@oxyhq/core 1.6.1 → 1.6.3

package/dist/cjs/AuthManager.js

@@ -20,6 +20,7 @@ const STORAGE_KEYS = {
     SESSION: 'oxy_session',
     USER: 'oxy_user',
     AUTH_METHOD: 'oxy_auth_method',
+    FEDCM_LOGIN_HINT: 'oxy_fedcm_login_hint',
 };
 /**
  * Default in-memory storage for non-browser environments.
@@ -340,6 +341,7 @@ class AuthManager {
         await this.storage.removeItem(STORAGE_KEYS.SESSION);
         await this.storage.removeItem(STORAGE_KEYS.USER);
         await this.storage.removeItem(STORAGE_KEYS.AUTH_METHOD);
+        await this.storage.removeItem(STORAGE_KEYS.FEDCM_LOGIN_HINT);
     }
     /**
      * Get current user.

package/dist/cjs/mixins/OxyServices.fedcm.js

@@ -5,6 +5,7 @@ exports.FedCMMixin = OxyServicesFedCMMixin;
 const OxyServices_errors_1 = require("../OxyServices.errors");
 const debugUtils_1 = require("../shared/utils/debugUtils");
 const debug = (0, debugUtils_1.createDebugLogger)('FedCM');
+const FEDCM_LOGIN_HINT_KEY = 'oxy_fedcm_login_hint';
 // Global lock to prevent concurrent FedCM requests
 // FedCM only allows one navigator.credentials.get request at a time
 let fedCMRequestInProgress = false;
@@ -82,13 +83,16 @@ function OxyServicesFedCMMixin(Base) {
                 try {
                     const nonce = options.nonce || this.generateNonce();
                     const clientId = this.getClientId();
-                    debug.log('Interactive sign-in: Requesting credential for', clientId);
+                    // Use provided loginHint, or fall back to stored last-used account ID
+                    const loginHint = options.loginHint || this.getStoredLoginHint();
+                    debug.log('Interactive sign-in: Requesting credential for', clientId, loginHint ? `(hint: ${loginHint})` : '');
                     // Request credential from browser's native identity flow
                     const credential = await this.requestIdentityCredential({
                         configURL: this.constructor.DEFAULT_CONFIG_URL,
                         clientId,
                         nonce,
                         context: options.context,
+                        loginHint,
                     });
                     if (!credential || !credential.token) {
                         throw new OxyServices_errors_1.OxyAuthenticationError('No credential received from browser');
@@ -100,6 +104,10 @@ function OxyServicesFedCMMixin(Base) {
                     if (session && session.accessToken) {
                         this.httpService.setTokens(session.accessToken);
                     }
+                    // Store the user ID as loginHint for future FedCM requests
+                    if (session?.user?.id) {
+                        this.storeLoginHint(session.user.id);
+                    }
                     debug.log('Interactive sign-in: Success!', { userId: session?.user?.id });
                     return session;
                 }
@@ -164,13 +172,15 @@ function OxyServicesFedCMMixin(Base) {
                 // this runs on app startup — showing browser UI without user action is bad UX.
                 // Optional/interactive mediation should only happen when the user clicks "Sign In".
                 let credential = null;
+                const loginHint = this.getStoredLoginHint();
                 try {
                     const nonce = this.generateNonce();
-                    debug.log('Silent SSO: Attempting silent mediation...');
+                    debug.log('Silent SSO: Attempting silent mediation...', loginHint ? `(hint: ${loginHint})` : '');
                     credential = await this.requestIdentityCredential({
                         configURL: this.constructor.DEFAULT_CONFIG_URL,
                         clientId,
                         nonce,
+                        loginHint,
                         mediation: 'silent',
                     });
                     debug.log('Silent SSO: Silent mediation result:', { hasCredential: !!credential, hasToken: !!credential?.token });
@@ -225,6 +235,10 @@ function OxyServicesFedCMMixin(Base) {
                 else {
                     debug.warn('Silent SSO: No accessToken in session response');
                 }
+                // Store the user ID as loginHint for future FedCM requests
+                if (session.user?.id) {
+                    this.storeLoginHint(session.user.id);
+                }
                 debug.log('Silent SSO: Success!', {
                     sessionId: session.sessionId?.substring(0, 8) + '...',
                     userId: session.user?.id
@@ -299,7 +313,7 @@ function OxyServicesFedCMMixin(Base) {
                                         params: {
                                             nonce: options.nonce, // For Chrome 145+
                                         },
-                                        ...(options.context && { loginHint: options.context }),
+                                        ...(options.loginHint && { loginHint: options.loginHint }),
                                     },
                                 ],
                             },
@@ -419,6 +433,28 @@ function OxyServicesFedCMMixin(Base) {
                 }
                 return window.location.origin;
             }
+            /** @internal */
+            getStoredLoginHint() {
+                if (typeof window === 'undefined')
+                    return undefined;
+                try {
+                    return localStorage.getItem(FEDCM_LOGIN_HINT_KEY) || undefined;
+                }
+                catch {
+                    return undefined;
+                }
+            }
+            /** @internal */
+            storeLoginHint(userId) {
+                if (typeof window === 'undefined')
+                    return;
+                try {
+                    localStorage.setItem(FEDCM_LOGIN_HINT_KEY, userId);
+                }
+                catch {
+                    // Storage full or blocked
+                }
+            }
         },
         _a.DEFAULT_CONFIG_URL = 'https://auth.oxy.so/fedcm.json',
         _a.FEDCM_TIMEOUT = 15000 // 15 seconds for interactive

package/dist/esm/AuthManager.js

@@ -6,7 +6,7 @@
  *
  * @module core/AuthManager
  */
-import { retryAsync } from './utils/asyncUtils';
+import { retryAsync } from './utils/asyncUtils.js';
 /**
  * Storage keys used by AuthManager.
  */
@@ -16,6 +16,7 @@ const STORAGE_KEYS = {
     SESSION: 'oxy_session',
     USER: 'oxy_user',
     AUTH_METHOD: 'oxy_auth_method',
+    FEDCM_LOGIN_HINT: 'oxy_fedcm_login_hint',
 };
 /**
  * Default in-memory storage for non-browser environments.
@@ -336,6 +337,7 @@ export class AuthManager {
         await this.storage.removeItem(STORAGE_KEYS.SESSION);
         await this.storage.removeItem(STORAGE_KEYS.USER);
         await this.storage.removeItem(STORAGE_KEYS.AUTH_METHOD);
+        await this.storage.removeItem(STORAGE_KEYS.FEDCM_LOGIN_HINT);
     }
     /**
      * Get current user.

package/dist/esm/HttpService.js

@@ -12,13 +12,13 @@
  * - Error handling
  * - Request queuing
  */
-import { TTLCache, registerCacheForCleanup } from './utils/cache';
-import { RequestDeduplicator, RequestQueue, SimpleLogger } from './utils/requestUtils';
-import { retryAsync } from './utils/asyncUtils';
-import { handleHttpError } from './utils/errorUtils';
-import { isDev } from './shared/utils/debugUtils';
+import { TTLCache, registerCacheForCleanup } from './utils/cache.js';
+import { RequestDeduplicator, RequestQueue, SimpleLogger } from './utils/requestUtils.js';
+import { retryAsync } from './utils/asyncUtils.js';
+import { handleHttpError } from './utils/errorUtils.js';
+import { isDev } from './shared/utils/debugUtils.js';
 import { jwtDecode } from 'jwt-decode';
-import { isNative, getPlatformOS } from './utils/platform';
+import { isNative, getPlatformOS } from './utils/platform.js';
 /**
  * Check if we're running in a native app environment (React Native, not web)
  * This is used to determine CSRF handling mode

package/dist/esm/OxyServices.base.js

@@ -4,9 +4,9 @@
  * Contains core infrastructure, HTTP client, request management, and error handling
  */
 import { jwtDecode } from 'jwt-decode';
-import { handleHttpError } from './utils/errorUtils';
-import { HttpService } from './HttpService';
-import { OxyAuthenticationError, OxyAuthenticationTimeoutError } from './OxyServices.errors';
+import { handleHttpError } from './utils/errorUtils.js';
+import { HttpService } from './HttpService.js';
+import { OxyAuthenticationError, OxyAuthenticationTimeoutError } from './OxyServices.errors.js';
 /**
  * Base class for OxyServices with core infrastructure
  */

package/dist/esm/OxyServices.js

@@ -1,6 +1,6 @@
-import { OxyAuthenticationError, OxyAuthenticationTimeoutError } from './OxyServices.errors';
+import { OxyAuthenticationError, OxyAuthenticationTimeoutError } from './OxyServices.errors.js';
 // Import mixin composition helper
-import { composeOxyServices } from './mixins';
+import { composeOxyServices } from './mixins/index.js';
 /**
  * OxyServices - Unified client library for interacting with the Oxy API
  *

package/dist/esm/crypto/index.js

@@ -5,9 +5,9 @@
  * Handles key generation, secure storage, digital signatures, and recovery phrases.
  */
 // Import polyfills first - this ensures Buffer is available for bip39 and other libraries
-import './polyfill';
-export { KeyManager } from './keyManager';
-export { SignatureService } from './signatureService';
-export { RecoveryPhraseService } from './recoveryPhrase';
+import './polyfill.js';
+export { KeyManager } from './keyManager.js';
+export { SignatureService } from './signatureService.js';
+export { RecoveryPhraseService } from './recoveryPhrase.js';
 // Re-export for convenience
-export { KeyManager as default } from './keyManager';
+export { KeyManager as default } from './keyManager.js';

package/dist/esm/crypto/keyManager.js

@@ -5,9 +5,9 @@
  * Private keys are stored securely using expo-secure-store and never leave the device.
  */
 import { ec as EC } from 'elliptic';
-import { isWeb, isIOS, isAndroid, isReactNative, isNodeJS } from '../utils/platform';
-import { logger } from '../utils/loggerUtils';
-import { isDev } from '../shared/utils/debugUtils';
+import { isWeb, isIOS, isAndroid, isReactNative, isNodeJS } from '../utils/platform.js';
+import { logger } from '../utils/loggerUtils.js';
+import { isDev } from '../shared/utils/debugUtils.js';
 // Lazy imports for React Native specific modules
 let SecureStore = null;
 let ExpoCrypto = null;

package/dist/esm/crypto/recoveryPhrase.js

@@ -7,7 +7,7 @@
  * Note: This module requires the polyfill to be loaded first (done via crypto/index.ts)
  */
 import * as bip39 from 'bip39';
-import { KeyManager } from './keyManager';
+import { KeyManager } from './keyManager.js';
 /**
  * Convert Uint8Array or array-like to hexadecimal string
  * Works in both Node.js and React Native without depending on Buffer

package/dist/esm/crypto/signatureService.js

@@ -5,8 +5,8 @@
  * Used for authenticating requests and proving identity ownership.
  */
 import { ec as EC } from 'elliptic';
-import { KeyManager } from './keyManager';
-import { isReactNative, isNodeJS } from '../utils/platform';
+import { KeyManager } from './keyManager.js';
+import { isReactNative, isNodeJS } from '../utils/platform.js';
 // Lazy import for expo-crypto
 let ExpoCrypto = null;
 const ec = new EC('secp256k1');

package/dist/esm/i18n/index.js

@@ -1,14 +1,14 @@
-import enUS from './locales/en-US.json';
-import esES from './locales/es-ES.json';
-import caES from './locales/ca-ES.json';
-import frFR from './locales/fr-FR.json';
-import deDE from './locales/de-DE.json';
-import itIT from './locales/it-IT.json';
-import ptPT from './locales/pt-PT.json';
-import jaJP from './locales/ja-JP.json';
-import koKR from './locales/ko-KR.json';
-import zhCN from './locales/zh-CN.json';
-import arSA from './locales/ar-SA.json';
+import enUS from './locales/en-US.json.js';
+import esES from './locales/es-ES.json.js';
+import caES from './locales/ca-ES.json.js';
+import frFR from './locales/fr-FR.json.js';
+import deDE from './locales/de-DE.json.js';
+import itIT from './locales/it-IT.json.js';
+import ptPT from './locales/pt-PT.json.js';
+import jaJP from './locales/ja-JP.json.js';
+import koKR from './locales/ko-KR.json.js';
+import zhCN from './locales/zh-CN.json.js';
+import arSA from './locales/ar-SA.json.js';
 const DICTS = {
     'en': enUS,
     'en-US': enUS,

package/dist/esm/index.js

@@ -14,44 +14,44 @@
  * ```
  */
 // Ensure crypto polyfills are loaded before anything else
-import './crypto/polyfill';
+import './crypto/polyfill.js';
 // --- Core API Client ---
-export { OxyServices, OxyAuthenticationError, OxyAuthenticationTimeoutError } from './OxyServices';
-export { OXY_CLOUD_URL, oxyClient } from './OxyServices';
+export { OxyServices, OxyAuthenticationError, OxyAuthenticationTimeoutError } from './OxyServices.js';
+export { OXY_CLOUD_URL, oxyClient } from './OxyServices.js';
 // --- Authentication ---
-export { AuthManager, createAuthManager } from './AuthManager';
-export { CrossDomainAuth, createCrossDomainAuth } from './CrossDomainAuth';
+export { AuthManager, createAuthManager } from './AuthManager.js';
+export { CrossDomainAuth, createCrossDomainAuth } from './CrossDomainAuth.js';
 // --- Crypto / Identity ---
-export { KeyManager, SignatureService, RecoveryPhraseService } from './crypto';
+export { KeyManager, SignatureService, RecoveryPhraseService } from './crypto/index.js';
 // --- Models & Types ---
-export * from './models/interfaces';
-export * from './models/session';
+export * from './models/interfaces.js';
+export * from './models/session.js';
 // --- Device Management ---
-export { DeviceManager } from './utils/deviceManager';
+export { DeviceManager } from './utils/deviceManager.js';
 // --- Language Utilities ---
-export { SUPPORTED_LANGUAGES, getLanguageMetadata, getLanguageName, getNativeLanguageName, normalizeLanguageCode, } from './utils/languageUtils';
+export { SUPPORTED_LANGUAGES, getLanguageMetadata, getLanguageName, getNativeLanguageName, normalizeLanguageCode, } from './utils/languageUtils.js';
 // --- Platform Detection ---
-export { getPlatformOS, setPlatformOS, isWeb, isNative, isIOS, isAndroid, } from './utils/platform';
+export { getPlatformOS, setPlatformOS, isWeb, isNative, isIOS, isAndroid, } from './utils/platform.js';
 // --- Shared Utilities ---
-export { darkenColor, lightenColor, hexToRgb, rgbToHex, withOpacity, isLightColor, getContrastTextColor, } from './shared/utils/colorUtils';
-export { normalizeTheme, normalizeColorScheme, getOppositeTheme, systemPrefersDarkMode, getSystemColorScheme, } from './shared/utils/themeUtils';
-export { HttpStatus, getErrorStatus, getErrorMessage, isAlreadyRegisteredError, isUnauthorizedError, isForbiddenError, isNotFoundError, isRateLimitError, isServerError, isNetworkError, isRetryableError, } from './shared/utils/errorUtils';
-export { DEFAULT_CIRCUIT_BREAKER_CONFIG, createCircuitBreakerState, calculateBackoffInterval, recordFailure, recordSuccess, shouldAllowRequest, delay, withRetry, } from './shared/utils/networkUtils';
-export { isDev, debugLog, debugWarn, debugError, createDebugLogger, } from './shared/utils/debugUtils';
+export { darkenColor, lightenColor, hexToRgb, rgbToHex, withOpacity, isLightColor, getContrastTextColor, } from './shared/utils/colorUtils.js';
+export { normalizeTheme, normalizeColorScheme, getOppositeTheme, systemPrefersDarkMode, getSystemColorScheme, } from './shared/utils/themeUtils.js';
+export { HttpStatus, getErrorStatus, getErrorMessage, isAlreadyRegisteredError, isUnauthorizedError, isForbiddenError, isNotFoundError, isRateLimitError, isServerError, isNetworkError, isRetryableError, } from './shared/utils/errorUtils.js';
+export { DEFAULT_CIRCUIT_BREAKER_CONFIG, createCircuitBreakerState, calculateBackoffInterval, recordFailure, recordSuccess, shouldAllowRequest, delay, withRetry, } from './shared/utils/networkUtils.js';
+export { isDev, debugLog, debugWarn, debugError, createDebugLogger, } from './shared/utils/debugUtils.js';
 // --- i18n ---
-export { translate } from './i18n';
+export { translate } from './i18n/index.js';
 // --- Auth Helpers ---
-export { SessionSyncRequiredError, AuthenticationFailedError, ensureValidToken, isAuthenticationError, withAuthErrorHandling, authenticatedApiCall, } from './utils/authHelpers';
+export { SessionSyncRequiredError, AuthenticationFailedError, ensureValidToken, isAuthenticationError, withAuthErrorHandling, authenticatedApiCall, } from './utils/authHelpers.js';
 // --- Session Utilities ---
-export { mergeSessions, normalizeAndSortSessions, sessionsArraysEqual } from './utils/sessionUtils';
+export { mergeSessions, normalizeAndSortSessions, sessionsArraysEqual } from './utils/sessionUtils.js';
 // --- Constants ---
-export { packageInfo } from './constants/version';
+export { packageInfo } from './constants/version.js';
 // --- API & Error Utilities ---
-export * from './utils/apiUtils';
-export { ErrorCodes, createApiError, handleHttpError, validateRequiredFields, } from './utils/errorUtils';
-export { retryAsync } from './utils/asyncUtils';
-export * from './utils/validationUtils';
-export { logger, LogLevel, logAuth, logApi, logSession, logUser, logDevice, logPayment, logPerformance, } from './utils/loggerUtils';
+export * from './utils/apiUtils.js';
+export { ErrorCodes, createApiError, handleHttpError, validateRequiredFields, } from './utils/errorUtils.js';
+export { retryAsync } from './utils/asyncUtils.js';
+export * from './utils/validationUtils.js';
+export { logger, LogLevel, logAuth, logApi, logSession, logUser, logDevice, logPayment, logPerformance, } from './utils/loggerUtils.js';
 // Default export
-import { OxyServices } from './OxyServices';
+import { OxyServices } from './OxyServices.js';
 export default OxyServices;

package/dist/esm/mixins/OxyServices.analytics.js

@@ -1,4 +1,4 @@
-import { CACHE_TIMES } from './mixinHelpers';
+import { CACHE_TIMES } from './mixinHelpers.js';
 export function OxyServicesAnalyticsMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.auth.js

@@ -1,4 +1,4 @@
-import { OxyAuthenticationError } from '../OxyServices.errors';
+import { OxyAuthenticationError } from '../OxyServices.errors.js';
 export function OxyServicesAuthMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.developer.js

@@ -1,4 +1,4 @@
-import { CACHE_TIMES } from './mixinHelpers';
+import { CACHE_TIMES } from './mixinHelpers.js';
 export function OxyServicesDeveloperMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.features.js

@@ -1,4 +1,4 @@
-import { CACHE_TIMES } from './mixinHelpers';
+import { CACHE_TIMES } from './mixinHelpers.js';
 export function OxyServicesFeaturesMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.fedcm.js

@@ -1,6 +1,7 @@
-import { OxyAuthenticationError } from '../OxyServices.errors';
-import { createDebugLogger } from '../shared/utils/debugUtils';
+import { OxyAuthenticationError } from '../OxyServices.errors.js';
+import { createDebugLogger } from '../shared/utils/debugUtils.js';
 const debug = createDebugLogger('FedCM');
+const FEDCM_LOGIN_HINT_KEY = 'oxy_fedcm_login_hint';
 // Global lock to prevent concurrent FedCM requests
 // FedCM only allows one navigator.credentials.get request at a time
 let fedCMRequestInProgress = false;
@@ -78,13 +79,16 @@ export function OxyServicesFedCMMixin(Base) {
                 try {
                     const nonce = options.nonce || this.generateNonce();
                     const clientId = this.getClientId();
-                    debug.log('Interactive sign-in: Requesting credential for', clientId);
+                    // Use provided loginHint, or fall back to stored last-used account ID
+                    const loginHint = options.loginHint || this.getStoredLoginHint();
+                    debug.log('Interactive sign-in: Requesting credential for', clientId, loginHint ? `(hint: ${loginHint})` : '');
                     // Request credential from browser's native identity flow
                     const credential = await this.requestIdentityCredential({
                         configURL: this.constructor.DEFAULT_CONFIG_URL,
                         clientId,
                         nonce,
                         context: options.context,
+                        loginHint,
                     });
                     if (!credential || !credential.token) {
                         throw new OxyAuthenticationError('No credential received from browser');
@@ -96,6 +100,10 @@ export function OxyServicesFedCMMixin(Base) {
                     if (session && session.accessToken) {
                         this.httpService.setTokens(session.accessToken);
                     }
+                    // Store the user ID as loginHint for future FedCM requests
+                    if (session?.user?.id) {
+                        this.storeLoginHint(session.user.id);
+                    }
                     debug.log('Interactive sign-in: Success!', { userId: session?.user?.id });
                     return session;
                 }
@@ -160,13 +168,15 @@ export function OxyServicesFedCMMixin(Base) {
                 // this runs on app startup — showing browser UI without user action is bad UX.
                 // Optional/interactive mediation should only happen when the user clicks "Sign In".
                 let credential = null;
+                const loginHint = this.getStoredLoginHint();
                 try {
                     const nonce = this.generateNonce();
-                    debug.log('Silent SSO: Attempting silent mediation...');
+                    debug.log('Silent SSO: Attempting silent mediation...', loginHint ? `(hint: ${loginHint})` : '');
                     credential = await this.requestIdentityCredential({
                         configURL: this.constructor.DEFAULT_CONFIG_URL,
                         clientId,
                         nonce,
+                        loginHint,
                         mediation: 'silent',
                     });
                     debug.log('Silent SSO: Silent mediation result:', { hasCredential: !!credential, hasToken: !!credential?.token });
@@ -221,6 +231,10 @@ export function OxyServicesFedCMMixin(Base) {
                 else {
                     debug.warn('Silent SSO: No accessToken in session response');
                 }
+                // Store the user ID as loginHint for future FedCM requests
+                if (session.user?.id) {
+                    this.storeLoginHint(session.user.id);
+                }
                 debug.log('Silent SSO: Success!', {
                     sessionId: session.sessionId?.substring(0, 8) + '...',
                     userId: session.user?.id
@@ -295,7 +309,7 @@ export function OxyServicesFedCMMixin(Base) {
                                         params: {
                                             nonce: options.nonce, // For Chrome 145+
                                         },
-                                        ...(options.context && { loginHint: options.context }),
+                                        ...(options.loginHint && { loginHint: options.loginHint }),
                                     },
                                 ],
                             },
@@ -415,6 +429,28 @@ export function OxyServicesFedCMMixin(Base) {
                 }
                 return window.location.origin;
             }
+            /** @internal */
+            getStoredLoginHint() {
+                if (typeof window === 'undefined')
+                    return undefined;
+                try {
+                    return localStorage.getItem(FEDCM_LOGIN_HINT_KEY) || undefined;
+                }
+                catch {
+                    return undefined;
+                }
+            }
+            /** @internal */
+            storeLoginHint(userId) {
+                if (typeof window === 'undefined')
+                    return;
+                try {
+                    localStorage.setItem(FEDCM_LOGIN_HINT_KEY, userId);
+                }
+                catch {
+                    // Storage full or blocked
+                }
+            }
         },
         _a.DEFAULT_CONFIG_URL = 'https://auth.oxy.so/fedcm.json',
         _a.FEDCM_TIMEOUT = 15000 // 15 seconds for interactive

package/dist/esm/mixins/OxyServices.karma.js

@@ -1,4 +1,4 @@
-import { CACHE_TIMES } from './mixinHelpers';
+import { CACHE_TIMES } from './mixinHelpers.js';
 export function OxyServicesKarmaMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.language.js

@@ -1,8 +1,8 @@
 /**
  * Language Methods Mixin
  */
-import { normalizeLanguageCode, getLanguageMetadata, getLanguageName, getNativeLanguageName } from '../utils/languageUtils';
-import { isDev } from '../shared/utils/debugUtils';
+import { normalizeLanguageCode, getLanguageMetadata, getLanguageName, getNativeLanguageName } from '../utils/languageUtils.js';
+import { isDev } from '../shared/utils/debugUtils.js';
 export function OxyServicesLanguageMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.payment.js

@@ -1,4 +1,4 @@
-import { CACHE_TIMES } from './mixinHelpers';
+import { CACHE_TIMES } from './mixinHelpers.js';
 export function OxyServicesPaymentMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.popup.js

@@ -1,5 +1,5 @@
-import { OxyAuthenticationError } from '../OxyServices.errors';
-import { createDebugLogger } from '../shared/utils/debugUtils';
+import { OxyAuthenticationError } from '../OxyServices.errors.js';
+import { createDebugLogger } from '../shared/utils/debugUtils.js';
 const debug = createDebugLogger('PopupAuth');
 /**
  * Popup-based Cross-Domain Authentication Mixin

package/dist/esm/mixins/OxyServices.privacy.js

@@ -1,4 +1,4 @@
-import { isDev } from '../shared/utils/debugUtils';
+import { isDev } from '../shared/utils/debugUtils.js';
 export function OxyServicesPrivacyMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.redirect.js

@@ -1,4 +1,4 @@
-import { OxyAuthenticationError } from '../OxyServices.errors';
+import { OxyAuthenticationError } from '../OxyServices.errors.js';
 /**
  * Redirect-based Cross-Domain Authentication Mixin
  *

package/dist/esm/mixins/OxyServices.security.js

@@ -1,4 +1,4 @@
-import { isDev } from '../shared/utils/debugUtils';
+import { isDev } from '../shared/utils/debugUtils.js';
 export function OxyServicesSecurityMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.user.js

@@ -1,4 +1,4 @@
-import { buildSearchParams, buildPaginationParams } from '../utils/apiUtils';
+import { buildSearchParams, buildPaginationParams } from '../utils/apiUtils.js';
 export function OxyServicesUserMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/OxyServices.utility.js

@@ -5,7 +5,7 @@
  * and Express.js authentication middleware
  */
 import { jwtDecode } from 'jwt-decode';
-import { CACHE_TIMES } from './mixinHelpers';
+import { CACHE_TIMES } from './mixinHelpers.js';
 export function OxyServicesUtilityMixin(Base) {
     return class extends Base {
         constructor(...args) {

package/dist/esm/mixins/index.js

@@ -4,24 +4,24 @@
  * This module provides a clean way to compose all mixins
  * and ensures consistent ordering for better maintainability
  */
-import { OxyServicesBase } from '../OxyServices.base';
-import { OxyServicesAuthMixin } from './OxyServices.auth';
-import { OxyServicesFedCMMixin } from './OxyServices.fedcm';
-import { OxyServicesPopupAuthMixin } from './OxyServices.popup';
-import { OxyServicesRedirectAuthMixin } from './OxyServices.redirect';
-import { OxyServicesUserMixin } from './OxyServices.user';
-import { OxyServicesPrivacyMixin } from './OxyServices.privacy';
-import { OxyServicesLanguageMixin } from './OxyServices.language';
-import { OxyServicesPaymentMixin } from './OxyServices.payment';
-import { OxyServicesKarmaMixin } from './OxyServices.karma';
-import { OxyServicesAssetsMixin } from './OxyServices.assets';
-import { OxyServicesDeveloperMixin } from './OxyServices.developer';
-import { OxyServicesLocationMixin } from './OxyServices.location';
-import { OxyServicesAnalyticsMixin } from './OxyServices.analytics';
-import { OxyServicesDevicesMixin } from './OxyServices.devices';
-import { OxyServicesSecurityMixin } from './OxyServices.security';
-import { OxyServicesUtilityMixin } from './OxyServices.utility';
-import { OxyServicesFeaturesMixin } from './OxyServices.features';
+import { OxyServicesBase } from '../OxyServices.base.js';
+import { OxyServicesAuthMixin } from './OxyServices.auth.js';
+import { OxyServicesFedCMMixin } from './OxyServices.fedcm.js';
+import { OxyServicesPopupAuthMixin } from './OxyServices.popup.js';
+import { OxyServicesRedirectAuthMixin } from './OxyServices.redirect.js';
+import { OxyServicesUserMixin } from './OxyServices.user.js';
+import { OxyServicesPrivacyMixin } from './OxyServices.privacy.js';
+import { OxyServicesLanguageMixin } from './OxyServices.language.js';
+import { OxyServicesPaymentMixin } from './OxyServices.payment.js';
+import { OxyServicesKarmaMixin } from './OxyServices.karma.js';
+import { OxyServicesAssetsMixin } from './OxyServices.assets.js';
+import { OxyServicesDeveloperMixin } from './OxyServices.developer.js';
+import { OxyServicesLocationMixin } from './OxyServices.location.js';
+import { OxyServicesAnalyticsMixin } from './OxyServices.analytics.js';
+import { OxyServicesDevicesMixin } from './OxyServices.devices.js';
+import { OxyServicesSecurityMixin } from './OxyServices.security.js';
+import { OxyServicesUtilityMixin } from './OxyServices.utility.js';
+import { OxyServicesFeaturesMixin } from './OxyServices.features.js';
 /**
  * Mixin pipeline - applied in order from first to last.
  *

package/dist/esm/shared/index.js

@@ -20,12 +20,12 @@
  * ```
  */
 // Color utilities
-export { darkenColor, lightenColor, hexToRgb, rgbToHex, withOpacity, isLightColor, getContrastTextColor, } from './utils/colorUtils';
+export { darkenColor, lightenColor, hexToRgb, rgbToHex, withOpacity, isLightColor, getContrastTextColor, } from './utils/colorUtils.js';
 // Theme utilities
-export { normalizeTheme, normalizeColorScheme, getOppositeTheme, systemPrefersDarkMode, getSystemColorScheme, } from './utils/themeUtils';
+export { normalizeTheme, normalizeColorScheme, getOppositeTheme, systemPrefersDarkMode, getSystemColorScheme, } from './utils/themeUtils.js';
 // Error utilities
-export { HttpStatus, getErrorStatus, getErrorMessage, isAlreadyRegisteredError, isUnauthorizedError, isForbiddenError, isNotFoundError, isRateLimitError, isServerError, isNetworkError, isRetryableError, } from './utils/errorUtils';
+export { HttpStatus, getErrorStatus, getErrorMessage, isAlreadyRegisteredError, isUnauthorizedError, isForbiddenError, isNotFoundError, isRateLimitError, isServerError, isNetworkError, isRetryableError, } from './utils/errorUtils.js';
 // Network utilities
-export { DEFAULT_CIRCUIT_BREAKER_CONFIG, createCircuitBreakerState, calculateBackoffInterval, recordFailure, recordSuccess, shouldAllowRequest, delay, withRetry, } from './utils/networkUtils';
+export { DEFAULT_CIRCUIT_BREAKER_CONFIG, createCircuitBreakerState, calculateBackoffInterval, recordFailure, recordSuccess, shouldAllowRequest, delay, withRetry, } from './utils/networkUtils.js';
 // Debug utilities
-export { isDev, debugLog, debugWarn, debugError, createDebugLogger, } from './utils/debugUtils';
+export { isDev, debugLog, debugWarn, debugError, createDebugLogger, } from './utils/debugUtils.js';

package/dist/esm/shared/utils/index.js

@@ -6,10 +6,10 @@
  * @module shared/utils
  */
 // Color utilities
-export { darkenColor, lightenColor, hexToRgb, rgbToHex, withOpacity, isLightColor, getContrastTextColor, } from './colorUtils';
+export { darkenColor, lightenColor, hexToRgb, rgbToHex, withOpacity, isLightColor, getContrastTextColor, } from './colorUtils.js';
 // Theme utilities
-export { normalizeTheme, normalizeColorScheme, getOppositeTheme, systemPrefersDarkMode, getSystemColorScheme, } from './themeUtils';
+export { normalizeTheme, normalizeColorScheme, getOppositeTheme, systemPrefersDarkMode, getSystemColorScheme, } from './themeUtils.js';
 // Error utilities
-export { HttpStatus, getErrorStatus, getErrorMessage, isAlreadyRegisteredError, isUnauthorizedError, isForbiddenError, isNotFoundError, isRateLimitError, isServerError, isNetworkError, isRetryableError, } from './errorUtils';
+export { HttpStatus, getErrorStatus, getErrorMessage, isAlreadyRegisteredError, isUnauthorizedError, isForbiddenError, isNotFoundError, isRateLimitError, isServerError, isNetworkError, isRetryableError, } from './errorUtils.js';
 // Network utilities
-export { DEFAULT_CIRCUIT_BREAKER_CONFIG, createCircuitBreakerState, calculateBackoffInterval, recordFailure, recordSuccess, shouldAllowRequest, delay, withRetry, } from './networkUtils';
+export { DEFAULT_CIRCUIT_BREAKER_CONFIG, createCircuitBreakerState, calculateBackoffInterval, recordFailure, recordSuccess, shouldAllowRequest, delay, withRetry, } from './networkUtils.js';

package/dist/esm/utils/asyncUtils.js

@@ -1,7 +1,7 @@
 /**
  * Async utilities for common asynchronous patterns and error handling
  */
-import { logger } from './loggerUtils';
+import { logger } from './loggerUtils.js';
 /**
  * Wrapper for async operations with automatic error handling
  * Returns null on error instead of throwing

package/dist/esm/utils/errorUtils.js

@@ -1,4 +1,4 @@
-import { logger } from './loggerUtils';
+import { logger } from './loggerUtils.js';
 /**
  * Error handling utilities for consistent error processing
  */

package/dist/esm/utils/index.js

@@ -1,7 +1,7 @@
-export { DeviceManager } from './deviceManager';
+export { DeviceManager } from './deviceManager.js';
 // Request utilities
-export { RequestDeduplicator, RequestQueue, SimpleLogger } from './requestUtils';
+export { RequestDeduplicator, RequestQueue, SimpleLogger } from './requestUtils.js';
 // Cache utilities
-export { TTLCache, createCache, registerCacheForCleanup, unregisterCacheFromCleanup } from './cache';
+export { TTLCache, createCache, registerCacheForCleanup, unregisterCacheFromCleanup } from './cache.js';
 // Session utilities
-export { normalizeSession, sortSessions, deduplicateSessions, deduplicateSessionsByUserId, normalizeAndSortSessions, mergeSessions, sessionsEqual, sessionsArraysEqual } from './sessionUtils';
+export { normalizeSession, sortSessions, deduplicateSessions, deduplicateSessionsByUserId, normalizeAndSortSessions, mergeSessions, sessionsEqual, sessionsArraysEqual } from './sessionUtils.js';

package/dist/types/mixins/OxyServices.fedcm.d.ts

@@ -3,6 +3,7 @@ import type { SessionLoginResponse } from '../models/session';
 export interface FedCMAuthOptions {
     nonce?: string;
     context?: 'signin' | 'signup' | 'continue' | 'use';
+    loginHint?: string;
 }
 export interface FedCMConfig {
     enabled: boolean;
@@ -107,6 +108,7 @@ export declare function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(
             clientId: string;
             nonce: string;
             context?: string;
+            loginHint?: string;
             mediation?: "silent" | "optional" | "required";
         }): Promise<{
             token: string;
@@ -145,6 +147,10 @@ export declare function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(
          * @private
          */
         getClientId(): string;
+        /** @internal */
+        getStoredLoginHint(): string | undefined;
+        /** @internal */
+        storeLoginHint(userId: string): void;
         httpService: import("../HttpService").HttpService;
         cloudURL: string;
         config: import("../OxyServices.base").OxyConfig;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@oxyhq/core",
-  "version": "1.6.1",
+  "version": "1.6.3",
   "description": "OxyHQ SDK Foundation — API client, authentication, cryptographic identity, and shared utilities",
   "main": "dist/cjs/index.js",
   "module": "dist/esm/index.js",
@@ -58,7 +58,7 @@
     "build": "npm run build:cjs && npm run build:esm && npm run build:types && npm run copy-assets",
     "copy-assets": "cp -r src/i18n/locales dist/cjs/i18n/locales && cp -r src/i18n/locales dist/esm/i18n/locales",
     "build:cjs": "tsc -p tsconfig.cjs.json",
-    "build:esm": "tsc -p tsconfig.esm.json",
+    "build:esm": "tsc -p tsconfig.esm.json && node scripts/fix-esm-imports.mjs",
     "build:types": "tsc -p tsconfig.types.json",
     "clean": "rm -rf dist",
     "typescript": "tsc --noEmit",

package/src/AuthManager.ts

@@ -58,6 +58,7 @@ const STORAGE_KEYS = {
   SESSION: 'oxy_session',
   USER: 'oxy_user',
   AUTH_METHOD: 'oxy_auth_method',
+  FEDCM_LOGIN_HINT: 'oxy_fedcm_login_hint',
 } as const;
 
 /**
@@ -409,6 +410,7 @@ export class AuthManager {
     await this.storage.removeItem(STORAGE_KEYS.SESSION);
     await this.storage.removeItem(STORAGE_KEYS.USER);
     await this.storage.removeItem(STORAGE_KEYS.AUTH_METHOD);
+    await this.storage.removeItem(STORAGE_KEYS.FEDCM_LOGIN_HINT);
   }
 
   /**

package/src/mixins/OxyServices.fedcm.ts

@@ -8,6 +8,7 @@ const debug = createDebugLogger('FedCM');
 export interface FedCMAuthOptions {
   nonce?: string;
   context?: 'signin' | 'signup' | 'continue' | 'use';
+  loginHint?: string;
 }
 
 export interface FedCMConfig {
@@ -16,6 +17,8 @@ export interface FedCMConfig {
   clientId?: string;
 }
 
+const FEDCM_LOGIN_HINT_KEY = 'oxy_fedcm_login_hint';
+
 // Global lock to prevent concurrent FedCM requests
 // FedCM only allows one navigator.credentials.get request at a time
 let fedCMRequestInProgress = false;
@@ -102,7 +105,10 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
       const nonce = options.nonce || this.generateNonce();
       const clientId = this.getClientId();
 
-      debug.log('Interactive sign-in: Requesting credential for', clientId);
+      // Use provided loginHint, or fall back to stored last-used account ID
+      const loginHint = options.loginHint || this.getStoredLoginHint();
+
+      debug.log('Interactive sign-in: Requesting credential for', clientId, loginHint ? `(hint: ${loginHint})` : '');
 
       // Request credential from browser's native identity flow
       const credential = await this.requestIdentityCredential({
@@ -110,6 +116,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
         clientId,
         nonce,
         context: options.context,
+        loginHint,
       });
 
       if (!credential || !credential.token) {
@@ -126,6 +133,11 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
         this.httpService.setTokens((session as any).accessToken);
       }
 
+      // Store the user ID as loginHint for future FedCM requests
+      if (session?.user?.id) {
+        this.storeLoginHint(session.user.id);
+      }
+
       debug.log('Interactive sign-in: Success!', { userId: (session as any)?.user?.id });
 
       return session;
@@ -195,14 +207,17 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
     // Optional/interactive mediation should only happen when the user clicks "Sign In".
     let credential: { token: string } | null = null;
 
+    const loginHint = this.getStoredLoginHint();
+
     try {
       const nonce = this.generateNonce();
-      debug.log('Silent SSO: Attempting silent mediation...');
+      debug.log('Silent SSO: Attempting silent mediation...', loginHint ? `(hint: ${loginHint})` : '');
 
       credential = await this.requestIdentityCredential({
         configURL: (this.constructor as any).DEFAULT_CONFIG_URL,
         clientId,
         nonce,
+        loginHint,
         mediation: 'silent',
       });
 
@@ -263,6 +278,11 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
       debug.warn('Silent SSO: No accessToken in session response');
     }
 
+    // Store the user ID as loginHint for future FedCM requests
+    if (session.user?.id) {
+      this.storeLoginHint(session.user.id);
+    }
+
     debug.log('Silent SSO: Success!', {
       sessionId: session.sessionId?.substring(0, 8) + '...',
       userId: session.user?.id
@@ -286,6 +306,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
     clientId: string;
     nonce: string;
     context?: string;
+    loginHint?: string;
     mediation?: 'silent' | 'optional' | 'required';
   }): Promise<{ token: string } | null> {
     const requestedMediation = options.mediation || 'optional';
@@ -346,7 +367,7 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
                 params: {
                   nonce: options.nonce, // For Chrome 145+
                 },
-                ...(options.context && { loginHint: options.context }),
+                ...(options.loginHint && { loginHint: options.loginHint }),
               },
             ],
           },
@@ -480,6 +501,26 @@ export function OxyServicesFedCMMixin<T extends typeof OxyServicesBase>(Base: T)
     }
     return window.location.origin;
   }
+
+  /** @internal */
+  public getStoredLoginHint(): string | undefined {
+    if (typeof window === 'undefined') return undefined;
+    try {
+      return localStorage.getItem(FEDCM_LOGIN_HINT_KEY) || undefined;
+    } catch {
+      return undefined;
+    }
+  }
+
+  /** @internal */
+  public storeLoginHint(userId: string): void {
+    if (typeof window === 'undefined') return;
+    try {
+      localStorage.setItem(FEDCM_LOGIN_HINT_KEY, userId);
+    } catch {
+      // Storage full or blocked
+    }
+  }
   };
 }