npm - ns-auth-sdk - Versions diffs - 1.2.6 → 1.3.0 - Mend

ns-auth-sdk 1.2.6 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/README.md +33 -16
package/dist/index.cjs +1397 -0
package/dist/index.cjs.map +1 -0
package/dist/index.css +115 -16
package/dist/index.css.map +1 -1
package/dist/index.d.cts +289 -0
package/dist/index.d.cts.map +1 -0
package/dist/index.d.mts +232 -157
package/dist/index.d.mts.map +1 -0
package/dist/index.mjs +1342 -1206
package/dist/index.mjs.map +1 -1
package/dist/utils-BR2TqhEA.cjs +3 -0
package/dist/utils-BVvtCpMQ.mjs +3 -0
package/dist/utils-CV_lg5Ir.mjs +492 -0
package/dist/utils-CV_lg5Ir.mjs.map +1 -0
package/dist/utils-CxLeFzNn.cjs +528 -0
package/dist/utils-CxLeFzNn.cjs.map +1 -0
package/package.json +18 -17
package/dist/index.d.ts +0 -214
package/dist/index.js +0 -1234
package/dist/index.js.map +0 -1

package/dist/utils-CxLeFzNn.cjs ADDED Viewed

@@ -0,0 +1,528 @@
+const require_index = require('./index.cjs');
+let rx_nostr_crypto = require("rx-nostr-crypto");
+//#region src/utils/utils.ts
+/**
+* @packageDocumentation
+*/
+/**
+* @param bytes
+* @returns
+*/
+function bytesToHex(bytes) {
+	const key = "0123456789abcdef";
+	let hex = "";
+	for (let i = 0; i < bytes.length; i++) {
+		const firstNibble = bytes[i] >> 4;
+		const secondNibble = bytes[i] & 15;
+		hex += key[firstNibble] + key[secondNibble];
+	}
+	return hex;
+}
+/**
+* @param hex
+* @returns
+*/
+function hexToBytes(hex) {
+	const key = "0123456789abcdef";
+	const bytes = [];
+	let currentByte = 0;
+	let highNibble = true;
+	for (let i = 0; i < hex.length; i++) {
+		const charValue = key.indexOf(hex[i].toLowerCase());
+		if (charValue === -1) continue;
+		if (highNibble) {
+			currentByte = charValue << 4;
+			highNibble = false;
+		} else {
+			currentByte += charValue;
+			bytes.push(currentByte);
+			highNibble = true;
+		}
+	}
+	return new Uint8Array(bytes);
+}
+//#endregion
+//#region src/utils/key-cache.ts
+/**
+* Key cache manager for managing temporary secret keys
+*/
+var KeyCache = class {
+	#cachedEntry = null;
+	#expiryTimer = null;
+	#cacheOptions = {
+		enabled: false,
+		timeoutMs: 300 * 1e3
+	};
+	/**
+	* KeyCache
+	* @param options
+	*/
+	constructor(options) {
+		if (options) this.#cacheOptions = {
+			...this.#cacheOptions,
+			...options
+		};
+	}
+	/**
+	* @param options
+	*/
+	setCacheOptions(options) {
+		if (Object.keys(options).length > 0 && this.#cachedEntry !== null) this.clearAllCachedKeys();
+		this.#cacheOptions = {
+			...this.#cacheOptions,
+			...options
+		};
+	}
+	getCacheOptions() {
+		return { ...this.#cacheOptions };
+	}
+	isEnabled() {
+		return this.#cacheOptions.enabled;
+	}
+	/**
+	* @param credentialId
+	* @param sk
+	*/
+	setKey(credentialId, sk) {
+		if (!this.#cacheOptions.enabled) return;
+		const id = typeof credentialId === "string" ? credentialId : bytesToHex(credentialId);
+		const timeout = this.#cacheOptions.timeoutMs !== void 0 ? this.#cacheOptions.timeoutMs : 300 * 1e3;
+		const expireAt = Date.now() + timeout;
+		this.#clearCachedEntry();
+		this.#cachedEntry = {
+			id,
+			sk: new Uint8Array(sk),
+			expireAt
+		};
+		try {
+			this.#scheduleExpiry();
+		} catch (error) {
+			this.#clearCachedEntry();
+			throw error;
+		}
+	}
+	/**
+	* @param credentialId
+	* @returns undefined
+	*/
+	getKey(credentialId) {
+		if (!this.#cacheOptions.enabled) return void 0;
+		const id = typeof credentialId === "string" ? credentialId : bytesToHex(credentialId);
+		return this.#getCachedKeyIfValid(id);
+	}
+	/**
+	* @param credentialId
+	*/
+	clearCachedKey(credentialId) {
+		const id = typeof credentialId === "string" ? credentialId : bytesToHex(credentialId);
+		if (this.#cachedEntry && this.#cachedEntry.id === id) this.#clearCachedEntry();
+	}
+	clearAllCachedKeys() {
+		this.#clearCachedEntry();
+	}
+	/**
+	* @param credentialId
+	* @returns undefined
+	*/
+	#getCachedKeyIfValid(credentialId) {
+		if (!this.#cachedEntry || this.#cachedEntry.id !== credentialId) return;
+		if (Date.now() < this.#cachedEntry.expireAt) return this.#cachedEntry.sk;
+		this.#clearCachedEntry();
+	}
+	#clearCachedEntry() {
+		if (this.#cachedEntry) {
+			this.#clearKey(this.#cachedEntry.sk);
+			this.#cachedEntry = null;
+		}
+		if (this.#expiryTimer) {
+			clearTimeout(this.#expiryTimer);
+			this.#expiryTimer = null;
+		}
+	}
+	#scheduleExpiry() {
+		if (!this.#cachedEntry) return;
+		const now = Date.now();
+		const timeToExpiry = this.#cachedEntry.expireAt - now;
+		if (timeToExpiry <= 0) {
+			this.#clearCachedEntry();
+			return;
+		}
+		this.#expiryTimer = setTimeout(() => {
+			this.#clearCachedEntry();
+		}, timeToExpiry + 1);
+	}
+	/**
+	* @param key
+	*/
+	#clearKey(key) {
+		key?.fill?.(0);
+	}
+};
+//#endregion
+//#region src/utils/prf-handler.ts
+const PRF_EVAL_INPUT = new TextEncoder().encode("nostr-pwk");
+/**
+* @returns PRF
+*/
+async function isPrfSupported() {
+	try {
+		const response = await navigator.credentials.get({ publicKey: {
+			challenge: crypto.getRandomValues(new Uint8Array(32)),
+			allowCredentials: [],
+			userVerification: "required",
+			extensions: { prf: { eval: { first: PRF_EVAL_INPUT } } }
+		} });
+		if (!response) return false;
+		return !!response.getClientExtensionResults()?.prf?.results?.first;
+	} catch {
+		return false;
+	}
+}
+/**
+* @param options
+* @returns Credential
+*/
+async function createPasskey(options = {}) {
+	const rpName = options.rp?.name || (typeof location !== "undefined" ? location.host : "Nosskey");
+	const rpId = options.rp?.id;
+	const userName = options.user?.name || "user@example.com";
+	const userDisplayName = options.user?.displayName || "Nosskey user";
+	const credentialCreationOptions = { publicKey: {
+		rp: {
+			name: rpName,
+			id: rpId
+		},
+		user: {
+			id: crypto.getRandomValues(new Uint8Array(16)),
+			name: userName,
+			displayName: userDisplayName
+		},
+		pubKeyCredParams: options.pubKeyCredParams || [{
+			type: "public-key",
+			alg: -7
+		}],
+		authenticatorSelection: options.authenticatorSelection || {
+			residentKey: "required",
+			userVerification: "required"
+		},
+		challenge: crypto.getRandomValues(new Uint8Array(32)),
+		extensions: options.extensions || { prf: {} }
+	} };
+	const cred = await navigator.credentials.create(credentialCreationOptions);
+	return new Uint8Array(cred.rawId);
+}
+/**
+* ID
+* @param credentialId
+* @param options PRF（rpId、timeout、userVerification）
+* @returns PRF credentialID
+*/
+async function getPrfSecret(credentialId, options) {
+	const allowCredentials = credentialId ? [{
+		type: "public-key",
+		id: credentialId
+	}] : [];
+	const requestOptions = {
+		challenge: crypto.getRandomValues(new Uint8Array(32)),
+		allowCredentials,
+		userVerification: options?.userVerification || "required",
+		extensions: { prf: { eval: { first: PRF_EVAL_INPUT } } }
+	};
+	if (options?.rpId) requestOptions.rpId = options.rpId;
+	if (options?.timeout) requestOptions.timeout = options.timeout;
+	const response = await navigator.credentials.get({ publicKey: requestOptions });
+	if (!response) throw new Error("Authentication failed");
+	const secret = response.getClientExtensionResults()?.prf?.results?.first;
+	if (!secret) throw new Error("PRF secret not available");
+	const responseId = new Uint8Array(response.rawId);
+	return {
+		secret: new Uint8Array(secret),
+		id: responseId
+	};
+}
+//#endregion
+//#region src/utils/nosskey.ts
+/**
+* Nosskey class for Passkey-Derived Nostr Identity
+* @packageDocumentation
+*/
+const STANDARD_SALT = "6e6f7374722d6b6579";
+/**
+* Nosskey - Passkey-Derived Nostr Keys
+*/
+var NosskeyManager = class {
+	#keyCache;
+	#currentKeyInfo = null;
+	#storageOptions = {
+		enabled: true,
+		storageKey: "nosskey_keyinfo"
+	};
+	#prfOptions = {};
+	/**
+	* NosskeyManager
+	* @param options
+	*/
+	constructor(options) {
+		this.#keyCache = new KeyCache(options?.cacheOptions);
+		if (options?.storageOptions) this.#storageOptions = {
+			...this.#storageOptions,
+			...options.storageOptions
+		};
+		const userVerification = options?.prfOptions?.userVerification ?? "required";
+		if (options?.prfOptions) this.#prfOptions = {
+			...options.prfOptions,
+			userVerification
+		};
+		else this.#prfOptions = { userVerification };
+		if (this.#storageOptions.enabled) {
+			const loadedKeyInfo = this.#loadKeyInfoFromStorage();
+			if (loadedKeyInfo) this.#currentKeyInfo = loadedKeyInfo;
+		}
+	}
+	/**
+	* NostrKeyInfo
+	* @param options
+	*/
+	setStorageOptions(options) {
+		this.#storageOptions = {
+			...this.#storageOptions,
+			...options
+		};
+		if (options.enabled === false) this.clearStoredKeyInfo();
+	}
+	/**
+	* NostrKeyInfo
+	*/
+	getStorageOptions() {
+		return { ...this.#storageOptions };
+	}
+	/**
+	* NostrKeyInfo
+	* @param keyInfo NostrKeyInfo
+	*/
+	setCurrentKeyInfo(keyInfo) {
+		this.#currentKeyInfo = keyInfo;
+		if (this.#storageOptions.enabled) this.#saveKeyInfoToStorage(keyInfo);
+	}
+	/**
+	* NostrKeyInfo
+	*/
+	getCurrentKeyInfo() {
+		if (!this.#currentKeyInfo && this.#storageOptions.enabled) this.#currentKeyInfo = this.#loadKeyInfoFromStorage();
+		return this.#currentKeyInfo;
+	}
+	/**
+	* NostrKeyInfo
+	* @returns NostrKeyInfo
+	*/
+	hasKeyInfo() {
+		if (this.#currentKeyInfo) return true;
+		if (this.#storageOptions.enabled) {
+			const loadedKeyInfo = this.#loadKeyInfoFromStorage();
+			if (loadedKeyInfo) {
+				this.#currentKeyInfo = loadedKeyInfo;
+				return true;
+			}
+		}
+		return false;
+	}
+	/**
+	* NostrKeyInfo
+	* @param keyInfo NostrKeyInfo
+	*/
+	async #saveKeyInfoToStorage(keyInfo) {
+		if (!this.#storageOptions.enabled) return;
+		const storage = this.#storageOptions.storage || (typeof localStorage !== "undefined" ? localStorage : null);
+		if (!storage) return;
+		const key = this.#storageOptions.storageKey || "nosskey_keyinfo";
+		storage.setItem(key, JSON.stringify(keyInfo));
+	}
+	/**
+	* NostrKeyInfo
+	*/
+	#loadKeyInfoFromStorage() {
+		if (!this.#storageOptions.enabled) return null;
+		const storage = this.#storageOptions.storage || (typeof localStorage !== "undefined" ? localStorage : null);
+		if (!storage) return null;
+		const key = this.#storageOptions.storageKey || "nosskey_keyinfo";
+		const data = storage.getItem(key);
+		if (!data) return null;
+		try {
+			return JSON.parse(data);
+		} catch (e) {
+			console.error("Failed to parse stored NostrKeyInfo", e);
+			return null;
+		}
+	}
+	/**
+	* NostrKeyInfo
+	*/
+	clearStoredKeyInfo() {
+		const storage = this.#storageOptions.storage || (typeof localStorage !== "undefined" ? localStorage : null);
+		if (!storage) return;
+		const key = this.#storageOptions.storageKey || "nosskey_keyinfo";
+		storage.removeItem(key);
+		this.#currentKeyInfo = null;
+	}
+	/**
+	* NIP-07
+	* NostrKeyInfo
+	*/
+	async getPublicKey() {
+		const keyInfo = this.getCurrentKeyInfo();
+		if (!keyInfo) throw new Error("No current NostrKeyInfo set");
+		return keyInfo.pubkey;
+	}
+	/**
+	* NIP-07
+	* NostrKeyInfo
+	* @param event Nostr
+	*/
+	async signEvent(event) {
+		const keyInfo = this.getCurrentKeyInfo();
+		if (!keyInfo) throw new Error("No current NostrKeyInfo set");
+		return this.signEventWithKeyInfo(event, keyInfo);
+	}
+	/**
+	* @param options
+	*/
+	setCacheOptions(options) {
+		this.#keyCache.setCacheOptions(options);
+	}
+	getCacheOptions() {
+		return this.#keyCache.getCacheOptions();
+	}
+	/**
+	* @param credentialId
+	*/
+	clearCachedKey(credentialId) {
+		this.#keyCache.clearCachedKey(credentialId);
+	}
+	clearAllCachedKeys() {
+		this.#keyCache.clearAllCachedKeys();
+	}
+	/**
+	* @param options
+	* @returns Credential
+	*/
+	async createPasskey(options = {}) {
+		return createPasskey({
+			rp: {
+				id: this.#prfOptions.rpId,
+				name: this.#prfOptions.rpId
+			},
+			authenticatorSelection: { userVerification: this.#prfOptions.userVerification },
+			...options
+		});
+	}
+	/**
+	* PRF NostrKeyInfo
+	* @param credentialId
+	* @param options
+	*/
+	async createNostrKey(credentialId, options = {}) {
+		const { secret: sk, id: responseId } = await getPrfSecret(credentialId, this.#prfOptions);
+		if (sk.every((byte) => byte === 0)) throw new Error("Invalid PRF output: all zeros");
+		const publicKey = await (0, rx_nostr_crypto.seckeySigner)(bytesToHex(sk)).getPublicKey();
+		return {
+			credentialId: bytesToHex(credentialId || responseId),
+			pubkey: publicKey,
+			salt: STANDARD_SALT,
+			...options.username && { username: options.username }
+		};
+	}
+	/**
+	* @param event Nostr
+	* @param keyInfo NostrKeyInfo
+	* @param options
+	*/
+	async signEventWithKeyInfo(event, keyInfo, options = {}) {
+		const { clearMemory = true, tags } = options;
+		const shouldUseCache = this.#keyCache.isEnabled();
+		let sk;
+		if (shouldUseCache) sk = this.#keyCache.getKey(keyInfo.credentialId);
+		if (!sk) {
+			const { secret: prfSecret } = await getPrfSecret(hexToBytes(keyInfo.credentialId), this.#prfOptions);
+			sk = prfSecret;
+			if (shouldUseCache) this.#keyCache.setKey(keyInfo.credentialId, sk);
+		}
+		const signedEvent = await (0, rx_nostr_crypto.seckeySigner)(bytesToHex(sk), { tags }).signEvent(event);
+		if (!shouldUseCache && clearMemory) this.#clearKey(sk);
+		return signedEvent;
+	}
+	/**
+	* @param keyInfo NostrKeyInfo
+	* @param credentialId NostrKeyInfoのcredentialId
+	* @param options
+	* @returns
+	*/
+	async exportNostrKey(keyInfo, credentialId) {
+		let usedCredentialId = credentialId;
+		if (!usedCredentialId && keyInfo.credentialId) usedCredentialId = hexToBytes(keyInfo.credentialId);
+		const { secret: sk } = await getPrfSecret(usedCredentialId, this.#prfOptions);
+		return bytesToHex(sk);
+	}
+	/**
+	* PRF
+	*/
+	async isPrfSupported() {
+		return isPrfSupported();
+	}
+	/**
+	* @param key
+	*/
+	#clearKey(key) {
+		key?.fill?.(0);
+	}
+};
+//#endregion
+//#region src/utils/crypto-utils.ts
+/**
+* Cryptographic utilities for Nosskey
+* @packageDocumentation
+*/
+const INFO_BYTES = new TextEncoder().encode("nostr-pwk");
+//#endregion
+Object.defineProperty(exports, 'NosskeyManager', {
+  enumerable: true,
+  get: function () {
+    return NosskeyManager;
+  }
+});
+Object.defineProperty(exports, 'bytesToHex', {
+  enumerable: true,
+  get: function () {
+    return bytesToHex;
+  }
+});
+Object.defineProperty(exports, 'createPasskey', {
+  enumerable: true,
+  get: function () {
+    return createPasskey;
+  }
+});
+Object.defineProperty(exports, 'getPrfSecret', {
+  enumerable: true,
+  get: function () {
+    return getPrfSecret;
+  }
+});
+Object.defineProperty(exports, 'hexToBytes', {
+  enumerable: true,
+  get: function () {
+    return hexToBytes;
+  }
+});
+Object.defineProperty(exports, 'isPrfSupported', {
+  enumerable: true,
+  get: function () {
+    return isPrfSupported;
+  }
+});
+//# sourceMappingURL=utils-CxLeFzNn.cjs.map

package/dist/utils-CxLeFzNn.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"utils-CxLeFzNn.cjs","names":["#cacheOptions","#cachedEntry","#clearCachedEntry","#scheduleExpiry","#getCachedKeyIfValid","#clearKey","#expiryTimer","#keyCache","#storageOptions","#prfOptions","#loadKeyInfoFromStorage","#currentKeyInfo","#saveKeyInfoToStorage","#clearKey"],"sources":["../src/utils/utils.ts","../src/utils/key-cache.ts","../src/utils/prf-handler.ts","../src/utils/nosskey.ts","../src/utils/crypto-utils.ts"],"sourcesContent":["/**\n * @packageDocumentation\n */\n\n/**\n * @param bytes\n * @returns\n */\nexport function bytesToHex(bytes: Uint8Array): string {\n const key = '0123456789abcdef';\n let hex = '';\n for (let i = 0; i < bytes.length; i++) {\n const firstNibble = bytes[i] >> 4;\n const secondNibble = bytes[i] & 15;\n hex += key[firstNibble] + key[secondNibble];\n }\n return hex;\n}\n\n/**\n * @param hex\n * @returns\n */\nexport function hexToBytes(hex: string): Uint8Array {\n const key = '0123456789abcdef';\n const bytes = [];\n let currentByte = 0;\n let highNibble = true;\n\n for (let i = 0; i < hex.length; i++) {\n const charValue = key.indexOf(hex[i].toLowerCase());\n if (charValue === -1) continue;\n\n if (highNibble) {\n currentByte = charValue << 4;\n highNibble = false;\n } else {\n currentByte += charValue;\n bytes.push(currentByte);\n highNibble = true;\n }\n }\n\n return new Uint8Array(bytes);\n}\n","/**\n * Key cache management for Nosskey\n * @packageDocumentation\n */\n\nimport type { KeyCacheOptions } from './types.js';\nimport { bytesToHex } from './utils.js';\n\n/**\n * Key cache entry with expiration time\n */\ninterface CacheEntry {\n id: string;\n sk: Uint8Array;\n expireAt: number;\n}\n\n/**\n * Key cache manager for managing temporary secret keys\n */\nexport class KeyCache {\n #cachedEntry: CacheEntry | null = null;\n\n #expiryTimer: NodeJS.Timeout | null = null;\n\n #cacheOptions: KeyCacheOptions = {\n enabled: false,\n timeoutMs: 5 * 60 * 1000,\n };\n\n /**\n * KeyCache\n * @param options\n */\n constructor(options?: Partial<KeyCacheOptions>) {\n if (options) {\n this.#cacheOptions = { ...this.#cacheOptions, ...options };\n }\n }\n\n /**\n * @param options\n */\n setCacheOptions(options: Partial<KeyCacheOptions>): void {\n if (Object.keys(options).length > 0 && this.#cachedEntry !== null) {\n this.clearAllCachedKeys();\n }\n\n this.#cacheOptions = { ...this.#cacheOptions, ...options };\n }\n\n getCacheOptions(): KeyCacheOptions {\n return { ...this.#cacheOptions };\n }\n\n isEnabled(): boolean {\n return this.#cacheOptions.enabled;\n }\n\n /**\n * @param credentialId\n * @param sk\n */\n setKey(credentialId: Uint8Array | string, sk: Uint8Array): void {\n if (!this.#cacheOptions.enabled) return;\n\n const id = typeof credentialId === 'string' ? credentialId : bytesToHex(credentialId);\n const timeout =\n this.#cacheOptions.timeoutMs !== undefined ? this.#cacheOptions.timeoutMs : 5 * 60 * 1000;\n const expireAt = Date.now() + timeout;\n\n this.#clearCachedEntry();\n\n this.#cachedEntry = {\n id,\n sk: new Uint8Array(sk),\n expireAt,\n };\n\n try {\n this.#scheduleExpiry();\n } catch (error) {\n this.#clearCachedEntry();\n throw error;\n }\n }\n\n /**\n * @param credentialId\n * @returns undefined\n */\n getKey(credentialId: Uint8Array | string): Uint8Array | undefined {\n if (!this.#cacheOptions.enabled) return undefined;\n\n const id = typeof credentialId === 'string' ? credentialId : bytesToHex(credentialId);\n return this.#getCachedKeyIfValid(id);\n }\n\n /**\n * @param credentialId\n */\n clearCachedKey(credentialId: Uint8Array | string): void {\n const id = typeof credentialId === 'string' ? credentialId : bytesToHex(credentialId);\n\n if (this.#cachedEntry && this.#cachedEntry.id === id) {\n this.#clearCachedEntry();\n }\n }\n\n clearAllCachedKeys(): void {\n this.#clearCachedEntry();\n }\n\n /**\n * @param credentialId\n * @returns undefined\n */\n #getCachedKeyIfValid(credentialId: string): Uint8Array | undefined {\n if (!this.#cachedEntry || this.#cachedEntry.id !== credentialId) {\n return undefined;\n }\n\n if (Date.now() < this.#cachedEntry.expireAt) {\n return this.#cachedEntry.sk;\n }\n\n this.#clearCachedEntry();\n return undefined;\n }\n\n #clearCachedEntry(): void {\n if (this.#cachedEntry) {\n this.#clearKey(this.#cachedEntry.sk);\n this.#cachedEntry = null;\n }\n\n if (this.#expiryTimer) {\n clearTimeout(this.#expiryTimer);\n this.#expiryTimer = null;\n }\n }\n\n #scheduleExpiry(): void {\n if (!this.#cachedEntry) return;\n\n const now = Date.now();\n const timeToExpiry = this.#cachedEntry.expireAt - now;\n\n if (timeToExpiry <= 0) {\n this.#clearCachedEntry();\n return;\n }\n\n this.#expiryTimer = setTimeout(() => {\n this.#clearCachedEntry();\n }, timeToExpiry + 1);\n }\n\n /**\n * @param key\n */\n #clearKey(key: Uint8Array): void {\n key?.fill?.(0);\n }\n}\n","/**\n * PRF (Pseudo-Random Function) handler for WebAuthn\n * @packageDocumentation\n */\n\nimport type { GetPrfSecretOptions, PasskeyCreationOptions } from './types.js';\n\nconst PRF_EVAL_INPUT = new TextEncoder().encode('nostr-pwk');\n\n/**\n * @returns PRF\n */\nexport async function isPrfSupported(): Promise<boolean> {\n try {\n const response = await navigator.credentials.get({\n publicKey: {\n challenge: crypto.getRandomValues(new Uint8Array(32)),\n allowCredentials: [],\n userVerification: 'required',\n extensions: { prf: { eval: { first: PRF_EVAL_INPUT } } },\n } as PublicKeyCredentialRequestOptions,\n });\n\n if (!response) return false;\n\n const assertion = response as unknown as {\n getClientExtensionResults: () => {\n prf?: {\n results?: {\n first?: ArrayBuffer;\n };\n };\n };\n };\n\n const res = assertion.getClientExtensionResults()?.prf?.results?.first;\n return !!res;\n } catch {\n return false;\n }\n}\n\n/**\n * @param options\n * @returns Credential\n */\nexport async function createPasskey(options: PasskeyCreationOptions = {}): Promise<Uint8Array> {\n // Node\n const rpName = options.rp?.name || (typeof location !== 'undefined' ? location.host : 'Nosskey');\n const rpId = options.rp?.id;\n const userName = options.user?.name || 'user@example.com';\n const userDisplayName = options.user?.displayName || 'Nosskey user';\n\n const credentialCreationOptions: CredentialCreationOptions = {\n publicKey: {\n rp: {\n name: rpName,\n id: rpId,\n },\n user: {\n id: crypto.getRandomValues(new Uint8Array(16)),\n name: userName,\n displayName: userDisplayName,\n },\n pubKeyCredParams: options.pubKeyCredParams || [{ type: 'public-key', alg: -7 }], // ES256\n authenticatorSelection: options.authenticatorSelection || {\n residentKey: 'required',\n userVerification: 'required',\n },\n challenge: crypto.getRandomValues(new Uint8Array(32)),\n extensions: options.extensions || { prf: {} }, // PRF拡張を要求\n } as PublicKeyCredentialCreationOptions,\n };\n const cred = (await navigator.credentials.create(\n credentialCreationOptions\n )) as PublicKeyCredential;\n\n return new Uint8Array(cred.rawId);\n}\n\n/**\n * ID\n * @param credentialId \n * @param options PRF（rpId、timeout、userVerification）\n * @returns PRF credentialID\n */\nexport async function getPrfSecret(\n credentialId?: Uint8Array,\n options?: GetPrfSecretOptions\n): Promise<{ secret: Uint8Array; id: Uint8Array }> {\n const allowCredentials = credentialId ? [{ type: 'public-key' as const, id: credentialId }] : [];\n\n const requestOptions: PublicKeyCredentialRequestOptions = {\n challenge: crypto.getRandomValues(new Uint8Array(32)),\n allowCredentials,\n userVerification: options?.userVerification || 'required',\n extensions: {\n prf: { eval: { first: PRF_EVAL_INPUT } },\n } as AuthenticationExtensionsClientInputs,\n };\n\n if (options?.rpId) {\n requestOptions.rpId = options.rpId;\n }\n if (options?.timeout) {\n requestOptions.timeout = options.timeout;\n }\n\n const response = await navigator.credentials.get({\n publicKey: requestOptions,\n });\n\n if (!response) {\n throw new Error('Authentication failed');\n }\n\n const assertion = response as unknown as {\n getClientExtensionResults: () => {\n prf?: {\n results?: {\n first?: ArrayBuffer;\n };\n };\n };\n };\n\n const secret = assertion.getClientExtensionResults()?.prf?.results?.first;\n if (!secret) {\n throw new Error('PRF secret not available');\n }\n\n // response credentialId\n const responseId = new Uint8Array((response as PublicKeyCredential).rawId);\n\n return {\n secret: new Uint8Array(secret),\n id: responseId,\n };\n}\n","import { seckeySigner } from 'rx-nostr-crypto';\nimport { KeyCache } from './key-cache.js';\nimport { createPasskey, getPrfSecret, isPrfSupported } from './prf-handler.js';\nimport type {\n GetPrfSecretOptions,\n KeyCacheOptions,\n KeyOptions,\n NosskeyManagerLike,\n NosskeyManagerOptions,\n NostrEvent,\n NostrKeyInfo,\n NostrKeyStorageOptions,\n PasskeyCreationOptions,\n SignOptions,\n} from './types.js';\n/**\n * Nosskey class for Passkey-Derived Nostr Identity\n * @packageDocumentation\n */\nimport { bytesToHex, hexToBytes } from './utils.js';\n\n// salt（\"nostr-key\" UTF-8）\nconst STANDARD_SALT = '6e6f7374722d6b6579';\n\n/**\n * Nosskey - Passkey-Derived Nostr Keys\n */\nexport class NosskeyManager implements NosskeyManagerLike {\n #keyCache: KeyCache;\n\n // NostrKeyInfo\n #currentKeyInfo: NostrKeyInfo | null = null;\n\n // NostrKeyInfo\n #storageOptions: NostrKeyStorageOptions = {\n enabled: true,\n storageKey: 'nosskey_keyinfo',\n };\n\n // PRF\n #prfOptions: GetPrfSecretOptions = {};\n\n /**\n * NosskeyManager\n * @param options\n */\n constructor(options?: NosskeyManagerOptions) {\n // KeyCache\n this.#keyCache = new KeyCache(options?.cacheOptions);\n\n if (options?.storageOptions) {\n this.#storageOptions = { ...this.#storageOptions, ...options.storageOptions };\n }\n\n // option\n const userVerification = options?.prfOptions?.userVerification ?? 'required';\n if (options?.prfOptions) {\n this.#prfOptions = { ...options.prfOptions, userVerification };\n } else {\n this.#prfOptions = { userVerification };\n }\n\n // NostrKeyInfo\n if (this.#storageOptions.enabled) {\n const loadedKeyInfo = this.#loadKeyInfoFromStorage();\n if (loadedKeyInfo) {\n this.#currentKeyInfo = loadedKeyInfo;\n }\n }\n }\n\n /**\n * NostrKeyInfo\n * @param options\n */\n setStorageOptions(options: Partial<NostrKeyStorageOptions>): void {\n this.#storageOptions = { ...this.#storageOptions, ...options };\n\n if (options.enabled === false) {\n this.clearStoredKeyInfo();\n }\n }\n\n /**\n * NostrKeyInfo\n */\n getStorageOptions(): NostrKeyStorageOptions {\n return { ...this.#storageOptions };\n }\n\n /**\n * NostrKeyInfo\n * @param keyInfo NostrKeyInfo\n */\n setCurrentKeyInfo(keyInfo: NostrKeyInfo): void {\n this.#currentKeyInfo = keyInfo;\n\n if (this.#storageOptions.enabled) {\n void this.#saveKeyInfoToStorage(keyInfo);\n }\n }\n\n /**\n * NostrKeyInfo\n */\n getCurrentKeyInfo(): NostrKeyInfo | null {\n // NostrKeyInfo\n if (!this.#currentKeyInfo && this.#storageOptions.enabled) {\n this.#currentKeyInfo = this.#loadKeyInfoFromStorage();\n }\n return this.#currentKeyInfo;\n }\n\n /**\n * NostrKeyInfo\n * @returns NostrKeyInfo\n */\n hasKeyInfo(): boolean {\n if (this.#currentKeyInfo) {\n return true;\n }\n\n if (this.#storageOptions.enabled) {\n const loadedKeyInfo = this.#loadKeyInfoFromStorage();\n if (loadedKeyInfo) {\n this.#currentKeyInfo = loadedKeyInfo;\n return true;\n }\n }\n\n return false;\n }\n\n /**\n * NostrKeyInfo\n * @param keyInfo NostrKeyInfo\n */\n async #saveKeyInfoToStorage(keyInfo: NostrKeyInfo): Promise<void> {\n if (!this.#storageOptions.enabled) return;\n\n const storage =\n this.#storageOptions.storage || (typeof localStorage !== 'undefined' ? localStorage : null);\n\n if (!storage) return;\n\n const key = this.#storageOptions.storageKey || 'nosskey_keyinfo';\n storage.setItem(key, JSON.stringify(keyInfo));\n }\n\n /**\n * NostrKeyInfo\n */\n #loadKeyInfoFromStorage(): NostrKeyInfo | null {\n if (!this.#storageOptions.enabled) return null;\n\n const storage =\n this.#storageOptions.storage || (typeof localStorage !== 'undefined' ? localStorage : null);\n\n if (!storage) return null;\n\n const key = this.#storageOptions.storageKey || 'nosskey_keyinfo';\n const data = storage.getItem(key);\n\n if (!data) return null;\n\n try {\n return JSON.parse(data) as NostrKeyInfo;\n } catch (e) {\n console.error('Failed to parse stored NostrKeyInfo', e);\n return null;\n }\n }\n\n /**\n * NostrKeyInfo\n */\n clearStoredKeyInfo(): void {\n const storage =\n this.#storageOptions.storage || (typeof localStorage !== 'undefined' ? localStorage : null);\n\n if (!storage) return;\n\n const key = this.#storageOptions.storageKey || 'nosskey_keyinfo';\n storage.removeItem(key);\n\n // NostrKeyInfo\n this.#currentKeyInfo = null;\n }\n\n /**\n * NIP-07\n * NostrKeyInfo\n */\n async getPublicKey(): Promise<string> {\n const keyInfo = this.getCurrentKeyInfo();\n if (!keyInfo) {\n throw new Error('No current NostrKeyInfo set');\n }\n return keyInfo.pubkey;\n }\n\n /**\n * NIP-07\n * NostrKeyInfo\n * @param event Nostr\n */\n async signEvent(event: NostrEvent): Promise<NostrEvent> {\n const keyInfo = this.getCurrentKeyInfo();\n if (!keyInfo) {\n throw new Error('No current NostrKeyInfo set');\n }\n return this.signEventWithKeyInfo(event, keyInfo);\n }\n\n /**\n * @param options\n */\n setCacheOptions(options: Partial<KeyCacheOptions>): void {\n this.#keyCache.setCacheOptions(options);\n }\n\n getCacheOptions(): KeyCacheOptions {\n return this.#keyCache.getCacheOptions();\n }\n\n /**\n * @param credentialId\n */\n clearCachedKey(credentialId: Uint8Array | string): void {\n this.#keyCache.clearCachedKey(credentialId);\n }\n\n clearAllCachedKeys(): void {\n this.#keyCache.clearAllCachedKeys();\n }\n\n /**\n * @param options\n * @returns Credential\n */\n async createPasskey(options: PasskeyCreationOptions = {}): Promise<Uint8Array> {\n return createPasskey({\n rp: {\n id: this.#prfOptions.rpId,\n name: this.#prfOptions.rpId,\n },\n authenticatorSelection: {\n userVerification: this.#prfOptions.userVerification,\n },\n ...options,\n });\n }\n\n /**\n * PRF NostrKeyInfo\n * @param credentialId\n * @param options\n */\n async createNostrKey(credentialId?: Uint8Array, options: KeyOptions = {}): Promise<NostrKeyInfo> {\n const { secret: sk, id: responseId } = await getPrfSecret(credentialId, this.#prfOptions);\n\n // secp256k1\n if (sk.every((byte) => byte === 0)) {\n throw new Error('Invalid PRF output: all zeros');\n }\n\n // HEX\n const skHex = bytesToHex(sk);\n\n // rx-nostr-crypto\n const signer = seckeySigner(skHex);\n const publicKey = await signer.getPublicKey();\n\n // NostrKeyInfo\n const keyInfo: NostrKeyInfo = {\n credentialId: bytesToHex(credentialId || responseId),\n pubkey: publicKey,\n salt: STANDARD_SALT, // salt\n ...(options.username && { username: options.username }), // username\n };\n\n return keyInfo;\n }\n\n /**\n * @param event Nostr\n * @param keyInfo NostrKeyInfo\n * @param options\n */\n async signEventWithKeyInfo(\n event: NostrEvent,\n keyInfo: NostrKeyInfo,\n options: SignOptions = {}\n ): Promise<NostrEvent> {\n const { clearMemory = true, tags } = options;\n\n const shouldUseCache = this.#keyCache.isEnabled();\n\n let sk: Uint8Array | undefined;\n\n if (shouldUseCache) {\n sk = this.#keyCache.getKey(keyInfo.credentialId);\n }\n\n if (!sk) {\n const { secret: prfSecret } = await getPrfSecret(\n hexToBytes(keyInfo.credentialId),\n this.#prfOptions\n );\n sk = prfSecret;\n\n if (shouldUseCache) {\n this.#keyCache.setKey(keyInfo.credentialId, sk);\n }\n }\n\n const skHex = bytesToHex(sk);\n\n // rx-nostr-crypto seckeySigner\n const signer = seckeySigner(skHex, { tags });\n const signedEvent = await signer.signEvent(event);\n\n // clearMemory=true\n if (!shouldUseCache && clearMemory) {\n this.#clearKey(sk);\n }\n\n return signedEvent;\n }\n\n /**\n * @param keyInfo NostrKeyInfo\n * @param credentialId NostrKeyInfoのcredentialId\n * @param options\n * @returns \n */\n async exportNostrKey(keyInfo: NostrKeyInfo, credentialId?: Uint8Array): Promise<string> {\n // NostrKeyInfo credentialId\n let usedCredentialId = credentialId;\n\n // credentialId NostrKeyInfo\n if (!usedCredentialId && keyInfo.credentialId) {\n usedCredentialId = hexToBytes(keyInfo.credentialId);\n }\n\n // PRF\n const { secret: sk } = await getPrfSecret(usedCredentialId, this.#prfOptions);\n\n // HEX\n const skHex = bytesToHex(sk);\n\n return skHex;\n }\n\n /**\n * PRF\n */\n async isPrfSupported(): Promise<boolean> {\n return isPrfSupported();\n }\n\n /**\n * @param key\n */\n #clearKey(key: Uint8Array): void {\n key?.fill?.(0);\n }\n}\n","/**\n * Cryptographic utilities for Nosskey\n * @packageDocumentation\n */\n\nconst INFO_BYTES = new TextEncoder().encode('nostr-pwk');\nconst AES_LENGTH = 256; // bits\n\n/**\n * PRF AES-GCM\n * @param secret PRF\n * @param salt\n * @returns AES-GCM\n */\nexport async function deriveAesGcmKey(secret: Uint8Array, salt: Uint8Array): Promise<CryptoKey> {\n const keyMaterial = await crypto.subtle.importKey('raw', secret, 'HKDF', false, ['deriveKey']);\n\n return crypto.subtle.deriveKey(\n { name: 'HKDF', hash: 'SHA-256', salt, info: INFO_BYTES },\n keyMaterial,\n { name: 'AES-GCM', length: AES_LENGTH },\n false,\n ['encrypt', 'decrypt']\n );\n}\n\n/**\n * AES-GCM\n * @param key\n * @param iv\n * @param plaintext\n * @returns\n */\nexport async function aesGcmEncrypt(key: CryptoKey, iv: Uint8Array, plaintext: Uint8Array) {\n const buf = await crypto.subtle.encrypt({ name: 'AES-GCM', iv }, key, plaintext);\n\n const bytes = new Uint8Array(buf);\n return {\n ciphertext: bytes.slice(0, -16),\n tag: bytes.slice(-16),\n };\n}\n\n/**\n * AES-GCM\n * @param key\n * @param iv\n * @param ct\n * @param tag\n * @returns\n */\nexport async function aesGcmDecrypt(\n key: CryptoKey,\n iv: Uint8Array,\n ct: Uint8Array,\n tag: Uint8Array\n): Promise<Uint8Array> {\n const buf = await crypto.subtle.decrypt(\n { name: 'AES-GCM', iv },\n key,\n new Uint8Array([...ct, ...tag])\n );\n return new Uint8Array(buf);\n}\n"],"mappings":";;;;;;;;;;;AAQA,SAAgB,WAAW,OAA2B;CACpD,MAAM,MAAM;CACZ,IAAI,MAAM;AACV,MAAK,IAAI,IAAI,GAAG,IAAI,MAAM,QAAQ,KAAK;EACrC,MAAM,cAAc,MAAM,MAAM;EAChC,MAAM,eAAe,MAAM,KAAK;AAChC,SAAO,IAAI,eAAe,IAAI;;AAEhC,QAAO;;;;;;AAOT,SAAgB,WAAW,KAAyB;CAClD,MAAM,MAAM;CACZ,MAAM,QAAQ,EAAE;CAChB,IAAI,cAAc;CAClB,IAAI,aAAa;AAEjB,MAAK,IAAI,IAAI,GAAG,IAAI,IAAI,QAAQ,KAAK;EACnC,MAAM,YAAY,IAAI,QAAQ,IAAI,GAAG,aAAa,CAAC;AACnD,MAAI,cAAc,GAAI;AAEtB,MAAI,YAAY;AACd,iBAAc,aAAa;AAC3B,gBAAa;SACR;AACL,kBAAe;AACf,SAAM,KAAK,YAAY;AACvB,gBAAa;;;AAIjB,QAAO,IAAI,WAAW,MAAM;;;;;;;;ACvB9B,IAAa,WAAb,MAAsB;CACpB,eAAkC;CAElC,eAAsC;CAEtC,gBAAiC;EAC/B,SAAS;EACT,WAAW,MAAS;EACrB;;;;;CAMD,YAAY,SAAoC;AAC9C,MAAI,QACF,OAAKA,eAAgB;GAAE,GAAG,MAAKA;GAAe,GAAG;GAAS;;;;;CAO9D,gBAAgB,SAAyC;AACvD,MAAI,OAAO,KAAK,QAAQ,CAAC,SAAS,KAAK,MAAKC,gBAAiB,KAC3D,MAAK,oBAAoB;AAG3B,QAAKD,eAAgB;GAAE,GAAG,MAAKA;GAAe,GAAG;GAAS;;CAG5D,kBAAmC;AACjC,SAAO,EAAE,GAAG,MAAKA,cAAe;;CAGlC,YAAqB;AACnB,SAAO,MAAKA,aAAc;;;;;;CAO5B,OAAO,cAAmC,IAAsB;AAC9D,MAAI,CAAC,MAAKA,aAAc,QAAS;EAEjC,MAAM,KAAK,OAAO,iBAAiB,WAAW,eAAe,WAAW,aAAa;EACrF,MAAM,UACJ,MAAKA,aAAc,cAAc,SAAY,MAAKA,aAAc,YAAY,MAAS;EACvF,MAAM,WAAW,KAAK,KAAK,GAAG;AAE9B,QAAKE,kBAAmB;AAExB,QAAKD,cAAe;GAClB;GACA,IAAI,IAAI,WAAW,GAAG;GACtB;GACD;AAED,MAAI;AACF,SAAKE,gBAAiB;WACf,OAAO;AACd,SAAKD,kBAAmB;AACxB,SAAM;;;;;;;CAQV,OAAO,cAA2D;AAChE,MAAI,CAAC,MAAKF,aAAc,QAAS,QAAO;EAExC,MAAM,KAAK,OAAO,iBAAiB,WAAW,eAAe,WAAW,aAAa;AACrF,SAAO,MAAKI,oBAAqB,GAAG;;;;;CAMtC,eAAe,cAAyC;EACtD,MAAM,KAAK,OAAO,iBAAiB,WAAW,eAAe,WAAW,aAAa;AAErF,MAAI,MAAKH,eAAgB,MAAKA,YAAa,OAAO,GAChD,OAAKC,kBAAmB;;CAI5B,qBAA2B;AACzB,QAAKA,kBAAmB;;;;;;CAO1B,qBAAqB,cAA8C;AACjE,MAAI,CAAC,MAAKD,eAAgB,MAAKA,YAAa,OAAO,aACjD;AAGF,MAAI,KAAK,KAAK,GAAG,MAAKA,YAAa,SACjC,QAAO,MAAKA,YAAa;AAG3B,QAAKC,kBAAmB;;CAI1B,oBAA0B;AACxB,MAAI,MAAKD,aAAc;AACrB,SAAKI,SAAU,MAAKJ,YAAa,GAAG;AACpC,SAAKA,cAAe;;AAGtB,MAAI,MAAKK,aAAc;AACrB,gBAAa,MAAKA,YAAa;AAC/B,SAAKA,cAAe;;;CAIxB,kBAAwB;AACtB,MAAI,CAAC,MAAKL,YAAc;EAExB,MAAM,MAAM,KAAK,KAAK;EACtB,MAAM,eAAe,MAAKA,YAAa,WAAW;AAElD,MAAI,gBAAgB,GAAG;AACrB,SAAKC,kBAAmB;AACxB;;AAGF,QAAKI,cAAe,iBAAiB;AACnC,SAAKJ,kBAAmB;KACvB,eAAe,EAAE;;;;;CAMtB,UAAU,KAAuB;AAC/B,OAAK,OAAO,EAAE;;;;;;AC3JlB,MAAM,iBAAiB,IAAI,aAAa,CAAC,OAAO,YAAY;;;;AAK5D,eAAsB,iBAAmC;AACvD,KAAI;EACF,MAAM,WAAW,MAAM,UAAU,YAAY,IAAI,EAC/C,WAAW;GACT,WAAW,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC;GACrD,kBAAkB,EAAE;GACpB,kBAAkB;GAClB,YAAY,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,gBAAgB,EAAE,EAAE;GACzD,EACF,CAAC;AAEF,MAAI,CAAC,SAAU,QAAO;AAatB,SAAO,CAAC,CAXU,SAUI,2BAA2B,EAAE,KAAK,SAAS;SAE3D;AACN,SAAO;;;;;;;AAQX,eAAsB,cAAc,UAAkC,EAAE,EAAuB;CAE7F,MAAM,SAAS,QAAQ,IAAI,SAAS,OAAO,aAAa,cAAc,SAAS,OAAO;CACtF,MAAM,OAAO,QAAQ,IAAI;CACzB,MAAM,WAAW,QAAQ,MAAM,QAAQ;CACvC,MAAM,kBAAkB,QAAQ,MAAM,eAAe;CAErD,MAAM,4BAAuD,EAC3D,WAAW;EACT,IAAI;GACF,MAAM;GACN,IAAI;GACL;EACD,MAAM;GACJ,IAAI,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC;GAC9C,MAAM;GACN,aAAa;GACd;EACD,kBAAkB,QAAQ,oBAAoB,CAAC;GAAE,MAAM;GAAc,KAAK;GAAI,CAAC;EAC/E,wBAAwB,QAAQ,0BAA0B;GACxD,aAAa;GACb,kBAAkB;GACnB;EACD,WAAW,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC;EACrD,YAAY,QAAQ,cAAc,EAAE,KAAK,EAAE,EAAE;EAC9C,EACF;CACD,MAAM,OAAQ,MAAM,UAAU,YAAY,OACxC,0BACD;AAED,QAAO,IAAI,WAAW,KAAK,MAAM;;;;;;;;AASnC,eAAsB,aACpB,cACA,SACiD;CACjD,MAAM,mBAAmB,eAAe,CAAC;EAAE,MAAM;EAAuB,IAAI;EAAc,CAAC,GAAG,EAAE;CAEhG,MAAM,iBAAoD;EACxD,WAAW,OAAO,gBAAgB,IAAI,WAAW,GAAG,CAAC;EACrD;EACA,kBAAkB,SAAS,oBAAoB;EAC/C,YAAY,EACV,KAAK,EAAE,MAAM,EAAE,OAAO,gBAAgB,EAAE,EACzC;EACF;AAED,KAAI,SAAS,KACX,gBAAe,OAAO,QAAQ;AAEhC,KAAI,SAAS,QACX,gBAAe,UAAU,QAAQ;CAGnC,MAAM,WAAW,MAAM,UAAU,YAAY,IAAI,EAC/C,WAAW,gBACZ,CAAC;AAEF,KAAI,CAAC,SACH,OAAM,IAAI,MAAM,wBAAwB;CAa1C,MAAM,SAVY,SAUO,2BAA2B,EAAE,KAAK,SAAS;AACpE,KAAI,CAAC,OACH,OAAM,IAAI,MAAM,2BAA2B;CAI7C,MAAM,aAAa,IAAI,WAAY,SAAiC,MAAM;AAE1E,QAAO;EACL,QAAQ,IAAI,WAAW,OAAO;EAC9B,IAAI;EACL;;;;;;;;;ACnHH,MAAM,gBAAgB;;;;AAKtB,IAAa,iBAAb,MAA0D;CACxD;CAGA,kBAAuC;CAGvC,kBAA0C;EACxC,SAAS;EACT,YAAY;EACb;CAGD,cAAmC,EAAE;;;;;CAMrC,YAAY,SAAiC;AAE3C,QAAKK,WAAY,IAAI,SAAS,SAAS,aAAa;AAEpD,MAAI,SAAS,eACX,OAAKC,iBAAkB;GAAE,GAAG,MAAKA;GAAiB,GAAG,QAAQ;GAAgB;EAI/E,MAAM,mBAAmB,SAAS,YAAY,oBAAoB;AAClE,MAAI,SAAS,WACX,OAAKC,aAAc;GAAE,GAAG,QAAQ;GAAY;GAAkB;MAE9D,OAAKA,aAAc,EAAE,kBAAkB;AAIzC,MAAI,MAAKD,eAAgB,SAAS;GAChC,MAAM,gBAAgB,MAAKE,wBAAyB;AACpD,OAAI,cACF,OAAKC,iBAAkB;;;;;;;CAS7B,kBAAkB,SAAgD;AAChE,QAAKH,iBAAkB;GAAE,GAAG,MAAKA;GAAiB,GAAG;GAAS;AAE9D,MAAI,QAAQ,YAAY,MACtB,MAAK,oBAAoB;;;;;CAO7B,oBAA4C;AAC1C,SAAO,EAAE,GAAG,MAAKA,gBAAiB;;;;;;CAOpC,kBAAkB,SAA6B;AAC7C,QAAKG,iBAAkB;AAEvB,MAAI,MAAKH,eAAgB,QACvB,CAAK,MAAKI,qBAAsB,QAAQ;;;;;CAO5C,oBAAyC;AAEvC,MAAI,CAAC,MAAKD,kBAAmB,MAAKH,eAAgB,QAChD,OAAKG,iBAAkB,MAAKD,wBAAyB;AAEvD,SAAO,MAAKC;;;;;;CAOd,aAAsB;AACpB,MAAI,MAAKA,eACP,QAAO;AAGT,MAAI,MAAKH,eAAgB,SAAS;GAChC,MAAM,gBAAgB,MAAKE,wBAAyB;AACpD,OAAI,eAAe;AACjB,UAAKC,iBAAkB;AACvB,WAAO;;;AAIX,SAAO;;;;;;CAOT,OAAMC,qBAAsB,SAAsC;AAChE,MAAI,CAAC,MAAKJ,eAAgB,QAAS;EAEnC,MAAM,UACJ,MAAKA,eAAgB,YAAY,OAAO,iBAAiB,cAAc,eAAe;AAExF,MAAI,CAAC,QAAS;EAEd,MAAM,MAAM,MAAKA,eAAgB,cAAc;AAC/C,UAAQ,QAAQ,KAAK,KAAK,UAAU,QAAQ,CAAC;;;;;CAM/C,0BAA+C;AAC7C,MAAI,CAAC,MAAKA,eAAgB,QAAS,QAAO;EAE1C,MAAM,UACJ,MAAKA,eAAgB,YAAY,OAAO,iBAAiB,cAAc,eAAe;AAExF,MAAI,CAAC,QAAS,QAAO;EAErB,MAAM,MAAM,MAAKA,eAAgB,cAAc;EAC/C,MAAM,OAAO,QAAQ,QAAQ,IAAI;AAEjC,MAAI,CAAC,KAAM,QAAO;AAElB,MAAI;AACF,UAAO,KAAK,MAAM,KAAK;WAChB,GAAG;AACV,WAAQ,MAAM,uCAAuC,EAAE;AACvD,UAAO;;;;;;CAOX,qBAA2B;EACzB,MAAM,UACJ,MAAKA,eAAgB,YAAY,OAAO,iBAAiB,cAAc,eAAe;AAExF,MAAI,CAAC,QAAS;EAEd,MAAM,MAAM,MAAKA,eAAgB,cAAc;AAC/C,UAAQ,WAAW,IAAI;AAGvB,QAAKG,iBAAkB;;;;;;CAOzB,MAAM,eAAgC;EACpC,MAAM,UAAU,KAAK,mBAAmB;AACxC,MAAI,CAAC,QACH,OAAM,IAAI,MAAM,8BAA8B;AAEhD,SAAO,QAAQ;;;;;;;CAQjB,MAAM,UAAU,OAAwC;EACtD,MAAM,UAAU,KAAK,mBAAmB;AACxC,MAAI,CAAC,QACH,OAAM,IAAI,MAAM,8BAA8B;AAEhD,SAAO,KAAK,qBAAqB,OAAO,QAAQ;;;;;CAMlD,gBAAgB,SAAyC;AACvD,QAAKJ,SAAU,gBAAgB,QAAQ;;CAGzC,kBAAmC;AACjC,SAAO,MAAKA,SAAU,iBAAiB;;;;;CAMzC,eAAe,cAAyC;AACtD,QAAKA,SAAU,eAAe,aAAa;;CAG7C,qBAA2B;AACzB,QAAKA,SAAU,oBAAoB;;;;;;CAOrC,MAAM,cAAc,UAAkC,EAAE,EAAuB;AAC7E,SAAO,cAAc;GACnB,IAAI;IACF,IAAI,MAAKE,WAAY;IACrB,MAAM,MAAKA,WAAY;IACxB;GACD,wBAAwB,EACtB,kBAAkB,MAAKA,WAAY,kBACpC;GACD,GAAG;GACJ,CAAC;;;;;;;CAQJ,MAAM,eAAe,cAA2B,UAAsB,EAAE,EAAyB;EAC/F,MAAM,EAAE,QAAQ,IAAI,IAAI,eAAe,MAAM,aAAa,cAAc,MAAKA,WAAY;AAGzF,MAAI,GAAG,OAAO,SAAS,SAAS,EAAE,CAChC,OAAM,IAAI,MAAM,gCAAgC;EAQlD,MAAM,YAAY,wCAJJ,WAAW,GAAG,CAGM,CACH,cAAc;AAU7C,SAP8B;GAC5B,cAAc,WAAW,gBAAgB,WAAW;GACpD,QAAQ;GACR,MAAM;GACN,GAAI,QAAQ,YAAY,EAAE,UAAU,QAAQ,UAAU;GACvD;;;;;;;CAUH,MAAM,qBACJ,OACA,SACA,UAAuB,EAAE,EACJ;EACrB,MAAM,EAAE,cAAc,MAAM,SAAS;EAErC,MAAM,iBAAiB,MAAKF,SAAU,WAAW;EAEjD,IAAI;AAEJ,MAAI,eACF,MAAK,MAAKA,SAAU,OAAO,QAAQ,aAAa;AAGlD,MAAI,CAAC,IAAI;GACP,MAAM,EAAE,QAAQ,cAAc,MAAM,aAClC,WAAW,QAAQ,aAAa,EAChC,MAAKE,WACN;AACD,QAAK;AAEL,OAAI,eACF,OAAKF,SAAU,OAAO,QAAQ,cAAc,GAAG;;EAQnD,MAAM,cAAc,wCAJN,WAAW,GAAG,EAGO,EAAE,MAAM,CAAC,CACX,UAAU,MAAM;AAGjD,MAAI,CAAC,kBAAkB,YACrB,OAAKM,SAAU,GAAG;AAGpB,SAAO;;;;;;;;CAST,MAAM,eAAe,SAAuB,cAA4C;EAEtF,IAAI,mBAAmB;AAGvB,MAAI,CAAC,oBAAoB,QAAQ,aAC/B,oBAAmB,WAAW,QAAQ,aAAa;EAIrD,MAAM,EAAE,QAAQ,OAAO,MAAM,aAAa,kBAAkB,MAAKJ,WAAY;AAK7E,SAFc,WAAW,GAAG;;;;;CAQ9B,MAAM,iBAAmC;AACvC,SAAO,gBAAgB;;;;;CAMzB,UAAU,KAAuB;AAC/B,OAAK,OAAO,EAAE;;;;;;;;;;ACxWlB,MAAM,aAAa,IAAI,aAAa,CAAC,OAAO,YAAY"}

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "ns-auth-sdk",
-  "version": "1.2.6",
-  "description": "SSO library for NS Auth - Authentication, membership, and profile management compatible with applesauce",
+  "version": "1.3.0",
+  "description": "Decentralized SSO library - Authentication, membership, and profile management",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
   "types": "./dist/index.d.ts",
@@ -17,8 +17,8 @@
     "dist"
   ],
   "scripts": {
-    "build": "tsup",
-    "dev": "tsup --watch",
+    "build": "tsdown",
+    "dev": "tsdown --watch",
     "type-check": "tsc --noEmit",
     "semantic-release": "semantic-release"
   },
@@ -26,39 +26,40 @@
     "nostr",
     "sso",
     "authentication",
-    "membership",
-    "applesauce"
+    "membership"
   ],
   "author": "",
   "license": "Apache-2.0",
   "repository": {
     "type": "git",
-    "url": "https://github.com/OneBoardTech/ns-auth-sdk.git"
+    "url": "https://github.com/stoic-one/ns-auth-sdk.git"
   },
   "publishConfig": {
     "registry": "https://registry.npmjs.org/",
     "access": "public"
   },
   "peerDependencies": {
+    "applesauce-core": "^5.0.0",
     "react": "^18.0.0",
     "react-dom": "^18.0.0",
-    "applesauce-core": "^5.0.0",
-    "nosskey-sdk": "^0.0.4"
+    "rx-nostr": "^3.6.1",
+    "rx-nostr-crypto": "^3.1.3"
   },
   "dependencies": {
-    "zustand": "^4.5.5",
+    "isomorphic-dompurify": "^2.35.0",
     "qrcode.react": "^4.2.0",
-    "react-zxing": "^2.1.0"
+    "react-zxing": "^2.1.0",
+    "zustand": "^4.5.7"
   },
   "devDependencies": {
     "@semantic-release/changelog": "^6.0.3",
     "@semantic-release/git": "^10.0.1",
     "@semantic-release/github": "^9.2.6",
-    "@semantic-release/npm": "^11.0.2",
-    "@types/react": "^18.3.5",
-    "@types/react-dom": "^18.3.0",
-    "semantic-release": "^23.0.2",
-    "tsup": "^8.0.0",
-    "typescript": "^5.6.2"
+    "@semantic-release/npm": "^11.0.3",
+    "@types/react": "^18.3.27",
+    "@types/react-dom": "^18.3.7",
+    "semantic-release": "^23.1.1",
+    "tsdown": "^0.19.0",
+    "typescript": "^5.9.3"
   }
 }