@bandeira-tech/b3nd-web 0.3.2 → 0.3.3

package/dist/{chunk-FDJZ4P2M.js → chunk-OOWKYTYM.js}

@@ -1,16 +1,16 @@
+import {
+  MemoryClient,
+  createTestSchema
+} from "./chunk-O53KW746.js";
 import {
   WalletServerCore
-} from "./chunk-EF5ZUB4O.js";
+} from "./chunk-B4VAPGAO.js";
 import {
   exportPrivateKeyPem,
   generateEncryptionKeyPair,
   generateSigningKeyPair,
   signWithHex
 } from "./chunk-JN75UL5C.js";
-import {
-  MemoryClient,
-  createTestSchema
-} from "./chunk-O53KW746.js";
 
 // wallet/client.ts
 var WalletClient = class {
@@ -86,22 +86,6 @@ var WalletClient = class {
     }
     return await response.json();
   }
-  /**
-   * Sign up a new user
-   * Returns session data - call setSession() to activate it
-   */
-  // Tokenless signup is not supported. Use signup(token,...)
-  async signup(_credentials) {
-    throw new Error("Use signup(token, credentials) \u2014 app token required");
-  }
-  /**
-   * Login existing user
-   * Returns session data - call setSession() to activate it
-   */
-  // Tokenless login is not supported. Use login(token, session, credentials)
-  async login(_credentials) {
-    throw new Error("Use login(token, session, credentials) \u2014 app token + session required");
-  }
   /**
    * Change password for current user
    * Requires active authentication session
@@ -153,18 +137,29 @@ var WalletClient = class {
    *
    * @param appKey - The app's public key
    * @param session - Session keypair (generated via generateSessionKeypair)
-   * @param credentials - User credentials (username/password)
+   * @param credentials - User credentials (password or Google)
    */
-  async signupWithToken(appKey, session, credentials) {
+  async signup(appKey, session, credentials) {
     if (!session?.publicKeyHex || !session?.privateKeyHex) {
       throw new Error("session keypair is required");
     }
-    const payloadToSign = {
-      sessionPubkey: session.publicKeyHex,
-      type: "password",
-      username: credentials.username,
-      password: credentials.password
-    };
+    let payloadToSign;
+    if (credentials.type === "password") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "password",
+        username: credentials.username,
+        password: credentials.password
+      };
+    } else if (credentials.type === "google") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "google",
+        googleIdToken: credentials.googleIdToken
+      };
+    } else {
+      throw new Error(`Unknown credential type: ${credentials.type}`);
+    }
     const sessionSignature = await signWithHex(session.privateKeyHex, payloadToSign);
     const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/signup", appKey), {
       method: "POST",
@@ -178,7 +173,15 @@ var WalletClient = class {
     if (!response.ok || !data.success) {
       throw new Error(data.error || `Signup failed: ${response.statusText}`);
     }
-    return { username: data.username, token: data.token, expiresIn: data.expiresIn };
+    const result = {
+      username: data.username,
+      token: data.token,
+      expiresIn: data.expiresIn
+    };
+    if (data.email) result.email = data.email;
+    if (data.name) result.name = data.name;
+    if (data.picture) result.picture = data.picture;
+    return result;
   }
   /**
    * Login with session keypair (scoped to an app)
@@ -190,18 +193,29 @@ var WalletClient = class {
    *
    * @param appKey - The app's public key
    * @param session - Session keypair (generated via generateSessionKeypair)
-   * @param credentials - User credentials (username/password)
+   * @param credentials - User credentials (password or Google)
    */
-  async loginWithTokenSession(appKey, session, credentials) {
+  async login(appKey, session, credentials) {
     if (!session?.publicKeyHex || !session?.privateKeyHex) {
       throw new Error("session keypair is required");
     }
-    const payloadToSign = {
-      sessionPubkey: session.publicKeyHex,
-      type: "password",
-      username: credentials.username,
-      password: credentials.password
-    };
+    let payloadToSign;
+    if (credentials.type === "password") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "password",
+        username: credentials.username,
+        password: credentials.password
+      };
+    } else if (credentials.type === "google") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "google",
+        googleIdToken: credentials.googleIdToken
+      };
+    } else {
+      throw new Error(`Unknown credential type: ${credentials.type}`);
+    }
     const sessionSignature = await signWithHex(session.privateKeyHex, payloadToSign);
     const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/login", appKey), {
       method: "POST",
@@ -215,7 +229,15 @@ var WalletClient = class {
     if (!response.ok || !data.success) {
       throw new Error(data.error || `Login failed: ${response.statusText}`);
     }
-    return { username: data.username, token: data.token, expiresIn: data.expiresIn };
+    const result = {
+      username: data.username,
+      token: data.token,
+      expiresIn: data.expiresIn
+    };
+    if (data.email) result.email = data.email;
+    if (data.name) result.name = data.name;
+    if (data.picture) result.picture = data.picture;
+    return result;
   }
   /**
    * Request password reset scoped to app token
@@ -380,81 +402,6 @@ var WalletClient = class {
       encryptionPublicKeyHex: data.encryptionPublicKeyHex
     };
   }
-  /**
-   * Sign up with Google OAuth (scoped to app token)
-   * Returns session data with Google profile info - call setSession() to activate it
-   *
-   * @param token - App token from app server
-   * @param googleIdToken - Google ID token from Google Sign-In
-   * @returns GoogleAuthSession with username, JWT token, and Google profile info
-   */
-  async signupWithGoogle(appKey, token, googleIdToken) {
-    if (!token) throw new Error("token is required");
-    if (!googleIdToken) throw new Error("googleIdToken is required");
-    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/signup", appKey), {
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      body: JSON.stringify({ token, type: "google", googleIdToken })
-    });
-    const data = await response.json();
-    if (!response.ok || !data.success) {
-      throw new Error(data.error || `Google signup failed: ${response.statusText}`);
-    }
-    return {
-      username: data.username,
-      token: data.token,
-      expiresIn: data.expiresIn,
-      email: data.email,
-      name: data.name,
-      picture: data.picture
-    };
-  }
-  /**
-   * Login with Google OAuth (scoped to app token and session keypair)
-   * Returns session data with Google profile info - call setSession() to activate it
-   *
-   * The session must be approved by the app beforehand.
-   *
-   * @param appKey - The app's public key
-   * @param token - App token from app server
-   * @param session - Session keypair (generated via generateSessionKeypair)
-   * @param googleIdToken - Google ID token from Google Sign-In
-   * @returns GoogleAuthSession with username, JWT token, and Google profile info
-   */
-  async loginWithGoogle(appKey, token, session, googleIdToken) {
-    if (!token) throw new Error("token is required");
-    if (!session?.publicKeyHex || !session?.privateKeyHex) {
-      throw new Error("session keypair is required");
-    }
-    if (!googleIdToken) throw new Error("googleIdToken is required");
-    const payloadToSign = {
-      token,
-      sessionPubkey: session.publicKeyHex,
-      type: "google",
-      googleIdToken
-    };
-    const sessionSignature = await signWithHex(session.privateKeyHex, payloadToSign);
-    const response = await this.fetchImpl(this.buildAppKeyUrl("/auth/login", appKey), {
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      body: JSON.stringify({
-        ...payloadToSign,
-        sessionSignature
-      })
-    });
-    const data = await response.json();
-    if (!response.ok || !data.success) {
-      throw new Error(data.error || `Google login failed: ${response.statusText}`);
-    }
-    return {
-      username: data.username,
-      token: data.token,
-      expiresIn: data.expiresIn,
-      email: data.email,
-      name: data.name,
-      picture: data.picture
-    };
-  }
 };
 async function generateSessionKeypair() {
   const keyPair = await generateSigningKeyPair();
@@ -611,34 +558,39 @@ var MemoryWalletClient = class _MemoryWalletClient {
   // ============================================================
   // Authentication
   // ============================================================
-  async signup(_credentials) {
-    throw new Error("Use signupWithToken(appKey, credentials) \u2014 app token required");
-  }
-  async login(_credentials) {
-    throw new Error("Use loginWithTokenSession(appKey, session, credentials) \u2014 app token + session required");
-  }
   /**
    * Sign up with session keypair (scoped to an app)
    *
    * The session must be approved by the app beforehand:
-   * 1. Client writes request to: immutable://inbox/{appKey}/sessions/{sessionPubkey} = 1
+   * 1. Client writes request to: immutable://inbox/{appKey}/sessions/{sessionPubkey}
    * 2. App approves by writing: mutable://accounts/{appKey}/sessions/{sessionPubkey} = 1
    * 3. Client calls this method with the session keypair
    *
    * @param appKey - The app's public key
    * @param session - Session keypair (generated via generateSessionKeypair)
-   * @param credentials - User credentials (username/password)
+   * @param credentials - User credentials (password or Google)
    */
-  async signupWithToken(appKey, session, credentials) {
+  async signup(appKey, session, credentials) {
     if (!session?.publicKeyHex || !session?.privateKeyHex) {
       throw new Error("session keypair is required");
     }
-    const payloadToSign = {
-      sessionPubkey: session.publicKeyHex,
-      type: "password",
-      username: credentials.username,
-      password: credentials.password
-    };
+    let payloadToSign;
+    if (credentials.type === "password") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "password",
+        username: credentials.username,
+        password: credentials.password
+      };
+    } else if (credentials.type === "google") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "google",
+        googleIdToken: credentials.googleIdToken
+      };
+    } else {
+      throw new Error(`Unknown credential type: ${credentials.type}`);
+    }
     const sessionSignature = await signWithHex(session.privateKeyHex, payloadToSign);
     const response = await this.request("POST", `/auth/signup/${appKey}`, {
       ...payloadToSign,
@@ -648,11 +600,15 @@ var MemoryWalletClient = class _MemoryWalletClient {
     if (!response.ok || !data.success) {
       throw new Error(data.error || `Signup failed: ${response.statusText}`);
     }
-    return {
+    const result = {
       username: data.username,
       token: data.token,
       expiresIn: data.expiresIn
     };
+    if (data.email) result.email = data.email;
+    if (data.name) result.name = data.name;
+    if (data.picture) result.picture = data.picture;
+    return result;
   }
   /**
    * Login with session keypair (scoped to an app)
@@ -664,18 +620,29 @@ var MemoryWalletClient = class _MemoryWalletClient {
    *
    * @param appKey - The app's public key
    * @param session - Session keypair (generated via generateSessionKeypair)
-   * @param credentials - User credentials (username/password)
+   * @param credentials - User credentials (password or Google)
    */
-  async loginWithTokenSession(appKey, session, credentials) {
+  async login(appKey, session, credentials) {
     if (!session?.publicKeyHex || !session?.privateKeyHex) {
       throw new Error("session keypair is required");
     }
-    const payloadToSign = {
-      sessionPubkey: session.publicKeyHex,
-      type: "password",
-      username: credentials.username,
-      password: credentials.password
-    };
+    let payloadToSign;
+    if (credentials.type === "password") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "password",
+        username: credentials.username,
+        password: credentials.password
+      };
+    } else if (credentials.type === "google") {
+      payloadToSign = {
+        sessionPubkey: session.publicKeyHex,
+        type: "google",
+        googleIdToken: credentials.googleIdToken
+      };
+    } else {
+      throw new Error(`Unknown credential type: ${credentials.type}`);
+    }
     const sessionSignature = await signWithHex(session.privateKeyHex, payloadToSign);
     const response = await this.request("POST", `/auth/login/${appKey}`, {
       ...payloadToSign,
@@ -685,11 +652,15 @@ var MemoryWalletClient = class _MemoryWalletClient {
     if (!response.ok || !data.success) {
       throw new Error(data.error || `Login failed: ${response.statusText}`);
     }
-    return {
+    const result = {
       username: data.username,
       token: data.token,
       expiresIn: data.expiresIn
     };
+    if (data.email) result.email = data.email;
+    if (data.name) result.name = data.name;
+    if (data.picture) result.picture = data.picture;
+    return result;
   }
   // ============================================================
   // Password Management
@@ -792,72 +763,6 @@ var MemoryWalletClient = class _MemoryWalletClient {
     return await response.json();
   }
   // ============================================================
-  // Google OAuth (for completeness - may not work without real Google)
-  // ============================================================
-  async signupWithGoogle(appKey, token, googleIdToken) {
-    if (!token) throw new Error("token is required");
-    if (!googleIdToken) throw new Error("googleIdToken is required");
-    const response = await this.request("POST", `/auth/signup/${appKey}`, {
-      token,
-      type: "google",
-      googleIdToken
-    });
-    const data = await response.json();
-    if (!response.ok || !data.success) {
-      throw new Error(data.error || `Google signup failed: ${response.statusText}`);
-    }
-    return {
-      username: data.username,
-      token: data.token,
-      expiresIn: data.expiresIn,
-      email: data.email,
-      name: data.name,
-      picture: data.picture
-    };
-  }
-  /**
-   * Login with Google OAuth (scoped to app token and session keypair)
-   * Returns session data with Google profile info - call setSession() to activate it
-   *
-   * The session must be approved by the app beforehand.
-   *
-   * @param appKey - The app's public key
-   * @param token - App token from app server
-   * @param session - Session keypair (generated via generateSessionKeypair)
-   * @param googleIdToken - Google ID token from Google Sign-In
-   * @returns GoogleAuthSession with username, JWT token, and Google profile info
-   */
-  async loginWithGoogle(appKey, token, session, googleIdToken) {
-    if (!token) throw new Error("token is required");
-    if (!session?.publicKeyHex || !session?.privateKeyHex) {
-      throw new Error("session keypair is required");
-    }
-    if (!googleIdToken) throw new Error("googleIdToken is required");
-    const payloadToSign = {
-      token,
-      sessionPubkey: session.publicKeyHex,
-      type: "google",
-      googleIdToken
-    };
-    const sessionSignature = await signWithHex(session.privateKeyHex, payloadToSign);
-    const response = await this.request("POST", `/auth/login/${appKey}`, {
-      ...payloadToSign,
-      sessionSignature
-    });
-    const data = await response.json();
-    if (!response.ok || !data.success) {
-      throw new Error(data.error || `Google login failed: ${response.statusText}`);
-    }
-    return {
-      username: data.username,
-      token: data.token,
-      expiresIn: data.expiresIn,
-      email: data.email,
-      name: data.name,
-      picture: data.picture
-    };
-  }
-  // ============================================================
   // Testing Utilities
   // ============================================================
   /**
@@ -897,7 +802,7 @@ async function createTestEnvironment(config = {}) {
       };
       const sessionUri = `mutable://accounts/${appKey}/sessions/${sessionKeypair.publicKeyHex}`;
       await backend.write(sessionUri, 1);
-      const session = await wallet.signupWithToken(appKey, sessionKeypair, { username, password });
+      const session = await wallet.signup(appKey, sessionKeypair, { type: "password", username, password });
       wallet.setSession(session);
       const keys = await wallet.getPublicKeys(appKey);
       return { session, keys, sessionKeypair };
@@ -910,7 +815,7 @@ async function createTestEnvironment(config = {}) {
       };
       const sessionUri = `mutable://accounts/${appKey}/sessions/${sessionKeypair.publicKeyHex}`;
       await backend.write(sessionUri, 1);
-      const session = await wallet.loginWithTokenSession(appKey, sessionKeypair, { username, password });
+      const session = await wallet.login(appKey, sessionKeypair, { type: "password", username, password });
       wallet.setSession(session);
       const keys = await wallet.getPublicKeys(appKey);
       return { session, keys, sessionKeypair };

package/dist/{client-C4oQxiDu.d.ts → client-DHCiJ9I7.d.ts}

@@ -39,12 +39,12 @@ interface WalletClientInterface {
      * Signup with session keypair.
      * Session must be approved by app at mutable://accounts/{appKey}/sessions/{sessionPubkey} = 1
      */
-    signupWithToken(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
+    signup(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
     /**
      * Login with session keypair.
      * Session must be approved by app at mutable://accounts/{appKey}/sessions/{sessionPubkey} = 1
      */
-    loginWithTokenSession(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
+    login(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
     changePassword(appKey: string, oldPassword: string, newPassword: string): Promise<void>;
     requestPasswordResetWithToken(appKey: string, tokenOrUsername: string, maybeUsername?: string): Promise<PasswordResetToken>;
     resetPasswordWithToken(appKey: string, tokenOrUsername: string, usernameOrReset: string, resetToken?: string, newPassword?: string): Promise<AuthSession>;
@@ -53,8 +53,6 @@ interface WalletClientInterface {
     proxyWrite(request: ProxyWriteRequest): Promise<ProxyWriteResponse>;
     proxyRead(request: ProxyReadRequest): Promise<ProxyReadResponse>;
     proxyReadMulti(request: ProxyReadMultiRequest): Promise<ProxyReadMultiResponse>;
-    signupWithGoogle(appKey: string, token: string, googleIdToken: string): Promise<GoogleAuthSession>;
-    loginWithGoogle(appKey: string, token: string, session: SessionKeypair, googleIdToken: string): Promise<GoogleAuthSession>;
 }
 /**
  * Configuration for wallet client
@@ -74,12 +72,25 @@ interface WalletClientConfig {
     fetch?: typeof fetch;
 }
 /**
- * User credentials for authentication
+ * Password-based credentials
  */
-interface UserCredentials {
+interface PasswordCredentials {
+    type: 'password';
     username: string;
     password: string;
 }
+/**
+ * Google OAuth credentials
+ */
+interface GoogleCredentials {
+    type: 'google';
+    googleIdToken: string;
+}
+/**
+ * User credentials for authentication (discriminated union)
+ * Use `type` field to distinguish between authentication methods.
+ */
+type UserCredentials = PasswordCredentials | GoogleCredentials;
 /**
  * Session keypair for authentication
  * Sessions are Ed25519 keypairs. The client creates the session, requests
@@ -93,11 +104,18 @@ interface SessionKeypair {
 }
 /**
  * Authenticated session with JWT token
+ * For Google auth, includes optional profile fields.
  */
 interface AuthSession {
     username: string;
     token: string;
     expiresIn: number;
+    /** Present when auth type is 'google' */
+    email?: string;
+    /** Present when auth type is 'google' */
+    name?: string;
+    /** Present when auth type is 'google' */
+    picture?: string;
 }
 /**
  * User's public keys
@@ -248,13 +266,10 @@ interface HealthResponse extends ApiResponse {
     timestamp: string;
 }
 /**
- * Google OAuth session (extended AuthSession with Google profile info)
+ * Google OAuth session
+ * @deprecated Use AuthSession directly - Google profile fields are now optional on AuthSession
  */
-interface GoogleAuthSession extends AuthSession {
-    email: string;
-    name?: string;
-    picture?: string;
-}
+type GoogleAuthSession = AuthSession;
 /**
  * Google signup response
  */
@@ -353,16 +368,6 @@ declare class WalletClient {
      * Check wallet server health
      */
     health(): Promise<HealthResponse>;
-    /**
-     * Sign up a new user
-     * Returns session data - call setSession() to activate it
-     */
-    signup(_credentials: UserCredentials): Promise<AuthSession>;
-    /**
-     * Login existing user
-     * Returns session data - call setSession() to activate it
-     */
-    login(_credentials: UserCredentials): Promise<AuthSession>;
     /**
      * Change password for current user
      * Requires active authentication session
@@ -388,9 +393,9 @@ declare class WalletClient {
      *
      * @param appKey - The app's public key
      * @param session - Session keypair (generated via generateSessionKeypair)
-     * @param credentials - User credentials (username/password)
+     * @param credentials - User credentials (password or Google)
      */
-    signupWithToken(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
+    signup(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
     /**
      * Login with session keypair (scoped to an app)
      *
@@ -401,9 +406,9 @@ declare class WalletClient {
      *
      * @param appKey - The app's public key
      * @param session - Session keypair (generated via generateSessionKeypair)
-     * @param credentials - User credentials (username/password)
+     * @param credentials - User credentials (password or Google)
      */
-    loginWithTokenSession(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
+    login(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
     /**
      * Request password reset scoped to app token
      */
@@ -457,28 +462,6 @@ declare class WalletClient {
         identityPublicKeyHex: string;
         encryptionPublicKeyHex: string;
     }>;
-    /**
-     * Sign up with Google OAuth (scoped to app token)
-     * Returns session data with Google profile info - call setSession() to activate it
-     *
-     * @param token - App token from app server
-     * @param googleIdToken - Google ID token from Google Sign-In
-     * @returns GoogleAuthSession with username, JWT token, and Google profile info
-     */
-    signupWithGoogle(appKey: string, token: string, googleIdToken: string): Promise<GoogleAuthSession>;
-    /**
-     * Login with Google OAuth (scoped to app token and session keypair)
-     * Returns session data with Google profile info - call setSession() to activate it
-     *
-     * The session must be approved by the app beforehand.
-     *
-     * @param appKey - The app's public key
-     * @param token - App token from app server
-     * @param session - Session keypair (generated via generateSessionKeypair)
-     * @param googleIdToken - Google ID token from Google Sign-In
-     * @returns GoogleAuthSession with username, JWT token, and Google profile info
-     */
-    loginWithGoogle(appKey: string, token: string, session: SessionKeypair, googleIdToken: string): Promise<GoogleAuthSession>;
 }
 /**
  * Generate a new session keypair for authentication

package/dist/src/mod.web.d.ts

@@ -2,6 +2,6 @@ export { C as ClientError, D as DeleteResult, H as HealthStatus, a as HttpClient
 export { HttpClient } from '../clients/http/mod.js';
 export { WebSocketClient } from '../clients/websocket/mod.js';
 export { LocalStorageClient } from '../clients/local-storage/mod.js';
-export { W as WalletClient } from '../client-C4oQxiDu.js';
+export { W as WalletClient } from '../client-DHCiJ9I7.js';
 export { AppsClient } from '../apps/mod.js';
 export { m as encrypt } from '../mod-CII9wqu2.js';

package/dist/src/mod.web.js

@@ -1,23 +1,23 @@
 import {
   WalletClient
-} from "../chunk-FDJZ4P2M.js";
-import "../chunk-EF5ZUB4O.js";
+} from "../chunk-OOWKYTYM.js";
+import "../chunk-O53KW746.js";
+import "../chunk-B4VAPGAO.js";
+import {
+  mod_exports
+} from "../chunk-JN75UL5C.js";
 import {
   HttpClient
 } from "../chunk-OY4CDOHY.js";
 import {
-  mod_exports
-} from "../chunk-JN75UL5C.js";
+  LocalStorageClient
+} from "../chunk-PZFEKQ7F.js";
 import {
   AppsClient
 } from "../chunk-VAZUCGED.js";
 import {
   WebSocketClient
 } from "../chunk-UUHVOWVI.js";
-import "../chunk-O53KW746.js";
-import {
-  LocalStorageClient
-} from "../chunk-PZFEKQ7F.js";
 import "../chunk-MLKGABMK.js";
 export {
   AppsClient,

package/dist/wallet/mod.d.ts

@@ -1,5 +1,5 @@
-import { A as AuthSession, H as HealthResponse, U as UserCredentials, S as SessionKeypair, P as PasswordResetToken, a as UserPublicKeys, b as ProxyWriteRequest, c as ProxyWriteResponse, d as ProxyReadRequest, e as ProxyReadResponse, f as ProxyReadMultiRequest, g as ProxyReadMultiResponse, G as GoogleAuthSession } from '../client-C4oQxiDu.js';
-export { l as ApiResponse, C as ChangePasswordResponse, q as GoogleLoginResponse, p as GoogleSignupResponse, L as LoginResponse, k as ProxyReadMultiResultItem, n as PublicKeysResponse, R as RequestPasswordResetResponse, o as ResetPasswordResponse, m as SignupResponse, W as WalletClient, j as WalletClientConfig, i as WalletClientInterface, h as generateSessionKeypair } from '../client-C4oQxiDu.js';
+import { A as AuthSession, H as HealthResponse, S as SessionKeypair, U as UserCredentials, P as PasswordResetToken, a as UserPublicKeys, b as ProxyWriteRequest, c as ProxyWriteResponse, d as ProxyReadRequest, e as ProxyReadResponse, f as ProxyReadMultiRequest, g as ProxyReadMultiResponse } from '../client-DHCiJ9I7.js';
+export { l as ApiResponse, C as ChangePasswordResponse, G as GoogleAuthSession, q as GoogleLoginResponse, p as GoogleSignupResponse, L as LoginResponse, k as ProxyReadMultiResultItem, n as PublicKeysResponse, R as RequestPasswordResetResponse, o as ResetPasswordResponse, m as SignupResponse, W as WalletClient, j as WalletClientConfig, i as WalletClientInterface, h as generateSessionKeypair } from '../client-DHCiJ9I7.js';
 import { N as NodeProtocolInterface, S as Schema } from '../types-uuvn4oKw.js';
 import { S as ServerKeys, W as WalletServerCore } from '../core-ClnuubZw.js';
 import { MemoryClient } from '../clients/memory/mod.js';
@@ -105,21 +105,19 @@ declare class MemoryWalletClient {
         identityPublicKeyHex: string;
         encryptionPublicKeyHex: string;
     }>;
-    signup(_credentials: UserCredentials): Promise<AuthSession>;
-    login(_credentials: UserCredentials): Promise<AuthSession>;
     /**
      * Sign up with session keypair (scoped to an app)
      *
      * The session must be approved by the app beforehand:
-     * 1. Client writes request to: immutable://inbox/{appKey}/sessions/{sessionPubkey} = 1
+     * 1. Client writes request to: immutable://inbox/{appKey}/sessions/{sessionPubkey}
      * 2. App approves by writing: mutable://accounts/{appKey}/sessions/{sessionPubkey} = 1
      * 3. Client calls this method with the session keypair
      *
      * @param appKey - The app's public key
      * @param session - Session keypair (generated via generateSessionKeypair)
-     * @param credentials - User credentials (username/password)
+     * @param credentials - User credentials (password or Google)
      */
-    signupWithToken(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
+    signup(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
     /**
      * Login with session keypair (scoped to an app)
      *
@@ -130,9 +128,9 @@ declare class MemoryWalletClient {
      *
      * @param appKey - The app's public key
      * @param session - Session keypair (generated via generateSessionKeypair)
-     * @param credentials - User credentials (username/password)
+     * @param credentials - User credentials (password or Google)
      */
-    loginWithTokenSession(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
+    login(appKey: string, session: SessionKeypair, credentials: UserCredentials): Promise<AuthSession>;
     changePassword(appKey: string, oldPassword: string, newPassword: string): Promise<void>;
     requestPasswordReset(_username: string): Promise<PasswordResetToken>;
     resetPassword(_username: string, _resetToken: string, _newPassword: string): Promise<AuthSession>;
@@ -143,20 +141,6 @@ declare class MemoryWalletClient {
     proxyWrite(request: ProxyWriteRequest): Promise<ProxyWriteResponse>;
     proxyRead(request: ProxyReadRequest): Promise<ProxyReadResponse>;
     proxyReadMulti(request: ProxyReadMultiRequest): Promise<ProxyReadMultiResponse>;
-    signupWithGoogle(appKey: string, token: string, googleIdToken: string): Promise<GoogleAuthSession>;
-    /**
-     * Login with Google OAuth (scoped to app token and session keypair)
-     * Returns session data with Google profile info - call setSession() to activate it
-     *
-     * The session must be approved by the app beforehand.
-     *
-     * @param appKey - The app's public key
-     * @param token - App token from app server
-     * @param session - Session keypair (generated via generateSessionKeypair)
-     * @param googleIdToken - Google ID token from Google Sign-In
-     * @returns GoogleAuthSession with username, JWT token, and Google profile info
-     */
-    loginWithGoogle(appKey: string, token: string, session: SessionKeypair, googleIdToken: string): Promise<GoogleAuthSession>;
     /**
      * Get the underlying WalletServerCore (for testing/inspection)
      */
@@ -307,4 +291,4 @@ interface TestEnvironment {
  */
 declare function createTestEnvironment(config?: TestEnvironmentConfig): Promise<TestEnvironment>;
 
-export { AuthSession, GoogleAuthSession, HealthResponse, MemoryWalletClient, type MemoryWalletClientConfig, PasswordResetToken, ProxyReadMultiRequest, ProxyReadMultiResponse, ProxyReadRequest, ProxyReadResponse, ProxyWriteRequest, ProxyWriteResponse, SessionKeypair, type TestEnvironment, type TestEnvironmentConfig, UserCredentials, UserPublicKeys, createTestEnvironment, generateTestServerKeys };
+export { AuthSession, HealthResponse, MemoryWalletClient, type MemoryWalletClientConfig, PasswordResetToken, ProxyReadMultiRequest, ProxyReadMultiResponse, ProxyReadRequest, ProxyReadResponse, ProxyWriteRequest, ProxyWriteResponse, SessionKeypair, type TestEnvironment, type TestEnvironmentConfig, UserCredentials, UserPublicKeys, createTestEnvironment, generateTestServerKeys };

package/dist/wallet/mod.js

@@ -4,11 +4,11 @@ import {
   createTestEnvironment,
   generateSessionKeypair,
   generateTestServerKeys
-} from "../chunk-FDJZ4P2M.js";
-import "../chunk-EF5ZUB4O.js";
-import "../chunk-OY4CDOHY.js";
-import "../chunk-JN75UL5C.js";
+} from "../chunk-OOWKYTYM.js";
 import "../chunk-O53KW746.js";
+import "../chunk-B4VAPGAO.js";
+import "../chunk-JN75UL5C.js";
+import "../chunk-OY4CDOHY.js";
 import "../chunk-MLKGABMK.js";
 export {
   MemoryWalletClient,

package/dist/wallet-server/adapters/browser.js

@@ -2,9 +2,9 @@ import {
   ConfigEnvironment,
   MemoryFileStorage,
   WalletServerCore
-} from "../../chunk-EF5ZUB4O.js";
-import "../../chunk-OY4CDOHY.js";
+} from "../../chunk-B4VAPGAO.js";
 import "../../chunk-JN75UL5C.js";
+import "../../chunk-OY4CDOHY.js";
 import {
   LocalStorageClient
 } from "../../chunk-PZFEKQ7F.js";

package/dist/wallet-server/mod.js

@@ -34,9 +34,9 @@ import {
   userExists,
   verifyGoogleIdToken,
   verifyJwt
-} from "../chunk-EF5ZUB4O.js";
-import "../chunk-OY4CDOHY.js";
+} from "../chunk-B4VAPGAO.js";
 import "../chunk-JN75UL5C.js";
+import "../chunk-OY4CDOHY.js";
 import "../chunk-MLKGABMK.js";
 export {
   ConfigEnvironment,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@bandeira-tech/b3nd-web",
-  "version": "0.3.2",
+  "version": "0.3.3",
   "description": "Browser-focused B3nd SDK bundle",
   "type": "module",
   "main": "./dist/src/mod.web.js",

package/dist/{chunk-EF5ZUB4O.js → chunk-B4VAPGAO.js}

@@ -1,6 +1,3 @@
-import {
-  HttpClient
-} from "./chunk-OY4CDOHY.js";
 import {
   createAuthenticatedMessage,
   createSignedEncryptedMessage,
@@ -11,6 +8,9 @@ import {
   verify,
   verifyPayload
 } from "./chunk-JN75UL5C.js";
+import {
+  HttpClient
+} from "./chunk-OY4CDOHY.js";
 
 // wallet-server/interfaces.ts
 var defaultLogger = {