npm - @snaha/swarm-id - Versions diffs - 0.0.1 - Mend

@snaha/swarm-id 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (223) hide show

package/README.md +431 -0
package/dist/chunk/bmt.d.ts +17 -0
package/dist/chunk/bmt.d.ts.map +1 -0
package/dist/chunk/cac.d.ts +18 -0
package/dist/chunk/cac.d.ts.map +1 -0
package/dist/chunk/constants.d.ts +10 -0
package/dist/chunk/constants.d.ts.map +1 -0
package/dist/chunk/encrypted-cac.d.ts +48 -0
package/dist/chunk/encrypted-cac.d.ts.map +1 -0
package/dist/chunk/encryption.d.ts +86 -0
package/dist/chunk/encryption.d.ts.map +1 -0
package/dist/chunk/index.d.ts +6 -0
package/dist/chunk/index.d.ts.map +1 -0
package/dist/index.d.ts +46 -0
package/dist/index.d.ts.map +1 -0
package/dist/proxy/act/act.d.ts +78 -0
package/dist/proxy/act/act.d.ts.map +1 -0
package/dist/proxy/act/crypto.d.ts +44 -0
package/dist/proxy/act/crypto.d.ts.map +1 -0
package/dist/proxy/act/grantee-list.d.ts +82 -0
package/dist/proxy/act/grantee-list.d.ts.map +1 -0
package/dist/proxy/act/history.d.ts +183 -0
package/dist/proxy/act/history.d.ts.map +1 -0
package/dist/proxy/act/index.d.ts +104 -0
package/dist/proxy/act/index.d.ts.map +1 -0
package/dist/proxy/chunking-encrypted.d.ts +14 -0
package/dist/proxy/chunking-encrypted.d.ts.map +1 -0
package/dist/proxy/chunking.d.ts +15 -0
package/dist/proxy/chunking.d.ts.map +1 -0
package/dist/proxy/download-data.d.ts +16 -0
package/dist/proxy/download-data.d.ts.map +1 -0
package/dist/proxy/feed-manifest.d.ts +62 -0
package/dist/proxy/feed-manifest.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/async-finder.d.ts +77 -0
package/dist/proxy/feeds/epochs/async-finder.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/epoch.d.ts +88 -0
package/dist/proxy/feeds/epochs/epoch.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/finder.d.ts +67 -0
package/dist/proxy/feeds/epochs/finder.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/index.d.ts +35 -0
package/dist/proxy/feeds/epochs/index.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/test-utils.d.ts +93 -0
package/dist/proxy/feeds/epochs/test-utils.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/types.d.ts +109 -0
package/dist/proxy/feeds/epochs/types.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/updater.d.ts +68 -0
package/dist/proxy/feeds/epochs/updater.d.ts.map +1 -0
package/dist/proxy/feeds/epochs/utils.d.ts +22 -0
package/dist/proxy/feeds/epochs/utils.d.ts.map +1 -0
package/dist/proxy/feeds/index.d.ts +5 -0
package/dist/proxy/feeds/index.d.ts.map +1 -0
package/dist/proxy/feeds/sequence/async-finder.d.ts +14 -0
package/dist/proxy/feeds/sequence/async-finder.d.ts.map +1 -0
package/dist/proxy/feeds/sequence/finder.d.ts +17 -0
package/dist/proxy/feeds/sequence/finder.d.ts.map +1 -0
package/dist/proxy/feeds/sequence/index.d.ts +23 -0
package/dist/proxy/feeds/sequence/index.d.ts.map +1 -0
package/dist/proxy/feeds/sequence/types.d.ts +80 -0
package/dist/proxy/feeds/sequence/types.d.ts.map +1 -0
package/dist/proxy/feeds/sequence/updater.d.ts +26 -0
package/dist/proxy/feeds/sequence/updater.d.ts.map +1 -0
package/dist/proxy/index.d.ts +6 -0
package/dist/proxy/index.d.ts.map +1 -0
package/dist/proxy/manifest-builder.d.ts +183 -0
package/dist/proxy/manifest-builder.d.ts.map +1 -0
package/dist/proxy/mantaray-encrypted.d.ts +27 -0
package/dist/proxy/mantaray-encrypted.d.ts.map +1 -0
package/dist/proxy/mantaray.d.ts +26 -0
package/dist/proxy/mantaray.d.ts.map +1 -0
package/dist/proxy/types.d.ts +29 -0
package/dist/proxy/types.d.ts.map +1 -0
package/dist/proxy/upload-data.d.ts +17 -0
package/dist/proxy/upload-data.d.ts.map +1 -0
package/dist/proxy/upload-encrypted-data.d.ts +103 -0
package/dist/proxy/upload-encrypted-data.d.ts.map +1 -0
package/dist/schemas.d.ts +240 -0
package/dist/schemas.d.ts.map +1 -0
package/dist/storage/debounced-uploader.d.ts +62 -0
package/dist/storage/debounced-uploader.d.ts.map +1 -0
package/dist/storage/utilization-store.d.ts +108 -0
package/dist/storage/utilization-store.d.ts.map +1 -0
package/dist/swarm-id-auth.d.ts +74 -0
package/dist/swarm-id-auth.d.ts.map +1 -0
package/dist/swarm-id-auth.js +2 -0
package/dist/swarm-id-auth.js.map +1 -0
package/dist/swarm-id-client.d.ts +878 -0
package/dist/swarm-id-client.d.ts.map +1 -0
package/dist/swarm-id-client.js +2 -0
package/dist/swarm-id-client.js.map +1 -0
package/dist/swarm-id-proxy.d.ts +236 -0
package/dist/swarm-id-proxy.d.ts.map +1 -0
package/dist/swarm-id-proxy.js +2 -0
package/dist/swarm-id-proxy.js.map +1 -0
package/dist/swarm-id.esm.js +2 -0
package/dist/swarm-id.esm.js.map +1 -0
package/dist/swarm-id.umd.js +2 -0
package/dist/swarm-id.umd.js.map +1 -0
package/dist/sync/index.d.ts +9 -0
package/dist/sync/index.d.ts.map +1 -0
package/dist/sync/key-derivation.d.ts +25 -0
package/dist/sync/key-derivation.d.ts.map +1 -0
package/dist/sync/restore-account.d.ts +28 -0
package/dist/sync/restore-account.d.ts.map +1 -0
package/dist/sync/serialization.d.ts +16 -0
package/dist/sync/serialization.d.ts.map +1 -0
package/dist/sync/store-interfaces.d.ts +53 -0
package/dist/sync/store-interfaces.d.ts.map +1 -0
package/dist/sync/sync-account.d.ts +44 -0
package/dist/sync/sync-account.d.ts.map +1 -0
package/dist/sync/types.d.ts +13 -0
package/dist/sync/types.d.ts.map +1 -0
package/dist/test-fixtures.d.ts +17 -0
package/dist/test-fixtures.d.ts.map +1 -0
package/dist/types-BD_VkNn0.js +2 -0
package/dist/types-BD_VkNn0.js.map +1 -0
package/dist/types-lJCaT-50.js +2 -0
package/dist/types-lJCaT-50.js.map +1 -0
package/dist/types.d.ts +2157 -0
package/dist/types.d.ts.map +1 -0
package/dist/utils/account-payload.d.ts +94 -0
package/dist/utils/account-payload.d.ts.map +1 -0
package/dist/utils/account-state-snapshot.d.ts +38 -0
package/dist/utils/account-state-snapshot.d.ts.map +1 -0
package/dist/utils/backup-encryption.d.ts +127 -0
package/dist/utils/backup-encryption.d.ts.map +1 -0
package/dist/utils/batch-utilization.d.ts +432 -0
package/dist/utils/batch-utilization.d.ts.map +1 -0
package/dist/utils/constants.d.ts +11 -0
package/dist/utils/constants.d.ts.map +1 -0
package/dist/utils/hex.d.ts +17 -0
package/dist/utils/hex.d.ts.map +1 -0
package/dist/utils/key-derivation.d.ts +92 -0
package/dist/utils/key-derivation.d.ts.map +1 -0
package/dist/utils/storage-managers.d.ts +65 -0
package/dist/utils/storage-managers.d.ts.map +1 -0
package/dist/utils/swarm-id-export.d.ts +24 -0
package/dist/utils/swarm-id-export.d.ts.map +1 -0
package/dist/utils/ttl.d.ts +49 -0
package/dist/utils/ttl.d.ts.map +1 -0
package/dist/utils/url.d.ts +41 -0
package/dist/utils/url.d.ts.map +1 -0
package/dist/utils/versioned-storage.d.ts +131 -0
package/dist/utils/versioned-storage.d.ts.map +1 -0
package/package.json +78 -0
package/src/chunk/bmt.test.ts +217 -0
package/src/chunk/bmt.ts +57 -0
package/src/chunk/cac.test.ts +214 -0
package/src/chunk/cac.ts +65 -0
package/src/chunk/constants.ts +18 -0
package/src/chunk/encrypted-cac.test.ts +385 -0
package/src/chunk/encrypted-cac.ts +131 -0
package/src/chunk/encryption.test.ts +352 -0
package/src/chunk/encryption.ts +300 -0
package/src/chunk/index.ts +47 -0
package/src/index.ts +430 -0
package/src/proxy/act/act.test.ts +278 -0
package/src/proxy/act/act.ts +158 -0
package/src/proxy/act/bee-compat.test.ts +948 -0
package/src/proxy/act/crypto.test.ts +436 -0
package/src/proxy/act/crypto.ts +376 -0
package/src/proxy/act/grantee-list.test.ts +393 -0
package/src/proxy/act/grantee-list.ts +239 -0
package/src/proxy/act/history.test.ts +360 -0
package/src/proxy/act/history.ts +413 -0
package/src/proxy/act/index.test.ts +748 -0
package/src/proxy/act/index.ts +853 -0
package/src/proxy/chunking-encrypted.ts +95 -0
package/src/proxy/chunking.ts +65 -0
package/src/proxy/download-data.ts +448 -0
package/src/proxy/feed-manifest.ts +174 -0
package/src/proxy/feeds/epochs/async-finder.ts +372 -0
package/src/proxy/feeds/epochs/epoch.test.ts +249 -0
package/src/proxy/feeds/epochs/epoch.ts +181 -0
package/src/proxy/feeds/epochs/finder.ts +282 -0
package/src/proxy/feeds/epochs/index.ts +73 -0
package/src/proxy/feeds/epochs/integration.test.ts +1336 -0
package/src/proxy/feeds/epochs/test-utils.ts +274 -0
package/src/proxy/feeds/epochs/types.ts +128 -0
package/src/proxy/feeds/epochs/updater.ts +192 -0
package/src/proxy/feeds/epochs/utils.ts +62 -0
package/src/proxy/feeds/index.ts +5 -0
package/src/proxy/feeds/sequence/async-finder.ts +31 -0
package/src/proxy/feeds/sequence/finder.ts +73 -0
package/src/proxy/feeds/sequence/index.ts +54 -0
package/src/proxy/feeds/sequence/integration.test.ts +966 -0
package/src/proxy/feeds/sequence/types.ts +103 -0
package/src/proxy/feeds/sequence/updater.ts +71 -0
package/src/proxy/index.ts +5 -0
package/src/proxy/manifest-builder.test.ts +427 -0
package/src/proxy/manifest-builder.ts +679 -0
package/src/proxy/mantaray-encrypted.ts +78 -0
package/src/proxy/mantaray.ts +104 -0
package/src/proxy/types.ts +32 -0
package/src/proxy/upload-data.ts +189 -0
package/src/proxy/upload-encrypted-data.ts +658 -0
package/src/schemas.ts +299 -0
package/src/storage/debounced-uploader.ts +192 -0
package/src/storage/utilization-store.ts +397 -0
package/src/swarm-id-client.test.ts +99 -0
package/src/swarm-id-client.ts +3095 -0
package/src/swarm-id-proxy.ts +3891 -0
package/src/sync/index.ts +28 -0
package/src/sync/restore-account.ts +90 -0
package/src/sync/serialization.ts +39 -0
package/src/sync/store-interfaces.ts +62 -0
package/src/sync/sync-account.test.ts +302 -0
package/src/sync/sync-account.ts +396 -0
package/src/sync/types.ts +11 -0
package/src/test-fixtures.ts +109 -0
package/src/types.ts +1651 -0
package/src/utils/account-state-snapshot.test.ts +595 -0
package/src/utils/account-state-snapshot.ts +94 -0
package/src/utils/backup-encryption.test.ts +442 -0
package/src/utils/backup-encryption.ts +352 -0
package/src/utils/batch-utilization.ts +1309 -0
package/src/utils/constants.ts +20 -0
package/src/utils/hex.ts +27 -0
package/src/utils/key-derivation.ts +197 -0
package/src/utils/storage-managers.ts +365 -0
package/src/utils/ttl.ts +129 -0
package/src/utils/url.test.ts +136 -0
package/src/utils/url.ts +71 -0
package/src/utils/versioned-storage.ts +323 -0

package/src/sync/index.ts ADDED Viewed

@@ -0,0 +1,28 @@
+// Public API
+export {
+  // Account-level key derivation
+  deriveAccountBackupKey,
+  deriveAccountSwarmEncryptionKey,
+  backupKeyToPrivateKey,
+} from "../utils/key-derivation"
+export { serializeAccountState, deserializeAccountState } from "./serialization"
+// Sync account
+export { createSyncAccount, ACCOUNT_SYNC_TOPIC_PREFIX } from "./sync-account"
+export type { SyncAccountOptions, SyncAccountFunction } from "./sync-account"
+// Restore account from Swarm
+export { restoreAccountFromSwarm } from "./restore-account"
+export type { RestoreAccountResult } from "./restore-account"
+// Store interfaces
+export type {
+  AccountsStoreInterface,
+  IdentitiesStoreInterface,
+  ConnectedAppsStoreInterface,
+  PostageStampsStoreInterface,
+  StamperOptions,
+  FlushableStamper,
+} from "./store-interfaces"
+export type { SyncResult } from "./types"

package/src/sync/restore-account.ts ADDED Viewed

@@ -0,0 +1,90 @@
+/**
+ * Restore Account from Swarm
+ *
+ * When a passkey auth succeeds but no local account exists (e.g. new device),
+ * this utility derives the keys needed to find and decrypt the account
+ * snapshot stored in Swarm and returns the restored state.
+ */
+import {
+  Bee,
+  PrivateKey,
+  EthAddress,
+  Topic,
+  Reference,
+  type Bytes,
+} from "@ethersphere/bee-js"
+import {
+  deriveAccountSwarmEncryptionKey,
+  deriveSecret,
+} from "../utils/key-derivation"
+import { ACCOUNT_SYNC_TOPIC_PREFIX } from "./sync-account"
+import { AsyncEpochFinder } from "../proxy/feeds/epochs/async-finder"
+import { downloadDataWithChunkAPI } from "../proxy/download-data"
+import { deserializeAccountState } from "./serialization"
+import type { AccountStateSnapshot } from "../utils/account-state-snapshot"
+/**
+ * Result of a successful account restore from Swarm
+ */
+export interface RestoreAccountResult {
+  snapshot: AccountStateSnapshot
+  swarmEncryptionKey: string
+  credentialId: string
+}
+/**
+ * Restore account state from Swarm using passkey authentication result
+ *
+ * @param bee - Bee client instance
+ * @param masterKey - Master key from passkey authentication
+ * @param ethereumAddress - Account ID (EthAddress) from passkey authentication
+ * @param credentialId - Credential ID from passkey authentication
+ * @returns Restored account state, or undefined if no backup found in Swarm
+ */
+export async function restoreAccountFromSwarm(
+  bee: Bee,
+  masterKey: Bytes,
+  ethereumAddress: EthAddress,
+  credentialId: string,
+): Promise<RestoreAccountResult | undefined> {
+  const accountId = ethereumAddress.toHex()
+  // 1. Derive the swarm encryption key from the master key
+  const swarmEncryptionKey = await deriveAccountSwarmEncryptionKey(
+    masterKey.toHex(),
+  )
+  // 2. Derive the backup key (used as feed owner)
+  const backupKeyHex = await deriveSecret(swarmEncryptionKey, "backup-key")
+  const backupKey = new PrivateKey(backupKeyHex)
+  const owner = backupKey.publicKey().address()
+  // 3. Build the feed topic
+  const topic = Topic.fromString(`${ACCOUNT_SYNC_TOPIC_PREFIX}:${accountId}`)
+  // 4. Look up the latest epoch feed entry
+  // Note: feed SOCs are uploaded unencrypted (sync-account.ts doesn't pass
+  // encryptionKey to updater.update()), so the finder must NOT use one either.
+  const finder = new AsyncEpochFinder(bee, topic, owner)
+  const now = BigInt(Math.floor(Date.now() / 1000))
+  const refBytes = await finder.findAt(now)
+  if (!refBytes) {
+    return undefined
+  }
+  // 5. Download and decrypt the account snapshot
+  const reference = new Reference(refBytes)
+  const data = await downloadDataWithChunkAPI(bee, reference.toHex())
+  // 6. Deserialize the snapshot
+  const snapshot = deserializeAccountState(data)
+  return {
+    snapshot,
+    swarmEncryptionKey,
+    credentialId,
+  }
+}

package/src/sync/serialization.ts ADDED Viewed

@@ -0,0 +1,39 @@
+import {
+  serializeAccountStateSnapshot,
+  deserializeAccountStateSnapshot,
+} from "../utils/account-state-snapshot"
+import type { AccountStateSnapshot } from "../utils/account-state-snapshot"
+/**
+ * Serialize account state to JSON bytes
+ *
+ * @param state - Account payload to serialize
+ * @returns JSON encoded as Uint8Array
+ */
+export function serializeAccountState(state: AccountStateSnapshot): Uint8Array {
+  const json = JSON.stringify(serializeAccountStateSnapshot(state))
+  return new TextEncoder().encode(json)
+}
+/**
+ * Deserialize JSON bytes to account payload
+ *
+ * @param data - JSON bytes to deserialize
+ * @returns Account payload
+ */
+export function deserializeAccountState(
+  data: Uint8Array,
+): AccountStateSnapshot {
+  const json = new TextDecoder().decode(data)
+  const parsed = JSON.parse(json)
+  const result = deserializeAccountStateSnapshot(parsed)
+  if (!result.success) {
+    throw new Error(
+      `Failed to deserialize account state: ${result.error.message}`,
+    )
+  }
+  return result.data
+}

package/src/sync/store-interfaces.ts ADDED Viewed

@@ -0,0 +1,62 @@
+/**
+ * Store Interfaces for Sync Coordinator
+ *
+ * These interfaces define the minimal contract that stores must implement
+ * to be used with the sync coordinator. This allows the coordinator to be
+ * used with different store implementations (Svelte stores, plain objects, etc.)
+ */
+import type { EthAddress, BatchId, Stamper } from "@ethersphere/bee-js"
+import type { Account, Identity, ConnectedApp, PostageStamp } from "../schemas"
+/**
+ * Options for creating a stamper with utilization tracking
+ */
+export interface StamperOptions {
+  owner: EthAddress
+  encryptionKey: Uint8Array
+}
+/**
+ * Extended stamper interface with optional flush capability
+ *
+ * Some stampers (like UtilizationAwareStamper) support flushing
+ * dirty bucket state to cache.
+ */
+export interface FlushableStamper extends Stamper {
+  flush?(): Promise<void>
+}
+/**
+ * Interface for accessing account data
+ */
+export interface AccountsStoreInterface {
+  getAccount(id: EthAddress): Account | undefined
+}
+/**
+ * Interface for accessing identity data
+ */
+export interface IdentitiesStoreInterface {
+  getIdentitiesByAccount(accountId: EthAddress): Identity[]
+}
+/**
+ * Interface for accessing connected app data
+ */
+export interface ConnectedAppsStoreInterface {
+  getAppsByIdentityId(identityId: string): ConnectedApp[]
+}
+/**
+ * Interface for accessing and managing postage stamp data
+ */
+export interface PostageStampsStoreInterface {
+  getStamp(batchID: BatchId): PostageStamp | undefined
+  getStampsByAccount(accountId: string): PostageStamp[]
+  getStamper(
+    batchID: BatchId,
+    options?: StamperOptions,
+  ): Promise<FlushableStamper | undefined>
+  updateStampUtilization(batchID: BatchId, utilization: number): void
+}

package/src/sync/sync-account.test.ts ADDED Viewed

@@ -0,0 +1,302 @@
+import { describe, it, expect, vi, beforeEach } from "vitest"
+import { EthAddress, BatchId } from "@ethersphere/bee-js"
+import { createSyncAccount } from "./sync-account"
+import { deserializeAccountState } from "./serialization"
+import type {
+  AccountsStoreInterface,
+  IdentitiesStoreInterface,
+  ConnectedAppsStoreInterface,
+  PostageStampsStoreInterface,
+} from "./store-interfaces"
+import type { UtilizationStoreDB } from "../storage/utilization-store"
+import type { DebouncedUtilizationUploader } from "../storage/debounced-uploader"
+import {
+  TEST_ETH_ADDRESS_HEX,
+  TEST_IDENTITY_ADDRESS_HEX,
+  TEST_BATCH_ID_HEX,
+  createPasskeyAccount,
+  createIdentity,
+  createConnectedApp,
+  createPostageStamp,
+} from "../test-fixtures"
+// ============================================================================
+// Mock Factories
+// ============================================================================
+function createMockStores() {
+  const account = createPasskeyAccount({
+    credentialId: "test-credential",
+    name: "Test Account",
+    defaultPostageStampBatchID: new BatchId(TEST_BATCH_ID_HEX),
+  })
+  const identity = createIdentity()
+  const connectedApp = createConnectedApp({ appSecret: undefined })
+  const stamp = createPostageStamp()
+  const accountsStore: AccountsStoreInterface = {
+    getAccount: vi.fn((id: EthAddress) =>
+      id.toHex() === TEST_ETH_ADDRESS_HEX ? account : undefined,
+    ),
+  }
+  const identitiesStore: IdentitiesStoreInterface = {
+    getIdentitiesByAccount: vi.fn((accountId: EthAddress) =>
+      accountId.toHex() === TEST_ETH_ADDRESS_HEX ? [identity] : [],
+    ),
+  }
+  const connectedAppsStore: ConnectedAppsStoreInterface = {
+    getAppsByIdentityId: vi.fn((identityId: string) =>
+      identityId === TEST_IDENTITY_ADDRESS_HEX ? [connectedApp] : [],
+    ),
+  }
+  const mockStamper = {
+    stamp: vi.fn().mockResolvedValue({
+      batchId: new Uint8Array(32),
+      index: new Uint8Array(8),
+      timestamp: new Uint8Array(8),
+      signature: new Uint8Array(65),
+    }),
+    flush: vi.fn().mockResolvedValue(undefined),
+  }
+  const postageStampsStore: PostageStampsStoreInterface = {
+    getStamp: vi.fn((batchID: BatchId) =>
+      batchID.toHex() === TEST_BATCH_ID_HEX ? stamp : undefined,
+    ),
+    getStampsByAccount: vi.fn((accountId: string) =>
+      accountId === TEST_ETH_ADDRESS_HEX ? [stamp] : [],
+    ),
+    getStamper: vi.fn().mockResolvedValue(mockStamper),
+    updateStampUtilization: vi.fn(),
+  }
+  return {
+    accountsStore,
+    identitiesStore,
+    connectedAppsStore,
+    postageStampsStore,
+    mockStamper,
+  }
+}
+// ============================================================================
+// Upload & Epoch Mock Setup
+// ============================================================================
+// Track what was uploaded
+let capturedUploadData: Uint8Array | undefined
+let capturedEncryptionKey: Uint8Array | undefined
+let uploadCallCount: number
+let epochUpdateCallCount: number
+let capturedEpochReference: Uint8Array | undefined
+const FAKE_UPLOAD_REFERENCE = "ab".repeat(32)
+const FAKE_SOC_ADDRESS = new Uint8Array(32).fill(0xee)
+vi.mock("../proxy/upload-encrypted-data", () => ({
+  uploadEncryptedDataWithSigning: vi.fn(
+    async (
+      _context: unknown,
+      data: Uint8Array,
+      encryptionKey: Uint8Array | undefined,
+    ) => {
+      capturedUploadData = data
+      capturedEncryptionKey = encryptionKey
+      uploadCallCount++
+      return {
+        reference: FAKE_UPLOAD_REFERENCE,
+        chunkAddresses: [new Uint8Array(32).fill(0xaa)],
+      }
+    },
+  ),
+}))
+// Use a real class for the mock so `new BasicEpochUpdater(...)` works
+const mockUpdate = vi.fn()
+vi.mock("../proxy/feeds/epochs", () => {
+  return {
+    BasicEpochUpdater: class MockBasicEpochUpdater {
+      update = mockUpdate
+      getOwner = vi.fn(() => new EthAddress("a".repeat(40)))
+    },
+  }
+})
+// Mock utilization to avoid complexity in these tests
+vi.mock("../utils/batch-utilization", () => ({
+  updateAfterWrite: vi.fn().mockResolvedValue({
+    state: { chunks: new Map() },
+    tracker: { hasDirtyChunks: () => false, getDirtyChunks: () => [] },
+  }),
+  saveUtilizationState: vi.fn().mockResolvedValue(undefined),
+  calculateUtilization: vi.fn().mockReturnValue(0.01),
+}))
+// ============================================================================
+// Tests
+// ============================================================================
+describe("createSyncAccount", () => {
+  beforeEach(() => {
+    capturedUploadData = undefined
+    capturedEncryptionKey = undefined
+    capturedEpochReference = undefined
+    uploadCallCount = 0
+    epochUpdateCallCount = 0
+    mockUpdate.mockReset()
+    mockUpdate.mockImplementation(
+      async (_timestamp: bigint, reference: Uint8Array) => {
+        capturedEpochReference = reference
+        epochUpdateCallCount++
+        return {
+          socAddress: FAKE_SOC_ADDRESS,
+          epoch: { start: 0n, level: 0 },
+          timestamp: BigInt(Math.floor(Date.now() / 1000)),
+        }
+      },
+    )
+  })
+  it("should upload encrypted data and update epoch feed", async () => {
+    const stores = createMockStores()
+    const syncAccount = createSyncAccount({
+      bee: {} as never,
+      ...stores,
+      utilizationStore: {} as UtilizationStoreDB,
+      utilizationUploader: {
+        scheduleUpload: vi.fn().mockResolvedValue(undefined),
+      } as unknown as DebouncedUtilizationUploader,
+    })
+    const result = await syncAccount(TEST_ETH_ADDRESS_HEX)
+    expect(result).toBeDefined()
+    expect(result!.status).toBe("success")
+    if (result!.status !== "success") return
+    // Verify upload happened
+    expect(uploadCallCount).toBe(1)
+    expect(capturedUploadData).toBeDefined()
+    expect(capturedEncryptionKey).toBeDefined()
+    // Verify epoch feed was updated
+    expect(epochUpdateCallCount).toBe(1)
+    expect(capturedEpochReference).toBeDefined()
+    // Verify result contains reference and chunk addresses
+    expect(result.reference).toBe(FAKE_UPLOAD_REFERENCE)
+    expect(result.chunkAddresses.length).toBeGreaterThanOrEqual(2) // data chunks + SOC
+  })
+  it("should serialize account state with all fields including accountName", async () => {
+    const stores = createMockStores()
+    const syncAccount = createSyncAccount({
+      bee: {} as never,
+      ...stores,
+      utilizationStore: {} as UtilizationStoreDB,
+      utilizationUploader: {
+        scheduleUpload: vi.fn().mockResolvedValue(undefined),
+      } as unknown as DebouncedUtilizationUploader,
+    })
+    await syncAccount(TEST_ETH_ADDRESS_HEX)
+    // Deserialize the captured upload data to verify contents
+    expect(capturedUploadData).toBeDefined()
+    const deserialized = deserializeAccountState(capturedUploadData!)
+    expect(deserialized.version).toBe(1)
+    expect(deserialized.accountId).toBe(TEST_ETH_ADDRESS_HEX)
+    expect(deserialized.metadata.accountName).toBe("Test Account")
+    expect(deserialized.metadata.defaultPostageStampBatchID).toBe(
+      TEST_BATCH_ID_HEX,
+    )
+    expect(deserialized.metadata.createdAt).toBe(1700000000000)
+    expect(deserialized.identities).toHaveLength(1)
+    expect(deserialized.identities[0].name).toBe("Default Identity")
+    expect(deserialized.connectedApps).toHaveLength(1)
+    expect(deserialized.connectedApps[0].appName).toBe("Test App")
+    expect(deserialized.postageStamps).toHaveLength(1)
+    expect(deserialized.postageStamps[0].depth).toBe(20)
+  })
+  it("should return undefined when account not found", async () => {
+    const stores = createMockStores()
+    ;(
+      stores.accountsStore.getAccount as ReturnType<typeof vi.fn>
+    ).mockReturnValue(undefined)
+    const syncAccount = createSyncAccount({
+      bee: {} as never,
+      ...stores,
+      utilizationStore: {} as UtilizationStoreDB,
+      utilizationUploader: {
+        scheduleUpload: vi.fn().mockResolvedValue(undefined),
+      } as unknown as DebouncedUtilizationUploader,
+    })
+    const result = await syncAccount(TEST_ETH_ADDRESS_HEX)
+    expect(result).toBeUndefined()
+    expect(uploadCallCount).toBe(0)
+  })
+  it("should return undefined when no default stamp available", async () => {
+    const stores = createMockStores()
+    const account = createPasskeyAccount({
+      defaultPostageStampBatchID: new BatchId(TEST_BATCH_ID_HEX),
+    })
+    ;(
+      stores.accountsStore.getAccount as ReturnType<typeof vi.fn>
+    ).mockReturnValue({
+      ...account,
+      defaultPostageStampBatchID: undefined,
+    })
+    ;(
+      stores.identitiesStore.getIdentitiesByAccount as ReturnType<typeof vi.fn>
+    ).mockReturnValue([
+      { ...createIdentity(), defaultPostageStampBatchID: undefined },
+    ])
+    const syncAccount = createSyncAccount({
+      bee: {} as never,
+      ...stores,
+      utilizationStore: {} as UtilizationStoreDB,
+      utilizationUploader: {
+        scheduleUpload: vi.fn().mockResolvedValue(undefined),
+      } as unknown as DebouncedUtilizationUploader,
+    })
+    const result = await syncAccount(TEST_ETH_ADDRESS_HEX)
+    expect(result).toBeUndefined()
+    expect(uploadCallCount).toBe(0)
+  })
+  it("should include SOC address in returned chunk addresses", async () => {
+    const stores = createMockStores()
+    const syncAccount = createSyncAccount({
+      bee: {} as never,
+      ...stores,
+      utilizationStore: {} as UtilizationStoreDB,
+      utilizationUploader: {
+        scheduleUpload: vi.fn().mockResolvedValue(undefined),
+      } as unknown as DebouncedUtilizationUploader,
+    })
+    const result = await syncAccount(TEST_ETH_ADDRESS_HEX)
+    expect(result).toBeDefined()
+    expect(result!.status).toBe("success")
+    if (result!.status !== "success") return
+    // Last address should be the SOC address from epoch feed update
+    const lastAddress = result.chunkAddresses[result.chunkAddresses.length - 1]
+    expect(lastAddress).toEqual(FAKE_SOC_ADDRESS)
+  })
+})