@thru/passkey 0.2.13 → 0.2.15

package/dist/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/auth/execute-tx.ts","../src/auth/use-passkey-auth.ts"],"sourcesContent":["import { base64UrlToBytes, bytesToBase64, bytesToHex } from '@thru/passkey-manager';\nimport { signWithPasskey } from '../mobile/passkey';\nimport { touchPasskeyLastUsedAt } from '../mobile/storage';\n\nasync function readJson(response: Response): Promise<Record<string, unknown>> {\n  try {\n    return (await response.json()) as Record<string, unknown>;\n  } catch {\n    throw new Error(`Non-JSON response (HTTP ${response.status})`);\n  }\n}\n\nexport async function executePasskeyTransaction<\n  P extends Record<string, unknown>,\n  R\n>(opts: {\n  challengeUrl: string;\n  submitUrl: string;\n  params: P;\n  credentialId: string;\n  rpId: string;\n}): Promise<R> {\n  let challengeRes: Response;\n  try {\n    challengeRes = await fetch(opts.challengeUrl, {\n      method: 'POST',\n      headers: { 'Content-Type': 'application/json' },\n      body: JSON.stringify(opts.params),\n    });\n  } catch {\n    throw new Error('Network request failed (challenge)');\n  }\n\n  const challengeData = await readJson(challengeRes);\n  if (!challengeRes.ok || challengeData.success !== true) {\n    throw new Error(\n      typeof challengeData.error === 'string'\n        ? challengeData.error\n        : 'Failed to get challenge'\n    );\n  }\n\n  if (typeof challengeData.challenge !== 'string') {\n    throw new Error('Challenge response did not include a challenge');\n  }\n\n  const challengeBytes = base64UrlToBytes(challengeData.challenge);\n  const signature = await signWithPasskey(\n    opts.credentialId,\n    challengeBytes,\n    opts.rpId\n  );\n  await touchPasskeyLastUsedAt().catch((error) => {\n    console.warn('Failed to update passkey last-used timestamp:', error);\n  });\n\n  const { success: _success, error: _error, ...challengeFields } = challengeData;\n\n  let submitRes: Response;\n  try {\n    submitRes = await fetch(opts.submitUrl, {\n      method: 'POST',\n      headers: { 'Content-Type': 'application/json' },\n      body: JSON.stringify({\n        ...opts.params,\n        ...challengeFields,\n        signatureR: bytesToHex(signature.signatureR),\n        signatureS: bytesToHex(signature.signatureS),\n        authenticatorData: bytesToBase64(signature.authenticatorData),\n        clientDataJSON: bytesToBase64(signature.clientDataJSON),\n      }),\n    });\n  } catch {\n    throw new Error('Network request failed (submit)');\n  }\n\n  const submitData = await readJson(submitRes);\n  if (!submitRes.ok || submitData.success !== true) {\n    throw new Error(\n      typeof submitData.error === 'string'\n        ? submitData.error\n        : 'Failed to submit transaction'\n    );\n  }\n\n  return submitData as R;\n}\n","import { bytesToHex } from '@thru/passkey-manager';\nimport { create } from 'zustand';\nimport { classifyPasskeyError } from '../mobile/errors';\nimport {\n  authenticateWithDiscoverablePasskey,\n  registerPasskey,\n  signWithPasskey,\n} from '../mobile/passkey';\nimport {\n  clearPasskeyMetadata,\n  clearSession,\n  getStoredAddress,\n  getStoredPasskeyMetadata,\n  getStoredUserId,\n  hasStoredPasskey,\n  hasStoredWallet,\n  storePasskeyMetadata,\n  storeWalletInfo,\n  touchPasskeyLastUsedAt,\n} from '../mobile/storage';\nimport type {\n  PasskeyAuthApiResponse,\n  PasskeyAuthBoundStore,\n  PasskeyAuthConfig,\n  PasskeyAuthStore,\n  PasskeyUser,\n} from './types';\n\nconst storeCache = new Map<string, PasskeyAuthBoundStore<any>>();\n\nfunction createStoreKey(config: PasskeyAuthConfig): string {\n  return [config.apiUrl, config.alias ?? '', config.rpId ?? '', config.rpName ?? ''].join('::');\n}\n\nfunction buildDisplayName(address: string): string {\n  return `${address.slice(0, 8)}...${address.slice(-4)}`;\n}\n\nfunction toPasskeyUser<TExtra>(\n  user: PasskeyAuthApiResponse<TExtra>['user']\n): PasskeyUser<TExtra> {\n  return {\n    id: user.id,\n    displayName: buildDisplayName(user.publicKey),\n    tokenAccountAddress: user.tokenAccountAddress ?? null,\n    extras: user.extras,\n  };\n}\n\nasync function readJson<T>(response: Response): Promise<T> {\n  return (await response.json()) as T;\n}\n\nasync function postJson<T>(\n  url: string,\n  body: Record<string, unknown>\n): Promise<T> {\n  const response = await fetch(url, {\n    method: 'POST',\n    headers: { 'Content-Type': 'application/json' },\n    body: JSON.stringify(body),\n  });\n\n  const data = await readJson<Record<string, unknown>>(response);\n  if (!response.ok || data.success !== true) {\n    throw new Error(\n      typeof data.error === 'string' ? data.error : 'Request failed'\n    );\n  }\n\n  return data as unknown as T;\n}\n\nasync function getCurrentUser<TExtra>(\n  apiUrl: string,\n  address: string\n): Promise<PasskeyAuthApiResponse<TExtra> | null> {\n  const response = await fetch(`${apiUrl}/auth/me`, {\n    headers: {\n      'Content-Type': 'application/json',\n      'x-wallet-address': address,\n    },\n  });\n\n  if (response.status === 404) return null;\n\n  const data = await readJson<Record<string, unknown>>(response);\n  if (!response.ok || data.success !== true) {\n    throw new Error(\n      typeof data.error === 'string' ? data.error : 'Failed to fetch current user'\n    );\n  }\n\n  return data as unknown as PasskeyAuthApiResponse<TExtra>;\n}\n\nexport function createPasskeyAuthStore<TExtra = Record<string, never>>(\n  config: PasskeyAuthConfig\n): PasskeyAuthBoundStore<TExtra> {\n  const resolvedAlias = config.alias ?? 'Thru Wallet';\n\n  return create<PasskeyAuthStore<TExtra>>((set, get) => ({\n    isAuthenticated: false,\n    isLoading: false,\n    isInitialized: false,\n    hasExistingPasskey: false,\n    needsNewPasskey: false,\n    error: null,\n    user: null,\n    address: null,\n    activeCredentialId: null,\n\n    initialize: async () => {\n      try {\n        const hasPasskey = await hasStoredPasskey();\n\n        if (hasPasskey) {\n          const storedAddress = await getStoredAddress();\n          if (storedAddress) {\n            const user = await Promise.race([\n              getCurrentUser<TExtra>(config.apiUrl, storedAddress),\n              new Promise<null>((_, reject) =>\n                setTimeout(() => reject(new Error('timeout')), 2000)\n              ),\n            ]).catch(() => undefined);\n\n            if (user === null) {\n              await clearSession();\n              await clearPasskeyMetadata();\n              set({ isInitialized: true, hasExistingPasskey: false });\n              return;\n            }\n          } else {\n            const metadata = await getStoredPasskeyMetadata();\n            if (metadata && !metadata.publicKeyX && !metadata.publicKeyY) {\n              await clearPasskeyMetadata();\n              set({ isInitialized: true, hasExistingPasskey: false });\n              return;\n            }\n          }\n        }\n\n        set({ isInitialized: true, hasExistingPasskey: hasPasskey });\n      } catch (error) {\n        console.error('Failed to initialize passkey auth:', error);\n        set({ isInitialized: true, error: 'Failed to initialize wallet' });\n      }\n    },\n\n    createWallet: async () => {\n      set({ isLoading: true, error: null, needsNewPasskey: false });\n\n      try {\n        const tempId = `user-${Date.now()}`;\n        const { credentialId, publicKeyX, publicKeyY, rpId } =\n          await registerPasskey(resolvedAlias, tempId, {\n            rpId: config.rpId,\n            rpName: config.rpName,\n          });\n\n        const now = new Date().toISOString();\n        const pubkeyXHex = bytesToHex(publicKeyX);\n        const pubkeyYHex = bytesToHex(publicKeyY);\n\n        await storePasskeyMetadata({\n          credentialId,\n          publicKeyX: pubkeyXHex,\n          publicKeyY: pubkeyYHex,\n          rpId,\n          createdAt: now,\n          lastUsedAt: now,\n        });\n\n        const response = await postJson<PasskeyAuthApiResponse<TExtra>>(\n          `${config.apiUrl}/auth/register-passkey-wallet`,\n          {\n            pubkeyX: pubkeyXHex,\n            pubkeyY: pubkeyYHex,\n            credentialId,\n          }\n        );\n\n        const walletAddress = response.user.publicKey;\n        await storeWalletInfo(\n          walletAddress,\n          response.user.id,\n          response.user.tokenAccountAddress ?? undefined\n        );\n\n        set({\n          isLoading: false,\n          isAuthenticated: true,\n          hasExistingPasskey: true,\n          activeCredentialId: credentialId,\n          address: walletAddress,\n          user: toPasskeyUser(response.user),\n        });\n\n        return true;\n      } catch (error) {\n        if (classifyPasskeyError(error) === 'USER_CANCELLED') {\n          set({ isLoading: false });\n          return false;\n        }\n\n        console.error('Failed to create passkey wallet:', error);\n        set({\n          isLoading: false,\n          error: error instanceof Error ? error.message : 'Failed to create wallet',\n        });\n        return false;\n      }\n    },\n\n    unlockWithPasskey: async () => {\n      set({ isLoading: true, error: null, needsNewPasskey: false });\n\n      try {\n        const metadata = await getStoredPasskeyMetadata();\n        if (!metadata) throw new Error('No stored passkey found');\n\n        await signWithPasskey(\n          metadata.credentialId,\n          crypto.getRandomValues(new Uint8Array(32)),\n          metadata.rpId\n        );\n        await touchPasskeyLastUsedAt().catch((error) => {\n          console.warn('Failed to update passkey last-used timestamp:', error);\n        });\n\n        const hasWallet = await hasStoredWallet();\n        let walletAddress: string;\n        let userId: string;\n        let tokenAccountAddress: string | undefined;\n        let response: PasskeyAuthApiResponse<TExtra> | null = null;\n\n        if (hasWallet) {\n          const storedAddress = await getStoredAddress();\n          const storedUserId = await getStoredUserId();\n          if (!storedAddress || !storedUserId) {\n            throw new Error('Incomplete wallet data');\n          }\n\n          walletAddress = storedAddress;\n          userId = storedUserId;\n\n          const current = await getCurrentUser<TExtra>(config.apiUrl, walletAddress);\n          if (current) {\n            response = current;\n            tokenAccountAddress = current.user.tokenAccountAddress ?? undefined;\n          } else if (metadata.publicKeyX && metadata.publicKeyY) {\n            response = await postJson<PasskeyAuthApiResponse<TExtra>>(\n              `${config.apiUrl}/auth/register-passkey-wallet`,\n              {\n                pubkeyX: metadata.publicKeyX,\n                pubkeyY: metadata.publicKeyY,\n                credentialId: metadata.credentialId,\n              }\n            );\n            walletAddress = response.user.publicKey;\n            userId = response.user.id;\n            tokenAccountAddress = response.user.tokenAccountAddress ?? undefined;\n            await storeWalletInfo(walletAddress, userId, tokenAccountAddress);\n          } else {\n            await clearSession();\n            await clearPasskeyMetadata();\n            set({ isLoading: false, hasExistingPasskey: false, error: null });\n            return false;\n          }\n        } else if (metadata.publicKeyX && metadata.publicKeyY) {\n          response = await postJson<PasskeyAuthApiResponse<TExtra>>(\n            `${config.apiUrl}/auth/register-passkey-wallet`,\n            {\n              pubkeyX: metadata.publicKeyX,\n              pubkeyY: metadata.publicKeyY,\n              credentialId: metadata.credentialId,\n            }\n          );\n          walletAddress = response.user.publicKey;\n          userId = response.user.id;\n          tokenAccountAddress = response.user.tokenAccountAddress ?? undefined;\n          await storeWalletInfo(walletAddress, userId, tokenAccountAddress);\n        } else {\n          const recovered = await postJson<PasskeyAuthApiResponse<TExtra>>(\n            `${config.apiUrl}/auth/recover-passkey-wallet`,\n            { credentialId: metadata.credentialId }\n          ).catch(() => null);\n\n          if (!recovered) {\n            await clearSession();\n            await clearPasskeyMetadata();\n            set({ isLoading: false, hasExistingPasskey: false, error: null });\n            return false;\n          }\n\n          response = recovered;\n          walletAddress = recovered.user.publicKey;\n          userId = recovered.user.id;\n          tokenAccountAddress = recovered.user.tokenAccountAddress ?? undefined;\n          await storeWalletInfo(walletAddress, userId, tokenAccountAddress);\n        }\n\n        set({\n          isLoading: false,\n          isAuthenticated: true,\n          activeCredentialId: metadata.credentialId,\n          address: walletAddress,\n          user: response ? toPasskeyUser(response.user) : get().user,\n        });\n\n        return true;\n      } catch (error) {\n        console.error('Failed to unlock with passkey:', error);\n        const kind = classifyPasskeyError(error);\n\n        if (kind === 'USER_CANCELLED') {\n          set({ isLoading: false });\n        } else if (kind === 'NOT_FOUND') {\n          await clearPasskeyMetadata();\n          set({ isLoading: false, hasExistingPasskey: false, error: null });\n        } else {\n          set({\n            isLoading: false,\n            error: error instanceof Error ? error.message : 'Failed to unlock',\n          });\n        }\n\n        return false;\n      }\n    },\n\n    recoverWithDiscoverablePasskey: async () => {\n      set({ isLoading: true, error: null, needsNewPasskey: false });\n\n      try {\n        const discovered = await authenticateWithDiscoverablePasskey({\n          rpId: config.rpId,\n        });\n\n        if (!discovered) {\n          set({ isLoading: false });\n          return false;\n        }\n\n        const response = await postJson<PasskeyAuthApiResponse<TExtra>>(\n          `${config.apiUrl}/auth/recover-passkey-wallet`,\n          { credentialId: discovered.credentialId }\n        ).catch(() => null);\n\n        if (!response) {\n          set({ isLoading: false, needsNewPasskey: true });\n          return false;\n        }\n\n        const walletAddress = response.user.publicKey;\n        const userId = response.user.id;\n        const tokenAccountAddress = response.user.tokenAccountAddress ?? undefined;\n        const now = new Date().toISOString();\n\n        await storePasskeyMetadata({\n          credentialId: discovered.credentialId,\n          publicKeyX: '',\n          publicKeyY: '',\n          rpId: discovered.rpId,\n          createdAt: now,\n          lastUsedAt: now,\n        });\n        await storeWalletInfo(walletAddress, userId, tokenAccountAddress);\n\n        set({\n          isLoading: false,\n          isAuthenticated: true,\n          hasExistingPasskey: true,\n          activeCredentialId: discovered.credentialId,\n          address: walletAddress,\n          user: toPasskeyUser(response.user),\n        });\n\n        return true;\n      } catch (error) {\n        console.error('Failed to recover with discoverable passkey:', error);\n        set({\n          isLoading: false,\n          error:\n            error instanceof Error ? error.message : 'Failed to recover wallet',\n        });\n        return false;\n      }\n    },\n\n    logout: async () => {\n      try {\n        await clearSession();\n      } catch (error) {\n        console.error('Failed to clear passkey session:', error);\n      }\n\n      set({\n        isAuthenticated: false,\n        needsNewPasskey: false,\n        user: null,\n        address: null,\n        activeCredentialId: null,\n      });\n    },\n\n    clearError: () => set({ error: null }),\n    dismissNewPasskey: () => set({ needsNewPasskey: false }),\n  }));\n}\n\nexport function getPasskeyAuthStore<TExtra = Record<string, never>>(\n  config: PasskeyAuthConfig\n): PasskeyAuthBoundStore<TExtra> {\n  const key = createStoreKey(config);\n  const cached = storeCache.get(key) as PasskeyAuthBoundStore<TExtra> | undefined;\n  if (cached) return cached;\n\n  const store = createPasskeyAuthStore<TExtra>(config);\n  storeCache.set(key, store);\n  return store;\n}\n\nexport function usePasskeyAuth<TExtra = Record<string, never>>(\n  config: PasskeyAuthConfig\n): PasskeyAuthStore<TExtra> {\n  return getPasskeyAuthStore<TExtra>(config)();\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA,SAAS,kBAAkB,eAAe,kBAAkB;AAI5D,eAAe,SAAS,UAAsD;AAC5E,MAAI;AACF,WAAQ,MAAM,SAAS,KAAK;AAAA,EAC9B,QAAQ;AACN,UAAM,IAAI,MAAM,2BAA2B,SAAS,MAAM,GAAG;AAAA,EAC/D;AACF;AAEA,eAAsB,0BAGpB,MAMa;AACb,MAAI;AACJ,MAAI;AACF,mBAAe,MAAM,MAAM,KAAK,cAAc;AAAA,MAC5C,QAAQ;AAAA,MACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,MAC9C,MAAM,KAAK,UAAU,KAAK,MAAM;AAAA,IAClC,CAAC;AAAA,EACH,QAAQ;AACN,UAAM,IAAI,MAAM,oCAAoC;AAAA,EACtD;AAEA,QAAM,gBAAgB,MAAM,SAAS,YAAY;AACjD,MAAI,CAAC,aAAa,MAAM,cAAc,YAAY,MAAM;AACtD,UAAM,IAAI;AAAA,MACR,OAAO,cAAc,UAAU,WAC3B,cAAc,QACd;AAAA,IACN;AAAA,EACF;AAEA,MAAI,OAAO,cAAc,cAAc,UAAU;AAC/C,UAAM,IAAI,MAAM,gDAAgD;AAAA,EAClE;AAEA,QAAM,iBAAiB,iBAAiB,cAAc,SAAS;AAC/D,QAAM,YAAY,MAAM;AAAA,IACtB,KAAK;AAAA,IACL;AAAA,IACA,KAAK;AAAA,EACP;AACA,QAAM,uBAAuB,EAAE,MAAM,CAAC,UAAU;AAC9C,YAAQ,KAAK,iDAAiD,KAAK;AAAA,EACrE,CAAC;AAED,QAAM,EAAE,SAAS,UAAU,OAAO,QAAQ,GAAG,gBAAgB,IAAI;AAEjE,MAAI;AACJ,MAAI;AACF,gBAAY,MAAM,MAAM,KAAK,WAAW;AAAA,MACtC,QAAQ;AAAA,MACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,MAC9C,MAAM,KAAK,UAAU;AAAA,QACnB,GAAG,KAAK;AAAA,QACR,GAAG;AAAA,QACH,YAAY,WAAW,UAAU,UAAU;AAAA,QAC3C,YAAY,WAAW,UAAU,UAAU;AAAA,QAC3C,mBAAmB,cAAc,UAAU,iBAAiB;AAAA,QAC5D,gBAAgB,cAAc,UAAU,cAAc;AAAA,MACxD,CAAC;AAAA,IACH,CAAC;AAAA,EACH,QAAQ;AACN,UAAM,IAAI,MAAM,iCAAiC;AAAA,EACnD;AAEA,QAAM,aAAa,MAAM,SAAS,SAAS;AAC3C,MAAI,CAAC,UAAU,MAAM,WAAW,YAAY,MAAM;AAChD,UAAM,IAAI;AAAA,MACR,OAAO,WAAW,UAAU,WACxB,WAAW,QACX;AAAA,IACN;AAAA,EACF;AAEA,SAAO;AACT;;;ACtFA,SAAS,cAAAA,mBAAkB;AAC3B,SAAS,cAAc;AA2BvB,IAAM,aAAa,oBAAI,IAAwC;AAE/D,SAAS,eAAe,QAAmC;AACzD,SAAO,CAAC,OAAO,QAAQ,OAAO,SAAS,IAAI,OAAO,QAAQ,IAAI,OAAO,UAAU,EAAE,EAAE,KAAK,IAAI;AAC9F;AAEA,SAAS,iBAAiB,SAAyB;AACjD,SAAO,GAAG,QAAQ,MAAM,GAAG,CAAC,CAAC,MAAM,QAAQ,MAAM,EAAE,CAAC;AACtD;AAEA,SAAS,cACP,MACqB;AACrB,SAAO;AAAA,IACL,IAAI,KAAK;AAAA,IACT,aAAa,iBAAiB,KAAK,SAAS;AAAA,IAC5C,qBAAqB,KAAK,uBAAuB;AAAA,IACjD,QAAQ,KAAK;AAAA,EACf;AACF;AAEA,eAAeC,UAAY,UAAgC;AACzD,SAAQ,MAAM,SAAS,KAAK;AAC9B;AAEA,eAAe,SACb,KACA,MACY;AACZ,QAAM,WAAW,MAAM,MAAM,KAAK;AAAA,IAChC,QAAQ;AAAA,IACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,IAC9C,MAAM,KAAK,UAAU,IAAI;AAAA,EAC3B,CAAC;AAED,QAAM,OAAO,MAAMA,UAAkC,QAAQ;AAC7D,MAAI,CAAC,SAAS,MAAM,KAAK,YAAY,MAAM;AACzC,UAAM,IAAI;AAAA,MACR,OAAO,KAAK,UAAU,WAAW,KAAK,QAAQ;AAAA,IAChD;AAAA,EACF;AAEA,SAAO;AACT;AAEA,eAAe,eACb,QACA,SACgD;AAChD,QAAM,WAAW,MAAM,MAAM,GAAG,MAAM,YAAY;AAAA,IAChD,SAAS;AAAA,MACP,gBAAgB;AAAA,MAChB,oBAAoB;AAAA,IACtB;AAAA,EACF,CAAC;AAED,MAAI,SAAS,WAAW,IAAK,QAAO;AAEpC,QAAM,OAAO,MAAMA,UAAkC,QAAQ;AAC7D,MAAI,CAAC,SAAS,MAAM,KAAK,YAAY,MAAM;AACzC,UAAM,IAAI;AAAA,MACR,OAAO,KAAK,UAAU,WAAW,KAAK,QAAQ;AAAA,IAChD;AAAA,EACF;AAEA,SAAO;AACT;AAEO,SAAS,uBACd,QAC+B;AAC/B,QAAM,gBAAgB,OAAO,SAAS;AAEtC,SAAO,OAAiC,CAAC,KAAK,SAAS;AAAA,IACrD,iBAAiB;AAAA,IACjB,WAAW;AAAA,IACX,eAAe;AAAA,IACf,oBAAoB;AAAA,IACpB,iBAAiB;AAAA,IACjB,OAAO;AAAA,IACP,MAAM;AAAA,IACN,SAAS;AAAA,IACT,oBAAoB;AAAA,IAEpB,YAAY,YAAY;AACtB,UAAI;AACF,cAAM,aAAa,MAAM,iBAAiB;AAE1C,YAAI,YAAY;AACd,gBAAM,gBAAgB,MAAM,iBAAiB;AAC7C,cAAI,eAAe;AACjB,kBAAM,OAAO,MAAM,QAAQ,KAAK;AAAA,cAC9B,eAAuB,OAAO,QAAQ,aAAa;AAAA,cACnD,IAAI;AAAA,gBAAc,CAAC,GAAG,WACpB,WAAW,MAAM,OAAO,IAAI,MAAM,SAAS,CAAC,GAAG,GAAI;AAAA,cACrD;AAAA,YACF,CAAC,EAAE,MAAM,MAAM,MAAS;AAExB,gBAAI,SAAS,MAAM;AACjB,oBAAM,aAAa;AACnB,oBAAM,qBAAqB;AAC3B,kBAAI,EAAE,eAAe,MAAM,oBAAoB,MAAM,CAAC;AACtD;AAAA,YACF;AAAA,UACF,OAAO;AACL,kBAAM,WAAW,MAAM,yBAAyB;AAChD,gBAAI,YAAY,CAAC,SAAS,cAAc,CAAC,SAAS,YAAY;AAC5D,oBAAM,qBAAqB;AAC3B,kBAAI,EAAE,eAAe,MAAM,oBAAoB,MAAM,CAAC;AACtD;AAAA,YACF;AAAA,UACF;AAAA,QACF;AAEA,YAAI,EAAE,eAAe,MAAM,oBAAoB,WAAW,CAAC;AAAA,MAC7D,SAAS,OAAO;AACd,gBAAQ,MAAM,sCAAsC,KAAK;AACzD,YAAI,EAAE,eAAe,MAAM,OAAO,8BAA8B,CAAC;AAAA,MACnE;AAAA,IACF;AAAA,IAEA,cAAc,YAAY;AACxB,UAAI,EAAE,WAAW,MAAM,OAAO,MAAM,iBAAiB,MAAM,CAAC;AAE5D,UAAI;AACF,cAAM,SAAS,QAAQ,KAAK,IAAI,CAAC;AACjC,cAAM,EAAE,cAAc,YAAY,YAAY,KAAK,IACjD,MAAM,gBAAgB,eAAe,QAAQ;AAAA,UAC3C,MAAM,OAAO;AAAA,UACb,QAAQ,OAAO;AAAA,QACjB,CAAC;AAEH,cAAM,OAAM,oBAAI,KAAK,GAAE,YAAY;AACnC,cAAM,aAAaC,YAAW,UAAU;AACxC,cAAM,aAAaA,YAAW,UAAU;AAExC,cAAM,qBAAqB;AAAA,UACzB;AAAA,UACA,YAAY;AAAA,UACZ,YAAY;AAAA,UACZ;AAAA,UACA,WAAW;AAAA,UACX,YAAY;AAAA,QACd,CAAC;AAED,cAAM,WAAW,MAAM;AAAA,UACrB,GAAG,OAAO,MAAM;AAAA,UAChB;AAAA,YACE,SAAS;AAAA,YACT,SAAS;AAAA,YACT;AAAA,UACF;AAAA,QACF;AAEA,cAAM,gBAAgB,SAAS,KAAK;AACpC,cAAM;AAAA,UACJ;AAAA,UACA,SAAS,KAAK;AAAA,UACd,SAAS,KAAK,uBAAuB;AAAA,QACvC;AAEA,YAAI;AAAA,UACF,WAAW;AAAA,UACX,iBAAiB;AAAA,UACjB,oBAAoB;AAAA,UACpB,oBAAoB;AAAA,UACpB,SAAS;AAAA,UACT,MAAM,cAAc,SAAS,IAAI;AAAA,QACnC,CAAC;AAED,eAAO;AAAA,MACT,SAAS,OAAO;AACd,YAAI,qBAAqB,KAAK,MAAM,kBAAkB;AACpD,cAAI,EAAE,WAAW,MAAM,CAAC;AACxB,iBAAO;AAAA,QACT;AAEA,gBAAQ,MAAM,oCAAoC,KAAK;AACvD,YAAI;AAAA,UACF,WAAW;AAAA,UACX,OAAO,iBAAiB,QAAQ,MAAM,UAAU;AAAA,QAClD,CAAC;AACD,eAAO;AAAA,MACT;AAAA,IACF;AAAA,IAEA,mBAAmB,YAAY;AAC7B,UAAI,EAAE,WAAW,MAAM,OAAO,MAAM,iBAAiB,MAAM,CAAC;AAE5D,UAAI;AACF,cAAM,WAAW,MAAM,yBAAyB;AAChD,YAAI,CAAC,SAAU,OAAM,IAAI,MAAM,yBAAyB;AAExD,cAAM;AAAA,UACJ,SAAS;AAAA,UACT,OAAO,gBAAgB,IAAI,WAAW,EAAE,CAAC;AAAA,UACzC,SAAS;AAAA,QACX;AACA,cAAM,uBAAuB,EAAE,MAAM,CAAC,UAAU;AAC9C,kBAAQ,KAAK,iDAAiD,KAAK;AAAA,QACrE,CAAC;AAED,cAAM,YAAY,MAAM,gBAAgB;AACxC,YAAI;AACJ,YAAI;AACJ,YAAI;AACJ,YAAI,WAAkD;AAEtD,YAAI,WAAW;AACb,gBAAM,gBAAgB,MAAM,iBAAiB;AAC7C,gBAAM,eAAe,MAAM,gBAAgB;AAC3C,cAAI,CAAC,iBAAiB,CAAC,cAAc;AACnC,kBAAM,IAAI,MAAM,wBAAwB;AAAA,UAC1C;AAEA,0BAAgB;AAChB,mBAAS;AAET,gBAAM,UAAU,MAAM,eAAuB,OAAO,QAAQ,aAAa;AACzE,cAAI,SAAS;AACX,uBAAW;AACX,kCAAsB,QAAQ,KAAK,uBAAuB;AAAA,UAC5D,WAAW,SAAS,cAAc,SAAS,YAAY;AACrD,uBAAW,MAAM;AAAA,cACf,GAAG,OAAO,MAAM;AAAA,cAChB;AAAA,gBACE,SAAS,SAAS;AAAA,gBAClB,SAAS,SAAS;AAAA,gBAClB,cAAc,SAAS;AAAA,cACzB;AAAA,YACF;AACA,4BAAgB,SAAS,KAAK;AAC9B,qBAAS,SAAS,KAAK;AACvB,kCAAsB,SAAS,KAAK,uBAAuB;AAC3D,kBAAM,gBAAgB,eAAe,QAAQ,mBAAmB;AAAA,UAClE,OAAO;AACL,kBAAM,aAAa;AACnB,kBAAM,qBAAqB;AAC3B,gBAAI,EAAE,WAAW,OAAO,oBAAoB,OAAO,OAAO,KAAK,CAAC;AAChE,mBAAO;AAAA,UACT;AAAA,QACF,WAAW,SAAS,cAAc,SAAS,YAAY;AACrD,qBAAW,MAAM;AAAA,YACf,GAAG,OAAO,MAAM;AAAA,YAChB;AAAA,cACE,SAAS,SAAS;AAAA,cAClB,SAAS,SAAS;AAAA,cAClB,cAAc,SAAS;AAAA,YACzB;AAAA,UACF;AACA,0BAAgB,SAAS,KAAK;AAC9B,mBAAS,SAAS,KAAK;AACvB,gCAAsB,SAAS,KAAK,uBAAuB;AAC3D,gBAAM,gBAAgB,eAAe,QAAQ,mBAAmB;AAAA,QAClE,OAAO;AACL,gBAAM,YAAY,MAAM;AAAA,YACtB,GAAG,OAAO,MAAM;AAAA,YAChB,EAAE,cAAc,SAAS,aAAa;AAAA,UACxC,EAAE,MAAM,MAAM,IAAI;AAElB,cAAI,CAAC,WAAW;AACd,kBAAM,aAAa;AACnB,kBAAM,qBAAqB;AAC3B,gBAAI,EAAE,WAAW,OAAO,oBAAoB,OAAO,OAAO,KAAK,CAAC;AAChE,mBAAO;AAAA,UACT;AAEA,qBAAW;AACX,0BAAgB,UAAU,KAAK;AAC/B,mBAAS,UAAU,KAAK;AACxB,gCAAsB,UAAU,KAAK,uBAAuB;AAC5D,gBAAM,gBAAgB,eAAe,QAAQ,mBAAmB;AAAA,QAClE;AAEA,YAAI;AAAA,UACF,WAAW;AAAA,UACX,iBAAiB;AAAA,UACjB,oBAAoB,SAAS;AAAA,UAC7B,SAAS;AAAA,UACT,MAAM,WAAW,cAAc,SAAS,IAAI,IAAI,IAAI,EAAE;AAAA,QACxD,CAAC;AAED,eAAO;AAAA,MACT,SAAS,OAAO;AACd,gBAAQ,MAAM,kCAAkC,KAAK;AACrD,cAAM,OAAO,qBAAqB,KAAK;AAEvC,YAAI,SAAS,kBAAkB;AAC7B,cAAI,EAAE,WAAW,MAAM,CAAC;AAAA,QAC1B,WAAW,SAAS,aAAa;AAC/B,gBAAM,qBAAqB;AAC3B,cAAI,EAAE,WAAW,OAAO,oBAAoB,OAAO,OAAO,KAAK,CAAC;AAAA,QAClE,OAAO;AACL,cAAI;AAAA,YACF,WAAW;AAAA,YACX,OAAO,iBAAiB,QAAQ,MAAM,UAAU;AAAA,UAClD,CAAC;AAAA,QACH;AAEA,eAAO;AAAA,MACT;AAAA,IACF;AAAA,IAEA,gCAAgC,YAAY;AAC1C,UAAI,EAAE,WAAW,MAAM,OAAO,MAAM,iBAAiB,MAAM,CAAC;AAE5D,UAAI;AACF,cAAM,aAAa,MAAM,oCAAoC;AAAA,UAC3D,MAAM,OAAO;AAAA,QACf,CAAC;AAED,YAAI,CAAC,YAAY;AACf,cAAI,EAAE,WAAW,MAAM,CAAC;AACxB,iBAAO;AAAA,QACT;AAEA,cAAM,WAAW,MAAM;AAAA,UACrB,GAAG,OAAO,MAAM;AAAA,UAChB,EAAE,cAAc,WAAW,aAAa;AAAA,QAC1C,EAAE,MAAM,MAAM,IAAI;AAElB,YAAI,CAAC,UAAU;AACb,cAAI,EAAE,WAAW,OAAO,iBAAiB,KAAK,CAAC;AAC/C,iBAAO;AAAA,QACT;AAEA,cAAM,gBAAgB,SAAS,KAAK;AACpC,cAAM,SAAS,SAAS,KAAK;AAC7B,cAAM,sBAAsB,SAAS,KAAK,uBAAuB;AACjE,cAAM,OAAM,oBAAI,KAAK,GAAE,YAAY;AAEnC,cAAM,qBAAqB;AAAA,UACzB,cAAc,WAAW;AAAA,UACzB,YAAY;AAAA,UACZ,YAAY;AAAA,UACZ,MAAM,WAAW;AAAA,UACjB,WAAW;AAAA,UACX,YAAY;AAAA,QACd,CAAC;AACD,cAAM,gBAAgB,eAAe,QAAQ,mBAAmB;AAEhE,YAAI;AAAA,UACF,WAAW;AAAA,UACX,iBAAiB;AAAA,UACjB,oBAAoB;AAAA,UACpB,oBAAoB,WAAW;AAAA,UAC/B,SAAS;AAAA,UACT,MAAM,cAAc,SAAS,IAAI;AAAA,QACnC,CAAC;AAED,eAAO;AAAA,MACT,SAAS,OAAO;AACd,gBAAQ,MAAM,gDAAgD,KAAK;AACnE,YAAI;AAAA,UACF,WAAW;AAAA,UACX,OACE,iBAAiB,QAAQ,MAAM,UAAU;AAAA,QAC7C,CAAC;AACD,eAAO;AAAA,MACT;AAAA,IACF;AAAA,IAEA,QAAQ,YAAY;AAClB,UAAI;AACF,cAAM,aAAa;AAAA,MACrB,SAAS,OAAO;AACd,gBAAQ,MAAM,oCAAoC,KAAK;AAAA,MACzD;AAEA,UAAI;AAAA,QACF,iBAAiB;AAAA,QACjB,iBAAiB;AAAA,QACjB,MAAM;AAAA,QACN,SAAS;AAAA,QACT,oBAAoB;AAAA,MACtB,CAAC;AAAA,IACH;AAAA,IAEA,YAAY,MAAM,IAAI,EAAE,OAAO,KAAK,CAAC;AAAA,IACrC,mBAAmB,MAAM,IAAI,EAAE,iBAAiB,MAAM,CAAC;AAAA,EACzD,EAAE;AACJ;AAEO,SAAS,oBACd,QAC+B;AAC/B,QAAM,MAAM,eAAe,MAAM;AACjC,QAAM,SAAS,WAAW,IAAI,GAAG;AACjC,MAAI,OAAQ,QAAO;AAEnB,QAAM,QAAQ,uBAA+B,MAAM;AACnD,aAAW,IAAI,KAAK,KAAK;AACzB,SAAO;AACT;AAEO,SAAS,eACd,QAC0B;AAC1B,SAAO,oBAA4B,MAAM,EAAE;AAC7C;","names":["bytesToHex","readJson","bytesToHex"]}

package/dist/chunk-2JHC7OOH.js

@@ -0,0 +1,250 @@
+// src/mobile/errors.ts
+var PASSKEY_ERRORS = {
+  USER_CANCELLED: [
+    "error 1001",
+    "UserCancelled",
+    "Passkey authentication was cancelled",
+    "Passkey registration was cancelled"
+  ],
+  NOT_FOUND: [
+    "not found",
+    "No credentials available",
+    "no passkey",
+    "NoCredentials"
+  ]
+};
+function classifyPasskeyError(error) {
+  const message = error instanceof Error ? error.message : typeof error === "string" ? error : null;
+  if (!message) return null;
+  for (const [kind, patterns] of Object.entries(PASSKEY_ERRORS)) {
+    if (patterns.some((pattern) => message.includes(pattern))) {
+      return kind;
+    }
+  }
+  return null;
+}
+
+// src/mobile/storage.ts
+import * as SecureStore from "expo-secure-store";
+var SECURE_STORE_OPTS = {
+  keychainAccessible: SecureStore.WHEN_UNLOCKED_THIS_DEVICE_ONLY
+};
+var PASSKEY_CREDENTIAL_ID_KEY = "thru_passkey_credential_id";
+var PASSKEY_PUBLIC_KEY_X_KEY = "thru_passkey_pubkey_x";
+var PASSKEY_PUBLIC_KEY_Y_KEY = "thru_passkey_pubkey_y";
+var PASSKEY_RP_ID_KEY = "thru_passkey_rp_id";
+var PASSKEY_LABEL_KEY = "thru_passkey_label";
+var PASSKEY_CREATED_AT_KEY = "thru_passkey_created_at";
+var PASSKEY_LAST_USED_AT_KEY = "thru_passkey_last_used_at";
+var ADDRESS_KEY = "thru_address";
+var USER_ID_KEY = "thru_user_id";
+var TOKEN_ACCOUNT_KEY = "thru_token_account";
+async function storePasskeyMetadata(metadata) {
+  await Promise.all([
+    SecureStore.setItemAsync(PASSKEY_CREDENTIAL_ID_KEY, metadata.credentialId, SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(PASSKEY_PUBLIC_KEY_X_KEY, metadata.publicKeyX, SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(PASSKEY_PUBLIC_KEY_Y_KEY, metadata.publicKeyY, SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(PASSKEY_RP_ID_KEY, metadata.rpId, SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(PASSKEY_LABEL_KEY, metadata.label ?? "", SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(PASSKEY_CREATED_AT_KEY, metadata.createdAt, SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(PASSKEY_LAST_USED_AT_KEY, metadata.lastUsedAt, SECURE_STORE_OPTS)
+  ]);
+}
+async function getStoredPasskeyMetadata() {
+  const credentialId = await SecureStore.getItemAsync(PASSKEY_CREDENTIAL_ID_KEY);
+  if (!credentialId) return null;
+  const [publicKeyX, publicKeyY, rpId, label, createdAt, lastUsedAt] = await Promise.all([
+    SecureStore.getItemAsync(PASSKEY_PUBLIC_KEY_X_KEY),
+    SecureStore.getItemAsync(PASSKEY_PUBLIC_KEY_Y_KEY),
+    SecureStore.getItemAsync(PASSKEY_RP_ID_KEY),
+    SecureStore.getItemAsync(PASSKEY_LABEL_KEY),
+    SecureStore.getItemAsync(PASSKEY_CREATED_AT_KEY),
+    SecureStore.getItemAsync(PASSKEY_LAST_USED_AT_KEY)
+  ]);
+  if (!rpId || !createdAt) return null;
+  return {
+    credentialId,
+    publicKeyX: publicKeyX ?? "",
+    publicKeyY: publicKeyY ?? "",
+    rpId,
+    label: label || void 0,
+    createdAt,
+    lastUsedAt: lastUsedAt ?? createdAt
+  };
+}
+async function touchPasskeyLastUsedAt(lastUsedAt = (/* @__PURE__ */ new Date()).toISOString()) {
+  await SecureStore.setItemAsync(PASSKEY_LAST_USED_AT_KEY, lastUsedAt, SECURE_STORE_OPTS);
+  return lastUsedAt;
+}
+async function hasStoredPasskey() {
+  return await SecureStore.getItemAsync(PASSKEY_CREDENTIAL_ID_KEY) !== null;
+}
+async function clearPasskeyMetadata() {
+  await Promise.all([
+    SecureStore.deleteItemAsync(PASSKEY_CREDENTIAL_ID_KEY),
+    SecureStore.deleteItemAsync(PASSKEY_PUBLIC_KEY_X_KEY),
+    SecureStore.deleteItemAsync(PASSKEY_PUBLIC_KEY_Y_KEY),
+    SecureStore.deleteItemAsync(PASSKEY_RP_ID_KEY),
+    SecureStore.deleteItemAsync(PASSKEY_LABEL_KEY),
+    SecureStore.deleteItemAsync(PASSKEY_CREATED_AT_KEY),
+    SecureStore.deleteItemAsync(PASSKEY_LAST_USED_AT_KEY)
+  ]);
+}
+async function storeWalletInfo(address, userId, tokenAccountAddress) {
+  await Promise.all([
+    SecureStore.setItemAsync(ADDRESS_KEY, address, SECURE_STORE_OPTS),
+    SecureStore.setItemAsync(USER_ID_KEY, userId, SECURE_STORE_OPTS),
+    tokenAccountAddress ? SecureStore.setItemAsync(TOKEN_ACCOUNT_KEY, tokenAccountAddress, SECURE_STORE_OPTS) : SecureStore.deleteItemAsync(TOKEN_ACCOUNT_KEY)
+  ]);
+}
+async function hasStoredWallet() {
+  return await SecureStore.getItemAsync(ADDRESS_KEY) !== null;
+}
+async function getStoredAddress() {
+  return SecureStore.getItemAsync(ADDRESS_KEY);
+}
+async function getStoredUserId() {
+  return SecureStore.getItemAsync(USER_ID_KEY);
+}
+async function getStoredTokenAccount() {
+  return SecureStore.getItemAsync(TOKEN_ACCOUNT_KEY);
+}
+async function clearSession() {
+  await Promise.all([
+    SecureStore.deleteItemAsync(ADDRESS_KEY),
+    SecureStore.deleteItemAsync(USER_ID_KEY),
+    SecureStore.deleteItemAsync(TOKEN_ACCOUNT_KEY)
+  ]);
+}
+
+// src/mobile/passkey.ts
+import { create as passkeyCreate, get as passkeyGet } from "react-native-passkeys";
+import {
+  bytesToBase64Url,
+  base64UrlToBytes,
+  normalizeLowS,
+  parseDerSignature
+} from "@thru/passkey-manager";
+function getDefaultConfig(config) {
+  const env = globalThis.process?.env ?? {};
+  return {
+    rpId: config?.rpId ?? env.EXPO_PUBLIC_PASSKEY_RP_ID ?? "wallet.thru.org",
+    rpName: config?.rpName ?? env.EXPO_PUBLIC_PASSKEY_RP_NAME ?? "Thru Wallet"
+  };
+}
+async function registerPasskey(alias, userId, config) {
+  const { rpId, rpName } = getDefaultConfig(config);
+  const challenge = bytesToBase64Url(crypto.getRandomValues(new Uint8Array(32)));
+  const userIdB64 = bytesToBase64Url(new TextEncoder().encode(userId));
+  const result = await passkeyCreate({
+    challenge,
+    rp: { id: rpId, name: rpName },
+    user: { id: userIdB64, name: alias, displayName: alias },
+    pubKeyCredParams: [{ type: "public-key", alg: -7 }],
+    authenticatorSelection: {
+      authenticatorAttachment: "platform",
+      userVerification: "required",
+      residentKey: "required"
+    },
+    attestation: "none",
+    timeout: 6e4
+  });
+  if (!result) {
+    throw new Error("Passkey registration was cancelled");
+  }
+  const publicKeyB64 = result.response.getPublicKey?.();
+  if (!publicKeyB64) {
+    throw new Error("Failed to retrieve public key from registration");
+  }
+  const keyBytes = base64UrlToBytes(publicKeyB64);
+  const { x, y } = extractP256Coordinates(keyBytes);
+  return {
+    credentialId: result.id,
+    publicKeyX: x,
+    publicKeyY: y,
+    rpId
+  };
+}
+async function signWithPasskey(credentialId, challenge, rpId) {
+  const resolvedRpId = rpId ?? getDefaultConfig().rpId;
+  const challengeB64 = bytesToBase64Url(challenge);
+  const result = await passkeyGet({
+    challenge: challengeB64,
+    rpId: resolvedRpId,
+    allowCredentials: [{ type: "public-key", id: credentialId }],
+    userVerification: "required",
+    timeout: 6e4
+  });
+  if (!result) {
+    throw new Error("Passkey authentication was cancelled");
+  }
+  const derSignature = base64UrlToBytes(result.response.signature);
+  let { r, s } = parseDerSignature(derSignature);
+  s = normalizeLowS(s);
+  return {
+    signature: new Uint8Array([...r, ...s]),
+    authenticatorData: base64UrlToBytes(result.response.authenticatorData),
+    clientDataJSON: base64UrlToBytes(result.response.clientDataJSON),
+    signatureR: r,
+    signatureS: s
+  };
+}
+async function authenticateWithDiscoverablePasskey(config) {
+  const { rpId } = getDefaultConfig(config);
+  try {
+    const challenge = bytesToBase64Url(crypto.getRandomValues(new Uint8Array(32)));
+    const result = await passkeyGet({
+      challenge,
+      rpId,
+      userVerification: "required",
+      timeout: 6e4
+    });
+    return result ? { credentialId: result.id, rpId } : null;
+  } catch {
+    return null;
+  }
+}
+function extractP256Coordinates(keyBytes) {
+  if (keyBytes.length === 64) {
+    return {
+      x: keyBytes.slice(0, 32),
+      y: keyBytes.slice(32, 64)
+    };
+  }
+  if (keyBytes.length === 65 && keyBytes[0] === 4) {
+    return {
+      x: keyBytes.slice(1, 33),
+      y: keyBytes.slice(33, 65)
+    };
+  }
+  const pointStart = keyBytes.length - 65;
+  if (pointStart > 0 && keyBytes[pointStart] === 4) {
+    return {
+      x: keyBytes.slice(pointStart + 1, pointStart + 33),
+      y: keyBytes.slice(pointStart + 33, pointStart + 65)
+    };
+  }
+  throw new Error(
+    `Unsupported public key format (${keyBytes.length} bytes). Expected raw X||Y (64), uncompressed point (65), or SPKI DER (91).`
+  );
+}
+
+export {
+  classifyPasskeyError,
+  storePasskeyMetadata,
+  getStoredPasskeyMetadata,
+  touchPasskeyLastUsedAt,
+  hasStoredPasskey,
+  clearPasskeyMetadata,
+  storeWalletInfo,
+  hasStoredWallet,
+  getStoredAddress,
+  getStoredUserId,
+  getStoredTokenAccount,
+  clearSession,
+  registerPasskey,
+  signWithPasskey,
+  authenticateWithDiscoverablePasskey,
+  extractP256Coordinates
+};
+//# sourceMappingURL=chunk-2JHC7OOH.js.map

package/dist/chunk-2JHC7OOH.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/mobile/errors.ts","../src/mobile/storage.ts","../src/mobile/passkey.ts"],"sourcesContent":["const PASSKEY_ERRORS = {\n  USER_CANCELLED: [\n    'error 1001',\n    'UserCancelled',\n    'Passkey authentication was cancelled',\n    'Passkey registration was cancelled',\n  ],\n  NOT_FOUND: [\n    'not found',\n    'No credentials available',\n    'no passkey',\n    'NoCredentials',\n  ],\n} as const;\n\nexport type PasskeyErrorKind = keyof typeof PASSKEY_ERRORS;\n\nexport function classifyPasskeyError(error: unknown): PasskeyErrorKind | null {\n  const message =\n    error instanceof Error ? error.message : typeof error === 'string' ? error : null;\n\n  if (!message) return null;\n\n  for (const [kind, patterns] of Object.entries(PASSKEY_ERRORS)) {\n    if (patterns.some((pattern) => message.includes(pattern))) {\n      return kind as PasskeyErrorKind;\n    }\n  }\n\n  return null;\n}\n","import * as SecureStore from 'expo-secure-store';\nimport type { PasskeyMetadata } from '@thru/passkey-manager';\n\nconst SECURE_STORE_OPTS = {\n  keychainAccessible: SecureStore.WHEN_UNLOCKED_THIS_DEVICE_ONLY,\n} as const;\n\nconst PASSKEY_CREDENTIAL_ID_KEY = 'thru_passkey_credential_id';\nconst PASSKEY_PUBLIC_KEY_X_KEY = 'thru_passkey_pubkey_x';\nconst PASSKEY_PUBLIC_KEY_Y_KEY = 'thru_passkey_pubkey_y';\nconst PASSKEY_RP_ID_KEY = 'thru_passkey_rp_id';\nconst PASSKEY_LABEL_KEY = 'thru_passkey_label';\nconst PASSKEY_CREATED_AT_KEY = 'thru_passkey_created_at';\nconst PASSKEY_LAST_USED_AT_KEY = 'thru_passkey_last_used_at';\n\nconst ADDRESS_KEY = 'thru_address';\nconst USER_ID_KEY = 'thru_user_id';\nconst TOKEN_ACCOUNT_KEY = 'thru_token_account';\n\nexport async function storePasskeyMetadata(metadata: PasskeyMetadata): Promise<void> {\n  await Promise.all([\n    SecureStore.setItemAsync(PASSKEY_CREDENTIAL_ID_KEY, metadata.credentialId, SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(PASSKEY_PUBLIC_KEY_X_KEY, metadata.publicKeyX, SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(PASSKEY_PUBLIC_KEY_Y_KEY, metadata.publicKeyY, SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(PASSKEY_RP_ID_KEY, metadata.rpId, SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(PASSKEY_LABEL_KEY, metadata.label ?? '', SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(PASSKEY_CREATED_AT_KEY, metadata.createdAt, SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(PASSKEY_LAST_USED_AT_KEY, metadata.lastUsedAt, SECURE_STORE_OPTS),\n  ]);\n}\n\nexport async function getStoredPasskeyMetadata(): Promise<PasskeyMetadata | null> {\n  const credentialId = await SecureStore.getItemAsync(PASSKEY_CREDENTIAL_ID_KEY);\n  if (!credentialId) return null;\n\n  const [publicKeyX, publicKeyY, rpId, label, createdAt, lastUsedAt] = await Promise.all([\n    SecureStore.getItemAsync(PASSKEY_PUBLIC_KEY_X_KEY),\n    SecureStore.getItemAsync(PASSKEY_PUBLIC_KEY_Y_KEY),\n    SecureStore.getItemAsync(PASSKEY_RP_ID_KEY),\n    SecureStore.getItemAsync(PASSKEY_LABEL_KEY),\n    SecureStore.getItemAsync(PASSKEY_CREATED_AT_KEY),\n    SecureStore.getItemAsync(PASSKEY_LAST_USED_AT_KEY),\n  ]);\n\n  if (!rpId || !createdAt) return null;\n\n  return {\n    credentialId,\n    publicKeyX: publicKeyX ?? '',\n    publicKeyY: publicKeyY ?? '',\n    rpId,\n    label: label || undefined,\n    createdAt,\n    lastUsedAt: lastUsedAt ?? createdAt,\n  };\n}\n\nexport async function touchPasskeyLastUsedAt(lastUsedAt = new Date().toISOString()): Promise<string> {\n  await SecureStore.setItemAsync(PASSKEY_LAST_USED_AT_KEY, lastUsedAt, SECURE_STORE_OPTS);\n  return lastUsedAt;\n}\n\nexport async function hasStoredPasskey(): Promise<boolean> {\n  return (await SecureStore.getItemAsync(PASSKEY_CREDENTIAL_ID_KEY)) !== null;\n}\n\nexport async function clearPasskeyMetadata(): Promise<void> {\n  await Promise.all([\n    SecureStore.deleteItemAsync(PASSKEY_CREDENTIAL_ID_KEY),\n    SecureStore.deleteItemAsync(PASSKEY_PUBLIC_KEY_X_KEY),\n    SecureStore.deleteItemAsync(PASSKEY_PUBLIC_KEY_Y_KEY),\n    SecureStore.deleteItemAsync(PASSKEY_RP_ID_KEY),\n    SecureStore.deleteItemAsync(PASSKEY_LABEL_KEY),\n    SecureStore.deleteItemAsync(PASSKEY_CREATED_AT_KEY),\n    SecureStore.deleteItemAsync(PASSKEY_LAST_USED_AT_KEY),\n  ]);\n}\n\nexport async function storeWalletInfo(\n  address: string,\n  userId: string,\n  tokenAccountAddress?: string\n): Promise<void> {\n  await Promise.all([\n    SecureStore.setItemAsync(ADDRESS_KEY, address, SECURE_STORE_OPTS),\n    SecureStore.setItemAsync(USER_ID_KEY, userId, SECURE_STORE_OPTS),\n    tokenAccountAddress\n      ? SecureStore.setItemAsync(TOKEN_ACCOUNT_KEY, tokenAccountAddress, SECURE_STORE_OPTS)\n      : SecureStore.deleteItemAsync(TOKEN_ACCOUNT_KEY),\n  ]);\n}\n\nexport async function hasStoredWallet(): Promise<boolean> {\n  return (await SecureStore.getItemAsync(ADDRESS_KEY)) !== null;\n}\n\nexport async function getStoredAddress(): Promise<string | null> {\n  return SecureStore.getItemAsync(ADDRESS_KEY);\n}\n\nexport async function getStoredUserId(): Promise<string | null> {\n  return SecureStore.getItemAsync(USER_ID_KEY);\n}\n\nexport async function getStoredTokenAccount(): Promise<string | null> {\n  return SecureStore.getItemAsync(TOKEN_ACCOUNT_KEY);\n}\n\nexport async function clearSession(): Promise<void> {\n  await Promise.all([\n    SecureStore.deleteItemAsync(ADDRESS_KEY),\n    SecureStore.deleteItemAsync(USER_ID_KEY),\n    SecureStore.deleteItemAsync(TOKEN_ACCOUNT_KEY),\n  ]);\n}\n","import { create as passkeyCreate, get as passkeyGet } from 'react-native-passkeys';\nimport {\n  bytesToBase64Url,\n  base64UrlToBytes,\n  normalizeLowS,\n  parseDerSignature,\n  type PasskeySigningResult,\n} from '@thru/passkey-manager';\nimport type {\n  DiscoverablePasskeyResult,\n  PasskeyMobileConfig,\n  PasskeyRegistrationResult,\n} from './types';\n\ntype ProcessLike = typeof globalThis & {\n  process?: {\n    env?: Record<string, string | undefined>;\n  };\n};\n\nfunction getDefaultConfig(config?: PasskeyMobileConfig): Required<PasskeyMobileConfig> {\n  const env = (globalThis as ProcessLike).process?.env ?? {};\n\n  return {\n    rpId: config?.rpId ?? env.EXPO_PUBLIC_PASSKEY_RP_ID ?? 'wallet.thru.org',\n    rpName: config?.rpName ?? env.EXPO_PUBLIC_PASSKEY_RP_NAME ?? 'Thru Wallet',\n  };\n}\n\nexport async function registerPasskey(\n  alias: string,\n  userId: string,\n  config?: PasskeyMobileConfig\n): Promise<PasskeyRegistrationResult> {\n  const { rpId, rpName } = getDefaultConfig(config);\n  const challenge = bytesToBase64Url(crypto.getRandomValues(new Uint8Array(32)));\n  const userIdB64 = bytesToBase64Url(new TextEncoder().encode(userId));\n\n  const result = await passkeyCreate({\n    challenge,\n    rp: { id: rpId, name: rpName },\n    user: { id: userIdB64, name: alias, displayName: alias },\n    pubKeyCredParams: [{ type: 'public-key', alg: -7 }],\n    authenticatorSelection: {\n      authenticatorAttachment: 'platform',\n      userVerification: 'required',\n      residentKey: 'required',\n    },\n    attestation: 'none',\n    timeout: 60000,\n  });\n\n  if (!result) {\n    throw new Error('Passkey registration was cancelled');\n  }\n\n  const publicKeyB64 = result.response.getPublicKey?.();\n  if (!publicKeyB64) {\n    throw new Error('Failed to retrieve public key from registration');\n  }\n\n  const keyBytes = base64UrlToBytes(publicKeyB64);\n  const { x, y } = extractP256Coordinates(keyBytes);\n\n  return {\n    credentialId: result.id,\n    publicKeyX: x,\n    publicKeyY: y,\n    rpId,\n  };\n}\n\nexport async function signWithPasskey(\n  credentialId: string,\n  challenge: Uint8Array,\n  rpId?: string\n): Promise<PasskeySigningResult> {\n  const resolvedRpId = rpId ?? getDefaultConfig().rpId;\n  const challengeB64 = bytesToBase64Url(challenge);\n\n  const result = await passkeyGet({\n    challenge: challengeB64,\n    rpId: resolvedRpId,\n    allowCredentials: [{ type: 'public-key', id: credentialId }],\n    userVerification: 'required',\n    timeout: 60000,\n  });\n\n  if (!result) {\n    throw new Error('Passkey authentication was cancelled');\n  }\n\n  const derSignature = base64UrlToBytes(result.response.signature);\n  let { r, s } = parseDerSignature(derSignature);\n  s = normalizeLowS(s);\n\n  return {\n    signature: new Uint8Array([...r, ...s]),\n    authenticatorData: base64UrlToBytes(result.response.authenticatorData),\n    clientDataJSON: base64UrlToBytes(result.response.clientDataJSON),\n    signatureR: r,\n    signatureS: s,\n  };\n}\n\nexport async function authenticateWithDiscoverablePasskey(\n  config?: Pick<PasskeyMobileConfig, 'rpId'>\n): Promise<DiscoverablePasskeyResult | null> {\n  const { rpId } = getDefaultConfig(config);\n\n  try {\n    const challenge = bytesToBase64Url(crypto.getRandomValues(new Uint8Array(32)));\n    const result = await passkeyGet({\n      challenge,\n      rpId,\n      userVerification: 'required',\n      timeout: 60000,\n    });\n\n    return result ? { credentialId: result.id, rpId } : null;\n  } catch {\n    return null;\n  }\n}\n\nexport function extractP256Coordinates(\n  keyBytes: Uint8Array\n): { x: Uint8Array; y: Uint8Array } {\n  if (keyBytes.length === 64) {\n    return {\n      x: keyBytes.slice(0, 32),\n      y: keyBytes.slice(32, 64),\n    };\n  }\n\n  if (keyBytes.length === 65 && keyBytes[0] === 0x04) {\n    return {\n      x: keyBytes.slice(1, 33),\n      y: keyBytes.slice(33, 65),\n    };\n  }\n\n  const pointStart = keyBytes.length - 65;\n  if (pointStart > 0 && keyBytes[pointStart] === 0x04) {\n    return {\n      x: keyBytes.slice(pointStart + 1, pointStart + 33),\n      y: keyBytes.slice(pointStart + 33, pointStart + 65),\n    };\n  }\n\n  throw new Error(\n    `Unsupported public key format (${keyBytes.length} bytes). Expected raw X||Y (64), uncompressed point (65), or SPKI DER (91).`\n  );\n}\n"],"mappings":";AAAA,IAAM,iBAAiB;AAAA,EACrB,gBAAgB;AAAA,IACd;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF;AAAA,EACA,WAAW;AAAA,IACT;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;AAIO,SAAS,qBAAqB,OAAyC;AAC5E,QAAM,UACJ,iBAAiB,QAAQ,MAAM,UAAU,OAAO,UAAU,WAAW,QAAQ;AAE/E,MAAI,CAAC,QAAS,QAAO;AAErB,aAAW,CAAC,MAAM,QAAQ,KAAK,OAAO,QAAQ,cAAc,GAAG;AAC7D,QAAI,SAAS,KAAK,CAAC,YAAY,QAAQ,SAAS,OAAO,CAAC,GAAG;AACzD,aAAO;AAAA,IACT;AAAA,EACF;AAEA,SAAO;AACT;;;AC9BA,YAAY,iBAAiB;AAG7B,IAAM,oBAAoB;AAAA,EACxB,oBAAgC;AAClC;AAEA,IAAM,4BAA4B;AAClC,IAAM,2BAA2B;AACjC,IAAM,2BAA2B;AACjC,IAAM,oBAAoB;AAC1B,IAAM,oBAAoB;AAC1B,IAAM,yBAAyB;AAC/B,IAAM,2BAA2B;AAEjC,IAAM,cAAc;AACpB,IAAM,cAAc;AACpB,IAAM,oBAAoB;AAE1B,eAAsB,qBAAqB,UAA0C;AACnF,QAAM,QAAQ,IAAI;AAAA,IACJ,yBAAa,2BAA2B,SAAS,cAAc,iBAAiB;AAAA,IAChF,yBAAa,0BAA0B,SAAS,YAAY,iBAAiB;AAAA,IAC7E,yBAAa,0BAA0B,SAAS,YAAY,iBAAiB;AAAA,IAC7E,yBAAa,mBAAmB,SAAS,MAAM,iBAAiB;AAAA,IAChE,yBAAa,mBAAmB,SAAS,SAAS,IAAI,iBAAiB;AAAA,IACvE,yBAAa,wBAAwB,SAAS,WAAW,iBAAiB;AAAA,IAC1E,yBAAa,0BAA0B,SAAS,YAAY,iBAAiB;AAAA,EAC3F,CAAC;AACH;AAEA,eAAsB,2BAA4D;AAChF,QAAM,eAAe,MAAkB,yBAAa,yBAAyB;AAC7E,MAAI,CAAC,aAAc,QAAO;AAE1B,QAAM,CAAC,YAAY,YAAY,MAAM,OAAO,WAAW,UAAU,IAAI,MAAM,QAAQ,IAAI;AAAA,IACzE,yBAAa,wBAAwB;AAAA,IACrC,yBAAa,wBAAwB;AAAA,IACrC,yBAAa,iBAAiB;AAAA,IAC9B,yBAAa,iBAAiB;AAAA,IAC9B,yBAAa,sBAAsB;AAAA,IACnC,yBAAa,wBAAwB;AAAA,EACnD,CAAC;AAED,MAAI,CAAC,QAAQ,CAAC,UAAW,QAAO;AAEhC,SAAO;AAAA,IACL;AAAA,IACA,YAAY,cAAc;AAAA,IAC1B,YAAY,cAAc;AAAA,IAC1B;AAAA,IACA,OAAO,SAAS;AAAA,IAChB;AAAA,IACA,YAAY,cAAc;AAAA,EAC5B;AACF;AAEA,eAAsB,uBAAuB,cAAa,oBAAI,KAAK,GAAE,YAAY,GAAoB;AACnG,QAAkB,yBAAa,0BAA0B,YAAY,iBAAiB;AACtF,SAAO;AACT;AAEA,eAAsB,mBAAqC;AACzD,SAAQ,MAAkB,yBAAa,yBAAyB,MAAO;AACzE;AAEA,eAAsB,uBAAsC;AAC1D,QAAM,QAAQ,IAAI;AAAA,IACJ,4BAAgB,yBAAyB;AAAA,IACzC,4BAAgB,wBAAwB;AAAA,IACxC,4BAAgB,wBAAwB;AAAA,IACxC,4BAAgB,iBAAiB;AAAA,IACjC,4BAAgB,iBAAiB;AAAA,IACjC,4BAAgB,sBAAsB;AAAA,IACtC,4BAAgB,wBAAwB;AAAA,EACtD,CAAC;AACH;AAEA,eAAsB,gBACpB,SACA,QACA,qBACe;AACf,QAAM,QAAQ,IAAI;AAAA,IACJ,yBAAa,aAAa,SAAS,iBAAiB;AAAA,IACpD,yBAAa,aAAa,QAAQ,iBAAiB;AAAA,IAC/D,sBACgB,yBAAa,mBAAmB,qBAAqB,iBAAiB,IACtE,4BAAgB,iBAAiB;AAAA,EACnD,CAAC;AACH;AAEA,eAAsB,kBAAoC;AACxD,SAAQ,MAAkB,yBAAa,WAAW,MAAO;AAC3D;AAEA,eAAsB,mBAA2C;AAC/D,SAAmB,yBAAa,WAAW;AAC7C;AAEA,eAAsB,kBAA0C;AAC9D,SAAmB,yBAAa,WAAW;AAC7C;AAEA,eAAsB,wBAAgD;AACpE,SAAmB,yBAAa,iBAAiB;AACnD;AAEA,eAAsB,eAA8B;AAClD,QAAM,QAAQ,IAAI;AAAA,IACJ,4BAAgB,WAAW;AAAA,IAC3B,4BAAgB,WAAW;AAAA,IAC3B,4BAAgB,iBAAiB;AAAA,EAC/C,CAAC;AACH;;;AClHA,SAAS,UAAU,eAAe,OAAO,kBAAkB;AAC3D;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OAEK;AAaP,SAAS,iBAAiB,QAA6D;AACrF,QAAM,MAAO,WAA2B,SAAS,OAAO,CAAC;AAEzD,SAAO;AAAA,IACL,MAAM,QAAQ,QAAQ,IAAI,6BAA6B;AAAA,IACvD,QAAQ,QAAQ,UAAU,IAAI,+BAA+B;AAAA,EAC/D;AACF;AAEA,eAAsB,gBACpB,OACA,QACA,QACoC;AACpC,QAAM,EAAE,MAAM,OAAO,IAAI,iBAAiB,MAAM;AAChD,QAAM,YAAY,iBAAiB,OAAO,gBAAgB,IAAI,WAAW,EAAE,CAAC,CAAC;AAC7E,QAAM,YAAY,iBAAiB,IAAI,YAAY,EAAE,OAAO,MAAM,CAAC;AAEnE,QAAM,SAAS,MAAM,cAAc;AAAA,IACjC;AAAA,IACA,IAAI,EAAE,IAAI,MAAM,MAAM,OAAO;AAAA,IAC7B,MAAM,EAAE,IAAI,WAAW,MAAM,OAAO,aAAa,MAAM;AAAA,IACvD,kBAAkB,CAAC,EAAE,MAAM,cAAc,KAAK,GAAG,CAAC;AAAA,IAClD,wBAAwB;AAAA,MACtB,yBAAyB;AAAA,MACzB,kBAAkB;AAAA,MAClB,aAAa;AAAA,IACf;AAAA,IACA,aAAa;AAAA,IACb,SAAS;AAAA,EACX,CAAC;AAED,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,oCAAoC;AAAA,EACtD;AAEA,QAAM,eAAe,OAAO,SAAS,eAAe;AACpD,MAAI,CAAC,cAAc;AACjB,UAAM,IAAI,MAAM,iDAAiD;AAAA,EACnE;AAEA,QAAM,WAAW,iBAAiB,YAAY;AAC9C,QAAM,EAAE,GAAG,EAAE,IAAI,uBAAuB,QAAQ;AAEhD,SAAO;AAAA,IACL,cAAc,OAAO;AAAA,IACrB,YAAY;AAAA,IACZ,YAAY;AAAA,IACZ;AAAA,EACF;AACF;AAEA,eAAsB,gBACpB,cACA,WACA,MAC+B;AAC/B,QAAM,eAAe,QAAQ,iBAAiB,EAAE;AAChD,QAAM,eAAe,iBAAiB,SAAS;AAE/C,QAAM,SAAS,MAAM,WAAW;AAAA,IAC9B,WAAW;AAAA,IACX,MAAM;AAAA,IACN,kBAAkB,CAAC,EAAE,MAAM,cAAc,IAAI,aAAa,CAAC;AAAA,IAC3D,kBAAkB;AAAA,IAClB,SAAS;AAAA,EACX,CAAC;AAED,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,sCAAsC;AAAA,EACxD;AAEA,QAAM,eAAe,iBAAiB,OAAO,SAAS,SAAS;AAC/D,MAAI,EAAE,GAAG,EAAE,IAAI,kBAAkB,YAAY;AAC7C,MAAI,cAAc,CAAC;AAEnB,SAAO;AAAA,IACL,WAAW,IAAI,WAAW,CAAC,GAAG,GAAG,GAAG,CAAC,CAAC;AAAA,IACtC,mBAAmB,iBAAiB,OAAO,SAAS,iBAAiB;AAAA,IACrE,gBAAgB,iBAAiB,OAAO,SAAS,cAAc;AAAA,IAC/D,YAAY;AAAA,IACZ,YAAY;AAAA,EACd;AACF;AAEA,eAAsB,oCACpB,QAC2C;AAC3C,QAAM,EAAE,KAAK,IAAI,iBAAiB,MAAM;AAExC,MAAI;AACF,UAAM,YAAY,iBAAiB,OAAO,gBAAgB,IAAI,WAAW,EAAE,CAAC,CAAC;AAC7E,UAAM,SAAS,MAAM,WAAW;AAAA,MAC9B;AAAA,MACA;AAAA,MACA,kBAAkB;AAAA,MAClB,SAAS;AAAA,IACX,CAAC;AAED,WAAO,SAAS,EAAE,cAAc,OAAO,IAAI,KAAK,IAAI;AAAA,EACtD,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEO,SAAS,uBACd,UACkC;AAClC,MAAI,SAAS,WAAW,IAAI;AAC1B,WAAO;AAAA,MACL,GAAG,SAAS,MAAM,GAAG,EAAE;AAAA,MACvB,GAAG,SAAS,MAAM,IAAI,EAAE;AAAA,IAC1B;AAAA,EACF;AAEA,MAAI,SAAS,WAAW,MAAM,SAAS,CAAC,MAAM,GAAM;AAClD,WAAO;AAAA,MACL,GAAG,SAAS,MAAM,GAAG,EAAE;AAAA,MACvB,GAAG,SAAS,MAAM,IAAI,EAAE;AAAA,IAC1B;AAAA,EACF;AAEA,QAAM,aAAa,SAAS,SAAS;AACrC,MAAI,aAAa,KAAK,SAAS,UAAU,MAAM,GAAM;AACnD,WAAO;AAAA,MACL,GAAG,SAAS,MAAM,aAAa,GAAG,aAAa,EAAE;AAAA,MACjD,GAAG,SAAS,MAAM,aAAa,IAAI,aAAa,EAAE;AAAA,IACpD;AAAA,EACF;AAEA,QAAM,IAAI;AAAA,IACR,kCAAkC,SAAS,MAAM;AAAA,EACnD;AACF;","names":[]}

package/dist/chunk-75G2FPYW.js

@@ -0,0 +1,54 @@
+import {
+  PASSKEY_POPUP_RESPONSE_EVENT
+} from "./chunk-LNDWK3FA.js";
+
+// src/popup-service.ts
+import { bytesToBase64Url, base64UrlToBytes } from "@thru/passkey-manager";
+function toPopupSigningResult(result) {
+  return {
+    signatureBase64Url: bytesToBase64Url(result.signature),
+    authenticatorDataBase64Url: bytesToBase64Url(result.authenticatorData),
+    clientDataJSONBase64Url: bytesToBase64Url(result.clientDataJSON),
+    signatureRBase64Url: bytesToBase64Url(result.signatureR),
+    signatureSBase64Url: bytesToBase64Url(result.signatureS)
+  };
+}
+function buildSuccessResponse(requestId, action, result) {
+  return {
+    type: PASSKEY_POPUP_RESPONSE_EVENT,
+    requestId,
+    action,
+    success: true,
+    result
+  };
+}
+function decodeChallenge(base64Url) {
+  return base64UrlToBytes(base64Url);
+}
+function getResponseError(action, error) {
+  const { name, message } = normalizeError(error);
+  const actionLabel = `Popup ${action}`;
+  const messageText = message || "Passkey popup failed";
+  const detailedMessage = messageText.includes("Popup") ? messageText : `${actionLabel}: ${messageText}`;
+  return {
+    name,
+    message: detailedMessage
+  };
+}
+function normalizeError(error) {
+  const name = error && typeof error === "object" && "name" in error ? String(error.name) : "";
+  const message = error && typeof error === "object" && "message" in error ? String(error.message) : "";
+  return {
+    name,
+    message,
+    normalized: `${name} ${message}`.toLowerCase()
+  };
+}
+
+export {
+  toPopupSigningResult,
+  buildSuccessResponse,
+  decodeChallenge,
+  getResponseError
+};
+//# sourceMappingURL=chunk-75G2FPYW.js.map

package/dist/chunk-75G2FPYW.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/popup-service.ts"],"sourcesContent":["import type {\n  PasskeyPopupAction,\n  PasskeyPopupResponse,\n  PasskeyPopupSigningResult,\n  PasskeySigningResult,\n} from './types';\nimport {\n  PASSKEY_POPUP_RESPONSE_EVENT,\n} from './popup';\nimport { bytesToBase64Url, base64UrlToBytes } from '@thru/passkey-manager';\nexport function toPopupSigningResult(result: PasskeySigningResult): PasskeyPopupSigningResult {\n  return {\n    signatureBase64Url: bytesToBase64Url(result.signature),\n    authenticatorDataBase64Url: bytesToBase64Url(result.authenticatorData),\n    clientDataJSONBase64Url: bytesToBase64Url(result.clientDataJSON),\n    signatureRBase64Url: bytesToBase64Url(result.signatureR),\n    signatureSBase64Url: bytesToBase64Url(result.signatureS),\n  };\n}\n\nexport function buildSuccessResponse<T>(\n  requestId: string,\n  action: PasskeyPopupAction,\n  result: T\n): PasskeyPopupResponse {\n  return {\n    type: PASSKEY_POPUP_RESPONSE_EVENT,\n    requestId,\n    action,\n    success: true,\n    result,\n  } as PasskeyPopupResponse;\n}\n\nexport function decodeChallenge(base64Url: string): Uint8Array {\n  return base64UrlToBytes(base64Url);\n}\n\nexport function getResponseError(action: PasskeyPopupAction, error: unknown): { name?: string; message: string } {\n  const { name, message } = normalizeError(error);\n  const actionLabel = `Popup ${action}`;\n  const messageText = message || 'Passkey popup failed';\n  const detailedMessage = messageText.includes('Popup')\n    ? messageText\n    : `${actionLabel}: ${messageText}`;\n  return {\n    name,\n    message: detailedMessage,\n  };\n}\nfunction normalizeError(error: unknown): { name?: string; message?: string; normalized: string } {\n  const name =\n    error && typeof error === 'object' && 'name' in error\n      ? String((error as { name?: unknown }).name)\n      : '';\n  const message =\n    error && typeof error === 'object' && 'message' in error\n      ? String((error as { message?: unknown }).message)\n      : '';\n  return {\n    name,\n    message,\n    normalized: `${name} ${message}`.toLowerCase(),\n  };\n}\n"],"mappings":";;;;;AASA,SAAS,kBAAkB,wBAAwB;AAC5C,SAAS,qBAAqB,QAAyD;AAC5F,SAAO;AAAA,IACL,oBAAoB,iBAAiB,OAAO,SAAS;AAAA,IACrD,4BAA4B,iBAAiB,OAAO,iBAAiB;AAAA,IACrE,yBAAyB,iBAAiB,OAAO,cAAc;AAAA,IAC/D,qBAAqB,iBAAiB,OAAO,UAAU;AAAA,IACvD,qBAAqB,iBAAiB,OAAO,UAAU;AAAA,EACzD;AACF;AAEO,SAAS,qBACd,WACA,QACA,QACsB;AACtB,SAAO;AAAA,IACL,MAAM;AAAA,IACN;AAAA,IACA;AAAA,IACA,SAAS;AAAA,IACT;AAAA,EACF;AACF;AAEO,SAAS,gBAAgB,WAA+B;AAC7D,SAAO,iBAAiB,SAAS;AACnC;AAEO,SAAS,iBAAiB,QAA4B,OAAoD;AAC/G,QAAM,EAAE,MAAM,QAAQ,IAAI,eAAe,KAAK;AAC9C,QAAM,cAAc,SAAS,MAAM;AACnC,QAAM,cAAc,WAAW;AAC/B,QAAM,kBAAkB,YAAY,SAAS,OAAO,IAChD,cACA,GAAG,WAAW,KAAK,WAAW;AAClC,SAAO;AAAA,IACL;AAAA,IACA,SAAS;AAAA,EACX;AACF;AACA,SAAS,eAAe,OAAyE;AAC/F,QAAM,OACJ,SAAS,OAAO,UAAU,YAAY,UAAU,QAC5C,OAAQ,MAA6B,IAAI,IACzC;AACN,QAAM,UACJ,SAAS,OAAO,UAAU,YAAY,aAAa,QAC/C,OAAQ,MAAgC,OAAO,IAC/C;AACN,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA,YAAY,GAAG,IAAI,IAAI,OAAO,GAAG,YAAY;AAAA,EAC/C;AACF;","names":[]}