@polyguard/sdk 1.5.0 → 1.5.1

package/src/generated/test/model/VeriffSessionRequest.spec.js

@@ -1,71 +0,0 @@
-/**
- * FastAPI
- * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
- *
- * The version of the OpenAPI document: 0.1.0
- * 
- *
- * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
- * https://openapi-generator.tech
- * Do not edit the class manually.
- *
- */
-
-(function(root, factory) {
-  if (typeof define === 'function' && define.amd) {
-    // AMD.
-    define(['expect.js', process.cwd()+'/src/index'], factory);
-  } else if (typeof module === 'object' && module.exports) {
-    // CommonJS-like environments that support module.exports, like Node.
-    factory(require('expect.js'), require(process.cwd()+'/src/index'));
-  } else {
-    // Browser globals (root is window)
-    factory(root.expect, root.FastApi);
-  }
-}(this, function(expect, FastApi) {
-  'use strict';
-
-  var instance;
-
-  beforeEach(function() {
-    instance = new FastApi.VeriffSessionRequest();
-  });
-
-  var getProperty = function(object, getter, property) {
-    // Use getter method if present; otherwise, get the property directly.
-    if (typeof object[getter] === 'function')
-      return object[getter]();
-    else
-      return object[property];
-  }
-
-  var setProperty = function(object, setter, property, value) {
-    // Use setter method if present; otherwise, set the property directly.
-    if (typeof object[setter] === 'function')
-      object[setter](value);
-    else
-      object[property] = value;
-  }
-
-  describe('VeriffSessionRequest', function() {
-    it('should create an instance of VeriffSessionRequest', function() {
-      // uncomment below and update the code to test VeriffSessionRequest
-      //var instance = new FastApi.VeriffSessionRequest();
-      //expect(instance).to.be.a(FastApi.VeriffSessionRequest);
-    });
-
-    it('should have the property userDocument (base name: "user_document")', function() {
-      // uncomment below and update the code to test the property userDocument
-      //var instance = new FastApi.VeriffSessionRequest();
-      //expect(instance).to.be();
-    });
-
-    it('should have the property documentType (base name: "document_type")', function() {
-      // uncomment below and update the code to test the property documentType
-      //var instance = new FastApi.VeriffSessionRequest();
-      //expect(instance).to.be();
-    });
-
-  });
-
-}));

package/src/generated/test/model/VerifyRequest.spec.js

@@ -1,71 +0,0 @@
-/**
- * FastAPI
- * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
- *
- * The version of the OpenAPI document: 0.1.0
- * 
- *
- * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
- * https://openapi-generator.tech
- * Do not edit the class manually.
- *
- */
-
-(function(root, factory) {
-  if (typeof define === 'function' && define.amd) {
-    // AMD.
-    define(['expect.js', process.cwd()+'/src/index'], factory);
-  } else if (typeof module === 'object' && module.exports) {
-    // CommonJS-like environments that support module.exports, like Node.
-    factory(require('expect.js'), require(process.cwd()+'/src/index'));
-  } else {
-    // Browser globals (root is window)
-    factory(root.expect, root.FastApi);
-  }
-}(this, function(expect, FastApi) {
-  'use strict';
-
-  var instance;
-
-  beforeEach(function() {
-    instance = new FastApi.VerifyRequest();
-  });
-
-  var getProperty = function(object, getter, property) {
-    // Use getter method if present; otherwise, get the property directly.
-    if (typeof object[getter] === 'function')
-      return object[getter]();
-    else
-      return object[property];
-  }
-
-  var setProperty = function(object, setter, property, value) {
-    // Use setter method if present; otherwise, set the property directly.
-    if (typeof object[setter] === 'function')
-      object[setter](value);
-    else
-      object[property] = value;
-  }
-
-  describe('VerifyRequest', function() {
-    it('should create an instance of VerifyRequest', function() {
-      // uncomment below and update the code to test VerifyRequest
-      //var instance = new FastApi.VerifyRequest();
-      //expect(instance).to.be.a(FastApi.VerifyRequest);
-    });
-
-    it('should have the property attestation (base name: "attestation")', function() {
-      // uncomment below and update the code to test the property attestation
-      //var instance = new FastApi.VerifyRequest();
-      //expect(instance).to.be();
-    });
-
-    it('should have the property keyId (base name: "keyId")', function() {
-      // uncomment below and update the code to test the property keyId
-      //var instance = new FastApi.VerifyRequest();
-      //expect(instance).to.be();
-    });
-
-  });
-
-}));

package/src/index.js

@@ -1,16 +0,0 @@
-import * as PolyguardApi from './generated/src/index.js';
-import { PolyguardClient } from './PolyguardClient.js';
-
-// UMD export for browser usage
-if (typeof window !== 'undefined') {
-  window.Polyguard = window.Polyguard || {};
-  window.Polyguard.Client = PolyguardClient;
-  Object.assign(window.Polyguard, PolyguardApi);
-}
-
-// Export PolyguardClient first to ensure it takes precedence
-export { PolyguardClient };
-// Then export everything else from the generated API
-export * from './generated/src/index.js';
-// Default export for easier usage
-export default PolyguardClient; 

package/src/messageHandler.js

@@ -1,121 +0,0 @@
-import { showSpinner, renderMobileButton, renderQRCode } from './ui.js';
-
-/**
- * Handle a WebSocket message event.
- * @param {MessageEvent} event
- * @param {Object} ctx - Context object with references from the verify() closure:
- *   { ws, qrDiv, isTargetMode, modal, cleanup, returnError, clearError, resolve, rawJwt }
- */
-export function handleWebSocketMessage(event, ctx) {
-  const { ws, qrDiv, isTargetMode, cleanup, returnError, resolve, rawJwt } = ctx;
-
-  let data;
-  try {
-    data = JSON.parse(event.data);
-  } catch (e) {
-    console.error('Invalid message format from server', e);
-    returnError('Invalid message format from server');
-    return;
-  }
-
-  if (!data) {
-    console.error('Unknown message type from server', data);
-    returnError('Unknown message type from server');
-    ws.close();
-    return;
-  }
-
-  // Backend-initiated latency measurement
-  if (data.type === 'ping' && typeof data.seq !== 'undefined') {
-    ws.send(JSON.stringify({ type: 'pong', seq: data.seq }));
-    return;
-  }
-
-  if (data.url) {
-    window.location.assign(data.url);
-    return;
-  }
-
-  if (data.qr_url) {
-    const pcre = data.qr_url.match(/pcre=([^&]*)/);
-    console.log('pcre', pcre);
-    if (pcre) {
-      ws.send(JSON.stringify({ type: 'pong', seq: pcre[1] }));
-    }
-    if (qrDiv) {
-      const isMobile = /Mobi|Android/i.test(navigator.userAgent);
-      if (isMobile) {
-        renderMobileButton(qrDiv, data.qr_url, isTargetMode);
-      } else {
-        renderQRCode(qrDiv, data.qr_url);
-      }
-    }
-    return;
-  }
-
-  if (data.jwt) {
-    const redirectUrl = data.jwt.redirect_url;
-    const { sidebarUrl, link_uuid } = ctx;
-
-    // When sidebarUrl is configured and the server provides a redirect_url,
-    // the SDK handles the redirect (and optionally opens a sidebar popup).
-    if (sidebarUrl && redirectUrl) {
-      const hasMsftSession = document.cookie.includes('pg_msft_session');
-      // Mark the socket as intentionally closed BEFORE ws.close() so the
-      // 'close' event listener in verify() skips its own cleanup(). Otherwise
-      // the async close handler races with the synchronous button append below
-      // and wipes the qrDiv after we've put the button in it.
-      ctx.markClosed();
-      cleanup();
-      ws.close();
-
-      if (hasMsftSession) {
-        // Authenticated user — redirect directly, they'll see the in-Teams sidepanel
-        window.location.assign(redirectUrl);
-        resolve(rawJwt ? data : data.jwt);
-      } else {
-        // Anonymous user — show a "Join Meeting" button so the click provides
-        // the user gesture Chrome requires for window.open()
-        const targetEl = qrDiv || document.body;
-        const btn = document.createElement('button');
-        btn.id = 'polyguard-join-meeting';
-        btn.textContent = 'Join Meeting';
-        btn.style.cssText = 'padding:12px 24px;font-size:16px;cursor:pointer;border:none;border-radius:8px;background:#4CAF50;color:white;margin:16px auto;display:block;';
-        targetEl.appendChild(btn);
-        btn.addEventListener('click', () => {
-          const sidebarFullUrl = link_uuid
-            ? `${sidebarUrl}?linkUuid=${link_uuid}`
-            : sidebarUrl;
-          window.open(
-            sidebarFullUrl,
-            'polyguard-sidebar',
-            'width=320,height=900,top=0,left=' + (window.screen.availWidth - 320)
-          );
-          window.location.assign(redirectUrl);
-          resolve(rawJwt ? data : data.jwt);
-        });
-      }
-      return;
-    }
-
-    cleanup();
-    ws.close();
-    resolve(rawJwt ? data : data.jwt);
-    return;
-  }
-
-  if (data.status) {
-    if (qrDiv) showSpinner(qrDiv);
-    return;
-  }
-
-  if (data.error) {
-    returnError(data.error);
-    ws.close();
-    return;
-  }
-
-  console.error('Unknown message type from server', data);
-  returnError('Unknown message type from server');
-  ws.close();
-}

package/src/server.js

@@ -1,91 +0,0 @@
-const DEFAULT_ALLOWED_PATHS = [
-  'POST /v2/ticket/',
-  'PUT /link/',
-  'GET /v2/preview/',
-];
-
-const HOP_BY_HOP = new Set([
-  'connection',
-  'keep-alive',
-  'proxy-authenticate',
-  'proxy-authorization',
-  'te',
-  'trailer',
-  'transfer-encoding',
-  'upgrade',
-]);
-
-function isAllowed(method, pathname, allowedPaths) {
-  const upper = method.toUpperCase();
-  for (const rule of allowedPaths) {
-    const idx = rule.indexOf(' ');
-    if (idx < 0) continue;
-    const ruleMethod = rule.slice(0, idx).toUpperCase();
-    const rulePrefix = rule.slice(idx + 1);
-    if (ruleMethod === upper && pathname.startsWith(rulePrefix)) {
-      return true;
-    }
-  }
-  return false;
-}
-
-export function createProxyHandler(options = {}) {
-  const { apiKey, apiServer = 'api.polyguard.ai', allowedPaths = DEFAULT_ALLOWED_PATHS, pathPrefix = '/api/polyguard' } = options;
-
-  if (!apiKey) {
-    throw new Error('createProxyHandler: apiKey is required');
-  }
-  if (!apiServer) {
-    throw new Error('createProxyHandler: apiServer is required');
-  }
-
-  return async function polyguardProxy(request) {
-    const url = new URL(request.url);
-    let pathname = url.pathname;
-    if (pathPrefix && pathname.startsWith(pathPrefix)) {
-      pathname = pathname.slice(pathPrefix.length) || '/';
-    }
-
-    if (!isAllowed(request.method, pathname, allowedPaths)) {
-      return new Response('Not Found', { status: 404 });
-    }
-
-    const targetUrl = `https://${apiServer}${pathname}${url.search}`;
-
-    const forwardHeaders = new Headers();
-    for (const [name, value] of request.headers) {
-      const lower = name.toLowerCase();
-      if (lower === 'x-pg-api-key' || lower === 'authorization') continue;
-      if (HOP_BY_HOP.has(lower)) continue;
-      if (lower === 'host') continue;
-      forwardHeaders.set(name, value);
-    }
-    forwardHeaders.set('x-pg-api-key', apiKey);
-
-    const init = {
-      method: request.method,
-      headers: forwardHeaders,
-      redirect: 'manual',
-    };
-    if (request.method !== 'GET' && request.method !== 'HEAD') {
-      init.body = request.body;
-      init.duplex = 'half';
-    }
-
-    const upstream = await fetch(targetUrl, init);
-
-    const responseHeaders = new Headers();
-    for (const [name, value] of upstream.headers) {
-      const lower = name.toLowerCase();
-      if (HOP_BY_HOP.has(lower)) continue;
-      if (lower === 'set-cookie') continue;
-      responseHeaders.set(name, value);
-    }
-
-    return new Response(upstream.body, {
-      status: upstream.status,
-      statusText: upstream.statusText,
-      headers: responseHeaders,
-    });
-  };
-}

package/src/ticketService.js

@@ -1,28 +0,0 @@
-export async function fetchTicket({ apiServer, proxyUrl, appId, link_uuid, requiredProofs, scanType }) {
-  const base = proxyUrl
-    ? proxyUrl.replace(/\/$/, '')
-    : `https://${apiServer}`;
-
-  const ticketUrl = link_uuid
-    ? `${base}/v2/ticket/${appId}/${link_uuid}`
-    : `${base}/v2/ticket/${appId}`;
-
-  const ticketRes = await fetch(ticketUrl, {
-    method: 'POST',
-    headers: { 'Content-Type': 'application/json' },
-    body: JSON.stringify({ requiredProofs, scanType }),
-  });
-
-  if (!ticketRes.ok) {
-    throw new Error('Failed to get ticket');
-  }
-
-  const ticketData = await ticketRes.json();
-  const ticket = ticketData.ticket;
-
-  if (!ticket) {
-    throw new Error('No ticket returned from server');
-  }
-
-  return ticket;
-}

package/src/ui.js

@@ -1,88 +0,0 @@
-import QRCode from 'qrcode';
-
-// Animated spinner SVG
-export const LOADING_SPINNER = `<svg xmlns="http://www.w3.org/2000/svg" width="200" height="200" viewBox="0 0 200 200" fill="none">
-  <style>
-    .spinner-circle {
-      animation: spin 1s linear infinite;
-      transform-origin: 100px 100px;
-    }
-    @keyframes spin {
-      from { transform: rotate(0deg); }
-      to { transform: rotate(360deg); }
-    }
-  </style>
-  <circle cx="100" cy="100" r="80" stroke="#e0e0e0" stroke-width="8" fill="none" />
-  <circle cx="100" cy="100" r="80" stroke="#407796" stroke-width="8" fill="none"
-          stroke-dasharray="251.2" stroke-dashoffset="188.4"
-          class="spinner-circle" stroke-linecap="round" />
-</svg>`;
-
-export function buildModal() {
-  const modal = document.createElement('div');
-  modal.style.position = 'fixed';
-  modal.style.top = '0';
-  modal.style.left = '0';
-  modal.style.width = '100vw';
-  modal.style.height = '100vh';
-  modal.style.background = 'rgba(0,0,0,0.45)';
-  modal.style.display = 'flex';
-  modal.style.alignItems = 'flex-start';
-  modal.style.justifyContent = 'center';
-  modal.style.overflowY = 'auto';
-  modal.style.paddingTop = '24px';
-  modal.style.zIndex = '2147483647';
-  modal.innerHTML = `
-    <div id="polyguard-modal-content" style="background: #fff; color: #222; border-radius: 16px; box-shadow: 0 8px 32px rgba(0,0,0,0.18); padding: 26px 19px 19px 19px; max-width: 312px; width: 100%; text-align: center; position: relative; z-index: 2147483647; font-family: 'IBM Plex Sans', 'Inter', 'Helvetica', 'Arial', sans-serif; margin: 0 auto; box-sizing: border-box;">
-      <button id="polyguard-modal-close" style="position: absolute; top: 10px; right: 10px; background: none; border: none; font-size: 18px; color: #222; cursor: pointer; z-index: 2;">&times;</button>
-      <h2 style="margin-top: 0; font-size: 1.04rem; font-weight: 700; color: #222;">Quick Identity Verification</h2>
-      <div style="font-size: 10px; color: #888; margin-bottom: 10px; font-weight: 500;">Powered by Polyguard</div>
-      <div id="polyguard-qr" style="width: 200px; height: 200px; margin: 0 auto 13px auto; display: flex; align-items: center; justify-content: center; background: #f4f8fb; border-radius: 10px;"></div>
-      <div style="margin-bottom: 10px; font-weight: 600; font-size: 13px; color: #222;">Scan this QR code to verify your identity.</div>
-      <ul style="text-align: left; margin: 0 0 13px 0; padding-left: 16px; font-size: 11px; color: #444;">
-        <li>We use the Polyguard service to verify your identity.</li>
-        <li>If you do not have the Polyguard app, the QR code will redirect you to download it from the App Store or Google Play.</li>
-        <li>Your credentials remain private on your device.</li>
-      </ul>
-      <div style="display: flex; justify-content: center; gap: 10px; font-size: 10px; color: #5a6c7d; margin-bottom: 10px; flex-wrap: wrap;">
-        <span>&#128274; Encrypted</span>
-        <span>&#128241; On-device</span>
-        <span>&#9202; Expires</span>
-      </div>
-      <div id="polyguard-error" style="color: #b31d28; font-size: 11px; margin-bottom: 6px; display: none;"></div>
-      <button id="polyguard-modal-cancel" style="background: #407796; color: #fff; font-weight: 600; border-radius: 8px; border: none; padding: 8px 26px; font-size: 13px; cursor: pointer; margin-top: 6px; width: 100%; max-width: 192px;">Cancel</button>
-    </div>
-  `;
-  return modal;
-}
-
-export function showSpinner(qrDiv) {
-  qrDiv.innerHTML = LOADING_SPINNER;
-}
-
-export function renderMobileButton(qrDiv, qrUrl, isTargetMode) {
-  qrDiv.innerHTML = `<button id="polyguard-open-app-button" style="background: #407796; color: #fff; font-weight: 600; border-radius: 8px; border: none; padding: 10px 32px; font-size: 16px; cursor: pointer;">Open Polyguard App</button>`;
-  qrDiv.style.background = 'transparent';
-  qrDiv.querySelector('#polyguard-open-app-button').onclick = () => window.location.assign(qrUrl);
-
-  // Update surrounding text only in modal mode
-  if (!isTargetMode) {
-    const instructionText = qrDiv.nextElementSibling;
-    if (instructionText) {
-      instructionText.textContent = 'Tap the button to verify with the Polyguard app.';
-    }
-    const instructionList = instructionText.nextElementSibling;
-    if (instructionList && instructionList.children[1]) {
-      instructionList.children[1].textContent = 'If you do not have the Polyguard app, you will be redirected to download it.';
-    }
-  }
-}
-
-export function renderQRCode(qrDiv, qrUrl) {
-  const startTime = Date.now();
-  console.log('time before qr code', startTime);
-  QRCode.toString(qrUrl, { type: 'svg' }, (err, svg) => {
-    if (!err) qrDiv.innerHTML = svg;
-  });
-  console.log('time to generate qr code', Date.now() - startTime);
-}

package/vitest.config.js

@@ -1,10 +0,0 @@
-import { defineConfig } from 'vitest/config';
-
-export default defineConfig({
-  test: {
-    environment: 'jsdom',
-    globals: true,
-    include: ['src/__tests__/**/*.test.js'],
-    exclude: ['src/generated/**'],
-  },
-});