npm - @bodhiapp/bodhi-js-ext - Versions diffs - 0.0.1 → 0.0.3 - Mend

@bodhiapp/bodhi-js-ext 0.0.1 → 0.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/bodhi-ext.cjs.js +1 -1911
package/dist/bodhi-ext.esm.js +769 -1093
package/package.json +2 -2
package/dist/bodhi-ext.cjs.js.map +0 -1
package/dist/bodhi-ext.esm.js.map +0 -1

package/dist/bodhi-ext.cjs.js CHANGED Viewed

@@ -1,1911 +1 @@
-"use strict";
-Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
-const bodhiJsCore = require("@bodhiapp/bodhi-js-core");
-const EXT2EXT_CLIENT_MESSAGE_TYPES = {
-  EXT2EXT_CLIENT_REQUEST: "EXT2EXT_CLIENT_REQUEST",
-  EXT2EXT_CLIENT_RESPONSE: "EXT2EXT_CLIENT_RESPONSE",
-  EXT2EXT_CLIENT_BROADCAST: "EXT2EXT_CLIENT_BROADCAST",
-  EXT2EXT_CLIENT_API_REQUEST: "EXT2EXT_CLIENT_API_REQUEST",
-  EXT2EXT_CLIENT_API_RESPONSE: "EXT2EXT_CLIENT_API_RESPONSE",
-  // Streaming message types (UI → background)
-  EXT2EXT_CLIENT_STREAM_REQUEST: "EXT2EXT_CLIENT_STREAM_REQUEST",
-  EXT2EXT_CLIENT_STREAM_CHUNK: "EXT2EXT_CLIENT_STREAM_CHUNK",
-  EXT2EXT_CLIENT_STREAM_ERROR: "EXT2EXT_CLIENT_STREAM_ERROR",
-  EXT2EXT_CLIENT_STREAM_API_ERROR: "EXT2EXT_CLIENT_STREAM_API_ERROR",
-  EXT2EXT_CLIENT_STREAM_DONE: "EXT2EXT_CLIENT_STREAM_DONE"
-};
-const EXT2EXT_CLIENT_STREAM_PORT = "ext2ext-client-stream";
-const EXT2EXT_CLIENT_ACTIONS = {
-  LOGIN: "login",
-  LOGOUT: "logout",
-  GET_AUTH_STATE: "getAuthState",
-  DISCOVER_EXTENSION: "discoverBodhiExtension",
-  GET_EXTENSION_ID: "get_extension_id",
-  SET_EXTENSION_ID: "setExtensionId"
-};
-const DISCOVERY_TIMEOUT_MS = 5e3;
-const DISCOVERY_ATTEMPTS = 3;
-const DISCOVERY_ATTEMPT_WAIT_MS = 500;
-const DISCOVERY_ATTEMPT_TIMEOUT = 500;
-function isExtClientApiError(msg) {
-  return "error" in msg;
-}
-class DirectExtClient extends bodhiJsCore.DirectClientBase {
-  constructor(config, onStateChange) {
-    super({ ...config, storagePrefix: bodhiJsCore.STORAGE_PREFIXES.EXT }, "DirectExtClient", onStateChange);
-  }
-  // ============================================================================
-  // Authentication (chrome.identity OAuth)
-  // ============================================================================
-  async login() {
-    const existingAuth = await this.getAuthState();
-    if (existingAuth.isLoggedIn) {
-      return existingAuth;
-    }
-    const resourceScope = await this.requestResourceAccess();
-    const fullScope = `openid profile email roles ${this.userScope} ${resourceScope}`;
-    const codeVerifier = bodhiJsCore.generateCodeVerifier();
-    const codeChallenge = await bodhiJsCore.generateCodeChallenge(codeVerifier);
-    const state = bodhiJsCore.generateCodeVerifier();
-    await chrome.storage.session.set({
-      [this.storageKeys.CODE_VERIFIER]: codeVerifier,
-      [this.storageKeys.STATE]: state
-    });
-    const redirectUri = chrome.identity.getRedirectURL("callback");
-    const authUrl = new URL(this.authEndpoints.authorize);
-    authUrl.searchParams.set("client_id", this.authClientId);
-    authUrl.searchParams.set("response_type", "code");
-    authUrl.searchParams.set("redirect_uri", redirectUri);
-    authUrl.searchParams.set("scope", fullScope);
-    authUrl.searchParams.set("code_challenge", codeChallenge);
-    authUrl.searchParams.set("code_challenge_method", "S256");
-    authUrl.searchParams.set("state", state);
-    return new Promise((resolve, reject) => {
-      chrome.identity.launchWebAuthFlow(
-        {
-          url: authUrl.toString(),
-          interactive: true
-        },
-        async (redirectUrl) => {
-          if (chrome.runtime.lastError) {
-            await chrome.storage.session.remove([
-              this.storageKeys.CODE_VERIFIER,
-              this.storageKeys.STATE
-            ]);
-            reject(chrome.runtime.lastError);
-            return;
-          }
-          if (!redirectUrl) {
-            await chrome.storage.session.remove([
-              this.storageKeys.CODE_VERIFIER,
-              this.storageKeys.STATE
-            ]);
-            reject(bodhiJsCore.createOperationError("No redirect URL received", "oauth-error"));
-            return;
-          }
-          try {
-            const url = new URL(redirectUrl);
-            const code = url.searchParams.get("code");
-            const returnedState = url.searchParams.get("state");
-            const data = await chrome.storage.session.get(this.storageKeys.STATE);
-            const savedState = data[this.storageKeys.STATE];
-            if (returnedState !== savedState) {
-              await chrome.storage.session.remove([
-                this.storageKeys.CODE_VERIFIER,
-                this.storageKeys.STATE
-              ]);
-              reject(bodhiJsCore.createOperationError("State mismatch - possible CSRF", "oauth-error"));
-              return;
-            }
-            if (!code) {
-              await chrome.storage.session.remove([
-                this.storageKeys.CODE_VERIFIER,
-                this.storageKeys.STATE
-              ]);
-              reject(bodhiJsCore.createOperationError("No authorization code received", "oauth-error"));
-              return;
-            }
-            await this.exchangeCodeForTokens(code);
-            const authState = await this.getAuthState();
-            if (!authState.isLoggedIn) {
-              throw bodhiJsCore.createOperationError("Login failed", "oauth-error");
-            }
-            const result = authState;
-            this.setAuthState(result);
-            await chrome.storage.session.remove([
-              this.storageKeys.CODE_VERIFIER,
-              this.storageKeys.STATE
-            ]);
-            resolve(result);
-          } catch (error) {
-            await chrome.storage.session.remove([
-              this.storageKeys.CODE_VERIFIER,
-              this.storageKeys.STATE
-            ]);
-            reject(error);
-          }
-        }
-      );
-    });
-  }
-  async logout() {
-    const data = await chrome.storage.session.get(this.storageKeys.REFRESH_TOKEN);
-    const refreshToken = data[this.storageKeys.REFRESH_TOKEN];
-    if (refreshToken) {
-      try {
-        const params = new URLSearchParams({
-          token: refreshToken,
-          client_id: this.authClientId,
-          token_type_hint: "refresh_token"
-        });
-        await fetch(this.authEndpoints.revoke, {
-          method: "POST",
-          headers: {
-            "Content-Type": "application/x-www-form-urlencoded"
-          },
-          body: params
-        });
-      } catch (error) {
-        this.logger.warn("Token revocation failed:", error);
-      }
-    }
-    await chrome.storage.session.remove([
-      this.storageKeys.ACCESS_TOKEN,
-      this.storageKeys.REFRESH_TOKEN,
-      this.storageKeys.EXPIRES_AT,
-      this.storageKeys.RESOURCE_SCOPE
-    ]);
-    const result = {
-      isLoggedIn: false
-    };
-    this.setAuthState(result);
-    return result;
-  }
-  // ============================================================================
-  // OAuth Helper Methods
-  // ============================================================================
-  async requestResourceAccess() {
-    const response = await this.sendApiRequest(
-      "POST",
-      "/bodhi/v1/apps/request-access",
-      { app_client_id: this.authClientId },
-      {},
-      false
-    );
-    if (bodhiJsCore.isApiResultOperationError(response)) {
-      throw new Error("Failed to get resource access scope from server");
-    }
-    if (!bodhiJsCore.isApiResultSuccess(response)) {
-      throw new Error("Failed to get resource access scope from server: API error");
-    }
-    const scope = response.body.scope;
-    await chrome.storage.session.set({ [this.storageKeys.RESOURCE_SCOPE]: scope });
-    return scope;
-  }
-  async exchangeCodeForTokens(code) {
-    const data = await chrome.storage.session.get(this.storageKeys.CODE_VERIFIER);
-    const codeVerifier = data[this.storageKeys.CODE_VERIFIER];
-    const redirectUri = chrome.identity.getRedirectURL("callback");
-    const response = await fetch(this.authEndpoints.token, {
-      method: "POST",
-      headers: {
-        "Content-Type": "application/x-www-form-urlencoded"
-      },
-      body: new URLSearchParams({
-        grant_type: "authorization_code",
-        code,
-        redirect_uri: redirectUri,
-        client_id: this.authClientId,
-        code_verifier: codeVerifier
-      })
-    });
-    if (!response.ok) {
-      const errorText = await response.text();
-      throw new Error(`Token exchange failed: ${response.status} ${errorText}`);
-    }
-    const tokens = await response.json();
-    const expiresAt = Date.now() + (tokens.expires_in || 3600) * 1e3;
-    await chrome.storage.session.set({
-      [this.storageKeys.ACCESS_TOKEN]: tokens.access_token,
-      [this.storageKeys.REFRESH_TOKEN]: tokens.refresh_token,
-      [this.storageKeys.EXPIRES_AT]: expiresAt
-    });
-    await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER, this.storageKeys.STATE]);
-  }
-  // ============================================================================
-  // Storage Implementation (chrome.storage.session)
-  // ============================================================================
-  async _storageGet(key) {
-    const data = await chrome.storage.session.get(key);
-    const value = data[key];
-    return value !== void 0 ? String(value) : null;
-  }
-  async _storageSet(items) {
-    await chrome.storage.session.set(items);
-  }
-  async _storageRemove(keys) {
-    await chrome.storage.session.remove(keys);
-  }
-  _getRedirectUri() {
-    return chrome.identity.getRedirectURL("callback");
-  }
-}
-function isNonNullObject(value) {
-  return value !== null && typeof value === "object";
-}
-function isOperationErrorStructure(obj) {
-  return isNonNullObject(obj) && "message" in obj && typeof obj.message === "string" && "type" in obj && typeof obj.type === "string";
-}
-const MESSAGE_TYPES = {
-  API_REQUEST: "BODHI_API_REQUEST",
-  API_RESPONSE: "BODHI_API_RESPONSE",
-  STREAM_REQUEST: "BODHI_STREAM_REQUEST",
-  STREAM_CHUNK: "BODHI_STREAM_CHUNK",
-  STREAM_ERROR: "BODHI_STREAM_ERROR",
-  STREAM_API_ERROR: "BODHI_STREAM_API_ERROR",
-  ERROR: "BODHI_ERROR",
-  EXT_REQUEST: "BODHI_EXT_REQUEST",
-  EXT_RESPONSE: "BODHI_EXT_RESPONSE"
-};
-function isApiSuccessResponse(response) {
-  return response !== null && typeof response === "object" && typeof response.status === "number" && response.status >= 200 && response.status < 300 && "body" in response;
-}
-function isStreamChunk(msg) {
-  return msg !== null && typeof msg === "object" && msg.type === MESSAGE_TYPES.STREAM_CHUNK;
-}
-function isStreamApiError(msg) {
-  return msg !== null && typeof msg === "object" && msg.type === MESSAGE_TYPES.STREAM_API_ERROR;
-}
-function isStreamError(msg) {
-  return msg !== null && typeof msg === "object" && msg.type === MESSAGE_TYPES.STREAM_ERROR;
-}
-function isExtError(res) {
-  return res !== null && typeof res === "object" && "error" in res;
-}
-function isOperationError(err) {
-  return err instanceof Error && "error" in err && !("response" in err) && isOperationErrorStructure(err.error);
-}
-const EXT_ACTIONS = {
-  GET_EXTENSION_ID: "get_extension_id",
-  TEST_CONNECTION: "test_connection"
-};
-const BODHI_STREAM_PORT = "BODHI_STREAM_PORT";
-class ExtClient {
-  constructor(config = {}, onStateChange) {
-    this.state = {
-      type: "extension",
-      extension: "not-initialized",
-      server: bodhiJsCore.PENDING_EXTENSION_READY
-    };
-    this.extensionId = null;
-    this.broadcastListenerActive = false;
-    this.config = config;
-    this.logger = new bodhiJsCore.Logger("ExtClient", (config == null ? void 0 : config.logLevel) || "warn");
-    this.onStateChange = onStateChange ?? bodhiJsCore.NOOP_STATE_CALLBACK;
-  }
-  /**
-   * Set client state and notify callback
-   */
-  setState(newState) {
-    this.state = newState;
-    this.onStateChange({ type: "client-state", state: newState });
-  }
-  /**
-   * Set auth state and notify callback
-   */
-  setAuthState(authState) {
-    this.onStateChange({ type: "auth-state", state: authState });
-  }
-  /**
-   * Set or update the state change callback
-   */
-  setStateCallback(callback) {
-    this.onStateChange = callback;
-  }
-  /**
-   * Setup persistent broadcast listener for auth state changes
-   * Idempotent - only sets up listener once
-   */
-  setupBroadcastListener() {
-    if (this.broadcastListenerActive) return;
-    this.broadcastListenerActive = true;
-    chrome.runtime.onMessage.addListener((message) => {
-      const msg = message;
-      if ((msg == null ? void 0 : msg.type) === EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_BROADCAST) {
-        if (msg.event === "authStateChanged") {
-          this.handleAuthStateChangedBroadcast();
-        }
-      }
-      return false;
-    });
-    this.logger.debug("Broadcast listener setup complete");
-  }
-  /**
-   * Handle authStateChanged broadcast from background
-   * Fetches fresh auth state and notifies via callback
-   */
-  async handleAuthStateChangedBroadcast() {
-    this.logger.debug("Received authStateChanged broadcast, refreshing auth state");
-    const authState = await this.getAuthState();
-    this.setAuthState(authState);
-  }
-  /**
-   * Generate a unique request ID for message correlation
-   */
-  generateRequestId() {
-    return crypto.randomUUID();
-  }
-  /**
-   * Get current client state
-   */
-  getState() {
-    return this.state;
-  }
-  isClientInitialized() {
-    return this.state.extension === "ready";
-  }
-  isServerReady() {
-    return this.isClientInitialized() && this.state.server.status === "ready";
-  }
-  /**
-   * Initialize extension discovery with optional timeout
-   * Returns ExtensionState with extension and server status
-   *
-   * For sdk/ext:
-   * - CAN store extensionId for fast restoration (via SET_EXTENSION_ID)
-   * - Avoids chrome.runtime discovery messages on page reload
-   */
-  async init(params = {}) {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _i;
-    if (!params.testConnection && !params.selectedConnection) {
-      this.logger.info("No testConnection or selectedConnection, returning not-initialized state");
-      const notInitState = bodhiJsCore.createExtensionStateNotInitialized();
-      this.setState(notInitState);
-      return notInitState;
-    }
-    if (this.extensionId && !params.testConnection) {
-      this.logger.debug("Already initialized with extensionId, skipping discovery");
-      return this.state;
-    }
-    const timeoutMs = params.timeoutMs ?? ((_b = (_a = this.config.initParams) == null ? void 0 : _a.extension) == null ? void 0 : _b.timeoutMs) ?? DISCOVERY_TIMEOUT_MS;
-    const savedExtensionId = (_c = params.savedState) == null ? void 0 : _c.extensionId;
-    try {
-      if (!this.extensionId) {
-        if (savedExtensionId) {
-          this.logger.info("Restoring with known extensionId:", savedExtensionId);
-          await this.sendExtMessageWithTimeout(
-            EXT2EXT_CLIENT_ACTIONS.SET_EXTENSION_ID,
-            { extensionId: savedExtensionId },
-            timeoutMs
-          );
-          this.extensionId = savedExtensionId;
-        } else {
-          this.logger.info("Discovering bodhi-browser extension...");
-          const discoveryParams = {
-            attempts: (_e = (_d = this.config.initParams) == null ? void 0 : _d.extension) == null ? void 0 : _e.attempts,
-            attemptWaitMs: (_g = (_f = this.config.initParams) == null ? void 0 : _f.extension) == null ? void 0 : _g.attemptWaitMs,
-            attemptTimeout: (_i = (_h = this.config.initParams) == null ? void 0 : _h.extension) == null ? void 0 : _i.attemptTimeout
-          };
-          const body = await this.sendExtMessageWithTimeout(
-            EXT2EXT_CLIENT_ACTIONS.DISCOVER_EXTENSION,
-            discoveryParams,
-            timeoutMs
-          );
-          this.extensionId = body.extensionId;
-          this.logger.info("Extension discovered:", this.extensionId);
-        }
-        this.setupBroadcastListener();
-      }
-      const state = {
-        type: "extension",
-        extension: "ready",
-        extensionId: this.extensionId,
-        server: bodhiJsCore.PENDING_EXTENSION_READY
-      };
-      let serverState = bodhiJsCore.PENDING_EXTENSION_READY;
-      if (params.testConnection) {
-        try {
-          serverState = await this.getServerState();
-          this.logger.info("Server connectivity tested, state:", serverState.status);
-        } catch (error) {
-          this.logger.error("Failed to get server state:", error);
-          serverState = bodhiJsCore.BACKEND_SERVER_NOT_REACHABLE;
-        }
-      }
-      this.setState({ ...state, server: serverState });
-      return this.state;
-    } catch (error) {
-      this.logger.error("Failed to initialize extension:", error);
-      this.extensionId = null;
-      const notFoundState = bodhiJsCore.createExtensionStateNotFound();
-      this.setState(notFoundState);
-      return this.state;
-    }
-  }
-  /**
-   * Helper method to send ext message with timeout support
-   */
-  async sendExtMessageWithTimeout(action, params, timeoutMs = 1e4) {
-    const timeoutPromise = new Promise(
-      (_, reject) => setTimeout(() => reject(new Error("Timeout")), timeoutMs)
-    );
-    return Promise.race([this.sendExtRequest(action, params), timeoutPromise]);
-  }
-  /**
-   * Send an EXT2EXT_CLIENT_REQUEST message and await EXT2EXT_CLIENT_RESPONSE
-   * Public for generic ext2ext testing
-   */
-  async sendExtRequest(action, params) {
-    try {
-      const requestId = this.generateRequestId();
-      const response = await chrome.runtime.sendMessage({
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_REQUEST,
-        requestId,
-        request: {
-          action,
-          params
-        }
-      });
-      if (!response) {
-        throw bodhiJsCore.createOperationError("No response from background script", "extension_error");
-      }
-      if (response.type !== EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE) {
-        throw bodhiJsCore.createOperationError(
-          "Invalid response type from background script",
-          "extension_error"
-        );
-      }
-      const res = response.response;
-      if (isExtError(res)) {
-        const errorType = res.error.type || "extension_error";
-        throw bodhiJsCore.createOperationError(res.error.message, errorType);
-      }
-      return res;
-    } catch (err) {
-      if (isOperationError(err)) {
-        throw err;
-      }
-      throw bodhiJsCore.createOperationError(
-        err instanceof Error ? err.message : "Unknown error occurred",
-        "extension_error"
-      );
-    }
-  }
-  /**
-   * Send an API_REQUEST message and await API_RESPONSE (internal)
-   * Returns ext2ext-specific ExtClientApiResponseMessage
-   */
-  async sendRawApiMessage(method, endpoint, body, headers, authenticated) {
-    const requestId = this.generateRequestId();
-    const response = await chrome.runtime.sendMessage({
-      type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_REQUEST,
-      requestId,
-      request: {
-        method,
-        endpoint,
-        body,
-        headers,
-        authenticated
-      }
-    });
-    return response;
-  }
-  /**
-   * Send an API message and convert to protocol-agnostic ApiResponseResult
-   */
-  async sendApiRequest(method, endpoint, body, headers, authenticated) {
-    const extResponse = await this.sendRawApiMessage(
-      method,
-      endpoint,
-      body,
-      headers,
-      authenticated
-    );
-    if (isExtClientApiError(extResponse)) {
-      const errorType = extResponse.error.type || "extension_error";
-      return {
-        error: {
-          message: extResponse.error.message,
-          type: errorType
-        }
-      };
-    }
-    return extResponse.response;
-  }
-  /**
-   * Login user via OAuth
-   * @throws ExtError if login fails
-   * @returns AuthLoggedIn with login state and user info
-   */
-  async login() {
-    return new Promise((resolve, reject) => {
-      const listener = async (message) => {
-        var _a;
-        if (message && typeof message === "object" && "type" in message && message.type === "EXT2EXT_CLIENT_BROADCAST" && "event" in message && message.event === "authStateChanged") {
-          chrome.runtime.onMessage.removeListener(listener);
-          try {
-            const authState = await this.getAuthState();
-            if (bodhiJsCore.isAuthError(authState)) {
-              reject(
-                bodhiJsCore.createOperationError(`Login failed: ${(_a = authState.error) == null ? void 0 : _a.message}`, "auth-error")
-              );
-              return;
-            }
-            if (bodhiJsCore.isAuthLoggedOut(authState)) {
-              reject(bodhiJsCore.createOperationError("Login failed: User is not logged in", "auth-error"));
-              return;
-            }
-            this.setAuthState(authState);
-            resolve(authState);
-          } catch (err) {
-            reject(err);
-          }
-        }
-      };
-      chrome.runtime.onMessage.addListener(listener);
-      this.sendExtRequest(EXT2EXT_CLIENT_ACTIONS.LOGIN).catch((err) => {
-        chrome.runtime.onMessage.removeListener(listener);
-        reject(err);
-      });
-    });
-  }
-  /**
-   * Logout current user
-   * @throws ExtError if logout fails
-   * @returns AuthLoggedOut with logged out state
-   */
-  async logout() {
-    await this.sendExtRequest(EXT2EXT_CLIENT_ACTIONS.LOGOUT);
-    const result = {
-      isLoggedIn: false
-    };
-    this.setAuthState(result);
-    return result;
-  }
-  /**
-   * Get current authentication state
-   * @returns AuthState (discriminated union: AuthLoggedIn | AuthLoggedOut)
-   * @throws ExtError if request fails
-   */
-  async getAuthState() {
-    if (!this.isClientInitialized()) {
-      return bodhiJsCore.AUTH_EXT_NOT_INITIALIZED;
-    }
-    const body = await this.sendExtRequest(
-      EXT2EXT_CLIENT_ACTIONS.GET_AUTH_STATE
-    );
-    return body.authState;
-  }
-  /**
-   * Ping bodhi-browser-ext API via /ping endpoint
-   */
-  async pingApi() {
-    return this.sendApiRequest("GET", "/ping");
-  }
-  /**
-   * Fetch available models from /v1/models (authenticated)
-   */
-  async fetchModels() {
-    return this.sendApiRequest(
-      "GET",
-      "/v1/models",
-      void 0,
-      void 0,
-      true
-    );
-  }
-  /**
-   * Get backend server state
-   * Calls /bodhi/v1/info and returns structured server state
-   */
-  async getServerState() {
-    const result = await this.sendApiRequest("GET", "/bodhi/v1/info");
-    if (bodhiJsCore.isApiResultOperationError(result)) {
-      return {
-        status: "not-reachable",
-        error: result.error
-      };
-    }
-    if (!bodhiJsCore.isApiResultSuccess(result)) {
-      return {
-        status: "not-reachable",
-        error: { message: "API error from server", type: "extension_error" }
-      };
-    }
-    const body = result.body;
-    switch (body.status) {
-      case "ready":
-        return { status: "ready", version: body.version || "unknown" };
-      case "setup":
-        return {
-          status: "setup",
-          version: body.version || "unknown",
-          error: body.error ? { message: body.error.message, type: body.error.type } : { message: "Setup required", type: "extension_error" }
-        };
-      case "resource-admin":
-        return {
-          status: "resource-admin",
-          version: body.version || "unknown",
-          error: body.error ? { message: body.error.message, type: body.error.type } : { message: "Resource admin required", type: "extension_error" }
-        };
-      case "error":
-        return {
-          status: "error",
-          version: body.version || "unknown",
-          error: body.error ? { message: body.error.message, type: body.error.type } : { message: "Server error", type: "extension_error" }
-        };
-      default:
-        return {
-          status: "not-reachable",
-          error: { message: "Unknown server status", type: "extension_error" }
-        };
-    }
-  }
-  // ============================================================================
-  // Streaming Methods
-  // ============================================================================
-  /**
-   * Generic streaming method
-   */
-  async *stream(method, endpoint, body, headers, authenticated = true) {
-    const requestId = this.generateRequestId();
-    console.log("[ExtClient] Starting stream", {
-      method,
-      endpoint,
-      requestId
-    });
-    const port = chrome.runtime.connect({ name: EXT2EXT_CLIENT_STREAM_PORT });
-    const stream = new ReadableStream({
-      start: (controller) => {
-        port.onMessage.addListener((message) => {
-          var _a, _b, _c;
-          if (message.requestId !== requestId) return;
-          switch (message.type) {
-            case EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_DONE:
-              console.log("[ExtClient] Stream complete", { requestId });
-              controller.close();
-              port.disconnect();
-              break;
-            case EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR:
-              console.error("[ExtClient] Stream error", {
-                requestId,
-                error: JSON.stringify(message.error)
-              });
-              controller.error(
-                bodhiJsCore.createOperationError(
-                  message.error.message,
-                  "extension_error"
-                )
-              );
-              port.disconnect();
-              break;
-            case EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_API_ERROR: {
-              const apiErr = message;
-              console.error("[ExtClient] Stream API error", {
-                requestId,
-                error: (_a = apiErr.response.body) == null ? void 0 : _a.error
-              });
-              controller.error(
-                bodhiJsCore.createApiError(
-                  ((_c = (_b = apiErr.response.body) == null ? void 0 : _b.error) == null ? void 0 : _c.message) || "API error",
-                  apiErr.response.status,
-                  apiErr.response.body
-                )
-              );
-              port.disconnect();
-              break;
-            }
-            case EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_CHUNK: {
-              const chunkMsg = message;
-              if (isApiSuccessResponse(chunkMsg.response)) {
-                controller.enqueue(chunkMsg.response.body);
-              }
-              break;
-            }
-          }
-        });
-        port.onDisconnect.addListener(() => {
-          console.log("[ExtClient] Port disconnected", { requestId });
-          try {
-            controller.error(
-              bodhiJsCore.createOperationError("Connection closed unexpectedly", "extension_error")
-            );
-          } catch {
-          }
-        });
-        port.postMessage({
-          type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_REQUEST,
-          requestId,
-          request: { method, endpoint, body, headers, authenticated }
-        });
-      }
-    });
-    const reader = stream.getReader();
-    try {
-      while (true) {
-        const { done, value } = await reader.read();
-        if (done) {
-          console.log("[ExtClient] Stream iteration complete");
-          break;
-        }
-        yield value;
-      }
-    } finally {
-      reader.releaseLock();
-    }
-  }
-  /**
-   * Chat streaming (uses generic stream internally)
-   */
-  async *streamChat(model, prompt, authenticated = true) {
-    yield* this.stream(
-      "POST",
-      "/v1/chat/completions",
-      {
-        model,
-        messages: [{ role: "user", content: prompt }],
-        stream: true
-      },
-      void 0,
-      authenticated
-    );
-  }
-  /**
-   * Serialize ext2ext client state for persistence
-   */
-  serialize() {
-    return { extensionId: this.extensionId ?? void 0 };
-  }
-  /**
-   * Debug dump of ExtClient internal state
-   */
-  async debug() {
-    return {
-      type: "ExtClient",
-      state: this.state,
-      authState: await this.getAuthState()
-    };
-  }
-}
-class ExtUIClient extends bodhiJsCore.BaseFacadeClient {
-  constructor(authClientId, config, onStateChange, storagePrefix) {
-    const normalizedConfig = {
-      authServerUrl: config.authServerUrl || "https://id.getbodhi.app/realms/bodhi",
-      userScope: config.userScope || "scope_user_user",
-      logLevel: config.logLevel || "warn",
-      initParams: config.initParams
-    };
-    super(authClientId, normalizedConfig, onStateChange, storagePrefix);
-  }
-  createLogger(config) {
-    return new bodhiJsCore.Logger("ExtUIClient", config.logLevel);
-  }
-  createExtClient(config, onStateChange) {
-    return new ExtClient(
-      { logLevel: config.logLevel, initParams: config.initParams },
-      onStateChange
-    );
-  }
-  createDirectClient(authClientId, config, onStateChange) {
-    return new DirectExtClient(
-      {
-        authClientId,
-        authServerUrl: config.authServerUrl,
-        userScope: config.userScope,
-        logLevel: config.logLevel,
-        storagePrefix: bodhiJsCore.STORAGE_PREFIXES.EXT
-      },
-      onStateChange
-    );
-  }
-}
-const DEV_EXTENSION_IDS = ["ggedphdcbekjlomjaidbajglgihbeaon"];
-const PROD_EXTENSION_IDS = ["bjdjhiombmfbcoeojijpfckljjghmjbf"];
-const _BodhiExtClient = class _BodhiExtClient {
-  // ============================================================================
-  // Constructor
-  // ============================================================================
-  constructor(authClientId, config) {
-    this.isAuthenticating = false;
-    this.state = "setup";
-    this.listenersInitialized = false;
-    this.refreshPromise = null;
-    this.activeStreamPorts = /* @__PURE__ */ new Map();
-    this.authClientId = authClientId;
-    this.authServerUrl = (config == null ? void 0 : config.authServerUrl) || "https://id.getbodhi.app/realms/bodhi";
-    this.userScope = (config == null ? void 0 : config.userScope) || "scope_user_user";
-    this.extensionId = config == null ? void 0 : config.extensionId;
-    this.logger = new bodhiJsCore.Logger("BodhiExtClient", (config == null ? void 0 : config.logLevel) || "warn");
-    this.attempts = (config == null ? void 0 : config.attempts) ?? DISCOVERY_ATTEMPTS;
-    this.attemptWaitMs = (config == null ? void 0 : config.attemptWaitMs) ?? DISCOVERY_ATTEMPT_WAIT_MS;
-    this.attemptTimeout = (config == null ? void 0 : config.attemptTimeout) ?? DISCOVERY_ATTEMPT_TIMEOUT;
-    this.authEndpoints = {
-      authorize: `${this.authServerUrl}/protocol/openid-connect/auth`,
-      token: `${this.authServerUrl}/protocol/openid-connect/token`,
-      userinfo: `${this.authServerUrl}/protocol/openid-connect/userinfo`,
-      logout: `${this.authServerUrl}/protocol/openid-connect/logout`,
-      revoke: `${this.authServerUrl}/protocol/openid-connect/revoke`
-    };
-    if (this.extensionId) {
-      this.logger.info(`[BodhiExtClient] Created client for extension: ${this.extensionId}`);
-    } else {
-      this.logger.info(
-        `[BodhiExtClient] Created client without extension ID (call init() to discover)`
-      );
-    }
-  }
-  // ============================================================================
-  // OAuth Utility Methods (Static)
-  // ============================================================================
-  static base64UrlEncode(buffer) {
-    return btoa(String.fromCharCode(...new Uint8Array(buffer))).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
-  }
-  static generateCodeVerifier() {
-    const array = new Uint8Array(32);
-    crypto.getRandomValues(array);
-    return _BodhiExtClient.base64UrlEncode(array.buffer);
-  }
-  static async generateCodeChallenge(verifier) {
-    const encoder = new TextEncoder();
-    const data = encoder.encode(verifier);
-    const digest = await crypto.subtle.digest("SHA-256", data);
-    return _BodhiExtClient.base64UrlEncode(digest);
-  }
-  // ============================================================================
-  // State Management
-  // ============================================================================
-  /**
-   * Get current client state
-   * @returns 'ready' if extension discovered, 'setup' otherwise
-   */
-  getState() {
-    return this.state;
-  }
-  // ============================================================================
-  // Extension Discovery (Private Methods)
-  // ============================================================================
-  /**
-   * Get extension IDs for current environment
-   */
-  getExtensionIdsForEnvironment() {
-    const isDev = true;
-    const ids = isDev ? DEV_EXTENSION_IDS : PROD_EXTENSION_IDS;
-    this.logger.info(`[Ext2Ext/Registry] Environment: ${"development"}`);
-    this.logger.debug("[Ext2Ext/Registry] Using extension IDs:", ids);
-    return ids;
-  }
-  /**
-   * Ping extension using bodhi-browser-ext's EXT_REQUEST protocol
-   */
-  async pingExtension(extensionId) {
-    this.logger.debug(
-      `[Ext2Ext/Discovery] Pinging extension: ${extensionId} with timeout ${this.attemptTimeout}ms`
-    );
-    return new Promise((resolve, reject) => {
-      const timer = setTimeout(() => {
-        this.logger.debug(`[Ext2Ext/Discovery] Timeout waiting for extension ${extensionId}`);
-        reject(new Error("Timeout"));
-      }, this.attemptTimeout);
-      try {
-        const pingMessage = {
-          type: MESSAGE_TYPES.EXT_REQUEST,
-          requestId: crypto.randomUUID(),
-          request: {
-            action: "get_extension_id"
-          }
-        };
-        this.logger.debug(`[Ext2Ext/Discovery] Sending message to ${extensionId}:`, pingMessage);
-        chrome.runtime.sendMessage(extensionId, pingMessage, (response) => {
-          clearTimeout(timer);
-          if (chrome.runtime.lastError) {
-            this.logger.error(
-              `[Ext2Ext/Discovery] Error from extension ${extensionId}:`,
-              chrome.runtime.lastError.message
-            );
-            reject(new Error(chrome.runtime.lastError.message));
-            return;
-          }
-          this.logger.debug(`[Ext2Ext/Discovery] Response from ${extensionId}:`, response);
-          const extResponse = response;
-          if (extResponse && extResponse.type === MESSAGE_TYPES.EXT_RESPONSE) {
-            this.logger.debug(`[Ext2Ext/Discovery] ✓ Extension ${extensionId} responded`);
-            resolve(true);
-          } else {
-            this.logger.error(
-              `[Ext2Ext/Discovery] Invalid response from ${extensionId}:`,
-              response
-            );
-            reject(new Error("Invalid response"));
-          }
-        });
-      } catch (error) {
-        this.logger.error(`[Ext2Ext/Discovery] Exception pinging ${extensionId}:`, error);
-        clearTimeout(timer);
-        reject(error);
-      }
-    });
-  }
-  /**
-   * Sleep helper for retry delays
-   */
-  sleep(ms) {
-    return new Promise((resolve) => setTimeout(resolve, ms));
-  }
-  /**
-   * Discover Bodhi extension sequentially through known IDs with retry logic
-   * @param params Resolved discovery params
-   */
-  async discoverBodhiExtension(params) {
-    const { attempts, attemptWaitMs: waitMs, attemptTimeout: timeout } = params;
-    this.logger.info(
-      `[Ext2Ext/Discovery] Starting discovery: ${attempts} attempts per ID, ${timeout}ms timeout, ${waitMs}ms between attempts`
-    );
-    const extensionIds = this.getExtensionIdsForEnvironment();
-    this.logger.debug(
-      `[Ext2Ext/Discovery] Will try ${extensionIds.length} extension(s):`,
-      extensionIds
-    );
-    for (const extensionId of extensionIds) {
-      for (let attempt = 1; attempt <= attempts; attempt++) {
-        this.logger.debug(
-          `[Ext2Ext/Discovery] Trying ${extensionId} - attempt ${attempt}/${attempts}`
-        );
-        try {
-          await this.pingExtension(extensionId);
-          this.logger.info(`[Ext2Ext/Discovery] ✓ Found: ${extensionId} on attempt ${attempt}`);
-          return {
-            success: true,
-            extensionId
-          };
-        } catch (error) {
-          this.logger.debug(
-            `[Ext2Ext/Discovery] Attempt ${attempt} failed for ${extensionId}: ${error instanceof Error ? error.message : "Unknown error"}`
-          );
-          if (attempt < attempts) {
-            await this.sleep(waitMs);
-          }
-        }
-      }
-      this.logger.warn(
-        `[Ext2Ext/Discovery] ✗ Not found: ${extensionId} after ${attempts} attempts`
-      );
-    }
-    const triedIds = extensionIds.join(", ");
-    const errorMsg = `Extension not found. Tried ${extensionIds.length} IDs with ${attempts} attempts each: ${triedIds}`;
-    this.logger.error(`[Ext2Ext/Discovery] ${errorMsg}`);
-    return {
-      success: false,
-      error: errorMsg
-    };
-  }
-  // ============================================================================
-  // Message & Streaming Listeners (Private)
-  // ============================================================================
-  /**
-   * Setup all listeners for UI connections (idempotent)
-   */
-  setupListeners() {
-    if (this.listenersInitialized) {
-      this.logger.debug("[BodhiExtClient] Listeners already initialized, skipping");
-      return;
-    }
-    this.listenersInitialized = true;
-    chrome.runtime.onMessage.addListener((message, _sender, sendResponse) => {
-      if (message.type !== EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_REQUEST && message.type !== EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_REQUEST) {
-        return false;
-      }
-      if (this.state !== "ready") {
-        const isDiscoverAction = message.type === EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_REQUEST && message.request.action === EXT2EXT_CLIENT_ACTIONS.DISCOVER_EXTENSION;
-        if (!isDiscoverAction) {
-          if (message.type === EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_REQUEST) {
-            sendResponse({
-              type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-              requestId: message.requestId,
-              response: {
-                error: {
-                  message: this.createErrorClientNotInitialized(message),
-                  type: "NOT_INITIALIZED"
-                }
-              }
-            });
-          } else {
-            sendResponse({
-              type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_RESPONSE,
-              requestId: message.requestId,
-              error: {
-                message: `Client not initialized. Extension discovery not complete, cannot handle type:${message.type}, message:${JSON.stringify(message)}`,
-                type: "NOT_INITIALIZED"
-              }
-            });
-          }
-          return true;
-        }
-      }
-      this.logger.debug(`[BodhiExtClient] Processing message.type=${message.type}`);
-      (async () => {
-        const response = await this.handleAction(message);
-        sendResponse(response);
-      })();
-      return true;
-    });
-    chrome.runtime.onConnect.addListener((port) => {
-      if (port.name !== EXT2EXT_CLIENT_STREAM_PORT) {
-        this.logger.debug("[BodhiExtClient] Ignoring port with name:", port.name);
-        return;
-      }
-      this.logger.info("[BodhiExtClient] Streaming port connected");
-      port.onMessage.addListener(async (message) => {
-        if (message.type !== EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_REQUEST) {
-          this.logger.warn("[BodhiExtClient] Unknown stream message type:", message.type);
-          port.postMessage({
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-            requestId: message.requestId,
-            error: {
-              message: "Unknown stream message type",
-              type: "extension_error"
-            }
-          });
-          return;
-        }
-        await this.handleStreamRequest(port, message);
-      });
-      port.onDisconnect.addListener(() => {
-        this.logger.info("[BodhiExtClient] Streaming port disconnected");
-      });
-    });
-    this.logger.info("[BodhiExtClient] Streaming listeners initialized");
-  }
-  /**
-   * Initialize client: setup listeners and discover bodhi-browser-ext
-   * @param params Resolved discovery params (already merged with constructor defaults)
-   * @throws Error if discovery fails
-   */
-  async init(params) {
-    this.setupListeners();
-    if (this.extensionId) {
-      this.state = "ready";
-      this.logger.warn(
-        `[BodhiExtClient] Already initialized with extension ID: ${this.extensionId}`
-      );
-      return;
-    }
-    this.logger.info("[BodhiExtClient] Starting discovery");
-    const resolvedParams = {
-      attempts: (params == null ? void 0 : params.attempts) ?? this.attempts,
-      attemptWaitMs: (params == null ? void 0 : params.attemptWaitMs) ?? this.attemptWaitMs,
-      attemptTimeout: (params == null ? void 0 : params.attemptTimeout) ?? this.attemptTimeout
-    };
-    const result = await this.discoverBodhiExtension(resolvedParams);
-    if (!result.success || !result.extensionId) {
-      throw new Error(result.error || "Discovery failed");
-    }
-    this.extensionId = result.extensionId;
-    this.state = "ready";
-    this.logger.info(`[BodhiExtClient] ✓ Initialized: ${this.extensionId}`);
-  }
-  /**
-   * Broadcast auth state change to all extension contexts
-   * @private
-   */
-  broadcastAuthStateChange() {
-    chrome.runtime.sendMessage({
-      type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_BROADCAST,
-      event: "authStateChanged"
-    }).catch((error) => {
-      this.logger.debug("[BodhiExtClient] No listeners for broadcast:", error.message);
-    });
-  }
-  /**
-   * Get extension ID from bodhi-browser-ext via EXT_REQUEST
-   * @returns Extension ID returned by bodhi-browser-ext
-   */
-  async getExtensionIdFromExt() {
-    this.logger.debug("[BodhiExtClient] Getting extension ID from bodhi-browser-ext");
-    const response = await this.sendExtRequest("get_extension_id");
-    this.logger.debug("[BodhiExtClient] Extension ID response:", response);
-    return response.extension_id;
-  }
-  /**
-   * Handle API request (EXT2EXT_CLIENT_API_REQUEST)
-   * Forwards to bodhi-browser-ext via sendApiRequest
-   * @param message API request message
-   * @returns API response message (success or error)
-   */
-  async handleApiRequest(message) {
-    const { requestId } = message;
-    this.logger.debug("[BodhiExtClient] Handling API request:", message.request);
-    try {
-      let requestHeaders = message.request.headers || {};
-      if (message.request.authenticated) {
-        const accessToken = await this._getAccessTokenRaw();
-        if (!accessToken) {
-          return {
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_RESPONSE,
-            requestId,
-            error: {
-              message: "Not authenticated. Please log in first.",
-              type: "auth_error"
-            }
-          };
-        }
-        requestHeaders = {
-          ...requestHeaders,
-          Authorization: `Bearer ${accessToken}`
-        };
-        this.logger.debug("[BodhiExtClient] Injected auth token for authenticated request");
-      }
-      const apiResponse = await this.sendApiRequest(
-        message.request.method,
-        message.request.endpoint,
-        message.request.body,
-        requestHeaders
-      );
-      return {
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_RESPONSE,
-        requestId,
-        response: apiResponse
-      };
-    } catch (error) {
-      this.logger.error("[BodhiExtClient] API request failed:", error);
-      return {
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_RESPONSE,
-        requestId,
-        error: {
-          message: error instanceof Error ? error.message : "Unknown error",
-          type: "network_error"
-        }
-      };
-    }
-  }
-  /**
-   * Handle action-based request (EXT2EXT_CLIENT_REQUEST)
-   * Routes to ext2ext operations or local OAuth operations
-   * @param message Action request message
-   * @returns Action response message (success or error)
-   */
-  async handleExtClientRequest(message) {
-    const { requestId, request } = message;
-    const { action, params } = request;
-    this.logger.debug(`[BodhiExtClient] Handling action: ${action}`);
-    try {
-      let responseBody = {};
-      switch (action) {
-        case EXT2EXT_CLIENT_ACTIONS.DISCOVER_EXTENSION: {
-          const receivedParams = params;
-          await this.init(receivedParams);
-          const environment = "development";
-          this.logger.info("[BodhiExtClient] Discovery successful:", {
-            extensionId: this.extensionId,
-            environment
-          });
-          responseBody = {
-            extensionId: this.extensionId,
-            environment
-          };
-          break;
-        }
-        case EXT2EXT_CLIENT_ACTIONS.SET_EXTENSION_ID: {
-          const { extensionId } = params;
-          this.extensionId = extensionId;
-          this.state = "ready";
-          this.logger.info("[BodhiExtClient] Extension ID set:", { extensionId });
-          responseBody = { success: true };
-          break;
-        }
-        case EXT2EXT_CLIENT_ACTIONS.GET_EXTENSION_ID: {
-          const extResponse = await this.sendExtRequestRaw(EXT_ACTIONS.GET_EXTENSION_ID, params);
-          if (isExtError(extResponse.response)) {
-            return {
-              type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-              requestId,
-              response: {
-                error: {
-                  message: extResponse.response.error.message || `Extension request failed to get extension ID: ${JSON.stringify(extResponse.response)}`,
-                  type: extResponse.response.error.type
-                }
-              }
-            };
-          }
-          return {
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-            requestId,
-            response: extResponse.response
-          };
-        }
-        case EXT2EXT_CLIENT_ACTIONS.LOGIN:
-          await this.login();
-          this.broadcastAuthStateChange();
-          break;
-        case EXT2EXT_CLIENT_ACTIONS.LOGOUT:
-          await this.logout();
-          this.broadcastAuthStateChange();
-          break;
-        case EXT2EXT_CLIENT_ACTIONS.GET_AUTH_STATE:
-          {
-            const authState = await this.getAuthState();
-            responseBody = { authState };
-          }
-          break;
-        default:
-          return {
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-            requestId,
-            response: {
-              error: { message: `Unknown action: ${action}`, type: "UNKNOWN_ACTION" }
-            }
-          };
-      }
-      return {
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-        requestId,
-        response: responseBody
-      };
-    } catch (error) {
-      this.logger.error("[BodhiExtClient] Unexpected error:", error);
-      return {
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-        requestId,
-        response: {
-          error: {
-            message: error instanceof Error ? error.message : `Unexpected error: ${JSON.stringify(error)}`
-          }
-        }
-      };
-    }
-  }
-  // Implementation signature (must be compatible with all overloads)
-  async handleAction(message) {
-    switch (message.type) {
-      case EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_API_REQUEST:
-        return this.handleApiRequest(message);
-      case EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_REQUEST:
-        return this.handleExtClientRequest(message);
-      default: {
-        const { requestId } = message;
-        this.logger.error("[BodhiExtClient] Unknown message type:", message.type);
-        return {
-          type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_RESPONSE,
-          requestId,
-          response: {
-            error: {
-              message: `Unknown message type: ${message.type}`,
-              type: "UNKNOWN_MESSAGE_TYPE"
-            }
-          }
-        };
-      }
-    }
-  }
-  // ============================================================================
-  // OAuth Public Methods
-  // ============================================================================
-  /**
-   * Login user via OAuth2 + PKCE flow
-   * @throws Error if login fails
-   */
-  async login() {
-    if (this.isAuthenticating) {
-      return;
-    }
-    const authState = await this.getAuthState();
-    if (authState.isLoggedIn) {
-      return;
-    }
-    this.isAuthenticating = true;
-    try {
-      if (!this.extensionId) {
-        throw new Error("Extension not discovered. Please detect Bodhi extension before login.");
-      }
-      const resourceScope = await this.requestAccess();
-      const fullScope = `openid profile email roles ${this.userScope} ${resourceScope}`;
-      const codeVerifier = _BodhiExtClient.generateCodeVerifier();
-      const codeChallenge = await _BodhiExtClient.generateCodeChallenge(codeVerifier);
-      const state = _BodhiExtClient.generateCodeVerifier();
-      await chrome.storage.session.set({
-        codeVerifier,
-        state,
-        authInProgress: true
-      });
-      const redirectUri = chrome.identity.getRedirectURL("callback");
-      const authUrl = new URL(this.authEndpoints.authorize);
-      authUrl.searchParams.set("client_id", this.authClientId);
-      authUrl.searchParams.set("response_type", "code");
-      authUrl.searchParams.set("redirect_uri", redirectUri);
-      authUrl.searchParams.set("scope", fullScope);
-      authUrl.searchParams.set("code_challenge", codeChallenge);
-      authUrl.searchParams.set("code_challenge_method", "S256");
-      authUrl.searchParams.set("state", state);
-      return new Promise((resolve, reject) => {
-        chrome.identity.launchWebAuthFlow(
-          {
-            url: authUrl.toString(),
-            interactive: true
-          },
-          async (redirectUrl) => {
-            await chrome.storage.session.set({ authInProgress: false });
-            if (chrome.runtime.lastError) {
-              await chrome.storage.session.remove(["codeVerifier", "state"]);
-              reject(chrome.runtime.lastError);
-              return;
-            }
-            if (!redirectUrl) {
-              await chrome.storage.session.remove(["codeVerifier", "state"]);
-              reject(new Error("No redirect URL received"));
-              return;
-            }
-            try {
-              const url = new URL(redirectUrl);
-              const code = url.searchParams.get("code");
-              const returnedState = url.searchParams.get("state");
-              const { state: savedState } = await chrome.storage.session.get("state");
-              if (returnedState !== savedState) {
-                await chrome.storage.session.remove(["codeVerifier", "state"]);
-                reject(new Error("State mismatch - possible CSRF"));
-                return;
-              }
-              if (!code) {
-                await chrome.storage.session.remove(["codeVerifier", "state"]);
-                reject(new Error("No authorization code received"));
-                return;
-              }
-              await this.exchangeCodeForTokens(code);
-              await chrome.storage.session.remove(["codeVerifier", "state"]);
-              resolve();
-            } catch (error) {
-              await chrome.storage.session.remove(["codeVerifier", "state"]);
-              reject(error);
-            }
-          }
-        );
-      });
-    } finally {
-      this.isAuthenticating = false;
-    }
-  }
-  /**
-   * Exchange authorization code for tokens (private helper for login)
-   * @param code Authorization code from OAuth callback
-   */
-  async exchangeCodeForTokens(code) {
-    const authState = await this.getAuthState();
-    if (authState.isLoggedIn) {
-      return;
-    }
-    const { codeVerifier } = await chrome.storage.session.get("codeVerifier");
-    const redirectUri = chrome.identity.getRedirectURL("callback");
-    const response = await fetch(this.authEndpoints.token, {
-      method: "POST",
-      headers: {
-        "Content-Type": "application/x-www-form-urlencoded"
-      },
-      body: new URLSearchParams({
-        grant_type: "authorization_code",
-        code,
-        redirect_uri: redirectUri,
-        client_id: this.authClientId,
-        code_verifier: codeVerifier
-      })
-    });
-    if (!response.ok) {
-      const errorText = await response.text();
-      throw new Error(`Token exchange failed: ${response.status} ${errorText}`);
-    }
-    const tokens = await response.json();
-    await this.storeTokens({
-      accessToken: tokens.access_token,
-      refreshToken: tokens.refresh_token,
-      idToken: tokens.id_token,
-      expiresIn: tokens.expires_in
-    });
-  }
-  /**
-   * Get current authentication state
-   * @returns AuthState (discriminated union: AuthLoggedIn | AuthLoggedOut)
-   */
-  async getAuthState() {
-    const accessToken = await this._getAccessTokenRaw();
-    if (!accessToken) {
-      return { isLoggedIn: false };
-    }
-    try {
-      const claims = this.parseJwt(accessToken);
-      const userInfo = {
-        sub: claims.sub,
-        email: claims.email,
-        name: claims.name,
-        given_name: claims.given_name,
-        family_name: claims.family_name,
-        preferred_username: claims.preferred_username
-      };
-      return {
-        isLoggedIn: true,
-        userInfo,
-        accessToken
-      };
-    } catch (error) {
-      this.logger.error("Failed to parse token:", error);
-      return { isLoggedIn: false };
-    }
-  }
-  /**
-   * Logout current user and revoke tokens
-   */
-  async logout() {
-    const { refreshToken } = await chrome.storage.session.get("refreshToken");
-    if (refreshToken) {
-      try {
-        await fetch(this.authEndpoints.revoke, {
-          method: "POST",
-          headers: {
-            "Content-Type": "application/x-www-form-urlencoded"
-          },
-          body: new URLSearchParams({
-            token: refreshToken,
-            client_id: this.authClientId,
-            token_type_hint: "refresh_token"
-          })
-        });
-      } catch (error) {
-        this.logger.warn("[OAuth] Token revocation failed:", error);
-      }
-    }
-    await this.clearTokens();
-  }
-  // ============================================================================
-  // Ext2Ext Communication (Private Methods)
-  // ============================================================================
-  /**
-   * Send EXT_REQUEST message to bodhi-browser-ext
-   * @param action The action to perform
-   * @param params Optional parameters
-   * @returns Response body (unwrapped, throws on error)
-   */
-  async sendExtRequest(action, params) {
-    const response = await this.sendExtRequestRaw(action, params);
-    if (isExtError(response.response)) {
-      this.logger.error("[BodhiExtClient] Extension error:", response.response.error);
-      throw new Error(
-        response.response.error.message || `Extension request failed: ${JSON.stringify(response.response)}`
-      );
-    }
-    return response.response;
-  }
-  /**
-   * Send API_REQUEST message to bodhi-browser-ext for HTTP operations
-   * @param method HTTP method (GET, POST, etc.)
-   * @param endpoint API endpoint path
-   * @param body Optional request body
-   * @param headers Optional headers
-   * @returns API response from LLM server via bodhi-browser-ext
-   */
-  async sendApiRequest(method, endpoint, body, headers) {
-    if (!this.extensionId) {
-      throw new Error(this.createErrorClientNotInitialized({ type: "api", method, endpoint }));
-    }
-    this.logger.debug(
-      `[BodhiExtClient] Sending API_REQUEST: method=${method}, endpoint=${endpoint}`,
-      body ? { body } : ""
-    );
-    const requestId = crypto.randomUUID();
-    const message = {
-      type: MESSAGE_TYPES.API_REQUEST,
-      requestId,
-      request: {
-        method,
-        endpoint,
-        body,
-        headers
-      }
-    };
-    this.logger.debug(`[BodhiExtClient] Request ID: ${requestId}, Extension: ${this.extensionId}`);
-    return new Promise((resolve, reject) => {
-      try {
-        chrome.runtime.sendMessage(this.extensionId, message, (response) => {
-          if (chrome.runtime.lastError) {
-            this.logger.error(
-              `[BodhiExtClient] Chrome runtime error for request ${requestId}:`,
-              chrome.runtime.lastError
-            );
-            reject(new Error(chrome.runtime.lastError.message));
-            return;
-          }
-          this.logger.debug(`[BodhiExtClient] Response for request ${requestId}:`, response);
-          if (!response) {
-            this.logger.error(`[BodhiExtClient] No response received for request ${requestId}`);
-            reject(new Error("No response from extension"));
-            return;
-          }
-          if (response.type === MESSAGE_TYPES.API_RESPONSE && response.requestId === requestId) {
-            if ("error" in response) {
-              this.logger.error(`[BodhiExtClient] API error for ${requestId}:`, response.error);
-              reject(new Error(response.error.message));
-            } else {
-              this.logger.debug(`[BodhiExtClient] ✓ Valid API_RESPONSE for ${requestId}`);
-              resolve(response.response);
-            }
-          } else {
-            this.logger.error(
-              `[BodhiExtClient] Invalid response format for ${requestId}:`,
-              response
-            );
-            reject(new Error("Invalid response format"));
-          }
-        });
-      } catch (error) {
-        this.logger.error(`[BodhiExtClient] Exception sending message for ${requestId}:`, error);
-        reject(error);
-      }
-    });
-  }
-  /**
-   * Send EXT_REQUEST message to bodhi-browser-ext and return full response
-   * @param action The action to perform
-   * @param params Optional parameters
-   * @returns Full ExtResponseMessage from bodhi-browser-ext
-   */
-  async sendExtRequestRaw(action, params) {
-    if (!this.extensionId) {
-      throw new Error(this.createErrorClientNotInitialized({ type: "ext", action, params }));
-    }
-    this.logger.debug(
-      `[BodhiExtClient] Sending EXT_REQUEST (raw): action=${action}`,
-      params ? { params } : ""
-    );
-    const requestId = crypto.randomUUID();
-    const message = {
-      type: MESSAGE_TYPES.EXT_REQUEST,
-      requestId,
-      request: {
-        action,
-        params
-      }
-    };
-    this.logger.debug(`[BodhiExtClient] Request ID: ${requestId}, Extension: ${this.extensionId}`);
-    return new Promise((resolve, reject) => {
-      try {
-        chrome.runtime.sendMessage(this.extensionId, message, (response) => {
-          if (chrome.runtime.lastError) {
-            this.logger.error(
-              `[BodhiExtClient] Chrome runtime error for request ${requestId}:`,
-              chrome.runtime.lastError
-            );
-            reject(new Error(chrome.runtime.lastError.message));
-            return;
-          }
-          this.logger.debug(`[BodhiExtClient] Response for request ${requestId}:`, response);
-          if (!response) {
-            this.logger.error(`[BodhiExtClient] No response received for request ${requestId}`);
-            reject(new Error("No response from extension"));
-            return;
-          }
-          if (response.type === MESSAGE_TYPES.EXT_RESPONSE && response.requestId === requestId) {
-            this.logger.debug(`[BodhiExtClient] ✓ Valid EXT_RESPONSE for ${requestId}`);
-            resolve(response);
-          } else {
-            this.logger.error(
-              `[BodhiExtClient] Invalid response format for ${requestId}:`,
-              response
-            );
-            reject(new Error("Invalid response format"));
-          }
-        });
-      } catch (error) {
-        this.logger.error(`[BodhiExtClient] Exception sending message for ${requestId}:`, error);
-        reject(error);
-      }
-    });
-  }
-  /**
-   * Handle streaming request from UI port
-   * Connects to bodhi-browser-ext and forwards chunks directly to UI port
-   * @param uiPort Port connected from UI
-   * @param message Stream request message from UI
-   */
-  async handleStreamRequest(uiPort, message) {
-    const { requestId, request } = message;
-    const { method, endpoint, body, headers, authenticated } = request;
-    this.logger.debug("[BodhiExtClient] Processing stream request:", {
-      requestId,
-      method,
-      endpoint,
-      authenticated
-    });
-    if (!this.extensionId) {
-      uiPort.postMessage({
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-        requestId,
-        error: {
-          message: this.createErrorClientNotInitialized(message),
-          type: "extension_error"
-        }
-      });
-    }
-    try {
-      let requestHeaders = { ...headers };
-      if (authenticated !== false) {
-        const accessToken = await this._getAccessTokenRaw();
-        if (!accessToken) {
-          uiPort.postMessage({
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-            requestId,
-            error: {
-              message: "Not authenticated. Please log in first.",
-              type: "extension_error"
-            }
-          });
-          return;
-        }
-        requestHeaders = {
-          ...requestHeaders,
-          Authorization: `Bearer ${accessToken}`
-        };
-        this.logger.debug("[BodhiExtClient] Injected auth token for authenticated request");
-      }
-      const bodhiPort = chrome.runtime.connect(this.extensionId, {
-        name: BODHI_STREAM_PORT
-      });
-      this.activeStreamPorts.set(requestId, bodhiPort);
-      const timeoutId = setTimeout(() => {
-        if (this.activeStreamPorts.has(requestId)) {
-          this.logger.error(`[BodhiExtClient] Stream timeout for ${requestId}`);
-          uiPort.postMessage({
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-            requestId,
-            error: {
-              message: "Stream request timed out",
-              type: "timeout_error"
-            }
-          });
-          this.cleanupStreamPort(requestId);
-        }
-      }, _BodhiExtClient.STREAM_TIMEOUT);
-      bodhiPort.onMessage.addListener((streamMessage) => {
-        if (isStreamChunk(streamMessage)) {
-          const response = streamMessage.response;
-          const responseBody = response.body;
-          if (response.status >= 400) {
-            uiPort.postMessage({
-              type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_API_ERROR,
-              requestId,
-              response
-            });
-          } else if (responseBody == null ? void 0 : responseBody.done) {
-            uiPort.postMessage({
-              type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_DONE,
-              requestId
-            });
-            this.logger.info(`[BodhiExtClient] Stream complete for ${requestId}`);
-            clearTimeout(timeoutId);
-            this.cleanupStreamPort(requestId);
-          } else {
-            uiPort.postMessage({
-              type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_CHUNK,
-              requestId,
-              response
-            });
-          }
-        } else if (isStreamApiError(streamMessage)) {
-          this.logger.error(
-            `[BodhiExtClient] Stream API error for ${requestId}: ${streamMessage.response.status}`
-          );
-          uiPort.postMessage({
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_API_ERROR,
-            requestId,
-            response: streamMessage.response
-          });
-        } else if (isStreamError(streamMessage)) {
-          this.logger.error(
-            `[BodhiExtClient] Stream error for ${requestId}:`,
-            streamMessage.error.message
-          );
-          uiPort.postMessage({
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-            requestId,
-            error: {
-              message: `stream error: ${JSON.stringify(streamMessage)}`,
-              type: "extension_error"
-            }
-          });
-          clearTimeout(timeoutId);
-          this.cleanupStreamPort(requestId);
-        }
-      });
-      bodhiPort.onDisconnect.addListener(() => {
-        clearTimeout(timeoutId);
-        if (this.activeStreamPorts.has(requestId)) {
-          this.logger.error(`[BodhiExtClient] Bodhi port disconnected for ${requestId}`);
-          uiPort.postMessage({
-            type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-            requestId,
-            error: {
-              message: "Connection to Bodhi extension closed unexpectedly",
-              type: "network_error"
-            }
-          });
-          this.activeStreamPorts.delete(requestId);
-        }
-      });
-      const streamRequest = {
-        type: MESSAGE_TYPES.STREAM_REQUEST,
-        requestId,
-        request: {
-          method,
-          endpoint,
-          body,
-          headers: requestHeaders
-        }
-      };
-      this.logger.debug(`[BodhiExtClient] Sending stream request to bodhi port:`, streamRequest);
-      bodhiPort.postMessage(streamRequest);
-    } catch (error) {
-      const err = error;
-      this.logger.error("[BodhiExtClient] Stream error:", JSON.stringify(err.message));
-      uiPort.postMessage({
-        type: EXT2EXT_CLIENT_MESSAGE_TYPES.EXT2EXT_CLIENT_STREAM_ERROR,
-        requestId,
-        error: {
-          message: `uncaught error: ${JSON.stringify({ error: err, message: err.message })}`,
-          type: "extension_error"
-        }
-      });
-    }
-  }
-  /**
-   * Clean up a streaming port connection
-   */
-  cleanupStreamPort(requestId) {
-    const port = this.activeStreamPorts.get(requestId);
-    if (port) {
-      try {
-        port.disconnect();
-      } catch {
-      }
-      this.activeStreamPorts.delete(requestId);
-    }
-  }
-  // ============================================================================
-  // Resource Access (Private Methods)
-  // ============================================================================
-  /**
-   * Request resource access scope from backend via bodhi-browser-ext.
-   * Required for authenticated API access - token will include aud claim.
-   * @returns The resource scope string (e.g., "scope_resource-xxx")
-   * @throws Error if request fails or returns empty scope
-   */
-  async requestAccess() {
-    const response = await this.sendApiRequest(
-      "POST",
-      "/bodhi/v1/apps/request-access",
-      { app_client_id: this.authClientId }
-    );
-    if (!isApiSuccessResponse(response)) {
-      this.logger.error("[BodhiExtClient] Failed to get resource access scope: API error");
-      throw new Error("Failed to get resource access scope: API error");
-    }
-    return response.body.scope;
-  }
-  // ============================================================================
-  // Token Management (Private Methods)
-  // ============================================================================
-  async storeTokens(tokens) {
-    const expiresAt = Date.now() + (tokens.expiresIn || 3600) * 1e3;
-    await chrome.storage.session.set({
-      accessToken: tokens.accessToken,
-      refreshToken: tokens.refreshToken,
-      idToken: tokens.idToken,
-      expiresAt
-    });
-  }
-  async _getAccessTokenRaw() {
-    const { accessToken, expiresAt } = await chrome.storage.session.get([
-      "accessToken",
-      "expiresAt"
-    ]);
-    if (!accessToken || !expiresAt) {
-      return null;
-    }
-    if (Date.now() >= expiresAt - 5 * 1e3) {
-      const { refreshToken } = await chrome.storage.session.get("refreshToken");
-      if (refreshToken) {
-        return this._tryRefreshToken(refreshToken);
-      }
-      return null;
-    }
-    return accessToken;
-  }
-  /**
-   * Try to refresh access token using refresh token
-   * Race condition prevention: Returns existing promise if refresh already in progress
-   */
-  async _tryRefreshToken(refreshToken) {
-    if (this.refreshPromise) {
-      this.logger.debug("Refresh already in progress, returning existing promise");
-      return this.refreshPromise;
-    }
-    this.refreshPromise = this._doRefreshToken(refreshToken);
-    try {
-      return await this.refreshPromise;
-    } finally {
-      this.refreshPromise = null;
-    }
-  }
-  /**
-   * Perform the actual token refresh
-   */
-  async _doRefreshToken(refreshToken) {
-    this.logger.debug("Refreshing access token");
-    try {
-      const tokens = await bodhiJsCore.refreshAccessToken(
-        this.authEndpoints.token,
-        refreshToken,
-        this.authClientId
-      );
-      if (tokens) {
-        await this._storeRefreshedTokens(tokens);
-        this.logger.info("Token refreshed successfully");
-        this.broadcastAuthStateChange();
-        return tokens.access_token;
-      }
-    } catch (error) {
-      this.logger.warn("Token refresh failed:", error);
-    }
-    this.logger.warn("Token refresh failed, keeping tokens for manual retry");
-    throw bodhiJsCore.createOperationError(
-      "Access token expired and unable to refresh. Try logging out and logging in again.",
-      "token_refresh_failed"
-    );
-  }
-  /**
-   * Store refreshed tokens
-   */
-  async _storeRefreshedTokens(tokens) {
-    const expiresAt = Date.now() + tokens.expires_in * 1e3;
-    const storageData = {
-      accessToken: tokens.access_token,
-      expiresAt
-    };
-    if (tokens.refresh_token) {
-      storageData.refreshToken = tokens.refresh_token;
-    }
-    if (tokens.id_token) {
-      storageData.idToken = tokens.id_token;
-    }
-    await chrome.storage.session.set(storageData);
-  }
-  async clearTokens() {
-    await chrome.storage.session.remove([
-      "accessToken",
-      "refreshToken",
-      "idToken",
-      "expiresAt",
-      "codeVerifier",
-      "state",
-      "authInProgress",
-      "bodhiUserInfo"
-    ]);
-  }
-  parseJwt(token) {
-    const base64Url = token.split(".")[1];
-    const base64 = base64Url.replace(/-/g, "+").replace(/_/g, "/");
-    const jsonPayload = decodeURIComponent(
-      atob(base64).split("").map((c) => "%" + ("00" + c.charCodeAt(0).toString(16)).slice(-2)).join("")
-    );
-    return JSON.parse(jsonPayload);
-  }
-  createErrorClientNotInitialized(message) {
-    return `Client not initialized. Extension discovery not triggered nor extensionId set, cannot handle request: ${JSON.stringify(message)}`;
-  }
-};
-_BodhiExtClient.STREAM_TIMEOUT = 12e4;
-let BodhiExtClient = _BodhiExtClient;
-exports.BodhiExtClient = BodhiExtClient;
-exports.DISCOVERY_ATTEMPTS = DISCOVERY_ATTEMPTS;
-exports.DISCOVERY_ATTEMPT_TIMEOUT = DISCOVERY_ATTEMPT_TIMEOUT;
-exports.DISCOVERY_ATTEMPT_WAIT_MS = DISCOVERY_ATTEMPT_WAIT_MS;
-exports.DISCOVERY_TIMEOUT_MS = DISCOVERY_TIMEOUT_MS;
-exports.EXT2EXT_CLIENT_ACTIONS = EXT2EXT_CLIENT_ACTIONS;
-exports.EXT2EXT_CLIENT_MESSAGE_TYPES = EXT2EXT_CLIENT_MESSAGE_TYPES;
-exports.EXT2EXT_CLIENT_STREAM_PORT = EXT2EXT_CLIENT_STREAM_PORT;
-exports.ExtUIClient = ExtUIClient;
-exports.isExtClientApiError = isExtClientApiError;
-//# sourceMappingURL=bodhi-ext.cjs.js.map
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const h=require("@bodhiapp/bodhi-js-core"),c={EXT2EXT_CLIENT_REQUEST:"EXT2EXT_CLIENT_REQUEST",EXT2EXT_CLIENT_RESPONSE:"EXT2EXT_CLIENT_RESPONSE",EXT2EXT_CLIENT_BROADCAST:"EXT2EXT_CLIENT_BROADCAST",EXT2EXT_CLIENT_API_REQUEST:"EXT2EXT_CLIENT_API_REQUEST",EXT2EXT_CLIENT_API_RESPONSE:"EXT2EXT_CLIENT_API_RESPONSE",EXT2EXT_CLIENT_STREAM_REQUEST:"EXT2EXT_CLIENT_STREAM_REQUEST",EXT2EXT_CLIENT_STREAM_CHUNK:"EXT2EXT_CLIENT_STREAM_CHUNK",EXT2EXT_CLIENT_STREAM_ERROR:"EXT2EXT_CLIENT_STREAM_ERROR",EXT2EXT_CLIENT_STREAM_API_ERROR:"EXT2EXT_CLIENT_STREAM_API_ERROR",EXT2EXT_CLIENT_STREAM_DONE:"EXT2EXT_CLIENT_STREAM_DONE"},x="ext2ext-client-stream",S={LOGIN:"login",LOGOUT:"logout",GET_AUTH_STATE:"getAuthState",DISCOVER_EXTENSION:"discoverBodhiExtension",GET_EXTENSION_ID:"get_extension_id",SET_EXTENSION_ID:"setExtensionId"},w=5e3,N=3,O=500,X=500;function P(a){return"error"in a}class L extends h.DirectClientBase{constructor(e,t){super({...e,storagePrefix:h.STORAGE_PREFIXES.EXT},"DirectExtClient",t)}async login(){const e=await this.getAuthState();if(e.isLoggedIn)return e;const t=await this.requestResourceAccess(),r=`openid profile email roles ${this.userScope} ${t}`,i=h.generateCodeVerifier(),s=await h.generateCodeChallenge(i),o=h.generateCodeVerifier();await chrome.storage.session.set({[this.storageKeys.CODE_VERIFIER]:i,[this.storageKeys.STATE]:o});const n=chrome.identity.getRedirectURL("callback"),E=new URL(this.authEndpoints.authorize);return E.searchParams.set("client_id",this.authClientId),E.searchParams.set("response_type","code"),E.searchParams.set("redirect_uri",n),E.searchParams.set("scope",r),E.searchParams.set("code_challenge",s),E.searchParams.set("code_challenge_method","S256"),E.searchParams.set("state",o),new Promise((d,u)=>{chrome.identity.launchWebAuthFlow({url:E.toString(),interactive:!0},async l=>{if(chrome.runtime.lastError){await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE]),u(chrome.runtime.lastError);return}if(!l){await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE]),u(h.createOperationError("No redirect URL received","oauth-error"));return}try{const T=new URL(l),p=T.searchParams.get("code"),g=T.searchParams.get("state"),R=(await chrome.storage.session.get(this.storageKeys.STATE))[this.storageKeys.STATE];if(g!==R){await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE]),u(h.createOperationError("State mismatch - possible CSRF","oauth-error"));return}if(!p){await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE]),u(h.createOperationError("No authorization code received","oauth-error"));return}await this.exchangeCodeForTokens(p);const C=await this.getAuthState();if(!C.isLoggedIn)throw h.createOperationError("Login failed","oauth-error");const A=C;this.setAuthState(A),await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE]),d(A)}catch(T){await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE]),u(T)}})})}async logout(){const t=(await chrome.storage.session.get(this.storageKeys.REFRESH_TOKEN))[this.storageKeys.REFRESH_TOKEN];if(t)try{const i=new URLSearchParams({token:t,client_id:this.authClientId,token_type_hint:"refresh_token"});await fetch(this.authEndpoints.revoke,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:i})}catch(i){this.logger.warn("Token revocation failed:",i)}await chrome.storage.session.remove([this.storageKeys.ACCESS_TOKEN,this.storageKeys.REFRESH_TOKEN,this.storageKeys.EXPIRES_AT,this.storageKeys.RESOURCE_SCOPE]);const r={isLoggedIn:!1};return this.setAuthState(r),r}async requestResourceAccess(){const e=await this.sendApiRequest("POST","/bodhi/v1/apps/request-access",{app_client_id:this.authClientId},{},!1);if(h.isApiResultOperationError(e))throw new Error("Failed to get resource access scope from server");if(!h.isApiResultSuccess(e))throw new Error("Failed to get resource access scope from server: API error");const t=e.body.scope;return await chrome.storage.session.set({[this.storageKeys.RESOURCE_SCOPE]:t}),t}async exchangeCodeForTokens(e){const r=(await chrome.storage.session.get(this.storageKeys.CODE_VERIFIER))[this.storageKeys.CODE_VERIFIER],i=chrome.identity.getRedirectURL("callback"),s=await fetch(this.authEndpoints.token,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"authorization_code",code:e,redirect_uri:i,client_id:this.authClientId,code_verifier:r})});if(!s.ok){const E=await s.text();throw new Error(`Token exchange failed: ${s.status} ${E}`)}const o=await s.json(),n=Date.now()+(o.expires_in||3600)*1e3;await chrome.storage.session.set({[this.storageKeys.ACCESS_TOKEN]:o.access_token,[this.storageKeys.REFRESH_TOKEN]:o.refresh_token,[this.storageKeys.EXPIRES_AT]:n}),await chrome.storage.session.remove([this.storageKeys.CODE_VERIFIER,this.storageKeys.STATE])}async _storageGet(e){const r=(await chrome.storage.session.get(e))[e];return r!==void 0?String(r):null}async _storageSet(e){await chrome.storage.session.set(e)}async _storageRemove(e){await chrome.storage.session.remove(e)}_getRedirectUri(){return chrome.identity.getRedirectURL("callback")}}function b(a){return a!==null&&typeof a=="object"}function k(a){return b(a)&&"message"in a&&typeof a.message=="string"&&"type"in a&&typeof a.type=="string"}const m={API_REQUEST:"BODHI_API_REQUEST",API_RESPONSE:"BODHI_API_RESPONSE",STREAM_REQUEST:"BODHI_STREAM_REQUEST",STREAM_CHUNK:"BODHI_STREAM_CHUNK",STREAM_ERROR:"BODHI_STREAM_ERROR",STREAM_API_ERROR:"BODHI_STREAM_API_ERROR",ERROR:"BODHI_ERROR",EXT_REQUEST:"BODHI_EXT_REQUEST",EXT_RESPONSE:"BODHI_EXT_RESPONSE"};function v(a){return a!==null&&typeof a=="object"&&typeof a.status=="number"&&a.status>=200&&a.status<300&&"body"in a}function U(a){return a!==null&&typeof a=="object"&&a.type===m.STREAM_CHUNK}function D(a){return a!==null&&typeof a=="object"&&a.type===m.STREAM_API_ERROR}function M(a){return a!==null&&typeof a=="object"&&a.type===m.STREAM_ERROR}function y(a){return a!==null&&typeof a=="object"&&"error"in a}function q(a){return a instanceof Error&&"error"in a&&!("response"in a)&&k(a.error)}const B={GET_EXTENSION_ID:"get_extension_id",TEST_CONNECTION:"test_connection"},$="BODHI_STREAM_PORT";class K{constructor(e={},t){this.state={type:"extension",extension:"not-initialized",server:h.PENDING_EXTENSION_READY},this.extensionId=null,this.broadcastListenerActive=!1,this.config=e,this.logger=new h.Logger("ExtClient",(e==null?void 0:e.logLevel)||"warn"),this.onStateChange=t??h.NOOP_STATE_CALLBACK}setState(e){this.state=e,this.onStateChange({type:"client-state",state:e})}setAuthState(e){this.onStateChange({type:"auth-state",state:e})}setStateCallback(e){this.onStateChange=e}setupBroadcastListener(){this.broadcastListenerActive||(this.broadcastListenerActive=!0,chrome.runtime.onMessage.addListener(e=>{const t=e;return(t==null?void 0:t.type)===c.EXT2EXT_CLIENT_BROADCAST&&t.event==="authStateChanged"&&this.handleAuthStateChangedBroadcast(),!1}),this.logger.debug("Broadcast listener setup complete"))}async handleAuthStateChangedBroadcast(){this.logger.debug("Received authStateChanged broadcast, refreshing auth state");const e=await this.getAuthState();this.setAuthState(e)}generateRequestId(){return crypto.randomUUID()}getState(){return this.state}isClientInitialized(){return this.state.extension==="ready"}isServerReady(){return this.isClientInitialized()&&this.state.server.status==="ready"}async init(e={}){var i,s,o,n,E,d,u,l,T;if(!e.testConnection&&!e.selectedConnection){this.logger.info("No testConnection or selectedConnection, returning not-initialized state");const p=h.createExtensionStateNotInitialized();return this.setState(p),p}if(this.extensionId&&!e.testConnection)return this.logger.debug("Already initialized with extensionId, skipping discovery"),this.state;const t=e.timeoutMs??((s=(i=this.config.initParams)==null?void 0:i.extension)==null?void 0:s.timeoutMs)??w,r=(o=e.savedState)==null?void 0:o.extensionId;try{if(!this.extensionId){if(r)this.logger.info("Restoring with known extensionId:",r),await this.sendExtMessageWithTimeout(S.SET_EXTENSION_ID,{extensionId:r},t),this.extensionId=r;else{this.logger.info("Discovering bodhi-browser extension...");const _={attempts:(E=(n=this.config.initParams)==null?void 0:n.extension)==null?void 0:E.attempts,attemptWaitMs:(u=(d=this.config.initParams)==null?void 0:d.extension)==null?void 0:u.attemptWaitMs,attemptTimeout:(T=(l=this.config.initParams)==null?void 0:l.extension)==null?void 0:T.attemptTimeout},R=await this.sendExtMessageWithTimeout(S.DISCOVER_EXTENSION,_,t);this.extensionId=R.extensionId,this.logger.info("Extension discovered:",this.extensionId)}this.setupBroadcastListener()}const p={type:"extension",extension:"ready",extensionId:this.extensionId,server:h.PENDING_EXTENSION_READY};let g=h.PENDING_EXTENSION_READY;if(e.testConnection)try{g=await this.getServerState(),this.logger.info("Server connectivity tested, state:",g.status)}catch(_){this.logger.error("Failed to get server state:",_),g=h.BACKEND_SERVER_NOT_REACHABLE}return this.setState({...p,server:g}),this.state}catch(p){this.logger.error("Failed to initialize extension:",p),this.extensionId=null;const g=h.createExtensionStateNotFound();return this.setState(g),this.state}}async sendExtMessageWithTimeout(e,t,r=1e4){const i=new Promise((s,o)=>setTimeout(()=>o(new Error("Timeout")),r));return Promise.race([this.sendExtRequest(e,t),i])}async sendExtRequest(e,t){try{const r=this.generateRequestId(),i=await chrome.runtime.sendMessage({type:c.EXT2EXT_CLIENT_REQUEST,requestId:r,request:{action:e,params:t}});if(!i)throw h.createOperationError("No response from background script","extension_error");if(i.type!==c.EXT2EXT_CLIENT_RESPONSE)throw h.createOperationError("Invalid response type from background script","extension_error");const s=i.response;if(y(s)){const o=s.error.type||"extension_error";throw h.createOperationError(s.error.message,o)}return s}catch(r){throw q(r)?r:h.createOperationError(r instanceof Error?r.message:"Unknown error occurred","extension_error")}}async sendRawApiMessage(e,t,r,i,s){const o=this.generateRequestId();return await chrome.runtime.sendMessage({type:c.EXT2EXT_CLIENT_API_REQUEST,requestId:o,request:{method:e,endpoint:t,body:r,headers:i,authenticated:s}})}async sendApiRequest(e,t,r,i,s){const o=await this.sendRawApiMessage(e,t,r,i,s);if(P(o)){const n=o.error.type||"extension_error";return{error:{message:o.error.message,type:n}}}return o.response}async login(){return new Promise((e,t)=>{const r=async i=>{var s;if(i&&typeof i=="object"&&"type"in i&&i.type==="EXT2EXT_CLIENT_BROADCAST"&&"event"in i&&i.event==="authStateChanged"){chrome.runtime.onMessage.removeListener(r);try{const o=await this.getAuthState();if(h.isAuthError(o)){t(h.createOperationError(`Login failed: ${(s=o.error)==null?void 0:s.message}`,"auth-error"));return}if(h.isAuthLoggedOut(o)){t(h.createOperationError("Login failed: User is not logged in","auth-error"));return}this.setAuthState(o),e(o)}catch(o){t(o)}}};chrome.runtime.onMessage.addListener(r),this.sendExtRequest(S.LOGIN).catch(i=>{chrome.runtime.onMessage.removeListener(r),t(i)})})}async logout(){await this.sendExtRequest(S.LOGOUT);const e={isLoggedIn:!1};return this.setAuthState(e),e}async getAuthState(){return this.isClientInitialized()?(await this.sendExtRequest(S.GET_AUTH_STATE)).authState:h.AUTH_EXT_NOT_INITIALIZED}async pingApi(){return this.sendApiRequest("GET","/ping")}async fetchModels(){return this.sendApiRequest("GET","/v1/models",void 0,void 0,!0)}async getServerState(){const e=await this.sendApiRequest("GET","/bodhi/v1/info");if(h.isApiResultOperationError(e))return{status:"not-reachable",error:e.error};if(!h.isApiResultSuccess(e))return{status:"not-reachable",error:{message:"API error from server",type:"extension_error"}};const t=e.body;switch(t.status){case"ready":return{status:"ready",version:t.version||"unknown"};case"setup":return{status:"setup",version:t.version||"unknown",error:t.error?{message:t.error.message,type:t.error.type}:{message:"Setup required",type:"extension_error"}};case"resource-admin":return{status:"resource-admin",version:t.version||"unknown",error:t.error?{message:t.error.message,type:t.error.type}:{message:"Resource admin required",type:"extension_error"}};case"error":return{status:"error",version:t.version||"unknown",error:t.error?{message:t.error.message,type:t.error.type}:{message:"Server error",type:"extension_error"}};default:return{status:"not-reachable",error:{message:"Unknown server status",type:"extension_error"}}}}async*stream(e,t,r,i,s=!0){const o=this.generateRequestId();console.log("[ExtClient] Starting stream",{method:e,endpoint:t,requestId:o});const n=chrome.runtime.connect({name:x}),d=new ReadableStream({start:u=>{n.onMessage.addListener(l=>{var T,p,g;if(l.requestId===o)switch(l.type){case c.EXT2EXT_CLIENT_STREAM_DONE:console.log("[ExtClient] Stream complete",{requestId:o}),u.close(),n.disconnect();break;case c.EXT2EXT_CLIENT_STREAM_ERROR:console.error("[ExtClient] Stream error",{requestId:o,error:JSON.stringify(l.error)}),u.error(h.createOperationError(l.error.message,"extension_error")),n.disconnect();break;case c.EXT2EXT_CLIENT_STREAM_API_ERROR:{const _=l;console.error("[ExtClient] Stream API error",{requestId:o,error:(T=_.response.body)==null?void 0:T.error}),u.error(h.createApiError(((g=(p=_.response.body)==null?void 0:p.error)==null?void 0:g.message)||"API error",_.response.status,_.response.body)),n.disconnect();break}case c.EXT2EXT_CLIENT_STREAM_CHUNK:{const _=l;v(_.response)&&u.enqueue(_.response.body);break}}}),n.onDisconnect.addListener(()=>{console.log("[ExtClient] Port disconnected",{requestId:o});try{u.error(h.createOperationError("Connection closed unexpectedly","extension_error"))}catch{}}),n.postMessage({type:c.EXT2EXT_CLIENT_STREAM_REQUEST,requestId:o,request:{method:e,endpoint:t,body:r,headers:i,authenticated:s}})}}).getReader();try{for(;;){const{done:u,value:l}=await d.read();if(u){console.log("[ExtClient] Stream iteration complete");break}yield l}}finally{d.releaseLock()}}async*streamChat(e,t,r=!0){yield*this.stream("POST","/v1/chat/completions",{model:e,messages:[{role:"user",content:t}],stream:!0},void 0,r)}serialize(){return{extensionId:this.extensionId??void 0}}async debug(){return{type:"ExtClient",state:this.state,authState:await this.getAuthState()}}}class V extends h.BaseFacadeClient{constructor(e,t,r,i){const s={authServerUrl:t.authServerUrl||"https://id.getbodhi.app/realms/bodhi",userScope:t.userScope||"scope_user_user",logLevel:t.logLevel||"warn",initParams:t.initParams};super(e,s,r,i)}createLogger(e){return new h.Logger("ExtUIClient",e.logLevel)}createExtClient(e,t){return new K({logLevel:e.logLevel,initParams:e.initParams},t)}createDirectClient(e,t,r){return new L({authClientId:e,authServerUrl:t.authServerUrl,userScope:t.userScope,logLevel:t.logLevel,storagePrefix:h.STORAGE_PREFIXES.EXT},r)}}const F=["bjdjhiombmfbcoeojijpfckljjghmjbf"],I=class I{constructor(e,t){this.isAuthenticating=!1,this.state="setup",this.listenersInitialized=!1,this.refreshPromise=null,this.activeStreamPorts=new Map,this.authClientId=e,this.authServerUrl=(t==null?void 0:t.authServerUrl)||"https://id.getbodhi.app/realms/bodhi",this.userScope=(t==null?void 0:t.userScope)||"scope_user_user",this.extensionId=t==null?void 0:t.extensionId,this.logger=new h.Logger("BodhiExtClient",(t==null?void 0:t.logLevel)||"warn"),this.attempts=(t==null?void 0:t.attempts)??N,this.attemptWaitMs=(t==null?void 0:t.attemptWaitMs)??O,this.attemptTimeout=(t==null?void 0:t.attemptTimeout)??X,this.authEndpoints={authorize:`${this.authServerUrl}/protocol/openid-connect/auth`,token:`${this.authServerUrl}/protocol/openid-connect/token`,userinfo:`${this.authServerUrl}/protocol/openid-connect/userinfo`,logout:`${this.authServerUrl}/protocol/openid-connect/logout`,revoke:`${this.authServerUrl}/protocol/openid-connect/revoke`},this.extensionId?this.logger.info(`[BodhiExtClient] Created client for extension: ${this.extensionId}`):this.logger.info("[BodhiExtClient] Created client without extension ID (call init() to discover)")}static base64UrlEncode(e){return btoa(String.fromCharCode(...new Uint8Array(e))).replace(/\+/g,"-").replace(/\//g,"_").replace(/=/g,"")}static generateCodeVerifier(){const e=new Uint8Array(32);return crypto.getRandomValues(e),I.base64UrlEncode(e.buffer)}static async generateCodeChallenge(e){const r=new TextEncoder().encode(e),i=await crypto.subtle.digest("SHA-256",r);return I.base64UrlEncode(i)}getState(){return this.state}getExtensionIdsForEnvironment(){const t=F;return this.logger.info("[Ext2Ext/Registry] Environment: production"),this.logger.debug("[Ext2Ext/Registry] Using extension IDs:",t),t}async pingExtension(e){return this.logger.debug(`[Ext2Ext/Discovery] Pinging extension: ${e} with timeout ${this.attemptTimeout}ms`),new Promise((t,r)=>{const i=setTimeout(()=>{this.logger.debug(`[Ext2Ext/Discovery] Timeout waiting for extension ${e}`),r(new Error("Timeout"))},this.attemptTimeout);try{const s={type:m.EXT_REQUEST,requestId:crypto.randomUUID(),request:{action:"get_extension_id"}};this.logger.debug(`[Ext2Ext/Discovery] Sending message to ${e}:`,s),chrome.runtime.sendMessage(e,s,o=>{if(clearTimeout(i),chrome.runtime.lastError){this.logger.error(`[Ext2Ext/Discovery] Error from extension ${e}:`,chrome.runtime.lastError.message),r(new Error(chrome.runtime.lastError.message));return}this.logger.debug(`[Ext2Ext/Discovery] Response from ${e}:`,o);const n=o;n&&n.type===m.EXT_RESPONSE?(this.logger.debug(`[Ext2Ext/Discovery] ✓ Extension ${e} responded`),t(!0)):(this.logger.error(`[Ext2Ext/Discovery] Invalid response from ${e}:`,o),r(new Error("Invalid response")))})}catch(s){this.logger.error(`[Ext2Ext/Discovery] Exception pinging ${e}:`,s),clearTimeout(i),r(s)}})}sleep(e){return new Promise(t=>setTimeout(t,e))}async discoverBodhiExtension(e){const{attempts:t,attemptWaitMs:r,attemptTimeout:i}=e;this.logger.info(`[Ext2Ext/Discovery] Starting discovery: ${t} attempts per ID, ${i}ms timeout, ${r}ms between attempts`);const s=this.getExtensionIdsForEnvironment();this.logger.debug(`[Ext2Ext/Discovery] Will try ${s.length} extension(s):`,s);for(const E of s){for(let d=1;d<=t;d++){this.logger.debug(`[Ext2Ext/Discovery] Trying ${E} - attempt ${d}/${t}`);try{return await this.pingExtension(E),this.logger.info(`[Ext2Ext/Discovery] ✓ Found: ${E} on attempt ${d}`),{success:!0,extensionId:E}}catch(u){this.logger.debug(`[Ext2Ext/Discovery] Attempt ${d} failed for ${E}: ${u instanceof Error?u.message:"Unknown error"}`),d<t&&await this.sleep(r)}}this.logger.warn(`[Ext2Ext/Discovery] ✗ Not found: ${E} after ${t} attempts`)}const o=s.join(", "),n=`Extension not found. Tried ${s.length} IDs with ${t} attempts each: ${o}`;return this.logger.error(`[Ext2Ext/Discovery] ${n}`),{success:!1,error:n}}setupListeners(){if(this.listenersInitialized){this.logger.debug("[BodhiExtClient] Listeners already initialized, skipping");return}this.listenersInitialized=!0,chrome.runtime.onMessage.addListener((e,t,r)=>e.type!==c.EXT2EXT_CLIENT_REQUEST&&e.type!==c.EXT2EXT_CLIENT_API_REQUEST?!1:this.state!=="ready"&&!(e.type===c.EXT2EXT_CLIENT_REQUEST&&e.request.action===S.DISCOVER_EXTENSION)?(e.type===c.EXT2EXT_CLIENT_REQUEST?r({type:c.EXT2EXT_CLIENT_RESPONSE,requestId:e.requestId,response:{error:{message:this.createErrorClientNotInitialized(e),type:"NOT_INITIALIZED"}}}):r({type:c.EXT2EXT_CLIENT_API_RESPONSE,requestId:e.requestId,error:{message:`Client not initialized. Extension discovery not complete, cannot handle type:${e.type}, message:${JSON.stringify(e)}`,type:"NOT_INITIALIZED"}}),!0):(this.logger.debug(`[BodhiExtClient] Processing message.type=${e.type}`),(async()=>{const i=await this.handleAction(e);r(i)})(),!0)),chrome.runtime.onConnect.addListener(e=>{if(e.name!==x){this.logger.debug("[BodhiExtClient] Ignoring port with name:",e.name);return}this.logger.info("[BodhiExtClient] Streaming port connected"),e.onMessage.addListener(async t=>{if(t.type!==c.EXT2EXT_CLIENT_STREAM_REQUEST){this.logger.warn("[BodhiExtClient] Unknown stream message type:",t.type),e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:t.requestId,error:{message:"Unknown stream message type",type:"extension_error"}});return}await this.handleStreamRequest(e,t)}),e.onDisconnect.addListener(()=>{this.logger.info("[BodhiExtClient] Streaming port disconnected")})}),this.logger.info("[BodhiExtClient] Streaming listeners initialized")}async init(e){if(this.setupListeners(),this.extensionId){this.state="ready",this.logger.warn(`[BodhiExtClient] Already initialized with extension ID: ${this.extensionId}`);return}this.logger.info("[BodhiExtClient] Starting discovery");const t={attempts:(e==null?void 0:e.attempts)??this.attempts,attemptWaitMs:(e==null?void 0:e.attemptWaitMs)??this.attemptWaitMs,attemptTimeout:(e==null?void 0:e.attemptTimeout)??this.attemptTimeout},r=await this.discoverBodhiExtension(t);if(!r.success||!r.extensionId)throw new Error(r.error||"Discovery failed");this.extensionId=r.extensionId,this.state="ready",this.logger.info(`[BodhiExtClient] ✓ Initialized: ${this.extensionId}`)}broadcastAuthStateChange(){chrome.runtime.sendMessage({type:c.EXT2EXT_CLIENT_BROADCAST,event:"authStateChanged"}).catch(e=>{this.logger.debug("[BodhiExtClient] No listeners for broadcast:",e.message)})}async getExtensionIdFromExt(){this.logger.debug("[BodhiExtClient] Getting extension ID from bodhi-browser-ext");const e=await this.sendExtRequest("get_extension_id");return this.logger.debug("[BodhiExtClient] Extension ID response:",e),e.extension_id}async handleApiRequest(e){const{requestId:t}=e;this.logger.debug("[BodhiExtClient] Handling API request:",e.request);try{let r=e.request.headers||{};if(e.request.authenticated){const s=await this._getAccessTokenRaw();if(!s)return{type:c.EXT2EXT_CLIENT_API_RESPONSE,requestId:t,error:{message:"Not authenticated. Please log in first.",type:"auth_error"}};r={...r,Authorization:`Bearer ${s}`},this.logger.debug("[BodhiExtClient] Injected auth token for authenticated request")}const i=await this.sendApiRequest(e.request.method,e.request.endpoint,e.request.body,r);return{type:c.EXT2EXT_CLIENT_API_RESPONSE,requestId:t,response:i}}catch(r){return this.logger.error("[BodhiExtClient] API request failed:",r),{type:c.EXT2EXT_CLIENT_API_RESPONSE,requestId:t,error:{message:r instanceof Error?r.message:"Unknown error",type:"network_error"}}}}async handleExtClientRequest(e){const{requestId:t,request:r}=e,{action:i,params:s}=r;this.logger.debug(`[BodhiExtClient] Handling action: ${i}`);try{let o={};switch(i){case S.DISCOVER_EXTENSION:{const n=s;await this.init(n);const E="production";this.logger.info("[BodhiExtClient] Discovery successful:",{extensionId:this.extensionId,environment:E}),o={extensionId:this.extensionId,environment:E};break}case S.SET_EXTENSION_ID:{const{extensionId:n}=s;this.extensionId=n,this.state="ready",this.logger.info("[BodhiExtClient] Extension ID set:",{extensionId:n}),o={success:!0};break}case S.GET_EXTENSION_ID:{const n=await this.sendExtRequestRaw(B.GET_EXTENSION_ID,s);return y(n.response)?{type:c.EXT2EXT_CLIENT_RESPONSE,requestId:t,response:{error:{message:n.response.error.message||`Extension request failed to get extension ID: ${JSON.stringify(n.response)}`,type:n.response.error.type}}}:{type:c.EXT2EXT_CLIENT_RESPONSE,requestId:t,response:n.response}}case S.LOGIN:await this.login(),this.broadcastAuthStateChange();break;case S.LOGOUT:await this.logout(),this.broadcastAuthStateChange();break;case S.GET_AUTH_STATE:o={authState:await this.getAuthState()};break;default:return{type:c.EXT2EXT_CLIENT_RESPONSE,requestId:t,response:{error:{message:`Unknown action: ${i}`,type:"UNKNOWN_ACTION"}}}}return{type:c.EXT2EXT_CLIENT_RESPONSE,requestId:t,response:o}}catch(o){return this.logger.error("[BodhiExtClient] Unexpected error:",o),{type:c.EXT2EXT_CLIENT_RESPONSE,requestId:t,response:{error:{message:o instanceof Error?o.message:`Unexpected error: ${JSON.stringify(o)}`}}}}}async handleAction(e){switch(e.type){case c.EXT2EXT_CLIENT_API_REQUEST:return this.handleApiRequest(e);case c.EXT2EXT_CLIENT_REQUEST:return this.handleExtClientRequest(e);default:{const{requestId:t}=e;return this.logger.error("[BodhiExtClient] Unknown message type:",e.type),{type:c.EXT2EXT_CLIENT_RESPONSE,requestId:t,response:{error:{message:`Unknown message type: ${e.type}`,type:"UNKNOWN_MESSAGE_TYPE"}}}}}}async login(){if(!(this.isAuthenticating||(await this.getAuthState()).isLoggedIn)){this.isAuthenticating=!0;try{if(!this.extensionId)throw new Error("Extension not discovered. Please detect Bodhi extension before login.");const t=await this.requestAccess(),r=`openid profile email roles ${this.userScope} ${t}`,i=I.generateCodeVerifier(),s=await I.generateCodeChallenge(i),o=I.generateCodeVerifier();await chrome.storage.session.set({codeVerifier:i,state:o,authInProgress:!0});const n=chrome.identity.getRedirectURL("callback"),E=new URL(this.authEndpoints.authorize);return E.searchParams.set("client_id",this.authClientId),E.searchParams.set("response_type","code"),E.searchParams.set("redirect_uri",n),E.searchParams.set("scope",r),E.searchParams.set("code_challenge",s),E.searchParams.set("code_challenge_method","S256"),E.searchParams.set("state",o),new Promise((d,u)=>{chrome.identity.launchWebAuthFlow({url:E.toString(),interactive:!0},async l=>{if(await chrome.storage.session.set({authInProgress:!1}),chrome.runtime.lastError){await chrome.storage.session.remove(["codeVerifier","state"]),u(chrome.runtime.lastError);return}if(!l){await chrome.storage.session.remove(["codeVerifier","state"]),u(new Error("No redirect URL received"));return}try{const T=new URL(l),p=T.searchParams.get("code"),g=T.searchParams.get("state"),{state:_}=await chrome.storage.session.get("state");if(g!==_){await chrome.storage.session.remove(["codeVerifier","state"]),u(new Error("State mismatch - possible CSRF"));return}if(!p){await chrome.storage.session.remove(["codeVerifier","state"]),u(new Error("No authorization code received"));return}await this.exchangeCodeForTokens(p),await chrome.storage.session.remove(["codeVerifier","state"]),d()}catch(T){await chrome.storage.session.remove(["codeVerifier","state"]),u(T)}})})}finally{this.isAuthenticating=!1}}}async exchangeCodeForTokens(e){if((await this.getAuthState()).isLoggedIn)return;const{codeVerifier:r}=await chrome.storage.session.get("codeVerifier"),i=chrome.identity.getRedirectURL("callback"),s=await fetch(this.authEndpoints.token,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"authorization_code",code:e,redirect_uri:i,client_id:this.authClientId,code_verifier:r})});if(!s.ok){const n=await s.text();throw new Error(`Token exchange failed: ${s.status} ${n}`)}const o=await s.json();await this.storeTokens({accessToken:o.access_token,refreshToken:o.refresh_token,idToken:o.id_token,expiresIn:o.expires_in})}async getAuthState(){const e=await this._getAccessTokenRaw();if(!e)return{isLoggedIn:!1};try{const t=this.parseJwt(e);return{isLoggedIn:!0,userInfo:{sub:t.sub,email:t.email,name:t.name,given_name:t.given_name,family_name:t.family_name,preferred_username:t.preferred_username},accessToken:e}}catch(t){return this.logger.error("Failed to parse token:",t),{isLoggedIn:!1}}}async logout(){const{refreshToken:e}=await chrome.storage.session.get("refreshToken");if(e)try{await fetch(this.authEndpoints.revoke,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({token:e,client_id:this.authClientId,token_type_hint:"refresh_token"})})}catch(t){this.logger.warn("[OAuth] Token revocation failed:",t)}await this.clearTokens()}async sendExtRequest(e,t){const r=await this.sendExtRequestRaw(e,t);if(y(r.response))throw this.logger.error("[BodhiExtClient] Extension error:",r.response.error),new Error(r.response.error.message||`Extension request failed: ${JSON.stringify(r.response)}`);return r.response}async sendApiRequest(e,t,r,i){if(!this.extensionId)throw new Error(this.createErrorClientNotInitialized({type:"api",method:e,endpoint:t}));this.logger.debug(`[BodhiExtClient] Sending API_REQUEST: method=${e}, endpoint=${t}`,r?{body:r}:"");const s=crypto.randomUUID(),o={type:m.API_REQUEST,requestId:s,request:{method:e,endpoint:t,body:r,headers:i}};return this.logger.debug(`[BodhiExtClient] Request ID: ${s}, Extension: ${this.extensionId}`),new Promise((n,E)=>{try{chrome.runtime.sendMessage(this.extensionId,o,d=>{if(chrome.runtime.lastError){this.logger.error(`[BodhiExtClient] Chrome runtime error for request ${s}:`,chrome.runtime.lastError),E(new Error(chrome.runtime.lastError.message));return}if(this.logger.debug(`[BodhiExtClient] Response for request ${s}:`,d),!d){this.logger.error(`[BodhiExtClient] No response received for request ${s}`),E(new Error("No response from extension"));return}d.type===m.API_RESPONSE&&d.requestId===s?"error"in d?(this.logger.error(`[BodhiExtClient] API error for ${s}:`,d.error),E(new Error(d.error.message))):(this.logger.debug(`[BodhiExtClient] ✓ Valid API_RESPONSE for ${s}`),n(d.response)):(this.logger.error(`[BodhiExtClient] Invalid response format for ${s}:`,d),E(new Error("Invalid response format")))})}catch(d){this.logger.error(`[BodhiExtClient] Exception sending message for ${s}:`,d),E(d)}})}async sendExtRequestRaw(e,t){if(!this.extensionId)throw new Error(this.createErrorClientNotInitialized({type:"ext",action:e,params:t}));this.logger.debug(`[BodhiExtClient] Sending EXT_REQUEST (raw): action=${e}`,t?{params:t}:"");const r=crypto.randomUUID(),i={type:m.EXT_REQUEST,requestId:r,request:{action:e,params:t}};return this.logger.debug(`[BodhiExtClient] Request ID: ${r}, Extension: ${this.extensionId}`),new Promise((s,o)=>{try{chrome.runtime.sendMessage(this.extensionId,i,n=>{if(chrome.runtime.lastError){this.logger.error(`[BodhiExtClient] Chrome runtime error for request ${r}:`,chrome.runtime.lastError),o(new Error(chrome.runtime.lastError.message));return}if(this.logger.debug(`[BodhiExtClient] Response for request ${r}:`,n),!n){this.logger.error(`[BodhiExtClient] No response received for request ${r}`),o(new Error("No response from extension"));return}n.type===m.EXT_RESPONSE&&n.requestId===r?(this.logger.debug(`[BodhiExtClient] ✓ Valid EXT_RESPONSE for ${r}`),s(n)):(this.logger.error(`[BodhiExtClient] Invalid response format for ${r}:`,n),o(new Error("Invalid response format")))})}catch(n){this.logger.error(`[BodhiExtClient] Exception sending message for ${r}:`,n),o(n)}})}async handleStreamRequest(e,t){const{requestId:r,request:i}=t,{method:s,endpoint:o,body:n,headers:E,authenticated:d}=i;this.logger.debug("[BodhiExtClient] Processing stream request:",{requestId:r,method:s,endpoint:o,authenticated:d}),this.extensionId||e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:r,error:{message:this.createErrorClientNotInitialized(t),type:"extension_error"}});try{let u={...E};if(d!==!1){const g=await this._getAccessTokenRaw();if(!g){e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:r,error:{message:"Not authenticated. Please log in first.",type:"extension_error"}});return}u={...u,Authorization:`Bearer ${g}`},this.logger.debug("[BodhiExtClient] Injected auth token for authenticated request")}const l=chrome.runtime.connect(this.extensionId,{name:$});this.activeStreamPorts.set(r,l);const T=setTimeout(()=>{this.activeStreamPorts.has(r)&&(this.logger.error(`[BodhiExtClient] Stream timeout for ${r}`),e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:r,error:{message:"Stream request timed out",type:"timeout_error"}}),this.cleanupStreamPort(r))},I.STREAM_TIMEOUT);l.onMessage.addListener(g=>{if(U(g)){const _=g.response,R=_.body;_.status>=400?e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_API_ERROR,requestId:r,response:_}):R!=null&&R.done?(e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_DONE,requestId:r}),this.logger.info(`[BodhiExtClient] Stream complete for ${r}`),clearTimeout(T),this.cleanupStreamPort(r)):e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_CHUNK,requestId:r,response:_})}else D(g)?(this.logger.error(`[BodhiExtClient] Stream API error for ${r}: ${g.response.status}`),e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_API_ERROR,requestId:r,response:g.response})):M(g)&&(this.logger.error(`[BodhiExtClient] Stream error for ${r}:`,g.error.message),e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:r,error:{message:`stream error: ${JSON.stringify(g)}`,type:"extension_error"}}),clearTimeout(T),this.cleanupStreamPort(r))}),l.onDisconnect.addListener(()=>{clearTimeout(T),this.activeStreamPorts.has(r)&&(this.logger.error(`[BodhiExtClient] Bodhi port disconnected for ${r}`),e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:r,error:{message:"Connection to Bodhi extension closed unexpectedly",type:"network_error"}}),this.activeStreamPorts.delete(r))});const p={type:m.STREAM_REQUEST,requestId:r,request:{method:s,endpoint:o,body:n,headers:u}};this.logger.debug("[BodhiExtClient] Sending stream request to bodhi port:",p),l.postMessage(p)}catch(u){const l=u;this.logger.error("[BodhiExtClient] Stream error:",JSON.stringify(l.message)),e.postMessage({type:c.EXT2EXT_CLIENT_STREAM_ERROR,requestId:r,error:{message:`uncaught error: ${JSON.stringify({error:l,message:l.message})}`,type:"extension_error"}})}}cleanupStreamPort(e){const t=this.activeStreamPorts.get(e);if(t){try{t.disconnect()}catch{}this.activeStreamPorts.delete(e)}}async requestAccess(){const e=await this.sendApiRequest("POST","/bodhi/v1/apps/request-access",{app_client_id:this.authClientId});if(!v(e))throw this.logger.error("[BodhiExtClient] Failed to get resource access scope: API error"),new Error("Failed to get resource access scope: API error");return e.body.scope}async storeTokens(e){const t=Date.now()+(e.expiresIn||3600)*1e3;await chrome.storage.session.set({accessToken:e.accessToken,refreshToken:e.refreshToken,idToken:e.idToken,expiresAt:t})}async _getAccessTokenRaw(){const{accessToken:e,expiresAt:t}=await chrome.storage.session.get(["accessToken","expiresAt"]);if(!e||!t)return null;if(Date.now()>=t-5*1e3){const{refreshToken:r}=await chrome.storage.session.get("refreshToken");return r?this._tryRefreshToken(r):null}return e}async _tryRefreshToken(e){if(this.refreshPromise)return this.logger.debug("Refresh already in progress, returning existing promise"),this.refreshPromise;this.refreshPromise=this._doRefreshToken(e);try{return await this.refreshPromise}finally{this.refreshPromise=null}}async _doRefreshToken(e){this.logger.debug("Refreshing access token");try{const t=await h.refreshAccessToken(this.authEndpoints.token,e,this.authClientId);if(t)return await this._storeRefreshedTokens(t),this.logger.info("Token refreshed successfully"),this.broadcastAuthStateChange(),t.access_token}catch(t){this.logger.warn("Token refresh failed:",t)}throw this.logger.warn("Token refresh failed, keeping tokens for manual retry"),h.createOperationError("Access token expired and unable to refresh. Try logging out and logging in again.","token_refresh_failed")}async _storeRefreshedTokens(e){const t=Date.now()+e.expires_in*1e3,r={accessToken:e.access_token,expiresAt:t};e.refresh_token&&(r.refreshToken=e.refresh_token),e.id_token&&(r.idToken=e.id_token),await chrome.storage.session.set(r)}async clearTokens(){await chrome.storage.session.remove(["accessToken","refreshToken","idToken","expiresAt","codeVerifier","state","authInProgress","bodhiUserInfo"])}parseJwt(e){const r=e.split(".")[1].replace(/-/g,"+").replace(/_/g,"/"),i=decodeURIComponent(atob(r).split("").map(s=>"%"+("00"+s.charCodeAt(0).toString(16)).slice(-2)).join(""));return JSON.parse(i)}createErrorClientNotInitialized(e){return`Client not initialized. Extension discovery not triggered nor extensionId set, cannot handle request: ${JSON.stringify(e)}`}};I.STREAM_TIMEOUT=12e4;let f=I;exports.BodhiExtClient=f;exports.DISCOVERY_ATTEMPTS=N;exports.DISCOVERY_ATTEMPT_TIMEOUT=X;exports.DISCOVERY_ATTEMPT_WAIT_MS=O;exports.DISCOVERY_TIMEOUT_MS=w;exports.EXT2EXT_CLIENT_ACTIONS=S;exports.EXT2EXT_CLIENT_MESSAGE_TYPES=c;exports.EXT2EXT_CLIENT_STREAM_PORT=x;exports.ExtUIClient=V;exports.isExtClientApiError=P;