@oxyhq/services 8.7.0 → 10.0.0

package/lib/typescript/commonjs/utils/silentGuardKey.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Shared, pure helpers for building the `origin|baseURL` signature used as the
+ * module-level run-once guard key for cold-boot silent-SSO probes
+ * (`silentColdBootKey` in `OxyContext`, `ssoSignature` in `useWebSSO`).
+ *
+ * NATIVE SAFETY (the bug this fixes): React Native aliases a global `window`
+ * (it points at the JS global object), so `typeof window !== 'undefined'` is
+ * `true` on native — but `window.location` is `undefined`. Reading
+ * `window.location.origin` after only a `typeof window` check therefore throws
+ * `TypeError: Cannot read property 'origin' of undefined` on native. Because
+ * the key is built UNCONDITIONALLY at the top of the cold-boot path (before its
+ * try/catch), that throw escaped session restore entirely and broke
+ * cross-session restore on native. Both prior copies of the guard had the same
+ * insufficient `typeof window` check and were prone to drift, so the read is
+ * consolidated here behind a guard that also verifies `window.location`.
+ */
+/**
+ * Read `window.location.origin` safely on every platform.
+ *
+ * Returns the browser origin on web, and the sentinel `'no-origin'` anywhere
+ * `window.location` is absent (React Native, SSR/Node). Never throws.
+ */
+export declare function safeWindowOrigin(): string;
+/**
+ * Build the stable `origin|baseURL` signature for the silent-SSO run-once
+ * guard. Two providers pointed at the same API from the same origin share one
+ * attempt. `getBaseURL` is invoked defensively (it may be absent or throw on a
+ * partially-initialised client); any failure degrades to an empty baseURL.
+ */
+export declare function buildSilentGuardKey(getBaseURL?: () => string | undefined): string;
+//# sourceMappingURL=silentGuardKey.d.ts.map

package/lib/typescript/commonjs/utils/silentGuardKey.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"silentGuardKey.d.ts","sourceRoot":"","sources":["../../../../src/utils/silentGuardKey.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH;;;;;GAKG;AACH,wBAAgB,gBAAgB,IAAI,MAAM,CAKzC;AAED;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,UAAU,CAAC,EAAE,MAAM,MAAM,GAAG,SAAS,GAAG,MAAM,CASjF"}

package/lib/typescript/module/ui/components/SignInModal.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SignInModal.d.ts","sourceRoot":"","sources":["../../../../../src/ui/components/SignInModal.tsx"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAwD/B,eAAO,MAAM,eAAe,YAI3B,CAAC;AAEF,eAAO,MAAM,eAAe,YAI3B,CAAC;AAEF,eAAO,MAAM,oBAAoB,eAAqB,CAAC;AAEvD,4CAA4C;AAC5C,eAAO,MAAM,sBAAsB,GAAI,UAAU,CAAC,OAAO,EAAE,OAAO,KAAK,IAAI,KAAG,CAAC,MAAM,IAAI,CAGxF,CAAC;AAEF,QAAA,MAAM,WAAW,EAAE,KAAK,CAAC,EA2WxB,CAAC;AA8FF,eAAe,WAAW,CAAC"}
+{"version":3,"file":"SignInModal.d.ts","sourceRoot":"","sources":["../../../../../src/ui/components/SignInModal.tsx"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAwD/B,eAAO,MAAM,eAAe,YAI3B,CAAC;AAEF,eAAO,MAAM,eAAe,YAI3B,CAAC;AAEF,eAAO,MAAM,oBAAoB,eAAqB,CAAC;AAEvD,4CAA4C;AAC5C,eAAO,MAAM,sBAAsB,GAAI,UAAU,CAAC,OAAO,EAAE,OAAO,KAAK,IAAI,KAAG,CAAC,MAAM,IAAI,CAGxF,CAAC;AAEF,QAAA,MAAM,WAAW,EAAE,KAAK,CAAC,EAsXxB,CAAC;AA8FF,eAAe,WAAW,CAAC"}

package/lib/typescript/module/ui/context/OxyContext.d.ts

@@ -62,12 +62,16 @@ export interface OxyContextState {
     clearAllAccountData: () => Promise<void>;
     storageKeyPrefix: string;
     /**
-     * Resolved human-readable app display name surfaced on the central Oxy
-     * sign-in / consent experience (e.g. "Mention wants to access your Oxy
-     * account"). Always non-empty — derived from the `appName` prop, then
-     * `storageKeyPrefix`, then `document.title` (web), then the platform.
+     * The app's Oxy OAuth client id / ApplicationCredential publicKey, as
+     * supplied via the `clientId` prop. Required for the cross-app device
+     * sign-in flow: the sign-in components send it to
+     * `POST /auth/session/create` so the API can identify the requesting app by
+     * its real registered client id (the consent identity is then resolved
+     * server-side and shown by the central auth web). `null` when the consuming
+     * app did not configure a client id — the device sign-in flow surfaces a
+     * configuration error in that case.
      */
-    appName: string;
+    clientId: string | null;
     oxyServices: OxyServices;
     useFollow?: UseFollowHook;
     showBottomSheet?: (screenOrConfig: RouteName | {
@@ -90,10 +94,10 @@ export interface OxyContextProviderProps {
     authRedirectUri?: string;
     storageKeyPrefix?: string;
     /**
-     * Human-readable name of the consuming app shown on the central Oxy
-     * sign-in / consent experience. See {@link OxyContextState.appName}.
+     * The app's Oxy OAuth client id / ApplicationCredential publicKey; required
+     * for the cross-app device sign-in flow. See {@link OxyContextState.clientId}.
      */
-    appName?: string;
+    clientId?: string;
     onAuthStateChange?: (user: User | null) => void;
     onError?: (error: ApiError) => void;
 }

package/lib/typescript/module/ui/context/OxyContext.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"OxyContext.d.ts","sourceRoot":"","sources":["../../../../../src/ui/context/OxyContext.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAC/B,OAAO,EAQL,KAAK,SAAS,EACf,MAAM,OAAO,CAAC;AACf,OAAO,EAAE,WAAW,EAAa,MAAM,aAAa,CAAC;AACrD,OAAO,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,yBAAyB,EAAE,MAAM,aAAa,CAAC;AAE7E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAqBjD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,0BAA0B,CAAC;AAC9D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AAQvE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAStD,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,IAAI,GAAG,IAAI,CAAC;IAClB,QAAQ,EAAE,aAAa,EAAE,CAAC;IAC1B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,eAAe,EAAE,OAAO,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;IACnB,YAAY,EAAE,OAAO,CAAC;IACtB;;;;;;;;;;;;;OAaG;IACH,cAAc,EAAE,OAAO,CAAC;IACxB,cAAc,EAAE,OAAO,CAAC;IACxB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,uBAAuB,EAAE,UAAU,CAAC,OAAO,qBAAqB,CAAC,CAAC,UAAU,CAAC,CAAC;IAC9E,mBAAmB,EAAE,MAAM,CAAC;IAC5B,yBAAyB,EAAE,MAAM,CAAC;IAGlC,WAAW,EAAE,MAAM,OAAO,CAAC,OAAO,CAAC,CAAC;IACpC,YAAY,EAAE,MAAM,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAG3C,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAElE;;;OAGG;IACH,kBAAkB,EAAE,CAAC,OAAO,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAGrE,MAAM,EAAE,CAAC,eAAe,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,SAAS,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/B,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,eAAe,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACrC,WAAW,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACnD,iBAAiB,EAAE,MAAM,OAAO,CAC9B,KAAK,CAAC;QACJ,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;QACjB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC,CACH,CAAC;IACF,uBAAuB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7C,gBAAgB,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACxD,iBAAiB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACvC,mBAAmB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACzC,gBAAgB,EAAE,MAAM,CAAC;IACzB;;;;;OAKG;IACH,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,WAAW,CAAC;IACzB,SAAS,CAAC,EAAE,aAAa,CAAC;IAC1B,eAAe,CAAC,EAAE,CAAC,cAAc,EAAE,SAAS,GAAG;QAAE,MAAM,EAAE,SAAS,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,KAAK,IAAI,CAAC;IAC/G,gBAAgB,EAAE,MAAM,IAAI,CAAC;IAG7B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,eAAe,EAAE,cAAc,EAAE,CAAC;IAClC,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,KAAK,IAAI,CAAC;IAC7C,sBAAsB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5C,oBAAoB,EAAE,CAAC,IAAI,EAAE,yBAAyB,KAAK,OAAO,CAAC,cAAc,CAAC,CAAC;CACpF;AAED,QAAA,MAAM,UAAU,uCAA8C,CAAC;AAM/D,MAAM,WAAW,uBAAuB;IACtC,QAAQ,EAAE,SAAS,CAAC;IACpB,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,iBAAiB,CAAC,EAAE,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;IAChD,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;CACrC;AAwJD,eAAO,MAAM,WAAW,EAAE,KAAK,CAAC,EAAE,CAAC,uBAAuB,CAs4CzD,CAAC;AAEF,eAAO,MAAM,kBAAkB,mCAAc,CAAC;AA4D9C,eAAO,MAAM,MAAM,QAAO,eAMzB,CAAC;AAEF,eAAe,UAAU,CAAC"}
+{"version":3,"file":"OxyContext.d.ts","sourceRoot":"","sources":["../../../../../src/ui/context/OxyContext.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAC/B,OAAO,EAQL,KAAK,SAAS,EACf,MAAM,OAAO,CAAC;AACf,OAAO,EAAE,WAAW,EAAa,MAAM,aAAa,CAAC;AACrD,OAAO,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,yBAAyB,EAAE,MAAM,aAAa,CAAC;AAE7E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAqBjD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,0BAA0B,CAAC;AAC9D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AAOvE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAUtD,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,IAAI,GAAG,IAAI,CAAC;IAClB,QAAQ,EAAE,aAAa,EAAE,CAAC;IAC1B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,eAAe,EAAE,OAAO,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;IACnB,YAAY,EAAE,OAAO,CAAC;IACtB;;;;;;;;;;;;;OAaG;IACH,cAAc,EAAE,OAAO,CAAC;IACxB,cAAc,EAAE,OAAO,CAAC;IACxB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,uBAAuB,EAAE,UAAU,CAAC,OAAO,qBAAqB,CAAC,CAAC,UAAU,CAAC,CAAC;IAC9E,mBAAmB,EAAE,MAAM,CAAC;IAC5B,yBAAyB,EAAE,MAAM,CAAC;IAGlC,WAAW,EAAE,MAAM,OAAO,CAAC,OAAO,CAAC,CAAC;IACpC,YAAY,EAAE,MAAM,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAG3C,MAAM,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAElE;;;OAGG;IACH,kBAAkB,EAAE,CAAC,OAAO,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAGrE,MAAM,EAAE,CAAC,eAAe,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,SAAS,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/B,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,aAAa,EAAE,CAAC,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACpD,eAAe,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACrC,WAAW,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACnD,iBAAiB,EAAE,MAAM,OAAO,CAC9B,KAAK,CAAC;QACJ,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;QACjB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC,CACH,CAAC;IACF,uBAAuB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7C,gBAAgB,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACxD,iBAAiB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACvC,mBAAmB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACzC,gBAAgB,EAAE,MAAM,CAAC;IACzB;;;;;;;;;OASG;IACH,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,WAAW,EAAE,WAAW,CAAC;IACzB,SAAS,CAAC,EAAE,aAAa,CAAC;IAC1B,eAAe,CAAC,EAAE,CAAC,cAAc,EAAE,SAAS,GAAG;QAAE,MAAM,EAAE,SAAS,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,KAAK,IAAI,CAAC;IAC/G,gBAAgB,EAAE,MAAM,IAAI,CAAC;IAG7B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,eAAe,EAAE,cAAc,EAAE,CAAC;IAClC,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,KAAK,IAAI,CAAC;IAC7C,sBAAsB,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5C,oBAAoB,EAAE,CAAC,IAAI,EAAE,yBAAyB,KAAK,OAAO,CAAC,cAAc,CAAC,CAAC;CACpF;AAED,QAAA,MAAM,UAAU,uCAA8C,CAAC;AAM/D,MAAM,WAAW,uBAAuB;IACtC,QAAQ,EAAE,SAAS,CAAC;IACpB,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,iBAAiB,CAAC,EAAE,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;IAChD,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;CACrC;AA8JD,eAAO,MAAM,WAAW,EAAE,KAAK,CAAC,EAAE,CAAC,uBAAuB,CAy4CzD,CAAC;AAEF,eAAO,MAAM,kBAAkB,mCAAc,CAAC;AA4D9C,eAAO,MAAM,MAAM,QAAO,eAMzB,CAAC;AAEF,eAAe,UAAU,CAAC"}

package/lib/typescript/module/ui/hooks/mutations/useAccountMutations.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"useAccountMutations.d.ts","sourceRoot":"","sources":["../../../../../../src/ui/hooks/mutations/useAccountMutations.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,gBAAgB,EAChB,uBAAuB,EACvB,eAAe,EACf,IAAI,EACJ,eAAe,EAChB,MAAM,aAAa,CAAC;AAcrB;;GAEG;AACH,eAAO,MAAM,gBAAgB;;EA6F5B,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,eAAe;SAMQ,MAAM;WAAS,MAAM;WAAS,MAAM;WAAS,MAAM;;;EA4EtF,CAAC;AAEF;;;;;;;;;;GAUG;AACH,UAAU,8BAA8B;IACtC,yCAAyC;IACzC,OAAO,EAAE,OAAO,CAAC,eAAe,CAAC,CAAC;IAClC;;;;OAIG;IACH,WAAW,EAAE,IAAI,CAAC;CACnB;AAED;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,wBAAwB;sBAoFf,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;sBARnD,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;sBARnD,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;sBARnD,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;iBA7PpB,CAAC;gBAAsB,CAAC;gBAAsB,CAAC;;;;;;;;;;iBAM1F,CAAL;uBAGC,CAAD;iBAAuB,CAAC;;;;qBAEtB,CAAA;qBAA2B,CAAC;;;;;;;;;oBAM7B,CAAL;kBAEe,CAAC;mBAAyB,CAAC;;;mBAC1B,CAAC;;;;;;;;;;;;;;;;;;;;;;CAiPjB,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,wBAAwB;cAMoB,OAAO,CAAC,eAAe,CAAC;aAAW,MAAM;;;;cAgJjG,CAAC;AAEF,4CAA4C;AAC5C,UAAU,YAAY;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,QAAQ,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,CAAC,CAAC;CACxI;AAED,4EAA4E;AAC5E,UAAU,YAAY;IACpB,IAAI,CAAC,EAAE,YAAY,CAAC;IACpB,KAAK,CAAC,EAAE,YAAY,EAAE,CAAC;IACvB,EAAE,CAAC,EAAE,MAAM,CAAC;CACb;AAED;;;;GAIG;AACH,eAAO,MAAM,gCAAgC;;EAmD5C,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,wBAAwB;;EA+CpC,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,sBAAsB,uFAoBlC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa;UAWd,gBAAgB;iBACT,SAAS,GAAG,QAAQ,GAAG,UAAU;eACnC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;iBACrB,CAAC,QAAQ,EAAE,MAAM,KAAK,IAAI;WAS5C,CAAC"}
+{"version":3,"file":"useAccountMutations.d.ts","sourceRoot":"","sources":["../../../../../../src/ui/hooks/mutations/useAccountMutations.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,gBAAgB,EAChB,uBAAuB,EACvB,eAAe,EACf,IAAI,EACJ,eAAe,EAChB,MAAM,aAAa,CAAC;AAcrB;;GAEG;AACH,eAAO,MAAM,gBAAgB;;EA6F5B,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,eAAe;SAMQ,MAAM;WAAS,MAAM;WAAS,MAAM;WAAS,MAAM;;;EA4EtF,CAAC;AAEF;;;;;;;;;;GAUG;AACH,UAAU,8BAA8B;IACtC,yCAAyC;IACzC,OAAO,EAAE,OAAO,CAAC,eAAe,CAAC,CAAC;IAClC;;;;OAIG;IACH,WAAW,EAAE,IAAI,CAAC;CACnB;AAED;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,wBAAwB;sBAoFf,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;sBARnD,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;sBARnD,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;sBARnD,OAAO,CAAC,eAAe,CAAC,KAAG,IAAI;2BAQpB,OAAO,CAAC,eAAe,CAAC,KAAG,OAAO,CAAC,IAAI,CAAC;;;;;;;;;;iBAjP1D,CAAC;gBAEV,CADH;gBAAsB,CAAC;;;;;;;;;;iBAMjB,CAAA;uBAA6B,CAAC;iBAAuB,CAAC;;;;qBAGnD,CAAC;qBAA2B,CAAC;;;;;;;;;oBAMhC,CAAA;kBAAwB,CAAC;mBAAyB,CAAC;;;mBAC1B,CAAC;;;;;;;;;;;;;;;;;;;;;;CAwOlC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,wBAAwB;cAMoB,OAAO,CAAC,eAAe,CAAC;aAAW,MAAM;;;;cAgJjG,CAAC;AAEF,4CAA4C;AAC5C,UAAU,YAAY;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,QAAQ,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,CAAC,CAAC;CACxI;AAED,4EAA4E;AAC5E,UAAU,YAAY;IACpB,IAAI,CAAC,EAAE,YAAY,CAAC;IACpB,KAAK,CAAC,EAAE,YAAY,EAAE,CAAC;IACvB,EAAE,CAAC,EAAE,MAAM,CAAC;CACb;AAED;;;;GAIG;AACH,eAAO,MAAM,gCAAgC;;EAmD5C,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,wBAAwB;;EA+CpC,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,sBAAsB,uFAoBlC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa;UAWd,gBAAgB;iBACT,SAAS,GAAG,QAAQ,GAAG,UAAU;eACnC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;iBACrB,CAAC,QAAQ,EAAE,MAAM,KAAK,IAAI;WAS5C,CAAC"}

package/lib/typescript/module/ui/hooks/useWebSSO.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"useWebSSO.d.ts","sourceRoot":"","sources":["../../../../../src/ui/hooks/useWebSSO.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAGH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAExD,UAAU,gBAAgB;IACxB,WAAW,EAAE,WAAW,CAAC;IACzB,cAAc,EAAE,CAAC,OAAO,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACjE,gBAAgB,CAAC,EAAE,MAAM,IAAI,CAAC;IAC9B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;IACjC,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,UAAU,eAAe;IACvB,iCAAiC;IACjC,QAAQ,EAAE,MAAM,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC,CAAC;IACrD,2DAA2D;IAC3D,eAAe,EAAE,MAAM,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC,CAAC;IAC5D,uCAAuC;IACvC,UAAU,EAAE,OAAO,CAAC;IACpB,iDAAiD;IACjD,gBAAgB,EAAE,OAAO,CAAC;CAC3B;AAgCD;;GAEG;AACH,iBAAS,YAAY,IAAI,OAAO,CAI/B;AAgBD;;;;;;;;;;;;;;;GAeG;AACH,wBAAgB,SAAS,CAAC,EACxB,WAAW,EACX,cAAc,EACd,gBAAgB,EAChB,OAAO,EACP,OAAc,GACf,EAAE,gBAAgB,GAAG,eAAe,CAwHpC;AAED,OAAO,EAAE,YAAY,EAAE,CAAC"}
+{"version":3,"file":"useWebSSO.d.ts","sourceRoot":"","sources":["../../../../../src/ui/hooks/useWebSSO.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAGH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAGxD,UAAU,gBAAgB;IACxB,WAAW,EAAE,WAAW,CAAC;IACzB,cAAc,EAAE,CAAC,OAAO,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACjE,gBAAgB,CAAC,EAAE,MAAM,IAAI,CAAC;IAC9B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;IACjC,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,UAAU,eAAe;IACvB,iCAAiC;IACjC,QAAQ,EAAE,MAAM,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC,CAAC;IACrD,2DAA2D;IAC3D,eAAe,EAAE,MAAM,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC,CAAC;IAC5D,uCAAuC;IACvC,UAAU,EAAE,OAAO,CAAC;IACpB,iDAAiD;IACjD,gBAAgB,EAAE,OAAO,CAAC;CAC3B;AA8BD;;GAEG;AACH,iBAAS,YAAY,IAAI,OAAO,CAI/B;AAgBD;;;;;;;;;;;;;;;GAeG;AACH,wBAAgB,SAAS,CAAC,EACxB,WAAW,EACX,cAAc,EACd,gBAAgB,EAChB,OAAO,EACP,OAAc,GACf,EAAE,gBAAgB,GAAG,eAAe,CAwHpC;AAED,OAAO,EAAE,YAAY,EAAE,CAAC"}

package/lib/typescript/module/ui/screens/OxyAuthScreen.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"OxyAuthScreen.d.ts","sourceRoot":"","sources":["../../../../../src/ui/screens/OxyAuthScreen.tsx"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAW/B,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AA0F3D,QAAA,MAAM,aAAa,EAAE,KAAK,CAAC,EAAE,CAAC,eAAe,CA6X5C,CAAC;AA6FF,eAAe,aAAa,CAAC"}
+{"version":3,"file":"OxyAuthScreen.d.ts","sourceRoot":"","sources":["../../../../../src/ui/screens/OxyAuthScreen.tsx"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAW/B,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AA0F3D,QAAA,MAAM,aAAa,EAAE,KAAK,CAAC,EAAE,CAAC,eAAe,CAwY5C,CAAC;AA6FF,eAAe,aAAa,CAAC"}

package/lib/typescript/module/ui/types/navigation.d.ts

@@ -30,13 +30,15 @@ export interface OxyProviderProps {
     onAuthStateChange?: (user: unknown) => void;
     storageKeyPrefix?: string;
     /**
-     * Human-readable name of the consuming app (e.g. "Mention", "Homiio").
-     * Surfaced on the central Oxy sign-in / consent experience as
-     * "{appName} wants to access your Oxy account". When omitted, the SDK
-     * derives a name from `storageKeyPrefix`, then `document.title` (web),
-     * falling back to the platform. Set this to guarantee correct branding.
+     * The app's Oxy OAuth client id / ApplicationCredential publicKey.
+     * Required for the cross-app device sign-in flow: the QR / popup
+     * sign-in registers a device-flow session via `POST /auth/session/create`,
+     * which now identifies the requesting app by this real registered
+     * client id. The central Oxy auth experience resolves and renders the
+     * consent identity from it server-side. Without it the device sign-in
+     * flow cannot start.
      */
-    appName?: string;
+    clientId?: string;
     baseURL?: string;
     authWebUrl?: string;
     authRedirectUri?: string;

package/lib/typescript/module/ui/types/navigation.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"navigation.d.ts","sourceRoot":"","sources":["../../../../../src/ui/types/navigation.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,OAAO,CAAC;AAClD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAKtD,YAAY,EAAE,SAAS,EAAE,CAAC;AAE1B,MAAM,WAAW,cAAc;IAC3B,SAAS,EAAE,MAAM,OAAO,CAAC;IACzB,MAAM,EAAE,MAAM,IAAI,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAE5B,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;IACxE,MAAM,CAAC,EAAE,MAAM,IAAI,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,IAAI,CAAC;IACrB,eAAe,CAAC,EAAE,CAAC,OAAO,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;IAG9C,KAAK,CAAC,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;IAGlC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,iBAAiB,CAAC,EAAE,SAAS,CAAC,cAAc,GAAG,IAAI,CAAC,CAAC;IACrD,YAAY,CAAC,EAAE,CAAC,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,KAAK,IAAI,CAAC;IAGjE,aAAa,CAAC,EAAE,SAAS,CAAC;IAG1B,QAAQ,CAAC,EAAE,CAAC,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;IAGnD,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,OAAO,CAAC;IAMtB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CAC1B;AAED,MAAM,WAAW,gBAAgB;IAC7B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,SAAS,CAAC;IACrB,iBAAiB,CAAC,EAAE,CAAC,IAAI,EAAE,OAAO,KAAK,IAAI,CAAC;IAC5C,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;;;;;;OAMG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,WAAW,CAAC;CAC7B"}
+{"version":3,"file":"navigation.d.ts","sourceRoot":"","sources":["../../../../../src/ui/types/navigation.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,OAAO,CAAC;AAClD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAKtD,YAAY,EAAE,SAAS,EAAE,CAAC;AAE1B,MAAM,WAAW,cAAc;IAC3B,SAAS,EAAE,MAAM,OAAO,CAAC;IACzB,MAAM,EAAE,MAAM,IAAI,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAE5B,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;IACxE,MAAM,CAAC,EAAE,MAAM,IAAI,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,IAAI,CAAC;IACrB,eAAe,CAAC,EAAE,CAAC,OAAO,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;IAG9C,KAAK,CAAC,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;IAGlC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,iBAAiB,CAAC,EAAE,SAAS,CAAC,cAAc,GAAG,IAAI,CAAC,CAAC;IACrD,YAAY,CAAC,EAAE,CAAC,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,KAAK,IAAI,CAAC;IAGjE,aAAa,CAAC,EAAE,SAAS,CAAC;IAG1B,QAAQ,CAAC,EAAE,CAAC,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC;IAGnD,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,OAAO,CAAC;IAMtB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CAC1B;AAED,MAAM,WAAW,gBAAgB;IAC7B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,SAAS,CAAC;IACrB,iBAAiB,CAAC,EAAE,CAAC,IAAI,EAAE,OAAO,KAAK,IAAI,CAAC;IAC5C,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;;;;;;;;OAQG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,WAAW,CAAC;CAC7B"}

package/lib/typescript/module/utils/silentGuardKey.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Shared, pure helpers for building the `origin|baseURL` signature used as the
+ * module-level run-once guard key for cold-boot silent-SSO probes
+ * (`silentColdBootKey` in `OxyContext`, `ssoSignature` in `useWebSSO`).
+ *
+ * NATIVE SAFETY (the bug this fixes): React Native aliases a global `window`
+ * (it points at the JS global object), so `typeof window !== 'undefined'` is
+ * `true` on native — but `window.location` is `undefined`. Reading
+ * `window.location.origin` after only a `typeof window` check therefore throws
+ * `TypeError: Cannot read property 'origin' of undefined` on native. Because
+ * the key is built UNCONDITIONALLY at the top of the cold-boot path (before its
+ * try/catch), that throw escaped session restore entirely and broke
+ * cross-session restore on native. Both prior copies of the guard had the same
+ * insufficient `typeof window` check and were prone to drift, so the read is
+ * consolidated here behind a guard that also verifies `window.location`.
+ */
+/**
+ * Read `window.location.origin` safely on every platform.
+ *
+ * Returns the browser origin on web, and the sentinel `'no-origin'` anywhere
+ * `window.location` is absent (React Native, SSR/Node). Never throws.
+ */
+export declare function safeWindowOrigin(): string;
+/**
+ * Build the stable `origin|baseURL` signature for the silent-SSO run-once
+ * guard. Two providers pointed at the same API from the same origin share one
+ * attempt. `getBaseURL` is invoked defensively (it may be absent or throw on a
+ * partially-initialised client); any failure degrades to an empty baseURL.
+ */
+export declare function buildSilentGuardKey(getBaseURL?: () => string | undefined): string;
+//# sourceMappingURL=silentGuardKey.d.ts.map

package/lib/typescript/module/utils/silentGuardKey.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"silentGuardKey.d.ts","sourceRoot":"","sources":["../../../../src/utils/silentGuardKey.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH;;;;;GAKG;AACH,wBAAgB,gBAAgB,IAAI,MAAM,CAKzC;AAED;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,UAAU,CAAC,EAAE,MAAM,MAAM,GAAG,SAAS,GAAG,MAAM,CASjF"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@oxyhq/services",
-  "version": "8.7.0",
+  "version": "10.0.0",
   "description": "OxyHQ Expo/React Native SDK — UI components, screens, and native features",
   "main": "lib/commonjs/index.js",
   "module": "lib/module/index.js",
@@ -160,7 +160,7 @@
   "peerDependencies": {
     "@expo/vector-icons": "^15.0.3",
     "@oxyhq/bloom": ">=0.5.0",
-    "@oxyhq/core": "^2.4.1",
+    "@oxyhq/core": "^3.2.0",
     "@react-native-community/netinfo": "^11.4.1",
     "@tanstack/query-async-storage-persister": "^5.100",
     "@tanstack/query-sync-storage-persister": "^5.100",

package/src/ui/components/OxyProvider.tsx

@@ -103,7 +103,7 @@ const OxyProvider: FC<OxyProviderProps> = ({
     children,
     onAuthStateChange,
     storageKeyPrefix,
-    appName,
+    clientId,
     baseURL,
     authWebUrl,
     authRedirectUri,
@@ -297,7 +297,7 @@ const OxyProvider: FC<OxyProviderProps> = ({
                     authWebUrl={authWebUrl}
                     authRedirectUri={authRedirectUri}
                     storageKeyPrefix={storageKeyPrefix}
-                    appName={appName}
+                    clientId={clientId}
                     onAuthStateChange={onAuthStateChange as OxyContextProviderProps['onAuthStateChange']}
                 >
                     {children}

package/src/ui/components/SignInModal.tsx

@@ -93,7 +93,7 @@ const SignInModal: React.FC = () => {
 
     const insets = useSafeAreaInsets();
     const theme = useTheme();
-    const { oxyServices, switchSession, appName } = useOxy();
+    const { oxyServices, switchSession, clientId } = useOxy();
 
     const socketRef = useRef<Socket | null>(null);
     const pollingIntervalRef = useRef<ReturnType<typeof setInterval> | null>(null);
@@ -266,6 +266,17 @@ const SignInModal: React.FC = () => {
         setError(null);
         isProcessingRef.current = false;
 
+        // The cross-app device sign-in flow identifies the requesting app by its
+        // real registered OAuth client id (ApplicationCredential publicKey).
+        // Without it the API cannot resolve the consent identity, so we fail
+        // fast with a clear configuration error rather than creating a session
+        // the server would reject.
+        if (!clientId) {
+            setError('This app is not configured for sign-in (missing clientId).');
+            setIsLoading(false);
+            return;
+        }
+
         try {
             const sessionToken = generateSessionToken();
             const expiresAt = Date.now() + AUTH_SESSION_EXPIRY_MS;
@@ -273,7 +284,7 @@ const SignInModal: React.FC = () => {
             await oxyServices.makeRequest('POST', '/auth/session/create', {
                 sessionToken,
                 expiresAt,
-                appId: appName,
+                clientId,
             }, { cache: false });
 
             setAuthSession({ sessionToken, expiresAt });
@@ -284,7 +295,7 @@ const SignInModal: React.FC = () => {
         } finally {
             setIsLoading(false);
         }
-    }, [oxyServices, connectSocket, appName]);
+    }, [oxyServices, connectSocket, clientId]);
 
     // Generate a cryptographically random session token.
     // 16 random bytes -> 32 hex chars (128 bits of entropy) — unguessable.

package/src/ui/context/OxyContext.tsx

@@ -42,7 +42,6 @@ import { useDeviceManagement } from '../hooks/useDeviceManagement';
 import { getStorageKeys, createPlatformStorage, type StorageInterface } from '../utils/storageHelpers';
 import { isInvalidSessionError, isTimeoutOrNetworkError } from '../utils/errorHandlers';
 import { readActiveAuthuser, writeActiveAuthuser } from '../utils/activeAuthuser';
-import { resolveAppDisplayName } from '../utils/appName';
 import type { RouteName } from '../navigation/routes';
 import { showBottomSheet as globalShowBottomSheet } from '../navigation/bottomSheetManager';
 import { useQueryClient } from '@tanstack/react-query';
@@ -51,6 +50,7 @@ import { useAvatarPicker } from '../hooks/useAvatarPicker';
 import { useAccountStore } from '../stores/accountStore';
 import { logger as loggerUtil } from '@oxyhq/core';
 import { useWebSSO, isWebBrowser } from '../hooks/useWebSSO';
+import { buildSilentGuardKey } from '../../utils/silentGuardKey';
 
 export interface OxyContextState {
   user: User | null;
@@ -116,12 +116,16 @@ export interface OxyContextState {
   clearAllAccountData: () => Promise<void>;
   storageKeyPrefix: string;
   /**
-   * Resolved human-readable app display name surfaced on the central Oxy
-   * sign-in / consent experience (e.g. "Mention wants to access your Oxy
-   * account"). Always non-empty — derived from the `appName` prop, then
-   * `storageKeyPrefix`, then `document.title` (web), then the platform.
+   * The app's Oxy OAuth client id / ApplicationCredential publicKey, as
+   * supplied via the `clientId` prop. Required for the cross-app device
+   * sign-in flow: the sign-in components send it to
+   * `POST /auth/session/create` so the API can identify the requesting app by
+   * its real registered client id (the consent identity is then resolved
+   * server-side and shown by the central auth web). `null` when the consuming
+   * app did not configure a client id — the device sign-in flow surfaces a
+   * configuration error in that case.
    */
-  appName: string;
+  clientId: string | null;
   oxyServices: OxyServices;
   useFollow?: UseFollowHook;
   showBottomSheet?: (screenOrConfig: RouteName | { screen: RouteName; props?: Record<string, unknown> }) => void;
@@ -149,10 +153,10 @@ export interface OxyContextProviderProps {
   authRedirectUri?: string;
   storageKeyPrefix?: string;
   /**
-   * Human-readable name of the consuming app shown on the central Oxy
-   * sign-in / consent experience. See {@link OxyContextState.appName}.
+   * The app's Oxy OAuth client id / ApplicationCredential publicKey; required
+   * for the cross-app device sign-in flow. See {@link OxyContextState.clientId}.
    */
-  appName?: string;
+  clientId?: string;
   onAuthStateChange?: (user: User | null) => void;
   onError?: (error: ApiError) => void;
 }
@@ -181,14 +185,15 @@ const servicesSilentAttempted = new Set<string>();
  * Build the `origin|baseURL` signature used as the silent-cold-boot guard key.
  */
 function silentColdBootKey(oxyServices: OxyServices): string {
-  const origin = typeof window !== 'undefined' ? window.location.origin : 'no-origin';
-  let baseURL = '';
-  try {
-    baseURL = oxyServices.getBaseURL?.() ?? '';
-  } catch {
-    baseURL = '';
-  }
-  return `${origin}|${baseURL}`;
+  // `buildSilentGuardKey` reads `window.location.origin` behind a guard that
+  // also verifies `window.location` exists. This is critical: it runs
+  // UNCONDITIONALLY at the top of `restoreSessionsFromStorage` (before the
+  // cold-boot try/catch) on EVERY platform, and React Native aliases a global
+  // `window` with NO `window.location`. Without that guard the read threw
+  // `Cannot read property 'origin' of undefined` on native, escaping the
+  // restore path so `markAuthResolved` never ran and stored-session restore was
+  // never reached.
+  return buildSilentGuardKey(() => oxyServices.getBaseURL?.());
 }
 
 /**
@@ -258,7 +263,12 @@ const COLD_BOOT_OVERALL_DEADLINE = 20000;
  * off-browser.
  */
 function isSameSiteIdP(idpOrigin: string): boolean {
-  if (typeof window === 'undefined') return false;
+  // Native defines a global `window` but no `window.location`; guard the
+  // latter so reading `.hostname` can never throw off-browser. (Only reachable
+  // from the web-only visibility check, but kept robust for parity.)
+  if (typeof window === 'undefined' || typeof window.location === 'undefined') {
+    return false;
+  }
   let idpHostname: string;
   try {
     idpHostname = new URL(idpOrigin).hostname;
@@ -314,7 +324,7 @@ export const OxyProvider: React.FC<OxyContextProviderProps> = ({
   authWebUrl,
   authRedirectUri,
   storageKeyPrefix = 'oxy_session',
-  appName: appNameProp,
+  clientId: clientIdProp,
   onAuthStateChange,
   onError,
 }) => {
@@ -424,13 +434,16 @@ export const OxyProvider: React.FC<OxyContextProviderProps> = ({
 
   const storageKeys = useMemo(() => getStorageKeys(storageKeyPrefix), [storageKeyPrefix]);
 
-  // Human-readable app display name for the central sign-in / consent UI.
-  // Derived once from the consumer config; never "web" unless the app supplies
-  // no name, no custom prefix, and no document title.
-  const appName = useMemo(
-    () => resolveAppDisplayName(appNameProp, storageKeyPrefix),
-    [appNameProp, storageKeyPrefix],
-  );
+  // The app's Oxy OAuth client id surfaced on the context so the cross-app
+  // device sign-in components (SignInModal / OxyAuthScreen) can identify the
+  // requesting app to `POST /auth/session/create`. Normalized to a trimmed
+  // non-empty string, or `null` when the consumer did not configure one — the
+  // sign-in components surface a clear configuration error in that case rather
+  // than falling back to any display string.
+  const clientId = useMemo(() => {
+    const trimmed = clientIdProp?.trim();
+    return trimmed ? trimmed : null;
+  }, [clientIdProp]);
 
   // Storage initialization.
   //
@@ -1666,7 +1679,7 @@ export const OxyProvider: React.FC<OxyContextProviderProps> = ({
     clearSessionState,
     clearAllAccountData,
     storageKeyPrefix,
-    appName,
+    clientId,
     oxyServices,
     useFollow: useFollowHook,
     showBottomSheet: showBottomSheetForContext,
@@ -1695,7 +1708,7 @@ export const OxyProvider: React.FC<OxyContextProviderProps> = ({
     logoutAllDeviceSessions,
     oxyServices,
     storageKeyPrefix,
-    appName,
+    clientId,
     refreshSessionsWithUser,
     sessions,
     setLanguage,
@@ -1773,7 +1786,7 @@ const LOADING_STATE: OxyContextState = {
   clearSessionState: () => rejectMissingProvider<void>(),
   clearAllAccountData: () => rejectMissingProvider<void>(),
   storageKeyPrefix: 'oxy_session',
-  appName: resolveAppDisplayName(undefined, undefined),
+  clientId: null,
   oxyServices: LOADING_STATE_OXY_SERVICES,
   openAvatarPicker: () => {},
   actingAs: null,

package/src/ui/hooks/useWebSSO.ts

@@ -18,6 +18,7 @@
 import { useEffect, useRef, useCallback } from 'react';
 import type { OxyServices } from '@oxyhq/core';
 import type { SessionLoginResponse } from '@oxyhq/core';
+import { buildSilentGuardKey } from '../../utils/silentGuardKey';
 
 interface UseWebSSOOptions {
   oxyServices: OxyServices;
@@ -58,14 +59,12 @@ const silentSSOAttempted = new Set<string>();
  * pointed at the same API from the same origin share one attempt.
  */
 function ssoSignature(oxyServices: OxyServices): string {
-  const origin = typeof window !== 'undefined' ? window.location.origin : 'no-origin';
-  let baseURL = '';
-  try {
-    baseURL = oxyServices.getBaseURL?.() ?? '';
-  } catch {
-    baseURL = '';
-  }
-  return `${origin}|${baseURL}`;
+  // Shared with `OxyContext.silentColdBootKey`. `buildSilentGuardKey` reads
+  // `window.location.origin` behind a guard that also verifies
+  // `window.location` exists — React Native aliases a global `window` with NO
+  // `window.location`, so a `typeof window`-only check would throw
+  // `Cannot read property 'origin' of undefined` off-browser.
+  return buildSilentGuardKey(() => oxyServices.getBaseURL?.());
 }
 
 /**

package/src/ui/screens/OxyAuthScreen.tsx

@@ -119,7 +119,7 @@ const OxyAuthScreen: React.FC<BaseScreenProps> = ({
   theme,
 }) => {
   const bloomTheme = useTheme();
-  const { oxyServices, signIn, switchSession, appName } = useOxy();
+  const { oxyServices, signIn, switchSession, clientId } = useOxy();
 
   const [authSession, setAuthSession] = useState<AuthSession | null>(null);
   const [isLoading, setIsLoading] = useState(true);
@@ -264,6 +264,17 @@ const OxyAuthScreen: React.FC<BaseScreenProps> = ({
     setError(null);
     isProcessingRef.current = false;
 
+    // The cross-app device sign-in flow identifies the requesting app by its
+    // real registered OAuth client id (ApplicationCredential publicKey).
+    // Without it the API cannot resolve the consent identity, so we fail fast
+    // with a clear configuration error rather than creating a session the
+    // server would reject.
+    if (!clientId) {
+      setError('This app is not configured for sign-in (missing clientId).');
+      setIsLoading(false);
+      return;
+    }
+
     try {
       // Generate a unique session token for this auth request
       const sessionToken = generateSessionToken();
@@ -273,7 +284,7 @@ const OxyAuthScreen: React.FC<BaseScreenProps> = ({
       await oxyServices.makeRequest('POST', '/auth/session/create', {
         sessionToken,
         expiresAt,
-        appId: appName,
+        clientId,
       }, { cache: false });
 
       setAuthSession({ sessionToken, expiresAt });
@@ -286,7 +297,7 @@ const OxyAuthScreen: React.FC<BaseScreenProps> = ({
     } finally {
       setIsLoading(false);
     }
-  }, [oxyServices, connectSocket, appName]);
+  }, [oxyServices, connectSocket, clientId]);
 
   // Generate a random session token
   const generateSessionToken = (): string => {

package/src/ui/types/navigation.ts

@@ -53,13 +53,15 @@ export interface OxyProviderProps {
     onAuthStateChange?: (user: unknown) => void;
     storageKeyPrefix?: string;
     /**
-     * Human-readable name of the consuming app (e.g. "Mention", "Homiio").
-     * Surfaced on the central Oxy sign-in / consent experience as
-     * "{appName} wants to access your Oxy account". When omitted, the SDK
-     * derives a name from `storageKeyPrefix`, then `document.title` (web),
-     * falling back to the platform. Set this to guarantee correct branding.
+     * The app's Oxy OAuth client id / ApplicationCredential publicKey.
+     * Required for the cross-app device sign-in flow: the QR / popup
+     * sign-in registers a device-flow session via `POST /auth/session/create`,
+     * which now identifies the requesting app by this real registered
+     * client id. The central Oxy auth experience resolves and renders the
+     * consent identity from it server-side. Without it the device sign-in
+     * flow cannot start.
      */
-    appName?: string;
+    clientId?: string;
     baseURL?: string;
     authWebUrl?: string;
     authRedirectUri?: string;

package/src/utils/__tests__/silentGuardKey.test.ts

@@ -0,0 +1,82 @@
+/**
+ * @jest-environment node
+ *
+ * Regression coverage for the native session-restore crash:
+ *
+ *   W [component:OxyContext]: Failed to restore sessions from storage
+ *   [TypeError: Cannot read property 'origin' of undefined]
+ *
+ * `silentColdBootKey` (OxyContext) and `ssoSignature` (useWebSSO) both build an
+ * `origin|baseURL` guard signature UNCONDITIONALLY at the top of the cold-boot
+ * path, on every platform. React Native aliases a global `window` (so
+ * `typeof window !== 'undefined'` is `true`) but provides NO `window.location`.
+ * The previous `typeof window`-only guard then read `window.location.origin`
+ * and threw `Cannot read property 'origin' of undefined`, escaping session
+ * restore entirely. Both call sites now delegate to the shared, guarded
+ * `buildSilentGuardKey`, verified here under all three platform shapes.
+ *
+ * Runs in the `node` environment so `window` is genuinely controllable — under
+ * jsdom `window.location` is non-configurable and cannot be removed, so the
+ * native shape (window present, location absent) is not reproducible there.
+ */
+
+import { buildSilentGuardKey, safeWindowOrigin } from '../silentGuardKey';
+
+describe('silentGuardKey native safety', () => {
+  const globalRef = globalThis as { window?: unknown };
+
+  afterEach(() => {
+    delete globalRef.window;
+  });
+
+  describe('safeWindowOrigin', () => {
+    it('returns "no-origin" when there is no window (Node / SSR)', () => {
+      delete globalRef.window;
+      expect(safeWindowOrigin()).toBe('no-origin');
+    });
+
+    it('returns "no-origin" on React Native (window present, no location)', () => {
+      // EXACT native shape: RN aliases a global `window` to the JS global, but
+      // there is no `window.location`. The old `typeof window`-only guard threw
+      // here; the new guard must return the sentinel without throwing.
+      globalRef.window = {};
+      expect(() => safeWindowOrigin()).not.toThrow();
+      expect(safeWindowOrigin()).toBe('no-origin');
+    });
+
+    it('returns the browser origin on web', () => {
+      globalRef.window = { location: { origin: 'https://app.mention.earth' } };
+      expect(safeWindowOrigin()).toBe('https://app.mention.earth');
+    });
+  });
+
+  describe('buildSilentGuardKey', () => {
+    it('does not throw and composes "no-origin|" on React Native', () => {
+      globalRef.window = {};
+      const getBaseURL = () => 'https://api.mention.earth';
+      expect(() => buildSilentGuardKey(getBaseURL)).not.toThrow();
+      expect(buildSilentGuardKey(getBaseURL)).toBe('no-origin|https://api.mention.earth');
+    });
+
+    it('composes "origin|baseURL" on web', () => {
+      globalRef.window = { location: { origin: 'https://app.mention.earth' } };
+      expect(buildSilentGuardKey(() => 'https://api.mention.earth')).toBe(
+        'https://app.mention.earth|https://api.mention.earth',
+      );
+    });
+
+    it('degrades baseURL to empty when getBaseURL is absent', () => {
+      globalRef.window = {};
+      expect(buildSilentGuardKey()).toBe('no-origin|');
+    });
+
+    it('degrades baseURL to empty when getBaseURL throws', () => {
+      globalRef.window = {};
+      const throwing = (): string => {
+        throw new Error('client not initialised');
+      };
+      expect(() => buildSilentGuardKey(throwing)).not.toThrow();
+      expect(buildSilentGuardKey(throwing)).toBe('no-origin|');
+    });
+  });
+});