@tangle-network/blueprint-ui 0.1.0 → 0.1.1

package/README.md

@@ -74,28 +74,30 @@ Keep in app-local code:
 - **`registerBlueprint`** / **`getBlueprint`** — Register and look up blueprint definitions
 - **`JobDefinition`** — Declarative job schema with field types, ABI metadata, and categories
 
-## Installation
 ## Installation
 
 ```bash
-# As a git dependency (recommended for Tangle apps)
-pnpm add github:tangle-network/blueprint-ui
+npm install @tangle-network/blueprint-ui
+# or
+pnpm add @tangle-network/blueprint-ui
 ```
 
+Package: https://www.npmjs.com/package/@tangle-network/blueprint-ui
+
 ## Publishing
 
 Automated npm publishing is configured via GitHub Actions with npm Trusted Publishing (OIDC):
 - Workflow: `.github/workflows/publish-npm.yml`
 - Triggers:
-  - GitHub Release published (`vX.Y.Z`)
-  - Manual `workflow_dispatch`
+  - Push tag `blueprint-ui-vX.Y.Z`
+  - Manual `workflow_dispatch` with `version` input
 
 No long-lived npm token is required once trusted publishing is configured.
 
 Release flow:
 1. Bump `package.json` version.
-2. Create and publish a GitHub release tagged `v<same-version>`.
-3. Workflow typechecks and runs `npm publish --access public`.
+2. Push tag `blueprint-ui-v<same-version>`.
+3. Workflow typechecks and runs `npm publish --provenance --access public`.
 
 Trusted publishing setup (one-time in npm):
 1. Open npm package settings for `@tangle-network/blueprint-ui`.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tangle-network/blueprint-ui",
-  "version": "0.1.0",
+  "version": "0.1.1",
   "description": "Shared blueprint UI components, hooks, and contract utilities for Tangle Network apps",
   "license": "MIT OR Apache-2.0",
   "repository": {

package/src/components/layout/AppDocument.tsx

@@ -22,7 +22,7 @@ function buildInlineThemeCode(themeStorageKeys: [string, string]): string {
 
 export function AppDocument({ children, description, themeStorageKeys }: AppDocumentProps) {
   return (
-    <html lang="en" data-theme="dark">
+    <html lang="en" data-theme="dark" suppressHydrationWarning>
       <head>
         <meta charSet="utf-8" />
         <meta name="viewport" content="width=device-width, initial-scale=1" />

package/src/components/layout/ChainSwitcher.tsx

@@ -1,15 +1,32 @@
 import { useState, useRef, useEffect } from 'react';
 import { useStore } from '@nanostores/react';
 import { selectedChainIdStore } from '../../contracts/publicClient';
-import { getNetworks, tangleLocal, tangleTestnet, tangleMainnet } from '../../contracts/chains';
+import { getNetworks } from '../../contracts/chains';
 
-const chainOrder = [tangleLocal.id, tangleTestnet.id, tangleMainnet.id];
+function chainIcon(label: string | undefined, chainName: string | undefined): string {
+  if (label === 'Tangle Local' || chainName === 'Tangle Local') return 'i-ph:desktop';
+  if (label === 'Tangle Testnet' || chainName === 'Tangle Testnet') return 'i-ph:flask';
+  if (label === 'Tangle Mainnet' || chainName === 'Tangle') return 'i-ph:globe-hemisphere-west';
+  return 'i-ph:globe';
+}
+
+function orderedChainIds(): number[] {
+  const priority: Record<string, number> = {
+    'Tangle Local': 0,
+    'Tangle Testnet': 1,
+    'Tangle Mainnet': 2,
+    Tangle: 2,
+  };
 
-const chainIcons: Record<number, string> = {
-  [tangleLocal.id]: 'i-ph:desktop',
-  [tangleTestnet.id]: 'i-ph:flask',
-  [tangleMainnet.id]: 'i-ph:globe-hemisphere-west',
-};
+  return Object.entries(getNetworks())
+    .sort(([, a], [, b]) => {
+      const aPriority = priority[a?.label ?? a?.chain?.name ?? ''] ?? 99;
+      const bPriority = priority[b?.label ?? b?.chain?.name ?? ''] ?? 99;
+      if (aPriority !== bPriority) return aPriority - bPriority;
+      return a.chain.id - b.chain.id;
+    })
+    .map(([chainId]) => Number(chainId));
+}
 
 export function ChainSwitcher() {
   const [open, setOpen] = useState(false);
@@ -38,7 +55,7 @@ export function ChainSwitcher() {
         className="flex items-center gap-1.5 px-2.5 py-2 rounded-lg text-xs font-data font-medium bg-bp-elements-background-depth-3 dark:bg-bp-elements-background-depth-4 border border-bp-elements-borderColor hover:border-bp-elements-borderColorActive/40 transition-all"
         title={current?.label ?? 'Select network'}
       >
-        <div className={`${chainIcons[selectedChainId] ?? 'i-ph:globe'} text-sm text-bp-elements-icon-success`} />
+        <div className={`${chainIcon(current?.label, current?.chain?.name)} text-sm text-bp-elements-icon-success`} />
         <span className="hidden sm:inline text-bp-elements-textSecondary">{current?.shortLabel ?? 'Unknown'}</span>
         <div className={`i-ph:caret-down text-[10px] text-bp-elements-textTertiary transition-transform ${open ? 'rotate-180' : ''}`} />
       </button>
@@ -46,7 +63,7 @@ export function ChainSwitcher() {
       {open && (
         <div className="absolute right-0 top-full mt-2 w-48 glass-card-strong rounded-xl border border-bp-elements-dividerColor/50 py-1.5 z-50 shadow-lg">
           <div className="px-3 py-1.5 text-[10px] font-data uppercase tracking-wider text-bp-elements-textTertiary">Network</div>
-          {chainOrder.map((chainId) => {
+          {orderedChainIds().map((chainId) => {
             const net = getNetworks()[chainId];
             if (!net) return null;
             const isSelected = chainId === selectedChainId;
@@ -58,7 +75,7 @@ export function ChainSwitcher() {
                   isSelected ? 'bg-violet-500/10 text-violet-700 dark:text-violet-400' : 'hover:bg-bp-elements-item-backgroundHover text-bp-elements-textSecondary'
                 }`}
               >
-                <div className={`${chainIcons[chainId] ?? 'i-ph:globe'} text-sm ${isSelected ? 'text-violet-700 dark:text-violet-400' : 'text-bp-elements-textTertiary'}`} />
+                <div className={`${chainIcon(net.label, net.chain.name)} text-sm ${isSelected ? 'text-violet-700 dark:text-violet-400' : 'text-bp-elements-textTertiary'}`} />
                 <span className="text-sm font-display font-medium">{net.label}</span>
                 {isSelected && <div className="i-ph:check-bold text-xs ml-auto text-violet-700 dark:text-violet-400" />}
               </button>

package/src/components/layout/Web3Shell.tsx

@@ -1,13 +1,83 @@
 import { QueryClient, QueryClientProvider } from '@tanstack/react-query';
-import { type ReactNode, useState } from 'react';
-import { type Config, WagmiProvider } from 'wagmi';
+import { type ReactNode, useEffect, useRef, useState } from 'react';
+import { type Config, WagmiContext, useReconnect } from 'wagmi';
 
 interface Web3ShellProps {
   config: Config;
+  reconnectOnMount?: boolean;
   children: ReactNode;
 }
 
-export function Web3Shell({ config, children }: Web3ShellProps) {
+type RecentConnectorStorage = Pick<NonNullable<Config['storage']>, 'getItem' | 'removeItem'>;
+
+// We prefer the last successful connector so silent restoration is fast and
+// doesn't probe every available connector on startup.
+async function findRecentConnector(currentConfig: Pick<Config, 'connectors' | 'storage'>) {
+  const storage = currentConfig.storage as RecentConnectorStorage | null | undefined;
+  const recentConnectorId = await storage?.getItem('recentConnectorId');
+  if (!recentConnectorId) return null;
+
+  const connector = currentConfig.connectors.find((candidate) => candidate.id === recentConnectorId) ?? null;
+  if (!connector) {
+    await storage?.removeItem('recentConnectorId');
+  }
+
+  return connector;
+}
+
+function ReconnectOnMount({
+  config,
+  reconnectOnMount,
+}: Pick<Web3ShellProps, 'config' | 'reconnectOnMount'>) {
+  const { reconnectAsync } = useReconnect();
+  const attemptedRef = useRef(false);
+
+  useEffect(() => {
+    if (!reconnectOnMount || attemptedRef.current) return;
+    attemptedRef.current = true;
+
+    let cancelled = false;
+
+    // Why this exists:
+    // - In this app stack, wagmi's built-in provider hydrate path can kick off
+    //   reconnect work during provider rerenders.
+    // - Route navigation rerenders the app shell, so wallet restore was being
+    //   retriggered on page changes, which made the header look like it was
+    //   reconnecting and added several seconds of delay.
+    //
+    // Our fix is to keep wagmi context/query wiring here, but move restore to a
+    // single effect guarded by a ref. A rerender keeps the same ref value, so
+    // reconnect only runs once per real mount and still runs again after a full
+    // page refresh.
+    void (async () => {
+      try {
+        const connector = await findRecentConnector(config);
+        if (cancelled) return;
+
+        if (connector) {
+          await reconnectAsync({ connectors: [connector] });
+          return;
+        }
+
+        await reconnectAsync();
+      } catch {
+        // A failed silent reconnect should leave the app disconnected.
+      }
+    })();
+
+    return () => {
+      cancelled = true;
+    };
+  }, [config, reconnectAsync, reconnectOnMount]);
+
+  return null;
+}
+
+export function Web3Shell({
+  config,
+  reconnectOnMount = true,
+  children,
+}: Web3ShellProps) {
   const [queryClient] = useState(
     () =>
       new QueryClient({
@@ -21,8 +91,13 @@ export function Web3Shell({ config, children }: Web3ShellProps) {
   );
 
   return (
-    <WagmiProvider config={config}>
-      <QueryClientProvider client={queryClient}>{children}</QueryClientProvider>
-    </WagmiProvider>
+    // We provide wagmi context directly instead of using WagmiProvider so we can
+    // control exactly when silent reconnect runs.
+    <WagmiContext.Provider value={config}>
+      <QueryClientProvider client={queryClient}>
+        <ReconnectOnMount config={config} reconnectOnMount={reconnectOnMount} />
+          {children}
+      </QueryClientProvider>
+    </WagmiContext.Provider>
   );
 }

package/src/components/web3/ConnectWalletCta.tsx

@@ -0,0 +1,21 @@
+interface ConnectWalletCtaProps {
+  onClick?: () => void;
+  isReconnecting?: boolean;
+}
+
+export function ConnectWalletCta({ onClick, isReconnecting = false }: ConnectWalletCtaProps) {
+  return (
+    <button
+      onClick={() => onClick?.()}
+      disabled={!onClick}
+      className="px-4 py-2.5 rounded-lg bg-violet-500/10 border border-violet-500/20 text-violet-700 dark:text-violet-400 text-sm font-display font-medium hover:bg-violet-500/20 transition-colors"
+    >
+      {isReconnecting ? (
+        <span className="flex items-center gap-2">
+          <span className="w-3 h-3 rounded-full border-2 border-violet-500/40 border-t-violet-600 dark:border-t-violet-400 animate-spin" />
+          Reconnecting...
+        </span>
+      ) : 'Connect'}
+    </button>
+  );
+}

package/src/components.ts

@@ -43,6 +43,9 @@ export { Web3Shell } from './components/layout/Web3Shell';
 export { ChainSwitcher } from './components/layout/ChainSwitcher';
 export { ThemeToggle } from './components/layout/ThemeToggle';
 
+// ── Web3 ──
+export { ConnectWalletCta } from './components/web3/ConnectWalletCta';
+
 // ── Forms ──
 export { FormField } from './components/forms/FormField';
 export type { FormSection } from './components/forms/BlueprintJobForm';

package/src/contracts/abi.ts

@@ -185,9 +185,9 @@ export const tangleServicesAbi = [
     type: 'event',
     name: 'ServiceRequested',
     inputs: [
-      { name: 'requester', type: 'address', indexed: true },
       { name: 'requestId', type: 'uint64', indexed: true },
       { name: 'blueprintId', type: 'uint64', indexed: true },
+      { name: 'requester', type: 'address', indexed: true },
     ],
   },
   {

package/src/contracts/chains.ts

@@ -31,14 +31,26 @@ export function resolveRpcUrl(envUrl?: string): string {
 
 export const rpcUrl = resolveRpcUrl();
 
-export const tangleLocal = defineChain({
-  id: Number(import.meta.env.VITE_CHAIN_ID ?? 31337),
-  name: 'Tangle Local',
-  nativeCurrency: { name: 'Ether', symbol: 'ETH', decimals: 18 },
-  rpcUrls: { default: { http: [rpcUrl] } },
-  blockExplorers: { default: { name: 'Explorer', url: '' } },
-  contracts: { multicall3: { address: '0xcA11bde05977b3631167028862bE2a173976CA11' } },
-});
+export interface LocalChainOptions {
+  chainId?: number;
+  rpcUrl?: string;
+}
+
+export function createTangleLocalChain(options: LocalChainOptions = {}) {
+  const chainId = options.chainId ?? Number(import.meta.env.VITE_CHAIN_ID ?? 31337);
+  const localRpcUrl = resolveRpcUrl(options.rpcUrl);
+
+  return defineChain({
+    id: chainId,
+    name: 'Tangle Local',
+    nativeCurrency: { name: 'Ether', symbol: 'ETH', decimals: 18 },
+    rpcUrls: { default: { http: [localRpcUrl] } },
+    blockExplorers: { default: { name: 'Explorer', url: '' } },
+    contracts: { multicall3: { address: '0xcA11bde05977b3631167028862bE2a173976CA11' } },
+  });
+}
+
+export const tangleLocal = createTangleLocalChain();
 
 export const tangleTestnet = defineChain({
   id: 3799,

package/src/contracts/publicClient.ts

@@ -13,36 +13,76 @@ export const selectedChainIdStore = persistedAtom<number>({
 
 const clientCache = new Map<number, PublicClient>();
 
+function configuredDefaultChainId(): number {
+  const networks = getNetworks();
+  if (networks[defaultChainId]) return defaultChainId;
+
+  for (const [chainId, net] of Object.entries(networks)) {
+    if (
+      net?.shortLabel === 'Local' ||
+      net?.label === 'Tangle Local' ||
+      net?.chain?.name === 'Tangle Local'
+    ) {
+      return Number(chainId);
+    }
+  }
+
+  const [firstConfigured] = Object.keys(networks);
+  return firstConfigured ? Number(firstConfigured) : defaultChainId;
+}
+
+function normalizeSelectedChainId(chainId: number): number {
+  const networks = getNetworks();
+  if (!Object.keys(networks).length) return chainId;
+  return networks[chainId] ? chainId : configuredDefaultChainId();
+}
+
+export function sanitizeSelectedChainId(): number {
+  const normalized = normalizeSelectedChainId(selectedChainIdStore.get());
+  if (normalized !== selectedChainIdStore.get()) {
+    selectedChainIdStore.set(normalized);
+  }
+  return normalized;
+}
+
 function getOrCreateClient(chainId: number): PublicClient {
-  const cached = clientCache.get(chainId);
+  const normalizedChainId = normalizeSelectedChainId(chainId);
+
+  const cached = clientCache.get(normalizedChainId);
   if (cached) return cached;
   const networks = getNetworks();
-  const net = networks[chainId];
+  const net = networks[normalizedChainId];
   if (!net) {
-    const fallback = networks[defaultChainId];
+    const fallback = networks[configuredDefaultChainId()];
     if (!fallback) {
       return createPublicClient({ chain: tangleLocal, transport: http() });
     }
     return createPublicClient({ chain: fallback.chain, transport: http(fallback.rpcUrl) });
   }
   const client = createPublicClient({ chain: net.chain, transport: http(net.rpcUrl) });
-  clientCache.set(chainId, client);
+  clientCache.set(normalizedChainId, client);
   return client;
 }
 
-export const publicClientStore = atom<PublicClient>(getOrCreateClient(selectedChainIdStore.get()));
+export const publicClientStore = atom<PublicClient>(getOrCreateClient(sanitizeSelectedChainId()));
 
 selectedChainIdStore.subscribe((chainId: number) => {
-  publicClientStore.set(getOrCreateClient(chainId));
+  const normalized = normalizeSelectedChainId(chainId);
+  if (normalized !== chainId) {
+    selectedChainIdStore.set(normalized);
+    return;
+  }
+  publicClientStore.set(getOrCreateClient(normalized));
 });
 
 export function getPublicClient(): PublicClient {
+  sanitizeSelectedChainId();
   return publicClientStore.get();
 }
 
 export const publicClient = new Proxy({} as PublicClient, {
   get(_target, prop) {
-    const client = getOrCreateClient(selectedChainIdStore.get());
+    const client = getOrCreateClient(sanitizeSelectedChainId());
     const value = (client as any)[prop];
     return typeof value === 'function' ? value.bind(client) : value;
   },
@@ -50,6 +90,7 @@ export const publicClient = new Proxy({} as PublicClient, {
 
 export function getAddresses<T extends CoreAddresses = CoreAddresses>(): T {
   const networks = getNetworks<T>();
-  const net = networks[selectedChainIdStore.get()];
-  return net?.addresses ?? networks[defaultChainId]?.addresses ?? {} as T;
+  const selectedChainId = sanitizeSelectedChainId();
+  const net = networks[selectedChainId];
+  return net?.addresses ?? networks[configuredDefaultChainId()]?.addresses ?? {} as T;
 }

package/src/hooks/useOperators.ts

@@ -9,9 +9,208 @@ export interface DiscoveredOperator {
   rpcAddress: string;
 }
 
+interface OperatorDiscoveryClient {
+  readContract(args: Record<string, unknown>): Promise<unknown>;
+  getLogs(args: Record<string, unknown>): Promise<Array<Record<string, unknown>>>;
+  multicall(args: Record<string, unknown>): Promise<Array<Record<string, unknown>>>;
+}
+
+interface OperatorDiscoveryResult {
+  operators: DiscoveredOperator[];
+  operatorCount: bigint;
+}
+
+function readPreferenceValue(
+  result: unknown,
+  field: 'ecdsaPublicKey' | 'rpcAddress',
+): string {
+  if (Array.isArray(result)) {
+    return String(result[field === 'ecdsaPublicKey' ? 0 : 1] ?? '');
+  }
+  if (result && typeof result === 'object') {
+    return String((result as Record<string, unknown>)[field] ?? '');
+  }
+  return '';
+}
+
+async function verifyCandidatesWithMulticall(
+  client: OperatorDiscoveryClient,
+  servicesAddress: Address,
+  blueprintId: bigint,
+  candidates: DiscoveredOperator[],
+): Promise<DiscoveredOperator[] | null> {
+  const [registrationResults, preferencesResults] = await Promise.all([
+    client.multicall({
+      contracts: candidates.map((op) => ({
+        address: servicesAddress,
+        abi: tangleOperatorsAbi,
+        functionName: 'isOperatorRegistered' as const,
+        args: [blueprintId, op.address] as const,
+      })),
+    }),
+    client.multicall({
+      contracts: candidates.map((op) => ({
+        address: servicesAddress,
+        abi: tangleOperatorsAbi,
+        functionName: 'getOperatorPreferences' as const,
+        args: [blueprintId, op.address] as const,
+      })),
+    }),
+  ]);
+
+  const hadRegistrationFailure = registrationResults.some((result) => result?.status === 'failure');
+  const hadPreferenceFailure = preferencesResults.some((result) => result?.status === 'failure');
+
+  const active: DiscoveredOperator[] = [];
+  candidates.forEach((op, i) => {
+    if (registrationResults[i]?.result !== true) return;
+    const prefs = preferencesResults[i];
+    if (prefs?.status === 'success' && prefs.result != null) {
+      active.push({
+        ...op,
+        ecdsaPublicKey: readPreferenceValue(prefs.result, 'ecdsaPublicKey') || op.ecdsaPublicKey,
+        rpcAddress: readPreferenceValue(prefs.result, 'rpcAddress') || op.rpcAddress,
+      });
+      return;
+    }
+    active.push(op);
+  });
+
+  if (active.length === 0 && (hadRegistrationFailure || hadPreferenceFailure)) {
+    return null;
+  }
+
+  return active;
+}
+
+async function verifyCandidatesDirectly(
+  client: OperatorDiscoveryClient,
+  servicesAddress: Address,
+  blueprintId: bigint,
+  candidates: DiscoveredOperator[],
+): Promise<DiscoveredOperator[]> {
+  const results = await Promise.allSettled(
+    candidates.map(async (op) => {
+      const registration = await client.readContract({
+        address: servicesAddress,
+        abi: tangleOperatorsAbi,
+        functionName: 'isOperatorRegistered',
+        args: [blueprintId, op.address],
+      });
+
+      if (registration !== true) {
+        return null;
+      }
+
+      try {
+        const preferences = await client.readContract({
+          address: servicesAddress,
+          abi: tangleOperatorsAbi,
+          functionName: 'getOperatorPreferences',
+          args: [blueprintId, op.address],
+        });
+
+        return {
+          ...op,
+          ecdsaPublicKey: readPreferenceValue(preferences, 'ecdsaPublicKey') || op.ecdsaPublicKey,
+          rpcAddress: readPreferenceValue(preferences, 'rpcAddress') || op.rpcAddress,
+        };
+      } catch {
+        return op;
+      }
+    }),
+  );
+
+  const active = results
+    .filter((result): result is PromiseFulfilledResult<DiscoveredOperator | null> => result.status === 'fulfilled')
+    .map((result) => result.value)
+    .filter((op): op is DiscoveredOperator => op != null);
+
+  if (active.length > 0) {
+    return active;
+  }
+
+  const failure = results.find((result): result is PromiseRejectedResult => result.status === 'rejected');
+  if (failure) {
+    throw failure.reason instanceof Error ? failure.reason : new Error(String(failure.reason));
+  }
+
+  return [];
+}
+
+/**
+ * Shared discovery logic for operator lookup.
+ * Tries multicall first for efficiency, then falls back to direct reads when
+ * multicall is unavailable in local/dev environments.
+ */
+export async function discoverOperatorsWithClient(
+  client: OperatorDiscoveryClient,
+  servicesAddress: Address,
+  blueprintId: bigint,
+): Promise<OperatorDiscoveryResult> {
+  const count = await client.readContract({
+    address: servicesAddress,
+    abi: tangleOperatorsAbi,
+    functionName: 'blueprintOperatorCount',
+    args: [blueprintId],
+  });
+  const operatorCount = count as bigint;
+
+  if (operatorCount === 0n) {
+    return { operators: [], operatorCount };
+  }
+
+  const registeredLogs = await client.getLogs({
+    address: servicesAddress,
+    event: {
+      type: 'event' as const,
+      name: 'OperatorRegistered',
+      inputs: [
+        { name: 'blueprintId', type: 'uint64', indexed: true },
+        { name: 'operator', type: 'address', indexed: true },
+        { name: 'ecdsaPublicKey', type: 'bytes', indexed: false },
+        { name: 'rpcAddress', type: 'string', indexed: false },
+      ],
+    },
+    args: { blueprintId },
+    fromBlock: 0n,
+    toBlock: 'latest',
+  });
+
+  const byAddress = new Map<Address, DiscoveredOperator>();
+  for (const log of registeredLogs) {
+    const args = (log.args ?? {}) as Record<string, unknown>;
+    const addr = args.operator as Address | undefined;
+    if (!addr) continue;
+    byAddress.set(addr, {
+      address: addr,
+      ecdsaPublicKey: String(args.ecdsaPublicKey ?? '0x'),
+      rpcAddress: String(args.rpcAddress ?? ''),
+    });
+  }
+
+  const candidates = Array.from(byAddress.values());
+  if (candidates.length === 0) {
+    return { operators: [], operatorCount };
+  }
+
+  try {
+    const active = await verifyCandidatesWithMulticall(client, servicesAddress, blueprintId, candidates);
+    if (active != null) {
+      return { operators: active, operatorCount };
+    }
+  } catch {
+    // Fall through to direct reads below.
+  }
+
+  const active = await verifyCandidatesDirectly(client, servicesAddress, blueprintId, candidates);
+  return { operators: active, operatorCount };
+}
+
 /**
  * Discover operators registered for a blueprint by scanning OperatorRegistered
- * events, then verifying each is still active via multicall.
+ * events, then verifying each is still active. Falls back to direct reads when
+ * multicall is unavailable.
  */
 export function useOperators(blueprintId: bigint) {
   const [operators, setOperators] = useState<DiscoveredOperator[]>([]);
@@ -28,102 +227,10 @@ export function useOperators(blueprintId: bigint) {
       setError(null);
 
       try {
-        // Step 1: Check operator count
-        const count = await publicClient.readContract({
-          address: addrs.services,
-          abi: tangleOperatorsAbi,
-          functionName: 'blueprintOperatorCount',
-          args: [blueprintId],
-        });
-        if (cancelled) return;
-        setOperatorCount(count as bigint);
-
-        if ((count as bigint) === 0n) {
-          setOperators([]);
-          setIsLoading(false);
-          return;
-        }
-
-        // Step 2: Fetch OperatorRegistered logs
-        const registeredLogs = await publicClient.getLogs({
-          address: addrs.services,
-          event: {
-            type: 'event' as const,
-            name: 'OperatorRegistered',
-            inputs: [
-              { name: 'blueprintId', type: 'uint64', indexed: true },
-              { name: 'operator', type: 'address', indexed: true },
-              { name: 'ecdsaPublicKey', type: 'bytes', indexed: false },
-              { name: 'rpcAddress', type: 'string', indexed: false },
-            ],
-          },
-          args: { blueprintId },
-          fromBlock: 0n,
-          toBlock: 'latest',
-        });
-
-        if (cancelled) return;
-
-        // Deduplicate by address (keep latest)
-        const byAddress = new Map<Address, DiscoveredOperator>();
-        for (const log of registeredLogs) {
-          const addr = log.args.operator as Address | undefined;
-          if (!addr) continue;
-          byAddress.set(addr, {
-            address: addr,
-            ecdsaPublicKey: (log.args.ecdsaPublicKey as string) ?? '0x',
-            rpcAddress: (log.args.rpcAddress as string) ?? '',
-          });
-        }
-
-        const candidates = Array.from(byAddress.values());
-        if (candidates.length === 0) {
-          setOperators([]);
-          setIsLoading(false);
-          return;
-        }
-
-        // Step 3: Verify each is still registered + fetch current preferences
-        const [registrationResults, preferencesResults] = await Promise.all([
-          publicClient.multicall({
-            contracts: candidates.map((op) => ({
-              address: addrs.services,
-              abi: tangleOperatorsAbi,
-              functionName: 'isOperatorRegistered' as const,
-              args: [blueprintId, op.address] as const,
-            })),
-          }),
-          publicClient.multicall({
-            contracts: candidates.map((op) => ({
-              address: addrs.services,
-              abi: tangleOperatorsAbi,
-              functionName: 'getOperatorPreferences' as const,
-              args: [blueprintId, op.address] as const,
-            })),
-          }),
-        ]);
-
+        const result = await discoverOperatorsWithClient(publicClient, addrs.services, blueprintId);
         if (cancelled) return;
-
-        const active: DiscoveredOperator[] = [];
-        candidates.forEach((op, i) => {
-          if (registrationResults[i]?.result !== true) return;
-          const prefs = preferencesResults[i];
-          if (prefs?.status === 'success' && prefs.result != null) {
-            const result = prefs.result as Record<string, unknown>;
-            const ecdsaKey = Array.isArray(result) ? String(result[0] ?? '') : String((result as any).ecdsaPublicKey ?? '');
-            const rpcAddr = Array.isArray(result) ? String(result[1] ?? '') : String((result as any).rpcAddress ?? '');
-            active.push({
-              ...op,
-              ecdsaPublicKey: ecdsaKey || op.ecdsaPublicKey,
-              rpcAddress: rpcAddr || op.rpcAddress,
-            });
-          } else {
-            active.push(op);
-          }
-        });
-
-        setOperators(active);
+        setOperatorCount(result.operatorCount);
+        setOperators(result.operators);
       } catch (err) {
         if (!cancelled) {
           setError(err instanceof Error ? err : new Error(String(err)));

package/src/hooks/useSidecarAuth.ts

@@ -0,0 +1,173 @@
+import { useState, useCallback, useEffect, useRef } from 'react';
+
+// ---------------------------------------------------------------------------
+// Types
+// ---------------------------------------------------------------------------
+
+export interface UseSidecarAuthOptions {
+  /** Scoping key for token storage (e.g. botId, sandboxId). */
+  resourceId: string;
+  /** Base URL of the sidecar or operator API. */
+  apiUrl: string;
+  /**
+   * Sign a plaintext message and return the hex signature.
+   * Consuming apps wire this to their wallet library (e.g. wagmi's signMessageAsync).
+   */
+  signMessage: (message: string) => Promise<string>;
+}
+
+export interface SidecarAuth {
+  token: string | null;
+  isAuthenticated: boolean;
+  isAuthenticating: boolean;
+  authenticate: () => Promise<string | null>;
+  clearCachedToken: () => void;
+  error: string | null;
+}
+
+// ---------------------------------------------------------------------------
+// localStorage helpers
+// ---------------------------------------------------------------------------
+
+function storageKey(resourceId: string, apiUrl: string): string {
+  return `sidecar_session_${resourceId}__${apiUrl}`;
+}
+
+function loadSession(resourceId: string, apiUrl: string): { token: string; expiresAt: number } | null {
+  if (typeof window === 'undefined') return null;
+  try {
+    const raw = localStorage.getItem(storageKey(resourceId, apiUrl));
+    if (!raw) return null;
+    const data = JSON.parse(raw) as { token: string; expiresAt: number };
+    // Discard if within 60s of expiry
+    if (data.expiresAt * 1000 - Date.now() < 60_000) {
+      localStorage.removeItem(storageKey(resourceId, apiUrl));
+      return null;
+    }
+    return data;
+  } catch {
+    return null;
+  }
+}
+
+function saveSession(resourceId: string, apiUrl: string, token: string, expiresAt: number) {
+  if (typeof window === 'undefined') return;
+  try {
+    localStorage.setItem(storageKey(resourceId, apiUrl), JSON.stringify({ token, expiresAt }));
+  } catch {
+    // storage full — ignore
+  }
+}
+
+function clearSession(resourceId: string, apiUrl: string) {
+  if (typeof window === 'undefined') return;
+  localStorage.removeItem(storageKey(resourceId, apiUrl));
+}
+
+// ---------------------------------------------------------------------------
+// Hook
+// ---------------------------------------------------------------------------
+
+/**
+ * Generic sidecar PASETO challenge/response auth.
+ *
+ * Flow:
+ * 1. POST /api/auth/challenge  -> { nonce, message, expires_at }
+ * 2. signMessage(message)       -> signature (provided by consuming app)
+ * 3. POST /api/auth/session     -> { token, address, expires_at }
+ *
+ * Tokens are cached in localStorage and auto-refreshed 5 minutes before expiry.
+ */
+export function useSidecarAuth({ resourceId, apiUrl, signMessage }: UseSidecarAuthOptions): SidecarAuth {
+  const cached = loadSession(resourceId, apiUrl);
+  const [token, setToken] = useState<string | null>(cached?.token ?? null);
+  const [expiresAt, setExpiresAt] = useState<number>(cached?.expiresAt ?? 0);
+  const [isAuthenticating, setIsAuthenticating] = useState(false);
+  const [error, setError] = useState<string | null>(null);
+  const refreshTimerRef = useRef<ReturnType<typeof setTimeout>>();
+
+  const clearCachedToken = useCallback(() => {
+    setToken(null);
+    setExpiresAt(0);
+    clearSession(resourceId, apiUrl);
+  }, [resourceId, apiUrl]);
+
+  const authenticate = useCallback(async (): Promise<string | null> => {
+    if (!apiUrl) return null;
+    setIsAuthenticating(true);
+    setError(null);
+
+    try {
+      // Step 1: Get challenge
+      const challengeRes = await fetch(`${apiUrl}/api/auth/challenge`, {
+        method: 'POST',
+      });
+      if (!challengeRes.ok) {
+        throw new Error(`Challenge failed: ${challengeRes.status}`);
+      }
+      const { nonce, message } = await challengeRes.json();
+
+      // Step 2: Sign with wallet (injected)
+      const signature = await signMessage(message);
+
+      // Step 3: Exchange for session token
+      const sessionRes = await fetch(`${apiUrl}/api/auth/session`, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ nonce, signature }),
+      });
+      if (!sessionRes.ok) {
+        const text = await sessionRes.text();
+        throw new Error(text || `Session exchange failed: ${sessionRes.status}`);
+      }
+
+      const { token: newToken, expires_at } = await sessionRes.json();
+      setToken(newToken);
+      setExpiresAt(expires_at);
+      saveSession(resourceId, apiUrl, newToken, expires_at);
+      return newToken;
+    } catch (err) {
+      setError(err instanceof Error ? err.message : 'Authentication failed');
+      clearCachedToken();
+      return null;
+    } finally {
+      setIsAuthenticating(false);
+    }
+  }, [resourceId, apiUrl, signMessage, clearCachedToken]);
+
+  // Auto-refresh token 5 minutes before expiry
+  useEffect(() => {
+    if (refreshTimerRef.current) {
+      clearTimeout(refreshTimerRef.current);
+    }
+
+    if (!token || !expiresAt) return;
+
+    const msUntilRefresh = (expiresAt - 300) * 1000 - Date.now();
+    if (msUntilRefresh <= 0) {
+      clearCachedToken();
+      return;
+    }
+
+    refreshTimerRef.current = setTimeout(() => {
+      authenticate().catch(() => {
+        clearCachedToken();
+      });
+    }, msUntilRefresh);
+
+    return () => {
+      if (refreshTimerRef.current) {
+        clearTimeout(refreshTimerRef.current);
+      }
+    };
+  }, [token, expiresAt, authenticate, clearCachedToken]);
+
+  return {
+    token,
+    isAuthenticated: token !== null,
+    isAuthenticating,
+    authenticate,
+    clearCachedToken,
+    error,
+  };
+}

package/src/hooks/useWagmiSidecarAuth.ts

@@ -0,0 +1,11 @@
+import { useSignMessage } from 'wagmi';
+import { useSidecarAuth } from './useSidecarAuth';
+
+export function useWagmiSidecarAuth(resourceId: string, apiUrl: string) {
+  const { signMessageAsync } = useSignMessage();
+  return useSidecarAuth({
+    resourceId,
+    apiUrl,
+    signMessage: (msg: string) => signMessageAsync({ message: msg }),
+  });
+}

package/src/hooks/useWalletEthBalance.ts

@@ -0,0 +1,68 @@
+import { useEffect, useState } from 'react';
+
+const WEI_PER_ETH = 1_000_000_000_000_000_000n;
+const DISPLAY_SCALE = 1_000n; // 3 decimal places
+
+function formatEthBalance(wei: bigint): string {
+  const whole = wei / WEI_PER_ETH;
+  const fraction = ((wei % WEI_PER_ETH) * DISPLAY_SCALE) / WEI_PER_ETH;
+  return `${whole.toString()}.${fraction.toString().padStart(3, '0')}`;
+}
+
+interface UseWalletEthBalanceOptions {
+  address?: string;
+  refreshKey?: number | string;
+  readBalance: (address: string) => Promise<bigint>;
+  pollMs?: number;
+  onError?: (error: unknown) => void;
+}
+
+interface UseWalletEthBalanceResult {
+  balance: string | null;
+  hasError: boolean;
+}
+
+export function useWalletEthBalance({
+  address,
+  refreshKey,
+  readBalance,
+  pollMs = 15_000,
+  onError,
+}: UseWalletEthBalanceOptions): UseWalletEthBalanceResult {
+  const [balance, setBalance] = useState<string | null>(null);
+  const [hasError, setHasError] = useState(false);
+
+  useEffect(() => {
+    if (!address) {
+      setBalance(null);
+      setHasError(false);
+      return;
+    }
+
+    let cancelled = false;
+
+    const fetchBalance = () => {
+      readBalance(address)
+        .then((wei) => {
+          if (cancelled) return;
+          setBalance(formatEthBalance(wei));
+          setHasError(false);
+        })
+        .catch((error: unknown) => {
+          if (cancelled) return;
+          setHasError(true);
+          onError?.(error);
+        });
+    };
+
+    fetchBalance();
+    const interval = setInterval(fetchBalance, pollMs);
+
+    return () => {
+      cancelled = true;
+      clearInterval(interval);
+    };
+  }, [address, refreshKey, readBalance, pollMs, onError]);
+
+  return { balance, hasError };
+}

package/src/index.ts

@@ -6,7 +6,7 @@
 // ── Utils ──
 export { cn } from './utils';
 export { resolveOperatorRpc } from './utils/resolveOperatorRpc';
-export { createTangleTransports, defaultConnectKitOptions, tangleWalletChains } from './utils/web3';
+export { createTangleTransports, defaultConnectKitOptions, getTangleWalletChains, tangleWalletChains } from './utils/web3';
 export { bpThemeTokens } from './preset';
 
 // ── Stores ──
@@ -25,6 +25,7 @@ export { tangleJobsAbi, tangleServicesAbi, tangleOperatorsAbi } from './contract
 export type { CoreAddresses, NetworkConfig } from './contracts/chains';
 export {
   resolveRpcUrl,
+  createTangleLocalChain,
   rpcUrl,
   tangleLocal,
   tangleTestnet,
@@ -36,6 +37,7 @@ export {
 } from './contracts/chains';
 export {
   selectedChainIdStore,
+  sanitizeSelectedChainId,
   publicClientStore,
   getPublicClient,
   publicClient,
@@ -77,3 +79,7 @@ export { useSessionAuth } from './hooks/useSessionAuth';
 export type { ProvisionPhase, ProvisionStatus } from './hooks/useProvisionProgress';
 export { getPhaseLabel, isTerminalPhase, useProvisionProgress } from './hooks/useProvisionProgress';
 export { useThemeValue } from './hooks/useThemeValue';
+export type { UseSidecarAuthOptions, SidecarAuth } from './hooks/useSidecarAuth';
+export { useSidecarAuth } from './hooks/useSidecarAuth';
+export { useWagmiSidecarAuth } from './hooks/useWagmiSidecarAuth';
+export { useWalletEthBalance } from './hooks/useWalletEthBalance';

package/src/utils/web3.ts

@@ -2,11 +2,17 @@ import type { Chain } from 'viem';
 import { http } from 'wagmi';
 import { mainnet, rpcUrl, tangleLocal, tangleMainnet, tangleTestnet } from '../contracts/chains';
 
-export const tangleWalletChains: readonly [Chain, ...Chain[]] = [tangleLocal, tangleTestnet, tangleMainnet, mainnet];
+export function getTangleWalletChains(localChain: Chain = tangleLocal): readonly [Chain, ...Chain[]] {
+  return [localChain, tangleTestnet, tangleMainnet, mainnet];
+}
+
+export const tangleWalletChains: readonly [Chain, ...Chain[]] = getTangleWalletChains();
+
+export function createTangleTransports(localChain: Pick<Chain, 'id' | 'rpcUrls'> = tangleLocal) {
+  const localRpcUrl = localChain.rpcUrls.default.http[0] ?? rpcUrl;
 
-export function createTangleTransports() {
   return {
-    [tangleLocal.id]: http(rpcUrl),
+    [localChain.id]: http(localRpcUrl),
     [tangleTestnet.id]: http('https://testnet-rpc.tangle.tools'),
     [tangleMainnet.id]: http('https://rpc.tangle.tools'),
     [mainnet.id]: http(),