@pollar/core 0.9.0 → 0.10.0-rc.0

package/dist/index.d.ts

@@ -1,7 +1,7 @@
 import { S as Storage, O as OnStorageDegrade } from './types-DqgJIJBl.js';
 export { a as StorageDegradeReason } from './types-DqgJIJBl.js';
-import { V as VisibilityProvider } from './types-Dyky8g0p.js';
 import * as openapi_fetch from 'openapi-fetch';
+import { V as VisibilityProvider } from './types-Dyky8g0p.js';
 
 /**
  * Log levels in increasing verbosity. Setting a level emits that level and
@@ -53,1373 +53,89 @@ declare class StellarClient {
 }
 
 /**
- * Public JWK shape for an EC P-256 key. Only the four required members for
- * RFC 7638 thumbprint computation; never includes private fields or extras
- * like `alg` / `use` / `kid`.
- */
-interface PublicEcJwk {
-    kty: 'EC';
-    crv: 'P-256';
-    /** Base64url-encoded big-endian X coordinate (32 bytes). */
-    x: string;
-    /** Base64url-encoded big-endian Y coordinate (32 bytes). */
-    y: string;
-}
-/**
- * Manages the per-session ECDSA P-256 keypair used to sign DPoP proofs.
- *
- * Implementations:
- * - `WebCryptoKeyManager` (web): non-extractable `CryptoKey` persisted in
- *   IndexedDB. Private key bytes never leave the browser's crypto context.
- * - `NobleKeyManager` (React Native): private scalar bytes stored through an
- *   injected `Storage` adapter (Keychain / SecureStore). Pure-JS ECDSA via
- *   `@noble/curves`.
- */
-interface KeyManager {
-    /**
-     * Load an existing key for this session or generate a new one. Idempotent.
-     * Must be called before `getPublicJwk`, `getThumbprint`, or `sign`.
-     */
-    init(): Promise<void>;
-    /**
-     * Destroy the key. Removes it from persistent storage and clears any
-     * cached state. Used on logout.
-     */
-    reset(): Promise<void>;
-    /**
-     * The public JWK that goes into the DPoP proof header. Returns a fresh
-     * object every call (callers may mutate without affecting the manager).
-     */
-    getPublicJwk(): Promise<PublicEcJwk>;
-    /**
-     * RFC 7638 JWK thumbprint, base64url(SHA-256(canonical JWK)). The server
-     * compares this to the access token's `cnf.jkt` claim.
-     */
-    getThumbprint(): Promise<string>;
-    /**
-     * Sign the given bytes with ECDSA-P256-SHA256. Returns 64-byte raw r||s
-     * (IEEE P1363 / JOSE format), NOT DER. Suitable for direct base64url
-     * encoding into the JWS signature segment.
-     */
-    sign(payload: Uint8Array): Promise<Uint8Array>;
-}
-
-declare enum WalletType {
-    FREIGHTER = "freighter",
-    ALBEDO = "albedo"
-}
-/**
- * A wallet identifier. Accepts the internal `WalletType` enum values
- * (`'freighter'`, `'albedo'`) plus any opaque string id used by external
- * adapter packages (e.g. Stellar Wallets Kit ids like `'xbull'`, `'lobstr'`).
- * The `(string & {})` keeps autocomplete on the enum values without rejecting
- * arbitrary strings.
- */
-type WalletId = WalletType | (string & {});
-interface ConnectWalletResponse {
-    address: string;
-}
-interface SignTransactionOptions {
-    network?: string;
-    networkPassphrase?: string;
-    accountToSign?: string;
-}
-interface SignAuthEntryOptions {
-    accountToSign?: string;
-}
-interface SignTransactionResponse {
-    signedTxXdr: string;
-}
-interface SignAuthEntryResponse {
-    signedAuthEntry: string;
-}
-interface WalletAdapter {
-    type: WalletId;
-    isAvailable(): Promise<boolean>;
-    connect(): Promise<ConnectWalletResponse>;
-    disconnect(): Promise<void>;
-    getPublicKey(): Promise<string | null>;
-    signTransaction(xdr: string, options?: SignTransactionOptions): Promise<SignTransactionResponse>;
-    signAuthEntry(entryXdr: string, options?: SignAuthEntryOptions): Promise<SignAuthEntryResponse>;
-}
-/**
- * Resolves a {@link WalletAdapter} for a given wallet id. Injected through
- * `PollarClientConfig.walletAdapter` so wallet implementations (Stellar
- * Wallets Kit, custom modules, etc.) can live outside `@pollar/core`.
+ * This file was auto-generated by openapi-typescript.
+ * Do not make direct changes to the file.
  */
-type WalletAdapterResolver = (id: WalletId) => WalletAdapter | Promise<WalletAdapter>;
-
-declare class FreighterAdapter implements WalletAdapter {
-    readonly type = WalletType.FREIGHTER;
-    isAvailable(): Promise<boolean>;
-    connect(): Promise<ConnectWalletResponse>;
-    disconnect(): Promise<void>;
-    getPublicKey(): Promise<string | null>;
-    getNetwork(): Promise<string>;
-    signTransaction(xdr: string, options?: SignTransactionOptions): Promise<SignTransactionResponse>;
-    signAuthEntry(entryXdr: string, options?: SignAuthEntryOptions): Promise<SignAuthEntryResponse>;
-}
-
-/** Albedo's own network vocabulary (it only understands these two values). */
-type AlbedoNetwork = 'public' | 'testnet';
-declare class AlbedoAdapter implements WalletAdapter {
-    private readonly network;
-    readonly type = WalletType.ALBEDO;
-    /**
-     * Network used for `connect` and `signAuthEntry` (which carry no per-call
-     * network) and as the fallback for `signTransaction`. Defaults to `'testnet'`
-     * to preserve the previous behavior when constructed with no argument.
-     */
-    constructor(network?: AlbedoNetwork);
-    isAvailable(): Promise<boolean>;
-    connect(): Promise<ConnectWalletResponse>;
-    disconnect(): Promise<void>;
-    getPublicKey(): Promise<string | null>;
-    getNetwork(): Promise<string>;
-    signTransaction(xdr: string, options?: SignTransactionOptions): Promise<SignTransactionResponse>;
-    signAuthEntry(entryXdr: string, _options?: SignAuthEntryOptions): Promise<SignAuthEntryResponse>;
-}
 
-type PollarApplicationConfigResponse = paths['/auth/login']['post']['responses'][200]['content']['application/json'];
-/** Full `/auth/login` response shape — used in transit but NOT persisted. */
-type PollarApplicationConfigContent = PollarApplicationConfigResponse['content'];
-/**
- * What we actually write to `Storage`. Drops the PII subtree (`data.*`)
- * which is held in memory only on `PollarClient._profile` after auth.
- */
-interface PollarPersistedSession {
-    clientSessionId: string;
-    userId: string | null;
-    status: string;
-    token: {
-        accessToken: string;
-        refreshToken: string;
-        expiresAt: number;
+interface paths {
+    "/health": {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        /** Health check */
+        get: operations["getHealth"];
+        put?: never;
+        post?: never;
+        delete?: never;
+        options?: never;
+        head?: never;
+        patch?: never;
+        trace?: never;
     };
-    user: {
-        id?: string;
-        ready: boolean;
+    "/auth/session": {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        get?: never;
+        put?: never;
+        /**
+         * Create a client session
+         * @description Creates a pending client session that will be linked to a user after authentication.
+         */
+        post: operations["postAuthSession"];
+        delete?: never;
+        options?: never;
+        head?: never;
+        patch?: never;
+        trace?: never;
     };
-    wallet: {
-        type: 'internal' | 'smart' | 'external';
-        address: string | null;
-        existsOnStellar?: boolean;
-        createdAt?: number;
-        linkedAt?: number;
-        network?: string;
-        deployTxHash?: string | null;
+    "/auth/session/status/{clientSessionId}": {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        /**
+         * Stream client session status
+         * @description Server-Sent Events stream that emits session state every 500 ms. Closes when the session is consumed or expires.
+         */
+        get: operations["getAuthSessionStatusByClientSessionId"];
+        put?: never;
+        post?: never;
+        delete?: never;
+        options?: never;
+        head?: never;
+        patch?: never;
+        trace?: never;
     };
-}
-/** In-memory user profile (kept on `PollarClient`, never persisted). */
-interface PollarUserProfile {
-    mail: string;
-    first_name: string;
-    last_name: string;
-    avatar: string;
-    providers: {
-        email: {
-            address: string;
-        } | null;
-        google: {
-            id: string;
-        } | null;
-        github: {
-            id: string;
-        } | null;
-        wallet: {
-            address: string;
-        } | null;
+    "/auth/session/status/{clientSessionId}/poll": {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        /**
+         * Poll client session status (non-streaming)
+         * @description One-shot JSON variant of the SSE status stream, for clients without fetch response-body streaming (React Native). Returns the current `{status, user.ready}` immediately. Poll until `status` reaches a ready/consumed state.
+         */
+        get: operations["getAuthSessionStatusByClientSessionIdPoll"];
+        put?: never;
+        post?: never;
+        delete?: never;
+        options?: never;
+        head?: never;
+        patch?: never;
+        trace?: never;
     };
-}
-interface PollarClientConfig {
-    stellarNetwork?: StellarNetwork;
-    baseUrl?: string;
-    apiKey: string;
-    /**
-     * Pluggable storage. Defaults to `defaultStorage()` on web (localStorage
-     * with memory fallback). On RN you must inject one of the adapters from
-     * `@pollar/core/adapters/expo` or `@pollar/core/adapters/react-native-keychain`.
-     */
-    storage?: Storage;
-    /**
-     * Pluggable DPoP key manager. Defaults to `defaultKeyManager(storage,
-     * apiKey)`: WebCrypto in browsers, `@noble/curves` in RN.
-     */
-    keyManager?: KeyManager;
-    /**
-     * Minimum severity the SDK logs. `silent` disables all SDK logging; the rest
-     * emit that level and everything more important (`error` < `warn` < `info` <
-     * `debug`). State-transition chatter (auth/tx/network) is at `debug`.
-     * Defaults to `'info'`.
-     */
-    logLevel?: LogLevel;
-    /**
-     * Sink the SDK writes logs to. Defaults to the global `console`. Inject your
-     * own (pino, Sentry breadcrumbs, a test spy…) to route SDK logs anywhere.
-     * Filtering by `logLevel` still applies on top of whatever you pass.
-     */
-    logger?: PollarLogger;
-    /**
-     * Notified when persistent storage silently degrades to in-memory mode
-     * (Safari private browsing quota errors, sandboxed iframes, etc.). Useful
-     * for telemetry — the SDK keeps working but sessions won't survive reload.
-     */
-    onStorageDegrade?: OnStorageDegrade;
-    /**
-     * Resolves a {@link WalletAdapter} for a given wallet id. If omitted, the
-     * SDK falls back to its built-in `FreighterAdapter` / `AlbedoAdapter`,
-     * which only know `WalletType.FREIGHTER` and `WalletType.ALBEDO`. Inject
-     * `@pollar/stellar-wallets-kit-adapter` (or your own resolver) to support
-     * additional wallets without bundling those dependencies into `@pollar/core`.
-     */
-    walletAdapter?: WalletAdapterResolver;
-    /**
-     * Maximum time (ms) the SDK waits for a `walletAdapter` resolver to return.
-     * Guards against a broken extension bridge (e.g. Freighter content-script
-     * down) hanging the login flow forever. The resolver only constructs the
-     * adapter object — it does NOT include the user-facing approval step — so
-     * a few seconds is plenty. Defaults to 5000.
-     */
-    walletResolverTimeoutMs?: number;
-    /**
-     * Optional human-friendly label sent at /auth/login time and recorded on
-     * the server-side refresh-token row so the user can identify it in the
-     * "active sessions" UI (e.g. "iPhone — Safari", "Mac — Chrome 126").
-     * If unset, the server-recorded `user_agent` header is the fallback.
-     */
-    deviceLabel?: string;
-    /**
-     * Foreground-detection signal for the silent-refresh scheduler. When the
-     * app is hidden / backgrounded, scheduled refreshes are skipped (saves
-     * network + sidesteps browser/RN background timer throttling); they run
-     * the moment visibility comes back. Defaults to a web provider in the
-     * browser (`visibilitychange` + BFCache + focus) and a noop elsewhere.
-     * React Native consumers should inject an `AppState`-backed provider —
-     * use `createAppStateVisibilityProvider` from
-     * `@pollar/core/adapters/react-native-appstate`.
-     */
-    visibilityProvider?: VisibilityProvider;
-    /**
-     * If set, the silent-refresh scheduler stops issuing proactive refreshes
-     * after this many milliseconds of no client-side HTTP activity. The
-     * session is not cleared — the next user action triggers a request that
-     * either reuses a still-valid access token or hits 401 → reactive
-     * refresh (transparent if the RT is still valid). Defaults to
-     * `undefined` = refresh forever as long as the app is visible.
-     */
-    maxIdleMs?: number;
-    /**
-     * Strategy for opening the hosted OAuth URL during
-     * `login({ provider: 'google' | 'github' })`. Defaults to a browser popup
-     * on web. React Native consumers MUST provide one (typically wrapping
-     * `expo-web-browser`'s `openAuthSessionAsync`), since `window.open` does
-     * not exist there. The SDK still drives the rest of the flow by polling the
-     * auth-session status, so the opener only needs to surface the URL — it does
-     * NOT need to capture the redirect payload.
-     */
-    openAuthUrl?: AuthUrlOpener;
-    /**
-     * Value sent to the backend as `redirect_uri` for hosted OAuth (where the
-     * provider returns the user afterwards). Defaults to `window.location.origin`
-     * on web. On React Native set this to your app's deep link / scheme — the
-     * same URL you pass to `WebBrowser.openAuthSessionAsync`.
-     */
-    oauthRedirectUri?: string;
-    /**
-     * The passkey (WebAuthn) ceremony for "Smart Wallet" login, injected by the
-     * runtime layer (`@pollar/react` implements it with `@simplewebauthn/browser`).
-     * `@pollar/core` stays runtime-agnostic and never touches `navigator.credentials`
-     * directly. Required to use `loginSmartWallet()`. Browser-only for now;
-     * React Native needs a native passkey provider.
-     */
-    passkey?: PasskeyCeremony;
-    /**
-     * Signs smart-account (C-address) transactions with the user's passkey.
-     * Required to send from a smart wallet. Injected by `@pollar/react`;
-     * browser-only for now.
-     */
-    passkeySign?: PasskeySigner;
-}
-/**
- * Runs the device WebAuthn ceremony for a server-issued challenge and returns
- * the result to forward to the backend: a registration response for a new user
- * (`create()`) or an authentication assertion for a returning one (`get()`).
- * `mode` tells the ceremony which to run: `'login'` runs `get()` only (returning
- * user) and `'register'` runs `create()` only (new wallet) — the caller picks via
- * the "Log in" / "Create wallet" buttons, so there's no ambiguous autodetect that
- * could create a wallet when the user merely cancelled a login prompt. `response`
- * is the browser's PublicKeyCredential serialized to JSON — forwarded verbatim to
- * `/auth/passkey/{register,login}`.
- */
-type PasskeyMode = 'login' | 'register';
-type PasskeyCeremony = (ctx: {
-    challenge: string;
-    mode: PasskeyMode;
-}) => Promise<{
-    kind: 'login';
-    response: unknown;
-} | {
-    kind: 'register';
-    response: unknown;
-}>;
-/**
- * Signs a smart-account transaction's auth digest with the user's passkey
- * (a WebAuthn `get()` whose challenge is the raw digest). Returns the PUBLIC
- * assertion fields (base64url) for the server to assemble into the Soroban auth
- * entry — no secret leaves the device. Injected by the runtime layer
- * (`@pollar/react`); `@pollar/core` never touches `navigator.credentials`.
- */
-type PasskeySigner = (ctx: {
-    /** base64url WebAuthn credential id to sign with. */
-    credentialId: string;
-    /** hex-encoded auth digest to use as the WebAuthn challenge. */
-    challenge: string;
-}) => Promise<{
-    authenticatorData: string;
-    clientDataJSON: string;
-    signature: string;
-}>;
-/**
- * Strategy for opening the hosted OAuth URL. The SDK mints the per-login auth
- * session lazily inside `getUrl()` (call it once; the first call creates the
- * `clientSessionId` and returns the full URL, or `null` if session creation
- * failed). Open the resolved URL however the platform allows — a popup on web,
- * `WebBrowser.openAuthSessionAsync(url, redirectUri)` on React Native — and
- * resolve once the user-facing browser step is done or dismissed. You do NOT
- * need to capture the redirect payload: the SDK polls the auth-session status
- * until the backend marks it READY.
- */
-type AuthUrlOpener = (ctx: AuthOpenContext) => void | Promise<void>;
-interface AuthOpenContext {
-    provider: 'google' | 'github';
-    /**
-     * Mints the auth session (once) and returns the full hosted-OAuth URL, or
-     * `null` if session creation failed. On web, call it AFTER reserving the
-     * popup window so popup blockers (which only honor `window.open` inside the
-     * original user-gesture tick) don't swallow it.
-     */
-    getUrl: () => Promise<string | null>;
-    /** The redirect target passed to the backend as `redirect_uri`. */
-    redirectUri: string;
-    signal: AbortSignal;
-}
-/**
- * One row in the active-sessions list (returned by `PollarClient.listSessions()`).
- * Mirrors the sdk-api `SessionsListContent` schema.
- */
-interface SessionInfo {
-    familyId: string;
-    createdAt: string;
-    lastUsedAt: string | null;
-    userAgent: string | null;
-    ipHash: string | null;
-    deviceLabel: string | null;
-    current: boolean;
-    expiresAt: string;
-}
-/**
- * Observable state for the active-sessions list. Lives on the client (like
- * {@link TxHistoryState} / {@link WalletBalanceState}) so UI layers can
- * subscribe via `onSessionsStateChange` and stay pure readers instead of
- * holding the loading state locally.
- */
-type SessionsState = {
-    step: 'idle';
-} | {
-    step: 'loading';
-} | {
-    step: 'loaded';
-    sessions: SessionInfo[];
-} | {
-    step: 'error';
-    message: string;
-};
-type TxBuildBody = NonNullable<paths['/tx/build']['post']['requestBody']>['content']['application/json'];
-type TxBuildResponse = paths['/tx/build']['post']['responses'][200]['content']['application/json'];
-type TxSignAndSendBody = NonNullable<paths['/tx/sign-and-send']['post']['requestBody']>['content']['application/json'];
-type TxSignSendResponse = paths['/tx/sign-and-send']['post']['responses'][200]['content']['application/json'];
-type TxSignBody = NonNullable<paths['/tx/sign']['post']['requestBody']>['content']['application/json'];
-type TxSignResponse = paths['/tx/sign']['post']['responses'][200]['content']['application/json'];
-type TxSignContent = TxSignResponse['content'];
-type TxSubmitSignedBody = NonNullable<paths['/tx/submit']['post']['requestBody']>['content']['application/json'];
-type TxBuildSignSubmitBody = NonNullable<paths['/tx/build-sign-submit']['post']['requestBody']>['content']['application/json'];
-type TxBuildSignSubmitResponse = paths['/tx/build-sign-submit']['post']['responses'][200]['content']['application/json'];
-type TxBuildSignSubmitContent = TxBuildSignSubmitResponse['content'];
-type PollarLoginOptions = {
-    provider: 'google';
-} | {
-    provider: 'github';
-} | {
-    provider: 'email';
-    email: string;
-} | {
-    provider: 'wallet';
-    type: WalletId;
-};
-type TxBuildContent = TxBuildResponse['content'];
-/**
- * Phases the SDK can be in across the build → sign → submit lifecycle.
- *
- * **Granular** steps (`building`, `signing`, `submitting`) are emitted when
- * the SDK can directly observe that phase — i.e. when each is a separate
- * client-driven call (`buildTx`, `signTx`, `submitTx`, external-wallet
- * `signAndSubmitTx`).
- *
- * **Compound** steps (`signing-submitting`, `building-signing-submitting`)
- * are emitted when multiple phases collapse into a single opaque backend
- * round-trip (`signAndSubmitTx` custodial → `/tx/sign-and-send`, and `runTx`
- * / `buildAndSignAndSubmitTx` custodial → `/tx/build-sign-submit`). The SDK
- * can't see when one phase ends and the next begins inside that request, so
- * it honestly reports a single fused state instead of fabricating
- * transitions.
- *
- * **Terminal states** (`success`, `error`) and the post-Horizon-ack pending
- * state (`submitted`) are shared across all paths.
- *
- * On `error`, the `phase` discriminator tells the consumer *where* the
- * failure happened so modal UIs can offer "retry from this step" buttons.
- */
-type TransactionState = {
-    step: 'idle';
-} | {
-    step: 'building';
-} | {
-    step: 'built';
-    buildData: TxBuildContent;
-} | {
-    step: 'signing';
-    buildData?: TxBuildContent;
-} | {
-    step: 'signed';
-    buildData?: TxBuildContent;
-    signedXdr: string;
-    submissionToken?: string;
-} | {
-    step: 'submitting';
-    buildData?: TxBuildContent;
-    signedXdr?: string;
-} | {
-    step: 'signing-submitting';
-    buildData?: TxBuildContent;
-} | {
-    step: 'building-signing-submitting';
-} | {
-    step: 'submitted';
-    buildData?: TxBuildContent;
-    hash: string;
-} | {
-    step: 'success';
-    buildData?: TxBuildContent;
-    hash: string;
-} | {
-    step: 'error';
-    phase: TxErrorPhase;
-    details?: string;
-    buildData?: TxBuildContent;
-    signedXdr?: string;
-};
-/**
- * Identifies which phase failed when `TransactionState.step === 'error'`.
- * Compound phase names (`signing-submitting`, `building-signing-submitting`)
- * appear here when the failure happened inside an atomic backend call where
- * the SDK can't isolate the failing sub-phase.
- */
-type TxErrorPhase = 'building' | 'signing' | 'submitting' | 'signing-submitting' | 'building-signing-submitting';
-/**
- * Per-call outcomes returned by `buildTx`, `signTx`, `submitTx`,
- * `signAndSubmitTx`, and `buildAndSignAndSubmitTx`. These are additive to
- * `TransactionState` — the same operations still drive the state machine for
- * modal-style UIs, but headless callers can `await` the method and inspect
- * the returned outcome directly instead of subscribing to state changes.
- */
-type BuildOutcome = {
-    status: 'built';
-    buildData: TxBuildContent;
-} | {
-    status: 'error';
-    details?: string;
-};
-type SignOutcome = {
-    status: 'signed';
-    signedXdr: string;
-    submissionToken?: string;
-    expiresAt?: number;
-} | {
-    status: 'error';
-    details?: string;
-};
-type SubmitOutcome = {
-    status: 'success';
-    hash: string;
-    buildData?: TxBuildContent;
-} | {
-    status: 'pending';
-    hash: string;
-    buildData?: TxBuildContent;
-} | {
-    status: 'error';
-    hash?: string;
-    details?: string;
-    resultCode?: string;
-    buildData?: TxBuildContent;
-};
-/**
- * Result of {@link PollarClient.setTrustline}. Like {@link SubmitOutcome} but the
- * `hash` is optional: the sponsored, server-orchestrated path completes without
- * surfacing a transaction hash to the client, whereas the self-paid path returns
- * the underlying submit outcome (hash included).
- */
-type TrustlineOutcome = {
-    status: 'success';
-    hash?: string;
-} | {
-    status: 'pending';
-    hash?: string;
-} | {
-    status: 'error';
-    details?: string;
-};
-declare const AUTH_ERROR_CODES: {
-    readonly SESSION_CREATE_FAILED: "SESSION_CREATE_FAILED";
-    readonly SESSION_EXPIRED: "SESSION_EXPIRED";
-    readonly SESSION_INVALID: "SESSION_INVALID";
-    readonly EMAIL_SEND_FAILED: "EMAIL_SEND_FAILED";
-    readonly EMAIL_VERIFY_FAILED: "EMAIL_VERIFY_FAILED";
-    readonly EMAIL_CODE_EXPIRED: "EMAIL_CODE_EXPIRED";
-    readonly EMAIL_CODE_INVALID: "EMAIL_CODE_INVALID";
-    readonly AUTH_FAILED: "AUTH_FAILED";
-    readonly WALLET_CONNECT_FAILED: "WALLET_CONNECT_FAILED";
-    readonly WALLET_AUTH_FAILED: "WALLET_AUTH_FAILED";
-    readonly WALLET_RESOLVER_TIMEOUT: "WALLET_RESOLVER_TIMEOUT";
-    readonly PASSKEY_FAILED: "PASSKEY_FAILED";
-    readonly UNEXPECTED_ERROR: "UNEXPECTED_ERROR";
-};
-type AuthErrorCode = (typeof AUTH_ERROR_CODES)[keyof typeof AUTH_ERROR_CODES];
-type AuthState = {
-    step: 'idle';
-} | {
-    step: 'creating_session';
-} | {
-    step: 'entering_email';
-    clientSessionId: string;
-} | {
-    step: 'sending_email';
-    email: string;
-} | {
-    step: 'entering_code';
-    clientSessionId: string;
-    email: string;
-} | {
-    step: 'verifying_email_code';
-    clientSessionId: string;
-    email: string;
-} | {
-    step: 'opening_oauth';
-    provider: 'google' | 'github';
-} | {
-    step: 'connecting_wallet';
-    walletType: WalletId;
-} | {
-    step: 'wallet_not_installed';
-    walletType: WalletId;
-} | {
-    step: 'authenticating_wallet';
-} | {
-    step: 'creating_passkey';
-} | {
-    step: 'deploying_smart_account';
-} | {
-    step: 'authenticating';
-} | {
-    step: 'authenticated';
-    session: PollarPersistedSession;
-    /**
-     * `false` while the session is restored optimistically from storage and
-     * not yet revalidated with the server; `true` after a fresh login/refresh
-     * or a successful `/auth/session/resume`. Gate sensitive actions on this.
-     */
-    verified: boolean;
-} | {
-    step: 'error';
-    previousStep: string;
-    message: string;
-    errorCode: AuthErrorCode;
-    clientSessionId?: string;
-    email?: string;
-};
-type NetworkState = {
-    step: 'idle';
-} | {
-    step: 'connected';
-    network: StellarNetwork;
-};
-declare class PollarFlowError extends Error {
-    readonly code: "INVALID_FLOW";
-    constructor(message: string);
-}
-type WalletBalanceContent = paths['/wallet/balance']['get']['responses'][200]['content']['application/json']['content'];
-type WalletBalanceRecord = WalletBalanceContent['balances'][number];
-type WalletBalanceState = {
-    step: 'idle';
-} | {
-    step: 'loading';
-} | {
-    step: 'loaded';
-    data: WalletBalanceContent;
-} | {
-    step: 'error';
-    message: string;
-};
-type WalletAssetsContent = paths['/wallet/assets']['get']['responses'][200]['content']['application/json']['content'];
-type EnabledAssetRecord = WalletAssetsContent['assets'][number];
-type EnabledAssetsState = {
-    step: 'idle';
-} | {
-    step: 'loading';
-} | {
-    step: 'loaded';
-    data: WalletAssetsContent;
-} | {
-    step: 'error';
-    message: string;
-};
-type TxHistoryRecord = paths['/tx/history']['get']['responses'][200]['content']['application/json']['content']['records'][number];
-type TxHistoryParams = NonNullable<paths['/tx/history']['get']['parameters']['query']>;
-type TxHistoryContent = paths['/tx/history']['get']['responses'][200]['content']['application/json']['content'];
-type TxHistoryState = {
-    step: 'idle';
-} | {
-    step: 'loading';
-    params: TxHistoryParams;
-} | {
-    step: 'loaded';
-    params: TxHistoryParams;
-    data: TxHistoryContent;
-} | {
-    step: 'error';
-    params: TxHistoryParams;
-    message: string;
-};
-type KycLevel = 'basic' | 'intermediate' | 'enhanced';
-type KycStatus = 'none' | 'pending' | 'approved' | 'rejected';
-type KycFlow = 'iframe' | 'form' | 'redirect';
-type KycProvider = paths['/kyc/providers']['get']['responses'][200]['content']['application/json']['content']['providers'][number];
-type KycStartBody = NonNullable<paths['/kyc/start']['post']['requestBody']>['content']['application/json'];
-type KycStartResponse = paths['/kyc/start']['post']['responses'][200]['content']['application/json']['content'];
-type RampsQuoteQuery = NonNullable<paths['/ramps/quote']['get']['parameters']['query']>;
-type RampQuote = paths['/ramps/quote']['get']['responses'][200]['content']['application/json']['content']['quotes'][number];
-type RampsQuoteResponse = paths['/ramps/quote']['get']['responses'][200]['content']['application/json']['content'];
-type RampsOnrampBody = NonNullable<paths['/ramps/onramp']['post']['requestBody']>['content']['application/json'];
-type RampsOnrampResponse = paths['/ramps/onramp']['post']['responses'][200]['content']['application/json']['content'];
-type RampsOfframpBody = NonNullable<paths['/ramps/offramp']['post']['requestBody']>['content']['application/json'];
-type RampsOfframpResponse = paths['/ramps/offramp']['post']['responses'][200]['content']['application/json']['content'];
-type RampsTransactionResponse = paths['/ramps/transaction/{txId}']['get']['responses'][200]['content']['application/json']['content'];
-type RampTxStatus = RampsTransactionResponse['status'];
-type RampDirection = RampsTransactionResponse['direction'];
-type PaymentInstructions = RampsOnrampResponse['paymentInstructions'];
-type DistributionRule = paths['/distribution/rules']['get']['responses'][200]['content']['application/json']['content']['rules'][number];
-type RulePeriod = DistributionRule['period'];
-type DistributionClaimBody = NonNullable<paths['/distribution/claim']['post']['requestBody']>['content']['application/json'];
-type DistributionClaimContent = paths['/distribution/claim']['post']['responses'][200]['content']['application/json']['content'];
-type DistributionRulesState = {
-    step: 'idle';
-} | {
-    step: 'loading';
-} | {
-    step: 'loaded';
-    rules: DistributionRule[];
-} | {
-    step: 'error';
-    message: string;
-};
-type AdapterFn<TParams = unknown> = (params: TParams) => Promise<{
-    unsignedTransaction: string;
-}>;
-type PollarAdapter = Record<string, AdapterFn<any>>;
-interface PollarAdapters {
-    [key: string]: PollarAdapter;
-}
-
-declare class PollarClient {
-    readonly apiKey: string;
-    readonly id: string;
-    readonly basePath: string;
-    private readonly _api;
-    private readonly _log;
-    private readonly _storage;
-    private readonly _keyManager;
-    /** Resolves once `keyManager.init()` and the initial session restore complete. */
-    private readonly _initialized;
-    /**
-     * Per-API-key storage namespace. Computed asynchronously inside
-     * `_initialize()` because SHA-256 lives behind `crypto.subtle.digest`.
-     * Accessing `apiKeyHash` before `await client.ready()` throws.
-     */
-    private _apiKeyHash;
-    /**
-     * Short SHA-256-derived namespace for this client's persisted state.
-     * Available after `await client.ready()` (or any awaited method); throws
-     * if read before initialization completes.
-     */
-    get apiKeyHash(): string;
-    private _session;
-    private _profile;
-    /** Last `DPoP-Nonce` we saw from a server response. Carried into the next proof. */
-    private _dpopNonce;
-    /**
-     * Snapshot of each in-flight request's body, taken in `onRequest` before
-     * `fetch()` consumes the stream. Needed because `Request.clone()` throws
-     * once the body is disturbed, so the auto-retry path (DPoP nonce challenge
-     * / 401 refresh) must rebuild the request from scratch instead of cloning.
-     */
-    private _requestBodyCache;
-    /** Singleton in-flight refresh — concurrent 401s coalesce into one /auth/refresh call. */
-    private _refreshPromise;
-    private _storageEventHandler;
-    /** Optional UI label sent to the server at /auth/login so the sessions UI
-     *  can show a recognizable device name. Set via PollarClientConfig.deviceLabel. */
-    private readonly _deviceLabel;
-    private readonly _visibilityProvider;
-    private readonly _maxIdleMs;
-    /** Updated by the request middleware. Read by the silent-refresh scheduler
-     *  to skip proactive refreshes after `maxIdleMs` of no HTTP activity. */
-    private _lastRequestAt;
-    private _refreshTimer;
-    private _visibilityUnsubscribe;
-    private _transactionState;
-    private _transactionStateListeners;
-    private _txHistoryState;
-    private _txHistoryStateListeners;
-    private _sessionsState;
-    private _sessionsStateListeners;
-    private _walletBalanceState;
-    private _walletBalanceStateListeners;
-    private _enabledAssetsState;
-    private _enabledAssetsStateListeners;
-    private _authState;
-    private _authStateListeners;
-    private _networkState;
-    private _networkStateListeners;
-    /**
-     * Latched once the storage adapter degrades. We dedupe (the adapter only
-     * fires once anyway) and use it to replay state to late-subscribers — same
-     * pattern as `onAuthStateChange` replaying `_authState` on subscribe.
-     * Only populated when the SDK constructed the default storage adapter; if
-     * the consumer passes `config.storage`, they own degradation notifications.
-     */
-    private _storageDegraded;
-    private _storageDegradeListeners;
-    private _walletAdapter;
-    private readonly _walletAdapterResolver;
-    private readonly _walletResolverTimeoutMs;
-    private readonly _passkey;
-    private readonly _passkeySign;
-    private _loginController;
-    /** Aborts an in-flight `/auth/session/resume` on destroy() or re-trigger. */
-    private _resumeController;
-    /** Platform strategy for opening the hosted-OAuth URL (popup on web; injected on RN). */
-    private readonly _openAuthUrl;
-    /** `redirect_uri` sent to the backend for hosted OAuth. */
-    private readonly _oauthRedirectUri;
-    constructor(config: PollarClientConfig);
-    /** Awaitable handle for the initial keypair + session restore. */
-    ready(): Promise<void>;
-    private _initialize;
-    /** Detach the cross-tab storage listener and abort any in-flight login. */
-    destroy(): void;
-    private _wireMiddlewares;
-    private _buildProofForRequest;
-    private _retryRequest;
-    /**
-     * Coalesce concurrent refresh attempts. The first caller does the work;
-     * everyone else awaits the same promise and sees the new tokens.
-     */
-    refresh(): Promise<void>;
-    private _doRefresh;
-    /**
-     * Arm a single setTimeout to fire shortly before the current access token
-     * expires. Idempotent — clearing any previous timer first. Safe to call
-     * from any session-write site (initial login, restore-from-storage, after
-     * a successful rotation). No-op if there's no session in memory.
-     *
-     * Browser/RN background-tab throttling makes long-running setTimeouts
-     * unreliable on their own; the `visibilitychange` listener compensates by
-     * re-invoking `_maybeProactiveRefresh` whenever the app comes back to the
-     * foreground, catching any timer that fired late or never fired at all.
-     */
-    private _scheduleNextRefresh;
-    /**
-     * Decide whether to actually run a refresh right now. Called both from the
-     * scheduler timer and from the visibility-change listener.
-     *
-     * Skip if:
-     *   - no session / no RT (nothing to refresh)
-     *   - app is hidden — wait for the visibility listener to re-trigger us
-     *   - `maxIdleMs` configured and no client request since that window — let
-     *     the next reactive 401-refresh handle it whenever the user comes back
-     *   - the AT still has more than `REFRESH_SKEW_SECONDS` of life — reschedule
-     *
-     * Otherwise call `refresh()`, which uses the existing in-flight singleton
-     * so we never collide with a reactive 401-triggered refresh. On failure,
-     * `_doRefresh` already calls `_clearSession`, so auth-state listeners see
-     * `step:'idle'` — no extra event dispatch needed here.
-     */
-    private _maybeProactiveRefresh;
-    private _clearRefreshTimer;
-    getAuthState(): AuthState;
-    onAuthStateChange(cb: (state: AuthState) => void): () => void;
-    /**
-     * Subscribe to persistent-storage degradation (Safari private mode,
-     * sandboxed iframes, quota errors, etc.). The SDK keeps running off
-     * in-memory storage after degrade, but sessions won't survive reload — a
-     * host UI typically wants to show "your session won't be saved" so the
-     * user isn't blindsided after a refresh.
-     *
-     * Fires at most once per client lifetime (the underlying adapter dedupes).
-     * Late subscribers receive the latched state synchronously on subscribe.
-     *
-     * Only fires when the SDK constructs the default storage adapter. If you
-     * pass a custom `config.storage`, wire your own notification path through
-     * that adapter's API — the SDK has no hook into it.
-     */
-    onStorageDegrade(cb: OnStorageDegrade): () => void;
-    private _dispatchStorageDegrade;
-    /** PII (email, names, avatar, providers). Held in memory only — never persisted. */
-    getUserProfile(): PollarUserProfile | null;
-    login(options: PollarLoginOptions): void;
-    beginEmailLogin(): void;
-    sendEmailCode(email: string): void;
-    verifyEmailCode(code: string): void;
-    loginWallet(type: WalletId): void;
-    /**
-     * "Smart Wallet" login: runs the passkey (WebAuthn) `get()` ceremony for a
-     * returning user and signs them in. Use {@link createSmartWallet} for a new
-     * user. Requires the `passkey` ceremony to be configured (e.g. via
-     * `@pollar/react`).
-     */
-    loginSmartWallet(): void;
-    /**
-     * "Smart Wallet" registration: runs the passkey (WebAuthn) `create()` ceremony
-     * for a new user and deploys a sponsored smart-account C-address. Use
-     * {@link loginSmartWallet} for a returning user. Requires the `passkey`
-     * ceremony to be configured (e.g. via `@pollar/react`).
-     */
-    createSmartWallet(): void;
-    cancelLogin(): void;
-    /**
-     * Revoke the current session server-side, then clear local storage.
-     *
-     * Server revocation is best-effort: if the POST fails (offline, server
-     * down), local state is wiped regardless. The orphan refresh token then
-     * remains unused until its natural expiry. The in-flight access token
-     * stays valid until its own TTL elapses (≤10 min for DPoP-bound tokens).
-     *
-     * Pass `everywhere: true` to revoke every active session for this user
-     * across all devices.
-     */
-    logout(options?: {
-        everywhere?: boolean;
-    }): Promise<void>;
-    /** Convenience: revoke every active session for this user (all devices). */
-    logoutEverywhere(): Promise<void>;
-    /**
-     * List active sessions for the authenticated user. Returns one entry per
-     * refresh-token family with the metadata captured at issuance time. The
-     * `current` flag identifies which entry corresponds to this client.
-     */
-    listSessions(): Promise<SessionInfo[]>;
-    getSessionsState(): SessionsState;
-    onSessionsStateChange(cb: (state: SessionsState) => void): () => void;
-    /**
-     * Fire-and-forget variant of {@link listSessions} that drives the observable
-     * `SessionsState` store instead of returning the array. UI layers subscribe
-     * via `onSessionsStateChange` and stay pure readers — mirrors `fetchTxHistory`.
-     */
-    fetchSessions(): Promise<void>;
-    /**
-     * Revoke a specific refresh-token family (a single device session). Use
-     * `listSessions` to enumerate the familyIds. Revoking the current session
-     * does NOT clear local state — call `logout()` for that case.
-     */
-    revokeSession(familyId: string): Promise<void>;
-    getNetwork(): StellarNetwork;
-    getNetworkState(): NetworkState;
-    /**
-     * The client's level-gated logger (built from `logLevel` / `logger`). Exposed
-     * so the runtime layer (`@pollar/react`) can route its own logs through the
-     * same level and sink instead of calling `console` directly.
-     */
-    getLogger(): PollarLogger;
-    setNetwork(network: StellarNetwork): void;
-    onNetworkStateChange(cb: (state: NetworkState) => void): () => void;
-    getTransactionState(): TransactionState | null;
-    onTransactionStateChange(cb: (state: TransactionState) => void): () => void;
-    getTxHistoryState(): TxHistoryState;
-    onTxHistoryStateChange(cb: (state: TxHistoryState) => void): () => void;
-    fetchTxHistory(params?: TxHistoryParams): Promise<void>;
-    getWalletBalanceState(): WalletBalanceState;
-    onWalletBalanceStateChange(cb: (state: WalletBalanceState) => void): () => void;
-    /**
-     * Refreshes the balances of the authenticated user's OWN wallet. The wallet
-     * and network are resolved server-side from the session — no arguments. Drives
-     * `walletBalanceState`. For an arbitrary wallet, use {@link getWalletBalance}.
-     */
-    refreshBalance(): Promise<void>;
-    /**
-     * General-purpose balance lookup for ANY wallet on ANY network — not scoped
-     * to this application. Enumerates the account's real on-chain holdings via
-     * Horizon (server-side) and returns the data directly (no reactive state).
-     * `network` defaults to the client's current network.
-     */
-    getWalletBalance(publicKey: string, network?: StellarNetwork): Promise<WalletBalanceContent>;
-    getEnabledAssetsState(): EnabledAssetsState;
-    onEnabledAssetsStateChange(cb: (state: EnabledAssetsState) => void): () => void;
-    /**
-     * Loads the application's enabled assets paired with the authenticated
-     * wallet's on-chain trustline state — so the SDK knows which trustlines still
-     * need to be added. Wallet and network are resolved server-side from the
-     * session. Drives `enabledAssetsState`; mirrors {@link refreshBalance}.
-     */
-    refreshAssets(): Promise<void>;
-    /**
-     * Establishes (omit `limit`) or removes (`limit: '0'`) a trustline for an asset.
-     *
-     * Routing mirrors how the platform pays for the reserve:
-     *  - **Sponsored custodial** (`opts.sponsored` true, internal wallet) → the
-     *    server orchestrates a sponsored `changeTrust`: the app's wallets cover the
-     *    0.5 XLM reserve and the fee, so the user pays nothing. Pass the asset's
-     *    `sponsored` flag (from {@link refreshAssets}) straight through.
-     *  - **Self-paid** (external/adapter wallet, sponsorship disabled, or a custom
-     *    asset not configured in the app) → a plain `change_trust` transaction the
-     *    user's own wallet signs and pays for, via {@link runTx}.
-     *
-     * Does not refresh on its own — callers should `refreshAssets()` afterwards.
-     */
-    setTrustline(asset: {
-        code: string;
-        issuer: string;
-    }, opts?: {
-        limit?: string;
-        sponsored?: boolean;
-    }): Promise<TrustlineOutcome>;
-    /**
-     * Builds an unsigned XDR. Drives `_setTransactionState` for modal-style UIs
-     * AND returns a {@link BuildOutcome} so headless callers can `await` and
-     * inspect the result without subscribing to state changes.
-     */
-    buildTx(operation: TxBuildBody['operation'], params: TxBuildBody['params'], options?: TxBuildBody['options']): Promise<BuildOutcome>;
-    getWalletType(): WalletId | null;
-    /**
-     * Signs the given unsigned XDR and returns the signed XDR.
-     *
-     * - External wallets: signs locally via the wallet adapter.
-     * - Custodial wallets: posts to `/tx/sign`. The backend signs (through
-     *   wallet-service or the app's customer-managed adapter) and returns the
-     *   signed XDR plus an `idempotencyKey` the caller should echo back to
-     *   `submitTx`.
-     *
-     * Drives `_setTransactionState`: emits `signing` while in flight and
-     * `signed` on success (or `error[phase: 'signing']` on failure). `buildData`
-     * is threaded through if the consumer previously called `buildTx`.
-     */
-    signTx(unsignedXdr: string): Promise<SignOutcome>;
-    /**
-     * Submits a signed XDR via `/tx/submit` regardless of wallet type
-     * (custodial or external). Routing through sdk-api gives us:
-     *   - End-to-end tx_records persistence with full phase lifecycle so the
-     *     developer dashboard can show every tx (both custodial and external
-     *     wallet flows) at `/apps/:id/monitor/transactions`.
-     *   - Idempotency tracking via `submissionToken` (returned by `signTx`).
-     *   - A single response shape (SUCCESS / PENDING / FAILED) shared by both
-     *     flows — previously external wallets could only return SUCCESS or
-     *     error since the direct-to-Horizon path was synchronous.
-     *
-     * The extra hop adds ~50–150 ms vs. the legacy direct-Horizon path; the
-     * persistence + observability win is worth it.
-     *
-     * Drives `_setTransactionState`: emits `submitting` while in flight,
-     * `submitted` on Horizon ack (pending), `success` on ledger confirmation,
-     * or `error[phase: 'submitting']` on failure.
-     */
-    submitTx(signedXdr: string, opts?: {
-        submissionToken?: string;
-    }): Promise<SubmitOutcome>;
-    /**
-     * Signs and submits in one logical step. Returns a {@link SubmitOutcome}.
-     *
-     * - **External wallets**: composes `signTx` + `submitTx` client-side. State
-     *   machine sees the full granular sequence `signing → signed → submitting
-     *   → success` because the underlying methods each emit.
-     * - **Custodial wallets**: atomic `/tx/sign-and-send` round-trip. State
-     *   machine emits the compound `signing-submitting` step (the SDK can't
-     *   observe when one phase ends and the next begins inside that single
-     *   backend call) and then transitions to `submitted` (Horizon ack only) or
-     *   `success` (ledger-confirmed), or `error[phase: 'signing-submitting']`.
-     */
-    signAndSubmitTx(unsignedXdr?: string): Promise<SubmitOutcome>;
-    /**
-     * One-shot: build → sign → submit, returning the final {@link SubmitOutcome}.
-     *
-     * - **External wallets**: composes `buildTx` + `signAndSubmitTx` client-side.
-     *   State machine sees the full granular sequence (`building → built →
-     *   signing → signed → submitting → success`) because each composed call
-     *   emits its own transitions.
-     * - **Custodial wallets**: single round-trip to `/tx/build-sign-submit`. The
-     *   signed XDR never leaves the backend. State machine emits the compound
-     *   `building-signing-submitting` step (the SDK can't observe individual
-     *   phase boundaries inside one atomic call) and then transitions to
-     *   `submitted` / `success` / `error[phase: 'building-signing-submitting']`.
-     *
-     * If you need granular UI feedback for custodial flows (separate
-     * "Building…", "Signing…", "Submitting…" indicators), call `buildTx`,
-     * `signTx`, and `submitTx` separately instead.
-     */
-    buildAndSignAndSubmitTx(operation: TxBuildBody['operation'], params: TxBuildBody['params'], options?: TxBuildBody['options']): Promise<SubmitOutcome>;
-    /** Alias for {@link buildAndSignAndSubmitTx} — shorter "just do the thing" name. */
-    runTx(operation: TxBuildBody['operation'], params: TxBuildBody['params'], options?: TxBuildBody['options']): Promise<SubmitOutcome>;
-    /**
-     * Smart-wallet (passkey / C-address) transaction: build (server prepares the
-     * SAC transfer + returns the auth digest) → sign the digest with the passkey
-     * → submit (server assembles the signed auth entry and broadcasts; the
-     * sponsor pays the fee). State machine: building → built → signing →
-     * submitting → success.
-     */
-    private _runSmartTx;
-    /**
-     * Steps 2–3 of the smart-wallet flow: sign the prepared auth digest with the
-     * passkey, then submit. Shared by `_runSmartTx` (atomic) and `signAndSubmitTx`
-     * (split flow, when a smart build is already on the state machine).
-     */
-    private _signSubmitSmart;
-    getAppConfig(): Promise<unknown>;
-    getKycStatus(providerId?: string): Promise<{
-        status: KycStatus;
-        level?: KycLevel | undefined;
-        providerId: string;
-        expiresAt?: string;
-    }>;
-    getKycProviders(country: string): Promise<{
-        providers: KycProvider[];
-    }>;
-    startKyc(body: KycStartBody): Promise<KycStartResponse>;
-    resolveKyc(providerId: string, level?: KycLevel): Promise<{
-        alreadyApproved: boolean;
-    } & Partial<{
-        sessionId: string;
-        kycUrl?: string;
-        fields?: {
-            name: string;
-            type: string;
-            required: boolean;
-        }[];
-    }>>;
-    pollKycStatus(providerId: string, opts?: {
-        intervalMs?: number;
-        timeoutMs?: number;
-    }): Promise<KycStatus>;
-    getRampsQuote(query: RampsQuoteQuery): Promise<RampsQuoteResponse>;
-    createOnRamp(body: RampsOnrampBody): Promise<RampsOnrampResponse>;
-    createOffRamp(body: RampsOfframpBody): Promise<RampsOfframpResponse>;
-    getRampTransaction(txId: string): Promise<RampsTransactionResponse>;
-    pollRampTransaction(txId: string, opts?: {
-        intervalMs?: number;
-        timeoutMs?: number;
-    }): Promise<RampTxStatus>;
-    listDistributionRules(): Promise<DistributionRule[]>;
-    claimDistributionRule(body: DistributionClaimBody): Promise<DistributionClaimContent>;
-    private _setTxHistoryState;
-    private _setSessionsState;
-    private _setWalletBalanceState;
-    private _setEnabledAssetsState;
-    private _newController;
-    private _flowDeps;
-    /**
-     * Resolves a wallet adapter for the requested id. Uses the consumer's
-     * injected `walletAdapter` resolver when present; otherwise falls back to
-     * the built-in `FreighterAdapter` / `AlbedoAdapter`. Throws if the id is
-     * unknown and no resolver is configured.
-     */
-    private _resolveWalletAdapter;
-    private _handleFlowError;
-    private _restoreSession;
-    /**
-     * Validate the restored session against the server and repopulate the
-     * in-memory profile (PII is never persisted, so it's null after a cold
-     * reload). Goes through the normal authed client, so it coalesces with any
-     * in-flight refresh (onRequest awaits `_refreshPromise`) and, being a GET,
-     * is auto-retried after a 401-triggered refresh.
-     *
-     * - 200          → store profile, mark the session `verified`.
-     * - 401          → the refresh-on-401 path already ran; if the family was
-     *                  revoked, refresh failed and `_clearSession()` took us to
-     *                  idle. Nothing to do here — don't double-handle.
-     * - network error → stay optimistic (do NOT log out); revalidated later on
-     *                  `visibilitychange` or first use.
-     */
-    private _resume;
-    private _storeSession;
-    private _clearSession;
-    private _networkPassphrase;
-    private _setNetworkState;
-    private _setAuthState;
-    private _setTransactionState;
-    /**
-     * Threads `buildData` through state transitions. When the user has already
-     * called `buildTx`, every subsequent state (signing, signed, submitting,
-     * submitted, success, error) should carry the build summary so modal UIs
-     * can keep showing "Send 5 USDC to G..." through the whole flow.
-     */
-    private _currentBuildData;
-}
-
-/**
- * Version of this `@pollar/core` build (e.g. `'0.8.2'`). Falls back to `'dev'`
- * when running unbundled.
- *
- * Named per-package on purpose: importing it alongside `@pollar/react`'s
- * `POLLAR_REACT_VERSION` never collides, so an app can report both versions in
- * a single bug-report / diagnostics line.
- */
-declare const POLLAR_CORE_VERSION: string;
-
-/**
- * In-memory storage backed by a `Map`. Always available, never throws.
- * Used as the default fallback for SSR, private browsing, sandboxed iframes
- * without `allow-same-origin`, or any environment where `localStorage` is
- * unusable.
- */
-declare function createMemoryAdapter(): Storage;
-interface LocalStorageAdapterOptions {
-    /**
-     * Optional callback invoked the first time the adapter degrades to its
-     * in-memory fallback (e.g. quota exceeded, throwing `localStorage`).
-     */
-    onDegrade?: OnStorageDegrade;
-    /**
-     * Logger for the one-shot degrade warning. Defaults to the global `console`;
-     * `PollarClient` passes its level-gated logger so `logLevel` applies here too.
-     */
-    logger?: PollarLogger;
-}
-/**
- * `localStorage`-backed adapter that wraps every operation in try/catch and
- * silently degrades to an in-memory fallback for the rest of the process
- * lifetime on any throw. A single warning is logged when the degrade happens.
- *
- * Why every op (not just the probe): Safari private mode and sandboxed iframes
- * may expose `localStorage` but throw `QuotaExceededError` / `SecurityError`
- * on the first write — a successful probe at construction time isn't enough.
- *
- * Tokens persisted here are DPoP-bound to a non-extractable WebCrypto
- * keypair, so XSS exposure is limited to a signing-oracle attack (the key
- * itself never leaves the browser's crypto subsystem). Consumers who need
- * stricter isolation can inject a custom `Storage` adapter — e.g. one that
- * proxies to an httpOnly cookie on a host origin.
- */
-declare function createLocalStorageAdapter(options?: LocalStorageAdapterOptions): Storage;
-
-/**
- * Returns `localStorage`-backed storage when it works, otherwise an in-memory
- * fallback. The probe writes-reads-removes a sentinel; any throw, value
- * mismatch, or missing `localStorage` (SSR / disabled storage) falls back.
- *
- * Run-time degrade still happens inside `createLocalStorageAdapter` — see its
- * docstring for the rationale.
- */
-declare function defaultStorage(options?: LocalStorageAdapterOptions): Storage;
-
-/**
- * Construct the default `KeyManager` for the current runtime. Throws if no
- * factory has been registered — that only happens if `@pollar/core` was
- * imported in a way that bypassed the entry-point module (a bundler or
- * test setup bug).
- */
-declare function defaultKeyManager(storage: Storage, apiKey: string): KeyManager;
-
-declare class WebCryptoKeyManager implements KeyManager {
-    private readonly apiKey;
-    private apiKeyHash;
-    private keyPair;
-    private publicJwk;
-    private thumbprint;
-    /**
-     * Cached in-flight init. Lets `init()` be called concurrently (or implicitly
-     * from `getPublicJwk` / `sign`) without doing the work twice. Cleared on
-     * failure so callers can retry, and cleared on `reset()`.
-     */
-    private _initPromise;
-    constructor(apiKey: string);
-    /**
-     * Idempotent and safe under concurrency. The first call kicks off the real
-     * init; subsequent (and concurrent) calls return the same in-flight promise.
-     * Other methods (`getPublicJwk`, `getThumbprint`, `sign`) auto-await this so
-     * the manager is self-healing if `init()` was never explicitly invoked.
-     */
-    init(): Promise<void>;
-    private _doInit;
-    /**
-     * Derive the public JWK from a `CryptoKey`. Prefers the `'raw'` export (the
-     * 65-byte uncompressed point `0x04 || X(32) || Y(32)`) and base64url-encodes
-     * the coordinates ourselves — that sidesteps polyfills whose `exportKey('jwk')`
-     * emits non-base64url `x`/`y` (standard base64, `=` padding, or — as seen with
-     * `react-native-quick-crypto` — a stray `.`). Real browsers and most polyfills
-     * support `'raw'` for public EC keys.
-     *
-     * Falls back to the `'jwk'` export (normalized via `canonicalEcJwk`) if `'raw'`
-     * is unsupported or returns an unexpected shape, so this can't regress on a
-     * runtime that only implements the JWK path. Both routes yield identical
-     * coordinate bytes, so the `cnf.jkt` thumbprint is unchanged either way.
-     */
-    private _exportPublicJwk;
-    reset(): Promise<void>;
-    getPublicJwk(): Promise<PublicEcJwk>;
-    getThumbprint(): Promise<string>;
-    sign(payload: Uint8Array): Promise<Uint8Array>;
-}
-
-/**
- * Compute the RFC 7638 JWK thumbprint for an EC P-256 public JWK.
- *
- * Algorithm (RFC 7638 §3):
- *  1. Build a JSON object containing ONLY the required members of the JWK,
- *     ordered lexicographically by member name (Unicode code point).
- *     For EC keys, that's exactly {crv, kty, x, y}.
- *  2. Serialize to UTF-8 with no whitespace and no line breaks.
- *  3. Hash with SHA-256.
- *  4. Base64url-encode the hash (no padding).
- *
- * Common bugs guarded against:
- * - Including extra fields (`alg`, `use`, `kid`, `ext`, `key_ops`).
- * - Wrong member ordering (must be lex by Unicode code point).
- * - Padded base64 instead of base64url unpadded.
- * - Using `JSON.stringify(jwk)` of an arbitrary-key-order object — we build
- *   a fresh literal in canonical order to make the order explicit and not
- *   rely on V8's insertion-order semantics.
- */
-declare function computeJwkThumbprint(jwk: PublicEcJwk): Promise<string>;
-/**
- * Strip a JWK to only the four required EC public members and normalize the
- * coordinates to unpadded base64url. Useful when the input came from
- * `crypto.subtle.exportKey('jwk', publicKey)` which adds `ext` / `key_ops`
- * (and, under some RN polyfills, non-base64url coordinates). Returns a fresh
- * object — never mutates input.
- */
-declare function canonicalEcJwk(jwk: {
-    kty?: string;
-    crv?: string;
-    x?: string;
-    y?: string;
-}): PublicEcJwk;
-
-/**
- * RFC 9449 DPoP proof builder.
- *
- * Produces a compact JWS that the consumer attaches as the `DPoP` HTTP
- * header. The header `jwk` is the public part of the SDK's per-session
- * keypair; the server verifies the signature, validates the `htm` / `htu` /
- * `iat` / `jti` / optional `nonce` / optional `ath` claims, and matches the
- * proof's JWK thumbprint against the access token's `cnf.jkt` claim.
- *
- * Server-issued nonce flow (RFC 9449 §8/§9): the server may respond with
- * `WWW-Authenticate: DPoP ... error="use_dpop_nonce"` plus a `DPoP-Nonce`
- * header. The client should re-build the proof with the new nonce and retry.
- * `buildProof` accepts an optional nonce; the SDK client tracks it across
- * requests and feeds it back here.
- *
- * The last seen `DPoP-Nonce` is stored verbatim and embedded in the next
- * proof. The server validates it as an HMAC token, so an attacker who
- * injects an arbitrary nonce cannot escalate — verification fails and the
- * server replies with a fresh nonce on the next request.
- */
-interface BuildProofArgs {
-    /** HTTP method, e.g. `"GET"`. Will be uppercased before signing. */
-    htm: string;
-    /**
-     * HTTP target URI. Will be normalized per RFC 3986 §6.2 (lowercase scheme
-     * + host, default port elided, query+fragment+userinfo stripped, path
-     * dot-segments resolved, trailing slash preserved exactly as provided).
-     */
-    htu: string;
-    /**
-     * Access token to bind the proof to (its base64url(SHA-256) goes in the
-     * `ath` claim). Omit for proofs sent to the token endpoint per RFC 9449
-     * §5 / §6.1 (those proofs MUST NOT include `ath`).
-     */
-    accessToken?: string;
-    /**
-     * Server-issued DPoP nonce, if the server has previously challenged this
-     * client with `WWW-Authenticate: DPoP ... error="use_dpop_nonce"`. RFC
-     * 9449 §8.
-     */
-    nonce?: string;
-}
-/**
- * Build a DPoP proof JWS for the given request. Returns the compact-form
- * JWS string (`<header>.<payload>.<signature>`).
- */
-declare function buildProof(args: BuildProofArgs, keyManager: KeyManager): Promise<string>;
-/**
- * Normalize an HTTP URI for use as the `htu` claim.
- *
- * RFC 9449 §4.3 + RFC 3986 §6.2:
- *  - lowercase scheme + host
- *  - elide default port (`:443` for https, `:80` for http)
- *  - strip userinfo (never appears in `htu`)
- *  - strip query + fragment
- *  - apply path dot-segment removal (handled by the URL constructor)
- *  - **preserve trailing slash exactly** — `/foo` and `/foo/` are distinct
- *    paths per RFC 3986 §6 and must round-trip identically.
- *  - preserve IPv6 brackets in host
- *
- * Both client and server must apply the same normalization so the `htu`
- * claim matches deterministically.
- */
-declare function normalizeHtu(rawUrl: string): string;
-
-/**
- * This file was auto-generated by openapi-typescript.
- * Do not make direct changes to the file.
- */
-
-interface paths {
-    "/health": {
-        parameters: {
-            query?: never;
-            header?: never;
-            path?: never;
-            cookie?: never;
-        };
-        /** Health check */
-        get: operations["getHealth"];
-        put?: never;
-        post?: never;
-        delete?: never;
-        options?: never;
-        head?: never;
-        patch?: never;
-        trace?: never;
-    };
-    "/auth/session": {
-        parameters: {
-            query?: never;
-            header?: never;
-            path?: never;
-            cookie?: never;
-        };
-        get?: never;
-        put?: never;
-        /**
-         * Create a client session
-         * @description Creates a pending client session that will be linked to a user after authentication.
-         */
-        post: operations["postAuthSession"];
-        delete?: never;
-        options?: never;
-        head?: never;
-        patch?: never;
-        trace?: never;
-    };
-    "/auth/session/status/{clientSessionId}": {
+    "/auth/google": {
         parameters: {
             query?: never;
             header?: never;
@@ -1427,10 +143,10 @@ interface paths {
             cookie?: never;
         };
         /**
-         * Stream client session status
-         * @description Server-Sent Events stream that emits session state every 500 ms. Closes when the session is consumed or expires.
+         * Redirect to Google OAuth
+         * @description Redirects the user to the Google OAuth consent screen.
          */
-        get: operations["getAuthSessionStatusByClientSessionId"];
+        get: operations["getAuthGoogle"];
         put?: never;
         post?: never;
         delete?: never;
@@ -1439,7 +155,7 @@ interface paths {
         patch?: never;
         trace?: never;
     };
-    "/auth/session/status/{clientSessionId}/poll": {
+    "/auth/github": {
         parameters: {
             query?: never;
             header?: never;
@@ -1447,10 +163,10 @@ interface paths {
             cookie?: never;
         };
         /**
-         * Poll client session status (non-streaming)
-         * @description One-shot JSON variant of the SSE status stream, for clients without fetch response-body streaming (React Native). Returns the current `{status, user.ready}` immediately. Poll until `status` reaches a ready/consumed state.
+         * Redirect to GitHub OAuth
+         * @description Redirects the user to the GitHub OAuth consent screen.
          */
-        get: operations["getAuthSessionStatusByClientSessionIdPoll"];
+        get: operations["getAuthGithub"];
         put?: never;
         post?: never;
         delete?: never;
@@ -1459,7 +175,7 @@ interface paths {
         patch?: never;
         trace?: never;
     };
-    "/auth/google": {
+    "/auth/oidc": {
         parameters: {
             query?: never;
             header?: never;
@@ -1467,10 +183,10 @@ interface paths {
             cookie?: never;
         };
         /**
-         * Redirect to Google OAuth
-         * @description Redirects the user to the Google OAuth consent screen.
+         * Redirect to Authentik OIDC
+         * @description Redirects the user to the Authentik authorization endpoint (PKCE, per-app).
          */
-        get: operations["getAuthGoogle"];
+        get: operations["getAuthOidc"];
         put?: never;
         post?: never;
         delete?: never;
@@ -1479,47 +195,41 @@ interface paths {
         patch?: never;
         trace?: never;
     };
-    "/auth/github": {
+    "/auth/email": {
         parameters: {
             query?: never;
             header?: never;
             path?: never;
             cookie?: never;
         };
-        /**
-         * Redirect to GitHub OAuth
-         * @description Redirects the user to the GitHub OAuth consent screen.
-         */
-        get: operations["getAuthGithub"];
+        get?: never;
         put?: never;
-        post?: never;
+        /** Send email verification code */
+        post: operations["postAuthEmail"];
         delete?: never;
         options?: never;
         head?: never;
         patch?: never;
         trace?: never;
     };
-    "/auth/oidc": {
+    "/auth/email/verify-code": {
         parameters: {
             query?: never;
             header?: never;
             path?: never;
             cookie?: never;
         };
-        /**
-         * Redirect to Authentik OIDC
-         * @description Redirects the user to the Authentik authorization endpoint (PKCE, per-app).
-         */
-        get: operations["getAuthOidc"];
+        get?: never;
         put?: never;
-        post?: never;
+        /** Verify email code */
+        post: operations["postAuthEmailVerifyCode"];
         delete?: never;
         options?: never;
         head?: never;
         patch?: never;
         trace?: never;
     };
-    "/auth/email": {
+    "/auth/wallet/challenge": {
         parameters: {
             query?: never;
             header?: never;
@@ -1528,15 +238,18 @@ interface paths {
         };
         get?: never;
         put?: never;
-        /** Send email verification code */
-        post: operations["postAuthEmail"];
+        /**
+         * Issue a SEP-10 wallet challenge
+         * @description Returns a server-signed SEP-10 challenge transaction (XDR) bound to the client session. The wallet counter-signs it to prove key control, then posts it to /auth/wallet (or /auth/external).
+         */
+        post: operations["postAuthWalletChallenge"];
         delete?: never;
         options?: never;
         head?: never;
         patch?: never;
         trace?: never;
     };
-    "/auth/email/verify-code": {
+    "/auth/wallet": {
         parameters: {
             query?: never;
             header?: never;
@@ -1545,15 +258,18 @@ interface paths {
         };
         get?: never;
         put?: never;
-        /** Verify email code */
-        post: operations["postAuthEmailVerifyCode"];
+        /**
+         * Authenticate with a Stellar wallet
+         * @description Verifies the SEP-10 counter-signed challenge (from /auth/wallet/challenge) and sets the session ready. During rollout an unsigned legacy request is still accepted unless SDK_WALLET_REQUIRE_SIGNATURE is enabled.
+         */
+        post: operations["postAuthWallet"];
         delete?: never;
         options?: never;
         head?: never;
         patch?: never;
         trace?: never;
     };
-    "/auth/wallet": {
+    "/auth/external": {
         parameters: {
             query?: never;
             header?: never;
@@ -1562,8 +278,11 @@ interface paths {
         };
         get?: never;
         put?: never;
-        /** Authenticate with a Stellar wallet */
-        post: operations["postAuthWallet"];
+        /**
+         * Authenticate via a custom external provider
+         * @description For custom login providers (Privy, Magic, …) that authenticate the user client-side and surface a Stellar wallet. Control is proven with the same SEP-10 counter-signed challenge (from /auth/wallet/challenge); Pollar needs nothing of the provider itself.
+         */
+        post: operations["postAuthExternal"];
         delete?: never;
         options?: never;
         head?: never;
@@ -1847,6 +566,26 @@ interface paths {
         patch?: never;
         trace?: never;
     };
+    "/tx/sign-auth-entry": {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        get?: never;
+        put?: never;
+        /**
+         * Sign a Soroban authorization entry (custodial)
+         * @description Signs a single SorobanAuthorizationEntry with the user's custodial key. Use when a developer's own contract is the transaction source (it sponsors the gas) and only needs the user's address-credentials authorization, not a full signed envelope. sdk-api enforces the app's per-contract/function allowlist and a short validity-ledger window BEFORE signing — an entry touching any contract or function not allowlisted, or with too long an expiration, is rejected. External (user-controlled) wallets sign auth entries client-side and do not call this endpoint.
+         */
+        post: operations["postTxSignAuthEntry"];
+        delete?: never;
+        options?: never;
+        head?: never;
+        patch?: never;
+        trace?: never;
+    };
     "/tx/submit": {
         parameters: {
             query?: never;
@@ -1995,8 +734,8 @@ interface paths {
             cookie?: never;
         };
         /**
-         * Get my enabled assets
-         * @description Returns the application's dashboard-enabled assets paired with the authenticated wallet's on-chain trustline state (code, type, issuer, name, trustlineEstablished, limit). No balances. Native XLM is always included with trustlineEstablished=true. Lets the SDK know which trustlines the wallet still needs to add. The wallet and network are derived from the session — no parameters required.
+         * Get my trustlines
+         * @description Returns every trustline the authenticated wallet holds on-chain — the application's configured assets AND any the user added on their own — plus the app-enabled assets the wallet has not established a trustline for yet. Each asset carries enabledInApp (tag which belong to the app), trustlineEstablished, limit, and sponsored (app assets only). No balances. Native XLM is always included first. Trustlines are enumerated via Horizon. The wallet and network are derived from the session — no parameters required.
          */
         get: operations["getWalletAssets"];
         put?: never;
@@ -2018,7 +757,7 @@ interface paths {
         put?: never;
         /**
          * Enable or remove a trustline for an enabled asset
-         * @description Establishes (no limit) or removes (limit '0') a trustline on the authenticated user's custodial wallet for an asset configured in the application, sponsored by the app. Returns the refreshed enabled-asset list. Only valid for the sponsored custodial path; custom assets, adapter-managed wallets, and apps with trustline sponsoring disabled must sign a change_trust transaction client-side instead.
+         * @description Establishes (no limit) or removes (limit '0') a trustline on the authenticated user's custodial wallet for an asset configured in the application, sponsored by the app (the reserve and fee are paid by the app wallets). Returns the refreshed enabled-asset list. Only valid for the sponsored custodial path — custom assets, adapter-managed wallets, and apps with trustline sponsoring disabled must sign a change_trust transaction client-side instead and will get a 400 here. The wallet and network are derived from the session.
          */
         post: operations["postWalletAssetsTrustline"];
         delete?: never;
@@ -2295,6 +1034,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2308,6 +1049,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2321,6 +1064,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2394,6 +1139,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2407,6 +1154,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2442,6 +1191,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2455,6 +1206,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2468,6 +1221,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2481,6 +1236,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2516,6 +1273,171 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Unauthorized */
+            401: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Forbidden */
+            403: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Not found */
+            404: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+        };
+    };
+    getAuthOidc: {
+        parameters: {
+            query: {
+                api_key: string;
+                client_session_id: string;
+            };
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        requestBody?: never;
+        responses: {
+            /** @description Redirect to Authentik */
+            302: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content?: never;
+            };
+            /** @description Validation error */
+            400: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Unauthorized */
+            401: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Not found */
+            404: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+        };
+    };
+    postAuthEmail: {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        requestBody: {
+            content: {
+                "application/json": {
+                    clientSessionId: string;
+                    /** Format: email */
+                    email: string;
+                };
+            };
+        };
+        responses: {
+            /** @description Code sent */
+            200: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        code: "SDK_EMAIL_CODE_SENT";
+                        /** @constant */
+                        success: true;
+                        content: {
+                            clientSessionId: string;
+                            email: string;
+                        };
+                    };
+                };
+            };
+            /** @description Validation error */
+            400: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2529,11 +1451,93 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Forbidden */
+            403: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Not found */
+            404: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Gone (expired) */
+            410: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+        };
+    };
+    postAuthEmailVerifyCode: {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        requestBody: {
+            content: {
+                "application/json": {
+                    clientSessionId: string;
+                    code: string;
+                };
+            };
+        };
+        responses: {
+            /** @description Code verified */
+            200: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        code: "SDK_EMAIL_CODE_VERIFIED";
+                        /** @constant */
+                        success: true;
+                        content: {
+                            clientSessionId: string;
+                        };
                     };
                 };
             };
-            /** @description Forbidden */
-            403: {
+            /** @description Validation error */
+            400: {
                 headers: {
                     [name: string]: unknown;
                 };
@@ -2542,11 +1546,13 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
-            /** @description Not found */
-            404: {
+            /** @description Unauthorized */
+            401: {
                 headers: {
                     [name: string]: unknown;
                 };
@@ -2555,32 +1561,13 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
-        };
-    };
-    getAuthOidc: {
-        parameters: {
-            query: {
-                api_key: string;
-                client_session_id: string;
-            };
-            header?: never;
-            path?: never;
-            cookie?: never;
-        };
-        requestBody?: never;
-        responses: {
-            /** @description Redirect to Authentik */
-            302: {
-                headers: {
-                    [name: string]: unknown;
-                };
-                content?: never;
-            };
-            /** @description Validation error */
-            400: {
+            /** @description Forbidden */
+            403: {
                 headers: {
                     [name: string]: unknown;
                 };
@@ -2589,11 +1576,13 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
-            /** @description Unauthorized */
-            401: {
+            /** @description Not found */
+            404: {
                 headers: {
                     [name: string]: unknown;
                 };
@@ -2602,11 +1591,13 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
-            /** @description Not found */
-            404: {
+            /** @description Gone (expired) */
+            410: {
                 headers: {
                     [name: string]: unknown;
                 };
@@ -2615,12 +1606,14 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
         };
     };
-    postAuthEmail: {
+    postAuthWalletChallenge: {
         parameters: {
             query?: never;
             header?: never;
@@ -2631,13 +1624,12 @@ interface operations {
             content: {
                 "application/json": {
                     clientSessionId: string;
-                    /** Format: email */
-                    email: string;
+                    walletAddress: string;
                 };
             };
         };
         responses: {
-            /** @description Code sent */
+            /** @description Challenge issued */
             200: {
                 headers: {
                     [name: string]: unknown;
@@ -2645,12 +1637,12 @@ interface operations {
                 content: {
                     "application/json": {
                         /** @constant */
-                        code: "SDK_EMAIL_CODE_SENT";
+                        code: "SDK_WALLET_CHALLENGE_CREATED";
                         /** @constant */
                         success: true;
                         content: {
                             clientSessionId: string;
-                            email: string;
+                            challengeXdr: string;
                         };
                     };
                 };
@@ -2665,6 +1657,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2678,6 +1672,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2691,6 +1687,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2704,6 +1702,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2717,12 +1717,14 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
         };
     };
-    postAuthEmailVerifyCode: {
+    postAuthWallet: {
         parameters: {
             query?: never;
             header?: never;
@@ -2733,12 +1735,13 @@ interface operations {
             content: {
                 "application/json": {
                     clientSessionId: string;
-                    code: string;
+                    walletAddress: string;
+                    signedChallengeXdr?: string;
                 };
             };
         };
         responses: {
-            /** @description Code verified */
+            /** @description Wallet authenticated */
             200: {
                 headers: {
                     [name: string]: unknown;
@@ -2746,11 +1749,12 @@ interface operations {
                 content: {
                     "application/json": {
                         /** @constant */
-                        code: "SDK_EMAIL_CODE_VERIFIED";
+                        code: "SDK_WALLET_AUTHENTICATED";
                         /** @constant */
                         success: true;
                         content: {
                             clientSessionId: string;
+                            walletAddress: string;
                         };
                     };
                 };
@@ -2765,6 +1769,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2778,6 +1784,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2791,6 +1799,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2804,6 +1814,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2817,12 +1829,14 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
         };
     };
-    postAuthWallet: {
+    postAuthExternal: {
         parameters: {
             query?: never;
             header?: never;
@@ -2833,12 +1847,14 @@ interface operations {
             content: {
                 "application/json": {
                     clientSessionId: string;
+                    provider: string;
                     walletAddress: string;
+                    signedChallengeXdr: string;
                 };
             };
         };
         responses: {
-            /** @description Wallet authenticated */
+            /** @description External provider authenticated */
             200: {
                 headers: {
                     [name: string]: unknown;
@@ -2846,12 +1862,13 @@ interface operations {
                 content: {
                     "application/json": {
                         /** @constant */
-                        code: "SDK_WALLET_AUTHENTICATED";
+                        code: "SDK_EXTERNAL_AUTHENTICATED";
                         /** @constant */
                         success: true;
                         content: {
                             clientSessionId: string;
                             walletAddress: string;
+                            provider: string;
                         };
                     };
                 };
@@ -2866,6 +1883,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2879,6 +1898,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2892,6 +1913,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2905,6 +1928,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2918,6 +1943,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2966,6 +1993,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2979,6 +2008,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -2992,6 +2023,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3005,6 +2038,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3018,6 +2053,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3069,6 +2106,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3082,6 +2121,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3095,6 +2136,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3108,6 +2151,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3121,6 +2166,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3172,6 +2219,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3185,6 +2234,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3198,6 +2249,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3211,6 +2264,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3224,6 +2279,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3280,6 +2337,7 @@ interface operations {
                             wallet: {
                                 /** @enum {string} */
                                 type: "custodial" | "smart" | "external";
+                                provider?: string;
                                 publicKey: string | null;
                                 address: string | null;
                                 existsOnStellar?: boolean;
@@ -3322,6 +2380,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3335,6 +2395,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3348,6 +2410,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3361,6 +2425,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3374,6 +2440,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3425,6 +2493,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3438,6 +2508,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3451,6 +2523,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3464,6 +2538,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3477,6 +2553,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3524,6 +2602,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3574,6 +2654,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3632,6 +2714,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3675,6 +2759,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3688,6 +2774,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3746,6 +2834,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3759,6 +2849,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3772,6 +2864,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -3807,6 +2901,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4065,6 +3161,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4078,6 +3176,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4091,6 +3191,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4146,6 +3248,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4159,6 +3263,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4172,6 +3278,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4185,6 +3293,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4238,6 +3348,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4251,6 +3363,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4264,6 +3378,107 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Signing error */
+            502: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+        };
+    };
+    postTxSignAuthEntry: {
+        parameters: {
+            query?: never;
+            header?: never;
+            path?: never;
+            cookie?: never;
+        };
+        requestBody: {
+            content: {
+                "application/json": {
+                    /** @enum {string} */
+                    network: "testnet" | "mainnet";
+                    publicKey?: string;
+                    address?: string;
+                    entryXdr: string;
+                    validUntilLedger: number;
+                };
+            };
+        };
+        responses: {
+            /** @description Base64 XDR of the signed auth entry */
+            200: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        code: "SDK_TX_AUTH_ENTRY_SIGNED";
+                        /** @constant */
+                        success: true;
+                        content: {
+                            signedAuthEntry: string;
+                        };
+                    };
+                };
+            };
+            /** @description Validation error */
+            400: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Unauthorized */
+            401: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
+                    };
+                };
+            };
+            /** @description Policy denial (contract/function not allowlisted, expiration too long) */
+            403: {
+                headers: {
+                    [name: string]: unknown;
+                };
+                content: {
+                    "application/json": {
+                        /** @constant */
+                        success: false;
+                        code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4277,6 +3492,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4342,6 +3559,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4355,6 +3574,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4368,6 +3589,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4625,6 +3848,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4638,6 +3863,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4651,6 +3878,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4700,6 +3929,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4713,6 +3944,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4776,6 +4009,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4789,6 +4024,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4837,6 +4074,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4850,6 +4089,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4863,6 +4104,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4876,6 +4119,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4953,6 +4198,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4966,6 +4213,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -4979,6 +4228,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5034,6 +4285,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5047,6 +4300,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5102,6 +4357,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5115,6 +4372,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5178,6 +4437,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5191,6 +4452,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5204,6 +4467,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5263,6 +4528,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5276,6 +4543,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5324,6 +4593,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5337,6 +4608,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5350,6 +4623,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5399,6 +4674,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5412,6 +4689,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5467,6 +4746,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5480,6 +4761,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5493,6 +4776,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5551,6 +4836,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5564,6 +4851,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5626,6 +4915,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5639,6 +4930,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5652,6 +4945,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5711,6 +5006,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5724,6 +5021,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5737,6 +5036,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5789,6 +5090,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5802,6 +5105,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5815,6 +5120,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5867,6 +5174,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5917,6 +5226,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5930,6 +5241,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5943,6 +5256,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5956,6 +5271,8 @@ interface operations {
                         /** @constant */
                         success: false;
                         code: string;
+                        message?: string;
+                        resultCode?: string;
                     };
                 };
             };
@@ -5963,8 +5280,1553 @@ interface operations {
     };
 }
 
-type PollarApiClient = ReturnType<typeof createApiClient>;
-declare function createApiClient(baseUrl: string): openapi_fetch.Client<paths, `${string}/${string}`>;
+type PollarApiClient = ReturnType<typeof createApiClient>;
+declare function createApiClient(baseUrl: string): openapi_fetch.Client<paths, `${string}/${string}`>;
+
+/**
+ * Public JWK shape for an EC P-256 key. Only the four required members for
+ * RFC 7638 thumbprint computation; never includes private fields or extras
+ * like `alg` / `use` / `kid`.
+ */
+interface PublicEcJwk {
+    kty: 'EC';
+    crv: 'P-256';
+    /** Base64url-encoded big-endian X coordinate (32 bytes). */
+    x: string;
+    /** Base64url-encoded big-endian Y coordinate (32 bytes). */
+    y: string;
+}
+/**
+ * Manages the per-session ECDSA P-256 keypair used to sign DPoP proofs.
+ *
+ * Implementations:
+ * - `WebCryptoKeyManager` (web): non-extractable `CryptoKey` persisted in
+ *   IndexedDB. Private key bytes never leave the browser's crypto context.
+ * - `NobleKeyManager` (React Native): private scalar bytes stored through an
+ *   injected `Storage` adapter (Keychain / SecureStore). Pure-JS ECDSA via
+ *   `@noble/curves`.
+ */
+interface KeyManager {
+    /**
+     * Load an existing key for this session or generate a new one. Idempotent.
+     * Must be called before `getPublicJwk`, `getThumbprint`, or `sign`.
+     */
+    init(): Promise<void>;
+    /**
+     * Destroy the key. Removes it from persistent storage and clears any
+     * cached state. Used on logout.
+     */
+    reset(): Promise<void>;
+    /**
+     * The public JWK that goes into the DPoP proof header. Returns a fresh
+     * object every call (callers may mutate without affecting the manager).
+     */
+    getPublicJwk(): Promise<PublicEcJwk>;
+    /**
+     * RFC 7638 JWK thumbprint, base64url(SHA-256(canonical JWK)). The server
+     * compares this to the access token's `cnf.jkt` claim.
+     */
+    getThumbprint(): Promise<string>;
+    /**
+     * Sign the given bytes with ECDSA-P256-SHA256. Returns 64-byte raw r||s
+     * (IEEE P1363 / JOSE format), NOT DER. Suitable for direct base64url
+     * encoding into the JWS signature segment.
+     */
+    sign(payload: Uint8Array): Promise<Uint8Array>;
+}
+
+declare enum WalletType {
+    FREIGHTER = "freighter",
+    ALBEDO = "albedo"
+}
+/**
+ * A wallet identifier. Accepts the internal `WalletType` enum values
+ * (`'freighter'`, `'albedo'`) plus any opaque string id used by external
+ * adapter packages (e.g. Stellar Wallets Kit ids like `'xbull'`, `'lobstr'`).
+ * The `(string & {})` keeps autocomplete on the enum values without rejecting
+ * arbitrary strings.
+ */
+type WalletId = WalletType | (string & {});
+interface ConnectWalletResponse {
+    address: string;
+}
+interface SignTransactionOptions {
+    network?: string;
+    networkPassphrase?: string;
+    accountToSign?: string;
+}
+interface SignAuthEntryOptions {
+    accountToSign?: string;
+}
+interface SignTransactionResponse {
+    signedTxXdr: string;
+}
+interface SignAuthEntryResponse {
+    signedAuthEntry: string;
+}
+interface WalletAdapter {
+    type: WalletId;
+    isAvailable(): Promise<boolean>;
+    connect(): Promise<ConnectWalletResponse>;
+    disconnect(): Promise<void>;
+    getPublicKey(): Promise<string | null>;
+    signTransaction(xdr: string, options?: SignTransactionOptions): Promise<SignTransactionResponse>;
+    signAuthEntry(entryXdr: string, options?: SignAuthEntryOptions): Promise<SignAuthEntryResponse>;
+}
+/**
+ * Resolves a {@link WalletAdapter} for a given wallet id. Injected through
+ * `PollarClientConfig.walletAdapter` so wallet implementations (Stellar
+ * Wallets Kit, custom modules, etc.) can live outside `@pollar/core`.
+ */
+type WalletAdapterResolver = (id: WalletId) => WalletAdapter | Promise<WalletAdapter>;
+
+declare class FreighterAdapter implements WalletAdapter {
+    readonly type = WalletType.FREIGHTER;
+    isAvailable(): Promise<boolean>;
+    connect(): Promise<ConnectWalletResponse>;
+    disconnect(): Promise<void>;
+    getPublicKey(): Promise<string | null>;
+    getNetwork(): Promise<string>;
+    signTransaction(xdr: string, options?: SignTransactionOptions): Promise<SignTransactionResponse>;
+    signAuthEntry(entryXdr: string, options?: SignAuthEntryOptions): Promise<SignAuthEntryResponse>;
+}
+
+/** Albedo's own network vocabulary (it only understands these two values). */
+type AlbedoNetwork = 'public' | 'testnet';
+declare class AlbedoAdapter implements WalletAdapter {
+    private readonly network;
+    readonly type = WalletType.ALBEDO;
+    /**
+     * Network used for `connect` and `signAuthEntry` (which carry no per-call
+     * network) and as the fallback for `signTransaction`. Defaults to `'testnet'`
+     * to preserve the previous behavior when constructed with no argument.
+     */
+    constructor(network?: AlbedoNetwork);
+    isAvailable(): Promise<boolean>;
+    connect(): Promise<ConnectWalletResponse>;
+    disconnect(): Promise<void>;
+    getPublicKey(): Promise<string | null>;
+    getNetwork(): Promise<string>;
+    signTransaction(xdr: string, options?: SignTransactionOptions): Promise<SignTransactionResponse>;
+    signAuthEntry(entryXdr: string, _options?: SignAuthEntryOptions): Promise<SignAuthEntryResponse>;
+}
+
+type PollarApplicationConfigResponse = paths['/auth/login']['post']['responses'][200]['content']['application/json'];
+/** Full `/auth/login` response shape — used in transit but NOT persisted. */
+type PollarApplicationConfigContent = PollarApplicationConfigResponse['content'];
+/**
+ * What we actually write to `Storage`. Drops the PII subtree (`data.*`)
+ * which is held in memory only on `PollarClient._profile` after auth.
+ */
+interface PollarPersistedSession {
+    clientSessionId: string;
+    userId: string | null;
+    status: string;
+    token: {
+        accessToken: string;
+        refreshToken: string;
+        expiresAt: number;
+    };
+    user: {
+        id?: string;
+        ready: boolean;
+    };
+    wallet: {
+        type: 'internal' | 'smart' | 'external';
+        provider?: string;
+        address: string | null;
+        existsOnStellar?: boolean;
+        createdAt?: number;
+        linkedAt?: number;
+        network?: string;
+        deployTxHash?: string | null;
+    };
+}
+/**
+ * Custodial login methods — the providers that map to an `internal` wallet.
+ * Mirrors the backend `AuthProvider` enum minus passkey (→ smart) and
+ * wallet/external (→ external).
+ */
+type PollarAuthMethod = 'email' | 'google' | 'github' | 'oidc';
+/**
+ * The authenticated user's wallet, as a discriminated union over `custody`.
+ * Every authenticated session has exactly one wallet whose custody is fixed at
+ * account creation, so `custody` strictly determines the shape of `provider`:
+ *
+ *   - `internal` (platform-custodied G-address) → `provider` is the login
+ *     method, or `null` if the session predates provider tracking server-side.
+ *   - `smart` (passkey Soroban C-address) → `provider` is always `'passkey'`.
+ *   - `external` (user-connected wallet) → `provider` is the on-chain adapter
+ *     id (`'freighter'`, `'albedo'`, …), or `null` when no adapter is resolved
+ *     (e.g. a restored session whose adapter could not be re-attached).
+ *
+ * Obtained via {@link PollarClient.getWallet}.
+ */
+type WalletInfo = {
+    custody: 'internal';
+    address: string;
+    provider: PollarAuthMethod | null;
+} | {
+    custody: 'smart';
+    address: string;
+    provider: 'passkey';
+} | {
+    custody: 'external';
+    address: string;
+    provider: WalletId | null;
+};
+/** In-memory user profile (kept on `PollarClient`, never persisted). */
+interface PollarUserProfile {
+    mail: string;
+    first_name: string;
+    last_name: string;
+    avatar: string;
+    providers: {
+        email: {
+            address: string;
+        } | null;
+        google: {
+            id: string;
+        } | null;
+        github: {
+            id: string;
+        } | null;
+        wallet: {
+            address: string;
+        } | null;
+    };
+}
+interface PollarClientConfig {
+    stellarNetwork?: StellarNetwork;
+    baseUrl?: string;
+    apiKey: string;
+    /**
+     * Pluggable storage. Defaults to `defaultStorage()` on web (localStorage
+     * with memory fallback). On RN you must inject one of the adapters from
+     * `@pollar/core/adapters/expo` or `@pollar/core/adapters/react-native-keychain`.
+     */
+    storage?: Storage;
+    /**
+     * Pluggable DPoP key manager. Defaults to `defaultKeyManager(storage,
+     * apiKey)`: WebCrypto in browsers, `@noble/curves` in RN.
+     */
+    keyManager?: KeyManager;
+    /**
+     * Minimum severity the SDK logs. `silent` disables all SDK logging; the rest
+     * emit that level and everything more important (`error` < `warn` < `info` <
+     * `debug`). State-transition chatter (auth/tx/network) is at `debug`.
+     * Defaults to `'info'`.
+     */
+    logLevel?: LogLevel;
+    /**
+     * Sink the SDK writes logs to. Defaults to the global `console`. Inject your
+     * own (pino, Sentry breadcrumbs, a test spy…) to route SDK logs anywhere.
+     * Filtering by `logLevel` still applies on top of whatever you pass.
+     */
+    logger?: PollarLogger;
+    /**
+     * Notified when persistent storage silently degrades to in-memory mode
+     * (Safari private browsing quota errors, sandboxed iframes, etc.). Useful
+     * for telemetry — the SDK keeps working but sessions won't survive reload.
+     */
+    onStorageDegrade?: OnStorageDegrade;
+    /**
+     * Resolves a {@link WalletAdapter} for a given wallet id. If omitted, the
+     * SDK falls back to its built-in `FreighterAdapter` / `AlbedoAdapter`,
+     * which only know `WalletType.FREIGHTER` and `WalletType.ALBEDO`. Inject
+     * `@pollar/stellar-wallets-kit-adapter` (or your own resolver) to support
+     * additional wallets without bundling those dependencies into `@pollar/core`.
+     */
+    walletAdapter?: WalletAdapterResolver;
+    /**
+     * Maximum time (ms) the SDK waits for a `walletAdapter` resolver to return.
+     * Guards against a broken extension bridge (e.g. Freighter content-script
+     * down) hanging the login flow forever. The resolver only constructs the
+     * adapter object — it does NOT include the user-facing approval step — so
+     * a few seconds is plenty. Defaults to 5000.
+     */
+    walletResolverTimeoutMs?: number;
+    /**
+     * Optional human-friendly label sent at /auth/login time and recorded on
+     * the server-side refresh-token row so the user can identify it in the
+     * "active sessions" UI (e.g. "iPhone — Safari", "Mac — Chrome 126").
+     * If unset, the server-recorded `user_agent` header is the fallback.
+     */
+    deviceLabel?: string;
+    /**
+     * Foreground-detection signal for the silent-refresh scheduler. When the
+     * app is hidden / backgrounded, scheduled refreshes are skipped (saves
+     * network + sidesteps browser/RN background timer throttling); they run
+     * the moment visibility comes back. Defaults to a web provider in the
+     * browser (`visibilitychange` + BFCache + focus) and a noop elsewhere.
+     * React Native consumers should inject an `AppState`-backed provider —
+     * use `createAppStateVisibilityProvider` from
+     * `@pollar/core/adapters/react-native-appstate`.
+     */
+    visibilityProvider?: VisibilityProvider;
+    /**
+     * If set, the silent-refresh scheduler stops issuing proactive refreshes
+     * after this many milliseconds of no client-side HTTP activity. The
+     * session is not cleared — the next user action triggers a request that
+     * either reuses a still-valid access token or hits 401 → reactive
+     * refresh (transparent if the RT is still valid). Defaults to
+     * `undefined` = refresh forever as long as the app is visible.
+     */
+    maxIdleMs?: number;
+    /**
+     * Strategy for opening the hosted OAuth URL during
+     * `login({ provider: 'google' | 'github' })`. Defaults to a browser popup
+     * on web. React Native consumers MUST provide one (typically wrapping
+     * `expo-web-browser`'s `openAuthSessionAsync`), since `window.open` does
+     * not exist there. The SDK still drives the rest of the flow by polling the
+     * auth-session status, so the opener only needs to surface the URL — it does
+     * NOT need to capture the redirect payload.
+     */
+    openAuthUrl?: AuthUrlOpener;
+    /**
+     * Value sent to the backend as `redirect_uri` for hosted OAuth (where the
+     * provider returns the user afterwards). Defaults to `window.location.origin`
+     * on web. On React Native set this to your app's deep link / scheme — the
+     * same URL you pass to `WebBrowser.openAuthSessionAsync`.
+     */
+    oauthRedirectUri?: string;
+    /**
+     * Custom auth providers (e.g. Privy, Magic). Each is a {@link PollarAuthProvider}
+     * registered by its `id`; `login({ provider: id })` then dispatches to it.
+     * Registered AFTER the built-ins, so an entry whose `id` matches a built-in
+     * (`'google'`, `'github'`, `'email'`) overrides it. Does NOT affect `wallet`,
+     * which keeps its own dedicated flow. Custom providers typically authenticate
+     * with their own SDK and then call `ctx.exchangeExternalToken(...)`, which the
+     * backend validates via `POST /auth/external`.
+     */
+    providers?: PollarAuthProvider[];
+    /**
+     * The passkey (WebAuthn) ceremony for "Smart Wallet" login, injected by the
+     * runtime layer (`@pollar/react` implements it with `@simplewebauthn/browser`).
+     * `@pollar/core` stays runtime-agnostic and never touches `navigator.credentials`
+     * directly. Required to use `loginSmartWallet()`. Browser-only for now;
+     * React Native needs a native passkey provider.
+     */
+    passkey?: PasskeyCeremony;
+    /**
+     * Signs smart-account (C-address) transactions with the user's passkey.
+     * Required to send from a smart wallet. Injected by `@pollar/react`;
+     * browser-only for now.
+     */
+    passkeySign?: PasskeySigner;
+}
+/**
+ * Runs the device WebAuthn ceremony for a server-issued challenge and returns
+ * the result to forward to the backend: a registration response for a new user
+ * (`create()`) or an authentication assertion for a returning one (`get()`).
+ * `mode` tells the ceremony which to run: `'login'` runs `get()` only (returning
+ * user) and `'register'` runs `create()` only (new wallet) — the caller picks via
+ * the "Log in" / "Create wallet" buttons, so there's no ambiguous autodetect that
+ * could create a wallet when the user merely cancelled a login prompt. `response`
+ * is the browser's PublicKeyCredential serialized to JSON — forwarded verbatim to
+ * `/auth/passkey/{register,login}`.
+ */
+type PasskeyMode = 'login' | 'register';
+type PasskeyCeremony = (ctx: {
+    challenge: string;
+    mode: PasskeyMode;
+}) => Promise<{
+    kind: 'login';
+    response: unknown;
+} | {
+    kind: 'register';
+    response: unknown;
+}>;
+/**
+ * Signs a smart-account transaction's auth digest with the user's passkey
+ * (a WebAuthn `get()` whose challenge is the raw digest). Returns the PUBLIC
+ * assertion fields (base64url) for the server to assemble into the Soroban auth
+ * entry — no secret leaves the device. Injected by the runtime layer
+ * (`@pollar/react`); `@pollar/core` never touches `navigator.credentials`.
+ */
+type PasskeySigner = (ctx: {
+    /** base64url WebAuthn credential id to sign with. */
+    credentialId: string;
+    /** hex-encoded auth digest to use as the WebAuthn challenge. */
+    challenge: string;
+}) => Promise<{
+    authenticatorData: string;
+    clientDataJSON: string;
+    signature: string;
+}>;
+/**
+ * Strategy for opening the hosted OAuth URL. The SDK mints the per-login auth
+ * session lazily inside `getUrl()` (call it once; the first call creates the
+ * `clientSessionId` and returns the full URL, or `null` if session creation
+ * failed). Open the resolved URL however the platform allows — a popup on web,
+ * `WebBrowser.openAuthSessionAsync(url, redirectUri)` on React Native — and
+ * resolve once the user-facing browser step is done or dismissed. You do NOT
+ * need to capture the redirect payload: the SDK polls the auth-session status
+ * until the backend marks it READY.
+ */
+type AuthUrlOpener = (ctx: AuthOpenContext) => void | Promise<void>;
+interface AuthOpenContext {
+    provider: 'google' | 'github';
+    /**
+     * Mints the auth session (once) and returns the full hosted-OAuth URL, or
+     * `null` if session creation failed. On web, call it AFTER reserving the
+     * popup window so popup blockers (which only honor `window.open` inside the
+     * original user-gesture tick) don't swallow it.
+     */
+    getUrl: () => Promise<string | null>;
+    /** The redirect target passed to the backend as `redirect_uri`. */
+    redirectUri: string;
+    signal: AbortSignal;
+}
+/**
+ * One row in the active-sessions list (returned by `PollarClient.listSessions()`).
+ * Mirrors the sdk-api `SessionsListContent` schema.
+ */
+interface SessionInfo {
+    familyId: string;
+    createdAt: string;
+    lastUsedAt: string | null;
+    userAgent: string | null;
+    ipHash: string | null;
+    deviceLabel: string | null;
+    current: boolean;
+    expiresAt: string;
+}
+/**
+ * Observable state for the active-sessions list. Lives on the client (like
+ * {@link TxHistoryState} / {@link WalletBalanceState}) so UI layers can
+ * subscribe via `onSessionsStateChange` and stay pure readers instead of
+ * holding the loading state locally.
+ */
+type SessionsState = {
+    step: 'idle';
+} | {
+    step: 'loading';
+} | {
+    step: 'loaded';
+    sessions: SessionInfo[];
+} | {
+    step: 'error';
+    message: string;
+};
+type TxBuildBody = NonNullable<paths['/tx/build']['post']['requestBody']>['content']['application/json'];
+type TxBuildResponse = paths['/tx/build']['post']['responses'][200]['content']['application/json'];
+type TxSignAndSendBody = NonNullable<paths['/tx/sign-and-send']['post']['requestBody']>['content']['application/json'];
+type TxSignSendResponse = paths['/tx/sign-and-send']['post']['responses'][200]['content']['application/json'];
+type TxSignBody = NonNullable<paths['/tx/sign']['post']['requestBody']>['content']['application/json'];
+type TxSignResponse = paths['/tx/sign']['post']['responses'][200]['content']['application/json'];
+type TxSignContent = TxSignResponse['content'];
+type TxSubmitSignedBody = NonNullable<paths['/tx/submit']['post']['requestBody']>['content']['application/json'];
+type TxBuildSignSubmitBody = NonNullable<paths['/tx/build-sign-submit']['post']['requestBody']>['content']['application/json'];
+type TxBuildSignSubmitResponse = paths['/tx/build-sign-submit']['post']['responses'][200]['content']['application/json'];
+type TxBuildSignSubmitContent = TxBuildSignSubmitResponse['content'];
+/**
+ * Discriminated union of every login the SDK understands. Intentionally
+ * **closed**: each custom provider you add (and wire up server-side via
+ * `POST /auth/external`) gets its own member here so `login()` stays fully
+ * typed and `switch (options.provider)` stays exhaustive. To add one, append a
+ * line — e.g. `| { provider: 'privy'; loginMethod?: 'email' | 'sms' }` — and
+ * register a matching {@link PollarAuthProvider} via `PollarClientConfig.providers`.
+ */
+type PollarLoginOptions = {
+    provider: 'google';
+} | {
+    provider: 'github';
+} | {
+    provider: 'email';
+    email: string;
+} | {
+    provider: 'wallet';
+    type: WalletId;
+};
+/**
+ * Curated, stable facade handed to every {@link PollarAuthProvider}. It exposes
+ * only the primitives a login strategy needs — the shared backbone
+ * (`createSession` → drive the session READY → `authenticate`) plus a couple of
+ * ready-made legs — and deliberately keeps `PollarClient` internals (storage,
+ * wallet-adapter resolution, DPoP key manager) private. This is the public
+ * contract a third-party provider (e.g. Privy) builds against.
+ */
+interface AuthProviderContext {
+    /** Aborts when the host calls `cancelLogin()` (or a new login supersedes this one). */
+    readonly signal: AbortSignal;
+    /** Typed `openapi-fetch` client, already wired with DPoP + refresh middleware. */
+    readonly api: PollarApiClient;
+    /** API origin + version prefix (e.g. `https://sdk.api.pollar.xyz/v1`). */
+    readonly basePath: string;
+    readonly apiKey: string;
+    readonly logger: PollarLogger;
+    /** Drive the SDK's auth state machine (the host's `onAuthStateChange` mirrors it). */
+    setAuthState(state: AuthState): void;
+    /** `POST /auth/session` → `clientSessionId` (null on failure; error state already set). */
+    createSession(): Promise<string | null>;
+    /** Poll the session to READY, then `POST /auth/login` and persist the session. The shared backbone. */
+    authenticate(clientSessionId: string): Promise<void>;
+    /**
+     * `POST /auth/wallet/challenge` → the server-signed SEP-10 challenge transaction
+     * (XDR) the wallet must counter-sign to prove key control. Sign it with your
+     * provider's Stellar signer (e.g. Privy), then pass the result to
+     * {@link exchangeExternalToken} as `signedChallengeXdr`. Returns `null` on
+     * failure. Bind the network you sign on to the app's network.
+     */
+    requestChallenge(clientSessionId: string, walletAddress: string): Promise<string | null>;
+    /**
+     * External-provider leg: `POST /auth/external` with `{ clientSessionId, ...body }`.
+     * The backend proves wallet control via SEP-10, so `body` must carry
+     * `{ provider, walletAddress, signedChallengeXdr }` (the challenge from
+     * {@link requestChallenge}, counter-signed by the wallet). Returns `false` and
+     * sets an error state on failure.
+     */
+    exchangeExternalToken(clientSessionId: string, body: Record<string, unknown>): Promise<boolean>;
+    /** Built-in hosted-OAuth dance (popup on web, in-app browser on RN). Backs the google/github providers. */
+    startHostedOAuth(provider: 'google' | 'github'): Promise<void>;
+}
+/**
+ * A pluggable login strategy. Built-ins (`google`, `github`, `email`) ship as
+ * these; custom ones (Privy, Magic, …) are injected via
+ * `PollarClientConfig.providers`. Note: `wallet` is intentionally NOT a provider
+ * — it yields a persistent `WalletAdapter` reused for signing, a concern
+ * orthogonal to login, so it keeps its own dedicated `loginWallet()` flow.
+ *
+ * - `login` handles the one-shot entry point (`client.login({ provider: id })`).
+ * - `actions` exposes extra named steps for multi-step flows (e.g. email's
+ *   send-code / verify-code), invoked via `client.providerAction(id, action, payload)`.
+ */
+interface PollarAuthProvider {
+    /** Matches `PollarLoginOptions.provider` and the key in `providerAction`. */
+    readonly id: string;
+    login?(ctx: AuthProviderContext, options: PollarLoginOptions): Promise<void>;
+    actions?: Record<string, (ctx: AuthProviderContext, payload?: unknown) => Promise<void>>;
+}
+type TxBuildContent = TxBuildResponse['content'];
+/**
+ * Phases the SDK can be in across the build → sign → submit lifecycle.
+ *
+ * **Granular** steps (`building`, `signing`, `submitting`) are emitted when
+ * the SDK can directly observe that phase — i.e. when each is a separate
+ * client-driven call (`buildTx`, `signTx`, `submitTx`, external-wallet
+ * `signAndSubmitTx`).
+ *
+ * **Compound** steps (`signing-submitting`, `building-signing-submitting`)
+ * are emitted when multiple phases collapse into a single opaque backend
+ * round-trip (`signAndSubmitTx` custodial → `/tx/sign-and-send`, and `runTx`
+ * / `buildAndSignAndSubmitTx` custodial → `/tx/build-sign-submit`). The SDK
+ * can't see when one phase ends and the next begins inside that request, so
+ * it honestly reports a single fused state instead of fabricating
+ * transitions.
+ *
+ * **Terminal states** (`success`, `error`) and the post-Horizon-ack pending
+ * state (`submitted`) are shared across all paths.
+ *
+ * On `error`, the `phase` discriminator tells the consumer *where* the
+ * failure happened so modal UIs can offer "retry from this step" buttons.
+ */
+type TransactionState = {
+    step: 'idle';
+} | {
+    step: 'building';
+} | {
+    step: 'built';
+    buildData: TxBuildContent;
+} | {
+    step: 'signing';
+    buildData?: TxBuildContent;
+} | {
+    step: 'signed';
+    buildData?: TxBuildContent;
+    signedXdr: string;
+    submissionToken?: string;
+} | {
+    step: 'submitting';
+    buildData?: TxBuildContent;
+    signedXdr?: string;
+} | {
+    step: 'signing-submitting';
+    buildData?: TxBuildContent;
+} | {
+    step: 'building-signing-submitting';
+} | {
+    step: 'submitted';
+    buildData?: TxBuildContent;
+    hash: string;
+} | {
+    step: 'success';
+    buildData?: TxBuildContent;
+    hash: string;
+} | {
+    step: 'error';
+    phase: TxErrorPhase;
+    details?: string;
+    code?: string;
+    message?: string;
+    buildData?: TxBuildContent;
+    signedXdr?: string;
+};
+/**
+ * Identifies which phase failed when `TransactionState.step === 'error'`.
+ * Compound phase names (`signing-submitting`, `building-signing-submitting`)
+ * appear here when the failure happened inside an atomic backend call where
+ * the SDK can't isolate the failing sub-phase.
+ */
+type TxErrorPhase = 'building' | 'signing' | 'submitting' | 'signing-submitting' | 'building-signing-submitting';
+/**
+ * Per-call outcomes returned by `buildTx`, `signTx`, `submitTx`,
+ * `signAndSubmitTx`, and `buildAndSignAndSubmitTx`. These are additive to
+ * `TransactionState` — the same operations still drive the state machine for
+ * modal-style UIs, but headless callers can `await` the method and inspect
+ * the returned outcome directly instead of subscribing to state changes.
+ */
+type BuildOutcome = {
+    status: 'built';
+    buildData: TxBuildContent;
+} | {
+    status: 'error';
+    details?: string;
+};
+type SignOutcome = {
+    status: 'signed';
+    signedXdr: string;
+    submissionToken?: string;
+    expiresAt?: number;
+} | {
+    status: 'error';
+    details?: string;
+    code?: string;
+    message?: string;
+};
+/**
+ * Result of {@link PollarClient.signAuthEntry}. `signedAuthEntry` is the base64
+ * XDR of the signed `SorobanAuthorizationEntry`, ready to be composed into the
+ * caller's transaction envelope (e.g. by a contract that sponsors the gas).
+ */
+type SignAuthEntryOutcome = {
+    status: 'signed';
+    signedAuthEntry: string;
+} | {
+    status: 'error';
+    details?: string;
+};
+type SubmitOutcome = {
+    status: 'success';
+    hash: string;
+    buildData?: TxBuildContent;
+} | {
+    status: 'pending';
+    hash: string;
+    buildData?: TxBuildContent;
+} | {
+    status: 'error';
+    hash?: string;
+    details?: string;
+    resultCode?: string;
+    code?: string;
+    message?: string;
+    buildData?: TxBuildContent;
+};
+/**
+ * Result of {@link PollarClient.setTrustline}. Like {@link SubmitOutcome} but the
+ * `hash` is optional: the sponsored, server-orchestrated path completes without
+ * surfacing a transaction hash to the client, whereas the self-paid path returns
+ * the underlying submit outcome (hash included).
+ */
+type TrustlineOutcome = {
+    status: 'success';
+    hash?: string;
+} | {
+    status: 'pending';
+    hash?: string;
+} | {
+    status: 'error';
+    details?: string;
+};
+declare const AUTH_ERROR_CODES: {
+    readonly SESSION_CREATE_FAILED: "SESSION_CREATE_FAILED";
+    readonly SESSION_EXPIRED: "SESSION_EXPIRED";
+    readonly SESSION_INVALID: "SESSION_INVALID";
+    readonly EMAIL_SEND_FAILED: "EMAIL_SEND_FAILED";
+    readonly EMAIL_VERIFY_FAILED: "EMAIL_VERIFY_FAILED";
+    readonly EMAIL_CODE_EXPIRED: "EMAIL_CODE_EXPIRED";
+    readonly EMAIL_CODE_INVALID: "EMAIL_CODE_INVALID";
+    readonly AUTH_FAILED: "AUTH_FAILED";
+    readonly WALLET_CONNECT_FAILED: "WALLET_CONNECT_FAILED";
+    readonly WALLET_AUTH_FAILED: "WALLET_AUTH_FAILED";
+    readonly WALLET_RESOLVER_TIMEOUT: "WALLET_RESOLVER_TIMEOUT";
+    readonly EXTERNAL_AUTH_FAILED: "EXTERNAL_AUTH_FAILED";
+    readonly PASSKEY_FAILED: "PASSKEY_FAILED";
+    readonly TX_FAILED: "TX_FAILED";
+    readonly UNEXPECTED_ERROR: "UNEXPECTED_ERROR";
+};
+type AuthErrorCode = (typeof AUTH_ERROR_CODES)[keyof typeof AUTH_ERROR_CODES];
+type AuthState = {
+    step: 'idle';
+} | {
+    step: 'creating_session';
+} | {
+    step: 'entering_email';
+    clientSessionId: string;
+} | {
+    step: 'sending_email';
+    email: string;
+} | {
+    step: 'entering_code';
+    clientSessionId: string;
+    email: string;
+} | {
+    step: 'verifying_email_code';
+    clientSessionId: string;
+    email: string;
+} | {
+    step: 'opening_oauth';
+    provider: 'google' | 'github';
+} | {
+    step: 'connecting_wallet';
+    walletType: WalletId;
+} | {
+    step: 'signing_wallet_challenge';
+    walletType: WalletId;
+} | {
+    step: 'wallet_not_installed';
+    walletType: WalletId;
+} | {
+    step: 'authenticating_wallet';
+} | {
+    step: 'creating_passkey';
+} | {
+    step: 'deploying_smart_account';
+} | {
+    step: 'authenticating';
+} | {
+    step: 'authenticated';
+    session: PollarPersistedSession;
+    /**
+     * `false` while the session is restored optimistically from storage and
+     * not yet revalidated with the server; `true` after a fresh login/refresh
+     * or a successful `/auth/session/resume`. Gate sensitive actions on this.
+     */
+    verified: boolean;
+} | {
+    step: 'error';
+    previousStep: string;
+    message: string;
+    errorCode: AuthErrorCode;
+    clientSessionId?: string;
+    email?: string;
+};
+type NetworkState = {
+    step: 'idle';
+} | {
+    step: 'connected';
+    network: StellarNetwork;
+};
+declare class PollarFlowError extends Error {
+    readonly code: "INVALID_FLOW";
+    constructor(message: string);
+}
+type WalletBalanceContent = paths['/wallet/balance']['get']['responses'][200]['content']['application/json']['content'];
+type WalletBalanceRecord = WalletBalanceContent['balances'][number];
+type WalletBalanceState = {
+    step: 'idle';
+} | {
+    step: 'loading';
+} | {
+    step: 'loaded';
+    data: WalletBalanceContent;
+} | {
+    step: 'error';
+    message: string;
+};
+type WalletAssetsContent = paths['/wallet/assets']['get']['responses'][200]['content']['application/json']['content'];
+type EnabledAssetRecord = WalletAssetsContent['assets'][number];
+type EnabledAssetsState = {
+    step: 'idle';
+} | {
+    step: 'loading';
+} | {
+    step: 'loaded';
+    data: WalletAssetsContent;
+} | {
+    step: 'error';
+    message: string;
+};
+type TxHistoryRecord = paths['/tx/history']['get']['responses'][200]['content']['application/json']['content']['records'][number];
+type TxHistoryParams = NonNullable<paths['/tx/history']['get']['parameters']['query']>;
+type TxHistoryContent = paths['/tx/history']['get']['responses'][200]['content']['application/json']['content'];
+type TxHistoryState = {
+    step: 'idle';
+} | {
+    step: 'loading';
+    params: TxHistoryParams;
+} | {
+    step: 'loaded';
+    params: TxHistoryParams;
+    data: TxHistoryContent;
+} | {
+    step: 'error';
+    params: TxHistoryParams;
+    message: string;
+};
+type KycLevel = 'basic' | 'intermediate' | 'enhanced';
+type KycStatus = 'none' | 'pending' | 'approved' | 'rejected';
+type KycFlow = 'iframe' | 'form' | 'redirect';
+type KycProvider = paths['/kyc/providers']['get']['responses'][200]['content']['application/json']['content']['providers'][number];
+type KycStartBody = NonNullable<paths['/kyc/start']['post']['requestBody']>['content']['application/json'];
+type KycStartResponse = paths['/kyc/start']['post']['responses'][200]['content']['application/json']['content'];
+type RampsQuoteQuery = NonNullable<paths['/ramps/quote']['get']['parameters']['query']>;
+type RampQuote = paths['/ramps/quote']['get']['responses'][200]['content']['application/json']['content']['quotes'][number];
+type RampsQuoteResponse = paths['/ramps/quote']['get']['responses'][200]['content']['application/json']['content'];
+type RampsOnrampBody = NonNullable<paths['/ramps/onramp']['post']['requestBody']>['content']['application/json'];
+type RampsOnrampResponse = paths['/ramps/onramp']['post']['responses'][200]['content']['application/json']['content'];
+type RampsOfframpBody = NonNullable<paths['/ramps/offramp']['post']['requestBody']>['content']['application/json'];
+type RampsOfframpResponse = paths['/ramps/offramp']['post']['responses'][200]['content']['application/json']['content'];
+type RampsTransactionResponse = paths['/ramps/transaction/{txId}']['get']['responses'][200]['content']['application/json']['content'];
+type RampTxStatus = RampsTransactionResponse['status'];
+type RampDirection = RampsTransactionResponse['direction'];
+type PaymentInstructions = RampsOnrampResponse['paymentInstructions'];
+type DistributionRule = paths['/distribution/rules']['get']['responses'][200]['content']['application/json']['content']['rules'][number];
+type RulePeriod = DistributionRule['period'];
+type DistributionClaimBody = NonNullable<paths['/distribution/claim']['post']['requestBody']>['content']['application/json'];
+type DistributionClaimContent = paths['/distribution/claim']['post']['responses'][200]['content']['application/json']['content'];
+type DistributionRulesState = {
+    step: 'idle';
+} | {
+    step: 'loading';
+} | {
+    step: 'loaded';
+    rules: DistributionRule[];
+} | {
+    step: 'error';
+    message: string;
+};
+type AdapterFn<TParams = unknown> = (params: TParams) => Promise<{
+    unsignedTransaction: string;
+}>;
+type PollarAdapter = Record<string, AdapterFn<any>>;
+interface PollarAdapters {
+    [key: string]: PollarAdapter;
+}
+
+declare class PollarClient {
+    readonly apiKey: string;
+    readonly id: string;
+    readonly basePath: string;
+    private readonly _api;
+    private readonly _log;
+    private readonly _storage;
+    private readonly _keyManager;
+    /** Resolves once `keyManager.init()` and the initial session restore complete. */
+    private readonly _initialized;
+    /**
+     * Per-API-key storage namespace. Computed asynchronously inside
+     * `_initialize()` because SHA-256 lives behind `crypto.subtle.digest`.
+     * Accessing `apiKeyHash` before `await client.ready()` throws.
+     */
+    private _apiKeyHash;
+    /**
+     * Short SHA-256-derived namespace for this client's persisted state.
+     * Available after `await client.ready()` (or any awaited method); throws
+     * if read before initialization completes.
+     */
+    get apiKeyHash(): string;
+    private _session;
+    private _profile;
+    /** Last `DPoP-Nonce` we saw from a server response. Carried into the next proof. */
+    private _dpopNonce;
+    /**
+     * Snapshot of each in-flight request's body, taken in `onRequest` before
+     * `fetch()` consumes the stream. Needed because `Request.clone()` throws
+     * once the body is disturbed, so the auto-retry path (DPoP nonce challenge
+     * / 401 refresh) must rebuild the request from scratch instead of cloning.
+     */
+    private _requestBodyCache;
+    /** Singleton in-flight refresh — concurrent 401s coalesce into one /auth/refresh call. */
+    private _refreshPromise;
+    private _storageEventHandler;
+    /** Optional UI label sent to the server at /auth/login so the sessions UI
+     *  can show a recognizable device name. Set via PollarClientConfig.deviceLabel. */
+    private readonly _deviceLabel;
+    private readonly _visibilityProvider;
+    private readonly _maxIdleMs;
+    /** Updated by the request middleware. Read by the silent-refresh scheduler
+     *  to skip proactive refreshes after `maxIdleMs` of no HTTP activity. */
+    private _lastRequestAt;
+    private _refreshTimer;
+    private _visibilityUnsubscribe;
+    private _transactionState;
+    private _transactionStateListeners;
+    private _txHistoryState;
+    private _txHistoryStateListeners;
+    private _sessionsState;
+    private _sessionsStateListeners;
+    private _walletBalanceState;
+    private _walletBalanceStateListeners;
+    private _enabledAssetsState;
+    private _enabledAssetsStateListeners;
+    private _authState;
+    private _authStateListeners;
+    private _networkState;
+    private _networkStateListeners;
+    /**
+     * Latched once the storage adapter degrades. We dedupe (the adapter only
+     * fires once anyway) and use it to replay state to late-subscribers — same
+     * pattern as `onAuthStateChange` replaying `_authState` on subscribe.
+     * Only populated when the SDK constructed the default storage adapter; if
+     * the consumer passes `config.storage`, they own degradation notifications.
+     */
+    private _storageDegraded;
+    private _storageDegradeListeners;
+    private _walletAdapter;
+    private readonly _walletAdapterResolver;
+    private readonly _walletResolverTimeoutMs;
+    private readonly _passkey;
+    private readonly _passkeySign;
+    private _loginController;
+    /** Aborts an in-flight `/auth/session/resume` on destroy() or re-trigger. */
+    private _resumeController;
+    /** Platform strategy for opening the hosted-OAuth URL (popup on web; injected on RN). */
+    private readonly _openAuthUrl;
+    /** `redirect_uri` sent to the backend for hosted OAuth. */
+    private readonly _oauthRedirectUri;
+    /**
+     * Registry of pluggable login strategies, keyed by provider id. Seeded with
+     * the built-ins (`google`, `github`, `email`) and then any `config.providers`
+     * (which can override a built-in by reusing its id). `wallet` is deliberately
+     * absent — it keeps its own dedicated flow. See {@link PollarAuthProvider}.
+     */
+    private readonly _providers;
+    constructor(config: PollarClientConfig);
+    /** Awaitable handle for the initial keypair + session restore. */
+    ready(): Promise<void>;
+    private _initialize;
+    /** Detach the cross-tab storage listener and abort any in-flight login. */
+    destroy(): void;
+    private _wireMiddlewares;
+    /**
+     * Logs the final outcome of an SDK API call exactly once: successes (`2xx`) at
+     * `debug` (method + path + status, no body), failures (`4xx`/`5xx`) at `error`
+     * with the redacted request body and the response error body. Returns the
+     * response so it can be chained at the middleware's return points. The error
+     * body is read off a synchronous `clone()` so it never disturbs the body the
+     * caller consumes.
+     */
+    private _logHttp;
+    /** Reads the redacted request body + JSON response body and logs at `error`. */
+    private _logHttpError;
+    /** Strips origin + `/v1` version prefix from a request URL for compact logs. */
+    private _httpPath;
+    private _buildProofForRequest;
+    private _retryRequest;
+    /**
+     * Coalesce concurrent refresh attempts. The first caller does the work;
+     * everyone else awaits the same promise and sees the new tokens.
+     */
+    refresh(): Promise<void>;
+    private _doRefresh;
+    /**
+     * Arm a single setTimeout to fire shortly before the current access token
+     * expires. Idempotent — clearing any previous timer first. Safe to call
+     * from any session-write site (initial login, restore-from-storage, after
+     * a successful rotation). No-op if there's no session in memory.
+     *
+     * Browser/RN background-tab throttling makes long-running setTimeouts
+     * unreliable on their own; the `visibilitychange` listener compensates by
+     * re-invoking `_maybeProactiveRefresh` whenever the app comes back to the
+     * foreground, catching any timer that fired late or never fired at all.
+     */
+    private _scheduleNextRefresh;
+    /**
+     * Decide whether to actually run a refresh right now. Called both from the
+     * scheduler timer and from the visibility-change listener.
+     *
+     * Skip if:
+     *   - no session / no RT (nothing to refresh)
+     *   - app is hidden — wait for the visibility listener to re-trigger us
+     *   - `maxIdleMs` configured and no client request since that window — let
+     *     the next reactive 401-refresh handle it whenever the user comes back
+     *   - the AT still has more than `REFRESH_SKEW_SECONDS` of life — reschedule
+     *
+     * Otherwise call `refresh()`, which uses the existing in-flight singleton
+     * so we never collide with a reactive 401-triggered refresh. On failure,
+     * `_doRefresh` already calls `_clearSession`, so auth-state listeners see
+     * `step:'idle'` — no extra event dispatch needed here.
+     */
+    private _maybeProactiveRefresh;
+    private _clearRefreshTimer;
+    getAuthState(): AuthState;
+    onAuthStateChange(cb: (state: AuthState) => void): () => void;
+    /**
+     * Subscribe to persistent-storage degradation (Safari private mode,
+     * sandboxed iframes, quota errors, etc.). The SDK keeps running off
+     * in-memory storage after degrade, but sessions won't survive reload — a
+     * host UI typically wants to show "your session won't be saved" so the
+     * user isn't blindsided after a refresh.
+     *
+     * Fires at most once per client lifetime (the underlying adapter dedupes).
+     * Late subscribers receive the latched state synchronously on subscribe.
+     *
+     * Only fires when the SDK constructs the default storage adapter. If you
+     * pass a custom `config.storage`, wire your own notification path through
+     * that adapter's API — the SDK has no hook into it.
+     */
+    onStorageDegrade(cb: OnStorageDegrade): () => void;
+    private _dispatchStorageDegrade;
+    /** PII (email, names, avatar, providers). Held in memory only — never persisted. */
+    getUserProfile(): PollarUserProfile | null;
+    login(options: PollarLoginOptions): void;
+    /**
+     * Invoke a named secondary step on a registered provider (e.g. email's
+     * `sendCode` / `verifyCode`, or a custom provider's multi-step continuation).
+     * Reuses the in-flight login `AbortController` when one exists so the step
+     * stays cancellable via `cancelLogin()`; otherwise starts a fresh one. The
+     * built-in email steps also have dedicated typed methods
+     * ({@link sendEmailCode} / {@link verifyEmailCode}) — prefer those for email.
+     */
+    providerAction(provider: string, action: string, payload?: unknown): void;
+    beginEmailLogin(): void;
+    sendEmailCode(email: string): void;
+    verifyEmailCode(code: string): void;
+    loginWallet(type: WalletId): void;
+    /**
+     * "Smart Wallet" login: runs the passkey (WebAuthn) `get()` ceremony for a
+     * returning user and signs them in. Use {@link createSmartWallet} for a new
+     * user. Requires the `passkey` ceremony to be configured (e.g. via
+     * `@pollar/react`).
+     */
+    loginSmartWallet(): void;
+    /**
+     * "Smart Wallet" registration: runs the passkey (WebAuthn) `create()` ceremony
+     * for a new user and deploys a sponsored smart-account C-address. Use
+     * {@link loginSmartWallet} for a returning user. Requires the `passkey`
+     * ceremony to be configured (e.g. via `@pollar/react`).
+     */
+    createSmartWallet(): void;
+    cancelLogin(): void;
+    /**
+     * Revoke the current session server-side, then clear local storage.
+     *
+     * Server revocation is best-effort: if the POST fails (offline, server
+     * down), local state is wiped regardless. The orphan refresh token then
+     * remains unused until its natural expiry. The in-flight access token
+     * stays valid until its own TTL elapses (≤10 min for DPoP-bound tokens).
+     *
+     * Pass `everywhere: true` to revoke every active session for this user
+     * across all devices.
+     */
+    logout(options?: {
+        everywhere?: boolean;
+    }): Promise<void>;
+    /** Convenience: revoke every active session for this user (all devices). */
+    logoutEverywhere(): Promise<void>;
+    /**
+     * List active sessions for the authenticated user. Returns one entry per
+     * refresh-token family with the metadata captured at issuance time. The
+     * `current` flag identifies which entry corresponds to this client.
+     */
+    listSessions(): Promise<SessionInfo[]>;
+    getSessionsState(): SessionsState;
+    onSessionsStateChange(cb: (state: SessionsState) => void): () => void;
+    /**
+     * Fire-and-forget variant of {@link listSessions} that drives the observable
+     * `SessionsState` store instead of returning the array. UI layers subscribe
+     * via `onSessionsStateChange` and stay pure readers — mirrors `fetchTxHistory`.
+     */
+    fetchSessions(): Promise<void>;
+    /**
+     * Revoke a specific refresh-token family (a single device session). Use
+     * `listSessions` to enumerate the familyIds. Revoking the current session
+     * does NOT clear local state — call `logout()` for that case.
+     */
+    revokeSession(familyId: string): Promise<void>;
+    getNetwork(): StellarNetwork;
+    getNetworkState(): NetworkState;
+    /**
+     * The client's level-gated logger (built from `logLevel` / `logger`). Exposed
+     * so the runtime layer (`@pollar/react`) can route its own logs through the
+     * same level and sink instead of calling `console` directly.
+     */
+    getLogger(): PollarLogger;
+    setNetwork(network: StellarNetwork): void;
+    onNetworkStateChange(cb: (state: NetworkState) => void): () => void;
+    getTransactionState(): TransactionState | null;
+    onTransactionStateChange(cb: (state: TransactionState) => void): () => void;
+    getTxHistoryState(): TxHistoryState;
+    onTxHistoryStateChange(cb: (state: TxHistoryState) => void): () => void;
+    fetchTxHistory(params?: TxHistoryParams): Promise<void>;
+    getWalletBalanceState(): WalletBalanceState;
+    onWalletBalanceStateChange(cb: (state: WalletBalanceState) => void): () => void;
+    /**
+     * Refreshes the balances of the authenticated user's OWN wallet. The wallet
+     * and network are resolved server-side from the session — no arguments. Drives
+     * `walletBalanceState`. For an arbitrary wallet, use {@link getWalletBalance}.
+     */
+    refreshBalance(): Promise<void>;
+    /**
+     * General-purpose balance lookup for ANY wallet on ANY network — not scoped
+     * to this application. Enumerates the account's real on-chain holdings via
+     * Horizon (server-side) and returns the data directly (no reactive state).
+     * `network` defaults to the client's current network.
+     */
+    getWalletBalance(publicKey: string, network?: StellarNetwork): Promise<WalletBalanceContent>;
+    getEnabledAssetsState(): EnabledAssetsState;
+    onEnabledAssetsStateChange(cb: (state: EnabledAssetsState) => void): () => void;
+    /**
+     * Loads the application's enabled assets paired with the authenticated
+     * wallet's on-chain trustline state — so the SDK knows which trustlines still
+     * need to be added. Wallet and network are resolved server-side from the
+     * session. Drives `enabledAssetsState`; mirrors {@link refreshBalance}.
+     */
+    refreshAssets(): Promise<void>;
+    /**
+     * Establishes (omit `limit`) or removes (`limit: '0'`) a trustline for an asset.
+     *
+     * Routing mirrors how the platform pays for the reserve:
+     *  - **Sponsored custodial** (`opts.sponsored` true, internal wallet) → the
+     *    server orchestrates a sponsored `changeTrust`: the app's wallets cover the
+     *    0.5 XLM reserve and the fee, so the user pays nothing. Pass the asset's
+     *    `sponsored` flag (from {@link refreshAssets}) straight through.
+     *  - **Self-paid** (external/adapter wallet, sponsorship disabled, or a custom
+     *    asset not configured in the app) → a plain `change_trust` transaction the
+     *    user's own wallet signs and pays for, via {@link runTx}.
+     *
+     * Does not refresh on its own — callers should `refreshAssets()` afterwards.
+     */
+    setTrustline(asset: {
+        code: string;
+        issuer: string;
+    }, opts?: {
+        limit?: string;
+        sponsored?: boolean;
+    }): Promise<TrustlineOutcome>;
+    /**
+     * Builds an unsigned XDR. Drives `_setTransactionState` for modal-style UIs
+     * AND returns a {@link BuildOutcome} so headless callers can `await` and
+     * inspect the result without subscribing to state changes.
+     */
+    buildTx(operation: TxBuildBody['operation'], params: TxBuildBody['params'], options?: TxBuildBody['options']): Promise<BuildOutcome>;
+    getWalletType(): WalletId | null;
+    /**
+     * The authenticated user's wallet as a {@link WalletInfo} discriminated union,
+     * or `null` when there's no session (or the session carries no address yet).
+     *
+     * `custody` strictly determines `provider` (the mapping is 1:1 and fixed at
+     * account creation server-side): `external` reports the connected adapter id
+     * (`getWalletType()`), `smart` is always `'passkey'`, and `internal` reports
+     * the login method the backend recorded (`null` for pre-provider sessions).
+     */
+    getWallet(): WalletInfo | null;
+    /**
+     * Signs the given unsigned XDR and returns the signed XDR.
+     *
+     * - External wallets: signs locally via the wallet adapter.
+     * - Custodial wallets: posts to `/tx/sign`. The backend signs (through
+     *   wallet-service or the app's customer-managed adapter) and returns the
+     *   signed XDR plus an `idempotencyKey` the caller should echo back to
+     *   `submitTx`.
+     *
+     * Drives `_setTransactionState`: emits `signing` while in flight and
+     * `signed` on success (or `error[phase: 'signing']` on failure). `buildData`
+     * is threaded through if the consumer previously called `buildTx`.
+     */
+    signTx(unsignedXdr: string): Promise<SignOutcome>;
+    /**
+     * Sign a single Soroban authorization entry (`SorobanAuthorizationEntry`).
+     *
+     * Use this when a contract is the transaction source (e.g. it sponsors the
+     * gas and swaps the fee out of the user's token) and only needs the user's
+     * address-credentials authorization, not a full signed envelope. The signed
+     * entry is returned as base64 XDR for the caller to compose into its tx.
+     *
+     * - External wallets (Freighter/Albedo) sign the entry via the provider.
+     * - Custodial wallets are signed by the backend, which FIRST validates the
+     *   entry's invocation tree against the app's contract/function allowlist and
+     *   caps the validity window — entries touching a non-allowlisted contract or
+     *   function, or expiring too far ahead, are rejected.
+     *
+     * @param entryXdr base64 XDR of the unsigned `SorobanAuthorizationEntry`.
+     * @param options.validUntilLedger absolute ledger the signature expires at
+     *   (computed from the network's latest ledger). Ignored on the external-wallet
+     *   path, where the provider sets its own expiration.
+     */
+    signAuthEntry(entryXdr: string, options: {
+        validUntilLedger: number;
+    }): Promise<SignAuthEntryOutcome>;
+    /**
+     * Submits a signed XDR via `/tx/submit` regardless of wallet type
+     * (custodial or external). Routing through sdk-api gives us:
+     *   - End-to-end tx_records persistence with full phase lifecycle so the
+     *     developer dashboard can show every tx (both custodial and external
+     *     wallet flows) at `/apps/:id/monitor/transactions`.
+     *   - Idempotency tracking via `submissionToken` (returned by `signTx`).
+     *   - A single response shape (SUCCESS / PENDING / FAILED) shared by both
+     *     flows — previously external wallets could only return SUCCESS or
+     *     error since the direct-to-Horizon path was synchronous.
+     *
+     * The extra hop adds ~50–150 ms vs. the legacy direct-Horizon path; the
+     * persistence + observability win is worth it.
+     *
+     * Drives `_setTransactionState`: emits `submitting` while in flight,
+     * `submitted` on Horizon ack (pending), `success` on ledger confirmation,
+     * or `error[phase: 'submitting']` on failure.
+     */
+    /**
+     * Normalize a backend API error into { details, code, message }. `code` is the
+     * precise backend ErrorCode (e.g. `TX_FEE_LIMIT_EXCEEDED`) for programmatic
+     * handling; `message` is a friendly string from the error catalog; `details`
+     * is the raw diagnostic. Lets tx flows surface a typed reason instead of an
+     * opaque details string.
+     */
+    private _resolveTxApiError;
+    submitTx(signedXdr: string, opts?: {
+        submissionToken?: string;
+    }): Promise<SubmitOutcome>;
+    /**
+     * Signs and submits in one logical step. Returns a {@link SubmitOutcome}.
+     *
+     * - **External wallets**: composes `signTx` + `submitTx` client-side. State
+     *   machine sees the full granular sequence `signing → signed → submitting
+     *   → success` because the underlying methods each emit.
+     * - **Custodial wallets**: atomic `/tx/sign-and-send` round-trip. State
+     *   machine emits the compound `signing-submitting` step (the SDK can't
+     *   observe when one phase ends and the next begins inside that single
+     *   backend call) and then transitions to `submitted` (Horizon ack only) or
+     *   `success` (ledger-confirmed), or `error[phase: 'signing-submitting']`.
+     */
+    signAndSubmitTx(unsignedXdr?: string): Promise<SubmitOutcome>;
+    /**
+     * One-shot: build → sign → submit, returning the final {@link SubmitOutcome}.
+     *
+     * - **External wallets**: composes `buildTx` + `signAndSubmitTx` client-side.
+     *   State machine sees the full granular sequence (`building → built →
+     *   signing → signed → submitting → success`) because each composed call
+     *   emits its own transitions.
+     * - **Custodial wallets**: single round-trip to `/tx/build-sign-submit`. The
+     *   signed XDR never leaves the backend. State machine emits the compound
+     *   `building-signing-submitting` step (the SDK can't observe individual
+     *   phase boundaries inside one atomic call) and then transitions to
+     *   `submitted` / `success` / `error[phase: 'building-signing-submitting']`.
+     *
+     * If you need granular UI feedback for custodial flows (separate
+     * "Building…", "Signing…", "Submitting…" indicators), call `buildTx`,
+     * `signTx`, and `submitTx` separately instead.
+     */
+    buildAndSignAndSubmitTx(operation: TxBuildBody['operation'], params: TxBuildBody['params'], options?: TxBuildBody['options']): Promise<SubmitOutcome>;
+    /** Alias for {@link buildAndSignAndSubmitTx} — shorter "just do the thing" name. */
+    runTx(operation: TxBuildBody['operation'], params: TxBuildBody['params'], options?: TxBuildBody['options']): Promise<SubmitOutcome>;
+    /**
+     * Smart-wallet (passkey / C-address) transaction: build (server prepares the
+     * SAC transfer + returns the auth digest) → sign the digest with the passkey
+     * → submit (server assembles the signed auth entry and broadcasts; the
+     * sponsor pays the fee). State machine: building → built → signing →
+     * submitting → success.
+     */
+    private _runSmartTx;
+    /**
+     * Steps 2–3 of the smart-wallet flow: sign the prepared auth digest with the
+     * passkey, then submit. Shared by `_runSmartTx` (atomic) and `signAndSubmitTx`
+     * (split flow, when a smart build is already on the state machine).
+     */
+    private _signSubmitSmart;
+    getAppConfig(): Promise<unknown>;
+    getKycStatus(providerId?: string): Promise<{
+        status: KycStatus;
+        level?: KycLevel | undefined;
+        providerId: string;
+        expiresAt?: string;
+    }>;
+    getKycProviders(country: string): Promise<{
+        providers: KycProvider[];
+    }>;
+    startKyc(body: KycStartBody): Promise<KycStartResponse>;
+    resolveKyc(providerId: string, level?: KycLevel): Promise<{
+        alreadyApproved: boolean;
+    } & Partial<{
+        sessionId: string;
+        kycUrl?: string;
+        fields?: {
+            name: string;
+            type: string;
+            required: boolean;
+        }[];
+    }>>;
+    pollKycStatus(providerId: string, opts?: {
+        intervalMs?: number;
+        timeoutMs?: number;
+    }): Promise<KycStatus>;
+    getRampsQuote(query: RampsQuoteQuery): Promise<RampsQuoteResponse>;
+    createOnRamp(body: RampsOnrampBody): Promise<RampsOnrampResponse>;
+    createOffRamp(body: RampsOfframpBody): Promise<RampsOfframpResponse>;
+    getRampTransaction(txId: string): Promise<RampsTransactionResponse>;
+    pollRampTransaction(txId: string, opts?: {
+        intervalMs?: number;
+        timeoutMs?: number;
+    }): Promise<RampTxStatus>;
+    listDistributionRules(): Promise<DistributionRule[]>;
+    claimDistributionRule(body: DistributionClaimBody): Promise<DistributionClaimContent>;
+    private _setTxHistoryState;
+    private _setSessionsState;
+    private _setWalletBalanceState;
+    private _setEnabledAssetsState;
+    private _newController;
+    /**
+     * Build the {@link AuthProviderContext} facade for one login attempt. Wraps
+     * the internal `FlowDeps` so providers get only the curated primitives —
+     * `createSession`, `authenticate`, `exchangeExternalToken`, `startHostedOAuth`
+     * — while storage / wallet-adapter / key-manager internals stay private. All
+     * legs share the same `signal`, so `cancelLogin()` aborts the whole chain.
+     */
+    private _providerContext;
+    /**
+     * Generic external-provider exchange leg (`POST /auth/external`). Custom
+     * providers call this (via the context) after their own SDK has authenticated
+     * the user and the wallet has counter-signed the SEP-10 challenge
+     * (`{ provider, walletAddress, signedChallengeXdr }`). On success the session
+     * is marked READY server-side and the provider should then call
+     * `ctx.authenticate(clientSessionId)`. Returns `false` (and sets an error
+     * state) on failure.
+     */
+    private _exchangeExternalToken;
+    private _flowDeps;
+    /**
+     * Resolves a wallet adapter for the requested id. Uses the consumer's
+     * injected `walletAdapter` resolver when present; otherwise falls back to
+     * the built-in `FreighterAdapter` / `AlbedoAdapter`. Throws if the id is
+     * unknown and no resolver is configured.
+     */
+    private _resolveWalletAdapter;
+    private _handleFlowError;
+    private _restoreSession;
+    /**
+     * Validate the restored session against the server and repopulate the
+     * in-memory profile (PII is never persisted, so it's null after a cold
+     * reload). Goes through the normal authed client, so it coalesces with any
+     * in-flight refresh (onRequest awaits `_refreshPromise`) and, being a GET,
+     * is auto-retried after a 401-triggered refresh.
+     *
+     * - 200          → store profile, mark the session `verified`.
+     * - 401          → the refresh-on-401 path already ran; if the family was
+     *                  revoked, refresh failed and `_clearSession()` took us to
+     *                  idle. Nothing to do here — don't double-handle.
+     * - network error → stay optimistic (do NOT log out); revalidated later on
+     *                  `visibilitychange` or first use.
+     */
+    private _resume;
+    private _storeSession;
+    private _clearSession;
+    private _networkPassphrase;
+    private _setNetworkState;
+    private _setAuthState;
+    private _setTransactionState;
+    /**
+     * Threads `buildData` through state transitions. When the user has already
+     * called `buildTx`, every subsequent state (signing, signed, submitting,
+     * submitted, success, error) should carry the build summary so modal UIs
+     * can keep showing "Send 5 USDC to G..." through the whole flow.
+     */
+    private _currentBuildData;
+}
+
+/**
+ * Version of this `@pollar/core` build (e.g. `'0.8.2'`). Falls back to `'dev'`
+ * when running unbundled.
+ *
+ * Named per-package on purpose: importing it alongside `@pollar/react`'s
+ * `POLLAR_REACT_VERSION` never collides, so an app can report both versions in
+ * a single bug-report / diagnostics line.
+ */
+declare const POLLAR_CORE_VERSION: string;
+
+/**
+ * In-memory storage backed by a `Map`. Always available, never throws.
+ * Used as the default fallback for SSR, private browsing, sandboxed iframes
+ * without `allow-same-origin`, or any environment where `localStorage` is
+ * unusable.
+ */
+declare function createMemoryAdapter(): Storage;
+interface LocalStorageAdapterOptions {
+    /**
+     * Optional callback invoked the first time the adapter degrades to its
+     * in-memory fallback (e.g. quota exceeded, throwing `localStorage`).
+     */
+    onDegrade?: OnStorageDegrade;
+    /**
+     * Logger for the one-shot degrade warning. Defaults to the global `console`;
+     * `PollarClient` passes its level-gated logger so `logLevel` applies here too.
+     */
+    logger?: PollarLogger;
+}
+/**
+ * `localStorage`-backed adapter that wraps every operation in try/catch and
+ * silently degrades to an in-memory fallback for the rest of the process
+ * lifetime on any throw. A single warning is logged when the degrade happens.
+ *
+ * Why every op (not just the probe): Safari private mode and sandboxed iframes
+ * may expose `localStorage` but throw `QuotaExceededError` / `SecurityError`
+ * on the first write — a successful probe at construction time isn't enough.
+ *
+ * Tokens persisted here are DPoP-bound to a non-extractable WebCrypto
+ * keypair, so XSS exposure is limited to a signing-oracle attack (the key
+ * itself never leaves the browser's crypto subsystem). Consumers who need
+ * stricter isolation can inject a custom `Storage` adapter — e.g. one that
+ * proxies to an httpOnly cookie on a host origin.
+ */
+declare function createLocalStorageAdapter(options?: LocalStorageAdapterOptions): Storage;
+
+/**
+ * Returns `localStorage`-backed storage when it works, otherwise an in-memory
+ * fallback. The probe writes-reads-removes a sentinel; any throw, value
+ * mismatch, or missing `localStorage` (SSR / disabled storage) falls back.
+ *
+ * Run-time degrade still happens inside `createLocalStorageAdapter` — see its
+ * docstring for the rationale.
+ */
+declare function defaultStorage(options?: LocalStorageAdapterOptions): Storage;
+
+/**
+ * Construct the default `KeyManager` for the current runtime. Throws if no
+ * factory has been registered — that only happens if `@pollar/core` was
+ * imported in a way that bypassed the entry-point module (a bundler or
+ * test setup bug).
+ */
+declare function defaultKeyManager(storage: Storage, apiKey: string): KeyManager;
+
+declare class WebCryptoKeyManager implements KeyManager {
+    private readonly apiKey;
+    private apiKeyHash;
+    private keyPair;
+    private publicJwk;
+    private thumbprint;
+    /**
+     * Cached in-flight init. Lets `init()` be called concurrently (or implicitly
+     * from `getPublicJwk` / `sign`) without doing the work twice. Cleared on
+     * failure so callers can retry, and cleared on `reset()`.
+     */
+    private _initPromise;
+    constructor(apiKey: string);
+    /**
+     * Idempotent and safe under concurrency. The first call kicks off the real
+     * init; subsequent (and concurrent) calls return the same in-flight promise.
+     * Other methods (`getPublicJwk`, `getThumbprint`, `sign`) auto-await this so
+     * the manager is self-healing if `init()` was never explicitly invoked.
+     */
+    init(): Promise<void>;
+    private _doInit;
+    /**
+     * Derive the public JWK from a `CryptoKey`. Prefers the `'raw'` export (the
+     * 65-byte uncompressed point `0x04 || X(32) || Y(32)`) and base64url-encodes
+     * the coordinates ourselves — that sidesteps polyfills whose `exportKey('jwk')`
+     * emits non-base64url `x`/`y` (standard base64, `=` padding, or — as seen with
+     * `react-native-quick-crypto` — a stray `.`). Real browsers and most polyfills
+     * support `'raw'` for public EC keys.
+     *
+     * Falls back to the `'jwk'` export (normalized via `canonicalEcJwk`) if `'raw'`
+     * is unsupported or returns an unexpected shape, so this can't regress on a
+     * runtime that only implements the JWK path. Both routes yield identical
+     * coordinate bytes, so the `cnf.jkt` thumbprint is unchanged either way.
+     */
+    private _exportPublicJwk;
+    reset(): Promise<void>;
+    getPublicJwk(): Promise<PublicEcJwk>;
+    getThumbprint(): Promise<string>;
+    sign(payload: Uint8Array): Promise<Uint8Array>;
+}
+
+/**
+ * Compute the RFC 7638 JWK thumbprint for an EC P-256 public JWK.
+ *
+ * Algorithm (RFC 7638 §3):
+ *  1. Build a JSON object containing ONLY the required members of the JWK,
+ *     ordered lexicographically by member name (Unicode code point).
+ *     For EC keys, that's exactly {crv, kty, x, y}.
+ *  2. Serialize to UTF-8 with no whitespace and no line breaks.
+ *  3. Hash with SHA-256.
+ *  4. Base64url-encode the hash (no padding).
+ *
+ * Common bugs guarded against:
+ * - Including extra fields (`alg`, `use`, `kid`, `ext`, `key_ops`).
+ * - Wrong member ordering (must be lex by Unicode code point).
+ * - Padded base64 instead of base64url unpadded.
+ * - Using `JSON.stringify(jwk)` of an arbitrary-key-order object — we build
+ *   a fresh literal in canonical order to make the order explicit and not
+ *   rely on V8's insertion-order semantics.
+ */
+declare function computeJwkThumbprint(jwk: PublicEcJwk): Promise<string>;
+/**
+ * Strip a JWK to only the four required EC public members and normalize the
+ * coordinates to unpadded base64url. Useful when the input came from
+ * `crypto.subtle.exportKey('jwk', publicKey)` which adds `ext` / `key_ops`
+ * (and, under some RN polyfills, non-base64url coordinates). Returns a fresh
+ * object — never mutates input.
+ */
+declare function canonicalEcJwk(jwk: {
+    kty?: string;
+    crv?: string;
+    x?: string;
+    y?: string;
+}): PublicEcJwk;
+
+/**
+ * RFC 9449 DPoP proof builder.
+ *
+ * Produces a compact JWS that the consumer attaches as the `DPoP` HTTP
+ * header. The header `jwk` is the public part of the SDK's per-session
+ * keypair; the server verifies the signature, validates the `htm` / `htu` /
+ * `iat` / `jti` / optional `nonce` / optional `ath` claims, and matches the
+ * proof's JWK thumbprint against the access token's `cnf.jkt` claim.
+ *
+ * Server-issued nonce flow (RFC 9449 §8/§9): the server may respond with
+ * `WWW-Authenticate: DPoP ... error="use_dpop_nonce"` plus a `DPoP-Nonce`
+ * header. The client should re-build the proof with the new nonce and retry.
+ * `buildProof` accepts an optional nonce; the SDK client tracks it across
+ * requests and feeds it back here.
+ *
+ * The last seen `DPoP-Nonce` is stored verbatim and embedded in the next
+ * proof. The server validates it as an HMAC token, so an attacker who
+ * injects an arbitrary nonce cannot escalate — verification fails and the
+ * server replies with a fresh nonce on the next request.
+ */
+interface BuildProofArgs {
+    /** HTTP method, e.g. `"GET"`. Will be uppercased before signing. */
+    htm: string;
+    /**
+     * HTTP target URI. Will be normalized per RFC 3986 §6.2 (lowercase scheme
+     * + host, default port elided, query+fragment+userinfo stripped, path
+     * dot-segments resolved, trailing slash preserved exactly as provided).
+     */
+    htu: string;
+    /**
+     * Access token to bind the proof to (its base64url(SHA-256) goes in the
+     * `ath` claim). Omit for proofs sent to the token endpoint per RFC 9449
+     * §5 / §6.1 (those proofs MUST NOT include `ath`).
+     */
+    accessToken?: string;
+    /**
+     * Server-issued DPoP nonce, if the server has previously challenged this
+     * client with `WWW-Authenticate: DPoP ... error="use_dpop_nonce"`. RFC
+     * 9449 §8.
+     */
+    nonce?: string;
+}
+/**
+ * Build a DPoP proof JWS for the given request. Returns the compact-form
+ * JWS string (`<header>.<payload>.<signature>`).
+ */
+declare function buildProof(args: BuildProofArgs, keyManager: KeyManager): Promise<string>;
+/**
+ * Normalize an HTTP URI for use as the `htu` claim.
+ *
+ * RFC 9449 §4.3 + RFC 3986 §6.2:
+ *  - lowercase scheme + host
+ *  - elide default port (`:443` for https, `:80` for http)
+ *  - strip userinfo (never appears in `htu`)
+ *  - strip query + fragment
+ *  - apply path dot-segment removal (handled by the URL constructor)
+ *  - **preserve trailing slash exactly** — `/foo` and `/foo/` are distinct
+ *    paths per RFC 3986 §6 and must round-trip identically.
+ *  - preserve IPv6 brackets in host
+ *
+ * Both client and server must apply the same normalization so the `htu`
+ * claim matches deterministically.
+ */
+declare function normalizeHtu(rawUrl: string): string;
 
 declare function isValidSession(value: unknown, logger?: PollarLogger): value is PollarPersistedSession;
 
@@ -6059,4 +6921,4 @@ declare function listDistributionRules(api: PollarApiClient): Promise<Distributi
  */
 declare function claimDistributionRule(api: PollarApiClient, body: DistributionClaimBody): Promise<DistributionClaimContent>;
 
-export { AUTH_ERROR_CODES, type AdapterFn, AlbedoAdapter, type AuthErrorCode, type AuthOpenContext, type AuthState, type AuthUrlOpener, type BuildOutcome, type BuildProofArgs, type ConnectWalletResponse, type DistributionClaimBody, type DistributionClaimContent, type DistributionRule, type DistributionRulesState, type EnabledAssetRecord, type EnabledAssetsState, FreighterAdapter, type KeyManager, type KycFlow, type KycLevel, type KycProvider, type KycStartBody, type KycStartResponse, type KycStatus, type LocalStorageAdapterOptions, type LogLevel, type NetworkState, OnStorageDegrade, POLLAR_CORE_VERSION, type PasskeyCeremony, type PasskeyMode, type PasskeySigner, type PaymentInstructions, type PollarAdapter, type PollarAdapters, type PollarApiClient, type PollarApplicationConfigContent, type PollarApplicationConfigResponse, PollarClient, type PollarClientConfig, PollarFlowError, type PollarLogger, type PollarLoginOptions, type PollarPersistedSession, type PollarUserProfile, type PublicEcJwk, type RampDirection, type RampQuote, type RampTxStatus, type RampsOfframpBody, type RampsOfframpResponse, type RampsOnrampBody, type RampsOnrampResponse, type RampsQuoteQuery, type RampsQuoteResponse, type RampsTransactionResponse, type RulePeriod, type SessionInfo, type SessionsState, type SignAuthEntryOptions, type SignAuthEntryResponse, type SignOutcome, type SignTransactionOptions, type SignTransactionResponse, type StellarBalance, StellarClient, type StellarClientConfig, type StellarNetwork, Storage, type SubmitOutcome, type TransactionState, type TrustlineOutcome, type TxBuildBody, type TxBuildContent, type TxBuildResponse, type TxBuildSignSubmitBody, type TxBuildSignSubmitContent, type TxBuildSignSubmitResponse, type TxErrorPhase, type TxHistoryContent, type TxHistoryParams, type TxHistoryRecord, type TxHistoryState, type TxSignAndSendBody, type TxSignBody, type TxSignContent, type TxSignResponse, type TxSignSendResponse, type TxSubmitSignedBody, type WalletAdapter, type WalletAdapterResolver, type WalletAssetsContent, type WalletBalanceContent, type WalletBalanceRecord, type WalletBalanceState, type WalletId, WalletType, WebCryptoKeyManager, buildProof, canonicalEcJwk, claimDistributionRule, computeJwkThumbprint, createLocalStorageAdapter, createLogger, createMemoryAdapter, createOffRamp, createOnRamp, defaultKeyManager, defaultStorage, getKycProviders, getKycStatus, getRampTransaction, getRampsQuote, isValidSession, listDistributionRules, normalizeHtu, pollKycStatus, pollRampTransaction, type paths as pollarPaths, resolveKyc, startKyc };
+export { AUTH_ERROR_CODES, type AdapterFn, AlbedoAdapter, type AuthErrorCode, type AuthOpenContext, type AuthProviderContext, type AuthState, type AuthUrlOpener, type BuildOutcome, type BuildProofArgs, type ConnectWalletResponse, type DistributionClaimBody, type DistributionClaimContent, type DistributionRule, type DistributionRulesState, type EnabledAssetRecord, type EnabledAssetsState, FreighterAdapter, type KeyManager, type KycFlow, type KycLevel, type KycProvider, type KycStartBody, type KycStartResponse, type KycStatus, type LocalStorageAdapterOptions, type LogLevel, type NetworkState, OnStorageDegrade, POLLAR_CORE_VERSION, type PasskeyCeremony, type PasskeyMode, type PasskeySigner, type PaymentInstructions, type PollarAdapter, type PollarAdapters, type PollarApiClient, type PollarApplicationConfigContent, type PollarApplicationConfigResponse, type PollarAuthMethod, type PollarAuthProvider, PollarClient, type PollarClientConfig, PollarFlowError, type PollarLogger, type PollarLoginOptions, type PollarPersistedSession, type PollarUserProfile, type PublicEcJwk, type RampDirection, type RampQuote, type RampTxStatus, type RampsOfframpBody, type RampsOfframpResponse, type RampsOnrampBody, type RampsOnrampResponse, type RampsQuoteQuery, type RampsQuoteResponse, type RampsTransactionResponse, type RulePeriod, type SessionInfo, type SessionsState, type SignAuthEntryOptions, type SignAuthEntryOutcome, type SignAuthEntryResponse, type SignOutcome, type SignTransactionOptions, type SignTransactionResponse, type StellarBalance, StellarClient, type StellarClientConfig, type StellarNetwork, Storage, type SubmitOutcome, type TransactionState, type TrustlineOutcome, type TxBuildBody, type TxBuildContent, type TxBuildResponse, type TxBuildSignSubmitBody, type TxBuildSignSubmitContent, type TxBuildSignSubmitResponse, type TxErrorPhase, type TxHistoryContent, type TxHistoryParams, type TxHistoryRecord, type TxHistoryState, type TxSignAndSendBody, type TxSignBody, type TxSignContent, type TxSignResponse, type TxSignSendResponse, type TxSubmitSignedBody, type WalletAdapter, type WalletAdapterResolver, type WalletAssetsContent, type WalletBalanceContent, type WalletBalanceRecord, type WalletBalanceState, type WalletId, type WalletInfo, WalletType, WebCryptoKeyManager, buildProof, canonicalEcJwk, claimDistributionRule, computeJwkThumbprint, createLocalStorageAdapter, createLogger, createMemoryAdapter, createOffRamp, createOnRamp, defaultKeyManager, defaultStorage, getKycProviders, getKycStatus, getRampTransaction, getRampsQuote, isValidSession, listDistributionRules, normalizeHtu, pollKycStatus, pollRampTransaction, type paths as pollarPaths, resolveKyc, startKyc };