@gw2me/client 0.9.2 → 0.9.4

package/dist/base64-p0iUDSbg.js

@@ -0,0 +1 @@
+function e(e){let t=e instanceof ArrayBuffer?new Uint8Array(e):e;return Uint8Array.prototype.toBase64===void 0?btoa(String.fromCharCode(...t)).replace(/\+/g,`-`).replace(/\//g,`_`).replace(/=+$/,``):t.toBase64({alphabet:`base64url`,omitPadding:!0})}export{e as t};

package/dist/dpop.d.ts

@@ -1,7 +1,25 @@
-import { D as DPoPParams } from './types-yBP8cksw.js';
+import { r as DPoPParams } from "./types-Bqy6G8sj.js";
 
+//#region src/dpop.d.ts
+/**
+* Generates a new key pair for use with DPoP.
+* @see https://gw2.me/dev/docs/access-tokens#dpop
+*/
 declare function generateDPoPKeyPair(): Promise<CryptoKeyPair>;
-declare function createDPoPJwt({ htm, htu, nonce, accessToken }: DPoPParams, keyPair: CryptoKeyPair): Promise<string>;
+/**
+* Creates a DPoP proof JWT with the given parameters and key pair.
+* @see https://gw2.me/dev/docs/access-tokens#dpop
+*/
+declare function createDPoPJwt({
+  htm,
+  htu,
+  nonce,
+  accessToken
+}: DPoPParams, keyPair: CryptoKeyPair): Promise<string>;
+/**
+* Calculates the JWK thumbprint for a given public key.
+* @see https://gw2.me/dev/docs/access-tokens#dpop
+*/
 declare function jwkThumbprint(key: CryptoKey): Promise<string>;
-
-export { createDPoPJwt, generateDPoPKeyPair, jwkThumbprint };
+//#endregion
+export { createDPoPJwt, generateDPoPKeyPair, jwkThumbprint };

package/dist/dpop.js

@@ -1 +1 @@
-import{a as e}from"./chunk-EXOYQILJ.js";import"./chunk-OSZ7DOEH.js";function d(){return crypto.subtle.generateKey({name:"ECDSA",namedCurve:"P-256"},!1,["sign"])}async function m({htm:t,htu:n,nonce:r,accessToken:a},s){let c=JSON.stringify({alg:"ES256",typ:"dpop+jwt",jwk:await u(s.publicKey)}),y=JSON.stringify({iat:Math.floor(Date.now()/1e3),jti:e(crypto.getRandomValues(new Uint8Array(32))),htm:t,htu:n,nonce:r,ath:a?e(await crypto.subtle.digest("SHA-256",o(a))):void 0}),i=`${e(o(c))}.${e(o(y))}`,p={name:"ECDSA",hash:"SHA-256"},g=e(await crypto.subtle.sign(p,s.privateKey,o(i)));return`${i}.${g}`}var w=new TextEncoder;function o(t){return w.encode(t)}async function u(t){let{kty:n,e:r,k:a,n:s,x:c,y,crv:i}=await crypto.subtle.exportKey("jwk",t);return{e:r,k:a,crv:i,kty:n,n:s,x:c,y}}async function P(t){let n=JSON.stringify(await u(t)),r=await crypto.subtle.digest("SHA-256",o(n));return e(r)}export{m as createDPoPJwt,d as generateDPoPKeyPair,P as jwkThumbprint};
+import{t as e}from"./base64-p0iUDSbg.js";function t(){return crypto.subtle.generateKey({name:`ECDSA`,namedCurve:`P-256`},!1,[`sign`])}async function n({htm:t,htu:n,nonce:r,accessToken:o},s){let c=JSON.stringify({alg:`ES256`,typ:`dpop+jwt`,jwk:await a(s.publicKey)}),l=JSON.stringify({iat:Math.floor(Date.now()/1e3),jti:e(crypto.getRandomValues(new Uint8Array(32))),htm:t,htu:n,nonce:r,ath:o?e(await crypto.subtle.digest(`SHA-256`,i(o))):void 0}),u=`${e(i(c))}.${e(i(l))}`;return`${u}.${e(await crypto.subtle.sign({name:`ECDSA`,hash:`SHA-256`},s.privateKey,i(u)))}`}const r=new TextEncoder;function i(e){return r.encode(e)}async function a(e){let{kty:t,e:n,k:r,n:i,x:a,y:o,crv:s}=await crypto.subtle.exportKey(`jwk`,e);return{e:n,k:r,crv:s,kty:t,n:i,x:a,y:o}}async function o(t){let n=JSON.stringify(await a(t));return e(await crypto.subtle.digest(`SHA-256`,i(n)))}export{n as createDPoPJwt,t as generateDPoPKeyPair,o as jwkThumbprint};

package/dist/index.d.ts

@@ -1,169 +1,246 @@
-import { O as Options, a as DPoPCallback, S as Scope, C as ClientInfo } from './types-yBP8cksw.js';
-export { D as DPoPParams } from './types-yBP8cksw.js';
+import { a as Scope, i as Options, n as DPoPCallback, r as DPoPParams, t as ClientInfo } from "./types-Bqy6G8sj.js";
 
+//#region src/api.d.ts
 interface UserResponse {
-    sub: string;
-    user: {
-        id: string;
-        name: string;
-        email?: string;
-        emailVerified?: boolean;
-    };
-    settings?: unknown;
+  sub: string;
+  user: {
+    id: string;
+    name: string;
+    email?: string;
+    emailVerified?: boolean;
+  };
+  settings?: unknown;
 }
 interface AccountsResponse {
-    accounts: {
-        id: string;
-        name: string;
-        shared: boolean;
-        verified?: boolean;
-        displayName?: string | null;
-    }[];
+  accounts: {
+    id: string;
+    name: string;
+    shared: boolean;
+    verified?: boolean;
+    displayName?: string | null;
+  }[];
 }
 interface SubtokenOptions {
-    permissions?: string[];
+  permissions?: string[];
 }
 interface SubtokenResponse {
-    subtoken: string;
-    expiresAt: string;
+  subtoken: string;
+  expiresAt: string;
 }
 interface ApiOptions extends Options {
-    dpop?: DPoPCallback;
+  dpop?: DPoPCallback;
 }
 declare class Gw2MeApi {
-    #private;
-    private access_token;
-    private options?;
-    constructor(access_token: string, options?: Partial<ApiOptions> | undefined);
-    user(): Promise<UserResponse>;
-    saveSettings(settings: unknown): Promise<void>;
-    accounts(): Promise<AccountsResponse>;
-    subtoken(accountId: string, options?: SubtokenOptions): Promise<SubtokenResponse>;
-}
-
+  #private;
+  private access_token;
+  private options?;
+  constructor(access_token: string, options?: Partial<ApiOptions> | undefined);
+  /**
+  * Fetches information about the current user. Requires the `identify` scope.
+  * @see https://gw2.me/dev/docs/users
+  */
+  user(): Promise<UserResponse>;
+  /**
+  * Stores user-specific settings.
+  * @see https://gw2.me/dev/docs/users#settings
+  */
+  saveSettings(settings: unknown): Promise<void>;
+  /**
+  * Fetches the Guild Wars 2 accounts linked to the current user. Requires the `accounts` scope.
+  * @see https://gw2.me/dev/docs/gw2-api#accounts
+  */
+  accounts(): Promise<AccountsResponse>;
+  /**
+  * Generates a subtoken that can be used to authenticate to the Guild Wars 2 API.
+  * @see https://gw2.me/dev/docs/gw2-api#subtoken
+  */
+  subtoken(accountId: string, options?: SubtokenOptions): Promise<SubtokenResponse>;
+}
+//#endregion
+//#region src/fed-cm.d.ts
 interface FedCMRequestOptions {
-    scopes: Scope[];
-    mediation?: CredentialMediationRequirement;
-    mode?: 'passive' | 'active';
-    signal?: AbortSignal;
-    code_challenge: string;
-    code_challenge_method: 'S256';
-    /** @default true */
-    include_granted_scopes?: boolean;
+  scopes: Scope[];
+  mediation?: CredentialMediationRequirement;
+  mode?: "passive" | "active";
+  signal?: AbortSignal;
+  code_challenge: string;
+  code_challenge_method: "S256";
+  /** @default true */
+  include_granted_scopes?: boolean;
 }
 declare class Gw2MeFedCM {
-    #private;
-    constructor(configUrl: URL, clientId: string);
-    isSupported(): boolean;
-    request({ scopes, mediation, signal, mode, code_challenge, code_challenge_method, include_granted_scopes }: FedCMRequestOptions): Promise<null | {
-        token: string;
-        type: "identity";
-    }>;
+  #private;
+  constructor(configUrl: URL, clientId: string);
+  /**
+  * Check if FedCM is supported in the current environment.
+  */
+  isSupported(): boolean;
+  /**
+  * Start a FedCM sign-in flow with the given options. Resolves with the credential containing the access token on success, or null if the user cancels the flow.
+  * @see https://gw2.me/dev/docs/fed-cm
+  */
+  request({
+    scopes,
+    mediation,
+    signal,
+    mode,
+    code_challenge,
+    code_challenge_method,
+    include_granted_scopes
+  }: FedCMRequestOptions): Promise<null | {
+    token: string;
+    type: "identity";
+  }>;
 }
-
+//#endregion
+//#region src/client.d.ts
 interface AuthorizationUrlParams {
-    redirect_uri: string;
-    scopes: Scope[];
-    state?: string;
-    code_challenge?: string;
-    code_challenge_method?: 'S256';
-    dpop_jkt?: string;
-    prompt?: 'none' | 'consent';
-    include_granted_scopes?: boolean;
-    verified_accounts_only?: boolean;
+  redirect_uri: string;
+  scopes: Scope[];
+  state?: string;
+  code_challenge?: string;
+  code_challenge_method?: "S256";
+  dpop_jkt?: string;
+  prompt?: "none" | "consent";
+  include_granted_scopes?: boolean;
+  verified_accounts_only?: boolean;
 }
 interface PushedAuthorizationRequestParams extends AuthorizationUrlParams {
-    dpop?: DPoPCallback;
+  dpop?: DPoPCallback;
 }
 interface AuthorizationUrlRequestUriParams {
-    request_uri: string;
+  request_uri: string;
 }
-type TokenType = 'Bearer' | 'DPoP';
+type TokenType = "Bearer" | "DPoP";
 interface AuthTokenParams {
-    code: string;
-    token_type?: TokenType;
-    redirect_uri: string;
-    code_verifier?: string;
-    dpop?: DPoPCallback;
+  code: string;
+  token_type?: TokenType;
+  redirect_uri: string;
+  code_verifier?: string;
+  dpop?: DPoPCallback;
 }
 interface RefreshTokenParams {
-    refresh_token: string;
-    refresh_token_type?: TokenType;
-    dpop?: DPoPCallback;
+  refresh_token: string;
+  refresh_token_type?: TokenType;
+  dpop?: DPoPCallback;
 }
 interface TokenResponse {
-    access_token: string;
-    issued_token_type: 'urn:ietf:params:oauth:token-type:access_token';
-    token_type: TokenType;
-    expires_in: number;
-    refresh_token?: string;
-    scope: string;
+  access_token: string;
+  issued_token_type: "urn:ietf:params:oauth:token-type:access_token";
+  token_type: TokenType;
+  expires_in: number;
+  refresh_token?: string;
+  scope: string;
 }
 interface RevokeTokenParams {
-    token: string;
+  token: string;
 }
 interface IntrospectTokenParams {
-    token: string;
+  token: string;
 }
 declare namespace IntrospectTokenResponse {
-    interface Inactive {
-        active: false;
+  interface Inactive {
+    active: false;
+  }
+  namespace Active {
+    interface Common {
+      active: true;
+      scope: string;
+      client_id: string;
+      exp?: number;
     }
-    namespace Active {
-        interface Common {
-            active: true;
-            scope: string;
-            client_id: string;
-            exp?: number;
-        }
-        interface Bearer extends Common {
-            token_type: 'Bearer';
-        }
-        interface DPoP extends Common {
-            token_type: 'DPoP';
-            cnf: {
-                jkt: string;
-            };
-        }
+    interface Bearer extends Common {
+      token_type: "Bearer";
     }
-    type Active = Active.Bearer | Active.DPoP;
+    interface DPoP extends Common {
+      token_type: "DPoP";
+      cnf: {
+        jkt: string;
+      };
+    }
+  }
+  type Active = Active.Bearer | Active.DPoP;
 }
 type IntrospectTokenResponse = IntrospectTokenResponse.Inactive | IntrospectTokenResponse.Active;
 interface PushedAuthorizationRequestResponse {
-    request_uri: string;
-    expires_in: number;
+  request_uri: string;
+  expires_in: number;
 }
 declare class Gw2MeClient {
-    #private;
-    private options?;
-    constructor(client: ClientInfo, options?: Partial<Options> | undefined);
-    getAuthorizationUrl(params: AuthorizationUrlParams | AuthorizationUrlRequestUriParams): string;
-    pushAuthorizationRequest(params: PushedAuthorizationRequestParams): Promise<PushedAuthorizationRequestResponse>;
-    getAccessToken({ code, token_type, redirect_uri, code_verifier, dpop }: AuthTokenParams): Promise<TokenResponse>;
-    refreshToken({ refresh_token, refresh_token_type, dpop }: RefreshTokenParams): Promise<TokenResponse>;
-    revokeToken({ token }: RevokeTokenParams): Promise<void>;
-    introspectToken({ token }: IntrospectTokenParams): Promise<IntrospectTokenResponse>;
-    /**
-     * Parses the search params received from gw2.me on the redirect url (code and state).
-     * If gw2.me returned an error response, this will throw an error.
-     *
-     * @returns The code and optional state.
-     */
-    parseAuthorizationResponseSearchParams(searchParams: URLSearchParams): {
-        code: string;
-        state: string | undefined;
-    };
-    api(access_token: string, options?: Partial<Omit<ApiOptions, keyof Options>>): Gw2MeApi;
-    get fedCM(): Gw2MeFedCM;
-}
-
-declare class Gw2MeError extends Error {
-}
+  #private;
+  private options?;
+  constructor(client: ClientInfo, options?: Partial<Options> | undefined);
+  /**
+  * Generate an authorization URL with the given parameters you can navigate the user to in order to start the authorization code flow.
+  * @see https://gw2.me/dev/docs/access-tokens#user-authorization
+  */
+  getAuthorizationUrl(params: AuthorizationUrlParams | AuthorizationUrlRequestUriParams): string;
+  /**
+  * Create a pushed authorization request (PAR) with the given parameters.
+  * The returned `request_uri` can the be passed to {@link getAuthorizationUrl} to start the authorization code flow.
+  * @see https://gw2.me/dev/docs/access-tokens#par
+  */
+  pushAuthorizationRequest(params: PushedAuthorizationRequestParams): Promise<PushedAuthorizationRequestResponse>;
+  /**
+  * Exchanges an authorization code for an access token.
+  * @see https://gw2.me/dev/docs/access-tokens#access-token
+  */
+  getAccessToken({
+    code,
+    token_type,
+    redirect_uri,
+    code_verifier,
+    dpop
+  }: AuthTokenParams): Promise<TokenResponse>;
+  /**
+  * Use a refresh token to get a new access token.
+  * @see https://gw2.me/dev/docs/refresh-tokens
+  */
+  refreshToken({
+    refresh_token,
+    refresh_token_type,
+    dpop
+  }: RefreshTokenParams): Promise<TokenResponse>;
+  /**
+  * Revokes an access or refresh token, making it invalid for further use.
+  */
+  revokeToken({
+    token
+  }: RevokeTokenParams): Promise<void>;
+  /**
+  * Fetch metadata about an access or refresh token.
+  */
+  introspectToken({
+    token
+  }: IntrospectTokenParams): Promise<IntrospectTokenResponse>;
+  /**
+  * Parses the search params received from gw2.me on the redirect url (code and state).
+  * If gw2.me returned an error response, this will throw an error.
+  *
+  * @returns The code and optional state.
+  */
+  parseAuthorizationResponseSearchParams(searchParams: URLSearchParams): {
+    code: string;
+    state: string | undefined;
+  };
+  /**
+  * Access the gw2.me API.
+  */
+  api(access_token: string, options?: Partial<Omit<ApiOptions, keyof Options>>): Gw2MeApi;
+  /**
+  * Use Federated Credential Management (FedCM) to sign in users.
+  * @see https://gw2.me/dev/docs/fed-cm
+  */
+  get fedCM(): Gw2MeFedCM;
+}
+//#endregion
+//#region src/error.d.ts
+declare class Gw2MeError extends Error {}
 declare class Gw2MeOAuthError extends Gw2MeError {
-    error: string;
-    error_description?: string | undefined;
-    error_uri?: string | undefined;
-    constructor(error: string, error_description?: string | undefined, error_uri?: string | undefined);
+  error: string;
+  error_description?: string | undefined;
+  error_uri?: string | undefined;
+  constructor(error: string, error_description?: string | undefined, error_uri?: string | undefined);
 }
-
-export { type AccountsResponse, type ApiOptions, type AuthTokenParams, type AuthorizationUrlParams, type AuthorizationUrlRequestUriParams, ClientInfo, DPoPCallback, type FedCMRequestOptions, Gw2MeApi, Gw2MeClient, Gw2MeError, Gw2MeFedCM, Gw2MeOAuthError, type IntrospectTokenParams, IntrospectTokenResponse, Options, type PushedAuthorizationRequestParams, type PushedAuthorizationRequestResponse, type RefreshTokenParams, type RevokeTokenParams, Scope, type SubtokenOptions, type SubtokenResponse, type TokenResponse, type TokenType, type UserResponse };
+//#endregion
+export { AccountsResponse, ApiOptions, AuthTokenParams, AuthorizationUrlParams, AuthorizationUrlRequestUriParams, ClientInfo, DPoPCallback, DPoPParams, FedCMRequestOptions, Gw2MeApi, Gw2MeClient, Gw2MeError, Gw2MeFedCM, Gw2MeOAuthError, IntrospectTokenParams, IntrospectTokenResponse, Options, PushedAuthorizationRequestParams, PushedAuthorizationRequestResponse, RefreshTokenParams, RevokeTokenParams, Scope, SubtokenOptions, SubtokenResponse, TokenResponse, TokenType, UserResponse };

package/dist/index.js

@@ -1 +1 @@
-import{a as s,b as m,c as _,d as o}from"./chunk-OSZ7DOEH.js";var z=(p=>(p.Identify="identify",p.Email="email",p.Accounts="accounts",p.Accounts_Verified="accounts.verified",p.Accounts_DisplayName="accounts.displayName",p.GW2_Account="gw2:account",p.GW2_Inventories="gw2:inventories",p.GW2_Characters="gw2:characters",p.GW2_Tradingpost="gw2:tradingpost",p.GW2_Wallet="gw2:wallet",p.GW2_Unlocks="gw2:unlocks",p.GW2_Pvp="gw2:pvp",p.GW2_Wvw="gw2:wvw",p.GW2_Builds="gw2:builds",p.GW2_Progression="gw2:progression",p.GW2_Guilds="gw2:guilds",p))(z||{});var h=class extends Error{},b=class extends h{constructor(t,n,r){super(`Received ${t}`+(n?`: ${n}`:"")+(r?` (${r})`:""));this.error=t;this.error_description=n;this.error_uri=r}};async function f(u){if(await C(u),!(u.headers.get("Content-Type")==="application/json"))throw new h("gw2.me did not return a valid JSON response");return u.json()}async function C(u){if(!u.ok){let e;throw u.headers.get("Content-Type")==="application/json"&&(e=(await u.json()).error_description),new h(`gw2.me returned an error: ${e??"Unknown error"}`)}}var g,U,x,v=class{constructor(e,t){this.access_token=e;this.options=t;m(this,g)}user(){return o(this,g,x).call(this,"api/user").then(e=>fetch(e)).then(f)}saveSettings(e){return o(this,g,x).call(this,"api/user/settings",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(e)}).then(t=>fetch(t)).then(C)}accounts(){return o(this,g,x).call(this,"api/accounts").then(e=>fetch(e)).then(f)}subtoken(e,t){let n=o(this,g,U).call(this,`api/accounts/${e}/subtoken`);return t?.permissions&&n.searchParams.set("permissions",t.permissions.join(",")),o(this,g,x).call(this,n).then(r=>fetch(r)).then(f)}};g=new WeakSet,U=function(e){return new URL(e,this.options?.url||"https://gw2.me/")},x=async function(e,t){let n=e instanceof URL?e:o(this,g,U).call(this,e),r=this.options?.dpop,i=new Headers(t?.headers);return i.set("Authorization",`${r?"DPoP":"Bearer"} ${this.access_token}`),r&&i.set("DPoP",await r({htm:t?.method??"GET",htu:n.toString(),accessToken:this.access_token})),new Request(n,{cache:"no-cache",...t,headers:i})};var R,T,O=class{constructor(e,t){m(this,R);m(this,T);_(this,R,e),_(this,T,t)}isSupported(){return typeof window<"u"&&"IdentityCredential"in window}request({scopes:e,mediation:t,signal:n,mode:r,code_challenge:i,code_challenge_method:d,include_granted_scopes:l}){if(!this.isSupported())throw new h("FedCM is not supported");return navigator.credentials.get({mediation:t,signal:n,identity:{providers:[{configURL:s(this,R),clientId:s(this,T),fields:[e.includes("identify")&&"name",e.includes("email")&&"email"].filter(Boolean),nonce:`${d}:${i}`,params:{scope:e.join(" "),code_challenge:i,code_challenge_method:d,include_granted_scopes:l}}],mode:r}})}};R=new WeakMap,T=new WeakMap;var a,A,c,P,y,S=class{constructor(e,t){this.options=t;m(this,c);m(this,a);m(this,A);_(this,a,e),_(this,A,new O(o(this,c,P).call(this,"/fed-cm/config.json"),e.client_id))}getAuthorizationUrl(e){let t="request_uri"in e?new URLSearchParams({client_id:s(this,a).client_id,response_type:"code",request_uri:e.request_uri}):q(s(this,a).client_id,e);return o(this,c,P).call(this,`/oauth2/authorize?${t.toString()}`).toString()}async pushAuthorizationRequest(e){let t=o(this,c,P).call(this,"/oauth2/par"),n={"Content-Type":"application/x-www-form-urlencoded"};e.dpop&&(n.DPoP=await e.dpop({htm:"POST",htu:t.toString()}));let r=q(s(this,a).client_id,e);return s(this,a).client_secret&&(n.Authorization=o(this,c,y).call(this)),await fetch(t,{method:"POST",headers:n,body:r,cache:"no-store"}).then(f)}async getAccessToken({code:e,token_type:t,redirect_uri:n,code_verifier:r,dpop:i}){let d=new URLSearchParams({grant_type:"authorization_code",code:e,client_id:s(this,a).client_id,redirect_uri:n}),l={"Content-Type":"application/x-www-form-urlencoded"};s(this,a).client_secret&&(l.Authorization=o(this,c,y).call(this)),r&&d.set("code_verifier",r);let w=o(this,c,P).call(this,"/api/token");return i&&(l.DPoP=await i({htm:"POST",htu:w.toString(),accessToken:t==="DPoP"?e:void 0})),await fetch(w,{method:"POST",headers:l,body:d,cache:"no-store"}).then(f)}async refreshToken({refresh_token:e,refresh_token_type:t,dpop:n}){let r=new URLSearchParams({grant_type:"refresh_token",refresh_token:e,client_id:s(this,a).client_id}),i={"Content-Type":"application/x-www-form-urlencoded"};s(this,a).client_secret&&(i.Authorization=o(this,c,y).call(this));let d=o(this,c,P).call(this,"/api/token");return n&&(i.DPoP=await n({htm:"POST",htu:d.toString(),accessToken:t==="DPoP"?e:void 0})),await fetch(d,{method:"POST",headers:i,body:r,cache:"no-store"}).then(f)}async revokeToken({token:e}){let t=new URLSearchParams({token:e}),n={"Content-Type":"application/x-www-form-urlencoded"};s(this,a).client_secret&&(n.Authorization=o(this,c,y).call(this)),await fetch(o(this,c,P).call(this,"/api/token/revoke"),{method:"POST",cache:"no-store",headers:n,body:t}).then(f)}async introspectToken({token:e}){let t=new URLSearchParams({token:e}),n={"Content-Type":"application/x-www-form-urlencoded"};return s(this,a).client_secret&&(n.Authorization=o(this,c,y).call(this)),await fetch(o(this,c,P).call(this,"/api/token/introspect"),{method:"POST",cache:"no-store",headers:n,body:t}).then(f)}parseAuthorizationResponseSearchParams(e){let t=o(this,c,P).call(this,"/").origin,n=e.get("iss");if(!n)throw new h("Issuer Identifier verification failed: parameter `iss` is missing");if(n!==t)throw new h(`Issuer Identifier verification failed: expected "${t}", got "${n}"`);let r=e.get("error");if(r){let l=e.get("error_description")??void 0,w=e.get("error_uri")??void 0;throw new b(r,l,w)}let i=e.get("code");if(!i)throw new h("Parameter `code` is missing");let d=e.get("state")||void 0;return{code:i,state:d}}api(e,t){return new v(e,{...this.options,...t})}get fedCM(){return s(this,A)}};a=new WeakMap,A=new WeakMap,c=new WeakSet,P=function(e){return new URL(e,this.options?.url||"https://gw2.me/")},y=function(){if(!s(this,a).client_secret)throw new h("client_secret is required");return`Basic ${btoa(`${s(this,a).client_id}:${s(this,a).client_secret}`)}`};function q(u,{redirect_uri:e,scopes:t,state:n,code_challenge:r,code_challenge_method:i,dpop_jkt:d,prompt:l,include_granted_scopes:w,verified_accounts_only:I}){let k=new URLSearchParams({client_id:u,response_type:"code",redirect_uri:e,scope:t.join(" ")});return n&&k.append("state",n),r&&i&&(k.append("code_challenge",r),k.append("code_challenge_method",i)),d&&k.append("dpop_jkt",d),l&&k.append("prompt",l),w&&k.append("include_granted_scopes","true"),I&&k.append("verified_accounts_only","true"),k}export{v as Gw2MeApi,S as Gw2MeClient,h as Gw2MeError,b as Gw2MeOAuthError,z as Scope};
+let e=function(e){return e.Identify=`identify`,e.Email=`email`,e.Accounts=`accounts`,e.Accounts_Verified=`accounts.verified`,e.Accounts_DisplayName=`accounts.displayName`,e.GW2_Account=`gw2:account`,e.GW2_Inventories=`gw2:inventories`,e.GW2_Characters=`gw2:characters`,e.GW2_Tradingpost=`gw2:tradingpost`,e.GW2_Wallet=`gw2:wallet`,e.GW2_Unlocks=`gw2:unlocks`,e.GW2_Pvp=`gw2:pvp`,e.GW2_Wvw=`gw2:wvw`,e.GW2_Builds=`gw2:builds`,e.GW2_Progression=`gw2:progression`,e.GW2_Guilds=`gw2:guilds`,e}({});var t=class extends Error{},n=class extends t{constructor(e,t,n){super(`Received ${e}`+(t?`: ${t}`:``)+(n?` (${n})`:``)),this.error=e,this.error_description=t,this.error_uri=n}};async function r(e){if(await i(e),!a(e))throw new t(`gw2.me did not return a valid JSON response`);return e.json()}async function i(e){if(!e.ok){let n;throw a(e)&&(n=(await e.json()).error_description),new t(`gw2.me returned an error: ${n??`Unknown error`}`)}}function a(e){return e.headers.get(`Content-Type`)?.split(`;`)[0].trim().toLowerCase()===`application/json`}var o=class{constructor(e,t){this.access_token=e,this.options=t}user(){return this.#t(`api/user`).then(e=>fetch(e)).then(r)}saveSettings(e){return this.#t(`api/user/settings`,{method:`POST`,headers:{"Content-Type":`application/json`},body:JSON.stringify(e)}).then(e=>fetch(e)).then(i)}accounts(){return this.#t(`api/accounts`).then(e=>fetch(e)).then(r)}subtoken(e,t){let n=this.#e(`api/accounts/${e}/subtoken`);return t?.permissions&&n.searchParams.set(`permissions`,t.permissions.join(`,`)),this.#t(n).then(e=>fetch(e)).then(r)}#e(e){return new URL(e,this.options?.url||`https://gw2.me/`)}async#t(e,t){let n=e instanceof URL?e:this.#e(e),r=this.options?.dpop,i=new Headers(t?.headers);return i.set(`Authorization`,`${r?`DPoP`:`Bearer`} ${this.access_token}`),r&&i.set(`DPoP`,await r({htm:t?.method??`GET`,htu:n.toString(),accessToken:this.access_token})),new Request(n,{cache:`no-cache`,...t,headers:i})}},s=class{#e;#t;constructor(e,t){this.#e=e,this.#t=t}isSupported(){return typeof window<`u`&&`IdentityCredential`in window}request({scopes:n,mediation:r,signal:i,mode:a,code_challenge:o,code_challenge_method:s,include_granted_scopes:c}){if(!this.isSupported())throw new t(`FedCM is not supported`);return navigator.credentials.get({mediation:r,signal:i,identity:{providers:[{configURL:this.#e,clientId:this.#t,fields:[n.includes(e.Identify)&&`name`,n.includes(e.Email)&&`email`].filter(Boolean),nonce:`${s}:${o}`,params:{scope:n.join(` `),code_challenge:o,code_challenge_method:s,include_granted_scopes:c}}],mode:a}})}},c=class{#e;#t;constructor(e,t){this.options=t,this.#e=e,this.#t=new s(this.#n(`/fed-cm/config.json`),e.client_id)}#n(e){return new URL(e,this.options?.url||`https://gw2.me/`)}#r(){if(!this.#e.client_secret)throw new t(`client_secret is required`);return`Basic ${btoa(`${this.#e.client_id}:${this.#e.client_secret}`)}`}getAuthorizationUrl(e){let t=`request_uri`in e?new URLSearchParams({client_id:this.#e.client_id,response_type:`code`,request_uri:e.request_uri}):l(this.#e.client_id,e);return this.#n(`/oauth2/authorize?${t.toString()}`).toString()}async pushAuthorizationRequest(e){let t=this.#n(`/oauth2/par`),n={"Content-Type":`application/x-www-form-urlencoded`};e.dpop&&(n.DPoP=await e.dpop({htm:`POST`,htu:t.toString()}));let i=l(this.#e.client_id,e);return this.#e.client_secret&&(n.Authorization=this.#r()),await fetch(t,{method:`POST`,headers:n,body:i,cache:`no-store`}).then(r)}async getAccessToken({code:e,token_type:t,redirect_uri:n,code_verifier:i,dpop:a}){let o=new URLSearchParams({grant_type:`authorization_code`,code:e,client_id:this.#e.client_id,redirect_uri:n}),s={"Content-Type":`application/x-www-form-urlencoded`};this.#e.client_secret&&(s.Authorization=this.#r()),i&&o.set(`code_verifier`,i);let c=this.#n(`/api/token`);return a&&(s.DPoP=await a({htm:`POST`,htu:c.toString(),accessToken:t===`DPoP`?e:void 0})),await fetch(c,{method:`POST`,headers:s,body:o,cache:`no-store`}).then(r)}async refreshToken({refresh_token:e,refresh_token_type:t,dpop:n}){let i=new URLSearchParams({grant_type:`refresh_token`,refresh_token:e,client_id:this.#e.client_id}),a={"Content-Type":`application/x-www-form-urlencoded`};this.#e.client_secret&&(a.Authorization=this.#r());let o=this.#n(`/api/token`);return n&&(a.DPoP=await n({htm:`POST`,htu:o.toString(),accessToken:t===`DPoP`?e:void 0})),await fetch(o,{method:`POST`,headers:a,body:i,cache:`no-store`}).then(r)}async revokeToken({token:e}){let t=new URLSearchParams({token:e}),n={"Content-Type":`application/x-www-form-urlencoded`};this.#e.client_secret&&(n.Authorization=this.#r()),await fetch(this.#n(`/api/token/revoke`),{method:`POST`,cache:`no-store`,headers:n,body:t}).then(r)}async introspectToken({token:e}){let t=new URLSearchParams({token:e}),n={"Content-Type":`application/x-www-form-urlencoded`};return this.#e.client_secret&&(n.Authorization=this.#r()),await fetch(this.#n(`/api/token/introspect`),{method:`POST`,cache:`no-store`,headers:n,body:t}).then(r)}parseAuthorizationResponseSearchParams(e){let r=this.#n(`/`).origin,i=e.get(`iss`);if(!i)throw new t("Issuer Identifier verification failed: parameter `iss` is missing");if(i!==r)throw new t(`Issuer Identifier verification failed: expected "${r}", got "${i}"`);let a=e.get(`error`);if(a)throw new n(a,e.get(`error_description`)??void 0,e.get(`error_uri`)??void 0);let o=e.get(`code`);if(!o)throw new t("Parameter `code` is missing");return{code:o,state:e.get(`state`)||void 0}}api(e,t){return new o(e,{...this.options,...t})}get fedCM(){return this.#t}};function l(e,{redirect_uri:t,scopes:n,state:r,code_challenge:i,code_challenge_method:a,dpop_jkt:o,prompt:s,include_granted_scopes:c,verified_accounts_only:l}){let u=new URLSearchParams({client_id:e,response_type:`code`,redirect_uri:t,scope:n.join(` `)});return r&&u.append(`state`,r),i&&a&&(u.append(`code_challenge`,i),u.append(`code_challenge_method`,a)),o&&u.append(`dpop_jkt`,o),s&&u.append(`prompt`,s),c&&u.append(`include_granted_scopes`,`true`),l&&u.append(`verified_accounts_only`,`true`),u}export{o as Gw2MeApi,c as Gw2MeClient,t as Gw2MeError,n as Gw2MeOAuthError,e as Scope};

package/dist/pkce.d.ts

@@ -1,11 +1,16 @@
+//#region src/pkce.d.ts
 interface PKCEChallenge {
-    code_challenge: string;
-    code_challenge_method: 'S256';
+  code_challenge: string;
+  code_challenge_method: "S256";
 }
 interface PKCEPair {
-    challenge: PKCEChallenge;
-    code_verifier: string;
+  challenge: PKCEChallenge;
+  code_verifier: string;
 }
+/**
+* Generates a PKCE pair containing a random code verifier and a corresponding code challenge.
+* @see https://gw2.me/dev/docs/access-tokens#pkce
+*/
 declare function generatePKCEPair(): Promise<PKCEPair>;
-
-export { type PKCEChallenge, type PKCEPair, generatePKCEPair };
+//#endregion
+export { PKCEChallenge, PKCEPair, generatePKCEPair };

package/dist/pkce.js

@@ -1 +1 @@
-import{a as e}from"./chunk-EXOYQILJ.js";import"./chunk-OSZ7DOEH.js";async function a(){let n=new Uint8Array(32);crypto.getRandomValues(n);let r=e(n),c=new TextEncoder,o=await crypto.subtle.digest("SHA-256",c.encode(r));return{code_verifier:r,challenge:{code_challenge_method:"S256",code_challenge:e(new Uint8Array(o))}}}export{a as generatePKCEPair};
+import{t as e}from"./base64-p0iUDSbg.js";async function t(){let t=new Uint8Array(32);crypto.getRandomValues(t);let n=e(t),r=new TextEncoder,i=await crypto.subtle.digest(`SHA-256`,r.encode(n));return{code_verifier:n,challenge:{code_challenge_method:`S256`,code_challenge:e(new Uint8Array(i))}}}export{t as generatePKCEPair};

package/dist/types-Bqy6G8sj.d.ts

@@ -0,0 +1,39 @@
+//#region src/types.d.ts
+/**
+* Scopes supported by gw2.me.
+* @see https://gw2.me/dev/docs/scopes
+*/
+declare enum Scope {
+  Identify = "identify",
+  Email = "email",
+  Accounts = "accounts",
+  Accounts_Verified = "accounts.verified",
+  Accounts_DisplayName = "accounts.displayName",
+  GW2_Account = "gw2:account",
+  GW2_Inventories = "gw2:inventories",
+  GW2_Characters = "gw2:characters",
+  GW2_Tradingpost = "gw2:tradingpost",
+  GW2_Wallet = "gw2:wallet",
+  GW2_Unlocks = "gw2:unlocks",
+  GW2_Pvp = "gw2:pvp",
+  GW2_Wvw = "gw2:wvw",
+  GW2_Builds = "gw2:builds",
+  GW2_Progression = "gw2:progression",
+  GW2_Guilds = "gw2:guilds"
+}
+interface ClientInfo {
+  client_id: string;
+  client_secret?: string;
+}
+interface Options {
+  url: string;
+}
+interface DPoPParams {
+  htm: "POST" | "GET" | (string & {});
+  htu: string;
+  nonce?: string;
+  accessToken?: string;
+}
+type DPoPCallback = (params: DPoPParams) => string | Promise<string>;
+//#endregion
+export { Scope as a, Options as i, DPoPCallback as n, DPoPParams as r, ClientInfo as t };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gw2me/client",
-  "version": "0.9.2",
+  "version": "0.9.4",
   "description": "gw2.me client library",
   "type": "module",
   "exports": {
@@ -30,8 +30,10 @@
     "oauth2"
   ],
   "files": [
-    "dist/"
+    "dist/*.js",
+    "dist/*.d.ts"
   ],
+  "sideEffects": false,
   "author": "darthmaim",
   "license": "MIT",
   "bugs": {
@@ -39,24 +41,24 @@
   },
   "homepage": "https://github.com/gw2treasures/gw2.me#readme",
   "devDependencies": {
-    "@gw2treasures/eslint-config": "0.2.0",
+    "@arethetypeswrong/core": "0.18.2",
+    "@gw2treasures/eslint-config": "0.2.1",
     "@gw2treasures/publish-package": "0.1.0",
     "@gw2treasures/tsconfig": "0.0.1",
-    "eslint": "9.39.2",
-    "tsup": "8.5.1",
+    "@types/node": "24.12.0",
+    "eslint": "9.39.4",
+    "publint": "0.3.18",
+    "tsdown": "0.21.4",
     "typescript": "5.9.3",
-    "typescript-eslint": "8.51.0",
-    "undici-types": "7.16.0"
+    "typescript-eslint": "8.57.1",
+    "undici-types": "7.24.4"
   },
   "publishConfig": {
     "access": "public",
     "provenance": true
   },
   "scripts": {
-    "build": "pnpm run clean && if test $CI; then pnpm run build:ci; else pnpm run build:local; fi",
-    "build:local": "tsup src/index.ts src/dpop.ts src/pkce.ts --format esm && tsc --emitDeclarationOnly --declaration --declarationMap",
-    "build:ci": "tsup src/index.ts src/dpop.ts src/pkce.ts --format esm --minify --dts",
-    "clean": "rm -rf dist/",
+    "build": "tsdown src/index.ts src/dpop.ts src/pkce.ts",
     "lint": "eslint .",
     "publish-package": "gw2treasures-publish-package"
   }

package/dist/chunk-EXOYQILJ.js

@@ -1 +0,0 @@
-function a(r){let e=r instanceof ArrayBuffer?new Uint8Array(r):r;return btoa(String.fromCharCode(...e)).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/,"")}export{a};

package/dist/chunk-OSZ7DOEH.js

@@ -1 +0,0 @@
-var f=a=>{throw TypeError(a)};var d=(a,b,c)=>b.has(a)||f("Cannot "+c);var g=(a,b,c)=>(d(a,b,"read from private field"),c?c.call(a):b.get(a)),h=(a,b,c)=>b.has(a)?f("Cannot add the same private member more than once"):b instanceof WeakSet?b.add(a):b.set(a,c),i=(a,b,c,e)=>(d(a,b,"write to private field"),e?e.call(a,c):b.set(a,c),c),j=(a,b,c)=>(d(a,b,"access private method"),c);export{g as a,h as b,i as c,j as d};

package/dist/types-yBP8cksw.d.ts

@@ -1,34 +0,0 @@
-declare enum Scope {
-    Identify = "identify",
-    Email = "email",
-    Accounts = "accounts",
-    Accounts_Verified = "accounts.verified",
-    Accounts_DisplayName = "accounts.displayName",
-    GW2_Account = "gw2:account",
-    GW2_Inventories = "gw2:inventories",
-    GW2_Characters = "gw2:characters",
-    GW2_Tradingpost = "gw2:tradingpost",
-    GW2_Wallet = "gw2:wallet",
-    GW2_Unlocks = "gw2:unlocks",
-    GW2_Pvp = "gw2:pvp",
-    GW2_Wvw = "gw2:wvw",
-    GW2_Builds = "gw2:builds",
-    GW2_Progression = "gw2:progression",
-    GW2_Guilds = "gw2:guilds"
-}
-interface ClientInfo {
-    client_id: string;
-    client_secret?: string;
-}
-interface Options {
-    url: string;
-}
-interface DPoPParams {
-    htm: 'POST' | 'GET' | (string & {});
-    htu: string;
-    nonce?: string;
-    accessToken?: string;
-}
-type DPoPCallback = (params: DPoPParams) => string | Promise<string>;
-
-export { type ClientInfo as C, type DPoPParams as D, type Options as O, Scope as S, type DPoPCallback as a };