@junobuild/ic-client 7.1.1 → 7.2.0-next-2026-02-10

package/declarations/sputnik/sputnik.factory.did.js

@@ -75,6 +75,32 @@ export const idlFactory = ({IDL}) => {
     Ok: Authentication,
     Err: AuthenticationError
   });
+  const OpenIdPrepareAutomationArgs = IDL.Record({
+    jwt: IDL.Text,
+    salt: IDL.Vec(IDL.Nat8)
+  });
+  const AuthenticateAutomationArgs = IDL.Variant({
+    OpenId: OpenIdPrepareAutomationArgs
+  });
+  const PrepareAutomationError = IDL.Variant({
+    JwtFindProvider: JwtFindProviderError,
+    InvalidController: IDL.Text,
+    GetCachedJwks: IDL.Null,
+    JwtVerify: JwtVerifyError,
+    GetOrFetchJwks: GetOrRefreshJwksError,
+    ControllerAlreadyExists: IDL.Null,
+    TooManyControllers: IDL.Text
+  });
+  const AuthenticationAutomationError = IDL.Variant({
+    PrepareAutomation: PrepareAutomationError,
+    RegisterController: IDL.Text,
+    SaveWorkflowMetadata: IDL.Text,
+    SaveUniqueJtiToken: IDL.Text
+  });
+  const AuthenticateAutomationResultResponse = IDL.Variant({
+    Ok: IDL.Null,
+    Err: AuthenticationAutomationError
+  });
   const CommitBatch = IDL.Record({
     batch_id: IDL.Nat,
     headers: IDL.Vec(IDL.Tuple(IDL.Text, IDL.Text)),
@@ -115,6 +141,10 @@ export const idlFactory = ({IDL}) => {
   const DeleteControllersArgs = IDL.Record({
     controllers: IDL.Vec(IDL.Principal)
   });
+  const ControllerKind = IDL.Variant({
+    Emulator: IDL.Null,
+    Automation: IDL.Null
+  });
   const ControllerScope = IDL.Variant({
     Write: IDL.Null,
     Admin: IDL.Null,
@@ -123,6 +153,7 @@ export const idlFactory = ({IDL}) => {
   const Controller = IDL.Record({
     updated_at: IDL.Nat64,
     metadata: IDL.Vec(IDL.Tuple(IDL.Text, IDL.Text)),
+    kind: IDL.Opt(ControllerKind),
     created_at: IDL.Nat64,
     scope: ControllerScope,
     expires_at: IDL.Opt(IDL.Nat64)
@@ -158,18 +189,21 @@ export const idlFactory = ({IDL}) => {
     created_at: IDL.Nat64,
     version: IDL.Opt(IDL.Nat64)
   });
-  const OpenIdProvider = IDL.Variant({Google: IDL.Null});
-  const OpenIdProviderDelegationConfig = IDL.Record({
+  const OpenIdDelegationProvider = IDL.Variant({
+    GitHub: IDL.Null,
+    Google: IDL.Null
+  });
+  const OpenIdAuthProviderDelegationConfig = IDL.Record({
     targets: IDL.Opt(IDL.Vec(IDL.Principal)),
     max_time_to_live: IDL.Opt(IDL.Nat64)
   });
-  const OpenIdProviderConfig = IDL.Record({
-    delegation: IDL.Opt(OpenIdProviderDelegationConfig),
+  const OpenIdAuthProviderConfig = IDL.Record({
+    delegation: IDL.Opt(OpenIdAuthProviderDelegationConfig),
     client_id: IDL.Text
   });
   const AuthenticationConfigOpenId = IDL.Record({
     observatory_id: IDL.Opt(IDL.Principal),
-    providers: IDL.Vec(IDL.Tuple(OpenIdProvider, OpenIdProviderConfig))
+    providers: IDL.Vec(IDL.Tuple(OpenIdDelegationProvider, OpenIdAuthProviderConfig))
   });
   const AuthenticationConfigInternetIdentity = IDL.Record({
     derivation_origin: IDL.Opt(IDL.Text),
@@ -186,6 +220,33 @@ export const idlFactory = ({IDL}) => {
     internet_identity: IDL.Opt(AuthenticationConfigInternetIdentity),
     rules: IDL.Opt(AuthenticationRules)
   });
+  const OpenIdAutomationProvider = IDL.Variant({GitHub: IDL.Null});
+  const AutomationScope = IDL.Variant({
+    Write: IDL.Null,
+    Submit: IDL.Null
+  });
+  const OpenIdAutomationProviderControllerConfig = IDL.Record({
+    scope: IDL.Opt(AutomationScope),
+    max_time_to_live: IDL.Opt(IDL.Nat64)
+  });
+  const RepositoryKey = IDL.Record({owner: IDL.Text, name: IDL.Text});
+  const OpenIdAutomationRepositoryConfig = IDL.Record({
+    branches: IDL.Opt(IDL.Vec(IDL.Text))
+  });
+  const OpenIdAutomationProviderConfig = IDL.Record({
+    controller: IDL.Opt(OpenIdAutomationProviderControllerConfig),
+    repositories: IDL.Vec(IDL.Tuple(RepositoryKey, OpenIdAutomationRepositoryConfig))
+  });
+  const AutomationConfigOpenId = IDL.Record({
+    observatory_id: IDL.Opt(IDL.Principal),
+    providers: IDL.Vec(IDL.Tuple(OpenIdAutomationProvider, OpenIdAutomationProviderConfig))
+  });
+  const AutomationConfig = IDL.Record({
+    updated_at: IDL.Opt(IDL.Nat64),
+    openid: IDL.Opt(AutomationConfigOpenId),
+    created_at: IDL.Opt(IDL.Nat64),
+    version: IDL.Opt(IDL.Nat64)
+  });
   const ConfigMaxMemorySize = IDL.Record({
     stable: IDL.Opt(IDL.Nat64),
     heap: IDL.Opt(IDL.Nat64)
@@ -396,8 +457,13 @@ export const idlFactory = ({IDL}) => {
     internet_identity: IDL.Opt(AuthenticationConfigInternetIdentity),
     rules: IDL.Opt(AuthenticationRules)
   });
+  const SetAutomationConfig = IDL.Record({
+    openid: IDL.Opt(AutomationConfigOpenId),
+    version: IDL.Opt(IDL.Nat64)
+  });
   const SetController = IDL.Record({
     metadata: IDL.Vec(IDL.Tuple(IDL.Text, IDL.Text)),
+    kind: IDL.Opt(ControllerKind),
     scope: ControllerScope,
     expires_at: IDL.Opt(IDL.Nat64)
   });
@@ -443,6 +509,11 @@ export const idlFactory = ({IDL}) => {
 
   return IDL.Service({
     authenticate: IDL.Func([AuthenticationArgs], [AuthenticateResultResponse], []),
+    authenticate_automation: IDL.Func(
+      [AuthenticateAutomationArgs],
+      [AuthenticateAutomationResultResponse],
+      []
+    ),
     commit_asset_upload: IDL.Func([CommitBatch], [], []),
     commit_proposal: IDL.Func([CommitProposal], [IDL.Null], []),
     commit_proposal_asset_upload: IDL.Func([CommitBatch], [], []),
@@ -471,6 +542,7 @@ export const idlFactory = ({IDL}) => {
     deposit_cycles: IDL.Func([DepositCyclesArgs], [], []),
     get_asset: IDL.Func([IDL.Text, IDL.Text], [IDL.Opt(AssetNoContent)], ['query']),
     get_auth_config: IDL.Func([], [IDL.Opt(AuthenticationConfig)], ['query']),
+    get_automation_config: IDL.Func([], [IDL.Opt(AutomationConfig)], ['query']),
     get_config: IDL.Func([], [Config], []),
     get_db_config: IDL.Func([], [IDL.Opt(DbConfig)], ['query']),
     get_delegation: IDL.Func([GetDelegationArgs], [GetDelegationResultResponse], ['query']),
@@ -512,6 +584,7 @@ export const idlFactory = ({IDL}) => {
     reject_proposal: IDL.Func([CommitProposal], [IDL.Null], []),
     set_asset_token: IDL.Func([IDL.Text, IDL.Text, IDL.Opt(IDL.Text)], [], []),
     set_auth_config: IDL.Func([SetAuthenticationConfig], [AuthenticationConfig], []),
+    set_automation_config: IDL.Func([SetAutomationConfig], [AutomationConfig], []),
     set_controllers: IDL.Func(
       [SetControllersArgs],
       [IDL.Vec(IDL.Tuple(IDL.Principal, Controller))],

package/dev/_constants.d.ts

@@ -0,0 +1 @@
+export declare const DEFAULT_DEV_DELEGATION_IDENTITY_EXPIRATION_IN_MS: number;

package/dev/errors.d.ts

@@ -0,0 +1,9 @@
+export declare class UnsafeDevIdentityNotBrowserError extends Error {
+    constructor();
+}
+export declare class UnsafeDevIdentityNotLocalhostError extends Error {
+    constructor();
+}
+export declare class UnsafeDevIdentityInvalidIdentifierError extends Error {
+    constructor(length: number);
+}

package/dev/identity.d.ts

@@ -0,0 +1,43 @@
+import type { DevIdentifier, DevIdentifierData, GenerateUnsafeIdentityParams, GenerateUnsafeIdentityResult, LoadDevIdentifiersParams } from './types/identity';
+/**
+ * Load all development identifiers that have been used for authentication.
+ *
+ * Returns an array of tuples containing the identifier string and metadata (created/updated timestamps),
+ * sorted by most recently used first.
+ *
+ * @param params - Load parameters
+ * @param params.limit - Optional maximum number of identifiers to return
+ * @returns Promise resolving to array of [identifier, metadata] tuples sorted by updatedAt descending
+ *
+ * @example
+ * const recent = await loadDevIdentifiers({ limit: 5 });
+ * // Returns only the 5 most recently used identifiers
+ */
+export declare const loadDevIdentifiers: ({ limit }?: LoadDevIdentifiersParams) => Promise<[DevIdentifier, DevIdentifierData][]>;
+/**
+ * Clear all stored development identifiers from IndexedDB.
+ * This removes the history of used identifiers but does not affect AuthClient's stored credentials.
+ *
+ * @returns Promise that resolves when identifiers are cleared
+ */
+export declare const clearDevIdentifiers: () => Promise<void>;
+/**
+ * Generate an identity for local development with the Internet Computer.
+ *
+ * ⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️
+ * ⚠️ UNSAFE - FOR LOCAL DEVELOPMENT ONLY ⚠️
+ * ⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️⚠️
+ *
+ * Returns the identity, session key, and delegation chain.
+ * Consumers must handle storage (e.g. for AuthClient compatibility).
+ *
+ * @param params - Generation parameters
+ * @param params.identifier - Unique identifier string for this dev identity (default: "dev")
+ * @param params.maxTimeToLiveInMilliseconds - Delegation expiration time in ms (default: 7 days)
+ *
+ * @returns Promise resolving to object containing identity, sessionKey, and delegationChain
+ *
+ * @throws {UnsafeDevIdentityNotBrowserError} If called outside browser environment
+ * @throws {UnsafeDevIdentityNotLocalhostError} If called outside localhost
+ **/
+export declare const generateUnsafeDevIdentity: ({ identifier, maxTimeToLiveInMilliseconds }?: GenerateUnsafeIdentityParams) => Promise<GenerateUnsafeIdentityResult>;

package/dev/types/identity.d.ts

@@ -0,0 +1,48 @@
+import type { DelegationChain, DelegationIdentity, ECDSAKeyIdentity } from '@icp-sdk/core/identity';
+/**
+ * A unique string identifier for a development identity.
+ * e.g. "dev" or "david"
+ */
+export type DevIdentifier = string;
+/**
+ * Timestamp in milliseconds since Unix epoch.
+ * Date objects cannot be persisted in IndexedDB, so we use numeric timestamps.
+ */
+export type DevIdentifierTimestamp = number;
+/**
+ * Metadata about a development identifier's usage.
+ */
+export interface DevIdentifierData {
+    /** Timestamp when this identifier was first used */
+    createdAt: DevIdentifierTimestamp;
+    /** Timestamp when this identifier was last used */
+    updatedAt: DevIdentifierTimestamp;
+}
+/**
+ * Parameters for generating an unsafe development identity.
+ */
+export interface GenerateUnsafeIdentityParams {
+    /** Unique identifier string for this dev identity (default: "dev") */
+    identifier?: DevIdentifier;
+    /** Delegation expiration time in milliseconds (default: 7 days) */
+    maxTimeToLiveInMilliseconds?: number;
+}
+/**
+ * Result of generating an unsafe development identity.
+ * Contains all components needed for authentication and storage.
+ */
+export interface GenerateUnsafeIdentityResult {
+    /** The delegated identity for making IC calls */
+    identity: DelegationIdentity;
+    /** The session key (to be stored in IDB for AuthClient compatibility, key KEY_STORAGE_KEY) */
+    sessionKey: ECDSAKeyIdentity;
+    /** The delegation chain (to be store in IDB for AuthClient compatibility, key KEY_STORAGE_DELEGATION) */
+    delegationChain: DelegationChain;
+}
+/**
+ * Parameters for loading development identifiers.
+ */
+export interface LoadDevIdentifiersParams {
+    /** Optional maximum number of identifiers to return */
+    limit?: number;
+}

package/dev.d.ts

@@ -0,0 +1,3 @@
+export * from './dev/errors';
+export * from './dev/identity';
+export type * from './dev/types/identity';

package/dev.js

@@ -0,0 +1,2 @@
+var o=class extends Error{constructor(){super("A dev identity can only be used in browser environments")}},s=class extends Error{constructor(){super("A dev identity must only be used on localhost (127.0.0.1 or localhost)")}},i=class extends Error{constructor(t){super(`Identifier must be 32 characters or less, got ${t}`)}};import{DelegationChain as w,DelegationIdentity as v,ECDSAKeyIdentity as E,Ed25519KeyIdentity as g}from"@icp-sdk/core/identity";import{clear as x,createStore as A,entries as _,update as h}from"idb-keyval";var I=A("juno-dev-identifiers","juno-dev-identifiers-store"),S=async({limit:e}={})=>(await _(I)).sort(([y,{updatedAt:a}],[l,{updatedAt:d}])=>d-a).slice(0,e),R=()=>x(I),K=async({identifier:e="dev",maxTimeToLiveInMilliseconds:t}={})=>{if(!(typeof window<"u"))throw new o;let{location:{hostname:a}}=window;if(!["127.0.0.1","localhost"].includes(a))throw new s;let l=()=>{if(e.length>32)throw new i(e.length);return new TextEncoder().encode(e.padEnd(32,"0"))},d=async()=>{let n=l(),r=g.generate(n),c=await E.generate({extractable:!1}),p=t??6048e5,f=await w.create(r,c.getPublicKey(),new Date(Date.now()+p));return{identity:v.fromDelegation(c,f),sessionKey:c,delegationChain:f}},u=async()=>{await h(e,n=>{let r=Date.now();return{createdAt:n?.createdAt??r,updatedAt:r}},I)},D=await d();return await u(),D};export{i as UnsafeDevIdentityInvalidIdentifierError,o as UnsafeDevIdentityNotBrowserError,s as UnsafeDevIdentityNotLocalhostError,R as clearDevIdentifiers,K as generateUnsafeDevIdentity,S as loadDevIdentifiers};
+//# sourceMappingURL=dev.js.map

package/dev.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["src/dev/errors.ts", "src/dev/identity.ts"],
+  "sourcesContent": ["export class UnsafeDevIdentityNotBrowserError extends Error {\n  constructor() {\n    super('A dev identity can only be used in browser environments');\n  }\n}\n\nexport class UnsafeDevIdentityNotLocalhostError extends Error {\n  constructor() {\n    super('A dev identity must only be used on localhost (127.0.0.1 or localhost)');\n  }\n}\n\nexport class UnsafeDevIdentityInvalidIdentifierError extends Error {\n  constructor(length: number) {\n    super(`Identifier must be 32 characters or less, got ${length}`);\n  }\n}\n", "import {\n  DelegationChain,\n  DelegationIdentity,\n  ECDSAKeyIdentity,\n  Ed25519KeyIdentity\n} from '@icp-sdk/core/identity';\nimport {clear, createStore, entries, update} from 'idb-keyval';\nimport {DEFAULT_DEV_DELEGATION_IDENTITY_EXPIRATION_IN_MS} from './_constants';\nimport {\n  UnsafeDevIdentityInvalidIdentifierError,\n  UnsafeDevIdentityNotBrowserError,\n  UnsafeDevIdentityNotLocalhostError\n} from './errors';\nimport type {\n  DevIdentifier,\n  DevIdentifierData,\n  GenerateUnsafeIdentityParams,\n  GenerateUnsafeIdentityResult,\n  LoadDevIdentifiersParams\n} from './types/identity';\n\nconst identifiersIdbStore = createStore('juno-dev-identifiers', 'juno-dev-identifiers-store');\n\n/**\n * Load all development identifiers that have been used for authentication.\n *\n * Returns an array of tuples containing the identifier string and metadata (created/updated timestamps),\n * sorted by most recently used first.\n *\n * @param params - Load parameters\n * @param params.limit - Optional maximum number of identifiers to return\n * @returns Promise resolving to array of [identifier, metadata] tuples sorted by updatedAt descending\n *\n * @example\n * const recent = await loadDevIdentifiers({ limit: 5 });\n * // Returns only the 5 most recently used identifiers\n */\nexport const loadDevIdentifiers = async ({limit}: LoadDevIdentifiersParams = {}): Promise<\n  [DevIdentifier, DevIdentifierData][]\n> => {\n  const identifiers = await entries<DevIdentifier, DevIdentifierData>(identifiersIdbStore);\n\n  return identifiers.sort(([_, {updatedAt: a}], [__, {updatedAt: b}]) => b - a).slice(0, limit);\n};\n\n/**\n * Clear all stored development identifiers from IndexedDB.\n * This removes the history of used identifiers but does not affect AuthClient's stored credentials.\n *\n * @returns Promise that resolves when identifiers are cleared\n */\nexport const clearDevIdentifiers = () => clear(identifiersIdbStore);\n\n/**\n * Generate an identity for local development with the Internet Computer.\n *\n * \u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\n * \u26A0\uFE0F UNSAFE - FOR LOCAL DEVELOPMENT ONLY \u26A0\uFE0F\n * \u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\n *\n * Returns the identity, session key, and delegation chain.\n * Consumers must handle storage (e.g. for AuthClient compatibility).\n *\n * @param params - Generation parameters\n * @param params.identifier - Unique identifier string for this dev identity (default: \"dev\")\n * @param params.maxTimeToLiveInMilliseconds - Delegation expiration time in ms (default: 7 days)\n *\n * @returns Promise resolving to object containing identity, sessionKey, and delegationChain\n *\n * @throws {UnsafeDevIdentityNotBrowserError} If called outside browser environment\n * @throws {UnsafeDevIdentityNotLocalhostError} If called outside localhost\n **/\nexport const generateUnsafeDevIdentity = async ({\n  identifier = 'dev',\n  maxTimeToLiveInMilliseconds\n}: GenerateUnsafeIdentityParams = {}): Promise<GenerateUnsafeIdentityResult> => {\n  const isBrowser = (): boolean => typeof window !== `undefined`;\n\n  if (!isBrowser()) {\n    throw new UnsafeDevIdentityNotBrowserError();\n  }\n\n  const {\n    location: {hostname}\n  } = window;\n\n  if (!['127.0.0.1', 'localhost'].includes(hostname)) {\n    throw new UnsafeDevIdentityNotLocalhostError();\n  }\n\n  const generateSeed = (): Uint8Array => {\n    if (identifier.length > 32) {\n      throw new UnsafeDevIdentityInvalidIdentifierError(identifier.length);\n    }\n\n    const encoder = new TextEncoder();\n    return encoder.encode(identifier.padEnd(32, '0'));\n  };\n\n  const generate = async (): Promise<GenerateUnsafeIdentityResult> => {\n    const seedBytes = generateSeed();\n\n    const rootIdentity = Ed25519KeyIdentity.generate(seedBytes);\n    const sessionKey = await ECDSAKeyIdentity.generate({\n      extractable: false\n    });\n\n    const sessionLengthInMilliseconds =\n      maxTimeToLiveInMilliseconds ?? DEFAULT_DEV_DELEGATION_IDENTITY_EXPIRATION_IN_MS;\n\n    const chain = await DelegationChain.create(\n      rootIdentity,\n      sessionKey.getPublicKey(),\n      new Date(Date.now() + sessionLengthInMilliseconds)\n    );\n\n    const delegatedIdentity = DelegationIdentity.fromDelegation(sessionKey, chain);\n\n    return {\n      identity: delegatedIdentity,\n      sessionKey,\n      delegationChain: chain\n    };\n  };\n\n  const saveIdentifierUsage = async () => {\n    await update(\n      identifier,\n      (value) => {\n        const now = Date.now();\n\n        return {\n          createdAt: value?.createdAt ?? now,\n          updatedAt: now\n        };\n      },\n      identifiersIdbStore\n    );\n  };\n\n  const result = await generate();\n\n  await saveIdentifierUsage();\n\n  return result;\n};\n"],
+  "mappings": "AAAO,IAAMA,EAAN,cAA+C,KAAM,CAC1D,aAAc,CACZ,MAAM,yDAAyD,CACjE,CACF,EAEaC,EAAN,cAAiD,KAAM,CAC5D,aAAc,CACZ,MAAM,wEAAwE,CAChF,CACF,EAEaC,EAAN,cAAsD,KAAM,CACjE,YAAYC,EAAgB,CAC1B,MAAM,iDAAiDA,CAAM,EAAE,CACjE,CACF,EChBA,OACE,mBAAAC,EACA,sBAAAC,EACA,oBAAAC,EACA,sBAAAC,MACK,yBACP,OAAQ,SAAAC,EAAO,eAAAC,EAAa,WAAAC,EAAS,UAAAC,MAAa,aAelD,IAAMC,EAAsBC,EAAY,uBAAwB,4BAA4B,EAgB/EC,EAAqB,MAAO,CAAC,MAAAC,CAAK,EAA8B,CAAC,KAGxD,MAAMC,EAA0CJ,CAAmB,GAEpE,KAAK,CAAC,CAACK,EAAG,CAAC,UAAW,CAAC,CAAC,EAAG,CAACC,EAAI,CAAC,UAAWC,CAAC,CAAC,IAAMA,EAAI,CAAC,EAAE,MAAM,EAAGJ,CAAK,EASjFK,EAAsB,IAAMC,EAAMT,CAAmB,EAqBrDU,EAA4B,MAAO,CAC9C,WAAAC,EAAa,MACb,4BAAAC,CACF,EAAkC,CAAC,IAA6C,CAG9E,GAAI,EAF6B,OAAO,OAAW,KAGjD,MAAM,IAAIC,EAGZ,GAAM,CACJ,SAAU,CAAC,SAAAC,CAAQ,CACrB,EAAI,OAEJ,GAAI,CAAC,CAAC,YAAa,WAAW,EAAE,SAASA,CAAQ,EAC/C,MAAM,IAAIC,EAGZ,IAAMC,EAAe,IAAkB,CACrC,GAAIL,EAAW,OAAS,GACtB,MAAM,IAAIM,EAAwCN,EAAW,MAAM,EAIrE,OADgB,IAAI,YAAY,EACjB,OAAOA,EAAW,OAAO,GAAI,GAAG,CAAC,CAClD,EAEMO,EAAW,SAAmD,CAClE,IAAMC,EAAYH,EAAa,EAEzBI,EAAeC,EAAmB,SAASF,CAAS,EACpDG,EAAa,MAAMC,EAAiB,SAAS,CACjD,YAAa,EACf,CAAC,EAEKC,EACJZ,GAA+B,OAE3Ba,EAAQ,MAAMC,EAAgB,OAClCN,EACAE,EAAW,aAAa,EACxB,IAAI,KAAK,KAAK,IAAI,EAAIE,CAA2B,CACnD,EAIA,MAAO,CACL,SAHwBG,EAAmB,eAAeL,EAAYG,CAAK,EAI3E,WAAAH,EACA,gBAAiBG,CACnB,CACF,EAEMG,EAAsB,SAAY,CACtC,MAAMC,EACJlB,EACCmB,GAAU,CACT,IAAMC,EAAM,KAAK,IAAI,EAErB,MAAO,CACL,UAAWD,GAAO,WAAaC,EAC/B,UAAWA,CACb,CACF,EACA/B,CACF,CACF,EAEMgC,EAAS,MAAMd,EAAS,EAE9B,aAAMU,EAAoB,EAEnBI,CACT",
+  "names": ["UnsafeDevIdentityNotBrowserError", "UnsafeDevIdentityNotLocalhostError", "UnsafeDevIdentityInvalidIdentifierError", "length", "DelegationChain", "DelegationIdentity", "ECDSAKeyIdentity", "Ed25519KeyIdentity", "clear", "createStore", "entries", "update", "identifiersIdbStore", "createStore", "loadDevIdentifiers", "limit", "entries", "_", "__", "b", "clearDevIdentifiers", "clear", "generateUnsafeDevIdentity", "identifier", "maxTimeToLiveInMilliseconds", "UnsafeDevIdentityNotBrowserError", "hostname", "UnsafeDevIdentityNotLocalhostError", "generateSeed", "UnsafeDevIdentityInvalidIdentifierError", "generate", "seedBytes", "rootIdentity", "Ed25519KeyIdentity", "sessionKey", "ECDSAKeyIdentity", "sessionLengthInMilliseconds", "chain", "DelegationChain", "DelegationIdentity", "saveIdentifierUsage", "update", "value", "now", "result"]
+}

package/dev.mjs

@@ -0,0 +1,4 @@
+import { createRequire as topLevelCreateRequire } from 'module';
+ const require = topLevelCreateRequire(import.meta.url);
+var o=class extends Error{constructor(){super("A dev identity can only be used in browser environments")}},s=class extends Error{constructor(){super("A dev identity must only be used on localhost (127.0.0.1 or localhost)")}},i=class extends Error{constructor(t){super(`Identifier must be 32 characters or less, got ${t}`)}};import{DelegationChain as w,DelegationIdentity as v,ECDSAKeyIdentity as E,Ed25519KeyIdentity as g}from"@icp-sdk/core/identity";import{clear as x,createStore as A,entries as _,update as h}from"idb-keyval";var I=A("juno-dev-identifiers","juno-dev-identifiers-store"),S=async({limit:e}={})=>(await _(I)).sort(([y,{updatedAt:a}],[l,{updatedAt:d}])=>d-a).slice(0,e),R=()=>x(I),K=async({identifier:e="dev",maxTimeToLiveInMilliseconds:t}={})=>{if(!(typeof window<"u"))throw new o;let{location:{hostname:a}}=window;if(!["127.0.0.1","localhost"].includes(a))throw new s;let l=()=>{if(e.length>32)throw new i(e.length);return new TextEncoder().encode(e.padEnd(32,"0"))},d=async()=>{let n=l(),r=g.generate(n),c=await E.generate({extractable:!1}),p=t??6048e5,f=await w.create(r,c.getPublicKey(),new Date(Date.now()+p));return{identity:v.fromDelegation(c,f),sessionKey:c,delegationChain:f}},u=async()=>{await h(e,n=>{let r=Date.now();return{createdAt:n?.createdAt??r,updatedAt:r}},I)},D=await d();return await u(),D};export{i as UnsafeDevIdentityInvalidIdentifierError,o as UnsafeDevIdentityNotBrowserError,s as UnsafeDevIdentityNotLocalhostError,R as clearDevIdentifiers,K as generateUnsafeDevIdentity,S as loadDevIdentifiers};
+//# sourceMappingURL=dev.mjs.map

package/dev.mjs.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["src/dev/errors.ts", "src/dev/identity.ts"],
+  "sourcesContent": ["export class UnsafeDevIdentityNotBrowserError extends Error {\n  constructor() {\n    super('A dev identity can only be used in browser environments');\n  }\n}\n\nexport class UnsafeDevIdentityNotLocalhostError extends Error {\n  constructor() {\n    super('A dev identity must only be used on localhost (127.0.0.1 or localhost)');\n  }\n}\n\nexport class UnsafeDevIdentityInvalidIdentifierError extends Error {\n  constructor(length: number) {\n    super(`Identifier must be 32 characters or less, got ${length}`);\n  }\n}\n", "import {\n  DelegationChain,\n  DelegationIdentity,\n  ECDSAKeyIdentity,\n  Ed25519KeyIdentity\n} from '@icp-sdk/core/identity';\nimport {clear, createStore, entries, update} from 'idb-keyval';\nimport {DEFAULT_DEV_DELEGATION_IDENTITY_EXPIRATION_IN_MS} from './_constants';\nimport {\n  UnsafeDevIdentityInvalidIdentifierError,\n  UnsafeDevIdentityNotBrowserError,\n  UnsafeDevIdentityNotLocalhostError\n} from './errors';\nimport type {\n  DevIdentifier,\n  DevIdentifierData,\n  GenerateUnsafeIdentityParams,\n  GenerateUnsafeIdentityResult,\n  LoadDevIdentifiersParams\n} from './types/identity';\n\nconst identifiersIdbStore = createStore('juno-dev-identifiers', 'juno-dev-identifiers-store');\n\n/**\n * Load all development identifiers that have been used for authentication.\n *\n * Returns an array of tuples containing the identifier string and metadata (created/updated timestamps),\n * sorted by most recently used first.\n *\n * @param params - Load parameters\n * @param params.limit - Optional maximum number of identifiers to return\n * @returns Promise resolving to array of [identifier, metadata] tuples sorted by updatedAt descending\n *\n * @example\n * const recent = await loadDevIdentifiers({ limit: 5 });\n * // Returns only the 5 most recently used identifiers\n */\nexport const loadDevIdentifiers = async ({limit}: LoadDevIdentifiersParams = {}): Promise<\n  [DevIdentifier, DevIdentifierData][]\n> => {\n  const identifiers = await entries<DevIdentifier, DevIdentifierData>(identifiersIdbStore);\n\n  return identifiers.sort(([_, {updatedAt: a}], [__, {updatedAt: b}]) => b - a).slice(0, limit);\n};\n\n/**\n * Clear all stored development identifiers from IndexedDB.\n * This removes the history of used identifiers but does not affect AuthClient's stored credentials.\n *\n * @returns Promise that resolves when identifiers are cleared\n */\nexport const clearDevIdentifiers = () => clear(identifiersIdbStore);\n\n/**\n * Generate an identity for local development with the Internet Computer.\n *\n * \u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\n * \u26A0\uFE0F UNSAFE - FOR LOCAL DEVELOPMENT ONLY \u26A0\uFE0F\n * \u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\u26A0\uFE0F\n *\n * Returns the identity, session key, and delegation chain.\n * Consumers must handle storage (e.g. for AuthClient compatibility).\n *\n * @param params - Generation parameters\n * @param params.identifier - Unique identifier string for this dev identity (default: \"dev\")\n * @param params.maxTimeToLiveInMilliseconds - Delegation expiration time in ms (default: 7 days)\n *\n * @returns Promise resolving to object containing identity, sessionKey, and delegationChain\n *\n * @throws {UnsafeDevIdentityNotBrowserError} If called outside browser environment\n * @throws {UnsafeDevIdentityNotLocalhostError} If called outside localhost\n **/\nexport const generateUnsafeDevIdentity = async ({\n  identifier = 'dev',\n  maxTimeToLiveInMilliseconds\n}: GenerateUnsafeIdentityParams = {}): Promise<GenerateUnsafeIdentityResult> => {\n  const isBrowser = (): boolean => typeof window !== `undefined`;\n\n  if (!isBrowser()) {\n    throw new UnsafeDevIdentityNotBrowserError();\n  }\n\n  const {\n    location: {hostname}\n  } = window;\n\n  if (!['127.0.0.1', 'localhost'].includes(hostname)) {\n    throw new UnsafeDevIdentityNotLocalhostError();\n  }\n\n  const generateSeed = (): Uint8Array => {\n    if (identifier.length > 32) {\n      throw new UnsafeDevIdentityInvalidIdentifierError(identifier.length);\n    }\n\n    const encoder = new TextEncoder();\n    return encoder.encode(identifier.padEnd(32, '0'));\n  };\n\n  const generate = async (): Promise<GenerateUnsafeIdentityResult> => {\n    const seedBytes = generateSeed();\n\n    const rootIdentity = Ed25519KeyIdentity.generate(seedBytes);\n    const sessionKey = await ECDSAKeyIdentity.generate({\n      extractable: false\n    });\n\n    const sessionLengthInMilliseconds =\n      maxTimeToLiveInMilliseconds ?? DEFAULT_DEV_DELEGATION_IDENTITY_EXPIRATION_IN_MS;\n\n    const chain = await DelegationChain.create(\n      rootIdentity,\n      sessionKey.getPublicKey(),\n      new Date(Date.now() + sessionLengthInMilliseconds)\n    );\n\n    const delegatedIdentity = DelegationIdentity.fromDelegation(sessionKey, chain);\n\n    return {\n      identity: delegatedIdentity,\n      sessionKey,\n      delegationChain: chain\n    };\n  };\n\n  const saveIdentifierUsage = async () => {\n    await update(\n      identifier,\n      (value) => {\n        const now = Date.now();\n\n        return {\n          createdAt: value?.createdAt ?? now,\n          updatedAt: now\n        };\n      },\n      identifiersIdbStore\n    );\n  };\n\n  const result = await generate();\n\n  await saveIdentifierUsage();\n\n  return result;\n};\n"],
+  "mappings": ";;AAAO,IAAMA,EAAN,cAA+C,KAAM,CAC1D,aAAc,CACZ,MAAM,yDAAyD,CACjE,CACF,EAEaC,EAAN,cAAiD,KAAM,CAC5D,aAAc,CACZ,MAAM,wEAAwE,CAChF,CACF,EAEaC,EAAN,cAAsD,KAAM,CACjE,YAAYC,EAAgB,CAC1B,MAAM,iDAAiDA,CAAM,EAAE,CACjE,CACF,EChBA,OACE,mBAAAC,EACA,sBAAAC,EACA,oBAAAC,EACA,sBAAAC,MACK,yBACP,OAAQ,SAAAC,EAAO,eAAAC,EAAa,WAAAC,EAAS,UAAAC,MAAa,aAelD,IAAMC,EAAsBC,EAAY,uBAAwB,4BAA4B,EAgB/EC,EAAqB,MAAO,CAAC,MAAAC,CAAK,EAA8B,CAAC,KAGxD,MAAMC,EAA0CJ,CAAmB,GAEpE,KAAK,CAAC,CAACK,EAAG,CAAC,UAAW,CAAC,CAAC,EAAG,CAACC,EAAI,CAAC,UAAWC,CAAC,CAAC,IAAMA,EAAI,CAAC,EAAE,MAAM,EAAGJ,CAAK,EASjFK,EAAsB,IAAMC,EAAMT,CAAmB,EAqBrDU,EAA4B,MAAO,CAC9C,WAAAC,EAAa,MACb,4BAAAC,CACF,EAAkC,CAAC,IAA6C,CAG9E,GAAI,EAF6B,OAAO,OAAW,KAGjD,MAAM,IAAIC,EAGZ,GAAM,CACJ,SAAU,CAAC,SAAAC,CAAQ,CACrB,EAAI,OAEJ,GAAI,CAAC,CAAC,YAAa,WAAW,EAAE,SAASA,CAAQ,EAC/C,MAAM,IAAIC,EAGZ,IAAMC,EAAe,IAAkB,CACrC,GAAIL,EAAW,OAAS,GACtB,MAAM,IAAIM,EAAwCN,EAAW,MAAM,EAIrE,OADgB,IAAI,YAAY,EACjB,OAAOA,EAAW,OAAO,GAAI,GAAG,CAAC,CAClD,EAEMO,EAAW,SAAmD,CAClE,IAAMC,EAAYH,EAAa,EAEzBI,EAAeC,EAAmB,SAASF,CAAS,EACpDG,EAAa,MAAMC,EAAiB,SAAS,CACjD,YAAa,EACf,CAAC,EAEKC,EACJZ,GAA+B,OAE3Ba,EAAQ,MAAMC,EAAgB,OAClCN,EACAE,EAAW,aAAa,EACxB,IAAI,KAAK,KAAK,IAAI,EAAIE,CAA2B,CACnD,EAIA,MAAO,CACL,SAHwBG,EAAmB,eAAeL,EAAYG,CAAK,EAI3E,WAAAH,EACA,gBAAiBG,CACnB,CACF,EAEMG,EAAsB,SAAY,CACtC,MAAMC,EACJlB,EACCmB,GAAU,CACT,IAAMC,EAAM,KAAK,IAAI,EAErB,MAAO,CACL,UAAWD,GAAO,WAAaC,EAC/B,UAAWA,CACb,CACF,EACA/B,CACF,CACF,EAEMgC,EAAS,MAAMd,EAAS,EAE9B,aAAMU,EAAoB,EAEnBI,CACT",
+  "names": ["UnsafeDevIdentityNotBrowserError", "UnsafeDevIdentityNotLocalhostError", "UnsafeDevIdentityInvalidIdentifierError", "length", "DelegationChain", "DelegationIdentity", "ECDSAKeyIdentity", "Ed25519KeyIdentity", "clear", "createStore", "entries", "update", "identifiersIdbStore", "createStore", "loadDevIdentifiers", "limit", "entries", "_", "__", "b", "clearDevIdentifiers", "clear", "generateUnsafeDevIdentity", "identifier", "maxTimeToLiveInMilliseconds", "UnsafeDevIdentityNotBrowserError", "hostname", "UnsafeDevIdentityNotLocalhostError", "generateSeed", "UnsafeDevIdentityInvalidIdentifierError", "generate", "seedBytes", "rootIdentity", "Ed25519KeyIdentity", "sessionKey", "ECDSAKeyIdentity", "sessionLengthInMilliseconds", "chain", "DelegationChain", "DelegationIdentity", "saveIdentifierUsage", "update", "value", "now", "result"]
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@junobuild/ic-client",
-  "version": "7.1.1",
+  "version": "7.2.0-next-2026-02-10",
   "description": "Agent and actor with generated bindings for Juno on the Internet Computer",
   "author": "David Dal Busco (https://daviddalbusco.com)",
   "license": "MIT",
@@ -28,6 +28,11 @@
       "types": "./utils.d.ts",
       "import": "./utils.js",
       "require": "./utils.mjs"
+    },
+    "./dev": {
+      "types": "./dev.d.ts",
+      "import": "./dev.js",
+      "require": "./dev.mjs"
     }
   },
   "files": [
@@ -72,7 +77,8 @@
   ],
   "homepage": "https://juno.build",
   "peerDependencies": {
-    "@dfinity/utils": "^4.1",
-    "@icp-sdk/core": "^5"
+    "@dfinity/utils": "*",
+    "@icp-sdk/core": "*",
+    "idb-keyval": "*"
   }
-}
+}