Ask the Lit Node to sign any data using the ECDSA Algorithm with it's private key share. The resulting signature share will be returned to the Lit JS SDK which will automatically combine the shares and give you the full signature to use.

Ask the Lit Node to sign a message using the eth_personalSign algorithm. The resulting signature share will be returned to the Lit JS SDK which will automatically combine the shares and give you the full signature to use.

Sign data using the Lit Action's own cryptographic identity derived from its IPFS CID. This allows actions to sign as themselves (not as a PKP), enabling autonomous agent behavior, action-to-action authentication, and verifiable computation results.

The action's keypair is deterministically derived from: keccak256("lit_action_" + actionIpfsCid) The same action IPFS CID always generates the same keypair across all nodes.

Sign with ECDSA and automatically combine signature shares from all nodes into a complete signature

Sign with any signing scheme and automatically combine signature shares from all nodes into a complete signature

Verify that a signature was created by a specific Lit Action using signAsAction. This enables action-to-action authentication, verifiable computation, and building trust chains between actions without requiring PKP ownership.

Check if a given IPFS ID is permitted to sign using a given PKP tokenId

Check if a given wallet address is permitted to sign using a given PKP tokenId

Check if a given auth method is permitted to sign using a given PKP tokenId

Get the full list of actions that are permitted to sign using a given PKP tokenId

Get the full list of addresses that are permitted to sign using a given PKP tokenId

Get the full list of auth methods that are permitted to sign using a given PKP tokenId

Get the permitted auth method scopes for a given PKP tokenId and auth method type + id

Get the public key for a Lit Action's cryptographic identity. This can be used to verify signatures created by signAsAction, or to get the public key of any action (including actions you didn't create) for verification purposes.

The public key is deterministically derived from: keccak256("lit_action_" + actionIpfsCid) and will always be the same for a given action IPFS CID and signing scheme.

Gets latest nonce for the given address on a supported chain

Claim a key through a key identifier, the result of the claim will be added to claim_id under the keyId given.

Converts a PKP public key to a PKP token ID by hashing it with keccak256

Checks a condition using the Lit condition checking engine. This is the same engine that powers our Access Control product. You can use this to check any condition that you can express in our condition language. This is a powerful tool that allows you to build complex conditions that can be checked in a decentralized way. Visit https://developer.litprotocol.com and click on the "Access Control" section to learn more.

Set the response returned to the client

Call a child Lit Action

Call a smart contract

Broadcast a message to all connected clients and collect their responses

Run a function only once across all nodes using leader election

Get the RPC URL for a given blockchain

Encrypt data using BLS encryption with access control conditions

Decrypt and combine the provided ciphertext

Important Considerations:

• Only unified access control conditions are supported. Standard/legacy ACC formats are not accepted. When specifying EVM contract conditions, use the unified format with conditionType: "evmContract".
• Timeouts are commonly caused by nondeterminism in Lit Actions. Ensure your action code is deterministic (avoid unseeded randomness, time-based logic, race conditions, or non-deterministic external calls).

Decrypt to a single node

Decrypt data using AES with a symmetric key

Convert a Uint8Array to a string. This is a re-export of this function: https://www.npmjs.com/package/uint8arrays#tostringarray-encoding--utf8

Convert a string to a Uint8Array. This is a re-export of this function: https://www.npmjs.com/package/uint8arrays#fromstringstring-encoding--utf8

Global reference to the Lit Actions namespace for convenience. This alias is injected in the Lit Action execution environment and mirrors Lit.Actions.

Global reference to the Lit Auth namespace for convenience. This alias is injected in the Lit Action execution environment and mirrors Lit.Auth.

The ethers.js v5 API exposed to Lit Actions for interacting with EVM chains. Includes wallets, providers, contracts, and cryptographic helpers.

The jsonwebtoken library exposed to Lit Actions for JWT encoding and verification.

Type: {decode: Function, verify: Function, sign: Function}

Authentication Context available inside a Lit Action via Lit.Auth.

This namespace is injected at runtime and is read-only. It contains contextual information about the current execution and authentication.

Stack of action IPFS IDs tracking the parent/child call hierarchy. When a parent action calls a child action, the child's IPFS ID is pushed onto this stack.

Type: Array<string>

The address derived from the authentication signature, if present; otherwise null.

Type: (string | null)

Array of authentication method contexts used for this execution.

Type: Array<{userId: string, appId: string, authMethodType: number, lastRetrievedAt: string, expiration: number, usedForSignSessionKeyRequest: boolean}>

Array of resources (URIs) from SIWE/session signatures associated with this execution.

Type: Array<string>

Custom authentication resource string.

Type: string