Description

This PR replaces #365; it contains some of the changes from that PR, further updates and enhancements based on API changes made since #365 was opened, and is rebased to our current master branch.

Changes vs. existing PR in 365:

Updated the app-sdk sessionSig creation's resourceAbilityRequests composition to include the ability to decrypt access-control-condition restricted resources, which facilitates Vincent Wrapped keys abilities being able to decrypt wrapped keys

• Renamed decryptVincentWrappedKey -> exportPrivateKey to match existing wrapped keys SDK method names
• Resolved TS80009 errors by removing @Typedef from tsdocs
• Updated APIs to match evmContractConditions naming (exists partially in Platform User Auth for Wrapped Keys #365)
• Updated APIs for delegatorAddress both in inputs and returned outputs from storage backend
• Added explicit exported types for exportPrivateKey inputs and outputs (this matches our existing APIs/exports)
• Removed unused sessionSigs helper code from the api layer
• Removed unused getDecryptedKeyToSingleNode()
• Renamed delegateeSessionSigs arg in generate methods to delegatorSessionSigs, since only delegators are allowed to generate sessionSigs per current spec.
• Removed sessionSigs param from the base API params; they aren't required for basic service client usage (only needed for the generate and export methods of the API layer)
• Paramaterized evmContractConditions in getSolanaKeyPair() -- this is stored along with other wrapped key metadata and should not be assumed to be static based on the SDK method (composition of the access control conditions is an internal concern of the generate methods only)
• Updated REST API paths and arguments in service-client to match current paths
• Removed unused devDependency on @lit-protocol/lit-node-client (we only use its type)
• Replaced duplicated salt removal code and updated to use removeSaltFromDecryptedKey() in all places where we need to remove salt from the decrypted key (both exporting and inside of helper for solana wrapped keypair composition)
• Updated exportPrivateKey API to match existing wrapped key behaviour patterns -- it now fetches the encrypted wrapped key from the storage backend using the id instead of expecting the consumer to use the service-client directly to fetch it; this was previously taking raw inputs and did not use the service client at all

Type of change

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

How Has This Been Tested?

• E2E tests are not yet fully functional; there is some work still to be done here -- in particular, since our access control conditions require that the decryption is done by a PKP that owns the agent PKP, the e2e tests need to actually mint a user PKP that owns the agent PKP instead of using a raw ethers wallet.

Checklist:

• I created a release plan (nx release plan) describing my changes and the version bump
• My code follows the style guidelines of this project
• I have performed a self-review of my code
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• [] I have added tests that prove my fix is effective or that my feature works
• New and existing unit tests pass locally with my changes
• Any dependent changes have been merged and published in downstream modules