@zkp2p/sdk 0.3.1 → 0.3.2-rc.0

package/dist/index.cjs

@@ -254,9 +254,6 @@ function uniqueAddresses(...values) {
   }
   return addresses;
 }
-function addressesEqual(left, right) {
-  return Boolean(left && right && left.toLowerCase() === right.toLowerCase());
-}
 function readRuntimeEnv(key) {
   try {
     const meta = ({ url: (typeof document === 'undefined' ? require('u' + 'rl').pathToFileURL(__filename).href : (_documentCurrentScript && _documentCurrentScript.tagName.toUpperCase() === 'SCRIPT' && _documentCurrentScript.src || new URL('index.cjs', document.baseURI).href)) });
@@ -288,26 +285,19 @@ function getContracts(chainId, env = "production") {
     "ProtocolViewerV2"
   ]);
   const baseV2ProtocolViewerAddress = pickAddress(baseContracts, ["ProtocolViewerV2"]);
-  const baseV1ProtocolViewerAddress = pickAddress(baseContracts, ["ProtocolViewer"]);
   const baseProtocolViewerEntries = (() => {
     const entries = [];
     if (baseV2ProtocolViewerAddress && baseV2ProtocolViewerAbi) {
       entries.push({ address: baseV2ProtocolViewerAddress, abi: baseV2ProtocolViewerAbi });
     }
-    if (baseV1ProtocolViewerAddress && !addressesEqual(baseV1ProtocolViewerAddress, baseV2ProtocolViewerAddress)) {
-      entries.push({ address: baseV1ProtocolViewerAddress, abi: ProtocolViewerBase__default.default });
-    }
     return entries.length > 0 ? entries : void 0;
   })();
   const addressesByKey = {
     base: {
-      escrow: pickAddress(baseContracts, ["EscrowV2", "Escrow_V2"]) ?? pickAddress(baseContracts, ["Escrow"]) ?? "",
+      escrow: pickAddress(baseContracts, ["EscrowV2", "Escrow_V2"]) ?? "",
       escrowV2: pickAddress(baseContracts, ["EscrowV2", "Escrow_V2"]),
-      escrowAddresses: uniqueAddresses(
-        pickAddress(baseContracts, ["EscrowV2", "Escrow_V2"]),
-        pickAddress(baseContracts, ["Escrow"])
-      ),
-      orchestrator: pickAddress(baseContracts, ["OrchestratorV2", "Orchestrator_V2"]) ?? pickAddress(baseContracts, ["Orchestrator"]),
+      escrowAddresses: uniqueAddresses(pickAddress(baseContracts, ["EscrowV2", "Escrow_V2"])),
+      orchestrator: pickAddress(baseContracts, ["OrchestratorV2", "Orchestrator_V2"]),
       orchestratorV2: pickAddress(baseContracts, ["OrchestratorV2", "Orchestrator_V2"]),
       orchestratorAddresses: uniqueAddresses(
         pickAddress(baseContracts, ["OrchestratorV2", "Orchestrator_V2"])
@@ -317,7 +307,7 @@ function getContracts(chainId, env = "production") {
         "UnifiedPaymentVerifier"
       ]),
       unifiedPaymentVerifierV2: pickAddress(baseContracts, ["UnifiedPaymentVerifierV2"]),
-      protocolViewer: baseProtocolViewerEntries?.[0]?.address ?? baseV1ProtocolViewerAddress ?? baseV2ProtocolViewerAddress,
+      protocolViewer: baseProtocolViewerEntries?.[0]?.address ?? baseV2ProtocolViewerAddress,
       protocolViewerEntries: baseProtocolViewerEntries,
       usdc: baseConstants.USDC,
       rateManagerV1: pickAddress(baseContracts, ["RateManagerV1", "DepositRateManagerRegistryV1"]),
@@ -368,13 +358,13 @@ function getContracts(chainId, env = "production") {
       "VITE_BASE_STAGING_ESCROW_V2_ADDRESS",
       "VITE_ESCROW_V2_ADDRESS"
     ]);
-    const stagingEscrowCurrent = stagingEscrowV2Override ?? pickAddress(sc, ["EscrowV2", "Escrow_V2"]) ?? pickAddress(sc, ["Escrow"]);
+    const stagingEscrowCurrent = stagingEscrowV2Override ?? pickAddress(sc, ["EscrowV2", "Escrow_V2"]);
     const stagingOrchestratorV2Override = resolveRuntimeAddressOverride([
       "VITE_BASE_STAGING_ORCHESTRATOR_V2_ADDRESS",
       "VITE_ORCHESTRATOR_V2_ADDRESS",
       "VITE_ORCHESTRATORV2_ADDRESS"
     ]);
-    const stagingOrchestratorCurrent = stagingOrchestratorV2Override ?? pickAddress(sc, ["OrchestratorV2", "Orchestrator_V2"]) ?? pickAddress(sc, ["Orchestrator"]);
+    const stagingOrchestratorCurrent = stagingOrchestratorV2Override ?? pickAddress(sc, ["OrchestratorV2", "Orchestrator_V2"]);
     const stagingRateManagerV1 = pickAddress(sc, ["RateManagerV1", "DepositRateManagerRegistryV1"]);
     return {
       addresses: {
@@ -389,7 +379,7 @@ function getContracts(chainId, env = "production") {
           "UnifiedPaymentVerifier"
         ]),
         unifiedPaymentVerifierV2: pickAddress(sc, ["UnifiedPaymentVerifierV2"]),
-        protocolViewer: pickAddress(sc, ["ProtocolViewerV2", "ProtocolViewer"]),
+        protocolViewer: pickAddress(sc, ["ProtocolViewerV2"]),
         protocolViewerEntries: (() => {
           const entries = [];
           const pvV2Address = pickAddress(sc, ["ProtocolViewerV2"]);
@@ -399,11 +389,6 @@ function getContracts(chainId, env = "production") {
           if (pvV2Address && pvV2Abi) {
             entries.push({ address: pvV2Address, abi: pvV2Abi });
           }
-          const pvV1Address = pickAddress(sc, ["ProtocolViewer"]);
-          const pvV1Abi = ProtocolViewerBaseStaging__default.default;
-          if (pvV1Address && !addressesEqual(pvV1Address, pvV2Address) && pvV1Abi) {
-            entries.push({ address: pvV1Address, abi: pvV1Abi });
-          }
           return entries.length > 0 ? entries : void 0;
         })(),
         usdc: baseStagingConstants.USDC,
@@ -416,12 +401,11 @@ function getContracts(chainId, env = "production") {
       },
       abis: {
         escrow: EscrowBaseStaging__default.default,
-        escrowV2: addressesEqual(stagingEscrowCurrent, pickAddress(sc, ["Escrow"])) ? EscrowBaseStaging__default.default : pickAbi(baseStagingAbisRaw__namespace, ["EscrowV2"]) ?? EscrowBaseStaging__default.default,
+        escrowV2: pickAbi(baseStagingAbisRaw__namespace, [
+          "EscrowV2"
+        ]) ?? EscrowBaseStaging__default.default,
         orchestrator: OrchestratorBaseStaging__default.default,
-        orchestratorV2: addressesEqual(
-          stagingOrchestratorCurrent,
-          pickAddress(sc, ["Orchestrator"])
-        ) ? OrchestratorBaseStaging__default.default : pickAbi(baseStagingAbisRaw__namespace, [
+        orchestratorV2: pickAbi(baseStagingAbisRaw__namespace, [
           "OrchestratorV2"
         ]) ?? OrchestratorBaseStaging__default.default,
         unifiedPaymentVerifier: pickAbi(baseStagingAbisRaw__namespace, [
@@ -1527,6 +1511,34 @@ async function apiCreatePaymentAttestation(payload, attestationServiceUrl, platf
     return res.json();
   });
 }
+async function apiCreateSellerCredentialBundle(payload, attestationServiceUrl, platform, timeoutMs) {
+  return withRetry(
+    async () => {
+      let res;
+      try {
+        const endpoint = `/seller/credentials/${encodeURIComponent(platform)}`;
+        res = await fetch(`${attestationServiceUrl}${endpoint}`, {
+          method: "POST",
+          headers: headers(),
+          body: JSON.stringify(payload)
+        });
+      } catch (error) {
+        throw new exports.NetworkError("Failed to connect to Attestation Service", {
+          endpoint: `/seller/credentials/${platform}`,
+          error
+        });
+      }
+      if (!res.ok) {
+        const errorText = await res.text();
+        throw parseAPIError(res, errorText);
+      }
+      return res.json();
+    },
+    3,
+    1e3,
+    timeoutMs
+  );
+}
 var abiCoder = ethers.AbiCoder.defaultAbiCoder();
 function encodeVerifyPaymentData(params) {
   return abiCoder.encode(
@@ -1670,6 +1682,9 @@ var PAYMENT_PLATFORMS = [
   "n26"
 ];
 
+// src/utils/constants.ts
+var DEFAULT_BASE_API_URL = "https://api.zkp2p.xyz";
+
 // src/utils/oracles.ts
 init_currency();
 var ZERO_ADDRESS3 = "0x0000000000000000000000000000000000000000";
@@ -1916,6 +1931,13 @@ var IntentOperations = class {
       orchestratorAddress: params.orchestratorAddress,
       escrowAddress: escrowContext.address
     });
+    const currentEscrow = this.config.getEscrowV2Address();
+    const currentOrchestrator = this.config.getOrchestratorV2Address();
+    if (currentEscrow && escrowContext.address.toLowerCase() !== currentEscrow.toLowerCase() || currentOrchestrator && orchestratorContext.address.toLowerCase() !== currentOrchestrator.toLowerCase()) {
+      throw new Error(
+        "signalIntent is only supported on the current EscrowV2 / OrchestratorV2 deployment"
+      );
+    }
     const catalog = getPaymentMethodsCatalog(this.config.getChainId(), this.config.getRuntimeEnv());
     const paymentMethod = resolvePaymentMethodHashFromCatalog(params.processorName, catalog);
     const fiatCurrency = resolveFiatCurrencyBytes32(params.fiatCurrencyCode);
@@ -6088,6 +6110,78 @@ async function apiGetTakerTier(req, apiKey, baseApiUrl, timeoutMs) {
     timeoutMs
   });
 }
+async function apiUploadSellerCredential(makerId, bundle, baseApiUrl, timeoutMs, apiKey, authToken) {
+  return apiFetch({
+    url: `${withApiBase(baseApiUrl)}/v2/makers/${makerId}/seller-credential`,
+    method: "POST",
+    body: bundle,
+    apiKey,
+    authToken,
+    timeoutMs
+  });
+}
+async function apiGetSellerCredentialStatus(makerId, baseApiUrl, timeoutMs, apiKey, authToken) {
+  return apiFetch({
+    url: `${withApiBase(baseApiUrl)}/v2/makers/${makerId}/seller-credential/status`,
+    method: "GET",
+    apiKey,
+    authToken,
+    timeoutMs
+  });
+}
+async function apiVerifySellerPayment(platform, req, baseApiUrl, timeoutMs, apiKey, authToken) {
+  return apiFetch({
+    url: `${withApiBase(baseApiUrl)}/v2/verify/seller/${encodeURIComponent(platform)}`,
+    method: "POST",
+    body: req,
+    apiKey,
+    authToken,
+    timeoutMs
+  });
+}
+async function apiGetOrderbook(params, optsOrBaseApiUrl, timeoutMs, apiKey) {
+  const opts = typeof optsOrBaseApiUrl === "string" ? {
+    baseApiUrl: optsOrBaseApiUrl,
+    timeoutMs,
+    apiKey
+  } : optsOrBaseApiUrl;
+  const query = new URLSearchParams();
+  Object.entries(params).forEach(([key, value]) => {
+    if (value === void 0 || value === null) return;
+    query.set(key, String(value));
+  });
+  const response = await apiFetch({
+    url: `${withApiBase(opts.baseApiUrl)}/v2/orderbook?${query.toString()}`,
+    method: "GET",
+    apiKey: opts.apiKey,
+    authToken: opts.authToken,
+    timeoutMs: opts.timeoutMs
+  });
+  return response.responseObject;
+}
+async function apiGetDepositBundle(params, optsOrBaseApiUrl, timeoutMs, apiKey) {
+  const opts = typeof optsOrBaseApiUrl === "string" ? {
+    baseApiUrl: optsOrBaseApiUrl,
+    timeoutMs,
+    apiKey
+  } : optsOrBaseApiUrl;
+  const escrowAddress = requireEscrowAddress(
+    params.escrowAddress,
+    "apiGetDepositBundle requires escrowAddress"
+  );
+  const query = new URLSearchParams({ escrowAddress });
+  if (params.dailySnapshotLimit !== void 0) {
+    query.set("dailySnapshotLimit", String(params.dailySnapshotLimit));
+  }
+  const response = await apiFetch({
+    url: `${withApiBase(opts.baseApiUrl)}/v2/deposits/${params.depositId}/bundle?${query.toString()}`,
+    method: "GET",
+    apiKey: opts.apiKey,
+    authToken: opts.authToken,
+    timeoutMs: opts.timeoutMs
+  });
+  return response.responseObject;
+}
 
 // src/client/Zkp2pClient.ts
 init_contracts();
@@ -7303,6 +7397,7 @@ var Zkp2pClient = class {
       getProtocolViewerAbi: () => this.protocolViewerAbi,
       getIndexerClient: () => this._indexerClient,
       getIndexerService: () => this._indexerService,
+      getEscrowV2Address: () => this.escrowV2Address,
       getOrchestratorV2Address: () => this.orchestratorV2Address,
       host: {
         resolveEscrowContext: (options) => this.resolveEscrowContext(options),
@@ -7326,6 +7421,30 @@ var Zkp2pClient = class {
   parseRawDepositId(depositId) {
     return parseRawDepositId(depositId);
   }
+  stripTrailingSlash(url) {
+    return url.replace(/\/$/, "");
+  }
+  defaultAttestationServiceForBaseApiUrl(baseApiUrl) {
+    try {
+      const { hostname } = new URL(baseApiUrl);
+      if (hostname === "api-staging.zkp2p.xyz") {
+        return "https://attestation-service-staging.zkp2p.xyz";
+      }
+      if (hostname === "api-preprod.zkp2p.xyz") {
+        return "https://attestation-service.zkp2p.xyz";
+      }
+      if (hostname === "api.zkp2p.xyz") {
+        return "https://attestation-service.zkp2p.xyz";
+      }
+    } catch {
+    }
+    if (baseApiUrl === DEFAULT_BASE_API_URL) {
+      return "https://attestation-service.zkp2p.xyz";
+    }
+    throw new Error(
+      `attestationServiceUrl is required when baseApiUrl is not a supported zkp2p API host: ${baseApiUrl}`
+    );
+  }
   normalizeOracleRateConfig(config) {
     return normalizeOracleRateConfig(config);
   }
@@ -8519,7 +8638,7 @@ var Zkp2pClient = class {
     const timeoutMs = opts?.timeoutMs ?? this.apiTimeoutMs;
     const reqWithEscrow = { ...req };
     if (!reqWithEscrow.escrowAddresses || reqWithEscrow.escrowAddresses.length === 0) {
-      const configuredEscrows = this.escrowAddresses.length > 0 ? this.escrowAddresses.map((address) => address) : this.escrowAddress ? [this.escrowAddress] : [];
+      const configuredEscrows = this.escrowV2Address ? [this.escrowV2Address] : this.escrowAddress ? [this.escrowAddress] : [];
       if (configuredEscrows.length > 0) {
         reqWithEscrow.escrowAddresses = configuredEscrows;
       }
@@ -8563,7 +8682,7 @@ var Zkp2pClient = class {
     const timeoutMs = opts?.timeoutMs ?? this.apiTimeoutMs;
     const reqWithEscrow = { ...req };
     if (!reqWithEscrow.escrowAddresses || reqWithEscrow.escrowAddresses.length === 0) {
-      const configuredEscrows = this.escrowAddresses.length > 0 ? [...this.escrowAddresses] : this.escrowAddress ? [this.escrowAddress] : [];
+      const configuredEscrows = this.escrowV2Address ? [this.escrowV2Address] : this.escrowAddress ? [this.escrowAddress] : [];
       if (configuredEscrows.length > 0) {
         reqWithEscrow.escrowAddresses = configuredEscrows;
       }
@@ -8613,6 +8732,92 @@ var Zkp2pClient = class {
     const timeoutMs = opts?.timeoutMs ?? this.apiTimeoutMs;
     return apiGetTakerTier(req, void 0, baseApiUrl, timeoutMs);
   }
+  /**
+   * The signed `expiresAtMs` field is an upload-time freshness token minted by attestation-service.
+   * Once curator persists the bundle, seller-automated-release availability is governed by curator's
+   * probe/revalidation state rather than this timestamp.
+   *
+   * Curator accepts either a configured API key or bearer token for this endpoint.
+   *
+   * Create a signed seller credential bundle with attestation-service and store it on the maker via curator.
+   */
+  async uploadSellerCredential(params, opts) {
+    const baseApiUrl = this.stripTrailingSlash(
+      opts?.baseApiUrl ?? this.baseApiUrl ?? DEFAULT_BASE_API_URL
+    );
+    const timeoutMs = opts?.timeoutMs ?? this.apiTimeoutMs;
+    const attestationServiceUrl = this.stripTrailingSlash(
+      opts?.attestationServiceUrl ?? this.defaultAttestationServiceForBaseApiUrl(baseApiUrl)
+    );
+    const uploadPayload = {
+      payeeId: params.payeeId,
+      sessionMaterial: params.sessionMaterial
+    };
+    const bundleResponse = await apiCreateSellerCredentialBundle(
+      uploadPayload,
+      attestationServiceUrl,
+      params.platform,
+      timeoutMs
+    );
+    if (!bundleResponse.success || !bundleResponse.responseObject) {
+      throw new Error(bundleResponse.message || "Failed to create seller credential bundle");
+    }
+    return apiUploadSellerCredential(
+      params.makerId,
+      bundleResponse.responseObject,
+      baseApiUrl,
+      timeoutMs,
+      this.apiKey,
+      this.authorizationToken
+    );
+  }
+  /**
+   * Status is a coarse curator-owned signal (`active` / `inactive` / `missing`) and intentionally
+   * omits low-level diagnostics. Curator may still re-probe stale credentials during verify, so callers
+   * should continue to handle a 410 from `verifySellerPayment`.
+   *
+   * Curator accepts either a configured API key or bearer token for this endpoint.
+   *
+   * Fetch seller credential status for a maker from curator.
+   */
+  async getSellerCredentialStatus(params, opts) {
+    const baseApiUrl = this.stripTrailingSlash(
+      opts?.baseApiUrl ?? this.baseApiUrl ?? DEFAULT_BASE_API_URL
+    );
+    const timeoutMs = opts?.timeoutMs ?? this.apiTimeoutMs;
+    return apiGetSellerCredentialStatus(
+      params.makerId,
+      baseApiUrl,
+      timeoutMs,
+      this.apiKey,
+      this.authorizationToken
+    );
+  }
+  /**
+   * Internal-use endpoint. The curator route requires an internal `x-api-key`; standard SDK consumer
+   * API keys will be rejected with 401. Returns 410 GONE when curator has marked the credential inactive
+   * or a stale credential fails its synchronous re-probe.
+   *
+   * Verify a seller payment via curator's seller-credential proxy.
+   */
+  async verifySellerPayment(params, opts) {
+    const baseApiUrl = this.stripTrailingSlash(
+      opts?.baseApiUrl ?? this.baseApiUrl ?? DEFAULT_BASE_API_URL
+    );
+    const timeoutMs = opts?.timeoutMs ?? this.apiTimeoutMs;
+    return apiVerifySellerPayment(
+      params.platform,
+      {
+        txId: params.txId,
+        chainId: params.chainId,
+        intent: params.intent
+      },
+      baseApiUrl,
+      timeoutMs,
+      this.apiKey,
+      this.authorizationToken
+    );
+  }
   // ╔═══════════════════════════════════════════════════════════════════════════╗
   // ║ CORE: ON-CHAIN DEPOSIT VIEWS                                             ║
   // ╚═══════════════════════════════════════════════════════════════════════════╝
@@ -9039,6 +9244,8 @@ exports.ZERO_RATE_MANAGER_ID = ZERO_RATE_MANAGER_ID;
 exports.ZKP2P_ANDROID_REFERRER = ZKP2P_ANDROID_REFERRER;
 exports.ZKP2P_IOS_REFERRER = ZKP2P_IOS_REFERRER;
 exports.Zkp2pClient = Zkp2pClient;
+exports.apiGetDepositBundle = apiGetDepositBundle;
+exports.apiGetOrderbook = apiGetOrderbook;
 exports.apiGetOwnerDeposits = apiGetOwnerDeposits;
 exports.apiGetPayeeDetails = apiGetPayeeDetails;
 exports.apiGetQuotesBestByPlatform = apiGetQuotesBestByPlatform;