@mcp-z/oauth 1.0.0

package/dist/cjs/key-utils.d.cts

@@ -0,0 +1,131 @@
+/**
+ * Key generation utilities for consistent storage key format
+ *
+ * Key format: {accountId}:{service}:{type}
+ * Example: work@gmail.com:gmail:token
+ */
+import type { Keyv } from 'keyv';
+/**
+ * Key types for account-scoped data (requires accountId)
+ */
+export type AccountKeyType = 'token' | 'metadata' | 'dcr-client';
+/**
+ * Key types for service-scoped data (no accountId)
+ */
+export type ServiceKeyType = 'active' | 'linked';
+/**
+ * Parameters for account-scoped keys.
+ * All fields are required - no silent defaults.
+ */
+export interface AccountKeyParams {
+    /** Account identifier - typically an email address */
+    accountId: string;
+    /** Service name (e.g., 'gmail', 'sheets', 'drive', 'outlook') */
+    service: string;
+}
+/**
+ * Parameters for service-scoped keys.
+ * These keys don't include accountId.
+ */
+export interface ServiceKeyParams {
+    /** Service name */
+    service: string;
+}
+/**
+ * Create account-scoped storage key.
+ *
+ * These keys are scoped to a specific account (email address) and store
+ * account-specific data like OAuth tokens and account metadata.
+ *
+ * @param type - Key type ('token' for OAuth tokens, 'metadata' for account details, 'dcr-client' for DCR registration)
+ * @param params - Account key parameters with explicit field names
+ * @returns Storage key in format: "{accountId}:{service}:{type}"
+ *
+ * @example
+ * ```typescript
+ * // Store OAuth token
+ * const tokenKey = createAccountKey('token', {
+ *   accountId: 'alice@gmail.com',
+ *   service: 'gmail'
+ * });
+ * // Returns: "alice@gmail.com:gmail:token"
+ *
+ * // Store account metadata (alias, timestamps, profile)
+ * const metadataKey = createAccountKey('metadata', {
+ *   accountId: 'alice@gmail.com',
+ *   service: 'gmail'
+ * });
+ * // Returns: "alice@gmail.com:gmail:metadata"
+ *
+ * // Store DCR client registration info
+ * const dcrKey = createAccountKey('dcr-client', {
+ *   accountId: 'alice@outlook.com',
+ *   service: 'outlook'
+ * });
+ * // Returns: "alice@outlook.com:outlook:dcr-client"
+ * ```
+ */
+export declare function createAccountKey(type: AccountKeyType, params: AccountKeyParams): string;
+/**
+ * Create service-scoped storage key.
+ *
+ * These keys are scoped to a service (not a specific account) and store
+ * service-level data like which account is active or the list of linked accounts.
+ *
+ * @param type - Key type ('active' for active account, 'linked' for account list)
+ * @param params - Service key parameters
+ * @returns Storage key in format: "{service}:{type}"
+ *
+ * @example
+ * ```typescript
+ * // Track active account
+ * const activeKey = createServiceKey('active', {
+ *   service: 'gmail'
+ * });
+ * // Returns: "gmail:active"
+ *
+ * // Store list of linked accounts
+ * const linkedKey = createServiceKey('linked', {
+ *   service: 'gmail'
+ * });
+ * // Returns: "gmail:linked"
+ * ```
+ */
+export declare function createServiceKey(type: ServiceKeyType, params: ServiceKeyParams): string;
+/**
+ * Parse token key to extract components
+ *
+ * @param key - Storage key to parse
+ * @returns Object with accountId and service, or undefined if invalid format
+ *
+ * @example
+ * const parsed = parseTokenKey('user@gmail.com:gmail:token');
+ * // Returns: { accountId: 'user@gmail.com', service: 'gmail' }
+ *
+ * const invalid = parseTokenKey('invalid-key');
+ * // Returns: undefined
+ */
+export declare function parseTokenKey(key: string): {
+    accountId: string;
+    service: string;
+} | undefined;
+/**
+ * List all account IDs for a service
+ *
+ * Iterates token keys and returns all accountIds that match the service.
+ * Encapsulates key format details for forward compatibility.
+ *
+ * @param store - Keyv store to iterate
+ * @param service - Service name
+ * @returns Array of account IDs (e.g., email addresses)
+ *
+ * @example
+ * const accounts = await listAccountIds(store, 'gmail');
+ * // Returns: ['alice@gmail.com', 'bob@gmail.com']
+ *
+ * @example
+ * // Empty array if no accounts found
+ * const empty = await listAccountIds(store, 'unknown-service');
+ * // Returns: []
+ */
+export declare function listAccountIds(store: Keyv, service: string): Promise<string[]>;

package/dist/cjs/key-utils.d.ts

@@ -0,0 +1,131 @@
+/**
+ * Key generation utilities for consistent storage key format
+ *
+ * Key format: {accountId}:{service}:{type}
+ * Example: work@gmail.com:gmail:token
+ */
+import type { Keyv } from 'keyv';
+/**
+ * Key types for account-scoped data (requires accountId)
+ */
+export type AccountKeyType = 'token' | 'metadata' | 'dcr-client';
+/**
+ * Key types for service-scoped data (no accountId)
+ */
+export type ServiceKeyType = 'active' | 'linked';
+/**
+ * Parameters for account-scoped keys.
+ * All fields are required - no silent defaults.
+ */
+export interface AccountKeyParams {
+    /** Account identifier - typically an email address */
+    accountId: string;
+    /** Service name (e.g., 'gmail', 'sheets', 'drive', 'outlook') */
+    service: string;
+}
+/**
+ * Parameters for service-scoped keys.
+ * These keys don't include accountId.
+ */
+export interface ServiceKeyParams {
+    /** Service name */
+    service: string;
+}
+/**
+ * Create account-scoped storage key.
+ *
+ * These keys are scoped to a specific account (email address) and store
+ * account-specific data like OAuth tokens and account metadata.
+ *
+ * @param type - Key type ('token' for OAuth tokens, 'metadata' for account details, 'dcr-client' for DCR registration)
+ * @param params - Account key parameters with explicit field names
+ * @returns Storage key in format: "{accountId}:{service}:{type}"
+ *
+ * @example
+ * ```typescript
+ * // Store OAuth token
+ * const tokenKey = createAccountKey('token', {
+ *   accountId: 'alice@gmail.com',
+ *   service: 'gmail'
+ * });
+ * // Returns: "alice@gmail.com:gmail:token"
+ *
+ * // Store account metadata (alias, timestamps, profile)
+ * const metadataKey = createAccountKey('metadata', {
+ *   accountId: 'alice@gmail.com',
+ *   service: 'gmail'
+ * });
+ * // Returns: "alice@gmail.com:gmail:metadata"
+ *
+ * // Store DCR client registration info
+ * const dcrKey = createAccountKey('dcr-client', {
+ *   accountId: 'alice@outlook.com',
+ *   service: 'outlook'
+ * });
+ * // Returns: "alice@outlook.com:outlook:dcr-client"
+ * ```
+ */
+export declare function createAccountKey(type: AccountKeyType, params: AccountKeyParams): string;
+/**
+ * Create service-scoped storage key.
+ *
+ * These keys are scoped to a service (not a specific account) and store
+ * service-level data like which account is active or the list of linked accounts.
+ *
+ * @param type - Key type ('active' for active account, 'linked' for account list)
+ * @param params - Service key parameters
+ * @returns Storage key in format: "{service}:{type}"
+ *
+ * @example
+ * ```typescript
+ * // Track active account
+ * const activeKey = createServiceKey('active', {
+ *   service: 'gmail'
+ * });
+ * // Returns: "gmail:active"
+ *
+ * // Store list of linked accounts
+ * const linkedKey = createServiceKey('linked', {
+ *   service: 'gmail'
+ * });
+ * // Returns: "gmail:linked"
+ * ```
+ */
+export declare function createServiceKey(type: ServiceKeyType, params: ServiceKeyParams): string;
+/**
+ * Parse token key to extract components
+ *
+ * @param key - Storage key to parse
+ * @returns Object with accountId and service, or undefined if invalid format
+ *
+ * @example
+ * const parsed = parseTokenKey('user@gmail.com:gmail:token');
+ * // Returns: { accountId: 'user@gmail.com', service: 'gmail' }
+ *
+ * const invalid = parseTokenKey('invalid-key');
+ * // Returns: undefined
+ */
+export declare function parseTokenKey(key: string): {
+    accountId: string;
+    service: string;
+} | undefined;
+/**
+ * List all account IDs for a service
+ *
+ * Iterates token keys and returns all accountIds that match the service.
+ * Encapsulates key format details for forward compatibility.
+ *
+ * @param store - Keyv store to iterate
+ * @param service - Service name
+ * @returns Array of account IDs (e.g., email addresses)
+ *
+ * @example
+ * const accounts = await listAccountIds(store, 'gmail');
+ * // Returns: ['alice@gmail.com', 'bob@gmail.com']
+ *
+ * @example
+ * // Empty array if no accounts found
+ * const empty = await listAccountIds(store, 'unknown-service');
+ * // Returns: []
+ */
+export declare function listAccountIds(store: Keyv, service: string): Promise<string[]>;

package/dist/cjs/key-utils.js

@@ -0,0 +1,421 @@
+/**
+ * Key generation utilities for consistent storage key format
+ *
+ * Key format: {accountId}:{service}:{type}
+ * Example: work@gmail.com:gmail:token
+ */ "use strict";
+Object.defineProperty(exports, "__esModule", {
+    value: true
+});
+function _export(target, all) {
+    for(var name in all)Object.defineProperty(target, name, {
+        enumerable: true,
+        get: Object.getOwnPropertyDescriptor(all, name).get
+    });
+}
+_export(exports, {
+    get createAccountKey () {
+        return createAccountKey;
+    },
+    get createServiceKey () {
+        return createServiceKey;
+    },
+    get listAccountIds () {
+        return listAccountIds;
+    },
+    get parseTokenKey () {
+        return parseTokenKey;
+    }
+});
+function _array_like_to_array(arr, len) {
+    if (len == null || len > arr.length) len = arr.length;
+    for(var i = 0, arr2 = new Array(len); i < len; i++)arr2[i] = arr[i];
+    return arr2;
+}
+function _array_with_holes(arr) {
+    if (Array.isArray(arr)) return arr;
+}
+function _async_iterator(iterable) {
+    var method, async, sync, retry = 2;
+    for("undefined" != typeof Symbol && (async = Symbol.asyncIterator, sync = Symbol.iterator); retry--;){
+        if (async && null != (method = iterable[async])) return method.call(iterable);
+        if (sync && null != (method = iterable[sync])) return new AsyncFromSyncIterator(method.call(iterable));
+        async = "@@asyncIterator", sync = "@@iterator";
+    }
+    throw new TypeError("Object is not async iterable");
+}
+function AsyncFromSyncIterator(s) {
+    function AsyncFromSyncIteratorContinuation(r) {
+        if (Object(r) !== r) return Promise.reject(new TypeError(r + " is not an object."));
+        var done = r.done;
+        return Promise.resolve(r.value).then(function(value) {
+            return {
+                value: value,
+                done: done
+            };
+        });
+    }
+    return AsyncFromSyncIterator = function(s) {
+        this.s = s, this.n = s.next;
+    }, AsyncFromSyncIterator.prototype = {
+        s: null,
+        n: null,
+        next: function() {
+            return AsyncFromSyncIteratorContinuation(this.n.apply(this.s, arguments));
+        },
+        return: function(value) {
+            var ret = this.s.return;
+            return void 0 === ret ? Promise.resolve({
+                value: value,
+                done: !0
+            }) : AsyncFromSyncIteratorContinuation(ret.apply(this.s, arguments));
+        },
+        throw: function(value) {
+            var thr = this.s.return;
+            return void 0 === thr ? Promise.reject(value) : AsyncFromSyncIteratorContinuation(thr.apply(this.s, arguments));
+        }
+    }, new AsyncFromSyncIterator(s);
+}
+function asyncGeneratorStep(gen, resolve, reject, _next, _throw, key, arg) {
+    try {
+        var info = gen[key](arg);
+        var value = info.value;
+    } catch (error) {
+        reject(error);
+        return;
+    }
+    if (info.done) {
+        resolve(value);
+    } else {
+        Promise.resolve(value).then(_next, _throw);
+    }
+}
+function _async_to_generator(fn) {
+    return function() {
+        var self = this, args = arguments;
+        return new Promise(function(resolve, reject) {
+            var gen = fn.apply(self, args);
+            function _next(value) {
+                asyncGeneratorStep(gen, resolve, reject, _next, _throw, "next", value);
+            }
+            function _throw(err) {
+                asyncGeneratorStep(gen, resolve, reject, _next, _throw, "throw", err);
+            }
+            _next(undefined);
+        });
+    };
+}
+function _iterable_to_array_limit(arr, i) {
+    var _i = arr == null ? null : typeof Symbol !== "undefined" && arr[Symbol.iterator] || arr["@@iterator"];
+    if (_i == null) return;
+    var _arr = [];
+    var _n = true;
+    var _d = false;
+    var _s, _e;
+    try {
+        for(_i = _i.call(arr); !(_n = (_s = _i.next()).done); _n = true){
+            _arr.push(_s.value);
+            if (i && _arr.length === i) break;
+        }
+    } catch (err) {
+        _d = true;
+        _e = err;
+    } finally{
+        try {
+            if (!_n && _i["return"] != null) _i["return"]();
+        } finally{
+            if (_d) throw _e;
+        }
+    }
+    return _arr;
+}
+function _non_iterable_rest() {
+    throw new TypeError("Invalid attempt to destructure non-iterable instance.\\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.");
+}
+function _sliced_to_array(arr, i) {
+    return _array_with_holes(arr) || _iterable_to_array_limit(arr, i) || _unsupported_iterable_to_array(arr, i) || _non_iterable_rest();
+}
+function _type_of(obj) {
+    "@swc/helpers - typeof";
+    return obj && typeof Symbol !== "undefined" && obj.constructor === Symbol ? "symbol" : typeof obj;
+}
+function _unsupported_iterable_to_array(o, minLen) {
+    if (!o) return;
+    if (typeof o === "string") return _array_like_to_array(o, minLen);
+    var n = Object.prototype.toString.call(o).slice(8, -1);
+    if (n === "Object" && o.constructor) n = o.constructor.name;
+    if (n === "Map" || n === "Set") return Array.from(n);
+    if (n === "Arguments" || /^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)) return _array_like_to_array(o, minLen);
+}
+function _ts_generator(thisArg, body) {
+    var f, y, t, _ = {
+        label: 0,
+        sent: function() {
+            if (t[0] & 1) throw t[1];
+            return t[1];
+        },
+        trys: [],
+        ops: []
+    }, g = Object.create((typeof Iterator === "function" ? Iterator : Object).prototype), d = Object.defineProperty;
+    return d(g, "next", {
+        value: verb(0)
+    }), d(g, "throw", {
+        value: verb(1)
+    }), d(g, "return", {
+        value: verb(2)
+    }), typeof Symbol === "function" && d(g, Symbol.iterator, {
+        value: function() {
+            return this;
+        }
+    }), g;
+    function verb(n) {
+        return function(v) {
+            return step([
+                n,
+                v
+            ]);
+        };
+    }
+    function step(op) {
+        if (f) throw new TypeError("Generator is already executing.");
+        while(g && (g = 0, op[0] && (_ = 0)), _)try {
+            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
+            if (y = 0, t) op = [
+                op[0] & 2,
+                t.value
+            ];
+            switch(op[0]){
+                case 0:
+                case 1:
+                    t = op;
+                    break;
+                case 4:
+                    _.label++;
+                    return {
+                        value: op[1],
+                        done: false
+                    };
+                case 5:
+                    _.label++;
+                    y = op[1];
+                    op = [
+                        0
+                    ];
+                    continue;
+                case 7:
+                    op = _.ops.pop();
+                    _.trys.pop();
+                    continue;
+                default:
+                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) {
+                        _ = 0;
+                        continue;
+                    }
+                    if (op[0] === 3 && (!t || op[1] > t[0] && op[1] < t[3])) {
+                        _.label = op[1];
+                        break;
+                    }
+                    if (op[0] === 6 && _.label < t[1]) {
+                        _.label = t[1];
+                        t = op;
+                        break;
+                    }
+                    if (t && _.label < t[2]) {
+                        _.label = t[2];
+                        _.ops.push(op);
+                        break;
+                    }
+                    if (t[2]) _.ops.pop();
+                    _.trys.pop();
+                    continue;
+            }
+            op = body.call(thisArg, _);
+        } catch (e) {
+            op = [
+                6,
+                e
+            ];
+            y = 0;
+        } finally{
+            f = t = 0;
+        }
+        if (op[0] & 5) throw op[1];
+        return {
+            value: op[0] ? op[1] : void 0,
+            done: true
+        };
+    }
+}
+/**
+ * Validate key parameters don't contain colon delimiter
+ */ function validateKeyParams(params) {
+    var _iteratorNormalCompletion = true, _didIteratorError = false, _iteratorError = undefined;
+    try {
+        for(var _iterator = Object.entries(params)[Symbol.iterator](), _step; !(_iteratorNormalCompletion = (_step = _iterator.next()).done); _iteratorNormalCompletion = true){
+            var _step_value = _sliced_to_array(_step.value, 2), key = _step_value[0], value = _step_value[1];
+            if (typeof value !== 'string') {
+                throw new Error("Key parameter '".concat(key, "' must be a string, got: ").concat(typeof value === "undefined" ? "undefined" : _type_of(value)));
+            }
+            if (value.includes(':')) {
+                throw new Error("Key parameter '".concat(key, "' cannot contain colon character: ").concat(value));
+            }
+        }
+    } catch (err) {
+        _didIteratorError = true;
+        _iteratorError = err;
+    } finally{
+        try {
+            if (!_iteratorNormalCompletion && _iterator.return != null) {
+                _iterator.return();
+            }
+        } finally{
+            if (_didIteratorError) {
+                throw _iteratorError;
+            }
+        }
+    }
+}
+function createAccountKey(type, params) {
+    validateKeyParams(params);
+    return "".concat(params.accountId, ":").concat(params.service, ":").concat(type);
+}
+function createServiceKey(type, params) {
+    validateKeyParams(params);
+    return "".concat(params.service, ":").concat(type);
+}
+function parseTokenKey(key) {
+    var parts = key.split(':');
+    if (parts.length !== 3 || parts[2] !== 'token' || !parts[0] || !parts[1]) {
+        return undefined;
+    }
+    return {
+        accountId: parts[0],
+        service: parts[1]
+    };
+}
+function listAccountIds(store, service) {
+    return _async_to_generator(function() {
+        var accountIds, _store_iterator, iterator, _iteratorAbruptCompletion, _didIteratorError, _iteratorError, _iterator, _step, _value, _value1, key, parsed, err, _error;
+        return _ts_generator(this, function(_state) {
+            switch(_state.label){
+                case 0:
+                    accountIds = [];
+                    _state.label = 1;
+                case 1:
+                    _state.trys.push([
+                        1,
+                        14,
+                        ,
+                        15
+                    ]);
+                    iterator = (_store_iterator = store.iterator) === null || _store_iterator === void 0 ? void 0 : _store_iterator.call(store, undefined);
+                    if (!iterator) {
+                        return [
+                            2,
+                            accountIds
+                        ];
+                    }
+                    _iteratorAbruptCompletion = false, _didIteratorError = false;
+                    _state.label = 2;
+                case 2:
+                    _state.trys.push([
+                        2,
+                        7,
+                        8,
+                        13
+                    ]);
+                    _iterator = _async_iterator(iterator);
+                    _state.label = 3;
+                case 3:
+                    return [
+                        4,
+                        _iterator.next()
+                    ];
+                case 4:
+                    if (!(_iteratorAbruptCompletion = !(_step = _state.sent()).done)) return [
+                        3,
+                        6
+                    ];
+                    _value = _step.value;
+                    _value1 = _sliced_to_array(_value, 1), key = _value1[0];
+                    parsed = parseTokenKey(key);
+                    if (parsed && parsed.service === service) {
+                        accountIds.push(parsed.accountId);
+                    }
+                    _state.label = 5;
+                case 5:
+                    _iteratorAbruptCompletion = false;
+                    return [
+                        3,
+                        3
+                    ];
+                case 6:
+                    return [
+                        3,
+                        13
+                    ];
+                case 7:
+                    err = _state.sent();
+                    _didIteratorError = true;
+                    _iteratorError = err;
+                    return [
+                        3,
+                        13
+                    ];
+                case 8:
+                    _state.trys.push([
+                        8,
+                        ,
+                        11,
+                        12
+                    ]);
+                    if (!(_iteratorAbruptCompletion && _iterator.return != null)) return [
+                        3,
+                        10
+                    ];
+                    return [
+                        4,
+                        _iterator.return()
+                    ];
+                case 9:
+                    _state.sent();
+                    _state.label = 10;
+                case 10:
+                    return [
+                        3,
+                        12
+                    ];
+                case 11:
+                    if (_didIteratorError) {
+                        throw _iteratorError;
+                    }
+                    return [
+                        7
+                    ];
+                case 12:
+                    return [
+                        7
+                    ];
+                case 13:
+                    return [
+                        3,
+                        15
+                    ];
+                case 14:
+                    _error = _state.sent();
+                    // If iteration fails, return empty array (fail gracefully)
+                    // This handles stores that don't support iteration
+                    return [
+                        2,
+                        accountIds
+                    ];
+                case 15:
+                    return [
+                        2,
+                        accountIds
+                    ];
+            }
+        });
+    })();
+}
+/* CJS INTEROP */ if (exports.__esModule && exports.default) { try { Object.defineProperty(exports.default, '__esModule', { value: true }); for (var key in exports) { exports.default[key] = exports[key]; } } catch (_) {}; module.exports = exports.default; }

package/dist/cjs/key-utils.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["/Users/kevin/Dev/Projects/ai/mcp-z/oauth/oauth/src/key-utils.ts"],"sourcesContent":["/**\n * Key generation utilities for consistent storage key format\n *\n * Key format: {accountId}:{service}:{type}\n * Example: work@gmail.com:gmail:token\n */\n\nimport type { Keyv } from 'keyv';\n\n/**\n * Key types for account-scoped data (requires accountId)\n */\nexport type AccountKeyType = 'token' | 'metadata' | 'dcr-client';\n\n/**\n * Key types for service-scoped data (no accountId)\n */\nexport type ServiceKeyType = 'active' | 'linked';\n\n/**\n * Parameters for account-scoped keys.\n * All fields are required - no silent defaults.\n */\nexport interface AccountKeyParams {\n  /** Account identifier - typically an email address */\n  accountId: string;\n\n  /** Service name (e.g., 'gmail', 'sheets', 'drive', 'outlook') */\n  service: string;\n}\n\n/**\n * Parameters for service-scoped keys.\n * These keys don't include accountId.\n */\nexport interface ServiceKeyParams {\n  /** Service name */\n  service: string;\n}\n\n/**\n * Validate key parameters don't contain colon delimiter\n */\nfunction validateKeyParams(params: AccountKeyParams | ServiceKeyParams): void {\n  for (const [key, value] of Object.entries(params)) {\n    if (typeof value !== 'string') {\n      throw new Error(`Key parameter '${key}' must be a string, got: ${typeof value}`);\n    }\n    if (value.includes(':')) {\n      throw new Error(`Key parameter '${key}' cannot contain colon character: ${value}`);\n    }\n  }\n}\n\n/**\n * Create account-scoped storage key.\n *\n * These keys are scoped to a specific account (email address) and store\n * account-specific data like OAuth tokens and account metadata.\n *\n * @param type - Key type ('token' for OAuth tokens, 'metadata' for account details, 'dcr-client' for DCR registration)\n * @param params - Account key parameters with explicit field names\n * @returns Storage key in format: \"{accountId}:{service}:{type}\"\n *\n * @example\n * ```typescript\n * // Store OAuth token\n * const tokenKey = createAccountKey('token', {\n *   accountId: 'alice@gmail.com',\n *   service: 'gmail'\n * });\n * // Returns: \"alice@gmail.com:gmail:token\"\n *\n * // Store account metadata (alias, timestamps, profile)\n * const metadataKey = createAccountKey('metadata', {\n *   accountId: 'alice@gmail.com',\n *   service: 'gmail'\n * });\n * // Returns: \"alice@gmail.com:gmail:metadata\"\n *\n * // Store DCR client registration info\n * const dcrKey = createAccountKey('dcr-client', {\n *   accountId: 'alice@outlook.com',\n *   service: 'outlook'\n * });\n * // Returns: \"alice@outlook.com:outlook:dcr-client\"\n * ```\n */\nexport function createAccountKey(type: AccountKeyType, params: AccountKeyParams): string {\n  validateKeyParams(params);\n  return `${params.accountId}:${params.service}:${type}`;\n}\n\n/**\n * Create service-scoped storage key.\n *\n * These keys are scoped to a service (not a specific account) and store\n * service-level data like which account is active or the list of linked accounts.\n *\n * @param type - Key type ('active' for active account, 'linked' for account list)\n * @param params - Service key parameters\n * @returns Storage key in format: \"{service}:{type}\"\n *\n * @example\n * ```typescript\n * // Track active account\n * const activeKey = createServiceKey('active', {\n *   service: 'gmail'\n * });\n * // Returns: \"gmail:active\"\n *\n * // Store list of linked accounts\n * const linkedKey = createServiceKey('linked', {\n *   service: 'gmail'\n * });\n * // Returns: \"gmail:linked\"\n * ```\n */\nexport function createServiceKey(type: ServiceKeyType, params: ServiceKeyParams): string {\n  validateKeyParams(params);\n  return `${params.service}:${type}`;\n}\n\n/**\n * Parse token key to extract components\n *\n * @param key - Storage key to parse\n * @returns Object with accountId and service, or undefined if invalid format\n *\n * @example\n * const parsed = parseTokenKey('user@gmail.com:gmail:token');\n * // Returns: { accountId: 'user@gmail.com', service: 'gmail' }\n *\n * const invalid = parseTokenKey('invalid-key');\n * // Returns: undefined\n */\nexport function parseTokenKey(key: string): { accountId: string; service: string } | undefined {\n  const parts = key.split(':');\n  if (parts.length !== 3 || parts[2] !== 'token' || !parts[0] || !parts[1]) {\n    return undefined;\n  }\n  return {\n    accountId: parts[0],\n    service: parts[1],\n  };\n}\n\n/**\n * List all account IDs for a service\n *\n * Iterates token keys and returns all accountIds that match the service.\n * Encapsulates key format details for forward compatibility.\n *\n * @param store - Keyv store to iterate\n * @param service - Service name\n * @returns Array of account IDs (e.g., email addresses)\n *\n * @example\n * const accounts = await listAccountIds(store, 'gmail');\n * // Returns: ['alice@gmail.com', 'bob@gmail.com']\n *\n * @example\n * // Empty array if no accounts found\n * const empty = await listAccountIds(store, 'unknown-service');\n * // Returns: []\n */\nexport async function listAccountIds(store: Keyv, service: string): Promise<string[]> {\n  const accountIds: string[] = [];\n\n  try {\n    const iterator = store.iterator?.(undefined);\n    if (!iterator) {\n      return accountIds;\n    }\n\n    for await (const [key] of iterator) {\n      const parsed = parseTokenKey(key);\n      if (parsed && parsed.service === service) {\n        accountIds.push(parsed.accountId);\n      }\n    }\n  } catch (_error) {\n    // If iteration fails, return empty array (fail gracefully)\n    // This handles stores that don't support iteration\n    return accountIds;\n  }\n\n  return accountIds;\n}\n"],"names":["createAccountKey","createServiceKey","listAccountIds","parseTokenKey","validateKeyParams","params","Object","entries","key","value","Error","includes","type","accountId","service","parts","split","length","undefined","store","accountIds","iterator","parsed","_error","push"],"mappings":"AAAA;;;;;CAKC;;;;;;;;;;;QAmFeA;eAAAA;;QA8BAC;eAAAA;;QAgDMC;eAAAA;;QA9BNC;eAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAhGhB;;CAEC,GACD,SAASC,kBAAkBC,MAA2C;QAC/D,kCAAA,2BAAA;;QAAL,QAAK,YAAsBC,OAAOC,OAAO,CAACF,4BAArC,SAAA,6BAAA,QAAA,yBAAA,iCAA8C;YAA9C,mCAAA,iBAAOG,sBAAKC;YACf,IAAI,OAAOA,UAAU,UAAU;gBAC7B,MAAM,IAAIC,MAAM,AAAC,kBAAgD,OAA/BF,KAAI,6BAAwC,OAAb,OAAOC,sCAAP,SAAOA;YAC1E;YACA,IAAIA,MAAME,QAAQ,CAAC,MAAM;gBACvB,MAAM,IAAID,MAAM,AAAC,kBAAyDD,OAAxCD,KAAI,sCAA0C,OAANC;YAC5E;QACF;;QAPK;QAAA;;;iBAAA,6BAAA;gBAAA;;;gBAAA;sBAAA;;;;AAQP;AAoCO,SAAST,iBAAiBY,IAAoB,EAAEP,MAAwB;IAC7ED,kBAAkBC;IAClB,OAAO,AAAC,GAAsBA,OAApBA,OAAOQ,SAAS,EAAC,KAAqBD,OAAlBP,OAAOS,OAAO,EAAC,KAAQ,OAALF;AAClD;AA2BO,SAASX,iBAAiBW,IAAoB,EAAEP,MAAwB;IAC7ED,kBAAkBC;IAClB,OAAO,AAAC,GAAoBO,OAAlBP,OAAOS,OAAO,EAAC,KAAQ,OAALF;AAC9B;AAeO,SAAST,cAAcK,GAAW;IACvC,IAAMO,QAAQP,IAAIQ,KAAK,CAAC;IACxB,IAAID,MAAME,MAAM,KAAK,KAAKF,KAAK,CAAC,EAAE,KAAK,WAAW,CAACA,KAAK,CAAC,EAAE,IAAI,CAACA,KAAK,CAAC,EAAE,EAAE;QACxE,OAAOG;IACT;IACA,OAAO;QACLL,WAAWE,KAAK,CAAC,EAAE;QACnBD,SAASC,KAAK,CAAC,EAAE;IACnB;AACF;AAqBO,SAAeb,eAAeiB,KAAW,EAAEL,OAAe;;YACzDM,YAGaD,iBAAXE,2GAKYb,KACVc,aAKDC;;;;oBAdHH;;;;;;;;;oBAGEC,YAAWF,kBAAAA,MAAME,QAAQ,cAAdF,sCAAAA,qBAAAA,OAAiBD;oBAClC,IAAI,CAACG,UAAU;wBACb;;4BAAOD;;oBACT;;;;;;;;;;gDAE0BC;;;;;;;;;;;;;2DAARb;oBACVc,SAASnB,cAAcK;oBAC7B,IAAIc,UAAUA,OAAOR,OAAO,KAAKA,SAAS;wBACxCM,WAAWI,IAAI,CAACF,OAAOT,SAAS;oBAClC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBAEKU;oBACP,2DAA2D;oBAC3D,mDAAmD;oBACnD;;wBAAOH;;;oBAGT;;wBAAOA;;;;IACT"}