npm - @unicitylabs/sphere-sdk - Versions diffs - 0.4.0 → 0.4.2 - Mend

@unicitylabs/sphere-sdk 0.4.0 → 0.4.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (31) hide show

package/dist/connect/index.cjs +78 -2
package/dist/connect/index.cjs.map +1 -1
package/dist/connect/index.d.cts +16 -0
package/dist/connect/index.d.ts +16 -0
package/dist/connect/index.js +78 -2
package/dist/connect/index.js.map +1 -1
package/dist/core/index.cjs +63 -41
package/dist/core/index.cjs.map +1 -1
package/dist/core/index.d.cts +7 -0
package/dist/core/index.d.ts +7 -0
package/dist/core/index.js +63 -41
package/dist/core/index.js.map +1 -1
package/dist/impl/browser/connect/index.cjs +11 -2
package/dist/impl/browser/connect/index.cjs.map +1 -1
package/dist/impl/browser/connect/index.js +11 -2
package/dist/impl/browser/connect/index.js.map +1 -1
package/dist/impl/browser/index.cjs +45 -28
package/dist/impl/browser/index.cjs.map +1 -1
package/dist/impl/browser/index.js +45 -28
package/dist/impl/browser/index.js.map +1 -1
package/dist/impl/nodejs/connect/index.cjs +11 -2
package/dist/impl/nodejs/connect/index.cjs.map +1 -1
package/dist/impl/nodejs/connect/index.js +11 -2
package/dist/impl/nodejs/connect/index.js.map +1 -1
package/dist/index.cjs +63 -41
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +7 -0
package/dist/index.d.ts +7 -0
package/dist/index.js +63 -41
package/dist/index.js.map +1 -1
package/package.json +1 -1

package/dist/impl/browser/connect/index.cjs CHANGED Viewed

@@ -105,7 +105,11 @@ var RPC_METHODS = {
   RESOLVE: "sphere_resolve",
   SUBSCRIBE: "sphere_subscribe",
   UNSUBSCRIBE: "sphere_unsubscribe",
-  DISCONNECT: "sphere_disconnect"
+  DISCONNECT: "sphere_disconnect",
+  GET_CONVERSATIONS: "sphere_getConversations",
+  GET_MESSAGES: "sphere_getMessages",
+  GET_DM_UNREAD_COUNT: "sphere_getDMUnreadCount",
+  MARK_AS_READ: "sphere_markAsRead"
 };
 var INTENT_ACTIONS = {
   SEND: "send",
@@ -133,6 +137,7 @@ var PERMISSION_SCOPES = {
   TRANSFER_REQUEST: "transfer:request",
   L1_TRANSFER: "l1:transfer",
   DM_REQUEST: "dm:request",
+  DM_READ: "dm:read",
   PAYMENT_REQUEST: "payment:request",
   SIGN_REQUEST: "sign:request"
 };
@@ -151,7 +156,11 @@ var METHOD_PERMISSIONS = {
   [RPC_METHODS.L1_GET_HISTORY]: PERMISSION_SCOPES.L1_READ,
   [RPC_METHODS.RESOLVE]: PERMISSION_SCOPES.RESOLVE_PEER,
   [RPC_METHODS.SUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,
-  [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE
+  [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,
+  [RPC_METHODS.GET_CONVERSATIONS]: PERMISSION_SCOPES.DM_READ,
+  [RPC_METHODS.GET_MESSAGES]: PERMISSION_SCOPES.DM_READ,
+  [RPC_METHODS.GET_DM_UNREAD_COUNT]: PERMISSION_SCOPES.DM_READ,
+  [RPC_METHODS.MARK_AS_READ]: PERMISSION_SCOPES.DM_READ
 };
 var INTENT_PERMISSIONS = {
   [INTENT_ACTIONS.SEND]: PERMISSION_SCOPES.TRANSFER_REQUEST,

package/dist/impl/browser/connect/index.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../impl/browser/connect/index.ts","../../../../constants.ts","../../../../connect/protocol.ts","../../../../connect/permissions.ts","../../../../impl/browser/connect/PostMessageTransport.ts"],"sourcesContent":["export { PostMessageTransport } from './PostMessageTransport';\nexport type { PostMessageHostOptions, PostMessageClientOptions } from './PostMessageTransport';\n","/*\n SDK2 Constants\n * Default configuration values and storage keys\n /\n\n// =============================================================================\n// Storage Keys\n// =============================================================================\n\n/* Default prefix for all storage keys /\nexport const STORAGE_PREFIX = 'sphere_' as const;\n\n/\n Default encryption key for wallet data\n * WARNING: This is a placeholder. In production, use user-provided password.\n * This key is used when no password is provided to encrypt/decrypt mnemonic.\n /\nexport const DEFAULT_ENCRYPTION_KEY = 'sphere-default-key' as const;\n\n/\n Global storage keys (one per wallet, no address index)\n * Final key format: sphere_{key}\n /\nexport const STORAGE_KEYS_GLOBAL = {\n /* Encrypted BIP39 mnemonic /\n MNEMONIC: 'mnemonic',\n /* Encrypted master private key /\n MASTER_KEY: 'master_key',\n /* BIP32 chain code /\n CHAIN_CODE: 'chain_code',\n /* HD derivation path (full path like m/44'/0'/0'/0/0) /\n DERIVATION_PATH: 'derivation_path',\n /* Base derivation path (like m/44'/0'/0' without chain/index) /\n BASE_PATH: 'base_path',\n /* Derivation mode: bip32, wif_hmac, legacy_hmac /\n DERIVATION_MODE: 'derivation_mode',\n /* Wallet source: mnemonic, file, unknown /\n WALLET_SOURCE: 'wallet_source',\n /* Wallet existence flag /\n WALLET_EXISTS: 'wallet_exists',\n /* Current active address index /\n CURRENT_ADDRESS_INDEX: 'current_address_index',\n /* Nametag cache per address (separate from tracked addresses registry) /\n ADDRESS_NAMETAGS: 'address_nametags',\n /* Active addresses registry (JSON: TrackedAddressesStorage) /\n TRACKED_ADDRESSES: 'tracked_addresses',\n /* Last processed Nostr wallet event timestamp (unix seconds), keyed per pubkey /\n LAST_WALLET_EVENT_TS: 'last_wallet_event_ts',\n /* Group chat: joined groups /\n GROUP_CHAT_GROUPS: 'group_chat_groups',\n /* Group chat: messages /\n GROUP_CHAT_MESSAGES: 'group_chat_messages',\n /* Group chat: members /\n GROUP_CHAT_MEMBERS: 'group_chat_members',\n /* Group chat: processed event IDs for deduplication /\n GROUP_CHAT_PROCESSED_EVENTS: 'group_chat_processed_events',\n /* Group chat: last used relay URL (stale data detection) /\n GROUP_CHAT_RELAY_URL: 'group_chat_relay_url',\n /* Cached token registry JSON (fetched from remote) /\n TOKEN_REGISTRY_CACHE: 'token_registry_cache',\n /* Timestamp of last token registry cache update (ms since epoch) /\n TOKEN_REGISTRY_CACHE_TS: 'token_registry_cache_ts',\n /* Cached price data JSON (from CoinGecko or other provider) /\n PRICE_CACHE: 'price_cache',\n /* Timestamp of last price cache update (ms since epoch) /\n PRICE_CACHE_TS: 'price_cache_ts',\n} as const;\n\n/\n Per-address storage keys (one per derived address)\n * Final key format: sphere_{DIRECT_xxx_yyy}_{key}\n * Example: sphere_DIRECT_abc123_xyz789_pending_transfers\n \n Note: Token data (tokens, tombstones, archived, forked) is stored via\n * TokenStorageProvider, not here. This avoids duplication.\n /\nexport const STORAGE_KEYS_ADDRESS = {\n /* Pending transfers for this address /\n PENDING_TRANSFERS: 'pending_transfers',\n /* Transfer outbox for this address /\n OUTBOX: 'outbox',\n /* Conversations for this address /\n CONVERSATIONS: 'conversations',\n /* Messages for this address /\n MESSAGES: 'messages',\n /* Transaction history for this address /\n TRANSACTION_HISTORY: 'transaction_history',\n /* Pending V5 finalization tokens (unconfirmed instant split tokens) /\n PENDING_V5_TOKENS: 'pending_v5_tokens',\n} as const;\n\n/* @deprecated Use STORAGE_KEYS_GLOBAL and STORAGE_KEYS_ADDRESS instead /\nexport const STORAGE_KEYS = {\n ...STORAGE_KEYS_GLOBAL,\n ...STORAGE_KEYS_ADDRESS,\n} as const;\n\n/\n Build a per-address storage key using address identifier\n * @param addressId - Short identifier for the address (e.g., first 8 chars of pubkey hash, or direct address hash)\n * @param key - The key from STORAGE_KEYS_ADDRESS\n * @returns Key in format: \"{addressId}_{key}\" e.g., \"a1b2c3d4_tokens\"\n /\nexport function getAddressStorageKey(addressId: string, key: string): string {\n return `${addressId}_${key}`;\n}\n\n/\n Create a readable address identifier from directAddress or chainPubkey\n * Format: DIRECT_first6_last6 (sanitized for filesystem/storage)\n * @param directAddress - The L3 direct address (DIRECT:xxx) or chainPubkey\n * @returns Sanitized identifier like \"DIRECT_abc123_xyz789\"\n /\nexport function getAddressId(directAddress: string): string {\n // Remove DIRECT:// or DIRECT: prefix if present\n let hash = directAddress;\n if (hash.startsWith('DIRECT://')) {\n hash = hash.slice(9);\n } else if (hash.startsWith('DIRECT:')) {\n hash = hash.slice(7);\n }\n // Format: DIRECT_first6_last6 (sanitized)\n const first = hash.slice(0, 6).toLowerCase();\n const last = hash.slice(-6).toLowerCase();\n return `DIRECT_${first}_${last}`;\n}\n\n// =============================================================================\n// Nostr Defaults\n// =============================================================================\n\n/* Default Nostr relays /\nexport const DEFAULT_NOSTR_RELAYS = [\n 'wss://relay.unicity.network',\n 'wss://relay.damus.io',\n 'wss://nos.lol',\n 'wss://relay.nostr.band',\n] as const;\n\n/* Nostr event kinds used by SDK - must match @unicitylabs/nostr-js-sdk /\nexport const NOSTR_EVENT_KINDS = {\n /* NIP-04 encrypted direct message /\n DIRECT_MESSAGE: 4,\n /* Token transfer (Unicity custom - 31113) /\n TOKEN_TRANSFER: 31113,\n /* Payment request (Unicity custom - 31115) /\n PAYMENT_REQUEST: 31115,\n /* Payment request response (Unicity custom - 31116) /\n PAYMENT_REQUEST_RESPONSE: 31116,\n /* Nametag binding (NIP-78 app-specific data) /\n NAMETAG_BINDING: 30078,\n /* Public broadcast /\n BROADCAST: 1,\n} as const;\n\n/\n NIP-29 Event Kinds for relay-based group chat\n * https://github.com/nostr-protocol/nips/blob/master/29.md\n /\nexport const NIP29_KINDS = {\n /* Chat message sent to group /\n CHAT_MESSAGE: 9,\n /* Thread root message /\n THREAD_ROOT: 11,\n /* Thread reply message /\n THREAD_REPLY: 12,\n /* User join request /\n JOIN_REQUEST: 9021,\n /* User leave request /\n LEAVE_REQUEST: 9022,\n /* Admin: add/update user /\n PUT_USER: 9000,\n /* Admin: remove user /\n REMOVE_USER: 9001,\n /* Admin: edit group metadata /\n EDIT_METADATA: 9002,\n /* Admin: delete event /\n DELETE_EVENT: 9005,\n /* Admin: create group /\n CREATE_GROUP: 9007,\n /* Admin: delete group /\n DELETE_GROUP: 9008,\n /* Admin: create invite code /\n CREATE_INVITE: 9009,\n /* Relay-signed group metadata /\n GROUP_METADATA: 39000,\n /* Relay-signed group admins /\n GROUP_ADMINS: 39001,\n /* Relay-signed group members /\n GROUP_MEMBERS: 39002,\n /* Relay-signed group roles /\n GROUP_ROLES: 39003,\n} as const;\n\n// =============================================================================\n// Aggregator (Oracle) Defaults\n// =============================================================================\n\n/\n Default aggregator URL\n * Note: The aggregator is conceptually an oracle - a trusted service that provides\n * verifiable truth about token state through cryptographic inclusion proofs.\n /\nexport const DEFAULT_AGGREGATOR_URL = 'https://aggregator.unicity.network/rpc' as const;\n\n/* Dev aggregator URL /\nexport const DEV_AGGREGATOR_URL = 'https://dev-aggregator.dyndns.org/rpc' as const;\n\n/* Test aggregator URL (Goggregator) /\nexport const TEST_AGGREGATOR_URL = 'https://goggregator-test.unicity.network' as const;\n\n/* Default aggregator request timeout (ms) /\nexport const DEFAULT_AGGREGATOR_TIMEOUT = 30000;\n\n/* Default API key for aggregator authentication /\nexport const DEFAULT_AGGREGATOR_API_KEY = 'sk_06365a9c44654841a366068bcfc68986' as const;\n\n// =============================================================================\n// IPFS Defaults\n// =============================================================================\n\n/* Default IPFS gateways /\nexport const DEFAULT_IPFS_GATEWAYS = [\n 'https://unicity-ipfs1.dyndns.org',\n] as const;\n\n/* Unicity IPFS bootstrap peers /\nexport const DEFAULT_IPFS_BOOTSTRAP_PEERS = [\n '/dns4/unicity-ipfs2.dyndns.org/tcp/4001/p2p/12D3KooWLNi5NDPPHbrfJakAQqwBqymYTTwMQXQKEWuCrJNDdmfh',\n '/dns4/unicity-ipfs3.dyndns.org/tcp/4001/p2p/12D3KooWQ4aujVE4ShLjdusNZBdffq3TbzrwT2DuWZY9H1Gxhwn6',\n '/dns4/unicity-ipfs4.dyndns.org/tcp/4001/p2p/12D3KooWJ1ByPfUzUrpYvgxKU8NZrR8i6PU1tUgMEbQX9Hh2DEn1',\n '/dns4/unicity-ipfs5.dyndns.org/tcp/4001/p2p/12D3KooWB1MdZZGHN5B8TvWXntbycfe7Cjcz7n6eZ9eykZadvmDv',\n] as const;\n\n/* Unicity dedicated IPFS nodes (HTTP API access) /\nexport const UNICITY_IPFS_NODES = [\n {\n host: 'unicity-ipfs1.dyndns.org',\n peerId: '12D3KooWDKJqEMAhH4nsSSiKtK1VLcas5coUqSPZAfbWbZpxtL4u',\n httpPort: 9080,\n httpsPort: 443,\n },\n] as const;\n\n/\n Get IPFS gateway URLs for HTTP API access.\n * @param isSecure - Use HTTPS (default: true). Set false for development.\n /\nexport function getIpfsGatewayUrls(isSecure?: boolean): string[] {\n return UNICITY_IPFS_NODES.map((node) =>\n isSecure !== false\n ? `https://${node.host}`\n : `http://${node.host}:${node.httpPort}`,\n );\n}\n\n// =============================================================================\n// Wallet Defaults\n// =============================================================================\n\n/* Default BIP32 base path (without chain/index) /\nexport const DEFAULT_BASE_PATH = \"m/44'/0'/0'\" as const;\n\n/* Default BIP32 derivation path (full path with chain/index) /\nexport const DEFAULT_DERIVATION_PATH = `${DEFAULT_BASE_PATH}/0/0` as const;\n\n/* Coin types /\nexport const COIN_TYPES = {\n /* ALPHA token (L1 blockchain) /\n ALPHA: 'ALPHA',\n /* Test token /\n TEST: 'TEST',\n} as const;\n\n// =============================================================================\n// L1 (ALPHA Blockchain) Defaults\n// =============================================================================\n\n/* Default Fulcrum electrum server for mainnet /\nexport const DEFAULT_ELECTRUM_URL = 'wss://fulcrum.alpha.unicity.network:50004' as const;\n\n/* Testnet Fulcrum electrum server /\nexport const TEST_ELECTRUM_URL = 'wss://fulcrum.alpha.testnet.unicity.network:50004' as const;\n\n// =============================================================================\n// Token Registry Defaults\n// =============================================================================\n\n/* Remote token registry URL (GitHub raw) /\nexport const TOKEN_REGISTRY_URL =\n 'https://raw.githubusercontent.com/unicitynetwork/unicity-ids/refs/heads/main/unicity-ids.testnet.json' as const;\n\n/* Default token registry refresh interval (ms) — 1 hour /\nexport const TOKEN_REGISTRY_REFRESH_INTERVAL = 3_600_000;\n\n// =============================================================================\n// Network Defaults\n// =============================================================================\n\n/* Testnet Nostr relays /\nexport const TEST_NOSTR_RELAYS = [\n 'wss://nostr-relay.testnet.unicity.network',\n] as const;\n\n/* Default group chat relays (NIP-29 Zooid relay) /\nexport const DEFAULT_GROUP_RELAYS = [\n 'wss://sphere-relay.unicity.network',\n] as const;\n\n/* Network configurations /\nexport const NETWORKS = {\n mainnet: {\n name: 'Mainnet',\n aggregatorUrl: DEFAULT_AGGREGATOR_URL,\n nostrRelays: DEFAULT_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: DEFAULT_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n testnet: {\n name: 'Testnet',\n aggregatorUrl: TEST_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n dev: {\n name: 'Development',\n aggregatorUrl: DEV_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n} as const;\n\nexport type NetworkType = keyof typeof NETWORKS;\nexport type NetworkConfig = (typeof NETWORKS)[NetworkType];\n\n// =============================================================================\n// Timeouts & Limits\n// =============================================================================\n\n/* Default timeouts (ms) /\nexport const TIMEOUTS = {\n /* WebSocket connection timeout /\n WEBSOCKET_CONNECT: 10000,\n /* Nostr relay reconnect delay /\n NOSTR_RECONNECT_DELAY: 3000,\n /* Max reconnect attempts /\n MAX_RECONNECT_ATTEMPTS: 5,\n /* Proof polling interval /\n PROOF_POLL_INTERVAL: 1000,\n /* Sync interval /\n SYNC_INTERVAL: 60000,\n} as const;\n\n// =============================================================================\n// Sphere Connect\n// =============================================================================\n\n/* Signal sent by wallet popup to dApp when ConnectHost is ready /\nexport const HOST_READY_TYPE = 'sphere-connect:host-ready' as const;\n\n/* Default timeout (ms) for waiting for the host-ready signal /\nexport const HOST_READY_TIMEOUT = 30_000;\n\n/* Validation limits /\nexport const LIMITS = {\n /* Min nametag length /\n NAMETAG_MIN_LENGTH: 3,\n /* Max nametag length /\n NAMETAG_MAX_LENGTH: 20,\n /* Max memo length /\n MEMO_MAX_LENGTH: 500,\n /* Max message length /\n MESSAGE_MAX_LENGTH: 10000,\n} as const;\n","/\n Sphere Connect Protocol\n * JSON-RPC-like message types for wallet ↔ dApp communication.\n /\n\n// =============================================================================\n// Constants\n// =============================================================================\n\nexport const SPHERE_CONNECT_NAMESPACE = 'sphere-connect';\nexport const SPHERE_CONNECT_VERSION = '1.0';\n\nexport { HOST_READY_TYPE, HOST_READY_TIMEOUT } from '../constants';\n\n// =============================================================================\n// RPC Method Names (query — return data, no UI)\n// =============================================================================\n\nexport const RPC_METHODS = {\n GET_IDENTITY: 'sphere_getIdentity',\n GET_BALANCE: 'sphere_getBalance',\n GET_ASSETS: 'sphere_getAssets',\n GET_FIAT_BALANCE: 'sphere_getFiatBalance',\n GET_TOKENS: 'sphere_getTokens',\n GET_HISTORY: 'sphere_getHistory',\n L1_GET_BALANCE: 'sphere_l1GetBalance',\n L1_GET_HISTORY: 'sphere_l1GetHistory',\n RESOLVE: 'sphere_resolve',\n SUBSCRIBE: 'sphere_subscribe',\n UNSUBSCRIBE: 'sphere_unsubscribe',\n DISCONNECT: 'sphere_disconnect',\n} as const;\n\nexport type RpcMethod = (typeof RPC_METHODS)[keyof typeof RPC_METHODS];\n\n// =============================================================================\n// Intent Action Names (open wallet UI, require user confirmation)\n// =============================================================================\n\nexport const INTENT_ACTIONS = {\n SEND: 'send',\n L1_SEND: 'l1_send',\n DM: 'dm',\n PAYMENT_REQUEST: 'payment_request',\n RECEIVE: 'receive',\n SIGN_MESSAGE: 'sign_message',\n} as const;\n\nexport type IntentAction = (typeof INTENT_ACTIONS)[keyof typeof INTENT_ACTIONS];\n\n// =============================================================================\n// Error Codes\n// =============================================================================\n\nexport const ERROR_CODES = {\n // Standard JSON-RPC\n PARSE_ERROR: -32700,\n INVALID_REQUEST: -32600,\n METHOD_NOT_FOUND: -32601,\n INVALID_PARAMS: -32602,\n INTERNAL_ERROR: -32603,\n\n // Sphere Connect (4xxx)\n NOT_CONNECTED: 4001,\n PERMISSION_DENIED: 4002,\n USER_REJECTED: 4003,\n SESSION_EXPIRED: 4004,\n ORIGIN_BLOCKED: 4005,\n RATE_LIMITED: 4006,\n INSUFFICIENT_BALANCE: 4100,\n INVALID_RECIPIENT: 4101,\n TRANSFER_FAILED: 4102,\n INTENT_CANCELLED: 4200,\n} as const;\n\nexport type ErrorCode = (typeof ERROR_CODES)[keyof typeof ERROR_CODES];\n\n// =============================================================================\n// Message Types\n// =============================================================================\n\ninterface SphereMessageBase {\n readonly ns: typeof SPHERE_CONNECT_NAMESPACE;\n readonly v: typeof SPHERE_CONNECT_VERSION;\n}\n\n/* Query request: dApp → Wallet /\nexport interface SphereRpcRequest extends SphereMessageBase {\n readonly type: 'request';\n readonly id: string;\n readonly method: string;\n readonly params?: Record<string, unknown>;\n}\n\n/* Query response: Wallet → dApp /\nexport interface SphereRpcResponse extends SphereMessageBase {\n readonly type: 'response';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Intent request: dApp → Wallet (opens wallet UI) /\nexport interface SphereIntentRequest extends SphereMessageBase {\n readonly type: 'intent';\n readonly id: string;\n readonly action: string;\n readonly params: Record<string, unknown>;\n}\n\n/* Intent result: Wallet → dApp (after user action) /\nexport interface SphereIntentResult extends SphereMessageBase {\n readonly type: 'intent_result';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Event push: Wallet → dApp (unsolicited) /\nexport interface SphereEventMessage extends SphereMessageBase {\n readonly type: 'event';\n readonly event: string;\n readonly data: unknown;\n}\n\n/* Handshake: bidirectional /\nexport interface SphereHandshake extends SphereMessageBase {\n readonly type: 'handshake';\n readonly direction: 'request' \| 'response';\n readonly permissions: string[];\n readonly dapp?: DAppMetadata;\n readonly sessionId?: string;\n readonly identity?: PublicIdentity;\n}\n\nexport interface SphereRpcError {\n readonly code: number;\n readonly message: string;\n readonly data?: unknown;\n}\n\nexport type SphereConnectMessage =\n \| SphereRpcRequest\n \| SphereRpcResponse\n \| SphereIntentRequest\n \| SphereIntentResult\n \| SphereEventMessage\n \| SphereHandshake;\n\n// =============================================================================\n// Shared Types\n// =============================================================================\n\nexport interface DAppMetadata {\n readonly name: string;\n readonly description?: string;\n readonly icon?: string;\n readonly url: string;\n}\n\nexport interface PublicIdentity {\n readonly chainPubkey: string;\n readonly l1Address: string;\n readonly directAddress?: string;\n readonly nametag?: string;\n}\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if a message belongs to the Sphere Connect protocol /\nexport function isSphereConnectMessage(msg: unknown): msg is SphereConnectMessage {\n if (!msg \|\| typeof msg !== 'object') return false;\n const m = msg as Record<string, unknown>;\n return m.ns === SPHERE_CONNECT_NAMESPACE && m.v === SPHERE_CONNECT_VERSION;\n}\n\n/* Create a unique request ID /\nexport function createRequestId(): string {\n if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n return crypto.randomUUID();\n }\n // Fallback for environments without crypto.randomUUID\n return `${Date.now()}-${Math.random().toString(36).slice(2, 11)}`;\n}\n","/\n Sphere Connect Permission System\n * Defines scopes, maps methods/intents to required permissions.\n /\n\nimport { RPC_METHODS, INTENT_ACTIONS } from './protocol';\n\n// =============================================================================\n// Permission Scopes\n// =============================================================================\n\nexport const PERMISSION_SCOPES = {\n IDENTITY_READ: 'identity:read',\n BALANCE_READ: 'balance:read',\n TOKENS_READ: 'tokens:read',\n HISTORY_READ: 'history:read',\n L1_READ: 'l1:read',\n EVENTS_SUBSCRIBE: 'events:subscribe',\n RESOLVE_PEER: 'resolve:peer',\n TRANSFER_REQUEST: 'transfer:request',\n L1_TRANSFER: 'l1:transfer',\n DM_REQUEST: 'dm:request',\n PAYMENT_REQUEST: 'payment:request',\n SIGN_REQUEST: 'sign:request',\n} as const;\n\nexport type PermissionScope = (typeof PERMISSION_SCOPES)[keyof typeof PERMISSION_SCOPES];\n\n/* All available permission scopes /\nexport const ALL_PERMISSIONS: readonly PermissionScope[] = Object.values(PERMISSION_SCOPES);\n\n/* Permissions always granted on connect /\nexport const DEFAULT_PERMISSIONS: readonly PermissionScope[] = [\n PERMISSION_SCOPES.IDENTITY_READ,\n];\n\n// =============================================================================\n// Method → Permission Mapping\n// =============================================================================\n\nexport const METHOD_PERMISSIONS: Record<string, PermissionScope> = {\n [RPC_METHODS.GET_IDENTITY]: PERMISSION_SCOPES.IDENTITY_READ,\n [RPC_METHODS.GET_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_ASSETS]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_FIAT_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_TOKENS]: PERMISSION_SCOPES.TOKENS_READ,\n [RPC_METHODS.GET_HISTORY]: PERMISSION_SCOPES.HISTORY_READ,\n [RPC_METHODS.L1_GET_BALANCE]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.L1_GET_HISTORY]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.RESOLVE]: PERMISSION_SCOPES.RESOLVE_PEER,\n [RPC_METHODS.SUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n};\n\n// =============================================================================\n// Intent → Permission Mapping\n// =============================================================================\n\nexport const INTENT_PERMISSIONS: Record<string, PermissionScope> = {\n [INTENT_ACTIONS.SEND]: PERMISSION_SCOPES.TRANSFER_REQUEST,\n [INTENT_ACTIONS.L1_SEND]: PERMISSION_SCOPES.L1_TRANSFER,\n [INTENT_ACTIONS.DM]: PERMISSION_SCOPES.DM_REQUEST,\n [INTENT_ACTIONS.PAYMENT_REQUEST]: PERMISSION_SCOPES.PAYMENT_REQUEST,\n [INTENT_ACTIONS.RECEIVE]: PERMISSION_SCOPES.IDENTITY_READ,\n [INTENT_ACTIONS.SIGN_MESSAGE]: PERMISSION_SCOPES.SIGN_REQUEST,\n};\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if granted permissions allow calling a method /\nexport function hasMethodPermission(granted: ReadonlySet<string>, method: string): boolean {\n const required = METHOD_PERMISSIONS[method];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Check if granted permissions allow an intent action /\nexport function hasIntentPermission(granted: ReadonlySet<string>, action: string): boolean {\n const required = INTENT_PERMISSIONS[action];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Validate that all requested permissions are known scopes /\nexport function validatePermissions(permissions: string[]): permissions is PermissionScope[] {\n const validScopes = new Set<string>(ALL_PERMISSIONS);\n return permissions.every((p) => validScopes.has(p));\n}\n","/\n PostMessageTransport — Browser transport for Sphere Connect.\n \n Two modes:\n * - iframe: wallet (parent) ↔ dApp (iframe child)\n * - popup: dApp (opener) ↔ wallet (popup window)\n /\n\nimport type { ConnectTransport, SphereConnectMessage } from '../../../connect';\nimport { isSphereConnectMessage } from '../../../connect';\n\n// =============================================================================\n// Configuration\n// =============================================================================\n\nexport interface PostMessageHostOptions {\n /* Allowed origins for incoming messages. Use [''] only in development. /\n allowedOrigins: string[];\n}\n\nexport interface PostMessageClientOptions {\n /** Target window to send messages to. Defaults to window.parent (iframe mode). /\n target?: Window;\n /* Target origin for postMessage. Default: ''. Should be set to wallet origin. /\n targetOrigin?: string;\n}\n\n// =============================================================================\n// Implementation\n// =============================================================================\n\nconst POPUP_CLOSE_CHECK_INTERVAL = 1000;\n\nexport class PostMessageTransport implements ConnectTransport {\n private readonly targetWindow: Window;\n private readonly targetOrigin: string;\n private readonly allowedOrigins: Set<string> \| null;\n private handlers: Set<(message: SphereConnectMessage) => void> = new Set();\n private listener: ((event: MessageEvent) => void) \| null = null;\n private popupCheckInterval: ReturnType<typeof setInterval> \| null = null;\n private onPopupClosed: (() => void) \| null = null;\n\n private constructor(\n targetWindow: Window,\n targetOrigin: string,\n allowedOrigins: string[] \| null,\n ) {\n this.targetWindow = targetWindow;\n this.targetOrigin = targetOrigin;\n this.allowedOrigins = allowedOrigins ? new Set(allowedOrigins) : null;\n\n // Listen for incoming messages\n this.listener = (event: MessageEvent) => {\n // Origin check (host mode)\n if (this.allowedOrigins && !this.allowedOrigins.has('') && !this.allowedOrigins.has(event.origin)) {\n return;\n }\n\n // Namespace filter\n if (!isSphereConnectMessage(event.data)) {\n return;\n }\n\n for (const handler of this.handlers) {\n try {\n handler(event.data);\n } catch {\n // Ignore handler errors\n }\n }\n };\n\n window.addEventListener('message', this.listener);\n }\n\n // ===========================================================================\n // Factory Methods\n // ===========================================================================\n\n /\n Create transport for the HOST side (wallet).\n \n iframe mode: target = iframe.contentWindow\n * popup mode: target = window.opener\n /\n static forHost(\n target: HTMLIFrameElement \| Window,\n options: PostMessageHostOptions,\n ): PostMessageTransport {\n const targetWindow = target instanceof HTMLIFrameElement\n ? target.contentWindow!\n : target;\n const targetOrigin = options.allowedOrigins[0] === '' ? '' : options.allowedOrigins[0];\n return new PostMessageTransport(targetWindow, targetOrigin, options.allowedOrigins);\n }\n\n /\n Create transport for the CLIENT side (dApp).\n \n iframe mode: target defaults to window.parent\n * popup mode: target = popup window (from window.open())\n /\n static forClient(options?: PostMessageClientOptions): PostMessageTransport {\n const target = options?.target ?? window.parent;\n const targetOrigin = options?.targetOrigin ?? '';\n const transport = new PostMessageTransport(target, targetOrigin, null);\n\n // If target is a popup window, detect when it closes\n if (options?.target && options.target !== window.parent) {\n transport.startPopupCloseDetection(options.target);\n }\n\n return transport;\n }\n\n // ===========================================================================\n // ConnectTransport Interface\n // ===========================================================================\n\n send(message: SphereConnectMessage): void {\n try {\n this.targetWindow.postMessage(message, this.targetOrigin);\n } catch {\n // Window may be closed\n }\n }\n\n onMessage(handler: (message: SphereConnectMessage) => void): () => void {\n this.handlers.add(handler);\n return () => {\n this.handlers.delete(handler);\n };\n }\n\n destroy(): void {\n if (this.listener) {\n window.removeEventListener('message', this.listener);\n this.listener = null;\n }\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n this.handlers.clear();\n }\n\n // ===========================================================================\n // Popup Close Detection\n // ===========================================================================\n\n /** Register a callback for when the popup window closes */\n onClose(callback: () => void): void {\n this.onPopupClosed = callback;\n }\n\n private startPopupCloseDetection(popup: Window): void {\n this.popupCheckInterval = setInterval(() => {\n if (popup.closed) {\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n if (this.onPopupClosed) {\n this.onPopupClosed();\n }\n }\n }, POPUP_CLOSE_CHECK_INTERVAL);\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACuBO,IAAM,sBAAsB;AAAA;AAAA,EAEjC,UAAU;AAAA;AAAA,EAEV,YAAY;AAAA;AAAA,EAEZ,YAAY;AAAA;AAAA,EAEZ,iBAAiB;AAAA;AAAA,EAEjB,WAAW;AAAA;AAAA,EAEX,iBAAiB;AAAA;AAAA,EAEjB,eAAe;AAAA;AAAA,EAEf,eAAe;AAAA;AAAA,EAEf,uBAAuB;AAAA;AAAA,EAEvB,kBAAkB;AAAA;AAAA,EAElB,mBAAmB;AAAA;AAAA,EAEnB,sBAAsB;AAAA;AAAA,EAEtB,mBAAmB;AAAA;AAAA,EAEnB,qBAAqB;AAAA;AAAA,EAErB,oBAAoB;AAAA;AAAA,EAEpB,6BAA6B;AAAA;AAAA,EAE7B,sBAAsB;AAAA;AAAA,EAEtB,sBAAsB;AAAA;AAAA,EAEtB,yBAAyB;AAAA;AAAA,EAEzB,aAAa;AAAA;AAAA,EAEb,gBAAgB;AAClB;AAUO,IAAM,uBAAuB;AAAA;AAAA,EAElC,mBAAmB;AAAA;AAAA,EAEnB,QAAQ;AAAA;AAAA,EAER,eAAe;AAAA;AAAA,EAEf,UAAU;AAAA;AAAA,EAEV,qBAAqB;AAAA;AAAA,EAErB,mBAAmB;AACrB;AAGO,IAAM,eAAe;AAAA,EAC1B,GAAG;AAAA,EACH,GAAG;AACL;AAsKO,IAAM,oBAAoB;AAG1B,IAAM,0BAA0B,GAAG,iBAAiB;;;AC/PpD,IAAM,2BAA2B;AACjC,IAAM,yBAAyB;AAQ/B,IAAM,cAAc;AAAA,EACzB,cAAc;AAAA,EACd,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,kBAAkB;AAAA,EAClB,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,SAAS;AAAA,EACT,WAAW;AAAA,EACX,aAAa;AAAA,EACb,YAAY;AACd;AAQO,IAAM,iBAAiB;AAAA,EAC5B,MAAM;AAAA,EACN,SAAS;AAAA,EACT,IAAI;AAAA,EACJ,iBAAiB;AAAA,EACjB,SAAS;AAAA,EACT,cAAc;AAChB;AA8HO,SAAS,uBAAuB,KAA2C;AAChF,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,IAAI;AACV,SAAO,EAAE,OAAO,4BAA4B,EAAE,MAAM;AACtD;;;ACrKO,IAAM,oBAAoB;AAAA,EAC/B,eAAe;AAAA,EACf,cAAc;AAAA,EACd,aAAa;AAAA,EACb,cAAc;AAAA,EACd,SAAS;AAAA,EACT,kBAAkB;AAAA,EAClB,cAAc;AAAA,EACd,kBAAkB;AAAA,EAClB,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,cAAc;AAChB;AAKO,IAAM,kBAA8C,OAAO,OAAO,iBAAiB;AAGnF,IAAM,sBAAkD;AAAA,EAC7D,kBAAkB;AACpB;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAAA,EAC9C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,gBAAgB,GAAG,kBAAkB;AAAA,EAClD,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,OAAO,GAAG,kBAAkB;AAAA,EACzC,CAAC,YAAY,SAAS,GAAG,kBAAkB;AAAA,EAC3C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAC/C;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,eAAe,IAAI,GAAG,kBAAkB;AAAA,EACzC,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,EAAE,GAAG,kBAAkB;AAAA,EACvC,CAAC,eAAe,eAAe,GAAG,kBAAkB;AAAA,EACpD,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,YAAY,GAAG,kBAAkB;AACnD;;;AClCA,IAAM,6BAA6B;AAE5B,IAAM,uBAAN,MAAM,sBAAiD;AAAA,EAC3C;AAAA,EACA;AAAA,EACA;AAAA,EACT,WAAyD,oBAAI,IAAI;AAAA,EACjE,WAAmD;AAAA,EACnD,qBAA4D;AAAA,EAC5D,gBAAqC;AAAA,EAErC,YACN,cACA,cACA,gBACA;AACA,SAAK,eAAe;AACpB,SAAK,eAAe;AACpB,SAAK,iBAAiB,iBAAiB,IAAI,IAAI,cAAc,IAAI;AAGjE,SAAK,WAAW,CAAC,UAAwB;AAEvC,UAAI,KAAK,kBAAkB,CAAC,KAAK,eAAe,IAAI,GAAG,KAAK,CAAC,KAAK,eAAe,IAAI,MAAM,MAAM,GAAG;AAClG;AAAA,MACF;AAGA,UAAI,CAAC,uBAAuB,MAAM,IAAI,GAAG;AACvC;AAAA,MACF;AAEA,iBAAW,WAAW,KAAK,UAAU;AACnC,YAAI;AACF,kBAAQ,MAAM,IAAI;AAAA,QACpB,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAEA,WAAO,iBAAiB,WAAW,KAAK,QAAQ;AAAA,EAClD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,OAAO,QACL,QACA,SACsB;AACtB,UAAM,eAAe,kBAAkB,oBACnC,OAAO,gBACP;AACJ,UAAM,eAAe,QAAQ,eAAe,CAAC,MAAM,MAAM,MAAM,QAAQ,eAAe,CAAC;AACvF,WAAO,IAAI,sBAAqB,cAAc,cAAc,QAAQ,cAAc;AAAA,EACpF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,UAAU,SAA0D;AACzE,UAAM,SAAS,SAAS,UAAU,OAAO;AACzC,UAAM,eAAe,SAAS,gBAAgB;AAC9C,UAAM,YAAY,IAAI,sBAAqB,QAAQ,cAAc,IAAI;AAGrE,QAAI,SAAS,UAAU,QAAQ,WAAW,OAAO,QAAQ;AACvD,gBAAU,yBAAyB,QAAQ,MAAM;AAAA,IACnD;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAMA,KAAK,SAAqC;AACxC,QAAI;AACF,WAAK,aAAa,YAAY,SAAS,KAAK,YAAY;AAAA,IAC1D,QAAQ;AAAA,IAER;AAAA,EACF;AAAA,EAEA,UAAU,SAA8D;AACtE,SAAK,SAAS,IAAI,OAAO;AACzB,WAAO,MAAM;AACX,WAAK,SAAS,OAAO,OAAO;AAAA,IAC9B;AAAA,EACF;AAAA,EAEA,UAAgB;AACd,QAAI,KAAK,UAAU;AACjB,aAAO,oBAAoB,WAAW,KAAK,QAAQ;AACnD,WAAK,WAAW;AAAA,IAClB;AACA,QAAI,KAAK,oBAAoB;AAC3B,oBAAc,KAAK,kBAAkB;AACrC,WAAK,qBAAqB;AAAA,IAC5B;AACA,SAAK,SAAS,MAAM;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,QAAQ,UAA4B;AAClC,SAAK,gBAAgB;AAAA,EACvB;AAAA,EAEQ,yBAAyB,OAAqB;AACpD,SAAK,qBAAqB,YAAY,MAAM;AAC1C,UAAI,MAAM,QAAQ;AAChB,YAAI,KAAK,oBAAoB;AAC3B,wBAAc,KAAK,kBAAkB;AACrC,eAAK,qBAAqB;AAAA,QAC5B;AACA,YAAI,KAAK,eAAe;AACtB,eAAK,cAAc;AAAA,QACrB;AAAA,MACF;AAAA,IACF,GAAG,0BAA0B;AAAA,EAC/B;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../../impl/browser/connect/index.ts","../../../../constants.ts","../../../../connect/protocol.ts","../../../../connect/permissions.ts","../../../../impl/browser/connect/PostMessageTransport.ts"],"sourcesContent":["export { PostMessageTransport } from './PostMessageTransport';\nexport type { PostMessageHostOptions, PostMessageClientOptions } from './PostMessageTransport';\n","/*\n SDK2 Constants\n * Default configuration values and storage keys\n /\n\n// =============================================================================\n// Storage Keys\n// =============================================================================\n\n/* Default prefix for all storage keys /\nexport const STORAGE_PREFIX = 'sphere_' as const;\n\n/\n Default encryption key for wallet data\n * WARNING: This is a placeholder. In production, use user-provided password.\n * This key is used when no password is provided to encrypt/decrypt mnemonic.\n /\nexport const DEFAULT_ENCRYPTION_KEY = 'sphere-default-key' as const;\n\n/\n Global storage keys (one per wallet, no address index)\n * Final key format: sphere_{key}\n /\nexport const STORAGE_KEYS_GLOBAL = {\n /* Encrypted BIP39 mnemonic /\n MNEMONIC: 'mnemonic',\n /* Encrypted master private key /\n MASTER_KEY: 'master_key',\n /* BIP32 chain code /\n CHAIN_CODE: 'chain_code',\n /* HD derivation path (full path like m/44'/0'/0'/0/0) /\n DERIVATION_PATH: 'derivation_path',\n /* Base derivation path (like m/44'/0'/0' without chain/index) /\n BASE_PATH: 'base_path',\n /* Derivation mode: bip32, wif_hmac, legacy_hmac /\n DERIVATION_MODE: 'derivation_mode',\n /* Wallet source: mnemonic, file, unknown /\n WALLET_SOURCE: 'wallet_source',\n /* Wallet existence flag /\n WALLET_EXISTS: 'wallet_exists',\n /* Current active address index /\n CURRENT_ADDRESS_INDEX: 'current_address_index',\n /* Nametag cache per address (separate from tracked addresses registry) /\n ADDRESS_NAMETAGS: 'address_nametags',\n /* Active addresses registry (JSON: TrackedAddressesStorage) /\n TRACKED_ADDRESSES: 'tracked_addresses',\n /* Last processed Nostr wallet event timestamp (unix seconds), keyed per pubkey /\n LAST_WALLET_EVENT_TS: 'last_wallet_event_ts',\n /* Group chat: joined groups /\n GROUP_CHAT_GROUPS: 'group_chat_groups',\n /* Group chat: messages /\n GROUP_CHAT_MESSAGES: 'group_chat_messages',\n /* Group chat: members /\n GROUP_CHAT_MEMBERS: 'group_chat_members',\n /* Group chat: processed event IDs for deduplication /\n GROUP_CHAT_PROCESSED_EVENTS: 'group_chat_processed_events',\n /* Group chat: last used relay URL (stale data detection) /\n GROUP_CHAT_RELAY_URL: 'group_chat_relay_url',\n /* Cached token registry JSON (fetched from remote) /\n TOKEN_REGISTRY_CACHE: 'token_registry_cache',\n /* Timestamp of last token registry cache update (ms since epoch) /\n TOKEN_REGISTRY_CACHE_TS: 'token_registry_cache_ts',\n /* Cached price data JSON (from CoinGecko or other provider) /\n PRICE_CACHE: 'price_cache',\n /* Timestamp of last price cache update (ms since epoch) /\n PRICE_CACHE_TS: 'price_cache_ts',\n} as const;\n\n/\n Per-address storage keys (one per derived address)\n * Final key format: sphere_{DIRECT_xxx_yyy}_{key}\n * Example: sphere_DIRECT_abc123_xyz789_pending_transfers\n \n Note: Token data (tokens, tombstones, archived, forked) is stored via\n * TokenStorageProvider, not here. This avoids duplication.\n /\nexport const STORAGE_KEYS_ADDRESS = {\n /* Pending transfers for this address /\n PENDING_TRANSFERS: 'pending_transfers',\n /* Transfer outbox for this address /\n OUTBOX: 'outbox',\n /* Conversations for this address /\n CONVERSATIONS: 'conversations',\n /* Messages for this address /\n MESSAGES: 'messages',\n /* Transaction history for this address /\n TRANSACTION_HISTORY: 'transaction_history',\n /* Pending V5 finalization tokens (unconfirmed instant split tokens) /\n PENDING_V5_TOKENS: 'pending_v5_tokens',\n} as const;\n\n/* @deprecated Use STORAGE_KEYS_GLOBAL and STORAGE_KEYS_ADDRESS instead /\nexport const STORAGE_KEYS = {\n ...STORAGE_KEYS_GLOBAL,\n ...STORAGE_KEYS_ADDRESS,\n} as const;\n\n/\n Build a per-address storage key using address identifier\n * @param addressId - Short identifier for the address (e.g., first 8 chars of pubkey hash, or direct address hash)\n * @param key - The key from STORAGE_KEYS_ADDRESS\n * @returns Key in format: \"{addressId}_{key}\" e.g., \"a1b2c3d4_tokens\"\n /\nexport function getAddressStorageKey(addressId: string, key: string): string {\n return `${addressId}_${key}`;\n}\n\n/\n Create a readable address identifier from directAddress or chainPubkey\n * Format: DIRECT_first6_last6 (sanitized for filesystem/storage)\n * @param directAddress - The L3 direct address (DIRECT:xxx) or chainPubkey\n * @returns Sanitized identifier like \"DIRECT_abc123_xyz789\"\n /\nexport function getAddressId(directAddress: string): string {\n // Remove DIRECT:// or DIRECT: prefix if present\n let hash = directAddress;\n if (hash.startsWith('DIRECT://')) {\n hash = hash.slice(9);\n } else if (hash.startsWith('DIRECT:')) {\n hash = hash.slice(7);\n }\n // Format: DIRECT_first6_last6 (sanitized)\n const first = hash.slice(0, 6).toLowerCase();\n const last = hash.slice(-6).toLowerCase();\n return `DIRECT_${first}_${last}`;\n}\n\n// =============================================================================\n// Nostr Defaults\n// =============================================================================\n\n/* Default Nostr relays /\nexport const DEFAULT_NOSTR_RELAYS = [\n 'wss://relay.unicity.network',\n 'wss://relay.damus.io',\n 'wss://nos.lol',\n 'wss://relay.nostr.band',\n] as const;\n\n/* Nostr event kinds used by SDK - must match @unicitylabs/nostr-js-sdk /\nexport const NOSTR_EVENT_KINDS = {\n /* NIP-04 encrypted direct message /\n DIRECT_MESSAGE: 4,\n /* Token transfer (Unicity custom - 31113) /\n TOKEN_TRANSFER: 31113,\n /* Payment request (Unicity custom - 31115) /\n PAYMENT_REQUEST: 31115,\n /* Payment request response (Unicity custom - 31116) /\n PAYMENT_REQUEST_RESPONSE: 31116,\n /* Nametag binding (NIP-78 app-specific data) /\n NAMETAG_BINDING: 30078,\n /* Public broadcast /\n BROADCAST: 1,\n} as const;\n\n/\n NIP-29 Event Kinds for relay-based group chat\n * https://github.com/nostr-protocol/nips/blob/master/29.md\n /\nexport const NIP29_KINDS = {\n /* Chat message sent to group /\n CHAT_MESSAGE: 9,\n /* Thread root message /\n THREAD_ROOT: 11,\n /* Thread reply message /\n THREAD_REPLY: 12,\n /* User join request /\n JOIN_REQUEST: 9021,\n /* User leave request /\n LEAVE_REQUEST: 9022,\n /* Admin: add/update user /\n PUT_USER: 9000,\n /* Admin: remove user /\n REMOVE_USER: 9001,\n /* Admin: edit group metadata /\n EDIT_METADATA: 9002,\n /* Admin: delete event /\n DELETE_EVENT: 9005,\n /* Admin: create group /\n CREATE_GROUP: 9007,\n /* Admin: delete group /\n DELETE_GROUP: 9008,\n /* Admin: create invite code /\n CREATE_INVITE: 9009,\n /* Relay-signed group metadata /\n GROUP_METADATA: 39000,\n /* Relay-signed group admins /\n GROUP_ADMINS: 39001,\n /* Relay-signed group members /\n GROUP_MEMBERS: 39002,\n /* Relay-signed group roles /\n GROUP_ROLES: 39003,\n} as const;\n\n// =============================================================================\n// Aggregator (Oracle) Defaults\n// =============================================================================\n\n/\n Default aggregator URL\n * Note: The aggregator is conceptually an oracle - a trusted service that provides\n * verifiable truth about token state through cryptographic inclusion proofs.\n /\nexport const DEFAULT_AGGREGATOR_URL = 'https://aggregator.unicity.network/rpc' as const;\n\n/* Dev aggregator URL /\nexport const DEV_AGGREGATOR_URL = 'https://dev-aggregator.dyndns.org/rpc' as const;\n\n/* Test aggregator URL (Goggregator) /\nexport const TEST_AGGREGATOR_URL = 'https://goggregator-test.unicity.network' as const;\n\n/* Default aggregator request timeout (ms) /\nexport const DEFAULT_AGGREGATOR_TIMEOUT = 30000;\n\n/* Default API key for aggregator authentication /\nexport const DEFAULT_AGGREGATOR_API_KEY = 'sk_06365a9c44654841a366068bcfc68986' as const;\n\n// =============================================================================\n// IPFS Defaults\n// =============================================================================\n\n/* Default IPFS gateways /\nexport const DEFAULT_IPFS_GATEWAYS = [\n 'https://unicity-ipfs1.dyndns.org',\n] as const;\n\n/* Unicity IPFS bootstrap peers /\nexport const DEFAULT_IPFS_BOOTSTRAP_PEERS = [\n '/dns4/unicity-ipfs2.dyndns.org/tcp/4001/p2p/12D3KooWLNi5NDPPHbrfJakAQqwBqymYTTwMQXQKEWuCrJNDdmfh',\n '/dns4/unicity-ipfs3.dyndns.org/tcp/4001/p2p/12D3KooWQ4aujVE4ShLjdusNZBdffq3TbzrwT2DuWZY9H1Gxhwn6',\n '/dns4/unicity-ipfs4.dyndns.org/tcp/4001/p2p/12D3KooWJ1ByPfUzUrpYvgxKU8NZrR8i6PU1tUgMEbQX9Hh2DEn1',\n '/dns4/unicity-ipfs5.dyndns.org/tcp/4001/p2p/12D3KooWB1MdZZGHN5B8TvWXntbycfe7Cjcz7n6eZ9eykZadvmDv',\n] as const;\n\n/* Unicity dedicated IPFS nodes (HTTP API access) /\nexport const UNICITY_IPFS_NODES = [\n {\n host: 'unicity-ipfs1.dyndns.org',\n peerId: '12D3KooWDKJqEMAhH4nsSSiKtK1VLcas5coUqSPZAfbWbZpxtL4u',\n httpPort: 9080,\n httpsPort: 443,\n },\n] as const;\n\n/\n Get IPFS gateway URLs for HTTP API access.\n * @param isSecure - Use HTTPS (default: true). Set false for development.\n /\nexport function getIpfsGatewayUrls(isSecure?: boolean): string[] {\n return UNICITY_IPFS_NODES.map((node) =>\n isSecure !== false\n ? `https://${node.host}`\n : `http://${node.host}:${node.httpPort}`,\n );\n}\n\n// =============================================================================\n// Wallet Defaults\n// =============================================================================\n\n/* Default BIP32 base path (without chain/index) /\nexport const DEFAULT_BASE_PATH = \"m/44'/0'/0'\" as const;\n\n/* Default BIP32 derivation path (full path with chain/index) /\nexport const DEFAULT_DERIVATION_PATH = `${DEFAULT_BASE_PATH}/0/0` as const;\n\n/* Coin types /\nexport const COIN_TYPES = {\n /* ALPHA token (L1 blockchain) /\n ALPHA: 'ALPHA',\n /* Test token /\n TEST: 'TEST',\n} as const;\n\n// =============================================================================\n// L1 (ALPHA Blockchain) Defaults\n// =============================================================================\n\n/* Default Fulcrum electrum server for mainnet /\nexport const DEFAULT_ELECTRUM_URL = 'wss://fulcrum.alpha.unicity.network:50004' as const;\n\n/* Testnet Fulcrum electrum server /\nexport const TEST_ELECTRUM_URL = 'wss://fulcrum.alpha.testnet.unicity.network:50004' as const;\n\n// =============================================================================\n// Token Registry Defaults\n// =============================================================================\n\n/* Remote token registry URL (GitHub raw) /\nexport const TOKEN_REGISTRY_URL =\n 'https://raw.githubusercontent.com/unicitynetwork/unicity-ids/refs/heads/main/unicity-ids.testnet.json' as const;\n\n/* Default token registry refresh interval (ms) — 1 hour /\nexport const TOKEN_REGISTRY_REFRESH_INTERVAL = 3_600_000;\n\n// =============================================================================\n// Network Defaults\n// =============================================================================\n\n/* Testnet Nostr relays /\nexport const TEST_NOSTR_RELAYS = [\n 'wss://nostr-relay.testnet.unicity.network',\n] as const;\n\n/* Default group chat relays (NIP-29 Zooid relay) /\nexport const DEFAULT_GROUP_RELAYS = [\n 'wss://sphere-relay.unicity.network',\n] as const;\n\n/* Network configurations /\nexport const NETWORKS = {\n mainnet: {\n name: 'Mainnet',\n aggregatorUrl: DEFAULT_AGGREGATOR_URL,\n nostrRelays: DEFAULT_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: DEFAULT_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n testnet: {\n name: 'Testnet',\n aggregatorUrl: TEST_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n dev: {\n name: 'Development',\n aggregatorUrl: DEV_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n} as const;\n\nexport type NetworkType = keyof typeof NETWORKS;\nexport type NetworkConfig = (typeof NETWORKS)[NetworkType];\n\n// =============================================================================\n// Timeouts & Limits\n// =============================================================================\n\n/* Default timeouts (ms) /\nexport const TIMEOUTS = {\n /* WebSocket connection timeout /\n WEBSOCKET_CONNECT: 10000,\n /* Nostr relay reconnect delay /\n NOSTR_RECONNECT_DELAY: 3000,\n /* Max reconnect attempts /\n MAX_RECONNECT_ATTEMPTS: 5,\n /* Proof polling interval /\n PROOF_POLL_INTERVAL: 1000,\n /* Sync interval /\n SYNC_INTERVAL: 60000,\n} as const;\n\n// =============================================================================\n// Sphere Connect\n// =============================================================================\n\n/* Signal sent by wallet popup to dApp when ConnectHost is ready /\nexport const HOST_READY_TYPE = 'sphere-connect:host-ready' as const;\n\n/* Default timeout (ms) for waiting for the host-ready signal /\nexport const HOST_READY_TIMEOUT = 30_000;\n\n/* Validation limits /\nexport const LIMITS = {\n /* Min nametag length /\n NAMETAG_MIN_LENGTH: 3,\n /* Max nametag length /\n NAMETAG_MAX_LENGTH: 20,\n /* Max memo length /\n MEMO_MAX_LENGTH: 500,\n /* Max message length /\n MESSAGE_MAX_LENGTH: 10000,\n} as const;\n","/\n Sphere Connect Protocol\n * JSON-RPC-like message types for wallet ↔ dApp communication.\n /\n\n// =============================================================================\n// Constants\n// =============================================================================\n\nexport const SPHERE_CONNECT_NAMESPACE = 'sphere-connect';\nexport const SPHERE_CONNECT_VERSION = '1.0';\n\nexport { HOST_READY_TYPE, HOST_READY_TIMEOUT } from '../constants';\n\n// =============================================================================\n// RPC Method Names (query — return data, no UI)\n// =============================================================================\n\nexport const RPC_METHODS = {\n GET_IDENTITY: 'sphere_getIdentity',\n GET_BALANCE: 'sphere_getBalance',\n GET_ASSETS: 'sphere_getAssets',\n GET_FIAT_BALANCE: 'sphere_getFiatBalance',\n GET_TOKENS: 'sphere_getTokens',\n GET_HISTORY: 'sphere_getHistory',\n L1_GET_BALANCE: 'sphere_l1GetBalance',\n L1_GET_HISTORY: 'sphere_l1GetHistory',\n RESOLVE: 'sphere_resolve',\n SUBSCRIBE: 'sphere_subscribe',\n UNSUBSCRIBE: 'sphere_unsubscribe',\n DISCONNECT: 'sphere_disconnect',\n GET_CONVERSATIONS: 'sphere_getConversations',\n GET_MESSAGES: 'sphere_getMessages',\n GET_DM_UNREAD_COUNT: 'sphere_getDMUnreadCount',\n MARK_AS_READ: 'sphere_markAsRead',\n} as const;\n\nexport type RpcMethod = (typeof RPC_METHODS)[keyof typeof RPC_METHODS];\n\n// =============================================================================\n// Intent Action Names (open wallet UI, require user confirmation)\n// =============================================================================\n\nexport const INTENT_ACTIONS = {\n SEND: 'send',\n L1_SEND: 'l1_send',\n DM: 'dm',\n PAYMENT_REQUEST: 'payment_request',\n RECEIVE: 'receive',\n SIGN_MESSAGE: 'sign_message',\n} as const;\n\nexport type IntentAction = (typeof INTENT_ACTIONS)[keyof typeof INTENT_ACTIONS];\n\n// =============================================================================\n// Error Codes\n// =============================================================================\n\nexport const ERROR_CODES = {\n // Standard JSON-RPC\n PARSE_ERROR: -32700,\n INVALID_REQUEST: -32600,\n METHOD_NOT_FOUND: -32601,\n INVALID_PARAMS: -32602,\n INTERNAL_ERROR: -32603,\n\n // Sphere Connect (4xxx)\n NOT_CONNECTED: 4001,\n PERMISSION_DENIED: 4002,\n USER_REJECTED: 4003,\n SESSION_EXPIRED: 4004,\n ORIGIN_BLOCKED: 4005,\n RATE_LIMITED: 4006,\n INSUFFICIENT_BALANCE: 4100,\n INVALID_RECIPIENT: 4101,\n TRANSFER_FAILED: 4102,\n INTENT_CANCELLED: 4200,\n} as const;\n\nexport type ErrorCode = (typeof ERROR_CODES)[keyof typeof ERROR_CODES];\n\n// =============================================================================\n// Message Types\n// =============================================================================\n\ninterface SphereMessageBase {\n readonly ns: typeof SPHERE_CONNECT_NAMESPACE;\n readonly v: typeof SPHERE_CONNECT_VERSION;\n}\n\n/* Query request: dApp → Wallet /\nexport interface SphereRpcRequest extends SphereMessageBase {\n readonly type: 'request';\n readonly id: string;\n readonly method: string;\n readonly params?: Record<string, unknown>;\n}\n\n/* Query response: Wallet → dApp /\nexport interface SphereRpcResponse extends SphereMessageBase {\n readonly type: 'response';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Intent request: dApp → Wallet (opens wallet UI) /\nexport interface SphereIntentRequest extends SphereMessageBase {\n readonly type: 'intent';\n readonly id: string;\n readonly action: string;\n readonly params: Record<string, unknown>;\n}\n\n/* Intent result: Wallet → dApp (after user action) /\nexport interface SphereIntentResult extends SphereMessageBase {\n readonly type: 'intent_result';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Event push: Wallet → dApp (unsolicited) /\nexport interface SphereEventMessage extends SphereMessageBase {\n readonly type: 'event';\n readonly event: string;\n readonly data: unknown;\n}\n\n/* Handshake: bidirectional /\nexport interface SphereHandshake extends SphereMessageBase {\n readonly type: 'handshake';\n readonly direction: 'request' \| 'response';\n readonly permissions: string[];\n readonly dapp?: DAppMetadata;\n readonly sessionId?: string;\n readonly identity?: PublicIdentity;\n}\n\nexport interface SphereRpcError {\n readonly code: number;\n readonly message: string;\n readonly data?: unknown;\n}\n\nexport type SphereConnectMessage =\n \| SphereRpcRequest\n \| SphereRpcResponse\n \| SphereIntentRequest\n \| SphereIntentResult\n \| SphereEventMessage\n \| SphereHandshake;\n\n// =============================================================================\n// Shared Types\n// =============================================================================\n\nexport interface DAppMetadata {\n readonly name: string;\n readonly description?: string;\n readonly icon?: string;\n readonly url: string;\n}\n\nexport interface PublicIdentity {\n readonly chainPubkey: string;\n readonly l1Address: string;\n readonly directAddress?: string;\n readonly nametag?: string;\n}\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if a message belongs to the Sphere Connect protocol /\nexport function isSphereConnectMessage(msg: unknown): msg is SphereConnectMessage {\n if (!msg \|\| typeof msg !== 'object') return false;\n const m = msg as Record<string, unknown>;\n return m.ns === SPHERE_CONNECT_NAMESPACE && m.v === SPHERE_CONNECT_VERSION;\n}\n\n/* Create a unique request ID /\nexport function createRequestId(): string {\n if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n return crypto.randomUUID();\n }\n // Fallback for environments without crypto.randomUUID\n return `${Date.now()}-${Math.random().toString(36).slice(2, 11)}`;\n}\n","/\n Sphere Connect Permission System\n * Defines scopes, maps methods/intents to required permissions.\n /\n\nimport { RPC_METHODS, INTENT_ACTIONS } from './protocol';\n\n// =============================================================================\n// Permission Scopes\n// =============================================================================\n\nexport const PERMISSION_SCOPES = {\n IDENTITY_READ: 'identity:read',\n BALANCE_READ: 'balance:read',\n TOKENS_READ: 'tokens:read',\n HISTORY_READ: 'history:read',\n L1_READ: 'l1:read',\n EVENTS_SUBSCRIBE: 'events:subscribe',\n RESOLVE_PEER: 'resolve:peer',\n TRANSFER_REQUEST: 'transfer:request',\n L1_TRANSFER: 'l1:transfer',\n DM_REQUEST: 'dm:request',\n DM_READ: 'dm:read',\n PAYMENT_REQUEST: 'payment:request',\n SIGN_REQUEST: 'sign:request',\n} as const;\n\nexport type PermissionScope = (typeof PERMISSION_SCOPES)[keyof typeof PERMISSION_SCOPES];\n\n/* All available permission scopes /\nexport const ALL_PERMISSIONS: readonly PermissionScope[] = Object.values(PERMISSION_SCOPES);\n\n/* Permissions always granted on connect /\nexport const DEFAULT_PERMISSIONS: readonly PermissionScope[] = [\n PERMISSION_SCOPES.IDENTITY_READ,\n];\n\n// =============================================================================\n// Method → Permission Mapping\n// =============================================================================\n\nexport const METHOD_PERMISSIONS: Record<string, PermissionScope> = {\n [RPC_METHODS.GET_IDENTITY]: PERMISSION_SCOPES.IDENTITY_READ,\n [RPC_METHODS.GET_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_ASSETS]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_FIAT_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_TOKENS]: PERMISSION_SCOPES.TOKENS_READ,\n [RPC_METHODS.GET_HISTORY]: PERMISSION_SCOPES.HISTORY_READ,\n [RPC_METHODS.L1_GET_BALANCE]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.L1_GET_HISTORY]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.RESOLVE]: PERMISSION_SCOPES.RESOLVE_PEER,\n [RPC_METHODS.SUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n [RPC_METHODS.GET_CONVERSATIONS]: PERMISSION_SCOPES.DM_READ,\n [RPC_METHODS.GET_MESSAGES]: PERMISSION_SCOPES.DM_READ,\n [RPC_METHODS.GET_DM_UNREAD_COUNT]: PERMISSION_SCOPES.DM_READ,\n [RPC_METHODS.MARK_AS_READ]: PERMISSION_SCOPES.DM_READ,\n};\n\n// =============================================================================\n// Intent → Permission Mapping\n// =============================================================================\n\nexport const INTENT_PERMISSIONS: Record<string, PermissionScope> = {\n [INTENT_ACTIONS.SEND]: PERMISSION_SCOPES.TRANSFER_REQUEST,\n [INTENT_ACTIONS.L1_SEND]: PERMISSION_SCOPES.L1_TRANSFER,\n [INTENT_ACTIONS.DM]: PERMISSION_SCOPES.DM_REQUEST,\n [INTENT_ACTIONS.PAYMENT_REQUEST]: PERMISSION_SCOPES.PAYMENT_REQUEST,\n [INTENT_ACTIONS.RECEIVE]: PERMISSION_SCOPES.IDENTITY_READ,\n [INTENT_ACTIONS.SIGN_MESSAGE]: PERMISSION_SCOPES.SIGN_REQUEST,\n};\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if granted permissions allow calling a method /\nexport function hasMethodPermission(granted: ReadonlySet<string>, method: string): boolean {\n const required = METHOD_PERMISSIONS[method];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Check if granted permissions allow an intent action /\nexport function hasIntentPermission(granted: ReadonlySet<string>, action: string): boolean {\n const required = INTENT_PERMISSIONS[action];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Validate that all requested permissions are known scopes /\nexport function validatePermissions(permissions: string[]): permissions is PermissionScope[] {\n const validScopes = new Set<string>(ALL_PERMISSIONS);\n return permissions.every((p) => validScopes.has(p));\n}\n","/\n PostMessageTransport — Browser transport for Sphere Connect.\n \n Two modes:\n * - iframe: wallet (parent) ↔ dApp (iframe child)\n * - popup: dApp (opener) ↔ wallet (popup window)\n /\n\nimport type { ConnectTransport, SphereConnectMessage } from '../../../connect';\nimport { isSphereConnectMessage } from '../../../connect';\n\n// =============================================================================\n// Configuration\n// =============================================================================\n\nexport interface PostMessageHostOptions {\n /* Allowed origins for incoming messages. Use [''] only in development. /\n allowedOrigins: string[];\n}\n\nexport interface PostMessageClientOptions {\n /** Target window to send messages to. Defaults to window.parent (iframe mode). /\n target?: Window;\n /* Target origin for postMessage. Default: ''. Should be set to wallet origin. /\n targetOrigin?: string;\n}\n\n// =============================================================================\n// Implementation\n// =============================================================================\n\nconst POPUP_CLOSE_CHECK_INTERVAL = 1000;\n\nexport class PostMessageTransport implements ConnectTransport {\n private readonly targetWindow: Window;\n private readonly targetOrigin: string;\n private readonly allowedOrigins: Set<string> \| null;\n private handlers: Set<(message: SphereConnectMessage) => void> = new Set();\n private listener: ((event: MessageEvent) => void) \| null = null;\n private popupCheckInterval: ReturnType<typeof setInterval> \| null = null;\n private onPopupClosed: (() => void) \| null = null;\n\n private constructor(\n targetWindow: Window,\n targetOrigin: string,\n allowedOrigins: string[] \| null,\n ) {\n this.targetWindow = targetWindow;\n this.targetOrigin = targetOrigin;\n this.allowedOrigins = allowedOrigins ? new Set(allowedOrigins) : null;\n\n // Listen for incoming messages\n this.listener = (event: MessageEvent) => {\n // Origin check (host mode)\n if (this.allowedOrigins && !this.allowedOrigins.has('') && !this.allowedOrigins.has(event.origin)) {\n return;\n }\n\n // Namespace filter\n if (!isSphereConnectMessage(event.data)) {\n return;\n }\n\n for (const handler of this.handlers) {\n try {\n handler(event.data);\n } catch {\n // Ignore handler errors\n }\n }\n };\n\n window.addEventListener('message', this.listener);\n }\n\n // ===========================================================================\n // Factory Methods\n // ===========================================================================\n\n /\n Create transport for the HOST side (wallet).\n \n iframe mode: target = iframe.contentWindow\n * popup mode: target = window.opener\n /\n static forHost(\n target: HTMLIFrameElement \| Window,\n options: PostMessageHostOptions,\n ): PostMessageTransport {\n const targetWindow = target instanceof HTMLIFrameElement\n ? target.contentWindow!\n : target;\n const targetOrigin = options.allowedOrigins[0] === '' ? '' : options.allowedOrigins[0];\n return new PostMessageTransport(targetWindow, targetOrigin, options.allowedOrigins);\n }\n\n /\n Create transport for the CLIENT side (dApp).\n \n iframe mode: target defaults to window.parent\n * popup mode: target = popup window (from window.open())\n /\n static forClient(options?: PostMessageClientOptions): PostMessageTransport {\n const target = options?.target ?? window.parent;\n const targetOrigin = options?.targetOrigin ?? '';\n const transport = new PostMessageTransport(target, targetOrigin, null);\n\n // If target is a popup window, detect when it closes\n if (options?.target && options.target !== window.parent) {\n transport.startPopupCloseDetection(options.target);\n }\n\n return transport;\n }\n\n // ===========================================================================\n // ConnectTransport Interface\n // ===========================================================================\n\n send(message: SphereConnectMessage): void {\n try {\n this.targetWindow.postMessage(message, this.targetOrigin);\n } catch {\n // Window may be closed\n }\n }\n\n onMessage(handler: (message: SphereConnectMessage) => void): () => void {\n this.handlers.add(handler);\n return () => {\n this.handlers.delete(handler);\n };\n }\n\n destroy(): void {\n if (this.listener) {\n window.removeEventListener('message', this.listener);\n this.listener = null;\n }\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n this.handlers.clear();\n }\n\n // ===========================================================================\n // Popup Close Detection\n // ===========================================================================\n\n /** Register a callback for when the popup window closes */\n onClose(callback: () => void): void {\n this.onPopupClosed = callback;\n }\n\n private startPopupCloseDetection(popup: Window): void {\n this.popupCheckInterval = setInterval(() => {\n if (popup.closed) {\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n if (this.onPopupClosed) {\n this.onPopupClosed();\n }\n }\n }, POPUP_CLOSE_CHECK_INTERVAL);\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACuBO,IAAM,sBAAsB;AAAA;AAAA,EAEjC,UAAU;AAAA;AAAA,EAEV,YAAY;AAAA;AAAA,EAEZ,YAAY;AAAA;AAAA,EAEZ,iBAAiB;AAAA;AAAA,EAEjB,WAAW;AAAA;AAAA,EAEX,iBAAiB;AAAA;AAAA,EAEjB,eAAe;AAAA;AAAA,EAEf,eAAe;AAAA;AAAA,EAEf,uBAAuB;AAAA;AAAA,EAEvB,kBAAkB;AAAA;AAAA,EAElB,mBAAmB;AAAA;AAAA,EAEnB,sBAAsB;AAAA;AAAA,EAEtB,mBAAmB;AAAA;AAAA,EAEnB,qBAAqB;AAAA;AAAA,EAErB,oBAAoB;AAAA;AAAA,EAEpB,6BAA6B;AAAA;AAAA,EAE7B,sBAAsB;AAAA;AAAA,EAEtB,sBAAsB;AAAA;AAAA,EAEtB,yBAAyB;AAAA;AAAA,EAEzB,aAAa;AAAA;AAAA,EAEb,gBAAgB;AAClB;AAUO,IAAM,uBAAuB;AAAA;AAAA,EAElC,mBAAmB;AAAA;AAAA,EAEnB,QAAQ;AAAA;AAAA,EAER,eAAe;AAAA;AAAA,EAEf,UAAU;AAAA;AAAA,EAEV,qBAAqB;AAAA;AAAA,EAErB,mBAAmB;AACrB;AAGO,IAAM,eAAe;AAAA,EAC1B,GAAG;AAAA,EACH,GAAG;AACL;AAsKO,IAAM,oBAAoB;AAG1B,IAAM,0BAA0B,GAAG,iBAAiB;;;AC/PpD,IAAM,2BAA2B;AACjC,IAAM,yBAAyB;AAQ/B,IAAM,cAAc;AAAA,EACzB,cAAc;AAAA,EACd,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,kBAAkB;AAAA,EAClB,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,SAAS;AAAA,EACT,WAAW;AAAA,EACX,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,mBAAmB;AAAA,EACnB,cAAc;AAAA,EACd,qBAAqB;AAAA,EACrB,cAAc;AAChB;AAQO,IAAM,iBAAiB;AAAA,EAC5B,MAAM;AAAA,EACN,SAAS;AAAA,EACT,IAAI;AAAA,EACJ,iBAAiB;AAAA,EACjB,SAAS;AAAA,EACT,cAAc;AAChB;AA8HO,SAAS,uBAAuB,KAA2C;AAChF,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,IAAI;AACV,SAAO,EAAE,OAAO,4BAA4B,EAAE,MAAM;AACtD;;;ACzKO,IAAM,oBAAoB;AAAA,EAC/B,eAAe;AAAA,EACf,cAAc;AAAA,EACd,aAAa;AAAA,EACb,cAAc;AAAA,EACd,SAAS;AAAA,EACT,kBAAkB;AAAA,EAClB,cAAc;AAAA,EACd,kBAAkB;AAAA,EAClB,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,SAAS;AAAA,EACT,iBAAiB;AAAA,EACjB,cAAc;AAChB;AAKO,IAAM,kBAA8C,OAAO,OAAO,iBAAiB;AAGnF,IAAM,sBAAkD;AAAA,EAC7D,kBAAkB;AACpB;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAAA,EAC9C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,gBAAgB,GAAG,kBAAkB;AAAA,EAClD,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,OAAO,GAAG,kBAAkB;AAAA,EACzC,CAAC,YAAY,SAAS,GAAG,kBAAkB;AAAA,EAC3C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,iBAAiB,GAAG,kBAAkB;AAAA,EACnD,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAAA,EAC9C,CAAC,YAAY,mBAAmB,GAAG,kBAAkB;AAAA,EACrD,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAChD;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,eAAe,IAAI,GAAG,kBAAkB;AAAA,EACzC,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,EAAE,GAAG,kBAAkB;AAAA,EACvC,CAAC,eAAe,eAAe,GAAG,kBAAkB;AAAA,EACpD,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,YAAY,GAAG,kBAAkB;AACnD;;;ACvCA,IAAM,6BAA6B;AAE5B,IAAM,uBAAN,MAAM,sBAAiD;AAAA,EAC3C;AAAA,EACA;AAAA,EACA;AAAA,EACT,WAAyD,oBAAI,IAAI;AAAA,EACjE,WAAmD;AAAA,EACnD,qBAA4D;AAAA,EAC5D,gBAAqC;AAAA,EAErC,YACN,cACA,cACA,gBACA;AACA,SAAK,eAAe;AACpB,SAAK,eAAe;AACpB,SAAK,iBAAiB,iBAAiB,IAAI,IAAI,cAAc,IAAI;AAGjE,SAAK,WAAW,CAAC,UAAwB;AAEvC,UAAI,KAAK,kBAAkB,CAAC,KAAK,eAAe,IAAI,GAAG,KAAK,CAAC,KAAK,eAAe,IAAI,MAAM,MAAM,GAAG;AAClG;AAAA,MACF;AAGA,UAAI,CAAC,uBAAuB,MAAM,IAAI,GAAG;AACvC;AAAA,MACF;AAEA,iBAAW,WAAW,KAAK,UAAU;AACnC,YAAI;AACF,kBAAQ,MAAM,IAAI;AAAA,QACpB,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAEA,WAAO,iBAAiB,WAAW,KAAK,QAAQ;AAAA,EAClD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,OAAO,QACL,QACA,SACsB;AACtB,UAAM,eAAe,kBAAkB,oBACnC,OAAO,gBACP;AACJ,UAAM,eAAe,QAAQ,eAAe,CAAC,MAAM,MAAM,MAAM,QAAQ,eAAe,CAAC;AACvF,WAAO,IAAI,sBAAqB,cAAc,cAAc,QAAQ,cAAc;AAAA,EACpF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,UAAU,SAA0D;AACzE,UAAM,SAAS,SAAS,UAAU,OAAO;AACzC,UAAM,eAAe,SAAS,gBAAgB;AAC9C,UAAM,YAAY,IAAI,sBAAqB,QAAQ,cAAc,IAAI;AAGrE,QAAI,SAAS,UAAU,QAAQ,WAAW,OAAO,QAAQ;AACvD,gBAAU,yBAAyB,QAAQ,MAAM;AAAA,IACnD;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAMA,KAAK,SAAqC;AACxC,QAAI;AACF,WAAK,aAAa,YAAY,SAAS,KAAK,YAAY;AAAA,IAC1D,QAAQ;AAAA,IAER;AAAA,EACF;AAAA,EAEA,UAAU,SAA8D;AACtE,SAAK,SAAS,IAAI,OAAO;AACzB,WAAO,MAAM;AACX,WAAK,SAAS,OAAO,OAAO;AAAA,IAC9B;AAAA,EACF;AAAA,EAEA,UAAgB;AACd,QAAI,KAAK,UAAU;AACjB,aAAO,oBAAoB,WAAW,KAAK,QAAQ;AACnD,WAAK,WAAW;AAAA,IAClB;AACA,QAAI,KAAK,oBAAoB;AAC3B,oBAAc,KAAK,kBAAkB;AACrC,WAAK,qBAAqB;AAAA,IAC5B;AACA,SAAK,SAAS,MAAM;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,QAAQ,UAA4B;AAClC,SAAK,gBAAgB;AAAA,EACvB;AAAA,EAEQ,yBAAyB,OAAqB;AACpD,SAAK,qBAAqB,YAAY,MAAM;AAC1C,UAAI,MAAM,QAAQ;AAChB,YAAI,KAAK,oBAAoB;AAC3B,wBAAc,KAAK,kBAAkB;AACrC,eAAK,qBAAqB;AAAA,QAC5B;AACA,YAAI,KAAK,eAAe;AACtB,eAAK,cAAc;AAAA,QACrB;AAAA,MACF;AAAA,IACF,GAAG,0BAA0B;AAAA,EAC/B;AACF;","names":[]}

package/dist/impl/browser/connect/index.js CHANGED Viewed

@@ -79,7 +79,11 @@ var RPC_METHODS = {
   RESOLVE: "sphere_resolve",
   SUBSCRIBE: "sphere_subscribe",
   UNSUBSCRIBE: "sphere_unsubscribe",
-  DISCONNECT: "sphere_disconnect"
+  DISCONNECT: "sphere_disconnect",
+  GET_CONVERSATIONS: "sphere_getConversations",
+  GET_MESSAGES: "sphere_getMessages",
+  GET_DM_UNREAD_COUNT: "sphere_getDMUnreadCount",
+  MARK_AS_READ: "sphere_markAsRead"
 };
 var INTENT_ACTIONS = {
   SEND: "send",
@@ -107,6 +111,7 @@ var PERMISSION_SCOPES = {
   TRANSFER_REQUEST: "transfer:request",
   L1_TRANSFER: "l1:transfer",
   DM_REQUEST: "dm:request",
+  DM_READ: "dm:read",
   PAYMENT_REQUEST: "payment:request",
   SIGN_REQUEST: "sign:request"
 };
@@ -125,7 +130,11 @@ var METHOD_PERMISSIONS = {
   [RPC_METHODS.L1_GET_HISTORY]: PERMISSION_SCOPES.L1_READ,
   [RPC_METHODS.RESOLVE]: PERMISSION_SCOPES.RESOLVE_PEER,
   [RPC_METHODS.SUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,
-  [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE
+  [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,
+  [RPC_METHODS.GET_CONVERSATIONS]: PERMISSION_SCOPES.DM_READ,
+  [RPC_METHODS.GET_MESSAGES]: PERMISSION_SCOPES.DM_READ,
+  [RPC_METHODS.GET_DM_UNREAD_COUNT]: PERMISSION_SCOPES.DM_READ,
+  [RPC_METHODS.MARK_AS_READ]: PERMISSION_SCOPES.DM_READ
 };
 var INTENT_PERMISSIONS = {
   [INTENT_ACTIONS.SEND]: PERMISSION_SCOPES.TRANSFER_REQUEST,

package/dist/impl/browser/connect/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../constants.ts","../../../../connect/protocol.ts","../../../../connect/permissions.ts","../../../../impl/browser/connect/PostMessageTransport.ts"],"sourcesContent":["/*\n SDK2 Constants\n * Default configuration values and storage keys\n /\n\n// =============================================================================\n// Storage Keys\n// =============================================================================\n\n/* Default prefix for all storage keys /\nexport const STORAGE_PREFIX = 'sphere_' as const;\n\n/\n Default encryption key for wallet data\n * WARNING: This is a placeholder. In production, use user-provided password.\n * This key is used when no password is provided to encrypt/decrypt mnemonic.\n /\nexport const DEFAULT_ENCRYPTION_KEY = 'sphere-default-key' as const;\n\n/\n Global storage keys (one per wallet, no address index)\n * Final key format: sphere_{key}\n /\nexport const STORAGE_KEYS_GLOBAL = {\n /* Encrypted BIP39 mnemonic /\n MNEMONIC: 'mnemonic',\n /* Encrypted master private key /\n MASTER_KEY: 'master_key',\n /* BIP32 chain code /\n CHAIN_CODE: 'chain_code',\n /* HD derivation path (full path like m/44'/0'/0'/0/0) /\n DERIVATION_PATH: 'derivation_path',\n /* Base derivation path (like m/44'/0'/0' without chain/index) /\n BASE_PATH: 'base_path',\n /* Derivation mode: bip32, wif_hmac, legacy_hmac /\n DERIVATION_MODE: 'derivation_mode',\n /* Wallet source: mnemonic, file, unknown /\n WALLET_SOURCE: 'wallet_source',\n /* Wallet existence flag /\n WALLET_EXISTS: 'wallet_exists',\n /* Current active address index /\n CURRENT_ADDRESS_INDEX: 'current_address_index',\n /* Nametag cache per address (separate from tracked addresses registry) /\n ADDRESS_NAMETAGS: 'address_nametags',\n /* Active addresses registry (JSON: TrackedAddressesStorage) /\n TRACKED_ADDRESSES: 'tracked_addresses',\n /* Last processed Nostr wallet event timestamp (unix seconds), keyed per pubkey /\n LAST_WALLET_EVENT_TS: 'last_wallet_event_ts',\n /* Group chat: joined groups /\n GROUP_CHAT_GROUPS: 'group_chat_groups',\n /* Group chat: messages /\n GROUP_CHAT_MESSAGES: 'group_chat_messages',\n /* Group chat: members /\n GROUP_CHAT_MEMBERS: 'group_chat_members',\n /* Group chat: processed event IDs for deduplication /\n GROUP_CHAT_PROCESSED_EVENTS: 'group_chat_processed_events',\n /* Group chat: last used relay URL (stale data detection) /\n GROUP_CHAT_RELAY_URL: 'group_chat_relay_url',\n /* Cached token registry JSON (fetched from remote) /\n TOKEN_REGISTRY_CACHE: 'token_registry_cache',\n /* Timestamp of last token registry cache update (ms since epoch) /\n TOKEN_REGISTRY_CACHE_TS: 'token_registry_cache_ts',\n /* Cached price data JSON (from CoinGecko or other provider) /\n PRICE_CACHE: 'price_cache',\n /* Timestamp of last price cache update (ms since epoch) /\n PRICE_CACHE_TS: 'price_cache_ts',\n} as const;\n\n/\n Per-address storage keys (one per derived address)\n * Final key format: sphere_{DIRECT_xxx_yyy}_{key}\n * Example: sphere_DIRECT_abc123_xyz789_pending_transfers\n \n Note: Token data (tokens, tombstones, archived, forked) is stored via\n * TokenStorageProvider, not here. This avoids duplication.\n /\nexport const STORAGE_KEYS_ADDRESS = {\n /* Pending transfers for this address /\n PENDING_TRANSFERS: 'pending_transfers',\n /* Transfer outbox for this address /\n OUTBOX: 'outbox',\n /* Conversations for this address /\n CONVERSATIONS: 'conversations',\n /* Messages for this address /\n MESSAGES: 'messages',\n /* Transaction history for this address /\n TRANSACTION_HISTORY: 'transaction_history',\n /* Pending V5 finalization tokens (unconfirmed instant split tokens) /\n PENDING_V5_TOKENS: 'pending_v5_tokens',\n} as const;\n\n/* @deprecated Use STORAGE_KEYS_GLOBAL and STORAGE_KEYS_ADDRESS instead /\nexport const STORAGE_KEYS = {\n ...STORAGE_KEYS_GLOBAL,\n ...STORAGE_KEYS_ADDRESS,\n} as const;\n\n/\n Build a per-address storage key using address identifier\n * @param addressId - Short identifier for the address (e.g., first 8 chars of pubkey hash, or direct address hash)\n * @param key - The key from STORAGE_KEYS_ADDRESS\n * @returns Key in format: \"{addressId}_{key}\" e.g., \"a1b2c3d4_tokens\"\n /\nexport function getAddressStorageKey(addressId: string, key: string): string {\n return `${addressId}_${key}`;\n}\n\n/\n Create a readable address identifier from directAddress or chainPubkey\n * Format: DIRECT_first6_last6 (sanitized for filesystem/storage)\n * @param directAddress - The L3 direct address (DIRECT:xxx) or chainPubkey\n * @returns Sanitized identifier like \"DIRECT_abc123_xyz789\"\n /\nexport function getAddressId(directAddress: string): string {\n // Remove DIRECT:// or DIRECT: prefix if present\n let hash = directAddress;\n if (hash.startsWith('DIRECT://')) {\n hash = hash.slice(9);\n } else if (hash.startsWith('DIRECT:')) {\n hash = hash.slice(7);\n }\n // Format: DIRECT_first6_last6 (sanitized)\n const first = hash.slice(0, 6).toLowerCase();\n const last = hash.slice(-6).toLowerCase();\n return `DIRECT_${first}_${last}`;\n}\n\n// =============================================================================\n// Nostr Defaults\n// =============================================================================\n\n/* Default Nostr relays /\nexport const DEFAULT_NOSTR_RELAYS = [\n 'wss://relay.unicity.network',\n 'wss://relay.damus.io',\n 'wss://nos.lol',\n 'wss://relay.nostr.band',\n] as const;\n\n/* Nostr event kinds used by SDK - must match @unicitylabs/nostr-js-sdk /\nexport const NOSTR_EVENT_KINDS = {\n /* NIP-04 encrypted direct message /\n DIRECT_MESSAGE: 4,\n /* Token transfer (Unicity custom - 31113) /\n TOKEN_TRANSFER: 31113,\n /* Payment request (Unicity custom - 31115) /\n PAYMENT_REQUEST: 31115,\n /* Payment request response (Unicity custom - 31116) /\n PAYMENT_REQUEST_RESPONSE: 31116,\n /* Nametag binding (NIP-78 app-specific data) /\n NAMETAG_BINDING: 30078,\n /* Public broadcast /\n BROADCAST: 1,\n} as const;\n\n/\n NIP-29 Event Kinds for relay-based group chat\n * https://github.com/nostr-protocol/nips/blob/master/29.md\n /\nexport const NIP29_KINDS = {\n /* Chat message sent to group /\n CHAT_MESSAGE: 9,\n /* Thread root message /\n THREAD_ROOT: 11,\n /* Thread reply message /\n THREAD_REPLY: 12,\n /* User join request /\n JOIN_REQUEST: 9021,\n /* User leave request /\n LEAVE_REQUEST: 9022,\n /* Admin: add/update user /\n PUT_USER: 9000,\n /* Admin: remove user /\n REMOVE_USER: 9001,\n /* Admin: edit group metadata /\n EDIT_METADATA: 9002,\n /* Admin: delete event /\n DELETE_EVENT: 9005,\n /* Admin: create group /\n CREATE_GROUP: 9007,\n /* Admin: delete group /\n DELETE_GROUP: 9008,\n /* Admin: create invite code /\n CREATE_INVITE: 9009,\n /* Relay-signed group metadata /\n GROUP_METADATA: 39000,\n /* Relay-signed group admins /\n GROUP_ADMINS: 39001,\n /* Relay-signed group members /\n GROUP_MEMBERS: 39002,\n /* Relay-signed group roles /\n GROUP_ROLES: 39003,\n} as const;\n\n// =============================================================================\n// Aggregator (Oracle) Defaults\n// =============================================================================\n\n/\n Default aggregator URL\n * Note: The aggregator is conceptually an oracle - a trusted service that provides\n * verifiable truth about token state through cryptographic inclusion proofs.\n /\nexport const DEFAULT_AGGREGATOR_URL = 'https://aggregator.unicity.network/rpc' as const;\n\n/* Dev aggregator URL /\nexport const DEV_AGGREGATOR_URL = 'https://dev-aggregator.dyndns.org/rpc' as const;\n\n/* Test aggregator URL (Goggregator) /\nexport const TEST_AGGREGATOR_URL = 'https://goggregator-test.unicity.network' as const;\n\n/* Default aggregator request timeout (ms) /\nexport const DEFAULT_AGGREGATOR_TIMEOUT = 30000;\n\n/* Default API key for aggregator authentication /\nexport const DEFAULT_AGGREGATOR_API_KEY = 'sk_06365a9c44654841a366068bcfc68986' as const;\n\n// =============================================================================\n// IPFS Defaults\n// =============================================================================\n\n/* Default IPFS gateways /\nexport const DEFAULT_IPFS_GATEWAYS = [\n 'https://unicity-ipfs1.dyndns.org',\n] as const;\n\n/* Unicity IPFS bootstrap peers /\nexport const DEFAULT_IPFS_BOOTSTRAP_PEERS = [\n '/dns4/unicity-ipfs2.dyndns.org/tcp/4001/p2p/12D3KooWLNi5NDPPHbrfJakAQqwBqymYTTwMQXQKEWuCrJNDdmfh',\n '/dns4/unicity-ipfs3.dyndns.org/tcp/4001/p2p/12D3KooWQ4aujVE4ShLjdusNZBdffq3TbzrwT2DuWZY9H1Gxhwn6',\n '/dns4/unicity-ipfs4.dyndns.org/tcp/4001/p2p/12D3KooWJ1ByPfUzUrpYvgxKU8NZrR8i6PU1tUgMEbQX9Hh2DEn1',\n '/dns4/unicity-ipfs5.dyndns.org/tcp/4001/p2p/12D3KooWB1MdZZGHN5B8TvWXntbycfe7Cjcz7n6eZ9eykZadvmDv',\n] as const;\n\n/* Unicity dedicated IPFS nodes (HTTP API access) /\nexport const UNICITY_IPFS_NODES = [\n {\n host: 'unicity-ipfs1.dyndns.org',\n peerId: '12D3KooWDKJqEMAhH4nsSSiKtK1VLcas5coUqSPZAfbWbZpxtL4u',\n httpPort: 9080,\n httpsPort: 443,\n },\n] as const;\n\n/\n Get IPFS gateway URLs for HTTP API access.\n * @param isSecure - Use HTTPS (default: true). Set false for development.\n /\nexport function getIpfsGatewayUrls(isSecure?: boolean): string[] {\n return UNICITY_IPFS_NODES.map((node) =>\n isSecure !== false\n ? `https://${node.host}`\n : `http://${node.host}:${node.httpPort}`,\n );\n}\n\n// =============================================================================\n// Wallet Defaults\n// =============================================================================\n\n/* Default BIP32 base path (without chain/index) /\nexport const DEFAULT_BASE_PATH = \"m/44'/0'/0'\" as const;\n\n/* Default BIP32 derivation path (full path with chain/index) /\nexport const DEFAULT_DERIVATION_PATH = `${DEFAULT_BASE_PATH}/0/0` as const;\n\n/* Coin types /\nexport const COIN_TYPES = {\n /* ALPHA token (L1 blockchain) /\n ALPHA: 'ALPHA',\n /* Test token /\n TEST: 'TEST',\n} as const;\n\n// =============================================================================\n// L1 (ALPHA Blockchain) Defaults\n// =============================================================================\n\n/* Default Fulcrum electrum server for mainnet /\nexport const DEFAULT_ELECTRUM_URL = 'wss://fulcrum.alpha.unicity.network:50004' as const;\n\n/* Testnet Fulcrum electrum server /\nexport const TEST_ELECTRUM_URL = 'wss://fulcrum.alpha.testnet.unicity.network:50004' as const;\n\n// =============================================================================\n// Token Registry Defaults\n// =============================================================================\n\n/* Remote token registry URL (GitHub raw) /\nexport const TOKEN_REGISTRY_URL =\n 'https://raw.githubusercontent.com/unicitynetwork/unicity-ids/refs/heads/main/unicity-ids.testnet.json' as const;\n\n/* Default token registry refresh interval (ms) — 1 hour /\nexport const TOKEN_REGISTRY_REFRESH_INTERVAL = 3_600_000;\n\n// =============================================================================\n// Network Defaults\n// =============================================================================\n\n/* Testnet Nostr relays /\nexport const TEST_NOSTR_RELAYS = [\n 'wss://nostr-relay.testnet.unicity.network',\n] as const;\n\n/* Default group chat relays (NIP-29 Zooid relay) /\nexport const DEFAULT_GROUP_RELAYS = [\n 'wss://sphere-relay.unicity.network',\n] as const;\n\n/* Network configurations /\nexport const NETWORKS = {\n mainnet: {\n name: 'Mainnet',\n aggregatorUrl: DEFAULT_AGGREGATOR_URL,\n nostrRelays: DEFAULT_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: DEFAULT_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n testnet: {\n name: 'Testnet',\n aggregatorUrl: TEST_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n dev: {\n name: 'Development',\n aggregatorUrl: DEV_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n} as const;\n\nexport type NetworkType = keyof typeof NETWORKS;\nexport type NetworkConfig = (typeof NETWORKS)[NetworkType];\n\n// =============================================================================\n// Timeouts & Limits\n// =============================================================================\n\n/* Default timeouts (ms) /\nexport const TIMEOUTS = {\n /* WebSocket connection timeout /\n WEBSOCKET_CONNECT: 10000,\n /* Nostr relay reconnect delay /\n NOSTR_RECONNECT_DELAY: 3000,\n /* Max reconnect attempts /\n MAX_RECONNECT_ATTEMPTS: 5,\n /* Proof polling interval /\n PROOF_POLL_INTERVAL: 1000,\n /* Sync interval /\n SYNC_INTERVAL: 60000,\n} as const;\n\n// =============================================================================\n// Sphere Connect\n// =============================================================================\n\n/* Signal sent by wallet popup to dApp when ConnectHost is ready /\nexport const HOST_READY_TYPE = 'sphere-connect:host-ready' as const;\n\n/* Default timeout (ms) for waiting for the host-ready signal /\nexport const HOST_READY_TIMEOUT = 30_000;\n\n/* Validation limits /\nexport const LIMITS = {\n /* Min nametag length /\n NAMETAG_MIN_LENGTH: 3,\n /* Max nametag length /\n NAMETAG_MAX_LENGTH: 20,\n /* Max memo length /\n MEMO_MAX_LENGTH: 500,\n /* Max message length /\n MESSAGE_MAX_LENGTH: 10000,\n} as const;\n","/\n Sphere Connect Protocol\n * JSON-RPC-like message types for wallet ↔ dApp communication.\n /\n\n// =============================================================================\n// Constants\n// =============================================================================\n\nexport const SPHERE_CONNECT_NAMESPACE = 'sphere-connect';\nexport const SPHERE_CONNECT_VERSION = '1.0';\n\nexport { HOST_READY_TYPE, HOST_READY_TIMEOUT } from '../constants';\n\n// =============================================================================\n// RPC Method Names (query — return data, no UI)\n// =============================================================================\n\nexport const RPC_METHODS = {\n GET_IDENTITY: 'sphere_getIdentity',\n GET_BALANCE: 'sphere_getBalance',\n GET_ASSETS: 'sphere_getAssets',\n GET_FIAT_BALANCE: 'sphere_getFiatBalance',\n GET_TOKENS: 'sphere_getTokens',\n GET_HISTORY: 'sphere_getHistory',\n L1_GET_BALANCE: 'sphere_l1GetBalance',\n L1_GET_HISTORY: 'sphere_l1GetHistory',\n RESOLVE: 'sphere_resolve',\n SUBSCRIBE: 'sphere_subscribe',\n UNSUBSCRIBE: 'sphere_unsubscribe',\n DISCONNECT: 'sphere_disconnect',\n} as const;\n\nexport type RpcMethod = (typeof RPC_METHODS)[keyof typeof RPC_METHODS];\n\n// =============================================================================\n// Intent Action Names (open wallet UI, require user confirmation)\n// =============================================================================\n\nexport const INTENT_ACTIONS = {\n SEND: 'send',\n L1_SEND: 'l1_send',\n DM: 'dm',\n PAYMENT_REQUEST: 'payment_request',\n RECEIVE: 'receive',\n SIGN_MESSAGE: 'sign_message',\n} as const;\n\nexport type IntentAction = (typeof INTENT_ACTIONS)[keyof typeof INTENT_ACTIONS];\n\n// =============================================================================\n// Error Codes\n// =============================================================================\n\nexport const ERROR_CODES = {\n // Standard JSON-RPC\n PARSE_ERROR: -32700,\n INVALID_REQUEST: -32600,\n METHOD_NOT_FOUND: -32601,\n INVALID_PARAMS: -32602,\n INTERNAL_ERROR: -32603,\n\n // Sphere Connect (4xxx)\n NOT_CONNECTED: 4001,\n PERMISSION_DENIED: 4002,\n USER_REJECTED: 4003,\n SESSION_EXPIRED: 4004,\n ORIGIN_BLOCKED: 4005,\n RATE_LIMITED: 4006,\n INSUFFICIENT_BALANCE: 4100,\n INVALID_RECIPIENT: 4101,\n TRANSFER_FAILED: 4102,\n INTENT_CANCELLED: 4200,\n} as const;\n\nexport type ErrorCode = (typeof ERROR_CODES)[keyof typeof ERROR_CODES];\n\n// =============================================================================\n// Message Types\n// =============================================================================\n\ninterface SphereMessageBase {\n readonly ns: typeof SPHERE_CONNECT_NAMESPACE;\n readonly v: typeof SPHERE_CONNECT_VERSION;\n}\n\n/* Query request: dApp → Wallet /\nexport interface SphereRpcRequest extends SphereMessageBase {\n readonly type: 'request';\n readonly id: string;\n readonly method: string;\n readonly params?: Record<string, unknown>;\n}\n\n/* Query response: Wallet → dApp /\nexport interface SphereRpcResponse extends SphereMessageBase {\n readonly type: 'response';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Intent request: dApp → Wallet (opens wallet UI) /\nexport interface SphereIntentRequest extends SphereMessageBase {\n readonly type: 'intent';\n readonly id: string;\n readonly action: string;\n readonly params: Record<string, unknown>;\n}\n\n/* Intent result: Wallet → dApp (after user action) /\nexport interface SphereIntentResult extends SphereMessageBase {\n readonly type: 'intent_result';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Event push: Wallet → dApp (unsolicited) /\nexport interface SphereEventMessage extends SphereMessageBase {\n readonly type: 'event';\n readonly event: string;\n readonly data: unknown;\n}\n\n/* Handshake: bidirectional /\nexport interface SphereHandshake extends SphereMessageBase {\n readonly type: 'handshake';\n readonly direction: 'request' \| 'response';\n readonly permissions: string[];\n readonly dapp?: DAppMetadata;\n readonly sessionId?: string;\n readonly identity?: PublicIdentity;\n}\n\nexport interface SphereRpcError {\n readonly code: number;\n readonly message: string;\n readonly data?: unknown;\n}\n\nexport type SphereConnectMessage =\n \| SphereRpcRequest\n \| SphereRpcResponse\n \| SphereIntentRequest\n \| SphereIntentResult\n \| SphereEventMessage\n \| SphereHandshake;\n\n// =============================================================================\n// Shared Types\n// =============================================================================\n\nexport interface DAppMetadata {\n readonly name: string;\n readonly description?: string;\n readonly icon?: string;\n readonly url: string;\n}\n\nexport interface PublicIdentity {\n readonly chainPubkey: string;\n readonly l1Address: string;\n readonly directAddress?: string;\n readonly nametag?: string;\n}\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if a message belongs to the Sphere Connect protocol /\nexport function isSphereConnectMessage(msg: unknown): msg is SphereConnectMessage {\n if (!msg \|\| typeof msg !== 'object') return false;\n const m = msg as Record<string, unknown>;\n return m.ns === SPHERE_CONNECT_NAMESPACE && m.v === SPHERE_CONNECT_VERSION;\n}\n\n/* Create a unique request ID /\nexport function createRequestId(): string {\n if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n return crypto.randomUUID();\n }\n // Fallback for environments without crypto.randomUUID\n return `${Date.now()}-${Math.random().toString(36).slice(2, 11)}`;\n}\n","/\n Sphere Connect Permission System\n * Defines scopes, maps methods/intents to required permissions.\n /\n\nimport { RPC_METHODS, INTENT_ACTIONS } from './protocol';\n\n// =============================================================================\n// Permission Scopes\n// =============================================================================\n\nexport const PERMISSION_SCOPES = {\n IDENTITY_READ: 'identity:read',\n BALANCE_READ: 'balance:read',\n TOKENS_READ: 'tokens:read',\n HISTORY_READ: 'history:read',\n L1_READ: 'l1:read',\n EVENTS_SUBSCRIBE: 'events:subscribe',\n RESOLVE_PEER: 'resolve:peer',\n TRANSFER_REQUEST: 'transfer:request',\n L1_TRANSFER: 'l1:transfer',\n DM_REQUEST: 'dm:request',\n PAYMENT_REQUEST: 'payment:request',\n SIGN_REQUEST: 'sign:request',\n} as const;\n\nexport type PermissionScope = (typeof PERMISSION_SCOPES)[keyof typeof PERMISSION_SCOPES];\n\n/* All available permission scopes /\nexport const ALL_PERMISSIONS: readonly PermissionScope[] = Object.values(PERMISSION_SCOPES);\n\n/* Permissions always granted on connect /\nexport const DEFAULT_PERMISSIONS: readonly PermissionScope[] = [\n PERMISSION_SCOPES.IDENTITY_READ,\n];\n\n// =============================================================================\n// Method → Permission Mapping\n// =============================================================================\n\nexport const METHOD_PERMISSIONS: Record<string, PermissionScope> = {\n [RPC_METHODS.GET_IDENTITY]: PERMISSION_SCOPES.IDENTITY_READ,\n [RPC_METHODS.GET_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_ASSETS]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_FIAT_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_TOKENS]: PERMISSION_SCOPES.TOKENS_READ,\n [RPC_METHODS.GET_HISTORY]: PERMISSION_SCOPES.HISTORY_READ,\n [RPC_METHODS.L1_GET_BALANCE]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.L1_GET_HISTORY]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.RESOLVE]: PERMISSION_SCOPES.RESOLVE_PEER,\n [RPC_METHODS.SUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n};\n\n// =============================================================================\n// Intent → Permission Mapping\n// =============================================================================\n\nexport const INTENT_PERMISSIONS: Record<string, PermissionScope> = {\n [INTENT_ACTIONS.SEND]: PERMISSION_SCOPES.TRANSFER_REQUEST,\n [INTENT_ACTIONS.L1_SEND]: PERMISSION_SCOPES.L1_TRANSFER,\n [INTENT_ACTIONS.DM]: PERMISSION_SCOPES.DM_REQUEST,\n [INTENT_ACTIONS.PAYMENT_REQUEST]: PERMISSION_SCOPES.PAYMENT_REQUEST,\n [INTENT_ACTIONS.RECEIVE]: PERMISSION_SCOPES.IDENTITY_READ,\n [INTENT_ACTIONS.SIGN_MESSAGE]: PERMISSION_SCOPES.SIGN_REQUEST,\n};\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if granted permissions allow calling a method /\nexport function hasMethodPermission(granted: ReadonlySet<string>, method: string): boolean {\n const required = METHOD_PERMISSIONS[method];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Check if granted permissions allow an intent action /\nexport function hasIntentPermission(granted: ReadonlySet<string>, action: string): boolean {\n const required = INTENT_PERMISSIONS[action];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Validate that all requested permissions are known scopes /\nexport function validatePermissions(permissions: string[]): permissions is PermissionScope[] {\n const validScopes = new Set<string>(ALL_PERMISSIONS);\n return permissions.every((p) => validScopes.has(p));\n}\n","/\n PostMessageTransport — Browser transport for Sphere Connect.\n \n Two modes:\n * - iframe: wallet (parent) ↔ dApp (iframe child)\n * - popup: dApp (opener) ↔ wallet (popup window)\n /\n\nimport type { ConnectTransport, SphereConnectMessage } from '../../../connect';\nimport { isSphereConnectMessage } from '../../../connect';\n\n// =============================================================================\n// Configuration\n// =============================================================================\n\nexport interface PostMessageHostOptions {\n /* Allowed origins for incoming messages. Use [''] only in development. /\n allowedOrigins: string[];\n}\n\nexport interface PostMessageClientOptions {\n /** Target window to send messages to. Defaults to window.parent (iframe mode). /\n target?: Window;\n /* Target origin for postMessage. Default: ''. Should be set to wallet origin. /\n targetOrigin?: string;\n}\n\n// =============================================================================\n// Implementation\n// =============================================================================\n\nconst POPUP_CLOSE_CHECK_INTERVAL = 1000;\n\nexport class PostMessageTransport implements ConnectTransport {\n private readonly targetWindow: Window;\n private readonly targetOrigin: string;\n private readonly allowedOrigins: Set<string> \| null;\n private handlers: Set<(message: SphereConnectMessage) => void> = new Set();\n private listener: ((event: MessageEvent) => void) \| null = null;\n private popupCheckInterval: ReturnType<typeof setInterval> \| null = null;\n private onPopupClosed: (() => void) \| null = null;\n\n private constructor(\n targetWindow: Window,\n targetOrigin: string,\n allowedOrigins: string[] \| null,\n ) {\n this.targetWindow = targetWindow;\n this.targetOrigin = targetOrigin;\n this.allowedOrigins = allowedOrigins ? new Set(allowedOrigins) : null;\n\n // Listen for incoming messages\n this.listener = (event: MessageEvent) => {\n // Origin check (host mode)\n if (this.allowedOrigins && !this.allowedOrigins.has('') && !this.allowedOrigins.has(event.origin)) {\n return;\n }\n\n // Namespace filter\n if (!isSphereConnectMessage(event.data)) {\n return;\n }\n\n for (const handler of this.handlers) {\n try {\n handler(event.data);\n } catch {\n // Ignore handler errors\n }\n }\n };\n\n window.addEventListener('message', this.listener);\n }\n\n // ===========================================================================\n // Factory Methods\n // ===========================================================================\n\n /\n Create transport for the HOST side (wallet).\n \n iframe mode: target = iframe.contentWindow\n * popup mode: target = window.opener\n /\n static forHost(\n target: HTMLIFrameElement \| Window,\n options: PostMessageHostOptions,\n ): PostMessageTransport {\n const targetWindow = target instanceof HTMLIFrameElement\n ? target.contentWindow!\n : target;\n const targetOrigin = options.allowedOrigins[0] === '' ? '' : options.allowedOrigins[0];\n return new PostMessageTransport(targetWindow, targetOrigin, options.allowedOrigins);\n }\n\n /\n Create transport for the CLIENT side (dApp).\n \n iframe mode: target defaults to window.parent\n * popup mode: target = popup window (from window.open())\n /\n static forClient(options?: PostMessageClientOptions): PostMessageTransport {\n const target = options?.target ?? window.parent;\n const targetOrigin = options?.targetOrigin ?? '';\n const transport = new PostMessageTransport(target, targetOrigin, null);\n\n // If target is a popup window, detect when it closes\n if (options?.target && options.target !== window.parent) {\n transport.startPopupCloseDetection(options.target);\n }\n\n return transport;\n }\n\n // ===========================================================================\n // ConnectTransport Interface\n // ===========================================================================\n\n send(message: SphereConnectMessage): void {\n try {\n this.targetWindow.postMessage(message, this.targetOrigin);\n } catch {\n // Window may be closed\n }\n }\n\n onMessage(handler: (message: SphereConnectMessage) => void): () => void {\n this.handlers.add(handler);\n return () => {\n this.handlers.delete(handler);\n };\n }\n\n destroy(): void {\n if (this.listener) {\n window.removeEventListener('message', this.listener);\n this.listener = null;\n }\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n this.handlers.clear();\n }\n\n // ===========================================================================\n // Popup Close Detection\n // ===========================================================================\n\n /** Register a callback for when the popup window closes */\n onClose(callback: () => void): void {\n this.onPopupClosed = callback;\n }\n\n private startPopupCloseDetection(popup: Window): void {\n this.popupCheckInterval = setInterval(() => {\n if (popup.closed) {\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n if (this.onPopupClosed) {\n this.onPopupClosed();\n }\n }\n }, POPUP_CLOSE_CHECK_INTERVAL);\n }\n}\n"],"mappings":";AAuBO,IAAM,sBAAsB;AAAA;AAAA,EAEjC,UAAU;AAAA;AAAA,EAEV,YAAY;AAAA;AAAA,EAEZ,YAAY;AAAA;AAAA,EAEZ,iBAAiB;AAAA;AAAA,EAEjB,WAAW;AAAA;AAAA,EAEX,iBAAiB;AAAA;AAAA,EAEjB,eAAe;AAAA;AAAA,EAEf,eAAe;AAAA;AAAA,EAEf,uBAAuB;AAAA;AAAA,EAEvB,kBAAkB;AAAA;AAAA,EAElB,mBAAmB;AAAA;AAAA,EAEnB,sBAAsB;AAAA;AAAA,EAEtB,mBAAmB;AAAA;AAAA,EAEnB,qBAAqB;AAAA;AAAA,EAErB,oBAAoB;AAAA;AAAA,EAEpB,6BAA6B;AAAA;AAAA,EAE7B,sBAAsB;AAAA;AAAA,EAEtB,sBAAsB;AAAA;AAAA,EAEtB,yBAAyB;AAAA;AAAA,EAEzB,aAAa;AAAA;AAAA,EAEb,gBAAgB;AAClB;AAUO,IAAM,uBAAuB;AAAA;AAAA,EAElC,mBAAmB;AAAA;AAAA,EAEnB,QAAQ;AAAA;AAAA,EAER,eAAe;AAAA;AAAA,EAEf,UAAU;AAAA;AAAA,EAEV,qBAAqB;AAAA;AAAA,EAErB,mBAAmB;AACrB;AAGO,IAAM,eAAe;AAAA,EAC1B,GAAG;AAAA,EACH,GAAG;AACL;AAsKO,IAAM,oBAAoB;AAG1B,IAAM,0BAA0B,GAAG,iBAAiB;;;AC/PpD,IAAM,2BAA2B;AACjC,IAAM,yBAAyB;AAQ/B,IAAM,cAAc;AAAA,EACzB,cAAc;AAAA,EACd,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,kBAAkB;AAAA,EAClB,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,SAAS;AAAA,EACT,WAAW;AAAA,EACX,aAAa;AAAA,EACb,YAAY;AACd;AAQO,IAAM,iBAAiB;AAAA,EAC5B,MAAM;AAAA,EACN,SAAS;AAAA,EACT,IAAI;AAAA,EACJ,iBAAiB;AAAA,EACjB,SAAS;AAAA,EACT,cAAc;AAChB;AA8HO,SAAS,uBAAuB,KAA2C;AAChF,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,IAAI;AACV,SAAO,EAAE,OAAO,4BAA4B,EAAE,MAAM;AACtD;;;ACrKO,IAAM,oBAAoB;AAAA,EAC/B,eAAe;AAAA,EACf,cAAc;AAAA,EACd,aAAa;AAAA,EACb,cAAc;AAAA,EACd,SAAS;AAAA,EACT,kBAAkB;AAAA,EAClB,cAAc;AAAA,EACd,kBAAkB;AAAA,EAClB,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,cAAc;AAChB;AAKO,IAAM,kBAA8C,OAAO,OAAO,iBAAiB;AAGnF,IAAM,sBAAkD;AAAA,EAC7D,kBAAkB;AACpB;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAAA,EAC9C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,gBAAgB,GAAG,kBAAkB;AAAA,EAClD,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,OAAO,GAAG,kBAAkB;AAAA,EACzC,CAAC,YAAY,SAAS,GAAG,kBAAkB;AAAA,EAC3C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAC/C;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,eAAe,IAAI,GAAG,kBAAkB;AAAA,EACzC,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,EAAE,GAAG,kBAAkB;AAAA,EACvC,CAAC,eAAe,eAAe,GAAG,kBAAkB;AAAA,EACpD,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,YAAY,GAAG,kBAAkB;AACnD;;;AClCA,IAAM,6BAA6B;AAE5B,IAAM,uBAAN,MAAM,sBAAiD;AAAA,EAC3C;AAAA,EACA;AAAA,EACA;AAAA,EACT,WAAyD,oBAAI,IAAI;AAAA,EACjE,WAAmD;AAAA,EACnD,qBAA4D;AAAA,EAC5D,gBAAqC;AAAA,EAErC,YACN,cACA,cACA,gBACA;AACA,SAAK,eAAe;AACpB,SAAK,eAAe;AACpB,SAAK,iBAAiB,iBAAiB,IAAI,IAAI,cAAc,IAAI;AAGjE,SAAK,WAAW,CAAC,UAAwB;AAEvC,UAAI,KAAK,kBAAkB,CAAC,KAAK,eAAe,IAAI,GAAG,KAAK,CAAC,KAAK,eAAe,IAAI,MAAM,MAAM,GAAG;AAClG;AAAA,MACF;AAGA,UAAI,CAAC,uBAAuB,MAAM,IAAI,GAAG;AACvC;AAAA,MACF;AAEA,iBAAW,WAAW,KAAK,UAAU;AACnC,YAAI;AACF,kBAAQ,MAAM,IAAI;AAAA,QACpB,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAEA,WAAO,iBAAiB,WAAW,KAAK,QAAQ;AAAA,EAClD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,OAAO,QACL,QACA,SACsB;AACtB,UAAM,eAAe,kBAAkB,oBACnC,OAAO,gBACP;AACJ,UAAM,eAAe,QAAQ,eAAe,CAAC,MAAM,MAAM,MAAM,QAAQ,eAAe,CAAC;AACvF,WAAO,IAAI,sBAAqB,cAAc,cAAc,QAAQ,cAAc;AAAA,EACpF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,UAAU,SAA0D;AACzE,UAAM,SAAS,SAAS,UAAU,OAAO;AACzC,UAAM,eAAe,SAAS,gBAAgB;AAC9C,UAAM,YAAY,IAAI,sBAAqB,QAAQ,cAAc,IAAI;AAGrE,QAAI,SAAS,UAAU,QAAQ,WAAW,OAAO,QAAQ;AACvD,gBAAU,yBAAyB,QAAQ,MAAM;AAAA,IACnD;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAMA,KAAK,SAAqC;AACxC,QAAI;AACF,WAAK,aAAa,YAAY,SAAS,KAAK,YAAY;AAAA,IAC1D,QAAQ;AAAA,IAER;AAAA,EACF;AAAA,EAEA,UAAU,SAA8D;AACtE,SAAK,SAAS,IAAI,OAAO;AACzB,WAAO,MAAM;AACX,WAAK,SAAS,OAAO,OAAO;AAAA,IAC9B;AAAA,EACF;AAAA,EAEA,UAAgB;AACd,QAAI,KAAK,UAAU;AACjB,aAAO,oBAAoB,WAAW,KAAK,QAAQ;AACnD,WAAK,WAAW;AAAA,IAClB;AACA,QAAI,KAAK,oBAAoB;AAC3B,oBAAc,KAAK,kBAAkB;AACrC,WAAK,qBAAqB;AAAA,IAC5B;AACA,SAAK,SAAS,MAAM;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,QAAQ,UAA4B;AAClC,SAAK,gBAAgB;AAAA,EACvB;AAAA,EAEQ,yBAAyB,OAAqB;AACpD,SAAK,qBAAqB,YAAY,MAAM;AAC1C,UAAI,MAAM,QAAQ;AAChB,YAAI,KAAK,oBAAoB;AAC3B,wBAAc,KAAK,kBAAkB;AACrC,eAAK,qBAAqB;AAAA,QAC5B;AACA,YAAI,KAAK,eAAe;AACtB,eAAK,cAAc;AAAA,QACrB;AAAA,MACF;AAAA,IACF,GAAG,0BAA0B;AAAA,EAC/B;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../../constants.ts","../../../../connect/protocol.ts","../../../../connect/permissions.ts","../../../../impl/browser/connect/PostMessageTransport.ts"],"sourcesContent":["/*\n SDK2 Constants\n * Default configuration values and storage keys\n /\n\n// =============================================================================\n// Storage Keys\n// =============================================================================\n\n/* Default prefix for all storage keys /\nexport const STORAGE_PREFIX = 'sphere_' as const;\n\n/\n Default encryption key for wallet data\n * WARNING: This is a placeholder. In production, use user-provided password.\n * This key is used when no password is provided to encrypt/decrypt mnemonic.\n /\nexport const DEFAULT_ENCRYPTION_KEY = 'sphere-default-key' as const;\n\n/\n Global storage keys (one per wallet, no address index)\n * Final key format: sphere_{key}\n /\nexport const STORAGE_KEYS_GLOBAL = {\n /* Encrypted BIP39 mnemonic /\n MNEMONIC: 'mnemonic',\n /* Encrypted master private key /\n MASTER_KEY: 'master_key',\n /* BIP32 chain code /\n CHAIN_CODE: 'chain_code',\n /* HD derivation path (full path like m/44'/0'/0'/0/0) /\n DERIVATION_PATH: 'derivation_path',\n /* Base derivation path (like m/44'/0'/0' without chain/index) /\n BASE_PATH: 'base_path',\n /* Derivation mode: bip32, wif_hmac, legacy_hmac /\n DERIVATION_MODE: 'derivation_mode',\n /* Wallet source: mnemonic, file, unknown /\n WALLET_SOURCE: 'wallet_source',\n /* Wallet existence flag /\n WALLET_EXISTS: 'wallet_exists',\n /* Current active address index /\n CURRENT_ADDRESS_INDEX: 'current_address_index',\n /* Nametag cache per address (separate from tracked addresses registry) /\n ADDRESS_NAMETAGS: 'address_nametags',\n /* Active addresses registry (JSON: TrackedAddressesStorage) /\n TRACKED_ADDRESSES: 'tracked_addresses',\n /* Last processed Nostr wallet event timestamp (unix seconds), keyed per pubkey /\n LAST_WALLET_EVENT_TS: 'last_wallet_event_ts',\n /* Group chat: joined groups /\n GROUP_CHAT_GROUPS: 'group_chat_groups',\n /* Group chat: messages /\n GROUP_CHAT_MESSAGES: 'group_chat_messages',\n /* Group chat: members /\n GROUP_CHAT_MEMBERS: 'group_chat_members',\n /* Group chat: processed event IDs for deduplication /\n GROUP_CHAT_PROCESSED_EVENTS: 'group_chat_processed_events',\n /* Group chat: last used relay URL (stale data detection) /\n GROUP_CHAT_RELAY_URL: 'group_chat_relay_url',\n /* Cached token registry JSON (fetched from remote) /\n TOKEN_REGISTRY_CACHE: 'token_registry_cache',\n /* Timestamp of last token registry cache update (ms since epoch) /\n TOKEN_REGISTRY_CACHE_TS: 'token_registry_cache_ts',\n /* Cached price data JSON (from CoinGecko or other provider) /\n PRICE_CACHE: 'price_cache',\n /* Timestamp of last price cache update (ms since epoch) /\n PRICE_CACHE_TS: 'price_cache_ts',\n} as const;\n\n/\n Per-address storage keys (one per derived address)\n * Final key format: sphere_{DIRECT_xxx_yyy}_{key}\n * Example: sphere_DIRECT_abc123_xyz789_pending_transfers\n \n Note: Token data (tokens, tombstones, archived, forked) is stored via\n * TokenStorageProvider, not here. This avoids duplication.\n /\nexport const STORAGE_KEYS_ADDRESS = {\n /* Pending transfers for this address /\n PENDING_TRANSFERS: 'pending_transfers',\n /* Transfer outbox for this address /\n OUTBOX: 'outbox',\n /* Conversations for this address /\n CONVERSATIONS: 'conversations',\n /* Messages for this address /\n MESSAGES: 'messages',\n /* Transaction history for this address /\n TRANSACTION_HISTORY: 'transaction_history',\n /* Pending V5 finalization tokens (unconfirmed instant split tokens) /\n PENDING_V5_TOKENS: 'pending_v5_tokens',\n} as const;\n\n/* @deprecated Use STORAGE_KEYS_GLOBAL and STORAGE_KEYS_ADDRESS instead /\nexport const STORAGE_KEYS = {\n ...STORAGE_KEYS_GLOBAL,\n ...STORAGE_KEYS_ADDRESS,\n} as const;\n\n/\n Build a per-address storage key using address identifier\n * @param addressId - Short identifier for the address (e.g., first 8 chars of pubkey hash, or direct address hash)\n * @param key - The key from STORAGE_KEYS_ADDRESS\n * @returns Key in format: \"{addressId}_{key}\" e.g., \"a1b2c3d4_tokens\"\n /\nexport function getAddressStorageKey(addressId: string, key: string): string {\n return `${addressId}_${key}`;\n}\n\n/\n Create a readable address identifier from directAddress or chainPubkey\n * Format: DIRECT_first6_last6 (sanitized for filesystem/storage)\n * @param directAddress - The L3 direct address (DIRECT:xxx) or chainPubkey\n * @returns Sanitized identifier like \"DIRECT_abc123_xyz789\"\n /\nexport function getAddressId(directAddress: string): string {\n // Remove DIRECT:// or DIRECT: prefix if present\n let hash = directAddress;\n if (hash.startsWith('DIRECT://')) {\n hash = hash.slice(9);\n } else if (hash.startsWith('DIRECT:')) {\n hash = hash.slice(7);\n }\n // Format: DIRECT_first6_last6 (sanitized)\n const first = hash.slice(0, 6).toLowerCase();\n const last = hash.slice(-6).toLowerCase();\n return `DIRECT_${first}_${last}`;\n}\n\n// =============================================================================\n// Nostr Defaults\n// =============================================================================\n\n/* Default Nostr relays /\nexport const DEFAULT_NOSTR_RELAYS = [\n 'wss://relay.unicity.network',\n 'wss://relay.damus.io',\n 'wss://nos.lol',\n 'wss://relay.nostr.band',\n] as const;\n\n/* Nostr event kinds used by SDK - must match @unicitylabs/nostr-js-sdk /\nexport const NOSTR_EVENT_KINDS = {\n /* NIP-04 encrypted direct message /\n DIRECT_MESSAGE: 4,\n /* Token transfer (Unicity custom - 31113) /\n TOKEN_TRANSFER: 31113,\n /* Payment request (Unicity custom - 31115) /\n PAYMENT_REQUEST: 31115,\n /* Payment request response (Unicity custom - 31116) /\n PAYMENT_REQUEST_RESPONSE: 31116,\n /* Nametag binding (NIP-78 app-specific data) /\n NAMETAG_BINDING: 30078,\n /* Public broadcast /\n BROADCAST: 1,\n} as const;\n\n/\n NIP-29 Event Kinds for relay-based group chat\n * https://github.com/nostr-protocol/nips/blob/master/29.md\n /\nexport const NIP29_KINDS = {\n /* Chat message sent to group /\n CHAT_MESSAGE: 9,\n /* Thread root message /\n THREAD_ROOT: 11,\n /* Thread reply message /\n THREAD_REPLY: 12,\n /* User join request /\n JOIN_REQUEST: 9021,\n /* User leave request /\n LEAVE_REQUEST: 9022,\n /* Admin: add/update user /\n PUT_USER: 9000,\n /* Admin: remove user /\n REMOVE_USER: 9001,\n /* Admin: edit group metadata /\n EDIT_METADATA: 9002,\n /* Admin: delete event /\n DELETE_EVENT: 9005,\n /* Admin: create group /\n CREATE_GROUP: 9007,\n /* Admin: delete group /\n DELETE_GROUP: 9008,\n /* Admin: create invite code /\n CREATE_INVITE: 9009,\n /* Relay-signed group metadata /\n GROUP_METADATA: 39000,\n /* Relay-signed group admins /\n GROUP_ADMINS: 39001,\n /* Relay-signed group members /\n GROUP_MEMBERS: 39002,\n /* Relay-signed group roles /\n GROUP_ROLES: 39003,\n} as const;\n\n// =============================================================================\n// Aggregator (Oracle) Defaults\n// =============================================================================\n\n/\n Default aggregator URL\n * Note: The aggregator is conceptually an oracle - a trusted service that provides\n * verifiable truth about token state through cryptographic inclusion proofs.\n /\nexport const DEFAULT_AGGREGATOR_URL = 'https://aggregator.unicity.network/rpc' as const;\n\n/* Dev aggregator URL /\nexport const DEV_AGGREGATOR_URL = 'https://dev-aggregator.dyndns.org/rpc' as const;\n\n/* Test aggregator URL (Goggregator) /\nexport const TEST_AGGREGATOR_URL = 'https://goggregator-test.unicity.network' as const;\n\n/* Default aggregator request timeout (ms) /\nexport const DEFAULT_AGGREGATOR_TIMEOUT = 30000;\n\n/* Default API key for aggregator authentication /\nexport const DEFAULT_AGGREGATOR_API_KEY = 'sk_06365a9c44654841a366068bcfc68986' as const;\n\n// =============================================================================\n// IPFS Defaults\n// =============================================================================\n\n/* Default IPFS gateways /\nexport const DEFAULT_IPFS_GATEWAYS = [\n 'https://unicity-ipfs1.dyndns.org',\n] as const;\n\n/* Unicity IPFS bootstrap peers /\nexport const DEFAULT_IPFS_BOOTSTRAP_PEERS = [\n '/dns4/unicity-ipfs2.dyndns.org/tcp/4001/p2p/12D3KooWLNi5NDPPHbrfJakAQqwBqymYTTwMQXQKEWuCrJNDdmfh',\n '/dns4/unicity-ipfs3.dyndns.org/tcp/4001/p2p/12D3KooWQ4aujVE4ShLjdusNZBdffq3TbzrwT2DuWZY9H1Gxhwn6',\n '/dns4/unicity-ipfs4.dyndns.org/tcp/4001/p2p/12D3KooWJ1ByPfUzUrpYvgxKU8NZrR8i6PU1tUgMEbQX9Hh2DEn1',\n '/dns4/unicity-ipfs5.dyndns.org/tcp/4001/p2p/12D3KooWB1MdZZGHN5B8TvWXntbycfe7Cjcz7n6eZ9eykZadvmDv',\n] as const;\n\n/* Unicity dedicated IPFS nodes (HTTP API access) /\nexport const UNICITY_IPFS_NODES = [\n {\n host: 'unicity-ipfs1.dyndns.org',\n peerId: '12D3KooWDKJqEMAhH4nsSSiKtK1VLcas5coUqSPZAfbWbZpxtL4u',\n httpPort: 9080,\n httpsPort: 443,\n },\n] as const;\n\n/\n Get IPFS gateway URLs for HTTP API access.\n * @param isSecure - Use HTTPS (default: true). Set false for development.\n /\nexport function getIpfsGatewayUrls(isSecure?: boolean): string[] {\n return UNICITY_IPFS_NODES.map((node) =>\n isSecure !== false\n ? `https://${node.host}`\n : `http://${node.host}:${node.httpPort}`,\n );\n}\n\n// =============================================================================\n// Wallet Defaults\n// =============================================================================\n\n/* Default BIP32 base path (without chain/index) /\nexport const DEFAULT_BASE_PATH = \"m/44'/0'/0'\" as const;\n\n/* Default BIP32 derivation path (full path with chain/index) /\nexport const DEFAULT_DERIVATION_PATH = `${DEFAULT_BASE_PATH}/0/0` as const;\n\n/* Coin types /\nexport const COIN_TYPES = {\n /* ALPHA token (L1 blockchain) /\n ALPHA: 'ALPHA',\n /* Test token /\n TEST: 'TEST',\n} as const;\n\n// =============================================================================\n// L1 (ALPHA Blockchain) Defaults\n// =============================================================================\n\n/* Default Fulcrum electrum server for mainnet /\nexport const DEFAULT_ELECTRUM_URL = 'wss://fulcrum.alpha.unicity.network:50004' as const;\n\n/* Testnet Fulcrum electrum server /\nexport const TEST_ELECTRUM_URL = 'wss://fulcrum.alpha.testnet.unicity.network:50004' as const;\n\n// =============================================================================\n// Token Registry Defaults\n// =============================================================================\n\n/* Remote token registry URL (GitHub raw) /\nexport const TOKEN_REGISTRY_URL =\n 'https://raw.githubusercontent.com/unicitynetwork/unicity-ids/refs/heads/main/unicity-ids.testnet.json' as const;\n\n/* Default token registry refresh interval (ms) — 1 hour /\nexport const TOKEN_REGISTRY_REFRESH_INTERVAL = 3_600_000;\n\n// =============================================================================\n// Network Defaults\n// =============================================================================\n\n/* Testnet Nostr relays /\nexport const TEST_NOSTR_RELAYS = [\n 'wss://nostr-relay.testnet.unicity.network',\n] as const;\n\n/* Default group chat relays (NIP-29 Zooid relay) /\nexport const DEFAULT_GROUP_RELAYS = [\n 'wss://sphere-relay.unicity.network',\n] as const;\n\n/* Network configurations /\nexport const NETWORKS = {\n mainnet: {\n name: 'Mainnet',\n aggregatorUrl: DEFAULT_AGGREGATOR_URL,\n nostrRelays: DEFAULT_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: DEFAULT_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n testnet: {\n name: 'Testnet',\n aggregatorUrl: TEST_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n dev: {\n name: 'Development',\n aggregatorUrl: DEV_AGGREGATOR_URL,\n nostrRelays: TEST_NOSTR_RELAYS,\n ipfsGateways: DEFAULT_IPFS_GATEWAYS,\n electrumUrl: TEST_ELECTRUM_URL,\n groupRelays: DEFAULT_GROUP_RELAYS,\n tokenRegistryUrl: TOKEN_REGISTRY_URL,\n },\n} as const;\n\nexport type NetworkType = keyof typeof NETWORKS;\nexport type NetworkConfig = (typeof NETWORKS)[NetworkType];\n\n// =============================================================================\n// Timeouts & Limits\n// =============================================================================\n\n/* Default timeouts (ms) /\nexport const TIMEOUTS = {\n /* WebSocket connection timeout /\n WEBSOCKET_CONNECT: 10000,\n /* Nostr relay reconnect delay /\n NOSTR_RECONNECT_DELAY: 3000,\n /* Max reconnect attempts /\n MAX_RECONNECT_ATTEMPTS: 5,\n /* Proof polling interval /\n PROOF_POLL_INTERVAL: 1000,\n /* Sync interval /\n SYNC_INTERVAL: 60000,\n} as const;\n\n// =============================================================================\n// Sphere Connect\n// =============================================================================\n\n/* Signal sent by wallet popup to dApp when ConnectHost is ready /\nexport const HOST_READY_TYPE = 'sphere-connect:host-ready' as const;\n\n/* Default timeout (ms) for waiting for the host-ready signal /\nexport const HOST_READY_TIMEOUT = 30_000;\n\n/* Validation limits /\nexport const LIMITS = {\n /* Min nametag length /\n NAMETAG_MIN_LENGTH: 3,\n /* Max nametag length /\n NAMETAG_MAX_LENGTH: 20,\n /* Max memo length /\n MEMO_MAX_LENGTH: 500,\n /* Max message length /\n MESSAGE_MAX_LENGTH: 10000,\n} as const;\n","/\n Sphere Connect Protocol\n * JSON-RPC-like message types for wallet ↔ dApp communication.\n /\n\n// =============================================================================\n// Constants\n// =============================================================================\n\nexport const SPHERE_CONNECT_NAMESPACE = 'sphere-connect';\nexport const SPHERE_CONNECT_VERSION = '1.0';\n\nexport { HOST_READY_TYPE, HOST_READY_TIMEOUT } from '../constants';\n\n// =============================================================================\n// RPC Method Names (query — return data, no UI)\n// =============================================================================\n\nexport const RPC_METHODS = {\n GET_IDENTITY: 'sphere_getIdentity',\n GET_BALANCE: 'sphere_getBalance',\n GET_ASSETS: 'sphere_getAssets',\n GET_FIAT_BALANCE: 'sphere_getFiatBalance',\n GET_TOKENS: 'sphere_getTokens',\n GET_HISTORY: 'sphere_getHistory',\n L1_GET_BALANCE: 'sphere_l1GetBalance',\n L1_GET_HISTORY: 'sphere_l1GetHistory',\n RESOLVE: 'sphere_resolve',\n SUBSCRIBE: 'sphere_subscribe',\n UNSUBSCRIBE: 'sphere_unsubscribe',\n DISCONNECT: 'sphere_disconnect',\n GET_CONVERSATIONS: 'sphere_getConversations',\n GET_MESSAGES: 'sphere_getMessages',\n GET_DM_UNREAD_COUNT: 'sphere_getDMUnreadCount',\n MARK_AS_READ: 'sphere_markAsRead',\n} as const;\n\nexport type RpcMethod = (typeof RPC_METHODS)[keyof typeof RPC_METHODS];\n\n// =============================================================================\n// Intent Action Names (open wallet UI, require user confirmation)\n// =============================================================================\n\nexport const INTENT_ACTIONS = {\n SEND: 'send',\n L1_SEND: 'l1_send',\n DM: 'dm',\n PAYMENT_REQUEST: 'payment_request',\n RECEIVE: 'receive',\n SIGN_MESSAGE: 'sign_message',\n} as const;\n\nexport type IntentAction = (typeof INTENT_ACTIONS)[keyof typeof INTENT_ACTIONS];\n\n// =============================================================================\n// Error Codes\n// =============================================================================\n\nexport const ERROR_CODES = {\n // Standard JSON-RPC\n PARSE_ERROR: -32700,\n INVALID_REQUEST: -32600,\n METHOD_NOT_FOUND: -32601,\n INVALID_PARAMS: -32602,\n INTERNAL_ERROR: -32603,\n\n // Sphere Connect (4xxx)\n NOT_CONNECTED: 4001,\n PERMISSION_DENIED: 4002,\n USER_REJECTED: 4003,\n SESSION_EXPIRED: 4004,\n ORIGIN_BLOCKED: 4005,\n RATE_LIMITED: 4006,\n INSUFFICIENT_BALANCE: 4100,\n INVALID_RECIPIENT: 4101,\n TRANSFER_FAILED: 4102,\n INTENT_CANCELLED: 4200,\n} as const;\n\nexport type ErrorCode = (typeof ERROR_CODES)[keyof typeof ERROR_CODES];\n\n// =============================================================================\n// Message Types\n// =============================================================================\n\ninterface SphereMessageBase {\n readonly ns: typeof SPHERE_CONNECT_NAMESPACE;\n readonly v: typeof SPHERE_CONNECT_VERSION;\n}\n\n/* Query request: dApp → Wallet /\nexport interface SphereRpcRequest extends SphereMessageBase {\n readonly type: 'request';\n readonly id: string;\n readonly method: string;\n readonly params?: Record<string, unknown>;\n}\n\n/* Query response: Wallet → dApp /\nexport interface SphereRpcResponse extends SphereMessageBase {\n readonly type: 'response';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Intent request: dApp → Wallet (opens wallet UI) /\nexport interface SphereIntentRequest extends SphereMessageBase {\n readonly type: 'intent';\n readonly id: string;\n readonly action: string;\n readonly params: Record<string, unknown>;\n}\n\n/* Intent result: Wallet → dApp (after user action) /\nexport interface SphereIntentResult extends SphereMessageBase {\n readonly type: 'intent_result';\n readonly id: string;\n readonly result?: unknown;\n readonly error?: SphereRpcError;\n}\n\n/* Event push: Wallet → dApp (unsolicited) /\nexport interface SphereEventMessage extends SphereMessageBase {\n readonly type: 'event';\n readonly event: string;\n readonly data: unknown;\n}\n\n/* Handshake: bidirectional /\nexport interface SphereHandshake extends SphereMessageBase {\n readonly type: 'handshake';\n readonly direction: 'request' \| 'response';\n readonly permissions: string[];\n readonly dapp?: DAppMetadata;\n readonly sessionId?: string;\n readonly identity?: PublicIdentity;\n}\n\nexport interface SphereRpcError {\n readonly code: number;\n readonly message: string;\n readonly data?: unknown;\n}\n\nexport type SphereConnectMessage =\n \| SphereRpcRequest\n \| SphereRpcResponse\n \| SphereIntentRequest\n \| SphereIntentResult\n \| SphereEventMessage\n \| SphereHandshake;\n\n// =============================================================================\n// Shared Types\n// =============================================================================\n\nexport interface DAppMetadata {\n readonly name: string;\n readonly description?: string;\n readonly icon?: string;\n readonly url: string;\n}\n\nexport interface PublicIdentity {\n readonly chainPubkey: string;\n readonly l1Address: string;\n readonly directAddress?: string;\n readonly nametag?: string;\n}\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if a message belongs to the Sphere Connect protocol /\nexport function isSphereConnectMessage(msg: unknown): msg is SphereConnectMessage {\n if (!msg \|\| typeof msg !== 'object') return false;\n const m = msg as Record<string, unknown>;\n return m.ns === SPHERE_CONNECT_NAMESPACE && m.v === SPHERE_CONNECT_VERSION;\n}\n\n/* Create a unique request ID /\nexport function createRequestId(): string {\n if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n return crypto.randomUUID();\n }\n // Fallback for environments without crypto.randomUUID\n return `${Date.now()}-${Math.random().toString(36).slice(2, 11)}`;\n}\n","/\n Sphere Connect Permission System\n * Defines scopes, maps methods/intents to required permissions.\n /\n\nimport { RPC_METHODS, INTENT_ACTIONS } from './protocol';\n\n// =============================================================================\n// Permission Scopes\n// =============================================================================\n\nexport const PERMISSION_SCOPES = {\n IDENTITY_READ: 'identity:read',\n BALANCE_READ: 'balance:read',\n TOKENS_READ: 'tokens:read',\n HISTORY_READ: 'history:read',\n L1_READ: 'l1:read',\n EVENTS_SUBSCRIBE: 'events:subscribe',\n RESOLVE_PEER: 'resolve:peer',\n TRANSFER_REQUEST: 'transfer:request',\n L1_TRANSFER: 'l1:transfer',\n DM_REQUEST: 'dm:request',\n DM_READ: 'dm:read',\n PAYMENT_REQUEST: 'payment:request',\n SIGN_REQUEST: 'sign:request',\n} as const;\n\nexport type PermissionScope = (typeof PERMISSION_SCOPES)[keyof typeof PERMISSION_SCOPES];\n\n/* All available permission scopes /\nexport const ALL_PERMISSIONS: readonly PermissionScope[] = Object.values(PERMISSION_SCOPES);\n\n/* Permissions always granted on connect /\nexport const DEFAULT_PERMISSIONS: readonly PermissionScope[] = [\n PERMISSION_SCOPES.IDENTITY_READ,\n];\n\n// =============================================================================\n// Method → Permission Mapping\n// =============================================================================\n\nexport const METHOD_PERMISSIONS: Record<string, PermissionScope> = {\n [RPC_METHODS.GET_IDENTITY]: PERMISSION_SCOPES.IDENTITY_READ,\n [RPC_METHODS.GET_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_ASSETS]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_FIAT_BALANCE]: PERMISSION_SCOPES.BALANCE_READ,\n [RPC_METHODS.GET_TOKENS]: PERMISSION_SCOPES.TOKENS_READ,\n [RPC_METHODS.GET_HISTORY]: PERMISSION_SCOPES.HISTORY_READ,\n [RPC_METHODS.L1_GET_BALANCE]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.L1_GET_HISTORY]: PERMISSION_SCOPES.L1_READ,\n [RPC_METHODS.RESOLVE]: PERMISSION_SCOPES.RESOLVE_PEER,\n [RPC_METHODS.SUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n [RPC_METHODS.UNSUBSCRIBE]: PERMISSION_SCOPES.EVENTS_SUBSCRIBE,\n [RPC_METHODS.GET_CONVERSATIONS]: PERMISSION_SCOPES.DM_READ,\n [RPC_METHODS.GET_MESSAGES]: PERMISSION_SCOPES.DM_READ,\n [RPC_METHODS.GET_DM_UNREAD_COUNT]: PERMISSION_SCOPES.DM_READ,\n [RPC_METHODS.MARK_AS_READ]: PERMISSION_SCOPES.DM_READ,\n};\n\n// =============================================================================\n// Intent → Permission Mapping\n// =============================================================================\n\nexport const INTENT_PERMISSIONS: Record<string, PermissionScope> = {\n [INTENT_ACTIONS.SEND]: PERMISSION_SCOPES.TRANSFER_REQUEST,\n [INTENT_ACTIONS.L1_SEND]: PERMISSION_SCOPES.L1_TRANSFER,\n [INTENT_ACTIONS.DM]: PERMISSION_SCOPES.DM_REQUEST,\n [INTENT_ACTIONS.PAYMENT_REQUEST]: PERMISSION_SCOPES.PAYMENT_REQUEST,\n [INTENT_ACTIONS.RECEIVE]: PERMISSION_SCOPES.IDENTITY_READ,\n [INTENT_ACTIONS.SIGN_MESSAGE]: PERMISSION_SCOPES.SIGN_REQUEST,\n};\n\n// =============================================================================\n// Helpers\n// =============================================================================\n\n/* Check if granted permissions allow calling a method /\nexport function hasMethodPermission(granted: ReadonlySet<string>, method: string): boolean {\n const required = METHOD_PERMISSIONS[method];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Check if granted permissions allow an intent action /\nexport function hasIntentPermission(granted: ReadonlySet<string>, action: string): boolean {\n const required = INTENT_PERMISSIONS[action];\n if (!required) return false;\n return granted.has(required);\n}\n\n/* Validate that all requested permissions are known scopes /\nexport function validatePermissions(permissions: string[]): permissions is PermissionScope[] {\n const validScopes = new Set<string>(ALL_PERMISSIONS);\n return permissions.every((p) => validScopes.has(p));\n}\n","/\n PostMessageTransport — Browser transport for Sphere Connect.\n \n Two modes:\n * - iframe: wallet (parent) ↔ dApp (iframe child)\n * - popup: dApp (opener) ↔ wallet (popup window)\n /\n\nimport type { ConnectTransport, SphereConnectMessage } from '../../../connect';\nimport { isSphereConnectMessage } from '../../../connect';\n\n// =============================================================================\n// Configuration\n// =============================================================================\n\nexport interface PostMessageHostOptions {\n /* Allowed origins for incoming messages. Use [''] only in development. /\n allowedOrigins: string[];\n}\n\nexport interface PostMessageClientOptions {\n /** Target window to send messages to. Defaults to window.parent (iframe mode). /\n target?: Window;\n /* Target origin for postMessage. Default: ''. Should be set to wallet origin. /\n targetOrigin?: string;\n}\n\n// =============================================================================\n// Implementation\n// =============================================================================\n\nconst POPUP_CLOSE_CHECK_INTERVAL = 1000;\n\nexport class PostMessageTransport implements ConnectTransport {\n private readonly targetWindow: Window;\n private readonly targetOrigin: string;\n private readonly allowedOrigins: Set<string> \| null;\n private handlers: Set<(message: SphereConnectMessage) => void> = new Set();\n private listener: ((event: MessageEvent) => void) \| null = null;\n private popupCheckInterval: ReturnType<typeof setInterval> \| null = null;\n private onPopupClosed: (() => void) \| null = null;\n\n private constructor(\n targetWindow: Window,\n targetOrigin: string,\n allowedOrigins: string[] \| null,\n ) {\n this.targetWindow = targetWindow;\n this.targetOrigin = targetOrigin;\n this.allowedOrigins = allowedOrigins ? new Set(allowedOrigins) : null;\n\n // Listen for incoming messages\n this.listener = (event: MessageEvent) => {\n // Origin check (host mode)\n if (this.allowedOrigins && !this.allowedOrigins.has('') && !this.allowedOrigins.has(event.origin)) {\n return;\n }\n\n // Namespace filter\n if (!isSphereConnectMessage(event.data)) {\n return;\n }\n\n for (const handler of this.handlers) {\n try {\n handler(event.data);\n } catch {\n // Ignore handler errors\n }\n }\n };\n\n window.addEventListener('message', this.listener);\n }\n\n // ===========================================================================\n // Factory Methods\n // ===========================================================================\n\n /\n Create transport for the HOST side (wallet).\n \n iframe mode: target = iframe.contentWindow\n * popup mode: target = window.opener\n /\n static forHost(\n target: HTMLIFrameElement \| Window,\n options: PostMessageHostOptions,\n ): PostMessageTransport {\n const targetWindow = target instanceof HTMLIFrameElement\n ? target.contentWindow!\n : target;\n const targetOrigin = options.allowedOrigins[0] === '' ? '' : options.allowedOrigins[0];\n return new PostMessageTransport(targetWindow, targetOrigin, options.allowedOrigins);\n }\n\n /\n Create transport for the CLIENT side (dApp).\n \n iframe mode: target defaults to window.parent\n * popup mode: target = popup window (from window.open())\n /\n static forClient(options?: PostMessageClientOptions): PostMessageTransport {\n const target = options?.target ?? window.parent;\n const targetOrigin = options?.targetOrigin ?? '';\n const transport = new PostMessageTransport(target, targetOrigin, null);\n\n // If target is a popup window, detect when it closes\n if (options?.target && options.target !== window.parent) {\n transport.startPopupCloseDetection(options.target);\n }\n\n return transport;\n }\n\n // ===========================================================================\n // ConnectTransport Interface\n // ===========================================================================\n\n send(message: SphereConnectMessage): void {\n try {\n this.targetWindow.postMessage(message, this.targetOrigin);\n } catch {\n // Window may be closed\n }\n }\n\n onMessage(handler: (message: SphereConnectMessage) => void): () => void {\n this.handlers.add(handler);\n return () => {\n this.handlers.delete(handler);\n };\n }\n\n destroy(): void {\n if (this.listener) {\n window.removeEventListener('message', this.listener);\n this.listener = null;\n }\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n this.handlers.clear();\n }\n\n // ===========================================================================\n // Popup Close Detection\n // ===========================================================================\n\n /** Register a callback for when the popup window closes */\n onClose(callback: () => void): void {\n this.onPopupClosed = callback;\n }\n\n private startPopupCloseDetection(popup: Window): void {\n this.popupCheckInterval = setInterval(() => {\n if (popup.closed) {\n if (this.popupCheckInterval) {\n clearInterval(this.popupCheckInterval);\n this.popupCheckInterval = null;\n }\n if (this.onPopupClosed) {\n this.onPopupClosed();\n }\n }\n }, POPUP_CLOSE_CHECK_INTERVAL);\n }\n}\n"],"mappings":";AAuBO,IAAM,sBAAsB;AAAA;AAAA,EAEjC,UAAU;AAAA;AAAA,EAEV,YAAY;AAAA;AAAA,EAEZ,YAAY;AAAA;AAAA,EAEZ,iBAAiB;AAAA;AAAA,EAEjB,WAAW;AAAA;AAAA,EAEX,iBAAiB;AAAA;AAAA,EAEjB,eAAe;AAAA;AAAA,EAEf,eAAe;AAAA;AAAA,EAEf,uBAAuB;AAAA;AAAA,EAEvB,kBAAkB;AAAA;AAAA,EAElB,mBAAmB;AAAA;AAAA,EAEnB,sBAAsB;AAAA;AAAA,EAEtB,mBAAmB;AAAA;AAAA,EAEnB,qBAAqB;AAAA;AAAA,EAErB,oBAAoB;AAAA;AAAA,EAEpB,6BAA6B;AAAA;AAAA,EAE7B,sBAAsB;AAAA;AAAA,EAEtB,sBAAsB;AAAA;AAAA,EAEtB,yBAAyB;AAAA;AAAA,EAEzB,aAAa;AAAA;AAAA,EAEb,gBAAgB;AAClB;AAUO,IAAM,uBAAuB;AAAA;AAAA,EAElC,mBAAmB;AAAA;AAAA,EAEnB,QAAQ;AAAA;AAAA,EAER,eAAe;AAAA;AAAA,EAEf,UAAU;AAAA;AAAA,EAEV,qBAAqB;AAAA;AAAA,EAErB,mBAAmB;AACrB;AAGO,IAAM,eAAe;AAAA,EAC1B,GAAG;AAAA,EACH,GAAG;AACL;AAsKO,IAAM,oBAAoB;AAG1B,IAAM,0BAA0B,GAAG,iBAAiB;;;AC/PpD,IAAM,2BAA2B;AACjC,IAAM,yBAAyB;AAQ/B,IAAM,cAAc;AAAA,EACzB,cAAc;AAAA,EACd,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,kBAAkB;AAAA,EAClB,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,SAAS;AAAA,EACT,WAAW;AAAA,EACX,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,mBAAmB;AAAA,EACnB,cAAc;AAAA,EACd,qBAAqB;AAAA,EACrB,cAAc;AAChB;AAQO,IAAM,iBAAiB;AAAA,EAC5B,MAAM;AAAA,EACN,SAAS;AAAA,EACT,IAAI;AAAA,EACJ,iBAAiB;AAAA,EACjB,SAAS;AAAA,EACT,cAAc;AAChB;AA8HO,SAAS,uBAAuB,KAA2C;AAChF,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,IAAI;AACV,SAAO,EAAE,OAAO,4BAA4B,EAAE,MAAM;AACtD;;;ACzKO,IAAM,oBAAoB;AAAA,EAC/B,eAAe;AAAA,EACf,cAAc;AAAA,EACd,aAAa;AAAA,EACb,cAAc;AAAA,EACd,SAAS;AAAA,EACT,kBAAkB;AAAA,EAClB,cAAc;AAAA,EACd,kBAAkB;AAAA,EAClB,aAAa;AAAA,EACb,YAAY;AAAA,EACZ,SAAS;AAAA,EACT,iBAAiB;AAAA,EACjB,cAAc;AAChB;AAKO,IAAM,kBAA8C,OAAO,OAAO,iBAAiB;AAGnF,IAAM,sBAAkD;AAAA,EAC7D,kBAAkB;AACpB;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAAA,EAC9C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,gBAAgB,GAAG,kBAAkB;AAAA,EAClD,CAAC,YAAY,UAAU,GAAG,kBAAkB;AAAA,EAC5C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,cAAc,GAAG,kBAAkB;AAAA,EAChD,CAAC,YAAY,OAAO,GAAG,kBAAkB;AAAA,EACzC,CAAC,YAAY,SAAS,GAAG,kBAAkB;AAAA,EAC3C,CAAC,YAAY,WAAW,GAAG,kBAAkB;AAAA,EAC7C,CAAC,YAAY,iBAAiB,GAAG,kBAAkB;AAAA,EACnD,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAAA,EAC9C,CAAC,YAAY,mBAAmB,GAAG,kBAAkB;AAAA,EACrD,CAAC,YAAY,YAAY,GAAG,kBAAkB;AAChD;AAMO,IAAM,qBAAsD;AAAA,EACjE,CAAC,eAAe,IAAI,GAAG,kBAAkB;AAAA,EACzC,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,EAAE,GAAG,kBAAkB;AAAA,EACvC,CAAC,eAAe,eAAe,GAAG,kBAAkB;AAAA,EACpD,CAAC,eAAe,OAAO,GAAG,kBAAkB;AAAA,EAC5C,CAAC,eAAe,YAAY,GAAG,kBAAkB;AACnD;;;ACvCA,IAAM,6BAA6B;AAE5B,IAAM,uBAAN,MAAM,sBAAiD;AAAA,EAC3C;AAAA,EACA;AAAA,EACA;AAAA,EACT,WAAyD,oBAAI,IAAI;AAAA,EACjE,WAAmD;AAAA,EACnD,qBAA4D;AAAA,EAC5D,gBAAqC;AAAA,EAErC,YACN,cACA,cACA,gBACA;AACA,SAAK,eAAe;AACpB,SAAK,eAAe;AACpB,SAAK,iBAAiB,iBAAiB,IAAI,IAAI,cAAc,IAAI;AAGjE,SAAK,WAAW,CAAC,UAAwB;AAEvC,UAAI,KAAK,kBAAkB,CAAC,KAAK,eAAe,IAAI,GAAG,KAAK,CAAC,KAAK,eAAe,IAAI,MAAM,MAAM,GAAG;AAClG;AAAA,MACF;AAGA,UAAI,CAAC,uBAAuB,MAAM,IAAI,GAAG;AACvC;AAAA,MACF;AAEA,iBAAW,WAAW,KAAK,UAAU;AACnC,YAAI;AACF,kBAAQ,MAAM,IAAI;AAAA,QACpB,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAEA,WAAO,iBAAiB,WAAW,KAAK,QAAQ;AAAA,EAClD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,OAAO,QACL,QACA,SACsB;AACtB,UAAM,eAAe,kBAAkB,oBACnC,OAAO,gBACP;AACJ,UAAM,eAAe,QAAQ,eAAe,CAAC,MAAM,MAAM,MAAM,QAAQ,eAAe,CAAC;AACvF,WAAO,IAAI,sBAAqB,cAAc,cAAc,QAAQ,cAAc;AAAA,EACpF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,UAAU,SAA0D;AACzE,UAAM,SAAS,SAAS,UAAU,OAAO;AACzC,UAAM,eAAe,SAAS,gBAAgB;AAC9C,UAAM,YAAY,IAAI,sBAAqB,QAAQ,cAAc,IAAI;AAGrE,QAAI,SAAS,UAAU,QAAQ,WAAW,OAAO,QAAQ;AACvD,gBAAU,yBAAyB,QAAQ,MAAM;AAAA,IACnD;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAMA,KAAK,SAAqC;AACxC,QAAI;AACF,WAAK,aAAa,YAAY,SAAS,KAAK,YAAY;AAAA,IAC1D,QAAQ;AAAA,IAER;AAAA,EACF;AAAA,EAEA,UAAU,SAA8D;AACtE,SAAK,SAAS,IAAI,OAAO;AACzB,WAAO,MAAM;AACX,WAAK,SAAS,OAAO,OAAO;AAAA,IAC9B;AAAA,EACF;AAAA,EAEA,UAAgB;AACd,QAAI,KAAK,UAAU;AACjB,aAAO,oBAAoB,WAAW,KAAK,QAAQ;AACnD,WAAK,WAAW;AAAA,IAClB;AACA,QAAI,KAAK,oBAAoB;AAC3B,oBAAc,KAAK,kBAAkB;AACrC,WAAK,qBAAqB;AAAA,IAC5B;AACA,SAAK,SAAS,MAAM;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,QAAQ,UAA4B;AAClC,SAAK,gBAAgB;AAAA,EACvB;AAAA,EAEQ,yBAAyB,OAAqB;AACpD,SAAK,qBAAqB,YAAY,MAAM;AAC1C,UAAI,MAAM,QAAQ;AAChB,YAAI,KAAK,oBAAoB;AAC3B,wBAAc,KAAK,kBAAkB;AACrC,eAAK,qBAAqB;AAAA,QAC5B;AACA,YAAI,KAAK,eAAe;AACtB,eAAK,cAAc;AAAA,QACrB;AAAA,MACF;AAAA,IACF,GAAG,0BAA0B;AAAA,EAC/B;AACF;","names":[]}

package/dist/impl/browser/index.cjs CHANGED Viewed

@@ -436,6 +436,7 @@ var IndexedDBStorageProvider = class {
   async connect() {
     if (this.status === "connected" && this.db) return;
     this.status = "connecting";
+    console.log(`[IndexedDBStorage] connect: opening db=${this.dbName}`);
     try {
       this.db = await Promise.race([
         this.openDatabase(),
@@ -444,19 +445,19 @@ var IndexedDBStorageProvider = class {
         )
       ]);
       this.status = "connected";
-      this.log("Connected to IndexedDB");
+      console.log(`[IndexedDBStorage] connect: connected to db=${this.dbName}`);
     } catch (error) {
       this.status = "error";
       throw new Error(`IndexedDB not available: ${error}`);
     }
   }
   async disconnect() {
+    console.log(`[IndexedDBStorage] disconnect: closing db=${this.dbName}, wasConnected=${!!this.db}`);
     if (this.db) {
       this.db.close();
       this.db = null;
     }
     this.status = "disconnected";
-    this.log("Disconnected from IndexedDB");
   }
   isConnected() {
     return this.status === "connected" && this.db !== null;
@@ -508,6 +509,7 @@ var IndexedDBStorageProvider = class {
   }
   async clear(prefix) {
     if (!prefix) {
+      console.log(`[IndexedDBStorage] clear: starting, db=${this.dbName}, wasConnected=${!!this.db}`);
       if (this.db) {
         this.db.close();
         this.db = null;
@@ -516,9 +518,18 @@ var IndexedDBStorageProvider = class {
       await new Promise((resolve) => {
         try {
           const req = indexedDB.deleteDatabase(this.dbName);
-          req.onsuccess = () => resolve();
-          req.onerror = () => resolve();
-          req.onblocked = () => resolve();
+          req.onsuccess = () => {
+            console.log(`[IndexedDBStorage] clear: deleted db=${this.dbName}`);
+            resolve();
+          };
+          req.onerror = () => {
+            console.warn(`[IndexedDBStorage] clear: error deleting db=${this.dbName}`, req.error);
+            resolve();
+          };
+          req.onblocked = () => {
+            console.warn(`[IndexedDBStorage] clear: deleteDatabase blocked for db=${this.dbName}`);
+            resolve();
+          };
         } catch {
           resolve();
         }
@@ -689,12 +700,19 @@ var IndexedDBTokenStorageProvider = class {
       const addressId = getAddressId(identity.directAddress);
       this.dbName = `${this.dbNamePrefix}-${addressId}`;
     }
+    console.log(`[IndexedDBTokenStorage] setIdentity \u2192 db=${this.dbName}`);
   }
   async initialize() {
     try {
+      if (this.db) {
+        console.log(`[IndexedDBTokenStorage] initialize: closing existing connection before re-open (db=${this.dbName})`);
+        this.db.close();
+        this.db = null;
+      }
+      console.log(`[IndexedDBTokenStorage] initialize: opening db=${this.dbName}`);
       this.db = await this.openDatabase();
       this.status = "connected";
-      this.cleanupStaleDatabases();
+      console.log(`[IndexedDBTokenStorage] initialize: connected to db=${this.dbName}`);
       return true;
     } catch (error) {
       console.error("[IndexedDBTokenStorage] Failed to initialize:", error);
@@ -703,6 +721,7 @@ var IndexedDBTokenStorageProvider = class {
     }
   }
   async shutdown() {
+    console.log(`[IndexedDBTokenStorage] shutdown: closing db=${this.dbName}, wasConnected=${!!this.db}`);
     if (this.db) {
       this.db.close();
       this.db = null;
@@ -723,6 +742,7 @@ var IndexedDBTokenStorageProvider = class {
   }
   async load() {
     if (!this.db) {
+      console.warn(`[IndexedDBTokenStorage] load: db not initialized (db=${this.dbName})`);
       return {
         success: false,
         error: "Database not initialized",
@@ -771,6 +791,8 @@ var IndexedDBTokenStorageProvider = class {
       if (invalid) {
         data._invalid = invalid;
       }
+      const tokenKeys = Object.keys(data).filter((k) => k.startsWith("_") && !["_meta", "_tombstones", "_outbox", "_sent", "_invalid"].includes(k));
+      console.log(`[IndexedDBTokenStorage] load: db=${this.dbName}, tokens=${tokenKeys.length}`);
       return {
         success: true,
         data,
@@ -778,6 +800,7 @@ var IndexedDBTokenStorageProvider = class {
         timestamp: Date.now()
       };
     } catch (error) {
+      console.error(`[IndexedDBTokenStorage] load failed: db=${this.dbName}`, error);
       return {
         success: false,
         error: error instanceof Error ? error.message : "Unknown error",
@@ -788,6 +811,7 @@ var IndexedDBTokenStorageProvider = class {
   }
   async save(data) {
     if (!this.db) {
+      console.warn(`[IndexedDBTokenStorage] save: db not initialized (db=${this.dbName})`);
       return {
         success: false,
         error: "Database not initialized",
@@ -795,6 +819,9 @@ var IndexedDBTokenStorageProvider = class {
       };
     }
     try {
+      const tokenKeys = Object.keys(data).filter((k) => k.startsWith("_") && !["_meta", "_tombstones", "_outbox", "_sent", "_invalid"].includes(k));
+      const archivedKeys = Object.keys(data).filter((k) => k.startsWith("archived-"));
+      console.log(`[IndexedDBTokenStorage] save: db=${this.dbName}, tokens=${tokenKeys.length}, archived=${archivedKeys.length}, tombstones=${data._tombstones?.length ?? 0}`);
       await this.putToStore(STORE_META, "meta", data._meta);
       if (data._tombstones) {
         await this.putToStore(STORE_META, "tombstones", data._tombstones);
@@ -853,6 +880,7 @@ var IndexedDBTokenStorageProvider = class {
   }
   async clear() {
     try {
+      console.log(`[IndexedDBTokenStorage] clear: starting, db=${this.dbName}, wasConnected=${!!this.db}`);
       if (this.db) {
         this.db.close();
         this.db = null;
@@ -875,13 +903,21 @@ var IndexedDBTokenStorageProvider = class {
         } catch {
         }
       }
+      console.log(`[IndexedDBTokenStorage] clear: deleting ${dbNames.length} database(s):`, dbNames);
       await Promise.all(dbNames.map(
         (name) => new Promise((resolve) => {
           try {
             const req = indexedDB.deleteDatabase(name);
-            req.onsuccess = () => resolve();
-            req.onerror = () => resolve();
+            req.onsuccess = () => {
+              console.log(`[IndexedDBTokenStorage] clear: deleted db=${name}`);
+              resolve();
+            };
+            req.onerror = () => {
+              console.warn(`[IndexedDBTokenStorage] clear: error deleting db=${name}`, req.error);
+              resolve();
+            };
             req.onblocked = () => {
+              console.warn(`[IndexedDBTokenStorage] clear: deleteDatabase blocked for db=${name}`);
               resolve();
             };
           } catch {
@@ -889,6 +925,7 @@ var IndexedDBTokenStorageProvider = class {
           }
         })
       ));
+      console.log(`[IndexedDBTokenStorage] clear: done`);
       return true;
     } catch (err) {
       console.warn("[IndexedDBTokenStorage] clear() failed:", err);
@@ -898,26 +935,6 @@ var IndexedDBTokenStorageProvider = class {
   // =========================================================================
   // Private IndexedDB helpers
   // =========================================================================
-  /**
-   * Delete stale databases from other addresses (fire-and-forget, background).
-   * Called after the current database is already open, so deleteDatabase
-   * on other databases won't block anything.
-   */
-  cleanupStaleDatabases() {
-    if (typeof indexedDB.databases !== "function") return;
-    indexedDB.databases().then((dbs) => {
-      for (const dbInfo of dbs) {
-        if (dbInfo.name && dbInfo.name.startsWith(this.dbNamePrefix) && dbInfo.name !== this.dbName) {
-          const req = indexedDB.deleteDatabase(dbInfo.name);
-          req.onerror = () => {
-          };
-          req.onblocked = () => {
-          };
-        }
-      }
-    }).catch(() => {
-    });
-  }
   openDatabase() {
     return new Promise((resolve, reject) => {
       const request = indexedDB.open(this.dbName, DB_VERSION2);