npm - @pooflabs/web - Versions diffs - 0.0.77 → 0.0.79-rc.1 - Mend

@pooflabs/web 0.0.77 → 0.0.79-rc.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (44) hide show

package/dist/{index-DDXzCx2W.js → index-D9BY44i-.js} RENAMED Viewed

@@ -1,8 +1,8 @@
 'use strict';
-var index_native = require('./index.native-CKd2b3_F.js');
+var index_native = require('./index.native-DtxPWD00.js');
 var bufferExports = index_native.requireBuffer();
 exports.bufferExports = bufferExports;
-//# sourceMappingURL=index-DDXzCx2W.js.map
+//# sourceMappingURL=index-D9BY44i-.js.map

package/dist/index-D9BY44i-.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index-D9BY44i-.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;"}

package/dist/{index-DQVpAl5t.js → index-DwU9hjtr.js} RENAMED Viewed

@@ -15296,6 +15296,32 @@ async function confirmAndCheckTransaction(connection, signature) {
 }
 const VALID_PROVIDERS = ['injected', 'google', 'apple', 'deeplink', 'phantom'];
+// When the dApp runs inside an iframe whose parent origin is different from
+// (or can't inject into) the child frame — notably Phantom's Android in-app
+// browser, which injects window.phantom.solana only into the top frame —
+// the Phantom deeplink path tries to navigate phantom.app/ul/browse/... from
+// inside the iframe. Android App Links only hand off on top-level navigations,
+// and phantom.app refuses to be framed (X-Frame-Options: DENY), so the connect
+// fails. To get back to a working context we navigate the top window to the
+// dApp's own URL, dropping the iframe shell. Once top-level, the wallet
+// browser injects its provider and the normal injected flow succeeds.
+function isInIframe() {
+    if (typeof window === 'undefined')
+        return false;
+    try {
+        return window.top !== window.self;
+    }
+    catch (_a) {
+        // Cross-origin access to window.top throws — if we can't read it, we're iframed.
+        return true;
+    }
+}
+function shouldBreakOutOfIframe(provider) {
+    // Only break out when the user chose the deeplink provider. The modal only
+    // offers deeplink on mobile when no injected Phantom is present, so this is
+    // exactly the iframe-without-provider case we need to escape.
+    return provider === 'deeplink' && isInIframe();
+}
 // Dynamically import React and Phantom SDK - only when needed
 let React$1;
 let ReactDOM$1;
@@ -15316,7 +15342,7 @@ async function loadDependencies() {
         const [reactModule, reactDomModule, phantomModule] = await Promise.all([
             import('react'),
             import('react-dom/client'),
-            Promise.resolve().then(function () { return require('./index-KUU0aVzP.js'); })
+            Promise.resolve().then(function () { return require('./index-zS_Y-wbi.js'); })
         ]);
         // Extract default export from ESM module namespace
         // Dynamic import() returns { default: Module, ...exports }, not the module directly
@@ -15664,6 +15690,27 @@ class PhantomWalletProvider {
             const handleWalletClick = async (options) => {
                 walletClickedRef.current = true;
                 setShowWalletModal(false);
+                // If we're in an iframe and the user chose deeplink, Phantom's SDK
+                // will navigate *this* iframe to phantom.app/ul/browse/..., which
+                // Android App Links won't intercept and phantom.app won't let be
+                // framed. Escape to top-level first so the wallet browser can
+                // inject its provider and the normal injected flow takes over
+                // on the user's next connect tap.
+                if (shouldBreakOutOfIframe(options === null || options === void 0 ? void 0 : options.provider)) {
+                    try {
+                        // Same-site navigation (*.poof.new → *.poof.new) plus the
+                        // iframe's allow-top-navigation-by-user-activation sandbox
+                        // token make this go through.
+                        window.top.location.href = window.location.href;
+                        return;
+                    }
+                    catch (_a) {
+                        // Top-nav blocked (no sandbox grant, cross-origin top, etc.).
+                        // Fall through to the normal deeplink path — at least the
+                        // user gets the original broken-ish behavior instead of a
+                        // silently-dead button.
+                    }
+                }
                 try {
                     if (options === null || options === void 0 ? void 0 : options.walletId) {
                         await connect({ provider: 'injected', walletId: options.walletId });
@@ -20792,7 +20839,7 @@ async function registerMobileWalletAdapter(config) {
     if (typeof window === 'undefined')
         return;
     try {
-        const walletStandardMobile = await Promise.resolve().then(function () { return require('./index.browser-Di1_YZpi.js'); });
+        const walletStandardMobile = await Promise.resolve().then(function () { return require('./index.browser-Cpi4W_1r.js'); });
         const registerMwa = walletStandardMobile.registerMwa || ((_a = walletStandardMobile.default) === null || _a === void 0 ? void 0 : _a.registerMwa);
         if (!registerMwa) {
             console.warn('[SolanaMobileWallet] registerMwa not found in @solana-mobile/wallet-standard-mobile');
@@ -21757,4 +21804,4 @@ exports.signSessionCreateMessage = signSessionCreateMessage;
 exports.signTransaction = signTransaction;
 exports.subscribe = subscribe;
 exports.useAuth = useAuth;
-//# sourceMappingURL=index-DQVpAl5t.js.map
+//# sourceMappingURL=index-DwU9hjtr.js.map