noah-avalanche-sdk 0.1.2

package/dist/issuer/IssuerClient.js

@@ -0,0 +1,159 @@
+import { ContractClient } from '../core/ContractClient';
+import { APIClient } from '../core/APIClient';
+/**
+ * IssuerClient - High-level API for credential issuers
+ *
+ * Provides a simple interface for issuers to:
+ * - Register credentials on-chain
+ * - Revoke credentials
+ * - Check credential status
+ *
+ * @example
+ * ```typescript
+ * import { IssuerClient } from '@noah-protocol/sdk';
+ * import { ethers } from 'ethers';
+ *
+ * const provider = new ethers.BrowserProvider(window.ethereum);
+ * const signer = await provider.getSigner();
+ * const issuer = new IssuerClient(signer, { apiBaseUrl: 'https://api.noah.xyz' });
+ *
+ * // Register credential
+ * await issuer.registerCredential(credentialHash, userAddress);
+ *
+ * // Revoke credential
+ * await issuer.revokeCredential(credentialHash);
+ * ```
+ */
+export class IssuerClient {
+    /**
+     * Create a new IssuerClient instance
+     * @param signer - Ethers.js signer from issuer's wallet
+     * @param config - Optional configuration
+     */
+    constructor(signer, config = {}) {
+        if (!signer) {
+            throw new Error('Signer is required');
+        }
+        this.signer = signer;
+        // Initialize ContractClient
+        this.contractClient = new ContractClient({
+            provider: signer.provider || undefined,
+            contractAddresses: config.contractAddresses,
+            rpcUrl: config.rpcUrl,
+        });
+        // Initialize APIClient
+        this.apiClient = new APIClient({
+            baseURL: config.apiBaseUrl,
+        });
+    }
+    /**
+     * Register a credential on-chain
+     *
+     * @param credentialHash - The credential hash to register (bytes32)
+     * @param userAddress - The user's wallet address
+     * @param useAPI - If true, use backend API (gasless). If false, use direct contract call.
+     * @returns Promise resolving to transaction result
+     *
+     * @example
+     * ```typescript
+     * const tx = await issuer.registerCredential('0x1234...', '0x5678...');
+     * console.log('Transaction hash:', tx.transactionHash);
+     * ```
+     */
+    async registerCredential(credentialHash, userAddress, useAPI = false) {
+        if (!credentialHash) {
+            throw new Error('Credential hash is required');
+        }
+        if (!userAddress) {
+            throw new Error('User address is required');
+        }
+        try {
+            if (useAPI) {
+                // Use backend API for gasless transactions
+                return await this.apiClient.registerCredential(credentialHash, userAddress);
+            }
+            else {
+                // Use direct contract call
+                return await this.contractClient.registerCredential(this.signer, credentialHash, userAddress);
+            }
+        }
+        catch (error) {
+            throw new Error(`Failed to register credential: ${error.message || 'Unknown error'}`);
+        }
+    }
+    /**
+     * Revoke a credential
+     *
+     * @param credentialHash - The credential hash to revoke (bytes32)
+     * @param useAPI - If true, use backend API (gasless). If false, use direct contract call.
+     * @returns Promise resolving to transaction result
+     *
+     * @example
+     * ```typescript
+     * const tx = await issuer.revokeCredential('0x1234...');
+     * console.log('Transaction hash:', tx.transactionHash);
+     * ```
+     */
+    async revokeCredential(credentialHash, useAPI = false) {
+        if (!credentialHash) {
+            throw new Error('Credential hash is required');
+        }
+        try {
+            if (useAPI) {
+                // Use backend API for gasless transactions
+                return await this.apiClient.revokeCredential(credentialHash);
+            }
+            else {
+                // Use direct contract call
+                return await this.contractClient.revokeCredential(this.signer, credentialHash);
+            }
+        }
+        catch (error) {
+            throw new Error(`Failed to revoke credential: ${error.message || 'Unknown error'}`);
+        }
+    }
+    /**
+     * Check credential status
+     *
+     * @param credentialHash - The credential hash to check (bytes32)
+     * @returns Promise resolving to credential status information
+     *
+     * @example
+     * ```typescript
+     * const status = await issuer.checkCredential('0x1234...');
+     * console.log('Is valid:', status.isValid);
+     * console.log('Is revoked:', status.isRevoked);
+     * ```
+     */
+    async checkCredential(credentialHash) {
+        if (!credentialHash) {
+            throw new Error('Credential hash is required');
+        }
+        try {
+            // Check on-chain validity
+            const isValid = await this.contractClient.isCredentialValid(credentialHash);
+            // Get additional info from API if available
+            try {
+                const apiStatus = await this.apiClient.checkCredential(credentialHash);
+                return {
+                    isValid: apiStatus.isValid && isValid,
+                    credentialHash,
+                    isRevoked: apiStatus.isRevoked,
+                    issuer: apiStatus.issuer,
+                };
+            }
+            catch {
+                // If API fails, return on-chain status
+                return {
+                    isValid,
+                    credentialHash,
+                    isRevoked: !isValid,
+                };
+            }
+        }
+        catch (error) {
+            throw new Error(`Failed to check credential: ${error.message || 'Unknown error'}`);
+        }
+    }
+}
+//# sourceMappingURL=IssuerClient.js.map

package/dist/issuer/IssuerClient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"IssuerClient.js","sourceRoot":"","sources":["../../src/issuer/IssuerClient.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAqB9C;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAM,OAAO,YAAY;IAKvB;;;;OAIG;IACH,YAAY,MAAc,EAAE,SAA6B,EAAE;QACzD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;QACxC,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QAErB,4BAA4B;QAC5B,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,CAAC;YACvC,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,SAAS;YACtC,iBAAiB,EAAE,MAAM,CAAC,iBAAkD;YAC5E,MAAM,EAAE,MAAM,CAAC,MAAM;SACtB,CAAC,CAAC;QAEH,uBAAuB;QACvB,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,CAAC;YAC7B,OAAO,EAAE,MAAM,CAAC,UAAU;SAC3B,CAAC,CAAC;IACL,CAAC;IAED;;;;;;;;;;;;;OAaG;IACH,KAAK,CAAC,kBAAkB,CACtB,cAAsB,EACtB,WAAmB,EACnB,SAAkB,KAAK;QAEvB,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAC9C,CAAC;QAED,IAAI,CAAC;YACH,IAAI,MAAM,EAAE,CAAC;gBACX,2CAA2C;gBAC3C,OAAO,MAAM,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;YAC9E,CAAC;iBAAM,CAAC;gBACN,2BAA2B;gBAC3B,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,kBAAkB,CACjD,IAAI,CAAC,MAAM,EACX,cAAc,EACd,WAAW,CACZ,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CACb,kCAAkC,KAAK,CAAC,OAAO,IAAI,eAAe,EAAE,CACrE,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,gBAAgB,CACpB,cAAsB,EACtB,SAAkB,KAAK;QAEvB,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,CAAC;YACH,IAAI,MAAM,EAAE,CAAC;gBACX,2CAA2C;gBAC3C,OAAO,MAAM,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC;YAC/D,CAAC;iBAAM,CAAC;gBACN,2BAA2B;gBAC3B,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,gBAAgB,CAC/C,IAAI,CAAC,MAAM,EACX,cAAc,CACf,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CACb,gCAAgC,KAAK,CAAC,OAAO,IAAI,eAAe,EAAE,CACnE,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,eAAe,CAAC,cAAsB;QAC1C,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,CAAC;YACH,0BAA0B;YAC1B,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CAAC,cAAc,CAAC,CAAC;YAE5E,4CAA4C;YAC5C,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC;gBACvE,OAAO;oBACL,OAAO,EAAE,SAAS,CAAC,OAAO,IAAI,OAAO;oBACrC,cAAc;oBACd,SAAS,EAAE,SAAS,CAAC,SAAS;oBAC9B,MAAM,EAAE,SAAS,CAAC,MAAM;iBACzB,CAAC;YACJ,CAAC;YAAC,MAAM,CAAC;gBACP,uCAAuC;gBACvC,OAAO;oBACL,OAAO;oBACP,cAAc;oBACd,SAAS,EAAE,CAAC,OAAO;iBACpB,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CACb,+BAA+B,KAAK,CAAC,OAAO,IAAI,eAAe,EAAE,CAClE,CAAC;QACJ,CAAC;IACH,CAAC;CACF"}

package/dist/protocol/ProtocolClient.d.ts

@@ -0,0 +1,124 @@
+import type { Signer } from 'ethers';
+import { Requirements, TransactionResult, ProtocolClientConfig, SetRequirementsParams, VerifyUserAccessParams } from '../utils/types';
+/**
+ * ProtocolClient - High-level API for DeFi protocol integration
+ *
+ * Provides a simple interface for protocols to:
+ * - Set KYC requirements (minAge, jurisdictions, accredited status)
+ * - Check if users have access
+ * - Verify ZK proofs and grant access to users
+ *
+ * @example
+ * ```typescript
+ * import { ProtocolClient } from '@noah-protocol/sdk';
+ * import { ethers } from 'ethers';
+ *
+ * const provider = new ethers.BrowserProvider(window.ethereum);
+ * const signer = await provider.getSigner();
+ * const protocol = new ProtocolClient(signer);
+ *
+ * // Set requirements
+ * await protocol.setRequirements({
+ *   minAge: 21,
+ *   jurisdictions: ['US', 'UK', 'CA'],
+ *   requireAccredited: true
+ * });
+ *
+ * // Check user access
+ * const hasAccess = await protocol.checkUserAccess(protocolAddress, userAddress);
+ * ```
+ */
+export declare class ProtocolClient {
+    private signer;
+    private provider;
+    private protocolAccessControlAddress;
+    private contract;
+    /**
+     * Create a new ProtocolClient instance
+     *
+     * @param signer - Ethers signer (from wallet connection)
+     * @param config - Optional configuration (contract address, provider)
+     */
+    constructor(signer: Signer, config?: ProtocolClientConfig);
+    /**
+     * Get or create the ProtocolAccessControl contract instance
+     * Uses signer for write operations, provider for read operations
+     */
+    private getContract;
+    /**
+     * Get read-only contract instance (for queries)
+     */
+    private getReadOnlyContract;
+    /**
+     * Set protocol requirements for KYC verification
+     *
+     * @param params - Requirements parameters
+     * @param params.minAge - Minimum age required (must be positive integer)
+     * @param params.jurisdictions - Array of allowed jurisdiction hashes (strings or numbers)
+     * @param params.requireAccredited - Whether accredited investor status is required
+     * @returns Promise resolving to transaction result
+     *
+     * @example
+     * ```typescript
+     * const tx = await protocol.setRequirements({
+     *   minAge: 21,
+     *   jurisdictions: ['1234567890', '1111111111'],
+     *   requireAccredited: true
+     * });
+     * console.log('Transaction hash:', tx.transactionHash);
+     * ```
+     */
+    setRequirements(params: SetRequirementsParams): Promise<TransactionResult>;
+    /**
+     * Get protocol requirements
+     *
+     * @param protocolAddress - The protocol contract address (defaults to signer's address)
+     * @returns Promise resolving to requirements object
+     *
+     * @example
+     * ```typescript
+     * const requirements = await protocol.getRequirements(protocolAddress);
+     * console.log('Min age:', requirements.minAge);
+     * console.log('Jurisdictions:', requirements.allowedJurisdictions);
+     * ```
+     */
+    getRequirements(protocolAddress?: string): Promise<Requirements>;
+    /**
+     * Verify ZK proof and grant access to a user
+     *
+     * @param params - Verification parameters
+     * @param params.userAddress - The user's wallet address
+     * @param params.proof - ZK proof object (Groth16 format)
+     * @param params.publicSignals - Public signals array (13 elements)
+     * @param params.credentialHash - The credential hash (bytes32)
+     * @returns Promise resolving to transaction result
+     *
+     * @example
+     * ```typescript
+     * const tx = await protocol.verifyUserAccess({
+     *   userAddress: '0x...',
+     *   proof: { a: [...], b: [...], c: [...] },
+     *   publicSignals: ['21', '1234567890', ...],
+     *   credentialHash: '0x...'
+     * });
+     * ```
+     */
+    verifyUserAccess(params: VerifyUserAccessParams): Promise<TransactionResult>;
+    /**
+     * Check if a user has access to a protocol
+     *
+     * @param protocolAddress - The protocol contract address (defaults to signer's address)
+     * @param userAddress - The user's wallet address
+     * @returns Promise resolving to boolean indicating access status
+     *
+     * @example
+     * ```typescript
+     * const hasAccess = await protocol.checkUserAccess(protocolAddress, userAddress);
+     * if (hasAccess) {
+     *   console.log('User has access');
+     * }
+     * ```
+     */
+    checkUserAccess(protocolAddress: string, userAddress: string): Promise<boolean>;
+}
+//# sourceMappingURL=ProtocolClient.d.ts.map

package/dist/protocol/ProtocolClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ProtocolClient.d.ts","sourceRoot":"","sources":["../../src/protocol/ProtocolClient.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAwC,MAAM,QAAQ,CAAC;AAC3E,OAAO,EACL,YAAY,EACZ,iBAAiB,EACjB,oBAAoB,EACpB,qBAAqB,EACrB,sBAAsB,EACvB,MAAM,gBAAgB,CAAC;AAqBxB;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,qBAAa,cAAc;IACzB,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,QAAQ,CAAW;IAC3B,OAAO,CAAC,4BAA4B,CAAS;IAC7C,OAAO,CAAC,QAAQ,CAAyB;IAEzC;;;;;OAKG;gBACS,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,oBAAoB;IAiBzD;;;OAGG;IACH,OAAO,CAAC,WAAW;IAWnB;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAQ3B;;;;;;;;;;;;;;;;;;OAkBG;IACG,eAAe,CAAC,MAAM,EAAE,qBAAqB,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAgEhF;;;;;;;;;;;;OAYG;IACG,eAAe,CAAC,eAAe,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAoBtE;;;;;;;;;;;;;;;;;;;OAmBG;IACG,gBAAgB,CAAC,MAAM,EAAE,sBAAsB,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAqDlF;;;;;;;;;;;;;;OAcG;IACG,eAAe,CACnB,eAAe,EAAE,MAAM,EACvB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,OAAO,CAAC;CASpB"}

package/dist/protocol/ProtocolClient.js

@@ -0,0 +1,265 @@
+import { Contract } from 'ethers';
+import { jurisdictionStringsToHashes } from '../utils/jurisdiction';
+/**
+ * Protocol Access Control ABI (minimal for required operations)
+ */
+const PROTOCOL_ACCESS_CONTROL_ABI = [
+    'function hasAccess(address protocol, address user) view returns (bool)',
+    'function protocolRequirements(address) view returns (uint256 minAge, bool requireAccredited, bool isSet)',
+    'function setRequirements(uint256 minAge, uint256[] memory allowedJurisdictions, bool requireAccredited)',
+    'function verifyAndGrantAccess(uint[2] a, uint[2][2] b, uint[2] c, uint[13] publicSignals, bytes32 credentialHash, address user)',
+    'event AccessGranted(address indexed user, address indexed protocol, bytes32 credentialHash, uint256 timestamp)',
+    'event RequirementsSet(address indexed protocol, uint256 minAge, uint256[] allowedJurisdictions, bool requireAccredited)',
+];
+/**
+ * Default Protocol Access Control contract address (Mantle Sepolia)
+ * Can be overridden via config
+ */
+const DEFAULT_PROTOCOL_ACCESS_CONTROL_ADDRESS = '0xF599F186aC6fD2a9bECd9eDEE91fd58D3Dc3dB0A';
+/**
+ * ProtocolClient - High-level API for DeFi protocol integration
+ *
+ * Provides a simple interface for protocols to:
+ * - Set KYC requirements (minAge, jurisdictions, accredited status)
+ * - Check if users have access
+ * - Verify ZK proofs and grant access to users
+ *
+ * @example
+ * ```typescript
+ * import { ProtocolClient } from '@noah-protocol/sdk';
+ * import { ethers } from 'ethers';
+ *
+ * const provider = new ethers.BrowserProvider(window.ethereum);
+ * const signer = await provider.getSigner();
+ * const protocol = new ProtocolClient(signer);
+ *
+ * // Set requirements
+ * await protocol.setRequirements({
+ *   minAge: 21,
+ *   jurisdictions: ['US', 'UK', 'CA'],
+ *   requireAccredited: true
+ * });
+ *
+ * // Check user access
+ * const hasAccess = await protocol.checkUserAccess(protocolAddress, userAddress);
+ * ```
+ */
+export class ProtocolClient {
+    /**
+     * Create a new ProtocolClient instance
+     *
+     * @param signer - Ethers signer (from wallet connection)
+     * @param config - Optional configuration (contract address, provider)
+     */
+    constructor(signer, config) {
+        this.contract = null;
+        if (!signer) {
+            throw new Error('Signer is required');
+        }
+        this.signer = signer;
+        this.provider = config?.provider || signer.provider;
+        if (!this.provider) {
+            throw new Error('Provider is required. Pass it via config or ensure signer has a provider.');
+        }
+        this.protocolAccessControlAddress =
+            config?.protocolAccessControlAddress ||
+                DEFAULT_PROTOCOL_ACCESS_CONTROL_ADDRESS;
+    }
+    /**
+     * Get or create the ProtocolAccessControl contract instance
+     * Uses signer for write operations, provider for read operations
+     */
+    getContract() {
+        if (!this.contract) {
+            this.contract = new Contract(this.protocolAccessControlAddress, PROTOCOL_ACCESS_CONTROL_ABI, this.signer);
+        }
+        return this.contract;
+    }
+    /**
+     * Get read-only contract instance (for queries)
+     */
+    getReadOnlyContract() {
+        return new Contract(this.protocolAccessControlAddress, PROTOCOL_ACCESS_CONTROL_ABI, this.provider);
+    }
+    /**
+     * Set protocol requirements for KYC verification
+     *
+     * @param params - Requirements parameters
+     * @param params.minAge - Minimum age required (must be positive integer)
+     * @param params.jurisdictions - Array of allowed jurisdiction hashes (strings or numbers)
+     * @param params.requireAccredited - Whether accredited investor status is required
+     * @returns Promise resolving to transaction result
+     *
+     * @example
+     * ```typescript
+     * const tx = await protocol.setRequirements({
+     *   minAge: 21,
+     *   jurisdictions: ['1234567890', '1111111111'],
+     *   requireAccredited: true
+     * });
+     * console.log('Transaction hash:', tx.transactionHash);
+     * ```
+     */
+    async setRequirements(params) {
+        const { minAge, jurisdictions, requireAccredited } = params;
+        if (minAge < 0 || !Number.isInteger(minAge)) {
+            throw new Error('minAge must be a non-negative integer');
+        }
+        if (!Array.isArray(jurisdictions)) {
+            throw new Error('jurisdictions must be an array');
+        }
+        if (jurisdictions.length > 10) {
+            throw new Error('Maximum 10 jurisdictions allowed');
+        }
+        // Convert jurisdictions to BigInt array
+        // First, check if they're jurisdiction strings (like "US", "UK") or already hashes
+        let jurisdictionsToProcess;
+        // Check if any jurisdiction is a string that's not numeric (like "US", "UK")
+        const hasStringJurisdictions = jurisdictions.some(j => typeof j === 'string' && !j.startsWith('0x') && !/^\d+$/.test(j));
+        if (hasStringJurisdictions) {
+            // Convert jurisdiction strings to hashes
+            const jurisdictionStrings = jurisdictions.map(j => String(j));
+            const hashes = jurisdictionStringsToHashes(jurisdictionStrings);
+            jurisdictionsToProcess = hashes;
+        }
+        else {
+            jurisdictionsToProcess = jurisdictions;
+        }
+        // Convert to BigInt array
+        const jurisdictionsArray = jurisdictionsToProcess.map(j => {
+            if (typeof j === 'string') {
+                if (j.startsWith('0x')) {
+                    return BigInt(j);
+                }
+                return BigInt(j);
+            }
+            return BigInt(j);
+        });
+        try {
+            const contract = this.getContract();
+            const tx = await contract.setRequirements(BigInt(minAge), jurisdictionsArray, requireAccredited);
+            const receipt = await tx.wait();
+            return {
+                transactionHash: tx.hash,
+                receipt: receipt,
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : 'Unknown error';
+            throw new Error(`Failed to set requirements: ${errorMessage}`);
+        }
+    }
+    /**
+     * Get protocol requirements
+     *
+     * @param protocolAddress - The protocol contract address (defaults to signer's address)
+     * @returns Promise resolving to requirements object
+     *
+     * @example
+     * ```typescript
+     * const requirements = await protocol.getRequirements(protocolAddress);
+     * console.log('Min age:', requirements.minAge);
+     * console.log('Jurisdictions:', requirements.allowedJurisdictions);
+     * ```
+     */
+    async getRequirements(protocolAddress) {
+        const address = protocolAddress || (await this.signer.getAddress());
+        try {
+            const contract = this.getReadOnlyContract();
+            const [minAge, requireAccredited, isSet] = await contract.protocolRequirements(address);
+            return {
+                minAge: Number(minAge),
+                allowedJurisdictions: [], // Public mapping getter does not return arrays
+                requireAccredited,
+                isSet,
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : 'Unknown error';
+            throw new Error(`Failed to get requirements: ${errorMessage}`);
+        }
+    }
+    /**
+     * Verify ZK proof and grant access to a user
+     *
+     * @param params - Verification parameters
+     * @param params.userAddress - The user's wallet address
+     * @param params.proof - ZK proof object (Groth16 format)
+     * @param params.publicSignals - Public signals array (13 elements)
+     * @param params.credentialHash - The credential hash (bytes32)
+     * @returns Promise resolving to transaction result
+     *
+     * @example
+     * ```typescript
+     * const tx = await protocol.verifyUserAccess({
+     *   userAddress: '0x...',
+     *   proof: { a: [...], b: [...], c: [...] },
+     *   publicSignals: ['21', '1234567890', ...],
+     *   credentialHash: '0x...'
+     * });
+     * ```
+     */
+    async verifyUserAccess(params) {
+        const { userAddress, proof, publicSignals, credentialHash } = params;
+        if (!proof.a || !Array.isArray(proof.a) || proof.a.length !== 2) {
+            throw new Error('Proof.a must be an array of 2 elements');
+        }
+        if (!proof.b || !Array.isArray(proof.b) || proof.b.length !== 2) {
+            throw new Error('Proof.b must be an array of 2 arrays');
+        }
+        if (!proof.c || !Array.isArray(proof.c) || proof.c.length !== 2) {
+            throw new Error('Proof.c must be an array of 2 elements');
+        }
+        if (!Array.isArray(publicSignals) || publicSignals.length < 13) {
+            throw new Error('publicSignals must be an array of at least 13 elements');
+        }
+        // Convert proof arrays to BigInt arrays
+        const a = [BigInt(proof.a[0]), BigInt(proof.a[1])];
+        const b = [
+            [BigInt(proof.b[0][0]), BigInt(proof.b[0][1])],
+            [BigInt(proof.b[1][0]), BigInt(proof.b[1][1])],
+        ];
+        const c = [BigInt(proof.c[0]), BigInt(proof.c[1])];
+        // Convert public signals to BigInt array (13 elements)
+        const publicSignalsArray = publicSignals.slice(0, 13).map(s => BigInt(s));
+        try {
+            const contract = this.getContract();
+            const tx = await contract.verifyAndGrantAccess(a, b, c, publicSignalsArray, credentialHash, userAddress);
+            const receipt = await tx.wait();
+            return {
+                transactionHash: tx.hash,
+                receipt: receipt,
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : 'Unknown error';
+            throw new Error(`Failed to verify and grant access: ${errorMessage}`);
+        }
+    }
+    /**
+     * Check if a user has access to a protocol
+     *
+     * @param protocolAddress - The protocol contract address (defaults to signer's address)
+     * @param userAddress - The user's wallet address
+     * @returns Promise resolving to boolean indicating access status
+     *
+     * @example
+     * ```typescript
+     * const hasAccess = await protocol.checkUserAccess(protocolAddress, userAddress);
+     * if (hasAccess) {
+     *   console.log('User has access');
+     * }
+     * ```
+     */
+    async checkUserAccess(protocolAddress, userAddress) {
+        try {
+            const contract = this.getReadOnlyContract();
+            return await contract.hasAccess(protocolAddress, userAddress);
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : 'Unknown error';
+            throw new Error(`Failed to check user access: ${errorMessage}`);
+        }
+    }
+}
+//# sourceMappingURL=ProtocolClient.js.map

package/dist/protocol/ProtocolClient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ProtocolClient.js","sourceRoot":"","sources":["../../src/protocol/ProtocolClient.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC;AASlC,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AAEpE;;GAEG;AACH,MAAM,2BAA2B,GAAG;IAClC,wEAAwE;IACxE,0GAA0G;IAC1G,yGAAyG;IACzG,iIAAiI;IACjI,gHAAgH;IAChH,yHAAyH;CACjH,CAAC;AAEX;;;GAGG;AACH,MAAM,uCAAuC,GAAG,4CAA4C,CAAC;AAE7F;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,MAAM,OAAO,cAAc;IAMzB;;;;;OAKG;IACH,YAAY,MAAc,EAAE,MAA6B;QARjD,aAAQ,GAAoB,IAAI,CAAC;QASvC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;QACxC,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,QAAQ,GAAG,MAAM,EAAE,QAAQ,IAAI,MAAM,CAAC,QAAS,CAAC;QAErD,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,2EAA2E,CAAC,CAAC;QAC/F,CAAC;QAED,IAAI,CAAC,4BAA4B;YAC/B,MAAM,EAAE,4BAA4B;gBACpC,uCAAuC,CAAC;IAC5C,CAAC;IAED;;;OAGG;IACK,WAAW;QACjB,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,IAAI,CAAC,QAAQ,GAAG,IAAI,QAAQ,CAC1B,IAAI,CAAC,4BAA4B,EACjC,2BAA2B,EAC3B,IAAI,CAAC,MAAM,CACZ,CAAC;QACJ,CAAC;QACD,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;OAEG;IACK,mBAAmB;QACzB,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,4BAA4B,EACjC,2BAA2B,EAC3B,IAAI,CAAC,QAAQ,CACd,CAAC;IACJ,CAAC;IAED;;;;;;;;;;;;;;;;;;OAkBG;IACH,KAAK,CAAC,eAAe,CAAC,MAA6B;QACjD,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,iBAAiB,EAAE,GAAG,MAAM,CAAC;QAE5D,IAAI,MAAM,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5C,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC3D,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACpD,CAAC;QAED,IAAI,aAAa,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;QACtD,CAAC;QAED,wCAAwC;QACxC,mFAAmF;QACnF,IAAI,sBAA2C,CAAC;QAEhD,6EAA6E;QAC7E,MAAM,sBAAsB,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CACpD,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CACjE,CAAC;QAEF,IAAI,sBAAsB,EAAE,CAAC;YAC3B,yCAAyC;YACzC,MAAM,mBAAmB,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;YAC9D,MAAM,MAAM,GAAG,2BAA2B,CAAC,mBAAmB,CAAC,CAAC;YAChE,sBAAsB,GAAG,MAAM,CAAC;QAClC,CAAC;aAAM,CAAC;YACN,sBAAsB,GAAG,aAAa,CAAC;QACzC,CAAC;QAED,0BAA0B;QAC1B,MAAM,kBAAkB,GAAG,sBAAsB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;YACxD,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;gBAC1B,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;oBACvB,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;gBACnB,CAAC;gBACD,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;YACnB,CAAC;YACD,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;QACnB,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;YACpC,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,eAAe,CACvC,MAAM,CAAC,MAAM,CAAC,EACd,kBAAkB,EAClB,iBAAiB,CAClB,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC;YAEhC,OAAO;gBACL,eAAe,EAAE,EAAE,CAAC,IAAI;gBACxB,OAAO,EAAE,OAAqC;aAC/C,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,MAAM,IAAI,KAAK,CAAC,+BAA+B,YAAY,EAAE,CAAC,CAAC;QACjE,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,eAAe,CAAC,eAAwB;QAC5C,MAAM,OAAO,GAAG,eAAe,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC;QAEpE,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC5C,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,KAAK,CAAC,GACtC,MAAM,QAAQ,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC;YAE/C,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC;gBACtB,oBAAoB,EAAE,EAAE,EAAE,+CAA+C;gBACzE,iBAAiB;gBACjB,KAAK;aACN,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,MAAM,IAAI,KAAK,CAAC,+BAA+B,YAAY,EAAE,CAAC,CAAC;QACjE,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;;;OAmBG;IACH,KAAK,CAAC,gBAAgB,CAAC,MAA8B;QACnD,MAAM,EAAE,WAAW,EAAE,KAAK,EAAE,aAAa,EAAE,cAAc,EAAE,GAAG,MAAM,CAAC;QAErE,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChE,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChE,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;QAC1D,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChE,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,IAAI,aAAa,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YAC/D,MAAM,IAAI,KAAK,CAAC,wDAAwD,CAAC,CAAC;QAC5E,CAAC;QAED,wCAAwC;QACxC,MAAM,CAAC,GAAqB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACrE,MAAM,CAAC,GAAyC;YAC9C,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAC9C,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;SAC/C,CAAC;QACF,MAAM,CAAC,GAAqB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAErE,uDAAuD;QACvD,MAAM,kBAAkB,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAE1E,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;YACpC,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,oBAAoB,CAC5C,CAAC,EACD,CAAC,EACD,CAAC,EACD,kBAAkB,EAClB,cAAc,EACd,WAAW,CACZ,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC;YAEhC,OAAO;gBACL,eAAe,EAAE,EAAE,CAAC,IAAI;gBACxB,OAAO,EAAE,OAAqC;aAC/C,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,MAAM,IAAI,KAAK,CAAC,sCAAsC,YAAY,EAAE,CAAC,CAAC;QACxE,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,eAAe,CACnB,eAAuB,EACvB,WAAmB;QAEnB,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC5C,OAAO,MAAM,QAAQ,CAAC,SAAS,CAAC,eAAe,EAAE,WAAW,CAAC,CAAC;QAChE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,MAAM,IAAI,KAAK,CAAC,gCAAgC,YAAY,EAAE,CAAC,CAAC;QAClE,CAAC;IACH,CAAC;CACF"}

package/dist/protocol/RequirementsManager.d.ts

@@ -0,0 +1,9 @@
+/**
+ * RequirementsManager
+ *
+ * Helper utilities for managing protocol requirements.
+ * This is a placeholder - implementation will be added in Phase 3.
+ */
+export declare class RequirementsManager {
+}
+//# sourceMappingURL=RequirementsManager.d.ts.map

package/dist/protocol/RequirementsManager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"RequirementsManager.d.ts","sourceRoot":"","sources":["../../src/protocol/RequirementsManager.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,qBAAa,mBAAmB;CAE/B"}

package/dist/protocol/RequirementsManager.js

@@ -0,0 +1,9 @@
+/**
+ * RequirementsManager
+ *
+ * Helper utilities for managing protocol requirements.
+ * This is a placeholder - implementation will be added in Phase 3.
+ */
+export class RequirementsManager {
+}
+//# sourceMappingURL=RequirementsManager.js.map

package/dist/protocol/RequirementsManager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"RequirementsManager.js","sourceRoot":"","sources":["../../src/protocol/RequirementsManager.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,MAAM,OAAO,mBAAmB;CAE/B"}

package/dist/user/ProofGenerator.d.ts

@@ -0,0 +1,49 @@
+/**
+ * ProofGenerator - Browser-side ZK Proof Generation
+ *
+ * This class manages the lifecycle of the ZK prover:
+ * 1. Loading the WASM module
+ * 2. Caching artifacts in IndexedDB
+ * 3. Executing proofs in a Web Worker (optional but recommended)
+ */
+import type { ZKProof } from '../utils/types';
+export interface ProverInput {
+    actualAge: number;
+    actualJurisdiction: number;
+    actualAccredited: number;
+    credentialHash: string;
+    passportNumber: string;
+    expiryDate: number;
+    minAge: number;
+    recipientAddress: string;
+    currentDate: number;
+    allowedJurisdictions: number[];
+    sanctionedCountries: number[];
+    requireAccredited: number;
+    credentialHashPublic: string;
+}
+export interface ProofGenerationResult {
+    proof: ZKProof;
+    publicSignals: string[];
+    success: boolean;
+    nullifier: string;
+    packedFlags: number;
+}
+export declare class ProofGenerator {
+    private wasmLoaded;
+    private wasmBinary;
+    constructor();
+    /**
+     * Load the ZK prover artifacts
+     * @param wasmUrl - URL to the noah_prover.wasm file
+     */
+    loadProver(wasmUrl?: string): Promise<void>;
+    /**
+     * Generate a ZK proof locally
+     * @param input - Circuit assignment data
+     */
+    generateProof(input: ProverInput): Promise<ProofGenerationResult>;
+    private getCachedWasm;
+    private cacheWasm;
+}
+//# sourceMappingURL=ProofGenerator.d.ts.map

package/dist/user/ProofGenerator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ProofGenerator.d.ts","sourceRoot":"","sources":["../../src/user/ProofGenerator.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,gBAAgB,CAAC;AAE9C,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,cAAc,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,EAAE,MAAM,CAAC;IACpB,oBAAoB,EAAE,MAAM,EAAE,CAAC;IAC/B,mBAAmB,EAAE,MAAM,EAAE,CAAC;IAC9B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,oBAAoB,EAAE,MAAM,CAAC;CAC9B;AAED,MAAM,WAAW,qBAAqB;IACpC,KAAK,EAAE,OAAO,CAAC;IACf,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,UAAU,CAAkB;IACpC,OAAO,CAAC,UAAU,CAA4B;;IAI9C;;;OAGG;IACG,UAAU,CAAC,OAAO,GAAE,MAA4B,GAAG,OAAO,CAAC,IAAI,CAAC;IAwBtE;;;OAGG;IACG,aAAa,CAAC,KAAK,EAAE,WAAW,GAAG,OAAO,CAAC,qBAAqB,CAAC;YA8BzD,aAAa;YAKb,SAAS;CAIxB"}