@haex-space/vault-sdk 3.2.7 → 3.3.0

package/dist/index.mjs

@@ -709,7 +709,15 @@ var HAEXTENSION_EVENTS = {
   /** File system change detected (from native file watcher) */
   FILE_CHANGED: "filesync:file-changed",
   /** Tables have been updated via sync (CRDT pull from server) */
-  SYNC_TABLES_UPDATED: "haextension:sync:tables-updated"
+  SYNC_TABLES_UPDATED: "haextension:sync:tables-updated",
+  /** A runtime permission prompt was resolved (granted/denied) by the user.
+   *  The SDK uses this to auto-retry the original request; extensions may also
+   *  subscribe via `client.on(HAEXTENSION_EVENTS.PERMISSION_RESOLVED, ...)`. */
+  PERMISSION_RESOLVED: "extension:permission-resolved"
+};
+var NOTIFICATION_EVENTS = {
+  /** A click on one of this extension's notifications (body or action button). */
+  CLICK: "haextension:notification:click"
 };
 var EXTERNAL_EVENTS = {
   /** External request from authorized client */
@@ -1081,6 +1089,14 @@ var MAIL_COMMANDS = {
   buildRfc822: "extension_mail_build_rfc822"
 };
 
+// src/commands/notifications.ts
+var NOTIFICATION_COMMANDS = {
+  /** Show an OS notification. Returns the assigned notification id. */
+  show: "extension_notifications_show",
+  /** Dismiss a previously shown notification (only own notifications). */
+  dismiss: "extension_notifications_dismiss"
+};
+
 // src/commands/index.ts
 var TAURI_COMMANDS = {
   database: DATABASE_COMMANDS,
@@ -1095,7 +1111,8 @@ var TAURI_COMMANDS = {
   spaces: SPACE_COMMANDS,
   shell: SHELL_COMMANDS,
   passwords: PASSWORD_COMMANDS,
-  mail: MAIL_COMMANDS
+  mail: MAIL_COMMANDS,
+  notifications: NOTIFICATION_COMMANDS
 };
 
 // src/api/storage.ts
@@ -2181,6 +2198,38 @@ var MailAPI = class {
   }
 };
 
+// src/api/notifications.ts
+var NotificationsAPI = class {
+  constructor(client) {
+    this.client = client;
+  }
+  /** Show a notification. Returns its id so it can be dismissed later. */
+  async show(opts) {
+    return this.client.request(NOTIFICATION_COMMANDS.show, {
+      options: opts
+    });
+  }
+  /** Dismiss a previously shown notification (only own notifications). */
+  async dismiss(id) {
+    return this.client.request(NOTIFICATION_COMMANDS.dismiss, { id });
+  }
+  /**
+   * Listen for clicks on this extension's notifications. Useful when the
+   * extension is already open and wants to react in-app (e.g. router.push the
+   * `path`) instead of relying on the host to focus the webview.
+   *
+   * Returns an unsubscribe function.
+   */
+  onClick(handler) {
+    const wrapped = (event) => {
+      const data = event.data;
+      if (data) handler(data);
+    };
+    this.client.on(NOTIFICATION_EVENTS.CLICK, wrapped);
+    return () => this.client.off(NOTIFICATION_EVENTS.CLICK, wrapped);
+  }
+};
+
 // src/client/tableName.ts
 function validatePublicKey(publicKey) {
   if (!publicKey || typeof publicKey !== "string" || publicKey.trim() === "") {
@@ -2298,6 +2347,21 @@ async function initNativeMode(ctx, log, onEvent, onContextChange) {
   await setupTauriEventListeners(ctx, log, onEvent, onContextChange);
   return { extensionInfo, context };
 }
+async function forwardEvent(listen, log, onEvent, listenOptions, eventName, shape) {
+  try {
+    await listen(eventName, (event) => {
+      if (event.payload == null) {
+        log(`Event '${eventName}' received with no payload`);
+        return;
+      }
+      const extra = shape ? shape(event.payload) : { data: event.payload };
+      onEvent({ type: eventName, timestamp: Date.now(), ...extra });
+    }, listenOptions);
+    log(`Listener registered: ${eventName}`);
+  } catch (error) {
+    log(`Failed to register listener '${eventName}':`, error);
+  }
+}
 async function setupTauriEventListeners(ctx, log, onEvent, onContextChange) {
   const { listen } = getTauriEvent();
   const webviewLabel = getCurrentWebviewLabel();
@@ -2329,207 +2393,30 @@ async function setupTauriEventListeners(ctx, log, onEvent, onContextChange) {
   } catch (error) {
     log("Failed to setup context change listener:", error);
   }
-  try {
-    await listen(EXTERNAL_EVENTS.REQUEST, (event) => {
-      log("====== EXTERNAL REQUEST RECEIVED ======");
-      log("Event payload:", JSON.stringify(event.payload, null, 2));
-      if (event.payload) {
-        onEvent({
-          type: EXTERNAL_EVENTS.REQUEST,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      } else {
-        log("External request event has no payload!");
-      }
-    }, listenOptions);
-    log("External request listener registered successfully");
-  } catch (error) {
-    log("Failed to setup external request listener:", error);
-  }
-  try {
-    await listen(EXTERNAL_EVENTS.ACTION_REQUEST, (event) => {
-      log("====== AI ACTION REQUEST RECEIVED ======");
-      log("Payload:", JSON.stringify(event.payload));
-      if (event.payload) {
-        onEvent({
-          type: EXTERNAL_EVENTS.ACTION_REQUEST,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      } else {
-        log("AI action request event has no payload!");
-      }
-    }, listenOptions);
-    log("AI action request listener registered successfully");
-  } catch (error) {
-    log("Failed to setup AI action request listener:", error);
-  }
-  log("Registering file change listener for:", HAEXTENSION_EVENTS.FILE_CHANGED);
-  try {
-    await listen(HAEXTENSION_EVENTS.FILE_CHANGED, (event) => {
-      log("File change event received:", event.payload);
-      if (event.payload) {
-        const payload = event.payload;
-        onEvent({
-          type: HAEXTENSION_EVENTS.FILE_CHANGED,
-          ruleId: payload.ruleId,
-          changeType: payload.changeType,
-          path: payload.path,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("File change listener registered successfully");
-  } catch (error) {
-    log("Failed to setup file change listener:", error);
-  }
-  log("Registering sync tables updated listener for:", HAEXTENSION_EVENTS.SYNC_TABLES_UPDATED);
-  try {
-    await listen(HAEXTENSION_EVENTS.SYNC_TABLES_UPDATED, (event) => {
-      log("Sync tables updated event received:", event.payload);
-      if (event.payload) {
-        const payload = event.payload;
-        onEvent({
-          type: HAEXTENSION_EVENTS.SYNC_TABLES_UPDATED,
-          data: { tables: payload.tables },
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("Sync tables updated listener registered successfully");
-  } catch (error) {
-    log("Failed to setup sync tables updated listener:", error);
-  }
-  log("Setting up LocalSend event listeners");
-  try {
-    await setupLocalSendEventListeners(log, onEvent, listenOptions);
-    log("LocalSend event listeners setup complete");
-  } catch (error) {
-    log("Failed to setup LocalSend event listeners:", error);
-  }
-  log("Setting up Shell event listeners");
-  try {
-    await listen(SHELL_EVENTS.OUTPUT, (event) => {
-      if (event.payload) {
-        const payload = event.payload;
-        onEvent({
-          type: SHELL_EVENTS.OUTPUT,
-          timestamp: Date.now(),
-          sessionId: payload.sessionId,
-          data: payload.data
-        });
-      }
-    }, listenOptions);
-    log("Shell output listener registered");
-    await listen(SHELL_EVENTS.EXIT, (event) => {
-      if (event.payload) {
-        const payload = event.payload;
-        onEvent({
-          type: SHELL_EVENTS.EXIT,
-          timestamp: Date.now(),
-          sessionId: payload.sessionId,
-          exitCode: payload.exitCode
-        });
-      }
-    }, listenOptions);
-    log("Shell exit listener registered");
-  } catch (error) {
-    log("Failed to setup Shell event listeners:", error);
-  }
-}
-async function setupLocalSendEventListeners(log, onEvent, listenOptions) {
-  const { listen } = getTauriEvent();
-  try {
-    await listen(LOCALSEND_EVENTS.deviceDiscovered, (event) => {
-      log("LocalSend device discovered:", event.payload);
-      if (event.payload) {
-        onEvent({
-          type: LOCALSEND_EVENTS.deviceDiscovered,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("LocalSend device discovered listener registered");
-  } catch (error) {
-    log("Failed to setup LocalSend device discovered listener:", error);
-  }
-  try {
-    await listen(LOCALSEND_EVENTS.deviceLost, (event) => {
-      log("LocalSend device lost:", event.payload);
-      if (event.payload) {
-        onEvent({
-          type: LOCALSEND_EVENTS.deviceLost,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("LocalSend device lost listener registered");
-  } catch (error) {
-    log("Failed to setup LocalSend device lost listener:", error);
-  }
-  try {
-    await listen(LOCALSEND_EVENTS.transferRequest, (event) => {
-      log("LocalSend transfer request:", event.payload);
-      if (event.payload) {
-        onEvent({
-          type: LOCALSEND_EVENTS.transferRequest,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("LocalSend transfer request listener registered");
-  } catch (error) {
-    log("Failed to setup LocalSend transfer request listener:", error);
-  }
-  try {
-    await listen(LOCALSEND_EVENTS.transferProgress, (event) => {
-      log("LocalSend transfer progress event:", event);
-      if (event.payload) {
-        onEvent({
-          type: LOCALSEND_EVENTS.transferProgress,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("LocalSend transfer progress listener registered");
-  } catch (error) {
-    log("Failed to setup LocalSend transfer progress listener:", error);
-  }
-  try {
-    await listen(LOCALSEND_EVENTS.transferComplete, (event) => {
-      log("LocalSend transfer complete:", event.payload);
-      if (event.payload) {
-        onEvent({
-          type: LOCALSEND_EVENTS.transferComplete,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("LocalSend transfer complete listener registered");
-  } catch (error) {
-    log("Failed to setup LocalSend transfer complete listener:", error);
-  }
-  try {
-    await listen(LOCALSEND_EVENTS.transferFailed, (event) => {
-      log("LocalSend transfer failed:", event.payload);
-      if (event.payload) {
-        onEvent({
-          type: LOCALSEND_EVENTS.transferFailed,
-          data: event.payload,
-          timestamp: Date.now()
-        });
-      }
-    }, listenOptions);
-    log("LocalSend transfer failed listener registered");
-  } catch (error) {
-    log("Failed to setup LocalSend transfer failed listener:", error);
-  }
+  for (const eventName of [
+    HAEXTENSION_EVENTS.PERMISSION_RESOLVED,
+    EXTERNAL_EVENTS.REQUEST,
+    EXTERNAL_EVENTS.ACTION_REQUEST,
+    NOTIFICATION_EVENTS.CLICK,
+    ...Object.values(LOCALSEND_EVENTS)
+  ]) {
+    await forwardEvent(listen, log, onEvent, listenOptions, eventName);
+  }
+  await forwardEvent(listen, log, onEvent, listenOptions, HAEXTENSION_EVENTS.SYNC_TABLES_UPDATED, (payload) => ({
+    data: { tables: payload.tables }
+  }));
+  await forwardEvent(listen, log, onEvent, listenOptions, HAEXTENSION_EVENTS.FILE_CHANGED, (payload) => {
+    const { ruleId, changeType, path } = payload;
+    return { ruleId, changeType, path };
+  });
+  await forwardEvent(listen, log, onEvent, listenOptions, SHELL_EVENTS.OUTPUT, (payload) => {
+    const { sessionId, data } = payload;
+    return { sessionId, data };
+  });
+  await forwardEvent(listen, log, onEvent, listenOptions, SHELL_EVENTS.EXIT, (payload) => {
+    const { sessionId, exitCode } = payload;
+    return { sessionId, exitCode };
+  });
 }
 async function initIframeMode(ctx, log, messageHandler) {
   if (!isInIframe()) {
@@ -2873,6 +2760,68 @@ var AI_COMMANDS = {
   actionRespond: "ai_action_respond"
 };
 
+// src/client/permissionRetry.ts
+var PERMISSION_DECISION_TIMEOUT_MS = 5 * 60 * 1e3;
+var MAX_PERMISSION_RETRIES = 3;
+function permissionKey(resourceType, action, target) {
+  return `${resourceType}:${action}:${target}`;
+}
+var PermissionWaiterRegistry = class {
+  constructor() {
+    this.waiters = /* @__PURE__ */ new Map();
+  }
+  /** Wait for a decision on `key`; resolves "timeout" if none arrives in time. */
+  wait(key, timeoutMs = PERMISSION_DECISION_TIMEOUT_MS) {
+    return new Promise((resolve) => {
+      const set = this.waiters.get(key) ?? /* @__PURE__ */ new Set();
+      this.waiters.set(key, set);
+      const settle = (outcome) => {
+        if (!set.has(callback)) return;
+        set.delete(callback);
+        if (set.size === 0) this.waiters.delete(key);
+        clearTimeout(timer);
+        resolve(outcome);
+      };
+      const callback = (outcome) => settle(outcome);
+      const timer = setTimeout(() => settle("timeout"), timeoutMs);
+      set.add(callback);
+    });
+  }
+  /** Resolve everyone waiting on `key` with the user's decision. */
+  resolve(key, decision) {
+    const set = this.waiters.get(key);
+    if (!set) return;
+    for (const callback of [...set]) callback(decision);
+  }
+};
+function toDeniedError(error) {
+  return { ...error, code: 1002 /* DENIED */ };
+}
+async function withPermissionRetry(send, registry, log, timeoutMs = PERMISSION_DECISION_TIMEOUT_MS) {
+  for (let attempt = 0; ; attempt++) {
+    try {
+      return await send();
+    } catch (error) {
+      if (!isPermissionPromptError(error) || attempt >= MAX_PERMISSION_RETRIES) {
+        throw error;
+      }
+      const key = permissionKey(error.resourceType, error.action, error.target);
+      log(`Permission prompt required for ${key} \u2014 waiting for user decision`);
+      const outcome = await registry.wait(key, timeoutMs);
+      if (outcome === "granted") {
+        log(`Permission ${key} granted \u2014 retrying request`);
+        continue;
+      }
+      if (outcome === "denied") {
+        log(`Permission ${key} denied`);
+        throw toDeniedError(error);
+      }
+      log(`Permission ${key} prompt timed out`);
+      throw error;
+    }
+  }
+}
+
 // src/client.ts
 var HaexVaultSdk = class {
   constructor(config = {}) {
@@ -2888,6 +2837,7 @@ var HaexVaultSdk = class {
     this.eventListeners = /* @__PURE__ */ new Map();
     this.externalRequestHandlers = /* @__PURE__ */ new Map();
     this.reactiveSubscribers = /* @__PURE__ */ new Set();
+    this.permissionWaiters = new PermissionWaiterRegistry();
     // Handlers
     this.messageHandler = null;
     /**
@@ -2923,7 +2873,16 @@ var HaexVaultSdk = class {
     this.shell = new ShellAPI(this);
     this.passwords = new PasswordsAPI(this);
     this.mail = new MailAPI(this);
+    this.notifications = new NotificationsAPI(this);
     installConsoleForwarding(this.config.debug);
+    this.on(HAEXTENSION_EVENTS.PERMISSION_RESOLVED, (event) => {
+      const data = event.data;
+      if (!data) return;
+      this.permissionWaiters.resolve(
+        permissionKey(data.resourceType, data.action, data.target),
+        data.decision === "denied" ? "denied" : "granted"
+      );
+    });
     this.readyPromise = new Promise((resolve, reject) => {
       this.resolveReady = resolve;
       this.rejectReady = reject;
@@ -3072,24 +3031,27 @@ var HaexVaultSdk = class {
   // ==========================================================================
   async request(method, params) {
     const resolvedParams = params ?? {};
-    if (this.isNativeWindow && hasTauri()) {
-      const paramsWithCredentials = {
-        ...resolvedParams,
-        publicKey: this._extensionInfo?.publicKey,
-        name: this._extensionInfo?.name
-      };
-      return sendInvoke(method, paramsWithCredentials, this.config, this.log.bind(this));
-    }
-    const requestId = generateRequestId(++this.requestCounter);
-    return sendPostMessage(
-      method,
-      resolvedParams,
-      requestId,
-      this.config,
-      this._extensionInfo,
-      this.pendingRequests,
-      this.hostPort
-    );
+    const send = () => {
+      if (this.isNativeWindow && hasTauri()) {
+        const paramsWithCredentials = {
+          ...resolvedParams,
+          publicKey: this._extensionInfo?.publicKey,
+          name: this._extensionInfo?.name
+        };
+        return sendInvoke(method, paramsWithCredentials, this.config, this.log.bind(this));
+      }
+      const requestId = generateRequestId(++this.requestCounter);
+      return sendPostMessage(
+        method,
+        resolvedParams,
+        requestId,
+        this.config,
+        this._extensionInfo,
+        this.pendingRequests,
+        this.hostPort
+      );
+    };
+    return withPermissionRetry(send, this.permissionWaiters, this.log.bind(this));
   }
   // ==========================================================================
   // Private: Initialization
@@ -3850,6 +3812,6 @@ function createHaexVaultSdk(config = {}) {
   return new HaexVaultSdk(config);
 }
 
-export { COSE_ALGORITHM, DEFAULT_TIMEOUT, DatabaseAPI, EXTERNAL_EVENTS, ErrorCode, ExternalConnectionErrorCode, ExternalConnectionState, FilesystemAPI, HAEXSPACE_MESSAGE_TYPES, HAEXTENSION_EVENTS, HaexVaultSdk, HaexVaultSdkError, KEY_AGREEMENT_ALGO, KnownPath, LOCALSEND_EVENTS, LocalSendAPI, MAIL_COMMANDS, MailAPI, PASSWORD_COMMANDS, PasswordsAPI, PermissionErrorCode, PermissionStatus, PermissionsAPI, RemoteStorageAPI, SHELL_EVENTS, SIGNING_ALGO, SPACE_COMMANDS, ShellAPI, SpacesAPI, TABLE_SEPARATOR, TAURI_COMMANDS, WebAPI, arrayBufferToBase64, base58btcDecode, base58btcEncode, base64ToArrayBuffer, canExternalClientSendRequests, createHaexVaultSdk, decryptCrdtData, decryptPrivateKeyAsync, decryptSpaceNameAsync, decryptString, decryptVaultKey, decryptVaultName, decryptWithPrivateKeyAsync, deriveKeyFromPassword, didKeyToPublicKeyAsync, encryptCrdtData, encryptPrivateKeyAsync, encryptSpaceNameAsync, encryptString, encryptVaultKey, encryptWithPublicKeyAsync, exportKeyPairAsync, exportPrivateKeyAsync, exportPublicKeyAsync, exportPublicKeyCoseAsync, exportUserKeypairAsync, generateCredentialId, generateIdentityAsync, generatePasskeyPairAsync, generateSpaceKey, generateUserKeypairAsync, generateVaultKey, getTableName, hexToBytes, importPrivateKeyAsync, importPrivateKeyForKeyAgreementAsync, importPublicKeyAsync, importPublicKeyForKeyAgreementAsync, importUserPrivateKeyAsync, importUserPublicKeyAsync, installBaseTag, installCookiePolyfill, installHistoryPolyfill, installLocalStoragePolyfill, installPolyfills, installSessionStoragePolyfill, isExternalClientConnected, isPermissionDeniedError, isPermissionError, isPermissionPromptError, publicKeyToDidKeyAsync, signClaimPresentationAsync, signRecordAsync, signSpaceChallengeAsync, signWithPasskeyAsync, sortObjectKeysRecursively, unwrapKey, verifyClaimPresentationAsync, verifyExtensionSignature, verifyRecordSignatureAsync, verifySpaceChallengeAsync, verifyWithPasskeyAsync, wrapKey };
+export { COSE_ALGORITHM, DEFAULT_TIMEOUT, DatabaseAPI, EXTERNAL_EVENTS, ErrorCode, ExternalConnectionErrorCode, ExternalConnectionState, FilesystemAPI, HAEXSPACE_MESSAGE_TYPES, HAEXTENSION_EVENTS, HaexVaultSdk, HaexVaultSdkError, KEY_AGREEMENT_ALGO, KnownPath, LOCALSEND_EVENTS, LocalSendAPI, MAIL_COMMANDS, MailAPI, NOTIFICATION_COMMANDS, NOTIFICATION_EVENTS, NotificationsAPI, PASSWORD_COMMANDS, PasswordsAPI, PermissionErrorCode, PermissionStatus, PermissionsAPI, RemoteStorageAPI, SHELL_EVENTS, SIGNING_ALGO, SPACE_COMMANDS, ShellAPI, SpacesAPI, TABLE_SEPARATOR, TAURI_COMMANDS, WebAPI, arrayBufferToBase64, base58btcDecode, base58btcEncode, base64ToArrayBuffer, canExternalClientSendRequests, createHaexVaultSdk, decryptCrdtData, decryptPrivateKeyAsync, decryptSpaceNameAsync, decryptString, decryptVaultKey, decryptVaultName, decryptWithPrivateKeyAsync, deriveKeyFromPassword, didKeyToPublicKeyAsync, encryptCrdtData, encryptPrivateKeyAsync, encryptSpaceNameAsync, encryptString, encryptVaultKey, encryptWithPublicKeyAsync, exportKeyPairAsync, exportPrivateKeyAsync, exportPublicKeyAsync, exportPublicKeyCoseAsync, exportUserKeypairAsync, generateCredentialId, generateIdentityAsync, generatePasskeyPairAsync, generateSpaceKey, generateUserKeypairAsync, generateVaultKey, getTableName, hexToBytes, importPrivateKeyAsync, importPrivateKeyForKeyAgreementAsync, importPublicKeyAsync, importPublicKeyForKeyAgreementAsync, importUserPrivateKeyAsync, importUserPublicKeyAsync, installBaseTag, installCookiePolyfill, installHistoryPolyfill, installLocalStoragePolyfill, installPolyfills, installSessionStoragePolyfill, isExternalClientConnected, isPermissionDeniedError, isPermissionError, isPermissionPromptError, publicKeyToDidKeyAsync, signClaimPresentationAsync, signRecordAsync, signSpaceChallengeAsync, signWithPasskeyAsync, sortObjectKeysRecursively, unwrapKey, verifyClaimPresentationAsync, verifyExtensionSignature, verifyRecordSignatureAsync, verifySpaceChallengeAsync, verifyWithPasskeyAsync, wrapKey };
 //# sourceMappingURL=index.mjs.map
 //# sourceMappingURL=index.mjs.map