@snaha/swarm-id 0.0.1

package/dist/schemas.d.ts

@@ -0,0 +1,240 @@
+/**
+ * Entity Schemas with Zod
+ *
+ * Defines Zod schemas for storage entities with transforms to convert
+ * serialized primitives to bee-js runtime types. Types are derived using
+ * z.infer to guarantee schema/type consistency.
+ */
+import { z } from "zod";
+import { EthAddress, BatchId as BeeBatchId, Bytes, PrivateKey as BeePrivateKey } from "@ethersphere/bee-js";
+export declare const DEFAULT_BEE_NODE_URL = "https://api.gateway.ethswarm.org/";
+export declare const DEFAULT_GNOSIS_RPC_URL = "https://xdai.fairdatasociety.org/";
+export declare const ReferenceSchema: z.ZodString;
+export declare const BatchIdSchema: z.ZodString;
+export declare const AddressSchema: z.ZodString;
+export declare const PrivateKeySchema: z.ZodString;
+export declare const EncryptionKeySchema: z.ZodString;
+export declare const IdentifierSchema: z.ZodString;
+export declare const SignatureSchema: z.ZodString;
+export declare const TimestampSchema: z.ZodPipe<z.ZodTransform<unknown, unknown>, z.ZodUnion<readonly [z.ZodNumber, z.ZodString]>>;
+export declare const FeedIndexSchema: z.ZodPipe<z.ZodTransform<unknown, unknown>, z.ZodUnion<readonly [z.ZodNumber, z.ZodString]>>;
+export type Reference = z.infer<typeof ReferenceSchema>;
+export type BatchId = z.infer<typeof BatchIdSchema>;
+export type Address = z.infer<typeof AddressSchema>;
+export type PrivateKey = z.infer<typeof PrivateKeySchema>;
+export type Identifier = z.infer<typeof IdentifierSchema>;
+export type Signature = z.infer<typeof SignatureSchema>;
+export type Timestamp = z.infer<typeof TimestampSchema>;
+export type FeedIndex = z.infer<typeof FeedIndexSchema>;
+/**
+ * Passkey Account Schema V1
+ */
+export declare const PasskeyAccountSchemaV1: z.ZodObject<{
+    id: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    createdAt: z.ZodNumber;
+    type: z.ZodLiteral<"passkey">;
+    credentialId: z.ZodString;
+    swarmEncryptionKey: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+}, z.core.$strip>;
+/**
+ * Ethereum Account Schema V1
+ */
+export declare const EthereumAccountSchemaV1: z.ZodObject<{
+    id: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    createdAt: z.ZodNumber;
+    type: z.ZodLiteral<"ethereum">;
+    ethereumAddress: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    encryptedMasterKey: z.ZodPipe<z.ZodArray<z.ZodNumber>, z.ZodTransform<Bytes, number[]>>;
+    encryptionSalt: z.ZodPipe<z.ZodArray<z.ZodNumber>, z.ZodTransform<Bytes, number[]>>;
+    encryptedSecretSeed: z.ZodPipe<z.ZodArray<z.ZodNumber>, z.ZodTransform<Bytes, number[]>>;
+    swarmEncryptionKey: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+}, z.core.$strip>;
+/**
+ * Agent Account Schema V1
+ * For automated testing and programmatic use with BIP39 seed phrases
+ * Seed phrase is NOT stored - must be re-entered on each authentication (like passkey)
+ */
+export declare const AgentAccountSchemaV1: z.ZodObject<{
+    id: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    createdAt: z.ZodNumber;
+    type: z.ZodLiteral<"agent">;
+    swarmEncryptionKey: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+}, z.core.$strip>;
+/**
+ * Account Schema V1 (discriminated union)
+ */
+export declare const AccountSchemaV1: z.ZodDiscriminatedUnion<[z.ZodObject<{
+    id: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    createdAt: z.ZodNumber;
+    type: z.ZodLiteral<"passkey">;
+    credentialId: z.ZodString;
+    swarmEncryptionKey: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+}, z.core.$strip>, z.ZodObject<{
+    id: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    createdAt: z.ZodNumber;
+    type: z.ZodLiteral<"ethereum">;
+    ethereumAddress: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    encryptedMasterKey: z.ZodPipe<z.ZodArray<z.ZodNumber>, z.ZodTransform<Bytes, number[]>>;
+    encryptionSalt: z.ZodPipe<z.ZodArray<z.ZodNumber>, z.ZodTransform<Bytes, number[]>>;
+    encryptedSecretSeed: z.ZodPipe<z.ZodArray<z.ZodNumber>, z.ZodTransform<Bytes, number[]>>;
+    swarmEncryptionKey: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+}, z.core.$strip>, z.ZodObject<{
+    id: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    createdAt: z.ZodNumber;
+    type: z.ZodLiteral<"agent">;
+    swarmEncryptionKey: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+}, z.core.$strip>], "type">;
+/**
+ * Identity Schema V1
+ */
+export declare const IdentitySchemaV1: z.ZodObject<{
+    id: z.ZodString;
+    accountId: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+    name: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+    createdAt: z.ZodNumber;
+    settings: z.ZodOptional<z.ZodObject<{
+        appSessionDuration: z.ZodOptional<z.ZodNumber>;
+    }, z.core.$strip>>;
+}, z.core.$strip>;
+/**
+ * Connected App Schema V1 (no transforms needed - all primitives)
+ */
+export declare const ConnectedAppSchemaV1: z.ZodObject<{
+    appUrl: z.ZodString;
+    appName: z.ZodString;
+    lastConnectedAt: z.ZodNumber;
+    identityId: z.ZodString;
+    appIcon: z.ZodOptional<z.ZodString>;
+    appDescription: z.ZodOptional<z.ZodString>;
+    connectedUntil: z.ZodOptional<z.ZodNumber>;
+    appSecret: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+/**
+ * Postage Stamp Schema V1
+ */
+export declare const PostageStampSchemaV1: z.ZodObject<{
+    accountId: z.ZodString;
+    batchID: z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>;
+    signerKey: z.ZodPipe<z.ZodString, z.ZodTransform<BeePrivateKey, string>>;
+    utilization: z.ZodNumber;
+    usable: z.ZodBoolean;
+    depth: z.ZodNumber;
+    amount: z.ZodPipe<z.ZodString, z.ZodTransform<bigint, string>>;
+    bucketDepth: z.ZodNumber;
+    blockNumber: z.ZodNumber;
+    immutableFlag: z.ZodBoolean;
+    exists: z.ZodBoolean;
+    batchTTL: z.ZodOptional<z.ZodNumber>;
+    createdAt: z.ZodNumber;
+}, z.core.$strip>;
+/**
+ * Account Metadata Schema V1
+ */
+export declare const AccountMetadataSchemaV1: z.ZodObject<{
+    accountName: z.ZodString;
+    defaultPostageStampBatchID: z.ZodOptional<z.ZodString>;
+    createdAt: z.ZodNumber;
+    lastModified: z.ZodNumber;
+}, z.core.$strip>;
+/**
+ * Unified account state snapshot schema used by both file export and Swarm sync.
+ * Contains minimal metadata instead of the full Account object.
+ */
+export declare const AccountStateSnapshotSchemaV1: z.ZodObject<{
+    version: z.ZodLiteral<1>;
+    timestamp: z.ZodNumber;
+    accountId: z.ZodString;
+    metadata: z.ZodObject<{
+        accountName: z.ZodString;
+        defaultPostageStampBatchID: z.ZodOptional<z.ZodString>;
+        createdAt: z.ZodNumber;
+        lastModified: z.ZodNumber;
+    }, z.core.$strip>;
+    identities: z.ZodArray<z.ZodObject<{
+        id: z.ZodString;
+        accountId: z.ZodPipe<z.ZodString, z.ZodTransform<EthAddress, string>>;
+        name: z.ZodString;
+        defaultPostageStampBatchID: z.ZodOptional<z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>>;
+        createdAt: z.ZodNumber;
+        settings: z.ZodOptional<z.ZodObject<{
+            appSessionDuration: z.ZodOptional<z.ZodNumber>;
+        }, z.core.$strip>>;
+    }, z.core.$strip>>;
+    connectedApps: z.ZodArray<z.ZodObject<{
+        appUrl: z.ZodString;
+        appName: z.ZodString;
+        lastConnectedAt: z.ZodNumber;
+        identityId: z.ZodString;
+        appIcon: z.ZodOptional<z.ZodString>;
+        appDescription: z.ZodOptional<z.ZodString>;
+        connectedUntil: z.ZodOptional<z.ZodNumber>;
+        appSecret: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>>;
+    postageStamps: z.ZodArray<z.ZodObject<{
+        accountId: z.ZodString;
+        batchID: z.ZodPipe<z.ZodString, z.ZodTransform<BeeBatchId, string>>;
+        signerKey: z.ZodPipe<z.ZodString, z.ZodTransform<BeePrivateKey, string>>;
+        utilization: z.ZodNumber;
+        usable: z.ZodBoolean;
+        depth: z.ZodNumber;
+        amount: z.ZodPipe<z.ZodString, z.ZodTransform<bigint, string>>;
+        bucketDepth: z.ZodNumber;
+        blockNumber: z.ZodNumber;
+        immutableFlag: z.ZodBoolean;
+        exists: z.ZodBoolean;
+        batchTTL: z.ZodOptional<z.ZodNumber>;
+        createdAt: z.ZodNumber;
+    }, z.core.$strip>>;
+}, z.core.$strip>;
+export type PasskeyAccount = z.infer<typeof PasskeyAccountSchemaV1>;
+export type EthereumAccount = z.infer<typeof EthereumAccountSchemaV1>;
+export type AgentAccount = z.infer<typeof AgentAccountSchemaV1>;
+export type Account = z.infer<typeof AccountSchemaV1>;
+export type Identity = z.infer<typeof IdentitySchemaV1>;
+export type ConnectedApp = z.infer<typeof ConnectedAppSchemaV1>;
+export type PostageStamp = z.infer<typeof PostageStampSchemaV1>;
+export type AccountMetadata = z.infer<typeof AccountMetadataSchemaV1>;
+export type AccountStateSnapshot = z.infer<typeof AccountStateSnapshotSchemaV1>;
+/**
+ * Network Settings Schema V1
+ * Stores user-configurable network endpoints (Bee node and Gnosis RPC)
+ */
+export declare const NetworkSettingsSchemaV1: z.ZodObject<{
+    beeNodeUrl: z.ZodString;
+    gnosisRpcUrl: z.ZodString;
+}, z.core.$strip>;
+export type NetworkSettings = z.infer<typeof NetworkSettingsSchemaV1>;
+/**
+ * Bucket update entry for cross-tab synchronization
+ */
+export declare const BucketUpdateSchema: z.ZodObject<{
+    index: z.ZodNumber;
+    value: z.ZodNumber;
+}, z.core.$strip>;
+/**
+ * Utilization update message sent via BroadcastChannel
+ */
+export declare const UtilizationUpdateMessageSchema: z.ZodObject<{
+    type: z.ZodLiteral<"utilization-updated">;
+    batchId: z.ZodString;
+    buckets: z.ZodArray<z.ZodObject<{
+        index: z.ZodNumber;
+        value: z.ZodNumber;
+    }, z.core.$strip>>;
+}, z.core.$strip>;
+export type BucketUpdate = z.infer<typeof BucketUpdateSchema>;
+export type UtilizationUpdateMessage = z.infer<typeof UtilizationUpdateMessageSchema>;
+//# sourceMappingURL=schemas.d.ts.map

package/dist/schemas.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EACL,UAAU,EACV,OAAO,IAAI,UAAU,EACrB,KAAK,EACL,UAAU,IAAI,aAAa,EAC5B,MAAM,qBAAqB,CAAA;AAM5B,eAAO,MAAM,oBAAoB,sCAAsC,CAAA;AACvE,eAAO,MAAM,sBAAsB,sCAAsC,CAAA;AAYzE,eAAO,MAAM,eAAe,aAKxB,CAAA;AACJ,eAAO,MAAM,aAAa,aAAgB,CAAA;AAC1C,eAAO,MAAM,aAAa,aAAgB,CAAA;AAC1C,eAAO,MAAM,gBAAgB,aAAgB,CAAA;AAC7C,eAAO,MAAM,mBAAmB,aAAgB,CAAA;AAChD,eAAO,MAAM,gBAAgB,aAAgB,CAAA;AAC7C,eAAO,MAAM,eAAe,aAAiB,CAAA;AAC7C,eAAO,MAAM,eAAe,8FAG3B,CAAA;AACD,eAAO,MAAM,eAAe,8FAG3B,CAAA;AAED,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAA;AACvD,MAAM,MAAM,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAA;AACnD,MAAM,MAAM,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAA;AACnD,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAA;AACzD,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAA;AACzD,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAA;AACvD,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAA;AACvD,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAA;AAyCvD;;GAEG;AACH,eAAO,MAAM,sBAAsB;;;;;;;;iBAQjC,CAAA;AAEF;;GAEG;AACH,eAAO,MAAM,uBAAuB;;;;;;;;;;;iBAWlC,CAAA;AAEF;;;;GAIG;AACH,eAAO,MAAM,oBAAoB;;;;;;;iBAO/B,CAAA;AAEF;;GAEG;AACH,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;2BAI1B,CAAA;AAMF;;GAEG;AACH,eAAO,MAAM,gBAAgB;;;;;;;;;iBAW3B,CAAA;AAMF;;GAEG;AACH,eAAO,MAAM,oBAAoB;;;;;;;;;iBAS/B,CAAA;AAMF;;GAEG;AACH,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;iBAc/B,CAAA;AAMF;;GAEG;AACH,eAAO,MAAM,uBAAuB;;;;;iBAKlC,CAAA;AAIF;;;GAGG;AACH,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;iBAQvC,CAAA;AAMF,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAA;AACnE,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAA;AACrE,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAA;AAC/D,MAAM,MAAM,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAA;AACrD,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAA;AACvD,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAA;AAC/D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAA;AAC/D,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAA;AACrE,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,4BAA4B,CAAC,CAAA;AAM/E;;;GAGG;AACH,eAAO,MAAM,uBAAuB;;;iBAGlC,CAAA;AAEF,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAA;AAMrE;;GAEG;AACH,eAAO,MAAM,kBAAkB;;;iBAG7B,CAAA;AAEF;;GAEG;AACH,eAAO,MAAM,8BAA8B;;;;;;;iBAIzC,CAAA;AAEF,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAA;AAC7D,MAAM,MAAM,wBAAwB,GAAG,CAAC,CAAC,KAAK,CAC5C,OAAO,8BAA8B,CACtC,CAAA"}

package/dist/storage/debounced-uploader.d.ts

@@ -0,0 +1,62 @@
+/**
+ * Debounced Utilization Uploader
+ *
+ * Batches multiple utilization updates together to minimize upload frequency.
+ * Uses a per-batch debounce mechanism with configurable delay.
+ */
+import type { DirtyChunkTracker } from "../utils/batch-utilization";
+/**
+ * Debounced uploader for batch utilization data
+ *
+ * Batches multiple updates within a time window and uploads only once.
+ * Each batch has its own independent debounce timer.
+ */
+export declare class DebouncedUtilizationUploader {
+    private pendingUploads;
+    private defaultDelay;
+    /**
+     * Create a new debounced uploader
+     * @param delay - Debounce delay in milliseconds (default: 1000ms = 1s)
+     */
+    constructor(delay?: number);
+    /**
+     * Schedule an upload for a batch (debounced)
+     *
+     * If multiple updates occur within the debounce window, they are merged
+     * and only one upload is performed.
+     *
+     * @param batchId - Batch ID (hex string)
+     * @param tracker - Dirty chunk tracker with current changes
+     * @param uploadFn - Function to execute upload
+     * @param delay - Optional custom delay for this upload
+     * @returns Promise that resolves when upload completes
+     */
+    scheduleUpload(batchId: string, tracker: DirtyChunkTracker, uploadFn: () => Promise<void>, delay?: number): Promise<void>;
+    /**
+     * Flush pending upload for a batch immediately (cancel debounce)
+     * @param batchId - Batch ID to flush
+     */
+    flush(batchId: string): Promise<void>;
+    /**
+     * Flush all pending uploads immediately
+     */
+    flushAll(): Promise<void>;
+    /**
+     * Cancel pending upload for a batch (discard changes)
+     * @param batchId - Batch ID to cancel
+     */
+    cancel(batchId: string): void;
+    /**
+     * Cancel all pending uploads (discard all changes)
+     */
+    cancelAll(): void;
+    /**
+     * Get count of pending uploads
+     */
+    getPendingCount(): number;
+    /**
+     * Check if a batch has a pending upload
+     */
+    hasPending(batchId: string): boolean;
+}
+//# sourceMappingURL=debounced-uploader.d.ts.map

package/dist/storage/debounced-uploader.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"debounced-uploader.d.ts","sourceRoot":"","sources":["../../src/storage/debounced-uploader.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAA;AAwBnE;;;;;GAKG;AACH,qBAAa,4BAA4B;IACvC,OAAO,CAAC,cAAc,CAAmC;IACzD,OAAO,CAAC,YAAY,CAAQ;IAE5B;;;OAGG;gBACS,KAAK,SAA4B;IAI7C;;;;;;;;;;;OAWG;IACH,cAAc,CACZ,OAAO,EAAE,MAAM,EACf,OAAO,EAAE,iBAAiB,EAC1B,QAAQ,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,EAC7B,KAAK,CAAC,EAAE,MAAM,GACb,OAAO,CAAC,IAAI,CAAC;IAkDhB;;;OAGG;IACG,KAAK,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAmB3C;;OAEG;IACG,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC;IAM/B;;;OAGG;IACH,MAAM,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAa7B;;OAEG;IACH,SAAS,IAAI,IAAI;IAUjB;;OAEG;IACH,eAAe,IAAI,MAAM;IAIzB;;OAEG;IACH,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO;CAGrC"}

package/dist/storage/utilization-store.d.ts

@@ -0,0 +1,108 @@
+/**
+ * IndexedDB Cache for Batch Utilization Chunks
+ *
+ * Provides fast local caching of 4KB utilization chunks to avoid
+ * repeated Swarm downloads. Each chunk is 4096 bytes containing
+ * 1024 bucket counters (uint32).
+ */
+/**
+ * Cache entry for a single utilization chunk
+ */
+export interface ChunkCacheEntry {
+    /** Batch ID (hex string) */
+    batchId: string;
+    /** Chunk index (0-63) */
+    chunkIndex: number;
+    /** Serialized chunk data (4KB) */
+    data: Uint8Array;
+    /** Content hash for change detection */
+    contentHash: string;
+    /** SOC reference if uploaded to Swarm */
+    socReference?: string;
+    /** Last access timestamp (for eviction) */
+    lastAccess: number;
+}
+/**
+ * Metadata for a batch's utilization state
+ */
+export interface BatchMetadata {
+    batchId: string;
+    lastSync: number;
+    chunkCount: number;
+}
+/**
+ * Manages IndexedDB cache for batch utilization chunks
+ */
+export declare class UtilizationStoreDB {
+    private db;
+    /**
+     * Open the IndexedDB database
+     */
+    open(): Promise<void>;
+    /**
+     * Get a chunk from cache
+     * @param batchId - Batch ID (hex string)
+     * @param chunkIndex - Chunk index (0-63)
+     * @returns Cache entry or undefined if not found
+     */
+    getChunk(batchId: string, chunkIndex: number): Promise<ChunkCacheEntry | undefined>;
+    /**
+     * Store a chunk in cache
+     * @param entry - Cache entry to store
+     */
+    putChunk(entry: ChunkCacheEntry): Promise<void>;
+    /**
+     * Get all chunks for a batch
+     * @param batchId - Batch ID (hex string)
+     * @returns Array of cache entries (sorted by chunkIndex)
+     */
+    getAllChunks(batchId: string): Promise<ChunkCacheEntry[]>;
+    /**
+     * Clear all chunks for a batch
+     * @param batchId - Batch ID (hex string)
+     */
+    clearBatch(batchId: string): Promise<void>;
+    /**
+     * Update lastAccess timestamp for a chunk
+     * @param batchId - Batch ID (hex string)
+     * @param chunkIndex - Chunk index (0-63)
+     */
+    private touchChunk;
+    /**
+     * Get batch metadata
+     * @param batchId - Batch ID (hex string)
+     * @returns Metadata or undefined if not found
+     */
+    getMetadata(batchId: string): Promise<BatchMetadata | undefined>;
+    /**
+     * Update batch metadata
+     * @param metadata - Metadata to store
+     */
+    putMetadata(metadata: BatchMetadata): Promise<void>;
+    /**
+     * Close the database connection
+     */
+    close(): void;
+}
+/**
+ * Policy for cache eviction
+ */
+export interface CacheEvictionPolicy {
+    /** Maximum age in milliseconds (default: 7 days) */
+    maxAge?: number;
+    /** Maximum number of chunks to keep (default: 640 = 10 batches) */
+    maxChunks?: number;
+}
+/**
+ * Evict old cache entries based on policy
+ * @param cache - Cache database instance
+ * @param policy - Eviction policy
+ */
+export declare function evictOldEntries(cache: UtilizationStoreDB, policy?: CacheEvictionPolicy): Promise<void>;
+/**
+ * Calculate content hash for chunk data
+ * @param data - Chunk data (4KB)
+ * @returns Hex string hash
+ */
+export declare function calculateContentHash(data: Uint8Array): string;
+//# sourceMappingURL=utilization-store.d.ts.map

package/dist/storage/utilization-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utilization-store.d.ts","sourceRoot":"","sources":["../../src/storage/utilization-store.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAQH;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,4BAA4B;IAC5B,OAAO,EAAE,MAAM,CAAA;IAEf,yBAAyB;IACzB,UAAU,EAAE,MAAM,CAAA;IAElB,kCAAkC;IAClC,IAAI,EAAE,UAAU,CAAA;IAEhB,wCAAwC;IACxC,WAAW,EAAE,MAAM,CAAA;IAEnB,yCAAyC;IACzC,YAAY,CAAC,EAAE,MAAM,CAAA;IAErB,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAA;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE,MAAM,CAAA;IAChB,UAAU,EAAE,MAAM,CAAA;CACnB;AAWD;;GAEG;AACH,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,EAAE,CAAyB;IAEnC;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAyC3B;;;;;OAKG;IACG,QAAQ,CACZ,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,eAAe,GAAG,SAAS,CAAC;IA2BvC;;;OAGG;IACG,QAAQ,CAAC,KAAK,EAAE,eAAe,GAAG,OAAO,CAAC,IAAI,CAAC;IAsBrD;;;;OAIG;IACG,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAsB/D;;;OAGG;IACG,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAiChD;;;;OAIG;YACW,UAAU;IAuBxB;;;;OAIG;IACG,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,SAAS,CAAC;IAgBtE;;;OAGG;IACG,WAAW,CAAC,QAAQ,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAezD;;OAEG;IACH,KAAK,IAAI,IAAI;CAMd;AAMD;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,oDAAoD;IACpD,MAAM,CAAC,EAAE,MAAM,CAAA;IAEf,mEAAmE;IACnE,SAAS,CAAC,EAAE,MAAM,CAAA;CACnB;AAED;;;;GAIG;AACH,wBAAsB,eAAe,CACnC,KAAK,EAAE,kBAAkB,EACzB,MAAM,GAAE,mBAAwB,GAC/B,OAAO,CAAC,IAAI,CAAC,CAqDf;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,CAAC,IAAI,EAAE,UAAU,GAAG,MAAM,CAG7D"}

package/dist/swarm-id-auth.d.ts

@@ -0,0 +1,74 @@
+import type { AuthOptions } from "./types";
+/**
+ * Swarm ID Auth - Runs in the authentication popup
+ *
+ * Responsibilities:
+ * - Load or generate master identity
+ * - Derive app-specific secrets
+ * - Send secrets to iframe via postMessage
+ * - Manage master key storage
+ */
+export declare class SwarmIdAuth {
+    private appOrigin;
+    private masterKey;
+    private masterKeyStorageKey;
+    private postageBatchId;
+    private signerKey;
+    constructor(options?: AuthOptions);
+    /**
+     * Initialize the auth popup
+     */
+    initialize(): Promise<void>;
+    /**
+     * Get the app origin
+     */
+    getAppOrigin(): string | undefined;
+    /**
+     * Get the master key (for display purposes, should be truncated)
+     */
+    getMasterKey(): string | undefined;
+    /**
+     * Check if master key exists
+     */
+    hasMasterKey(): boolean;
+    /**
+     * Set the postage batch ID
+     */
+    setPostageBatchId(batchId: string): void;
+    /**
+     * Get the postage batch ID
+     */
+    getPostageBatchId(): string | undefined;
+    /**
+     * Set the signer key
+     */
+    setSignerKey(key: string): void;
+    /**
+     * Get the signer key
+     */
+    getSignerKey(): string | undefined;
+    /**
+     * Set authentication data (batch ID and/or signer key)
+     */
+    setAuthData({ postageBatchId, signerKey, }: {
+        postageBatchId?: string;
+        signerKey?: string;
+    }): void;
+    /**
+     * Setup new identity (generate and store master key)
+     */
+    setupNewIdentity(): Promise<string>;
+    /**
+     * Authenticate - derive app-specific secret and send to iframe
+     */
+    authenticate(): Promise<void>;
+    /**
+     * Close the popup window
+     */
+    close(delay?: number): void;
+}
+/**
+ * Initialize auth popup (called from HTML page)
+ */
+export declare function initAuth(options?: AuthOptions): Promise<SwarmIdAuth>;
+//# sourceMappingURL=swarm-id-auth.d.ts.map

package/dist/swarm-id-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"swarm-id-auth.d.ts","sourceRoot":"","sources":["../src/swarm-id-auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,SAAS,CAAA;AAG1C;;;;;;;;GAQG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,SAAS,CAAoB;IACrC,OAAO,CAAC,SAAS,CAAoB;IACrC,OAAO,CAAC,mBAAmB,CAAQ;IACnC,OAAO,CAAC,cAAc,CAAoB;IAC1C,OAAO,CAAC,SAAS,CAAoB;gBAEzB,OAAO,GAAE,WAAgB;IAIrC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IA4CjC;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,SAAS;IAIlC;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,SAAS;IAIlC;;OAEG;IACH,YAAY,IAAI,OAAO;IAIvB;;OAEG;IACH,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAIxC;;OAEG;IACH,iBAAiB,IAAI,MAAM,GAAG,SAAS;IAIvC;;OAEG;IACH,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAI/B;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,SAAS;IAIlC;;OAEG;IACH,WAAW,CAAC,EACV,cAAc,EACd,SAAS,GACV,EAAE;QACD,cAAc,CAAC,EAAE,MAAM,CAAA;QACvB,SAAS,CAAC,EAAE,MAAM,CAAA;KACnB,GAAG,IAAI;IAKR;;OAEG;IACG,gBAAgB,IAAI,OAAO,CAAC,MAAM,CAAC;IAWzC;;OAEG;IACG,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC;IAkDnC;;OAEG;IACH,KAAK,CAAC,KAAK,GAAE,MAAa,GAAG,IAAI;CAKlC;AAED;;GAEG;AACH,wBAAsB,QAAQ,CAAC,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC,CAI1E"}

package/dist/swarm-id-auth.js

@@ -0,0 +1,2 @@
+async function e(e,r){console.log("[KeyDerivation] Deriving secret for app:",r);const n=new TextEncoder,o=function(e){const t=e.replace(/\s/g,"");if(t.length%2!=0)throw new Error("Invalid hex string: length must be even");const r=new Uint8Array(t.length/2);for(let e=0;e<t.length;e+=2)r[e/2]=parseInt(t.substring(e,e+2),16);return r}(e),i=n.encode(r),a=await crypto.subtle.importKey("raw",o,{name:"HMAC",hash:"SHA-256"},!1,["sign"]),s=await crypto.subtle.sign("HMAC",a,i),g=t(new Uint8Array(s));return console.log("[KeyDerivation] Secret derived:",g.substring(0,16)+"..."),g}function t(e){return Array.from(e).map(e=>e.toString(16).padStart(2,"0")).join("")}class r{constructor(e={}){this.masterKeyStorageKey=e.masterKeyStorageKey||"swarm-master-key"}async initialize(){if(!window.opener)throw new Error("No opener window found. This page must be opened by Swarm ID iframe.");try{const e=window.opener.location.origin;if(e!==window.location.origin)throw new Error(`Opener origin (${e}) does not match expected origin`);console.log("[Auth] Security: Opener origin validated ✓")}catch{throw new Error("Cannot verify opener origin - cross-origin access denied")}const e=new URLSearchParams(window.location.search);if(this.appOrigin=e.get("origin")??void 0,!this.appOrigin)throw new Error("No origin parameter found in URL");console.log("[Auth] Got app origin from URL parameter:",this.appOrigin),this.masterKey=localStorage.getItem(this.masterKeyStorageKey)??void 0,this.masterKey?console.log("[Auth] Master key loaded from localStorage"):console.log("[Auth] No master key found")}getAppOrigin(){return this.appOrigin}getMasterKey(){return this.masterKey}hasMasterKey(){return void 0!==this.masterKey}setPostageBatchId(e){this.postageBatchId=e}getPostageBatchId(){return this.postageBatchId}setSignerKey(e){this.signerKey=e}getSignerKey(){return this.signerKey}setAuthData({postageBatchId:e,signerKey:t}){this.postageBatchId=e,this.signerKey=t}async setupNewIdentity(){console.log("[Auth] Setting up new identity...");const e=await async function(){console.log("[KeyDerivation] Generating random master key...");const e=new Uint8Array(32);crypto.getRandomValues(e);const r=t(e);return console.log("[KeyDerivation] Master key generated:",r.substring(0,16)+"..."),r}();return localStorage.setItem(this.masterKeyStorageKey,e),this.masterKey=e,console.log("[Auth] New master key generated and stored"),e}async authenticate(){if(!this.masterKey)throw new Error("No master key available. Please set up an identity first.");if(!this.appOrigin)throw new Error("Unknown app origin. Cannot authenticate.");if(!this.postageBatchId&&!this.signerKey)throw new Error("No postage batch ID or signer key provided. Cannot authenticate.");console.log("[Auth] Starting authentication for app:",this.appOrigin);const t=await e(this.masterKey,this.appOrigin);if(console.log("[Auth] App secret derived:",t.substring(0,16)+"..."),!window.opener||window.opener.closed)throw new Error("Opener window not available");console.log("[Auth] Sending auth data to iframe..."),window.opener.postMessage({type:"setSecret",appOrigin:this.appOrigin,data:{secret:t,postageBatchId:this.postageBatchId,signerKey:this.signerKey}},window.location.origin),console.log("[Auth] Auth data sent to iframe")}close(e=1500){setTimeout(()=>{window.close()},e)}}async function n(e){const t=new r(e);return await t.initialize(),t}export{r as SwarmIdAuth,n as initAuth};
+//# sourceMappingURL=swarm-id-auth.js.map

package/dist/swarm-id-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"swarm-id-auth.js","sources":["../src/utils/key-derivation.ts","../src/swarm-id-auth.ts"],"sourcesContent":["/**\n * Swarm Identity - Key Derivation Utilities\n *\n * Provides cryptographic functions for deriving app-specific secrets\n * from a master identity key.\n */\n\n/**\n * Derive an app-specific secret from a master key and app origin\n *\n * Uses HMAC-SHA256 to create a deterministic, unique secret for each app.\n * The same master key + app origin will always produce the same secret.\n *\n * @param masterKey - The master identity key (hex string)\n * @param appOrigin - The app's origin (e.g., \"https://swarm-app.local:8080\")\n * @returns The derived secret as a hex string\n */\nexport async function deriveSecret(\n  masterKey: string,\n  appOrigin: string,\n): Promise<string> {\n  console.log(\"[KeyDerivation] Deriving secret for app:\", appOrigin)\n\n  const encoder = new TextEncoder()\n\n  // Convert master key from hex string to Uint8Array\n  const keyData = hexToUint8Array(masterKey)\n  const message = encoder.encode(appOrigin)\n\n  // Import the master key for HMAC\n  const cryptoKey = await crypto.subtle.importKey(\n    \"raw\",\n    keyData,\n    { name: \"HMAC\", hash: \"SHA-256\" },\n    false,\n    [\"sign\"],\n  )\n\n  // Sign the app origin with the master key\n  const signature = await crypto.subtle.sign(\"HMAC\", cryptoKey, message)\n\n  // Convert to hex string\n  const secretHex = uint8ArrayToHex(new Uint8Array(signature))\n  console.log(\n    \"[KeyDerivation] Secret derived:\",\n    secretHex.substring(0, 16) + \"...\",\n  )\n\n  return secretHex\n}\n\n/**\n * Generate a random master key for testing/demo purposes\n *\n * In production, this would be derived from a user's mnemonic or\n * imported from an existing identity.\n *\n * @returns A random 32-byte key as a hex string\n */\nexport async function generateMasterKey(): Promise<string> {\n  console.log(\"[KeyDerivation] Generating random master key...\")\n\n  const randomBytes = new Uint8Array(32)\n  crypto.getRandomValues(randomBytes)\n\n  const masterKey = uint8ArrayToHex(randomBytes)\n  console.log(\n    \"[KeyDerivation] Master key generated:\",\n    masterKey.substring(0, 16) + \"...\",\n  )\n\n  return masterKey\n}\n\n/**\n * Convert a hex string to Uint8Array\n *\n * @param hexString - Hex string (e.g., \"deadbeef\")\n * @returns Uint8Array\n */\nexport function hexToUint8Array(hexString: string): Uint8Array {\n  // Remove any whitespace and ensure even length\n  const hex = hexString.replace(/\\s/g, \"\")\n  if (hex.length % 2 !== 0) {\n    throw new Error(\"Invalid hex string: length must be even\")\n  }\n\n  const bytes = new Uint8Array(hex.length / 2)\n  for (let i = 0; i < hex.length; i += 2) {\n    bytes[i / 2] = parseInt(hex.substring(i, i + 2), 16)\n  }\n\n  return bytes\n}\n\n/**\n * Convert a Uint8Array to hex string\n *\n * @param bytes - Uint8Array to convert\n * @returns Hex string (e.g., \"deadbeef\")\n */\nexport function uint8ArrayToHex(bytes: Uint8Array): string {\n  return Array.from(bytes)\n    .map((b) => b.toString(16).padStart(2, \"0\"))\n    .join(\"\")\n}\n\n/**\n * Verify that a derived secret matches the expected value\n *\n * Useful for testing.\n *\n * @param masterKey - Master key hex string\n * @param appOrigin - App origin\n * @param expectedSecret - Expected secret hex string\n * @returns true if the derived secret matches the expected secret\n */\nexport async function verifySecret(\n  masterKey: string,\n  appOrigin: string,\n  expectedSecret: string,\n): Promise<boolean> {\n  const derived = await deriveSecret(masterKey, appOrigin)\n  return derived === expectedSecret\n}\n\n// Export utility functions for testing\nexport const utils = {\n  hexToUint8Array,\n  uint8ArrayToHex,\n}\n","import type { AuthOptions } from \"./types\"\nimport { deriveSecret, generateMasterKey } from \"./utils/key-derivation\"\n\n/**\n * Swarm ID Auth - Runs in the authentication popup\n *\n * Responsibilities:\n * - Load or generate master identity\n * - Derive app-specific secrets\n * - Send secrets to iframe via postMessage\n * - Manage master key storage\n */\nexport class SwarmIdAuth {\n  private appOrigin: string | undefined\n  private masterKey: string | undefined\n  private masterKeyStorageKey: string\n  private postageBatchId: string | undefined\n  private signerKey: string | undefined\n\n  constructor(options: AuthOptions = {}) {\n    this.masterKeyStorageKey = options.masterKeyStorageKey || \"swarm-master-key\"\n  }\n\n  /**\n   * Initialize the auth popup\n   */\n  async initialize(): Promise<void> {\n    // Security: Validate that opener is from our own origin\n    if (!window.opener) {\n      throw new Error(\n        \"No opener window found. This page must be opened by Swarm ID iframe.\",\n      )\n    }\n\n    // Check opener origin by trying to access its location\n    try {\n      const openerOrigin = (window.opener as Window).location.origin\n      if (openerOrigin !== window.location.origin) {\n        throw new Error(\n          `Opener origin (${openerOrigin}) does not match expected origin`,\n        )\n      }\n      console.log(\"[Auth] Security: Opener origin validated ✓\")\n    } catch {\n      // If we can't access opener.location, it's cross-origin - this is suspicious\n      throw new Error(\n        \"Cannot verify opener origin - cross-origin access denied\",\n      )\n    }\n\n    // Get app origin from URL parameter\n    const urlParams = new URLSearchParams(window.location.search)\n    this.appOrigin = urlParams.get(\"origin\") ?? undefined\n\n    if (!this.appOrigin) {\n      throw new Error(\"No origin parameter found in URL\")\n    }\n\n    console.log(\"[Auth] Got app origin from URL parameter:\", this.appOrigin)\n\n    // Load master key\n    this.masterKey = localStorage.getItem(this.masterKeyStorageKey) ?? undefined\n\n    if (!this.masterKey) {\n      console.log(\"[Auth] No master key found\")\n    } else {\n      console.log(\"[Auth] Master key loaded from localStorage\")\n    }\n  }\n\n  /**\n   * Get the app origin\n   */\n  getAppOrigin(): string | undefined {\n    return this.appOrigin\n  }\n\n  /**\n   * Get the master key (for display purposes, should be truncated)\n   */\n  getMasterKey(): string | undefined {\n    return this.masterKey\n  }\n\n  /**\n   * Check if master key exists\n   */\n  hasMasterKey(): boolean {\n    return this.masterKey !== undefined\n  }\n\n  /**\n   * Set the postage batch ID\n   */\n  setPostageBatchId(batchId: string): void {\n    this.postageBatchId = batchId\n  }\n\n  /**\n   * Get the postage batch ID\n   */\n  getPostageBatchId(): string | undefined {\n    return this.postageBatchId\n  }\n\n  /**\n   * Set the signer key\n   */\n  setSignerKey(key: string): void {\n    this.signerKey = key\n  }\n\n  /**\n   * Get the signer key\n   */\n  getSignerKey(): string | undefined {\n    return this.signerKey\n  }\n\n  /**\n   * Set authentication data (batch ID and/or signer key)\n   */\n  setAuthData({\n    postageBatchId,\n    signerKey,\n  }: {\n    postageBatchId?: string\n    signerKey?: string\n  }): void {\n    this.postageBatchId = postageBatchId\n    this.signerKey = signerKey\n  }\n\n  /**\n   * Setup new identity (generate and store master key)\n   */\n  async setupNewIdentity(): Promise<string> {\n    console.log(\"[Auth] Setting up new identity...\")\n\n    const newMasterKey = await generateMasterKey()\n    localStorage.setItem(this.masterKeyStorageKey, newMasterKey)\n    this.masterKey = newMasterKey\n\n    console.log(\"[Auth] New master key generated and stored\")\n    return newMasterKey\n  }\n\n  /**\n   * Authenticate - derive app-specific secret and send to iframe\n   */\n  async authenticate(): Promise<void> {\n    if (!this.masterKey) {\n      throw new Error(\n        \"No master key available. Please set up an identity first.\",\n      )\n    }\n\n    if (!this.appOrigin) {\n      throw new Error(\"Unknown app origin. Cannot authenticate.\")\n    }\n\n    if (!this.postageBatchId && !this.signerKey) {\n      throw new Error(\n        \"No postage batch ID or signer key provided. Cannot authenticate.\",\n      )\n    }\n\n    console.log(\"[Auth] Starting authentication for app:\", this.appOrigin)\n\n    // Derive app-specific secret\n    const appSecret = await deriveSecret(this.masterKey, this.appOrigin)\n    console.log(\n      \"[Auth] App secret derived:\",\n      appSecret.substring(0, 16) + \"...\",\n    )\n\n    // Send secret to opener (the iframe that opened this popup)\n    if (!window.opener || (window.opener as Window).closed) {\n      throw new Error(\"Opener window not available\")\n    }\n\n    console.log(\"[Auth] Sending auth data to iframe...\")\n\n    // Send structured auth data to iframe via postMessage\n    ;(window.opener as WindowProxy).postMessage(\n      {\n        type: \"setSecret\",\n        appOrigin: this.appOrigin,\n        data: {\n          secret: appSecret,\n          postageBatchId: this.postageBatchId,\n          signerKey: this.signerKey,\n        },\n      },\n      window.location.origin, // Target the iframe's origin (same as this popup)\n    )\n\n    console.log(\"[Auth] Auth data sent to iframe\")\n  }\n\n  /**\n   * Close the popup window\n   */\n  close(delay: number = 1500): void {\n    setTimeout(() => {\n      window.close()\n    }, delay)\n  }\n}\n\n/**\n * Initialize auth popup (called from HTML page)\n */\nexport async function initAuth(options?: AuthOptions): Promise<SwarmIdAuth> {\n  const auth = new SwarmIdAuth(options)\n  await auth.initialize()\n  return auth\n}\n"],"names":["async","deriveSecret","masterKey","appOrigin","console","log","encoder","TextEncoder","keyData","hexString","hex","replace","length","Error","bytes","Uint8Array","i","parseInt","substring","hexToUint8Array","message","encode","cryptoKey","crypto","subtle","importKey","name","hash","signature","sign","secretHex","uint8ArrayToHex","Array","from","map","b","toString","padStart","join","SwarmIdAuth","constructor","options","this","masterKeyStorageKey","initialize","window","opener","openerOrigin","location","origin","urlParams","URLSearchParams","search","get","undefined","localStorage","getItem","getAppOrigin","getMasterKey","hasMasterKey","setPostageBatchId","batchId","postageBatchId","getPostageBatchId","setSignerKey","key","signerKey","getSignerKey","setAuthData","setupNewIdentity","newMasterKey","randomBytes","getRandomValues","generateMasterKey","setItem","authenticate","appSecret","closed","postMessage","type","data","secret","close","delay","setTimeout","initAuth","auth"],"mappings":"AAiBOA,eAAeC,EACpBC,EACAC,GAEAC,QAAQC,IAAI,2CAA4CF,GAExD,MAAMG,EAAU,IAAIC,YAGdC,EAsDF,SAA0BC,GAE9B,MAAMC,EAAMD,EAAUE,QAAQ,MAAO,IACrC,GAAID,EAAIE,OAAS,GAAM,EACrB,MAAM,IAAIC,MAAM,2CAGlB,MAAMC,EAAQ,IAAIC,WAAWL,EAAIE,OAAS,GAC1C,IAAK,IAAII,EAAI,EAAGA,EAAIN,EAAIE,OAAQI,GAAK,EACnCF,EAAME,EAAI,GAAKC,SAASP,EAAIQ,UAAUF,EAAGA,EAAI,GAAI,IAGnD,OAAOF,CACT,CAnEkBK,CAAgBjB,GAC1BkB,EAAUd,EAAQe,OAAOlB,GAGzBmB,QAAkBC,OAAOC,OAAOC,UACpC,MACAjB,EACA,CAAEkB,KAAM,OAAQC,KAAM,YACtB,EACA,CAAC,SAIGC,QAAkBL,OAAOC,OAAOK,KAAK,OAAQP,EAAWF,GAGxDU,EAAYC,EAAgB,IAAIhB,WAAWa,IAMjD,OALAxB,QAAQC,IACN,kCACAyB,EAAUZ,UAAU,EAAG,IAAM,OAGxBY,CACT,CAoDM,SAAUC,EAAgBjB,GAC9B,OAAOkB,MAAMC,KAAKnB,GACfoB,IAAKC,GAAMA,EAAEC,SAAS,IAAIC,SAAS,EAAG,MACtCC,KAAK,GACV,OC7FaC,EAOX,WAAAC,CAAYC,EAAuB,IACjCC,KAAKC,oBAAsBF,EAAQE,qBAAuB,kBAC5D,CAKA,gBAAMC,GAEJ,IAAKC,OAAOC,OACV,MAAM,IAAIjC,MACR,wEAKJ,IACE,MAAMkC,EAAgBF,OAAOC,OAAkBE,SAASC,OACxD,GAAIF,IAAiBF,OAAOG,SAASC,OACnC,MAAM,IAAIpC,MACR,kBAAkBkC,qCAGtB3C,QAAQC,IAAI,6CACd,CAAE,MAEA,MAAM,IAAIQ,MACR,2DAEJ,CAGA,MAAMqC,EAAY,IAAIC,gBAAgBN,OAAOG,SAASI,QAGtD,GAFAV,KAAKvC,UAAY+C,EAAUG,IAAI,gBAAaC,GAEvCZ,KAAKvC,UACR,MAAM,IAAIU,MAAM,oCAGlBT,QAAQC,IAAI,4CAA6CqC,KAAKvC,WAG9DuC,KAAKxC,UAAYqD,aAAaC,QAAQd,KAAKC,2BAAwBW,EAE9DZ,KAAKxC,UAGRE,QAAQC,IAAI,8CAFZD,QAAQC,IAAI,6BAIhB,CAKA,YAAAoD,GACE,OAAOf,KAAKvC,SACd,CAKA,YAAAuD,GACE,OAAOhB,KAAKxC,SACd,CAKA,YAAAyD,GACE,YAA0BL,IAAnBZ,KAAKxC,SACd,CAKA,iBAAA0D,CAAkBC,GAChBnB,KAAKoB,eAAiBD,CACxB,CAKA,iBAAAE,GACE,OAAOrB,KAAKoB,cACd,CAKA,YAAAE,CAAaC,GACXvB,KAAKwB,UAAYD,CACnB,CAKA,YAAAE,GACE,OAAOzB,KAAKwB,SACd,CAKA,WAAAE,EAAYN,eACVA,EAAcI,UACdA,IAKAxB,KAAKoB,eAAiBA,EACtBpB,KAAKwB,UAAYA,CACnB,CAKA,sBAAMG,GACJjE,QAAQC,IAAI,qCAEZ,MAAMiE,QDhFHtE,iBACLI,QAAQC,IAAI,mDAEZ,MAAMkE,EAAc,IAAIxD,WAAW,IACnCQ,OAAOiD,gBAAgBD,GAEvB,MAAMrE,EAAY6B,EAAgBwC,GAMlC,OALAnE,QAAQC,IACN,wCACAH,EAAUgB,UAAU,EAAG,IAAM,OAGxBhB,CACT,CCmE+BuE,GAK3B,OAJAlB,aAAamB,QAAQhC,KAAKC,oBAAqB2B,GAC/C5B,KAAKxC,UAAYoE,EAEjBlE,QAAQC,IAAI,8CACLiE,CACT,CAKA,kBAAMK,GACJ,IAAKjC,KAAKxC,UACR,MAAM,IAAIW,MACR,6DAIJ,IAAK6B,KAAKvC,UACR,MAAM,IAAIU,MAAM,4CAGlB,IAAK6B,KAAKoB,iBAAmBpB,KAAKwB,UAChC,MAAM,IAAIrD,MACR,oEAIJT,QAAQC,IAAI,0CAA2CqC,KAAKvC,WAG5D,MAAMyE,QAAkB3E,EAAayC,KAAKxC,UAAWwC,KAAKvC,WAO1D,GANAC,QAAQC,IACN,6BACAuE,EAAU1D,UAAU,EAAG,IAAM,QAI1B2B,OAAOC,QAAWD,OAAOC,OAAkB+B,OAC9C,MAAM,IAAIhE,MAAM,+BAGlBT,QAAQC,IAAI,yCAGVwC,OAAOC,OAAuBgC,YAC9B,CACEC,KAAM,YACN5E,UAAWuC,KAAKvC,UAChB6E,KAAM,CACJC,OAAQL,EACRd,eAAgBpB,KAAKoB,eACrBI,UAAWxB,KAAKwB,YAGpBrB,OAAOG,SAASC,QAGlB7C,QAAQC,IAAI,kCACd,CAKA,KAAA6E,CAAMC,EAAgB,MACpBC,WAAW,KACTvC,OAAOqC,SACNC,EACL,EAMKnF,eAAeqF,EAAS5C,GAC7B,MAAM6C,EAAO,IAAI/C,EAAYE,GAE7B,aADM6C,EAAK1C,aACJ0C,CACT"}