@waiaas/wallet-sdk 2.4.0-rc.3

package/README.md

@@ -0,0 +1,215 @@
+# @waiaas/wallet-sdk
+
+SDK for external wallet apps to integrate with the WAIaaS Signing Protocol. Enables wallet applications (D'CENT, Phantom, MetaMask, etc.) to receive, display, and respond to transaction approval requests from WAIaaS daemon.
+
+## Installation
+
+```bash
+npm install @waiaas/wallet-sdk
+```
+
+## Quick Start
+
+```typescript
+import {
+  subscribeToRequests,
+  parseSignRequest,
+  buildSignResponse,
+  formatDisplayMessage,
+  sendViaNtfy,
+} from '@waiaas/wallet-sdk';
+
+// Subscribe to incoming sign requests via ntfy SSE
+const sub = subscribeToRequests('my-topic', async (request) => {
+  // Display to user
+  console.log(formatDisplayMessage(request));
+
+  // Sign the transaction (your wallet's signing logic)
+  const signature = await myWallet.sign(request.message);
+
+  // Build and send response
+  const response = buildSignResponse(
+    request.requestId,
+    'approve',
+    signature,
+    myWallet.address,
+  );
+
+  if (request.responseChannel.type === 'ntfy') {
+    await sendViaNtfy(
+      response,
+      request.responseChannel.responseTopic,
+      request.responseChannel.serverUrl,
+    );
+  }
+});
+
+// Stop listening
+sub.unsubscribe();
+```
+
+## API Reference
+
+### Core Functions
+
+#### `parseSignRequest(url: string): SignRequest | Promise<SignRequest>`
+
+Extract a SignRequest from a universal link URL.
+
+| Parameter | Type | Description |
+|-----------|------|-------------|
+| `url` | `string` | Universal link URL with query parameters |
+
+**Supported URL modes:**
+
+- **Inline:** `?data={base64url-encoded-SignRequest}` -- synchronous, returns `SignRequest`
+- **Remote:** `?requestId={uuid}&topic={topic}&serverUrl={url}` -- asynchronous, fetches from ntfy
+
+```typescript
+// Inline mode (sync)
+const request = parseSignRequest('https://wallet.app/sign?data=eyJ...');
+
+// Remote mode (async)
+const request = await parseSignRequest(
+  'https://wallet.app/sign?requestId=550e8400-...&topic=my-topic'
+);
+```
+
+**Throws:** `InvalidSignRequestUrlError`, `SignRequestExpiredError`, `SignRequestValidationError`
+
+---
+
+#### `buildSignResponse(requestId, action, signature, signerAddress): SignResponse`
+
+Create a validated SignResponse.
+
+| Parameter | Type | Description |
+|-----------|------|-------------|
+| `requestId` | `string` | UUID from the original SignRequest |
+| `action` | `'approve' \| 'reject'` | User's decision |
+| `signature` | `string \| undefined` | Hex-encoded signature (required for `'approve'`) |
+| `signerAddress` | `string` | Wallet address of the signer |
+
+```typescript
+// Approve
+const response = buildSignResponse(requestId, 'approve', '0xabcd...', address);
+
+// Reject
+const response = buildSignResponse(requestId, 'reject', undefined, address);
+```
+
+---
+
+#### `formatDisplayMessage(request: SignRequest): string`
+
+Create a human-readable transaction summary for display to the user.
+
+```typescript
+const text = formatDisplayMessage(request);
+// Transaction Approval Request
+//
+// Type: TOKEN_TRANSFER
+// From: 0xAbcDef...
+// To: 0x123456...
+// Amount: 100 USDC
+// Network: ethereum
+// Policy: APPROVAL
+// Expires: 2026-02-20T10:30:00.000Z
+```
+
+### Channel Functions
+
+#### `sendViaNtfy(response, responseTopic, serverUrl?): Promise<void>`
+
+Publish a SignResponse to an ntfy topic.
+
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| `response` | `SignResponse` | | Validated response |
+| `responseTopic` | `string` | | ntfy topic for responses |
+| `serverUrl` | `string` | `'https://ntfy.sh'` | ntfy server URL |
+
+---
+
+#### `subscribeToRequests(topic, callback, serverUrl?): { unsubscribe: () => void }`
+
+Subscribe to incoming sign requests via ntfy SSE stream.
+
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| `topic` | `string` | | ntfy topic for requests |
+| `callback` | `(request: SignRequest) => void` | | Called for each valid request |
+| `serverUrl` | `string` | `'https://ntfy.sh'` | ntfy server URL |
+
+Auto-reconnects up to 3 times with 5-second delays. Expired requests are silently skipped.
+
+---
+
+#### `sendViaTelegram(response, botUsername): string`
+
+Generate a Telegram deeplink URL for sending a SignResponse.
+
+| Parameter | Type | Description |
+|-----------|------|-------------|
+| `response` | `SignResponse` | Validated response |
+| `botUsername` | `string` | Telegram bot username (without `@`) |
+
+Returns a `https://t.me/{botUsername}?text=...` URL.
+
+### Error Classes
+
+| Error | When Thrown |
+|-------|------------|
+| `InvalidSignRequestUrlError` | URL missing required parameters |
+| `SignRequestExpiredError` | Request has expired (`expiresAt < now`) |
+| `SignRequestValidationError` | Decoded data fails schema validation |
+
+### Types
+
+All types are re-exported from `@waiaas/core`:
+
+```typescript
+import type { SignRequest, SignResponse, WalletLinkConfig } from '@waiaas/wallet-sdk';
+```
+
+## Channels
+
+WAIaaS supports two response channels:
+
+### ntfy (Direct Push)
+
+No messenger required. Wallet app subscribes to an ntfy topic for requests and publishes responses to a separate topic.
+
+```
+WAIaaS Daemon → ntfy server → Wallet App → ntfy server → WAIaaS Daemon
+```
+
+### Telegram (Messenger Relay)
+
+Uses a Telegram bot as relay. Wallet app receives requests via Telegram and sends responses as deeplinks.
+
+```
+WAIaaS Daemon → Telegram Bot → User → Wallet App → Telegram Bot → WAIaaS Daemon
+```
+
+## Universal Link Format
+
+Wallet apps must handle URLs in this format:
+
+```
+https://{wallet-host}/sign?data={base64url-encoded-SignRequest}
+```
+
+Or remote fetch format:
+
+```
+https://{wallet-host}/sign?requestId={uuid}&topic={topic}&serverUrl={ntfy-server}
+```
+
+## Integration Guide
+
+For a complete integration walkthrough including architecture diagrams, security considerations, and testing guide, see the [Wallet SDK Integration Guide](https://github.com/minhoyooDEV/WAIaaS/blob/main/docs/wallet-sdk-integration.md).
+
+## License
+
+[MIT](../../LICENSE)

package/dist/build-response.d.ts

@@ -0,0 +1,18 @@
+/**
+ * buildSignResponse - Create a SignResponse object.
+ *
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.2
+ */
+import type { SignResponse } from '@waiaas/core';
+/**
+ * Build a validated SignResponse.
+ *
+ * @param requestId - UUID of the original SignRequest
+ * @param action - 'approve' or 'reject'
+ * @param signature - Hex-encoded signature (required for 'approve')
+ * @param signerAddress - Address of the signer
+ * @returns Validated SignResponse
+ * @throws Error if action is 'approve' but signature is missing
+ */
+export declare function buildSignResponse(requestId: string, action: 'approve' | 'reject', signature: string | undefined, signerAddress: string): SignResponse;
+//# sourceMappingURL=build-response.d.ts.map

package/dist/build-response.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"build-response.d.ts","sourceRoot":"","sources":["../src/build-response.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAGjD;;;;;;;;;GASG;AACH,wBAAgB,iBAAiB,CAC/B,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,SAAS,GAAG,QAAQ,EAC5B,SAAS,EAAE,MAAM,GAAG,SAAS,EAC7B,aAAa,EAAE,MAAM,GACpB,YAAY,CAed"}

package/dist/build-response.js

@@ -0,0 +1,31 @@
+/**
+ * buildSignResponse - Create a SignResponse object.
+ *
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.2
+ */
+import { SignResponseSchema } from '@waiaas/core';
+/**
+ * Build a validated SignResponse.
+ *
+ * @param requestId - UUID of the original SignRequest
+ * @param action - 'approve' or 'reject'
+ * @param signature - Hex-encoded signature (required for 'approve')
+ * @param signerAddress - Address of the signer
+ * @returns Validated SignResponse
+ * @throws Error if action is 'approve' but signature is missing
+ */
+export function buildSignResponse(requestId, action, signature, signerAddress) {
+    if (action === 'approve' && !signature) {
+        throw new Error('signature required for approve action');
+    }
+    const response = {
+        version: '1',
+        requestId,
+        action,
+        ...(signature !== undefined ? { signature } : {}),
+        signerAddress,
+        signedAt: new Date().toISOString(),
+    };
+    return SignResponseSchema.parse(response);
+}
+//# sourceMappingURL=build-response.js.map

package/dist/build-response.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"build-response.js","sourceRoot":"","sources":["../src/build-response.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAC;AAElD;;;;;;;;;GASG;AACH,MAAM,UAAU,iBAAiB,CAC/B,SAAiB,EACjB,MAA4B,EAC5B,SAA6B,EAC7B,aAAqB;IAErB,IAAI,MAAM,KAAK,SAAS,IAAI,CAAC,SAAS,EAAE,CAAC;QACvC,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,QAAQ,GAAG;QACf,OAAO,EAAE,GAAY;QACrB,SAAS;QACT,MAAM;QACN,GAAG,CAAC,SAAS,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACjD,aAAa;QACb,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACnC,CAAC;IAEF,OAAO,kBAAkB,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;AAC5C,CAAC"}

package/dist/channels/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Channel exports for @waiaas/wallet-sdk.
+ */
+export { sendViaNtfy, subscribeToRequests } from './ntfy.js';
+export { sendViaTelegram } from './telegram.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/channels/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/channels/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,mBAAmB,EAAE,MAAM,WAAW,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC"}

package/dist/channels/index.js

@@ -0,0 +1,6 @@
+/**
+ * Channel exports for @waiaas/wallet-sdk.
+ */
+export { sendViaNtfy, subscribeToRequests } from './ntfy.js';
+export { sendViaTelegram } from './telegram.js';
+//# sourceMappingURL=index.js.map

package/dist/channels/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/channels/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,mBAAmB,EAAE,MAAM,WAAW,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC"}

package/dist/channels/ntfy.d.ts

@@ -0,0 +1,35 @@
+/**
+ * ntfy channel functions for the WAIaaS Signing Protocol.
+ *
+ * sendViaNtfy - Publish a SignResponse to an ntfy response topic.
+ * subscribeToRequests - SSE subscription for incoming sign requests.
+ *
+ * @see internal/design/73-signing-protocol-v1.md Section 7.4
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.6
+ */
+import type { SignRequest, SignResponse } from '@waiaas/core';
+/**
+ * Publish a SignResponse to an ntfy response topic.
+ *
+ * Encodes the response as base64url and POSTs it to the ntfy server.
+ *
+ * @param response - Validated SignResponse object
+ * @param responseTopic - ntfy topic name for responses
+ * @param serverUrl - ntfy server URL (defaults to https://ntfy.sh)
+ */
+export declare function sendViaNtfy(response: SignResponse, responseTopic: string, serverUrl?: string): Promise<void>;
+/**
+ * Subscribe to sign requests via ntfy SSE stream.
+ *
+ * Listens for new messages on the specified ntfy topic and parses them
+ * as SignRequest objects. Valid, non-expired requests trigger the callback.
+ *
+ * @param topic - ntfy topic name for incoming sign requests
+ * @param callback - Function called for each valid SignRequest received
+ * @param serverUrl - ntfy server URL (defaults to https://ntfy.sh)
+ * @returns Object with unsubscribe() method to close the SSE connection
+ */
+export declare function subscribeToRequests(topic: string, callback: (request: SignRequest) => void, serverUrl?: string): {
+    unsubscribe: () => void;
+};
+//# sourceMappingURL=ntfy.d.ts.map

package/dist/channels/ntfy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ntfy.d.ts","sourceRoot":"","sources":["../../src/channels/ntfy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAO9D;;;;;;;;GAQG;AACH,wBAAsB,WAAW,CAC/B,QAAQ,EAAE,YAAY,EACtB,aAAa,EAAE,MAAM,EACrB,SAAS,GAAE,MAA2B,GACrC,OAAO,CAAC,IAAI,CAAC,CAef;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,mBAAmB,CACjC,KAAK,EAAE,MAAM,EACb,QAAQ,EAAE,CAAC,OAAO,EAAE,WAAW,KAAK,IAAI,EACxC,SAAS,GAAE,MAA2B,GACrC;IAAE,WAAW,EAAE,MAAM,IAAI,CAAA;CAAE,CAkF7B"}

package/dist/channels/ntfy.js

@@ -0,0 +1,117 @@
+/**
+ * ntfy channel functions for the WAIaaS Signing Protocol.
+ *
+ * sendViaNtfy - Publish a SignResponse to an ntfy response topic.
+ * subscribeToRequests - SSE subscription for incoming sign requests.
+ *
+ * @see internal/design/73-signing-protocol-v1.md Section 7.4
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.6
+ */
+import { SignRequestSchema } from '@waiaas/core';
+const DEFAULT_SERVER_URL = 'https://ntfy.sh';
+const MAX_RECONNECT_ATTEMPTS = 3;
+const RECONNECT_DELAY_MS = 5_000;
+/**
+ * Publish a SignResponse to an ntfy response topic.
+ *
+ * Encodes the response as base64url and POSTs it to the ntfy server.
+ *
+ * @param response - Validated SignResponse object
+ * @param responseTopic - ntfy topic name for responses
+ * @param serverUrl - ntfy server URL (defaults to https://ntfy.sh)
+ */
+export async function sendViaNtfy(response, responseTopic, serverUrl = DEFAULT_SERVER_URL) {
+    const json = JSON.stringify(response);
+    const encoded = Buffer.from(json, 'utf-8').toString('base64url');
+    const url = `${serverUrl}/${responseTopic}`;
+    const res = await fetch(url, {
+        method: 'POST',
+        body: encoded,
+    });
+    if (!res.ok) {
+        throw new Error(`Failed to send response to ntfy: HTTP ${String(res.status)}`);
+    }
+}
+/**
+ * Subscribe to sign requests via ntfy SSE stream.
+ *
+ * Listens for new messages on the specified ntfy topic and parses them
+ * as SignRequest objects. Valid, non-expired requests trigger the callback.
+ *
+ * @param topic - ntfy topic name for incoming sign requests
+ * @param callback - Function called for each valid SignRequest received
+ * @param serverUrl - ntfy server URL (defaults to https://ntfy.sh)
+ * @returns Object with unsubscribe() method to close the SSE connection
+ */
+export function subscribeToRequests(topic, callback, serverUrl = DEFAULT_SERVER_URL) {
+    const abortController = new AbortController();
+    let reconnectAttempts = 0;
+    async function connect() {
+        if (abortController.signal.aborted)
+            return;
+        try {
+            const url = `${serverUrl}/${topic}/sse`;
+            const res = await fetch(url, {
+                signal: abortController.signal,
+            });
+            if (!res.ok || !res.body) {
+                throw new Error(`SSE connection failed: HTTP ${String(res.status)}`);
+            }
+            // Reset reconnect counter on successful connection
+            reconnectAttempts = 0;
+            const reader = res.body.getReader();
+            const decoder = new TextDecoder();
+            let buffer = '';
+            while (!abortController.signal.aborted) {
+                const { done, value } = await reader.read();
+                if (done)
+                    break;
+                buffer += decoder.decode(value, { stream: true });
+                const lines = buffer.split('\n');
+                // Keep the last incomplete line in buffer
+                buffer = lines.pop() ?? '';
+                for (const line of lines) {
+                    if (!line.startsWith('data: '))
+                        continue;
+                    const dataStr = line.slice(6).trim();
+                    if (!dataStr)
+                        continue;
+                    try {
+                        const event = JSON.parse(dataStr);
+                        if (!event.message)
+                            continue;
+                        const json = Buffer.from(event.message, 'base64url').toString('utf-8');
+                        const parsed = JSON.parse(json);
+                        const request = SignRequestSchema.parse(parsed);
+                        // Skip expired requests
+                        const expiresAt = new Date(request.expiresAt).getTime();
+                        if (expiresAt < Date.now()) {
+                            continue;
+                        }
+                        callback(request);
+                    }
+                    catch {
+                        // Ignore malformed messages
+                    }
+                }
+            }
+        }
+        catch (_err) {
+            // Don't reconnect if explicitly aborted
+            if (abortController.signal.aborted)
+                return;
+            reconnectAttempts++;
+            if (reconnectAttempts <= MAX_RECONNECT_ATTEMPTS) {
+                await new Promise((resolve) => setTimeout(resolve, RECONNECT_DELAY_MS));
+                void connect();
+            }
+        }
+    }
+    void connect();
+    return {
+        unsubscribe() {
+            abortController.abort();
+        },
+    };
+}
+//# sourceMappingURL=ntfy.js.map

package/dist/channels/ntfy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ntfy.js","sourceRoot":"","sources":["../../src/channels/ntfy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AAEjD,MAAM,kBAAkB,GAAG,iBAAiB,CAAC;AAC7C,MAAM,sBAAsB,GAAG,CAAC,CAAC;AACjC,MAAM,kBAAkB,GAAG,KAAK,CAAC;AAEjC;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,QAAsB,EACtB,aAAqB,EACrB,YAAoB,kBAAkB;IAEtC,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IACtC,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAEjE,MAAM,GAAG,GAAG,GAAG,SAAS,IAAI,aAAa,EAAE,CAAC;IAC5C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAC3B,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,OAAO;KACd,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CACb,yCAAyC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAC9D,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,mBAAmB,CACjC,KAAa,EACb,QAAwC,EACxC,YAAoB,kBAAkB;IAEtC,MAAM,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;IAC9C,IAAI,iBAAiB,GAAG,CAAC,CAAC;IAE1B,KAAK,UAAU,OAAO;QACpB,IAAI,eAAe,CAAC,MAAM,CAAC,OAAO;YAAE,OAAO;QAE3C,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,GAAG,SAAS,IAAI,KAAK,MAAM,CAAC;YACxC,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAC3B,MAAM,EAAE,eAAe,CAAC,MAAM;aAC/B,CAAC,CAAC;YAEH,IAAI,CAAC,GAAG,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;gBACzB,MAAM,IAAI,KAAK,CAAC,+BAA+B,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YACvE,CAAC;YAED,mDAAmD;YACnD,iBAAiB,GAAG,CAAC,CAAC;YAEtB,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACpC,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;YAClC,IAAI,MAAM,GAAG,EAAE,CAAC;YAEhB,OAAO,CAAC,eAAe,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;gBACvC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;gBAC5C,IAAI,IAAI;oBAAE,MAAM;gBAEhB,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;gBAClD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACjC,0CAA0C;gBAC1C,MAAM,GAAG,KAAK,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC;gBAE3B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;oBACzB,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;wBAAE,SAAS;oBAEzC,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;oBACrC,IAAI,CAAC,OAAO;wBAAE,SAAS;oBAEvB,IAAI,CAAC;wBACH,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAyB,CAAC;wBAC1D,IAAI,CAAC,KAAK,CAAC,OAAO;4BAAE,SAAS;wBAE7B,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC,QAAQ,CAC3D,OAAO,CACR,CAAC;wBACF,MAAM,MAAM,GAAY,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;wBACzC,MAAM,OAAO,GAAG,iBAAiB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;wBAEhD,wBAAwB;wBACxB,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;wBACxD,IAAI,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;4BAC3B,SAAS;wBACX,CAAC;wBAED,QAAQ,CAAC,OAAO,CAAC,CAAC;oBACpB,CAAC;oBAAC,MAAM,CAAC;wBACP,4BAA4B;oBAC9B,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAAC,OAAO,IAAI,EAAE,CAAC;YACd,wCAAwC;YACxC,IAAI,eAAe,CAAC,MAAM,CAAC,OAAO;gBAAE,OAAO;YAE3C,iBAAiB,EAAE,CAAC;YACpB,IAAI,iBAAiB,IAAI,sBAAsB,EAAE,CAAC;gBAChD,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAC5B,UAAU,CAAC,OAAO,EAAE,kBAAkB,CAAC,CACxC,CAAC;gBACF,KAAK,OAAO,EAAE,CAAC;YACjB,CAAC;QACH,CAAC;IACH,CAAC;IAED,KAAK,OAAO,EAAE,CAAC;IAEf,OAAO;QACL,WAAW;YACT,eAAe,CAAC,KAAK,EAAE,CAAC;QAC1B,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/channels/telegram.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Telegram channel function for the WAIaaS Signing Protocol.
+ *
+ * Generates a Telegram deeplink URL for sending a SignResponse to a bot.
+ * The actual Telegram app opening is the wallet app's responsibility.
+ *
+ * @see internal/design/73-signing-protocol-v1.md Section 8.5
+ */
+import type { SignResponse } from '@waiaas/core';
+/**
+ * Generate a Telegram deeplink URL for sending a SignResponse to a bot.
+ *
+ * Creates a https://t.me/{botUsername}?text={encoded} URL.
+ * Platform-specific scheme handling (tg:// vs https://t.me) is left to the wallet app.
+ *
+ * @param response - Validated SignResponse object
+ * @param botUsername - Telegram bot username (without @)
+ * @returns Telegram deeplink URL string
+ */
+export declare function sendViaTelegram(response: SignResponse, botUsername: string): string;
+//# sourceMappingURL=telegram.d.ts.map

package/dist/channels/telegram.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"telegram.d.ts","sourceRoot":"","sources":["../../src/channels/telegram.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAEjD;;;;;;;;;GASG;AACH,wBAAgB,eAAe,CAC7B,QAAQ,EAAE,YAAY,EACtB,WAAW,EAAE,MAAM,GAClB,MAAM,CAKR"}

package/dist/channels/telegram.js

@@ -0,0 +1,25 @@
+/**
+ * Telegram channel function for the WAIaaS Signing Protocol.
+ *
+ * Generates a Telegram deeplink URL for sending a SignResponse to a bot.
+ * The actual Telegram app opening is the wallet app's responsibility.
+ *
+ * @see internal/design/73-signing-protocol-v1.md Section 8.5
+ */
+/**
+ * Generate a Telegram deeplink URL for sending a SignResponse to a bot.
+ *
+ * Creates a https://t.me/{botUsername}?text={encoded} URL.
+ * Platform-specific scheme handling (tg:// vs https://t.me) is left to the wallet app.
+ *
+ * @param response - Validated SignResponse object
+ * @param botUsername - Telegram bot username (without @)
+ * @returns Telegram deeplink URL string
+ */
+export function sendViaTelegram(response, botUsername) {
+    const json = JSON.stringify(response);
+    const encoded = Buffer.from(json, 'utf-8').toString('base64url');
+    const text = `/sign_response ${encoded}`;
+    return `https://t.me/${botUsername}?text=${encodeURIComponent(text)}`;
+}
+//# sourceMappingURL=telegram.js.map

package/dist/channels/telegram.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"telegram.js","sourceRoot":"","sources":["../../src/channels/telegram.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH;;;;;;;;;GASG;AACH,MAAM,UAAU,eAAe,CAC7B,QAAsB,EACtB,WAAmB;IAEnB,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IACtC,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACjE,MAAM,IAAI,GAAG,kBAAkB,OAAO,EAAE,CAAC;IACzC,OAAO,gBAAgB,WAAW,SAAS,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;AACxE,CAAC"}

package/dist/display.d.ts

@@ -0,0 +1,14 @@
+/**
+ * formatDisplayMessage - Create a human-readable transaction summary.
+ *
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.4
+ */
+import type { SignRequest } from '@waiaas/core';
+/**
+ * Format a SignRequest into a human-readable display message.
+ *
+ * @param request - Validated SignRequest
+ * @returns Multi-line string summary of the transaction
+ */
+export declare function formatDisplayMessage(request: SignRequest): string;
+//# sourceMappingURL=display.d.ts.map

package/dist/display.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"display.d.ts","sourceRoot":"","sources":["../src/display.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAEhD;;;;;GAKG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,WAAW,GAAG,MAAM,CAkBjE"}

package/dist/display.js

@@ -0,0 +1,28 @@
+/**
+ * formatDisplayMessage - Create a human-readable transaction summary.
+ *
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.4
+ */
+/**
+ * Format a SignRequest into a human-readable display message.
+ *
+ * @param request - Validated SignRequest
+ * @returns Multi-line string summary of the transaction
+ */
+export function formatDisplayMessage(request) {
+    const lines = [
+        'Transaction Approval Request',
+        '',
+        `Type: ${request.metadata.type}`,
+        `From: ${request.metadata.from}`,
+        `To: ${request.metadata.to}`,
+    ];
+    if (request.metadata.amount && request.metadata.symbol) {
+        lines.push(`Amount: ${request.metadata.amount} ${request.metadata.symbol}`);
+    }
+    lines.push(`Network: ${request.network}`);
+    lines.push(`Policy: ${request.metadata.policyTier}`);
+    lines.push(`Expires: ${request.expiresAt}`);
+    return lines.join('\n');
+}
+//# sourceMappingURL=display.js.map

package/dist/display.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"display.js","sourceRoot":"","sources":["../src/display.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH;;;;;GAKG;AACH,MAAM,UAAU,oBAAoB,CAAC,OAAoB;IACvD,MAAM,KAAK,GAAa;QACtB,8BAA8B;QAC9B,EAAE;QACF,SAAS,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE;QAChC,SAAS,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE;QAChC,OAAO,OAAO,CAAC,QAAQ,CAAC,EAAE,EAAE;KAC7B,CAAC;IAEF,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;QACvD,KAAK,CAAC,IAAI,CAAC,WAAW,OAAO,CAAC,QAAQ,CAAC,MAAM,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IAC9E,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,YAAY,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IAC1C,KAAK,CAAC,IAAI,CAAC,WAAW,OAAO,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IACrD,KAAK,CAAC,IAAI,CAAC,YAAY,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;IAE5C,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/dist/errors.d.ts

@@ -0,0 +1,30 @@
+/**
+ * Custom error classes for @waiaas/wallet-sdk.
+ *
+ * These errors are thrown by SDK functions to indicate specific failure modes
+ * when parsing, validating, or processing signing protocol data.
+ */
+/**
+ * Thrown when the URL passed to parseSignRequest is invalid or missing
+ * required parameters (neither 'data' nor 'requestId' found).
+ */
+export declare class InvalidSignRequestUrlError extends Error {
+    readonly name = "InvalidSignRequestUrlError";
+    constructor(message: string);
+}
+/**
+ * Thrown when a SignRequest has expired (expiresAt < now).
+ */
+export declare class SignRequestExpiredError extends Error {
+    readonly name = "SignRequestExpiredError";
+    readonly expiresAt: string;
+    constructor(expiresAt: string);
+}
+/**
+ * Thrown when the decoded data fails Zod schema validation.
+ */
+export declare class SignRequestValidationError extends Error {
+    readonly name = "SignRequestValidationError";
+    constructor(zodMessage: string);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;GAGG;AACH,qBAAa,0BAA2B,SAAQ,KAAK;IACnD,SAAkB,IAAI,gCAAgC;gBAE1C,OAAO,EAAE,MAAM;CAG5B;AAED;;GAEG;AACH,qBAAa,uBAAwB,SAAQ,KAAK;IAChD,SAAkB,IAAI,6BAA6B;IACnD,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;gBAEf,SAAS,EAAE,MAAM;CAI9B;AAED;;GAEG;AACH,qBAAa,0BAA2B,SAAQ,KAAK;IACnD,SAAkB,IAAI,gCAAgC;gBAE1C,UAAU,EAAE,MAAM;CAG/B"}

package/dist/errors.js

@@ -0,0 +1,37 @@
+/**
+ * Custom error classes for @waiaas/wallet-sdk.
+ *
+ * These errors are thrown by SDK functions to indicate specific failure modes
+ * when parsing, validating, or processing signing protocol data.
+ */
+/**
+ * Thrown when the URL passed to parseSignRequest is invalid or missing
+ * required parameters (neither 'data' nor 'requestId' found).
+ */
+export class InvalidSignRequestUrlError extends Error {
+    name = 'InvalidSignRequestUrlError';
+    constructor(message) {
+        super(message);
+    }
+}
+/**
+ * Thrown when a SignRequest has expired (expiresAt < now).
+ */
+export class SignRequestExpiredError extends Error {
+    name = 'SignRequestExpiredError';
+    expiresAt;
+    constructor(expiresAt) {
+        super(`Sign request expired at ${expiresAt}`);
+        this.expiresAt = expiresAt;
+    }
+}
+/**
+ * Thrown when the decoded data fails Zod schema validation.
+ */
+export class SignRequestValidationError extends Error {
+    name = 'SignRequestValidationError';
+    constructor(zodMessage) {
+        super(`Sign request validation failed: ${zodMessage}`);
+    }
+}
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;GAGG;AACH,MAAM,OAAO,0BAA2B,SAAQ,KAAK;IACjC,IAAI,GAAG,4BAA4B,CAAC;IAEtD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;IACjB,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,uBAAwB,SAAQ,KAAK;IAC9B,IAAI,GAAG,yBAAyB,CAAC;IAC1C,SAAS,CAAS;IAE3B,YAAY,SAAiB;QAC3B,KAAK,CAAC,2BAA2B,SAAS,EAAE,CAAC,CAAC;QAC9C,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC7B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,0BAA2B,SAAQ,KAAK;IACjC,IAAI,GAAG,4BAA4B,CAAC;IAEtD,YAAY,UAAkB;QAC5B,KAAK,CAAC,mCAAmC,UAAU,EAAE,CAAC,CAAC;IACzD,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,23 @@
+/**
+ * @waiaas/wallet-sdk - WAIaaS Wallet Signing SDK
+ *
+ * Provides wallet apps with tools to integrate the WAIaaS Signing Protocol v1.
+ *
+ * Public API:
+ *   - parseSignRequest(url) - Extract SignRequest from universal link URL
+ *   - buildSignResponse(requestId, action, signature?, signerAddress) - Create SignResponse
+ *   - formatDisplayMessage(request) - Human-readable transaction summary
+ *   - sendViaNtfy(response, topic, serverUrl?) - Publish to ntfy response topic
+ *   - sendViaTelegram(response, botUsername) - Generate Telegram deeplink URL
+ *   - subscribeToRequests(topic, callback, serverUrl?) - SSE subscription for sign requests
+ *
+ * @see internal/design/73-signing-protocol-v1.md
+ * @see internal/design/74-wallet-sdk-daemon-components.md
+ */
+export { parseSignRequest } from './parse-request.js';
+export { buildSignResponse } from './build-response.js';
+export { formatDisplayMessage } from './display.js';
+export { sendViaNtfy, subscribeToRequests, sendViaTelegram, } from './channels/index.js';
+export { InvalidSignRequestUrlError, SignRequestExpiredError, SignRequestValidationError, } from './errors.js';
+export type { SignRequest, SignResponse, WalletLinkConfig, } from '@waiaas/core';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAGH,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,OAAO,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AAGpD,OAAO,EACL,WAAW,EACX,mBAAmB,EACnB,eAAe,GAChB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,0BAA0B,EAC1B,uBAAuB,EACvB,0BAA0B,GAC3B,MAAM,aAAa,CAAC;AAGrB,YAAY,EACV,WAAW,EACX,YAAY,EACZ,gBAAgB,GACjB,MAAM,cAAc,CAAC"}

package/dist/index.js

@@ -0,0 +1,25 @@
+/**
+ * @waiaas/wallet-sdk - WAIaaS Wallet Signing SDK
+ *
+ * Provides wallet apps with tools to integrate the WAIaaS Signing Protocol v1.
+ *
+ * Public API:
+ *   - parseSignRequest(url) - Extract SignRequest from universal link URL
+ *   - buildSignResponse(requestId, action, signature?, signerAddress) - Create SignResponse
+ *   - formatDisplayMessage(request) - Human-readable transaction summary
+ *   - sendViaNtfy(response, topic, serverUrl?) - Publish to ntfy response topic
+ *   - sendViaTelegram(response, botUsername) - Generate Telegram deeplink URL
+ *   - subscribeToRequests(topic, callback, serverUrl?) - SSE subscription for sign requests
+ *
+ * @see internal/design/73-signing-protocol-v1.md
+ * @see internal/design/74-wallet-sdk-daemon-components.md
+ */
+// Core functions
+export { parseSignRequest } from './parse-request.js';
+export { buildSignResponse } from './build-response.js';
+export { formatDisplayMessage } from './display.js';
+// Channel functions
+export { sendViaNtfy, subscribeToRequests, sendViaTelegram, } from './channels/index.js';
+// Error classes
+export { InvalidSignRequestUrlError, SignRequestExpiredError, SignRequestValidationError, } from './errors.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,iBAAiB;AACjB,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,OAAO,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AAEpD,oBAAoB;AACpB,OAAO,EACL,WAAW,EACX,mBAAmB,EACnB,eAAe,GAChB,MAAM,qBAAqB,CAAC;AAE7B,gBAAgB;AAChB,OAAO,EACL,0BAA0B,EAC1B,uBAAuB,EACvB,0BAA0B,GAC3B,MAAM,aAAa,CAAC"}

package/dist/parse-request.d.ts

@@ -0,0 +1,22 @@
+/**
+ * parseSignRequest - Extract SignRequest from a universal link URL.
+ *
+ * Supports two modes:
+ *   1. Inline data: URL contains ?data={base64url-encoded-SignRequest}
+ *   2. Remote fetch: URL contains ?requestId={uuid}&topic={topic}&serverUrl={url}
+ *      (fetches from ntfy topic)
+ *
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.1
+ */
+import type { SignRequest } from '@waiaas/core';
+/**
+ * Parse a SignRequest from a universal link URL.
+ *
+ * @param url - Universal link URL with ?data= or ?requestId= parameters
+ * @returns SignRequest (sync for inline data, async for ntfy fetch)
+ * @throws InvalidSignRequestUrlError - URL is invalid or missing parameters
+ * @throws SignRequestExpiredError - Request has expired
+ * @throws SignRequestValidationError - Decoded data fails Zod validation
+ */
+export declare function parseSignRequest(url: string): SignRequest | Promise<SignRequest>;
+//# sourceMappingURL=parse-request.d.ts.map

package/dist/parse-request.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"parse-request.d.ts","sourceRoot":"","sources":["../src/parse-request.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAoHhD;;;;;;;;GAQG;AACH,wBAAgB,gBAAgB,CAC9B,GAAG,EAAE,MAAM,GACV,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC,CAyBpC"}

package/dist/parse-request.js

@@ -0,0 +1,135 @@
+/**
+ * parseSignRequest - Extract SignRequest from a universal link URL.
+ *
+ * Supports two modes:
+ *   1. Inline data: URL contains ?data={base64url-encoded-SignRequest}
+ *   2. Remote fetch: URL contains ?requestId={uuid}&topic={topic}&serverUrl={url}
+ *      (fetches from ntfy topic)
+ *
+ * @see internal/design/74-wallet-sdk-daemon-components.md Section 2.1
+ */
+import { SignRequestSchema } from '@waiaas/core';
+import { ZodError } from 'zod';
+import { InvalidSignRequestUrlError, SignRequestExpiredError, SignRequestValidationError, } from './errors.js';
+/**
+ * Check if a SignRequest has expired.
+ */
+function assertNotExpired(request) {
+    const expiresAt = new Date(request.expiresAt).getTime();
+    if (expiresAt < Date.now()) {
+        throw new SignRequestExpiredError(request.expiresAt);
+    }
+}
+/**
+ * Decode inline data parameter (base64url -> JSON -> Zod validated SignRequest).
+ */
+function decodeInlineData(data) {
+    let json;
+    try {
+        json = Buffer.from(data, 'base64url').toString('utf-8');
+    }
+    catch {
+        throw new InvalidSignRequestUrlError('Invalid base64url data parameter');
+    }
+    let parsed;
+    try {
+        parsed = JSON.parse(json);
+    }
+    catch {
+        throw new InvalidSignRequestUrlError('Invalid JSON in data parameter');
+    }
+    let request;
+    try {
+        request = SignRequestSchema.parse(parsed);
+    }
+    catch (err) {
+        if (err instanceof ZodError) {
+            throw new SignRequestValidationError(err.message);
+        }
+        throw err;
+    }
+    assertNotExpired(request);
+    return request;
+}
+/**
+ * Fetch a SignRequest from an ntfy topic by requestId.
+ */
+async function fetchSignRequestFromNtfy(requestId, topic, serverUrl) {
+    const url = `${serverUrl}/${topic}/json?poll=1&since=all`;
+    const res = await fetch(url);
+    if (!res.ok) {
+        throw new InvalidSignRequestUrlError(`Failed to fetch from ntfy: HTTP ${String(res.status)}`);
+    }
+    const text = await res.text();
+    // ntfy returns newline-delimited JSON messages
+    const lines = text.trim().split('\n');
+    for (const line of lines) {
+        if (!line.trim())
+            continue;
+        let msg;
+        try {
+            msg = JSON.parse(line);
+        }
+        catch {
+            continue;
+        }
+        if (!msg.message)
+            continue;
+        let json;
+        try {
+            json = Buffer.from(msg.message, 'base64url').toString('utf-8');
+        }
+        catch {
+            continue;
+        }
+        let parsed;
+        try {
+            parsed = JSON.parse(json);
+        }
+        catch {
+            continue;
+        }
+        let request;
+        try {
+            request = SignRequestSchema.parse(parsed);
+        }
+        catch {
+            continue;
+        }
+        if (request.requestId === requestId) {
+            assertNotExpired(request);
+            return request;
+        }
+    }
+    throw new InvalidSignRequestUrlError(`Sign request ${requestId} not found in ntfy topic ${topic}`);
+}
+/**
+ * Parse a SignRequest from a universal link URL.
+ *
+ * @param url - Universal link URL with ?data= or ?requestId= parameters
+ * @returns SignRequest (sync for inline data, async for ntfy fetch)
+ * @throws InvalidSignRequestUrlError - URL is invalid or missing parameters
+ * @throws SignRequestExpiredError - Request has expired
+ * @throws SignRequestValidationError - Decoded data fails Zod validation
+ */
+export function parseSignRequest(url) {
+    let parsed;
+    try {
+        parsed = new URL(url);
+    }
+    catch {
+        throw new InvalidSignRequestUrlError(`Invalid URL: ${url}`);
+    }
+    const data = parsed.searchParams.get('data');
+    if (data) {
+        return decodeInlineData(data);
+    }
+    const requestId = parsed.searchParams.get('requestId');
+    if (requestId) {
+        const topic = parsed.searchParams.get('topic') ?? 'waiaas-sign-requests';
+        const serverUrl = parsed.searchParams.get('serverUrl') ?? 'https://ntfy.sh';
+        return fetchSignRequestFromNtfy(requestId, topic, serverUrl);
+    }
+    throw new InvalidSignRequestUrlError('URL must contain either "data" or "requestId" parameter');
+}
+//# sourceMappingURL=parse-request.js.map

package/dist/parse-request.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parse-request.js","sourceRoot":"","sources":["../src/parse-request.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,KAAK,CAAC;AAE/B,OAAO,EACL,0BAA0B,EAC1B,uBAAuB,EACvB,0BAA0B,GAC3B,MAAM,aAAa,CAAC;AAErB;;GAEG;AACH,SAAS,gBAAgB,CAAC,OAAoB;IAC5C,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;IACxD,IAAI,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QAC3B,MAAM,IAAI,uBAAuB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACvD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,gBAAgB,CAAC,IAAY;IACpC,IAAI,IAAY,CAAC;IACjB,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IAC1D,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,0BAA0B,CAAC,kCAAkC,CAAC,CAAC;IAC3E,CAAC;IAED,IAAI,MAAe,CAAC;IACpB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,0BAA0B,CAAC,gCAAgC,CAAC,CAAC;IACzE,CAAC;IAED,IAAI,OAAoB,CAAC;IACzB,IAAI,CAAC;QACH,OAAO,GAAG,iBAAiB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC5C,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,QAAQ,EAAE,CAAC;YAC5B,MAAM,IAAI,0BAA0B,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACpD,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,gBAAgB,CAAC,OAAO,CAAC,CAAC;IAC1B,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,wBAAwB,CACrC,SAAiB,EACjB,KAAa,EACb,SAAiB;IAEjB,MAAM,GAAG,GAAG,GAAG,SAAS,IAAI,KAAK,wBAAwB,CAAC;IAC1D,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAC7B,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,0BAA0B,CAClC,mCAAmC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CACxD,CAAC;IACJ,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,+CAA+C;IAC/C,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAEtC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;YAAE,SAAS;QAE3B,IAAI,GAAyB,CAAC;QAC9B,IAAI,CAAC;YACH,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAyB,CAAC;QACjD,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QAED,IAAI,CAAC,GAAG,CAAC,OAAO;YAAE,SAAS;QAE3B,IAAI,IAAY,CAAC;QACjB,IAAI,CAAC;YACH,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QACjE,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QAED,IAAI,MAAe,CAAC;QACpB,IAAI,CAAC;YACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QAED,IAAI,OAAoB,CAAC;QACzB,IAAI,CAAC;YACH,OAAO,GAAG,iBAAiB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAC5C,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QAED,IAAI,OAAO,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;YACpC,gBAAgB,CAAC,OAAO,CAAC,CAAC;YAC1B,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IAED,MAAM,IAAI,0BAA0B,CAClC,gBAAgB,SAAS,4BAA4B,KAAK,EAAE,CAC7D,CAAC;AACJ,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,gBAAgB,CAC9B,GAAW;IAEX,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,0BAA0B,CAAC,gBAAgB,GAAG,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC7C,IAAI,IAAI,EAAE,CAAC;QACT,OAAO,gBAAgB,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvD,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,KAAK,GACT,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,sBAAsB,CAAC;QAC7D,MAAM,SAAS,GACb,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,IAAI,iBAAiB,CAAC;QAC5D,OAAO,wBAAwB,CAAC,SAAS,EAAE,KAAK,EAAE,SAAS,CAAC,CAAC;IAC/D,CAAC;IAED,MAAM,IAAI,0BAA0B,CAClC,yDAAyD,CAC1D,CAAC;AACJ,CAAC"}

package/package.json

@@ -0,0 +1,50 @@
+{
+  "name": "@waiaas/wallet-sdk",
+  "version": "2.4.0-rc.3",
+  "description": "WAIaaS Wallet Signing SDK - integrate wallet apps with WAIaaS signing protocol",
+  "license": "MIT",
+  "type": "module",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/minhoyoo-iotrust/WAIaaS.git",
+    "directory": "packages/wallet-sdk"
+  },
+  "homepage": "https://github.com/minhoyoo-iotrust/WAIaaS#readme",
+  "bugs": {
+    "url": "https://github.com/minhoyoo-iotrust/WAIaaS/issues"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "scripts": {
+    "build": "tsc -p tsconfig.build.json",
+    "test": "vitest run",
+    "test:unit": "vitest run",
+    "lint": "eslint src/",
+    "typecheck": "tsc --noEmit",
+    "clean": "rm -rf dist"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "dependencies": {
+    "@waiaas/core": "workspace:*",
+    "zod": "^3.24.0"
+  },
+  "devDependencies": {
+    "@types/node": "^25.2.3",
+    "vitest": "^3.0.0"
+  }
+}