@renown/sdk 6.0.0-dev.23 → 6.0.0-dev.230

package/dist/index.js

@@ -0,0 +1,173 @@
+import { C as DEFAULT_RENOWN_CHAIN_ID, D as ISSUER_TYPE, E as DOMAIN_TYPE, O as VERIFIABLE_CREDENTIAL_EIP712_TYPE, S as CREDENTIAL_TYPES, T as DEFAULT_RENOWN_URL, _ as getResolver, a as BaseStorage, b as CREDENTIAL_SCHEMA_EIP712_TYPE, c as extractResultingHashFromSignature, d as MemoryKeyStorage, f as RenownCryptoBuilder, g as createAuthBearerToken, h as assertIsAuthCredential, i as RenownMemoryStorage, l as parseSignatureHashField, m as RenownCrypto, n as fetchRenownProfile, o as RenownCryptoSigner, p as ConnectCrypto, r as Renown, s as createSignatureVerifier, t as BaseRenownBuilder, u as signatureHasResultingHash, v as parsePkhDid, w as DEFAULT_RENOWN_NETWORK_ID, x as CREDENTIAL_SUBJECT_TYPE, y as verifyAuthBearerToken } from "./renown-builder-EmbIygby.js";
+//#region src/crypto/browser-key-storage.ts
+const DEFAULT_DB_NAME = "renownKeyDB";
+const STORE_NAME = "keyPairs";
+const KEY = "keyPair";
+var BrowserKeyStorage = class BrowserKeyStorage {
+	#db;
+	constructor(db) {
+		this.#db = db;
+	}
+	static async create(dbName = DEFAULT_DB_NAME) {
+		return new BrowserKeyStorage(await BrowserKeyStorage.#openDatabase(dbName));
+	}
+	static #openDatabase(dbName) {
+		return new Promise((resolve, reject) => {
+			const req = indexedDB.open(dbName);
+			req.onupgradeneeded = (event) => {
+				const db = event.target.result;
+				if (!db.objectStoreNames.contains(STORE_NAME)) db.createObjectStore(STORE_NAME);
+			};
+			req.onsuccess = () => {
+				const db = req.result;
+				if (!db.objectStoreNames.contains(STORE_NAME)) {
+					const currentVersion = db.version;
+					db.close();
+					const upgradeReq = indexedDB.open(dbName, currentVersion + 1);
+					upgradeReq.onupgradeneeded = (event) => {
+						const upgradeDb = event.target.result;
+						if (!upgradeDb.objectStoreNames.contains(STORE_NAME)) upgradeDb.createObjectStore(STORE_NAME);
+					};
+					upgradeReq.onsuccess = () => resolve(upgradeReq.result);
+					upgradeReq.onerror = () => reject(upgradeReq.error);
+				} else resolve(db);
+			};
+			req.onerror = () => reject(req.error);
+		});
+	}
+	#useStore(mode = "readwrite") {
+		return this.#db.transaction(STORE_NAME, mode).objectStore(STORE_NAME);
+	}
+	async saveKeyPair(keyPair) {
+		const request = this.#useStore().put(keyPair, KEY);
+		return new Promise((resolve, reject) => {
+			request.onsuccess = () => resolve();
+			request.onerror = () => reject(/* @__PURE__ */ new Error("Failed to save key pair"));
+		});
+	}
+	async loadKeyPair() {
+		const request = this.#useStore("readonly").get(KEY);
+		return new Promise((resolve, reject) => {
+			request.onsuccess = () => {
+				const keyPair = request.result;
+				resolve(keyPair);
+			};
+			request.onerror = () => reject(/* @__PURE__ */ new Error("Failed to load key pair"));
+		});
+	}
+	async removeKeyPair() {
+		const request = this.#useStore().delete(KEY);
+		return new Promise((resolve, reject) => {
+			request.onsuccess = () => resolve();
+			request.onerror = () => reject(/* @__PURE__ */ new Error("Failed to remove key pair"));
+		});
+	}
+};
+//#endregion
+//#region src/event/event.browser.ts
+var TypedCustomEvent = class extends CustomEvent {
+	constructor(type, detail) {
+		super(type, { detail });
+	}
+};
+var BrowserEventEmitter = class {
+	#eventTarget = new EventTarget();
+	on(event, listener) {
+		const wrappedListener = (e) => {
+			if (e instanceof TypedCustomEvent) listener(e.detail);
+		};
+		this.#eventTarget.addEventListener(event.toString(), wrappedListener);
+		return () => {
+			this.#eventTarget.removeEventListener(event.toString(), wrappedListener);
+		};
+	}
+	emit(event, data) {
+		const customEvent = new TypedCustomEvent(event.toString(), data);
+		this.#eventTarget.dispatchEvent(customEvent);
+	}
+};
+//#endregion
+//#region src/storage/storage.browser.ts
+var BrowserStorage = class extends BaseStorage {
+	namespace;
+	constructor(namespace, basename) {
+		super();
+		this.namespace = `${basename}:${namespace}`;
+	}
+	#buildKey(key) {
+		return `${this.namespace}:${key.toString()}`;
+	}
+	get(key) {
+		const value = localStorage.getItem(this.#buildKey(key));
+		if (value) return JSON.parse(value);
+	}
+	set(key, value) {
+		return value ? localStorage.setItem(this.#buildKey(key), JSON.stringify(value)) : localStorage.removeItem(this.#buildKey(key));
+	}
+	delete(key) {
+		return localStorage.removeItem(this.#buildKey(key));
+	}
+};
+//#endregion
+//#region src/init.browser.ts
+var BrowserRenownStorage = class extends BrowserStorage {};
+var BrowserRenownEventEmitter = class extends BrowserEventEmitter {};
+/**
+* Browser-specific Renown builder with pre-configured defaults.
+* Uses localStorage for user data and IndexedDB for key storage.
+*/
+var RenownBuilder = class extends BaseRenownBuilder {
+	#basename;
+	#keyDbName;
+	/**
+	* @param appName - Application name used for signing context
+	* @param options - Browser-specific configuration options
+	*/
+	constructor(appName, options = {}) {
+		super(appName);
+		this.#basename = options.basename;
+		this.#keyDbName = options.keyDbName;
+		this.withStorage(new BrowserRenownStorage("renown", this.#basename));
+		this.withEventEmitter(new BrowserRenownEventEmitter());
+		if (options.baseUrl) this.withBaseUrl(options.baseUrl);
+	}
+	/**
+	* Set base path for storage keys (e.g., "/app" for multi-tenant apps).
+	*/
+	withBasename(basename) {
+		this.#basename = basename;
+		this.withStorage(new BrowserRenownStorage("renown", this.#basename));
+		return this;
+	}
+	/**
+	* Set IndexedDB database name for key storage.
+	* Defaults to "renownKeyDB".
+	*/
+	withKeyDbName(keyDbName) {
+		this.#keyDbName = keyDbName;
+		return this;
+	}
+	/**
+	* Build and initialize the Renown instance.
+	* Initializes IndexedDB for key storage before building.
+	*/
+	async build() {
+		const keyStorage = await BrowserKeyStorage.create(this.#keyDbName);
+		this.withKeyPairStorage(keyStorage);
+		return super.build();
+	}
+};
+/**
+* @deprecated Use RenownBuilder directly instead.
+* Initialize a browser-specific Renown instance.
+* @param appName - Application name used for signing context
+* @param options - Browser-specific configuration options
+* @returns Initialized Renown instance
+*/
+function initRenown(appName, options = {}) {
+	return new RenownBuilder(appName, options).build();
+}
+//#endregion
+export { BaseRenownBuilder, BrowserKeyStorage, BrowserRenownEventEmitter, BrowserRenownStorage, CREDENTIAL_SCHEMA_EIP712_TYPE, CREDENTIAL_SUBJECT_TYPE, CREDENTIAL_TYPES, ConnectCrypto, DEFAULT_RENOWN_CHAIN_ID, DEFAULT_RENOWN_NETWORK_ID, DEFAULT_RENOWN_URL, DOMAIN_TYPE, ISSUER_TYPE, MemoryKeyStorage, Renown, RenownBuilder, RenownCrypto, RenownCryptoBuilder, RenownCryptoSigner, RenownMemoryStorage, VERIFIABLE_CREDENTIAL_EIP712_TYPE, assertIsAuthCredential, createAuthBearerToken, createSignatureVerifier, extractResultingHashFromSignature, fetchRenownProfile, getResolver, initRenown, parsePkhDid, parseSignatureHashField, signatureHasResultingHash, verifyAuthBearerToken };
+
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","names":["#db","#openDatabase","#useStore","#eventTarget","#buildKey","#basename","#keyDbName"],"sources":["../src/crypto/browser-key-storage.ts","../src/event/event.browser.ts","../src/storage/storage.browser.ts","../src/init.browser.ts"],"sourcesContent":["import type { JsonWebKeyPairStorage, JwkKeyPair } from \"./types.js\";\n\nconst DEFAULT_DB_NAME = \"renownKeyDB\";\nconst STORE_NAME = \"keyPairs\";\nconst KEY = \"keyPair\";\n\nexport class BrowserKeyStorage implements JsonWebKeyPairStorage {\n  #db: IDBDatabase;\n\n  constructor(db: IDBDatabase) {\n    this.#db = db;\n  }\n\n  static async create(\n    dbName: string = DEFAULT_DB_NAME,\n  ): Promise<BrowserKeyStorage> {\n    const db = await BrowserKeyStorage.#openDatabase(dbName);\n    return new BrowserKeyStorage(db);\n  }\n\n  static #openDatabase(dbName: string): Promise<IDBDatabase> {\n    return new Promise((resolve, reject) => {\n      const req = indexedDB.open(dbName);\n\n      req.onupgradeneeded = (event) => {\n        const db = (event.target as IDBOpenDBRequest).result;\n        if (!db.objectStoreNames.contains(STORE_NAME)) {\n          db.createObjectStore(STORE_NAME);\n        }\n      };\n\n      req.onsuccess = () => {\n        const db = req.result;\n        if (!db.objectStoreNames.contains(STORE_NAME)) {\n          const currentVersion = db.version;\n          db.close();\n          const upgradeReq = indexedDB.open(dbName, currentVersion + 1);\n          upgradeReq.onupgradeneeded = (event) => {\n            const upgradeDb = (event.target as IDBOpenDBRequest).result;\n            if (!upgradeDb.objectStoreNames.contains(STORE_NAME)) {\n              upgradeDb.createObjectStore(STORE_NAME);\n            }\n          };\n          upgradeReq.onsuccess = () => resolve(upgradeReq.result);\n          upgradeReq.onerror = () => reject(upgradeReq.error as Error);\n        } else {\n          resolve(db);\n        }\n      };\n\n      req.onerror = () => reject(req.error as Error);\n    });\n  }\n\n  #useStore(mode: IDBTransactionMode = \"readwrite\") {\n    const transaction = this.#db.transaction(STORE_NAME, mode);\n    return transaction.objectStore(STORE_NAME);\n  }\n\n  async saveKeyPair(keyPair: JwkKeyPair) {\n    const store = this.#useStore();\n    const request = store.put(keyPair, KEY);\n    return new Promise<void>((resolve, reject) => {\n      request.onsuccess = () => resolve();\n      request.onerror = () => reject(new Error(\"Failed to save key pair\"));\n    });\n  }\n\n  async loadKeyPair(): Promise<JwkKeyPair | undefined> {\n    const store = this.#useStore(\"readonly\");\n    const request = store.get(KEY);\n\n    return new Promise<JwkKeyPair | undefined>((resolve, reject) => {\n      request.onsuccess = () => {\n        const keyPair = request.result as JwkKeyPair | undefined;\n        resolve(keyPair);\n      };\n      request.onerror = () => reject(new Error(\"Failed to load key pair\"));\n    });\n  }\n\n  async removeKeyPair(): Promise<void> {\n    const store = this.#useStore();\n    const request = store.delete(KEY);\n\n    return new Promise<void>((resolve, reject) => {\n      request.onsuccess = () => resolve();\n      request.onerror = () => reject(new Error(\"Failed to remove key pair\"));\n    });\n  }\n}\n","import type { IEventEmitter } from \"./types.js\";\n\nexport class TypedCustomEvent<T> extends CustomEvent<T> {\n  constructor(type: string, detail?: T) {\n    super(type, { detail });\n  }\n}\n\nexport class BrowserEventEmitter<\n  Events extends Record<string, unknown>,\n> implements IEventEmitter<Events> {\n  #eventTarget = new EventTarget();\n\n  on<K extends keyof Events>(\n    event: K,\n    listener: (data: Events[K]) => void,\n  ): () => void {\n    const wrappedListener = (e: Event) => {\n      if (e instanceof TypedCustomEvent) {\n        listener(e.detail as Events[K]);\n      }\n    };\n\n    this.#eventTarget.addEventListener(event.toString(), wrappedListener);\n    return () => {\n      this.#eventTarget.removeEventListener(event.toString(), wrappedListener);\n    };\n  }\n\n  emit<K extends keyof Events>(event: K, data: Events[K]): void {\n    const customEvent = new TypedCustomEvent(event.toString(), data);\n    this.#eventTarget.dispatchEvent(customEvent);\n  }\n}\n","import { BaseStorage } from \"./common.js\";\n\nexport class BrowserStorage<\n  T extends Record<string, unknown> = Record<string, unknown>,\n> extends BaseStorage<T> {\n  private readonly namespace: string;\n\n  constructor(namespace: string, basename: string | undefined) {\n    super();\n    this.namespace = `${basename}:${namespace}`;\n  }\n\n  #buildKey(key: keyof T): string {\n    return `${this.namespace}:${key.toString()}`;\n  }\n  get<Key extends keyof T>(key: Key): T[Key] | undefined {\n    const value = localStorage.getItem(this.#buildKey(key));\n    if (value) {\n      return JSON.parse(value) as T[Key];\n    }\n    return undefined;\n  }\n\n  set<Key extends keyof T>(key: Key, value?: T[Key]): void {\n    return value\n      ? localStorage.setItem(this.#buildKey(key), JSON.stringify(value))\n      : localStorage.removeItem(this.#buildKey(key));\n  }\n\n  delete(key: keyof T): void {\n    return localStorage.removeItem(this.#buildKey(key));\n  }\n}\n","import type { Renown } from \"./common.js\";\nimport { BrowserKeyStorage } from \"./crypto/browser-key-storage.js\";\nimport { BrowserEventEmitter } from \"./event/event.browser.js\";\nimport { BaseRenownBuilder } from \"./renown-builder.js\";\nimport { BrowserStorage } from \"./storage/storage.browser.js\";\nimport type { RenownEvents, RenownStorageMap } from \"./types.js\";\n\nexport class BrowserRenownStorage extends BrowserStorage<RenownStorageMap> {}\nexport class BrowserRenownEventEmitter extends BrowserEventEmitter<RenownEvents> {}\n\nexport interface BrowserRenownBuilderOptions {\n  /** Base path for storage keys (e.g., \"/app\" for multi-tenant apps) */\n  basename?: string;\n  /** Renown server URL. Defaults to https://www.renown.id */\n  baseUrl?: string;\n  /** IndexedDB database name for key storage. Defaults to \"renownKeyDB\" */\n  keyDbName?: string;\n}\n\n/**\n * Browser-specific Renown builder with pre-configured defaults.\n * Uses localStorage for user data and IndexedDB for key storage.\n */\nexport class RenownBuilder extends BaseRenownBuilder {\n  #basename?: string;\n  #keyDbName?: string;\n\n  /**\n   * @param appName - Application name used for signing context\n   * @param options - Browser-specific configuration options\n   */\n  constructor(appName: string, options: BrowserRenownBuilderOptions = {}) {\n    super(appName);\n    this.#basename = options.basename;\n    this.#keyDbName = options.keyDbName;\n    this.withStorage(new BrowserRenownStorage(\"renown\", this.#basename));\n    this.withEventEmitter(new BrowserRenownEventEmitter());\n    if (options.baseUrl) {\n      this.withBaseUrl(options.baseUrl);\n    }\n  }\n\n  /**\n   * Set base path for storage keys (e.g., \"/app\" for multi-tenant apps).\n   */\n  withBasename(basename: string): this {\n    this.#basename = basename;\n    this.withStorage(new BrowserRenownStorage(\"renown\", this.#basename));\n    return this;\n  }\n\n  /**\n   * Set IndexedDB database name for key storage.\n   * Defaults to \"renownKeyDB\".\n   */\n  withKeyDbName(keyDbName: string): this {\n    this.#keyDbName = keyDbName;\n    return this;\n  }\n\n  /**\n   * Build and initialize the Renown instance.\n   * Initializes IndexedDB for key storage before building.\n   */\n  async build(): Promise<Renown> {\n    const keyStorage = await BrowserKeyStorage.create(this.#keyDbName);\n    this.withKeyPairStorage(keyStorage);\n    return super.build();\n  }\n}\n\n/**\n * @deprecated Use RenownBuilder directly instead.\n * Initialize a browser-specific Renown instance.\n * @param appName - Application name used for signing context\n * @param options - Browser-specific configuration options\n * @returns Initialized Renown instance\n */\nexport function initRenown(\n  appName: string,\n  options: BrowserRenownBuilderOptions = {},\n) {\n  return new RenownBuilder(appName, options).build();\n}\n"],"mappings":";;AAEA,MAAM,kBAAkB;AACxB,MAAM,aAAa;AACnB,MAAM,MAAM;AAEZ,IAAa,oBAAb,MAAa,kBAAmD;CAC9D;CAEA,YAAY,IAAiB;AAC3B,QAAA,KAAW;;CAGb,aAAa,OACX,SAAiB,iBACW;AAE5B,SAAO,IAAI,kBADA,MAAM,mBAAA,aAAgC,OAAO,CACxB;;CAGlC,QAAA,aAAqB,QAAsC;AACzD,SAAO,IAAI,SAAS,SAAS,WAAW;GACtC,MAAM,MAAM,UAAU,KAAK,OAAO;AAElC,OAAI,mBAAmB,UAAU;IAC/B,MAAM,KAAM,MAAM,OAA4B;AAC9C,QAAI,CAAC,GAAG,iBAAiB,SAAS,WAAW,CAC3C,IAAG,kBAAkB,WAAW;;AAIpC,OAAI,kBAAkB;IACpB,MAAM,KAAK,IAAI;AACf,QAAI,CAAC,GAAG,iBAAiB,SAAS,WAAW,EAAE;KAC7C,MAAM,iBAAiB,GAAG;AAC1B,QAAG,OAAO;KACV,MAAM,aAAa,UAAU,KAAK,QAAQ,iBAAiB,EAAE;AAC7D,gBAAW,mBAAmB,UAAU;MACtC,MAAM,YAAa,MAAM,OAA4B;AACrD,UAAI,CAAC,UAAU,iBAAiB,SAAS,WAAW,CAClD,WAAU,kBAAkB,WAAW;;AAG3C,gBAAW,kBAAkB,QAAQ,WAAW,OAAO;AACvD,gBAAW,gBAAgB,OAAO,WAAW,MAAe;UAE5D,SAAQ,GAAG;;AAIf,OAAI,gBAAgB,OAAO,IAAI,MAAe;IAC9C;;CAGJ,UAAU,OAA2B,aAAa;AAEhD,SADoB,MAAA,GAAS,YAAY,YAAY,KAAK,CACvC,YAAY,WAAW;;CAG5C,MAAM,YAAY,SAAqB;EAErC,MAAM,UADQ,MAAA,UAAgB,CACR,IAAI,SAAS,IAAI;AACvC,SAAO,IAAI,SAAe,SAAS,WAAW;AAC5C,WAAQ,kBAAkB,SAAS;AACnC,WAAQ,gBAAgB,uBAAO,IAAI,MAAM,0BAA0B,CAAC;IACpE;;CAGJ,MAAM,cAA+C;EAEnD,MAAM,UADQ,MAAA,SAAe,WAAW,CAClB,IAAI,IAAI;AAE9B,SAAO,IAAI,SAAiC,SAAS,WAAW;AAC9D,WAAQ,kBAAkB;IACxB,MAAM,UAAU,QAAQ;AACxB,YAAQ,QAAQ;;AAElB,WAAQ,gBAAgB,uBAAO,IAAI,MAAM,0BAA0B,CAAC;IACpE;;CAGJ,MAAM,gBAA+B;EAEnC,MAAM,UADQ,MAAA,UAAgB,CACR,OAAO,IAAI;AAEjC,SAAO,IAAI,SAAe,SAAS,WAAW;AAC5C,WAAQ,kBAAkB,SAAS;AACnC,WAAQ,gBAAgB,uBAAO,IAAI,MAAM,4BAA4B,CAAC;IACtE;;;;;ACtFN,IAAa,mBAAb,cAAyC,YAAe;CACtD,YAAY,MAAc,QAAY;AACpC,QAAM,MAAM,EAAE,QAAQ,CAAC;;;AAI3B,IAAa,sBAAb,MAEmC;CACjC,eAAe,IAAI,aAAa;CAEhC,GACE,OACA,UACY;EACZ,MAAM,mBAAmB,MAAa;AACpC,OAAI,aAAa,iBACf,UAAS,EAAE,OAAoB;;AAInC,QAAA,YAAkB,iBAAiB,MAAM,UAAU,EAAE,gBAAgB;AACrE,eAAa;AACX,SAAA,YAAkB,oBAAoB,MAAM,UAAU,EAAE,gBAAgB;;;CAI5E,KAA6B,OAAU,MAAuB;EAC5D,MAAM,cAAc,IAAI,iBAAiB,MAAM,UAAU,EAAE,KAAK;AAChE,QAAA,YAAkB,cAAc,YAAY;;;;;AC7BhD,IAAa,iBAAb,cAEU,YAAe;CACvB;CAEA,YAAY,WAAmB,UAA8B;AAC3D,SAAO;AACP,OAAK,YAAY,GAAG,SAAS,GAAG;;CAGlC,UAAU,KAAsB;AAC9B,SAAO,GAAG,KAAK,UAAU,GAAG,IAAI,UAAU;;CAE5C,IAAyB,KAA8B;EACrD,MAAM,QAAQ,aAAa,QAAQ,MAAA,SAAe,IAAI,CAAC;AACvD,MAAI,MACF,QAAO,KAAK,MAAM,MAAM;;CAK5B,IAAyB,KAAU,OAAsB;AACvD,SAAO,QACH,aAAa,QAAQ,MAAA,SAAe,IAAI,EAAE,KAAK,UAAU,MAAM,CAAC,GAChE,aAAa,WAAW,MAAA,SAAe,IAAI,CAAC;;CAGlD,OAAO,KAAoB;AACzB,SAAO,aAAa,WAAW,MAAA,SAAe,IAAI,CAAC;;;;;ACvBvD,IAAa,uBAAb,cAA0C,eAAiC;AAC3E,IAAa,4BAAb,cAA+C,oBAAkC;;;;;AAejF,IAAa,gBAAb,cAAmC,kBAAkB;CACnD;CACA;;;;;CAMA,YAAY,SAAiB,UAAuC,EAAE,EAAE;AACtE,QAAM,QAAQ;AACd,QAAA,WAAiB,QAAQ;AACzB,QAAA,YAAkB,QAAQ;AAC1B,OAAK,YAAY,IAAI,qBAAqB,UAAU,MAAA,SAAe,CAAC;AACpE,OAAK,iBAAiB,IAAI,2BAA2B,CAAC;AACtD,MAAI,QAAQ,QACV,MAAK,YAAY,QAAQ,QAAQ;;;;;CAOrC,aAAa,UAAwB;AACnC,QAAA,WAAiB;AACjB,OAAK,YAAY,IAAI,qBAAqB,UAAU,MAAA,SAAe,CAAC;AACpE,SAAO;;;;;;CAOT,cAAc,WAAyB;AACrC,QAAA,YAAkB;AAClB,SAAO;;;;;;CAOT,MAAM,QAAyB;EAC7B,MAAM,aAAa,MAAM,kBAAkB,OAAO,MAAA,UAAgB;AAClE,OAAK,mBAAmB,WAAW;AACnC,SAAO,MAAM,OAAO;;;;;;;;;;AAWxB,SAAgB,WACd,SACA,UAAuC,EAAE,EACzC;AACA,QAAO,IAAI,cAAc,SAAS,QAAQ,CAAC,OAAO"}

package/dist/node.d.ts

@@ -0,0 +1,136 @@
+import { $ as RenownProfile, A as DIDResolutionResult, B as Issuer, C as AuthVerifiedCredential, Ct as DEFAULT_RENOWN_NETWORK_ID, D as DIDDocument, Dt as VERIFIABLE_CREDENTIAL_EIP712_TYPE, E as CredentialStatus, Et as ISSUER_TYPE, F as IProof, G as KeyCapabilitySection, H as JWTVerified, I as IRenown, J as PowerhouseVerifiableCredential, K as LoginStatus, L as ISigner, M as IAuthCredentialSubject, N as IPowerhouseCredentialSubject, O as DIDDocumentMetadata, P as IPowerhouseIssuerType, Q as RenownEvents, R as IVerifiableCredential, S as AuthVerifiableCredential, St as DEFAULT_RENOWN_CHAIN_ID, T as CreateBearerTokenOptions, Tt as DOMAIN_TYPE, U as JWTVerifyPolicies, V as JWTPayload, W as JsonWebKey, X as Proof, Y as ProfileFetcher, Z as RenownEventEmitter, _ as signatureHasResultingHash, _t as JsonWebKeyPairStorage, a as getResolver, at as Unsubscribe, b as ConnectCrypto, bt as CREDENTIAL_SUBJECT_TYPE, c as fetchRenownProfile, ct as VerificationMethod, d as Renown, dt as W3CCredential, et as RenownStorage, f as RenownMemoryStorage, ft as BaseStorage, g as parseSignatureHashField, gt as IRenownCrypto, h as extractResultingHashFromSignature, ht as IConnectCrypto, i as createAuthBearerToken, it as Signer, j as EcdsaSignature, k as DIDResolutionMetadata, l as BaseRenownBuilder, lt as VerifiedCredential, m as createSignatureVerifier, mt as DID, n as VerifyAuthBearerTokenOptions, nt as Service, o as parsePkhDid, ot as User, p as RenownCryptoSigner, pt as IEventEmitter, q as PKHDid, r as assertIsAuthCredential, rt as ServiceEndpoint, s as verifyAuthBearerToken, st as Verifiable, t as ILogger, tt as RenownStorageMap, u as RenownBuilderOptions, ut as VerifiedJWT, v as MemoryKeyStorage, vt as JwkKeyPair, w as ConditionWeightedThreshold, wt as DEFAULT_RENOWN_URL, x as RenownCrypto, xt as CREDENTIAL_TYPES, y as RenownCryptoBuilder, yt as CREDENTIAL_SCHEMA_EIP712_TYPE, z as InternalUser } from "./utils-BGF8Qb5f.js";
+
+//#region src/crypto/node-key-storage.d.ts
+declare const RENOWN_PRIVATE_KEY_ENV = "PH_RENOWN_PRIVATE_KEY";
+declare const DEFAULT_KEYPAIR_PATH = ".ph/.keypair.json";
+/**
+ * Key storage that supports:
+ * 1. PH_RENOWN_PRIVATE_KEY environment variable (JSON-encoded JwkKeyPair)
+ * 2. Custom file path passed via options
+ * 3. Falls back to file storage at .ph/.keypair.json in current working directory
+ */
+declare class NodeKeyStorage implements JsonWebKeyPairStorage {
+  #private;
+  static readonly DEFAULT_KEYPAIR_PATH = ".ph/.keypair.json";
+  static readonly RENOWN_PRIVATE_KEY_ENV = "PH_RENOWN_PRIVATE_KEY";
+  constructor(filePath?: string, options?: {
+    envKeyName?: string;
+    logger?: ILogger;
+  });
+  loadKeyPair(): Promise<JwkKeyPair | undefined>;
+  saveKeyPair(keyPair: JwkKeyPair): Promise<void>;
+  removeKeyPair(): Promise<void>;
+}
+//#endregion
+//#region src/event/event.node.d.ts
+declare class NodeEventEmitter<Events extends Record<string, unknown>> implements IEventEmitter<Events> {
+  #private;
+  constructor();
+  on<K extends keyof Events>(event: K, listener: (data: Events[K]) => void): () => void;
+  emit<K extends keyof Events>(event: K, data: Events[K]): void;
+}
+//#endregion
+//#region src/storage/storage.node.d.ts
+declare class NodeStorage<T extends Record<string, unknown> = Record<string, unknown>> extends BaseStorage<T> {
+  private readonly filePath;
+  constructor(filePath: string);
+  private readData;
+  private writeData;
+  get<Key extends keyof T>(key: Key): T[Key] | undefined;
+  set<Key extends keyof T>(key: Key, value?: T[Key]): void;
+  delete(key: keyof T): void;
+}
+//#endregion
+//#region src/init.node.d.ts
+declare class NodeRenownEventEmitter extends NodeEventEmitter<RenownEvents> {}
+declare class NodeRenownStorage extends NodeStorage<RenownStorageMap> {}
+declare const DEFAULT_RENOWN_STORAGE_PATH = "./.ph/.renown.json";
+interface NodeRenownBuilderOptions {
+  /** File path for user storage. Defaults to ".ph/.renown.json" in cwd */
+  storagePath?: string;
+  /** File path for keypair storage. Defaults to ".ph/.keypair.json" in cwd */
+  keyPath?: string;
+  /** Renown server URL. Defaults to https://www.renown.id */
+  baseUrl?: string;
+}
+/**
+ * Node.js-specific Renown builder with pre-configured defaults.
+ * Uses file-based storage for both user data and key storage.
+ */
+declare class RenownBuilder extends BaseRenownBuilder {
+  /**
+   * @param appName - Application name used for signing context
+   * @param options - Node.js-specific configuration options
+   */
+  constructor(appName: string, options?: NodeRenownBuilderOptions);
+}
+//#endregion
+//#region src/login.node.d.ts
+interface BrowserLoginOptions {
+  /** Renown server URL */
+  renownUrl: string;
+  /** Timeout in milliseconds. Defaults to 5 minutes. */
+  timeoutMs?: number;
+  /** Called with the login URL and session ID before the browser is opened */
+  onLoginUrl?: (url: string, sessionId: string) => void;
+  /** Called on each poll tick while waiting for authentication */
+  onPollTick?: () => void;
+  /** Called when the browser failed to open automatically */
+  onBrowserOpenFailed?: (url: string) => void;
+  /** AbortSignal to cancel the login flow */
+  signal?: AbortSignal;
+}
+interface BrowserLoginResult {
+  user: User;
+  cliDid: string;
+}
+interface AuthStatusResult {
+  authenticated: boolean;
+  address?: string;
+  userDid?: string;
+  chainId?: number;
+  cliDid: string;
+  authenticatedAt?: Date;
+  baseUrl: string;
+}
+/**
+ * Open a URL in the default browser (cross-platform).
+ */
+declare function openBrowser(url: string): Promise<void>;
+/**
+ * Perform a browser-based login flow with Renown.
+ * Opens the user's browser to authenticate, then polls for completion.
+ * Throws if already authenticated or if the flow times out.
+ * If the browser fails to open, the flow continues polling — callers
+ * can use onBrowserOpenFailed to show the URL as a fallback.
+ */
+declare function browserLogin(renown: IRenown, options: BrowserLoginOptions): Promise<BrowserLoginResult>;
+/**
+ * Get the current authentication status from a Renown instance.
+ */
+declare function getAuthStatus(renown: IRenown): AuthStatusResult;
+interface AccessTokenResult {
+  token: string;
+  did: string;
+  address: string;
+  expiresIn: number;
+}
+/**
+ * Generate a bearer token for API authentication.
+ * Requires the user to be authenticated (via browserLogin or equivalent).
+ * Throws if not authenticated.
+ */
+declare function generateAccessToken(renown: IRenown, options?: CreateBearerTokenOptions): Promise<AccessTokenResult>;
+/**
+ * Parse a human-readable expiry string to seconds.
+ * Supports formats: "7d" (days), "24h" (hours), "3600" (seconds), "3600s" (seconds).
+ * Only accepts positive integers — decimals like "1.5h" are rejected.
+ */
+declare function parseExpiry(expiry: string): number;
+/**
+ * Format an expiry duration in seconds to a human-readable string.
+ */
+declare function formatExpiry(expiresIn: number): string;
+//#endregion
+export { AccessTokenResult, AuthStatusResult, AuthVerifiableCredential, AuthVerifiedCredential, BaseRenownBuilder, BrowserLoginOptions, BrowserLoginResult, CREDENTIAL_SCHEMA_EIP712_TYPE, CREDENTIAL_SUBJECT_TYPE, CREDENTIAL_TYPES, ConditionWeightedThreshold, ConnectCrypto, CreateBearerTokenOptions, CredentialStatus, DEFAULT_KEYPAIR_PATH, DEFAULT_RENOWN_CHAIN_ID, DEFAULT_RENOWN_NETWORK_ID, DEFAULT_RENOWN_STORAGE_PATH, DEFAULT_RENOWN_URL, DID, DIDDocument, DIDDocumentMetadata, DIDResolutionMetadata, DIDResolutionResult, DOMAIN_TYPE, EcdsaSignature, IAuthCredentialSubject, IConnectCrypto, ILogger, IPowerhouseCredentialSubject, IPowerhouseIssuerType, IProof, IRenown, IRenownCrypto, ISSUER_TYPE, ISigner, IVerifiableCredential, InternalUser, Issuer, JWTPayload, JWTVerified, JWTVerifyPolicies, JsonWebKey, JsonWebKeyPairStorage, JwkKeyPair, KeyCapabilitySection, LoginStatus, MemoryKeyStorage, NodeEventEmitter, NodeKeyStorage, NodeRenownBuilderOptions, NodeRenownEventEmitter, NodeRenownStorage, NodeStorage, PKHDid, PowerhouseVerifiableCredential, ProfileFetcher, Proof, RENOWN_PRIVATE_KEY_ENV, Renown, RenownBuilder, RenownBuilderOptions, RenownCrypto, RenownCryptoBuilder, RenownCryptoSigner, RenownEventEmitter, RenownEvents, RenownMemoryStorage, RenownProfile, RenownStorage, RenownStorageMap, Service, ServiceEndpoint, Signer, Unsubscribe, User, VERIFIABLE_CREDENTIAL_EIP712_TYPE, Verifiable, VerificationMethod, VerifiedCredential, VerifiedJWT, VerifyAuthBearerTokenOptions, W3CCredential, assertIsAuthCredential, browserLogin, createAuthBearerToken, createSignatureVerifier, extractResultingHashFromSignature, fetchRenownProfile, formatExpiry, generateAccessToken, getAuthStatus, getResolver, openBrowser, parseExpiry, parsePkhDid, parseSignatureHashField, signatureHasResultingHash, verifyAuthBearerToken };
+//# sourceMappingURL=node.d.ts.map

package/dist/node.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"node.d.ts","names":[],"sources":["../src/crypto/node-key-storage.ts","../src/event/event.node.ts","../src/storage/storage.node.ts","../src/init.node.ts","../src/login.node.ts"],"mappings":";;;cAWa,sBAAA;AAAA,cACA,oBAAA;;;;;AAAb;;cAQa,cAAA,YAA0B,qBAAA;EAAA;kBAKrB,oBAAA;EAAA,gBACA,sBAAA;cAGd,QAAA,WACA,OAAA;IAAW,UAAA;IAAqB,MAAA,GAAS,OAAA;EAAA;EAa3C,WAAA,CAAA,GAAe,OAAA,CAAQ,UAAA;EAyBjB,WAAA,CAAY,OAAA,EAAS,UAAA,GAAa,OAAA;EAWxC,aAAA,CAAA,GAAiB,OAAA;AAAA;;;cC5EN,gBAAA,gBACI,MAAA,8BACJ,aAAA,CAAc,MAAA;EAAA;;EAOzB,EAAA,iBAAmB,MAAA,CAAA,CACjB,KAAA,EAAO,CAAA,EACP,QAAA,GAAW,IAAA,EAAM,MAAA,CAAO,CAAA;EAQ1B,IAAA,iBAAqB,MAAA,CAAA,CAAQ,KAAA,EAAO,CAAA,EAAG,IAAA,EAAM,MAAA,CAAO,CAAA;AAAA;;;cClBzC,WAAA,WACD,MAAA,oBAA0B,MAAA,2BAC5B,WAAA,CAAY,CAAA;EAAA,iBACH,QAAA;cAEL,QAAA;EAAA,QAYJ,QAAA;EAAA,QAKA,SAAA;EAIR,GAAA,mBAAsB,CAAA,CAAA,CAAG,GAAA,EAAK,GAAA,GAAM,CAAA,CAAE,GAAA;EAKtC,GAAA,mBAAsB,CAAA,CAAA,CAAG,GAAA,EAAK,GAAA,EAAK,KAAA,GAAQ,CAAA,CAAE,GAAA;EAU7C,MAAA,CAAO,GAAA,QAAW,CAAA;AAAA;;;cCvCP,sBAAA,SAA+B,gBAAA,CAAiB,YAAA;AAAA,cAChD,iBAAA,SAA0B,WAAA,CAAY,gBAAA;AAAA,cAEtC,2BAAA;AAAA,UAEI,wBAAA;;EAEf,WAAA;EHD+B;EGG/B,OAAA;EHK0B;EGH1B,OAAA;AAAA;;;;;cAOW,aAAA,SAAsB,iBAAA;EHJI;;;;cGSzB,OAAA,UAAiB,OAAA,GAAS,wBAAA;AAAA;;;UCvBvB,mBAAA;;EAEf,SAAA;EJGiC;EIDjC,SAAA;EJCiC;EICjC,UAAA,IAAc,GAAA,UAAa,SAAA;EJAhB;EIEX,UAAA;;EAEA,mBAAA,IAAuB,GAAA;EJJQ;EIM/B,MAAA,GAAS,WAAA;AAAA;AAAA,UAGM,kBAAA;EACf,IAAA,EAAM,IAAA;EACN,MAAA;AAAA;AAAA,UAGe,gBAAA;EACf,aAAA;EACA,OAAA;EACA,OAAA;EACA,OAAA;EACA,MAAA;EACA,eAAA,GAAkB,IAAA;EAClB,OAAA;AAAA;;;;iBA+CoB,WAAA,CAAY,GAAA,WAAc,OAAA;;;;;;;;iBAyD1B,YAAA,CACpB,MAAA,EAAQ,OAAA,EACR,OAAA,EAAS,mBAAA,GACR,OAAA,CAAQ,kBAAA;;;;iBA2CK,aAAA,CAAc,MAAA,EAAQ,OAAA,GAAU,gBAAA;AAAA,UAe/B,iBAAA;EACf,KAAA;EACA,GAAA;EACA,OAAA;EACA,SAAA;AAAA;;;;;;iBAQoB,mBAAA,CACpB,MAAA,EAAQ,OAAA,EACR,OAAA,GAAU,wBAAA,GACT,OAAA,CAAQ,iBAAA;;;;;;iBAuBK,WAAA,CAAY,MAAA;;;;iBAgCZ,YAAA,CAAa,SAAA"}

package/dist/node.js

@@ -0,0 +1,305 @@
+import { C as DEFAULT_RENOWN_CHAIN_ID, D as ISSUER_TYPE, E as DOMAIN_TYPE, O as VERIFIABLE_CREDENTIAL_EIP712_TYPE, S as CREDENTIAL_TYPES, T as DEFAULT_RENOWN_URL, _ as getResolver, a as BaseStorage, b as CREDENTIAL_SCHEMA_EIP712_TYPE, c as extractResultingHashFromSignature, d as MemoryKeyStorage, f as RenownCryptoBuilder, g as createAuthBearerToken, h as assertIsAuthCredential, i as RenownMemoryStorage, l as parseSignatureHashField, m as RenownCrypto, n as fetchRenownProfile, o as RenownCryptoSigner, p as ConnectCrypto, r as Renown, s as createSignatureVerifier, t as BaseRenownBuilder, u as signatureHasResultingHash, v as parsePkhDid, w as DEFAULT_RENOWN_NETWORK_ID, x as CREDENTIAL_SUBJECT_TYPE, y as verifyAuthBearerToken } from "./renown-builder-EmbIygby.js";
+import { existsSync, mkdirSync, readFileSync, unlinkSync, writeFileSync } from "node:fs";
+import { dirname, join } from "node:path";
+import { EventEmitter } from "node:events";
+//#region src/crypto/node-key-storage.ts
+const RENOWN_PRIVATE_KEY_ENV = "PH_RENOWN_PRIVATE_KEY";
+const DEFAULT_KEYPAIR_PATH = ".ph/.keypair.json";
+/**
+* Key storage that supports:
+* 1. PH_RENOWN_PRIVATE_KEY environment variable (JSON-encoded JwkKeyPair)
+* 2. Custom file path passed via options
+* 3. Falls back to file storage at .ph/.keypair.json in current working directory
+*/
+var NodeKeyStorage = class {
+	#filePath;
+	#envKeyName;
+	#logger;
+	static DEFAULT_KEYPAIR_PATH = DEFAULT_KEYPAIR_PATH;
+	static RENOWN_PRIVATE_KEY_ENV = RENOWN_PRIVATE_KEY_ENV;
+	constructor(filePath, options = {}) {
+		this.#filePath = filePath || join(process.cwd(), ".ph/.keypair.json");
+		this.#envKeyName = options.envKeyName || "PH_RENOWN_PRIVATE_KEY";
+		this.#logger = options.logger;
+		const dir = dirname(this.#filePath);
+		if (!existsSync(dir)) mkdirSync(dir, { recursive: true });
+	}
+	loadKeyPair() {
+		const envKey = process.env[this.#envKeyName];
+		if (envKey) try {
+			const keyPairJson = JSON.parse(envKey);
+			const keyPair = this.#parseKeyPair(keyPairJson);
+			this.#logger?.debug("Loaded keypair from environment variable");
+			return Promise.resolve(keyPair);
+		} catch (e) {
+			throw new Error(`Failed to parse ${this.#envKeyName}: ${e instanceof Error ? e.message : String(e)}`, { cause: e });
+		}
+		return Promise.resolve(this.#loadFromFile());
+	}
+	async saveKeyPair(keyPair) {
+		if (process.env[this.#envKeyName]) return;
+		this.#saveToFile(keyPair);
+		return Promise.resolve();
+	}
+	removeKeyPair() {
+		if (process.env[this.#envKeyName]) delete process.env[this.#envKeyName];
+		if (existsSync(this.#filePath)) unlinkSync(this.#filePath);
+		return Promise.resolve();
+	}
+	#loadFromFile() {
+		try {
+			if (!existsSync(this.#filePath)) return;
+			const data = readFileSync(this.#filePath, "utf-8");
+			const parsed = JSON.parse(data);
+			const keyPair = this.#parseKeyPair(parsed);
+			this.#logger?.debug(`Loaded keypair from ${this.#filePath}`);
+			return keyPair;
+		} catch (e) {
+			throw new Error(`Failed to parse ${this.#filePath}: ${e instanceof Error ? e.message : String(e)}`, { cause: e });
+		}
+	}
+	#saveToFile(keyPair) {
+		const data = { keyPair };
+		writeFileSync(this.#filePath, JSON.stringify(data, null, 2), "utf-8");
+		this.#logger?.debug(`Saved keypair to ${this.#filePath}`);
+	}
+	#parseKeyPair(json) {
+		if (typeof json !== "object") throw new Error("Invalid keyPair format:" + JSON.stringify(json));
+		const object = json;
+		let keyPair;
+		if ("keyPair" in object) keyPair = object.keyPair;
+		else keyPair = object;
+		if ("publicKey" in keyPair && "privateKey" in keyPair) return keyPair;
+		else throw new Error("Invalid keyPair format:" + JSON.stringify(json));
+	}
+};
+//#endregion
+//#region src/event/event.node.ts
+var NodeEventEmitter = class {
+	#emitter = new EventEmitter();
+	constructor() {
+		this.#emitter.setMaxListeners(0);
+	}
+	on(event, listener) {
+		this.#emitter.on(event, listener);
+		return () => {
+			this.#emitter.removeListener(event.toString(), listener);
+		};
+	}
+	emit(event, data) {
+		this.#emitter.emit(event.toString(), data);
+	}
+};
+//#endregion
+//#region src/storage/storage.node.ts
+var NodeStorage = class extends BaseStorage {
+	filePath;
+	constructor(filePath) {
+		super();
+		this.filePath = filePath;
+		mkdirSync(dirname(this.filePath), { recursive: true });
+		if (!existsSync(this.filePath)) writeFileSync(this.filePath, JSON.stringify({}));
+	}
+	readData() {
+		const data = readFileSync(this.filePath, "utf-8");
+		return JSON.parse(data);
+	}
+	writeData(data) {
+		writeFileSync(this.filePath, JSON.stringify(data, null, 2));
+	}
+	get(key) {
+		return this.readData()[key];
+	}
+	set(key, value) {
+		const data = this.readData();
+		if (value === void 0) delete data[key];
+		else data[key] = value;
+		this.writeData(data);
+	}
+	delete(key) {
+		const data = this.readData();
+		delete data[key];
+		this.writeData(data);
+	}
+};
+//#endregion
+//#region src/init.node.ts
+var NodeRenownEventEmitter = class extends NodeEventEmitter {};
+var NodeRenownStorage = class extends NodeStorage {};
+const DEFAULT_RENOWN_STORAGE_PATH = "./.ph/.renown.json";
+/**
+* Node.js-specific Renown builder with pre-configured defaults.
+* Uses file-based storage for both user data and key storage.
+*/
+var RenownBuilder = class extends BaseRenownBuilder {
+	/**
+	* @param appName - Application name used for signing context
+	* @param options - Node.js-specific configuration options
+	*/
+	constructor(appName, options = {}) {
+		super(appName);
+		const { storagePath = DEFAULT_RENOWN_STORAGE_PATH, keyPath, baseUrl } = options;
+		this.withKeyPairStorage(new NodeKeyStorage(keyPath));
+		this.withStorage(new NodeRenownStorage(storagePath));
+		this.withEventEmitter(new NodeRenownEventEmitter());
+		if (baseUrl) this.withBaseUrl(baseUrl);
+	}
+};
+//#endregion
+//#region src/login.node.ts
+const DEFAULT_TIMEOUT_MS = 300 * 1e3;
+const POLL_INTERVAL_MS = 2e3;
+const SECONDS_IN_DAY = 1440 * 60;
+function abortReason(signal) {
+	if (signal.reason instanceof Error) return signal.reason;
+	if (signal.reason) return new Error(String(signal.reason));
+	return new DOMException("Aborted", "AbortError");
+}
+function sleep(ms, signal) {
+	return new Promise((resolve, reject) => {
+		if (signal?.aborted) {
+			reject(abortReason(signal));
+			return;
+		}
+		const onAbort = () => {
+			clearTimeout(timer);
+			reject(abortReason(signal));
+		};
+		const timer = setTimeout(() => {
+			signal?.removeEventListener("abort", onAbort);
+			resolve();
+		}, ms);
+		signal?.addEventListener("abort", onAbort, { once: true });
+	});
+}
+/**
+* Open a URL in the default browser (cross-platform).
+*/
+async function openBrowser(url) {
+	const { execFile } = await import("node:child_process");
+	const { promisify } = await import("node:util");
+	const execFileAsync = promisify(execFile);
+	const platform = process.platform;
+	if (platform === "darwin") await execFileAsync("open", [url]);
+	else if (platform === "win32") await execFileAsync("cmd", [
+		"/c",
+		"start",
+		"",
+		url
+	]);
+	else await execFileAsync("xdg-open", [url]);
+}
+async function pollSession(renownUrl, sessionId, timeoutMs, onPollTick, signal) {
+	const startTime = Date.now();
+	const sessionUrl = new URL(`/api/console/session/${sessionId}`, renownUrl).toString();
+	while (Date.now() - startTime < timeoutMs) {
+		signal?.throwIfAborted();
+		try {
+			const response = await fetch(sessionUrl, { signal });
+			if (response.ok) {
+				const data = await response.json();
+				if (data.status === "ready") return data;
+			}
+		} catch (error) {
+			if (error instanceof DOMException && error.name === "AbortError") throw error;
+		}
+		onPollTick?.();
+		await sleep(POLL_INTERVAL_MS, signal);
+	}
+	return null;
+}
+/**
+* Perform a browser-based login flow with Renown.
+* Opens the user's browser to authenticate, then polls for completion.
+* Throws if already authenticated or if the flow times out.
+* If the browser fails to open, the flow continues polling — callers
+* can use onBrowserOpenFailed to show the URL as a fallback.
+*/
+async function browserLogin(renown, options) {
+	if (renown.user?.credential) throw new Error(`Already authenticated as ${renown.user.address}. Logout first.`);
+	const timeoutMs = options.timeoutMs ?? DEFAULT_TIMEOUT_MS;
+	const sessionId = crypto.randomUUID();
+	const loginUrl = new URL("/console", options.renownUrl);
+	loginUrl.searchParams.set("session", sessionId);
+	loginUrl.searchParams.set("connect", renown.did);
+	loginUrl.searchParams.set("app", renown.did);
+	const url = loginUrl.toString();
+	options.onLoginUrl?.(url, sessionId);
+	try {
+		await openBrowser(url);
+	} catch {
+		options.onBrowserOpenFailed?.(url);
+	}
+	const result = await pollSession(options.renownUrl, sessionId, timeoutMs, options.onPollTick, options.signal);
+	if (!result) throw new Error("Authentication timed out.");
+	return {
+		user: await renown.login(result.did),
+		cliDid: renown.did
+	};
+}
+/**
+* Get the current authentication status from a Renown instance.
+*/
+function getAuthStatus(renown) {
+	const user = renown.user;
+	const credential = user?.credential;
+	return {
+		authenticated: !!credential,
+		address: user?.address,
+		userDid: user?.did,
+		chainId: user?.chainId,
+		cliDid: renown.did,
+		authenticatedAt: credential ? new Date(credential.issuanceDate) : void 0,
+		baseUrl: renown.baseUrl
+	};
+}
+/**
+* Generate a bearer token for API authentication.
+* Requires the user to be authenticated (via browserLogin or equivalent).
+* Throws if not authenticated.
+*/
+async function generateAccessToken(renown, options) {
+	const user = renown.user;
+	if (!user?.credential) throw new Error("Not authenticated. Login first to generate access tokens.");
+	return {
+		token: await renown.getBearerToken(options ?? {}),
+		did: renown.did,
+		address: user.address,
+		expiresIn: options?.expiresIn ?? 0
+	};
+}
+/**
+* Parse a human-readable expiry string to seconds.
+* Supports formats: "7d" (days), "24h" (hours), "3600" (seconds), "3600s" (seconds).
+* Only accepts positive integers — decimals like "1.5h" are rejected.
+*/
+function parseExpiry(expiry) {
+	const match = expiry.trim().toLowerCase().match(/^(\d+)(d|h|s)?$/);
+	if (!match) throw new Error(`Invalid expiry format: ${expiry}. Expected a positive integer with optional suffix: "7d", "24h", "3600s", or "3600".`);
+	const value = Number(match[1]);
+	const unit = match[2];
+	if (value <= 0) throw new Error(`Invalid expiry format: ${expiry}. Value must be a positive integer.`);
+	switch (unit) {
+		case "d": return value * SECONDS_IN_DAY;
+		case "h": return value * 60 * 60;
+		default: return value;
+	}
+}
+/**
+* Format an expiry duration in seconds to a human-readable string.
+*/
+function formatExpiry(expiresIn) {
+	const days = Math.floor(expiresIn / SECONDS_IN_DAY);
+	const hours = Math.floor(expiresIn % SECONDS_IN_DAY / 3600);
+	if (days > 0) {
+		const dayStr = `${days} day${days !== 1 ? "s" : ""}`;
+		if (hours > 0) return `${dayStr} and ${hours} hour${hours !== 1 ? "s" : ""}`;
+		return dayStr;
+	}
+	if (hours > 0) return `${hours} hour${hours !== 1 ? "s" : ""}`;
+	return `${expiresIn} second${expiresIn !== 1 ? "s" : ""}`;
+}
+//#endregion
+export { BaseRenownBuilder, CREDENTIAL_SCHEMA_EIP712_TYPE, CREDENTIAL_SUBJECT_TYPE, CREDENTIAL_TYPES, ConnectCrypto, DEFAULT_KEYPAIR_PATH, DEFAULT_RENOWN_CHAIN_ID, DEFAULT_RENOWN_NETWORK_ID, DEFAULT_RENOWN_STORAGE_PATH, DEFAULT_RENOWN_URL, DOMAIN_TYPE, ISSUER_TYPE, MemoryKeyStorage, NodeEventEmitter, NodeKeyStorage, NodeRenownEventEmitter, NodeRenownStorage, NodeStorage, RENOWN_PRIVATE_KEY_ENV, Renown, RenownBuilder, RenownCrypto, RenownCryptoBuilder, RenownCryptoSigner, RenownMemoryStorage, VERIFIABLE_CREDENTIAL_EIP712_TYPE, assertIsAuthCredential, browserLogin, createAuthBearerToken, createSignatureVerifier, extractResultingHashFromSignature, fetchRenownProfile, formatExpiry, generateAccessToken, getAuthStatus, getResolver, openBrowser, parseExpiry, parsePkhDid, parseSignatureHashField, signatureHasResultingHash, verifyAuthBearerToken };
+
+//# sourceMappingURL=node.js.map