@ollaid/native-sso 2.1.5 → 2.5.0

package/dist/provider.d.ts

@@ -2,7 +2,7 @@
  * NativeSSOProvider — React Context pour @ollaid/native-sso
  * Centralise la configuration pour les hooks et composants individuels
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 import { type ReactNode } from 'react';
 export interface NativeSSOConfig {

package/dist/services/api.d.ts

@@ -2,7 +2,7 @@
  * Client API pour @ollaid/native-sso
  * Gestion des requêtes HTTP avec timeout, device ID, token storage
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 export type ApiErrorType = 'network' | 'timeout' | 'server' | 'validation' | 'auth' | 'unknown';
 export declare class ApiError extends Error {
@@ -32,7 +32,16 @@ export interface NativeAuthConfig {
 export declare const setNativeAuthConfig: (newConfig: Partial<NativeAuthConfig>) => void;
 export declare const getNativeAuthConfig: () => NativeAuthConfig;
 export declare const isDebugMode: () => boolean;
+export declare const getSaasApiBaseUrl: () => string;
+export declare const getIamApiBaseUrl: () => string;
 export declare const getDeviceId: () => string;
+/**
+ * Stable session UUID (instance id) persisted in localStorage.
+ *
+ * This is NOT a security token. It is used to disambiguate sessions across devices/webviews
+ * and to help backends implement multi-session behavior safely.
+ */
+export declare const getSessionUuid: () => string;
 declare const STORAGE: {
     readonly AUTH_TOKEN: "auth_token";
     readonly TOKEN: "token";
@@ -40,6 +49,14 @@ declare const STORAGE: {
     readonly ACCOUNT_TYPE: "account_type";
     readonly ALIAS_REFERENCE: "alias_reference";
     readonly APP_ACCESS_TOKEN_REF: "app_access_token_ref";
+    readonly REFRESH_TOKEN: "refresh_token";
+    readonly TOKEN_EXPIRES_AT: "token_expires_at";
+    readonly REFRESH_EXPIRES_AT: "refresh_expires_at";
+};
+declare const PROFILE_STORAGE: {
+    readonly IMAGE_LAST_STATUS: "sso_image_last_status";
+    readonly IMAGE_LAST_CHECK: "sso_image_last_check";
+    readonly IMAGE_RECHECK_AT: "sso_image_recheck_at";
 };
 export declare const setAuthToken: (token: string) => void;
 export declare const getAuthToken: () => string | null;
@@ -74,6 +91,16 @@ export declare const getAuthUser: <T>() => T | null;
 export declare const setAccountType: (type: string) => void;
 export declare const getAccountType: () => string | null;
 export { STORAGE as STORAGE_KEYS };
+export { PROFILE_STORAGE as PROFILE_PROMPT_KEYS };
+export interface ProfilePromptState {
+    lastStatus: boolean | null;
+    lastCheckAt: number | null;
+    recheckAt: number | null;
+}
+export declare function getProfilePromptState(): ProfilePromptState;
+export declare function setProfilePromptState(status: boolean, recheckAt?: number | null): void;
+export declare function markProfilePromptComplete(): void;
+export declare function snoozeProfilePrompt(hours?: number): void;
 export declare function fetchWithTimeout<T>(url: string, options: RequestInit, timeout: number): Promise<T>;
 export declare function getHeaders(token?: string, includeConfigPrefix?: boolean): HeadersInit;
 declare const _default: {

package/dist/services/debugLogger.d.ts

@@ -1,7 +1,7 @@
 /**
  * Debug Logger pour @ollaid/native-sso
  * Stocke l'historique des appels API en mémoire pour le DebugPanel
- * @version 2.1.4
+ * @version 2.5.0
  */
 export interface ApiCallLog {
     id: string;

package/dist/services/iamAccount.d.ts

@@ -8,7 +8,7 @@
  * Ne JAMAIS appeler ces méthodes depuis du code frontend/navigateur car la
  * secret_key serait exposée dans les DevTools réseau.
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 import type { LinkPhoneRequest, LinkPhoneResponse, LinkEmailRequest, LinkEmailResponse, RefreshUserInfoSingleRequest, RefreshUserInfoSingleResponse, RefreshUserInfoBulkRequest, RefreshUserInfoBulkResponse, UpdateAvatarRequest, UpdateAvatarResponse, ResetAvatarRequest, ResetAvatarResponse } from '../types/native';
 export declare const iamAccountService: {

package/dist/services/mobilePassword.d.ts

@@ -2,7 +2,7 @@
  * Service de récupération de mot de passe v1.0
  * Architecture Frontend-First : Appels directs à l'IAM
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 import { ApiError } from './api';
 import type { MobilePasswordInitResponse, MobilePasswordSelectMethodResponse, MobilePasswordResetResponse, MobilePasswordResendResponse } from '../types/mobile';

package/dist/services/mobileRegistration.d.ts

@@ -2,7 +2,7 @@
  * Service d'inscription Mobile SSO v1.0
  * Architecture Frontend-First : Appels directs à l'IAM via nativeAuth
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 import type { MobileRegistrationFormData, MobileVerifyOtpResponse, MobileRegistrationCompleteResponse, MobileResendOtpResponse } from '../types/mobile';
 import type { NativeInitResponse } from '../types/native';

package/dist/services/nativeAuth.d.ts

@@ -2,9 +2,9 @@
  * Service d'authentification Native Mobile SSO v1.0
  * Architecture Frontend-First : Direct IAM après encryption
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
-import type { NativeAuthType, NativeEncryptRequest, NativeEncryptResponse, NativeInitResponse, NativeValidateResponse, NativeGrantAccessResponse, NativeResendOtpResponse, NativeExchangeResponse, NativeCredentials } from '../types/native';
+import type { NativeAuthType, NativeEncryptRequest, NativeEncryptResponse, NativeInitResponse, NativeValidateResponse, NativeGrantAccessResponse, NativeResendOtpResponse, NativeExchangeResponse, NativeCredentials, NativeRefreshResponse } from '../types/native';
 export declare const nativeAuthService: {
     hasCredentials(): boolean;
     getCredentials(): NativeCredentials | null;
@@ -27,6 +27,7 @@ export declare const nativeAuthService: {
         valid: boolean;
         user?: import("../types/native").UserInfos;
     }>;
+    refresh(): Promise<NativeRefreshResponse>;
     logout(token?: string): Promise<{
         success: boolean;
     }>;

package/dist/services/profile.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Profile service for @ollaid/native-sso
+ * Updates the authenticated profile fields via IAM.
+ *
+ * @version 2.5.0
+ */
+import type { UserInfos } from '../types/native';
+export interface ProfileUpdateRequest {
+    name?: string;
+    ccphone?: string;
+    phone?: string;
+    email?: string;
+    address?: string;
+    town?: string;
+    country?: string;
+}
+export interface ProfileUpdateResponse {
+    message?: string;
+    user?: UserInfos;
+    user_infos?: UserInfos;
+}
+export interface ProfileFetchResponse {
+    message?: string;
+    user?: UserInfos;
+    user_infos?: UserInfos;
+}
+export declare const profileService: {
+    getProfile(): Promise<ProfileFetchResponse>;
+    updateProfile(data: ProfileUpdateRequest): Promise<ProfileUpdateResponse>;
+};
+export default profileService;

package/dist/services/profileChange.d.ts

@@ -0,0 +1,30 @@
+/**
+ * Profile change service for @ollaid/native-sso
+ * Uses authenticated IAM endpoints for email / phone change with OTP confirmation.
+ *
+ * @version 2.5.0
+ */
+export type ProfileChangeKind = 'email' | 'phone';
+export type ProfileChangeMethod = 'email' | 'phone';
+export interface ProfileChangeRequestResponse {
+    success: boolean;
+    message?: string;
+    request_id?: number;
+    method?: ProfileChangeMethod;
+    otp_dev?: string | null;
+}
+export interface ProfileChangeVerifyResponse {
+    success: boolean;
+    message?: string;
+    step?: 'pending_new_otp' | 'completed' | string;
+    user?: unknown;
+}
+export declare const profileChangeService: {
+    requestEmailChange(newEmail: string, method?: ProfileChangeMethod): Promise<ProfileChangeRequestResponse>;
+    requestPhoneChange(ccphone: string, phone: string, method?: ProfileChangeMethod): Promise<ProfileChangeRequestResponse>;
+    verifyOldOTP(requestId: number, otpCode: string): Promise<ProfileChangeVerifyResponse>;
+    verifyNewOTP(requestId: number, otpCode: string): Promise<ProfileChangeVerifyResponse>;
+    resendOTP(requestId: number): Promise<ProfileChangeRequestResponse>;
+    switchMethod(requestId: number, method: ProfileChangeMethod): Promise<ProfileChangeRequestResponse>;
+};
+export default profileChangeService;

package/dist/services/profileMedia.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Profile media service for @ollaid/native-sso
+ * Uploads the cropped avatar to the IAM authenticated profile endpoint.
+ *
+ * @version 2.5.0
+ */
+import type { UserInfos } from '../types/native';
+export interface ProfileImageUploadResponse {
+    message?: string;
+    user?: UserInfos;
+    user_infos?: UserInfos;
+}
+export declare const profileMediaService: {
+    uploadProfileImage(image: Blob, filename?: string): Promise<ProfileImageUploadResponse>;
+};
+export default profileMediaService;

package/dist/types/mobile.d.ts

@@ -1,7 +1,7 @@
 /**
  * Types pour le password recovery et registration Mobile SSO v1.0
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 export type MobilePasswordStatus = 'idle' | 'choice_required' | 'pending_otp' | 'pending_password' | 'completed';
 export interface MobilePasswordState {

package/dist/types/native.d.ts

@@ -2,7 +2,7 @@
  * Types pour l'authentification Native SSO v1.0
  * Architecture Frontend-First avec encryption directe
  *
- * @version 2.1.4
+ * @version 2.5.0
  */
 export type NativeAuthType = 'login_email' | 'login_phone' | 'login_access_otp' | 'register' | 'recovery_password';
 export type AccountType = 'email' | 'phone-only';
@@ -152,6 +152,10 @@ export interface NativeExchangeResponse {
     token: string;
     auth_token?: string;
     expires_at: string;
+    /** Refresh token (optional until all SaaS backends implement it) */
+    refresh_token?: string;
+    /** Refresh expiration timestamp */
+    refresh_expires_at?: string;
     user: NativeUser;
     user_infos?: UserInfos;
     /** Alias reference retournée au niveau racine par certains backends SaaS */
@@ -159,6 +163,20 @@ export interface NativeExchangeResponse {
     /** Référence AppAccessToken IAM liée au token Sanctum (pour revocation rapide) */
     app_access_token_ref?: string;
 }
+export interface NativeRefreshResponse {
+    success: boolean;
+    message?: string;
+    error_type?: string;
+    token?: string;
+    expires_at?: string;
+    refresh_token?: string;
+    refresh_expires_at?: string;
+    user?: NativeUser | UserInfos;
+    /** Référence AppAccessToken IAM liée au token Sanctum (pour revocation rapide) */
+    app_access_token_ref?: string;
+    /** Alias reference optionnelle */
+    alias_reference?: string;
+}
 export interface CheckTokenResponse {
     status?: string;
     success?: boolean;
@@ -201,6 +219,7 @@ export interface NativeAuthState {
     otpSentTo?: string | null;
 }
 export interface UserInfos {
+    reference?: string;
     name: string;
     email: string | null;
     ccphone?: string;
@@ -209,7 +228,10 @@ export interface UserInfos {
     town?: string;
     country?: string;
     image_url?: string;
+    image?: string;
     auth_2fa?: boolean;
+    alias_reference?: string;
+    iam_reference?: string;
 }
 export interface LinkPhoneRequest {
     app_key: string;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@ollaid/native-sso",
-  "version": "2.1.5",
-  "description": "Package NPM fullstack pour l'authentification Native SSO Ollaid - Frontend-First",
+  "version": "2.5.0",
+  "description": "Package NPM fullstack pour l'authentification Native SSO Ollaid - Frontend-First (Link APIs & Refresh support)",
   "type": "module",
   "main": "dist/index.cjs",
   "module": "dist/index.js",