fix(account): correct asset-DID chain + show success screen (popup no longer auto-closes)

src/components/Accounts/AccountPermissionsSuccess.tsx

@@ -31,7 +31,7 @@ export const AccountPermissionsSuccess: React.FC = () => {
           driver's license and insurance card until you revoke access.
         </p>
       </div>
-      <div className="flex fex-col">
+      <div className="flex flex-col">
         {!isEmbed() && (
           <div className="flex justify-center w-full">
             <PrimaryButton onClick={handleBackToThirdParty} width="sm:w-64 w-full">

src/hooks/useFinishShareAccounts.tsx

@@ -1,23 +1,20 @@
-import { useDevCredentials } from '../context/DevCredentialsContext';
-import { AccountManagerMandatoryParams } from '../types';
 import { useUIManager } from '../context/UIManagerContext';
 import { useSendAuthPayloadToParent } from './useSendAuthPayloadToParent';
 import { UiStates } from '../enums';
-import { backToThirdParty } from '../utils/messageHandler';
 
-// Account-sharing analogue of useFinishShareVehicles: surfaces accountGranted +
-// transactionHash to the parent, then advances to the success screen (popup) or
-// redirects back to the third party (redirect mode, no transactionHash).
+// Account-sharing analogue of useFinishShareVehicles: surfaces accountGranted to
+// the parent, then shows the success screen. AccountPermissionsSuccess owns the
+// "Back to <app>" return action (and embedders navigate themselves), so we must
+// NOT call backToThirdParty here — doing so closed the popup before the success
+// screen was ever shown.
 export const useFinishShareAccounts = () => {
-  const { redirectUri, utm } = useDevCredentials<AccountManagerMandatoryParams>();
   const { setUiState, setComponentData } = useUIManager();
   const sendAuthPayloadToParent = useSendAuthPayloadToParent();
 
-  return (transactionHash?: string) => {
-    sendAuthPayloadToParent({ accountGranted: true, transactionHash }, (authPayload) => {
+  return () => {
+    sendAuthPayloadToParent({ accountGranted: true }, () => {
       setComponentData({ action: 'account-shared' });
       setUiState(UiStates.ACCOUNT_PERMISSIONS_SUCCESS);
-      if (!transactionHash) backToThirdParty(authPayload, redirectUri, utm);
     });
   };
 };

src/services/turnkeyService.ts

@@ -196,22 +196,26 @@ export const generateIpfsSources = async (
 };
 
 // Account-level SACD source: grants document cloudevents on the user's account
-// DID (did:ethr:137:<grantor>), not on a vehicle. Mirrors generateIpfsSources but
-// carries the driver-document agreements and the correct account asset DID.
+// DID (did:ethr:<chainId>:<grantor>), not on a vehicle. Mirrors generateIpfsSources
+// but carries the driver-document agreements and the correct account asset DID.
 export const generateAccountIpfsSource = async (
   permissions: Permission[],
   clientId: `0x${string}` | null,
   expiration: BigInt,
 ): Promise<string> => {
   const grantor = kernelSigner.smartContractAddress!;
+  // Use the signer's actual chain (polygon=137 in prod, polygonAmoy=80002 in dev)
+  // so the asset DID matches the chain the grant is executed on — hardcoding 137
+  // orphaned the grant on non-prod environments.
+  const chainId = kernelSigner.chain.id;
   const ipfsRes = await withTimeout(
     kernelSigner.signAndUploadSACDAgreement({
       expiration,
       permissions,
       grantee: clientId as `0x${string}`,
       attachments: [],
       grantor,
-      asset: `did:ethr:137:${grantor}`,
+      asset: `did:ethr:${chainId}:${grantor}`,
       cloudEventAgreements: buildDriverDocAgreements(grantor),
     }),
     KERNEL_OP_TIMEOUT_MS,