@agora-sdk/secure-chat-core 0.1.0 → 0.3.0

package/dist/cjs/hooks/useSecureHandshakes.d.ts

@@ -0,0 +1,64 @@
+import { SecureHandshakeModel } from "../contract/index.js";
+/** Options for {@link useSecureHandshakes}. */
+export interface UseSecureHandshakesOptions {
+    /**
+     * The device row id whose inbox to drain. Defaults to the persisted device's `.id`. Pass the id
+     * from `useSecureDevice` so processing starts the moment the device registers (a persisted device
+     * is picked up automatically on reload even without this).
+     */
+    deviceId?: string;
+    /** Disable processing (e.g. before sign-in). Default true. */
+    enabled?: boolean;
+    /** Page size for the catch-up fetch loop. Default 100. */
+    pageSize?: number;
+    /** Called per handshake-processing error; the inbox skips the bad row and continues. */
+    onError?: (err: unknown, handshake?: SecureHandshakeModel) => void;
+}
+/** The state and actions returned by {@link useSecureHandshakes}. */
+export interface UseSecureHandshakesValues {
+    /** True until the initial catch-up loop settles. */
+    catchingUp: boolean;
+    /** True once catch-up completed and live subscriptions are active. */
+    ready: boolean;
+    /** The last processed delivery cursor (`seq`), or `null`. */
+    cursor: string | null;
+    /** Count of handshakes applied this session. */
+    processedCount: number;
+    /** The last error surfaced (also delivered via `onError`), or `null`. */
+    error: unknown;
+    /**
+     * Re-run the catch-up loop from the persisted cursor. The reusable primitive a future 409
+     * epoch-conflict rebase (on a membership Commit) calls before rebuilding + retrying its Commit.
+     */
+    resync: () => Promise<void>;
+}
+/**
+ * Process this device's MLS handshake inbox so the recipient side of secure chat works.
+ *
+ * On mount (once a device id is available) it catches up via `fetchHandshakes(since=cursor)`, re-joins
+ * the socket rooms for groups it already holds, then processes live `secure:welcome` /
+ * `secure:handshake` events — all serialized in `seq` order, deduped, and cursor-persisted. Mount it
+ * exactly once near `useSecureDevice`.
+ *
+ * @param options - {@link UseSecureHandshakesOptions}.
+ * @returns {@link UseSecureHandshakesValues}.
+ *
+ * @remarks
+ * Single-device only (Phase 3 adds own-device fan-out + MLS generation-counter gap detection). A
+ * Commit for a group whose Welcome hasn't been seen is skipped — `seq` ordering puts the Welcome
+ * first, so an unknown group means this device is genuinely not a member.
+ *
+ * Mount it exactly once. Processing is serialized *within* a mount, and the cursor is re-read from
+ * storage at the start of each run, so a serialized re-mount (or `deviceId` change) resumes without
+ * reprocessing. It does NOT serialize across a *concurrent* re-mount whose prior catch-up is still
+ * in flight; that case relies on `processWelcome` / `processCommit` being idempotent for a replayed
+ * blob. The mock is idempotent (so dev StrictMode double-invoke is harmless); harden this when the
+ * real MLS core lands (Task 1) if its handshake processing is not replay-safe.
+ *
+ * @example
+ * ```tsx
+ * const { device } = useSecureDevice();
+ * useSecureHandshakes({ deviceId: device?.id });
+ * ```
+ */
+export declare function useSecureHandshakes(options?: UseSecureHandshakesOptions): UseSecureHandshakesValues;

package/dist/cjs/hooks/useSecureHandshakes.js

@@ -0,0 +1,215 @@
+"use strict";
+// useSecureHandshakes — drain and process this device's MLS handshake inbox (the recipient side).
+//
+// The blind DS delivers each device a stream of handshakes (Welcomes targeted at it, plus broadcast
+// Commits/Proposals for its groups), ordered by a monotonic `seq`. This hook is what makes a
+// RECIPIENT actually join and stay current: on connect it pulls `GET .../handshakes?since=<cursor>`
+// to the end, then processes live `secure:welcome` / `secure:handshake` events — all funneled through
+// ONE serialized, seq-ordered, idempotent path, persisting the cursor as it goes. A processed Welcome
+// joins a group (rememberGroup); a processed Commit advances its epoch. Mount it once, near
+// useSecureDevice.
+//
+// Ordering invariant: live events that arrive WHILE catching up are buffered and replayed in `seq`
+// order AFTER catch-up — otherwise a high-seq live event would advance the cursor past not-yet-fetched
+// rows and the dedupe check would drop them (data loss).
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.useSecureHandshakes = useSecureHandshakes;
+const react_1 = require("react");
+const base64_js_1 = require("../util/base64.js");
+const secure_chat_context_js_1 = require("../context/secure-chat-context.js");
+/** Compare two decimal-string `seq` cursors numerically (string compare is wrong across digit widths). */
+function compareSeq(a, b) {
+    const d = BigInt(a) - BigInt(b);
+    return d > 0n ? 1 : d < 0n ? -1 : 0;
+}
+/**
+ * Process this device's MLS handshake inbox so the recipient side of secure chat works.
+ *
+ * On mount (once a device id is available) it catches up via `fetchHandshakes(since=cursor)`, re-joins
+ * the socket rooms for groups it already holds, then processes live `secure:welcome` /
+ * `secure:handshake` events — all serialized in `seq` order, deduped, and cursor-persisted. Mount it
+ * exactly once near `useSecureDevice`.
+ *
+ * @param options - {@link UseSecureHandshakesOptions}.
+ * @returns {@link UseSecureHandshakesValues}.
+ *
+ * @remarks
+ * Single-device only (Phase 3 adds own-device fan-out + MLS generation-counter gap detection). A
+ * Commit for a group whose Welcome hasn't been seen is skipped — `seq` ordering puts the Welcome
+ * first, so an unknown group means this device is genuinely not a member.
+ *
+ * Mount it exactly once. Processing is serialized *within* a mount, and the cursor is re-read from
+ * storage at the start of each run, so a serialized re-mount (or `deviceId` change) resumes without
+ * reprocessing. It does NOT serialize across a *concurrent* re-mount whose prior catch-up is still
+ * in flight; that case relies on `processWelcome` / `processCommit` being idempotent for a replayed
+ * blob. The mock is idempotent (so dev StrictMode double-invoke is harmless); harden this when the
+ * real MLS core lands (Task 1) if its handshake processing is not replay-safe.
+ *
+ * @example
+ * ```tsx
+ * const { device } = useSecureDevice();
+ * useSecureHandshakes({ deviceId: device?.id });
+ * ```
+ */
+function useSecureHandshakes(options = {}) {
+    const { rest, crypto, socket, repo, resolveGroup, rememberGroup } = (0, secure_chat_context_js_1.useSecureChat)();
+    const { deviceId: deviceIdOption, pageSize = 100 } = options;
+    const enabled = options.enabled ?? true;
+    const [catchingUp, setCatchingUp] = (0, react_1.useState)(true);
+    const [ready, setReady] = (0, react_1.useState)(false);
+    const [cursor, setCursor] = (0, react_1.useState)(null);
+    const [processedCount, setProcessedCount] = (0, react_1.useState)(0);
+    const [error, setError] = (0, react_1.useState)(null);
+    // onError read through a ref so passing an inline callback doesn't re-run the effect.
+    const onErrorRef = (0, react_1.useRef)(options.onError);
+    onErrorRef.current = options.onError;
+    // The catch-up routine, published from the effect so `resync()` (stable) can invoke it.
+    const runCatchUpRef = (0, react_1.useRef)(null);
+    const resync = (0, react_1.useCallback)(async () => {
+        await runCatchUpRef.current?.();
+    }, []);
+    (0, react_1.useEffect)(() => {
+        if (!enabled)
+            return;
+        let alive = true;
+        const offFns = [];
+        // Async state shared across the catch-up loop, live handlers, and the serial apply queue.
+        const cursorRef = { current: null };
+        const catchingUpRef = { current: true };
+        const liveBuffer = [];
+        let queue = Promise.resolve();
+        let deviceId;
+        const report = (err, h) => {
+            if (alive)
+                setError(err);
+            onErrorRef.current?.(err, h);
+        };
+        const dispatchByKind = async (h) => {
+            const payload = (0, base64_js_1.fromBase64)(h.payload);
+            if (h.kind === "welcome") {
+                // Targeted at us → join the group, then join its room for future broadcast Commits.
+                if (h.targetDeviceId && h.targetDeviceId !== deviceId)
+                    return;
+                const handle = await crypto.processWelcome(payload);
+                await rememberGroup(h.conversationId, handle);
+                socket.joinConversation(h.conversationId);
+            }
+            else if (h.kind === "commit") {
+                const group = await resolveGroup(h.conversationId);
+                if (!group) {
+                    // Unknown group at a Commit: with seq ordering the Welcome precedes it, so we're not a
+                    // member of this conversation. Skip (the cursor still advances so we don't re-fetch it).
+                    report(new Error(`secure-chat: commit for unknown group ${h.conversationId}`), h);
+                    return;
+                }
+                const advanced = await crypto.processCommit(group, payload);
+                await rememberGroup(h.conversationId, advanced);
+            }
+            else if (h.kind === "proposal") {
+                const group = await resolveGroup(h.conversationId);
+                if (group)
+                    await crypto.processProposal(group, payload);
+            }
+        };
+        // The ONE place that mutates the cursor + crypto state. Dedupes by seq; advances the cursor even
+        // when a row is skipped or its dispatch throws, so a poison blob can never wedge the inbox. A hard
+        // crash mid-dispatch leaves the cursor unsaved, so the row replays on restart (no loss).
+        const applyOrdered = async (h) => {
+            if (cursorRef.current !== null && compareSeq(h.seq, cursorRef.current) <= 0)
+                return;
+            try {
+                await dispatchByKind(h);
+            }
+            catch (err) {
+                report(err, h);
+            }
+            cursorRef.current = h.seq;
+            await repo.saveHandshakeCursor(h.seq);
+            if (alive) {
+                setCursor(h.seq);
+                setProcessedCount((n) => n + 1);
+            }
+        };
+        const schedule = (h) => {
+            queue = queue.then(() => applyOrdered(h));
+            return queue;
+        };
+        const enqueueLive = (h) => {
+            // Buffer while catching up so a high-seq live event can't advance the cursor past rows the
+            // catch-up loop hasn't fetched yet (which the dedupe check would then drop).
+            if (catchingUpRef.current)
+                liveBuffer.push(h);
+            else
+                schedule(h);
+        };
+        // Coalesce overlapping invocations: a `resync()` fired while a catch-up is still draining returns
+        // the in-flight promise instead of starting a second drain (two drains would race the
+        // `catchingUpRef` gate + `liveBuffer` and could break seq ordering).
+        let catchUpInFlight = null;
+        const runCatchUp = () => {
+            if (catchUpInFlight)
+                return catchUpInFlight;
+            catchUpInFlight = (async () => {
+                catchingUpRef.current = true;
+                try {
+                    for (;;) {
+                        const page = await rest.fetchHandshakes(deviceId, {
+                            since: cursorRef.current ?? undefined,
+                            limit: pageSize,
+                        });
+                        for (const h of page.handshakes)
+                            await schedule(h);
+                        if (!page.hasMore)
+                            break;
+                    }
+                }
+                finally {
+                    catchingUpRef.current = false;
+                    // Replay anything that landed live during catch-up, in seq order, through the same queue.
+                    const buffered = liveBuffer.splice(0).sort((a, b) => compareSeq(a.seq, b.seq));
+                    for (const h of buffered)
+                        schedule(h);
+                }
+            })().finally(() => {
+                catchUpInFlight = null;
+            });
+            return catchUpInFlight;
+        };
+        (async () => {
+            // Resolve the device row id (option wins; else the persisted device). Without one, there is no
+            // inbox to drain yet — the effect re-runs when `deviceId` is later supplied.
+            deviceId = deviceIdOption ?? (await repo.loadDevice())?.device?.id;
+            if (!alive || !deviceId)
+                return;
+            cursorRef.current = await repo.loadHandshakeCursor();
+            if (alive)
+                setCursor(cursorRef.current);
+            // Subscribe to live events BEFORE catch-up (buffered until catch-up completes).
+            offFns.push(socket.on("secure:welcome", enqueueLive));
+            offFns.push(socket.on("secure:handshake", enqueueLive));
+            runCatchUpRef.current = runCatchUp;
+            await runCatchUp();
+            // After a reload we hold group state but haven't joined the socket rooms, so broadcast Commits
+            // wouldn't arrive — re-join every known conversation.
+            try {
+                const convIds = await repo.listGroupConversationIds();
+                for (const c of convIds)
+                    socket.joinConversation(c);
+            }
+            catch (err) {
+                report(err);
+            }
+            if (alive) {
+                setCatchingUp(false);
+                setReady(true);
+            }
+        })().catch((err) => report(err));
+        return () => {
+            alive = false;
+            offFns.forEach((off) => off());
+            runCatchUpRef.current = null;
+        };
+    }, [enabled, deviceIdOption, pageSize, rest, socket, repo, crypto, resolveGroup, rememberGroup]);
+    return { catchingUp, ready, cursor, processedCount, error, resync };
+}
+//# sourceMappingURL=useSecureHandshakes.js.map

package/dist/cjs/hooks/useSecureHandshakes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"useSecureHandshakes.js","sourceRoot":"","sources":["../../../src/hooks/useSecureHandshakes.tsx"],"names":[],"mappings":";AAAA,kGAAkG;AAClG,EAAE;AACF,oGAAoG;AACpG,6FAA6F;AAC7F,oGAAoG;AACpG,sGAAsG;AACtG,sGAAsG;AACtG,4FAA4F;AAC5F,mBAAmB;AACnB,EAAE;AACF,mGAAmG;AACnG,uGAAuG;AACvG,yDAAyD;;AA6EzD,kDAmKC;AA9OD,iCAAiE;AAEjE,iDAA+C;AAC/C,8EAAkE;AAElE,0GAA0G;AAC1G,SAAS,UAAU,CAAC,CAAS,EAAE,CAAS;IACtC,MAAM,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;IAChC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AACtC,CAAC;AAqCD;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,SAAgB,mBAAmB,CACjC,UAAsC,EAAE;IAExC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,aAAa,EAAE,GAAG,IAAA,sCAAa,GAAE,CAAC;IACpF,MAAM,EAAE,QAAQ,EAAE,cAAc,EAAE,QAAQ,GAAG,GAAG,EAAE,GAAG,OAAO,CAAC;IAC7D,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,IAAI,CAAC;IAExC,MAAM,CAAC,UAAU,EAAE,aAAa,CAAC,GAAG,IAAA,gBAAQ,EAAC,IAAI,CAAC,CAAC;IACnD,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,gBAAQ,EAAC,KAAK,CAAC,CAAC;IAC1C,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,GAAG,IAAA,gBAAQ,EAAgB,IAAI,CAAC,CAAC;IAC1D,MAAM,CAAC,cAAc,EAAE,iBAAiB,CAAC,GAAG,IAAA,gBAAQ,EAAC,CAAC,CAAC,CAAC;IACxD,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,gBAAQ,EAAU,IAAI,CAAC,CAAC;IAElD,sFAAsF;IACtF,MAAM,UAAU,GAAG,IAAA,cAAM,EAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IAC3C,UAAU,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IAErC,wFAAwF;IACxF,MAAM,aAAa,GAAG,IAAA,cAAM,EAA+B,IAAI,CAAC,CAAC;IAEjE,MAAM,MAAM,GAAG,IAAA,mBAAW,EAAC,KAAK,IAAmB,EAAE;QACnD,MAAM,aAAa,CAAC,OAAO,EAAE,EAAE,CAAC;IAClC,CAAC,EAAE,EAAE,CAAC,CAAC;IAEP,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,IAAI,CAAC,OAAO;YAAE,OAAO;QACrB,IAAI,KAAK,GAAG,IAAI,CAAC;QACjB,MAAM,MAAM,GAAsB,EAAE,CAAC;QAErC,0FAA0F;QAC1F,MAAM,SAAS,GAAG,EAAE,OAAO,EAAE,IAAqB,EAAE,CAAC;QACrD,MAAM,aAAa,GAAG,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;QACxC,MAAM,UAAU,GAA2B,EAAE,CAAC;QAC9C,IAAI,KAAK,GAAkB,OAAO,CAAC,OAAO,EAAE,CAAC;QAC7C,IAAI,QAA4B,CAAC;QAEjC,MAAM,MAAM,GAAG,CAAC,GAAY,EAAE,CAAwB,EAAE,EAAE;YACxD,IAAI,KAAK;gBAAE,QAAQ,CAAC,GAAG,CAAC,CAAC;YACzB,UAAU,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QAC/B,CAAC,CAAC;QAEF,MAAM,cAAc,GAAG,KAAK,EAAE,CAAuB,EAAiB,EAAE;YACtE,MAAM,OAAO,GAAG,IAAA,sBAAU,EAAC,CAAC,CAAC,OAAO,CAAC,CAAC;YACtC,IAAI,CAAC,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;gBACzB,oFAAoF;gBACpF,IAAI,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC,cAAc,KAAK,QAAQ;oBAAE,OAAO;gBAC9D,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;gBACpD,MAAM,aAAa,CAAC,CAAC,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;gBAC9C,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC;YAC5C,CAAC;iBAAM,IAAI,CAAC,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC/B,MAAM,KAAK,GAAG,MAAM,YAAY,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC;gBACnD,IAAI,CAAC,KAAK,EAAE,CAAC;oBACX,uFAAuF;oBACvF,yFAAyF;oBACzF,MAAM,CAAC,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC,cAAc,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;oBAClF,OAAO;gBACT,CAAC;gBACD,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;gBAC5D,MAAM,aAAa,CAAC,CAAC,CAAC,cAAc,EAAE,QAAQ,CAAC,CAAC;YAClD,CAAC;iBAAM,IAAI,CAAC,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;gBACjC,MAAM,KAAK,GAAG,MAAM,YAAY,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC;gBACnD,IAAI,KAAK;oBAAE,MAAM,MAAM,CAAC,eAAe,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC,CAAC;QAEF,iGAAiG;QACjG,mGAAmG;QACnG,yFAAyF;QACzF,MAAM,YAAY,GAAG,KAAK,EAAE,CAAuB,EAAiB,EAAE;YACpE,IAAI,SAAS,CAAC,OAAO,KAAK,IAAI,IAAI,UAAU,CAAC,CAAC,CAAC,GAAG,EAAE,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC;gBAAE,OAAO;YACpF,IAAI,CAAC;gBACH,MAAM,cAAc,CAAC,CAAC,CAAC,CAAC;YAC1B,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;YACjB,CAAC;YACD,SAAS,CAAC,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC;YAC1B,MAAM,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;YACtC,IAAI,KAAK,EAAE,CAAC;gBACV,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;gBACjB,iBAAiB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YAClC,CAAC;QACH,CAAC,CAAC;QAEF,MAAM,QAAQ,GAAG,CAAC,CAAuB,EAAiB,EAAE;YAC1D,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;YAC1C,OAAO,KAAK,CAAC;QACf,CAAC,CAAC;QAEF,MAAM,WAAW,GAAG,CAAC,CAAuB,EAAE,EAAE;YAC9C,2FAA2F;YAC3F,6EAA6E;YAC7E,IAAI,aAAa,CAAC,OAAO;gBAAE,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;;gBACzC,QAAQ,CAAC,CAAC,CAAC,CAAC;QACnB,CAAC,CAAC;QAEF,kGAAkG;QAClG,sFAAsF;QACtF,qEAAqE;QACrE,IAAI,eAAe,GAAyB,IAAI,CAAC;QACjD,MAAM,UAAU,GAAG,GAAkB,EAAE;YACrC,IAAI,eAAe;gBAAE,OAAO,eAAe,CAAC;YAC5C,eAAe,GAAG,CAAC,KAAK,IAAI,EAAE;gBAC5B,aAAa,CAAC,OAAO,GAAG,IAAI,CAAC;gBAC7B,IAAI,CAAC;oBACH,SAAS,CAAC;wBACR,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,QAAS,EAAE;4BACjD,KAAK,EAAE,SAAS,CAAC,OAAO,IAAI,SAAS;4BACrC,KAAK,EAAE,QAAQ;yBAChB,CAAC,CAAC;wBACH,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,UAAU;4BAAE,MAAM,QAAQ,CAAC,CAAC,CAAC,CAAC;wBACnD,IAAI,CAAC,IAAI,CAAC,OAAO;4BAAE,MAAM;oBAC3B,CAAC;gBACH,CAAC;wBAAS,CAAC;oBACT,aAAa,CAAC,OAAO,GAAG,KAAK,CAAC;oBAC9B,0FAA0F;oBAC1F,MAAM,QAAQ,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;oBAC/E,KAAK,MAAM,CAAC,IAAI,QAAQ;wBAAE,QAAQ,CAAC,CAAC,CAAC,CAAC;gBACxC,CAAC;YACH,CAAC,CAAC,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE;gBAChB,eAAe,GAAG,IAAI,CAAC;YACzB,CAAC,CAAC,CAAC;YACH,OAAO,eAAe,CAAC;QACzB,CAAC,CAAC;QAEF,CAAC,KAAK,IAAI,EAAE;YACV,+FAA+F;YAC/F,6EAA6E;YAC7E,QAAQ,GAAG,cAAc,IAAI,CAAC,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,CAAC;YACnE,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ;gBAAE,OAAO;YAEhC,SAAS,CAAC,OAAO,GAAG,MAAM,IAAI,CAAC,mBAAmB,EAAE,CAAC;YACrD,IAAI,KAAK;gBAAE,SAAS,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YAExC,gFAAgF;YAChF,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,gBAAgB,EAAE,WAAW,CAAC,CAAC,CAAC;YACtD,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,kBAAkB,EAAE,WAAW,CAAC,CAAC,CAAC;YAExD,aAAa,CAAC,OAAO,GAAG,UAAU,CAAC;YACnC,MAAM,UAAU,EAAE,CAAC;YAEnB,+FAA+F;YAC/F,sDAAsD;YACtD,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,wBAAwB,EAAE,CAAC;gBACtD,KAAK,MAAM,CAAC,IAAI,OAAO;oBAAE,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC;YACtD,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,CAAC,GAAG,CAAC,CAAC;YACd,CAAC;YAED,IAAI,KAAK,EAAE,CAAC;gBACV,aAAa,CAAC,KAAK,CAAC,CAAC;gBACrB,QAAQ,CAAC,IAAI,CAAC,CAAC;YACjB,CAAC;QACH,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;QAEjC,OAAO,GAAG,EAAE;YACV,KAAK,GAAG,KAAK,CAAC;YACd,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC;YAC/B,aAAa,CAAC,OAAO,GAAG,IAAI,CAAC;QAC/B,CAAC,CAAC;IACJ,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,YAAY,EAAE,aAAa,CAAC,CAAC,CAAC;IAEjG,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC;AACtE,CAAC"}

package/dist/cjs/hooks/useSecureMessages.d.ts

@@ -1,4 +1,4 @@
-import { SecureMessageModel } from "../contract";
+import { SecureMessageModel } from "../contract/index.js";
 import { GroupHandle } from "@agora-sdk/secure-chat-crypto";
 /** A stored message paired with its decrypted text (when a group handle is available). */
 export interface DecryptedSecureMessage {
@@ -9,9 +9,9 @@ export interface DecryptedSecureMessage {
 }
 /** Options for {@link useSecureMessages}. */
 export interface UseSecureMessagesOptions {
-    /** The MLS group handle for this conversation (from the platform persistence layer). */
+    /** Override the MLS group handle. Defaults to the persisted handle via `resolveGroup`. */
     group?: GroupHandle;
-    /** The caller's device row id — required to send (the server verifies it belongs to the caller). */
+    /** Override the sender device row id. Defaults to the persisted device's `.id`. */
     senderDeviceId?: string;
 }
 /** The state and actions returned by {@link useSecureMessages}. */
@@ -28,24 +28,23 @@ export interface UseSecureMessagesValues {
     loadMore: () => Promise<void>;
     /** Reload from the newest message, replacing the current list. */
     refresh: () => Promise<void>;
-    /** Encrypt + send a text message. Requires `group` + `senderDeviceId`. */
+    /** Encrypt + send a text message. Requires a resolvable group + sender device. */
     sendMessage: (text: string) => Promise<void>;
 }
 /**
  * Load, decrypt, send, and live-receive messages in one secure conversation.
  *
- * Decryption runs through the injected `SecureChatCrypto` against the conversation's MLS
- * `GroupHandle`. Without a `group` in `options`, ciphertext is still listed and received (as
- * `plaintext: null`) and sending is disabled — letting the transport work ahead of the crypto
- * wiring. Joins the conversation's socket room to receive `secure:message` events live.
+ * Auto-resolves the MLS group handle (via `resolveGroup`) and the sender device id (from the
+ * persisted device) unless overridden in `options`. Joins the conversation socket room for live
+ * `secure:message` events.
  *
  * @param conversationId - The conversation to read and send within.
- * @param options - {@link UseSecureMessagesOptions} — the MLS `group` handle and `senderDeviceId`.
- * @returns {@link UseSecureMessagesValues} — the message list, paging state, and `sendMessage`.
+ * @param options - {@link UseSecureMessagesOptions}.
+ * @returns {@link UseSecureMessagesValues}.
  *
  * @example
  * ```tsx
- * const { messages, sendMessage } = useSecureMessages(conversationId, { group, senderDeviceId });
+ * const { messages, sendMessage } = useSecureMessages(conversationId);
  * await sendMessage("hello 💜");
  * ```
  */

package/dist/cjs/hooks/useSecureMessages.js

@@ -1,48 +1,105 @@
 "use strict";
 // useSecureMessages — load, decrypt, send, and live-receive messages in a secure conversation.
 //
-// Encryption/decryption runs through the injected `SecureChatCrypto` against the conversation's MLS
-// `GroupHandle`. Resolving conversationId → GroupHandle is owned by the platform persistence layer
-// (Phase 2: IndexedDB group state via processWelcome/importGroupState), so the caller passes the
-// handle in. Without it, ciphertext is still listed/received but left undecrypted (`plaintext: null`)
-// and sending is disabled — keeping the transport usable ahead of the crypto wiring.
+// Self-sufficient once a store is wired: the MLS GroupHandle is auto-resolved from persistence via
+// resolveGroup, and senderDeviceId is read from the persisted device. Both stay overridable through
+// options for advanced use. Without a resolvable handle, ciphertext is still listed/received
+// (plaintext: null) and sending is disabled.
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.useSecureMessages = useSecureMessages;
 const react_1 = require("react");
-const base64_1 = require("../util/base64");
-const secure_chat_context_1 = require("../context/secure-chat-context");
+const base64_js_1 = require("../util/base64.js");
+const secure_chat_context_js_1 = require("../context/secure-chat-context.js");
 /**
  * Load, decrypt, send, and live-receive messages in one secure conversation.
  *
- * Decryption runs through the injected `SecureChatCrypto` against the conversation's MLS
- * `GroupHandle`. Without a `group` in `options`, ciphertext is still listed and received (as
- * `plaintext: null`) and sending is disabled — letting the transport work ahead of the crypto
- * wiring. Joins the conversation's socket room to receive `secure:message` events live.
+ * Auto-resolves the MLS group handle (via `resolveGroup`) and the sender device id (from the
+ * persisted device) unless overridden in `options`. Joins the conversation socket room for live
+ * `secure:message` events.
  *
  * @param conversationId - The conversation to read and send within.
- * @param options - {@link UseSecureMessagesOptions} — the MLS `group` handle and `senderDeviceId`.
- * @returns {@link UseSecureMessagesValues} — the message list, paging state, and `sendMessage`.
+ * @param options - {@link UseSecureMessagesOptions}.
+ * @returns {@link UseSecureMessagesValues}.
  *
  * @example
  * ```tsx
- * const { messages, sendMessage } = useSecureMessages(conversationId, { group, senderDeviceId });
+ * const { messages, sendMessage } = useSecureMessages(conversationId);
  * await sendMessage("hello 💜");
  * ```
  */
 function useSecureMessages(conversationId, options = {}) {
-    const { rest, crypto, socket } = (0, secure_chat_context_1.useSecureChat)();
-    const { group, senderDeviceId } = options;
+    const { rest, crypto, socket, repo, resolveGroup, getGroupVersion, subscribeGroupChange } = (0, secure_chat_context_js_1.useSecureChat)();
     const [messages, setMessages] = (0, react_1.useState)([]);
     const [before, setBefore] = (0, react_1.useState)(undefined);
     const [hasMore, setHasMore] = (0, react_1.useState)(true);
     const [loading, setLoading] = (0, react_1.useState)(false);
     const [error, setError] = (0, react_1.useState)(null);
+    const [group, setGroup] = (0, react_1.useState)(options.group ?? null);
+    const [senderDeviceId, setSenderDeviceId] = (0, react_1.useState)(options.senderDeviceId);
+    // Bumps when THIS conversation's group handle advances (a join or a processed Commit, driven by
+    // useSecureHandshakes calling rememberGroup). Feeds the group-resolve effect's deps so we re-resolve
+    // the now-current handle and flush buffered (plaintext:null) rows.
+    const [groupVersion, setGroupVersion] = (0, react_1.useState)(0);
+    // Latest messages, read by the "decrypt history once the group resolves" effect below without
+    // making `messages` one of its deps (which would loop).
+    const messagesRef = (0, react_1.useRef)(messages);
+    messagesRef.current = messages;
+    // Subscribe to provider group-change signals; only a change to OUR conversation's version updates
+    // state (React bails on an unchanged primitive), so unrelated conversations don't re-resolve us.
+    (0, react_1.useEffect)(() => {
+        return subscribeGroupChange(() => setGroupVersion(getGroupVersion(conversationId)));
+    }, [subscribeGroupChange, getGroupVersion, conversationId]);
+    // Resolve the group handle: explicit override, else persisted state.
+    (0, react_1.useEffect)(() => {
+        if (options.group) {
+            setGroup(options.group);
+            return;
+        }
+        // Clear any stale handle from the previous conversation before re-resolving, so live messages
+        // for the new conversation never decrypt against the old group during the async window.
+        setGroup(null);
+        let alive = true;
+        resolveGroup(conversationId)
+            .then((g) => {
+            if (alive)
+                setGroup(g);
+        })
+            .catch(() => {
+            if (alive)
+                setGroup(null);
+        });
+        return () => {
+            alive = false;
+        };
+        // `groupVersion` re-runs this when a Commit/join advances the handle → flushes buffered rows.
+    }, [options.group, conversationId, resolveGroup, groupVersion]);
+    // Resolve the sender device id: explicit override, else persisted device row.
+    (0, react_1.useEffect)(() => {
+        if (options.senderDeviceId) {
+            setSenderDeviceId(options.senderDeviceId);
+            return;
+        }
+        let alive = true;
+        repo
+            .loadDevice()
+            .then((d) => {
+            if (alive)
+                setSenderDeviceId(d?.device?.id ?? undefined);
+        })
+            .catch(() => {
+            if (alive)
+                setSenderDeviceId(undefined);
+        });
+        return () => {
+            alive = false;
+        };
+    }, [options.senderDeviceId, repo]);
     const decrypt = (0, react_1.useCallback)(async (model) => {
         if (!group)
             return { model, plaintext: null };
         try {
-            const { plaintext } = await crypto.decryptMessage(group, (0, base64_1.fromBase64)(model.ciphertext));
-            return { model, plaintext: (0, base64_1.bytesToUtf8)(plaintext) };
+            const { plaintext } = await crypto.decryptMessage(group, (0, base64_js_1.fromBase64)(model.ciphertext));
+            return { model, plaintext: (0, base64_js_1.bytesToUtf8)(plaintext) };
         }
         catch {
             // Buffer/skip: epoch not yet reached, or undecryptable. Surface ciphertext without text.
@@ -81,13 +138,16 @@ function useSecureMessages(conversationId, options = {}) {
         await load(false);
     }, [hasMore, loading, load]);
     const sendMessage = (0, react_1.useCallback)(async (text) => {
+        // Assumes the crypto identity is already hydrated (mount `useSecureDevice` under the same
+        // provider): the crypto layer tags the sender from the restored device identity, so after a
+        // reload the first send must wait for useSecureDevice's importDeviceState to complete.
         if (!group)
             throw new Error("Cannot send: no MLS group handle for this conversation.");
         if (!senderDeviceId)
             throw new Error("Cannot send: senderDeviceId is required.");
-        const { ciphertext, epoch } = await crypto.encryptMessage(group, (0, base64_1.utf8ToBytes)(text));
+        const { ciphertext, epoch } = await crypto.encryptMessage(group, (0, base64_js_1.utf8ToBytes)(text));
         const sent = await rest.sendMessage(conversationId, {
-            ciphertext: (0, base64_1.toBase64)(ciphertext),
+            ciphertext: (0, base64_js_1.toBase64)(ciphertext),
             epoch: epoch.toString(),
             senderDeviceId,
         });
@@ -98,13 +158,31 @@ function useSecureMessages(conversationId, options = {}) {
         refresh();
         // eslint-disable-next-line react-hooks/exhaustive-deps
     }, [conversationId]);
+    // Decrypt history that was listed before the group handle resolved. On reload, the first page loads
+    // while resolveGroup is still in flight, so those rows come back `plaintext: null`; once the handle
+    // arrives (decrypt is recreated with it), re-decrypt the still-undecrypted rows in place — no
+    // re-fetch, scroll/pagination preserved.
+    (0, react_1.useEffect)(() => {
+        if (!group)
+            return;
+        if (!messagesRef.current.some((m) => m.plaintext === null))
+            return;
+        let alive = true;
+        Promise.all(messagesRef.current.map((m) => (m.plaintext === null ? decrypt(m.model) : Promise.resolve(m)))).then((next) => {
+            if (alive)
+                setMessages(next);
+        });
+        return () => {
+            alive = false;
+        };
+    }, [group, decrypt]);
     // Live receive: join the conversation room and decrypt inbound ciphertext.
     (0, react_1.useEffect)(() => {
         socket.joinConversation(conversationId);
         const off = socket.on("secure:message", (model) => {
             if (model.conversationId !== conversationId)
                 return;
-            decrypt(model).then((m) => setMessages((prev) => prev.some((p) => p.model.id === m.model.id) ? prev : [m, ...prev]));
+            decrypt(model).then((m) => setMessages((prev) => (prev.some((p) => p.model.id === m.model.id) ? prev : [m, ...prev])));
         });
         return off;
     }, [socket, conversationId, decrypt]);

package/dist/cjs/hooks/useSecureMessages.js.map

@@ -1 +1 @@
-{"version":3,"file":"useSecureMessages.js","sourceRoot":"","sources":["../../../src/hooks/useSecureMessages.tsx"],"names":[],"mappings":";AAAA,+FAA+F;AAC/F,EAAE;AACF,oGAAoG;AACpG,mGAAmG;AACnG,iGAAiG;AACjG,sGAAsG;AACtG,qFAAqF;;AA4DrF,8CAiGC;AA3JD,iCAAyD;AAGzD,2CAAgF;AAChF,wEAA+D;AAoC/D;;;;;;;;;;;;;;;;;GAiBG;AACH,SAAgB,iBAAiB,CAC/B,cAAsB,EACtB,UAAoC,EAAE;IAEtC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,IAAA,mCAAa,GAAE,CAAC;IACjD,MAAM,EAAE,KAAK,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC;IAE1C,MAAM,CAAC,QAAQ,EAAE,WAAW,CAAC,GAAG,IAAA,gBAAQ,EAA2B,EAAE,CAAC,CAAC;IACvE,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,GAAG,IAAA,gBAAQ,EAAqB,SAAS,CAAC,CAAC;IACpE,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,IAAA,gBAAQ,EAAC,IAAI,CAAC,CAAC;IAC7C,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,IAAA,gBAAQ,EAAC,KAAK,CAAC,CAAC;IAC9C,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,gBAAQ,EAAU,IAAI,CAAC,CAAC;IAElD,MAAM,OAAO,GAAG,IAAA,mBAAW,EACzB,KAAK,EAAE,KAAyB,EAAmC,EAAE;QACnE,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QAC9C,IAAI,CAAC;YACH,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,KAAK,EAAE,IAAA,mBAAU,EAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC;YACvF,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAA,oBAAW,EAAC,SAAS,CAAC,EAAE,CAAC;QACtD,CAAC;QAAC,MAAM,CAAC;YACP,yFAAyF;YACzF,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QACpC,CAAC;IACH,CAAC,EACD,CAAC,MAAM,EAAE,KAAK,CAAC,CAChB,CAAC;IAEF,MAAM,IAAI,GAAG,IAAA,mBAAW,EACtB,KAAK,EAAE,KAAc,EAAE,EAAE;QACvB,UAAU,CAAC,IAAI,CAAC,CAAC;QACjB,QAAQ,CAAC,IAAI,CAAC,CAAC;QACf,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,cAAc,EAAE;gBACnD,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM;gBAClC,KAAK,EAAE,EAAE;aACV,CAAC,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC;YAChE,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YACvD,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;YAC9C,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACzB,8DAA8D;YAC9D,WAAW,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,EAAE,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;QACvE,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAC,GAAG,CAAC,CAAC;QAChB,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAC;QACpB,CAAC;IACH,CAAC,EACD,CAAC,IAAI,EAAE,cAAc,EAAE,MAAM,EAAE,OAAO,CAAC,CACxC,CAAC;IAEF,MAAM,OAAO,GAAG,IAAA,mBAAW,EAAC,KAAK,IAAI,EAAE;QACrC,SAAS,CAAC,SAAS,CAAC,CAAC;QACrB,MAAM,IAAI,CAAC,IAAI,CAAC,CAAC;IACnB,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;IAEX,MAAM,QAAQ,GAAG,IAAA,mBAAW,EAAC,KAAK,IAAI,EAAE;QACtC,IAAI,CAAC,OAAO,IAAI,OAAO;YAAE,OAAO;QAChC,MAAM,IAAI,CAAC,KAAK,CAAC,CAAC;IACpB,CAAC,EAAE,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC;IAE7B,MAAM,WAAW,GAAG,IAAA,mBAAW,EAC7B,KAAK,EAAE,IAAY,EAAiB,EAAE;QACpC,IAAI,CAAC,KAAK;YAAE,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;QACvF,IAAI,CAAC,cAAc;YAAE,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;QACjF,MAAM,EAAE,UAAU,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,KAAK,EAAE,IAAA,oBAAW,EAAC,IAAI,CAAC,CAAC,CAAC;QACpF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,cAAc,EAAE;YAClD,UAAU,EAAE,IAAA,iBAAQ,EAAC,UAAU,CAAC;YAChC,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE;YACvB,cAAc;SACf,CAAC,CAAC;QACH,8EAA8E;QAC9E,WAAW,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;IACrE,CAAC,EACD,CAAC,MAAM,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,CAAC,CACtD,CAAC;IAEF,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,OAAO,EAAE,CAAC;QACV,uDAAuD;IACzD,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC;IAErB,2EAA2E;IAC3E,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,MAAM,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC;QACxC,MAAM,GAAG,GAAG,MAAM,CAAC,EAAE,CAAC,gBAAgB,EAAE,CAAC,KAAK,EAAE,EAAE;YAChD,IAAI,KAAK,CAAC,cAAc,KAAK,cAAc;gBAAE,OAAO;YACpD,OAAO,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CACxB,WAAW,CAAC,CAAC,IAAI,EAAE,EAAE,CACnB,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,IAAI,CAAC,CAClE,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QACH,OAAO,GAAG,CAAC;IACb,CAAC,EAAE,CAAC,MAAM,EAAE,cAAc,EAAE,OAAO,CAAC,CAAC,CAAC;IAEtC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC;AAC/E,CAAC"}
+{"version":3,"file":"useSecureMessages.js","sourceRoot":"","sources":["../../../src/hooks/useSecureMessages.tsx"],"names":[],"mappings":";AAAA,+FAA+F;AAC/F,EAAE;AACF,mGAAmG;AACnG,oGAAoG;AACpG,6FAA6F;AAC7F,6CAA6C;;AA2D7C,8CAiLC;AA1OD,iCAAiE;AAGjE,iDAAmF;AACnF,8EAAkE;AAoClE;;;;;;;;;;;;;;;;GAgBG;AACH,SAAgB,iBAAiB,CAC/B,cAAsB,EACtB,UAAoC,EAAE;IAEtC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,eAAe,EAAE,oBAAoB,EAAE,GACvF,IAAA,sCAAa,GAAE,CAAC;IAElB,MAAM,CAAC,QAAQ,EAAE,WAAW,CAAC,GAAG,IAAA,gBAAQ,EAA2B,EAAE,CAAC,CAAC;IACvE,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,GAAG,IAAA,gBAAQ,EAAqB,SAAS,CAAC,CAAC;IACpE,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,IAAA,gBAAQ,EAAC,IAAI,CAAC,CAAC;IAC7C,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,IAAA,gBAAQ,EAAC,KAAK,CAAC,CAAC;IAC9C,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,gBAAQ,EAAU,IAAI,CAAC,CAAC;IAClD,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,gBAAQ,EAAqB,OAAO,CAAC,KAAK,IAAI,IAAI,CAAC,CAAC;IAC9E,MAAM,CAAC,cAAc,EAAE,iBAAiB,CAAC,GAAG,IAAA,gBAAQ,EAAqB,OAAO,CAAC,cAAc,CAAC,CAAC;IAEjG,gGAAgG;IAChG,qGAAqG;IACrG,mEAAmE;IACnE,MAAM,CAAC,YAAY,EAAE,eAAe,CAAC,GAAG,IAAA,gBAAQ,EAAC,CAAC,CAAC,CAAC;IAEpD,8FAA8F;IAC9F,wDAAwD;IACxD,MAAM,WAAW,GAAG,IAAA,cAAM,EAA2B,QAAQ,CAAC,CAAC;IAC/D,WAAW,CAAC,OAAO,GAAG,QAAQ,CAAC;IAE/B,kGAAkG;IAClG,iGAAiG;IACjG,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,OAAO,oBAAoB,CAAC,GAAG,EAAE,CAAC,eAAe,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;IACtF,CAAC,EAAE,CAAC,oBAAoB,EAAE,eAAe,EAAE,cAAc,CAAC,CAAC,CAAC;IAE5D,qEAAqE;IACrE,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YAClB,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YACxB,OAAO;QACT,CAAC;QACD,8FAA8F;QAC9F,wFAAwF;QACxF,QAAQ,CAAC,IAAI,CAAC,CAAC;QACf,IAAI,KAAK,GAAG,IAAI,CAAC;QACjB,YAAY,CAAC,cAAc,CAAC;aACzB,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE;YACV,IAAI,KAAK;gBAAE,QAAQ,CAAC,CAAC,CAAC,CAAC;QACzB,CAAC,CAAC;aACD,KAAK,CAAC,GAAG,EAAE;YACV,IAAI,KAAK;gBAAE,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC,CAAC,CAAC;QACL,OAAO,GAAG,EAAE;YACV,KAAK,GAAG,KAAK,CAAC;QAChB,CAAC,CAAC;QACF,8FAA8F;IAChG,CAAC,EAAE,CAAC,OAAO,CAAC,KAAK,EAAE,cAAc,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC,CAAC;IAEhE,8EAA8E;IAC9E,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;YAC3B,iBAAiB,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;YAC1C,OAAO;QACT,CAAC;QACD,IAAI,KAAK,GAAG,IAAI,CAAC;QACjB,IAAI;aACD,UAAU,EAAE;aACZ,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE;YACV,IAAI,KAAK;gBAAE,iBAAiB,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE,IAAI,SAAS,CAAC,CAAC;QAC3D,CAAC,CAAC;aACD,KAAK,CAAC,GAAG,EAAE;YACV,IAAI,KAAK;gBAAE,iBAAiB,CAAC,SAAS,CAAC,CAAC;QAC1C,CAAC,CAAC,CAAC;QACL,OAAO,GAAG,EAAE;YACV,KAAK,GAAG,KAAK,CAAC;QAChB,CAAC,CAAC;IACJ,CAAC,EAAE,CAAC,OAAO,CAAC,cAAc,EAAE,IAAI,CAAC,CAAC,CAAC;IAEnC,MAAM,OAAO,GAAG,IAAA,mBAAW,EACzB,KAAK,EAAE,KAAyB,EAAmC,EAAE;QACnE,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QAC9C,IAAI,CAAC;YACH,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,KAAK,EAAE,IAAA,sBAAU,EAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC;YACvF,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAA,uBAAW,EAAC,SAAS,CAAC,EAAE,CAAC;QACtD,CAAC;QAAC,MAAM,CAAC;YACP,yFAAyF;YACzF,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QACpC,CAAC;IACH,CAAC,EACD,CAAC,MAAM,EAAE,KAAK,CAAC,CAChB,CAAC;IAEF,MAAM,IAAI,GAAG,IAAA,mBAAW,EACtB,KAAK,EAAE,KAAc,EAAE,EAAE;QACvB,UAAU,CAAC,IAAI,CAAC,CAAC;QACjB,QAAQ,CAAC,IAAI,CAAC,CAAC;QACf,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,cAAc,EAAE;gBACnD,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM;gBAClC,KAAK,EAAE,EAAE;aACV,CAAC,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC;YAChE,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YACvD,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;YAC9C,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACzB,8DAA8D;YAC9D,WAAW,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,EAAE,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;QACvE,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAC,GAAG,CAAC,CAAC;QAChB,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAC;QACpB,CAAC;IACH,CAAC,EACD,CAAC,IAAI,EAAE,cAAc,EAAE,MAAM,EAAE,OAAO,CAAC,CACxC,CAAC;IAEF,MAAM,OAAO,GAAG,IAAA,mBAAW,EAAC,KAAK,IAAI,EAAE;QACrC,SAAS,CAAC,SAAS,CAAC,CAAC;QACrB,MAAM,IAAI,CAAC,IAAI,CAAC,CAAC;IACnB,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;IAEX,MAAM,QAAQ,GAAG,IAAA,mBAAW,EAAC,KAAK,IAAI,EAAE;QACtC,IAAI,CAAC,OAAO,IAAI,OAAO;YAAE,OAAO;QAChC,MAAM,IAAI,CAAC,KAAK,CAAC,CAAC;IACpB,CAAC,EAAE,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC;IAE7B,MAAM,WAAW,GAAG,IAAA,mBAAW,EAC7B,KAAK,EAAE,IAAY,EAAiB,EAAE;QACpC,0FAA0F;QAC1F,4FAA4F;QAC5F,uFAAuF;QACvF,IAAI,CAAC,KAAK;YAAE,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;QACvF,IAAI,CAAC,cAAc;YAAE,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;QACjF,MAAM,EAAE,UAAU,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,KAAK,EAAE,IAAA,uBAAW,EAAC,IAAI,CAAC,CAAC,CAAC;QACpF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,cAAc,EAAE;YAClD,UAAU,EAAE,IAAA,oBAAQ,EAAC,UAAU,CAAC;YAChC,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE;YACvB,cAAc;SACf,CAAC,CAAC;QACH,8EAA8E;QAC9E,WAAW,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;IACrE,CAAC,EACD,CAAC,MAAM,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,cAAc,CAAC,CACtD,CAAC;IAEF,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,OAAO,EAAE,CAAC;QACV,uDAAuD;IACzD,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC;IAErB,oGAAoG;IACpG,oGAAoG;IACpG,8FAA8F;IAC9F,yCAAyC;IACzC,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,IAAI,CAAC,KAAK;YAAE,OAAO;QACnB,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,IAAI,CAAC;YAAE,OAAO;QACnE,IAAI,KAAK,GAAG,IAAI,CAAC;QACjB,OAAO,CAAC,GAAG,CACT,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,KAAK,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAC/F,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE;YACd,IAAI,KAAK;gBAAE,WAAW,CAAC,IAAI,CAAC,CAAC;QAC/B,CAAC,CAAC,CAAC;QACH,OAAO,GAAG,EAAE;YACV,KAAK,GAAG,KAAK,CAAC;QAChB,CAAC,CAAC;IACJ,CAAC,EAAE,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC,CAAC;IAErB,2EAA2E;IAC3E,IAAA,iBAAS,EAAC,GAAG,EAAE;QACb,MAAM,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC;QACxC,MAAM,GAAG,GAAG,MAAM,CAAC,EAAE,CAAC,gBAAgB,EAAE,CAAC,KAAK,EAAE,EAAE;YAChD,IAAI,KAAK,CAAC,cAAc,KAAK,cAAc;gBAAE,OAAO;YACpD,OAAO,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CACxB,WAAW,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC,CAC3F,CAAC;QACJ,CAAC,CAAC,CAAC;QACH,OAAO,GAAG,CAAC;IACb,CAAC,EAAE,CAAC,MAAM,EAAE,cAAc,EAAE,OAAO,CAAC,CAAC,CAAC;IAEtC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC;AAC/E,CAAC"}

package/dist/cjs/index.d.ts

@@ -1,15 +1,21 @@
-export { SecureChatProvider, useSecureChat } from "./context/secure-chat-context";
-export type { SecureChatProviderProps, SecureChatContextValue, } from "./context/secure-chat-context";
-export { useSecureDevice } from "./hooks/useSecureDevice";
-export type { UseSecureDeviceOptions, UseSecureDeviceValues } from "./hooks/useSecureDevice";
-export { useSecureConversations } from "./hooks/useSecureConversations";
-export type { UseSecureConversationsValues } from "./hooks/useSecureConversations";
-export { useSecureMessages } from "./hooks/useSecureMessages";
-export type { UseSecureMessagesOptions, UseSecureMessagesValues, DecryptedSecureMessage, } from "./hooks/useSecureMessages";
-export { SecureChatRestClient } from "./transport/rest";
-export type { SecureChatRestConfig } from "./transport/rest";
-export { SecureChatSocketClient } from "./transport/socket";
-export type { SecureSocket, SecureServerEvents, SecureClientEvents, SecureChatSocketConfig, } from "./transport/socket";
+export { SecureChatProvider, useSecureChat } from "./context/secure-chat-context.js";
+export type { SecureChatProviderProps, SecureChatContextValue, } from "./context/secure-chat-context.js";
+export { useSecureDevice } from "./hooks/useSecureDevice.js";
+export type { UseSecureDeviceOptions, UseSecureDeviceValues } from "./hooks/useSecureDevice.js";
+export { useSecureConversations } from "./hooks/useSecureConversations.js";
+export type { UseSecureConversationsValues } from "./hooks/useSecureConversations.js";
+export { useSecureMessages } from "./hooks/useSecureMessages.js";
+export type { UseSecureMessagesOptions, UseSecureMessagesValues, DecryptedSecureMessage, } from "./hooks/useSecureMessages.js";
+export { useSecureHandshakes } from "./hooks/useSecureHandshakes.js";
+export type { UseSecureHandshakesOptions, UseSecureHandshakesValues, } from "./hooks/useSecureHandshakes.js";
+export { SecureChatRestClient } from "./transport/rest.js";
+export type { SecureChatRestConfig } from "./transport/rest.js";
+export { SecureChatSocketClient } from "./transport/socket.js";
+export type { SecureSocket, SecureServerEvents, SecureClientEvents, SecureChatSocketConfig, } from "./transport/socket.js";
 export type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, TargetedWelcome, CommitResult, PassphraseBackup, } from "@agora-sdk/secure-chat-crypto";
-export type * from "./contract";
-export { toBase64, fromBase64, utf8ToBytes, bytesToUtf8 } from "./util/base64";
+export type * from "./contract/index.js";
+export type { SecureChatStore } from "./persistence/store.js";
+export { MemoryStore } from "./persistence/memory-store.js";
+export { SecureChatRepository } from "./persistence/repository.js";
+export type { PersistedDevice } from "./persistence/repository.js";
+export { toBase64, fromBase64, utf8ToBytes, bytesToUtf8 } from "./util/base64.js";