toss-expo-sdk 0.1.1 → 1.0.1

package/lib/typescript/src/reconciliation.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"reconciliation.d.ts","sourceRoot":"","sources":["../../../src/reconciliation.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EACL,UAAU,EACV,SAAS,EACT,WAAW,EAEZ,MAAM,iBAAiB,CAAC;AACzB,OAAO,KAAK,EAAE,YAAY,EAAgB,MAAM,UAAU,CAAC;AAQ3D;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,SAAS,GAAG,QAAQ,GAAG,UAAU,CAAC;IAC1C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,kBAAkB,EAAE,MAAM,EAAE,CAAC;CAC9B;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAwF7C;AAED;;GAEG;AACH,wBAAsB,0BAA0B,CAC9C,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,WAAW,CAAC,CA6CtB;AAED;;GAEG;AACH,wBAAsB,wBAAwB,CAC5C,WAAW,EAAE,WAAW,EACxB,UAAU,EAAE,UAAU,EACtB,UAAU,GAAE,MAAU,GACrB,OAAO,CAAC,MAAM,CAAC,CAgDjB;AAED;;GAEG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,gBAAgB,CAAC,CAwC3B;AAED;;GAEG;AACH,wBAAsB,uBAAuB,CAC3C,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,gBAAgB,EAAE,CAAC,CAyD7B;AAED;;GAEG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,EAAE,CAAC,CAyBnD;AAED;;GAEG;AACH,wBAAsB,sBAAsB,CAC1C,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,mBAAmB,CAAC,CAiB9B"}
+{"version":3,"file":"reconciliation.d.ts","sourceRoot":"","sources":["../../../src/reconciliation.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EACL,UAAU,EACV,SAAS,EACT,WAAW,EAEZ,MAAM,iBAAiB,CAAC;AACzB,OAAO,KAAK,EAAE,YAAY,EAAgB,MAAM,UAAU,CAAC;AAe3D;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,SAAS,GAAG,QAAQ,GAAG,UAAU,CAAC;IAC1C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,kBAAkB,EAAE,MAAM,EAAE,CAAC;CAC9B;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAuI7C;AAED;;GAEG;AACH,wBAAsB,0BAA0B,CAC9C,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,WAAW,CAAC,CA6CtB;AAED;;GAEG;AACH,wBAAsB,wBAAwB,CAC5C,WAAW,EAAE,WAAW,EACxB,UAAU,EAAE,UAAU,EACtB,UAAU,GAAE,MAAU,GACrB,OAAO,CAAC,MAAM,CAAC,CAgDjB;AAED;;;GAGG;AACH,wBAAsB,4BAA4B,CAChD,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,EACtB,YAAY,EAAE,SAAS,EACvB,QAAQ,EAAE,GAAG,EAAE,iBAAiB;AAChC,UAAU,GAAE,MAAU,GACrB,OAAO,CAAC,MAAM,CAAC,CAsHjB;AAED;;GAEG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,YAAY,EACpB,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,gBAAgB,CAAC,CAwC3B;AAED;;GAEG;AACH,wBAAsB,uBAAuB,CAC3C,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,gBAAgB,EAAE,CAAC,CAyD7B;AAED;;GAEG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,EAAE,CAAC,CAyBnD;AAED;;GAEG;AACH,wBAAsB,sBAAsB,CAC1C,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,mBAAmB,CAAC,CAiB9B"}

package/lib/typescript/src/services/authService.d.ts

@@ -1,4 +1,4 @@
-import { Keypair, PublicKey } from '@solana/web3.js';
+import { Keypair, PublicKey, Connection } from '@solana/web3.js';
 import type { TossUser } from '../types/tossUser';
 export declare const SESSION_KEY = "toss_user_session";
 type UserSession = {
@@ -50,6 +50,31 @@ export declare class AuthService {
      * Only use for logout or account deletion
      */
     static deleteWalletPermanently(): Promise<void>;
+    /**
+     * Create a secure durable nonce account for offline transactions
+     * REQUIRES biometric authentication for maximum security
+     *
+     * This creates a nonce account that enables:
+     * - Offline transaction creation (with replay protection)
+     * - Biometric-protected signing
+     * - Encrypted storage with Noise Protocol support
+     */
+    static createSecureNonceAccount(user: TossUser, connection: Connection, userKeypair: Keypair): Promise<TossUser>;
+    /**
+     * Enable offline transactions for a user with nonce account support
+     * Ensures all security measures are in place
+     */
+    static enableOfflineTransactions(user: TossUser): Promise<TossUser>;
+    /**
+     * Verify nonce account is accessible and valid
+     * Requires biometric authentication
+     */
+    static verifyNonceAccountAccess(userId: string): Promise<boolean>;
+    /**
+     * Revoke nonce account (security measure)
+     * Requires biometric verification
+     */
+    static revokeNonceAccount(userId: string, user: TossUser): Promise<TossUser>;
 }
 export {};
 //# sourceMappingURL=authService.d.ts.map

package/lib/typescript/src/services/authService.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"authService.d.ts","sourceRoot":"","sources":["../../../../src/services/authService.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAErD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAGlD,eAAO,MAAM,WAAW,sBAAsB,CAAC;AAI/C,KAAK,WAAW,GAAG;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF,qBAAa,WAAW;WACT,gBAAgB,CAC3B,aAAa,EAAE,MAAM,EACrB,WAAW,GAAE,OAAe,GAC3B,OAAO,CAAC;QAAE,IAAI,EAAE,QAAQ,CAAC;QAAC,OAAO,EAAE,WAAW,CAAA;KAAE,CAAC;WAwCvC,WAAW,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;WAIhD,UAAU,IAAI,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;WAKzC,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;WAKxB,gBAAgB,IAAI,OAAO,CAAC,OAAO,CAAC;WAQpC,0BAA0B,IAAI,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC;IA2DlE;;;;;;;;;;;OAWG;WACU,qBAAqB,CAChC,OAAO,EAAE,OAAO,EAChB,aAAa,GAAE,OAAc,GAC5B,OAAO,CAAC,IAAI,CAAC;IAoChB;;;OAGG;WACU,uBAAuB,IAAI,OAAO,CAAC,OAAO,CAAC;IAKxD;;;OAGG;WACU,uBAAuB,IAAI,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC;IAajE;;;OAGG;WACU,oBAAoB,IAAI,OAAO,CAAC,IAAI,CAAC;IAKlD;;;OAGG;WACU,uBAAuB,IAAI,OAAO,CAAC,IAAI,CAAC;CAKtD"}
+{"version":3,"file":"authService.d.ts","sourceRoot":"","sources":["../../../../src/services/authService.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAEjE,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAIlD,eAAO,MAAM,WAAW,sBAAsB,CAAC;AAK/C,KAAK,WAAW,GAAG;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF,qBAAa,WAAW;WACT,gBAAgB,CAC3B,aAAa,EAAE,MAAM,EACrB,WAAW,GAAE,OAAe,GAC3B,OAAO,CAAC;QAAE,IAAI,EAAE,QAAQ,CAAC;QAAC,OAAO,EAAE,WAAW,CAAA;KAAE,CAAC;WA8CvC,WAAW,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;WAIhD,UAAU,IAAI,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;WAKzC,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;WAKxB,gBAAgB,IAAI,OAAO,CAAC,OAAO,CAAC;WAQpC,0BAA0B,IAAI,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC;IA2DlE;;;;;;;;;;;OAWG;WACU,qBAAqB,CAChC,OAAO,EAAE,OAAO,EAChB,aAAa,GAAE,OAAc,GAC5B,OAAO,CAAC,IAAI,CAAC;IAoChB;;;OAGG;WACU,uBAAuB,IAAI,OAAO,CAAC,OAAO,CAAC;IAKxD;;;OAGG;WACU,uBAAuB,IAAI,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC;IAajE;;;OAGG;WACU,oBAAoB,IAAI,OAAO,CAAC,IAAI,CAAC;IAKlD;;;OAGG;WACU,uBAAuB,IAAI,OAAO,CAAC,IAAI,CAAC;IAMrD;;;;;;;;OAQG;WACU,wBAAwB,CACnC,IAAI,EAAE,QAAQ,EACd,UAAU,EAAE,UAAU,EACtB,WAAW,EAAE,OAAO,GACnB,OAAO,CAAC,QAAQ,CAAC;IA2EpB;;;OAGG;WACU,yBAAyB,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IAuBzE;;;OAGG;WACU,wBAAwB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAwBvE;;;OAGG;WACU,kBAAkB,CAC7B,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,QAAQ,GACb,OAAO,CAAC,QAAQ,CAAC;CA4BrB"}

package/lib/typescript/src/storage/secureStorage.d.ts

@@ -4,4 +4,20 @@ export declare function getSecureIntent(intentId: string): Promise<SolanaIntent
 export declare function getAllSecureIntents(): Promise<SolanaIntent[]>;
 export declare function removeSecureIntent(intentId: string): Promise<void>;
 export declare function clearAllSecureIntents(): Promise<void>;
+/**
+ * GAP #1: Cleanup expired intents from local storage
+ * Per TOSS Paper Section 8: Local state is append-only until settlement confirmation
+ */
+export declare function cleanupExpiredIntents(): Promise<number>;
+export interface ReconciliationStateData {
+    userId: string;
+    lastSyncTime: number;
+    lastSyncSlot: number;
+    processedIntents: string[];
+    failedIntents: string[];
+    conflictingIntents: string[];
+}
+export declare function saveReconciliationState(userId: string, state: Partial<ReconciliationStateData>): Promise<void>;
+export declare function getReconciliationState(userId: string): Promise<ReconciliationStateData>;
+export declare function updateReconciliationState(userId: string, intentId: string, status: 'processed' | 'failed' | 'conflicted'): Promise<void>;
 //# sourceMappingURL=secureStorage.d.ts.map

package/lib/typescript/src/storage/secureStorage.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"secureStorage.d.ts","sourceRoot":"","sources":["../../../../src/storage/secureStorage.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAoB9C,wBAAsB,iBAAiB,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAiB3E;AAED,wBAAsB,eAAe,CACnC,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAY9B;AAED,wBAAsB,mBAAmB,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC,CAanE;AAED,wBAAsB,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAexE;AAED,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,IAAI,CAAC,CAU3D"}
+{"version":3,"file":"secureStorage.d.ts","sourceRoot":"","sources":["../../../../src/storage/secureStorage.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAoB9C,wBAAsB,iBAAiB,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAiB3E;AAED,wBAAsB,eAAe,CACnC,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAY9B;AAED,wBAAsB,mBAAmB,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC,CAanE;AAED,wBAAsB,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAexE;AAED,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,IAAI,CAAC,CAU3D;AAED;;;GAGG;AACH,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,MAAM,CAAC,CAmB7D;AAQD,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,kBAAkB,EAAE,MAAM,EAAE,CAAC;CAC9B;AAED,wBAAsB,uBAAuB,CAC3C,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,OAAO,CAAC,uBAAuB,CAAC,GACtC,OAAO,CAAC,IAAI,CAAC,CA4Bf;AAED,wBAAsB,sBAAsB,CAC1C,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,uBAAuB,CAAC,CAuBlC;AAED,wBAAsB,yBAAyB,CAC7C,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,WAAW,GAAG,QAAQ,GAAG,YAAY,GAC5C,OAAO,CAAC,IAAI,CAAC,CAgCf"}

package/lib/typescript/src/sync.d.ts

@@ -4,6 +4,8 @@
  * Implements Section 9 of the TOSS Technical Paper:
  * Upon regaining connectivity, devices initiate reconciliation with onchain state.
  * All offline artifacts are verified onchain and settled with deterministic outcomes.
+ *
+ * GAP #2 FIX: Track synchronization state persistently
  */
 import { Connection, PublicKey } from '@solana/web3.js';
 import { type SettlementResult, type ReconciliationState } from './reconciliation';
@@ -27,11 +29,14 @@ export interface SyncResult {
  * 2. Settle all pending intents
  * 3. Update local state with results
  *
+ * GAP #2 FIX: Persist reconciliation state for future queries
+ *
  * @param connection Connection to Solana RPC
+ * @param userId User ID for state tracking (required for persistence)
  * @param feePayer Optional fee payer keypair public key
  * @returns Detailed sync results including conflicts and settlements
  */
-export declare function syncToChain(connection: Connection, feePayer?: PublicKey): Promise<SyncResult>;
+export declare function syncToChain(connection: Connection, userId?: string, feePayer?: PublicKey): Promise<SyncResult>;
 /**
  * Lightweight sync to check status without settling
  * Useful for monitoring or UI updates without committing to settlements

package/lib/typescript/src/sync.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sync.d.ts","sourceRoot":"","sources":["../../../src/sync.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACxD,OAAO,EAIL,KAAK,gBAAgB,EACrB,KAAK,mBAAmB,EACzB,MAAM,kBAAkB,CAAC;AAG1B,MAAM,WAAW,UAAU;IAEzB,qBAAqB,EAAE,gBAAgB,EAAE,CAAC;IAE1C,iBAAiB,EAAE,gBAAgB,EAAE,CAAC;IAEtC,iBAAiB,EAAE;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAE5D,mBAAmB,EAAE,mBAAmB,CAAC;IAEzC,aAAa,EAAE,MAAM,CAAC;IAEtB,UAAU,EAAE,OAAO,CAAC;CACrB;AAED;;;;;;;;;;;;GAYG;AACH,wBAAsB,WAAW,CAC/B,UAAU,EAAE,UAAU,EACtB,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,UAAU,CAAC,CAyCrB;AAED;;;GAGG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,mBAAmB,CAAC,CAE9B"}
+{"version":3,"file":"sync.d.ts","sourceRoot":"","sources":["../../../src/sync.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACxD,OAAO,EAIL,KAAK,gBAAgB,EACrB,KAAK,mBAAmB,EACzB,MAAM,kBAAkB,CAAC;AAI1B,MAAM,WAAW,UAAU;IAEzB,qBAAqB,EAAE,gBAAgB,EAAE,CAAC;IAE1C,iBAAiB,EAAE,gBAAgB,EAAE,CAAC;IAEtC,iBAAiB,EAAE;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAE5D,mBAAmB,EAAE,mBAAmB,CAAC;IAEzC,aAAa,EAAE,MAAM,CAAC;IAEtB,UAAU,EAAE,OAAO,CAAC;CACrB;AAED;;;;;;;;;;;;;;;GAeG;AACH,wBAAsB,WAAW,CAC/B,UAAU,EAAE,UAAU,EACtB,MAAM,CAAC,EAAE,MAAM,EACf,QAAQ,CAAC,EAAE,SAAS,GACnB,OAAO,CAAC,UAAU,CAAC,CA0ErB;AAED;;;GAGG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,mBAAmB,CAAC,CAE9B"}

package/lib/typescript/src/types/nonceAccount.d.ts

@@ -0,0 +1,59 @@
+/**
+ * Represents a durable nonce account for offline transaction support
+ * Enables secure offline transaction creation with replay protection
+ */
+export interface NonceAccountInfo {
+    address: string;
+    owner: string;
+    authorizedSigner: string;
+    currentNonce: number;
+    lastUsedNonce: number;
+    blockhash: string;
+    isBiometricProtected: boolean;
+    createdAt: number;
+    lastModified: number;
+    isStoredSecurely: boolean;
+    encryptedData?: string;
+    minRentLamports?: number;
+    status?: 'active' | 'expired' | 'revoked';
+}
+/**
+ * Options for creating a durable nonce account
+ */
+export interface CreateNonceAccountOptions {
+    requireBiometric?: boolean;
+    securityLevel?: 'standard' | 'high' | 'maximum';
+    minNonceCount?: number;
+    maxNonceCount?: number;
+    persistToSecureStorage?: boolean;
+    allowCloudBackup?: boolean;
+    autoRenew?: boolean;
+    expiryDays?: number;
+}
+/**
+ * Nonce account cache entry for efficient offline usage
+ */
+export interface NonceAccountCacheEntry {
+    accountInfo: NonceAccountInfo;
+    nonces: number[];
+    expiresAt: number;
+}
+/**
+ * Represents a transaction prepared for offline use with nonce account
+ */
+export interface OfflineTransaction {
+    id: string;
+    nonceAccount: string;
+    nonce: number;
+    transaction: string;
+    signature?: string;
+    status: 'prepared' | 'signed' | 'submitted' | 'confirmed' | 'failed';
+    createdAt: number;
+    expiresAt: number;
+    metadata?: {
+        description?: string;
+        tags?: string[];
+        [key: string]: any;
+    };
+}
+//# sourceMappingURL=nonceAccount.d.ts.map

package/lib/typescript/src/types/nonceAccount.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nonceAccount.d.ts","sourceRoot":"","sources":["../../../../src/types/nonceAccount.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAE/B,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,gBAAgB,EAAE,MAAM,CAAC;IAGzB,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAGlB,oBAAoB,EAAE,OAAO,CAAC;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;IAGrB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,MAAM,CAAC,EAAE,QAAQ,GAAG,SAAS,GAAG,SAAS,CAAC;CAC3C;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IAExC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,aAAa,CAAC,EAAE,UAAU,GAAG,MAAM,GAAG,SAAS,CAAC;IAGhD,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IAGvB,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAG3B,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,WAAW,EAAE,gBAAgB,CAAC;IAC9B,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,UAAU,GAAG,QAAQ,GAAG,WAAW,GAAG,WAAW,GAAG,QAAQ,CAAC;IACrE,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE;QACT,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;QAChB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,CAAC;CACH"}

package/lib/typescript/src/types/tossUser.d.ts

@@ -1,6 +1,7 @@
 import { PublicKey } from '@solana/web3.js';
 /**
  * Represents a TOSS wallet user in the ecosystem
+ * Enhanced with secure nonce account support for offline transactions
  */
 export type TossUser = {
     userId: string;
@@ -11,12 +12,25 @@ export type TossUser = {
         isVerified: boolean;
         createdAt: string;
     };
+    nonceAccount?: {
+        address: PublicKey;
+        authorizedSigner: PublicKey;
+        isBiometricProtected: boolean;
+        expiresAt?: number;
+        status: 'active' | 'expired' | 'revoked';
+    };
     device: {
         id: string;
         name?: string;
         lastActive: string;
         client: 'mobile' | 'web' | 'desktop';
     };
+    security: {
+        biometricEnabled: boolean;
+        biometricSalt?: string;
+        nonceAccountRequiresBiometric: boolean;
+        lastBiometricVerification?: number;
+    };
     status: 'active' | 'inactive' | 'restricted';
     lastSeen: string;
     tossFeatures: {
@@ -24,6 +38,8 @@ export type TossUser = {
         canReceive: boolean;
         isPrivateTxEnabled: boolean;
         maxTransactionAmount: number;
+        offlineTransactionsEnabled?: boolean;
+        nonceAccountEnabled?: boolean;
     };
     createdAt: string;
     updatedAt: string;

package/lib/typescript/src/types/tossUser.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tossUser.d.ts","sourceRoot":"","sources":["../../../../src/types/tossUser.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG;IAErB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IAGrB,MAAM,EAAE;QACN,SAAS,EAAE,SAAS,CAAC;QACrB,UAAU,EAAE,OAAO,CAAC;QACpB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IAGF,MAAM,EAAE;QACN,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,UAAU,EAAE,MAAM,CAAC;QACnB,MAAM,EAAE,QAAQ,GAAG,KAAK,GAAG,SAAS,CAAC;KACtC,CAAC;IAGF,MAAM,EAAE,QAAQ,GAAG,UAAU,GAAG,YAAY,CAAC;IAC7C,QAAQ,EAAE,MAAM,CAAC;IAGjB,YAAY,EAAE;QACZ,OAAO,EAAE,OAAO,CAAC;QACjB,UAAU,EAAE,OAAO,CAAC;QACpB,kBAAkB,EAAE,OAAO,CAAC;QAC5B,oBAAoB,EAAE,MAAM,CAAC;KAC9B,CAAC;IAGF,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG,IAAI,CAChC,QAAQ,EACR,QAAQ,GAAG,UAAU,GAAG,QAAQ,GAAG,QAAQ,CAC5C,GAAG;IACF,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAGF,eAAO,MAAM,eAAe,EAAE,QAyB7B,CAAC"}
+{"version":3,"file":"tossUser.d.ts","sourceRoot":"","sources":["../../../../src/types/tossUser.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C;;;GAGG;AACH,MAAM,MAAM,QAAQ,GAAG;IAErB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IAGrB,MAAM,EAAE;QACN,SAAS,EAAE,SAAS,CAAC;QACrB,UAAU,EAAE,OAAO,CAAC;QACpB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IAGF,YAAY,CAAC,EAAE;QACb,OAAO,EAAE,SAAS,CAAC;QACnB,gBAAgB,EAAE,SAAS,CAAC;QAC5B,oBAAoB,EAAE,OAAO,CAAC;QAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,EAAE,QAAQ,GAAG,SAAS,GAAG,SAAS,CAAC;KAC1C,CAAC;IAGF,MAAM,EAAE;QACN,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,UAAU,EAAE,MAAM,CAAC;QACnB,MAAM,EAAE,QAAQ,GAAG,KAAK,GAAG,SAAS,CAAC;KACtC,CAAC;IAGF,QAAQ,EAAE;QACR,gBAAgB,EAAE,OAAO,CAAC;QAC1B,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,6BAA6B,EAAE,OAAO,CAAC;QACvC,yBAAyB,CAAC,EAAE,MAAM,CAAC;KACpC,CAAC;IAGF,MAAM,EAAE,QAAQ,GAAG,UAAU,GAAG,YAAY,CAAC;IAC7C,QAAQ,EAAE,MAAM,CAAC;IAGjB,YAAY,EAAE;QACZ,OAAO,EAAE,OAAO,CAAC;QACjB,UAAU,EAAE,OAAO,CAAC;QACpB,kBAAkB,EAAE,OAAO,CAAC;QAC5B,oBAAoB,EAAE,MAAM,CAAC;QAC7B,0BAA0B,CAAC,EAAE,OAAO,CAAC;QACrC,mBAAmB,CAAC,EAAE,OAAO,CAAC;KAC/B,CAAC;IAGF,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG,IAAI,CAChC,QAAQ,EACR,QAAQ,GAAG,UAAU,GAAG,QAAQ,GAAG,QAAQ,CAC5C,GAAG;IACF,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAGF,eAAO,MAAM,eAAe,EAAE,QAsC7B,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "toss-expo-sdk",
-  "version": "0.1.1",
+  "version": "1.0.1",
   "description": "The official React Native SDK for The Offline Solana Stack (TOSS)",
   "type": "module",
   "main": "./lib/module/index.js",
@@ -91,6 +91,7 @@
     "del-cli": "^6.0.0",
     "eslint": "^9.35.0",
     "eslint-config-prettier": "^10.1.8",
+    "eslint-plugin-ft-flow": "^3.0.11",
     "eslint-plugin-prettier": "^5.5.4",
     "eslint-plugin-react-native": "^5.0.0",
     "jest": "^29.7.0",
@@ -136,6 +137,16 @@
     "modulePathIgnorePatterns": [
       "<rootDir>/example/node_modules",
       "<rootDir>/lib/"
+    ],
+    "transformIgnorePatterns": [
+      "node_modules/(?!(react-native|\\@react-native|\\@solana|@arcium-hq|@chainsafe)/)"
+    ],
+    "transform": {
+      "^.+\\.(js|ts|tsx|mjs)$": "babel-jest"
+    },
+    "extensionsToTreatAsEsm": [
+      ".ts",
+      ".tsx"
     ]
   },
   "commitlint": {

package/src/__tests__/reconciliation.test.tsx

@@ -180,7 +180,8 @@ describe('Discovery Module', () => {
 
       // Manually set old timestamp
       discovery.registerPeer(peer);
-      discovery['discoveredPeers'].get('peer_timeout')!.lastSeen =
+      // Access private storage for testing via cast to any
+      (discovery as any).discoveredPeers.get('peer_timeout')!.lastSeen =
         Date.now() - 6 * 60 * 1000;
 
       const active = discovery.getActivePeers();
@@ -214,6 +215,11 @@ describe('Discovery Module', () => {
       protocol = new IntentExchangeProtocol();
     });
 
+    afterEach(() => {
+      // Ensure any timers or sessions are cleaned up so Jest can exit
+      protocol.dispose();
+    });
+
     it('should create an exchange request', () => {
       const intent: SolanaIntent = {
         id: 'intent_test',

package/src/__tests__/solana-program-simple.test.ts

@@ -0,0 +1,256 @@
+/**
+ * TOSS Solana Program Integration Tests (Simplified)
+ *
+ * Tests for the toss-intent-processor program
+ * Gap #5: Onchain Intent Verification
+ */
+
+import { Connection, Keypair } from '@solana/web3.js';
+import { createIntent, verifyIntent } from '../intent';
+import { NonceAccountManager } from '../client/NonceAccountManager';
+
+describe('TOSS Solana Intent Processor Program', () => {
+  let connection: Connection;
+  let senderKeypair: Keypair;
+  let recipientKeypair: Keypair;
+  let nonceManager: NonceAccountManager;
+
+  beforeAll(() => {
+    // Use Devnet for testing
+    connection = new Connection('https://api.devnet.solana.com', 'confirmed');
+    senderKeypair = Keypair.generate();
+    recipientKeypair = Keypair.generate();
+    nonceManager = new NonceAccountManager(connection);
+  });
+
+  describe('Intent Signature Verification', () => {
+    it('should create a valid, verifiable intent', async () => {
+      // Create intent
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection,
+        { expiresIn: 60 * 60 }
+      );
+
+      // Verify the intent can be verified
+      expect(intent.signature).toBeDefined();
+      expect(intent.signature.length).toBeGreaterThan(0);
+
+      // Verify intent signature locally (client-side)
+      const isValid = await verifyIntent(intent, connection);
+      expect(isValid).toBe(true);
+    });
+
+    it('should reject modified intent', async () => {
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection
+      );
+
+      // Modify the intent (would fail signature check)
+      const modifiedIntent = { ...intent, amount: 2000000 };
+
+      // Modified intent should fail verification
+      const isValid = await verifyIntent(modifiedIntent, connection);
+      expect(isValid).toBe(false);
+    });
+
+    it('should reject expired intent', async () => {
+      // Create an intent that's already expired
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection,
+        { expiresIn: -100 } // Already expired
+      );
+
+      // Expired intent should fail
+      const isValid = await verifyIntent(intent, connection);
+      expect(isValid).toBe(false);
+    });
+  });
+
+  describe('Intent Program Data Structure', () => {
+    it('should verify intent data structure matches program expectations', async () => {
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        5000000,
+        connection
+      );
+
+      // Verify all required fields for onchain program
+      expect(intent.from).toBeDefined();
+      expect(intent.to).toBeDefined();
+      expect(intent.amount).toBeGreaterThan(0);
+      expect(intent.nonce).toBeGreaterThanOrEqual(0);
+      expect(intent.expiry).toBeGreaterThan(Date.now() / 1000);
+      expect(intent.signature).toBeDefined();
+      expect(intent.blockhash).toBeDefined();
+    });
+
+    it('should enforce expiry constraints', async () => {
+      const now = Math.floor(Date.now() / 1000);
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection,
+        { expiresIn: 3600 } // 1 hour
+      );
+
+      // Expiry should be in future
+      expect(intent.expiry).toBeGreaterThan(now);
+      expect(intent.expiry - now).toBeCloseTo(3600, -1);
+    });
+  });
+
+  describe('Deterministic Settlement', () => {
+    it('should handle settlement with proper sequencing', async () => {
+      // Create multiple intents
+      const intent1 = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection
+      );
+
+      const intent2 = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        2000000,
+        connection
+      );
+
+      // Both should be valid
+      const isValid1 = await verifyIntent(intent1, connection);
+      const isValid2 = await verifyIntent(intent2, connection);
+
+      expect(isValid1).toBe(true);
+      expect(isValid2).toBe(true);
+
+      // Different nonces ensure ordering
+      expect(intent1.nonce).not.toBe(intent2.nonce);
+    });
+
+    it('should reject duplicate nonce', async () => {
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection
+      );
+
+      // Try to create another intent with same nonce (would fail in practice)
+      const intentDupe = { ...intent };
+
+      // Both have same nonce - would be rejected onchain
+      expect(intent.nonce).toBe(intentDupe.nonce);
+    });
+  });
+
+  describe('Program Constraints', () => {
+    it('should validate amount is positive', async () => {
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        1000000,
+        connection
+      );
+
+      // Intent amount should be positive
+      expect(intent.amount).toBeGreaterThan(0);
+    });
+
+    it('should allow large amounts within u64 bounds', async () => {
+      const largeAmount = Math.floor(Number.MAX_SAFE_INTEGER / 2);
+      const intent = await createIntent(
+        senderKeypair,
+        recipientKeypair.publicKey,
+        largeAmount,
+        connection
+      );
+
+      expect(intent.amount).toBeLessThanOrEqual(Number.MAX_SAFE_INTEGER);
+    });
+  });
+
+  describe('Nonce Account Integration', () => {
+    it('should create nonce account for replay protection', async () => {
+      const nonceAuthority = Keypair.generate();
+
+      const mockTossUser: any = {
+        userId: 'test-user-nonce',
+        username: 'testusernonce',
+        wallet: {
+          publicKey: senderKeypair.publicKey.toBase58(),
+          isVerified: true,
+        },
+        security: {
+          biometricEnabled: true,
+          nonceAccountRequiresBiometric: true,
+        },
+        tossFeatures: {
+          canSend: true,
+          canReceive: true,
+          isPrivateTxEnabled: false,
+          maxTransactionAmount: 10000000,
+          offlineTransactionsEnabled: true,
+          nonceAccountEnabled: true,
+        },
+      };
+
+      const nonceAccountInfo = await nonceManager.createNonceAccount(
+        mockTossUser,
+        nonceAuthority,
+        senderKeypair.publicKey,
+        { requireBiometric: true }
+      );
+
+      expect(nonceAccountInfo).toBeDefined();
+      expect(nonceAccountInfo.address).toBeDefined();
+      expect(nonceAccountInfo.isBiometricProtected).toBe(true);
+    });
+
+    it('should validate nonce account is active', async () => {
+      const nonceAuthority = Keypair.generate();
+
+      const mockTossUser: any = {
+        userId: 'test-user-validate',
+        username: 'testuservalidate',
+        wallet: {
+          publicKey: senderKeypair.publicKey.toBase58(),
+          isVerified: true,
+        },
+        security: {
+          biometricEnabled: true,
+          nonceAccountRequiresBiometric: true,
+        },
+        tossFeatures: {
+          canSend: true,
+          canReceive: true,
+          isPrivateTxEnabled: false,
+          maxTransactionAmount: 10000000,
+          offlineTransactionsEnabled: true,
+          nonceAccountEnabled: true,
+        },
+      };
+
+      const nonceAccountInfo = await nonceManager.createNonceAccount(
+        mockTossUser,
+        nonceAuthority,
+        senderKeypair.publicKey,
+        { requireBiometric: true }
+      );
+
+      // Nonce account should be valid
+      const isValid = nonceManager.isNonceAccountValid(nonceAccountInfo);
+      expect(isValid).toBe(true);
+    });
+  });
+});