@provablehq/sdk 0.9.15-enc → 0.9.15-experimental

package/dist/testnet/models/provingResponse.d.ts

@@ -1,51 +1,5 @@
-import { TransactionJSON } from "./transaction/transactionJSON.js";
-/** HTTP status and optional message from snarkOS broadcast (Accepted/Rejected variants). */
-export interface BroadcastResponse {
-    status_code: bigint | number;
-    message?: string;
-}
-/** Result of the optional broadcast step. Discriminated by `status`. */
-export type BroadcastResult = {
-    status: "Accepted";
-    status_code: bigint | number;
-    message?: string;
-} | {
-    status: "Rejected";
-    status_code: bigint | number;
-    message?: string;
-} | {
-    status: "Failed";
-    message: string;
-} | {
-    status: "Skipped";
-};
-/** Success response body for POST /prove (HTTP 200). */
+import { TransactionJSON } from "./transaction/transactionJSON";
 export interface ProvingResponse {
     transaction: TransactionJSON;
-    broadcast_result: BroadcastResult;
-}
-/** Error response body for POST /prove (HTTP 400, 500, 503). Same shape for all error cases. */
-export interface ProveApiErrorBody {
-    message: string;
-}
-/** Error thrown on prove API failure; `status` is set for retry logic (e.g. retryWithBackoff checks error.status >= 500). */
-export interface ProvingRequestError extends Error {
-    status?: bigint | number;
-}
-/** Success variant of a proving request result. */
-export interface ProvingSuccess {
-    ok: true;
-    data: ProvingResponse;
-}
-/** Failure variant of a proving request result (HTTP 400, 500, 503). */
-export interface ProvingFailure {
-    ok: false;
-    status: bigint | number;
-    error: ProveApiErrorBody;
+    broadcast?: boolean;
 }
-/** Result of a proving request. Type used to give callers the ability to self-handle errors. */
-export type ProvingResult = ProvingSuccess | ProvingFailure;
-/** Type guard: value is a ProvingResponse. */
-export declare function isProvingResponse(value: unknown): value is ProvingResponse;
-/** Type guard: value is a ProveApiErrorBody. */
-export declare function isProveApiErrorBody(value: unknown): value is ProveApiErrorBody;

package/dist/testnet/network-client.d.ts

@@ -3,7 +3,7 @@ import { BlockJSON } from "./models/blockJSON.js";
 import { TransactionJSON } from "./models/transaction/transactionJSON.js";
 import { Address, Plaintext, Program, ProvingRequest, RecordPlaintext, PrivateKey, Transaction } from "./wasm.js";
 import { ConfirmedTransactionJSON } from "./models/confirmed_transaction.js";
-import { ProvingResponse, ProvingResult } from "./models/provingResponse.js";
+import { ProvingResponse } from "./models/provingResponse.js";
 type ProgramImports = {
     [key: string]: string | Program;
 };
@@ -11,8 +11,6 @@ interface AleoNetworkClientOptions {
     headers?: {
         [key: string]: string;
     };
-    proverUri?: string;
-    recordScannerUri?: string;
 }
 /**
  * Interface for the JWT data.
@@ -39,7 +37,6 @@ interface DelegatedProvingParams {
     apiKey?: string;
     consumerId?: string;
     jwtData?: JWTData;
-    dpsPrivacy?: boolean;
 }
 /**
  * Client library that encapsulates REST calls to publicly exposed endpoints of Aleo nodes. The methods provided in this
@@ -70,8 +67,6 @@ declare class AleoNetworkClient {
     apiKey?: string;
     consumerId?: string;
     jwtData?: JWTData;
-    proverUri?: string;
-    recordScannerUri?: string;
     constructor(host: string, options?: AleoNetworkClientOptions);
     /**
      * Set an account to use in networkClient calls
@@ -107,36 +102,6 @@ declare class AleoNetworkClient {
      * networkClient.setHost("http://api.explorer.provable.com/v1");
      */
     setHost(host: string): void;
-    /**
-     * Set a new uri for a remote prover.
-     *
-     * @param {string} proverUri The uri of the remote prover.
-     *
-     * @example
-     * import { AleoNetworkClient } from "@provablehq/sdk/mainnet.js";
-     *
-     * // Create a networkClient that connects to the provable explorer api.
-     * const networkClient = new AleoNetworkClient("http://api.explorer.provable.com/v1", undefined);
-     *
-     * // Set the prover uri.
-     * networkClient.setProverUri("https://prover.provable.prove");
-     */
-    setProverUri(proverUri: string): void;
-    /**
-     * Set a new uri for a remote record scanner.
-     *
-     * @param {string} recordScannerUri The uri of the remote record scanner.
-     *
-     * @example
-     * import { AleoNetworkClient } from "@provablehq/sdk/mainnet.js";
-     *
-     * // Create a networkClient that connects to the provable explorer api.
-     * const networkClient = new AleoNetworkClient("http://api.explorer.provable.com/v1", undefined);
-     *
-     * // Set the record scanner uri.
-     * networkClient.setRecordScannerUri("https://scanner.provable.scan");
-     */
-    setRecordScannerUri(recordScannerUri: string): void;
     /**
      * Set verbose errors to true or false for the `AleoNetworkClient`. When set to true, if `submitTransaction` fails, the failure responses will report descriptive information as to why the transaction failed.
      *
@@ -797,23 +762,12 @@ declare class AleoNetworkClient {
      */
     private refreshJwt;
     /**
-     * Parses a /prove or /prove/encrypted response. Returns a result object (never throws for 200/400/500/503).
-     */
-    private handleProvingResponse;
-    /**
-     * Submit a `ProvingRequest` to a remote proving service for delegated proving. If the broadcast flag of the `ProvingRequest` is set to `true` the remote service will attempt to broadcast the result `Transaction` on behalf of the requestor. Throws on HTTP 400, 500, 503 (and retries on 500/503). Callers should {@link submitProvingRequestSafe} to handle proving request failures without throwing.
+     * Submit a `ProvingRequest` to a remote proving service for delegated proving. If the broadcast flag of the `ProvingRequest` is set to `true` the remote service will attempt to broadcast the result `Transaction` on behalf of the requestor.
      *
      * @param {DelegatedProvingParams} options - The optional parameters required to submit a proving request.
      * @returns {Promise<ProvingResponse>} The ProvingResponse containing the transaction result and the result of the broadcast if the `broadcast` flag was set to `true`.
      */
     submitProvingRequest(options: DelegatedProvingParams): Promise<ProvingResponse>;
-    /**
-     * Submit a proving request and return a result object instead of throwing. This method is usable when callers want to handle HTTP status (400, 500, 503) yourself. Retries on 500/503 and returns on 200 or 400.
-     *
-     * @param {DelegatedProvingParams} options - The optional parameters required to submit a proving request.
-     * @returns {Promise<ProvingResult>} `{ ok: true, data }` on success (200), or `{ ok: false, status, error }` on 400/500/503. Check `result.ok` and then either `result.data` or `result.status` / `result.error.message`.
-     */
-    submitProvingRequestSafe(options: DelegatedProvingParams): Promise<ProvingResult>;
     /**
      * Await a submitted transaction to be confirmed or rejected on the Aleo network.
      *

package/dist/testnet/node.js

@@ -1,5 +1,5 @@
 import './node-polyfill.js';
-export { Account, AleoKeyProvider, AleoKeyProviderParams, AleoNetworkClient, BlockHeightSearch, CREDITS_PROGRAM_KEYS, KEY_STORE, NetworkRecordProvider, OfflineKeyProvider, OfflineSearchParams, PRIVATE_TO_PUBLIC_TRANSFER, PRIVATE_TRANSFER, PRIVATE_TRANSFER_TYPES, PUBLIC_TO_PRIVATE_TRANSFER, PUBLIC_TRANSFER, PUBLIC_TRANSFER_AS_SIGNER, ProgramManager, RECORD_DOMAIN, RecordScanner, SealanceMerkleTree, VALID_TRANSFER_TYPES, encryptAuthorization, encryptProvingRequest, encryptRegistrationRequest, encryptViewKey, initializeWasm, isProveApiErrorBody, isProvingResponse, logAndThrow } from './browser.js';
+export { Account, AleoKeyProvider, AleoKeyProviderParams, AleoNetworkClient, BlockHeightSearch, CREDITS_PROGRAM_KEYS, KEY_STORE, NetworkRecordProvider, OfflineKeyProvider, OfflineSearchParams, PRIVATE_TO_PUBLIC_TRANSFER, PRIVATE_TRANSFER, PRIVATE_TRANSFER_TYPES, PUBLIC_TO_PRIVATE_TRANSFER, PUBLIC_TRANSFER, PUBLIC_TRANSFER_AS_SIGNER, ProgramManager, RECORD_DOMAIN, RecordScanner, SealanceMerkleTree, VALID_TRANSFER_TYPES, initializeWasm, logAndThrow } from './browser.js';
 export { Address, Authorization, BHP1024, BHP256, BHP512, BHP768, Boolean, Ciphertext, ComputeKey, EncryptionToolkit, ExecutionRequest, ExecutionResponse, Field, Execution as FunctionExecution, GraphKey, Group, I128, I16, I32, I64, I8, OfflineQuery, Pedersen128, Pedersen64, Plaintext, Poseidon2, Poseidon4, Poseidon8, PrivateKey, PrivateKeyCiphertext, Program, ProgramManager as ProgramManagerBase, ProvingKey, ProvingRequest, RecordCiphertext, RecordPlaintext, Scalar, Signature, Transaction, Transition, U128, U16, U32, U64, U8, VerifyingKey, ViewKey, getOrInitConsensusVersionTestHeights, initThreadPool, verifyFunctionExecution } from '@provablehq/wasm/testnet.js';
 import 'core-js/proposals/json-parse-with-source.js';
 import 'node:crypto';
@@ -8,6 +8,5 @@ import 'mime/lite';
 import 'xmlhttprequest-ssl';
 import 'node:worker_threads';
 import 'node:os';
-import 'libsodium-wrappers';
 import '@scure/base';
 //# sourceMappingURL=node.js.map

package/dist/testnet/node.js.map

@@ -1 +1 @@
-{"version":3,"file":"node.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;"}
+{"version":3,"file":"node.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;"}

package/dist/testnet/record-scanner.d.ts

@@ -1,29 +1,17 @@
 import { EncryptedRecord } from "./models/record-provider/encryptedRecord";
-import { CryptoBoxPubKey } from "./models/cryptoBoxPubkey.js";
 import { OwnedFilter } from "./models/record-scanner/ownedFilter";
 import { OwnedRecord } from "./models/record-provider/ownedRecord";
 import { RecordProvider } from "./record-provider";
 import { Field, ViewKey } from "./wasm";
 import { RecordsFilter } from "./models/record-scanner/recordsFilter";
-import { RegisterResult } from "./models/record-scanner/registrationResult.js";
+import { RegistrationResponse } from "./models/record-scanner/registrationResponse";
 import { StatusResponse } from "./models/record-scanner/statusResponse";
-/**
- * JWT data for optional authentication with the record scanning service (e.g. Provable API).
- */
-export interface RecordScannerJWTData {
-    jwt: string;
-    expiration: number;
-}
 type RecordScannerOptions = {
     url: string;
     apiKey?: string | {
         header: string;
         value: string;
     };
-    /** Required for JWT refresh when using authenticated record scanner (e.g. Provable API). */
-    consumerId?: string;
-    /** Optional JWT for auth. If omitted and apiKey + consumerId are set, JWT is refreshed when needed. */
-    jwtData?: RecordScannerJWTData;
 };
 /**
  * RecordScanner is a RecordProvider implementation that uses the record scanner service to find records.
@@ -34,8 +22,7 @@ type RecordScannerOptions = {
  * const recordScanner = new RecordScanner({ url: "https://record-scanner.aleo.org" });
  * recordScanner.setAccount(account);
  * recordScanner.setApiKey("your-api-key");
- * const result = await recordScanner.register(viewKey, 0);
- * if (result.ok) { const uuid = result.data.uuid; }
+ * const uuid = await recordScanner.register(0);
  *
  * const filter = {
  *     uuid,
@@ -71,8 +58,6 @@ declare class RecordScanner implements RecordProvider {
     readonly url: string;
     private apiKey?;
     private uuid?;
-    private consumerId?;
-    private jwtData?;
     constructor(options: RecordScannerOptions);
     /**
      * Set the API key to use for the record scanner.
@@ -83,22 +68,6 @@ declare class RecordScanner implements RecordProvider {
         header: string;
         value: string;
     }): Promise<void>;
-    /**
-     * Set the consumer ID used for JWT refresh when using authenticated record scanner (e.g. Provable API).
-     */
-    setConsumerId(consumerId: string): Promise<void>;
-    /**
-     * Set JWT data for authentication. Optional; when not set, JWT can be refreshed from apiKey + consumerId if provided.
-     */
-    setJwtData(jwtData: RecordScannerJWTData | undefined): Promise<void>;
-    /**
-     * Refreshes the JWT by making a POST request to /jwts/{consumer_id}. Used when authentication is required.
-     */
-    private refreshJwt;
-    /**
-     * Returns auth headers (e.g. Authorization with JWT). Refreshes JWT if expired and apiKey + consumerId are set. Empty when auth is not configured.
-     */
-    private getAuthHeaders;
     /**
      * Set the UUID to use for the record scanner.
      *
@@ -106,28 +75,12 @@ declare class RecordScanner implements RecordProvider {
      */
     setUuid(uuidOrViewKey: Field | ViewKey): Promise<void>;
     /**
-     * Register the account with the record scanner service (unencrypted POST /register). Does not throw if a valid error response from the record scanner is received; returns a result object instead.
-     *
-     * @param {ViewKey} viewKey The view key to register.
-     * @param {number} startBlock The block height to start scanning from.
-     * @returns {Promise<RegisterResult>} `{ ok: true, data }` on success, or `{ ok: false, status, error }` on failure.
-     */
-    register(viewKey: ViewKey, startBlock: number): Promise<RegisterResult>;
-    /**
-     * Fetches an ephemeral public key from the record scanner service for use with registerEncrypted.
-     * Follows the same pattern as the delegated proving service /pubkey endpoint.
-     *
-     * @returns {Promise<CryptoBoxPubKey>} The service's ephemeral public key and key_id.
-     */
-    getPubkey(): Promise<CryptoBoxPubKey>;
-    /**
-     * Registers the account with the record scanner service using the encrypted flow: 1. fetches an ephemeral public key from /pubkey - 2. encrypts the registration request (view key + start block) - 3. POSTs to /register/encrypted. Does not HTTP error on a proper error response from the record scanner; returns a result object instead.
+     * Register the account with the record scanner service.
      *
-     * @param {ViewKey} viewKey The view key to register.
      * @param {number} startBlock The block height to start scanning from.
-     * @returns {Promise<RegisterResult>} `{ ok: true, data }` on success, or `{ ok: false, status, error }` on failure.
+     * @returns {Promise<RegistrationResponse>} The response from the record scanner service.
      */
-    registerEncrypted(viewKey: ViewKey, startBlock: number): Promise<RegisterResult>;
+    register(viewKey: ViewKey, startBlock: number): Promise<RegistrationResponse>;
     /**
      * Get encrypted records from the record scanner service.
      *
@@ -188,7 +141,6 @@ declare class RecordScanner implements RecordProvider {
     findCreditsRecords(microcreditAmounts: number[], searchParameters: OwnedFilter): Promise<OwnedRecord[]>;
     /**
      * Wrapper function to make a request to the record scanner service and handle any errors.
-     * Optionally adds JWT Authorization header when consumerId/jwtData (or apiKey+consumerId) are configured.
      *
      * @param {Request} req The request to make.
      * @returns {Promise<Response>} The response.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@provablehq/sdk",
-  "version": "0.9.15-enc",
+  "version": "0.9.15-experimental",
   "description": "A Software Development Kit (SDK) for Zero-Knowledge Transactions",
   "collaborators": [
     "The Provable Team"
@@ -51,12 +51,11 @@
   },
   "homepage": "https://github.com/ProvableHQ/sdk#readme",
   "dependencies": {
-    "@provablehq/wasm": "0.9.15-enc",
+    "@provablehq/wasm": "^0.9.15-experimental",
     "@scure/base": "^2.0.0",
     "comlink": "^4.4.2",
     "core-js": "^3.40.0",
     "mime": "^4.0.6",
-    "libsodium-wrappers": "^0.8.2",
     "xmlhttprequest-ssl": "^4.0.0"
   },
   "devDependencies": {

package/dist/mainnet/models/cryptoBoxPubkey.d.ts

@@ -1,4 +0,0 @@
-export interface CryptoBoxPubKey {
-    key_id: string;
-    public_key: string;
-}

package/dist/mainnet/models/encryptedProvingRequest.d.ts

@@ -1,4 +0,0 @@
-export interface EncryptedProvingRequest {
-    key_id: string;
-    ciphertext: string;
-}

package/dist/mainnet/models/record-scanner/encryptedRegistrationRequest.d.ts

@@ -1,8 +0,0 @@
-/**
- * Payload for the /register/encrypted record scanner endpoint.
- * Contains the ephemeral key id and the sealed ciphertext of the registration request.
- */
-export interface EncryptedRegistrationRequest {
-    key_id: string;
-    ciphertext: string;
-}

package/dist/mainnet/models/record-scanner/registrationResult.d.ts

@@ -1,26 +0,0 @@
-import type { RegistrationResponse } from "./registrationResponse.js";
-/**
- * Error thrown when a record scanner request fails (e.g. /register, /register/encrypted).
- * Includes HTTP status so callers can handle 422 vs 500 etc.
- */
-export declare class RecordScannerRequestError extends Error {
-    readonly status: number;
-    constructor(message: string, status: number);
-}
-/** Error payload for registration failure result (/register and /register/encrypted). */
-export interface RegistrationErrorBody {
-    message: string;
-}
-/** Success variant of registration result. */
-export interface RegisterSuccess {
-    ok: true;
-    data: RegistrationResponse;
-}
-/** Failure variant of registration result. */
-export interface RegisterFailure {
-    ok: false;
-    status: number;
-    error: RegistrationErrorBody;
-}
-/** Result of register() and registerEncrypted(); never throws on HTTP error. */
-export type RegisterResult = RegisterSuccess | RegisterFailure;

package/dist/mainnet/security.d.ts

@@ -1,38 +0,0 @@
-import { ViewKey, Authorization, ProvingRequest } from "@provablehq/wasm";
-/**
- * Encrypt an authorization with a libsodium cryptobox public key.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {Authorization} authorization the authorization to encrypt.
- *
- * @returns {string} the encrypted authorization in RFC 4648 standard Base64.
- */
-export declare function encryptAuthorization(publicKey: string, authorization: Authorization): string;
-/**
- * Encrypt a ProvingRequest with a libsodium cryptobox public key.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {Authorization} provingRequest the ProvingRequest to encrypt.
- *
- * @returns {string} the encrypted ProvingRequest in RFC 4648 standard Base64.
- */
-export declare function encryptProvingRequest(publicKey: string, provingRequest: ProvingRequest): string;
-/**
- * Encrypt a view key with a libsodium cryptobox public key.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {ViewKey} viewKey the view key to encrypt.
- *
- * @returns {string} the encrypted view key in RFC 4648 standard Base64.
- */
-export declare function encryptViewKey(publicKey: string, viewKey: ViewKey): string;
-/**
- * Encrypt a record scanner registration request.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {ViewKey} viewKey the view key to encrypt.
- * @param {number} start the start height of the registration request.
- *
- * @returns {string} the encrypted view key in RFC 4648 standard Base64.
- */
-export declare function encryptRegistrationRequest(publicKey: string, viewKey: ViewKey, start: number): string;

package/dist/testnet/models/cryptoBoxPubkey.d.ts

@@ -1,4 +0,0 @@
-export interface CryptoBoxPubKey {
-    key_id: string;
-    public_key: string;
-}

package/dist/testnet/models/encryptedProvingRequest.d.ts

@@ -1,4 +0,0 @@
-export interface EncryptedProvingRequest {
-    key_id: string;
-    ciphertext: string;
-}

package/dist/testnet/models/record-scanner/encryptedRegistrationRequest.d.ts

@@ -1,8 +0,0 @@
-/**
- * Payload for the /register/encrypted record scanner endpoint.
- * Contains the ephemeral key id and the sealed ciphertext of the registration request.
- */
-export interface EncryptedRegistrationRequest {
-    key_id: string;
-    ciphertext: string;
-}

package/dist/testnet/models/record-scanner/registrationResult.d.ts

@@ -1,26 +0,0 @@
-import type { RegistrationResponse } from "./registrationResponse.js";
-/**
- * Error thrown when a record scanner request fails (e.g. /register, /register/encrypted).
- * Includes HTTP status so callers can handle 422 vs 500 etc.
- */
-export declare class RecordScannerRequestError extends Error {
-    readonly status: number;
-    constructor(message: string, status: number);
-}
-/** Error payload for registration failure result (/register and /register/encrypted). */
-export interface RegistrationErrorBody {
-    message: string;
-}
-/** Success variant of registration result. */
-export interface RegisterSuccess {
-    ok: true;
-    data: RegistrationResponse;
-}
-/** Failure variant of registration result. */
-export interface RegisterFailure {
-    ok: false;
-    status: number;
-    error: RegistrationErrorBody;
-}
-/** Result of register() and registerEncrypted(); never throws on HTTP error. */
-export type RegisterResult = RegisterSuccess | RegisterFailure;

package/dist/testnet/security.d.ts

@@ -1,38 +0,0 @@
-import { ViewKey, Authorization, ProvingRequest } from "@provablehq/wasm";
-/**
- * Encrypt an authorization with a libsodium cryptobox public key.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {Authorization} authorization the authorization to encrypt.
- *
- * @returns {string} the encrypted authorization in RFC 4648 standard Base64.
- */
-export declare function encryptAuthorization(publicKey: string, authorization: Authorization): string;
-/**
- * Encrypt a ProvingRequest with a libsodium cryptobox public key.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {Authorization} provingRequest the ProvingRequest to encrypt.
- *
- * @returns {string} the encrypted ProvingRequest in RFC 4648 standard Base64.
- */
-export declare function encryptProvingRequest(publicKey: string, provingRequest: ProvingRequest): string;
-/**
- * Encrypt a view key with a libsodium cryptobox public key.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {ViewKey} viewKey the view key to encrypt.
- *
- * @returns {string} the encrypted view key in RFC 4648 standard Base64.
- */
-export declare function encryptViewKey(publicKey: string, viewKey: ViewKey): string;
-/**
- * Encrypt a record scanner registration request.
- *
- * @param {string} publicKey The cryptobox X25519 public key to encrypt with (encoded in RFC 4648 standard Base64).
- * @param {ViewKey} viewKey the view key to encrypt.
- * @param {number} start the start height of the registration request.
- *
- * @returns {string} the encrypted view key in RFC 4648 standard Base64.
- */
-export declare function encryptRegistrationRequest(publicKey: string, viewKey: ViewKey, start: number): string;