@monetize.software/sdk-extension 3.0.0-alpha.4 → 3.0.0-alpha.6

package/dist/chunks/{chrome-port-BAMwPMV0.js → chrome-port-CxW3Pwc2.js}

@@ -3,7 +3,7 @@ class o extends Error {
     super(e), this.name = "PaywallError", this.code = t, this.status = s.status, this.cause = s.cause;
   }
 }
-class q extends o {
+class F extends o {
   constructor(t) {
     super("not_enough_queries", t.message ?? "Not enough queries", {
       status: 402
@@ -11,7 +11,7 @@ class q extends o {
   }
 }
 const m = "3.0.0-alpha.0";
-class L {
+class P {
   constructor(t) {
     this.opts = t;
   }
@@ -22,9 +22,9 @@ class L {
     r && n.set("Authorization", `Bearer ${r}`);
     const l = typeof FormData < "u" && e.body instanceof FormData;
     e.body && !n.has("Content-Type") && !l && n.set("Content-Type", "application/json");
-    let u;
+    let d;
     try {
-      u = await a(s, {
+      d = await a(s, {
         ...e,
         headers: n,
         credentials: "omit"
@@ -32,18 +32,18 @@ class L {
     } catch (h) {
       throw (h && typeof h == "object" && "name" in h ? h.name : void 0) === "AbortError" ? new o("aborted", "Request aborted", { cause: h }) : new o("network_error", "Network request failed", { cause: h });
     }
-    const f = (u.headers.get("content-type") ?? "").includes("application/json") ? await u.json().catch(() => null) : null;
-    if (!u.ok) {
-      const h = f && typeof f == "object" && "code" in f && String(f.code) || `http_${u.status}`, w = f && typeof f == "object" && "message" in f && String(f.message) || u.statusText || "Request failed";
-      throw new o(h, w, { status: u.status, cause: f });
+    const y = (d.headers.get("content-type") ?? "").includes("application/json") ? await d.json().catch(() => null) : null;
+    if (!d.ok) {
+      const h = y && typeof y == "object" && "code" in y && String(y.code) || `http_${d.status}`, g = y && typeof y == "object" && "message" in y && String(y.message) || d.statusText || "Request failed";
+      throw new o(h, g, { status: d.status, cause: y });
     }
-    return f;
+    return y;
   }
 }
-function $() {
+function x() {
   return typeof chrome < "u" && !!chrome?.storage?.local && !!chrome?.runtime?.id;
 }
-const x = {
+const H = {
   getItem(i) {
     return new Promise((t) => {
       chrome.storage.local.get([i], (e) => {
@@ -73,7 +73,7 @@ const x = {
     };
     return e.addListener(s), () => e.removeListener(s);
   }
-}, H = {
+}, J = {
   async getItem(i) {
     try {
       return window.localStorage.getItem(i);
@@ -101,21 +101,21 @@ const x = {
     };
     return window.addEventListener("storage", e), () => window.removeEventListener("storage", e);
   }
-}, I = /* @__PURE__ */ new Map(), J = {
+}, S = /* @__PURE__ */ new Map(), V = {
   async getItem(i) {
-    return I.get(i) ?? null;
+    return S.get(i) ?? null;
   },
   async setItem(i, t) {
-    I.set(i, t);
+    S.set(i, t);
   },
   async removeItem(i) {
-    I.delete(i);
+    S.delete(i);
   }
 };
 function R(i) {
-  return i || ($() ? x : typeof window < "u" && "localStorage" in window ? H : J);
+  return i || (x() ? H : typeof window < "u" && "localStorage" in window ? J : V);
 }
-const y = {
+const u = {
   visitorId: "pw-visitor-id",
   lastLoginMethod: (i) => `pw-${i}-last-login-method`,
   lastLoginEmail: (i) => `pw-${i}-last-login-email`,
@@ -145,7 +145,7 @@ const y = {
   // (оптимистично через `decrementBalanceLocal`).
   balances: (i, t) => `pw-${i}-${t}-balances-v1`
 };
-function P() {
+function D() {
   const i = typeof globalThis < "u" ? globalThis.crypto : void 0;
   if (i && typeof i.randomUUID == "function") return i.randomUUID();
   const t = new Uint8Array(16);
@@ -159,18 +159,18 @@ function P() {
 }
 async function _(i) {
   try {
-    const e = await i.getItem(y.visitorId);
+    const e = await i.getItem(u.visitorId);
     if (e && typeof e == "string" && e.length >= 16) return e;
   } catch {
   }
-  const t = P();
+  const t = D();
   try {
-    await i.setItem(y.visitorId, t);
+    await i.setItem(u.visitorId, t);
   } catch {
   }
   return t;
 }
-function D(i) {
+function M(i) {
   const t = new Uint8Array(i), e = typeof globalThis < "u" ? globalThis.crypto : void 0;
   if (e && typeof e.getRandomValues == "function")
     e.getRandomValues(t);
@@ -183,25 +183,30 @@ function b(i) {
   for (let e = 0; e < i.length; e++) t += String.fromCharCode(i[e]);
   return btoa(t).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
 }
-function V() {
-  return b(D(64));
+function j() {
+  return b(M(64));
 }
-async function j(i) {
+async function G(i) {
   const t = new TextEncoder().encode(i), e = globalThis.crypto;
   if (!e?.subtle?.digest)
     throw new Error("crypto.subtle is required for PKCE");
   const s = await e.subtle.digest("SHA-256", t);
   return b(new Uint8Array(s));
 }
-function G() {
-  return b(D(16));
+function X() {
+  return b(M(16));
 }
-const X = "https://appbox.space", z = 6e4, Q = 600 * 1e3;
+const z = 6e4, Q = 600 * 1e3;
 class mt {
   constructor(t) {
     if (this.session = null, this.inflightRefresh = null, this.inflightAnonSignin = null, this.listeners = /* @__PURE__ */ new Set(), this.storageUnwatch = null, this.destroyed = !1, this.oauthFlows = /* @__PURE__ */ new Map(), !t.paywallId)
       throw new o("invalid_config", "paywallId is required");
-    this.paywallId = t.paywallId, this.apiOrigin = t.apiOrigin ?? X, this.storage = R(t.storage), this.api = new L({
+    if (!t.apiOrigin)
+      throw new o(
+        "invalid_config",
+        "apiOrigin is required. Pass the paywall custom_domain configured in the platform."
+      );
+    this.paywallId = t.paywallId, this.apiOrigin = t.apiOrigin, this.storage = R(t.storage), this.api = new P({
       apiOrigin: this.apiOrigin,
       paywallId: t.paywallId,
       fetch: t.fetch
@@ -292,7 +297,7 @@ class mt {
         })
       }
     ), n = this.toSession(a, a.user);
-    return this.setSession(n, { event: "SIGNED_IN" }), n;
+    return this.setSession(n, { event: "SIGNED_IN" }), this.recordLastLogin("email", t.email), n;
   }
   /**
    * Signup. Если в Supabase включён email confirm — сервер возвращает
@@ -318,9 +323,9 @@ class mt {
       }
     );
     if (a.status === "confirmation_required")
-      return { kind: "confirmation_required", user: a.user };
+      return this.recordLastLogin("email", t.email), { kind: "confirmation_required", user: a.user };
     const n = this.toSession(a, a.user);
-    return this.setSession(n, { event: "SIGNED_IN" }), { kind: "signed_in", session: n };
+    return this.setSession(n, { event: "SIGNED_IN" }), this.recordLastLogin("email", t.email), { kind: "signed_in", session: n };
   }
   /**
    * Повторная отправка confirmation-email после signUp с включённым
@@ -618,7 +623,7 @@ class mt {
    */
   async startOAuthFlow(t) {
     await this.hydrated, this.gcOAuthFlows();
-    const e = V(), s = await j(e), a = G(), n = {}, r = await this.getAccessToken().catch(() => null);
+    const e = j(), s = await G(e), a = X(), n = {}, r = await this.getAccessToken().catch(() => null);
     r && (n.Authorization = `Bearer ${r}`);
     const { authorize_url: l } = await this.api.request(
       `/api/v1/paywall/${this.paywallId}/auth/oauth/init`,
@@ -636,8 +641,9 @@ class mt {
     return this.oauthFlows.set(a, {
       verifier: e,
       userMeta: t.userMeta,
+      provider: t.provider,
       startedAt: Date.now()
-    }), { authorize_url: l, state: a };
+    }), this.recordLastLoginMethod(t.provider), { authorize_url: l, state: a };
   }
   /**
    * Шаг 2 OAuth split-API: обменивает code (полученный из popup) на session,
@@ -672,7 +678,7 @@ class mt {
     if (this.destroyed)
       throw new o("aborted", "AuthClient destroyed mid-flow");
     const n = this.toSession(a, a.user);
-    return this.setSession(n, { event: "SIGNED_IN" }), n;
+    return this.setSession(n, { event: "SIGNED_IN" }), n.user.email && this.recordLastLoginEmail(n.user.email), n;
   }
   gcOAuthFlows() {
     const t = Date.now() - Q;
@@ -813,7 +819,7 @@ class mt {
   setSession(t, e) {
     if (this.destroyed) return;
     const s = this.session;
-    this.session = t, e.skipPersist || this.persist(), tt(s, t) || this.emit(e.event);
+    this.session = t, e.skipPersist || this.persist(), et(s, t) || this.emit(e.event);
   }
   emit(t) {
     for (const e of this.listeners)
@@ -824,7 +830,7 @@ class mt {
       }
   }
   storageKey() {
-    return y.authSession(this.paywallId);
+    return u.authSession(this.paywallId);
   }
   async hydrate() {
     try {
@@ -878,7 +884,7 @@ class mt {
   }
   async readAnonRefreshToken() {
     try {
-      const t = await this.storage.getItem(y.anonRefreshToken(this.paywallId));
+      const t = await this.storage.getItem(u.anonRefreshToken(this.paywallId));
       return typeof t == "string" && t.length > 0 ? t : null;
     } catch {
       return null;
@@ -887,7 +893,7 @@ class mt {
   async writeAnonRefreshToken(t) {
     try {
       await this.storage.setItem(
-        y.anonRefreshToken(this.paywallId),
+        u.anonRefreshToken(this.paywallId),
         t
       );
     } catch {
@@ -896,11 +902,41 @@ class mt {
   async clearAnonRefreshToken() {
     try {
       await this.storage.removeItem(
-        y.anonRefreshToken(this.paywallId)
+        u.anonRefreshToken(this.paywallId)
       );
     } catch {
     }
   }
+  /**
+   * Last-used auth method + email — для UI бейджа "Last used" и pre-fill'а
+   * email-инпута. Storage paywall-scoped, поэтому переключение между
+   * пейволами на одном host'е не пересекает данные. Чтение всегда возвращает
+   * объект — отсутствующие поля = null. */
+  async getLastLogin() {
+    try {
+      const [t, e] = await Promise.all([
+        this.storage.getItem(u.lastLoginMethod(this.paywallId)),
+        this.storage.getItem(u.lastLoginEmail(this.paywallId))
+      ]);
+      return !t || !tt(t) ? null : { method: t, email: typeof e == "string" && e ? e : null };
+    } catch {
+      return null;
+    }
+  }
+  /** Запись method и email атомарно (для email/password flows — оба известны
+   *  на момент signin/signup'а). OAuth-flows используют раздельные
+   *  recordLastLoginMethod (до popup) и recordLastLoginEmail (после exchange). */
+  recordLastLogin(t, e) {
+    this.recordLastLoginMethod(t), e && this.recordLastLoginEmail(e);
+  }
+  recordLastLoginMethod(t) {
+    this.storage.setItem(u.lastLoginMethod(this.paywallId), t).catch(() => {
+    });
+  }
+  recordLastLoginEmail(t) {
+    this.storage.setItem(u.lastLoginEmail(this.paywallId), t).catch(() => {
+    });
+  }
   /**
    * Читает stable visitor_id из storage если он там уже есть. НЕ генерит:
    * AuthClient может быть инстанцирован раньше BillingClient, а синтетический
@@ -910,7 +946,7 @@ class mt {
    */
   async readVisitorId() {
     try {
-      const t = await this.storage.getItem(y.visitorId);
+      const t = await this.storage.getItem(u.visitorId);
       return typeof t == "string" && t.length >= 16 ? t : void 0;
     } catch {
       return;
@@ -922,10 +958,10 @@ function Z(i, t) {
   return new Promise((e, s) => {
     let a = !1;
     const n = () => {
-      a = !0, window.removeEventListener("message", r), clearInterval(l), clearTimeout(u);
-    }, r = (d) => {
+      a = !0, window.removeEventListener("message", r), clearInterval(l), clearTimeout(d);
+    }, r = (f) => {
       if (a) return;
-      const c = d.data;
+      const c = f.data;
       if (!(!c || c.type !== "pw-oauth") && c.messageId === t) {
         if (c.status === "success" && c.code) {
           n();
@@ -950,14 +986,14 @@ function Z(i, t) {
       }
     }, l = setInterval(() => {
       if (a) return;
-      let d;
+      let f;
       try {
-        d = i.closed;
+        f = i.closed;
       } catch {
         return;
       }
-      d && (n(), s(new o("oauth_cancelled", "auth popup was closed")));
-    }, Y), u = setTimeout(() => {
+      f && (n(), s(new o("oauth_cancelled", "auth popup was closed")));
+    }, Y), d = setTimeout(() => {
       if (!a) {
         n();
         try {
@@ -970,15 +1006,22 @@ function Z(i, t) {
     window.addEventListener("message", r);
   });
 }
-function tt(i, t) {
+function tt(i) {
+  return i === "google" || i === "apple" || i === "github" || i === "facebook" || i === "email";
+}
+function et(i, t) {
   return i === t ? !0 : !i || !t ? !1 : i.access_token === t.access_token && i.refresh_token === t.refresh_token && i.expires_at === t.expires_at && i.user.id === t.user.id && i.user.email === t.user.email;
 }
-const et = "https://appbox.space";
 class st {
   constructor(t) {
     if (!t.paywallId)
       throw new o("invalid_config", "paywallId is required");
-    this.paywallId = t.paywallId, this.apiOrigin = t.apiOrigin ?? et, this.auth = t.auth, this.userId = t.userId, this.capabilities = t.capabilities, this.customFetch = t.fetch, this.onChargeSuccess = t.onChargeSuccess, this.onQuotaExceeded = t.onQuotaExceeded, t.userId && !t.auth && typeof window < "u" && typeof window.document < "u" && console.warn(
+    if (!t.apiOrigin)
+      throw new o(
+        "invalid_config",
+        "apiOrigin is required. Pass the paywall custom_domain configured in the platform."
+      );
+    this.paywallId = t.paywallId, this.apiOrigin = t.apiOrigin, this.auth = t.auth, this.userId = t.userId, this.capabilities = t.capabilities, this.customFetch = t.fetch, this.onChargeSuccess = t.onChargeSuccess, this.onQuotaExceeded = t.onQuotaExceeded, t.userId && !t.auth && typeof window < "u" && typeof window.document < "u" && console.warn(
       "[paywall] WARNING: ApiGatewayClient.userId set without auth in browser. Client can spoof userId. Use AuthClient + Bearer for trusted user.id."
     );
   }
@@ -992,13 +1035,13 @@ class st {
     a.set("X-SDK-Version", m), a.set("X-Paywall-Id", this.paywallId), this.capabilities?.length && a.set("X-SDK-Capabilities", this.capabilities.join(","));
     const n = await this.auth?.getAccessToken();
     n ? a.set("Authorization", `Bearer ${n}`) : this.userId && a.set("X-User-ID", this.userId);
-    const r = typeof FormData < "u" && t.body instanceof FormData, l = typeof Blob < "u" && t.body instanceof Blob, u = typeof ReadableStream < "u" && t.body instanceof ReadableStream, d = typeof t.body == "string";
+    const r = typeof FormData < "u" && t.body instanceof FormData, l = typeof Blob < "u" && t.body instanceof Blob, d = typeof ReadableStream < "u" && t.body instanceof ReadableStream, f = typeof t.body == "string";
     let c;
-    t.body === void 0 || t.body === null ? c = void 0 : r || l || u || d ? c = t.body : (c = JSON.stringify(t.body), a.has("Content-Type") || a.set("Content-Type", "application/json"));
-    const f = this.customFetch ?? fetch;
+    t.body === void 0 || t.body === null ? c = void 0 : r || l || d || f ? c = t.body : (c = JSON.stringify(t.body), a.has("Content-Type") || a.set("Content-Type", "application/json"));
+    const y = this.customFetch ?? fetch;
     let h;
     try {
-      h = await f(s.toString(), {
+      h = await y(s.toString(), {
         method: t.method ?? "POST",
         headers: a,
         body: c,
@@ -1006,8 +1049,8 @@ class st {
         credentials: "omit"
       });
     } catch (p) {
-      const K = p instanceof Error ? p.message : String(p);
-      throw new o("network_error", `Network request failed: ${K}`, { cause: p });
+      const $ = p instanceof Error ? p.message : String(p);
+      throw new o("network_error", `Network request failed: ${$}`, { cause: p });
     }
     if (h.status === 402) {
       const p = await it(h);
@@ -1021,8 +1064,8 @@ class st {
         { status: h.status }
       );
     }
-    const w = h.headers.get("X-Query-Type") ?? void 0;
-    return this.onChargeSuccess?.(w), h;
+    const g = h.headers.get("X-Query-Type") ?? void 0;
+    return this.onChargeSuccess?.(g), h;
   }
 }
 async function it(i) {
@@ -1037,7 +1080,7 @@ async function it(i) {
     const a = e[0];
     Array.isArray(a) ? s = a : a && Array.isArray(a.balances) && (s = a.balances);
   }
-  return new q({
+  return new F({
     balances: s,
     queryType: t.details?.queryType ?? "",
     currentBalance: t.details?.currentBalance ?? null
@@ -1052,12 +1095,13 @@ async function at(i) {
     return null;
   }
 }
-const nt = 5e3, rt = 30 * 6e4, B = 60 * 6e4, ot = 5 * 6e4, A = {
+const nt = 5e3, rt = 30 * 6e4, B = 60 * 6e4, ot = 5 * 6e4, k = {
   has_active_subscription: !1,
   purchases: [],
-  trial: null
+  trial: null,
+  had_previous_trial: !1
 };
-function k(i) {
+function A(i) {
   return i && (i.email || i.userId || i.anonymousId) || "guest";
 }
 function ct(i, t) {
@@ -1071,16 +1115,20 @@ function ut(i, t) {
     if (i[e].type !== t[e].type || i[e].count !== t[e].count) return !1;
   return !0;
 }
-const dt = "https://appbox.space";
-class It {
+class St {
   constructor(t) {
     if (this.cachedBootstrap = null, this.cachedBootstrapAt = 0, this.inflightBootstrap = null, this.bootstrapListeners = /* @__PURE__ */ new Set(), this.bootstrapStorageUnwatch = null, this.authUnsubscribe = null, this.cachedUser = null, this.cachedUserAt = 0, this.inflightUser = null, this.userListeners = /* @__PURE__ */ new Set(), this.visitorIdPromise = null, this.visitorId = null, this.inflightCheckouts = /* @__PURE__ */ new Map(), this.cachedBalances = null, this.cachedBalancesAt = 0, this.balancesStorageUnwatch = null, this.inflightBalances = null, this.balanceListeners = /* @__PURE__ */ new Set(), this.previewVersionCounter = 0, !t.paywallId)
       throw new o("invalid_config", "paywallId is required");
-    this.paywallId = t.paywallId, this.apiOrigin = t.apiOrigin ?? dt, this.capabilities = t.capabilities, this.auth = t.auth, this.previewMode = t.preview === !0;
+    if (!t.apiOrigin)
+      throw new o(
+        "invalid_config",
+        'apiOrigin is required. Pass the paywall custom_domain configured in the platform (e.g. "https://pay.your-domain.com"). The legacy "appbox.space" fallback is not used in SDK 3.0.'
+      );
+    this.paywallId = t.paywallId, this.apiOrigin = t.apiOrigin, this.capabilities = t.capabilities, this.auth = t.auth, this.previewMode = t.preview === !0;
     const e = t.auth?.getCachedUser();
-    this.identity = t.identity ?? (e ? U(e) : void 0), this.apiKey = t.apiKey, this.fetchImpl = t.fetch, t.apiKey && typeof window < "u" && typeof window.document < "u" && console.error(
+    this.identity = t.identity ?? (e ? O(e) : void 0), this.apiKey = t.apiKey, this.fetchImpl = t.fetch, t.apiKey && typeof window < "u" && typeof window.document < "u" && console.error(
       "[paywall] SECURITY: BillingClient.apiKey detected in browser context. This is a server-SDK key and exposes your account. Remove apiKey or move BillingClient to a trusted backend."
-    ), this.storage = R(t.storage), this.api = new L({
+    ), this.storage = R(t.storage), this.api = new P({
       apiOrigin: this.apiOrigin,
       paywallId: t.paywallId,
       capabilities: t.capabilities,
@@ -1090,8 +1138,8 @@ class It {
       // Authorization-хедер просто не выставится.
       getAuthToken: t.auth ? () => t.auth.getAccessToken() : void 0
     }), t.auth && (this.authUnsubscribe = t.auth.onAuthChange((s, a) => {
-      const n = a ? U(a.user) : void 0;
-      ft(this.identity, n) || this.setIdentity(n);
+      const n = a ? O(a.user) : void 0;
+      dt(this.identity, n) || this.setIdentity(n);
     })), this.hydrateUserFromStorage(), this.hydrateBootstrapFromStorage(), this.subscribeBootstrapStorage(), this.hydrateBalancesFromStorage(), this.subscribeBalancesStorage(), this.visitorIdPromise = _(this.storage).then((s) => (this.visitorId = s, s));
   }
   /**
@@ -1186,7 +1234,7 @@ class It {
       offers: t.offers !== void 0 ? t.offers : e.offers,
       version: `preview:${++this.previewVersionCounter}`
     };
-    s.layout || (s.layout = O(s.settings, s.prices)), g(s), this.cachedBootstrap = s, this.cachedBootstrapAt = Date.now();
+    s.layout || (s.layout = E(s.settings, s.prices)), w(s), this.cachedBootstrap = s, this.cachedBootstrapAt = Date.now();
     for (const a of this.bootstrapListeners)
       try {
         a(s);
@@ -1208,7 +1256,7 @@ class It {
     if ("unchanged" in a && a.unchanged)
       return this.cachedBootstrap ? (this.cachedBootstrapAt = Date.now(), a.user && this.applyUser(a.user), this.cachedBootstrap) : this.fetchBootstrap({ signal: t.signal });
     const n = a;
-    return n.layout || (n.layout = O(n.settings, n.prices)), g(n), this.applyBootstrap(n, { persist: !0 }), n.user && this.applyUser(n.user), n;
+    return ft(n.settings.custom_domain, this.apiOrigin), n.layout || (n.layout = E(n.settings, n.prices)), w(n), this.applyBootstrap(n, { persist: !0 }), n.user && this.applyUser(n.user), n;
   }
   // Фоновый revalidate из stale-while-revalidate ветки. Дедуплицируется через
   // `inflightBootstrap`, чтобы параллельные revalidate'ы не пересекались.
@@ -1238,11 +1286,11 @@ class It {
   async hydrateBootstrapFromStorage() {
     if (!this.cachedBootstrap)
       try {
-        const t = await this.storage.getItem(y.bootstrap(this.paywallId));
+        const t = await this.storage.getItem(u.bootstrap(this.paywallId));
         if (!t) return;
         const e = JSON.parse(t);
         if (!e?.bootstrap || Date.now() - e.at > B || this.cachedBootstrap) return;
-        g(e.bootstrap), this.cachedBootstrap = e.bootstrap, this.cachedBootstrapAt = e.at;
+        w(e.bootstrap), this.cachedBootstrap = e.bootstrap, this.cachedBootstrapAt = e.at;
         for (const s of this.bootstrapListeners)
           try {
             s(e.bootstrap);
@@ -1257,7 +1305,7 @@ class It {
       try {
         const { user: e, ...s } = t;
         await this.storage.setItem(
-          y.bootstrap(this.paywallId),
+          u.bootstrap(this.paywallId),
           JSON.stringify({ at: Date.now(), bootstrap: s })
         );
       } catch {
@@ -1268,7 +1316,7 @@ class It {
   // no-op, всё работает как раньше через сеть.
   subscribeBootstrapStorage() {
     typeof this.storage.watch == "function" && (this.bootstrapStorageUnwatch = this.storage.watch(
-      y.bootstrap(this.paywallId),
+      u.bootstrap(this.paywallId),
       (t) => {
         if (t)
           try {
@@ -1278,7 +1326,7 @@ class It {
               this.cachedBootstrapAt = e.at;
               return;
             }
-            g(e.bootstrap), this.applyBootstrap(e.bootstrap, { persist: !1 });
+            w(e.bootstrap), this.applyBootstrap(e.bootstrap, { persist: !1 });
           } catch {
           }
       }
@@ -1325,7 +1373,7 @@ class It {
    * есть `navigator.language`.
    */
   getUserLanguage() {
-    const t = typeof navigator < "u" && navigator.language ? navigator.language : null, e = this.cachedBootstrap?.settings.locale_default ?? null, s = this.cachedBootstrap ? M(this.cachedBootstrap) : null;
+    const t = typeof navigator < "u" && navigator.language ? navigator.language : null, e = this.cachedBootstrap?.settings.locale_default ?? null, s = this.cachedBootstrap ? q(this.cachedBootstrap) : null;
     return { tag: s ?? t ?? e, applied: s, browserLanguage: t, countryLanguage: e };
   }
   /**
@@ -1340,7 +1388,7 @@ class It {
     return !t && this.cachedUser && Date.now() - this.cachedUserAt < nt ? this.cachedUser : this.inflightUser ? this.inflightUser : (this.inflightUser = (async () => {
       try {
         if (!this.identity?.email)
-          return this.applyUser(A), A;
+          return this.applyUser(k), k;
         const s = await this.api.request(
           `/api/v1/paywall/${this.paywallId}/user-state`,
           { headers: { "X-User-Email": this.identity.email }, signal: e }
@@ -1405,7 +1453,7 @@ class It {
     }
   }
   storageKey() {
-    return y.userState(this.paywallId, k(this.identity));
+    return u.userState(this.paywallId, A(this.identity));
   }
   async hydrateUserFromStorage() {
     if (!this.cachedUser)
@@ -1560,7 +1608,7 @@ class It {
         }
   }
   balancesStorageKey() {
-    return y.balances(this.paywallId, k(this.identity));
+    return u.balances(this.paywallId, A(this.identity));
   }
   async hydrateBalancesFromStorage() {
     if (!this.cachedBalances)
@@ -1614,10 +1662,10 @@ class It {
     const e = t.idempotencyKey ?? `auto:${t.priceId}`, s = this.inflightCheckouts.get(e);
     if (s) return s;
     const n = {
-      "Idempotency-Key": t.idempotencyKey ?? P()
+      "Idempotency-Key": t.idempotencyKey ?? D()
     };
     this.apiKey && (n["X-Api-Key"] = this.apiKey);
-    const r = this.cachedBootstrap?.settings, l = t.successUrl ?? r?.success_redirect_url ?? void 0, u = t.shopUrl ?? r?.checkout_shop_url ?? void 0, d = this.api.request(`/api/v1/paywall/${this.paywallId}/start-checkout`, {
+    const r = this.cachedBootstrap?.settings, l = t.successUrl ?? r?.success_redirect_url ?? void 0, d = t.shopUrl ?? r?.checkout_shop_url ?? void 0, f = this.api.request(`/api/v1/paywall/${this.paywallId}/start-checkout`, {
       method: "POST",
       headers: n,
       signal: t.signal,
@@ -1626,7 +1674,7 @@ class It {
         priceId: Number(t.priceId),
         successUrl: l,
         errorUrl: t.errorUrl,
-        shopUrl: u,
+        shopUrl: d,
         productName: r?.checkout_product_name ?? void 0,
         trial_days: t.trialDays,
         ignoreActivePurchase: t.ignoreActivePurchase ? !0 : void 0,
@@ -1639,10 +1687,10 @@ class It {
         { status: 409, cause: c.cause }
       ) : c;
     });
-    return this.inflightCheckouts.set(e, d), d.finally(() => {
-      this.inflightCheckouts.get(e) === d && this.inflightCheckouts.delete(e);
+    return this.inflightCheckouts.set(e, f), f.finally(() => {
+      this.inflightCheckouts.get(e) === f && this.inflightCheckouts.delete(e);
     }).catch(() => {
-    }), d;
+    }), f;
   }
   /**
    * URL Stripe/Paddle/Chargebee customer portal — место, где залогиненный
@@ -1758,23 +1806,46 @@ class It {
     });
   }
 }
-function U(i) {
+function O(i) {
   return { email: i.email, userId: i.id };
 }
-function ft(i, t) {
+function dt(i, t) {
   return i === t ? !0 : !i || !t ? !1 : i.email === t.email && i.userId === t.userId && i.anonymousId === t.anonymousId;
 }
-function O(i, t) {
+function U(i) {
+  if (!i) return null;
+  const t = i.trim();
+  if (!t) return null;
+  try {
+    return new URL(t.includes("://") ? t : `https://${t}`).origin;
+  } catch {
+    return null;
+  }
+}
+function ft(i, t) {
+  const e = U(i);
+  if (!(!e || U(t) === e))
+    throw new o(
+      "invalid_config",
+      `apiOrigin mismatch: SDK initialized with "${t}" but paywall is configured with custom_domain "${i}". Use the custom_domain from the platform paywall settings.`
+    );
+}
+function E(i, t) {
   return {
     type: "modal",
     blocks: [
+      // offer_banner НЕ в default layout — PaywallRoot рендерит его как
+      // top-tab над dialog'ом (rounded-top, negative margin), за пределами
+      // scrollable area. Блок остаётся в registry для opt-in inline-вариантa.
       { type: "heading", text: i.name || "Upgrade", level: 1 },
       { type: "price_grid", priceIds: t.map((e) => e.id) },
-      { type: "cta_button", label: "Continue", action: "checkout" }
+      { type: "cta_button", action: "checkout" },
+      { type: "guarantee_badge" },
+      { type: "current_session" }
     ]
   };
 }
-function M(i) {
+function q(i) {
   const t = i.locales;
   if (!t) return null;
   const e = [];
@@ -1789,8 +1860,8 @@ function M(i) {
     if (a && Object.prototype.hasOwnProperty.call(t, a)) return a;
   return null;
 }
-function g(i) {
-  const t = M(i);
+function w(i) {
+  const t = q(i);
   if (!t) return;
   const e = i.locales?.[t];
   e && (e.layout && (i.layout = e.layout), e.prices && (i.prices = i.prices.map((s) => {
@@ -1800,8 +1871,8 @@ function g(i) {
     return "label" in a && (n.label = a.label ?? null), "description" in a && (n.description = a.description ?? null), n;
   })));
 }
-const yt = 1500, pt = 20, E = 200;
-class St {
+const yt = 1500, pt = 20, L = 200;
+class It {
   constructor(t) {
     this.buffer = [], this.flushTimer = null, this.destroyed = !1, this.unloadHandler = null, this.visibilityHandler = null, this.opts = t, this.isEnabled() && this.attachUnloadHandlers();
   }
@@ -1816,7 +1887,7 @@ class St {
       this.flush();
       return;
     }
-    this.buffer.length > E && (this.buffer = this.buffer.slice(-E)), this.scheduleFlush();
+    this.buffer.length > L && (this.buffer = this.buffer.slice(-L)), this.scheduleFlush();
   }
   scheduleFlush() {
     if (this.flushTimer || this.destroyed) return;
@@ -1900,13 +1971,13 @@ class St {
   }
 }
 const C = 3600 * 1e3;
-function S(i) {
+function I(i) {
   return `paywall-${i}-trial-time-first-open`;
 }
 function v(i) {
   return `paywall-${i}-skip-times`;
 }
-class F {
+class K {
   constructor(t, e, s) {
     this.storage = t, this.paywallId = e, this.config = s;
   }
@@ -1917,10 +1988,10 @@ class F {
     return this.config.mode === "time" ? this.recordTime() : this.recordOpens();
   }
   async reset() {
-    await this.storage.removeItem(this.config.mode === "time" ? S(this.paywallId) : v(this.paywallId));
+    await this.storage.removeItem(this.config.mode === "time" ? I(this.paywallId) : v(this.paywallId));
   }
   async checkTime() {
-    const t = this.config.payload * C, e = await this.storage.getItem(S(this.paywallId)), s = e ? Number(e) : null;
+    const t = this.config.payload * C, e = await this.storage.getItem(I(this.paywallId)), s = e ? Number(e) : null;
     if (!s || !Number.isFinite(s))
       return {
         mode: "time",
@@ -1950,7 +2021,7 @@ class F {
     };
   }
   async recordTime() {
-    const t = this.config.payload * C, e = S(this.paywallId), s = await this.storage.getItem(e);
+    const t = this.config.payload * C, e = I(this.paywallId), s = await this.storage.getItem(e);
     let a = s ? Number(s) : null;
     (!a || !Number.isFinite(a)) && (a = Date.now(), await this.storage.setItem(e, String(a)));
     const n = a + t, r = Math.max(0, n - Date.now());
@@ -1976,11 +2047,11 @@ class F {
   }
 }
 let N = !1;
-class wt {
+class gt {
   constructor(t, e, s) {
     N || (N = !0, console.warn(
       '[paywall] trial.storage="server" is not implemented yet — falling back to client storage. State lives in localStorage; users can reset trial by clearing site data.'
-    )), this.fallback = new F(t, e, s);
+    )), this.fallback = new K(t, e, s);
   }
   check() {
     return this.fallback.check();
@@ -1993,7 +2064,7 @@ class wt {
   }
 }
 function vt(i, t, e) {
-  return e.storage === "server" ? new wt(i, t, e) : new F(i, t, e);
+  return e.storage === "server" ? new gt(i, t, e) : new K(i, t, e);
 }
 const bt = 1;
 function _t(i) {
@@ -2022,7 +2093,7 @@ function Bt(i) {
   const t = new Error(i.message);
   return t.name = i.name, i.stack && (t.stack = i.stack), t;
 }
-function gt(i) {
+function wt(i) {
   let t = !1;
   const e = /* @__PURE__ */ new Set(), s = /* @__PURE__ */ new Set(), a = (r) => {
     for (const l of e) l(r);
@@ -2054,21 +2125,21 @@ function gt(i) {
     }
   };
 }
-function At(i) {
+function kt(i) {
   const t = chrome.runtime.connect({ name: i });
-  return gt(t);
+  return wt(t);
 }
 export {
   mt as A,
-  It as B,
-  St as E,
+  St as B,
+  It as E,
   o as P,
   bt as a,
-  At as b,
+  kt as b,
   vt as c,
-  gt as p,
+  wt as p,
   Bt as r,
   _t as s,
   Z as w
 };
-//# sourceMappingURL=chrome-port-BAMwPMV0.js.map
+//# sourceMappingURL=chrome-port-CxW3Pwc2.js.map