npm - @01.software/sdk - Versions diffs - 0.2.9-dev.260311.bb95a4e → 0.2.9-dev.260312.8c43a16 - Mend

@01.software/sdk 0.2.9-dev.260311.bb95a4e → 0.2.9-dev.260312.8c43a16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (36) hide show

package/README.md +81 -48
package/dist/auth.cjs +3 -1
package/dist/auth.cjs.map +1 -1
package/dist/auth.d.cts +1 -1
package/dist/auth.d.ts +1 -1
package/dist/auth.js +3 -1
package/dist/auth.js.map +1 -1
package/dist/index.cjs +168 -75
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +12 -10
package/dist/index.d.ts +12 -10
package/dist/index.js +173 -76
package/dist/index.js.map +1 -1
package/dist/{payload-types-BjvBwB8Z.d.cts → payload-types-BUwpb306.d.cts} +295 -1384
package/dist/{payload-types-BjvBwB8Z.d.ts → payload-types-BUwpb306.d.ts} +295 -1384
package/dist/ui/code-block.cjs +8 -5
package/dist/ui/code-block.cjs.map +1 -1
package/dist/ui/code-block.js +8 -5
package/dist/ui/code-block.js.map +1 -1
package/dist/ui/flow.cjs +108 -60
package/dist/ui/flow.cjs.map +1 -1
package/dist/ui/flow.js +108 -60
package/dist/ui/flow.js.map +1 -1
package/dist/ui/form.d.cts +1 -1
package/dist/ui/form.d.ts +1 -1
package/dist/ui/rich-text.cjs.map +1 -1
package/dist/ui/rich-text.js.map +1 -1
package/dist/{webhook-_LdLdjGa.d.ts → webhook-BUcDo2Ny.d.cts} +2 -2
package/dist/{webhook-CszIpUKn.d.cts → webhook-D8Bp97bF.d.ts} +2 -2
package/dist/webhook.cjs +7 -5
package/dist/webhook.cjs.map +1 -1
package/dist/webhook.d.cts +2 -2
package/dist/webhook.d.ts +2 -2
package/dist/webhook.js +7 -5
package/dist/webhook.js.map +1 -1
package/package.json +3 -3

package/README.md CHANGED Viewed

@@ -29,10 +29,17 @@ pnpm add @01.software/sdk
 import { createBrowserClient, createServerClient } from '@01.software/sdk'
 // Auth only - JWT & API Key utilities (smaller bundle)
-import { createServerToken, verifyServerToken, createApiKey } from '@01.software/sdk/auth'
+import {
+  createServerToken,
+  verifyServerToken,
+  createApiKey,
+} from '@01.software/sdk/auth'
 // Webhook only - webhook handlers
-import { handleWebhook, createTypedWebhookHandler } from '@01.software/sdk/webhook'
+import {
+  handleWebhook,
+  createTypedWebhookHandler,
+} from '@01.software/sdk/webhook'
 // Components - sub-path imports per domain
 import { RichTextContent } from '@01.software/sdk/ui/rich-text'
@@ -40,7 +47,6 @@ import { Image } from '@01.software/sdk/ui/image'
 import { FormRenderer } from '@01.software/sdk/ui/form'
 import { CodeBlock } from '@01.software/sdk/ui/code-block'
 import { FlowRenderer } from '@01.software/sdk/ui/flow'
 ```
 ## Getting Started
@@ -94,7 +100,7 @@ await client.query.prefetchQuery({
 ```typescript
 const client = createBrowserClient({
-  clientKey: string,           // Required
+  clientKey: string, // Required
 })
 ```
@@ -104,6 +110,7 @@ const client = createBrowserClient({
 | `secretKey` | `string` | API secret key (server only) |
 API URL은 환경변수로 오버라이드 가능합니다:
 - `SOFTWARE_API_URL` (서버용) 또는 `NEXT_PUBLIC_SOFTWARE_API_URL` (브라우저용)
 - 미설정 시: dev 빌드(`@dev` 태그)는 `api-dev.01.software`, 정식 릴리즈는 `api.01.software`
@@ -128,19 +135,20 @@ const { docs, totalDocs, hasNextPage } = await client.from('products').find({
 const product = await client.from('products').findById('id')
 // Create (server only) - returns PayloadMutationResponse
-const { doc, message } = await client.from('products').create({ name: 'Product' })
+const { doc, message } = await client
+  .from('products')
+  .create({ name: 'Product' })
 // Create with file upload (server only) - uses multipart/form-data
-const { doc } = await client.from('product-images').create(
-  { product: 'product_id', alt: 'Hero image' },
-  { file: imageFile, filename: 'hero.jpg' },
-)
+const { doc } = await client
+  .from('images')
+  .create({ alt: 'Hero image' }, { file: imageFile, filename: 'hero.jpg' })
 // Update (server only) - returns PayloadMutationResponse
 const { doc } = await client.from('products').update('id', { name: 'Updated' })
 // Update with file replacement (server only)
-await client.from('media').update('id', { alt: 'New alt' }, { file: newFile })
+await client.from('images').update('id', { alt: 'New alt' }, { file: newFile })
 // Delete (server only) - returns document directly
 const deletedDoc = await client.from('products').remove('id')
@@ -149,10 +157,12 @@ const deletedDoc = await client.from('products').remove('id')
 const { totalDocs } = await client.from('products').count()
 // SEO Metadata (fetch + generate in one call, depth: 1 auto-applied)
-const metadata = await client.from('products').findMetadata(
-  { where: { slug: { equals: 'my-product' } } },
-  { siteName: 'My Store' },
-)
+const metadata = await client
+  .from('products')
+  .findMetadata(
+    { where: { slug: { equals: 'my-product' } } },
+    { siteName: 'My Store' },
+  )
 const metadataById = await client.from('products').findMetadataById('id', {
   siteName: 'My Store',
@@ -192,16 +202,16 @@ interface PayloadMutationResponse<T> {
 // findById() / remove() returns T (document directly)
 ```
-| Operation | Response Type |
-|-----------|--------------|
-| `find()` | `PayloadFindResponse<T>` - `{ docs, totalDocs, hasNextPage, ... }` |
-| `findById()` | `T` - document object directly |
-| `create()` | `PayloadMutationResponse<T>` - `{ doc, message }` |
-| `update()` | `PayloadMutationResponse<T>` - `{ doc, message }` |
-| `remove()` | `T` - deleted document object directly |
-| `count()` | `{ totalDocs: number }` |
-| `findMetadata()` | `Metadata \| null` - Next.js Metadata (null if no match) |
-| `findMetadataById()` | `Metadata` - Next.js Metadata (throws on 404) |
+| Operation            | Response Type                                                      |
+| -------------------- | ------------------------------------------------------------------ |
+| `find()`             | `PayloadFindResponse<T>` - `{ docs, totalDocs, hasNextPage, ... }` |
+| `findById()`         | `T` - document object directly                                     |
+| `create()`           | `PayloadMutationResponse<T>` - `{ doc, message }`                  |
+| `update()`           | `PayloadMutationResponse<T>` - `{ doc, message }`                  |
+| `remove()`           | `T` - deleted document object directly                             |
+| `count()`            | `{ totalDocs: number }`                                            |
+| `findMetadata()`     | `Metadata \| null` - Next.js Metadata (null if no match)           |
+| `findMetadataById()` | `Metadata` - Next.js Metadata (throws on 404)                      |
 ### React Query Hooks
@@ -233,7 +243,7 @@ const { data, fetchNextPage, hasNextPage } = client.query.useInfiniteQuery({
 })
 // Mutation hooks — ServerClient only (auto-invalidate cache on success)
-const { mutate: create } = client.query.useCreate({ collection: 'product-images' })
+const { mutate: create } = client.query.useCreate({ collection: 'images' })
 const { mutate: update } = client.query.useUpdate({ collection: 'products' })
 const { mutate: remove } = client.query.useRemove({ collection: 'products' })
@@ -242,9 +252,18 @@ update({ id: 'product_id', data: { title: 'Updated' } })
 remove('product_id')
 // SSR Prefetch
-await client.query.prefetchQuery({ collection: 'products', options: { limit: 10 } })
-await client.query.prefetchQueryById({ collection: 'products', id: 'product_id' })
-await client.query.prefetchInfiniteQuery({ collection: 'products', pageSize: 20 })
+await client.query.prefetchQuery({
+  collection: 'products',
+  options: { limit: 10 },
+})
+await client.query.prefetchQueryById({
+  collection: 'products',
+  id: 'product_id',
+})
+await client.query.prefetchInfiniteQuery({
+  collection: 'products',
+  pageSize: 20,
+})
 // Cache utilities
 client.query.invalidateQueries('products')
@@ -282,8 +301,15 @@ const client = createBrowserClient({
 })
 // Register & login
-const { customer } = await client.customer.register({ name: 'John', email: 'john@example.com', password: 'secure123' })
-const { token, customer } = await client.customer.login({ email: 'john@example.com', password: 'secure123' })
+const { customer } = await client.customer.register({
+  name: 'John',
+  email: 'john@example.com',
+  password: 'secure123',
+})
+const { token, customer } = await client.customer.login({
+  email: 'john@example.com',
+  password: 'secure123',
+})
 // Profile & token management
 const profile = await client.customer.me()
@@ -291,7 +317,11 @@ client.customer.isAuthenticated()
 client.customer.logout()
 // Orders
-const orders = await client.customer.getMyOrders({ page: 1, limit: 10, status: 'paid' })
+const orders = await client.customer.getMyOrders({
+  page: 1,
+  limit: 10,
+  status: 'paid',
+})
 // Password & email
 await client.customer.forgotPassword('john@example.com')
@@ -328,7 +358,10 @@ Available only in ServerClient via `client.product.*`.
 ```typescript
 // Batch stock check
 const { results, allAvailable } = await client.product.stockCheck({
-  items: [{ optionId: 1, quantity: 2 }, { optionId: 3, quantity: 1 }],
+  items: [
+    { optionId: 1, quantity: 2 },
+    { optionId: 3, quantity: 1 },
+  ],
 })
 ```
@@ -375,22 +408,22 @@ const handler = createTypedWebhookHandler('orders', async (event) => {
 ## Supported Collections
-| Category | Collections                                                                                                                        |
-| -------- | ---------------------------------------------------------------------------------------------------------------------------------- |
-| Tenant   | `tenants`, `tenant-metadata`, `tenant-logos`, `tenant-og-images`                                                                   |
-| Products | `products`, `product-variants`, `product-options`, `product-categories`, `product-tags`, `product-images`, `product-collections`, `brands`, `brand-logos` |
-| Orders   | `orders`, `order-products`, `returns`, `return-products`, `exchanges`, `exchange-products`, `fulfillments`, `fulfillment-items`, `transactions` |
-| Customers | `customers`, `customer-addresses`, `customer-groups`, `customer-group-images`                                                     |
-| Carts    | `carts`, `cart-items`                                                                                                              |
-| Commerce | `discounts`, `shipping-policies`                                                                                                   |
-| Content  | `posts`, `post-categories`, `post-tags`, `post-images`, `documents`, `document-categories`, `document-types`, `document-images`    |
-| Playlists | `playlists`, `playlist-images`, `playlist-categories`, `playlist-tags`, `musics`                                                  |
-| Galleries | `galleries`, `gallery-images`, `gallery-categories`, `gallery-tags`                                                               |
-| Flows    | `flows`, `flow-images`, `flow-node-types`, `flow-edge-types`, `flow-categories`, `flow-tags`                                      |
-| Videos   | `videos`, `video-images`, `video-categories`, `video-tags`                                                                         |
-| Live Streams | `live-streams`, `live-stream-images`                                                                                           |
-| Forms    | `forms`, `form-submissions`                                                                                                        |
-| Media    | `media`                                                                                                                            |
+| Category     | Collections                                                                                                                                     |
+| ------------ | ----------------------------------------------------------------------------------------------------------------------------------------------- |
+| Tenant       | `tenants`, `tenant-metadata`, `tenant-logos`                                                                                                    |
+| Images       | `images` (unified), `brand-logos`                                                                                                               |
+| Products     | `products`, `product-variants`, `product-options`, `product-categories`, `product-tags`, `product-collections`, `brands`                        |
+| Orders       | `orders`, `order-products`, `returns`, `return-products`, `exchanges`, `exchange-products`, `fulfillments`, `fulfillment-items`, `transactions` |
+| Customers    | `customers`, `customer-addresses`, `customer-groups`                                                                                            |
+| Carts        | `carts`, `cart-items`                                                                                                                           |
+| Commerce     | `discounts`, `shipping-policies`                                                                                                                |
+| Content      | `posts`, `post-categories`, `post-tags`, `documents`, `document-categories`, `document-types`                                                   |
+| Playlists    | `playlists`, `playlist-categories`, `playlist-tags`, `musics`                                                                                   |
+| Galleries    | `galleries`, `gallery-items`, `gallery-categories`, `gallery-tags`                                                                              |
+| Flows        | `flows`, `flow-node-types`, `flow-edge-types`, `flow-categories`, `flow-tags`                                                                   |
+| Videos       | `videos`, `video-categories`, `video-tags`                                                                                                      |
+| Live Streams | `live-streams`                                                                                                                                  |
+| Forms        | `forms`, `form-submissions`                                                                                                                     |
 ## Utilities

package/dist/auth.cjs CHANGED Viewed

@@ -125,7 +125,9 @@ function parseApiKey(apiKey) {
     }
     return { clientKey, secretKey };
   } catch (e) {
-    throw new Error('Invalid API key. Expected Base64 encoded "clientKey:secretKey"');
+    throw new Error(
+      'Invalid API key. Expected Base64 encoded "clientKey:secretKey"'
+    );
   }
 }
 //# sourceMappingURL=auth.cjs.map

package/dist/auth.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../src/auth.ts","../src/core/internal/utils/jwt.ts","../src/core/internal/utils/encoding.ts"],"sourcesContent":["export type { JwtPayload } from './core/internal/utils'\nexport {\n createServerToken,\n verifyServerToken,\n decodeServerToken,\n createApiKey,\n parseApiKey,\n} from './core/internal/utils'\n","import { SignJWT, jwtVerify, decodeJwt } from 'jose'\n\nexport interface JwtPayload {\n clientKey: string\n iat?: number\n exp?: number\n}\n\n/*\n Creates a JWT token for server-side authentication.\n * The token is valid for 1 hour by default.\n /\nexport async function createServerToken(\n clientKey: string,\n secretKey: string,\n expiresIn: string = '1h',\n): Promise<string> {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n return new SignJWT({ clientKey })\n .setProtectedHeader({ alg: 'HS256' })\n .setIssuedAt()\n .setExpirationTime(expiresIn)\n .sign(secret)\n}\n\n/\n Verifies a JWT token and returns the payload.\n /\nexport async function verifyServerToken(\n token: string,\n secretKey: string,\n): Promise<JwtPayload> {\n if (!token \|\| !secretKey) {\n throw new Error('token and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n const { payload } = await jwtVerify(token, secret, {\n algorithms: ['HS256'],\n })\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n\n/\n Decodes a JWT token without verification.\n * WARNING: Use this only when you need to inspect token contents.\n * Always use verifyServerToken for authentication.\n /\nexport function decodeServerToken(token: string): JwtPayload {\n if (!token) {\n throw new Error('token is required.')\n }\n\n const payload = decodeJwt(token)\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n","/\n Creates a Base64-encoded API key from clientKey and secretKey.\n /\nexport function createApiKey(clientKey: string, secretKey: string): string {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(`${clientKey}:${secretKey}`).toString('base64')\n }\n return btoa(`${clientKey}:${secretKey}`)\n}\n\n/\n Parses a Base64-encoded API key to extract clientKey and secretKey.\n */\nexport function parseApiKey(apiKey: string): {\n clientKey: string\n secretKey: string\n} {\n if (!apiKey) {\n throw new Error('apiKey is required.')\n }\n\n try {\n let decoded: string\n if (typeof Buffer !== 'undefined') {\n decoded = Buffer.from(apiKey, 'base64').toString('utf-8')\n } else {\n decoded = atob(apiKey)\n }\n\n const colonIndex = decoded.indexOf(':')\n if (colonIndex === -1) {\n throw new Error('Invalid format: missing colon separator')\n }\n\n const clientKey = decoded.substring(0, colonIndex)\n const secretKey = decoded.substring(colonIndex + 1)\n\n if (!clientKey \|\| !secretKey) {\n throw new Error('Invalid format: empty clientKey or secretKey')\n }\n\n return { clientKey, secretKey }\n } catch {\n throw new Error('Invalid API key. Expected Base64 encoded \"clientKey:secretKey\"')\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,kBAA8C;AAY9C,SAAsB,kBACpB,WACA,WACA,YAAoB,MACH;AAAA;AACjB,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,uCAAuC;AAAA,IACzD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,WAAO,IAAI,oBAAQ,EAAE,UAAU,CAAC,EAC7B,mBAAmB,EAAE,KAAK,QAAQ,CAAC,EACnC,YAAY,EACZ,kBAAkB,SAAS,EAC3B,KAAK,MAAM;AAAA,EAChB;AAAA;AAKA,SAAsB,kBACpB,OACA,WACqB;AAAA;AACrB,QAAI,CAAC,SAAS,CAAC,WAAW;AACxB,YAAM,IAAI,MAAM,mCAAmC;AAAA,IACrD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,UAAM,EAAE,QAAQ,IAAI,UAAM,uBAAU,OAAO,QAAQ;AAAA,MACjD,YAAY,CAAC,OAAO;AAAA,IACtB,CAAC;AAED,QAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,WAAO;AAAA,MACL,WAAW,QAAQ;AAAA,MACnB,KAAK,QAAQ;AAAA,MACb,KAAK,QAAQ;AAAA,IACf;AAAA,EACF;AAAA;AAOO,SAAS,kBAAkB,OAA2B;AAC3D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,oBAAoB;AAAA,EACtC;AAEA,QAAM,cAAU,uBAAU,KAAK;AAE/B,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;;;AC1EO,SAAS,aAAa,WAAmB,WAA2B;AACzE,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE,EAAE,SAAS,QAAQ;AAAA,EACnE;AACA,SAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE;AACzC;AAKO,SAAS,YAAY,QAG1B;AACA,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,qBAAqB;AAAA,EACvC;AAEA,MAAI;AACF,QAAI;AACJ,QAAI,OAAO,WAAW,aAAa;AACjC,gBAAU,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,OAAO;AAAA,IAC1D,OAAO;AACL,gBAAU,KAAK,MAAM;AAAA,IACvB;AAEA,UAAM,aAAa,QAAQ,QAAQ,GAAG;AACtC,QAAI,eAAe,IAAI;AACrB,YAAM,IAAI,MAAM,yCAAyC;AAAA,IAC3D;AAEA,UAAM,YAAY,QAAQ,UAAU,GAAG,UAAU;AACjD,UAAM,YAAY,QAAQ,UAAU,aAAa,CAAC;AAElD,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,8CAA8C;AAAA,IAChE;AAEA,WAAO,EAAE,WAAW,UAAU;AAAA,EAChC,SAAQ;AACN,UAAM,IAAI,~~MAAM~~,~~gEAAgE~~;AAAA,~~EAClF~~;AACF;","names":[]}
1	+ {"version":3,"sources":["../src/auth.ts","../src/core/internal/utils/jwt.ts","../src/core/internal/utils/encoding.ts"],"sourcesContent":["export type { JwtPayload } from './core/internal/utils'\nexport {\n createServerToken,\n verifyServerToken,\n decodeServerToken,\n createApiKey,\n parseApiKey,\n} from './core/internal/utils'\n","import { SignJWT, jwtVerify, decodeJwt } from 'jose'\n\nexport interface JwtPayload {\n clientKey: string\n iat?: number\n exp?: number\n}\n\n/*\n Creates a JWT token for server-side authentication.\n * The token is valid for 1 hour by default.\n /\nexport async function createServerToken(\n clientKey: string,\n secretKey: string,\n expiresIn: string = '1h',\n): Promise<string> {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n return new SignJWT({ clientKey })\n .setProtectedHeader({ alg: 'HS256' })\n .setIssuedAt()\n .setExpirationTime(expiresIn)\n .sign(secret)\n}\n\n/\n Verifies a JWT token and returns the payload.\n /\nexport async function verifyServerToken(\n token: string,\n secretKey: string,\n): Promise<JwtPayload> {\n if (!token \|\| !secretKey) {\n throw new Error('token and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n const { payload } = await jwtVerify(token, secret, {\n algorithms: ['HS256'],\n })\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n\n/\n Decodes a JWT token without verification.\n * WARNING: Use this only when you need to inspect token contents.\n * Always use verifyServerToken for authentication.\n /\nexport function decodeServerToken(token: string): JwtPayload {\n if (!token) {\n throw new Error('token is required.')\n }\n\n const payload = decodeJwt(token)\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n","/\n Creates a Base64-encoded API key from clientKey and secretKey.\n /\nexport function createApiKey(clientKey: string, secretKey: string): string {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(`${clientKey}:${secretKey}`).toString('base64')\n }\n return btoa(`${clientKey}:${secretKey}`)\n}\n\n/\n Parses a Base64-encoded API key to extract clientKey and secretKey.\n */\nexport function parseApiKey(apiKey: string): {\n clientKey: string\n secretKey: string\n} {\n if (!apiKey) {\n throw new Error('apiKey is required.')\n }\n\n try {\n let decoded: string\n if (typeof Buffer !== 'undefined') {\n decoded = Buffer.from(apiKey, 'base64').toString('utf-8')\n } else {\n decoded = atob(apiKey)\n }\n\n const colonIndex = decoded.indexOf(':')\n if (colonIndex === -1) {\n throw new Error('Invalid format: missing colon separator')\n }\n\n const clientKey = decoded.substring(0, colonIndex)\n const secretKey = decoded.substring(colonIndex + 1)\n\n if (!clientKey \|\| !secretKey) {\n throw new Error('Invalid format: empty clientKey or secretKey')\n }\n\n return { clientKey, secretKey }\n } catch {\n throw new Error(\n 'Invalid API key. Expected Base64 encoded \"clientKey:secretKey\"',\n )\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,kBAA8C;AAY9C,SAAsB,kBACpB,WACA,WACA,YAAoB,MACH;AAAA;AACjB,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,uCAAuC;AAAA,IACzD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,WAAO,IAAI,oBAAQ,EAAE,UAAU,CAAC,EAC7B,mBAAmB,EAAE,KAAK,QAAQ,CAAC,EACnC,YAAY,EACZ,kBAAkB,SAAS,EAC3B,KAAK,MAAM;AAAA,EAChB;AAAA;AAKA,SAAsB,kBACpB,OACA,WACqB;AAAA;AACrB,QAAI,CAAC,SAAS,CAAC,WAAW;AACxB,YAAM,IAAI,MAAM,mCAAmC;AAAA,IACrD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,UAAM,EAAE,QAAQ,IAAI,UAAM,uBAAU,OAAO,QAAQ;AAAA,MACjD,YAAY,CAAC,OAAO;AAAA,IACtB,CAAC;AAED,QAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,WAAO;AAAA,MACL,WAAW,QAAQ;AAAA,MACnB,KAAK,QAAQ;AAAA,MACb,KAAK,QAAQ;AAAA,IACf;AAAA,EACF;AAAA;AAOO,SAAS,kBAAkB,OAA2B;AAC3D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,oBAAoB;AAAA,EACtC;AAEA,QAAM,cAAU,uBAAU,KAAK;AAE/B,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;;;AC1EO,SAAS,aAAa,WAAmB,WAA2B;AACzE,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE,EAAE,SAAS,QAAQ;AAAA,EACnE;AACA,SAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE;AACzC;AAKO,SAAS,YAAY,QAG1B;AACA,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,qBAAqB;AAAA,EACvC;AAEA,MAAI;AACF,QAAI;AACJ,QAAI,OAAO,WAAW,aAAa;AACjC,gBAAU,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,OAAO;AAAA,IAC1D,OAAO;AACL,gBAAU,KAAK,MAAM;AAAA,IACvB;AAEA,UAAM,aAAa,QAAQ,QAAQ,GAAG;AACtC,QAAI,eAAe,IAAI;AACrB,YAAM,IAAI,MAAM,yCAAyC;AAAA,IAC3D;AAEA,UAAM,YAAY,QAAQ,UAAU,GAAG,UAAU;AACjD,UAAM,YAAY,QAAQ,UAAU,aAAa,CAAC;AAElD,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,8CAA8C;AAAA,IAChE;AAEA,WAAO,EAAE,WAAW,UAAU;AAAA,EAChC,SAAQ;AACN,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACF;","names":[]}

package/dist/auth.d.cts CHANGED Viewed

@@ -1,4 +1,4 @@
-import './payload-types-BjvBwB8Z.cjs';
+import './payload-types-BUwpb306.cjs';
 interface JwtPayload {
     clientKey: string;

package/dist/auth.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import './payload-types-BjvBwB8Z.js';
+import './payload-types-BUwpb306.js';
 interface JwtPayload {
     clientKey: string;

package/dist/auth.js CHANGED Viewed

@@ -96,7 +96,9 @@ function parseApiKey(apiKey) {
     }
     return { clientKey, secretKey };
   } catch (e) {
-    throw new Error('Invalid API key. Expected Base64 encoded "clientKey:secretKey"');
+    throw new Error(
+      'Invalid API key. Expected Base64 encoded "clientKey:secretKey"'
+    );
   }
 }
 export {

package/dist/auth.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../src/core/internal/utils/jwt.ts","../src/core/internal/utils/encoding.ts"],"sourcesContent":["import { SignJWT, jwtVerify, decodeJwt } from 'jose'\n\nexport interface JwtPayload {\n clientKey: string\n iat?: number\n exp?: number\n}\n\n/*\n Creates a JWT token for server-side authentication.\n * The token is valid for 1 hour by default.\n /\nexport async function createServerToken(\n clientKey: string,\n secretKey: string,\n expiresIn: string = '1h',\n): Promise<string> {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n return new SignJWT({ clientKey })\n .setProtectedHeader({ alg: 'HS256' })\n .setIssuedAt()\n .setExpirationTime(expiresIn)\n .sign(secret)\n}\n\n/\n Verifies a JWT token and returns the payload.\n /\nexport async function verifyServerToken(\n token: string,\n secretKey: string,\n): Promise<JwtPayload> {\n if (!token \|\| !secretKey) {\n throw new Error('token and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n const { payload } = await jwtVerify(token, secret, {\n algorithms: ['HS256'],\n })\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n\n/\n Decodes a JWT token without verification.\n * WARNING: Use this only when you need to inspect token contents.\n * Always use verifyServerToken for authentication.\n /\nexport function decodeServerToken(token: string): JwtPayload {\n if (!token) {\n throw new Error('token is required.')\n }\n\n const payload = decodeJwt(token)\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n","/\n Creates a Base64-encoded API key from clientKey and secretKey.\n /\nexport function createApiKey(clientKey: string, secretKey: string): string {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(`${clientKey}:${secretKey}`).toString('base64')\n }\n return btoa(`${clientKey}:${secretKey}`)\n}\n\n/\n Parses a Base64-encoded API key to extract clientKey and secretKey.\n */\nexport function parseApiKey(apiKey: string): {\n clientKey: string\n secretKey: string\n} {\n if (!apiKey) {\n throw new Error('apiKey is required.')\n }\n\n try {\n let decoded: string\n if (typeof Buffer !== 'undefined') {\n decoded = Buffer.from(apiKey, 'base64').toString('utf-8')\n } else {\n decoded = atob(apiKey)\n }\n\n const colonIndex = decoded.indexOf(':')\n if (colonIndex === -1) {\n throw new Error('Invalid format: missing colon separator')\n }\n\n const clientKey = decoded.substring(0, colonIndex)\n const secretKey = decoded.substring(colonIndex + 1)\n\n if (!clientKey \|\| !secretKey) {\n throw new Error('Invalid format: empty clientKey or secretKey')\n }\n\n return { clientKey, secretKey }\n } catch {\n throw new Error('Invalid API key. Expected Base64 encoded \"clientKey:secretKey\"')\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;AAAA,SAAS,SAAS,WAAW,iBAAiB;AAY9C,SAAsB,kBACpB,WACA,WACA,YAAoB,MACH;AAAA;AACjB,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,uCAAuC;AAAA,IACzD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,WAAO,IAAI,QAAQ,EAAE,UAAU,CAAC,EAC7B,mBAAmB,EAAE,KAAK,QAAQ,CAAC,EACnC,YAAY,EACZ,kBAAkB,SAAS,EAC3B,KAAK,MAAM;AAAA,EAChB;AAAA;AAKA,SAAsB,kBACpB,OACA,WACqB;AAAA;AACrB,QAAI,CAAC,SAAS,CAAC,WAAW;AACxB,YAAM,IAAI,MAAM,mCAAmC;AAAA,IACrD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,UAAM,EAAE,QAAQ,IAAI,MAAM,UAAU,OAAO,QAAQ;AAAA,MACjD,YAAY,CAAC,OAAO;AAAA,IACtB,CAAC;AAED,QAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,WAAO;AAAA,MACL,WAAW,QAAQ;AAAA,MACnB,KAAK,QAAQ;AAAA,MACb,KAAK,QAAQ;AAAA,IACf;AAAA,EACF;AAAA;AAOO,SAAS,kBAAkB,OAA2B;AAC3D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,oBAAoB;AAAA,EACtC;AAEA,QAAM,UAAU,UAAU,KAAK;AAE/B,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;;;AC1EO,SAAS,aAAa,WAAmB,WAA2B;AACzE,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE,EAAE,SAAS,QAAQ;AAAA,EACnE;AACA,SAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE;AACzC;AAKO,SAAS,YAAY,QAG1B;AACA,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,qBAAqB;AAAA,EACvC;AAEA,MAAI;AACF,QAAI;AACJ,QAAI,OAAO,WAAW,aAAa;AACjC,gBAAU,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,OAAO;AAAA,IAC1D,OAAO;AACL,gBAAU,KAAK,MAAM;AAAA,IACvB;AAEA,UAAM,aAAa,QAAQ,QAAQ,GAAG;AACtC,QAAI,eAAe,IAAI;AACrB,YAAM,IAAI,MAAM,yCAAyC;AAAA,IAC3D;AAEA,UAAM,YAAY,QAAQ,UAAU,GAAG,UAAU;AACjD,UAAM,YAAY,QAAQ,UAAU,aAAa,CAAC;AAElD,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,8CAA8C;AAAA,IAChE;AAEA,WAAO,EAAE,WAAW,UAAU;AAAA,EAChC,SAAQ;AACN,UAAM,IAAI,~~MAAM~~,~~gEAAgE~~;AAAA,~~EAClF~~;AACF;","names":[]}
1	+ {"version":3,"sources":["../src/core/internal/utils/jwt.ts","../src/core/internal/utils/encoding.ts"],"sourcesContent":["import { SignJWT, jwtVerify, decodeJwt } from 'jose'\n\nexport interface JwtPayload {\n clientKey: string\n iat?: number\n exp?: number\n}\n\n/*\n Creates a JWT token for server-side authentication.\n * The token is valid for 1 hour by default.\n /\nexport async function createServerToken(\n clientKey: string,\n secretKey: string,\n expiresIn: string = '1h',\n): Promise<string> {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n return new SignJWT({ clientKey })\n .setProtectedHeader({ alg: 'HS256' })\n .setIssuedAt()\n .setExpirationTime(expiresIn)\n .sign(secret)\n}\n\n/\n Verifies a JWT token and returns the payload.\n /\nexport async function verifyServerToken(\n token: string,\n secretKey: string,\n): Promise<JwtPayload> {\n if (!token \|\| !secretKey) {\n throw new Error('token and secretKey are required.')\n }\n\n const secret = new TextEncoder().encode(secretKey)\n const { payload } = await jwtVerify(token, secret, {\n algorithms: ['HS256'],\n })\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n\n/\n Decodes a JWT token without verification.\n * WARNING: Use this only when you need to inspect token contents.\n * Always use verifyServerToken for authentication.\n /\nexport function decodeServerToken(token: string): JwtPayload {\n if (!token) {\n throw new Error('token is required.')\n }\n\n const payload = decodeJwt(token)\n\n if (!payload.clientKey \|\| typeof payload.clientKey !== 'string') {\n throw new Error('Invalid token payload: clientKey is missing')\n }\n\n return {\n clientKey: payload.clientKey as string,\n iat: payload.iat,\n exp: payload.exp,\n }\n}\n","/\n Creates a Base64-encoded API key from clientKey and secretKey.\n /\nexport function createApiKey(clientKey: string, secretKey: string): string {\n if (!clientKey \|\| !secretKey) {\n throw new Error('clientKey and secretKey are required.')\n }\n\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(`${clientKey}:${secretKey}`).toString('base64')\n }\n return btoa(`${clientKey}:${secretKey}`)\n}\n\n/\n Parses a Base64-encoded API key to extract clientKey and secretKey.\n */\nexport function parseApiKey(apiKey: string): {\n clientKey: string\n secretKey: string\n} {\n if (!apiKey) {\n throw new Error('apiKey is required.')\n }\n\n try {\n let decoded: string\n if (typeof Buffer !== 'undefined') {\n decoded = Buffer.from(apiKey, 'base64').toString('utf-8')\n } else {\n decoded = atob(apiKey)\n }\n\n const colonIndex = decoded.indexOf(':')\n if (colonIndex === -1) {\n throw new Error('Invalid format: missing colon separator')\n }\n\n const clientKey = decoded.substring(0, colonIndex)\n const secretKey = decoded.substring(colonIndex + 1)\n\n if (!clientKey \|\| !secretKey) {\n throw new Error('Invalid format: empty clientKey or secretKey')\n }\n\n return { clientKey, secretKey }\n } catch {\n throw new Error(\n 'Invalid API key. Expected Base64 encoded \"clientKey:secretKey\"',\n )\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;AAAA,SAAS,SAAS,WAAW,iBAAiB;AAY9C,SAAsB,kBACpB,WACA,WACA,YAAoB,MACH;AAAA;AACjB,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,uCAAuC;AAAA,IACzD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,WAAO,IAAI,QAAQ,EAAE,UAAU,CAAC,EAC7B,mBAAmB,EAAE,KAAK,QAAQ,CAAC,EACnC,YAAY,EACZ,kBAAkB,SAAS,EAC3B,KAAK,MAAM;AAAA,EAChB;AAAA;AAKA,SAAsB,kBACpB,OACA,WACqB;AAAA;AACrB,QAAI,CAAC,SAAS,CAAC,WAAW;AACxB,YAAM,IAAI,MAAM,mCAAmC;AAAA,IACrD;AAEA,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,UAAM,EAAE,QAAQ,IAAI,MAAM,UAAU,OAAO,QAAQ;AAAA,MACjD,YAAY,CAAC,OAAO;AAAA,IACtB,CAAC;AAED,QAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,WAAO;AAAA,MACL,WAAW,QAAQ;AAAA,MACnB,KAAK,QAAQ;AAAA,MACb,KAAK,QAAQ;AAAA,IACf;AAAA,EACF;AAAA;AAOO,SAAS,kBAAkB,OAA2B;AAC3D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,oBAAoB;AAAA,EACtC;AAEA,QAAM,UAAU,UAAU,KAAK;AAE/B,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;;;AC1EO,SAAS,aAAa,WAAmB,WAA2B;AACzE,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE,EAAE,SAAS,QAAQ;AAAA,EACnE;AACA,SAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE;AACzC;AAKO,SAAS,YAAY,QAG1B;AACA,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,qBAAqB;AAAA,EACvC;AAEA,MAAI;AACF,QAAI;AACJ,QAAI,OAAO,WAAW,aAAa;AACjC,gBAAU,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,OAAO;AAAA,IAC1D,OAAO;AACL,gBAAU,KAAK,MAAM;AAAA,IACvB;AAEA,UAAM,aAAa,QAAQ,QAAQ,GAAG;AACtC,QAAI,eAAe,IAAI;AACrB,YAAM,IAAI,MAAM,yCAAyC;AAAA,IAC3D;AAEA,UAAM,YAAY,QAAQ,UAAU,GAAG,UAAU;AACjD,UAAM,YAAY,QAAQ,UAAU,aAAa,CAAC;AAElD,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,8CAA8C;AAAA,IAChE;AAEA,WAAO,EAAE,WAAW,UAAU;AAAA,EAChC,SAAQ;AACN,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACF;","names":[]}