npm - @phantom/browser-sdk - Versions diffs - 1.0.5 → 1.0.6 - Mend

@phantom/browser-sdk 1.0.5 → 1.0.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.js CHANGED Viewed

@@ -34,8 +34,8 @@ __export(src_exports, {
   BrowserSDK: () => BrowserSDK,
   DebugCategory: () => DebugCategory,
   DebugLevel: () => DebugLevel,
-  NetworkId: () => import_constants7.NetworkId,
-  PHANTOM_ICON: () => import_constants8.PHANTOM_ICON,
+  NetworkId: () => import_constants8.NetworkId,
+  PHANTOM_ICON: () => import_constants9.PHANTOM_ICON,
   debug: () => debug,
   detectBrowser: () => detectBrowser,
   getBrowserDisplayName: () => getBrowserDisplayName,
@@ -2764,7 +2764,7 @@ var BrowserAuthProvider = class {
         // OAuth session management - defaults to allow refresh unless explicitly clearing after logout
         clear_previous_session: (phantomOptions.clearPreviousSession ?? false).toString(),
         allow_refresh: (phantomOptions.allowRefresh ?? true).toString(),
-        sdk_version: "1.0.5",
+        sdk_version: "1.0.6",
         sdk_type: "browser",
         platform: detectBrowser().name,
         algorithm: phantomOptions.algorithm || import_constants3.DEFAULT_AUTHENTICATOR_ALGORITHM
@@ -2965,14 +2965,14 @@ var Auth2AuthProvider = class {
       const description = this.urlParamsAccessor.getParam("error_description");
       throw new Error(`Auth2 callback error: ${description ?? error}`);
     }
-    const { idToken, bearerToken, authUserId, expiresInMs } = await (0, import_auth2.exchangeAuthCode)({
+    const { idToken, bearerToken, authUserId, expiresInMs, refreshToken } = await (0, import_auth2.exchangeAuthCode)({
       authApiBaseUrl: this.auth2ProviderOptions.authApiBaseUrl,
       clientId: this.auth2ProviderOptions.clientId,
       redirectUri: this.auth2ProviderOptions.redirectUri,
       code,
       codeVerifier
     });
-    await this.stamper.setIdToken(idToken);
+    await this.stamper.setTokens({ idToken, bearerToken, refreshToken, expiresInMs });
     await this.storage.saveSession({
       ...session,
       status: "completed",
@@ -2999,19 +2999,27 @@ var Auth2AuthProvider = class {
 var import_bs582 = __toESM(require("bs58"));
 var import_base64url = require("@phantom/base64url");
 var import_sdk_types = require("@phantom/sdk-types");
+var import_auth22 = require("@phantom/auth2");
+var import_constants4 = require("@phantom/constants");
 var STORE_NAME = "crypto-keys";
 var ACTIVE_KEY = "auth2-p256-signing-key";
 var Auth2Stamper = class {
   /**
    * @param dbName - IndexedDB database name (use a unique name per app to
    *   avoid key collisions with other stampers, e.g. `phantom-auth2-<appId>`).
+   * @param refreshConfig - When provided, the stamper will automatically refresh
+   *   the id_token using the refresh_token before it expires.
    */
-  constructor(dbName) {
+  constructor(dbName, refreshConfig) {
     this.dbName = dbName;
+    this.refreshConfig = refreshConfig;
     this.db = null;
     this._keyPair = null;
     this._keyInfo = null;
     this._idToken = null;
+    this._bearerToken = null;
+    this._refreshToken = null;
+    this._tokenExpiresAt = null;
     this.algorithm = import_sdk_types.Algorithm.secp256r1;
     this.type = "OIDC";
   }
@@ -3024,6 +3032,15 @@ var Auth2Stamper = class {
       if (stored.idToken) {
         this._idToken = stored.idToken;
       }
+      if (stored.bearerToken) {
+        this._bearerToken = stored.bearerToken;
+      }
+      if (stored.refreshToken) {
+        this._refreshToken = stored.refreshToken;
+      }
+      if (stored.tokenExpiresAt) {
+        this._tokenExpiresAt = stored.tokenExpiresAt;
+      }
       return this._keyInfo;
     }
     return this.generateAndStore();
@@ -3035,19 +3052,61 @@ var Auth2Stamper = class {
     return this._keyPair;
   }
   /**
-   * Arms the stamper with the OIDC id token for subsequent KMS stamp() calls.
+   * Returns the current token state (refreshing proactively if near expiry),
+   * or null if no token has been set yet.
+   */
+  async getTokens() {
+    if (this.refreshConfig && this._refreshToken && this._tokenExpiresAt !== null && Date.now() >= this._tokenExpiresAt - import_constants4.TOKEN_REFRESH_BUFFER_MS) {
+      const refreshed = await (0, import_auth22.refreshToken)({
+        authApiBaseUrl: this.refreshConfig.authApiBaseUrl,
+        clientId: this.refreshConfig.clientId,
+        redirectUri: this.refreshConfig.redirectUri,
+        refreshToken: this._refreshToken
+      });
+      await this.setTokens(refreshed);
+    }
+    if (!this._idToken || !this._bearerToken) {
+      return null;
+    }
+    return {
+      idToken: this._idToken,
+      bearerToken: this._bearerToken,
+      refreshToken: this._refreshToken ?? void 0
+    };
+  }
+  /**
+   * Arms the stamper with the OIDC token data for subsequent KMS stamp() calls.
+   *
+   * Persists the tokens to IndexedDB alongside the key pair so that
+   * auto-connect can restore them on the next page load without a new login.
    *
-   * Persists the token to IndexedDB alongside the key pair so that
-   * auto-connect can restore it on the next page load without a new login.
+   * @param refreshToken - When provided alongside a `refreshConfig`, enables
+   *   silent token refresh before the token expires.
+   * @param expiresInMs - Token lifetime in milliseconds (from `expires_in * 1000`).
+   *   Used to compute the absolute expiry time for proactive refresh.
    */
-  async setIdToken(idToken) {
+  async setTokens({
+    idToken,
+    bearerToken,
+    refreshToken,
+    expiresInMs
+  }) {
     if (!this.db) {
       await this.openDB();
     }
     this._idToken = idToken;
+    this._bearerToken = bearerToken;
+    this._refreshToken = refreshToken ?? null;
+    this._tokenExpiresAt = expiresInMs != null ? Date.now() + expiresInMs : null;
     const existing = await this.loadRecord();
     if (existing) {
-      await this.storeRecord({ ...existing, idToken });
+      await this.storeRecord({
+        ...existing,
+        idToken,
+        bearerToken,
+        refreshToken,
+        tokenExpiresAt: this._tokenExpiresAt ?? void 0
+      });
     }
   }
   async stamp(params) {
@@ -3080,6 +3139,9 @@ var Auth2Stamper = class {
     this._keyPair = null;
     this._keyInfo = null;
     this._idToken = null;
+    this._bearerToken = null;
+    this._refreshToken = null;
+    this._tokenExpiresAt = null;
   }
   // Auth2 doesn't use key rotation; provide minimal no-op implementations.
   async rotateKeyPair() {
@@ -3276,28 +3338,32 @@ var BrowserPhantomAppProvider = class {
 // src/providers/embedded/adapters/logger.ts
 var BrowserLogger = class {
-  info(category, message, data) {
-    debug.info(category, message, data);
+  info(message, ...args) {
+    debug.info(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
-  warn(category, message, data) {
-    debug.warn(category, message, data);
+  warn(message, ...args) {
+    debug.warn(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
-  error(category, message, data) {
-    debug.error(category, message, data);
+  error(message, ...args) {
+    debug.error(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
-  log(category, message, data) {
-    debug.log(category, message, data);
+  debug(message, ...args) {
+    debug.log(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
 };
 // src/providers/embedded/index.ts
-var import_constants4 = require("@phantom/constants");
+var import_constants5 = require("@phantom/constants");
 var EmbeddedProvider = class extends import_embedded_provider_core.EmbeddedProvider {
   constructor(config) {
     debug.log(DebugCategory.EMBEDDED_PROVIDER, "Initializing Browser EmbeddedProvider", { config });
     const urlParamsAccessor = new BrowserURLParamsAccessor();
     const storage = new BrowserStorage();
-    const stamper = config.unstable__auth2Options ? new Auth2Stamper(`phantom-auth2-${config.appId}`) : new import_indexed_db_stamper.IndexedDbStamper({
+    const stamper = config.unstable__auth2Options ? new Auth2Stamper(`phantom-auth2-${config.appId}`, {
+      authApiBaseUrl: config.unstable__auth2Options.authApiBaseUrl,
+      clientId: config.unstable__auth2Options.clientId,
+      redirectUri: config.authOptions?.redirectUrl ?? ""
+    }) : new import_indexed_db_stamper.IndexedDbStamper({
       dbName: `phantom-embedded-sdk-${config.appId}`,
       storeName: "crypto-keys",
       keyName: "signing-key"
@@ -3328,13 +3394,13 @@ var EmbeddedProvider = class extends import_embedded_provider_core.EmbeddedProvi
       name: platformName,
       // Use detected browser name and version for identification
       analyticsHeaders: {
-        [import_constants4.ANALYTICS_HEADERS.SDK_TYPE]: "browser",
-        [import_constants4.ANALYTICS_HEADERS.PLATFORM]: "ext-sdk",
-        [import_constants4.ANALYTICS_HEADERS.PLATFORM_VERSION]: version,
-        [import_constants4.ANALYTICS_HEADERS.CLIENT]: browserName,
-        [import_constants4.ANALYTICS_HEADERS.APP_ID]: config.appId,
-        [import_constants4.ANALYTICS_HEADERS.WALLET_TYPE]: config.embeddedWalletType,
-        [import_constants4.ANALYTICS_HEADERS.SDK_VERSION]: "1.0.5"
+        [import_constants5.ANALYTICS_HEADERS.SDK_TYPE]: "browser",
+        [import_constants5.ANALYTICS_HEADERS.PLATFORM]: "ext-sdk",
+        [import_constants5.ANALYTICS_HEADERS.PLATFORM_VERSION]: version,
+        [import_constants5.ANALYTICS_HEADERS.CLIENT]: browserName,
+        [import_constants5.ANALYTICS_HEADERS.APP_ID]: config.appId,
+        [import_constants5.ANALYTICS_HEADERS.WALLET_TYPE]: config.embeddedWalletType,
+        [import_constants5.ANALYTICS_HEADERS.SDK_VERSION]: "1.0.6"
         // Replaced at build time
       }
     };
@@ -3351,7 +3417,7 @@ var EmbeddedProvider = class extends import_embedded_provider_core.EmbeddedProvi
 // src/ProviderManager.ts
 var import_embedded_provider_core2 = require("@phantom/embedded-provider-core");
-var import_constants5 = require("@phantom/constants");
+var import_constants6 = require("@phantom/constants");
 // src/utils/auth-callback.ts
 function isAuthFailureCallback(searchParams) {
@@ -3742,8 +3808,8 @@ var ProviderManager = class {
       if (!this.config.appId) {
         throw new Error("appId is required for embedded provider");
       }
-      const apiBaseUrl = this.config.apiBaseUrl || import_constants5.DEFAULT_WALLET_API_URL;
-      const authUrl = this.config.authOptions?.authUrl || import_constants5.DEFAULT_AUTH_URL;
+      const apiBaseUrl = this.config.apiBaseUrl || import_constants6.DEFAULT_WALLET_API_URL;
+      const authUrl = this.config.authOptions?.authUrl || import_constants6.DEFAULT_AUTH_URL;
       provider = new EmbeddedProvider({
         apiBaseUrl,
         appId: this.config.appId,
@@ -3753,7 +3819,7 @@ var ProviderManager = class {
           redirectUrl: this.config.authOptions?.redirectUrl || this.getValidatedCurrentUrl()
         },
         unstable__auth2Options: this.config.unstable__auth2Options,
-        embeddedWalletType: embeddedWalletType || import_constants5.DEFAULT_EMBEDDED_WALLET_TYPE,
+        embeddedWalletType: embeddedWalletType || import_constants6.DEFAULT_EMBEDDED_WALLET_TYPE,
         addressTypes: this.config.addressTypes || [import_client.AddressType.solana]
       });
     } else {
@@ -3789,7 +3855,7 @@ var ProviderManager = class {
 // src/BrowserSDK.ts
 var import_embedded_provider_core3 = require("@phantom/embedded-provider-core");
-var import_constants6 = require("@phantom/constants");
+var import_constants7 = require("@phantom/constants");
 var BROWSER_SDK_PROVIDER_TYPES = [
   ...import_embedded_provider_core3.EMBEDDED_PROVIDER_AUTH_TYPES,
   "injected",
@@ -3825,7 +3891,7 @@ var BrowserSDK = class {
       });
       throw new Error("appId is required when using embedded providers (google, apple, phantom, etc.)");
     }
-    const embeddedWalletType = config.embeddedWalletType || import_constants6.DEFAULT_EMBEDDED_WALLET_TYPE;
+    const embeddedWalletType = config.embeddedWalletType || import_constants7.DEFAULT_EMBEDDED_WALLET_TYPE;
     if (!["app-wallet", "user-wallet"].includes(embeddedWalletType)) {
       debug.error(DebugCategory.BROWSER_SDK, "Invalid embeddedWalletType", {
         embeddedWalletType: config.embeddedWalletType
@@ -4100,6 +4166,6 @@ var BrowserSDK = class {
 };
 // src/index.ts
-var import_constants7 = require("@phantom/constants");
-var import_client5 = require("@phantom/client");
 var import_constants8 = require("@phantom/constants");
+var import_client5 = require("@phantom/client");
+var import_constants9 = require("@phantom/constants");

package/dist/index.mjs CHANGED Viewed

@@ -2714,7 +2714,7 @@ var BrowserAuthProvider = class {
         // OAuth session management - defaults to allow refresh unless explicitly clearing after logout
         clear_previous_session: (phantomOptions.clearPreviousSession ?? false).toString(),
         allow_refresh: (phantomOptions.allowRefresh ?? true).toString(),
-        sdk_version: "1.0.5",
+        sdk_version: "1.0.6",
         sdk_type: "browser",
         platform: detectBrowser().name,
         algorithm: phantomOptions.algorithm || DEFAULT_AUTHENTICATOR_ALGORITHM
@@ -2920,14 +2920,14 @@ var Auth2AuthProvider = class {
       const description = this.urlParamsAccessor.getParam("error_description");
       throw new Error(`Auth2 callback error: ${description ?? error}`);
     }
-    const { idToken, bearerToken, authUserId, expiresInMs } = await exchangeAuthCode({
+    const { idToken, bearerToken, authUserId, expiresInMs, refreshToken } = await exchangeAuthCode({
       authApiBaseUrl: this.auth2ProviderOptions.authApiBaseUrl,
       clientId: this.auth2ProviderOptions.clientId,
       redirectUri: this.auth2ProviderOptions.redirectUri,
       code,
       codeVerifier
     });
-    await this.stamper.setIdToken(idToken);
+    await this.stamper.setTokens({ idToken, bearerToken, refreshToken, expiresInMs });
     await this.storage.saveSession({
       ...session,
       status: "completed",
@@ -2954,19 +2954,27 @@ var Auth2AuthProvider = class {
 import bs582 from "bs58";
 import { base64urlEncode } from "@phantom/base64url";
 import { Algorithm } from "@phantom/sdk-types";
+import { refreshToken as refreshTokenRequest } from "@phantom/auth2";
+import { TOKEN_REFRESH_BUFFER_MS } from "@phantom/constants";
 var STORE_NAME = "crypto-keys";
 var ACTIVE_KEY = "auth2-p256-signing-key";
 var Auth2Stamper = class {
   /**
    * @param dbName - IndexedDB database name (use a unique name per app to
    *   avoid key collisions with other stampers, e.g. `phantom-auth2-<appId>`).
+   * @param refreshConfig - When provided, the stamper will automatically refresh
+   *   the id_token using the refresh_token before it expires.
    */
-  constructor(dbName) {
+  constructor(dbName, refreshConfig) {
     this.dbName = dbName;
+    this.refreshConfig = refreshConfig;
     this.db = null;
     this._keyPair = null;
     this._keyInfo = null;
     this._idToken = null;
+    this._bearerToken = null;
+    this._refreshToken = null;
+    this._tokenExpiresAt = null;
     this.algorithm = Algorithm.secp256r1;
     this.type = "OIDC";
   }
@@ -2979,6 +2987,15 @@ var Auth2Stamper = class {
       if (stored.idToken) {
         this._idToken = stored.idToken;
       }
+      if (stored.bearerToken) {
+        this._bearerToken = stored.bearerToken;
+      }
+      if (stored.refreshToken) {
+        this._refreshToken = stored.refreshToken;
+      }
+      if (stored.tokenExpiresAt) {
+        this._tokenExpiresAt = stored.tokenExpiresAt;
+      }
       return this._keyInfo;
     }
     return this.generateAndStore();
@@ -2990,19 +3007,61 @@ var Auth2Stamper = class {
     return this._keyPair;
   }
   /**
-   * Arms the stamper with the OIDC id token for subsequent KMS stamp() calls.
+   * Returns the current token state (refreshing proactively if near expiry),
+   * or null if no token has been set yet.
+   */
+  async getTokens() {
+    if (this.refreshConfig && this._refreshToken && this._tokenExpiresAt !== null && Date.now() >= this._tokenExpiresAt - TOKEN_REFRESH_BUFFER_MS) {
+      const refreshed = await refreshTokenRequest({
+        authApiBaseUrl: this.refreshConfig.authApiBaseUrl,
+        clientId: this.refreshConfig.clientId,
+        redirectUri: this.refreshConfig.redirectUri,
+        refreshToken: this._refreshToken
+      });
+      await this.setTokens(refreshed);
+    }
+    if (!this._idToken || !this._bearerToken) {
+      return null;
+    }
+    return {
+      idToken: this._idToken,
+      bearerToken: this._bearerToken,
+      refreshToken: this._refreshToken ?? void 0
+    };
+  }
+  /**
+   * Arms the stamper with the OIDC token data for subsequent KMS stamp() calls.
    *
-   * Persists the token to IndexedDB alongside the key pair so that
-   * auto-connect can restore it on the next page load without a new login.
+   * Persists the tokens to IndexedDB alongside the key pair so that
+   * auto-connect can restore them on the next page load without a new login.
+   *
+   * @param refreshToken - When provided alongside a `refreshConfig`, enables
+   *   silent token refresh before the token expires.
+   * @param expiresInMs - Token lifetime in milliseconds (from `expires_in * 1000`).
+   *   Used to compute the absolute expiry time for proactive refresh.
    */
-  async setIdToken(idToken) {
+  async setTokens({
+    idToken,
+    bearerToken,
+    refreshToken,
+    expiresInMs
+  }) {
     if (!this.db) {
       await this.openDB();
     }
     this._idToken = idToken;
+    this._bearerToken = bearerToken;
+    this._refreshToken = refreshToken ?? null;
+    this._tokenExpiresAt = expiresInMs != null ? Date.now() + expiresInMs : null;
     const existing = await this.loadRecord();
     if (existing) {
-      await this.storeRecord({ ...existing, idToken });
+      await this.storeRecord({
+        ...existing,
+        idToken,
+        bearerToken,
+        refreshToken,
+        tokenExpiresAt: this._tokenExpiresAt ?? void 0
+      });
     }
   }
   async stamp(params) {
@@ -3035,6 +3094,9 @@ var Auth2Stamper = class {
     this._keyPair = null;
     this._keyInfo = null;
     this._idToken = null;
+    this._bearerToken = null;
+    this._refreshToken = null;
+    this._tokenExpiresAt = null;
   }
   // Auth2 doesn't use key rotation; provide minimal no-op implementations.
   async rotateKeyPair() {
@@ -3231,17 +3293,17 @@ var BrowserPhantomAppProvider = class {
 // src/providers/embedded/adapters/logger.ts
 var BrowserLogger = class {
-  info(category, message, data) {
-    debug.info(category, message, data);
+  info(message, ...args) {
+    debug.info(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
-  warn(category, message, data) {
-    debug.warn(category, message, data);
+  warn(message, ...args) {
+    debug.warn(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
-  error(category, message, data) {
-    debug.error(category, message, data);
+  error(message, ...args) {
+    debug.error(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
-  log(category, message, data) {
-    debug.log(category, message, data);
+  debug(message, ...args) {
+    debug.log(message, args.length > 0 ? String(args[0]) : "", args[1]);
   }
 };
@@ -3252,7 +3314,11 @@ var EmbeddedProvider = class extends CoreEmbeddedProvider {
     debug.log(DebugCategory.EMBEDDED_PROVIDER, "Initializing Browser EmbeddedProvider", { config });
     const urlParamsAccessor = new BrowserURLParamsAccessor();
     const storage = new BrowserStorage();
-    const stamper = config.unstable__auth2Options ? new Auth2Stamper(`phantom-auth2-${config.appId}`) : new IndexedDbStamper({
+    const stamper = config.unstable__auth2Options ? new Auth2Stamper(`phantom-auth2-${config.appId}`, {
+      authApiBaseUrl: config.unstable__auth2Options.authApiBaseUrl,
+      clientId: config.unstable__auth2Options.clientId,
+      redirectUri: config.authOptions?.redirectUrl ?? ""
+    }) : new IndexedDbStamper({
       dbName: `phantom-embedded-sdk-${config.appId}`,
       storeName: "crypto-keys",
       keyName: "signing-key"
@@ -3289,7 +3355,7 @@ var EmbeddedProvider = class extends CoreEmbeddedProvider {
         [ANALYTICS_HEADERS.CLIENT]: browserName,
         [ANALYTICS_HEADERS.APP_ID]: config.appId,
         [ANALYTICS_HEADERS.WALLET_TYPE]: config.embeddedWalletType,
-        [ANALYTICS_HEADERS.SDK_VERSION]: "1.0.5"
+        [ANALYTICS_HEADERS.SDK_VERSION]: "1.0.6"
         // Replaced at build time
       }
     };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@phantom/browser-sdk",
-  "version": "1.0.5",
+  "version": "1.0.6",
   "description": "Browser SDK for Phantom Wallet",
   "repository": {
     "type": "git",
@@ -33,16 +33,16 @@
     "prettier": "prettier --write \"src/**/*.{ts,tsx}\""
   },
   "dependencies": {
-    "@phantom/auth2": "^1.0.1",
-    "@phantom/base64url": "^1.0.5",
-    "@phantom/browser-injected-sdk": "^1.0.5",
-    "@phantom/chain-interfaces": "^1.0.5",
-    "@phantom/client": "^1.0.5",
-    "@phantom/constants": "^1.0.5",
-    "@phantom/embedded-provider-core": "^1.0.5",
-    "@phantom/indexed-db-stamper": "^1.0.5",
-    "@phantom/parsers": "^1.0.5",
-    "@phantom/sdk-types": "^1.0.5",
+    "@phantom/auth2": "^1.0.2",
+    "@phantom/base64url": "^1.0.6",
+    "@phantom/browser-injected-sdk": "^1.0.6",
+    "@phantom/chain-interfaces": "^1.0.6",
+    "@phantom/client": "^1.0.6",
+    "@phantom/constants": "^1.0.6",
+    "@phantom/embedded-provider-core": "^1.0.6",
+    "@phantom/indexed-db-stamper": "^1.0.6",
+    "@phantom/parsers": "^1.0.6",
+    "@phantom/sdk-types": "^1.0.6",
     "axios": "^1.10.0",
     "bs58": "^6.0.0",
     "buffer": "^6.0.3",