@limrun/ui 0.9.0-rc.9 → 0.13.3-rc.1

package/dist/app-store-relay/react.js

@@ -0,0 +1,65 @@
+import { useState as c, useRef as S, useCallback as a, useEffect as E } from "react";
+import { s as b } from "../client-Bk1N3XIF.mjs";
+import "../index-BXg7HdIs.mjs";
+function T({ limbuildApiUrl: r, token: l }) {
+  const [w, o] = c("idle"), [g, u] = c(), [h, d] = c(), [v, p] = c(), [m, s] = c(), e = S(void 0), R = a(async () => {
+    await e.current?.close().catch(() => {
+    }), e.current = void 0, u(void 0), d(void 0), p(void 0), s(void 0), o("idle");
+  }, []);
+  E(() => () => {
+    e.current?.close(), e.current = void 0;
+  }, []);
+  const y = a(
+    async ({ accountName: n, password: i }) => {
+      o("authenticating"), s(void 0), await e.current?.close().catch(() => {
+      });
+      try {
+        const t = await b({
+          limbuildApiUrl: r,
+          token: l,
+          accountName: n,
+          password: i
+        });
+        return e.current = t, u(t), d(t.completeResponse), p(t.twoFactorChallengeResponse), o(t.requiresTwoFactor ? "two-factor-required" : "authenticated"), t;
+      } catch (t) {
+        u(void 0), e.current = void 0, s(f(t)), o("error");
+        return;
+      }
+    },
+    [r, l]
+  ), C = a(async (n) => {
+    const i = e.current;
+    if (!i)
+      throw new Error("Start Apple ID login before submitting a two-factor code.");
+    o("authenticating"), s(void 0);
+    try {
+      const t = await i.finishTwoFactor(n);
+      return o("authenticated"), t;
+    } catch (t) {
+      s(f(t)), o("error");
+      return;
+    }
+  }, []), F = a(async () => {
+    const n = e.current;
+    if (!n)
+      throw new Error("Start Apple ID login before finalizing the Apple session.");
+    return n.finalize();
+  }, []);
+  return {
+    status: w,
+    session: g,
+    completeResponse: h,
+    twoFactorChallengeResponse: v,
+    error: m,
+    startLogin: y,
+    submitTwoFactorCode: C,
+    finalize: F,
+    close: R
+  };
+}
+function f(r) {
+  return r instanceof Error ? r.message : String(r);
+}
+export {
+  T as useAppleIDLogin
+};

package/dist/browser-storage-BJ__DGJ6.mjs

@@ -0,0 +1,202 @@
+const v = "limbuild-device-pairing";
+const d = "pairRecords", m = "limbuild-device-signing";
+const c = "signingAssets";
+function l(e) {
+  return (e ?? "").replace(/-/g, "").replace(/[^a-fA-F0-9]/g, "");
+}
+function f(e) {
+  return (e ?? "").trim();
+}
+async function R(e) {
+  const n = l(e);
+  if (!n) return;
+  const r = await g(v, 1, d, "udid");
+  return p(
+    r.transaction(d, "readonly").objectStore(d).get(n)
+  );
+}
+async function G(e, n = {}) {
+  const r = l(e.udid);
+  if (!r) throw new Error("Cannot store pair record without a UDID.");
+  const t = {
+    ...e,
+    udid: r,
+    productName: n.productName,
+    updatedAt: (/* @__PURE__ */ new Date()).toISOString()
+  }, i = await g(v, 1, d, "udid");
+  return await p(
+    i.transaction(d, "readwrite").objectStore(d).put(t)
+  ), t;
+}
+async function O({
+  deviceUDID: e,
+  bundleID: n,
+  signingMode: r = "development"
+}) {
+  const t = f(n);
+  if (!t) return;
+  const i = l(e), s = await S(I("bundle", t, r));
+  if (s) return s;
+  if (i) {
+    const o = await S(I(i, t, r));
+    if (o) return o;
+  }
+  return (await B(t, r))[0];
+}
+async function V(e = "development") {
+  return (await w()).filter((r) => (r.signingMode ?? "development") === e).sort(
+    (r, t) => new Date(t.updatedAt).getTime() - new Date(r.updatedAt).getTime()
+  )[0];
+}
+async function z(e, n = "development") {
+  return (await w()).filter((t) => !t.certificateID || !t.certificateP12Base64 || (t.signingMode ?? "development") !== n ? !1 : !e || !t.teamID || t.teamID === e).sort((t, i) => new Date(i.updatedAt).getTime() - new Date(t.updatedAt).getTime())[0];
+}
+async function T(e) {
+  const n = f(e.bundleID);
+  if (!n)
+    throw new Error("Cannot store signing assets without a bundle ID.");
+  const r = l(e.deviceUDID), t = e.signingMode ?? "development", i = I("bundle", n, t), s = {
+    ...e,
+    id: i,
+    deviceUDID: r || void 0,
+    signingMode: t,
+    bundleID: n,
+    updatedAt: (/* @__PURE__ */ new Date()).toISOString()
+  }, a = await g(m, 1, c, "id");
+  return await p(
+    a.transaction(c, "readwrite").objectStore(c).put(s)
+  ), s;
+}
+async function B(e, n = "development") {
+  const r = f(e);
+  return r ? (await w()).filter((i) => i.bundleID === r && (i.signingMode ?? "development") === n) : [];
+}
+function U(e, n) {
+  const r = l(n);
+  return !!r && e.provisionedDevices.some((t) => l(t) === r);
+}
+function j(e, n) {
+  const r = f(n), t = f(e.bundleID);
+  if (!r || !t) return !1;
+  if (t === r || t === "*") return !0;
+  if (!t.endsWith(".*")) return !1;
+  const i = t.slice(0, -1);
+  return r.startsWith(i);
+}
+async function M(e) {
+  return P(new Uint8Array(await e.arrayBuffer()));
+}
+function C(e) {
+  const n = atob(e), r = new Uint8Array(n.length);
+  for (let t = 0; t < n.length; t += 1)
+    r[t] = n.charCodeAt(t);
+  return P(r);
+}
+function P(e) {
+  const n = new TextDecoder("latin1").decode(e), r = n.indexOf("<?xml"), t = n.indexOf("</plist>");
+  if (r < 0 || t < r)
+    throw new Error("Provisioning profile plist not found.");
+  const i = n.slice(r, t + 8), s = new DOMParser().parseFromString(i, "application/xml");
+  if (s.querySelector("parsererror"))
+    throw new Error("Provisioning profile plist could not be parsed.");
+  const a = s.querySelector("plist > dict");
+  if (!a)
+    throw new Error("Provisioning profile plist dictionary not found.");
+  const o = A(a);
+  if (!N(o))
+    throw new Error("Provisioning profile plist has an unexpected shape.");
+  const D = N(o.Entitlements) ? o.Entitlements : {}, y = u(D["application-identifier"]), h = E(y);
+  return {
+    name: u(o.Name),
+    uuid: u(o.UUID),
+    teamID: u(D["com.apple.developer.team-identifier"]) ?? b(o.TeamIdentifier)[0],
+    applicationIdentifier: y,
+    bundleID: h,
+    provisionedDevices: b(o.ProvisionedDevices),
+    getTaskAllow: _(D["get-task-allow"]),
+    expirationDate: u(o.ExpirationDate)
+  };
+}
+async function S(e) {
+  if (!e) return;
+  const n = await g(m, 1, c, "id");
+  return p(
+    n.transaction(c, "readonly").objectStore(c).get(e)
+  );
+}
+async function w() {
+  const e = await g(m, 1, c, "id");
+  return p(
+    e.transaction(c, "readonly").objectStore(c).getAll()
+  );
+}
+function I(e, n, r) {
+  return `${r}:${e}:${n}`;
+}
+function E(e) {
+  if (!e) return;
+  const n = e.indexOf(".");
+  return n >= 0 ? e.slice(n + 1) : void 0;
+}
+function A(e) {
+  switch (e.tagName) {
+    case "dict":
+      return x(e);
+    case "array":
+      return Array.from(e.children).map(A);
+    case "string":
+    case "date":
+      return e.textContent ?? "";
+    default:
+      return e.textContent ?? "";
+  }
+}
+function x(e) {
+  const n = {}, r = Array.from(e.children);
+  for (let t = 0; t < r.length; t += 2) {
+    const i = r[t], s = r[t + 1];
+    !i || i.tagName !== "key" || !s || (n[i.textContent ?? ""] = A(s));
+  }
+  return n;
+}
+function u(e) {
+  return typeof e == "string" && e ? e : void 0;
+}
+function b(e) {
+  return Array.isArray(e) ? e.filter((n) => typeof n == "string") : [];
+}
+function _(e) {
+  return typeof e == "boolean" ? e : void 0;
+}
+function N(e) {
+  return typeof e == "object" && e !== null && !Array.isArray(e);
+}
+function g(e, n, r, t) {
+  return new Promise((i, s) => {
+    const a = indexedDB.open(e, n);
+    a.onupgradeneeded = () => {
+      const o = a.result;
+      o.objectStoreNames.contains(r) || o.createObjectStore(r, { keyPath: t });
+    }, a.onsuccess = () => i(a.result), a.onerror = () => s(a.error ?? new Error("Open IndexedDB failed"));
+  });
+}
+function p(e) {
+  return new Promise((n, r) => {
+    e.onsuccess = () => n(e.result), e.onerror = () => r(e.error ?? new Error("IndexedDB request failed"));
+  });
+}
+export {
+  T as a,
+  j as b,
+  U as c,
+  z as d,
+  O as e,
+  C as f,
+  V as g,
+  P as h,
+  f as i,
+  R as j,
+  G as k,
+  l as n,
+  M as p
+};

package/dist/browser-storage-C1jQLXat.js

@@ -0,0 +1 @@
+"use strict";const b="limbuild-device-pairing";const l="pairRecords",m="limbuild-device-signing";const c="signingAssets";function d(e){return(e??"").replace(/-/g,"").replace(/[^a-fA-F0-9]/g,"")}function u(e){return(e??"").trim()}async function h(e){const n=d(e);if(!n)return;const r=await g(b,1,l,"udid");return p(r.transaction(l,"readonly").objectStore(l).get(n))}async function E(e,n={}){const r=d(e.udid);if(!r)throw new Error("Cannot store pair record without a UDID.");const t={...e,udid:r,productName:n.productName,updatedAt:new Date().toISOString()},i=await g(b,1,l,"udid");return await p(i.transaction(l,"readwrite").objectStore(l).put(t)),t}async function x({deviceUDID:e,bundleID:n,signingMode:r="development"}){const t=u(n);if(!t)return;const i=d(e),s=await v(I("bundle",t,r));if(s)return s;if(i){const o=await v(I(i,t,r));if(o)return o}return(await O(t,r))[0]}async function _(e="development"){return(await A()).filter(r=>(r.signingMode??"development")===e).sort((r,t)=>new Date(t.updatedAt).getTime()-new Date(r.updatedAt).getTime())[0]}async function R(e,n="development"){return(await A()).filter(t=>!t.certificateID||!t.certificateP12Base64||(t.signingMode??"development")!==n?!1:!e||!t.teamID||t.teamID===e).sort((t,i)=>new Date(i.updatedAt).getTime()-new Date(t.updatedAt).getTime())[0]}async function G(e){const n=u(e.bundleID);if(!n)throw new Error("Cannot store signing assets without a bundle ID.");const r=d(e.deviceUDID),t=e.signingMode??"development",i=I("bundle",n,t),s={...e,id:i,deviceUDID:r||void 0,signingMode:t,bundleID:n,updatedAt:new Date().toISOString()},a=await g(m,1,c,"id");return await p(a.transaction(c,"readwrite").objectStore(c).put(s)),s}async function O(e,n="development"){const r=u(e);return r?(await A()).filter(i=>i.bundleID===r&&(i.signingMode??"development")===n):[]}function z(e,n){const r=d(n);return!!r&&e.provisionedDevices.some(t=>d(t)===r)}function U(e,n){const r=u(n),t=u(e.bundleID);if(!r||!t)return!1;if(t===r||t==="*")return!0;if(!t.endsWith(".*"))return!1;const i=t.slice(0,-1);return r.startsWith(i)}async function V(e){return w(new Uint8Array(await e.arrayBuffer()))}function C(e){const n=atob(e),r=new Uint8Array(n.length);for(let t=0;t<n.length;t+=1)r[t]=n.charCodeAt(t);return w(r)}function w(e){const n=new TextDecoder("latin1").decode(e),r=n.indexOf("<?xml"),t=n.indexOf("</plist>");if(r<0||t<r)throw new Error("Provisioning profile plist not found.");const i=n.slice(r,t+8),s=new DOMParser().parseFromString(i,"application/xml");if(s.querySelector("parsererror"))throw new Error("Provisioning profile plist could not be parsed.");const a=s.querySelector("plist > dict");if(!a)throw new Error("Provisioning profile plist dictionary not found.");const o=S(a);if(!P(o))throw new Error("Provisioning profile plist has an unexpected shape.");const D=P(o.Entitlements)?o.Entitlements:{},y=f(D["application-identifier"]),B=M(y);return{name:f(o.Name),uuid:f(o.UUID),teamID:f(D["com.apple.developer.team-identifier"])??N(o.TeamIdentifier)[0],applicationIdentifier:y,bundleID:B,provisionedDevices:N(o.ProvisionedDevices),getTaskAllow:j(D["get-task-allow"]),expirationDate:f(o.ExpirationDate)}}async function v(e){if(!e)return;const n=await g(m,1,c,"id");return p(n.transaction(c,"readonly").objectStore(c).get(e))}async function A(){const e=await g(m,1,c,"id");return p(e.transaction(c,"readonly").objectStore(c).getAll())}function I(e,n,r){return`${r}:${e}:${n}`}function M(e){if(!e)return;const n=e.indexOf(".");return n>=0?e.slice(n+1):void 0}function S(e){switch(e.tagName){case"dict":return T(e);case"array":return Array.from(e.children).map(S);case"string":case"date":return e.textContent??"";default:return e.textContent??""}}function T(e){const n={},r=Array.from(e.children);for(let t=0;t<r.length;t+=2){const i=r[t],s=r[t+1];!i||i.tagName!=="key"||!s||(n[i.textContent??""]=S(s))}return n}function f(e){return typeof e=="string"&&e?e:void 0}function N(e){return Array.isArray(e)?e.filter(n=>typeof n=="string"):[]}function j(e){return typeof e=="boolean"?e:void 0}function P(e){return typeof e=="object"&&e!==null&&!Array.isArray(e)}function g(e,n,r,t){return new Promise((i,s)=>{const a=indexedDB.open(e,n);a.onupgradeneeded=()=>{const o=a.result;o.objectStoreNames.contains(r)||o.createObjectStore(r,{keyPath:t})},a.onsuccess=()=>i(a.result),a.onerror=()=>s(a.error??new Error("Open IndexedDB failed"))})}function p(e){return new Promise((n,r)=>{e.onsuccess=()=>n(e.result),e.onerror=()=>r(e.error??new Error("IndexedDB request failed"))})}exports.getLatestSigningAssets=_;exports.getLatestSigningAssetsWithCertificate=R;exports.getPairRecord=h;exports.getSigningAssets=x;exports.normalizeBundleID=u;exports.normalizeUDID=d;exports.parseProvisioningProfile=V;exports.parseProvisioningProfileBase64=C;exports.parseProvisioningProfileBytes=w;exports.profileContainsDevice=z;exports.profileMatchesBundleID=U;exports.putPairRecord=E;exports.putSigningAssets=G;

package/dist/client-Bk1N3XIF.mjs

@@ -0,0 +1,228 @@
+import { A as S } from "./index-BXg7HdIs.mjs";
+async function x(t, a) {
+  const r = await fetch(c(t, "/apple/auth/session", a), {
+    method: "POST",
+    headers: $(a)
+  });
+  if (!r.ok)
+    throw new Error(`Apple relay session failed: HTTP ${r.status} ${await r.text()}`);
+  return await r.json();
+}
+async function T(t, a, r) {
+  const e = await fetch(c(t, "/apple/auth/session/delete", r), {
+    method: "POST",
+    headers: u(r),
+    body: JSON.stringify({ appleSessionId: a })
+  });
+  if (!e.ok)
+    throw new Error(`Apple relay session delete failed: HTTP ${e.status} ${await e.text()}`);
+}
+async function A(t, a, r, e) {
+  return m(
+    t,
+    "/apple/auth/srp/init",
+    a,
+    r,
+    e
+  );
+}
+async function O(t, a, r, e) {
+  return m(t, "/apple/auth/srp/complete", a, r, e);
+}
+async function N(t, a, r) {
+  const e = await fetch(c(t, "/apple/auth/2fa/trigger", r), {
+    method: "POST",
+    headers: u(r),
+    body: JSON.stringify({ appleSessionId: a })
+  });
+  if (!e.ok)
+    throw new Error(`Apple 2FA trigger failed: HTTP ${e.status} ${await e.text()}`);
+  return await e.json();
+}
+async function b(t, a, r, e = "sms", o) {
+  const s = await fetch(c(t, "/apple/auth/2fa/phone/trigger", o), {
+    method: "POST",
+    headers: u(o),
+    body: JSON.stringify({ appleSessionId: a, phoneNumberId: r, mode: e })
+  });
+  if (!s.ok)
+    throw new Error(`Apple phone 2FA trigger failed: HTTP ${s.status} ${await s.text()}`);
+  return await s.json();
+}
+async function E(t, a, r, e) {
+  const o = await fetch(c(t, "/apple/auth/2fa", e), {
+    method: "POST",
+    headers: u(e),
+    body: JSON.stringify({ appleSessionId: a, code: r })
+  });
+  if (!o.ok)
+    throw new Error(`Apple 2FA proxy failed: HTTP ${o.status} ${await o.text()}`);
+  return await o.json();
+}
+async function H(t, a, r, e, o = "sms", s) {
+  const n = await fetch(c(t, "/apple/auth/2fa/phone", s), {
+    method: "POST",
+    headers: u(s),
+    body: JSON.stringify({ appleSessionId: a, phoneNumberId: r, mode: o, code: e })
+  });
+  if (!n.ok)
+    throw new Error(`Apple phone 2FA proxy failed: HTTP ${n.status} ${await n.text()}`);
+  return await n.json();
+}
+async function F(t, a, r) {
+  const e = await fetch(c(t, "/apple/auth/finalize", r), {
+    method: "POST",
+    headers: u(r),
+    body: JSON.stringify({ appleSessionId: a })
+  });
+  if (!e.ok)
+    throw new Error(`Apple session finalization failed: HTTP ${e.status} ${await e.text()}`);
+  return await e.json();
+}
+async function j(t, a, r, e) {
+  const o = await fetch(c(t, "/apple/provisioning", e), {
+    method: "POST",
+    headers: u(e),
+    body: JSON.stringify({ appleSessionId: a, ...r })
+  });
+  if (!o.ok)
+    throw new Error(`Apple provisioning proxy failed: HTTP ${o.status} ${await o.text()}`);
+  return P(await o.json());
+}
+async function m(t, a, r, e, o) {
+  const s = await fetch(c(t, a, o), {
+    method: "POST",
+    headers: u(o),
+    body: JSON.stringify({ appleSessionId: r, payload: e })
+  });
+  if (!s.ok)
+    throw new Error(`Apple proxy ${a} failed: HTTP ${s.status} ${await s.text()}`);
+  return P(await s.json());
+}
+function P(t) {
+  if (t.body !== void 0 || !t.rawBody)
+    return t;
+  try {
+    return {
+      ...t,
+      body: JSON.parse(t.rawBody)
+    };
+  } catch {
+    return t;
+  }
+}
+function c(t, a, r) {
+  const e = t.replace(/\/$/, ""), o = a.startsWith("/") ? a : `/${a}`, s = new URL(`${e}${o}`);
+  return r && s.searchParams.set("token", r), s;
+}
+function u(t) {
+  return {
+    "Content-Type": "application/json",
+    ...$(t)
+  };
+}
+function $(t) {
+  return t ? { Authorization: `Bearer ${t}` } : {};
+}
+async function J({
+  limbuildApiUrl: t,
+  accountName: a,
+  password: r,
+  token: e
+}) {
+  const { appleSessionId: o } = await x(t, e);
+  try {
+    const s = new S(a), n = await A(t, o, await s.init(), e);
+    if (n.status < 200 || n.status >= 300)
+      throw new Error(`Apple SRP init failed: HTTP ${n.status} ${n.rawBody ?? ""}`.trim());
+    if (!n.body)
+      throw new Error("Apple SRP init response did not include a body.");
+    const g = await s.complete(r, n.body), f = await O(
+      t,
+      o,
+      {
+        ...g,
+        rememberMe: !1,
+        trustTokens: []
+      },
+      e
+    ), l = f.status === 409;
+    let i, d = { type: "trustedDevice" };
+    if (l) {
+      i = await N(t, o, e);
+      const p = R(i.body);
+      if (p && (d = {
+        type: "phone",
+        phoneNumberId: p.id,
+        mode: p.pushMode ?? "sms"
+      }), i.status === 412) {
+        if (!p)
+          throw new Error("Apple requested phone verification but did not include a trusted phone number.");
+        i = await b(
+          t,
+          o,
+          p.id,
+          p.pushMode ?? "sms",
+          e
+        );
+      }
+      if (i.status < 200 || i.status >= 300)
+        throw new Error(
+          `Apple two-factor challenge failed: HTTP ${i.status} ${i.rawBody ?? ""}`.trim()
+        );
+    } else if (f.status < 200 || f.status >= 300)
+      throw new Error(`Apple SRP complete failed: HTTP ${f.status} ${f.rawBody ?? ""}`.trim());
+    return {
+      appleSessionId: o,
+      completeResponse: f,
+      twoFactorChallengeResponse: i,
+      requiresTwoFactor: l,
+      finishTwoFactor: async (p) => {
+        const h = d.type === "phone" ? await H(
+          t,
+          o,
+          d.phoneNumberId,
+          p,
+          d.mode,
+          e
+        ) : await E(t, o, p, e);
+        if (h.status < 200 || h.status >= 300)
+          throw new Error(`Apple two-factor code failed: HTTP ${h.status} ${h.rawBody ?? ""}`.trim());
+        return h;
+      },
+      finalize: async () => F(t, o, e),
+      close: () => T(t, o, e)
+    };
+  } catch (s) {
+    throw await T(t, o, e).catch(() => {
+    }), s;
+  }
+}
+function R(t) {
+  if (!y(t)) return;
+  const a = y(t.phoneNumberVerification) ? t.phoneNumberVerification : void 0, r = w(a?.trustedPhoneNumber) ?? w(t.trustedPhoneNumber) ?? w(t.phoneNumber);
+  if (!r) return;
+  const e = r.id;
+  if (typeof e != "number") return;
+  const o = typeof r.pushMode == "string" ? r.pushMode : typeof t.mode == "string" ? t.mode : void 0;
+  return { id: e, pushMode: o };
+}
+function w(t) {
+  return y(t) ? t : void 0;
+}
+function y(t) {
+  return typeof t == "object" && t !== null && !Array.isArray(t);
+}
+export {
+  H as a,
+  O as b,
+  x as c,
+  T as d,
+  A as e,
+  F as f,
+  E as g,
+  N as h,
+  j as p,
+  J as s,
+  b as t
+};

package/dist/client-CnbCWvCs.js

@@ -0,0 +1 @@
+"use strict";const E=require("./index-CMeQfhYy.js");async function P(e,s){const r=await fetch(c(e,"/apple/auth/session",s),{method:"POST",headers:R(s)});if(!r.ok)throw new Error(`Apple relay session failed: HTTP ${r.status} ${await r.text()}`);return await r.json()}async function y(e,s,r){const t=await fetch(c(e,"/apple/auth/session/delete",r),{method:"POST",headers:u(r),body:JSON.stringify({appleSessionId:s})});if(!t.ok)throw new Error(`Apple relay session delete failed: HTTP ${t.status} ${await t.text()}`)}async function g(e,s,r,t){return N(e,"/apple/auth/srp/init",s,r,t)}async function m(e,s,r,t){return N(e,"/apple/auth/srp/complete",s,r,t)}async function S(e,s,r){const t=await fetch(c(e,"/apple/auth/2fa/trigger",r),{method:"POST",headers:u(r),body:JSON.stringify({appleSessionId:s})});if(!t.ok)throw new Error(`Apple 2FA trigger failed: HTTP ${t.status} ${await t.text()}`);return await t.json()}async function $(e,s,r,t="sms",o){const a=await fetch(c(e,"/apple/auth/2fa/phone/trigger",o),{method:"POST",headers:u(o),body:JSON.stringify({appleSessionId:s,phoneNumberId:r,mode:t})});if(!a.ok)throw new Error(`Apple phone 2FA trigger failed: HTTP ${a.status} ${await a.text()}`);return await a.json()}async function x(e,s,r,t){const o=await fetch(c(e,"/apple/auth/2fa",t),{method:"POST",headers:u(t),body:JSON.stringify({appleSessionId:s,code:r})});if(!o.ok)throw new Error(`Apple 2FA proxy failed: HTTP ${o.status} ${await o.text()}`);return await o.json()}async function A(e,s,r,t,o="sms",a){const n=await fetch(c(e,"/apple/auth/2fa/phone",a),{method:"POST",headers:u(a),body:JSON.stringify({appleSessionId:s,phoneNumberId:r,mode:o,code:t})});if(!n.ok)throw new Error(`Apple phone 2FA proxy failed: HTTP ${n.status} ${await n.text()}`);return await n.json()}async function O(e,s,r){const t=await fetch(c(e,"/apple/auth/finalize",r),{method:"POST",headers:u(r),body:JSON.stringify({appleSessionId:s})});if(!t.ok)throw new Error(`Apple session finalization failed: HTTP ${t.status} ${await t.text()}`);return await t.json()}async function H(e,s,r,t){const o=await fetch(c(e,"/apple/provisioning",t),{method:"POST",headers:u(t),body:JSON.stringify({appleSessionId:s,...r})});if(!o.ok)throw new Error(`Apple provisioning proxy failed: HTTP ${o.status} ${await o.text()}`);return F(await o.json())}async function N(e,s,r,t,o){const a=await fetch(c(e,s,o),{method:"POST",headers:u(o),body:JSON.stringify({appleSessionId:r,payload:t})});if(!a.ok)throw new Error(`Apple proxy ${s} failed: HTTP ${a.status} ${await a.text()}`);return F(await a.json())}function F(e){if(e.body!==void 0||!e.rawBody)return e;try{return{...e,body:JSON.parse(e.rawBody)}}catch{return e}}function c(e,s,r){const t=e.replace(/\/$/,""),o=s.startsWith("/")?s:`/${s}`,a=new URL(`${t}${o}`);return r&&a.searchParams.set("token",r),a}function u(e){return{"Content-Type":"application/json",...R(e)}}function R(e){return e?{Authorization:`Bearer ${e}`}:{}}async function v({limbuildApiUrl:e,accountName:s,password:r,token:t}){const{appleSessionId:o}=await P(e,t);try{const a=new E.AppleGsaSrpClient(s),n=await g(e,o,await a.init(),t);if(n.status<200||n.status>=300)throw new Error(`Apple SRP init failed: HTTP ${n.status} ${n.rawBody??""}`.trim());if(!n.body)throw new Error("Apple SRP init response did not include a body.");const b=await a.complete(r,n.body),f=await m(e,o,{...b,rememberMe:!1,trustTokens:[]},t),T=f.status===409;let i,d={type:"trustedDevice"};if(T){i=await S(e,o,t);const p=j(i.body);if(p&&(d={type:"phone",phoneNumberId:p.id,mode:p.pushMode??"sms"}),i.status===412){if(!p)throw new Error("Apple requested phone verification but did not include a trusted phone number.");i=await $(e,o,p.id,p.pushMode??"sms",t)}if(i.status<200||i.status>=300)throw new Error(`Apple two-factor challenge failed: HTTP ${i.status} ${i.rawBody??""}`.trim())}else if(f.status<200||f.status>=300)throw new Error(`Apple SRP complete failed: HTTP ${f.status} ${f.rawBody??""}`.trim());return{appleSessionId:o,completeResponse:f,twoFactorChallengeResponse:i,requiresTwoFactor:T,finishTwoFactor:async p=>{const w=d.type==="phone"?await A(e,o,d.phoneNumberId,p,d.mode,t):await x(e,o,p,t);if(w.status<200||w.status>=300)throw new Error(`Apple two-factor code failed: HTTP ${w.status} ${w.rawBody??""}`.trim());return w},finalize:async()=>O(e,o,t),close:()=>y(e,o,t)}}catch(a){throw await y(e,o,t).catch(()=>{}),a}}function j(e){if(!l(e))return;const s=l(e.phoneNumberVerification)?e.phoneNumberVerification:void 0,r=h(s?.trustedPhoneNumber)??h(e.trustedPhoneNumber)??h(e.phoneNumber);if(!r)return;const t=r.id;if(typeof t!="number")return;const o=typeof r.pushMode=="string"?r.pushMode:typeof e.mode=="string"?e.mode:void 0;return{id:t,pushMode:o}}function h(e){return l(e)?e:void 0}function l(e){return typeof e=="object"&&e!==null&&!Array.isArray(e)}exports.createAppleRelaySession=P;exports.deleteAppleRelaySession=y;exports.fetchAppleAccountSession=O;exports.proxyPhoneTwoFactorCode=A;exports.proxyProvisioningRequest=H;exports.proxySrpComplete=m;exports.proxySrpInit=g;exports.proxyTwoFactorCode=x;exports.startBrowserOwnedAppleIDLogin=v;exports.triggerPhoneTwoFactor=$;exports.triggerTrustedDeviceTwoFactor=S;

package/dist/components/device-install/index.d.ts

@@ -1,2 +1 @@
-export { DeviceInstallDialog, DeviceInstallDialog as DeviceInstallRelay } from './device-install-dialog';
-export type { DeviceInstallDialogProps } from './device-install-dialog';
+export {};

package/dist/core/device-install/apple/provisioning.d.ts

@@ -1,4 +1,4 @@
-import { ProvisioningProfileInfo, StoredSigningAssets } from '../types';
+import { DeviceInstallSigningMode, ProvisioningProfileInfo, StoredSigningAssets } from '../types';
 import { AppleProvisioningRequest } from './relay';
 export type AppleDeveloperPortalTeam = {
     name?: string;
@@ -50,14 +50,16 @@ export type AppleSigningAssetCacheInput = {
     bundleID: string;
     deviceUDID?: string;
     teamID?: string;
+    signingMode?: DeviceInstallSigningMode;
 };
 export type PutAppleGeneratedSigningAssetsInput = {
     bundleID: string;
     deviceUDID?: string;
     teamID?: string;
+    signingMode?: DeviceInstallSigningMode;
     certificateID?: string;
     certificateP12Base64: string;
-    certificatePassword: string;
+    certificatePassword?: string;
     provisioningProfileBase64: string;
     profile: ProvisioningProfileInfo;
 };
@@ -77,11 +79,21 @@ export declare function findDevelopmentCertificatesRequest(teamID?: string): {
     path: string;
     payload: Record<string, unknown>;
 };
+export declare function findDistributionCertificatesRequest(teamID?: string): {
+    method: "POST";
+    path: string;
+    payload: Record<string, unknown>;
+};
 export declare function findDevelopmentProfilesRequest({ bundleID, teamID, }: Pick<AppleProvisioningContext, 'bundleID' | 'teamID'>): {
     method: "POST";
     path: string;
     payload: Record<string, unknown>;
 };
+export declare function findAdHocProfilesRequest({ bundleID, teamID, }: Pick<AppleProvisioningContext, 'bundleID' | 'teamID'>): {
+    method: "POST";
+    path: string;
+    payload: Record<string, unknown>;
+};
 export declare function registerDeviceRequest({ deviceUDID, teamID, name, }: Pick<AppleProvisioningContext, 'deviceUDID' | 'teamID'> & {
     name?: string;
 }): {
@@ -119,6 +131,18 @@ export declare function submitDevelopmentCSRRequest({ csrPEM, teamID, }: {
         csrContent: string;
     };
 };
+export declare function submitDistributionCSRRequest({ csrPEM, teamID, }: {
+    csrPEM: string;
+    teamID?: string;
+}): {
+    method: "POST";
+    path: string;
+    payload: {
+        teamId: string;
+        type: string;
+        csrContent: string;
+    };
+};
 export declare function downloadCertificateRequest(certificateID: string, teamID?: string): {
     method: "GET";
     path: string;
@@ -128,6 +152,15 @@ export declare function downloadCertificateRequest(certificateID: string, teamID
         type: string;
     };
 };
+export declare function downloadDistributionCertificateRequest(certificateID: string, teamID?: string): {
+    method: "GET";
+    path: string;
+    payload: {
+        teamId: string;
+        certificateId: string;
+        type: string;
+    };
+};
 export declare function createDevelopmentProfileRequest({ bundleID, teamID, appIDID, certificateID, deviceIDs, name, }: Pick<AppleProvisioningContext, 'bundleID' | 'teamID'> & {
     appIDID: string;
     certificateID: string;
@@ -146,6 +179,24 @@ export declare function createDevelopmentProfileRequest({ bundleID, teamID, appI
         subPlatform: string;
     };
 };
+export declare function createAdHocProfileRequest({ bundleID, teamID, appIDID, certificateID, deviceIDs, name, }: Pick<AppleProvisioningContext, 'bundleID' | 'teamID'> & {
+    appIDID: string;
+    certificateID: string;
+    deviceIDs: string[];
+    name?: string;
+}): {
+    method: "POST";
+    path: string;
+    payload: {
+        teamId: string;
+        provisioningProfileName: string;
+        certificateIds: string[];
+        appIdId: string;
+        deviceIds: string[];
+        distributionType: string;
+        subPlatform: string;
+    };
+};
 export declare function downloadProfileRequest(profileID: string, teamID?: string): {
     method: "GET";
     path: string;
@@ -154,8 +205,8 @@ export declare function downloadProfileRequest(profileID: string, teamID?: strin
         provisioningProfileId: string;
     };
 };
-export declare function getReusableAppleSigningAssets({ bundleID, deviceUDID, teamID, }: AppleSigningAssetCacheInput): Promise<StoredSigningAssets | undefined>;
+export declare function getReusableAppleSigningAssets({ bundleID, deviceUDID, teamID, signingMode, }: AppleSigningAssetCacheInput): Promise<StoredSigningAssets | undefined>;
 export declare function putAppleGeneratedSigningAssets(input: PutAppleGeneratedSigningAssetsInput): Promise<StoredSigningAssets>;
-export declare function storedSigningAssetsReusable(stored: StoredSigningAssets, { bundleID, deviceUDID, teamID }: AppleSigningAssetCacheInput): boolean;
+export declare function storedSigningAssetsReusable(stored: StoredSigningAssets, { bundleID, deviceUDID, teamID, signingMode }: AppleSigningAssetCacheInput): boolean;
 export declare function selectDeveloperPortalTeam(body: unknown): AppleDeveloperPortalTeam | undefined;
 export declare function teamIDCandidates(body: unknown): string[];

package/dist/core/device-install/operations/limbuild-client.d.ts

@@ -10,7 +10,7 @@ export type StartSignedDeviceBuildOptions = {
     limbuildApiUrl: string;
     token?: string;
     certificateP12Base64: string;
-    certificatePassword: string;
+    certificatePassword?: string;
     provisioningProfileBase64: string;
 };
 export type BuildLogEventsOptions = {
@@ -21,8 +21,22 @@ export type BuildLogEventsOptions = {
     onStatus: (status: DeviceInstallBuildStatus) => void;
     onError?: (error: Error) => void;
 };
+export type IOSOTAInstall = {
+    installUrl: string;
+    landingUrl: string;
+    manifestUrl: string;
+    ipaUrl: string;
+    bundleId: string;
+    displayName: string;
+};
+export type GetIOSOTAInstallOptions = {
+    limbuildApiUrl: string;
+    execId: string;
+    token?: string;
+};
 export declare function fetchLimbuildInfo(limbuildApiUrl: string, token?: string): Promise<LimbuildInfo>;
 export declare function startSignedDeviceBuild({ limbuildApiUrl, token, certificateP12Base64, certificatePassword, provisioningProfileBase64, }: StartSignedDeviceBuildOptions): Promise<{
     execId?: string;
 }>;
+export declare function getIOSOTAInstall({ limbuildApiUrl, execId, token }: GetIOSOTAInstallOptions): Promise<IOSOTAInstall>;
 export declare function watchBuildLogEvents({ limbuildApiUrl, execId, token, onLine, onStatus, onError, }: BuildLogEventsOptions): () => void;