npm - @zendfi/sdk - Versions diffs - 1.1.3 → 1.1.5 - Mend

@zendfi/sdk 1.1.3 → 1.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +11 -5
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -262,6 +262,8 @@ zendfi.withdrawSubAccountToBank(...)
 zendfi.createSubAccountAutomationToken(...)
 zendfi.revokeSubAccountAutomationToken(...)
 zendfi.createSubAccountSigningGrant(...)
+zendfi.startSubAccountSigningGrantBrowserIntent(...)
+zendfi.pollSubAccountSigningGrantBrowserIntent(...)
 zendfi.revokeSubAccountSigningGrant(...)
 zendfi.closeSubAccount(...)
 ```
@@ -287,17 +289,21 @@ const token = await zendfi.mintSubAccountDelegationToken(sub.id, {
 });
 ```
-Sensitive sub-account operations such as `drainSubAccount` and `withdrawFromSubAccount` require `passkey_signature` payloads from your WebAuthn flow.
+Sensitive sub-account operations such as `drainSubAccount` require `passkey_signature` payloads from your WebAuthn flow.
-For `withdrawSubAccountToBank`, the recommended headless path is:
+For `withdrawFromSubAccount` and `withdrawSubAccountToBank`, the recommended headless path is:
 1. Mint policy token via `createSubAccountAutomationToken` (or use delegation token).
-2. Mint signing authorization via `createSubAccountSigningGrant` (one interactive passkey ceremony).
-3. Execute `withdrawSubAccountToBank` using `automation_token`/`delegation_token` + `signing_grant`.
+2. Start browser intent via `startSubAccountSigningGrantBrowserIntent`.
+3. Open `approval_url` in a browser and complete passkey approval.
+4. Poll with `pollSubAccountSigningGrantBrowserIntent` until approved; consume returned `signing_grant`.
+5. Execute `withdrawFromSubAccount` or `withdrawSubAccountToBank` using `delegation_token` (or `automation_token` for bank) + `signing_grant`.
+Legacy direct mint (`createSubAccountSigningGrant` with `passkey_signature`) remains available as fallback.
 `withdrawSubAccountToBank` executes PAJ offramp with server-side proxy-email OTP automation (same pattern as split bank withdrawals), so your integration does not need to collect OTP manually.
-`passkey_signature` on `withdrawSubAccountToBank` is now optional and should be treated as interactive fallback.
+`passkey_signature` on `withdrawFromSubAccount` and `withdrawSubAccountToBank` is now optional and should be treated as interactive fallback.
 Sub-account flows emit webhook lifecycle and transfer events:

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@zendfi/sdk",
-  "version": "1.1.3",
+  "version": "1.1.5",
   "description": "Zero-config TypeScript SDK for ZendFi. Global payments powered by stablecoins!",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",