feat(vault): e2e wallet-connect + BTC injectable wallet (#1590)

Author: jonybur

services/vault/e2e/fixtures/index.ts

@@ -14,6 +14,7 @@ export {
   mockEthRpc,
   mockEthRpcForSeededWallet,
   mockGraphql,
+  mockHealthCheck,
   mockMempoolForSeededBtcWallet,
   mockVpProxy,
 } from "./networkRoutes";
@@ -35,3 +36,8 @@ export {
   injectWallets,
 } from "./walletInjection";
 export type { InjectedWallets } from "./walletInjection";
+export {
+  btcWalletConfigFromSeeded,
+  injectBtcWalletProvider,
+} from "./walletPageInjection";
+export type { BtcWalletPageConfig } from "./walletPageInjection";

services/vault/e2e/fixtures/networkRoutes.ts

@@ -90,7 +90,11 @@ export async function mockVpProxy(
 ): Promise<void> {
   const snapshots = options.healthSnapshots ?? [];
   await page.route("**/vp-health", (route) => jsonResponse(route, snapshots));
-  await page.route("**/rpc/*", async (route) => {
+  // Scope the per-VP rpc route to the proxy port so we don't shadow
+  // the eth-rpc endpoint (also at /rpc). playwright.config.ts pins
+  // VP_PROXY_URL to localhost:9998; if you re-point that env var,
+  // update this pattern.
+  await page.route("http://localhost:9998/rpc/*", async (route) => {
     if (!options.rpcHandler) {
       return jsonResponse(
         route,
@@ -179,6 +183,33 @@ export async function mockEthRpcForSeededWallet(
   });
 }
 
+/**
+ * Mock the `/health` endpoint that `checkGeofencing` calls. The check
+ * lives at `${graphqlOrigin}/health` and is gated on HTTP status:
+ *   - 200    -> not blocked
+ *   - 451    -> geo-blocked, surfaces "Not available in your region"
+ *   - other  -> treated as healthy (only 451 hard-blocks)
+ *
+ * The default 200 unblocks the connect-button path. Tests that need
+ * geo-blocking pass `status: 451`.
+ */
+export async function mockHealthCheck(
+  page: Page,
+  options: { status?: number; delayMs?: number } = {},
+): Promise<void> {
+  const status = options.status ?? 200;
+  await page.route("**/health", async (route) => {
+    if (options.delayMs) {
+      await new Promise((resolve) => setTimeout(resolve, options.delayMs));
+    }
+    await route.fulfill({
+      status,
+      contentType: "application/json",
+      body: status === 200 ? "{}" : `{"error":"status ${status}"}`,
+    });
+  });
+}
+
 /**
  * Mock the GraphQL endpoint with a request-shape-aware handler. The
  * vault app uses `graphql-request` so each request is `POST` with a

services/vault/e2e/fixtures/test.ts

@@ -36,6 +36,10 @@ import {
   type SeededEthWalletOptions,
 } from "./seededWallets";
 import { E2E_WALLETS_GLOBAL } from "./walletInjection";
+import {
+  btcWalletConfigFromSeeded,
+  injectBtcWalletProvider,
+} from "./walletPageInjection";
 
 export interface VaultE2EFixtures {
   /** Build a seeded BTC wallet with a declared balance. */
@@ -78,12 +82,11 @@ async function installWalletSentinelOnPage(
   globalName: string,
   payload: WalletSentinelPayload,
 ): Promise<void> {
-  // The full mocks contain closures that don't survive structured-clone
-  // across the Node/browser boundary, so we install a JSON-only
-  // sentinel here. Reconstructing the live mock provider page-side is
-  // the single-vault deposit happy-path ticket's responsibility
-  // (#1592). For #1589 the install proves the bridge fires before
-  // navigation - enough to unblock per-flow tickets.
+  // The sentinel records that a wallet was requested by the test, for
+  // diagnostic / introspection use. Actual `window.btcwallet` wiring
+  // happens via `installBtcOnPage` below - the wallet-connector reads
+  // from that exact global. ETH provider injection still waits on
+  // mocking Reown's AppKit (deferred to a follow-up).
   await page.addInitScript(
     ({ globalName: name, sentinel }) => {
       (window as unknown as Record<string, unknown>)[name] = sentinel;
@@ -92,6 +95,13 @@ async function installWalletSentinelOnPage(
   );
 }
 
+async function installBtcOnPage(
+  page: Page,
+  wallet: SeededBtcWallet,
+): Promise<void> {
+  await injectBtcWalletProvider(page, btcWalletConfigFromSeeded(wallet));
+}
+
 function toSentinel(
   wallet: SeededBtcWallet | SeededEthWallet | null | undefined,
   kind: "seeded-btc" | "seeded-eth",
@@ -118,6 +128,9 @@ export const test = base.extend<VaultE2EFixtures>({
         btc: toSentinel(wallets.btc, "seeded-btc"),
         eth: toSentinel(wallets.eth, "seeded-eth"),
       });
+      if (wallets.btc) {
+        await installBtcOnPage(page, wallets.btc);
+      }
     });
   },
   appShell: async ({ page }, use) => {

services/vault/e2e/fixtures/walletPageInjection.ts

@@ -0,0 +1,121 @@
+/**
+ * Page-side wallet injection.
+ *
+ * The babylon-wallet-connector's injectable BTC adapter reads from
+ * `window.btcwallet` and treats whatever it finds there as an
+ * `IBTCProvider`. To drive the connect flow in e2e we install a
+ * deterministic provider on that global *before* the dApp loads, via
+ * `page.addInitScript`.
+ *
+ * The mock provider lives entirely in page context: `addInitScript`
+ * serialises its callback to a string and re-evaluates it in the
+ * browser, so any function the callback references must be defined
+ * inside the callback body. Closures captured Node-side do not
+ * survive the boundary. Anything the test needs to vary across runs
+ * therefore travels as a plain-JSON `config` arg.
+ *
+ * ETH provider injection is a separate problem: the dApp uses Reown's
+ * AppKit, which has its own React state machine. Mocking that lands
+ * with a follow-up ticket (the per-flow deposit specs that need a
+ * fully-connected wallet pair will block on it).
+ */
+
+import type { Page } from "@playwright/test";
+
+import type { SeededBtcWallet } from "./seededWallets";
+
+export interface BtcWalletPageConfig {
+  /** Bech32 address `getAddress` returns. */
+  address: string;
+  /** 33-byte compressed pubkey hex `getPublicKeyHex` returns. */
+  publicKeyHex: string;
+  /** Network string ("mainnet" | "signet" | "testnet"). */
+  network: string;
+  /** Display name for the wallet menu. */
+  providerName: string;
+  /** Data-URI icon. */
+  providerIcon: string;
+  /** Marker so the page-side instance is recognisable from devtools. */
+  e2e: true;
+}
+
+/**
+ * Install a deterministic BTC provider on `window.btcwallet`. Must be
+ * called BEFORE the first `page.goto` so the injectable adapter
+ * discovers it during module evaluation.
+ */
+export async function injectBtcWalletProvider(
+  page: Page,
+  config: BtcWalletPageConfig,
+): Promise<void> {
+  await page.addInitScript((cfg) => {
+    const SIGNED_MESSAGE_HEX = "cd".repeat(64);
+
+    // sha256 of `${appName}:${context}` rendered as lowercase hex. The
+    // deriveContextHash output must be deterministic across runs but
+    // not collide with real key material - the mock prefixes the
+    // appName with a marker via the chosen input.
+    async function sha256Hex(input: string): Promise<string> {
+      const data = new TextEncoder().encode(input);
+      const buffer = await crypto.subtle.digest("SHA-256", data);
+      return Array.from(new Uint8Array(buffer))
+        .map((b) => b.toString(16).padStart(2, "0"))
+        .join("");
+    }
+
+    const listeners = new Map<string, Set<(...args: unknown[]) => void>>();
+
+    const provider = {
+      connectWallet: async () => undefined,
+      getAddress: async () => cfg.address,
+      getPublicKeyHex: async () => cfg.publicKeyHex,
+      getNetwork: async () => cfg.network,
+      getInscriptions: async () => [],
+      getWalletProviderName: async () => cfg.providerName,
+      getWalletProviderIcon: async () => cfg.providerIcon,
+      // Echo the PSBT back so callers that just decode-and-re-encode keep
+      // working. Tests that need a real partial signature must reach
+      // into the provider via `window.btcwallet` and overwrite the
+      // method per-test.
+      signPsbt: async (psbtHex: string) => psbtHex,
+      signPsbts: async (psbtsHexes: string[]) => [...psbtsHexes],
+      signMessage: async () => SIGNED_MESSAGE_HEX,
+      deriveContextHash: async (appName: string, context: string) =>
+        sha256Hex(`${appName}:${context}`),
+      on: (event: string, cb: (...args: unknown[]) => void) => {
+        if (!listeners.has(event)) listeners.set(event, new Set());
+        listeners.get(event)!.add(cb);
+      },
+      off: (event: string, cb: (...args: unknown[]) => void) => {
+        listeners.get(event)?.delete(cb);
+      },
+      // Tests dispatch events by reading `window.btcwallet.__emit`.
+      __emit: (event: string, ...args: unknown[]) => {
+        listeners.get(event)?.forEach((cb) => cb(...args));
+      },
+      __e2eConfig: cfg,
+    };
+
+    (window as unknown as { btcwallet?: unknown }).btcwallet = provider;
+  }, config);
+}
+
+/**
+ * Convenience adapter for the seeded wallets in `seededWallets.ts`.
+ * Builds the page-side config from a SeededBtcWallet so tests can
+ * pass the same value to mempool route helpers and the injector.
+ */
+export function btcWalletConfigFromSeeded(
+  wallet: SeededBtcWallet,
+  overrides: Partial<BtcWalletPageConfig> = {},
+): BtcWalletPageConfig {
+  return {
+    address: wallet.address,
+    publicKeyHex: `02${"ab".repeat(32)}`,
+    network: "signet",
+    providerName: "E2E Mock BTC",
+    providerIcon: "data:image/svg+xml;base64,PHN2Zy8+",
+    e2e: true,
+    ...overrides,
+  };
+}