datakeen-session-react 1.1.165 → 1.1.167

package/dist/esm/types/session.js.map

@@ -1 +1 @@
-{"version":3,"file":"session.js","sources":["../../../../src/types/session.ts"],"sourcesContent":["import type React from \"react\";\n\nexport interface SessionConfig {\n  selfie?: boolean;\n  requireMobile?: boolean;\n}\n\nexport interface DatakeenSessionProps {\n  sessionId: string;\n  sessionConfig?: SessionConfig;\n  apiBaseUrl?: string; // Optional API base URL for dynamic environment configuration\n}\n\nexport interface UseSessionReturn {\n  SessionComponent: React.ReactElement;\n}\n\nexport type stepObject = {\n  setStep: (step: number) => void;\n  goBack: () => void;\n  goToNextStep: (\n    currentNodeId: string,\n    template: SessionTemplate,\n    handle?: string,\n  ) => void;\n  step: number;\n  canGoBack: boolean;\n};\n\nexport interface ProcessingStep {\n  title: string;\n  subtitle: string;\n  hasError?: boolean;\n}\n\nexport type ConditionTokenType = \"variable\" | \"control\" | \"operator\" | \"input\";\n\nexport interface ConditionToken {\n  type: ConditionTokenType;\n  value: string;\n  label?: string;\n  sourceNodeId?: string;\n}\n\n/**\n * Type for custom field value types\n */\nexport type CustomFieldValueType =\n  | \"text\"\n  | \"enum\"\n  | \"number\"\n  | \"boolean\"\n  | \"date\"\n  | \"email\"\n  | \"address\"\n  | \"list\";\n\n/**\n * Display formats supported for date fields (top-level and list columns).\n */\nexport type DateDisplayFormat = \"dd/mm/yyyy\" | \"mm/dd/yyyy\" | \"yyyy-mm-dd\";\n\nexport const DEFAULT_DATE_DISPLAY_FORMAT: DateDisplayFormat = \"dd/mm/yyyy\";\n\n/**\n * Column definition for a list-type custom field\n */\nexport interface ListColumn {\n  label: string;\n  type: \"text\" | \"enum\" | \"date\" | \"email\";\n  options?: string[]; // required when type === 'enum'\n  placeholder?: string; // text/email/date — shown to the end user\n  regex?: string; // text — JS regex source (without slashes)\n  regexErrorMessage?: string; // text — message displayed when regex fails\n  dateFormat?: DateDisplayFormat; // date — display format expected\n}\n\n/**\n * Interface for custom field definition\n */\nexport interface CustomField {\n  id: string;\n  label: string;\n  placeholder?: string;\n  description?: string;\n  valueType: CustomFieldValueType;\n  enumOptions?: string[];\n  listColumns?: ListColumn[]; // for list type: column definitions\n  minRows?: number; // for list type: minimum rows expected\n  required?: boolean;\n  regex?: string; // text — JS regex source (without slashes)\n  regexErrorMessage?: string; // text — message displayed when regex fails\n  dateFormat?: DateDisplayFormat; // date — display format expected\n}\n\n/**\n * Interface for session template node\n */\nexport interface SessionTemplateNode {\n  id: string;\n  type: string;\n  title: string;\n  description: string;\n  informationType?:\n  | \"identity\"\n  | \"identity-legal\"\n  | \"contact\"\n  | \"address\"\n  | \"nationality\"\n  | \"custom\";\n  position: {\n    x: number;\n    y: number;\n  };\n  options: unknown[];\n  selectedOptions: string[];\n  requiredDocumentType?: string;\n  isRequired: boolean;\n  order: number;\n  optionalFields?: string[];\n  requiredFields?: string[];\n  pageTitle?: string;\n  pageDescription?: string;\n  // Properties for document-collection node type\n  allowedDocumentTypes?: Array<{\n    id: string;\n    name: string;\n    /**\n     * Optional side information coming from the template.\n     * When provided and equals to two (\"two\", 2, \"double\", \"recto-verso\"),\n     * consumers should allow uploading two sides (front/back).\n     */\n    side?: string | number;\n  }>;\n  allowedAddingMethods?: string[];\n  introductionPage?: {\n    title?: string;\n    description?: string;\n  };\n  documentSelection?: {\n    title?: string;\n    description?: string;\n  };\n  // Start node specific properties\n  welcomeTitle?: string;\n  welcomeSubtitle?: string;\n  welcomeDescription?: string;\n  welcomeImage?: string;\n  qrCodeTitle?: string;\n  qrCodeDescription?: string;\n  showLegacyCGU?: boolean; // default: true — rétrocompatibilité\n\n  // Legal consent node specific properties\n  consentDescription?: string;\n  consentDescription2?: string;\n  cguUrl?: string;\n  privacyPolicyUrl?: string;\n  checkboxText?: string;\n  // Identity control specific properties\n  automaticPhotoCapture?: boolean;\n  acceptedCountries?: AcceptedCountry[];\n  // End node specific properties\n  callbackURL?: string | null;\n  // Condition node specific properties\n  conditionExpression?: string;\n  conditionTokens?: ConditionToken[];\n  conditionFalseErrorMessage?: string;\n  conditionMaxRetries?: number;\n  conditionMaxRetryAction?: \"end-journey\" | \"force-true\";\n  conditionFalseMode?: \"retry\" | \"loop\";\n\n  // External verification specific properties\n  targetApi?: \"INSEE\";\n  referenceNodeId?: string;\n  referenceNodeType?:\n  | \"information-input\"\n  | \"document-collection\"\n  | \"identity-control\";\n  referenceField?: \"siren\" | \"siret\";\n  referenceVariable?: string;\n  // Custom form fields (for information-input with type 'custom')\n  customFields?: CustomField[];\n\n  // Electronic signature specific properties\n  templateId?: string;\n  external_id?: string;\n  fieldMappings?: Array<{\n    sourceFieldId: string;\n    label: string;\n    docusealType: string;\n    readonly: boolean;\n    role?: string;\n    sourceNodeId?: string;\n  }>;\n  /** If set, the generated PDF from this upstream pdf-generation node will be used as the document to sign */\n  sourcePdfNodeId?: string;\n\n  // PDF generation node specific properties\n  // Note: htmlTemplate is intentionally NOT included — it is server-side only and never sent to the client\n  pdfMode?: \"upload\" | \"html-template\";\n  sourceNodeIds?: string[];\n\n  // retry properties\n  allowResubmission: boolean;\n  maxResubmissionAttempts?: number;\n}\n\n/**\n * Interface for accepted countries\n */\nexport interface AcceptedCountry {\n  code: string;\n  documents: {\n    passport: string[];\n    idCard: string[];\n    driverLicense: string[];\n    residencePermit: string[];\n    pinkDriverLicense: string[];\n  };\n}\n\n/**\n * Interface for session template edge\n */\nexport interface SessionTemplateEdge {\n  id: string;\n  source: string;\n  target: string;\n  sourceHandle?: string;\n  targetHandle?: string;\n  conditionValue?: string;\n}\n\n/**\n * Interface for platform information\n */\nexport interface PlatformInfo {\n  mobile: boolean;\n  desktop: boolean;\n  backoffice: boolean;\n}\n\n/**\n * Interface for session template\n */\nexport interface SessionTemplate {\n  id: string;\n  name: string;\n  description: string;\n  version: string;\n  languages: string[];\n  nodes: SessionTemplateNode[];\n  edges: SessionTemplateEdge[];\n  groupId: string;\n  userId: string | null;\n  created_at: string;\n  updated_at: string;\n  platforms?: PlatformInfo;\n  logo?: string;\n  showQRCode?: boolean;\n  buttonBgColor?: string;\n  buttonTextColor?: string;\n}\n\n/**\n * Interface for session data\n */\nexport interface SessionData {\n  id: string;\n  userId: string | null;\n  token: string;\n  templateId: string;\n  templateKey: string;\n  expireTime: number;\n  status: string;\n  result: Record<string, unknown>;\n  landingPage: unknown;\n  withSelfie: boolean | null;\n  groupId: string | null;\n  userInput: Record<string, unknown>;\n  contactInfo?: {\n    email: string;\n    phoneNumber: string;\n  };\n  callbackURL?: string | null;\n  webhookURL: string;\n  analysisTemplateId: string | null;\n  userAgent: unknown[];\n  mobile: boolean;\n  analysisId: string | null;\n  currentStep?: number;\n  createdAt: string;\n  updatedAt: string;\n  auditTrail: unknown[];\n  user: unknown | null;\n  analysis: unknown[];\n  documents: unknown[];\n  template: SessionTemplate;\n  retryCounts?: Record<string, number>; // nodeId -> retry count\n}\n\nexport interface ClientInfo {\n  ip?: string;\n  location?: string;\n  device: string;\n  browser: string;\n  os: string;\n}\n"],"names":[],"mappings":"AA8DO,IAAM,2BAA2B,GAAsB;;;;"}
+{"version":3,"file":"session.js","sources":["../../../../src/types/session.ts"],"sourcesContent":["import type React from \"react\";\n\nexport interface SessionConfig {\n  selfie?: boolean;\n  requireMobile?: boolean;\n}\n\nexport interface DatakeenSessionProps {\n  sessionId: string;\n  sessionConfig?: SessionConfig;\n  apiBaseUrl?: string; // Optional API base URL for dynamic environment configuration\n}\n\nexport interface UseSessionReturn {\n  SessionComponent: React.ReactElement;\n}\n\nexport type stepObject = {\n  setStep: (step: number) => void;\n  goBack: () => void;\n  goToNextStep: (\n    currentNodeId: string,\n    template: SessionTemplate,\n    handle?: string,\n  ) => void;\n  step: number;\n  canGoBack: boolean;\n};\n\nexport interface ProcessingStep {\n  title: string;\n  subtitle: string;\n  hasError?: boolean;\n}\n\nexport type ConditionTokenType = \"variable\" | \"control\" | \"operator\" | \"input\";\n\nexport interface ConditionToken {\n  type: ConditionTokenType;\n  value: string;\n  label?: string;\n  sourceNodeId?: string;\n}\n\n/**\n * Type for custom field value types\n */\nexport type CustomFieldValueType =\n  | \"text\"\n  | \"enum\"\n  | \"number\"\n  | \"boolean\"\n  | \"date\"\n  | \"email\"\n  | \"address\"\n  | \"list\";\n\n/**\n * Display formats supported for date fields (top-level and list columns).\n */\nexport type DateDisplayFormat = \"dd/mm/yyyy\" | \"mm/dd/yyyy\" | \"yyyy-mm-dd\";\n\nexport const DEFAULT_DATE_DISPLAY_FORMAT: DateDisplayFormat = \"dd/mm/yyyy\";\n\n/**\n * Column definition for a list-type custom field\n */\nexport interface ListColumn {\n  label: string;\n  type: \"text\" | \"enum\" | \"date\" | \"email\";\n  options?: string[]; // required when type === 'enum'\n  placeholder?: string; // text/email/date — shown to the end user\n  regex?: string; // text — JS regex source (without slashes)\n  regexErrorMessage?: string; // text — message displayed when regex fails\n  dateFormat?: DateDisplayFormat; // date — display format expected\n}\n\n/**\n * Interface for custom field definition\n */\nexport interface CustomField {\n  id: string;\n  label: string;\n  placeholder?: string;\n  description?: string;\n  valueType: CustomFieldValueType;\n  enumOptions?: string[];\n  listColumns?: ListColumn[]; // for list type: column definitions\n  minRows?: number; // for list type: minimum rows expected\n  required?: boolean;\n  regex?: string; // text — JS regex source (without slashes)\n  regexErrorMessage?: string; // text — message displayed when regex fails\n  dateFormat?: DateDisplayFormat; // date — display format expected\n  lockedFromApi?: boolean;\n  userInputKey?: string;\n}\n\n/**\n * Interface for session template node\n */\nexport interface SessionTemplateNode {\n  id: string;\n  type: string;\n  title: string;\n  description: string;\n  informationType?:\n  | \"identity\"\n  | \"identity-legal\"\n  | \"contact\"\n  | \"address\"\n  | \"nationality\"\n  | \"custom\";\n  position: {\n    x: number;\n    y: number;\n  };\n  options: unknown[];\n  selectedOptions: string[];\n  requiredDocumentType?: string;\n  isRequired: boolean;\n  order: number;\n  optionalFields?: string[];\n  requiredFields?: string[];\n  pageTitle?: string;\n  pageDescription?: string;\n  // Properties for document-collection node type\n  allowedDocumentTypes?: Array<{\n    id: string;\n    name: string;\n    /**\n     * Optional side information coming from the template.\n     * When provided and equals to two (\"two\", 2, \"double\", \"recto-verso\"),\n     * consumers should allow uploading two sides (front/back).\n     */\n    side?: string | number;\n  }>;\n  allowedAddingMethods?: string[];\n  introductionPage?: {\n    title?: string;\n    description?: string;\n  };\n  documentSelection?: {\n    title?: string;\n    description?: string;\n  };\n  // Start node specific properties\n  welcomeTitle?: string;\n  welcomeSubtitle?: string;\n  welcomeDescription?: string;\n  welcomeImage?: string;\n  qrCodeTitle?: string;\n  qrCodeDescription?: string;\n  showLegacyCGU?: boolean; // default: true — rétrocompatibilité\n\n  // Legal consent node specific properties\n  consentDescription?: string;\n  consentDescription2?: string;\n  cguUrl?: string;\n  privacyPolicyUrl?: string;\n  checkboxText?: string;\n  // Identity control specific properties\n  automaticPhotoCapture?: boolean;\n  acceptedCountries?: AcceptedCountry[];\n  // End node specific properties\n  callbackURL?: string | null;\n  // Condition node specific properties\n  conditionExpression?: string;\n  conditionTokens?: ConditionToken[];\n  conditionFalseErrorMessage?: string;\n  conditionMaxRetries?: number;\n  conditionMaxRetryAction?: \"end-journey\" | \"force-true\";\n  conditionFalseMode?: \"retry\" | \"loop\";\n\n  // External verification specific properties\n  targetApi?: \"INSEE\";\n  referenceNodeId?: string;\n  referenceNodeType?:\n  | \"information-input\"\n  | \"document-collection\"\n  | \"identity-control\";\n  referenceField?: \"siren\" | \"siret\";\n  referenceVariable?: string;\n  // Custom form fields (for information-input with type 'custom')\n  customFields?: CustomField[];\n\n  // Electronic signature specific properties\n  templateId?: string;\n  external_id?: string;\n  fieldMappings?: Array<{\n    sourceFieldId: string;\n    label: string;\n    docusealType: string;\n    readonly: boolean;\n    role?: string;\n    sourceNodeId?: string;\n  }>;\n  /** If set, the generated PDF from this upstream pdf-generation node will be used as the document to sign */\n  sourcePdfNodeId?: string;\n\n  // PDF generation node specific properties\n  // Note: htmlTemplate is intentionally NOT included — it is server-side only and never sent to the client\n  pdfMode?: \"upload\" | \"html-template\";\n  sourceNodeIds?: string[];\n\n  // retry properties\n  allowResubmission: boolean;\n  maxResubmissionAttempts?: number;\n}\n\n/**\n * Interface for accepted countries\n */\nexport interface AcceptedCountry {\n  code: string;\n  documents: {\n    passport: string[];\n    idCard: string[];\n    driverLicense: string[];\n    residencePermit: string[];\n    pinkDriverLicense: string[];\n  };\n}\n\n/**\n * Interface for session template edge\n */\nexport interface SessionTemplateEdge {\n  id: string;\n  source: string;\n  target: string;\n  sourceHandle?: string;\n  targetHandle?: string;\n  conditionValue?: string;\n}\n\n/**\n * Interface for platform information\n */\nexport interface PlatformInfo {\n  mobile: boolean;\n  desktop: boolean;\n  backoffice: boolean;\n}\n\n/**\n * Interface for session template\n */\nexport interface SessionTemplate {\n  id: string;\n  name: string;\n  description: string;\n  version: string;\n  languages: string[];\n  nodes: SessionTemplateNode[];\n  edges: SessionTemplateEdge[];\n  groupId: string;\n  userId: string | null;\n  created_at: string;\n  updated_at: string;\n  platforms?: PlatformInfo;\n  logo?: string;\n  showQRCode?: boolean;\n  buttonBgColor?: string;\n  buttonTextColor?: string;\n}\n\n/**\n * Interface for session data\n */\nexport interface SessionData {\n  id: string;\n  userId: string | null;\n  token: string;\n  templateId: string;\n  templateKey: string;\n  expireTime: number;\n  status: string;\n  result: Record<string, unknown>;\n  landingPage: unknown;\n  withSelfie: boolean | null;\n  groupId: string | null;\n  userInput: Record<string, unknown>;\n  contactInfo?: {\n    email: string;\n    phoneNumber: string;\n  };\n  callbackURL?: string | null;\n  webhookURL: string;\n  analysisTemplateId: string | null;\n  userAgent: unknown[];\n  mobile: boolean;\n  analysisId: string | null;\n  currentStep?: number;\n  createdAt: string;\n  updatedAt: string;\n  auditTrail: unknown[];\n  user: unknown | null;\n  analysis: unknown[];\n  documents: unknown[];\n  template: SessionTemplate;\n  retryCounts?: Record<string, number>; // nodeId -> retry count\n}\n\nexport interface ClientInfo {\n  ip?: string;\n  location?: string;\n  device: string;\n  browser: string;\n  os: string;\n}\n"],"names":[],"mappings":"AA8DO,IAAM,2BAA2B,GAAsB;;;;"}

package/dist/esm/utils/fileConverter.js

@@ -1,5 +1,5 @@
 import { __awaiter, __generator } from '../node_modules/tslib/tslib.es6.js';
-import heic2any from 'heic2any';
+import heic2any from '../_virtual/heic2any.js';
 
 /**
  * File conversion utilities for document upload

package/docs/JOURNEY_NODE_BUILDER.md

@@ -127,6 +127,35 @@ Si un type est inconnu, le SDK affiche un écran "Étape non supportée" et perm
 - Test de navigation (step suivant, branch, fallback).
 - Test des cas d’erreur de configuration.
 
+## Champs verrouillés depuis l'API — nœud `information-input`
+
+Le nœud `information-input` supporte des champs marqués `lockedFromApi: true` dans la configuration du journey. Ces champs sont pré-remplis par le partenaire à la création de session et **ne doivent jamais apparaître** dans le formulaire présenté au Mandataire.
+
+### Comportement dans le SDK
+
+Dans `CustomFormFields.tsx`, les champs verrouillés sont filtrés **avant** le rendu :
+
+```tsx
+const visibleFields = customFields.filter((f) => !f.lockedFromApi);
+```
+
+Le champ n'est pas rendu du tout (pas de `disabled`, pas de `readOnly`) — il est complètement absent du DOM.
+
+### Types concernés
+
+Dans `src/types/session.ts`, l'interface `CustomField` expose :
+
+| Propriété | Type | Description |
+|---|---|---|
+| `lockedFromApi` | `boolean \| undefined` | Si `true`, le champ est exclu du formulaire |
+| `userInputKey` | `string \| undefined` | Clé correspondante dans `session.userInput` côté backend |
+
+### Important
+
+Le filtre côté SDK est une couche d'UX uniquement. La protection réelle est assurée côté backend via `stripLockedFields()` dans `session.service.ts` — qui réinjecte la valeur verrouillée sur chaque soumission SDK, même si un client malveillant tente de la modifier.
+
+---
+
 ## Point d'attention condition
 
 La logique détaillée du nœud condition est documentée dans:

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "datakeen-session-react",
-  "version": "1.1.165",
+  "version": "1.1.167",
   "description": "React SDK component to manage and render Datakeen session experiences easily.",
   "publishConfig": {
     "access": "public",