.on("connect_error", (data: ConnectErrorEventData) => {
+  console.error("Connection failed:", data.error);
+  console.log("Source:", data.source); // "auto-connect" | "manual-connect"
 });
 
 // 4. disconnect - Fired when disconnected
-sdk.on('disconnect', (data: DisconnectEventData) => {
-  console.log('Disconnected from wallet');
-  console.log('Source:', data.source); // "manual"
+sdk.on("disconnect", (data: DisconnectEventData) => {
+  console.log("Disconnected from wallet");
+  console.log("Source:", data.source); // "manual"
 });
 
 // 5. error - General error handler
-sdk.on('error', (error: unknown) => {
-  console.error('SDK error:', error);
+sdk.on("error", (error: unknown) => {
+  console.error("SDK error:", error);
 });
 
 // Don't forget to remove listeners when done
-sdk.off('connect', handleConnect);
+sdk.off("connect", handleConnect);
 ```
 
 #### Event Types
 
-| Event | Payload Type | When Fired | Key Data |
-|-------|-------------|------------|----------|
-| `connect_start` | `ConnectStartEventData` | Connection initiated | `source`, `authOptions` |
-| `connect` | `ConnectEventData` | Connection successful | `providerType`, `addresses`, `status`, `source`, `user`|
-| `connect_error` | `ConnectErrorEventData` | Connection failed | `error`, `source` |
-| `disconnect` | `DisconnectEventData` | Disconnected | `source` |
-| `error` | `unknown` | General SDK errors | Error details |
+| Event           | Payload Type            | When Fired            | Key Data                                            |
+| --------------- | ----------------------- | --------------------- | --------------------------------------------------- |
+| `connect_start` | `ConnectStartEventData` | Connection initiated  | `source`, `authOptions`                             |
+| `connect`       | `ConnectEventData`      | Connection successful | `provider`, `addresses`, `status`, `source`, `user` |
+| `connect_error` | `ConnectErrorEventData` | Connection failed     | `error`, `source`                                   |
+| `disconnect`    | `DisconnectEventData`   | Disconnected          | `source`                                            |
+| `error`         | `unknown`               | General SDK errors    | Error details                                       |
 
 #### Using Events with autoConnect()
 
@@ -676,24 +694,24 @@ Event handlers are especially useful with `autoConnect()` since it doesn't retur
 
 ```typescript
 const sdk = new BrowserSDK({
-  providerType: 'embedded',
-  appId: 'your-app-id',
+  providers: ["google", "apple", "phantom"],
+  appId: "your-app-id",
   addressTypes: [AddressType.solana],
   autoConnect: true,
 });
 
 // Set up event listeners BEFORE autoConnect
-sdk.on('connect', (data: ConnectEventData) => {
-  console.log('Auto-connected successfully!');
-  console.log('Provider type:', data.providerType);
-  console.log('Addresses:', data.addresses);
+sdk.on("connect", (data: ConnectEventData) => {
+  console.log("Auto-connected successfully!");
+  console.log("Provider type:", data.provider);
+  console.log("Addresses:", data.addresses);
 
   // Update your UI state here
   updateUIWithAddresses(data.addresses);
 });
 
-sdk.on('connect_error', (data: ConnectErrorEventData) => {
-  console.log('Auto-connect failed:', data.error);
+sdk.on("connect_error", (data: ConnectErrorEventData) => {
+  console.log("Auto-connect failed:", data.error);
   // Show connect button to user
   showConnectButton();
 });
@@ -838,11 +856,12 @@ interface DebugMessage {
 ### Example: Debug Console Implementation
 
 ```typescript
-import { BrowserSDK, DebugLevel } from "@phantom/browser-sdk";
+import { BrowserSDK, DebugLevel, AddressType } from "@phantom/browser-sdk";
 
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom"],
   appId: "your-app-id",
+  addressTypes: [AddressType.solana],
 });
 
 // Store debug messages
@@ -907,7 +926,7 @@ import {
 import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
 const sdk = new BrowserSDK({
-  providerType: "injected",
+  providers: ["injected"],
   addressTypes: [AddressType.solana],
 });
 
@@ -960,7 +979,7 @@ import {
 import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
 const sdk = new BrowserSDK({
-  providerType: "injected",
+  providers: ["injected"],
   addressTypes: [AddressType.solana],
 });
 
@@ -990,7 +1009,7 @@ console.log("Transaction signature:", result.hash);
 import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
 const sdk = new BrowserSDK({
-  providerType: "injected",
+  providers: ["injected"],
   addressTypes: [AddressType.ethereum],
 });
 
@@ -1024,9 +1043,9 @@ import { parseEther, parseGwei, encodeFunctionData } from "viem";
 import { BrowserSDK, AddressType } from "@phantom/browser-sdk";
 
 const sdk = new BrowserSDK({
-  providerType: "embedded",
+  providers: ["google", "apple", "phantom"],
+  appId: "your-app-id",
   addressTypes: [AddressType.ethereum],
-  // ... config
 });
 
 // Simple transfer with viem utilities

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-import { EmbeddedProviderConfig, AuthOptions, ConnectResult, WalletAddress, EmbeddedProviderEvent, EventCallback } from '@phantom/embedded-provider-core';
-export { AuthOptions, ConnectErrorEventData, ConnectEventData, ConnectResult, ConnectStartEventData, DisconnectEventData, EmbeddedProviderEvent, EmbeddedProviderEventMap, EventCallback, SignAndSendTransactionParams, SignMessageParams, SignMessageResult, SignedTransaction, WalletAddress } from '@phantom/embedded-provider-core';
+import { EmbeddedProviderConfig, EmbeddedProviderAuthType, ConnectResult as ConnectResult$1, WalletAddress, EmbeddedProviderEvent, EventCallback } from '@phantom/embedded-provider-core';
+export { ConnectErrorEventData, ConnectEventData, ConnectStartEventData, DisconnectEventData, EmbeddedProviderEvent, EmbeddedProviderEventMap, EventCallback, SignAndSendTransactionParams, SignMessageParams, SignMessageResult, SignedTransaction, WalletAddress } from '@phantom/embedded-provider-core';
 import { ISolanaChain, IEthereumChain } from '@phantom/chain-interfaces';
 export { EthTransactionRequest, IEthereumChain, ISolanaChain } from '@phantom/chain-interfaces';
 import { AddressType } from '@phantom/client';
@@ -52,9 +52,6 @@ declare const DebugCategory: {
     readonly SESSION: "Session";
 };
 
-/**
- * Phantom extension app.login API types
- */
 interface PhantomAppLoginOptions {
     publicKey: string;
     appId: string;
@@ -95,30 +92,30 @@ interface DebugConfig {
     level?: DebugLevel;
     callback?: DebugCallback;
 }
-type BrowserSDKConfig = Prettify<(ExtendedEmbeddedProviderConfig | ExtendedInjectedProviderConfig) & {
-    autoConnect?: boolean;
-}>;
-type Prettify<T> = {
-    [K in keyof T]: T[K];
-} & {};
-interface ExtendedEmbeddedProviderConfig extends Omit<EmbeddedProviderConfig, "authOptions" | "apiBaseUrl" | "embeddedWalletType"> {
-    providerType: "embedded";
+type BrowserSDKConfig = Prettify<Omit<EmbeddedProviderConfig, "authOptions" | "apiBaseUrl" | "embeddedWalletType" | "appId"> & InjectedProviderConfig & {
+    providers: AuthProviderType[];
+    appId?: string;
     apiBaseUrl?: string;
     embeddedWalletType?: "app-wallet" | "user-wallet";
     authOptions?: {
         authUrl?: string;
         redirectUrl?: string;
     };
-}
-interface ExtendedInjectedProviderConfig extends InjectedProviderConfig {
-    providerType: "injected";
-    appId?: never;
-    authOptions?: never;
-    embeddedWalletType?: never;
-}
+}>;
+type Prettify<T> = {
+    [K in keyof T]: T[K];
+} & {};
+type AuthProviderType = EmbeddedProviderAuthType | "injected";
+type AuthOptions = {
+    provider: AuthProviderType;
+    customAuthData?: Record<string, any>;
+};
+type ConnectResult = Omit<ConnectResult$1, "authProvider"> & {
+    authProvider?: AuthProviderType | undefined;
+};
 
 interface Provider {
-    connect(authOptions?: AuthOptions): Promise<ConnectResult>;
+    connect(authOptions: AuthOptions): Promise<ConnectResult>;
     disconnect(): Promise<void>;
     getAddresses(): WalletAddress[];
     isConnected(): boolean;
@@ -132,19 +129,6 @@ interface ProviderPreference {
     embeddedWalletType?: "app-wallet" | "user-wallet";
 }
 
-/**
- * Browser SDK with chain-specific API
- *
- * Usage:
- * ```typescript
- * const sdk = new BrowserSDK({ providerType: 'embedded', appId: 'your-app-id' });
- * await sdk.connect();
- *
- * // Chain-specific operations
- * await sdk.solana.signMessage(message);
- * await sdk.ethereum.signPersonalMessage(message, address);
- * ```
- */
 declare class BrowserSDK {
     private providerManager;
     constructor(config: BrowserSDKConfig);
@@ -326,4 +310,4 @@ declare function waitForPhantomExtension(timeoutMs?: number): Promise<boolean>;
  */
 declare function isPhantomLoginAvailable(timeoutMs?: number): Promise<boolean>;
 
-export { BrowserInfo, BrowserSDK, BrowserSDKConfig, DebugCallback, DebugCategory, DebugConfig, DebugLevel, DebugMessage, Provider, debug, detectBrowser, getBrowserDisplayName, getDeeplinkToPhantom, getPlatformName, isMobileDevice, isPhantomLoginAvailable, parseBrowserFromUserAgent, waitForPhantomExtension };
+export { AuthOptions, AuthProviderType, BrowserInfo, BrowserSDK, BrowserSDKConfig, ConnectResult, DebugCallback, DebugCategory, DebugConfig, DebugLevel, DebugMessage, Provider, debug, detectBrowser, getBrowserDisplayName, getDeeplinkToPhantom, getPlatformName, isMobileDevice, isPhantomLoginAvailable, parseBrowserFromUserAgent, waitForPhantomExtension };

package/dist/index.js

@@ -385,8 +385,8 @@ var InjectedEthereumChain = class {
 };
 
 // src/providers/injected/index.ts
-var MANUAL_DISCONNECT_KEY = "phantom-injected-manual-disconnect";
-var MANUAL_DISCONNECT_VALUE = "true";
+var WAS_CONNECTED_KEY = "phantom-injected-was-connected";
+var WAS_CONNECTED_VALUE = "true";
 var InjectedProvider = class {
   constructor(config) {
     this.connected = false;
@@ -422,9 +422,6 @@ var InjectedProvider = class {
     }
     debug.info(DebugCategory.INJECTED_PROVIDER, "InjectedProvider initialized");
   }
-  /**
-   * Access to Solana chain operations
-   */
   get solana() {
     if (!this.addressTypes.includes(import_client4.AddressType.solana)) {
       throw new Error("Solana not enabled for this provider");
@@ -523,10 +520,10 @@ var InjectedProvider = class {
       this.connected = true;
       const authUserId = await this.getAuthUserId("manual-connect");
       try {
-        localStorage.removeItem(MANUAL_DISCONNECT_KEY);
-        debug.log(DebugCategory.INJECTED_PROVIDER, "Cleared manual disconnect flag - auto-reconnect enabled");
+        localStorage.setItem(WAS_CONNECTED_KEY, WAS_CONNECTED_VALUE);
+        debug.log(DebugCategory.INJECTED_PROVIDER, "Set was-connected flag - auto-reconnect enabled");
       } catch (error) {
-        debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to clear manual disconnect flag", { error });
+        debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to set was-connected flag", { error });
       }
       const result = {
         addresses: this.addresses,
@@ -559,18 +556,15 @@ var InjectedProvider = class {
         debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to disconnect Solana", { error: err });
       }
     }
-    if (this.addressTypes.includes(import_client4.AddressType.ethereum)) {
-      debug.log(DebugCategory.INJECTED_PROVIDER, "Ethereum disconnected (no-op)");
-    }
     this.browserInjectedCleanupFunctions.forEach((cleanup) => cleanup());
     this.browserInjectedCleanupFunctions = [];
     this.connected = false;
     this.addresses = [];
     try {
-      localStorage.setItem(MANUAL_DISCONNECT_KEY, MANUAL_DISCONNECT_VALUE);
-      debug.log(DebugCategory.INJECTED_PROVIDER, "Set manual disconnect flag to prevent auto-reconnect");
+      localStorage.removeItem(WAS_CONNECTED_KEY);
+      debug.log(DebugCategory.INJECTED_PROVIDER, "Cleared was connected flag to prevent auto-reconnect");
     } catch (error) {
-      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to set manual disconnect flag", { error });
+      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to clear was-connected flag", { error });
     }
     this.emit("disconnect", {
       source: "manual-disconnect"
@@ -578,20 +572,22 @@ var InjectedProvider = class {
     debug.info(DebugCategory.INJECTED_PROVIDER, "Injected provider disconnected successfully");
   }
   /**
-   * Attempt auto-connection using onlyIfTrusted parameter
-   * This will only connect if the dApp is already trusted by the user
+   * Attempt auto-connection if user was previously connected
+   * Only reconnects if the user connected before and didn't explicitly disconnect
    * Should be called after setting up event listeners
    */
   async autoConnect() {
-    debug.log(DebugCategory.INJECTED_PROVIDER, "Attempting auto-connect with onlyIfTrusted=true");
+    debug.log(DebugCategory.INJECTED_PROVIDER, "Attempting auto-connect");
     try {
-      const manualDisconnect = localStorage.getItem(MANUAL_DISCONNECT_KEY);
-      if (manualDisconnect === MANUAL_DISCONNECT_VALUE) {
-        debug.log(DebugCategory.INJECTED_PROVIDER, "Skipping auto-connect: user previously disconnected manually");
+      const wasConnected = localStorage.getItem(WAS_CONNECTED_KEY);
+      if (wasConnected !== WAS_CONNECTED_VALUE) {
+        debug.log(DebugCategory.INJECTED_PROVIDER, "Skipping auto-connect: user was not previously connected");
         return;
       }
+      debug.log(DebugCategory.INJECTED_PROVIDER, "User was previously connected, attempting auto-connect");
     } catch (error) {
-      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to check manual disconnect flag", { error });
+      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to check was-connected flag", { error });
+      return;
     }
     this.emit("connect_start", {
       source: "auto-connect",
@@ -619,7 +615,10 @@ var InjectedProvider = class {
             debug.info(DebugCategory.INJECTED_PROVIDER, "Solana auto-connected successfully", { address: publicKey });
           }
         } catch (err) {
-          debug.log(DebugCategory.INJECTED_PROVIDER, "Solana auto-connect failed (expected if not trusted)", { error: err });
+          debug.log(DebugCategory.INJECTED_PROVIDER, "Solana auto-connect failed (expected if not trusted)", {
+            error: err
+          });
+          throw err;
         }
       }
       if (this.addressTypes.includes(import_client4.AddressType.ethereum)) {
@@ -633,10 +632,14 @@ var InjectedProvider = class {
                 address
               }))
             );
-            debug.info(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connected successfully", { addresses: accounts });
+            debug.info(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connected successfully", {
+              addresses: accounts
+            });
           }
         } catch (err) {
-          debug.log(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connect failed (expected if not trusted)", { error: err });
+          debug.log(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connect failed (expected if not trusted)", {
+            error: err
+          });
         }
       }
       if (connectedAddresses.length === 0) {
@@ -657,7 +660,10 @@ var InjectedProvider = class {
       });
       debug.info(DebugCategory.INJECTED_PROVIDER, "Auto-connect successful", {
         addressCount: connectedAddresses.length,
-        addresses: connectedAddresses.map((addr) => ({ type: addr.addressType, address: addr.address.substring(0, 8) + "..." })),
+        addresses: connectedAddresses.map((addr) => ({
+          type: addr.addressType,
+          address: addr.address.substring(0, 8) + "..."
+        })),
         authUserId
       });
     } catch (error) {
@@ -703,14 +709,22 @@ var InjectedProvider = class {
         const userInfo = await window.phantom.app.getUser();
         const authUserId = userInfo?.authUserId;
         if (authUserId) {
-          debug.log(DebugCategory.INJECTED_PROVIDER, `Retrieved authUserId from window.phantom.app.getUser() during ${context}`, {
-            authUserId
-          });
+          debug.log(
+            DebugCategory.INJECTED_PROVIDER,
+            `Retrieved authUserId from window.phantom.app.getUser() during ${context}`,
+            {
+              authUserId
+            }
+          );
         }
         return authUserId;
       }
     } catch (error) {
-      debug.log(DebugCategory.INJECTED_PROVIDER, `Failed to get user info during ${context} (method may not be supported)`, { error });
+      debug.log(
+        DebugCategory.INJECTED_PROVIDER,
+        `Failed to get user info during ${context} (method may not be supported)`,
+        { error }
+      );
     }
     return void 0;
   }
@@ -1201,7 +1215,7 @@ var BrowserAuthProvider = class {
         // OAuth session management - defaults to allow refresh unless explicitly clearing after logout
         clear_previous_session: (phantomOptions.clearPreviousSession ?? false).toString(),
         allow_refresh: (phantomOptions.allowRefresh ?? true).toString(),
-        sdk_version: "1.0.0-beta.21",
+        sdk_version: "1.0.0-beta.22",
         sdk_type: "browser",
         platform: detectBrowser().name
       });
@@ -1231,7 +1245,7 @@ var BrowserAuthProvider = class {
       resolve();
     });
   }
-  resumeAuthFromRedirect() {
+  resumeAuthFromRedirect(provider) {
     try {
       const walletId = this.urlParamsAccessor.getParam("wallet_id");
       const sessionId = this.urlParamsAccessor.getParam("session_id");
@@ -1298,16 +1312,21 @@ var BrowserAuthProvider = class {
         throw new Error("Missing organization_id in auth response");
       }
       if (organizationId.startsWith("temp-")) {
-        debug.warn(DebugCategory.PHANTOM_CONNECT_AUTH, "Received temporary organization_id, server may not be configured properly", {
-          organizationId
-        });
+        debug.warn(
+          DebugCategory.PHANTOM_CONNECT_AUTH,
+          "Received temporary organization_id, server may not be configured properly",
+          {
+            organizationId
+          }
+        );
       }
       return {
         walletId,
         organizationId,
         accountDerivationIndex: accountDerivationIndex ? parseInt(accountDerivationIndex) : 0,
         expiresInMs: expiresInMs ? parseInt(expiresInMs) : 0,
-        authUserId: authUserId || void 0
+        authUserId: authUserId || void 0,
+        provider
       };
     } catch (error) {
       sessionStorage.removeItem("phantom-auth-context");
@@ -1460,7 +1479,7 @@ var EmbeddedProvider = class extends import_embedded_provider_core.EmbeddedProvi
         // Full user agent for more detailed info
         [import_constants2.ANALYTICS_HEADERS.APP_ID]: config.appId,
         [import_constants2.ANALYTICS_HEADERS.WALLET_TYPE]: config.embeddedWalletType,
-        [import_constants2.ANALYTICS_HEADERS.SDK_VERSION]: "1.0.0-beta.21"
+        [import_constants2.ANALYTICS_HEADERS.SDK_VERSION]: "1.0.0-beta.22"
         // Replaced at build time
       }
     };
@@ -1472,6 +1491,7 @@ var EmbeddedProvider = class extends import_embedded_provider_core.EmbeddedProvi
 };
 
 // src/ProviderManager.ts
+var import_embedded_provider_core2 = require("@phantom/embedded-provider-core");
 var import_constants3 = require("@phantom/constants");
 
 // src/utils/auth-callback.ts
@@ -1555,6 +1575,12 @@ var ProviderManager = class {
       embeddedWalletType
     };
   }
+  /**
+   * Check if a provider is allowed by the config
+   */
+  isProviderAllowed(provider) {
+    return this.config.providers.includes(provider);
+  }
   /**
    * Connect using the current provider
    * Automatically switches provider based on authOptions.provider
@@ -1562,13 +1588,18 @@ var ProviderManager = class {
   async connect(authOptions) {
     debug.info(DebugCategory.PROVIDER_MANAGER, "Starting connection", {
       currentProviderKey: this.currentProviderKey,
-      authOptions: { provider: authOptions.provider, hasJwtToken: !!authOptions.jwtToken }
+      authOptions: { provider: authOptions.provider }
     });
+    if (!this.isProviderAllowed(authOptions.provider)) {
+      const error = `Provider "${authOptions.provider}" is not in the allowed providers list: ${JSON.stringify(this.config.providers)}`;
+      debug.error(DebugCategory.PROVIDER_MANAGER, error);
+      throw new Error(error);
+    }
     const requestedProvider = authOptions.provider;
     let targetProviderType = null;
     if (requestedProvider === "injected") {
       targetProviderType = "injected";
-    } else if (["google", "apple", "jwt", "phantom"].includes(requestedProvider)) {
+    } else if (import_embedded_provider_core2.EMBEDDED_PROVIDER_AUTH_TYPES.includes(requestedProvider)) {
       targetProviderType = "embedded";
     }
     if (targetProviderType) {
@@ -1592,16 +1623,14 @@ var ProviderManager = class {
     }
     debug.log(DebugCategory.PROVIDER_MANAGER, "Delegating to provider connect method");
     const result = await this.currentProvider.connect(authOptions);
-    const providerInfo = this.getCurrentProviderInfo();
-    result.providerType = providerInfo?.type;
     debug.log(DebugCategory.PROVIDER_MANAGER, "Connection successful, saving preferences", {
       addressCount: result.addresses?.length || 0,
-      providerType: result.providerType
+      provider: authOptions.provider
     });
     this.saveProviderPreference();
     debug.info(DebugCategory.PROVIDER_MANAGER, "Connect completed", {
       addresses: result.addresses,
-      providerType: result.providerType
+      provider: authOptions.provider
     });
     return result;
   }
@@ -1630,7 +1659,7 @@ var ProviderManager = class {
   }
   /**
    * Attempt auto-connect with fallback strategy
-   * Tries embedded provider first if it exists, then injected provider
+   * Tries embedded provider first if it exists and is allowed, then injected provider if allowed
    * Returns true if any provider successfully connected
    */
   async autoConnect() {
@@ -1641,7 +1670,8 @@ var ProviderManager = class {
     }
     const embeddedWalletType = this.config.embeddedWalletType || "user-wallet";
     const embeddedKey = this.getProviderKey("embedded", embeddedWalletType);
-    if (this.providers.has(embeddedKey)) {
+    const embeddedAllowed = this.config.providers.some((p) => p !== "injected");
+    if (embeddedAllowed && this.providers.has(embeddedKey)) {
       debug.log(DebugCategory.PROVIDER_MANAGER, "Trying auto-connect with existing embedded provider");
       const embeddedProvider = this.providers.get(embeddedKey);
       try {
@@ -1670,8 +1700,9 @@ var ProviderManager = class {
         }
       }
     }
+    const injectedAllowed = this.config.providers.includes("injected");
     const injectedKey = this.getProviderKey("injected");
-    if (this.providers.has(injectedKey)) {
+    if (injectedAllowed && this.providers.has(injectedKey)) {
       debug.log(DebugCategory.PROVIDER_MANAGER, "Trying auto-connect with existing injected provider");
       const injectedProvider = this.providers.get(injectedKey);
       try {
@@ -1690,7 +1721,7 @@ var ProviderManager = class {
         });
       }
     }
-    debug.log(DebugCategory.PROVIDER_MANAGER, "Auto-connect failed for all existing providers");
+    debug.log(DebugCategory.PROVIDER_MANAGER, "Auto-connect failed for all allowed providers");
     return false;
   }
   /**
@@ -1774,17 +1805,28 @@ var ProviderManager = class {
   }
   /**
    * Set default provider based on initial config
-   * Creates both embedded and injected providers for autoConnect fallback
+   * Creates providers based on the allowed providers array
    */
   setDefaultProvider() {
-    const defaultType = this.config.providerType || "embedded";
     const defaultEmbeddedType = this.config.embeddedWalletType || "user-wallet";
-    if (this.config.appId) {
-      debug.log(DebugCategory.PROVIDER_MANAGER, "Creating embedded provider");
+    const hasInjected = this.config.providers.includes("injected");
+    const hasEmbedded = this.config.providers.some((p) => p !== "injected");
+    if (hasInjected) {
+      debug.log(DebugCategory.PROVIDER_MANAGER, "Creating injected provider (allowed by providers array)");
+      this.createProvider("injected");
+    }
+    if (hasEmbedded) {
+      debug.log(DebugCategory.PROVIDER_MANAGER, "Creating embedded provider (allowed by providers array)");
       this.createProvider("embedded", defaultEmbeddedType);
     }
-    debug.log(DebugCategory.PROVIDER_MANAGER, "Creating injected provider");
-    this.createProvider("injected");
+    let defaultType;
+    if (hasEmbedded && this.providers.has(`embedded-${defaultEmbeddedType}`)) {
+      defaultType = "embedded";
+    } else if (hasInjected && this.providers.has("injected")) {
+      defaultType = "injected";
+    } else {
+      throw new Error("No valid providers could be created from the providers array");
+    }
     const switchOptions = {};
     if (defaultType === "embedded") {
       switchOptions.embeddedWalletType = defaultEmbeddedType;
@@ -1877,20 +1919,39 @@ async function waitForPhantomExtension(timeoutMs = 3e3) {
 }
 
 // src/BrowserSDK.ts
+var import_embedded_provider_core3 = require("@phantom/embedded-provider-core");
 var import_constants4 = require("@phantom/constants");
+var BROWSER_SDK_PROVIDER_TYPES = [...import_embedded_provider_core3.EMBEDDED_PROVIDER_AUTH_TYPES, "injected"];
 var BrowserSDK = class {
   constructor(config) {
     debug.info(DebugCategory.BROWSER_SDK, "Initializing BrowserSDK", {
-      providerType: config.providerType,
+      providers: config.providers,
       embeddedWalletType: config.embeddedWalletType,
       addressTypes: config.addressTypes
     });
-    if (!["injected", "embedded"].includes(config.providerType)) {
-      debug.error(DebugCategory.BROWSER_SDK, "Invalid providerType", { providerType: config.providerType });
-      throw new Error(`Invalid providerType: ${config.providerType}. Must be "injected" or "embedded".`);
+    if (!Array.isArray(config.providers) || config.providers.length === 0) {
+      debug.error(DebugCategory.BROWSER_SDK, "Invalid providers array", { providers: config.providers });
+      throw new Error("providers must be a non-empty array of AuthProviderType");
+    }
+    const invalidProviders = config.providers.filter((p) => !BROWSER_SDK_PROVIDER_TYPES.includes(p));
+    if (invalidProviders.length > 0) {
+      debug.error(DebugCategory.BROWSER_SDK, "Invalid provider types", {
+        invalidProviders,
+        validProviders: BROWSER_SDK_PROVIDER_TYPES
+      });
+      throw new Error(
+        `Invalid provider type(s): ${invalidProviders.join(", ")}. Valid providers are: ${BROWSER_SDK_PROVIDER_TYPES.join(", ")}`
+      );
+    }
+    const hasEmbeddedProviders = config.providers.some((p) => p !== "injected");
+    if (hasEmbeddedProviders && !config.appId) {
+      debug.error(DebugCategory.BROWSER_SDK, "appId required for embedded providers", {
+        providers: config.providers
+      });
+      throw new Error("appId is required when using embedded providers (google, apple, phantom, etc.)");
     }
     const embeddedWalletType = config.embeddedWalletType || import_constants4.DEFAULT_EMBEDDED_WALLET_TYPE;
-    if (config.providerType === "embedded" && !["app-wallet", "user-wallet"].includes(embeddedWalletType)) {
+    if (!["app-wallet", "user-wallet"].includes(embeddedWalletType)) {
       debug.error(DebugCategory.BROWSER_SDK, "Invalid embeddedWalletType", {
         embeddedWalletType: config.embeddedWalletType
       });

package/dist/index.mjs

@@ -348,8 +348,8 @@ var InjectedEthereumChain = class {
 };
 
 // src/providers/injected/index.ts
-var MANUAL_DISCONNECT_KEY = "phantom-injected-manual-disconnect";
-var MANUAL_DISCONNECT_VALUE = "true";
+var WAS_CONNECTED_KEY = "phantom-injected-was-connected";
+var WAS_CONNECTED_VALUE = "true";
 var InjectedProvider = class {
   constructor(config) {
     this.connected = false;
@@ -385,9 +385,6 @@ var InjectedProvider = class {
     }
     debug.info(DebugCategory.INJECTED_PROVIDER, "InjectedProvider initialized");
   }
-  /**
-   * Access to Solana chain operations
-   */
   get solana() {
     if (!this.addressTypes.includes(AddressType4.solana)) {
       throw new Error("Solana not enabled for this provider");
@@ -486,10 +483,10 @@ var InjectedProvider = class {
       this.connected = true;
       const authUserId = await this.getAuthUserId("manual-connect");
       try {
-        localStorage.removeItem(MANUAL_DISCONNECT_KEY);
-        debug.log(DebugCategory.INJECTED_PROVIDER, "Cleared manual disconnect flag - auto-reconnect enabled");
+        localStorage.setItem(WAS_CONNECTED_KEY, WAS_CONNECTED_VALUE);
+        debug.log(DebugCategory.INJECTED_PROVIDER, "Set was-connected flag - auto-reconnect enabled");
       } catch (error) {
-        debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to clear manual disconnect flag", { error });
+        debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to set was-connected flag", { error });
       }
       const result = {
         addresses: this.addresses,
@@ -522,18 +519,15 @@ var InjectedProvider = class {
         debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to disconnect Solana", { error: err });
       }
     }
-    if (this.addressTypes.includes(AddressType4.ethereum)) {
-      debug.log(DebugCategory.INJECTED_PROVIDER, "Ethereum disconnected (no-op)");
-    }
     this.browserInjectedCleanupFunctions.forEach((cleanup) => cleanup());
     this.browserInjectedCleanupFunctions = [];
     this.connected = false;
     this.addresses = [];
     try {
-      localStorage.setItem(MANUAL_DISCONNECT_KEY, MANUAL_DISCONNECT_VALUE);
-      debug.log(DebugCategory.INJECTED_PROVIDER, "Set manual disconnect flag to prevent auto-reconnect");
+      localStorage.removeItem(WAS_CONNECTED_KEY);
+      debug.log(DebugCategory.INJECTED_PROVIDER, "Cleared was connected flag to prevent auto-reconnect");
     } catch (error) {
-      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to set manual disconnect flag", { error });
+      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to clear was-connected flag", { error });
     }
     this.emit("disconnect", {
       source: "manual-disconnect"
@@ -541,20 +535,22 @@ var InjectedProvider = class {
     debug.info(DebugCategory.INJECTED_PROVIDER, "Injected provider disconnected successfully");
   }
   /**
-   * Attempt auto-connection using onlyIfTrusted parameter
-   * This will only connect if the dApp is already trusted by the user
+   * Attempt auto-connection if user was previously connected
+   * Only reconnects if the user connected before and didn't explicitly disconnect
    * Should be called after setting up event listeners
    */
   async autoConnect() {
-    debug.log(DebugCategory.INJECTED_PROVIDER, "Attempting auto-connect with onlyIfTrusted=true");
+    debug.log(DebugCategory.INJECTED_PROVIDER, "Attempting auto-connect");
     try {
-      const manualDisconnect = localStorage.getItem(MANUAL_DISCONNECT_KEY);
-      if (manualDisconnect === MANUAL_DISCONNECT_VALUE) {
-        debug.log(DebugCategory.INJECTED_PROVIDER, "Skipping auto-connect: user previously disconnected manually");
+      const wasConnected = localStorage.getItem(WAS_CONNECTED_KEY);
+      if (wasConnected !== WAS_CONNECTED_VALUE) {
+        debug.log(DebugCategory.INJECTED_PROVIDER, "Skipping auto-connect: user was not previously connected");
         return;
       }
+      debug.log(DebugCategory.INJECTED_PROVIDER, "User was previously connected, attempting auto-connect");
     } catch (error) {
-      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to check manual disconnect flag", { error });
+      debug.warn(DebugCategory.INJECTED_PROVIDER, "Failed to check was-connected flag", { error });
+      return;
     }
     this.emit("connect_start", {
       source: "auto-connect",
@@ -582,7 +578,10 @@ var InjectedProvider = class {
             debug.info(DebugCategory.INJECTED_PROVIDER, "Solana auto-connected successfully", { address: publicKey });
           }
         } catch (err) {
-          debug.log(DebugCategory.INJECTED_PROVIDER, "Solana auto-connect failed (expected if not trusted)", { error: err });
+          debug.log(DebugCategory.INJECTED_PROVIDER, "Solana auto-connect failed (expected if not trusted)", {
+            error: err
+          });
+          throw err;
         }
       }
       if (this.addressTypes.includes(AddressType4.ethereum)) {
@@ -596,10 +595,14 @@ var InjectedProvider = class {
                 address
               }))
             );
-            debug.info(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connected successfully", { addresses: accounts });
+            debug.info(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connected successfully", {
+              addresses: accounts
+            });
           }
         } catch (err) {
-          debug.log(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connect failed (expected if not trusted)", { error: err });
+          debug.log(DebugCategory.INJECTED_PROVIDER, "Ethereum auto-connect failed (expected if not trusted)", {
+            error: err
+          });
         }
       }
       if (connectedAddresses.length === 0) {
@@ -620,7 +623,10 @@ var InjectedProvider = class {
       });
       debug.info(DebugCategory.INJECTED_PROVIDER, "Auto-connect successful", {
         addressCount: connectedAddresses.length,
-        addresses: connectedAddresses.map((addr) => ({ type: addr.addressType, address: addr.address.substring(0, 8) + "..." })),
+        addresses: connectedAddresses.map((addr) => ({
+          type: addr.addressType,
+          address: addr.address.substring(0, 8) + "..."
+        })),
         authUserId
       });
     } catch (error) {
@@ -666,14 +672,22 @@ var InjectedProvider = class {
         const userInfo = await window.phantom.app.getUser();
         const authUserId = userInfo?.authUserId;
         if (authUserId) {
-          debug.log(DebugCategory.INJECTED_PROVIDER, `Retrieved authUserId from window.phantom.app.getUser() during ${context}`, {
-            authUserId
-          });
+          debug.log(
+            DebugCategory.INJECTED_PROVIDER,
+            `Retrieved authUserId from window.phantom.app.getUser() during ${context}`,
+            {
+              authUserId
+            }
+          );
         }
         return authUserId;
       }
     } catch (error) {
-      debug.log(DebugCategory.INJECTED_PROVIDER, `Failed to get user info during ${context} (method may not be supported)`, { error });
+      debug.log(
+        DebugCategory.INJECTED_PROVIDER,
+        `Failed to get user info during ${context} (method may not be supported)`,
+        { error }
+      );
     }
     return void 0;
   }
@@ -1164,7 +1178,7 @@ var BrowserAuthProvider = class {
         // OAuth session management - defaults to allow refresh unless explicitly clearing after logout
         clear_previous_session: (phantomOptions.clearPreviousSession ?? false).toString(),
         allow_refresh: (phantomOptions.allowRefresh ?? true).toString(),
-        sdk_version: "1.0.0-beta.21",
+        sdk_version: "1.0.0-beta.22",
         sdk_type: "browser",
         platform: detectBrowser().name
       });
@@ -1194,7 +1208,7 @@ var BrowserAuthProvider = class {
       resolve();
     });
   }
-  resumeAuthFromRedirect() {
+  resumeAuthFromRedirect(provider) {
     try {
       const walletId = this.urlParamsAccessor.getParam("wallet_id");
       const sessionId = this.urlParamsAccessor.getParam("session_id");
@@ -1261,16 +1275,21 @@ var BrowserAuthProvider = class {
         throw new Error("Missing organization_id in auth response");
       }
       if (organizationId.startsWith("temp-")) {
-        debug.warn(DebugCategory.PHANTOM_CONNECT_AUTH, "Received temporary organization_id, server may not be configured properly", {
-          organizationId
-        });
+        debug.warn(
+          DebugCategory.PHANTOM_CONNECT_AUTH,
+          "Received temporary organization_id, server may not be configured properly",
+          {
+            organizationId
+          }
+        );
       }
       return {
         walletId,
         organizationId,
         accountDerivationIndex: accountDerivationIndex ? parseInt(accountDerivationIndex) : 0,
         expiresInMs: expiresInMs ? parseInt(expiresInMs) : 0,
-        authUserId: authUserId || void 0
+        authUserId: authUserId || void 0,
+        provider
       };
     } catch (error) {
       sessionStorage.removeItem("phantom-auth-context");
@@ -1423,7 +1442,7 @@ var EmbeddedProvider = class extends CoreEmbeddedProvider {
         // Full user agent for more detailed info
         [ANALYTICS_HEADERS.APP_ID]: config.appId,
         [ANALYTICS_HEADERS.WALLET_TYPE]: config.embeddedWalletType,
-        [ANALYTICS_HEADERS.SDK_VERSION]: "1.0.0-beta.21"
+        [ANALYTICS_HEADERS.SDK_VERSION]: "1.0.0-beta.22"
         // Replaced at build time
       }
     };
@@ -1435,6 +1454,9 @@ var EmbeddedProvider = class extends CoreEmbeddedProvider {
 };
 
 // src/ProviderManager.ts
+import {
+  EMBEDDED_PROVIDER_AUTH_TYPES
+} from "@phantom/embedded-provider-core";
 import { DEFAULT_WALLET_API_URL, DEFAULT_EMBEDDED_WALLET_TYPE, DEFAULT_AUTH_URL as DEFAULT_AUTH_URL2 } from "@phantom/constants";
 
 // src/utils/auth-callback.ts
@@ -1518,6 +1540,12 @@ var ProviderManager = class {
       embeddedWalletType
     };
   }
+  /**
+   * Check if a provider is allowed by the config
+   */
+  isProviderAllowed(provider) {
+    return this.config.providers.includes(provider);
+  }
   /**
    * Connect using the current provider
    * Automatically switches provider based on authOptions.provider
@@ -1525,13 +1553,18 @@ var ProviderManager = class {
   async connect(authOptions) {
     debug.info(DebugCategory.PROVIDER_MANAGER, "Starting connection", {
       currentProviderKey: this.currentProviderKey,
-      authOptions: { provider: authOptions.provider, hasJwtToken: !!authOptions.jwtToken }
+      authOptions: { provider: authOptions.provider }
     });
+    if (!this.isProviderAllowed(authOptions.provider)) {
+      const error = `Provider "${authOptions.provider}" is not in the allowed providers list: ${JSON.stringify(this.config.providers)}`;
+      debug.error(DebugCategory.PROVIDER_MANAGER, error);
+      throw new Error(error);
+    }
     const requestedProvider = authOptions.provider;
     let targetProviderType = null;
     if (requestedProvider === "injected") {
       targetProviderType = "injected";
-    } else if (["google", "apple", "jwt", "phantom"].includes(requestedProvider)) {
+    } else if (EMBEDDED_PROVIDER_AUTH_TYPES.includes(requestedProvider)) {
       targetProviderType = "embedded";
     }
     if (targetProviderType) {
@@ -1555,16 +1588,14 @@ var ProviderManager = class {
     }
     debug.log(DebugCategory.PROVIDER_MANAGER, "Delegating to provider connect method");
     const result = await this.currentProvider.connect(authOptions);
-    const providerInfo = this.getCurrentProviderInfo();
-    result.providerType = providerInfo?.type;
     debug.log(DebugCategory.PROVIDER_MANAGER, "Connection successful, saving preferences", {
       addressCount: result.addresses?.length || 0,
-      providerType: result.providerType
+      provider: authOptions.provider
     });
     this.saveProviderPreference();
     debug.info(DebugCategory.PROVIDER_MANAGER, "Connect completed", {
       addresses: result.addresses,
-      providerType: result.providerType
+      provider: authOptions.provider
     });
     return result;
   }
@@ -1593,7 +1624,7 @@ var ProviderManager = class {
   }
   /**
    * Attempt auto-connect with fallback strategy
-   * Tries embedded provider first if it exists, then injected provider
+   * Tries embedded provider first if it exists and is allowed, then injected provider if allowed
    * Returns true if any provider successfully connected
    */
   async autoConnect() {
@@ -1604,7 +1635,8 @@ var ProviderManager = class {
     }
     const embeddedWalletType = this.config.embeddedWalletType || "user-wallet";
     const embeddedKey = this.getProviderKey("embedded", embeddedWalletType);
-    if (this.providers.has(embeddedKey)) {
+    const embeddedAllowed = this.config.providers.some((p) => p !== "injected");
+    if (embeddedAllowed && this.providers.has(embeddedKey)) {
       debug.log(DebugCategory.PROVIDER_MANAGER, "Trying auto-connect with existing embedded provider");
       const embeddedProvider = this.providers.get(embeddedKey);
       try {
@@ -1633,8 +1665,9 @@ var ProviderManager = class {
         }
       }
     }
+    const injectedAllowed = this.config.providers.includes("injected");
     const injectedKey = this.getProviderKey("injected");
-    if (this.providers.has(injectedKey)) {
+    if (injectedAllowed && this.providers.has(injectedKey)) {
       debug.log(DebugCategory.PROVIDER_MANAGER, "Trying auto-connect with existing injected provider");
       const injectedProvider = this.providers.get(injectedKey);
       try {
@@ -1653,7 +1686,7 @@ var ProviderManager = class {
         });
       }
     }
-    debug.log(DebugCategory.PROVIDER_MANAGER, "Auto-connect failed for all existing providers");
+    debug.log(DebugCategory.PROVIDER_MANAGER, "Auto-connect failed for all allowed providers");
     return false;
   }
   /**
@@ -1737,17 +1770,28 @@ var ProviderManager = class {
   }
   /**
    * Set default provider based on initial config
-   * Creates both embedded and injected providers for autoConnect fallback
+   * Creates providers based on the allowed providers array
    */
   setDefaultProvider() {
-    const defaultType = this.config.providerType || "embedded";
     const defaultEmbeddedType = this.config.embeddedWalletType || "user-wallet";
-    if (this.config.appId) {
-      debug.log(DebugCategory.PROVIDER_MANAGER, "Creating embedded provider");
+    const hasInjected = this.config.providers.includes("injected");
+    const hasEmbedded = this.config.providers.some((p) => p !== "injected");
+    if (hasInjected) {
+      debug.log(DebugCategory.PROVIDER_MANAGER, "Creating injected provider (allowed by providers array)");
+      this.createProvider("injected");
+    }
+    if (hasEmbedded) {
+      debug.log(DebugCategory.PROVIDER_MANAGER, "Creating embedded provider (allowed by providers array)");
       this.createProvider("embedded", defaultEmbeddedType);
     }
-    debug.log(DebugCategory.PROVIDER_MANAGER, "Creating injected provider");
-    this.createProvider("injected");
+    let defaultType;
+    if (hasEmbedded && this.providers.has(`embedded-${defaultEmbeddedType}`)) {
+      defaultType = "embedded";
+    } else if (hasInjected && this.providers.has("injected")) {
+      defaultType = "injected";
+    } else {
+      throw new Error("No valid providers could be created from the providers array");
+    }
     const switchOptions = {};
     if (defaultType === "embedded") {
       switchOptions.embeddedWalletType = defaultEmbeddedType;
@@ -1840,20 +1884,39 @@ async function waitForPhantomExtension(timeoutMs = 3e3) {
 }
 
 // src/BrowserSDK.ts
+import { EMBEDDED_PROVIDER_AUTH_TYPES as EMBEDDED_PROVIDER_AUTH_TYPES2 } from "@phantom/embedded-provider-core";
 import { DEFAULT_EMBEDDED_WALLET_TYPE as DEFAULT_EMBEDDED_WALLET_TYPE2 } from "@phantom/constants";
+var BROWSER_SDK_PROVIDER_TYPES = [...EMBEDDED_PROVIDER_AUTH_TYPES2, "injected"];
 var BrowserSDK = class {
   constructor(config) {
     debug.info(DebugCategory.BROWSER_SDK, "Initializing BrowserSDK", {
-      providerType: config.providerType,
+      providers: config.providers,
       embeddedWalletType: config.embeddedWalletType,
       addressTypes: config.addressTypes
     });
-    if (!["injected", "embedded"].includes(config.providerType)) {
-      debug.error(DebugCategory.BROWSER_SDK, "Invalid providerType", { providerType: config.providerType });
-      throw new Error(`Invalid providerType: ${config.providerType}. Must be "injected" or "embedded".`);
+    if (!Array.isArray(config.providers) || config.providers.length === 0) {
+      debug.error(DebugCategory.BROWSER_SDK, "Invalid providers array", { providers: config.providers });
+      throw new Error("providers must be a non-empty array of AuthProviderType");
+    }
+    const invalidProviders = config.providers.filter((p) => !BROWSER_SDK_PROVIDER_TYPES.includes(p));
+    if (invalidProviders.length > 0) {
+      debug.error(DebugCategory.BROWSER_SDK, "Invalid provider types", {
+        invalidProviders,
+        validProviders: BROWSER_SDK_PROVIDER_TYPES
+      });
+      throw new Error(
+        `Invalid provider type(s): ${invalidProviders.join(", ")}. Valid providers are: ${BROWSER_SDK_PROVIDER_TYPES.join(", ")}`
+      );
+    }
+    const hasEmbeddedProviders = config.providers.some((p) => p !== "injected");
+    if (hasEmbeddedProviders && !config.appId) {
+      debug.error(DebugCategory.BROWSER_SDK, "appId required for embedded providers", {
+        providers: config.providers
+      });
+      throw new Error("appId is required when using embedded providers (google, apple, phantom, etc.)");
     }
     const embeddedWalletType = config.embeddedWalletType || DEFAULT_EMBEDDED_WALLET_TYPE2;
-    if (config.providerType === "embedded" && !["app-wallet", "user-wallet"].includes(embeddedWalletType)) {
+    if (!["app-wallet", "user-wallet"].includes(embeddedWalletType)) {
       debug.error(DebugCategory.BROWSER_SDK, "Invalid embeddedWalletType", {
         embeddedWalletType: config.embeddedWalletType
       });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@phantom/browser-sdk",
-  "version": "1.0.0-beta.21",
+  "version": "1.0.0-beta.22",
   "description": "Browser SDK for Phantom Wallet",
   "main": "dist/index.js",
   "module": "dist/index.mjs",
@@ -28,15 +28,15 @@
     "prettier": "prettier --write \"src/**/*.{ts,tsx}\""
   },
   "dependencies": {
-    "@phantom/base64url": "^1.0.0-beta.9",
-    "@phantom/browser-injected-sdk": "^1.0.0-beta.6",
-    "@phantom/chain-interfaces": "^1.0.0-beta.9",
-    "@phantom/client": "^1.0.0-beta.21",
-    "@phantom/constants": "^1.0.0-beta.9",
-    "@phantom/embedded-provider-core": "^1.0.0-beta.21",
-    "@phantom/indexed-db-stamper": "^1.0.0-beta.2",
-    "@phantom/parsers": "^1.0.0-beta.9",
-    "@phantom/sdk-types": "^1.0.0-beta.9",
+    "@phantom/base64url": "^1.0.0-beta.10",
+    "@phantom/browser-injected-sdk": "^1.0.0-beta.7",
+    "@phantom/chain-interfaces": "^1.0.0-beta.10",
+    "@phantom/client": "^1.0.0-beta.22",
+    "@phantom/constants": "^1.0.0-beta.10",
+    "@phantom/embedded-provider-core": "^1.0.0-beta.22",
+    "@phantom/indexed-db-stamper": "^1.0.0-beta.3",
+    "@phantom/parsers": "^1.0.0-beta.10",
+    "@phantom/sdk-types": "^1.0.0-beta.10",
     "axios": "^1.10.0",
     "bs58": "^6.0.0",
     "buffer": "^6.0.3",