💰 Mastercard Staking Contract
Stake $50 to activate your Mastercard tier and earn $3 daily rewards. Choose your contract period:
Contract Period
3 Months
90 Days
Total Payout$270
Stake + Fee-$70
POPULAR
Contract Period
6 Months
180 Days
Total Payout$540
Stake + Fee-$70
BEST VALUE
Contract Period
1 Year
365 Days
Total Payout$1,095
Stake + Fee-$70
⚡ Activate Mastercard Staking
Select your contract period and enter your sponsor code to activate:
Required — commissions flow through 8-generation binary tree
You Pay
$70
$50 stake + $20 fee
Stellar Testnet • Transaction requires wallet signature
📋 How It Works
1
Stake $50 to Activate
Deposit $50 to activate your Mastercard tier staking contract
2
Choose Your Period
Select 3 months (90 days), 6 months (180 days), or 1 year (365 days)
3
Earn $3 Daily
Receive $3 in rewards every day for your chosen contract period
4
$20 System Service Fee
A one-time $20 service fee is deducted for platform maintenance
5
Collect Your Rewards
3mo: $270 ($200 profit) • 6mo: $540 ($470 profit) • 1yr: $1,095 ($1,025 profit)
🌳 $50 Activation Fee Distribution — 8-Generation Binary Tree
When a user activates with $50, the fee is distributed across the 8-level upline binary tree:
| Generation | Role | Commission | Amount |
|---|
| — | Main Wallet (Platform) | — | $30 |
| Gen 1 | Direct Inviter | 10% | $5 |
| Gen 2 | Inviter’s Inviter | 6% | $3 |
| Gen 3 | Upline Level 3 | 4% | $2 |
| Gen 4 | Upline Level 4 | 4% | $2 |
| Gen 5 | Upline Level 5 | 4% | $2 |
| Gen 6 | Upline Level 6 | 4% | $2 |
| Gen 7 | Upline Level 7 | 4% | $2 |
| Gen 8 | Upline Level 8 | 4% | $2 |
| TOTAL | $50 |
🌳
🧪 Email Code Verification Tests
0/0 passed
• 0 failed
Code Generation
1. Code is 6 digits
_genEmailCode() returns exactly 6 numeric chars
2. Code is numeric only
No letters or special chars
3. Different codes each call
Two consecutive calls produce different codes
Verification Logic
4. Correct code passes
Matching code accepted
5. Wrong code rejected
Mismatched code shows error
6. Partial code rejected
Less than 6 digits not accepted
7. Empty code rejected
No input shows error message
8. Old code invalid after new gen
Previous code no longer works
Modal UI Flow
9. Modal opens on withdraw
requireVerify shows overlay
10. Cancel closes modal
cancelW2fa hides overlay and clears pending
11. Email badge shown
Email method displays correct badge
12. Demo code shown in timer text
Timer area displays the demo code for testing
Security
13. Pending cleared after verify
_w2faPending is null after successful confirm
14. Google Auth hidden when not set up
Gauth button hidden if cw_2fa not enabled
15. Withdraw blocked without verify
withdrawCardStake calls requireVerify, not _doWithdraw directly
🛡️ Wallet Security Tests
0/0 passed
• 0 failed
Security Toggles
1. Toggle 2FA Persists to cw_security
toggleSec writes tog2fa=true to cw_security JSON
2. Toggle Withdrawal Lock Off/On
togLock key toggles between true and false
3. restoreSecToggles Restores Saved State
Reading cw_security restores each toggle correctly
4. All 5 Toggles Write Independent Keys
tog2fa, togEmail, togSms, togWhitelist, togLock each stored separately
Seed & Key Storage
5. Seed Stored as Base64
cw_seed is btoa(mnemonic) and decodes to space-separated words
6. Secret Key Stored as Base64
cw_secret decodes to a string starting with S
7. seedContinue Clears Mnemonic From Memory
After continue, in-memory mnemonic variable is empty string
Single-Signer Auth
8. Master Key Weight = 255
SetOptions config uses masterWeight 255
9. All Thresholds = 1
low, med, high thresholds all set to 1
10. msCreateTx Signs Instantly
Transaction stored with weight 255/1 and created immediately
11. No Additional Signers Allowed
SetOptions preview contains no addSigner operations
Logout & Input Guards
12. Logout Clears All Sensitive Keys
cw_user, cw_seed, cw_secret, cw_accounts, cw_security all removed
13. Accounts Stored as Base64 JSON
cw_accounts decodes to valid JSON array with publicKey fields
14. Terms Checkbox Required for Register
register() rejects when agreeTerms is unchecked
15. Password Mismatch Blocks Register
register() rejects when pass !== confirm