@01.software/sdk 0.8.0 → 0.10.0

package/dist/ui/form.d.cts

@@ -1,5 +1,5 @@
 import React from 'react';
-import { F as Form } from '../payload-types-FfZ2Zxp1.cjs';
+import { F as Form } from '../payload-types-D0zFPijW.cjs';
 import { RichTextData } from './rich-text.cjs';
 import '@payloadcms/richtext-lexical';
 import '@payloadcms/richtext-lexical/lexical';

package/dist/ui/form.d.ts

@@ -1,5 +1,5 @@
 import React from 'react';
-import { F as Form } from '../payload-types-FfZ2Zxp1.js';
+import { F as Form } from '../payload-types-D0zFPijW.js';
 import { RichTextData } from './rich-text.js';
 import '@payloadcms/richtext-lexical';
 import '@payloadcms/richtext-lexical/lexical';

package/dist/ui/video.d.cts

@@ -1,7 +1,7 @@
 import React, { CSSProperties } from 'react';
 import { MuxPlayerProps, MuxPlayerRefAttributes } from '@mux/mux-player-react';
 export { MuxPlayerRefAttributes as VideoPlayerRef } from '@mux/mux-player-react';
-import { V as Video } from '../payload-types-FfZ2Zxp1.cjs';
+import { V as Video } from '../payload-types-D0zFPijW.cjs';
 export { e as VideoGifOptions, V as VideoThumbnailOptions, a as getVideoGif, c as getVideoMp4Url, d as getVideoStoryboard, b as getVideoStreamUrl, g as getVideoThumbnail } from '../video-DbLL8yuc.cjs';
 
 interface VideoPlayerCSSProperties extends CSSProperties {

package/dist/ui/video.d.ts

@@ -1,7 +1,7 @@
 import React, { CSSProperties } from 'react';
 import { MuxPlayerProps, MuxPlayerRefAttributes } from '@mux/mux-player-react';
 export { MuxPlayerRefAttributes as VideoPlayerRef } from '@mux/mux-player-react';
-import { V as Video } from '../payload-types-FfZ2Zxp1.js';
+import { V as Video } from '../payload-types-D0zFPijW.js';
 export { e as VideoGifOptions, V as VideoThumbnailOptions, a as getVideoGif, c as getVideoMp4Url, d as getVideoStoryboard, b as getVideoStreamUrl, g as getVideoThumbnail } from '../video-DbLL8yuc.js';
 
 interface VideoPlayerCSSProperties extends CSSProperties {

package/dist/{webhook-t7JGFLKQ.d.cts → webhook-DXr8B9E6.d.cts}

@@ -1,5 +1,5 @@
-import { C as Collection } from './const-dv0zuAxG.cjs';
-import { C as Config } from './payload-types-FfZ2Zxp1.cjs';
+import { C as Collection } from './const-k0fqIBda.cjs';
+import { C as Config } from './payload-types-D0zFPijW.cjs';
 
 type CollectionType<T extends string> = T extends keyof Config['collections'] ? Config['collections'][T] : never;
 

package/dist/{webhook-B9MDrH22.d.ts → webhook-caDRhnd7.d.ts}

@@ -1,5 +1,5 @@
-import { C as Collection } from './const-CCh99Gxu.js';
-import { C as Config } from './payload-types-FfZ2Zxp1.js';
+import { C as Collection } from './const-Dmgge6oQ.js';
+import { C as Config } from './payload-types-D0zFPijW.js';
 
 type CollectionType<T extends string> = T extends keyof Config['collections'] ? Config['collections'][T] : never;
 

package/dist/webhook.d.cts

@@ -1,3 +1,3 @@
-export { a as WebhookEvent, b as WebhookHandler, W as WebhookOperation, c as WebhookOptions, d as createTypedWebhookHandler, h as handleWebhook, i as isValidWebhookEvent } from './webhook-t7JGFLKQ.cjs';
-import './const-dv0zuAxG.cjs';
-import './payload-types-FfZ2Zxp1.cjs';
+export { a as WebhookEvent, b as WebhookHandler, W as WebhookOperation, c as WebhookOptions, d as createTypedWebhookHandler, h as handleWebhook, i as isValidWebhookEvent } from './webhook-DXr8B9E6.cjs';
+import './const-k0fqIBda.cjs';
+import './payload-types-D0zFPijW.cjs';

package/dist/webhook.d.ts

@@ -1,3 +1,3 @@
-export { a as WebhookEvent, b as WebhookHandler, W as WebhookOperation, c as WebhookOptions, d as createTypedWebhookHandler, h as handleWebhook, i as isValidWebhookEvent } from './webhook-B9MDrH22.js';
-import './const-CCh99Gxu.js';
-import './payload-types-FfZ2Zxp1.js';
+export { a as WebhookEvent, b as WebhookHandler, W as WebhookOperation, c as WebhookOptions, d as createTypedWebhookHandler, h as handleWebhook, i as isValidWebhookEvent } from './webhook-caDRhnd7.js';
+import './const-Dmgge6oQ.js';
+import './payload-types-D0zFPijW.js';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@01.software/sdk",
-  "version": "0.8.0",
+  "version": "0.10.0",
   "description": "01.software SDK",
   "author": "<office@01.works>",
   "keywords": [],
@@ -19,16 +19,6 @@
         "default": "./dist/index.cjs"
       }
     },
-    "./auth": {
-      "import": {
-        "types": "./dist/auth.d.ts",
-        "default": "./dist/auth.js"
-      },
-      "require": {
-        "types": "./dist/auth.d.cts",
-        "default": "./dist/auth.cjs"
-      }
-    },
     "./webhook": {
       "import": {
         "types": "./dist/webhook.d.ts",

package/dist/auth.cjs

@@ -1,109 +0,0 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-
-// src/auth.ts
-var auth_exports = {};
-__export(auth_exports, {
-  createApiKey: () => createApiKey,
-  createServerToken: () => createServerToken,
-  decodeServerToken: () => decodeServerToken,
-  parseApiKey: () => parseApiKey,
-  verifyServerToken: () => verifyServerToken
-});
-module.exports = __toCommonJS(auth_exports);
-
-// src/core/internal/utils/jwt.ts
-var import_jose = require("jose");
-async function createServerToken(clientKey, secretKey, expiresIn = "1h") {
-  if (!clientKey || !secretKey) {
-    throw new Error("clientKey and secretKey are required.");
-  }
-  const secret = new TextEncoder().encode(secretKey);
-  return new import_jose.SignJWT({ clientKey }).setProtectedHeader({ alg: "HS256" }).setIssuedAt().setExpirationTime(expiresIn).sign(secret);
-}
-async function verifyServerToken(token, secretKey) {
-  if (!token || !secretKey) {
-    throw new Error("token and secretKey are required.");
-  }
-  const secret = new TextEncoder().encode(secretKey);
-  const { payload } = await (0, import_jose.jwtVerify)(token, secret, {
-    algorithms: ["HS256"]
-  });
-  if (!payload.clientKey || typeof payload.clientKey !== "string") {
-    throw new Error("Invalid token payload: clientKey is missing");
-  }
-  return {
-    clientKey: payload.clientKey,
-    iat: payload.iat,
-    exp: payload.exp
-  };
-}
-function decodeServerToken(token) {
-  if (!token) {
-    throw new Error("token is required.");
-  }
-  const payload = (0, import_jose.decodeJwt)(token);
-  if (!payload.clientKey || typeof payload.clientKey !== "string") {
-    throw new Error("Invalid token payload: clientKey is missing");
-  }
-  return {
-    clientKey: payload.clientKey,
-    iat: payload.iat,
-    exp: payload.exp
-  };
-}
-
-// src/core/internal/utils/encoding.ts
-function createApiKey(clientKey, secretKey) {
-  if (!clientKey || !secretKey) {
-    throw new Error("clientKey and secretKey are required.");
-  }
-  if (typeof Buffer !== "undefined") {
-    return Buffer.from(`${clientKey}:${secretKey}`).toString("base64");
-  }
-  return btoa(`${clientKey}:${secretKey}`);
-}
-function parseApiKey(apiKey) {
-  if (!apiKey) {
-    throw new Error("apiKey is required.");
-  }
-  try {
-    let decoded;
-    if (typeof Buffer !== "undefined") {
-      decoded = Buffer.from(apiKey, "base64").toString("utf-8");
-    } else {
-      decoded = atob(apiKey);
-    }
-    const colonIndex = decoded.indexOf(":");
-    if (colonIndex === -1) {
-      throw new Error("Invalid format: missing colon separator");
-    }
-    const clientKey = decoded.substring(0, colonIndex);
-    const secretKey = decoded.substring(colonIndex + 1);
-    if (!clientKey || !secretKey) {
-      throw new Error("Invalid format: empty clientKey or secretKey");
-    }
-    return { clientKey, secretKey };
-  } catch {
-    throw new Error(
-      'Invalid API key. Expected Base64 encoded "clientKey:secretKey"'
-    );
-  }
-}
-//# sourceMappingURL=auth.cjs.map

package/dist/auth.cjs.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/auth.ts","../src/core/internal/utils/jwt.ts","../src/core/internal/utils/encoding.ts"],"sourcesContent":["export type { JwtPayload } from './core/internal/utils'\nexport {\n  createServerToken,\n  verifyServerToken,\n  decodeServerToken,\n  createApiKey,\n  parseApiKey,\n} from './core/internal/utils'\n","import { SignJWT, jwtVerify, decodeJwt } from 'jose'\n\nexport interface JwtPayload {\n  clientKey: string\n  iat?: number\n  exp?: number\n}\n\n/**\n * Creates a JWT token for server-side authentication.\n * The token is valid for 1 hour by default.\n */\nexport async function createServerToken(\n  clientKey: string,\n  secretKey: string,\n  expiresIn: string = '1h',\n): Promise<string> {\n  if (!clientKey || !secretKey) {\n    throw new Error('clientKey and secretKey are required.')\n  }\n\n  const secret = new TextEncoder().encode(secretKey)\n  return new SignJWT({ clientKey })\n    .setProtectedHeader({ alg: 'HS256' })\n    .setIssuedAt()\n    .setExpirationTime(expiresIn)\n    .sign(secret)\n}\n\n/**\n * Verifies a JWT token and returns the payload.\n */\nexport async function verifyServerToken(\n  token: string,\n  secretKey: string,\n): Promise<JwtPayload> {\n  if (!token || !secretKey) {\n    throw new Error('token and secretKey are required.')\n  }\n\n  const secret = new TextEncoder().encode(secretKey)\n  const { payload } = await jwtVerify(token, secret, {\n    algorithms: ['HS256'],\n  })\n\n  if (!payload.clientKey || typeof payload.clientKey !== 'string') {\n    throw new Error('Invalid token payload: clientKey is missing')\n  }\n\n  return {\n    clientKey: payload.clientKey as string,\n    iat: payload.iat,\n    exp: payload.exp,\n  }\n}\n\n/**\n * Decodes a JWT token without verification.\n * WARNING: Use this only when you need to inspect token contents.\n * Always use verifyServerToken for authentication.\n */\nexport function decodeServerToken(token: string): JwtPayload {\n  if (!token) {\n    throw new Error('token is required.')\n  }\n\n  const payload = decodeJwt(token)\n\n  if (!payload.clientKey || typeof payload.clientKey !== 'string') {\n    throw new Error('Invalid token payload: clientKey is missing')\n  }\n\n  return {\n    clientKey: payload.clientKey as string,\n    iat: payload.iat,\n    exp: payload.exp,\n  }\n}\n","/**\n * Creates a Base64-encoded API key from clientKey and secretKey.\n */\nexport function createApiKey(clientKey: string, secretKey: string): string {\n  if (!clientKey || !secretKey) {\n    throw new Error('clientKey and secretKey are required.')\n  }\n\n  if (typeof Buffer !== 'undefined') {\n    return Buffer.from(`${clientKey}:${secretKey}`).toString('base64')\n  }\n  return btoa(`${clientKey}:${secretKey}`)\n}\n\n/**\n * Parses a Base64-encoded API key to extract clientKey and secretKey.\n */\nexport function parseApiKey(apiKey: string): {\n  clientKey: string\n  secretKey: string\n} {\n  if (!apiKey) {\n    throw new Error('apiKey is required.')\n  }\n\n  try {\n    let decoded: string\n    if (typeof Buffer !== 'undefined') {\n      decoded = Buffer.from(apiKey, 'base64').toString('utf-8')\n    } else {\n      decoded = atob(apiKey)\n    }\n\n    const colonIndex = decoded.indexOf(':')\n    if (colonIndex === -1) {\n      throw new Error('Invalid format: missing colon separator')\n    }\n\n    const clientKey = decoded.substring(0, colonIndex)\n    const secretKey = decoded.substring(colonIndex + 1)\n\n    if (!clientKey || !secretKey) {\n      throw new Error('Invalid format: empty clientKey or secretKey')\n    }\n\n    return { clientKey, secretKey }\n  } catch {\n    throw new Error(\n      'Invalid API key. Expected Base64 encoded \"clientKey:secretKey\"',\n    )\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,kBAA8C;AAY9C,eAAsB,kBACpB,WACA,WACA,YAAoB,MACH;AACjB,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,SAAO,IAAI,oBAAQ,EAAE,UAAU,CAAC,EAC7B,mBAAmB,EAAE,KAAK,QAAQ,CAAC,EACnC,YAAY,EACZ,kBAAkB,SAAS,EAC3B,KAAK,MAAM;AAChB;AAKA,eAAsB,kBACpB,OACA,WACqB;AACrB,MAAI,CAAC,SAAS,CAAC,WAAW;AACxB,UAAM,IAAI,MAAM,mCAAmC;AAAA,EACrD;AAEA,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,QAAM,EAAE,QAAQ,IAAI,UAAM,uBAAU,OAAO,QAAQ;AAAA,IACjD,YAAY,CAAC,OAAO;AAAA,EACtB,CAAC;AAED,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;AAOO,SAAS,kBAAkB,OAA2B;AAC3D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,oBAAoB;AAAA,EACtC;AAEA,QAAM,cAAU,uBAAU,KAAK;AAE/B,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;;;AC1EO,SAAS,aAAa,WAAmB,WAA2B;AACzE,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE,EAAE,SAAS,QAAQ;AAAA,EACnE;AACA,SAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE;AACzC;AAKO,SAAS,YAAY,QAG1B;AACA,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,qBAAqB;AAAA,EACvC;AAEA,MAAI;AACF,QAAI;AACJ,QAAI,OAAO,WAAW,aAAa;AACjC,gBAAU,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,OAAO;AAAA,IAC1D,OAAO;AACL,gBAAU,KAAK,MAAM;AAAA,IACvB;AAEA,UAAM,aAAa,QAAQ,QAAQ,GAAG;AACtC,QAAI,eAAe,IAAI;AACrB,YAAM,IAAI,MAAM,yCAAyC;AAAA,IAC3D;AAEA,UAAM,YAAY,QAAQ,UAAU,GAAG,UAAU;AACjD,UAAM,YAAY,QAAQ,UAAU,aAAa,CAAC;AAElD,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,8CAA8C;AAAA,IAChE;AAEA,WAAO,EAAE,WAAW,UAAU;AAAA,EAChC,QAAQ;AACN,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACF;","names":[]}

package/dist/auth.d.cts

@@ -1,36 +0,0 @@
-import './payload-types-FfZ2Zxp1.cjs';
-
-interface JwtPayload {
-    clientKey: string;
-    iat?: number;
-    exp?: number;
-}
-/**
- * Creates a JWT token for server-side authentication.
- * The token is valid for 1 hour by default.
- */
-declare function createServerToken(clientKey: string, secretKey: string, expiresIn?: string): Promise<string>;
-/**
- * Verifies a JWT token and returns the payload.
- */
-declare function verifyServerToken(token: string, secretKey: string): Promise<JwtPayload>;
-/**
- * Decodes a JWT token without verification.
- * WARNING: Use this only when you need to inspect token contents.
- * Always use verifyServerToken for authentication.
- */
-declare function decodeServerToken(token: string): JwtPayload;
-
-/**
- * Creates a Base64-encoded API key from clientKey and secretKey.
- */
-declare function createApiKey(clientKey: string, secretKey: string): string;
-/**
- * Parses a Base64-encoded API key to extract clientKey and secretKey.
- */
-declare function parseApiKey(apiKey: string): {
-    clientKey: string;
-    secretKey: string;
-};
-
-export { type JwtPayload, createApiKey, createServerToken, decodeServerToken, parseApiKey, verifyServerToken };

package/dist/auth.d.ts

@@ -1,36 +0,0 @@
-import './payload-types-FfZ2Zxp1.js';
-
-interface JwtPayload {
-    clientKey: string;
-    iat?: number;
-    exp?: number;
-}
-/**
- * Creates a JWT token for server-side authentication.
- * The token is valid for 1 hour by default.
- */
-declare function createServerToken(clientKey: string, secretKey: string, expiresIn?: string): Promise<string>;
-/**
- * Verifies a JWT token and returns the payload.
- */
-declare function verifyServerToken(token: string, secretKey: string): Promise<JwtPayload>;
-/**
- * Decodes a JWT token without verification.
- * WARNING: Use this only when you need to inspect token contents.
- * Always use verifyServerToken for authentication.
- */
-declare function decodeServerToken(token: string): JwtPayload;
-
-/**
- * Creates a Base64-encoded API key from clientKey and secretKey.
- */
-declare function createApiKey(clientKey: string, secretKey: string): string;
-/**
- * Parses a Base64-encoded API key to extract clientKey and secretKey.
- */
-declare function parseApiKey(apiKey: string): {
-    clientKey: string;
-    secretKey: string;
-};
-
-export { type JwtPayload, createApiKey, createServerToken, decodeServerToken, parseApiKey, verifyServerToken };

package/dist/auth.js

@@ -1,86 +0,0 @@
-// src/core/internal/utils/jwt.ts
-import { SignJWT, jwtVerify, decodeJwt } from "jose";
-async function createServerToken(clientKey, secretKey, expiresIn = "1h") {
-  if (!clientKey || !secretKey) {
-    throw new Error("clientKey and secretKey are required.");
-  }
-  const secret = new TextEncoder().encode(secretKey);
-  return new SignJWT({ clientKey }).setProtectedHeader({ alg: "HS256" }).setIssuedAt().setExpirationTime(expiresIn).sign(secret);
-}
-async function verifyServerToken(token, secretKey) {
-  if (!token || !secretKey) {
-    throw new Error("token and secretKey are required.");
-  }
-  const secret = new TextEncoder().encode(secretKey);
-  const { payload } = await jwtVerify(token, secret, {
-    algorithms: ["HS256"]
-  });
-  if (!payload.clientKey || typeof payload.clientKey !== "string") {
-    throw new Error("Invalid token payload: clientKey is missing");
-  }
-  return {
-    clientKey: payload.clientKey,
-    iat: payload.iat,
-    exp: payload.exp
-  };
-}
-function decodeServerToken(token) {
-  if (!token) {
-    throw new Error("token is required.");
-  }
-  const payload = decodeJwt(token);
-  if (!payload.clientKey || typeof payload.clientKey !== "string") {
-    throw new Error("Invalid token payload: clientKey is missing");
-  }
-  return {
-    clientKey: payload.clientKey,
-    iat: payload.iat,
-    exp: payload.exp
-  };
-}
-
-// src/core/internal/utils/encoding.ts
-function createApiKey(clientKey, secretKey) {
-  if (!clientKey || !secretKey) {
-    throw new Error("clientKey and secretKey are required.");
-  }
-  if (typeof Buffer !== "undefined") {
-    return Buffer.from(`${clientKey}:${secretKey}`).toString("base64");
-  }
-  return btoa(`${clientKey}:${secretKey}`);
-}
-function parseApiKey(apiKey) {
-  if (!apiKey) {
-    throw new Error("apiKey is required.");
-  }
-  try {
-    let decoded;
-    if (typeof Buffer !== "undefined") {
-      decoded = Buffer.from(apiKey, "base64").toString("utf-8");
-    } else {
-      decoded = atob(apiKey);
-    }
-    const colonIndex = decoded.indexOf(":");
-    if (colonIndex === -1) {
-      throw new Error("Invalid format: missing colon separator");
-    }
-    const clientKey = decoded.substring(0, colonIndex);
-    const secretKey = decoded.substring(colonIndex + 1);
-    if (!clientKey || !secretKey) {
-      throw new Error("Invalid format: empty clientKey or secretKey");
-    }
-    return { clientKey, secretKey };
-  } catch {
-    throw new Error(
-      'Invalid API key. Expected Base64 encoded "clientKey:secretKey"'
-    );
-  }
-}
-export {
-  createApiKey,
-  createServerToken,
-  decodeServerToken,
-  parseApiKey,
-  verifyServerToken
-};
-//# sourceMappingURL=auth.js.map

package/dist/auth.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/core/internal/utils/jwt.ts","../src/core/internal/utils/encoding.ts"],"sourcesContent":["import { SignJWT, jwtVerify, decodeJwt } from 'jose'\n\nexport interface JwtPayload {\n  clientKey: string\n  iat?: number\n  exp?: number\n}\n\n/**\n * Creates a JWT token for server-side authentication.\n * The token is valid for 1 hour by default.\n */\nexport async function createServerToken(\n  clientKey: string,\n  secretKey: string,\n  expiresIn: string = '1h',\n): Promise<string> {\n  if (!clientKey || !secretKey) {\n    throw new Error('clientKey and secretKey are required.')\n  }\n\n  const secret = new TextEncoder().encode(secretKey)\n  return new SignJWT({ clientKey })\n    .setProtectedHeader({ alg: 'HS256' })\n    .setIssuedAt()\n    .setExpirationTime(expiresIn)\n    .sign(secret)\n}\n\n/**\n * Verifies a JWT token and returns the payload.\n */\nexport async function verifyServerToken(\n  token: string,\n  secretKey: string,\n): Promise<JwtPayload> {\n  if (!token || !secretKey) {\n    throw new Error('token and secretKey are required.')\n  }\n\n  const secret = new TextEncoder().encode(secretKey)\n  const { payload } = await jwtVerify(token, secret, {\n    algorithms: ['HS256'],\n  })\n\n  if (!payload.clientKey || typeof payload.clientKey !== 'string') {\n    throw new Error('Invalid token payload: clientKey is missing')\n  }\n\n  return {\n    clientKey: payload.clientKey as string,\n    iat: payload.iat,\n    exp: payload.exp,\n  }\n}\n\n/**\n * Decodes a JWT token without verification.\n * WARNING: Use this only when you need to inspect token contents.\n * Always use verifyServerToken for authentication.\n */\nexport function decodeServerToken(token: string): JwtPayload {\n  if (!token) {\n    throw new Error('token is required.')\n  }\n\n  const payload = decodeJwt(token)\n\n  if (!payload.clientKey || typeof payload.clientKey !== 'string') {\n    throw new Error('Invalid token payload: clientKey is missing')\n  }\n\n  return {\n    clientKey: payload.clientKey as string,\n    iat: payload.iat,\n    exp: payload.exp,\n  }\n}\n","/**\n * Creates a Base64-encoded API key from clientKey and secretKey.\n */\nexport function createApiKey(clientKey: string, secretKey: string): string {\n  if (!clientKey || !secretKey) {\n    throw new Error('clientKey and secretKey are required.')\n  }\n\n  if (typeof Buffer !== 'undefined') {\n    return Buffer.from(`${clientKey}:${secretKey}`).toString('base64')\n  }\n  return btoa(`${clientKey}:${secretKey}`)\n}\n\n/**\n * Parses a Base64-encoded API key to extract clientKey and secretKey.\n */\nexport function parseApiKey(apiKey: string): {\n  clientKey: string\n  secretKey: string\n} {\n  if (!apiKey) {\n    throw new Error('apiKey is required.')\n  }\n\n  try {\n    let decoded: string\n    if (typeof Buffer !== 'undefined') {\n      decoded = Buffer.from(apiKey, 'base64').toString('utf-8')\n    } else {\n      decoded = atob(apiKey)\n    }\n\n    const colonIndex = decoded.indexOf(':')\n    if (colonIndex === -1) {\n      throw new Error('Invalid format: missing colon separator')\n    }\n\n    const clientKey = decoded.substring(0, colonIndex)\n    const secretKey = decoded.substring(colonIndex + 1)\n\n    if (!clientKey || !secretKey) {\n      throw new Error('Invalid format: empty clientKey or secretKey')\n    }\n\n    return { clientKey, secretKey }\n  } catch {\n    throw new Error(\n      'Invalid API key. Expected Base64 encoded \"clientKey:secretKey\"',\n    )\n  }\n}\n"],"mappings":";AAAA,SAAS,SAAS,WAAW,iBAAiB;AAY9C,eAAsB,kBACpB,WACA,WACA,YAAoB,MACH;AACjB,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,SAAO,IAAI,QAAQ,EAAE,UAAU,CAAC,EAC7B,mBAAmB,EAAE,KAAK,QAAQ,CAAC,EACnC,YAAY,EACZ,kBAAkB,SAAS,EAC3B,KAAK,MAAM;AAChB;AAKA,eAAsB,kBACpB,OACA,WACqB;AACrB,MAAI,CAAC,SAAS,CAAC,WAAW;AACxB,UAAM,IAAI,MAAM,mCAAmC;AAAA,EACrD;AAEA,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,SAAS;AACjD,QAAM,EAAE,QAAQ,IAAI,MAAM,UAAU,OAAO,QAAQ;AAAA,IACjD,YAAY,CAAC,OAAO;AAAA,EACtB,CAAC;AAED,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;AAOO,SAAS,kBAAkB,OAA2B;AAC3D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,oBAAoB;AAAA,EACtC;AAEA,QAAM,UAAU,UAAU,KAAK;AAE/B,MAAI,CAAC,QAAQ,aAAa,OAAO,QAAQ,cAAc,UAAU;AAC/D,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAEA,SAAO;AAAA,IACL,WAAW,QAAQ;AAAA,IACnB,KAAK,QAAQ;AAAA,IACb,KAAK,QAAQ;AAAA,EACf;AACF;;;AC1EO,SAAS,aAAa,WAAmB,WAA2B;AACzE,MAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,UAAM,IAAI,MAAM,uCAAuC;AAAA,EACzD;AAEA,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE,EAAE,SAAS,QAAQ;AAAA,EACnE;AACA,SAAO,KAAK,GAAG,SAAS,IAAI,SAAS,EAAE;AACzC;AAKO,SAAS,YAAY,QAG1B;AACA,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,qBAAqB;AAAA,EACvC;AAEA,MAAI;AACF,QAAI;AACJ,QAAI,OAAO,WAAW,aAAa;AACjC,gBAAU,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,OAAO;AAAA,IAC1D,OAAO;AACL,gBAAU,KAAK,MAAM;AAAA,IACvB;AAEA,UAAM,aAAa,QAAQ,QAAQ,GAAG;AACtC,QAAI,eAAe,IAAI;AACrB,YAAM,IAAI,MAAM,yCAAyC;AAAA,IAC3D;AAEA,UAAM,YAAY,QAAQ,UAAU,GAAG,UAAU;AACjD,UAAM,YAAY,QAAQ,UAAU,aAAa,CAAC;AAElD,QAAI,CAAC,aAAa,CAAC,WAAW;AAC5B,YAAM,IAAI,MAAM,8CAA8C;AAAA,IAChE;AAEA,WAAO,EAAE,WAAW,UAAU;AAAA,EAChC,QAAQ;AACN,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACF;","names":[]}