@oxyhq/services 10.2.0 → 10.2.2

package/lib/commonjs/ui/hooks/useAuth.js

@@ -29,7 +29,7 @@ var _useWebSSO = require("./useWebSSO.js");
  * Cross-domain SSO:
  * - Web: Automatic via FedCM (Chrome 108+, Safari 16.4+)
  * - Native: Automatic via shared Keychain/Account Manager
- * - Manual sign-in: signIn() opens popup (web) or auth sheet (native)
+ * - Manual sign-in: signIn() redirects to the IdP (web) or opens the auth sheet (native)
  */
 
 /**
@@ -50,7 +50,6 @@ function useAuth() {
     isAuthResolved,
     error,
     signIn: oxySignIn,
-    handlePopupSession,
     logout,
     logoutAll,
     refreshSessions,
@@ -60,7 +59,7 @@ function useAuth() {
     showBottomSheet,
     openAvatarPicker
   } = (0, _OxyContext.useOxy)();
-  const signIn = (0, _react.useCallback)(async (publicKey, preOpenedPopup) => {
+  const signIn = (0, _react.useCallback)(async publicKey => {
     // Check if we're on the identity provider itself
     // Only the IdP has local login forms - other apps are client apps
     const authWebUrl = oxyServices.config?.authWebUrl;
@@ -72,42 +71,13 @@ function useAuth() {
     }
     const isIdentityProvider = (0, _useWebSSO.isWebBrowser)() && window.location.hostname === idpHostname;
 
-    // Web (not on IdP): Use popup-based authentication
-    // We go straight to popup to preserve the "user gesture" (click event)
-    // FedCM silent SSO already runs on page load via useWebSSO
-    // If user is clicking "Sign In", they need interactive auth NOW
+    // Web (not on IdP): use the tokenless redirect SSO flow. FedCM / silent SSO
+    // already run on page load; an explicit click needs interactive auth.
     if ((0, _useWebSSO.isWebBrowser)() && !publicKey && !isIdentityProvider) {
-      // Open the popup SYNCHRONOUSLY before any `await` runs so Chrome's
-      // transient user-activation is preserved across the async chain
-      // (React state updates + the `await` into `signInWithPopup`). If the
-      // caller already pre-opened one (e.g. they did so to be extra safe
-      // ahead of their own awaits), reuse it.
-      const popup = preOpenedPopup ?? oxyServices.openBlankPopup?.() ?? null;
-      try {
-        const popupSession = await oxyServices.signInWithPopup?.({
-          popup
-        });
-        if (popupSession?.user) {
-          // The popup auth flow fetches full user data, so the session user
-          // contains full User fields even though the base type is MinimalUserData.
-          // Cast to the expected shape for handlePopupSession.
-          const sessionWithUser = {
-            ...popupSession,
-            user: popupSession.user
-          };
-          await handlePopupSession(sessionWithUser);
-          return sessionWithUser.user;
-        }
-        throw new Error('Sign-in failed. Please try again.');
-      } catch (popupError) {
-        if (popup && !popup.closed) {
-          popup.close();
-        }
-        if (popupError instanceof Error && popupError.message.includes('blocked')) {
-          throw new Error('Popup blocked. Please allow popups for this site.');
-        }
-        throw popupError;
-      }
+      oxyServices.signInWithRedirect?.({
+        redirectUri: window.location.href
+      });
+      return new Promise(() => undefined);
     }
 
     // Native: Use cryptographic identity
@@ -142,7 +112,7 @@ function useAuth() {
       return new Promise(() => {}); // Never resolves, page will redirect
     }
     throw new Error('No authentication method available');
-  }, [oxySignIn, hasIdentity, getPublicKey, showBottomSheet, oxyServices, handlePopupSession]);
+  }, [oxySignIn, hasIdentity, getPublicKey, showBottomSheet, oxyServices]);
   const signOut = (0, _react.useCallback)(async () => {
     await logout();
   }, [logout]);
@@ -156,7 +126,7 @@ function useAuth() {
     // State
     user,
     isAuthenticated,
-    isLoading,
+    isLoading: isLoading || !isAuthResolved,
     isReady: isTokenReady,
     isAuthResolved,
     error,

package/lib/commonjs/ui/hooks/useAuth.js.map

@@ -1 +1 @@
-{"version":3,"names":["_react","require","_OxyContext","_useWebSSO","useAuth","user","isAuthenticated","isLoading","isTokenReady","isAuthResolved","error","signIn","oxySignIn","handlePopupSession","logout","logoutAll","refreshSessions","oxyServices","hasIdentity","getPublicKey","showBottomSheet","openAvatarPicker","useOxy","useCallback","publicKey","preOpenedPopup","authWebUrl","config","idpHostname","URL","hostname","isIdentityProvider","isWebBrowser","window","location","popup","openBlankPopup","popupSession","signInWithPopup","sessionWithUser","Error","popupError","closed","close","message","includes","hasExisting","existingKey","Promise","_","reject","authBase","loginUrl","href","signOut","signOutAll","refresh","isReady"],"sourceRoot":"../../../../src","sources":["ui/hooks/useAuth.ts"],"mappings":";;;;;;AAyBA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,WAAA,GAAAD,OAAA;AAEA,IAAAE,UAAA,GAAAF,OAAA;AA5BA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AA2EA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,SAASG,OAAOA,CAAA,EAAkB;EACvC,MAAM;IACJC,IAAI;IACJC,eAAe;IACfC,SAAS;IACTC,YAAY;IACZC,cAAc;IACdC,KAAK;IACLC,MAAM,EAAEC,SAAS;IACjBC,kBAAkB;IAClBC,MAAM;IACNC,SAAS;IACTC,eAAe;IACfC,WAAW;IACXC,WAAW;IACXC,YAAY;IACZC,eAAe;IACfC;EACF,CAAC,GAAG,IAAAC,kBAAM,EAAC,CAAC;EAEZ,MAAMX,MAAM,GAAG,IAAAY,kBAAW,EAAC,OAAOC,SAAkB,EAAEC,cAA8B,KAAoB;IACtG;IACA;IACA,MAAMC,UAAU,GAAGT,WAAW,CAACU,MAAM,EAAED,UAAU;IACjD,IAAIE,WAAW,GAAG,aAAa;IAC/B,IAAIF,UAAU,EAAE;MACd,IAAI;QAAEE,WAAW,GAAG,IAAIC,GAAG,CAACH,UAAU,CAAC,CAACI,QAAQ;MAAE,CAAC,CAAC,MAAM,CAAE;IAC9D;IACA,MAAMC,kBAAkB,GAAG,IAAAC,uBAAY,EAAC,CAAC,IACvCC,MAAM,CAACC,QAAQ,CAACJ,QAAQ,KAAKF,WAAW;;IAE1C;IACA;IACA;IACA;IACA,IAAI,IAAAI,uBAAY,EAAC,CAAC,IAAI,CAACR,SAAS,IAAI,CAACO,kBAAkB,EAAE;MACvD;MACA;MACA;MACA;MACA;MACA,MAAMI,KAAoB,GAAGV,cAAc,IACtCR,WAAW,CAACmB,cAAc,GAAG,CAAC,IAC9B,IAAI;MACT,IAAI;QACF,MAAMC,YAAY,GAAG,MAAMpB,WAAW,CAACqB,eAAe,GAAG;UACvDH;QACF,CAAC,CAAC;QACF,IAAIE,YAAY,EAAEhC,IAAI,EAAE;UACtB;UACA;UACA;UACA,MAAMkC,eAAe,GAAG;YACtB,GAAGF,YAAY;YACfhC,IAAI,EAAEgC,YAAY,CAAChC;UACrB,CAAC;UACD,MAAMQ,kBAAkB,CAAC0B,eAAe,CAAC;UACzC,OAAOA,eAAe,CAAClC,IAAI;QAC7B;QACA,MAAM,IAAImC,KAAK,CAAC,mCAAmC,CAAC;MACtD,CAAC,CAAC,OAAOC,UAAU,EAAE;QACnB,IAAIN,KAAK,IAAI,CAACA,KAAK,CAACO,MAAM,EAAE;UAC1BP,KAAK,CAACQ,KAAK,CAAC,CAAC;QACf;QACA,IAAIF,UAAU,YAAYD,KAAK,IAAIC,UAAU,CAACG,OAAO,CAACC,QAAQ,CAAC,SAAS,CAAC,EAAE;UACzE,MAAM,IAAIL,KAAK,CAAC,mDAAmD,CAAC;QACtE;QACA,MAAMC,UAAU;MAClB;IACF;;IAEA;IACA;IACA,IAAIjB,SAAS,EAAE;MACb,OAAOZ,SAAS,CAACY,SAAS,CAAC;IAC7B;;IAEA;IACA,MAAMsB,WAAW,GAAG,MAAM5B,WAAW,CAAC,CAAC;IAEvC,IAAI4B,WAAW,EAAE;MACf,MAAMC,WAAW,GAAG,MAAM5B,YAAY,CAAC,CAAC;MACxC,IAAI4B,WAAW,EAAE;QACf,OAAOnC,SAAS,CAACmC,WAAW,CAAC;MAC/B;IACF;;IAEA;IACA,IAAI3B,eAAe,EAAE;MACnBA,eAAe,CAAC,SAAS,CAAC;MAC1B;MACA,OAAO,IAAI4B,OAAO,CAAC,CAACC,CAAC,EAAEC,MAAM,KAAK;QAChCA,MAAM,CAAC,IAAIV,KAAK,CAAC,2CAA2C,CAAC,CAAC;MAChE,CAAC,CAAC;IACJ;;IAEA;IACA,IAAI,IAAAR,uBAAY,EAAC,CAAC,EAAE;MAClB,MAAMmB,QAAQ,GAAGzB,UAAU,IAAI,yBAAyB;MACxD,MAAM0B,QAAQ,GAAGnB,MAAM,CAACC,QAAQ,CAACJ,QAAQ,CAACe,QAAQ,CAAC,QAAQ,CAAC,GACxD,QAAQ,GACR,GAAGM,QAAQ,QAAQ;MACvBlB,MAAM,CAACC,QAAQ,CAACmB,IAAI,GAAGD,QAAQ;MAC/B,OAAO,IAAIJ,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAChC;IAEA,MAAM,IAAIR,KAAK,CAAC,oCAAoC,CAAC;EACvD,CAAC,EAAE,CAAC5B,SAAS,EAAEM,WAAW,EAAEC,YAAY,EAAEC,eAAe,EAAEH,WAAW,EAAEJ,kBAAkB,CAAC,CAAC;EAE5F,MAAMyC,OAAO,GAAG,IAAA/B,kBAAW,EAAC,YAA2B;IACrD,MAAMT,MAAM,CAAC,CAAC;EAChB,CAAC,EAAE,CAACA,MAAM,CAAC,CAAC;EAEZ,MAAMyC,UAAU,GAAG,IAAAhC,kBAAW,EAAC,YAA2B;IACxD,MAAMR,SAAS,CAAC,CAAC;EACnB,CAAC,EAAE,CAACA,SAAS,CAAC,CAAC;EAEf,MAAMyC,OAAO,GAAG,IAAAjC,kBAAW,EAAC,YAA2B;IACrD,MAAMP,eAAe,CAAC,CAAC;EACzB,CAAC,EAAE,CAACA,eAAe,CAAC,CAAC;EAErB,OAAO;IACL;IACAX,IAAI;IACJC,eAAe;IACfC,SAAS;IACTkD,OAAO,EAAEjD,YAAY;IACrBC,cAAc;IACdC,KAAK;IAEL;IACAC,MAAM;IACN2C,OAAO;IACPC,UAAU;IACVC,OAAO;IAEP;IACAvC,WAAW;IACXG,eAAe;IACfC;EACF,CAAC;AACH","ignoreList":[]}
+{"version":3,"names":["_react","require","_OxyContext","_useWebSSO","useAuth","user","isAuthenticated","isLoading","isTokenReady","isAuthResolved","error","signIn","oxySignIn","logout","logoutAll","refreshSessions","oxyServices","hasIdentity","getPublicKey","showBottomSheet","openAvatarPicker","useOxy","useCallback","publicKey","authWebUrl","config","idpHostname","URL","hostname","isIdentityProvider","isWebBrowser","window","location","signInWithRedirect","redirectUri","href","Promise","undefined","hasExisting","existingKey","_","reject","Error","authBase","loginUrl","includes","signOut","signOutAll","refresh","isReady"],"sourceRoot":"../../../../src","sources":["ui/hooks/useAuth.ts"],"mappings":";;;;;;AAyBA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,WAAA,GAAAD,OAAA;AAEA,IAAAE,UAAA,GAAAF,OAAA;AA5BA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAuEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,SAASG,OAAOA,CAAA,EAAkB;EACvC,MAAM;IACJC,IAAI;IACJC,eAAe;IACfC,SAAS;IACTC,YAAY;IACZC,cAAc;IACdC,KAAK;IACLC,MAAM,EAAEC,SAAS;IACjBC,MAAM;IACNC,SAAS;IACTC,eAAe;IACfC,WAAW;IACXC,WAAW;IACXC,YAAY;IACZC,eAAe;IACfC;EACF,CAAC,GAAG,IAAAC,kBAAM,EAAC,CAAC;EAEZ,MAAMV,MAAM,GAAG,IAAAW,kBAAW,EAAC,MAAOC,SAAkB,IAAoB;IACtE;IACA;IACA,MAAMC,UAAU,GAAGR,WAAW,CAACS,MAAM,EAAED,UAAU;IACjD,IAAIE,WAAW,GAAG,aAAa;IAC/B,IAAIF,UAAU,EAAE;MACd,IAAI;QAAEE,WAAW,GAAG,IAAIC,GAAG,CAACH,UAAU,CAAC,CAACI,QAAQ;MAAE,CAAC,CAAC,MAAM,CAAE;IAC9D;IACA,MAAMC,kBAAkB,GAAG,IAAAC,uBAAY,EAAC,CAAC,IACvCC,MAAM,CAACC,QAAQ,CAACJ,QAAQ,KAAKF,WAAW;;IAE1C;IACA;IACA,IAAI,IAAAI,uBAAY,EAAC,CAAC,IAAI,CAACP,SAAS,IAAI,CAACM,kBAAkB,EAAE;MACvDb,WAAW,CAACiB,kBAAkB,GAAG;QAC/BC,WAAW,EAAEH,MAAM,CAACC,QAAQ,CAACG;MAC/B,CAAC,CAAC;MACF,OAAO,IAAIC,OAAO,CAAO,MAAMC,SAAS,CAAC;IAC3C;;IAEA;IACA;IACA,IAAId,SAAS,EAAE;MACb,OAAOX,SAAS,CAACW,SAAS,CAAC;IAC7B;;IAEA;IACA,MAAMe,WAAW,GAAG,MAAMrB,WAAW,CAAC,CAAC;IAEvC,IAAIqB,WAAW,EAAE;MACf,MAAMC,WAAW,GAAG,MAAMrB,YAAY,CAAC,CAAC;MACxC,IAAIqB,WAAW,EAAE;QACf,OAAO3B,SAAS,CAAC2B,WAAW,CAAC;MAC/B;IACF;;IAEA;IACA,IAAIpB,eAAe,EAAE;MACnBA,eAAe,CAAC,SAAS,CAAC;MAC1B;MACA,OAAO,IAAIiB,OAAO,CAAC,CAACI,CAAC,EAAEC,MAAM,KAAK;QAChCA,MAAM,CAAC,IAAIC,KAAK,CAAC,2CAA2C,CAAC,CAAC;MAChE,CAAC,CAAC;IACJ;;IAEA;IACA,IAAI,IAAAZ,uBAAY,EAAC,CAAC,EAAE;MAClB,MAAMa,QAAQ,GAAGnB,UAAU,IAAI,yBAAyB;MACxD,MAAMoB,QAAQ,GAAGb,MAAM,CAACC,QAAQ,CAACJ,QAAQ,CAACiB,QAAQ,CAAC,QAAQ,CAAC,GACxD,QAAQ,GACR,GAAGF,QAAQ,QAAQ;MACvBZ,MAAM,CAACC,QAAQ,CAACG,IAAI,GAAGS,QAAQ;MAC/B,OAAO,IAAIR,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAChC;IAEA,MAAM,IAAIM,KAAK,CAAC,oCAAoC,CAAC;EACvD,CAAC,EAAE,CAAC9B,SAAS,EAAEK,WAAW,EAAEC,YAAY,EAAEC,eAAe,EAAEH,WAAW,CAAC,CAAC;EAExE,MAAM8B,OAAO,GAAG,IAAAxB,kBAAW,EAAC,YAA2B;IACrD,MAAMT,MAAM,CAAC,CAAC;EAChB,CAAC,EAAE,CAACA,MAAM,CAAC,CAAC;EAEZ,MAAMkC,UAAU,GAAG,IAAAzB,kBAAW,EAAC,YAA2B;IACxD,MAAMR,SAAS,CAAC,CAAC;EACnB,CAAC,EAAE,CAACA,SAAS,CAAC,CAAC;EAEf,MAAMkC,OAAO,GAAG,IAAA1B,kBAAW,EAAC,YAA2B;IACrD,MAAMP,eAAe,CAAC,CAAC;EACzB,CAAC,EAAE,CAACA,eAAe,CAAC,CAAC;EAErB,OAAO;IACL;IACAV,IAAI;IACJC,eAAe;IACfC,SAAS,EAAEA,SAAS,IAAI,CAACE,cAAc;IACvCwC,OAAO,EAAEzC,YAAY;IACrBC,cAAc;IACdC,KAAK;IAEL;IACAC,MAAM;IACNmC,OAAO;IACPC,UAAU;IACVC,OAAO;IAEP;IACAhC,WAAW;IACXG,eAAe;IACfC;EACF,CAAC;AACH","ignoreList":[]}

package/lib/commonjs/ui/hooks/useDeviceAccounts.js

@@ -0,0 +1,285 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.markCurrentAccount = markCurrentAccount;
+exports.useDeviceAccounts = useDeviceAccounts;
+var _react = require("react");
+var _reactQuery = require("@tanstack/react-query");
+var _core = require("@oxyhq/core");
+var _OxyContext = require("../context/OxyContext.js");
+var _useI18n = require("./useI18n.js");
+var _queryKeys = require("./queries/queryKeys.js");
+/**
+ * The per-account user shape carried by a {@link DeviceAccount}. Either:
+ *  - the minimal projection returned by `POST /auth/refresh-all`
+ *    ({@link RefreshAllAccountUser}, the shared apex path), or
+ *  - the SDK's canonical {@link User} document (the active row on the local
+ *    fallback path, which already has the full user loaded in `useOxy()`).
+ *
+ * Both satisfy `getAccountDisplayName`'s `DisplayNameUserShape`, so display
+ * resolution is uniform across paths.
+ */
+
+/**
+ * One signed-in account on this device, fully hydrated for the account
+ * chooser. Unlike the old `AccountMenu` behaviour (which only carried the
+ * ACTIVE session's user), EVERY entry here carries real per-account
+ * `displayName` / `email` / `avatarUrl` / `color`.
+ */
+
+/**
+ * Resolve which entries are the current account, robustly.
+ *
+ * Primary signal: `entry.sessionId === activeSessionId`. On the web shared-apex
+ * path, `refreshAllSessions()` returns SERVER-side session ids that may not
+ * equal the locally-stored `activeSessionId` (a different storage namespace /
+ * server perspective), so a pure `sessionId` match can flag NO row as current —
+ * the bug that surfaced as "Not signed in" even while authenticated.
+ *
+ * Fallbacks, applied only when the `sessionId` match found nothing AND the user
+ * is authenticated:
+ *  1. Match the live `user.id` against each entry's per-account user id.
+ *  2. If still nothing and there is exactly one account, mark that one current.
+ *
+ * At most ONE entry is ever marked current.
+ *
+ * Pure & side-effect free so it is unit-testable without rendering React.
+ */
+function markCurrentAccount(accounts, activeSessionId, liveUserId, isAuthenticated) {
+  const bySession = accounts.map(account => ({
+    ...account,
+    isCurrent: Boolean(activeSessionId) && account.sessionId === activeSessionId
+  }));
+  if (bySession.some(account => account.isCurrent) || !isAuthenticated) {
+    return bySession;
+  }
+
+  // No row matched by session id: fall back to the live user's id, marking at
+  // most the FIRST matching entry current (never more than one).
+  if (liveUserId) {
+    let matched = false;
+    const byUser = bySession.map(account => {
+      if (!matched && account.user.id === liveUserId) {
+        matched = true;
+        return {
+          ...account,
+          isCurrent: true
+        };
+      }
+      return account;
+    });
+    if (matched) {
+      return byUser;
+    }
+  }
+
+  // Authenticated, nothing matched, but there is exactly one account → it must
+  // be the current one (single-account shared-apex / cross-domain case).
+  if (bySession.length === 1) {
+    return [{
+      ...bySession[0],
+      isCurrent: true
+    }];
+  }
+  return bySession;
+}
+
+/**
+ * Resolve every account signed in on this device for the unified account
+ * switcher, with real per-account name / email / avatar / color.
+ *
+ * ## Data sources (web vs native)
+ *
+ * - **Web on a `*.oxy.so` host** → `oxyServices.refreshAllSessions()` returns
+ *   the full apex device-account list (identical to what `auth.oxy.so` sees,
+ *   because the `Domain=oxy.so` refresh cookies reach `api.oxy.so`). Used
+ *   directly — this is the `fromSharedApex: true` path.
+ * - **Cross-domain web (non-`oxy.so` apex)** OR **native (no browser cookies)**
+ *   → `refreshAllSessions()` yields `{ accounts: [] }` (the apex cookies never
+ *   reach the request: cross-domain by `Domain`, native by having no cookie
+ *   jar at all; a 401 is also normalised to `{ accounts: [] }` inside the
+ *   core mixin). In that case we FALL BACK to the SDK's local multi-account
+ *   list from `useOxy()` (`sessions` + `activeSessionId` + the active `user`).
+ *   This is the `fromSharedApex: false` path.
+ *
+ * The fallback decision is purely data-driven: **if `refreshAllSessions()`
+ * returns >0 accounts, use the shared path; otherwise fall back to local
+ * `useOxy()` sessions.** No host sniffing is needed — the cookie scoping does
+ * the discrimination for us, and the same code path works on native (where the
+ * fetch returns `{ accounts: [] }`).
+ *
+ * ## Why React Query (not a `useRef`/`useState` start-once like the auth app)
+ *
+ * The auth app's `use-device-accounts.ts` hand-rolls a `startedRef` because it
+ * has no React Query. The SDK does. `refreshAllSessions()` ROTATES single-use
+ * refresh cookies on every call, so it must run AT MOST ONCE per page load:
+ * we model that with `staleTime: Infinity` + `gcTime: Infinity` +
+ * `refetchOnWindowFocus/Reconnect/Mount: false` + `retry: false`. React Query
+ * dedupes concurrent mounts and caches the single result for the page's
+ * lifetime — the exact "run once" guarantee the auth app documents, but
+ * without the manual ref/state machinery.
+ *
+ * ## Validation note (intentionally NO zod re-parse)
+ *
+ * The auth app's hook calls `fetch` directly, so IT must `safeParse` the wire
+ * response with `@oxyhq/contracts`. This hook calls
+ * `oxyServices.refreshAllSessions()`, whose core mixin ALREADY validates and
+ * normalises the wire response (skips entries missing required fields,
+ * normalises `authuser` null→0, builds the `RefreshAllAccountUser` shape) — the
+ * mixin is the single source of truth. Re-validating the SDK's own already-typed
+ * output here would be redundant double-validation, so we do not re-parse.
+ *
+ * ## Error handling
+ *
+ * `refreshAllSessions()` already maps 401/404/abort to `{ accounts: [] }`
+ * internally. Any OTHER failure (network, 5xx) propagates as a thrown error and
+ * is surfaced by React Query (`query.isError`) — never swallowed. Callers that
+ * don't care can ignore it; the hook still returns the local fallback list so
+ * the chooser stays usable.
+ */
+function useDeviceAccounts() {
+  const {
+    oxyServices,
+    sessions,
+    activeSessionId,
+    user,
+    isAuthenticated
+  } = (0, _OxyContext.useOxy)();
+  const {
+    locale
+  } = (0, _useI18n.useI18n)();
+
+  // Stable, per-API-origin query key. `refreshAllSessions` resolves against
+  // the session base url derived from `getBaseURL()`, so keying on it scopes
+  // the cached result to the API the provider is pointed at.
+  const baseURL = oxyServices.getBaseURL();
+  const query = (0, _reactQuery.useQuery)({
+    queryKey: [..._queryKeys.queryKeys.accounts.all, 'deviceAccounts', baseURL],
+    queryFn: () => oxyServices.refreshAllSessions(),
+    // Only attempt the shared apex path while signed in. When logged out
+    // there is nothing to enumerate and the fallback (also empty) is used.
+    enabled: isAuthenticated,
+    // Single-use cookie rotation → run at most once per page load.
+    staleTime: Number.POSITIVE_INFINITY,
+    gcTime: Number.POSITIVE_INFINITY,
+    refetchOnWindowFocus: false,
+    refetchOnReconnect: false,
+    refetchOnMount: false,
+    retry: false
+  });
+  const sharedAccounts = query.data?.accounts ?? [];
+  const fromSharedApex = sharedAccounts.length > 0;
+  const accounts = (0, _react.useMemo)(() => {
+    const resolveAvatarUrl = avatar => avatar ? oxyServices.getFileDownloadUrl(avatar, 'thumb') : undefined;
+
+    // Build a single current-account row from the live `useOxy().user`. Used
+    // as a last-resort fallback when neither the shared-apex probe nor the
+    // local session store yielded a row but the user IS authenticated (e.g.
+    // a cross-domain host where the apex probe returned empty before the
+    // local session store hydrated). The signed-in user must ALWAYS be
+    // represented. Email is the REAL email or the `@handle` line — never a
+    // synthesized `username@oxy.so`.
+    const liveUserRow = () => {
+      if (!isAuthenticated || !user || !activeSessionId) {
+        return [];
+      }
+      const displayName = (0, _core.getAccountDisplayName)(user, locale);
+      const handle = (0, _core.getAccountFallbackHandle)(user);
+      const secondaryHandle = handle ? `@${handle}` : null;
+      return [{
+        sessionId: activeSessionId,
+        authuser: undefined,
+        isCurrent: true,
+        displayName,
+        email: user.email ?? secondaryHandle,
+        avatarUrl: resolveAvatarUrl(user.avatar),
+        color: user.color ?? null,
+        user
+      }];
+    };
+    let built;
+    if (fromSharedApex) {
+      // Shared apex path: every entry carries a real per-account user.
+      built = sharedAccounts.map(entry => {
+        // `entry.user` is non-null on the refresh-all path; the core
+        // mixin skips entries without a valid user. The fallback below
+        // keeps rendering defensive if a server response is incomplete.
+        const accountUser = entry.user ?? {
+          id: '',
+          username: ''
+        };
+        const displayName = (0, _core.getAccountDisplayName)(accountUser, locale);
+        const handle = (0, _core.getAccountFallbackHandle)(accountUser);
+        const email = entry.user?.email ?? null;
+        const secondaryHandle = handle ? `@${handle}` : null;
+        return {
+          sessionId: entry.sessionId,
+          authuser: entry.authuser,
+          // Provisional; finalised by `markCurrentAccount` below so the
+          // shared-apex path is robust to server/local session-id skew.
+          isCurrent: false,
+          displayName,
+          // Real email, or null (NEVER synthesized). The UI uses the
+          // `@handle` line only when email is genuinely absent.
+          email: email ?? secondaryHandle,
+          avatarUrl: resolveAvatarUrl(entry.user?.avatar),
+          color: entry.user?.color ?? null,
+          user: accountUser
+        };
+      });
+    } else {
+      // Local fallback path: build from the SDK's multi-session store. The
+      // active session row gets the full loaded `user`; inactive fallback
+      // rows carry only what the `ClientSession` exposes (no synthesized
+      // identity — they show the active user's data only when active).
+      built = (sessions ?? []).map(session => {
+        const isCurrent = session.sessionId === activeSessionId;
+        const accountUser = isCurrent && user ? user : {
+          id: session.userId ?? '',
+          username: ''
+        };
+        const displayName = (0, _core.getAccountDisplayName)(accountUser, locale);
+        const handle = (0, _core.getAccountFallbackHandle)(accountUser);
+        const email = isCurrent && user?.email ? user.email : null;
+        const secondaryHandle = handle ? `@${handle}` : null;
+        const avatar = isCurrent && user ? user.avatar : undefined;
+        const color = isCurrent && user?.color ? user.color : null;
+        return {
+          sessionId: session.sessionId,
+          authuser: session.authuser,
+          isCurrent,
+          displayName,
+          email: email ?? secondaryHandle,
+          avatarUrl: resolveAvatarUrl(avatar),
+          color,
+          user: accountUser
+        };
+      });
+    }
+
+    // Robust current-account detection: tolerate server/local session-id
+    // skew on the shared-apex path by falling back to the live user's id and
+    // the single-account heuristic.
+    const flagged = markCurrentAccount(built, activeSessionId, user?.id ?? null, isAuthenticated);
+
+    // The signed-in user must ALWAYS be represented. If detection produced
+    // an empty list yet the user is authenticated, synthesize a single
+    // current row from the live `useOxy().user`.
+    if (flagged.length === 0) {
+      return liveUserRow();
+    }
+    return flagged;
+  }, [fromSharedApex, sharedAccounts, sessions, activeSessionId, user, isAuthenticated, locale, oxyServices]);
+  return {
+    accounts,
+    // `isLoading` only reflects the shared probe while it's the relevant
+    // source. Once we know we're on the fallback (probe settled with 0
+    // accounts) the local list is synchronously available.
+    isLoading: isAuthenticated && query.isLoading,
+    currentSessionId: activeSessionId ?? null,
+    fromSharedApex
+  };
+}
+//# sourceMappingURL=useDeviceAccounts.js.map

package/lib/commonjs/ui/hooks/useDeviceAccounts.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_react","require","_reactQuery","_core","_OxyContext","_useI18n","_queryKeys","markCurrentAccount","accounts","activeSessionId","liveUserId","isAuthenticated","bySession","map","account","isCurrent","Boolean","sessionId","some","matched","byUser","user","id","length","useDeviceAccounts","oxyServices","sessions","useOxy","locale","useI18n","baseURL","getBaseURL","query","useQuery","queryKey","queryKeys","all","queryFn","refreshAllSessions","enabled","staleTime","Number","POSITIVE_INFINITY","gcTime","refetchOnWindowFocus","refetchOnReconnect","refetchOnMount","retry","sharedAccounts","data","fromSharedApex","useMemo","resolveAvatarUrl","avatar","getFileDownloadUrl","undefined","liveUserRow","displayName","getAccountDisplayName","handle","getAccountFallbackHandle","secondaryHandle","authuser","email","avatarUrl","color","built","entry","accountUser","username","session","userId","flagged","isLoading","currentSessionId"],"sourceRoot":"../../../../src","sources":["ui/hooks/useDeviceAccounts.ts"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,WAAA,GAAAD,OAAA;AACA,IAAAE,KAAA,GAAAF,OAAA;AASA,IAAAG,WAAA,GAAAH,OAAA;AACA,IAAAI,QAAA,GAAAJ,OAAA;AACA,IAAAK,UAAA,GAAAL,OAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAGA;AACA;AACA;AACA;AACA;AACA;;AA4CA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,SAASM,kBAAkBA,CAC9BC,QAAyB,EACzBC,eAA0C,EAC1CC,UAAqC,EACrCC,eAAwB,EACT;EACf,MAAMC,SAAS,GAAGJ,QAAQ,CAACK,GAAG,CAAEC,OAAO,KAAqB;IACxD,GAAGA,OAAO;IACVC,SAAS,EAAEC,OAAO,CAACP,eAAe,CAAC,IAAIK,OAAO,CAACG,SAAS,KAAKR;EACjE,CAAC,CAAC,CAAC;EAEH,IAAIG,SAAS,CAACM,IAAI,CAAEJ,OAAO,IAAKA,OAAO,CAACC,SAAS,CAAC,IAAI,CAACJ,eAAe,EAAE;IACpE,OAAOC,SAAS;EACpB;;EAEA;EACA;EACA,IAAIF,UAAU,EAAE;IACZ,IAAIS,OAAO,GAAG,KAAK;IACnB,MAAMC,MAAM,GAAGR,SAAS,CAACC,GAAG,CAAEC,OAAO,IAAoB;MACrD,IAAI,CAACK,OAAO,IAAIL,OAAO,CAACO,IAAI,CAACC,EAAE,KAAKZ,UAAU,EAAE;QAC5CS,OAAO,GAAG,IAAI;QACd,OAAO;UAAE,GAAGL,OAAO;UAAEC,SAAS,EAAE;QAAK,CAAC;MAC1C;MACA,OAAOD,OAAO;IAClB,CAAC,CAAC;IACF,IAAIK,OAAO,EAAE;MACT,OAAOC,MAAM;IACjB;EACJ;;EAEA;EACA;EACA,IAAIR,SAAS,CAACW,MAAM,KAAK,CAAC,EAAE;IACxB,OAAO,CAAC;MAAE,GAAGX,SAAS,CAAC,CAAC,CAAC;MAAEG,SAAS,EAAE;IAAK,CAAC,CAAC;EACjD;EAEA,OAAOH,SAAS;AACpB;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,SAASY,iBAAiBA,CAAA,EAA4B;EACzD,MAAM;IACFC,WAAW;IACXC,QAAQ;IACRjB,eAAe;IACfY,IAAI;IACJV;EACJ,CAAC,GAAG,IAAAgB,kBAAM,EAAC,CAAC;EACZ,MAAM;IAAEC;EAAO,CAAC,GAAG,IAAAC,gBAAO,EAAC,CAAC;;EAE5B;EACA;EACA;EACA,MAAMC,OAAO,GAAGL,WAAW,CAACM,UAAU,CAAC,CAAC;EAExC,MAAMC,KAAK,GAAG,IAAAC,oBAAQ,EAAC;IACnBC,QAAQ,EAAE,CAAC,GAAGC,oBAAS,CAAC3B,QAAQ,CAAC4B,GAAG,EAAE,gBAAgB,EAAEN,OAAO,CAAU;IACzEO,OAAO,EAAEA,CAAA,KAAMZ,WAAW,CAACa,kBAAkB,CAAC,CAAC;IAC/C;IACA;IACAC,OAAO,EAAE5B,eAAe;IACxB;IACA6B,SAAS,EAAEC,MAAM,CAACC,iBAAiB;IACnCC,MAAM,EAAEF,MAAM,CAACC,iBAAiB;IAChCE,oBAAoB,EAAE,KAAK;IAC3BC,kBAAkB,EAAE,KAAK;IACzBC,cAAc,EAAE,KAAK;IACrBC,KAAK,EAAE;EACX,CAAC,CAAC;EAEF,MAAMC,cAAc,GAAGhB,KAAK,CAACiB,IAAI,EAAEzC,QAAQ,IAAI,EAAE;EACjD,MAAM0C,cAAc,GAAGF,cAAc,CAACzB,MAAM,GAAG,CAAC;EAEhD,MAAMf,QAAQ,GAAG,IAAA2C,cAAO,EAAkB,MAAM;IAC5C,MAAMC,gBAAgB,GAAIC,MAAiC,IACvDA,MAAM,GAAG5B,WAAW,CAAC6B,kBAAkB,CAACD,MAAM,EAAE,OAAO,CAAC,GAAGE,SAAS;;IAExE;IACA;IACA;IACA;IACA;IACA;IACA;IACA,MAAMC,WAAW,GAAGA,CAAA,KAAuB;MACvC,IAAI,CAAC7C,eAAe,IAAI,CAACU,IAAI,IAAI,CAACZ,eAAe,EAAE;QAC/C,OAAO,EAAE;MACb;MACA,MAAMgD,WAAW,GAAG,IAAAC,2BAAqB,EAACrC,IAAI,EAAEO,MAAM,CAAC;MACvD,MAAM+B,MAAM,GAAG,IAAAC,8BAAwB,EAACvC,IAAI,CAAC;MAC7C,MAAMwC,eAAe,GAAGF,MAAM,GAAG,IAAIA,MAAM,EAAE,GAAG,IAAI;MACpD,OAAO,CAAC;QACJ1C,SAAS,EAAER,eAAe;QAC1BqD,QAAQ,EAAEP,SAAS;QACnBxC,SAAS,EAAE,IAAI;QACf0C,WAAW;QACXM,KAAK,EAAE1C,IAAI,CAAC0C,KAAK,IAAIF,eAAe;QACpCG,SAAS,EAAEZ,gBAAgB,CAAC/B,IAAI,CAACgC,MAAM,CAAC;QACxCY,KAAK,EAAE5C,IAAI,CAAC4C,KAAK,IAAI,IAAI;QACzB5C;MACJ,CAAC,CAAC;IACN,CAAC;IAED,IAAI6C,KAAsB;IAE1B,IAAIhB,cAAc,EAAE;MAChB;MACAgB,KAAK,GAAGlB,cAAc,CAACnC,GAAG,CAAEsD,KAAK,IAAoB;QACjD;QACA;QACA;QACA,MAAMC,WAA8B,GAAGD,KAAK,CAAC9C,IAAI,IAAI;UACjDC,EAAE,EAAE,EAAE;UACN+C,QAAQ,EAAE;QACd,CAAC;QACD,MAAMZ,WAAW,GAAG,IAAAC,2BAAqB,EAACU,WAAW,EAAExC,MAAM,CAAC;QAC9D,MAAM+B,MAAM,GAAG,IAAAC,8BAAwB,EAACQ,WAAW,CAAC;QACpD,MAAML,KAAK,GAAGI,KAAK,CAAC9C,IAAI,EAAE0C,KAAK,IAAI,IAAI;QACvC,MAAMF,eAAe,GAAGF,MAAM,GAAG,IAAIA,MAAM,EAAE,GAAG,IAAI;QACpD,OAAO;UACH1C,SAAS,EAAEkD,KAAK,CAAClD,SAAS;UAC1B6C,QAAQ,EAAEK,KAAK,CAACL,QAAQ;UACxB;UACA;UACA/C,SAAS,EAAE,KAAK;UAChB0C,WAAW;UACX;UACA;UACAM,KAAK,EAAEA,KAAK,IAAIF,eAAe;UAC/BG,SAAS,EAAEZ,gBAAgB,CAACe,KAAK,CAAC9C,IAAI,EAAEgC,MAAM,CAAC;UAC/CY,KAAK,EAAEE,KAAK,CAAC9C,IAAI,EAAE4C,KAAK,IAAI,IAAI;UAChC5C,IAAI,EAAE+C;QACV,CAAC;MACL,CAAC,CAAC;IACN,CAAC,MAAM;MACH;MACA;MACA;MACA;MACAF,KAAK,GAAG,CAACxC,QAAQ,IAAI,EAAE,EAAEb,GAAG,CAAEyD,OAAsB,IAAoB;QACpE,MAAMvD,SAAS,GAAGuD,OAAO,CAACrD,SAAS,KAAKR,eAAe;QACvD,MAAM2D,WAA8B,GAAGrD,SAAS,IAAIM,IAAI,GAClDA,IAAI,GACJ;UAAEC,EAAE,EAAEgD,OAAO,CAACC,MAAM,IAAI,EAAE;UAAEF,QAAQ,EAAE;QAAG,CAAC;QAChD,MAAMZ,WAAW,GAAG,IAAAC,2BAAqB,EAACU,WAAW,EAAExC,MAAM,CAAC;QAC9D,MAAM+B,MAAM,GAAG,IAAAC,8BAAwB,EAACQ,WAAW,CAAC;QACpD,MAAML,KAAK,GAAGhD,SAAS,IAAIM,IAAI,EAAE0C,KAAK,GAAG1C,IAAI,CAAC0C,KAAK,GAAG,IAAI;QAC1D,MAAMF,eAAe,GAAGF,MAAM,GAAG,IAAIA,MAAM,EAAE,GAAG,IAAI;QACpD,MAAMN,MAAM,GAAGtC,SAAS,IAAIM,IAAI,GAAGA,IAAI,CAACgC,MAAM,GAAGE,SAAS;QAC1D,MAAMU,KAAK,GAAGlD,SAAS,IAAIM,IAAI,EAAE4C,KAAK,GAAG5C,IAAI,CAAC4C,KAAK,GAAG,IAAI;QAC1D,OAAO;UACHhD,SAAS,EAAEqD,OAAO,CAACrD,SAAS;UAC5B6C,QAAQ,EAAEQ,OAAO,CAACR,QAAQ;UAC1B/C,SAAS;UACT0C,WAAW;UACXM,KAAK,EAAEA,KAAK,IAAIF,eAAe;UAC/BG,SAAS,EAAEZ,gBAAgB,CAACC,MAAM,CAAC;UACnCY,KAAK;UACL5C,IAAI,EAAE+C;QACV,CAAC;MACL,CAAC,CAAC;IACN;;IAEA;IACA;IACA;IACA,MAAMI,OAAO,GAAGjE,kBAAkB,CAC9B2D,KAAK,EACLzD,eAAe,EACfY,IAAI,EAAEC,EAAE,IAAI,IAAI,EAChBX,eACJ,CAAC;;IAED;IACA;IACA;IACA,IAAI6D,OAAO,CAACjD,MAAM,KAAK,CAAC,EAAE;MACtB,OAAOiC,WAAW,CAAC,CAAC;IACxB;IACA,OAAOgB,OAAO;EAClB,CAAC,EAAE,CACCtB,cAAc,EACdF,cAAc,EACdtB,QAAQ,EACRjB,eAAe,EACfY,IAAI,EACJV,eAAe,EACfiB,MAAM,EACNH,WAAW,CACd,CAAC;EAEF,OAAO;IACHjB,QAAQ;IACR;IACA;IACA;IACAiE,SAAS,EAAE9D,eAAe,IAAIqB,KAAK,CAACyC,SAAS;IAC7CC,gBAAgB,EAAEjE,eAAe,IAAI,IAAI;IACzCyC;EACJ,CAAC;AACL","ignoreList":[]}

package/lib/commonjs/ui/hooks/useFollow.js

@@ -7,6 +7,7 @@ exports.useFollowerCounts = exports.useFollowForButton = exports.useFollow = voi
 var _react = require("react");
 var _followStore = require("../stores/followStore.js");
 var _OxyContext = require("../context/OxyContext.js");
+var _core = require("@oxyhq/core");
 var _shallow = require("zustand/react/shallow");
 /**
  * useFollow — Hook for follow state management.
@@ -23,8 +24,12 @@ var _shallow = require("zustand/react/shallow");
  */
 const useFollow = userId => {
   const {
-    oxyServices
+    oxyServices,
+    isAuthenticated,
+    isAuthResolved,
+    isTokenReady
   } = (0, _OxyContext.useOxy)();
+  const canUsePrivateApi = isAuthResolved && isTokenReady && isAuthenticated;
   const userIds = (0, _react.useMemo)(() => Array.isArray(userId) ? userId : userId ? [userId] : [], [userId]);
   const isSingleUser = typeof userId === 'string';
 
@@ -70,17 +75,19 @@ const useFollow = userId => {
   // Store actions are accessed via getState() to avoid subscribing to them.
   const toggleFollow = (0, _react.useCallback)(async () => {
     if (!isSingleUser || !userId) throw new Error('toggleFollow is only available for single user mode');
+    if (!canUsePrivateApi) throw new Error('Authentication is required to follow users');
     const currentlyFollowing = _followStore.useFollowStore.getState().followingUsers[userId] ?? false;
     await _followStore.useFollowStore.getState().toggleFollowUser(userId, oxyServices, currentlyFollowing);
-  }, [isSingleUser, userId, oxyServices]);
+  }, [isSingleUser, userId, canUsePrivateApi, oxyServices]);
   const setFollowStatus = (0, _react.useCallback)(following => {
     if (!isSingleUser || !userId) throw new Error('setFollowStatus is only available for single user mode');
     _followStore.useFollowStore.getState().setFollowingStatus(userId, following);
   }, [isSingleUser, userId]);
   const fetchStatus = (0, _react.useCallback)(async () => {
     if (!isSingleUser || !userId) throw new Error('fetchStatus is only available for single user mode');
+    if (!canUsePrivateApi) return;
     await _followStore.useFollowStore.getState().fetchFollowStatus(userId, oxyServices);
-  }, [isSingleUser, userId, oxyServices]);
+  }, [isSingleUser, userId, canUsePrivateApi, oxyServices]);
   const clearError = (0, _react.useCallback)(() => {
     if (!isSingleUser || !userId) throw new Error('clearError is only available for single user mode');
     _followStore.useFollowStore.getState().clearFollowError(userId);
@@ -102,25 +109,32 @@ const useFollow = userId => {
   (0, _react.useEffect)(() => {
     if (!isSingleUser || !userId) return;
     if ((followerCount === null || followingCount === null) && !isLoadingCounts) {
-      fetchUserCounts().catch(err => console.warn('useFollow: fetchUserCounts failed', err));
+      fetchUserCounts().catch(error => {
+        _core.logger.warn('useFollow: fetchUserCounts failed', {
+          component: 'useFollow'
+        }, error);
+      });
     }
   }, [isSingleUser, userId, followerCount, followingCount, isLoadingCounts, fetchUserCounts]);
 
   // Multi-user callbacks
   const toggleFollowForUser = (0, _react.useCallback)(async targetUserId => {
+    if (!canUsePrivateApi) throw new Error('Authentication is required to follow users');
     const currentState = _followStore.useFollowStore.getState().followingUsers[targetUserId] ?? false;
     await _followStore.useFollowStore.getState().toggleFollowUser(targetUserId, oxyServices, currentState);
-  }, [oxyServices]);
+  }, [canUsePrivateApi, oxyServices]);
   const setFollowStatusForUser = (0, _react.useCallback)((targetUserId, following) => {
     _followStore.useFollowStore.getState().setFollowingStatus(targetUserId, following);
   }, []);
   const fetchStatusForUser = (0, _react.useCallback)(async targetUserId => {
+    if (!canUsePrivateApi) return;
     await _followStore.useFollowStore.getState().fetchFollowStatus(targetUserId, oxyServices);
-  }, [oxyServices]);
+  }, [canUsePrivateApi, oxyServices]);
   const fetchAllStatuses = (0, _react.useCallback)(async () => {
+    if (!canUsePrivateApi) return;
     const store = _followStore.useFollowStore.getState();
     await Promise.all(userIds.map(uid => store.fetchFollowStatus(uid, oxyServices)));
-  }, [userIds, oxyServices]);
+  }, [canUsePrivateApi, userIds, oxyServices]);
   const clearErrorForUser = (0, _react.useCallback)(targetUserId => {
     _followStore.useFollowStore.getState().clearFollowError(targetUserId);
   }, []);

package/lib/commonjs/ui/hooks/useFollow.js.map

@@ -1 +1 @@
-{"version":3,"names":["_react","require","_followStore","_OxyContext","_shallow","useFollow","userId","oxyServices","useOxy","userIds","useMemo","Array","isArray","isSingleUser","isFollowing","useFollowStore","useCallback","s","followingUsers","isLoading","loadingUsers","error","errors","followerCount","followerCounts","followingCount","followingCounts","isLoadingCounts","loadingCounts","followData","useShallow","data","uid","multiUserLoadingState","isAnyLoading","hasAnyError","allFollowing","allNotFollowing","some","every","toggleFollow","Error","currentlyFollowing","getState","toggleFollowUser","setFollowStatus","following","setFollowingStatus","fetchStatus","fetchFollowStatus","clearError","clearFollowError","fetchUserCounts","setFollowerCount","count","setFollowingCount","useEffect","catch","err","console","warn","toggleFollowForUser","targetUserId","currentState","setFollowStatusForUser","fetchStatusForUser","fetchAllStatuses","store","Promise","all","map","clearErrorForUser","updateCountsFromFollowAction","action","counts","currentUserId","getCurrentUserId","undefined","exports","useFollowForButton","useFollowerCounts"],"sourceRoot":"../../../../src","sources":["ui/hooks/useFollow.ts"],"mappings":";;;;;;AAAA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,YAAA,GAAAD,OAAA;AACA,IAAAE,WAAA,GAAAF,OAAA;AAEA,IAAAG,QAAA,GAAAH,OAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMI,SAAS,GAAIC,MAA0B,IAAK;EACvD,MAAM;IAAEC;EAAY,CAAC,GAAG,IAAAC,kBAAM,EAAC,CAAC;EAChC,MAAMC,OAAO,GAAG,IAAAC,cAAO,EAAC,MAAOC,KAAK,CAACC,OAAO,CAACN,MAAM,CAAC,GAAGA,MAAM,GAAGA,MAAM,GAAG,CAACA,MAAM,CAAC,GAAG,EAAG,EAAE,CAACA,MAAM,CAAC,CAAC;EAClG,MAAMO,YAAY,GAAG,OAAOP,MAAM,KAAK,QAAQ;;EAE/C;EACA,MAAMQ,WAAW,GAAG,IAAAC,2BAAc,EAChC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIP,MAAM,GAAGW,CAAC,CAACC,cAAc,CAACZ,MAAM,CAAC,IAAI,KAAK,GAAG,KAAM,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CACjH,CAAC;EACD,MAAMa,SAAS,GAAG,IAAAJ,2BAAc,EAC9B,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIP,MAAM,GAAGW,CAAC,CAACG,YAAY,CAACd,MAAM,CAAC,IAAI,KAAK,GAAG,KAAM,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CAC/G,CAAC;EACD,MAAMe,KAAK,GAAG,IAAAN,2BAAc,EAC1B,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIP,MAAM,GAAGW,CAAC,CAACK,MAAM,CAAChB,MAAM,CAAC,IAAI,IAAI,GAAG,IAAK,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CACvG,CAAC;EACD,MAAMiB,aAAa,GAAG,IAAAR,2BAAc,EAClC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIP,MAAM,GAAGW,CAAC,CAACO,cAAc,CAAClB,MAAM,CAAC,IAAI,IAAI,GAAG,IAAK,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CAC/G,CAAC;EACD,MAAMmB,cAAc,GAAG,IAAAV,2BAAc,EACnC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIP,MAAM,GAAGW,CAAC,CAACS,eAAe,CAACpB,MAAM,CAAC,IAAI,IAAI,GAAG,IAAK,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CAChH,CAAC;EACD,MAAMqB,eAAe,GAAG,IAAAZ,2BAAc,EACpC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIP,MAAM,GAAGW,CAAC,CAACW,aAAa,CAACtB,MAAM,CAAC,IAAI,KAAK,GAAG,KAAM,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CAChH,CAAC;;EAED;EACA,MAAMuB,UAAU,GAAG,IAAAd,2BAAc,EAC/B,IAAAe,mBAAU,EAAEb,CAAC,IAAK;IAChB,IAAIJ,YAAY,EAAE,OAAO,CAAC,CAAC;IAC3B,MAAMkB,IAAwF,GAAG,CAAC,CAAC;IACnG,KAAK,MAAMC,GAAG,IAAIvB,OAAO,EAAE;MACzBsB,IAAI,CAACC,GAAG,CAAC,GAAG;QACVlB,WAAW,EAAEG,CAAC,CAACC,cAAc,CAACc,GAAG,CAAC,IAAI,KAAK;QAC3Cb,SAAS,EAAEF,CAAC,CAACG,YAAY,CAACY,GAAG,CAAC,IAAI,KAAK;QACvCX,KAAK,EAAEJ,CAAC,CAACK,MAAM,CAACU,GAAG,CAAC,IAAI;MAC1B,CAAC;IACH;IACA,OAAOD,IAAI;EACb,CAAC,CACH,CAAC;;EAED;EACA,MAAME,qBAAqB,GAAG,IAAAlB,2BAAc,EAC1C,IAAAe,mBAAU,EAAEb,CAAC,IAAK;IAChB,IAAIJ,YAAY,EAAE,OAAO;MAAEqB,YAAY,EAAE,KAAK;MAAEC,WAAW,EAAE,KAAK;MAAEC,YAAY,EAAE,IAAI;MAAEC,eAAe,EAAE;IAAK,CAAC;IAC/G,OAAO;MACLH,YAAY,EAAEzB,OAAO,CAAC6B,IAAI,CAACN,GAAG,IAAIf,CAAC,CAACG,YAAY,CAACY,GAAG,CAAC,CAAC;MACtDG,WAAW,EAAE1B,OAAO,CAAC6B,IAAI,CAACN,GAAG,IAAI,CAAC,CAACf,CAAC,CAACK,MAAM,CAACU,GAAG,CAAC,CAAC;MACjDI,YAAY,EAAE3B,OAAO,CAAC8B,KAAK,CAACP,GAAG,IAAIf,CAAC,CAACC,cAAc,CAACc,GAAG,CAAC,CAAC;MACzDK,eAAe,EAAE5B,OAAO,CAAC8B,KAAK,CAACP,GAAG,IAAI,CAACf,CAAC,CAACC,cAAc,CAACc,GAAG,CAAC;IAC9D,CAAC;EACH,CAAC,CACH,CAAC;;EAED;EACA;EACA,MAAMQ,YAAY,GAAG,IAAAxB,kBAAW,EAAC,YAAY;IAC3C,IAAI,CAACH,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,qDAAqD,CAAC;IACpG,MAAMC,kBAAkB,GAAG3B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACzB,cAAc,CAACZ,MAAM,CAAC,IAAI,KAAK;IACpF,MAAMS,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACC,gBAAgB,CAACtC,MAAM,EAAEC,WAAW,EAAEmC,kBAAkB,CAAC;EAC3F,CAAC,EAAE,CAAC7B,YAAY,EAAEP,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEvC,MAAMsC,eAAe,GAAG,IAAA7B,kBAAW,EAAE8B,SAAkB,IAAK;IAC1D,IAAI,CAACjC,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,wDAAwD,CAAC;IACvG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACI,kBAAkB,CAACzC,MAAM,EAAEwC,SAAS,CAAC;EACjE,CAAC,EAAE,CAACjC,YAAY,EAAEP,MAAM,CAAC,CAAC;EAE1B,MAAM0C,WAAW,GAAG,IAAAhC,kBAAW,EAAC,YAAY;IAC1C,IAAI,CAACH,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,oDAAoD,CAAC;IACnG,MAAM1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACM,iBAAiB,CAAC3C,MAAM,EAAEC,WAAW,CAAC;EACxE,CAAC,EAAE,CAACM,YAAY,EAAEP,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEvC,MAAM2C,UAAU,GAAG,IAAAlC,kBAAW,EAAC,MAAM;IACnC,IAAI,CAACH,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,mDAAmD,CAAC;IAClG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACQ,gBAAgB,CAAC7C,MAAM,CAAC;EACpD,CAAC,EAAE,CAACO,YAAY,EAAEP,MAAM,CAAC,CAAC;EAE1B,MAAM8C,eAAe,GAAG,IAAApC,kBAAW,EAAC,YAAY;IAC9C,IAAI,CAACH,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,wDAAwD,CAAC;IACvG,MAAM1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACS,eAAe,CAAC9C,MAAM,EAAEC,WAAW,CAAC;EACtE,CAAC,EAAE,CAACM,YAAY,EAAEP,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEvC,MAAM8C,gBAAgB,GAAG,IAAArC,kBAAW,EAAEsC,KAAa,IAAK;IACtD,IAAI,CAACzC,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,yDAAyD,CAAC;IACxG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACU,gBAAgB,CAAC/C,MAAM,EAAEgD,KAAK,CAAC;EAC3D,CAAC,EAAE,CAACzC,YAAY,EAAEP,MAAM,CAAC,CAAC;EAE1B,MAAMiD,iBAAiB,GAAG,IAAAvC,kBAAW,EAAEsC,KAAa,IAAK;IACvD,IAAI,CAACzC,YAAY,IAAI,CAACP,MAAM,EAAE,MAAM,IAAImC,KAAK,CAAC,0DAA0D,CAAC;IACzG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACY,iBAAiB,CAACjD,MAAM,EAAEgD,KAAK,CAAC;EAC5D,CAAC,EAAE,CAACzC,YAAY,EAAEP,MAAM,CAAC,CAAC;;EAE1B;EACA,IAAAkD,gBAAS,EAAC,MAAM;IACd,IAAI,CAAC3C,YAAY,IAAI,CAACP,MAAM,EAAE;IAE9B,IAAI,CAACiB,aAAa,KAAK,IAAI,IAAIE,cAAc,KAAK,IAAI,KAAK,CAACE,eAAe,EAAE;MAC3EyB,eAAe,CAAC,CAAC,CAACK,KAAK,CAAEC,GAAY,IAAKC,OAAO,CAACC,IAAI,CAAC,mCAAmC,EAAEF,GAAG,CAAC,CAAC;IACnG;EACF,CAAC,EAAE,CAAC7C,YAAY,EAAEP,MAAM,EAAEiB,aAAa,EAAEE,cAAc,EAAEE,eAAe,EAAEyB,eAAe,CAAC,CAAC;;EAE3F;EACA,MAAMS,mBAAmB,GAAG,IAAA7C,kBAAW,EAAC,MAAO8C,YAAoB,IAAK;IACtE,MAAMC,YAAY,GAAGhD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACzB,cAAc,CAAC4C,YAAY,CAAC,IAAI,KAAK;IACpF,MAAM/C,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACC,gBAAgB,CAACkB,YAAY,EAAEvD,WAAW,EAAEwD,YAAY,CAAC;EAC3F,CAAC,EAAE,CAACxD,WAAW,CAAC,CAAC;EAEjB,MAAMyD,sBAAsB,GAAG,IAAAhD,kBAAW,EAAC,CAAC8C,YAAoB,EAAEhB,SAAkB,KAAK;IACvF/B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACI,kBAAkB,CAACe,YAAY,EAAEhB,SAAS,CAAC;EACvE,CAAC,EAAE,EAAE,CAAC;EAEN,MAAMmB,kBAAkB,GAAG,IAAAjD,kBAAW,EAAC,MAAO8C,YAAoB,IAAK;IACrE,MAAM/C,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACM,iBAAiB,CAACa,YAAY,EAAEvD,WAAW,CAAC;EAC9E,CAAC,EAAE,CAACA,WAAW,CAAC,CAAC;EAEjB,MAAM2D,gBAAgB,GAAG,IAAAlD,kBAAW,EAAC,YAAY;IAC/C,MAAMmD,KAAK,GAAGpD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC;IACvC,MAAMyB,OAAO,CAACC,GAAG,CAAC5D,OAAO,CAAC6D,GAAG,CAACtC,GAAG,IAAImC,KAAK,CAAClB,iBAAiB,CAACjB,GAAG,EAAEzB,WAAW,CAAC,CAAC,CAAC;EAClF,CAAC,EAAE,CAACE,OAAO,EAAEF,WAAW,CAAC,CAAC;EAE1B,MAAMgE,iBAAiB,GAAG,IAAAvD,kBAAW,EAAE8C,YAAoB,IAAK;IAC9D/C,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACQ,gBAAgB,CAACW,YAAY,CAAC;EAC1D,CAAC,EAAE,EAAE,CAAC;EAEN,MAAMU,4BAA4B,GAAG,IAAAxD,kBAAW,EAAC,CAAC8C,YAAoB,EAAEW,MAA6B,EAAEC,MAAgD,KAAK;IAC1J,MAAMC,aAAa,GAAGpE,WAAW,CAACqE,gBAAgB,CAAC,CAAC,IAAIC,SAAS;IACjE9D,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAAC6B,4BAA4B,CAACV,YAAY,EAAEW,MAAM,EAAEC,MAAM,EAAEC,aAAa,CAAC;EACrG,CAAC,EAAE,CAACpE,WAAW,CAAC,CAAC;EAEjB,IAAIM,YAAY,IAAIP,MAAM,EAAE;IAC1B,OAAO;MACLQ,WAAW;MACXK,SAAS;MACTE,KAAK;MACLmB,YAAY;MACZK,eAAe;MACfG,WAAW;MACXE,UAAU;MACV3B,aAAa;MACbE,cAAc;MACdE,eAAe;MACfyB,eAAe;MACfC,gBAAgB;MAChBE;IACF,CAAC;EACH;EAEA,OAAO;IACL1B,UAAU;IACVgC,mBAAmB;IACnBG,sBAAsB;IACtBC,kBAAkB;IAClBC,gBAAgB;IAChBK,iBAAiB;IACjBrC,YAAY,EAAED,qBAAqB,CAACC,YAAY;IAChDC,WAAW,EAAEF,qBAAqB,CAACE,WAAW;IAC9CC,YAAY,EAAEH,qBAAqB,CAACG,YAAY;IAChDC,eAAe,EAAEJ,qBAAqB,CAACI;EACzC,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAPAyC,OAAA,CAAAzE,SAAA,GAAAA,SAAA;AAQO,MAAM0E,kBAAkB,GAAGA,CAACzE,MAAc,EAAEC,WAAwB,KAAK;EAC9E,MAAMO,WAAW,GAAG,IAAAC,2BAAc,EAChC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACC,cAAc,CAACZ,MAAM,CAAC,IAAI,KAAK,EAAE,CAACA,MAAM,CAAC,CAChE,CAAC;EACD,MAAMa,SAAS,GAAG,IAAAJ,2BAAc,EAC9B,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACG,YAAY,CAACd,MAAM,CAAC,IAAI,KAAK,EAAE,CAACA,MAAM,CAAC,CAC9D,CAAC;EACD,MAAMe,KAAK,GAAG,IAAAN,2BAAc,EAC1B,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACK,MAAM,CAAChB,MAAM,CAAC,IAAI,IAAI,EAAE,CAACA,MAAM,CAAC,CACvD,CAAC;EAED,MAAMkC,YAAY,GAAG,IAAAxB,kBAAW,EAAC,YAAY;IAC3C,MAAM0B,kBAAkB,GAAG3B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACzB,cAAc,CAACZ,MAAM,CAAC,IAAI,KAAK;IACpF,MAAMS,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACC,gBAAgB,CAACtC,MAAM,EAAEC,WAAW,EAAEmC,kBAAkB,CAAC;EAC3F,CAAC,EAAE,CAACpC,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEzB,MAAMyC,WAAW,GAAG,IAAAhC,kBAAW,EAAC,YAAY;IAC1C,MAAMD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACM,iBAAiB,CAAC3C,MAAM,EAAEC,WAAW,CAAC;EACxE,CAAC,EAAE,CAACD,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEzB,MAAMsC,eAAe,GAAG,IAAA7B,kBAAW,EAAE8B,SAAkB,IAAK;IAC1D/B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACI,kBAAkB,CAACzC,MAAM,EAAEwC,SAAS,CAAC;EACjE,CAAC,EAAE,CAACxC,MAAM,CAAC,CAAC;EAEZ,MAAM4C,UAAU,GAAG,IAAAlC,kBAAW,EAAC,MAAM;IACnCD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACQ,gBAAgB,CAAC7C,MAAM,CAAC;EACpD,CAAC,EAAE,CAACA,MAAM,CAAC,CAAC;EAEZ,OAAO;IACLQ,WAAW;IACXK,SAAS;IACTE,KAAK;IACLmB,YAAY;IACZQ,WAAW;IACXH,eAAe;IACfK;EACF,CAAC;AACH,CAAC;;AAED;AAAA4B,OAAA,CAAAC,kBAAA,GAAAA,kBAAA;AACO,MAAMC,iBAAiB,GAAI1E,MAAc,IAAK;EACnD,MAAM;IAAEC;EAAY,CAAC,GAAG,IAAAC,kBAAM,EAAC,CAAC;EAEhC,MAAMe,aAAa,GAAG,IAAAR,2BAAc,EAClC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACO,cAAc,CAAClB,MAAM,CAAC,IAAI,IAAI,EAAE,CAACA,MAAM,CAAC,CAC/D,CAAC;EACD,MAAMmB,cAAc,GAAG,IAAAV,2BAAc,EACnC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACS,eAAe,CAACpB,MAAM,CAAC,IAAI,IAAI,EAAE,CAACA,MAAM,CAAC,CAChE,CAAC;EACD,MAAMqB,eAAe,GAAG,IAAAZ,2BAAc,EACpC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACW,aAAa,CAACtB,MAAM,CAAC,IAAI,KAAK,EAAE,CAACA,MAAM,CAAC,CAC/D,CAAC;EAED,MAAM8C,eAAe,GAAG,IAAApC,kBAAW,EAAC,YAAY;IAC9C,MAAMD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACS,eAAe,CAAC9C,MAAM,EAAEC,WAAW,CAAC;EACtE,CAAC,EAAE,CAACD,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEzB,MAAM8C,gBAAgB,GAAG,IAAArC,kBAAW,EAAEsC,KAAa,IAAK;IACtDvC,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACU,gBAAgB,CAAC/C,MAAM,EAAEgD,KAAK,CAAC;EAC3D,CAAC,EAAE,CAAChD,MAAM,CAAC,CAAC;EAEZ,MAAMiD,iBAAiB,GAAG,IAAAvC,kBAAW,EAAEsC,KAAa,IAAK;IACvDvC,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACY,iBAAiB,CAACjD,MAAM,EAAEgD,KAAK,CAAC;EAC5D,CAAC,EAAE,CAAChD,MAAM,CAAC,CAAC;EAEZ,OAAO;IACLiB,aAAa;IACbE,cAAc;IACdE,eAAe;IACfyB,eAAe;IACfC,gBAAgB;IAChBE;EACF,CAAC;AACH,CAAC;AAACuB,OAAA,CAAAE,iBAAA,GAAAA,iBAAA","ignoreList":[]}
+{"version":3,"names":["_react","require","_followStore","_OxyContext","_core","_shallow","useFollow","userId","oxyServices","isAuthenticated","isAuthResolved","isTokenReady","useOxy","canUsePrivateApi","userIds","useMemo","Array","isArray","isSingleUser","isFollowing","useFollowStore","useCallback","s","followingUsers","isLoading","loadingUsers","error","errors","followerCount","followerCounts","followingCount","followingCounts","isLoadingCounts","loadingCounts","followData","useShallow","data","uid","multiUserLoadingState","isAnyLoading","hasAnyError","allFollowing","allNotFollowing","some","every","toggleFollow","Error","currentlyFollowing","getState","toggleFollowUser","setFollowStatus","following","setFollowingStatus","fetchStatus","fetchFollowStatus","clearError","clearFollowError","fetchUserCounts","setFollowerCount","count","setFollowingCount","useEffect","catch","loggerUtil","warn","component","toggleFollowForUser","targetUserId","currentState","setFollowStatusForUser","fetchStatusForUser","fetchAllStatuses","store","Promise","all","map","clearErrorForUser","updateCountsFromFollowAction","action","counts","currentUserId","getCurrentUserId","undefined","exports","useFollowForButton","useFollowerCounts"],"sourceRoot":"../../../../src","sources":["ui/hooks/useFollow.ts"],"mappings":";;;;;;AAAA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,YAAA,GAAAD,OAAA;AACA,IAAAE,WAAA,GAAAF,OAAA;AACA,IAAAG,KAAA,GAAAH,OAAA;AACA,IAAAI,QAAA,GAAAJ,OAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMK,SAAS,GAAIC,MAA0B,IAAK;EACvD,MAAM;IAAEC,WAAW;IAAEC,eAAe;IAAEC,cAAc;IAAEC;EAAa,CAAC,GAAG,IAAAC,kBAAM,EAAC,CAAC;EAC/E,MAAMC,gBAAgB,GAAGH,cAAc,IAAIC,YAAY,IAAIF,eAAe;EAC1E,MAAMK,OAAO,GAAG,IAAAC,cAAO,EAAC,MAAOC,KAAK,CAACC,OAAO,CAACV,MAAM,CAAC,GAAGA,MAAM,GAAGA,MAAM,GAAG,CAACA,MAAM,CAAC,GAAG,EAAG,EAAE,CAACA,MAAM,CAAC,CAAC;EAClG,MAAMW,YAAY,GAAG,OAAOX,MAAM,KAAK,QAAQ;;EAE/C;EACA,MAAMY,WAAW,GAAG,IAAAC,2BAAc,EAChC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIX,MAAM,GAAGe,CAAC,CAACC,cAAc,CAAChB,MAAM,CAAC,IAAI,KAAK,GAAG,KAAM,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CACjH,CAAC;EACD,MAAMiB,SAAS,GAAG,IAAAJ,2BAAc,EAC9B,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIX,MAAM,GAAGe,CAAC,CAACG,YAAY,CAAClB,MAAM,CAAC,IAAI,KAAK,GAAG,KAAM,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CAC/G,CAAC;EACD,MAAMmB,KAAK,GAAG,IAAAN,2BAAc,EAC1B,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIX,MAAM,GAAGe,CAAC,CAACK,MAAM,CAACpB,MAAM,CAAC,IAAI,IAAI,GAAG,IAAK,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CACvG,CAAC;EACD,MAAMqB,aAAa,GAAG,IAAAR,2BAAc,EAClC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIX,MAAM,GAAGe,CAAC,CAACO,cAAc,CAACtB,MAAM,CAAC,IAAI,IAAI,GAAG,IAAK,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CAC/G,CAAC;EACD,MAAMuB,cAAc,GAAG,IAAAV,2BAAc,EACnC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIX,MAAM,GAAGe,CAAC,CAACS,eAAe,CAACxB,MAAM,CAAC,IAAI,IAAI,GAAG,IAAK,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CAChH,CAAC;EACD,MAAMyB,eAAe,GAAG,IAAAZ,2BAAc,EACpC,IAAAC,kBAAW,EAAEC,CAAC,IAAMJ,YAAY,IAAIX,MAAM,GAAGe,CAAC,CAACW,aAAa,CAAC1B,MAAM,CAAC,IAAI,KAAK,GAAG,KAAM,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CAChH,CAAC;;EAED;EACA,MAAM2B,UAAU,GAAG,IAAAd,2BAAc,EAC/B,IAAAe,mBAAU,EAAEb,CAAC,IAAK;IAChB,IAAIJ,YAAY,EAAE,OAAO,CAAC,CAAC;IAC3B,MAAMkB,IAAwF,GAAG,CAAC,CAAC;IACnG,KAAK,MAAMC,GAAG,IAAIvB,OAAO,EAAE;MACzBsB,IAAI,CAACC,GAAG,CAAC,GAAG;QACVlB,WAAW,EAAEG,CAAC,CAACC,cAAc,CAACc,GAAG,CAAC,IAAI,KAAK;QAC3Cb,SAAS,EAAEF,CAAC,CAACG,YAAY,CAACY,GAAG,CAAC,IAAI,KAAK;QACvCX,KAAK,EAAEJ,CAAC,CAACK,MAAM,CAACU,GAAG,CAAC,IAAI;MAC1B,CAAC;IACH;IACA,OAAOD,IAAI;EACb,CAAC,CACH,CAAC;;EAED;EACA,MAAME,qBAAqB,GAAG,IAAAlB,2BAAc,EAC1C,IAAAe,mBAAU,EAAEb,CAAC,IAAK;IAChB,IAAIJ,YAAY,EAAE,OAAO;MAAEqB,YAAY,EAAE,KAAK;MAAEC,WAAW,EAAE,KAAK;MAAEC,YAAY,EAAE,IAAI;MAAEC,eAAe,EAAE;IAAK,CAAC;IAC/G,OAAO;MACLH,YAAY,EAAEzB,OAAO,CAAC6B,IAAI,CAACN,GAAG,IAAIf,CAAC,CAACG,YAAY,CAACY,GAAG,CAAC,CAAC;MACtDG,WAAW,EAAE1B,OAAO,CAAC6B,IAAI,CAACN,GAAG,IAAI,CAAC,CAACf,CAAC,CAACK,MAAM,CAACU,GAAG,CAAC,CAAC;MACjDI,YAAY,EAAE3B,OAAO,CAAC8B,KAAK,CAACP,GAAG,IAAIf,CAAC,CAACC,cAAc,CAACc,GAAG,CAAC,CAAC;MACzDK,eAAe,EAAE5B,OAAO,CAAC8B,KAAK,CAACP,GAAG,IAAI,CAACf,CAAC,CAACC,cAAc,CAACc,GAAG,CAAC;IAC9D,CAAC;EACH,CAAC,CACH,CAAC;;EAED;EACA;EACA,MAAMQ,YAAY,GAAG,IAAAxB,kBAAW,EAAC,YAAY;IAC3C,IAAI,CAACH,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,qDAAqD,CAAC;IACpG,IAAI,CAACjC,gBAAgB,EAAE,MAAM,IAAIiC,KAAK,CAAC,4CAA4C,CAAC;IACpF,MAAMC,kBAAkB,GAAG3B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACzB,cAAc,CAAChB,MAAM,CAAC,IAAI,KAAK;IACpF,MAAMa,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACC,gBAAgB,CAAC1C,MAAM,EAAEC,WAAW,EAAEuC,kBAAkB,CAAC;EAC3F,CAAC,EAAE,CAAC7B,YAAY,EAAEX,MAAM,EAAEM,gBAAgB,EAAEL,WAAW,CAAC,CAAC;EAEzD,MAAM0C,eAAe,GAAG,IAAA7B,kBAAW,EAAE8B,SAAkB,IAAK;IAC1D,IAAI,CAACjC,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,wDAAwD,CAAC;IACvG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACI,kBAAkB,CAAC7C,MAAM,EAAE4C,SAAS,CAAC;EACjE,CAAC,EAAE,CAACjC,YAAY,EAAEX,MAAM,CAAC,CAAC;EAE1B,MAAM8C,WAAW,GAAG,IAAAhC,kBAAW,EAAC,YAAY;IAC1C,IAAI,CAACH,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,oDAAoD,CAAC;IACnG,IAAI,CAACjC,gBAAgB,EAAE;IACvB,MAAMO,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACM,iBAAiB,CAAC/C,MAAM,EAAEC,WAAW,CAAC;EACxE,CAAC,EAAE,CAACU,YAAY,EAAEX,MAAM,EAAEM,gBAAgB,EAAEL,WAAW,CAAC,CAAC;EAEzD,MAAM+C,UAAU,GAAG,IAAAlC,kBAAW,EAAC,MAAM;IACnC,IAAI,CAACH,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,mDAAmD,CAAC;IAClG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACQ,gBAAgB,CAACjD,MAAM,CAAC;EACpD,CAAC,EAAE,CAACW,YAAY,EAAEX,MAAM,CAAC,CAAC;EAE1B,MAAMkD,eAAe,GAAG,IAAApC,kBAAW,EAAC,YAAY;IAC9C,IAAI,CAACH,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,wDAAwD,CAAC;IACvG,MAAM1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACS,eAAe,CAAClD,MAAM,EAAEC,WAAW,CAAC;EACtE,CAAC,EAAE,CAACU,YAAY,EAAEX,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEvC,MAAMkD,gBAAgB,GAAG,IAAArC,kBAAW,EAAEsC,KAAa,IAAK;IACtD,IAAI,CAACzC,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,yDAAyD,CAAC;IACxG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACU,gBAAgB,CAACnD,MAAM,EAAEoD,KAAK,CAAC;EAC3D,CAAC,EAAE,CAACzC,YAAY,EAAEX,MAAM,CAAC,CAAC;EAE1B,MAAMqD,iBAAiB,GAAG,IAAAvC,kBAAW,EAAEsC,KAAa,IAAK;IACvD,IAAI,CAACzC,YAAY,IAAI,CAACX,MAAM,EAAE,MAAM,IAAIuC,KAAK,CAAC,0DAA0D,CAAC;IACzG1B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACY,iBAAiB,CAACrD,MAAM,EAAEoD,KAAK,CAAC;EAC5D,CAAC,EAAE,CAACzC,YAAY,EAAEX,MAAM,CAAC,CAAC;;EAE1B;EACA,IAAAsD,gBAAS,EAAC,MAAM;IACd,IAAI,CAAC3C,YAAY,IAAI,CAACX,MAAM,EAAE;IAE9B,IAAI,CAACqB,aAAa,KAAK,IAAI,IAAIE,cAAc,KAAK,IAAI,KAAK,CAACE,eAAe,EAAE;MAC3EyB,eAAe,CAAC,CAAC,CAACK,KAAK,CAAEpC,KAAc,IAAK;QAC1CqC,YAAU,CAACC,IAAI,CAAC,mCAAmC,EAAE;UAAEC,SAAS,EAAE;QAAY,CAAC,EAAEvC,KAAK,CAAC;MACzF,CAAC,CAAC;IACJ;EACF,CAAC,EAAE,CAACR,YAAY,EAAEX,MAAM,EAAEqB,aAAa,EAAEE,cAAc,EAAEE,eAAe,EAAEyB,eAAe,CAAC,CAAC;;EAE3F;EACA,MAAMS,mBAAmB,GAAG,IAAA7C,kBAAW,EAAC,MAAO8C,YAAoB,IAAK;IACtE,IAAI,CAACtD,gBAAgB,EAAE,MAAM,IAAIiC,KAAK,CAAC,4CAA4C,CAAC;IACpF,MAAMsB,YAAY,GAAGhD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACzB,cAAc,CAAC4C,YAAY,CAAC,IAAI,KAAK;IACpF,MAAM/C,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACC,gBAAgB,CAACkB,YAAY,EAAE3D,WAAW,EAAE4D,YAAY,CAAC;EAC3F,CAAC,EAAE,CAACvD,gBAAgB,EAAEL,WAAW,CAAC,CAAC;EAEnC,MAAM6D,sBAAsB,GAAG,IAAAhD,kBAAW,EAAC,CAAC8C,YAAoB,EAAEhB,SAAkB,KAAK;IACvF/B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACI,kBAAkB,CAACe,YAAY,EAAEhB,SAAS,CAAC;EACvE,CAAC,EAAE,EAAE,CAAC;EAEN,MAAMmB,kBAAkB,GAAG,IAAAjD,kBAAW,EAAC,MAAO8C,YAAoB,IAAK;IACrE,IAAI,CAACtD,gBAAgB,EAAE;IACvB,MAAMO,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACM,iBAAiB,CAACa,YAAY,EAAE3D,WAAW,CAAC;EAC9E,CAAC,EAAE,CAACK,gBAAgB,EAAEL,WAAW,CAAC,CAAC;EAEnC,MAAM+D,gBAAgB,GAAG,IAAAlD,kBAAW,EAAC,YAAY;IAC/C,IAAI,CAACR,gBAAgB,EAAE;IACvB,MAAM2D,KAAK,GAAGpD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC;IACvC,MAAMyB,OAAO,CAACC,GAAG,CAAC5D,OAAO,CAAC6D,GAAG,CAACtC,GAAG,IAAImC,KAAK,CAAClB,iBAAiB,CAACjB,GAAG,EAAE7B,WAAW,CAAC,CAAC,CAAC;EAClF,CAAC,EAAE,CAACK,gBAAgB,EAAEC,OAAO,EAAEN,WAAW,CAAC,CAAC;EAE5C,MAAMoE,iBAAiB,GAAG,IAAAvD,kBAAW,EAAE8C,YAAoB,IAAK;IAC9D/C,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACQ,gBAAgB,CAACW,YAAY,CAAC;EAC1D,CAAC,EAAE,EAAE,CAAC;EAEN,MAAMU,4BAA4B,GAAG,IAAAxD,kBAAW,EAAC,CAAC8C,YAAoB,EAAEW,MAA6B,EAAEC,MAAgD,KAAK;IAC1J,MAAMC,aAAa,GAAGxE,WAAW,CAACyE,gBAAgB,CAAC,CAAC,IAAIC,SAAS;IACjE9D,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAAC6B,4BAA4B,CAACV,YAAY,EAAEW,MAAM,EAAEC,MAAM,EAAEC,aAAa,CAAC;EACrG,CAAC,EAAE,CAACxE,WAAW,CAAC,CAAC;EAEjB,IAAIU,YAAY,IAAIX,MAAM,EAAE;IAC1B,OAAO;MACLY,WAAW;MACXK,SAAS;MACTE,KAAK;MACLmB,YAAY;MACZK,eAAe;MACfG,WAAW;MACXE,UAAU;MACV3B,aAAa;MACbE,cAAc;MACdE,eAAe;MACfyB,eAAe;MACfC,gBAAgB;MAChBE;IACF,CAAC;EACH;EAEA,OAAO;IACL1B,UAAU;IACVgC,mBAAmB;IACnBG,sBAAsB;IACtBC,kBAAkB;IAClBC,gBAAgB;IAChBK,iBAAiB;IACjBrC,YAAY,EAAED,qBAAqB,CAACC,YAAY;IAChDC,WAAW,EAAEF,qBAAqB,CAACE,WAAW;IAC9CC,YAAY,EAAEH,qBAAqB,CAACG,YAAY;IAChDC,eAAe,EAAEJ,qBAAqB,CAACI;EACzC,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAPAyC,OAAA,CAAA7E,SAAA,GAAAA,SAAA;AAQO,MAAM8E,kBAAkB,GAAGA,CAAC7E,MAAc,EAAEC,WAAwB,KAAK;EAC9E,MAAMW,WAAW,GAAG,IAAAC,2BAAc,EAChC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACC,cAAc,CAAChB,MAAM,CAAC,IAAI,KAAK,EAAE,CAACA,MAAM,CAAC,CAChE,CAAC;EACD,MAAMiB,SAAS,GAAG,IAAAJ,2BAAc,EAC9B,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACG,YAAY,CAAClB,MAAM,CAAC,IAAI,KAAK,EAAE,CAACA,MAAM,CAAC,CAC9D,CAAC;EACD,MAAMmB,KAAK,GAAG,IAAAN,2BAAc,EAC1B,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACK,MAAM,CAACpB,MAAM,CAAC,IAAI,IAAI,EAAE,CAACA,MAAM,CAAC,CACvD,CAAC;EAED,MAAMsC,YAAY,GAAG,IAAAxB,kBAAW,EAAC,YAAY;IAC3C,MAAM0B,kBAAkB,GAAG3B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACzB,cAAc,CAAChB,MAAM,CAAC,IAAI,KAAK;IACpF,MAAMa,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACC,gBAAgB,CAAC1C,MAAM,EAAEC,WAAW,EAAEuC,kBAAkB,CAAC;EAC3F,CAAC,EAAE,CAACxC,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEzB,MAAM6C,WAAW,GAAG,IAAAhC,kBAAW,EAAC,YAAY;IAC1C,MAAMD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACM,iBAAiB,CAAC/C,MAAM,EAAEC,WAAW,CAAC;EACxE,CAAC,EAAE,CAACD,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEzB,MAAM0C,eAAe,GAAG,IAAA7B,kBAAW,EAAE8B,SAAkB,IAAK;IAC1D/B,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACI,kBAAkB,CAAC7C,MAAM,EAAE4C,SAAS,CAAC;EACjE,CAAC,EAAE,CAAC5C,MAAM,CAAC,CAAC;EAEZ,MAAMgD,UAAU,GAAG,IAAAlC,kBAAW,EAAC,MAAM;IACnCD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACQ,gBAAgB,CAACjD,MAAM,CAAC;EACpD,CAAC,EAAE,CAACA,MAAM,CAAC,CAAC;EAEZ,OAAO;IACLY,WAAW;IACXK,SAAS;IACTE,KAAK;IACLmB,YAAY;IACZQ,WAAW;IACXH,eAAe;IACfK;EACF,CAAC;AACH,CAAC;;AAED;AAAA4B,OAAA,CAAAC,kBAAA,GAAAA,kBAAA;AACO,MAAMC,iBAAiB,GAAI9E,MAAc,IAAK;EACnD,MAAM;IAAEC;EAAY,CAAC,GAAG,IAAAI,kBAAM,EAAC,CAAC;EAEhC,MAAMgB,aAAa,GAAG,IAAAR,2BAAc,EAClC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACO,cAAc,CAACtB,MAAM,CAAC,IAAI,IAAI,EAAE,CAACA,MAAM,CAAC,CAC/D,CAAC;EACD,MAAMuB,cAAc,GAAG,IAAAV,2BAAc,EACnC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACS,eAAe,CAACxB,MAAM,CAAC,IAAI,IAAI,EAAE,CAACA,MAAM,CAAC,CAChE,CAAC;EACD,MAAMyB,eAAe,GAAG,IAAAZ,2BAAc,EACpC,IAAAC,kBAAW,EAAEC,CAAC,IAAKA,CAAC,CAACW,aAAa,CAAC1B,MAAM,CAAC,IAAI,KAAK,EAAE,CAACA,MAAM,CAAC,CAC/D,CAAC;EAED,MAAMkD,eAAe,GAAG,IAAApC,kBAAW,EAAC,YAAY;IAC9C,MAAMD,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACS,eAAe,CAAClD,MAAM,EAAEC,WAAW,CAAC;EACtE,CAAC,EAAE,CAACD,MAAM,EAAEC,WAAW,CAAC,CAAC;EAEzB,MAAMkD,gBAAgB,GAAG,IAAArC,kBAAW,EAAEsC,KAAa,IAAK;IACtDvC,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACU,gBAAgB,CAACnD,MAAM,EAAEoD,KAAK,CAAC;EAC3D,CAAC,EAAE,CAACpD,MAAM,CAAC,CAAC;EAEZ,MAAMqD,iBAAiB,GAAG,IAAAvC,kBAAW,EAAEsC,KAAa,IAAK;IACvDvC,2BAAc,CAAC4B,QAAQ,CAAC,CAAC,CAACY,iBAAiB,CAACrD,MAAM,EAAEoD,KAAK,CAAC;EAC5D,CAAC,EAAE,CAACpD,MAAM,CAAC,CAAC;EAEZ,OAAO;IACLqB,aAAa;IACbE,cAAc;IACdE,eAAe;IACfyB,eAAe;IACfC,gBAAgB;IAChBE;EACF,CAAC;AACH,CAAC;AAACuB,OAAA,CAAAE,iBAAA,GAAAA,iBAAA","ignoreList":[]}

package/lib/commonjs/ui/hooks/useSessionManagement.js

@@ -147,14 +147,13 @@ const useSessionManagement = ({
     onAuthStateChange?.(null);
   }, [clearSessionStorage, logoutStore, onAuthStateChange, oxyServices, queryClient, storage, logger]);
   const activateSession = (0, _react.useCallback)(async (sessionId, user) => {
-    await oxyServices.getTokenBySession(sessionId);
     setTokenReady?.(true);
     setActiveSessionId(sessionId);
     loginSuccess(user);
     await saveActiveSessionId(sessionId);
     await applyLanguagePreference(user);
     onAuthStateChange?.(user);
-  }, [applyLanguagePreference, loginSuccess, onAuthStateChange, oxyServices, saveActiveSessionId, setTokenReady]);
+  }, [applyLanguagePreference, loginSuccess, onAuthStateChange, saveActiveSessionId, setTokenReady]);
   const removalTimerIdsRef = (0, _react.useRef)(new Set());
   const trackRemovedSession = (0, _react.useCallback)(sessionId => {
     removedSessionsRef.current.add(sessionId);
@@ -196,10 +195,10 @@ const useSessionManagement = ({
       // `refreshAllSessions` it carries its `authuser` slot index. We
       // proactively plant that slot's access token via the httpOnly
       // refresh cookie BEFORE validating, so the bearer-protected
-      // validate/getCurrentUser calls don't need a token that was never
-      // in memory (cold reload / different browser tab). The native path
-      // has no per-session cookies and continues to rely on
-      // `validateSession` + `getTokenBySession` directly.
+      // validate/getCurrentUser calls have the correct in-memory token
+      // after a cold reload or account switch in another tab. The native
+      // path arrives here only after a bearer has been planted by
+      // `claimSessionByToken` or secure shared-session restore.
       if ((0, _useWebSSO.isWebBrowser)()) {
         const targetSession = sessionsRef.current.find(s => s.sessionId === sessionId);
         const targetAuthuser = targetSession?.authuser;