@tinycloudlabs/node-sdk 1.0.0

package/dist/authorization/NodeUserAuthorization.js

@@ -0,0 +1,516 @@
+import { fetchPeerId, submitHostDelegation, activateSessionWithHost, checkNodeVersion, } from "@tinycloudlabs/sdk-core";
+import { TCWSessionManager as SessionManager, prepareSession, completeSessionSetup, ensureEip55, makeSpaceId, initPanicHook, generateHostSIWEMessage, siweToDelegationHeaders, protocolVersion, } from "@tinycloudlabs/node-sdk-wasm";
+import { defaultSignStrategy, } from "./strategies";
+import { MemorySessionStorage } from "../storage/MemorySessionStorage";
+/**
+ * Node.js implementation of IUserAuthorization.
+ *
+ * Supports multiple sign strategies for different use cases:
+ * - auto-sign: Automatically approve all sign requests (trusted backends)
+ * - auto-reject: Reject all sign requests (read-only mode)
+ * - callback: Delegate to a custom callback function (CLI prompts)
+ * - event-emitter: Emit sign requests as events (async workflows)
+ *
+ * @example
+ * ```typescript
+ * // Auto-sign for backend services
+ * const auth = new NodeUserAuthorization({
+ *   signer: new PrivateKeySigner(process.env.PRIVATE_KEY),
+ *   signStrategy: { type: 'auto-sign' },
+ *   domain: 'api.myapp.com',
+ * });
+ *
+ * // Callback for CLI prompts
+ * const auth = new NodeUserAuthorization({
+ *   signer,
+ *   signStrategy: {
+ *     type: 'callback',
+ *     handler: async (req) => {
+ *       const approved = await promptUser(`Sign for ${req.address}?`);
+ *       return { approved };
+ *     }
+ *   },
+ *   domain: 'cli.myapp.com',
+ * });
+ * ```
+ */
+export class NodeUserAuthorization {
+    constructor(config) {
+        this.extensions = [];
+        // Initialize WASM panic hook once (improves error messages from WASM)
+        if (!NodeUserAuthorization.wasmInitialized) {
+            initPanicHook();
+            NodeUserAuthorization.wasmInitialized = true;
+        }
+        this.signer = config.signer;
+        this.signStrategy = config.signStrategy ?? defaultSignStrategy;
+        this.sessionStorage = config.sessionStorage ?? new MemorySessionStorage();
+        this.domain = config.domain;
+        this.uri = config.uri ?? `https://${config.domain}`;
+        this.statement = config.statement;
+        this.spacePrefix = config.spacePrefix ?? "default";
+        this.defaultActions = config.defaultActions ?? {
+            kv: {
+                "": [
+                    "tinycloud.kv/put",
+                    "tinycloud.kv/get",
+                    "tinycloud.kv/del",
+                    "tinycloud.kv/list",
+                    "tinycloud.kv/metadata",
+                ],
+            },
+            capabilities: {
+                "": ["tinycloud.capabilities/read"],
+            },
+        };
+        this.sessionExpirationMs = config.sessionExpirationMs ?? 60 * 60 * 1000;
+        this.autoCreateSpace = config.autoCreateSpace ?? false;
+        this.tinycloudHosts = config.tinycloudHosts ?? ["https://node.tinycloud.xyz"];
+        // Initialize session manager
+        this.sessionManager = new SessionManager();
+    }
+    /**
+     * The current active session (web-core compatible).
+     */
+    get session() {
+        return this._session;
+    }
+    /**
+     * The current TinyCloud session with full delegation data.
+     * Includes spaceId, delegationHeader, and delegationCid.
+     */
+    get tinyCloudSession() {
+        return this._tinyCloudSession;
+    }
+    /**
+     * Add an extension to the authorization flow.
+     */
+    extend(extension) {
+        this.extensions.push(extension);
+    }
+    /**
+     * Get the space ID for the current session.
+     */
+    getSpaceId() {
+        return this._tinyCloudSession?.spaceId;
+    }
+    /**
+     * Create the space on the TinyCloud server (host delegation).
+     * This registers the user as the owner of the space.
+     */
+    async hostSpace() {
+        if (!this._tinyCloudSession || !this._address || !this._chainId) {
+            throw new Error("Must be signed in to host space");
+        }
+        const host = this.tinycloudHosts[0];
+        const spaceId = this._tinyCloudSession.spaceId;
+        // Get peer ID from TinyCloud server
+        const peerId = await fetchPeerId(host, spaceId);
+        // Generate host SIWE message
+        const siwe = generateHostSIWEMessage({
+            address: this._address,
+            chainId: this._chainId,
+            domain: this.domain,
+            issuedAt: new Date().toISOString(),
+            spaceId,
+            peerId,
+        });
+        // Sign the message
+        const signature = await this.signMessage(siwe);
+        // Convert to delegation headers and submit
+        const headers = siweToDelegationHeaders({ siwe, signature });
+        const result = await submitHostDelegation(host, headers);
+        return result.success;
+    }
+    /**
+     * Ensure the user's space exists on the TinyCloud server.
+     * Creates the space if it doesn't exist and autoCreateSpace is enabled.
+     * If autoCreateSpace is false and space doesn't exist, silently returns
+     * (user may be using delegations to access other spaces).
+     *
+     * @throws Error if space creation fails
+     */
+    async ensureSpaceExists() {
+        if (!this._tinyCloudSession) {
+            throw new Error("Must be signed in to ensure space exists");
+        }
+        const host = this.tinycloudHosts[0];
+        // Try to activate the session (this checks if space exists)
+        const result = await activateSessionWithHost(host, this._tinyCloudSession.delegationHeader);
+        if (result.success) {
+            // Space exists and session is activated
+            return;
+        }
+        if (result.status === 404) {
+            // Space doesn't exist
+            if (!this.autoCreateSpace) {
+                // User didn't request space creation - silently return.
+                // They may be using delegations to access other spaces.
+                return;
+            }
+            // Create the space
+            const created = await this.hostSpace();
+            if (!created) {
+                throw new Error(`Failed to create space: ${this._tinyCloudSession.spaceId}`);
+            }
+            // Small delay to allow space creation to propagate
+            await new Promise((resolve) => setTimeout(resolve, 100));
+            // Retry activation after creating space
+            const retryResult = await activateSessionWithHost(host, this._tinyCloudSession.delegationHeader);
+            if (!retryResult.success) {
+                throw new Error(`Failed to activate session after creating space: ${retryResult.error}`);
+            }
+            return;
+        }
+        // Other error
+        throw new Error(`Failed to activate session: ${result.error}`);
+    }
+    /**
+     * Sign in and create a new session.
+     *
+     * This follows the correct SIWE-ReCap flow:
+     * 1. Create session key and get JWK
+     * 2. Call prepareSession() which generates the SIWE with ReCap capabilities
+     * 3. Sign the SIWE string from prepareSession
+     * 4. Call completeSessionSetup() with the prepared session + signature
+     */
+    async signIn() {
+        // Get signer address and chain ID
+        this._address = await this.signer.getAddress();
+        this._chainId = await this.signer.getChainId();
+        const address = ensureEip55(this._address);
+        const chainId = this._chainId;
+        // Create a session key
+        const keyId = `session-${Date.now()}`;
+        this.sessionManager.renameSessionKeyId("default", keyId);
+        // Get JWK for session key
+        const jwkString = this.sessionManager.jwk(keyId);
+        if (!jwkString) {
+            throw new Error("Failed to create session key");
+        }
+        const jwk = JSON.parse(jwkString);
+        // Create space ID
+        const spaceId = makeSpaceId(address, chainId, this.spacePrefix);
+        const now = new Date();
+        const expirationTime = new Date(now.getTime() + this.sessionExpirationMs);
+        // Prepare session - this creates the SIWE message with ReCap capabilities
+        const prepared = prepareSession({
+            abilities: this.defaultActions,
+            address,
+            chainId,
+            domain: this.domain,
+            issuedAt: now.toISOString(),
+            expirationTime: expirationTime.toISOString(),
+            spaceId,
+            jwk,
+        });
+        // Sign the SIWE message from prepareSession (NOT a separately generated SIWE)
+        const signature = await this.requestSignature({
+            address,
+            chainId,
+            message: prepared.siwe,
+            type: "siwe",
+        });
+        // Complete session setup with the prepared session + signature
+        const session = completeSessionSetup({
+            ...prepared,
+            signature,
+        });
+        // Create client session (web-core compatible)
+        const clientSession = {
+            address,
+            walletAddress: address,
+            chainId,
+            sessionKey: keyId,
+            siwe: prepared.siwe,
+            signature,
+        };
+        // Create TinyCloud session with full delegation data
+        // Use sessionManager.getDID(keyId) for verificationMethod to get properly formatted DID URL
+        // The prepared.verificationMethod from Rust WASM has a bug that doubles the DID fragment
+        const tinyCloudSession = {
+            address,
+            chainId,
+            sessionKey: keyId,
+            spaceId,
+            delegationCid: session.delegationCid,
+            delegationHeader: session.delegationHeader,
+            verificationMethod: this.sessionManager.getDID(keyId),
+            jwk,
+            siwe: prepared.siwe,
+            signature,
+        };
+        // Persist session with TinyCloud-specific data
+        const persistedData = {
+            address,
+            chainId,
+            sessionKey: JSON.stringify(jwk),
+            siwe: prepared.siwe,
+            signature,
+            tinycloudSession: {
+                delegationHeader: session.delegationHeader,
+                delegationCid: session.delegationCid,
+                spaceId,
+                verificationMethod: this.sessionManager.getDID(keyId),
+            },
+            expiresAt: expirationTime.toISOString(),
+            createdAt: now.toISOString(),
+            version: "1.0",
+        };
+        await this.sessionStorage.save(address, persistedData);
+        // Set current session
+        this._session = clientSession;
+        this._tinyCloudSession = tinyCloudSession;
+        this._address = address;
+        this._chainId = chainId;
+        // Verify SDK-node protocol compatibility
+        await checkNodeVersion(this.tinycloudHosts[0], protocolVersion());
+        // Call extension hooks
+        for (const ext of this.extensions) {
+            if (ext.afterSignIn) {
+                await ext.afterSignIn(clientSession);
+            }
+        }
+        // Ensure space exists (creates if needed when autoCreateSpace is true)
+        await this.ensureSpaceExists();
+        return clientSession;
+    }
+    /**
+     * Sign out and clear the current session.
+     */
+    async signOut() {
+        if (this._address) {
+            await this.clearPersistedSession(this._address);
+        }
+        this._session = undefined;
+    }
+    /**
+     * Get the current wallet/signer address.
+     */
+    address() {
+        return this._address;
+    }
+    /**
+     * Get the current chain ID.
+     */
+    chainId() {
+        return this._chainId;
+    }
+    /**
+     * Sign a message with the connected signer.
+     */
+    async signMessage(message) {
+        if (!this._address) {
+            this._address = await this.signer.getAddress();
+        }
+        if (!this._chainId) {
+            this._chainId = await this.signer.getChainId();
+        }
+        return this.requestSignature({
+            address: this._address,
+            chainId: this._chainId,
+            message,
+            type: "message",
+        });
+    }
+    /**
+     * Prepare a session for external signing.
+     *
+     * Use this method when you need to sign the SIWE message externally (e.g., via
+     * a hardware wallet, multi-sig, or external service). After obtaining the signature,
+     * call `signInWithPreparedSession()` to complete the sign-in.
+     *
+     * @example
+     * ```typescript
+     * const { prepared, keyId, jwk } = await auth.prepareSessionForSigning();
+     * const signature = await externalSigner.signMessage(prepared.siwe);
+     * const session = await auth.signInWithPreparedSession(prepared, signature, keyId, jwk);
+     * ```
+     */
+    async prepareSessionForSigning() {
+        const address = ensureEip55(await this.signer.getAddress());
+        const chainId = await this.signer.getChainId();
+        // Create a session key
+        const keyId = `session-${Date.now()}`;
+        this.sessionManager.renameSessionKeyId("default", keyId);
+        // Get JWK for session key
+        const jwkString = this.sessionManager.jwk(keyId);
+        if (!jwkString) {
+            throw new Error("Failed to create session key");
+        }
+        const jwk = JSON.parse(jwkString);
+        // Create space ID
+        const spaceId = makeSpaceId(address, chainId, this.spacePrefix);
+        const now = new Date();
+        const expirationTime = new Date(now.getTime() + this.sessionExpirationMs);
+        // Prepare session - this creates the SIWE message with ReCap capabilities
+        const prepared = prepareSession({
+            abilities: this.defaultActions,
+            address,
+            chainId,
+            domain: this.domain,
+            issuedAt: now.toISOString(),
+            expirationTime: expirationTime.toISOString(),
+            spaceId,
+            jwk,
+        });
+        return {
+            prepared,
+            keyId,
+            jwk,
+            address,
+            chainId,
+        };
+    }
+    /**
+     * Complete sign-in with a prepared session and signature.
+     *
+     * Use this method after obtaining a signature for the SIWE message from
+     * `prepareSessionForSigning()`. The signature MUST be over `prepared.siwe`.
+     *
+     * @param prepared - The prepared session from `prepareSessionForSigning()`
+     * @param signature - The signature over `prepared.siwe`
+     * @param keyId - The session key ID from `prepareSessionForSigning()`
+     * @param jwk - The JWK from `prepareSessionForSigning()`
+     */
+    async signInWithPreparedSession(prepared, signature, keyId, jwk) {
+        // Complete session setup with the prepared session + signature
+        const session = completeSessionSetup({
+            ...prepared,
+            signature,
+        });
+        // Parse address and chainId from the prepared session
+        // The SIWE message contains this info, but we need to extract it
+        // For now, we'll get it from the signer since it should match
+        const address = ensureEip55(await this.signer.getAddress());
+        const chainId = await this.signer.getChainId();
+        // Create client session (web-core compatible)
+        const clientSession = {
+            address,
+            walletAddress: address,
+            chainId,
+            sessionKey: keyId,
+            siwe: prepared.siwe,
+            signature,
+        };
+        // Create TinyCloud session with full delegation data
+        // Use sessionManager.getDID(keyId) for properly formatted DID URL
+        const tinyCloudSession = {
+            address,
+            chainId,
+            sessionKey: keyId,
+            spaceId: prepared.spaceId,
+            delegationCid: session.delegationCid,
+            delegationHeader: session.delegationHeader,
+            verificationMethod: this.sessionManager.getDID(keyId),
+            jwk,
+            siwe: prepared.siwe,
+            signature,
+        };
+        // Extract expiration from SIWE message (parse the string)
+        const expirationMatch = prepared.siwe.match(/Expiration Time: (.+)/);
+        const issuedAtMatch = prepared.siwe.match(/Issued At: (.+)/);
+        const expiresAt = expirationMatch?.[1] ??
+            new Date(Date.now() + this.sessionExpirationMs).toISOString();
+        const createdAt = issuedAtMatch?.[1] ?? new Date().toISOString();
+        // Persist session with TinyCloud-specific data
+        const persistedData = {
+            address,
+            chainId,
+            sessionKey: JSON.stringify(jwk),
+            siwe: prepared.siwe,
+            signature,
+            tinycloudSession: {
+                delegationHeader: session.delegationHeader,
+                delegationCid: session.delegationCid,
+                spaceId: prepared.spaceId,
+                verificationMethod: this.sessionManager.getDID(keyId),
+            },
+            expiresAt,
+            createdAt,
+            version: "1.0",
+        };
+        await this.sessionStorage.save(address, persistedData);
+        // Set current session
+        this._session = clientSession;
+        this._tinyCloudSession = tinyCloudSession;
+        this._address = address;
+        this._chainId = chainId;
+        // Verify SDK-node protocol compatibility
+        await checkNodeVersion(this.tinycloudHosts[0], protocolVersion());
+        // Call extension hooks
+        for (const ext of this.extensions) {
+            if (ext.afterSignIn) {
+                await ext.afterSignIn(clientSession);
+            }
+        }
+        // Ensure space exists (creates if needed when autoCreateSpace is true)
+        await this.ensureSpaceExists();
+        return clientSession;
+    }
+    /**
+     * Clear persisted session data.
+     */
+    async clearPersistedSession(address) {
+        const targetAddress = address ?? this._address;
+        if (targetAddress) {
+            await this.sessionStorage.clear(targetAddress);
+        }
+    }
+    /**
+     * Check if a session is persisted for an address.
+     */
+    isSessionPersisted(address) {
+        return this.sessionStorage.exists(address);
+    }
+    /**
+     * Request a signature based on the configured strategy.
+     */
+    async requestSignature(request) {
+        switch (this.signStrategy.type) {
+            case "auto-sign":
+                return this.signer.signMessage(request.message);
+            case "auto-reject":
+                throw new Error("Sign request rejected by auto-reject strategy");
+            case "callback": {
+                const response = await this.signStrategy.handler(request);
+                if (!response.approved) {
+                    throw new Error(response.reason ?? "Sign request rejected by callback");
+                }
+                // If callback provides signature, use it; otherwise sign with signer
+                return (response.signature ?? (await this.signer.signMessage(request.message)));
+            }
+            case "event-emitter": {
+                return this.requestSignatureViaEmitter(request, this.signStrategy.emitter, this.signStrategy.timeout ?? 60000);
+            }
+            default:
+                throw new Error(`Unknown sign strategy: ${this.signStrategy.type}`);
+        }
+    }
+    /**
+     * Request signature via event emitter with timeout.
+     */
+    requestSignatureViaEmitter(request, emitter, timeout) {
+        return new Promise((resolve, reject) => {
+            const timeoutId = setTimeout(() => {
+                reject(new Error("Sign request timed out"));
+            }, timeout);
+            const respond = async (response) => {
+                clearTimeout(timeoutId);
+                if (!response.approved) {
+                    reject(new Error(response.reason ?? "Sign request rejected via emitter"));
+                }
+                else {
+                    // If response provides signature, use it; otherwise sign with signer
+                    const signature = response.signature ??
+                        (await this.signer.signMessage(request.message));
+                    resolve(signature);
+                }
+            };
+            emitter.emit("sign-request", request, respond);
+        });
+    }
+}
+/** Flag to ensure WASM panic hook is only initialized once */
+NodeUserAuthorization.wasmInitialized = false;
+//# sourceMappingURL=NodeUserAuthorization.js.map

package/dist/authorization/NodeUserAuthorization.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"NodeUserAuthorization.js","sourceRoot":"","sources":["../../src/authorization/NodeUserAuthorization.ts"],"names":[],"mappings":"AACA,OAAO,EAQL,WAAW,EACX,oBAAoB,EACpB,uBAAuB,EACvB,gBAAgB,GACjB,MAAM,yBAAyB,CAAC;AACjC,OAAO,EACL,iBAAiB,IAAI,cAAc,EACnC,cAAc,EACd,oBAAoB,EACpB,WAAW,EACX,WAAW,EACX,aAAa,EACb,uBAAuB,EACvB,uBAAuB,EACvB,eAAe,GAChB,MAAM,8BAA8B,CAAC;AACtC,OAAO,EAIL,mBAAmB,GACpB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AA8BvE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,MAAM,OAAO,qBAAqB;IAuBhC,YAAY,MAAmC;QANvC,eAAU,GAAgB,EAAE,CAAC;QAOnC,sEAAsE;QACtE,IAAI,CAAC,qBAAqB,CAAC,eAAe,EAAE,CAAC;YAC3C,aAAa,EAAE,CAAC;YAChB,qBAAqB,CAAC,eAAe,GAAG,IAAI,CAAC;QAC/C,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,IAAI,CAAC,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,mBAAmB,CAAC;QAC/D,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,IAAI,IAAI,oBAAoB,EAAE,CAAC;QAC1E,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,IAAI,CAAC,GAAG,GAAG,MAAM,CAAC,GAAG,IAAI,WAAW,MAAM,CAAC,MAAM,EAAE,CAAC;QACpD,IAAI,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC;QAClC,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,SAAS,CAAC;QACnD,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,IAAI;YAC7C,EAAE,EAAE;gBACF,EAAE,EAAE;oBACF,kBAAkB;oBAClB,kBAAkB;oBAClB,kBAAkB;oBAClB,mBAAmB;oBACnB,uBAAuB;iBACxB;aACF;YACD,YAAY,EAAE;gBACZ,EAAE,EAAE,CAAC,6BAA6B,CAAC;aACpC;SACF,CAAC;QACF,IAAI,CAAC,mBAAmB,GAAG,MAAM,CAAC,mBAAmB,IAAI,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;QACxE,IAAI,CAAC,eAAe,GAAG,MAAM,CAAC,eAAe,IAAI,KAAK,CAAC;QACvD,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,IAAI,CAAC,4BAA4B,CAAC,CAAC;QAE9E,6BAA6B;QAC7B,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,EAAE,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,IAAI,OAAO;QACT,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;;OAGG;IACH,IAAI,gBAAgB;QAClB,OAAO,IAAI,CAAC,iBAAiB,CAAC;IAChC,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,SAAoB;QACzB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAClC,CAAC;IAED;;OAEG;IACH,UAAU;QACR,OAAO,IAAI,CAAC,iBAAiB,EAAE,OAAO,CAAC;IACzC,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,SAAS;QACrB,IAAI,CAAC,IAAI,CAAC,iBAAiB,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YAChE,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,OAAO,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC;QAE/C,oCAAoC;QACpC,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAEhD,6BAA6B;QAC7B,MAAM,IAAI,GAAG,uBAAuB,CAAC;YACnC,OAAO,EAAE,IAAI,CAAC,QAAQ;YACtB,OAAO,EAAE,IAAI,CAAC,QAAQ;YACtB,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YAClC,OAAO;YACP,MAAM;SACP,CAAC,CAAC;QAEH,mBAAmB;QACnB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;QAE/C,2CAA2C;QAC3C,MAAM,OAAO,GAAG,uBAAuB,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC;QAC7D,MAAM,MAAM,GAAG,MAAM,oBAAoB,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAEzD,OAAO,MAAM,CAAC,OAAO,CAAC;IACxB,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,iBAAiB;QACrB,IAAI,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;QAC9D,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;QAEpC,4DAA4D;QAC5D,MAAM,MAAM,GAAG,MAAM,uBAAuB,CAC1C,IAAI,EACJ,IAAI,CAAC,iBAAiB,CAAC,gBAAgB,CACxC,CAAC;QAEF,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACnB,wCAAwC;YACxC,OAAO;QACT,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC1B,sBAAsB;YACtB,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,CAAC;gBAC1B,wDAAwD;gBACxD,wDAAwD;gBACxD,OAAO;YACT,CAAC;YAED,mBAAmB;YACnB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;YACvC,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,KAAK,CACb,2BAA2B,IAAI,CAAC,iBAAiB,CAAC,OAAO,EAAE,CAC5D,CAAC;YACJ,CAAC;YAED,mDAAmD;YACnD,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC;YAEzD,wCAAwC;YACxC,MAAM,WAAW,GAAG,MAAM,uBAAuB,CAC/C,IAAI,EACJ,IAAI,CAAC,iBAAiB,CAAC,gBAAgB,CACxC,CAAC;YAEF,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;gBACzB,MAAM,IAAI,KAAK,CACb,oDAAoD,WAAW,CAAC,KAAK,EAAE,CACxE,CAAC;YACJ,CAAC;YAED,OAAO;QACT,CAAC;QAED,cAAc;QACd,MAAM,IAAI,KAAK,CAAC,+BAA+B,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;IACjE,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,MAAM;QACV,kCAAkC;QAClC,IAAI,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QAC/C,IAAI,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QAE/C,MAAM,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC;QAE9B,uBAAuB;QACvB,MAAM,KAAK,GAAG,WAAW,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QACtC,IAAI,CAAC,cAAc,CAAC,kBAAkB,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAEzD,0BAA0B;QAC1B,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACjD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QACD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAElC,kBAAkB;QAClB,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;QAEhE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,cAAc,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,mBAAmB,CAAC,CAAC;QAE1E,0EAA0E;QAC1E,MAAM,QAAQ,GAAG,cAAc,CAAC;YAC9B,SAAS,EAAE,IAAI,CAAC,cAAc;YAC9B,OAAO;YACP,OAAO;YACP,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,QAAQ,EAAE,GAAG,CAAC,WAAW,EAAE;YAC3B,cAAc,EAAE,cAAc,CAAC,WAAW,EAAE;YAC5C,OAAO;YACP,GAAG;SACJ,CAAC,CAAC;QAEH,8EAA8E;QAC9E,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC;YAC5C,OAAO;YACP,OAAO;YACP,OAAO,EAAE,QAAQ,CAAC,IAAI;YACtB,IAAI,EAAE,MAAM;SACb,CAAC,CAAC;QAEH,+DAA+D;QAC/D,MAAM,OAAO,GAAG,oBAAoB,CAAC;YACnC,GAAG,QAAQ;YACX,SAAS;SACV,CAAC,CAAC;QAEH,8CAA8C;QAC9C,MAAM,aAAa,GAAkB;YACnC,OAAO;YACP,aAAa,EAAE,OAAO;YACtB,OAAO;YACP,UAAU,EAAE,KAAK;YACjB,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,SAAS;SACV,CAAC;QAEF,qDAAqD;QACrD,4FAA4F;QAC5F,yFAAyF;QACzF,MAAM,gBAAgB,GAAqB;YACzC,OAAO;YACP,OAAO;YACP,UAAU,EAAE,KAAK;YACjB,OAAO;YACP,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;YAC1C,kBAAkB,EAAE,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC;YACrD,GAAG;YACH,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,SAAS;SACV,CAAC;QAEF,+CAA+C;QAC/C,MAAM,aAAa,GAAyB;YAC1C,OAAO;YACP,OAAO;YACP,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC;YAC/B,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,SAAS;YACT,gBAAgB,EAAE;gBAChB,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;gBAC1C,aAAa,EAAE,OAAO,CAAC,aAAa;gBACpC,OAAO;gBACP,kBAAkB,EAAE,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC;aACtD;YACD,SAAS,EAAE,cAAc,CAAC,WAAW,EAAE;YACvC,SAAS,EAAE,GAAG,CAAC,WAAW,EAAE;YAC5B,OAAO,EAAE,KAAK;SACf,CAAC;QACF,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QAEvD,sBAAsB;QACtB,IAAI,CAAC,QAAQ,GAAG,aAAa,CAAC;QAC9B,IAAI,CAAC,iBAAiB,GAAG,gBAAgB,CAAC;QAC1C,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;QACxB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;QAExB,yCAAyC;QACzC,MAAM,gBAAgB,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,EAAE,eAAe,EAAE,CAAC,CAAC;QAElE,uBAAuB;QACvB,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YAClC,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;gBACpB,MAAM,GAAG,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YACvC,CAAC;QACH,CAAC;QAED,uEAAuE;QACvE,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAE/B,OAAO,aAAa,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO;QACX,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAClD,CAAC;QACD,IAAI,CAAC,QAAQ,GAAG,SAAS,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,OAAO;QACL,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,OAAO;QACL,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,OAAe;QAC/B,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,IAAI,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QACjD,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,IAAI,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QACjD,CAAC;QAED,OAAO,IAAI,CAAC,gBAAgB,CAAC;YAC3B,OAAO,EAAE,IAAI,CAAC,QAAQ;YACtB,OAAO,EAAE,IAAI,CAAC,QAAQ;YACtB,OAAO;YACP,IAAI,EAAE,SAAS;SAChB,CAAC,CAAC;IACL,CAAC;IAGD;;;;;;;;;;;;;OAaG;IACH,KAAK,CAAC,wBAAwB;QAY5B,MAAM,OAAO,GAAG,WAAW,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QAE/C,uBAAuB;QACvB,MAAM,KAAK,GAAG,WAAW,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QACtC,IAAI,CAAC,cAAc,CAAC,kBAAkB,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAEzD,0BAA0B;QAC1B,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACjD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QACD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAElC,kBAAkB;QAClB,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;QAEhE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,cAAc,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,mBAAmB,CAAC,CAAC;QAE1E,0EAA0E;QAC1E,MAAM,QAAQ,GAAG,cAAc,CAAC;YAC9B,SAAS,EAAE,IAAI,CAAC,cAAc;YAC9B,OAAO;YACP,OAAO;YACP,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,QAAQ,EAAE,GAAG,CAAC,WAAW,EAAE;YAC3B,cAAc,EAAE,cAAc,CAAC,WAAW,EAAE;YAC5C,OAAO;YACP,GAAG;SACJ,CAAC,CAAC;QAEH,OAAO;YACL,QAAQ;YACR,KAAK;YACL,GAAG;YACH,OAAO;YACP,OAAO;SACR,CAAC;IACJ,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,yBAAyB,CAC7B,QAKC,EACD,SAAiB,EACjB,KAAa,EACb,GAA4B;QAE5B,+DAA+D;QAC/D,MAAM,OAAO,GAAG,oBAAoB,CAAC;YACnC,GAAG,QAAQ;YACX,SAAS;SACV,CAAC,CAAC;QAEH,sDAAsD;QACtD,iEAAiE;QACjE,8DAA8D;QAC9D,MAAM,OAAO,GAAG,WAAW,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QAE/C,8CAA8C;QAC9C,MAAM,aAAa,GAAkB;YACnC,OAAO;YACP,aAAa,EAAE,OAAO;YACtB,OAAO;YACP,UAAU,EAAE,KAAK;YACjB,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,SAAS;SACV,CAAC;QAEF,qDAAqD;QACrD,kEAAkE;QAClE,MAAM,gBAAgB,GAAqB;YACzC,OAAO;YACP,OAAO;YACP,UAAU,EAAE,KAAK;YACjB,OAAO,EAAE,QAAQ,CAAC,OAAO;YACzB,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;YAC1C,kBAAkB,EAAE,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC;YACrD,GAAG;YACH,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,SAAS;SACV,CAAC;QAEF,0DAA0D;QAC1D,MAAM,eAAe,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QACrE,MAAM,aAAa,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;QAC7D,MAAM,SAAS,GACb,eAAe,EAAE,CAAC,CAAC,CAAC;YACpB,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,mBAAmB,CAAC,CAAC,WAAW,EAAE,CAAC;QAChE,MAAM,SAAS,GAAG,aAAa,EAAE,CAAC,CAAC,CAAC,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAEjE,+CAA+C;QAC/C,MAAM,aAAa,GAAyB;YAC1C,OAAO;YACP,OAAO;YACP,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC;YAC/B,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,SAAS;YACT,gBAAgB,EAAE;gBAChB,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;gBAC1C,aAAa,EAAE,OAAO,CAAC,aAAa;gBACpC,OAAO,EAAE,QAAQ,CAAC,OAAO;gBACzB,kBAAkB,EAAE,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC;aACtD;YACD,SAAS;YACT,SAAS;YACT,OAAO,EAAE,KAAK;SACf,CAAC;QACF,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QAEvD,sBAAsB;QACtB,IAAI,CAAC,QAAQ,GAAG,aAAa,CAAC;QAC9B,IAAI,CAAC,iBAAiB,GAAG,gBAAgB,CAAC;QAC1C,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;QACxB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;QAExB,yCAAyC;QACzC,MAAM,gBAAgB,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,EAAE,eAAe,EAAE,CAAC,CAAC;QAElE,uBAAuB;QACvB,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YAClC,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;gBACpB,MAAM,GAAG,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YACvC,CAAC;QACH,CAAC;QAED,uEAAuE;QACvE,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAE/B,OAAO,aAAa,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,qBAAqB,CAAC,OAAgB;QAC1C,MAAM,aAAa,GAAG,OAAO,IAAI,IAAI,CAAC,QAAQ,CAAC;QAC/C,IAAI,aAAa,EAAE,CAAC;YAClB,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED;;OAEG;IACH,kBAAkB,CAAC,OAAe;QAChC,OAAO,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC7C,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,gBAAgB,CAAC,OAAoB;QACjD,QAAQ,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC;YAC/B,KAAK,WAAW;gBACd,OAAO,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;YAElD,KAAK,aAAa;gBAChB,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;YAEnE,KAAK,UAAU,CAAC,CAAC,CAAC;gBAChB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;gBAC1D,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CACb,QAAQ,CAAC,MAAM,IAAI,mCAAmC,CACvD,CAAC;gBACJ,CAAC;gBACD,qEAAqE;gBACrE,OAAO,CACL,QAAQ,CAAC,SAAS,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CACvE,CAAC;YACJ,CAAC;YAED,KAAK,eAAe,CAAC,CAAC,CAAC;gBACrB,OAAO,IAAI,CAAC,0BAA0B,CACpC,OAAO,EACP,IAAI,CAAC,YAAY,CAAC,OAAO,EACzB,IAAI,CAAC,YAAY,CAAC,OAAO,IAAI,KAAK,CACnC,CAAC;YACJ,CAAC;YAED;gBACE,MAAM,IAAI,KAAK,CAAC,0BAA2B,IAAI,CAAC,YAAoB,CAAC,IAAI,EAAE,CAAC,CAAC;QACjF,CAAC;IACH,CAAC;IAED;;OAEG;IACK,0BAA0B,CAChC,OAAoB,EACpB,OAAqB,EACrB,OAAe;QAEf,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE;gBAChC,MAAM,CAAC,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC,CAAC;YAC9C,CAAC,EAAE,OAAO,CAAC,CAAC;YAEZ,MAAM,OAAO,GAAG,KAAK,EAAE,QAAsB,EAAE,EAAE;gBAC/C,YAAY,CAAC,SAAS,CAAC,CAAC;gBACxB,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;oBACvB,MAAM,CACJ,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,IAAI,mCAAmC,CAAC,CAClE,CAAC;gBACJ,CAAC;qBAAM,CAAC;oBACN,qEAAqE;oBACrE,MAAM,SAAS,GACb,QAAQ,CAAC,SAAS;wBAClB,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;oBACnD,OAAO,CAAC,SAAS,CAAC,CAAC;gBACrB,CAAC;YACH,CAAC,CAAC;YAEF,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;QACjD,CAAC,CAAC,CAAC;IACL,CAAC;;AAxmBD,8DAA8D;AAC/C,qCAAe,GAAG,KAAK,AAAR,CAAS"}

package/dist/authorization/strategies.d.ts

@@ -0,0 +1,57 @@
+/**
+ * Node.js-specific SignStrategy types for TinyCloud authorization.
+ *
+ * This module re-exports common types from sdk-core and provides
+ * Node.js-specific implementations (e.g., NodeEventEmitterStrategy
+ * using Node's EventEmitter instead of browser EventTarget).
+ *
+ * @packageDocumentation
+ */
+import { EventEmitter } from "events";
+export { SignRequest, SignResponse, SignCallback, AutoSignStrategy, AutoRejectStrategy, CallbackStrategy, } from "@tinycloudlabs/sdk-core";
+import type { AutoSignStrategy, AutoRejectStrategy, CallbackStrategy } from "@tinycloudlabs/sdk-core";
+/**
+ * Node.js event emitter strategy: emits sign requests as events.
+ *
+ * Uses Node.js EventEmitter for compatibility with Node.js applications.
+ * For browser environments, use the EventEmitterStrategy from sdk-core
+ * which uses EventTarget.
+ *
+ * Events emitted:
+ * - 'sign-request': When a sign request is received
+ *
+ * Use cases:
+ * - Async approval workflows in Node.js
+ * - External signing services
+ * - Multi-step authorization flows
+ *
+ * @example
+ * ```typescript
+ * const emitter = new EventEmitter();
+ * const strategy: NodeEventEmitterStrategy = { type: 'event-emitter', emitter };
+ *
+ * emitter.on('sign-request', async (req, respond) => {
+ *   const approved = await externalApprovalService.check(req);
+ *   respond({ approved, signature: approved ? await sign(req.message) : undefined });
+ * });
+ * ```
+ */
+export interface NodeEventEmitterStrategy {
+    type: "event-emitter";
+    emitter: EventEmitter;
+    /** Timeout in milliseconds for waiting on event response (default: 60000) */
+    timeout?: number;
+}
+/**
+ * Node.js sign strategy union type.
+ *
+ * Determines how sign requests are handled in NodeUserAuthorization.
+ * Uses Node.js EventEmitter for the event-emitter strategy.
+ */
+export type SignStrategy = AutoSignStrategy | AutoRejectStrategy | CallbackStrategy | NodeEventEmitterStrategy;
+/**
+ * Default sign strategy is auto-sign for convenience.
+ * This is the Node.js-specific version typed with SignStrategy.
+ */
+export declare const defaultSignStrategy: SignStrategy;
+//# sourceMappingURL=strategies.d.ts.map

package/dist/authorization/strategies.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"strategies.d.ts","sourceRoot":"","sources":["../../src/authorization/strategies.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAGtC,OAAO,EACL,WAAW,EACX,YAAY,EACZ,YAAY,EACZ,gBAAgB,EAChB,kBAAkB,EAClB,gBAAgB,GACjB,MAAM,yBAAyB,CAAC;AAGjC,OAAO,KAAK,EAIV,gBAAgB,EAChB,kBAAkB,EAClB,gBAAgB,EACjB,MAAM,yBAAyB,CAAC;AAEjC;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAM,WAAW,wBAAwB;IACvC,IAAI,EAAE,eAAe,CAAC;IACtB,OAAO,EAAE,YAAY,CAAC;IACtB,6EAA6E;IAC7E,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;;;;GAKG;AACH,MAAM,MAAM,YAAY,GACpB,gBAAgB,GAChB,kBAAkB,GAClB,gBAAgB,GAChB,wBAAwB,CAAC;AAE7B;;;GAGG;AACH,eAAO,MAAM,mBAAmB,EAAE,YAAoC,CAAC"}

package/dist/authorization/strategies.js

@@ -0,0 +1,15 @@
+/**
+ * Node.js-specific SignStrategy types for TinyCloud authorization.
+ *
+ * This module re-exports common types from sdk-core and provides
+ * Node.js-specific implementations (e.g., NodeEventEmitterStrategy
+ * using Node's EventEmitter instead of browser EventTarget).
+ *
+ * @packageDocumentation
+ */
+/**
+ * Default sign strategy is auto-sign for convenience.
+ * This is the Node.js-specific version typed with SignStrategy.
+ */
+export const defaultSignStrategy = { type: "auto-sign" };
+//# sourceMappingURL=strategies.js.map

package/dist/authorization/strategies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"strategies.js","sourceRoot":"","sources":["../../src/authorization/strategies.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAqEH;;;GAGG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAiB,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC"}

package/dist/delegation.d.ts

@@ -0,0 +1,35 @@
+import { Delegation } from "@tinycloudlabs/sdk-core";
+/**
+ * A portable delegation that can be transported between users.
+ * Extends the base Delegation type with fields required for transport.
+ *
+ * @remarks
+ * PortableDelegation adds transport fields to Delegation:
+ * - `delegationHeader`: Structured authorization header for API calls
+ * - `ownerAddress`: Space owner's address for session creation
+ * - `chainId`: Chain ID for session creation
+ * - `host`: Optional server URL
+ */
+export interface PortableDelegation extends Omit<Delegation, "isRevoked"> {
+    /** The authorization header for this delegation (structured format) */
+    delegationHeader: {
+        Authorization: string;
+    };
+    /** The address of the space owner */
+    ownerAddress: string;
+    /** The chain ID */
+    chainId: number;
+    /** TinyCloud server URL where this delegation was created */
+    host?: string;
+    /** Whether the recipient is prevented from creating sub-delegations */
+    disableSubDelegation?: boolean;
+}
+/**
+ * Serialize a PortableDelegation for transport (e.g., over network).
+ */
+export declare function serializeDelegation(delegation: PortableDelegation): string;
+/**
+ * Deserialize a PortableDelegation from transport.
+ */
+export declare function deserializeDelegation(data: string): PortableDelegation;
+//# sourceMappingURL=delegation.d.ts.map

package/dist/delegation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"delegation.d.ts","sourceRoot":"","sources":["../src/delegation.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AAErD;;;;;;;;;;GAUG;AACH,MAAM,WAAW,kBAAmB,SAAQ,IAAI,CAAC,UAAU,EAAE,WAAW,CAAC;IACvE,uEAAuE;IACvE,gBAAgB,EAAE;QAAE,aAAa,EAAE,MAAM,CAAA;KAAE,CAAC;IAE5C,qCAAqC;IACrC,YAAY,EAAE,MAAM,CAAC;IAErB,mBAAmB;IACnB,OAAO,EAAE,MAAM,CAAC;IAEhB,6DAA6D;IAC7D,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd,uEAAuE;IACvE,oBAAoB,CAAC,EAAE,OAAO,CAAC;CAChC;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,UAAU,EAAE,kBAAkB,GAAG,MAAM,CAK1E;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG,kBAAkB,CAOtE"}