prividium 0.1.2 → 0.1.4

package/README.md

@@ -1,8 +1,8 @@
-# Prividium SDK & CLI
+# Prividium™ SDK & CLI
 
-A TypeScript SDK and CLI for integrating with the Prividium authorization system. The SDK provides popup OAuth, token
-management, and a viem transport for secure RPC; the CLI runs a local authenticated JSON-RPC proxy to your Prividium RPC
-and manages basic configuration.
+A TypeScript SDK and CLI for integrating with the Prividium™ authorization system. The SDK provides popup OAuth, token
+management, and a viem transport for secure RPC; the CLI runs a local authenticated JSON-RPC proxy to your Prividium™
+RPC and manages basic configuration.
 
 ## Features
 
@@ -31,7 +31,7 @@ npx prividium proxy
 
 ## Quick Start
 
-### 1. Create a Prividium Chain
+### 1. Create a Prividium™ Chain
 
 ```typescript
 import { createPrividiumChain } from 'prividium';
@@ -40,7 +40,7 @@ import { defineChain, createPublicClient, http } from 'viem';
 // Define your chain
 const prividiumChain = defineChain({
   id: 7777,
-  name: 'Prividium Chain',
+  name: 'Prividium™ Chain',
   nativeCurrency: { name: 'Ether', symbol: 'ETH', decimals: 18 },
   rpcUrls: { default: { http: [] } },
   blockExplorers: { default: { name: 'Explorer', url: 'https://explorer.prividium.io' } }
@@ -54,6 +54,7 @@ const prividium = createPrividiumChain({
   chain: prividiumChain,
   rpcUrl: 'https://rpc.prividium.io',
   authBaseUrl: 'https://auth.prividium.io',
+  permissionsApiBaseUrl: 'https://permissions.prividium.io/api',
   redirectUrl: window.location.origin + '/auth/callback',
   onAuthExpiry: () => {
     console.log('Authentication expired - please reconnect');
@@ -88,13 +89,13 @@ const balance = await client.getBalance({
 
 ### 4. Sending Transactions with Injected Wallets (MetaMask)
 
-Before sending transactions through injected wallets, you need to add the Prividium network and enable wallet RPC for
+Before sending transactions through injected wallets, you need to add the Prividium™ network and enable wallet RPC for
 each transaction.
 
 ```typescript
 import { createWalletClient, custom, encodeFunctionData } from 'viem';
 
-// Add Prividium network to MetaMask
+// Add Prividium™ network to MetaMask
 await prividium.addNetworkToWallet();
 
 // Create wallet client for MetaMask
@@ -172,7 +173,7 @@ page at the `redirectUrl` you configured:
 
 **How it works:**
 
-1. User clicks "Login" → SDK opens popup to Prividium user panel
+1. User clicks "Login" → SDK opens popup to Prividium™ user panel
 2. User authenticates → user panel redirects popup to your callback page
 3. Callback page calls `handleAuthCallback()` → token is posted back to parent via `postMessage`
 4. SDK receives token, validates state parameter (CSRF protection), and closes popup
@@ -194,6 +195,7 @@ const prividium = createPrividiumChain({
   chain: prividiumChain,
   rpcUrl: 'https://rpc.prividium.io',
   authBaseUrl: 'https://auth.prividium.io',
+  permissionsApiBaseUrl: 'https://permissions.prividium.io/api',
   redirectUrl: window.location.origin + '/auth/callback',
   onAuthExpiry: () => {
     console.log('Authentication expired');
@@ -217,7 +219,7 @@ are not met, the user panel will guide them through the necessary setup steps be
 
 ### `createPrividiumChain(config)`
 
-Creates a new Prividium SDK instance.
+Creates a new Prividium™ SDK instance.
 
 **Parameters:**
 
@@ -227,6 +229,7 @@ interface PrividiumConfig {
   chain: Chain; // Viem chain configuration (without rpcUrls)
   rpcUrl: string; // Private RPC endpoint URL
   authBaseUrl: string; // Authorization service base URL
+  permissionsApiBaseUrl: string; // Permissions API service base URL
   redirectUrl: string; // OAuth redirect URL
   storage?: Storage; // Custom storage implementation (optional)
   onAuthExpiry?: () => void; // Called when authentication expires (optional)
@@ -333,7 +336,7 @@ const prividium = createPrividiumChain({
 
 ### Multiple Chains
 
-Support multiple Prividium chains:
+Support multiple Prividium™ chains:
 
 ```typescript
 const testnetPrividium = createPrividiumChain({
@@ -341,6 +344,7 @@ const testnetPrividium = createPrividiumChain({
   chain: testnetChain,
   rpcUrl: 'https://testnet-rpc.prividium.io',
   authBaseUrl: 'https://testnet-auth.prividium.io',
+  permissionsApiBaseUrl: 'https://testnet-permissions.prividium.io/api',
   redirectUrl: window.location.origin + '/auth/callback'
 });
 
@@ -349,6 +353,7 @@ const mainnetPrividium = createPrividiumChain({
   chain: mainnetChain,
   rpcUrl: 'https://mainnet-rpc.prividium.io',
   authBaseUrl: 'https://mainnet-auth.prividium.io',
+  permissionsApiBaseUrl: 'https://mainnet-permissions.prividium.io/api',
   redirectUrl: window.location.origin + '/auth/callback'
 });
 ```
@@ -404,9 +409,13 @@ The SDK uses the following localStorage keys:
 
 ## CLI
 
-Run a local, authenticated RPC proxy that forwards JSON-RPC requests to your Prividium RPC while injecting the OAuth
+Run a local, authenticated RPC proxy that forwards JSON-RPC requests to your Prividium™ RPC while injecting the OAuth
 token obtained via a quick browser sign-in.
 
+The proxy CLI is particularly useful for deploying contracts with standard Ethereum tools (like Foundry or Hardhat)
+without having to manage authentication manually. The proxy automatically handles authentication headers, allowing you
+to use your existing deployment workflows.
+
 ### Install & Run
 
 - Use without installing: `npx prividium proxy`
@@ -430,8 +439,8 @@ What happens:
 
 Flags:
 
-- `--rpc-url, -r` (string): Target Prividium RPC URL.
-- `--user-panel-url, -u` (string): URL used to log in to Prividium.
+- `--rpc-url, -r` (string): Target Prividium™ RPC URL.
+- `--user-panel-url, -u` (string): URL used to log in to Prividium™.
 - `--port, -p` (number, default `24101`): Local proxy port. This has to match with the port configured in the admin
   panel, which by default uses this same port.
 - `--host, -h` (string, default `127.0.0.1`): host binded to server. By default only connections comming from local

package/dist/cli/commands/config.js

@@ -23,13 +23,13 @@ export const addConfig = (cli) => {
         .command('set', 'Updates config', (yargs) => yargs
         .option('rpcUrl', {
         alias: ['rpc-url', 'r'],
-        description: 'Specifies target Prividium rpc url. These takes precedence over config file and env variable.',
+        description: 'Specifies target Prividium™ rpc url. These takes precedence over config file and env variable.',
         demandOption: true,
         type: 'string'
     })
         .option('userPanelUrl', {
         alias: ['user-panel-url', 'u'],
-        description: 'Specifies url used to log in into the Prividium network. Takes precedence over config file and env variable',
+        description: 'Specifies url used to log in into the Prividium™ network. Takes precedence over config file and env variable',
         type: 'string',
         demandOption: true
     }), (args) => updateConfig({

package/dist/cli/commands/proxy.js

@@ -35,13 +35,13 @@ export const addProxy = (cli) => {
     return cli.command('proxy', 'Starts authenticated rpc proxy server', (yargs) => yargs
         .option('rpcUrl', {
         alias: ['rpc-url', 'r'],
-        description: 'Specifies target Prividium rpc url. These takes precedence over config file and env variable.',
+        description: 'Specifies target Prividium™ rpc url. These takes precedence over config file and env variable.',
         demandOption: false,
         type: 'string'
     })
         .option('userPanelUrl', {
         alias: ['user-panel-url', 'u'],
-        description: 'Specifies url used to log in into the Prividium network. Takes precedence over config file and env variable',
+        description: 'Specifies url used to log in into the Prividium™ network. Takes precedence over config file and env variable',
         type: 'string'
     })
         .option('configPath', {
@@ -52,7 +52,7 @@ export const addProxy = (cli) => {
     })
         .option('port', {
         alias: ['p'],
-        description: 'Port used for local proxy. This has to match with the port configured in your Prividium network.',
+        description: 'Port used for local proxy. This has to match with the port configured in your Prividium™ network.',
         default: 24101,
         type: 'number'
     })

package/dist/cli/server/config-file.js

@@ -49,7 +49,7 @@ export class ConfigFile {
     }
     print() {
         const { prividiumRpcUrl, userPanelUrl } = this.read();
-        console.log(`${color.bold('Prividium rpc url')}: ${prividiumRpcUrl}`);
+        console.log(`${color.bold('Prividium™ rpc url')}: ${prividiumRpcUrl}`);
         console.log(`${color.bold('Log in url')}: ${userPanelUrl}`);
     }
     printPath() {

package/dist/cli/server/connection-workflow.js

@@ -19,7 +19,7 @@ export class CreationWorkflow {
     start() {
         console.log(color.blue(HEADER));
         console.log('');
-        intro('Starting prividium proxy');
+        intro('Starting Prividium™ proxy');
     }
     async gatherData(maybePrividiumRpcUrl, maybeUserPanelUrl) {
         const { url: prividiumRpcUrl, prompted: prompted1 } = await this.askForUrl(maybePrividiumRpcUrl, 'prividium rpc');

package/dist/cli/server/server.js

@@ -11,6 +11,8 @@ function fastifyApp() {
 function randomStateString() {
     return randomBytes(20).toString('hex');
 }
+const rpcCallSchema = z.object({ method: z.string() });
+const rpcReqSchema = z.union([rpcCallSchema, rpcCallSchema.array()]);
 export function buildServer(config) {
     const app = fastifyApp();
     app.setValidatorCompiler(validatorCompiler);
@@ -57,9 +59,16 @@ export function buildServer(config) {
         rewritePrefix: '/rpc',
         routes: ['/'],
         preValidation: (request, _reply, done) => {
-            const parser = z.object({ method: z.string() });
-            const { method } = parser.parse(request.body);
-            config.onCall(method);
+            const method = rpcReqSchema.safeParse(request.body);
+            if (!method.success) {
+                config.onCall('unknown');
+            }
+            else if (Array.isArray(method.data)) {
+                config.onCall(method.data.map((m) => m.method).join(', '));
+            }
+            else {
+                config.onCall(method.data.method);
+            }
             done();
         },
         preHandler: (_req, reply, done) => {

package/dist/cli/static/callback.html

@@ -3,7 +3,7 @@
   <head>
     <meta charset="UTF-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1" />
-    <title>Prividium</title>
+    <title>Prividium™</title>
     <script src="https://cdn.tailwindcss.com"></script>
   </head>
   <body
@@ -16,7 +16,7 @@
         id="main-title"
         class="text-2xl md:text-3xl font-bold bg-gradient-to-r from-blue-700 to-blue-900 bg-clip-text text-transparent"
       >
-        Finalizing Prividium sign-in...
+        Finalizing Prividium™ sign-in...
       </h1>
       <div class="mt-4">
         <svg
@@ -35,7 +35,7 @@
       </div>
       <div id="proxy-url" style="display: none" class="mt-6 text-blue-700 text-center">
         <img src="https://www.zksync.io/faq/faq-brackets.svg" alt="Success" class="h-12 w-auto mx-auto mb-3" />
-        <span>You can now access your Prividium RPC proxy at: </span>
+        <span>You can now access your Prividium™ RPC proxy at: </span>
         <span class="font-bold">http://127.0.0.1:24101/rpc</span>
       </div>
     </div>

package/dist/sdk/error-utils.d.ts

@@ -0,0 +1,4 @@
+/**
+ * Checks if a Response contains a Prividium unauthorized/forbidden error.
+ */
+export declare function hasPrividiumUnauthorizedError(response: Response): Promise<boolean>;

package/dist/sdk/error-utils.js

@@ -0,0 +1,21 @@
+import { z } from 'zod';
+import { UNAUTHORIZED_ERROR_CODE, FORBIDDEN_ERROR_CODE } from './rpc-error-codes.js';
+const jsonRpcErrorSchema = z.object({
+    error: z.object({
+        code: z.number(),
+        message: z.string().optional(),
+        data: z.unknown().optional()
+    })
+});
+/**
+ * Checks if a Response contains a Prividium unauthorized/forbidden error.
+ */
+export async function hasPrividiumUnauthorizedError(response) {
+    const clonedResponse = response.clone();
+    const parsed = jsonRpcErrorSchema.safeParse(await clonedResponse.json());
+    // { success: false, error: {...} } | { success: true, data: {...} }
+    if (parsed.success) {
+        return [UNAUTHORIZED_ERROR_CODE, FORBIDDEN_ERROR_CODE].includes(parsed.data.error.code);
+    }
+    return false;
+}

package/dist/sdk/index.d.ts

@@ -4,3 +4,4 @@ export { AUTH_ERRORS, STORAGE_KEYS } from './types.js';
 export { LocalStorage, TokenManager } from './storage.js';
 export { generateRandomState } from './token-utils.js';
 export { PopupAuth, handleAuthCallback, type AuthCallbackMessage, type OauthScope } from './popup-auth.js';
+export { UNAUTHORIZED_ERROR_CODE, FORBIDDEN_ERROR_CODE } from './rpc-error-codes.js';

package/dist/sdk/index.js

@@ -3,3 +3,4 @@ export { AUTH_ERRORS, STORAGE_KEYS } from './types.js';
 export { LocalStorage, TokenManager } from './storage.js';
 export { generateRandomState } from './token-utils.js';
 export { PopupAuth, handleAuthCallback } from './popup-auth.js';
+export { UNAUTHORIZED_ERROR_CODE, FORBIDDEN_ERROR_CODE } from './rpc-error-codes.js';

package/dist/sdk/prividium-chain.js

@@ -1,7 +1,8 @@
 import { http } from 'viem';
-import { chainConfig } from 'viem/zksync';
+import { mainnet } from 'viem/chains';
 import { LocalStorage, TokenManager } from './storage.js';
 import { PopupAuth } from './popup-auth.js';
+import { hasPrividiumUnauthorizedError } from './error-utils.js';
 export function createPrividiumChain(config) {
     const storage = config.storage || new LocalStorage();
     const tokenManager = new TokenManager(storage, config.chain.id);
@@ -33,9 +34,9 @@ export function createPrividiumChain(config) {
                 ...getAuthHeaders()
             };
         },
-        onFetchResponse: (response) => {
-            // Handle 403 responses (expired token or no access)
-            if (response.status === 403) {
+        onFetchResponse: async (response) => {
+            // Handle JSON RPC 2.0 error responses with authorization error codes
+            if (await hasPrividiumUnauthorizedError(response)) {
                 tokenManager.clearToken();
                 config.onAuthExpiry?.();
             }
@@ -43,14 +44,15 @@ export function createPrividiumChain(config) {
     });
     return {
         chain: {
-            ...chainConfig,
+            ...mainnet,
             ...config.chain,
+            id: config.chain.id,
             contracts: {
-                ...chainConfig.contracts,
                 ...config.chain.contracts,
-                multicall3: undefined // Prividium doesn't support multicall yet
+                multicall3: undefined // Prividium™ doesn't support multicall yet
             },
-            rpcUrls: { default: { http: [config.rpcUrl] } }
+            rpcUrls: { default: { http: [config.rpcUrl] } },
+            blockExplorers: config.chain.blockExplorers
         },
         transport,
         async authorize(options) {

package/dist/sdk/rpc-error-codes.d.ts

@@ -0,0 +1,24 @@
+/**
+ * RPC error codes used in Prividium SDK.
+ * Standard codes follow JSON-RPC 2.0 spec, custom codes handle auth/authz.
+ */
+/**
+ * Internal error (-32603). Standard JSON-RPC 2.0 code for server errors.
+ */
+export declare const INTERNAL_RPC_ERROR = -32603;
+/**
+ * Invalid Request (-32600). Standard JSON-RPC 2.0 code for malformed requests.
+ */
+export declare const INVALID_REQUEST_ERROR_CODE = -32600;
+/**
+ * Invalid params (-32602). Standard JSON-RPC 2.0 code for bad parameters.
+ */
+export declare const BAD_RPC_PARAMS_ERROR_CODE = -32602;
+/**
+ * Unauthorized (-32090). Custom code for authentication failures (no/invalid token).
+ */
+export declare const UNAUTHORIZED_ERROR_CODE = -32090;
+/**
+ * Forbidden (-32001). Custom code for authorization failures (valid token, insufficient permissions).
+ */
+export declare const FORBIDDEN_ERROR_CODE = -32001;

package/dist/sdk/rpc-error-codes.js

@@ -0,0 +1,24 @@
+/**
+ * RPC error codes used in Prividium SDK.
+ * Standard codes follow JSON-RPC 2.0 spec, custom codes handle auth/authz.
+ */
+/**
+ * Internal error (-32603). Standard JSON-RPC 2.0 code for server errors.
+ */
+export const INTERNAL_RPC_ERROR = -32603;
+/**
+ * Invalid Request (-32600). Standard JSON-RPC 2.0 code for malformed requests.
+ */
+export const INVALID_REQUEST_ERROR_CODE = -32600;
+/**
+ * Invalid params (-32602). Standard JSON-RPC 2.0 code for bad parameters.
+ */
+export const BAD_RPC_PARAMS_ERROR_CODE = -32602;
+/**
+ * Unauthorized (-32090). Custom code for authentication failures (no/invalid token).
+ */
+export const UNAUTHORIZED_ERROR_CODE = -32090;
+/**
+ * Forbidden (-32001). Custom code for authorization failures (valid token, insufficient permissions).
+ */
+export const FORBIDDEN_ERROR_CODE = -32001;

package/dist/tsconfig.sdk.tsbuildinfo

@@ -1 +1 @@
-{"root":["../src/index.ts","../src/popup-auth.ts","../src/prividium-chain.ts","../src/storage.ts","../src/token-utils.ts","../src/types.ts"],"version":"5.8.3"}
+{"root":["../src/error-utils.ts","../src/index.ts","../src/popup-auth.ts","../src/prividium-chain.ts","../src/rpc-error-codes.ts","../src/storage.ts","../src/token-utils.ts","../src/types.ts"],"version":"5.8.3"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "prividium",
-  "version": "0.1.2",
+  "version": "0.1.4",
   "bin": {
     "prividium": "./bin/cli.js"
   },