@inkindcards/semantic-layer 0.2.2 → 2.0.0

package/dist/chunk-WR4D3UI6.js

@@ -0,0 +1,222 @@
+// src/client.ts
+var TOKEN_STORAGE_KEY = "semantic-layer-token";
+var SemanticLayerClient = class {
+  constructor(config) {
+    this.accessToken = null;
+    this.tokenExpiry = 0;
+    this.userEmail = null;
+    this.metadataCache = null;
+    this.metadataCacheTime = 0;
+    this.CACHE_TTL_MS = 5 * 60 * 1e3;
+    this.authListeners = /* @__PURE__ */ new Set();
+    this.admin = {
+      listFields: () => this.adminCall("fields.list"),
+      createField: (input) => this.adminCall("fields.create", input),
+      updateField: (input) => this.adminCall("fields.update", input),
+      deleteField: (id) => this.adminCall("fields.delete", { id }),
+      listRoles: () => this.adminCall("roles.list"),
+      createRole: (input) => this.adminCall("roles.create", input),
+      updateRole: (input) => this.adminCall("roles.update", input),
+      deleteRole: (id) => this.adminCall("roles.delete", { id }),
+      setRoleFields: (role_id, curated_field_ids) => this.adminCall("roles.setFields", { role_id, curated_field_ids }),
+      listUsers: () => this.adminCall("users.list"),
+      assignUserRole: (input) => this.adminCall("users.assignRole", input),
+      removeUserRole: (input) => this.adminCall("users.removeRole", input),
+      listUserOverrides: (user_id) => this.adminCall("users.listOverrides", { user_id }),
+      setUserOverride: (input) => this.adminCall("users.setOverride", input),
+      removeUserOverride: (input) => this.adminCall("users.removeOverride", input)
+    };
+    this.gatewayUrl = config.gatewayUrl;
+    if (typeof window !== "undefined") {
+      try {
+        const stored = sessionStorage.getItem(TOKEN_STORAGE_KEY);
+        if (stored) {
+          const parsed = JSON.parse(stored);
+          if (parsed.expiresAt > Date.now()) {
+            this.accessToken = parsed.token;
+            this.tokenExpiry = parsed.expiresAt;
+            this.userEmail = parsed.email || null;
+          } else {
+            sessionStorage.removeItem(TOKEN_STORAGE_KEY);
+          }
+        }
+      } catch {
+      }
+    }
+  }
+  // -- Auth ------------------------------------------------------------------
+  /**
+   * Returns the URL to redirect the browser to for Google sign-in.
+   * After the user authenticates, the gateway redirects back to returnUrl
+   * with the access token in the URL hash fragment.
+   */
+  getSignInUrl(returnUrl) {
+    const target = returnUrl || (typeof window !== "undefined" ? window.location.href.split("#")[0] : "");
+    return `${this.gatewayUrl}/auth/google?returnUrl=${encodeURIComponent(target)}`;
+  }
+  /**
+   * Check the current URL hash for auth tokens (set by the gateway callback redirect).
+   * If found, extracts them, stores the session, clears the hash, and returns true.
+   */
+  handleAuthCallback() {
+    if (typeof window === "undefined") return false;
+    const hash = window.location.hash.slice(1);
+    if (!hash) return false;
+    const params = new URLSearchParams(hash);
+    const authError = params.get("auth_error");
+    if (authError) {
+      window.history.replaceState(null, "", window.location.pathname + window.location.search);
+      throw new SemanticLayerError(authError, "AUTH_ERROR");
+    }
+    const accessToken = params.get("access_token");
+    const email = params.get("email");
+    const expiresIn = parseInt(params.get("expires_in") || "0", 10);
+    if (!accessToken || !email) return false;
+    window.history.replaceState(null, "", window.location.pathname + window.location.search);
+    this.setAccessToken(accessToken, email, expiresIn);
+    return true;
+  }
+  /**
+   * Set the Google access token (called after OAuth redirect callback).
+   */
+  setAccessToken(token, email, expiresIn) {
+    this.accessToken = token;
+    this.userEmail = email;
+    this.tokenExpiry = Date.now() + expiresIn * 1e3;
+    if (typeof window !== "undefined") {
+      try {
+        sessionStorage.setItem(
+          TOKEN_STORAGE_KEY,
+          JSON.stringify({ token, email, expiresAt: this.tokenExpiry })
+        );
+      } catch {
+      }
+    }
+    const session = { user: { id: email, email } };
+    for (const listener of this.authListeners) {
+      listener("SIGNED_IN", session);
+    }
+  }
+  async getSession() {
+    if (this.accessToken && Date.now() < this.tokenExpiry) {
+      return { user: { id: this.userEmail || "", email: this.userEmail || "" } };
+    }
+    return null;
+  }
+  async signOut() {
+    this.accessToken = null;
+    this.tokenExpiry = 0;
+    this.userEmail = null;
+    this.metadataCache = null;
+    if (typeof window !== "undefined") {
+      try {
+        sessionStorage.removeItem(TOKEN_STORAGE_KEY);
+      } catch {
+      }
+    }
+    for (const listener of this.authListeners) {
+      listener("SIGNED_OUT", null);
+    }
+    return { error: null };
+  }
+  onAuthStateChange(callback) {
+    this.authListeners.add(callback);
+    return {
+      data: {
+        subscription: {
+          unsubscribe: () => {
+            this.authListeners.delete(callback);
+          }
+        }
+      }
+    };
+  }
+  // -- API calls -------------------------------------------------------------
+  async apiCall(path, body) {
+    if (!this.accessToken) {
+      throw new SemanticLayerError("Not authenticated", "AUTH_ERROR");
+    }
+    const resp = await fetch(`${this.gatewayUrl}${path}`, {
+      method: "POST",
+      headers: {
+        Authorization: `Bearer ${this.accessToken}`,
+        "Content-Type": "application/json"
+      },
+      body: body !== void 0 ? JSON.stringify(body) : void 0
+    });
+    const data = await resp.json();
+    if (!resp.ok || data?.error) {
+      throw new SemanticLayerError(
+        data?.error || `Request failed: ${resp.status}`,
+        resp.status === 401 ? "AUTH_ERROR" : "API_ERROR"
+      );
+    }
+    return data;
+  }
+  // -- Metadata --------------------------------------------------------------
+  async getMetadata(forceRefresh = false) {
+    const now = Date.now();
+    if (!forceRefresh && this.metadataCache && now - this.metadataCacheTime < this.CACHE_TTL_MS) {
+      return this.metadataCache;
+    }
+    const data = await this.apiCall("/v1/metadata");
+    this.metadataCache = data;
+    this.metadataCacheTime = now;
+    return data;
+  }
+  async getMetrics() {
+    const { fields } = await this.getMetadata();
+    return fields.filter((f) => f.type === "metric");
+  }
+  async getDimensions() {
+    const { fields } = await this.getMetadata();
+    return fields.filter((f) => f.type === "dimension" || f.type === "time_dimension");
+  }
+  async getField(nameOrId) {
+    const { fields } = await this.getMetadata();
+    return fields.find((f) => f.name === nameOrId || f.id === nameOrId);
+  }
+  // -- Query -----------------------------------------------------------------
+  async query(config) {
+    if (config.values.length === 0) {
+      return { columns: [], rows: [], totalRows: 0, executionTimeMs: 0 };
+    }
+    return this.apiCall("/v1/query", { config });
+  }
+  async simpleQuery(input) {
+    const { fields } = await this.getMetadata();
+    const fieldMap = new Map(fields.map((f) => [f.name, f]));
+    const values = input.metrics.map((name) => {
+      const field = fieldMap.get(name);
+      if (!field) throw new SemanticLayerError(`Unknown metric: "${name}"`, "UNKNOWN_FIELD");
+      return { fieldId: field.id, field };
+    });
+    const rows = (input.groupBy || []).map((name) => {
+      const field = fieldMap.get(name);
+      if (!field) throw new SemanticLayerError(`Unknown dimension: "${name}"`, "UNKNOWN_FIELD");
+      const grain = field.type === "time_dimension" ? input.grain : void 0;
+      return { fieldId: field.id, field, grain };
+    });
+    const filters = Object.entries(input.filters || {}).map(([name, filterValues]) => {
+      const field = fieldMap.get(name);
+      if (!field) throw new SemanticLayerError(`Unknown filter field: "${name}"`, "UNKNOWN_FIELD");
+      return { fieldId: field.id, field, filterValues };
+    });
+    return this.query({ values, rows, columns: [], filters });
+  }
+  // -- Admin -----------------------------------------------------------------
+  async adminCall(action, body = {}) {
+    return this.apiCall("/v1/admin", { action, ...body });
+  }
+};
+var SemanticLayerError = class extends Error {
+  constructor(message, code) {
+    super(message);
+    this.name = "SemanticLayerError";
+    this.code = code;
+  }
+};
+
+export { SemanticLayerClient, SemanticLayerError };
+//# sourceMappingURL=chunk-WR4D3UI6.js.map
+//# sourceMappingURL=chunk-WR4D3UI6.js.map

package/dist/chunk-WR4D3UI6.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/client.ts"],"names":[],"mappings":";AAaA,IAAM,iBAAA,GAAoB,sBAAA;AAEnB,IAAM,sBAAN,MAA0B;AAAA,EAU/B,YAAY,MAAA,EAA6B;AARzC,IAAA,IAAA,CAAQ,WAAA,GAA6B,IAAA;AACrC,IAAA,IAAA,CAAQ,WAAA,GAAc,CAAA;AACtB,IAAA,IAAA,CAAQ,SAAA,GAA2B,IAAA;AACnC,IAAA,IAAA,CAAQ,aAAA,GAAyC,IAAA;AACjD,IAAA,IAAA,CAAQ,iBAAA,GAAoB,CAAA;AAC5B,IAAA,IAAA,CAAiB,YAAA,GAAe,IAAI,EAAA,GAAK,GAAA;AACzC,IAAA,IAAA,CAAQ,aAAA,uBAAoB,GAAA,EAA0D;AAqOtF,IAAA,IAAA,CAAS,KAAA,GAAQ;AAAA,MACf,UAAA,EAAY,MAAM,IAAA,CAAK,SAAA,CAAsC,aAAa,CAAA;AAAA,MAC1E,aAAa,CAAC,KAAA,KACZ,IAAA,CAAK,SAAA,CAAmC,iBAAiB,KAAK,CAAA;AAAA,MAChE,aAAa,CAAC,KAAA,KACZ,IAAA,CAAK,SAAA,CAAmC,iBAAiB,KAAK,CAAA;AAAA,MAChE,WAAA,EAAa,CAAC,EAAA,KACZ,IAAA,CAAK,UAAgC,eAAA,EAAiB,EAAE,IAAI,CAAA;AAAA,MAE9D,SAAA,EAAW,MAAM,IAAA,CAAK,SAAA,CAAmC,YAAY,CAAA;AAAA,MACrE,YAAY,CAAC,KAAA,KACX,IAAA,CAAK,SAAA,CAAgC,gBAAgB,KAAK,CAAA;AAAA,MAC5D,YAAY,CAAC,KAAA,KACX,IAAA,CAAK,SAAA,CAAgC,gBAAgB,KAAK,CAAA;AAAA,MAC5D,UAAA,EAAY,CAAC,EAAA,KACX,IAAA,CAAK,UAAgC,cAAA,EAAgB,EAAE,IAAI,CAAA;AAAA,MAC7D,aAAA,EAAe,CAAC,OAAA,EAAiB,iBAAA,KAC/B,IAAA,CAAK,UAAoD,iBAAA,EAAmB,EAAE,OAAA,EAAS,iBAAA,EAAmB,CAAA;AAAA,MAE5G,SAAA,EAAW,MAAM,IAAA,CAAK,SAAA,CAA2C,YAAY,CAAA;AAAA,MAC7E,gBAAgB,CAAC,KAAA,KACf,IAAA,CAAK,SAAA,CAA8C,oBAAoB,KAAK,CAAA;AAAA,MAC9E,gBAAgB,CAAC,KAAA,KACf,IAAA,CAAK,SAAA,CAAgC,oBAAoB,KAAK,CAAA;AAAA,MAEhE,iBAAA,EAAmB,CAAC,OAAA,KAClB,IAAA,CAAK,UAA8C,qBAAA,EAAuB,EAAE,SAAS,CAAA;AAAA,MACvF,iBAAiB,CAAC,KAAA,KAChB,IAAA,CAAK,SAAA,CAA2C,qBAAqB,KAAK,CAAA;AAAA,MAC5E,oBAAoB,CAAC,KAAA,KACnB,IAAA,CAAK,SAAA,CAAgC,wBAAwB,KAAK;AAAA,KACtE;AAjQE,IAAA,IAAA,CAAK,aAAa,MAAA,CAAO,UAAA;AAEzB,IAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,MAAA,IAAI;AACF,QAAA,MAAM,MAAA,GAAS,cAAA,CAAe,OAAA,CAAQ,iBAAiB,CAAA;AACvD,QAAA,IAAI,MAAA,EAAQ;AACV,UAAA,MAAM,MAAA,GAAS,IAAA,CAAK,KAAA,CAAM,MAAM,CAAA;AAChC,UAAA,IAAI,MAAA,CAAO,SAAA,GAAY,IAAA,CAAK,GAAA,EAAI,EAAG;AACjC,YAAA,IAAA,CAAK,cAAc,MAAA,CAAO,KAAA;AAC1B,YAAA,IAAA,CAAK,cAAc,MAAA,CAAO,SAAA;AAC1B,YAAA,IAAA,CAAK,SAAA,GAAY,OAAO,KAAA,IAAS,IAAA;AAAA,UACnC,CAAA,MAAO;AACL,YAAA,cAAA,CAAe,WAAW,iBAAiB,CAAA;AAAA,UAC7C;AAAA,QACF;AAAA,MACF,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,aAAa,SAAA,EAA4B;AACvC,IAAA,MAAM,MAAA,GAAS,SAAA,KAAc,OAAO,MAAA,KAAW,WAAA,GAAc,MAAA,CAAO,QAAA,CAAS,IAAA,CAAK,KAAA,CAAM,GAAG,CAAA,CAAE,CAAC,CAAA,GAAI,EAAA,CAAA;AAClG,IAAA,OAAO,GAAG,IAAA,CAAK,UAAU,CAAA,uBAAA,EAA0B,kBAAA,CAAmB,MAAM,CAAC,CAAA,CAAA;AAAA,EAC/E;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,kBAAA,GAA8B;AAC5B,IAAA,IAAI,OAAO,MAAA,KAAW,WAAA,EAAa,OAAO,KAAA;AAE1C,IAAA,MAAM,IAAA,GAAO,MAAA,CAAO,QAAA,CAAS,IAAA,CAAK,MAAM,CAAC,CAAA;AACzC,IAAA,IAAI,CAAC,MAAM,OAAO,KAAA;AAElB,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,CAAgB,IAAI,CAAA;AAEvC,IAAA,MAAM,SAAA,GAAY,MAAA,CAAO,GAAA,CAAI,YAAY,CAAA;AACzC,IAAA,IAAI,SAAA,EAAW;AACb,MAAA,MAAA,CAAO,OAAA,CAAQ,aAAa,IAAA,EAAM,EAAA,EAAI,OAAO,QAAA,CAAS,QAAA,GAAW,MAAA,CAAO,QAAA,CAAS,MAAM,CAAA;AACvF,MAAA,MAAM,IAAI,kBAAA,CAAmB,SAAA,EAAW,YAAY,CAAA;AAAA,IACtD;AAEA,IAAA,MAAM,WAAA,GAAc,MAAA,CAAO,GAAA,CAAI,cAAc,CAAA;AAC7C,IAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,GAAA,CAAI,OAAO,CAAA;AAChC,IAAA,MAAM,YAAY,QAAA,CAAS,MAAA,CAAO,IAAI,YAAY,CAAA,IAAK,KAAK,EAAE,CAAA;AAE9D,IAAA,IAAI,CAAC,WAAA,IAAe,CAAC,KAAA,EAAO,OAAO,KAAA;AAEnC,IAAA,MAAA,CAAO,OAAA,CAAQ,aAAa,IAAA,EAAM,EAAA,EAAI,OAAO,QAAA,CAAS,QAAA,GAAW,MAAA,CAAO,QAAA,CAAS,MAAM,CAAA;AACvF,IAAA,IAAA,CAAK,cAAA,CAAe,WAAA,EAAa,KAAA,EAAO,SAAS,CAAA;AACjD,IAAA,OAAO,IAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAKA,cAAA,CAAe,KAAA,EAAe,KAAA,EAAe,SAAA,EAAmB;AAC9D,IAAA,IAAA,CAAK,WAAA,GAAc,KAAA;AACnB,IAAA,IAAA,CAAK,SAAA,GAAY,KAAA;AACjB,IAAA,IAAA,CAAK,WAAA,GAAc,IAAA,CAAK,GAAA,EAAI,GAAI,SAAA,GAAY,GAAA;AAE5C,IAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,MAAA,IAAI;AACF,QAAA,cAAA,CAAe,OAAA;AAAA,UACb,iBAAA;AAAA,UACA,IAAA,CAAK,UAAU,EAAE,KAAA,EAAO,OAAO,SAAA,EAAW,IAAA,CAAK,aAAa;AAAA,SAC9D;AAAA,MACF,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF;AAEA,IAAA,MAAM,UAAuB,EAAE,IAAA,EAAM,EAAE,EAAA,EAAI,KAAA,EAAO,OAAM,EAAE;AAC1D,IAAA,KAAA,MAAW,QAAA,IAAY,KAAK,aAAA,EAAe;AACzC,MAAA,QAAA,CAAS,aAAa,OAAO,CAAA;AAAA,IAC/B;AAAA,EACF;AAAA,EAEA,MAAM,UAAA,GAA0C;AAC9C,IAAA,IAAI,KAAK,WAAA,IAAe,IAAA,CAAK,GAAA,EAAI,GAAI,KAAK,WAAA,EAAa;AACrD,MAAA,OAAO,EAAE,IAAA,EAAM,EAAE,EAAA,EAAI,IAAA,CAAK,SAAA,IAAa,EAAA,EAAI,KAAA,EAAO,IAAA,CAAK,SAAA,IAAa,EAAA,EAAG,EAAE;AAAA,IAC3E;AACA,IAAA,OAAO,IAAA;AAAA,EACT;AAAA,EAEA,MAAM,OAAA,GAAU;AACd,IAAA,IAAA,CAAK,WAAA,GAAc,IAAA;AACnB,IAAA,IAAA,CAAK,WAAA,GAAc,CAAA;AACnB,IAAA,IAAA,CAAK,SAAA,GAAY,IAAA;AACjB,IAAA,IAAA,CAAK,aAAA,GAAgB,IAAA;AAErB,IAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,MAAA,IAAI;AACF,QAAA,cAAA,CAAe,WAAW,iBAAiB,CAAA;AAAA,MAC7C,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF;AAEA,IAAA,KAAA,MAAW,QAAA,IAAY,KAAK,aAAA,EAAe;AACzC,MAAA,QAAA,CAAS,cAAc,IAAI,CAAA;AAAA,IAC7B;AAEA,IAAA,OAAO,EAAE,OAAO,IAAA,EAAK;AAAA,EACvB;AAAA,EAEA,kBAAkB,QAAA,EAAgE;AAChF,IAAA,IAAA,CAAK,aAAA,CAAc,IAAI,QAAQ,CAAA;AAC/B,IAAA,OAAO;AAAA,MACL,IAAA,EAAM;AAAA,QACJ,YAAA,EAAc;AAAA,UACZ,aAAa,MAAM;AACjB,YAAA,IAAA,CAAK,aAAA,CAAc,OAAO,QAAQ,CAAA;AAAA,UACpC;AAAA;AACF;AACF,KACF;AAAA,EACF;AAAA;AAAA,EAIA,MAAc,OAAA,CAAW,IAAA,EAAc,IAAA,EAA4B;AACjE,IAAA,IAAI,CAAC,KAAK,WAAA,EAAa;AACrB,MAAA,MAAM,IAAI,kBAAA,CAAmB,mBAAA,EAAqB,YAAY,CAAA;AAAA,IAChE;AAEA,IAAA,MAAM,IAAA,GAAO,MAAM,KAAA,CAAM,CAAA,EAAG,KAAK,UAAU,CAAA,EAAG,IAAI,CAAA,CAAA,EAAI;AAAA,MACpD,MAAA,EAAQ,MAAA;AAAA,MACR,OAAA,EAAS;AAAA,QACP,aAAA,EAAe,CAAA,OAAA,EAAU,IAAA,CAAK,WAAW,CAAA,CAAA;AAAA,QACzC,cAAA,EAAgB;AAAA,OAClB;AAAA,MACA,MAAM,IAAA,KAAS,MAAA,GAAY,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA,GAAI;AAAA,KACnD,CAAA;AAED,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,IAAA,EAAK;AAE7B,IAAA,IAAI,CAAC,IAAA,CAAK,EAAA,IAAM,IAAA,EAAM,KAAA,EAAO;AAC3B,MAAA,MAAM,IAAI,kBAAA;AAAA,QACR,IAAA,EAAM,KAAA,IAAS,CAAA,gBAAA,EAAmB,IAAA,CAAK,MAAM,CAAA,CAAA;AAAA,QAC7C,IAAA,CAAK,MAAA,KAAW,GAAA,GAAM,YAAA,GAAe;AAAA,OACvC;AAAA,IACF;AAEA,IAAA,OAAO,IAAA;AAAA,EACT;AAAA;AAAA,EAIA,MAAM,WAAA,CAAY,YAAA,GAAe,KAAA,EAAkC;AACjE,IAAA,MAAM,GAAA,GAAM,KAAK,GAAA,EAAI;AACrB,IAAA,IAAI,CAAC,gBAAgB,IAAA,CAAK,aAAA,IAAiB,MAAM,IAAA,CAAK,iBAAA,GAAoB,KAAK,YAAA,EAAc;AAC3F,MAAA,OAAO,IAAA,CAAK,aAAA;AAAA,IACd;AAEA,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,OAAA,CAA0B,cAAc,CAAA;AAChE,IAAA,IAAA,CAAK,aAAA,GAAgB,IAAA;AACrB,IAAA,IAAA,CAAK,iBAAA,GAAoB,GAAA;AACzB,IAAA,OAAO,IAAA;AAAA,EACT;AAAA,EAEA,MAAM,UAAA,GAAuC;AAC3C,IAAA,MAAM,EAAE,MAAA,EAAO,GAAI,MAAM,KAAK,WAAA,EAAY;AAC1C,IAAA,OAAO,OAAO,MAAA,CAAO,CAAC,CAAA,KAAM,CAAA,CAAE,SAAS,QAAQ,CAAA;AAAA,EACjD;AAAA,EAEA,MAAM,aAAA,GAA0C;AAC9C,IAAA,MAAM,EAAE,MAAA,EAAO,GAAI,MAAM,KAAK,WAAA,EAAY;AAC1C,IAAA,OAAO,MAAA,CAAO,OAAO,CAAC,CAAA,KAAM,EAAE,IAAA,KAAS,WAAA,IAAe,CAAA,CAAE,IAAA,KAAS,gBAAgB,CAAA;AAAA,EACnF;AAAA,EAEA,MAAM,SAAS,QAAA,EAAsD;AACnE,IAAA,MAAM,EAAE,MAAA,EAAO,GAAI,MAAM,KAAK,WAAA,EAAY;AAC1C,IAAA,OAAO,MAAA,CAAO,KAAK,CAAC,CAAA,KAAM,EAAE,IAAA,KAAS,QAAA,IAAY,CAAA,CAAE,EAAA,KAAO,QAAQ,CAAA;AAAA,EACpE;AAAA;AAAA,EAIA,MAAM,MAAM,MAAA,EAA2C;AACrD,IAAA,IAAI,MAAA,CAAO,MAAA,CAAO,MAAA,KAAW,CAAA,EAAG;AAC9B,MAAA,OAAO,EAAE,OAAA,EAAS,EAAC,EAAG,IAAA,EAAM,EAAC,EAAG,SAAA,EAAW,CAAA,EAAG,eAAA,EAAiB,CAAA,EAAE;AAAA,IACnE;AACA,IAAA,OAAO,IAAA,CAAK,OAAA,CAAqB,WAAA,EAAa,EAAE,QAAQ,CAAA;AAAA,EAC1D;AAAA,EAEA,MAAM,YAAY,KAAA,EAA+C;AAC/D,IAAA,MAAM,EAAE,MAAA,EAAO,GAAI,MAAM,KAAK,WAAA,EAAY;AAC1C,IAAA,MAAM,QAAA,GAAW,IAAI,GAAA,CAAI,MAAA,CAAO,GAAA,CAAI,CAAC,CAAA,KAAM,CAAC,CAAA,CAAE,IAAA,EAAM,CAAC,CAAC,CAAC,CAAA;AAEvD,IAAA,MAAM,MAAA,GAAS,KAAA,CAAM,OAAA,CAAQ,GAAA,CAAI,CAAC,IAAA,KAAS;AACzC,MAAA,MAAM,KAAA,GAAQ,QAAA,CAAS,GAAA,CAAI,IAAI,CAAA;AAC/B,MAAA,IAAI,CAAC,OAAO,MAAM,IAAI,mBAAmB,CAAA,iBAAA,EAAoB,IAAI,KAAK,eAAe,CAAA;AACrF,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,CAAM,EAAA,EAAI,KAAA,EAAM;AAAA,IACpC,CAAC,CAAA;AAED,IAAA,MAAM,QAAQ,KAAA,CAAM,OAAA,IAAW,EAAC,EAAG,GAAA,CAAI,CAAC,IAAA,KAAS;AAC/C,MAAA,MAAM,KAAA,GAAQ,QAAA,CAAS,GAAA,CAAI,IAAI,CAAA;AAC/B,MAAA,IAAI,CAAC,OAAO,MAAM,IAAI,mBAAmB,CAAA,oBAAA,EAAuB,IAAI,KAAK,eAAe,CAAA;AACxF,MAAA,MAAM,KAAA,GAAQ,KAAA,CAAM,IAAA,KAAS,gBAAA,GAAmB,MAAM,KAAA,GAAQ,MAAA;AAC9D,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,CAAM,EAAA,EAAI,OAAO,KAAA,EAAM;AAAA,IAC3C,CAAC,CAAA;AAED,IAAA,MAAM,OAAA,GAAU,MAAA,CAAO,OAAA,CAAQ,KAAA,CAAM,OAAA,IAAW,EAAE,CAAA,CAAE,GAAA,CAAI,CAAC,CAAC,IAAA,EAAM,YAAY,CAAA,KAAM;AAChF,MAAA,MAAM,KAAA,GAAQ,QAAA,CAAS,GAAA,CAAI,IAAI,CAAA;AAC/B,MAAA,IAAI,CAAC,OAAO,MAAM,IAAI,mBAAmB,CAAA,uBAAA,EAA0B,IAAI,KAAK,eAAe,CAAA;AAC3F,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,CAAM,EAAA,EAAI,OAAO,YAAA,EAAa;AAAA,IAClD,CAAC,CAAA;AAED,IAAA,OAAO,IAAA,CAAK,MAAM,EAAE,MAAA,EAAQ,MAAM,OAAA,EAAS,EAAC,EAAG,OAAA,EAAS,CAAA;AAAA,EAC1D;AAAA;AAAA,EAIA,MAAc,SAAA,CAAa,MAAA,EAAgB,IAAA,GAAgC,EAAC,EAAe;AACzF,IAAA,OAAO,KAAK,OAAA,CAAW,WAAA,EAAa,EAAE,MAAA,EAAQ,GAAG,MAAM,CAAA;AAAA,EACzD;AAkCF;AAMO,IAAM,kBAAA,GAAN,cAAiC,KAAA,CAAM;AAAA,EAE5C,WAAA,CAAY,SAAiB,IAAA,EAAc;AACzC,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,oBAAA;AACZ,IAAA,IAAA,CAAK,IAAA,GAAO,IAAA;AAAA,EACd;AACF","file":"chunk-WR4D3UI6.js","sourcesContent":["import type {\n  SemanticLayerConfig,\n  MetadataResponse,\n  PivotConfig,\n  QueryResult,\n  SimpleQueryInput,\n  SemanticField,\n  CuratedField,\n  AccessRole,\n  UserRoleAssignment,\n  UserFieldOverride,\n} from \"./types\";\n\nconst TOKEN_STORAGE_KEY = \"semantic-layer-token\";\n\nexport class SemanticLayerClient {\n  readonly gatewayUrl: string;\n  private accessToken: string | null = null;\n  private tokenExpiry = 0;\n  private userEmail: string | null = null;\n  private metadataCache: MetadataResponse | null = null;\n  private metadataCacheTime = 0;\n  private readonly CACHE_TTL_MS = 5 * 60 * 1000;\n  private authListeners = new Set<(event: string, session: SessionLike | null) => void>();\n\n  constructor(config: SemanticLayerConfig) {\n    this.gatewayUrl = config.gatewayUrl;\n\n    if (typeof window !== \"undefined\") {\n      try {\n        const stored = sessionStorage.getItem(TOKEN_STORAGE_KEY);\n        if (stored) {\n          const parsed = JSON.parse(stored);\n          if (parsed.expiresAt > Date.now()) {\n            this.accessToken = parsed.token;\n            this.tokenExpiry = parsed.expiresAt;\n            this.userEmail = parsed.email || null;\n          } else {\n            sessionStorage.removeItem(TOKEN_STORAGE_KEY);\n          }\n        }\n      } catch {\n        // Ignore storage errors\n      }\n    }\n  }\n\n  // -- Auth ------------------------------------------------------------------\n\n  /**\n   * Returns the URL to redirect the browser to for Google sign-in.\n   * After the user authenticates, the gateway redirects back to returnUrl\n   * with the access token in the URL hash fragment.\n   */\n  getSignInUrl(returnUrl?: string): string {\n    const target = returnUrl || (typeof window !== \"undefined\" ? window.location.href.split(\"#\")[0] : \"\");\n    return `${this.gatewayUrl}/auth/google?returnUrl=${encodeURIComponent(target)}`;\n  }\n\n  /**\n   * Check the current URL hash for auth tokens (set by the gateway callback redirect).\n   * If found, extracts them, stores the session, clears the hash, and returns true.\n   */\n  handleAuthCallback(): boolean {\n    if (typeof window === \"undefined\") return false;\n\n    const hash = window.location.hash.slice(1);\n    if (!hash) return false;\n\n    const params = new URLSearchParams(hash);\n\n    const authError = params.get(\"auth_error\");\n    if (authError) {\n      window.history.replaceState(null, \"\", window.location.pathname + window.location.search);\n      throw new SemanticLayerError(authError, \"AUTH_ERROR\");\n    }\n\n    const accessToken = params.get(\"access_token\");\n    const email = params.get(\"email\");\n    const expiresIn = parseInt(params.get(\"expires_in\") || \"0\", 10);\n\n    if (!accessToken || !email) return false;\n\n    window.history.replaceState(null, \"\", window.location.pathname + window.location.search);\n    this.setAccessToken(accessToken, email, expiresIn);\n    return true;\n  }\n\n  /**\n   * Set the Google access token (called after OAuth redirect callback).\n   */\n  setAccessToken(token: string, email: string, expiresIn: number) {\n    this.accessToken = token;\n    this.userEmail = email;\n    this.tokenExpiry = Date.now() + expiresIn * 1000;\n\n    if (typeof window !== \"undefined\") {\n      try {\n        sessionStorage.setItem(\n          TOKEN_STORAGE_KEY,\n          JSON.stringify({ token, email, expiresAt: this.tokenExpiry }),\n        );\n      } catch {\n        // Ignore storage errors\n      }\n    }\n\n    const session: SessionLike = { user: { id: email, email } };\n    for (const listener of this.authListeners) {\n      listener(\"SIGNED_IN\", session);\n    }\n  }\n\n  async getSession(): Promise<SessionLike | null> {\n    if (this.accessToken && Date.now() < this.tokenExpiry) {\n      return { user: { id: this.userEmail || \"\", email: this.userEmail || \"\" } };\n    }\n    return null;\n  }\n\n  async signOut() {\n    this.accessToken = null;\n    this.tokenExpiry = 0;\n    this.userEmail = null;\n    this.metadataCache = null;\n\n    if (typeof window !== \"undefined\") {\n      try {\n        sessionStorage.removeItem(TOKEN_STORAGE_KEY);\n      } catch {\n        // Ignore storage errors\n      }\n    }\n\n    for (const listener of this.authListeners) {\n      listener(\"SIGNED_OUT\", null);\n    }\n\n    return { error: null };\n  }\n\n  onAuthStateChange(callback: (event: string, session: SessionLike | null) => void) {\n    this.authListeners.add(callback);\n    return {\n      data: {\n        subscription: {\n          unsubscribe: () => {\n            this.authListeners.delete(callback);\n          },\n        },\n      },\n    };\n  }\n\n  // -- API calls -------------------------------------------------------------\n\n  private async apiCall<T>(path: string, body?: unknown): Promise<T> {\n    if (!this.accessToken) {\n      throw new SemanticLayerError(\"Not authenticated\", \"AUTH_ERROR\");\n    }\n\n    const resp = await fetch(`${this.gatewayUrl}${path}`, {\n      method: \"POST\",\n      headers: {\n        Authorization: `Bearer ${this.accessToken}`,\n        \"Content-Type\": \"application/json\",\n      },\n      body: body !== undefined ? JSON.stringify(body) : undefined,\n    });\n\n    const data = await resp.json();\n\n    if (!resp.ok || data?.error) {\n      throw new SemanticLayerError(\n        data?.error || `Request failed: ${resp.status}`,\n        resp.status === 401 ? \"AUTH_ERROR\" : \"API_ERROR\",\n      );\n    }\n\n    return data as T;\n  }\n\n  // -- Metadata --------------------------------------------------------------\n\n  async getMetadata(forceRefresh = false): Promise<MetadataResponse> {\n    const now = Date.now();\n    if (!forceRefresh && this.metadataCache && now - this.metadataCacheTime < this.CACHE_TTL_MS) {\n      return this.metadataCache;\n    }\n\n    const data = await this.apiCall<MetadataResponse>(\"/v1/metadata\");\n    this.metadataCache = data;\n    this.metadataCacheTime = now;\n    return data;\n  }\n\n  async getMetrics(): Promise<SemanticField[]> {\n    const { fields } = await this.getMetadata();\n    return fields.filter((f) => f.type === \"metric\");\n  }\n\n  async getDimensions(): Promise<SemanticField[]> {\n    const { fields } = await this.getMetadata();\n    return fields.filter((f) => f.type === \"dimension\" || f.type === \"time_dimension\");\n  }\n\n  async getField(nameOrId: string): Promise<SemanticField | undefined> {\n    const { fields } = await this.getMetadata();\n    return fields.find((f) => f.name === nameOrId || f.id === nameOrId);\n  }\n\n  // -- Query -----------------------------------------------------------------\n\n  async query(config: PivotConfig): Promise<QueryResult> {\n    if (config.values.length === 0) {\n      return { columns: [], rows: [], totalRows: 0, executionTimeMs: 0 };\n    }\n    return this.apiCall<QueryResult>(\"/v1/query\", { config });\n  }\n\n  async simpleQuery(input: SimpleQueryInput): Promise<QueryResult> {\n    const { fields } = await this.getMetadata();\n    const fieldMap = new Map(fields.map((f) => [f.name, f]));\n\n    const values = input.metrics.map((name) => {\n      const field = fieldMap.get(name);\n      if (!field) throw new SemanticLayerError(`Unknown metric: \"${name}\"`, \"UNKNOWN_FIELD\");\n      return { fieldId: field.id, field };\n    });\n\n    const rows = (input.groupBy || []).map((name) => {\n      const field = fieldMap.get(name);\n      if (!field) throw new SemanticLayerError(`Unknown dimension: \"${name}\"`, \"UNKNOWN_FIELD\");\n      const grain = field.type === \"time_dimension\" ? input.grain : undefined;\n      return { fieldId: field.id, field, grain };\n    });\n\n    const filters = Object.entries(input.filters || {}).map(([name, filterValues]) => {\n      const field = fieldMap.get(name);\n      if (!field) throw new SemanticLayerError(`Unknown filter field: \"${name}\"`, \"UNKNOWN_FIELD\");\n      return { fieldId: field.id, field, filterValues };\n    });\n\n    return this.query({ values, rows, columns: [], filters });\n  }\n\n  // -- Admin -----------------------------------------------------------------\n\n  private async adminCall<T>(action: string, body: Record<string, unknown> = {}): Promise<T> {\n    return this.apiCall<T>(\"/v1/admin\", { action, ...body });\n  }\n\n  readonly admin = {\n    listFields: () => this.adminCall<{ fields: CuratedField[] }>(\"fields.list\"),\n    createField: (input: { field_name: string; field_type: string; display_name?: string; description?: string }) =>\n      this.adminCall<{ field: CuratedField }>(\"fields.create\", input),\n    updateField: (input: { id: number; field_name?: string; display_name?: string; description?: string; is_active?: boolean }) =>\n      this.adminCall<{ field: CuratedField }>(\"fields.update\", input),\n    deleteField: (id: number) =>\n      this.adminCall<{ deleted: boolean }>(\"fields.delete\", { id }),\n\n    listRoles: () => this.adminCall<{ roles: AccessRole[] }>(\"roles.list\"),\n    createRole: (input: { name: string; description?: string; is_default?: boolean }) =>\n      this.adminCall<{ role: AccessRole }>(\"roles.create\", input),\n    updateRole: (input: { id: number; name?: string; description?: string; is_default?: boolean }) =>\n      this.adminCall<{ role: AccessRole }>(\"roles.update\", input),\n    deleteRole: (id: number) =>\n      this.adminCall<{ deleted: boolean }>(\"roles.delete\", { id }),\n    setRoleFields: (role_id: number, curated_field_ids: number[]) =>\n      this.adminCall<{ role_id: number; field_count: number }>(\"roles.setFields\", { role_id, curated_field_ids }),\n\n    listUsers: () => this.adminCall<{ users: UserRoleAssignment[] }>(\"users.list\"),\n    assignUserRole: (input: { email: string; role_id: number; is_admin?: boolean }) =>\n      this.adminCall<{ assignment: UserRoleAssignment }>(\"users.assignRole\", input),\n    removeUserRole: (input: { email: string; role_id: number }) =>\n      this.adminCall<{ deleted: boolean }>(\"users.removeRole\", input),\n\n    listUserOverrides: (user_id: string) =>\n      this.adminCall<{ overrides: UserFieldOverride[] }>(\"users.listOverrides\", { user_id }),\n    setUserOverride: (input: { user_id: string; curated_field_id: number; access: \"grant\" | \"deny\" }) =>\n      this.adminCall<{ override: UserFieldOverride }>(\"users.setOverride\", input),\n    removeUserOverride: (input: { user_id: string; curated_field_id: number }) =>\n      this.adminCall<{ deleted: boolean }>(\"users.removeOverride\", input),\n  };\n}\n\nexport interface SessionLike {\n  user: { id: string; email: string };\n}\n\nexport class SemanticLayerError extends Error {\n  code: string;\n  constructor(message: string, code: string) {\n    super(message);\n    this.name = \"SemanticLayerError\";\n    this.code = code;\n  }\n}\n"]}

package/dist/components.cjs

@@ -1,6 +1,6 @@
 'use strict';
 
-var chunkSHHZ37FE_cjs = require('./chunk-SHHZ37FE.cjs');
+var chunkT2C43AAL_cjs = require('./chunk-T2C43AAL.cjs');
 var react = require('react');
 var jsxRuntime = require('react/jsx-runtime');
 
@@ -56,7 +56,7 @@ function MetricPicker({
   searchPlaceholder = "Search metrics and dimensions...",
   className
 }) {
-  const { fields, categories, isLoading, error } = chunkSHHZ37FE_cjs.useMetrics();
+  const { fields, categories, isLoading, error } = chunkT2C43AAL_cjs.useMetrics();
   const [search, setSearch] = react.useState("");
   const filtered = react.useMemo(() => {
     let result = fields;
@@ -312,7 +312,7 @@ var emptyStyle = {
   fontSize: 14
 };
 function DataCatalog({ className, showCopyButton = true, fieldTypes }) {
-  const { fields, metrics, dimensions, isLoading, error } = chunkSHHZ37FE_cjs.useMetrics();
+  const { fields, metrics, dimensions, isLoading, error } = chunkT2C43AAL_cjs.useMetrics();
   const [search, setSearch] = react.useState("");
   const [typeFilter, setTypeFilter] = react.useState("all");
   const [copiedField, setCopiedField] = react.useState(null);
@@ -522,7 +522,7 @@ var emptyStyle2 = {
   fontSize: 14
 };
 function FieldsTab() {
-  const { fields, isLoading, error, createField, updateField, deleteField } = chunkSHHZ37FE_cjs.useAdminFields();
+  const { fields, isLoading, error, createField, updateField, deleteField } = chunkT2C43AAL_cjs.useAdminFields();
   const [showAdd, setShowAdd] = react.useState(false);
   const [newName, setNewName] = react.useState("");
   const [newType, setNewType] = react.useState("metric");
@@ -611,8 +611,8 @@ function FieldsTab() {
   ] });
 }
 function RolesTab() {
-  const { roles, isLoading, error, createRole, deleteRole, setRoleFields } = chunkSHHZ37FE_cjs.useAdminRoles();
-  const { fields } = chunkSHHZ37FE_cjs.useAdminFields();
+  const { roles, isLoading, error, createRole, deleteRole, setRoleFields } = chunkT2C43AAL_cjs.useAdminRoles();
+  const { fields } = chunkT2C43AAL_cjs.useAdminFields();
   const [showAdd, setShowAdd] = react.useState(false);
   const [newName, setNewName] = react.useState("");
   const [newDesc, setNewDesc] = react.useState("");
@@ -699,8 +699,8 @@ function RolesTab() {
   ] });
 }
 function UsersTab() {
-  const { users, isLoading, error, assignUserRole, removeUserRole } = chunkSHHZ37FE_cjs.useAdminUsers();
-  const { roles } = chunkSHHZ37FE_cjs.useAdminRoles();
+  const { users, isLoading, error, assignUserRole, removeUserRole } = chunkT2C43AAL_cjs.useAdminUsers();
+  const { roles } = chunkT2C43AAL_cjs.useAdminRoles();
   const [showAdd, setShowAdd] = react.useState(false);
   const [newEmail, setNewEmail] = react.useState("");
   const [newRoleId, setNewRoleId] = react.useState(0);
@@ -787,7 +787,7 @@ function UsersTab() {
   ] });
 }
 function AdminDashboard({ className }) {
-  const { isAuthenticated, isLoading: authLoading } = chunkSHHZ37FE_cjs.useAuth();
+  const { isAuthenticated, isLoading: authLoading } = chunkT2C43AAL_cjs.useAuth();
   const [tab, setTab] = react.useState("fields");
   const [initError, setInitError] = react.useState(null);
   if (authLoading) return /* @__PURE__ */ jsxRuntime.jsx("div", { style: { ...rootStyle2, ...emptyStyle2 }, children: "Loading..." });

package/dist/components.d.cts

@@ -1,5 +1,5 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import { S as SemanticField, F as FieldType, Q as QueryResult } from './types-Dc8Zdacw.cjs';
+import { S as SemanticField, F as FieldType, Q as QueryResult } from './types-DJpYLOyy.cjs';
 
 interface MetricPickerProps {
     onSelect: (field: SemanticField) => void;

package/dist/components.d.ts

@@ -1,5 +1,5 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import { S as SemanticField, F as FieldType, Q as QueryResult } from './types-Dc8Zdacw.js';
+import { S as SemanticField, F as FieldType, Q as QueryResult } from './types-DJpYLOyy.js';
 
 interface MetricPickerProps {
     onSelect: (field: SemanticField) => void;

package/dist/components.js

@@ -1,4 +1,4 @@
-import { useMetrics, useAuth, useAdminFields, useAdminRoles, useAdminUsers } from './chunk-SLRBAF37.js';
+import { useMetrics, useAuth, useAdminFields, useAdminRoles, useAdminUsers } from './chunk-3OR3QCN6.js';
 import { useState, useMemo, useCallback } from 'react';
 import { jsx, jsxs } from 'react/jsx-runtime';
 

package/dist/index.cjs

@@ -1,16 +1,16 @@
 'use strict';
 
-var chunkB23E3XFB_cjs = require('./chunk-B23E3XFB.cjs');
+var chunkW64RGDXH_cjs = require('./chunk-W64RGDXH.cjs');
 
 
 
 Object.defineProperty(exports, "SemanticLayerClient", {
   enumerable: true,
-  get: function () { return chunkB23E3XFB_cjs.SemanticLayerClient; }
+  get: function () { return chunkW64RGDXH_cjs.SemanticLayerClient; }
 });
 Object.defineProperty(exports, "SemanticLayerError", {
   enumerable: true,
-  get: function () { return chunkB23E3XFB_cjs.SemanticLayerError; }
+  get: function () { return chunkW64RGDXH_cjs.SemanticLayerError; }
 });
 //# sourceMappingURL=index.cjs.map
 //# sourceMappingURL=index.cjs.map

package/dist/index.d.cts

@@ -1,57 +1,48 @@
-import * as _supabase_auth_js from '@supabase/auth-js';
-import { SupabaseClient, Session } from '@supabase/supabase-js';
-import { e as SemanticLayerConfig, M as MetadataResponse, S as SemanticField, P as PivotConfig, Q as QueryResult, b as SimpleQueryInput, C as CuratedField, A as AccessRole, U as UserRoleAssignment, c as UserFieldOverride } from './types-Dc8Zdacw.cjs';
-export { f as AggregationType, d as AuthState, D as DataType, a as FieldCategory, F as FieldType, g as PivotField, h as QueryColumn, T as TimeGrain } from './types-Dc8Zdacw.cjs';
+import { e as SemanticLayerConfig, M as MetadataResponse, S as SemanticField, P as PivotConfig, Q as QueryResult, b as SimpleQueryInput, C as CuratedField, A as AccessRole, U as UserRoleAssignment, c as UserFieldOverride } from './types-DJpYLOyy.cjs';
+export { f as AggregationType, d as AuthState, D as DataType, a as FieldCategory, F as FieldType, g as PivotField, h as QueryColumn, T as TimeGrain } from './types-DJpYLOyy.cjs';
 
 declare class SemanticLayerClient {
-    private supabase;
+    readonly gatewayUrl: string;
+    private accessToken;
+    private tokenExpiry;
+    private userEmail;
     private metadataCache;
     private metadataCacheTime;
     private readonly CACHE_TTL_MS;
-    readonly gatewayUrl: string;
+    private authListeners;
     constructor(config: SemanticLayerConfig);
-    /** Access the underlying Supabase client (for auth operations). */
-    getSupabaseClient(): SupabaseClient;
-    signInWithGoogle(redirectTo?: string): Promise<_supabase_auth_js.OAuthResponse>;
-    /** Get the Google sign-in URL without triggering a redirect (for popup flows). */
-    getSignInUrl(redirectTo?: string): Promise<string | null>;
-    /** Send a one-time code to the given email (for iframe/editor sign-in). */
-    sendOtp(email: string): Promise<_supabase_auth_js.AuthOtpResponse>;
-    /** Verify a one-time code received via email. */
-    verifyOtp(email: string, token: string): Promise<_supabase_auth_js.AuthResponse>;
+    /**
+     * Returns the URL to redirect the browser to for Google sign-in.
+     * After the user authenticates, the gateway redirects back to returnUrl
+     * with the access token in the URL hash fragment.
+     */
+    getSignInUrl(returnUrl?: string): string;
+    /**
+     * Check the current URL hash for auth tokens (set by the gateway callback redirect).
+     * If found, extracts them, stores the session, clears the hash, and returns true.
+     */
+    handleAuthCallback(): boolean;
+    /**
+     * Set the Google access token (called after OAuth redirect callback).
+     */
+    setAccessToken(token: string, email: string, expiresIn: number): void;
+    getSession(): Promise<SessionLike | null>;
     signOut(): Promise<{
-        error: _supabase_auth_js.AuthError | null;
+        error: null;
     }>;
-    getSession(): Promise<Session | null>;
-    onAuthStateChange(callback: (event: string, session: Session | null) => void): {
+    onAuthStateChange(callback: (event: string, session: SessionLike | null) => void): {
         data: {
-            subscription: _supabase_auth_js.Subscription;
+            subscription: {
+                unsubscribe: () => void;
+            };
         };
     };
-    /** Set an existing session (used by the popup OAuth callback). */
-    setSession(accessToken: string, refreshToken: string): Promise<_supabase_auth_js.AuthResponse>;
-    /**
-     * Open Google OAuth in a popup window and wait for the callback.
-     * Uses the auth-callback edge function to relay tokens via postMessage.
-     */
-    signInWithPopup(): Promise<void>;
-    /**
-     * Fetch the curated catalog of metrics and dimensions from the gateway.
-     * Results are cached for 5 minutes.
-     */
+    private apiCall;
     getMetadata(forceRefresh?: boolean): Promise<MetadataResponse>;
-    /** Get only metrics from the catalog. */
     getMetrics(): Promise<SemanticField[]>;
-    /** Get only dimensions (including time dimensions) from the catalog. */
     getDimensions(): Promise<SemanticField[]>;
-    /** Find a field by name or id. */
     getField(nameOrId: string): Promise<SemanticField | undefined>;
-    /** Execute a query using the full PivotConfig format. */
     query(config: PivotConfig): Promise<QueryResult>;
-    /**
-     * Execute a query using the simplified input format.
-     * Automatically resolves metric/dimension names to full field objects.
-     */
     simpleQuery(input: SimpleQueryInput): Promise<QueryResult>;
     private adminCall;
     readonly admin: {
@@ -137,9 +128,15 @@ declare class SemanticLayerClient {
         }>;
     };
 }
+interface SessionLike {
+    user: {
+        id: string;
+        email: string;
+    };
+}
 declare class SemanticLayerError extends Error {
     code: string;
     constructor(message: string, code: string);
 }
 
-export { AccessRole, CuratedField, MetadataResponse, PivotConfig, QueryResult, SemanticField, SemanticLayerClient, SemanticLayerConfig, SemanticLayerError, SimpleQueryInput, UserFieldOverride, UserRoleAssignment };
+export { AccessRole, CuratedField, MetadataResponse, PivotConfig, QueryResult, SemanticField, SemanticLayerClient, SemanticLayerConfig, SemanticLayerError, type SessionLike, SimpleQueryInput, UserFieldOverride, UserRoleAssignment };

package/dist/index.d.ts

@@ -1,57 +1,48 @@
-import * as _supabase_auth_js from '@supabase/auth-js';
-import { SupabaseClient, Session } from '@supabase/supabase-js';
-import { e as SemanticLayerConfig, M as MetadataResponse, S as SemanticField, P as PivotConfig, Q as QueryResult, b as SimpleQueryInput, C as CuratedField, A as AccessRole, U as UserRoleAssignment, c as UserFieldOverride } from './types-Dc8Zdacw.js';
-export { f as AggregationType, d as AuthState, D as DataType, a as FieldCategory, F as FieldType, g as PivotField, h as QueryColumn, T as TimeGrain } from './types-Dc8Zdacw.js';
+import { e as SemanticLayerConfig, M as MetadataResponse, S as SemanticField, P as PivotConfig, Q as QueryResult, b as SimpleQueryInput, C as CuratedField, A as AccessRole, U as UserRoleAssignment, c as UserFieldOverride } from './types-DJpYLOyy.js';
+export { f as AggregationType, d as AuthState, D as DataType, a as FieldCategory, F as FieldType, g as PivotField, h as QueryColumn, T as TimeGrain } from './types-DJpYLOyy.js';
 
 declare class SemanticLayerClient {
-    private supabase;
+    readonly gatewayUrl: string;
+    private accessToken;
+    private tokenExpiry;
+    private userEmail;
     private metadataCache;
     private metadataCacheTime;
     private readonly CACHE_TTL_MS;
-    readonly gatewayUrl: string;
+    private authListeners;
     constructor(config: SemanticLayerConfig);
-    /** Access the underlying Supabase client (for auth operations). */
-    getSupabaseClient(): SupabaseClient;
-    signInWithGoogle(redirectTo?: string): Promise<_supabase_auth_js.OAuthResponse>;
-    /** Get the Google sign-in URL without triggering a redirect (for popup flows). */
-    getSignInUrl(redirectTo?: string): Promise<string | null>;
-    /** Send a one-time code to the given email (for iframe/editor sign-in). */
-    sendOtp(email: string): Promise<_supabase_auth_js.AuthOtpResponse>;
-    /** Verify a one-time code received via email. */
-    verifyOtp(email: string, token: string): Promise<_supabase_auth_js.AuthResponse>;
+    /**
+     * Returns the URL to redirect the browser to for Google sign-in.
+     * After the user authenticates, the gateway redirects back to returnUrl
+     * with the access token in the URL hash fragment.
+     */
+    getSignInUrl(returnUrl?: string): string;
+    /**
+     * Check the current URL hash for auth tokens (set by the gateway callback redirect).
+     * If found, extracts them, stores the session, clears the hash, and returns true.
+     */
+    handleAuthCallback(): boolean;
+    /**
+     * Set the Google access token (called after OAuth redirect callback).
+     */
+    setAccessToken(token: string, email: string, expiresIn: number): void;
+    getSession(): Promise<SessionLike | null>;
     signOut(): Promise<{
-        error: _supabase_auth_js.AuthError | null;
+        error: null;
     }>;
-    getSession(): Promise<Session | null>;
-    onAuthStateChange(callback: (event: string, session: Session | null) => void): {
+    onAuthStateChange(callback: (event: string, session: SessionLike | null) => void): {
         data: {
-            subscription: _supabase_auth_js.Subscription;
+            subscription: {
+                unsubscribe: () => void;
+            };
         };
     };
-    /** Set an existing session (used by the popup OAuth callback). */
-    setSession(accessToken: string, refreshToken: string): Promise<_supabase_auth_js.AuthResponse>;
-    /**
-     * Open Google OAuth in a popup window and wait for the callback.
-     * Uses the auth-callback edge function to relay tokens via postMessage.
-     */
-    signInWithPopup(): Promise<void>;
-    /**
-     * Fetch the curated catalog of metrics and dimensions from the gateway.
-     * Results are cached for 5 minutes.
-     */
+    private apiCall;
     getMetadata(forceRefresh?: boolean): Promise<MetadataResponse>;
-    /** Get only metrics from the catalog. */
     getMetrics(): Promise<SemanticField[]>;
-    /** Get only dimensions (including time dimensions) from the catalog. */
     getDimensions(): Promise<SemanticField[]>;
-    /** Find a field by name or id. */
     getField(nameOrId: string): Promise<SemanticField | undefined>;
-    /** Execute a query using the full PivotConfig format. */
     query(config: PivotConfig): Promise<QueryResult>;
-    /**
-     * Execute a query using the simplified input format.
-     * Automatically resolves metric/dimension names to full field objects.
-     */
     simpleQuery(input: SimpleQueryInput): Promise<QueryResult>;
     private adminCall;
     readonly admin: {
@@ -137,9 +128,15 @@ declare class SemanticLayerClient {
         }>;
     };
 }
+interface SessionLike {
+    user: {
+        id: string;
+        email: string;
+    };
+}
 declare class SemanticLayerError extends Error {
     code: string;
     constructor(message: string, code: string);
 }
 
-export { AccessRole, CuratedField, MetadataResponse, PivotConfig, QueryResult, SemanticField, SemanticLayerClient, SemanticLayerConfig, SemanticLayerError, SimpleQueryInput, UserFieldOverride, UserRoleAssignment };
+export { AccessRole, CuratedField, MetadataResponse, PivotConfig, QueryResult, SemanticField, SemanticLayerClient, SemanticLayerConfig, SemanticLayerError, type SessionLike, SimpleQueryInput, UserFieldOverride, UserRoleAssignment };

package/dist/index.js

@@ -1,3 +1,3 @@
-export { SemanticLayerClient, SemanticLayerError } from './chunk-WPK37LJ6.js';
+export { SemanticLayerClient, SemanticLayerError } from './chunk-WR4D3UI6.js';
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map