npm - @truly-you/trulyyou-web-sdk - Versions diffs - 0.1.22 → 0.1.24 - Mend

@truly-you/trulyyou-web-sdk 0.1.22 → 0.1.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/dist/sdk/TrulyYouSDK.d.ts CHANGED Viewed

@@ -88,4 +88,9 @@ export declare class TrulyYouSDK {
      * @param handoff - If true, probes for handoff keyId (with _handoff suffix)
      */
     probeForKeyId(handoff?: boolean): Promise<string | null>;
+    /**
+     * Clear all keys (both handoff and non-handoff) from localStorage
+     * Clears from both same-origin localStorage and TrulyYou frontend's localStorage via iframe
+     */
+    clearAllKeys(): Promise<void>;
 }

package/dist/types.d.ts CHANGED Viewed

@@ -23,6 +23,9 @@ export interface TrulyYouSDKConfig {
 }
 export interface FetchOptions extends RequestInit {
     headers?: Record<string, string>;
+    onSigningStart?: () => void;
+    onSigningComplete?: () => void;
+    onRequestStart?: () => void;
 }
 export interface SigningResult {
     signature: string;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@truly-you/trulyyou-web-sdk",
-  "version": "0.1.22",
+  "version": "0.1.24",
   "description": "TrulyYou Web SDK for secure authentication and payload signing",
   "type": "module",
   "main": "dist/index.esm.js",

package/src/sdk/TrulyYouSDK.ts CHANGED Viewed

@@ -1888,9 +1888,19 @@ export class TrulyYouSDK {
             throw new Error('Failed to create signature: ' + (errorData.error || 'Creation request failed'))
           }
+          // Call onSigningStart callback if provided
+          if (options.onSigningStart) {
+            options.onSigningStart()
+          }
           // Now sign the payload (pass signatureId for desktop handoff, and keyId if we have it)
           const signingResult = await this.signPayload(apiCallStructure, signatureId, keyId || undefined)
+          // Call onSigningComplete callback if provided
+          if (options.onSigningComplete) {
+            options.onSigningComplete()
+          }
           // Make the actual API call with signature and signatureId in header
           // Use keyId from signingResult (Device B's keyId for handoff, or localStorage keyId for mobile)
           const signingResultKeyId = signingResult.keyId || ''
@@ -1899,10 +1909,18 @@ export class TrulyYouSDK {
           console.log('[SDK]: ✅ Final keyId for auth header:', keyIdForAuth, '(from', signingResultKeyId && signingResultKeyId !== '' ? 'Device B' : 'localStorage fallback', ')')
           const authHeaderValue = btoa(JSON.stringify({ signature: signingResult.signature, keyId: keyIdForAuth, signatureId }))
+          // Call onRequestStart callback if provided
+          if (options.onRequestStart) {
+            options.onRequestStart()
+          }
+          // Extract callback options to avoid passing them to fetch
+          const { onSigningStart, onSigningComplete, onRequestStart, ...fetchOptions } = options
           const response = await fetch(url, {
-            ...options,
+            ...fetchOptions,
             headers: {
-              ...options.headers,
+              ...fetchOptions.headers,
               'x-truly-auth': authHeaderValue
             }
           })
@@ -1969,5 +1987,55 @@ export class TrulyYouSDK {
     console.log(`[SDK-PROBE]: ${handoff ? 'Handoff ' : ''}KeyId not found in same-origin localStorage, probing TrulyYou frontend...`)
     return await this.probeIframeForKey(handoff)
   }
+  /**
+   * Clear all keys (both handoff and non-handoff) from localStorage
+   * Clears from both same-origin localStorage and TrulyYou frontend's localStorage via iframe
+   */
+  async clearAllKeys(): Promise<void> {
+    // Ensure authFlowId is loaded first
+    await this.ensureAuthFlowIdLoaded()
+    if (!this.brandingCache?.authFlowId) {
+      console.warn('[SDK-CLEAR]: authFlowId is required but not available')
+      return
+    }
+    const authFlowId = this.brandingCache.authFlowId
+    // Clear from same-origin localStorage
+    if (typeof window !== 'undefined') {
+      const regularKey = `trulyYouKeyId_${authFlowId}`
+      const handoffKey = `trulyYouKeyId_${authFlowId}_handoff`
+      localStorage.removeItem(regularKey)
+      localStorage.removeItem(handoffKey)
+      console.log('[SDK-CLEAR]: ✅ Cleared keys from same-origin localStorage:', regularKey, handoffKey)
+    }
+    // Also clear from TrulyYou frontend's localStorage via iframe
+    try {
+      const iframe = document.createElement('iframe')
+      iframe.style.cssText = 'position: fixed; top: -9999px; left: -9999px; width: 1px; height: 1px; border: none; opacity: 0; pointer-events: none;'
+      const clearUrl = new URL(`${this.frontendUrl}/clear-keys.html`)
+      clearUrl.searchParams.set('authFlowId', authFlowId)
+      iframe.src = clearUrl.toString()
+      document.body.appendChild(iframe)
+      // Clean up after a delay
+      setTimeout(() => {
+        if (iframe.parentNode) {
+          iframe.parentNode.removeChild(iframe)
+        }
+      }, 2000)
+      console.log('[SDK-CLEAR]: ✅ Cleared keys from TrulyYou frontend localStorage via iframe')
+    } catch (error) {
+      console.warn('[SDK-CLEAR]: Failed to clear keys from TrulyYou frontend localStorage:', error)
+    }
+  }
 }

package/src/types.ts CHANGED Viewed

@@ -24,6 +24,9 @@ export interface TrulyYouSDKConfig {
 export interface FetchOptions extends RequestInit {
   headers?: Record<string, string>
+  onSigningStart?: () => void
+  onSigningComplete?: () => void
+  onRequestStart?: () => void
 }
 export interface SigningResult {