npm - @usesophi/sophi-web-sdk - Versions diffs - 0.1.0-beta.7 → 0.1.0 - Mend

@usesophi/sophi-web-sdk 0.1.0-beta.7 → 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/README.md CHANGED Viewed

@@ -3,33 +3,13 @@
 [![npm version](https://img.shields.io/npm/v/sophi-web-sdk.svg)](https://www.npmjs.com/package/sophi-web-sdk)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
-A framework-agnostic, TypeScript-first SDK for embedding the Sophi AI widget into any web application. Works seamlessly with vanilla JavaScript, React, Vue, Svelte, Angular, Next.js, and more.
+TypeScript-first SDK for embedding the Sophi widget in web applications.
-## Features
-- 🚀 **Framework Agnostic** - Works with any JavaScript framework or vanilla JS
-- 📦 **Zero Dependencies** - Lightweight with no runtime dependencies
-- 🔒 **Secure** - Built-in authentication and origin validation
-- 🔑 **Automatic Session Management** - Handles authentication automatically
-- 💪 **TypeScript First** - Full type definitions included
-- 🎯 **Event-Driven** - Clean event-based API for loose coupling
-- 📱 **Modern** - ESM and CommonJS support with tree-shaking
-- 🎨 **Flexible** - Client controls all UX (toasts, errors, styling)
-- 📁 **Well-Structured** - Modular architecture for easy maintenance
-## Security Note
-**Q: Will users see my API URLs?**
-**A: Yes, and that's okay!**
-API URLs in client-side code are always visible to users (they can see them in browser DevTools network tab). This is **normal and safe** because:
+## Documentation
-- ✅ API URLs themselves aren't secrets - they're just endpoints
-- ✅ **Real security comes from your `apiKey` and `clientId` validation on the server**
-- ✅ Your API should authenticate and authorize every request
-- ✅ Never put actual secrets (API keys, tokens) in client code - they come from your backend
+For setup, integration guides, API details, and framework examples, see:
-Think of API URLs like a street address - it's public information. The security is the lock on the door (your API authentication).
+[https://docs.usesophi.com/frontend-integration/](https://docs.usesophi.com/frontend-integration/)
 ## Installation
@@ -37,444 +17,41 @@ Think of API URLs like a street address - it's public information. The security
 npm install sophi-web-sdk
 ```
-Or with yarn:
-```bash
-yarn add sophi-web-sdk
-```
-Or with pnpm:
-```bash
-pnpm add sophi-web-sdk
-```
 ## Quick Start
-### Vanilla JavaScript
-```javascript
+```typescript
 import { SophiWidget } from "sophi-web-sdk";
 const widget = new SophiWidget();
-// Initialize with authentication (async)
 await widget.init({
-  apiKey: "your-api-key", // From parent app
-  clientId: "your-client-id", // From parent app
-  userId: "user-12345", // Current user ID
+  apiKey: "your-api-key",
+  clientId: "your-client-id",
+  userId: "user-12345",
   container: "#sophi-widget",
-  environment: "production", // API URL determined automatically
-  metadata: {
-    // Optional metadata
-    theme: "dark",
-    plan: "premium",
-  },
-  onReady: () => console.log("Widget ready!"),
+  environment: "production",
 });
-// Listen for events
 widget.on("add_to_cart", (data) => {
-  console.log("Products to add:", data.products);
-  // Handle cart logic here
-});
-```
-> **Note**: The `init()` method is now async and automatically handles authentication with the Sophi API before loading the widget. The API URL is determined automatically based on the `environment` setting.
-### React
-```tsx
-import { useEffect, useRef } from "react";
-import { SophiWidget } from "sophi-web-sdk";
-function MyComponent() {
-  const widgetRef = useRef<SophiWidget | null>(null);
-  useEffect(() => {
-    const widget = new SophiWidget();
-    widgetRef.current = widget;
-    // Async initialization
-    const initWidget = async () => {
-      try {
-        await widget.init({
-          apiKey: "your-api-key",
-          clientId: "your-client-id",
-          userId: "user-12345",
-          container: "#sophi-widget",
-          environment: "production",
-          metadata: { theme: "dark" },
-        });
-        widget.on("add_to_cart", (data) => {
-          // Handle add to cart
-        });
-      } catch (error) {
-        console.error("Failed to initialize widget:", error);
-      }
-    };
-    initWidget();
-    return () => widget.destroy();
-  }, []);
-  return <div id="sophi-widget" />;
-}
-```
-See `examples/react-example/` for a complete React example with custom hooks.
-### Vue 3
-```vue
-<template>
-  <div id="sophi-widget"></div>
-</template>
-<script setup>
-import { onMounted, onUnmounted } from "vue";
-import { SophiWidget } from "sophi-web-sdk";
-let widget = null;
-onMounted(() => {
-  widget = new SophiWidget();
-  widget.init({
-    apiKey: "your-api-key",
-    container: "#sophi-widget",
-  });
-  widget.on("add_to_cart", (data) => {
-    // Handle add to cart
-  });
-});
-onUnmounted(() => {
-  if (widget) {
-    widget.destroy();
-  }
-});
-</script>
-```
-### Svelte
-```svelte
-<script>
-  import { onMount, onDestroy } from 'svelte';
-  import { SophiWidget } from 'sophi-web-sdk';
-  let widget;
-  onMount(() => {
-    widget = new SophiWidget();
-    widget.init({
-      apiKey: 'your-api-key',
-      container: '#sophi-widget',
-    });
-    widget.on('add_to_cart', (data) => {
-      // Handle add to cart
-    });
-  });
-  onDestroy(() => {
-    if (widget) {
-      widget.destroy();
-    }
-  });
-</script>
-<div id="sophi-widget"></div>
-```
-### Angular
-```typescript
-import { Component, OnInit, OnDestroy } from "@angular/core";
-import { SophiWidget } from "sophi-web-sdk";
-@Component({
-  selector: "app-widget",
-  template: '<div id="sophi-widget"></div>',
-})
-export class WidgetComponent implements OnInit, OnDestroy {
-  private widget: SophiWidget | null = null;
-  ngOnInit() {
-    this.widget = new SophiWidget();
-    this.widget.init({
-      apiKey: "your-api-key",
-      container: "#sophi-widget",
-    });
-    this.widget.on("add_to_cart", (data) => {
-      // Handle add to cart
-    });
-  }
-  ngOnDestroy() {
-    if (this.widget) {
-      this.widget.destroy();
-    }
-  }
-}
-```
-## API Reference
-### `SophiWidget`
-The main class for interacting with the Sophi widget.
-#### `init(config: SophiConfig): Promise<void>`
-Initialize the widget with configuration. This method is now **async** and handles authentication automatically.
-```typescript
-await widget.init({
-  // Required fields
-  apiKey: "your-api-key", // Your API key (x-api-key header)
-  clientId: "your-client-id", // Client ID (x-sophi-client-id header)
-  userId: "user-12345", // External user ID from your app
-  container: "#sophi-widget", // CSS selector or HTMLElement
-  // Optional fields
-  environment: "production", // 'test' | 'staging' | 'production' (determines API URL)
-  metadata: {
-    // Custom metadata for the session
-    theme: "dark",
-    plan: "premium",
-  },
-  width: "100%", // Widget width (default: '100%')
-  height: "600px", // Widget height (default: '600px')
-  onReady: () => {}, // Callback when widget is ready
-  onError: (error) => {}, // Callback for errors
+  console.log(data.products);
 });
 ```
-**Authentication Flow:**
-1. SDK validates configuration
-2. SDK determines API URL based on `environment` setting
-3. SDK calls authentication API with `apiKey`, `clientId`, and `userId`
-4. API returns session data (accessToken, sessionId, etc.)
-5. SDK creates iframe and sends session data via postMessage
-6. Widget is ready to use
-**Environment to API URL Mapping:**
-- `test`: Test API URL (for development/testing)
-- `staging`: Staging API URL
-- `production`: Production API URL (default)
+## Basic API
-See [AUTHENTICATION.md](./AUTHENTICATION.md) for detailed authentication documentation.
-#### `sendUserData(data: UserData): void`
-Send user data to the widget via postMessage.
-```typescript
-widget.sendUserData({
-  userId: "user-123",
-  email: "user@example.com",
-  name: "John Doe",
-  // Add any custom fields
-  customField: "value",
-});
-```
-#### `on<K extends EventName>(event: K, handler: EventHandler<SophiEventMap[K]>): void`
-Register an event listener.
-```typescript
-// Listen for add_to_cart events
-widget.on("add_to_cart", (data) => {
-  console.log("Products:", data.products);
-});
-// Listen for ready events
-widget.on("ready", () => {
-  console.log("Widget is ready");
-});
-// Listen for error events
-widget.on("error", (error) => {
-  console.error("Widget error:", error);
-});
-```
-#### `off<K extends EventName>(event: K, handler: EventHandler<SophiEventMap[K]>): void`
-Unregister an event listener.
-```typescript
-const handler = (data) => console.log(data);
-widget.on("add_to_cart", handler);
-widget.off("add_to_cart", handler);
-```
-#### `show(): void`
-Show the widget (sets display to 'block').
-```typescript
-widget.show();
-```
-#### `hide(): void`
-Hide the widget (sets display to 'none').
-```typescript
-widget.hide();
-```
-#### `destroy(): void`
-Destroy the widget and cleanup all resources.
-```typescript
-widget.destroy();
-```
-#### `isReady(): boolean`
-Check if the widget is initialized and ready.
-```typescript
-if (widget.isReady()) {
-  widget.sendUserData({ userId: "123" });
-}
-```
-## TypeScript Support
-The SDK is written in TypeScript and includes full type definitions.
-```typescript
-import { SophiWidget, SophiConfig, AddToCartEvent, UserData } from "sophi-web-sdk";
-const config: SophiConfig = {
-  apiKey: "your-api-key",
-  container: "#widget",
-};
-const widget = new SophiWidget();
-widget.init(config);
-widget.on("add_to_cart", (data: AddToCartEvent) => {
-  data.products.forEach((product) => {
-    console.log(product.productId, product.variantId);
-  });
-});
-```
-## Events
-### `add_to_cart`
-Fired when the widget requests to add products to the cart.
-```typescript
-interface AddToCartEvent {
-  products: Array<{
-    productId: string;
-    variantId?: string;
-  }>;
-}
-widget.on("add_to_cart", (data: AddToCartEvent) => {
-  // Handle cart logic
-  // Show toast notifications
-  // Update cart UI
-});
-```
-### `ready`
-Fired when the widget iframe is ready.
-```typescript
-widget.on("ready", () => {
-  console.log("Widget is ready");
-});
-```
-### `error`
-Fired when an error occurs.
-```typescript
-widget.on("error", (error: Error) => {
-  console.error("Error:", error.message);
-});
-```
-## Security
-The SDK includes comprehensive security features:
-- **Authentication**: Automatic session creation with JWT tokens
-- **Origin Validation**: All postMessage events are validated against the iframe origin
-- **Message Validation**: Incoming messages are validated for correct structure
-- **Type Safety**: TypeScript ensures type-safe message handling
-- **Secure Headers**: API key and client ID sent via secure headers
-- **Token Expiration**: Session tokens include expiration timestamps
-See [AUTHENTICATION.md](./AUTHENTICATION.md) for security best practices.
-## Documentation
-- **[AUTHENTICATION.md](./AUTHENTICATION.md)** - Detailed authentication flow and API documentation
-- **[FILE_STRUCTURE.md](./FILE_STRUCTURE.md)** - Project structure and architecture
-- **[GETTING_STARTED.md](./GETTING_STARTED.md)** - Complete getting started guide
-- **[QUICK_START_TESTING.md](./QUICK_START_TESTING.md)** - Quick testing guide
-- **[TESTING.md](./TESTING.md)** - Comprehensive testing documentation
+- `init(config)` - Initializes the widget
+- `on(event, handler)` - Subscribes to widget events
+- `off(event, handler)` - Unsubscribes from widget events
+- `sendUserData(data)` - Sends user data updates
+- `show()` / `hide()` - Controls widget visibility
+- `isReady()` - Returns widget readiness status
+- `destroy()` - Cleans up widget resources
 ## Examples
-Check out the `examples/` directory for complete working examples:
-- **`examples/vanilla-html/`** - Pure HTML/JS example with no build step
-- **`examples/react-example/`** - React example with custom hooks
-To run the examples:
-```bash
-# Vanilla HTML example
-cd examples/vanilla-html
-# Open index.html in your browser
-# React example
-cd examples/react-example
-npm install
-npm run dev
-```
-Both examples include the new authentication flow with all required fields.
-## Browser Support
-- Chrome (latest)
-- Firefox (latest)
-- Safari (latest)
-- Edge (latest)
-## Contributing
-Contributions are welcome! Please feel free to submit a Pull Request.
+- `examples/vanilla-html/`
+- `examples/react-example/`
 ## License
-MIT © Sophi
-## Support
-For issues and questions, please open an issue on GitHub or contact support@sophi.ai.
+MIT

package/dist/index.cjs CHANGED Viewed

@@ -1,3 +1,3 @@
-'use strict';var m={ADD_TO_CART:"add_to_cart",READY:"ready",ERROR:"error",SEND_TO_CHECKOUT:"send_to_checkout"},d={USER_DATA:"user_data",CONFIG:"config",UPDATE_USER_CART:"update_user_cart",DESTROY:"destroy",SESSION_DATA:"session_data",CLIENT_ID_UPDATED:"client_id_updated"};var s=class s{constructor(e,t){this.namespace=s.sanitizeNamespace(e),this.maxAgeSeconds=t?.maxAgeSeconds??s.DEFAULT_MAX_AGE_SECONDS,this.keys={...s.DEFAULT_KEYS,...t?.keys??{}};}static buildNamespace(e,t){return s.sanitizeNamespace(`sophi-widget-${e}-${t}`)}static canUseCookies(){return typeof document<"u"&&typeof document.cookie=="string"}set(e,t){s.canUseCookies()&&(document.cookie=`${this.formatName(e)}=${encodeURIComponent(t)}; path=/; max-age=${this.maxAgeSeconds}; samesite=lax`);}get(e){return s.canUseCookies()?s.readRawCookie(this.formatName(e)):null}delete(e){s.canUseCookies()&&(document.cookie=`${this.formatName(e)}=; path=/; max-age=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; samesite=lax`);}clearAll(){Object.keys(this.keys).forEach(e=>{this.delete(e);});}formatName(e){return `${this.namespace}-${this.keys[e]}`}static readRawCookie(e){let t=document.cookie.split(";").map(r=>r.trim());for(let r of t){if(!r)continue;let[i,...n]=r.split("=");if(i===e)return decodeURIComponent(n.join("="))}return null}static sanitizeNamespace(e){let t=e.replace(/[^a-zA-Z0-9_-]/g,"");return t.length?t:"sophi-widget"}};s.DEFAULT_MAX_AGE_SECONDS=3600*24*30,s.DEFAULT_KEYS={clientId:"client-id",externalUserId:"external-user-id",sessionData:"session-data",metadataHash:"metadata-hash"};var o=s;var c=class{constructor(e,t,r){this.clientId=null;this.userId=void 0;this.storedUserId=null;this.baseUrl=e,this.apiKey=t,this.userId=r,this.cookieManager=new o(o.buildNamespace(e,t)),this.restoreSessionFromCookies();}async createSession(e){let t=`${this.baseUrl}/api/v1/auth/client/session`;try{let r={"Content-Type":"application/json",Accept:"application/json","x-api-key":this.apiKey};if(this.clientId){r["x-sophi-client-id"]=this.clientId;let p=this.storedUserId||null,l=this.userId||null;p!==l&&l&&(await this.mergeUser({userId:l}),this.storedUserId=l);}let i=await fetch(t,{method:"POST",headers:r,body:JSON.stringify({externalUserId:this.userId,metadata:e.metadata})});if(!i.ok){let p=await i.text();throw new Error(`Failed to create session: ${i.status} ${i.statusText}. ${p}`)}let n=await i.json();if(!n.success)throw new Error(`Session creation failed: ${n.message||"Unknown error"}`);if(!n.data)throw new Error("Session data is missing from response");return this.persistClientInfo(n.data.clientId,this.userId),n.data}catch(r){throw r instanceof Error?r:new Error(`Unexpected error during session creation: ${String(r)}`)}}validateSessionData(e){return !!(e.accessToken&&e.sessionId&&e.clientId&&e.companyCode&&e.expiresAt)}async mergeUser(e){let t=`${this.baseUrl}/api/v1/auth/client/info`;try{if(!this.clientId)throw new Error("Client ID is not set. Please create a session first.");let r=await fetch(t,{method:"PATCH",headers:{"Content-Type":"application/json",Accept:"application/json","x-api-key":this.apiKey,"x-sophi-client-id":this.clientId},body:JSON.stringify({externalUserId:e.userId})});if(!r.ok){let n=await r.text();throw new Error(`Failed to merge user: ${r.status} ${r.statusText}. ${n}`)}let i=await r.json();if(!i.success)throw new Error(`User merge failed: ${i.message||"Unknown error"}`);if(!i.data)throw new Error("Merge data is missing from response");return i.data}catch(r){throw r instanceof Error?r:new Error(`Unexpected error during user merge: ${String(r)}`)}}persistClientInfo(e,t){this.clientId=e,this.userId=t,this.storedUserId=t||null,o.canUseCookies()&&(this.cookieManager.set("clientId",e),this.cookieManager.set("externalUserId",t||""));}restoreSessionFromCookies(){if(!o.canUseCookies())return;let e=this.cookieManager.get("externalUserId"),t=this.cookieManager.get("clientId");if(this.storedUserId=e||null,!t)return;let r=e||null,i=this.userId||null;if(r===i){this.clientId=t,!this.userId&&e&&(this.userId=e);return}if(r&&!i){this.clearStoredClientInfo();return}if(r&&i&&r!==i){this.clearStoredClientInfo();return}if(!r&&i){this.clientId=t;return}}clearStoredClientInfo(){this.clientId=null,this.storedUserId=null,o.canUseCookies()&&this.cookieManager.clearAll();}};var f={WIDTH:"100%",HEIGHT:"600px"},g={test:"http://10.0.2.127:80",production:"https://api.usesophi.com"},I={CREATE_SESSION:"/api/v1/auth/client/session"},a={MISSING_API_KEY:"API key is required and must be a string",MISSING_CLIENT_ID:"Client ID is required and must be a string",MISSING_USER_ID:"User ID is required and must be a string",MISSING_CONTAINER:"Container is required",MISSING_IFRAME_URL:"Iframe URL is required and must be a string",INVALID_IFRAME_URL:"Invalid iframe URL",INVALID_ENVIRONMENT:"Invalid environment. Must be 'dev', 'test', 'staging', or 'production'",CONTAINER_NOT_FOUND:"Container element not found",NOT_INITIALIZED:"Widget not initialized. Call init() first.",ALREADY_INITIALIZED:"Sophi Widget is already initialized. Call destroy() first to reinitialize.",SESSION_CREATION_FAILED:"Failed to create authentication session",INVALID_SESSION_DATA:"Invalid session data received from API",YOU_NEED_TO_INIT_THE_WIDGET_FIRST:"You need to initialize the widget first. Call init() before calling this method."};var h=class{constructor(){this.config=null;this.iframe=null;this.container=null;this.eventListeners=new Map;this.messageHandler=null;this.isInitialized=false;this.iframeOrigin=null;this.sessionData=null;this.apiService=null;this.apiBaseUrl=null;}async init(e){if(this.isInitialized){console.warn(a.ALREADY_INITIALIZED);return}try{this.validateConfig(e),this.config=this.formatConfig(e),this.apiBaseUrl=g[e.environment||"production"],this.apiService=new c(this.apiBaseUrl,e.apiKey,e.userId),await this.createAuthSession(),this.isInitialized=!0;try{let t=new URL(this.getIframeUrl());this.iframeOrigin=t.origin;}catch{let r=new Error(`${a.INVALID_IFRAME_URL}: ${this.getIframeUrl()}`);throw this.emitError(r),r}if(this.container=this.resolveContainer(e.container),!this.container){let t=new Error(a.CONTAINER_NOT_FOUND);throw this.emitError(t),t}this.createIframe(),this.setupMessageListener(),this.iframe?.addEventListener("load",()=>{setTimeout(()=>{this.sendSessionData();},100);}),e.onReady&&e.onReady();}catch(t){this.isInitialized=false,this.config=null,this.apiService=null,this.sessionData=null;let r=t instanceof Error?t:new Error(String(t));throw this.emitError(r),r}}sendUserData(e){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let t={type:d.USER_DATA,data:e};this.postMessage(t);}updateUserCart(e){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let t={type:d.UPDATE_USER_CART,data:e};this.postMessage(t);}onDestroy(){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let e={type:d.DESTROY};this.postMessage(e);}on(e,t){this.eventListeners.has(e)||this.eventListeners.set(e,new Set),this.eventListeners.get(e).add(t);}off(e,t){let r=this.eventListeners.get(e);r&&r.delete(t);}show(){this.iframe&&(this.iframe.style.display="block");}hide(){this.iframe&&(this.iframe.style.display="none");}async destroy(){this.onDestroy(),await new Promise(e=>setTimeout(e,300)),this.messageHandler&&(window.removeEventListener("message",this.messageHandler),this.messageHandler=null),this.iframe&&this.iframe.parentNode&&(this.iframe.parentNode.removeChild(this.iframe),this.iframe=null),this.eventListeners.clear(),this.config=null,this.container=null,this.isInitialized=false,this.iframeOrigin=null,this.sessionData=null,this.apiService=null;}isReady(){return this.isInitialized&&this.iframe!==null}validateConfig(e){if(!e.apiKey||typeof e.apiKey!="string")throw new Error(a.MISSING_API_KEY);if(e.userId&&typeof e.userId!="string")throw new Error(a.MISSING_USER_ID);if(!e.container)throw new Error(a.MISSING_CONTAINER)}formatConfig(e){return {...e,userId:e.userId||void 0}}async createAuthSession(){if(!this.config||!this.apiService)throw new Error(a.NOT_INITIALIZED);try{if(this.sessionData=await this.apiService.createSession({externalUserId:this.config.userId,metadata:this.config.metadata}),!this.apiService.validateSessionData(this.sessionData))throw new Error(a.INVALID_SESSION_DATA)}catch(e){throw e instanceof Error?e:new Error(a.SESSION_CREATION_FAILED)}}sendSessionData(){if(!this.sessionData){console.warn("Session data not available");return}let e={type:d.SESSION_DATA,data:{...this.sessionData,userName:this.config?.userName}};this.postMessage(e);}resolveContainer(e){return typeof e=="string"?document.querySelector(e):e}createIframe(){if(!this.container||!this.config)return;let e=document.createElement("iframe");e.src=this.buildIframeUrl(),e.style.width=this.config.width||"100%",e.style.height=this.config.height||"600px",e.style.border="none",e.title="Sophi AI Widget",e.allow="microphone; camera",this.container.appendChild(e),this.iframe=e;}buildIframeUrl(){return this.config?new URL(this.getIframeUrl()).toString():""}getIframeUrl(){return this.config?this.config.environment==="production"?"https://app.usesophi.com":"http://localhost:5173":""}setupMessageListener(){this.messageHandler=e=>{if(this.iframeOrigin&&e.origin!==this.iframeOrigin){console.warn(`Received message from untrusted origin: ${e.origin}`);return}try{let t=typeof e.data=="string"?JSON.parse(e.data):e.data;this.handleIncomingMessage(t);}catch(t){console.error("Error processing message from iframe:",t);}},window.addEventListener("message",this.messageHandler);}handleIncomingMessage(e){switch(e.type){case "add_to_cart":this.isValidAddToCartMessage(e.data)?this.emit("add_to_cart",e.data):(console.error("Invalid add_to_cart message structure:",e.data),this.emitError(new Error("Invalid add_to_cart message format")));break;case "send_to_checkout":this.emit("send_to_checkout",void 0);break;case "ready":this.emit("ready",void 0);break;case "error":let t=e.data instanceof Error?e.data:new Error(String(e.data));this.emitError(t);break;default:console.warn("Unknown message type:",e);}}isValidAddToCartMessage(e){if(!e||typeof e!="object")return  false;let t=e;return Array.isArray(t.products)?t.products.every(r=>{if(!r||typeof r!="object")return  false;let i=r;return !(typeof i.productId!="string"||i.variantId!==void 0&&typeof i.variantId!="string")}):false}postMessage(e){if(!this.iframe||!this.iframe.contentWindow||!this.iframeOrigin){console.warn("Cannot send message: iframe not ready");return}try{this.iframe.contentWindow.postMessage(e,this.iframeOrigin);}catch(t){console.error("Error sending message to iframe:",t),this.emitError(t instanceof Error?t:new Error(String(t)));}}emit(e,t){let r=this.eventListeners.get(e);r&&r.forEach(i=>{try{i(t);}catch(n){console.error(`Error in ${e} event handler:`,n);}});}emitError(e){this.emit("error",e),this.config?.onError&&this.config.onError(e);}};
-exports.API_BASE_URLS=g;exports.API_ENDPOINTS=I;exports.ApiService=c;exports.DEFAULT_CONFIG=f;exports.ERROR_MESSAGES=a;exports.IncomingMessageTypes=m;exports.OutgoingMessageTypes=d;exports.SophiWidget=h;//# sourceMappingURL=index.cjs.map
+'use strict';var f={ADD_TO_CART:"add_to_cart",READY:"ready",ERROR:"error",SEND_TO_CHECKOUT:"send_to_checkout"},o={USER_DATA:"user_data",CONFIG:"config",UPDATE_USER_CART:"update_user_cart",DESTROY:"destroy",SESSION_DATA:"session_data",CLIENT_ID_UPDATED:"client_id_updated",LAYOUT_CONFIG:"layout_config",TOGGLE_HISTORY:"toggle_history"};var s=class s{constructor(e,t){this.namespace=s.sanitizeNamespace(e),this.maxAgeSeconds=t?.maxAgeSeconds??s.DEFAULT_MAX_AGE_SECONDS,this.keys={...s.DEFAULT_KEYS,...t?.keys??{}};}static buildNamespace(e,t){return s.sanitizeNamespace(`sophi-widget-${e}-${t}`)}static canUseCookies(){return typeof document<"u"&&typeof document.cookie=="string"}set(e,t){s.canUseCookies()&&(document.cookie=`${this.formatName(e)}=${encodeURIComponent(t)}; path=/; max-age=${this.maxAgeSeconds}; samesite=lax`);}get(e){return s.canUseCookies()?s.readRawCookie(this.formatName(e)):null}delete(e){s.canUseCookies()&&(document.cookie=`${this.formatName(e)}=; path=/; max-age=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; samesite=lax`);}clearAll(){Object.keys(this.keys).forEach(e=>{this.delete(e);});}formatName(e){return `${this.namespace}-${this.keys[e]}`}static readRawCookie(e){let t=document.cookie.split(";").map(i=>i.trim());for(let i of t){if(!i)continue;let[r,...n]=i.split("=");if(r===e)return decodeURIComponent(n.join("="))}return null}static sanitizeNamespace(e){let t=e.replace(/[^a-zA-Z0-9_-]/g,"");return t.length?t:"sophi-widget"}};s.DEFAULT_MAX_AGE_SECONDS=3600*24*30,s.DEFAULT_KEYS={clientId:"client-id",externalUserId:"external-user-id",sessionData:"session-data",metadataHash:"metadata-hash"};var d=s;var c=class{constructor(e,t,i){this.clientId=null;this.userId=void 0;this.storedUserId=null;this.baseUrl=e,this.apiKey=t,this.userId=i,this.cookieManager=new d(d.buildNamespace(e,t)),this.restoreSessionFromCookies();}async createSession(e){let t=`${this.baseUrl}/api/v1/auth/client/session`;try{let i={"Content-Type":"application/json",Accept:"application/json","x-api-key":this.apiKey};if(this.clientId){i["x-sophi-client-id"]=this.clientId;let g=this.storedUserId||null,l=this.userId||null;g!==l&&l&&(await this.mergeUser({userId:l}),this.storedUserId=l);}let r=await fetch(t,{method:"POST",headers:i,body:JSON.stringify({externalUserId:this.userId,metadata:e.metadata})});if(!r.ok){let g=await r.text();throw new Error(`Failed to create session: ${r.status} ${r.statusText}. ${g}`)}let n=await r.json();if(!n.success)throw new Error(`Session creation failed: ${n.message||"Unknown error"}`);if(!n.data)throw new Error("Session data is missing from response");return this.persistClientInfo(n.data.clientId,this.userId),n.data}catch(i){throw i instanceof Error?i:new Error(`Unexpected error during session creation: ${String(i)}`)}}validateSessionData(e){return !!(e.accessToken&&e.sessionId&&e.clientId&&e.companyCode&&e.expiresAt)}async mergeUser(e){let t=`${this.baseUrl}/api/v1/auth/client/info`;try{if(!this.clientId)throw new Error("Client ID is not set. Please create a session first.");let i=await fetch(t,{method:"PATCH",headers:{"Content-Type":"application/json",Accept:"application/json","x-api-key":this.apiKey,"x-sophi-client-id":this.clientId},body:JSON.stringify({externalUserId:e.userId})});if(!i.ok){let n=await i.text();throw new Error(`Failed to merge user: ${i.status} ${i.statusText}. ${n}`)}let r=await i.json();if(!r.success)throw new Error(`User merge failed: ${r.message||"Unknown error"}`);if(!r.data)throw new Error("Merge data is missing from response");return r.data}catch(i){throw i instanceof Error?i:new Error(`Unexpected error during user merge: ${String(i)}`)}}persistClientInfo(e,t){this.clientId=e,this.userId=t,this.storedUserId=t||null,d.canUseCookies()&&(this.cookieManager.set("clientId",e),this.cookieManager.set("externalUserId",t||""));}restoreSessionFromCookies(){if(!d.canUseCookies())return;let e=this.cookieManager.get("externalUserId"),t=this.cookieManager.get("clientId");if(this.storedUserId=e||null,!t)return;let i=e||null,r=this.userId||null;if(i===r){this.clientId=t,!this.userId&&e&&(this.userId=e);return}if(i&&!r){this.clearStoredClientInfo();return}if(i&&r&&i!==r){this.clearStoredClientInfo();return}if(!i&&r){this.clientId=t;return}}clearStoredClientInfo(){this.clientId=null,this.storedUserId=null,d.canUseCookies()&&this.cookieManager.clearAll();}};var m={WIDTH:"100%",HEIGHT:"600px"},p={test:"http://10.0.2.127:80",production:"https://api.usesophi.com"},I={CREATE_SESSION:"/api/v1/auth/client/session"},a={MISSING_API_KEY:"API key is required and must be a string",MISSING_CLIENT_ID:"Client ID is required and must be a string",MISSING_USER_ID:"User ID is required and must be a string",MISSING_CONTAINER:"Container is required",MISSING_IFRAME_URL:"Iframe URL is required and must be a string",INVALID_IFRAME_URL:"Invalid iframe URL",INVALID_ENVIRONMENT:"Invalid environment. Must be 'dev', 'test', 'staging', or 'production'",CONTAINER_NOT_FOUND:"Container element not found",NOT_INITIALIZED:"Widget not initialized. Call init() first.",ALREADY_INITIALIZED:"Sophi Widget is already initialized. Call destroy() first to reinitialize.",SESSION_CREATION_FAILED:"Failed to create authentication session",INVALID_SESSION_DATA:"Invalid session data received from API",YOU_NEED_TO_INIT_THE_WIDGET_FIRST:"You need to initialize the widget first. Call init() before calling this method."};var h=class{constructor(){this.config=null;this.iframe=null;this.container=null;this.eventListeners=new Map;this.messageHandler=null;this.isInitialized=false;this.iframeOrigin=null;this.sessionData=null;this.apiService=null;this.apiBaseUrl=null;}async init(e){if(this.isInitialized){console.warn(a.ALREADY_INITIALIZED);return}try{this.validateConfig(e),this.config=this.formatConfig(e),this.apiBaseUrl=p[e.environment||"production"],this.apiService=new c(this.apiBaseUrl,e.apiKey,e.userId),await this.createAuthSession(),this.isInitialized=!0;try{let t=new URL(this.getIframeUrl());this.iframeOrigin=t.origin;}catch{let i=new Error(`${a.INVALID_IFRAME_URL}: ${this.getIframeUrl()}`);throw this.emitError(i),i}if(this.container=this.resolveContainer(e.container),!this.container){let t=new Error(a.CONTAINER_NOT_FOUND);throw this.emitError(t),t}this.createIframe(),this.setupMessageListener(),this.iframe?.addEventListener("load",()=>{setTimeout(()=>{this.sendSessionData(),this.config?.layout&&this.sendLayoutConfig();},100);}),e.onReady&&e.onReady();}catch(t){this.isInitialized=false,this.config=null,this.apiService=null,this.sessionData=null;let i=t instanceof Error?t:new Error(String(t));throw this.emitError(i),i}}sendUserData(e){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let t={type:o.USER_DATA,data:e};this.postMessage(t);}sendToggleHistory(){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let e={type:o.TOGGLE_HISTORY};this.postMessage(e);}updateUserCart(e){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let t={type:o.UPDATE_USER_CART,data:e};this.postMessage(t);}onDestroy(){if(!this.isInitialized||!this.iframe){console.warn("Widget not initialized. Call init() first.");return}let e={type:o.DESTROY};this.postMessage(e);}on(e,t){this.eventListeners.has(e)||this.eventListeners.set(e,new Set),this.eventListeners.get(e).add(t);}off(e,t){let i=this.eventListeners.get(e);i&&i.delete(t);}show(){this.iframe&&(this.iframe.style.display="block");}hide(){this.iframe&&(this.iframe.style.display="none");}async destroy(){this.onDestroy(),await new Promise(e=>setTimeout(e,300)),this.messageHandler&&(window.removeEventListener("message",this.messageHandler),this.messageHandler=null),this.iframe&&this.iframe.parentNode&&(this.iframe.parentNode.removeChild(this.iframe),this.iframe=null),this.eventListeners.clear(),this.config=null,this.container=null,this.isInitialized=false,this.iframeOrigin=null,this.sessionData=null,this.apiService=null;}isReady(){return this.isInitialized&&this.iframe!==null}validateConfig(e){if(!e.apiKey||typeof e.apiKey!="string")throw new Error(a.MISSING_API_KEY);if(e.userId&&typeof e.userId!="string")throw new Error(a.MISSING_USER_ID);if(!e.container)throw new Error(a.MISSING_CONTAINER)}formatConfig(e){return {...e,userId:e.userId||void 0}}async createAuthSession(){if(!this.config||!this.apiService)throw new Error(a.NOT_INITIALIZED);try{if(this.sessionData=await this.apiService.createSession({externalUserId:this.config.userId,metadata:this.config.metadata}),!this.apiService.validateSessionData(this.sessionData))throw new Error(a.INVALID_SESSION_DATA)}catch(e){throw e instanceof Error?e:new Error(a.SESSION_CREATION_FAILED)}}sendSessionData(){if(!this.sessionData){console.warn("Session data not available");return}let e={type:o.SESSION_DATA,data:{...this.sessionData,userName:this.config?.userName}};this.postMessage(e);}sendLayoutConfig(){if(!this.config?.layout)return;let e={type:o.LAYOUT_CONFIG,data:this.config.layout};this.postMessage(e);}resolveContainer(e){return typeof e=="string"?document.querySelector(e):e}createIframe(){if(!this.container||!this.config)return;let e=document.createElement("iframe");e.src=this.buildIframeUrl(),e.style.width=this.config.width||"100%",e.style.height=this.config.height||"600px",e.style.border="none",e.title="Sophi AI Widget",e.allow="microphone; camera",this.container.appendChild(e),this.iframe=e;}buildIframeUrl(){return this.config?new URL(this.getIframeUrl()).toString():""}getIframeUrl(){return this.config?this.config.environment==="production"?"https://app.usesophi.com":"http://localhost:5173":""}setupMessageListener(){this.messageHandler=e=>{if(this.iframeOrigin&&e.origin!==this.iframeOrigin){console.warn(`Received message from untrusted origin: ${e.origin}`);return}try{let t=typeof e.data=="string"?JSON.parse(e.data):e.data;this.handleIncomingMessage(t);}catch(t){console.error("Error processing message from iframe:",t);}},window.addEventListener("message",this.messageHandler);}handleIncomingMessage(e){switch(e.type){case "add_to_cart":this.isValidAddToCartMessage(e.data)?this.emit("add_to_cart",e.data):(console.error("Invalid add_to_cart message structure:",e.data),this.emitError(new Error("Invalid add_to_cart message format")));break;case "send_to_checkout":this.emit("send_to_checkout",void 0);break;case "ready":this.emit("ready",void 0);break;case "error":let t=e.data instanceof Error?e.data:new Error(String(e.data));this.emitError(t);break;default:console.warn("Unknown message type:",e);}}isValidAddToCartMessage(e){if(!e||typeof e!="object")return  false;let t=e;return Array.isArray(t.products)?t.products.every(i=>{if(!i||typeof i!="object")return  false;let r=i;return !(typeof r.productId!="string"||r.variantId!==void 0&&typeof r.variantId!="string")}):false}postMessage(e){if(!this.iframe||!this.iframe.contentWindow||!this.iframeOrigin){console.warn("Cannot send message: iframe not ready");return}try{this.iframe.contentWindow.postMessage(e,this.iframeOrigin);}catch(t){console.error("Error sending message to iframe:",t),this.emitError(t instanceof Error?t:new Error(String(t)));}}emit(e,t){let i=this.eventListeners.get(e);i&&i.forEach(r=>{try{r(t);}catch(n){console.error(`Error in ${e} event handler:`,n);}});}emitError(e){this.emit("error",e),this.config?.onError&&this.config.onError(e);}};
+exports.API_BASE_URLS=p;exports.API_ENDPOINTS=I;exports.ApiService=c;exports.DEFAULT_CONFIG=m;exports.ERROR_MESSAGES=a;exports.IncomingMessageTypes=f;exports.OutgoingMessageTypes=o;exports.SophiWidget=h;//# sourceMappingURL=index.cjs.map
 //# sourceMappingURL=index.cjs.map