OptionaladdressOptionalclientOptional client, threaded into the derived public key so it can verify signatures.
The ephemeral signer whose signature is wrapped by the zkLogin proof.
The zkLogin proof inputs, including the addressSeed.
Whether this account uses the deprecated legacy address derivation. The zkLogin address is
derived from the proof inputs; this flag disambiguates legacy vs. current derivation, matching
the rest of the zkLogin address API (e.g. jwtToAddress, toZkLoginPublicIdentifier).
A wrong flag silently yields a signer for the wrong address; pass address to guard against it.
The maxEpoch the proof was generated for.
The expected zkLogin address. When provided, the address derived from
inputs+legacyAddressis validated against it and the constructor throws on mismatch — guarding against a wronglegacyAddressflag producing a signer for the wrong address.