ns-auth-sdk 1.2.6 → 1.4.0

package/dist/index.cjs

@@ -0,0 +1,1399 @@
+//#region rolldown:runtime
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+	if (from && typeof from === "object" || typeof from === "function") {
+		for (var keys = __getOwnPropNames(from), i = 0, n = keys.length, key; i < n; i++) {
+			key = keys[i];
+			if (!__hasOwnProp.call(to, key) && key !== except) {
+				__defProp(to, key, {
+					get: ((k) => from[k]).bind(null, key),
+					enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable
+				});
+			}
+		}
+	}
+	return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", {
+	value: mod,
+	enumerable: true
+}) : target, mod));
+
+//#endregion
+const require_utils = require('./utils-BUM1trwg.cjs');
+let react = require("react");
+let react_jsx_runtime = require("react/jsx-runtime");
+let isomorphic_dompurify = require("isomorphic-dompurify");
+isomorphic_dompurify = __toESM(isomorphic_dompurify);
+let react_zxing = require("react-zxing");
+let zustand = require("zustand");
+
+//#region src/services/auth.service.ts
+/**
+* Service wrapper around NosskeyManager
+* Handles WebAuthn/Passkey integration with Nostr
+*/
+var AuthService = class {
+	constructor(config = {}) {
+		this.manager = null;
+		this.config = {
+			rpId: config.rpId || (typeof window !== "undefined" ? window.location.hostname.replace(/^www\./, "") : "localhost"),
+			rpName: config.rpName || this.getDefaultRpName(),
+			storageKey: config.storageKey || "nsauth_keyinfo",
+			cacheTimeoutMs: config.cacheTimeoutMs || 1800 * 1e3,
+			cacheOnCreation: config.cacheOnCreation !== void 0 ? config.cacheOnCreation : true
+		};
+	}
+	getDefaultRpName() {
+		if (typeof window === "undefined") return "localhost";
+		const hostname = window.location.hostname;
+		if (hostname.includes("nosskey.app")) return "nosskey.app";
+		return hostname.replace(/^www\./, "");
+	}
+	/**
+	* Initialize the NosskeyManager instance
+	*/
+	getManager() {
+		if (!this.manager) this.manager = new require_utils.NosskeyManager({
+			cacheOptions: {
+				enabled: true,
+				timeoutMs: this.config.cacheTimeoutMs,
+				cacheOnCreation: this.config.cacheOnCreation
+			},
+			storageOptions: {
+				enabled: true,
+				storageKey: this.config.storageKey
+			}
+		});
+		return this.manager;
+	}
+	/**
+	* Create a new passkey
+	* Uses platform authenticator only (Touch ID, Face ID, Windows Hello)
+	*/
+	async createPasskey(username) {
+		const manager = this.getManager();
+		const rpId = this.config.rpId === "localhost" ? "localhost" : this.config.rpId;
+		const rpName = this.config.rpName;
+		const trimmedUsername = username?.trim();
+		const uniqueUsername = trimmedUsername ? trimmedUsername : `user-${Date.now()}@example.com`;
+		const options = {
+			rp: {
+				id: rpId,
+				name: rpName
+			},
+			user: {
+				name: uniqueUsername,
+				displayName: trimmedUsername || "User"
+			},
+			authenticatorSelection: {
+				authenticatorAttachment: "platform",
+				residentKey: "preferred",
+				userVerification: "preferred"
+			},
+			extensions: { prf: {} }
+		};
+		return await manager.createPasskey(options);
+	}
+	/**
+	* Create a new Nostr key from a credential ID
+	*/
+	async createNostrKey(credentialId) {
+		return await this.getManager().createNostrKey(credentialId);
+	}
+	/**
+	* Get the current public key
+	*/
+	async getPublicKey() {
+		return await this.getManager().getPublicKey();
+	}
+	/**
+	* Sign a Nostr event
+	*/
+	async signEvent(event) {
+		return await this.getManager().signEvent(event);
+	}
+	/**
+	* Get current key info
+	*/
+	getCurrentKeyInfo() {
+		return this.getManager().getCurrentKeyInfo();
+	}
+	/**
+	* Set current key info
+	*/
+	setCurrentKeyInfo(keyInfo) {
+		this.getManager().setCurrentKeyInfo(keyInfo);
+	}
+	/**
+	* Check if key info exists
+	*/
+	hasKeyInfo() {
+		return this.getManager().hasKeyInfo();
+	}
+	/**
+	* Clear stored key info
+	*/
+	clearStoredKeyInfo() {
+		this.getManager().clearStoredKeyInfo();
+	}
+	/**
+	* Check if PRF is supported
+	*/
+	async isPrfSupported() {
+		const { isPrfSupported } = await Promise.resolve().then(() => require("./utils-BV-7ST9t.cjs"));
+		return await isPrfSupported();
+	}
+};
+
+//#endregion
+//#region src/utils/validation.ts
+const MAX_ROLE_LENGTH = 100;
+const ROLE_PATTERN = /^[a-zA-Z0-9\s\-_]+$/;
+const isValidRoleTag = (role) => {
+	const trimmed = role.trim();
+	return trimmed.length > 0 && trimmed.length <= MAX_ROLE_LENGTH && ROLE_PATTERN.test(trimmed);
+};
+const isValidPubkey = (pubkey) => pubkey.length === 64 && /^[0-9a-fA-F]+$/.test(pubkey);
+const isValidHttpUrl = (url) => {
+	try {
+		const parsed = new URL(url);
+		return ["http:", "https:"].includes(parsed.protocol);
+	} catch {
+		return false;
+	}
+};
+const isValidRelayUrl = (url) => {
+	try {
+		const parsed = new URL(url);
+		return ["ws:", "wss:"].includes(parsed.protocol) && parsed.hostname.length > 0;
+	} catch {
+		return false;
+	}
+};
+
+//#endregion
+//#region src/services/relay.service.ts
+/**
+* Service for communicating with Nostr relays using applesauce-core
+*/
+var RelayService = class {
+	constructor(config = {}) {
+		this.eventStore = null;
+		this.defaultRelays = ["wss://relay.damus.io"];
+		this.maxProfileContentSize = 1e4;
+		this.minProfileQueryIntervalMs = 300;
+		this.minPublishIntervalMs = 750;
+		this.lastActionAt = /* @__PURE__ */ new Map();
+		this.relayUrls = this.validateRelayUrls(config.relayUrls ?? this.defaultRelays);
+	}
+	/**
+	* Initialize with applesauce EventStore
+	*/
+	initialize(eventStore) {
+		this.eventStore = eventStore;
+		if (eventStore && "setRelays" in eventStore && typeof eventStore.setRelays === "function") eventStore.setRelays(this.relayUrls);
+	}
+	/**
+	* Set relay URLs
+	*/
+	setRelays(urls) {
+		this.relayUrls = this.validateRelayUrls(urls);
+		if (this.eventStore && "setRelays" in this.eventStore && typeof this.eventStore.setRelays === "function") this.eventStore.setRelays(this.relayUrls);
+	}
+	/**
+	* Get current relay URLs
+	*/
+	getRelays() {
+		return [...this.relayUrls];
+	}
+	/**
+	* Publish an event to relays
+	*/
+	async publishEvent(event, timeoutMs = 1e3) {
+		if (!this.eventStore) throw new Error("RelayService not initialized. Call initialize() with an EventStore instance.");
+		await this.enforceRateLimit("publish", this.minPublishIntervalMs);
+		return new Promise((resolve, reject) => {
+			if (this.relayUrls.length === 0) {
+				reject(/* @__PURE__ */ new Error("No relays configured"));
+				return;
+			}
+			const eventStore = this.eventStore;
+			if (!eventStore || typeof eventStore.publish !== "function") {
+				reject(/* @__PURE__ */ new Error("EventStore does not support publish method"));
+				return;
+			}
+			const subscription = eventStore.publish(event).subscribe({
+				next: (response) => {
+					if (response?.type === "OK") {
+						subscription.unsubscribe();
+						resolve(true);
+					}
+				},
+				error: (error) => {
+					subscription.unsubscribe();
+					reject(error);
+				}
+			});
+			setTimeout(() => {
+				subscription.unsubscribe();
+				resolve(false);
+			}, timeoutMs);
+		});
+	}
+	/**
+	* Fetch a profile (Kind 0 event)
+	*/
+	async fetchProfile(pubkey) {
+		if (!this.eventStore) throw new Error("RelayService not initialized. Call initialize() with an EventStore instance.");
+		await this.enforceRateLimit("fetch-profile", this.minProfileQueryIntervalMs);
+		return new Promise((resolve) => {
+			const filter = {
+				kinds: [0],
+				authors: [pubkey],
+				limit: 1
+			};
+			const eventStore = this.eventStore;
+			if (!eventStore || typeof eventStore.query !== "function") {
+				resolve(null);
+				return;
+			}
+			const subscription = eventStore.query(filter).subscribe({
+				next: (packet) => {
+					if (packet?.event && packet.event.kind === 0) {
+						const metadata = this.parseProfileMetadata(packet.event.content);
+						if (metadata) {
+							subscription.unsubscribe();
+							resolve(metadata);
+							return;
+						}
+						console.error("Failed to parse profile metadata");
+					}
+				},
+				complete: () => {
+					subscription.unsubscribe();
+					resolve(null);
+				},
+				error: (error) => {
+					console.error("Error fetching profile:", error);
+					subscription.unsubscribe();
+					resolve(null);
+				}
+			});
+			setTimeout(() => {
+				subscription.unsubscribe();
+				resolve(null);
+			}, 5e3);
+		});
+	}
+	/**
+	* Fetch role tag from profile event (Kind 0)
+	*/
+	async fetchProfileRoleTag(pubkey) {
+		if (!this.eventStore) throw new Error("RelayService not initialized. Call initialize() with an EventStore instance.");
+		await this.enforceRateLimit("fetch-role-tag", this.minProfileQueryIntervalMs);
+		return new Promise((resolve) => {
+			const filter = {
+				kinds: [0],
+				authors: [pubkey],
+				limit: 1
+			};
+			const eventStore = this.eventStore;
+			if (!eventStore || typeof eventStore.query !== "function") {
+				resolve(null);
+				return;
+			}
+			const subscription = eventStore.query(filter).subscribe({
+				next: (packet) => {
+					if (packet?.event && packet.event.kind === 0) {
+						const tags = packet.event.tags || [];
+						for (const tag of tags) if (tag[0] === "role" && tag[1]) {
+							const candidate = tag[1].trim();
+							if (isValidRoleTag(candidate)) {
+								subscription.unsubscribe();
+								resolve(candidate);
+								return;
+							}
+						}
+						subscription.unsubscribe();
+						resolve(null);
+					}
+				},
+				complete: () => {
+					subscription.unsubscribe();
+					resolve(null);
+				},
+				error: (error) => {
+					console.error("Error fetching profile role tag:", error);
+					subscription.unsubscribe();
+					resolve(null);
+				}
+			});
+			setTimeout(() => {
+				subscription.unsubscribe();
+				resolve(null);
+			}, 5e3);
+		});
+	}
+	/**
+	* Fetch a follow list (Kind 3 event)
+	*/
+	async fetchFollowList(pubkey) {
+		if (!this.eventStore) throw new Error("RelayService not initialized. Call initialize() with an EventStore instance.");
+		await this.enforceRateLimit("fetch-follow-list", this.minProfileQueryIntervalMs);
+		return new Promise((resolve) => {
+			const filter = {
+				kinds: [3],
+				authors: [pubkey],
+				limit: 1
+			};
+			const eventStore = this.eventStore;
+			if (!eventStore || typeof eventStore.query !== "function") {
+				resolve([]);
+				return;
+			}
+			const subscription = eventStore.query(filter).subscribe({
+				next: (packet) => {
+					if (packet?.event && packet.event.kind === 3) {
+						const followList = [];
+						const tags = packet.event.tags || [];
+						for (const tag of tags) if (tag[0] === "p" && tag[1]) followList.push({
+							pubkey: tag[1],
+							relay: tag[2] || void 0,
+							petname: tag[3] || void 0
+						});
+						subscription.unsubscribe();
+						resolve(followList);
+					}
+				},
+				complete: () => {
+					subscription.unsubscribe();
+					resolve([]);
+				},
+				error: (error) => {
+					console.error("Error fetching follow list:", error);
+					subscription.unsubscribe();
+					resolve([]);
+				}
+			});
+			setTimeout(() => {
+				subscription.unsubscribe();
+				resolve([]);
+			}, 1e4);
+		});
+	}
+	/**
+	* Fetch multiple profiles in batch
+	*/
+	async fetchMultipleProfiles(pubkeys) {
+		if (!this.eventStore) throw new Error("RelayService not initialized. Call initialize() with an EventStore instance.");
+		if (pubkeys.length === 0) return /* @__PURE__ */ new Map();
+		await this.enforceRateLimit("fetch-multiple-profiles", this.minProfileQueryIntervalMs);
+		return new Promise((resolve) => {
+			const profiles = /* @__PURE__ */ new Map();
+			const filter = {
+				kinds: [0],
+				authors: pubkeys
+			};
+			const eventStore = this.eventStore;
+			if (!eventStore || typeof eventStore.query !== "function") {
+				resolve(/* @__PURE__ */ new Map());
+				return;
+			}
+			const subscription = eventStore.query(filter).subscribe({
+				next: (packet) => {
+					if (packet?.event && packet.event.kind === 0 && packet.event.pubkey) {
+						const metadata = this.parseProfileMetadata(packet.event.content);
+						if (metadata) profiles.set(packet.event.pubkey, metadata);
+						else console.error("Failed to parse profile metadata");
+					}
+				},
+				complete: () => {
+					subscription.unsubscribe();
+					resolve(profiles);
+				},
+				error: (error) => {
+					console.error("Error fetching profiles:", error);
+					subscription.unsubscribe();
+					resolve(profiles);
+				}
+			});
+			setTimeout(() => {
+				subscription.unsubscribe();
+				resolve(profiles);
+			}, 1e3);
+		});
+	}
+	/**
+	* Query kind 0 events (profiles) by pubkey
+	* If pubkeys array is empty, fetches recent kind 0 events
+	*/
+	async queryProfiles(pubkeys = [], limit = 100) {
+		if (!this.eventStore) throw new Error("RelayService not initialized. Call initialize() with an EventStore instance.");
+		await this.enforceRateLimit("query-profiles", this.minProfileQueryIntervalMs);
+		return new Promise((resolve) => {
+			const profiles = /* @__PURE__ */ new Map();
+			const filter = {
+				kinds: [0],
+				limit
+			};
+			if (pubkeys.length > 0) filter.authors = pubkeys;
+			const eventStore = this.eventStore;
+			if (!eventStore || typeof eventStore.query !== "function") {
+				resolve(/* @__PURE__ */ new Map());
+				return;
+			}
+			const subscription = eventStore.query(filter).subscribe({
+				next: (packet) => {
+					if (packet?.event && packet.event.kind === 0 && packet.event.pubkey) {
+						const metadata = this.parseProfileMetadata(packet.event.content);
+						if (metadata) {
+							const timestamp = packet.event.created_at || 0;
+							const existing = profiles.get(packet.event.pubkey);
+							if (!existing || timestamp > existing.timestamp) profiles.set(packet.event.pubkey, {
+								metadata,
+								timestamp
+							});
+						} else console.error("Failed to parse profile metadata");
+					}
+				},
+				complete: () => {
+					subscription.unsubscribe();
+					const result = /* @__PURE__ */ new Map();
+					profiles.forEach((value, pubkey) => {
+						result.set(pubkey, value.metadata);
+					});
+					resolve(result);
+				},
+				error: (error) => {
+					console.error("Error querying profiles:", error);
+					subscription.unsubscribe();
+					const result = /* @__PURE__ */ new Map();
+					profiles.forEach((value, pubkey) => {
+						result.set(pubkey, value.metadata);
+					});
+					resolve(result);
+				}
+			});
+			setTimeout(() => {
+				subscription.unsubscribe();
+				const result = /* @__PURE__ */ new Map();
+				profiles.forEach((value, pubkey) => {
+					result.set(pubkey, value.metadata);
+				});
+				resolve(result);
+			}, 1e4);
+		});
+	}
+	/**
+	* Publish or update a kind 3 event (follow list/contacts)
+	*/
+	async publishFollowList(pubkey, followList, signEvent) {
+		const tags = followList.map((entry) => {
+			if (!isValidPubkey(entry.pubkey)) throw new Error("Invalid pubkey format for follow list entry.");
+			if (entry.relay && !isValidRelayUrl(entry.relay)) throw new Error("Invalid relay URL format for follow list entry.");
+			const tag = ["p", entry.pubkey];
+			if (entry.relay) tag.push(entry.relay);
+			if (entry.petname) tag.push(entry.petname);
+			return tag;
+		});
+		const signedEvent = await signEvent({
+			kind: 3,
+			content: "",
+			created_at: Math.floor(Date.now() / 1e3),
+			tags
+		});
+		return await this.publishEvent(signedEvent);
+	}
+	validateRelayUrls(urls) {
+		if (urls.length === 0) return [];
+		const validUrls = urls.filter((url) => isValidRelayUrl(url));
+		if (validUrls.length !== urls.length) throw new Error("Invalid relay URL format");
+		return validUrls;
+	}
+	parseProfileMetadata(content) {
+		if (content.length > this.maxProfileContentSize) return null;
+		try {
+			const parsed = JSON.parse(content);
+			if (!parsed || typeof parsed !== "object") return null;
+			const metadata = {};
+			if (typeof parsed.name === "string") metadata.name = parsed.name;
+			if (typeof parsed.display_name === "string") metadata.display_name = parsed.display_name;
+			if (typeof parsed.about === "string") metadata.about = parsed.about;
+			if (typeof parsed.picture === "string") metadata.picture = parsed.picture;
+			if (typeof parsed.website === "string") metadata.website = parsed.website;
+			return metadata;
+		} catch (error) {
+			console.error("Failed to parse profile metadata:", error);
+			return null;
+		}
+	}
+	async enforceRateLimit(action, minIntervalMs) {
+		const lastAt = this.lastActionAt.get(action) ?? 0;
+		const waitMs = minIntervalMs - (Date.now() - lastAt);
+		if (waitMs > 0) await new Promise((resolve) => setTimeout(resolve, waitMs));
+		this.lastActionAt.set(action, Date.now());
+	}
+};
+
+//#endregion
+//#region src/components/auth/LoginButton.tsx
+function LoginButton({ authService, setAuthenticated, setLoginError, onSuccess }) {
+	const [isLoading, setIsLoading] = (0, react.useState)(false);
+	const handleLogin = async () => {
+		setIsLoading(true);
+		setLoginError(null);
+		try {
+			if (!authService.hasKeyInfo()) throw new Error("No account found. Please register first.");
+			const keyInfo = authService.getCurrentKeyInfo();
+			if (!keyInfo) throw new Error("Failed to load account information.");
+			await authService.getPublicKey();
+			setAuthenticated(keyInfo);
+			if (onSuccess) onSuccess();
+		} catch (err) {
+			console.error("Login error:", err);
+			setLoginError(err instanceof Error ? err.message : "Failed to login");
+			setIsLoading(false);
+		}
+	};
+	return /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+		className: "login-button-container",
+		children: /* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+			className: "auth-button secondary",
+			onClick: handleLogin,
+			disabled: isLoading,
+			children: isLoading ? "Logging in..." : "Login"
+		})
+	});
+}
+
+//#endregion
+//#region src/components/auth/RegistrationFlow.tsx
+function RegistrationFlow({ authService, setAuthenticated, onSuccess }) {
+	const [isLoading, setIsLoading] = (0, react.useState)(false);
+	const [error, setError] = (0, react.useState)(null);
+	const [step, setStep] = (0, react.useState)("info");
+	const [username, setUsername] = (0, react.useState)("");
+	const maxUsernameLength = 100;
+	const handleRegister = async () => {
+		setIsLoading(true);
+		setError(null);
+		setStep("creating");
+		try {
+			authService.clearStoredKeyInfo();
+			let credentialId;
+			const passkeyUsername = username.trim() || void 0;
+			try {
+				credentialId = await authService.createPasskey(passkeyUsername);
+			} catch (passkeyError) {
+				console.error("[RegistrationFlow] Passkey creation failed:", passkeyError);
+				throw new Error("Unable to create passkey. Please try again.");
+			}
+			let keyInfo;
+			try {
+				keyInfo = await authService.createNostrKey(credentialId);
+			} catch (nostrKeyError) {
+				console.error("[RegistrationFlow] Failed to create Nostr key from passkey:", nostrKeyError);
+				throw new Error("Unable to finalize account. Please try again.");
+			}
+			authService.setCurrentKeyInfo(keyInfo);
+			setAuthenticated(keyInfo);
+			setStep("success");
+			if (onSuccess) setTimeout(() => {
+				onSuccess();
+			}, 1500);
+		} catch (err) {
+			console.error("[RegistrationFlow] Registration error:", err);
+			setError("Registration failed. Please try again.");
+			setStep("info");
+			setIsLoading(false);
+		}
+	};
+	return /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+		className: "auth-container",
+		children: /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+			className: "auth-card",
+			children: [
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)("h1", { children: "Create Account" }),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+					className: "auth-description",
+					children: "Create a new decentralized Identity. Your identity will be securely derived from a passkey."
+				}),
+				step === "info" && /* @__PURE__ */ (0, react_jsx_runtime.jsxs)(react_jsx_runtime.Fragment, { children: [
+					/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+						className: "auth-features",
+						children: [
+							/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+								className: "feature-item",
+								children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("span", {
+									className: "feature-icon",
+									children: "🔐"
+								}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("span", { children: "Phishing-resistant authentication" })]
+							}),
+							/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+								className: "feature-item",
+								children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("span", {
+									className: "feature-icon",
+									children: "📱"
+								}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("span", { children: "Biometric authentication support" })]
+							}),
+							/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+								className: "feature-item",
+								children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("span", {
+									className: "feature-icon",
+									children: "🌐"
+								}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("span", { children: "Cross-device synchronization" })]
+							})
+						]
+					}),
+					/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+						className: "username-section",
+						children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("label", {
+							htmlFor: "username",
+							className: "username-label",
+							children: "Name (Optional)"
+						}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("input", {
+							id: "username",
+							type: "text",
+							className: "username-input",
+							placeholder: "Enter a name for this passkey",
+							value: username,
+							onChange: (e) => setUsername(e.target.value),
+							disabled: isLoading,
+							maxLength: maxUsernameLength
+						})]
+					}),
+					error && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+						className: "error-message",
+						children: error
+					}),
+					/* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+						className: "auth-button primary",
+						onClick: handleRegister,
+						disabled: isLoading,
+						children: isLoading ? "Creating..." : "Create Account"
+					})
+				] }),
+				step === "creating" && /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+					className: "loading-state",
+					children: [
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", { className: "spinner" }),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", { children: "Creating your passkey..." }),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+							className: "loading-hint",
+							children: "Please follow your browser's authentication prompt"
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+							className: "loading-hint-small",
+							children: "💡 Using your system's native passkey manager (Touch ID, Face ID, Windows Hello, etc.)"
+						})
+					]
+				}),
+				step === "success" && /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+					className: "success-state",
+					children: [
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+							className: "success-icon",
+							children: "✓"
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", { children: "Account created successfully!" }),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+							className: "success-hint",
+							children: "Redirecting to profile setup..."
+						})
+					]
+				})
+			]
+		})
+	});
+}
+
+//#endregion
+//#region src/utils/sanitize.ts
+const sanitizeOptions = {
+	ALLOWED_TAGS: [],
+	ALLOWED_ATTR: []
+};
+const sanitizeText = (value) => isomorphic_dompurify.default.sanitize(value, sanitizeOptions);
+
+//#endregion
+//#region src/components/membership/BarcodeScanner.tsx
+const BarcodeScanner = ({ onDecode, active = true }) => {
+	const [error, setError] = (0, react.useState)(null);
+	const { ref } = (0, react_zxing.useZxing)({
+		onDecodeResult: (result) => {
+			onDecode(result.getText());
+		},
+		onError: (e) => {
+			setError(e instanceof Error ? e.message : "Camera error");
+		}
+	});
+	if (!active) return null;
+	return /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+		style: {
+			position: "relative",
+			width: "100%",
+			maxWidth: "400px"
+		},
+		children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("video", {
+			ref,
+			style: {
+				width: "100%",
+				borderRadius: "8px"
+			},
+			playsInline: true,
+			muted: true
+		}), error && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+			style: {
+				color: "red",
+				marginTop: "0.5rem"
+			},
+			children: error
+		})]
+	});
+};
+
+//#endregion
+//#region src/components/membership/MembershipPage.tsx
+const TrustInfo = () => /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("section", {
+	className: "trust-info",
+	children: [
+		/* @__PURE__ */ (0, react_jsx_runtime.jsx)("h2", { children: "Building Trust with Verifiable Relationship Credentials" }),
+		/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("p", { children: [
+			"Beyond the Personhood Credential, members can create ",
+			/* @__PURE__ */ (0, react_jsx_runtime.jsx)("strong", { children: "Verifiable Relationship Credentials (VRCs)" }),
+			".  A VRC is issued directly between two members – for example, by scanning a QR‑code at a meetup – and certifies a first‑hand trust link."
+		] }),
+		/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("p", { children: [
+			"Each VRC becomes a node in a decentralized trust graph.  When you add a member, the system records a ",
+			/* @__PURE__ */ (0, react_jsx_runtime.jsx)("strong", { children: "role" }),
+			" tag that ties the new participant to your existing graph, enabling permissionless access to network‑state resources while keeping the underlying data private."
+		] }),
+		/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", { children: "The graph grows organically: trusted authorities issue PHCs, and members continuously enrich the network with peer‑generated VRCs, creating a resilient, scalable web of verified participants." })
+	]
+});
+function MembershipPage({ authService, relayService, publicKey, onUnauthenticated }) {
+	const [isLoading, setIsLoading] = (0, react.useState)(false);
+	const [isSaving, setIsSaving] = (0, react.useState)(false);
+	const [saveMessage, setSaveMessage] = (0, react.useState)(null);
+	const [searchQuery, setSearchQuery] = (0, react.useState)("");
+	const [profiles, setProfiles] = (0, react.useState)([]);
+	const [members, setMembers] = (0, react.useState)([]);
+	const [memberProfiles, setMemberProfiles] = (0, react.useState)(/* @__PURE__ */ new Map());
+	const [showScanner, setShowScanner] = (0, react.useState)(false);
+	(0, react.useEffect)(() => {
+		if (!publicKey) {
+			if (onUnauthenticated) onUnauthenticated();
+			return;
+		}
+		loadFollowList();
+	}, [publicKey]);
+	(0, react.useEffect)(() => {
+		if (members.length > 0) loadMemberProfiles();
+	}, [members]);
+	const handleDecoded = (decoded) => {
+		setSearchQuery(decoded);
+		setShowScanner(false);
+		handleSearch();
+	};
+	const loadFollowList = async () => {
+		if (!publicKey) return;
+		setIsLoading(true);
+		try {
+			setMembers(await relayService.fetchFollowList(publicKey));
+		} catch (error) {
+			console.error("Failed to load follow list:", error);
+			setSaveMessage("Failed to load membership list");
+		} finally {
+			setIsLoading(false);
+		}
+	};
+	const loadMemberProfiles = async () => {
+		if (members.length === 0) return;
+		try {
+			const pubkeys = members.map((m) => m.pubkey);
+			setMemberProfiles(await relayService.fetchMultipleProfiles(pubkeys));
+		} catch (error) {
+			console.error("Failed to load member profiles:", error);
+		}
+	};
+	const handleSearch = async () => {
+		if (!searchQuery.trim()) {
+			setIsLoading(true);
+			try {
+				const profilesMap = await relayService.queryProfiles([], 50);
+				const profilesList = [];
+				profilesMap.forEach((profile, pubkey) => {
+					profilesList.push({
+						...profile,
+						pubkey
+					});
+				});
+				setProfiles(profilesList);
+			} catch (error) {
+				console.error("Failed to query profiles:", error);
+				setSaveMessage("Failed to search profiles");
+			} finally {
+				setIsLoading(false);
+			}
+			return;
+		}
+		const trimmedQuery = searchQuery.trim();
+		if (trimmedQuery.length !== 64 || !/^[0-9a-fA-F]+$/.test(trimmedQuery)) {
+			setSaveMessage("Invalid pubkey format. Must be 64 hex characters.");
+			setTimeout(() => setSaveMessage(null), 3e3);
+			return;
+		}
+		setIsLoading(true);
+		try {
+			const profilesMap = await relayService.queryProfiles([trimmedQuery], 1);
+			const profilesList = [];
+			profilesMap.forEach((profile, pubkey) => {
+				profilesList.push({
+					...profile,
+					pubkey
+				});
+			});
+			setProfiles(profilesList);
+			if (profilesList.length === 0) {
+				setSaveMessage("No profile found for this pubkey");
+				setTimeout(() => setSaveMessage(null), 3e3);
+			}
+		} catch (error) {
+			console.error("Failed to query profile:", error);
+			setSaveMessage("Failed to search profile");
+		} finally {
+			setIsLoading(false);
+		}
+	};
+	const handleAddMember = async (pubkey) => {
+		if (!publicKey) return;
+		if (members.some((m) => m.pubkey === pubkey)) {
+			setSaveMessage("User is already a member");
+			setTimeout(() => setSaveMessage(null), 3e3);
+			return;
+		}
+		setIsSaving(true);
+		try {
+			const newMembers = [...members, { pubkey }];
+			await relayService.publishFollowList(publicKey, newMembers, (event) => authService.signEvent(event));
+			setMembers(newMembers);
+			setSaveMessage("Member added successfully!");
+			setTimeout(() => setSaveMessage(null), 3e3);
+		} catch (error) {
+			console.error("Failed to add member:", error);
+			setSaveMessage("Failed to add member. Please try again.");
+		} finally {
+			setIsSaving(false);
+		}
+	};
+	const handleRemoveMember = async (pubkey) => {
+		if (!publicKey) return;
+		setIsSaving(true);
+		try {
+			const newMembers = members.filter((m) => m.pubkey !== pubkey);
+			await relayService.publishFollowList(publicKey, newMembers, (event) => authService.signEvent(event));
+			setMembers(newMembers);
+			setSaveMessage("Member removed successfully!");
+			setTimeout(() => setSaveMessage(null), 3e3);
+		} catch (error) {
+			console.error("Failed to remove member:", error);
+			setSaveMessage("Failed to remove member. Please try again.");
+		} finally {
+			setIsSaving(false);
+		}
+	};
+	const getProfileDisplayName = (profile, pubkey) => {
+		return profile.display_name || profile.name || pubkey.slice(0, 16) + "...";
+	};
+	const formatPubkey = (pubkey) => {
+		return `${pubkey.slice(0, 8)}...${pubkey.slice(-8)}`;
+	};
+	if (isLoading && members.length === 0) return /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+		className: "membership-container",
+		children: /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+			className: "loading-state",
+			children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", { className: "spinner" }), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", { children: "Loading membership list..." })]
+		})
+	});
+	return /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+		className: "membership-container",
+		children: /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+			className: "membership-card",
+			children: [
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)("h1", { children: "Membership Management" }),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)(TrustInfo, {}),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+					className: "membership-description",
+					children: "Query applicants and manage the membership list."
+				}),
+				saveMessage && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+					className: `save-message ${saveMessage.includes("Error") || saveMessage.includes("Failed") ? "error" : "success"}`,
+					children: saveMessage
+				}),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+					className: "search-section",
+					children: [
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("h2", { children: "Add Member" }),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "search-form",
+							children: [
+								/* @__PURE__ */ (0, react_jsx_runtime.jsx)("input", {
+									type: "text",
+									value: searchQuery,
+									onChange: (e) => setSearchQuery(e.target.value),
+									onKeyPress: (e) => e.key === "Enter" && handleSearch(),
+									placeholder: "Enter pubkey or leave empty for recent profiles",
+									className: "search-input",
+									disabled: isLoading
+								}),
+								/* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+									onClick: handleSearch,
+									className: "search-button",
+									disabled: isLoading || isSaving,
+									children: isLoading ? "Searching..." : "Search"
+								}),
+								/* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+									onClick: () => setShowScanner((prev) => !prev),
+									className: "scanner-toggle",
+									disabled: isLoading || isSaving,
+									children: showScanner ? "Close Scanner" : "Scan QR"
+								})
+							]
+						}),
+						showScanner && /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							style: { marginTop: "1rem" },
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)(BarcodeScanner, {
+								onDecode: handleDecoded,
+								active: true
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+								style: {
+									fontSize: "0.85rem",
+									marginTop: "0.5rem"
+								},
+								children: "Point at QR‑code containing a pubkey"
+							})]
+						}),
+						profiles.length > 0 && /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "profiles-list",
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("h3", { children: "Search Results" }), profiles.map((profile) => {
+								const isMember = members.some((m) => m.pubkey === profile.pubkey);
+								return /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+									className: "profile-item",
+									children: [/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+										className: "profile-info",
+										children: [profile.picture && isValidHttpUrl(profile.picture) && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("img", {
+											src: profile.picture,
+											alt: sanitizeText(getProfileDisplayName(profile, profile.pubkey)),
+											className: "profile-avatar",
+											loading: "lazy",
+											referrerPolicy: "no-referrer",
+											onError: (event) => {
+												event.currentTarget.style.display = "none";
+											}
+										}), /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+											className: "profile-details",
+											children: [
+												/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+													className: "profile-name",
+													children: sanitizeText(getProfileDisplayName(profile, profile.pubkey))
+												}),
+												/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+													className: "profile-pubkey",
+													children: formatPubkey(profile.pubkey)
+												}),
+												profile.about && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+													className: "profile-about",
+													children: sanitizeText(profile.about)
+												})
+											]
+										})]
+									}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+										onClick: () => isMember ? handleRemoveMember(profile.pubkey) : handleAddMember(profile.pubkey),
+										className: `member-button ${isMember ? "remove" : "add"}`,
+										disabled: isSaving,
+										children: isMember ? "Remove" : "Add Member"
+									})]
+								}, profile.pubkey);
+							})]
+						})
+					]
+				}),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+					className: "members-section",
+					children: [/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("h2", { children: [
+						"Current Members (",
+						members.length,
+						")"
+					] }), members.length === 0 ? /* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", {
+						className: "empty-message",
+						children: "No members yet. Add members from search results above."
+					}) : /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+						className: "members-list",
+						children: members.map((member) => {
+							const profile = memberProfiles.get(member.pubkey);
+							return /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+								className: "member-item",
+								children: [/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+									className: "profile-info",
+									children: [profile?.picture && isValidHttpUrl(profile.picture) && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("img", {
+										src: profile.picture,
+										alt: sanitizeText(getProfileDisplayName(profile || {}, member.pubkey)),
+										className: "profile-avatar",
+										loading: "lazy",
+										referrerPolicy: "no-referrer",
+										onError: (event) => {
+											event.currentTarget.style.display = "none";
+										}
+									}), /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+										className: "profile-details",
+										children: [
+											/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+												className: "profile-name",
+												children: profile ? sanitizeText(getProfileDisplayName(profile, member.pubkey)) : formatPubkey(member.pubkey)
+											}),
+											/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+												className: "profile-pubkey",
+												children: formatPubkey(member.pubkey)
+											}),
+											profile?.about && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+												className: "profile-about",
+												children: sanitizeText(profile.about)
+											}),
+											member.petname && /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+												className: "profile-petname",
+												children: ["Name: ", sanitizeText(member.petname)]
+											})
+										]
+									})]
+								}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+									onClick: () => handleRemoveMember(member.pubkey),
+									className: "member-button remove",
+									disabled: isSaving,
+									children: "Remove"
+								})]
+							}, member.pubkey);
+						})
+					})]
+				})
+			]
+		})
+	});
+}
+
+//#endregion
+//#region src/components/profile/ProfilePage.tsx
+const PersonhoodInfo = () => /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("section", {
+	className: "personhood-info",
+	children: [/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("p", { children: [
+		"Network‑state members receive a ",
+		/* @__PURE__ */ (0, react_jsx_runtime.jsx)("strong", { children: "Personhood Credential (PHC)" }),
+		" from a trusted authority. The PHC attests that the holder is a unique, real individual. Because the credential lives in your passport, you can present a ",
+		/* @__PURE__ */ (0, react_jsx_runtime.jsx)("em", { children: "zero‑knowledge proof" }),
+		" that you are verified."
+	] }), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", { children: "In this form we compare the name you enter with the name disclosed by your verified passport proof. If the two match, the profile will be saved as your business card credential together with a passport tag that references the PHC's unique identifier." })]
+});
+const MAX_NAME_LENGTH = 100;
+const MAX_ABOUT_LENGTH = 1e3;
+const MAX_URL_LENGTH = 2048;
+function ProfilePage({ authService, relayService, publicKey, onUnauthenticated, onSuccess, onRoleSuggestion }) {
+	const [isLoading, setIsLoading] = (0, react.useState)(false);
+	const [isSaving, setIsSaving] = (0, react.useState)(false);
+	const [saveMessage, setSaveMessage] = (0, react.useState)(null);
+	const [suggestedRole, setSuggestedRole] = (0, react.useState)(null);
+	const [isGettingRole, setIsGettingRole] = (0, react.useState)(false);
+	const [formData, setFormData] = (0, react.useState)({
+		name: "",
+		display_name: "",
+		about: "",
+		picture: "",
+		website: ""
+	});
+	(0, react.useEffect)(() => {
+		if (!publicKey) {
+			if (onUnauthenticated) onUnauthenticated();
+			return;
+		}
+		loadProfile();
+	}, [publicKey]);
+	const loadProfile = async () => {
+		if (!publicKey) return;
+		setIsLoading(true);
+		try {
+			const [profile, roleTag] = await Promise.all([relayService.fetchProfile(publicKey), relayService.fetchProfileRoleTag(publicKey)]);
+			if (profile) setFormData({
+				name: sanitizeText(profile.name || ""),
+				display_name: sanitizeText(profile.display_name || ""),
+				about: sanitizeText(profile.about || ""),
+				picture: profile.picture || "",
+				website: profile.website || ""
+			});
+			if (roleTag) setSuggestedRole(roleTag);
+		} catch (error) {
+			console.error("Failed to load profile:", error);
+		} finally {
+			setIsLoading(false);
+		}
+	};
+	const handleSubmit = async (e) => {
+		e.preventDefault();
+		if (!publicKey) return;
+		setIsSaving(true);
+		setSaveMessage(null);
+		try {
+			const tags = [];
+			if (!isValidPubkey(publicKey)) throw new Error("Invalid public key format");
+			if (formData.about && formData.about.trim().length > 0 && onRoleSuggestion) {
+				setIsGettingRole(true);
+				try {
+					const roleSuggestion = await onRoleSuggestion(formData.about);
+					const candidate = roleSuggestion ? roleSuggestion.trim() : "";
+					if (candidate && isValidRoleTag(candidate)) {
+						tags.push(["role", candidate]);
+						setSuggestedRole(candidate);
+					} else setSuggestedRole(null);
+				} catch (error) {
+					console.error("Failed to get role suggestion:", error);
+					setSuggestedRole(null);
+				} finally {
+					setIsGettingRole(false);
+				}
+			} else setSuggestedRole(null);
+			const profileEvent = {
+				kind: 0,
+				content: JSON.stringify({
+					...formData,
+					name: sanitizeText(formData.name || ""),
+					display_name: sanitizeText(formData.display_name || ""),
+					about: sanitizeText(formData.about || "")
+				}),
+				created_at: Math.floor(Date.now() / 1e3),
+				tags
+			};
+			const follows = {
+				kind: 3,
+				content: "",
+				created_at: Math.floor(Date.now() / 1e3),
+				tags: [(() => {
+					const followTag = ["p", publicKey];
+					const relayUrl = relayService.getRelays()[0];
+					if (relayUrl) followTag.push(relayUrl);
+					if (formData.name) followTag.push(formData.name);
+					return followTag;
+				})()]
+			};
+			const signedProfile = await authService.signEvent(profileEvent);
+			const signedFollows = await authService.signEvent(follows);
+			await relayService.publishEvent(signedProfile);
+			await relayService.publishEvent(signedFollows);
+			setSaveMessage("Profile saved successfully!");
+			setTimeout(() => {
+				setSaveMessage(null);
+			}, 3e3);
+			if (onSuccess) onSuccess();
+		} catch (error) {
+			console.error("Failed to save profile:", error);
+			setSaveMessage("Failed to save profile. Please try again.");
+		} finally {
+			setIsSaving(false);
+		}
+	};
+	const handleChange = (e) => {
+		const { name, value } = e.target;
+		setFormData((prev) => ({
+			...prev,
+			[name]: value
+		}));
+	};
+	if (isLoading) return /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+		className: "profile-container",
+		children: /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+			className: "loading-state",
+			children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", { className: "spinner" }), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("p", { children: "Loading profile..." })]
+		})
+	});
+	return /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+		className: "profile-container",
+		children: /* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+			className: "profile-card",
+			children: [
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)("h1", { children: "Profile Setup" }),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsx)(PersonhoodInfo, {}),
+				/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("form", {
+					onSubmit: handleSubmit,
+					className: "profile-form",
+					children: [
+						/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "form-group",
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("label", {
+								htmlFor: "name",
+								children: "First Name"
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("input", {
+								type: "text",
+								id: "name",
+								name: "name",
+								value: formData.name || "",
+								onChange: handleChange,
+								placeholder: "Your username",
+								maxLength: MAX_NAME_LENGTH
+							})]
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "form-group",
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("label", {
+								htmlFor: "display_name",
+								children: "Last Name"
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("input", {
+								type: "text",
+								id: "display_name",
+								name: "display_name",
+								value: formData.display_name || "",
+								onChange: handleChange,
+								placeholder: "Your Last Name",
+								maxLength: MAX_NAME_LENGTH
+							})]
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "form-group",
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("label", {
+								htmlFor: "about",
+								children: "About"
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("textarea", {
+								id: "about",
+								name: "about",
+								value: formData.about || "",
+								onChange: handleChange,
+								placeholder: "Tell us about yourself",
+								rows: 4,
+								maxLength: MAX_ABOUT_LENGTH
+							})]
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "form-group",
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("label", {
+								htmlFor: "picture",
+								children: "Profile Picture URL"
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("input", {
+								type: "url",
+								id: "picture",
+								name: "picture",
+								value: formData.picture || "",
+								onChange: handleChange,
+								placeholder: "https://example.com/avatar.jpg",
+								maxLength: MAX_URL_LENGTH
+							})]
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsxs)("div", {
+							className: "form-group",
+							children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("label", {
+								htmlFor: "website",
+								children: "LinkedIn"
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("input", {
+								type: "url",
+								id: "website",
+								name: "website",
+								value: formData.website || "",
+								onChange: handleChange,
+								placeholder: "https://linkedin.com/example",
+								maxLength: MAX_URL_LENGTH
+							})]
+						}),
+						saveMessage && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+							className: `save-message ${saveMessage.includes("Error") ? "error" : "success"}`,
+							children: saveMessage
+						}),
+						(isGettingRole || suggestedRole) && /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+							className: "role-tag-container",
+							children: isGettingRole ? /* @__PURE__ */ (0, react_jsx_runtime.jsxs)(react_jsx_runtime.Fragment, { children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+								className: "role-tag-label",
+								children: "Getting AI suggestion..."
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+								className: "role-tag-loading",
+								children: /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", { className: "role-tag-spinner" })
+							})] }) : suggestedRole ? /* @__PURE__ */ (0, react_jsx_runtime.jsxs)(react_jsx_runtime.Fragment, { children: [/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+								className: "role-tag-label",
+								children: "AI Suggested Role:"
+							}), /* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+								className: "role-tag",
+								children: sanitizeText(suggestedRole)
+							})] }) : null
+						}),
+						/* @__PURE__ */ (0, react_jsx_runtime.jsx)("div", {
+							className: "form-actions",
+							children: /* @__PURE__ */ (0, react_jsx_runtime.jsx)("button", {
+								type: "submit",
+								className: "save-button",
+								disabled: isSaving,
+								children: isSaving ? "Saving..." : "Save Profile"
+							})
+						})
+					]
+				})
+			]
+		})
+	});
+}
+
+//#endregion
+//#region src/hooks/useAuth.ts
+/**
+* Hook to initialize auth state on app load
+*/
+function useAuthInit(authService, setAuthenticated) {
+	(0, react.useEffect)(() => {
+		if (authService.hasKeyInfo()) {
+			const keyInfo = authService.getCurrentKeyInfo();
+			if (keyInfo) setAuthenticated(keyInfo);
+		}
+	}, [authService, setAuthenticated]);
+}
+
+//#endregion
+//#region src/store/authStore.ts
+const createAuthStore = () => {
+	return (0, zustand.create)((set) => ({
+		isAuthenticated: false,
+		publicKey: null,
+		keyInfo: null,
+		loginError: null,
+		setAuthenticated: (keyInfo) => {
+			set({
+				isAuthenticated: !!keyInfo,
+				publicKey: keyInfo?.pubkey || null,
+				keyInfo,
+				loginError: null
+			});
+		},
+		setLoginError: (error) => {
+			set({ loginError: error });
+		},
+		logout: () => {
+			set({
+				isAuthenticated: false,
+				publicKey: null,
+				keyInfo: null,
+				loginError: null
+			});
+		}
+	}));
+};
+const useAuthStore = createAuthStore();
+
+//#endregion
+exports.AuthService = AuthService;
+exports.BarcodeScanner = BarcodeScanner;
+exports.LoginButton = LoginButton;
+exports.MembershipPage = MembershipPage;
+exports.ProfilePage = ProfilePage;
+exports.RegistrationFlow = RegistrationFlow;
+exports.RelayService = RelayService;
+exports.__toESM = __toESM;
+exports.createAuthStore = createAuthStore;
+exports.useAuthInit = useAuthInit;
+exports.useAuthStore = useAuthStore;
+//# sourceMappingURL=index.cjs.map