@lit-protocol/types/src/lib/interfaces.d.ts

This package provides comprehensive TypeScript type definitions for the entire Lit Protocol ecosystem. It exports interfaces and types that ensure type safety and provide excellent IDE support across all Lit Protocol packages.

import { Provider } from '@ethersproject/abstract-provider';
import { ILitNodeClient } from './ILitNodeClient';
import { ISessionCapabilityObject, LitResourceAbilityRequest } from './models';
import { AcceptedFileType, AccessControlConditions, Chain, EvmContractConditions, IRelayAuthStatus, JsonRequest, LIT_NETWORKS_KEYS, LitContractContext, LitContractResolverContext, ResponseStrategy, SolRpcConditions, SymmetricKey, UnifiedAccessControlConditions } from './types';
/** ---------- Access Control Conditions Interfaces ---------- */
export interface ABIParams {
    name: string;
    type: string;
}
export interface AccsOperatorParams {
    operator: string;
}
/** ---------- Auth Sig ---------- */
/**
 * An `AuthSig` represents a cryptographic proof of ownership for an Ethereum address, created by signing a standardized [ERC-5573 SIWE ReCap](https://eips.ethereum.org/EIPS/eip-5573) (Sign-In with Ethereum) message. This signature serves as a verifiable credential, allowing the Lit network to associate specific permissions, access rights, and operational parameters with the signing Ethereum address. By incorporating various capabilities, resources, and parameters into the SIWE message before signing, the resulting `AuthSig` effectively defines and communicates these authorizations and specifications for the address within the Lit network.
 */
export interface AuthSig {
    /**
     * The signature produced by signing the `signMessage` property with the corresponding private key for the `address` property.
     */
    sig: string;
    /**
     * The method used to derive the signature (e.g, `web3.eth.personal.sign`).
     */
    derivedVia: string;
    /**
     * An [ERC-5573](https://eips.ethereum.org/EIPS/eip-5573) SIWE (Sign-In with Ethereum) message. This can be prepared by using one of the `createSiweMessage` functions from the [`@auth-helpers`](https://v6-api-doc-lit-js-sdk.vercel.app/modules/auth_helpers_src.html) package:
     * -  [`createSiweMessage`](https://v6-api-doc-lit-js-sdk.vercel.app/functions/auth_helpers_src.createSiweMessage.html)
     * -  [`createSiweMessageWithRecaps](https://v6-api-doc-lit-js-sdk.vercel.app/functions/auth_helpers_src.createSiweMessageWithRecaps.html)
     * -  [`createSiweMessageWithCapacityDelegation`](https://v6-api-doc-lit-js-sdk.vercel.app/functions/auth_helpers_src.createSiweMessageWithCapacityDelegation.html)
     */
    signedMessage: string;
    /**
     * The Ethereum address that was used to sign `signedMessage` and create the `sig`.
     */
    address: string;
    /**
     * An optional property only seen when generating session signatures, this is the signing algorithm used to generate session signatures.
     */
    algo?: string;
}
export interface SolanaAuthSig extends AuthSig {
    derivedVia: 'solana.signMessage';
}
export interface CosmosAuthSig extends AuthSig {
    derivedVia: 'cosmos.signArbitrary';
}
export type CosmosWalletType = 'keplr' | 'leap';
export interface AuthCallbackParams extends LitActionSdkParams {
    /**
     * The serialized session key pair to sign. If not provided, a session key pair will be fetched from localStorge or generated.
     */
    sessionKey?: SessionKeyPair;
    /**
     * The chain you want to use.  Find the supported list of chains here: https://developer.litprotocol.com/docs/supportedChains
     */
    chain: Chain;
    /**
     *   The statement that describes what the user is signing. If the auth callback is for signing a SIWE message, you MUST add this statement to the end of the SIWE statement.
     */
    statement?: string;
    /**
     * The blockhash that the nodes return during the handshake
     */
    nonce: string;
    /**
     * Optional and only used with EVM chains.  A list of resources to be passed to Sign In with Ethereum.  These resources will be part of the Sign in with Ethereum signed message presented to the user.
     */
    resources?: string[];
    /**
     * Optional and only used with EVM chains right now.  Set to true by default.  Whether or not to ask Metamask or the user's wallet to switch chains before signing.  This may be desired if you're going to have the user send a txn on that chain.  On the other hand, if all you care about is the user's wallet signature, then you probably don't want to make them switch chains for no reason.  Pass false here to disable this chain switching behavior.
     */
    switchChain?: boolean;
    expiration?: string;
    uri?: string;
    domain?: string;
    /**
     * Cosmos wallet type, to support mutliple popular cosmos wallets
     * Keplr & Cypher -> window.keplr
     * Leap -> window.leap
     */
    cosmosWalletType?: CosmosWalletType;
    /**
     * Optional project ID for WalletConnect V2. Only required if one is using checkAndSignAuthMessage and wants to display WalletConnect as an option.
     */
    walletConnectProjectId?: string;
    resourceAbilityRequests?: LitResourceAbilityRequest[];
}
/** ---------- Web3 ---------- */
export interface IProvider {
    provider: any;
    account: string;
}
/** ---------- Crypto ---------- */
export interface EncryptedFile {
    encryptedFile: Blob;
    symmetricKey: SymmetricKey;
}
export interface DecryptFileProps {
    file: AcceptedFileType;
    symmetricKey: SymmetricKey;
}
export interface SigningAccessControlConditionJWTPayload extends MultipleAccessControlConditions {
    iss: string;
    sub: string;
    chain?: string;
    iat: number;
    exp: number;
}
export interface HumanizedAccsProps {
    accessControlConditions?: AccessControlConditions;
    evmContractConditions?: EvmContractConditions;
    solRpcConditions?: SolRpcConditions;
    unifiedAccessControlConditions?: UnifiedAccessControlConditions;
    tokenList?: (any | string)[];
    myWalletAddress?: string;
}
/** ---------- Key Value Type ---------- */
export type KV = Record<string, any>;
/** ---------- Lit Node Client ---------- */
export interface LitNodeClientConfig {
    litNetwork: LIT_NETWORKS_KEYS;
    alertWhenUnauthorized?: boolean;
    minNodeCount?: number;
    debug?: boolean;
    connectTimeout?: number;
    checkNodeAttestation?: boolean;
    contractContext?: LitContractContext | LitContractResolverContext;
    storageProvider?: StorageProvider;
    defaultAuthCallback?: (authSigParams: AuthCallbackParams) => Promise<AuthSig>;
    rpcUrl?: string;
}
export type CustomNetwork = Pick<LitNodeClientConfig, 'litNetwork' | 'contractContext' | 'checkNodeAttestation'> & Partial<Pick<LitNodeClientConfig, 'minNodeCount'>>;
/**
 * Override for LocalStorage and SessionStorage
 * if running in NodeJs and this is implicitly
 * binded globally
 */
export interface StorageProvider {
    provider: Storage;
}
export interface Signature {
    r: string;
    s: string;
    v: number;
}
export interface ClaimKeyResponse {
    signatures: Signature[];
    claimedKeyId: string;
    pubkey: string;
    mintTx: string;
}
/**
 * Struct in rust
 * -----
pub struct JsonExecutionRequest {
  pub auth_sig: AuthSigItem,
  #[serde(default = "default_epoch")]
  pub epoch: u64,

  pub ipfs_id: Option<String>,
  pub code: Option<String>,
    pub js_params: Option<Value>,
    pub auth_methods: Option<Vec<AuthMethod>>,
}
 */
export interface BaseJsonPkpSignRequest {
    authMethods?: AuthMethod[];
    toSign: ArrayLike<number>;
}
/**
 * The 'pkpSign' function param. Please note that the structure
 * is different than the payload sent to the node.
 */
export interface JsonPkpSignSdkParams extends BaseJsonPkpSignRequest {
    pubKey: string;
    sessionSigs: SessionSigsMap;
}
/**
 * The actual payload structure sent to the node /pkp/sign endpoint.
 */
export interface JsonPkpSignRequest extends BaseJsonPkpSignRequest {
    authSig: AuthSig;
    /**
     * note that 'key' is in lower case, because this is what the node expects
     */
    pubkey: string;
}
/**
 * Struct in rust
 * -----
pub struct JsonSignChainDataRequest {
    pub call_requests: Vec<web3::types::CallRequest>,
    pub chain: Chain,
    pub iat: u64,
    pub exp: u64,
}
*/
export interface JsonSignChainDataRequest {
    callRequests: CallRequest[];
    chain: Chain;
    iat: number;
    exp: number;
}
export interface JsonSignSessionKeyRequestV1 extends Pick<LitActionSdkParams, 'jsParams'>, Pick<LitActionSdkParams, 'litActionIpfsId'> {
    sessionKey: string;
    authMethods: AuthMethod[];
    pkpPublicKey?: string;
    siweMessage: string;
    curveType: 'BLS';
    epoch?: number;
    code?: string;
}
export interface BlsResponseData {
    result: boolean | 'success';
    signatureShare: {
        ProofOfPossession: string;
    };
    shareIndex: number;
    curveType: string;
    siweMessage: string;
    dataSigned: string;
    blsRootPubkey: string;
}
/**
 * Struct in rust
 * -----
 pub struct JsonSigningResourceId {
    pub base_url: String,
    pub path: String,
    pub org_id: String,
    pub role: String,
    pub extra_data: String,
}
*/
export interface JsonSigningResourceId {
    baseUrl: string;
    path: string;
    orgId: string;
    role: string;
    extraData: string;
}
export interface MultipleAccessControlConditions {
    accessControlConditions?: AccessControlConditions;
    evmContractConditions?: EvmContractConditions;
    solRpcConditions?: SolRpcConditions;
    unifiedAccessControlConditions?: UnifiedAccessControlConditions;
}
export interface JsonAccsRequest extends MultipleAccessControlConditions {
    chain?: Chain;
    resourceId?: JsonSigningResourceId;
    authSig?: AuthSig;
    sessionSigs?: SessionSigsMap;
}
/**
 * Struct in rust
 * -----
pub struct JsonSigningRetrieveRequest {
    pub access_control_conditions: Option<Vec<AccessControlConditionItem>>,
    pub evm_contract_conditions: Option<Vec<EVMContractConditionItem>>,
    pub sol_rpc_conditions: Option<Vec<SolRpcConditionItem>>,
    pub unified_access_control_conditions: Option<Vec<UnifiedAccessControlConditionItem>>,
    pub chain: Option<String>,
    pub resource_id: JsonSigningResourceId,
    pub auth_sig: AuthSigItem,
    pub iat: u64,
    pub exp: u64,
}
*/
export interface JsonSigningRetrieveRequest extends JsonAccsRequest {
    iat?: number;
    exp?: number;
    sessionSigs?: any;
}
/**
 * Struct in rust
 * -----
pub struct JsonSigningStoreRequest {
    pub key: String,
    pub val: String,
    pub chain: Option<String>,
    pub permanant: Option<usize>,
    pub auth_sig: AuthSigItem,
}
 */
export interface JsonSigningStoreRequest {
    key: string;
    val: string;
    chain?: string;
    permanant?: 0 | 1;
    permanent?: 0 | 1;
    authSig?: AuthSig;
    sessionSigs?: object;
}
/**
 * Struct in rust
 * -----
 pub struct JsonEncryptionRetrieveRequest {
    pub access_control_conditions: Option<Vec<AccessControlConditionItem>>,
    pub evm_contract_conditions: Option<Vec<EVMContractConditionItem>>,
    pub sol_rpc_conditions: Option<Vec<SolRpcConditionItem>>,
    pub unified_access_control_conditions: Option<Vec<UnifiedAccessControlConditionItem>>,
    pub chain: Option<String>,
    pub to_decrypt: String,
    pub auth_sig: AuthSigItem,
}
 */
export interface JsonEncryptionRetrieveRequest extends JsonAccsRequest {
    toDecrypt: string;
}
export interface LitActionResponseStrategy {
    strategy: ResponseStrategy;
    customFilter?: (responses: Record<string, string>[]) => Record<string, string>;
}
export interface IpfsOptions {
    overwriteCode?: boolean;
    gatewayUrl?: `https://${string}/ipfs/`;
}
export interface JsonExecutionSdkParamsTargetNode extends JsonExecutionSdkParams {
    targetNodeRange: number;
}
export interface JsonExecutionSdkParams extends Pick<LitActionSdkParams, 'jsParams'>, ExecuteJsAdvancedOptions {
    /**
     *  JS code to run on the nodes
     */
    code?: string;
    /**
     * The IPFS ID of some JS code to run on the nodes
     */
    ipfsId?: string;
    /**
     * the session signatures to use to authorize the user with the nodes
     */
    sessionSigs: SessionSigsMap;
    /**
     * auth methods to resolve
     */
    authMethods?: AuthMethod[];
}
export interface ExecuteJsAdvancedOptions {
    /**
     * a strategy for proccessing `reponse` objects returned from the
     * Lit Action execution context
     */
    responseStrategy?: LitActionResponseStrategy;
    /**
     * Allow overriding the default `code` property in the `JsonExecutionSdkParams`
     */
    ipfsOptions?: IpfsOptions;
    /**
     * Only run the action on a single node; this will only work if all code in your action is non-interactive
     */
    useSingleNode?: boolean;
}
export interface JsonExecutionRequestTargetNode extends JsonExecutionRequest {
    targetNodeRange: number;
}
export interface JsonExecutionRequest extends Pick<LitActionSdkParams, 'jsParams'> {
    authSig: AuthSig;
    /**
     * auto-filled before sending each command to the node, but
     * in the rust struct, this type is required.
     */
    ipfsId?: string;
    code?: string;
    authMethods?: AuthMethod[];
}
/**
 * This interface is mainly used for access control conditions & decrypt requests.
 * For signing operations such as executeJs and pkpSign, only sessionSigs is used.
 */
export interface SessionSigsOrAuthSig {
    /**
     * the session signatures to use to authorize the user with the nodes
     */
    sessionSigs?: SessionSigsMap;
    /**
     * This is a bare authSig generated client side by the user. It can only be used for access control conditions/encrypt/decrypt operations. It CANNOT be used for signing operation.
     */
    authSig?: AuthSig;
}
export interface DecryptRequestBase extends SessionSigsOrAuthSig, MultipleAccessControlConditions {
    /**
     * The chain name of the chain that this contract is deployed on.  See LIT_CHAINS for currently supported chains.
     */
    chain: Chain;
}
export interface EncryptSdkParams extends MultipleAccessControlConditions {
    dataToEncrypt: Uint8Array;
}
export interface EncryptRequest extends DecryptRequestBase {
    dataToEncrypt: Uint8Array;
}
export interface EncryptResponse {
    /**
     * The base64-encoded ciphertext
     */
    ciphertext: string;
    /**
     * The hash of the data that was encrypted
     */
    dataToEncryptHash: string;
}
export interface EncryptUint8ArrayRequest extends MultipleAccessControlConditions {
    /**
     * The uint8array that you wish to encrypt
     */
    dataToEncrypt: Uint8Array;
}
export interface EncryptStringRequest extends MultipleAccessControlConditions {
    /**
     * String that you wish to encrypt
     */
    dataToEncrypt: string;
}
export interface EncryptFileRequest extends DecryptRequestBase {
    file: AcceptedFileType;
}
export interface DecryptRequest extends EncryptResponse, DecryptRequestBase {
}
export interface DecryptResponse {
    decryptedData: Uint8Array;
}
export interface GetSigningShareForDecryptionRequest extends JsonAccsRequest {
    dataToEncryptHash: string;
}
export interface SigResponse {
    r: string;
    s: string;
    recid: number;
    signature: `0x${string}`;
    publicKey: string;
    dataSigned: string;
}
export interface ExecuteJsResponseBase {
    signatures: {
        sig: SigResponse;
    } | any;
}
/**
 *
 * An object containing the resulting signatures.  Each signature comes with the public key and the data signed.
 *
 */
export interface ExecuteJsResponse extends ExecuteJsResponseBase {
    success?: boolean;
    response: string | object;
    logs: string;
    claims?: Record<string, {
        signatures: Signature[];
        derivedKeyId: string;
    }>;
    debug?: {
        allNodeResponses: NodeResponse[];
        allNodeLogs: NodeLog[];
        rawNodeHTTPResponses: any;
    };
}
export interface ExecuteJsNoSigningResponse extends ExecuteJsResponseBase {
    claims: {};
    decryptions: [];
    response: any;
    logs: string;
}
export interface LitNodePromise {
}
export interface SendNodeCommand {
    url: string;
    data: any;
    requestId: string;
}
export interface SigShare {
    sigType: 'BLS' | 'K256' | 'ECDSA_CAIT_SITH' | 'EcdsaCaitSithP256';
    signatureShare: string;
    shareIndex?: number;
    bigr?: string;
    bigR?: string;
    publicKey: string;
    dataSigned?: string | 'fail';
    siweMessage?: string;
    sigName?: string;
}
export interface PkpSignedData {
    digest: string;
    shareIndex: number;
    signatureShare: string;
    bigR: string;
    publicKey: string;
    sigType: string;
    dataSigned: string;
}
export interface NodeShare {
    claimData: any;
    shareIndex: any;
    unsignedJwt: any;
    signedData: SigShare;
    decryptedData: any;
    response: any;
    logs: any;
    success?: boolean | '';
}
export interface PKPSignShare {
    success: boolean;
    signedData: any;
    signatureShare: any;
}
export interface NodeBlsSigningShare {
    shareIndex: any;
    unsignedJwt?: any;
    signatureShare: BlsSignatureShare;
    response?: any;
    logs?: any;
}
export interface BlsSignatureShare {
    ProofOfPossession: string;
}
export interface SuccessNodePromises<T> {
    success: true;
    values: T[];
}
export interface RejectedNodePromises {
    success: false;
    error: NodeErrorV1;
}
export interface NodePromiseResponse {
    status?: string;
    value?: any;
    reason?: any;
}
export interface NodeErrorV1 {
    errorKind: string;
    status: number;
    details: string[];
    message?: string;
    errorCode?: string;
}
export interface NodeErrorV3 {
    errorKind: string;
    errorCode: string;
    status: number;
    message: string;
    correlationId: string;
    details: string[];
}
/**
 * @deprecated - This is the old error object.  It will be removed in the future. Use NodeClientErrorV1 instead.
 */
export declare const NodeClientErrorV0: {
    errorCode: string;
    message: string;
    error: string;
    name: string;
};
/**
 * @deprecated - This is the old error object.  It will be removed in the future. Use NodeClientErrorV1 instead.
 */
export type NodeClientErrorV0 = typeof NodeClientErrorV0 & {
    errorCode?: string;
    message: string;
    error: any;
    name?: string;
};
export interface NodeClientErrorV1 {
    message: string;
    errorKind: string;
    errorCode: string;
    details?: string[];
    status?: number;
    requestId?: string;
}
export interface SignedData {
    signedData: any;
}
export interface DecryptedData {
    decryptedData: any;
}
export interface NodeResponse {
    response: any;
}
export interface NodeLog {
    logs: any;
}
export interface CallRequest {
    to: string;
    from?: string;
    data: string;
}
export interface SignedChainDataToken {
    callRequests: CallRequest[];
    chain: Chain;
}
export interface NodeCommandResponse {
    url: string;
    data: JsonRequest;
}
export interface NodeCommandServerKeysResponse {
    serverPublicKey: string;
    subnetPublicKey: string;
    networkPublicKey: string;
    networkPublicKeySet: string;
    hdRootPubkeys: string[];
    attestation?: NodeAttestation;
    latestBlockhash?: string;
}
export interface FormattedMultipleAccs {
    error: boolean;
    formattedAccessControlConditions: any;
    formattedEVMContractConditions: any;
    formattedSolRpcConditions: any;
    formattedUnifiedAccessControlConditions: any;
}
export interface SignWithECDSA {
    message: string;
    chain: Chain;
    iat: number;
    exp: number;
}
export interface CombinedECDSASignature {
    r: string;
    s: string;
    recid: number;
}
export interface HandshakeWithNode {
    url: string;
    challenge: string;
}
export interface NodeAttestation {
    type: string;
    noonce: string;
    data: {
        INSTANCE_ID: string;
        RELEASE_ID: string;
        UNIX_TIME: string;
    };
    signatures: string[];
    report: string;
}
export interface JsonHandshakeResponse {
    serverPubKey: string;
    subnetPubKey: string;
    networkPubKey: string;
    networkPubKeySet: string;
    hdRootPubkeys: string[];
    latestBlockhash?: string;
}
export interface EncryptToJsonProps extends MultipleAccessControlConditions {
    /**
     * The chain
     */
    chain: string;
    /**
     * The string you wish to encrypt
     */
    string?: string;
    /**
     * The file you wish to encrypt
     */
    file?: AcceptedFileType;
    /**
     * An instance of LitNodeClient that is already connected
     */
    litNodeClient: ILitNodeClient;
}
export type EncryptToJsonDataType = 'string' | 'file';
export interface EncryptToJsonPayload extends DecryptRequestBase {
    ciphertext: string;
    dataToEncryptHash: string;
    dataType: EncryptToJsonDataType;
}
export interface DecryptFromJsonProps {
    sessionSigs: SessionSigsMap;
    litNodeClient: ILitNodeClient;
    parsedJsonData: EncryptToJsonPayload;
}
/**
 * Struct in rust
 * -----
 pub struct SessionKeySignedMessage {
    pub session_key: String,
    pub resources: Vec<String>,
    pub capabilities: Vec<String>,
    pub issued_at: String,
    pub expiration: String,
    pub node_address: String,
}
 */
export interface SessionKeySignedMessage {
    sessionKey: string;
    resources?: any[];
    capabilities: AuthSig[];
    issuedAt: string;
    expiration: string;
    nodeAddress: string;
}
export interface SessionSigsProp {
    expiration?: any;
    chain: Chain;
    resources: any[];
    sessionCapabilities?: any;
    switchChain?: boolean;
    litNodeClient: ILitNodeClient;
}
export interface SessionKeyPair {
    publicKey: string;
    secretKey: string;
}
/** ========== Session ========== */
export interface AuthMethod {
    authMethodType: number;
    accessToken: string;
}
export interface CreateCustomAuthMethodRequest {
    /**
     * For a custom authentication method, the custom auth ID should uniquely identify the user for that project. For example, for Google, we use appId:userId, so you should follow a similar format for Telegram, Twitter, or any other custom auth method.
     */
    authMethodId: string | Uint8Array;
    authMethodType: number;
    /**
     * Permission scopes:
     * https://developer.litprotocol.com/v3/sdk/wallets/auth-methods/#auth-method-scopes
     */
    scopes: string[] | number[];
}
export interface SignSessionKeyProp extends LitActionSdkParams {
    /**
     * The serialized session key pair to sign. If not provided, a session key pair will be fetched from localStorge or generated.
     */
    sessionKey?: SessionKeyPair;
    /**
     * The statement text to place at the end of the SIWE statement field.
     */
    statement?: string;
    /**
     * The auth methods to use to sign the session key
     */
    authMethods: AuthMethod[];
    /**
     * The public key of the PKP
     */
    pkpPublicKey?: string;
    /**
     * The auth sig of the user.  Returned via the checkAndSignAuthMessage function
     */
    authSig?: AuthSig;
    /**
     * When this session signature will expire.  The user will have to reauthenticate after this time using whatever auth method you set up.  This means you will have to call this signSessionKey function again to get a new session signature.  This is a RFC3339 timestamp.  The default is 24 hours from now.
     */
    expiration?: string;
    resources: any;
    chainId?: number;
    domain?: string;
    /**
     * A LIT resource ability is a combination of a LIT resource and a LIT ability.
     */
    resourceAbilityRequests?: LitResourceAbilityRequest[];
}
export interface SignSessionKeyResponse {
    pkpPublicKey: string;
    authSig: AuthSig;
}
export interface GetSignSessionKeySharesProp {
    body: SessionRequestBody;
}
export interface CommonGetSessionSigsProps {
    /**
     * Session signature properties shared across all functions that generate session signatures.
     */
    pkpPublicKey?: string;
    /**
     * When this session signature will expire. After this time is up you will need to reauthenticate, generating a new session signature. The default time until expiration is 24 hours. The formatting is an [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339) timestamp.
     */
    expiration?: any;
    /**
     * The chain to use for the session signature and sign the session key. This value is almost always `ethereum`. If you're using EVM, this parameter isn't very important.
     */
    chain?: Chain;
    /**
     * An array of resource abilities that you want to request for this session. These will be signed with the session key.
     * For example, an ability is added to grant a session permission to decrypt content associated with a particular Access Control Conditions (ACC) hash. When trying to decrypt, this ability is checked in the `resourceAbilityRequests` to verify if the session has the required decryption capability.
     * @example
     * [{ resource: new LitAccessControlConditionResource('someAccHash`), ability: LitAbility.AccessControlConditionDecryption }]
     */
    resourceAbilityRequests: LitResourceAbilityRequest[];
    /**
     * The session capability object that you want to request for this session.
     * It is likely you will not need this, as the object will be automatically derived from the `resourceAbilityRequests`.
     * If you pass nothing, then this will default to a wildcard for each type of resource you're accessing.
     * The wildcard means that the session will be granted the ability to to perform operations with any access control condition.
     */
    sessionCapabilityObject?: ISessionCapabilityObject;
    /**
     * If you want to ask MetaMask to try and switch the user's chain, you may pass true here. This will only work if the user is using MetaMask, otherwise this will be ignored.
     */
    switchChain?: boolean;
    /**
     * The serialized session key pair to sign.
     * If not provided, a session key pair will be fetched from localStorage or generated.
     */
    sessionKey?: SessionKeyPair;
    /**
     * @deprecated - use capabilityAuthSigs instead
     * Used for delegation of Capacity Credit. This signature will be checked for proof of capacity credit.
     * Capacity credits are required on the paid Lit networks (mainnets and certain testnets), and are not required on the unpaid Lit networks (certain testnets).
     * See more [here](https://developer.litprotocol.com/sdk/capacity-credits).
     */
    capacityDelegationAuthSig?: AuthSig;
    /**
     * Not limited to capacityDelegationAuthSig. Other AuthSigs with other purposes can also be in this array.
     */
    capabilityAuthSigs?: AuthSig[];
    domain?: string;
}
export interface BaseProviderGetSessionSigsProps extends CommonGetSessionSigsProps, LitActionSdkParams {
    /**
     * This is a callback that will be used to generate an AuthSig within the session signatures. It's inclusion is required, as it defines the specific resources and abilities that will be allowed for the current session.
     */
    authNeededCallback?: AuthCallback;
}
export interface GetSessionSigsProps extends CommonGetSessionSigsProps, LitActionSdkParams {
    /**
     * This is a callback that will be used to generate an AuthSig within the session signatures. It's inclusion is required, as it defines the specific resources and abilities that will be allowed for the current session.
     */
    authNeededCallback: AuthCallback;
}
export type AuthCallback = (params: AuthCallbackParams) => Promise<AuthSig>;
/**
 * A map of node addresses to the session signature payload
 * for that node specifically.
 *
 * Each individual session signature for each node includes the following properties:
 * -  `sig`: The signature produced by the ECDSA key pair signing the `signedMessage` payload.
 *
 * -  `derivedVia`: Should be `litSessionSignViaNacl`, specifies that the session signature object was created via the `NaCl` library.
 *
 * -  `signedMessage`: The payload signed by the session key pair. This is the signed `AuthSig` with the contents of the AuthSig's `signedMessage` property being derived from the [`authNeededCallback`](https://v6-api-doc-lit-js-sdk.vercel.app/interfaces/types_src.GetSessionSigsProps.html#authNeededCallback) property.
 *
 * -  `address`: When the session key signs the SIWE ReCap message, this will be the session key pair public key. If an EOA wallet signs the message, then this will be the EOA Ethereum address.
 *
 * -  `algo`: The signing algorithm used to generate the session signature.
 */
export type SessionSigsMap = Record<string, AuthSig>;
export type SessionSigs = Record<string, AuthSig>;
export interface SessionRequestBody {
    sessionKey: string;
    authMethods: AuthMethod[];
    pkpPublicKey?: string;
    authSig?: AuthSig;
    siweMessage: string;
}
export interface GetWalletSigProps extends LitActionSdkParams {
    authNeededCallback?: AuthCallback;
    chain: string;
    sessionCapabilityObject: ISessionCapabilityObject;
    switchChain?: boolean;
    expiration: string;
    sessionKey: SessionKeyPair;
    sessionKeyUri: string;
    nonce: string;
    resourceAbilityRequests?: LitResourceAbilityRequest[];
    domain?: string;
}
export interface SessionSigningTemplate {
    sessionKey: string;
    resourceAbilityRequests: LitResourceAbilityRequest[];
    capabilities: any[];
    issuedAt: string;
    expiration: string;
    nodeAddress: string;
}
export interface WebAuthnAuthenticationVerificationParams {
    id: string;
    rawId: string;
    response: {
        authenticatorData: string;
        clientDataJSON: string;
        signature: string;
        userHandle: string;
    };
    type: string;
    clientExtensionResults: object;
    authenticatorAttachment: AuthenticatorAttachment;
}
export declare type AuthenticatorAttachment = 'cross-platform' | 'platform';
/**
 * ========== PKP ==========
 */
export interface LitClientSessionManager {
    getSessionKey: () => SessionKeyPair;
    isSessionKeyPair(obj: any): boolean;
    getExpiration: () => string;
    getWalletSig: (getWalletSigProps: GetWalletSigProps) => Promise<AuthSig>;
    getPkpSessionSigs: (params: GetPkpSessionSigs) => Promise<SessionSigsMap>;
    checkNeedToResignSessionKey: (params: {
        authSig: AuthSig;
        sessionKeyUri: any;
        resourceAbilityRequests: LitResourceAbilityRequest[];
    }) => Promise<boolean>;
    getSessionSigs: (params: GetSessionSigsProps) => Promise<SessionSigsMap>;
    signSessionKey: (params: SignSessionKeyProp) => Promise<SignSessionKeyResponse>;
}
export interface AuthenticationProps {
    /**
     * This params is equivalent to the `getSessionSigs` params in the `litNodeClient`
     */
    getSessionSigsProps: GetSessionSigsProps;
}
export interface PKPBaseProp {
    litNodeClient: ILitNodeClient;
    pkpPubKey: string;
    rpcs?: RPCUrls;
    authContext?: AuthenticationProps;
    debug?: boolean;
    litActionCode?: string;
    litActionIPFS?: string;
    litActionJsParams?: any;
    controllerSessionSigs?: SessionSigs;
    /**
     * @deprecated - use authContext
     */
    controllerAuthMethods?: AuthMethod[];
    /**
     * @deprecated - use authContext
     */
    controllerAuthSig?: AuthSig;
}
export interface RPCUrls {
    eth?: string;
    cosmos?: string;
    btc?: string;
}
export interface PKPWallet {
    getAddress: () => Promise<string>;
    init: () => Promise<void>;
    runLitAction: (toSign: Uint8Array, sigName: string) => Promise<any>;
    runSign: (toSign: Uint8Array) => Promise<SigResponse>;
}
export type PKPEthersWalletProp = Omit<PKPBaseProp, 'controllerAuthSig' | 'controllerAuthMethods'> & {
    litNodeClient: ILitNodeClient;
    provider?: Provider;
    rpc?: string;
};
export interface PKPCosmosWalletProp extends PKPBaseProp {
    addressPrefix: string | 'cosmos';
    rpc?: string;
}
export interface PKPClientProp extends PKPBaseProp {
    cosmosAddressPrefix?: string | 'cosmos';
}
export interface PKPBaseDefaultParams {
    toSign: Uint8Array;
    publicKey: Uint8Array;
    sigName: string;
}
export interface PKPClientHelpers {
    handleRequest: (request: any) => Promise<any>;
    setRpc: (rpc: string) => void;
    getRpc: () => string;
}
/**
 * ========== Lit Auth Client ==========
 */
export interface OtpSessionResult {
    /**
     * Status message of the request
     */
    message?: string;
    /**
     * jwt from successful otp check
     */
    token_jwt?: string;
    /**
     * status of the otp check
     */
    status?: string;
}
export interface LoginUrlParams {
    /**
     * Auth method name
     */
    provider: string | null;
    /**
     * Access token
     */
    accessToken: string | null;
    /**
     * ID token
     */
    idToken: string | null;
    /**
     * OAuth state param
     */
    state: string | null;
    /**
     * Error codes from Lit's login server
     */
    error: string | null;
}
export interface IRelay {
    /**
     * Mint a new PKP for the given auth method
     *
     * @param {string} body - Body of the request
     *
     * @returns {Promise<IRelayMintResponse>} Response from the relay server
     */
    mintPKP(body: string): Promise<IRelayMintResponse>;
    /**
     * Mint a new PKP for the given auth method
     *
     * @throws {Error} - Throws an error if no AuthMethods are given
     * @param {AuthMethod[]} authMethods - AuthMethods authentication methods to be added to the pkp
     * @param {{ pkpPermissionScopes?: number[][]; sendPkpToitself?: boolean; addPkpEthAddressAsPermittedAddress?: boolean;}} options
     *
     * @returns {Promise<{pkpTokenId?: string; pkpEthAddress?: string; pkpPublicKey?: string}>} pkp information
     */
    mintPKPWithAuthMethods(authMethods: AuthMethod[], options: {
        pkpPermissionScopes?: number[][];
        sendPkpToitself?: boolean;
        addPkpEthAddressAsPermittedAddress?: boolean;
    }): Promise<{
        pkpTokenId?: string;
        pkpEthAddress?: string;
        pkpPublicKey?: string;
    }>;
    /**
     * Poll the relay server for status of minting request
     *
     * @param {string} requestId - Request ID to poll, likely the minting transaction hash
     *
     * @returns {Promise<IRelayPollStatusResponse>} Response from the relay server
     */
    pollRequestUntilTerminalState(requestId: string): Promise<IRelayPollStatusResponse>;
    /**
     * Fetch PKPs associated with the given auth method
     *
     * @param {string} body - Body of the request
     *
     * @returns {Promise<IRelayFetchResponse>} Response from the relay server
     */
    fetchPKPs(body: string): Promise<IRelayFetchResponse>;
    /**
     * Generate options for registering a new credential to pass to the authenticator
     *
     * @param {string} [username] - Optional username to associate with the credential
     *
     * @returns {Promise<any>} Registration options for the browser to pass to the authenticator
     */
    generateRegistrationOptions(username?: string): Promise<any>;
    /**
     * returns the relayUrl
     */
    getUrl(): string;
}
export interface LitRelayConfig {
    /**
     * Lit's relay server URL
     */
    relayUrl?: string;
    /**
     * API key for Lit's relay server
     */
    relayApiKey?: string;
}
export interface MintRequestBody {
    keyType?: number;
    permittedAuthMethodTypes?: number[];
    permittedAuthMethodIds?: string[];
    permittedAuthMethodPubkeys?: string[];
    permittedAuthMethodScopes?: any[][];
    addPkpEthAddressAsPermittedAddress?: boolean;
    sendPkpToItself?: boolean;
}
export interface IRelayRequestData {
    /**
     * Type of auth method
     */
    authMethodType: number;
    /**
     * ID of auth method
     */
    authMethodId: string;
    /**
     * Public key associated with the auth method (used only in WebAuthn)
     */
    authMethodPubKey?: string;
}
export interface IRelayMintResponse {
    /**
     * Transaction hash of PKP being minted
     */
    requestId?: string;
    /**
     * Error from relay server
     */
    error?: string;
}
export interface IRelayFetchResponse {
    /**
     * Fetched PKPs
     */
    pkps?: IRelayPKP[];
    /**
     * Error from relay server
     */
    error?: string;
}
export interface IRelayPollingEvent {
    /**
     * Polling count
     */
    pollCount: number;
    /**
     * Transaction hash of PKP being minted
     */
    requestId: string;
}
export interface IRelayPollStatusResponse {
    /**
     * Polling status
     */
    status?: IRelayAuthStatus;
    /**
     * Token ID of PKP being minted
     */
    pkpTokenId?: string;
    /**
     * Eth address of new PKP
     */
    pkpEthAddress?: string;
    /**
     * Public key of new PKP
     */
    pkpPublicKey?: string;
    /**
     * Polling error
     */
    error?: string;
}
export interface IRelayPKP {
    /**
     * PKP token ID
     */
    tokenId: string;
    /**
     * PKP public key
     */
    publicKey: string;
    /**
     * PKP Eth address
     */
    ethAddress: string;
}
export interface BaseProviderOptions {
    /**
     * Relay server to use
     */
    relay: IRelay;
    /**
     * Lit Node Client to use
     */
    litNodeClient: any;
}
export interface OAuthProviderOptions {
    /**
     * The redirect URI that Lit's login server should send the user back to
     */
    redirectUri?: string;
    /**
     * OAuth client ID
     */
    clientId?: string;
}
export interface EthWalletProviderOptions {
    /**
     * The domain from which the signing request is made
     */
    domain?: string;
    /**
     * The origin from which the signing request is made
     */
    origin?: string;
}
export interface WebAuthnProviderOptions {
    /**
     * Name of relying party. Defaults to "lit"
     */
    rpName?: string;
}
export interface SignInWithOTPParams {
    /**
     * otp transport (email or phone #)
     * used as the user ID for the auth method
     */
    userId: string;
    /**
     * tracking for the session
     */
    requestId?: string;
    /**
     * Allows for specifying custom sender information
     * Note: for most users the `from_name` is the configurable option and `from` should not be populated
     */
    emailCustomizationOptions: OtpEmailCustomizationOptions;
    customName?: string;
}
export interface OtpProviderOptions {
    baseUrl?: string;
    port?: string;
    startRoute?: string;
    checkRoute?: string;
}
export interface OtpEmailCustomizationOptions {
    from?: string;
    fromName: string;
}
export interface SignInWithStytchOTPParams {
    accessToken?: string;
    userId: string;
}
export interface StytchOtpProviderOptions {
    appId: string;
    userId?: string;
}
export type StytchToken = Record<string, any>;
export interface BaseProviderSessionSigsParams {
    /**
     * Public key of PKP to auth with
     */
    pkpPublicKey: string;
    /**
     * Auth method verifying ownership of PKP
     */
    authMethod: AuthMethod;
    /**
     * Params for getSessionSigs function
     */
    sessionSigsParams: BaseProviderGetSessionSigsProps;
    /**
     * Lit Node Client to use. If not provided, will use an existing Lit Node Client or create a new one
     */
    litNodeClient?: ILitNodeClient;
    resourceAbilityRequests?: LitResourceAbilityRequest[];
}
export interface BaseAuthenticateOptions {
}
export interface EthWalletAuthenticateOptions extends BaseAuthenticateOptions {
    /**
     * Ethereum wallet address
     */
    address?: string;
    /**
     * Function to sign message
     *
     * @param {string} message - Message to sign
     *
     * @returns {Promise<string>} - Raw signature of message
     */
    signMessage?: (message: string) => Promise<string>;
    /**
     * Name of chain to use for signature
     */
    chain?: string;
    /**
     * When the auth signature expires
     */
    expiration?: string;
    /**
     * Get the address of the wallet
     * @returns {string} - Ethereum wallet address
     */
    getAddress?: () => string;
}
export interface OtpAuthenticateOptions extends BaseAuthenticateOptions {
    /**
     * User provided authentication code
     */
    code: string;
}
export interface StytchOtpAuthenticateOptions extends BaseAuthenticateOptions {
    accessToken: string;
    userId?: string;
}
export interface BaseMintCapacityContext {
    daysUntilUTCMidnightExpiration: number;
}
export interface MintCapacityCreditsPerDay extends BaseMintCapacityContext {
    requestsPerDay?: number;
}
export interface MintCapacityCreditsPerSecond extends BaseMintCapacityContext {
    requestsPerSecond?: number;
}
export interface MintCapacityCreditsPerKilosecond extends BaseMintCapacityContext {
    requestsPerKilosecond?: number;
}
export interface MintCapacityCreditsContext extends MintCapacityCreditsPerDay, MintCapacityCreditsPerSecond, MintCapacityCreditsPerKilosecond, GasLimitParam {
}
export interface MintCapacityCreditsRes {
    rliTxHash: string;
    capacityTokenId: any;
    capacityTokenIdStr: string;
}
/**
 * ========== Siwe Messages ==========
 */
export interface BaseSiweMessage {
    walletAddress: string;
    nonce: string;
    expiration?: string;
    resources?: LitResourceAbilityRequest[];
    uri?: string;
    domain?: string;
    statement?: string;
    version?: string;
    chainId?: number;
    litNodeClient?: any;
}
export interface WithRecap extends BaseSiweMessage {
    uri: string;
    expiration: string;
    resources: LitResourceAbilityRequest[];
}
export interface WithCapacityDelegation extends BaseSiweMessage {
    uri: 'lit:capability:delegation';
    litNodeClient: ILitNodeClient;
    capacityTokenId?: string;
    delegateeAddresses?: string[];
    uses?: string;
}
export interface CapacityDelegationFields extends BaseSiweMessage {
    litNodeClient: any;
    capacityTokenId?: string;
    delegateeAddresses?: string[];
    uses?: string;
}
export interface CapacityDelegationRequest {
    nft_id?: string[];
    delegate_to?: string[];
    uses?: string;
}
export interface CapacityCreditsReq {
    dAppOwnerWallet: SignerLike;
    /**
     * 1. Provided with values: Scopes the delegation to specific NFTs identified by the IDs in the array. The function will only consider the NFTs whose IDs are listed.
     * 2. NOT Provided: All NFTs owned by the user are considered eligible under the delegation. The delegation applies universally to all NFTs the user owns.
     */
    capacityTokenId?: string;
    /**
     * 1. Provided: Restricts the use of the delegation to the addresses listed in the array. Only users whose addresses are included can utilize the delegated capabilities.
     * 2. NOT Provided: The delegation is universally applicable to anyone. There are no restrictions on who can use the delegated capabilities.
     * 3. Empty Array: No one is allowed to use the delegated capabilities since there are no valid user addresses specified.
     */
    delegateeAddresses?: string[];
    /**
     * 1. Provided: Sets a limit on the number of times the delegation can be used. The function enforces this limit and prevents use beyond it.
     * 2. NOT Provided: There is no limit on the number of times the delegation can be used.
     * 3. Empty Array: Theoretically, an empty value for uses would mean no uses are possible, effectively disabling the delegation, but typically this scenario should either not be allowed by schema/logic or treated as zero, which also disables the delegation.
     */
    uses?: string;
    domain?: string;
    expiration?: string;
    statement?: string;
}
export interface CapacityCreditsRes {
    capacityDelegationAuthSig: AuthSig;
}
export interface LitActionSdkParams {
    /**
     * The litActionCode is the JavaScript code that will run on the nodes.
     * You will need to convert the string content to base64.
     *
     * @example
     * Buffer.from(litActionCodeString).toString('base64');
     */
    litActionCode?: string;
    /**
     * You can obtain the Lit Action IPFS CID by converting your JavaScript code using this tool:
     * https://explorer.litprotocol.com/create-action
     *
     * Note: You do not need to pin your code to IPFS necessarily.
     * You can convert a code string to an IPFS hash using the "ipfs-hash-only" or 'ipfs-unixfs-importer' library.
     *
     * @example
     * async function stringToIpfsHash(input: string): Promise<string> {
     *   // Convert the input string to a Buffer
     *   const content = Buffer.from(input);
     *
     *   // Import the content to create an IPFS file
     *   const files = importer([{ content }], {} as any, { onlyHash: true });
     *
     *   // Get the first (and only) file result
     *   const result = (await files.next()).value;
     *
     *   const ipfsHash = (result as any).cid.toString();
     *   if (!ipfsHash.startsWith('Qm')) {
     *     throw new Error('Generated hash does not start with Qm');
     *   }
     *
     *   return ipfsHash;
     * }
     */
    litActionIpfsId?: string;
    /**
     * An object that contains params to expose to the Lit Action.  These will be injected to the JS runtime before your code runs, so you can use any of these as normal variables in your Lit Action.
     */
    jsParams?: {
        [key: string]: any;
        publicKey?: string;
        sigName?: string;
    } | any;
}
export interface LitEndpoint {
    path: string;
    version: string;
}
/**
 * Signer that has the ability to sign messages
 * eg. ethers.Wallet or ethers.Signer
 *
 * for context: This is a common interface so can keep this package clean without
 * importing external libraries directly
 */
export interface SignerLike {
    signMessage: (message: string | any) => Promise<string>;
    getAddress: () => Promise<string>;
}
export interface GetPkpSessionSigs extends CommonGetSessionSigsProps, LitActionSdkParams {
    pkpPublicKey: string;
    /**
     * Lit Protocol supported auth methods: https://developer.litprotocol.com/v3/sdk/wallets/auth-methods
     * This CANNOT be used for custom auth methods. For custom auth methods, please pass the customAuth
     * object to jsParams, and handle the custom auth method in your Lit Action.
     *
     * Notes for internal dev: for the SDK, this value can be omitted, but it needs to be an empty array [] set in the SDK before
     * sending it to the node
     */
    authMethods?: AuthMethod[];
    ipfsOptions?: IpfsOptions;
}
/**
 * Includes common session signature properties, parameters for a Lit Action,
 * and either a required litActionCode or a required litActionIpfsId, but not both.
 */
export type GetLitActionSessionSigs = CommonGetSessionSigsProps & Pick<GetPkpSessionSigs, 'pkpPublicKey'> & Pick<GetPkpSessionSigs, 'authMethods'> & Pick<Required<LitActionSdkParams>, 'jsParams'> & ((Pick<Required<LitActionSdkParams>, 'litActionCode'> & {
    litActionIpfsId?: never;
}) | (Pick<Required<LitActionSdkParams>, 'litActionIpfsId'> & {
    litActionCode?: never;
})) & {
    ipfsOptions?: IpfsOptions;
};
export interface SessionKeyCache {
    value: SessionKeyPair;
    timestamp: number;
}
export interface SignatureData {
    signature: string;
    derivedKeyId: string;
}
export type ClaimsList = Record<string, SignatureData>[];
export interface GasLimitParam {
    gasLimit?: number;
}
export interface MintNextAndAddAuthMethods extends GasLimitParam {
    keyType: string;
    permittedAuthMethodTypes: string[];
    permittedAuthMethodIds: string[];
    permittedAuthMethodPubkeys: string[];
    permittedAuthMethodScopes: string[][];
    addPkpEthAddressAsPermittedAddress: boolean;
    sendPkpToItself: boolean;
}
export interface MintWithAuthParams extends GasLimitParam {
    /**
     * auth method to use for minting
     */
    authMethod: AuthMethod;
    /**
     * Permission scopes:
     * https://developer.litprotocol.com/v3/sdk/wallets/auth-methods/#auth-method-scopes
     */
    scopes: string[] | number[];
    /**
     * only applies to webauthn auth method
     */
    pubkey?: string;
    /**
     * The Auth ID of the given auth method. If it's custom auth, then it could be
     * anything.
     */
    authMethodId?: Uint8Array;
}
export interface MintWithAuthResponse<T> {
    pkp: {
        tokenId: string;
        publicKey: string;
        ethAddress: string;
    };
    tx: T;
}
export interface BlockHashErrorResponse {
    messages: string[];
    reason: string;
    codde: number;
}
export interface EthBlockhashInfo {
    blockhash: string;
    timestamp: string;
    blockNumber: number;
}