npm - @seaverse/dataservice - Versions diffs - 1.3.0 → 1.6.0 - Mend

@seaverse/dataservice 1.3.0 → 1.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/README.md CHANGED Viewed

@@ -22,36 +22,46 @@ npm install @seaverse/dataservice
 ```typescript
 import { createClient } from '@seaverse/dataservice';
-// Create client (Bearer prefix auto-added, uses default SeaVerse API, appId auto-extracted from URL)
-const client = createClient({
-  token: 'your-jwt-token',
+// Auto-fetch token from parent page (iframe)
+const client = await createClient({});
+// For development/testing, use debugSetToken
+import { debugSetToken } from '@seaverse/dataservice';
+debugSetToken('your-test-token');
+const client = await createClient({});
+// Store user preferences (single record)
+const userPrefs = client.userData.collection('user_preferences');
+await userPrefs.insert({
+  theme: 'dark',
+  language: 'en',
+  notifications: true,
 });
-// Access user data table
-const orders = client.userData.collection('orders');
+// Update preferences
+await userPrefs.patch(userPrefs.id, { theme: 'light' });
-// Insert data
-const order = await orders.insert({
+// Store multiple items (e.g., orders) - each needs unique collection name
+const order1 = await client.userData.collection('order_001').insert({
   order_number: 'ORD-001',
   status: 'pending',
   total: 99.99,
 });
-// Query data
-const pending = await orders
-  .select()
-  .eq('data->>status', 'pending')
-  .order('created_at', { descending: true })
-  .execute();
-// Update data
-await orders.patch(order.id, { status: 'completed' });
+const order2 = await client.userData.collection('order_002').insert({
+  order_number: 'ORD-002',
+  status: 'shipped',
+  total: 149.99,
+});
-// Delete single record
-await orders.delete(order.id);
+// Or use batch insert for multiple records
+const orders = await client.userData.batchInsert('order', [
+  { order_number: 'ORD-003', status: 'pending', total: 79.99 },
+  { order_number: 'ORD-004', status: 'pending', total: 199.99 },
+]);
-// Or delete all records in collection
-const deletedCount = await orders.deleteAll();
+// Delete a specific record
+await client.userData.collection('order_001').delete(order1.id);
 ```
 ## Core Concepts
@@ -94,22 +104,144 @@ The SDK provides access to different data tables with different permission scope
 ### Collections
-Collections are logical groupings within a table. Each collection stores one record per `(user_id, app_id, collection_name)` combination.
+**Critical Understanding**: A collection name identifies a **single record**, not a container for multiple records.
+The `(user_id, app_id, collection_name)` combination is a **unique constraint** - meaning each collection name can only store ONE record per user and app.
-**Important**: To store multiple records, use unique collection names:
+**To store multiple records, you MUST use unique collection names**:
 ```typescript
-// ✓ Correct: Unique collection names
-await client.userData.collection('order_1').insert(order1);
-await client.userData.collection('order_2').insert(order2);
+// ✓ CORRECT: Each record gets a unique collection name
+await client.userData.collection('order_001').insert(order1);
+await client.userData.collection('order_002').insert(order2);
+await client.userData.collection('order_003').insert(order3);
-// ✓ Or use batch insert helper
-await client.userData.batchInsert('order', [order1, order2]);
-// Creates: order_0, order_1, order_2, ...
+// ✓ RECOMMENDED: Use batch insert (auto-generates unique names)
+const insertedOrders = await client.userData.batchInsert('order', [order1, order2, order3]);
+// Creates collections: order_<timestamp>_0, order_<timestamp>_1, order_<timestamp>_2
-// ✗ Wrong: Same collection name
-await client.userData.collection('order').insert(order1);
-await client.userData.collection('order').insert(order2); // Error: 409 Conflict
+// ✗ WRONG: Reusing the same collection name
+const orders = client.userData.collection('orders');
+await orders.insert(order1); // ✓ Success
+await orders.insert(order2); // ✗ ERROR: 409 Conflict (collection 'orders' already exists)
+```
+**Why this design?**
+- Each collection name acts as a **unique key** for a single record
+- Think of it like a key-value store: `collection_name` → single record
+- For multiple records, use patterns like: `order_${orderId}`, `msg_${conversationId}_${msgId}`
+## ⚠️ Common Pitfalls
+### Pitfall #1: Treating Collections as Containers
+```typescript
+// ❌ WRONG: This looks like it should work, but it doesn't
+const orders = client.userData.collection('orders');
+await orders.insert({ order_number: 'ORD-001', total: 99.99 });  // ✓ Works
+await orders.insert({ order_number: 'ORD-002', total: 149.99 }); // ✗ ERROR: 409 Conflict!
+// ✓ CORRECT: Each record needs a unique collection name
+await client.userData.collection('order_001').insert({ order_number: 'ORD-001', total: 99.99 });
+await client.userData.collection('order_002').insert({ order_number: 'ORD-002', total: 149.99 });
+```
+**Why?** The `(user_id, app_id, collection_name)` combination is a unique constraint. Once you insert into `'orders'`, that collection name is "taken" for that user and app.
+### Pitfall #2: Expecting Query Methods to Return Multiple Records
+```typescript
+// ❌ MISLEADING: This looks like it queries multiple orders
+const orders = client.userData.collection('orders');
+const pending = await orders.select().eq('data->>status', 'pending').execute();
+// Returns: [] or [single order] - NOT multiple orders!
+// ✓ CORRECT: To work with multiple records, track them separately
+const orderIds = ['order_001', 'order_002', 'order_003'];
+const allOrders = await Promise.all(
+  orderIds.map(id => client.userData.collection(id).get(recordId))
+);
+```
+**Why?** A collection name identifies a single record, so queries on that collection can only return 0 or 1 record.
+### Pitfall #3: Using Plural Names for Collections
+```typescript
+// ❌ MISLEADING: Plural name suggests multiple items
+const orders = client.userData.collection('orders');
+const users = client.userData.collection('users');
+// ✓ BETTER: Use singular or ID-based names
+const order = client.userData.collection('order_12345');
+const userProfile = client.userData.collection('user_profile');
+const preference = client.userData.collection('user_preferences');
+```
+**Why?** Plural names create false expectations. Use singular names or include IDs to make it clear each collection is one record.
+## 💡 Best Practices
+### Pattern 1: Single Record per Concept
+Use this for user preferences, settings, profiles - things where you only need one record:
+```typescript
+// User preferences (one per user)
+const prefs = await client.userData.collection('preferences').insert({
+  theme: 'dark',
+  language: 'en',
+});
+// User profile (one per user)
+const profile = await client.userData.collection('profile').insert({
+  name: 'John Doe',
+  avatar: 'https://...',
+});
+```
+### Pattern 2: ID-Based Collection Names
+Use this for multiple items of the same type:
+```typescript
+// Multiple orders - each with unique collection name
+const order1 = await client.userData.collection(`order_${orderId1}`).insert(orderData1);
+const order2 = await client.userData.collection(`order_${orderId2}`).insert(orderData2);
+// Multiple conversations
+const conv1 = await client.userData.collection(`conv_${convId1}`).insert(convData1);
+const conv2 = await client.userData.collection(`conv_${convId2}`).insert(convData2);
+```
+### Pattern 3: Batch Insert for Multiple Records
+Use this when creating multiple records at once:
+```typescript
+// Create multiple orders in one call
+const orders = await client.userData.batchInsert('order', [
+  { order_number: 'ORD-001', total: 99.99 },
+  { order_number: 'ORD-002', total: 149.99 },
+  { order_number: 'ORD-003', total: 199.99 },
+]);
+// Returns array of DataRecord with auto-generated collection names
+// order_<timestamp>_0, order_<timestamp>_1, order_<timestamp>_2
+```
+### Pattern 4: Hierarchical Collection Names
+Use this for nested data structures:
+```typescript
+// Messages within a conversation
+await client.userData.collection(`conv_${convId}_msg_1`).insert(message1);
+await client.userData.collection(`conv_${convId}_msg_2`).insert(message2);
+// Tasks within a project
+await client.userData.collection(`project_${projId}_task_1`).insert(task1);
+await client.userData.collection(`project_${projId}_task_2`).insert(task2);
 ```
 ### Data Records
@@ -136,33 +268,77 @@ interface DataRecord<T> {
 ```typescript
 import { createClient } from '@seaverse/dataservice';
-const client = createClient({
-  token: string;            // JWT token (Bearer prefix optional, auto-added if missing)
+const client = await createClient({
   url?: string;             // PostgREST API URL (default: https://dataservice-api.seaverse.ai)
   options?: {
     timeout?: number;       // Request timeout in ms (default: 30000)
+    tokenFetchTimeout?: number; // Token fetch timeout in ms (default: 5000)
     headers?: Record<string, string>; // Additional headers
   };
 });
 ```
-**Examples:**
+**Token Authentication Priority:**
+The SDK uses the following priority order for obtaining authentication tokens:
+1. **Debug Token (Highest Priority)** - Set via `debugSetToken()`
+2. **Parent Page Token** - Auto-fetched via PostMessage when in iframe
+3. **No Token** - Client created without authentication (API calls will fail with 401)
+**Production Usage (Auto-fetch from parent):**
+The SDK automatically fetches the authentication token from the parent page via PostMessage when running in an iframe:
 ```typescript
-// Use default SeaVerse API (Bearer prefix auto-added)
-const client = createClient({
-  token: 'your-jwt-token',
-});
+// No token needed - auto-fetches from parent
+const client = await createClient({});
-// Or with explicit Bearer prefix (both work)
-const client = createClient({
-  token: 'Bearer your-jwt-token',
-});
+// Parent page should respond to PostMessage:
+// Send: { type: 'seaverse:get_token' }
+// Receive: { type: 'seaverse:token', payload: { accessToken: string, expiresIn: number } }
+// Error: { type: 'seaverse:error', error: string }
+```
+**Development/Testing (Debug Token):**
+For development and testing, use `debugSetToken` to bypass the parent page token fetch:
+```typescript
+import { debugSetToken, createClient } from '@seaverse/dataservice';
+// Set debug token BEFORE creating client (highest priority)
+debugSetToken('your-test-token');
+// Client will use debug token directly, skipping parent page fetch
+const client = await createClient({});
+```
+**Graceful Degradation:**
+If token fetching fails (e.g., not in an iframe, parent doesn't respond), the SDK will create a client without a token. API calls that require authentication will return 401 errors:
+```typescript
+// Client creation never throws, even if token fetch fails
+const client = await createClient({});
+try {
+  // API calls may fail with authentication errors if no token
+  const data = await client.userData.collection('test').insert({ foo: 'bar' });
+} catch (error) {
+  if (error instanceof DataServiceError && error.statusCode === 401) {
+    console.log('Authentication required - no token available');
+    // Handle authentication error (e.g., show login prompt)
+  }
+}
+```
+**Custom Endpoint:**
+```typescript
 // Use custom API endpoint
-const client = createClient({
+const client = await createClient({
   url: 'https://your-custom-api.example.com',
-  token: 'your-jwt-token',
 });
 ```
@@ -221,17 +397,8 @@ collection.patch(id: string, partial: Partial<T>): Promise<DataRecord<T>>
 #### Delete
 ```typescript
-// Hard delete single record (permanent)
+// Delete a record by ID (permanent deletion)
 collection.delete(id: string): Promise<void>
-// Hard delete all records in collection (returns count of deleted records)
-collection.deleteAll(): Promise<number>
-// Soft delete (sets deleted_at timestamp)
-collection.softDelete(id: string): Promise<boolean>
-// Restore soft-deleted record
-collection.restore(id: string): Promise<boolean>
 ```
 ### Query Builder
@@ -309,15 +476,15 @@ type Order = {
   notes?: string;
 };
-const client = createClient({
-  token: process.env.JWT_TOKEN!,
-});
-const orders = client.userData.collection<Order>('orders');
+// For development/testing with Node.js
+import { debugSetToken, createClient } from '@seaverse/dataservice';
+debugSetToken(process.env.JWT_TOKEN!);
+const client = await createClient({});
-// Create order
-const order = await orders.insert({
-  order_number: `ORD-${Date.now()}`,
+// Create multiple orders - each with unique collection name
+const orderNumber1 = `ORD-${Date.now()}`;
+const order1 = await client.userData.collection<Order>(`order_${orderNumber1}`).insert({
+  order_number: orderNumber1,
   customer_email: 'customer@example.com',
   items: [
     { product_id: 'PROD-001', quantity: 2, price: 29.99 },
@@ -327,33 +494,36 @@ const order = await orders.insert({
   total: 109.97,
 });
-console.log('Order created:', order.id);
-// Query pending orders over $50
-const pendingOrders = await orders
-  .select()
-  .eq('data->>status', 'pending')
-  .gt('data->total', '50')
-  .order('created_at', { descending: true })
-  .limit(10)
-  .execute();
-console.log(`Found ${pendingOrders.length} pending orders`);
+console.log('Order created:', order1.id, 'Collection:', `order_${orderNumber1}`);
-// Update order status
-await orders.patch(order.id, { status: 'shipped' });
-// Search by customer email
-const customerOrders = await orders.search({
+// Create another order
+const orderNumber2 = `ORD-${Date.now() + 1}`;
+const order2 = await client.userData.collection<Order>(`order_${orderNumber2}`).insert({
+  order_number: orderNumber2,
   customer_email: 'customer@example.com',
+  items: [
+    { product_id: 'PROD-003', quantity: 1, price: 199.99 },
+  ],
+  status: 'pending',
+  total: 199.99,
 });
+// Update order status (access by collection name)
+await client.userData.collection(`order_${orderNumber1}`).patch(order1.id, {
+  status: 'shipped'
+});
+// Get specific order
+const retrieved = await client.userData.collection(`order_${orderNumber1}`).get(order1.id);
+console.log('Order status:', retrieved?.data.status);
 // Delete a specific order
-await orders.delete(order.id);
+await client.userData.collection(`order_${orderNumber1}`).delete(order1.id);
-// Delete all orders (useful for cleanup)
-const deletedCount = await orders.deleteAll();
-console.log(`Deleted ${deletedCount} orders`);
+// Note: To query across multiple orders, you would need to:
+// 1. Store order metadata in a separate tracking collection
+// 2. Or use a naming convention and iterate through known order IDs
+// 3. Or use the batchInsert pattern and track the generated collection names
 ```
 ### Chat Conversations
@@ -375,10 +545,9 @@ type Conversation = {
   };
 };
-const conversations = client.userData.collection<Conversation>('chats');
-// Create conversation
-const conv = await conversations.insert({
+// Create a new conversation with unique ID
+const conversationId = `conv_${Date.now()}`;
+const conv = await client.userData.collection<Conversation>(conversationId).insert({
   title: 'Project Planning Discussion',
   model: 'claude-3-opus',
   messages: [
@@ -390,10 +559,12 @@ const conv = await conversations.insert({
   ],
 });
-// Add assistant response
-const current = await conversations.get(conv.id);
+console.log('Conversation created:', conversationId);
+// Add assistant response to existing conversation
+const current = await client.userData.collection<Conversation>(conversationId).get(conv.id);
 if (current) {
-  await conversations.patch(conv.id, {
+  await client.userData.collection<Conversation>(conversationId).patch(conv.id, {
     messages: [
       ...current.data.messages,
       {
@@ -405,12 +576,23 @@ if (current) {
   });
 }
-// List recent conversations
-const recent = await conversations
-  .select()
-  .order('updated_at', { descending: true })
-  .limit(20)
-  .execute();
+// Store individual messages separately (alternative pattern)
+// Each message gets its own collection
+const msgId1 = await client.userData.collection(`${conversationId}_msg_1`).insert({
+  role: 'user',
+  content: 'Help me plan a new feature',
+  timestamp: new Date().toISOString(),
+});
+const msgId2 = await client.userData.collection(`${conversationId}_msg_2`).insert({
+  role: 'assistant',
+  content: 'I can help with that!',
+  timestamp: new Date().toISOString(),
+});
+// Get a specific conversation
+const retrieved = await client.userData.collection(conversationId).get(conv.id);
+console.log('Conversation title:', retrieved?.data.title);
 ```
 ### User Preferences

package/dist/index.d.mts CHANGED Viewed

@@ -12,15 +12,13 @@
  * @example
  * ```typescript
  * const config: ClientConfig = {
- *   token: 'Bearer your-jwt-token-here',
+ *   url: 'https://dataservice-api.seaverse.ai',
  * };
  * ```
  */
 interface ClientConfig {
     /** PostgREST API base URL (default: https://dataservice-api.seaverse.ai) */
     url?: string;
-    /** JWT token containing user_id in payload.user_id */
-    token: string;
     /** Optional configuration */
     options?: {
         /** Custom fetch implementation (useful for Node.js < 18) */
@@ -29,6 +27,8 @@ interface ClientConfig {
         headers?: Record<string, string>;
         /** Request timeout in milliseconds (default: 30000) */
         timeout?: number;
+        /** Timeout for fetching token from parent (milliseconds, default: 5000) */
+        tokenFetchTimeout?: number;
     };
 }
 /**
@@ -193,14 +193,8 @@ interface Collection<T = any> {
     update(id: string, data: T): Promise<DataRecord<T>>;
     /** Patch a record by ID (merges with existing data) */
     patch(id: string, partial: Partial<T>): Promise<DataRecord<T>>;
-    /** Hard delete a record by ID */
+    /** Delete a record by ID (permanent) */
     delete(id: string): Promise<void>;
-    /** Hard delete all records in this collection */
-    deleteAll(): Promise<number>;
-    /** Soft delete a record by ID (sets deleted_at) */
-    softDelete(id: string): Promise<boolean>;
-    /** Restore a soft-deleted record */
-    restore(id: string): Promise<boolean>;
     /** Search records by JSONB contains */
     search(criteria: Partial<T>): Promise<DataRecord<T>[]>;
     /** Count records in collection */
@@ -246,39 +240,53 @@ interface DataServiceClient {
  * 4. Secure: RLS enforced, token-based auth
  */
+/**
+ * Set debug token for testing/debugging
+ * This allows you to bypass the token fetch logic during development
+ *
+ * @param token The token to use for debugging
+ *
+ * @example
+ * ```typescript
+ * import { debugSetToken, createClient } from '@seaverse/dataservice';
+ *
+ * // Set debug token before creating client
+ * debugSetToken('your-test-token');
+ *
+ * // Client will use debug token instead of fetching
+ * const client = await createClient({});
+ * ```
+ */
+declare function debugSetToken(token: string): void;
 /**
  * Create a new Data Service client
  *
  * AI-friendly: Single entry point with clear configuration
  *
- * @param config - Client configuration with JWT token (URL defaults to https://dataservice-api.seaverse.ai)
+ * @param config - Client configuration
  * @returns DataServiceClient instance
  *
  * @example
  * ```typescript
- * // Use default SeaVerse API endpoint (Bearer prefix auto-added)
- * const client = createClient({
- *   token: 'your-jwt-token-here',
- * });
- *
- * // Or with explicit Bearer prefix (both work)
- * const client = createClient({
- *   token: 'Bearer your-jwt-token-here',
- * });
+ * // Auto-fetch token from parent page (iframe)
+ * const client = await createClient({});
  *
- * // Or specify custom endpoint
- * const client = createClient({
+ * // Custom endpoint
+ * const client = await createClient({
  *   url: 'https://your-postgrest-api.example.com',
- *   token: 'your-jwt-token-here',
  * });
  *
+ * // For development/testing, use debugSetToken
+ * import { debugSetToken, createClient } from '@seaverse/dataservice';
+ * debugSetToken('your-test-token');
+ * const client = await createClient({});
+ *
  * // appId is automatically extracted from current URL
- * // Direct access to collections - clean and simple
  * const order = await client.userData.collection('orders').insert({ ... });
  * const orders = await client.userData.collection('orders').select().execute();
  * ```
  */
-declare function createClient(config: ClientConfig): DataServiceClient;
+declare function createClient(config?: ClientConfig): Promise<DataServiceClient>;
 /**
  * SeaVerse Data Service SDK
@@ -287,18 +295,20 @@ declare function createClient(config: ClientConfig): DataServiceClient;
  *
  * @packageDocumentation
  *
- * @example Basic Usage
+ * @example Basic Usage with Auto Token Fetch
  * ```typescript
- * import { createClient } from '@seaverse/dataservice';
+ * import { createClient, debugSetToken } from '@seaverse/dataservice';
  *
- * // Create client (Bearer prefix auto-added, uses default SeaVerse API)
- * const client = createClient({
- *   token: 'your-jwt-token',
- * });
+ * // Auto-fetch token from parent page (iframe)
+ * const client = await createClient({});
+ *
+ * // For development/testing, use debugSetToken
+ * debugSetToken('your-test-token');
+ * const client = await createClient({});
  *
  * // appId is automatically extracted from current URL
  * // Insert data
- * const order = await client.userData.collection('orders').insert({
+ * const order = await client.userData.collection('order_001').insert({
  *   order_number: 'ORD-123',
  *   status: 'pending',
  *   total: 99.99,
@@ -306,7 +316,7 @@ declare function createClient(config: ClientConfig): DataServiceClient;
  *
  * // Query data
  * const orders = await client.userData
- *   .collection('orders')
+ *   .collection('order_001')
  *   .select()
  *   .eq('data->>status', 'pending')
  *   .order('created_at', { descending: true })
@@ -317,4 +327,4 @@ declare function createClient(config: ClientConfig): DataServiceClient;
 declare const VERSION = "1.0.0";
-export { type APIError, type ClientConfig, type Collection, type DataRecord, type DataServiceClient, DataServiceError, type DataTable, type OrderOptions, type QueryBuilder, type QueryFilter, type UserDataStats, VERSION, createClient };
+export { type APIError, type ClientConfig, type Collection, type DataRecord, type DataServiceClient, DataServiceError, type DataTable, type OrderOptions, type QueryBuilder, type QueryFilter, type UserDataStats, VERSION, createClient, debugSetToken };

package/dist/index.d.ts CHANGED Viewed

@@ -12,15 +12,13 @@
  * @example
  * ```typescript
  * const config: ClientConfig = {
- *   token: 'Bearer your-jwt-token-here',
+ *   url: 'https://dataservice-api.seaverse.ai',
  * };
  * ```
  */
 interface ClientConfig {
     /** PostgREST API base URL (default: https://dataservice-api.seaverse.ai) */
     url?: string;
-    /** JWT token containing user_id in payload.user_id */
-    token: string;
     /** Optional configuration */
     options?: {
         /** Custom fetch implementation (useful for Node.js < 18) */
@@ -29,6 +27,8 @@ interface ClientConfig {
         headers?: Record<string, string>;
         /** Request timeout in milliseconds (default: 30000) */
         timeout?: number;
+        /** Timeout for fetching token from parent (milliseconds, default: 5000) */
+        tokenFetchTimeout?: number;
     };
 }
 /**
@@ -193,14 +193,8 @@ interface Collection<T = any> {
     update(id: string, data: T): Promise<DataRecord<T>>;
     /** Patch a record by ID (merges with existing data) */
     patch(id: string, partial: Partial<T>): Promise<DataRecord<T>>;
-    /** Hard delete a record by ID */
+    /** Delete a record by ID (permanent) */
     delete(id: string): Promise<void>;
-    /** Hard delete all records in this collection */
-    deleteAll(): Promise<number>;
-    /** Soft delete a record by ID (sets deleted_at) */
-    softDelete(id: string): Promise<boolean>;
-    /** Restore a soft-deleted record */
-    restore(id: string): Promise<boolean>;
     /** Search records by JSONB contains */
     search(criteria: Partial<T>): Promise<DataRecord<T>[]>;
     /** Count records in collection */
@@ -246,39 +240,53 @@ interface DataServiceClient {
  * 4. Secure: RLS enforced, token-based auth
  */
+/**
+ * Set debug token for testing/debugging
+ * This allows you to bypass the token fetch logic during development
+ *
+ * @param token The token to use for debugging
+ *
+ * @example
+ * ```typescript
+ * import { debugSetToken, createClient } from '@seaverse/dataservice';
+ *
+ * // Set debug token before creating client
+ * debugSetToken('your-test-token');
+ *
+ * // Client will use debug token instead of fetching
+ * const client = await createClient({});
+ * ```
+ */
+declare function debugSetToken(token: string): void;
 /**
  * Create a new Data Service client
  *
  * AI-friendly: Single entry point with clear configuration
  *
- * @param config - Client configuration with JWT token (URL defaults to https://dataservice-api.seaverse.ai)
+ * @param config - Client configuration
  * @returns DataServiceClient instance
  *
  * @example
  * ```typescript
- * // Use default SeaVerse API endpoint (Bearer prefix auto-added)
- * const client = createClient({
- *   token: 'your-jwt-token-here',
- * });
- *
- * // Or with explicit Bearer prefix (both work)
- * const client = createClient({
- *   token: 'Bearer your-jwt-token-here',
- * });
+ * // Auto-fetch token from parent page (iframe)
+ * const client = await createClient({});
  *
- * // Or specify custom endpoint
- * const client = createClient({
+ * // Custom endpoint
+ * const client = await createClient({
  *   url: 'https://your-postgrest-api.example.com',
- *   token: 'your-jwt-token-here',
  * });
  *
+ * // For development/testing, use debugSetToken
+ * import { debugSetToken, createClient } from '@seaverse/dataservice';
+ * debugSetToken('your-test-token');
+ * const client = await createClient({});
+ *
  * // appId is automatically extracted from current URL
- * // Direct access to collections - clean and simple
  * const order = await client.userData.collection('orders').insert({ ... });
  * const orders = await client.userData.collection('orders').select().execute();
  * ```
  */
-declare function createClient(config: ClientConfig): DataServiceClient;
+declare function createClient(config?: ClientConfig): Promise<DataServiceClient>;
 /**
  * SeaVerse Data Service SDK
@@ -287,18 +295,20 @@ declare function createClient(config: ClientConfig): DataServiceClient;
  *
  * @packageDocumentation
  *
- * @example Basic Usage
+ * @example Basic Usage with Auto Token Fetch
  * ```typescript
- * import { createClient } from '@seaverse/dataservice';
+ * import { createClient, debugSetToken } from '@seaverse/dataservice';
  *
- * // Create client (Bearer prefix auto-added, uses default SeaVerse API)
- * const client = createClient({
- *   token: 'your-jwt-token',
- * });
+ * // Auto-fetch token from parent page (iframe)
+ * const client = await createClient({});
+ *
+ * // For development/testing, use debugSetToken
+ * debugSetToken('your-test-token');
+ * const client = await createClient({});
  *
  * // appId is automatically extracted from current URL
  * // Insert data
- * const order = await client.userData.collection('orders').insert({
+ * const order = await client.userData.collection('order_001').insert({
  *   order_number: 'ORD-123',
  *   status: 'pending',
  *   total: 99.99,
@@ -306,7 +316,7 @@ declare function createClient(config: ClientConfig): DataServiceClient;
  *
  * // Query data
  * const orders = await client.userData
- *   .collection('orders')
+ *   .collection('order_001')
  *   .select()
  *   .eq('data->>status', 'pending')
  *   .order('created_at', { descending: true })
@@ -317,4 +327,4 @@ declare function createClient(config: ClientConfig): DataServiceClient;
 declare const VERSION = "1.0.0";
-export { type APIError, type ClientConfig, type Collection, type DataRecord, type DataServiceClient, DataServiceError, type DataTable, type OrderOptions, type QueryBuilder, type QueryFilter, type UserDataStats, VERSION, createClient };
+export { type APIError, type ClientConfig, type Collection, type DataRecord, type DataServiceClient, DataServiceError, type DataTable, type OrderOptions, type QueryBuilder, type QueryFilter, type UserDataStats, VERSION, createClient, debugSetToken };

package/dist/index.js CHANGED Viewed

@@ -22,7 +22,8 @@ var src_exports = {};
 __export(src_exports, {
   DataServiceError: () => DataServiceError,
   VERSION: () => VERSION,
-  createClient: () => createClient
+  createClient: () => createClient,
+  debugSetToken: () => debugSetToken
 });
 module.exports = __toCommonJS(src_exports);
@@ -39,6 +40,54 @@ var DataServiceError = class extends Error {
 };
 // src/client.ts
+var debugToken = null;
+function debugSetToken(token) {
+  debugToken = token;
+}
+function isInIframe() {
+  try {
+    return typeof globalThis !== "undefined" && "window" in globalThis && globalThis.window.self !== globalThis.window.top;
+  } catch {
+    return false;
+  }
+}
+async function getTokenFromParent(timeout = 5e3) {
+  if (!isInIframe()) {
+    return null;
+  }
+  return new Promise((resolve) => {
+    const messageHandler = (event) => {
+      if (event.data && event.data.type === "seaverse:token") {
+        cleanup();
+        const token = event.data.payload?.accessToken;
+        resolve(token || null);
+      } else if (event.data && event.data.type === "seaverse:error") {
+        cleanup();
+        console.warn("[SeaVerse DataService SDK] Error getting token from parent:", event.data.error);
+        resolve(null);
+      }
+    };
+    const timeoutId = setTimeout(() => {
+      cleanup();
+      resolve(null);
+    }, timeout);
+    const cleanup = () => {
+      clearTimeout(timeoutId);
+      globalThis.window.removeEventListener("message", messageHandler);
+    };
+    globalThis.window.addEventListener("message", messageHandler);
+    try {
+      globalThis.window.parent.postMessage(
+        { type: "seaverse:get_token" },
+        "*"
+        // Allow any origin, supports cross-domain scenarios
+      );
+    } catch (e) {
+      cleanup();
+      resolve(null);
+    }
+  });
+}
 function extractAppId() {
   if (typeof globalThis !== "undefined" && "location" in globalThis) {
     const location = globalThis.location;
@@ -56,17 +105,27 @@ var HTTPClient = class {
   headers;
   fetchFn;
   timeout;
-  constructor(config) {
+  tokenPromise = null;
+  constructor(config, token) {
     this.baseUrl = (config.url || "https://dataservice-api.seaverse.ai").replace(/\/$/, "");
     this.fetchFn = config.options?.fetch || globalThis.fetch;
     this.timeout = config.options?.timeout || 3e4;
-    const token = config.token.startsWith("Bearer ") ? config.token : `Bearer ${config.token}`;
     this.headers = {
-      "Authorization": token,
       "Content-Type": "application/json",
       "Prefer": "return=representation",
       ...config.options?.headers
     };
+    if (token) {
+      const authToken = token.startsWith("Bearer ") ? token : `Bearer ${token}`;
+      this.headers["Authorization"] = authToken;
+    }
+  }
+  /**
+   * Set authentication token (called after async token fetch)
+   */
+  setToken(token) {
+    const authToken = token.startsWith("Bearer ") ? token : `Bearer ${token}`;
+    this.headers["Authorization"] = authToken;
   }
   /**
    * Make HTTP request with timeout and error handling
@@ -286,30 +345,6 @@ var CollectionImpl = class {
       `/user_data?id=eq.${id}&app_id=eq.${this.appId}&collection_name=eq.${this.collectionName}`
     );
   }
-  async deleteAll() {
-    const records = await this.client.get(
-      `/user_data?app_id=eq.${this.appId}&collection_name=eq.${this.collectionName}`
-    );
-    const count = records.length;
-    if (count > 0) {
-      await this.client.delete(
-        `/user_data?app_id=eq.${this.appId}&collection_name=eq.${this.collectionName}`
-      );
-    }
-    return count;
-  }
-  async softDelete(id) {
-    const response = await this.client.post("/rpc/soft_delete_user_data", {
-      p_id: id
-    });
-    return response;
-  }
-  async restore(id) {
-    const response = await this.client.post("/rpc/restore_user_data", {
-      p_id: id
-    });
-    return response;
-  }
   async search(criteria) {
     return this.client.get(this.tablePath, {
       app_id: `eq.${this.appId}`,
@@ -357,9 +392,9 @@ var DataServiceClientImpl = class {
   client;
   userData;
   appId;
-  constructor(config) {
-    this.client = new HTTPClient(config);
-    this.appId = extractAppId();
+  constructor(client, appId) {
+    this.client = client;
+    this.appId = appId;
     this.userData = new DataTableImpl(this.client, "/user_data", this.appId);
   }
   async getStats() {
@@ -370,8 +405,22 @@ var DataServiceClientImpl = class {
     return this.client.post("/rpc/health");
   }
 };
-function createClient(config) {
-  return new DataServiceClientImpl(config);
+async function createClient(config = {}) {
+  let token = null;
+  if (debugToken) {
+    token = debugToken;
+  } else {
+    try {
+      const timeout = config.options?.tokenFetchTimeout || 5e3;
+      token = await getTokenFromParent(timeout);
+    } catch (error) {
+      console.warn("[SeaVerse DataService SDK] Failed to fetch token:", error);
+      token = null;
+    }
+  }
+  const httpClient = new HTTPClient(config, token || void 0);
+  const appId = extractAppId();
+  return new DataServiceClientImpl(httpClient, appId);
 }
 // src/index.ts
@@ -380,5 +429,6 @@ var VERSION = "1.0.0";
 0 && (module.exports = {
   DataServiceError,
   VERSION,
-  createClient
+  createClient,
+  debugSetToken
 });

package/dist/index.mjs CHANGED Viewed

@@ -11,6 +11,54 @@ var DataServiceError = class extends Error {
 };
 // src/client.ts
+var debugToken = null;
+function debugSetToken(token) {
+  debugToken = token;
+}
+function isInIframe() {
+  try {
+    return typeof globalThis !== "undefined" && "window" in globalThis && globalThis.window.self !== globalThis.window.top;
+  } catch {
+    return false;
+  }
+}
+async function getTokenFromParent(timeout = 5e3) {
+  if (!isInIframe()) {
+    return null;
+  }
+  return new Promise((resolve) => {
+    const messageHandler = (event) => {
+      if (event.data && event.data.type === "seaverse:token") {
+        cleanup();
+        const token = event.data.payload?.accessToken;
+        resolve(token || null);
+      } else if (event.data && event.data.type === "seaverse:error") {
+        cleanup();
+        console.warn("[SeaVerse DataService SDK] Error getting token from parent:", event.data.error);
+        resolve(null);
+      }
+    };
+    const timeoutId = setTimeout(() => {
+      cleanup();
+      resolve(null);
+    }, timeout);
+    const cleanup = () => {
+      clearTimeout(timeoutId);
+      globalThis.window.removeEventListener("message", messageHandler);
+    };
+    globalThis.window.addEventListener("message", messageHandler);
+    try {
+      globalThis.window.parent.postMessage(
+        { type: "seaverse:get_token" },
+        "*"
+        // Allow any origin, supports cross-domain scenarios
+      );
+    } catch (e) {
+      cleanup();
+      resolve(null);
+    }
+  });
+}
 function extractAppId() {
   if (typeof globalThis !== "undefined" && "location" in globalThis) {
     const location = globalThis.location;
@@ -28,17 +76,27 @@ var HTTPClient = class {
   headers;
   fetchFn;
   timeout;
-  constructor(config) {
+  tokenPromise = null;
+  constructor(config, token) {
     this.baseUrl = (config.url || "https://dataservice-api.seaverse.ai").replace(/\/$/, "");
     this.fetchFn = config.options?.fetch || globalThis.fetch;
     this.timeout = config.options?.timeout || 3e4;
-    const token = config.token.startsWith("Bearer ") ? config.token : `Bearer ${config.token}`;
     this.headers = {
-      "Authorization": token,
       "Content-Type": "application/json",
       "Prefer": "return=representation",
       ...config.options?.headers
     };
+    if (token) {
+      const authToken = token.startsWith("Bearer ") ? token : `Bearer ${token}`;
+      this.headers["Authorization"] = authToken;
+    }
+  }
+  /**
+   * Set authentication token (called after async token fetch)
+   */
+  setToken(token) {
+    const authToken = token.startsWith("Bearer ") ? token : `Bearer ${token}`;
+    this.headers["Authorization"] = authToken;
   }
   /**
    * Make HTTP request with timeout and error handling
@@ -258,30 +316,6 @@ var CollectionImpl = class {
       `/user_data?id=eq.${id}&app_id=eq.${this.appId}&collection_name=eq.${this.collectionName}`
     );
   }
-  async deleteAll() {
-    const records = await this.client.get(
-      `/user_data?app_id=eq.${this.appId}&collection_name=eq.${this.collectionName}`
-    );
-    const count = records.length;
-    if (count > 0) {
-      await this.client.delete(
-        `/user_data?app_id=eq.${this.appId}&collection_name=eq.${this.collectionName}`
-      );
-    }
-    return count;
-  }
-  async softDelete(id) {
-    const response = await this.client.post("/rpc/soft_delete_user_data", {
-      p_id: id
-    });
-    return response;
-  }
-  async restore(id) {
-    const response = await this.client.post("/rpc/restore_user_data", {
-      p_id: id
-    });
-    return response;
-  }
   async search(criteria) {
     return this.client.get(this.tablePath, {
       app_id: `eq.${this.appId}`,
@@ -329,9 +363,9 @@ var DataServiceClientImpl = class {
   client;
   userData;
   appId;
-  constructor(config) {
-    this.client = new HTTPClient(config);
-    this.appId = extractAppId();
+  constructor(client, appId) {
+    this.client = client;
+    this.appId = appId;
     this.userData = new DataTableImpl(this.client, "/user_data", this.appId);
   }
   async getStats() {
@@ -342,8 +376,22 @@ var DataServiceClientImpl = class {
     return this.client.post("/rpc/health");
   }
 };
-function createClient(config) {
-  return new DataServiceClientImpl(config);
+async function createClient(config = {}) {
+  let token = null;
+  if (debugToken) {
+    token = debugToken;
+  } else {
+    try {
+      const timeout = config.options?.tokenFetchTimeout || 5e3;
+      token = await getTokenFromParent(timeout);
+    } catch (error) {
+      console.warn("[SeaVerse DataService SDK] Failed to fetch token:", error);
+      token = null;
+    }
+  }
+  const httpClient = new HTTPClient(config, token || void 0);
+  const appId = extractAppId();
+  return new DataServiceClientImpl(httpClient, appId);
 }
 // src/index.ts
@@ -351,5 +399,6 @@ var VERSION = "1.0.0";
 export {
   DataServiceError,
   VERSION,
-  createClient
+  createClient,
+  debugSetToken
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@seaverse/dataservice",
-  "version": "1.3.0",
+  "version": "1.6.0",
   "description": "AI-Friendly Universal Data Storage SDK for TypeScript/JavaScript",
   "main": "dist/index.js",
   "module": "dist/index.mjs",