@zyfai/sdk 0.1.7 → 0.1.9

package/README.md

@@ -85,6 +85,7 @@ await sdk.deploySafe(userAddress, 42161);
 ```
 
 **Note:**
+
 - When using a wallet provider, the SDK automatically detects the chain from the provider. You can optionally specify `chainId` to override.
 - The SDK automatically performs SIWE authentication when connecting, so you don't need to call any additional authentication methods.
 
@@ -99,6 +100,7 @@ console.log("Account disconnected and authentication cleared");
 ```
 
 This method:
+
 - Clears the wallet connection
 - Resets authentication state
 - Clears the JWT token
@@ -124,7 +126,7 @@ const result = await sdk.deploySafe(userAddress, 42161);
 if (result.success) {
   console.log("Safe Address:", result.safeAddress);
   console.log("Status:", result.status); // 'deployed' | 'failed'
-  
+
   if (result.alreadyDeployed) {
     console.log("Safe was already deployed - no action needed");
   } else {
@@ -195,6 +197,7 @@ Connect account for signing transactions and authenticate via SIWE. Accepts eith
 **Returns:** Connected wallet address
 
 **Automatic Actions:**
+
 - Connects the wallet
 - Authenticates via SIWE (Sign-In with Ethereum)
 - Stores JWT token for authenticated endpoints
@@ -217,6 +220,7 @@ Disconnect account and clear all authentication state.
 **Returns:** Promise that resolves when disconnection is complete
 
 **Actions:**
+
 - Clears wallet connection
 - Resets authentication state
 - Clears JWT token
@@ -267,6 +271,25 @@ Deploy a Safe smart wallet for a user.
 }
 ```
 
+##### `addWalletToSdk(walletAddress: string): Promise<AddWalletToSdkResponse>`
+
+Add a wallet address to the SDK API key's allowedWallets list. This endpoint requires SDK API key authentication (API key starting with "zyfai\_").
+
+**Parameters:**
+
+- `walletAddress`: Wallet address to add to the allowed list
+
+**Returns:**
+
+```typescript
+{
+  success: boolean;
+  message: string; // Status message
+}
+```
+
+**Note**: This method is only available when using an SDK API key (starts with "zyfai\_"). Regular API keys cannot use this endpoint.
+
 ### 3. Session Keys
 
 Session keys enable delegated transaction execution without exposing the main private key.
@@ -354,6 +377,7 @@ if (result.success) {
 ```
 
 **Important Notes:**
+
 - Amount must be in least decimal units. For USDC (6 decimals): 1 USDC = 1000000
 - The SDK authenticates via SIWE before calling the withdrawal endpoints
 - Withdrawals are processed asynchronously - the `txHash` may not be immediately available
@@ -519,7 +543,20 @@ console.log("Tier:", frequency.tier);
 console.log("Max rebalances/day:", frequency.frequency);
 ```
 
-### 12. Portfolio (Premium)
+### 12. SDK API Key Management
+
+#### Add Wallet to SDK API Key
+
+Add a wallet address to the SDK API key's allowedWallets list. This endpoint requires SDK API key authentication (API key starting with "zyfai\_").
+
+```typescript
+const result = await sdk.addWalletToSdk("0x1234...");
+console.log(result.message); // "Wallet successfully added to allowed list"
+```
+
+**Note**: This method is only available when using an SDK API key (starts with "zyfai\_"). Regular API keys cannot use this endpoint.
+
+### 13. Portfolio (Premium)
 
 #### Get Debank Portfolio (Multi-chain)
 
@@ -781,10 +818,12 @@ Check that the chain ID is in the supported chains list: Arbitrum (42161), Base
 ### SIWE Authentication Issues in Browser
 
 The SDK automatically performs SIWE authentication when you call `connectAccount()`. The SDK automatically detects browser vs Node.js environments:
+
 - **Browser**: Uses `window.location.origin` for the SIWE message domain/uri to match the browser's automatic `Origin` header
 - **Node.js**: Uses the API endpoint URL
 
 If you encounter SIWE authentication failures in a browser, ensure:
+
 1. Your frontend origin is allowed by the API's CORS configuration
 2. You're using the correct `environment` setting (`staging` or `production`)
 3. The user approves the SIWE signature request in their wallet
@@ -796,6 +835,7 @@ If `createSessionKey` returns `{ alreadyActive: true }`, the user already has an
 ### Withdrawal Transaction Hash Not Available
 
 If `withdrawFunds` returns without a `txHash`, the withdrawal is being processed asynchronously by the backend. You can:
+
 1. Check the `message` field for status information
 2. Use `getHistory()` to track when the withdrawal transaction is processed
 3. The transaction will appear in the history once it's been executed

package/dist/index.d.mts

@@ -352,6 +352,10 @@ interface WithdrawResponse {
     receiver: string;
     status: "pending" | "confirmed" | "failed";
 }
+interface AddWalletToSdkResponse {
+    success: boolean;
+    message: string;
+}
 interface PolicyData {
     policy: Address;
     initData: Hex;
@@ -437,6 +441,21 @@ declare class ZyfaiSDK {
      * ```
      */
     updateUserProfile(request: UpdateUserProfileRequest): Promise<UpdateUserProfileResponse>;
+    /**
+     * Initialize user after Safe deployment
+     * This method is automatically called after deploySafe to initialize user state
+     *
+     * @param smartWallet - Safe smart wallet address
+     * @param chainId - Target chain ID
+     * @returns Initialization response
+     *
+     * @example
+     * ```typescript
+     * await sdk.initializeUser("0x1396730...", 8453);
+     * ```
+     * @internal
+     */
+    private initializeUser;
     /**
      * Handle account changes from wallet provider
      * Resets authentication state when wallet is switched
@@ -515,6 +534,14 @@ declare class ZyfaiSDK {
      * @private
      */
     private signSessionKey;
+    /**
+     * Update user protocols with available protocols from the chain
+     * This method is automatically called before activating session key
+     *
+     * @param chainId - Target chain ID
+     * @internal
+     */
+    private updateUserProtocols;
     /**
      * Activate session key via ZyFAI API
      */
@@ -829,6 +856,21 @@ declare class ZyfaiSDK {
      * ```
      */
     getRebalanceFrequency(walletAddress: string): Promise<RebalanceFrequencyResponse>;
+    /**
+     * Add wallet to SDK API key allowedWallets list
+     * Adds a wallet address to the SDK API key's allowedWallets list.
+     * This endpoint requires SDK API key authentication (API key starting with "zyfai_").
+     *
+     * @param walletAddress - Wallet address to add to the allowed list
+     * @returns Response indicating success and status message
+     *
+     * @example
+     * ```typescript
+     * const result = await sdk.addWalletToSdk("0x1234...");
+     * console.log(result.message); // "Wallet successfully added to allowed list"
+     * ```
+     */
+    addWalletToSdk(walletAddress: string): Promise<AddWalletToSdkResponse>;
 }
 
-export { type ActionData, type ActiveWallet, type ActiveWalletsResponse, type Address, type ChainConfig, type ChainPortfolio, type DailyApyEntry, type DailyApyHistoryResponse, type DailyEarning, type DailyEarningsResponse, type DebankPortfolioResponse, type DeploySafeResponse, type DepositResponse, type ERC7739Context, type ERC7739Data, type Environment, type FirstTopupResponse, type Hex, type HistoryEntry, type HistoryPosition, type HistoryResponse, type OnchainEarnings, type OnchainEarningsResponse, type OpportunitiesResponse, type Opportunity, type PolicyData, type Pool, type PortfolioToken, type Position, type PositionSlot, type PositionsResponse, type Protocol, type ProtocolsResponse, type RebalanceFrequencyResponse, type RebalanceInfo, type RebalanceInfoResponse, type SDKConfig, type Session, type SessionKeyResponse, type SmartWalletByEOAResponse, type SmartWalletResponse, type SupportedChainId, type TVLResponse, type UserDetails, type UserDetailsResponse, type VolumeResponse, type WithdrawResponse, ZyfaiSDK, getChainConfig, getSupportedChainIds, isSupportedChain };
+export { type ActionData, type ActiveWallet, type ActiveWalletsResponse, type AddWalletToSdkResponse, type Address, type ChainConfig, type ChainPortfolio, type DailyApyEntry, type DailyApyHistoryResponse, type DailyEarning, type DailyEarningsResponse, type DebankPortfolioResponse, type DeploySafeResponse, type DepositResponse, type ERC7739Context, type ERC7739Data, type Environment, type FirstTopupResponse, type Hex, type HistoryEntry, type HistoryPosition, type HistoryResponse, type OnchainEarnings, type OnchainEarningsResponse, type OpportunitiesResponse, type Opportunity, type PolicyData, type Pool, type PortfolioToken, type Position, type PositionSlot, type PositionsResponse, type Protocol, type ProtocolsResponse, type RebalanceFrequencyResponse, type RebalanceInfo, type RebalanceInfoResponse, type SDKConfig, type Session, type SessionKeyResponse, type SmartWalletByEOAResponse, type SmartWalletResponse, type SupportedChainId, type TVLResponse, type UserDetails, type UserDetailsResponse, type VolumeResponse, type WithdrawResponse, ZyfaiSDK, getChainConfig, getSupportedChainIds, isSupportedChain };

package/dist/index.d.ts

@@ -352,6 +352,10 @@ interface WithdrawResponse {
     receiver: string;
     status: "pending" | "confirmed" | "failed";
 }
+interface AddWalletToSdkResponse {
+    success: boolean;
+    message: string;
+}
 interface PolicyData {
     policy: Address;
     initData: Hex;
@@ -437,6 +441,21 @@ declare class ZyfaiSDK {
      * ```
      */
     updateUserProfile(request: UpdateUserProfileRequest): Promise<UpdateUserProfileResponse>;
+    /**
+     * Initialize user after Safe deployment
+     * This method is automatically called after deploySafe to initialize user state
+     *
+     * @param smartWallet - Safe smart wallet address
+     * @param chainId - Target chain ID
+     * @returns Initialization response
+     *
+     * @example
+     * ```typescript
+     * await sdk.initializeUser("0x1396730...", 8453);
+     * ```
+     * @internal
+     */
+    private initializeUser;
     /**
      * Handle account changes from wallet provider
      * Resets authentication state when wallet is switched
@@ -515,6 +534,14 @@ declare class ZyfaiSDK {
      * @private
      */
     private signSessionKey;
+    /**
+     * Update user protocols with available protocols from the chain
+     * This method is automatically called before activating session key
+     *
+     * @param chainId - Target chain ID
+     * @internal
+     */
+    private updateUserProtocols;
     /**
      * Activate session key via ZyFAI API
      */
@@ -829,6 +856,21 @@ declare class ZyfaiSDK {
      * ```
      */
     getRebalanceFrequency(walletAddress: string): Promise<RebalanceFrequencyResponse>;
+    /**
+     * Add wallet to SDK API key allowedWallets list
+     * Adds a wallet address to the SDK API key's allowedWallets list.
+     * This endpoint requires SDK API key authentication (API key starting with "zyfai_").
+     *
+     * @param walletAddress - Wallet address to add to the allowed list
+     * @returns Response indicating success and status message
+     *
+     * @example
+     * ```typescript
+     * const result = await sdk.addWalletToSdk("0x1234...");
+     * console.log(result.message); // "Wallet successfully added to allowed list"
+     * ```
+     */
+    addWalletToSdk(walletAddress: string): Promise<AddWalletToSdkResponse>;
 }
 
-export { type ActionData, type ActiveWallet, type ActiveWalletsResponse, type Address, type ChainConfig, type ChainPortfolio, type DailyApyEntry, type DailyApyHistoryResponse, type DailyEarning, type DailyEarningsResponse, type DebankPortfolioResponse, type DeploySafeResponse, type DepositResponse, type ERC7739Context, type ERC7739Data, type Environment, type FirstTopupResponse, type Hex, type HistoryEntry, type HistoryPosition, type HistoryResponse, type OnchainEarnings, type OnchainEarningsResponse, type OpportunitiesResponse, type Opportunity, type PolicyData, type Pool, type PortfolioToken, type Position, type PositionSlot, type PositionsResponse, type Protocol, type ProtocolsResponse, type RebalanceFrequencyResponse, type RebalanceInfo, type RebalanceInfoResponse, type SDKConfig, type Session, type SessionKeyResponse, type SmartWalletByEOAResponse, type SmartWalletResponse, type SupportedChainId, type TVLResponse, type UserDetails, type UserDetailsResponse, type VolumeResponse, type WithdrawResponse, ZyfaiSDK, getChainConfig, getSupportedChainIds, isSupportedChain };
+export { type ActionData, type ActiveWallet, type ActiveWalletsResponse, type AddWalletToSdkResponse, type Address, type ChainConfig, type ChainPortfolio, type DailyApyEntry, type DailyApyHistoryResponse, type DailyEarning, type DailyEarningsResponse, type DebankPortfolioResponse, type DeploySafeResponse, type DepositResponse, type ERC7739Context, type ERC7739Data, type Environment, type FirstTopupResponse, type Hex, type HistoryEntry, type HistoryPosition, type HistoryResponse, type OnchainEarnings, type OnchainEarningsResponse, type OpportunitiesResponse, type Opportunity, type PolicyData, type Pool, type PortfolioToken, type Position, type PositionSlot, type PositionsResponse, type Protocol, type ProtocolsResponse, type RebalanceFrequencyResponse, type RebalanceInfo, type RebalanceInfoResponse, type SDKConfig, type Session, type SessionKeyResponse, type SmartWalletByEOAResponse, type SmartWalletResponse, type SupportedChainId, type TVLResponse, type UserDetails, type UserDetailsResponse, type VolumeResponse, type WithdrawResponse, ZyfaiSDK, getChainConfig, getSupportedChainIds, isSupportedChain };

package/dist/index.js

@@ -57,8 +57,10 @@ var ENDPOINTS = {
   AUTH_CHALLENGE: "/auth/challenge",
   // User
   USER_ME: "/users/me",
+  USER_INITIALIZE: "/users/initialize",
   USER_WITHDRAW: "/users/withdraw",
   PARTIAL_WITHDRAW: "/users/partial-withdraw",
+  USER_ADD_WALLET_TO_SDK: "/users/add-wallet-to-sdk",
   // Session Keys
   SESSION_KEYS_CONFIG: "/session-keys/config",
   SESSION_KEYS_ADD: "/session-keys/add",
@@ -428,13 +430,23 @@ var getSafeAccount = async (config) => {
     throw new Error("Wallet not connected. Please connect your wallet first.");
   }
   const signerAddress = owner.account.address;
-  if (safeOwnerAddress && safeOwnerAddress.toLowerCase() !== signerAddress.toLowerCase()) {
+  if (!signerAddress) {
+    throw new Error("Owner account address is required");
+  }
+  const effectiveOwnerAddress = safeOwnerAddress || signerAddress;
+  if (!effectiveOwnerAddress) {
+    throw new Error("Address is required");
+  }
+  const formattedEffectiveAddress = (0, import_viem3.getAddress)(effectiveOwnerAddress);
+  const isReadOnly = safeOwnerAddress && safeOwnerAddress.toLowerCase() !== signerAddress.toLowerCase();
+  if (!isReadOnly && safeOwnerAddress && safeOwnerAddress.toLowerCase() !== signerAddress.toLowerCase()) {
     throw new Error(
       `Connected wallet address (${signerAddress}) must match the Safe owner address (${safeOwnerAddress}). Please connect with the correct wallet.`
     );
   }
   const ownableValidator = (0, import_module_sdk.getOwnableValidator)({
-    owners: [signerAddress],
+    owners: [formattedEffectiveAddress],
+    // Use formatted effective owner address for validator
     threshold: 1
   });
   const saltHex = (0, import_viem3.fromHex)((0, import_viem3.toHex)(effectiveSalt), "bigint");
@@ -733,6 +745,41 @@ var ZyfaiSDK = class {
       );
     }
   }
+  /**
+   * Initialize user after Safe deployment
+   * This method is automatically called after deploySafe to initialize user state
+   *
+   * @param smartWallet - Safe smart wallet address
+   * @param chainId - Target chain ID
+   * @returns Initialization response
+   *
+   * @example
+   * ```typescript
+   * await sdk.initializeUser("0x1396730...", 8453);
+   * ```
+   * @internal
+   */
+  async initializeUser(smartWallet, chainId) {
+    try {
+      await this.authenticateUser();
+      const response = await this.httpClient.post(
+        ENDPOINTS.USER_INITIALIZE,
+        {
+          smartWallet,
+          chainId
+        }
+      );
+      return {
+        success: true,
+        userId: response.userId || response.id,
+        smartWallet: response.smartWallet,
+        chainId: response.chainId,
+        message: response.message
+      };
+    } catch (error) {
+      throw new Error(`Failed to initialize user: ${error.message}`);
+    }
+  }
   /**
    * Handle account changes from wallet provider
    * Resets authentication state when wallet is switched
@@ -912,8 +959,22 @@ var ZyfaiSDK = class {
     if (!isSupportedChain(chainId)) {
       throw new Error(`Unsupported chain ID: ${chainId}`);
     }
-    const walletClient = this.getWalletClient();
     const chainConfig = getChainConfig(chainId);
+    try {
+      const smartWalletInfo = await this.getSmartWalletByEOA(userAddress);
+      if (smartWalletInfo.smartWallet) {
+        const isDeployed2 = await isSafeDeployed(
+          smartWalletInfo.smartWallet,
+          chainConfig.publicClient
+        );
+        return {
+          address: smartWalletInfo.smartWallet,
+          isDeployed: isDeployed2
+        };
+      }
+    } catch {
+    }
+    const walletClient = this.getWalletClient(chainId);
     const safeAddress = await getDeterministicSafeAddress({
       owner: walletClient,
       safeOwnerAddress: userAddress,
@@ -1001,6 +1062,14 @@ var ZyfaiSDK = class {
           updateError.message
         );
       }
+      try {
+        await this.initializeUser(deploymentResult.safeAddress, chainId);
+      } catch (initError) {
+        console.warn(
+          "Failed to initialize user after Safe deployment:",
+          initError.message
+        );
+      }
       return {
         success: true,
         safeAddress: deploymentResult.safeAddress,
@@ -1061,6 +1130,7 @@ var ZyfaiSDK = class {
       if (!signatureResult.signature) {
         throw new Error("Failed to obtain session key signature");
       }
+      await this.updateUserProtocols(chainId);
       const activation = await this.activateSessionKey(
         signatureResult.signature,
         signatureResult.sessionNonces
@@ -1136,6 +1206,30 @@ var ZyfaiSDK = class {
       );
     }
   }
+  /**
+   * Update user protocols with available protocols from the chain
+   * This method is automatically called before activating session key
+   *
+   * @param chainId - Target chain ID
+   * @internal
+   */
+  async updateUserProtocols(chainId) {
+    try {
+      const protocolsResponse = await this.getAvailableProtocols(chainId);
+      if (!protocolsResponse.protocols || protocolsResponse.protocols.length === 0) {
+        console.warn(`No protocols available for chain ${chainId}`);
+        return;
+      }
+      const protocolIds = protocolsResponse.protocols.map((p) => p.id);
+      await this.updateUserProfile({
+        protocols: protocolIds
+      });
+    } catch (error) {
+      console.warn(
+        `Failed to update user protocols: ${error.message}`
+      );
+    }
+  }
   /**
    * Activate session key via ZyFAI API
    */
@@ -1280,15 +1374,32 @@ var ZyfaiSDK = class {
       if (!isSupportedChain(chainId)) {
         throw new Error(`Unsupported chain ID: ${chainId}`);
       }
-      const walletClient = this.getWalletClient();
       const chainConfig = getChainConfig(chainId);
-      const safeAddress = await getDeterministicSafeAddress({
-        owner: walletClient,
-        safeOwnerAddress: userAddress,
-        chain: chainConfig.chain,
-        publicClient: chainConfig.publicClient,
-        environment: this.environment
-      });
+      let safeAddress;
+      try {
+        const smartWalletInfo = await this.getSmartWalletByEOA(userAddress);
+        if (smartWalletInfo.smartWallet) {
+          safeAddress = smartWalletInfo.smartWallet;
+        } else {
+          const walletClient = this.getWalletClient();
+          safeAddress = await getDeterministicSafeAddress({
+            owner: walletClient,
+            safeOwnerAddress: userAddress,
+            chain: chainConfig.chain,
+            publicClient: chainConfig.publicClient,
+            environment: this.environment
+          });
+        }
+      } catch {
+        const walletClient = this.getWalletClient();
+        safeAddress = await getDeterministicSafeAddress({
+          owner: walletClient,
+          safeOwnerAddress: userAddress,
+          chain: chainConfig.chain,
+          publicClient: chainConfig.publicClient,
+          environment: this.environment
+        });
+      }
       const isDeployed = await isSafeDeployed(
         safeAddress,
         chainConfig.publicClient
@@ -1384,17 +1495,16 @@ var ZyfaiSDK = class {
       if (chainId && !isSupportedChain(chainId)) {
         throw new Error(`Unsupported chain ID: ${chainId}`);
       }
-      const walletClient = this.getWalletClient(chainId);
-      const chainConfig = getChainConfig(chainId ?? 8453);
-      const safeAddress = await getDeterministicSafeAddress({
-        owner: walletClient,
-        safeOwnerAddress: userAddress,
-        chain: chainConfig.chain,
-        publicClient: chainConfig.publicClient,
-        environment: this.environment
-      });
+      const smartWalletInfo = await this.getSmartWalletByEOA(userAddress);
+      if (!smartWalletInfo.smartWallet) {
+        return {
+          success: true,
+          userAddress,
+          positions: []
+        };
+      }
       const response = await this.httpClient.get(
-        ENDPOINTS.DATA_POSITION(safeAddress)
+        ENDPOINTS.DATA_POSITION(smartWalletInfo.smartWallet)
       );
       return {
         success: true,
@@ -2022,6 +2132,49 @@ var ZyfaiSDK = class {
       );
     }
   }
+  // ============================================================================
+  // SDK API Key Management
+  // ============================================================================
+  /**
+   * Add wallet to SDK API key allowedWallets list
+   * Adds a wallet address to the SDK API key's allowedWallets list.
+   * This endpoint requires SDK API key authentication (API key starting with "zyfai_").
+   *
+   * @param walletAddress - Wallet address to add to the allowed list
+   * @returns Response indicating success and status message
+   *
+   * @example
+   * ```typescript
+   * const result = await sdk.addWalletToSdk("0x1234...");
+   * console.log(result.message); // "Wallet successfully added to allowed list"
+   * ```
+   */
+  async addWalletToSdk(walletAddress) {
+    try {
+      if (!walletAddress) {
+        throw new Error("Wallet address is required");
+      }
+      try {
+        (0, import_viem4.getAddress)(walletAddress);
+      } catch {
+        throw new Error("Invalid wallet address format");
+      }
+      const response = await this.httpClient.post(
+        ENDPOINTS.USER_ADD_WALLET_TO_SDK,
+        {
+          walletAddress
+        }
+      );
+      return {
+        success: response.success ?? true,
+        message: response.message || "Wallet added successfully"
+      };
+    } catch (error) {
+      throw new Error(
+        `Failed to add wallet to SDK: ${error.message}`
+      );
+    }
+  }
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {

package/dist/index.mjs

@@ -18,8 +18,10 @@ var ENDPOINTS = {
   AUTH_CHALLENGE: "/auth/challenge",
   // User
   USER_ME: "/users/me",
+  USER_INITIALIZE: "/users/initialize",
   USER_WITHDRAW: "/users/withdraw",
   PARTIAL_WITHDRAW: "/users/partial-withdraw",
+  USER_ADD_WALLET_TO_SDK: "/users/add-wallet-to-sdk",
   // Session Keys
   SESSION_KEYS_CONFIG: "/session-keys/config",
   SESSION_KEYS_ADD: "/session-keys/add",
@@ -295,7 +297,7 @@ import {
   createWalletClient,
   custom,
   http as http3,
-  getAddress
+  getAddress as getAddress2
 } from "viem";
 
 // src/config/chains.ts
@@ -383,6 +385,7 @@ import { createPimlicoClient } from "permissionless/clients/pimlico";
 import { toSafeSmartAccount } from "permissionless/accounts";
 import {
   http as http2,
+  getAddress,
   fromHex,
   toHex
 } from "viem";
@@ -407,13 +410,23 @@ var getSafeAccount = async (config) => {
     throw new Error("Wallet not connected. Please connect your wallet first.");
   }
   const signerAddress = owner.account.address;
-  if (safeOwnerAddress && safeOwnerAddress.toLowerCase() !== signerAddress.toLowerCase()) {
+  if (!signerAddress) {
+    throw new Error("Owner account address is required");
+  }
+  const effectiveOwnerAddress = safeOwnerAddress || signerAddress;
+  if (!effectiveOwnerAddress) {
+    throw new Error("Address is required");
+  }
+  const formattedEffectiveAddress = getAddress(effectiveOwnerAddress);
+  const isReadOnly = safeOwnerAddress && safeOwnerAddress.toLowerCase() !== signerAddress.toLowerCase();
+  if (!isReadOnly && safeOwnerAddress && safeOwnerAddress.toLowerCase() !== signerAddress.toLowerCase()) {
     throw new Error(
       `Connected wallet address (${signerAddress}) must match the Safe owner address (${safeOwnerAddress}). Please connect with the correct wallet.`
     );
   }
   const ownableValidator = getOwnableValidator({
-    owners: [signerAddress],
+    owners: [formattedEffectiveAddress],
+    // Use formatted effective owner address for validator
     threshold: 1
   });
   const saltHex = fromHex(toHex(effectiveSalt), "bigint");
@@ -630,7 +643,7 @@ var ZyfaiSDK = class {
         return;
       }
       const walletClient = this.getWalletClient();
-      const userAddress = getAddress(walletClient.account.address);
+      const userAddress = getAddress2(walletClient.account.address);
       const chainId = walletClient.chain?.id || 8453;
       const challengeResponse = await this.httpClient.post(ENDPOINTS.AUTH_CHALLENGE, {});
       let uri;
@@ -712,6 +725,41 @@ var ZyfaiSDK = class {
       );
     }
   }
+  /**
+   * Initialize user after Safe deployment
+   * This method is automatically called after deploySafe to initialize user state
+   *
+   * @param smartWallet - Safe smart wallet address
+   * @param chainId - Target chain ID
+   * @returns Initialization response
+   *
+   * @example
+   * ```typescript
+   * await sdk.initializeUser("0x1396730...", 8453);
+   * ```
+   * @internal
+   */
+  async initializeUser(smartWallet, chainId) {
+    try {
+      await this.authenticateUser();
+      const response = await this.httpClient.post(
+        ENDPOINTS.USER_INITIALIZE,
+        {
+          smartWallet,
+          chainId
+        }
+      );
+      return {
+        success: true,
+        userId: response.userId || response.id,
+        smartWallet: response.smartWallet,
+        chainId: response.chainId,
+        message: response.message
+      };
+    } catch (error) {
+      throw new Error(`Failed to initialize user: ${error.message}`);
+    }
+  }
   /**
    * Handle account changes from wallet provider
    * Resets authentication state when wallet is switched
@@ -891,8 +939,22 @@ var ZyfaiSDK = class {
     if (!isSupportedChain(chainId)) {
       throw new Error(`Unsupported chain ID: ${chainId}`);
     }
-    const walletClient = this.getWalletClient();
     const chainConfig = getChainConfig(chainId);
+    try {
+      const smartWalletInfo = await this.getSmartWalletByEOA(userAddress);
+      if (smartWalletInfo.smartWallet) {
+        const isDeployed2 = await isSafeDeployed(
+          smartWalletInfo.smartWallet,
+          chainConfig.publicClient
+        );
+        return {
+          address: smartWalletInfo.smartWallet,
+          isDeployed: isDeployed2
+        };
+      }
+    } catch {
+    }
+    const walletClient = this.getWalletClient(chainId);
     const safeAddress = await getDeterministicSafeAddress({
       owner: walletClient,
       safeOwnerAddress: userAddress,
@@ -980,6 +1042,14 @@ var ZyfaiSDK = class {
           updateError.message
         );
       }
+      try {
+        await this.initializeUser(deploymentResult.safeAddress, chainId);
+      } catch (initError) {
+        console.warn(
+          "Failed to initialize user after Safe deployment:",
+          initError.message
+        );
+      }
       return {
         success: true,
         safeAddress: deploymentResult.safeAddress,
@@ -1040,6 +1110,7 @@ var ZyfaiSDK = class {
       if (!signatureResult.signature) {
         throw new Error("Failed to obtain session key signature");
       }
+      await this.updateUserProtocols(chainId);
       const activation = await this.activateSessionKey(
         signatureResult.signature,
         signatureResult.sessionNonces
@@ -1115,6 +1186,30 @@ var ZyfaiSDK = class {
       );
     }
   }
+  /**
+   * Update user protocols with available protocols from the chain
+   * This method is automatically called before activating session key
+   *
+   * @param chainId - Target chain ID
+   * @internal
+   */
+  async updateUserProtocols(chainId) {
+    try {
+      const protocolsResponse = await this.getAvailableProtocols(chainId);
+      if (!protocolsResponse.protocols || protocolsResponse.protocols.length === 0) {
+        console.warn(`No protocols available for chain ${chainId}`);
+        return;
+      }
+      const protocolIds = protocolsResponse.protocols.map((p) => p.id);
+      await this.updateUserProfile({
+        protocols: protocolIds
+      });
+    } catch (error) {
+      console.warn(
+        `Failed to update user protocols: ${error.message}`
+      );
+    }
+  }
   /**
    * Activate session key via ZyFAI API
    */
@@ -1259,15 +1354,32 @@ var ZyfaiSDK = class {
       if (!isSupportedChain(chainId)) {
         throw new Error(`Unsupported chain ID: ${chainId}`);
       }
-      const walletClient = this.getWalletClient();
       const chainConfig = getChainConfig(chainId);
-      const safeAddress = await getDeterministicSafeAddress({
-        owner: walletClient,
-        safeOwnerAddress: userAddress,
-        chain: chainConfig.chain,
-        publicClient: chainConfig.publicClient,
-        environment: this.environment
-      });
+      let safeAddress;
+      try {
+        const smartWalletInfo = await this.getSmartWalletByEOA(userAddress);
+        if (smartWalletInfo.smartWallet) {
+          safeAddress = smartWalletInfo.smartWallet;
+        } else {
+          const walletClient = this.getWalletClient();
+          safeAddress = await getDeterministicSafeAddress({
+            owner: walletClient,
+            safeOwnerAddress: userAddress,
+            chain: chainConfig.chain,
+            publicClient: chainConfig.publicClient,
+            environment: this.environment
+          });
+        }
+      } catch {
+        const walletClient = this.getWalletClient();
+        safeAddress = await getDeterministicSafeAddress({
+          owner: walletClient,
+          safeOwnerAddress: userAddress,
+          chain: chainConfig.chain,
+          publicClient: chainConfig.publicClient,
+          environment: this.environment
+        });
+      }
       const isDeployed = await isSafeDeployed(
         safeAddress,
         chainConfig.publicClient
@@ -1363,17 +1475,16 @@ var ZyfaiSDK = class {
       if (chainId && !isSupportedChain(chainId)) {
         throw new Error(`Unsupported chain ID: ${chainId}`);
       }
-      const walletClient = this.getWalletClient(chainId);
-      const chainConfig = getChainConfig(chainId ?? 8453);
-      const safeAddress = await getDeterministicSafeAddress({
-        owner: walletClient,
-        safeOwnerAddress: userAddress,
-        chain: chainConfig.chain,
-        publicClient: chainConfig.publicClient,
-        environment: this.environment
-      });
+      const smartWalletInfo = await this.getSmartWalletByEOA(userAddress);
+      if (!smartWalletInfo.smartWallet) {
+        return {
+          success: true,
+          userAddress,
+          positions: []
+        };
+      }
       const response = await this.httpClient.get(
-        ENDPOINTS.DATA_POSITION(safeAddress)
+        ENDPOINTS.DATA_POSITION(smartWalletInfo.smartWallet)
       );
       return {
         success: true,
@@ -2001,6 +2112,49 @@ var ZyfaiSDK = class {
       );
     }
   }
+  // ============================================================================
+  // SDK API Key Management
+  // ============================================================================
+  /**
+   * Add wallet to SDK API key allowedWallets list
+   * Adds a wallet address to the SDK API key's allowedWallets list.
+   * This endpoint requires SDK API key authentication (API key starting with "zyfai_").
+   *
+   * @param walletAddress - Wallet address to add to the allowed list
+   * @returns Response indicating success and status message
+   *
+   * @example
+   * ```typescript
+   * const result = await sdk.addWalletToSdk("0x1234...");
+   * console.log(result.message); // "Wallet successfully added to allowed list"
+   * ```
+   */
+  async addWalletToSdk(walletAddress) {
+    try {
+      if (!walletAddress) {
+        throw new Error("Wallet address is required");
+      }
+      try {
+        getAddress2(walletAddress);
+      } catch {
+        throw new Error("Invalid wallet address format");
+      }
+      const response = await this.httpClient.post(
+        ENDPOINTS.USER_ADD_WALLET_TO_SDK,
+        {
+          walletAddress
+        }
+      );
+      return {
+        success: response.success ?? true,
+        message: response.message || "Wallet added successfully"
+      };
+    } catch (error) {
+      throw new Error(
+        `Failed to add wallet to SDK: ${error.message}`
+      );
+    }
+  }
 };
 export {
   ZyfaiSDK,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zyfai/sdk",
-  "version": "0.1.7",
+  "version": "0.1.9",
   "description": "TypeScript SDK for ZyFAI Yield Optimization Engine - Deploy Safe smart wallets, manage session keys, and interact with DeFi protocols",
   "main": "dist/index.js",
   "module": "dist/index.mjs",