@oxyhq/core 1.11.6 → 1.11.8

package/dist/types/mixins/OxyServices.fedcm.d.ts

@@ -33,6 +33,8 @@ export interface FedCMConfig {
  */
 export declare function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T): {
     new (...args: any[]): {
+        /** Resolved FedCM config URL: derived from config.authWebUrl or uses the static default */
+        get fedcmConfigUrl(): string;
         /**
          * Instance method to check FedCM support
          */
@@ -202,6 +204,7 @@ export declare function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(
             [key: string]: any;
         }>;
     };
+    readonly DEFAULT_AUTH_URL: "https://auth.oxy.so";
     readonly DEFAULT_CONFIG_URL: "https://auth.oxy.so/fedcm.json";
     readonly FEDCM_TIMEOUT: 15000;
     readonly FEDCM_SILENT_TIMEOUT: 3000;

package/dist/types/mixins/OxyServices.popup.d.ts

@@ -33,6 +33,8 @@ export interface SilentAuthOptions {
  */
 export declare function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base: T): {
     new (...args: any[]): {
+        /** Resolved auth URL: config.authWebUrl takes precedence over the static default */
+        get authUrl(): string;
         /**
          * Sign in using popup window
          *
@@ -198,7 +200,7 @@ export declare function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBa
             [key: string]: any;
         }>;
     };
-    readonly AUTH_URL: "https://auth.oxy.so";
+    readonly DEFAULT_AUTH_URL: "https://auth.oxy.so";
     readonly POPUP_WIDTH: 500;
     readonly POPUP_HEIGHT: 700;
     readonly POPUP_TIMEOUT: 60000;

package/dist/types/mixins/OxyServices.redirect.d.ts

@@ -31,6 +31,8 @@ export interface RedirectAuthOptions {
  */
 export declare function OxyServicesRedirectAuthMixin<T extends typeof OxyServicesBase>(Base: T): {
     new (...args: any[]): {
+        /** Resolved auth URL: config.authWebUrl takes precedence over the static default */
+        get authUrl(): string;
         /**
          * Sign in using full page redirect
          *
@@ -237,7 +239,7 @@ export declare function OxyServicesRedirectAuthMixin<T extends typeof OxyService
             [key: string]: any;
         }>;
     };
-    readonly AUTH_URL: "https://auth.oxy.so";
+    readonly DEFAULT_AUTH_URL: "https://auth.oxy.so";
     readonly TOKEN_STORAGE_KEY: "oxy_access_token";
     readonly SESSION_STORAGE_KEY: "oxy_session_id";
     readonly STATE_STORAGE_KEY: "oxy_auth_state";

package/dist/types/mixins/OxyServices.user.d.ts

@@ -67,6 +67,10 @@ export declare function OxyServicesUserMixin<T extends typeof OxyServicesBase>(B
             };
             [key: string]: unknown;
         }>>;
+        /**
+         * Get profiles similar to a given user, based on co-follower overlap.
+         */
+        getSimilarProfiles(userId: string, limit?: number): Promise<User[]>;
         /**
          * Get user by ID
          */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@oxyhq/core",
-  "version": "1.11.6",
+  "version": "1.11.8",
   "description": "OxyHQ SDK Foundation — API client, authentication, cryptographic identity, and shared utilities",
   "main": "dist/cjs/index.js",
   "module": "dist/esm/index.js",

package/src/AuthManager.ts

@@ -11,6 +11,7 @@ import type { OxyServices } from './OxyServices';
 import type { HttpService } from './HttpService';
 import type { SessionLoginResponse, MinimalUserData } from './models/session';
 import { retryAsync } from './utils/asyncUtils';
+import { jwtDecode } from 'jwt-decode';
 
 /**
  * OxyServices already declares revokeFedCMCredential via mixin type augmentation.
@@ -429,10 +430,29 @@ export class AuthManager {
   }
 
   /**
-   * Get stored access token.
+   * Get a valid access token, refreshing automatically if expired or expiring soon.
    */
   async getAccessToken(): Promise<string | null> {
-    return this.storage.getItem(STORAGE_KEYS.ACCESS_TOKEN);
+    const token = await this.storage.getItem(STORAGE_KEYS.ACCESS_TOKEN);
+    if (!token) return null;
+
+    try {
+      const decoded = jwtDecode<{ exp?: number }>(token);
+      if (decoded.exp) {
+        const now = Math.floor(Date.now() / 1000);
+        const buffer = 60; // refresh 60 seconds before expiry
+        if (decoded.exp - now < buffer) {
+          const refreshed = await this.refreshToken();
+          if (refreshed) {
+            return this.storage.getItem(STORAGE_KEYS.ACCESS_TOKEN);
+          }
+        }
+      }
+    } catch {
+      // Decode failed — return token as-is, let the server decide
+    }
+
+    return token;
   }
 
   /**

package/src/mixins/OxyServices.fedcm.ts

@@ -51,7 +51,15 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
     constructor(...args: any[]) {
       super(...(args as [any]));
     }
+  public static readonly DEFAULT_AUTH_URL = 'https://auth.oxy.so';
   public static readonly DEFAULT_CONFIG_URL = 'https://auth.oxy.so/fedcm.json';
+
+  /** Resolved FedCM config URL: derived from config.authWebUrl or uses the static default */
+  public get fedcmConfigUrl(): string {
+    return this.config.authWebUrl
+      ? `${this.config.authWebUrl}/fedcm.json`
+      : (this.constructor as any).DEFAULT_CONFIG_URL;
+  }
   public static readonly FEDCM_TIMEOUT = 15000; // 15 seconds for interactive
   public static readonly FEDCM_SILENT_TIMEOUT = 3000; // 3 seconds for silent mediation
 
@@ -113,7 +121,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
       // Request credential from browser's native identity flow
       // mode: 'button' signals this is a user-gesture-initiated flow (Chrome 125+)
       const credential = await this.requestIdentityCredential({
-        configURL: (this.constructor as any).DEFAULT_CONFIG_URL,
+        configURL: this.fedcmConfigUrl,
         clientId,
         nonce,
         context: options.context,
@@ -216,7 +224,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
       debug.log('Silent SSO: Attempting silent mediation...', loginHint ? `(hint: ${loginHint})` : '');
 
       credential = await this.requestIdentityCredential({
-        configURL: (this.constructor as any).DEFAULT_CONFIG_URL,
+        configURL: this.fedcmConfigUrl,
         clientId,
         nonce,
         loginHint,
@@ -461,7 +469,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
       if ('IdentityCredential' in window && 'disconnect' in (window as any).IdentityCredential) {
         const clientId = this.getClientId();
         await (window as any).IdentityCredential.disconnect({
-          configURL: (this.constructor as any).DEFAULT_CONFIG_URL,
+          configURL: this.fedcmConfigUrl,
           clientId,
           accountHint: accountHint || '*',
         });
@@ -480,7 +488,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
   getFedCMConfig(): FedCMConfig {
     return {
       enabled: this.isFedCMSupported(),
-      configURL: (this.constructor as any).DEFAULT_CONFIG_URL,
+      configURL: this.fedcmConfigUrl,
       clientId: this.getClientId(),
     };
   }

package/src/mixins/OxyServices.popup.ts

@@ -43,7 +43,12 @@ export function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base
     constructor(...args: any[]) {
       super(...(args as [any]));
     }
-  public static readonly AUTH_URL = 'https://auth.oxy.so';
+  public static readonly DEFAULT_AUTH_URL = 'https://auth.oxy.so';
+
+  /** Resolved auth URL: config.authWebUrl takes precedence over the static default */
+  public get authUrl(): string {
+    return this.config.authWebUrl || (this.constructor as any).DEFAULT_AUTH_URL;
+  }
   public static readonly POPUP_WIDTH = 500;
   public static readonly POPUP_HEIGHT = 700;
   public static readonly POPUP_TIMEOUT = 60000; // 1 minute
@@ -95,7 +100,7 @@ export function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base
       state,
       nonce,
       clientId: window.location.origin,
-      redirectUri: `${(this.constructor as any).AUTH_URL}/auth/callback`,
+      redirectUri: `${this.authUrl}/auth/callback`,
     });
 
     const popup = this.openCenteredPopup(authUrl, 'Oxy Sign In', width, height);
@@ -198,7 +203,7 @@ export function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base
     iframe.style.height = '0';
     iframe.style.border = 'none';
 
-    const silentUrl = `${(this.constructor as any).AUTH_URL}/auth/silent?` + `client_id=${encodeURIComponent(clientId)}&` + `nonce=${nonce}`;
+    const silentUrl = `${this.authUrl}/auth/silent?` + `client_id=${encodeURIComponent(clientId)}&` + `nonce=${nonce}`;
 
     iframe.src = silentUrl;
     document.body.appendChild(iframe);
@@ -260,7 +265,7 @@ export function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base
       }, timeout);
 
       const messageHandler = (event: MessageEvent) => {
-        const authUrl = (this.constructor as any).AUTH_URL;
+        const authUrl = this.authUrl;
 
         // Log all messages for debugging
         if (event.data && typeof event.data === 'object' && event.data.type) {
@@ -347,7 +352,7 @@ export function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base
 
       const messageHandler = (event: MessageEvent) => {
         // Verify origin
-        if (event.origin !== (this.constructor as any).AUTH_URL) {
+        if (event.origin !== this.authUrl) {
           return;
         }
 
@@ -382,7 +387,7 @@ export function OxyServicesPopupAuthMixin<T extends typeof OxyServicesBase>(Base
     clientId: string;
     redirectUri: string;
   }): string {
-    const url = new URL(`${(this.constructor as any).AUTH_URL}/${params.mode}`);
+    const url = new URL(`${this.authUrl}/${params.mode}`);
     url.searchParams.set('response_type', 'token');
     url.searchParams.set('client_id', params.clientId);
     url.searchParams.set('redirect_uri', params.redirectUri);

package/src/mixins/OxyServices.redirect.ts

@@ -37,7 +37,12 @@ export function OxyServicesRedirectAuthMixin<T extends typeof OxyServicesBase>(B
     constructor(...args: any[]) {
       super(...(args as [any]));
     }
-  public static readonly AUTH_URL = 'https://auth.oxy.so';
+  public static readonly DEFAULT_AUTH_URL = 'https://auth.oxy.so';
+
+  /** Resolved auth URL: config.authWebUrl takes precedence over the static default */
+  public get authUrl(): string {
+    return this.config.authWebUrl || (this.constructor as any).DEFAULT_AUTH_URL;
+  }
   public static readonly TOKEN_STORAGE_KEY = 'oxy_access_token';
   public static readonly SESSION_STORAGE_KEY = 'oxy_session_id';
   public static readonly STATE_STORAGE_KEY = 'oxy_auth_state';
@@ -270,7 +275,7 @@ export function OxyServicesRedirectAuthMixin<T extends typeof OxyServicesBase>(B
     nonce: string;
     clientId: string;
   }): string {
-    const url = new URL(`${(this.constructor as any).AUTH_URL}/${params.mode}`);
+    const url = new URL(`${this.authUrl}/${params.mode}`);
     url.searchParams.set('redirect_uri', params.redirectUri);
     url.searchParams.set('state', params.state);
     url.searchParams.set('nonce', params.nonce);

package/src/mixins/OxyServices.user.ts

@@ -149,6 +149,18 @@ export function OxyServicesUserMixin<T extends typeof OxyServicesBase>(Base: T)
       }, 'getProfileRecommendations');
     }
 
+    /**
+     * Get profiles similar to a given user, based on co-follower overlap.
+     */
+    async getSimilarProfiles(userId: string, limit?: number): Promise<User[]> {
+      const params: Record<string, string> = {};
+      if (limit) params.limit = String(limit);
+      return await this.makeRequest<User[]>('GET', `/profiles/${userId}/similar`, params, {
+        cache: true,
+        cacheTTL: 5 * 60 * 1000, // 5 min cache
+      });
+    }
+
     /**
      * Get user by ID
      */