@crittora/sdk-js 2.0.0

package/dist/errors/authenticationError.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthenticationError = void 0;
+var errors_1 = require("../errors");
+Object.defineProperty(exports, "AuthenticationError", { enumerable: true, get: function () { return errors_1.AuthError; } });
+//# sourceMappingURL=authenticationError.js.map

package/dist/errors/authenticationError.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authenticationError.js","sourceRoot":"","sources":["../../src/errors/authenticationError.ts"],"names":[],"mappings":";;;AAAA,oCAA6D;AAApD,6GAAA,SAAS,OAAuB"}

package/dist/errors/crittoraErrors.d.ts

@@ -0,0 +1 @@
+export { AuthError as AuthenticationError, CrittoraError, DecryptError as DecryptionError, EncryptError as EncryptionError, RateLimitError, RequestError, ValidationError, } from "../errors";

package/dist/errors/crittoraErrors.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ValidationError = exports.RequestError = exports.RateLimitError = exports.EncryptionError = exports.DecryptionError = exports.CrittoraError = exports.AuthenticationError = void 0;
+var errors_1 = require("../errors");
+Object.defineProperty(exports, "AuthenticationError", { enumerable: true, get: function () { return errors_1.AuthError; } });
+Object.defineProperty(exports, "CrittoraError", { enumerable: true, get: function () { return errors_1.CrittoraError; } });
+Object.defineProperty(exports, "DecryptionError", { enumerable: true, get: function () { return errors_1.DecryptError; } });
+Object.defineProperty(exports, "EncryptionError", { enumerable: true, get: function () { return errors_1.EncryptError; } });
+Object.defineProperty(exports, "RateLimitError", { enumerable: true, get: function () { return errors_1.RateLimitError; } });
+Object.defineProperty(exports, "RequestError", { enumerable: true, get: function () { return errors_1.RequestError; } });
+Object.defineProperty(exports, "ValidationError", { enumerable: true, get: function () { return errors_1.ValidationError; } });
+//# sourceMappingURL=crittoraErrors.js.map

package/dist/errors/crittoraErrors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crittoraErrors.js","sourceRoot":"","sources":["../../src/errors/crittoraErrors.ts"],"names":[],"mappings":";;;AAAA,oCAQmB;AAPjB,6GAAA,SAAS,OAAuB;AAChC,uGAAA,aAAa,OAAA;AACb,yGAAA,YAAY,OAAmB;AAC/B,yGAAA,YAAY,OAAmB;AAC/B,wGAAA,cAAc,OAAA;AACd,sGAAA,YAAY,OAAA;AACZ,yGAAA,eAAe,OAAA"}

package/dist/errors.d.ts

@@ -0,0 +1,33 @@
+export interface CrittoraErrorOptions {
+    code: string;
+    status?: number;
+    details?: unknown;
+    requestId?: string;
+    cause?: unknown;
+}
+export declare class CrittoraError extends Error {
+    readonly code: string;
+    readonly status?: number;
+    readonly details?: unknown;
+    readonly requestId?: string;
+    readonly cause?: unknown;
+    constructor(message: string, options: CrittoraErrorOptions);
+}
+export declare class ValidationError extends CrittoraError {
+    constructor(message: string, details?: unknown);
+}
+export declare class AuthError extends CrittoraError {
+    constructor(message: string, details?: unknown, cause?: unknown);
+}
+export declare class RequestError extends CrittoraError {
+    constructor(message: string, options?: Omit<CrittoraErrorOptions, "code">);
+}
+export declare class RateLimitError extends CrittoraError {
+    constructor(message: string, options?: Omit<CrittoraErrorOptions, "code">);
+}
+export declare class EncryptError extends CrittoraError {
+    constructor(message: string, options?: Omit<CrittoraErrorOptions, "code">);
+}
+export declare class DecryptError extends CrittoraError {
+    constructor(message: string, options?: Omit<CrittoraErrorOptions, "code">);
+}

package/dist/errors.js

@@ -0,0 +1,59 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DecryptError = exports.EncryptError = exports.RateLimitError = exports.RequestError = exports.AuthError = exports.ValidationError = exports.CrittoraError = void 0;
+class CrittoraError extends Error {
+    constructor(message, options) {
+        super(message);
+        this.name = "CrittoraError";
+        this.code = options.code;
+        this.status = options.status;
+        this.details = options.details;
+        this.requestId = options.requestId;
+        this.cause = options.cause;
+        Object.setPrototypeOf(this, new.target.prototype);
+    }
+}
+exports.CrittoraError = CrittoraError;
+class ValidationError extends CrittoraError {
+    constructor(message, details) {
+        super(message, { code: "VALIDATION_ERROR", details });
+        this.name = "ValidationError";
+    }
+}
+exports.ValidationError = ValidationError;
+class AuthError extends CrittoraError {
+    constructor(message, details, cause) {
+        super(message, { code: "AUTH_ERROR", details, cause });
+        this.name = "AuthError";
+    }
+}
+exports.AuthError = AuthError;
+class RequestError extends CrittoraError {
+    constructor(message, options = {}) {
+        super(message, { code: "REQUEST_ERROR", ...options });
+        this.name = "RequestError";
+    }
+}
+exports.RequestError = RequestError;
+class RateLimitError extends CrittoraError {
+    constructor(message, options = {}) {
+        super(message, { code: "RATE_LIMIT_ERROR", ...options });
+        this.name = "RateLimitError";
+    }
+}
+exports.RateLimitError = RateLimitError;
+class EncryptError extends CrittoraError {
+    constructor(message, options = {}) {
+        super(message, { code: "ENCRYPT_ERROR", ...options });
+        this.name = "EncryptError";
+    }
+}
+exports.EncryptError = EncryptError;
+class DecryptError extends CrittoraError {
+    constructor(message, options = {}) {
+        super(message, { code: "DECRYPT_ERROR", ...options });
+        this.name = "DecryptError";
+    }
+}
+exports.DecryptError = DecryptError;
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":";;;AAQA,MAAa,aAAc,SAAQ,KAAK;IAOtC,YAAY,OAAe,EAAE,OAA6B;QACxD,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,eAAe,CAAC;QAC5B,IAAI,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QACzB,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;QAC3B,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACpD,CAAC;CACF;AAjBD,sCAiBC;AAED,MAAa,eAAgB,SAAQ,aAAa;IAChD,YAAY,OAAe,EAAE,OAAiB;QAC5C,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,kBAAkB,EAAE,OAAO,EAAE,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;IAChC,CAAC;CACF;AALD,0CAKC;AAED,MAAa,SAAU,SAAQ,aAAa;IAC1C,YAAY,OAAe,EAAE,OAAiB,EAAE,KAAe;QAC7D,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QACvD,IAAI,CAAC,IAAI,GAAG,WAAW,CAAC;IAC1B,CAAC;CACF;AALD,8BAKC;AAED,MAAa,YAAa,SAAQ,aAAa;IAC7C,YACE,OAAe,EACf,UAA8C,EAAE;QAEhD,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;IAC7B,CAAC;CACF;AARD,oCAQC;AAED,MAAa,cAAe,SAAQ,aAAa;IAC/C,YACE,OAAe,EACf,UAA8C,EAAE;QAEhD,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,kBAAkB,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;QACzD,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;IAC/B,CAAC;CACF;AARD,wCAQC;AAED,MAAa,YAAa,SAAQ,aAAa;IAC7C,YACE,OAAe,EACf,UAA8C,EAAE;QAEhD,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;IAC7B,CAAC;CACF;AARD,oCAQC;AAED,MAAa,YAAa,SAAQ,aAAa;IAC7C,YACE,OAAe,EACf,UAA8C,EAAE;QAEhD,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;IAC7B,CAAC;CACF;AARD,oCAQC"}

package/dist/index.d.ts

@@ -0,0 +1,7 @@
+export * from "./client";
+export * from "./crittora";
+export * from "./types";
+export * from "./errors";
+export * from "./auth/types";
+export * from "./auth/bearer";
+export * from "./auth/cognito";

package/dist/index.js

@@ -0,0 +1,24 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./client"), exports);
+__exportStar(require("./crittora"), exports);
+__exportStar(require("./types"), exports);
+__exportStar(require("./errors"), exports);
+__exportStar(require("./auth/types"), exports);
+__exportStar(require("./auth/bearer"), exports);
+__exportStar(require("./auth/cognito"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAyB;AACzB,6CAA2B;AAC3B,0CAAwB;AACxB,2CAAyB;AACzB,+CAA6B;AAC7B,gDAA8B;AAC9B,iDAA+B"}

package/dist/resources/crypto.d.ts

@@ -0,0 +1,14 @@
+import { DecryptInput, DecryptResult, DecryptVerifyInput, DecryptVerifyResult, EncryptInput, EncryptResult } from "../types";
+import { AuthProvider } from "../auth/types";
+import { HttpTransport } from "../transport/httpTransport";
+export declare class CryptoResource {
+    private readonly transport;
+    private readonly authProvider?;
+    constructor(transport: HttpTransport, authProvider?: AuthProvider | undefined);
+    encrypt(input: EncryptInput): Promise<EncryptResult>;
+    decrypt(input: DecryptInput): Promise<DecryptResult>;
+    decryptVerify(input: DecryptVerifyInput): Promise<DecryptVerifyResult>;
+    private serializePermissions;
+    private wrapEncryptError;
+    private wrapDecryptError;
+}

package/dist/resources/crypto.js

@@ -0,0 +1,102 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CryptoResource = void 0;
+const errors_1 = require("../errors");
+class CryptoResource {
+    constructor(transport, authProvider) {
+        this.transport = transport;
+        this.authProvider = authProvider;
+    }
+    async encrypt(input) {
+        try {
+            const result = await this.transport.request({
+                path: "/encrypt",
+                body: {
+                    data: input.data,
+                    requested_actions: ["e"],
+                    ...(input.permissions && {
+                        permissions: this.serializePermissions(input.permissions),
+                    }),
+                },
+            }, this.authProvider);
+            return {
+                encryptedData: result.encrypted_data,
+                transactionId: result.transactionId,
+            };
+        }
+        catch (error) {
+            throw this.wrapEncryptError("Encryption failed", error);
+        }
+    }
+    async decrypt(input) {
+        try {
+            const result = await this.transport.request({
+                path: "/decrypt",
+                body: {
+                    encrypted_data: input.encryptedData,
+                    ...(input.permissions && {
+                        permissions: this.serializePermissions(input.permissions),
+                    }),
+                },
+            }, this.authProvider);
+            return {
+                decryptedData: result.decrypted_data,
+                transactionId: result.transactionId,
+            };
+        }
+        catch (error) {
+            throw this.wrapDecryptError("Decryption failed", error);
+        }
+    }
+    async decryptVerify(input) {
+        try {
+            const result = await this.transport.request({
+                path: "/decrypt-verify",
+                body: {
+                    encrypted_data: input.encryptedData,
+                    ...(input.permissions && {
+                        permissions: this.serializePermissions(input.permissions),
+                    }),
+                },
+            }, this.authProvider);
+            return {
+                decryptedData: result.decrypted_data,
+                isValidSignature: result.is_valid_signature,
+                transactionId: result.transactionId,
+            };
+        }
+        catch (error) {
+            throw this.wrapDecryptError("Decrypt-verify failed", error);
+        }
+    }
+    serializePermissions(permissions) {
+        return (permissions ?? []).map((permission) => ({
+            partner_id: permission.partnerId,
+            permissions: permission.actions,
+        }));
+    }
+    wrapEncryptError(message, error) {
+        if (error instanceof errors_1.RequestError) {
+            return new errors_1.EncryptError(message, {
+                status: error.status,
+                details: error.details,
+                requestId: error.requestId,
+                cause: error,
+            });
+        }
+        return new errors_1.EncryptError(message, { cause: error });
+    }
+    wrapDecryptError(message, error) {
+        if (error instanceof errors_1.RequestError) {
+            return new errors_1.DecryptError(message, {
+                status: error.status,
+                details: error.details,
+                requestId: error.requestId,
+                cause: error,
+            });
+        }
+        return new errors_1.DecryptError(message, { cause: error });
+    }
+}
+exports.CryptoResource = CryptoResource;
+//# sourceMappingURL=crypto.js.map

package/dist/resources/crypto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.js","sourceRoot":"","sources":["../../src/resources/crypto.ts"],"names":[],"mappings":";;;AAcA,sCAAqE;AAErE,MAAa,cAAc;IACzB,YACmB,SAAwB,EACxB,YAA2B;QAD3B,cAAS,GAAT,SAAS,CAAe;QACxB,iBAAY,GAAZ,YAAY,CAAe;IAC3C,CAAC;IAEJ,KAAK,CAAC,OAAO,CAAC,KAAmB;QAC/B,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CACzC;gBACE,IAAI,EAAE,UAAU;gBAChB,IAAI,EAAE;oBACJ,IAAI,EAAE,KAAK,CAAC,IAAI;oBAChB,iBAAiB,EAAE,CAAC,GAAG,CAAC;oBACxB,GAAG,CAAC,KAAK,CAAC,WAAW,IAAI;wBACvB,WAAW,EAAE,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,WAAW,CAAC;qBAC1D,CAAC;iBACH;aACF,EACD,IAAI,CAAC,YAAY,CAClB,CAAC;YAEF,OAAO;gBACL,aAAa,EAAE,MAAM,CAAC,cAAc;gBACpC,aAAa,EAAE,MAAM,CAAC,aAAa;aACpC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,CAAC,gBAAgB,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,KAAmB;QAC/B,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CACzC;gBACE,IAAI,EAAE,UAAU;gBAChB,IAAI,EAAE;oBACJ,cAAc,EAAE,KAAK,CAAC,aAAa;oBACnC,GAAG,CAAC,KAAK,CAAC,WAAW,IAAI;wBACvB,WAAW,EAAE,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,WAAW,CAAC;qBAC1D,CAAC;iBACH;aACF,EACD,IAAI,CAAC,YAAY,CAClB,CAAC;YAEF,OAAO;gBACL,aAAa,EAAE,MAAM,CAAC,cAAc;gBACpC,aAAa,EAAE,MAAM,CAAC,aAAa;aACpC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,CAAC,gBAAgB,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;IAED,KAAK,CAAC,aAAa,CACjB,KAAyB;QAEzB,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CACzC;gBACE,IAAI,EAAE,iBAAiB;gBACvB,IAAI,EAAE;oBACJ,cAAc,EAAE,KAAK,CAAC,aAAa;oBACnC,GAAG,CAAC,KAAK,CAAC,WAAW,IAAI;wBACvB,WAAW,EAAE,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,WAAW,CAAC;qBAC1D,CAAC;iBACH;aACF,EACD,IAAI,CAAC,YAAY,CAClB,CAAC;YAEF,OAAO;gBACL,aAAa,EAAE,MAAM,CAAC,cAAc;gBACpC,gBAAgB,EAAE,MAAM,CAAC,kBAAkB;gBAC3C,aAAa,EAAE,MAAM,CAAC,aAAa;aACpC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,CAAC,gBAAgB,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC;IAEO,oBAAoB,CAC1B,WAAwC;QAExC,OAAO,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC;YAC9C,UAAU,EAAE,UAAU,CAAC,SAAS;YAChC,WAAW,EAAE,UAAU,CAAC,OAAO;SAChC,CAAC,CAAC,CAAC;IACN,CAAC;IAEO,gBAAgB,CAAC,OAAe,EAAE,KAAc;QACtD,IAAI,KAAK,YAAY,qBAAY,EAAE,CAAC;YAClC,OAAO,IAAI,qBAAY,CAAC,OAAO,EAAE;gBAC/B,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,KAAK,EAAE,KAAK;aACb,CAAC,CAAC;QACL,CAAC;QAED,OAAO,IAAI,qBAAY,CAAC,OAAO,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IACrD,CAAC;IAEO,gBAAgB,CAAC,OAAe,EAAE,KAAc;QACtD,IAAI,KAAK,YAAY,qBAAY,EAAE,CAAC;YAClC,OAAO,IAAI,qBAAY,CAAC,OAAO,EAAE;gBAC/B,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,KAAK,EAAE,KAAK;aACb,CAAC,CAAC;QACL,CAAC;QAED,OAAO,IAAI,qBAAY,CAAC,OAAO,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IACrD,CAAC;CACF;AApHD,wCAoHC"}

package/dist/transport/httpTransport.d.ts

@@ -0,0 +1,16 @@
+import { AuthProvider } from "../auth/types";
+import { CrittoraClientOptions, RequestContext, RequestOptions } from "../types";
+export declare class HttpTransport {
+    private readonly context;
+    private readonly fetchImpl;
+    private readonly retryOptions;
+    constructor(context: RequestContext, options: Pick<CrittoraClientOptions, "fetch" | "retry">);
+    request<T>(request: RequestOptions, authProvider?: AuthProvider): Promise<T>;
+    private executeRequest;
+    private buildHeaders;
+    private unwrapBody;
+    private parseBody;
+    private extractErrorMessage;
+    private shouldRetry;
+    private delay;
+}

package/dist/transport/httpTransport.js

@@ -0,0 +1,158 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HttpTransport = void 0;
+const errors_1 = require("../errors");
+const DEFAULT_RETRY_OPTIONS = {
+    maxAttempts: 1,
+    backoffMs: 250,
+    retryOn: [429, 500, 502, 503, 504],
+};
+class HttpTransport {
+    constructor(context, options) {
+        this.context = context;
+        if (!options.fetch && typeof globalThis.fetch !== "function") {
+            throw new errors_1.ValidationError("No fetch implementation available. Use Node 18+ or pass `fetch` in the client options.");
+        }
+        this.fetchImpl = options.fetch ?? globalThis.fetch;
+        this.retryOptions = {
+            ...DEFAULT_RETRY_OPTIONS,
+            ...(options.retry ?? {}),
+        };
+    }
+    async request(request, authProvider) {
+        let lastError;
+        for (let attempt = 1; attempt <= this.retryOptions.maxAttempts; attempt += 1) {
+            try {
+                return await this.executeRequest(request, authProvider);
+            }
+            catch (error) {
+                lastError = error;
+                if (!this.shouldRetry(error, attempt)) {
+                    throw error;
+                }
+                await this.delay(this.retryOptions.backoffMs * attempt);
+            }
+        }
+        throw lastError;
+    }
+    async executeRequest(request, authProvider) {
+        const controller = new AbortController();
+        const timeout = setTimeout(() => controller.abort(), this.context.timeoutMs);
+        try {
+            const headers = await this.buildHeaders(request.headers, authProvider);
+            const response = await this.fetchImpl(`${this.context.baseUrl}${request.path}`, {
+                method: request.method ?? "POST",
+                headers,
+                body: request.body === undefined ? undefined : JSON.stringify(request.body),
+                signal: request.signal ?? controller.signal,
+            });
+            const rawText = await response.text();
+            const parsedBody = this.parseBody(rawText);
+            const requestId = response.headers.get("x-request-id") ?? undefined;
+            if (!response.ok) {
+                const message = this.extractErrorMessage(parsedBody, response.status);
+                const errorOptions = {
+                    status: response.status,
+                    details: parsedBody,
+                    requestId,
+                };
+                if (response.status === 429) {
+                    throw new errors_1.RateLimitError(message, errorOptions);
+                }
+                throw new errors_1.RequestError(message, errorOptions);
+            }
+            return this.unwrapBody(parsedBody);
+        }
+        catch (error) {
+            if (error instanceof Error && error.name === "AbortError") {
+                throw new errors_1.RequestError("Request timed out", {
+                    details: { timeoutMs: this.context.timeoutMs },
+                    cause: error,
+                });
+            }
+            if (error instanceof errors_1.RequestError || error instanceof errors_1.RateLimitError) {
+                throw error;
+            }
+            throw new errors_1.RequestError("Request failed", { cause: error });
+        }
+        finally {
+            clearTimeout(timeout);
+        }
+    }
+    async buildHeaders(requestHeaders, authProvider) {
+        const headers = {
+            "Content-Type": "application/json",
+            ...this.context.headers,
+            ...requestHeaders,
+        };
+        if (this.context.userAgent) {
+            headers["User-Agent"] = this.context.userAgent;
+        }
+        if (this.context.credentials?.apiKey) {
+            headers["api_key"] = this.context.credentials.apiKey;
+        }
+        if (this.context.credentials?.accessKey) {
+            headers["access_key"] = this.context.credentials.accessKey;
+        }
+        if (this.context.credentials?.secretKey) {
+            headers["secret_key"] = this.context.credentials.secretKey;
+        }
+        const authorization = await authProvider?.getAuthorizationHeader();
+        if (authorization) {
+            headers.Authorization = authorization;
+        }
+        return headers;
+    }
+    unwrapBody(parsedBody) {
+        if (parsedBody &&
+            typeof parsedBody === "object" &&
+            "body" in parsedBody &&
+            typeof parsedBody.body === "string") {
+            return this.parseBody(parsedBody.body);
+        }
+        return parsedBody;
+    }
+    parseBody(rawText) {
+        if (!rawText) {
+            return undefined;
+        }
+        try {
+            return JSON.parse(rawText);
+        }
+        catch {
+            return rawText;
+        }
+    }
+    extractErrorMessage(body, status) {
+        if (typeof body === "string" && body.trim()) {
+            return body;
+        }
+        if (body && typeof body === "object") {
+            const candidate = body;
+            const message = candidate.message ??
+                candidate.error ??
+                candidate.error_description ??
+                candidate.detail;
+            if (typeof message === "string" && message.trim()) {
+                return message;
+            }
+        }
+        return `Request failed with status ${status}`;
+    }
+    shouldRetry(error, attempt) {
+        if (attempt >= this.retryOptions.maxAttempts) {
+            return false;
+        }
+        if (error instanceof errors_1.RequestError &&
+            typeof error.status === "number" &&
+            this.retryOptions.retryOn.includes(error.status)) {
+            return true;
+        }
+        return error instanceof errors_1.RateLimitError;
+    }
+    async delay(ms) {
+        await new Promise((resolve) => setTimeout(resolve, ms));
+    }
+}
+exports.HttpTransport = HttpTransport;
+//# sourceMappingURL=httpTransport.js.map

package/dist/transport/httpTransport.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"httpTransport.js","sourceRoot":"","sources":["../../src/transport/httpTransport.ts"],"names":[],"mappings":";;;AAOA,sCAA0E;AAE1E,MAAM,qBAAqB,GAA2B;IACpD,WAAW,EAAE,CAAC;IACd,SAAS,EAAE,GAAG;IACd,OAAO,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC;CACnC,CAAC;AAEF,MAAa,aAAa;IAIxB,YACmB,OAAuB,EACxC,OAAuD;QADtC,YAAO,GAAP,OAAO,CAAgB;QAGxC,IAAI,CAAC,OAAO,CAAC,KAAK,IAAI,OAAO,UAAU,CAAC,KAAK,KAAK,UAAU,EAAE,CAAC;YAC7D,MAAM,IAAI,wBAAe,CACvB,wFAAwF,CACzF,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,KAAK,IAAI,UAAU,CAAC,KAAK,CAAC;QACnD,IAAI,CAAC,YAAY,GAAG;YAClB,GAAG,qBAAqB;YACxB,GAAG,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;SACzB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,OAAO,CACX,OAAuB,EACvB,YAA2B;QAE3B,IAAI,SAAkB,CAAC;QAEvB,KACE,IAAI,OAAO,GAAG,CAAC,EACf,OAAO,IAAI,IAAI,CAAC,YAAY,CAAC,WAAW,EACxC,OAAO,IAAI,CAAC,EACZ,CAAC;YACD,IAAI,CAAC;gBACH,OAAO,MAAM,IAAI,CAAC,cAAc,CAAI,OAAO,EAAE,YAAY,CAAC,CAAC;YAC7D,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,SAAS,GAAG,KAAK,CAAC;gBAElB,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,OAAO,CAAC,EAAE,CAAC;oBACtC,MAAM,KAAK,CAAC;gBACd,CAAC;gBAED,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,SAAS,GAAG,OAAO,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC;QAED,MAAM,SAAS,CAAC;IAClB,CAAC;IAEO,KAAK,CAAC,cAAc,CAC1B,OAAuB,EACvB,YAA2B;QAE3B,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAE7E,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;YACvE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,SAAS,CACnC,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,EACxC;gBACE,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,MAAM;gBAChC,OAAO;gBACP,IAAI,EACF,OAAO,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC;gBACvE,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,UAAU,CAAC,MAAM;aAC5C,CACF,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACtC,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YAC3C,MAAM,SAAS,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,SAAS,CAAC;YAEpE,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,OAAO,GAAG,IAAI,CAAC,mBAAmB,CAAC,UAAU,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;gBACtE,MAAM,YAAY,GAAG;oBACnB,MAAM,EAAE,QAAQ,CAAC,MAAM;oBACvB,OAAO,EAAE,UAAU;oBACnB,SAAS;iBACV,CAAC;gBAEF,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBAC5B,MAAM,IAAI,uBAAc,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;gBAClD,CAAC;gBAED,MAAM,IAAI,qBAAY,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;YAChD,CAAC;YAED,OAAO,IAAI,CAAC,UAAU,CAAC,UAAU,CAAM,CAAC;QAC1C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC1D,MAAM,IAAI,qBAAY,CAAC,mBAAmB,EAAE;oBAC1C,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE;oBAC9C,KAAK,EAAE,KAAK;iBACb,CAAC,CAAC;YACL,CAAC;YAED,IAAI,KAAK,YAAY,qBAAY,IAAI,KAAK,YAAY,uBAAc,EAAE,CAAC;gBACrE,MAAM,KAAK,CAAC;YACd,CAAC;YAED,MAAM,IAAI,qBAAY,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;QAC7D,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,YAAY,CACxB,cAAuC,EACvC,YAA2B;QAE3B,MAAM,OAAO,GAA2B;YACtC,cAAc,EAAE,kBAAkB;YAClC,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO;YACvB,GAAG,cAAc;SAClB,CAAC;QAEF,IAAI,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;YAC3B,OAAO,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC;QACjD,CAAC;QAED,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,MAAM,EAAE,CAAC;YACrC,OAAO,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC;QACvD,CAAC;QAED,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,SAAS,EAAE,CAAC;YACxC,OAAO,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,SAAS,CAAC;QAC7D,CAAC;QAED,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,SAAS,EAAE,CAAC;YACxC,OAAO,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,SAAS,CAAC;QAC7D,CAAC;QAED,MAAM,aAAa,GAAG,MAAM,YAAY,EAAE,sBAAsB,EAAE,CAAC;QACnE,IAAI,aAAa,EAAE,CAAC;YAClB,OAAO,CAAC,aAAa,GAAG,aAAa,CAAC;QACxC,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAEO,UAAU,CAAC,UAAmB;QACpC,IACE,UAAU;YACV,OAAO,UAAU,KAAK,QAAQ;YAC9B,MAAM,IAAI,UAAU;YACpB,OAAQ,UAAiC,CAAC,IAAI,KAAK,QAAQ,EAC3D,CAAC;YACD,OAAO,IAAI,CAAC,SAAS,CAAE,UAA+B,CAAC,IAAI,CAAC,CAAC;QAC/D,CAAC;QAED,OAAO,UAAU,CAAC;IACpB,CAAC;IAEO,SAAS,CAAC,OAAe;QAC/B,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC7B,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IAEO,mBAAmB,CAAC,IAAa,EAAE,MAAc;QACvD,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;YAC5C,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACrC,MAAM,SAAS,GAAG,IAA+B,CAAC;YAClD,MAAM,OAAO,GACX,SAAS,CAAC,OAAO;gBACjB,SAAS,CAAC,KAAK;gBACf,SAAS,CAAC,iBAAiB;gBAC3B,SAAS,CAAC,MAAM,CAAC;YAEnB,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;gBAClD,OAAO,OAAO,CAAC;YACjB,CAAC;QACH,CAAC;QAED,OAAO,8BAA8B,MAAM,EAAE,CAAC;IAChD,CAAC;IAEO,WAAW,CAAC,KAAc,EAAE,OAAe;QACjD,IAAI,OAAO,IAAI,IAAI,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;YAC7C,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IACE,KAAK,YAAY,qBAAY;YAC7B,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ;YAChC,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,EAChD,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,KAAK,YAAY,uBAAc,CAAC;IACzC,CAAC;IAEO,KAAK,CAAC,KAAK,CAAC,EAAU;QAC5B,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;IAC1D,CAAC;CACF;AA7MD,sCA6MC"}

package/dist/types.d.ts

@@ -0,0 +1,101 @@
+export type FetchLike = typeof globalThis.fetch;
+export interface ApiCredentials {
+    apiKey: string;
+    accessKey?: string;
+    secretKey?: string;
+}
+export interface RetryOptions {
+    maxAttempts?: number;
+    backoffMs?: number;
+    retryOn?: number[];
+}
+export interface BearerAuthConfig {
+    type: "bearer";
+    token: string;
+}
+export interface Permission {
+    partnerId: string;
+    actions: string[];
+}
+export interface EncryptInput {
+    data: string;
+    permissions?: Permission[];
+}
+export interface EncryptResult {
+    encryptedData: string;
+    transactionId?: string;
+}
+export interface DecryptInput {
+    encryptedData: string;
+    permissions?: Permission[];
+}
+export interface DecryptResult {
+    decryptedData: string;
+    transactionId?: string;
+}
+export interface DecryptVerifyInput {
+    encryptedData: string;
+    permissions?: Permission[];
+}
+export interface DecryptVerifyResult {
+    decryptedData: string;
+    isValidSignature: boolean;
+    transactionId?: string;
+}
+export interface AuthTokens {
+    idToken: string;
+    accessToken: string;
+    refreshToken: string;
+}
+export interface CognitoAuthConfig {
+    userPoolId: string;
+    clientId: string;
+    username?: string;
+    password?: string;
+}
+export interface CrittoraClientOptions {
+    baseUrl?: string;
+    credentials?: ApiCredentials;
+    auth?: BearerAuthConfig | import("./auth/types").AuthProvider;
+    fetch?: FetchLike;
+    timeoutMs?: number;
+    retry?: RetryOptions;
+    headers?: Record<string, string>;
+    userAgent?: string;
+}
+export interface RequestOptions {
+    path: string;
+    method?: "POST";
+    body?: unknown;
+    headers?: Record<string, string>;
+    signal?: AbortSignal;
+}
+export interface RequestContext {
+    baseUrl: string;
+    credentials?: ApiCredentials;
+    headers?: Record<string, string>;
+    timeoutMs: number;
+    userAgent?: string;
+}
+export interface WirePermission {
+    partner_id: string;
+    permissions: string[];
+}
+export interface WireEncryptResult {
+    encrypted_data: string;
+    transactionId?: string;
+}
+export interface WireDecryptResult {
+    decrypted_data: string;
+    transactionId?: string;
+}
+export interface WireDecryptVerifyResult {
+    decrypted_data: string;
+    is_valid_signature: boolean;
+    transactionId?: string;
+}
+export interface LegacyAuthResponse {
+    IdToken: string;
+    AccessToken: string;
+    RefreshToken: string;
+}

package/dist/types.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}