@worldcoin/minikit-js 1.11.0 → 2.0.0-dev.1

package/build/minikit-provider.d.cts

@@ -2,7 +2,8 @@ import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ReactNode } from 'react';
 
 type MiniKitProps = {
-    appId: string;
+    appId?: string;
+    wagmiConfig?: unknown;
 };
 type MiniKitContextValue = {
     isInstalled: boolean | undefined;

package/build/minikit-provider.d.ts

@@ -2,7 +2,8 @@ import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ReactNode } from 'react';
 
 type MiniKitProps = {
-    appId: string;
+    appId?: string;
+    wagmiConfig?: unknown;
 };
 type MiniKitContextValue = {
     isInstalled: boolean | undefined;

package/build/minikit-provider.js

@@ -1,9 +1,14 @@
 "use client";
+import {
+  setWagmiConfig
+} from "./chunk-2UPJKPQ6.js";
 import {
   MiniKit
-} from "./chunk-62NZ34E4.js";
+} from "./chunk-EHBM7OXH.js";
+import "./chunk-Z2UGRZJ2.js";
+import "./chunk-LHHKY77D.js";
 
-// minikit-provider.tsx
+// src/minikit-provider.tsx
 import {
   createContext,
   useContext,
@@ -21,6 +26,7 @@ var MiniKitProvider = ({
   const [isInstalled, setIsInstalled] = useState(
     void 0
   );
+  const wagmiConfig = props?.wagmiConfig;
   useEffect(() => {
     const { success } = MiniKit.install(props?.appId);
     if (!success) return setIsInstalled(false);
@@ -29,6 +35,11 @@ var MiniKitProvider = ({
     );
     setIsInstalled(success);
   }, [props?.appId]);
+  useEffect(() => {
+    if (wagmiConfig) {
+      setWagmiConfig(wagmiConfig);
+    }
+  }, [wagmiConfig]);
   return /* @__PURE__ */ jsx(MiniKitContext.Provider, { value: { isInstalled }, children });
 };
 var useMiniKit = () => {

package/build/provider-DeDUsLbs.d.cts

@@ -0,0 +1,43 @@
+/**
+ * Self-contained EIP-1193 Provider for World App
+ *
+ * Works with any Ethereum library (viem, ethers, wagmi, or raw EIP-1193).
+ * Triggers walletAuth on `eth_requestAccounts` and routes all other RPC
+ * methods to MiniKit's native commands.
+ *
+ * @example
+ * ```typescript
+ * // viem
+ * import { createWalletClient, custom } from 'viem';
+ * import { getWorldAppProvider } from '@worldcoin/minikit-js';
+ * const client = createWalletClient({ transport: custom(getWorldAppProvider()), chain: worldchain });
+ *
+ * // ethers
+ * import { BrowserProvider } from 'ethers';
+ * import { getWorldAppProvider } from '@worldcoin/minikit-js';
+ * const provider = new BrowserProvider(getWorldAppProvider());
+ * ```
+ */
+type WorldAppProvider = {
+    request: (args: {
+        method: string;
+        params?: unknown;
+    }) => Promise<unknown>;
+    on: (event: string, fn: (...args: unknown[]) => void) => void;
+    removeListener: (event: string, fn: (...args: unknown[]) => void) => void;
+};
+declare global {
+    interface Window {
+        __worldapp_eip1193_provider__?: WorldAppProvider;
+        __worldapp_eip1193_address__?: `0x${string}`;
+    }
+}
+/**
+ * Get the EIP-1193 provider for World App.
+ *
+ * Returns a singleton instance (stored on `window`) so all consumers
+ * share the same provider and address state, even across separate bundles.
+ */
+declare function getWorldAppProvider(): WorldAppProvider;
+
+export { type WorldAppProvider as W, getWorldAppProvider as g };

package/build/provider-DeDUsLbs.d.ts

@@ -0,0 +1,43 @@
+/**
+ * Self-contained EIP-1193 Provider for World App
+ *
+ * Works with any Ethereum library (viem, ethers, wagmi, or raw EIP-1193).
+ * Triggers walletAuth on `eth_requestAccounts` and routes all other RPC
+ * methods to MiniKit's native commands.
+ *
+ * @example
+ * ```typescript
+ * // viem
+ * import { createWalletClient, custom } from 'viem';
+ * import { getWorldAppProvider } from '@worldcoin/minikit-js';
+ * const client = createWalletClient({ transport: custom(getWorldAppProvider()), chain: worldchain });
+ *
+ * // ethers
+ * import { BrowserProvider } from 'ethers';
+ * import { getWorldAppProvider } from '@worldcoin/minikit-js';
+ * const provider = new BrowserProvider(getWorldAppProvider());
+ * ```
+ */
+type WorldAppProvider = {
+    request: (args: {
+        method: string;
+        params?: unknown;
+    }) => Promise<unknown>;
+    on: (event: string, fn: (...args: unknown[]) => void) => void;
+    removeListener: (event: string, fn: (...args: unknown[]) => void) => void;
+};
+declare global {
+    interface Window {
+        __worldapp_eip1193_provider__?: WorldAppProvider;
+        __worldapp_eip1193_address__?: `0x${string}`;
+    }
+}
+/**
+ * Get the EIP-1193 provider for World App.
+ *
+ * Returns a singleton instance (stored on `window`) so all consumers
+ * share the same provider and address state, even across separate bundles.
+ */
+declare function getWorldAppProvider(): WorldAppProvider;
+
+export { type WorldAppProvider as W, getWorldAppProvider as g };

package/build/siwe-exports.cjs

@@ -0,0 +1,249 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/siwe-exports.ts
+var siwe_exports_exports = {};
+__export(siwe_exports_exports, {
+  parseSiweMessage: () => parseSiweMessage,
+  verifySiweMessage: () => verifySiweMessage
+});
+module.exports = __toCommonJS(siwe_exports_exports);
+
+// src/commands/wallet-auth/siwe.ts
+var import_viem = require("viem");
+var import_chains = require("viem/chains");
+var PREAMBLE = " wants you to sign in with your Ethereum account:";
+var URI_TAG = "URI: ";
+var VERSION_TAG = "Version: ";
+var CHAIN_TAG = "Chain ID: ";
+var NONCE_TAG = "Nonce: ";
+var IAT_TAG = "Issued At: ";
+var EXP_TAG = "Expiration Time: ";
+var NBF_TAG = "Not Before: ";
+var RID_TAG = "Request ID: ";
+var ERC_191_PREFIX = "Ethereum Signed Message:\n";
+var EIP1271_MAGICVALUE = "0x1626ba7e";
+var SAFE_CONTRACT_ABI = [
+  {
+    inputs: [
+      {
+        internalType: "address",
+        name: "owner",
+        type: "address"
+      }
+    ],
+    name: "isOwner",
+    outputs: [
+      {
+        internalType: "bool",
+        name: "",
+        type: "bool"
+      }
+    ],
+    stateMutability: "view",
+    type: "function"
+  },
+  {
+    inputs: [
+      {
+        internalType: "bytes32",
+        name: "_message",
+        type: "bytes32"
+      },
+      {
+        internalType: "bytes",
+        name: "_signature",
+        type: "bytes"
+      }
+    ],
+    name: "isValidSignature",
+    outputs: [
+      {
+        internalType: "bytes4",
+        name: "",
+        type: "bytes4"
+      }
+    ],
+    stateMutability: "view",
+    type: "function"
+  }
+];
+var tagged = (line, tag) => {
+  if (line && line.includes(tag)) {
+    return line.replace(tag, "");
+  } else {
+    throw new Error(`Missing '${tag}'`);
+  }
+};
+var parseSiweMessage = (inputString) => {
+  const lines = inputString.split("\n")[Symbol.iterator]();
+  const domain = tagged(lines.next()?.value, PREAMBLE);
+  const address = lines.next()?.value;
+  lines.next();
+  const nextValue = lines.next()?.value;
+  let statement;
+  if (nextValue) {
+    statement = nextValue;
+    lines.next();
+  }
+  const uri = tagged(lines.next()?.value, URI_TAG);
+  const version = tagged(lines.next()?.value, VERSION_TAG);
+  const chain_id = tagged(lines.next()?.value, CHAIN_TAG);
+  const nonce = tagged(lines.next()?.value, NONCE_TAG);
+  const issued_at = tagged(lines.next()?.value, IAT_TAG);
+  let expiration_time, not_before, request_id;
+  for (let line of lines) {
+    if (line.startsWith(EXP_TAG)) {
+      expiration_time = tagged(line, EXP_TAG);
+    } else if (line.startsWith(NBF_TAG)) {
+      not_before = tagged(line, NBF_TAG);
+    } else if (line.startsWith(RID_TAG)) {
+      request_id = tagged(line, RID_TAG);
+    }
+  }
+  if (lines.next().done === false) {
+    throw new Error("Extra lines in the input");
+  }
+  const siweMessageData = {
+    domain,
+    address,
+    statement,
+    uri,
+    version,
+    chain_id,
+    nonce,
+    issued_at,
+    expiration_time,
+    not_before,
+    request_id
+  };
+  return siweMessageData;
+};
+var verifySiweMessage = (payload, nonce, statement, requestId, userProvider) => {
+  if (payload.version === 1) {
+    return verifySiweMessageV1(
+      payload,
+      nonce,
+      statement,
+      requestId,
+      userProvider
+    );
+  } else {
+    return verifySiweMessageV2(
+      payload,
+      nonce,
+      statement,
+      requestId,
+      userProvider
+    );
+  }
+};
+var validateMessage = (siweMessageData, nonce, statement, requestId) => {
+  if (siweMessageData.expiration_time) {
+    const expirationTime = new Date(siweMessageData.expiration_time);
+    if (expirationTime < /* @__PURE__ */ new Date()) {
+      throw new Error("Expired message");
+    }
+  }
+  if (siweMessageData.not_before) {
+    const notBefore = new Date(siweMessageData.not_before);
+    if (notBefore > /* @__PURE__ */ new Date()) {
+      throw new Error("Not Before time has not passed");
+    }
+  }
+  if (nonce && siweMessageData.nonce !== nonce) {
+    throw new Error(
+      `Nonce mismatch. Got: ${siweMessageData.nonce}, Expected: ${nonce}`
+    );
+  }
+  if (statement && siweMessageData.statement !== statement) {
+    throw new Error(
+      `Statement mismatch. Got: ${siweMessageData.statement}, Expected: ${statement}`
+    );
+  }
+  if (requestId && siweMessageData.request_id !== requestId) {
+    throw new Error(
+      `Request ID mismatch. Got: ${siweMessageData.request_id}, Expected: ${requestId}`
+    );
+  }
+  return true;
+};
+var verifySiweMessageV1 = async (payload, nonce, statement, requestId, userProvider) => {
+  if (typeof window !== "undefined") {
+    throw new Error("Wallet auth payload can only be verified in the backend");
+  }
+  const { message, signature, address } = payload;
+  const siweMessageData = parseSiweMessage(message);
+  validateMessage(siweMessageData, nonce, statement, requestId);
+  let provider = userProvider || (0, import_viem.createPublicClient)({ chain: import_chains.worldchain, transport: (0, import_viem.http)() });
+  const signedMessage = `${ERC_191_PREFIX}${message.length}${message}`;
+  const hashedMessage = (0, import_viem.hashMessage)(signedMessage);
+  const contract = (0, import_viem.getContract)({
+    address,
+    abi: SAFE_CONTRACT_ABI,
+    client: provider
+  });
+  try {
+    const recoveredAddress = await (0, import_viem.recoverAddress)({
+      hash: hashedMessage,
+      signature: `0x${signature}`
+    });
+    const isOwner = await contract.read.isOwner([recoveredAddress]);
+    if (!isOwner) {
+      throw new Error("Signature verification failed, invalid owner");
+    }
+  } catch (error) {
+    throw new Error("Signature verification failed");
+  }
+  return { isValid: true, siweMessageData };
+};
+var verifySiweMessageV2 = async (payload, nonce, statement, requestId, userProvider) => {
+  if (typeof window !== "undefined") {
+    throw new Error("Wallet auth payload can only be verified in the backend");
+  }
+  const { message, signature, address } = payload;
+  const siweMessageData = parseSiweMessage(message);
+  if (!validateMessage(siweMessageData, nonce, statement, requestId)) {
+    throw new Error("Validation failed");
+  }
+  try {
+    const walletContract = (0, import_viem.getContract)({
+      address,
+      abi: SAFE_CONTRACT_ABI,
+      client: userProvider || (0, import_viem.createPublicClient)({ chain: import_chains.worldchain, transport: (0, import_viem.http)() })
+    });
+    const hashedMessage = (0, import_viem.hashMessage)(message);
+    const res = await walletContract.read.isValidSignature([
+      hashedMessage,
+      signature
+    ]);
+    return {
+      isValid: res === EIP1271_MAGICVALUE,
+      siweMessageData
+    };
+  } catch (error) {
+    console.log(error);
+    throw new Error("Signature verification failed");
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  parseSiweMessage,
+  verifySiweMessage
+});

package/build/siwe-exports.d.cts

@@ -0,0 +1,10 @@
+import { Client } from 'viem';
+import { S as SiweMessage, y as MiniAppWalletAuthSuccessPayload } from './types-CSyzFDPt.cjs';
+
+declare const parseSiweMessage: (inputString: string) => SiweMessage;
+declare const verifySiweMessage: (payload: MiniAppWalletAuthSuccessPayload, nonce: string, statement?: string, requestId?: string, userProvider?: Client) => Promise<{
+    isValid: boolean;
+    siweMessageData: SiweMessage;
+}>;
+
+export { parseSiweMessage, verifySiweMessage };

package/build/siwe-exports.d.ts

@@ -0,0 +1,10 @@
+import { Client } from 'viem';
+import { S as SiweMessage, y as MiniAppWalletAuthSuccessPayload } from './types-CSyzFDPt.js';
+
+declare const parseSiweMessage: (inputString: string) => SiweMessage;
+declare const verifySiweMessage: (payload: MiniAppWalletAuthSuccessPayload, nonce: string, statement?: string, requestId?: string, userProvider?: Client) => Promise<{
+    isValid: boolean;
+    siweMessageData: SiweMessage;
+}>;
+
+export { parseSiweMessage, verifySiweMessage };

package/build/siwe-exports.js

@@ -0,0 +1,8 @@
+import {
+  parseSiweMessage,
+  verifySiweMessage
+} from "./chunk-LHHKY77D.js";
+export {
+  parseSiweMessage,
+  verifySiweMessage
+};