@haex-space/vault-sdk 2.3.15 → 2.4.0

package/dist/{client-ChH7wiuU.d.ts → client-BSdAg7D1.d.ts}

@@ -1,4 +1,4 @@
-import { D as DatabaseQueryResult, M as Migration, b as MigrationResult, W as WebRequestOptions, c as WebResponse, H as HaexHubConfig, a as ExtensionInfo, A as ApplicationContext, d as DatabasePermissionRequest, P as PermissionResponse, S as SearchResult, e as ExternalRequestHandler, f as ExternalResponse, g as EventCallback } from './types-DBF83o_W.js';
+import { D as DatabaseQueryResult, M as Migration, b as MigrationResult, W as WebRequestOptions, c as WebResponse, H as HaexHubConfig, a as ExtensionInfo, A as ApplicationContext, d as DatabasePermissionRequest, P as PermissionResponse, S as SearchResult, e as ExternalRequestHandler, f as ExternalResponse, g as EventCallback } from './types-CmPqOcLB.js';
 import { SqliteRemoteDatabase } from 'drizzle-orm/sqlite-proxy';
 
 declare class StorageAPI {
@@ -376,23 +376,30 @@ declare class PermissionsAPI {
     checkFilesystemAsync(path: string, operation: "read" | "write"): Promise<boolean>;
 }
 
+/**
+ * HaexVault Client
+ *
+ * Main SDK client for extensions running in HaexVault.
+ * Supports both native WebView mode (Tauri) and iframe mode (mobile/web).
+ */
+
 declare class HaexVaultClient {
-    private config;
-    private pendingRequests;
-    private eventListeners;
-    private externalRequestHandlers;
-    private messageHandler;
+    private readonly config;
     private initialized;
+    private isNativeWindow;
     private requestCounter;
     private _extensionInfo;
     private _context;
-    private reactiveSubscribers;
-    private isNativeWindow;
+    private _setupCompleted;
+    private readonly pendingRequests;
+    private readonly eventListeners;
+    private readonly externalRequestHandlers;
+    private readonly reactiveSubscribers;
+    private messageHandler;
     private readyPromise;
     private resolveReady;
     private setupPromise;
     private setupHook;
-    private _setupCompleted;
     orm: SqliteRemoteDatabase<Record<string, unknown>> | null;
     readonly storage: StorageAPI;
     readonly database: DatabaseAPI;
@@ -400,40 +407,14 @@ declare class HaexVaultClient {
     readonly web: WebAPI;
     readonly permissions: PermissionsAPI;
     constructor(config?: HaexHubConfig);
-    /**
-     * Gibt ein Promise zurück, das aufgelöst wird, sobald der Client
-     * initialisiert ist und Extension-Infos empfangen hat.
-     */
     ready(): Promise<void>;
-    /**
-     * Gibt zurück, ob das Setup bereits abgeschlossen wurde.
-     */
     get setupCompleted(): boolean;
-    /**
-     * Registriert eine Setup-Funktion, die nach der Initialisierung ausgeführt wird.
-     * Diese Funktion sollte für Aufgaben wie Tabellenerstellung, Migrationen, etc. verwendet werden.
-     * @param setupFn Die Setup-Funktion, die ausgeführt werden soll
-     */
     onSetup(setupFn: () => Promise<void>): void;
-    /**
-     * Gibt ein Promise zurück, das aufgelöst wird, sobald der Client vollständig eingerichtet ist.
-     * Dies umfasst die Initialisierung UND das Setup (z.B. Tabellenerstellung).
-     * Falls kein Setup-Hook registriert wurde, entspricht dies ready().
-     */
     setupComplete(): Promise<void>;
-    private runSetupAsync;
-    /**
-     * Initialisiert die Drizzle-Datenbankinstanz.
-     * Muss nach der Definition des Schemas aufgerufen werden.
-     * @param schema Das Drizzle-Schemaobjekt (mit bereits geprefixten Tabellennamen).
-     * @returns Die typsichere Drizzle-Datenbankinstanz.
-     */
-    initializeDatabase<T extends Record<string, unknown>>(schema: T): SqliteRemoteDatabase<T>;
+    destroy(): void;
     get extensionInfo(): ExtensionInfo | null;
     get context(): ApplicationContext | null;
     subscribe(callback: () => void): () => void;
-    private notifySubscribers;
-    getDependencies(): Promise<ExtensionInfo[]>;
     getTableName(tableName: string): string;
     getDependencyTableName(publicKey: string, extensionName: string, tableName: string): string;
     parseTableName(fullTableName: string): {
@@ -441,81 +422,30 @@ declare class HaexVaultClient {
         extensionName: string;
         tableName: string;
     } | null;
-    /**
-     * Execute a raw SQL query (SELECT)
-     * Returns rows as an array of objects
-     */
+    initializeDatabase<T extends Record<string, unknown>>(schema: T): SqliteRemoteDatabase<T>;
     query<T = Record<string, unknown>>(sql: string, params?: unknown[]): Promise<T[]>;
-    /**
-     * Alias for query() - more intuitive for SELECT statements
-     */
     select<T = Record<string, unknown>>(sql: string, params?: unknown[]): Promise<T[]>;
-    /**
-     * Execute a raw SQL statement (INSERT, UPDATE, DELETE, CREATE, etc.)
-     * Returns rowsAffected and lastInsertId
-     */
     execute(sql: string, params?: unknown[]): Promise<{
         rowsAffected: number;
         lastInsertId?: number;
     }>;
-    /**
-     * Registers and applies extension migrations with HaexVault
-     *
-     * HaexVault will:
-     * 1. Validate all SQL statements (ensure only extension's own tables are accessed)
-     * 2. Store migrations with applied_at = NULL
-     * 3. Query pending migrations sorted by name
-     * 4. Apply pending migrations and set up CRDT triggers
-     * 5. Mark successful migrations with applied_at timestamp
-     *
-     * @param extensionVersion - The version of the extension
-     * @param migrations - Array of migration objects with name and SQL content
-     * @returns Promise with migration result (applied count, already applied count, applied migration names)
-     */
     registerMigrationsAsync(extensionVersion: string, migrations: Migration[]): Promise<MigrationResult>;
+    getDependencies(): Promise<ExtensionInfo[]>;
     requestDatabasePermission(request: DatabasePermissionRequest): Promise<PermissionResponse>;
     checkDatabasePermission(resource: string, operation: "read" | "write"): Promise<boolean>;
     respondToSearch(requestId: string, results: SearchResult[]): Promise<void>;
-    /**
-     * Register a handler for external requests (from browser extensions, CLI, servers, etc.)
-     *
-     * @param action - The action/method name to handle (e.g., "get-logins", "get-totp")
-     * @param handler - Function that processes the request and returns a response
-     * @returns Unsubscribe function to remove the handler
-     *
-     * @example
-     * ```typescript
-     * client.onExternalRequest("get-logins", async (request) => {
-     *   const entries = await getMatchingEntries(request.payload.url);
-     *   return {
-     *     requestId: request.requestId,
-     *     success: true,
-     *     data: { entries }
-     *   };
-     * });
-     * ```
-     */
     onExternalRequest(action: string, handler: ExternalRequestHandler): () => void;
-    /**
-     * Send a response to an external request back to haex-vault
-     * This is called internally after a handler processes a request
-     */
     respondToExternalRequest(response: ExternalResponse): Promise<void>;
-    request<T = unknown, P = Record<string, unknown>>(method: string, params?: P): Promise<T>;
-    private postMessage;
-    private invoke;
     on(eventType: string, callback: EventCallback): void;
     off(eventType: string, callback: EventCallback): void;
-    destroy(): void;
+    request<T = unknown, P = Record<string, unknown>>(method: string, params?: P): Promise<T>;
     private init;
-    private handleMessage;
+    private initNative;
+    private initIframe;
     private handleEvent;
-    private handleExternalRequest;
-    private emitEvent;
-    private generateRequestId;
-    private validatePublicKey;
-    private validateExtensionName;
-    private validateTableName;
+    private handleExternalRequestInternal;
+    private runSetupAsync;
+    private notifySubscribersInternal;
     private log;
 }
 

package/dist/{client-8eGxojZ1.d.mts → client-ClYpUDoI.d.mts}

@@ -1,4 +1,4 @@
-import { D as DatabaseQueryResult, M as Migration, b as MigrationResult, W as WebRequestOptions, c as WebResponse, H as HaexHubConfig, a as ExtensionInfo, A as ApplicationContext, d as DatabasePermissionRequest, P as PermissionResponse, S as SearchResult, e as ExternalRequestHandler, f as ExternalResponse, g as EventCallback } from './types-DBF83o_W.mjs';
+import { D as DatabaseQueryResult, M as Migration, b as MigrationResult, W as WebRequestOptions, c as WebResponse, H as HaexHubConfig, a as ExtensionInfo, A as ApplicationContext, d as DatabasePermissionRequest, P as PermissionResponse, S as SearchResult, e as ExternalRequestHandler, f as ExternalResponse, g as EventCallback } from './types-CmPqOcLB.mjs';
 import { SqliteRemoteDatabase } from 'drizzle-orm/sqlite-proxy';
 
 declare class StorageAPI {
@@ -376,23 +376,30 @@ declare class PermissionsAPI {
     checkFilesystemAsync(path: string, operation: "read" | "write"): Promise<boolean>;
 }
 
+/**
+ * HaexVault Client
+ *
+ * Main SDK client for extensions running in HaexVault.
+ * Supports both native WebView mode (Tauri) and iframe mode (mobile/web).
+ */
+
 declare class HaexVaultClient {
-    private config;
-    private pendingRequests;
-    private eventListeners;
-    private externalRequestHandlers;
-    private messageHandler;
+    private readonly config;
     private initialized;
+    private isNativeWindow;
     private requestCounter;
     private _extensionInfo;
     private _context;
-    private reactiveSubscribers;
-    private isNativeWindow;
+    private _setupCompleted;
+    private readonly pendingRequests;
+    private readonly eventListeners;
+    private readonly externalRequestHandlers;
+    private readonly reactiveSubscribers;
+    private messageHandler;
     private readyPromise;
     private resolveReady;
     private setupPromise;
     private setupHook;
-    private _setupCompleted;
     orm: SqliteRemoteDatabase<Record<string, unknown>> | null;
     readonly storage: StorageAPI;
     readonly database: DatabaseAPI;
@@ -400,40 +407,14 @@ declare class HaexVaultClient {
     readonly web: WebAPI;
     readonly permissions: PermissionsAPI;
     constructor(config?: HaexHubConfig);
-    /**
-     * Gibt ein Promise zurück, das aufgelöst wird, sobald der Client
-     * initialisiert ist und Extension-Infos empfangen hat.
-     */
     ready(): Promise<void>;
-    /**
-     * Gibt zurück, ob das Setup bereits abgeschlossen wurde.
-     */
     get setupCompleted(): boolean;
-    /**
-     * Registriert eine Setup-Funktion, die nach der Initialisierung ausgeführt wird.
-     * Diese Funktion sollte für Aufgaben wie Tabellenerstellung, Migrationen, etc. verwendet werden.
-     * @param setupFn Die Setup-Funktion, die ausgeführt werden soll
-     */
     onSetup(setupFn: () => Promise<void>): void;
-    /**
-     * Gibt ein Promise zurück, das aufgelöst wird, sobald der Client vollständig eingerichtet ist.
-     * Dies umfasst die Initialisierung UND das Setup (z.B. Tabellenerstellung).
-     * Falls kein Setup-Hook registriert wurde, entspricht dies ready().
-     */
     setupComplete(): Promise<void>;
-    private runSetupAsync;
-    /**
-     * Initialisiert die Drizzle-Datenbankinstanz.
-     * Muss nach der Definition des Schemas aufgerufen werden.
-     * @param schema Das Drizzle-Schemaobjekt (mit bereits geprefixten Tabellennamen).
-     * @returns Die typsichere Drizzle-Datenbankinstanz.
-     */
-    initializeDatabase<T extends Record<string, unknown>>(schema: T): SqliteRemoteDatabase<T>;
+    destroy(): void;
     get extensionInfo(): ExtensionInfo | null;
     get context(): ApplicationContext | null;
     subscribe(callback: () => void): () => void;
-    private notifySubscribers;
-    getDependencies(): Promise<ExtensionInfo[]>;
     getTableName(tableName: string): string;
     getDependencyTableName(publicKey: string, extensionName: string, tableName: string): string;
     parseTableName(fullTableName: string): {
@@ -441,81 +422,30 @@ declare class HaexVaultClient {
         extensionName: string;
         tableName: string;
     } | null;
-    /**
-     * Execute a raw SQL query (SELECT)
-     * Returns rows as an array of objects
-     */
+    initializeDatabase<T extends Record<string, unknown>>(schema: T): SqliteRemoteDatabase<T>;
     query<T = Record<string, unknown>>(sql: string, params?: unknown[]): Promise<T[]>;
-    /**
-     * Alias for query() - more intuitive for SELECT statements
-     */
     select<T = Record<string, unknown>>(sql: string, params?: unknown[]): Promise<T[]>;
-    /**
-     * Execute a raw SQL statement (INSERT, UPDATE, DELETE, CREATE, etc.)
-     * Returns rowsAffected and lastInsertId
-     */
     execute(sql: string, params?: unknown[]): Promise<{
         rowsAffected: number;
         lastInsertId?: number;
     }>;
-    /**
-     * Registers and applies extension migrations with HaexVault
-     *
-     * HaexVault will:
-     * 1. Validate all SQL statements (ensure only extension's own tables are accessed)
-     * 2. Store migrations with applied_at = NULL
-     * 3. Query pending migrations sorted by name
-     * 4. Apply pending migrations and set up CRDT triggers
-     * 5. Mark successful migrations with applied_at timestamp
-     *
-     * @param extensionVersion - The version of the extension
-     * @param migrations - Array of migration objects with name and SQL content
-     * @returns Promise with migration result (applied count, already applied count, applied migration names)
-     */
     registerMigrationsAsync(extensionVersion: string, migrations: Migration[]): Promise<MigrationResult>;
+    getDependencies(): Promise<ExtensionInfo[]>;
     requestDatabasePermission(request: DatabasePermissionRequest): Promise<PermissionResponse>;
     checkDatabasePermission(resource: string, operation: "read" | "write"): Promise<boolean>;
     respondToSearch(requestId: string, results: SearchResult[]): Promise<void>;
-    /**
-     * Register a handler for external requests (from browser extensions, CLI, servers, etc.)
-     *
-     * @param action - The action/method name to handle (e.g., "get-logins", "get-totp")
-     * @param handler - Function that processes the request and returns a response
-     * @returns Unsubscribe function to remove the handler
-     *
-     * @example
-     * ```typescript
-     * client.onExternalRequest("get-logins", async (request) => {
-     *   const entries = await getMatchingEntries(request.payload.url);
-     *   return {
-     *     requestId: request.requestId,
-     *     success: true,
-     *     data: { entries }
-     *   };
-     * });
-     * ```
-     */
     onExternalRequest(action: string, handler: ExternalRequestHandler): () => void;
-    /**
-     * Send a response to an external request back to haex-vault
-     * This is called internally after a handler processes a request
-     */
     respondToExternalRequest(response: ExternalResponse): Promise<void>;
-    request<T = unknown, P = Record<string, unknown>>(method: string, params?: P): Promise<T>;
-    private postMessage;
-    private invoke;
     on(eventType: string, callback: EventCallback): void;
     off(eventType: string, callback: EventCallback): void;
-    destroy(): void;
+    request<T = unknown, P = Record<string, unknown>>(method: string, params?: P): Promise<T>;
     private init;
-    private handleMessage;
+    private initNative;
+    private initIframe;
     private handleEvent;
-    private handleExternalRequest;
-    private emitEvent;
-    private generateRequestId;
-    private validatePublicKey;
-    private validateExtensionName;
-    private validateTableName;
+    private handleExternalRequestInternal;
+    private runSetupAsync;
+    private notifySubscribersInternal;
     private log;
 }
 

package/dist/index.d.mts

@@ -1,7 +1,7 @@
-import { H as HaexVaultClient } from './client-8eGxojZ1.mjs';
-export { A as AddBackendOptions, m as AddSyncRuleOptions, C as CreateSpaceOptions, D as DatabaseAPI, n as DownloadFileOptions, c as FileInfo, b as FileSpace, a as FileSyncAPI, d as FileSyncState, F as FilesystemAPI, L as ListFilesOptions, P as PermissionsAPI, g as S3BackendConfig, e as StorageBackendInfo, f as StorageBackendType, i as SyncDirection, k as SyncError, l as SyncProgress, h as SyncRule, j as SyncStatus, U as UploadFileOptions, W as WebAPI } from './client-8eGxojZ1.mjs';
-import { E as ExtensionManifest, H as HaexHubConfig } from './types-DBF83o_W.mjs';
-export { A as ApplicationContext, C as ContextChangedEvent, v as DEFAULT_TIMEOUT, o as DatabaseColumnInfo, m as DatabaseExecuteParams, k as DatabasePermission, d as DatabasePermissionRequest, l as DatabaseQueryParams, D as DatabaseQueryResult, n as DatabaseTableInfo, u as ErrorCode, g as EventCallback, a as ExtensionInfo, s as ExternalRequest, r as ExternalRequestEvent, e as ExternalRequestHandler, f as ExternalResponse, y as HAEXTENSION_EVENTS, x as HaexHubError, j as HaexHubEvent, h as HaexHubRequest, i as HaexHubResponse, z as HaextensionEvent, P as PermissionResponse, t as PermissionStatus, p as SearchQuery, q as SearchRequestEvent, S as SearchResult, T as TABLE_SEPARATOR, W as WebRequestOptions, c as WebResponse, w as getTableName } from './types-DBF83o_W.mjs';
+import { H as HaexVaultClient } from './client-ClYpUDoI.mjs';
+export { A as AddBackendOptions, m as AddSyncRuleOptions, C as CreateSpaceOptions, D as DatabaseAPI, n as DownloadFileOptions, c as FileInfo, b as FileSpace, a as FileSyncAPI, d as FileSyncState, F as FilesystemAPI, L as ListFilesOptions, P as PermissionsAPI, g as S3BackendConfig, e as StorageBackendInfo, f as StorageBackendType, i as SyncDirection, k as SyncError, l as SyncProgress, h as SyncRule, j as SyncStatus, U as UploadFileOptions, W as WebAPI } from './client-ClYpUDoI.mjs';
+import { E as ExtensionManifest, H as HaexHubConfig } from './types-CmPqOcLB.mjs';
+export { A as ApplicationContext, C as ContextChangedEvent, v as DEFAULT_TIMEOUT, o as DatabaseColumnInfo, m as DatabaseExecuteParams, k as DatabasePermission, d as DatabasePermissionRequest, l as DatabaseQueryParams, D as DatabaseQueryResult, n as DatabaseTableInfo, u as ErrorCode, g as EventCallback, a as ExtensionInfo, s as ExternalRequest, r as ExternalRequestEvent, e as ExternalRequestHandler, f as ExternalResponse, y as HAEXTENSION_EVENTS, j as HaexHubEvent, h as HaexHubRequest, i as HaexHubResponse, x as HaexVaultSdkError, z as HaextensionEvent, P as PermissionResponse, t as PermissionStatus, p as SearchQuery, q as SearchRequestEvent, S as SearchResult, T as TABLE_SEPARATOR, W as WebRequestOptions, c as WebResponse, w as getTableName } from './types-CmPqOcLB.mjs';
 export { H as HaextensionConfig } from './config-D_HXjsEV.mjs';
 import 'drizzle-orm/sqlite-proxy';
 
@@ -159,6 +159,65 @@ declare const HAEXSPACE_MESSAGE_TYPES: {
 };
 type HaexspaceMessageType = (typeof HAEXSPACE_MESSAGE_TYPES)[keyof typeof HAEXSPACE_MESSAGE_TYPES];
 
+/**
+ * Tauri Command Names
+ *
+ * Central definition of all Tauri invoke command names.
+ * These must match the #[tauri::command] function names in Rust.
+ */
+declare const TAURI_COMMANDS: {
+    readonly database: {
+        readonly query: "webview_extension_db_query";
+        readonly execute: "webview_extension_db_execute";
+        readonly registerMigrations: "webview_extension_db_register_migrations";
+    };
+    readonly permissions: {
+        readonly checkWeb: "webview_extension_check_web_permission";
+        readonly checkDatabase: "webview_extension_check_database_permission";
+        readonly checkFilesystem: "webview_extension_check_filesystem_permission";
+    };
+    readonly web: {
+        readonly open: "webview_extension_web_open";
+        readonly fetch: "webview_extension_web_request";
+    };
+    readonly filesystem: {
+        readonly saveFile: "webview_extension_fs_save_file";
+        readonly openFile: "webview_extension_fs_open_file";
+        readonly showImage: "webview_extension_fs_show_image";
+    };
+    readonly external: {
+        readonly respond: "webview_extension_external_respond";
+    };
+    readonly extension: {
+        readonly getInfo: "webview_extension_get_info";
+        readonly getContext: "webview_extension_context_get";
+    };
+    readonly filesync: {
+        readonly listSpaces: "filesync_list_spaces";
+        readonly createSpace: "filesync_create_space";
+        readonly deleteSpace: "filesync_delete_space";
+        readonly listFiles: "filesync_list_files";
+        readonly getFile: "filesync_get_file";
+        readonly uploadFile: "filesync_upload_file";
+        readonly downloadFile: "filesync_download_file";
+        readonly deleteFile: "filesync_delete_file";
+        readonly listBackends: "filesync_list_backends";
+        readonly addBackend: "filesync_add_backend";
+        readonly removeBackend: "filesync_remove_backend";
+        readonly testBackend: "filesync_test_backend";
+        readonly listSyncRules: "filesync_list_sync_rules";
+        readonly addSyncRule: "filesync_add_sync_rule";
+        readonly removeSyncRule: "filesync_remove_sync_rule";
+        readonly getSyncStatus: "filesync_get_sync_status";
+        readonly triggerSync: "filesync_trigger_sync";
+        readonly pauseSync: "filesync_pause_sync";
+        readonly resumeSync: "filesync_resume_sync";
+        readonly resolveConflict: "filesync_resolve_conflict";
+        readonly selectFolder: "filesync_select_folder";
+    };
+};
+type TauriCommand = (typeof TAURI_COMMANDS.database)[keyof typeof TAURI_COMMANDS.database] | (typeof TAURI_COMMANDS.permissions)[keyof typeof TAURI_COMMANDS.permissions] | (typeof TAURI_COMMANDS.web)[keyof typeof TAURI_COMMANDS.web] | (typeof TAURI_COMMANDS.filesystem)[keyof typeof TAURI_COMMANDS.filesystem] | (typeof TAURI_COMMANDS.external)[keyof typeof TAURI_COMMANDS.external] | (typeof TAURI_COMMANDS.extension)[keyof typeof TAURI_COMMANDS.extension] | (typeof TAURI_COMMANDS.filesync)[keyof typeof TAURI_COMMANDS.filesync];
+
 interface VerifyResult {
     valid: boolean;
     error?: string;
@@ -267,6 +326,17 @@ declare function encryptCrdtData(data: object, vaultKey: Uint8Array): Promise<{
     encryptedData: string;
     nonce: string;
 }>;
+/**
+ * Wraps (encrypts) a key with another key using AES-GCM
+ * Used for key hierarchies (e.g., master key -> space key -> file key)
+ * Returns: nonce (12 bytes) + ciphertext as Uint8Array
+ */
+declare function wrapKey(keyToWrap: Uint8Array, wrappingKey: Uint8Array): Promise<Uint8Array>;
+/**
+ * Unwraps (decrypts) a key with another key using AES-GCM
+ * Expects: nonce (12 bytes) + ciphertext as Uint8Array
+ */
+declare function unwrapKey(wrappedKey: Uint8Array, wrappingKey: Uint8Array): Promise<Uint8Array>;
 /**
  * Decrypts CRDT log data with the vault key
  */
@@ -276,4 +346,4 @@ declare function base64ToArrayBuffer(base64: string): Uint8Array;
 
 declare function createHaexVaultClient(config?: HaexHubConfig): HaexVaultClient;
 
-export { ExtensionManifest, HAEXSPACE_MESSAGE_TYPES, HAEXTENSION_METHODS, HaexHubConfig, HaexVaultClient, type HaexspaceMessageType, type HaextensionMethod, type VerifyResult, type ZipFileEntry, arrayBufferToBase64, base64ToArrayBuffer, createHaexVaultClient, decryptCrdtData, decryptString, decryptVaultKey, decryptVaultName, deriveKeyFromPassword, encryptCrdtData, encryptString, encryptVaultKey, generateVaultKey, hexToBytes, installBaseTag, installCookiePolyfill, installHistoryPolyfill, installLocalStoragePolyfill, installPolyfills, installSessionStoragePolyfill, sortObjectKeysRecursively, verifyExtensionSignature };
+export { ExtensionManifest, HAEXSPACE_MESSAGE_TYPES, HAEXTENSION_METHODS, HaexHubConfig, HaexVaultClient, type HaexspaceMessageType, type HaextensionMethod, TAURI_COMMANDS, type TauriCommand, type VerifyResult, type ZipFileEntry, arrayBufferToBase64, base64ToArrayBuffer, createHaexVaultClient, decryptCrdtData, decryptString, decryptVaultKey, decryptVaultName, deriveKeyFromPassword, encryptCrdtData, encryptString, encryptVaultKey, generateVaultKey, hexToBytes, installBaseTag, installCookiePolyfill, installHistoryPolyfill, installLocalStoragePolyfill, installPolyfills, installSessionStoragePolyfill, sortObjectKeysRecursively, unwrapKey, verifyExtensionSignature, wrapKey };

package/dist/index.d.ts

@@ -1,7 +1,7 @@
-import { H as HaexVaultClient } from './client-ChH7wiuU.js';
-export { A as AddBackendOptions, m as AddSyncRuleOptions, C as CreateSpaceOptions, D as DatabaseAPI, n as DownloadFileOptions, c as FileInfo, b as FileSpace, a as FileSyncAPI, d as FileSyncState, F as FilesystemAPI, L as ListFilesOptions, P as PermissionsAPI, g as S3BackendConfig, e as StorageBackendInfo, f as StorageBackendType, i as SyncDirection, k as SyncError, l as SyncProgress, h as SyncRule, j as SyncStatus, U as UploadFileOptions, W as WebAPI } from './client-ChH7wiuU.js';
-import { E as ExtensionManifest, H as HaexHubConfig } from './types-DBF83o_W.js';
-export { A as ApplicationContext, C as ContextChangedEvent, v as DEFAULT_TIMEOUT, o as DatabaseColumnInfo, m as DatabaseExecuteParams, k as DatabasePermission, d as DatabasePermissionRequest, l as DatabaseQueryParams, D as DatabaseQueryResult, n as DatabaseTableInfo, u as ErrorCode, g as EventCallback, a as ExtensionInfo, s as ExternalRequest, r as ExternalRequestEvent, e as ExternalRequestHandler, f as ExternalResponse, y as HAEXTENSION_EVENTS, x as HaexHubError, j as HaexHubEvent, h as HaexHubRequest, i as HaexHubResponse, z as HaextensionEvent, P as PermissionResponse, t as PermissionStatus, p as SearchQuery, q as SearchRequestEvent, S as SearchResult, T as TABLE_SEPARATOR, W as WebRequestOptions, c as WebResponse, w as getTableName } from './types-DBF83o_W.js';
+import { H as HaexVaultClient } from './client-BSdAg7D1.js';
+export { A as AddBackendOptions, m as AddSyncRuleOptions, C as CreateSpaceOptions, D as DatabaseAPI, n as DownloadFileOptions, c as FileInfo, b as FileSpace, a as FileSyncAPI, d as FileSyncState, F as FilesystemAPI, L as ListFilesOptions, P as PermissionsAPI, g as S3BackendConfig, e as StorageBackendInfo, f as StorageBackendType, i as SyncDirection, k as SyncError, l as SyncProgress, h as SyncRule, j as SyncStatus, U as UploadFileOptions, W as WebAPI } from './client-BSdAg7D1.js';
+import { E as ExtensionManifest, H as HaexHubConfig } from './types-CmPqOcLB.js';
+export { A as ApplicationContext, C as ContextChangedEvent, v as DEFAULT_TIMEOUT, o as DatabaseColumnInfo, m as DatabaseExecuteParams, k as DatabasePermission, d as DatabasePermissionRequest, l as DatabaseQueryParams, D as DatabaseQueryResult, n as DatabaseTableInfo, u as ErrorCode, g as EventCallback, a as ExtensionInfo, s as ExternalRequest, r as ExternalRequestEvent, e as ExternalRequestHandler, f as ExternalResponse, y as HAEXTENSION_EVENTS, j as HaexHubEvent, h as HaexHubRequest, i as HaexHubResponse, x as HaexVaultSdkError, z as HaextensionEvent, P as PermissionResponse, t as PermissionStatus, p as SearchQuery, q as SearchRequestEvent, S as SearchResult, T as TABLE_SEPARATOR, W as WebRequestOptions, c as WebResponse, w as getTableName } from './types-CmPqOcLB.js';
 export { H as HaextensionConfig } from './config-D_HXjsEV.js';
 import 'drizzle-orm/sqlite-proxy';
 
@@ -159,6 +159,65 @@ declare const HAEXSPACE_MESSAGE_TYPES: {
 };
 type HaexspaceMessageType = (typeof HAEXSPACE_MESSAGE_TYPES)[keyof typeof HAEXSPACE_MESSAGE_TYPES];
 
+/**
+ * Tauri Command Names
+ *
+ * Central definition of all Tauri invoke command names.
+ * These must match the #[tauri::command] function names in Rust.
+ */
+declare const TAURI_COMMANDS: {
+    readonly database: {
+        readonly query: "webview_extension_db_query";
+        readonly execute: "webview_extension_db_execute";
+        readonly registerMigrations: "webview_extension_db_register_migrations";
+    };
+    readonly permissions: {
+        readonly checkWeb: "webview_extension_check_web_permission";
+        readonly checkDatabase: "webview_extension_check_database_permission";
+        readonly checkFilesystem: "webview_extension_check_filesystem_permission";
+    };
+    readonly web: {
+        readonly open: "webview_extension_web_open";
+        readonly fetch: "webview_extension_web_request";
+    };
+    readonly filesystem: {
+        readonly saveFile: "webview_extension_fs_save_file";
+        readonly openFile: "webview_extension_fs_open_file";
+        readonly showImage: "webview_extension_fs_show_image";
+    };
+    readonly external: {
+        readonly respond: "webview_extension_external_respond";
+    };
+    readonly extension: {
+        readonly getInfo: "webview_extension_get_info";
+        readonly getContext: "webview_extension_context_get";
+    };
+    readonly filesync: {
+        readonly listSpaces: "filesync_list_spaces";
+        readonly createSpace: "filesync_create_space";
+        readonly deleteSpace: "filesync_delete_space";
+        readonly listFiles: "filesync_list_files";
+        readonly getFile: "filesync_get_file";
+        readonly uploadFile: "filesync_upload_file";
+        readonly downloadFile: "filesync_download_file";
+        readonly deleteFile: "filesync_delete_file";
+        readonly listBackends: "filesync_list_backends";
+        readonly addBackend: "filesync_add_backend";
+        readonly removeBackend: "filesync_remove_backend";
+        readonly testBackend: "filesync_test_backend";
+        readonly listSyncRules: "filesync_list_sync_rules";
+        readonly addSyncRule: "filesync_add_sync_rule";
+        readonly removeSyncRule: "filesync_remove_sync_rule";
+        readonly getSyncStatus: "filesync_get_sync_status";
+        readonly triggerSync: "filesync_trigger_sync";
+        readonly pauseSync: "filesync_pause_sync";
+        readonly resumeSync: "filesync_resume_sync";
+        readonly resolveConflict: "filesync_resolve_conflict";
+        readonly selectFolder: "filesync_select_folder";
+    };
+};
+type TauriCommand = (typeof TAURI_COMMANDS.database)[keyof typeof TAURI_COMMANDS.database] | (typeof TAURI_COMMANDS.permissions)[keyof typeof TAURI_COMMANDS.permissions] | (typeof TAURI_COMMANDS.web)[keyof typeof TAURI_COMMANDS.web] | (typeof TAURI_COMMANDS.filesystem)[keyof typeof TAURI_COMMANDS.filesystem] | (typeof TAURI_COMMANDS.external)[keyof typeof TAURI_COMMANDS.external] | (typeof TAURI_COMMANDS.extension)[keyof typeof TAURI_COMMANDS.extension] | (typeof TAURI_COMMANDS.filesync)[keyof typeof TAURI_COMMANDS.filesync];
+
 interface VerifyResult {
     valid: boolean;
     error?: string;
@@ -267,6 +326,17 @@ declare function encryptCrdtData(data: object, vaultKey: Uint8Array): Promise<{
     encryptedData: string;
     nonce: string;
 }>;
+/**
+ * Wraps (encrypts) a key with another key using AES-GCM
+ * Used for key hierarchies (e.g., master key -> space key -> file key)
+ * Returns: nonce (12 bytes) + ciphertext as Uint8Array
+ */
+declare function wrapKey(keyToWrap: Uint8Array, wrappingKey: Uint8Array): Promise<Uint8Array>;
+/**
+ * Unwraps (decrypts) a key with another key using AES-GCM
+ * Expects: nonce (12 bytes) + ciphertext as Uint8Array
+ */
+declare function unwrapKey(wrappedKey: Uint8Array, wrappingKey: Uint8Array): Promise<Uint8Array>;
 /**
  * Decrypts CRDT log data with the vault key
  */
@@ -276,4 +346,4 @@ declare function base64ToArrayBuffer(base64: string): Uint8Array;
 
 declare function createHaexVaultClient(config?: HaexHubConfig): HaexVaultClient;
 
-export { ExtensionManifest, HAEXSPACE_MESSAGE_TYPES, HAEXTENSION_METHODS, HaexHubConfig, HaexVaultClient, type HaexspaceMessageType, type HaextensionMethod, type VerifyResult, type ZipFileEntry, arrayBufferToBase64, base64ToArrayBuffer, createHaexVaultClient, decryptCrdtData, decryptString, decryptVaultKey, decryptVaultName, deriveKeyFromPassword, encryptCrdtData, encryptString, encryptVaultKey, generateVaultKey, hexToBytes, installBaseTag, installCookiePolyfill, installHistoryPolyfill, installLocalStoragePolyfill, installPolyfills, installSessionStoragePolyfill, sortObjectKeysRecursively, verifyExtensionSignature };
+export { ExtensionManifest, HAEXSPACE_MESSAGE_TYPES, HAEXTENSION_METHODS, HaexHubConfig, HaexVaultClient, type HaexspaceMessageType, type HaextensionMethod, TAURI_COMMANDS, type TauriCommand, type VerifyResult, type ZipFileEntry, arrayBufferToBase64, base64ToArrayBuffer, createHaexVaultClient, decryptCrdtData, decryptString, decryptVaultKey, decryptVaultName, deriveKeyFromPassword, encryptCrdtData, encryptString, encryptVaultKey, generateVaultKey, hexToBytes, installBaseTag, installCookiePolyfill, installHistoryPolyfill, installLocalStoragePolyfill, installPolyfills, installSessionStoragePolyfill, sortObjectKeysRecursively, unwrapKey, verifyExtensionSignature, wrapKey };