@hipnation-truth/sdk 0.24.0 → 0.25.1

package/dist/react.d.ts

@@ -1257,12 +1257,26 @@ declare const ENVIRONMENTS: {
     readonly production: "production";
 };
 type Environment = (typeof ENVIRONMENTS)[keyof typeof ENVIRONMENTS];
+/**
+ * Fetches a user-identity JWT for Convex calls. Return the token from
+ * your identity provider's Clerk JWT template named "convex"
+ * (e.g. `getToken({ template: "convex" })` from `@clerk/expo`), or
+ * `null` when no user is signed in.
+ */
+type AuthTokenFetcher = () => Promise<string | null | undefined>;
 /**
  * Configuration for initializing a TruthClient.
  */
 interface TruthClientConfig {
     /** API key for authenticating with the Truth platform (e.g. "hn_live_...") */
     apiKey: string;
+    /**
+     * Per-call Clerk JWT fetcher for Convex data access. When provided,
+     * every Convex query/mutation/action carries the caller's identity;
+     * Convex deployments with `CLERK_AUTH_REQUIRED` enabled reject calls
+     * without it. Omit for service contexts that don't act as a user.
+     */
+    getAuthToken?: AuthTokenFetcher;
     /** Target environment */
     environment: Environment;
     /** Override the default Convex URL for data access */
@@ -1448,12 +1462,6 @@ interface SetConversationTaskStatusInput {
     taskId: string;
     status: ConversationTaskStatus;
     resolvedBy?: string;
-    /**
-     * Email of the user performing the action. Truth excludes the actor
-     * from the task-action push fan-out (legacy parity) — omit it and the
-     * actor notifies themselves.
-     */
-    actor?: string;
 }
 interface UpdateConversationTaskInput {
     taskId: string;
@@ -1468,18 +1476,6 @@ interface UpdateConversationTaskInput {
     status?: ConversationTaskStatus;
     assignee?: string;
     type?: string;
-    /**
-     * Email of the user performing the action. Truth excludes the actor
-     * from the task-action push fan-out (legacy parity) — omit it and the
-     * actor notifies themselves.
-     */
-    actor?: string;
-}
-interface SetConversationTaskArchivedInput {
-    taskId: string;
-    archived: boolean;
-    /** Email of the acting user — excluded from the archive push fan-out. */
-    actor?: string;
 }
 interface SendConversationMessageInput {
     fromNumber: string;
@@ -1512,11 +1508,6 @@ declare class ConversationTasksSubresource {
     setStatus(input: SetConversationTaskStatusInput): Promise<{
         ok: true;
     }>;
-    /** Archive or un-archive a task (hides it from My Tasks without deleting). */
-    setArchived(input: SetConversationTaskArchivedInput): Promise<{
-        ok: true;
-        changed: boolean;
-    }>;
     /**
      * Update task fields (priority, assignee, description, type). Wraps
      * `PATCH /api/conversations/tasks/{id}` so CommHub doesn't have to
@@ -2813,6 +2804,16 @@ interface TruthProviderProps {
     source?: string;
     sourceVersion?: string;
     tenantId?: string;
+    /**
+     * Per-call Clerk JWT fetcher (template "convex") identifying the
+     * signed-in user to Convex. Wire it to your identity provider, e.g.
+     * `useAuth().getToken({ template: "convex" })` from `@clerk/expo`.
+     * Applied to both the live websocket client (React hooks) and the
+     * shared `TruthClient` (resource methods). Identity changes are
+     * picked up without remounting — the latest fetcher is read through
+     * a ref on every call.
+     */
+    getAuthToken?: AuthTokenFetcher;
     /**
      * Synchronous encrypted KV mirror for durable offline reads, injected
      * by the consuming app (e.g. MMKV on `ch/`). Omit on web — the SDK
@@ -2830,7 +2831,7 @@ interface TruthProviderProps {
     offlineEnabled?: boolean;
     children: ReactNode;
 }
-declare function TruthProvider({ environment, convexUrl, apiBaseUrl, apiKey, source, sourceVersion, tenantId, offlineStore, offlineEnabled, children, }: TruthProviderProps): react.FunctionComponentElement<react.ProviderProps<TruthSdkContextValue | null>>;
+declare function TruthProvider({ environment, convexUrl, apiBaseUrl, apiKey, source, sourceVersion, tenantId, getAuthToken, offlineStore, offlineEnabled, children, }: TruthProviderProps): react.FunctionComponentElement<react.ProviderProps<TruthSdkContextValue | null>>;
 
 /**
  * React hooks for conversation reminders — bulk lookup keyed by

package/dist/react.js

@@ -4,8 +4,10 @@ var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
 var __getOwnPropSymbols = Object.getOwnPropertySymbols;
+var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __propIsEnum = Object.prototype.propertyIsEnumerable;
+var __reflectGet = Reflect.get;
 var __pow = Math.pow;
 var __defNormalProp = (obj, key, value) => key in obj ? __defProp(obj, key, { enumerable: true, configurable: true, writable: true, value }) : obj[key] = value;
 var __spreadValues = (a, b) => {
@@ -32,6 +34,7 @@ var __copyProps = (to, from, except, desc) => {
   return to;
 };
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var __superGet = (cls, obj, key) => __reflectGet(__getProtoOf(cls), key, obj);
 var __async = (__this, __arguments, generator) => {
   return new Promise((resolve, reject) => {
     var fulfilled = (value) => {
@@ -373,8 +376,53 @@ var import_react_query_persist_client = require("@tanstack/react-query-persist-c
 var import_react3 = require("convex/react");
 var import_react4 = require("react");
 
-// src/client.ts
+// src/auth-convex-client.ts
 var import_browser = require("convex/browser");
+var AuthAwareConvexHttpClient = class _AuthAwareConvexHttpClient extends import_browser.ConvexHttpClient {
+  constructor(address, getAuthToken) {
+    super(address);
+    this.getAuthToken = getAuthToken;
+  }
+  /**
+   * Pull a fresh token from the fetcher and apply it. A fetcher error
+   * keeps the previously-applied token rather than dropping auth
+   * mid-session.
+   */
+  syncAuth() {
+    return __async(this, null, function* () {
+      if (!this.getAuthToken) {
+        return;
+      }
+      try {
+        const token = yield this.getAuthToken();
+        if (token) {
+          this.setAuth(token);
+        } else {
+          this.clearAuth();
+        }
+      } catch (e) {
+      }
+    });
+  }
+  query(query, ...args) {
+    return __async(this, null, function* () {
+      yield this.syncAuth();
+      return __superGet(_AuthAwareConvexHttpClient.prototype, this, "query").call(this, query, ...args);
+    });
+  }
+  mutation(mutation, ...args) {
+    return __async(this, null, function* () {
+      yield this.syncAuth();
+      return __superGet(_AuthAwareConvexHttpClient.prototype, this, "mutation").call(this, mutation, ...args);
+    });
+  }
+  action(action, ...args) {
+    return __async(this, null, function* () {
+      yield this.syncAuth();
+      return __superGet(_AuthAwareConvexHttpClient.prototype, this, "action").call(this, action, ...args);
+    });
+  }
+};
 
 // src/resources/appointments.ts
 var AppointmentResource = class {
@@ -622,22 +670,10 @@ var ConversationTasksSubresource = class {
     return __async(this, null, function* () {
       return this.post(
         `/conversations/tasks/${encodeURIComponent(input.taskId)}/status`,
-        __spreadValues(__spreadValues({
-          id: input.taskId,
-          status: input.status
-        }, input.resolvedBy ? { resolvedBy: input.resolvedBy } : {}), input.actor ? { actor: input.actor } : {})
-      );
-    });
-  }
-  /** Archive or un-archive a task (hides it from My Tasks without deleting). */
-  setArchived(input) {
-    return __async(this, null, function* () {
-      return this.post(
-        `/conversations/tasks/${encodeURIComponent(input.taskId)}/archive`,
         __spreadValues({
           id: input.taskId,
-          archived: input.archived
-        }, input.actor ? { actor: input.actor } : {})
+          status: input.status
+        }, input.resolvedBy ? { resolvedBy: input.resolvedBy } : {})
       );
     });
   }
@@ -650,12 +686,12 @@ var ConversationTasksSubresource = class {
     return __async(this, null, function* () {
       return this.patch(
         `/conversations/tasks/${encodeURIComponent(input.taskId)}`,
-        __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({
+        __spreadValues(__spreadValues(__spreadValues(__spreadValues(__spreadValues({
           id: input.taskId,
           conversationId: input.conversationId,
           author: input.author,
           description: input.description
-        }, input.title !== void 0 ? { title: input.title } : {}), input.priority ? { priority: input.priority } : {}), input.status ? { status: input.status } : {}), input.assignee !== void 0 ? { assignee: input.assignee } : {}), input.type !== void 0 ? { type: input.type } : {}), input.actor ? { actor: input.actor } : {})
+        }, input.title !== void 0 ? { title: input.title } : {}), input.priority ? { priority: input.priority } : {}), input.status ? { status: input.status } : {}), input.assignee !== void 0 ? { assignee: input.assignee } : {}), input.type !== void 0 ? { type: input.type } : {})
       );
     });
   }
@@ -2203,7 +2239,7 @@ var TruthClient = class {
     this._webPushReady = null;
     var _a, _b, _c, _d, _e, _f, _g, _h;
     const convexUrl = (_b = (_a = config.convexUrl) != null ? _a : CONVEX_URLS[config.environment]) != null ? _b : CONVEX_URLS.local;
-    this.convex = new import_browser.ConvexHttpClient(convexUrl);
+    this.convex = new AuthAwareConvexHttpClient(convexUrl, config.getAuthToken);
     this.tracker = new Tracker({
       apiKey: config.apiKey,
       environment: config.environment,
@@ -2494,6 +2530,7 @@ function TruthProvider({
   source,
   sourceVersion,
   tenantId,
+  getAuthToken,
   offlineStore = NOOP_STORE,
   offlineEnabled = false,
   children
@@ -2503,6 +2540,26 @@ function TruthProvider({
   const resolvedApiBaseUrl = (_a = apiBaseUrl != null ? apiBaseUrl : readEnv("EXPO_PUBLIC_TRUTH_API_BASE_URL")) != null ? _a : resolveApiBaseUrl(environment);
   const resolvedApiKey = (_b = apiKey != null ? apiKey : readEnv("EXPO_PUBLIC_TRUTH_API_KEY")) != null ? _b : "";
   const convexClient = (0, import_react4.useMemo)(() => new import_react3.ConvexReactClient(url), [url]);
+  const getAuthTokenRef = (0, import_react4.useRef)(getAuthToken);
+  getAuthTokenRef.current = getAuthToken;
+  const hasAuthFetcher = Boolean(getAuthToken);
+  const stableGetAuthToken = (0, import_react4.useMemo)(
+    () => hasAuthFetcher ? () => __async(null, null, function* () {
+      var _a2, _b2;
+      return (_b2 = yield (_a2 = getAuthTokenRef.current) == null ? void 0 : _a2.call(getAuthTokenRef)) != null ? _b2 : null;
+    }) : void 0,
+    [hasAuthFetcher]
+  );
+  (0, import_react4.useEffect)(() => {
+    if (stableGetAuthToken) {
+      convexClient.setAuth(() => __async(null, null, function* () {
+        var _a2;
+        return (_a2 = yield stableGetAuthToken()) != null ? _a2 : null;
+      }));
+    } else {
+      convexClient.clearAuth();
+    }
+  }, [convexClient, stableGetAuthToken]);
   const convexQueryClient = (0, import_react4.useMemo)(
     () => new import_react_query3.ConvexQueryClient(convexClient),
     [convexClient]
@@ -2544,7 +2601,8 @@ function TruthProvider({
       source: source != null ? source : "unknown",
       sourceVersion: sourceVersion != null ? sourceVersion : "unknown",
       tenantId: tenantId != null ? tenantId : "",
-      autoInitServiceWorker: false
+      autoInitServiceWorker: false,
+      getAuthToken: stableGetAuthToken
     }),
     [
       url,
@@ -2553,7 +2611,8 @@ function TruthProvider({
       environment,
       source,
       sourceVersion,
-      tenantId
+      tenantId,
+      stableGetAuthToken
     ]
   );
   (0, import_react4.useEffect)(() => {