@bandeira-tech/b3nd-web 0.2.0 → 0.2.2

package/dist/apps/mod.d.ts

@@ -6,7 +6,6 @@ interface AppsClientConfig {
     appServerUrl: string;
     apiBasePath: string;
     fetch?: typeof fetch;
-    authToken?: string;
 }
 interface AppActionDef {
     action: string;
@@ -20,27 +19,34 @@ interface AppActionDef {
         plain?: string;
     };
 }
-interface AppRegistration {
-    appKey: string;
-    accountPrivateKeyPem: string;
-    encryptionPublicKeyHex?: string;
-    encryptionPrivateKeyPem?: string;
-    allowedOrigins: string[];
-    actions: AppActionDef[];
-}
+type AuthenticatedMessage<T = unknown> = {
+    auth: Array<{
+        pubkey: string;
+        signature: string;
+    }>;
+    payload: T;
+};
 declare class AppsClient {
     private base;
     private api;
     private f;
-    private authToken?;
     constructor(cfg: AppsClientConfig);
-    setAuthToken(token?: string): void;
     health(): Promise<unknown>;
-    registerApp(reg: AppRegistration): Promise<{
+    updateOrigins(appKey: string, message: AuthenticatedMessage<{
+        allowedOrigins?: string[];
+        encryptionPublicKeyHex?: string | null;
+    }>): Promise<{
         success: boolean;
-        error?: string;
     }>;
-    updateSchema(appKey: string, actions: AppActionDef[]): Promise<{
+    updateGoogleClientId(appKey: string, message: AuthenticatedMessage<{
+        googleClientId: string | null;
+    }>): Promise<{
+        success: boolean;
+    }>;
+    updateSchema(appKey: string, message: AuthenticatedMessage<{
+        actions: AppActionDef[];
+        encryptionPublicKeyHex?: string | null;
+    }>): Promise<{
         success: boolean;
         error?: string;
     }>;
@@ -50,14 +56,17 @@ declare class AppsClient {
             appKey: string;
             allowedOrigins: string[];
             actions: AppActionDef[];
+            encryptionPublicKeyHex?: string | null;
         };
     }>;
-    createSession(appKey: string, token: string): Promise<{
+    createSession(appKey: string, message: AuthenticatedMessage<{
+        session: string;
+    }>): Promise<{
         success: true;
         session: string;
         uri: string;
     }>;
-    invokeAction(appKey: string, action: string, payload: string, origin?: string): Promise<{
+    invokeAction(appKey: string, action: string, signedMessage: AuthenticatedMessage<any>, origin?: string): Promise<{
         success: true;
         uri: string;
         record: {
@@ -76,4 +85,4 @@ declare class AppsClient {
     }>;
 }
 
-export { type AppActionDef, type AppRegistration, AppsClient, type AppsClientConfig };
+export { type AppActionDef, AppsClient, type AppsClientConfig, type AuthenticatedMessage };

package/dist/apps/mod.js

@@ -1,6 +1,6 @@
 import {
   AppsClient
-} from "../chunk-QHDBFVLU.js";
+} from "../chunk-VAZUCGED.js";
 import "../chunk-MLKGABMK.js";
 export {
   AppsClient

package/dist/{chunk-2D2RT2DW.js → chunk-2VOR4VLG.js}

@@ -1,10 +1,7 @@
 // wallet/client.ts
 var WalletClient = class {
-  walletServerUrl;
-  apiBasePath;
-  fetchImpl;
-  currentSession = null;
   constructor(config) {
+    this.currentSession = null;
     this.walletServerUrl = config.walletServerUrl.replace(/\/$/, "");
     if (!config.apiBasePath || typeof config.apiBasePath !== "string") {
       throw new Error("apiBasePath is required (e.g., '/api/v1')");
@@ -19,6 +16,16 @@ var WalletClient = class {
       this.fetchImpl = fetch;
     }
   }
+  buildUrl(path) {
+    const normalized = path.startsWith("/") ? path : `/${path}`;
+    return `${this.walletServerUrl}${this.apiBasePath}${normalized}`;
+  }
+  buildAppKeyUrl(path, appKey) {
+    if (!appKey || typeof appKey !== "string") {
+      throw new Error("appKey is required");
+    }
+    return `${this.buildUrl(path)}/${appKey}`;
+  }
   /**
    * Get the current authenticated session
    */
@@ -41,15 +48,13 @@ var WalletClient = class {
    * Get current username (if authenticated)
    */
   getUsername() {
-    var _a;
-    return ((_a = this.currentSession) == null ? void 0 : _a.username) || null;
+    return this.currentSession?.username || null;
   }
   /**
    * Get current JWT token (if authenticated)
    */
   getToken() {
-    var _a;
-    return ((_a = this.currentSession) == null ? void 0 : _a.token) || null;
+    return this.currentSession?.token || null;
   }
   /**
    * Clear current session (logout)
@@ -87,12 +92,12 @@ var WalletClient = class {
    * Change password for current user
    * Requires active authentication session
    */
-  async changePassword(oldPassword, newPassword) {
+  async changePassword(appKey, oldPassword, newPassword) {
     if (!this.currentSession) {
       throw new Error("Not authenticated. Please login first.");
     }
     const response = await this.fetchImpl(
-      `${this.walletServerUrl}${this.apiBasePath}/auth/change-password`,
+      this.buildAppKeyUrl("/auth/credentials/change-password", appKey),
       {
         method: "POST",
         headers: {
@@ -115,24 +120,30 @@ var WalletClient = class {
    * Does not require authentication
    */
   async requestPasswordReset(_username) {
-    throw new Error("Use requestPasswordResetWithToken(token, username)");
+    throw new Error("Use requestPasswordResetWithToken(appKey, username)");
   }
   /**
    * Reset password using a reset token
    * Returns session data - call setSession() to activate it
    */
   async resetPassword(_username, _resetToken, _newPassword) {
-    throw new Error("Use resetPasswordWithToken(token, username, resetToken, newPassword)");
+    throw new Error("Use resetPasswordWithToken(appKey, username, resetToken, newPassword)");
   }
   /**
    * Sign up with app token (scoped to an app)
    */
-  async signupWithToken(token, credentials) {
-    if (!token) throw new Error("token is required");
-    const response = await this.fetchImpl(`${this.walletServerUrl}${this.apiBasePath}/auth/signup`, {
+  async signupWithToken(appKey, tokenOrCredentials, maybeCredentials) {
+    const credentials = typeof tokenOrCredentials === "string" ? maybeCredentials : tokenOrCredentials;
+    if (!credentials) throw new Error("credentials are required");
+    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/signup", appKey), {
       method: "POST",
       headers: { "Content-Type": "application/json" },
-      body: JSON.stringify({ token, username: credentials.username, password: credentials.password })
+      body: JSON.stringify({
+        token: typeof tokenOrCredentials === "string" ? tokenOrCredentials : void 0,
+        type: "password",
+        username: credentials.username,
+        password: credentials.password
+      })
     });
     const data = await response.json();
     if (!response.ok || !data.success) {
@@ -143,13 +154,20 @@ var WalletClient = class {
   /**
    * Login with app token and session (scoped to an app)
    */
-  async loginWithTokenSession(token, session, credentials) {
-    if (!token) throw new Error("token is required");
-    if (!session) throw new Error("session is required");
-    const response = await this.fetchImpl(`${this.walletServerUrl}${this.apiBasePath}/auth/login`, {
+  async loginWithTokenSession(appKey, tokenOrSession, sessionOrCredentials, maybeCredentials) {
+    const session = typeof sessionOrCredentials === "string" && maybeCredentials ? sessionOrCredentials : tokenOrSession;
+    const credentials = maybeCredentials || sessionOrCredentials;
+    if (!session || typeof session !== "string") throw new Error("session is required");
+    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/login", appKey), {
       method: "POST",
       headers: { "Content-Type": "application/json" },
-      body: JSON.stringify({ token, session, username: credentials.username, password: credentials.password })
+      body: JSON.stringify({
+        token: typeof tokenOrSession === "string" && maybeCredentials ? tokenOrSession : void 0,
+        session,
+        type: "password",
+        username: credentials.username,
+        password: credentials.password
+      })
     });
     const data = await response.json();
     if (!response.ok || !data.success) {
@@ -160,12 +178,12 @@ var WalletClient = class {
   /**
    * Request password reset scoped to app token
    */
-  async requestPasswordResetWithToken(token, username) {
-    if (!token) throw new Error("token is required");
-    const response = await this.fetchImpl(`${this.walletServerUrl}${this.apiBasePath}/auth/request-password-reset`, {
+  async requestPasswordResetWithToken(appKey, tokenOrUsername, maybeUsername) {
+    const username = maybeUsername || tokenOrUsername;
+    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/credentials/request-password-reset", appKey), {
       method: "POST",
       headers: { "Content-Type": "application/json" },
-      body: JSON.stringify({ token, username })
+      body: JSON.stringify({ username })
     });
     const data = await response.json();
     if (!response.ok || !data.success) {
@@ -174,14 +192,17 @@ var WalletClient = class {
     return { resetToken: data.resetToken, expiresIn: data.expiresIn };
   }
   /**
-   * Reset password scoped to app token
+   * Reset password scoped to an app
    */
-  async resetPasswordWithToken(token, username, resetToken, newPassword) {
-    if (!token) throw new Error("token is required");
-    const response = await this.fetchImpl(`${this.walletServerUrl}${this.apiBasePath}/auth/reset-password`, {
+  async resetPasswordWithToken(appKey, _tokenOrUsername, usernameOrReset, resetToken, newPassword) {
+    const username = usernameOrReset;
+    if (!resetToken || !newPassword) {
+      throw new Error("resetToken and newPassword are required");
+    }
+    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/credentials/reset-password", appKey), {
       method: "POST",
       headers: { "Content-Type": "application/json" },
-      body: JSON.stringify({ token, username, resetToken, newPassword })
+      body: JSON.stringify({ username, resetToken, newPassword })
     });
     const data = await response.json();
     if (!response.ok || !data.success) {
@@ -193,12 +214,15 @@ var WalletClient = class {
    * Get public keys for the current authenticated user.
    * Requires an active authentication session.
    */
-  async getPublicKeys() {
+  async getPublicKeys(appKey) {
     if (!this.currentSession) {
       throw new Error("Not authenticated. Please login first.");
     }
+    if (!appKey || typeof appKey !== "string") {
+      throw new Error("appKey is required");
+    }
     const response = await this.fetchImpl(
-      `${this.walletServerUrl}${this.apiBasePath}/public-keys`,
+      this.buildAppKeyUrl("/auth/public-keys", appKey),
       {
         headers: {
           Authorization: `Bearer ${this.currentSession.token}`
@@ -247,8 +271,8 @@ var WalletClient = class {
    * Convenience method: Get current user's public keys
    * Requires active authentication session
    */
-  async getMyPublicKeys() {
-    return this.getPublicKeys();
+  async getMyPublicKeys(appKey) {
+    return this.getPublicKeys(appKey);
   }
   /**
    * Get server's public keys
@@ -270,6 +294,66 @@ var WalletClient = class {
       encryptionPublicKeyHex: data.encryptionPublicKeyHex
     };
   }
+  /**
+   * Sign up with Google OAuth (scoped to app token)
+   * Returns session data with Google profile info - call setSession() to activate it
+   *
+   * @param token - App token from app server
+   * @param googleIdToken - Google ID token from Google Sign-In
+   * @returns GoogleAuthSession with username, JWT token, and Google profile info
+   */
+  async signupWithGoogle(appKey, token, googleIdToken) {
+    if (!token) throw new Error("token is required");
+    if (!googleIdToken) throw new Error("googleIdToken is required");
+    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/signup", appKey), {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ token, type: "google", googleIdToken })
+    });
+    const data = await response.json();
+    if (!response.ok || !data.success) {
+      throw new Error(data.error || `Google signup failed: ${response.statusText}`);
+    }
+    return {
+      username: data.username,
+      token: data.token,
+      expiresIn: data.expiresIn,
+      email: data.email,
+      name: data.name,
+      picture: data.picture
+    };
+  }
+  /**
+   * Login with Google OAuth (scoped to app token and session)
+   * Returns session data with Google profile info - call setSession() to activate it
+   *
+   * @param token - App token from app server
+   * @param session - Session key from app server
+   * @param googleIdToken - Google ID token from Google Sign-In
+   * @returns GoogleAuthSession with username, JWT token, and Google profile info
+   */
+  async loginWithGoogle(appKey, token, session, googleIdToken) {
+    if (!token) throw new Error("token is required");
+    if (!session) throw new Error("session is required");
+    if (!googleIdToken) throw new Error("googleIdToken is required");
+    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/login", appKey), {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ token, session, type: "google", googleIdToken })
+    });
+    const data = await response.json();
+    if (!response.ok || !data.success) {
+      throw new Error(data.error || `Google login failed: ${response.statusText}`);
+    }
+    return {
+      username: data.username,
+      token: data.token,
+      expiresIn: data.expiresIn,
+      email: data.email,
+      name: data.name,
+      picture: data.picture
+    };
+  }
 };
 
 export {

package/dist/{chunk-XH4OLKBV.js → chunk-7U5JDFQW.js}

@@ -1,8 +1,5 @@
 // clients/local-storage/mod.ts
 var LocalStorageClient = class {
-  config;
-  schema;
-  storage;
   constructor(config) {
     this.config = {
       keyPrefix: config.keyPrefix || "b3nd:",
@@ -133,8 +130,8 @@ var LocalStorageClient = class {
         } else if (sortBy === "timestamp") {
           const aData = this.getStoredData(a.uri);
           const bData = this.getStoredData(b.uri);
-          const aTs = (aData == null ? void 0 : aData.ts) || 0;
-          const bTs = (bData == null ? void 0 : bData.ts) || 0;
+          const aTs = aData?.ts || 0;
+          const bTs = bData?.ts || 0;
           comparison = aTs - bTs;
         }
         return sortOrder === "asc" ? comparison : -comparison;