@raytio/decrypt-helper 6.1.1 → 6.3.0

package/README.md

@@ -5,7 +5,7 @@
 ![npm version](https://img.shields.io/npm/v/@raytio/decrypt-helper?color=%234c1&style=flat-square)
 [![install size](https://packagephobia.com/badge?p=@raytio/decrypt-helper)](https://packagephobia.com/result?p=@raytio/decrypt-helper)
 
-## Intsall
+## Install
 
 This SDK is designed to run on nodejs >=18.
 
@@ -84,7 +84,7 @@ To test the PDF generation, run `yarn dev-pdf`
 
 We use jest for unit tests, snapshot tests of the PDF, and integration tests for whole process. See the [tests](./tests) folder.
 
-To run tests, use `yarn test`. To run and update snapshots, use `yarn test -u`. You will need to configure the evironment variables in `.env` for integration tests.
+To run tests, use `yarn test`. To run and update snapshots, use `yarn test -u`. You will need to configure the environment variables in `.env` for integration tests.
 
 If jest apears to be stuck running the end-to-end tests, run `yarn jest --clearCache`.
 

package/dist/api/authedFetch.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,9 +7,7 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.authedFetch = void 0;
-function authedFetch(apiToken, url, options, retrying = false) {
+export function authedFetch(apiToken, url, options, retrying = false) {
     return __awaiter(this, void 0, void 0, function* () {
         console.log(`[API] ${retrying ? "Retry" : "Start"} ${url}`);
         const startTime = Date.now();
@@ -30,4 +27,3 @@ function authedFetch(apiToken, url, options, retrying = false) {
         return apiResponse;
     });
 }
-exports.authedFetch = authedFetch;

package/dist/api/fetchAA.d.ts

@@ -1,3 +1,3 @@
-import type { AId, AA } from "@raytio/types";
-import { EnvConfig } from "./fetchEnvConfig";
+import type { AA, AId } from "@raytio/types";
+import type { EnvConfig } from "./fetchEnvConfig";
 export declare function fetchAA(apiToken: string, envConfig: EnvConfig, aId: AId): Promise<AA>;

package/dist/api/fetchAA.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,12 +7,12 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.fetchAA = void 0;
-const authedFetch_1 = require("./authedFetch");
-function fetchAA(apiToken, envConfig, aId) {
+import { authedFetch } from "./authedFetch";
+export function fetchAA(apiToken, envConfig, aId) {
     return __awaiter(this, void 0, void 0, function* () {
-        return (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/share/v2/access_application/${aId}`);
+        const [AA] = yield authedFetch(apiToken, `${envConfig.api_url}/db/v1/dsm_access_applications?id=eq.${aId}`);
+        if (!AA)
+            throw new Error("AA not found");
+        return Object.assign(Object.assign({}, AA), { a_id: AA.id });
     });
 }
-exports.fetchAA = fetchAA;

package/dist/api/fetchEnvConfig.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,21 +7,19 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.fetchEnvConfig = void 0;
 const PARAMS = [
     "cognito_region",
     "cognito_user_pool_id",
     "cognito_web_client_id",
     "api_url",
-    "app_name",
+    "app_name", // whitelabelling name
     "logo_url", // must be a URL to a png file
 ];
 const DEFAULTS = {
     app_name: "Raytio",
     logo_url: undefined,
 };
-function fetchEnvConfig(clientUrl) {
+export function fetchEnvConfig(clientUrl) {
     return __awaiter(this, void 0, void 0, function* () {
         try {
             const envConfig = Object.assign(Object.assign({}, DEFAULTS), (yield fetch(`${clientUrl}/client_config.json`).then((r) => r.json())));
@@ -36,4 +33,3 @@ function fetchEnvConfig(clientUrl) {
         }
     });
 }
-exports.fetchEnvConfig = fetchEnvConfig;

package/dist/api/fetchInstanceData.d.ts

@@ -1,3 +1,3 @@
-import type { IId, Instance } from "@raytio/types";
-import { EnvConfig } from "./fetchEnvConfig";
-export declare function fetchInstanceData(apiToken: string, envConfig: EnvConfig, instanceId: IId): Promise<Instance>;
+import type { IId, InstanceWithoutData } from "@raytio/types";
+import type { EnvConfig } from "./fetchEnvConfig";
+export declare function fetchInstanceData(apiToken: string, envConfig: EnvConfig, instanceId: IId): Promise<InstanceWithoutData>;

package/dist/api/fetchInstanceData.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,14 +7,10 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.fetchInstanceData = void 0;
-const core_1 = require("@raytio/core");
-const authedFetch_1 = require("./authedFetch");
-function fetchInstanceData(apiToken, envConfig, instanceId) {
+import { authedFetch } from "./authedFetch";
+export function fetchInstanceData(apiToken, envConfig, instanceId) {
     return __awaiter(this, void 0, void 0, function* () {
-        const instance = yield (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/share/v2/access_application/instance/${instanceId}`).then(core_1.cleanInstance);
+        const [instance] = yield authedFetch(apiToken, `${envConfig.api_url}/db/v1/dsm_access_application_instances?id=eq.${instanceId}`);
         return instance;
     });
 }
-exports.fetchInstanceData = fetchInstanceData;

package/dist/api/getFiles.d.ts

@@ -1,6 +1,6 @@
 import type { Instance, NId, ProfileObject } from "@raytio/types";
-import { ApplicationEncryptorLike } from "../types";
-import { EnvConfig } from "./fetchEnvConfig";
+import type { ApplicationEncryptorLike } from "../types";
+import type { EnvConfig } from "./fetchEnvConfig";
 type FileObject = Record<NId, [dataUrl: string, fileExtension: string]>;
 export declare function getFiles(profileObjects: ProfileObject[], instance: Instance, apiToken: string, envConfig: EnvConfig, applicationDecryptor: ApplicationEncryptorLike): Promise<FileObject>;
 export {};

package/dist/api/getFiles.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,15 +7,13 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getFiles = void 0;
-const core_1 = require("@raytio/core");
-const mime_types_1 = require("mime-types");
-const file_1 = require("../helpers/file");
-const authedFetch_1 = require("./authedFetch");
-const videoToImage_1 = require("./videoToImage");
+import { getNidFromUrn, isEncrypted } from "@raytio/core";
+import { extension, types } from "mime-types";
+import { isFieldValueFile, isTruthy, isUrn } from "../helpers/file";
+import { authedFetch } from "./authedFetch";
+import { videoToImage } from "./videoToImage";
 const TEMP_OBJ_PREFIX = "urn:temp_object:";
-const getFileExtn = (b64) => { var _a; return (0, mime_types_1.extension)(((_a = b64.split(":")[1]) === null || _a === void 0 ? void 0 : _a.split(";base64,")[0]) || "text/plain") || "txt"; };
+const getFileExtn = (b64) => { var _a; return extension(((_a = b64.split(":")[1]) === null || _a === void 0 ? void 0 : _a.split(";base64,")[0]) || "text/plain") || "txt"; };
 const decryptFile = (encryptedData, encryptedObject, applicationDecryptor, wdek) => __awaiter(void 0, void 0, void 0, function* () {
     const clonedEncryptedObject = JSON.parse(JSON.stringify(encryptedObject));
     clonedEncryptedObject.encrypted_data.data = encryptedData;
@@ -35,23 +32,60 @@ const cleanApiResponse = (responseBody) => {
     }
     return responseBody;
 };
-function getFiles(profileObjects, instance, apiToken, envConfig, applicationDecryptor) {
+function tryGetFallbackUrn(urnOrEncrypted) {
+    const urn = isEncrypted(urnOrEncrypted)
+        ? urnOrEncrypted.encrypted_data.data // no nessesaily a Urn
+        : urnOrEncrypted;
+    return isUrn(urn) ? getNidFromUrn(urn) : undefined;
+}
+export function getFiles(profileObjects, instance, apiToken, envConfig, applicationDecryptor) {
     var _a;
     return __awaiter(this, void 0, void 0, function* () {
-        // [nId: NId, fieldName: string, file: RaytFile][]
+        // [nId2: NId2, fieldName: string, file: Urn | Encrypted<Urn>][]
         const urnOrEncryptedList = profileObjects.flatMap((PO) => {
             return Object.entries(PO.properties)
-                .filter((kv) => (0, file_1.isFieldValueFile)(kv[1]))
                 .map(([k, v]) => {
-                return [
-                    PO.n_id,
-                    v.n_id,
-                    k,
-                    "content" in v ? v.content : v.Content,
-                ];
-            });
+                // this value is not a file, so abort
+                if (!isFieldValueFile(v))
+                    return undefined;
+                const urnOrEncrypted = "content" in v ? v.content : v.Content;
+                /**
+                 *
+                 * ```ts
+                 * // pre-2021 data structure:
+                 * [
+                 *  { n_id: 1, properties: { field1: File }
+                 * ]
+                 *
+                 * // post-2021 data structure:
+                 * [
+                 *   { n_id: 1, properties: { field1: { $ref: 2 } } },
+                 *   { n_id: 2, properties: File }
+                 * ]
+                 * ```
+                 *
+                 * In 2023, the API was changed so that properties (in this
+                 * case field1) so longer include the n_id. For the pre-2021
+                 * example, this means we have no official way of getting the
+                 * n_id of the file content.
+                 *
+                 * To continue supporting the legacy data, we have an escape
+                 * hatch: {@link tryGetFallbackUrn} to look at the internal
+                 * structure of the File object and (try) to get the Urn.
+                 *
+                 * This won't work for extremely old files (pre 2020), since
+                 * we used to store the entire data url in the PO, there were
+                 * no Urns or refs at that point.
+                 */
+                const fileNId = v.n_id || tryGetFallbackUrn(urnOrEncrypted);
+                // if we couldn't figure out the file content's nId, abort.
+                if (!fileNId)
+                    return undefined;
+                return [PO.id, fileNId, k, urnOrEncrypted];
+            })
+                .filter(isTruthy);
         });
-        const filesBase64 = yield Promise.all(urnOrEncryptedList.map(([PONId, fileNId, fieldName, urnOrEncrypted]) => __awaiter(this, void 0, void 0, function* () {
+        const filesBase64 = yield Promise.all(urnOrEncryptedList.map(([PONId2, fileNId, fieldName, urnOrEncrypted]) => __awaiter(this, void 0, void 0, function* () {
             var _b, _c;
             // handle urn:temp_object:
             if (typeof urnOrEncrypted === "string" &&
@@ -63,9 +97,9 @@ function getFiles(profileObjects, instance, apiToken, envConfig, applicationDecr
                 const dataUrl = `data:${type};base64,${base64}`;
                 return [fileNId, [dataUrl, getFileExtn(dataUrl)]];
             }
-            const realDataUrl = yield (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/share/v2/access_application/instance/${instance.i_id}/profile_object/${fileNId}/content`).then(cleanApiResponse);
-            if ((0, core_1.isEncrypted)(urnOrEncrypted)) {
-                const wdek = (_c = (_b = instance.keys[PONId]) === null || _b === void 0 ? void 0 : _b[fieldName]) === null || _c === void 0 ? void 0 : _c.data;
+            const realDataUrl = yield authedFetch(apiToken, `${envConfig.api_url}/share/v2/access_application/instance/${instance.id}/profile_object/${fileNId}/content`).then(cleanApiResponse);
+            if (isEncrypted(urnOrEncrypted)) {
+                const wdek = (_c = (_b = instance.keys[PONId2]) === null || _b === void 0 ? void 0 : _b[fieldName]) === null || _c === void 0 ? void 0 : _c.data;
                 if (!wdek)
                     return [fileNId, undefined];
                 const decryptedDataUrl = yield decryptFile(realDataUrl, urnOrEncrypted, applicationDecryptor, wdek);
@@ -77,9 +111,9 @@ function getFiles(profileObjects, instance, apiToken, envConfig, applicationDecr
         // for all videos, also store a static frame from the video, since we can't embedded a video into the PDF
         for (const nId in allDataUrls) {
             const [dataUrl, fileExtn] = allDataUrls[nId];
-            const isVideo = (_a = mime_types_1.types[fileExtn]) === null || _a === void 0 ? void 0 : _a.startsWith("video/");
+            const isVideo = (_a = types[fileExtn]) === null || _a === void 0 ? void 0 : _a.startsWith("video/");
             if (isVideo) {
-                const imageDataUrl = yield (0, videoToImage_1.videoToImage)(apiToken, envConfig, dataUrl);
+                const imageDataUrl = yield videoToImage(apiToken, envConfig, dataUrl);
                 allDataUrls[`${nId}_videoFrame`] = [
                     imageDataUrl,
                     getFileExtn(imageDataUrl),
@@ -89,4 +123,3 @@ function getFiles(profileObjects, instance, apiToken, envConfig, applicationDecr
         return allDataUrls;
     });
 }
-exports.getFiles = getFiles;

package/dist/api/getLookupOption.d.ts

@@ -1,2 +1,2 @@
-import { Lookup } from "@raytio/types";
+import type { Lookup } from "@raytio/types";
 export declare function getLookupOption(apiToken: string, lookup: string): Promise<Lookup[]>;

package/dist/api/getLookupOption.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,14 +7,12 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getLookupOption = void 0;
-const authedFetch_1 = require("./authedFetch");
+import { authedFetch } from "./authedFetch";
 /**
  * We cache the promise so that only one XHR request is ever sent
  */
 const cache = new Map();
-function getLookupOption(apiToken, lookup) {
+export function getLookupOption(apiToken, lookup) {
     return __awaiter(this, void 0, void 0, function* () {
         const { origin } = new URL(lookup);
         const cached = cache.get(lookup);
@@ -23,10 +20,9 @@ function getLookupOption(apiToken, lookup) {
             return cached;
         // if it's a lookup to our own API, then include the IdentityToken
         const promise = origin.endsWith(".rayt.io")
-            ? (0, authedFetch_1.authedFetch)(apiToken, lookup)
+            ? authedFetch(apiToken, lookup)
             : fetch(lookup).then((r) => r.json());
         cache.set(lookup, promise);
         return promise;
     });
 }
-exports.getLookupOption = getLookupOption;

package/dist/api/getSchema.d.ts

@@ -1,3 +1,3 @@
 import type { Schema } from "@raytio/types";
-import { EnvConfig } from "./fetchEnvConfig";
+import type { EnvConfig } from "./fetchEnvConfig";
 export declare function getAllSchema(envConfig: EnvConfig): Promise<Schema[]>;

package/dist/api/getSchema.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,16 +7,13 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getAllSchema = void 0;
-const core_1 = require("@raytio/core");
-const authedFetch_1 = require("./authedFetch");
-function getAllSchema(envConfig) {
+import { expandSchema } from "@raytio/core";
+import { authedFetch } from "./authedFetch";
+export function getAllSchema(envConfig) {
     return __awaiter(this, void 0, void 0, function* () {
-        const list = yield (0, authedFetch_1.authedFetch)("", `${envConfig.api_url}/db/v1/schema?version_current=eq.true`);
-        return list.map((wrappedSchema) => (0, core_1.expandSchema)(wrappedSchema, list, [
+        const list = yield authedFetch("", `${envConfig.api_url}/db/v1/dsm_schema?version_current=eq.true`);
+        return list.map((wrappedSchema) => expandSchema(wrappedSchema, list, [
             process.env.PDF_LANGUAGE || process.env.DATE_FORMAT || "en-NZ",
         ]));
     });
 }
-exports.getAllSchema = getAllSchema;

package/dist/api/index.js

@@ -1,25 +1,9 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./authedFetch"), exports);
-__exportStar(require("./fetchAA"), exports);
-__exportStar(require("./fetchEnvConfig"), exports);
-__exportStar(require("./fetchInstanceData"), exports);
-__exportStar(require("./getFiles"), exports);
-__exportStar(require("./getSchema"), exports);
-__exportStar(require("./resolveVerificationDetails"), exports);
-__exportStar(require("./signIn"), exports);
-__exportStar(require("./updateInstanceData"), exports);
+export * from "./authedFetch";
+export * from "./fetchAA";
+export * from "./fetchEnvConfig";
+export * from "./fetchInstanceData";
+export * from "./getFiles";
+export * from "./getSchema";
+export * from "./resolveVerificationDetails";
+export * from "./signIn";
+export * from "./updateInstanceData";

package/dist/api/resolveVerificationDetails.d.ts

@@ -1,5 +1,5 @@
 import type { VerificationProvider } from "@raytio/types";
-import { EnvConfig } from "./fetchEnvConfig";
+import type { EnvConfig } from "./fetchEnvConfig";
 export type ResolvedVerificationProvider = {
     verifier_id?: string;
     verifier_service_id?: string;

package/dist/api/resolveVerificationDetails.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,10 +7,8 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.clearCache = exports.resolveVerificationDetails = void 0;
 let verifiersPromise;
-function resolveVerificationDetails([details], envConfig) {
+export function resolveVerificationDetails([details], envConfig) {
     var _a, _b, _c, _d;
     return __awaiter(this, void 0, void 0, function* () {
         if (!details)
@@ -28,9 +25,7 @@ function resolveVerificationDetails([details], envConfig) {
         };
     });
 }
-exports.resolveVerificationDetails = resolveVerificationDetails;
 /** @deprecated - for use in unit tests only */
-const clearCache = () => {
+export const clearCache = () => {
     verifiersPromise = null;
 };
-exports.clearCache = clearCache;

package/dist/api/signIn.d.ts

@@ -1,6 +1,6 @@
 import type { ICognitoUserAttributeData } from "amazon-cognito-identity-js";
-import { Config } from "../constants";
-import { EnvConfig } from "./fetchEnvConfig";
+import type { Config } from "../constants";
+import type { EnvConfig } from "./fetchEnvConfig";
 export declare function signIn(CONFIG: Config, envConfig: EnvConfig): Promise<{
     apiToken: string;
     cognitoAttributes: ICognitoUserAttributeData[];

package/dist/api/signIn.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,37 +7,35 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.signIn = void 0;
-const auth_1 = require("@aws-amplify/auth");
-const core_1 = require("@raytio/core");
+import { Auth } from "@aws-amplify/auth";
+import { hashPassword } from "@raytio/core";
 /** see #1252 in the client repo */
 function signInWithPasswordMigration(username, password) {
     return __awaiter(this, void 0, void 0, function* () {
         try {
-            const userObject = yield auth_1.Auth.signIn(username, password);
+            const userObject = yield Auth.signIn(username, password);
             return userObject;
         }
         catch (_a) {
             // if the login fails, try again with their hashed password.
             // if it's successful the second time, we quietly change their password.
-            const hashedPassword = yield (0, core_1.hashPassword)(password);
-            const userObject = yield auth_1.Auth.signIn(username, hashedPassword);
+            const hashedPassword = yield hashPassword(password);
+            const userObject = yield Auth.signIn(username, hashedPassword);
             // the login was successful. So we need to migrate their account.
             // No changes to the maxcryptor, purely to cognito.
             // we can only migrate their password if there are no login challenges
             if (!userObject.challengeName) {
                 console.log("Migrating credentials...");
-                yield auth_1.Auth.changePassword(userObject, hashedPassword, password);
+                yield Auth.changePassword(userObject, hashedPassword, password);
             }
             return userObject;
         }
     });
 }
-function signIn(CONFIG, envConfig) {
+export function signIn(CONFIG, envConfig) {
     var _a, _b;
     return __awaiter(this, void 0, void 0, function* () {
-        auth_1.Auth.configure({
+        Auth.configure({
             region: envConfig.cognito_region,
             userPoolId: envConfig.cognito_user_pool_id,
             userPoolWebClientId: envConfig.cognito_web_client_id,
@@ -47,10 +44,9 @@ function signIn(CONFIG, envConfig) {
         if (userObject.challengeName === "SOFTWARE_TOKEN_MFA") {
             throw new Error(`The configured account (${CONFIG.RAYTIO_USERNAME}) has two factor authentication enabled. You must disable 2FA or use a different account`);
         }
-        const user = yield auth_1.Auth.currentAuthenticatedUser();
+        const user = yield Auth.currentAuthenticatedUser();
         const apiToken = (_b = (_a = user.signInUserSession) === null || _a === void 0 ? void 0 : _a.accessToken) === null || _b === void 0 ? void 0 : _b.jwtToken;
-        const cognitoAttributes = yield auth_1.Auth.userAttributes(user);
+        const cognitoAttributes = yield Auth.userAttributes(user);
         return { apiToken, cognitoAttributes };
     });
 }
-exports.signIn = signIn;

package/dist/api/updateInstanceData.d.ts

@@ -1,2 +1,7 @@
-import type { Instance } from "@raytio/types";
-export declare function updateInstanceData(apiToken: string, instance: Instance): Promise<void>;
+import type { IId, InstanceWithoutData } from "@raytio/types";
+import type { EnvConfig } from "./fetchEnvConfig";
+/**
+ * only specific fields can be updated, passing the entire
+ * instance object to the v3 API will cause an error.
+ */
+export declare function updateInstanceData(apiToken: string, envConfig: EnvConfig, iId: IId, instance: Partial<Pick<InstanceWithoutData, "state" | "score" | "metadata">>): Promise<void>;

package/dist/api/updateInstanceData.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,12 +7,13 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.updateInstanceData = void 0;
-const authedFetch_1 = require("./authedFetch");
-function updateInstanceData(apiToken, instance) {
+import { authedFetch } from "./authedFetch";
+/**
+ * only specific fields can be updated, passing the entire
+ * instance object to the v3 API will cause an error.
+ */
+export function updateInstanceData(apiToken, envConfig, iId, instance) {
     return __awaiter(this, void 0, void 0, function* () {
-        yield (0, authedFetch_1.authedFetch)(apiToken, `share/v2/access_application/instance/${instance.i_id}`, { method: "PUT", body: JSON.stringify(instance) });
+        yield authedFetch(apiToken, `${envConfig.api_url}/db/v1/dsm_access_application_instances_u?id=eq.${iId}`, { method: "PATCH", body: JSON.stringify(instance) });
     });
 }
-exports.updateInstanceData = updateInstanceData;

package/dist/api/uploadToObjectStore.d.ts

@@ -1,4 +1,4 @@
-import { EnvConfig } from "./fetchEnvConfig";
+import type { EnvConfig } from "./fetchEnvConfig";
 export declare function uploadToObjectStore(apiToken: string, envConfig: EnvConfig, dataUrl: string, expiryDate?: Date): Promise<{
     objectStoreId: string;
     retrievalUrl: string;

package/dist/api/uploadToObjectStore.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,21 +7,19 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.uploadToObjectStore = void 0;
-const authedFetch_1 = require("./authedFetch");
+import { authedFetch } from "./authedFetch";
 //
 // this file is mostly copy-pasted from the client repo. If you make
 // a change here, consider making the same change in the client.
 //
-function uploadToObjectStore(apiToken, envConfig, dataUrl, expiryDate) {
+export function uploadToObjectStore(apiToken, envConfig, dataUrl, expiryDate) {
     return __awaiter(this, void 0, void 0, function* () {
         const mimeType = dataUrl.split(";")[0].split(":")[1];
         const base64 = dataUrl.split(",")[1];
         // eslint-disable-next-line unicorn/prefer-code-point -- deliberate, this will only ever be ASCII
         const arrayBuffer = Uint8Array.from(atob(base64), (c) => c.charCodeAt(0));
         // this is a weird API that returns a double stringified string
-        const temporaryUrl = yield (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/org/v1/object/url${expiryDate ? `?expires=${+expiryDate}` : ""}`);
+        const temporaryUrl = yield authedFetch(apiToken, `${envConfig.api_url}/org/v1/object/url${expiryDate ? `?expires=${+expiryDate}` : ""}`);
         const { status, statusText } = yield fetch(temporaryUrl, {
             method: "PUT",
             body: arrayBuffer,
@@ -39,4 +36,3 @@ function uploadToObjectStore(apiToken, envConfig, dataUrl, expiryDate) {
         };
     });
 }
-exports.uploadToObjectStore = uploadToObjectStore;

package/dist/api/videoToImage.d.ts

@@ -1,3 +1,3 @@
-import { EnvConfig } from "./fetchEnvConfig";
+import type { EnvConfig } from "./fetchEnvConfig";
 /** Use the extractor API to get the middle frame from a video */
 export declare function videoToImage(apiToken: string, envConfig: EnvConfig, videoDataUrl: string): Promise<string>;

package/dist/api/videoToImage.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,23 +7,20 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.videoToImage = void 0;
-const authedFetch_1 = require("./authedFetch");
-const uploadToObjectStore_1 = require("./uploadToObjectStore");
+import { authedFetch } from "./authedFetch";
+import { uploadToObjectStore } from "./uploadToObjectStore";
 /** Use the extractor API to get the middle frame from a video */
-function videoToImage(apiToken, envConfig, videoDataUrl) {
+export function videoToImage(apiToken, envConfig, videoDataUrl) {
     return __awaiter(this, void 0, void 0, function* () {
         // the new API can't handle big dataUrls, so we need to store the data in
         // the object store first...
         const in10Mins = new Date();
         in10Mins.setMinutes(in10Mins.getMinutes() + 10);
-        const { retrievalUrl: videoUrl } = yield (0, uploadToObjectStore_1.uploadToObjectStore)(apiToken, envConfig, videoDataUrl, in10Mins);
-        const extractedImageBase64 = yield (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/face-detect/v1/image-extract-single`, 
+        const { retrievalUrl: videoUrl } = yield uploadToObjectStore(apiToken, envConfig, videoDataUrl, in10Mins);
+        const extractedImageBase64 = yield authedFetch(apiToken, `${envConfig.api_url}/face-detect/v1/image-extract-single`, 
         // note: inspite of being called "video_urn", the new API actually expects a url, not a urn...
         { method: "POST", body: JSON.stringify({ video_urn: videoUrl }) });
         // annoyingly the new API doesn't return the data URL prefix, so we have to hardcode it here
         return `data:image/jpeg;base64,${extractedImageBase64}`;
     });
 }
-exports.videoToImage = videoToImage;