EOSJS Library

Common errors

• TypeError: fetch is not a function

  cause The `JsonRpc` constructor expects a global `fetch` API, which is available in browsers but not natively in Node.js environments prior to Node 18 without a polyfill or explicit import.
  fix In Node.js, install `node-fetch` (e.g., `npm install node-fetch`) and pass it explicitly: `new JsonRpc(rpcEndpoint, { fetch: require('node-fetch') })` or `new JsonRpc(rpcEndpoint, { fetch })` after `import fetch from 'node-fetch'`.

• RpcError: unknown key: signature

  cause This error commonly occurs when attempting to push a transaction without a properly configured or working `SignatureProvider`, or if the provided private key is invalid or mismatched for the account's permissions defined in the transaction's `authorization` array.
  fix Ensure your `SignatureProvider` (e.g., `JsSignatureProvider`) is correctly initialized with the private key corresponding to the `actor` and `permission` specified in your transaction's `authorization` array. Double-check the private key and account name for accuracy and that the private key corresponds to the network you're connected to.

• TypeError: Cannot read properties of undefined (reading 'textDecoder')

  cause The `Api` constructor requires `textDecoder` and `textEncoder` instances, which are global in modern browser environments but need to be explicitly imported or polyfilled in some Node.js environments.
  fix In Node.js, import `TextEncoder` and `TextDecoder` from the built-in `util` module: `import { TextEncoder, TextDecoder } from 'util';` and pass them to the `Api` constructor: `{ textDecoder: new TextDecoder(), textEncoder: new TextEncoder() }`.

• Error: Missing RpcInterfaces.SignatureProvider

  cause The `Api` class constructor strictly requires an instance of a `SignatureProvider` to be passed, even if you only intend to perform read-only operations with the `Api` instance later. This ensures a consistent API interface.
  fix Provide an instance of a `SignatureProvider` (e.g., `JsSignatureProvider` for testing purposes, or a more secure provider for production) to the `Api` constructor. If you only need to query blockchain state and do not intend to send transactions, you can use `JsonRpc` directly without `Api`.

Warnings

• breaking EOSJS v22.0.0-rc2 (which became v22.0.0 stable) introduced new endpoints and TypeScript types for Nodeos API plugins. This can lead to type errors in existing TypeScript projects or incorrect endpoint usage if not updated carefully.
  Fix: Review the official EOSIO API plugin documentation and update your application's code to align with the new endpoints and TypeScript definitions introduced in EOSJS v22.0.0. Pay close attention to any custom API calls.
• breaking In EOSJS v21.0.2, the internal cryptographic library was switched from `eosjs-ecc` to `elliptic`. While the public API was largely maintained, projects that relied on internal specifics of `eosjs-ecc` or expected certain key/signature formats might experience breaking changes.
  Fix: Ensure your application does not rely on internal details of the previous `eosjs-ecc` library. If you have custom cryptographic handling or key format expectations, thoroughly test for compatibility with the new `elliptic` library. Most users should be unaffected if using only the public API.
• gotcha Versions 21.0.3 and earlier had an issue with `sign`/`recover`/`verify` methods when the `shouldHash` argument was set to `false` while sending *unhashed* data, leading to incorrect cryptographic operations.
  Fix: For versions 21.0.x, ensure that if you set `shouldHash` to `false`, you are providing data that has already been correctly hashed externally. It is strongly recommended to upgrade to the latest stable version (22.x) to ensure all signing and recovery methods function as expected.
• security EOSJS v21.0.4 addressed several identified security vulnerabilities in underlying dependencies, including `y18n`, `elliptic`, `node-notifier`, `ini`, and `node-fetch`. Older versions are susceptible to these vulnerabilities.
  Fix: Immediately upgrade to EOSJS v21.0.4 or higher to patch critical security vulnerabilities in the underlying dependencies. This is crucial for application security and supply chain integrity.
• gotcha Newer versions of `eosjs` are often developed with ECMAScript Modules (ESM) in mind, which can lead to import/export issues when used in CommonJS (CJS) environments with `require()`. This can manifest as `TypeError: (0, _eosjs.Api) is not a constructor` or similar.
  Fix: Prefer `import` statements and configure your project for ESM usage (e.g., by setting `"type": "module"` in `package.json`). If you must use CommonJS, explore dynamic `import()` or specific transpilation configurations, or consider sticking to older `eosjs` versions that offered better CJS compatibility if full CJS support is critical.

Install

• npm install eosjs npm
• yarn add eosjs yarn
• pnpm add eosjs pnpm

Imports

• JsonRpc
  wrong:

  const JsonRpc = require('eosjs').JsonRpc;

  correct:

  import { JsonRpc } from 'eosjs';

  The primary class for making RPC calls to an EOSIO node. Recommended for ESM environments, use dynamic import or ensure proper CommonJS interoperability for CJS.
• Api
  wrong:

  import Api from 'eosjs';

  correct:

  import { Api, RpcInterfaces, SignatureProvider, TransactConfig } from 'eosjs';

  Main API class for building and pushing transactions. Requires a `SignatureProvider` and `JsonRpc` instance. Named import is standard. Accompanying types like `RpcInterfaces` are also commonly imported.
• PrivateKey
  wrong:

  import { PrivateKey } from 'eosjs';

  correct:

  import { PrivateKey } from 'eosjs/dist/eosjs-key-conversions';

  Cryptographic utilities like `PrivateKey`, `PublicKey`, and `Signature` are typically exported from internal 'dist' paths (e.g., `eosjs/dist/eosjs-key-conversions`) in newer versions, or from `eosjs-ecc` in older versions. Always verify the exact path for your specific `eosjs` version.
• JsSignatureProvider
  wrong:

  import { JsSignatureProvider } from 'eosjs';

  correct:

  import { JsSignatureProvider } from 'eosjs/dist/eosjs-jssig';

  A common in-memory signature provider for development and testing. Like key conversion utilities, it resides in a specific `dist` submodule.

Quickstart

Demonstrates how to initialize `eosjs` with `JsonRpc` and `Api`, perform a read-only query using `get_table_rows`, and provides a commented-out example of pushing a transaction.

import { JsonRpc } from 'eosjs';
import { Api, RpcInterfaces } from 'eosjs';
import { JsSignatureProvider } from 'eosjs/dist/eosjs-jssig'; // Example signature provider
import { TextEncoder, TextDecoder } from 'util'; // For Node.js environments

// Configuration
const defaultPrivateKey = process.env.EOS_PRIVATE_KEY ?? ''; // Replace with an actual private key for signing, DO NOT expose in client-side code.
const rpcEndpoint = 'https://eos.greymass.com'; // Example public EOS mainnet endpoint

// 1. Setup RPC client
const rpc = new JsonRpc(rpcEndpoint, { fetch }); // Using global fetch or node-fetch in Node.js

// 2. Setup SignatureProvider (required even for read-only if you intend to send transactions later)
// For demonstration, using a JS-based signature provider. In production, consider more secure options.
const signatureProvider = new JsSignatureProvider([defaultPrivateKey]);

// 3. Setup API client
const api = new Api({
    rpc,
    signatureProvider,
    textDecoder: new TextDecoder(), // Required for Node.js
    textEncoder: new TextEncoder(), // Required for Node.js
});

async function runExample() {
    try {
        console.log(`Querying a public contract table on ${rpcEndpoint}...`);

        // Example: Get 'stat' table from 'eosio.token' contract for 'EOS' symbol
        const tableRows = await rpc.get_table_rows({
            json: true,
            code: 'eosio.token',
            scope: 'EOS',
            table: 'stat',
            lower_bound: null,
            upper_bound: null,
            limit: 1,
        });

        console.log('Table Rows (eosio.token, EOS, stat):', JSON.stringify(tableRows, null, 2));

        // Example of pushing a transaction (requires a valid private key and account for 'youraccount')
        // This part is commented out as it requires a real key and funded account to execute.
        /*
        if (defaultPrivateKey && defaultPrivateKey !== '') {
            console.log('Attempting to push a dummy transaction...');
            const transactionResult = await api.transact({
                actions: [{
                    account: 'eosio.token',
                    name: 'transfer',
                    authorization: [{
                        actor: 'youraccount', // Replace with your EOS account name
                        permission: 'active',
                    }],
                    data: {
                        from: 'youraccount',
                        to: 'teamgreymass', // Example recipient
                        quantity: '0.0001 EOS', // Use a small test amount
                        memo: 'Test transfer from eosjs quickstart',
                    },
                }]
            }, {
                blocksBehind: 3,
                expireSeconds: 30,
            });
            console.log('Transaction Result:', JSON.stringify(transactionResult, null, 2));
        }
        */

    } catch (error) {
        console.error('Error:', error);
        if (error instanceof RpcInterfaces.RpcError) {
            console.error('RPC Error details:', JSON.stringify(error.json, null, 2));
        }
    }
}

runExample();