@volr/react 0.1.89 → 0.1.91

package/dist/index.d.cts

@@ -96,9 +96,11 @@ declare class APIClient {
 /**
  * PRF Input DTO
  * Input parameters for WebAuthn PRF extension
+ *
+ * Note: origin is NOT included for cross-domain wallet support.
+ * WebAuthn's rpId binding provides domain security.
  */
 interface PrfInputDto {
-    origin: string;
     projectId: string;
     credentialId: string;
     salt?: Uint8Array;
@@ -999,4 +1001,140 @@ declare function getPasskeyAuthGuidance(passkeyPlatform?: string | null): string
  */
 declare function checkPrfExtensionAvailable(): Promise<boolean>;
 
-export { type ApiResponse, type AuthRefreshResponseDto, type AuthResult, type BuildCallOptions, type ContractAnalysisResult, DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, type DepositAsset$1 as DepositAsset, type DepositConfig, type ERC20BalanceComparison, type Erc20Token$1 as Erc20Token, type EvmClient, type KeyStorageType, type MpcConnectionStep, type NetworkDto, type NetworkInfo, type PasskeyAdapterOptions, type PasskeyEnrollmentStep, PasskeyNotFoundError, type PlatformCheckResult, type PrfInputDto, PrfNotSupportedError, type SendBatchOverloads, type SendTxOptions, type SignerType, type SiweSession, type SiweSessionStatus, type SocialProvider, type TransactionDto, type TransactionStatus, type UseMpcConnectionReturn, type UsePasskeyEnrollmentReturn, type UseVolrAuthCallbackOptions, type UseVolrAuthCallbackReturn, type UseVolrLoginReturn, UserCancelledError, type UserDto, type VolrClient, type VolrConfig, type VolrContextValue, VolrProvider, type VolrUser, type WalletStateComparison, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, defaultIdempotencyKey, diagnoseTransactionFailure, getERC20Balance, getPasskeyAuthGuidance, getWalletState, isEIP7702Delegated, isUserCancelledError, normalizeHex, normalizeHexArray, uploadBlobViaPresign, useDepositListener, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin };
+/**
+ * Passkey migration (headless)
+ * Cross-domain wallet migration using postMessage
+ */
+
+interface MigrationRequestParams {
+    /** APIClient instance */
+    client: APIClient;
+    /** Target domain to migrate to */
+    targetOrigin: string;
+}
+interface MigrationRequestResult {
+    /** Migration token from backend */
+    migrationToken: string;
+    /** Target origin confirmed by backend */
+    targetOrigin: string;
+    /** Token expiration timestamp */
+    expiresAt: number;
+}
+interface MigrationCompleteParams {
+    /** APIClient instance */
+    client: APIClient;
+    /** Base URL for API calls */
+    baseUrl: string;
+    /** Project API key */
+    apiKey: string;
+    /** User ID */
+    userId: string;
+    /** Project ID */
+    projectId: string;
+    /** Migration token from source domain */
+    migrationToken: string;
+    /** Master seed from source domain (decrypted) */
+    masterSeed: Uint8Array;
+    /**
+     * WebAuthn rpId for this domain
+     * @default window.location.hostname
+     */
+    rpId?: string;
+    /** Relying Party Name */
+    rpName?: string;
+    /** User email (for WebAuthn displayName) */
+    userEmail?: string | null;
+}
+interface MigrationCompleteResult {
+    /** New credential ID */
+    credentialId: string;
+    /** New blob URL */
+    blobUrl: string;
+    /** rpId used for registration */
+    rpId: string;
+}
+interface MigrationSeedRequest {
+    type: 'VOLR_MIGRATION_SEED_REQUEST';
+    migrationToken: string;
+}
+interface MigrationSeedResponse {
+    type: 'VOLR_MIGRATION_SEED_RESPONSE';
+    masterSeed: number[];
+    userId: string;
+    projectId: string;
+}
+interface MigrationError {
+    type: 'VOLR_MIGRATION_ERROR';
+    code: string;
+    message: string;
+}
+type MigrationMessage = MigrationSeedRequest | MigrationSeedResponse | MigrationError;
+/**
+ * Request migration token from backend
+ * Called on the source domain to initiate migration
+ */
+declare function requestMigration(params: MigrationRequestParams): Promise<MigrationRequestResult>;
+/**
+ * Open target domain popup for migration
+ * Called on the source domain after getting migration token
+ *
+ * @param targetOrigin - Target domain URL
+ * @param migrationToken - Token from requestMigration
+ * @param migrationPath - Path on target domain for migration (default: /wallet/migrate)
+ * @returns Window reference to the popup
+ */
+declare function openMigrationPopup(targetOrigin: string, migrationToken: string, migrationPath?: string): Window | null;
+/**
+ * Handle seed request from target domain
+ * Called on source domain when popup requests the master seed
+ *
+ * @param masterSeed - Decrypted master seed
+ * @param userId - User ID
+ * @param projectId - Project ID
+ * @param targetOrigin - Target origin (for postMessage security)
+ * @param popup - Reference to the popup window
+ */
+declare function sendSeedToPopup(masterSeed: Uint8Array, userId: string, projectId: string, targetOrigin: string, popup: Window): void;
+/**
+ * Listen for seed requests from target domain
+ * Set up message listener on source domain
+ *
+ * @param allowedOrigins - List of allowed target origins
+ * @param getMasterSeed - Callback to get decrypted master seed (may trigger WebAuthn)
+ * @param getUserInfo - Callback to get user info
+ * @returns Cleanup function to remove listener
+ */
+declare function listenForSeedRequests(allowedOrigins: string[], getMasterSeed: () => Promise<Uint8Array>, getUserInfo: () => {
+    userId: string;
+    projectId: string;
+}): () => void;
+/**
+ * Request master seed from source domain
+ * Called on target domain (in popup)
+ *
+ * @param sourceOrigin - Source domain origin
+ * @param migrationToken - Migration token
+ * @param timeout - Timeout in milliseconds (default: 60000)
+ * @returns Master seed and user info from source domain
+ */
+declare function requestSeedFromOpener(sourceOrigin: string, migrationToken: string, timeout?: number): Promise<{
+    masterSeed: Uint8Array;
+    userId: string;
+    projectId: string;
+}>;
+/**
+ * Complete migration on target domain
+ * Creates new passkey, encrypts master seed, and registers with backend
+ */
+declare function completeMigration(params: MigrationCompleteParams): Promise<MigrationCompleteResult>;
+/**
+ * Get all user credentials from backend
+ */
+declare function getUserCredentials(client: APIClient): Promise<Array<{
+    rpId: string;
+    credentialId: string;
+    platform: string | null;
+    createdAt: string;
+}>>;
+
+export { type ApiResponse, type AuthRefreshResponseDto, type AuthResult, type BuildCallOptions, type ContractAnalysisResult, DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, type DepositAsset$1 as DepositAsset, type DepositConfig, type ERC20BalanceComparison, type Erc20Token$1 as Erc20Token, type EvmClient, type KeyStorageType, type MigrationCompleteParams, type MigrationCompleteResult, type MigrationError, type MigrationMessage, type MigrationRequestParams, type MigrationRequestResult, type MigrationSeedRequest, type MigrationSeedResponse, type MpcConnectionStep, type NetworkDto, type NetworkInfo, type PasskeyAdapterOptions, type PasskeyEnrollmentStep, PasskeyNotFoundError, type PlatformCheckResult, type PrfInputDto, PrfNotSupportedError, type SendBatchOverloads, type SendTxOptions, type SignerType, type SiweSession, type SiweSessionStatus, type SocialProvider, type TransactionDto, type TransactionStatus, type UseMpcConnectionReturn, type UsePasskeyEnrollmentReturn, type UseVolrAuthCallbackOptions, type UseVolrAuthCallbackReturn, type UseVolrLoginReturn, UserCancelledError, type UserDto, type VolrClient, type VolrConfig, type VolrContextValue, VolrProvider, type VolrUser, type WalletStateComparison, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, completeMigration, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, defaultIdempotencyKey, diagnoseTransactionFailure, getERC20Balance, getPasskeyAuthGuidance, getUserCredentials, getWalletState, isEIP7702Delegated, isUserCancelledError, listenForSeedRequests, normalizeHex, normalizeHexArray, openMigrationPopup, requestMigration, requestSeedFromOpener, sendSeedToPopup, uploadBlobViaPresign, useDepositListener, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin };

package/dist/index.d.ts

@@ -96,9 +96,11 @@ declare class APIClient {
 /**
  * PRF Input DTO
  * Input parameters for WebAuthn PRF extension
+ *
+ * Note: origin is NOT included for cross-domain wallet support.
+ * WebAuthn's rpId binding provides domain security.
  */
 interface PrfInputDto {
-    origin: string;
     projectId: string;
     credentialId: string;
     salt?: Uint8Array;
@@ -999,4 +1001,140 @@ declare function getPasskeyAuthGuidance(passkeyPlatform?: string | null): string
  */
 declare function checkPrfExtensionAvailable(): Promise<boolean>;
 
-export { type ApiResponse, type AuthRefreshResponseDto, type AuthResult, type BuildCallOptions, type ContractAnalysisResult, DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, type DepositAsset$1 as DepositAsset, type DepositConfig, type ERC20BalanceComparison, type Erc20Token$1 as Erc20Token, type EvmClient, type KeyStorageType, type MpcConnectionStep, type NetworkDto, type NetworkInfo, type PasskeyAdapterOptions, type PasskeyEnrollmentStep, PasskeyNotFoundError, type PlatformCheckResult, type PrfInputDto, PrfNotSupportedError, type SendBatchOverloads, type SendTxOptions, type SignerType, type SiweSession, type SiweSessionStatus, type SocialProvider, type TransactionDto, type TransactionStatus, type UseMpcConnectionReturn, type UsePasskeyEnrollmentReturn, type UseVolrAuthCallbackOptions, type UseVolrAuthCallbackReturn, type UseVolrLoginReturn, UserCancelledError, type UserDto, type VolrClient, type VolrConfig, type VolrContextValue, VolrProvider, type VolrUser, type WalletStateComparison, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, defaultIdempotencyKey, diagnoseTransactionFailure, getERC20Balance, getPasskeyAuthGuidance, getWalletState, isEIP7702Delegated, isUserCancelledError, normalizeHex, normalizeHexArray, uploadBlobViaPresign, useDepositListener, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin };
+/**
+ * Passkey migration (headless)
+ * Cross-domain wallet migration using postMessage
+ */
+
+interface MigrationRequestParams {
+    /** APIClient instance */
+    client: APIClient;
+    /** Target domain to migrate to */
+    targetOrigin: string;
+}
+interface MigrationRequestResult {
+    /** Migration token from backend */
+    migrationToken: string;
+    /** Target origin confirmed by backend */
+    targetOrigin: string;
+    /** Token expiration timestamp */
+    expiresAt: number;
+}
+interface MigrationCompleteParams {
+    /** APIClient instance */
+    client: APIClient;
+    /** Base URL for API calls */
+    baseUrl: string;
+    /** Project API key */
+    apiKey: string;
+    /** User ID */
+    userId: string;
+    /** Project ID */
+    projectId: string;
+    /** Migration token from source domain */
+    migrationToken: string;
+    /** Master seed from source domain (decrypted) */
+    masterSeed: Uint8Array;
+    /**
+     * WebAuthn rpId for this domain
+     * @default window.location.hostname
+     */
+    rpId?: string;
+    /** Relying Party Name */
+    rpName?: string;
+    /** User email (for WebAuthn displayName) */
+    userEmail?: string | null;
+}
+interface MigrationCompleteResult {
+    /** New credential ID */
+    credentialId: string;
+    /** New blob URL */
+    blobUrl: string;
+    /** rpId used for registration */
+    rpId: string;
+}
+interface MigrationSeedRequest {
+    type: 'VOLR_MIGRATION_SEED_REQUEST';
+    migrationToken: string;
+}
+interface MigrationSeedResponse {
+    type: 'VOLR_MIGRATION_SEED_RESPONSE';
+    masterSeed: number[];
+    userId: string;
+    projectId: string;
+}
+interface MigrationError {
+    type: 'VOLR_MIGRATION_ERROR';
+    code: string;
+    message: string;
+}
+type MigrationMessage = MigrationSeedRequest | MigrationSeedResponse | MigrationError;
+/**
+ * Request migration token from backend
+ * Called on the source domain to initiate migration
+ */
+declare function requestMigration(params: MigrationRequestParams): Promise<MigrationRequestResult>;
+/**
+ * Open target domain popup for migration
+ * Called on the source domain after getting migration token
+ *
+ * @param targetOrigin - Target domain URL
+ * @param migrationToken - Token from requestMigration
+ * @param migrationPath - Path on target domain for migration (default: /wallet/migrate)
+ * @returns Window reference to the popup
+ */
+declare function openMigrationPopup(targetOrigin: string, migrationToken: string, migrationPath?: string): Window | null;
+/**
+ * Handle seed request from target domain
+ * Called on source domain when popup requests the master seed
+ *
+ * @param masterSeed - Decrypted master seed
+ * @param userId - User ID
+ * @param projectId - Project ID
+ * @param targetOrigin - Target origin (for postMessage security)
+ * @param popup - Reference to the popup window
+ */
+declare function sendSeedToPopup(masterSeed: Uint8Array, userId: string, projectId: string, targetOrigin: string, popup: Window): void;
+/**
+ * Listen for seed requests from target domain
+ * Set up message listener on source domain
+ *
+ * @param allowedOrigins - List of allowed target origins
+ * @param getMasterSeed - Callback to get decrypted master seed (may trigger WebAuthn)
+ * @param getUserInfo - Callback to get user info
+ * @returns Cleanup function to remove listener
+ */
+declare function listenForSeedRequests(allowedOrigins: string[], getMasterSeed: () => Promise<Uint8Array>, getUserInfo: () => {
+    userId: string;
+    projectId: string;
+}): () => void;
+/**
+ * Request master seed from source domain
+ * Called on target domain (in popup)
+ *
+ * @param sourceOrigin - Source domain origin
+ * @param migrationToken - Migration token
+ * @param timeout - Timeout in milliseconds (default: 60000)
+ * @returns Master seed and user info from source domain
+ */
+declare function requestSeedFromOpener(sourceOrigin: string, migrationToken: string, timeout?: number): Promise<{
+    masterSeed: Uint8Array;
+    userId: string;
+    projectId: string;
+}>;
+/**
+ * Complete migration on target domain
+ * Creates new passkey, encrypts master seed, and registers with backend
+ */
+declare function completeMigration(params: MigrationCompleteParams): Promise<MigrationCompleteResult>;
+/**
+ * Get all user credentials from backend
+ */
+declare function getUserCredentials(client: APIClient): Promise<Array<{
+    rpId: string;
+    credentialId: string;
+    platform: string | null;
+    createdAt: string;
+}>>;
+
+export { type ApiResponse, type AuthRefreshResponseDto, type AuthResult, type BuildCallOptions, type ContractAnalysisResult, DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, type DepositAsset$1 as DepositAsset, type DepositConfig, type ERC20BalanceComparison, type Erc20Token$1 as Erc20Token, type EvmClient, type KeyStorageType, type MigrationCompleteParams, type MigrationCompleteResult, type MigrationError, type MigrationMessage, type MigrationRequestParams, type MigrationRequestResult, type MigrationSeedRequest, type MigrationSeedResponse, type MpcConnectionStep, type NetworkDto, type NetworkInfo, type PasskeyAdapterOptions, type PasskeyEnrollmentStep, PasskeyNotFoundError, type PlatformCheckResult, type PrfInputDto, PrfNotSupportedError, type SendBatchOverloads, type SendTxOptions, type SignerType, type SiweSession, type SiweSessionStatus, type SocialProvider, type TransactionDto, type TransactionStatus, type UseMpcConnectionReturn, type UsePasskeyEnrollmentReturn, type UseVolrAuthCallbackOptions, type UseVolrAuthCallbackReturn, type UseVolrLoginReturn, UserCancelledError, type UserDto, type VolrClient, type VolrConfig, type VolrContextValue, VolrProvider, type VolrUser, type WalletStateComparison, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, completeMigration, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, defaultIdempotencyKey, diagnoseTransactionFailure, getERC20Balance, getPasskeyAuthGuidance, getUserCredentials, getWalletState, isEIP7702Delegated, isUserCancelledError, listenForSeedRequests, normalizeHex, normalizeHexArray, openMigrationPopup, requestMigration, requestSeedFromOpener, sendSeedToPopup, uploadBlobViaPresign, useDepositListener, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin };

package/dist/index.js

@@ -1,6 +1,6 @@
 import * as nc from 'crypto';
 import { createContext, useRef, useEffect, useMemo, useState, useCallback, useContext } from 'react';
-import { createPasskeyProvider, createMpcProvider, signSession, getAuthNonce, signAuthorization, deriveWrapKey, createMasterKeyProvider, sealMasterSeed, uploadBlob, deriveEvmKey, ZERO_HASH, selectSigner, VolrError } from '@volr/sdk-core';
+import { createPasskeyProvider, createMpcProvider, deriveWrapKey, sealMasterSeed, uploadBlob, signSession, getAuthNonce, signAuthorization, createMasterKeyProvider, deriveEvmKey, ZERO_HASH, selectSigner, VolrError } from '@volr/sdk-core';
 export { createMasterKeyProvider, createMpcProvider, createPasskeyProvider, deriveEvmKey, deriveWrapKey, sealMasterSeed, uploadBlob } from '@volr/sdk-core';
 import axios from 'axios';
 import { jsx } from 'react/jsx-runtime';
@@ -9757,7 +9757,9 @@ async function restorePasskey(params) {
     userId,
     blobUrl,
     prfInput,
-    credentialId: providedCredentialId
+    credentialId: providedCredentialId,
+    rpId = typeof window !== "undefined" ? window.location.hostname : "localhost",
+    rpName = "Volr"
   } = params;
   const credentialId = providedCredentialId || prfInput.credentialId || safeStorage.getItem(STORAGE_KEYS.credentialId);
   if (!credentialId) {
@@ -9786,7 +9788,7 @@ async function restorePasskey(params) {
     `volr/master-seed/v1|${userId}|${keyStorageType}|${version5}`
   );
   const passkeyAdapter = createPasskeyAdapter({
-    rpId: typeof window !== "undefined" ? window.location.hostname : "localhost"});
+    rpId});
   const provider = createPasskeyProvider(passkeyAdapter, {
     prfInput: {
       ...prfInput,
@@ -19179,9 +19181,7 @@ async function enrollPasskey(params) {
   crypto.getRandomValues(challenge2);
   const userHandle = new TextEncoder().encode(userId);
   const tempCredentialId = "temp-" + Date.now();
-  const origin = typeof window !== "undefined" ? window.location.origin : "https://localhost";
   const tempPrfInput = {
-    origin,
     projectId,
     credentialId: tempCredentialId
   };
@@ -19224,7 +19224,6 @@ async function enrollPasskey(params) {
   const prfOutputBuffer = extensionResults.prf.results.first;
   const prfOutput = new Uint8Array(prfOutputBuffer);
   const prfInput = {
-    origin,
     projectId,
     credentialId
   };
@@ -19260,7 +19259,6 @@ async function enrollPasskey(params) {
       apiKey,
       accessToken,
       blob
-      // Don't pass axiosInstance - let uploadBlob create its own
     });
     if (!blobUrl) {
       throw new Error("Failed to upload blob: missing key");
@@ -19273,7 +19271,6 @@ async function enrollPasskey(params) {
       credentialId,
       blobUrl,
       prfInput: {
-        origin,
         projectId,
         credentialId
       },
@@ -19947,6 +19944,232 @@ async function checkPrfExtensionAvailable() {
   const { prfSupported } = checkPrfSupport();
   return prfSupported;
 }
+async function requestMigration(params) {
+  const { client, targetOrigin } = params;
+  const response = await client.post("/wallet/migration/request", { targetOrigin });
+  return {
+    migrationToken: response.migrationToken,
+    targetOrigin: response.targetOrigin,
+    expiresAt: response.expiresAt
+  };
+}
+function openMigrationPopup(targetOrigin, migrationToken, migrationPath = "/wallet/migrate") {
+  const url = new URL(migrationPath, targetOrigin);
+  url.searchParams.set("migration_token", migrationToken);
+  const width = 500;
+  const height = 600;
+  const left = window.screenX + (window.outerWidth - width) / 2;
+  const top = window.screenY + (window.outerHeight - height) / 2;
+  return window.open(
+    url.toString(),
+    "volr_migration",
+    `width=${width},height=${height},left=${left},top=${top},popup=1`
+  );
+}
+function sendSeedToPopup(masterSeed, userId, projectId, targetOrigin, popup) {
+  const response = {
+    type: "VOLR_MIGRATION_SEED_RESPONSE",
+    masterSeed: Array.from(masterSeed),
+    userId,
+    projectId
+  };
+  popup.postMessage(response, targetOrigin);
+}
+function listenForSeedRequests(allowedOrigins, getMasterSeed, getUserInfo) {
+  const handleMessage = async (event) => {
+    if (!allowedOrigins.includes(event.origin)) {
+      return;
+    }
+    const data = event.data;
+    if (data?.type !== "VOLR_MIGRATION_SEED_REQUEST") {
+      return;
+    }
+    try {
+      const masterSeed = await getMasterSeed();
+      const { userId, projectId } = getUserInfo();
+      const response = {
+        type: "VOLR_MIGRATION_SEED_RESPONSE",
+        masterSeed: Array.from(masterSeed),
+        userId,
+        projectId
+      };
+      event.source?.postMessage(response, { targetOrigin: event.origin });
+    } catch (error) {
+      const errorResponse = {
+        type: "VOLR_MIGRATION_ERROR",
+        code: "SEED_RETRIEVAL_FAILED",
+        message: error instanceof Error ? error.message : "Failed to retrieve master seed"
+      };
+      event.source?.postMessage(errorResponse, { targetOrigin: event.origin });
+    }
+  };
+  window.addEventListener("message", handleMessage);
+  return () => {
+    window.removeEventListener("message", handleMessage);
+  };
+}
+function requestSeedFromOpener(sourceOrigin, migrationToken, timeout = 6e4) {
+  return new Promise((resolve, reject) => {
+    if (!window.opener) {
+      reject(new Error("No opener window found. This page must be opened as a popup."));
+      return;
+    }
+    const timeoutId = setTimeout(() => {
+      window.removeEventListener("message", handleMessage);
+      reject(new Error("Seed request timed out"));
+    }, timeout);
+    const handleMessage = (event) => {
+      if (event.origin !== sourceOrigin) {
+        return;
+      }
+      const data = event.data;
+      if (data?.type === "VOLR_MIGRATION_SEED_RESPONSE") {
+        clearTimeout(timeoutId);
+        window.removeEventListener("message", handleMessage);
+        resolve({
+          masterSeed: new Uint8Array(data.masterSeed),
+          userId: data.userId,
+          projectId: data.projectId
+        });
+      } else if (data?.type === "VOLR_MIGRATION_ERROR") {
+        clearTimeout(timeoutId);
+        window.removeEventListener("message", handleMessage);
+        reject(new Error(`${data.code}: ${data.message}`));
+      }
+    };
+    window.addEventListener("message", handleMessage);
+    const request = {
+      type: "VOLR_MIGRATION_SEED_REQUEST",
+      migrationToken
+    };
+    window.opener.postMessage(request, sourceOrigin);
+  });
+}
+function detectPlatform3() {
+  if (typeof navigator === "undefined") return "Unknown";
+  const ua = navigator.userAgent;
+  const platform = navigator.platform || "";
+  if (/iPhone|iPad|iPod/.test(ua) || platform === "MacIntel" && navigator.maxTouchPoints > 1) {
+    return "iOS";
+  }
+  if (/Android/.test(ua)) return "Android";
+  if (/Mac/.test(platform)) return "macOS";
+  if (/Win/.test(platform)) return "Windows";
+  if (/CrOS/.test(ua)) return "ChromeOS";
+  if (/Linux/.test(platform)) return "Linux";
+  return "Unknown";
+}
+async function completeMigration(params) {
+  const {
+    client,
+    baseUrl,
+    apiKey,
+    userId,
+    projectId,
+    migrationToken,
+    masterSeed,
+    rpId = typeof window !== "undefined" ? window.location.hostname : "localhost",
+    rpName = "Volr",
+    userEmail
+  } = params;
+  if (!navigator.credentials || !navigator.credentials.create) {
+    throw new Error("WebAuthn API is not supported");
+  }
+  const challenge2 = new Uint8Array(32);
+  crypto.getRandomValues(challenge2);
+  const userHandle = new TextEncoder().encode(userId);
+  const displayName = userEmail || `Volr Wallet (${userId.substring(0, 8)}...)`;
+  const tempCredentialId = "temp-" + Date.now();
+  const tempPrfInput = {
+    projectId,
+    credentialId: tempCredentialId
+  };
+  const prfSalt = deriveWrapKey(tempPrfInput);
+  const publicKeyCredentialCreationOptions = {
+    challenge: challenge2,
+    rp: {
+      name: rpName,
+      id: rpId
+    },
+    user: {
+      id: userHandle,
+      name: displayName,
+      displayName
+    },
+    pubKeyCredParams: PUBKEY_CRED_PARAMS,
+    authenticatorSelection: AUTHENTICATOR_SELECTION,
+    timeout: WEBAUTHN_TIMEOUT,
+    attestation: ATTESTATION,
+    extensions: {
+      prf: {
+        eval: {
+          first: prfSalt.buffer
+        }
+      }
+    }
+  };
+  const credential = await navigator.credentials.create({
+    publicKey: publicKeyCredentialCreationOptions
+  });
+  if (!credential || !("response" in credential)) {
+    throw new Error("Failed to create passkey credential");
+  }
+  const credentialId = Array.from(new Uint8Array(credential.rawId)).map((b) => b.toString(16).padStart(2, "0")).join("");
+  const extensionResults = credential.getClientExtensionResults();
+  if (!extensionResults.prf?.results?.first) {
+    throw new Error("PRF extension not supported or PRF output missing");
+  }
+  const prfOutputBuffer = extensionResults.prf.results.first;
+  const prfOutput = new Uint8Array(prfOutputBuffer);
+  const wrapKey = prfOutput;
+  const keyStorageType = "passkey";
+  const version5 = "v1";
+  const aadBytes = new TextEncoder().encode(
+    `volr/master-seed/v1|${userId}|${keyStorageType}|${version5}`
+  );
+  const encryptedBlob = await sealMasterSeed(masterSeed, wrapKey, aadBytes);
+  const blob = new Blob(
+    [
+      encryptedBlob.cipher,
+      encryptedBlob.nonce
+    ],
+    { type: "application/octet-stream" }
+  );
+  const accessToken = client.getAccessToken();
+  if (!accessToken) {
+    throw new Error("Access token is required");
+  }
+  const { key: blobUrl } = await uploadBlob({
+    baseUrl,
+    apiKey,
+    accessToken,
+    blob
+  });
+  if (!blobUrl) {
+    throw new Error("Failed to upload blob");
+  }
+  const platform = detectPlatform3();
+  await client.post("/wallet/migration/complete", {
+    migrationToken,
+    credentialId,
+    blobUrl,
+    prfInput: {
+      projectId,
+      credentialId
+    },
+    rpId,
+    platform
+  });
+  return {
+    credentialId,
+    blobUrl,
+    rpId
+  };
+}
+async function getUserCredentials(client) {
+  const response = await client.get("/wallet/credentials");
+  return response.credentials;
+}
 /*! Bundled license information:
 
 @noble/hashes/esm/utils.js:
@@ -19961,6 +20184,6 @@ async function checkPrfExtensionAvailable() {
   (*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) *)
 */
 
-export { DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, PasskeyNotFoundError, PrfNotSupportedError, UserCancelledError, VolrProvider, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, defaultIdempotencyKey, diagnoseTransactionFailure, getERC20Balance, getPasskeyAuthGuidance, getWalletState, isEIP7702Delegated, isUserCancelledError, normalizeHex, normalizeHexArray, uploadBlobViaPresign, useDepositListener, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin };
+export { DEFAULT_EXPIRES_IN_SEC, DEFAULT_MODE, PasskeyNotFoundError, PrfNotSupportedError, UserCancelledError, VolrProvider, analyzeContractForEIP7702, buildCall, buildCalls, checkPrfExtensionAvailable, checkPrfSupport, compareERC20Balances, compareWalletStates, completeMigration, createGetNetworkInfo, createPasskeyAdapter, debugTransactionFailure, defaultIdempotencyKey, diagnoseTransactionFailure, getERC20Balance, getPasskeyAuthGuidance, getUserCredentials, getWalletState, isEIP7702Delegated, isUserCancelledError, listenForSeedRequests, normalizeHex, normalizeHexArray, openMigrationPopup, requestMigration, requestSeedFromOpener, sendSeedToPopup, uploadBlobViaPresign, useDepositListener, useInternalAuth, useMpcConnection, usePasskeyEnrollment, useVolr, useVolrAuthCallback, useVolrContext, useVolrLogin };
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map