@tinycloud/web-sdk 1.0.0

package/dist/modules/Storage/index.d.ts

@@ -0,0 +1,2 @@
+export * from './tinycloud';
+//# sourceMappingURL=index.d.ts.map

package/dist/modules/Storage/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/modules/Storage/index.ts"],"names":[],"mappings":"AAAA,cAAc,aAAa,CAAC"}

package/dist/modules/Storage/tinycloud/KVServiceAdapter.d.ts

@@ -0,0 +1,24 @@
+import { IKVService } from "@tinycloud/sdk-core";
+import { Session } from "./types";
+/**
+ * Create a KVService instance from web-sdk Session.
+ *
+ * This adapter bridges the web-sdk Session type to the sdk-core KVService,
+ * allowing platform-agnostic code to use the shared KV service implementation.
+ *
+ * @param host - The TinyCloud host URL
+ * @param session - The web-sdk Session
+ * @returns An IKVService instance
+ *
+ * @example
+ * ```typescript
+ * const session = await tinycloud.space();
+ * const kvService = createKVService("https://tinycloud.example.com", session);
+ *
+ * // Use the KV service
+ * await kvService.put("key", { data: "value" });
+ * const result = await kvService.get("key");
+ * ```
+ */
+export declare function createKVService(host: string, session: Session): IKVService;
+//# sourceMappingURL=KVServiceAdapter.d.ts.map

package/dist/modules/Storage/tinycloud/KVServiceAdapter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"KVServiceAdapter.d.ts","sourceRoot":"","sources":["../../../../src/modules/Storage/tinycloud/KVServiceAdapter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAa,UAAU,EAAkB,MAAM,qBAAqB,CAAC;AAE5E,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAElC;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,UAAU,CAc1E"}

package/dist/modules/Storage/tinycloud/index.d.ts

@@ -0,0 +1,3 @@
+export { SessionConfig, Session, HostConfig } from './types';
+export { createKVService } from './KVServiceAdapter';
+//# sourceMappingURL=index.d.ts.map

package/dist/modules/Storage/tinycloud/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/modules/Storage/tinycloud/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC"}

package/dist/modules/Storage/tinycloud/module.d.ts

@@ -0,0 +1,10 @@
+import { tinycloud } from '@tinycloud/web-sdk-wasm';
+type TinyCloudModule = typeof tinycloud;
+export declare const makeSpaceId: TinyCloudModule['makeSpaceId'];
+export declare const prepareSession: TinyCloudModule['prepareSession'];
+export declare const completeSessionSetup: TinyCloudModule['completeSessionSetup'];
+export declare const invoke: TinyCloudModule['invoke'];
+export declare const generateHostSIWEMessage: TinyCloudModule['generateHostSIWEMessage'];
+export declare const siweToDelegationHeaders: TinyCloudModule['siweToDelegationHeaders'];
+export {};
+//# sourceMappingURL=module.d.ts.map

package/dist/modules/Storage/tinycloud/module.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"module.d.ts","sourceRoot":"","sources":["../../../../src/modules/Storage/tinycloud/module.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yBAAyB,CAAC;AAEpD,KAAK,eAAe,GAAG,OAAO,SAAS,CAAC;AAYxC,eAAO,MAAM,WAAW,EAAE,eAAe,CAAC,aAAa,CAMtD,CAAC;AAEF,eAAO,MAAM,cAAc,EAAE,eAAe,CAAC,gBAAgB,CAM5D,CAAC;AAEF,eAAO,MAAM,oBAAoB,EAAE,eAAe,CAAC,sBAAsB,CAQxE,CAAC;AAEF,eAAO,MAAM,MAAM,EAAE,eAAe,CAAC,QAAQ,CAM5C,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,eAAe,CAAC,yBAAyB,CAO5E,CAAC;AAEJ,eAAO,MAAM,uBAAuB,EAAE,eAAe,CAAC,yBAAyB,CAO5E,CAAC"}

package/dist/modules/Storage/tinycloud/types.d.ts

@@ -0,0 +1,64 @@
+/**
+ * Configuration object for starting a TinyCloud session.
+ */
+export type SessionConfig = {
+    /** Actions that the session key will be permitted to perform, organized by service and path */
+    actions: {
+        [service: string]: {
+            [key: string]: string[];
+        };
+    };
+    /** Ethereum address. */
+    address: string;
+    /** Chain ID. */
+    chainId: number;
+    /** Domain of the webpage. */
+    domain: string;
+    /** Current time for SIWE message. */
+    issuedAt: string;
+    /** The space that is the target resource of the delegation. */
+    spaceId: string;
+    /** The earliest time that the session will be valid from. */
+    notBefore?: string;
+    /** The latest time that the session will be valid until. */
+    expirationTime: string;
+    /** Optional parent delegations to inherit and attenuate */
+    parents?: string[];
+    /** Optional jwk to delegate to */
+    jwk?: object;
+};
+/**
+ * A TinyCloud session.
+ */
+export type Session = {
+    /** The delegation from the user to the session key. */
+    delegationHeader: {
+        Authorization: string;
+    };
+    /** The delegation reference from the user to the session key. */
+    delegationCid: string;
+    /** The session key. */
+    jwk: object;
+    /** The space that the session key is permitted to perform actions against. */
+    spaceId: string;
+    /** The verification method of the session key. */
+    verificationMethod: string;
+};
+/**
+ * Configuration object for generating a Space Host Delegation SIWE message.
+ */
+export type HostConfig = {
+    /** Ethereum address. */
+    address: string;
+    /** Chain ID. */
+    chainId: number;
+    /** Domain of the webpage. */
+    domain: string;
+    /** Current time for SIWE message. */
+    issuedAt: string;
+    /** The space that is the target resource of the delegation. */
+    spaceId: string;
+    /** The peer that is the target/invoker in the delegation. */
+    peerId: string;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/modules/Storage/tinycloud/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/modules/Storage/tinycloud/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,MAAM,aAAa,GAAG;IAC1B,+FAA+F;IAC/F,OAAO,EAAE;QAAE,CAAC,OAAO,EAAE,MAAM,GAAG;YAAE,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CAAA;SAAE,CAAA;KAAE,CAAC;IAC5D,wBAAwB;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,gBAAgB;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,6BAA6B;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,qCAAqC;IACrC,QAAQ,EAAE,MAAM,CAAC;IACjB,+DAA+D;IAC/D,OAAO,EAAE,MAAM,CAAC;IAChB,6DAA6D;IAC7D,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4DAA4D;IAC5D,cAAc,EAAE,MAAM,CAAC;IACvB,2DAA2D;IAC3D,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,kCAAkC;IAClC,GAAG,CAAC,EAAE,MAAM,CAAC;CACd,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,OAAO,GAAG;IACpB,uDAAuD;IACvD,gBAAgB,EAAE;QAAE,aAAa,EAAE,MAAM,CAAA;KAAE,CAAC;IAC5C,iEAAiE;IACjE,aAAa,EAAE,MAAM,CAAC;IACtB,uBAAuB;IACvB,GAAG,EAAE,MAAM,CAAC;IACZ,8EAA8E;IAC9E,OAAO,EAAE,MAAM,CAAC;IAChB,kDAAkD;IAClD,kBAAkB,EAAE,MAAM,CAAC;CAC5B,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG;IACvB,wBAAwB;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,gBAAgB;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,6BAA6B;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,qCAAqC;IACrC,QAAQ,EAAE,MAAM,CAAC;IACjB,+DAA+D;IAC/D,OAAO,EAAE,MAAM,CAAC;IAChB,6DAA6D;IAC7D,MAAM,EAAE,MAAM,CAAC;CAChB,CAAC"}

package/dist/modules/Storage/tinycloud/types.schema.d.ts

@@ -0,0 +1,159 @@
+/**
+ * Zod schemas for TinyCloud storage session and configuration types.
+ *
+ * These schemas provide runtime validation for session configuration,
+ * active sessions, and host configuration. Types are derived from
+ * schemas using z.infer<>.
+ *
+ * @packageDocumentation
+ */
+import { z } from "zod";
+/**
+ * Configuration object for starting a TinyCloud session.
+ */
+export declare const SessionConfigSchema: z.ZodObject<{
+    /** Actions that the session key will be permitted to perform, organized by service and path */
+    actions: z.ZodRecord<z.ZodString, z.ZodRecord<z.ZodString, z.ZodArray<z.ZodString, "many">>>;
+    /** Ethereum address. */
+    address: z.ZodString;
+    /** Chain ID. */
+    chainId: z.ZodNumber;
+    /** Domain of the webpage. */
+    domain: z.ZodString;
+    /** Current time for SIWE message (ISO 8601 format). */
+    issuedAt: z.ZodString;
+    /** The space that is the target resource of the delegation. */
+    spaceId: z.ZodString;
+    /** The earliest time that the session will be valid from. */
+    notBefore: z.ZodOptional<z.ZodString>;
+    /** The latest time that the session will be valid until. */
+    expirationTime: z.ZodString;
+    /** Optional parent delegations to inherit and attenuate */
+    parents: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    /** Optional jwk to delegate to */
+    jwk: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+}, "strip", z.ZodTypeAny, {
+    spaceId?: string;
+    actions?: Record<string, Record<string, string[]>>;
+    address?: string;
+    chainId?: number;
+    domain?: string;
+    issuedAt?: string;
+    expirationTime?: string;
+    notBefore?: string;
+    jwk?: Record<string, unknown>;
+    parents?: string[];
+}, {
+    spaceId?: string;
+    actions?: Record<string, Record<string, string[]>>;
+    address?: string;
+    chainId?: number;
+    domain?: string;
+    issuedAt?: string;
+    expirationTime?: string;
+    notBefore?: string;
+    jwk?: Record<string, unknown>;
+    parents?: string[];
+}>;
+export type SessionConfig = z.infer<typeof SessionConfigSchema>;
+/**
+ * A TinyCloud session.
+ */
+export declare const SessionSchema: z.ZodObject<{
+    /** The delegation from the user to the session key. */
+    delegationHeader: z.ZodObject<{
+        Authorization: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        Authorization?: string;
+    }, {
+        Authorization?: string;
+    }>;
+    /** The delegation reference from the user to the session key. */
+    delegationCid: z.ZodString;
+    /** The session key (JWK format). */
+    jwk: z.ZodRecord<z.ZodString, z.ZodUnknown>;
+    /** The space that the session key is permitted to perform actions against. */
+    spaceId: z.ZodString;
+    /** The verification method of the session key. */
+    verificationMethod: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    spaceId?: string;
+    delegationHeader?: {
+        Authorization?: string;
+    };
+    jwk?: Record<string, unknown>;
+    delegationCid?: string;
+    verificationMethod?: string;
+}, {
+    spaceId?: string;
+    delegationHeader?: {
+        Authorization?: string;
+    };
+    jwk?: Record<string, unknown>;
+    delegationCid?: string;
+    verificationMethod?: string;
+}>;
+export type Session = z.infer<typeof SessionSchema>;
+/**
+ * Configuration object for generating a Space Host Delegation SIWE message.
+ */
+export declare const HostConfigSchema: z.ZodObject<{
+    /** Ethereum address. */
+    address: z.ZodString;
+    /** Chain ID. */
+    chainId: z.ZodNumber;
+    /** Domain of the webpage. */
+    domain: z.ZodString;
+    /** Current time for SIWE message (ISO 8601 format). */
+    issuedAt: z.ZodString;
+    /** The space that is the target resource of the delegation. */
+    spaceId: z.ZodString;
+    /** The peer that is the target/invoker in the delegation. */
+    peerId: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    spaceId?: string;
+    address?: string;
+    chainId?: number;
+    domain?: string;
+    issuedAt?: string;
+    peerId?: string;
+}, {
+    spaceId?: string;
+    address?: string;
+    chainId?: number;
+    domain?: string;
+    issuedAt?: string;
+    peerId?: string;
+}>;
+export type HostConfig = z.infer<typeof HostConfigSchema>;
+/**
+ * Validation error type.
+ */
+export interface ValidationError {
+    code: string;
+    message: string;
+    issues?: unknown[];
+}
+/**
+ * Result type for validation operations.
+ */
+export type ValidationResult<T> = {
+    ok: true;
+    data: T;
+} | {
+    ok: false;
+    error: ValidationError;
+};
+/**
+ * Validates SessionConfig.
+ */
+export declare function validateSessionConfig(data: unknown): ValidationResult<SessionConfig>;
+/**
+ * Validates Session.
+ */
+export declare function validateSession(data: unknown): ValidationResult<Session>;
+/**
+ * Validates HostConfig.
+ */
+export declare function validateHostConfig(data: unknown): ValidationResult<HostConfig>;
+//# sourceMappingURL=types.schema.d.ts.map

package/dist/modules/Storage/tinycloud/types.schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.schema.d.ts","sourceRoot":"","sources":["../../../../src/modules/Storage/tinycloud/types.schema.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAMxB;;GAEG;AACH,eAAO,MAAM,mBAAmB;IAC9B,+FAA+F;;IAE/F,wBAAwB;;IAExB,gBAAgB;;IAEhB,6BAA6B;;IAE7B,uDAAuD;;IAEvD,+DAA+D;;IAE/D,6DAA6D;;IAE7D,4DAA4D;;IAE5D,2DAA2D;;IAE3D,kCAAkC;;;;;;;;;;;;;;;;;;;;;;;;EAElC,CAAC;AAEH,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAMhE;;GAEG;AACH,eAAO,MAAM,aAAa;IACxB,uDAAuD;;;;;;;;IAIvD,iEAAiE;;IAEjE,oCAAoC;;IAEpC,8EAA8E;;IAE9E,kDAAkD;;;;;;;;;;;;;;;;;;EAElD,CAAC;AAEH,MAAM,MAAM,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC;AAMpD;;GAEG;AACH,eAAO,MAAM,gBAAgB;IAC3B,wBAAwB;;IAExB,gBAAgB;;IAEhB,6BAA6B;;IAE7B,uDAAuD;;IAEvD,+DAA+D;;IAE/D,6DAA6D;;;;;;;;;;;;;;;;EAE7D,CAAC;AAEH,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAM1D;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,OAAO,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,MAAM,gBAAgB,CAAC,CAAC,IAC1B;IAAE,EAAE,EAAE,IAAI,CAAC;IAAC,IAAI,EAAE,CAAC,CAAA;CAAE,GACrB;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,KAAK,EAAE,eAAe,CAAA;CAAE,CAAC;AAE1C;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,OAAO,GAAG,gBAAgB,CAAC,aAAa,CAAC,CAapF;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,IAAI,EAAE,OAAO,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAaxE;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,OAAO,GAAG,gBAAgB,CAAC,UAAU,CAAC,CAa9E"}

package/dist/modules/UserAuthorization.d.ts

@@ -0,0 +1,361 @@
+import { providers, Signer } from "ethers";
+import { tcwSession } from "@tinycloud/web-sdk-wasm";
+import { AxiosInstance } from "axios";
+import { SiweMessage } from "siwe";
+import { EnsData } from "@tinycloud/web-core";
+import type { ClientSession, ClientConfig, IConnected, Extension } from "@tinycloud/web-core/client";
+import { IUserAuthorization as ICoreUserAuthorization, PartialSiweMessage } from "@tinycloud/sdk-core";
+import { Session } from "./Storage/tinycloud";
+/**
+ * Extended Client Config with TinyCloud options
+ */
+declare module "@tinycloud/web-core/client" {
+    interface ClientConfig {
+        /** Whether to automatically create space if it doesn't exist (default: true) */
+        autoCreateSpace?: boolean;
+        /** TinyCloud server endpoints (default: ["https://node.tinycloud.xyz"]) */
+        tinycloudHosts?: string[];
+        /** Space prefix for new sessions (default: "default") */
+        spacePrefix?: string;
+    }
+}
+/**
+ * Interface for tracking session state during SIWE message generation
+ */
+interface PendingSession {
+    /** Instance of SessionManager (null if consumed by build()) */
+    sessionManager: tcwSession.TCWSessionManager | null;
+    /** Session key JWK string (stored before build() consumes sessionManager) */
+    sessionKey?: string;
+    /** Ethereum address for the session */
+    address: string;
+    /** Timestamp when session was generated */
+    generatedAt: number;
+    /** Extensions that were applied to the session */
+    extensions: Extension[];
+}
+/** UserAuthorization Module
+ *
+ * Handles the capabilities that a user can provide a app, specifically
+ * authentication and authorization. This resource handles  all key and
+ * signing capabilities including:
+ * - ethereum provider, wallet connection, SIWE message creation and signing
+ * - session key management
+ * - creates, manages, and handles session data
+ * - manages/provides capabilities
+ */
+interface IUserAuthorization {
+    provider: providers.Web3Provider;
+    session?: ClientSession;
+    extend: (extension: Extension) => void;
+    connect(): Promise<any>;
+    signIn(): Promise<any>;
+    /**
+     * ENS data supported by the SDK.
+     * @param address - User address.
+     * @param resolveEnsOpts - Options to resolve ENS.
+     * @returns Object containing ENS data.
+     */
+    resolveEns(
+    /** User address */
+    address: string): Promise<EnsData>;
+    address(): string | undefined;
+    chainId(): number | undefined;
+    /**
+     * Signs a message using the private key of the connected address.
+     * @returns signature;
+     */
+    signMessage(message: string): Promise<string>;
+    getSigner(): Signer;
+    signOut(): Promise<any>;
+    /**
+     * Generates a SIWE message for authentication with session key capabilities.
+     * @param address - Ethereum address performing the signing
+     * @param partial - Optional partial SIWE message to override defaults
+     * @returns SiweMessage object ready for signing
+     */
+    generateSiweMessage(address: string, partial?: PartialSiweMessage): Promise<SiweMessage>;
+    /**
+     * Sign in to the SDK using a pre-signed SIWE message.
+     * @param siweMessage - The SIWE message that was generated
+     * @param signature - The signature of the SIWE message
+     * @returns Promise with the ClientSession object
+     */
+    signInWithSignature(siweMessage: SiweMessage, signature: string): Promise<ClientSession>;
+    /**
+     * Get the space ID for the current session.
+     * @returns Space ID or undefined if not available
+     */
+    getSpaceId(): string | undefined;
+    /**
+     * Get the configured TinyCloud host URLs.
+     * @returns Array of TinyCloud host URLs
+     */
+    getTinycloudHosts(): string[];
+    /**
+     * Ensure the user's space exists on the TinyCloud server.
+     * Creates the space if it doesn't exist (when autoCreateSpace is true).
+     */
+    ensureSpaceExists(): Promise<void>;
+    /**
+     * Get the active TinyCloud session.
+     * This provides access to the session for authenticated requests.
+     * @returns Session object or undefined if not signed in
+     */
+    getTinycloudSession(): Session | undefined;
+}
+declare class UserAuthorizationInit {
+    private config?;
+    /** Extensions for the session. */
+    extensions: Extension[];
+    /** The session representation (once signed in). */
+    session?: ClientSession;
+    constructor(config?: ClientConfig);
+    /** Extend the session with a compatible extension. */
+    extend(extension: Extension): void;
+    /**
+     * Connect to the signing account using the configured provider.
+     * @returns UserAuthorizationConnected instance.
+     */
+    connect(): Promise<UserAuthorizationConnected>;
+}
+/** An intermediate state: connected, but not signed-in. */
+declare class UserAuthorizationConnected implements IConnected {
+    /** Instance of SessionManager */
+    builder: tcwSession.TCWSessionManager;
+    /** Config object. */
+    config: ClientConfig;
+    /** Enabled extensions. */
+    extensions: Extension[];
+    /** EthersJS provider. */
+    provider: providers.Web3Provider;
+    /**
+     * Promise that is initialized on construction of this class to run the "afterConnect" methods
+     * of the extensions.
+     */
+    afterConnectHooksPromise: Promise<void>;
+    /** Verifies if extension is enabled. */
+    isExtensionEnabled: (namespace: string) => boolean;
+    /** Axios instance. */
+    api?: AxiosInstance;
+    /** Ethereum Provider */
+    constructor(
+    /** Instance of SessionManager */
+    builder: tcwSession.TCWSessionManager, 
+    /** Config object. */
+    config: ClientConfig, 
+    /** Enabled extensions. */
+    extensions: Extension[], 
+    /** EthersJS provider. */
+    provider: providers.Web3Provider);
+    /**
+     * Default KV actions for TinyCloud services.
+     * These are added to every session to enable basic KV operations.
+     */
+    private static readonly DEFAULT_KV_ACTIONS;
+    /**
+     * Default capabilities actions (for reading user capabilities).
+     */
+    private static readonly DEFAULT_CAPABILITIES_ACTIONS;
+    /** Applies the "afterConnect" methods and the delegated capabilities of the extensions. */
+    applyExtensions(): Promise<void>;
+    /**
+     * Adds default KV capabilities for the given user address and chainId.
+     * Must be called after we have address/chainId but before build().
+     * @param address - User's Ethereum address
+     * @param chainId - Chain ID
+     * @param spacePrefix - Space prefix (default: "default")
+     * @param kvPrefix - KV path prefix for scoping access (default: "" for all paths)
+     */
+    addDefaultCapabilities(address: string, chainId: number, spacePrefix?: string, kvPrefix?: string): void;
+    /**
+     * Applies the "afterSignIn" methods of the extensions.
+     * @param session - ClientSession object.
+     */
+    afterSignIn(session: ClientSession): Promise<void>;
+    /**
+     * Requests the user to sign in.
+     * Generates the SIWE message for this session, requests the configured
+     * Signer to sign the message, calls the "afterSignIn" methods of the
+     * extensions.
+     * @returns Promise with the ClientSession object.
+     */
+    signIn(): Promise<ClientSession>;
+    /**
+     * Requests the user to sign out.
+     * @param session - ClientSession object.
+     */
+    signOut(session: ClientSession): Promise<void>;
+}
+declare class UserAuthorization implements IUserAuthorization, ICoreUserAuthorization {
+    private _config;
+    /** The Ethereum provider */
+    provider: providers.Web3Provider;
+    /** The session representation (once signed in). */
+    session?: ClientSession;
+    /** Session builder. */
+    private init;
+    /** Current connection */
+    private connection?;
+    /** The config object. */
+    private config;
+    /** Pending session state for signature-based initialization */
+    private pendingSession?;
+    /** Whether to automatically create space if it doesn't exist */
+    private autoCreateSpace;
+    /** TinyCloud server endpoints */
+    private tinycloudHosts;
+    /** Space prefix for new sessions */
+    private spacePrefix;
+    /** KV path prefix for scoping access */
+    private kvPrefix;
+    /** The space ID for the current session */
+    private _spaceId?;
+    /** Delegation header for the current session */
+    private _delegationHeader?;
+    /** The TinyCloud session containing delegation and space info */
+    private _tinycloudSession?;
+    /** The host where the user's space was found or created */
+    private _activeHost?;
+    constructor(_config?: ClientConfig);
+    /**
+     * Extends with functions that are called after connecting and signing in.
+     */
+    extend(extension: Extension): void;
+    connect(): Promise<void>;
+    signIn(): Promise<ClientSession>;
+    /**
+     * ENS data supported by the SDK.
+     * @param address - User address.
+     * @param resolveEnsOpts - Options to resolve ENS.
+     * @returns Object containing ENS data.
+     */
+    resolveEns(
+    /** User address */
+    address: string): Promise<EnsData>;
+    /**
+     * Invalidates user's session.
+     */
+    signOut(): Promise<void>;
+    /**
+     * Gets the address that is connected and signed in.
+     * @returns Address.
+     */
+    address: () => string | undefined;
+    /**
+     * Get the chainId that the address is connected and signed in on.
+     * @returns chainId.
+     */
+    chainId: () => number | undefined;
+    /**
+     * Signs a message using the private key of the connected address.
+     * @returns signature;
+     */
+    signMessage(message: string): Promise<string>;
+    /**
+     * Gets the provider that is connected and signed in.
+     * @returns Provider.
+     */
+    getProvider(): providers.Web3Provider | undefined;
+    /**
+     * Returns the signer of the connected address.
+     * @returns ethers.Signer
+     * @see https://docs.ethers.io/v5/api/signer/#Signer
+     */
+    getSigner(): Signer;
+    /**
+     * Generates a SIWE message for authentication with session key capabilities.
+     * This method initializes a SessionManager, generates a session key,
+     * applies extension capabilities, and builds a SIWE message for signing.
+     *
+     * @param address - Ethereum address performing the signing
+     * @param partial - Optional partial SIWE message to override defaults
+     * @returns SiweMessage object ready for signing
+     */
+    generateSiweMessage(address: string, partial?: PartialSiweMessage): Promise<SiweMessage>;
+    /**
+     * Sign in to the SDK using a pre-signed SIWE message.
+     * This method must be called after generateSiweMessage().
+     * @param siweMessage - The SIWE message that was generated
+     * @param signature - The signature of the SIWE message
+     * @returns Promise with the ClientSession object
+     */
+    signInWithSignature(siweMessage: SiweMessage, signature: string): Promise<ClientSession>;
+    /**
+     * Default KV actions for TinyCloud services.
+     * These are added to every session to enable basic KV operations.
+     */
+    private static readonly DEFAULT_KV_ACTIONS;
+    /**
+     * Default capabilities actions (for reading user capabilities).
+     */
+    private static readonly DEFAULT_CAPABILITIES_ACTIONS;
+    /**
+     * Applies extension capabilities (defaultActions/targetedActions) to the session manager.
+     * This method also adds default KV and capabilities actions.
+     *
+     * @private
+     * @param sessionManager - SessionManager instance to apply capabilities to
+     * @param extensions - Array of extensions to apply
+     * @param address - User's Ethereum address (for building target URIs)
+     * @param chainId - Chain ID (for building target URIs)
+     * @param spacePrefix - Space prefix (default: "default")
+     * @param kvPrefix - KV path prefix for scoping access (default: "" for all paths)
+     */
+    private applyExtensionCapabilities;
+    /**
+     * Get the space ID for the current session.
+     * @returns Space ID or undefined if not available
+     */
+    getSpaceId(): string | undefined;
+    /**
+     * Get the configured TinyCloud host URLs.
+     * @returns Array of TinyCloud host URLs
+     */
+    getTinycloudHosts(): string[];
+    /**
+     * Get the active TinyCloud session.
+     * This provides access to the session for authenticated requests.
+     * @returns Session object or undefined if not signed in
+     */
+    getTinycloudSession(): Session | undefined;
+    /**
+     * Create the space on the TinyCloud server (host delegation).
+     * This registers the user as the owner of the space.
+     * Uses a modal to confirm with the user before creating.
+     * @param host - The host to create the space on
+     * @returns Promise resolving to true if space was created, false if user dismissed
+     */
+    private hostSpace;
+    /**
+     * Ensure the user's space exists on the TinyCloud server.
+     * Creates the space if it doesn't exist and autoCreateSpace is enabled.
+     *
+     * Strategy:
+     * 1. Try to activate the session on the first (primary) host.
+     * 2. If activation succeeds, set it as the `_activeHost` and return.
+     * 3. If the primary host returns 404, create the space there (don't skip
+     *    because it might exist on other hosts - there is no replication).
+     * 4. If the primary host has a non-404 error, try remaining hosts.
+     *
+     * @throws Error if space creation fails or is disabled and space doesn't exist.
+     */
+    ensureSpaceExists(): Promise<void>;
+    /**
+     * Create the space on a specific host and activate the session there.
+     */
+    private createSpaceOnHost;
+    /**
+     * Apply extension afterSignIn hooks to the session.
+     * @param session - The ClientSession object
+     */
+    private applyAfterSignInHooks;
+    /**
+     * Generate space ID and delegation header for the current session.
+     * This sets up the internal state needed for ensureSpaceExists() and SpaceConnection.
+     * @param session - The ClientSession object
+     */
+    private setupSpaceSession;
+}
+export { IUserAuthorization, UserAuthorization, UserAuthorizationInit, UserAuthorizationConnected, PendingSession, };
+//# sourceMappingURL=UserAuthorization.d.ts.map

package/dist/modules/UserAuthorization.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserAuthorization.d.ts","sourceRoot":"","sources":["../../src/modules/UserAuthorization.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC3C,OAAO,EAAe,UAAU,EAAa,MAAM,yBAAyB,CAAC;AAE7E,OAAO,EAAE,aAAa,EAAE,MAAM,OAAO,CAAC;AACtC,OAAO,EAAiB,WAAW,EAAE,MAAM,MAAM,CAAC;AAClD,OAAO,EAAE,OAAO,EAAc,MAAM,qBAAqB,CAAC;AAC1D,OAAO,KAAK,EACV,aAAa,EACb,YAAY,EACZ,UAAU,EACV,SAAS,EACV,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,kBAAkB,IAAI,sBAAsB,EAE5C,kBAAkB,EAKnB,MAAM,qBAAqB,CAAC;AAW7B,OAAO,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAC;AAK9C;;GAEG;AACH,OAAO,QAAQ,4BAA4B,CAAC;IAC1C,UAAU,YAAY;QACpB,gFAAgF;QAChF,eAAe,CAAC,EAAE,OAAO,CAAC;QAC1B,2EAA2E;QAC3E,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;QAC1B,yDAAyD;QACzD,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB;CACF;AAED;;GAEG;AACH,UAAU,cAAc;IACtB,+DAA+D;IAC/D,cAAc,EAAE,UAAU,CAAC,iBAAiB,GAAG,IAAI,CAAC;IACpD,6EAA6E;IAC7E,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,uCAAuC;IACvC,OAAO,EAAE,MAAM,CAAC;IAChB,2CAA2C;IAC3C,WAAW,EAAE,MAAM,CAAC;IACpB,kDAAkD;IAClD,UAAU,EAAE,SAAS,EAAE,CAAC;CACzB;AAED;;;;;;;;;GASG;AACH,UAAU,kBAAkB;IAE1B,QAAQ,EAAE,SAAS,CAAC,YAAY,CAAC;IACjC,OAAO,CAAC,EAAE,aAAa,CAAC;IAGxB,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,KAAK,IAAI,CAAC;IACvC,OAAO,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IACxB,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IACvB;;;;;OAKG;IACH,UAAU;IACR,mBAAmB;IACnB,OAAO,EAAE,MAAM,GACd,OAAO,CAAC,OAAO,CAAC,CAAC;IACpB,OAAO,IAAI,MAAM,GAAG,SAAS,CAAC;IAC9B,OAAO,IAAI,MAAM,GAAG,SAAS,CAAC;IAC9B;;;OAGG;IACH,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9C,SAAS,IAAI,MAAM,CAAC;IAOpB,OAAO,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IAIxB;;;;;OAKG;IACH,mBAAmB,CACjB,OAAO,EAAE,MAAM,EACf,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,WAAW,CAAC,CAAC;IACxB;;;;;OAKG;IACH,mBAAmB,CACjB,WAAW,EAAE,WAAW,EACxB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,aAAa,CAAC,CAAC;IAC1B;;;OAGG;IACH,UAAU,IAAI,MAAM,GAAG,SAAS,CAAC;IACjC;;;OAGG;IACH,iBAAiB,IAAI,MAAM,EAAE,CAAC;IAC9B;;;OAGG;IACH,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACnC;;;;OAIG;IACH,mBAAmB,IAAI,OAAO,GAAG,SAAS,CAAC;CAC5C;AAED,cAAM,qBAAqB;IAOb,OAAO,CAAC,MAAM,CAAC;IAN3B,kCAAkC;IAC3B,UAAU,EAAE,SAAS,EAAE,CAAM;IAEpC,mDAAmD;IAC5C,OAAO,CAAC,EAAE,aAAa,CAAC;gBAEX,MAAM,CAAC,EAAE,YAAY;IAEzC,sDAAsD;IACtD,MAAM,CAAC,SAAS,EAAE,SAAS;IAI3B;;;OAGG;IACG,OAAO,IAAI,OAAO,CAAC,0BAA0B,CAAC;CAgFrD;AAED,2DAA2D;AAC3D,cAAM,0BAA2B,YAAW,UAAU;IAiBlD,iCAAiC;IAC1B,OAAO,EAAE,UAAU,CAAC,iBAAiB;IAC5C,qBAAqB;IACd,MAAM,EAAE,YAAY;IAC3B,0BAA0B;IACnB,UAAU,EAAE,SAAS,EAAE;IAC9B,yBAAyB;IAClB,QAAQ,EAAE,SAAS,CAAC,YAAY;IAvBzC;;;OAGG;IACI,wBAAwB,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;IAE/C,wCAAwC;IACjC,kBAAkB,GAAI,WAAW,MAAM,aAC0B;IAExE,sBAAsB;IACf,GAAG,CAAC,EAAE,aAAa,CAAC;IAE3B,wBAAwB;;IAGtB,iCAAiC;IAC1B,OAAO,EAAE,UAAU,CAAC,iBAAiB;IAC5C,qBAAqB;IACd,MAAM,EAAE,YAAY;IAC3B,0BAA0B;IACnB,UAAU,EAAE,SAAS,EAAE;IAC9B,yBAAyB;IAClB,QAAQ,EAAE,SAAS,CAAC,YAAY;IAMzC;;;OAGG;IACH,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,kBAAkB,CAMxC;IAEF;;OAEG;IACH,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,4BAA4B,CAElD;IAEF,2FAA2F;IAC9E,eAAe,IAAI,OAAO,CAAC,IAAI,CAAC;IA0B7C;;;;;;;OAOG;IACI,sBAAsB,CAC3B,OAAO,EAAE,MAAM,EACf,OAAO,EAAE,MAAM,EACf,WAAW,GAAE,MAAkB,EAC/B,QAAQ,GAAE,MAAW,GACpB,IAAI;IAgBP;;;OAGG;IACU,WAAW,CAAC,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAQ/D;;;;;;OAMG;IACG,MAAM,IAAI,OAAO,CAAC,aAAa,CAAC;IA+CtC;;;OAGG;IACG,OAAO,CAAC,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;CAGrD;AAUD,cAAM,iBAAkB,YAAW,kBAAkB,EAAE,sBAAsB;IA2C/D,OAAO,CAAC,OAAO;IA1C3B,4BAA4B;IACrB,QAAQ,EAAE,SAAS,CAAC,YAAY,CAAC;IAExC,mDAAmD;IAC5C,OAAO,CAAC,EAAE,aAAa,CAAC;IAE/B,uBAAuB;IACvB,OAAO,CAAC,IAAI,CAAwB;IAEpC,yBAAyB;IACzB,OAAO,CAAC,UAAU,CAAC,CAA6B;IAEhD,yBAAyB;IACzB,OAAO,CAAC,MAAM,CAAe;IAE7B,+DAA+D;IAC/D,OAAO,CAAC,cAAc,CAAC,CAAiB;IAExC,gEAAgE;IAChE,OAAO,CAAC,eAAe,CAAU;IAEjC,iCAAiC;IACjC,OAAO,CAAC,cAAc,CAAW;IAEjC,oCAAoC;IACpC,OAAO,CAAC,WAAW,CAAS;IAE5B,wCAAwC;IACxC,OAAO,CAAC,QAAQ,CAAS;IAEzB,2CAA2C;IAC3C,OAAO,CAAC,QAAQ,CAAC,CAAS;IAE1B,gDAAgD;IAChD,OAAO,CAAC,iBAAiB,CAAC,CAA4B;IAEtD,iEAAiE;IACjE,OAAO,CAAC,iBAAiB,CAAC,CAAU;IAEpC,2DAA2D;IAC3D,OAAO,CAAC,WAAW,CAAC,CAAS;gBAET,OAAO,GAAE,YAA6B;IAoB1D;;OAEG;IACI,MAAM,CAAC,SAAS,EAAE,SAAS,GAAG,IAAI;IAI5B,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAsCxB,MAAM,IAAI,OAAO,CAAC,aAAa,CAAC;IA0D7C;;;;;OAKG;IACU,UAAU;IACrB,mBAAmB;IACnB,OAAO,EAAE,MAAM,GACd,OAAO,CAAC,OAAO,CAAC;IAInB;;OAEG;IACU,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAwBrC;;;OAGG;IACI,OAAO,EAAE,MAAM,MAAM,GAAG,SAAS,CAA+B;IAEvE;;;OAGG;IACI,OAAO,EAAE,MAAM,MAAM,GAAG,SAAS,CAA+B;IAEvE;;;OAGG;IACU,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI1D;;;OAGG;IACI,WAAW,IAAI,SAAS,CAAC,YAAY,GAAG,SAAS;IAIxD;;;;OAIG;IACI,SAAS,IAAI,MAAM;IAI1B;;;;;;;;OAQG;IACU,mBAAmB,CAC9B,OAAO,EAAE,MAAM,EACf,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,CAAC,WAAW,CAAC;IAsGvB;;;;;;OAMG;IACU,mBAAmB,CAC9B,WAAW,EAAE,WAAW,EACxB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,aAAa,CAAC;IA4DzB;;;OAGG;IACH,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,kBAAkB,CAMxC;IAEF;;OAEG;IACH,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,4BAA4B,CAElD;IAEF;;;;;;;;;;;OAWG;YACW,0BAA0B;IA2CxC;;;OAGG;IACI,UAAU,IAAI,MAAM,GAAG,SAAS;IAIvC;;;OAGG;IACI,iBAAiB,IAAI,MAAM,EAAE;IAIpC;;;;OAIG;IACI,mBAAmB,IAAI,OAAO,GAAG,SAAS;IAIjD;;;;;;OAMG;YACW,SAAS;IAgEvB;;;;;;;;;;;;OAYG;IACU,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC;IAiE/C;;OAEG;YACW,iBAAiB;IAmC/B;;;OAGG;YACW,qBAAqB;IAYnC;;;;OAIG;YACW,iBAAiB;CAgDhC;AAED,OAAO,EACL,kBAAkB,EAClB,iBAAiB,EACjB,qBAAqB,EACrB,0BAA0B,EAC1B,cAAc,GACf,CAAC"}