@undefineds.co/linx 0.3.5 → 0.3.8

package/dist/lib/credentials-store.js

@@ -1,16 +1,6 @@
 import { chmodSync, existsSync, mkdirSync, readFileSync, unlinkSync, writeFileSync } from 'node:fs';
-import { homedir } from 'node:os';
-import { join } from 'node:path';
-import { isLinxClientCredentialsSecrets, LINX_CONFIG_FILE_NAME, LINX_HOME_DIRNAME, LINX_SECRETS_FILE_NAME, parseLinxClientConfig, parseLinxClientSecrets, } from '@undefineds.co/models/client';
-function linxDir() {
-    return join(homedir(), LINX_HOME_DIRNAME);
-}
-export function getConfigPath() {
-    return join(linxDir(), LINX_CONFIG_FILE_NAME);
-}
-export function getSecretsPath() {
-    return join(linxDir(), LINX_SECRETS_FILE_NAME);
-}
+import { isLinxClientCredentialsSecrets, parseLinxClientConfig, parseLinxClientSecrets, } from '@undefineds.co/models/client';
+import { getSolidAuthCredentialsPath, getSolidAuthDir } from './solid-auth-store.js';
 function readJson(filePath) {
     try {
         return JSON.parse(readFileSync(filePath, 'utf-8'));
@@ -19,22 +9,38 @@ function readJson(filePath) {
         return null;
     }
 }
-function credentialDirs() {
-    return [linxDir()];
+function parseStoredCredentialsEnvelope(raw) {
+    const config = parseLinxClientConfig(raw);
+    if (!config || typeof raw !== 'object' || raw === null || !('secrets' in raw)) {
+        return null;
+    }
+    const secrets = parseLinxClientSecrets(raw.secrets);
+    if (!secrets) {
+        return null;
+    }
+    return {
+        url: config.url,
+        webId: config.webId,
+        authType: config.authType,
+        sourceDir: getSolidAuthDir(),
+        secrets,
+    };
 }
 export function saveCredentials(creds) {
-    const dir = linxDir();
+    const dir = getSolidAuthDir();
     mkdirSync(dir, { recursive: true });
-    writeFileSync(getConfigPath(), `${JSON.stringify({ url: creds.url, webId: creds.webId, authType: creds.authType }, null, 2)}\n`, 'utf-8');
-    chmodSync(getConfigPath(), 0o644);
-    writeFileSync(getSecretsPath(), `${JSON.stringify(creds.secrets, null, 2)}\n`, 'utf-8');
-    chmodSync(getSecretsPath(), 0o600);
+    writeFileSync(getSolidAuthCredentialsPath(), `${JSON.stringify({
+        url: creds.url,
+        webId: creds.webId,
+        authType: creds.authType,
+        secrets: creds.secrets,
+    }, null, 2)}\n`, 'utf-8');
+    chmodSync(getSolidAuthCredentialsPath(), 0o600);
 }
 export function clearCredentials() {
-    for (const path of [getConfigPath(), getSecretsPath()]) {
-        if (existsSync(path)) {
-            unlinkSync(path);
-        }
+    const path = getSolidAuthCredentialsPath();
+    if (existsSync(path)) {
+        unlinkSync(path);
     }
 }
 export function isClientCredentials(secrets) {
@@ -56,25 +62,10 @@ export function getOidcOAuthSecrets(creds) {
         : null;
 }
 export function loadCredentials() {
-    for (const sourceDir of credentialDirs()) {
-        const configPath = join(sourceDir, LINX_CONFIG_FILE_NAME);
-        const secretsPath = join(sourceDir, LINX_SECRETS_FILE_NAME);
-        if (!existsSync(configPath) || !existsSync(secretsPath)) {
-            continue;
-        }
-        const config = parseLinxClientConfig(readJson(configPath));
-        const secrets = parseLinxClientSecrets(readJson(secretsPath));
-        if (!config || !secrets) {
-            continue;
-        }
-        return {
-            url: config.url,
-            webId: config.webId,
-            authType: config.authType,
-            sourceDir,
-            secrets,
-        };
+    const path = getSolidAuthCredentialsPath();
+    if (!existsSync(path)) {
+        return null;
     }
-    return null;
+    return parseStoredCredentialsEnvelope(readJson(path));
 }
 //# sourceMappingURL=credentials-store.js.map

package/dist/lib/credentials-store.js.map

@@ -1 +1 @@
-{"version":3,"file":"credentials-store.js","sourceRoot":"","sources":["../../src/lib/credentials-store.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAA;AACnG,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAA;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAA;AAChC,OAAO,EACL,8BAA8B,EAC9B,qBAAqB,EACrB,iBAAiB,EACjB,sBAAsB,EACtB,qBAAqB,EACrB,sBAAsB,GAMvB,MAAM,8BAA8B,CAAA;AAarC,SAAS,OAAO;IACd,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,iBAAiB,CAAC,CAAA;AAC3C,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,qBAAqB,CAAC,CAAA;AAC/C,CAAC;AAED,MAAM,UAAU,cAAc;IAC5B,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,sBAAsB,CAAC,CAAA;AAChD,CAAC;AAED,SAAS,QAAQ,CAAI,QAAgB;IACnC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAM,CAAA;IACzD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAA;IACb,CAAC;AACH,CAAC;AAED,SAAS,cAAc;IACrB,OAAO,CAAC,OAAO,EAAE,CAAC,CAAA;AACpB,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,KAAgD;IAC9E,MAAM,GAAG,GAAG,OAAO,EAAE,CAAA;IACrB,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAA;IAEnC,aAAa,CACX,aAAa,EAAE,EACf,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,KAAK,CAAC,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,QAAQ,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAChG,OAAO,CACR,CAAA;IACD,SAAS,CAAC,aAAa,EAAE,EAAE,KAAK,CAAC,CAAA;IAEjC,aAAa,CAAC,cAAc,EAAE,EAAE,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;IACvF,SAAS,CAAC,cAAc,EAAE,EAAE,KAAK,CAAC,CAAA;AACpC,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,KAAK,MAAM,IAAI,IAAI,CAAC,aAAa,EAAE,EAAE,cAAc,EAAE,CAAC,EAAE,CAAC;QACvD,IAAI,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACrB,UAAU,CAAC,IAAI,CAAC,CAAA;QAClB,CAAC;IACH,CAAC;AACH,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,OAAsB;IACxD,OAAO,8BAA8B,CAAC,OAAO,CAAC,CAAA;AAChD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,KAAwB;IAC3D,OAAO,mBAAmB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAA;AAClE,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,OAAiC;IACrE,OAAO,OAAO,CAAC,QAAQ,IAAK,OAA6D,CAAC,SAAS,IAAI,EAAE,CAAA;AAC3G,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,OAAiC;IACtE,OAAO,OAAO,CAAC,YAAY,IAAK,OAA8D,CAAC,UAAU,IAAI,EAAE,CAAA;AACjH,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,KAAwB;IAC1D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAA;IAC7B,OAAO,kBAAkB,IAAI,OAAO,IAAI,iBAAiB,IAAI,OAAO,IAAI,eAAe,IAAI,OAAO;QAChG,CAAC,CAAC,OAAO;QACT,CAAC,CAAC,IAAI,CAAA;AACV,CAAC;AAED,MAAM,UAAU,eAAe;IAC7B,KAAK,MAAM,SAAS,IAAI,cAAc,EAAE,EAAE,CAAC;QACzC,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,EAAE,qBAAqB,CAAC,CAAA;QACzD,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,EAAE,sBAAsB,CAAC,CAAA;QAE3D,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YACxD,SAAQ;QACV,CAAC;QAED,MAAM,MAAM,GAAG,qBAAqB,CAAC,QAAQ,CAAU,UAAU,CAAC,CAAC,CAAA;QACnE,MAAM,OAAO,GAAG,sBAAsB,CAAC,QAAQ,CAAU,WAAW,CAAC,CAAC,CAAA;QAEtE,IAAI,CAAC,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;YACxB,SAAQ;QACV,CAAC;QAED,OAAO;YACL,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,SAAS;YACT,OAAO;SACR,CAAA;IACH,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC"}
+{"version":3,"file":"credentials-store.js","sourceRoot":"","sources":["../../src/lib/credentials-store.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAA;AACnG,OAAO,EACL,8BAA8B,EAC9B,qBAAqB,EACrB,sBAAsB,GAMvB,MAAM,8BAA8B,CAAA;AACrC,OAAO,EAAE,2BAA2B,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AAapF,SAAS,QAAQ,CAAI,QAAgB;IACnC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAM,CAAA;IACzD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAA;IACb,CAAC;AACH,CAAC;AAED,SAAS,8BAA8B,CAAC,GAAY;IAClD,MAAM,MAAM,GAAG,qBAAqB,CAAC,GAAG,CAAC,CAAA;IACzC,IAAI,CAAC,MAAM,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,IAAI,CAAC,CAAC,SAAS,IAAI,GAAG,CAAC,EAAE,CAAC;QAC9E,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,OAAO,GAAG,sBAAsB,CAAE,GAA6B,CAAC,OAAO,CAAC,CAAA;IAC9E,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,IAAI,CAAA;IACb,CAAC;IAED,OAAO;QACL,GAAG,EAAE,MAAM,CAAC,GAAG;QACf,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,SAAS,EAAE,eAAe,EAAE;QAC5B,OAAO;KACR,CAAA;AACH,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,KAAgD;IAC9E,MAAM,GAAG,GAAG,eAAe,EAAE,CAAA;IAC7B,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAA;IAEnC,aAAa,CACX,2BAA2B,EAAE,EAC7B,GAAG,IAAI,CAAC,SAAS,CAAC;QAChB,GAAG,EAAE,KAAK,CAAC,GAAG;QACd,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,OAAO,EAAE,KAAK,CAAC,OAAO;KACvB,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EACf,OAAO,CACR,CAAA;IACD,SAAS,CAAC,2BAA2B,EAAE,EAAE,KAAK,CAAC,CAAA;AACjD,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,MAAM,IAAI,GAAG,2BAA2B,EAAE,CAAA;IAC1C,IAAI,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACrB,UAAU,CAAC,IAAI,CAAC,CAAA;IAClB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,OAAsB;IACxD,OAAO,8BAA8B,CAAC,OAAO,CAAC,CAAA;AAChD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,KAAwB;IAC3D,OAAO,mBAAmB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAA;AAClE,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,OAAiC;IACrE,OAAO,OAAO,CAAC,QAAQ,IAAK,OAA6D,CAAC,SAAS,IAAI,EAAE,CAAA;AAC3G,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,OAAiC;IACtE,OAAO,OAAO,CAAC,YAAY,IAAK,OAA8D,CAAC,UAAU,IAAI,EAAE,CAAA;AACjH,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,KAAwB;IAC1D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAA;IAC7B,OAAO,kBAAkB,IAAI,OAAO,IAAI,iBAAiB,IAAI,OAAO,IAAI,eAAe,IAAI,OAAO;QAChG,CAAC,CAAC,OAAO;QACT,CAAC,CAAC,IAAI,CAAA;AACV,CAAC;AAED,MAAM,UAAU,eAAe;IAC7B,MAAM,IAAI,GAAG,2BAA2B,EAAE,CAAA;IAC1C,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACtB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,OAAO,8BAA8B,CAAC,QAAQ,CAAU,IAAI,CAAC,CAAC,CAAA;AAChE,CAAC"}

package/dist/lib/linx-cloud-errors.js

@@ -0,0 +1,61 @@
+export function normalizeMisclassifiedCloudCompletionPodTimeoutMessage(errorOrMessage) {
+    const message = stripAnsi(errorOrMessage instanceof Error ? errorOrMessage.message : String(errorOrMessage));
+    const match = message.match(/LinX Pod request timed out after (\d+)s:\s+\w+\s+(https?:\/\/[^\s"'<>]+)/);
+    if (!match) {
+        return null;
+    }
+    const [, seconds, rawUrl] = match;
+    try {
+        const target = new URL(trimTrailingPunctuation(rawUrl));
+        if (!isCloudChatCompletionsPath(target.pathname)) {
+            return null;
+        }
+    }
+    catch {
+        return null;
+    }
+    return formatLinxCloudTransientMessage(`Request exceeded ${seconds}s.`);
+}
+export function formatLinxCliErrorMessage(errorOrMessage) {
+    return normalizeMisclassifiedCloudCompletionPodTimeoutMessage(errorOrMessage)
+        ?? (errorOrMessage instanceof Error ? errorOrMessage.message : String(errorOrMessage));
+}
+export function formatLinxCloudTransientMessage(detail) {
+    const suffix = detail?.trim();
+    return suffix
+        ? `LinX Cloud is temporarily unavailable. ${suffix} Please retry shortly.`
+        : 'LinX Cloud is temporarily unavailable. Please retry shortly.';
+}
+export function isLinxCloudTransientMessage(errorOrMessage) {
+    const normalized = stripAnsi(errorOrMessage instanceof Error ? errorOrMessage.message : String(errorOrMessage)).toLowerCase();
+    return normalized.includes('linx cloud is temporarily unavailable')
+        || normalized.includes('chat request failed (500): fetch failed')
+        || normalized.includes('outgoing request timed out')
+        || (normalized.includes('502') && normalized.includes('bad gateway'))
+        || (normalized.includes('503') && normalized.includes('service unavailable'))
+        || (normalized.includes('504') && normalized.includes('gateway timeout'));
+}
+export function isLinxCloudAuthExpiredMessage(errorOrMessage) {
+    const normalized = stripAnsi(errorOrMessage instanceof Error ? errorOrMessage.message : String(errorOrMessage)).toLowerCase();
+    return normalized.includes('linx cloud login expired')
+        || normalized.includes('invalid solid token')
+        || (normalized.includes('401') && normalized.includes('unauthorized'));
+}
+function isCloudChatCompletionsPath(pathname) {
+    const segments = normalizePathname(pathname).split('/').filter(Boolean);
+    return segments.length >= 3
+        && /^v\d+$/.test(segments.at(-3) ?? '')
+        && segments.at(-2) === 'chat'
+        && segments.at(-1) === 'completions';
+}
+function normalizePathname(pathname) {
+    const normalized = pathname.endsWith('/') ? pathname : `${pathname}/`;
+    return normalized.replace(/\/{2,}/g, '/');
+}
+function stripAnsi(text) {
+    return text.replace(/\x1b\[[0-?]*[ -/]*[@-~]/g, '');
+}
+function trimTrailingPunctuation(url) {
+    return url.replace(/[),.;:!?]+$/g, '');
+}
+//# sourceMappingURL=linx-cloud-errors.js.map

package/dist/lib/linx-cloud-errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"linx-cloud-errors.js","sourceRoot":"","sources":["../../src/lib/linx-cloud-errors.ts"],"names":[],"mappings":"AAAA,MAAM,UAAU,sDAAsD,CAAC,cAAuB;IAC5F,MAAM,OAAO,GAAG,SAAS,CAAC,cAAc,YAAY,KAAK,CAAC,CAAC,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAA;IAC5G,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,0EAA0E,CAAC,CAAA;IACvG,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,GAAG,KAAK,CAAA;IACjC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC,CAAA;QACvD,IAAI,CAAC,0BAA0B,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjD,OAAO,IAAI,CAAA;QACb,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAA;IACb,CAAC;IAED,OAAO,+BAA+B,CAAC,oBAAoB,OAAO,IAAI,CAAC,CAAA;AACzE,CAAC;AAED,MAAM,UAAU,yBAAyB,CAAC,cAAuB;IAC/D,OAAO,sDAAsD,CAAC,cAAc,CAAC;WACxE,CAAC,cAAc,YAAY,KAAK,CAAC,CAAC,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAA;AAC1F,CAAC;AAED,MAAM,UAAU,+BAA+B,CAAC,MAAe;IAC7D,MAAM,MAAM,GAAG,MAAM,EAAE,IAAI,EAAE,CAAA;IAC7B,OAAO,MAAM;QACX,CAAC,CAAC,0CAA0C,MAAM,wBAAwB;QAC1E,CAAC,CAAC,8DAA8D,CAAA;AACpE,CAAC;AAED,MAAM,UAAU,2BAA2B,CAAC,cAAuB;IACjE,MAAM,UAAU,GAAG,SAAS,CAAC,cAAc,YAAY,KAAK,CAAC,CAAC,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,WAAW,EAAE,CAAA;IAC7H,OAAO,UAAU,CAAC,QAAQ,CAAC,uCAAuC,CAAC;WAC9D,UAAU,CAAC,QAAQ,CAAC,yCAAyC,CAAC;WAC9D,UAAU,CAAC,QAAQ,CAAC,4BAA4B,CAAC;WACjD,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;WAClE,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,qBAAqB,CAAC,CAAC;WAC1E,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAC,CAAA;AAC7E,CAAC;AAED,MAAM,UAAU,6BAA6B,CAAC,cAAuB;IACnE,MAAM,UAAU,GAAG,SAAS,CAAC,cAAc,YAAY,KAAK,CAAC,CAAC,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,WAAW,EAAE,CAAA;IAC7H,OAAO,UAAU,CAAC,QAAQ,CAAC,0BAA0B,CAAC;WACjD,UAAU,CAAC,QAAQ,CAAC,qBAAqB,CAAC;WAC1C,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,CAAA;AAC1E,CAAC;AAED,SAAS,0BAA0B,CAAC,QAAgB;IAClD,MAAM,QAAQ,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;IACvE,OAAO,QAAQ,CAAC,MAAM,IAAI,CAAC;WACtB,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;WACpC,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,KAAK,MAAM;WAC1B,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,KAAK,aAAa,CAAA;AACxC,CAAC;AAED,SAAS,iBAAiB,CAAC,QAAgB;IACzC,MAAM,UAAU,GAAG,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,QAAQ,GAAG,CAAA;IACrE,OAAO,UAAU,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,CAAA;AAC3C,CAAC;AAED,SAAS,SAAS,CAAC,IAAY;IAC7B,OAAO,IAAI,CAAC,OAAO,CAAC,0BAA0B,EAAE,EAAE,CAAC,CAAA;AACrD,CAAC;AAED,SAAS,uBAAuB,CAAC,GAAW;IAC1C,OAAO,GAAG,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAA;AACxC,CAAC"}

package/dist/lib/linx-tui-contract.js

@@ -10,16 +10,19 @@ export const LINX_TUI_RUNNING_FOOTER_HINT = `ctrl+c interrupt · ${LINX_TUI_KEYM
 export const LINX_TUI_RUNNING_DRAFT_HINT = 'enter steer · shift+enter newline · alt+enter follow-up';
 export const LINX_TUI_AUTO_MODE_HEADER_HINT = ' enter send | ctrl+l model | alt+up restore | ctrl+o tools | ctrl+c clear / double quit ';
 export const LINX_TUI_AUTO_MODE_READY_NOTE = `Use ${LINX_TUI_KEYMAP_COMMAND} for ${LINX_TUI_KEYMAP_LABEL}. Type ${LINX_TUI_EXIT_COMMAND} to leave this session.`;
-export const LINX_TUI_AUTO_MODE_HELP_ACTIVITY = `Keymap: enter send · ctrl+l model · /manual|/smart|/auto · ${LINX_TUI_EXIT_COMMAND}`;
+export const LINX_TUI_AUTO_MODE_HELP_ACTIVITY = `Keymap: enter send · ctrl+l model · /auto on|off|status · /goal <peer-command> · /rewind [turns] · ${LINX_TUI_EXIT_COMMAND}`;
 export const LINX_TUI_AUTO_MODE_HELP_TEXT = [
     `${LINX_TUI_KEYMAP_COMMAND} ${LINX_TUI_KEYMAP_LABEL}`,
     `${LINX_TUI_LOGIN_COMMAND} refresh LinX Cloud login`,
     `${LINX_TUI_LOGOUT_COMMAND} clear LinX Cloud login`,
-    `${LINX_TUI_EXIT_COMMAND} exit auto-mode session`,
+    `${LINX_TUI_EXIT_COMMAND} leave this session`,
     '/model <id> switch backend model',
-    '/manual wait for user approval',
-    '/smart let AI secretary handle clear low-risk approvals',
-    '/auto enable automatic AI secretary approvals',
+    '/auto status show whether auto is active',
+    '/auto on let Secretary drive and ask when blocked',
+    '/auto off return to direct user-driven chat',
+    '/goal <peer-command> send a goal command to the current chat peer',
+    '/rewind [turns] move the active session branch before recent user turns',
+    '/symphony on|off|status switch current chat peer: Secretary vs worker/backend',
     '/debug on|off protocol view',
     '',
 ].join('\n');

package/dist/lib/linx-tui-contract.js.map

@@ -1 +1 @@
-{"version":3,"file":"linx-tui-contract.js","sourceRoot":"","sources":["../../src/lib/linx-tui-contract.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,uBAAuB,GAAG,UAAU,CAAA;AACjD,MAAM,CAAC,MAAM,qBAAqB,GAAG,QAAQ,CAAA;AAC7C,MAAM,CAAC,MAAM,qBAAqB,GAAG,OAAO,CAAA;AAC5C,MAAM,CAAC,MAAM,sBAAsB,GAAG,QAAQ,CAAA;AAC9C,MAAM,CAAC,MAAM,uBAAuB,GAAG,SAAS,CAAA;AAEhD,MAAM,CAAC,MAAM,0BAA0B,GAAG,gBAAgB,uBAAuB,IAAI,qBAAqB,MAAM,qBAAqB,EAAE,CAAA;AACvI,MAAM,CAAC,MAAM,0BAA0B,GAAG,+BAA+B,uBAAuB,IAAI,qBAAqB,MAAM,qBAAqB,EAAE,CAAA;AACtJ,MAAM,CAAC,MAAM,yBAAyB,GAAG,wDAAwD,CAAA;AACjG,MAAM,CAAC,MAAM,4BAA4B,GAAG,sBAAsB,uBAAuB,IAAI,qBAAqB,MAAM,qBAAqB,EAAE,CAAA;AAC/I,MAAM,CAAC,MAAM,2BAA2B,GAAG,yDAAyD,CAAA;AACpG,MAAM,CAAC,MAAM,8BAA8B,GAAG,0FAA0F,CAAA;AACxI,MAAM,CAAC,MAAM,6BAA6B,GAAG,OAAO,uBAAuB,QAAQ,qBAAqB,UAAU,qBAAqB,yBAAyB,CAAA;AAChK,MAAM,CAAC,MAAM,gCAAgC,GAAG,8DAA8D,qBAAqB,EAAE,CAAA;AACrI,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,GAAG,uBAAuB,IAAI,qBAAqB,EAAE;IACrD,GAAG,sBAAsB,2BAA2B;IACpD,GAAG,uBAAuB,yBAAyB;IACnD,GAAG,qBAAqB,yBAAyB;IACjD,kCAAkC;IAClC,gCAAgC;IAChC,yDAAyD;IACzD,+CAA+C;IAC/C,6BAA6B;IAC7B,EAAE;CACH,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA"}
+{"version":3,"file":"linx-tui-contract.js","sourceRoot":"","sources":["../../src/lib/linx-tui-contract.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,uBAAuB,GAAG,UAAU,CAAA;AACjD,MAAM,CAAC,MAAM,qBAAqB,GAAG,QAAQ,CAAA;AAC7C,MAAM,CAAC,MAAM,qBAAqB,GAAG,OAAO,CAAA;AAC5C,MAAM,CAAC,MAAM,sBAAsB,GAAG,QAAQ,CAAA;AAC9C,MAAM,CAAC,MAAM,uBAAuB,GAAG,SAAS,CAAA;AAEhD,MAAM,CAAC,MAAM,0BAA0B,GAAG,gBAAgB,uBAAuB,IAAI,qBAAqB,MAAM,qBAAqB,EAAE,CAAA;AACvI,MAAM,CAAC,MAAM,0BAA0B,GAAG,+BAA+B,uBAAuB,IAAI,qBAAqB,MAAM,qBAAqB,EAAE,CAAA;AACtJ,MAAM,CAAC,MAAM,yBAAyB,GAAG,wDAAwD,CAAA;AACjG,MAAM,CAAC,MAAM,4BAA4B,GAAG,sBAAsB,uBAAuB,IAAI,qBAAqB,MAAM,qBAAqB,EAAE,CAAA;AAC/I,MAAM,CAAC,MAAM,2BAA2B,GAAG,yDAAyD,CAAA;AACpG,MAAM,CAAC,MAAM,8BAA8B,GAAG,0FAA0F,CAAA;AACxI,MAAM,CAAC,MAAM,6BAA6B,GAAG,OAAO,uBAAuB,QAAQ,qBAAqB,UAAU,qBAAqB,yBAAyB,CAAA;AAChK,MAAM,CAAC,MAAM,gCAAgC,GAAG,sGAAsG,qBAAqB,EAAE,CAAA;AAC7K,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,GAAG,uBAAuB,IAAI,qBAAqB,EAAE;IACrD,GAAG,sBAAsB,2BAA2B;IACpD,GAAG,uBAAuB,yBAAyB;IACnD,GAAG,qBAAqB,qBAAqB;IAC7C,kCAAkC;IAClC,0CAA0C;IAC1C,mDAAmD;IACnD,6CAA6C;IAC7C,mEAAmE;IACnE,yEAAyE;IACzE,+EAA+E;IAC/E,6BAA6B;IAC7B,EAAE;CACH,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA"}

package/dist/lib/login-command.js

@@ -11,9 +11,10 @@ export async function runLinxLoginCommand(argv, deps = {}) {
     const doPromptText = deps.promptText ?? promptText;
     const write = deps.write ?? ((chunk) => process.stdout.write(chunk));
     let browserLoginStarted = false;
+    const forceFresh = argv.fresh === true || argv.force === true;
     const result = await doBrowserConsentLogin({
         issuerUrl: argv.url,
-        forceFresh: true,
+        forceFresh,
         onAuthUrl(url) {
             browserLoginStarted = true;
             write('Opening LinX Cloud login in your browser...\n');
@@ -39,7 +40,7 @@ export function runLinxLogoutCommand(deps = {}) {
     clearAccountSession();
     clearCredentials();
     clearOidcSessionStorage();
-    write('Logged out. Local LinX credentials removed.\n');
+    write('Logged out. Local Solid auth credentials removed.\n');
 }
 export const loginCommand = {
     command: 'login',
@@ -50,6 +51,12 @@ export const loginCommand = {
         type: 'string',
         default: resolveAccountBaseUrl(),
         description: 'Solid / account issuer URL',
+    })
+        .option('fresh', {
+        alias: 'force',
+        type: 'boolean',
+        default: false,
+        description: 'Ignore saved LinX OIDC session and start a fresh browser consent flow',
     }),
     handler: async (argv) => {
         await runLinxLoginCommand(argv);

package/dist/lib/login-command.js.map

@@ -1 +1 @@
-{"version":3,"file":"login-command.js","sourceRoot":"","sources":["../../src/lib/login-command.ts"],"names":[],"mappings":"AACA,OAAO,EACL,oBAAoB,GACrB,MAAM,8BAA8B,CAAA;AACrC,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAC9E,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AACzD,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAA;AACvE,OAAO,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAA;AACnE,OAAO,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAA;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAqBxC,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,IAAe,EACf,OAAyB,EAAE;IAE3B,MAAM,qBAAqB,GAAG,IAAI,CAAC,yBAAyB,IAAI,yBAAyB,CAAA;IACzF,MAAM,aAAa,GAAG,IAAI,CAAC,WAAW,IAAI,WAAW,CAAA;IACrD,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,IAAI,UAAU,CAAA;IAClD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC,KAAa,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAA;IAE5E,IAAI,mBAAmB,GAAG,KAAK,CAAA;IAC/B,MAAM,MAAM,GAAG,MAAM,qBAAqB,CAAC;QACzC,SAAS,EAAE,IAAI,CAAC,GAAG;QACnB,UAAU,EAAE,IAAI;QAChB,SAAS,CAAC,GAAG;YACX,mBAAmB,GAAG,IAAI,CAAA;YAC1B,KAAK,CAAC,+CAA+C,CAAC,CAAA;YACtD,KAAK,CAAC,GAAG,GAAG,MAAM,CAAC,CAAA;YACnB,KAAK,CAAC,mIAAmI,CAAC,CAAA;QAC5I,CAAC;QACD,WAAW,EAAE,aAAa;QAC1B,KAAK,CAAC,iBAAiB,CAAC,MAAM;YAC5B,OAAO,CAAC,MAAM,YAAY,CAAC,8CAA8C,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,EAAE,CAAA;QAC5F,CAAC;KACF,CAAC,CAAA;IAEF,IAAI,mBAAmB,EAAE,CAAC;QACxB,KAAK,CAAC,IAAI,CAAC,CAAA;IACb,CAAC;IACD,KAAK,CAAC,0BAA0B,CAAC,CAAA;IACjC,KAAK,CAAC,WAAW,MAAM,CAAC,GAAG,IAAI,CAAC,CAAA;IAChC,KAAK,CAAC,UAAU,MAAM,CAAC,KAAK,IAAI,CAAC,CAAA;IACjC,KAAK,CAAC,oBAAoB,CAAC,CAAA;IAC3B,KAAK,CAAC,YAAY,MAAM,CAAC,qBAAqB,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,iBAAiB,IAAI,CAAC,CAAA;AACpF,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,OAA0B,EAAE;IAC/D,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC,KAAa,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAA;IAC5E,mBAAmB,EAAE,CAAA;IACrB,gBAAgB,EAAE,CAAA;IAClB,uBAAuB,EAAE,CAAA;IACzB,KAAK,CAAC,+CAA+C,CAAC,CAAA;AACxD,CAAC;AAED,MAAM,CAAC,MAAM,YAAY,GAAqC;IAC5D,OAAO,EAAE,OAAO;IAChB,QAAQ,EAAE,uEAAuE;IACjF,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE,CACjB,KAAK;SACF,MAAM,CAAC,KAAK,EAAE;QACb,KAAK,EAAE,GAAG;QACV,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,qBAAqB,EAAE;QAChC,WAAW,EAAE,4BAA4B;KAC1C,CAAC;IACN,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,mBAAmB,CAAC,IAAI,CAAC,CAAA;QAC/B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;CACF,CAAA;AAED,MAAM,CAAC,MAAM,aAAa,GAAkB;IAC1C,OAAO,EAAE,QAAQ;IACjB,QAAQ,EAAE,iDAAiD;IAC3D,OAAO,EAAE,KAAK,IAAI,EAAE;QAClB,oBAAoB,EAAE,CAAA;IACxB,CAAC;CACF,CAAA;AAED,MAAM,CAAC,MAAM,aAAa,GAAsC;IAC9D,OAAO,EAAE,QAAQ;IACjB,QAAQ,EAAE,sCAAsC;IAChD,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAChF,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,OAAO,GAAG,kBAAkB,EAAE,CAAA;QACpC,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;QAC3D,CAAC;QAED,KAAK,MAAM,KAAK,IAAI,oBAAoB,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC;YAC7E,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,GAAG,KAAK,KAAK,CAAC,KAAK,IAAI,CAAC,CAAA;QACxD,CAAC;IACH,CAAC;CACF,CAAA"}
+{"version":3,"file":"login-command.js","sourceRoot":"","sources":["../../src/lib/login-command.ts"],"names":[],"mappings":"AACA,OAAO,EACL,oBAAoB,GACrB,MAAM,8BAA8B,CAAA;AACrC,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAC9E,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AACzD,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAA;AACvE,OAAO,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAA;AACnE,OAAO,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAA;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAuBxC,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,IAAe,EACf,OAAyB,EAAE;IAE3B,MAAM,qBAAqB,GAAG,IAAI,CAAC,yBAAyB,IAAI,yBAAyB,CAAA;IACzF,MAAM,aAAa,GAAG,IAAI,CAAC,WAAW,IAAI,WAAW,CAAA;IACrD,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,IAAI,UAAU,CAAA;IAClD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC,KAAa,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAA;IAE5E,IAAI,mBAAmB,GAAG,KAAK,CAAA;IAC/B,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,KAAK,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,IAAI,CAAA;IAC7D,MAAM,MAAM,GAAG,MAAM,qBAAqB,CAAC;QACzC,SAAS,EAAE,IAAI,CAAC,GAAG;QACnB,UAAU;QACV,SAAS,CAAC,GAAG;YACX,mBAAmB,GAAG,IAAI,CAAA;YAC1B,KAAK,CAAC,+CAA+C,CAAC,CAAA;YACtD,KAAK,CAAC,GAAG,GAAG,MAAM,CAAC,CAAA;YACnB,KAAK,CAAC,mIAAmI,CAAC,CAAA;QAC5I,CAAC;QACD,WAAW,EAAE,aAAa;QAC1B,KAAK,CAAC,iBAAiB,CAAC,MAAM;YAC5B,OAAO,CAAC,MAAM,YAAY,CAAC,8CAA8C,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,EAAE,CAAA;QAC5F,CAAC;KACF,CAAC,CAAA;IAEF,IAAI,mBAAmB,EAAE,CAAC;QACxB,KAAK,CAAC,IAAI,CAAC,CAAA;IACb,CAAC;IACD,KAAK,CAAC,0BAA0B,CAAC,CAAA;IACjC,KAAK,CAAC,WAAW,MAAM,CAAC,GAAG,IAAI,CAAC,CAAA;IAChC,KAAK,CAAC,UAAU,MAAM,CAAC,KAAK,IAAI,CAAC,CAAA;IACjC,KAAK,CAAC,oBAAoB,CAAC,CAAA;IAC3B,KAAK,CAAC,YAAY,MAAM,CAAC,qBAAqB,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,iBAAiB,IAAI,CAAC,CAAA;AACpF,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,OAA0B,EAAE;IAC/D,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC,KAAa,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAA;IAC5E,mBAAmB,EAAE,CAAA;IACrB,gBAAgB,EAAE,CAAA;IAClB,uBAAuB,EAAE,CAAA;IACzB,KAAK,CAAC,qDAAqD,CAAC,CAAA;AAC9D,CAAC;AAED,MAAM,CAAC,MAAM,YAAY,GAAqC;IAC5D,OAAO,EAAE,OAAO;IAChB,QAAQ,EAAE,uEAAuE;IACjF,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE,CACjB,KAAK;SACF,MAAM,CAAC,KAAK,EAAE;QACb,KAAK,EAAE,GAAG;QACV,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,qBAAqB,EAAE;QAChC,WAAW,EAAE,4BAA4B;KAC1C,CAAC;SACD,MAAM,CAAC,OAAO,EAAE;QACf,KAAK,EAAE,OAAO;QACd,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,KAAK;QACd,WAAW,EAAE,uEAAuE;KACrF,CAAC;IACN,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,mBAAmB,CAAC,IAAI,CAAC,CAAA;QAC/B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;CACF,CAAA;AAED,MAAM,CAAC,MAAM,aAAa,GAAkB;IAC1C,OAAO,EAAE,QAAQ;IACjB,QAAQ,EAAE,iDAAiD;IAC3D,OAAO,EAAE,KAAK,IAAI,EAAE;QAClB,oBAAoB,EAAE,CAAA;IACxB,CAAC;CACF,CAAA;AAED,MAAM,CAAC,MAAM,aAAa,GAAsC;IAC9D,OAAO,EAAE,QAAQ;IACjB,QAAQ,EAAE,sCAAsC;IAChD,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAChF,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QACtB,MAAM,OAAO,GAAG,kBAAkB,EAAE,CAAA;QACpC,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;QAC3D,CAAC;QAED,KAAK,MAAM,KAAK,IAAI,oBAAoB,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC;YAC7E,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,GAAG,KAAK,KAAK,CAAC,KAAK,IAAI,CAAC,CAAA;QACxD,CAAC;IACH,CAAC;CACF,CAAA"}

package/dist/lib/models.js

@@ -1,23 +1,6 @@
-import { aiConfigProviderRef, aiConfigModelUri, aiConfigProviderUri, aiModelResource, aiModelTable, aiProviderResource, aiProviderTable, approvalResource, approvalTable, auditTable, buildAIConfigDisconnectPlan, buildAIConfigMutationPlan, buildAIConfigProviderStateMap, credentialResource, credentialTable, createPodStorage, ContactType, auditResource, agentResource, agentTable, applySolidComunicaPatches, chatResource, chatTable, contactTable, drizzle, eq, getAIConfigProviderFamilyIds, getAIConfigProviderMetadata, getDefaultAIConfigCredentialId, getBuiltinModels as getSharedBuiltinModels, grantResource, grantTable, inboxNotificationResource, inboxNotificationTable, initSolidResources, initSolidTables, podSchema, extractChatIdFromChatRef, extractSessionIdFromSessionRef, extractThreadIdFromThreadRef, solidResources, solidSchema, messageResource, messageTable, sessionResource, sessionTable, normalizeAIConfigProviderId, normalizeAIConfigResourceId, sameAIConfigProviderFamily, selectAIConfigCredential, sessionRepository, threadResource, threadTable, } from '@undefineds.co/models';
-function buildResourceSubjectPath(resource, row) {
-    return resource.resolveUri(resource.buildId(row));
-}
-export function buildApprovalSubjectPath(approvalId, createdAt = new Date()) {
-    return buildResourceSubjectPath(approvalResource, { id: approvalId, createdAt });
-}
-export function buildAuditSubjectPath(auditId, createdAt = new Date()) {
-    return buildResourceSubjectPath(auditResource, { id: auditId, createdAt });
-}
-export function buildGrantSubjectPath(grantId) {
-    return buildResourceSubjectPath(grantResource, { id: grantId });
-}
-export function buildSessionResourceId(sessionId, createdAt = new Date()) {
-    return sessionResource.buildId({ id: sessionId, createdAt });
-}
-export function buildSessionSubjectPath(sessionId, createdAt = new Date()) {
-    return sessionResource.resolveUri(buildSessionResourceId(sessionId, createdAt));
-}
-export { ContactType, agentResource, agentTable, applySolidComunicaPatches, aiConfigModelUri, aiConfigProviderRef, aiConfigProviderUri, aiModelResource, aiModelTable, aiProviderResource, aiProviderTable, approvalResource, approvalTable, auditTable, buildAIConfigDisconnectPlan, buildAIConfigMutationPlan, buildAIConfigProviderStateMap, chatResource, chatTable, contactTable, createPodStorage, credentialResource, credentialTable, auditResource, drizzle, eq, getAIConfigProviderFamilyIds, getAIConfigProviderMetadata, getDefaultAIConfigCredentialId, grantResource, grantTable, inboxNotificationResource, inboxNotificationTable, extractChatIdFromChatRef, extractSessionIdFromSessionRef, extractThreadIdFromThreadRef, solidSchema, solidResources, initSolidResources, initSolidTables, podSchema, messageResource, messageTable, sessionResource, sessionTable, normalizeAIConfigProviderId, normalizeAIConfigResourceId, sameAIConfigProviderFamily, selectAIConfigCredential, sessionRepository, threadResource, threadTable, };
+import { getBuiltinModels as getSharedBuiltinModels, } from '@undefineds.co/models/discovery';
+import { aiConfigProviderRef, aiConfigModelUri, aiConfigProviderUri, aiConfigRepository, aiModelResource, aiModelTable, aiProviderResource, aiProviderTable, approvalResource, approvalTable, auditTable, buildAIConfigDisconnectPlan, buildAIConfigMutationPlan, buildAIConfigProviderStateMap, chatRepository, credentialResource, credentialTable, ContactClass, ContactType, auditResource, agentResource, agentTable, applySolidComunicaPatches, chatResource, chatTable, contactResource, contactTable, drizzle, eq, getAIConfigProviderFamilyIds, getAIConfigProviderIdsForBackend, getAIConfigProviderCatalog, getAIConfigProviderMetadata, getDefaultAIConfigCredentialId, grantResource, grantTable, ideaResource, inboxNotificationResource, inboxNotificationTable, initSolidResources, initSolidTables, extractSessionIdFromSessionRef, solidResources, solidSchema, messageResource, messageTable, issueResource, issueTable, taskResource, taskTable, deliveryResource, deliveryTable, runResource, runStepResource, runTable, runStepTable, sessionResource, sessionTable, skillResource, skillTable, normalizeAIConfigProviderId, normalizeAIConfigResourceId, sameAIConfigProviderFamily, selectAIConfigCredential, selectAIConfigCredentialForBackend, sessionRepository, threadRepository, threadResource, threadTable, } from '@undefineds.co/models';
+export { ContactClass, ContactType, agentResource, agentTable, applySolidComunicaPatches, aiConfigModelUri, aiConfigProviderRef, aiConfigProviderUri, aiConfigRepository, aiModelResource, aiModelTable, aiProviderResource, aiProviderTable, approvalResource, approvalTable, auditTable, buildAIConfigDisconnectPlan, buildAIConfigMutationPlan, buildAIConfigProviderStateMap, chatRepository, chatResource, chatTable, contactResource, contactTable, credentialResource, credentialTable, auditResource, drizzle, eq, getAIConfigProviderFamilyIds, getAIConfigProviderIdsForBackend, getAIConfigProviderCatalog, getAIConfigProviderMetadata, getDefaultAIConfigCredentialId, grantResource, grantTable, ideaResource, inboxNotificationResource, inboxNotificationTable, extractSessionIdFromSessionRef, solidSchema, solidResources, initSolidResources, initSolidTables, messageResource, messageTable, issueResource, issueTable, taskResource, taskTable, deliveryResource, deliveryTable, runResource, runStepResource, runTable, runStepTable, sessionResource, sessionTable, skillResource, skillTable, normalizeAIConfigProviderId, normalizeAIConfigResourceId, sameAIConfigProviderFamily, selectAIConfigCredential, selectAIConfigCredentialForBackend, sessionRepository, threadRepository, threadResource, threadTable, };
 export function getBuiltinModels() {
     return getSharedBuiltinModels();
 }

package/dist/lib/models.js.map

@@ -1 +1 @@
-{"version":3,"file":"models.js","sourceRoot":"","sources":["../../src/lib/models.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,gBAAgB,EAChB,mBAAmB,EACnB,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,aAAa,EACb,UAAU,EACV,2BAA2B,EAC3B,yBAAyB,EACzB,6BAA6B,EAC7B,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,WAAW,EACX,aAAa,EACb,aAAa,EACb,UAAU,EACV,yBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,YAAY,EACZ,OAAO,EACP,EAAE,EACF,4BAA4B,EAC5B,2BAA2B,EAC3B,8BAA8B,EAC9B,gBAAgB,IAAI,sBAAsB,EAC1C,aAAa,EACb,UAAU,EACV,yBAAyB,EACzB,sBAAsB,EACtB,kBAAkB,EAClB,eAAe,EACf,SAAS,EACT,wBAAwB,EACxB,8BAA8B,EAC9B,4BAA4B,EAC5B,cAAc,EACd,WAAW,EACX,eAAe,EACf,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,2BAA2B,EAC3B,2BAA2B,EAC3B,0BAA0B,EAC1B,wBAAwB,EACxB,iBAAiB,EACjB,cAAc,EACd,WAAW,GAmBZ,MAAM,uBAAuB,CAAA;AAO9B,SAAS,wBAAwB,CAAC,QAA6B,EAAE,GAA4B;IAC3F,OAAO,QAAQ,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAA;AACnD,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,UAAkB,EAAE,YAAoC,IAAI,IAAI,EAAE;IACzG,OAAO,wBAAwB,CAAC,gBAAuC,EAAE,EAAE,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC,CAAA;AACzG,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,OAAe,EAAE,YAAoC,IAAI,IAAI,EAAE;IACnG,OAAO,wBAAwB,CAAC,aAAoC,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC,CAAA;AACnG,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,OAAe;IACnD,OAAO,wBAAwB,CAAC,aAAoC,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAA;AACxF,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,SAAiB,EAAE,YAAoC,IAAI,IAAI,EAAE;IACtG,OAAO,eAAe,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,CAAA;AAC9D,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,SAAiB,EAAE,YAAoC,IAAI,IAAI,EAAE;IACvG,OAAO,eAAe,CAAC,UAAU,CAAC,sBAAsB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC,CAAA;AACjF,CAAC;AAED,OAAO,EACL,WAAW,EACX,aAAa,EACb,UAAU,EACV,yBAAyB,EACzB,gBAAgB,EAChB,mBAAmB,EACnB,mBAAmB,EACnB,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,aAAa,EACb,UAAU,EACV,2BAA2B,EAC3B,yBAAyB,EACzB,6BAA6B,EAC7B,YAAY,EACZ,SAAS,EACT,YAAY,EACZ,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,aAAa,EACb,OAAO,EACP,EAAE,EACF,4BAA4B,EAC5B,2BAA2B,EAC3B,8BAA8B,EAC9B,aAAa,EACb,UAAU,EACV,yBAAyB,EACzB,sBAAsB,EACtB,wBAAwB,EACxB,8BAA8B,EAC9B,4BAA4B,EAC5B,WAAW,EACX,cAAc,EACd,kBAAkB,EAClB,eAAe,EACf,SAAS,EACT,eAAe,EACf,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,2BAA2B,EAC3B,2BAA2B,EAC3B,0BAA0B,EAC1B,wBAAwB,EACxB,iBAAiB,EACjB,cAAc,EACd,WAAW,GACZ,CAAA;AAsBD,MAAM,UAAU,gBAAgB;IAC9B,OAAO,sBAAsB,EAAE,CAAA;AACjC,CAAC"}
+{"version":3,"file":"models.js","sourceRoot":"","sources":["../../src/lib/models.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,gBAAgB,IAAI,sBAAsB,GAC3C,MAAM,iCAAiC,CAAA;AAExC,OAAO,EACL,mBAAmB,EACnB,gBAAgB,EAChB,mBAAmB,EACnB,kBAAkB,EAClB,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,aAAa,EACb,UAAU,EACV,2BAA2B,EAC3B,yBAAyB,EACzB,6BAA6B,EAC7B,cAAc,EACd,kBAAkB,EAClB,eAAe,EACf,YAAY,EACZ,WAAW,EACX,aAAa,EACb,aAAa,EACb,UAAU,EACV,yBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,eAAe,EACf,YAAY,EACZ,OAAO,EACP,EAAE,EACF,4BAA4B,EAC5B,gCAAgC,EAChC,0BAA0B,EAC1B,2BAA2B,EAC3B,8BAA8B,EAC9B,aAAa,EACb,UAAU,EACV,YAAY,EACZ,yBAAyB,EACzB,sBAAsB,EACtB,kBAAkB,EAClB,eAAe,EACf,8BAA8B,EAC9B,cAAc,EACd,WAAW,EACX,eAAe,EACf,YAAY,EACZ,aAAa,EACb,UAAU,EACV,YAAY,EACZ,SAAS,EACT,gBAAgB,EAChB,aAAa,EACb,WAAW,EACX,eAAe,EACf,QAAQ,EACR,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,aAAa,EACb,UAAU,EACV,2BAA2B,EAC3B,2BAA2B,EAC3B,0BAA0B,EAC1B,wBAAwB,EACxB,kCAAkC,EAClC,iBAAiB,EACjB,gBAAgB,EAChB,cAAc,EACd,WAAW,GA4BZ,MAAM,uBAAuB,CAAA;AAE9B,OAAO,EACL,YAAY,EACZ,WAAW,EACX,aAAa,EACb,UAAU,EACV,yBAAyB,EACzB,gBAAgB,EAChB,mBAAmB,EACnB,mBAAmB,EACnB,kBAAkB,EAClB,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,aAAa,EACb,UAAU,EACV,2BAA2B,EAC3B,yBAAyB,EACzB,6BAA6B,EAC7B,cAAc,EACd,YAAY,EACZ,SAAS,EACT,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,eAAe,EACf,aAAa,EACb,OAAO,EACP,EAAE,EACF,4BAA4B,EAC5B,gCAAgC,EAChC,0BAA0B,EAC1B,2BAA2B,EAC3B,8BAA8B,EAC9B,aAAa,EACb,UAAU,EACV,YAAY,EACZ,yBAAyB,EACzB,sBAAsB,EACtB,8BAA8B,EAC9B,WAAW,EACX,cAAc,EACd,kBAAkB,EAClB,eAAe,EACf,eAAe,EACf,YAAY,EACZ,aAAa,EACb,UAAU,EACV,YAAY,EACZ,SAAS,EACT,gBAAgB,EAChB,aAAa,EACb,WAAW,EACX,eAAe,EACf,QAAQ,EACR,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,aAAa,EACb,UAAU,EACV,2BAA2B,EAC3B,2BAA2B,EAC3B,0BAA0B,EAC1B,wBAAwB,EACxB,kCAAkC,EAClC,iBAAiB,EACjB,gBAAgB,EAChB,cAAc,EACd,WAAW,GACZ,CAAA;AA+BD,MAAM,UAAU,gBAAgB;IAC9B,OAAO,sBAAsB,EAAE,CAAA;AACjC,CAAC"}

package/dist/lib/oidc-auth.js

@@ -3,16 +3,17 @@ import { execFile } from 'node:child_process';
 import { promisify } from 'node:util';
 import { EVENTS, getSessionFromStorage, refreshSession, Session, } from '@inrupt/solid-client-authn-node';
 import { isLinxOidcOAuthSecrets, resolveLinxCloudAccountBaseUrl } from '@undefineds.co/models/client';
-import { saveAccountSession } from './account-session.js';
-import { loadCredentials, saveCredentials } from './credentials-store.js';
-import { createOidcSessionStorage } from './oidc-session-storage.js';
+import { clearAccountSession, saveAccountSession } from './account-session.js';
+import { clearCredentials, loadCredentials, saveCredentials } from './credentials-store.js';
+import { clearOidcSessionStorage, createOidcSessionStorage } from './oidc-session-storage.js';
 const execFileAsync = promisify(execFile);
 const DEFAULT_CALLBACK_HOST = '127.0.0.1';
 const DEFAULT_CALLBACK_PATH = '/auth/callback';
 const DEFAULT_CLIENT_NAME = 'LinX CLI';
+const TRANSIENT_OIDC_REMOTE_STATUS_CODES = new Set([502, 503, 504]);
 export async function ensureBrowserConsentLogin(options = {}) {
     if (!options.forceFresh) {
-        const reused = await reuseExistingBrowserConsentLogin(options).catch(() => null);
+        const reused = await reuseExistingBrowserConsentLogin(options);
         if (reused) {
             return {
                 ...reused,
@@ -20,6 +21,9 @@ export async function ensureBrowserConsentLogin(options = {}) {
             };
         }
     }
+    if (options.forceFresh) {
+        clearOidcSessionStorage();
+    }
     const fresh = await loginWithBrowserConsent(options);
     return {
         ...fresh,
@@ -99,17 +103,29 @@ export async function restoreStoredOidcSession(credentials, options = {}) {
     const storage = createOidcSessionStorage();
     const sessionId = await resolveStoredOidcSessionId(storage, credentials.webId, credentials.url);
     if (!sessionId) {
+        if (options.forceRefresh) {
+            clearStoredOidcLoginState();
+            throw new LinxOidcLoginExpiredError('Stored OIDC session is missing.');
+        }
         return null;
     }
     const session = await getSessionFromStorage(sessionId, {
         storage,
         refreshSession: false,
+    }).catch((error) => {
+        throw normalizeOidcSessionRefreshError(error);
     });
     if (!session) {
+        if (options.forceRefresh) {
+            clearStoredOidcLoginState();
+            throw new LinxOidcLoginExpiredError('Stored OIDC session cannot be restored.');
+        }
         return null;
     }
     if (options.forceRefresh || !session.info.isLoggedIn) {
-        await refreshSession(session, { storage });
+        await refreshSession(session, { storage }).catch((error) => {
+            throw normalizeOidcSessionRefreshError(error);
+        });
     }
     return session.info.isLoggedIn ? session : null;
 }
@@ -358,8 +374,21 @@ async function reuseExistingBrowserConsentLogin(options) {
     if (requestedIssuer !== storedIssuer) {
         return null;
     }
-    const accessToken = await getOidcAccessToken(stored, { forceRefresh: options.forceRefreshExisting });
+    let accessToken;
+    try {
+        // Reuse is valid only after a real server refresh. Local expiry/WebID checks
+        // are insufficient when an account was deleted and recreated with the same WebID.
+        accessToken = await getOidcAccessToken(stored, { forceRefresh: true });
+    }
+    catch (error) {
+        if (isOidcLoginExpiredError(error)) {
+            clearStoredOidcLoginState();
+            return null;
+        }
+        throw error;
+    }
     if (!accessToken || !isLinxOidcOAuthSecrets(stored.secrets)) {
+        clearStoredOidcLoginState();
         return null;
     }
     return {
@@ -392,23 +421,30 @@ async function refreshStoredOidcSession(credentials, secrets) {
     const storage = createOidcSessionStorage();
     const sessionId = await resolveStoredOidcSessionId(storage, credentials.webId, credentials.url);
     if (!sessionId) {
-        return null;
+        clearStoredOidcLoginState();
+        throw new LinxOidcLoginExpiredError('Stored OIDC session is missing.');
     }
     const session = await getSessionFromStorage(sessionId, {
         storage,
         refreshSession: false,
+    }).catch((error) => {
+        throw normalizeOidcSessionRefreshError(error);
     });
     if (!session) {
-        return null;
+        clearStoredOidcLoginState();
+        throw new LinxOidcLoginExpiredError('Stored OIDC session cannot be restored.');
     }
     let refreshedTokenSet = null;
     session.events.on(EVENTS.NEW_TOKENS, (tokenSet) => {
         refreshedTokenSet = tokenSet;
     });
-    await refreshSession(session, { storage });
+    await refreshSession(session, { storage }).catch((error) => {
+        throw normalizeOidcSessionRefreshError(error);
+    });
     const nextTokenSet = refreshedTokenSet;
     if (!nextTokenSet?.accessToken) {
-        return null;
+        clearStoredOidcLoginState();
+        throw new LinxOidcLoginExpiredError('Stored OIDC session refresh did not return an access token.');
     }
     secrets.oidcRefreshToken = nextTokenSet.refreshToken ?? secrets.oidcRefreshToken;
     secrets.oidcAccessToken = nextTokenSet.accessToken;
@@ -456,7 +492,8 @@ async function resolveStoredOidcSessionId(storage, webId, issuerUrl) {
             const parsed = JSON.parse(stored);
             const sessionWebId = typeof parsed.webId === 'string' ? parsed.webId : null;
             const sessionIssuer = typeof parsed.issuer === 'string' ? parsed.issuer.replace(/\/+$/, '') : null;
-            if (sessionWebId === webId && sessionIssuer === normalizedIssuer) {
+            const sessionUsesDpop = parsed.dpop === true || parsed.dpop === 'true';
+            if (sessionWebId === webId && sessionIssuer === normalizedIssuer && !sessionUsesDpop) {
                 return sessionId;
             }
         }
@@ -500,11 +537,7 @@ async function waitForManualRedirect(onCallback, manualRedirectUrl, signal) {
         await new Promise(() => undefined);
         return;
     }
-    if (signal?.aborted) {
-        return;
-    }
-    if (!requestUrl) {
-        await new Promise(() => undefined);
+    if (signal?.aborted || !requestUrl) {
         return;
     }
     assertOidcCallbackDidNotReturnError(requestUrl);
@@ -530,17 +563,110 @@ export class LinxOidcLoginExpiredError extends Error {
             this.cause = cause;
     }
 }
+export class LinxOidcTransientRemoteError extends Error {
+    transientRemote = true;
+    status;
+    constructor(cause) {
+        const status = resolveOidcTransientRemoteStatus(cause);
+        const detail = status ? fallbackOidcTransientStatusMessage(status) : 'Service Unavailable';
+        super(status
+            ? `LinX Cloud is temporarily unavailable (${status}): ${detail}. Your login was not cleared; retry shortly.`
+            : 'LinX Cloud is temporarily unavailable. Your login was not cleared; retry shortly.');
+        this.name = 'LinxOidcTransientRemoteError';
+        if (status !== null)
+            this.status = status;
+        if (cause !== undefined)
+            this.cause = cause;
+    }
+}
+export function clearStoredOidcLoginState() {
+    clearAccountSession();
+    clearCredentials();
+    clearOidcSessionStorage();
+}
 export function isOidcLoginExpiredError(error) {
     if (error instanceof LinxOidcLoginExpiredError)
         return true;
     if (typeof error === 'object' && error !== null && 'authExpired' in error && error.authExpired === true)
         return true;
+    if (isOidcTransientRemoteError(error))
+        return false;
     const message = error instanceof Error ? error.message : String(error);
     const normalized = message.toLowerCase();
     return normalized.includes('linx cloud login expired')
         || normalized.includes('invalid refresh credentials')
         || normalized.includes('missing static client secret')
         || normalized.includes('invalid_client')
-        || normalized.includes('invalid_grant');
+        || normalized.includes('invalid_grant')
+        || normalized.includes('invalid_redirect_uri')
+        || normalized.includes('unauthorized_client');
+}
+export function isOidcTransientRemoteError(error) {
+    if (error instanceof LinxOidcTransientRemoteError)
+        return true;
+    if (typeof error === 'object' && error !== null && 'transientRemote' in error && error.transientRemote === true)
+        return true;
+    return resolveOidcTransientRemoteStatus(error) !== null;
+}
+function normalizeOidcSessionRefreshError(error) {
+    if (isOidcTransientRemoteError(error)) {
+        return new LinxOidcTransientRemoteError(error);
+    }
+    if (isOidcLoginExpiredError(error)) {
+        clearStoredOidcLoginState();
+        return new LinxOidcLoginExpiredError(error);
+    }
+    return error instanceof Error ? error : new Error(String(error));
+}
+function resolveOidcTransientRemoteStatus(error) {
+    if (typeof error === 'object' && error !== null) {
+        const candidates = [
+            error.status,
+            error.statusCode,
+            error.response?.status,
+            error.cause?.status,
+            error.cause?.statusCode,
+        ];
+        for (const candidate of candidates) {
+            if (typeof candidate === 'number' && TRANSIENT_OIDC_REMOTE_STATUS_CODES.has(candidate)) {
+                return candidate;
+            }
+            if (typeof candidate === 'string') {
+                const parsed = Number.parseInt(candidate, 10);
+                if (TRANSIENT_OIDC_REMOTE_STATUS_CODES.has(parsed)) {
+                    return parsed;
+                }
+            }
+        }
+    }
+    const message = error instanceof Error ? error.message : String(error);
+    const normalized = message.toLowerCase();
+    if (normalized.includes('502') && normalized.includes('bad gateway')) {
+        return 502;
+    }
+    if (normalized.includes('503') && normalized.includes('service unavailable')) {
+        return 503;
+    }
+    if (normalized.includes('504') && normalized.includes('gateway timeout')) {
+        return 504;
+    }
+    if (normalized.includes('expected 200 ok') && normalized.includes('bad gateway')) {
+        return 502;
+    }
+    return null;
+}
+function fallbackOidcTransientStatusMessage(status) {
+    switch (status) {
+        case 502:
+            return 'Bad Gateway';
+        case 503:
+            return 'Service Unavailable';
+        case 504:
+            return 'Gateway Timeout';
+        default:
+            return 'Service Unavailable';
+    }
 }
+export const __testReuseExistingBrowserConsentLogin = reuseExistingBrowserConsentLogin;
+export const __testNormalizeOidcSessionRefreshError = normalizeOidcSessionRefreshError;
 //# sourceMappingURL=oidc-auth.js.map