vesant-sdk 1.5.0 → 1.6.0

package/README.md

@@ -316,14 +316,16 @@ interface ComplianceClientConfig {
 
 | Method | Description |
 |--------|-------------|
-| `verifyIP(request)` | Verify IP address and check compliance |
+| `verifyIP(request)` | Verify IP address and check compliance (**use this for allowed/blocked decisions**) |
 | `checkCompliance(countryISO)` | Check jurisdiction compliance |
-| `validateCipherText(cipherText, userId, eventType)` | Validate device fingerprint |
-| `validateAndVerify(cipherText, ip, userId, eventType)` | Combined cipherText + IP verification |
+| `validateCipherText(cipherText, userId, eventType)` | Validate device fingerprint integrity (does **not** check jurisdiction rules) |
+| `validateAndVerify(cipherText, ip, userId, eventType)` | Combined cipherText validation + IP verification |
 | `getGPSConfig()` | Get GPS requirement config per event type |
 | `createLocationRequest(request)` | Create a live location request |
 | `captureLocation(token, capture)` | Submit location capture (customer-facing) |
 
+> **Which API should I use?** For registration, login, and transaction flows, use `ComplianceClient` methods (`verifyAtRegistration`, `verifyAtLogin`, `verifyAtTransaction`). These orchestrate geolocation + risk profiling and return a single `allowed` decision. Only use `GeolocationClient` directly if you need low-level access to individual APIs.
+
 ### RiskProfileClient
 
 | Method | Description |

package/dist/{client-3cBb_Pp-.d.ts → client-Bd9a5o0C.d.ts}

@@ -1,5 +1,5 @@
-import { L as Logger, B as BaseClient, R as RequestOptions } from './client-BQRONu8q.js';
-import { P as PaginationParams } from './types-B1OzEQR3.js';
+import { L as Logger, B as BaseClient, R as RequestOptions } from './client-CIon-bGS.js';
+import { P as PaginationParams } from './types-B4Ezqo7V.js';
 
 interface DeviceFingerprintRequest {
     device_id: string;
@@ -295,6 +295,8 @@ interface LocationVerification {
     geofence_evaluation?: GeofenceEvaluation;
     device_trust?: DeviceTrustResult;
     record_id: string;
+    /** Whether GPS verification is required for this event type (based on tenant config) */
+    gps_required?: boolean;
 }
 interface ComplianceCheckResponse {
     jurisdiction?: JurisdictionConfig;
@@ -428,6 +430,10 @@ interface GeolocationRecord {
     postal_code?: string;
     latitude: number;
     longitude: number;
+    /** Source of the coordinates: "gps" when device GPS was provided, "ip" when derived from IP lookup */
+    position_source?: 'gps' | 'ip';
+    /** GPS accuracy in meters (only present when position_source is "gps") */
+    gps_accuracy?: number;
     timezone?: string;
     is_vpn: boolean;
     is_proxy: boolean;
@@ -454,6 +460,8 @@ interface GeolocationConfigResponse {
         registration: boolean;
         transaction: boolean;
     };
+    /** When true, GPS-verified location overrides anonymizer-based blocking */
+    trust_gps_over_anonymizer: boolean;
     /** Public signing key (pk_) for client-side HMAC signing */
     signing_key?: string;
 }
@@ -1002,4 +1010,4 @@ declare class GeolocationClient extends BaseClient {
     generateCipherText(options: Omit<CipherTextOptions, 'apiKey' | 'signingKey'>, gpsConfig?: GeolocationConfigResponse): Promise<CipherTextResult>;
 }
 
-export { type UseLocationRequestsOptions as $, type AlertStatus as A, type APIError as B, type CipherTextPayload as C, type DeviceFingerprintRequest as D, type GeolocationConfigResponse as E, type GeolocationClientConfig as F, GeolocationClient as G, type UseGeolocationOptions as H, type UseGeolocationResult as I, type JurisdictionConfig as J, type UseAlertsOptions as K, type LocationVerification as L, type UseAlertsResult as M, type LocationRequestStatus as N, type LocationRequestChannel as O, type LocationRequest as P, type CreateLocationRequestRequest as Q, type LocationRequestResult as R, type LocationRequestFilters as S, type LocationRequestListResponse as T, type UpdateJurisdictionRequest as U, type ValidateCipherTextRequest as V, type ResendLocationRequestRequest as W, type WiFiNetwork as X, type LocationCaptureRequest as Y, type LocationShareInfo as Z, type LocationCaptureResponse as _, type CipherTextReason as a, type UseLocationRequestsResult as a0, type UseLocationCaptureOptions as a1, type UseLocationCaptureResult as a2, type CipherTextOptions as b, type CipherTextResult as c, type DecryptedCipherText as d, type CipherTextCustomerData as e, type ValidateCipherTextResponse as f, type VerifyIPRequest as g, type GeoIPResult as h, type GeofenceEvaluation as i, type DeviceFingerprint as j, type DeviceTrustResult as k, type ComplianceCheckResponse as l, type AlertSeverity as m, type AlertType as n, type GeolocationAlert as o, type AlertFilters as p, type AlertListResponse as q, type DashboardMetrics as r, type CreateJurisdictionRequest as s, type GeofenceRuleType as t, type GeofenceAction as u, type GeofenceRule as v, type CreateGeofenceRuleRequest as w, type UpdateGeofenceRuleRequest as x, type UpdateDeviceTrustRequest as y, type GeolocationRecord as z };
+export { type WiFiNetwork as $, type AlertStatus as A, type GeofenceAction as B, type CipherTextOptions as C, type DeviceFingerprintRequest as D, type GeofenceRule as E, type CreateGeofenceRuleRequest as F, GeolocationClient as G, type UpdateGeofenceRuleRequest as H, type UpdateDeviceTrustRequest as I, type JurisdictionConfig as J, type GeolocationRecord as K, type LocationVerification as L, type APIError as M, type GeolocationConfigResponse as N, type GeolocationClientConfig as O, type UseAlertsOptions as P, type UseAlertsResult as Q, type LocationRequestStatus as R, type LocationRequestChannel as S, type LocationRequest as T, type UseGeolocationOptions as U, type ValidateCipherTextRequest as V, type CreateLocationRequestRequest as W, type LocationRequestResult as X, type LocationRequestFilters as Y, type LocationRequestListResponse as Z, type ResendLocationRequestRequest as _, type UseGeolocationResult as a, type LocationCaptureRequest as a0, type LocationShareInfo as a1, type LocationCaptureResponse as a2, type UseLocationRequestsOptions as b, type UseLocationRequestsResult as c, type UseLocationCaptureOptions as d, type UseLocationCaptureResult as e, type CipherTextResult as f, type CipherTextPayload as g, type CipherTextReason as h, type DecryptedCipherText as i, type CipherTextCustomerData as j, type ValidateCipherTextResponse as k, type VerifyIPRequest as l, type GeoIPResult as m, type GeofenceEvaluation as n, type DeviceFingerprint as o, type DeviceTrustResult as p, type ComplianceCheckResponse as q, type AlertSeverity as r, type AlertType as s, type GeolocationAlert as t, type AlertFilters as u, type AlertListResponse as v, type DashboardMetrics as w, type CreateJurisdictionRequest as x, type UpdateJurisdictionRequest as y, type GeofenceRuleType as z };

package/dist/{client-DKqyESgT.d.mts → client-C4g596fI.d.mts}

@@ -1,5 +1,5 @@
-import { L as Logger, B as BaseClient, R as RequestOptions } from './client-BQRONu8q.mjs';
-import { P as PaginationParams } from './types-B1OzEQR3.mjs';
+import { L as Logger, B as BaseClient, R as RequestOptions } from './client-CIon-bGS.mjs';
+import { P as PaginationParams } from './types-B4Ezqo7V.mjs';
 
 interface DeviceFingerprintRequest {
     device_id: string;
@@ -295,6 +295,8 @@ interface LocationVerification {
     geofence_evaluation?: GeofenceEvaluation;
     device_trust?: DeviceTrustResult;
     record_id: string;
+    /** Whether GPS verification is required for this event type (based on tenant config) */
+    gps_required?: boolean;
 }
 interface ComplianceCheckResponse {
     jurisdiction?: JurisdictionConfig;
@@ -428,6 +430,10 @@ interface GeolocationRecord {
     postal_code?: string;
     latitude: number;
     longitude: number;
+    /** Source of the coordinates: "gps" when device GPS was provided, "ip" when derived from IP lookup */
+    position_source?: 'gps' | 'ip';
+    /** GPS accuracy in meters (only present when position_source is "gps") */
+    gps_accuracy?: number;
     timezone?: string;
     is_vpn: boolean;
     is_proxy: boolean;
@@ -454,6 +460,8 @@ interface GeolocationConfigResponse {
         registration: boolean;
         transaction: boolean;
     };
+    /** When true, GPS-verified location overrides anonymizer-based blocking */
+    trust_gps_over_anonymizer: boolean;
     /** Public signing key (pk_) for client-side HMAC signing */
     signing_key?: string;
 }
@@ -1002,4 +1010,4 @@ declare class GeolocationClient extends BaseClient {
     generateCipherText(options: Omit<CipherTextOptions, 'apiKey' | 'signingKey'>, gpsConfig?: GeolocationConfigResponse): Promise<CipherTextResult>;
 }
 
-export { type UseLocationRequestsOptions as $, type AlertStatus as A, type APIError as B, type CipherTextPayload as C, type DeviceFingerprintRequest as D, type GeolocationConfigResponse as E, type GeolocationClientConfig as F, GeolocationClient as G, type UseGeolocationOptions as H, type UseGeolocationResult as I, type JurisdictionConfig as J, type UseAlertsOptions as K, type LocationVerification as L, type UseAlertsResult as M, type LocationRequestStatus as N, type LocationRequestChannel as O, type LocationRequest as P, type CreateLocationRequestRequest as Q, type LocationRequestResult as R, type LocationRequestFilters as S, type LocationRequestListResponse as T, type UpdateJurisdictionRequest as U, type ValidateCipherTextRequest as V, type ResendLocationRequestRequest as W, type WiFiNetwork as X, type LocationCaptureRequest as Y, type LocationShareInfo as Z, type LocationCaptureResponse as _, type CipherTextReason as a, type UseLocationRequestsResult as a0, type UseLocationCaptureOptions as a1, type UseLocationCaptureResult as a2, type CipherTextOptions as b, type CipherTextResult as c, type DecryptedCipherText as d, type CipherTextCustomerData as e, type ValidateCipherTextResponse as f, type VerifyIPRequest as g, type GeoIPResult as h, type GeofenceEvaluation as i, type DeviceFingerprint as j, type DeviceTrustResult as k, type ComplianceCheckResponse as l, type AlertSeverity as m, type AlertType as n, type GeolocationAlert as o, type AlertFilters as p, type AlertListResponse as q, type DashboardMetrics as r, type CreateJurisdictionRequest as s, type GeofenceRuleType as t, type GeofenceAction as u, type GeofenceRule as v, type CreateGeofenceRuleRequest as w, type UpdateGeofenceRuleRequest as x, type UpdateDeviceTrustRequest as y, type GeolocationRecord as z };
+export { type WiFiNetwork as $, type AlertStatus as A, type GeofenceAction as B, type CipherTextOptions as C, type DeviceFingerprintRequest as D, type GeofenceRule as E, type CreateGeofenceRuleRequest as F, GeolocationClient as G, type UpdateGeofenceRuleRequest as H, type UpdateDeviceTrustRequest as I, type JurisdictionConfig as J, type GeolocationRecord as K, type LocationVerification as L, type APIError as M, type GeolocationConfigResponse as N, type GeolocationClientConfig as O, type UseAlertsOptions as P, type UseAlertsResult as Q, type LocationRequestStatus as R, type LocationRequestChannel as S, type LocationRequest as T, type UseGeolocationOptions as U, type ValidateCipherTextRequest as V, type CreateLocationRequestRequest as W, type LocationRequestResult as X, type LocationRequestFilters as Y, type LocationRequestListResponse as Z, type ResendLocationRequestRequest as _, type UseGeolocationResult as a, type LocationCaptureRequest as a0, type LocationShareInfo as a1, type LocationCaptureResponse as a2, type UseLocationRequestsOptions as b, type UseLocationRequestsResult as c, type UseLocationCaptureOptions as d, type UseLocationCaptureResult as e, type CipherTextResult as f, type CipherTextPayload as g, type CipherTextReason as h, type DecryptedCipherText as i, type CipherTextCustomerData as j, type ValidateCipherTextResponse as k, type VerifyIPRequest as l, type GeoIPResult as m, type GeofenceEvaluation as n, type DeviceFingerprint as o, type DeviceTrustResult as p, type ComplianceCheckResponse as q, type AlertSeverity as r, type AlertType as s, type GeolocationAlert as t, type AlertFilters as u, type AlertListResponse as v, type DashboardMetrics as w, type CreateJurisdictionRequest as x, type UpdateJurisdictionRequest as y, type GeofenceRuleType as z };

package/dist/{client-BQRONu8q.d.mts → client-CIon-bGS.d.mts}

@@ -235,4 +235,4 @@ declare abstract class BaseClient {
     }>;
 }
 
-export { BaseClient as B, type CircuitBreakerConfig as C, type Logger as L, type RequestOptions as R, type VesantConfig as V, type RequestInterceptor as a, type BaseClientConfig as b, type RequiredVesantConfig as c, type CGSConfig as d, type RequiredCGSConfig as e, type RequiredBaseClientConfig as f, type CircuitBreakerState as g, type CircuitBreakerStatus as h, CircuitBreaker as i, type RateLimitStatus as j, RateLimitTracker as k };
+export { BaseClient as B, type CircuitBreakerConfig as C, type Logger as L, type RequestOptions as R, type VesantConfig as V, type BaseClientConfig as a, type RequestInterceptor as b, type RequiredVesantConfig as c, type CGSConfig as d, type RequiredCGSConfig as e, type RequiredBaseClientConfig as f, type CircuitBreakerState as g, type CircuitBreakerStatus as h, CircuitBreaker as i, type RateLimitStatus as j, RateLimitTracker as k };

package/dist/{client-BQRONu8q.d.ts → client-CIon-bGS.d.ts}

@@ -235,4 +235,4 @@ declare abstract class BaseClient {
     }>;
 }
 
-export { BaseClient as B, type CircuitBreakerConfig as C, type Logger as L, type RequestOptions as R, type VesantConfig as V, type RequestInterceptor as a, type BaseClientConfig as b, type RequiredVesantConfig as c, type CGSConfig as d, type RequiredCGSConfig as e, type RequiredBaseClientConfig as f, type CircuitBreakerState as g, type CircuitBreakerStatus as h, CircuitBreaker as i, type RateLimitStatus as j, RateLimitTracker as k };
+export { BaseClient as B, type CircuitBreakerConfig as C, type Logger as L, type RequestOptions as R, type VesantConfig as V, type BaseClientConfig as a, type RequestInterceptor as b, type RequiredVesantConfig as c, type CGSConfig as d, type RequiredCGSConfig as e, type RequiredBaseClientConfig as f, type CircuitBreakerState as g, type CircuitBreakerStatus as h, CircuitBreaker as i, type RateLimitStatus as j, RateLimitTracker as k };

package/dist/compliance/index.d.mts

@@ -1,9 +1,9 @@
-import { D as DeviceFingerprintRequest, L as LocationVerification, P as LocationRequest, G as GeolocationClient, S as LocationRequestFilters, T as LocationRequestListResponse } from '../client-DKqyESgT.mjs';
-export { Q as CreateLocationRequestRequest, Y as LocationCaptureRequest, _ as LocationCaptureResponse, O as LocationRequestChannel, R as LocationRequestResult, N as LocationRequestStatus, Z as LocationShareInfo, W as ResendLocationRequestRequest } from '../client-DKqyESgT.mjs';
+import { D as DeviceFingerprintRequest, L as LocationVerification, k as ValidateCipherTextResponse, T as LocationRequest, G as GeolocationClient, Y as LocationRequestFilters, Z as LocationRequestListResponse } from '../client-C4g596fI.mjs';
+export { W as CreateLocationRequestRequest, a0 as LocationCaptureRequest, a2 as LocationCaptureResponse, S as LocationRequestChannel, X as LocationRequestResult, R as LocationRequestStatus, a1 as LocationShareInfo, _ as ResendLocationRequestRequest } from '../client-C4g596fI.mjs';
 import { RiskProfileClient } from '../risk-profile/index.mjs';
-import { V as VesantConfig, R as RequestOptions } from '../client-BQRONu8q.mjs';
-import { C as CustomerProfile } from '../types-_hsTA3Ez.mjs';
-import { E as EntityType, P as PaginationParams } from '../types-B1OzEQR3.mjs';
+import { V as VesantConfig, R as RequestOptions } from '../client-CIon-bGS.mjs';
+import { C as CustomerProfile } from '../types-1RzYeSal.mjs';
+import { E as EntityType, P as PaginationParams } from '../types-B4Ezqo7V.mjs';
 
 interface RegistrationVerificationRequest {
     customerId: string;
@@ -15,6 +15,7 @@ interface RegistrationVerificationRequest {
     entityType?: EntityType;
     ipAddress: string;
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface RegistrationVerificationResponse {
@@ -25,11 +26,13 @@ interface RegistrationVerificationResponse {
     requiresEDD: boolean;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface LoginVerificationRequest {
     customerId: string;
     ipAddress: string;
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface LoginVerificationResponse {
@@ -39,6 +42,7 @@ interface LoginVerificationResponse {
     requiresStepUp: boolean;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface TransactionVerificationRequest {
     customerId: string;
@@ -47,6 +51,7 @@ interface TransactionVerificationRequest {
     currency: string;
     transactionType?: 'deposit' | 'withdrawal' | 'bet' | 'transfer' | 'payout';
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface TransactionVerificationResponse {
@@ -57,6 +62,7 @@ interface TransactionVerificationResponse {
     requiresApproval: boolean;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface TransactionRiskResult {
     score: number;
@@ -70,6 +76,7 @@ interface EventVerificationRequest {
     ipAddress: string;
     eventType: string;
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface EventVerificationResponse {
@@ -77,6 +84,7 @@ interface EventVerificationResponse {
     geolocation: LocationVerification;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface CurrencyRates {
     [currency: string]: number;
@@ -264,6 +272,11 @@ declare class ComplianceClient {
     verifyEvent(request: EventVerificationRequest, requestOptions?: RequestOptions): Promise<EventVerificationResponse>;
     private shouldUpdateProfile;
     private createProfileFromGeo;
+    /**
+     * Execute cipherText validation with graceful degradation.
+     * Returns undefined if cipherText is not provided or validation fails.
+     */
+    private executeCipherTextValidation;
     private calculateTransactionRisk;
     private checkJurisdictionLimits;
     private normalizeToUSD;

package/dist/compliance/index.d.ts

@@ -1,9 +1,9 @@
-import { D as DeviceFingerprintRequest, L as LocationVerification, P as LocationRequest, G as GeolocationClient, S as LocationRequestFilters, T as LocationRequestListResponse } from '../client-3cBb_Pp-.js';
-export { Q as CreateLocationRequestRequest, Y as LocationCaptureRequest, _ as LocationCaptureResponse, O as LocationRequestChannel, R as LocationRequestResult, N as LocationRequestStatus, Z as LocationShareInfo, W as ResendLocationRequestRequest } from '../client-3cBb_Pp-.js';
+import { D as DeviceFingerprintRequest, L as LocationVerification, k as ValidateCipherTextResponse, T as LocationRequest, G as GeolocationClient, Y as LocationRequestFilters, Z as LocationRequestListResponse } from '../client-Bd9a5o0C.js';
+export { W as CreateLocationRequestRequest, a0 as LocationCaptureRequest, a2 as LocationCaptureResponse, S as LocationRequestChannel, X as LocationRequestResult, R as LocationRequestStatus, a1 as LocationShareInfo, _ as ResendLocationRequestRequest } from '../client-Bd9a5o0C.js';
 import { RiskProfileClient } from '../risk-profile/index.js';
-import { V as VesantConfig, R as RequestOptions } from '../client-BQRONu8q.js';
-import { C as CustomerProfile } from '../types-BnL66DB3.js';
-import { E as EntityType, P as PaginationParams } from '../types-B1OzEQR3.js';
+import { V as VesantConfig, R as RequestOptions } from '../client-CIon-bGS.js';
+import { C as CustomerProfile } from '../types-X5Md_dD_.js';
+import { E as EntityType, P as PaginationParams } from '../types-B4Ezqo7V.js';
 
 interface RegistrationVerificationRequest {
     customerId: string;
@@ -15,6 +15,7 @@ interface RegistrationVerificationRequest {
     entityType?: EntityType;
     ipAddress: string;
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface RegistrationVerificationResponse {
@@ -25,11 +26,13 @@ interface RegistrationVerificationResponse {
     requiresEDD: boolean;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface LoginVerificationRequest {
     customerId: string;
     ipAddress: string;
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface LoginVerificationResponse {
@@ -39,6 +42,7 @@ interface LoginVerificationResponse {
     requiresStepUp: boolean;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface TransactionVerificationRequest {
     customerId: string;
@@ -47,6 +51,7 @@ interface TransactionVerificationRequest {
     currency: string;
     transactionType?: 'deposit' | 'withdrawal' | 'bet' | 'transfer' | 'payout';
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface TransactionVerificationResponse {
@@ -57,6 +62,7 @@ interface TransactionVerificationResponse {
     requiresApproval: boolean;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface TransactionRiskResult {
     score: number;
@@ -70,6 +76,7 @@ interface EventVerificationRequest {
     ipAddress: string;
     eventType: string;
     deviceFingerprint?: DeviceFingerprintRequest;
+    cipherText?: string;
     metadata?: Record<string, unknown>;
 }
 interface EventVerificationResponse {
@@ -77,6 +84,7 @@ interface EventVerificationResponse {
     geolocation: LocationVerification;
     blockReasons: string[];
     processingTime: number;
+    cipherTextValidation?: ValidateCipherTextResponse;
 }
 interface CurrencyRates {
     [currency: string]: number;
@@ -264,6 +272,11 @@ declare class ComplianceClient {
     verifyEvent(request: EventVerificationRequest, requestOptions?: RequestOptions): Promise<EventVerificationResponse>;
     private shouldUpdateProfile;
     private createProfileFromGeo;
+    /**
+     * Execute cipherText validation with graceful degradation.
+     * Returns undefined if cipherText is not provided or validation fails.
+     */
+    private executeCipherTextValidation;
     private calculateTransactionRisk;
     private checkJurisdictionLimits;
     private normalizeToUSD;