@hipnation-truth/sdk 0.26.9 → 0.26.11

package/dist/react.d.ts

@@ -2853,6 +2853,17 @@ interface TruthProviderProps {
      * a ref on every call.
      */
     getAuthToken?: AuthTokenFetcher;
+    /**
+     * Whether the caller's identity provider reports a signed-in user.
+     * Optional but RECOMMENDED when `getAuthToken` is wired — pass
+     * `useAuth().isSignedIn` (Clerk). It lets the provider settle to a
+     * signed-out state instantly (no token to fetch) and, crucially,
+     * re-resolve the token the moment the user signs in. When omitted, the
+     * provider falls back to probing `getAuthToken` with a bounded retry to
+     * decide signed-in vs. signed-out, which is robust at load but not
+     * reactive to a later sign-in without a remount.
+     */
+    isSignedIn?: boolean;
     /**
      * Synchronous encrypted KV mirror for durable offline reads, injected
      * by the consuming app (e.g. MMKV on `ch/`). Omit on web — the SDK
@@ -2870,7 +2881,7 @@ interface TruthProviderProps {
     offlineEnabled?: boolean;
     children: ReactNode;
 }
-declare function TruthProvider({ environment, convexUrl, apiBaseUrl, apiKey, source, sourceVersion, tenantId, getAuthToken, offlineStore, offlineEnabled, children, }: TruthProviderProps): react.FunctionComponentElement<react.ProviderProps<TruthSdkContextValue | null>>;
+declare function TruthProvider({ environment, convexUrl, apiBaseUrl, apiKey, source, sourceVersion, tenantId, getAuthToken, isSignedIn, offlineStore, offlineEnabled, children, }: TruthProviderProps): react.FunctionComponentElement<react.ProviderProps<TruthSdkContextValue | null>>;
 
 /**
  * React hooks for conversation reminders — bulk lookup keyed by

package/dist/react.js

@@ -2285,6 +2285,7 @@ function TruthProvider({
   sourceVersion,
   tenantId,
   getAuthToken,
+  isSignedIn,
   offlineStore = NOOP_STORE,
   offlineEnabled = false,
   children
@@ -2293,10 +2294,16 @@ function TruthProvider({
   const url = resolveConvexUrl(environment, convexUrl);
   const resolvedApiBaseUrl = (_a = apiBaseUrl != null ? apiBaseUrl : readEnv("EXPO_PUBLIC_TRUTH_API_BASE_URL")) != null ? _a : resolveApiBaseUrl(environment);
   const resolvedApiKey = (_b = apiKey != null ? apiKey : readEnv("EXPO_PUBLIC_TRUTH_API_KEY")) != null ? _b : "";
-  const convexClient = (0, import_react2.useMemo)(() => new import_react.ConvexReactClient(url), [url]);
+  const hasAuthFetcher = Boolean(getAuthToken);
+  const convexClient = (0, import_react2.useMemo)(
+    () => new import_react.ConvexReactClient(
+      url,
+      hasAuthFetcher ? { expectAuth: true } : void 0
+    ),
+    [url, hasAuthFetcher]
+  );
   const getAuthTokenRef = (0, import_react2.useRef)(getAuthToken);
   getAuthTokenRef.current = getAuthToken;
-  const hasAuthFetcher = Boolean(getAuthToken);
   const stableGetAuthToken = (0, import_react2.useMemo)(
     () => hasAuthFetcher ? (opts) => __async(null, null, function* () {
       var _a2, _b2;
@@ -2304,10 +2311,47 @@ function TruthProvider({
     }) : void 0,
     [hasAuthFetcher]
   );
-  const [tokenAttempted, setTokenAttempted] = (0, import_react2.useState)(false);
+  const [tokenPhase, setTokenPhase] = (0, import_react2.useState)(
+    hasAuthFetcher ? "pending" : "anon"
+  );
   (0, import_react2.useEffect)(() => {
-    setTokenAttempted(false);
-  }, [stableGetAuthToken]);
+    if (!hasAuthFetcher) {
+      setTokenPhase("anon");
+      return;
+    }
+    if (isSignedIn === false) {
+      setTokenPhase("anon");
+      return;
+    }
+    let cancelled = false;
+    setTokenPhase("pending");
+    void (() => __async(null, null, function* () {
+      var _a2, _b2;
+      for (let attempt = 0; attempt < 8 && !cancelled; attempt++) {
+        let token = null;
+        try {
+          token = (_b2 = yield (_a2 = getAuthTokenRef.current) == null ? void 0 : _a2.call(getAuthTokenRef, { forceRefreshToken: false })) != null ? _b2 : null;
+        } catch (e) {
+        }
+        if (cancelled) {
+          return;
+        }
+        if (token) {
+          setTokenPhase("authed");
+          return;
+        }
+        yield new Promise(
+          (resolve) => setTimeout(resolve, 300 + attempt * 300)
+        );
+      }
+      if (!cancelled) {
+        setTokenPhase("anon");
+      }
+    }))();
+    return () => {
+      cancelled = true;
+    };
+  }, [hasAuthFetcher, isSignedIn, stableGetAuthToken]);
   const fetchAccessToken = (0, import_react2.useCallback)(
     (_0) => __async(null, [_0], function* ({
       forceRefreshToken
@@ -2315,7 +2359,6 @@ function TruthProvider({
       var _a2;
       const fetcher = stableGetAuthToken;
       if (!fetcher) {
-        setTokenAttempted(true);
         return null;
       }
       let token = null;
@@ -2325,20 +2368,24 @@ function TruthProvider({
           if (token) break;
         } catch (e) {
         }
-        yield new Promise((resolve) => setTimeout(resolve, 200 + attempt * 150));
+        yield new Promise(
+          (resolve) => setTimeout(resolve, 200 + attempt * 150)
+        );
       }
-      setTokenAttempted(true);
       return token;
     }),
     [stableGetAuthToken]
   );
   const useConvexAuthAdapter = (0, import_react2.useCallback)(
     () => ({
-      isLoading: hasAuthFetcher && !tokenAttempted,
-      isAuthenticated: hasAuthFetcher,
+      isLoading: hasAuthFetcher && tokenPhase === "pending",
+      // REAL token presence — see `tokenPhase` above. Flipping this true
+      // only once a token exists is what stops `setAuth` from resuming the
+      // socket unauthenticated on web.
+      isAuthenticated: hasAuthFetcher && tokenPhase === "authed",
       fetchAccessToken
     }),
-    [hasAuthFetcher, tokenAttempted, fetchAccessToken]
+    [hasAuthFetcher, tokenPhase, fetchAccessToken]
   );
   const convexQueryClient = (0, import_react2.useMemo)(
     () => new import_react_query.ConvexQueryClient(convexClient),