@kaiz11/stack-client 0.0.14

package/dist/db/types.d.ts

@@ -0,0 +1,73 @@
+export interface DbResponse<T> {
+    data: T[] | null;
+    error: unknown | null;
+    count: number | null;
+    status: number;
+    statusText: string;
+}
+export interface DbSingleResponse<T> {
+    data: T | null;
+    error: unknown | null;
+    count: number | null;
+    status: number;
+    statusText: string;
+}
+export interface IQueryBuilder<T = unknown> {
+    select(columns?: string, options?: {
+        count?: string;
+        head?: boolean;
+    }): IQueryBuilder<T>;
+    insert(values: Partial<T> | Partial<T>[], options?: {
+        onConflict?: string;
+        count?: string;
+    }): IQueryBuilder<T>;
+    update(values: Partial<T>, options?: {
+        count?: string;
+    }): IQueryBuilder<T>;
+    delete(options?: {
+        count?: string;
+    }): IQueryBuilder<T>;
+    upsert(values: Partial<T> | Partial<T>[], options?: {
+        onConflict?: string;
+        count?: string;
+    }): IQueryBuilder<T>;
+    eq(column: string, value: unknown): IQueryBuilder<T>;
+    neq(column: string, value: unknown): IQueryBuilder<T>;
+    gt(column: string, value: unknown): IQueryBuilder<T>;
+    gte(column: string, value: unknown): IQueryBuilder<T>;
+    lt(column: string, value: unknown): IQueryBuilder<T>;
+    lte(column: string, value: unknown): IQueryBuilder<T>;
+    like(column: string, pattern: string): IQueryBuilder<T>;
+    ilike(column: string, pattern: string): IQueryBuilder<T>;
+    is(column: string, value: unknown): IQueryBuilder<T>;
+    in(column: string, values: unknown[]): IQueryBuilder<T>;
+    contains(column: string, value: unknown): IQueryBuilder<T>;
+    containedBy(column: string, value: unknown): IQueryBuilder<T>;
+    overlaps(column: string, value: unknown): IQueryBuilder<T>;
+    textSearch(column: string, query: string, options?: unknown): IQueryBuilder<T>;
+    filter(column: string, operator: string, value: unknown): IQueryBuilder<T>;
+    or(filters: string, options?: {
+        referencedTable?: string;
+    }): IQueryBuilder<T>;
+    and(filters: string, options?: {
+        referencedTable?: string;
+    }): IQueryBuilder<T>;
+    order(column: string, options?: {
+        ascending?: boolean;
+        nullsFirst?: boolean;
+    }): IQueryBuilder<T>;
+    limit(count: number): IQueryBuilder<T>;
+    range(from: number, to: number): IQueryBuilder<T>;
+    single(): PromiseLike<DbSingleResponse<T>>;
+    maybeSingle(): PromiseLike<DbSingleResponse<T>>;
+    then<TResult = DbResponse<T>>(onfulfilled?: (value: DbResponse<T>) => TResult | PromiseLike<TResult>, onrejected?: (reason: unknown) => TResult | PromiseLike<TResult>): Promise<TResult>;
+}
+export interface IDbClient {
+    from<T = unknown>(table: string): IQueryBuilder<T>;
+    rpc<T = unknown>(fn: string, params?: Record<string, unknown>, options?: {
+        count?: string;
+        head?: boolean;
+    }): PromiseLike<T>;
+    schema(name: string): IDbClient;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/db/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/db/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,UAAU,CAAC,CAAC;IAC3B,IAAI,EAAE,CAAC,EAAE,GAAG,IAAI,CAAC;IACjB,KAAK,EAAE,OAAO,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB,CAAC,CAAC;IACjC,IAAI,EAAE,CAAC,GAAG,IAAI,CAAC;IACf,KAAK,EAAE,OAAO,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,aAAa,CAAC,CAAC,GAAG,OAAO;IACxC,MAAM,CACJ,OAAO,CAAC,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,OAAO,CAAA;KAAE,GAC3C,aAAa,CAAC,CAAC,CAAC,CAAC;IAEpB,MAAM,CACJ,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,EAAE,EACjC,OAAO,CAAC,EAAE;QAAE,UAAU,CAAC,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAChD,aAAa,CAAC,CAAC,CAAC,CAAC;IAEpB,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAE3E,MAAM,CAAC,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAEvD,MAAM,CACJ,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,EAAE,EACjC,OAAO,CAAC,EAAE;QAAE,UAAU,CAAC,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAChD,aAAa,CAAC,CAAC,CAAC,CAAC;IAEpB,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACrD,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACtD,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACrD,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACtD,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACrD,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACtD,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACxD,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACzD,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACrD,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACxD,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAC3D,WAAW,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAC9D,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAC3D,UAAU,CACR,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,MAAM,EACb,OAAO,CAAC,EAAE,OAAO,GAChB,aAAa,CAAC,CAAC,CAAC,CAAC;IACpB,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAE3E,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,eAAe,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAC9E,GAAG,CACD,OAAO,EAAE,MAAM,EACf,OAAO,CAAC,EAAE;QAAE,eAAe,CAAC,EAAE,MAAM,CAAA;KAAE,GACrC,aAAa,CAAC,CAAC,CAAC,CAAC;IAEpB,KAAK,CACH,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,OAAO,CAAC;QAAC,UAAU,CAAC,EAAE,OAAO,CAAA;KAAE,GACtD,aAAa,CAAC,CAAC,CAAC,CAAC;IACpB,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACvC,KAAK,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAElD,MAAM,IAAI,WAAW,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;IAC3C,WAAW,IAAI,WAAW,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;IAEhD,IAAI,CAAC,OAAO,GAAG,UAAU,CAAC,CAAC,CAAC,EAC1B,WAAW,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,KAAK,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,EACtE,UAAU,CAAC,EAAE,CAAC,MAAM,EAAE,OAAO,KAAK,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,GAC/D,OAAO,CAAC,OAAO,CAAC,CAAC;CACrB;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,CAAC,CAAC,GAAG,OAAO,EAAE,KAAK,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAEnD,GAAG,CAAC,CAAC,GAAG,OAAO,EACb,EAAE,EAAE,MAAM,EACV,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAChC,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,OAAO,CAAA;KAAE,GAC3C,WAAW,CAAC,CAAC,CAAC,CAAC;IAElB,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;CACjC"}

package/dist/db/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/db/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/db/types.ts"],"names":[],"mappings":""}

package/dist/index.d.ts

@@ -0,0 +1,21 @@
+export { StackClient, createClient, createTenantClient, createPlatformClient, } from "./client.js";
+export { MemoryTokenStore, LocalStorageTokenStore } from "./lib/token-store.js";
+export type { ClientConfig, ResolvedClientConfig, TokenStore, TokenStoreType, MockOptions, } from "./types.js";
+export { PLATFORM_TENANT_ID } from "./types.js";
+export type { IAuthClient, Session, User, UserIdentity, Factor, FactorType, FactorStatus, AuthChangeEvent, AuthChangeCallback, Unsubscribe, EmailPasswordCredentials, SignUpOptions, SignUpResult, LogoutScope, } from "./auth/index.js";
+export { StackError, AuthError, NetworkError } from "./lib/errors.js";
+export { StorageError } from "./storage/index.js";
+export { AnonKeyError } from "./lib/keys.js";
+export { fetchAnonKey, fetchAnonKeyCached, clearAnonKeyCache, buildPublicKeyUrl, } from "./lib/keys.js";
+export type { IStorageClient, IBucketRef, Bucket, CreateBucketOptions, UpdateBucketOptions, StorageObject, ObjectMetadata, FileBody, UploadOptions, UploadResult, DownloadOptions, ImageTransformOptions, ListOptions, ListV2Options, ListV2Result, SignedUrl, SignedUrlOptions, SignedUploadUrl, SignedUploadUrlOptions, PublicUrlOptions, MoveOptions, CopyOptions, CopyResult, TusUpload, TusUploadOptions, TusProgress, IStoragePoliciesClient, PolicyCommand, PolicyAction, PolicyTemplate, StoragePolicyInput, StoragePolicy, StoragePolicySet, } from "./storage/index.js";
+export { generatePolicySet } from "./storage/index.js";
+export type { IAccountsClient, Account, AccountMember, AccountRole, AccountRoleInfo, CreateAccountOptions, UpdateAccountOptions, GetMembersOptions, UpdateMemberRoleOptions, Invitation, InvitationLookup, AcceptedInvitation, InvitationType, CreateInvitationOptions, GetInvitationsOptions, } from "./accounts/index.js";
+export { mockState, requestCounts } from "./mocks/state.js";
+export type { MockState, RequestCounts } from "./mocks/state.js";
+export { mockStorageState, storageRequestCounts } from "./storage/index.js";
+export type { MockStorageState } from "./storage/index.js";
+export { mockAccountsState, accountsRequestCounts } from "./accounts/index.js";
+export type { MockAccountsState } from "./accounts/index.js";
+export { PostgrestClient, createDbClient, DbError, mockDbState, dbRequestCounts, resetMockDbState, } from "./db/index.js";
+export type { PostgrestQueryBuilder, PostgrestFilterBuilder, PostgrestTransformBuilder, PostgrestBuilder, PostgrestResponse, PostgrestSingleResponse, PostgrestMaybeSingleResponse, PostgrestError, DbClientConfig, MockDbState, DbRequestCounts, IDbClient, IQueryBuilder, DbResponse, DbSingleResponse, } from "./db/index.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EACL,WAAW,EACX,YAAY,EACZ,kBAAkB,EAClB,oBAAoB,GACrB,MAAM,aAAa,CAAC;AAGrB,OAAO,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC;AAKhF,YAAY,EACV,YAAY,EACZ,oBAAoB,EACpB,UAAU,EACV,cAAc,EACd,WAAW,GACZ,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAGhD,YAAY,EACV,WAAW,EACX,OAAO,EACP,IAAI,EACJ,YAAY,EACZ,MAAM,EACN,UAAU,EACV,YAAY,EACZ,eAAe,EACf,kBAAkB,EAClB,WAAW,EACX,wBAAwB,EACxB,aAAa,EACb,YAAY,EACZ,WAAW,GACZ,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAG7C,OAAO,EACL,YAAY,EACZ,kBAAkB,EAClB,iBAAiB,EACjB,iBAAiB,GAClB,MAAM,eAAe,CAAC;AAGvB,YAAY,EACV,cAAc,EACd,UAAU,EACV,MAAM,EACN,mBAAmB,EACnB,mBAAmB,EACnB,aAAa,EACb,cAAc,EACd,QAAQ,EACR,aAAa,EACb,YAAY,EACZ,eAAe,EACf,qBAAqB,EACrB,WAAW,EACX,aAAa,EACb,YAAY,EACZ,SAAS,EACT,gBAAgB,EAChB,eAAe,EACf,sBAAsB,EACtB,gBAAgB,EAChB,WAAW,EACX,WAAW,EACX,UAAU,EACV,SAAS,EACT,gBAAgB,EAChB,WAAW,EAEX,sBAAsB,EACtB,aAAa,EACb,YAAY,EACZ,cAAc,EACd,kBAAkB,EAClB,aAAa,EACb,gBAAgB,GACjB,MAAM,oBAAoB,CAAC;AAG5B,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAGvD,YAAY,EACV,eAAe,EACf,OAAO,EACP,aAAa,EACb,WAAW,EACX,eAAe,EACf,oBAAoB,EACpB,oBAAoB,EACpB,iBAAiB,EACjB,uBAAuB,EAEvB,UAAU,EACV,gBAAgB,EAChB,kBAAkB,EAClB,cAAc,EACd,uBAAuB,EACvB,qBAAqB,GACtB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAC5D,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAEjE,OAAO,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAC5E,YAAY,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAE3D,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,qBAAqB,CAAC;AAC/E,YAAY,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAE7D,OAAO,EACL,eAAe,EACf,cAAc,EACd,OAAO,EACP,WAAW,EACX,eAAe,EACf,gBAAgB,GACjB,MAAM,eAAe,CAAC;AACvB,YAAY,EACV,qBAAqB,EACrB,sBAAsB,EACtB,yBAAyB,EACzB,gBAAgB,EAChB,iBAAiB,EACjB,uBAAuB,EACvB,4BAA4B,EAC5B,cAAc,EACd,cAAc,EACd,WAAW,EACX,eAAe,EACf,SAAS,EACT,aAAa,EACb,UAAU,EACV,gBAAgB,GACjB,MAAM,eAAe,CAAC"}

package/dist/index.js

@@ -0,0 +1,20 @@
+// Main client exports
+export { StackClient, createClient, createTenantClient, createPlatformClient, } from "./client.js";
+// Token store exports
+export { MemoryTokenStore, LocalStorageTokenStore } from "./lib/token-store.js";
+// Constants
+export { PLATFORM_TENANT_ID } from "./types.js";
+// Error exports
+export { StackError, AuthError, NetworkError } from "./lib/errors.js";
+export { StorageError } from "./storage/index.js";
+export { AnonKeyError } from "./lib/keys.js";
+// Key utilities
+export { fetchAnonKey, fetchAnonKeyCached, clearAnonKeyCache, buildPublicKeyUrl, } from "./lib/keys.js";
+// Storage policy helpers
+export { generatePolicySet } from "./storage/index.js";
+// Mock exports (for testing)
+export { mockState, requestCounts } from "./mocks/state.js";
+export { mockStorageState, storageRequestCounts } from "./storage/index.js";
+export { mockAccountsState, accountsRequestCounts } from "./accounts/index.js";
+export { PostgrestClient, createDbClient, DbError, mockDbState, dbRequestCounts, resetMockDbState, } from "./db/index.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,sBAAsB;AACtB,OAAO,EACL,WAAW,EACX,YAAY,EACZ,kBAAkB,EAClB,oBAAoB,GACrB,MAAM,aAAa,CAAC;AAErB,sBAAsB;AACtB,OAAO,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC;AAahF,YAAY;AACZ,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAoBhD,gBAAgB;AAChB,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAE7C,gBAAgB;AAChB,OAAO,EACL,YAAY,EACZ,kBAAkB,EAClB,iBAAiB,EACjB,iBAAiB,GAClB,MAAM,eAAe,CAAC;AAwCvB,yBAAyB;AACzB,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAsBvD,6BAA6B;AAC7B,OAAO,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAG5D,OAAO,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAG5E,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,qBAAqB,CAAC;AAG/E,OAAO,EACL,eAAe,EACf,cAAc,EACd,OAAO,EACP,WAAW,EACX,eAAe,EACf,gBAAgB,GACjB,MAAM,eAAe,CAAC"}

package/dist/lib/errors.d.ts

@@ -0,0 +1,33 @@
+/**
+ * Base error class for all stack-client errors
+ */
+export declare class StackError extends Error {
+    code: string;
+    statusCode?: number | undefined;
+    constructor(message: string, code: string, statusCode?: number | undefined);
+}
+/**
+ * Authentication-related errors
+ */
+export declare class AuthError extends StackError {
+    constructor(message: string, code: string, statusCode?: number);
+    static invalidCredentials(): AuthError;
+    static sessionExpired(): AuthError;
+    static refreshFailed(): AuthError;
+    static notAuthenticated(): AuthError;
+    static userAlreadyExists(): AuthError;
+}
+/**
+ * Network/HTTP errors
+ */
+export declare class NetworkError extends StackError {
+    response?: unknown | undefined;
+    constructor(message: string, code: string, statusCode?: number, response?: unknown | undefined);
+    static timeout(): NetworkError;
+    static connectionFailed(): NetworkError;
+}
+/**
+ * Parse error response from GoTrue/PostgREST
+ */
+export declare function parseErrorResponse(statusCode: number, body: unknown): StackError;
+//# sourceMappingURL=errors.d.ts.map

package/dist/lib/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/lib/errors.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,qBAAa,UAAW,SAAQ,KAAK;IAG1B,IAAI,EAAE,MAAM;IACZ,UAAU,CAAC,EAAE,MAAM;gBAF1B,OAAO,EAAE,MAAM,EACR,IAAI,EAAE,MAAM,EACZ,UAAU,CAAC,EAAE,MAAM,YAAA;CAK7B;AAED;;GAEG;AACH,qBAAa,SAAU,SAAQ,UAAU;gBAC3B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM;IAK9D,MAAM,CAAC,kBAAkB,IAAI,SAAS;IAQtC,MAAM,CAAC,cAAc,IAAI,SAAS;IAIlC,MAAM,CAAC,aAAa,IAAI,SAAS;IAIjC,MAAM,CAAC,gBAAgB,IAAI,SAAS;IAIpC,MAAM,CAAC,iBAAiB,IAAI,SAAS;CAGtC;AAED;;GAEG;AACH,qBAAa,YAAa,SAAQ,UAAU;IAKjC,QAAQ,CAAC,EAAE,OAAO;gBAHzB,OAAO,EAAE,MAAM,EACf,IAAI,EAAE,MAAM,EACZ,UAAU,CAAC,EAAE,MAAM,EACZ,QAAQ,CAAC,EAAE,OAAO,YAAA;IAM3B,MAAM,CAAC,OAAO,IAAI,YAAY;IAI9B,MAAM,CAAC,gBAAgB,IAAI,YAAY;CAGxC;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,OAAO,GACZ,UAAU,CA0BZ"}

package/dist/lib/errors.js

@@ -0,0 +1,76 @@
+/**
+ * Base error class for all stack-client errors
+ */
+export class StackError extends Error {
+    code;
+    statusCode;
+    constructor(message, code, statusCode) {
+        super(message);
+        this.code = code;
+        this.statusCode = statusCode;
+        this.name = "StackError";
+    }
+}
+/**
+ * Authentication-related errors
+ */
+export class AuthError extends StackError {
+    constructor(message, code, statusCode) {
+        super(message, code, statusCode);
+        this.name = "AuthError";
+    }
+    static invalidCredentials() {
+        return new AuthError("Invalid email or password", "invalid_credentials", 401);
+    }
+    static sessionExpired() {
+        return new AuthError("Session has expired", "session_expired", 401);
+    }
+    static refreshFailed() {
+        return new AuthError("Failed to refresh token", "refresh_failed", 401);
+    }
+    static notAuthenticated() {
+        return new AuthError("Not authenticated", "not_authenticated", 401);
+    }
+    static userAlreadyExists() {
+        return new AuthError("User already exists", "user_already_exists", 422);
+    }
+}
+/**
+ * Network/HTTP errors
+ */
+export class NetworkError extends StackError {
+    response;
+    constructor(message, code, statusCode, response) {
+        super(message, code, statusCode);
+        this.response = response;
+        this.name = "NetworkError";
+    }
+    static timeout() {
+        return new NetworkError("Request timed out", "timeout");
+    }
+    static connectionFailed() {
+        return new NetworkError("Connection failed", "connection_failed");
+    }
+}
+/**
+ * Parse error response from GoTrue/PostgREST
+ */
+export function parseErrorResponse(statusCode, body) {
+    // GoTrue format: { code: number, error_code: string, msg: string }
+    // PostgREST format: { message: string, code: string, details?: string }
+    if (typeof body === "object" && body !== null) {
+        const obj = body;
+        // GoTrue format: { code: 422, error_code: "user_already_exists", msg: "..." }
+        if (typeof obj.msg === "string") {
+            const code = typeof obj.error_code === "string" ? obj.error_code : "unknown";
+            return new AuthError(obj.msg, code, statusCode);
+        }
+        // PostgREST format: { message: "...", code: "..." }
+        if (typeof obj.message === "string") {
+            const code = typeof obj.code === "string" ? obj.code : "unknown";
+            return new StackError(obj.message, code, statusCode);
+        }
+    }
+    return new StackError(`Request failed with status ${statusCode}`, "unknown_error", statusCode);
+}
+//# sourceMappingURL=errors.js.map

package/dist/lib/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/lib/errors.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,OAAO,UAAW,SAAQ,KAAK;IAG1B;IACA;IAHT,YACE,OAAe,EACR,IAAY,EACZ,UAAmB;QAE1B,KAAK,CAAC,OAAO,CAAC,CAAC;QAHR,SAAI,GAAJ,IAAI,CAAQ;QACZ,eAAU,GAAV,UAAU,CAAS;QAG1B,IAAI,CAAC,IAAI,GAAG,YAAY,CAAC;IAC3B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,SAAU,SAAQ,UAAU;IACvC,YAAY,OAAe,EAAE,IAAY,EAAE,UAAmB;QAC5D,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;QACjC,IAAI,CAAC,IAAI,GAAG,WAAW,CAAC;IAC1B,CAAC;IAED,MAAM,CAAC,kBAAkB;QACvB,OAAO,IAAI,SAAS,CAClB,2BAA2B,EAC3B,qBAAqB,EACrB,GAAG,CACJ,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,cAAc;QACnB,OAAO,IAAI,SAAS,CAAC,qBAAqB,EAAE,iBAAiB,EAAE,GAAG,CAAC,CAAC;IACtE,CAAC;IAED,MAAM,CAAC,aAAa;QAClB,OAAO,IAAI,SAAS,CAAC,yBAAyB,EAAE,gBAAgB,EAAE,GAAG,CAAC,CAAC;IACzE,CAAC;IAED,MAAM,CAAC,gBAAgB;QACrB,OAAO,IAAI,SAAS,CAAC,mBAAmB,EAAE,mBAAmB,EAAE,GAAG,CAAC,CAAC;IACtE,CAAC;IAED,MAAM,CAAC,iBAAiB;QACtB,OAAO,IAAI,SAAS,CAAC,qBAAqB,EAAE,qBAAqB,EAAE,GAAG,CAAC,CAAC;IAC1E,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,YAAa,SAAQ,UAAU;IAKjC;IAJT,YACE,OAAe,EACf,IAAY,EACZ,UAAmB,EACZ,QAAkB;QAEzB,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;QAF1B,aAAQ,GAAR,QAAQ,CAAU;QAGzB,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;IAC7B,CAAC;IAED,MAAM,CAAC,OAAO;QACZ,OAAO,IAAI,YAAY,CAAC,mBAAmB,EAAE,SAAS,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,CAAC,gBAAgB;QACrB,OAAO,IAAI,YAAY,CAAC,mBAAmB,EAAE,mBAAmB,CAAC,CAAC;IACpE,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAChC,UAAkB,EAClB,IAAa;IAEb,mEAAmE;IACnE,wEAAwE;IAExE,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;QAC9C,MAAM,GAAG,GAAG,IAA+B,CAAC;QAE5C,8EAA8E;QAC9E,IAAI,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,EAAE,CAAC;YAChC,MAAM,IAAI,GACR,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,OAAO,IAAI,SAAS,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;QAClD,CAAC;QAED,oDAAoD;QACpD,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YACpC,MAAM,IAAI,GAAG,OAAO,GAAG,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACjE,OAAO,IAAI,UAAU,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAED,OAAO,IAAI,UAAU,CACnB,8BAA8B,UAAU,EAAE,EAC1C,eAAe,EACf,UAAU,CACX,CAAC;AACJ,CAAC"}

package/dist/lib/http.d.ts

@@ -0,0 +1,81 @@
+import type { TokenStore } from "./token-store.js";
+/**
+ * HTTP client configuration
+ */
+export interface HttpClientConfig {
+    baseUrl: string;
+    tokenStore: TokenStore;
+    timeout?: number;
+}
+/**
+ * Request options
+ */
+export interface RequestOptions {
+    method?: "GET" | "POST" | "PUT" | "PATCH" | "DELETE";
+    headers?: Record<string, string>;
+    body?: unknown;
+    /** Skip adding Authorization header */
+    noAuth?: boolean;
+    /** Custom timeout for this request */
+    timeout?: number;
+}
+/**
+ * Raw request options for non-JSON requests (file uploads, binary downloads)
+ */
+export interface RawRequestOptions {
+    method?: "GET" | "POST" | "PUT" | "PATCH" | "DELETE" | "HEAD";
+    headers?: Record<string, string>;
+    /** Raw body (FormData, Blob, ArrayBuffer, string, etc.) */
+    body?: BodyInit;
+    /** Skip adding Authorization header */
+    noAuth?: boolean;
+    /** Custom timeout for this request */
+    timeout?: number;
+}
+/**
+ * HTTP client with authentication and error handling
+ */
+export declare class HttpClient {
+    private baseUrl;
+    private tokenStore;
+    private defaultTimeout;
+    constructor(config: HttpClientConfig);
+    /**
+     * Make an HTTP request
+     */
+    request<T>(path: string, options?: RequestOptions): Promise<T>;
+    /**
+     * GET request
+     */
+    get<T>(path: string, options?: Omit<RequestOptions, "method" | "body">): Promise<T>;
+    /**
+     * POST request
+     */
+    post<T>(path: string, body?: unknown, options?: Omit<RequestOptions, "method" | "body">): Promise<T>;
+    /**
+     * PUT request
+     */
+    put<T>(path: string, body?: unknown, options?: Omit<RequestOptions, "method" | "body">): Promise<T>;
+    /**
+     * PATCH request
+     */
+    patch<T>(path: string, body?: unknown, options?: Omit<RequestOptions, "method" | "body">): Promise<T>;
+    /**
+     * DELETE request
+     */
+    delete<T>(path: string, options?: Omit<RequestOptions, "method" | "body">): Promise<T>;
+    /**
+     * Raw request for non-JSON operations (file uploads, binary downloads)
+     * Returns the raw Response object for caller to handle
+     */
+    rawRequest(path: string, options?: RawRequestOptions): Promise<Response>;
+    /**
+     * Get current access token (for manual requests)
+     */
+    getAccessToken(): string | null;
+    /**
+     * Get the base URL
+     */
+    getBaseUrl(): string;
+}
+//# sourceMappingURL=http.d.ts.map

package/dist/lib/http.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http.d.ts","sourceRoot":"","sources":["../../src/lib/http.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAEnD;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,UAAU,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,CAAC;IACrD,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,uCAAuC;IACvC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,sCAAsC;IACtC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,GAAG,MAAM,CAAC;IAC9D,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,2DAA2D;IAC3D,IAAI,CAAC,EAAE,QAAQ,CAAC;IAChB,uCAAuC;IACvC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,sCAAsC;IACtC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,qBAAa,UAAU;IACrB,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,cAAc,CAAS;gBAEnB,MAAM,EAAE,gBAAgB;IAOpC;;OAEG;IACG,OAAO,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,GAAE,cAAmB,GAAG,OAAO,CAAC,CAAC,CAAC;IAiExE;;OAEG;IACG,GAAG,CAAC,CAAC,EACT,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,CAAC,GAChD,OAAO,CAAC,CAAC,CAAC;IAIb;;OAEG;IACG,IAAI,CAAC,CAAC,EACV,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,OAAO,EACd,OAAO,CAAC,EAAE,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,CAAC,GAChD,OAAO,CAAC,CAAC,CAAC;IAIb;;OAEG;IACG,GAAG,CAAC,CAAC,EACT,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,OAAO,EACd,OAAO,CAAC,EAAE,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,CAAC,GAChD,OAAO,CAAC,CAAC,CAAC;IAIb;;OAEG;IACG,KAAK,CAAC,CAAC,EACX,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,OAAO,EACd,OAAO,CAAC,EAAE,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,CAAC,GAChD,OAAO,CAAC,CAAC,CAAC;IAIb;;OAEG;IACG,MAAM,CAAC,CAAC,EACZ,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,CAAC,GAChD,OAAO,CAAC,CAAC,CAAC;IAIb;;;OAGG;IACG,UAAU,CACd,IAAI,EAAE,MAAM,EACZ,OAAO,GAAE,iBAAsB,GAC9B,OAAO,CAAC,QAAQ,CAAC;IA6DpB;;OAEG;IACH,cAAc,IAAI,MAAM,GAAG,IAAI;IAI/B;;OAEG;IACH,UAAU,IAAI,MAAM;CAGrB"}

package/dist/lib/http.js

@@ -0,0 +1,163 @@
+import { NetworkError, parseErrorResponse } from "./errors.js";
+/**
+ * HTTP client with authentication and error handling
+ */
+export class HttpClient {
+    baseUrl;
+    tokenStore;
+    defaultTimeout;
+    constructor(config) {
+        // Remove trailing slash from baseUrl
+        this.baseUrl = config.baseUrl.replace(/\/$/, "");
+        this.tokenStore = config.tokenStore;
+        this.defaultTimeout = config.timeout ?? 30000;
+    }
+    /**
+     * Make an HTTP request
+     */
+    async request(path, options = {}) {
+        const { method = "GET", headers = {}, body, noAuth, timeout } = options;
+        const url = `${this.baseUrl}${path}`;
+        const requestHeaders = {
+            "Content-Type": "application/json",
+            ...headers,
+        };
+        // Add Authorization header if authenticated and not explicitly skipped
+        if (!noAuth) {
+            const accessToken = this.tokenStore.getAccessToken();
+            if (accessToken) {
+                requestHeaders["Authorization"] = `Bearer ${accessToken}`;
+            }
+        }
+        // Create abort controller for timeout
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), timeout ?? this.defaultTimeout);
+        try {
+            const response = await fetch(url, {
+                method,
+                headers: requestHeaders,
+                body: body !== undefined ? JSON.stringify(body) : undefined,
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            // Parse response body
+            const contentType = response.headers.get("content-type");
+            let responseBody;
+            if (contentType?.includes("application/json")) {
+                responseBody = await response.json();
+            }
+            else {
+                responseBody = await response.text();
+            }
+            // Handle error responses
+            if (!response.ok) {
+                throw parseErrorResponse(response.status, responseBody);
+            }
+            return responseBody;
+        }
+        catch (error) {
+            clearTimeout(timeoutId);
+            if (error instanceof Error && error.name === "AbortError") {
+                throw NetworkError.timeout();
+            }
+            if (error instanceof TypeError) {
+                throw NetworkError.connectionFailed();
+            }
+            throw error;
+        }
+    }
+    /**
+     * GET request
+     */
+    async get(path, options) {
+        return this.request(path, { ...options, method: "GET" });
+    }
+    /**
+     * POST request
+     */
+    async post(path, body, options) {
+        return this.request(path, { ...options, method: "POST", body });
+    }
+    /**
+     * PUT request
+     */
+    async put(path, body, options) {
+        return this.request(path, { ...options, method: "PUT", body });
+    }
+    /**
+     * PATCH request
+     */
+    async patch(path, body, options) {
+        return this.request(path, { ...options, method: "PATCH", body });
+    }
+    /**
+     * DELETE request
+     */
+    async delete(path, options) {
+        return this.request(path, { ...options, method: "DELETE" });
+    }
+    /**
+     * Raw request for non-JSON operations (file uploads, binary downloads)
+     * Returns the raw Response object for caller to handle
+     */
+    async rawRequest(path, options = {}) {
+        const { method = "GET", headers = {}, body, noAuth, timeout } = options;
+        const url = `${this.baseUrl}${path}`;
+        const requestHeaders = { ...headers };
+        // Add Authorization header if authenticated and not explicitly skipped
+        if (!noAuth) {
+            const accessToken = this.tokenStore.getAccessToken();
+            if (accessToken) {
+                requestHeaders["Authorization"] = `Bearer ${accessToken}`;
+            }
+        }
+        // Create abort controller for timeout
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), timeout ?? this.defaultTimeout);
+        try {
+            const response = await fetch(url, {
+                method,
+                headers: requestHeaders,
+                body,
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            // Handle error responses
+            if (!response.ok) {
+                const contentType = response.headers.get("content-type");
+                let errorBody;
+                if (contentType?.includes("application/json")) {
+                    errorBody = await response.json();
+                }
+                else {
+                    errorBody = await response.text();
+                }
+                throw parseErrorResponse(response.status, errorBody);
+            }
+            return response;
+        }
+        catch (error) {
+            clearTimeout(timeoutId);
+            if (error instanceof Error && error.name === "AbortError") {
+                throw NetworkError.timeout();
+            }
+            if (error instanceof TypeError) {
+                throw NetworkError.connectionFailed();
+            }
+            throw error;
+        }
+    }
+    /**
+     * Get current access token (for manual requests)
+     */
+    getAccessToken() {
+        return this.tokenStore.getAccessToken();
+    }
+    /**
+     * Get the base URL
+     */
+    getBaseUrl() {
+        return this.baseUrl;
+    }
+}
+//# sourceMappingURL=http.js.map

package/dist/lib/http.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http.js","sourceRoot":"","sources":["../../src/lib/http.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAuC/D;;GAEG;AACH,MAAM,OAAO,UAAU;IACb,OAAO,CAAS;IAChB,UAAU,CAAa;IACvB,cAAc,CAAS;IAE/B,YAAY,MAAwB;QAClC,qCAAqC;QACrC,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;QACpC,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAI,IAAY,EAAE,UAA0B,EAAE;QACzD,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE,OAAO,GAAG,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC;QAExE,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,OAAO,GAAG,IAAI,EAAE,CAAC;QACrC,MAAM,cAAc,GAA2B;YAC7C,cAAc,EAAE,kBAAkB;YAClC,GAAG,OAAO;SACX,CAAC;QAEF,uEAAuE;QACvE,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,cAAc,EAAE,CAAC;YACrD,IAAI,WAAW,EAAE,CAAC;gBAChB,cAAc,CAAC,eAAe,CAAC,GAAG,UAAU,WAAW,EAAE,CAAC;YAC5D,CAAC;QACH,CAAC;QAED,sCAAsC;QACtC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAC1B,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EACxB,OAAO,IAAI,IAAI,CAAC,cAAc,CAC/B,CAAC;QAEF,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,MAAM;gBACN,OAAO,EAAE,cAAc;gBACvB,IAAI,EAAE,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;gBAC3D,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,sBAAsB;YACtB,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;YACzD,IAAI,YAAqB,CAAC;YAE1B,IAAI,WAAW,EAAE,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;gBAC9C,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACvC,CAAC;YAED,yBAAyB;YACzB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,kBAAkB,CAAC,QAAQ,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;YAC1D,CAAC;YAED,OAAO,YAAiB,CAAC;QAC3B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC1D,MAAM,YAAY,CAAC,OAAO,EAAE,CAAC;YAC/B,CAAC;YAED,IAAI,KAAK,YAAY,SAAS,EAAE,CAAC;gBAC/B,MAAM,YAAY,CAAC,gBAAgB,EAAE,CAAC;YACxC,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,GAAG,CACP,IAAY,EACZ,OAAiD;QAEjD,OAAO,IAAI,CAAC,OAAO,CAAI,IAAI,EAAE,EAAE,GAAG,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CACR,IAAY,EACZ,IAAc,EACd,OAAiD;QAEjD,OAAO,IAAI,CAAC,OAAO,CAAI,IAAI,EAAE,EAAE,GAAG,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;IACrE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,GAAG,CACP,IAAY,EACZ,IAAc,EACd,OAAiD;QAEjD,OAAO,IAAI,CAAC,OAAO,CAAI,IAAI,EAAE,EAAE,GAAG,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;IACpE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,KAAK,CACT,IAAY,EACZ,IAAc,EACd,OAAiD;QAEjD,OAAO,IAAI,CAAC,OAAO,CAAI,IAAI,EAAE,EAAE,GAAG,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;IACtE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,IAAY,EACZ,OAAiD;QAEjD,OAAO,IAAI,CAAC,OAAO,CAAI,IAAI,EAAE,EAAE,GAAG,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;IACjE,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,UAAU,CACd,IAAY,EACZ,UAA6B,EAAE;QAE/B,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE,OAAO,GAAG,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC;QAExE,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,OAAO,GAAG,IAAI,EAAE,CAAC;QACrC,MAAM,cAAc,GAA2B,EAAE,GAAG,OAAO,EAAE,CAAC;QAE9D,uEAAuE;QACvE,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,cAAc,EAAE,CAAC;YACrD,IAAI,WAAW,EAAE,CAAC;gBAChB,cAAc,CAAC,eAAe,CAAC,GAAG,UAAU,WAAW,EAAE,CAAC;YAC5D,CAAC;QACH,CAAC;QAED,sCAAsC;QACtC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAC1B,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EACxB,OAAO,IAAI,IAAI,CAAC,cAAc,CAC/B,CAAC;QAEF,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,MAAM;gBACN,OAAO,EAAE,cAAc;gBACvB,IAAI;gBACJ,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,yBAAyB;YACzB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;gBACzD,IAAI,SAAkB,CAAC;gBAEvB,IAAI,WAAW,EAAE,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;oBAC9C,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACpC,CAAC;qBAAM,CAAC;oBACN,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACpC,CAAC;gBAED,MAAM,kBAAkB,CAAC,QAAQ,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;YACvD,CAAC;YAED,OAAO,QAAQ,CAAC;QAClB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC1D,MAAM,YAAY,CAAC,OAAO,EAAE,CAAC;YAC/B,CAAC;YAED,IAAI,KAAK,YAAY,SAAS,EAAE,CAAC;gBAC/B,MAAM,YAAY,CAAC,gBAAgB,EAAE,CAAC;YACxC,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACH,cAAc;QACZ,OAAO,IAAI,CAAC,UAAU,CAAC,cAAc,EAAE,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,UAAU;QACR,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;CACF"}

package/dist/lib/keys.d.ts

@@ -0,0 +1,87 @@
+/**
+ * Error thrown when fetching the anon key fails
+ */
+export declare class AnonKeyError extends Error {
+    readonly statusCode?: number | undefined;
+    constructor(message: string, statusCode?: number | undefined);
+}
+/**
+ * Build the public key URL for a tenant
+ *
+ * @param baseUrl - Base URL of the stack (e.g., "https://stack.zenku.app")
+ * @param tenantId - Tenant identifier (default: "_platform")
+ * @returns The full URL to fetch the public key
+ *
+ * @example
+ * ```typescript
+ * const url = buildPublicKeyUrl("https://stack.zenku.app", "acme");
+ * // => "https://stack.zenku.app/tenants/acme/public_key"
+ * ```
+ */
+export declare function buildPublicKeyUrl(baseUrl: string, tenantId?: string): string;
+/**
+ * Fetch the anon key for a tenant
+ *
+ * The anon key is a pre-signed JWT with `role = "anon"` that can be used
+ * for unauthenticated requests. It's designed to be public - security
+ * comes from RLS policies, not from the key being secret.
+ *
+ * The response is cached by the server (Cache-Control: public, max-age=3600).
+ *
+ * @param baseUrl - Base URL of the stack (e.g., "https://stack.zenku.app")
+ * @param tenantId - Tenant identifier (default: "_platform")
+ * @returns The anon key (JWT string)
+ * @throws AnonKeyError if the fetch fails
+ *
+ * @example
+ * ```typescript
+ * import { fetchAnonKey } from "@kaiz11/stack-client";
+ *
+ * // Fetch anon key for a tenant
+ * const anonKey = await fetchAnonKey("https://stack.zenku.app", "acme");
+ *
+ * // Use it for unauthenticated requests
+ * const response = await fetch("https://stack.zenku.app/rest/acme/items", {
+ *   headers: { Authorization: `Bearer ${anonKey}` },
+ * });
+ * ```
+ */
+export declare function fetchAnonKey(baseUrl: string, tenantId?: string): Promise<string>;
+/**
+ * Fetch the anon key with caching
+ *
+ * Same as `fetchAnonKey` but caches the result in memory to avoid
+ * repeated network requests. The cache respects the server's
+ * Cache-Control header (1 hour).
+ *
+ * @param baseUrl - Base URL of the stack
+ * @param tenantId - Tenant identifier (default: "_platform")
+ * @param options - Cache options
+ * @returns The anon key (JWT string)
+ *
+ * @example
+ * ```typescript
+ * // First call fetches from network
+ * const key1 = await fetchAnonKeyCached("https://stack.zenku.app", "acme");
+ *
+ * // Second call returns cached value
+ * const key2 = await fetchAnonKeyCached("https://stack.zenku.app", "acme");
+ *
+ * // Force refresh
+ * const key3 = await fetchAnonKeyCached("https://stack.zenku.app", "acme", {
+ *   forceRefresh: true,
+ * });
+ * ```
+ */
+export declare function fetchAnonKeyCached(baseUrl: string, tenantId?: string, options?: {
+    forceRefresh?: boolean;
+    ttl?: number;
+}): Promise<string>;
+/**
+ * Clear the anon key cache
+ *
+ * @param baseUrl - If provided, only clear cache for this base URL
+ * @param tenantId - If provided with baseUrl, only clear cache for this tenant
+ */
+export declare function clearAnonKeyCache(baseUrl?: string, tenantId?: string): void;
+//# sourceMappingURL=keys.d.ts.map

package/dist/lib/keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"keys.d.ts","sourceRoot":"","sources":["../../src/lib/keys.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,qBAAa,YAAa,SAAQ,KAAK;aAGnB,UAAU,CAAC,EAAE,MAAM;gBADnC,OAAO,EAAE,MAAM,EACC,UAAU,CAAC,EAAE,MAAM,YAAA;CAKtC;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,iBAAiB,CAC/B,OAAO,EAAE,MAAM,EACf,QAAQ,GAAE,MAA2B,GACpC,MAAM,CAGR;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,wBAAsB,YAAY,CAChC,OAAO,EAAE,MAAM,EACf,QAAQ,GAAE,MAA2B,GACpC,OAAO,CAAC,MAAM,CAAC,CAsBjB;AAYD;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,wBAAsB,kBAAkB,CACtC,OAAO,EAAE,MAAM,EACf,QAAQ,GAAE,MAA2B,EACrC,OAAO,CAAC,EAAE;IAAE,YAAY,CAAC,EAAE,OAAO,CAAC;IAAC,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,GACjD,OAAO,CAAC,MAAM,CAAC,CAuBjB;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAY3E"}