dexie-cloud-addon 4.4.10 → 4.4.12

package/dist/modern/dexie-cloud-addon.js

@@ -8,7 +8,7 @@
  *
  * ==========================================================================
  *
- * Version 4.4.10, Sat Apr 04 2026
+ * Version 4.4.12, Mon May 25 2026
  *
  * https://dexie.org
  *
@@ -1623,192 +1623,145 @@ function findBlobRefs(obj) {
 }
 
 /**
- * Eager Blob Downloader
+ * BlobSavingQueue - Queues resolved blobs for saving back to IndexedDB.
  *
- * Downloads unresolved blobs in the background when blobMode='eager'.
- * Called after sync completes to prefetch blobs for offline access.
+ * This is an internal collaborator of BlobDownloadTracker and is not
+ * intended to be used directly by middleware or other code. See
+ * BlobDownloadTracker.enqueueSave().
  *
- * Progress is tracked automatically via liveQuery in blobProgress.ts —
- * no manual progress reporting needed here.
- */
-/**
- * Download all unresolved blobs in the background.
- *
- * This is called when blobMode='eager' (default) after sync completes.
- * BlobRef URLs are signed (SAS tokens) so no auth header needed.
+ * Uses setTimeout(fn, 0) instead of queueMicrotask to completely isolate
+ * from Dexie's Promise.PSD context. This prevents the save operation
+ * from inheriting any ongoing transaction.
  *
- * Each blob is saved atomically using Table.update() to avoid race conditions.
+ * Each blob is saved atomically using downCore transaction with the specific
+ * keyPath to avoid race conditions with other property changes.
  */
-function downloadUnresolvedBlobs(db, downloading$, signal) {
-    return __awaiter(this, void 0, void 0, function* () {
-        var _a;
-        const debugLog = (msg) => console.debug(`[dexie-cloud] ${msg}`);
-        debugLog('Eager download: Starting...');
-        // Scan for unresolved blobs
-        const syncedTables = getSyncableTables(db);
-        let hasWork = false;
-        for (const table of syncedTables) {
-            try {
-                const hasIndex = !!table.schema.idxByName['_hasBlobRefs'];
-                if (!hasIndex)
-                    continue;
-                const count = yield table.where('_hasBlobRefs').equals(1).count();
-                if (count > 0) {
-                    hasWork = true;
-                    break;
-                }
-            }
-            catch (_b) {
-                // skip
-            }
+class BlobSavingQueue {
+    constructor(db, onPersisted) {
+        this.queue = [];
+        this.isProcessing = false;
+        this.drainResolvers = [];
+        this.db = db;
+        this.onPersisted = onPersisted;
+    }
+    /**
+     * Queue a resolved blob for saving.
+     * Only the specific blob property will be updated atomically.
+     */
+    saveBlobs(tableName, primaryKey, resolvedBlobs) {
+        this.queue.push({
+            tableName,
+            primaryKey,
+            resolvedBlobs,
+        });
+        this.startConsumer();
+    }
+    /**
+     * Returns a promise that resolves when the queue is empty AND no item
+     * is currently being processed. Used by callers that need to know when
+     * all previously enqueued saves have been persisted to IndexedDB before
+     * making decisions based on the on-disk state (e.g., the eager blob
+     * downloader looping over `_hasBlobRefs=1` rows in chunks).
+     *
+     * Note: New work enqueued AFTER drain() is called does NOT extend the
+     * wait. Callers that race against concurrent producers should treat the
+     * returned promise as "queue was empty at some point after this call".
+     */
+    drain() {
+        if (!this.isProcessing && this.queue.length === 0) {
+            return Promise.resolve();
         }
-        if (!hasWork) {
-            debugLog('Eager download: No blobs remaining, exiting');
+        return new Promise((resolve) => {
+            this.drainResolvers.push(resolve);
+        });
+    }
+    /**
+     * Start the consumer if not already processing.
+     * Uses setTimeout(fn, 0) to completely break out of any
+     * Dexie transaction context (Promise.PSD).
+     */
+    startConsumer() {
+        if (this.isProcessing)
             return;
-        }
-        setDownloadingState(downloading$, true);
-        try {
-            debugLog(`Eager download: Found ${syncedTables.length} syncable tables: ${syncedTables.map((t) => t.name).join(', ')}`);
-            for (const table of syncedTables) {
-                if (signal === null || signal === void 0 ? void 0 : signal.aborted)
-                    ;
-                try {
-                    // Check if table has _hasBlobRefs index
-                    const hasIndex = table.schema.indexes.some((idx) => idx.name === '_hasBlobRefs');
-                    if (!hasIndex)
-                        continue;
-                    // Query objects with _hasBlobRefs marker
-                    const unresolvedObjects = yield table
-                        .where('_hasBlobRefs')
-                        .equals(1)
-                        .toArray();
-                    debugLog(`Eager download: Table ${table.name} has ${unresolvedObjects.length} unresolved objects`);
-                    const databaseUrl = (_a = db.cloud.options) === null || _a === void 0 ? void 0 : _a.databaseUrl;
-                    if (!databaseUrl)
-                        throw new Error('Database URL is required to download blobs');
-                    // Download up to MAX_CONCURRENT blobs in parallel
-                    const MAX_CONCURRENT = 6;
-                    const primaryKey = table.schema.primKey;
-                    // Filter to actionable objects first
-                    const pending = unresolvedObjects.filter((obj) => {
-                        if (!hasUnresolvedBlobRefs(obj))
-                            return false;
-                        const key = primaryKey.keyPath
-                            ? Dexie.getByKeyPath(obj, primaryKey.keyPath)
-                            : undefined;
-                        return key !== undefined;
-                    });
-                    // Process in parallel with concurrency limit
-                    let i = 0;
-                    const runNext = () => __awaiter(this, void 0, void 0, function* () {
-                        while (i < pending.length) {
-                            if (signal === null || signal === void 0 ? void 0 : signal.aborted)
-                                ;
-                            const obj = pending[i++];
-                            const key = Dexie.getByKeyPath(obj, primaryKey.keyPath);
-                            try {
-                                // Refresh token per object — cheap (returns cached) but ensures
-                                // we pick up renewed tokens during long download sessions.
-                                const resolvedBlobs = [];
-                                yield resolveAllBlobRefs(obj, databaseUrl, resolvedBlobs, '', new WeakMap(), db.blobDownloadTracker);
-                                const updateSpec = {
-                                    _hasBlobRefs: undefined,
-                                };
-                                for (const blob of resolvedBlobs) {
-                                    updateSpec[blob.keyPath] = blob.data;
-                                }
-                                debugLog(`Eager download: Updating ${table.name}:${key} with ${resolvedBlobs.length} blobs`);
-                                yield table.update(key, updateSpec);
-                                // liveQuery in blobProgress.ts auto-detects this change
-                            }
-                            catch (err) {
-                                console.error(`Failed to download blobs for ${table.name}:${key}:`, err);
-                            }
-                        }
-                    });
-                    // Launch up to MAX_CONCURRENT workers
-                    const workers = [];
-                    for (let w = 0; w < Math.min(MAX_CONCURRENT, pending.length); w++) {
-                        workers.push(runNext());
-                    }
-                    yield Promise.all(workers);
-                }
-                catch (err) {
-                    // Table might not have _hasBlobRefs index or other issues - skip silently
-                }
-            }
-        }
-        finally {
-            setDownloadingState(downloading$, false);
-        }
-    });
-}
-
-//const hasSW = 'serviceWorker' in navigator;
-let hasComplainedAboutSyncEvent = false;
-function registerSyncEvent(db, purpose) {
-    return __awaiter(this, void 0, void 0, function* () {
-        try {
-            // Send sync event to SW:
-            const sw = yield navigator.serviceWorker.ready;
-            if (purpose === 'push' && sw.sync) {
-                yield sw.sync.register(`dexie-cloud:${db.name}`);
-            }
-            if (sw.active) {
-                // Use postMessage for pull syncs and for browsers not supporting sync event (Firefox, Safari).
-                // Also chromium based browsers with sw.sync as a fallback for sleepy sync events not taking action for a while.
-                sw.active.postMessage({
-                    type: 'dexie-cloud-sync',
-                    dbName: db.name,
-                    purpose,
-                });
-            }
-            else {
-                throw new Error(`Failed to trigger sync - there's no active service worker`);
+        this.isProcessing = true;
+        // Use setTimeout to completely isolate from Dexie's PSD context
+        // queueMicrotask would risk inheriting the current transaction
+        setTimeout(() => {
+            this.processQueue();
+        }, 0);
+    }
+    /**
+     * Process all queued blobs.
+     * Runs in a completely isolated context (no inherited transaction).
+     * Uses atomic updates to avoid race conditions.
+     */
+    processQueue() {
+        const item = this.queue.shift();
+        if (!item) {
+            this.isProcessing = false;
+            // Fire any pending drain() waiters. New saveBlobs() calls that
+            // arrive after this point will start a fresh processing cycle
+            // and have their own drain() semantics.
+            const resolvers = this.drainResolvers;
+            if (resolvers.length > 0) {
+                this.drainResolvers = [];
+                for (const resolve of resolvers)
+                    resolve();
             }
             return;
         }
-        catch (e) {
-            if (!hasComplainedAboutSyncEvent) {
-                console.debug(`Dexie Cloud: Could not register sync event`, e);
-                hasComplainedAboutSyncEvent = true;
+        // Atomic update of just the blob property
+        this.db
+            .transaction('rw', item.tableName, (tx) => {
+            const trans = tx.idbtrans;
+            trans.disableChangeTracking = true; // Don't regard this as a change for sync purposes
+            trans.disableAccessControl = true; // Bypass any access control checks since this is an internal operation
+            trans.disableBlobResolve = true; // Custom flag to skip blob resolve middleware during this transaction
+            const updateSpec = {};
+            for (const blob of item.resolvedBlobs) {
+                updateSpec[blob.keyPath] = blob.data;
             }
-        }
-    });
-}
-function registerPeriodicSyncEvent(db) {
-    return __awaiter(this, void 0, void 0, function* () {
-        var _a;
-        try {
-            // Register periodicSync event to SW:
-            // @ts-ignore
-            const { periodicSync } = yield navigator.serviceWorker.ready;
-            if (periodicSync) {
-                try {
-                    yield periodicSync.register(`dexie-cloud:${db.name}`, (_a = db.cloud.options) === null || _a === void 0 ? void 0 : _a.periodicSync);
-                    console.debug(`Dexie Cloud: Successfully registered periodicsync event for ${db.name}`);
-                }
-                catch (e) {
-                    console.debug(`Dexie Cloud: Failed to register periodic sync. Your PWA must be installed to allow background sync.`, e);
+            tx.table(item.tableName).update(item.primaryKey, (obj) => {
+                // Check that object still has the same unresolved blob refs before applying update (i.e. it hasn't been modified since we read it)
+                for (const blob of item.resolvedBlobs) {
+                    // Verify atomicity - none of the blob properties has been modified since we read it. If any of them was modified, skip updating this item to avoid overwriting user changes.
+                    const currentValue = Dexie.getByKeyPath(obj, blob.keyPath);
+                    if (currentValue === undefined) {
+                        // Blob property was removed - skip updating this blob
+                        continue;
+                    }
+                    if (!isBlobRef(currentValue)) {
+                        // Blob property was modified to a non-blob-ref value - skip updating this blob
+                        continue;
+                    }
+                    if (currentValue.ref !== blob.ref) {
+                        // Blob property was modified - skip updating this blob
+                        return; // Stop. Another items has been queued to fully fix the object.
+                    }
+                    Dexie.setByKeyPath(obj, blob.keyPath, blob.data);
                 }
-            }
-            else {
-                console.debug(`Dexie Cloud: periodicSync not supported.`);
-            }
-        }
-        catch (e) {
-            console.debug(`Dexie Cloud: Could not register periodicSync for ${db.name}`, e);
-        }
-    });
-}
-
-function triggerSync(db, purpose) {
-    if (db.cloud.usingServiceWorker) {
-        console.debug('registering sync event');
-        registerSyncEvent(db, purpose);
-    }
-    else {
-        db.localSyncEvent.next({ purpose });
+                delete obj._hasBlobRefs; // Clear the _hasBlobRefs marker if all refs was resolved.
+            });
+            // Note: we intentionally do NOT clear trans.mutatedParts here.
+            // Letting the normal mutation signal through means the
+            // blobProgress liveQuery (and any user-defined liveQuery that
+            // depends on the resolved fields) wakes up and reflects progress
+            // as blobs land in IndexedDB.
+        })
+            .catch((error) => {
+            console.error(`Error saving resolved blobs on ${item.tableName}:${item.primaryKey}:`, error);
+        })
+            .finally(() => {
+            // At this point, the transaction has completed (either successfully or with error),
+            // and the blobs have been saved (or failed to save).
+            // Notify the owner (BlobDownloadTracker) so it can release the
+            // in-flight download cache entries for these refs. The cache was
+            // kept alive until now to maximize reuse while the blob was still
+            // in-flight (downloading or queued for save).
+            this.onPersisted(item.resolvedBlobs.map((b) => b.ref));
+            // Process next item in the queue
+            return this.processQueue();
+        });
     }
 }
 
@@ -2264,62 +2217,454 @@ function userAuthenticate(context, fetchToken, userInteraction, hints) {
                 });
                 throw error;
             }
-            let message = `We're having a problem authenticating right now.`;
-            console.error(`Error authenticating`, error);
-            if (error instanceof TypeError) {
-                const isOffline = typeof navigator !== 'undefined' && !navigator.onLine;
-                if (isOffline) {
-                    message = `You seem to be offline. Please connect to the internet and try again.`;
-                }
-                else if (typeof location !== 'undefined' &&
-                    (Dexie.debug ||
-                        location.hostname === 'localhost' ||
-                        location.hostname === '127.0.0.1')) {
-                    // The audience is most likely the developer. Suggest to whitelist the localhost origin:
-                    const whitelistCommand = `npx dexie-cloud whitelist ${location.origin}`;
-                    message = `Could not connect to server. Please verify that your origin '${location.origin}' is whitelisted using \`npx dexie-cloud whitelist\``;
-                    yield alertUser(userInteraction, 'Authentication Failed', {
-                        type: 'error',
-                        messageCode: 'GENERIC_ERROR',
-                        message,
-                        messageParams: {},
-                        copyText: whitelistCommand,
-                    }).catch(() => { });
+            let message = `We're having a problem authenticating right now.`;
+            console.error(`Error authenticating`, error);
+            if (error instanceof TypeError) {
+                const isOffline = typeof navigator !== 'undefined' && !navigator.onLine;
+                if (isOffline) {
+                    message = `You seem to be offline. Please connect to the internet and try again.`;
+                }
+                else if (typeof location !== 'undefined' &&
+                    (Dexie.debug ||
+                        location.hostname === 'localhost' ||
+                        location.hostname === '127.0.0.1')) {
+                    // The audience is most likely the developer. Suggest to whitelist the localhost origin:
+                    const whitelistCommand = `npx dexie-cloud whitelist ${location.origin}`;
+                    message = `Could not connect to server. Please verify that your origin '${location.origin}' is whitelisted using \`npx dexie-cloud whitelist\``;
+                    yield alertUser(userInteraction, 'Authentication Failed', {
+                        type: 'error',
+                        messageCode: 'GENERIC_ERROR',
+                        message,
+                        messageParams: {},
+                        copyText: whitelistCommand,
+                    }).catch(() => { });
+                }
+                else {
+                    message = `Could not connect to server. Please verify the connection.`;
+                    yield alertUser(userInteraction, 'Authentication Failed', {
+                        type: 'error',
+                        messageCode: 'GENERIC_ERROR',
+                        message,
+                        messageParams: {},
+                    }).catch(() => { });
+                }
+            }
+            throw error;
+        }
+    });
+}
+function spkiToPEM(keydata) {
+    const keydataB64 = b64encode(keydata);
+    const keydataB64Pem = formatAsPem(keydataB64);
+    return keydataB64Pem;
+}
+function formatAsPem(str) {
+    let finalString = '-----BEGIN PUBLIC KEY-----\n';
+    while (str.length > 0) {
+        finalString += str.substring(0, 64) + '\n';
+        str = str.substring(64);
+    }
+    finalString = finalString + '-----END PUBLIC KEY-----';
+    return finalString;
+}
+
+const wm$3 = new WeakMap();
+function loadCachedAccessToken(db) {
+    var _a, _b, _c, _d;
+    let cached = wm$3.get(db);
+    if (cached && cached.expiration > Date.now() + 5 * MINUTES) {
+        return Promise.resolve(cached.accessToken);
+    }
+    const currentUser = db.cloud.currentUser.value;
+    if (currentUser &&
+        currentUser.accessToken &&
+        ((_b = (_a = currentUser.accessTokenExpiration) === null || _a === void 0 ? void 0 : _a.getTime()) !== null && _b !== void 0 ? _b : Infinity) >
+            Date.now() + 5 * MINUTES) {
+        wm$3.set(db, {
+            accessToken: currentUser.accessToken,
+            expiration: (_d = (_c = currentUser.accessTokenExpiration) === null || _c === void 0 ? void 0 : _c.getTime()) !== null && _d !== void 0 ? _d : Infinity,
+        });
+        return Promise.resolve(currentUser.accessToken);
+    }
+    // If the current user is not logged in (no isLoggedIn flag), there's no
+    // token to load from the database — skip the Dexie.ignoreTransaction() call.
+    // This avoids a crash in service worker context where Dexie's Promise zone
+    // (PSD.transless.env) may be undefined when called from within an active
+    // rw transaction (e.g. during applyServerChanges).
+    if (!(currentUser === null || currentUser === void 0 ? void 0 : currentUser.isLoggedIn)) {
+        return Promise.resolve(null);
+    }
+    return Dexie.ignoreTransaction(() => loadAccessToken(db).then((user) => {
+        var _a, _b;
+        if (user === null || user === void 0 ? void 0 : user.accessToken) {
+            wm$3.set(db, {
+                accessToken: user.accessToken,
+                expiration: (_b = (_a = user.accessTokenExpiration) === null || _a === void 0 ? void 0 : _a.getTime()) !== null && _b !== void 0 ? _b : Infinity,
+            });
+        }
+        return (user === null || user === void 0 ? void 0 : user.accessToken) || null;
+    }));
+}
+
+/**
+ * Owns the full lifecycle of downloaded blobs:
+ *   1. Deduplicates concurrent downloads for the same ref.
+ *   2. Bounds the number of concurrent network fetches (MAX_CONCURRENT)
+ *      so that ad-hoc reads can't starve the HTTP connection pool. Calls
+ *      beyond the cap queue in FIFO order as slots free. The slot is held
+ *      only for the duration of the fetch — NOT until persistence — to
+ *      avoid deadlocks when a single object contains more blob refs than
+ *      MAX_CONCURRENT (a sequential resolver would otherwise hold every
+ *      slot itself while waiting for the next).
+ *   3. Keeps the in-flight promise alive after the network fetch completes,
+ *      until the blob has been persisted back to IndexedDB. This way,
+ *      readers that ask for the same ref while it is queued for saving
+ *      can piggyback on the existing promise instead of refetching.
+ *      In-flight membership and slot ownership are independent: a piggyback
+ *      reader consumes neither a slot nor extra memory beyond the existing
+ *      cached Uint8Array.
+ *   4. Persists resolved blobs via an internal BlobSavingQueue, and
+ *      releases the in-flight entry when persistence completes.
+ *
+ * Both the blob-resolve middleware and the eager blob downloader use this
+ * tracker. Instantiate once per DexieCloudDB.
+ */
+/**
+ * Maximum number of concurrent blob fetches.
+ *
+ * Historically 6 to match the HTTP/1.1 same-origin connection cap that
+ * browsers enforce. With HTTP/2 (the typical transport for Dexie Cloud
+ * today) many streams multiplex over a single TCP connection, so the
+ * old cap is overly conservative. 10 is a modest bump that still keeps
+ * memory pressure (in-flight Uint8Arrays) and server load bounded.
+ * Can be made configurable via DexieCloudOptions if a real need arises.
+ */
+const MAX_CONCURRENT = 10;
+class BlobDownloadTracker {
+    constructor(db) {
+        this.inFlight = new Map();
+        this.activeFetches = 0;
+        this.waiting = [];
+        this.db = db;
+        this.savingQueue = new BlobSavingQueue(db, (refs) => {
+            // Called by the queue when a save transaction has completed
+            // (regardless of success). Drop the in-flight cache entries now —
+            // any future reader will go through IndexedDB instead.
+            for (const ref of refs) {
+                this.inFlight.delete(ref);
+            }
+        });
+    }
+    /**
+     * Download a blob, deduplicating concurrent requests for the same ref
+     * and respecting the global fetch concurrency cap.
+     *
+     * Lifecycle:
+     *   - Slot is acquired before the fetch and released as soon as the
+     *     fetch settles (success or failure).
+     *   - The in-flight entry survives a successful fetch and lives on
+     *     until persistence completes (via enqueueSave) or releaseRefs
+     *     is called. On fetch failure, the entry is removed immediately
+     *     so a future call can retry.
+     *
+     * @param blobRef - The BlobRef to download
+     * @param dbUrl - Base URL for the database (e.g., 'https://mydb.dexie.cloud')
+     */
+    download(blobRef, dbUrl) {
+        let promise = this.inFlight.get(blobRef.ref);
+        if (!promise) {
+            promise = this.acquireSlot()
+                .then(() => this.downloadBlob(blobRef, dbUrl).finally(() => this.releaseSlot()))
+                .catch((err) => {
+                // On error, remove immediately so a future call can retry.
+                // (Slot already released by the .finally above.)
+                this.inFlight.delete(blobRef.ref);
+                throw err;
+            });
+            this.inFlight.set(blobRef.ref, promise);
+        }
+        return promise;
+    }
+    /**
+     * Queue resolved blobs for persisting back to IndexedDB.
+     * When the save transaction completes, the corresponding in-flight
+     * entries are released.
+     */
+    enqueueSave(tableName, primaryKey, resolvedBlobs) {
+        this.savingQueue.saveBlobs(tableName, primaryKey, resolvedBlobs);
+    }
+    /**
+     * Wait until all previously enqueued saves have been persisted to
+     * IndexedDB. Used by callers that need to make decisions based on
+     * on-disk state — e.g., the eager downloader looping over rows with
+     * `_hasBlobRefs=1` in chunks, where each iteration must see the
+     * previous chunk's writes before re-querying.
+     *
+     * New saves enqueued AFTER drainPendingSaves() is called do NOT extend
+     * the wait.
+     */
+    drainPendingSaves() {
+        return this.savingQueue.drain();
+    }
+    /**
+     * Release in-flight entries without going through the internal saving
+     * queue. Used when the caller persists the blobs itself, or when no
+     * primary key was available and the data won't be persisted at all.
+     */
+    releaseRefs(refs) {
+        for (const ref of refs) {
+            this.inFlight.delete(ref);
+        }
+    }
+    acquireSlot() {
+        if (this.activeFetches < MAX_CONCURRENT) {
+            this.activeFetches++;
+            return Promise.resolve();
+        }
+        return new Promise((resolve) => {
+            this.waiting.push(() => {
+                this.activeFetches++;
+                resolve();
+            });
+        });
+    }
+    releaseSlot() {
+        this.activeFetches--;
+        const next = this.waiting.shift();
+        if (next)
+            next();
+    }
+    /**
+     * Download blob data from server via proxy endpoint.
+     * Uses auth header for authentication (same as sync).
+     * When accessToken is null, the request is made without Authorization header —
+     * this allows downloading blobs from public realms (rlm-public) for
+     * unauthenticated users.
+     *
+     * @param blobRef - The BlobRef to download
+     * @param dbUrl - Base URL for the database (e.g., 'https://mydb.dexie.cloud')
+     */
+    downloadBlob(blobRef, dbUrl) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const accessToken = yield loadCachedAccessToken(this.db);
+            const downloadUrl = `${dbUrl}/blob/${blobRef.ref}`;
+            const headers = {};
+            if (accessToken) {
+                // accessToken may be null for anonymous/unauthenticated users.
+                // Public realm blobs (rlm-public) are accessible without auth.
+                // downloadBlob will omit the Authorization header when token is null.
+                headers['Authorization'] = `Bearer ${accessToken}`;
+            }
+            // cache: 'no-store' prevents the browser from storing this response in its
+            // HTTP cache. The server sets a long Expires/Cache-Control header on blob
+            // responses (blobs are immutable and content-addressed), which would
+            // otherwise cause the browser to keep a copy in its disk cache in addition
+            // to the copy we persist to IndexedDB — doubling storage for every blob.
+            // Since we always persist to IndexedDB and subsequent reads go through
+            // IndexedDB (never re-fetch), the browser cache copy is pure overhead.
+            const response = yield fetch(downloadUrl, { headers, cache: 'no-store' });
+            if (!response.ok) {
+                throw new Error(`Failed to download blob ${blobRef.ref}: ${response.status} ${response.statusText}`);
+            }
+            const arrayBuffer = yield response.arrayBuffer();
+            return new Uint8Array(arrayBuffer);
+        });
+    }
+}
+
+/**
+ * Eager Blob Downloader
+ *
+ * Downloads unresolved blobs in the background when blobMode='eager'.
+ * Called after sync completes to prefetch blobs for offline access.
+ *
+ * Strategy:
+ *   1. Snapshot the primary keys of all rows currently flagged
+ *      `_hasBlobRefs=1` for each syncable table.
+ *   2. Walk that key list in chunks via `bulkGet`. Each `bulkGet`
+ *      triggers the blob-resolve middleware, which does all the actual
+ *      work — downloading blobs (throttled and deduplicated by the
+ *      shared BlobDownloadTracker) and enqueueing them for persistence
+ *      via the internal save queue.
+ *
+ * This keeps a single, symmetric code path with normal application
+ * reads, which is important when other middlewares are present
+ * (e.g., a hypothetical encryption middleware): writes from the save
+ * queue and reads from this loop both pass through the full middleware
+ * stack, so on-disk representation stays consistent.
+ *
+ * Why a snapshot of primary keys (rather than re-querying the index)?
+ *   - Rows that get resolved by parallel application reads simply
+ *     disappear from the table contents we're about to re-fetch; the
+ *     middleware skips them since `_hasBlobRefs` is already cleared.
+ *   - Stuck rows (e.g., blob 404s) are naturally bypassed: we just
+ *     advance to the next chunk in the snapshot. No `seenKeys`
+ *     bookkeeping required.
+ *   - The snapshot is `string[]`-shaped for typical Dexie Cloud rows
+ *     (~36 bytes/UUID), so ~28K keys per MB. Acceptable for any
+ *     realistic dataset.
+ *
+ * Progress is tracked automatically via liveQuery in blobProgress.ts —
+ * no manual progress reporting needed here.
+ *
+ * --- Throughput note ---
+ * The chunk loop is sequential: bulkGet → wait for all downloads to
+ * settle → next bulkGet. The save queue drains in the background and
+ * does not block iteration (saves no longer need to be persisted before
+ * the next iteration, since we don't re-query the index). For typical
+ * blob sizes (10 KB – 10 MB) the network dominates total time. If
+ * real-world profiling later shows the per-chunk fixed cost matters,
+ * the next bulkGet could be kicked off in parallel with the current
+ * one's middleware work — but we keep it simple until measurements
+ * justify otherwise.
+ */
+// One chunk = one full saturation of the tracker's concurrency semaphore.
+// Larger chunks would only buffer more downloaded Uint8Arrays in memory
+// while waiting for the save queue to persist them, without any throughput
+// benefit (the semaphore is the gate, not the bulkGet).
+const CHUNK_SIZE = MAX_CONCURRENT - 1; // Leave one slot for parallel app reads that might also trigger downloads
+/**
+ * Download all unresolved blobs in the background.
+ *
+ * This is called when blobMode='eager' (default) after sync completes.
+ */
+function downloadUnresolvedBlobs(db, downloading$, signal) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const debugLog = (msg) => console.debug(`[dexie-cloud] ${msg}`);
+        debugLog('Eager download: Starting...');
+        const syncedTables = getSyncableTables(db).filter((t) => t.schema.indexes.some((idx) => idx.name === '_hasBlobRefs'));
+        let started = false;
+        let totalProcessed = 0;
+        try {
+            for (const table of syncedTables) {
+                if (signal === null || signal === void 0 ? void 0 : signal.aborted)
+                    ;
+                let keys;
+                try {
+                    keys = yield table.where('_hasBlobRefs').equals(1).primaryKeys();
+                }
+                catch (err) {
+                    console.error(`Eager download: failed to list unresolved rows for ${table.name}:`, err);
+                    continue;
+                }
+                if (keys.length === 0)
+                    continue;
+                if (!started) {
+                    setDownloadingState(downloading$, true);
+                    started = true;
+                }
+                debugLog(`Eager download: ${table.name} has ${keys.length} row(s)`);
+                for (let i = 0; i < keys.length; i += CHUNK_SIZE) {
+                    if (signal === null || signal === void 0 ? void 0 : signal.aborted)
+                        ;
+                    const slice = keys.slice(i, i + CHUNK_SIZE);
+                    try {
+                        // bulkGet triggers the blob-resolve middleware for each row that
+                        // still has `_hasBlobRefs=1`. Rows already resolved by parallel
+                        // reads come back without the marker and the middleware no-ops.
+                        // Rows that have been deleted return `undefined` and are
+                        // likewise skipped.
+                        yield table.bulkGet(slice);
+                    }
+                    catch (err) {
+                        console.error(`Eager download: ${table.name} chunk failed:`, err);
+                        continue;
+                    }
+                    totalProcessed += slice.length;
+                    debugLog(`Eager download: ${table.name} ${Math.min(i + CHUNK_SIZE, keys.length)}/${keys.length}`);
+                }
+            }
+            if (started) {
+                // Make sure all middleware-enqueued saves have landed before we flip
+                // `downloading$` to false — otherwise observers might see a "done"
+                // signal while writes are still in flight.
+                yield db.blobDownloadTracker.drainPendingSaves();
+                debugLog(`Eager download: done (${totalProcessed} row(s) processed)`);
+            }
+            else {
+                debugLog('Eager download: No blobs remaining, exiting');
+            }
+        }
+        finally {
+            if (started)
+                setDownloadingState(downloading$, false);
+        }
+    });
+}
+
+//const hasSW = 'serviceWorker' in navigator;
+let hasComplainedAboutSyncEvent = false;
+function registerSyncEvent(db, purpose) {
+    return __awaiter(this, void 0, void 0, function* () {
+        try {
+            // Send sync event to SW:
+            const sw = yield navigator.serviceWorker.ready;
+            if (purpose === 'push' && sw.sync) {
+                yield sw.sync.register(`dexie-cloud:${db.name}`);
+            }
+            if (sw.active) {
+                // Use postMessage for pull syncs and for browsers not supporting sync event (Firefox, Safari).
+                // Also chromium based browsers with sw.sync as a fallback for sleepy sync events not taking action for a while.
+                sw.active.postMessage({
+                    type: 'dexie-cloud-sync',
+                    dbName: db.name,
+                    purpose,
+                });
+            }
+            else {
+                throw new Error(`Failed to trigger sync - there's no active service worker`);
+            }
+            return;
+        }
+        catch (e) {
+            if (!hasComplainedAboutSyncEvent) {
+                console.debug(`Dexie Cloud: Could not register sync event`, e);
+                hasComplainedAboutSyncEvent = true;
+            }
+        }
+    });
+}
+function registerPeriodicSyncEvent(db) {
+    return __awaiter(this, void 0, void 0, function* () {
+        var _a;
+        try {
+            // Register periodicSync event to SW:
+            // @ts-ignore
+            const { periodicSync } = yield navigator.serviceWorker.ready;
+            if (periodicSync) {
+                try {
+                    yield periodicSync.register(`dexie-cloud:${db.name}`, (_a = db.cloud.options) === null || _a === void 0 ? void 0 : _a.periodicSync);
+                    console.debug(`Dexie Cloud: Successfully registered periodicsync event for ${db.name}`);
                 }
-                else {
-                    message = `Could not connect to server. Please verify the connection.`;
-                    yield alertUser(userInteraction, 'Authentication Failed', {
-                        type: 'error',
-                        messageCode: 'GENERIC_ERROR',
-                        message,
-                        messageParams: {},
-                    }).catch(() => { });
+                catch (e) {
+                    console.debug(`Dexie Cloud: Failed to register periodic sync. Your PWA must be installed to allow background sync.`, e);
                 }
             }
-            throw error;
+            else {
+                console.debug(`Dexie Cloud: periodicSync not supported.`);
+            }
+        }
+        catch (e) {
+            console.debug(`Dexie Cloud: Could not register periodicSync for ${db.name}`, e);
         }
     });
 }
-function spkiToPEM(keydata) {
-    const keydataB64 = b64encode(keydata);
-    const keydataB64Pem = formatAsPem(keydataB64);
-    return keydataB64Pem;
-}
-function formatAsPem(str) {
-    let finalString = '-----BEGIN PUBLIC KEY-----\n';
-    while (str.length > 0) {
-        finalString += str.substring(0, 64) + '\n';
-        str = str.substring(64);
+
+function triggerSync(db, purpose) {
+    if (db.cloud.usingServiceWorker) {
+        console.debug('registering sync event');
+        registerSyncEvent(db, purpose);
+    }
+    else {
+        db.localSyncEvent.next({ purpose });
     }
-    finalString = finalString + '-----END PUBLIC KEY-----';
-    return finalString;
 }
 
 // Emulate true-private property db. Why? So it's not stored in DB.
-const wm$3 = new WeakMap();
+const wm$2 = new WeakMap();
 class AuthPersistedContext {
     constructor(db, userLogin) {
-        wm$3.set(this, db);
+        wm$2.set(this, db);
         Object.assign(this, userLogin);
     }
     static load(db, userId) {
@@ -2336,7 +2681,7 @@ class AuthPersistedContext {
     }
     save() {
         return __awaiter(this, void 0, void 0, function* () {
-            const db = wm$3.get(this);
+            const db = wm$2.get(this);
             db.table('$logins').put(this);
         });
     }
@@ -4551,44 +4896,6 @@ function downloadYDocsFromServer(db_1, databaseUrl_1, _a) {
     });
 }
 
-const wm$2 = new WeakMap();
-function loadCachedAccessToken(db) {
-    var _a, _b, _c, _d;
-    let cached = wm$2.get(db);
-    if (cached && cached.expiration > Date.now() + 5 * MINUTES) {
-        return Promise.resolve(cached.accessToken);
-    }
-    const currentUser = db.cloud.currentUser.value;
-    if (currentUser &&
-        currentUser.accessToken &&
-        ((_b = (_a = currentUser.accessTokenExpiration) === null || _a === void 0 ? void 0 : _a.getTime()) !== null && _b !== void 0 ? _b : Infinity) >
-            Date.now() + 5 * MINUTES) {
-        wm$2.set(db, {
-            accessToken: currentUser.accessToken,
-            expiration: (_d = (_c = currentUser.accessTokenExpiration) === null || _c === void 0 ? void 0 : _c.getTime()) !== null && _d !== void 0 ? _d : Infinity,
-        });
-        return Promise.resolve(currentUser.accessToken);
-    }
-    // If the current user is not logged in (no isLoggedIn flag), there's no
-    // token to load from the database — skip the Dexie.ignoreTransaction() call.
-    // This avoids a crash in service worker context where Dexie's Promise zone
-    // (PSD.transless.env) may be undefined when called from within an active
-    // rw transaction (e.g. during applyServerChanges).
-    if (!(currentUser === null || currentUser === void 0 ? void 0 : currentUser.isLoggedIn)) {
-        return Promise.resolve(null);
-    }
-    return Dexie.ignoreTransaction(() => loadAccessToken(db).then((user) => {
-        var _a, _b;
-        if (user === null || user === void 0 ? void 0 : user.accessToken) {
-            wm$2.set(db, {
-                accessToken: user.accessToken,
-                expiration: (_b = (_a = user.accessTokenExpiration) === null || _a === void 0 ? void 0 : _a.getTime()) !== null && _b !== void 0 ? _b : Infinity,
-            });
-        }
-        return (user === null || user === void 0 ? void 0 : user.accessToken) || null;
-    }));
-}
-
 const CURRENT_SYNC_WORKER = 'currentSyncWorker';
 function sync(db, options, schema, syncOptions) {
     return _sync(db, options, schema, syncOptions)
@@ -5132,71 +5439,6 @@ function MessagesFromServerConsumer(db) {
     };
 }
 
-/**
- * Deduplicates in-flight blob downloads.
- *
- * Both the blob-resolve middleware and the eager blob downloader may
- * try to fetch the same blob concurrently. This tracker ensures each
- * unique blob ref is only downloaded once — subsequent requests for
- * the same ref piggyback on the existing promise.
- *
- * Instantiate once per DexieCloudDB.
- */
-class BlobDownloadTracker {
-    constructor(db) {
-        this.inFlight = new Map();
-        this.db = db;
-    }
-    /**
-     * Download a blob, deduplicating concurrent requests for the same ref.
-     *
-     * @param blobRef - The BlobRef to download
-     * @param dbUrl - Base URL for the database (e.g., 'https://mydb.dexie.cloud')
-     */
-    download(blobRef, dbUrl) {
-        let promise = this.inFlight.get(blobRef.ref);
-        if (!promise) {
-            promise = loadCachedAccessToken(this.db)
-                .then((accessToken) => {
-                // accessToken may be null for anonymous/unauthenticated users.
-                // Public realm blobs (rlm-public) are accessible without auth.
-                // downloadBlob will omit the Authorization header when token is null.
-                return downloadBlob(blobRef, dbUrl, accessToken);
-            })
-                .finally(() => this.inFlight.delete(blobRef.ref));
-            // When the promise settles (either fulfilled or rejected), remove it from the in-flight map
-            this.inFlight.set(blobRef.ref, promise);
-        }
-        return promise;
-    }
-}
-/**
- * Download blob data from server via proxy endpoint.
- * Uses auth header for authentication (same as sync).
- * When accessToken is null, the request is made without Authorization header —
- * this allows downloading blobs from public realms (rlm-public) for
- * unauthenticated users.
- *
- * @param blobRef - The BlobRef to download
- * @param dbUrl - Base URL for the database (e.g., 'https://mydb.dexie.cloud')
- * @param accessToken - Access token for authentication, or null for anonymous access
- */
-function downloadBlob(blobRef, dbUrl, accessToken) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const downloadUrl = `${dbUrl}/blob/${blobRef.ref}`;
-        const headers = {};
-        if (accessToken) {
-            headers['Authorization'] = `Bearer ${accessToken}`;
-        }
-        const response = yield fetch(downloadUrl, { headers });
-        if (!response.ok) {
-            throw new Error(`Failed to download blob ${blobRef.ref}: ${response.status} ${response.statusText}`);
-        }
-        const arrayBuffer = yield response.arrayBuffer();
-        return new Uint8Array(arrayBuffer);
-    });
-}
-
 const wm$1 = new WeakMap();
 const DEXIE_CLOUD_SCHEMA = {
     members: '@id, [userId+realmId], [email+realmId], realmId',
@@ -5992,99 +6234,6 @@ function createMutationTrackingMiddleware({ currentUserObservable, db, }) {
     };
 }
 
-/**
- * BlobSavingQueue - Queues resolved blobs for saving back to IndexedDB
- *
- * Uses setTimeout(fn, 0) instead of queueMicrotask to completely isolate
- * from Dexie's Promise.PSD context. This prevents the save operation
- * from inheriting any ongoing transaction.
- *
- * Each blob is saved atomically using downCore transaction with the specific
- * keyPath to avoid race conditions with other property changes.
- */
-class BlobSavingQueue {
-    constructor(db) {
-        this.queue = [];
-        this.isProcessing = false;
-        this.db = db;
-    }
-    /**
-     * Queue a resolved blob for saving.
-     * Only the specific blob property will be updated atomically.
-     */
-    saveBlobs(tableName, primaryKey, resolvedBlobs) {
-        this.queue.push({ tableName, primaryKey, resolvedBlobs });
-        this.startConsumer();
-    }
-    /**
-     * Start the consumer if not already processing.
-     * Uses setTimeout(fn, 0) to completely break out of any
-     * Dexie transaction context (Promise.PSD).
-     */
-    startConsumer() {
-        if (this.isProcessing)
-            return;
-        this.isProcessing = true;
-        // Use setTimeout to completely isolate from Dexie's PSD context
-        // queueMicrotask would risk inheriting the current transaction
-        setTimeout(() => {
-            this.processQueue();
-        }, 0);
-    }
-    /**
-     * Process all queued blobs.
-     * Runs in a completely isolated context (no inherited transaction).
-     * Uses atomic updates to avoid race conditions.
-     */
-    processQueue() {
-        const item = this.queue.shift();
-        if (!item) {
-            this.isProcessing = false;
-            return;
-        }
-        // Atomic update of just the blob property
-        this.db
-            .transaction('rw', item.tableName, (tx) => {
-            const trans = tx.idbtrans;
-            trans.disableChangeTracking = true; // Don't regard this as a change for sync purposes
-            trans.disableAccessControl = true; // Bypass any access control checks since this is an internal operation
-            trans.disableBlobResolve = true; // Custom flag to skip blob resolve middleware during this transaction
-            const updateSpec = {};
-            for (const blob of item.resolvedBlobs) {
-                updateSpec[blob.keyPath] = blob.data;
-            }
-            tx.table(item.tableName).update(item.primaryKey, (obj) => {
-                // Check that object still has the same unresolved blob refs before applying update (i.e. it hasn't been modified since we read it)
-                for (const blob of item.resolvedBlobs) {
-                    // Verify atomicity - none of the blob properties has been modified since we read it. If any of them was modified, skip updating this item to avoid overwriting user changes.
-                    const currentValue = Dexie.getByKeyPath(obj, blob.keyPath);
-                    if (currentValue === undefined) {
-                        // Blob property was removed - skip updating this blob
-                        continue;
-                    }
-                    if (!isBlobRef(currentValue)) {
-                        // Blob property was modified to a non-blob-ref value - skip updating this blob
-                        continue;
-                    }
-                    if (currentValue.ref !== blob.ref) {
-                        // Blob property was modified - skip updating this blob
-                        return; // Stop. Another items has been queued to fully fix the object.
-                    }
-                    Dexie.setByKeyPath(obj, blob.keyPath, blob.data);
-                }
-                delete obj._hasBlobRefs; // Clear the _hasBlobRefs marker if all refs was resolved.
-            });
-        })
-            .catch((error) => {
-            console.error(`Error saving resolved blobs on ${item.tableName}:${item.primaryKey}:`, error);
-        })
-            .finally(() => {
-            // Process next item in the queue
-            return this.processQueue();
-        });
-    }
-}
-
 /**
  * DBCore Middleware for resolving BlobRefs on read
  *
@@ -6095,10 +6244,11 @@ class BlobSavingQueue {
  * Uses Dexie.waitFor() only for explicit rw transactions to keep them alive.
  * For readonly or implicit transactions, resolves directly (no waitFor needed).
  *
- * Resolved blobs are queued for saving via BlobSavingQueue, which uses
- * setTimeout(fn, 0) to completely isolate from Dexie's transaction context.
- * Each blob is saved atomically using Table.update() with its keyPath to
- * avoid race conditions with other property changes.
+ * Resolved blobs are persisted via db.blobDownloadTracker.enqueueSave(),
+ * which internally uses a queue that runs in a fresh JS task to completely
+ * isolate from Dexie's transaction context. Each blob is saved atomically
+ * using Table.update() with its keyPath to avoid race conditions with other
+ * property changes.
  *
  * Blob downloads use Authorization header (same as sync) via the server
  * proxy endpoint: GET /blob/{ref}
@@ -6109,8 +6259,6 @@ function createBlobResolveMiddleware(db) {
         name: 'blobResolve',
         level: 2, // Run above cache (0) and other middlewares (1) to resolve BlobRefs from cached data
         create(downlevelDatabase) {
-            // Create a single queue instance for this database
-            const blobSavingQueue = new BlobSavingQueue(db);
             return Object.assign(Object.assign({}, downlevelDatabase), { table(tableName) {
                     var _a;
                     if (!db.cloud) {
@@ -6131,7 +6279,7 @@ function createBlobResolveMiddleware(db) {
                             }
                             return downlevelTable.get(req).then((result) => {
                                 if (result && hasUnresolvedBlobRefs(result)) {
-                                    return resolveAndSave(downlevelTable, req.trans, req.key, result, blobSavingQueue, db);
+                                    return resolveAndSave(downlevelTable, req.trans, req.key, result, db);
                                 }
                                 return result;
                             });
@@ -6148,7 +6296,7 @@ function createBlobResolveMiddleware(db) {
                                     return results;
                                 return Dexie.Promise.all(results.map((result, index) => {
                                     if (result && hasUnresolvedBlobRefs(result)) {
-                                        return resolveAndSave(downlevelTable, req.trans, req.keys[index], result, blobSavingQueue, db);
+                                        return resolveAndSave(downlevelTable, req.trans, req.keys[index], result, db);
                                     }
                                     return result;
                                 }));
@@ -6168,7 +6316,7 @@ function createBlobResolveMiddleware(db) {
                                     return result;
                                 return Dexie.Promise.all(result.result.map((item) => {
                                     if (item && hasUnresolvedBlobRefs(item)) {
-                                        return resolveAndSave(downlevelTable, req.trans, undefined, item, blobSavingQueue, db);
+                                        return resolveAndSave(downlevelTable, req.trans, undefined, item, db);
                                     }
                                     return item;
                                 })).then((resolved) => (Object.assign(Object.assign({}, result), { result: resolved })));
@@ -6186,7 +6334,7 @@ function createBlobResolveMiddleware(db) {
                                     return cursor; // No values requested, so no resolution needed
                                 if (!dbUrl)
                                     return cursor; // No database URL configured, can't resolve blobs
-                                return createBlobResolvingCursor(cursor, downlevelTable, blobSavingQueue, db);
+                                return createBlobResolvingCursor(cursor, downlevelTable, db);
                             });
                         } });
                 } });
@@ -6203,7 +6351,7 @@ function createBlobResolveMiddleware(db) {
  * Returns the cursor synchronously. Resolution happens in start() before
  * each onNext callback, ensuring cursor.value is always available.
  */
-function createBlobResolvingCursor(cursor, table, blobSavingQueue, db) {
+function createBlobResolvingCursor(cursor, table, db) {
     // Create wrapped cursor using Object.create() - inherits everything.
     // Important: .key and .primaryKey must be explicitly overridden with
     // closure-based getters to prevent native IDBCursorWithValue getters from
@@ -6211,11 +6359,15 @@ function createBlobResolvingCursor(cursor, table, blobSavingQueue, db) {
     // throws "Illegal invocation" in Chrome 146+.
     const wrappedCursor = Object.create(cursor, {
         key: {
-            get() { return cursor.key; },
+            get() {
+                return cursor.key;
+            },
             configurable: true,
         },
         primaryKey: {
-            get() { return cursor.primaryKey; },
+            get() {
+                return cursor.primaryKey;
+            },
             configurable: true,
         },
         value: {
@@ -6233,7 +6385,7 @@ function createBlobResolvingCursor(cursor, table, blobSavingQueue, db) {
                         onNext();
                         return;
                     }
-                    resolveAndSave(table, cursor.trans, cursor.primaryKey, rawValue, blobSavingQueue, db, true).then((resolved) => {
+                    resolveAndSave(table, cursor.trans, cursor.primaryKey, rawValue, db, true).then((resolved) => {
                         wrappedCursor.value = resolved;
                         onNext();
                     }, (err) => {
@@ -6261,7 +6413,7 @@ function createBlobResolvingCursor(cursor, table, blobSavingQueue, db) {
  * Returns Dexie.Promise to preserve PSD context.
  */
 function resolveAndSave(table, trans, pKey, // optional. If missing, tries to extract from object using primary key path
-obj, blobSavingQueue, db, isCursorValue = false // Flag to indicate if we're resolving a cursor value (which may not have a primary key)
+obj, db, isCursorValue = false // Flag to indicate if we're resolving a cursor value (which may not have a primary key)
 ) {
     var _a;
     try {
@@ -6298,21 +6450,19 @@ obj, blobSavingQueue, db, isCursorValue = false // Flag to indicate if we're res
                     ? Dexie.getByKeyPath(obj, primaryKey.keyPath)
                     : undefined;
             if (key !== undefined) {
-                // Queue each resolved blob individually for atomic update
-                // This uses setTimeout(fn, 0) to completely isolate from
-                // Dexie's transaction context (avoids inheriting PSD)
-                if (isReadonly) {
-                    blobSavingQueue.saveBlobs(table.name, key, resolvedBlobs);
-                }
-                else {
-                    // For rw transactions, we can save directly without queueing
-                    // since we're still in the same transaction context
-                    table
-                        .mutate({ type: 'put', keys: [key], values: [resolved], trans })
-                        .catch((err) => {
-                        console.error(`Failed to save resolved blob on ${table.name}:${key}:`, err);
-                    });
-                }
+                // Hand off persistence to the tracker. The tracker owns an
+                // internal save-queue that runs in a fresh JS task (setTimeout 0)
+                // — completely outside any PSD context, so opening a Dexie rw
+                // transaction there is always safe regardless of the calling
+                // context. The tracker also keeps the in-flight download cache
+                // alive until the save completes, so concurrent readers piggyback
+                // on the already-downloaded data instead of refetching.
+                db.blobDownloadTracker.enqueueSave(table.name, key, resolvedBlobs);
+            }
+            else if (resolvedBlobs.length > 0) {
+                // No primary key — we can't persist. Release the in-flight cache
+                // entries explicitly so they don't leak.
+                db.blobDownloadTracker.releaseRefs(resolvedBlobs.map((b) => b.ref));
             }
             return resolved;
         })
@@ -6883,8 +7033,7 @@ function connectWebSocket(db) {
         throw new Error(`No database URL to connect WebSocket to`);
     }
     const readyForChangesMessage = db.messageConsumer.readyToServe.pipe(filter$1((isReady) => isReady), // When consumer is ready for new messages, produce such a message to inform server about it
-    switchMap(() => db.cloud.persistedSyncState.pipe(filter$1((syncState) => !!(syncState && syncState.serverRevision)), take(1))), // Wait reactively for syncState with serverRevision (avoids race with logout/re-sync)
-    switchMap((syncState) => __awaiter(this, void 0, void 0, function* () {
+    switchMap(() => db.getPersistedSyncState()), filter$1((syncState) => !!(syncState && syncState.serverRevision)), switchMap((syncState) => __awaiter(this, void 0, void 0, function* () {
         return ({
             // Produce the message to trigger server to send us new messages to consume:
             type: 'ready',
@@ -8512,7 +8661,7 @@ function dexieCloud(dexie) {
     const downloading$ = createDownloadingState();
     dexie.cloud = {
         // @ts-ignore
-        version: "4.4.10",
+        version: "4.4.12",
         options: Object.assign({}, DEFAULT_OPTIONS),
         schema: null,
         get currentUserId() {
@@ -8957,7 +9106,7 @@ function dexieCloud(dexie) {
     }
 }
 // @ts-ignore
-dexieCloud.version = "4.4.10";
+dexieCloud.version = "4.4.12";
 Dexie.Cloud = dexieCloud;
 
 export { dexieCloud as default, defineYDocTrigger, dexieCloud, getTiedObjectId, getTiedRealmId, resolveText };