@fanfare-io/fanfare-sdk-core 0.1.0

package/dist/core/client.js

@@ -0,0 +1,2 @@
+import{AppointmentManagementModule as e}from"../appointments/appointment.module.js";import{AuctionManagementModule as t}from"../auctions/auction.module.js";import{AuthenticationModule as r}from"../auth/auth.module.js";import{BeaconTrackingModule as n}from"../beacon/beacon.module.js";import{ChallengeManagementModule as i}from"../challenges/challenge.module.js";import{Config as o}from"../config/index.js";import{DrawManagementModule as s}from"../draws/draw.module.js";import{ExperienceManagementModule as a}from"../experiences/experience.module.js";import{ExperienceJourney as d}from"../experiences/journey.js";import{QueueManagementModule as l}from"../queues/queue.module.js";import{resolveCapabilityOptions as c}from"../state/capability-token-registry.js";import{getEventBus as u}from"../state/events.js";import{getSDKStore as g}from"../state/store.js";import{CrossTabCoordinator as y}from"../sync/cross-tab-coordinator.js";import{TimedReleaseManagementModule as f}from"../timed-releases/timed-release.module.js";import{version as p}from"../version.js";import{WaitlistManagementModule as m}from"../waitlists/waitlist.module.js";import{FanfareError as b,ErrorCodes as w}from"./errors.js";import{createHttpClient as h}from"./http.js";import{createLogger as v}from"./logger.js";let M=null;async function I(I){const S=new o(I),j=S.get(),A=v({enabled:j.debug||!1,level:j.debug?"debug":"warn",prefix:"Fanfare"});if(A.info("Initializing Fanfare SDK",{organizationId:I.organizationId,environment:j.environment}),M)throw new b("Fanfare SDK is already initialized. The SDK uses a shared event bus and store; multiple concurrent instances will corrupt state and analytics. Call destroy() on the existing instance before initializing a new one.",w.ALREADY_INITIALIZED);const k=/* @__PURE__ */Symbol("fanfare-sdk"),x=h({baseUrl:S.apiUrl,credentials:j.credentials,headers:{"X-Organization-Id":I.organizationId,"X-Publishable-Key":I.publishableKey,"X-Fanfare-API-Version":"2025-01-15","X-Fanfare-SDK-Version":p,"X-Fanfare-Client-Type":"browser"},timeout:3e4,retryConfig:{maxRetries:3,delayTimer:1e3,retryOnNetworkError:!0}},j),D=h({baseUrl:S.beaconUrl,credentials:j.credentials,headers:{"X-Organization-Id":I.organizationId,"X-Publishable-Key":I.publishableKey,"X-Fanfare-API-Version":"2025-01-15","X-Fanfare-SDK-Version":p,"X-Fanfare-Client-Type":"browser"},timeout:3e4,retryConfig:{maxRetries:3,delayTimer:1e3,retryOnNetworkError:!0}},j),E=new r(x,D),q=new i(x),C=new l(x),R=new s(x),z=new t(x),F=new e(x),O=new m(x),K=new f(x),X=new a(x,C,R,z,O,K),P=new n(D,j.beacon||{}),T=u(),J=g(),$=/* @__PURE__ */new Map,N=/* @__PURE__ */new Map,V=/* @__PURE__ */new Map;let B,U;const L=e=>{const t=N.get(e);if(t)return A.debug("Returning existing journey handle",{experienceId:e}),t;A.info("Creating new journey",{experienceId:e});const r=new d(e,B);$.set(e,r),U?.registerJourney(r);const n={view$:r.view$,events$:r.events$,latestEvent$:r.latestEvent$,snapshot$:r.state,ackEvent:e=>r.ackEvent(e),ackAllEvents:()=>r.ackAllEvents(),destroy:()=>{r.destroy(),U?.unregisterJourney(e),$.delete(e),N.delete(e)}};return N.set(e,n),n},G=async e=>{const t=e??await X.getMe(),r=/* @__PURE__ */new Set,n=new Set(t.active.journeys.map(e=>e.experienceId));for(const i of n)L(i);for(const i of n){const e=$.get(i);e&&await e.resumeFromMe(t)&&r.add(i)}return[...r]},H={check:()=>E.check(),guest:()=>E.guest(),requestOtp:e=>E.requestOtp(e),verifyOtp:e=>E.verifyOtp(e),exchangeExternal:e=>E.exchangeExternal(e),login:e=>E.login(e),logout:()=>E.logout(),getSession:()=>E.getSession(),refresh:()=>E.refresh()},_={initiate:e=>q.initiate(e),verify:e=>q.verify(e)},Y={get:e=>L(e),list:()=>Array.from(
+/* @__PURE__ */new Set([...N.keys(),...$.keys(),...Object.keys(J.activeJourneys)])),resumeAll:e=>(async e=>{const t=/* @__PURE__ */new Set;for(const r of Object.keys(J.activeJourneys))L(r),t.add(r);if(!e&&!E.getSession())return[...t];for(const r of await G(e))t.add(r);return[...t]})(e)},Z={track:e=>P.track(e),trackBatch:e=>P.trackBatch(e),flush:()=>P.flush()},Q=(e,t)=>{if(V.has(e.id))A.warn("CDP adapter already registered, skipping",{adapterId:e.id});else{try{e.init(T,t)}catch(r){return void A.error("CDP adapter failed to initialize",{adapterId:e.id,error:r})}V.set(e.id,e),A.info("CDP adapter registered",{adapterId:e.id})}},W=(e,t)=>T.on(e,t),ee=async()=>{A.info("Destroying SDK instance");for(const t of V.values())try{t.destroy()}catch(e){A.error("CDP adapter failed to destroy",{adapterId:t.id,error:e})}V.clear();for(const t of Array.from(N.values()))try{t.destroy()}catch(e){A.error("Journey handle failed to destroy",{error:e})}$.clear(),N.clear(),"destroy"in E&&"function"==typeof E.destroy&&E.destroy(),C.destroy(),R.destroy(),z.destroy(),F.destroy(),O.destroy(),K.destroy(),X.destroy(),P.destroy(),U?.close(),T.off(),M===k&&(M=null)};B={auth:H,challenges:_,journeys:Y,queues:{get:e=>C.get(e),enter:(e,t,r)=>C.enter(e,t,c({distributionId:e},r)),leave:(e,t)=>C.leave(e,c({distributionId:e},t)),status:e=>C.status(e),startMonitoring:(e,t,r)=>C.startMonitoring(e,t,r),stopMonitoring:e=>C.stopMonitoring(e),isMonitoring:e=>C.isMonitoring(e)},draws:{get:e=>R.get(e),enter:(e,t,r)=>R.enter(e,t,c({distributionId:e},r)),leave:(e,t)=>R.leave(e,c({distributionId:e},t)),status:e=>R.status(e),startMonitoring:(e,t,r)=>R.startMonitoring(e,t,r),stopMonitoring:e=>R.stopMonitoring(e),isMonitoring:e=>R.isMonitoring(e)},auctions:{get:e=>z.get(e),bid:(e,t,r)=>z.bid(e,t,c({distributionId:e},r)),enter:(e,t,r)=>z.enter(e,t,c({distributionId:e},r)),leave:(e,t)=>z.leave(e,c({distributionId:e},t)),status:e=>z.status(e),getBidHistory:e=>z.getBidHistory(e),enableAutoRebid:(e,t,r)=>z.enableAutoRebid(e,t,r),disableAutoRebid:e=>z.disableAutoRebid(e),getAutoRebidConfig:e=>z.getAutoRebidConfig(e),startMonitoring:(e,t,r)=>z.startMonitoring(e,t,r),stopMonitoring:e=>z.stopMonitoring(e),isMonitoring:e=>z.isMonitoring(e),destroy:()=>z.destroy()},experiences:{get:e=>X.get(e),enter:e=>X.enter(e),leave:e=>X.leave(e),getMe:()=>X.getMe(),findSequence:(e,t)=>X.findSequence(e,t),validateSequenceAccess:(e,t)=>X.validateSequenceAccess(e,t),selectSequence:e=>X.selectSequence(e),getCurrentDistributions:e=>X.getCurrentDistributions(e),enterDistribution:e=>{if(!e)throw new b("Distribution is required",w.VALIDATION_ERROR);return X.enterDistribution(e)},getActiveSession:()=>X.getActiveSession(),isInExperience:e=>X.isInExperience(e),getSelectedSequence:()=>X.getSelectedSequence(),createJourney:e=>L(e),resumeJourneysFromMe:e=>G(e),destroy:()=>X.destroy()},waitlists:{enter:(e,t)=>O.enter(e,c({distributionId:e},t)),leave:(e,t)=>O.leave(e,c({distributionId:e},t)),getStatus:e=>O.getStatus(e),destroy:()=>O.destroy()},timedReleases:{get:e=>K.get(e),enter:(e,t,r)=>K.enter(e,t,c({distributionId:e},r)),leave:(e,t)=>K.leave(e,c({distributionId:e},t)),complete:(e,t)=>K.complete(e,c({distributionId:e},t)),status:e=>K.status(e),startMonitoring:(e,t,r)=>K.startMonitoring(e,t,r),stopMonitoring:e=>K.stopMonitoring(e),isMonitoring:e=>K.isMonitoring(e)},appointments:{get:e=>F.get(e),getSlots:(e,t)=>F.getSlots(e,t),getMe:e=>F.getMe(e),book:(e,t,r)=>F.book(e,t,r),cancel:(e,t,r,n)=>F.cancel(e,t,r,n),reschedule:(e,t,r)=>F.reschedule(e,t,r),startMonitoring:(e,t,r)=>F.startMonitoring(e,t,r),stopMonitoring:e=>F.stopMonitoring(e),isMonitoring:e=>F.isMonitoring(e),bumpMonitorGeneration:e=>F.bumpMonitorGeneration(e),destroy:()=>F.destroy()},beacon:Z,use:Q,on:W,destroy:ee};const te=!1!==I.sync&&"object"==typeof I.sync?I.sync:{};U=new y({enabled:!1!==I.sync&&!1!==te.enabled,channelName:te.channelName}),A.info("Inter-tab sync initialized",{tabId:U.getTabId(),enabled:U.isEnabled()});const re={auth:H,challenges:_,journeys:Y,beacon:Z,appointments:B.appointments,use:Q,on:W,destroy:ee};if(J.session)try{await E.refresh()}catch(ne){A.warn("Failed to refresh persisted session during init",ne),J.clearAll()}return M=k,A.info("SDK initialized successfully"),re}export{I as init};

package/dist/core/errors.d.ts

@@ -0,0 +1,175 @@
+import { ConsumerApiError, ErrorCode as ContractErrorCode } from '@fanfare-io/fanfare-sdk-contracts/errors';
+export type { ConsumerApiError, ValidationIssue } from '@fanfare-io/fanfare-sdk-contracts/errors';
+/**
+ * Codes for failures that never reach the wire — transport, SDK lifecycle, and
+ * client-side protocol validation. These are intentionally disjoint from the
+ * contract codes.
+ */
+export declare const SdkClientErrorCodes: {
+    readonly NETWORK_ERROR: "NETWORK_ERROR";
+    readonly TIMEOUT: "TIMEOUT";
+    readonly ABORTED: "ABORTED";
+    readonly NOT_INITIALIZED: "NOT_INITIALIZED";
+    readonly ALREADY_INITIALIZED: "ALREADY_INITIALIZED";
+    readonly INVALID_CONFIG: "INVALID_CONFIG";
+    readonly ADMISSION_PROOF_UNAVAILABLE: "ADMISSION_PROOF_UNAVAILABLE";
+    readonly PROTOCOL_ERROR: "PROTOCOL_ERROR";
+};
+export type SdkClientErrorCode = (typeof SdkClientErrorCodes)[keyof typeof SdkClientErrorCodes];
+/**
+ * The complete set of codes the SDK can surface: every canonical contract code
+ * plus the client-only codes above. Consumers read members off this object
+ * (e.g. `ErrorCodes.RATE_LIMITED`).
+ */
+export declare const ErrorCodes: {
+    readonly NETWORK_ERROR: "NETWORK_ERROR";
+    readonly TIMEOUT: "TIMEOUT";
+    readonly ABORTED: "ABORTED";
+    readonly NOT_INITIALIZED: "NOT_INITIALIZED";
+    readonly ALREADY_INITIALIZED: "ALREADY_INITIALIZED";
+    readonly INVALID_CONFIG: "INVALID_CONFIG";
+    readonly ADMISSION_PROOF_UNAVAILABLE: "ADMISSION_PROOF_UNAVAILABLE";
+    readonly PROTOCOL_ERROR: "PROTOCOL_ERROR";
+    readonly BOT_CHALLENGE_INVALID: "BOT_CHALLENGE_INVALID";
+    readonly BOT_CHALLENGE_EXPIRED: "BOT_CHALLENGE_EXPIRED";
+    readonly BOT_CHALLENGE_SUBJECT_MISMATCH: "BOT_CHALLENGE_SUBJECT_MISMATCH";
+    readonly ADMISSION_KEY_THUMBPRINT_REQUIRED: "ADMISSION_KEY_THUMBPRINT_REQUIRED";
+    readonly ADMISSION_PROOF_REQUIRED: "ADMISSION_PROOF_REQUIRED";
+    readonly ADMISSION_GRANT_INVALID: "ADMISSION_GRANT_INVALID";
+    readonly ADMISSION_ORIGINAL_ENTRY_REQUIRED: "ADMISSION_ORIGINAL_ENTRY_REQUIRED";
+    readonly ADMISSION_KEY_MISMATCH: "ADMISSION_KEY_MISMATCH";
+    readonly DISTRIBUTION_NOT_OPEN: "DISTRIBUTION_NOT_OPEN";
+    readonly DISTRIBUTION_CLOSED: "DISTRIBUTION_CLOSED";
+    readonly DISTRIBUTION_FULL: "DISTRIBUTION_FULL";
+    readonly FINGERPRINT_REQUIRED: "FINGERPRINT_REQUIRED";
+    readonly FINGERPRINT_DEVICE_MISMATCH: "FINGERPRINT_DEVICE_MISMATCH";
+    readonly FINGERPRINT_INVALID: "FINGERPRINT_INVALID";
+    readonly SLOT_EXPIRED: "SLOT_EXPIRED";
+    readonly SLOT_OUT_OF_WINDOW: "SLOT_OUT_OF_WINDOW";
+    readonly SLOT_NOT_AVAILABLE: "SLOT_NOT_AVAILABLE";
+    readonly ALREADY_BOOKED: "ALREADY_BOOKED";
+    readonly ACTIVE_BOOKING_EXISTS: "ACTIVE_BOOKING_EXISTS";
+    readonly NO_EXISTING_BOOKING: "NO_EXISTING_BOOKING";
+    readonly INVALID_SLOT: "INVALID_SLOT";
+    readonly NEW_SLOT_FULL: "NEW_SLOT_FULL";
+    readonly CANNOT_CANCEL_ONGOING_OR_PAST: "CANNOT_CANCEL_ONGOING_OR_PAST";
+    readonly ENTRY_TOKEN_REQUIRED: "ENTRY_TOKEN_REQUIRED";
+    readonly ENTRY_TOKEN_INVALID: "ENTRY_TOKEN_INVALID";
+    readonly ENTRY_TOKEN_EXPIRED: "ENTRY_TOKEN_EXPIRED";
+    readonly ENTRY_TOKEN_MISMATCH: "ENTRY_TOKEN_MISMATCH";
+    readonly INVALID_CREDENTIALS: "INVALID_CREDENTIALS";
+    readonly INVALID_SESSION: "INVALID_SESSION";
+    readonly INVALID_REFRESH_TOKEN: "INVALID_REFRESH_TOKEN";
+    readonly OTP_INVALID: "OTP_INVALID";
+    readonly OTP_EXPIRED: "OTP_EXPIRED";
+    readonly VALIDATION_ERROR: "VALIDATION_ERROR";
+    readonly UNAUTHORIZED: "UNAUTHORIZED";
+    readonly FORBIDDEN: "FORBIDDEN";
+    readonly NOT_FOUND: "NOT_FOUND";
+    readonly RATE_LIMITED: "RATE_LIMITED";
+    readonly RATE_LIMIT_UNAVAILABLE: "RATE_LIMIT_UNAVAILABLE";
+    readonly PAYLOAD_TOO_LARGE: "PAYLOAD_TOO_LARGE";
+    readonly INTERNAL_ERROR: "INTERNAL_ERROR";
+    readonly SERVICE_UNAVAILABLE: "SERVICE_UNAVAILABLE";
+};
+/**
+ * Codes the SDK recognizes. Open-ended via `(string & {})` so an unknown
+ * forward-compatible code from a newer server still type-checks at call sites.
+ */
+export type KnownErrorCode = ContractErrorCode | SdkClientErrorCode;
+export type ErrorCode = KnownErrorCode | (string & {});
+/**
+ * Base error class for the Fanfare SDK.
+ */
+export declare class FanfareError extends Error {
+    /** Machine-readable code. Known codes are listed in `ErrorCodes`. */
+    readonly code: KnownErrorCode | (string & {});
+    /** HTTP status code, when the error originated from a response. */
+    readonly status?: number;
+    /** Structured error details (server `details`, or the raw body). */
+    readonly details?: unknown;
+    /** Per-request tracking id echoed by the server. */
+    readonly requestId?: string;
+    /** Correlation id grouping retries of a single logical operation. */
+    readonly correlationId?: string;
+    /** Whether the operation may be retried. */
+    readonly retryable: boolean;
+    /** Server-provided retry-after, in seconds. */
+    readonly retryAfter?: number;
+    /** Validation issues, when the server returned a structured list (untyped wire data). */
+    readonly issues?: readonly unknown[];
+    /** Flow hint from the server (e.g. `"reroute"`). */
+    readonly action?: string;
+    /** Support metadata for surfacing reference/confirmation codes. */
+    readonly support?: ConsumerApiError["support"];
+    constructor(message: string, code: KnownErrorCode | (string & {}), status?: number, details?: unknown, requestId?: string, correlationId?: string, retryable?: boolean, retryAfter?: number, extra?: {
+        issues?: readonly unknown[];
+        action?: string;
+        support?: ConsumerApiError["support"];
+    });
+    /**
+     * Normalize an HTTP error response into a `FanfareError`. Preserves
+     * structured `details`, `issues`, `action`, and `support` from the canonical
+     * error envelope. Never surfaces a raw 5xx (or otherwise unsafe) `message` as
+     * display copy.
+     */
+    static fromResponse(response: Response, body?: unknown, correlationId?: string): FanfareError;
+    /** Check whether this error has a specific code. */
+    is(code: string): boolean;
+}
+/**
+ * Classify an HTTP error into a normalized code + retryability.
+ *
+ * Precedence: a top-level `code` string in the body wins (the server already
+ * spoke the canonical contract); otherwise we map by status. `retryable` is
+ * always derived from the status (429 + 5xx) so a server code can't accidentally
+ * mark a non-idempotent failure as retryable.
+ */
+export declare function classifyHttpError(status: number, body?: unknown): {
+    code: ErrorCode;
+    retryable: boolean;
+};
+/**
+ * Raised when a server response fails client-side schema validation. Carries
+ * the endpoint + raw valibot issues for diagnosis. By default the shared
+ * response-parse helper does NOT throw this — it surfaces it via the
+ * `journey:error` event bus and returns a `Result`. Callers that want
+ * exception-flow can opt in via `parseResponse(..., { throwOnFailure: true })`.
+ */
+export declare class ProtocolError extends FanfareError {
+    /** Endpoint that produced the malformed response (for triage). */
+    readonly endpoint: string;
+    /** Raw valibot issues — shape depends on the schema. */
+    readonly issues: readonly unknown[];
+    constructor(message: string, endpoint: string, issues: readonly unknown[], requestId?: string);
+}
+/** Type guard for `FanfareError`. */
+export declare function isFanfareError(error: unknown): error is FanfareError;
+/** Type guard for `ProtocolError`. */
+export declare function isProtocolError(error: unknown): error is ProtocolError;
+/**
+ * Check whether an error is a capability grant error: a 403 carrying an
+ * `ENTRY_TOKEN_*` code, read from the top-level `code` (consumer-app emits
+ * `{ code, action }` at the top level).
+ */
+export declare function isCapabilityTokenError(error: unknown): error is FanfareError;
+export declare function isCapabilityGrantError(error: unknown): error is FanfareError;
+/**
+ * Check whether a capability grant error carries a reroute action, read from the
+ * top-level `action` (consumer-app emits it top-level).
+ */
+export declare function isCapabilityTokenRerouteError(error: unknown): error is FanfareError;
+export declare function isCapabilityGrantRerouteError(error: unknown): error is FanfareError;
+/**
+ * Helpers for constructing common client-side errors.
+ */
+export declare const createError: {
+    networkError: (message: string, details?: unknown) => FanfareError;
+    timeout: (message?: string) => FanfareError;
+    unauthorized: (message?: string) => FanfareError;
+    invalidSession: (message?: string) => FanfareError;
+    notInitialized: (message?: string) => FanfareError;
+    invalidConfig: (message: string, details?: unknown) => FanfareError;
+    validationError: (message: string, details?: unknown) => FanfareError;
+    internalError: (message: string, details?: unknown) => FanfareError;
+};

package/dist/core/errors.js

@@ -0,0 +1 @@
+import{ErrorCodeMap as I}from"@fanfare-io/fanfare-sdk-contracts/errors";const e={NETWORK_ERROR:"NETWORK_ERROR",TIMEOUT:"TIMEOUT",ABORTED:"ABORTED",NOT_INITIALIZED:"NOT_INITIALIZED",ALREADY_INITIALIZED:"ALREADY_INITIALIZED",INVALID_CONFIG:"INVALID_CONFIG",ADMISSION_PROOF_UNAVAILABLE:"ADMISSION_PROOF_UNAVAILABLE",PROTOCOL_ERROR:"PROTOCOL_ERROR"},t={...I,...e};function r(I,e){if(I&&"object"==typeof I&&e in I){const t=I[e];if("string"==typeof t)return t}}const E=/* @__PURE__ */new Set([I.VALIDATION_ERROR,I.UNAUTHORIZED,I.FORBIDDEN,I.NOT_FOUND,I.RATE_LIMITED,I.RATE_LIMIT_UNAVAILABLE,I.PAYLOAD_TOO_LARGE,I.INVALID_CREDENTIALS,I.INVALID_SESSION,I.INVALID_REFRESH_TOKEN,I.OTP_INVALID,I.OTP_EXPIRED,I.ENTRY_TOKEN_REQUIRED,I.ENTRY_TOKEN_INVALID,I.ENTRY_TOKEN_EXPIRED,I.ENTRY_TOKEN_MISMATCH,I.SLOT_EXPIRED,I.SLOT_OUT_OF_WINDOW,I.ALREADY_BOOKED,I.ACTIVE_BOOKING_EXISTS,I.NO_EXISTING_BOOKING,I.INVALID_SLOT,I.CANNOT_CANCEL_ONGOING_OR_PAST,I.FINGERPRINT_REQUIRED,I.FINGERPRINT_DEVICE_MISMATCH,I.FINGERPRINT_INVALID,I.SLOT_NOT_AVAILABLE,I.NEW_SLOT_FULL,I.DISTRIBUTION_NOT_OPEN,I.DISTRIBUTION_CLOSED,I.DISTRIBUTION_FULL,I.ADMISSION_KEY_THUMBPRINT_REQUIRED,I.ADMISSION_PROOF_REQUIRED,I.ADMISSION_GRANT_INVALID,I.ADMISSION_ORIGINAL_ENTRY_REQUIRED,I.ADMISSION_KEY_MISMATCH,I.BOT_CHALLENGE_INVALID,I.BOT_CHALLENGE_EXPIRED,I.BOT_CHALLENGE_SUBJECT_MISMATCH]);class O extends Error{constructor(I,e,t,r,E,N,R=!1,o,_){super(I),this.name="FanfareError",this.code=e,this.status=t,this.details=r,this.requestId=E,this.correlationId=N,this.retryable=R,this.retryAfter=o,this.issues=_?.issues,this.action=_?.action,this.support=_?.support,Error.captureStackTrace&&Error.captureStackTrace(this,O)}static fromResponse(I,e,t){const R=I.headers.get("X-Request-Id")||void 0,o=I.headers.get("X-Correlation-Id")||t,_=I.headers.get("Retry-After"),T=_?Number(_):void 0,{code:s,retryable:n}=N(I.status,e),A=r(e,"message"),i=(A&&I.status<500&&E.has(s)?A:null)||I.statusText||"An error occurred",a=(e&&"object"==typeof e&&"details"in e?e.details:e)??e,D=e&&"object"==typeof e&&Array.isArray(e.issues)?e.issues:void 0,L=r(e,"action"),c=e&&"object"==typeof e&&"support"in e?e.support:void 0;return new O(i,s,I.status,a,R,o,n,T,{issues:D,action:L,support:c})}is(I){return this.code===I}}function N(I,e){const E=429===I||I>=500,O=r(e,"code");return O?{code:O,retryable:E}:429===I?{code:t.RATE_LIMITED,retryable:E}:401===I?{code:t.UNAUTHORIZED,retryable:E}:403===I?{code:t.FORBIDDEN,retryable:E}:413===I?{code:t.PAYLOAD_TOO_LARGE,retryable:E}:422===I||400===I?{code:t.VALIDATION_ERROR,retryable:E}:404===I?{code:t.NOT_FOUND,retryable:E}:503===I?{code:t.SERVICE_UNAVAILABLE,retryable:E}:I>=500?{code:t.INTERNAL_ERROR,retryable:E}:{code:`HTTP_${I}`,retryable:E}}class R extends O{constructor(I,e,r,E){super(I,t.PROTOCOL_ERROR,void 0,r,E),this.name="ProtocolError",this.endpoint=e,this.issues=r}}function o(I){return I instanceof O}function _(I){return I instanceof R}const T=/* @__PURE__ */new Set([t.ENTRY_TOKEN_REQUIRED,t.ENTRY_TOKEN_INVALID,t.ENTRY_TOKEN_EXPIRED,t.ENTRY_TOKEN_MISMATCH]);function s(I){return I instanceof O&&(403===I.status&&T.has(I.code))}function n(I){return s(I)}function A(I){return!!s(I)&&"reroute"===I.action}function i(I){return A(I)}const a={networkError:(I,e)=>new O(I,t.NETWORK_ERROR,void 0,e),timeout:(I="Request timed out")=>new O(I,t.TIMEOUT),unauthorized:(I="Unauthorized")=>new O(I,t.UNAUTHORIZED,401),invalidSession:(I="Session is no longer valid")=>new O(I,t.INVALID_SESSION,401),notInitialized:(I="SDK not initialized")=>new O(I,t.NOT_INITIALIZED),invalidConfig:(I,e)=>new O(I,t.INVALID_CONFIG,void 0,e),validationError:(I,e)=>new O(I,t.VALIDATION_ERROR,void 0,e),internalError:(I,e)=>new O(I,t.INTERNAL_ERROR,void 0,e)};export{t as ErrorCodes,O as FanfareError,R as ProtocolError,e as SdkClientErrorCodes,N as classifyHttpError,a as createError,n as isCapabilityGrantError,i as isCapabilityGrantRerouteError,s as isCapabilityTokenError,A as isCapabilityTokenRerouteError,o as isFanfareError,_ as isProtocolError};

package/dist/core/http.d.ts

@@ -0,0 +1,87 @@
+import { FanfareConfig } from '../types';
+/**
+ * Public HTTP client interface for dependency inversion and testability
+ */
+export interface HttpClient {
+    get<T>(path: string, options?: RequestOptions): Promise<T>;
+    post<T>(path: string, body?: unknown, options?: RequestOptions): Promise<T>;
+    put<T>(path: string, body?: unknown, options?: RequestOptions): Promise<T>;
+    delete<T>(path: string, options?: RequestOptions): Promise<T>;
+    patch<T>(path: string, body?: unknown, options?: RequestOptions): Promise<T>;
+    updateConfig(config: Partial<HttpClientConfig>): void;
+    getConfig(): HttpClientConfig;
+}
+export interface HttpClientConfig {
+    baseUrl: string;
+    headers?: Record<string, string>;
+    /**
+     * Cookie behavior for fetches made by this client. Defaults to
+     * `"include"` so HttpOnly refresh-token cookies flow on cross-origin
+     * consumer API requests. Set explicitly to `"omit"` for a pure
+     * token-based deployment that should never send cookies.
+     */
+    credentials?: RequestCredentials;
+    timeout?: number;
+    retryConfig?: {
+        maxRetries?: number;
+        delayTimer?: number;
+        maxDelay?: number;
+        retryOnNetworkError?: boolean;
+    };
+    onUnauthorized?: () => Promise<void>;
+}
+export interface RequestOptions {
+    headers?: Record<string, string>;
+    signal?: AbortSignal;
+    skipUnauthorizedHandler?: boolean;
+}
+export declare class DefaultHttpClient implements HttpClient {
+    private config;
+    private logger;
+    private clientSessionId;
+    private fingerprint;
+    private fingerprintingEnabled;
+    constructor(config: HttpClientConfig, sdkConfig?: FanfareConfig);
+    /**
+     * Initialize browser fingerprint asynchronously
+     * Gracefully handles failures - continues without fingerprint if generation fails
+     */
+    private initializeFingerprint;
+    private getClient;
+    /**
+     * Internal request method that handles all HTTP verbs
+     */
+    private request;
+    /**
+     * Make a GET request
+     */
+    get<T>(path: string, options?: RequestOptions): Promise<T>;
+    /**
+     * Make a POST request
+     */
+    post<T>(path: string, body?: unknown, options?: RequestOptions): Promise<T>;
+    /**
+     * Make a PUT request
+     */
+    put<T>(path: string, body?: unknown, options?: RequestOptions): Promise<T>;
+    /**
+     * Make a DELETE request
+     */
+    delete<T>(path: string, options?: RequestOptions): Promise<T>;
+    /**
+     * Make a PATCH request
+     */
+    patch<T>(path: string, body?: unknown, options?: RequestOptions): Promise<T>;
+    /**
+     * Update base configuration
+     */
+    updateConfig(config: Partial<HttpClientConfig>): void;
+    /**
+     * Get current configuration
+     */
+    getConfig(): HttpClientConfig;
+}
+/**
+ * Create HTTP client instance
+ */
+export declare function createHttpClient(config: HttpClientConfig, sdkConfig?: FanfareConfig): HttpClient;

package/dist/core/http.js

@@ -0,0 +1 @@
+import e from"wretch";import{retry as t}from"wretch/middlewares";import{getAdmissionKeyThumbprint as r,buildAdmissionProofHeaders as i}from"../security/admission-proof.js";import{generateFingerprint as n}from"../utils/fingerprint.module.js";import{FanfareError as o,ErrorCodes as s}from"./errors.js";import{getLogger as a}from"./logger.js";import{isStorageAvailable as c,generateId as l}from"./utils.js";class g{constructor(e,t){this.logger=a(),this.fingerprint=null,this.config=e,this.fingerprintingEnabled=!1!==t?.features?.fingerprinting;const r="fanfare_client_session_id";let i=null;if(c("localStorage"))try{i=window.localStorage.getItem(r)}catch{i=null}if(this.clientSessionId=i||l(),!i&&c("localStorage"))try{window.localStorage.setItem(r,this.clientSessionId)}catch{}this.fingerprintingEnabled?this.initializeFingerprint():this.logger.debug("Browser fingerprinting disabled by configuration")}async initializeFingerprint(){try{const e=await n();this.fingerprint=e.hash,this.logger.debug("Browser fingerprint generated successfully",{fingerprintHash:this.fingerprint})}catch(e){this.logger.debug("Failed to generate browser fingerprint",{error:e instanceof Error?e.message:"Unknown error"}),this.fingerprint=null}}getClient(r){const{retryConfig:i={}}=this.config,n={"Content-Type":"application/json","X-Client-Session-Id":this.clientSessionId,...this.config.headers};return this.fingerprint&&(n["X-Fingerprint"]=this.fingerprint),e(this.config.baseUrl).polyfills({fetch:(e,t)=>globalThis.fetch(e,t)}).options({credentials:this.config.credentials??"include",mode:"cors"}).headers(n).middlewares([t({delayTimer:i.delayTimer||1e3,maxAttempts:i.maxRetries||3,until:(e,t)=>e?!!e.ok||e.status>=400&&e.status<500&&429!==e.status:(t&&i.retryOnNetworkError,!1),onRetry:e=>{this.logger.debug("Retrying request",{status:e.response?.status,error:e.error?.message,retryAfter:e.response?.headers?.get("Retry-After")??void 0})}})]).catcher(401,async e=>{throw!r?.skipUnauthorizedHandler&&this.config.onUnauthorized&&(this.logger.debug("Received 401, triggering re-authentication"),await this.config.onUnauthorized()),e}).catcherFallback(async e=>{if(e&&"object"==typeof e&&"response"in e&&e.response instanceof Response){const t=await e.response.text().catch(()=>null)||("function"==typeof e.text?await e.text().catch(()=>null):null);let r=null;if(t)try{r=JSON.parse(t)}catch{r={message:t}}else"function"==typeof e.json&&(r=await e.json().catch(()=>null));const i=("correlationId"in e&&"string"==typeof e.correlationId?e.correlationId:void 0)||void 0;throw o.fromResponse(e.response,r,i)}if(e&&"object"==typeof e&&"name"in e&&"AbortError"===e.name)throw new o("Request timed out",s.TIMEOUT,void 0,void 0,"correlationId"in e&&"string"==typeof e.correlationId?e.correlationId:void 0);throw new o(e&&"object"==typeof e&&"message"in e&&"string"==typeof e.message?e.message:"Network error occurred",s.NETWORK_ERROR,void 0,{originalError:e},e&&"object"==typeof e&&"correlationId"in e&&"string"==typeof e.correlationId?e.correlationId:void 0)})}async request(e,t,n,a){const c=l(),g=l(),p=this.config.timeout||3e4,h=await r(),d=function(e){return/^\/(queues|draws)\/[^/]+\/enter$/.test(e)}(t),u=new URL(t,this.config.baseUrl).toString(),f=new AbortController,m=setTimeout(()=>f.abort(),p);try{const r={"X-Correlation-Id":c,"X-Request-Id":g,...a?.headers};if(d&&!h&&!r["X-Admission-Key-Thumbprint"])throw new o("Admission proof requires persistent browser crypto support",s.ADMISSION_PROOF_UNAVAILABLE,void 0,{path:t});if(d){const n=await i({url:u,method:e.toUpperCase()});if(!n)throw new o("Admission proof requires persistent browser crypto support",s.ADMISSION_PROOF_UNAVAILABLE,void 0,{path:t});Object.assign(r,n)}h&&!r["X-Admission-Key-Thumbprint"]&&(r["X-Admission-Key-Thumbprint"]=h);const l=this.getClient(a).url(t).headers(r).options({signal:a?.signal||f.signal});let p;switch(e){case"get":p=await l.get().json();break;case"post":p=await l.post(n).json();break;case"put":p=await l.put(n).json();break;case"delete":p=await l.delete().json();break;case"patch":p=await l.patch(n).json();break;default:throw new Error(`Unsupported HTTP method: ${e}`)}return p}finally{clearTimeout(m)}}async get(e,t){return this.request("get",e,void 0,t)}async post(e,t,r){return this.request("post",e,t,r)}async put(e,t,r){return this.request("put",e,t,r)}async delete(e,t){return this.request("delete",e,void 0,t)}async patch(e,t,r){return this.request("patch",e,t,r)}updateConfig(e){this.config={...this.config,...e}}getConfig(){return{...this.config}}}function p(e,t){return new g(e,t)}export{g as DefaultHttpClient,p as createHttpClient};

package/dist/core/logger.d.ts

@@ -0,0 +1,46 @@
+/**
+ * Logger module for SDK internal use
+ *
+ * Based on design decisions:
+ * - No request/response logging
+ * - Minimal, structured logging
+ * - Respects debug mode
+ * - Masks PII data
+ */
+export type LogLevel = "debug" | "info" | "warn" | "error";
+export interface LoggerConfig {
+    enabled: boolean;
+    level: LogLevel;
+    prefix?: string;
+}
+export interface Logger {
+    debug(message: string, data?: unknown): void;
+    info(message: string, data?: unknown): void;
+    warn(message: string, data?: unknown): void;
+    error(message: string, data?: unknown): void;
+    setLevel(level: LogLevel): void;
+    setEnabled(enabled: boolean): void;
+}
+/**
+ * Create or get logger instance
+ */
+export declare function createLogger(config?: LoggerConfig): Logger;
+/**
+ * Get current logger instance
+ */
+export declare function getLogger(): Logger;
+/**
+ * Allow host applications to inject their own logger implementation
+ * that conforms to the SDK's minimal Logger contract.
+ */
+export declare function setLogger(custom: Logger): void;
+/**
+ * Adapter to wrap a Pino-like logger into the SDK's Logger interface
+ * so host apps can bridge their server-style loggers.
+ */
+export declare function fromPino(pino: {
+    debug?: (objOrMsg?: unknown, msg?: string) => void;
+    info: (objOrMsg?: unknown, msg?: string) => void;
+    warn: (objOrMsg?: unknown, msg?: string) => void;
+    error: (objOrMsg?: unknown, msg?: string) => void;
+}): Logger;

package/dist/core/logger.js

@@ -0,0 +1 @@
+import{createError as e}from"./errors.js";import{maskPII as o}from"./utils.js";class t{constructor(e){this.levels={debug:0,info:1,warn:2,error:3},this.config=e}shouldLog(e){return!!this.config.enabled&&this.levels[e]>=this.levels[this.config.level]}format(e,t,i){const r=[`${this.config.prefix?`[${this.config.prefix}] `:""}${/* @__PURE__ */(new Date).toISOString()} [${e.toUpperCase()}] ${t}`];if(void 0!==i){const e=o(i);r.push(e)}}debug(e,o){this.shouldLog("debug")&&this.format("debug",e,o)}info(e,o){this.shouldLog("info")&&this.format("info",e,o)}warn(e,o){this.shouldLog("warn")&&this.format("warn",e,o)}error(e,o){this.shouldLog("error")&&this.format("error",e,o)}setLevel(e){this.config.level=e}setEnabled(e){this.config.enabled=e}}let i=null;function r(e){return i&&!e||(i=new t(e||{enabled:!1,level:"warn",prefix:"Fanfare"})),i}function s(){if(!i)throw e.notInitialized("Logger not initialized. Call createLogger first.");return i}export{r as createLogger,s as getLogger};

package/dist/core/money.d.ts

@@ -0,0 +1,10 @@
+export declare const MONEY_INTEGER_DIGITS = 12;
+export declare const MONEY_FRACTIONAL_DIGITS = 8;
+export declare const MONEY_REGEX: RegExp;
+export declare function isMoneyString(value: unknown): value is string;
+export declare function normalizeMoney(value: unknown, fallback?: string): string;
+export declare function addMoney(operandA: string, operandB: string): string;
+export declare function subtractMoney(operandA: string, operandB: string): string;
+export declare function isMoneyGreaterThan(operandA: string, operandB: string): boolean;
+export declare function isMoneyGreaterThanOrEqualTo(operandA: string, operandB: string): boolean;
+export declare function isMoneyLessThanOrEqualTo(operandA: string, operandB: string): boolean;

package/dist/core/money.js

@@ -0,0 +1 @@
+import t from"big.js";const n=/^\d{1,12}(\.\d{1,8})?$/;function r(t){return"string"==typeof t&&n.test(t)}function u(t,n="0"){return t&&r(t)?t:n}function e(t){return t.split(".")[1]?.length??0}function i(t,n){return Math.max(e(t),e(n))}function o(n,r){return t(n).plus(r).toFixed(i(n,r))}function f(n,r){return t(n).minus(r).toFixed(i(n,r))}function c(n,r){return t(n).gt(r)}function s(n,r){return t(n).gte(r)}function g(n,r){return t(n).lte(r)}export{n as MONEY_REGEX,o as addMoney,c as isMoneyGreaterThan,s as isMoneyGreaterThanOrEqualTo,g as isMoneyLessThanOrEqualTo,r as isMoneyString,u as normalizeMoney,f as subtractMoney};

package/dist/core/parse-response.d.ts

@@ -0,0 +1,62 @@
+import { ProtocolError } from './errors';
+/**
+ * Shared SDK helper for runtime validation of HTTP responses.
+ *
+ * Today the SDK does ZERO runtime validation of server responses (F037 in the
+ * May Bug Bash audit). Every payload is a TS-typed cast — when the server
+ * changes a field, the SDK silently coerces and downstream code crashes (or
+ * worse, succeeds with wrong data). This helper centralises validation so
+ * that per-endpoint sub-tasks (ENG-641 routing, ENG-646 me/auction) emit
+ * consistent observability.
+ *
+ * # Default behaviour: non-throwing
+ *
+ * Throwing on parse failure would break every existing call site that
+ * doesn't catch — most are `await client.get(...)` followed by `.fieldName`
+ * access. The helper instead returns a discriminated `ParseResult`:
+ *
+ *   - `{ ok: true, value }` on success
+ *   - `{ ok: false, error: ProtocolError }` on failure
+ *
+ * On failure it ALSO emits `journey:error` with `kind: "protocolError"` and
+ * logs at error level. Callers can choose to:
+ *   - propagate the error: `if (!result.ok) throw result.error`
+ *   - degrade gracefully: `if (!result.ok) return fallbackShape`
+ *   - retry / resync: `if (!result.ok) await this.refetchMe()`
+ *
+ * Callers that prefer exception-flow can opt in via
+ * `parseResponse(..., { throwOnFailure: true })` — useful for code paths
+ * that already have a `try/catch` and want a single happy-path branch.
+ *
+ * # Strict vs lenient
+ *
+ * Uses `v.safeParse` against whatever schema the caller passes. If the
+ * caller wants leniency (extra-fields-allowed), they pass a `v.looseObject`
+ * schema. Strict-vs-lenient is a per-endpoint policy decision, not a global
+ * helper concern.
+ */
+import * as v from "valibot";
+export interface ParseResponseContext {
+    /** Endpoint identifier — used in error messages and `journey:error` events for triage. */
+    endpoint: string;
+    /** Optional request ID for correlation with server-side logs. */
+    requestId?: string;
+}
+export interface ParseResponseOptions {
+    /** When true, throw `ProtocolError` instead of returning a failure result. Default false. */
+    throwOnFailure?: boolean;
+}
+export type ParseResult<T> = {
+    ok: true;
+    value: T;
+} | {
+    ok: false;
+    error: ProtocolError;
+};
+/**
+ * Validate `data` against `schema`. On success returns the typed value. On
+ * failure emits a `journey:error` event of `kind: "protocolError"` and
+ * either returns a failure result (default) or throws the `ProtocolError`
+ * (when `options.throwOnFailure` is true).
+ */
+export declare function parseResponse<TInput, TOutput>(schema: v.GenericSchema<TInput, TOutput>, data: unknown, context: ParseResponseContext, options?: ParseResponseOptions): ParseResult<TOutput>;

package/dist/core/parse-response.js

@@ -0,0 +1 @@
+import*as e from"valibot";import{getEventBus as r}from"../state/events.js";import{ProtocolError as s}from"./errors.js";import{getLogger as o}from"./logger.js";function t(t,n,i,u={}){const a=e.safeParse(t,n);if(a.success)return{ok:!0,value:a.output};const d=function(e){const r=e[0];if(!r)return"no issues reported";const s=r.path?.map(e=>String(e.key)).join(".")??"",o=s?` at "${s}"`:"",t=e.length>1?` (and ${e.length-1} more)`:"";return`${r.message}${o}${t}`}(a.issues),p=`Response from ${i.endpoint} failed schema validation: ${d}`,m=new s(p,i.endpoint,a.issues,i.requestId);if(o().error("Protocol error: response failed schema validation",{endpoint:i.endpoint,requestId:i.requestId,issues:a.issues}),r().emit("journey:error",{kind:"protocolError",endpoint:i.endpoint,message:p,requestId:i.requestId,issues:a.issues}),u.throwOnFailure)throw m;return{ok:!1,error:m}}export{t as parseResponse};

package/dist/core/utils.d.ts

@@ -0,0 +1,67 @@
+/**
+ * Utility functions for SDK
+ */
+/**
+ * Generate a unique ID using UUID v7 (time-based)
+ */
+export declare function generateId(): string;
+/**
+ * Create a deferred promise
+ */
+export declare function createDeferred<T>(): {
+    promise: Promise<T>;
+    resolve: (value: T) => void;
+    reject: (reason?: unknown) => void;
+};
+/**
+ * Sleep for specified milliseconds
+ */
+export declare function sleep(ms: number): Promise<void>;
+/**
+ * Retry a function with exponential backoff
+ */
+export declare function retry<T>(fn: () => Promise<T>, options?: {
+    maxAttempts?: number;
+    initialDelay?: number;
+    maxDelay?: number;
+    factor?: number;
+    onRetry?: (attempt: number, error: Error) => void;
+}): Promise<T>;
+/**
+ * Deep clone an object (simple implementation for SDK data)
+ */
+export declare function deepClone<T>(obj: T, visited?: WeakSet<object>): T;
+/**
+ * Check if running in browser environment
+ */
+export declare function isBrowser(): boolean;
+/**
+ * Check if storage is available
+ */
+export declare function isStorageAvailable(type: "localStorage" | "sessionStorage"): boolean;
+/**
+ * Parse JSON safely
+ */
+export declare function safeJsonParse<T>(json: string, fallback?: T): T | null;
+/**
+ * Mask email for privacy
+ */
+export declare function maskEmail(email: string): string;
+/**
+ * Mask sensitive PII data in objects
+ */
+export declare function maskPII(data: unknown): unknown;
+/**
+ * Format remaining time in human-readable format
+ */
+export declare function formatRemainingTime(seconds: number): string;
+/**
+ * Debounce function calls
+ */
+export declare function debounce<T extends (...args: unknown[]) => unknown>(fn: T, delay: number): T & {
+    cancel: () => void;
+};
+/**
+ * Throttle function calls
+ */
+export declare function throttle<T extends (...args: unknown[]) => unknown>(fn: T, limit: number): T;

package/dist/core/utils.js

@@ -0,0 +1 @@
+import{v7 as t}from"uuid";function n(){return t()}function e(t,n=/* @__PURE__ */new WeakSet){if(null===t||"object"!=typeof t)return t;if(n.has(t))return t;if(t instanceof Date)return new Date(t.getTime());if(t instanceof Array)return n.add(t),t.map(t=>e(t,n));if(t instanceof Object){n.add(t);const r={};for(const i in t)Object.prototype.hasOwnProperty.call(t,i)&&(r[i]=e(t[i],n));return r}return t}function r(){return"undefined"!=typeof window&&void 0!==window.document}function i(t){if(!r())return!1;try{const n=window[t],e="__storage_test__";return n.setItem(e,e),n.removeItem(e),!0}catch{return!1}}function o(t){const[n,e]=t.split("@");if(!n||!e)return t;const r=Math.min(2,n.length);return`${n.substring(0,r)+"***"}@${e}`}function u(t){if(null==t)return t;if("string"==typeof t)return t.includes("@")&&t.includes(".")?o(t):t;if(Array.isArray(t))return t.map(t=>u(t));if("object"==typeof t){const n={};for(const[e,r]of Object.entries(t))n[e]="email"===e&&"string"==typeof r?o(r):"consumerId"===e&&"string"==typeof r||"userId"===e&&"string"==typeof r?r.substring(0,8)+"***":u(r);return n}return t}export{e as deepClone,n as generateId,r as isBrowser,i as isStorageAvailable,o as maskEmail,u as maskPII};

package/dist/draws/draw.module.d.ts

@@ -0,0 +1,40 @@
+import { HttpClient, RequestOptions } from '../core/http';
+import { MonitorUpdate } from '../experiences/distribution-monitor.types';
+import { Draw, DrawConsumerState, DrawModule } from './types';
+export declare class DrawManagementModule implements DrawModule {
+    private readonly http;
+    private readonly logger;
+    private readonly events;
+    private readonly trackedParticipations;
+    private readonly inFlightRequests;
+    private readonly scheduledChecks;
+    private readonly monitorRuntime;
+    private readonly monitorGenerations;
+    private readonly operationGenerations;
+    private readonly initialCheckBufferMs;
+    private readonly retryCheckDelayMs;
+    private destroyed;
+    private lifecycleGeneration;
+    private get store();
+    constructor(http: HttpClient);
+    get(drawId: string): Promise<Draw>;
+    enter(drawId: string, metadata?: Record<string, unknown>, options?: RequestOptions): Promise<DrawConsumerState>;
+    leave(drawId: string, options?: RequestOptions): Promise<void>;
+    status(drawId: string): Promise<DrawConsumerState>;
+    private doStatus;
+    startMonitoring(id: string, context?: Record<string, unknown>, onUpdate?: (update: MonitorUpdate) => void): void;
+    stopMonitoring(id: string): void;
+    isMonitoring(id: string): boolean;
+    private buildTransition;
+    private applyTransition;
+    private scheduleInitialStatusCheck;
+    private scheduleRetryStatusCheck;
+    private scheduleStatusCheck;
+    private cancelScheduledCheck;
+    private buildLostResult;
+    private bumpMonitorGeneration;
+    private getOperationGeneration;
+    private bumpOperationGeneration;
+    private canApplyAsyncResult;
+    destroy(): void;
+}

package/dist/draws/draw.module.js

@@ -0,0 +1 @@
+import{createError as t,isFanfareError as e}from"../core/errors.js";import{getLogger as i}from"../core/logger.js";import{DistributionMonitorRuntime as r}from"../experiences/distribution-monitor.runtime.js";import{getEventBus as s}from"../state/events.js";import{getSDKStore as a}from"../state/store.js";class n{constructor(t){this.logger=i(),this.events=s(),this.trackedParticipations=/* @__PURE__ */new Map,this.inFlightRequests=/* @__PURE__ */new Map,this.scheduledChecks=/* @__PURE__ */new Map,this.monitorRuntime=new r,this.monitorGenerations=/* @__PURE__ */new Map,this.operationGenerations=/* @__PURE__ */new Map,this.initialCheckBufferMs=5e3,this.retryCheckDelayMs=5e3,this.destroyed=!1,this.lifecycleGeneration=0,this.http=t}get store(){return a()}async get(t){try{return await this.http.get(`/draws/${t}`)}catch(e){throw this.logger.error("Failed to get draw",{drawId:t,error:e}),e}}async enter(e,i,r){try{const s=this.lifecycleGeneration;if(!this.store.session)throw t.unauthorized("Not authenticated. Call auth.guest() or auth.login() first");const a=this.bumpOperationGeneration(e);this.logger.info("Entering draw",{drawId:e});const n=await this.http.post(`/draws/${e}/enter`,{metadata:i},r),o=this.buildTransition(e,n,{source:"enter",enteredAt:/* @__PURE__ */(new Date).toISOString(),metadata:i});return this.canApplyAsyncResult(e,s,void 0,a)?(this.applyTransition(e,o),n):n}catch(s){throw this.logger.error("Failed to enter draw",{drawId:e,error:s}),this.events.emit("draw:error",{drawId:e,error:s}),s}}async leave(t,e){try{const i=this.lifecycleGeneration,r=this.bumpOperationGeneration(t);if(this.logger.info("Leaving draw",{drawId:t}),await this.http.post(`/draws/${t}/leave`,void 0,e),!this.canApplyAsyncResult(t,i,void 0,r))return;this.trackedParticipations.delete(t),this.stopMonitoring(t),this.events.emit("draw:left",{drawId:t})}catch(i){throw this.logger.error("Failed to leave draw",{drawId:t,error:i}),this.events.emit("draw:error",{drawId:t,error:i}),i}}async status(t){const e=this.inFlightRequests.get(t);if(e)return this.logger.debug("Returning existing in-flight request",{drawId:t}),e;const i=this.lifecycleGeneration,r=this.bumpOperationGeneration(t),s=this.doStatus(t,i,void 0,r).finally(()=>{this.inFlightRequests.delete(t)});return this.inFlightRequests.set(t,s),s}async doStatus(t,e,i,r){try{const s=await this.http.get(`/draws/${t}/status`);if(!this.canApplyAsyncResult(t,e,i,r))return s;const a=this.buildTransition(t,s,{source:"status",previousParticipation:this.trackedParticipations.get(t)});return this.applyTransition(t,a),this.events.emit("draw:status-updated",{drawId:t,status:s.status}),s}catch(s){if(s&&"object"==typeof s&&"status"in s&&404===s.status){const s={status:"NOT_ENTERED"};if(!this.canApplyAsyncResult(t,e,i,r))return s;const a=this.buildTransition(t,s,{source:"status",previousParticipation:this.trackedParticipations.get(t)});return this.applyTransition(t,a),this.events.emit("draw:status-updated",{drawId:t,status:s.status}),s}if(!this.canApplyAsyncResult(t,e,i,r))return this.trackedParticipations.has(t)?{status:"ENTERED"}:{status:"NOT_ENTERED"};throw this.logger.error("Failed to get draw status",{drawId:t,error:s}),this.events.emit("draw:error",{drawId:t,error:s}),s}}startMonitoring(t,e,i){this.monitorRuntime.start(t,e,i),this.bumpMonitorGeneration(t);const r="string"==typeof e?.drawTime?e.drawTime:void 0,s=this.monitorRuntime.getDisplayAtom(t);s&&s.set({type:"draw",drawTime:r,entryNumber:this.trackedParticipations.get(t)?.entryNumber}),r&&this.scheduleInitialStatusCheck(t,r)}stopMonitoring(t){this.bumpMonitorGeneration(t),this.cancelScheduledCheck(t),this.monitorRuntime.stop(t)}isMonitoring(t){return this.monitorRuntime.has(t)||this.scheduledChecks.has(t)}buildTransition(t,e,{source:i,previousParticipation:r,enteredAt:s,metadata:a}){switch(e.status){case"ENTERED":return{trackedParticipation:{drawId:t,enteredAt:r?.enteredAt??s??/* @__PURE__ */(new Date).toISOString(),entryNumber:r?.entryNumber,metadata:r?.metadata??a},events:"enter"===i?[{type:"draw:entered",payload:{drawId:t}}]:[],monitorUpdate:null,stopMonitoring:!1,retryStatusCheck:"status"===i};case"WON":return{trackedParticipation:null,events:[{type:"draw:won",payload:{drawId:t,result:{won:!0,drawTime:e.wonAt}}}],monitorUpdate:"status"===i?{type:"granted",token:e.admissionGrant,expiresAt:e.expiresAt?new Date(e.expiresAt).getTime():void 0}:null,stopMonitoring:"status"===i,retryStatusCheck:!1};case"COMPLETED":return{trackedParticipation:null,events:[{type:"draw:won",payload:{drawId:t,result:{won:!0,drawTime:e.completedAt}}}],monitorUpdate:"status"===i?{type:"granted",token:e.admissionGrant,expiresAt:e.expiresAt?new Date(e.expiresAt).getTime():void 0}:null,stopMonitoring:"status"===i,retryStatusCheck:!1};case"DENIED":return{trackedParticipation:null,events:[{type:"draw:expired",payload:{drawId:t}}],monitorUpdate:"status"===i?{type:"ended",outcome:{type:"denied",reason:e.reason}}:null,stopMonitoring:"status"===i,retryStatusCheck:!1};case"NOT_ENTERED":return{trackedParticipation:null,events:r?[{type:"draw:lost",payload:{drawId:t,result:this.buildLostResult()}}]:[],monitorUpdate:"status"===i?{type:"ended",outcome:r?{type:"lost"}:{type:"closed",reason:"not_entered"}}:null,stopMonitoring:"status"===i,retryStatusCheck:!1}}}applyTransition(t,e){e.trackedParticipation?this.trackedParticipations.set(t,e.trackedParticipation):this.trackedParticipations.delete(t);for(const i of e.events)this.events.emit(i.type,i.payload);e.monitorUpdate&&this.monitorRuntime.notify(t,e.monitorUpdate),e.stopMonitoring?this.stopMonitoring(t):e.retryStatusCheck&&this.monitorRuntime.has(t)&&this.scheduleRetryStatusCheck(t)}scheduleInitialStatusCheck(t,e){const i=new Date(e).getTime(),r=Math.max(0,i-Date.now()+this.initialCheckBufferMs);this.scheduleStatusCheck(t,r)}scheduleRetryStatusCheck(t){this.scheduleStatusCheck(t,this.retryCheckDelayMs)}scheduleStatusCheck(t,i){if(i>2147483647)return void this.logger.warn("Draw time too far in future to schedule",{drawId:t,delayMs:i});this.cancelScheduledCheck(t);const r=this.monitorGenerations.get(t),s=this.getOperationGeneration(t),a=setTimeout(async()=>{this.scheduledChecks.delete(t);try{if(void 0===r)return;await this.doStatus(t,this.lifecycleGeneration,r,s)}catch(i){if(!this.canApplyAsyncResult(t,this.lifecycleGeneration,r,s))return;if(e(i)&&i.retryable&&this.monitorRuntime.has(t))return void this.scheduleRetryStatusCheck(t);this.stopMonitoring(t)}},i);this.scheduledChecks.set(t,a)}cancelScheduledCheck(t){const e=this.scheduledChecks.get(t);e&&(clearTimeout(e),this.scheduledChecks.delete(t))}buildLostResult(){return{won:!1,drawTime:/* @__PURE__ */(new Date).toISOString()}}bumpMonitorGeneration(t){const e=(this.monitorGenerations.get(t)??0)+1;return this.monitorGenerations.set(t,e),e}getOperationGeneration(t){return this.operationGenerations.get(t)??0}bumpOperationGeneration(t){const e=this.getOperationGeneration(t)+1;return this.operationGenerations.set(t,e),e}canApplyAsyncResult(t,e,i,r){return!this.destroyed&&this.lifecycleGeneration===e&&((void 0===i||this.monitorGenerations.get(t)===i)&&(void 0===r||this.getOperationGeneration(t)===r))}destroy(){this.destroyed=!0,this.lifecycleGeneration+=1,this.scheduledChecks.forEach(t=>clearTimeout(t)),this.scheduledChecks.clear(),this.inFlightRequests.clear(),this.trackedParticipations.clear(),this.monitorGenerations.clear(),this.operationGenerations.clear(),this.monitorRuntime.clear()}}export{n as DrawManagementModule};

package/dist/draws/index.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Draw module exports
+ */
+export { DrawManagementModule } from './draw.module';
+export type { Draw, DrawCompletedState, DrawConsumerState, DrawDeniedState, DrawEnteredState, DrawModule, DrawNotEnteredState, DrawParticipation, DrawResult, DrawWonState, } from './types';

package/dist/draws/public.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Public draw surface. The runtime `DrawManagementModule`/`DrawModule`/`DrawParticipation`
+ * symbols from `./types` are internal and not exported here.
+ */
+export { DrawDenyReason } from './types';
+export type { Draw, DrawCompletedState, DrawConsumerState, DrawDeniedState, DrawEnteredState, DrawNotEnteredState, DrawResult, DrawWonState, } from './types';

package/dist/draws/public.js

@@ -0,0 +1 @@
+import{DrawDenyReason as o}from"./types.js";export{o as DrawDenyReason};