Skip to main content

Design Philosophy

The Umbra SDK is written in the same functional, dependency-injected style as Anza’s @solana/kit. Every capability is either a pure function or a factory that returns one. There are no classes with internal state, no singletons, and no implicit globals. Dependencies are explicit, injectable, and testable. This mirrors the architecture of @solana/kit itself - functions like getTransferSolInstruction and createSolanaRpc follow the same closure-based factory pattern you will find throughout the Umbra SDK.

The Factory Pattern

Every SDK operation follows the same two-step pattern: 
// Step 1 - build the function once, at setup time
const deposit = getPublicBalanceToEncryptedBalanceDirectDepositorFunction({ client });

// Step 2 - call it at runtime
const signature = await deposit(destinationAddress, mint, amount);
The factory call (get*Function) is cheap. It binds configuration and resolves defaults. The returned function is what does the actual async work - sending transactions, generating proofs, querying the indexer. This is the same pattern @solana/kit uses for its instruction builders: 
// @solana/kit instruction builder
const ix = getTransferSolInstruction({ source, destination, amount });

// Umbra SDK factory function - same pattern, describing the data flow
const withdraw = getEncryptedBalanceToPublicBalanceDirectWithdrawerFunction({ client });

Naming Conventions

All factory functions use a consistent get[Source]To[Target][Verb]Function scheme. The name describes the data flow and operation:
  • getPublicBalanceToEncryptedBalance... - credits tokens from a public account to an encrypted account
  • getEncryptedBalanceToPublicBalance... - debits tokens from an encrypted account to a public account
  • getEncryptedBalanceTo...UtxoCreator... - creates a UTXO from an encrypted balance
  • getPublicBalanceTo...UtxoCreator... - creates a UTXO from a public balance
  • get...UtxoToEncryptedBalanceClaimer... - claims a UTXO into an encrypted balance
  • get...UtxoToPublicBalanceClaimer... - claims a UTXO into a public balance
  • getClaimableUtxoScanner... - scans for claimable UTXOs via the indexer
  • get...Querier... - queries on-chain state (RPC)
  • get...Rotator... - replaces a registered key
  • get...Converter... - migrates an account between protocol modes
  • get...Reencryptor... - re-encrypts ciphertexts under a new key
  • getComplianceGrantIssuer... - creates a compliance grant
  • getComplianceGrantRevoker... - deletes a compliance grant
  • getUserRegistration... - the full registration flow

args and deps

Every factory accepts two arguments: 
const fn = getOperationFunction(args, deps?);
  • args - required. Always contains client: IUmbraClient and any fixed configuration for this operation (e.g. a specific mint).
  • deps - optional. Contains every infrastructure provider, key generator, and ZK prover used internally. All deps fields have sensible defaults derived from the client. The only exceptions are ZK provers, which have no default and must always be supplied explicitly.
// Using all defaults
const deposit = getPublicBalanceToEncryptedBalanceDirectDepositorFunction({ client });

// Overriding the transaction forwarder (e.g. Jito bundles)
const deposit = getPublicBalanceToEncryptedBalanceDirectDepositorFunction(
  { client },
  { transactionForwarder: jitoForwarder },
);
Function-level deps override client-level deps. Client-level deps override built-in defaults.
The Advanced section covers dependency injection internals, key generators, ZK provers, transaction callbacks, and key rotation in depth. Most applications do not need those details to get started.