npm - @proveanything/smartlinks - Versions diffs - 1.14.16 → 1.14.17 - Mend

@proveanything/smartlinks 1.14.16 → 1.14.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/dist/api/authKit.d.ts CHANGED Viewed

@@ -96,6 +96,11 @@ export declare namespace authKit {
         clientName?: string;
     }): Promise<PasswordResetRequestResponse>;
     function verifyResetToken(clientId: string, token: string): Promise<VerifyResetTokenResponse>;
+    /**
+     * Complete a password reset / invite acceptance. On invite acceptance under
+     * `verify-auto-login` the server returns a session — adopt it so the caller is logged
+     * straight in (plain resets return no token and leave the bearer untouched).
+     */
     function completePasswordReset(clientId: string, token: string, newPassword: string): Promise<PasswordResetCompleteResponse>;
     function sendEmailVerification(clientId: string, data: {
         userId: string;
@@ -103,6 +108,7 @@ export declare namespace authKit {
         redirectUrl?: string;
         clientName?: string;
     }): Promise<EmailVerificationActionResponse>;
+    /** Verify an email token; under `verify-auto-login` the server returns a session — adopt it. */
     function verifyEmail(clientId: string, token: string): Promise<EmailVerifyTokenResponse>;
     function resendEmailVerification(clientId: string, data: {
         userId: string;

package/dist/api/authKit.js CHANGED Viewed

@@ -197,8 +197,18 @@ export var authKit;
         return post(`/authkit/${encodeURIComponent(clientId)}/auth/verify-reset-token`, { token });
     }
     authKit.verifyResetToken = verifyResetToken;
+    /**
+     * Complete a password reset / invite acceptance. On invite acceptance under
+     * `verify-auto-login` the server returns a session — adopt it so the caller is logged
+     * straight in (plain resets return no token and leave the bearer untouched).
+     */
     async function completePasswordReset(clientId, token, newPassword) {
-        return post(`/authkit/${encodeURIComponent(clientId)}/auth/complete-reset`, { token, newPassword });
+        const res = await post(`/authkit/${encodeURIComponent(clientId)}/auth/complete-reset`, { token, newPassword });
+        if (res.token) {
+            setBearerToken(res.token);
+            invalidateCache();
+        }
+        return res;
     }
     authKit.completePasswordReset = completePasswordReset;
     /* ===================================
@@ -208,8 +218,14 @@ export var authKit;
         return post(`/authkit/${encodeURIComponent(clientId)}/auth/send-verification`, data);
     }
     authKit.sendEmailVerification = sendEmailVerification;
+    /** Verify an email token; under `verify-auto-login` the server returns a session — adopt it. */
     async function verifyEmail(clientId, token) {
-        return post(`/authkit/${encodeURIComponent(clientId)}/auth/verify-email`, { token });
+        const res = await post(`/authkit/${encodeURIComponent(clientId)}/auth/verify-email`, { token });
+        if (res.token) {
+            setBearerToken(res.token);
+            invalidateCache();
+        }
+        return res;
     }
     authKit.verifyEmail = verifyEmail;
     async function resendEmailVerification(clientId, data) {

package/dist/docs/API_SUMMARY.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # Smartlinks API Summary
-Version: 1.14.16  |  Generated: 2026-06-01T09:33:51.336Z
+Version: 1.14.17  |  Generated: 2026-06-02T16:17:46.100Z
 This is a concise summary of all available API functions and types.
@@ -3053,6 +3053,13 @@ interface VerifyResetTokenResponse {
 interface PasswordResetCompleteResponse {
   success: boolean
   message: string
+  token?: string
+  user?: AuthKitUser
+  accountData?: Record<string, any> | null
+  emailVerificationMode?: 'immediate' | 'verify-auto-login' | 'verify-manual-login'
+  refreshToken?: string
+  refreshTokenExpiresAt?: number
+  expiresAt?: number
 }
 ```
@@ -8371,19 +8378,19 @@ Upsert contact identity after lightweight verification (public).
 Upsert contact identity after lightweight verification (public).
 **completePasswordReset**(clientId: string, token: string, newPassword: string) → `Promise<PasswordResetCompleteResponse>`
-Upsert contact identity after lightweight verification (public).
+Complete a password reset / invite acceptance. On invite acceptance under `verify-auto-login` the server returns a session — adopt it so the caller is logged straight in (plain resets return no token and leave the bearer untouched).
 **sendEmailVerification**(clientId: string, data: { userId: string; email: string; redirectUrl?: string; clientName?: string }) → `Promise<EmailVerificationActionResponse>`
-Upsert contact identity after lightweight verification (public).
+Complete a password reset / invite acceptance. On invite acceptance under `verify-auto-login` the server returns a session — adopt it so the caller is logged straight in (plain resets return no token and leave the bearer untouched).
 **verifyEmail**(clientId: string, token: string) → `Promise<EmailVerifyTokenResponse>`
-Upsert contact identity after lightweight verification (public).
+Verify an email token; under `verify-auto-login` the server returns a session — adopt it.
 **resendEmailVerification**(clientId: string, data: { userId: string; email: string; redirectUrl?: string; clientName?: string }) → `Promise<EmailVerificationActionResponse>`
-Upsert contact identity after lightweight verification (public).
+Verify an email token; under `verify-auto-login` the server returns a session — adopt it.
 **getProfile**(clientId: string) → `Promise<UserProfile>`
-Upsert contact identity after lightweight verification (public).
+Verify an email token; under `verify-auto-login` the server returns a session — adopt it.
 **updateProfile**(clientId: string, data: ProfileUpdateData) → `Promise<UpdateProfileResponse>`
 Update the authenticated user's profile and replace the bearer token when refreshed claims are returned.

package/dist/openapi.yaml CHANGED Viewed

@@ -8071,7 +8071,7 @@ paths:
     get:
       tags:
         - authKit
-      summary: authKit.getProfile
+      summary: "Verify an email token; under `verify-auto-login` the server returns a session — adopt it."
       operationId: authKit_getProfile
       security: []
       parameters:
@@ -8213,7 +8213,7 @@ paths:
     post:
       tags:
         - authKit
-      summary: authKit.completePasswordReset
+      summary: Complete a password reset / invite acceptance.
       operationId: authKit_completePasswordReset
       security: []
       parameters:
@@ -8579,7 +8579,7 @@ paths:
     post:
       tags:
         - authKit
-      summary: authKit.sendEmailVerification
+      summary: Complete a password reset / invite acceptance.
       operationId: authKit_sendEmailVerification
       security: []
       parameters:
@@ -8670,7 +8670,7 @@ paths:
     post:
       tags:
         - authKit
-      summary: authKit.verifyEmail
+      summary: "Verify an email token; under `verify-auto-login` the server returns a session — adopt it."
       operationId: authKit_verifyEmail
       security: []
       parameters:
@@ -18126,6 +18126,25 @@ components:
           type: boolean
         message:
           type: string
+        token:
+          type: string
+        user:
+          $ref: "#/components/schemas/AuthKitUser"
+        accountData:
+          type: object
+          additionalProperties: true
+        emailVerificationMode:
+          type: string
+          enum:
+            - immediate
+            - verify-auto-login
+            - verify-manual-login
+        refreshToken:
+          type: string
+        refreshTokenExpiresAt:
+          type: number
+        expiresAt:
+          type: number
       required:
         - success
         - message

package/dist/types/authKit.d.ts CHANGED Viewed

@@ -144,9 +144,36 @@ export interface VerifyResetTokenResponse {
     expiresAt?: number;
     message?: string;
 }
+/**
+ * Response from {@link authKit.completePasswordReset}.
+ *
+ * For a **plain password reset**, or an invite accepted under `verify-manual-login`,
+ * the server returns only `success` + `message` and the user is sent to the login screen.
+ *
+ * For **invite acceptance under `verify-auto-login`** (the default), the server also
+ * completes email verification and returns a full session — `token`, `user`, and
+ * `accountData` — so the user can be logged straight in, mirroring
+ * {@link EmailVerifyTokenResponse}. The native-only fields are populated when the request
+ * opted in via `initializeApi({ platform: 'native' })` (the `X-Client-Platform: native`
+ * header). Every session field is therefore optional.
+ */
 export interface PasswordResetCompleteResponse {
     success: boolean;
     message: string;
+    /** Session token (a `SL.` bearer JWT). Present only on invite auto-login. Adopt it and skip the login screen. */
+    token?: string;
+    /** The authenticated user. Present only when a `token` is returned. `emailVerified` is `true` once completion verifies the invite. */
+    user?: AuthKitUser;
+    /** The `clients[clientId]` account-data slice, or `null`. Present only when a `token` is returned. */
+    accountData?: Record<string, any> | null;
+    /** Configured verification mode echoed back; auto-login only occurs for `verify-auto-login`. */
+    emailVerificationMode?: 'immediate' | 'verify-auto-login' | 'verify-manual-login';
+    /** Opaque, single-use refresh token. **Native clients only** — pairs with the short-lived `token`. */
+    refreshToken?: string;
+    /** Absolute expiry of the refresh-token family, in **ms since epoch**. Native only. */
+    refreshTokenExpiresAt?: number;
+    /** Access-token expiry, in **ms since epoch**. Native only. */
+    expiresAt?: number;
 }
 export interface EmailVerificationActionResponse {
     success: boolean;

package/docs/API_SUMMARY.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # Smartlinks API Summary
-Version: 1.14.16  |  Generated: 2026-06-01T09:33:51.336Z
+Version: 1.14.17  |  Generated: 2026-06-02T16:17:46.100Z
 This is a concise summary of all available API functions and types.
@@ -3053,6 +3053,13 @@ interface VerifyResetTokenResponse {
 interface PasswordResetCompleteResponse {
   success: boolean
   message: string
+  token?: string
+  user?: AuthKitUser
+  accountData?: Record<string, any> | null
+  emailVerificationMode?: 'immediate' | 'verify-auto-login' | 'verify-manual-login'
+  refreshToken?: string
+  refreshTokenExpiresAt?: number
+  expiresAt?: number
 }
 ```
@@ -8371,19 +8378,19 @@ Upsert contact identity after lightweight verification (public).
 Upsert contact identity after lightweight verification (public).
 **completePasswordReset**(clientId: string, token: string, newPassword: string) → `Promise<PasswordResetCompleteResponse>`
-Upsert contact identity after lightweight verification (public).
+Complete a password reset / invite acceptance. On invite acceptance under `verify-auto-login` the server returns a session — adopt it so the caller is logged straight in (plain resets return no token and leave the bearer untouched).
 **sendEmailVerification**(clientId: string, data: { userId: string; email: string; redirectUrl?: string; clientName?: string }) → `Promise<EmailVerificationActionResponse>`
-Upsert contact identity after lightweight verification (public).
+Complete a password reset / invite acceptance. On invite acceptance under `verify-auto-login` the server returns a session — adopt it so the caller is logged straight in (plain resets return no token and leave the bearer untouched).
 **verifyEmail**(clientId: string, token: string) → `Promise<EmailVerifyTokenResponse>`
-Upsert contact identity after lightweight verification (public).
+Verify an email token; under `verify-auto-login` the server returns a session — adopt it.
 **resendEmailVerification**(clientId: string, data: { userId: string; email: string; redirectUrl?: string; clientName?: string }) → `Promise<EmailVerificationActionResponse>`
-Upsert contact identity after lightweight verification (public).
+Verify an email token; under `verify-auto-login` the server returns a session — adopt it.
 **getProfile**(clientId: string) → `Promise<UserProfile>`
-Upsert contact identity after lightweight verification (public).
+Verify an email token; under `verify-auto-login` the server returns a session — adopt it.
 **updateProfile**(clientId: string, data: ProfileUpdateData) → `Promise<UpdateProfileResponse>`
 Update the authenticated user's profile and replace the bearer token when refreshed claims are returned.

package/openapi.yaml CHANGED Viewed

@@ -8071,7 +8071,7 @@ paths:
     get:
       tags:
         - authKit
-      summary: authKit.getProfile
+      summary: "Verify an email token; under `verify-auto-login` the server returns a session — adopt it."
       operationId: authKit_getProfile
       security: []
       parameters:
@@ -8213,7 +8213,7 @@ paths:
     post:
       tags:
         - authKit
-      summary: authKit.completePasswordReset
+      summary: Complete a password reset / invite acceptance.
       operationId: authKit_completePasswordReset
       security: []
       parameters:
@@ -8579,7 +8579,7 @@ paths:
     post:
       tags:
         - authKit
-      summary: authKit.sendEmailVerification
+      summary: Complete a password reset / invite acceptance.
       operationId: authKit_sendEmailVerification
       security: []
       parameters:
@@ -8670,7 +8670,7 @@ paths:
     post:
       tags:
         - authKit
-      summary: authKit.verifyEmail
+      summary: "Verify an email token; under `verify-auto-login` the server returns a session — adopt it."
       operationId: authKit_verifyEmail
       security: []
       parameters:
@@ -18126,6 +18126,25 @@ components:
           type: boolean
         message:
           type: string
+        token:
+          type: string
+        user:
+          $ref: "#/components/schemas/AuthKitUser"
+        accountData:
+          type: object
+          additionalProperties: true
+        emailVerificationMode:
+          type: string
+          enum:
+            - immediate
+            - verify-auto-login
+            - verify-manual-login
+        refreshToken:
+          type: string
+        refreshTokenExpiresAt:
+          type: number
+        expiresAt:
+          type: number
       required:
         - success
         - message

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@proveanything/smartlinks",
-  "version": "1.14.16",
+  "version": "1.14.17",
   "description": "Official JavaScript/TypeScript SDK for the Smartlinks API",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",