npm - @volr/react - Versions diffs - 0.1.129 → 0.1.130 - Mend

@volr/react 0.1.129 → 0.1.130

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
 import * as nc from 'crypto';
 import { createContext, useRef, useEffect, useMemo, useState, useCallback, useContext } from 'react';
-import { createPasskeyProvider, createMpcProvider, deriveWrapKey, unsealMasterSeed, sealMasterSeed, signSession, getAuthNonce, signAuthorization, createMasterKeyProvider, deriveEvmKey, ZERO_HASH, selectSigner, VolrError } from '@volr/sdk-core';
+import { signSession, getAuthNonce, signAuthorization, createPasskeyProvider, createMpcProvider, deriveWrapKey, unsealMasterSeed, sealMasterSeed, createMasterKeyProvider, deriveEvmKey, ZERO_HASH, selectSigner, VolrError } from '@volr/sdk-core';
 export { createMasterKeyProvider, createMpcProvider, createPasskeyProvider, deriveEvmKey, deriveWrapKey, sealMasterSeed, uploadBlob } from '@volr/sdk-core';
 import axios from 'axios';
 import { jsx } from 'react/jsx-runtime';
@@ -9269,12 +9269,13 @@ var APIClient = class {
       headers: {
         "Content-Type": "application/json"
       },
+      // Transform BigInt to string before JSON serialization
       transformRequest: [
         (data) => {
           if (data && typeof data === "object") {
             return JSON.stringify(
               data,
-              (_, value) => typeof value === "bigint" ? value.toString() : value
+              (_key, value) => typeof value === "bigint" ? value.toString() : value
             );
           }
           return data;
@@ -9298,6 +9299,9 @@ var APIClient = class {
     this.api.interceptors.response.use(
       (response) => response,
       async (error) => {
+        if (typeof process !== "undefined" && process.env.NODE_ENV === "test") {
+          sanitizeAxiosErrorForTest(error);
+        }
         const originalRequest = error.config;
         const requestUrl = originalRequest?.url || "";
         const responseData = error.response?.data;
@@ -9334,7 +9338,14 @@ var APIClient = class {
             }
             return this.api(originalRequest);
           } catch (refreshError) {
-            console.error("[APIClient] Token refresh failed:", refreshError);
+            const anyErr = refreshError;
+            const status = anyErr?.response?.status;
+            const backendCode = anyErr?.response?.data?.error?.code;
+            const backendMessage = anyErr?.response?.data?.error?.message;
+            const message = backendMessage || anyErr?.message || "Unknown error";
+            console.error(
+              `[APIClient] Token refresh failed${typeof status === "number" ? ` (${status})` : ""}: ${backendCode ? `${backendCode}: ` : ""}${message}`
+            );
             return Promise.reject(refreshError);
           }
         }
@@ -9415,17 +9426,11 @@ var APIClient = class {
     if (!this.refreshToken) {
       throw new Error("No refresh token available. Please log in again.");
     }
-    const timeoutPromise = new Promise(
-      (_, reject) => setTimeout(
-        () => reject(new Error("Session refresh timeout. Please check your network connection.")),
-        timeoutMs
-      )
-    );
-    const refreshPromise = this.api.post(
+    const response = await this.api.post(
       "/auth/refresh",
-      { refreshToken: this.refreshToken }
+      { refreshToken: this.refreshToken },
+      { timeout: timeoutMs }
     );
-    const response = await Promise.race([refreshPromise, timeoutPromise]);
     const data = response.data;
     if (isErrorResponse(data)) {
       this.setAccessToken(null);
@@ -9453,23 +9458,27 @@ var APIClient = class {
     }
     this.refreshPromise = (async () => {
       try {
-        const response = await this.api.post(
-          "/auth/refresh",
-          { refreshToken: this.refreshToken }
-        );
-        const data = response.data;
-        if (isErrorResponse(data)) {
+        try {
+          const response = await this.api.post("/auth/refresh", { refreshToken: this.refreshToken });
+          const data = response.data;
+          if (isErrorResponse(data)) {
+            this.setAccessToken(null);
+            this.setRefreshToken(null);
+            safeStorage.removeItem(STORAGE_KEYS.user);
+            throw new Error(data.error.message);
+          }
+          this.setAccessToken(data.data.accessToken);
+          if (data.data.refreshToken) {
+            this.setRefreshToken(data.data.refreshToken);
+          }
+          if (data.data.user) {
+            safeStorage.setItem(STORAGE_KEYS.user, JSON.stringify(data.data.user));
+          }
+        } catch (err) {
           this.setAccessToken(null);
           this.setRefreshToken(null);
           safeStorage.removeItem(STORAGE_KEYS.user);
-          throw new Error(data.error.message);
-        }
-        this.setAccessToken(data.data.accessToken);
-        if (data.data.refreshToken) {
-          this.setRefreshToken(data.data.refreshToken);
-        }
-        if (data.data.user) {
-          safeStorage.setItem(STORAGE_KEYS.user, JSON.stringify(data.data.user));
+          throw err;
         }
       } finally {
         this.refreshPromise = null;
@@ -9517,7 +9526,14 @@ var APIClient = class {
       const response = await this.api.request(config);
       return unwrapResponse(response.data);
     } catch (error) {
-      console.error(`[APIClient] POST ${normalizedEndpoint} error:`, error);
+      const anyErr = error;
+      const status = anyErr?.response?.status;
+      const backendCode = anyErr?.response?.data?.error?.code;
+      const backendMessage = anyErr?.response?.data?.error?.message;
+      const message = backendMessage || anyErr?.message || "Unknown error";
+      console.error(
+        `[APIClient] POST ${normalizedEndpoint} error${typeof status === "number" ? ` (${status})` : ""}: ${backendCode ? `${backendCode}: ` : ""}${message}`
+      );
       throw error;
     }
   }
@@ -9554,7 +9570,36 @@ var APIClient = class {
     const response = await this.api.get(normalizedEndpoint);
     return unwrapResponse(response.data);
   }
+  /**
+   * Internal helper to sanitize Axios errors in test environment so that Vitest
+   * can safely structured-clone them between workers.
+   *
+   * NOTE: This function is exported only for tests. It is a no-op in production
+   * builds where NODE_ENV !== 'test'.
+   */
+  static sanitizeAxiosErrorForTest(error) {
+    sanitizeAxiosErrorForTest(error);
+  }
 };
+function sanitizeAxiosErrorForTest(error) {
+  if (!error || typeof error !== "object") return;
+  try {
+    const anyErr = error;
+    const cfg = anyErr.config;
+    if (cfg && typeof cfg === "object") {
+      if ("transformRequest" in cfg) cfg.transformRequest = void 0;
+      if ("transformResponse" in cfg) cfg.transformResponse = void 0;
+      if ("adapter" in cfg) cfg.adapter = void 0;
+    }
+    if (anyErr.request) {
+      anyErr.request = void 0;
+    }
+    if (anyErr.response && anyErr.response.request) {
+      anyErr.response.request = void 0;
+    }
+  } catch {
+  }
+}
 // src/config/backend.ts
 var DEFAULT_API_BASE_URL = "https://api.volr.io";
@@ -9627,7 +9672,9 @@ var SessionSync = class {
       try {
         listener(event);
       } catch (error) {
-        console.error("SessionSync listener error:", error);
+        console.error(
+          `SessionSync listener error: ${error instanceof Error ? error.message : String(error)}`
+        );
       }
     }
   }
@@ -9747,6 +9794,17 @@ var PrfNotSupportedError = class _PrfNotSupportedError extends Error {
     Object.setPrototypeOf(this, _PrfNotSupportedError.prototype);
   }
 };
+var WebAuthnBusyError = class _WebAuthnBusyError extends Error {
+  constructor(message) {
+    super(
+      message || "Another passkey authentication is in progress. Please wait a moment and try again."
+    );
+    this.code = "WEBAUTHN_BUSY";
+    this.isRetryable = true;
+    this.name = "WebAuthnBusyError";
+    Object.setPrototypeOf(this, _WebAuthnBusyError.prototype);
+  }
+};
 function isUserCancelledError(error) {
   if (error instanceof UserCancelledError) {
     return true;
@@ -9764,8 +9822,40 @@ function isUserCancelledError(error) {
   }
   return false;
 }
+function isWebAuthnBusyError(error) {
+  if (error instanceof WebAuthnBusyError) {
+    return true;
+  }
+  if (error instanceof Error) {
+    const msg = error.message.toLowerCase();
+    if (msg.includes("already in progress") || msg.includes("already pending") || msg.includes("\uC774\uBBF8 \uC694\uCCAD\uC774 \uB300\uAE30 \uC911") || // Korean locale
+    msg.includes("authentication is already in progress") || msg.includes("operation already in progress") || msg.includes("request is already in progress")) {
+      return true;
+    }
+  }
+  return false;
+}
 // src/adapters/passkey.ts
+var pendingWebAuthnPromise = null;
+async function withWebAuthnLock(fn) {
+  if (pendingWebAuthnPromise) {
+    try {
+      await pendingWebAuthnPromise;
+    } catch {
+    }
+  }
+  const promise = fn();
+  pendingWebAuthnPromise = promise;
+  try {
+    const result = await promise;
+    return result;
+  } finally {
+    if (pendingWebAuthnPromise === promise) {
+      pendingWebAuthnPromise = null;
+    }
+  }
+}
 function createPasskeyAdapter(options = {}) {
   const rpId = options.rpId || (typeof window !== "undefined" ? window.location.hostname : "localhost");
   return {
@@ -9868,72 +9958,83 @@ function createPasskeyAdapter(options = {}) {
           type: "public-key"
         }
       ];
-      let credential = null;
-      try {
-        credential = await navigator.credentials.get({
-          publicKey: {
-            challenge: crypto.getRandomValues(new Uint8Array(32)),
-            rpId,
-            allowCredentials,
-            userVerification: USER_VERIFICATION,
-            // Shared constant
-            extensions: {
-              prf: {
-                eval: {
-                  first: prfInput.salt.buffer
+      return withWebAuthnLock(async () => {
+        let credential = null;
+        try {
+          credential = await navigator.credentials.get({
+            publicKey: {
+              challenge: crypto.getRandomValues(new Uint8Array(32)),
+              rpId,
+              allowCredentials,
+              userVerification: USER_VERIFICATION,
+              // Shared constant
+              extensions: {
+                prf: {
+                  eval: {
+                    first: prfInput.salt.buffer
+                  }
                 }
               }
-            }
-          },
-          mediation: CREDENTIAL_MEDIATION
-          // Use shared constant
-        });
-      } catch (error) {
-        console.error("[PasskeyAdapter] WebAuthn get() failed:", error);
-        console.error("[PasskeyAdapter] Error name:", error?.name);
-        console.error("[PasskeyAdapter] Error message:", error?.message);
-        if (error?.name === "NotAllowedError") {
-          throw new UserCancelledError(
-            "User cancelled the passkey prompt or authentication was denied."
+            },
+            mediation: CREDENTIAL_MEDIATION
+            // Use shared constant
+          });
+        } catch (error) {
+          console.error("[PasskeyAdapter] WebAuthn get() failed:", error);
+          console.error("[PasskeyAdapter] Error name:", error?.name);
+          console.error("[PasskeyAdapter] Error message:", error?.message);
+          const msg = (error?.message || "").toLowerCase();
+          if (msg.includes("already in progress") || msg.includes("already pending") || msg.includes("\uC774\uBBF8 \uC694\uCCAD\uC774 \uB300\uAE30 \uC911") || // Korean
+          msg.includes("operation already in progress") || msg.includes("request is already in progress")) {
+            throw new WebAuthnBusyError(
+              "Another passkey authentication is in progress. Please wait a moment and try again."
+            );
+          }
+          if (error?.name === "NotAllowedError") {
+            throw new UserCancelledError(
+              "User cancelled the passkey prompt or authentication was denied."
+            );
+          }
+          if (error?.name === "NotFoundError" || error?.name === "InvalidStateError") {
+            throw new PasskeyNotFoundError(
+              "No passkey found matching the provided credentialId. This may happen if the passkey was deleted or the credentialId is incorrect."
+            );
+          }
+          if (error?.name === "NotSupportedError") {
+            throw new PrfNotSupportedError(
+              "WebAuthn PRF extension is not supported by this browser or device. Please use a browser that supports WebAuthn PRF extension (Chrome 108+, Edge 108+, Safari 16.4+)."
+            );
+          }
+          throw new Error(
+            `[PasskeyAdapter] WebAuthn authentication failed: ${error?.message || "Unknown error"}`
           );
         }
-        if (error?.name === "NotFoundError" || error?.name === "InvalidStateError") {
-          throw new PasskeyNotFoundError(
-            "No passkey found matching the provided credentialId. This may happen if the passkey was deleted or the credentialId is incorrect."
+        if (!credential || !credential.response) {
+          console.error(
+            "[PasskeyAdapter] credential is null or missing response"
+          );
+          throw new Error(
+            "[PasskeyAdapter] Failed to get passkey credential for PRF. The passkey prompt may have been cancelled or no matching credential was found."
           );
         }
-        if (error?.name === "NotSupportedError") {
-          throw new PrfNotSupportedError(
-            "WebAuthn PRF extension is not supported by this browser or device. Please use a browser that supports WebAuthn PRF extension (Chrome 108+, Edge 108+, Safari 16.4+)."
+        const extensionResults = credential.getClientExtensionResults();
+        if (!extensionResults.prf || !extensionResults.prf.results || !extensionResults.prf.results.first) {
+          throw new Error(
+            "[PasskeyAdapter] PRF extension not supported or PRF output missing"
           );
         }
-        throw new Error(
-          `[PasskeyAdapter] WebAuthn authentication failed: ${error?.message || "Unknown error"}`
-        );
-      }
-      if (!credential || !credential.response) {
-        console.error(
-          "[PasskeyAdapter] credential is null or missing response"
-        );
-        throw new Error(
-          "[PasskeyAdapter] Failed to get passkey credential for PRF. The passkey prompt may have been cancelled or no matching credential was found."
-        );
-      }
-      const extensionResults = credential.getClientExtensionResults();
-      if (!extensionResults.prf || !extensionResults.prf.results || !extensionResults.prf.results.first) {
-        throw new Error(
-          "[PasskeyAdapter] PRF extension not supported or PRF output missing"
-        );
-      }
-      const prfOutputBuffer = extensionResults.prf.results.first;
-      const prfOutput = new Uint8Array(prfOutputBuffer);
-      const credentialIdBytes = new Uint8Array(credential.rawId);
-      const credentialIdBase64 = btoa(String.fromCharCode(...credentialIdBytes)).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
-      console.log("[PasskeyAdapter] WebAuthn prompt completed successfully");
-      return {
-        prfOutput,
-        credentialId: credentialIdBase64
-      };
+        const prfOutputBuffer = extensionResults.prf.results.first;
+        const prfOutput = new Uint8Array(prfOutputBuffer);
+        const credentialIdBytes = new Uint8Array(credential.rawId);
+        const credentialIdBase64 = btoa(
+          String.fromCharCode(...credentialIdBytes)
+        ).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
+        console.log("[PasskeyAdapter] WebAuthn prompt completed successfully");
+        return {
+          prfOutput,
+          credentialId: credentialIdBase64
+        };
+      });
     }
   };
 }
@@ -10299,7 +10400,9 @@ function VolrProvider({ config, children }) {
               setUser((prev) => ({ ...prev, keyStorageType }));
             }
           } catch (error2) {
-            console.warn("[Provider] setProvider: Failed to refresh user data:", error2);
+            console.warn(
+              `[Provider] setProvider: Failed to refresh user data: ${error2 instanceof Error ? error2.message : String(error2)}`
+            );
             setUser((prev) => ({ ...prev, keyStorageType }));
           }
         }
@@ -18650,7 +18753,9 @@ async function pollTransactionStatus(txId, client, maxAttempts = 60) {
       const intervalMs = getPollingInterval(attempt);
       await new Promise((resolve) => setTimeout(resolve, intervalMs));
     } catch (error) {
-      console.error(`[pollTransactionStatus] Error polling transaction ${txId}:`, error);
+      console.error(
+        `[pollTransactionStatus] Error polling transaction ${txId}: ${error instanceof Error ? error.message : String(error)}`
+      );
       const intervalMs = getPollingInterval(attempt);
       await new Promise((resolve) => setTimeout(resolve, intervalMs));
     }
@@ -18671,6 +18776,11 @@ async function sendCalls(args) {
   const normalizedFrom = from14;
   const normalizedCalls = normalizeCalls(calls);
   validateCalls2(normalizedCalls);
+  if (!deps.provider && deps.user?.keyStorageType !== "passkey") {
+    throw new Error(
+      "No wallet provider configured. Please set up a Passkey provider to sign transactions. SIWE is authentication-only."
+    );
+  }
   let currentUser = deps.user;
   if (deps.user?.keyStorageType === "passkey" && !deps.provider) {
     try {
@@ -18679,7 +18789,9 @@ async function sendCalls(args) {
         currentUser = refreshedUser;
       }
     } catch (error) {
-      console.error("[sendCalls] Failed to refresh session:", error);
+      console.error(
+        `[sendCalls] Failed to refresh session: ${error instanceof Error ? error.message : String(error)}`
+      );
       throw new Error(
         `Failed to refresh session before transaction. ${error instanceof Error ? error.message : "Unknown error"}. Please try logging in again.`
       );
@@ -18699,7 +18811,9 @@ async function sendCalls(args) {
       calls: normalizedCalls
     });
   } catch (err) {
-    console.error("[sendCalls] First precheck failed:", err);
+    console.error(
+      `[sendCalls] First precheck failed: ${err instanceof Error ? err.message : String(err)}`
+    );
     throw err instanceof Error ? err : new Error(String(err));
   }
   if (precheckQuote.simulationSuccess === false && precheckQuote.simulationErrors?.length) {
@@ -19289,7 +19403,9 @@ function useVolrAuthCallback(options = {}) {
         setIsLoading(false);
         options.onSuccess?.(volrUser);
       } catch (err) {
-        console.error("[useVolrAuthCallback] Token exchange error:", err);
+        console.error(
+          `[useVolrAuthCallback] Token exchange error: ${err instanceof Error ? err.message : String(err)}`
+        );
         let errorMsg = "Failed to complete authentication";
         if (err instanceof Error) {
           if (err.message.includes("AUTH_CODE_EXPIRED")) {
@@ -19393,7 +19509,9 @@ function useDepositListener(input) {
         if (cancelled) return;
         setStatus({ state: "listening", balance: initial });
       } catch (e) {
-        console.error("[DepositListener] Error:", e);
+        console.error(
+          `[DepositListener] Error: ${e instanceof Error ? e.message : String(e)}`
+        );
         if (cancelled) return;
         setStatus({ state: "error", message: e.message || String(e) });
         return;
@@ -19429,7 +19547,9 @@ function useDepositListener(input) {
             return prev;
           });
         } catch (err) {
-          console.error("[DepositListener] Polling error:", err);
+          console.error(
+            `[DepositListener] Polling error: ${err instanceof Error ? err.message : String(err)}`
+          );
           if (cancelled) return;
           setStatus({ state: "error", message: err.message || String(err) });
         }
@@ -20062,7 +20182,9 @@ function useUserBalances() {
       });
       setBalances(initialBalances);
     }).catch((err) => {
-      console.error("[useUserBalances] Failed to fetch branding:", err);
+      console.error(
+        `[useUserBalances] Failed to fetch branding: ${err instanceof Error ? err.message : String(err)}`
+      );
       setError(err instanceof Error ? err : new Error("Failed to fetch branding"));
     }).finally(() => {
       setIsLoadingBranding(false);
@@ -20103,7 +20225,9 @@ function useUserBalances() {
           error: void 0
         };
       } catch (err) {
-        console.error(`[useUserBalances] Failed to fetch balance for ${id}:`, err);
+        console.error(
+          `[useUserBalances] Failed to fetch balance for ${id}: ${err instanceof Error ? err.message : String(err)}`
+        );
         return {
           id,
           balanceRaw: 0n,
@@ -21126,6 +21250,6 @@ function detectWalletConnector(provider, providerInfo) {
   (*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) *)
 */
-export { DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, PasskeyNotFoundError, PrfNotSupportedError, UserCancelledError, VolrProvider, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfCompatibility, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, completeMigration, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, decryptEntropyForMigration, defaultIdempotencyKey, detectWalletConnector, diagnoseTransactionFailure, getBrowserVersion, getERC20Balance, getIOSVersion, getPasskeyAuthGuidance, getPlatformHint, getUserCredentials, getWalletState, isEIP7702Delegated, isInAppBrowser, isUserCancelledError, listenForSeedRequests, normalizeHex, normalizeHexArray, openMigrationPopup, requestMigration, requestSeedFromOpener, sendSeedToPopup, uploadBlobViaPresign, useDepositListener, useEIP6963, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useUserBalances, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin, useVolrPaymentApi, useWithdraw };
+export { DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, PasskeyNotFoundError, PrfNotSupportedError, UserCancelledError, VolrProvider, WebAuthnBusyError, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfCompatibility, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, completeMigration, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, decryptEntropyForMigration, defaultIdempotencyKey, detectWalletConnector, diagnoseTransactionFailure, getBrowserVersion, getERC20Balance, getIOSVersion, getPasskeyAuthGuidance, getPlatformHint, getUserCredentials, getWalletState, isEIP7702Delegated, isInAppBrowser, isUserCancelledError, isWebAuthnBusyError, listenForSeedRequests, normalizeHex, normalizeHexArray, openMigrationPopup, requestMigration, requestSeedFromOpener, sendSeedToPopup, uploadBlobViaPresign, useDepositListener, useEIP6963, useInternalAuth, useMpcConnection, usePasskeyEnrollment, usePrecheck, useRelay, useUserBalances, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin, useVolrPaymentApi, useWithdraw };
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map