@zksdk/js-private-token-slots-fhe 0.1.2

package/dist/Client.d.ts

@@ -0,0 +1,92 @@
+/**
+ * Client for Private Token Slots
+ *
+ * Manages vault registration, key storage, and transfer operations.
+ */
+import { type VaultParams } from './vaultHelpers.js';
+/** Client configuration */
+export interface ClientConfig {
+    /** FHE Worker URL */
+    workerUrl: string;
+    /** Optional API key for authentication */
+    apiKey?: string;
+}
+/**
+ * Client - Main client for private token slot operations
+ *
+ * @example
+ * ```typescript
+ * import { Client } from '@zksdk/private-token-slots';
+ *
+ * const client = new Client({ workerUrl: 'http://localhost:8000' });
+ *
+ * // Create a new vault
+ * const { vaultKeyId, clientKey } = await client.createVault();
+ * // Save clientKey securely - you need it to decrypt!
+ *
+ * // Encrypt a transfer
+ * const encrypted = await client.encryptTransfer(0, 1, 50);
+ * ```
+ */
+export declare class Client {
+    private config;
+    private tfheClient;
+    private vaultKeyId;
+    private clientKeyB64;
+    constructor(config: ClientConfig);
+    /**
+     * Initialize the client
+     */
+    init(): Promise<void>;
+    /**
+     * Create a new vault with client-side key generation
+     *
+     * SECURITY: ClientKey stays on your machine!
+     */
+    createVault(): Promise<{
+        vaultKeyId: string;
+        clientKey: string;
+        serverKey: string;
+        publicKey: string;
+    }>;
+    /**
+     * Load an existing vault by ID
+     *
+     * @param vaultKeyId - 64-char hex vault key ID
+     * @param clientKeyB64 - Your saved ClientKey (for decryption)
+     */
+    loadVault(vaultKeyId: string, clientKeyB64?: string): Promise<VaultParams>;
+    /**
+     * Get current vault key ID
+     */
+    getVaultKeyId(): string | null;
+    /**
+     * Encrypt transfer parameters
+     *
+     * @param senderIdx - Sender's slot index (0-255)
+     * @param receiverIdx - Receiver's slot index (0-255)
+     * @param amount - Transfer amount (0-255)
+     */
+    encryptTransfer(senderIdx: number, receiverIdx: number, amount: number): {
+        encrypted_data: string;
+        vault_key_id: string;
+    };
+    /**
+     * Store encrypted balance blob
+     */
+    storeBalanceBlob(encryptedBlob: string): Promise<string>;
+    /**
+     * Fetch encrypted balance blob by CID
+     */
+    fetchBalanceBlob(cid: string): Promise<string>;
+    /**
+     * Decrypt CMUX token result
+     *
+     * Requires ClientKey - only vault owner can call this!
+     */
+    decryptResult(encryptedResultB64: string): {
+        balances: number[];
+        isValid: boolean;
+    };
+}
+//# sourceMappingURL=Client.d.ts.map

package/dist/Client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Client.d.ts","sourceRoot":"","sources":["../src/Client.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAML,KAAK,WAAW,EACjB,MAAM,mBAAmB,CAAC;AAE3B,2BAA2B;AAC3B,MAAM,WAAW,YAAY;IAC3B,qBAAqB;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,0CAA0C;IAC1C,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,qBAAa,MAAM;IACjB,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,UAAU,CAAuB;IACzC,OAAO,CAAC,YAAY,CAAuB;gBAE/B,MAAM,EAAE,YAAY;IAKhC;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAI3B;;;;OAIG;IACG,WAAW,IAAI,OAAO,CAAC;QAC3B,UAAU,EAAE,MAAM,CAAC;QACnB,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IA2BF;;;;;OAKG;IACG,SAAS,CAAC,UAAU,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAmBhF;;OAEG;IACH,aAAa,IAAI,MAAM,GAAG,IAAI;IAI9B;;;;;;OAMG;IACH,eAAe,CAAC,SAAS,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG;QACvE,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;KACtB;IAaD;;OAEG;IACG,gBAAgB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI9D;;OAEG;IACG,gBAAgB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIpD;;;;OAIG;IACH,aAAa,CAAC,kBAAkB,EAAE,MAAM,GAAG;QACzC,QAAQ,EAAE,MAAM,EAAE,CAAC;QACnB,OAAO,EAAE,OAAO,CAAC;KAClB;CAOF"}

package/dist/Client.js

@@ -0,0 +1,127 @@
+/**
+ * Client for Private Token Slots
+ *
+ * Manages vault registration, key storage, and transfer operations.
+ */
+import { TfheClient } from '@zksdk/core';
+import { registerVault, getVaultParams, storeData, fetchData, } from './vaultHelpers.js';
+/**
+ * Client - Main client for private token slot operations
+ *
+ * @example
+ * ```typescript
+ * import { Client } from '@zksdk/private-token-slots';
+ *
+ * const client = new Client({ workerUrl: 'http://localhost:8000' });
+ *
+ * // Create a new vault
+ * const { vaultKeyId, clientKey } = await client.createVault();
+ * // Save clientKey securely - you need it to decrypt!
+ *
+ * // Encrypt a transfer
+ * const encrypted = await client.encryptTransfer(0, 1, 50);
+ * ```
+ */
+export class Client {
+    constructor(config) {
+        this.vaultKeyId = null;
+        this.clientKeyB64 = null;
+        this.config = config;
+        this.tfheClient = new TfheClient();
+    }
+    /**
+     * Initialize the client
+     */
+    async init() {
+        await this.tfheClient.init();
+    }
+    /**
+     * Create a new vault with client-side key generation
+     *
+     * SECURITY: ClientKey stays on your machine!
+     */
+    async createVault() {
+        await this.init();
+        // Generate keys client-side
+        const keys = await this.tfheClient.generateVaultKeys();
+        // Register vault with worker (only server + public keys sent)
+        const registration = await registerVault(this.config.workerUrl, keys.serverKey, keys.publicKey, this.config.apiKey);
+        this.vaultKeyId = registration.vault_key_id;
+        this.clientKeyB64 = keys.clientKey;
+        console.log(`Vault created: ${registration.vault_key_id}`);
+        return {
+            vaultKeyId: registration.vault_key_id,
+            clientKey: keys.clientKey,
+            serverKey: keys.serverKey,
+            publicKey: keys.publicKey,
+        };
+    }
+    /**
+     * Load an existing vault by ID
+     *
+     * @param vaultKeyId - 64-char hex vault key ID
+     * @param clientKeyB64 - Your saved ClientKey (for decryption)
+     */
+    async loadVault(vaultKeyId, clientKeyB64) {
+        await this.init();
+        // Verify vault exists
+        const params = await getVaultParams(this.config.workerUrl, vaultKeyId);
+        this.vaultKeyId = vaultKeyId;
+        if (clientKeyB64) {
+            this.clientKeyB64 = clientKeyB64;
+            this.tfheClient.loadClientKey(clientKeyB64);
+        }
+        else {
+            // External user - load public key for encryption only
+            await this.tfheClient.loadVaultPublicKey(this.config.workerUrl, vaultKeyId);
+        }
+        return params;
+    }
+    /**
+     * Get current vault key ID
+     */
+    getVaultKeyId() {
+        return this.vaultKeyId;
+    }
+    /**
+     * Encrypt transfer parameters
+     *
+     * @param senderIdx - Sender's slot index (0-255)
+     * @param receiverIdx - Receiver's slot index (0-255)
+     * @param amount - Transfer amount (0-255)
+     */
+    encryptTransfer(senderIdx, receiverIdx, amount) {
+        if (!this.vaultKeyId) {
+            throw new Error('No vault loaded. Call createVault() or loadVault() first.');
+        }
+        const { encrypted_data } = this.tfheClient.encryptTransferParams(senderIdx, receiverIdx, amount);
+        return {
+            encrypted_data,
+            vault_key_id: this.vaultKeyId,
+        };
+    }
+    /**
+     * Store encrypted balance blob
+     */
+    async storeBalanceBlob(encryptedBlob) {
+        return storeData(this.config.workerUrl, encryptedBlob, this.config.apiKey);
+    }
+    /**
+     * Fetch encrypted balance blob by CID
+     */
+    async fetchBalanceBlob(cid) {
+        return fetchData(this.config.workerUrl, cid);
+    }
+    /**
+     * Decrypt CMUX token result
+     *
+     * Requires ClientKey - only vault owner can call this!
+     */
+    decryptResult(encryptedResultB64) {
+        if (!this.clientKeyB64) {
+            throw new Error('No ClientKey loaded. Only vault owner can decrypt.');
+        }
+        return this.tfheClient.decryptCmuxToken(encryptedResultB64);
+    }
+}
+//# sourceMappingURL=Client.js.map

package/dist/Client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Client.js","sourceRoot":"","sources":["../src/Client.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,UAAU,EAAkB,MAAM,aAAa,CAAC;AACzD,OAAO,EACL,aAAa,EACb,cAAc,EAEd,SAAS,EACT,SAAS,GAEV,MAAM,mBAAmB,CAAC;AAU3B;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,OAAO,MAAM;IAMjB,YAAY,MAAoB;QAHxB,eAAU,GAAkB,IAAI,CAAC;QACjC,iBAAY,GAAkB,IAAI,CAAC;QAGzC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,UAAU,GAAG,IAAI,UAAU,EAAE,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI;QACR,MAAM,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;IAC/B,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,WAAW;QAMf,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;QAElB,4BAA4B;QAC5B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;QAEvD,8DAA8D;QAC9D,MAAM,YAAY,GAAG,MAAM,aAAa,CACtC,IAAI,CAAC,MAAM,CAAC,SAAS,EACrB,IAAI,CAAC,SAAS,EACd,IAAI,CAAC,SAAS,EACd,IAAI,CAAC,MAAM,CAAC,MAAM,CACnB,CAAC;QAEF,IAAI,CAAC,UAAU,GAAG,YAAY,CAAC,YAAY,CAAC;QAC5C,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC;QAEnC,OAAO,CAAC,GAAG,CAAC,kBAAkB,YAAY,CAAC,YAAY,EAAE,CAAC,CAAC;QAE3D,OAAO;YACL,UAAU,EAAE,YAAY,CAAC,YAAY;YACrC,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,SAAS,CAAC,UAAkB,EAAE,YAAqB;QACvD,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;QAElB,sBAAsB;QACtB,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QAEvE,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAE7B,IAAI,YAAY,EAAE,CAAC;YACjB,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;YACjC,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,YAAY,CAAC,CAAC;QAC9C,CAAC;aAAM,CAAC;YACN,sDAAsD;YACtD,MAAM,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QAC9E,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,aAAa;QACX,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED;;;;;;OAMG;IACH,eAAe,CAAC,SAAiB,EAAE,WAAmB,EAAE,MAAc;QAIpE,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,2DAA2D,CAAC,CAAC;QAC/E,CAAC;QAED,MAAM,EAAE,cAAc,EAAE,GAAG,IAAI,CAAC,UAAU,CAAC,qBAAqB,CAAC,SAAS,EAAE,WAAW,EAAE,MAAM,CAAC,CAAC;QAEjG,OAAO;YACL,cAAc;YACd,YAAY,EAAE,IAAI,CAAC,UAAU;SAC9B,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,aAAqB;QAC1C,OAAO,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,aAAa,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC7E,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,GAAW;QAChC,OAAO,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IAED;;;;OAIG;IACH,aAAa,CAAC,kBAA0B;QAItC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;QACxE,CAAC;QAED,OAAO,IAAI,CAAC,UAAU,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;IAC9D,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,27 @@
+/**
+ * @zksdk/private-token-slots - Vault management for private token transfers
+ *
+ * @example
+ * ```typescript
+ * import { SlotVaultClient } from '@zksdk/private-token-slots';
+ *
+ * const client = new SlotVaultClient({ workerUrl: 'http://localhost:8000' });
+ *
+ * // Create a vault
+ * const { vaultKeyId, clientKey } = await client.createVault();
+ * // IMPORTANT: Save clientKey securely!
+ *
+ * // Encrypt a transfer
+ * const encrypted = client.encryptTransfer(0, 1, 50);
+ * ```
+ */
+export { Client, type ClientConfig } from './Client.js';
+export { Client as SlotVaultClient } from './Client.js';
+export { registerVault, getVaultParams, getVaultPublicKey, vaultExists, storeData, fetchData, type VaultParams, } from './vaultHelpers.js';
+/** Circuit ID for private token slots */
+export declare const CIRCUIT_ID = "private_token_slots_v1";
+/** Legacy circuit ID (deprecated) */
+export declare const CIRCUIT_ID_LEGACY = "cmux_token_v1_linear";
+/** Package version */
+export declare const VERSION = "0.1.0";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,MAAM,EAAE,KAAK,YAAY,EAAE,MAAM,aAAa,CAAC;AAGxD,OAAO,EAAE,MAAM,IAAI,eAAe,EAAE,MAAM,aAAa,CAAC;AAExD,OAAO,EACL,aAAa,EACb,cAAc,EACd,iBAAiB,EACjB,WAAW,EACX,SAAS,EACT,SAAS,EACT,KAAK,WAAW,GACjB,MAAM,mBAAmB,CAAC;AAE3B,yCAAyC;AACzC,eAAO,MAAM,UAAU,2BAA2B,CAAC;AACnD,qCAAqC;AACrC,eAAO,MAAM,iBAAiB,yBAAyB,CAAC;AAExD,sBAAsB;AACtB,eAAO,MAAM,OAAO,UAAU,CAAC"}

package/dist/index.js

@@ -0,0 +1,28 @@
+/**
+ * @zksdk/private-token-slots - Vault management for private token transfers
+ *
+ * @example
+ * ```typescript
+ * import { SlotVaultClient } from '@zksdk/private-token-slots';
+ *
+ * const client = new SlotVaultClient({ workerUrl: 'http://localhost:8000' });
+ *
+ * // Create a vault
+ * const { vaultKeyId, clientKey } = await client.createVault();
+ * // IMPORTANT: Save clientKey securely!
+ *
+ * // Encrypt a transfer
+ * const encrypted = client.encryptTransfer(0, 1, 50);
+ * ```
+ */
+export { Client } from './Client.js';
+// Export SlotVaultClient as an alias for better developer experience
+export { Client as SlotVaultClient } from './Client.js';
+export { registerVault, getVaultParams, getVaultPublicKey, vaultExists, storeData, fetchData, } from './vaultHelpers.js';
+/** Circuit ID for private token slots */
+export const CIRCUIT_ID = 'private_token_slots_v1';
+/** Legacy circuit ID (deprecated) */
+export const CIRCUIT_ID_LEGACY = 'cmux_token_v1_linear';
+/** Package version */
+export const VERSION = '0.1.0';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,MAAM,EAAqB,MAAM,aAAa,CAAC;AAExD,qEAAqE;AACrE,OAAO,EAAE,MAAM,IAAI,eAAe,EAAE,MAAM,aAAa,CAAC;AAExD,OAAO,EACL,aAAa,EACb,cAAc,EACd,iBAAiB,EACjB,WAAW,EACX,SAAS,EACT,SAAS,GAEV,MAAM,mBAAmB,CAAC;AAE3B,yCAAyC;AACzC,MAAM,CAAC,MAAM,UAAU,GAAG,wBAAwB,CAAC;AACnD,qCAAqC;AACrC,MAAM,CAAC,MAAM,iBAAiB,GAAG,sBAAsB,CAAC;AAExD,sBAAsB;AACtB,MAAM,CAAC,MAAM,OAAO,GAAG,OAAO,CAAC"}

package/dist/vaultHelpers.d.ts

@@ -0,0 +1,62 @@
+/**
+ * Vault Helper Functions for Private Token Slots
+ *
+ * These functions interact with the FHE Worker API to manage vaults.
+ */
+import type { VaultRegistration } from '@zksdk/core';
+/** Vault parameters returned from worker */
+export interface VaultParams {
+    vault_key_id: string;
+    num_slots: number;
+    created_at: string;
+}
+/** Options for vault registration */
+export interface RegisterVaultOptions {
+    workerUrl: string;
+    serverKeyB64: string;
+    publicKeyB64: string;
+    numSlots?: number;
+    apiKey?: string;
+}
+/**
+ * Register a new vault with the FHE worker
+ *
+ * SECURITY: Only ServerKey and PublicKey are sent.
+ * ClientKey stays on your machine!
+ *
+ * @param options - Registration options
+ * @param options.workerUrl - FHE Worker base URL
+ * @param options.serverKeyB64 - Base64 encoded ServerKey
+ * @param options.publicKeyB64 - Base64 encoded PublicKey
+ * @param options.numSlots - Number of balance slots (1-256, default 32)
+ * @param options.apiKey - Optional API key for authentication
+ */
+export declare function registerVault(options: RegisterVaultOptions): Promise<VaultRegistration>;
+/**
+ * Register a new vault with the FHE worker (legacy signature)
+ * @deprecated Use options object signature instead
+ */
+export declare function registerVault(workerUrl: string, serverKeyB64: string, publicKeyB64: string, apiKey?: string): Promise<VaultRegistration>;
+/**
+ * Get vault parameters
+ */
+export declare function getVaultParams(workerUrl: string, vaultKeyId: string): Promise<VaultParams>;
+/**
+ * Get vault's public key for encryption
+ */
+export declare function getVaultPublicKey(workerUrl: string, vaultKeyId: string): Promise<string>;
+/**
+ * Check if vault exists
+ */
+export declare function vaultExists(workerUrl: string, vaultKeyId: string): Promise<boolean>;
+/**
+ * Store encrypted data in worker storage
+ *
+ * @returns CID (content identifier) for retrieval
+ */
+export declare function storeData(workerUrl: string, data: string, apiKey?: string): Promise<string>;
+/**
+ * Fetch encrypted data by CID
+ */
+export declare function fetchData(workerUrl: string, cid: string): Promise<string>;
+//# sourceMappingURL=vaultHelpers.d.ts.map

package/dist/vaultHelpers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vaultHelpers.d.ts","sourceRoot":"","sources":["../src/vaultHelpers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAErD,4CAA4C;AAC5C,MAAM,WAAW,WAAW;IAC1B,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,qCAAqC;AACrC,MAAM,WAAW,oBAAoB;IACnC,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;;;;;;;GAYG;AACH,wBAAsB,aAAa,CAAC,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAC/F;;;GAGG;AACH,wBAAsB,aAAa,CACjC,SAAS,EAAE,MAAM,EACjB,YAAY,EAAE,MAAM,EACpB,YAAY,EAAE,MAAM,EACpB,MAAM,CAAC,EAAE,MAAM,GACd,OAAO,CAAC,iBAAiB,CAAC,CAAC;AA4C9B;;GAEG;AACH,wBAAsB,cAAc,CAClC,SAAS,EAAE,MAAM,EACjB,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,WAAW,CAAC,CAStB;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CACrC,SAAS,EAAE,MAAM,EACjB,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,MAAM,CAAC,CAUjB;AAED;;GAEG;AACH,wBAAsB,WAAW,CAC/B,SAAS,EAAE,MAAM,EACjB,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,OAAO,CAAC,CAOlB;AAED;;;;GAIG;AACH,wBAAsB,SAAS,CAC7B,SAAS,EAAE,MAAM,EACjB,IAAI,EAAE,MAAM,EACZ,MAAM,CAAC,EAAE,MAAM,GACd,OAAO,CAAC,MAAM,CAAC,CAsBjB;AAED;;GAEG;AACH,wBAAsB,SAAS,CAC7B,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,GACV,OAAO,CAAC,MAAM,CAAC,CAUjB"}

package/dist/vaultHelpers.js

@@ -0,0 +1,108 @@
+/**
+ * Vault Helper Functions for Private Token Slots
+ *
+ * These functions interact with the FHE Worker API to manage vaults.
+ */
+export async function registerVault(optionsOrWorkerUrl, serverKeyB64, publicKeyB64, apiKey) {
+    // Normalize to options object
+    const options = typeof optionsOrWorkerUrl === 'string'
+        ? {
+            workerUrl: optionsOrWorkerUrl,
+            serverKeyB64: serverKeyB64,
+            publicKeyB64: publicKeyB64,
+            apiKey,
+        }
+        : optionsOrWorkerUrl;
+    const headers = {
+        'Content-Type': 'application/json',
+    };
+    if (options.apiKey) {
+        headers['X-API-Key'] = options.apiKey;
+    }
+    const response = await fetch(`${options.workerUrl}/api/v1/vault/register`, {
+        method: 'POST',
+        headers,
+        body: JSON.stringify({
+            server_key: options.serverKeyB64,
+            public_key: options.publicKeyB64,
+            num_slots: options.numSlots,
+        }),
+    });
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to register vault: ${error}`);
+    }
+    return response.json();
+}
+/**
+ * Get vault parameters
+ */
+export async function getVaultParams(workerUrl, vaultKeyId) {
+    const response = await fetch(`${workerUrl}/api/v1/vault/${vaultKeyId}`);
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to get vault params: ${error}`);
+    }
+    return response.json();
+}
+/**
+ * Get vault's public key for encryption
+ */
+export async function getVaultPublicKey(workerUrl, vaultKeyId) {
+    const response = await fetch(`${workerUrl}/api/v1/vault/${vaultKeyId}/public-key`);
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to get vault public key: ${error}`);
+    }
+    const data = await response.json();
+    return data.public_key;
+}
+/**
+ * Check if vault exists
+ */
+export async function vaultExists(workerUrl, vaultKeyId) {
+    try {
+        const response = await fetch(`${workerUrl}/api/v1/vault/${vaultKeyId}`);
+        return response.ok;
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Store encrypted data in worker storage
+ *
+ * @returns CID (content identifier) for retrieval
+ */
+export async function storeData(workerUrl, data, apiKey) {
+    const headers = {
+        'Content-Type': 'application/json',
+    };
+    if (apiKey) {
+        headers['X-API-Key'] = apiKey;
+    }
+    const response = await fetch(`${workerUrl}/api/v1/storage`, {
+        method: 'POST',
+        headers,
+        body: JSON.stringify({ data }),
+    });
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to store data: ${error}`);
+    }
+    const result = await response.json();
+    return result.cid;
+}
+/**
+ * Fetch encrypted data by CID
+ */
+export async function fetchData(workerUrl, cid) {
+    const response = await fetch(`${workerUrl}/api/v1/storage/${cid}`);
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to fetch data: ${error}`);
+    }
+    const result = await response.json();
+    return result.data;
+}
+//# sourceMappingURL=vaultHelpers.js.map

package/dist/vaultHelpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vaultHelpers.js","sourceRoot":"","sources":["../src/vaultHelpers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AA4CH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,kBAAiD,EACjD,YAAqB,EACrB,YAAqB,EACrB,MAAe;IAEf,8BAA8B;IAC9B,MAAM,OAAO,GACX,OAAO,kBAAkB,KAAK,QAAQ;QACpC,CAAC,CAAC;YACE,SAAS,EAAE,kBAAkB;YAC7B,YAAY,EAAE,YAAa;YAC3B,YAAY,EAAE,YAAa;YAC3B,MAAM;SACP;QACH,CAAC,CAAC,kBAAkB,CAAC;IAEzB,MAAM,OAAO,GAA2B;QACtC,cAAc,EAAE,kBAAkB;KACnC,CAAC;IAEF,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;QACnB,OAAO,CAAC,WAAW,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC;IACxC,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,CAAC,SAAS,wBAAwB,EAAE;QACzE,MAAM,EAAE,MAAM;QACd,OAAO;QACP,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,UAAU,EAAE,OAAO,CAAC,YAAY;YAChC,UAAU,EAAE,OAAO,CAAC,YAAY;YAChC,SAAS,EAAE,OAAO,CAAC,QAAQ;SAC5B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,6BAA6B,KAAK,EAAE,CAAC,CAAC;IACxD,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,SAAiB,EACjB,UAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,iBAAiB,UAAU,EAAE,CAAC,CAAC;IAExE,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;IAC1D,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,SAAiB,EACjB,UAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,iBAAiB,UAAU,aAAa,CAAC,CAAC;IAEnF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,mCAAmC,KAAK,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,OAAO,IAAI,CAAC,UAAU,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,SAAiB,EACjB,UAAkB;IAElB,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,iBAAiB,UAAU,EAAE,CAAC,CAAC;QACxE,OAAO,QAAQ,CAAC,EAAE,CAAC;IACrB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,SAAiB,EACjB,IAAY,EACZ,MAAe;IAEf,MAAM,OAAO,GAA2B;QACtC,cAAc,EAAE,kBAAkB;KACnC,CAAC;IAEF,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,CAAC,WAAW,CAAC,GAAG,MAAM,CAAC;IAChC,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,iBAAiB,EAAE;QAC1D,MAAM,EAAE,MAAM;QACd,OAAO;QACP,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC;KAC/B,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,yBAAyB,KAAK,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACrC,OAAO,MAAM,CAAC,GAAG,CAAC;AACpB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,SAAiB,EACjB,GAAW;IAEX,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,SAAS,mBAAmB,GAAG,EAAE,CAAC,CAAC;IAEnE,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,yBAAyB,KAAK,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACrC,OAAO,MAAM,CAAC,IAAI,CAAC;AACrB,CAAC"}

package/package.json

@@ -0,0 +1,42 @@
+{
+  "name": "@zksdk/js-private-token-slots-fhe",
+  "version": "0.1.2",
+  "description": "ZKSDK Private Token Slots (FHE) - FHE-powered vault management for private token transfers",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "clean": "rm -rf dist",
+    "prepublishOnly": "npm run build"
+  },
+  "publishConfig": {
+    "access": "public",
+    "registry": "https://registry.npmjs.org/"
+  },
+  "dependencies": {
+    "@zksdk/core": "^0.1.1"
+  },
+  "keywords": [
+    "zksdk",
+    "privacy",
+    "fhe",
+    "token",
+    "vault",
+    "slots"
+  ],
+  "license": "MIT",
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.3.0"
+  }
+}