@tinycloudlabs/node-sdk 1.0.0

package/dist/delegation.js

@@ -0,0 +1,21 @@
+/**
+ * Serialize a PortableDelegation for transport (e.g., over network).
+ */
+export function serializeDelegation(delegation) {
+    return JSON.stringify({
+        ...delegation,
+        expiry: delegation.expiry.toISOString(),
+    });
+}
+/**
+ * Deserialize a PortableDelegation from transport.
+ */
+export function deserializeDelegation(data) {
+    const parsed = JSON.parse(data);
+    return {
+        ...parsed,
+        cid: parsed.cid,
+        expiry: new Date(parsed.expiry),
+    };
+}
+//# sourceMappingURL=delegation.js.map

package/dist/delegation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"delegation.js","sourceRoot":"","sources":["../src/delegation.ts"],"names":[],"mappings":"AA8BA;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,UAA8B;IAChE,OAAO,IAAI,CAAC,SAAS,CAAC;QACpB,GAAG,UAAU;QACb,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,WAAW,EAAE;KACxC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,IAAY;IAChD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAChC,OAAO;QACL,GAAG,MAAM;QACT,GAAG,EAAE,MAAM,CAAC,GAAG;QACf,MAAM,EAAE,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;KAChC,CAAC;AACJ,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,52 @@
+/**
+ * @tinycloudlabs/node-sdk
+ *
+ * TinyCloud SDK for Node.js environments.
+ *
+ * This package provides Node.js-specific implementations of the TinyCloud SDK:
+ * - PrivateKeySigner: Sign messages using a private key
+ * - NodeUserAuthorization: Authorize users with configurable sign strategies
+ * - MemorySessionStorage: Store sessions in memory
+ * - FileSessionStorage: Persist sessions to the file system
+ *
+ * @example
+ * ```typescript
+ * import { TinyCloud } from '@tinycloudlabs/sdk-core';
+ * import {
+ *   NodeUserAuthorization,
+ *   PrivateKeySigner,
+ *   FileSessionStorage,
+ * } from '@tinycloudlabs/node-sdk';
+ *
+ * const signer = new PrivateKeySigner(process.env.PRIVATE_KEY);
+ * const auth = new NodeUserAuthorization({
+ *   signer,
+ *   signStrategy: { type: 'auto-sign' },
+ *   domain: 'api.myapp.com',
+ *   sessionStorage: new FileSessionStorage('/tmp/sessions'),
+ * });
+ *
+ * const tc = new TinyCloud(auth);
+ * await tc.signIn();
+ * ```
+ *
+ * @packageDocumentation
+ */
+export { TinyCloud, TinyCloudConfig, ISigner, ISessionStorage, IUserAuthorization, ClientSession, Extension, PersistedSessionData, TinyCloudSession, } from "@tinycloudlabs/sdk-core";
+export { PrivateKeySigner } from "./signers/PrivateKeySigner";
+export { MemorySessionStorage } from "./storage/MemorySessionStorage";
+export { FileSessionStorage } from "./storage/FileSessionStorage";
+export { NodeUserAuthorization, NodeUserAuthorizationConfig, } from "./authorization/NodeUserAuthorization";
+export { SignRequest, SignResponse, SignCallback, AutoSignStrategy, AutoRejectStrategy, CallbackStrategy, defaultSignStrategy, NodeEventEmitterStrategy, SignStrategy, } from "./authorization/strategies";
+export { TinyCloudNode, TinyCloudNodeConfig } from "./TinyCloudNode";
+export { DelegatedAccess } from "./DelegatedAccess";
+export { PortableDelegation, serializeDelegation, deserializeDelegation, } from "./delegation";
+export { IKVService, KVService, KVServiceConfig, KVResponse, PrefixedKVService, IPrefixedKVService, } from "@tinycloudlabs/sdk-core";
+export { DelegationManager, DelegationManagerConfig, SharingService, ISharingService, SharingServiceConfig, createSharingService, EncodedShareData, ReceiveOptions, ShareAccess, Delegation, CreateDelegationParams, DelegationChain, DelegationChainV2, DelegationDirection, DelegationFilters, DelegationResult, DelegationError, DelegationErrorCodes, DelegationErrorCode, JWK, KeyType, KeyInfo, CapabilityEntry, DelegationRecord, SpaceOwnership, SpaceInfo, ShareSchema, ShareLink, ShareLinkData, IngestOptions, GenerateShareParams, } from "@tinycloudlabs/sdk-core";
+export { CapabilityKeyRegistry, ICapabilityKeyRegistry, createCapabilityKeyRegistry, StoredDelegationChain, CapabilityKeyRegistryErrorCodes, CapabilityKeyRegistryErrorCode, } from "@tinycloudlabs/sdk-core";
+export { SpaceService, ISpaceService, SpaceServiceConfig, SpaceErrorCodes, SpaceErrorCode, createSpaceService, parseSpaceUri, buildSpaceUri, Space, ISpace, SpaceConfig, ISpaceScopedDelegations, ISpaceScopedSharing, } from "@tinycloudlabs/sdk-core";
+export { ProtocolMismatchError, VersionCheckError, checkNodeVersion, } from "@tinycloudlabs/sdk-core";
+export { ServiceContext, ServiceContextConfig, ServiceSession, InvokeFunction, FetchFunction, } from "@tinycloudlabs/sdk-core";
+export type { KeyProvider } from "@tinycloudlabs/sdk-core";
+export { WasmKeyProvider, WasmKeyProviderConfig, createWasmKeyProvider, } from "./keys/WasmKeyProvider";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;AAGH,OAAO,EACL,SAAS,EACT,eAAe,EACf,OAAO,EACP,eAAe,EACf,kBAAkB,EAClB,aAAa,EACb,SAAS,EACT,oBAAoB,EACpB,gBAAgB,GACjB,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AAG9D,OAAO,EAAE,oBAAoB,EAAE,MAAM,gCAAgC,CAAC;AACtE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAGlE,OAAO,EACL,qBAAqB,EACrB,2BAA2B,GAC5B,MAAM,uCAAuC,CAAC;AAG/C,OAAO,EAEL,WAAW,EACX,YAAY,EACZ,YAAY,EACZ,gBAAgB,EAChB,kBAAkB,EAClB,gBAAgB,EAChB,mBAAmB,EAEnB,wBAAwB,EACxB,YAAY,GACb,MAAM,4BAA4B,CAAC;AAGpC,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAGrE,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EACL,kBAAkB,EAClB,mBAAmB,EACnB,qBAAqB,GACtB,MAAM,cAAc,CAAC;AAGtB,OAAO,EACL,UAAU,EACV,SAAS,EACT,eAAe,EACf,UAAU,EAEV,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EAEL,iBAAiB,EACjB,uBAAuB,EAEvB,cAAc,EACd,eAAe,EACf,oBAAoB,EACpB,oBAAoB,EACpB,gBAAgB,EAChB,cAAc,EACd,WAAW,EAEX,UAAU,EACV,sBAAsB,EACtB,eAAe,EACf,iBAAiB,EACjB,mBAAmB,EACnB,iBAAiB,EAEjB,gBAAgB,EAChB,eAAe,EACf,oBAAoB,EACpB,mBAAmB,EAEnB,GAAG,EACH,OAAO,EACP,OAAO,EACP,eAAe,EACf,gBAAgB,EAEhB,cAAc,EACd,SAAS,EAET,WAAW,EACX,SAAS,EACT,aAAa,EACb,aAAa,EACb,mBAAmB,GACpB,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EACL,qBAAqB,EACrB,sBAAsB,EACtB,2BAA2B,EAC3B,qBAAqB,EACrB,+BAA+B,EAC/B,8BAA8B,GAC/B,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EACL,YAAY,EACZ,aAAa,EACb,kBAAkB,EAClB,eAAe,EACf,cAAc,EACd,kBAAkB,EAClB,aAAa,EACb,aAAa,EAEb,KAAK,EACL,MAAM,EACN,WAAW,EACX,uBAAuB,EACvB,mBAAmB,GACpB,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EACL,qBAAqB,EACrB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,yBAAyB,CAAC;AAGjC,OAAO,EACL,cAAc,EACd,oBAAoB,EACpB,cAAc,EACd,cAAc,EACd,aAAa,GACd,MAAM,yBAAyB,CAAC;AAGjC,YAAY,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAG3D,OAAO,EACL,eAAe,EACf,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,wBAAwB,CAAC"}

package/dist/index.js

@@ -0,0 +1,73 @@
+/**
+ * @tinycloudlabs/node-sdk
+ *
+ * TinyCloud SDK for Node.js environments.
+ *
+ * This package provides Node.js-specific implementations of the TinyCloud SDK:
+ * - PrivateKeySigner: Sign messages using a private key
+ * - NodeUserAuthorization: Authorize users with configurable sign strategies
+ * - MemorySessionStorage: Store sessions in memory
+ * - FileSessionStorage: Persist sessions to the file system
+ *
+ * @example
+ * ```typescript
+ * import { TinyCloud } from '@tinycloudlabs/sdk-core';
+ * import {
+ *   NodeUserAuthorization,
+ *   PrivateKeySigner,
+ *   FileSessionStorage,
+ * } from '@tinycloudlabs/node-sdk';
+ *
+ * const signer = new PrivateKeySigner(process.env.PRIVATE_KEY);
+ * const auth = new NodeUserAuthorization({
+ *   signer,
+ *   signStrategy: { type: 'auto-sign' },
+ *   domain: 'api.myapp.com',
+ *   sessionStorage: new FileSessionStorage('/tmp/sessions'),
+ * });
+ *
+ * const tc = new TinyCloud(auth);
+ * await tc.signIn();
+ * ```
+ *
+ * @packageDocumentation
+ */
+// Re-export core types for convenience
+export { TinyCloud, } from "@tinycloudlabs/sdk-core";
+// Signers
+export { PrivateKeySigner } from "./signers/PrivateKeySigner";
+// Storage implementations
+export { MemorySessionStorage } from "./storage/MemorySessionStorage";
+export { FileSessionStorage } from "./storage/FileSessionStorage";
+// Authorization
+export { NodeUserAuthorization, } from "./authorization/NodeUserAuthorization";
+// Sign strategies (re-exported from sdk-core + Node.js-specific types)
+export { defaultSignStrategy, } from "./authorization/strategies";
+// High-level API
+export { TinyCloudNode } from "./TinyCloudNode";
+// Delegation
+export { DelegatedAccess } from "./DelegatedAccess";
+export { serializeDelegation, deserializeDelegation, } from "./delegation";
+// Re-export KV service for direct usage
+export { KVService, 
+// Prefixed KV
+PrefixedKVService, } from "@tinycloudlabs/sdk-core";
+// Re-export v2 Delegation services and types
+export { 
+// DelegationManager (v2 DelegationService)
+DelegationManager, 
+// SharingService (v2)
+SharingService, createSharingService, DelegationErrorCodes, } from "@tinycloudlabs/sdk-core";
+// Re-export CapabilityKeyRegistry (v2)
+export { CapabilityKeyRegistry, createCapabilityKeyRegistry, CapabilityKeyRegistryErrorCodes, } from "@tinycloudlabs/sdk-core";
+// Re-export SpaceService (v2)
+export { SpaceService, SpaceErrorCodes, createSpaceService, parseSpaceUri, buildSpaceUri, 
+// Space object
+Space, } from "@tinycloudlabs/sdk-core";
+// Protocol version checking
+export { ProtocolMismatchError, VersionCheckError, checkNodeVersion, } from "@tinycloudlabs/sdk-core";
+// Re-export ServiceContext and related types for advanced usage
+export { ServiceContext, } from "@tinycloudlabs/sdk-core";
+// Key management for node-sdk
+export { WasmKeyProvider, createWasmKeyProvider, } from "./keys/WasmKeyProvider";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;AAEH,uCAAuC;AACvC,OAAO,EACL,SAAS,GASV,MAAM,yBAAyB,CAAC;AAEjC,UAAU;AACV,OAAO,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AAE9D,0BAA0B;AAC1B,OAAO,EAAE,oBAAoB,EAAE,MAAM,gCAAgC,CAAC;AACtE,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAElE,gBAAgB;AAChB,OAAO,EACL,qBAAqB,GAEtB,MAAM,uCAAuC,CAAC;AAE/C,uEAAuE;AACvE,OAAO,EAQL,mBAAmB,GAIpB,MAAM,4BAA4B,CAAC;AAEpC,iBAAiB;AACjB,OAAO,EAAE,aAAa,EAAuB,MAAM,iBAAiB,CAAC;AAErE,aAAa;AACb,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAEL,mBAAmB,EACnB,qBAAqB,GACtB,MAAM,cAAc,CAAC;AAEtB,wCAAwC;AACxC,OAAO,EAEL,SAAS;AAGT,cAAc;AACd,iBAAiB,GAElB,MAAM,yBAAyB,CAAC;AAEjC,6CAA6C;AAC7C,OAAO;AACL,2CAA2C;AAC3C,iBAAiB;AAEjB,sBAAsB;AACtB,cAAc,EAGd,oBAAoB,EAcpB,oBAAoB,GAiBrB,MAAM,yBAAyB,CAAC;AAEjC,uCAAuC;AACvC,OAAO,EACL,qBAAqB,EAErB,2BAA2B,EAE3B,+BAA+B,GAEhC,MAAM,yBAAyB,CAAC;AAEjC,8BAA8B;AAC9B,OAAO,EACL,YAAY,EAGZ,eAAe,EAEf,kBAAkB,EAClB,aAAa,EACb,aAAa;AACb,eAAe;AACf,KAAK,GAKN,MAAM,yBAAyB,CAAC;AAEjC,4BAA4B;AAC5B,OAAO,EACL,qBAAqB,EACrB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,yBAAyB,CAAC;AAEjC,gEAAgE;AAChE,OAAO,EACL,cAAc,GAKf,MAAM,yBAAyB,CAAC;AAKjC,8BAA8B;AAC9B,OAAO,EACL,eAAe,EAEf,qBAAqB,GACtB,MAAM,wBAAwB,CAAC"}

package/dist/keys/WasmKeyProvider.d.ts

@@ -0,0 +1,101 @@
+/**
+ * WasmKeyProvider - KeyProvider implementation using WASM session manager.
+ *
+ * This provider wraps the SessionManager from node-sdk-wasm to provide
+ * cryptographic key operations required by the SharingService.
+ *
+ * @packageDocumentation
+ */
+import type { KeyProvider, JWK } from "@tinycloudlabs/sdk-core";
+import type { TCWSessionManager as SessionManager } from "@tinycloudlabs/node-sdk-wasm";
+/**
+ * Configuration for WasmKeyProvider.
+ */
+export interface WasmKeyProviderConfig {
+    /**
+     * The WASM session manager instance.
+     * Must be created before constructing the KeyProvider.
+     */
+    sessionManager: SessionManager;
+}
+/**
+ * KeyProvider implementation that wraps the WASM session manager.
+ *
+ * This allows the SharingService to create new session keys for sharing links
+ * using the same cryptographic operations as the main session management.
+ *
+ * @example
+ * ```typescript
+ * import { SessionManager } from "@tinycloudlabs/node-sdk-wasm";
+ * import { WasmKeyProvider } from "@tinycloudlabs/node-sdk";
+ *
+ * const sessionManager = new SessionManager();
+ * const keyProvider = new WasmKeyProvider({ sessionManager });
+ *
+ * // Create a session key for a sharing link
+ * const keyId = await keyProvider.createSessionKey("share:abc123");
+ * const jwk = keyProvider.getJWK(keyId);
+ * const did = await keyProvider.getDID(keyId);
+ * ```
+ */
+export declare class WasmKeyProvider implements KeyProvider {
+    private sessionManager;
+    /**
+     * Create a new WasmKeyProvider.
+     *
+     * @param config - Configuration with the WASM session manager
+     */
+    constructor(config: WasmKeyProviderConfig);
+    /**
+     * Generate a new session key with the given name.
+     *
+     * This creates a new Ed25519 key pair in the WASM session manager.
+     * The key can then be used for signing delegations in sharing links.
+     *
+     * @param name - A unique name/ID for the key (e.g., "share:timestamp:random")
+     * @returns The key ID (same as the name provided)
+     */
+    createSessionKey(name: string): Promise<string>;
+    /**
+     * Get the JWK (JSON Web Key) for a key.
+     *
+     * Returns the full JWK including the private key (d parameter),
+     * which is required for signing and for embedding in sharing links.
+     *
+     * @param keyId - The key ID to retrieve
+     * @returns The JWK object with public and private key components
+     * @throws Error if the key is not found
+     */
+    getJWK(keyId: string): JWK;
+    /**
+     * Get the DID (Decentralized Identifier) for a key.
+     *
+     * Returns the did:key format DID derived from the key's public key.
+     * This DID can be used as the delegatee in delegations.
+     *
+     * @param keyId - The key ID to retrieve
+     * @returns The DID in did:key format (e.g., "did:key:z6Mk...")
+     */
+    getDID(keyId: string): Promise<string>;
+    /**
+     * List all session keys currently held by the provider.
+     *
+     * @returns Array of key IDs
+     */
+    listKeys(): string[];
+    /**
+     * Check if a key exists in the provider.
+     *
+     * @param keyId - The key ID to check
+     * @returns True if the key exists
+     */
+    hasKey(keyId: string): boolean;
+}
+/**
+ * Create a new WasmKeyProvider instance.
+ *
+ * @param sessionManager - The WASM session manager
+ * @returns A new WasmKeyProvider instance
+ */
+export declare function createWasmKeyProvider(sessionManager: SessionManager): WasmKeyProvider;
+//# sourceMappingURL=WasmKeyProvider.d.ts.map

package/dist/keys/WasmKeyProvider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"WasmKeyProvider.d.ts","sourceRoot":"","sources":["../../src/keys/WasmKeyProvider.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,GAAG,EAAE,MAAM,yBAAyB,CAAC;AAChE,OAAO,KAAK,EAAE,iBAAiB,IAAI,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAExF;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC;;;OAGG;IACH,cAAc,EAAE,cAAc,CAAC;CAChC;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,qBAAa,eAAgB,YAAW,WAAW;IACjD,OAAO,CAAC,cAAc,CAAiB;IAEvC;;;;OAIG;gBACS,MAAM,EAAE,qBAAqB;IAIzC;;;;;;;;OAQG;IACG,gBAAgB,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMrD;;;;;;;;;OASG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,GAAG;IAU1B;;;;;;;;OAQG;IACG,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAK5C;;;;OAIG;IACH,QAAQ,IAAI,MAAM,EAAE;IAKpB;;;;;OAKG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO;CAI/B;AAED;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,cAAc,EAAE,cAAc,GAAG,eAAe,CAErF"}

package/dist/keys/WasmKeyProvider.js

@@ -0,0 +1,113 @@
+/**
+ * WasmKeyProvider - KeyProvider implementation using WASM session manager.
+ *
+ * This provider wraps the SessionManager from node-sdk-wasm to provide
+ * cryptographic key operations required by the SharingService.
+ *
+ * @packageDocumentation
+ */
+/**
+ * KeyProvider implementation that wraps the WASM session manager.
+ *
+ * This allows the SharingService to create new session keys for sharing links
+ * using the same cryptographic operations as the main session management.
+ *
+ * @example
+ * ```typescript
+ * import { SessionManager } from "@tinycloudlabs/node-sdk-wasm";
+ * import { WasmKeyProvider } from "@tinycloudlabs/node-sdk";
+ *
+ * const sessionManager = new SessionManager();
+ * const keyProvider = new WasmKeyProvider({ sessionManager });
+ *
+ * // Create a session key for a sharing link
+ * const keyId = await keyProvider.createSessionKey("share:abc123");
+ * const jwk = keyProvider.getJWK(keyId);
+ * const did = await keyProvider.getDID(keyId);
+ * ```
+ */
+export class WasmKeyProvider {
+    /**
+     * Create a new WasmKeyProvider.
+     *
+     * @param config - Configuration with the WASM session manager
+     */
+    constructor(config) {
+        this.sessionManager = config.sessionManager;
+    }
+    /**
+     * Generate a new session key with the given name.
+     *
+     * This creates a new Ed25519 key pair in the WASM session manager.
+     * The key can then be used for signing delegations in sharing links.
+     *
+     * @param name - A unique name/ID for the key (e.g., "share:timestamp:random")
+     * @returns The key ID (same as the name provided)
+     */
+    async createSessionKey(name) {
+        // The WASM session manager's createSessionKey returns the key_id
+        // and stores the key internally
+        return this.sessionManager.createSessionKey(name);
+    }
+    /**
+     * Get the JWK (JSON Web Key) for a key.
+     *
+     * Returns the full JWK including the private key (d parameter),
+     * which is required for signing and for embedding in sharing links.
+     *
+     * @param keyId - The key ID to retrieve
+     * @returns The JWK object with public and private key components
+     * @throws Error if the key is not found
+     */
+    getJWK(keyId) {
+        // The WASM session manager returns the JWK as a JSON string
+        const jwkJson = this.sessionManager.jwk(keyId);
+        if (!jwkJson) {
+            throw new Error(`Key not found: ${keyId}`);
+        }
+        // Parse the JSON string to get the JWK object
+        return JSON.parse(jwkJson);
+    }
+    /**
+     * Get the DID (Decentralized Identifier) for a key.
+     *
+     * Returns the did:key format DID derived from the key's public key.
+     * This DID can be used as the delegatee in delegations.
+     *
+     * @param keyId - The key ID to retrieve
+     * @returns The DID in did:key format (e.g., "did:key:z6Mk...")
+     */
+    async getDID(keyId) {
+        // The WASM session manager has a synchronous getDID method
+        return this.sessionManager.getDID(keyId);
+    }
+    /**
+     * List all session keys currently held by the provider.
+     *
+     * @returns Array of key IDs
+     */
+    listKeys() {
+        const keys = this.sessionManager.listSessionKeys();
+        return Array.isArray(keys) ? keys : [];
+    }
+    /**
+     * Check if a key exists in the provider.
+     *
+     * @param keyId - The key ID to check
+     * @returns True if the key exists
+     */
+    hasKey(keyId) {
+        const jwk = this.sessionManager.jwk(keyId);
+        return jwk !== undefined;
+    }
+}
+/**
+ * Create a new WasmKeyProvider instance.
+ *
+ * @param sessionManager - The WASM session manager
+ * @returns A new WasmKeyProvider instance
+ */
+export function createWasmKeyProvider(sessionManager) {
+    return new WasmKeyProvider({ sessionManager });
+}
+//# sourceMappingURL=WasmKeyProvider.js.map

package/dist/keys/WasmKeyProvider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"WasmKeyProvider.js","sourceRoot":"","sources":["../../src/keys/WasmKeyProvider.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAgBH;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,OAAO,eAAe;IAG1B;;;;OAIG;IACH,YAAY,MAA6B;QACvC,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,CAAC;IAC9C,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,gBAAgB,CAAC,IAAY;QACjC,iEAAiE;QACjE,gCAAgC;QAChC,OAAO,IAAI,CAAC,cAAc,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC;IACpD,CAAC;IAED;;;;;;;;;OASG;IACH,MAAM,CAAC,KAAa;QAClB,4DAA4D;QAC5D,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAC/C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,kBAAkB,KAAK,EAAE,CAAC,CAAC;QAC7C,CAAC;QACD,8CAA8C;QAC9C,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAQ,CAAC;IACpC,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,MAAM,CAAC,KAAa;QACxB,2DAA2D;QAC3D,OAAO,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC3C,CAAC;IAED;;;;OAIG;IACH,QAAQ;QACN,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,CAAC,eAAe,EAAE,CAAC;QACnD,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IACzC,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,KAAa;QAClB,MAAM,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAC3C,OAAO,GAAG,KAAK,SAAS,CAAC;IAC3B,CAAC;CACF;AAED;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,cAA8B;IAClE,OAAO,IAAI,eAAe,CAAC,EAAE,cAAc,EAAE,CAAC,CAAC;AACjD,CAAC"}

package/dist/keys/index.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Key management module for node-sdk.
+ *
+ * @packageDocumentation
+ */
+export { WasmKeyProvider, WasmKeyProviderConfig, createWasmKeyProvider } from "./WasmKeyProvider";
+//# sourceMappingURL=index.d.ts.map

package/dist/keys/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/keys/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,eAAe,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/keys/index.js

@@ -0,0 +1,7 @@
+/**
+ * Key management module for node-sdk.
+ *
+ * @packageDocumentation
+ */
+export { WasmKeyProvider, createWasmKeyProvider } from "./WasmKeyProvider";
+//# sourceMappingURL=index.js.map

package/dist/keys/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/keys/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,eAAe,EAAyB,qBAAqB,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/signers/PrivateKeySigner.d.ts

@@ -0,0 +1,47 @@
+import { ISigner, Bytes } from "@tinycloudlabs/sdk-core";
+/**
+ * Private key signer for Node.js environments.
+ *
+ * Uses the node-sdk-wasm package for Ethereum signing operations.
+ * The private key should be a hex string (with or without 0x prefix).
+ *
+ * @example
+ * ```typescript
+ * const signer = new PrivateKeySigner(process.env.PRIVATE_KEY);
+ * const address = await signer.getAddress();
+ * const signature = await signer.signMessage("Hello, world!");
+ * ```
+ */
+export declare class PrivateKeySigner implements ISigner {
+    private readonly privateKeyHex;
+    private readonly chainId;
+    private cachedAddress?;
+    /**
+     * Create a new PrivateKeySigner.
+     *
+     * @param privateKey - Hex-encoded private key (with or without 0x prefix)
+     * @param chainId - Chain ID for signing (default: 1 for mainnet)
+     */
+    constructor(privateKey: string, chainId?: number);
+    /**
+     * Get the Ethereum address for this signer.
+     */
+    getAddress(): Promise<string>;
+    /**
+     * Derive Ethereum address from private key.
+     * Uses secp256k1 public key derivation via ethers.js.
+     */
+    private deriveAddress;
+    /**
+     * Get the chain ID for this signer.
+     */
+    getChainId(): Promise<number>;
+    /**
+     * Sign a message.
+     *
+     * @param message - The message to sign (string or bytes)
+     * @returns The signature as a hex string
+     */
+    signMessage(message: Bytes | string): Promise<string>;
+}
+//# sourceMappingURL=PrivateKeySigner.d.ts.map

package/dist/signers/PrivateKeySigner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"PrivateKeySigner.d.ts","sourceRoot":"","sources":["../../src/signers/PrivateKeySigner.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,yBAAyB,CAAC;AAMzD;;;;;;;;;;;;GAYG;AACH,qBAAa,gBAAiB,YAAW,OAAO;IAC9C,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAS;IACvC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,aAAa,CAAC,CAAS;IAE/B;;;;;OAKG;gBACS,UAAU,EAAE,MAAM,EAAE,OAAO,GAAE,MAAU;IAanD;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,MAAM,CAAC;IASnC;;;OAGG;IACH,OAAO,CAAC,aAAa;IAoBrB;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,MAAM,CAAC;IAInC;;;;;OAKG;IACG,WAAW,CAAC,OAAO,EAAE,KAAK,GAAG,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CAa5D"}

package/dist/signers/PrivateKeySigner.js

@@ -0,0 +1,89 @@
+import { signEthereumMessage, ensureEip55, } from "@tinycloudlabs/node-sdk-wasm";
+/**
+ * Private key signer for Node.js environments.
+ *
+ * Uses the node-sdk-wasm package for Ethereum signing operations.
+ * The private key should be a hex string (with or without 0x prefix).
+ *
+ * @example
+ * ```typescript
+ * const signer = new PrivateKeySigner(process.env.PRIVATE_KEY);
+ * const address = await signer.getAddress();
+ * const signature = await signer.signMessage("Hello, world!");
+ * ```
+ */
+export class PrivateKeySigner {
+    /**
+     * Create a new PrivateKeySigner.
+     *
+     * @param privateKey - Hex-encoded private key (with or without 0x prefix)
+     * @param chainId - Chain ID for signing (default: 1 for mainnet)
+     */
+    constructor(privateKey, chainId = 1) {
+        // Normalize private key format (remove 0x prefix)
+        this.privateKeyHex = privateKey.startsWith("0x")
+            ? privateKey.slice(2)
+            : privateKey;
+        this.chainId = chainId;
+        // Validate private key length
+        if (this.privateKeyHex.length !== 64) {
+            throw new Error("Invalid private key: must be 32 bytes (64 hex chars)");
+        }
+    }
+    /**
+     * Get the Ethereum address for this signer.
+     */
+    async getAddress() {
+        if (this.cachedAddress) {
+            return this.cachedAddress;
+        }
+        this.cachedAddress = this.deriveAddress();
+        return this.cachedAddress;
+    }
+    /**
+     * Derive Ethereum address from private key.
+     * Uses secp256k1 public key derivation via ethers.js.
+     */
+    deriveAddress() {
+        try {
+            // Derive public key from private key using secp256k1
+            const { keccak256 } = require("ethers/lib/utils");
+            const { SigningKey } = require("ethers/lib/utils");
+            const signingKey = new SigningKey("0x" + this.privateKeyHex);
+            const publicKey = signingKey.publicKey;
+            // Remove '0x04' prefix (uncompressed point indicator)
+            const pubKeyWithoutPrefix = publicKey.slice(4);
+            const hash = keccak256("0x" + pubKeyWithoutPrefix);
+            // Take last 20 bytes
+            const address = "0x" + hash.slice(-40);
+            return ensureEip55(address);
+        }
+        catch {
+            // Fallback: use dummy address for testing
+            return "0x" + this.privateKeyHex.slice(0, 40);
+        }
+    }
+    /**
+     * Get the chain ID for this signer.
+     */
+    async getChainId() {
+        return this.chainId;
+    }
+    /**
+     * Sign a message.
+     *
+     * @param message - The message to sign (string or bytes)
+     * @returns The signature as a hex string
+     */
+    async signMessage(message) {
+        const messageStr = typeof message === "string"
+            ? message
+            : Buffer.from(message).toString("utf-8");
+        // Use WASM to sign with Ethereum personal_sign format
+        // WASM now accepts hex-encoded private key directly
+        const signature = signEthereumMessage(messageStr, this.privateKeyHex);
+        // Ensure signature has 0x prefix
+        return signature.startsWith("0x") ? signature : "0x" + signature;
+    }
+}
+//# sourceMappingURL=PrivateKeySigner.js.map

package/dist/signers/PrivateKeySigner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"PrivateKeySigner.js","sourceRoot":"","sources":["../../src/signers/PrivateKeySigner.ts"],"names":[],"mappings":"AACA,OAAO,EACL,mBAAmB,EACnB,WAAW,GACZ,MAAM,8BAA8B,CAAC;AAEtC;;;;;;;;;;;;GAYG;AACH,MAAM,OAAO,gBAAgB;IAK3B;;;;;OAKG;IACH,YAAY,UAAkB,EAAE,UAAkB,CAAC;QACjD,kDAAkD;QAClD,IAAI,CAAC,aAAa,GAAG,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC;YAC9C,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;YACrB,CAAC,CAAC,UAAU,CAAC;QACf,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QAEvB,8BAA8B;QAC9B,IAAI,IAAI,CAAC,aAAa,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;QAC1E,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACvB,OAAO,IAAI,CAAC,aAAa,CAAC;QAC5B,CAAC;QAED,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QAC1C,OAAO,IAAI,CAAC,aAAa,CAAC;IAC5B,CAAC;IAED;;;OAGG;IACK,aAAa;QACnB,IAAI,CAAC;YACH,qDAAqD;YACrD,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,kBAAkB,CAAC,CAAC;YAClD,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC,kBAAkB,CAAC,CAAC;YAEnD,MAAM,UAAU,GAAG,IAAI,UAAU,CAAC,IAAI,GAAG,IAAI,CAAC,aAAa,CAAC,CAAC;YAC7D,MAAM,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC;YACvC,sDAAsD;YACtD,MAAM,mBAAmB,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC/C,MAAM,IAAI,GAAG,SAAS,CAAC,IAAI,GAAG,mBAAmB,CAAC,CAAC;YACnD,qBAAqB;YACrB,MAAM,OAAO,GAAG,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;YACvC,OAAO,WAAW,CAAC,OAAO,CAAC,CAAC;QAC9B,CAAC;QAAC,MAAM,CAAC;YACP,0CAA0C;YAC1C,OAAO,IAAI,GAAG,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,WAAW,CAAC,OAAuB;QACvC,MAAM,UAAU,GACd,OAAO,OAAO,KAAK,QAAQ;YACzB,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,OAA4B,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QAElE,sDAAsD;QACtD,oDAAoD;QACpD,MAAM,SAAS,GAAG,mBAAmB,CAAC,UAAU,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC;QAEtE,iCAAiC;QACjC,OAAO,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,GAAG,SAAS,CAAC;IACnE,CAAC;CACF"}

package/dist/storage/FileSessionStorage.d.ts

@@ -0,0 +1,59 @@
+import { ISessionStorage, PersistedSessionData } from "@tinycloudlabs/sdk-core";
+/**
+ * File-based session storage for Node.js.
+ *
+ * Sessions are persisted to the file system and survive process restarts.
+ * Suitable for:
+ * - CLI applications
+ * - Long-running server processes
+ * - Development environments
+ *
+ * @example
+ * ```typescript
+ * const storage = new FileSessionStorage("/tmp/tinycloud-sessions");
+ * await storage.save("0x123...", sessionData);
+ * // Session persists across process restarts
+ * ```
+ */
+export declare class FileSessionStorage implements ISessionStorage {
+    private readonly baseDir;
+    /**
+     * Create a new FileSessionStorage.
+     *
+     * @param baseDir - Directory to store session files (default: ~/.tinycloud/sessions)
+     */
+    constructor(baseDir?: string);
+    /**
+     * Get the default session storage directory.
+     */
+    private getDefaultDir;
+    /**
+     * Ensure the storage directory exists.
+     */
+    private ensureDirectoryExists;
+    /**
+     * Get the file path for an address.
+     */
+    private getFilePath;
+    /**
+     * Save a session for an address.
+     */
+    save(address: string, session: PersistedSessionData): Promise<void>;
+    /**
+     * Load a session for an address.
+     */
+    load(address: string): Promise<PersistedSessionData | null>;
+    /**
+     * Clear a session for an address.
+     */
+    clear(address: string): Promise<void>;
+    /**
+     * Check if a session exists for an address.
+     */
+    exists(address: string): boolean;
+    /**
+     * Check if file system storage is available.
+     */
+    isAvailable(): boolean;
+}
+//# sourceMappingURL=FileSessionStorage.d.ts.map

package/dist/storage/FileSessionStorage.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"FileSessionStorage.d.ts","sourceRoot":"","sources":["../../src/storage/FileSessionStorage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,oBAAoB,EAAgC,MAAM,yBAAyB,CAAC;AAI9G;;;;;;;;;;;;;;;GAeG;AACH,qBAAa,kBAAmB,YAAW,eAAe;IACxD,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IAEjC;;;;OAIG;gBACS,OAAO,CAAC,EAAE,MAAM;IAK5B;;OAEG;IACH,OAAO,CAAC,aAAa;IAKrB;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAM7B;;OAEG;IACH,OAAO,CAAC,WAAW;IAOnB;;OAEG;IACG,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,IAAI,CAAC;IAMzE;;OAEG;IACG,IAAI,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC;IA0CjE;;OAEG;IACG,KAAK,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAO3C;;OAEG;IACH,MAAM,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO;IAwBhC;;OAEG;IACH,WAAW,IAAI,OAAO;CAQvB"}