npm - permissionless - Versions diffs - 0.2.33 → 0.2.35 - Mend

permissionless 0.2.33 → 0.2.35

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (70) hide show

package/_types/clients/decorators/passkeyServer.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+import type { Account, Chain, Client, Transport } from "viem";
+import { type GetCredentialsParameters, type GetCredentialsReturnType } from "../../actions/passkeyServer/getCredentials.js";
+import { type StartRegistrationParameters, type StartRegistrationReturnType } from "../../actions/passkeyServer/startRegistration.js";
+import { type VerifyRegistrationParameters, type VerifyRegistrationReturnType } from "../../actions/passkeyServer/verifyRegistration.js";
+import type { PasskeyServerRpcSchema } from "../../types/passkeyServer.js";
+export type PasskeyServerActions = {
+    startRegistration: (args: StartRegistrationParameters) => Promise<StartRegistrationReturnType>;
+    verifyRegistration: (args: VerifyRegistrationParameters) => Promise<VerifyRegistrationReturnType>;
+    getCredentials: (args: GetCredentialsParameters) => Promise<GetCredentialsReturnType>;
+};
+export declare const passkeyServerActions: (client: Client<Transport, Chain | undefined, Account | undefined, PasskeyServerRpcSchema>) => PasskeyServerActions;
+//# sourceMappingURL=passkeyServer.d.ts.map

package/_types/clients/decorators/passkeyServer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"passkeyServer.d.ts","sourceRoot":"","sources":["../../../clients/decorators/passkeyServer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,MAAM,CAAA;AAC7D,OAAO,EACH,KAAK,wBAAwB,EAC7B,KAAK,wBAAwB,EAEhC,MAAM,+CAA+C,CAAA;AACtD,OAAO,EACH,KAAK,2BAA2B,EAChC,KAAK,2BAA2B,EAEnC,MAAM,kDAAkD,CAAA;AACzD,OAAO,EACH,KAAK,4BAA4B,EACjC,KAAK,4BAA4B,EAEpC,MAAM,mDAAmD,CAAA;AAC1D,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAA;AAE1E,MAAM,MAAM,oBAAoB,GAAG;IAC/B,iBAAiB,EAAE,CACf,IAAI,EAAE,2BAA2B,KAChC,OAAO,CAAC,2BAA2B,CAAC,CAAA;IACzC,kBAAkB,EAAE,CAChB,IAAI,EAAE,4BAA4B,KACjC,OAAO,CAAC,4BAA4B,CAAC,CAAA;IAC1C,cAAc,EAAE,CACZ,IAAI,EAAE,wBAAwB,KAC7B,OAAO,CAAC,wBAAwB,CAAC,CAAA;CACzC,CAAA;AAED,eAAO,MAAM,oBAAoB,WACrB,MAAM,CACV,SAAS,EACT,KAAK,GAAG,SAAS,EACjB,OAAO,GAAG,SAAS,EACnB,sBAAsB,CACzB,KACF,oBAID,CAAA"}

package/_types/clients/passkeyServer.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import type { Account, Chain, Client, ClientConfig, Prettify, RpcSchema, Transport } from "viem";
+import type { PasskeyServerRpcSchema } from "../types/passkeyServer.js";
+import { type PasskeyServerActions } from "./decorators/passkeyServer.js";
+export type PasskeyServerClient<rpcSchema extends RpcSchema | undefined = undefined> = Prettify<Client<Transport, Chain | undefined, Account | undefined, rpcSchema extends RpcSchema ? [...PasskeyServerRpcSchema, ...rpcSchema] : [...PasskeyServerRpcSchema], PasskeyServerActions>>;
+export type PasskeyServerClientConfig<rpcSchema extends RpcSchema | undefined = undefined> = Prettify<Pick<ClientConfig<Transport, Chain | undefined, Account | undefined, rpcSchema>, "account" | "cacheTime" | "chain" | "key" | "name" | "pollingInterval" | "rpcSchema" | "transport">>;
+export declare function createPasskeyServerClient<rpcSchema extends RpcSchema | undefined = undefined>(parameters: PasskeyServerClientConfig<rpcSchema>): PasskeyServerClient<rpcSchema>;
+//# sourceMappingURL=passkeyServer.d.ts.map

package/_types/clients/passkeyServer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"passkeyServer.d.ts","sourceRoot":"","sources":["../../clients/passkeyServer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACR,OAAO,EACP,KAAK,EACL,MAAM,EACN,YAAY,EACZ,QAAQ,EACR,SAAS,EACT,SAAS,EACZ,MAAM,MAAM,CAAA;AAEb,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAA;AACvE,OAAO,EACH,KAAK,oBAAoB,EAE5B,MAAM,+BAA+B,CAAA;AAEtC,MAAM,MAAM,mBAAmB,CAC3B,SAAS,SAAS,SAAS,GAAG,SAAS,GAAG,SAAS,IACnD,QAAQ,CACR,MAAM,CACF,SAAS,EACT,KAAK,GAAG,SAAS,EACjB,OAAO,GAAG,SAAS,EACnB,SAAS,SAAS,SAAS,GACrB,CAAC,GAAG,sBAAsB,EAAE,GAAG,SAAS,CAAC,GACzC,CAAC,GAAG,sBAAsB,CAAC,EACjC,oBAAoB,CACvB,CACJ,CAAA;AAED,MAAM,MAAM,yBAAyB,CACjC,SAAS,SAAS,SAAS,GAAG,SAAS,GAAG,SAAS,IACnD,QAAQ,CACR,IAAI,CACA,YAAY,CACR,SAAS,EACT,KAAK,GAAG,SAAS,EACjB,OAAO,GAAG,SAAS,EACnB,SAAS,CACZ,EACC,SAAS,GACT,WAAW,GACX,OAAO,GACP,KAAK,GACL,MAAM,GACN,iBAAiB,GACjB,WAAW,GACX,WAAW,CAChB,CACJ,CAAA;AAED,wBAAgB,yBAAyB,CACrC,SAAS,SAAS,SAAS,GAAG,SAAS,GAAG,SAAS,EAEnD,UAAU,EAAE,yBAAyB,CAAC,SAAS,CAAC,GACjD,mBAAmB,CAAC,SAAS,CAAC,CAAA"}

package/_types/types/passkeyServer.d.ts ADDED Viewed

@@ -0,0 +1,74 @@
+import type { Hex } from "viem";
+export type PasskeyServerRpcSchema = [
+    {
+        Method: "pks_startRegistration";
+        Parameters: [context: unknown];
+        ReturnType: {
+            rp: {
+                id: string;
+                name: string;
+            };
+            user: {
+                id: string;
+                name: string;
+                displayName: string;
+            };
+            challenge: string;
+            timeout?: number;
+            authenticatorSelection?: {
+                authenticatorAttachment?: "platform" | "cross-platform";
+                requireResidentKey?: boolean;
+                residentKey?: "required" | "preferred" | "discouraged";
+                userVerification?: "required" | "preferred" | "discouraged";
+            };
+            attestation: "direct" | "enterprise" | "indirect" | "none";
+            extensions?: {
+                appid?: string;
+                credProps?: boolean;
+                hmacCreateSecret?: boolean;
+                minPinLength?: boolean;
+            };
+        };
+    },
+    {
+        Method: "pks_verifyRegistration";
+        Parameters: [
+            {
+                id: string;
+                rawId: string;
+                response: {
+                    clientDataJSON: string;
+                    attestationObject: string;
+                    authenticatorData?: string;
+                    transports?: ("ble" | "cable" | "hybrid" | "internal" | "nfc" | "smart-card" | "usb")[];
+                    publicKeyAlgorithm?: number;
+                    publicKeyType?: string;
+                };
+                authenticatorAttachment: "cross-platform" | "platform";
+                clientExtensionResults: {
+                    appid?: boolean;
+                    credProps?: {
+                        rk?: boolean;
+                    };
+                    hmacCreateSecret?: boolean;
+                };
+                type: "public-key";
+            },
+            context: unknown
+        ];
+        ReturnType: {
+            success: boolean;
+            id: string;
+            publicKey: Hex;
+        };
+    },
+    {
+        Method: "pks_getCredentials";
+        Parameters: [context: unknown];
+        ReturnType: {
+            id: string;
+            publicKey: Hex;
+        }[];
+    }
+];
+//# sourceMappingURL=passkeyServer.d.ts.map

package/_types/types/passkeyServer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"passkeyServer.d.ts","sourceRoot":"","sources":["../../types/passkeyServer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,MAAM,CAAA;AAE/B,MAAM,MAAM,sBAAsB,GAAG;IACjC;QACI,MAAM,EAAE,uBAAuB,CAAA;QAC/B,UAAU,EAAE,CAAC,OAAO,EAAE,OAAO,CAAC,CAAA;QAC9B,UAAU,EAAE;YACR,EAAE,EAAE;gBACA,EAAE,EAAE,MAAM,CAAA;gBACV,IAAI,EAAE,MAAM,CAAA;aACf,CAAA;YACD,IAAI,EAAE;gBACF,EAAE,EAAE,MAAM,CAAA;gBACV,IAAI,EAAE,MAAM,CAAA;gBACZ,WAAW,EAAE,MAAM,CAAA;aACtB,CAAA;YACD,SAAS,EAAE,MAAM,CAAA;YACjB,OAAO,CAAC,EAAE,MAAM,CAAA;YAChB,sBAAsB,CAAC,EAAE;gBACrB,uBAAuB,CAAC,EAAE,UAAU,GAAG,gBAAgB,CAAA;gBACvD,kBAAkB,CAAC,EAAE,OAAO,CAAA;gBAC5B,WAAW,CAAC,EAAE,UAAU,GAAG,WAAW,GAAG,aAAa,CAAA;gBACtD,gBAAgB,CAAC,EAAE,UAAU,GAAG,WAAW,GAAG,aAAa,CAAA;aAC9D,CAAA;YACD,WAAW,EAAE,QAAQ,GAAG,YAAY,GAAG,UAAU,GAAG,MAAM,CAAA;YAC1D,UAAU,CAAC,EAAE;gBACT,KAAK,CAAC,EAAE,MAAM,CAAA;gBACd,SAAS,CAAC,EAAE,OAAO,CAAA;gBACnB,gBAAgB,CAAC,EAAE,OAAO,CAAA;gBAC1B,YAAY,CAAC,EAAE,OAAO,CAAA;aACzB,CAAA;SACJ,CAAA;KACJ;IACD;QACI,MAAM,EAAE,wBAAwB,CAAA;QAChC,UAAU,EAAE;YACR;gBACI,EAAE,EAAE,MAAM,CAAA;gBACV,KAAK,EAAE,MAAM,CAAA;gBACb,QAAQ,EAAE;oBACN,cAAc,EAAE,MAAM,CAAA;oBACtB,iBAAiB,EAAE,MAAM,CAAA;oBACzB,iBAAiB,CAAC,EAAE,MAAM,CAAA;oBAC1B,UAAU,CAAC,EAAE,CACP,KAAK,GACL,OAAO,GACP,QAAQ,GACR,UAAU,GACV,KAAK,GACL,YAAY,GACZ,KAAK,CACV,EAAE,CAAA;oBACH,kBAAkB,CAAC,EAAE,MAAM,CAAA;oBAC3B,aAAa,CAAC,EAAE,MAAM,CAAA;iBACzB,CAAA;gBACD,uBAAuB,EAAE,gBAAgB,GAAG,UAAU,CAAA;gBACtD,sBAAsB,EAAE;oBACpB,KAAK,CAAC,EAAE,OAAO,CAAA;oBACf,SAAS,CAAC,EAAE;wBACR,EAAE,CAAC,EAAE,OAAO,CAAA;qBACf,CAAA;oBACD,gBAAgB,CAAC,EAAE,OAAO,CAAA;iBAC7B,CAAA;gBACD,IAAI,EAAE,YAAY,CAAA;aACrB;YACD,OAAO,EAAE,OAAO;SACnB,CAAA;QACD,UAAU,EAAE;YACR,OAAO,EAAE,OAAO,CAAA;YAChB,EAAE,EAAE,MAAM,CAAA;YACV,SAAS,EAAE,GAAG,CAAA;SACjB,CAAA;KACJ;IACD;QACI,MAAM,EAAE,oBAAoB,CAAA;QAC5B,UAAU,EAAE,CAAC,OAAO,EAAE,OAAO,CAAC,CAAA;QAC9B,UAAU,EAAE;YACR,EAAE,EAAE,MAAM,CAAA;YACV,SAAS,EAAE,GAAG,CAAA;SACjB,EAAE,CAAA;KACN;CACJ,CAAA"}

package/accounts/kernel/toKernelSmartAccount.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import { Base64, Hex, PublicKey } from "ox"
 import type {
     Account,
     Assign,
@@ -9,7 +10,6 @@ import type {
 import {
     type Address,
     type Client,
-    type Hex,
     type LocalAccount,
     type TypedDataDefinition,
     concatHex,
@@ -32,7 +32,6 @@ import {
 } from "viem/account-abstraction"
 import { signMessage as _signMessage, getChainId } from "viem/actions"
 import { getAction } from "viem/utils"
-import { base64UrlToBytes, bytesToHex, parsePublicKey } from "webauthn-p256"
 import { getAccountNonce } from "../../actions/public/getAccountNonce.js"
 import { getSenderAddress } from "../../actions/public/getSenderAddress.js"
 import { type EthereumProvider, toOwner } from "../../utils/toOwner.js"
@@ -225,7 +224,7 @@ const getInitializationData = <entryPointVersion extends "0.6" | "0.7">({
     entryPoint: {
         version: entryPointVersion
     }
-    validatorData: Hex
+    validatorData: Hex.Hex
     validatorAddress: Address
 }) => {
     if (entryPointVersion === "0.6") {
@@ -268,9 +267,9 @@ const getValidatorData = async (owner: WebAuthnAccount | LocalAccount) => {
     }
     if (isWebAuthnAccount(owner)) {
-        const parsedPublicKey = parsePublicKey(owner.publicKey)
+        const parsedPublicKey = PublicKey.fromHex(owner.publicKey)
         const authenticatorIdHash = keccak256(
-            bytesToHex(base64UrlToBytes(owner.id))
+            Hex.fromBytes(Base64.toBytes(owner.id))
         )
         return encodeAbiParameters(
@@ -322,13 +321,13 @@ const getAccountInitCode = async <entryPointVersion extends "0.6" | "0.7">({
 }: {
     kernelVersion: KernelVersion<entryPointVersion>
     entryPointVersion: entryPointVersion
-    validatorData: Hex
+    validatorData: Hex.Hex
     index: bigint
     factoryAddress: Address
     accountLogicAddress: Address
     validatorAddress: Address
     useMetaFactory: boolean
-}): Promise<Hex> => {
+}): Promise<Hex.Hex> => {
     // Build the account initialization data
     const initializationData = getInitializationData({
         entryPoint: { version: entryPointVersion },

package/accounts/kernel/utils/signMessage.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import { Signature } from "ox"
 import {
     type Hash,
     type LocalAccount,
@@ -8,7 +9,6 @@ import {
 } from "viem"
 import type { WebAuthnAccount } from "viem/account-abstraction"
 import { signMessage as _signMessage } from "viem/actions"
-import { parseSignature } from "webauthn-p256"
 import { isWebAuthnAccount } from "./isWebAuthnAccount.js"
 import {
     type WrapMessageHashParams,
@@ -51,7 +51,7 @@ export async function signMessage({
         const { signature: signatureData, webauthn } = await owner.sign({
             hash: messageContent as Hash
         })
-        const signature = parseSignature(signatureData)
+        const signature = Signature.fromHex(signatureData)
         // encode signature
         const encodedSignature = encodeAbiParameters(

package/accounts/safe/toSafeSmartAccount.ts CHANGED Viewed

@@ -928,6 +928,7 @@ type GetErc7579Params<TErc7579 extends Address | undefined> =
               safeModuleSetupAddress?: Address
               multiSendAddress?: Address
               multiSendCallOnlyAddress?: Address
+              // @deprecated This field is deprecated. It is recommended to make any setup transactions in the userOperation's calldata.
               setupTransactions?: {
                   to: Address
                   data: Address
@@ -975,6 +976,7 @@ export type ToSafeSmartAccountParameters<
     paymentToken?: Address
     payment?: bigint
     paymentReceiver?: Address
+    onchainIdentifier?: Hex
 } & GetErc7579Params<TErc7579>
 function isErc7579Args<entryPointVersion extends "0.6" | "0.7" = "0.7">(
@@ -1149,7 +1151,8 @@ export async function toSafeSmartAccount<
         nonceKey,
         paymentToken,
         payment,
-        paymentReceiver
+        paymentReceiver,
+        onchainIdentifier
     } = parameters
     const owners = await Promise.all(
@@ -1421,11 +1424,17 @@ export async function toSafeSmartAccount<
                 value = call.value ?? 0n
             }
-            return encodeFunctionData({
+            const calldata = encodeFunctionData({
                 abi: executeUserOpWithErrorStringAbi,
                 functionName: "executeUserOpWithErrorString",
                 args: [to, value, data, operationType]
             })
+            if (onchainIdentifier) {
+                return concat([calldata, onchainIdentifier])
+            }
+            return calldata
         },
         async decodeCalls(callData) {
             try {

package/actions/passkeyServer/getCredentials.ts ADDED Viewed

@@ -0,0 +1,47 @@
+import type { Account, Chain, Client, Hex, Transport } from "viem"
+import type { PasskeyServerRpcSchema } from "../../types/passkeyServer.js"
+export type GetCredentialsParameters = {
+    context?: Record<string, unknown>
+}
+export type GetCredentialsReturnType = {
+    id: string
+    publicKey: Hex
+}[]
+export const getCredentials = async (
+    client: Client<
+        Transport,
+        Chain | undefined,
+        Account | undefined,
+        PasskeyServerRpcSchema
+    >,
+    args?: GetCredentialsParameters
+): Promise<GetCredentialsReturnType> => {
+    const response = await client.request({
+        method: "pks_getCredentials",
+        params: [args?.context]
+    })
+    if (!Array.isArray(response)) {
+        throw new Error("Invalid response from server - expected array")
+    }
+    for (const passkey of response) {
+        if (typeof passkey?.id !== "string") {
+            throw new Error("Invalid passkey id returned from server")
+        }
+        if (
+            typeof passkey?.publicKey !== "string" ||
+            !passkey.publicKey.startsWith("0x")
+        ) {
+            throw new Error(
+                "Invalid public key returned from server - must be hex string starting with 0x"
+            )
+        }
+    }
+    return response
+}

package/actions/passkeyServer/startRegistration.ts ADDED Viewed

@@ -0,0 +1,125 @@
+import { Base64 } from "ox"
+import type { Account, Chain, Client, Transport } from "viem"
+import type { CreateWebAuthnCredentialParameters } from "viem/account-abstraction"
+import type { PasskeyServerRpcSchema } from "../../types/passkeyServer.js"
+const validateAttestation = (attestation: unknown): boolean => {
+    return (
+        !!attestation &&
+        ["direct", "enterprise", "indirect", "none"].includes(
+            attestation as string
+        )
+    )
+}
+const validateAuthenticatorSelection = (
+    // biome-ignore lint/suspicious/noExplicitAny: <explanation>
+    authenticatorSelection: any
+): boolean => {
+    if (!authenticatorSelection) return false
+    const validAttachments = ["platform", "cross-platform"]
+    const validKeyOptions = ["required", "preferred", "discouraged"]
+    return (
+        validAttachments.includes(
+            authenticatorSelection.authenticatorAttachment
+        ) &&
+        typeof authenticatorSelection.requireResidentKey === "boolean" &&
+        validKeyOptions.includes(authenticatorSelection.residentKey) &&
+        validKeyOptions.includes(authenticatorSelection.userVerification)
+    )
+}
+const validateChallenge = (challenge: unknown): boolean => {
+    return !!challenge && typeof challenge === "string"
+}
+const validateExtensions = (extensions: unknown): boolean => {
+    if (!extensions) return true
+    if (typeof extensions !== "object") return false
+    const ext = extensions as Record<string, unknown>
+    // Optional appid must be string if present
+    if ("appid" in ext && typeof ext.appid !== "string") return false
+    // Optional credProps must be boolean if present
+    if ("credProps" in ext && typeof ext.credProps !== "boolean") return false
+    // Optional hmacCreateSecret must be boolean if present
+    if ("hmacCreateSecret" in ext && typeof ext.hmacCreateSecret !== "boolean")
+        return false
+    // Optional minPinLength must be boolean if present
+    if ("minPinLength" in ext && typeof ext.minPinLength !== "boolean")
+        return false
+    return true
+}
+// biome-ignore lint/suspicious/noExplicitAny: <explanation>
+const validateRp = (rp: any): boolean => {
+    return !!rp && typeof rp.id === "string" && typeof rp.name === "string"
+}
+// biome-ignore lint/suspicious/noExplicitAny: <explanation>
+const validateUser = (user: any): boolean => {
+    return (
+        !!user &&
+        typeof user.id === "string" &&
+        typeof user.name === "string" &&
+        typeof user.displayName === "string"
+    )
+}
+export type StartRegistrationParameters = {
+    context?: Record<string, unknown>
+}
+export type StartRegistrationReturnType = CreateWebAuthnCredentialParameters
+export const startRegistration = async (
+    client: Client<
+        Transport,
+        Chain | undefined,
+        Account | undefined,
+        PasskeyServerRpcSchema
+    >,
+    args?: StartRegistrationParameters
+): Promise<StartRegistrationReturnType> => {
+    const response = await client.request({
+        method: "pks_startRegistration",
+        params: [args?.context]
+    })
+    // Validate the response matches expected schema
+    if (
+        !validateAttestation(response.attestation) ||
+        !validateAuthenticatorSelection(response.authenticatorSelection) ||
+        !validateChallenge(response.challenge) ||
+        !validateExtensions(response.extensions) ||
+        !validateRp(response.rp) ||
+        !validateUser(response.user)
+    ) {
+        throw new Error("Invalid response format from passkey server")
+    }
+    const credentialOptions: StartRegistrationReturnType = {
+        attestation: response.attestation,
+        authenticatorSelection: response.authenticatorSelection,
+        challenge: Base64.toBytes(response.challenge),
+        extensions: response.extensions
+            ? {
+                  ...response.extensions
+              }
+            : undefined,
+        rp: response.rp,
+        timeout: response.timeout,
+        user: {
+            id: Base64.toBytes(response.user.id),
+            name: response.user.name,
+            displayName: response.user.displayName
+        }
+    }
+    return credentialOptions
+}

package/actions/passkeyServer/verifyRegistration.ts ADDED Viewed

@@ -0,0 +1,114 @@
+import { Base64 } from "ox"
+import type { Account, Chain, Client, Hex, Transport } from "viem"
+import type { CreateWebAuthnCredentialReturnType } from "viem/account-abstraction"
+import type { PasskeyServerRpcSchema } from "../../types/passkeyServer.js"
+export type VerifyRegistrationParameters = {
+    credential: CreateWebAuthnCredentialReturnType
+    context: unknown
+}
+export type VerifyRegistrationReturnType = {
+    success: boolean
+    id: string
+    publicKey: Hex
+}
+export const verifyRegistration = async (
+    client: Client<
+        Transport,
+        Chain | undefined,
+        Account | undefined,
+        PasskeyServerRpcSchema
+    >,
+    args: VerifyRegistrationParameters
+): Promise<VerifyRegistrationReturnType> => {
+    const { credential, context } = args
+    const response = credential.raw
+        .response as unknown as AuthenticatorAttestationResponse
+    let responsePublicKeyAlgorithm: number | undefined = undefined
+    if (typeof response.getPublicKeyAlgorithm === "function") {
+        try {
+            responsePublicKeyAlgorithm = response.getPublicKeyAlgorithm()
+        } catch (error) {
+            throw new Error("getPublicKeyAlgorithm() is not supported")
+        }
+    }
+    let responseAuthenticatorData: string | undefined
+    if (typeof response.getAuthenticatorData === "function") {
+        try {
+            responseAuthenticatorData = Base64.fromBytes(
+                new Uint8Array(response.getAuthenticatorData())
+            )
+        } catch (error) {
+            throw new Error("getAuthenticatorData() is not supported")
+        }
+    }
+    const serverResponse = await client.request({
+        method: "pks_verifyRegistration",
+        params: [
+            {
+                id: credential.id,
+                rawId: Base64.fromBytes(new Uint8Array(credential.raw.rawId), {
+                    pad: false,
+                    url: true
+                }),
+                response: {
+                    clientDataJSON: Base64.fromBytes(
+                        new Uint8Array(response.clientDataJSON)
+                    ),
+                    attestationObject: Base64.fromBytes(
+                        new Uint8Array(response.attestationObject),
+                        {
+                            url: true
+                        }
+                    ),
+                    transports:
+                        typeof response.getTransports === "function"
+                            ? (response.getTransports() as (
+                                  | "ble"
+                                  | "cable"
+                                  | "hybrid"
+                                  | "internal"
+                                  | "nfc"
+                                  | "smart-card"
+                                  | "usb"
+                              )[])
+                            : undefined,
+                    publicKeyAlgorithm: responsePublicKeyAlgorithm,
+                    authenticatorData: responseAuthenticatorData
+                },
+                authenticatorAttachment: credential.raw
+                    .authenticatorAttachment as "cross-platform" | "platform",
+                clientExtensionResults:
+                    credential.raw.getClientExtensionResults(),
+                type: credential.raw.type as "public-key"
+            },
+            context
+        ]
+    })
+    const success = Boolean(serverResponse?.success)
+    const id = serverResponse?.id
+    const publicKey = serverResponse?.publicKey
+    if (typeof id !== "string") {
+        throw new Error("Invalid passkey id returned from server")
+    }
+    if (typeof publicKey !== "string" || !publicKey.startsWith("0x")) {
+        throw new Error(
+            "Invalid public key returned from server - must be hex string starting with 0x"
+        )
+    }
+    return {
+        success,
+        id,
+        publicKey: publicKey as Hex
+    }
+}

package/actions/passkeyServer.ts ADDED Viewed

@@ -0,0 +1,29 @@
+import {
+    type StartRegistrationParameters,
+    type StartRegistrationReturnType,
+    startRegistration
+} from "./passkeyServer/startRegistration.js"
+import {
+    type VerifyRegistrationParameters,
+    type VerifyRegistrationReturnType,
+    verifyRegistration
+} from "./passkeyServer/verifyRegistration.js"
+import {
+    type GetCredentialsParameters,
+    type GetCredentialsReturnType,
+    getCredentials
+} from "./passkeyServer/getCredentials.js"
+export {
+    type StartRegistrationParameters,
+    type StartRegistrationReturnType,
+    type VerifyRegistrationParameters,
+    type VerifyRegistrationReturnType,
+    type GetCredentialsParameters,
+    type GetCredentialsReturnType,
+    startRegistration,
+    verifyRegistration,
+    getCredentials
+}

package/clients/decorators/passkeyServer.ts ADDED Viewed

@@ -0,0 +1,42 @@
+import type { Account, Chain, Client, Transport } from "viem"
+import {
+    type GetCredentialsParameters,
+    type GetCredentialsReturnType,
+    getCredentials
+} from "../../actions/passkeyServer/getCredentials.js"
+import {
+    type StartRegistrationParameters,
+    type StartRegistrationReturnType,
+    startRegistration
+} from "../../actions/passkeyServer/startRegistration.js"
+import {
+    type VerifyRegistrationParameters,
+    type VerifyRegistrationReturnType,
+    verifyRegistration
+} from "../../actions/passkeyServer/verifyRegistration.js"
+import type { PasskeyServerRpcSchema } from "../../types/passkeyServer.js"
+export type PasskeyServerActions = {
+    startRegistration: (
+        args: StartRegistrationParameters
+    ) => Promise<StartRegistrationReturnType>
+    verifyRegistration: (
+        args: VerifyRegistrationParameters
+    ) => Promise<VerifyRegistrationReturnType>
+    getCredentials: (
+        args: GetCredentialsParameters
+    ) => Promise<GetCredentialsReturnType>
+}
+export const passkeyServerActions = (
+    client: Client<
+        Transport,
+        Chain | undefined,
+        Account | undefined,
+        PasskeyServerRpcSchema
+    >
+): PasskeyServerActions => ({
+    startRegistration: (args) => startRegistration(client, args),
+    verifyRegistration: (args) => verifyRegistration(client, args),
+    getCredentials: (args) => getCredentials(client, args)
+})

package/clients/passkeyServer.ts ADDED Viewed

@@ -0,0 +1,69 @@
+import type {
+    Account,
+    Chain,
+    Client,
+    ClientConfig,
+    Prettify,
+    RpcSchema,
+    Transport
+} from "viem"
+import { createClient } from "viem"
+import type { PasskeyServerRpcSchema } from "../types/passkeyServer.js"
+import {
+    type PasskeyServerActions,
+    passkeyServerActions
+} from "./decorators/passkeyServer.js"
+export type PasskeyServerClient<
+    rpcSchema extends RpcSchema | undefined = undefined
+> = Prettify<
+    Client<
+        Transport,
+        Chain | undefined,
+        Account | undefined,
+        rpcSchema extends RpcSchema
+            ? [...PasskeyServerRpcSchema, ...rpcSchema]
+            : [...PasskeyServerRpcSchema],
+        PasskeyServerActions
+    >
+>
+export type PasskeyServerClientConfig<
+    rpcSchema extends RpcSchema | undefined = undefined
+> = Prettify<
+    Pick<
+        ClientConfig<
+            Transport,
+            Chain | undefined,
+            Account | undefined,
+            rpcSchema
+        >,
+        | "account"
+        | "cacheTime"
+        | "chain"
+        | "key"
+        | "name"
+        | "pollingInterval"
+        | "rpcSchema"
+        | "transport"
+    >
+>
+export function createPasskeyServerClient<
+    rpcSchema extends RpcSchema | undefined = undefined
+>(
+    parameters: PasskeyServerClientConfig<rpcSchema>
+): PasskeyServerClient<rpcSchema>
+export function createPasskeyServerClient(
+    parameters: PasskeyServerClientConfig
+): PasskeyServerClient {
+    const { key = "public", name = "Passkey Server Client" } = parameters
+    return createClient({
+        ...parameters,
+        key,
+        name,
+        type: "passkeyServerClient"
+    }).extend(passkeyServerActions)
+}