npm - @alter-ai/connect - Versions diffs - 0.3.0 → 0.5.0 - Mend

@alter-ai/connect 0.3.0 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/README.md +17 -17
package/dist/alter-connect.cjs.js +1 -1
package/dist/alter-connect.cjs.js.map +1 -1
package/dist/alter-connect.esm.js +1 -1
package/dist/alter-connect.esm.js.map +1 -1
package/dist/alter-connect.umd.js +1 -1
package/dist/alter-connect.umd.js.map +1 -1
package/dist/types/core/alter-connect.d.ts.map +1 -1
package/dist/types/index.d.ts +1 -1
package/dist/types/index.d.ts.map +1 -1
package/dist/types/oauth/handler.d.ts +3 -3
package/dist/types/oauth/handler.d.ts.map +1 -1
package/dist/types/types/index.d.ts +4 -4
package/dist/types/types/index.d.ts.map +1 -1
package/package.json +3 -3

package/README.md CHANGED Viewed

@@ -33,7 +33,6 @@ const vault = new AlterVault({
 });
 const session = await vault.createConnectSession({
-  endUser: { id: "user_123" },
   allowedProviders: ["google", "slack", "github"],
   returnUrl: "https://yourapp.com/callback",
 });
@@ -57,8 +56,8 @@ await alterConnect.open({
   token: session_token,
   onSuccess: (connections) => {
     console.log('Connected!', connections);
-    // Save each connection.connection_id to your database
-    connections.forEach(conn => console.log(conn.provider, conn.connection_id));
+    // Save each connection.grant_id to your database
+    connections.forEach(conn => console.log(conn.provider, conn.grant_id));
   },
   onError: (error) => {
     console.error('Failed:', error);
@@ -192,19 +191,19 @@ await alterConnect.open({
 | `onExit` | `function` | No | Called when user closes popup |
 | `onEvent` | `function` | No | Called for analytics events |
-**Connections Array (onSuccess):**
+**Grants Array (onSuccess):**
-`onSuccess` receives an array of `Connection` objects (multi-provider flow):
+`onSuccess` receives an array of `Grant` objects (multi-provider flow):
 ```typescript
 // Each connection in the array:
 {
-  connection_id: string;        // Unique ID - store this!
+  grant_id: string;             // Unique ID - store this!
   provider: string;             // e.g., 'google', 'slack'
   provider_name: string;        // e.g., 'Google', 'Slack'
   account_identifier: string;   // e.g., 'user@gmail.com'
   timestamp: string;            // ISO 8601 timestamp
-  operation: 'creation' | 'reauth' | 'grant';
+  operation: 'creation' | 'reauth';
   scopes: string[];             // Granted OAuth scopes
   status: 'active' | 'pending' | 'error';
   metadata?: {
@@ -279,7 +278,7 @@ if (alterConnect.isOpen()) {
 Gets the SDK version.
 ```javascript
-console.log(alterConnect.getVersion()); // "0.2.0"
+console.log(alterConnect.getVersion()); // e.g., "0.3.0"
 ```
 ## Mobile Support
@@ -300,7 +299,6 @@ For mobile redirect flow, include a `return_url` when creating the session:
 ```javascript
 // Backend session creation with mobile support
 body: JSON.stringify({
-  end_user: { id: 'user_123', email: 'user@example.com' },
   allowed_providers: ['google', 'slack'],
   allowed_origin: 'https://yourapp.com',  // For desktop popup (postMessage)
   return_url: 'https://yourapp.com/'      // For mobile redirect (return destination)
@@ -342,7 +340,7 @@ Frontend (Public)          Backend (Secure)           Alter API
 - **API keys never touch frontend** - Only backend has API key
 - **Session tokens are short-lived** - Expire after 10 minutes
-- **Session tokens are single-use** - Can only create one connection
+- **Session tokens are single-use** - Can only create one grant
 - **Session tokens are scoped** - Locked to specific user & providers
 - **No secrets in browser** - SDK is purely a popup launcher + callback listener
@@ -373,7 +371,7 @@ Full TypeScript definitions included:
 ```typescript
 import AlterConnect, {
   AlterConnectConfig,
-  Connection,
+  Grant,
   AlterError
 } from '@alter-ai/connect';
@@ -381,10 +379,12 @@ const alterConnect = AlterConnect.create({ debug: true });
 await alterConnect.open({
   token: sessionToken,
-  onSuccess: (connections: Connection[]) => {
-    console.log(connection.connection_id);
-    console.log(connection.provider);
-    console.log(connection.scopes);
+  onSuccess: (grants: Grant[]) => {
+    for (const grant of grants) {
+      console.log(grant.grant_id);  // Store this in your DB!
+      console.log(grant.provider);
+      console.log(grant.scopes);
+    }
   },
   onError: (error: AlterError) => {
     console.error(error.code, error.message);
@@ -446,9 +446,9 @@ button.addEventListener('click', () => {
 ## Support
-- **Documentation:** [https://docs.alterai.dev](https://docs.alterai.dev)
+- **Documentation:** [https://docs.alterauth.com](https://docs.alterauth.com)
 - **Issues:** [GitHub Issues](https://github.com/AlterAIDev/Alter-Vault/issues)
-- **Email:** support@alterai.dev
+- **Email:** support@alterauth.com
 ## License

package/dist/alter-connect.cjs.js CHANGED Viewed

@@ -1,2 +1,2 @@
-"use strict";function e(e,...t){e.debug&&console.log("[Alter Connect]",...t)}Object.defineProperty(exports,"__esModule",{value:!0});class t{constructor(){this.events=new Map}on(e,t){return this.events.has(e)||this.events.set(e,new Set),this.events.get(e).add(t),()=>this.off(e,t)}off(e,t){const i=this.events.get(e);i&&i.delete(t)}emit(e,...t){const i=this.events.get(e);i&&i.forEach(i=>{try{i(...t)}catch(t){console.error(`[Alter Connect] Error in event handler for '${e}':`,t)}})}removeAllListeners(e){e?this.events.delete(e):this.events.clear()}}class i{constructor(){this.state={isOpen:!1,sessionToken:null,error:null},this.listeners=new Set}getState(){return{...this.state}}get(e){return this.state[e]}setState(e){this.state={...this.state,...e},this.notifyListeners()}subscribe(e){return this.listeners.add(e),()=>{this.listeners.delete(e)}}clearListeners(){this.listeners.clear()}notifyListeners(){const e=this.getState();this.listeners.forEach(t=>{try{t(e)}catch(e){console.error("[Alter Connect] Error in state listener:",e)}})}}function s(){const e=navigator.userAgent||navigator.vendor||window.opera,t=/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(e),i="ontouchstart"in window||navigator.maxTouchPoints>0||navigator.msMaxTouchPoints>0,s=window.innerWidth<=768;return t||i&&s}function n(){return s()&&window.innerWidth<=480?"phone":s()&&window.innerWidth>480&&window.innerWidth<=1024?"tablet":"desktop"}function o(e){return"reauth"===e?"reauth":"grant"===e?"grant":"creation"}function r(e){return"pending"===e?"pending":"error"===e?"error":"active"}function a(e){sessionStorage.removeItem("alter_oauth_state");try{const t=new URL(e);window.history.replaceState({},document.title,t.pathname+t.search+t.hash)}catch{window.history.replaceState({},document.title,window.location.pathname)}}class c{constructor(e){this.popup=null,this.pollInterval=null,this.messageListener=null,this.settled=!1,this.options={baseURL:e.baseURL,onSuccess:e.onSuccess,onError:e.onError,onCancel:e.onCancel,popupWidth:e.popupWidth||500,popupHeight:e.popupHeight||700,debug:e.debug||!1,expectedOrigin:e.expectedOrigin||""};try{this.expectedOrigin=new URL(e.baseURL).origin}catch{throw new Error(`Invalid baseURL: "${e.baseURL}". Must be a full URL with protocol (e.g., "https://api.alterai.dev").`)}}startOAuth(e){if(!this.options.expectedOrigin)try{const t=new URL(e);this.options.expectedOrigin=t.origin,this.log("Derived expected origin:",this.options.expectedOrigin)}catch{return this.log("Failed to parse OAuth URL for origin validation:",e),void this.options.onError({code:"invalid_oauth_url",message:"Failed to determine origin from OAuth URL. Cannot proceed securely."})}!function(){const e=n();return"phone"===e||"tablet"===e&&window.innerHeight>window.innerWidth}()?(this.log("Using popup flow for desktop"),this.openPopup(e)):(this.log("Using redirect flow for mobile device"),this.startRedirectFlow(e))}startRedirectFlow(e){this.log("Starting redirect flow:",e);const t={timestamp:Date.now(),returnUrl:window.location.href};try{sessionStorage.setItem("alter_oauth_state",JSON.stringify(t))}catch(e){return this.log("Failed to save state:",e),void this.options.onError({code:"redirect_error",message:"Failed to start OAuth flow: could not save session state",details:{error:e}})}window.location.href=e}static checkOAuthReturn(e,t){const i=sessionStorage.getItem("alter_oauth_state");if(!i)return!1;try{const s=JSON.parse(i);if(Date.now()-s.timestamp>3e5)return sessionStorage.removeItem("alter_oauth_state"),!1;const n=new URLSearchParams(window.location.search),c=n.get("alter_connect_success"),h=n.get("alter_connect_error");if("true"===c){const i=n.get("connection_id"),c=n.get("provider"),h=n.get("account_identifier");if(!i||!c||!h)return a(s.returnUrl),t({code:"invalid_response",message:"OAuth redirect returned incomplete connection data"}),!0;const l={connection_id:i,provider:c,provider_name:n.get("provider_name")||c,account_identifier:h,timestamp:n.get("timestamp")||(new Date).toISOString(),operation:o(n.get("operation")),scopes:n.get("scopes")?.split(",")||[],status:r(n.get("status"))};return a(s.returnUrl),e([l]),!0}if(h){const e={code:n.get("error_code")||"oauth_error",message:n.get("error_description")||"OAuth authorization failed"};return a(s.returnUrl),t(e),!0}return!1}catch(e){return console.error("[OAuth Handler] Failed to check OAuth return:",e),sessionStorage.removeItem("alter_oauth_state"),!1}}openPopup(e){const t=window.screenX+(window.outerWidth-this.options.popupWidth)/2,i=window.screenY+(window.outerHeight-this.options.popupHeight)/2,s=[`width=${this.options.popupWidth}`,`height=${this.options.popupHeight}`,`left=${t}`,`top=${i}`,"resizable=yes","scrollbars=yes","status=yes"].join(",");this.log("Opening OAuth popup:",e),this.popup=window.open(e,"alter_oauth_popup",s),this.popup?(this.startPolling(),this.setupMessageListener()):this.options.onError({code:"popup_blocked",message:"Popup was blocked by browser. Please allow popups for this site."})}close(){this.log("Closing OAuth handler"),this.popup&&!this.popup.closed&&this.popup.close(),this.popup=null,null!==this.pollInterval&&(clearInterval(this.pollInterval),this.pollInterval=null),this.messageListener&&(window.removeEventListener("message",this.messageListener),this.messageListener=null)}startPolling(){this.pollInterval=window.setInterval(()=>{this.settled||this.popup&&!this.popup.closed||(this.log("Popup closed by user"),this.settled=!0,this.close(),this.options.onCancel())},500)}setupMessageListener(){this.messageListener=e=>{if(this.settled)return;if(e.origin!==this.expectedOrigin)return void this.log("Rejected message from unexpected origin:",e.origin,"(expected:",this.expectedOrigin+")");this.log("Received message from",e.origin);const t=e.data;if(t&&"object"==typeof t)if("alter_connect_success"===t.type){if(this.log("OAuth success"),Array.isArray(t.connections)){this.log("Multi-provider success:",t.connections.length,"connections");const e=[];for(const i of t.connections)i.connection_id&&i.provider?e.push({connection_id:i.connection_id,provider:i.provider,provider_name:i.provider_name||i.provider,account_identifier:i.account_identifier||"",timestamp:i.timestamp||(new Date).toISOString(),operation:o(i.operation),scopes:Array.isArray(i.scopes)?i.scopes:[],status:r(i.status),metadata:i.metadata}):this.log("Skipping invalid connection item:",i);return 0===e.length?(this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:"Server returned empty connections array"})):(this.settled=!0,this.close(),void this.options.onSuccess(e))}const e=function(e){return e.connection_id&&"string"==typeof e.connection_id?e.provider&&"string"==typeof e.provider?e.account_identifier&&"string"==typeof e.account_identifier?e.timestamp&&"string"==typeof e.timestamp?null:"Missing or invalid timestamp":"Missing or invalid account_identifier":"Missing or invalid provider":"Missing or invalid connection_id"}(t);if(e)return this.log("Invalid connection payload:",e),this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:`Server returned incomplete connection data: ${e}`});const i={connection_id:t.connection_id,provider:t.provider,provider_name:t.provider_name||t.provider,account_identifier:t.account_identifier,timestamp:t.timestamp,operation:o(t.operation),scopes:Array.isArray(t.scopes)?t.scopes:[],status:r(t.status),metadata:t.metadata};this.settled=!0,this.close(),this.options.onSuccess([i])}else if("alter_connect_error"===t.type){this.log("OAuth error");const e={code:t.error||"oauth_error",message:t.error_description||"OAuth authorization failed",details:t};this.settled=!0,this.close(),this.options.onError(e)}},window.addEventListener("message",this.messageListener)}log(...e){this.options.debug&&console.log("[OAuth Handler]",...e)}}const h="0.2.0";class l{constructor(s={}){this._oauthHandler=null,this._baseURL="https://api.alterai.dev",this._perOpenCleanups=[],this.config=function(e){return{debug:e.debug??!1}}(s),this.eventEmitter=new t,this.stateManager=new i,this._isInitialized=!0,e(this.config,"Alter Connect SDK initialized",{version:h}),this.checkRedirectReturn()}checkRedirectReturn(){c.checkOAuthReturn(t=>{e(this.config,"OAuth redirect return - success:",t),this.eventEmitter.emit("success",t)},t=>{e(this.config,"OAuth redirect return - error:",t),this.eventEmitter.emit("error",t)})&&e(this.config,"OAuth redirect return detected and handled")}static create(e){return new l(e)}async open(t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call open() - SDK instance has been destroyed");if(e(this.config,"Opening Connect UI"),!t.token||"string"!=typeof t.token)throw this.createError("invalid_options","Session token is required. Create one from your backend using POST /sdk/oauth/connect/session");if(!t.onSuccess||"function"!=typeof t.onSuccess)throw this.createError("invalid_options","onSuccess callback is required");if(this.isOpen())return void e(this.config,"Connect UI is already open");this._baseURL=t.baseURL||"https://api.alterai.dev",this._oauthHandler=new c({baseURL:this._baseURL,onSuccess:t=>{e(this.config,"OAuth success:",t),this.handleOAuthSuccess(t)},onError:t=>{e(this.config,"OAuth error:",t),this.handleOAuthError(t)},onCancel:()=>{e(this.config,"OAuth cancelled (popup closed)"),this.handleOAuthCancel()},popupWidth:500,popupHeight:700,debug:this.config.debug}),this.stateManager.setState({isOpen:!0,error:null,sessionToken:t.token}),this.registerEventHandlers(t);const i=`${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(t.token)}`;e(this.config,"Connect URL:",i),this._oauthHandler.startOAuth(i),t.onEvent&&t.onEvent("connect_opened",{timestamp:(new Date).toISOString()}),e(this.config,"Connect UI opened successfully")}close(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call close() - SDK instance has been destroyed");e(this.config,"Closing Connect UI"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this._perOpenCleanups.forEach(e=>e()),this._perOpenCleanups=[],this.stateManager.setState({isOpen:!1}),this.eventEmitter.emit("close")}destroy(){this._isInitialized&&(e(this.config,"Destroying SDK instance"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this.stateManager.get("isOpen")&&this.stateManager.setState({isOpen:!1}),this.eventEmitter.removeAllListeners(),this.stateManager.clearListeners(),this._isInitialized=!1)}on(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call on() - SDK instance has been destroyed");return this.eventEmitter.on(e,t)}off(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call off() - SDK instance has been destroyed");this.eventEmitter.off(e,t)}isOpen(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call isOpen() - SDK instance has been destroyed");return this.stateManager.get("isOpen")}getVersion(){return h}cleanupHandler(){this._oauthHandler=null}handleOAuthSuccess(e){this.cleanupHandler(),this.eventEmitter.emit("success",e)}handleOAuthError(e){this.cleanupHandler(),this.stateManager.setState({error:e}),this.eventEmitter.emit("error",e)}handleOAuthCancel(){this.cleanupHandler(),this.eventEmitter.emit("exit")}registerEventHandlers(e){e.onSuccess&&this._perOpenCleanups.push(this.eventEmitter.on("success",t=>{e.onSuccess(t),this.close()})),e.onExit&&this._perOpenCleanups.push(this.eventEmitter.on("exit",()=>{e.onExit(),this.close()})),this._perOpenCleanups.push(this.eventEmitter.on("error",t=>{e.onError&&e.onError(t),this.close()})),e.onEvent&&this._perOpenCleanups.push(this.eventEmitter.on("event",(t,i)=>{e.onEvent(t,i)}))}createError(e,t,i){const s=new Error(t);return s.code=e,s.details=i,s}}exports.default=l;
+"use strict";function e(e,...t){e.debug&&console.log("[Alter Connect]",...t)}Object.defineProperty(exports,"__esModule",{value:!0});class t{constructor(){this.events=new Map}on(e,t){return this.events.has(e)||this.events.set(e,new Set),this.events.get(e).add(t),()=>this.off(e,t)}off(e,t){const s=this.events.get(e);s&&s.delete(t)}emit(e,...t){const s=this.events.get(e);s&&s.forEach(s=>{try{s(...t)}catch(t){console.error(`[Alter Connect] Error in event handler for '${e}':`,t)}})}removeAllListeners(e){e?this.events.delete(e):this.events.clear()}}class s{constructor(){this.state={isOpen:!1,sessionToken:null,error:null},this.listeners=new Set}getState(){return{...this.state}}get(e){return this.state[e]}setState(e){this.state={...this.state,...e},this.notifyListeners()}subscribe(e){return this.listeners.add(e),()=>{this.listeners.delete(e)}}clearListeners(){this.listeners.clear()}notifyListeners(){const e=this.getState();this.listeners.forEach(t=>{try{t(e)}catch(e){console.error("[Alter Connect] Error in state listener:",e)}})}}function i(){const e=navigator.userAgent||navigator.vendor||window.opera,t=/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(e),s="ontouchstart"in window||navigator.maxTouchPoints>0||navigator.msMaxTouchPoints>0,i=window.innerWidth<=768;return t||s&&i}function n(){return i()&&window.innerWidth<=480?"phone":i()&&window.innerWidth>480&&window.innerWidth<=1024?"tablet":"desktop"}function r(e){return"reauth"===e?"reauth":"creation"}function o(e){return"pending"===e?"pending":"error"===e?"error":"active"}function a(e){sessionStorage.removeItem("alter_oauth_state");try{const t=new URL(e);window.history.replaceState({},document.title,t.pathname+t.search+t.hash)}catch{window.history.replaceState({},document.title,window.location.pathname)}}class h{constructor(e){this.popup=null,this.pollInterval=null,this.messageListener=null,this.settled=!1,this.options={baseURL:e.baseURL,onSuccess:e.onSuccess,onError:e.onError,onCancel:e.onCancel,popupWidth:e.popupWidth||500,popupHeight:e.popupHeight||700,debug:e.debug||!1,expectedOrigin:e.expectedOrigin||""};try{this.expectedOrigin=new URL(e.baseURL).origin}catch{throw new Error(`Invalid baseURL: "${e.baseURL}". Must be a full URL with protocol (e.g., "https://api.alterauth.com").`)}}startOAuth(e){if(!this.options.expectedOrigin)try{const t=new URL(e);this.options.expectedOrigin=t.origin,this.log("Derived expected origin:",this.options.expectedOrigin)}catch{return this.log("Failed to parse OAuth URL for origin validation:",e),void this.options.onError({code:"invalid_oauth_url",message:"Failed to determine origin from OAuth URL. Cannot proceed securely."})}!function(){const e=n();return"phone"===e||"tablet"===e&&window.innerHeight>window.innerWidth}()?(this.log("Using popup flow for desktop"),this.openPopup(e)):(this.log("Using redirect flow for mobile device"),this.startRedirectFlow(e))}startRedirectFlow(e){this.log("Starting redirect flow:",e);const t={timestamp:Date.now(),returnUrl:window.location.href};try{sessionStorage.setItem("alter_oauth_state",JSON.stringify(t))}catch(e){return this.log("Failed to save state:",e),void this.options.onError({code:"redirect_error",message:"Failed to start OAuth flow: could not save session state",details:{error:e}})}window.location.href=e}static checkOAuthReturn(e,t){const s=sessionStorage.getItem("alter_oauth_state");if(!s)return!1;try{const i=JSON.parse(s);if(Date.now()-i.timestamp>3e5)return sessionStorage.removeItem("alter_oauth_state"),!1;const n=new URLSearchParams(window.location.search),h=n.get("alter_connect_success"),c=n.get("alter_connect_error");if("true"===h){const s=n.get("grant_id"),h=n.get("provider"),c=n.get("account_identifier");if(!s||!h||!c)return a(i.returnUrl),t({code:"invalid_response",message:"OAuth redirect returned incomplete grant data"}),!0;const l={grant_id:s,provider:h,provider_name:n.get("provider_name")||h,account_identifier:c,timestamp:n.get("timestamp")||(new Date).toISOString(),operation:r(n.get("operation")),scopes:n.get("scopes")?.split(",")||[],status:o(n.get("status"))};return a(i.returnUrl),e([l]),!0}if(c){const e={code:n.get("error_code")||"oauth_error",message:n.get("error_description")||"OAuth authorization failed"};return a(i.returnUrl),t(e),!0}return!1}catch(e){return console.error("[OAuth Handler] Failed to check OAuth return:",e),sessionStorage.removeItem("alter_oauth_state"),!1}}openPopup(e){const t=window.screenX+(window.outerWidth-this.options.popupWidth)/2,s=window.screenY+(window.outerHeight-this.options.popupHeight)/2,i=[`width=${this.options.popupWidth}`,`height=${this.options.popupHeight}`,`left=${t}`,`top=${s}`,"resizable=yes","scrollbars=yes","status=yes"].join(",");this.log("Opening OAuth popup:",e),this.popup=window.open(e,"alter_oauth_popup",i),this.popup?(this.startPolling(),this.setupMessageListener()):this.options.onError({code:"popup_blocked",message:"Popup was blocked by browser. Please allow popups for this site."})}close(){this.log("Closing OAuth handler"),this.popup&&!this.popup.closed&&this.popup.close(),this.popup=null,null!==this.pollInterval&&(clearInterval(this.pollInterval),this.pollInterval=null),this.messageListener&&(window.removeEventListener("message",this.messageListener),this.messageListener=null)}startPolling(){this.pollInterval=window.setInterval(()=>{this.settled||this.popup&&!this.popup.closed||(this.log("Popup closed by user"),this.settled=!0,this.close(),this.options.onCancel())},500)}setupMessageListener(){this.messageListener=e=>{if(this.settled)return;if(e.origin!==this.expectedOrigin)return void this.log("Rejected message from unexpected origin:",e.origin,"(expected:",this.expectedOrigin+")");this.log("Received message from",e.origin);const t=e.data;if(t&&"object"==typeof t)if("alter_connect_success"===t.type){this.log("OAuth success");const e=Array.isArray(t.grants)?t.grants:null;if(e){this.log("Multi-provider success:",e.length,"grants");const t=[];for(const s of e){const e=s.grant_id;e&&s.provider?t.push({grant_id:e,provider:s.provider,provider_name:s.provider_name||s.provider,account_identifier:s.account_identifier||"",timestamp:s.timestamp||(new Date).toISOString(),operation:r(s.operation),scopes:Array.isArray(s.scopes)?s.scopes:[],status:o(s.status),metadata:s.metadata}):this.log("Skipping invalid grant item:",s)}return 0===t.length?(this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:"Server returned empty grants array"})):(this.settled=!0,this.close(),void this.options.onSuccess(t))}this.settled=!0,this.close(),this.options.onError({code:"invalid_response",message:"Server returned success without grants array"})}else if("alter_connect_error"===t.type){this.log("OAuth error");const e={code:t.error||"oauth_error",message:t.error_description||"OAuth authorization failed",details:t};this.settled=!0,this.close(),this.options.onError(e)}},window.addEventListener("message",this.messageListener)}log(...e){this.options.debug&&console.log("[OAuth Handler]",...e)}}const c="0.2.0";class l{constructor(i={}){this._oauthHandler=null,this._baseURL="https://api.alterauth.com",this._perOpenCleanups=[],this.config=function(e){return{debug:e.debug??!1}}(i),this.eventEmitter=new t,this.stateManager=new s,this._isInitialized=!0,e(this.config,"Alter Connect SDK initialized",{version:c}),this.checkRedirectReturn()}checkRedirectReturn(){h.checkOAuthReturn(t=>{e(this.config,"OAuth redirect return - success:",t),this.eventEmitter.emit("success",t)},t=>{e(this.config,"OAuth redirect return - error:",t),this.eventEmitter.emit("error",t)})&&e(this.config,"OAuth redirect return detected and handled")}static create(e){return new l(e)}async open(t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call open() - SDK instance has been destroyed");if(e(this.config,"Opening Connect UI"),!t.token||"string"!=typeof t.token)throw this.createError("invalid_options","Session token is required. Create one from your backend using POST /sdk/oauth/connect/session");if(!t.onSuccess||"function"!=typeof t.onSuccess)throw this.createError("invalid_options","onSuccess callback is required");if(this.isOpen())return void e(this.config,"Connect UI is already open");this._baseURL=t.baseURL||"https://api.alterauth.com",this._oauthHandler=new h({baseURL:this._baseURL,onSuccess:t=>{e(this.config,"OAuth success:",t),this.handleOAuthSuccess(t)},onError:t=>{e(this.config,"OAuth error:",t),this.handleOAuthError(t)},onCancel:()=>{e(this.config,"OAuth cancelled (popup closed)"),this.handleOAuthCancel()},popupWidth:500,popupHeight:700,debug:this.config.debug}),this.stateManager.setState({isOpen:!0,error:null,sessionToken:t.token}),this.registerEventHandlers(t);const s=`${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(t.token)}`;e(this.config,"Connect URL:",s),this._oauthHandler.startOAuth(s),t.onEvent&&t.onEvent("connect_opened",{timestamp:(new Date).toISOString()}),e(this.config,"Connect UI opened successfully")}close(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call close() - SDK instance has been destroyed");e(this.config,"Closing Connect UI"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this._perOpenCleanups.forEach(e=>e()),this._perOpenCleanups=[],this.stateManager.setState({isOpen:!1}),this.eventEmitter.emit("close")}destroy(){this._isInitialized&&(e(this.config,"Destroying SDK instance"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this.stateManager.get("isOpen")&&this.stateManager.setState({isOpen:!1}),this.eventEmitter.removeAllListeners(),this.stateManager.clearListeners(),this._isInitialized=!1)}on(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call on() - SDK instance has been destroyed");return this.eventEmitter.on(e,t)}off(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call off() - SDK instance has been destroyed");this.eventEmitter.off(e,t)}isOpen(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call isOpen() - SDK instance has been destroyed");return this.stateManager.get("isOpen")}getVersion(){return c}cleanupHandler(){this._oauthHandler=null}handleOAuthSuccess(e){this.cleanupHandler(),this.eventEmitter.emit("success",e)}handleOAuthError(e){this.cleanupHandler(),this.stateManager.setState({error:e}),this.eventEmitter.emit("error",e)}handleOAuthCancel(){this.cleanupHandler(),this.eventEmitter.emit("exit")}registerEventHandlers(e){e.onSuccess&&this._perOpenCleanups.push(this.eventEmitter.on("success",t=>{e.onSuccess(t),this.close()})),e.onExit&&this._perOpenCleanups.push(this.eventEmitter.on("exit",()=>{e.onExit(),this.close()})),this._perOpenCleanups.push(this.eventEmitter.on("error",t=>{e.onError&&e.onError(t),this.close()})),e.onEvent&&this._perOpenCleanups.push(this.eventEmitter.on("event",(t,s)=>{e.onEvent(t,s)}))}createError(e,t,s){const i=new Error(t);return i.code=e,i.details=s,i}}exports.default=l;
 //# sourceMappingURL=alter-connect.cjs.js.map

package/dist/alter-connect.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"alter-connect.cjs.js","sources":["../src/core/config.ts","../src/core/events.ts","../src/state/manager.ts","../src/utils/mobile.ts","../src/oauth/handler.ts","../src/core/alter-connect.ts"],"sourcesContent":["/*\n Configuration validation and management\n /\n\nimport type { AlterConnectConfig } from '../types';\n\n/\n Internal config used by the SDK\n /\ninterface FullConfig {\n debug: boolean;\n}\n\n/\n Validate configuration\n /\nexport function validateConfig(_config: AlterConnectConfig): void {\n // Config only has `debug` — nothing to validate\n}\n\n/\n Merge user config with defaults\n /\nexport function mergeConfig(config: AlterConnectConfig): FullConfig {\n return {\n debug: config.debug ?? false,\n };\n}\n\n/\n Debug logging helper\n /\nexport function debugLog(config: FullConfig, ...args: any[]): void {\n if (config.debug) {\n console.log('[Alter Connect]', ...args);\n }\n}\n\n/\n Export FullConfig type for use in other modules\n /\nexport type { FullConfig };\n","/\n Simple event emitter for SDK events\n /\n\ntype EventHandler = (...args: any[]) => void;\n\n/\n Event emitter for SDK internal events\n /\nexport class EventEmitter {\n private events: Map<string, Set<EventHandler>>;\n\n constructor() {\n this.events = new Map();\n }\n\n /\n Register an event listener\n * @returns Unsubscribe function\n /\n on(event: string, handler: EventHandler): () => void {\n if (!this.events.has(event)) {\n this.events.set(event, new Set());\n }\n\n this.events.get(event)!.add(handler);\n\n // Return unsubscribe function\n return () => this.off(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: EventHandler): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.delete(handler);\n }\n }\n\n /\n Emit an event\n /\n emit(event: string, ...args: any[]): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.forEach(handler => {\n try {\n handler(...args);\n } catch (error) {\n console.error(`[Alter Connect] Error in event handler for '${event}':`, error);\n }\n });\n }\n }\n\n /\n Remove all listeners for an event, or all listeners if no event specified\n /\n removeAllListeners(event?: string): void {\n if (event) {\n this.events.delete(event);\n } else {\n this.events.clear();\n }\n }\n}\n","/\n State management for SDK\n /\n\nimport type { AlterError } from '../types';\n\n/\n SDK internal state\n /\nexport interface SDKState {\n isOpen: boolean;\n sessionToken: string \| null;\n error: AlterError \| null;\n}\n\ntype StateListener = (state: SDKState) => void;\n\n/\n Simple state manager\n /\nexport class StateManager {\n private state: SDKState;\n private listeners: Set<StateListener>;\n\n constructor() {\n this.state = {\n isOpen: false,\n sessionToken: null,\n error: null,\n };\n this.listeners = new Set();\n }\n\n /\n Get current state\n /\n getState(): Readonly<SDKState> {\n return { ...this.state };\n }\n\n /\n Get a specific state value\n /\n get<K extends keyof SDKState>(key: K): SDKState[K] {\n return this.state[key];\n }\n\n /\n Update state\n /\n setState(updates: Partial<SDKState>): void {\n this.state = { ...this.state, ...updates };\n this.notifyListeners();\n }\n\n /\n Subscribe to state changes\n /\n subscribe(listener: StateListener): () => void {\n this.listeners.add(listener);\n\n // Return unsubscribe function\n return () => {\n this.listeners.delete(listener);\n };\n }\n\n /\n Clear all listeners\n /\n clearListeners(): void {\n this.listeners.clear();\n }\n\n /\n Notify all listeners of state change\n /\n private notifyListeners(): void {\n const currentState = this.getState();\n this.listeners.forEach(listener => {\n try {\n listener(currentState);\n } catch (error) {\n console.error('[Alter Connect] Error in state listener:', error);\n }\n });\n }\n}\n","/\n Mobile device detection and responsive utilities\n /\n\n/\n Detect if the current device is a mobile device\n /\nexport function isMobileDevice(): boolean {\n const userAgent = navigator.userAgent \|\| navigator.vendor \|\| (window as any).opera;\n\n // Check for mobile patterns\n const mobileRegex = /Android\|webOS\|iPhone\|iPad\|iPod\|BlackBerry\|IEMobile\|Opera Mini/i;\n const isMobileUA = mobileRegex.test(userAgent);\n\n // Check for touch capability\n const hasTouchScreen = ('ontouchstart' in window) \|\|\n (navigator.maxTouchPoints > 0) \|\|\n ((navigator as any).msMaxTouchPoints > 0);\n\n // Check screen size\n const isSmallScreen = window.innerWidth <= 768;\n\n return isMobileUA \|\| (hasTouchScreen && isSmallScreen);\n}\n\n/\n Detect if the device is specifically a phone (vs tablet)\n /\nexport function isPhoneDevice(): boolean {\n return isMobileDevice() && window.innerWidth <= 480;\n}\n\n/\n Detect if the device is a tablet\n /\nexport function isTabletDevice(): boolean {\n return isMobileDevice() && window.innerWidth > 480 && window.innerWidth <= 1024;\n}\n\n/\n Get the device type\n /\nexport function getDeviceType(): 'desktop' \| 'tablet' \| 'phone' {\n if (isPhoneDevice()) return 'phone';\n if (isTabletDevice()) return 'tablet';\n return 'desktop';\n}\n\n/\n Check if we should use redirect flow instead of popup\n \n Popup windows don't work well on mobile:\n * - Browsers often block them\n * - They open as full-screen tabs\n * - Users lose context of parent app\n /\nexport function shouldUseRedirectFlow(): boolean {\n const deviceType = getDeviceType();\n\n // Always use redirect for phones\n if (deviceType === 'phone') return true;\n\n // Use redirect for tablets in portrait mode (popups are cramped)\n if (deviceType === 'tablet' && window.innerHeight > window.innerWidth) {\n return true;\n }\n\n // Use popup for desktop and tablets in landscape\n return false;\n}\n","/\n OAuth popup and redirect handler\n /\n\nimport type { Connection, AlterError } from '../types';\nimport { shouldUseRedirectFlow } from '../utils/mobile';\n\ninterface OAuthHandlerOptions {\n baseURL: string;\n onSuccess: (connections: Connection[]) => void;\n onError: (error: AlterError) => void;\n onCancel: () => void;\n popupWidth?: number;\n popupHeight?: number;\n debug?: boolean;\n /* Expected origin for postMessage validation. Derived from the OAuth URL. /\n expectedOrigin?: string;\n}\n\n/\n Parse an operation string into a valid Connection['operation'] value\n /\nfunction parseOperation(value: string \| null \| undefined): Connection['operation'] {\n if (value === 'reauth') return 'reauth';\n if (value === 'grant') return 'grant';\n return 'creation';\n}\n\n/\n Parse a status string into a valid Connection['status'] value\n /\nfunction parseStatus(value: string \| null \| undefined): Connection['status'] {\n if (value === 'pending') return 'pending';\n if (value === 'error') return 'error';\n return 'active';\n}\n\n/\n Clean up OAuth redirect state and restore the original URL\n /\nfunction cleanupRedirectState(returnUrl: string): void {\n sessionStorage.removeItem('alter_oauth_state');\n try {\n const cleanUrl = new URL(returnUrl);\n window.history.replaceState({}, document.title, cleanUrl.pathname + cleanUrl.search + cleanUrl.hash);\n } catch {\n // If returnUrl is malformed, just remove query params from current URL\n window.history.replaceState({}, document.title, window.location.pathname);\n }\n}\n\n/\n Validate that a postMessage connection payload has all required fields.\n * Returns an error message if invalid, or null if valid.\n /\nfunction validateConnectionPayload(data: Record<string, unknown>): string \| null {\n if (!data.connection_id \|\| typeof data.connection_id !== 'string') {\n return 'Missing or invalid connection_id';\n }\n if (!data.provider \|\| typeof data.provider !== 'string') {\n return 'Missing or invalid provider';\n }\n if (!data.account_identifier \|\| typeof data.account_identifier !== 'string') {\n return 'Missing or invalid account_identifier';\n }\n if (!data.timestamp \|\| typeof data.timestamp !== 'string') {\n return 'Missing or invalid timestamp';\n }\n return null;\n}\n\n/\n Handles OAuth flow in popup window\n /\nexport class OAuthHandler {\n private popup: Window \| null = null;\n private pollInterval: number \| null = null;\n private messageListener: ((event: MessageEvent) => void) \| null = null;\n private options: Required<OAuthHandlerOptions>;\n private expectedOrigin: string;\n private settled: boolean = false;\n\n constructor(options: OAuthHandlerOptions) {\n this.options = {\n baseURL: options.baseURL,\n onSuccess: options.onSuccess,\n onError: options.onError,\n onCancel: options.onCancel,\n popupWidth: options.popupWidth \|\| 500,\n popupHeight: options.popupHeight \|\| 700,\n debug: options.debug \|\| false,\n expectedOrigin: options.expectedOrigin \|\| '',\n };\n\n // Extract origin from baseURL for postMessage validation\n try {\n this.expectedOrigin = new URL(options.baseURL).origin;\n } catch {\n throw new Error(\n `Invalid baseURL: \"${options.baseURL}\". Must be a full URL with protocol (e.g., \"https://api.alterai.dev\").`\n );\n }\n }\n\n /\n Start OAuth flow (automatically chooses popup or redirect based on device)\n /\n startOAuth(url: string): void {\n // Derive expected origin from the OAuth URL if not explicitly set.\n // SECURITY: Fail-closed — if we can't determine origin, abort the flow.\n if (!this.options.expectedOrigin) {\n try {\n const parsed = new URL(url);\n this.options.expectedOrigin = parsed.origin;\n this.log('Derived expected origin:', this.options.expectedOrigin);\n } catch {\n this.log('Failed to parse OAuth URL for origin validation:', url);\n this.options.onError({\n code: 'invalid_oauth_url',\n message: 'Failed to determine origin from OAuth URL. Cannot proceed securely.',\n });\n return;\n }\n }\n\n if (shouldUseRedirectFlow()) {\n this.log('Using redirect flow for mobile device');\n this.startRedirectFlow(url);\n } else {\n this.log('Using popup flow for desktop');\n this.openPopup(url);\n }\n }\n\n /\n Start OAuth redirect flow (for mobile)\n * Saves state and redirects the entire page\n /\n private startRedirectFlow(url: string): void {\n this.log('Starting redirect flow:', url);\n\n // Save state to sessionStorage to restore after redirect\n const state = {\n timestamp: Date.now(),\n returnUrl: window.location.href,\n };\n\n try {\n sessionStorage.setItem('alter_oauth_state', JSON.stringify(state));\n } catch (error) {\n this.log('Failed to save state:', error);\n this.options.onError({\n code: 'redirect_error',\n message: 'Failed to start OAuth flow: could not save session state',\n details: { error },\n });\n return;\n }\n\n // Redirect to OAuth URL (full page redirect)\n window.location.href = url;\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * Call this on page load to detect OAuth return\n \n @returns true if OAuth return was detected and handled\n /\n static checkOAuthReturn(\n onSuccess: (connections: Connection[]) => void,\n onError: (error: AlterError) => void\n ): boolean {\n // Check if we have OAuth state saved\n const stateJson = sessionStorage.getItem('alter_oauth_state');\n if (!stateJson) {\n return false;\n }\n\n try {\n const state = JSON.parse(stateJson);\n\n // Check if this is a valid OAuth return (within 5 minutes)\n const elapsed = Date.now() - state.timestamp;\n if (elapsed > 5 60 * 1000) {\n // Stale state, clean up\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n\n // Check URL for OAuth callback parameters\n const urlParams = new URLSearchParams(window.location.search);\n const success = urlParams.get('alter_connect_success');\n const error = urlParams.get('alter_connect_error');\n\n if (success === 'true') {\n // Validate required fields\n const connectionId = urlParams.get('connection_id');\n const provider = urlParams.get('provider');\n const accountIdentifier = urlParams.get('account_identifier');\n\n if (!connectionId \|\| !provider \|\| !accountIdentifier) {\n cleanupRedirectState(state.returnUrl);\n onError({\n code: 'invalid_response',\n message: 'OAuth redirect returned incomplete connection data',\n });\n return true;\n }\n\n const connection: Connection = {\n connection_id: connectionId,\n provider: provider,\n provider_name: urlParams.get('provider_name') \|\| provider,\n account_identifier: accountIdentifier,\n timestamp: urlParams.get('timestamp') \|\| new Date().toISOString(),\n operation: parseOperation(urlParams.get('operation')),\n scopes: urlParams.get('scopes')?.split(',') \|\| [],\n status: parseStatus(urlParams.get('status')),\n };\n\n cleanupRedirectState(state.returnUrl);\n onSuccess([connection]); // Wrap in array for unified interface\n return true;\n }\n\n if (error) {\n const alterError: AlterError = {\n code: urlParams.get('error_code') \|\| 'oauth_error',\n message: urlParams.get('error_description') \|\| 'OAuth authorization failed',\n };\n\n cleanupRedirectState(state.returnUrl);\n onError(alterError);\n return true;\n }\n\n return false;\n } catch (err) {\n console.error('[OAuth Handler] Failed to check OAuth return:', err);\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n }\n\n /*\n Open OAuth popup (for desktop)\n /\n openPopup(url: string): void {\n // Calculate popup position (centered)\n const left = window.screenX + (window.outerWidth - this.options.popupWidth) / 2;\n const top = window.screenY + (window.outerHeight - this.options.popupHeight) / 2;\n\n const features = [\n `width=${this.options.popupWidth}`,\n `height=${this.options.popupHeight}`,\n `left=${left}`,\n `top=${top}`,\n 'resizable=yes',\n 'scrollbars=yes',\n 'status=yes',\n ].join(',');\n\n this.log('Opening OAuth popup:', url);\n\n // Open popup\n this.popup = window.open(url, 'alter_oauth_popup', features);\n\n if (!this.popup) {\n this.options.onError({\n code: 'popup_blocked',\n message: 'Popup was blocked by browser. Please allow popups for this site.',\n });\n return;\n }\n\n // Start monitoring popup\n this.startPolling();\n this.setupMessageListener();\n }\n\n /\n Close popup and clean up\n /\n close(): void {\n this.log('Closing OAuth handler');\n\n // Close popup\n if (this.popup && !this.popup.closed) {\n this.popup.close();\n }\n this.popup = null;\n\n // Stop polling\n if (this.pollInterval !== null) {\n clearInterval(this.pollInterval);\n this.pollInterval = null;\n }\n\n // Remove message listener\n if (this.messageListener) {\n window.removeEventListener('message', this.messageListener);\n this.messageListener = null;\n }\n }\n\n /\n Poll to detect when popup is closed\n /\n private startPolling(): void {\n this.pollInterval = window.setInterval(() => {\n if (this.settled) return;\n if (!this.popup \|\| this.popup.closed) {\n this.log('Popup closed by user');\n this.settled = true;\n this.close();\n this.options.onCancel();\n }\n }, 500);\n }\n\n /\n Listen for postMessage from OAuth callback page\n /\n private setupMessageListener(): void {\n this.messageListener = (event: MessageEvent) => {\n // Ignore if already settled (prevents race with polling)\n if (this.settled) return;\n\n // Validate origin against the expected backend origin\n if (event.origin !== this.expectedOrigin) {\n this.log('Rejected message from unexpected origin:', event.origin, '(expected:', this.expectedOrigin + ')');\n return;\n }\n\n this.log('Received message from', event.origin);\n\n const data = event.data;\n\n // Check message type\n if (data && typeof data === 'object') {\n if (data.type === 'alter_connect_success') {\n this.log('OAuth success');\n\n // New format: connections array (multi-provider)\n if (Array.isArray(data.connections)) {\n this.log('Multi-provider success:', data.connections.length, 'connections');\n const connections: Connection[] = [];\n for (const item of data.connections) {\n if (!item.connection_id \|\| !item.provider) {\n this.log('Skipping invalid connection item:', item);\n continue;\n }\n connections.push({\n connection_id: item.connection_id as string,\n provider: item.provider as string,\n provider_name: (item.provider_name as string) \|\| (item.provider as string),\n account_identifier: (item.account_identifier as string) \|\| '',\n timestamp: (item.timestamp as string) \|\| new Date().toISOString(),\n operation: parseOperation(item.operation as string \| undefined),\n scopes: Array.isArray(item.scopes) ? item.scopes as string[] : [],\n status: parseStatus(item.status as string \| undefined),\n metadata: item.metadata as Connection['metadata'],\n });\n }\n\n if (connections.length === 0) {\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned empty connections array',\n });\n return;\n }\n\n this.settled = true;\n this.close();\n this.options.onSuccess(connections);\n return;\n }\n\n // Legacy format: single connection (backward compat)\n const validationError = validateConnectionPayload(data);\n if (validationError) {\n this.log('Invalid connection payload:', validationError);\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: `Server returned incomplete connection data: ${validationError}`,\n });\n return;\n }\n\n const connection: Connection = {\n connection_id: data.connection_id as string,\n provider: data.provider as string,\n provider_name: (data.provider_name as string) \|\| (data.provider as string),\n account_identifier: data.account_identifier as string,\n timestamp: data.timestamp as string,\n operation: parseOperation(data.operation as string \| undefined),\n scopes: Array.isArray(data.scopes) ? data.scopes as string[] : [],\n status: parseStatus(data.status as string \| undefined),\n metadata: data.metadata as Connection['metadata'],\n };\n\n this.settled = true;\n this.close();\n this.options.onSuccess([connection]); // Wrap in array for unified interface\n } else if (data.type === 'alter_connect_error') {\n this.log('OAuth error');\n\n const error: AlterError = {\n code: (data.error as string) \|\| 'oauth_error',\n message: (data.error_description as string) \|\| 'OAuth authorization failed',\n details: data as Record<string, unknown>,\n };\n\n this.settled = true;\n this.close();\n this.options.onError(error);\n }\n }\n };\n\n window.addEventListener('message', this.messageListener);\n }\n\n /\n Log debug message\n /\n private log(...args: unknown[]): void {\n if (this.options.debug) {\n console.log('[OAuth Handler]', ...args);\n }\n }\n}\n","/\n Main AlterConnect SDK class\n \n Opens the backend-served Connect UI in a popup. The backend handles Clerk auth,\n * provider selection, branding, and OAuth — then sends the result back via postMessage.\n /\n\nimport type { AlterConnectConfig, OpenOptions, Connection, AlterError } from '../types';\nimport { validateConfig, mergeConfig, debugLog, type FullConfig } from './config';\nimport { EventEmitter } from './events';\nimport { StateManager } from '../state/manager';\nimport { OAuthHandler } from '../oauth/handler';\n\n/\n SDK version\n /\nconst VERSION = '0.2.0';\n\n/\n Main SDK class\n /\nexport class AlterConnect {\n private config: FullConfig;\n private eventEmitter: EventEmitter;\n private stateManager: StateManager;\n private _isInitialized: boolean;\n private _oauthHandler: OAuthHandler \| null = null;\n private _baseURL: string = 'https://api.alterai.dev'; // Default, overridden in open()\n private _perOpenCleanups: Array<() => void> = [];\n\n /\n Private constructor (use AlterConnect.create() instead)\n /\n private constructor(config: AlterConnectConfig = {}) {\n // Validate and merge config\n validateConfig(config);\n this.config = mergeConfig(config);\n\n // Initialize components\n this.eventEmitter = new EventEmitter();\n this.stateManager = new StateManager();\n this._isInitialized = true;\n\n debugLog(this.config, 'Alter Connect SDK initialized', { version: VERSION });\n\n // Check if returning from OAuth redirect (mobile flow)\n this.checkRedirectReturn();\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * This runs automatically on SDK initialization\n /\n private checkRedirectReturn(): void {\n const handled = OAuthHandler.checkOAuthReturn(\n (connections: Connection[]) => {\n debugLog(this.config, 'OAuth redirect return - success:', connections);\n // Emit success event (will be picked up by event handlers if SDK was re-initialized)\n this.eventEmitter.emit('success', connections);\n },\n (error: AlterError) => {\n debugLog(this.config, 'OAuth redirect return - error:', error);\n // Emit error event\n this.eventEmitter.emit('error', error);\n }\n );\n\n if (handled) {\n debugLog(this.config, 'OAuth redirect return detected and handled');\n }\n }\n\n /\n Create a new AlterConnect instance\n \n @param config Optional configuration\n * @returns AlterConnect instance\n \n @example\n * const alterConnect = AlterConnect.create();\n * const alterConnect = AlterConnect.create({ debug: true });\n /\n static create(config?: AlterConnectConfig): AlterConnect {\n return new AlterConnect(config);\n }\n\n /\n Open the Connect UI in a popup window\n \n Opens the backend-served Connect UI at {baseURL}/oauth/connect#session={token}.\n * The backend handles Clerk auth, provider selection, branding, and OAuth flow.\n * On success, the backend sends a postMessage back to this window.\n \n @param options Configuration including the session token from your backend\n \n @example\n * // 1. Get session token from YOUR backend\n * const { session_token } = await fetch('/api/alter/create-session').then(r => r.json());\n \n // 2. Open Connect UI\n * await alterConnect.open({\n * token: session_token,\n * onSuccess: (connection) => {\n * console.log('Connected!', connection);\n * },\n * onError: (error) => {\n * console.error('Failed:', error);\n * }\n * });\n /\n async open(options: OpenOptions): Promise<void> {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call open() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Opening Connect UI');\n\n // Validate required options\n if (!options.token \|\| typeof options.token !== 'string') {\n throw this.createError('invalid_options', 'Session token is required. Create one from your backend using POST /sdk/oauth/connect/session');\n }\n\n if (!options.onSuccess \|\| typeof options.onSuccess !== 'function') {\n throw this.createError('invalid_options', 'onSuccess callback is required');\n }\n\n // Check if already open\n if (this.isOpen()) {\n debugLog(this.config, 'Connect UI is already open');\n return;\n }\n\n // Store baseURL (from backend session response, or default to production)\n this._baseURL = options.baseURL \|\| 'https://api.alterai.dev';\n\n // Create OAuth handler first — this validates baseURL and throws on invalid input.\n // We do this BEFORE setting isOpen to avoid leaving the SDK in a broken state.\n this._oauthHandler = new OAuthHandler({\n baseURL: this._baseURL,\n onSuccess: (connections: Connection[]) => {\n debugLog(this.config, 'OAuth success:', connections);\n this.handleOAuthSuccess(connections);\n },\n onError: (error: AlterError) => {\n debugLog(this.config, 'OAuth error:', error);\n this.handleOAuthError(error);\n },\n onCancel: () => {\n debugLog(this.config, 'OAuth cancelled (popup closed)');\n this.handleOAuthCancel();\n },\n popupWidth: 500,\n popupHeight: 700,\n debug: this.config.debug,\n });\n\n // Update state (after handler creation succeeds)\n this.stateManager.setState({\n isOpen: true,\n error: null,\n sessionToken: options.token,\n });\n\n // Register event handlers\n this.registerEventHandlers(options);\n\n // Build the Connect UI URL — the backend serves the full UI\n const connectURL = `${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(options.token)}`;\n\n debugLog(this.config, 'Connect URL:', connectURL);\n\n // Open the Connect UI (popup or redirect depending on device)\n this._oauthHandler.startOAuth(connectURL);\n\n // Emit analytics event\n if (options.onEvent) {\n options.onEvent('connect_opened', {\n timestamp: new Date().toISOString(),\n });\n }\n\n debugLog(this.config, 'Connect UI opened successfully');\n }\n\n /\n Close the Connect UI\n /\n close(): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call close() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Closing Connect UI');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Remove only per-open handlers (preserves global handlers from on())\n this._perOpenCleanups.forEach(cleanup => cleanup());\n this._perOpenCleanups = [];\n\n // Update state\n this.stateManager.setState({ isOpen: false });\n\n this.eventEmitter.emit('close');\n }\n\n /\n Destroy the SDK instance and clean up resources\n /\n destroy(): void {\n if (!this._isInitialized) {\n // Already destroyed, silently return\n return;\n }\n\n debugLog(this.config, 'Destroying SDK instance');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Update state\n if (this.stateManager.get('isOpen')) {\n this.stateManager.setState({ isOpen: false });\n }\n\n // Clean up resources\n this.eventEmitter.removeAllListeners();\n this.stateManager.clearListeners();\n this._isInitialized = false;\n }\n\n /\n Register an event listener\n /\n on(event: string, handler: (...args: any[]) => void): () => void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call on() - SDK instance has been destroyed');\n }\n\n return this.eventEmitter.on(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: (...args: any[]) => void): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call off() - SDK instance has been destroyed');\n }\n\n this.eventEmitter.off(event, handler);\n }\n\n /\n Check if Connect UI is open\n /\n isOpen(): boolean {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call isOpen() - SDK instance has been destroyed');\n }\n\n return this.stateManager.get('isOpen');\n }\n\n /\n Get SDK version\n /\n getVersion(): string {\n return VERSION;\n }\n\n /\n Clean up OAuth handler reference after a flow completes.\n * The OAuthHandler.close() is already called internally by the handler\n * before invoking callbacks, so we only need to null the reference here.\n /\n private cleanupHandler(): void {\n this._oauthHandler = null;\n }\n\n /\n Handle OAuth success\n /\n private handleOAuthSuccess(connections: Connection[]): void {\n this.cleanupHandler();\n this.eventEmitter.emit('success', connections);\n }\n\n /\n Handle OAuth error\n /\n private handleOAuthError(error: AlterError): void {\n this.cleanupHandler();\n this.stateManager.setState({ error });\n this.eventEmitter.emit('error', error);\n }\n\n /\n Handle OAuth cancellation (user closed popup)\n /\n private handleOAuthCancel(): void {\n this.cleanupHandler();\n this.eventEmitter.emit('exit');\n }\n\n /\n Register event handlers from OpenOptions\n /\n private registerEventHandlers(options: OpenOptions): void {\n // Success handler\n if (options.onSuccess) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('success', (connections: Connection[]) => {\n options.onSuccess(connections);\n this.close();\n })\n );\n }\n\n // Exit handler\n if (options.onExit) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('exit', () => {\n options.onExit!();\n this.close();\n })\n );\n }\n\n // Error handler — always registered to ensure close() is called\n this._perOpenCleanups.push(\n this.eventEmitter.on('error', (error: AlterError) => {\n if (options.onError) {\n options.onError(error);\n }\n this.close();\n })\n );\n\n // Event handler (analytics)\n if (options.onEvent) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('event', (eventName: string, metadata: any) => {\n options.onEvent!(eventName, metadata);\n })\n );\n }\n }\n\n /\n Create an AlterError object\n */\n private createError(code: string, message: string, details?: Record<string, any>): Error {\n const error = new Error(message);\n (error as any).code = code;\n (error as any).details = details;\n return error;\n }\n}\n"],"names":["debugLog","config","args","debug","console","log","EventEmitter","constructor","this","events","Map","on","event","handler","has","set","Set","get","add","off","handlers","delete","emit","forEach","error","removeAllListeners","clear","StateManager","state","isOpen","sessionToken","listeners","getState","key","setState","updates","notifyListeners","subscribe","listener","clearListeners","currentState","isMobileDevice","userAgent","navigator","vendor","window","opera","isMobileUA","test","hasTouchScreen","maxTouchPoints","msMaxTouchPoints","isSmallScreen","innerWidth","getDeviceType","parseOperation","value","parseStatus","cleanupRedirectState","returnUrl","sessionStorage","removeItem","cleanUrl","URL","history","replaceState","document","title","pathname","search","hash","location","OAuthHandler","options","popup","pollInterval","messageListener","settled","baseURL","onSuccess","onError","onCancel","popupWidth","popupHeight","expectedOrigin","origin","Error","startOAuth","url","parsed","code","message","deviceType","innerHeight","shouldUseRedirectFlow","openPopup","startRedirectFlow","timestamp","Date","now","href","setItem","JSON","stringify","details","checkOAuthReturn","stateJson","getItem","parse","urlParams","URLSearchParams","success","connectionId","provider","accountIdentifier","connection","connection_id","provider_name","account_identifier","toISOString","operation","scopes","split","status","alterError","err","left","screenX","outerWidth","top","screenY","outerHeight","features","join","open","startPolling","setupMessageListener","close","closed","clearInterval","removeEventListener","setInterval","data","type","Array","isArray","connections","length","item","push","metadata","validationError","validateConnectionPayload","error_description","addEventListener","VERSION","AlterConnect","_oauthHandler","_baseURL","_perOpenCleanups","mergeConfig","eventEmitter","stateManager","_isInitialized","version","checkRedirectReturn","create","createError","token","handleOAuthSuccess","handleOAuthError","handleOAuthCancel","registerEventHandlers","connectURL","encodeURIComponent","onEvent","cleanup","destroy","getVersion","cleanupHandler","onExit","eventName"],"mappings":"sBAgCgBA,EAASC,KAAuBC,GAC1CD,EAAOE,OACTC,QAAQC,IAAI,qBAAsBH,EAEtC,8DC3BaI,EAGX,WAAAC,GACEC,KAAKC,OAAS,IAAIC,GACpB,CAMA,EAAAC,CAAGC,EAAeC,GAQhB,OAPKL,KAAKC,OAAOK,IAAIF,IACnBJ,KAAKC,OAAOM,IAAIH,EAAO,IAAII,KAG7BR,KAAKC,OAAOQ,IAAIL,GAAQM,IAAIL,GAGrB,IAAML,KAAKW,IAAIP,EAAOC,EAC/B,CAKA,GAAAM,CAAIP,EAAeC,GACjB,MAAMO,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASC,OAAOR,EAEpB,CAKA,IAAAS,CAAKV,KAAkBV,GACrB,MAAMkB,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASG,QAAQV,IACf,IACEA,KAAWX,EACb,CAAE,MAAOsB,GACPpB,QAAQoB,MAAM,+CAA+CZ,MAAWY,EAC1E,GAGN,CAKA,kBAAAC,CAAmBb,GACbA,EACFJ,KAAKC,OAAOY,OAAOT,GAEnBJ,KAAKC,OAAOiB,OAEhB,QC9CWC,EAIX,WAAApB,GACEC,KAAKoB,MAAQ,CACXC,QAAQ,EACRC,aAAc,KACdN,MAAO,MAEThB,KAAKuB,UAAY,IAAIf,GACvB,CAKA,QAAAgB,GACE,MAAO,IAAKxB,KAAKoB,MACnB,CAKA,GAAAX,CAA8BgB,GAC5B,OAAOzB,KAAKoB,MAAMK,EACpB,CAKA,QAAAC,CAASC,GACP3B,KAAKoB,MAAQ,IAAKpB,KAAKoB,SAAUO,GACjC3B,KAAK4B,iBACP,CAKA,SAAAC,CAAUC,GAIR,OAHA9B,KAAKuB,UAAUb,IAAIoB,GAGZ,KACL9B,KAAKuB,UAAUV,OAAOiB,GAE1B,CAKA,cAAAC,GACE/B,KAAKuB,UAAUL,OACjB,CAKQ,eAAAU,GACN,MAAMI,EAAehC,KAAKwB,WAC1BxB,KAAKuB,UAAUR,QAAQe,IACrB,IACEA,EAASE,EACX,CAAE,MAAOhB,GACPpB,QAAQoB,MAAM,2CAA4CA,EAC5D,GAEJ,WC/EciB,IACd,MAAMC,EAAYC,UAAUD,WAAaC,UAAUC,QAAWC,OAAeC,MAIvEC,EADc,iEACWC,KAAKN,GAG9BO,EAAkB,iBAAkBJ,QACnBF,UAAUO,eAAiB,GAC1BP,UAAkBQ,iBAAmB,EAGvDC,EAAgBP,OAAOQ,YAAc,IAE3C,OAAON,GAAeE,GAAkBG,CAC1C,UAmBgBE,IACd,OAdOb,KAAoBI,OAAOQ,YAAc,IAcpB,QAPrBZ,KAAoBI,OAAOQ,WAAa,KAAOR,OAAOQ,YAAc,KAQ9C,SACtB,SACT,CCxBA,SAASE,EAAeC,GACtB,MAAc,WAAVA,EAA2B,SACjB,UAAVA,EAA0B,QACvB,UACT,CAKA,SAASC,EAAYD,GACnB,MAAc,YAAVA,EAA4B,UAClB,UAAVA,EAA0B,QACvB,QACT,CAKA,SAASE,EAAqBC,GAC5BC,eAAeC,WAAW,qBAC1B,IACE,MAAMC,EAAW,IAAIC,IAAIJ,GACzBd,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOL,EAASM,SAAWN,EAASO,OAASP,EAASQ,KACjG,CAAE,MAEAzB,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOtB,OAAO0B,SAASH,SAClE,CACF,OAyBaI,EAQX,WAAAjE,CAAYkE,GAPJjE,KAAAkE,MAAuB,KACvBlE,KAAAmE,aAA8B,KAC9BnE,KAAAoE,gBAA0D,KAG1DpE,KAAAqE,SAAmB,EAGzBrE,KAAKiE,QAAU,CACbK,QAASL,EAAQK,QACjBC,UAAWN,EAAQM,UACnBC,QAASP,EAAQO,QACjBC,SAAUR,EAAQQ,SAClBC,WAAYT,EAAQS,YAAc,IAClCC,YAAaV,EAAQU,aAAe,IACpChF,MAAOsE,EAAQtE,QAAS,EACxBiF,eAAgBX,EAAQW,gBAAkB,IAI5C,IACE5E,KAAK4E,eAAiB,IAAIrB,IAAIU,EAAQK,SAASO,MACjD,CAAE,MACA,MAAM,IAAIC,MACR,qBAAqBb,EAAQK,gFAEjC,CACF,CAKA,UAAAS,CAAWC,GAGT,IAAKhF,KAAKiE,QAAQW,eAChB,IACE,MAAMK,EAAS,IAAI1B,IAAIyB,GACvBhF,KAAKiE,QAAQW,eAAiBK,EAAOJ,OACrC7E,KAAKH,IAAI,2BAA4BG,KAAKiE,QAAQW,eACpD,CAAE,MAMA,OALA5E,KAAKH,IAAI,mDAAoDmF,QAC7DhF,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,oBACNC,QAAS,uEAGb,aDjEJ,MAAMC,EAAatC,IAGnB,MAAmB,UAAfsC,GAGe,WAAfA,GAA2B/C,OAAOgD,YAAchD,OAAOQ,UAM7D,CCwDQyC,IAIFtF,KAAKH,IAAI,gCACTG,KAAKuF,UAAUP,KAJfhF,KAAKH,IAAI,yCACTG,KAAKwF,kBAAkBR,GAK3B,CAMQ,iBAAAQ,CAAkBR,GACxBhF,KAAKH,IAAI,0BAA2BmF,GAGpC,MAAM5D,EAAQ,CACZqE,UAAWC,KAAKC,MAChBxC,UAAWd,OAAO0B,SAAS6B,MAG7B,IACExC,eAAeyC,QAAQ,oBAAqBC,KAAKC,UAAU3E,GAC7D,CAAE,MAAOJ,GAOP,OANAhB,KAAKH,IAAI,wBAAyBmB,QAClChB,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,iBACNC,QAAS,2DACTa,QAAS,CAAEhF,UAGf,CAGAqB,OAAO0B,SAAS6B,KAAOZ,CACzB,CAQA,uBAAOiB,CACL1B,EACAC,GAGA,MAAM0B,EAAY9C,eAAe+C,QAAQ,qBACzC,IAAKD,EACH,OAAO,EAGT,IACE,MAAM9E,EAAQ0E,KAAKM,MAAMF,GAIzB,GADgBR,KAAKC,MAAQvE,EAAMqE,UACrB,IAGZ,OADArC,eAAeC,WAAW,sBACnB,EAIT,MAAMgD,EAAY,IAAIC,gBAAgBjE,OAAO0B,SAASF,QAChD0C,EAAUF,EAAU5F,IAAI,yBACxBO,EAAQqF,EAAU5F,IAAI,uBAE5B,GAAgB,SAAZ8F,EAAoB,CAEtB,MAAMC,EAAeH,EAAU5F,IAAI,iBAC7BgG,EAAWJ,EAAU5F,IAAI,YACzBiG,EAAoBL,EAAU5F,IAAI,sBAExC,IAAK+F,IAAiBC,IAAaC,EAMjC,OALAxD,EAAqB9B,EAAM+B,WAC3BqB,EAAQ,CACNU,KAAM,mBACNC,QAAS,wDAEJ,EAGT,MAAMwB,EAAyB,CAC7BC,cAAeJ,EACfC,SAAUA,EACVI,cAAeR,EAAU5F,IAAI,kBAAoBgG,EACjDK,mBAAoBJ,EACpBjB,UAAWY,EAAU5F,IAAI,eAAgB,IAAIiF,MAAOqB,cACpDC,UAAWjE,EAAesD,EAAU5F,IAAI,cACxCwG,OAAQZ,EAAU5F,IAAI,WAAWyG,MAAM,MAAQ,GAC/CC,OAAQlE,EAAYoD,EAAU5F,IAAI,YAKpC,OAFAyC,EAAqB9B,EAAM+B,WAC3BoB,EAAU,CAACoC,KACJ,CACT,CAEA,GAAI3F,EAAO,CACT,MAAMoG,EAAyB,CAC7BlC,KAAMmB,EAAU5F,IAAI,eAAiB,cACrC0E,QAASkB,EAAU5F,IAAI,sBAAwB,8BAKjD,OAFAyC,EAAqB9B,EAAM+B,WAC3BqB,EAAQ4C,IACD,CACT,CAEA,OAAO,CACT,CAAE,MAAOC,GAGP,OAFAzH,QAAQoB,MAAM,gDAAiDqG,GAC/DjE,eAAeC,WAAW,sBACnB,CACT,CACF,CAKA,SAAAkC,CAAUP,GAER,MAAMsC,EAAOjF,OAAOkF,SAAWlF,OAAOmF,WAAaxH,KAAKiE,QAAQS,YAAc,EACxE+C,EAAMpF,OAAOqF,SAAWrF,OAAOsF,YAAc3H,KAAKiE,QAAQU,aAAe,EAEzEiD,EAAW,CACf,SAAS5H,KAAKiE,QAAQS,aACtB,UAAU1E,KAAKiE,QAAQU,cACvB,QAAQ2C,IACR,OAAOG,IACP,gBACA,iBACA,cACAI,KAAK,KAEP7H,KAAKH,IAAI,uBAAwBmF,GAGjChF,KAAKkE,MAAQ7B,OAAOyF,KAAK9C,EAAK,oBAAqB4C,GAE9C5H,KAAKkE,OASVlE,KAAK+H,eACL/H,KAAKgI,wBATHhI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,gBACNC,QAAS,oEAQf,CAKA,KAAA8C,GACEjI,KAAKH,IAAI,yBAGLG,KAAKkE,QAAUlE,KAAKkE,MAAMgE,QAC5BlI,KAAKkE,MAAM+D,QAEbjI,KAAKkE,MAAQ,KAGa,OAAtBlE,KAAKmE,eACPgE,cAAcnI,KAAKmE,cACnBnE,KAAKmE,aAAe,MAIlBnE,KAAKoE,kBACP/B,OAAO+F,oBAAoB,UAAWpI,KAAKoE,iBAC3CpE,KAAKoE,gBAAkB,KAE3B,CAKQ,YAAA2D,GACN/H,KAAKmE,aAAe9B,OAAOgG,YAAY,KACjCrI,KAAKqE,SACJrE,KAAKkE,QAASlE,KAAKkE,MAAMgE,SAC5BlI,KAAKH,IAAI,wBACTG,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQQ,aAEd,IACL,CAKQ,oBAAAuD,GACNhI,KAAKoE,gBAAmBhE,IAEtB,GAAIJ,KAAKqE,QAAS,OAGlB,GAAIjE,EAAMyE,SAAW7E,KAAK4E,eAExB,YADA5E,KAAKH,IAAI,2CAA4CO,EAAMyE,OAAQ,aAAc7E,KAAK4E,eAAiB,KAIzG5E,KAAKH,IAAI,wBAAyBO,EAAMyE,QAExC,MAAMyD,EAAOlI,EAAMkI,KAGnB,GAAIA,GAAwB,iBAATA,EACjB,GAAkB,0BAAdA,EAAKC,KAAkC,CAIzC,GAHAvI,KAAKH,IAAI,iBAGL2I,MAAMC,QAAQH,EAAKI,aAAc,CACnC1I,KAAKH,IAAI,0BAA2ByI,EAAKI,YAAYC,OAAQ,eAC7D,MAAMD,EAA4B,GAClC,IAAK,MAAME,KAAQN,EAAKI,YACjBE,EAAKhC,eAAkBgC,EAAKnC,SAIjCiC,EAAYG,KAAK,CACfjC,cAAegC,EAAKhC,cACpBH,SAAUmC,EAAKnC,SACfI,cAAgB+B,EAAK/B,eAA6B+B,EAAKnC,SACvDK,mBAAqB8B,EAAK9B,oBAAiC,GAC3DrB,UAAYmD,EAAKnD,YAAwB,IAAIC,MAAOqB,cACpDC,UAAWjE,EAAe6F,EAAK5B,WAC/BC,OAAQuB,MAAMC,QAAQG,EAAK3B,QAAU2B,EAAK3B,OAAqB,GAC/DE,OAAQlE,EAAY2F,EAAKzB,QACzB2B,SAAUF,EAAKE,WAZf9I,KAAKH,IAAI,oCAAqC+I,GAgBlD,OAA2B,IAAvBF,EAAYC,QACd3I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,8CAKbnF,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQM,UAAUmE,GAEzB,CAGA,MAAMK,EAxUhB,SAAmCT,GACjC,OAAKA,EAAK1B,eAA+C,iBAAvB0B,EAAK1B,cAGlC0B,EAAK7B,UAAqC,iBAAlB6B,EAAK7B,SAG7B6B,EAAKxB,oBAAyD,iBAA5BwB,EAAKxB,mBAGvCwB,EAAK7C,WAAuC,iBAAnB6C,EAAK7C,UAG5B,KAFE,+BAHA,wCAHA,8BAHA,kCAYX,CA0TkCuD,CAA0BV,GAClD,GAAIS,EAQF,OAPA/I,KAAKH,IAAI,8BAA+BkJ,GACxC/I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,+CAA+C4D,MAK5D,MAAMpC,EAAyB,CAC7BC,cAAe0B,EAAK1B,cACpBH,SAAU6B,EAAK7B,SACfI,cAAgByB,EAAKzB,eAA6ByB,EAAK7B,SACvDK,mBAAoBwB,EAAKxB,mBACzBrB,UAAW6C,EAAK7C,UAChBuB,UAAWjE,EAAeuF,EAAKtB,WAC/BC,OAAQuB,MAAMC,QAAQH,EAAKrB,QAAUqB,EAAKrB,OAAqB,GAC/DE,OAAQlE,EAAYqF,EAAKnB,QACzB2B,SAAUR,EAAKQ,UAGjB9I,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQM,UAAU,CAACoC,GAC1B,MAAO,GAAkB,wBAAd2B,EAAKC,KAAgC,CAC9CvI,KAAKH,IAAI,eAET,MAAMmB,EAAoB,CACxBkE,KAAOoD,EAAKtH,OAAoB,cAChCmE,QAAUmD,EAAKW,mBAAgC,6BAC/CjD,QAASsC,GAGXtI,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQxD,EACvB,GAIJqB,OAAO6G,iBAAiB,UAAWlJ,KAAKoE,gBAC1C,CAKQ,GAAAvE,IAAOH,GACTM,KAAKiE,QAAQtE,OACfC,QAAQC,IAAI,qBAAsBH,EAEtC,ECpaF,MAAMyJ,EAAU,cAKHC,EAYX,WAAArJ,CAAoBN,EAA6B,IAPzCO,KAAAqJ,cAAqC,KACrCrJ,KAAAsJ,SAAmB,0BACnBtJ,KAAAuJ,iBAAsC,GAQ5CvJ,KAAKP,OLbH,SAAsBA,GAC1B,MAAO,CACLE,MAAOF,EAAOE,QAAS,EAE3B,CKSkB6J,CAAY/J,GAG1BO,KAAKyJ,aAAe,IAAI3J,EACxBE,KAAK0J,aAAe,IAAIvI,EACxBnB,KAAK2J,gBAAiB,EAEtBnK,EAASQ,KAAKP,OAAQ,gCAAiC,CAAEmK,QAAST,IAGlEnJ,KAAK6J,qBACP,CAMQ,mBAAAA,GACU7F,EAAaiC,iBAC1ByC,IACClJ,EAASQ,KAAKP,OAAQ,mCAAoCiJ,GAE1D1I,KAAKyJ,aAAa3I,KAAK,UAAW4H,IAEnC1H,IACCxB,EAASQ,KAAKP,OAAQ,iCAAkCuB,GAExDhB,KAAKyJ,aAAa3I,KAAK,QAASE,MAKlCxB,EAASQ,KAAKP,OAAQ,6CAE1B,CAYA,aAAOqK,CAAOrK,GACZ,OAAO,IAAI2J,EAAa3J,EAC1B,CA0BA,UAAMqI,CAAK7D,GAET,IAAKjE,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,wDAM1C,GAHAvK,EAASQ,KAAKP,OAAQ,uBAGjBwE,EAAQ+F,OAAkC,iBAAlB/F,EAAQ+F,MACnC,MAAMhK,KAAK+J,YAAY,kBAAmB,iGAG5C,IAAK9F,EAAQM,WAA0C,mBAAtBN,EAAQM,UACvC,MAAMvE,KAAK+J,YAAY,kBAAmB,kCAI5C,GAAI/J,KAAKqB,SAEP,YADA7B,EAASQ,KAAKP,OAAQ,8BAKxBO,KAAKsJ,SAAWrF,EAAQK,SAAW,0BAInCtE,KAAKqJ,cAAgB,IAAIrF,EAAa,CACpCM,QAAStE,KAAKsJ,SACd/E,UAAYmE,IACVlJ,EAASQ,KAAKP,OAAQ,iBAAkBiJ,GACxC1I,KAAKiK,mBAAmBvB,IAE1BlE,QAAUxD,IACRxB,EAASQ,KAAKP,OAAQ,eAAgBuB,GACtChB,KAAKkK,iBAAiBlJ,IAExByD,SAAU,KACRjF,EAASQ,KAAKP,OAAQ,kCACtBO,KAAKmK,qBAEPzF,WAAY,IACZC,YAAa,IACbhF,MAAOK,KAAKP,OAAOE,QAIrBK,KAAK0J,aAAahI,SAAS,CACzBL,QAAQ,EACRL,MAAO,KACPM,aAAc2C,EAAQ+F,QAIxBhK,KAAKoK,sBAAsBnG,GAG3B,MAAMoG,EAAa,GAAGrK,KAAKsJ,sCAAsCgB,mBAAmBrG,EAAQ+F,SAE5FxK,EAASQ,KAAKP,OAAQ,eAAgB4K,GAGtCrK,KAAKqJ,cAActE,WAAWsF,GAG1BpG,EAAQsG,SACVtG,EAAQsG,QAAQ,iBAAkB,CAChC9E,WAAW,IAAIC,MAAOqB,gBAI1BvH,EAASQ,KAAKP,OAAQ,iCACxB,CAKA,KAAAwI,GAEE,IAAKjI,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,yDAG1CvK,EAASQ,KAAKP,OAAQ,sBAGlBO,KAAKqJ,gBACPrJ,KAAKqJ,cAAcpB,QACnBjI,KAAKqJ,cAAgB,MAIvBrJ,KAAKuJ,iBAAiBxI,QAAQyJ,GAAWA,KACzCxK,KAAKuJ,iBAAmB,GAGxBvJ,KAAK0J,aAAahI,SAAS,CAAEL,QAAQ,IAErCrB,KAAKyJ,aAAa3I,KAAK,QACzB,CAKA,OAAA2J,GACOzK,KAAK2J,iBAKVnK,EAASQ,KAAKP,OAAQ,2BAGlBO,KAAKqJ,gBACPrJ,KAAKqJ,cAAcpB,QACnBjI,KAAKqJ,cAAgB,MAInBrJ,KAAK0J,aAAajJ,IAAI,WACxBT,KAAK0J,aAAahI,SAAS,CAAEL,QAAQ,IAIvCrB,KAAKyJ,aAAaxI,qBAClBjB,KAAK0J,aAAa3H,iBAClB/B,KAAK2J,gBAAiB,EACxB,CAKA,EAAAxJ,CAAGC,EAAeC,GAEhB,IAAKL,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,sDAG1C,OAAO/J,KAAKyJ,aAAatJ,GAAGC,EAAOC,EACrC,CAKA,GAAAM,CAAIP,EAAeC,GAEjB,IAAKL,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,uDAG1C/J,KAAKyJ,aAAa9I,IAAIP,EAAOC,EAC/B,CAKA,MAAAgB,GAEE,IAAKrB,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,0DAG1C,OAAO/J,KAAK0J,aAAajJ,IAAI,SAC/B,CAKA,UAAAiK,GACE,OAAOvB,CACT,CAOQ,cAAAwB,GACN3K,KAAKqJ,cAAgB,IACvB,CAKQ,kBAAAY,CAAmBvB,GACzB1I,KAAK2K,iBACL3K,KAAKyJ,aAAa3I,KAAK,UAAW4H,EACpC,CAKQ,gBAAAwB,CAAiBlJ,GACvBhB,KAAK2K,iBACL3K,KAAK0J,aAAahI,SAAS,CAAEV,UAC7BhB,KAAKyJ,aAAa3I,KAAK,QAASE,EAClC,CAKQ,iBAAAmJ,GACNnK,KAAK2K,iBACL3K,KAAKyJ,aAAa3I,KAAK,OACzB,CAKQ,qBAAAsJ,CAAsBnG,GAExBA,EAAQM,WACVvE,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,UAAYuI,IAC/BzE,EAAQM,UAAUmE,GAClB1I,KAAKiI,WAMPhE,EAAQ2G,QACV5K,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,OAAQ,KAC3B8D,EAAQ2G,SACR5K,KAAKiI,WAMXjI,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,QAAUa,IACzBiD,EAAQO,SACVP,EAAQO,QAAQxD,GAElBhB,KAAKiI,WAKLhE,EAAQsG,SACVvK,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,QAAS,CAAC0K,EAAmB/B,KAChD7E,EAAQsG,QAASM,EAAW/B,KAIpC,CAKQ,WAAAiB,CAAY7E,EAAcC,EAAiBa,GACjD,MAAMhF,EAAQ,IAAI8D,MAAMK,GAGxB,OAFCnE,EAAckE,KAAOA,EACrBlE,EAAcgF,QAAUA,EAClBhF,CACT"}
1	+ {"version":3,"file":"alter-connect.cjs.js","sources":["../src/core/config.ts","../src/core/events.ts","../src/state/manager.ts","../src/utils/mobile.ts","../src/oauth/handler.ts","../src/core/alter-connect.ts"],"sourcesContent":["/*\n Configuration validation and management\n /\n\nimport type { AlterConnectConfig } from '../types';\n\n/\n Internal config used by the SDK\n /\ninterface FullConfig {\n debug: boolean;\n}\n\n/\n Validate configuration\n /\nexport function validateConfig(_config: AlterConnectConfig): void {\n // Config only has `debug` — nothing to validate\n}\n\n/\n Merge user config with defaults\n /\nexport function mergeConfig(config: AlterConnectConfig): FullConfig {\n return {\n debug: config.debug ?? false,\n };\n}\n\n/\n Debug logging helper\n /\nexport function debugLog(config: FullConfig, ...args: any[]): void {\n if (config.debug) {\n console.log('[Alter Connect]', ...args);\n }\n}\n\n/\n Export FullConfig type for use in other modules\n /\nexport type { FullConfig };\n","/\n Simple event emitter for SDK events\n /\n\ntype EventHandler = (...args: any[]) => void;\n\n/\n Event emitter for SDK internal events\n /\nexport class EventEmitter {\n private events: Map<string, Set<EventHandler>>;\n\n constructor() {\n this.events = new Map();\n }\n\n /\n Register an event listener\n * @returns Unsubscribe function\n /\n on(event: string, handler: EventHandler): () => void {\n if (!this.events.has(event)) {\n this.events.set(event, new Set());\n }\n\n this.events.get(event)!.add(handler);\n\n // Return unsubscribe function\n return () => this.off(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: EventHandler): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.delete(handler);\n }\n }\n\n /\n Emit an event\n /\n emit(event: string, ...args: any[]): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.forEach(handler => {\n try {\n handler(...args);\n } catch (error) {\n console.error(`[Alter Connect] Error in event handler for '${event}':`, error);\n }\n });\n }\n }\n\n /\n Remove all listeners for an event, or all listeners if no event specified\n /\n removeAllListeners(event?: string): void {\n if (event) {\n this.events.delete(event);\n } else {\n this.events.clear();\n }\n }\n}\n","/\n State management for SDK\n /\n\nimport type { AlterError } from '../types';\n\n/\n SDK internal state\n /\nexport interface SDKState {\n isOpen: boolean;\n sessionToken: string \| null;\n error: AlterError \| null;\n}\n\ntype StateListener = (state: SDKState) => void;\n\n/\n Simple state manager\n /\nexport class StateManager {\n private state: SDKState;\n private listeners: Set<StateListener>;\n\n constructor() {\n this.state = {\n isOpen: false,\n sessionToken: null,\n error: null,\n };\n this.listeners = new Set();\n }\n\n /\n Get current state\n /\n getState(): Readonly<SDKState> {\n return { ...this.state };\n }\n\n /\n Get a specific state value\n /\n get<K extends keyof SDKState>(key: K): SDKState[K] {\n return this.state[key];\n }\n\n /\n Update state\n /\n setState(updates: Partial<SDKState>): void {\n this.state = { ...this.state, ...updates };\n this.notifyListeners();\n }\n\n /\n Subscribe to state changes\n /\n subscribe(listener: StateListener): () => void {\n this.listeners.add(listener);\n\n // Return unsubscribe function\n return () => {\n this.listeners.delete(listener);\n };\n }\n\n /\n Clear all listeners\n /\n clearListeners(): void {\n this.listeners.clear();\n }\n\n /\n Notify all listeners of state change\n /\n private notifyListeners(): void {\n const currentState = this.getState();\n this.listeners.forEach(listener => {\n try {\n listener(currentState);\n } catch (error) {\n console.error('[Alter Connect] Error in state listener:', error);\n }\n });\n }\n}\n","/\n Mobile device detection and responsive utilities\n /\n\n/\n Detect if the current device is a mobile device\n /\nexport function isMobileDevice(): boolean {\n const userAgent = navigator.userAgent \|\| navigator.vendor \|\| (window as any).opera;\n\n // Check for mobile patterns\n const mobileRegex = /Android\|webOS\|iPhone\|iPad\|iPod\|BlackBerry\|IEMobile\|Opera Mini/i;\n const isMobileUA = mobileRegex.test(userAgent);\n\n // Check for touch capability\n const hasTouchScreen = ('ontouchstart' in window) \|\|\n (navigator.maxTouchPoints > 0) \|\|\n ((navigator as any).msMaxTouchPoints > 0);\n\n // Check screen size\n const isSmallScreen = window.innerWidth <= 768;\n\n return isMobileUA \|\| (hasTouchScreen && isSmallScreen);\n}\n\n/\n Detect if the device is specifically a phone (vs tablet)\n /\nexport function isPhoneDevice(): boolean {\n return isMobileDevice() && window.innerWidth <= 480;\n}\n\n/\n Detect if the device is a tablet\n /\nexport function isTabletDevice(): boolean {\n return isMobileDevice() && window.innerWidth > 480 && window.innerWidth <= 1024;\n}\n\n/\n Get the device type\n /\nexport function getDeviceType(): 'desktop' \| 'tablet' \| 'phone' {\n if (isPhoneDevice()) return 'phone';\n if (isTabletDevice()) return 'tablet';\n return 'desktop';\n}\n\n/\n Check if we should use redirect flow instead of popup\n \n Popup windows don't work well on mobile:\n * - Browsers often block them\n * - They open as full-screen tabs\n * - Users lose context of parent app\n /\nexport function shouldUseRedirectFlow(): boolean {\n const deviceType = getDeviceType();\n\n // Always use redirect for phones\n if (deviceType === 'phone') return true;\n\n // Use redirect for tablets in portrait mode (popups are cramped)\n if (deviceType === 'tablet' && window.innerHeight > window.innerWidth) {\n return true;\n }\n\n // Use popup for desktop and tablets in landscape\n return false;\n}\n","/\n OAuth popup and redirect handler\n /\n\nimport type { Grant, AlterError } from '../types';\nimport { shouldUseRedirectFlow } from '../utils/mobile';\n\ninterface OAuthHandlerOptions {\n baseURL: string;\n onSuccess: (grants: Grant[]) => void;\n onError: (error: AlterError) => void;\n onCancel: () => void;\n popupWidth?: number;\n popupHeight?: number;\n debug?: boolean;\n /* Expected origin for postMessage validation. Derived from the OAuth URL. /\n expectedOrigin?: string;\n}\n\n/\n Parse an operation string into a valid Grant['operation'] value\n /\nfunction parseOperation(value: string \| null \| undefined): Grant['operation'] {\n if (value === 'reauth') return 'reauth';\n return 'creation';\n}\n\n/\n Parse a status string into a valid Grant['status'] value\n /\nfunction parseStatus(value: string \| null \| undefined): Grant['status'] {\n if (value === 'pending') return 'pending';\n if (value === 'error') return 'error';\n return 'active';\n}\n\n/\n Clean up OAuth redirect state and restore the original URL\n /\nfunction cleanupRedirectState(returnUrl: string): void {\n sessionStorage.removeItem('alter_oauth_state');\n try {\n const cleanUrl = new URL(returnUrl);\n window.history.replaceState({}, document.title, cleanUrl.pathname + cleanUrl.search + cleanUrl.hash);\n } catch {\n // If returnUrl is malformed, just remove query params from current URL\n window.history.replaceState({}, document.title, window.location.pathname);\n }\n}\n\n/\n Handles OAuth flow in popup window\n /\nexport class OAuthHandler {\n private popup: Window \| null = null;\n private pollInterval: number \| null = null;\n private messageListener: ((event: MessageEvent) => void) \| null = null;\n private options: Required<OAuthHandlerOptions>;\n private expectedOrigin: string;\n private settled: boolean = false;\n\n constructor(options: OAuthHandlerOptions) {\n this.options = {\n baseURL: options.baseURL,\n onSuccess: options.onSuccess,\n onError: options.onError,\n onCancel: options.onCancel,\n popupWidth: options.popupWidth \|\| 500,\n popupHeight: options.popupHeight \|\| 700,\n debug: options.debug \|\| false,\n expectedOrigin: options.expectedOrigin \|\| '',\n };\n\n // Extract origin from baseURL for postMessage validation\n try {\n this.expectedOrigin = new URL(options.baseURL).origin;\n } catch {\n throw new Error(\n `Invalid baseURL: \"${options.baseURL}\". Must be a full URL with protocol (e.g., \"https://api.alterauth.com\").`\n );\n }\n }\n\n /\n Start OAuth flow (automatically chooses popup or redirect based on device)\n /\n startOAuth(url: string): void {\n // Derive expected origin from the OAuth URL if not explicitly set.\n // SECURITY: Fail-closed — if we can't determine origin, abort the flow.\n if (!this.options.expectedOrigin) {\n try {\n const parsed = new URL(url);\n this.options.expectedOrigin = parsed.origin;\n this.log('Derived expected origin:', this.options.expectedOrigin);\n } catch {\n this.log('Failed to parse OAuth URL for origin validation:', url);\n this.options.onError({\n code: 'invalid_oauth_url',\n message: 'Failed to determine origin from OAuth URL. Cannot proceed securely.',\n });\n return;\n }\n }\n\n if (shouldUseRedirectFlow()) {\n this.log('Using redirect flow for mobile device');\n this.startRedirectFlow(url);\n } else {\n this.log('Using popup flow for desktop');\n this.openPopup(url);\n }\n }\n\n /\n Start OAuth redirect flow (for mobile)\n * Saves state and redirects the entire page\n /\n private startRedirectFlow(url: string): void {\n this.log('Starting redirect flow:', url);\n\n // Save state to sessionStorage to restore after redirect\n const state = {\n timestamp: Date.now(),\n returnUrl: window.location.href,\n };\n\n try {\n sessionStorage.setItem('alter_oauth_state', JSON.stringify(state));\n } catch (error) {\n this.log('Failed to save state:', error);\n this.options.onError({\n code: 'redirect_error',\n message: 'Failed to start OAuth flow: could not save session state',\n details: { error },\n });\n return;\n }\n\n // Redirect to OAuth URL (full page redirect)\n window.location.href = url;\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * Call this on page load to detect OAuth return\n \n @returns true if OAuth return was detected and handled\n /\n static checkOAuthReturn(\n onSuccess: (grants: Grant[]) => void,\n onError: (error: AlterError) => void\n ): boolean {\n // Check if we have OAuth state saved\n const stateJson = sessionStorage.getItem('alter_oauth_state');\n if (!stateJson) {\n return false;\n }\n\n try {\n const state = JSON.parse(stateJson);\n\n // Check if this is a valid OAuth return (within 5 minutes)\n const elapsed = Date.now() - state.timestamp;\n if (elapsed > 5 60 * 1000) {\n // Stale state, clean up\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n\n // Check URL for OAuth callback parameters\n const urlParams = new URLSearchParams(window.location.search);\n const success = urlParams.get('alter_connect_success');\n const error = urlParams.get('alter_connect_error');\n\n if (success === 'true') {\n // Validate required fields\n const grantId = urlParams.get('grant_id');\n const provider = urlParams.get('provider');\n const accountIdentifier = urlParams.get('account_identifier');\n\n if (!grantId \|\| !provider \|\| !accountIdentifier) {\n cleanupRedirectState(state.returnUrl);\n onError({\n code: 'invalid_response',\n message: 'OAuth redirect returned incomplete grant data',\n });\n return true;\n }\n\n const grant: Grant = {\n grant_id: grantId,\n provider: provider,\n provider_name: urlParams.get('provider_name') \|\| provider,\n account_identifier: accountIdentifier,\n timestamp: urlParams.get('timestamp') \|\| new Date().toISOString(),\n operation: parseOperation(urlParams.get('operation')),\n scopes: urlParams.get('scopes')?.split(',') \|\| [],\n status: parseStatus(urlParams.get('status')),\n };\n\n cleanupRedirectState(state.returnUrl);\n onSuccess([grant]); // Wrap in array for unified interface\n return true;\n }\n\n if (error) {\n const alterError: AlterError = {\n code: urlParams.get('error_code') \|\| 'oauth_error',\n message: urlParams.get('error_description') \|\| 'OAuth authorization failed',\n };\n\n cleanupRedirectState(state.returnUrl);\n onError(alterError);\n return true;\n }\n\n return false;\n } catch (err) {\n console.error('[OAuth Handler] Failed to check OAuth return:', err);\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n }\n\n /*\n Open OAuth popup (for desktop)\n /\n openPopup(url: string): void {\n // Calculate popup position (centered)\n const left = window.screenX + (window.outerWidth - this.options.popupWidth) / 2;\n const top = window.screenY + (window.outerHeight - this.options.popupHeight) / 2;\n\n const features = [\n `width=${this.options.popupWidth}`,\n `height=${this.options.popupHeight}`,\n `left=${left}`,\n `top=${top}`,\n 'resizable=yes',\n 'scrollbars=yes',\n 'status=yes',\n ].join(',');\n\n this.log('Opening OAuth popup:', url);\n\n // Open popup\n this.popup = window.open(url, 'alter_oauth_popup', features);\n\n if (!this.popup) {\n this.options.onError({\n code: 'popup_blocked',\n message: 'Popup was blocked by browser. Please allow popups for this site.',\n });\n return;\n }\n\n // Start monitoring popup\n this.startPolling();\n this.setupMessageListener();\n }\n\n /\n Close popup and clean up\n /\n close(): void {\n this.log('Closing OAuth handler');\n\n // Close popup\n if (this.popup && !this.popup.closed) {\n this.popup.close();\n }\n this.popup = null;\n\n // Stop polling\n if (this.pollInterval !== null) {\n clearInterval(this.pollInterval);\n this.pollInterval = null;\n }\n\n // Remove message listener\n if (this.messageListener) {\n window.removeEventListener('message', this.messageListener);\n this.messageListener = null;\n }\n }\n\n /\n Poll to detect when popup is closed\n /\n private startPolling(): void {\n this.pollInterval = window.setInterval(() => {\n if (this.settled) return;\n if (!this.popup \|\| this.popup.closed) {\n this.log('Popup closed by user');\n this.settled = true;\n this.close();\n this.options.onCancel();\n }\n }, 500);\n }\n\n /\n Listen for postMessage from OAuth callback page\n /\n private setupMessageListener(): void {\n this.messageListener = (event: MessageEvent) => {\n // Ignore if already settled (prevents race with polling)\n if (this.settled) return;\n\n // Validate origin against the expected backend origin\n if (event.origin !== this.expectedOrigin) {\n this.log('Rejected message from unexpected origin:', event.origin, '(expected:', this.expectedOrigin + ')');\n return;\n }\n\n this.log('Received message from', event.origin);\n\n const data = event.data;\n\n // Check message type\n if (data && typeof data === 'object') {\n if (data.type === 'alter_connect_success') {\n this.log('OAuth success');\n\n // Accept both grants array and legacy connections array\n const rawGrants = Array.isArray(data.grants) ? data.grants : null;\n if (rawGrants) {\n this.log('Multi-provider success:', rawGrants.length, 'grants');\n const grants: Grant[] = [];\n for (const item of rawGrants) {\n const grantId = item.grant_id as string \| undefined;\n if (!grantId \|\| !item.provider) {\n this.log('Skipping invalid grant item:', item);\n continue;\n }\n grants.push({\n grant_id: grantId,\n provider: item.provider as string,\n provider_name: (item.provider_name as string) \|\| (item.provider as string),\n account_identifier: (item.account_identifier as string) \|\| '',\n timestamp: (item.timestamp as string) \|\| new Date().toISOString(),\n operation: parseOperation(item.operation as string \| undefined),\n scopes: Array.isArray(item.scopes) ? item.scopes as string[] : [],\n status: parseStatus(item.status as string \| undefined),\n metadata: item.metadata as Grant['metadata'],\n });\n }\n\n if (grants.length === 0) {\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned empty grants array',\n });\n return;\n }\n\n this.settled = true;\n this.close();\n this.options.onSuccess(grants);\n return;\n }\n\n // No valid grants array found\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned success without grants array',\n });\n } else if (data.type === 'alter_connect_error') {\n this.log('OAuth error');\n\n const error: AlterError = {\n code: (data.error as string) \|\| 'oauth_error',\n message: (data.error_description as string) \|\| 'OAuth authorization failed',\n details: data as Record<string, unknown>,\n };\n\n this.settled = true;\n this.close();\n this.options.onError(error);\n }\n }\n };\n\n window.addEventListener('message', this.messageListener);\n }\n\n /\n Log debug message\n /\n private log(...args: unknown[]): void {\n if (this.options.debug) {\n console.log('[OAuth Handler]', ...args);\n }\n }\n}\n","/\n Main AlterConnect SDK class\n \n Opens the backend-served Connect UI in a popup. The backend handles\n * provider selection, branding, and OAuth — then sends the result back via postMessage.\n /\n\nimport type { AlterConnectConfig, OpenOptions, Grant, AlterError } from '../types';\nimport { validateConfig, mergeConfig, debugLog, type FullConfig } from './config';\nimport { EventEmitter } from './events';\nimport { StateManager } from '../state/manager';\nimport { OAuthHandler } from '../oauth/handler';\n\n/\n SDK version\n /\nconst VERSION = '0.2.0';\n\n/\n Main SDK class\n /\nexport class AlterConnect {\n private config: FullConfig;\n private eventEmitter: EventEmitter;\n private stateManager: StateManager;\n private _isInitialized: boolean;\n private _oauthHandler: OAuthHandler \| null = null;\n private _baseURL: string = 'https://api.alterauth.com'; // Default, overridden in open()\n private _perOpenCleanups: Array<() => void> = [];\n\n /\n Private constructor (use AlterConnect.create() instead)\n /\n private constructor(config: AlterConnectConfig = {}) {\n // Validate and merge config\n validateConfig(config);\n this.config = mergeConfig(config);\n\n // Initialize components\n this.eventEmitter = new EventEmitter();\n this.stateManager = new StateManager();\n this._isInitialized = true;\n\n debugLog(this.config, 'Alter Connect SDK initialized', { version: VERSION });\n\n // Check if returning from OAuth redirect (mobile flow)\n this.checkRedirectReturn();\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * This runs automatically on SDK initialization\n /\n private checkRedirectReturn(): void {\n const handled = OAuthHandler.checkOAuthReturn(\n (grants: Grant[]) => {\n debugLog(this.config, 'OAuth redirect return - success:', grants);\n // Emit success event (will be picked up by event handlers if SDK was re-initialized)\n this.eventEmitter.emit('success', grants);\n },\n (error: AlterError) => {\n debugLog(this.config, 'OAuth redirect return - error:', error);\n // Emit error event\n this.eventEmitter.emit('error', error);\n }\n );\n\n if (handled) {\n debugLog(this.config, 'OAuth redirect return detected and handled');\n }\n }\n\n /\n Create a new AlterConnect instance\n \n @param config Optional configuration\n * @returns AlterConnect instance\n \n @example\n * const alterConnect = AlterConnect.create();\n * const alterConnect = AlterConnect.create({ debug: true });\n /\n static create(config?: AlterConnectConfig): AlterConnect {\n return new AlterConnect(config);\n }\n\n /\n Open the Connect UI in a popup window\n \n Opens the backend-served Connect UI at {baseURL}/oauth/connect#session={token}.\n * The backend handles provider selection, branding, and OAuth flow.\n * On success, the backend sends a postMessage back to this window.\n \n @param options Configuration including the session token from your backend\n \n @example\n * // 1. Get session token from YOUR backend\n * const { session_token } = await fetch('/api/alter/create-session').then(r => r.json());\n \n // 2. Open Connect UI\n * await alterConnect.open({\n * token: session_token,\n * onSuccess: (grants) => {\n * console.log('Connected!', grants);\n * },\n * onError: (error) => {\n * console.error('Failed:', error);\n * }\n * });\n /\n async open(options: OpenOptions): Promise<void> {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call open() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Opening Connect UI');\n\n // Validate required options\n if (!options.token \|\| typeof options.token !== 'string') {\n throw this.createError('invalid_options', 'Session token is required. Create one from your backend using POST /sdk/oauth/connect/session');\n }\n\n if (!options.onSuccess \|\| typeof options.onSuccess !== 'function') {\n throw this.createError('invalid_options', 'onSuccess callback is required');\n }\n\n // Check if already open\n if (this.isOpen()) {\n debugLog(this.config, 'Connect UI is already open');\n return;\n }\n\n // Store baseURL (from backend session response, or default to production)\n this._baseURL = options.baseURL \|\| 'https://api.alterauth.com';\n\n // Create OAuth handler first — this validates baseURL and throws on invalid input.\n // We do this BEFORE setting isOpen to avoid leaving the SDK in a broken state.\n this._oauthHandler = new OAuthHandler({\n baseURL: this._baseURL,\n onSuccess: (grants: Grant[]) => {\n debugLog(this.config, 'OAuth success:', grants);\n this.handleOAuthSuccess(grants);\n },\n onError: (error: AlterError) => {\n debugLog(this.config, 'OAuth error:', error);\n this.handleOAuthError(error);\n },\n onCancel: () => {\n debugLog(this.config, 'OAuth cancelled (popup closed)');\n this.handleOAuthCancel();\n },\n popupWidth: 500,\n popupHeight: 700,\n debug: this.config.debug,\n });\n\n // Update state (after handler creation succeeds)\n this.stateManager.setState({\n isOpen: true,\n error: null,\n sessionToken: options.token,\n });\n\n // Register event handlers\n this.registerEventHandlers(options);\n\n // Build the Connect UI URL — the backend serves the full UI\n const connectURL = `${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(options.token)}`;\n\n debugLog(this.config, 'Connect URL:', connectURL);\n\n // Open the Connect UI (popup or redirect depending on device)\n this._oauthHandler.startOAuth(connectURL);\n\n // Emit analytics event\n if (options.onEvent) {\n options.onEvent('connect_opened', {\n timestamp: new Date().toISOString(),\n });\n }\n\n debugLog(this.config, 'Connect UI opened successfully');\n }\n\n /\n Close the Connect UI\n /\n close(): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call close() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Closing Connect UI');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Remove only per-open handlers (preserves global handlers from on())\n this._perOpenCleanups.forEach(cleanup => cleanup());\n this._perOpenCleanups = [];\n\n // Update state\n this.stateManager.setState({ isOpen: false });\n\n this.eventEmitter.emit('close');\n }\n\n /\n Destroy the SDK instance and clean up resources\n /\n destroy(): void {\n if (!this._isInitialized) {\n // Already destroyed, silently return\n return;\n }\n\n debugLog(this.config, 'Destroying SDK instance');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Update state\n if (this.stateManager.get('isOpen')) {\n this.stateManager.setState({ isOpen: false });\n }\n\n // Clean up resources\n this.eventEmitter.removeAllListeners();\n this.stateManager.clearListeners();\n this._isInitialized = false;\n }\n\n /\n Register an event listener\n /\n on(event: string, handler: (...args: any[]) => void): () => void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call on() - SDK instance has been destroyed');\n }\n\n return this.eventEmitter.on(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: (...args: any[]) => void): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call off() - SDK instance has been destroyed');\n }\n\n this.eventEmitter.off(event, handler);\n }\n\n /\n Check if Connect UI is open\n /\n isOpen(): boolean {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call isOpen() - SDK instance has been destroyed');\n }\n\n return this.stateManager.get('isOpen');\n }\n\n /\n Get SDK version\n /\n getVersion(): string {\n return VERSION;\n }\n\n /\n Clean up OAuth handler reference after a flow completes.\n * The OAuthHandler.close() is already called internally by the handler\n * before invoking callbacks, so we only need to null the reference here.\n /\n private cleanupHandler(): void {\n this._oauthHandler = null;\n }\n\n /\n Handle OAuth success\n /\n private handleOAuthSuccess(grants: Grant[]): void {\n this.cleanupHandler();\n this.eventEmitter.emit('success', grants);\n }\n\n /\n Handle OAuth error\n /\n private handleOAuthError(error: AlterError): void {\n this.cleanupHandler();\n this.stateManager.setState({ error });\n this.eventEmitter.emit('error', error);\n }\n\n /\n Handle OAuth cancellation (user closed popup)\n /\n private handleOAuthCancel(): void {\n this.cleanupHandler();\n this.eventEmitter.emit('exit');\n }\n\n /\n Register event handlers from OpenOptions\n /\n private registerEventHandlers(options: OpenOptions): void {\n // Success handler\n if (options.onSuccess) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('success', (grants: Grant[]) => {\n options.onSuccess(grants);\n this.close();\n })\n );\n }\n\n // Exit handler\n if (options.onExit) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('exit', () => {\n options.onExit!();\n this.close();\n })\n );\n }\n\n // Error handler — always registered to ensure close() is called\n this._perOpenCleanups.push(\n this.eventEmitter.on('error', (error: AlterError) => {\n if (options.onError) {\n options.onError(error);\n }\n this.close();\n })\n );\n\n // Event handler (analytics)\n if (options.onEvent) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('event', (eventName: string, metadata: any) => {\n options.onEvent!(eventName, metadata);\n })\n );\n }\n }\n\n /\n Create an AlterError object\n */\n private createError(code: string, message: string, details?: Record<string, any>): Error {\n const error = new Error(message);\n (error as any).code = code;\n (error as any).details = details;\n return error;\n }\n}\n"],"names":["debugLog","config","args","debug","console","log","EventEmitter","constructor","this","events","Map","on","event","handler","has","set","Set","get","add","off","handlers","delete","emit","forEach","error","removeAllListeners","clear","StateManager","state","isOpen","sessionToken","listeners","getState","key","setState","updates","notifyListeners","subscribe","listener","clearListeners","currentState","isMobileDevice","userAgent","navigator","vendor","window","opera","isMobileUA","test","hasTouchScreen","maxTouchPoints","msMaxTouchPoints","isSmallScreen","innerWidth","getDeviceType","parseOperation","value","parseStatus","cleanupRedirectState","returnUrl","sessionStorage","removeItem","cleanUrl","URL","history","replaceState","document","title","pathname","search","hash","location","OAuthHandler","options","popup","pollInterval","messageListener","settled","baseURL","onSuccess","onError","onCancel","popupWidth","popupHeight","expectedOrigin","origin","Error","startOAuth","url","parsed","code","message","deviceType","innerHeight","shouldUseRedirectFlow","openPopup","startRedirectFlow","timestamp","Date","now","href","setItem","JSON","stringify","details","checkOAuthReturn","stateJson","getItem","parse","urlParams","URLSearchParams","success","grantId","provider","accountIdentifier","grant","grant_id","provider_name","account_identifier","toISOString","operation","scopes","split","status","alterError","err","left","screenX","outerWidth","top","screenY","outerHeight","features","join","open","startPolling","setupMessageListener","close","closed","clearInterval","removeEventListener","setInterval","data","type","rawGrants","Array","isArray","grants","length","item","push","metadata","error_description","addEventListener","VERSION","AlterConnect","_oauthHandler","_baseURL","_perOpenCleanups","mergeConfig","eventEmitter","stateManager","_isInitialized","version","checkRedirectReturn","create","createError","token","handleOAuthSuccess","handleOAuthError","handleOAuthCancel","registerEventHandlers","connectURL","encodeURIComponent","onEvent","cleanup","destroy","getVersion","cleanupHandler","onExit","eventName"],"mappings":"sBAgCgBA,EAASC,KAAuBC,GAC1CD,EAAOE,OACTC,QAAQC,IAAI,qBAAsBH,EAEtC,8DC3BaI,EAGX,WAAAC,GACEC,KAAKC,OAAS,IAAIC,GACpB,CAMA,EAAAC,CAAGC,EAAeC,GAQhB,OAPKL,KAAKC,OAAOK,IAAIF,IACnBJ,KAAKC,OAAOM,IAAIH,EAAO,IAAII,KAG7BR,KAAKC,OAAOQ,IAAIL,GAAQM,IAAIL,GAGrB,IAAML,KAAKW,IAAIP,EAAOC,EAC/B,CAKA,GAAAM,CAAIP,EAAeC,GACjB,MAAMO,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASC,OAAOR,EAEpB,CAKA,IAAAS,CAAKV,KAAkBV,GACrB,MAAMkB,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASG,QAAQV,IACf,IACEA,KAAWX,EACb,CAAE,MAAOsB,GACPpB,QAAQoB,MAAM,+CAA+CZ,MAAWY,EAC1E,GAGN,CAKA,kBAAAC,CAAmBb,GACbA,EACFJ,KAAKC,OAAOY,OAAOT,GAEnBJ,KAAKC,OAAOiB,OAEhB,QC9CWC,EAIX,WAAApB,GACEC,KAAKoB,MAAQ,CACXC,QAAQ,EACRC,aAAc,KACdN,MAAO,MAEThB,KAAKuB,UAAY,IAAIf,GACvB,CAKA,QAAAgB,GACE,MAAO,IAAKxB,KAAKoB,MACnB,CAKA,GAAAX,CAA8BgB,GAC5B,OAAOzB,KAAKoB,MAAMK,EACpB,CAKA,QAAAC,CAASC,GACP3B,KAAKoB,MAAQ,IAAKpB,KAAKoB,SAAUO,GACjC3B,KAAK4B,iBACP,CAKA,SAAAC,CAAUC,GAIR,OAHA9B,KAAKuB,UAAUb,IAAIoB,GAGZ,KACL9B,KAAKuB,UAAUV,OAAOiB,GAE1B,CAKA,cAAAC,GACE/B,KAAKuB,UAAUL,OACjB,CAKQ,eAAAU,GACN,MAAMI,EAAehC,KAAKwB,WAC1BxB,KAAKuB,UAAUR,QAAQe,IACrB,IACEA,EAASE,EACX,CAAE,MAAOhB,GACPpB,QAAQoB,MAAM,2CAA4CA,EAC5D,GAEJ,WC/EciB,IACd,MAAMC,EAAYC,UAAUD,WAAaC,UAAUC,QAAWC,OAAeC,MAIvEC,EADc,iEACWC,KAAKN,GAG9BO,EAAkB,iBAAkBJ,QACnBF,UAAUO,eAAiB,GAC1BP,UAAkBQ,iBAAmB,EAGvDC,EAAgBP,OAAOQ,YAAc,IAE3C,OAAON,GAAeE,GAAkBG,CAC1C,UAmBgBE,IACd,OAdOb,KAAoBI,OAAOQ,YAAc,IAcpB,QAPrBZ,KAAoBI,OAAOQ,WAAa,KAAOR,OAAOQ,YAAc,KAQ9C,SACtB,SACT,CCxBA,SAASE,EAAeC,GACtB,MAAc,WAAVA,EAA2B,SACxB,UACT,CAKA,SAASC,EAAYD,GACnB,MAAc,YAAVA,EAA4B,UAClB,UAAVA,EAA0B,QACvB,QACT,CAKA,SAASE,EAAqBC,GAC5BC,eAAeC,WAAW,qBAC1B,IACE,MAAMC,EAAW,IAAIC,IAAIJ,GACzBd,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOL,EAASM,SAAWN,EAASO,OAASP,EAASQ,KACjG,CAAE,MAEAzB,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOtB,OAAO0B,SAASH,SAClE,CACF,OAKaI,EAQX,WAAAjE,CAAYkE,GAPJjE,KAAAkE,MAAuB,KACvBlE,KAAAmE,aAA8B,KAC9BnE,KAAAoE,gBAA0D,KAG1DpE,KAAAqE,SAAmB,EAGzBrE,KAAKiE,QAAU,CACbK,QAASL,EAAQK,QACjBC,UAAWN,EAAQM,UACnBC,QAASP,EAAQO,QACjBC,SAAUR,EAAQQ,SAClBC,WAAYT,EAAQS,YAAc,IAClCC,YAAaV,EAAQU,aAAe,IACpChF,MAAOsE,EAAQtE,QAAS,EACxBiF,eAAgBX,EAAQW,gBAAkB,IAI5C,IACE5E,KAAK4E,eAAiB,IAAIrB,IAAIU,EAAQK,SAASO,MACjD,CAAE,MACA,MAAM,IAAIC,MACR,qBAAqBb,EAAQK,kFAEjC,CACF,CAKA,UAAAS,CAAWC,GAGT,IAAKhF,KAAKiE,QAAQW,eAChB,IACE,MAAMK,EAAS,IAAI1B,IAAIyB,GACvBhF,KAAKiE,QAAQW,eAAiBK,EAAOJ,OACrC7E,KAAKH,IAAI,2BAA4BG,KAAKiE,QAAQW,eACpD,CAAE,MAMA,OALA5E,KAAKH,IAAI,mDAAoDmF,QAC7DhF,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,oBACNC,QAAS,uEAGb,aD5CJ,MAAMC,EAAatC,IAGnB,MAAmB,UAAfsC,GAGe,WAAfA,GAA2B/C,OAAOgD,YAAchD,OAAOQ,UAM7D,CCmCQyC,IAIFtF,KAAKH,IAAI,gCACTG,KAAKuF,UAAUP,KAJfhF,KAAKH,IAAI,yCACTG,KAAKwF,kBAAkBR,GAK3B,CAMQ,iBAAAQ,CAAkBR,GACxBhF,KAAKH,IAAI,0BAA2BmF,GAGpC,MAAM5D,EAAQ,CACZqE,UAAWC,KAAKC,MAChBxC,UAAWd,OAAO0B,SAAS6B,MAG7B,IACExC,eAAeyC,QAAQ,oBAAqBC,KAAKC,UAAU3E,GAC7D,CAAE,MAAOJ,GAOP,OANAhB,KAAKH,IAAI,wBAAyBmB,QAClChB,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,iBACNC,QAAS,2DACTa,QAAS,CAAEhF,UAGf,CAGAqB,OAAO0B,SAAS6B,KAAOZ,CACzB,CAQA,uBAAOiB,CACL1B,EACAC,GAGA,MAAM0B,EAAY9C,eAAe+C,QAAQ,qBACzC,IAAKD,EACH,OAAO,EAGT,IACE,MAAM9E,EAAQ0E,KAAKM,MAAMF,GAIzB,GADgBR,KAAKC,MAAQvE,EAAMqE,UACrB,IAGZ,OADArC,eAAeC,WAAW,sBACnB,EAIT,MAAMgD,EAAY,IAAIC,gBAAgBjE,OAAO0B,SAASF,QAChD0C,EAAUF,EAAU5F,IAAI,yBACxBO,EAAQqF,EAAU5F,IAAI,uBAE5B,GAAgB,SAAZ8F,EAAoB,CAEtB,MAAMC,EAAUH,EAAU5F,IAAI,YACxBgG,EAAWJ,EAAU5F,IAAI,YACzBiG,EAAoBL,EAAU5F,IAAI,sBAExC,IAAK+F,IAAYC,IAAaC,EAM5B,OALAxD,EAAqB9B,EAAM+B,WAC3BqB,EAAQ,CACNU,KAAM,mBACNC,QAAS,mDAEJ,EAGT,MAAMwB,EAAe,CACnBC,SAAUJ,EACVC,SAAUA,EACVI,cAAeR,EAAU5F,IAAI,kBAAoBgG,EACjDK,mBAAoBJ,EACpBjB,UAAWY,EAAU5F,IAAI,eAAgB,IAAIiF,MAAOqB,cACpDC,UAAWjE,EAAesD,EAAU5F,IAAI,cACxCwG,OAAQZ,EAAU5F,IAAI,WAAWyG,MAAM,MAAQ,GAC/CC,OAAQlE,EAAYoD,EAAU5F,IAAI,YAKpC,OAFAyC,EAAqB9B,EAAM+B,WAC3BoB,EAAU,CAACoC,KACJ,CACT,CAEA,GAAI3F,EAAO,CACT,MAAMoG,EAAyB,CAC7BlC,KAAMmB,EAAU5F,IAAI,eAAiB,cACrC0E,QAASkB,EAAU5F,IAAI,sBAAwB,8BAKjD,OAFAyC,EAAqB9B,EAAM+B,WAC3BqB,EAAQ4C,IACD,CACT,CAEA,OAAO,CACT,CAAE,MAAOC,GAGP,OAFAzH,QAAQoB,MAAM,gDAAiDqG,GAC/DjE,eAAeC,WAAW,sBACnB,CACT,CACF,CAKA,SAAAkC,CAAUP,GAER,MAAMsC,EAAOjF,OAAOkF,SAAWlF,OAAOmF,WAAaxH,KAAKiE,QAAQS,YAAc,EACxE+C,EAAMpF,OAAOqF,SAAWrF,OAAOsF,YAAc3H,KAAKiE,QAAQU,aAAe,EAEzEiD,EAAW,CACf,SAAS5H,KAAKiE,QAAQS,aACtB,UAAU1E,KAAKiE,QAAQU,cACvB,QAAQ2C,IACR,OAAOG,IACP,gBACA,iBACA,cACAI,KAAK,KAEP7H,KAAKH,IAAI,uBAAwBmF,GAGjChF,KAAKkE,MAAQ7B,OAAOyF,KAAK9C,EAAK,oBAAqB4C,GAE9C5H,KAAKkE,OASVlE,KAAK+H,eACL/H,KAAKgI,wBATHhI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,gBACNC,QAAS,oEAQf,CAKA,KAAA8C,GACEjI,KAAKH,IAAI,yBAGLG,KAAKkE,QAAUlE,KAAKkE,MAAMgE,QAC5BlI,KAAKkE,MAAM+D,QAEbjI,KAAKkE,MAAQ,KAGa,OAAtBlE,KAAKmE,eACPgE,cAAcnI,KAAKmE,cACnBnE,KAAKmE,aAAe,MAIlBnE,KAAKoE,kBACP/B,OAAO+F,oBAAoB,UAAWpI,KAAKoE,iBAC3CpE,KAAKoE,gBAAkB,KAE3B,CAKQ,YAAA2D,GACN/H,KAAKmE,aAAe9B,OAAOgG,YAAY,KACjCrI,KAAKqE,SACJrE,KAAKkE,QAASlE,KAAKkE,MAAMgE,SAC5BlI,KAAKH,IAAI,wBACTG,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQQ,aAEd,IACL,CAKQ,oBAAAuD,GACNhI,KAAKoE,gBAAmBhE,IAEtB,GAAIJ,KAAKqE,QAAS,OAGlB,GAAIjE,EAAMyE,SAAW7E,KAAK4E,eAExB,YADA5E,KAAKH,IAAI,2CAA4CO,EAAMyE,OAAQ,aAAc7E,KAAK4E,eAAiB,KAIzG5E,KAAKH,IAAI,wBAAyBO,EAAMyE,QAExC,MAAMyD,EAAOlI,EAAMkI,KAGnB,GAAIA,GAAwB,iBAATA,EACjB,GAAkB,0BAAdA,EAAKC,KAAkC,CACzCvI,KAAKH,IAAI,iBAGT,MAAM2I,EAAYC,MAAMC,QAAQJ,EAAKK,QAAUL,EAAKK,OAAS,KAC7D,GAAIH,EAAW,CACbxI,KAAKH,IAAI,0BAA2B2I,EAAUI,OAAQ,UACtD,MAAMD,EAAkB,GACxB,IAAK,MAAME,KAAQL,EAAW,CAC5B,MAAMhC,EAAUqC,EAAKjC,SAChBJ,GAAYqC,EAAKpC,SAItBkC,EAAOG,KAAK,CACVlC,SAAUJ,EACVC,SAAUoC,EAAKpC,SACfI,cAAgBgC,EAAKhC,eAA6BgC,EAAKpC,SACvDK,mBAAqB+B,EAAK/B,oBAAiC,GAC3DrB,UAAYoD,EAAKpD,YAAwB,IAAIC,MAAOqB,cACpDC,UAAWjE,EAAe8F,EAAK7B,WAC/BC,OAAQwB,MAAMC,QAAQG,EAAK5B,QAAU4B,EAAK5B,OAAqB,GAC/DE,OAAQlE,EAAY4F,EAAK1B,QACzB4B,SAAUF,EAAKE,WAZf/I,KAAKH,IAAI,+BAAgCgJ,EAc7C,CAEA,OAAsB,IAAlBF,EAAOC,QACT5I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,yCAKbnF,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQM,UAAUoE,GAEzB,CAGA3I,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,gDAEb,MAAO,GAAkB,wBAAdmD,EAAKC,KAAgC,CAC9CvI,KAAKH,IAAI,eAET,MAAMmB,EAAoB,CACxBkE,KAAOoD,EAAKtH,OAAoB,cAChCmE,QAAUmD,EAAKU,mBAAgC,6BAC/ChD,QAASsC,GAGXtI,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQxD,EACvB,GAIJqB,OAAO4G,iBAAiB,UAAWjJ,KAAKoE,gBAC1C,CAKQ,GAAAvE,IAAOH,GACTM,KAAKiE,QAAQtE,OACfC,QAAQC,IAAI,qBAAsBH,EAEtC,EC5XF,MAAMwJ,EAAU,cAKHC,EAYX,WAAApJ,CAAoBN,EAA6B,IAPzCO,KAAAoJ,cAAqC,KACrCpJ,KAAAqJ,SAAmB,4BACnBrJ,KAAAsJ,iBAAsC,GAQ5CtJ,KAAKP,OLbH,SAAsBA,GAC1B,MAAO,CACLE,MAAOF,EAAOE,QAAS,EAE3B,CKSkB4J,CAAY9J,GAG1BO,KAAKwJ,aAAe,IAAI1J,EACxBE,KAAKyJ,aAAe,IAAItI,EACxBnB,KAAK0J,gBAAiB,EAEtBlK,EAASQ,KAAKP,OAAQ,gCAAiC,CAAEkK,QAAST,IAGlElJ,KAAK4J,qBACP,CAMQ,mBAAAA,GACU5F,EAAaiC,iBAC1B0C,IACCnJ,EAASQ,KAAKP,OAAQ,mCAAoCkJ,GAE1D3I,KAAKwJ,aAAa1I,KAAK,UAAW6H,IAEnC3H,IACCxB,EAASQ,KAAKP,OAAQ,iCAAkCuB,GAExDhB,KAAKwJ,aAAa1I,KAAK,QAASE,MAKlCxB,EAASQ,KAAKP,OAAQ,6CAE1B,CAYA,aAAOoK,CAAOpK,GACZ,OAAO,IAAI0J,EAAa1J,EAC1B,CA0BA,UAAMqI,CAAK7D,GAET,IAAKjE,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,wDAM1C,GAHAtK,EAASQ,KAAKP,OAAQ,uBAGjBwE,EAAQ8F,OAAkC,iBAAlB9F,EAAQ8F,MACnC,MAAM/J,KAAK8J,YAAY,kBAAmB,iGAG5C,IAAK7F,EAAQM,WAA0C,mBAAtBN,EAAQM,UACvC,MAAMvE,KAAK8J,YAAY,kBAAmB,kCAI5C,GAAI9J,KAAKqB,SAEP,YADA7B,EAASQ,KAAKP,OAAQ,8BAKxBO,KAAKqJ,SAAWpF,EAAQK,SAAW,4BAInCtE,KAAKoJ,cAAgB,IAAIpF,EAAa,CACpCM,QAAStE,KAAKqJ,SACd9E,UAAYoE,IACVnJ,EAASQ,KAAKP,OAAQ,iBAAkBkJ,GACxC3I,KAAKgK,mBAAmBrB,IAE1BnE,QAAUxD,IACRxB,EAASQ,KAAKP,OAAQ,eAAgBuB,GACtChB,KAAKiK,iBAAiBjJ,IAExByD,SAAU,KACRjF,EAASQ,KAAKP,OAAQ,kCACtBO,KAAKkK,qBAEPxF,WAAY,IACZC,YAAa,IACbhF,MAAOK,KAAKP,OAAOE,QAIrBK,KAAKyJ,aAAa/H,SAAS,CACzBL,QAAQ,EACRL,MAAO,KACPM,aAAc2C,EAAQ8F,QAIxB/J,KAAKmK,sBAAsBlG,GAG3B,MAAMmG,EAAa,GAAGpK,KAAKqJ,sCAAsCgB,mBAAmBpG,EAAQ8F,SAE5FvK,EAASQ,KAAKP,OAAQ,eAAgB2K,GAGtCpK,KAAKoJ,cAAcrE,WAAWqF,GAG1BnG,EAAQqG,SACVrG,EAAQqG,QAAQ,iBAAkB,CAChC7E,WAAW,IAAIC,MAAOqB,gBAI1BvH,EAASQ,KAAKP,OAAQ,iCACxB,CAKA,KAAAwI,GAEE,IAAKjI,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,yDAG1CtK,EAASQ,KAAKP,OAAQ,sBAGlBO,KAAKoJ,gBACPpJ,KAAKoJ,cAAcnB,QACnBjI,KAAKoJ,cAAgB,MAIvBpJ,KAAKsJ,iBAAiBvI,QAAQwJ,GAAWA,KACzCvK,KAAKsJ,iBAAmB,GAGxBtJ,KAAKyJ,aAAa/H,SAAS,CAAEL,QAAQ,IAErCrB,KAAKwJ,aAAa1I,KAAK,QACzB,CAKA,OAAA0J,GACOxK,KAAK0J,iBAKVlK,EAASQ,KAAKP,OAAQ,2BAGlBO,KAAKoJ,gBACPpJ,KAAKoJ,cAAcnB,QACnBjI,KAAKoJ,cAAgB,MAInBpJ,KAAKyJ,aAAahJ,IAAI,WACxBT,KAAKyJ,aAAa/H,SAAS,CAAEL,QAAQ,IAIvCrB,KAAKwJ,aAAavI,qBAClBjB,KAAKyJ,aAAa1H,iBAClB/B,KAAK0J,gBAAiB,EACxB,CAKA,EAAAvJ,CAAGC,EAAeC,GAEhB,IAAKL,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,sDAG1C,OAAO9J,KAAKwJ,aAAarJ,GAAGC,EAAOC,EACrC,CAKA,GAAAM,CAAIP,EAAeC,GAEjB,IAAKL,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,uDAG1C9J,KAAKwJ,aAAa7I,IAAIP,EAAOC,EAC/B,CAKA,MAAAgB,GAEE,IAAKrB,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,0DAG1C,OAAO9J,KAAKyJ,aAAahJ,IAAI,SAC/B,CAKA,UAAAgK,GACE,OAAOvB,CACT,CAOQ,cAAAwB,GACN1K,KAAKoJ,cAAgB,IACvB,CAKQ,kBAAAY,CAAmBrB,GACzB3I,KAAK0K,iBACL1K,KAAKwJ,aAAa1I,KAAK,UAAW6H,EACpC,CAKQ,gBAAAsB,CAAiBjJ,GACvBhB,KAAK0K,iBACL1K,KAAKyJ,aAAa/H,SAAS,CAAEV,UAC7BhB,KAAKwJ,aAAa1I,KAAK,QAASE,EAClC,CAKQ,iBAAAkJ,GACNlK,KAAK0K,iBACL1K,KAAKwJ,aAAa1I,KAAK,OACzB,CAKQ,qBAAAqJ,CAAsBlG,GAExBA,EAAQM,WACVvE,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,UAAYwI,IAC/B1E,EAAQM,UAAUoE,GAClB3I,KAAKiI,WAMPhE,EAAQ0G,QACV3K,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,OAAQ,KAC3B8D,EAAQ0G,SACR3K,KAAKiI,WAMXjI,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,QAAUa,IACzBiD,EAAQO,SACVP,EAAQO,QAAQxD,GAElBhB,KAAKiI,WAKLhE,EAAQqG,SACVtK,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,QAAS,CAACyK,EAAmB7B,KAChD9E,EAAQqG,QAASM,EAAW7B,KAIpC,CAKQ,WAAAe,CAAY5E,EAAcC,EAAiBa,GACjD,MAAMhF,EAAQ,IAAI8D,MAAMK,GAGxB,OAFCnE,EAAckE,KAAOA,EACrBlE,EAAcgF,QAAUA,EAClBhF,CACT"}

package/dist/alter-connect.esm.js CHANGED Viewed

@@ -1,2 +1,2 @@
-function e(e,...t){e.debug&&console.log("[Alter Connect]",...t)}class t{constructor(){this.events=new Map}on(e,t){return this.events.has(e)||this.events.set(e,new Set),this.events.get(e).add(t),()=>this.off(e,t)}off(e,t){const i=this.events.get(e);i&&i.delete(t)}emit(e,...t){const i=this.events.get(e);i&&i.forEach(i=>{try{i(...t)}catch(t){console.error(`[Alter Connect] Error in event handler for '${e}':`,t)}})}removeAllListeners(e){e?this.events.delete(e):this.events.clear()}}class i{constructor(){this.state={isOpen:!1,sessionToken:null,error:null},this.listeners=new Set}getState(){return{...this.state}}get(e){return this.state[e]}setState(e){this.state={...this.state,...e},this.notifyListeners()}subscribe(e){return this.listeners.add(e),()=>{this.listeners.delete(e)}}clearListeners(){this.listeners.clear()}notifyListeners(){const e=this.getState();this.listeners.forEach(t=>{try{t(e)}catch(e){console.error("[Alter Connect] Error in state listener:",e)}})}}function s(){const e=navigator.userAgent||navigator.vendor||window.opera,t=/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(e),i="ontouchstart"in window||navigator.maxTouchPoints>0||navigator.msMaxTouchPoints>0,s=window.innerWidth<=768;return t||i&&s}function n(){return s()&&window.innerWidth<=480?"phone":s()&&window.innerWidth>480&&window.innerWidth<=1024?"tablet":"desktop"}function o(e){return"reauth"===e?"reauth":"grant"===e?"grant":"creation"}function r(e){return"pending"===e?"pending":"error"===e?"error":"active"}function a(e){sessionStorage.removeItem("alter_oauth_state");try{const t=new URL(e);window.history.replaceState({},document.title,t.pathname+t.search+t.hash)}catch{window.history.replaceState({},document.title,window.location.pathname)}}class c{constructor(e){this.popup=null,this.pollInterval=null,this.messageListener=null,this.settled=!1,this.options={baseURL:e.baseURL,onSuccess:e.onSuccess,onError:e.onError,onCancel:e.onCancel,popupWidth:e.popupWidth||500,popupHeight:e.popupHeight||700,debug:e.debug||!1,expectedOrigin:e.expectedOrigin||""};try{this.expectedOrigin=new URL(e.baseURL).origin}catch{throw new Error(`Invalid baseURL: "${e.baseURL}". Must be a full URL with protocol (e.g., "https://api.alterai.dev").`)}}startOAuth(e){if(!this.options.expectedOrigin)try{const t=new URL(e);this.options.expectedOrigin=t.origin,this.log("Derived expected origin:",this.options.expectedOrigin)}catch{return this.log("Failed to parse OAuth URL for origin validation:",e),void this.options.onError({code:"invalid_oauth_url",message:"Failed to determine origin from OAuth URL. Cannot proceed securely."})}!function(){const e=n();return"phone"===e||"tablet"===e&&window.innerHeight>window.innerWidth}()?(this.log("Using popup flow for desktop"),this.openPopup(e)):(this.log("Using redirect flow for mobile device"),this.startRedirectFlow(e))}startRedirectFlow(e){this.log("Starting redirect flow:",e);const t={timestamp:Date.now(),returnUrl:window.location.href};try{sessionStorage.setItem("alter_oauth_state",JSON.stringify(t))}catch(e){return this.log("Failed to save state:",e),void this.options.onError({code:"redirect_error",message:"Failed to start OAuth flow: could not save session state",details:{error:e}})}window.location.href=e}static checkOAuthReturn(e,t){const i=sessionStorage.getItem("alter_oauth_state");if(!i)return!1;try{const s=JSON.parse(i);if(Date.now()-s.timestamp>3e5)return sessionStorage.removeItem("alter_oauth_state"),!1;const n=new URLSearchParams(window.location.search),c=n.get("alter_connect_success"),h=n.get("alter_connect_error");if("true"===c){const i=n.get("connection_id"),c=n.get("provider"),h=n.get("account_identifier");if(!i||!c||!h)return a(s.returnUrl),t({code:"invalid_response",message:"OAuth redirect returned incomplete connection data"}),!0;const l={connection_id:i,provider:c,provider_name:n.get("provider_name")||c,account_identifier:h,timestamp:n.get("timestamp")||(new Date).toISOString(),operation:o(n.get("operation")),scopes:n.get("scopes")?.split(",")||[],status:r(n.get("status"))};return a(s.returnUrl),e([l]),!0}if(h){const e={code:n.get("error_code")||"oauth_error",message:n.get("error_description")||"OAuth authorization failed"};return a(s.returnUrl),t(e),!0}return!1}catch(e){return console.error("[OAuth Handler] Failed to check OAuth return:",e),sessionStorage.removeItem("alter_oauth_state"),!1}}openPopup(e){const t=window.screenX+(window.outerWidth-this.options.popupWidth)/2,i=window.screenY+(window.outerHeight-this.options.popupHeight)/2,s=[`width=${this.options.popupWidth}`,`height=${this.options.popupHeight}`,`left=${t}`,`top=${i}`,"resizable=yes","scrollbars=yes","status=yes"].join(",");this.log("Opening OAuth popup:",e),this.popup=window.open(e,"alter_oauth_popup",s),this.popup?(this.startPolling(),this.setupMessageListener()):this.options.onError({code:"popup_blocked",message:"Popup was blocked by browser. Please allow popups for this site."})}close(){this.log("Closing OAuth handler"),this.popup&&!this.popup.closed&&this.popup.close(),this.popup=null,null!==this.pollInterval&&(clearInterval(this.pollInterval),this.pollInterval=null),this.messageListener&&(window.removeEventListener("message",this.messageListener),this.messageListener=null)}startPolling(){this.pollInterval=window.setInterval(()=>{this.settled||this.popup&&!this.popup.closed||(this.log("Popup closed by user"),this.settled=!0,this.close(),this.options.onCancel())},500)}setupMessageListener(){this.messageListener=e=>{if(this.settled)return;if(e.origin!==this.expectedOrigin)return void this.log("Rejected message from unexpected origin:",e.origin,"(expected:",this.expectedOrigin+")");this.log("Received message from",e.origin);const t=e.data;if(t&&"object"==typeof t)if("alter_connect_success"===t.type){if(this.log("OAuth success"),Array.isArray(t.connections)){this.log("Multi-provider success:",t.connections.length,"connections");const e=[];for(const i of t.connections)i.connection_id&&i.provider?e.push({connection_id:i.connection_id,provider:i.provider,provider_name:i.provider_name||i.provider,account_identifier:i.account_identifier||"",timestamp:i.timestamp||(new Date).toISOString(),operation:o(i.operation),scopes:Array.isArray(i.scopes)?i.scopes:[],status:r(i.status),metadata:i.metadata}):this.log("Skipping invalid connection item:",i);return 0===e.length?(this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:"Server returned empty connections array"})):(this.settled=!0,this.close(),void this.options.onSuccess(e))}const e=function(e){return e.connection_id&&"string"==typeof e.connection_id?e.provider&&"string"==typeof e.provider?e.account_identifier&&"string"==typeof e.account_identifier?e.timestamp&&"string"==typeof e.timestamp?null:"Missing or invalid timestamp":"Missing or invalid account_identifier":"Missing or invalid provider":"Missing or invalid connection_id"}(t);if(e)return this.log("Invalid connection payload:",e),this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:`Server returned incomplete connection data: ${e}`});const i={connection_id:t.connection_id,provider:t.provider,provider_name:t.provider_name||t.provider,account_identifier:t.account_identifier,timestamp:t.timestamp,operation:o(t.operation),scopes:Array.isArray(t.scopes)?t.scopes:[],status:r(t.status),metadata:t.metadata};this.settled=!0,this.close(),this.options.onSuccess([i])}else if("alter_connect_error"===t.type){this.log("OAuth error");const e={code:t.error||"oauth_error",message:t.error_description||"OAuth authorization failed",details:t};this.settled=!0,this.close(),this.options.onError(e)}},window.addEventListener("message",this.messageListener)}log(...e){this.options.debug&&console.log("[OAuth Handler]",...e)}}const h="0.2.0";class l{constructor(s={}){this._oauthHandler=null,this._baseURL="https://api.alterai.dev",this._perOpenCleanups=[],this.config=function(e){return{debug:e.debug??!1}}(s),this.eventEmitter=new t,this.stateManager=new i,this._isInitialized=!0,e(this.config,"Alter Connect SDK initialized",{version:h}),this.checkRedirectReturn()}checkRedirectReturn(){c.checkOAuthReturn(t=>{e(this.config,"OAuth redirect return - success:",t),this.eventEmitter.emit("success",t)},t=>{e(this.config,"OAuth redirect return - error:",t),this.eventEmitter.emit("error",t)})&&e(this.config,"OAuth redirect return detected and handled")}static create(e){return new l(e)}async open(t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call open() - SDK instance has been destroyed");if(e(this.config,"Opening Connect UI"),!t.token||"string"!=typeof t.token)throw this.createError("invalid_options","Session token is required. Create one from your backend using POST /sdk/oauth/connect/session");if(!t.onSuccess||"function"!=typeof t.onSuccess)throw this.createError("invalid_options","onSuccess callback is required");if(this.isOpen())return void e(this.config,"Connect UI is already open");this._baseURL=t.baseURL||"https://api.alterai.dev",this._oauthHandler=new c({baseURL:this._baseURL,onSuccess:t=>{e(this.config,"OAuth success:",t),this.handleOAuthSuccess(t)},onError:t=>{e(this.config,"OAuth error:",t),this.handleOAuthError(t)},onCancel:()=>{e(this.config,"OAuth cancelled (popup closed)"),this.handleOAuthCancel()},popupWidth:500,popupHeight:700,debug:this.config.debug}),this.stateManager.setState({isOpen:!0,error:null,sessionToken:t.token}),this.registerEventHandlers(t);const i=`${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(t.token)}`;e(this.config,"Connect URL:",i),this._oauthHandler.startOAuth(i),t.onEvent&&t.onEvent("connect_opened",{timestamp:(new Date).toISOString()}),e(this.config,"Connect UI opened successfully")}close(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call close() - SDK instance has been destroyed");e(this.config,"Closing Connect UI"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this._perOpenCleanups.forEach(e=>e()),this._perOpenCleanups=[],this.stateManager.setState({isOpen:!1}),this.eventEmitter.emit("close")}destroy(){this._isInitialized&&(e(this.config,"Destroying SDK instance"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this.stateManager.get("isOpen")&&this.stateManager.setState({isOpen:!1}),this.eventEmitter.removeAllListeners(),this.stateManager.clearListeners(),this._isInitialized=!1)}on(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call on() - SDK instance has been destroyed");return this.eventEmitter.on(e,t)}off(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call off() - SDK instance has been destroyed");this.eventEmitter.off(e,t)}isOpen(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call isOpen() - SDK instance has been destroyed");return this.stateManager.get("isOpen")}getVersion(){return h}cleanupHandler(){this._oauthHandler=null}handleOAuthSuccess(e){this.cleanupHandler(),this.eventEmitter.emit("success",e)}handleOAuthError(e){this.cleanupHandler(),this.stateManager.setState({error:e}),this.eventEmitter.emit("error",e)}handleOAuthCancel(){this.cleanupHandler(),this.eventEmitter.emit("exit")}registerEventHandlers(e){e.onSuccess&&this._perOpenCleanups.push(this.eventEmitter.on("success",t=>{e.onSuccess(t),this.close()})),e.onExit&&this._perOpenCleanups.push(this.eventEmitter.on("exit",()=>{e.onExit(),this.close()})),this._perOpenCleanups.push(this.eventEmitter.on("error",t=>{e.onError&&e.onError(t),this.close()})),e.onEvent&&this._perOpenCleanups.push(this.eventEmitter.on("event",(t,i)=>{e.onEvent(t,i)}))}createError(e,t,i){const s=new Error(t);return s.code=e,s.details=i,s}}export{l as default};
+function e(e,...t){e.debug&&console.log("[Alter Connect]",...t)}class t{constructor(){this.events=new Map}on(e,t){return this.events.has(e)||this.events.set(e,new Set),this.events.get(e).add(t),()=>this.off(e,t)}off(e,t){const s=this.events.get(e);s&&s.delete(t)}emit(e,...t){const s=this.events.get(e);s&&s.forEach(s=>{try{s(...t)}catch(t){console.error(`[Alter Connect] Error in event handler for '${e}':`,t)}})}removeAllListeners(e){e?this.events.delete(e):this.events.clear()}}class s{constructor(){this.state={isOpen:!1,sessionToken:null,error:null},this.listeners=new Set}getState(){return{...this.state}}get(e){return this.state[e]}setState(e){this.state={...this.state,...e},this.notifyListeners()}subscribe(e){return this.listeners.add(e),()=>{this.listeners.delete(e)}}clearListeners(){this.listeners.clear()}notifyListeners(){const e=this.getState();this.listeners.forEach(t=>{try{t(e)}catch(e){console.error("[Alter Connect] Error in state listener:",e)}})}}function i(){const e=navigator.userAgent||navigator.vendor||window.opera,t=/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(e),s="ontouchstart"in window||navigator.maxTouchPoints>0||navigator.msMaxTouchPoints>0,i=window.innerWidth<=768;return t||s&&i}function n(){return i()&&window.innerWidth<=480?"phone":i()&&window.innerWidth>480&&window.innerWidth<=1024?"tablet":"desktop"}function r(e){return"reauth"===e?"reauth":"creation"}function o(e){return"pending"===e?"pending":"error"===e?"error":"active"}function a(e){sessionStorage.removeItem("alter_oauth_state");try{const t=new URL(e);window.history.replaceState({},document.title,t.pathname+t.search+t.hash)}catch{window.history.replaceState({},document.title,window.location.pathname)}}class h{constructor(e){this.popup=null,this.pollInterval=null,this.messageListener=null,this.settled=!1,this.options={baseURL:e.baseURL,onSuccess:e.onSuccess,onError:e.onError,onCancel:e.onCancel,popupWidth:e.popupWidth||500,popupHeight:e.popupHeight||700,debug:e.debug||!1,expectedOrigin:e.expectedOrigin||""};try{this.expectedOrigin=new URL(e.baseURL).origin}catch{throw new Error(`Invalid baseURL: "${e.baseURL}". Must be a full URL with protocol (e.g., "https://api.alterauth.com").`)}}startOAuth(e){if(!this.options.expectedOrigin)try{const t=new URL(e);this.options.expectedOrigin=t.origin,this.log("Derived expected origin:",this.options.expectedOrigin)}catch{return this.log("Failed to parse OAuth URL for origin validation:",e),void this.options.onError({code:"invalid_oauth_url",message:"Failed to determine origin from OAuth URL. Cannot proceed securely."})}!function(){const e=n();return"phone"===e||"tablet"===e&&window.innerHeight>window.innerWidth}()?(this.log("Using popup flow for desktop"),this.openPopup(e)):(this.log("Using redirect flow for mobile device"),this.startRedirectFlow(e))}startRedirectFlow(e){this.log("Starting redirect flow:",e);const t={timestamp:Date.now(),returnUrl:window.location.href};try{sessionStorage.setItem("alter_oauth_state",JSON.stringify(t))}catch(e){return this.log("Failed to save state:",e),void this.options.onError({code:"redirect_error",message:"Failed to start OAuth flow: could not save session state",details:{error:e}})}window.location.href=e}static checkOAuthReturn(e,t){const s=sessionStorage.getItem("alter_oauth_state");if(!s)return!1;try{const i=JSON.parse(s);if(Date.now()-i.timestamp>3e5)return sessionStorage.removeItem("alter_oauth_state"),!1;const n=new URLSearchParams(window.location.search),h=n.get("alter_connect_success"),c=n.get("alter_connect_error");if("true"===h){const s=n.get("grant_id"),h=n.get("provider"),c=n.get("account_identifier");if(!s||!h||!c)return a(i.returnUrl),t({code:"invalid_response",message:"OAuth redirect returned incomplete grant data"}),!0;const l={grant_id:s,provider:h,provider_name:n.get("provider_name")||h,account_identifier:c,timestamp:n.get("timestamp")||(new Date).toISOString(),operation:r(n.get("operation")),scopes:n.get("scopes")?.split(",")||[],status:o(n.get("status"))};return a(i.returnUrl),e([l]),!0}if(c){const e={code:n.get("error_code")||"oauth_error",message:n.get("error_description")||"OAuth authorization failed"};return a(i.returnUrl),t(e),!0}return!1}catch(e){return console.error("[OAuth Handler] Failed to check OAuth return:",e),sessionStorage.removeItem("alter_oauth_state"),!1}}openPopup(e){const t=window.screenX+(window.outerWidth-this.options.popupWidth)/2,s=window.screenY+(window.outerHeight-this.options.popupHeight)/2,i=[`width=${this.options.popupWidth}`,`height=${this.options.popupHeight}`,`left=${t}`,`top=${s}`,"resizable=yes","scrollbars=yes","status=yes"].join(",");this.log("Opening OAuth popup:",e),this.popup=window.open(e,"alter_oauth_popup",i),this.popup?(this.startPolling(),this.setupMessageListener()):this.options.onError({code:"popup_blocked",message:"Popup was blocked by browser. Please allow popups for this site."})}close(){this.log("Closing OAuth handler"),this.popup&&!this.popup.closed&&this.popup.close(),this.popup=null,null!==this.pollInterval&&(clearInterval(this.pollInterval),this.pollInterval=null),this.messageListener&&(window.removeEventListener("message",this.messageListener),this.messageListener=null)}startPolling(){this.pollInterval=window.setInterval(()=>{this.settled||this.popup&&!this.popup.closed||(this.log("Popup closed by user"),this.settled=!0,this.close(),this.options.onCancel())},500)}setupMessageListener(){this.messageListener=e=>{if(this.settled)return;if(e.origin!==this.expectedOrigin)return void this.log("Rejected message from unexpected origin:",e.origin,"(expected:",this.expectedOrigin+")");this.log("Received message from",e.origin);const t=e.data;if(t&&"object"==typeof t)if("alter_connect_success"===t.type){this.log("OAuth success");const e=Array.isArray(t.grants)?t.grants:null;if(e){this.log("Multi-provider success:",e.length,"grants");const t=[];for(const s of e){const e=s.grant_id;e&&s.provider?t.push({grant_id:e,provider:s.provider,provider_name:s.provider_name||s.provider,account_identifier:s.account_identifier||"",timestamp:s.timestamp||(new Date).toISOString(),operation:r(s.operation),scopes:Array.isArray(s.scopes)?s.scopes:[],status:o(s.status),metadata:s.metadata}):this.log("Skipping invalid grant item:",s)}return 0===t.length?(this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:"Server returned empty grants array"})):(this.settled=!0,this.close(),void this.options.onSuccess(t))}this.settled=!0,this.close(),this.options.onError({code:"invalid_response",message:"Server returned success without grants array"})}else if("alter_connect_error"===t.type){this.log("OAuth error");const e={code:t.error||"oauth_error",message:t.error_description||"OAuth authorization failed",details:t};this.settled=!0,this.close(),this.options.onError(e)}},window.addEventListener("message",this.messageListener)}log(...e){this.options.debug&&console.log("[OAuth Handler]",...e)}}const c="0.2.0";class l{constructor(i={}){this._oauthHandler=null,this._baseURL="https://api.alterauth.com",this._perOpenCleanups=[],this.config=function(e){return{debug:e.debug??!1}}(i),this.eventEmitter=new t,this.stateManager=new s,this._isInitialized=!0,e(this.config,"Alter Connect SDK initialized",{version:c}),this.checkRedirectReturn()}checkRedirectReturn(){h.checkOAuthReturn(t=>{e(this.config,"OAuth redirect return - success:",t),this.eventEmitter.emit("success",t)},t=>{e(this.config,"OAuth redirect return - error:",t),this.eventEmitter.emit("error",t)})&&e(this.config,"OAuth redirect return detected and handled")}static create(e){return new l(e)}async open(t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call open() - SDK instance has been destroyed");if(e(this.config,"Opening Connect UI"),!t.token||"string"!=typeof t.token)throw this.createError("invalid_options","Session token is required. Create one from your backend using POST /sdk/oauth/connect/session");if(!t.onSuccess||"function"!=typeof t.onSuccess)throw this.createError("invalid_options","onSuccess callback is required");if(this.isOpen())return void e(this.config,"Connect UI is already open");this._baseURL=t.baseURL||"https://api.alterauth.com",this._oauthHandler=new h({baseURL:this._baseURL,onSuccess:t=>{e(this.config,"OAuth success:",t),this.handleOAuthSuccess(t)},onError:t=>{e(this.config,"OAuth error:",t),this.handleOAuthError(t)},onCancel:()=>{e(this.config,"OAuth cancelled (popup closed)"),this.handleOAuthCancel()},popupWidth:500,popupHeight:700,debug:this.config.debug}),this.stateManager.setState({isOpen:!0,error:null,sessionToken:t.token}),this.registerEventHandlers(t);const s=`${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(t.token)}`;e(this.config,"Connect URL:",s),this._oauthHandler.startOAuth(s),t.onEvent&&t.onEvent("connect_opened",{timestamp:(new Date).toISOString()}),e(this.config,"Connect UI opened successfully")}close(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call close() - SDK instance has been destroyed");e(this.config,"Closing Connect UI"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this._perOpenCleanups.forEach(e=>e()),this._perOpenCleanups=[],this.stateManager.setState({isOpen:!1}),this.eventEmitter.emit("close")}destroy(){this._isInitialized&&(e(this.config,"Destroying SDK instance"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this.stateManager.get("isOpen")&&this.stateManager.setState({isOpen:!1}),this.eventEmitter.removeAllListeners(),this.stateManager.clearListeners(),this._isInitialized=!1)}on(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call on() - SDK instance has been destroyed");return this.eventEmitter.on(e,t)}off(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call off() - SDK instance has been destroyed");this.eventEmitter.off(e,t)}isOpen(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call isOpen() - SDK instance has been destroyed");return this.stateManager.get("isOpen")}getVersion(){return c}cleanupHandler(){this._oauthHandler=null}handleOAuthSuccess(e){this.cleanupHandler(),this.eventEmitter.emit("success",e)}handleOAuthError(e){this.cleanupHandler(),this.stateManager.setState({error:e}),this.eventEmitter.emit("error",e)}handleOAuthCancel(){this.cleanupHandler(),this.eventEmitter.emit("exit")}registerEventHandlers(e){e.onSuccess&&this._perOpenCleanups.push(this.eventEmitter.on("success",t=>{e.onSuccess(t),this.close()})),e.onExit&&this._perOpenCleanups.push(this.eventEmitter.on("exit",()=>{e.onExit(),this.close()})),this._perOpenCleanups.push(this.eventEmitter.on("error",t=>{e.onError&&e.onError(t),this.close()})),e.onEvent&&this._perOpenCleanups.push(this.eventEmitter.on("event",(t,s)=>{e.onEvent(t,s)}))}createError(e,t,s){const i=new Error(t);return i.code=e,i.details=s,i}}export{l as default};
 //# sourceMappingURL=alter-connect.esm.js.map

package/dist/alter-connect.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"alter-connect.esm.js","sources":["../src/core/config.ts","../src/core/events.ts","../src/state/manager.ts","../src/utils/mobile.ts","../src/oauth/handler.ts","../src/core/alter-connect.ts"],"sourcesContent":["/*\n Configuration validation and management\n /\n\nimport type { AlterConnectConfig } from '../types';\n\n/\n Internal config used by the SDK\n /\ninterface FullConfig {\n debug: boolean;\n}\n\n/\n Validate configuration\n /\nexport function validateConfig(_config: AlterConnectConfig): void {\n // Config only has `debug` — nothing to validate\n}\n\n/\n Merge user config with defaults\n /\nexport function mergeConfig(config: AlterConnectConfig): FullConfig {\n return {\n debug: config.debug ?? false,\n };\n}\n\n/\n Debug logging helper\n /\nexport function debugLog(config: FullConfig, ...args: any[]): void {\n if (config.debug) {\n console.log('[Alter Connect]', ...args);\n }\n}\n\n/\n Export FullConfig type for use in other modules\n /\nexport type { FullConfig };\n","/\n Simple event emitter for SDK events\n /\n\ntype EventHandler = (...args: any[]) => void;\n\n/\n Event emitter for SDK internal events\n /\nexport class EventEmitter {\n private events: Map<string, Set<EventHandler>>;\n\n constructor() {\n this.events = new Map();\n }\n\n /\n Register an event listener\n * @returns Unsubscribe function\n /\n on(event: string, handler: EventHandler): () => void {\n if (!this.events.has(event)) {\n this.events.set(event, new Set());\n }\n\n this.events.get(event)!.add(handler);\n\n // Return unsubscribe function\n return () => this.off(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: EventHandler): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.delete(handler);\n }\n }\n\n /\n Emit an event\n /\n emit(event: string, ...args: any[]): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.forEach(handler => {\n try {\n handler(...args);\n } catch (error) {\n console.error(`[Alter Connect] Error in event handler for '${event}':`, error);\n }\n });\n }\n }\n\n /\n Remove all listeners for an event, or all listeners if no event specified\n /\n removeAllListeners(event?: string): void {\n if (event) {\n this.events.delete(event);\n } else {\n this.events.clear();\n }\n }\n}\n","/\n State management for SDK\n /\n\nimport type { AlterError } from '../types';\n\n/\n SDK internal state\n /\nexport interface SDKState {\n isOpen: boolean;\n sessionToken: string \| null;\n error: AlterError \| null;\n}\n\ntype StateListener = (state: SDKState) => void;\n\n/\n Simple state manager\n /\nexport class StateManager {\n private state: SDKState;\n private listeners: Set<StateListener>;\n\n constructor() {\n this.state = {\n isOpen: false,\n sessionToken: null,\n error: null,\n };\n this.listeners = new Set();\n }\n\n /\n Get current state\n /\n getState(): Readonly<SDKState> {\n return { ...this.state };\n }\n\n /\n Get a specific state value\n /\n get<K extends keyof SDKState>(key: K): SDKState[K] {\n return this.state[key];\n }\n\n /\n Update state\n /\n setState(updates: Partial<SDKState>): void {\n this.state = { ...this.state, ...updates };\n this.notifyListeners();\n }\n\n /\n Subscribe to state changes\n /\n subscribe(listener: StateListener): () => void {\n this.listeners.add(listener);\n\n // Return unsubscribe function\n return () => {\n this.listeners.delete(listener);\n };\n }\n\n /\n Clear all listeners\n /\n clearListeners(): void {\n this.listeners.clear();\n }\n\n /\n Notify all listeners of state change\n /\n private notifyListeners(): void {\n const currentState = this.getState();\n this.listeners.forEach(listener => {\n try {\n listener(currentState);\n } catch (error) {\n console.error('[Alter Connect] Error in state listener:', error);\n }\n });\n }\n}\n","/\n Mobile device detection and responsive utilities\n /\n\n/\n Detect if the current device is a mobile device\n /\nexport function isMobileDevice(): boolean {\n const userAgent = navigator.userAgent \|\| navigator.vendor \|\| (window as any).opera;\n\n // Check for mobile patterns\n const mobileRegex = /Android\|webOS\|iPhone\|iPad\|iPod\|BlackBerry\|IEMobile\|Opera Mini/i;\n const isMobileUA = mobileRegex.test(userAgent);\n\n // Check for touch capability\n const hasTouchScreen = ('ontouchstart' in window) \|\|\n (navigator.maxTouchPoints > 0) \|\|\n ((navigator as any).msMaxTouchPoints > 0);\n\n // Check screen size\n const isSmallScreen = window.innerWidth <= 768;\n\n return isMobileUA \|\| (hasTouchScreen && isSmallScreen);\n}\n\n/\n Detect if the device is specifically a phone (vs tablet)\n /\nexport function isPhoneDevice(): boolean {\n return isMobileDevice() && window.innerWidth <= 480;\n}\n\n/\n Detect if the device is a tablet\n /\nexport function isTabletDevice(): boolean {\n return isMobileDevice() && window.innerWidth > 480 && window.innerWidth <= 1024;\n}\n\n/\n Get the device type\n /\nexport function getDeviceType(): 'desktop' \| 'tablet' \| 'phone' {\n if (isPhoneDevice()) return 'phone';\n if (isTabletDevice()) return 'tablet';\n return 'desktop';\n}\n\n/\n Check if we should use redirect flow instead of popup\n \n Popup windows don't work well on mobile:\n * - Browsers often block them\n * - They open as full-screen tabs\n * - Users lose context of parent app\n /\nexport function shouldUseRedirectFlow(): boolean {\n const deviceType = getDeviceType();\n\n // Always use redirect for phones\n if (deviceType === 'phone') return true;\n\n // Use redirect for tablets in portrait mode (popups are cramped)\n if (deviceType === 'tablet' && window.innerHeight > window.innerWidth) {\n return true;\n }\n\n // Use popup for desktop and tablets in landscape\n return false;\n}\n","/\n OAuth popup and redirect handler\n /\n\nimport type { Connection, AlterError } from '../types';\nimport { shouldUseRedirectFlow } from '../utils/mobile';\n\ninterface OAuthHandlerOptions {\n baseURL: string;\n onSuccess: (connections: Connection[]) => void;\n onError: (error: AlterError) => void;\n onCancel: () => void;\n popupWidth?: number;\n popupHeight?: number;\n debug?: boolean;\n /* Expected origin for postMessage validation. Derived from the OAuth URL. /\n expectedOrigin?: string;\n}\n\n/\n Parse an operation string into a valid Connection['operation'] value\n /\nfunction parseOperation(value: string \| null \| undefined): Connection['operation'] {\n if (value === 'reauth') return 'reauth';\n if (value === 'grant') return 'grant';\n return 'creation';\n}\n\n/\n Parse a status string into a valid Connection['status'] value\n /\nfunction parseStatus(value: string \| null \| undefined): Connection['status'] {\n if (value === 'pending') return 'pending';\n if (value === 'error') return 'error';\n return 'active';\n}\n\n/\n Clean up OAuth redirect state and restore the original URL\n /\nfunction cleanupRedirectState(returnUrl: string): void {\n sessionStorage.removeItem('alter_oauth_state');\n try {\n const cleanUrl = new URL(returnUrl);\n window.history.replaceState({}, document.title, cleanUrl.pathname + cleanUrl.search + cleanUrl.hash);\n } catch {\n // If returnUrl is malformed, just remove query params from current URL\n window.history.replaceState({}, document.title, window.location.pathname);\n }\n}\n\n/\n Validate that a postMessage connection payload has all required fields.\n * Returns an error message if invalid, or null if valid.\n /\nfunction validateConnectionPayload(data: Record<string, unknown>): string \| null {\n if (!data.connection_id \|\| typeof data.connection_id !== 'string') {\n return 'Missing or invalid connection_id';\n }\n if (!data.provider \|\| typeof data.provider !== 'string') {\n return 'Missing or invalid provider';\n }\n if (!data.account_identifier \|\| typeof data.account_identifier !== 'string') {\n return 'Missing or invalid account_identifier';\n }\n if (!data.timestamp \|\| typeof data.timestamp !== 'string') {\n return 'Missing or invalid timestamp';\n }\n return null;\n}\n\n/\n Handles OAuth flow in popup window\n /\nexport class OAuthHandler {\n private popup: Window \| null = null;\n private pollInterval: number \| null = null;\n private messageListener: ((event: MessageEvent) => void) \| null = null;\n private options: Required<OAuthHandlerOptions>;\n private expectedOrigin: string;\n private settled: boolean = false;\n\n constructor(options: OAuthHandlerOptions) {\n this.options = {\n baseURL: options.baseURL,\n onSuccess: options.onSuccess,\n onError: options.onError,\n onCancel: options.onCancel,\n popupWidth: options.popupWidth \|\| 500,\n popupHeight: options.popupHeight \|\| 700,\n debug: options.debug \|\| false,\n expectedOrigin: options.expectedOrigin \|\| '',\n };\n\n // Extract origin from baseURL for postMessage validation\n try {\n this.expectedOrigin = new URL(options.baseURL).origin;\n } catch {\n throw new Error(\n `Invalid baseURL: \"${options.baseURL}\". Must be a full URL with protocol (e.g., \"https://api.alterai.dev\").`\n );\n }\n }\n\n /\n Start OAuth flow (automatically chooses popup or redirect based on device)\n /\n startOAuth(url: string): void {\n // Derive expected origin from the OAuth URL if not explicitly set.\n // SECURITY: Fail-closed — if we can't determine origin, abort the flow.\n if (!this.options.expectedOrigin) {\n try {\n const parsed = new URL(url);\n this.options.expectedOrigin = parsed.origin;\n this.log('Derived expected origin:', this.options.expectedOrigin);\n } catch {\n this.log('Failed to parse OAuth URL for origin validation:', url);\n this.options.onError({\n code: 'invalid_oauth_url',\n message: 'Failed to determine origin from OAuth URL. Cannot proceed securely.',\n });\n return;\n }\n }\n\n if (shouldUseRedirectFlow()) {\n this.log('Using redirect flow for mobile device');\n this.startRedirectFlow(url);\n } else {\n this.log('Using popup flow for desktop');\n this.openPopup(url);\n }\n }\n\n /\n Start OAuth redirect flow (for mobile)\n * Saves state and redirects the entire page\n /\n private startRedirectFlow(url: string): void {\n this.log('Starting redirect flow:', url);\n\n // Save state to sessionStorage to restore after redirect\n const state = {\n timestamp: Date.now(),\n returnUrl: window.location.href,\n };\n\n try {\n sessionStorage.setItem('alter_oauth_state', JSON.stringify(state));\n } catch (error) {\n this.log('Failed to save state:', error);\n this.options.onError({\n code: 'redirect_error',\n message: 'Failed to start OAuth flow: could not save session state',\n details: { error },\n });\n return;\n }\n\n // Redirect to OAuth URL (full page redirect)\n window.location.href = url;\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * Call this on page load to detect OAuth return\n \n @returns true if OAuth return was detected and handled\n /\n static checkOAuthReturn(\n onSuccess: (connections: Connection[]) => void,\n onError: (error: AlterError) => void\n ): boolean {\n // Check if we have OAuth state saved\n const stateJson = sessionStorage.getItem('alter_oauth_state');\n if (!stateJson) {\n return false;\n }\n\n try {\n const state = JSON.parse(stateJson);\n\n // Check if this is a valid OAuth return (within 5 minutes)\n const elapsed = Date.now() - state.timestamp;\n if (elapsed > 5 60 * 1000) {\n // Stale state, clean up\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n\n // Check URL for OAuth callback parameters\n const urlParams = new URLSearchParams(window.location.search);\n const success = urlParams.get('alter_connect_success');\n const error = urlParams.get('alter_connect_error');\n\n if (success === 'true') {\n // Validate required fields\n const connectionId = urlParams.get('connection_id');\n const provider = urlParams.get('provider');\n const accountIdentifier = urlParams.get('account_identifier');\n\n if (!connectionId \|\| !provider \|\| !accountIdentifier) {\n cleanupRedirectState(state.returnUrl);\n onError({\n code: 'invalid_response',\n message: 'OAuth redirect returned incomplete connection data',\n });\n return true;\n }\n\n const connection: Connection = {\n connection_id: connectionId,\n provider: provider,\n provider_name: urlParams.get('provider_name') \|\| provider,\n account_identifier: accountIdentifier,\n timestamp: urlParams.get('timestamp') \|\| new Date().toISOString(),\n operation: parseOperation(urlParams.get('operation')),\n scopes: urlParams.get('scopes')?.split(',') \|\| [],\n status: parseStatus(urlParams.get('status')),\n };\n\n cleanupRedirectState(state.returnUrl);\n onSuccess([connection]); // Wrap in array for unified interface\n return true;\n }\n\n if (error) {\n const alterError: AlterError = {\n code: urlParams.get('error_code') \|\| 'oauth_error',\n message: urlParams.get('error_description') \|\| 'OAuth authorization failed',\n };\n\n cleanupRedirectState(state.returnUrl);\n onError(alterError);\n return true;\n }\n\n return false;\n } catch (err) {\n console.error('[OAuth Handler] Failed to check OAuth return:', err);\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n }\n\n /*\n Open OAuth popup (for desktop)\n /\n openPopup(url: string): void {\n // Calculate popup position (centered)\n const left = window.screenX + (window.outerWidth - this.options.popupWidth) / 2;\n const top = window.screenY + (window.outerHeight - this.options.popupHeight) / 2;\n\n const features = [\n `width=${this.options.popupWidth}`,\n `height=${this.options.popupHeight}`,\n `left=${left}`,\n `top=${top}`,\n 'resizable=yes',\n 'scrollbars=yes',\n 'status=yes',\n ].join(',');\n\n this.log('Opening OAuth popup:', url);\n\n // Open popup\n this.popup = window.open(url, 'alter_oauth_popup', features);\n\n if (!this.popup) {\n this.options.onError({\n code: 'popup_blocked',\n message: 'Popup was blocked by browser. Please allow popups for this site.',\n });\n return;\n }\n\n // Start monitoring popup\n this.startPolling();\n this.setupMessageListener();\n }\n\n /\n Close popup and clean up\n /\n close(): void {\n this.log('Closing OAuth handler');\n\n // Close popup\n if (this.popup && !this.popup.closed) {\n this.popup.close();\n }\n this.popup = null;\n\n // Stop polling\n if (this.pollInterval !== null) {\n clearInterval(this.pollInterval);\n this.pollInterval = null;\n }\n\n // Remove message listener\n if (this.messageListener) {\n window.removeEventListener('message', this.messageListener);\n this.messageListener = null;\n }\n }\n\n /\n Poll to detect when popup is closed\n /\n private startPolling(): void {\n this.pollInterval = window.setInterval(() => {\n if (this.settled) return;\n if (!this.popup \|\| this.popup.closed) {\n this.log('Popup closed by user');\n this.settled = true;\n this.close();\n this.options.onCancel();\n }\n }, 500);\n }\n\n /\n Listen for postMessage from OAuth callback page\n /\n private setupMessageListener(): void {\n this.messageListener = (event: MessageEvent) => {\n // Ignore if already settled (prevents race with polling)\n if (this.settled) return;\n\n // Validate origin against the expected backend origin\n if (event.origin !== this.expectedOrigin) {\n this.log('Rejected message from unexpected origin:', event.origin, '(expected:', this.expectedOrigin + ')');\n return;\n }\n\n this.log('Received message from', event.origin);\n\n const data = event.data;\n\n // Check message type\n if (data && typeof data === 'object') {\n if (data.type === 'alter_connect_success') {\n this.log('OAuth success');\n\n // New format: connections array (multi-provider)\n if (Array.isArray(data.connections)) {\n this.log('Multi-provider success:', data.connections.length, 'connections');\n const connections: Connection[] = [];\n for (const item of data.connections) {\n if (!item.connection_id \|\| !item.provider) {\n this.log('Skipping invalid connection item:', item);\n continue;\n }\n connections.push({\n connection_id: item.connection_id as string,\n provider: item.provider as string,\n provider_name: (item.provider_name as string) \|\| (item.provider as string),\n account_identifier: (item.account_identifier as string) \|\| '',\n timestamp: (item.timestamp as string) \|\| new Date().toISOString(),\n operation: parseOperation(item.operation as string \| undefined),\n scopes: Array.isArray(item.scopes) ? item.scopes as string[] : [],\n status: parseStatus(item.status as string \| undefined),\n metadata: item.metadata as Connection['metadata'],\n });\n }\n\n if (connections.length === 0) {\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned empty connections array',\n });\n return;\n }\n\n this.settled = true;\n this.close();\n this.options.onSuccess(connections);\n return;\n }\n\n // Legacy format: single connection (backward compat)\n const validationError = validateConnectionPayload(data);\n if (validationError) {\n this.log('Invalid connection payload:', validationError);\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: `Server returned incomplete connection data: ${validationError}`,\n });\n return;\n }\n\n const connection: Connection = {\n connection_id: data.connection_id as string,\n provider: data.provider as string,\n provider_name: (data.provider_name as string) \|\| (data.provider as string),\n account_identifier: data.account_identifier as string,\n timestamp: data.timestamp as string,\n operation: parseOperation(data.operation as string \| undefined),\n scopes: Array.isArray(data.scopes) ? data.scopes as string[] : [],\n status: parseStatus(data.status as string \| undefined),\n metadata: data.metadata as Connection['metadata'],\n };\n\n this.settled = true;\n this.close();\n this.options.onSuccess([connection]); // Wrap in array for unified interface\n } else if (data.type === 'alter_connect_error') {\n this.log('OAuth error');\n\n const error: AlterError = {\n code: (data.error as string) \|\| 'oauth_error',\n message: (data.error_description as string) \|\| 'OAuth authorization failed',\n details: data as Record<string, unknown>,\n };\n\n this.settled = true;\n this.close();\n this.options.onError(error);\n }\n }\n };\n\n window.addEventListener('message', this.messageListener);\n }\n\n /\n Log debug message\n /\n private log(...args: unknown[]): void {\n if (this.options.debug) {\n console.log('[OAuth Handler]', ...args);\n }\n }\n}\n","/\n Main AlterConnect SDK class\n \n Opens the backend-served Connect UI in a popup. The backend handles Clerk auth,\n * provider selection, branding, and OAuth — then sends the result back via postMessage.\n /\n\nimport type { AlterConnectConfig, OpenOptions, Connection, AlterError } from '../types';\nimport { validateConfig, mergeConfig, debugLog, type FullConfig } from './config';\nimport { EventEmitter } from './events';\nimport { StateManager } from '../state/manager';\nimport { OAuthHandler } from '../oauth/handler';\n\n/\n SDK version\n /\nconst VERSION = '0.2.0';\n\n/\n Main SDK class\n /\nexport class AlterConnect {\n private config: FullConfig;\n private eventEmitter: EventEmitter;\n private stateManager: StateManager;\n private _isInitialized: boolean;\n private _oauthHandler: OAuthHandler \| null = null;\n private _baseURL: string = 'https://api.alterai.dev'; // Default, overridden in open()\n private _perOpenCleanups: Array<() => void> = [];\n\n /\n Private constructor (use AlterConnect.create() instead)\n /\n private constructor(config: AlterConnectConfig = {}) {\n // Validate and merge config\n validateConfig(config);\n this.config = mergeConfig(config);\n\n // Initialize components\n this.eventEmitter = new EventEmitter();\n this.stateManager = new StateManager();\n this._isInitialized = true;\n\n debugLog(this.config, 'Alter Connect SDK initialized', { version: VERSION });\n\n // Check if returning from OAuth redirect (mobile flow)\n this.checkRedirectReturn();\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * This runs automatically on SDK initialization\n /\n private checkRedirectReturn(): void {\n const handled = OAuthHandler.checkOAuthReturn(\n (connections: Connection[]) => {\n debugLog(this.config, 'OAuth redirect return - success:', connections);\n // Emit success event (will be picked up by event handlers if SDK was re-initialized)\n this.eventEmitter.emit('success', connections);\n },\n (error: AlterError) => {\n debugLog(this.config, 'OAuth redirect return - error:', error);\n // Emit error event\n this.eventEmitter.emit('error', error);\n }\n );\n\n if (handled) {\n debugLog(this.config, 'OAuth redirect return detected and handled');\n }\n }\n\n /\n Create a new AlterConnect instance\n \n @param config Optional configuration\n * @returns AlterConnect instance\n \n @example\n * const alterConnect = AlterConnect.create();\n * const alterConnect = AlterConnect.create({ debug: true });\n /\n static create(config?: AlterConnectConfig): AlterConnect {\n return new AlterConnect(config);\n }\n\n /\n Open the Connect UI in a popup window\n \n Opens the backend-served Connect UI at {baseURL}/oauth/connect#session={token}.\n * The backend handles Clerk auth, provider selection, branding, and OAuth flow.\n * On success, the backend sends a postMessage back to this window.\n \n @param options Configuration including the session token from your backend\n \n @example\n * // 1. Get session token from YOUR backend\n * const { session_token } = await fetch('/api/alter/create-session').then(r => r.json());\n \n // 2. Open Connect UI\n * await alterConnect.open({\n * token: session_token,\n * onSuccess: (connection) => {\n * console.log('Connected!', connection);\n * },\n * onError: (error) => {\n * console.error('Failed:', error);\n * }\n * });\n /\n async open(options: OpenOptions): Promise<void> {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call open() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Opening Connect UI');\n\n // Validate required options\n if (!options.token \|\| typeof options.token !== 'string') {\n throw this.createError('invalid_options', 'Session token is required. Create one from your backend using POST /sdk/oauth/connect/session');\n }\n\n if (!options.onSuccess \|\| typeof options.onSuccess !== 'function') {\n throw this.createError('invalid_options', 'onSuccess callback is required');\n }\n\n // Check if already open\n if (this.isOpen()) {\n debugLog(this.config, 'Connect UI is already open');\n return;\n }\n\n // Store baseURL (from backend session response, or default to production)\n this._baseURL = options.baseURL \|\| 'https://api.alterai.dev';\n\n // Create OAuth handler first — this validates baseURL and throws on invalid input.\n // We do this BEFORE setting isOpen to avoid leaving the SDK in a broken state.\n this._oauthHandler = new OAuthHandler({\n baseURL: this._baseURL,\n onSuccess: (connections: Connection[]) => {\n debugLog(this.config, 'OAuth success:', connections);\n this.handleOAuthSuccess(connections);\n },\n onError: (error: AlterError) => {\n debugLog(this.config, 'OAuth error:', error);\n this.handleOAuthError(error);\n },\n onCancel: () => {\n debugLog(this.config, 'OAuth cancelled (popup closed)');\n this.handleOAuthCancel();\n },\n popupWidth: 500,\n popupHeight: 700,\n debug: this.config.debug,\n });\n\n // Update state (after handler creation succeeds)\n this.stateManager.setState({\n isOpen: true,\n error: null,\n sessionToken: options.token,\n });\n\n // Register event handlers\n this.registerEventHandlers(options);\n\n // Build the Connect UI URL — the backend serves the full UI\n const connectURL = `${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(options.token)}`;\n\n debugLog(this.config, 'Connect URL:', connectURL);\n\n // Open the Connect UI (popup or redirect depending on device)\n this._oauthHandler.startOAuth(connectURL);\n\n // Emit analytics event\n if (options.onEvent) {\n options.onEvent('connect_opened', {\n timestamp: new Date().toISOString(),\n });\n }\n\n debugLog(this.config, 'Connect UI opened successfully');\n }\n\n /\n Close the Connect UI\n /\n close(): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call close() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Closing Connect UI');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Remove only per-open handlers (preserves global handlers from on())\n this._perOpenCleanups.forEach(cleanup => cleanup());\n this._perOpenCleanups = [];\n\n // Update state\n this.stateManager.setState({ isOpen: false });\n\n this.eventEmitter.emit('close');\n }\n\n /\n Destroy the SDK instance and clean up resources\n /\n destroy(): void {\n if (!this._isInitialized) {\n // Already destroyed, silently return\n return;\n }\n\n debugLog(this.config, 'Destroying SDK instance');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Update state\n if (this.stateManager.get('isOpen')) {\n this.stateManager.setState({ isOpen: false });\n }\n\n // Clean up resources\n this.eventEmitter.removeAllListeners();\n this.stateManager.clearListeners();\n this._isInitialized = false;\n }\n\n /\n Register an event listener\n /\n on(event: string, handler: (...args: any[]) => void): () => void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call on() - SDK instance has been destroyed');\n }\n\n return this.eventEmitter.on(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: (...args: any[]) => void): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call off() - SDK instance has been destroyed');\n }\n\n this.eventEmitter.off(event, handler);\n }\n\n /\n Check if Connect UI is open\n /\n isOpen(): boolean {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call isOpen() - SDK instance has been destroyed');\n }\n\n return this.stateManager.get('isOpen');\n }\n\n /\n Get SDK version\n /\n getVersion(): string {\n return VERSION;\n }\n\n /\n Clean up OAuth handler reference after a flow completes.\n * The OAuthHandler.close() is already called internally by the handler\n * before invoking callbacks, so we only need to null the reference here.\n /\n private cleanupHandler(): void {\n this._oauthHandler = null;\n }\n\n /\n Handle OAuth success\n /\n private handleOAuthSuccess(connections: Connection[]): void {\n this.cleanupHandler();\n this.eventEmitter.emit('success', connections);\n }\n\n /\n Handle OAuth error\n /\n private handleOAuthError(error: AlterError): void {\n this.cleanupHandler();\n this.stateManager.setState({ error });\n this.eventEmitter.emit('error', error);\n }\n\n /\n Handle OAuth cancellation (user closed popup)\n /\n private handleOAuthCancel(): void {\n this.cleanupHandler();\n this.eventEmitter.emit('exit');\n }\n\n /\n Register event handlers from OpenOptions\n /\n private registerEventHandlers(options: OpenOptions): void {\n // Success handler\n if (options.onSuccess) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('success', (connections: Connection[]) => {\n options.onSuccess(connections);\n this.close();\n })\n );\n }\n\n // Exit handler\n if (options.onExit) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('exit', () => {\n options.onExit!();\n this.close();\n })\n );\n }\n\n // Error handler — always registered to ensure close() is called\n this._perOpenCleanups.push(\n this.eventEmitter.on('error', (error: AlterError) => {\n if (options.onError) {\n options.onError(error);\n }\n this.close();\n })\n );\n\n // Event handler (analytics)\n if (options.onEvent) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('event', (eventName: string, metadata: any) => {\n options.onEvent!(eventName, metadata);\n })\n );\n }\n }\n\n /\n Create an AlterError object\n */\n private createError(code: string, message: string, details?: Record<string, any>): Error {\n const error = new Error(message);\n (error as any).code = code;\n (error as any).details = details;\n return error;\n }\n}\n"],"names":["debugLog","config","args","debug","console","log","EventEmitter","constructor","this","events","Map","on","event","handler","has","set","Set","get","add","off","handlers","delete","emit","forEach","error","removeAllListeners","clear","StateManager","state","isOpen","sessionToken","listeners","getState","key","setState","updates","notifyListeners","subscribe","listener","clearListeners","currentState","isMobileDevice","userAgent","navigator","vendor","window","opera","isMobileUA","test","hasTouchScreen","maxTouchPoints","msMaxTouchPoints","isSmallScreen","innerWidth","getDeviceType","parseOperation","value","parseStatus","cleanupRedirectState","returnUrl","sessionStorage","removeItem","cleanUrl","URL","history","replaceState","document","title","pathname","search","hash","location","OAuthHandler","options","popup","pollInterval","messageListener","settled","baseURL","onSuccess","onError","onCancel","popupWidth","popupHeight","expectedOrigin","origin","Error","startOAuth","url","parsed","code","message","deviceType","innerHeight","shouldUseRedirectFlow","openPopup","startRedirectFlow","timestamp","Date","now","href","setItem","JSON","stringify","details","checkOAuthReturn","stateJson","getItem","parse","urlParams","URLSearchParams","success","connectionId","provider","accountIdentifier","connection","connection_id","provider_name","account_identifier","toISOString","operation","scopes","split","status","alterError","err","left","screenX","outerWidth","top","screenY","outerHeight","features","join","open","startPolling","setupMessageListener","close","closed","clearInterval","removeEventListener","setInterval","data","type","Array","isArray","connections","length","item","push","metadata","validationError","validateConnectionPayload","error_description","addEventListener","VERSION","AlterConnect","_oauthHandler","_baseURL","_perOpenCleanups","mergeConfig","eventEmitter","stateManager","_isInitialized","version","checkRedirectReturn","create","createError","token","handleOAuthSuccess","handleOAuthError","handleOAuthCancel","registerEventHandlers","connectURL","encodeURIComponent","onEvent","cleanup","destroy","getVersion","cleanupHandler","onExit","eventName"],"mappings":"SAgCgBA,EAASC,KAAuBC,GAC1CD,EAAOE,OACTC,QAAQC,IAAI,qBAAsBH,EAEtC,OC3BaI,EAGX,WAAAC,GACEC,KAAKC,OAAS,IAAIC,GACpB,CAMA,EAAAC,CAAGC,EAAeC,GAQhB,OAPKL,KAAKC,OAAOK,IAAIF,IACnBJ,KAAKC,OAAOM,IAAIH,EAAO,IAAII,KAG7BR,KAAKC,OAAOQ,IAAIL,GAAQM,IAAIL,GAGrB,IAAML,KAAKW,IAAIP,EAAOC,EAC/B,CAKA,GAAAM,CAAIP,EAAeC,GACjB,MAAMO,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASC,OAAOR,EAEpB,CAKA,IAAAS,CAAKV,KAAkBV,GACrB,MAAMkB,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASG,QAAQV,IACf,IACEA,KAAWX,EACb,CAAE,MAAOsB,GACPpB,QAAQoB,MAAM,+CAA+CZ,MAAWY,EAC1E,GAGN,CAKA,kBAAAC,CAAmBb,GACbA,EACFJ,KAAKC,OAAOY,OAAOT,GAEnBJ,KAAKC,OAAOiB,OAEhB,QC9CWC,EAIX,WAAApB,GACEC,KAAKoB,MAAQ,CACXC,QAAQ,EACRC,aAAc,KACdN,MAAO,MAEThB,KAAKuB,UAAY,IAAIf,GACvB,CAKA,QAAAgB,GACE,MAAO,IAAKxB,KAAKoB,MACnB,CAKA,GAAAX,CAA8BgB,GAC5B,OAAOzB,KAAKoB,MAAMK,EACpB,CAKA,QAAAC,CAASC,GACP3B,KAAKoB,MAAQ,IAAKpB,KAAKoB,SAAUO,GACjC3B,KAAK4B,iBACP,CAKA,SAAAC,CAAUC,GAIR,OAHA9B,KAAKuB,UAAUb,IAAIoB,GAGZ,KACL9B,KAAKuB,UAAUV,OAAOiB,GAE1B,CAKA,cAAAC,GACE/B,KAAKuB,UAAUL,OACjB,CAKQ,eAAAU,GACN,MAAMI,EAAehC,KAAKwB,WAC1BxB,KAAKuB,UAAUR,QAAQe,IACrB,IACEA,EAASE,EACX,CAAE,MAAOhB,GACPpB,QAAQoB,MAAM,2CAA4CA,EAC5D,GAEJ,WC/EciB,IACd,MAAMC,EAAYC,UAAUD,WAAaC,UAAUC,QAAWC,OAAeC,MAIvEC,EADc,iEACWC,KAAKN,GAG9BO,EAAkB,iBAAkBJ,QACnBF,UAAUO,eAAiB,GAC1BP,UAAkBQ,iBAAmB,EAGvDC,EAAgBP,OAAOQ,YAAc,IAE3C,OAAON,GAAeE,GAAkBG,CAC1C,UAmBgBE,IACd,OAdOb,KAAoBI,OAAOQ,YAAc,IAcpB,QAPrBZ,KAAoBI,OAAOQ,WAAa,KAAOR,OAAOQ,YAAc,KAQ9C,SACtB,SACT,CCxBA,SAASE,EAAeC,GACtB,MAAc,WAAVA,EAA2B,SACjB,UAAVA,EAA0B,QACvB,UACT,CAKA,SAASC,EAAYD,GACnB,MAAc,YAAVA,EAA4B,UAClB,UAAVA,EAA0B,QACvB,QACT,CAKA,SAASE,EAAqBC,GAC5BC,eAAeC,WAAW,qBAC1B,IACE,MAAMC,EAAW,IAAIC,IAAIJ,GACzBd,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOL,EAASM,SAAWN,EAASO,OAASP,EAASQ,KACjG,CAAE,MAEAzB,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOtB,OAAO0B,SAASH,SAClE,CACF,OAyBaI,EAQX,WAAAjE,CAAYkE,GAPJjE,KAAAkE,MAAuB,KACvBlE,KAAAmE,aAA8B,KAC9BnE,KAAAoE,gBAA0D,KAG1DpE,KAAAqE,SAAmB,EAGzBrE,KAAKiE,QAAU,CACbK,QAASL,EAAQK,QACjBC,UAAWN,EAAQM,UACnBC,QAASP,EAAQO,QACjBC,SAAUR,EAAQQ,SAClBC,WAAYT,EAAQS,YAAc,IAClCC,YAAaV,EAAQU,aAAe,IACpChF,MAAOsE,EAAQtE,QAAS,EACxBiF,eAAgBX,EAAQW,gBAAkB,IAI5C,IACE5E,KAAK4E,eAAiB,IAAIrB,IAAIU,EAAQK,SAASO,MACjD,CAAE,MACA,MAAM,IAAIC,MACR,qBAAqBb,EAAQK,gFAEjC,CACF,CAKA,UAAAS,CAAWC,GAGT,IAAKhF,KAAKiE,QAAQW,eAChB,IACE,MAAMK,EAAS,IAAI1B,IAAIyB,GACvBhF,KAAKiE,QAAQW,eAAiBK,EAAOJ,OACrC7E,KAAKH,IAAI,2BAA4BG,KAAKiE,QAAQW,eACpD,CAAE,MAMA,OALA5E,KAAKH,IAAI,mDAAoDmF,QAC7DhF,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,oBACNC,QAAS,uEAGb,aDjEJ,MAAMC,EAAatC,IAGnB,MAAmB,UAAfsC,GAGe,WAAfA,GAA2B/C,OAAOgD,YAAchD,OAAOQ,UAM7D,CCwDQyC,IAIFtF,KAAKH,IAAI,gCACTG,KAAKuF,UAAUP,KAJfhF,KAAKH,IAAI,yCACTG,KAAKwF,kBAAkBR,GAK3B,CAMQ,iBAAAQ,CAAkBR,GACxBhF,KAAKH,IAAI,0BAA2BmF,GAGpC,MAAM5D,EAAQ,CACZqE,UAAWC,KAAKC,MAChBxC,UAAWd,OAAO0B,SAAS6B,MAG7B,IACExC,eAAeyC,QAAQ,oBAAqBC,KAAKC,UAAU3E,GAC7D,CAAE,MAAOJ,GAOP,OANAhB,KAAKH,IAAI,wBAAyBmB,QAClChB,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,iBACNC,QAAS,2DACTa,QAAS,CAAEhF,UAGf,CAGAqB,OAAO0B,SAAS6B,KAAOZ,CACzB,CAQA,uBAAOiB,CACL1B,EACAC,GAGA,MAAM0B,EAAY9C,eAAe+C,QAAQ,qBACzC,IAAKD,EACH,OAAO,EAGT,IACE,MAAM9E,EAAQ0E,KAAKM,MAAMF,GAIzB,GADgBR,KAAKC,MAAQvE,EAAMqE,UACrB,IAGZ,OADArC,eAAeC,WAAW,sBACnB,EAIT,MAAMgD,EAAY,IAAIC,gBAAgBjE,OAAO0B,SAASF,QAChD0C,EAAUF,EAAU5F,IAAI,yBACxBO,EAAQqF,EAAU5F,IAAI,uBAE5B,GAAgB,SAAZ8F,EAAoB,CAEtB,MAAMC,EAAeH,EAAU5F,IAAI,iBAC7BgG,EAAWJ,EAAU5F,IAAI,YACzBiG,EAAoBL,EAAU5F,IAAI,sBAExC,IAAK+F,IAAiBC,IAAaC,EAMjC,OALAxD,EAAqB9B,EAAM+B,WAC3BqB,EAAQ,CACNU,KAAM,mBACNC,QAAS,wDAEJ,EAGT,MAAMwB,EAAyB,CAC7BC,cAAeJ,EACfC,SAAUA,EACVI,cAAeR,EAAU5F,IAAI,kBAAoBgG,EACjDK,mBAAoBJ,EACpBjB,UAAWY,EAAU5F,IAAI,eAAgB,IAAIiF,MAAOqB,cACpDC,UAAWjE,EAAesD,EAAU5F,IAAI,cACxCwG,OAAQZ,EAAU5F,IAAI,WAAWyG,MAAM,MAAQ,GAC/CC,OAAQlE,EAAYoD,EAAU5F,IAAI,YAKpC,OAFAyC,EAAqB9B,EAAM+B,WAC3BoB,EAAU,CAACoC,KACJ,CACT,CAEA,GAAI3F,EAAO,CACT,MAAMoG,EAAyB,CAC7BlC,KAAMmB,EAAU5F,IAAI,eAAiB,cACrC0E,QAASkB,EAAU5F,IAAI,sBAAwB,8BAKjD,OAFAyC,EAAqB9B,EAAM+B,WAC3BqB,EAAQ4C,IACD,CACT,CAEA,OAAO,CACT,CAAE,MAAOC,GAGP,OAFAzH,QAAQoB,MAAM,gDAAiDqG,GAC/DjE,eAAeC,WAAW,sBACnB,CACT,CACF,CAKA,SAAAkC,CAAUP,GAER,MAAMsC,EAAOjF,OAAOkF,SAAWlF,OAAOmF,WAAaxH,KAAKiE,QAAQS,YAAc,EACxE+C,EAAMpF,OAAOqF,SAAWrF,OAAOsF,YAAc3H,KAAKiE,QAAQU,aAAe,EAEzEiD,EAAW,CACf,SAAS5H,KAAKiE,QAAQS,aACtB,UAAU1E,KAAKiE,QAAQU,cACvB,QAAQ2C,IACR,OAAOG,IACP,gBACA,iBACA,cACAI,KAAK,KAEP7H,KAAKH,IAAI,uBAAwBmF,GAGjChF,KAAKkE,MAAQ7B,OAAOyF,KAAK9C,EAAK,oBAAqB4C,GAE9C5H,KAAKkE,OASVlE,KAAK+H,eACL/H,KAAKgI,wBATHhI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,gBACNC,QAAS,oEAQf,CAKA,KAAA8C,GACEjI,KAAKH,IAAI,yBAGLG,KAAKkE,QAAUlE,KAAKkE,MAAMgE,QAC5BlI,KAAKkE,MAAM+D,QAEbjI,KAAKkE,MAAQ,KAGa,OAAtBlE,KAAKmE,eACPgE,cAAcnI,KAAKmE,cACnBnE,KAAKmE,aAAe,MAIlBnE,KAAKoE,kBACP/B,OAAO+F,oBAAoB,UAAWpI,KAAKoE,iBAC3CpE,KAAKoE,gBAAkB,KAE3B,CAKQ,YAAA2D,GACN/H,KAAKmE,aAAe9B,OAAOgG,YAAY,KACjCrI,KAAKqE,SACJrE,KAAKkE,QAASlE,KAAKkE,MAAMgE,SAC5BlI,KAAKH,IAAI,wBACTG,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQQ,aAEd,IACL,CAKQ,oBAAAuD,GACNhI,KAAKoE,gBAAmBhE,IAEtB,GAAIJ,KAAKqE,QAAS,OAGlB,GAAIjE,EAAMyE,SAAW7E,KAAK4E,eAExB,YADA5E,KAAKH,IAAI,2CAA4CO,EAAMyE,OAAQ,aAAc7E,KAAK4E,eAAiB,KAIzG5E,KAAKH,IAAI,wBAAyBO,EAAMyE,QAExC,MAAMyD,EAAOlI,EAAMkI,KAGnB,GAAIA,GAAwB,iBAATA,EACjB,GAAkB,0BAAdA,EAAKC,KAAkC,CAIzC,GAHAvI,KAAKH,IAAI,iBAGL2I,MAAMC,QAAQH,EAAKI,aAAc,CACnC1I,KAAKH,IAAI,0BAA2ByI,EAAKI,YAAYC,OAAQ,eAC7D,MAAMD,EAA4B,GAClC,IAAK,MAAME,KAAQN,EAAKI,YACjBE,EAAKhC,eAAkBgC,EAAKnC,SAIjCiC,EAAYG,KAAK,CACfjC,cAAegC,EAAKhC,cACpBH,SAAUmC,EAAKnC,SACfI,cAAgB+B,EAAK/B,eAA6B+B,EAAKnC,SACvDK,mBAAqB8B,EAAK9B,oBAAiC,GAC3DrB,UAAYmD,EAAKnD,YAAwB,IAAIC,MAAOqB,cACpDC,UAAWjE,EAAe6F,EAAK5B,WAC/BC,OAAQuB,MAAMC,QAAQG,EAAK3B,QAAU2B,EAAK3B,OAAqB,GAC/DE,OAAQlE,EAAY2F,EAAKzB,QACzB2B,SAAUF,EAAKE,WAZf9I,KAAKH,IAAI,oCAAqC+I,GAgBlD,OAA2B,IAAvBF,EAAYC,QACd3I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,8CAKbnF,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQM,UAAUmE,GAEzB,CAGA,MAAMK,EAxUhB,SAAmCT,GACjC,OAAKA,EAAK1B,eAA+C,iBAAvB0B,EAAK1B,cAGlC0B,EAAK7B,UAAqC,iBAAlB6B,EAAK7B,SAG7B6B,EAAKxB,oBAAyD,iBAA5BwB,EAAKxB,mBAGvCwB,EAAK7C,WAAuC,iBAAnB6C,EAAK7C,UAG5B,KAFE,+BAHA,wCAHA,8BAHA,kCAYX,CA0TkCuD,CAA0BV,GAClD,GAAIS,EAQF,OAPA/I,KAAKH,IAAI,8BAA+BkJ,GACxC/I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,+CAA+C4D,MAK5D,MAAMpC,EAAyB,CAC7BC,cAAe0B,EAAK1B,cACpBH,SAAU6B,EAAK7B,SACfI,cAAgByB,EAAKzB,eAA6ByB,EAAK7B,SACvDK,mBAAoBwB,EAAKxB,mBACzBrB,UAAW6C,EAAK7C,UAChBuB,UAAWjE,EAAeuF,EAAKtB,WAC/BC,OAAQuB,MAAMC,QAAQH,EAAKrB,QAAUqB,EAAKrB,OAAqB,GAC/DE,OAAQlE,EAAYqF,EAAKnB,QACzB2B,SAAUR,EAAKQ,UAGjB9I,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQM,UAAU,CAACoC,GAC1B,MAAO,GAAkB,wBAAd2B,EAAKC,KAAgC,CAC9CvI,KAAKH,IAAI,eAET,MAAMmB,EAAoB,CACxBkE,KAAOoD,EAAKtH,OAAoB,cAChCmE,QAAUmD,EAAKW,mBAAgC,6BAC/CjD,QAASsC,GAGXtI,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQxD,EACvB,GAIJqB,OAAO6G,iBAAiB,UAAWlJ,KAAKoE,gBAC1C,CAKQ,GAAAvE,IAAOH,GACTM,KAAKiE,QAAQtE,OACfC,QAAQC,IAAI,qBAAsBH,EAEtC,ECpaF,MAAMyJ,EAAU,cAKHC,EAYX,WAAArJ,CAAoBN,EAA6B,IAPzCO,KAAAqJ,cAAqC,KACrCrJ,KAAAsJ,SAAmB,0BACnBtJ,KAAAuJ,iBAAsC,GAQ5CvJ,KAAKP,OLbH,SAAsBA,GAC1B,MAAO,CACLE,MAAOF,EAAOE,QAAS,EAE3B,CKSkB6J,CAAY/J,GAG1BO,KAAKyJ,aAAe,IAAI3J,EACxBE,KAAK0J,aAAe,IAAIvI,EACxBnB,KAAK2J,gBAAiB,EAEtBnK,EAASQ,KAAKP,OAAQ,gCAAiC,CAAEmK,QAAST,IAGlEnJ,KAAK6J,qBACP,CAMQ,mBAAAA,GACU7F,EAAaiC,iBAC1ByC,IACClJ,EAASQ,KAAKP,OAAQ,mCAAoCiJ,GAE1D1I,KAAKyJ,aAAa3I,KAAK,UAAW4H,IAEnC1H,IACCxB,EAASQ,KAAKP,OAAQ,iCAAkCuB,GAExDhB,KAAKyJ,aAAa3I,KAAK,QAASE,MAKlCxB,EAASQ,KAAKP,OAAQ,6CAE1B,CAYA,aAAOqK,CAAOrK,GACZ,OAAO,IAAI2J,EAAa3J,EAC1B,CA0BA,UAAMqI,CAAK7D,GAET,IAAKjE,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,wDAM1C,GAHAvK,EAASQ,KAAKP,OAAQ,uBAGjBwE,EAAQ+F,OAAkC,iBAAlB/F,EAAQ+F,MACnC,MAAMhK,KAAK+J,YAAY,kBAAmB,iGAG5C,IAAK9F,EAAQM,WAA0C,mBAAtBN,EAAQM,UACvC,MAAMvE,KAAK+J,YAAY,kBAAmB,kCAI5C,GAAI/J,KAAKqB,SAEP,YADA7B,EAASQ,KAAKP,OAAQ,8BAKxBO,KAAKsJ,SAAWrF,EAAQK,SAAW,0BAInCtE,KAAKqJ,cAAgB,IAAIrF,EAAa,CACpCM,QAAStE,KAAKsJ,SACd/E,UAAYmE,IACVlJ,EAASQ,KAAKP,OAAQ,iBAAkBiJ,GACxC1I,KAAKiK,mBAAmBvB,IAE1BlE,QAAUxD,IACRxB,EAASQ,KAAKP,OAAQ,eAAgBuB,GACtChB,KAAKkK,iBAAiBlJ,IAExByD,SAAU,KACRjF,EAASQ,KAAKP,OAAQ,kCACtBO,KAAKmK,qBAEPzF,WAAY,IACZC,YAAa,IACbhF,MAAOK,KAAKP,OAAOE,QAIrBK,KAAK0J,aAAahI,SAAS,CACzBL,QAAQ,EACRL,MAAO,KACPM,aAAc2C,EAAQ+F,QAIxBhK,KAAKoK,sBAAsBnG,GAG3B,MAAMoG,EAAa,GAAGrK,KAAKsJ,sCAAsCgB,mBAAmBrG,EAAQ+F,SAE5FxK,EAASQ,KAAKP,OAAQ,eAAgB4K,GAGtCrK,KAAKqJ,cAActE,WAAWsF,GAG1BpG,EAAQsG,SACVtG,EAAQsG,QAAQ,iBAAkB,CAChC9E,WAAW,IAAIC,MAAOqB,gBAI1BvH,EAASQ,KAAKP,OAAQ,iCACxB,CAKA,KAAAwI,GAEE,IAAKjI,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,yDAG1CvK,EAASQ,KAAKP,OAAQ,sBAGlBO,KAAKqJ,gBACPrJ,KAAKqJ,cAAcpB,QACnBjI,KAAKqJ,cAAgB,MAIvBrJ,KAAKuJ,iBAAiBxI,QAAQyJ,GAAWA,KACzCxK,KAAKuJ,iBAAmB,GAGxBvJ,KAAK0J,aAAahI,SAAS,CAAEL,QAAQ,IAErCrB,KAAKyJ,aAAa3I,KAAK,QACzB,CAKA,OAAA2J,GACOzK,KAAK2J,iBAKVnK,EAASQ,KAAKP,OAAQ,2BAGlBO,KAAKqJ,gBACPrJ,KAAKqJ,cAAcpB,QACnBjI,KAAKqJ,cAAgB,MAInBrJ,KAAK0J,aAAajJ,IAAI,WACxBT,KAAK0J,aAAahI,SAAS,CAAEL,QAAQ,IAIvCrB,KAAKyJ,aAAaxI,qBAClBjB,KAAK0J,aAAa3H,iBAClB/B,KAAK2J,gBAAiB,EACxB,CAKA,EAAAxJ,CAAGC,EAAeC,GAEhB,IAAKL,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,sDAG1C,OAAO/J,KAAKyJ,aAAatJ,GAAGC,EAAOC,EACrC,CAKA,GAAAM,CAAIP,EAAeC,GAEjB,IAAKL,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,uDAG1C/J,KAAKyJ,aAAa9I,IAAIP,EAAOC,EAC/B,CAKA,MAAAgB,GAEE,IAAKrB,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,0DAG1C,OAAO/J,KAAK0J,aAAajJ,IAAI,SAC/B,CAKA,UAAAiK,GACE,OAAOvB,CACT,CAOQ,cAAAwB,GACN3K,KAAKqJ,cAAgB,IACvB,CAKQ,kBAAAY,CAAmBvB,GACzB1I,KAAK2K,iBACL3K,KAAKyJ,aAAa3I,KAAK,UAAW4H,EACpC,CAKQ,gBAAAwB,CAAiBlJ,GACvBhB,KAAK2K,iBACL3K,KAAK0J,aAAahI,SAAS,CAAEV,UAC7BhB,KAAKyJ,aAAa3I,KAAK,QAASE,EAClC,CAKQ,iBAAAmJ,GACNnK,KAAK2K,iBACL3K,KAAKyJ,aAAa3I,KAAK,OACzB,CAKQ,qBAAAsJ,CAAsBnG,GAExBA,EAAQM,WACVvE,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,UAAYuI,IAC/BzE,EAAQM,UAAUmE,GAClB1I,KAAKiI,WAMPhE,EAAQ2G,QACV5K,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,OAAQ,KAC3B8D,EAAQ2G,SACR5K,KAAKiI,WAMXjI,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,QAAUa,IACzBiD,EAAQO,SACVP,EAAQO,QAAQxD,GAElBhB,KAAKiI,WAKLhE,EAAQsG,SACVvK,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,QAAS,CAAC0K,EAAmB/B,KAChD7E,EAAQsG,QAASM,EAAW/B,KAIpC,CAKQ,WAAAiB,CAAY7E,EAAcC,EAAiBa,GACjD,MAAMhF,EAAQ,IAAI8D,MAAMK,GAGxB,OAFCnE,EAAckE,KAAOA,EACrBlE,EAAcgF,QAAUA,EAClBhF,CACT"}
1	+ {"version":3,"file":"alter-connect.esm.js","sources":["../src/core/config.ts","../src/core/events.ts","../src/state/manager.ts","../src/utils/mobile.ts","../src/oauth/handler.ts","../src/core/alter-connect.ts"],"sourcesContent":["/*\n Configuration validation and management\n /\n\nimport type { AlterConnectConfig } from '../types';\n\n/\n Internal config used by the SDK\n /\ninterface FullConfig {\n debug: boolean;\n}\n\n/\n Validate configuration\n /\nexport function validateConfig(_config: AlterConnectConfig): void {\n // Config only has `debug` — nothing to validate\n}\n\n/\n Merge user config with defaults\n /\nexport function mergeConfig(config: AlterConnectConfig): FullConfig {\n return {\n debug: config.debug ?? false,\n };\n}\n\n/\n Debug logging helper\n /\nexport function debugLog(config: FullConfig, ...args: any[]): void {\n if (config.debug) {\n console.log('[Alter Connect]', ...args);\n }\n}\n\n/\n Export FullConfig type for use in other modules\n /\nexport type { FullConfig };\n","/\n Simple event emitter for SDK events\n /\n\ntype EventHandler = (...args: any[]) => void;\n\n/\n Event emitter for SDK internal events\n /\nexport class EventEmitter {\n private events: Map<string, Set<EventHandler>>;\n\n constructor() {\n this.events = new Map();\n }\n\n /\n Register an event listener\n * @returns Unsubscribe function\n /\n on(event: string, handler: EventHandler): () => void {\n if (!this.events.has(event)) {\n this.events.set(event, new Set());\n }\n\n this.events.get(event)!.add(handler);\n\n // Return unsubscribe function\n return () => this.off(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: EventHandler): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.delete(handler);\n }\n }\n\n /\n Emit an event\n /\n emit(event: string, ...args: any[]): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.forEach(handler => {\n try {\n handler(...args);\n } catch (error) {\n console.error(`[Alter Connect] Error in event handler for '${event}':`, error);\n }\n });\n }\n }\n\n /\n Remove all listeners for an event, or all listeners if no event specified\n /\n removeAllListeners(event?: string): void {\n if (event) {\n this.events.delete(event);\n } else {\n this.events.clear();\n }\n }\n}\n","/\n State management for SDK\n /\n\nimport type { AlterError } from '../types';\n\n/\n SDK internal state\n /\nexport interface SDKState {\n isOpen: boolean;\n sessionToken: string \| null;\n error: AlterError \| null;\n}\n\ntype StateListener = (state: SDKState) => void;\n\n/\n Simple state manager\n /\nexport class StateManager {\n private state: SDKState;\n private listeners: Set<StateListener>;\n\n constructor() {\n this.state = {\n isOpen: false,\n sessionToken: null,\n error: null,\n };\n this.listeners = new Set();\n }\n\n /\n Get current state\n /\n getState(): Readonly<SDKState> {\n return { ...this.state };\n }\n\n /\n Get a specific state value\n /\n get<K extends keyof SDKState>(key: K): SDKState[K] {\n return this.state[key];\n }\n\n /\n Update state\n /\n setState(updates: Partial<SDKState>): void {\n this.state = { ...this.state, ...updates };\n this.notifyListeners();\n }\n\n /\n Subscribe to state changes\n /\n subscribe(listener: StateListener): () => void {\n this.listeners.add(listener);\n\n // Return unsubscribe function\n return () => {\n this.listeners.delete(listener);\n };\n }\n\n /\n Clear all listeners\n /\n clearListeners(): void {\n this.listeners.clear();\n }\n\n /\n Notify all listeners of state change\n /\n private notifyListeners(): void {\n const currentState = this.getState();\n this.listeners.forEach(listener => {\n try {\n listener(currentState);\n } catch (error) {\n console.error('[Alter Connect] Error in state listener:', error);\n }\n });\n }\n}\n","/\n Mobile device detection and responsive utilities\n /\n\n/\n Detect if the current device is a mobile device\n /\nexport function isMobileDevice(): boolean {\n const userAgent = navigator.userAgent \|\| navigator.vendor \|\| (window as any).opera;\n\n // Check for mobile patterns\n const mobileRegex = /Android\|webOS\|iPhone\|iPad\|iPod\|BlackBerry\|IEMobile\|Opera Mini/i;\n const isMobileUA = mobileRegex.test(userAgent);\n\n // Check for touch capability\n const hasTouchScreen = ('ontouchstart' in window) \|\|\n (navigator.maxTouchPoints > 0) \|\|\n ((navigator as any).msMaxTouchPoints > 0);\n\n // Check screen size\n const isSmallScreen = window.innerWidth <= 768;\n\n return isMobileUA \|\| (hasTouchScreen && isSmallScreen);\n}\n\n/\n Detect if the device is specifically a phone (vs tablet)\n /\nexport function isPhoneDevice(): boolean {\n return isMobileDevice() && window.innerWidth <= 480;\n}\n\n/\n Detect if the device is a tablet\n /\nexport function isTabletDevice(): boolean {\n return isMobileDevice() && window.innerWidth > 480 && window.innerWidth <= 1024;\n}\n\n/\n Get the device type\n /\nexport function getDeviceType(): 'desktop' \| 'tablet' \| 'phone' {\n if (isPhoneDevice()) return 'phone';\n if (isTabletDevice()) return 'tablet';\n return 'desktop';\n}\n\n/\n Check if we should use redirect flow instead of popup\n \n Popup windows don't work well on mobile:\n * - Browsers often block them\n * - They open as full-screen tabs\n * - Users lose context of parent app\n /\nexport function shouldUseRedirectFlow(): boolean {\n const deviceType = getDeviceType();\n\n // Always use redirect for phones\n if (deviceType === 'phone') return true;\n\n // Use redirect for tablets in portrait mode (popups are cramped)\n if (deviceType === 'tablet' && window.innerHeight > window.innerWidth) {\n return true;\n }\n\n // Use popup for desktop and tablets in landscape\n return false;\n}\n","/\n OAuth popup and redirect handler\n /\n\nimport type { Grant, AlterError } from '../types';\nimport { shouldUseRedirectFlow } from '../utils/mobile';\n\ninterface OAuthHandlerOptions {\n baseURL: string;\n onSuccess: (grants: Grant[]) => void;\n onError: (error: AlterError) => void;\n onCancel: () => void;\n popupWidth?: number;\n popupHeight?: number;\n debug?: boolean;\n /* Expected origin for postMessage validation. Derived from the OAuth URL. /\n expectedOrigin?: string;\n}\n\n/\n Parse an operation string into a valid Grant['operation'] value\n /\nfunction parseOperation(value: string \| null \| undefined): Grant['operation'] {\n if (value === 'reauth') return 'reauth';\n return 'creation';\n}\n\n/\n Parse a status string into a valid Grant['status'] value\n /\nfunction parseStatus(value: string \| null \| undefined): Grant['status'] {\n if (value === 'pending') return 'pending';\n if (value === 'error') return 'error';\n return 'active';\n}\n\n/\n Clean up OAuth redirect state and restore the original URL\n /\nfunction cleanupRedirectState(returnUrl: string): void {\n sessionStorage.removeItem('alter_oauth_state');\n try {\n const cleanUrl = new URL(returnUrl);\n window.history.replaceState({}, document.title, cleanUrl.pathname + cleanUrl.search + cleanUrl.hash);\n } catch {\n // If returnUrl is malformed, just remove query params from current URL\n window.history.replaceState({}, document.title, window.location.pathname);\n }\n}\n\n/\n Handles OAuth flow in popup window\n /\nexport class OAuthHandler {\n private popup: Window \| null = null;\n private pollInterval: number \| null = null;\n private messageListener: ((event: MessageEvent) => void) \| null = null;\n private options: Required<OAuthHandlerOptions>;\n private expectedOrigin: string;\n private settled: boolean = false;\n\n constructor(options: OAuthHandlerOptions) {\n this.options = {\n baseURL: options.baseURL,\n onSuccess: options.onSuccess,\n onError: options.onError,\n onCancel: options.onCancel,\n popupWidth: options.popupWidth \|\| 500,\n popupHeight: options.popupHeight \|\| 700,\n debug: options.debug \|\| false,\n expectedOrigin: options.expectedOrigin \|\| '',\n };\n\n // Extract origin from baseURL for postMessage validation\n try {\n this.expectedOrigin = new URL(options.baseURL).origin;\n } catch {\n throw new Error(\n `Invalid baseURL: \"${options.baseURL}\". Must be a full URL with protocol (e.g., \"https://api.alterauth.com\").`\n );\n }\n }\n\n /\n Start OAuth flow (automatically chooses popup or redirect based on device)\n /\n startOAuth(url: string): void {\n // Derive expected origin from the OAuth URL if not explicitly set.\n // SECURITY: Fail-closed — if we can't determine origin, abort the flow.\n if (!this.options.expectedOrigin) {\n try {\n const parsed = new URL(url);\n this.options.expectedOrigin = parsed.origin;\n this.log('Derived expected origin:', this.options.expectedOrigin);\n } catch {\n this.log('Failed to parse OAuth URL for origin validation:', url);\n this.options.onError({\n code: 'invalid_oauth_url',\n message: 'Failed to determine origin from OAuth URL. Cannot proceed securely.',\n });\n return;\n }\n }\n\n if (shouldUseRedirectFlow()) {\n this.log('Using redirect flow for mobile device');\n this.startRedirectFlow(url);\n } else {\n this.log('Using popup flow for desktop');\n this.openPopup(url);\n }\n }\n\n /\n Start OAuth redirect flow (for mobile)\n * Saves state and redirects the entire page\n /\n private startRedirectFlow(url: string): void {\n this.log('Starting redirect flow:', url);\n\n // Save state to sessionStorage to restore after redirect\n const state = {\n timestamp: Date.now(),\n returnUrl: window.location.href,\n };\n\n try {\n sessionStorage.setItem('alter_oauth_state', JSON.stringify(state));\n } catch (error) {\n this.log('Failed to save state:', error);\n this.options.onError({\n code: 'redirect_error',\n message: 'Failed to start OAuth flow: could not save session state',\n details: { error },\n });\n return;\n }\n\n // Redirect to OAuth URL (full page redirect)\n window.location.href = url;\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * Call this on page load to detect OAuth return\n \n @returns true if OAuth return was detected and handled\n /\n static checkOAuthReturn(\n onSuccess: (grants: Grant[]) => void,\n onError: (error: AlterError) => void\n ): boolean {\n // Check if we have OAuth state saved\n const stateJson = sessionStorage.getItem('alter_oauth_state');\n if (!stateJson) {\n return false;\n }\n\n try {\n const state = JSON.parse(stateJson);\n\n // Check if this is a valid OAuth return (within 5 minutes)\n const elapsed = Date.now() - state.timestamp;\n if (elapsed > 5 60 * 1000) {\n // Stale state, clean up\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n\n // Check URL for OAuth callback parameters\n const urlParams = new URLSearchParams(window.location.search);\n const success = urlParams.get('alter_connect_success');\n const error = urlParams.get('alter_connect_error');\n\n if (success === 'true') {\n // Validate required fields\n const grantId = urlParams.get('grant_id');\n const provider = urlParams.get('provider');\n const accountIdentifier = urlParams.get('account_identifier');\n\n if (!grantId \|\| !provider \|\| !accountIdentifier) {\n cleanupRedirectState(state.returnUrl);\n onError({\n code: 'invalid_response',\n message: 'OAuth redirect returned incomplete grant data',\n });\n return true;\n }\n\n const grant: Grant = {\n grant_id: grantId,\n provider: provider,\n provider_name: urlParams.get('provider_name') \|\| provider,\n account_identifier: accountIdentifier,\n timestamp: urlParams.get('timestamp') \|\| new Date().toISOString(),\n operation: parseOperation(urlParams.get('operation')),\n scopes: urlParams.get('scopes')?.split(',') \|\| [],\n status: parseStatus(urlParams.get('status')),\n };\n\n cleanupRedirectState(state.returnUrl);\n onSuccess([grant]); // Wrap in array for unified interface\n return true;\n }\n\n if (error) {\n const alterError: AlterError = {\n code: urlParams.get('error_code') \|\| 'oauth_error',\n message: urlParams.get('error_description') \|\| 'OAuth authorization failed',\n };\n\n cleanupRedirectState(state.returnUrl);\n onError(alterError);\n return true;\n }\n\n return false;\n } catch (err) {\n console.error('[OAuth Handler] Failed to check OAuth return:', err);\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n }\n\n /*\n Open OAuth popup (for desktop)\n /\n openPopup(url: string): void {\n // Calculate popup position (centered)\n const left = window.screenX + (window.outerWidth - this.options.popupWidth) / 2;\n const top = window.screenY + (window.outerHeight - this.options.popupHeight) / 2;\n\n const features = [\n `width=${this.options.popupWidth}`,\n `height=${this.options.popupHeight}`,\n `left=${left}`,\n `top=${top}`,\n 'resizable=yes',\n 'scrollbars=yes',\n 'status=yes',\n ].join(',');\n\n this.log('Opening OAuth popup:', url);\n\n // Open popup\n this.popup = window.open(url, 'alter_oauth_popup', features);\n\n if (!this.popup) {\n this.options.onError({\n code: 'popup_blocked',\n message: 'Popup was blocked by browser. Please allow popups for this site.',\n });\n return;\n }\n\n // Start monitoring popup\n this.startPolling();\n this.setupMessageListener();\n }\n\n /\n Close popup and clean up\n /\n close(): void {\n this.log('Closing OAuth handler');\n\n // Close popup\n if (this.popup && !this.popup.closed) {\n this.popup.close();\n }\n this.popup = null;\n\n // Stop polling\n if (this.pollInterval !== null) {\n clearInterval(this.pollInterval);\n this.pollInterval = null;\n }\n\n // Remove message listener\n if (this.messageListener) {\n window.removeEventListener('message', this.messageListener);\n this.messageListener = null;\n }\n }\n\n /\n Poll to detect when popup is closed\n /\n private startPolling(): void {\n this.pollInterval = window.setInterval(() => {\n if (this.settled) return;\n if (!this.popup \|\| this.popup.closed) {\n this.log('Popup closed by user');\n this.settled = true;\n this.close();\n this.options.onCancel();\n }\n }, 500);\n }\n\n /\n Listen for postMessage from OAuth callback page\n /\n private setupMessageListener(): void {\n this.messageListener = (event: MessageEvent) => {\n // Ignore if already settled (prevents race with polling)\n if (this.settled) return;\n\n // Validate origin against the expected backend origin\n if (event.origin !== this.expectedOrigin) {\n this.log('Rejected message from unexpected origin:', event.origin, '(expected:', this.expectedOrigin + ')');\n return;\n }\n\n this.log('Received message from', event.origin);\n\n const data = event.data;\n\n // Check message type\n if (data && typeof data === 'object') {\n if (data.type === 'alter_connect_success') {\n this.log('OAuth success');\n\n // Accept both grants array and legacy connections array\n const rawGrants = Array.isArray(data.grants) ? data.grants : null;\n if (rawGrants) {\n this.log('Multi-provider success:', rawGrants.length, 'grants');\n const grants: Grant[] = [];\n for (const item of rawGrants) {\n const grantId = item.grant_id as string \| undefined;\n if (!grantId \|\| !item.provider) {\n this.log('Skipping invalid grant item:', item);\n continue;\n }\n grants.push({\n grant_id: grantId,\n provider: item.provider as string,\n provider_name: (item.provider_name as string) \|\| (item.provider as string),\n account_identifier: (item.account_identifier as string) \|\| '',\n timestamp: (item.timestamp as string) \|\| new Date().toISOString(),\n operation: parseOperation(item.operation as string \| undefined),\n scopes: Array.isArray(item.scopes) ? item.scopes as string[] : [],\n status: parseStatus(item.status as string \| undefined),\n metadata: item.metadata as Grant['metadata'],\n });\n }\n\n if (grants.length === 0) {\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned empty grants array',\n });\n return;\n }\n\n this.settled = true;\n this.close();\n this.options.onSuccess(grants);\n return;\n }\n\n // No valid grants array found\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned success without grants array',\n });\n } else if (data.type === 'alter_connect_error') {\n this.log('OAuth error');\n\n const error: AlterError = {\n code: (data.error as string) \|\| 'oauth_error',\n message: (data.error_description as string) \|\| 'OAuth authorization failed',\n details: data as Record<string, unknown>,\n };\n\n this.settled = true;\n this.close();\n this.options.onError(error);\n }\n }\n };\n\n window.addEventListener('message', this.messageListener);\n }\n\n /\n Log debug message\n /\n private log(...args: unknown[]): void {\n if (this.options.debug) {\n console.log('[OAuth Handler]', ...args);\n }\n }\n}\n","/\n Main AlterConnect SDK class\n \n Opens the backend-served Connect UI in a popup. The backend handles\n * provider selection, branding, and OAuth — then sends the result back via postMessage.\n /\n\nimport type { AlterConnectConfig, OpenOptions, Grant, AlterError } from '../types';\nimport { validateConfig, mergeConfig, debugLog, type FullConfig } from './config';\nimport { EventEmitter } from './events';\nimport { StateManager } from '../state/manager';\nimport { OAuthHandler } from '../oauth/handler';\n\n/\n SDK version\n /\nconst VERSION = '0.2.0';\n\n/\n Main SDK class\n /\nexport class AlterConnect {\n private config: FullConfig;\n private eventEmitter: EventEmitter;\n private stateManager: StateManager;\n private _isInitialized: boolean;\n private _oauthHandler: OAuthHandler \| null = null;\n private _baseURL: string = 'https://api.alterauth.com'; // Default, overridden in open()\n private _perOpenCleanups: Array<() => void> = [];\n\n /\n Private constructor (use AlterConnect.create() instead)\n /\n private constructor(config: AlterConnectConfig = {}) {\n // Validate and merge config\n validateConfig(config);\n this.config = mergeConfig(config);\n\n // Initialize components\n this.eventEmitter = new EventEmitter();\n this.stateManager = new StateManager();\n this._isInitialized = true;\n\n debugLog(this.config, 'Alter Connect SDK initialized', { version: VERSION });\n\n // Check if returning from OAuth redirect (mobile flow)\n this.checkRedirectReturn();\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * This runs automatically on SDK initialization\n /\n private checkRedirectReturn(): void {\n const handled = OAuthHandler.checkOAuthReturn(\n (grants: Grant[]) => {\n debugLog(this.config, 'OAuth redirect return - success:', grants);\n // Emit success event (will be picked up by event handlers if SDK was re-initialized)\n this.eventEmitter.emit('success', grants);\n },\n (error: AlterError) => {\n debugLog(this.config, 'OAuth redirect return - error:', error);\n // Emit error event\n this.eventEmitter.emit('error', error);\n }\n );\n\n if (handled) {\n debugLog(this.config, 'OAuth redirect return detected and handled');\n }\n }\n\n /\n Create a new AlterConnect instance\n \n @param config Optional configuration\n * @returns AlterConnect instance\n \n @example\n * const alterConnect = AlterConnect.create();\n * const alterConnect = AlterConnect.create({ debug: true });\n /\n static create(config?: AlterConnectConfig): AlterConnect {\n return new AlterConnect(config);\n }\n\n /\n Open the Connect UI in a popup window\n \n Opens the backend-served Connect UI at {baseURL}/oauth/connect#session={token}.\n * The backend handles provider selection, branding, and OAuth flow.\n * On success, the backend sends a postMessage back to this window.\n \n @param options Configuration including the session token from your backend\n \n @example\n * // 1. Get session token from YOUR backend\n * const { session_token } = await fetch('/api/alter/create-session').then(r => r.json());\n \n // 2. Open Connect UI\n * await alterConnect.open({\n * token: session_token,\n * onSuccess: (grants) => {\n * console.log('Connected!', grants);\n * },\n * onError: (error) => {\n * console.error('Failed:', error);\n * }\n * });\n /\n async open(options: OpenOptions): Promise<void> {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call open() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Opening Connect UI');\n\n // Validate required options\n if (!options.token \|\| typeof options.token !== 'string') {\n throw this.createError('invalid_options', 'Session token is required. Create one from your backend using POST /sdk/oauth/connect/session');\n }\n\n if (!options.onSuccess \|\| typeof options.onSuccess !== 'function') {\n throw this.createError('invalid_options', 'onSuccess callback is required');\n }\n\n // Check if already open\n if (this.isOpen()) {\n debugLog(this.config, 'Connect UI is already open');\n return;\n }\n\n // Store baseURL (from backend session response, or default to production)\n this._baseURL = options.baseURL \|\| 'https://api.alterauth.com';\n\n // Create OAuth handler first — this validates baseURL and throws on invalid input.\n // We do this BEFORE setting isOpen to avoid leaving the SDK in a broken state.\n this._oauthHandler = new OAuthHandler({\n baseURL: this._baseURL,\n onSuccess: (grants: Grant[]) => {\n debugLog(this.config, 'OAuth success:', grants);\n this.handleOAuthSuccess(grants);\n },\n onError: (error: AlterError) => {\n debugLog(this.config, 'OAuth error:', error);\n this.handleOAuthError(error);\n },\n onCancel: () => {\n debugLog(this.config, 'OAuth cancelled (popup closed)');\n this.handleOAuthCancel();\n },\n popupWidth: 500,\n popupHeight: 700,\n debug: this.config.debug,\n });\n\n // Update state (after handler creation succeeds)\n this.stateManager.setState({\n isOpen: true,\n error: null,\n sessionToken: options.token,\n });\n\n // Register event handlers\n this.registerEventHandlers(options);\n\n // Build the Connect UI URL — the backend serves the full UI\n const connectURL = `${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(options.token)}`;\n\n debugLog(this.config, 'Connect URL:', connectURL);\n\n // Open the Connect UI (popup or redirect depending on device)\n this._oauthHandler.startOAuth(connectURL);\n\n // Emit analytics event\n if (options.onEvent) {\n options.onEvent('connect_opened', {\n timestamp: new Date().toISOString(),\n });\n }\n\n debugLog(this.config, 'Connect UI opened successfully');\n }\n\n /\n Close the Connect UI\n /\n close(): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call close() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Closing Connect UI');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Remove only per-open handlers (preserves global handlers from on())\n this._perOpenCleanups.forEach(cleanup => cleanup());\n this._perOpenCleanups = [];\n\n // Update state\n this.stateManager.setState({ isOpen: false });\n\n this.eventEmitter.emit('close');\n }\n\n /\n Destroy the SDK instance and clean up resources\n /\n destroy(): void {\n if (!this._isInitialized) {\n // Already destroyed, silently return\n return;\n }\n\n debugLog(this.config, 'Destroying SDK instance');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Update state\n if (this.stateManager.get('isOpen')) {\n this.stateManager.setState({ isOpen: false });\n }\n\n // Clean up resources\n this.eventEmitter.removeAllListeners();\n this.stateManager.clearListeners();\n this._isInitialized = false;\n }\n\n /\n Register an event listener\n /\n on(event: string, handler: (...args: any[]) => void): () => void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call on() - SDK instance has been destroyed');\n }\n\n return this.eventEmitter.on(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: (...args: any[]) => void): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call off() - SDK instance has been destroyed');\n }\n\n this.eventEmitter.off(event, handler);\n }\n\n /\n Check if Connect UI is open\n /\n isOpen(): boolean {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call isOpen() - SDK instance has been destroyed');\n }\n\n return this.stateManager.get('isOpen');\n }\n\n /\n Get SDK version\n /\n getVersion(): string {\n return VERSION;\n }\n\n /\n Clean up OAuth handler reference after a flow completes.\n * The OAuthHandler.close() is already called internally by the handler\n * before invoking callbacks, so we only need to null the reference here.\n /\n private cleanupHandler(): void {\n this._oauthHandler = null;\n }\n\n /\n Handle OAuth success\n /\n private handleOAuthSuccess(grants: Grant[]): void {\n this.cleanupHandler();\n this.eventEmitter.emit('success', grants);\n }\n\n /\n Handle OAuth error\n /\n private handleOAuthError(error: AlterError): void {\n this.cleanupHandler();\n this.stateManager.setState({ error });\n this.eventEmitter.emit('error', error);\n }\n\n /\n Handle OAuth cancellation (user closed popup)\n /\n private handleOAuthCancel(): void {\n this.cleanupHandler();\n this.eventEmitter.emit('exit');\n }\n\n /\n Register event handlers from OpenOptions\n /\n private registerEventHandlers(options: OpenOptions): void {\n // Success handler\n if (options.onSuccess) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('success', (grants: Grant[]) => {\n options.onSuccess(grants);\n this.close();\n })\n );\n }\n\n // Exit handler\n if (options.onExit) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('exit', () => {\n options.onExit!();\n this.close();\n })\n );\n }\n\n // Error handler — always registered to ensure close() is called\n this._perOpenCleanups.push(\n this.eventEmitter.on('error', (error: AlterError) => {\n if (options.onError) {\n options.onError(error);\n }\n this.close();\n })\n );\n\n // Event handler (analytics)\n if (options.onEvent) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('event', (eventName: string, metadata: any) => {\n options.onEvent!(eventName, metadata);\n })\n );\n }\n }\n\n /\n Create an AlterError object\n */\n private createError(code: string, message: string, details?: Record<string, any>): Error {\n const error = new Error(message);\n (error as any).code = code;\n (error as any).details = details;\n return error;\n }\n}\n"],"names":["debugLog","config","args","debug","console","log","EventEmitter","constructor","this","events","Map","on","event","handler","has","set","Set","get","add","off","handlers","delete","emit","forEach","error","removeAllListeners","clear","StateManager","state","isOpen","sessionToken","listeners","getState","key","setState","updates","notifyListeners","subscribe","listener","clearListeners","currentState","isMobileDevice","userAgent","navigator","vendor","window","opera","isMobileUA","test","hasTouchScreen","maxTouchPoints","msMaxTouchPoints","isSmallScreen","innerWidth","getDeviceType","parseOperation","value","parseStatus","cleanupRedirectState","returnUrl","sessionStorage","removeItem","cleanUrl","URL","history","replaceState","document","title","pathname","search","hash","location","OAuthHandler","options","popup","pollInterval","messageListener","settled","baseURL","onSuccess","onError","onCancel","popupWidth","popupHeight","expectedOrigin","origin","Error","startOAuth","url","parsed","code","message","deviceType","innerHeight","shouldUseRedirectFlow","openPopup","startRedirectFlow","timestamp","Date","now","href","setItem","JSON","stringify","details","checkOAuthReturn","stateJson","getItem","parse","urlParams","URLSearchParams","success","grantId","provider","accountIdentifier","grant","grant_id","provider_name","account_identifier","toISOString","operation","scopes","split","status","alterError","err","left","screenX","outerWidth","top","screenY","outerHeight","features","join","open","startPolling","setupMessageListener","close","closed","clearInterval","removeEventListener","setInterval","data","type","rawGrants","Array","isArray","grants","length","item","push","metadata","error_description","addEventListener","VERSION","AlterConnect","_oauthHandler","_baseURL","_perOpenCleanups","mergeConfig","eventEmitter","stateManager","_isInitialized","version","checkRedirectReturn","create","createError","token","handleOAuthSuccess","handleOAuthError","handleOAuthCancel","registerEventHandlers","connectURL","encodeURIComponent","onEvent","cleanup","destroy","getVersion","cleanupHandler","onExit","eventName"],"mappings":"SAgCgBA,EAASC,KAAuBC,GAC1CD,EAAOE,OACTC,QAAQC,IAAI,qBAAsBH,EAEtC,OC3BaI,EAGX,WAAAC,GACEC,KAAKC,OAAS,IAAIC,GACpB,CAMA,EAAAC,CAAGC,EAAeC,GAQhB,OAPKL,KAAKC,OAAOK,IAAIF,IACnBJ,KAAKC,OAAOM,IAAIH,EAAO,IAAII,KAG7BR,KAAKC,OAAOQ,IAAIL,GAAQM,IAAIL,GAGrB,IAAML,KAAKW,IAAIP,EAAOC,EAC/B,CAKA,GAAAM,CAAIP,EAAeC,GACjB,MAAMO,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASC,OAAOR,EAEpB,CAKA,IAAAS,CAAKV,KAAkBV,GACrB,MAAMkB,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASG,QAAQV,IACf,IACEA,KAAWX,EACb,CAAE,MAAOsB,GACPpB,QAAQoB,MAAM,+CAA+CZ,MAAWY,EAC1E,GAGN,CAKA,kBAAAC,CAAmBb,GACbA,EACFJ,KAAKC,OAAOY,OAAOT,GAEnBJ,KAAKC,OAAOiB,OAEhB,QC9CWC,EAIX,WAAApB,GACEC,KAAKoB,MAAQ,CACXC,QAAQ,EACRC,aAAc,KACdN,MAAO,MAEThB,KAAKuB,UAAY,IAAIf,GACvB,CAKA,QAAAgB,GACE,MAAO,IAAKxB,KAAKoB,MACnB,CAKA,GAAAX,CAA8BgB,GAC5B,OAAOzB,KAAKoB,MAAMK,EACpB,CAKA,QAAAC,CAASC,GACP3B,KAAKoB,MAAQ,IAAKpB,KAAKoB,SAAUO,GACjC3B,KAAK4B,iBACP,CAKA,SAAAC,CAAUC,GAIR,OAHA9B,KAAKuB,UAAUb,IAAIoB,GAGZ,KACL9B,KAAKuB,UAAUV,OAAOiB,GAE1B,CAKA,cAAAC,GACE/B,KAAKuB,UAAUL,OACjB,CAKQ,eAAAU,GACN,MAAMI,EAAehC,KAAKwB,WAC1BxB,KAAKuB,UAAUR,QAAQe,IACrB,IACEA,EAASE,EACX,CAAE,MAAOhB,GACPpB,QAAQoB,MAAM,2CAA4CA,EAC5D,GAEJ,WC/EciB,IACd,MAAMC,EAAYC,UAAUD,WAAaC,UAAUC,QAAWC,OAAeC,MAIvEC,EADc,iEACWC,KAAKN,GAG9BO,EAAkB,iBAAkBJ,QACnBF,UAAUO,eAAiB,GAC1BP,UAAkBQ,iBAAmB,EAGvDC,EAAgBP,OAAOQ,YAAc,IAE3C,OAAON,GAAeE,GAAkBG,CAC1C,UAmBgBE,IACd,OAdOb,KAAoBI,OAAOQ,YAAc,IAcpB,QAPrBZ,KAAoBI,OAAOQ,WAAa,KAAOR,OAAOQ,YAAc,KAQ9C,SACtB,SACT,CCxBA,SAASE,EAAeC,GACtB,MAAc,WAAVA,EAA2B,SACxB,UACT,CAKA,SAASC,EAAYD,GACnB,MAAc,YAAVA,EAA4B,UAClB,UAAVA,EAA0B,QACvB,QACT,CAKA,SAASE,EAAqBC,GAC5BC,eAAeC,WAAW,qBAC1B,IACE,MAAMC,EAAW,IAAIC,IAAIJ,GACzBd,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOL,EAASM,SAAWN,EAASO,OAASP,EAASQ,KACjG,CAAE,MAEAzB,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOtB,OAAO0B,SAASH,SAClE,CACF,OAKaI,EAQX,WAAAjE,CAAYkE,GAPJjE,KAAAkE,MAAuB,KACvBlE,KAAAmE,aAA8B,KAC9BnE,KAAAoE,gBAA0D,KAG1DpE,KAAAqE,SAAmB,EAGzBrE,KAAKiE,QAAU,CACbK,QAASL,EAAQK,QACjBC,UAAWN,EAAQM,UACnBC,QAASP,EAAQO,QACjBC,SAAUR,EAAQQ,SAClBC,WAAYT,EAAQS,YAAc,IAClCC,YAAaV,EAAQU,aAAe,IACpChF,MAAOsE,EAAQtE,QAAS,EACxBiF,eAAgBX,EAAQW,gBAAkB,IAI5C,IACE5E,KAAK4E,eAAiB,IAAIrB,IAAIU,EAAQK,SAASO,MACjD,CAAE,MACA,MAAM,IAAIC,MACR,qBAAqBb,EAAQK,kFAEjC,CACF,CAKA,UAAAS,CAAWC,GAGT,IAAKhF,KAAKiE,QAAQW,eAChB,IACE,MAAMK,EAAS,IAAI1B,IAAIyB,GACvBhF,KAAKiE,QAAQW,eAAiBK,EAAOJ,OACrC7E,KAAKH,IAAI,2BAA4BG,KAAKiE,QAAQW,eACpD,CAAE,MAMA,OALA5E,KAAKH,IAAI,mDAAoDmF,QAC7DhF,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,oBACNC,QAAS,uEAGb,aD5CJ,MAAMC,EAAatC,IAGnB,MAAmB,UAAfsC,GAGe,WAAfA,GAA2B/C,OAAOgD,YAAchD,OAAOQ,UAM7D,CCmCQyC,IAIFtF,KAAKH,IAAI,gCACTG,KAAKuF,UAAUP,KAJfhF,KAAKH,IAAI,yCACTG,KAAKwF,kBAAkBR,GAK3B,CAMQ,iBAAAQ,CAAkBR,GACxBhF,KAAKH,IAAI,0BAA2BmF,GAGpC,MAAM5D,EAAQ,CACZqE,UAAWC,KAAKC,MAChBxC,UAAWd,OAAO0B,SAAS6B,MAG7B,IACExC,eAAeyC,QAAQ,oBAAqBC,KAAKC,UAAU3E,GAC7D,CAAE,MAAOJ,GAOP,OANAhB,KAAKH,IAAI,wBAAyBmB,QAClChB,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,iBACNC,QAAS,2DACTa,QAAS,CAAEhF,UAGf,CAGAqB,OAAO0B,SAAS6B,KAAOZ,CACzB,CAQA,uBAAOiB,CACL1B,EACAC,GAGA,MAAM0B,EAAY9C,eAAe+C,QAAQ,qBACzC,IAAKD,EACH,OAAO,EAGT,IACE,MAAM9E,EAAQ0E,KAAKM,MAAMF,GAIzB,GADgBR,KAAKC,MAAQvE,EAAMqE,UACrB,IAGZ,OADArC,eAAeC,WAAW,sBACnB,EAIT,MAAMgD,EAAY,IAAIC,gBAAgBjE,OAAO0B,SAASF,QAChD0C,EAAUF,EAAU5F,IAAI,yBACxBO,EAAQqF,EAAU5F,IAAI,uBAE5B,GAAgB,SAAZ8F,EAAoB,CAEtB,MAAMC,EAAUH,EAAU5F,IAAI,YACxBgG,EAAWJ,EAAU5F,IAAI,YACzBiG,EAAoBL,EAAU5F,IAAI,sBAExC,IAAK+F,IAAYC,IAAaC,EAM5B,OALAxD,EAAqB9B,EAAM+B,WAC3BqB,EAAQ,CACNU,KAAM,mBACNC,QAAS,mDAEJ,EAGT,MAAMwB,EAAe,CACnBC,SAAUJ,EACVC,SAAUA,EACVI,cAAeR,EAAU5F,IAAI,kBAAoBgG,EACjDK,mBAAoBJ,EACpBjB,UAAWY,EAAU5F,IAAI,eAAgB,IAAIiF,MAAOqB,cACpDC,UAAWjE,EAAesD,EAAU5F,IAAI,cACxCwG,OAAQZ,EAAU5F,IAAI,WAAWyG,MAAM,MAAQ,GAC/CC,OAAQlE,EAAYoD,EAAU5F,IAAI,YAKpC,OAFAyC,EAAqB9B,EAAM+B,WAC3BoB,EAAU,CAACoC,KACJ,CACT,CAEA,GAAI3F,EAAO,CACT,MAAMoG,EAAyB,CAC7BlC,KAAMmB,EAAU5F,IAAI,eAAiB,cACrC0E,QAASkB,EAAU5F,IAAI,sBAAwB,8BAKjD,OAFAyC,EAAqB9B,EAAM+B,WAC3BqB,EAAQ4C,IACD,CACT,CAEA,OAAO,CACT,CAAE,MAAOC,GAGP,OAFAzH,QAAQoB,MAAM,gDAAiDqG,GAC/DjE,eAAeC,WAAW,sBACnB,CACT,CACF,CAKA,SAAAkC,CAAUP,GAER,MAAMsC,EAAOjF,OAAOkF,SAAWlF,OAAOmF,WAAaxH,KAAKiE,QAAQS,YAAc,EACxE+C,EAAMpF,OAAOqF,SAAWrF,OAAOsF,YAAc3H,KAAKiE,QAAQU,aAAe,EAEzEiD,EAAW,CACf,SAAS5H,KAAKiE,QAAQS,aACtB,UAAU1E,KAAKiE,QAAQU,cACvB,QAAQ2C,IACR,OAAOG,IACP,gBACA,iBACA,cACAI,KAAK,KAEP7H,KAAKH,IAAI,uBAAwBmF,GAGjChF,KAAKkE,MAAQ7B,OAAOyF,KAAK9C,EAAK,oBAAqB4C,GAE9C5H,KAAKkE,OASVlE,KAAK+H,eACL/H,KAAKgI,wBATHhI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,gBACNC,QAAS,oEAQf,CAKA,KAAA8C,GACEjI,KAAKH,IAAI,yBAGLG,KAAKkE,QAAUlE,KAAKkE,MAAMgE,QAC5BlI,KAAKkE,MAAM+D,QAEbjI,KAAKkE,MAAQ,KAGa,OAAtBlE,KAAKmE,eACPgE,cAAcnI,KAAKmE,cACnBnE,KAAKmE,aAAe,MAIlBnE,KAAKoE,kBACP/B,OAAO+F,oBAAoB,UAAWpI,KAAKoE,iBAC3CpE,KAAKoE,gBAAkB,KAE3B,CAKQ,YAAA2D,GACN/H,KAAKmE,aAAe9B,OAAOgG,YAAY,KACjCrI,KAAKqE,SACJrE,KAAKkE,QAASlE,KAAKkE,MAAMgE,SAC5BlI,KAAKH,IAAI,wBACTG,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQQ,aAEd,IACL,CAKQ,oBAAAuD,GACNhI,KAAKoE,gBAAmBhE,IAEtB,GAAIJ,KAAKqE,QAAS,OAGlB,GAAIjE,EAAMyE,SAAW7E,KAAK4E,eAExB,YADA5E,KAAKH,IAAI,2CAA4CO,EAAMyE,OAAQ,aAAc7E,KAAK4E,eAAiB,KAIzG5E,KAAKH,IAAI,wBAAyBO,EAAMyE,QAExC,MAAMyD,EAAOlI,EAAMkI,KAGnB,GAAIA,GAAwB,iBAATA,EACjB,GAAkB,0BAAdA,EAAKC,KAAkC,CACzCvI,KAAKH,IAAI,iBAGT,MAAM2I,EAAYC,MAAMC,QAAQJ,EAAKK,QAAUL,EAAKK,OAAS,KAC7D,GAAIH,EAAW,CACbxI,KAAKH,IAAI,0BAA2B2I,EAAUI,OAAQ,UACtD,MAAMD,EAAkB,GACxB,IAAK,MAAME,KAAQL,EAAW,CAC5B,MAAMhC,EAAUqC,EAAKjC,SAChBJ,GAAYqC,EAAKpC,SAItBkC,EAAOG,KAAK,CACVlC,SAAUJ,EACVC,SAAUoC,EAAKpC,SACfI,cAAgBgC,EAAKhC,eAA6BgC,EAAKpC,SACvDK,mBAAqB+B,EAAK/B,oBAAiC,GAC3DrB,UAAYoD,EAAKpD,YAAwB,IAAIC,MAAOqB,cACpDC,UAAWjE,EAAe8F,EAAK7B,WAC/BC,OAAQwB,MAAMC,QAAQG,EAAK5B,QAAU4B,EAAK5B,OAAqB,GAC/DE,OAAQlE,EAAY4F,EAAK1B,QACzB4B,SAAUF,EAAKE,WAZf/I,KAAKH,IAAI,+BAAgCgJ,EAc7C,CAEA,OAAsB,IAAlBF,EAAOC,QACT5I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,yCAKbnF,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQM,UAAUoE,GAEzB,CAGA3I,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,gDAEb,MAAO,GAAkB,wBAAdmD,EAAKC,KAAgC,CAC9CvI,KAAKH,IAAI,eAET,MAAMmB,EAAoB,CACxBkE,KAAOoD,EAAKtH,OAAoB,cAChCmE,QAAUmD,EAAKU,mBAAgC,6BAC/ChD,QAASsC,GAGXtI,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQxD,EACvB,GAIJqB,OAAO4G,iBAAiB,UAAWjJ,KAAKoE,gBAC1C,CAKQ,GAAAvE,IAAOH,GACTM,KAAKiE,QAAQtE,OACfC,QAAQC,IAAI,qBAAsBH,EAEtC,EC5XF,MAAMwJ,EAAU,cAKHC,EAYX,WAAApJ,CAAoBN,EAA6B,IAPzCO,KAAAoJ,cAAqC,KACrCpJ,KAAAqJ,SAAmB,4BACnBrJ,KAAAsJ,iBAAsC,GAQ5CtJ,KAAKP,OLbH,SAAsBA,GAC1B,MAAO,CACLE,MAAOF,EAAOE,QAAS,EAE3B,CKSkB4J,CAAY9J,GAG1BO,KAAKwJ,aAAe,IAAI1J,EACxBE,KAAKyJ,aAAe,IAAItI,EACxBnB,KAAK0J,gBAAiB,EAEtBlK,EAASQ,KAAKP,OAAQ,gCAAiC,CAAEkK,QAAST,IAGlElJ,KAAK4J,qBACP,CAMQ,mBAAAA,GACU5F,EAAaiC,iBAC1B0C,IACCnJ,EAASQ,KAAKP,OAAQ,mCAAoCkJ,GAE1D3I,KAAKwJ,aAAa1I,KAAK,UAAW6H,IAEnC3H,IACCxB,EAASQ,KAAKP,OAAQ,iCAAkCuB,GAExDhB,KAAKwJ,aAAa1I,KAAK,QAASE,MAKlCxB,EAASQ,KAAKP,OAAQ,6CAE1B,CAYA,aAAOoK,CAAOpK,GACZ,OAAO,IAAI0J,EAAa1J,EAC1B,CA0BA,UAAMqI,CAAK7D,GAET,IAAKjE,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,wDAM1C,GAHAtK,EAASQ,KAAKP,OAAQ,uBAGjBwE,EAAQ8F,OAAkC,iBAAlB9F,EAAQ8F,MACnC,MAAM/J,KAAK8J,YAAY,kBAAmB,iGAG5C,IAAK7F,EAAQM,WAA0C,mBAAtBN,EAAQM,UACvC,MAAMvE,KAAK8J,YAAY,kBAAmB,kCAI5C,GAAI9J,KAAKqB,SAEP,YADA7B,EAASQ,KAAKP,OAAQ,8BAKxBO,KAAKqJ,SAAWpF,EAAQK,SAAW,4BAInCtE,KAAKoJ,cAAgB,IAAIpF,EAAa,CACpCM,QAAStE,KAAKqJ,SACd9E,UAAYoE,IACVnJ,EAASQ,KAAKP,OAAQ,iBAAkBkJ,GACxC3I,KAAKgK,mBAAmBrB,IAE1BnE,QAAUxD,IACRxB,EAASQ,KAAKP,OAAQ,eAAgBuB,GACtChB,KAAKiK,iBAAiBjJ,IAExByD,SAAU,KACRjF,EAASQ,KAAKP,OAAQ,kCACtBO,KAAKkK,qBAEPxF,WAAY,IACZC,YAAa,IACbhF,MAAOK,KAAKP,OAAOE,QAIrBK,KAAKyJ,aAAa/H,SAAS,CACzBL,QAAQ,EACRL,MAAO,KACPM,aAAc2C,EAAQ8F,QAIxB/J,KAAKmK,sBAAsBlG,GAG3B,MAAMmG,EAAa,GAAGpK,KAAKqJ,sCAAsCgB,mBAAmBpG,EAAQ8F,SAE5FvK,EAASQ,KAAKP,OAAQ,eAAgB2K,GAGtCpK,KAAKoJ,cAAcrE,WAAWqF,GAG1BnG,EAAQqG,SACVrG,EAAQqG,QAAQ,iBAAkB,CAChC7E,WAAW,IAAIC,MAAOqB,gBAI1BvH,EAASQ,KAAKP,OAAQ,iCACxB,CAKA,KAAAwI,GAEE,IAAKjI,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,yDAG1CtK,EAASQ,KAAKP,OAAQ,sBAGlBO,KAAKoJ,gBACPpJ,KAAKoJ,cAAcnB,QACnBjI,KAAKoJ,cAAgB,MAIvBpJ,KAAKsJ,iBAAiBvI,QAAQwJ,GAAWA,KACzCvK,KAAKsJ,iBAAmB,GAGxBtJ,KAAKyJ,aAAa/H,SAAS,CAAEL,QAAQ,IAErCrB,KAAKwJ,aAAa1I,KAAK,QACzB,CAKA,OAAA0J,GACOxK,KAAK0J,iBAKVlK,EAASQ,KAAKP,OAAQ,2BAGlBO,KAAKoJ,gBACPpJ,KAAKoJ,cAAcnB,QACnBjI,KAAKoJ,cAAgB,MAInBpJ,KAAKyJ,aAAahJ,IAAI,WACxBT,KAAKyJ,aAAa/H,SAAS,CAAEL,QAAQ,IAIvCrB,KAAKwJ,aAAavI,qBAClBjB,KAAKyJ,aAAa1H,iBAClB/B,KAAK0J,gBAAiB,EACxB,CAKA,EAAAvJ,CAAGC,EAAeC,GAEhB,IAAKL,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,sDAG1C,OAAO9J,KAAKwJ,aAAarJ,GAAGC,EAAOC,EACrC,CAKA,GAAAM,CAAIP,EAAeC,GAEjB,IAAKL,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,uDAG1C9J,KAAKwJ,aAAa7I,IAAIP,EAAOC,EAC/B,CAKA,MAAAgB,GAEE,IAAKrB,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,0DAG1C,OAAO9J,KAAKyJ,aAAahJ,IAAI,SAC/B,CAKA,UAAAgK,GACE,OAAOvB,CACT,CAOQ,cAAAwB,GACN1K,KAAKoJ,cAAgB,IACvB,CAKQ,kBAAAY,CAAmBrB,GACzB3I,KAAK0K,iBACL1K,KAAKwJ,aAAa1I,KAAK,UAAW6H,EACpC,CAKQ,gBAAAsB,CAAiBjJ,GACvBhB,KAAK0K,iBACL1K,KAAKyJ,aAAa/H,SAAS,CAAEV,UAC7BhB,KAAKwJ,aAAa1I,KAAK,QAASE,EAClC,CAKQ,iBAAAkJ,GACNlK,KAAK0K,iBACL1K,KAAKwJ,aAAa1I,KAAK,OACzB,CAKQ,qBAAAqJ,CAAsBlG,GAExBA,EAAQM,WACVvE,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,UAAYwI,IAC/B1E,EAAQM,UAAUoE,GAClB3I,KAAKiI,WAMPhE,EAAQ0G,QACV3K,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,OAAQ,KAC3B8D,EAAQ0G,SACR3K,KAAKiI,WAMXjI,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,QAAUa,IACzBiD,EAAQO,SACVP,EAAQO,QAAQxD,GAElBhB,KAAKiI,WAKLhE,EAAQqG,SACVtK,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,QAAS,CAACyK,EAAmB7B,KAChD9E,EAAQqG,QAASM,EAAW7B,KAIpC,CAKQ,WAAAe,CAAY5E,EAAcC,EAAiBa,GACjD,MAAMhF,EAAQ,IAAI8D,MAAMK,GAGxB,OAFCnE,EAAckE,KAAOA,EACrBlE,EAAcgF,QAAUA,EAClBhF,CACT"}

package/dist/alter-connect.umd.js CHANGED Viewed

@@ -1,2 +1,2 @@
-!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?module.exports=t():"function"==typeof define&&define.amd?define(t):(e="undefined"!=typeof globalThis?globalThis:e||self).AlterConnect=t()}(this,function(){"use strict";function e(e,...t){e.debug&&console.log("[Alter Connect]",...t)}class t{constructor(){this.events=new Map}on(e,t){return this.events.has(e)||this.events.set(e,new Set),this.events.get(e).add(t),()=>this.off(e,t)}off(e,t){const i=this.events.get(e);i&&i.delete(t)}emit(e,...t){const i=this.events.get(e);i&&i.forEach(i=>{try{i(...t)}catch(t){console.error(`[Alter Connect] Error in event handler for '${e}':`,t)}})}removeAllListeners(e){e?this.events.delete(e):this.events.clear()}}class i{constructor(){this.state={isOpen:!1,sessionToken:null,error:null},this.listeners=new Set}getState(){return{...this.state}}get(e){return this.state[e]}setState(e){this.state={...this.state,...e},this.notifyListeners()}subscribe(e){return this.listeners.add(e),()=>{this.listeners.delete(e)}}clearListeners(){this.listeners.clear()}notifyListeners(){const e=this.getState();this.listeners.forEach(t=>{try{t(e)}catch(e){console.error("[Alter Connect] Error in state listener:",e)}})}}function s(){const e=navigator.userAgent||navigator.vendor||window.opera,t=/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(e),i="ontouchstart"in window||navigator.maxTouchPoints>0||navigator.msMaxTouchPoints>0,s=window.innerWidth<=768;return t||i&&s}function n(){return s()&&window.innerWidth<=480?"phone":s()&&window.innerWidth>480&&window.innerWidth<=1024?"tablet":"desktop"}function o(e){return"reauth"===e?"reauth":"grant"===e?"grant":"creation"}function r(e){return"pending"===e?"pending":"error"===e?"error":"active"}function a(e){sessionStorage.removeItem("alter_oauth_state");try{const t=new URL(e);window.history.replaceState({},document.title,t.pathname+t.search+t.hash)}catch{window.history.replaceState({},document.title,window.location.pathname)}}class c{constructor(e){this.popup=null,this.pollInterval=null,this.messageListener=null,this.settled=!1,this.options={baseURL:e.baseURL,onSuccess:e.onSuccess,onError:e.onError,onCancel:e.onCancel,popupWidth:e.popupWidth||500,popupHeight:e.popupHeight||700,debug:e.debug||!1,expectedOrigin:e.expectedOrigin||""};try{this.expectedOrigin=new URL(e.baseURL).origin}catch{throw new Error(`Invalid baseURL: "${e.baseURL}". Must be a full URL with protocol (e.g., "https://api.alterai.dev").`)}}startOAuth(e){if(!this.options.expectedOrigin)try{const t=new URL(e);this.options.expectedOrigin=t.origin,this.log("Derived expected origin:",this.options.expectedOrigin)}catch{return this.log("Failed to parse OAuth URL for origin validation:",e),void this.options.onError({code:"invalid_oauth_url",message:"Failed to determine origin from OAuth URL. Cannot proceed securely."})}!function(){const e=n();return"phone"===e||"tablet"===e&&window.innerHeight>window.innerWidth}()?(this.log("Using popup flow for desktop"),this.openPopup(e)):(this.log("Using redirect flow for mobile device"),this.startRedirectFlow(e))}startRedirectFlow(e){this.log("Starting redirect flow:",e);const t={timestamp:Date.now(),returnUrl:window.location.href};try{sessionStorage.setItem("alter_oauth_state",JSON.stringify(t))}catch(e){return this.log("Failed to save state:",e),void this.options.onError({code:"redirect_error",message:"Failed to start OAuth flow: could not save session state",details:{error:e}})}window.location.href=e}static checkOAuthReturn(e,t){const i=sessionStorage.getItem("alter_oauth_state");if(!i)return!1;try{const s=JSON.parse(i);if(Date.now()-s.timestamp>3e5)return sessionStorage.removeItem("alter_oauth_state"),!1;const n=new URLSearchParams(window.location.search),c=n.get("alter_connect_success"),h=n.get("alter_connect_error");if("true"===c){const i=n.get("connection_id"),c=n.get("provider"),h=n.get("account_identifier");if(!i||!c||!h)return a(s.returnUrl),t({code:"invalid_response",message:"OAuth redirect returned incomplete connection data"}),!0;const l={connection_id:i,provider:c,provider_name:n.get("provider_name")||c,account_identifier:h,timestamp:n.get("timestamp")||(new Date).toISOString(),operation:o(n.get("operation")),scopes:n.get("scopes")?.split(",")||[],status:r(n.get("status"))};return a(s.returnUrl),e([l]),!0}if(h){const e={code:n.get("error_code")||"oauth_error",message:n.get("error_description")||"OAuth authorization failed"};return a(s.returnUrl),t(e),!0}return!1}catch(e){return console.error("[OAuth Handler] Failed to check OAuth return:",e),sessionStorage.removeItem("alter_oauth_state"),!1}}openPopup(e){const t=window.screenX+(window.outerWidth-this.options.popupWidth)/2,i=window.screenY+(window.outerHeight-this.options.popupHeight)/2,s=[`width=${this.options.popupWidth}`,`height=${this.options.popupHeight}`,`left=${t}`,`top=${i}`,"resizable=yes","scrollbars=yes","status=yes"].join(",");this.log("Opening OAuth popup:",e),this.popup=window.open(e,"alter_oauth_popup",s),this.popup?(this.startPolling(),this.setupMessageListener()):this.options.onError({code:"popup_blocked",message:"Popup was blocked by browser. Please allow popups for this site."})}close(){this.log("Closing OAuth handler"),this.popup&&!this.popup.closed&&this.popup.close(),this.popup=null,null!==this.pollInterval&&(clearInterval(this.pollInterval),this.pollInterval=null),this.messageListener&&(window.removeEventListener("message",this.messageListener),this.messageListener=null)}startPolling(){this.pollInterval=window.setInterval(()=>{this.settled||this.popup&&!this.popup.closed||(this.log("Popup closed by user"),this.settled=!0,this.close(),this.options.onCancel())},500)}setupMessageListener(){this.messageListener=e=>{if(this.settled)return;if(e.origin!==this.expectedOrigin)return void this.log("Rejected message from unexpected origin:",e.origin,"(expected:",this.expectedOrigin+")");this.log("Received message from",e.origin);const t=e.data;if(t&&"object"==typeof t)if("alter_connect_success"===t.type){if(this.log("OAuth success"),Array.isArray(t.connections)){this.log("Multi-provider success:",t.connections.length,"connections");const e=[];for(const i of t.connections)i.connection_id&&i.provider?e.push({connection_id:i.connection_id,provider:i.provider,provider_name:i.provider_name||i.provider,account_identifier:i.account_identifier||"",timestamp:i.timestamp||(new Date).toISOString(),operation:o(i.operation),scopes:Array.isArray(i.scopes)?i.scopes:[],status:r(i.status),metadata:i.metadata}):this.log("Skipping invalid connection item:",i);return 0===e.length?(this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:"Server returned empty connections array"})):(this.settled=!0,this.close(),void this.options.onSuccess(e))}const e=function(e){return e.connection_id&&"string"==typeof e.connection_id?e.provider&&"string"==typeof e.provider?e.account_identifier&&"string"==typeof e.account_identifier?e.timestamp&&"string"==typeof e.timestamp?null:"Missing or invalid timestamp":"Missing or invalid account_identifier":"Missing or invalid provider":"Missing or invalid connection_id"}(t);if(e)return this.log("Invalid connection payload:",e),this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:`Server returned incomplete connection data: ${e}`});const i={connection_id:t.connection_id,provider:t.provider,provider_name:t.provider_name||t.provider,account_identifier:t.account_identifier,timestamp:t.timestamp,operation:o(t.operation),scopes:Array.isArray(t.scopes)?t.scopes:[],status:r(t.status),metadata:t.metadata};this.settled=!0,this.close(),this.options.onSuccess([i])}else if("alter_connect_error"===t.type){this.log("OAuth error");const e={code:t.error||"oauth_error",message:t.error_description||"OAuth authorization failed",details:t};this.settled=!0,this.close(),this.options.onError(e)}},window.addEventListener("message",this.messageListener)}log(...e){this.options.debug&&console.log("[OAuth Handler]",...e)}}const h="0.2.0";class l{constructor(s={}){this._oauthHandler=null,this._baseURL="https://api.alterai.dev",this._perOpenCleanups=[],this.config=function(e){return{debug:e.debug??!1}}(s),this.eventEmitter=new t,this.stateManager=new i,this._isInitialized=!0,e(this.config,"Alter Connect SDK initialized",{version:h}),this.checkRedirectReturn()}checkRedirectReturn(){c.checkOAuthReturn(t=>{e(this.config,"OAuth redirect return - success:",t),this.eventEmitter.emit("success",t)},t=>{e(this.config,"OAuth redirect return - error:",t),this.eventEmitter.emit("error",t)})&&e(this.config,"OAuth redirect return detected and handled")}static create(e){return new l(e)}async open(t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call open() - SDK instance has been destroyed");if(e(this.config,"Opening Connect UI"),!t.token||"string"!=typeof t.token)throw this.createError("invalid_options","Session token is required. Create one from your backend using POST /sdk/oauth/connect/session");if(!t.onSuccess||"function"!=typeof t.onSuccess)throw this.createError("invalid_options","onSuccess callback is required");if(this.isOpen())return void e(this.config,"Connect UI is already open");this._baseURL=t.baseURL||"https://api.alterai.dev",this._oauthHandler=new c({baseURL:this._baseURL,onSuccess:t=>{e(this.config,"OAuth success:",t),this.handleOAuthSuccess(t)},onError:t=>{e(this.config,"OAuth error:",t),this.handleOAuthError(t)},onCancel:()=>{e(this.config,"OAuth cancelled (popup closed)"),this.handleOAuthCancel()},popupWidth:500,popupHeight:700,debug:this.config.debug}),this.stateManager.setState({isOpen:!0,error:null,sessionToken:t.token}),this.registerEventHandlers(t);const i=`${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(t.token)}`;e(this.config,"Connect URL:",i),this._oauthHandler.startOAuth(i),t.onEvent&&t.onEvent("connect_opened",{timestamp:(new Date).toISOString()}),e(this.config,"Connect UI opened successfully")}close(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call close() - SDK instance has been destroyed");e(this.config,"Closing Connect UI"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this._perOpenCleanups.forEach(e=>e()),this._perOpenCleanups=[],this.stateManager.setState({isOpen:!1}),this.eventEmitter.emit("close")}destroy(){this._isInitialized&&(e(this.config,"Destroying SDK instance"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this.stateManager.get("isOpen")&&this.stateManager.setState({isOpen:!1}),this.eventEmitter.removeAllListeners(),this.stateManager.clearListeners(),this._isInitialized=!1)}on(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call on() - SDK instance has been destroyed");return this.eventEmitter.on(e,t)}off(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call off() - SDK instance has been destroyed");this.eventEmitter.off(e,t)}isOpen(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call isOpen() - SDK instance has been destroyed");return this.stateManager.get("isOpen")}getVersion(){return h}cleanupHandler(){this._oauthHandler=null}handleOAuthSuccess(e){this.cleanupHandler(),this.eventEmitter.emit("success",e)}handleOAuthError(e){this.cleanupHandler(),this.stateManager.setState({error:e}),this.eventEmitter.emit("error",e)}handleOAuthCancel(){this.cleanupHandler(),this.eventEmitter.emit("exit")}registerEventHandlers(e){e.onSuccess&&this._perOpenCleanups.push(this.eventEmitter.on("success",t=>{e.onSuccess(t),this.close()})),e.onExit&&this._perOpenCleanups.push(this.eventEmitter.on("exit",()=>{e.onExit(),this.close()})),this._perOpenCleanups.push(this.eventEmitter.on("error",t=>{e.onError&&e.onError(t),this.close()})),e.onEvent&&this._perOpenCleanups.push(this.eventEmitter.on("event",(t,i)=>{e.onEvent(t,i)}))}createError(e,t,i){const s=new Error(t);return s.code=e,s.details=i,s}}return l});
+!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?module.exports=t():"function"==typeof define&&define.amd?define(t):(e="undefined"!=typeof globalThis?globalThis:e||self).AlterConnect=t()}(this,function(){"use strict";function e(e,...t){e.debug&&console.log("[Alter Connect]",...t)}class t{constructor(){this.events=new Map}on(e,t){return this.events.has(e)||this.events.set(e,new Set),this.events.get(e).add(t),()=>this.off(e,t)}off(e,t){const s=this.events.get(e);s&&s.delete(t)}emit(e,...t){const s=this.events.get(e);s&&s.forEach(s=>{try{s(...t)}catch(t){console.error(`[Alter Connect] Error in event handler for '${e}':`,t)}})}removeAllListeners(e){e?this.events.delete(e):this.events.clear()}}class s{constructor(){this.state={isOpen:!1,sessionToken:null,error:null},this.listeners=new Set}getState(){return{...this.state}}get(e){return this.state[e]}setState(e){this.state={...this.state,...e},this.notifyListeners()}subscribe(e){return this.listeners.add(e),()=>{this.listeners.delete(e)}}clearListeners(){this.listeners.clear()}notifyListeners(){const e=this.getState();this.listeners.forEach(t=>{try{t(e)}catch(e){console.error("[Alter Connect] Error in state listener:",e)}})}}function i(){const e=navigator.userAgent||navigator.vendor||window.opera,t=/Android|webOS|iPhone|iPad|iPod|BlackBerry|IEMobile|Opera Mini/i.test(e),s="ontouchstart"in window||navigator.maxTouchPoints>0||navigator.msMaxTouchPoints>0,i=window.innerWidth<=768;return t||s&&i}function n(){return i()&&window.innerWidth<=480?"phone":i()&&window.innerWidth>480&&window.innerWidth<=1024?"tablet":"desktop"}function r(e){return"reauth"===e?"reauth":"creation"}function o(e){return"pending"===e?"pending":"error"===e?"error":"active"}function a(e){sessionStorage.removeItem("alter_oauth_state");try{const t=new URL(e);window.history.replaceState({},document.title,t.pathname+t.search+t.hash)}catch{window.history.replaceState({},document.title,window.location.pathname)}}class h{constructor(e){this.popup=null,this.pollInterval=null,this.messageListener=null,this.settled=!1,this.options={baseURL:e.baseURL,onSuccess:e.onSuccess,onError:e.onError,onCancel:e.onCancel,popupWidth:e.popupWidth||500,popupHeight:e.popupHeight||700,debug:e.debug||!1,expectedOrigin:e.expectedOrigin||""};try{this.expectedOrigin=new URL(e.baseURL).origin}catch{throw new Error(`Invalid baseURL: "${e.baseURL}". Must be a full URL with protocol (e.g., "https://api.alterauth.com").`)}}startOAuth(e){if(!this.options.expectedOrigin)try{const t=new URL(e);this.options.expectedOrigin=t.origin,this.log("Derived expected origin:",this.options.expectedOrigin)}catch{return this.log("Failed to parse OAuth URL for origin validation:",e),void this.options.onError({code:"invalid_oauth_url",message:"Failed to determine origin from OAuth URL. Cannot proceed securely."})}!function(){const e=n();return"phone"===e||"tablet"===e&&window.innerHeight>window.innerWidth}()?(this.log("Using popup flow for desktop"),this.openPopup(e)):(this.log("Using redirect flow for mobile device"),this.startRedirectFlow(e))}startRedirectFlow(e){this.log("Starting redirect flow:",e);const t={timestamp:Date.now(),returnUrl:window.location.href};try{sessionStorage.setItem("alter_oauth_state",JSON.stringify(t))}catch(e){return this.log("Failed to save state:",e),void this.options.onError({code:"redirect_error",message:"Failed to start OAuth flow: could not save session state",details:{error:e}})}window.location.href=e}static checkOAuthReturn(e,t){const s=sessionStorage.getItem("alter_oauth_state");if(!s)return!1;try{const i=JSON.parse(s);if(Date.now()-i.timestamp>3e5)return sessionStorage.removeItem("alter_oauth_state"),!1;const n=new URLSearchParams(window.location.search),h=n.get("alter_connect_success"),c=n.get("alter_connect_error");if("true"===h){const s=n.get("grant_id"),h=n.get("provider"),c=n.get("account_identifier");if(!s||!h||!c)return a(i.returnUrl),t({code:"invalid_response",message:"OAuth redirect returned incomplete grant data"}),!0;const l={grant_id:s,provider:h,provider_name:n.get("provider_name")||h,account_identifier:c,timestamp:n.get("timestamp")||(new Date).toISOString(),operation:r(n.get("operation")),scopes:n.get("scopes")?.split(",")||[],status:o(n.get("status"))};return a(i.returnUrl),e([l]),!0}if(c){const e={code:n.get("error_code")||"oauth_error",message:n.get("error_description")||"OAuth authorization failed"};return a(i.returnUrl),t(e),!0}return!1}catch(e){return console.error("[OAuth Handler] Failed to check OAuth return:",e),sessionStorage.removeItem("alter_oauth_state"),!1}}openPopup(e){const t=window.screenX+(window.outerWidth-this.options.popupWidth)/2,s=window.screenY+(window.outerHeight-this.options.popupHeight)/2,i=[`width=${this.options.popupWidth}`,`height=${this.options.popupHeight}`,`left=${t}`,`top=${s}`,"resizable=yes","scrollbars=yes","status=yes"].join(",");this.log("Opening OAuth popup:",e),this.popup=window.open(e,"alter_oauth_popup",i),this.popup?(this.startPolling(),this.setupMessageListener()):this.options.onError({code:"popup_blocked",message:"Popup was blocked by browser. Please allow popups for this site."})}close(){this.log("Closing OAuth handler"),this.popup&&!this.popup.closed&&this.popup.close(),this.popup=null,null!==this.pollInterval&&(clearInterval(this.pollInterval),this.pollInterval=null),this.messageListener&&(window.removeEventListener("message",this.messageListener),this.messageListener=null)}startPolling(){this.pollInterval=window.setInterval(()=>{this.settled||this.popup&&!this.popup.closed||(this.log("Popup closed by user"),this.settled=!0,this.close(),this.options.onCancel())},500)}setupMessageListener(){this.messageListener=e=>{if(this.settled)return;if(e.origin!==this.expectedOrigin)return void this.log("Rejected message from unexpected origin:",e.origin,"(expected:",this.expectedOrigin+")");this.log("Received message from",e.origin);const t=e.data;if(t&&"object"==typeof t)if("alter_connect_success"===t.type){this.log("OAuth success");const e=Array.isArray(t.grants)?t.grants:null;if(e){this.log("Multi-provider success:",e.length,"grants");const t=[];for(const s of e){const e=s.grant_id;e&&s.provider?t.push({grant_id:e,provider:s.provider,provider_name:s.provider_name||s.provider,account_identifier:s.account_identifier||"",timestamp:s.timestamp||(new Date).toISOString(),operation:r(s.operation),scopes:Array.isArray(s.scopes)?s.scopes:[],status:o(s.status),metadata:s.metadata}):this.log("Skipping invalid grant item:",s)}return 0===t.length?(this.settled=!0,this.close(),void this.options.onError({code:"invalid_response",message:"Server returned empty grants array"})):(this.settled=!0,this.close(),void this.options.onSuccess(t))}this.settled=!0,this.close(),this.options.onError({code:"invalid_response",message:"Server returned success without grants array"})}else if("alter_connect_error"===t.type){this.log("OAuth error");const e={code:t.error||"oauth_error",message:t.error_description||"OAuth authorization failed",details:t};this.settled=!0,this.close(),this.options.onError(e)}},window.addEventListener("message",this.messageListener)}log(...e){this.options.debug&&console.log("[OAuth Handler]",...e)}}const c="0.2.0";class l{constructor(i={}){this._oauthHandler=null,this._baseURL="https://api.alterauth.com",this._perOpenCleanups=[],this.config=function(e){return{debug:e.debug??!1}}(i),this.eventEmitter=new t,this.stateManager=new s,this._isInitialized=!0,e(this.config,"Alter Connect SDK initialized",{version:c}),this.checkRedirectReturn()}checkRedirectReturn(){h.checkOAuthReturn(t=>{e(this.config,"OAuth redirect return - success:",t),this.eventEmitter.emit("success",t)},t=>{e(this.config,"OAuth redirect return - error:",t),this.eventEmitter.emit("error",t)})&&e(this.config,"OAuth redirect return detected and handled")}static create(e){return new l(e)}async open(t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call open() - SDK instance has been destroyed");if(e(this.config,"Opening Connect UI"),!t.token||"string"!=typeof t.token)throw this.createError("invalid_options","Session token is required. Create one from your backend using POST /sdk/oauth/connect/session");if(!t.onSuccess||"function"!=typeof t.onSuccess)throw this.createError("invalid_options","onSuccess callback is required");if(this.isOpen())return void e(this.config,"Connect UI is already open");this._baseURL=t.baseURL||"https://api.alterauth.com",this._oauthHandler=new h({baseURL:this._baseURL,onSuccess:t=>{e(this.config,"OAuth success:",t),this.handleOAuthSuccess(t)},onError:t=>{e(this.config,"OAuth error:",t),this.handleOAuthError(t)},onCancel:()=>{e(this.config,"OAuth cancelled (popup closed)"),this.handleOAuthCancel()},popupWidth:500,popupHeight:700,debug:this.config.debug}),this.stateManager.setState({isOpen:!0,error:null,sessionToken:t.token}),this.registerEventHandlers(t);const s=`${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(t.token)}`;e(this.config,"Connect URL:",s),this._oauthHandler.startOAuth(s),t.onEvent&&t.onEvent("connect_opened",{timestamp:(new Date).toISOString()}),e(this.config,"Connect UI opened successfully")}close(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call close() - SDK instance has been destroyed");e(this.config,"Closing Connect UI"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this._perOpenCleanups.forEach(e=>e()),this._perOpenCleanups=[],this.stateManager.setState({isOpen:!1}),this.eventEmitter.emit("close")}destroy(){this._isInitialized&&(e(this.config,"Destroying SDK instance"),this._oauthHandler&&(this._oauthHandler.close(),this._oauthHandler=null),this.stateManager.get("isOpen")&&this.stateManager.setState({isOpen:!1}),this.eventEmitter.removeAllListeners(),this.stateManager.clearListeners(),this._isInitialized=!1)}on(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call on() - SDK instance has been destroyed");return this.eventEmitter.on(e,t)}off(e,t){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call off() - SDK instance has been destroyed");this.eventEmitter.off(e,t)}isOpen(){if(!this._isInitialized)throw this.createError("sdk_destroyed","Cannot call isOpen() - SDK instance has been destroyed");return this.stateManager.get("isOpen")}getVersion(){return c}cleanupHandler(){this._oauthHandler=null}handleOAuthSuccess(e){this.cleanupHandler(),this.eventEmitter.emit("success",e)}handleOAuthError(e){this.cleanupHandler(),this.stateManager.setState({error:e}),this.eventEmitter.emit("error",e)}handleOAuthCancel(){this.cleanupHandler(),this.eventEmitter.emit("exit")}registerEventHandlers(e){e.onSuccess&&this._perOpenCleanups.push(this.eventEmitter.on("success",t=>{e.onSuccess(t),this.close()})),e.onExit&&this._perOpenCleanups.push(this.eventEmitter.on("exit",()=>{e.onExit(),this.close()})),this._perOpenCleanups.push(this.eventEmitter.on("error",t=>{e.onError&&e.onError(t),this.close()})),e.onEvent&&this._perOpenCleanups.push(this.eventEmitter.on("event",(t,s)=>{e.onEvent(t,s)}))}createError(e,t,s){const i=new Error(t);return i.code=e,i.details=s,i}}return l});
 //# sourceMappingURL=alter-connect.umd.js.map

package/dist/alter-connect.umd.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"alter-connect.umd.js","sources":["../src/core/config.ts","../src/core/events.ts","../src/state/manager.ts","../src/utils/mobile.ts","../src/oauth/handler.ts","../src/core/alter-connect.ts"],"sourcesContent":["/*\n Configuration validation and management\n /\n\nimport type { AlterConnectConfig } from '../types';\n\n/\n Internal config used by the SDK\n /\ninterface FullConfig {\n debug: boolean;\n}\n\n/\n Validate configuration\n /\nexport function validateConfig(_config: AlterConnectConfig): void {\n // Config only has `debug` — nothing to validate\n}\n\n/\n Merge user config with defaults\n /\nexport function mergeConfig(config: AlterConnectConfig): FullConfig {\n return {\n debug: config.debug ?? false,\n };\n}\n\n/\n Debug logging helper\n /\nexport function debugLog(config: FullConfig, ...args: any[]): void {\n if (config.debug) {\n console.log('[Alter Connect]', ...args);\n }\n}\n\n/\n Export FullConfig type for use in other modules\n /\nexport type { FullConfig };\n","/\n Simple event emitter for SDK events\n /\n\ntype EventHandler = (...args: any[]) => void;\n\n/\n Event emitter for SDK internal events\n /\nexport class EventEmitter {\n private events: Map<string, Set<EventHandler>>;\n\n constructor() {\n this.events = new Map();\n }\n\n /\n Register an event listener\n * @returns Unsubscribe function\n /\n on(event: string, handler: EventHandler): () => void {\n if (!this.events.has(event)) {\n this.events.set(event, new Set());\n }\n\n this.events.get(event)!.add(handler);\n\n // Return unsubscribe function\n return () => this.off(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: EventHandler): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.delete(handler);\n }\n }\n\n /\n Emit an event\n /\n emit(event: string, ...args: any[]): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.forEach(handler => {\n try {\n handler(...args);\n } catch (error) {\n console.error(`[Alter Connect] Error in event handler for '${event}':`, error);\n }\n });\n }\n }\n\n /\n Remove all listeners for an event, or all listeners if no event specified\n /\n removeAllListeners(event?: string): void {\n if (event) {\n this.events.delete(event);\n } else {\n this.events.clear();\n }\n }\n}\n","/\n State management for SDK\n /\n\nimport type { AlterError } from '../types';\n\n/\n SDK internal state\n /\nexport interface SDKState {\n isOpen: boolean;\n sessionToken: string \| null;\n error: AlterError \| null;\n}\n\ntype StateListener = (state: SDKState) => void;\n\n/\n Simple state manager\n /\nexport class StateManager {\n private state: SDKState;\n private listeners: Set<StateListener>;\n\n constructor() {\n this.state = {\n isOpen: false,\n sessionToken: null,\n error: null,\n };\n this.listeners = new Set();\n }\n\n /\n Get current state\n /\n getState(): Readonly<SDKState> {\n return { ...this.state };\n }\n\n /\n Get a specific state value\n /\n get<K extends keyof SDKState>(key: K): SDKState[K] {\n return this.state[key];\n }\n\n /\n Update state\n /\n setState(updates: Partial<SDKState>): void {\n this.state = { ...this.state, ...updates };\n this.notifyListeners();\n }\n\n /\n Subscribe to state changes\n /\n subscribe(listener: StateListener): () => void {\n this.listeners.add(listener);\n\n // Return unsubscribe function\n return () => {\n this.listeners.delete(listener);\n };\n }\n\n /\n Clear all listeners\n /\n clearListeners(): void {\n this.listeners.clear();\n }\n\n /\n Notify all listeners of state change\n /\n private notifyListeners(): void {\n const currentState = this.getState();\n this.listeners.forEach(listener => {\n try {\n listener(currentState);\n } catch (error) {\n console.error('[Alter Connect] Error in state listener:', error);\n }\n });\n }\n}\n","/\n Mobile device detection and responsive utilities\n /\n\n/\n Detect if the current device is a mobile device\n /\nexport function isMobileDevice(): boolean {\n const userAgent = navigator.userAgent \|\| navigator.vendor \|\| (window as any).opera;\n\n // Check for mobile patterns\n const mobileRegex = /Android\|webOS\|iPhone\|iPad\|iPod\|BlackBerry\|IEMobile\|Opera Mini/i;\n const isMobileUA = mobileRegex.test(userAgent);\n\n // Check for touch capability\n const hasTouchScreen = ('ontouchstart' in window) \|\|\n (navigator.maxTouchPoints > 0) \|\|\n ((navigator as any).msMaxTouchPoints > 0);\n\n // Check screen size\n const isSmallScreen = window.innerWidth <= 768;\n\n return isMobileUA \|\| (hasTouchScreen && isSmallScreen);\n}\n\n/\n Detect if the device is specifically a phone (vs tablet)\n /\nexport function isPhoneDevice(): boolean {\n return isMobileDevice() && window.innerWidth <= 480;\n}\n\n/\n Detect if the device is a tablet\n /\nexport function isTabletDevice(): boolean {\n return isMobileDevice() && window.innerWidth > 480 && window.innerWidth <= 1024;\n}\n\n/\n Get the device type\n /\nexport function getDeviceType(): 'desktop' \| 'tablet' \| 'phone' {\n if (isPhoneDevice()) return 'phone';\n if (isTabletDevice()) return 'tablet';\n return 'desktop';\n}\n\n/\n Check if we should use redirect flow instead of popup\n \n Popup windows don't work well on mobile:\n * - Browsers often block them\n * - They open as full-screen tabs\n * - Users lose context of parent app\n /\nexport function shouldUseRedirectFlow(): boolean {\n const deviceType = getDeviceType();\n\n // Always use redirect for phones\n if (deviceType === 'phone') return true;\n\n // Use redirect for tablets in portrait mode (popups are cramped)\n if (deviceType === 'tablet' && window.innerHeight > window.innerWidth) {\n return true;\n }\n\n // Use popup for desktop and tablets in landscape\n return false;\n}\n","/\n OAuth popup and redirect handler\n /\n\nimport type { Connection, AlterError } from '../types';\nimport { shouldUseRedirectFlow } from '../utils/mobile';\n\ninterface OAuthHandlerOptions {\n baseURL: string;\n onSuccess: (connections: Connection[]) => void;\n onError: (error: AlterError) => void;\n onCancel: () => void;\n popupWidth?: number;\n popupHeight?: number;\n debug?: boolean;\n /* Expected origin for postMessage validation. Derived from the OAuth URL. /\n expectedOrigin?: string;\n}\n\n/\n Parse an operation string into a valid Connection['operation'] value\n /\nfunction parseOperation(value: string \| null \| undefined): Connection['operation'] {\n if (value === 'reauth') return 'reauth';\n if (value === 'grant') return 'grant';\n return 'creation';\n}\n\n/\n Parse a status string into a valid Connection['status'] value\n /\nfunction parseStatus(value: string \| null \| undefined): Connection['status'] {\n if (value === 'pending') return 'pending';\n if (value === 'error') return 'error';\n return 'active';\n}\n\n/\n Clean up OAuth redirect state and restore the original URL\n /\nfunction cleanupRedirectState(returnUrl: string): void {\n sessionStorage.removeItem('alter_oauth_state');\n try {\n const cleanUrl = new URL(returnUrl);\n window.history.replaceState({}, document.title, cleanUrl.pathname + cleanUrl.search + cleanUrl.hash);\n } catch {\n // If returnUrl is malformed, just remove query params from current URL\n window.history.replaceState({}, document.title, window.location.pathname);\n }\n}\n\n/\n Validate that a postMessage connection payload has all required fields.\n * Returns an error message if invalid, or null if valid.\n /\nfunction validateConnectionPayload(data: Record<string, unknown>): string \| null {\n if (!data.connection_id \|\| typeof data.connection_id !== 'string') {\n return 'Missing or invalid connection_id';\n }\n if (!data.provider \|\| typeof data.provider !== 'string') {\n return 'Missing or invalid provider';\n }\n if (!data.account_identifier \|\| typeof data.account_identifier !== 'string') {\n return 'Missing or invalid account_identifier';\n }\n if (!data.timestamp \|\| typeof data.timestamp !== 'string') {\n return 'Missing or invalid timestamp';\n }\n return null;\n}\n\n/\n Handles OAuth flow in popup window\n /\nexport class OAuthHandler {\n private popup: Window \| null = null;\n private pollInterval: number \| null = null;\n private messageListener: ((event: MessageEvent) => void) \| null = null;\n private options: Required<OAuthHandlerOptions>;\n private expectedOrigin: string;\n private settled: boolean = false;\n\n constructor(options: OAuthHandlerOptions) {\n this.options = {\n baseURL: options.baseURL,\n onSuccess: options.onSuccess,\n onError: options.onError,\n onCancel: options.onCancel,\n popupWidth: options.popupWidth \|\| 500,\n popupHeight: options.popupHeight \|\| 700,\n debug: options.debug \|\| false,\n expectedOrigin: options.expectedOrigin \|\| '',\n };\n\n // Extract origin from baseURL for postMessage validation\n try {\n this.expectedOrigin = new URL(options.baseURL).origin;\n } catch {\n throw new Error(\n `Invalid baseURL: \"${options.baseURL}\". Must be a full URL with protocol (e.g., \"https://api.alterai.dev\").`\n );\n }\n }\n\n /\n Start OAuth flow (automatically chooses popup or redirect based on device)\n /\n startOAuth(url: string): void {\n // Derive expected origin from the OAuth URL if not explicitly set.\n // SECURITY: Fail-closed — if we can't determine origin, abort the flow.\n if (!this.options.expectedOrigin) {\n try {\n const parsed = new URL(url);\n this.options.expectedOrigin = parsed.origin;\n this.log('Derived expected origin:', this.options.expectedOrigin);\n } catch {\n this.log('Failed to parse OAuth URL for origin validation:', url);\n this.options.onError({\n code: 'invalid_oauth_url',\n message: 'Failed to determine origin from OAuth URL. Cannot proceed securely.',\n });\n return;\n }\n }\n\n if (shouldUseRedirectFlow()) {\n this.log('Using redirect flow for mobile device');\n this.startRedirectFlow(url);\n } else {\n this.log('Using popup flow for desktop');\n this.openPopup(url);\n }\n }\n\n /\n Start OAuth redirect flow (for mobile)\n * Saves state and redirects the entire page\n /\n private startRedirectFlow(url: string): void {\n this.log('Starting redirect flow:', url);\n\n // Save state to sessionStorage to restore after redirect\n const state = {\n timestamp: Date.now(),\n returnUrl: window.location.href,\n };\n\n try {\n sessionStorage.setItem('alter_oauth_state', JSON.stringify(state));\n } catch (error) {\n this.log('Failed to save state:', error);\n this.options.onError({\n code: 'redirect_error',\n message: 'Failed to start OAuth flow: could not save session state',\n details: { error },\n });\n return;\n }\n\n // Redirect to OAuth URL (full page redirect)\n window.location.href = url;\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * Call this on page load to detect OAuth return\n \n @returns true if OAuth return was detected and handled\n /\n static checkOAuthReturn(\n onSuccess: (connections: Connection[]) => void,\n onError: (error: AlterError) => void\n ): boolean {\n // Check if we have OAuth state saved\n const stateJson = sessionStorage.getItem('alter_oauth_state');\n if (!stateJson) {\n return false;\n }\n\n try {\n const state = JSON.parse(stateJson);\n\n // Check if this is a valid OAuth return (within 5 minutes)\n const elapsed = Date.now() - state.timestamp;\n if (elapsed > 5 60 * 1000) {\n // Stale state, clean up\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n\n // Check URL for OAuth callback parameters\n const urlParams = new URLSearchParams(window.location.search);\n const success = urlParams.get('alter_connect_success');\n const error = urlParams.get('alter_connect_error');\n\n if (success === 'true') {\n // Validate required fields\n const connectionId = urlParams.get('connection_id');\n const provider = urlParams.get('provider');\n const accountIdentifier = urlParams.get('account_identifier');\n\n if (!connectionId \|\| !provider \|\| !accountIdentifier) {\n cleanupRedirectState(state.returnUrl);\n onError({\n code: 'invalid_response',\n message: 'OAuth redirect returned incomplete connection data',\n });\n return true;\n }\n\n const connection: Connection = {\n connection_id: connectionId,\n provider: provider,\n provider_name: urlParams.get('provider_name') \|\| provider,\n account_identifier: accountIdentifier,\n timestamp: urlParams.get('timestamp') \|\| new Date().toISOString(),\n operation: parseOperation(urlParams.get('operation')),\n scopes: urlParams.get('scopes')?.split(',') \|\| [],\n status: parseStatus(urlParams.get('status')),\n };\n\n cleanupRedirectState(state.returnUrl);\n onSuccess([connection]); // Wrap in array for unified interface\n return true;\n }\n\n if (error) {\n const alterError: AlterError = {\n code: urlParams.get('error_code') \|\| 'oauth_error',\n message: urlParams.get('error_description') \|\| 'OAuth authorization failed',\n };\n\n cleanupRedirectState(state.returnUrl);\n onError(alterError);\n return true;\n }\n\n return false;\n } catch (err) {\n console.error('[OAuth Handler] Failed to check OAuth return:', err);\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n }\n\n /*\n Open OAuth popup (for desktop)\n /\n openPopup(url: string): void {\n // Calculate popup position (centered)\n const left = window.screenX + (window.outerWidth - this.options.popupWidth) / 2;\n const top = window.screenY + (window.outerHeight - this.options.popupHeight) / 2;\n\n const features = [\n `width=${this.options.popupWidth}`,\n `height=${this.options.popupHeight}`,\n `left=${left}`,\n `top=${top}`,\n 'resizable=yes',\n 'scrollbars=yes',\n 'status=yes',\n ].join(',');\n\n this.log('Opening OAuth popup:', url);\n\n // Open popup\n this.popup = window.open(url, 'alter_oauth_popup', features);\n\n if (!this.popup) {\n this.options.onError({\n code: 'popup_blocked',\n message: 'Popup was blocked by browser. Please allow popups for this site.',\n });\n return;\n }\n\n // Start monitoring popup\n this.startPolling();\n this.setupMessageListener();\n }\n\n /\n Close popup and clean up\n /\n close(): void {\n this.log('Closing OAuth handler');\n\n // Close popup\n if (this.popup && !this.popup.closed) {\n this.popup.close();\n }\n this.popup = null;\n\n // Stop polling\n if (this.pollInterval !== null) {\n clearInterval(this.pollInterval);\n this.pollInterval = null;\n }\n\n // Remove message listener\n if (this.messageListener) {\n window.removeEventListener('message', this.messageListener);\n this.messageListener = null;\n }\n }\n\n /\n Poll to detect when popup is closed\n /\n private startPolling(): void {\n this.pollInterval = window.setInterval(() => {\n if (this.settled) return;\n if (!this.popup \|\| this.popup.closed) {\n this.log('Popup closed by user');\n this.settled = true;\n this.close();\n this.options.onCancel();\n }\n }, 500);\n }\n\n /\n Listen for postMessage from OAuth callback page\n /\n private setupMessageListener(): void {\n this.messageListener = (event: MessageEvent) => {\n // Ignore if already settled (prevents race with polling)\n if (this.settled) return;\n\n // Validate origin against the expected backend origin\n if (event.origin !== this.expectedOrigin) {\n this.log('Rejected message from unexpected origin:', event.origin, '(expected:', this.expectedOrigin + ')');\n return;\n }\n\n this.log('Received message from', event.origin);\n\n const data = event.data;\n\n // Check message type\n if (data && typeof data === 'object') {\n if (data.type === 'alter_connect_success') {\n this.log('OAuth success');\n\n // New format: connections array (multi-provider)\n if (Array.isArray(data.connections)) {\n this.log('Multi-provider success:', data.connections.length, 'connections');\n const connections: Connection[] = [];\n for (const item of data.connections) {\n if (!item.connection_id \|\| !item.provider) {\n this.log('Skipping invalid connection item:', item);\n continue;\n }\n connections.push({\n connection_id: item.connection_id as string,\n provider: item.provider as string,\n provider_name: (item.provider_name as string) \|\| (item.provider as string),\n account_identifier: (item.account_identifier as string) \|\| '',\n timestamp: (item.timestamp as string) \|\| new Date().toISOString(),\n operation: parseOperation(item.operation as string \| undefined),\n scopes: Array.isArray(item.scopes) ? item.scopes as string[] : [],\n status: parseStatus(item.status as string \| undefined),\n metadata: item.metadata as Connection['metadata'],\n });\n }\n\n if (connections.length === 0) {\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned empty connections array',\n });\n return;\n }\n\n this.settled = true;\n this.close();\n this.options.onSuccess(connections);\n return;\n }\n\n // Legacy format: single connection (backward compat)\n const validationError = validateConnectionPayload(data);\n if (validationError) {\n this.log('Invalid connection payload:', validationError);\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: `Server returned incomplete connection data: ${validationError}`,\n });\n return;\n }\n\n const connection: Connection = {\n connection_id: data.connection_id as string,\n provider: data.provider as string,\n provider_name: (data.provider_name as string) \|\| (data.provider as string),\n account_identifier: data.account_identifier as string,\n timestamp: data.timestamp as string,\n operation: parseOperation(data.operation as string \| undefined),\n scopes: Array.isArray(data.scopes) ? data.scopes as string[] : [],\n status: parseStatus(data.status as string \| undefined),\n metadata: data.metadata as Connection['metadata'],\n };\n\n this.settled = true;\n this.close();\n this.options.onSuccess([connection]); // Wrap in array for unified interface\n } else if (data.type === 'alter_connect_error') {\n this.log('OAuth error');\n\n const error: AlterError = {\n code: (data.error as string) \|\| 'oauth_error',\n message: (data.error_description as string) \|\| 'OAuth authorization failed',\n details: data as Record<string, unknown>,\n };\n\n this.settled = true;\n this.close();\n this.options.onError(error);\n }\n }\n };\n\n window.addEventListener('message', this.messageListener);\n }\n\n /\n Log debug message\n /\n private log(...args: unknown[]): void {\n if (this.options.debug) {\n console.log('[OAuth Handler]', ...args);\n }\n }\n}\n","/\n Main AlterConnect SDK class\n \n Opens the backend-served Connect UI in a popup. The backend handles Clerk auth,\n * provider selection, branding, and OAuth — then sends the result back via postMessage.\n /\n\nimport type { AlterConnectConfig, OpenOptions, Connection, AlterError } from '../types';\nimport { validateConfig, mergeConfig, debugLog, type FullConfig } from './config';\nimport { EventEmitter } from './events';\nimport { StateManager } from '../state/manager';\nimport { OAuthHandler } from '../oauth/handler';\n\n/\n SDK version\n /\nconst VERSION = '0.2.0';\n\n/\n Main SDK class\n /\nexport class AlterConnect {\n private config: FullConfig;\n private eventEmitter: EventEmitter;\n private stateManager: StateManager;\n private _isInitialized: boolean;\n private _oauthHandler: OAuthHandler \| null = null;\n private _baseURL: string = 'https://api.alterai.dev'; // Default, overridden in open()\n private _perOpenCleanups: Array<() => void> = [];\n\n /\n Private constructor (use AlterConnect.create() instead)\n /\n private constructor(config: AlterConnectConfig = {}) {\n // Validate and merge config\n validateConfig(config);\n this.config = mergeConfig(config);\n\n // Initialize components\n this.eventEmitter = new EventEmitter();\n this.stateManager = new StateManager();\n this._isInitialized = true;\n\n debugLog(this.config, 'Alter Connect SDK initialized', { version: VERSION });\n\n // Check if returning from OAuth redirect (mobile flow)\n this.checkRedirectReturn();\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * This runs automatically on SDK initialization\n /\n private checkRedirectReturn(): void {\n const handled = OAuthHandler.checkOAuthReturn(\n (connections: Connection[]) => {\n debugLog(this.config, 'OAuth redirect return - success:', connections);\n // Emit success event (will be picked up by event handlers if SDK was re-initialized)\n this.eventEmitter.emit('success', connections);\n },\n (error: AlterError) => {\n debugLog(this.config, 'OAuth redirect return - error:', error);\n // Emit error event\n this.eventEmitter.emit('error', error);\n }\n );\n\n if (handled) {\n debugLog(this.config, 'OAuth redirect return detected and handled');\n }\n }\n\n /\n Create a new AlterConnect instance\n \n @param config Optional configuration\n * @returns AlterConnect instance\n \n @example\n * const alterConnect = AlterConnect.create();\n * const alterConnect = AlterConnect.create({ debug: true });\n /\n static create(config?: AlterConnectConfig): AlterConnect {\n return new AlterConnect(config);\n }\n\n /\n Open the Connect UI in a popup window\n \n Opens the backend-served Connect UI at {baseURL}/oauth/connect#session={token}.\n * The backend handles Clerk auth, provider selection, branding, and OAuth flow.\n * On success, the backend sends a postMessage back to this window.\n \n @param options Configuration including the session token from your backend\n \n @example\n * // 1. Get session token from YOUR backend\n * const { session_token } = await fetch('/api/alter/create-session').then(r => r.json());\n \n // 2. Open Connect UI\n * await alterConnect.open({\n * token: session_token,\n * onSuccess: (connection) => {\n * console.log('Connected!', connection);\n * },\n * onError: (error) => {\n * console.error('Failed:', error);\n * }\n * });\n /\n async open(options: OpenOptions): Promise<void> {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call open() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Opening Connect UI');\n\n // Validate required options\n if (!options.token \|\| typeof options.token !== 'string') {\n throw this.createError('invalid_options', 'Session token is required. Create one from your backend using POST /sdk/oauth/connect/session');\n }\n\n if (!options.onSuccess \|\| typeof options.onSuccess !== 'function') {\n throw this.createError('invalid_options', 'onSuccess callback is required');\n }\n\n // Check if already open\n if (this.isOpen()) {\n debugLog(this.config, 'Connect UI is already open');\n return;\n }\n\n // Store baseURL (from backend session response, or default to production)\n this._baseURL = options.baseURL \|\| 'https://api.alterai.dev';\n\n // Create OAuth handler first — this validates baseURL and throws on invalid input.\n // We do this BEFORE setting isOpen to avoid leaving the SDK in a broken state.\n this._oauthHandler = new OAuthHandler({\n baseURL: this._baseURL,\n onSuccess: (connections: Connection[]) => {\n debugLog(this.config, 'OAuth success:', connections);\n this.handleOAuthSuccess(connections);\n },\n onError: (error: AlterError) => {\n debugLog(this.config, 'OAuth error:', error);\n this.handleOAuthError(error);\n },\n onCancel: () => {\n debugLog(this.config, 'OAuth cancelled (popup closed)');\n this.handleOAuthCancel();\n },\n popupWidth: 500,\n popupHeight: 700,\n debug: this.config.debug,\n });\n\n // Update state (after handler creation succeeds)\n this.stateManager.setState({\n isOpen: true,\n error: null,\n sessionToken: options.token,\n });\n\n // Register event handlers\n this.registerEventHandlers(options);\n\n // Build the Connect UI URL — the backend serves the full UI\n const connectURL = `${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(options.token)}`;\n\n debugLog(this.config, 'Connect URL:', connectURL);\n\n // Open the Connect UI (popup or redirect depending on device)\n this._oauthHandler.startOAuth(connectURL);\n\n // Emit analytics event\n if (options.onEvent) {\n options.onEvent('connect_opened', {\n timestamp: new Date().toISOString(),\n });\n }\n\n debugLog(this.config, 'Connect UI opened successfully');\n }\n\n /\n Close the Connect UI\n /\n close(): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call close() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Closing Connect UI');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Remove only per-open handlers (preserves global handlers from on())\n this._perOpenCleanups.forEach(cleanup => cleanup());\n this._perOpenCleanups = [];\n\n // Update state\n this.stateManager.setState({ isOpen: false });\n\n this.eventEmitter.emit('close');\n }\n\n /\n Destroy the SDK instance and clean up resources\n /\n destroy(): void {\n if (!this._isInitialized) {\n // Already destroyed, silently return\n return;\n }\n\n debugLog(this.config, 'Destroying SDK instance');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Update state\n if (this.stateManager.get('isOpen')) {\n this.stateManager.setState({ isOpen: false });\n }\n\n // Clean up resources\n this.eventEmitter.removeAllListeners();\n this.stateManager.clearListeners();\n this._isInitialized = false;\n }\n\n /\n Register an event listener\n /\n on(event: string, handler: (...args: any[]) => void): () => void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call on() - SDK instance has been destroyed');\n }\n\n return this.eventEmitter.on(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: (...args: any[]) => void): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call off() - SDK instance has been destroyed');\n }\n\n this.eventEmitter.off(event, handler);\n }\n\n /\n Check if Connect UI is open\n /\n isOpen(): boolean {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call isOpen() - SDK instance has been destroyed');\n }\n\n return this.stateManager.get('isOpen');\n }\n\n /\n Get SDK version\n /\n getVersion(): string {\n return VERSION;\n }\n\n /\n Clean up OAuth handler reference after a flow completes.\n * The OAuthHandler.close() is already called internally by the handler\n * before invoking callbacks, so we only need to null the reference here.\n /\n private cleanupHandler(): void {\n this._oauthHandler = null;\n }\n\n /\n Handle OAuth success\n /\n private handleOAuthSuccess(connections: Connection[]): void {\n this.cleanupHandler();\n this.eventEmitter.emit('success', connections);\n }\n\n /\n Handle OAuth error\n /\n private handleOAuthError(error: AlterError): void {\n this.cleanupHandler();\n this.stateManager.setState({ error });\n this.eventEmitter.emit('error', error);\n }\n\n /\n Handle OAuth cancellation (user closed popup)\n /\n private handleOAuthCancel(): void {\n this.cleanupHandler();\n this.eventEmitter.emit('exit');\n }\n\n /\n Register event handlers from OpenOptions\n /\n private registerEventHandlers(options: OpenOptions): void {\n // Success handler\n if (options.onSuccess) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('success', (connections: Connection[]) => {\n options.onSuccess(connections);\n this.close();\n })\n );\n }\n\n // Exit handler\n if (options.onExit) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('exit', () => {\n options.onExit!();\n this.close();\n })\n );\n }\n\n // Error handler — always registered to ensure close() is called\n this._perOpenCleanups.push(\n this.eventEmitter.on('error', (error: AlterError) => {\n if (options.onError) {\n options.onError(error);\n }\n this.close();\n })\n );\n\n // Event handler (analytics)\n if (options.onEvent) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('event', (eventName: string, metadata: any) => {\n options.onEvent!(eventName, metadata);\n })\n );\n }\n }\n\n /\n Create an AlterError object\n */\n private createError(code: string, message: string, details?: Record<string, any>): Error {\n const error = new Error(message);\n (error as any).code = code;\n (error as any).details = details;\n return error;\n }\n}\n"],"names":["debugLog","config","args","debug","console","log","EventEmitter","constructor","this","events","Map","on","event","handler","has","set","Set","get","add","off","handlers","delete","emit","forEach","error","removeAllListeners","clear","StateManager","state","isOpen","sessionToken","listeners","getState","key","setState","updates","notifyListeners","subscribe","listener","clearListeners","currentState","isMobileDevice","userAgent","navigator","vendor","window","opera","isMobileUA","test","hasTouchScreen","maxTouchPoints","msMaxTouchPoints","isSmallScreen","innerWidth","getDeviceType","parseOperation","value","parseStatus","cleanupRedirectState","returnUrl","sessionStorage","removeItem","cleanUrl","URL","history","replaceState","document","title","pathname","search","hash","location","OAuthHandler","options","popup","pollInterval","messageListener","settled","baseURL","onSuccess","onError","onCancel","popupWidth","popupHeight","expectedOrigin","origin","Error","startOAuth","url","parsed","code","message","deviceType","innerHeight","shouldUseRedirectFlow","openPopup","startRedirectFlow","timestamp","Date","now","href","setItem","JSON","stringify","details","checkOAuthReturn","stateJson","getItem","parse","urlParams","URLSearchParams","success","connectionId","provider","accountIdentifier","connection","connection_id","provider_name","account_identifier","toISOString","operation","scopes","split","status","alterError","err","left","screenX","outerWidth","top","screenY","outerHeight","features","join","open","startPolling","setupMessageListener","close","closed","clearInterval","removeEventListener","setInterval","data","type","Array","isArray","connections","length","item","push","metadata","validationError","validateConnectionPayload","error_description","addEventListener","VERSION","AlterConnect","_oauthHandler","_baseURL","_perOpenCleanups","mergeConfig","eventEmitter","stateManager","_isInitialized","version","checkRedirectReturn","create","createError","token","handleOAuthSuccess","handleOAuthError","handleOAuthCancel","registerEventHandlers","connectURL","encodeURIComponent","onEvent","cleanup","destroy","getVersion","cleanupHandler","onExit","eventName"],"mappings":"qPAgCgBA,EAASC,KAAuBC,GAC1CD,EAAOE,OACTC,QAAQC,IAAI,qBAAsBH,EAEtC,OC3BaI,EAGX,WAAAC,GACEC,KAAKC,OAAS,IAAIC,GACpB,CAMA,EAAAC,CAAGC,EAAeC,GAQhB,OAPKL,KAAKC,OAAOK,IAAIF,IACnBJ,KAAKC,OAAOM,IAAIH,EAAO,IAAII,KAG7BR,KAAKC,OAAOQ,IAAIL,GAAQM,IAAIL,GAGrB,IAAML,KAAKW,IAAIP,EAAOC,EAC/B,CAKA,GAAAM,CAAIP,EAAeC,GACjB,MAAMO,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASC,OAAOR,EAEpB,CAKA,IAAAS,CAAKV,KAAkBV,GACrB,MAAMkB,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASG,QAAQV,IACf,IACEA,KAAWX,EACb,CAAE,MAAOsB,GACPpB,QAAQoB,MAAM,+CAA+CZ,MAAWY,EAC1E,GAGN,CAKA,kBAAAC,CAAmBb,GACbA,EACFJ,KAAKC,OAAOY,OAAOT,GAEnBJ,KAAKC,OAAOiB,OAEhB,QC9CWC,EAIX,WAAApB,GACEC,KAAKoB,MAAQ,CACXC,QAAQ,EACRC,aAAc,KACdN,MAAO,MAEThB,KAAKuB,UAAY,IAAIf,GACvB,CAKA,QAAAgB,GACE,MAAO,IAAKxB,KAAKoB,MACnB,CAKA,GAAAX,CAA8BgB,GAC5B,OAAOzB,KAAKoB,MAAMK,EACpB,CAKA,QAAAC,CAASC,GACP3B,KAAKoB,MAAQ,IAAKpB,KAAKoB,SAAUO,GACjC3B,KAAK4B,iBACP,CAKA,SAAAC,CAAUC,GAIR,OAHA9B,KAAKuB,UAAUb,IAAIoB,GAGZ,KACL9B,KAAKuB,UAAUV,OAAOiB,GAE1B,CAKA,cAAAC,GACE/B,KAAKuB,UAAUL,OACjB,CAKQ,eAAAU,GACN,MAAMI,EAAehC,KAAKwB,WAC1BxB,KAAKuB,UAAUR,QAAQe,IACrB,IACEA,EAASE,EACX,CAAE,MAAOhB,GACPpB,QAAQoB,MAAM,2CAA4CA,EAC5D,GAEJ,WC/EciB,IACd,MAAMC,EAAYC,UAAUD,WAAaC,UAAUC,QAAWC,OAAeC,MAIvEC,EADc,iEACWC,KAAKN,GAG9BO,EAAkB,iBAAkBJ,QACnBF,UAAUO,eAAiB,GAC1BP,UAAkBQ,iBAAmB,EAGvDC,EAAgBP,OAAOQ,YAAc,IAE3C,OAAON,GAAeE,GAAkBG,CAC1C,UAmBgBE,IACd,OAdOb,KAAoBI,OAAOQ,YAAc,IAcpB,QAPrBZ,KAAoBI,OAAOQ,WAAa,KAAOR,OAAOQ,YAAc,KAQ9C,SACtB,SACT,CCxBA,SAASE,EAAeC,GACtB,MAAc,WAAVA,EAA2B,SACjB,UAAVA,EAA0B,QACvB,UACT,CAKA,SAASC,EAAYD,GACnB,MAAc,YAAVA,EAA4B,UAClB,UAAVA,EAA0B,QACvB,QACT,CAKA,SAASE,EAAqBC,GAC5BC,eAAeC,WAAW,qBAC1B,IACE,MAAMC,EAAW,IAAIC,IAAIJ,GACzBd,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOL,EAASM,SAAWN,EAASO,OAASP,EAASQ,KACjG,CAAE,MAEAzB,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOtB,OAAO0B,SAASH,SAClE,CACF,OAyBaI,EAQX,WAAAjE,CAAYkE,GAPJjE,KAAAkE,MAAuB,KACvBlE,KAAAmE,aAA8B,KAC9BnE,KAAAoE,gBAA0D,KAG1DpE,KAAAqE,SAAmB,EAGzBrE,KAAKiE,QAAU,CACbK,QAASL,EAAQK,QACjBC,UAAWN,EAAQM,UACnBC,QAASP,EAAQO,QACjBC,SAAUR,EAAQQ,SAClBC,WAAYT,EAAQS,YAAc,IAClCC,YAAaV,EAAQU,aAAe,IACpChF,MAAOsE,EAAQtE,QAAS,EACxBiF,eAAgBX,EAAQW,gBAAkB,IAI5C,IACE5E,KAAK4E,eAAiB,IAAIrB,IAAIU,EAAQK,SAASO,MACjD,CAAE,MACA,MAAM,IAAIC,MACR,qBAAqBb,EAAQK,gFAEjC,CACF,CAKA,UAAAS,CAAWC,GAGT,IAAKhF,KAAKiE,QAAQW,eAChB,IACE,MAAMK,EAAS,IAAI1B,IAAIyB,GACvBhF,KAAKiE,QAAQW,eAAiBK,EAAOJ,OACrC7E,KAAKH,IAAI,2BAA4BG,KAAKiE,QAAQW,eACpD,CAAE,MAMA,OALA5E,KAAKH,IAAI,mDAAoDmF,QAC7DhF,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,oBACNC,QAAS,uEAGb,aDjEJ,MAAMC,EAAatC,IAGnB,MAAmB,UAAfsC,GAGe,WAAfA,GAA2B/C,OAAOgD,YAAchD,OAAOQ,UAM7D,CCwDQyC,IAIFtF,KAAKH,IAAI,gCACTG,KAAKuF,UAAUP,KAJfhF,KAAKH,IAAI,yCACTG,KAAKwF,kBAAkBR,GAK3B,CAMQ,iBAAAQ,CAAkBR,GACxBhF,KAAKH,IAAI,0BAA2BmF,GAGpC,MAAM5D,EAAQ,CACZqE,UAAWC,KAAKC,MAChBxC,UAAWd,OAAO0B,SAAS6B,MAG7B,IACExC,eAAeyC,QAAQ,oBAAqBC,KAAKC,UAAU3E,GAC7D,CAAE,MAAOJ,GAOP,OANAhB,KAAKH,IAAI,wBAAyBmB,QAClChB,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,iBACNC,QAAS,2DACTa,QAAS,CAAEhF,UAGf,CAGAqB,OAAO0B,SAAS6B,KAAOZ,CACzB,CAQA,uBAAOiB,CACL1B,EACAC,GAGA,MAAM0B,EAAY9C,eAAe+C,QAAQ,qBACzC,IAAKD,EACH,OAAO,EAGT,IACE,MAAM9E,EAAQ0E,KAAKM,MAAMF,GAIzB,GADgBR,KAAKC,MAAQvE,EAAMqE,UACrB,IAGZ,OADArC,eAAeC,WAAW,sBACnB,EAIT,MAAMgD,EAAY,IAAIC,gBAAgBjE,OAAO0B,SAASF,QAChD0C,EAAUF,EAAU5F,IAAI,yBACxBO,EAAQqF,EAAU5F,IAAI,uBAE5B,GAAgB,SAAZ8F,EAAoB,CAEtB,MAAMC,EAAeH,EAAU5F,IAAI,iBAC7BgG,EAAWJ,EAAU5F,IAAI,YACzBiG,EAAoBL,EAAU5F,IAAI,sBAExC,IAAK+F,IAAiBC,IAAaC,EAMjC,OALAxD,EAAqB9B,EAAM+B,WAC3BqB,EAAQ,CACNU,KAAM,mBACNC,QAAS,wDAEJ,EAGT,MAAMwB,EAAyB,CAC7BC,cAAeJ,EACfC,SAAUA,EACVI,cAAeR,EAAU5F,IAAI,kBAAoBgG,EACjDK,mBAAoBJ,EACpBjB,UAAWY,EAAU5F,IAAI,eAAgB,IAAIiF,MAAOqB,cACpDC,UAAWjE,EAAesD,EAAU5F,IAAI,cACxCwG,OAAQZ,EAAU5F,IAAI,WAAWyG,MAAM,MAAQ,GAC/CC,OAAQlE,EAAYoD,EAAU5F,IAAI,YAKpC,OAFAyC,EAAqB9B,EAAM+B,WAC3BoB,EAAU,CAACoC,KACJ,CACT,CAEA,GAAI3F,EAAO,CACT,MAAMoG,EAAyB,CAC7BlC,KAAMmB,EAAU5F,IAAI,eAAiB,cACrC0E,QAASkB,EAAU5F,IAAI,sBAAwB,8BAKjD,OAFAyC,EAAqB9B,EAAM+B,WAC3BqB,EAAQ4C,IACD,CACT,CAEA,OAAO,CACT,CAAE,MAAOC,GAGP,OAFAzH,QAAQoB,MAAM,gDAAiDqG,GAC/DjE,eAAeC,WAAW,sBACnB,CACT,CACF,CAKA,SAAAkC,CAAUP,GAER,MAAMsC,EAAOjF,OAAOkF,SAAWlF,OAAOmF,WAAaxH,KAAKiE,QAAQS,YAAc,EACxE+C,EAAMpF,OAAOqF,SAAWrF,OAAOsF,YAAc3H,KAAKiE,QAAQU,aAAe,EAEzEiD,EAAW,CACf,SAAS5H,KAAKiE,QAAQS,aACtB,UAAU1E,KAAKiE,QAAQU,cACvB,QAAQ2C,IACR,OAAOG,IACP,gBACA,iBACA,cACAI,KAAK,KAEP7H,KAAKH,IAAI,uBAAwBmF,GAGjChF,KAAKkE,MAAQ7B,OAAOyF,KAAK9C,EAAK,oBAAqB4C,GAE9C5H,KAAKkE,OASVlE,KAAK+H,eACL/H,KAAKgI,wBATHhI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,gBACNC,QAAS,oEAQf,CAKA,KAAA8C,GACEjI,KAAKH,IAAI,yBAGLG,KAAKkE,QAAUlE,KAAKkE,MAAMgE,QAC5BlI,KAAKkE,MAAM+D,QAEbjI,KAAKkE,MAAQ,KAGa,OAAtBlE,KAAKmE,eACPgE,cAAcnI,KAAKmE,cACnBnE,KAAKmE,aAAe,MAIlBnE,KAAKoE,kBACP/B,OAAO+F,oBAAoB,UAAWpI,KAAKoE,iBAC3CpE,KAAKoE,gBAAkB,KAE3B,CAKQ,YAAA2D,GACN/H,KAAKmE,aAAe9B,OAAOgG,YAAY,KACjCrI,KAAKqE,SACJrE,KAAKkE,QAASlE,KAAKkE,MAAMgE,SAC5BlI,KAAKH,IAAI,wBACTG,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQQ,aAEd,IACL,CAKQ,oBAAAuD,GACNhI,KAAKoE,gBAAmBhE,IAEtB,GAAIJ,KAAKqE,QAAS,OAGlB,GAAIjE,EAAMyE,SAAW7E,KAAK4E,eAExB,YADA5E,KAAKH,IAAI,2CAA4CO,EAAMyE,OAAQ,aAAc7E,KAAK4E,eAAiB,KAIzG5E,KAAKH,IAAI,wBAAyBO,EAAMyE,QAExC,MAAMyD,EAAOlI,EAAMkI,KAGnB,GAAIA,GAAwB,iBAATA,EACjB,GAAkB,0BAAdA,EAAKC,KAAkC,CAIzC,GAHAvI,KAAKH,IAAI,iBAGL2I,MAAMC,QAAQH,EAAKI,aAAc,CACnC1I,KAAKH,IAAI,0BAA2ByI,EAAKI,YAAYC,OAAQ,eAC7D,MAAMD,EAA4B,GAClC,IAAK,MAAME,KAAQN,EAAKI,YACjBE,EAAKhC,eAAkBgC,EAAKnC,SAIjCiC,EAAYG,KAAK,CACfjC,cAAegC,EAAKhC,cACpBH,SAAUmC,EAAKnC,SACfI,cAAgB+B,EAAK/B,eAA6B+B,EAAKnC,SACvDK,mBAAqB8B,EAAK9B,oBAAiC,GAC3DrB,UAAYmD,EAAKnD,YAAwB,IAAIC,MAAOqB,cACpDC,UAAWjE,EAAe6F,EAAK5B,WAC/BC,OAAQuB,MAAMC,QAAQG,EAAK3B,QAAU2B,EAAK3B,OAAqB,GAC/DE,OAAQlE,EAAY2F,EAAKzB,QACzB2B,SAAUF,EAAKE,WAZf9I,KAAKH,IAAI,oCAAqC+I,GAgBlD,OAA2B,IAAvBF,EAAYC,QACd3I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,8CAKbnF,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQM,UAAUmE,GAEzB,CAGA,MAAMK,EAxUhB,SAAmCT,GACjC,OAAKA,EAAK1B,eAA+C,iBAAvB0B,EAAK1B,cAGlC0B,EAAK7B,UAAqC,iBAAlB6B,EAAK7B,SAG7B6B,EAAKxB,oBAAyD,iBAA5BwB,EAAKxB,mBAGvCwB,EAAK7C,WAAuC,iBAAnB6C,EAAK7C,UAG5B,KAFE,+BAHA,wCAHA,8BAHA,kCAYX,CA0TkCuD,CAA0BV,GAClD,GAAIS,EAQF,OAPA/I,KAAKH,IAAI,8BAA+BkJ,GACxC/I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,+CAA+C4D,MAK5D,MAAMpC,EAAyB,CAC7BC,cAAe0B,EAAK1B,cACpBH,SAAU6B,EAAK7B,SACfI,cAAgByB,EAAKzB,eAA6ByB,EAAK7B,SACvDK,mBAAoBwB,EAAKxB,mBACzBrB,UAAW6C,EAAK7C,UAChBuB,UAAWjE,EAAeuF,EAAKtB,WAC/BC,OAAQuB,MAAMC,QAAQH,EAAKrB,QAAUqB,EAAKrB,OAAqB,GAC/DE,OAAQlE,EAAYqF,EAAKnB,QACzB2B,SAAUR,EAAKQ,UAGjB9I,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQM,UAAU,CAACoC,GAC1B,MAAO,GAAkB,wBAAd2B,EAAKC,KAAgC,CAC9CvI,KAAKH,IAAI,eAET,MAAMmB,EAAoB,CACxBkE,KAAOoD,EAAKtH,OAAoB,cAChCmE,QAAUmD,EAAKW,mBAAgC,6BAC/CjD,QAASsC,GAGXtI,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQxD,EACvB,GAIJqB,OAAO6G,iBAAiB,UAAWlJ,KAAKoE,gBAC1C,CAKQ,GAAAvE,IAAOH,GACTM,KAAKiE,QAAQtE,OACfC,QAAQC,IAAI,qBAAsBH,EAEtC,ECpaF,MAAMyJ,EAAU,cAKHC,EAYX,WAAArJ,CAAoBN,EAA6B,IAPzCO,KAAAqJ,cAAqC,KACrCrJ,KAAAsJ,SAAmB,0BACnBtJ,KAAAuJ,iBAAsC,GAQ5CvJ,KAAKP,OLbH,SAAsBA,GAC1B,MAAO,CACLE,MAAOF,EAAOE,QAAS,EAE3B,CKSkB6J,CAAY/J,GAG1BO,KAAKyJ,aAAe,IAAI3J,EACxBE,KAAK0J,aAAe,IAAIvI,EACxBnB,KAAK2J,gBAAiB,EAEtBnK,EAASQ,KAAKP,OAAQ,gCAAiC,CAAEmK,QAAST,IAGlEnJ,KAAK6J,qBACP,CAMQ,mBAAAA,GACU7F,EAAaiC,iBAC1ByC,IACClJ,EAASQ,KAAKP,OAAQ,mCAAoCiJ,GAE1D1I,KAAKyJ,aAAa3I,KAAK,UAAW4H,IAEnC1H,IACCxB,EAASQ,KAAKP,OAAQ,iCAAkCuB,GAExDhB,KAAKyJ,aAAa3I,KAAK,QAASE,MAKlCxB,EAASQ,KAAKP,OAAQ,6CAE1B,CAYA,aAAOqK,CAAOrK,GACZ,OAAO,IAAI2J,EAAa3J,EAC1B,CA0BA,UAAMqI,CAAK7D,GAET,IAAKjE,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,wDAM1C,GAHAvK,EAASQ,KAAKP,OAAQ,uBAGjBwE,EAAQ+F,OAAkC,iBAAlB/F,EAAQ+F,MACnC,MAAMhK,KAAK+J,YAAY,kBAAmB,iGAG5C,IAAK9F,EAAQM,WAA0C,mBAAtBN,EAAQM,UACvC,MAAMvE,KAAK+J,YAAY,kBAAmB,kCAI5C,GAAI/J,KAAKqB,SAEP,YADA7B,EAASQ,KAAKP,OAAQ,8BAKxBO,KAAKsJ,SAAWrF,EAAQK,SAAW,0BAInCtE,KAAKqJ,cAAgB,IAAIrF,EAAa,CACpCM,QAAStE,KAAKsJ,SACd/E,UAAYmE,IACVlJ,EAASQ,KAAKP,OAAQ,iBAAkBiJ,GACxC1I,KAAKiK,mBAAmBvB,IAE1BlE,QAAUxD,IACRxB,EAASQ,KAAKP,OAAQ,eAAgBuB,GACtChB,KAAKkK,iBAAiBlJ,IAExByD,SAAU,KACRjF,EAASQ,KAAKP,OAAQ,kCACtBO,KAAKmK,qBAEPzF,WAAY,IACZC,YAAa,IACbhF,MAAOK,KAAKP,OAAOE,QAIrBK,KAAK0J,aAAahI,SAAS,CACzBL,QAAQ,EACRL,MAAO,KACPM,aAAc2C,EAAQ+F,QAIxBhK,KAAKoK,sBAAsBnG,GAG3B,MAAMoG,EAAa,GAAGrK,KAAKsJ,sCAAsCgB,mBAAmBrG,EAAQ+F,SAE5FxK,EAASQ,KAAKP,OAAQ,eAAgB4K,GAGtCrK,KAAKqJ,cAActE,WAAWsF,GAG1BpG,EAAQsG,SACVtG,EAAQsG,QAAQ,iBAAkB,CAChC9E,WAAW,IAAIC,MAAOqB,gBAI1BvH,EAASQ,KAAKP,OAAQ,iCACxB,CAKA,KAAAwI,GAEE,IAAKjI,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,yDAG1CvK,EAASQ,KAAKP,OAAQ,sBAGlBO,KAAKqJ,gBACPrJ,KAAKqJ,cAAcpB,QACnBjI,KAAKqJ,cAAgB,MAIvBrJ,KAAKuJ,iBAAiBxI,QAAQyJ,GAAWA,KACzCxK,KAAKuJ,iBAAmB,GAGxBvJ,KAAK0J,aAAahI,SAAS,CAAEL,QAAQ,IAErCrB,KAAKyJ,aAAa3I,KAAK,QACzB,CAKA,OAAA2J,GACOzK,KAAK2J,iBAKVnK,EAASQ,KAAKP,OAAQ,2BAGlBO,KAAKqJ,gBACPrJ,KAAKqJ,cAAcpB,QACnBjI,KAAKqJ,cAAgB,MAInBrJ,KAAK0J,aAAajJ,IAAI,WACxBT,KAAK0J,aAAahI,SAAS,CAAEL,QAAQ,IAIvCrB,KAAKyJ,aAAaxI,qBAClBjB,KAAK0J,aAAa3H,iBAClB/B,KAAK2J,gBAAiB,EACxB,CAKA,EAAAxJ,CAAGC,EAAeC,GAEhB,IAAKL,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,sDAG1C,OAAO/J,KAAKyJ,aAAatJ,GAAGC,EAAOC,EACrC,CAKA,GAAAM,CAAIP,EAAeC,GAEjB,IAAKL,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,uDAG1C/J,KAAKyJ,aAAa9I,IAAIP,EAAOC,EAC/B,CAKA,MAAAgB,GAEE,IAAKrB,KAAK2J,eACR,MAAM3J,KAAK+J,YAAY,gBAAiB,0DAG1C,OAAO/J,KAAK0J,aAAajJ,IAAI,SAC/B,CAKA,UAAAiK,GACE,OAAOvB,CACT,CAOQ,cAAAwB,GACN3K,KAAKqJ,cAAgB,IACvB,CAKQ,kBAAAY,CAAmBvB,GACzB1I,KAAK2K,iBACL3K,KAAKyJ,aAAa3I,KAAK,UAAW4H,EACpC,CAKQ,gBAAAwB,CAAiBlJ,GACvBhB,KAAK2K,iBACL3K,KAAK0J,aAAahI,SAAS,CAAEV,UAC7BhB,KAAKyJ,aAAa3I,KAAK,QAASE,EAClC,CAKQ,iBAAAmJ,GACNnK,KAAK2K,iBACL3K,KAAKyJ,aAAa3I,KAAK,OACzB,CAKQ,qBAAAsJ,CAAsBnG,GAExBA,EAAQM,WACVvE,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,UAAYuI,IAC/BzE,EAAQM,UAAUmE,GAClB1I,KAAKiI,WAMPhE,EAAQ2G,QACV5K,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,OAAQ,KAC3B8D,EAAQ2G,SACR5K,KAAKiI,WAMXjI,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,QAAUa,IACzBiD,EAAQO,SACVP,EAAQO,QAAQxD,GAElBhB,KAAKiI,WAKLhE,EAAQsG,SACVvK,KAAKuJ,iBAAiBV,KACpB7I,KAAKyJ,aAAatJ,GAAG,QAAS,CAAC0K,EAAmB/B,KAChD7E,EAAQsG,QAASM,EAAW/B,KAIpC,CAKQ,WAAAiB,CAAY7E,EAAcC,EAAiBa,GACjD,MAAMhF,EAAQ,IAAI8D,MAAMK,GAGxB,OAFCnE,EAAckE,KAAOA,EACrBlE,EAAcgF,QAAUA,EAClBhF,CACT"}
1	+ {"version":3,"file":"alter-connect.umd.js","sources":["../src/core/config.ts","../src/core/events.ts","../src/state/manager.ts","../src/utils/mobile.ts","../src/oauth/handler.ts","../src/core/alter-connect.ts"],"sourcesContent":["/*\n Configuration validation and management\n /\n\nimport type { AlterConnectConfig } from '../types';\n\n/\n Internal config used by the SDK\n /\ninterface FullConfig {\n debug: boolean;\n}\n\n/\n Validate configuration\n /\nexport function validateConfig(_config: AlterConnectConfig): void {\n // Config only has `debug` — nothing to validate\n}\n\n/\n Merge user config with defaults\n /\nexport function mergeConfig(config: AlterConnectConfig): FullConfig {\n return {\n debug: config.debug ?? false,\n };\n}\n\n/\n Debug logging helper\n /\nexport function debugLog(config: FullConfig, ...args: any[]): void {\n if (config.debug) {\n console.log('[Alter Connect]', ...args);\n }\n}\n\n/\n Export FullConfig type for use in other modules\n /\nexport type { FullConfig };\n","/\n Simple event emitter for SDK events\n /\n\ntype EventHandler = (...args: any[]) => void;\n\n/\n Event emitter for SDK internal events\n /\nexport class EventEmitter {\n private events: Map<string, Set<EventHandler>>;\n\n constructor() {\n this.events = new Map();\n }\n\n /\n Register an event listener\n * @returns Unsubscribe function\n /\n on(event: string, handler: EventHandler): () => void {\n if (!this.events.has(event)) {\n this.events.set(event, new Set());\n }\n\n this.events.get(event)!.add(handler);\n\n // Return unsubscribe function\n return () => this.off(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: EventHandler): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.delete(handler);\n }\n }\n\n /\n Emit an event\n /\n emit(event: string, ...args: any[]): void {\n const handlers = this.events.get(event);\n if (handlers) {\n handlers.forEach(handler => {\n try {\n handler(...args);\n } catch (error) {\n console.error(`[Alter Connect] Error in event handler for '${event}':`, error);\n }\n });\n }\n }\n\n /\n Remove all listeners for an event, or all listeners if no event specified\n /\n removeAllListeners(event?: string): void {\n if (event) {\n this.events.delete(event);\n } else {\n this.events.clear();\n }\n }\n}\n","/\n State management for SDK\n /\n\nimport type { AlterError } from '../types';\n\n/\n SDK internal state\n /\nexport interface SDKState {\n isOpen: boolean;\n sessionToken: string \| null;\n error: AlterError \| null;\n}\n\ntype StateListener = (state: SDKState) => void;\n\n/\n Simple state manager\n /\nexport class StateManager {\n private state: SDKState;\n private listeners: Set<StateListener>;\n\n constructor() {\n this.state = {\n isOpen: false,\n sessionToken: null,\n error: null,\n };\n this.listeners = new Set();\n }\n\n /\n Get current state\n /\n getState(): Readonly<SDKState> {\n return { ...this.state };\n }\n\n /\n Get a specific state value\n /\n get<K extends keyof SDKState>(key: K): SDKState[K] {\n return this.state[key];\n }\n\n /\n Update state\n /\n setState(updates: Partial<SDKState>): void {\n this.state = { ...this.state, ...updates };\n this.notifyListeners();\n }\n\n /\n Subscribe to state changes\n /\n subscribe(listener: StateListener): () => void {\n this.listeners.add(listener);\n\n // Return unsubscribe function\n return () => {\n this.listeners.delete(listener);\n };\n }\n\n /\n Clear all listeners\n /\n clearListeners(): void {\n this.listeners.clear();\n }\n\n /\n Notify all listeners of state change\n /\n private notifyListeners(): void {\n const currentState = this.getState();\n this.listeners.forEach(listener => {\n try {\n listener(currentState);\n } catch (error) {\n console.error('[Alter Connect] Error in state listener:', error);\n }\n });\n }\n}\n","/\n Mobile device detection and responsive utilities\n /\n\n/\n Detect if the current device is a mobile device\n /\nexport function isMobileDevice(): boolean {\n const userAgent = navigator.userAgent \|\| navigator.vendor \|\| (window as any).opera;\n\n // Check for mobile patterns\n const mobileRegex = /Android\|webOS\|iPhone\|iPad\|iPod\|BlackBerry\|IEMobile\|Opera Mini/i;\n const isMobileUA = mobileRegex.test(userAgent);\n\n // Check for touch capability\n const hasTouchScreen = ('ontouchstart' in window) \|\|\n (navigator.maxTouchPoints > 0) \|\|\n ((navigator as any).msMaxTouchPoints > 0);\n\n // Check screen size\n const isSmallScreen = window.innerWidth <= 768;\n\n return isMobileUA \|\| (hasTouchScreen && isSmallScreen);\n}\n\n/\n Detect if the device is specifically a phone (vs tablet)\n /\nexport function isPhoneDevice(): boolean {\n return isMobileDevice() && window.innerWidth <= 480;\n}\n\n/\n Detect if the device is a tablet\n /\nexport function isTabletDevice(): boolean {\n return isMobileDevice() && window.innerWidth > 480 && window.innerWidth <= 1024;\n}\n\n/\n Get the device type\n /\nexport function getDeviceType(): 'desktop' \| 'tablet' \| 'phone' {\n if (isPhoneDevice()) return 'phone';\n if (isTabletDevice()) return 'tablet';\n return 'desktop';\n}\n\n/\n Check if we should use redirect flow instead of popup\n \n Popup windows don't work well on mobile:\n * - Browsers often block them\n * - They open as full-screen tabs\n * - Users lose context of parent app\n /\nexport function shouldUseRedirectFlow(): boolean {\n const deviceType = getDeviceType();\n\n // Always use redirect for phones\n if (deviceType === 'phone') return true;\n\n // Use redirect for tablets in portrait mode (popups are cramped)\n if (deviceType === 'tablet' && window.innerHeight > window.innerWidth) {\n return true;\n }\n\n // Use popup for desktop and tablets in landscape\n return false;\n}\n","/\n OAuth popup and redirect handler\n /\n\nimport type { Grant, AlterError } from '../types';\nimport { shouldUseRedirectFlow } from '../utils/mobile';\n\ninterface OAuthHandlerOptions {\n baseURL: string;\n onSuccess: (grants: Grant[]) => void;\n onError: (error: AlterError) => void;\n onCancel: () => void;\n popupWidth?: number;\n popupHeight?: number;\n debug?: boolean;\n /* Expected origin for postMessage validation. Derived from the OAuth URL. /\n expectedOrigin?: string;\n}\n\n/\n Parse an operation string into a valid Grant['operation'] value\n /\nfunction parseOperation(value: string \| null \| undefined): Grant['operation'] {\n if (value === 'reauth') return 'reauth';\n return 'creation';\n}\n\n/\n Parse a status string into a valid Grant['status'] value\n /\nfunction parseStatus(value: string \| null \| undefined): Grant['status'] {\n if (value === 'pending') return 'pending';\n if (value === 'error') return 'error';\n return 'active';\n}\n\n/\n Clean up OAuth redirect state and restore the original URL\n /\nfunction cleanupRedirectState(returnUrl: string): void {\n sessionStorage.removeItem('alter_oauth_state');\n try {\n const cleanUrl = new URL(returnUrl);\n window.history.replaceState({}, document.title, cleanUrl.pathname + cleanUrl.search + cleanUrl.hash);\n } catch {\n // If returnUrl is malformed, just remove query params from current URL\n window.history.replaceState({}, document.title, window.location.pathname);\n }\n}\n\n/\n Handles OAuth flow in popup window\n /\nexport class OAuthHandler {\n private popup: Window \| null = null;\n private pollInterval: number \| null = null;\n private messageListener: ((event: MessageEvent) => void) \| null = null;\n private options: Required<OAuthHandlerOptions>;\n private expectedOrigin: string;\n private settled: boolean = false;\n\n constructor(options: OAuthHandlerOptions) {\n this.options = {\n baseURL: options.baseURL,\n onSuccess: options.onSuccess,\n onError: options.onError,\n onCancel: options.onCancel,\n popupWidth: options.popupWidth \|\| 500,\n popupHeight: options.popupHeight \|\| 700,\n debug: options.debug \|\| false,\n expectedOrigin: options.expectedOrigin \|\| '',\n };\n\n // Extract origin from baseURL for postMessage validation\n try {\n this.expectedOrigin = new URL(options.baseURL).origin;\n } catch {\n throw new Error(\n `Invalid baseURL: \"${options.baseURL}\". Must be a full URL with protocol (e.g., \"https://api.alterauth.com\").`\n );\n }\n }\n\n /\n Start OAuth flow (automatically chooses popup or redirect based on device)\n /\n startOAuth(url: string): void {\n // Derive expected origin from the OAuth URL if not explicitly set.\n // SECURITY: Fail-closed — if we can't determine origin, abort the flow.\n if (!this.options.expectedOrigin) {\n try {\n const parsed = new URL(url);\n this.options.expectedOrigin = parsed.origin;\n this.log('Derived expected origin:', this.options.expectedOrigin);\n } catch {\n this.log('Failed to parse OAuth URL for origin validation:', url);\n this.options.onError({\n code: 'invalid_oauth_url',\n message: 'Failed to determine origin from OAuth URL. Cannot proceed securely.',\n });\n return;\n }\n }\n\n if (shouldUseRedirectFlow()) {\n this.log('Using redirect flow for mobile device');\n this.startRedirectFlow(url);\n } else {\n this.log('Using popup flow for desktop');\n this.openPopup(url);\n }\n }\n\n /\n Start OAuth redirect flow (for mobile)\n * Saves state and redirects the entire page\n /\n private startRedirectFlow(url: string): void {\n this.log('Starting redirect flow:', url);\n\n // Save state to sessionStorage to restore after redirect\n const state = {\n timestamp: Date.now(),\n returnUrl: window.location.href,\n };\n\n try {\n sessionStorage.setItem('alter_oauth_state', JSON.stringify(state));\n } catch (error) {\n this.log('Failed to save state:', error);\n this.options.onError({\n code: 'redirect_error',\n message: 'Failed to start OAuth flow: could not save session state',\n details: { error },\n });\n return;\n }\n\n // Redirect to OAuth URL (full page redirect)\n window.location.href = url;\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * Call this on page load to detect OAuth return\n \n @returns true if OAuth return was detected and handled\n /\n static checkOAuthReturn(\n onSuccess: (grants: Grant[]) => void,\n onError: (error: AlterError) => void\n ): boolean {\n // Check if we have OAuth state saved\n const stateJson = sessionStorage.getItem('alter_oauth_state');\n if (!stateJson) {\n return false;\n }\n\n try {\n const state = JSON.parse(stateJson);\n\n // Check if this is a valid OAuth return (within 5 minutes)\n const elapsed = Date.now() - state.timestamp;\n if (elapsed > 5 60 * 1000) {\n // Stale state, clean up\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n\n // Check URL for OAuth callback parameters\n const urlParams = new URLSearchParams(window.location.search);\n const success = urlParams.get('alter_connect_success');\n const error = urlParams.get('alter_connect_error');\n\n if (success === 'true') {\n // Validate required fields\n const grantId = urlParams.get('grant_id');\n const provider = urlParams.get('provider');\n const accountIdentifier = urlParams.get('account_identifier');\n\n if (!grantId \|\| !provider \|\| !accountIdentifier) {\n cleanupRedirectState(state.returnUrl);\n onError({\n code: 'invalid_response',\n message: 'OAuth redirect returned incomplete grant data',\n });\n return true;\n }\n\n const grant: Grant = {\n grant_id: grantId,\n provider: provider,\n provider_name: urlParams.get('provider_name') \|\| provider,\n account_identifier: accountIdentifier,\n timestamp: urlParams.get('timestamp') \|\| new Date().toISOString(),\n operation: parseOperation(urlParams.get('operation')),\n scopes: urlParams.get('scopes')?.split(',') \|\| [],\n status: parseStatus(urlParams.get('status')),\n };\n\n cleanupRedirectState(state.returnUrl);\n onSuccess([grant]); // Wrap in array for unified interface\n return true;\n }\n\n if (error) {\n const alterError: AlterError = {\n code: urlParams.get('error_code') \|\| 'oauth_error',\n message: urlParams.get('error_description') \|\| 'OAuth authorization failed',\n };\n\n cleanupRedirectState(state.returnUrl);\n onError(alterError);\n return true;\n }\n\n return false;\n } catch (err) {\n console.error('[OAuth Handler] Failed to check OAuth return:', err);\n sessionStorage.removeItem('alter_oauth_state');\n return false;\n }\n }\n\n /*\n Open OAuth popup (for desktop)\n /\n openPopup(url: string): void {\n // Calculate popup position (centered)\n const left = window.screenX + (window.outerWidth - this.options.popupWidth) / 2;\n const top = window.screenY + (window.outerHeight - this.options.popupHeight) / 2;\n\n const features = [\n `width=${this.options.popupWidth}`,\n `height=${this.options.popupHeight}`,\n `left=${left}`,\n `top=${top}`,\n 'resizable=yes',\n 'scrollbars=yes',\n 'status=yes',\n ].join(',');\n\n this.log('Opening OAuth popup:', url);\n\n // Open popup\n this.popup = window.open(url, 'alter_oauth_popup', features);\n\n if (!this.popup) {\n this.options.onError({\n code: 'popup_blocked',\n message: 'Popup was blocked by browser. Please allow popups for this site.',\n });\n return;\n }\n\n // Start monitoring popup\n this.startPolling();\n this.setupMessageListener();\n }\n\n /\n Close popup and clean up\n /\n close(): void {\n this.log('Closing OAuth handler');\n\n // Close popup\n if (this.popup && !this.popup.closed) {\n this.popup.close();\n }\n this.popup = null;\n\n // Stop polling\n if (this.pollInterval !== null) {\n clearInterval(this.pollInterval);\n this.pollInterval = null;\n }\n\n // Remove message listener\n if (this.messageListener) {\n window.removeEventListener('message', this.messageListener);\n this.messageListener = null;\n }\n }\n\n /\n Poll to detect when popup is closed\n /\n private startPolling(): void {\n this.pollInterval = window.setInterval(() => {\n if (this.settled) return;\n if (!this.popup \|\| this.popup.closed) {\n this.log('Popup closed by user');\n this.settled = true;\n this.close();\n this.options.onCancel();\n }\n }, 500);\n }\n\n /\n Listen for postMessage from OAuth callback page\n /\n private setupMessageListener(): void {\n this.messageListener = (event: MessageEvent) => {\n // Ignore if already settled (prevents race with polling)\n if (this.settled) return;\n\n // Validate origin against the expected backend origin\n if (event.origin !== this.expectedOrigin) {\n this.log('Rejected message from unexpected origin:', event.origin, '(expected:', this.expectedOrigin + ')');\n return;\n }\n\n this.log('Received message from', event.origin);\n\n const data = event.data;\n\n // Check message type\n if (data && typeof data === 'object') {\n if (data.type === 'alter_connect_success') {\n this.log('OAuth success');\n\n // Accept both grants array and legacy connections array\n const rawGrants = Array.isArray(data.grants) ? data.grants : null;\n if (rawGrants) {\n this.log('Multi-provider success:', rawGrants.length, 'grants');\n const grants: Grant[] = [];\n for (const item of rawGrants) {\n const grantId = item.grant_id as string \| undefined;\n if (!grantId \|\| !item.provider) {\n this.log('Skipping invalid grant item:', item);\n continue;\n }\n grants.push({\n grant_id: grantId,\n provider: item.provider as string,\n provider_name: (item.provider_name as string) \|\| (item.provider as string),\n account_identifier: (item.account_identifier as string) \|\| '',\n timestamp: (item.timestamp as string) \|\| new Date().toISOString(),\n operation: parseOperation(item.operation as string \| undefined),\n scopes: Array.isArray(item.scopes) ? item.scopes as string[] : [],\n status: parseStatus(item.status as string \| undefined),\n metadata: item.metadata as Grant['metadata'],\n });\n }\n\n if (grants.length === 0) {\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned empty grants array',\n });\n return;\n }\n\n this.settled = true;\n this.close();\n this.options.onSuccess(grants);\n return;\n }\n\n // No valid grants array found\n this.settled = true;\n this.close();\n this.options.onError({\n code: 'invalid_response',\n message: 'Server returned success without grants array',\n });\n } else if (data.type === 'alter_connect_error') {\n this.log('OAuth error');\n\n const error: AlterError = {\n code: (data.error as string) \|\| 'oauth_error',\n message: (data.error_description as string) \|\| 'OAuth authorization failed',\n details: data as Record<string, unknown>,\n };\n\n this.settled = true;\n this.close();\n this.options.onError(error);\n }\n }\n };\n\n window.addEventListener('message', this.messageListener);\n }\n\n /\n Log debug message\n /\n private log(...args: unknown[]): void {\n if (this.options.debug) {\n console.log('[OAuth Handler]', ...args);\n }\n }\n}\n","/\n Main AlterConnect SDK class\n \n Opens the backend-served Connect UI in a popup. The backend handles\n * provider selection, branding, and OAuth — then sends the result back via postMessage.\n /\n\nimport type { AlterConnectConfig, OpenOptions, Grant, AlterError } from '../types';\nimport { validateConfig, mergeConfig, debugLog, type FullConfig } from './config';\nimport { EventEmitter } from './events';\nimport { StateManager } from '../state/manager';\nimport { OAuthHandler } from '../oauth/handler';\n\n/\n SDK version\n /\nconst VERSION = '0.2.0';\n\n/\n Main SDK class\n /\nexport class AlterConnect {\n private config: FullConfig;\n private eventEmitter: EventEmitter;\n private stateManager: StateManager;\n private _isInitialized: boolean;\n private _oauthHandler: OAuthHandler \| null = null;\n private _baseURL: string = 'https://api.alterauth.com'; // Default, overridden in open()\n private _perOpenCleanups: Array<() => void> = [];\n\n /\n Private constructor (use AlterConnect.create() instead)\n /\n private constructor(config: AlterConnectConfig = {}) {\n // Validate and merge config\n validateConfig(config);\n this.config = mergeConfig(config);\n\n // Initialize components\n this.eventEmitter = new EventEmitter();\n this.stateManager = new StateManager();\n this._isInitialized = true;\n\n debugLog(this.config, 'Alter Connect SDK initialized', { version: VERSION });\n\n // Check if returning from OAuth redirect (mobile flow)\n this.checkRedirectReturn();\n }\n\n /\n Check if returning from OAuth redirect and handle result\n * This runs automatically on SDK initialization\n /\n private checkRedirectReturn(): void {\n const handled = OAuthHandler.checkOAuthReturn(\n (grants: Grant[]) => {\n debugLog(this.config, 'OAuth redirect return - success:', grants);\n // Emit success event (will be picked up by event handlers if SDK was re-initialized)\n this.eventEmitter.emit('success', grants);\n },\n (error: AlterError) => {\n debugLog(this.config, 'OAuth redirect return - error:', error);\n // Emit error event\n this.eventEmitter.emit('error', error);\n }\n );\n\n if (handled) {\n debugLog(this.config, 'OAuth redirect return detected and handled');\n }\n }\n\n /\n Create a new AlterConnect instance\n \n @param config Optional configuration\n * @returns AlterConnect instance\n \n @example\n * const alterConnect = AlterConnect.create();\n * const alterConnect = AlterConnect.create({ debug: true });\n /\n static create(config?: AlterConnectConfig): AlterConnect {\n return new AlterConnect(config);\n }\n\n /\n Open the Connect UI in a popup window\n \n Opens the backend-served Connect UI at {baseURL}/oauth/connect#session={token}.\n * The backend handles provider selection, branding, and OAuth flow.\n * On success, the backend sends a postMessage back to this window.\n \n @param options Configuration including the session token from your backend\n \n @example\n * // 1. Get session token from YOUR backend\n * const { session_token } = await fetch('/api/alter/create-session').then(r => r.json());\n \n // 2. Open Connect UI\n * await alterConnect.open({\n * token: session_token,\n * onSuccess: (grants) => {\n * console.log('Connected!', grants);\n * },\n * onError: (error) => {\n * console.error('Failed:', error);\n * }\n * });\n /\n async open(options: OpenOptions): Promise<void> {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call open() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Opening Connect UI');\n\n // Validate required options\n if (!options.token \|\| typeof options.token !== 'string') {\n throw this.createError('invalid_options', 'Session token is required. Create one from your backend using POST /sdk/oauth/connect/session');\n }\n\n if (!options.onSuccess \|\| typeof options.onSuccess !== 'function') {\n throw this.createError('invalid_options', 'onSuccess callback is required');\n }\n\n // Check if already open\n if (this.isOpen()) {\n debugLog(this.config, 'Connect UI is already open');\n return;\n }\n\n // Store baseURL (from backend session response, or default to production)\n this._baseURL = options.baseURL \|\| 'https://api.alterauth.com';\n\n // Create OAuth handler first — this validates baseURL and throws on invalid input.\n // We do this BEFORE setting isOpen to avoid leaving the SDK in a broken state.\n this._oauthHandler = new OAuthHandler({\n baseURL: this._baseURL,\n onSuccess: (grants: Grant[]) => {\n debugLog(this.config, 'OAuth success:', grants);\n this.handleOAuthSuccess(grants);\n },\n onError: (error: AlterError) => {\n debugLog(this.config, 'OAuth error:', error);\n this.handleOAuthError(error);\n },\n onCancel: () => {\n debugLog(this.config, 'OAuth cancelled (popup closed)');\n this.handleOAuthCancel();\n },\n popupWidth: 500,\n popupHeight: 700,\n debug: this.config.debug,\n });\n\n // Update state (after handler creation succeeds)\n this.stateManager.setState({\n isOpen: true,\n error: null,\n sessionToken: options.token,\n });\n\n // Register event handlers\n this.registerEventHandlers(options);\n\n // Build the Connect UI URL — the backend serves the full UI\n const connectURL = `${this._baseURL}/sdk/oauth/connect#session=${encodeURIComponent(options.token)}`;\n\n debugLog(this.config, 'Connect URL:', connectURL);\n\n // Open the Connect UI (popup or redirect depending on device)\n this._oauthHandler.startOAuth(connectURL);\n\n // Emit analytics event\n if (options.onEvent) {\n options.onEvent('connect_opened', {\n timestamp: new Date().toISOString(),\n });\n }\n\n debugLog(this.config, 'Connect UI opened successfully');\n }\n\n /\n Close the Connect UI\n /\n close(): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call close() - SDK instance has been destroyed');\n }\n\n debugLog(this.config, 'Closing Connect UI');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Remove only per-open handlers (preserves global handlers from on())\n this._perOpenCleanups.forEach(cleanup => cleanup());\n this._perOpenCleanups = [];\n\n // Update state\n this.stateManager.setState({ isOpen: false });\n\n this.eventEmitter.emit('close');\n }\n\n /\n Destroy the SDK instance and clean up resources\n /\n destroy(): void {\n if (!this._isInitialized) {\n // Already destroyed, silently return\n return;\n }\n\n debugLog(this.config, 'Destroying SDK instance');\n\n // Clean up OAuth handler if active\n if (this._oauthHandler) {\n this._oauthHandler.close();\n this._oauthHandler = null;\n }\n\n // Update state\n if (this.stateManager.get('isOpen')) {\n this.stateManager.setState({ isOpen: false });\n }\n\n // Clean up resources\n this.eventEmitter.removeAllListeners();\n this.stateManager.clearListeners();\n this._isInitialized = false;\n }\n\n /\n Register an event listener\n /\n on(event: string, handler: (...args: any[]) => void): () => void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call on() - SDK instance has been destroyed');\n }\n\n return this.eventEmitter.on(event, handler);\n }\n\n /\n Remove an event listener\n /\n off(event: string, handler: (...args: any[]) => void): void {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call off() - SDK instance has been destroyed');\n }\n\n this.eventEmitter.off(event, handler);\n }\n\n /\n Check if Connect UI is open\n /\n isOpen(): boolean {\n // Check if SDK has been destroyed\n if (!this._isInitialized) {\n throw this.createError('sdk_destroyed', 'Cannot call isOpen() - SDK instance has been destroyed');\n }\n\n return this.stateManager.get('isOpen');\n }\n\n /\n Get SDK version\n /\n getVersion(): string {\n return VERSION;\n }\n\n /\n Clean up OAuth handler reference after a flow completes.\n * The OAuthHandler.close() is already called internally by the handler\n * before invoking callbacks, so we only need to null the reference here.\n /\n private cleanupHandler(): void {\n this._oauthHandler = null;\n }\n\n /\n Handle OAuth success\n /\n private handleOAuthSuccess(grants: Grant[]): void {\n this.cleanupHandler();\n this.eventEmitter.emit('success', grants);\n }\n\n /\n Handle OAuth error\n /\n private handleOAuthError(error: AlterError): void {\n this.cleanupHandler();\n this.stateManager.setState({ error });\n this.eventEmitter.emit('error', error);\n }\n\n /\n Handle OAuth cancellation (user closed popup)\n /\n private handleOAuthCancel(): void {\n this.cleanupHandler();\n this.eventEmitter.emit('exit');\n }\n\n /\n Register event handlers from OpenOptions\n /\n private registerEventHandlers(options: OpenOptions): void {\n // Success handler\n if (options.onSuccess) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('success', (grants: Grant[]) => {\n options.onSuccess(grants);\n this.close();\n })\n );\n }\n\n // Exit handler\n if (options.onExit) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('exit', () => {\n options.onExit!();\n this.close();\n })\n );\n }\n\n // Error handler — always registered to ensure close() is called\n this._perOpenCleanups.push(\n this.eventEmitter.on('error', (error: AlterError) => {\n if (options.onError) {\n options.onError(error);\n }\n this.close();\n })\n );\n\n // Event handler (analytics)\n if (options.onEvent) {\n this._perOpenCleanups.push(\n this.eventEmitter.on('event', (eventName: string, metadata: any) => {\n options.onEvent!(eventName, metadata);\n })\n );\n }\n }\n\n /\n Create an AlterError object\n */\n private createError(code: string, message: string, details?: Record<string, any>): Error {\n const error = new Error(message);\n (error as any).code = code;\n (error as any).details = details;\n return error;\n }\n}\n"],"names":["debugLog","config","args","debug","console","log","EventEmitter","constructor","this","events","Map","on","event","handler","has","set","Set","get","add","off","handlers","delete","emit","forEach","error","removeAllListeners","clear","StateManager","state","isOpen","sessionToken","listeners","getState","key","setState","updates","notifyListeners","subscribe","listener","clearListeners","currentState","isMobileDevice","userAgent","navigator","vendor","window","opera","isMobileUA","test","hasTouchScreen","maxTouchPoints","msMaxTouchPoints","isSmallScreen","innerWidth","getDeviceType","parseOperation","value","parseStatus","cleanupRedirectState","returnUrl","sessionStorage","removeItem","cleanUrl","URL","history","replaceState","document","title","pathname","search","hash","location","OAuthHandler","options","popup","pollInterval","messageListener","settled","baseURL","onSuccess","onError","onCancel","popupWidth","popupHeight","expectedOrigin","origin","Error","startOAuth","url","parsed","code","message","deviceType","innerHeight","shouldUseRedirectFlow","openPopup","startRedirectFlow","timestamp","Date","now","href","setItem","JSON","stringify","details","checkOAuthReturn","stateJson","getItem","parse","urlParams","URLSearchParams","success","grantId","provider","accountIdentifier","grant","grant_id","provider_name","account_identifier","toISOString","operation","scopes","split","status","alterError","err","left","screenX","outerWidth","top","screenY","outerHeight","features","join","open","startPolling","setupMessageListener","close","closed","clearInterval","removeEventListener","setInterval","data","type","rawGrants","Array","isArray","grants","length","item","push","metadata","error_description","addEventListener","VERSION","AlterConnect","_oauthHandler","_baseURL","_perOpenCleanups","mergeConfig","eventEmitter","stateManager","_isInitialized","version","checkRedirectReturn","create","createError","token","handleOAuthSuccess","handleOAuthError","handleOAuthCancel","registerEventHandlers","connectURL","encodeURIComponent","onEvent","cleanup","destroy","getVersion","cleanupHandler","onExit","eventName"],"mappings":"qPAgCgBA,EAASC,KAAuBC,GAC1CD,EAAOE,OACTC,QAAQC,IAAI,qBAAsBH,EAEtC,OC3BaI,EAGX,WAAAC,GACEC,KAAKC,OAAS,IAAIC,GACpB,CAMA,EAAAC,CAAGC,EAAeC,GAQhB,OAPKL,KAAKC,OAAOK,IAAIF,IACnBJ,KAAKC,OAAOM,IAAIH,EAAO,IAAII,KAG7BR,KAAKC,OAAOQ,IAAIL,GAAQM,IAAIL,GAGrB,IAAML,KAAKW,IAAIP,EAAOC,EAC/B,CAKA,GAAAM,CAAIP,EAAeC,GACjB,MAAMO,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASC,OAAOR,EAEpB,CAKA,IAAAS,CAAKV,KAAkBV,GACrB,MAAMkB,EAAWZ,KAAKC,OAAOQ,IAAIL,GAC7BQ,GACFA,EAASG,QAAQV,IACf,IACEA,KAAWX,EACb,CAAE,MAAOsB,GACPpB,QAAQoB,MAAM,+CAA+CZ,MAAWY,EAC1E,GAGN,CAKA,kBAAAC,CAAmBb,GACbA,EACFJ,KAAKC,OAAOY,OAAOT,GAEnBJ,KAAKC,OAAOiB,OAEhB,QC9CWC,EAIX,WAAApB,GACEC,KAAKoB,MAAQ,CACXC,QAAQ,EACRC,aAAc,KACdN,MAAO,MAEThB,KAAKuB,UAAY,IAAIf,GACvB,CAKA,QAAAgB,GACE,MAAO,IAAKxB,KAAKoB,MACnB,CAKA,GAAAX,CAA8BgB,GAC5B,OAAOzB,KAAKoB,MAAMK,EACpB,CAKA,QAAAC,CAASC,GACP3B,KAAKoB,MAAQ,IAAKpB,KAAKoB,SAAUO,GACjC3B,KAAK4B,iBACP,CAKA,SAAAC,CAAUC,GAIR,OAHA9B,KAAKuB,UAAUb,IAAIoB,GAGZ,KACL9B,KAAKuB,UAAUV,OAAOiB,GAE1B,CAKA,cAAAC,GACE/B,KAAKuB,UAAUL,OACjB,CAKQ,eAAAU,GACN,MAAMI,EAAehC,KAAKwB,WAC1BxB,KAAKuB,UAAUR,QAAQe,IACrB,IACEA,EAASE,EACX,CAAE,MAAOhB,GACPpB,QAAQoB,MAAM,2CAA4CA,EAC5D,GAEJ,WC/EciB,IACd,MAAMC,EAAYC,UAAUD,WAAaC,UAAUC,QAAWC,OAAeC,MAIvEC,EADc,iEACWC,KAAKN,GAG9BO,EAAkB,iBAAkBJ,QACnBF,UAAUO,eAAiB,GAC1BP,UAAkBQ,iBAAmB,EAGvDC,EAAgBP,OAAOQ,YAAc,IAE3C,OAAON,GAAeE,GAAkBG,CAC1C,UAmBgBE,IACd,OAdOb,KAAoBI,OAAOQ,YAAc,IAcpB,QAPrBZ,KAAoBI,OAAOQ,WAAa,KAAOR,OAAOQ,YAAc,KAQ9C,SACtB,SACT,CCxBA,SAASE,EAAeC,GACtB,MAAc,WAAVA,EAA2B,SACxB,UACT,CAKA,SAASC,EAAYD,GACnB,MAAc,YAAVA,EAA4B,UAClB,UAAVA,EAA0B,QACvB,QACT,CAKA,SAASE,EAAqBC,GAC5BC,eAAeC,WAAW,qBAC1B,IACE,MAAMC,EAAW,IAAIC,IAAIJ,GACzBd,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOL,EAASM,SAAWN,EAASO,OAASP,EAASQ,KACjG,CAAE,MAEAzB,OAAOmB,QAAQC,aAAa,CAAA,EAAIC,SAASC,MAAOtB,OAAO0B,SAASH,SAClE,CACF,OAKaI,EAQX,WAAAjE,CAAYkE,GAPJjE,KAAAkE,MAAuB,KACvBlE,KAAAmE,aAA8B,KAC9BnE,KAAAoE,gBAA0D,KAG1DpE,KAAAqE,SAAmB,EAGzBrE,KAAKiE,QAAU,CACbK,QAASL,EAAQK,QACjBC,UAAWN,EAAQM,UACnBC,QAASP,EAAQO,QACjBC,SAAUR,EAAQQ,SAClBC,WAAYT,EAAQS,YAAc,IAClCC,YAAaV,EAAQU,aAAe,IACpChF,MAAOsE,EAAQtE,QAAS,EACxBiF,eAAgBX,EAAQW,gBAAkB,IAI5C,IACE5E,KAAK4E,eAAiB,IAAIrB,IAAIU,EAAQK,SAASO,MACjD,CAAE,MACA,MAAM,IAAIC,MACR,qBAAqBb,EAAQK,kFAEjC,CACF,CAKA,UAAAS,CAAWC,GAGT,IAAKhF,KAAKiE,QAAQW,eAChB,IACE,MAAMK,EAAS,IAAI1B,IAAIyB,GACvBhF,KAAKiE,QAAQW,eAAiBK,EAAOJ,OACrC7E,KAAKH,IAAI,2BAA4BG,KAAKiE,QAAQW,eACpD,CAAE,MAMA,OALA5E,KAAKH,IAAI,mDAAoDmF,QAC7DhF,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,oBACNC,QAAS,uEAGb,aD5CJ,MAAMC,EAAatC,IAGnB,MAAmB,UAAfsC,GAGe,WAAfA,GAA2B/C,OAAOgD,YAAchD,OAAOQ,UAM7D,CCmCQyC,IAIFtF,KAAKH,IAAI,gCACTG,KAAKuF,UAAUP,KAJfhF,KAAKH,IAAI,yCACTG,KAAKwF,kBAAkBR,GAK3B,CAMQ,iBAAAQ,CAAkBR,GACxBhF,KAAKH,IAAI,0BAA2BmF,GAGpC,MAAM5D,EAAQ,CACZqE,UAAWC,KAAKC,MAChBxC,UAAWd,OAAO0B,SAAS6B,MAG7B,IACExC,eAAeyC,QAAQ,oBAAqBC,KAAKC,UAAU3E,GAC7D,CAAE,MAAOJ,GAOP,OANAhB,KAAKH,IAAI,wBAAyBmB,QAClChB,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,iBACNC,QAAS,2DACTa,QAAS,CAAEhF,UAGf,CAGAqB,OAAO0B,SAAS6B,KAAOZ,CACzB,CAQA,uBAAOiB,CACL1B,EACAC,GAGA,MAAM0B,EAAY9C,eAAe+C,QAAQ,qBACzC,IAAKD,EACH,OAAO,EAGT,IACE,MAAM9E,EAAQ0E,KAAKM,MAAMF,GAIzB,GADgBR,KAAKC,MAAQvE,EAAMqE,UACrB,IAGZ,OADArC,eAAeC,WAAW,sBACnB,EAIT,MAAMgD,EAAY,IAAIC,gBAAgBjE,OAAO0B,SAASF,QAChD0C,EAAUF,EAAU5F,IAAI,yBACxBO,EAAQqF,EAAU5F,IAAI,uBAE5B,GAAgB,SAAZ8F,EAAoB,CAEtB,MAAMC,EAAUH,EAAU5F,IAAI,YACxBgG,EAAWJ,EAAU5F,IAAI,YACzBiG,EAAoBL,EAAU5F,IAAI,sBAExC,IAAK+F,IAAYC,IAAaC,EAM5B,OALAxD,EAAqB9B,EAAM+B,WAC3BqB,EAAQ,CACNU,KAAM,mBACNC,QAAS,mDAEJ,EAGT,MAAMwB,EAAe,CACnBC,SAAUJ,EACVC,SAAUA,EACVI,cAAeR,EAAU5F,IAAI,kBAAoBgG,EACjDK,mBAAoBJ,EACpBjB,UAAWY,EAAU5F,IAAI,eAAgB,IAAIiF,MAAOqB,cACpDC,UAAWjE,EAAesD,EAAU5F,IAAI,cACxCwG,OAAQZ,EAAU5F,IAAI,WAAWyG,MAAM,MAAQ,GAC/CC,OAAQlE,EAAYoD,EAAU5F,IAAI,YAKpC,OAFAyC,EAAqB9B,EAAM+B,WAC3BoB,EAAU,CAACoC,KACJ,CACT,CAEA,GAAI3F,EAAO,CACT,MAAMoG,EAAyB,CAC7BlC,KAAMmB,EAAU5F,IAAI,eAAiB,cACrC0E,QAASkB,EAAU5F,IAAI,sBAAwB,8BAKjD,OAFAyC,EAAqB9B,EAAM+B,WAC3BqB,EAAQ4C,IACD,CACT,CAEA,OAAO,CACT,CAAE,MAAOC,GAGP,OAFAzH,QAAQoB,MAAM,gDAAiDqG,GAC/DjE,eAAeC,WAAW,sBACnB,CACT,CACF,CAKA,SAAAkC,CAAUP,GAER,MAAMsC,EAAOjF,OAAOkF,SAAWlF,OAAOmF,WAAaxH,KAAKiE,QAAQS,YAAc,EACxE+C,EAAMpF,OAAOqF,SAAWrF,OAAOsF,YAAc3H,KAAKiE,QAAQU,aAAe,EAEzEiD,EAAW,CACf,SAAS5H,KAAKiE,QAAQS,aACtB,UAAU1E,KAAKiE,QAAQU,cACvB,QAAQ2C,IACR,OAAOG,IACP,gBACA,iBACA,cACAI,KAAK,KAEP7H,KAAKH,IAAI,uBAAwBmF,GAGjChF,KAAKkE,MAAQ7B,OAAOyF,KAAK9C,EAAK,oBAAqB4C,GAE9C5H,KAAKkE,OASVlE,KAAK+H,eACL/H,KAAKgI,wBATHhI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,gBACNC,QAAS,oEAQf,CAKA,KAAA8C,GACEjI,KAAKH,IAAI,yBAGLG,KAAKkE,QAAUlE,KAAKkE,MAAMgE,QAC5BlI,KAAKkE,MAAM+D,QAEbjI,KAAKkE,MAAQ,KAGa,OAAtBlE,KAAKmE,eACPgE,cAAcnI,KAAKmE,cACnBnE,KAAKmE,aAAe,MAIlBnE,KAAKoE,kBACP/B,OAAO+F,oBAAoB,UAAWpI,KAAKoE,iBAC3CpE,KAAKoE,gBAAkB,KAE3B,CAKQ,YAAA2D,GACN/H,KAAKmE,aAAe9B,OAAOgG,YAAY,KACjCrI,KAAKqE,SACJrE,KAAKkE,QAASlE,KAAKkE,MAAMgE,SAC5BlI,KAAKH,IAAI,wBACTG,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQQ,aAEd,IACL,CAKQ,oBAAAuD,GACNhI,KAAKoE,gBAAmBhE,IAEtB,GAAIJ,KAAKqE,QAAS,OAGlB,GAAIjE,EAAMyE,SAAW7E,KAAK4E,eAExB,YADA5E,KAAKH,IAAI,2CAA4CO,EAAMyE,OAAQ,aAAc7E,KAAK4E,eAAiB,KAIzG5E,KAAKH,IAAI,wBAAyBO,EAAMyE,QAExC,MAAMyD,EAAOlI,EAAMkI,KAGnB,GAAIA,GAAwB,iBAATA,EACjB,GAAkB,0BAAdA,EAAKC,KAAkC,CACzCvI,KAAKH,IAAI,iBAGT,MAAM2I,EAAYC,MAAMC,QAAQJ,EAAKK,QAAUL,EAAKK,OAAS,KAC7D,GAAIH,EAAW,CACbxI,KAAKH,IAAI,0BAA2B2I,EAAUI,OAAQ,UACtD,MAAMD,EAAkB,GACxB,IAAK,MAAME,KAAQL,EAAW,CAC5B,MAAMhC,EAAUqC,EAAKjC,SAChBJ,GAAYqC,EAAKpC,SAItBkC,EAAOG,KAAK,CACVlC,SAAUJ,EACVC,SAAUoC,EAAKpC,SACfI,cAAgBgC,EAAKhC,eAA6BgC,EAAKpC,SACvDK,mBAAqB+B,EAAK/B,oBAAiC,GAC3DrB,UAAYoD,EAAKpD,YAAwB,IAAIC,MAAOqB,cACpDC,UAAWjE,EAAe8F,EAAK7B,WAC/BC,OAAQwB,MAAMC,QAAQG,EAAK5B,QAAU4B,EAAK5B,OAAqB,GAC/DE,OAAQlE,EAAY4F,EAAK1B,QACzB4B,SAAUF,EAAKE,WAZf/I,KAAKH,IAAI,+BAAgCgJ,EAc7C,CAEA,OAAsB,IAAlBF,EAAOC,QACT5I,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,yCAKbnF,KAAKqE,SAAU,EACfrE,KAAKiI,aACLjI,KAAKiE,QAAQM,UAAUoE,GAEzB,CAGA3I,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQ,CACnBU,KAAM,mBACNC,QAAS,gDAEb,MAAO,GAAkB,wBAAdmD,EAAKC,KAAgC,CAC9CvI,KAAKH,IAAI,eAET,MAAMmB,EAAoB,CACxBkE,KAAOoD,EAAKtH,OAAoB,cAChCmE,QAAUmD,EAAKU,mBAAgC,6BAC/ChD,QAASsC,GAGXtI,KAAKqE,SAAU,EACfrE,KAAKiI,QACLjI,KAAKiE,QAAQO,QAAQxD,EACvB,GAIJqB,OAAO4G,iBAAiB,UAAWjJ,KAAKoE,gBAC1C,CAKQ,GAAAvE,IAAOH,GACTM,KAAKiE,QAAQtE,OACfC,QAAQC,IAAI,qBAAsBH,EAEtC,EC5XF,MAAMwJ,EAAU,cAKHC,EAYX,WAAApJ,CAAoBN,EAA6B,IAPzCO,KAAAoJ,cAAqC,KACrCpJ,KAAAqJ,SAAmB,4BACnBrJ,KAAAsJ,iBAAsC,GAQ5CtJ,KAAKP,OLbH,SAAsBA,GAC1B,MAAO,CACLE,MAAOF,EAAOE,QAAS,EAE3B,CKSkB4J,CAAY9J,GAG1BO,KAAKwJ,aAAe,IAAI1J,EACxBE,KAAKyJ,aAAe,IAAItI,EACxBnB,KAAK0J,gBAAiB,EAEtBlK,EAASQ,KAAKP,OAAQ,gCAAiC,CAAEkK,QAAST,IAGlElJ,KAAK4J,qBACP,CAMQ,mBAAAA,GACU5F,EAAaiC,iBAC1B0C,IACCnJ,EAASQ,KAAKP,OAAQ,mCAAoCkJ,GAE1D3I,KAAKwJ,aAAa1I,KAAK,UAAW6H,IAEnC3H,IACCxB,EAASQ,KAAKP,OAAQ,iCAAkCuB,GAExDhB,KAAKwJ,aAAa1I,KAAK,QAASE,MAKlCxB,EAASQ,KAAKP,OAAQ,6CAE1B,CAYA,aAAOoK,CAAOpK,GACZ,OAAO,IAAI0J,EAAa1J,EAC1B,CA0BA,UAAMqI,CAAK7D,GAET,IAAKjE,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,wDAM1C,GAHAtK,EAASQ,KAAKP,OAAQ,uBAGjBwE,EAAQ8F,OAAkC,iBAAlB9F,EAAQ8F,MACnC,MAAM/J,KAAK8J,YAAY,kBAAmB,iGAG5C,IAAK7F,EAAQM,WAA0C,mBAAtBN,EAAQM,UACvC,MAAMvE,KAAK8J,YAAY,kBAAmB,kCAI5C,GAAI9J,KAAKqB,SAEP,YADA7B,EAASQ,KAAKP,OAAQ,8BAKxBO,KAAKqJ,SAAWpF,EAAQK,SAAW,4BAInCtE,KAAKoJ,cAAgB,IAAIpF,EAAa,CACpCM,QAAStE,KAAKqJ,SACd9E,UAAYoE,IACVnJ,EAASQ,KAAKP,OAAQ,iBAAkBkJ,GACxC3I,KAAKgK,mBAAmBrB,IAE1BnE,QAAUxD,IACRxB,EAASQ,KAAKP,OAAQ,eAAgBuB,GACtChB,KAAKiK,iBAAiBjJ,IAExByD,SAAU,KACRjF,EAASQ,KAAKP,OAAQ,kCACtBO,KAAKkK,qBAEPxF,WAAY,IACZC,YAAa,IACbhF,MAAOK,KAAKP,OAAOE,QAIrBK,KAAKyJ,aAAa/H,SAAS,CACzBL,QAAQ,EACRL,MAAO,KACPM,aAAc2C,EAAQ8F,QAIxB/J,KAAKmK,sBAAsBlG,GAG3B,MAAMmG,EAAa,GAAGpK,KAAKqJ,sCAAsCgB,mBAAmBpG,EAAQ8F,SAE5FvK,EAASQ,KAAKP,OAAQ,eAAgB2K,GAGtCpK,KAAKoJ,cAAcrE,WAAWqF,GAG1BnG,EAAQqG,SACVrG,EAAQqG,QAAQ,iBAAkB,CAChC7E,WAAW,IAAIC,MAAOqB,gBAI1BvH,EAASQ,KAAKP,OAAQ,iCACxB,CAKA,KAAAwI,GAEE,IAAKjI,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,yDAG1CtK,EAASQ,KAAKP,OAAQ,sBAGlBO,KAAKoJ,gBACPpJ,KAAKoJ,cAAcnB,QACnBjI,KAAKoJ,cAAgB,MAIvBpJ,KAAKsJ,iBAAiBvI,QAAQwJ,GAAWA,KACzCvK,KAAKsJ,iBAAmB,GAGxBtJ,KAAKyJ,aAAa/H,SAAS,CAAEL,QAAQ,IAErCrB,KAAKwJ,aAAa1I,KAAK,QACzB,CAKA,OAAA0J,GACOxK,KAAK0J,iBAKVlK,EAASQ,KAAKP,OAAQ,2BAGlBO,KAAKoJ,gBACPpJ,KAAKoJ,cAAcnB,QACnBjI,KAAKoJ,cAAgB,MAInBpJ,KAAKyJ,aAAahJ,IAAI,WACxBT,KAAKyJ,aAAa/H,SAAS,CAAEL,QAAQ,IAIvCrB,KAAKwJ,aAAavI,qBAClBjB,KAAKyJ,aAAa1H,iBAClB/B,KAAK0J,gBAAiB,EACxB,CAKA,EAAAvJ,CAAGC,EAAeC,GAEhB,IAAKL,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,sDAG1C,OAAO9J,KAAKwJ,aAAarJ,GAAGC,EAAOC,EACrC,CAKA,GAAAM,CAAIP,EAAeC,GAEjB,IAAKL,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,uDAG1C9J,KAAKwJ,aAAa7I,IAAIP,EAAOC,EAC/B,CAKA,MAAAgB,GAEE,IAAKrB,KAAK0J,eACR,MAAM1J,KAAK8J,YAAY,gBAAiB,0DAG1C,OAAO9J,KAAKyJ,aAAahJ,IAAI,SAC/B,CAKA,UAAAgK,GACE,OAAOvB,CACT,CAOQ,cAAAwB,GACN1K,KAAKoJ,cAAgB,IACvB,CAKQ,kBAAAY,CAAmBrB,GACzB3I,KAAK0K,iBACL1K,KAAKwJ,aAAa1I,KAAK,UAAW6H,EACpC,CAKQ,gBAAAsB,CAAiBjJ,GACvBhB,KAAK0K,iBACL1K,KAAKyJ,aAAa/H,SAAS,CAAEV,UAC7BhB,KAAKwJ,aAAa1I,KAAK,QAASE,EAClC,CAKQ,iBAAAkJ,GACNlK,KAAK0K,iBACL1K,KAAKwJ,aAAa1I,KAAK,OACzB,CAKQ,qBAAAqJ,CAAsBlG,GAExBA,EAAQM,WACVvE,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,UAAYwI,IAC/B1E,EAAQM,UAAUoE,GAClB3I,KAAKiI,WAMPhE,EAAQ0G,QACV3K,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,OAAQ,KAC3B8D,EAAQ0G,SACR3K,KAAKiI,WAMXjI,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,QAAUa,IACzBiD,EAAQO,SACVP,EAAQO,QAAQxD,GAElBhB,KAAKiI,WAKLhE,EAAQqG,SACVtK,KAAKsJ,iBAAiBR,KACpB9I,KAAKwJ,aAAarJ,GAAG,QAAS,CAACyK,EAAmB7B,KAChD9E,EAAQqG,QAASM,EAAW7B,KAIpC,CAKQ,WAAAe,CAAY5E,EAAcC,EAAiBa,GACjD,MAAMhF,EAAQ,IAAI8D,MAAMK,GAGxB,OAFCnE,EAAckE,KAAOA,EACrBlE,EAAcgF,QAAUA,EAClBhF,CACT"}

package/dist/types/core/alter-connect.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"alter-connect.d.ts","sourceRoot":"","sources":["../../../src/core/alter-connect.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,kBAAkB,EAAE,WAAW,~~EAA0B~~,MAAM,UAAU,CAAC;~~AAcxF~~,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAAa;IAC3B,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,cAAc,CAAU;IAChC,OAAO,CAAC,aAAa,CAA6B;IAClD,OAAO,CAAC,QAAQ,~~CAAqC~~;~~IACrD~~,OAAO,CAAC,gBAAgB,CAAyB;IAKjD,OAAO;IAoBP,OAAO,CAAC,mBAAmB;IA6B3B,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,kBAAkB,GAAG,YAAY;IA4BlD,IAAI,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IA8E/C,KAAK,IAAI,IAAI;IA2Bb,OAAO,IAAI,IAAI;IA4Bf,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,GAAG,MAAM,IAAI;IAYhE,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,GAAG,IAAI;IAY3D,MAAM,IAAI,OAAO;IAYjB,UAAU,IAAI,MAAM;IASpB,OAAO,CAAC,cAAc;IAOtB,OAAO,CAAC,kBAAkB;IAQ1B,OAAO,CAAC,gBAAgB;IASxB,OAAO,CAAC,iBAAiB;IAQzB,OAAO,CAAC,qBAAqB;IA4C7B,OAAO,CAAC,WAAW;CAMpB"}
1	+ {"version":3,"file":"alter-connect.d.ts","sourceRoot":"","sources":["../../../src/core/alter-connect.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,kBAAkB,EAAE,WAAW,EAAqB,MAAM,UAAU,CAAC;AAcnF,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAAa;IAC3B,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,cAAc,CAAU;IAChC,OAAO,CAAC,aAAa,CAA6B;IAClD,OAAO,CAAC,QAAQ,CAAuC;IACvD,OAAO,CAAC,gBAAgB,CAAyB;IAKjD,OAAO;IAoBP,OAAO,CAAC,mBAAmB;IA6B3B,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,kBAAkB,GAAG,YAAY;IA4BlD,IAAI,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IA8E/C,KAAK,IAAI,IAAI;IA2Bb,OAAO,IAAI,IAAI;IA4Bf,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,GAAG,MAAM,IAAI;IAYhE,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,GAAG,IAAI;IAY3D,MAAM,IAAI,OAAO;IAYjB,UAAU,IAAI,MAAM;IASpB,OAAO,CAAC,cAAc;IAOtB,OAAO,CAAC,kBAAkB;IAQ1B,OAAO,CAAC,gBAAgB;IASxB,OAAO,CAAC,iBAAiB;IAQzB,OAAO,CAAC,qBAAqB;IA4C7B,OAAO,CAAC,WAAW;CAMpB"}

package/dist/types/index.d.ts CHANGED Viewed

@@ -1,3 +1,3 @@
 export { AlterConnect as default } from './core/alter-connect';
-export type { AlterConnectConfig, OpenOptions, Provider, Connection, AlterError, } from './types';
+export type { AlterConnectConfig, OpenOptions, Provider, Grant, AlterError, } from './types';
 //# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAeA,OAAO,EAAE,YAAY,IAAI,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAG/D,YAAY,EACV,kBAAkB,EAClB,WAAW,EACX,QAAQ,EACR,~~UAAU~~,~~EACV~~,UAAU,GACX,MAAM,SAAS,CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAeA,OAAO,EAAE,YAAY,IAAI,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAG/D,YAAY,EACV,kBAAkB,EAClB,WAAW,EACX,QAAQ,EACR,KAAK,EACL,UAAU,GACX,MAAM,SAAS,CAAC"}

package/dist/types/oauth/handler.d.ts CHANGED Viewed

@@ -1,7 +1,7 @@
-import type { Connection, AlterError } from '../types';
+import type { Grant, AlterError } from '../types';
 interface OAuthHandlerOptions {
     baseURL: string;
-    onSuccess: (connections: Connection[]) => void;
+    onSuccess: (grants: Grant[]) => void;
     onError: (error: AlterError) => void;
     onCancel: () => void;
     popupWidth?: number;
@@ -19,7 +19,7 @@ export declare class OAuthHandler {
     constructor(options: OAuthHandlerOptions);
     startOAuth(url: string): void;
     private startRedirectFlow;
-    static checkOAuthReturn(onSuccess: (connections: Connection[]) => void, onError: (error: AlterError) => void): boolean;
+    static checkOAuthReturn(onSuccess: (grants: Grant[]) => void, onError: (error: AlterError) => void): boolean;
     openPopup(url: string): void;
     close(): void;
     private startPolling;

package/dist/types/oauth/handler.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"handler.d.ts","sourceRoot":"","sources":["../../../src/oauth/handler.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,~~UAAU~~,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;~~AAGvD~~,UAAU,mBAAmB;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,CAAC,~~WAAW~~,EAAE,~~UAAU~~,EAAE,KAAK,IAAI,CAAC;~~IAC/C~~,OAAO,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,CAAC;IACrC,QAAQ,EAAE,MAAM,IAAI,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,KAAK,CAAC,EAAE,OAAO,CAAC;IAEhB,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;~~AAyDD~~,qBAAa,YAAY;IACvB,OAAO,CAAC,KAAK,CAAuB;IACpC,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,eAAe,CAAgD;IACvE,OAAO,CAAC,OAAO,CAAgC;IAC/C,OAAO,CAAC,cAAc,CAAS;IAC/B,OAAO,CAAC,OAAO,CAAkB;gBAErB,OAAO,EAAE,mBAAmB;IAyBxC,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IA+B7B,OAAO,CAAC,iBAAiB;IA+BzB,MAAM,CAAC,gBAAgB,CACrB,SAAS,EAAE,CAAC,~~WAAW~~,EAAE,~~UAAU~~,EAAE,KAAK,IAAI,~~EAC9C~~,OAAO,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,GACnC,OAAO;IA4EV,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAoC5B,KAAK,IAAI,IAAI;IAyBb,OAAO,CAAC,YAAY;IAepB,OAAO,CAAC,oBAAoB;~~IA4G5B~~,OAAO,CAAC,GAAG;CAKZ"}
1	+ {"version":3,"file":"handler.d.ts","sourceRoot":"","sources":["../../../src/oauth/handler.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAGlD,UAAU,mBAAmB;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,KAAK,IAAI,CAAC;IACrC,OAAO,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,CAAC;IACrC,QAAQ,EAAE,MAAM,IAAI,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,KAAK,CAAC,EAAE,OAAO,CAAC;IAEhB,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAoCD,qBAAa,YAAY;IACvB,OAAO,CAAC,KAAK,CAAuB;IACpC,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,eAAe,CAAgD;IACvE,OAAO,CAAC,OAAO,CAAgC;IAC/C,OAAO,CAAC,cAAc,CAAS;IAC/B,OAAO,CAAC,OAAO,CAAkB;gBAErB,OAAO,EAAE,mBAAmB;IAyBxC,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IA+B7B,OAAO,CAAC,iBAAiB;IA+BzB,MAAM,CAAC,gBAAgB,CACrB,SAAS,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,KAAK,IAAI,EACpC,OAAO,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,GACnC,OAAO;IA4EV,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAoC5B,KAAK,IAAI,IAAI;IAyBb,OAAO,CAAC,YAAY;IAepB,OAAO,CAAC,oBAAoB;IAyF5B,OAAO,CAAC,GAAG;CAKZ"}

package/dist/types/types/index.d.ts CHANGED Viewed

@@ -5,13 +5,13 @@ export interface Provider {
     category: string;
     logo_url: string;
 }
-export interface Connection {
-    connection_id: string;
+export interface Grant {
+    grant_id: string;
     provider: string;
     provider_name: string;
     account_identifier: string;
     timestamp: string;
-    operation: 'creation' | 'reauth' | 'grant';
+    operation: 'creation' | 'reauth';
     scopes: string[];
     status: 'active' | 'pending' | 'error';
     metadata?: {
@@ -31,7 +31,7 @@ export interface AlterConnectConfig {
 export interface OpenOptions {
     token: string;
     baseURL?: string;
-    onSuccess: (connections: Connection[]) => void;
+    onSuccess: (grants: Grant[]) => void;
     onExit?: () => void;
     onError?: (error: AlterError) => void;
     onEvent?: (eventName: string, metadata: any) => void;

package/dist/types/types/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/types/index.ts"],"names":[],"mappings":"AAOA,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAKD,MAAM,WAAW,~~UAAU~~;~~IAKzB~~,~~aAAa~~,EAAE,MAAM,CAAC;~~IAMtB~~,QAAQ,EAAE,MAAM,CAAC;IAMjB,aAAa,EAAE,MAAM,CAAC;IAMtB,kBAAkB,EAAE,MAAM,CAAC;IAK3B,SAAS,EAAE,MAAM,CAAC;~~IAQlB~~,SAAS,EAAE,UAAU,GAAG,QAAQ,~~GAAG,OAAO,~~CAAC;~~IAM3C~~,MAAM,EAAE,MAAM,EAAE,CAAC;IAKjB,MAAM,EAAE,QAAQ,GAAG,SAAS,GAAG,OAAO,CAAC;IAKvC,QAAQ,CAAC,EAAE;QACT,oBAAoB,CAAC,EAAE,MAAM,CAAC;QAC9B,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,CAAC;CACH;~~AAKD~~,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAC/B;AAKD,MAAM,WAAW,kBAAkB;IAIjC,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAKD,MAAM,WAAW,WAAW;IAK1B,KAAK,EAAE,MAAM,CAAC;IAOd,OAAO,CAAC,EAAE,MAAM,CAAC;IAMjB,SAAS,EAAE,CAAC,~~WAAW~~,EAAE,~~UAAU~~,EAAE,KAAK,IAAI,CAAC;~~IAK/C~~,MAAM,CAAC,EAAE,MAAM,IAAI,CAAC;IAKpB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,CAAC;IAKtC,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,KAAK,IAAI,CAAC;CACtD"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/types/index.ts"],"names":[],"mappings":"AAOA,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAKD,MAAM,WAAW,KAAK;IAKpB,QAAQ,EAAE,MAAM,CAAC;IAMjB,QAAQ,EAAE,MAAM,CAAC;IAMjB,aAAa,EAAE,MAAM,CAAC;IAMtB,kBAAkB,EAAE,MAAM,CAAC;IAK3B,SAAS,EAAE,MAAM,CAAC;IAOlB,SAAS,EAAE,UAAU,GAAG,QAAQ,CAAC;IAMjC,MAAM,EAAE,MAAM,EAAE,CAAC;IAKjB,MAAM,EAAE,QAAQ,GAAG,SAAS,GAAG,OAAO,CAAC;IAKvC,QAAQ,CAAC,EAAE;QACT,oBAAoB,CAAC,EAAE,MAAM,CAAC;QAC9B,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,CAAC;CACH;AAMD,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAC/B;AAKD,MAAM,WAAW,kBAAkB;IAIjC,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAKD,MAAM,WAAW,WAAW;IAK1B,KAAK,EAAE,MAAM,CAAC;IAOd,OAAO,CAAC,EAAE,MAAM,CAAC;IAMjB,SAAS,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,KAAK,IAAI,CAAC;IAKrC,MAAM,CAAC,EAAE,MAAM,IAAI,CAAC;IAKpB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,CAAC;IAKtC,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,KAAK,IAAI,CAAC;CACtD"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@alter-ai/connect",
-  "version": "0.3.0",
+  "version": "0.5.0",
   "description": "JavaScript SDK for Alter Connect - Secure OAuth integration UI",
   "main": "dist/alter-connect.cjs.js",
   "module": "dist/alter-connect.esm.js",
@@ -32,9 +32,9 @@
     "connect",
     "integration"
   ],
-  "author": "Alter Team <founders@alterai.dev>",
+  "author": "Alter Team <founders@alterauth.com>",
   "license": "MIT",
-  "homepage": "https://alterai.dev",
+  "homepage": "https://alterauth.com",
   "repository": {
     "type": "git",
     "url": "git+https://github.com/AlterAIDev/Alter-Vault.git",