npm - @oxyhq/services - Versions diffs - 5.17.17 → 5.18.0 - Mend

@oxyhq/services 5.17.17 → 5.18.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (618) hide show

package/lib/typescript/core/services/TokenService.d.ts DELETED Viewed

@@ -1,72 +0,0 @@
-/**
- * TokenService - Single Source of Truth for Token Management
- *
- * Handles all token storage, retrieval, refresh, and validation.
- * Used by HttpService, SocketService, and other services that need tokens.
- *
- * Architecture:
- * - Single storage location (no duplication)
- * - Automatic token refresh when expiring soon
- * - Type-safe token payload handling
- * - userId is always MongoDB ObjectId, never publicKey
- */
-/**
- * TokenService - Singleton pattern for global token management
- */
-declare class TokenService {
-    private static instance;
-    private tokenStore;
-    private refreshPromise;
-    private baseURL;
-    private constructor();
-    static getInstance(): TokenService;
-    /**
-     * Initialize TokenService with base URL for refresh requests
-     */
-    initialize(baseURL: string): void;
-    /**
-     * Get current access token
-     */
-    getAccessToken(): string | null;
-    /**
-     * Get current refresh token
-     */
-    getRefreshToken(): string | null;
-    /**
-     * Set tokens (called after login or token refresh)
-     */
-    setTokens(accessToken: string, refreshToken?: string): void;
-    /**
-     * Clear all tokens (called on logout)
-     */
-    clearTokens(): void;
-    /**
-     * Check if access token exists
-     */
-    hasAccessToken(): boolean;
-    /**
-     * Check if token is expiring soon (within 60 seconds)
-     */
-    isTokenExpiringSoon(): boolean;
-    /**
-     * Get userId from current access token
-     * Returns MongoDB ObjectId (never publicKey)
-     */
-    getUserIdFromToken(): string | null;
-    /**
-     * Refresh access token if expiring soon
-     * Returns promise that resolves when token is refreshed (or already valid)
-     */
-    refreshTokenIfNeeded(): Promise<void>;
-    /**
-     * Perform token refresh
-     */
-    private _performRefresh;
-    /**
-     * Get authorization header with automatic refresh
-     */
-    getAuthHeader(): Promise<string | null>;
-}
-export declare const tokenService: TokenService;
-export {};
-//# sourceMappingURL=TokenService.d.ts.map

package/lib/typescript/core/services/TokenService.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"TokenService.d.ts","sourceRoot":"","sources":["../../../../src/core/services/TokenService.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAsBH;;GAEG;AACH,cAAM,YAAY;IAChB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAe;IACtC,OAAO,CAAC,UAAU,CAGhB;IACF,OAAO,CAAC,cAAc,CAA8B;IACpD,OAAO,CAAC,OAAO,CAAuB;IAEtC,OAAO;IAEP,MAAM,CAAC,WAAW,IAAI,YAAY;IAOlC;;OAEG;IACH,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAIjC;;OAEG;IACH,cAAc,IAAI,MAAM,GAAG,IAAI;IAI/B;;OAEG;IACH,eAAe,IAAI,MAAM,GAAG,IAAI;IAIhC;;OAEG;IACH,SAAS,CAAC,WAAW,EAAE,MAAM,EAAE,YAAY,GAAE,MAAW,GAAG,IAAI;IAK/D;;OAEG;IACH,WAAW,IAAI,IAAI;IAMnB;;OAEG;IACH,cAAc,IAAI,OAAO;IAIzB;;OAEG;IACH,mBAAmB,IAAI,OAAO;IAe9B;;;OAGG;IACH,kBAAkB,IAAI,MAAM,GAAG,IAAI;IAYnC;;;OAGG;IACG,oBAAoB,IAAI,OAAO,CAAC,IAAI,CAAC;IAmC3C;;OAEG;YACW,eAAe;IA8C7B;;OAEG;IACG,aAAa,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;CAS9C;AAGD,eAAO,MAAM,YAAY,cAA6B,CAAC"}

package/lib/typescript/crypto/types.d.ts DELETED Viewed

@@ -1,22 +0,0 @@
-/**
- * Cryptographic types for authentication and backup
- */
-/**
- * Encrypted backup data structure
- * Used for identity backup files
- */
-export interface BackupData {
-    /** Base64-encoded encrypted private key */
-    encrypted: string;
-    /** Hex-encoded salt used for key derivation */
-    salt: string;
-    /** Hex-encoded initialization vector */
-    iv: string;
-    /** Public key associated with the encrypted private key */
-    publicKey: string;
-    /** Encryption algorithm used (optional, for backward compatibility) */
-    algorithm?: 'xor' | 'aes-256-gcm';
-    /** Format version (optional, for backward compatibility) */
-    version?: string;
-}
-//# sourceMappingURL=types.d.ts.map

package/lib/typescript/crypto/types.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/crypto/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH;;;GAGG;AACH,MAAM,WAAW,UAAU;IACzB,2CAA2C;IAC3C,SAAS,EAAE,MAAM,CAAC;IAClB,+CAA+C;IAC/C,IAAI,EAAE,MAAM,CAAC;IACb,wCAAwC;IACxC,EAAE,EAAE,MAAM,CAAC;IACX,2DAA2D;IAC3D,SAAS,EAAE,MAAM,CAAC;IAClB,uEAAuE;IACvE,SAAS,CAAC,EAAE,KAAK,GAAG,aAAa,CAAC;IAClC,4DAA4D;IAC5D,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB"}

package/lib/typescript/ui/context/OxyContextBase.d.ts DELETED Viewed

@@ -1,63 +0,0 @@
-import type { ReactNode } from 'react';
-import type { OxyServices } from '../../core';
-import type { User, ApiError } from '../../models/interfaces';
-import type { ClientSession, SessionLoginResponse } from '../../models/session';
-import type { UseFollowHook } from '../hooks/useFollow.types';
-import type { useLanguageManagement } from '../hooks/useLanguageManagement';
-import type { RouteName } from '../navigation/routes';
-export interface OxyContextState {
-    user: User | null;
-    sessions: ClientSession[];
-    activeSessionId: string | null;
-    currentDeviceId: string | null;
-    isAuthenticated: boolean;
-    isLoading: boolean;
-    isTokenReady: boolean;
-    isStorageReady: boolean;
-    error: string | null;
-    currentLanguage: string;
-    currentLanguageMetadata: ReturnType<typeof useLanguageManagement>['metadata'];
-    currentLanguageName: string;
-    currentNativeLanguageName: string;
-    completeSignIn: (sessionResponse: SessionLoginResponse) => Promise<User>;
-    logout: (targetSessionId?: string) => Promise<void>;
-    logoutAll: () => Promise<void>;
-    switchSession: (sessionId: string) => Promise<void>;
-    removeSession: (sessionId: string) => Promise<void>;
-    refreshSessions: () => Promise<void>;
-    setLanguage: (languageId: string) => Promise<void>;
-    getDeviceSessions: () => Promise<Array<{
-        sessionId: string;
-        deviceId: string;
-        deviceName?: string;
-        lastActive?: string;
-        expiresAt?: string;
-    }>>;
-    logoutAllDeviceSessions: () => Promise<void>;
-    updateDeviceName: (deviceName: string) => Promise<void>;
-    clearSessionState: () => Promise<void>;
-    clearAllAccountData: () => Promise<void>;
-    oxyServices: OxyServices;
-    useFollow?: UseFollowHook;
-    showBottomSheet?: (screenOrConfig: RouteName | {
-        screen: RouteName;
-        props?: Record<string, unknown>;
-    }) => void;
-    openAvatarPicker: () => void;
-    updateProfile: (updates: Partial<User>) => Promise<User>;
-}
-export declare const OxyContext: import("react").Context<OxyContextState | null>;
-export interface OxyContextProviderProps {
-    children: ReactNode;
-    oxyServices?: OxyServices;
-    baseURL?: string;
-    storageKeyPrefix?: string;
-    onAuthStateChange?: (user: User | null) => void;
-    onError?: (error: ApiError) => void;
-}
-/**
- * Hook to access the Oxy context.
- * Must be used within an OxyContextProvider.
- */
-export declare const useOxy: () => OxyContextState;
-//# sourceMappingURL=OxyContextBase.d.ts.map

package/lib/typescript/ui/context/OxyContextBase.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"OxyContextBase.d.ts","sourceRoot":"","sources":["../../../../src/ui/context/OxyContextBase.tsx"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,OAAO,CAAC;AACvC,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAC9C,OAAO,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,yBAAyB,CAAC;AAC9D,OAAO,KAAK,EAAE,aAAa,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAC;AAChF,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,0BAA0B,CAAC;AAC9D,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AAC5E,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAEtD,MAAM,WAAW,eAAe;IAC5B,IAAI,EAAE,IAAI,GAAG,IAAI,CAAC;IAClB,QAAQ,EAAE,aAAa,EAAE,CAAC;IAC1B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,eAAe,EAAE,OAAO,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;IACnB,YAAY,EAAE,OAAO,CAAC;IACtB,cAAc,EAAE,OAAO,CAAC;IACxB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,uBAAuB,EAAE,UAAU,CAAC,OAAO,qBAAqB,CAAC,CAAC,UAAU,CAAC,CAAC;IAC9E,mBAAmB,EAAE,MAAM,CAAC;IAC5B,yBAAyB,EAAE,MAAM,CAAC;IAKlC,cAAc,EAAE,CAAC,eAAe,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAGzE,MAAM,EAAE,CAAC,eAAe,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,SAAS,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/B,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,eAAe,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACrC,WAAW,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACnD,iBAAiB,EAAE,MAAM,OAAO,CAC5B,KAAK,CAAC;QACF,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;QACjB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;KACtB,CAAC,CACL,CAAC;IACF,uBAAuB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7C,gBAAgB,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACxD,iBAAiB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACvC,mBAAmB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACzC,WAAW,EAAE,WAAW,CAAC;IACzB,SAAS,CAAC,EAAE,aAAa,CAAC;IAC1B,eAAe,CAAC,EAAE,CAAC,cAAc,EAAE,SAAS,GAAG;QAAE,MAAM,EAAE,SAAS,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,KAAK,IAAI,CAAC;IAC/G,gBAAgB,EAAE,MAAM,IAAI,CAAC;IAC7B,aAAa,EAAE,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CAC5D;AAED,eAAO,MAAM,UAAU,iDAA8C,CAAC;AAEtE,MAAM,WAAW,uBAAuB;IACpC,QAAQ,EAAE,SAAS,CAAC;IACpB,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,iBAAiB,CAAC,EAAE,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;IAChD,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;CACvC;AAED;;;GAGG;AACH,eAAO,MAAM,MAAM,QAAO,eAMzB,CAAC"}

package/lib/typescript/ui/context/hooks/useStorage.d.ts DELETED Viewed

@@ -1,22 +0,0 @@
-import type { ApiError } from '../../../models/interfaces';
-import { type StorageInterface } from '../../utils/storageHelpers';
-export interface UseStorageOptions {
-    onError?: (error: ApiError) => void;
-    logger?: (message: string, error?: unknown) => void;
-    errorCode?: string;
-}
-export interface UseStorageResult {
-    storage: StorageInterface | null;
-    isReady: boolean;
-    error: string | null;
-    refresh: () => Promise<StorageInterface | null>;
-    withStorage: <T>(callback: (storage: StorageInterface) => Promise<T>) => Promise<T | null>;
-}
-/**
- * React hook that exposes a platform-agnostic storage reference.
- * Handles initialization, error propagation, and lazy re-initialization.
- *
- * @param options - Optional configuration for error reporting and logging
- */
-export declare const useStorage: ({ onError, logger, errorCode, }?: UseStorageOptions) => UseStorageResult;
-//# sourceMappingURL=useStorage.d.ts.map

package/lib/typescript/ui/context/hooks/useStorage.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"useStorage.d.ts","sourceRoot":"","sources":["../../../../../src/ui/context/hooks/useStorage.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,4BAA4B,CAAC;AAC3D,OAAO,EAAyB,KAAK,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AAG1F,MAAM,WAAW,iBAAiB;IAChC,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;IACpC,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;IACpD,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,gBAAgB,GAAG,IAAI,CAAC;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,OAAO,EAAE,MAAM,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAAC;IAChD,WAAW,EAAE,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,OAAO,EAAE,gBAAgB,KAAK,OAAO,CAAC,CAAC,CAAC,KAAK,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;CAC5F;AAID;;;;;GAKG;AACH,eAAO,MAAM,UAAU,GAAI,kCAIxB,iBAAsB,KAAG,gBAsE3B,CAAC"}

package/lib/typescript/ui/hooks/useAvatarPicker.d.ts DELETED Viewed

@@ -1,19 +0,0 @@
-import type { QueryClient } from '@tanstack/react-query';
-import type { OxyServices } from '../../core';
-import type { RouteName } from '../navigation/routes';
-interface UseAvatarPickerOptions {
-    oxyServices: OxyServices;
-    currentLanguage: string;
-    activeSessionId: string | null;
-    currentDeviceId: string | null;
-    queryClient: QueryClient;
-    showBottomSheet: (screenOrConfig: RouteName | {
-        screen: RouteName;
-        props?: Record<string, unknown>;
-    }) => void;
-}
-export declare const useAvatarPicker: ({ oxyServices, currentLanguage, activeSessionId, currentDeviceId, queryClient, showBottomSheet, }: UseAvatarPickerOptions) => {
-    openAvatarPicker: () => void;
-};
-export {};
-//# sourceMappingURL=useAvatarPicker.d.ts.map

package/lib/typescript/ui/hooks/useAvatarPicker.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"useAvatarPicker.d.ts","sourceRoot":"","sources":["../../../../src/ui/hooks/useAvatarPicker.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAIzD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAC9C,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAEtD,UAAU,sBAAsB;IAC9B,WAAW,EAAE,WAAW,CAAC;IACzB,eAAe,EAAE,MAAM,CAAC;IACxB,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;IACzB,eAAe,EAAE,CAAC,cAAc,EAAE,SAAS,GAAG;QAAE,MAAM,EAAE,SAAS,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,KAAK,IAAI,CAAC;CAC/G;AAED,eAAO,MAAM,eAAe,GAAI,mGAO7B,sBAAsB;;CAiCxB,CAAC"}

package/src/core/services/SessionService.ts DELETED Viewed

@@ -1,173 +0,0 @@
-/**
- * SessionService - Single Source of Truth for Session Management
- *
- * Handles all session operations: creation, validation, refresh, invalidation.
- * Manages active session state and provides session data to other services.
- *
- * Architecture:
- * - Single source of truth for session operations
- * - Handles both online and offline sessions
- * - Integrates with TokenService for token management
- * - userId is always MongoDB ObjectId, never publicKey
- */
-import type { OxyServices } from '../OxyServices';
-import { tokenService } from './TokenService';
-import type { ClientSession, SessionLoginResponse } from '../../models/session';
-import type { User } from '../../models/interfaces';
-export interface Session {
-  sessionId: string;
-  deviceId: string;
-  userId: string;  // MongoDB ObjectId - PRIMARY IDENTIFIER
-  expiresAt: string;
-  lastActive: string;
-  isCurrent: boolean;
-  isOffline?: boolean;
-}
-/**
- * SessionService - Singleton pattern for global session management
- */
-class SessionService {
-  private static instance: SessionService;
-  private oxyServices: OxyServices | null = null;
-  private activeSession: Session | null = null;
-  private sessions: Session[] = [];
-  private constructor() {}
-  static getInstance(): SessionService {
-    if (!SessionService.instance) {
-      SessionService.instance = new SessionService();
-    }
-    return SessionService.instance;
-  }
-  /**
-   * Initialize SessionService with OxyServices instance
-   */
-  initialize(oxyServices: OxyServices): void {
-    this.oxyServices = oxyServices;
-  }
-  /**
-   * Get active session
-   */
-  getActiveSession(): Session | null {
-    return this.activeSession;
-  }
-  /**
-   * Get all sessions
-   */
-  getAllSessions(): Session[] {
-    return [...this.sessions];
-  }
-  /**
-   * Create a new session (sign in)
-   * @param publicKey - User's public key for authentication
-   * @returns User object and session data
-   */
-  async createSession(publicKey: string): Promise<{ user: User; session: Session }> {
-    if (!this.oxyServices) {
-      throw new Error('SessionService not initialized with OxyServices');
-    }
-    // This will be implemented by delegating to existing sign-in logic
-    // For now, this is a placeholder that shows the interface
-    throw new Error('SessionService.createSession not yet implemented - use existing signIn flow');
-  }
-  /**
-   * Refresh current session
-   */
-  async refreshSession(): Promise<Session> {
-    if (!this.activeSession) {
-      throw new Error('No active session to refresh');
-    }
-    // Refresh token first
-    await tokenService.refreshTokenIfNeeded();
-    // Then refresh session data from server
-    // Implementation will be added
-    return this.activeSession;
-  }
-  /**
-   * Validate current session
-   */
-  async validateSession(): Promise<boolean> {
-    if (!this.activeSession) {
-      return false;
-    }
-    // Check if session expired
-    if (new Date(this.activeSession.expiresAt) < new Date()) {
-      return false;
-    }
-    // Check if token is valid
-    const token = tokenService.getAccessToken();
-    if (!token) {
-      return false;
-    }
-    // Additional validation can be added here
-    return true;
-  }
-  /**
-   * Invalidate current session (sign out)
-   */
-  async invalidateSession(): Promise<void> {
-    if (!this.activeSession || !this.oxyServices) {
-      return;
-    }
-    try {
-      // Call API to invalidate session on server
-      await this.oxyServices.makeRequest('POST', `/api/session/${this.activeSession.sessionId}/logout`, undefined, { cache: false });
-    } catch (error) {
-      // Continue with local cleanup even if API call fails
-      console.warn('Failed to invalidate session on server:', error);
-    }
-    // Clear tokens
-    tokenService.clearTokens();
-    // Clear active session
-    this.activeSession = null;
-    this.sessions = this.sessions.filter(s => s.sessionId !== this.activeSession?.sessionId);
-  }
-  /**
-   * Set active session (internal use)
-   */
-  setActiveSession(session: Session): void {
-    this.activeSession = session;
-    // Update sessions list
-    const existingIndex = this.sessions.findIndex(s => s.sessionId === session.sessionId);
-    if (existingIndex >= 0) {
-      this.sessions[existingIndex] = session;
-    } else {
-      this.sessions.push(session);
-    }
-  }
-  /**
-   * Clear all sessions (logout all)
-   */
-  clearAllSessions(): void {
-    this.activeSession = null;
-    this.sessions = [];
-    tokenService.clearTokens();
-  }
-}
-// Export singleton instance
-export const sessionService = SessionService.getInstance();

package/src/core/services/TokenService.ts DELETED Viewed

@@ -1,237 +0,0 @@
-/**
- * TokenService - Single Source of Truth for Token Management
- *
- * Handles all token storage, retrieval, refresh, and validation.
- * Used by HttpService, SocketService, and other services that need tokens.
- *
- * Architecture:
- * - Single storage location (no duplication)
- * - Automatic token refresh when expiring soon
- * - Type-safe token payload handling
- * - userId is always MongoDB ObjectId, never publicKey
- */
-import { jwtDecode } from 'jwt-decode';
-/**
- * AccessTokenPayload - Matches the token payload structure from API
- * userId is always MongoDB ObjectId (24 hex characters), never publicKey
- */
-interface AccessTokenPayload {
-  userId: string;      // MongoDB ObjectId - PRIMARY IDENTIFIER
-  sessionId: string;   // Session UUID
-  deviceId: string;   // Device identifier
-  type: 'access';
-  iat?: number;        // Issued at (added by JWT)
-  exp?: number;        // Expiration (added by JWT)
-}
-interface TokenStore {
-  accessToken: string | null;
-  refreshToken: string | null;
-}
-/**
- * TokenService - Singleton pattern for global token management
- */
-class TokenService {
-  private static instance: TokenService;
-  private tokenStore: TokenStore = {
-    accessToken: null,
-    refreshToken: null,
-  };
-  private refreshPromise: Promise<void> | null = null;
-  private baseURL: string | null = null;
-  private constructor() {}
-  static getInstance(): TokenService {
-    if (!TokenService.instance) {
-      TokenService.instance = new TokenService();
-    }
-    return TokenService.instance;
-  }
-  /**
-   * Initialize TokenService with base URL for refresh requests
-   */
-  initialize(baseURL: string): void {
-    this.baseURL = baseURL;
-  }
-  /**
-   * Get current access token
-   */
-  getAccessToken(): string | null {
-    return this.tokenStore.accessToken;
-  }
-  /**
-   * Get current refresh token
-   */
-  getRefreshToken(): string | null {
-    return this.tokenStore.refreshToken;
-  }
-  /**
-   * Set tokens (called after login or token refresh)
-   */
-  setTokens(accessToken: string, refreshToken: string = ''): void {
-    this.tokenStore.accessToken = accessToken;
-    this.tokenStore.refreshToken = refreshToken || this.tokenStore.refreshToken;
-  }
-  /**
-   * Clear all tokens (called on logout)
-   */
-  clearTokens(): void {
-    this.tokenStore.accessToken = null;
-    this.tokenStore.refreshToken = null;
-    this.refreshPromise = null;
-  }
-  /**
-   * Check if access token exists
-   */
-  hasAccessToken(): boolean {
-    return !!this.tokenStore.accessToken;
-  }
-  /**
-   * Check if token is expiring soon (within 60 seconds)
-   */
-  isTokenExpiringSoon(): boolean {
-    const token = this.tokenStore.accessToken;
-    if (!token) return false;
-    try {
-      const decoded = jwtDecode<AccessTokenPayload>(token);
-      if (!decoded.exp) return false;
-      const currentTime = Math.floor(Date.now() / 1000);
-      return decoded.exp - currentTime < 60; // Expiring within 60 seconds
-    } catch {
-      return false;
-    }
-  }
-  /**
-   * Get userId from current access token
-   * Returns MongoDB ObjectId (never publicKey)
-   */
-  getUserIdFromToken(): string | null {
-    const token = this.tokenStore.accessToken;
-    if (!token) return null;
-    try {
-      const decoded = jwtDecode<AccessTokenPayload>(token);
-      return decoded.userId || null;
-    } catch {
-      return null;
-    }
-  }
-  /**
-   * Refresh access token if expiring soon
-   * Returns promise that resolves when token is refreshed (or already valid)
-   */
-  async refreshTokenIfNeeded(): Promise<void> {
-    // If already refreshing, wait for that promise
-    if (this.refreshPromise) {
-      return this.refreshPromise;
-    }
-    const hasToken = !!this.tokenStore.accessToken;
-    const needsRefresh = this.isTokenExpiringSoon();
-    // If no access token but we have refresh token, attempt refresh once
-    if (!hasToken && this.tokenStore.refreshToken) {
-      this.refreshPromise = this._performRefresh();
-      try {
-        await this.refreshPromise;
-      } finally {
-        this.refreshPromise = null;
-      }
-      return;
-    }
-    // If token not expiring soon, no refresh needed
-    if (!needsRefresh) {
-      return;
-    }
-    // Start refresh
-    this.refreshPromise = this._performRefresh();
-    try {
-      await this.refreshPromise;
-    } finally {
-      this.refreshPromise = null;
-    }
-  }
-  /**
-   * Perform token refresh
-   */
-  private async _performRefresh(): Promise<void> {
-    const refreshToken = this.tokenStore.refreshToken;
-    if (!refreshToken) {
-      throw new Error('No refresh token to refresh');
-    }
-    try {
-      if (!this.baseURL) {
-        throw new Error('TokenService not initialized with baseURL');
-      }
-      const refreshUrl = `${this.baseURL}/api/auth/refresh`;
-      const response = await fetch(refreshUrl, {
-        method: 'POST',
-        headers: {
-          'Accept': 'application/json',
-          'Content-Type': 'application/json',
-        },
-        body: JSON.stringify({ refreshToken }),
-        signal: AbortSignal.timeout(5000),
-      });
-      if (!response.ok) {
-        throw new Error(`Token refresh failed: ${response.status}`);
-      }
-      const { accessToken: newToken, refreshToken: newRefresh } = await response.json();
-      if (!newToken) {
-        throw new Error('No access token in refresh response');
-      }
-      // Validate new token has correct userId format (ObjectId)
-      const newDecoded = jwtDecode<AccessTokenPayload>(newToken);
-      if (newDecoded.userId && !/^[0-9a-fA-F]{24}$/.test(newDecoded.userId)) {
-        throw new Error(`Invalid userId format in refreshed token: ${newDecoded.userId.substring(0, 20)}...`);
-      }
-      this.setTokens(newToken, newRefresh || refreshToken);
-    } catch (error) {
-      // Clear tokens on refresh failure (likely expired or invalid)
-      this.clearTokens();
-      throw error;
-    }
-  }
-  /**
-   * Get authorization header with automatic refresh
-   */
-  async getAuthHeader(): Promise<string | null> {
-    // Refresh if needed
-    await this.refreshTokenIfNeeded().catch(() => {
-      // Ignore refresh errors, will use current token or return null
-    });
-    const token = this.tokenStore.accessToken;
-    return token ? `Bearer ${token}` : null;
-  }
-}
-// Export singleton instance
-export const tokenService = TokenService.getInstance();

package/src/crypto/types.ts DELETED Viewed

@@ -1,23 +0,0 @@
-/**
- * Cryptographic types for authentication and backup
- */
-/**
- * Encrypted backup data structure
- * Used for identity backup files
- */
-export interface BackupData {
-  /** Base64-encoded encrypted private key */
-  encrypted: string;
-  /** Hex-encoded salt used for key derivation */
-  salt: string;
-  /** Hex-encoded initialization vector */
-  iv: string;
-  /** Public key associated with the encrypted private key */
-  publicKey: string;
-  /** Encryption algorithm used (optional, for backward compatibility) */
-  algorithm?: 'xor' | 'aes-256-gcm';
-  /** Format version (optional, for backward compatibility) */
-  version?: string;
-}