@oxyhq/core 3.4.14 → 3.4.16

package/dist/esm/index.js

@@ -30,7 +30,11 @@ export { AuthManager, createAuthManager } from './AuthManager.js';
 export { CrossDomainAuth, createCrossDomainAuth } from './CrossDomainAuth.js';
 export { ServiceCredentialMismatchError } from './mixins/OxyServices.auth.js';
 export { OxyAppDataIdentifierError } from './mixins/OxyServices.appData.js';
-export { getCanonicalUserHandle, getNormalizedUserId, normalizeUserIdentity, normalizeUserIdentityOrNull, } from './utils/userIdentity.js';
+// ---------------------------------------------------------------------------
+// User identity and handles
+// ---------------------------------------------------------------------------
+export { getNormalizedUserId, normalizeUserIdentity, normalizeUserIdentityOrNull, } from './utils/userIdentity.js';
+export { getCanonicalUserHandle, getNormalizedUserHandle, } from './utils/userHandle.js';
 // ---------------------------------------------------------------------------
 // Auth helpers (token refresh, error normalisation, retry policies)
 // ---------------------------------------------------------------------------

package/dist/esm/utils/accountUtils.js

@@ -17,13 +17,9 @@ export const formatPublicKeyHandle = (publicKey) => {
  * Resolve a friendly display name for a user.
  *
  * Order of preference:
- *  1. `name.full`, or composed `name.first name.last` (FIRST-NAME-ONLY SAFE —
- *     a user with only a first name resolves to that first name, never to the
- *     lowercase username; this is the exact drift bug the auth app hit).
- *  2. `name` (when stored as a plain string)
- *  3. `displayName` (server `displayName` virtual — `username || truncatedKey`).
- *     Placed AFTER the structured name on purpose: the server virtual ignores
- *     `name`, so preferring it first would re-introduce the first-only bug.
+ *  1. `displayName` from the API contract.
+ *  2. `name.full`, or composed `name.first name.last` for local unsaved shapes.
+ *  3. `name` when stored as a plain string.
  *  4. `username`
  *  5. `Account 0x12345678…` (derived from publicKey, when present)
  *  6. Translated fallback (e.g. "Unnamed")
@@ -35,6 +31,8 @@ export const getAccountDisplayName = (user, locale) => {
     if (!user)
         return translate(locale, 'common.unnamed');
     const { name, displayName, username, publicKey } = user;
+    if (typeof displayName === 'string' && displayName.trim())
+        return displayName.trim();
     if (name && typeof name === 'object') {
         if (typeof name.full === 'string' && name.full.trim())
             return name.full.trim();
@@ -47,8 +45,6 @@ export const getAccountDisplayName = (user, locale) => {
     else if (typeof name === 'string' && name.trim()) {
         return name.trim();
     }
-    if (typeof displayName === 'string' && displayName.trim())
-        return displayName.trim();
     if (typeof username === 'string' && username.trim())
         return username.trim();
     if (typeof publicKey === 'string' && publicKey.length > 0) {

package/dist/esm/utils/userHandle.js

@@ -0,0 +1,33 @@
+function normalizeHandlePart(value) {
+    const trimmed = value?.trim().replace(/^@+/, '');
+    if (!trimmed || /[/?#]/.test(trimmed))
+        return null;
+    return trimmed;
+}
+/**
+ * Returns the normalized profile handle used by Oxy consumers for display and
+ * profile routing.
+ *
+ * Local users resolve to `username`. Federated users resolve to
+ * `username@instance` when the username does not already include an instance.
+ * Route-like values are rejected so callers do not accidentally turn paths or
+ * query strings into profile destinations.
+ */
+export function getNormalizedUserHandle(user) {
+    const username = normalizeHandlePart(user?.username ?? user?.handle);
+    if (!username)
+        return null;
+    const isFederated = user?.isFederated === true || user?.type === 'federated';
+    const instance = normalizeHandlePart(user?.instance ?? user?.federation?.domain);
+    if (isFederated && instance && !username.includes('@')) {
+        return `${username}@${instance}`;
+    }
+    return username;
+}
+/**
+ * Compatibility alias for the first public name shipped with this helper.
+ * Prefer {@link getNormalizedUserHandle} in new code.
+ */
+export function getCanonicalUserHandle(user) {
+    return getNormalizedUserHandle(user);
+}

package/dist/esm/utils/userIdentity.js

@@ -18,18 +18,21 @@ function stringifyIdentity(value) {
     }
     return null;
 }
-function normalizeHandle(value) {
-    const trimmed = value?.trim().replace(/^@+/, '');
-    if (!trimmed || /[/?#]/.test(trimmed))
-        return null;
-    return trimmed;
-}
+/**
+ * Returns the stable SDK user id from API payloads that may use either `id` or
+ * Mongo-style `_id`.
+ */
 export function getNormalizedUserId(user) {
     if (!user) {
         return null;
     }
     return stringifyIdentity(user.id) ?? stringifyIdentity(user._id);
 }
+/**
+ * Normalizes a user payload to always expose `id`. Throws when the payload does
+ * not contain a usable id, because SDK callers should never receive anonymous
+ * user objects from authenticated identity endpoints.
+ */
 export function normalizeUserIdentity(user) {
     const id = getNormalizedUserId(user);
     if (!id) {
@@ -40,14 +43,3 @@ export function normalizeUserIdentity(user) {
 export function normalizeUserIdentityOrNull(user) {
     return user ? normalizeUserIdentity(user) : null;
 }
-export function getCanonicalUserHandle(user) {
-    const username = normalizeHandle(user?.username ?? user?.handle);
-    if (!username)
-        return null;
-    const isFederated = user?.isFederated === true || user?.type === 'federated';
-    const instance = normalizeHandle(user?.instance ?? user?.federation?.domain);
-    if (isFederated && instance && !username.includes('@')) {
-        return `${username}@${instance}`;
-    }
-    return username;
-}