jazz-tools 0.17.14 → 0.18.1

package/dist/tools/subscribe/utils.d.ts

@@ -1,7 +1,7 @@
-import { RawCoValue } from "cojson";
+import { RawCoValue, Role } from "cojson";
 import { CoValue, RefEncoded } from "../internal.js";
 import { SubscriptionScope } from "./SubscriptionScope.js";
-export declare function getOwnerFromRawValue(raw: RawCoValue): import("../internal.js").Account | import("../internal.js").Group;
+export declare function myRoleForRawValue(raw: RawCoValue): Role | undefined;
 export declare function createCoValue<D extends CoValue>(ref: RefEncoded<D>, raw: RawCoValue, subscriptionScope: SubscriptionScope<D>): {
     type: "loaded";
     value: D;

package/dist/tools/subscribe/utils.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/tools/subscribe/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,UAAU,EAAE,MAAM,QAAQ,CAAC;AAEhD,OAAO,EACL,OAAO,EACP,UAAU,EAGX,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAE3D,wBAAgB,oBAAoB,CAAC,GAAG,EAAE,UAAU,qEAUnD;AAED,wBAAgB,aAAa,CAAC,CAAC,SAAS,OAAO,EAC7C,GAAG,EAAE,UAAU,CAAC,CAAC,CAAC,EAClB,GAAG,EAAE,UAAU,EACf,iBAAiB,EAAE,iBAAiB,CAAC,CAAC,CAAC;;;;EAgBxC"}
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/tools/subscribe/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,UAAU,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAEtD,OAAO,EACL,OAAO,EACP,UAAU,EAGX,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAE3D,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,UAAU,GAAG,IAAI,GAAG,SAAS,CAUnE;AAED,wBAAgB,aAAa,CAAC,CAAC,SAAS,OAAO,EAC7C,GAAG,EAAE,UAAU,CAAC,CAAC,CAAC,EAClB,GAAG,EAAE,UAAU,EACf,iBAAiB,EAAE,iBAAiB,CAAC,CAAC,CAAC;;;;EAgBxC"}

package/dist/tools/testing.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"testing.d.ts","sourceRoot":"","sources":["../../src/tools/testing.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAEnC,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EACL,OAAO,EACP,YAAY,EACZ,KAAK,kBAAkB,EAEvB,cAAc,EACd,iBAAiB,EACjB,gBAAgB,EAChB,kBAAkB,EAClB,2BAA2B,EAC3B,2BAA2B,EAM5B,MAAM,eAAe,CAAC;AAOvB,qBAAa,YAAa,SAAQ,YAAY;WAC/B,MAAM;CAoBpB;AAED,wBAAgB,gCAAgC,0BAiC/C;AAKD,wBAAsB,qBAAqB,CACzC,CAAC,SACG,CAAC,YAAY,CAAC,OAAO,CAAC,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC,GACjD,iBAAiB,EACrB,OAAO,CAAC,EAAE;IACV,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,aAAa,CAAC,EAAE,CAAC,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACzC,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAuD/B;AAED,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,OAAO,QAEhD;AAED;;;;;;;;;GASG;AACH,wBAAgB,uBAAuB,CAAC,MAAM,EAC5C,QAAQ,EAAE,MAAM,MAAM,GACrB,MAAM,CAcR;AAED,wBAAsB,mBAAmB;;GASxC;AAED,MAAM,MAAM,2BAA2B,CAAC,GAAG,SAAS,OAAO,IACzD,2BAA2B,CAAC,GAAG,CAAC,GAAG;IACjC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,aAAa,CAAC,EAAE,YAAY,CAAC,GAAG,CAAC,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;IACxD,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B,CAAC;AAEJ,qBAAa,sBAAsB,CACjC,GAAG,SAAS,OAAO,CACnB,SAAQ,kBAAkB,CAAC,GAAG,EAAE,2BAA2B,CAAC,GAAG,CAAC,CAAC;IACjE,MAAM,CAAC,kBAAkB,CAAC,GAAG,SAAS,OAAO,EAC3C,OAAO,CAAC,EAAE,GAAG,GAAG;QAAE,KAAK,EAAE,kBAAkB,CAAA;KAAE,EAC7C,KAAK,CAAC,EAAE,2BAA2B,CAAC,GAAG,CAAC;IAS1C,MAAM,CAAC,WAAW,CAAC,GAAG,SAAS,OAAO,EACpC,OAAO,EAAE,GAAG,EACZ,KAAK,CAAC,EAAE,2BAA2B,CAAC,GAAG,CAAC;IA0C1C,MAAM,CAAC,SAAS,CAAC,GAAG,SAAS,OAAO,EAClC,EAAE,KAAK,EAAE,EAAE;QAAE,KAAK,EAAE,kBAAkB,CAAA;KAAE,EACxC,KAAK,GAAE,2BAA2B,CAAC,GAAG,CAAM;IAmBxC,aAAa,CACjB,KAAK,EAAE,2BAA2B,CAAC,GAAG,CAAC,EACvC,SAAS,CAAC,EAAE,2BAA2B;;uBAuE0wJ,cAAc;;;;;;;;CAzCl0J;AAED,wBAAsB,YAAY,CAChC,CAAC,EAAE,OAAO,EACV,CAAC,EAAE,OAAO,EACV,KAAK,GAAE,QAAQ,GAAG,QAAmB,EACrC,KAAK,GAAE,QAAQ,GAAG,QAAmB,iBAYtC;AAED,wBAAsB,iBAAiB,CAAC,EACtC,UAAkB,GACnB,GAAE;IACD,UAAU,CAAC,EAAE,OAAO,CAAC;CACjB,oBAgBL"}
+{"version":3,"file":"testing.d.ts","sourceRoot":"","sources":["../../src/tools/testing.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAEnC,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EACL,OAAO,EACP,YAAY,EACZ,KAAK,kBAAkB,EAEvB,cAAc,EACd,iBAAiB,EACjB,gBAAgB,EAChB,kBAAkB,EAClB,2BAA2B,EAC3B,2BAA2B,EAM5B,MAAM,eAAe,CAAC;AAOvB,qBAAa,YAAa,SAAQ,YAAY;WAC/B,MAAM;CAoBpB;AAED,wBAAgB,gCAAgC,0BAiC/C;AAKD,wBAAsB,qBAAqB,CACzC,CAAC,SACG,CAAC,YAAY,CAAC,OAAO,CAAC,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC,GACjD,iBAAiB,EACrB,OAAO,CAAC,EAAE;IACV,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,aAAa,CAAC,EAAE,CAAC,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACzC,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAuD/B;AAED,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,OAAO,QAEhD;AAED;;;;;;;;;GASG;AACH,wBAAgB,uBAAuB,CAAC,MAAM,EAC5C,QAAQ,EAAE,MAAM,MAAM,GACrB,MAAM,CAcR;AAED,wBAAsB,mBAAmB;;GASxC;AAED,MAAM,MAAM,2BAA2B,CAAC,GAAG,SAAS,OAAO,IACzD,2BAA2B,CAAC,GAAG,CAAC,GAAG;IACjC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,aAAa,CAAC,EAAE,YAAY,CAAC,GAAG,CAAC,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;IACxD,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B,CAAC;AAEJ,qBAAa,sBAAsB,CACjC,GAAG,SAAS,OAAO,CACnB,SAAQ,kBAAkB,CAAC,GAAG,EAAE,2BAA2B,CAAC,GAAG,CAAC,CAAC;IACjE,MAAM,CAAC,kBAAkB,CAAC,GAAG,SAAS,OAAO,EAC3C,OAAO,CAAC,EAAE,GAAG,GAAG;QAAE,KAAK,EAAE,kBAAkB,CAAA;KAAE,EAC7C,KAAK,CAAC,EAAE,2BAA2B,CAAC,GAAG,CAAC;IAS1C,MAAM,CAAC,WAAW,CAAC,GAAG,SAAS,OAAO,EACpC,OAAO,EAAE,GAAG,EACZ,KAAK,CAAC,EAAE,2BAA2B,CAAC,GAAG,CAAC;IA0C1C,MAAM,CAAC,SAAS,CAAC,GAAG,SAAS,OAAO,EAClC,EAAE,KAAK,EAAE,EAAE;QAAE,KAAK,EAAE,kBAAkB,CAAA;KAAE,EACxC,KAAK,GAAE,2BAA2B,CAAC,GAAG,CAAM;IAmBxC,aAAa,CACjB,KAAK,EAAE,2BAA2B,CAAC,GAAG,CAAC,EACvC,SAAS,CAAC,EAAE,2BAA2B;;uBA2E2mO,cAAc;;;;;;;;CA7CnqO;AAED,wBAAsB,YAAY,CAChC,CAAC,EAAE,OAAO,EACV,CAAC,EAAE,OAAO,EACV,KAAK,GAAE,QAAQ,GAAG,QAAmB,EACrC,KAAK,GAAE,QAAQ,GAAG,QAAmB,iBAgBtC;AAED,wBAAsB,iBAAiB,CAAC,EACtC,UAAkB,GACnB,GAAE;IACD,UAAU,CAAC,EAAE,OAAO,CAAC;CACjB,oBAgBL"}

package/dist/tools/tests/utils.d.ts

@@ -3,13 +3,9 @@ import { CoID, LocalNode, RawCoValue } from "cojson";
 import { Account } from "../index";
 import { CoValueFromRaw } from "../internal";
 export declare function setupAccount(): Promise<{
-    me: Account & {
-        isLocalNodeOwner: true;
-        sessionID: import("cojson").SessionID;
-        _raw: import("cojson").RawAccount;
-    };
+    me: import("../internal").ControlledAccount;
     meOnSecondPeer: Account | ({
-        [x: string]: any;
+        readonly [x: string]: any;
     } & Account);
 }>;
 export declare function setupTwoNodes(options?: {

package/dist/tools/tests/utils.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/tools/tests/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAuB,MAAM,qBAAqB,CAAC;AAExE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAGrD,OAAO,EACL,OAAO,EAGR,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAI7C,wBAAsB,YAAY;;;;;;;;;GA+BjC;AAED,wBAAsB,aAAa,CAAC,OAAO,CAAC,EAAE;IAC5C,mBAAmB,CAAC,EAAE,cAAc,CAAC,OAAO,CAAC,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;CACvE;;;;;GAgDA;AAED,wBAAgB,OAAO,CACrB,QAAQ,EAAE,MAAM,OAAO,GAAG,IAAI,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,iBA2BzD;AAED,wBAAsB,iBAAiB,CAAC,CAAC,SAAS,UAAU,EAC1D,IAAI,EAAE,SAAS,EACf,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,GACV,OAAO,CAAC,CAAC,CAAC,CAMZ"}
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/tools/tests/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAuB,MAAM,qBAAqB,CAAC;AAExE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAGrD,OAAO,EACL,OAAO,EAGR,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAI7C,wBAAsB,YAAY;;;;;GA+BjC;AAED,wBAAsB,aAAa,CAAC,OAAO,CAAC,EAAE;IAC5C,mBAAmB,CAAC,EAAE,cAAc,CAAC,OAAO,CAAC,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;CACvE;;;;;GAgDA;AAED,wBAAgB,OAAO,CACrB,QAAQ,EAAE,MAAM,OAAO,GAAG,IAAI,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,iBA2BzD;AAED,wBAAsB,iBAAiB,CAAC,CAAC,SAAS,UAAU,EAC1D,IAAI,EAAE,SAAS,EACf,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,GACV,OAAO,CAAC,CAAC,CAAC,CAMZ"}

package/dist/worker/index.js

@@ -57,13 +57,13 @@ async function startWorker(options) {
     crypto: options.crypto ?? await WasmCrypto.create()
   });
   const account = context.account;
-  node = account._raw.core.node;
-  if (!account._refs.profile?.id) {
+  node = account.$jazz.localNode;
+  if (!account.$jazz.refs.profile?.id) {
     throw new Error("Account has no profile");
   }
   const inbox = await Inbox.load(account);
   async function done() {
-    await context.account.waitForAllCoValuesSync();
+    await context.account.$jazz.waitForAllCoValuesSync();
     wsPeer.disable();
     context.done();
   }

package/dist/worker/index.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../src/worker/index.ts"],"sourcesContent":["import { AgentSecret, CryptoProvider, LocalNode, Peer } from \"cojson\";\nimport {\n  type AnyWebSocketConstructor,\n  WebSocketPeerWithReconnection,\n} from \"cojson-transport-ws\";\nimport { WasmCrypto } from \"cojson/crypto/WasmCrypto\";\nimport {\n  Account,\n  AccountClass,\n  AnyAccountSchema,\n  CoValueFromRaw,\n  Inbox,\n  InstanceOfSchema,\n  createJazzContextFromExistingCredentials,\n  randomSessionProvider,\n} from \"jazz-tools\";\n\ntype WorkerOptions<\n  S extends\n    | (AccountClass<Account> & CoValueFromRaw<Account>)\n    | AnyAccountSchema,\n> = {\n  accountID?: string;\n  accountSecret?: string;\n  syncServer?: string;\n  WebSocket?: AnyWebSocketConstructor;\n  AccountSchema?: S;\n  crypto?: CryptoProvider;\n};\n\n/** @category Context Creation */\nexport async function startWorker<\n  S extends\n    | (AccountClass<Account> & CoValueFromRaw<Account>)\n    | AnyAccountSchema,\n>(options: WorkerOptions<S>) {\n  const {\n    accountID = process.env.JAZZ_WORKER_ACCOUNT,\n    accountSecret = process.env.JAZZ_WORKER_SECRET,\n    syncServer = \"wss://cloud.jazz.tools\",\n    AccountSchema = Account as unknown as S,\n  } = options;\n\n  let node: LocalNode | undefined = undefined;\n\n  const peersToLoadFrom: Peer[] = [];\n\n  const wsPeer = new WebSocketPeerWithReconnection({\n    peer: syncServer,\n    reconnectionTimeout: 100,\n    addPeer: (peer) => {\n      if (node) {\n        node.syncManager.addPeer(peer);\n      } else {\n        peersToLoadFrom.push(peer);\n      }\n    },\n    removePeer: () => {},\n    WebSocketConstructor: options.WebSocket,\n  });\n\n  wsPeer.enable();\n\n  if (!accountID) {\n    throw new Error(\"No accountID provided\");\n  }\n  if (!accountSecret) {\n    throw new Error(\"No accountSecret provided\");\n  }\n  if (!accountID.startsWith(\"co_\")) {\n    throw new Error(\"Invalid accountID\");\n  }\n  if (!accountSecret?.startsWith(\"sealerSecret_\")) {\n    throw new Error(\"Invalid accountSecret\");\n  }\n\n  const context = await createJazzContextFromExistingCredentials({\n    credentials: {\n      accountID: accountID,\n      secret: accountSecret as AgentSecret,\n    },\n    AccountSchema,\n    // TODO: locked sessions similar to browser\n    sessionProvider: randomSessionProvider,\n    peersToLoadFrom,\n    crypto: options.crypto ?? (await WasmCrypto.create()),\n  });\n\n  const account = context.account as InstanceOfSchema<S>;\n  node = account._raw.core.node;\n\n  if (!account._refs.profile?.id) {\n    throw new Error(\"Account has no profile\");\n  }\n\n  const inbox = await Inbox.load(account);\n\n  async function done() {\n    await context.account.waitForAllCoValuesSync();\n\n    wsPeer.disable();\n    context.done();\n  }\n\n  const inboxPublicApi = {\n    subscribe: inbox.subscribe.bind(inbox) as Inbox[\"subscribe\"],\n  };\n\n  return {\n    worker: context.account as InstanceOfSchema<S>,\n    experimental: {\n      inbox: inboxPublicApi,\n    },\n    waitForConnection() {\n      return wsPeer.waitUntilConnected();\n    },\n    subscribeToConnectionChange(listener: (connected: boolean) => void) {\n      wsPeer.subscribe(listener);\n\n      return () => {\n        wsPeer.unsubscribe(listener);\n      };\n    },\n    done,\n  };\n}\n"],"mappings":";AACA;AAAA,EAEE;AAAA,OACK;AACP,SAAS,kBAAkB;AAC3B;AAAA,EACE;AAAA,EAIA;AAAA,EAEA;AAAA,EACA;AAAA,OACK;AAgBP,eAAsB,YAIpB,SAA2B;AAC3B,QAAM;AAAA,IACJ,YAAY,QAAQ,IAAI;AAAA,IACxB,gBAAgB,QAAQ,IAAI;AAAA,IAC5B,aAAa;AAAA,IACb,gBAAgB;AAAA,EAClB,IAAI;AAEJ,MAAI,OAA8B;AAElC,QAAM,kBAA0B,CAAC;AAEjC,QAAM,SAAS,IAAI,8BAA8B;AAAA,IAC/C,MAAM;AAAA,IACN,qBAAqB;AAAA,IACrB,SAAS,CAAC,SAAS;AACjB,UAAI,MAAM;AACR,aAAK,YAAY,QAAQ,IAAI;AAAA,MAC/B,OAAO;AACL,wBAAgB,KAAK,IAAI;AAAA,MAC3B;AAAA,IACF;AAAA,IACA,YAAY,MAAM;AAAA,IAAC;AAAA,IACnB,sBAAsB,QAAQ;AAAA,EAChC,CAAC;AAED,SAAO,OAAO;AAEd,MAAI,CAAC,WAAW;AACd,UAAM,IAAI,MAAM,uBAAuB;AAAA,EACzC;AACA,MAAI,CAAC,eAAe;AAClB,UAAM,IAAI,MAAM,2BAA2B;AAAA,EAC7C;AACA,MAAI,CAAC,UAAU,WAAW,KAAK,GAAG;AAChC,UAAM,IAAI,MAAM,mBAAmB;AAAA,EACrC;AACA,MAAI,CAAC,eAAe,WAAW,eAAe,GAAG;AAC/C,UAAM,IAAI,MAAM,uBAAuB;AAAA,EACzC;AAEA,QAAM,UAAU,MAAM,yCAAyC;AAAA,IAC7D,aAAa;AAAA,MACX;AAAA,MACA,QAAQ;AAAA,IACV;AAAA,IACA;AAAA;AAAA,IAEA,iBAAiB;AAAA,IACjB;AAAA,IACA,QAAQ,QAAQ,UAAW,MAAM,WAAW,OAAO;AAAA,EACrD,CAAC;AAED,QAAM,UAAU,QAAQ;AACxB,SAAO,QAAQ,KAAK,KAAK;AAEzB,MAAI,CAAC,QAAQ,MAAM,SAAS,IAAI;AAC9B,UAAM,IAAI,MAAM,wBAAwB;AAAA,EAC1C;AAEA,QAAM,QAAQ,MAAM,MAAM,KAAK,OAAO;AAEtC,iBAAe,OAAO;AACpB,UAAM,QAAQ,QAAQ,uBAAuB;AAE7C,WAAO,QAAQ;AACf,YAAQ,KAAK;AAAA,EACf;AAEA,QAAM,iBAAiB;AAAA,IACrB,WAAW,MAAM,UAAU,KAAK,KAAK;AAAA,EACvC;AAEA,SAAO;AAAA,IACL,QAAQ,QAAQ;AAAA,IAChB,cAAc;AAAA,MACZ,OAAO;AAAA,IACT;AAAA,IACA,oBAAoB;AAClB,aAAO,OAAO,mBAAmB;AAAA,IACnC;AAAA,IACA,4BAA4B,UAAwC;AAClE,aAAO,UAAU,QAAQ;AAEzB,aAAO,MAAM;AACX,eAAO,YAAY,QAAQ;AAAA,MAC7B;AAAA,IACF;AAAA,IACA;AAAA,EACF;AACF;","names":[]}
+{"version":3,"sources":["../../src/worker/index.ts"],"sourcesContent":["import { AgentSecret, CryptoProvider, LocalNode, Peer } from \"cojson\";\nimport {\n  type AnyWebSocketConstructor,\n  WebSocketPeerWithReconnection,\n} from \"cojson-transport-ws\";\nimport { WasmCrypto } from \"cojson/crypto/WasmCrypto\";\nimport {\n  Account,\n  AccountClass,\n  AnyAccountSchema,\n  CoValueFromRaw,\n  Inbox,\n  InstanceOfSchema,\n  createJazzContextFromExistingCredentials,\n  randomSessionProvider,\n} from \"jazz-tools\";\n\ntype WorkerOptions<\n  S extends\n    | (AccountClass<Account> & CoValueFromRaw<Account>)\n    | AnyAccountSchema,\n> = {\n  accountID?: string;\n  accountSecret?: string;\n  syncServer?: string;\n  WebSocket?: AnyWebSocketConstructor;\n  AccountSchema?: S;\n  crypto?: CryptoProvider;\n};\n\n/** @category Context Creation */\nexport async function startWorker<\n  S extends\n    | (AccountClass<Account> & CoValueFromRaw<Account>)\n    | AnyAccountSchema,\n>(options: WorkerOptions<S>) {\n  const {\n    accountID = process.env.JAZZ_WORKER_ACCOUNT,\n    accountSecret = process.env.JAZZ_WORKER_SECRET,\n    syncServer = \"wss://cloud.jazz.tools\",\n    AccountSchema = Account as unknown as S,\n  } = options;\n\n  let node: LocalNode | undefined = undefined;\n\n  const peersToLoadFrom: Peer[] = [];\n\n  const wsPeer = new WebSocketPeerWithReconnection({\n    peer: syncServer,\n    reconnectionTimeout: 100,\n    addPeer: (peer) => {\n      if (node) {\n        node.syncManager.addPeer(peer);\n      } else {\n        peersToLoadFrom.push(peer);\n      }\n    },\n    removePeer: () => {},\n    WebSocketConstructor: options.WebSocket,\n  });\n\n  wsPeer.enable();\n\n  if (!accountID) {\n    throw new Error(\"No accountID provided\");\n  }\n  if (!accountSecret) {\n    throw new Error(\"No accountSecret provided\");\n  }\n  if (!accountID.startsWith(\"co_\")) {\n    throw new Error(\"Invalid accountID\");\n  }\n  if (!accountSecret?.startsWith(\"sealerSecret_\")) {\n    throw new Error(\"Invalid accountSecret\");\n  }\n\n  const context = await createJazzContextFromExistingCredentials({\n    credentials: {\n      accountID: accountID,\n      secret: accountSecret as AgentSecret,\n    },\n    AccountSchema,\n    // TODO: locked sessions similar to browser\n    sessionProvider: randomSessionProvider,\n    peersToLoadFrom,\n    crypto: options.crypto ?? (await WasmCrypto.create()),\n  });\n\n  const account = context.account as InstanceOfSchema<S>;\n  node = account.$jazz.localNode;\n\n  if (!account.$jazz.refs.profile?.id) {\n    throw new Error(\"Account has no profile\");\n  }\n\n  const inbox = await Inbox.load(account);\n\n  async function done() {\n    await context.account.$jazz.waitForAllCoValuesSync();\n\n    wsPeer.disable();\n    context.done();\n  }\n\n  const inboxPublicApi = {\n    subscribe: inbox.subscribe.bind(inbox) as Inbox[\"subscribe\"],\n  };\n\n  return {\n    worker: context.account as InstanceOfSchema<S>,\n    experimental: {\n      inbox: inboxPublicApi,\n    },\n    waitForConnection() {\n      return wsPeer.waitUntilConnected();\n    },\n    subscribeToConnectionChange(listener: (connected: boolean) => void) {\n      wsPeer.subscribe(listener);\n\n      return () => {\n        wsPeer.unsubscribe(listener);\n      };\n    },\n    done,\n  };\n}\n"],"mappings":";AACA;AAAA,EAEE;AAAA,OACK;AACP,SAAS,kBAAkB;AAC3B;AAAA,EACE;AAAA,EAIA;AAAA,EAEA;AAAA,EACA;AAAA,OACK;AAgBP,eAAsB,YAIpB,SAA2B;AAC3B,QAAM;AAAA,IACJ,YAAY,QAAQ,IAAI;AAAA,IACxB,gBAAgB,QAAQ,IAAI;AAAA,IAC5B,aAAa;AAAA,IACb,gBAAgB;AAAA,EAClB,IAAI;AAEJ,MAAI,OAA8B;AAElC,QAAM,kBAA0B,CAAC;AAEjC,QAAM,SAAS,IAAI,8BAA8B;AAAA,IAC/C,MAAM;AAAA,IACN,qBAAqB;AAAA,IACrB,SAAS,CAAC,SAAS;AACjB,UAAI,MAAM;AACR,aAAK,YAAY,QAAQ,IAAI;AAAA,MAC/B,OAAO;AACL,wBAAgB,KAAK,IAAI;AAAA,MAC3B;AAAA,IACF;AAAA,IACA,YAAY,MAAM;AAAA,IAAC;AAAA,IACnB,sBAAsB,QAAQ;AAAA,EAChC,CAAC;AAED,SAAO,OAAO;AAEd,MAAI,CAAC,WAAW;AACd,UAAM,IAAI,MAAM,uBAAuB;AAAA,EACzC;AACA,MAAI,CAAC,eAAe;AAClB,UAAM,IAAI,MAAM,2BAA2B;AAAA,EAC7C;AACA,MAAI,CAAC,UAAU,WAAW,KAAK,GAAG;AAChC,UAAM,IAAI,MAAM,mBAAmB;AAAA,EACrC;AACA,MAAI,CAAC,eAAe,WAAW,eAAe,GAAG;AAC/C,UAAM,IAAI,MAAM,uBAAuB;AAAA,EACzC;AAEA,QAAM,UAAU,MAAM,yCAAyC;AAAA,IAC7D,aAAa;AAAA,MACX;AAAA,MACA,QAAQ;AAAA,IACV;AAAA,IACA;AAAA;AAAA,IAEA,iBAAiB;AAAA,IACjB;AAAA,IACA,QAAQ,QAAQ,UAAW,MAAM,WAAW,OAAO;AAAA,EACrD,CAAC;AAED,QAAM,UAAU,QAAQ;AACxB,SAAO,QAAQ,MAAM;AAErB,MAAI,CAAC,QAAQ,MAAM,KAAK,SAAS,IAAI;AACnC,UAAM,IAAI,MAAM,wBAAwB;AAAA,EAC1C;AAEA,QAAM,QAAQ,MAAM,MAAM,KAAK,OAAO;AAEtC,iBAAe,OAAO;AACpB,UAAM,QAAQ,QAAQ,MAAM,uBAAuB;AAEnD,WAAO,QAAQ;AACf,YAAQ,KAAK;AAAA,EACf;AAEA,QAAM,iBAAiB;AAAA,IACrB,WAAW,MAAM,UAAU,KAAK,KAAK;AAAA,EACvC;AAEA,SAAO;AAAA,IACL,QAAQ,QAAQ;AAAA,IAChB,cAAc;AAAA,MACZ,OAAO;AAAA,IACT;AAAA,IACA,oBAAoB;AAClB,aAAO,OAAO,mBAAmB;AAAA,IACnC;AAAA,IACA,4BAA4B,UAAwC;AAClE,aAAO,UAAU,QAAQ;AAEzB,aAAO,MAAM;AACX,eAAO,YAAY,QAAQ;AAAA,MAC7B;AAAA,IACF;AAAA,IACA;AAAA,EACF;AACF;","names":[]}

package/package.json

@@ -136,11 +136,26 @@
       "@jazz-tools/source": "./src/worker/index.ts",
       "types": "./dist/worker/index.d.ts",
       "default": "./dist/worker/index.js"
+    },
+    "./better-auth/auth/client": {
+      "@jazz-tools/source": "./src/better-auth/auth/client.ts",
+      "types": "./dist/better-auth/auth/client.d.ts",
+      "default": "./dist/better-auth/auth/client.js"
+    },
+    "./better-auth/auth/react": {
+      "@jazz-tools/source": "./src/better-auth/auth/react.tsx",
+      "types": "./dist/better-auth/auth/react.d.ts",
+      "default": "./dist/better-auth/auth/react.js"
+    },
+    "./better-auth/auth/server": {
+      "@jazz-tools/source": "./src/better-auth/auth/server.ts",
+      "types": "./dist/better-auth/auth/server.d.ts",
+      "default": "./dist/better-auth/auth/server.js"
     }
   },
   "type": "module",
   "license": "MIT",
-  "version": "0.17.14",
+  "version": "0.18.1",
   "dependencies": {
     "@manuscripts/prosemirror-recreate-steps": "^0.1.4",
     "@scure/base": "1.2.1",
@@ -156,9 +171,9 @@
     "prosemirror-state": "^1.4.3",
     "prosemirror-transform": "^1.9.0",
     "zod": "3.25.76",
-    "cojson": "0.17.14",
-    "cojson-storage-indexeddb": "0.17.14",
-    "cojson-transport-ws": "0.17.14"
+    "cojson": "0.18.1",
+    "cojson-storage-indexeddb": "0.18.1",
+    "cojson-transport-ws": "0.18.1"
   },
   "devDependencies": {
     "@scure/bip39": "^1.3.0",
@@ -183,6 +198,7 @@
     "@bam.tech/react-native-image-resizer": "*",
     "@op-engineering/op-sqlite": "*",
     "@react-native-community/netinfo": "*",
+    "better-auth": "^1.3.0",
     "expo-file-system": "*",
     "expo-secure-store": "*",
     "expo-sqlite": "*",
@@ -205,6 +221,9 @@
     "@react-native-community/netinfo": {
       "optional": true
     },
+    "better-auth": {
+      "optional": true
+    },
     "expo-file-system": {
       "optional": true
     },

package/src/better-auth/auth/client.ts

@@ -0,0 +1,169 @@
+import type { BetterAuthClientPlugin } from "better-auth";
+import type {
+  AuthSecretStorage,
+  AuthSetPayload,
+  Account,
+  JazzContextType,
+} from "jazz-tools";
+import type { jazzPlugin } from "./server.js";
+
+/**
+ * @example
+ * ```ts
+ * const auth = betterAuth({
+ *   plugins: [jazzPluginClient()],
+ * });
+ * ```
+ */
+export const jazzPluginClient = () => {
+  let jazzContext: JazzContextType<Account>;
+  let authSecretStorage: AuthSecretStorage;
+  let signOutUnsubscription: () => void;
+
+  const authenticateOnJazz = async (jazzAuth: AuthSetPayload) => {
+    const parsedJazzAuth = {
+      ...jazzAuth,
+      secretSeed: jazzAuth.secretSeed
+        ? Uint8Array.from(jazzAuth.secretSeed)
+        : undefined,
+    };
+
+    await jazzContext.authenticate(parsedJazzAuth);
+    await authSecretStorage.set(parsedJazzAuth);
+  };
+
+  return {
+    id: "jazz-plugin",
+    $InferServerPlugin: {} as ReturnType<typeof jazzPlugin>,
+    getActions: ($fetch, $store) => {
+      return {
+        jazz: {
+          setJazzContext: (context: JazzContextType<Account>) => {
+            jazzContext = context;
+          },
+          setAuthSecretStorage: (storage: AuthSecretStorage) => {
+            authSecretStorage = storage;
+            if (signOutUnsubscription) signOutUnsubscription();
+
+            // This is a workaround to logout from Better Auth when user logs out directly from Jazz
+            signOutUnsubscription = authSecretStorage.onUpdate(
+              (isAuthenticated) => {
+                if (isAuthenticated === false) {
+                  const session = $store.atoms.session?.get();
+                  if (!session) return;
+
+                  // if the user logs out from Better Auth, the get session is immediately called
+                  // so we must wait the next fetched session to understand if we need to call sign-out
+                  if (session.isPending || session.isRefetching) {
+                    // listen once for next session's data
+                    const unsub = $store.atoms.session?.listen((session) => {
+                      unsub?.();
+                      // if the session is null, user has been already logged out from Better Auth
+                      if (session.data !== null) {
+                        $fetch("/sign-out", { method: "POST" });
+                      }
+                    });
+                  }
+                  // if the session is not pending, it means user logged out from Jazz only
+                  // so we call the sign-out api
+                  else {
+                    $fetch("/sign-out", { method: "POST" });
+                  }
+                }
+              },
+            );
+          },
+        },
+      };
+    },
+    fetchPlugins: [
+      {
+        id: "jazz-plugin",
+        name: "jazz-plugin",
+        hooks: {
+          async onRequest(context) {
+            if (
+              context.url.toString().includes("/sign-up") ||
+              context.url.toString().includes("/sign-in/social")
+            ) {
+              const credentials = await authSecretStorage.get();
+
+              if (!credentials) {
+                throw new Error("Jazz credentials not found");
+              }
+
+              context.headers.set(
+                "x-jazz-auth",
+                JSON.stringify({
+                  accountID: credentials.accountID,
+                  secretSeed: credentials.secretSeed,
+                  accountSecret: credentials.accountSecret,
+                }),
+              );
+            }
+          },
+          async onSuccess(context) {
+            if (context.request.url.toString().includes("/sign-up")) {
+              await authenticateOnJazz(context.data.jazzAuth);
+              return;
+            }
+
+            if (context.request.url.toString().includes("/sign-in/email")) {
+              await authenticateOnJazz(context.data.jazzAuth);
+              return;
+            }
+
+            if (context.request.url.toString().includes("/get-session")) {
+              if (context.data === null) {
+                if (authSecretStorage.isAuthenticated === true) {
+                  console.warn(
+                    "Jazz is authenticated, but the session is null",
+                  );
+                }
+                return;
+              }
+
+              if (!context.data?.user) {
+                return;
+              }
+
+              if (authSecretStorage.isAuthenticated === false) {
+                console.info(
+                  "Jazz is not authenticated, using Better Auth stored credentials",
+                );
+                await authenticateOnJazz(context.data.jazzAuth);
+                return;
+              }
+
+              const sessionAccountID = context.data.user.accountID;
+
+              const credentials = await authSecretStorage.get();
+
+              if (!credentials) {
+                throw new Error("Jazz credentials not found");
+              }
+
+              if (credentials.accountID !== sessionAccountID) {
+                console.info(
+                  "Jazz credentials mismatch, using Better Auth stored credentials",
+                );
+                await authenticateOnJazz(context.data.jazzAuth);
+              }
+              return;
+            }
+
+            if (context.request.url.toString().includes("/sign-out")) {
+              await jazzContext.logOut();
+              return;
+            }
+
+            if (context.request.url.toString().includes("/delete-user")) {
+              await jazzContext.logOut();
+              return;
+            }
+          },
+        },
+      },
+    ],
+  } satisfies BetterAuthClientPlugin;
+};

package/src/better-auth/auth/react.tsx

@@ -0,0 +1,105 @@
+"use client";
+
+import type { ClientOptions } from "better-auth";
+import { createAuthClient } from "better-auth/client";
+import type {
+  Account,
+  AccountClass,
+  AnyAccountSchema,
+  CoValueFromRaw,
+} from "jazz-tools";
+import {
+  type JazzProviderProps,
+  JazzReactProvider,
+  useAuthSecretStorage,
+  useJazzContext,
+} from "jazz-tools/react";
+import { useEffect } from "react";
+import { type PropsWithChildren, createContext } from "react";
+import { jazzPluginClient } from "./client.js";
+
+type AuthClient = ReturnType<
+  typeof createAuthClient<{
+    plugins: [ReturnType<typeof jazzPluginClient>];
+  }>
+>;
+
+export const AuthContext = createContext<AuthClient | null>(null);
+
+/**
+ * @param props.children - The children to render.
+ * @param props.betterAuthClient - The BetterAuth client with the Jazz plugin.
+ *
+ * @example
+ * ```ts
+ * const betterAuthClient = createAuthClient({
+ *   plugins: [
+ *     jazzPluginClient(),
+ *   ],
+ * });
+ *
+ * <AuthProvider betterAuthClient={betterAuthClient}>
+ *   <App />
+ * </AuthProvider>
+ * ```
+ */
+export function AuthProvider({
+  children,
+  betterAuthClient,
+}: PropsWithChildren<{
+  betterAuthClient: AuthClient;
+}>) {
+  const context = useJazzContext();
+  const authSecretStorage = useAuthSecretStorage();
+
+  if (betterAuthClient.jazz === undefined) {
+    throw new Error(
+      "Better Auth client has been initialized without the jazzPluginClient",
+    );
+  }
+
+  useEffect(() => {
+    betterAuthClient.jazz.setJazzContext(context);
+    betterAuthClient.jazz.setAuthSecretStorage(authSecretStorage);
+
+    // We need to subscribe to the session to let the plugin keep sync Jazz's and BetterAuth's session
+    return betterAuthClient.useSession.subscribe(() => {});
+  }, [betterAuthClient, context, authSecretStorage]);
+
+  return children;
+}
+
+/**
+ * @param props - The props for the JazzReactProvider.
+ * @param props.betterAuth - The options for the BetterAuth client.
+ * @returns The JazzReactProvider with the BetterAuth plugin.
+ *
+ * @example
+ * ```ts
+ * <JazzReactProviderWithBetterAuth
+ *  betterAuth={{
+ *    baseURL: "http://localhost:3000",
+ *  }}
+ *  sync={{
+ *    peer: "ws://localhost:4200",
+ *  }}
+ * >
+ *   <App />
+ * </JazzReactProviderWithBetterAuth>
+ * ```
+ */
+export const JazzReactProviderWithBetterAuth = <
+  S extends
+    | (AccountClass<Account> & CoValueFromRaw<Account>)
+    | AnyAccountSchema,
+>(
+  props: { betterAuthClient: AuthClient } & JazzProviderProps<S>,
+) => {
+  return (
+    <JazzReactProvider {...props}>
+      <AuthProvider betterAuthClient={props.betterAuthClient}>
+        {props.children}
+      </AuthProvider>
+    </JazzReactProvider>
+  );
+};

package/src/better-auth/auth/server.ts

@@ -0,0 +1,250 @@
+import { AuthContext, MiddlewareContext, MiddlewareOptions } from "better-auth";
+import { APIError } from "better-auth/api";
+import { symmetricDecrypt, symmetricEncrypt } from "better-auth/crypto";
+import { BetterAuthPlugin, createAuthMiddleware } from "better-auth/plugins";
+import type { Account, AuthCredentials, ID } from "jazz-tools";
+
+/**
+ * @returns The BetterAuth server plugin.
+ *
+ * @example
+ * ```ts
+ * const auth = betterAuth({
+ *   plugins: [jazzPlugin()],
+ *   // ... other BetterAuth options
+ * });
+ * ```
+ */
+export const jazzPlugin = (): BetterAuthPlugin => {
+  return {
+    id: "jazz-plugin",
+    schema: {
+      user: {
+        fields: {
+          accountID: {
+            type: "string",
+            required: false,
+            input: false,
+          },
+          encryptedCredentials: {
+            type: "string",
+            required: false,
+            input: false,
+            returned: false,
+          },
+        },
+      },
+    },
+
+    init() {
+      return {
+        options: {
+          databaseHooks: {
+            user: {
+              create: {
+                before: async (user, context) => {
+                  // If the user is created without a jazzAuth, it will throw an error.
+                  if (!contextContainsJazzAuth(context)) {
+                    throw new APIError(422, {
+                      message: "JazzAuth is required",
+                    });
+                  }
+                  // Decorate the user with the jazz's credentials.
+                  return {
+                    data: {
+                      accountID: context?.jazzAuth?.accountID,
+                      encryptedCredentials:
+                        context?.jazzAuth?.encryptedCredentials,
+                    },
+                  };
+                },
+              },
+            },
+            verification: {
+              create: {
+                before: async (verification, context) => {
+                  // If a jazzAuth is provided, save it for later usage.
+                  if (contextContainsJazzAuth(context)) {
+                    const parsed = JSON.parse(verification.value);
+                    const newValue = JSON.stringify({
+                      ...parsed,
+                      jazzAuth: context.jazzAuth,
+                    });
+
+                    return {
+                      data: {
+                        value: newValue,
+                      },
+                    };
+                  }
+                },
+              },
+            },
+          },
+        },
+      };
+    },
+
+    hooks: {
+      before: [
+        /**
+         * If the client sends a x-jazz-auth header,
+         * we encrypt the credentials and inject them into the context.
+         */
+        {
+          matcher: (context) => {
+            return !!context.headers?.get("x-jazz-auth");
+          },
+          handler: createAuthMiddleware(async (ctx) => {
+            const jazzAuth = JSON.parse(ctx.headers?.get("x-jazz-auth")!);
+
+            const credentials: AuthCredentials = {
+              accountID: jazzAuth.accountID as ID<Account>,
+              secretSeed: jazzAuth.secretSeed,
+              accountSecret: jazzAuth.accountSecret as any,
+              // If the provider remains 'anonymous', Jazz will not consider us authenticated later.
+              provider: "better-auth",
+            };
+
+            const encryptedCredentials = await symmetricEncrypt({
+              key: ctx.context.secret,
+              data: JSON.stringify(credentials),
+            });
+
+            return {
+              context: {
+                ...ctx,
+                jazzAuth: {
+                  accountID: jazzAuth.accountID,
+                  encryptedCredentials: encryptedCredentials,
+                },
+              },
+            };
+          }),
+        },
+
+        /**
+         * /callback is the endpoint that BetterAuth uses to authenticate the user coming from a social provider.
+         * 1. Catch the state
+         * 2. Find the verification value
+         * 3. If the verification value contains a jazzAuth, inject into the context to have it in case of registration.
+         */
+        {
+          matcher: (context) => {
+            return context.path.startsWith("/callback");
+          },
+          handler: createAuthMiddleware(async (ctx) => {
+            const state = ctx.query?.state || ctx.body?.state;
+
+            const data = await ctx.context.adapter.findOne<{ value: string }>({
+              model: ctx.context.tables.verification!.modelName,
+              where: [
+                {
+                  field: "identifier",
+                  operator: "eq",
+                  value: state,
+                },
+              ],
+              select: ["value"],
+            });
+
+            // if not found, the social plugin will throw later anyway
+            if (!data) {
+              throw new APIError(404, {
+                message: "Verification not found",
+              });
+            }
+
+            const parsed = JSON.parse(data.value);
+
+            if (parsed && "jazzAuth" in parsed) {
+              ctx.context.jazzAuth = parsed.jazzAuth;
+            } else {
+              throw new APIError(404, {
+                message: "JazzAuth not found in verification value",
+              });
+            }
+          }),
+        },
+      ],
+      after: [
+        /**
+         * This middleware is used to extract the jazzAuth from the user and return it in the response.
+         * It is used in the following endpoints that return the user:
+         * - /sign-up/email
+         * - /sign-in/email
+         * - /get-session
+         */
+        {
+          matcher: (context) => {
+            return (
+              context.path.startsWith("/sign-up") ||
+              context.path.startsWith("/sign-in") ||
+              context.path.startsWith("/get-session")
+            );
+          },
+          handler: createAuthMiddleware({}, async (ctx) => {
+            const returned = ctx.context.returned as any;
+            if (!returned?.user?.id) {
+              return;
+            }
+            const jazzAuth = await extractJazzAuth(returned.user.id, ctx);
+
+            return ctx.json({
+              ...returned,
+              jazzAuth: jazzAuth,
+            });
+          }),
+        },
+      ],
+    },
+  };
+};
+
+function contextContainsJazzAuth(ctx: unknown): ctx is {
+  jazzAuth: {
+    accountID: string;
+    encryptedCredentials: string;
+  };
+} {
+  return !!ctx && typeof ctx === "object" && "jazzAuth" in ctx;
+}
+
+async function extractJazzAuth(
+  userId: string,
+  ctx: MiddlewareContext<
+    MiddlewareOptions,
+    AuthContext & {
+      returned?: unknown;
+      responseHeaders?: Headers;
+    }
+  >,
+) {
+  const user = await ctx.context.adapter.findOne<{
+    accountID: string;
+    encryptedCredentials: string;
+  }>({
+    model: ctx.context.tables.user!.modelName,
+    where: [
+      {
+        field: "id",
+        operator: "eq",
+        value: userId,
+      },
+    ],
+    select: ["accountID", "encryptedCredentials"],
+  });
+
+  if (!user) {
+    return;
+  }
+
+  const jazzAuth = JSON.parse(
+    await symmetricDecrypt({
+      key: ctx.context.secret,
+      data: user.encryptedCredentials,
+    }),
+  );
+
+  return jazzAuth;
+}