@grainql/analytics-web 2.8.0 → 3.0.0

package/dist/index.js

@@ -44,6 +44,7 @@ const cookies_1 = require("./cookies");
 const activity_1 = require("./activity");
 const heartbeat_1 = require("./heartbeat");
 const page_tracking_1 = require("./page-tracking");
+const id_manager_1 = require("./id-manager");
 const attribution_1 = require("./attribution");
 Object.defineProperty(exports, "categorizeReferrer", { enumerable: true, get: function () { return attribution_1.categorizeReferrer; } });
 Object.defineProperty(exports, "parseUTMParameters", { enumerable: true, get: function () { return attribution_1.parseUTMParameters; } });
@@ -59,13 +60,13 @@ class GrainAnalytics {
         this.flushTimer = null;
         this.isDestroyed = false;
         this.globalUserId = null;
-        this.persistentAnonymousUserId = null;
+        this.persistentAnonymousUserId = null; // Deprecated: use idManager instead
         // Remote Config properties
         this.configCache = null;
         this.configRefreshTimer = null;
         this.configChangeListeners = [];
         this.configFetchPromise = null;
-        this.cookiesEnabled = false;
+        this.cookiesEnabled = false; // Deprecated: cookies no longer used for IDs
         // Automatic Tracking properties
         this.activityDetector = null;
         this.heartbeatManager = null;
@@ -96,38 +97,37 @@ class GrainAnalytics {
             configCacheKey: 'grain_config',
             configRefreshInterval: 300000, // 5 minutes
             enableConfigCache: true,
-            // Privacy defaults
-            consentMode: 'opt-out',
+            // Privacy defaults (v2.0)
+            consentMode: 'cookieless', // Default: privacy-first, no permanent tracking
             waitForConsent: false,
-            enableCookies: false,
-            anonymizeIP: false,
             disableAutoProperties: false,
             // Automatic Tracking defaults
             enableHeartbeat: true,
             heartbeatActiveInterval: 120000, // 2 minutes
             heartbeatInactiveInterval: 300000, // 5 minutes
             enableAutoPageView: true,
-            stripQueryParams: true,
+            stripQueryParams: true, // Privacy-first: strip by default
+            stripHash: false,
             // Heatmap Tracking defaults
             enableHeatmapTracking: true,
             ...config,
             tenantId: config.tenantId,
         };
-        // Initialize consent manager
+        // Initialize consent manager (v2.0)
         this.consentManager = new consent_1.ConsentManager(this.config.tenantId, this.config.consentMode);
-        // Check if cookies are enabled
-        if (this.config.enableCookies) {
-            this.cookiesEnabled = (0, cookies_1.areCookiesEnabled)();
-            if (!this.cookiesEnabled && this.config.debug) {
-                console.warn('[Grain Analytics] Cookies are not available, falling back to localStorage');
-            }
-        }
+        // Initialize ID manager (v2.0)
+        const idMode = this.consentManager.getIdMode();
+        this.idManager = new id_manager_1.IdManager({
+            mode: idMode,
+            tenantId: this.config.tenantId,
+            useLocalStorage: true, // For permanent IDs when consented
+        });
         // Set global userId if provided in config
         if (config.userId) {
             this.globalUserId = config.userId;
         }
         this.validateConfig();
-        this.initializePersistentAnonymousUserId();
+        // Deprecated: initializePersistentAnonymousUserId() - now handled by IdManager
         this.setupBeforeUnload();
         this.startFlushTimer();
         this.initializeConfigCache();
@@ -145,8 +145,11 @@ class GrainAnalytics {
                 this.initializeHeatmapTracking();
             }
         }
-        // Set up consent change listener to flush waiting events and handle consent upgrade
+        // Set up consent change listener to sync IdManager and flush waiting events (v2.0)
         this.consentManager.addListener((state) => {
+            // Sync IdManager with consent state
+            const idMode = this.consentManager.getIdMode();
+            this.idManager.setMode(idMode);
             if (state.granted) {
                 this.handleConsentGranted();
             }
@@ -188,11 +191,14 @@ class GrainAnalytics {
      */
     shouldAllowPersistentStorage() {
         const hasConsent = this.consentManager.hasConsent('analytics');
-        const isOptInMode = this.config.consentMode === 'opt-in';
+        const isCookieless = this.config.consentMode === 'cookieless';
         const userExplicitlyIdentified = !!this.globalUserId;
         const isJWTAuth = this.config.authStrategy === 'JWT';
+        // Never allow persistent storage in cookieless mode
+        if (isCookieless)
+            return false;
         // Allow persistent storage if any of these conditions are met
-        return hasConsent || !isOptInMode || userExplicitlyIdentified || isJWTAuth;
+        return hasConsent || userExplicitlyIdentified || isJWTAuth;
     }
     /**
      * Generate a proper UUIDv4 identifier for anonymous user ID
@@ -286,23 +292,21 @@ class GrainAnalytics {
         }
     }
     /**
-     * Get the effective user ID (global userId or persistent anonymous ID)
+     * Get the effective user ID (v2.0)
      *
-     * GDPR Compliance: In opt-in mode without consent and no explicit user identification,
-     * this should not be called. Use getEphemeralSessionId() instead.
+     * Privacy-first implementation:
+     * - Returns global userId if explicitly set (via identify/login)
+     * - Otherwise uses IdManager to generate:
+     *   - Daily rotating ID (cookieless mode)
+     *   - Permanent ID (with consent)
      */
     getEffectiveUserIdInternal() {
+        // Explicit user identification always takes precedence
         if (this.globalUserId) {
             return this.globalUserId;
         }
-        if (this.persistentAnonymousUserId) {
-            return this.persistentAnonymousUserId;
-        }
-        // Generate a new UUIDv4 identifier as fallback
-        this.persistentAnonymousUserId = this.generateAnonymousUserId();
-        // Try to persist it (will be skipped in opt-in mode without consent)
-        this.savePersistentAnonymousUserId(this.persistentAnonymousUserId);
-        return this.persistentAnonymousUserId;
+        // Use IdManager to generate appropriate ID based on consent
+        return this.idManager.getCurrentUserId();
     }
     log(...args) {
         if (this.config.debug) {
@@ -673,6 +677,7 @@ class GrainAnalytics {
             try {
                 this.pageTrackingManager = new page_tracking_1.PageTrackingManager(this, {
                     stripQueryParams: this.config.stripQueryParams,
+                    stripHash: this.config.stripHash,
                     debug: this.config.debug,
                     tenantId: this.config.tenantId,
                 });
@@ -970,12 +975,13 @@ class GrainAnalytics {
             return;
         const hasConsent = this.consentManager.hasConsent('analytics');
         // Create event with appropriate user ID
+        // v2.0: Always use IdManager which returns daily rotating ID or permanent ID based on consent
         const event = {
             eventName,
-            userId: hasConsent ? this.getEffectiveUserId() : this.getEphemeralSessionId(),
+            userId: this.getEffectiveUserId(), // IdManager handles daily vs permanent based on consent
             properties: {
                 ...properties,
-                _minimal: !hasConsent, // Flag to indicate minimal tracking
+                _minimal: !hasConsent, // Flag to indicate minimal tracking (daily rotating ID)
                 _consent_status: hasConsent ? 'granted' : 'pending',
             },
         };
@@ -1072,17 +1078,22 @@ class GrainAnalytics {
                 event.properties = filtered;
             }
             const formattedEvent = this.formatEvent(event);
-            // Check consent before tracking
+            // Check if we should wait for consent (only if explicitly configured)
             if (this.consentManager.shouldWaitForConsent() && this.config.waitForConsent) {
                 // Queue event until consent is granted
                 this.waitingForConsentQueue.push(formattedEvent);
                 this.log(`Event waiting for consent: ${event.eventName}`, event.properties);
                 return;
             }
-            if (!this.consentManager.hasConsent('analytics')) {
-                this.log(`Event blocked by consent: ${event.eventName}`);
-                return;
-            }
+            // v2.0: GDPR Strict falls back to cookie-less mode (daily rotating IDs)
+            // Events are never blocked - IdManager already provides correct ID (daily or permanent)
+            const hasConsent = this.consentManager.hasConsent('analytics');
+            // Add tracking flags to indicate consent status
+            formattedEvent.properties = {
+                ...formattedEvent.properties,
+                _minimal: !hasConsent, // Flag: true = daily rotating ID, false = permanent ID
+                _consent_status: hasConsent ? 'granted' : 'pending',
+            };
             this.eventQueue.push(formattedEvent);
             this.eventCountSinceLastHeartbeat++;
             this.sessionEventCount++;
@@ -1770,13 +1781,24 @@ class GrainAnalytics {
     }
     // Privacy & Consent Methods
     /**
-     * Grant consent for tracking
+     * Grant consent for tracking (v2.0)
+     * Switches from cookie-less mode to permanent IDs
      * @param categories - Optional array of consent categories (e.g., ['analytics', 'functional'])
      */
     grantConsent(categories) {
         try {
             this.consentManager.grantConsent(categories);
-            this.log('Consent granted', categories);
+            // Sync ID manager with consent state
+            const idMode = this.consentManager.getIdMode();
+            this.idManager.setMode(idMode);
+            this.log('Consent granted, switched to permanent IDs', categories);
+            // Process any queued events waiting for consent
+            if (this.waitingForConsentQueue.length > 0) {
+                this.log(`Processing ${this.waitingForConsentQueue.length} queued events`);
+                this.eventQueue.push(...this.waitingForConsentQueue);
+                this.waitingForConsentQueue = [];
+                this.flush();
+            }
         }
         catch (error) {
             const formattedError = this.formatError(error, 'grantConsent');
@@ -1784,16 +1806,22 @@ class GrainAnalytics {
         }
     }
     /**
-     * Revoke consent for tracking (opt-out)
+     * Revoke consent for tracking (v2.0)
+     * Switches from permanent IDs to cookie-less mode
      * @param categories - Optional array of categories to revoke (if not provided, revokes all)
      */
     revokeConsent(categories) {
         try {
             this.consentManager.revokeConsent(categories);
-            this.log('Consent revoked', categories);
-            // Clear queued events when consent is revoked
-            this.eventQueue = [];
-            this.waitingForConsentQueue = [];
+            // Sync ID manager with consent state
+            const idMode = this.consentManager.getIdMode();
+            this.idManager.setMode(idMode);
+            this.log('Consent revoked, switched to cookie-less mode', categories);
+            // Clear queued events when consent is fully revoked
+            if (!this.consentManager.hasConsent()) {
+                this.eventQueue = [];
+                this.waitingForConsentQueue = [];
+            }
         }
         catch (error) {
             const formattedError = this.formatError(error, 'revokeConsent');

package/dist/index.mjs

@@ -3,10 +3,11 @@
  * A lightweight, dependency-free TypeScript SDK for sending analytics events to Grain's REST API
  */
 import { ConsentManager } from './consent.js';
-import { setCookie, getCookie, areCookiesEnabled } from './cookies.js';
+import { setCookie, getCookie } from './cookies.js';
 import { ActivityDetector } from './activity.js';
 import { HeartbeatManager } from './heartbeat.js';
 import { PageTrackingManager } from './page-tracking.js';
+import { IdManager } from './id-manager.js';
 import { categorizeReferrer, parseUTMParameters, getOrCreateFirstTouchAttribution, getSessionUTMParameters, getFirstTouchAttribution, } from './attribution.js';
 export { categorizeReferrer, parseUTMParameters };
 // Re-export timezone-country utilities
@@ -18,13 +19,13 @@ export class GrainAnalytics {
         this.flushTimer = null;
         this.isDestroyed = false;
         this.globalUserId = null;
-        this.persistentAnonymousUserId = null;
+        this.persistentAnonymousUserId = null; // Deprecated: use idManager instead
         // Remote Config properties
         this.configCache = null;
         this.configRefreshTimer = null;
         this.configChangeListeners = [];
         this.configFetchPromise = null;
-        this.cookiesEnabled = false;
+        this.cookiesEnabled = false; // Deprecated: cookies no longer used for IDs
         // Automatic Tracking properties
         this.activityDetector = null;
         this.heartbeatManager = null;
@@ -55,38 +56,37 @@ export class GrainAnalytics {
             configCacheKey: 'grain_config',
             configRefreshInterval: 300000, // 5 minutes
             enableConfigCache: true,
-            // Privacy defaults
-            consentMode: 'opt-out',
+            // Privacy defaults (v2.0)
+            consentMode: 'cookieless', // Default: privacy-first, no permanent tracking
             waitForConsent: false,
-            enableCookies: false,
-            anonymizeIP: false,
             disableAutoProperties: false,
             // Automatic Tracking defaults
             enableHeartbeat: true,
             heartbeatActiveInterval: 120000, // 2 minutes
             heartbeatInactiveInterval: 300000, // 5 minutes
             enableAutoPageView: true,
-            stripQueryParams: true,
+            stripQueryParams: true, // Privacy-first: strip by default
+            stripHash: false,
             // Heatmap Tracking defaults
             enableHeatmapTracking: true,
             ...config,
             tenantId: config.tenantId,
         };
-        // Initialize consent manager
+        // Initialize consent manager (v2.0)
         this.consentManager = new ConsentManager(this.config.tenantId, this.config.consentMode);
-        // Check if cookies are enabled
-        if (this.config.enableCookies) {
-            this.cookiesEnabled = areCookiesEnabled();
-            if (!this.cookiesEnabled && this.config.debug) {
-                console.warn('[Grain Analytics] Cookies are not available, falling back to localStorage');
-            }
-        }
+        // Initialize ID manager (v2.0)
+        const idMode = this.consentManager.getIdMode();
+        this.idManager = new IdManager({
+            mode: idMode,
+            tenantId: this.config.tenantId,
+            useLocalStorage: true, // For permanent IDs when consented
+        });
         // Set global userId if provided in config
         if (config.userId) {
             this.globalUserId = config.userId;
         }
         this.validateConfig();
-        this.initializePersistentAnonymousUserId();
+        // Deprecated: initializePersistentAnonymousUserId() - now handled by IdManager
         this.setupBeforeUnload();
         this.startFlushTimer();
         this.initializeConfigCache();
@@ -104,8 +104,11 @@ export class GrainAnalytics {
                 this.initializeHeatmapTracking();
             }
         }
-        // Set up consent change listener to flush waiting events and handle consent upgrade
+        // Set up consent change listener to sync IdManager and flush waiting events (v2.0)
         this.consentManager.addListener((state) => {
+            // Sync IdManager with consent state
+            const idMode = this.consentManager.getIdMode();
+            this.idManager.setMode(idMode);
             if (state.granted) {
                 this.handleConsentGranted();
             }
@@ -147,11 +150,14 @@ export class GrainAnalytics {
      */
     shouldAllowPersistentStorage() {
         const hasConsent = this.consentManager.hasConsent('analytics');
-        const isOptInMode = this.config.consentMode === 'opt-in';
+        const isCookieless = this.config.consentMode === 'cookieless';
         const userExplicitlyIdentified = !!this.globalUserId;
         const isJWTAuth = this.config.authStrategy === 'JWT';
+        // Never allow persistent storage in cookieless mode
+        if (isCookieless)
+            return false;
         // Allow persistent storage if any of these conditions are met
-        return hasConsent || !isOptInMode || userExplicitlyIdentified || isJWTAuth;
+        return hasConsent || userExplicitlyIdentified || isJWTAuth;
     }
     /**
      * Generate a proper UUIDv4 identifier for anonymous user ID
@@ -245,23 +251,21 @@ export class GrainAnalytics {
         }
     }
     /**
-     * Get the effective user ID (global userId or persistent anonymous ID)
+     * Get the effective user ID (v2.0)
      *
-     * GDPR Compliance: In opt-in mode without consent and no explicit user identification,
-     * this should not be called. Use getEphemeralSessionId() instead.
+     * Privacy-first implementation:
+     * - Returns global userId if explicitly set (via identify/login)
+     * - Otherwise uses IdManager to generate:
+     *   - Daily rotating ID (cookieless mode)
+     *   - Permanent ID (with consent)
      */
     getEffectiveUserIdInternal() {
+        // Explicit user identification always takes precedence
         if (this.globalUserId) {
             return this.globalUserId;
         }
-        if (this.persistentAnonymousUserId) {
-            return this.persistentAnonymousUserId;
-        }
-        // Generate a new UUIDv4 identifier as fallback
-        this.persistentAnonymousUserId = this.generateAnonymousUserId();
-        // Try to persist it (will be skipped in opt-in mode without consent)
-        this.savePersistentAnonymousUserId(this.persistentAnonymousUserId);
-        return this.persistentAnonymousUserId;
+        // Use IdManager to generate appropriate ID based on consent
+        return this.idManager.getCurrentUserId();
     }
     log(...args) {
         if (this.config.debug) {
@@ -632,6 +636,7 @@ export class GrainAnalytics {
             try {
                 this.pageTrackingManager = new PageTrackingManager(this, {
                     stripQueryParams: this.config.stripQueryParams,
+                    stripHash: this.config.stripHash,
                     debug: this.config.debug,
                     tenantId: this.config.tenantId,
                 });
@@ -929,12 +934,13 @@ export class GrainAnalytics {
             return;
         const hasConsent = this.consentManager.hasConsent('analytics');
         // Create event with appropriate user ID
+        // v2.0: Always use IdManager which returns daily rotating ID or permanent ID based on consent
         const event = {
             eventName,
-            userId: hasConsent ? this.getEffectiveUserId() : this.getEphemeralSessionId(),
+            userId: this.getEffectiveUserId(), // IdManager handles daily vs permanent based on consent
             properties: {
                 ...properties,
-                _minimal: !hasConsent, // Flag to indicate minimal tracking
+                _minimal: !hasConsent, // Flag to indicate minimal tracking (daily rotating ID)
                 _consent_status: hasConsent ? 'granted' : 'pending',
             },
         };
@@ -1031,17 +1037,22 @@ export class GrainAnalytics {
                 event.properties = filtered;
             }
             const formattedEvent = this.formatEvent(event);
-            // Check consent before tracking
+            // Check if we should wait for consent (only if explicitly configured)
             if (this.consentManager.shouldWaitForConsent() && this.config.waitForConsent) {
                 // Queue event until consent is granted
                 this.waitingForConsentQueue.push(formattedEvent);
                 this.log(`Event waiting for consent: ${event.eventName}`, event.properties);
                 return;
             }
-            if (!this.consentManager.hasConsent('analytics')) {
-                this.log(`Event blocked by consent: ${event.eventName}`);
-                return;
-            }
+            // v2.0: GDPR Strict falls back to cookie-less mode (daily rotating IDs)
+            // Events are never blocked - IdManager already provides correct ID (daily or permanent)
+            const hasConsent = this.consentManager.hasConsent('analytics');
+            // Add tracking flags to indicate consent status
+            formattedEvent.properties = {
+                ...formattedEvent.properties,
+                _minimal: !hasConsent, // Flag: true = daily rotating ID, false = permanent ID
+                _consent_status: hasConsent ? 'granted' : 'pending',
+            };
             this.eventQueue.push(formattedEvent);
             this.eventCountSinceLastHeartbeat++;
             this.sessionEventCount++;
@@ -1729,13 +1740,24 @@ export class GrainAnalytics {
     }
     // Privacy & Consent Methods
     /**
-     * Grant consent for tracking
+     * Grant consent for tracking (v2.0)
+     * Switches from cookie-less mode to permanent IDs
      * @param categories - Optional array of consent categories (e.g., ['analytics', 'functional'])
      */
     grantConsent(categories) {
         try {
             this.consentManager.grantConsent(categories);
-            this.log('Consent granted', categories);
+            // Sync ID manager with consent state
+            const idMode = this.consentManager.getIdMode();
+            this.idManager.setMode(idMode);
+            this.log('Consent granted, switched to permanent IDs', categories);
+            // Process any queued events waiting for consent
+            if (this.waitingForConsentQueue.length > 0) {
+                this.log(`Processing ${this.waitingForConsentQueue.length} queued events`);
+                this.eventQueue.push(...this.waitingForConsentQueue);
+                this.waitingForConsentQueue = [];
+                this.flush();
+            }
         }
         catch (error) {
             const formattedError = this.formatError(error, 'grantConsent');
@@ -1743,16 +1765,22 @@ export class GrainAnalytics {
         }
     }
     /**
-     * Revoke consent for tracking (opt-out)
+     * Revoke consent for tracking (v2.0)
+     * Switches from permanent IDs to cookie-less mode
      * @param categories - Optional array of categories to revoke (if not provided, revokes all)
      */
     revokeConsent(categories) {
         try {
             this.consentManager.revokeConsent(categories);
-            this.log('Consent revoked', categories);
-            // Clear queued events when consent is revoked
-            this.eventQueue = [];
-            this.waitingForConsentQueue = [];
+            // Sync ID manager with consent state
+            const idMode = this.consentManager.getIdMode();
+            this.idManager.setMode(idMode);
+            this.log('Consent revoked, switched to cookie-less mode', categories);
+            // Clear queued events when consent is fully revoked
+            if (!this.consentManager.hasConsent()) {
+                this.eventQueue = [];
+                this.waitingForConsentQueue = [];
+            }
         }
         catch (error) {
             const formattedError = this.formatError(error, 'revokeConsent');

package/dist/page-tracking.d.ts

@@ -4,6 +4,7 @@
  */
 export interface PageTrackingConfig {
     stripQueryParams: boolean;
+    stripHash?: boolean;
     debug?: boolean;
     tenantId: string;
 }
@@ -63,8 +64,13 @@ export declare class PageTrackingManager {
     private getDeviceType;
     /**
      * Extract path from URL, optionally stripping query parameters
+     * Privacy-first: strips query params by default
      */
     private extractPath;
+    /**
+     * Clean URL for privacy (strip query params based on config)
+     */
+    private cleanUrl;
     /**
      * Get the current page path
      */

package/dist/page-tracking.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"page-tracking.d.ts","sourceRoot":"","sources":["../src/page-tracking.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAaH,MAAM,WAAW,kBAAkB;IACjC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,gBAAgB,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IAC/E,UAAU,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IACvC,kBAAkB,IAAI,MAAM,CAAC;IAC7B,qBAAqB,IAAI,MAAM,CAAC;IAChC,YAAY,IAAI,MAAM,CAAC;CACxB;AAED,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,MAAM,CAAqB;IACnC,OAAO,CAAC,OAAO,CAAc;IAC7B,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,iBAAiB,CAAyC;IAClE,OAAO,CAAC,oBAAoB,CAA4C;IACxE,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,aAAa,CAAK;gBAEd,OAAO,EAAE,WAAW,EAAE,MAAM,EAAE,kBAAkB;IAY5D;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAqB7B;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAK/B;;OAEG;IACH,OAAO,CAAC,cAAc,CAGpB;IAEF;;OAEG;IACH,OAAO,CAAC,gBAAgB,CAGtB;IAEF;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA4GxB;;OAEG;IACH,OAAO,CAAC,aAAa;IASrB;;OAEG;IACH,OAAO,CAAC,UAAU;IAUlB;;OAEG;IACH,OAAO,CAAC,KAAK;IAUb;;OAEG;IACH,OAAO,CAAC,aAAa;IAwBrB;;OAEG;IACH,OAAO,CAAC,WAAW;IAmBnB;;OAEG;IACH,cAAc,IAAI,MAAM,GAAG,IAAI;IAI/B;;OAEG;IACH,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI;IAqCnE;;OAEG;IACH,gBAAgB,IAAI,MAAM;IAI1B;;OAEG;IACH,OAAO,IAAI,IAAI;CAqBhB"}
+{"version":3,"file":"page-tracking.d.ts","sourceRoot":"","sources":["../src/page-tracking.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAaH,MAAM,WAAW,kBAAkB;IACjC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,gBAAgB,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IAC/E,UAAU,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IACvC,kBAAkB,IAAI,MAAM,CAAC;IAC7B,qBAAqB,IAAI,MAAM,CAAC;IAChC,YAAY,IAAI,MAAM,CAAC;CACxB;AAED,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,MAAM,CAAqB;IACnC,OAAO,CAAC,OAAO,CAAc;IAC7B,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,iBAAiB,CAAyC;IAClE,OAAO,CAAC,oBAAoB,CAA4C;IACxE,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,aAAa,CAAK;gBAEd,OAAO,EAAE,WAAW,EAAE,MAAM,EAAE,kBAAkB;IAY5D;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAqB7B;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAK/B;;OAEG;IACH,OAAO,CAAC,cAAc,CAGpB;IAEF;;OAEG;IACH,OAAO,CAAC,gBAAgB,CAGtB;IAEF;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA4GxB;;OAEG;IACH,OAAO,CAAC,aAAa;IASrB;;OAEG;IACH,OAAO,CAAC,UAAU;IAUlB;;OAEG;IACH,OAAO,CAAC,KAAK;IAUb;;OAEG;IACH,OAAO,CAAC,aAAa;IAwBrB;;;OAGG;IACH,OAAO,CAAC,WAAW;IAyBnB;;OAEG;IACH,OAAO,CAAC,QAAQ;IAahB;;OAEG;IACH,cAAc,IAAI,MAAM,GAAG,IAAI;IAI/B;;OAEG;IACH,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI;IAqCnE;;OAEG;IACH,gBAAgB,IAAI,MAAM;IAI1B;;OAEG;IACH,OAAO,IAAI,IAAI;CAqBhB"}

package/dist/page-tracking.js

@@ -113,7 +113,7 @@ class PageTrackingManager {
         // Enhanced properties when consent is granted
         if (hasConsent) {
             properties.title = document.title || '';
-            properties.full_url = currentUrl;
+            properties.full_url = this.cleanUrl(currentUrl); // Clean URL based on privacy settings
             properties.session_id = this.tracker.getSessionId();
             // Add referrer info
             if (referrer) {
@@ -231,14 +231,20 @@ class PageTrackingManager {
     }
     /**
      * Extract path from URL, optionally stripping query parameters
+     * Privacy-first: strips query params by default
      */
     extractPath(url) {
         try {
             const urlObj = new URL(url);
-            let path = urlObj.pathname + urlObj.hash;
+            let path = urlObj.pathname;
+            // Include query params only if not stripping
             if (!this.config.stripQueryParams && urlObj.search) {
                 path += urlObj.search;
             }
+            // Include hash only if not stripping
+            if (!this.config.stripHash && urlObj.hash) {
+                path += urlObj.hash;
+            }
             return path;
         }
         catch (error) {
@@ -249,6 +255,21 @@ class PageTrackingManager {
             return url;
         }
     }
+    /**
+     * Clean URL for privacy (strip query params based on config)
+     */
+    cleanUrl(url) {
+        if (!this.config.stripQueryParams) {
+            return url;
+        }
+        try {
+            const urlObj = new URL(url);
+            return `${urlObj.origin}${urlObj.pathname}${this.config.stripHash ? '' : urlObj.hash}`;
+        }
+        catch (error) {
+            return url;
+        }
+    }
     /**
      * Get the current page path
      */

package/dist/react/hooks/useConsent.d.ts

@@ -1,7 +1,8 @@
 /**
- * useConsent - Hook for managing user consent
+ * useConsent - Hook for managing user consent (v2.0)
+ * Updated for new consent modes: cookieless, gdpr-strict, gdpr-opt-out
  */
-import type { ConsentState } from '../../consent';
+import type { ConsentState, ConsentMode } from '../../consent';
 export declare function useConsent(): {
     consentState: ConsentState;
     grantConsent: (categories?: string[]) => void;
@@ -10,4 +11,19 @@ export declare function useConsent(): {
     isGranted: boolean;
     categories: string[];
 };
+/**
+ * useConsentMode - Hook to get current consent mode
+ * v2.0: Returns 'cookieless' | 'gdpr-strict' | 'gdpr-opt-out'
+ */
+export declare function useConsentMode(): ConsentMode | null;
+/**
+ * useTrackingId - Hook to get current tracking ID
+ * v2.0: Returns daily rotating ID or permanent ID based on consent
+ */
+export declare function useTrackingId(): string | null;
+/**
+ * useCanTrack - Hook to check if tracking is allowed
+ * v2.0: Always returns true (even cookieless mode allows basic tracking)
+ */
+export declare function useCanTrack(): boolean;
 //# sourceMappingURL=useConsent.d.ts.map

package/dist/react/hooks/useConsent.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"useConsent.d.ts","sourceRoot":"","sources":["../../../../src/react/hooks/useConsent.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAElD,wBAAgB,UAAU;;gCAwBR,MAAM,EAAE;iCASR,MAAM,EAAE;4BASV,MAAM;;;EAerB"}
+{"version":3,"file":"useConsent.d.ts","sourceRoot":"","sources":["../../../../src/react/hooks/useConsent.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAE/D,wBAAgB,UAAU;;gCAwBR,MAAM,EAAE;iCASR,MAAM,EAAE;4BASV,MAAM;;;EAerB;AAED;;;GAGG;AACH,wBAAgB,cAAc,IAAI,WAAW,GAAG,IAAI,CAanD;AAED;;;GAGG;AACH,wBAAgB,aAAa,IAAI,MAAM,GAAG,IAAI,CAiB7C;AAED;;;GAGG;AACH,wBAAgB,WAAW,IAAI,OAAO,CAKrC"}