@firela/billclaw-openclaw 0.1.5 → 0.3.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024 fire-la
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/dist/oauth/gmail.d.ts

@@ -1,31 +1,32 @@
 /**
- * Gmail OAuth handler - implements Gmail OAuth 2.0 flow
+ * Gmail OAuth handler - OpenClaw adapter
  *
- * This module handles Gmail OAuth 2.0 authorization using PKCE (Proof Key for Code Exchange).
+ * This is an adapter layer that calls the framework-agnostic OAuth implementation
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality (config management).
  *
- * Flow:
- * 1. Generate authorization URL (with PKCE) - Returns { url, state }
- * 2. Handle callback - Receives authorization code
- * 3. Exchange code for access token - Returns { accessToken, refreshToken }
+ * @packageDocumentation
  */
 import type { OpenClawPluginApi } from "../types/openclaw-plugin.js";
 /**
  * Handle Gmail OAuth flow
  *
- * This integrates Gmail OAuth 2.0 with PKCE for secure authorization.
+ * This is an OpenClaw adapter that calls the framework-agnostic OAuth handler
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality.
  *
  * Flow:
  * 1. Initialize OAuth (no params) - Returns { url, state }
- * 2. Handle callback (code + state) - Returns { accessToken, refreshToken }
+ * 2. Handle callback (code + state + accountId) - Returns { accessToken, refreshToken }
+ *    - Tokens are automatically saved to account config if accountId is provided
  *
  * @param api - OpenClaw plugin API
- * @param context - OAuth context with optional code and state from callback
+ * @param context - OAuth context with optional code, state, redirectUri, and accountId
  * @returns OAuthResult with URL and/or token
  */
 export declare function gmailOAuthHandler(api: OpenClawPluginApi, context?: {
     code?: string;
     state?: string;
     redirectUri?: string;
+    accountId?: string;
 }): Promise<{
     url: string;
     state?: string;
@@ -33,4 +34,15 @@ export declare function gmailOAuthHandler(api: OpenClawPluginApi, context?: {
     refreshToken?: string;
     expiresIn?: number;
 }>;
+/**
+ * Refresh Gmail access token using refresh token
+ *
+ * @param api - OpenClaw plugin API
+ * @param accountId - Account ID to refresh token for
+ * @returns New access token and expiry info, or null if refresh failed
+ */
+export declare function refreshGmailToken(api: OpenClawPluginApi, accountId: string): Promise<{
+    accessToken: string;
+    expiresIn: number;
+} | null>;
 //# sourceMappingURL=gmail.d.ts.map

package/dist/oauth/gmail.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"gmail.d.ts","sourceRoot":"","sources":["../../src/oauth/gmail.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAA;AAiMpE;;;;;;;;;;;;GAYG;AACH,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,iBAAiB,EACtB,OAAO,CAAC,EAAE;IAAE,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,CAAA;CAAE,GAChE,OAAO,CAAC;IACT,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,SAAS,CAAC,EAAE,MAAM,CAAA;CACnB,CAAC,CAsCD"}
+{"version":3,"file":"gmail.d.ts","sourceRoot":"","sources":["../../src/oauth/gmail.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAA;AA8FpE;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,iBAAiB,EACtB,OAAO,CAAC,EAAE;IACR,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,SAAS,CAAC,EAAE,MAAM,CAAA;CACnB,GACA,OAAO,CAAC;IACT,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,SAAS,CAAC,EAAE,MAAM,CAAA;CACnB,CAAC,CA4BD;AAED;;;;;;GAMG;AACH,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,iBAAiB,EACtB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,GAAG,IAAI,CAAC,CA4C5D"}

package/dist/oauth/gmail.js

@@ -1,13 +1,23 @@
 /**
- * Gmail OAuth handler - implements Gmail OAuth 2.0 flow
+ * Gmail OAuth handler - OpenClaw adapter
  *
- * This module handles Gmail OAuth 2.0 authorization using PKCE (Proof Key for Code Exchange).
+ * This is an adapter layer that calls the framework-agnostic OAuth implementation
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality (config management).
  *
- * Flow:
- * 1. Generate authorization URL (with PKCE) - Returns { url, state }
- * 2. Handle callback - Receives authorization code
- * 3. Exchange code for access token - Returns { accessToken, refreshToken }
+ * @packageDocumentation
+ */
+import { gmailOAuthHandler as coreGmailOAuthHandler, refreshGmailToken as coreRefreshGmailToken, } from "@firela/billclaw-core";
+/**
+ * Get a logger from OpenClaw API, or provide a no-op logger
  */
+function getLogger(api) {
+    return {
+        info: api.logger?.info || (() => { }),
+        error: api.logger?.error || (() => { }),
+        warn: api.logger?.warn || (() => { }),
+        debug: api.logger?.debug || (() => { }),
+    };
+}
 /**
  * Get Gmail configuration from OpenClaw config
  */
@@ -25,166 +35,99 @@ function getGmailConfig(api) {
     };
 }
 /**
- * Generate random code verifier for PKCE
- */
-function generateCodeVerifier() {
-    const array = new Uint8Array(32);
-    crypto.getRandomValues(array);
-    return base64UrlEncode(array);
-}
-/**
- * Generate code challenge from verifier for PKCE
- */
-async function generateCodeChallenge(verifier) {
-    const encoder = new TextEncoder();
-    const data = encoder.encode(verifier);
-    const hash = await crypto.subtle.digest("SHA-256", data);
-    return base64UrlEncode(new Uint8Array(hash));
-}
-/**
- * Base64URL encode a byte array
- */
-function base64UrlEncode(bytes) {
-    const binString = Array.from(bytes, (byte) => String.fromCharCode(byte));
-    const base64 = btoa(binString.join(""));
-    return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
-}
-/**
- * State parameter storage (in-memory for security)
- * In production, this should be stored in a secure session
- */
-const oauthStateStore = new Map();
-/**
- * Clean up expired states (older than 10 minutes)
- */
-function cleanupExpiredStates() {
-    const now = Date.now();
-    const maxAge = 10 * 60 * 1000; // 10 minutes
-    for (const [key, value] of oauthStateStore.entries()) {
-        if (now - value.timestamp > maxAge) {
-            oauthStateStore.delete(key);
-        }
-    }
-}
-/**
- * Generate Gmail OAuth authorization URL
- *
- * Uses PKCE for security without requiring client secret.
- */
-async function generateAuthorizationUrl(api, redirectUri = "http://localhost:3000/callback") {
-    cleanupExpiredStates();
-    const gmailConfig = getGmailConfig(api);
-    // Generate PKCE verifier and challenge
-    const codeVerifier = generateCodeVerifier();
-    const codeChallenge = await generateCodeChallenge(codeVerifier);
-    // Generate state parameter for CSRF protection
-    const state = Array.from(crypto.getRandomValues(new Uint8Array(16)))
-        .map((b) => b.toString(16).padStart(2, "0"))
-        .join("");
-    // Store state and verifier
-    oauthStateStore.set(state, {
-        codeVerifier,
-        timestamp: Date.now(),
-    });
-    // Build authorization URL
-    const params = new URLSearchParams();
-    params.set("client_id", gmailConfig.clientId);
-    params.set("redirect_uri", redirectUri);
-    params.set("response_type", "code");
-    params.set("scope", "https://www.googleapis.com/auth/gmail.readonly");
-    params.set("state", state);
-    params.set("code_challenge", codeChallenge);
-    params.set("code_challenge_method", "S256");
-    params.set("access_type", "offline"); // Allow refresh token
-    params.set("prompt", "consent"); // Force consent to get refresh token
-    const url = `https://accounts.google.com/o/oauth2/v2/auth?${params.toString()}`;
-    api.logger.info?.("Gmail authorization URL generated");
-    return { url, state };
-}
-/**
- * Exchange authorization code for access token
+ * Save Gmail OAuth tokens to account configuration
  *
- * Completes the OAuth flow by exchanging the authorization code
- * for an access token (and optionally refresh token).
+ * NOTE: This requires the OpenClaw runtime to support config updates.
+ * The actual persistence depends on the OpenClawConfigProvider implementation.
  */
-async function exchangeCodeForToken(api, code, state, redirectUri = "http://localhost:3000/callback") {
-    // Retrieve stored state
-    const storedState = oauthStateStore.get(state);
-    if (!storedState) {
-        throw new Error("Invalid or expired OAuth state. Please try again.");
-    }
-    // Clean up state
-    oauthStateStore.delete(state);
-    const gmailConfig = getGmailConfig(api);
-    // Exchange code for token
-    const tokenUrl = "https://oauth2.googleapis.com/token";
-    const params = new URLSearchParams();
-    params.set("code", code);
-    params.set("client_id", gmailConfig.clientId);
-    if (gmailConfig.clientSecret) {
-        params.set("client_secret", gmailConfig.clientSecret);
+async function saveGmailTokensToAccount(api, accountId, accessToken, refreshToken, expiresIn) {
+    const logger = getLogger(api);
+    // Calculate token expiry timestamp
+    const expiresAt = expiresIn
+        ? new Date(Date.now() + expiresIn * 1000).toISOString()
+        : undefined;
+    // Get config from OpenClaw
+    const config = api.pluginConfig;
+    // Find and update the account
+    const accountIndex = config.accounts?.findIndex((a) => a.id === accountId && a.type === "gmail");
+    if (accountIndex === -1 || accountIndex === undefined) {
+        logger.warn(`Gmail account ${accountId} not found in config. Tokens not saved.`);
+        return;
     }
-    params.set("redirect_uri", redirectUri);
-    params.set("grant_type", "authorization_code");
-    params.set("code_verifier", storedState.codeVerifier);
-    const response = await fetch(tokenUrl, {
-        method: "POST",
-        headers: {
-            "Content-Type": "application/x-www-form-urlencoded",
-        },
-        body: params.toString(),
-    });
-    if (!response.ok) {
-        const errorText = await response.text();
-        throw new Error(`Failed to exchange token: ${response.status} ${errorText}`);
-    }
-    const data = (await response.json());
-    api.logger.info?.("Gmail access token obtained successfully");
-    return {
-        accessToken: data.access_token,
-        refreshToken: data.refresh_token,
-        expiresIn: data.expires_in,
+    // Update account with tokens
+    config.accounts[accountIndex] = {
+        ...config.accounts[accountIndex],
+        gmailAccessToken: accessToken,
+        gmailRefreshToken: refreshToken,
+        gmailTokenExpiry: expiresAt,
+        enabled: true, // Auto-enable account after successful OAuth
     };
+    // Note: The actual persistence to disk depends on OpenClaw's config management
+    // The updated config is in memory but OpenClaw needs to handle persistence
+    logger.info(`Gmail tokens updated in memory for account ${accountId}. Persistence depends on OpenClaw config management.`);
 }
 /**
  * Handle Gmail OAuth flow
  *
- * This integrates Gmail OAuth 2.0 with PKCE for secure authorization.
+ * This is an OpenClaw adapter that calls the framework-agnostic OAuth handler
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality.
  *
  * Flow:
  * 1. Initialize OAuth (no params) - Returns { url, state }
- * 2. Handle callback (code + state) - Returns { accessToken, refreshToken }
+ * 2. Handle callback (code + state + accountId) - Returns { accessToken, refreshToken }
+ *    - Tokens are automatically saved to account config if accountId is provided
  *
  * @param api - OpenClaw plugin API
- * @param context - OAuth context with optional code and state from callback
+ * @param context - OAuth context with optional code, state, redirectUri, and accountId
  * @returns OAuthResult with URL and/or token
  */
 export async function gmailOAuthHandler(api, context) {
     try {
-        const { code, state, redirectUri } = context || {};
-        // Phase 1: Generate authorization URL
-        if (!code) {
-            const { url: authUrl, state: newState } = await generateAuthorizationUrl(api, redirectUri);
-            return {
-                url: authUrl,
-                state: newState,
-            };
+        const { code, state, redirectUri, accountId } = context || {};
+        const config = getGmailConfig(api);
+        const logger = getLogger(api);
+        // Call the framework-agnostic OAuth handler from core
+        const result = await coreGmailOAuthHandler(config, { code, state, redirectUri }, logger);
+        // Save tokens to account config if accountId is provided and we have accessToken
+        if (accountId && result.accessToken && code) {
+            await saveGmailTokensToAccount(api, accountId, result.accessToken, result.refreshToken, result.expiresIn);
+            logger.info(`Gmail tokens saved for account ${accountId} (expires in ${result.expiresIn}s)`);
         }
-        // Phase 2: Exchange authorization code for access token
-        if (!state) {
-            throw new Error("State parameter is required for code exchange");
-        }
-        const { accessToken, refreshToken, expiresIn } = await exchangeCodeForToken(api, code, state, redirectUri);
-        return {
-            url: "",
-            accessToken,
-            refreshToken,
-            expiresIn,
-        };
+        return result;
     }
     catch (error) {
-        api.logger.error?.("Gmail OAuth error:", error);
+        getLogger(api).error("Gmail OAuth error:", error);
         throw error;
     }
 }
+/**
+ * Refresh Gmail access token using refresh token
+ *
+ * @param api - OpenClaw plugin API
+ * @param accountId - Account ID to refresh token for
+ * @returns New access token and expiry info, or null if refresh failed
+ */
+export async function refreshGmailToken(api, accountId) {
+    const config = api.pluginConfig;
+    const logger = getLogger(api);
+    // Find the account
+    const account = config.accounts?.find((a) => a.id === accountId && a.type === "gmail");
+    if (!account) {
+        logger.error(`Gmail account ${accountId} not found`);
+        return null;
+    }
+    const gmailConfig = getGmailConfig(api);
+    if (!account.gmailRefreshToken) {
+        logger.error(`No refresh token available for Gmail account ${accountId}. User must re-authenticate.`);
+        return null;
+    }
+    // Call the framework-agnostic refresh handler from core
+    const result = await coreRefreshGmailToken(gmailConfig, account.gmailRefreshToken, logger);
+    if (!result) {
+        return null;
+    }
+    // Save new tokens to account config
+    await saveGmailTokensToAccount(api, accountId, result.accessToken, account.gmailRefreshToken, result.expiresIn);
+    return result;
+}
 //# sourceMappingURL=gmail.js.map

package/dist/oauth/gmail.js.map

@@ -1 +1 @@
-{"version":3,"file":"gmail.js","sourceRoot":"","sources":["../../src/oauth/gmail.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAYH;;GAEG;AACH,SAAS,cAAc,CAAC,GAAsB;IAC5C,MAAM,YAAY,GAAG,GAAG,CAAC,YAAmB,CAAA;IAC5C,MAAM,WAAW,GAAG,YAAY,EAAE,KAAK,IAAI,EAAE,CAAA;IAE7C,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAA;IACpE,MAAM,YAAY,GAChB,WAAW,CAAC,YAAY,IAAI,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAA;IAE7D,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CACb,4GAA4G,CAC7G,CAAA;IACH,CAAC;IAED,OAAO;QACL,QAAQ;QACR,YAAY,EAAE,YAAY,IAAI,EAAE;KACjC,CAAA;AACH,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB;IAC3B,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAA;IAChC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAA;IAC7B,OAAO,eAAe,CAAC,KAAK,CAAC,CAAA;AAC/B,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,qBAAqB,CAAC,QAAgB;IACnD,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;IACjC,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IACrC,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,CAAA;IACxD,OAAO,eAAe,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC,CAAA;AAC9C,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,KAAiB;IACxC,MAAM,SAAS,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAA;IACxE,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAA;IACvC,OAAO,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAA;AACzE,CAAC;AAED;;;GAGG;AACH,MAAM,eAAe,GAAG,IAAI,GAAG,EAG3B,CAAA;AAEJ;;GAEG;AACH,SAAS,oBAAoB;IAC3B,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;IACtB,MAAM,MAAM,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAA,CAAC,aAAa;IAC3C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,eAAe,CAAC,OAAO,EAAE,EAAE,CAAC;QACrD,IAAI,GAAG,GAAG,KAAK,CAAC,SAAS,GAAG,MAAM,EAAE,CAAC;YACnC,eAAe,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;QAC7B,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,wBAAwB,CACrC,GAAsB,EACtB,cAAsB,gCAAgC;IAEtD,oBAAoB,EAAE,CAAA;IAEtB,MAAM,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;IAEvC,uCAAuC;IACvC,MAAM,YAAY,GAAG,oBAAoB,EAAE,CAAA;IAC3C,MAAM,aAAa,GAAG,MAAM,qBAAqB,CAAC,YAAY,CAAC,CAAA;IAE/D,+CAA+C;IAC/C,MAAM,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC;SACjE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;SAC3C,IAAI,CAAC,EAAE,CAAC,CAAA;IAEX,2BAA2B;IAC3B,eAAe,CAAC,GAAG,CAAC,KAAK,EAAE;QACzB,YAAY;QACZ,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACtB,CAAC,CAAA;IAEF,0BAA0B;IAC1B,MAAM,MAAM,GAAG,IAAI,eAAe,EAAE,CAAA;IACpC,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,WAAW,CAAC,QAAQ,CAAC,CAAA;IAC7C,MAAM,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAA;IACvC,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAA;IACnC,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,gDAAgD,CAAC,CAAA;IACrE,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;IAC1B,MAAM,CAAC,GAAG,CAAC,gBAAgB,EAAE,aAAa,CAAC,CAAA;IAC3C,MAAM,CAAC,GAAG,CAAC,uBAAuB,EAAE,MAAM,CAAC,CAAA;IAC3C,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,SAAS,CAAC,CAAA,CAAC,sBAAsB;IAC3D,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAA,CAAC,qCAAqC;IAErE,MAAM,GAAG,GAAG,gDAAgD,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAA;IAE/E,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,mCAAmC,CAAC,CAAA;IAEtD,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAA;AACvB,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,oBAAoB,CACjC,GAAsB,EACtB,IAAY,EACZ,KAAa,EACb,cAAsB,gCAAgC;IAEtD,wBAAwB;IACxB,MAAM,WAAW,GAAG,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;IAC9C,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAA;IACtE,CAAC;IAED,iBAAiB;IACjB,eAAe,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;IAE7B,MAAM,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;IAEvC,0BAA0B;IAC1B,MAAM,QAAQ,GAAG,qCAAqC,CAAA;IACtD,MAAM,MAAM,GAAG,IAAI,eAAe,EAAE,CAAA;IACpC,MAAM,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;IACxB,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,WAAW,CAAC,QAAQ,CAAC,CAAA;IAC7C,IAAI,WAAW,CAAC,YAAY,EAAE,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,WAAW,CAAC,YAAY,CAAC,CAAA;IACvD,CAAC;IACD,MAAM,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAA;IACvC,MAAM,CAAC,GAAG,CAAC,YAAY,EAAE,oBAAoB,CAAC,CAAA;IAC9C,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,WAAW,CAAC,YAAY,CAAC,CAAA;IAErD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,EAAE;QACrC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;SACpD;QACD,IAAI,EAAE,MAAM,CAAC,QAAQ,EAAE;KACxB,CAAC,CAAA;IAEF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAA;QACvC,MAAM,IAAI,KAAK,CAAC,6BAA6B,QAAQ,CAAC,MAAM,IAAI,SAAS,EAAE,CAAC,CAAA;IAC9E,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAIlC,CAAA;IAED,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,0CAA0C,CAAC,CAAA;IAE7D,OAAO;QACL,WAAW,EAAE,IAAI,CAAC,YAAY;QAC9B,YAAY,EAAE,IAAI,CAAC,aAAa;QAChC,SAAS,EAAE,IAAI,CAAC,UAAU;KAC3B,CAAA;AACH,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,GAAsB,EACtB,OAAiE;IAQjE,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,WAAW,EAAE,GAAG,OAAO,IAAI,EAAE,CAAA;QAElD,sCAAsC;QACtC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,MAAM,wBAAwB,CACtE,GAAG,EACH,WAAW,CACZ,CAAA;YACD,OAAO;gBACL,GAAG,EAAE,OAAO;gBACZ,KAAK,EAAE,QAAQ;aAChB,CAAA;QACH,CAAC;QAED,wDAAwD;QACxD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAA;QAClE,CAAC;QAED,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,SAAS,EAAE,GAAG,MAAM,oBAAoB,CACzE,GAAG,EACH,IAAI,EACJ,KAAK,EACL,WAAW,CACZ,CAAA;QAED,OAAO;YACL,GAAG,EAAE,EAAE;YACP,WAAW;YACX,YAAY;YACZ,SAAS;SACV,CAAA;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,oBAAoB,EAAE,KAAK,CAAC,CAAA;QAC/C,MAAM,KAAK,CAAA;IACb,CAAC;AACH,CAAC"}
+{"version":3,"file":"gmail.js","sourceRoot":"","sources":["../../src/oauth/gmail.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,EACL,iBAAiB,IAAI,qBAAqB,EAC1C,iBAAiB,IAAI,qBAAqB,GAE3C,MAAM,uBAAuB,CAAA;AAG9B;;GAEG;AACH,SAAS,SAAS,CAAC,GAAsB;IACvC,OAAO;QACL,IAAI,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;QACpC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;QACtC,IAAI,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;QACpC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;KACvC,CAAA;AACH,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,GAAsB;IAC5C,MAAM,YAAY,GAAG,GAAG,CAAC,YAAmB,CAAA;IAC5C,MAAM,WAAW,GAAG,YAAY,EAAE,KAAK,IAAI,EAAE,CAAA;IAE7C,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAA;IACpE,MAAM,YAAY,GAChB,WAAW,CAAC,YAAY,IAAI,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAA;IAE7D,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CACb,4GAA4G,CAC7G,CAAA;IACH,CAAC;IAED,OAAO;QACL,QAAQ;QACR,YAAY,EAAE,YAAY,IAAI,EAAE;KACjC,CAAA;AACH,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,wBAAwB,CACrC,GAAsB,EACtB,SAAiB,EACjB,WAAmB,EACnB,YAAgC,EAChC,SAA6B;IAE7B,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAA;IAE7B,mCAAmC;IACnC,MAAM,SAAS,GAAG,SAAS;QACzB,CAAC,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE;QACvD,CAAC,CAAC,SAAS,CAAA;IAEb,2BAA2B;IAC3B,MAAM,MAAM,GAAG,GAAG,CAAC,YAAmB,CAAA;IAEtC,8BAA8B;IAC9B,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,EAAE,SAAS,CAC7C,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,SAAS,IAAI,CAAC,CAAC,IAAI,KAAK,OAAO,CACrD,CAAA;IAED,IAAI,YAAY,KAAK,CAAC,CAAC,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;QACtD,MAAM,CAAC,IAAI,CACT,iBAAiB,SAAS,yCAAyC,CACpE,CAAA;QACD,OAAM;IACR,CAAC;IAED,6BAA6B;IAC7B,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,GAAG;QAC9B,GAAG,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC;QAChC,gBAAgB,EAAE,WAAW;QAC7B,iBAAiB,EAAE,YAAY;QAC/B,gBAAgB,EAAE,SAAS;QAC3B,OAAO,EAAE,IAAI,EAAE,6CAA6C;KAC7D,CAAA;IAED,+EAA+E;IAC/E,2EAA2E;IAC3E,MAAM,CAAC,IAAI,CACT,8CAA8C,SAAS,sDAAsD,CAC9G,CAAA;AACH,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,GAAsB,EACtB,OAKC;IAQD,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,WAAW,EAAE,SAAS,EAAE,GAAG,OAAO,IAAI,EAAE,CAAA;QAC7D,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;QAClC,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAA;QAE7B,sDAAsD;QACtD,MAAM,MAAM,GAAG,MAAM,qBAAqB,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,MAAM,CAAC,CAAA;QAExF,iFAAiF;QACjF,IAAI,SAAS,IAAI,MAAM,CAAC,WAAW,IAAI,IAAI,EAAE,CAAC;YAC5C,MAAM,wBAAwB,CAC5B,GAAG,EACH,SAAS,EACT,MAAM,CAAC,WAAW,EAClB,MAAM,CAAC,YAAY,EACnB,MAAM,CAAC,SAAS,CACjB,CAAA;YACD,MAAM,CAAC,IAAI,CACT,kCAAkC,SAAS,gBAAgB,MAAM,CAAC,SAAS,IAAI,CAChF,CAAA;QACH,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,SAAS,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,oBAAoB,EAAE,KAAK,CAAC,CAAA;QACjD,MAAM,KAAK,CAAA;IACb,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,GAAsB,EACtB,SAAiB;IAEjB,MAAM,MAAM,GAAG,GAAG,CAAC,YAAmB,CAAA;IACtC,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAA;IAE7B,mBAAmB;IACnB,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,EAAE,IAAI,CACnC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,SAAS,IAAI,CAAC,CAAC,IAAI,KAAK,OAAO,CACrD,CAAA;IAED,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,CAAC,KAAK,CAAC,iBAAiB,SAAS,YAAY,CAAC,CAAA;QACpD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;IAEvC,IAAI,CAAC,OAAO,CAAC,iBAAiB,EAAE,CAAC;QAC/B,MAAM,CAAC,KAAK,CACV,gDAAgD,SAAS,8BAA8B,CACxF,CAAA;QACD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,wDAAwD;IACxD,MAAM,MAAM,GAAG,MAAM,qBAAqB,CACxC,WAAW,EACX,OAAO,CAAC,iBAAiB,EACzB,MAAM,CACP,CAAA;IAED,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,IAAI,CAAA;IACb,CAAC;IAED,oCAAoC;IACpC,MAAM,wBAAwB,CAC5B,GAAG,EACH,SAAS,EACT,MAAM,CAAC,WAAW,EAClB,OAAO,CAAC,iBAAiB,EACzB,MAAM,CAAC,SAAS,CACjB,CAAA;IAED,OAAO,MAAM,CAAA;AACf,CAAC"}

package/dist/oauth/plaid.d.ts

@@ -1,28 +1,30 @@
 /**
- * Plaid OAuth handler - implements Plaid Link flow
+ * Plaid OAuth handler - OpenClaw adapter
  *
- * This module handles the Plaid Link OAuth flow for connecting bank accounts.
- * It supports two modes:
- * 1. Link token creation (for initializing Plaid Link frontend)
- * 2. Public token exchange (for completing the connection)
+ * This is an adapter layer that calls the framework-agnostic OAuth implementation
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality (config management).
+ *
+ * @packageDocumentation
  */
 import type { OpenClawPluginApi } from "../types/openclaw-plugin.js";
 /**
  * Handle Plaid Link OAuth flow
  *
- * This integrates Plaid Link (https://plaid.com/docs/link/)
- * for secure bank account connection.
+ * This is an OpenClaw adapter that calls the framework-agnostic OAuth handler
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality.
  *
  * Flow:
  * 1. Create Link token (no params) - Returns { url, token: linkToken }
  * 2. Handle Link success callback - Receives publicToken
  * 3. Exchange public_token for access_token - Returns { url: "", token: accessToken, itemId }
+ *    - If accountId is provided, tokens are automatically saved to account config
  *
  * @param api - OpenClaw plugin API
  * @param publicToken - Optional public token from Plaid Link callback
+ * @param accountId - Optional account ID to save tokens to
  * @returns OAuthResult with URL and token
  */
-export declare function plaidOAuthHandler(api: OpenClawPluginApi, publicToken?: string): Promise<{
+export declare function plaidOAuthHandler(api: OpenClawPluginApi, publicToken?: string, accountId?: string): Promise<{
     url: string;
     token?: string;
     itemId?: string;

package/dist/oauth/plaid.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"plaid.d.ts","sourceRoot":"","sources":["../../src/oauth/plaid.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAA;AAwFpE;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,iBAAiB,EACtB,WAAW,CAAC,EAAE,MAAM,GACnB,OAAO,CAAC;IACT,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,WAAW,CAAC,EAAE,MAAM,CAAA;CACrB,CAAC,CA2BD"}
+{"version":3,"file":"plaid.d.ts","sourceRoot":"","sources":["../../src/oauth/plaid.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAA;AAyFpE;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,iBAAiB,EACtB,WAAW,CAAC,EAAE,MAAM,EACpB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;IACT,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,WAAW,CAAC,EAAE,MAAM,CAAA;CACrB,CAAC,CA6BD"}

package/dist/oauth/plaid.js

@@ -1,12 +1,23 @@
 /**
- * Plaid OAuth handler - implements Plaid Link flow
+ * Plaid OAuth handler - OpenClaw adapter
  *
- * This module handles the Plaid Link OAuth flow for connecting bank accounts.
- * It supports two modes:
- * 1. Link token creation (for initializing Plaid Link frontend)
- * 2. Public token exchange (for completing the connection)
+ * This is an adapter layer that calls the framework-agnostic OAuth implementation
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality (config management).
+ *
+ * @packageDocumentation
  */
-import { createPlaidClient } from "@firela/billclaw-core";
+import { plaidOAuthHandler as corePlaidOAuthHandler, } from "@firela/billclaw-core";
+/**
+ * Get a logger from OpenClaw API, or provide a no-op logger
+ */
+function getLogger(api) {
+    return {
+        info: api.logger?.info || (() => { }),
+        error: api.logger?.error || (() => { }),
+        warn: api.logger?.warn || (() => { }),
+        debug: api.logger?.debug || (() => { }),
+    };
+}
 /**
  * Get Plaid configuration from OpenClaw config
  *
@@ -28,80 +39,64 @@ function getPlaidConfig(api) {
     };
 }
 /**
- * Create Plaid Link token for initializing Link frontend
- */
-async function createLinkToken(api, accountId) {
-    const plaidConfig = getPlaidConfig(api);
-    const plaidClient = createPlaidClient(plaidConfig);
-    const request = {
-        user: {
-            client_user_id: accountId || `user_${Date.now()}`,
-        },
-        client_name: "BillClaw",
-        products: ["transactions"],
-        country_codes: ["US"],
-        language: "en",
-    };
-    const axiosResponse = await plaidClient.linkTokenCreate(request);
-    const response = axiosResponse.data;
-    api.logger.info?.("Plaid Link token created successfully");
-    return { linkToken: response.link_token };
-}
-/**
- * Exchange Plaid public token for access token
+ * Save Plaid OAuth tokens to account configuration
+ *
+ * NOTE: This requires the OpenClaw runtime to support config updates.
+ * The actual persistence depends on the OpenClawConfigProvider implementation.
  */
-async function exchangePublicToken(api, publicToken) {
-    const plaidConfig = getPlaidConfig(api);
-    const plaidClient = createPlaidClient(plaidConfig);
-    const request = {
-        public_token: publicToken,
-    };
-    const axiosResponse = await plaidClient.itemPublicTokenExchange(request);
-    const response = axiosResponse.data;
-    api.logger.info?.("Plaid public token exchanged successfully");
-    return {
-        accessToken: response.access_token,
-        itemId: response.item_id,
+async function savePlaidTokensToAccount(api, accountId, accessToken, itemId) {
+    const logger = getLogger(api);
+    // Get config from OpenClaw
+    const config = api.pluginConfig;
+    // Find and update the account
+    const accountIndex = config.accounts?.findIndex((a) => a.id === accountId && a.type === "plaid");
+    if (accountIndex === -1 || accountIndex === undefined) {
+        logger.warn(`Plaid account ${accountId} not found in config. Tokens not saved.`);
+        return;
+    }
+    // Update account with tokens
+    config.accounts[accountIndex] = {
+        ...config.accounts[accountIndex],
+        plaidAccessToken: accessToken,
+        plaidItemId: itemId,
+        enabled: true, // Auto-enable account after successful OAuth
     };
+    // Note: The actual persistence to disk depends on OpenClaw's config management
+    // The updated config is in memory but OpenClaw needs to handle persistence
+    logger.info(`Plaid tokens updated in memory for account ${accountId}. Persistence depends on OpenClaw config management.`);
 }
 /**
  * Handle Plaid Link OAuth flow
  *
- * This integrates Plaid Link (https://plaid.com/docs/link/)
- * for secure bank account connection.
+ * This is an OpenClaw adapter that calls the framework-agnostic OAuth handler
+ * from @firela/billclaw-core and adds OpenClaw-specific functionality.
  *
  * Flow:
  * 1. Create Link token (no params) - Returns { url, token: linkToken }
  * 2. Handle Link success callback - Receives publicToken
  * 3. Exchange public_token for access_token - Returns { url: "", token: accessToken, itemId }
+ *    - If accountId is provided, tokens are automatically saved to account config
  *
  * @param api - OpenClaw plugin API
  * @param publicToken - Optional public token from Plaid Link callback
+ * @param accountId - Optional account ID to save tokens to
  * @returns OAuthResult with URL and token
  */
-export async function plaidOAuthHandler(api, publicToken) {
+export async function plaidOAuthHandler(api, publicToken, accountId) {
     try {
-        if (!publicToken) {
-            // No public token provided - create Link token for initializing Link
-            const { linkToken } = await createLinkToken(api);
-            // Return Plaid Link URL and the link token
-            return {
-                url: "https://cdn.plaid.com/link/v2/stable/link.html",
-                token: linkToken,
-            };
+        const config = getPlaidConfig(api);
+        const logger = getLogger(api);
+        // Call the framework-agnostic OAuth handler from core
+        const result = await corePlaidOAuthHandler(config, publicToken, accountId, logger);
+        // Save tokens to account config if accountId is provided and we have accessToken
+        if (accountId && result.accessToken && publicToken) {
+            await savePlaidTokensToAccount(api, accountId, result.accessToken, result.itemId || "");
+            logger.info(`Plaid tokens saved for account ${accountId}`);
         }
-        // Public token provided - exchange for access token
-        const { accessToken, itemId } = await exchangePublicToken(api, publicToken);
-        // Return the access token and item ID for storage
-        return {
-            url: "",
-            token: accessToken,
-            itemId,
-            accessToken,
-        };
+        return result;
     }
     catch (error) {
-        api.logger.error?.("Plaid OAuth error:", error);
+        getLogger(api).error("Plaid OAuth error:", error);
         throw error;
     }
 }

package/dist/oauth/plaid.js.map

@@ -1 +1 @@
-{"version":3,"file":"plaid.js","sourceRoot":"","sources":["../../src/oauth/plaid.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,EAAE,iBAAiB,EAAoB,MAAM,uBAAuB,CAAA;AAQ3E;;;;GAIG;AACH,SAAS,cAAc,CAAC,GAAsB;IAC5C,MAAM,YAAY,GAAG,GAAG,CAAC,YAAmB,CAAA;IAC5C,MAAM,WAAW,GAAG,YAAY,EAAE,KAAK,IAAI,EAAE,CAAA;IAE7C,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAA;IACpE,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,CAAA;IAC7D,MAAM,WAAW,GAAG,WAAW,CAAC,WAAW,IAAI,SAAS,CAAA;IAExD,IAAI,CAAC,QAAQ,IAAI,CAAC,MAAM,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CACb,uIAAuI,CACxI,CAAA;IACH,CAAC;IAED,OAAO;QACL,QAAQ;QACR,MAAM;QACN,WAAW,EAAE,WAAuD;KACrE,CAAA;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,eAAe,CAC5B,GAAsB,EACtB,SAAkB;IAElB,MAAM,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;IACvC,MAAM,WAAW,GAAG,iBAAiB,CAAC,WAAW,CAAC,CAAA;IAElD,MAAM,OAAO,GAA2B;QACtC,IAAI,EAAE;YACJ,cAAc,EAAE,SAAS,IAAI,QAAQ,IAAI,CAAC,GAAG,EAAE,EAAE;SAClD;QACD,WAAW,EAAE,UAAU;QACvB,QAAQ,EAAE,CAAC,cAAqB,CAAC;QACjC,aAAa,EAAE,CAAC,IAAW,CAAC;QAC5B,QAAQ,EAAE,IAAI;KACf,CAAA;IAED,MAAM,aAAa,GAAG,MAAM,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;IAChE,MAAM,QAAQ,GAA4B,aAAa,CAAC,IAAI,CAAA;IAE5D,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,uCAAuC,CAAC,CAAA;IAE1D,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC,UAAU,EAAE,CAAA;AAC3C,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAChC,GAAsB,EACtB,WAAmB;IAEnB,MAAM,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;IACvC,MAAM,WAAW,GAAG,iBAAiB,CAAC,WAAW,CAAC,CAAA;IAElD,MAAM,OAAO,GAAmC;QAC9C,YAAY,EAAE,WAAW;KAC1B,CAAA;IAED,MAAM,aAAa,GAAG,MAAM,WAAW,CAAC,uBAAuB,CAAC,OAAO,CAAC,CAAA;IACxE,MAAM,QAAQ,GAAoC,aAAa,CAAC,IAAI,CAAA;IAEpE,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,2CAA2C,CAAC,CAAA;IAE9D,OAAO;QACL,WAAW,EAAE,QAAQ,CAAC,YAAY;QAClC,MAAM,EAAE,QAAQ,CAAC,OAAO;KACzB,CAAA;AACH,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,GAAsB,EACtB,WAAoB;IAOpB,IAAI,CAAC;QACH,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,qEAAqE;YACrE,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,eAAe,CAAC,GAAG,CAAC,CAAA;YAEhD,2CAA2C;YAC3C,OAAO;gBACL,GAAG,EAAE,gDAAgD;gBACrD,KAAK,EAAE,SAAS;aACjB,CAAA;QACH,CAAC;QAED,oDAAoD;QACpD,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,GAAG,MAAM,mBAAmB,CAAC,GAAG,EAAE,WAAW,CAAC,CAAA;QAE3E,kDAAkD;QAClD,OAAO;YACL,GAAG,EAAE,EAAE;YACP,KAAK,EAAE,WAAW;YAClB,MAAM;YACN,WAAW;SACZ,CAAA;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,oBAAoB,EAAE,KAAK,CAAC,CAAA;QAC/C,MAAM,KAAK,CAAA;IACb,CAAC;AACH,CAAC"}
+{"version":3,"file":"plaid.js","sourceRoot":"","sources":["../../src/oauth/plaid.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,EACL,iBAAiB,IAAI,qBAAqB,GAE3C,MAAM,uBAAuB,CAAA;AAG9B;;GAEG;AACH,SAAS,SAAS,CAAC,GAAsB;IACvC,OAAO;QACL,IAAI,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;QACpC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;QACtC,IAAI,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;QACpC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;KACvC,CAAA;AACH,CAAC;AAED;;;;GAIG;AACH,SAAS,cAAc,CAAC,GAAsB;IAC5C,MAAM,YAAY,GAAG,GAAG,CAAC,YAAmB,CAAA;IAC5C,MAAM,WAAW,GAAG,YAAY,EAAE,KAAK,IAAI,EAAE,CAAA;IAE7C,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAA;IACpE,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,CAAA;IAC7D,MAAM,WAAW,GAAG,WAAW,CAAC,WAAW,IAAI,SAAS,CAAA;IAExD,IAAI,CAAC,QAAQ,IAAI,CAAC,MAAM,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CACb,uIAAuI,CACxI,CAAA;IACH,CAAC;IAED,OAAO;QACL,QAAQ;QACR,MAAM;QACN,WAAW,EAAE,WAAuD;KACrE,CAAA;AACH,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,wBAAwB,CACrC,GAAsB,EACtB,SAAiB,EACjB,WAAmB,EACnB,MAAc;IAEd,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAA;IAE7B,2BAA2B;IAC3B,MAAM,MAAM,GAAG,GAAG,CAAC,YAAmB,CAAA;IAEtC,8BAA8B;IAC9B,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,EAAE,SAAS,CAC7C,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,SAAS,IAAI,CAAC,CAAC,IAAI,KAAK,OAAO,CACrD,CAAA;IAED,IAAI,YAAY,KAAK,CAAC,CAAC,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;QACtD,MAAM,CAAC,IAAI,CACT,iBAAiB,SAAS,yCAAyC,CACpE,CAAA;QACD,OAAM;IACR,CAAC;IAED,6BAA6B;IAC7B,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,GAAG;QAC9B,GAAG,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC;QAChC,gBAAgB,EAAE,WAAW;QAC7B,WAAW,EAAE,MAAM;QACnB,OAAO,EAAE,IAAI,EAAE,6CAA6C;KAC7D,CAAA;IAED,+EAA+E;IAC/E,2EAA2E;IAC3E,MAAM,CAAC,IAAI,CACT,8CAA8C,SAAS,sDAAsD,CAC9G,CAAA;AACH,CAAC;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,GAAsB,EACtB,WAAoB,EACpB,SAAkB;IAOlB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,CAAA;QAClC,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAA;QAE7B,sDAAsD;QACtD,MAAM,MAAM,GAAG,MAAM,qBAAqB,CACxC,MAAM,EACN,WAAW,EACX,SAAS,EACT,MAAM,CACP,CAAA;QAED,iFAAiF;QACjF,IAAI,SAAS,IAAI,MAAM,CAAC,WAAW,IAAI,WAAW,EAAE,CAAC;YACnD,MAAM,wBAAwB,CAC5B,GAAG,EACH,SAAS,EACT,MAAM,CAAC,WAAW,EAClB,MAAM,CAAC,MAAM,IAAI,EAAE,CACpB,CAAA;YACD,MAAM,CAAC,IAAI,CAAC,kCAAkC,SAAS,EAAE,CAAC,CAAA;QAC5D,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,SAAS,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,oBAAoB,EAAE,KAAK,CAAC,CAAA;QACjD,MAAM,KAAK,CAAA;IACb,CAAC;AACH,CAAC"}

package/dist/plugin.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"plugin.d.ts","sourceRoot":"","sources":["../src/plugin.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAA;AAYnE;;GAEG;;;;;;kBAQa,iBAAiB;;AAPjC,wBA0NC"}
+{"version":3,"file":"plugin.d.ts","sourceRoot":"","sources":["../src/plugin.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAA;AAYnE;;GAEG;;;;;;kBAQa,iBAAiB;;AAPjC,wBA6NC"}

package/dist/plugin.js

@@ -176,9 +176,12 @@ export default {
         // ========================================================================
         const cfg = api.pluginConfig;
         const plaidSecret = cfg.plaid?.webhookSecret || process.env.PLAID_WEBHOOK_SECRET;
+        // Webhook registration is now async (initializes Core components)
         registerWebhookHandlers({
             api,
             plaidWebhookSecret: plaidSecret,
+        }).catch((error) => {
+            api.logger.error?.("Failed to register webhook handlers:", error);
         });
         // ========================================================================
         // Background Services