react-native-security-suite 0.9.22 → 1.0.0-rc.2

package/lib/module/index.js

@@ -1,192 +1,191 @@
 "use strict";
 
 import { NativeModules, Platform } from 'react-native';
-import AsyncStorage from '@react-native-async-storage/async-storage';
-import { isJsonString, jsonParse } from "./helpers.js";
+import { jsonParse } from "./helpers.js";
+import { toNativeCryptoOptions } from "./legacy/cryptoOptions.js";
+import { toNativeGenerateJWSOptions, toNativeJwsFetchOptions } from "./jws.js";
 export * from "./SecureView.js";
+export { SecurityError, SecurityErrorCode, mapNativeError, isSecurityError } from "./errors.js";
+export { DeviceSecurity } from "./device/index.js";
+export { RuntimeSecurity } from "./runtime/index.js";
+export { AppIntegrity } from "./integrity/index.js";
+export { Crypto } from "./crypto/index.js";
+export { SecuritySuite } from "./securitySuite/index.js";
 
-/*
- * SSL Pinnning start
- */
+/** @deprecated Use `JwsHeaders` (optional `Record<string, JwsHeaderValue>`) instead. */
 
 const LINKING_ERROR = `The package 'react-native-security-suite' doesn't seem to be linked. Make sure: \n\n` + Platform.select({
   ios: "- You have run 'pod install'\n",
   default: ''
 }) + '- You rebuilt the app after installing the package\n' + '- You are not using Expo managed workflow\n';
-const SecuritySuite = NativeModules.SecuritySuite ? NativeModules.SecuritySuite : new Proxy({}, {
+const NativeSecuritySuiteModule = NativeModules.SecuritySuite ? NativeModules.SecuritySuite : new Proxy({}, {
   get() {
     throw new Error(LINKING_ERROR);
   }
 });
-export const getPublicKey = () => SecuritySuite.getPublicKey();
-export const getSharedKey = serverPublicKey => SecuritySuite.getSharedKey(serverPublicKey);
-export const encryptBySharedKey = input => input && typeof input === 'string' ? SecuritySuite.encrypt(input) : '';
-export const decryptBySharedKey = input => input && typeof input === 'string' ? SecuritySuite.decrypt(input) : '';
+export const getPublicKey = () => NativeSecuritySuiteModule.getPublicKey();
+
+/**
+ * @deprecated Prefer `Crypto.establishSharedKey()` which keeps the derived key in native memory.
+ */
+export const getSharedKey = (serverPublicKey, options) => NativeSecuritySuiteModule.getSharedKey(serverPublicKey, toNativeCryptoOptions(options));
+export const encryptBySharedKey = (input, options) => {
+  if (!input || typeof input !== 'string') {
+    return Promise.reject(new Error('Input must be a non-empty string'));
+  }
+  return NativeSecuritySuiteModule.encrypt(input, toNativeCryptoOptions(options));
+};
+export const decryptBySharedKey = (input, options) => {
+  if (!input || typeof input !== 'string') {
+    return Promise.reject(new Error('Input must be a non-empty string'));
+  }
+  return NativeSecuritySuiteModule.decrypt(input, toNativeCryptoOptions(options));
+};
+export const generateJWS = options => {
+  const nativeOptions = toNativeGenerateJWSOptions(options);
+  return NativeSecuritySuiteModule.generateJWS(nativeOptions);
+};
+function normalizeFetchOptions(options) {
+  if (!options.jws) {
+    return options;
+  }
+  const nativeJws = toNativeJwsFetchOptions(options.jws);
+  return {
+    ...options,
+    jws: {
+      algorithm: nativeJws.algorithm,
+      secret: nativeJws.secret,
+      headers: nativeJws.headers,
+      detached: nativeJws.detached,
+      ...(options.jws.headerName ? {
+        headerName: options.jws.headerName
+      } : {}),
+      ...(options.jws.payload !== undefined ? {
+        payload: nativeJws.payload
+      } : {})
+    }
+  };
+}
+
+/**
+ * Local obfuscation only — NOT secure encryption. Requires an explicit secret.
+ * Never use for credentials, tokens, or PII at rest.
+ */
+export const obfuscate = (input, secret) => NativeSecuritySuiteModule.obfuscate(input, secret);
+export const deobfuscate = (input, secret) => NativeSecuritySuiteModule.deobfuscate(input, secret);
 export const getDeviceId = () => new Promise((resolve, reject) => {
-  SecuritySuite.getDeviceId((result, error) => {
-    if (error !== null) reject(error);else resolve(result);
+  NativeSecuritySuiteModule.getDeviceId((result, error) => {
+    if (error !== null) reject(error);else if (result !== null) resolve(result);else reject(new Error('GET_DEVICE_ID_ERROR'));
   });
 });
+
+/**
+ * @deprecated Use `obfuscate()` with an explicit secret, or `SecureStorage` for at-rest data.
+ */
 export const encrypt = (input, hardEncryption = true, secretKey = null) => new Promise((resolve, reject) => {
-  if (!input) resolve(input);
-  SecuritySuite.storageEncrypt(input, secretKey, hardEncryption, (result, error) => {
-    if (error !== null) reject(error);else resolve(result);
+  if (!input) {
+    resolve(input);
+    return;
+  }
+  if (!secretKey) {
+    reject(new Error('secretKey is required. Device identifiers are not accepted as encryption keys.'));
+    return;
+  }
+  NativeSecuritySuiteModule.storageEncrypt(input, secretKey, hardEncryption, (result, error) => {
+    if (error !== null) reject(error);else if (result !== null) resolve(result);else reject(new Error('ENCRYPT_ERROR'));
   });
 });
+
+/**
+ * @deprecated Use `deobfuscate()` with an explicit secret, or `SecureStorage` for at-rest data.
+ */
 export const decrypt = (input, hardEncryption = true, secretKey = null) => new Promise((resolve, reject) => {
-  if (!input) resolve(input);
-  SecuritySuite.storageDecrypt(input, secretKey, hardEncryption, (result, error) => {
-    if (error !== null) reject(error);else resolve(result);
+  if (!input) {
+    resolve(input);
+    return;
+  }
+  if (!secretKey) {
+    reject(new Error('secretKey is required. Device identifiers are not accepted as encryption keys.'));
+    return;
+  }
+  NativeSecuritySuiteModule.storageDecrypt(input, secretKey, hardEncryption, (result, error) => {
+    if (error !== null) reject(error);else if (result !== null) resolve(result);else reject(new Error('DECRYPT_ERROR'));
   });
 });
+const SECURE_STORAGE_FAILED = 'Secure storage operation failed';
+function wrapSecureStorage(operation, promise) {
+  return promise.catch(error => {
+    const detail = error instanceof Error ? error.message : typeof error === 'string' ? error : 'Unknown error';
+    throw new Error(`${SECURE_STORAGE_FAILED} (${operation}): ${detail}`);
+  });
+}
+
+/** Hardware-backed encrypted storage (Keychain on iOS, EncryptedSharedPreferences on Android). */
 export const SecureStorage = {
-  setItem: async (key, value) => {
-    try {
-      const encryptedKey = await encrypt(key, false);
-      const encryptedValue = await encrypt(value);
-      return AsyncStorage.setItem(encryptedKey, encryptedValue);
-    } catch (e) {
-      console.error('setItem error: ', e);
-    }
+  setItem: (key, value) => wrapSecureStorage('setItem', NativeSecuritySuiteModule.secureStorageSetItem(key, value)),
+  getItem: key => wrapSecureStorage('getItem', NativeSecuritySuiteModule.secureStorageGetItem(key)),
+  removeItem: key => wrapSecureStorage('removeItem', NativeSecuritySuiteModule.secureStorageRemoveItem(key)),
+  getAllKeys: () => wrapSecureStorage('getAllKeys', NativeSecuritySuiteModule.secureStorageGetAllKeys()),
+  clear: () => wrapSecureStorage('clear', NativeSecuritySuiteModule.secureStorageClear()),
+  multiSet: async keyValuePairs => {
+    await Promise.all(keyValuePairs.map(([key, value]) => SecureStorage.setItem(key, value)));
   },
-  getItem: async key => {
-    try {
-      const encryptedKey = await encrypt(key, false);
-      const encryptedData = await AsyncStorage.getItem(encryptedKey);
-      return decrypt(encryptedData ?? '');
-    } catch (e) {
-      console.error('getItem error: ', e);
-      return '';
-    }
+  multiGet: async keys => Promise.all(keys.map(async key => [key, await SecureStorage.getItem(key)])),
+  multiRemove: async keys => {
+    await Promise.all(keys.map(key => SecureStorage.removeItem(key)));
   },
+  /** @deprecated Use multiSet instead. */
   mergeItem: async (key, value) => {
-    try {
-      const encryptedKey = await encrypt(key, false);
-      const encryptedData = await AsyncStorage.getItem(encryptedKey);
-      const data = await decrypt(encryptedData ?? '');
-      if (!isJsonString(data) || !isJsonString(value)) return;
-      const mergedData = await JSON.stringify(Object.assign(JSON.parse(data), JSON.parse(value)));
-      const encryptedValue = await encrypt(mergedData);
-      return AsyncStorage.setItem(encryptedKey, encryptedValue);
-    } catch (e) {
-      console.error('mergeItem error: ', e);
-    }
-  },
-  removeItem: async key => {
-    try {
-      const encryptedKey = await encrypt(key, false);
-      return AsyncStorage.removeItem(encryptedKey);
-    } catch (e) {
-      console.error('removeItem error: ', e);
-    }
-  },
-  getAllKeys: async () => {
-    try {
-      const encryptedKeys = await AsyncStorage.getAllKeys();
-      return await Promise.all(encryptedKeys.map(async item => {
-        const decryptedKey = await decrypt(item, false);
-        return decryptedKey ? decryptedKey : item;
-      }));
-    } catch (e) {
-      console.error('getAllKeys error: ', e);
-      return [];
-    }
-  },
-  multiSet: async keyValuePairs => {
-    try {
-      const encryptedKeyValuePairs = await Promise.all(keyValuePairs.map(async item => {
-        if (item.length === 2 && item[0] && item[1]) {
-          const encryptedKey = await encrypt(item[0], false);
-          const encryptedValue = await encrypt(item[1]);
-          return [encryptedKey, encryptedValue];
-        }
-        return null;
-      }));
-      AsyncStorage.multiSet(encryptedKeyValuePairs);
-    } catch (e) {
-      console.error('multiSet error: ', e);
+    const existing = await SecureStorage.getItem(key);
+    if (!existing) {
+      await SecureStorage.setItem(key, value);
+      return;
     }
-  },
-  multiGet: async keys => {
     try {
-      if (!Array.isArray(keys)) return [];
-      const encryptedKeys = await Promise.all(keys.map(async item => await encrypt(item, false)));
-      const encryptedItems = await AsyncStorage.multiGet(encryptedKeys);
-      return await Promise.all(encryptedItems && encryptedItems.length ? encryptedItems.map(async item => {
-        const decryptedKey = await decrypt(item[0], false);
-        const decryptedalue = await decrypt(item[1]);
-        return [decryptedKey, decryptedalue];
-      }) : []);
-    } catch (e) {
-      console.error('multiGet error: ', e);
-      return [];
-    }
-  },
-  multiMerge: async keyValuePairs => {
-    try {
-      keyValuePairs.map(async item => {
-        if (item.length === 2 && item[0] && item[1]) {
-          const encryptedKey = await encrypt(item[0], false);
-          const encryptedData = await AsyncStorage.getItem(item[0]);
-          const data = await decrypt(encryptedData ?? '');
-          if (!isJsonString(data) || !isJsonString(item[1])) return null;
-          const mergedData = await JSON.stringify(Object.assign(JSON.parse(data), JSON.parse(item[1])));
-          const encryptedValue = await encrypt(mergedData, false);
-          return AsyncStorage.setItem(encryptedKey, encryptedValue);
-        }
-        return null;
+      const merged = JSON.stringify({
+        ...JSON.parse(existing),
+        ...JSON.parse(value)
       });
-    } catch (e) {
-      console.error('multiMerge error: ', e);
+      await SecureStorage.setItem(key, merged);
+    } catch {
+      throw new Error('mergeItem requires valid JSON strings');
     }
   },
-  multiRemove: async keys => {
-    try {
-      if (!Array.isArray(keys)) return keys;
-      const encryptedKeys = await Promise.all(keys.map(async item => await encrypt(item, false)));
-      return AsyncStorage.multiRemove(encryptedKeys);
-    } catch (e) {
-      console.error('multiRemove error: ', e);
-    }
-  },
-  clear: async () => {
-    try {
-      return AsyncStorage.clear();
-    } catch (e) {
-      console.error('clear error: ', e);
-    }
+  /** @deprecated Use multiSet instead. */
+  multiMerge: async keyValuePairs => {
+    await Promise.all(keyValuePairs.map(([key, value]) => SecureStorage.mergeItem(key, value)));
   }
 };
-export function fetch(url, options, loggerIsEnabled = false) {
+export function fetch(url, options, loggerIsEnabled = __DEV__) {
   return new Promise((resolve, reject) => {
-    SecuritySuite.fetch(url, {
-      ...options,
+    NativeSecuritySuiteModule.fetch(url, {
+      ...normalizeFetchOptions(options),
       loggerIsEnabled
     }, (result, error) => {
-      try {
-        if (error === null) {
-          resolve({
-            ...result,
-            json: () => jsonParse(result.response)
-          });
-        } else {
-          const errorJson = jsonParse(error.error);
-          reject({
-            json: () => errorJson,
-            error: error?.error ?? error,
-            status: error?.status ?? '',
-            url: error?.url ?? '',
-            ...errorJson
-          });
-        }
-      } catch (e) {
-        console.error('SSL Pinnning fetch error: ', e);
+      if (error === null) {
+        resolve({
+          ...result,
+          json: () => jsonParse(result.response)
+        });
+      } else {
+        const errorJson = jsonParse(typeof error?.error === 'string' ? error.error : JSON.stringify(error));
+        reject({
+          json: () => errorJson,
+          error: error?.error ?? error,
+          status: error?.status ?? 0,
+          url: error?.url ?? url,
+          path: errorJson?.path ?? '',
+          message: errorJson?.message ?? String(error?.error ?? error),
+          code: errorJson?.code ?? '',
+          duration: error?.duration ?? '',
+          ...errorJson
+        });
       }
     });
   });
 }
 export function deviceHasSecurityRisk() {
-  return SecuritySuite.deviceHasSecurityRisk();
+  return NativeSecuritySuiteModule.deviceHasSecurityRisk();
 }
-export default SecuritySuite;
+export default NativeSecuritySuiteModule;
 //# sourceMappingURL=index.js.map

package/lib/module/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["NativeModules","Platform","AsyncStorage","isJsonString","jsonParse","LINKING_ERROR","select","ios","default","SecuritySuite","Proxy","get","Error","getPublicKey","getSharedKey","serverPublicKey","encryptBySharedKey","input","encrypt","decryptBySharedKey","decrypt","getDeviceId","Promise","resolve","reject","result","error","hardEncryption","secretKey","storageEncrypt","storageDecrypt","SecureStorage","setItem","key","value","encryptedKey","encryptedValue","e","console","getItem","encryptedData","mergeItem","data","mergedData","JSON","stringify","Object","assign","parse","removeItem","getAllKeys","encryptedKeys","all","map","item","decryptedKey","multiSet","keyValuePairs","encryptedKeyValuePairs","length","multiGet","keys","Array","isArray","encryptedItems","decryptedalue","multiMerge","multiRemove","clear","fetch","url","options","loggerIsEnabled","json","response","errorJson","status","deviceHasSecurityRisk"],"sourceRoot":"../../src","sources":["index.tsx"],"mappings":";;AAAA,SAASA,aAAa,EAAEC,QAAQ,QAAQ,cAAc;AACtD,OAAOC,YAAY,MAAM,2CAA2C;AACpE,SAASC,YAAY,EAAEC,SAAS,QAAQ,cAAW;AAEnD,cAAc,iBAAc;;AAE5B;AACA;AACA;;AAiDA,MAAMC,aAAa,GACjB,sFAAsF,GACtFJ,QAAQ,CAACK,MAAM,CAAC;EAAEC,GAAG,EAAE,gCAAgC;EAAEC,OAAO,EAAE;AAAG,CAAC,CAAC,GACvE,sDAAsD,GACtD,6CAA6C;AAE/C,MAAMC,aAAa,GAAGT,aAAa,CAACS,aAAa,GAC7CT,aAAa,CAACS,aAAa,GAC3B,IAAIC,KAAK,CACP,CAAC,CAAC,EACF;EACEC,GAAGA,CAAA,EAAG;IACJ,MAAM,IAAIC,KAAK,CAACP,aAAa,CAAC;EAChC;AACF,CACF,CAAC;AAEL,OAAO,MAAMQ,YAAY,GAAGA,CAAA,KAAuBJ,aAAa,CAACI,YAAY,CAAC,CAAC;AAE/E,OAAO,MAAMC,YAAY,GAAIC,eAAuB,IAClDN,aAAa,CAACK,YAAY,CAACC,eAAe,CAAC;AAE7C,OAAO,MAAMC,kBAAkB,GAAIC,KAAa,IAC9CA,KAAK,IAAI,OAAOA,KAAK,KAAK,QAAQ,GAAGR,aAAa,CAACS,OAAO,CAACD,KAAK,CAAC,GAAG,EAAE;AAExE,OAAO,MAAME,kBAAkB,GAAIF,KAAa,IAC9CA,KAAK,IAAI,OAAOA,KAAK,KAAK,QAAQ,GAAGR,aAAa,CAACW,OAAO,CAACH,KAAK,CAAC,GAAG,EAAE;AAExE,OAAO,MAAMI,WAAW,GAAGA,CAAA,KACzB,IAAIC,OAAO,CAAC,CAACC,OAAY,EAAEC,MAAW,KAAK;EACzCf,aAAa,CAACY,WAAW,CAAC,CAACI,MAAqB,EAAEC,KAAoB,KAAK;IACzE,IAAIA,KAAK,KAAK,IAAI,EAAEF,MAAM,CAACE,KAAK,CAAC,CAAC,KAC7BH,OAAO,CAACE,MAAM,CAAC;EACtB,CAAC,CAAC;AACJ,CAAC,CAAC;AAEJ,OAAO,MAAMP,OAAO,GAAGA,CACrBD,KAAa,EACbU,cAAc,GAAG,IAAI,EACrBC,SAAS,GAAG,IAAI,KAEhB,IAAIN,OAAO,CAAC,CAACC,OAAY,EAAEC,MAAW,KAAK;EACzC,IAAI,CAACP,KAAK,EAAEM,OAAO,CAACN,KAAK,CAAC;EAE1BR,aAAa,CAACoB,cAAc,CAC1BZ,KAAK,EACLW,SAAS,EACTD,cAAc,EACd,CAACF,MAAqB,EAAEC,KAAoB,KAAK;IAC/C,IAAIA,KAAK,KAAK,IAAI,EAAEF,MAAM,CAACE,KAAK,CAAC,CAAC,KAC7BH,OAAO,CAACE,MAAM,CAAC;EACtB,CACF,CAAC;AACH,CAAC,CAAC;AAEJ,OAAO,MAAML,OAAO,GAAGA,CACrBH,KAAa,EACbU,cAAc,GAAG,IAAI,EACrBC,SAAS,GAAG,IAAI,KAEhB,IAAIN,OAAO,CAAC,CAACC,OAAY,EAAEC,MAAW,KAAK;EACzC,IAAI,CAACP,KAAK,EAAEM,OAAO,CAACN,KAAK,CAAC;EAE1BR,aAAa,CAACqB,cAAc,CAC1Bb,KAAK,EACLW,SAAS,EACTD,cAAc,EACd,CAACF,MAAqB,EAAEC,KAAoB,KAAK;IAC/C,IAAIA,KAAK,KAAK,IAAI,EAAEF,MAAM,CAACE,KAAK,CAAC,CAAC,KAC7BH,OAAO,CAACE,MAAM,CAAC;EACtB,CACF,CAAC;AACH,CAAC,CAAC;AAEJ,OAAO,MAAMM,aAAa,GAAG;EAC3BC,OAAO,EAAE,MAAAA,CAAOC,GAAW,EAAEC,KAAa,KAAoB;IAC5D,IAAI;MACF,MAAMC,YAAY,GAAG,MAAMjB,OAAO,CAACe,GAAG,EAAE,KAAK,CAAC;MAC9C,MAAMG,cAAc,GAAG,MAAMlB,OAAO,CAACgB,KAAK,CAAC;MAC3C,OAAOhC,YAAY,CAAC8B,OAAO,CAACG,YAAY,EAAEC,cAAc,CAAC;IAC3D,CAAC,CAAC,OAAOC,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,iBAAiB,EAAEW,CAAC,CAAC;IACrC;EACF,CAAC;EACDE,OAAO,EAAE,MAAON,GAAW,IAA6B;IACtD,IAAI;MACF,MAAME,YAAY,GAAG,MAAMjB,OAAO,CAACe,GAAG,EAAE,KAAK,CAAC;MAC9C,MAAMO,aAAa,GAAG,MAAMtC,YAAY,CAACqC,OAAO,CAACJ,YAAY,CAAC;MAC9D,OAAOf,OAAO,CAACoB,aAAa,IAAI,EAAE,CAAC;IACrC,CAAC,CAAC,OAAOH,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,iBAAiB,EAAEW,CAAC,CAAC;MACnC,OAAO,EAAE;IACX;EACF,CAAC;EACDI,SAAS,EAAE,MAAAA,CAAOR,GAAW,EAAEC,KAAa,KAAoB;IAC9D,IAAI;MACF,MAAMC,YAAY,GAAG,MAAMjB,OAAO,CAACe,GAAG,EAAE,KAAK,CAAC;MAC9C,MAAMO,aAAa,GAAG,MAAMtC,YAAY,CAACqC,OAAO,CAACJ,YAAY,CAAC;MAC9D,MAAMO,IAAI,GAAG,MAAMtB,OAAO,CAACoB,aAAa,IAAI,EAAE,CAAC;MAC/C,IAAI,CAACrC,YAAY,CAACuC,IAAI,CAAC,IAAI,CAACvC,YAAY,CAAC+B,KAAK,CAAC,EAAE;MACjD,MAAMS,UAAU,GAAG,MAAMC,IAAI,CAACC,SAAS,CACrCC,MAAM,CAACC,MAAM,CAACH,IAAI,CAACI,KAAK,CAACN,IAAI,CAAC,EAAEE,IAAI,CAACI,KAAK,CAACd,KAAK,CAAC,CACnD,CAAC;MACD,MAAME,cAAc,GAAG,MAAMlB,OAAO,CAACyB,UAAU,CAAC;MAChD,OAAOzC,YAAY,CAAC8B,OAAO,CAACG,YAAY,EAAEC,cAAc,CAAC;IAC3D,CAAC,CAAC,OAAOC,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,mBAAmB,EAAEW,CAAC,CAAC;IACvC;EACF,CAAC;EACDY,UAAU,EAAE,MAAOhB,GAAW,IAAoB;IAChD,IAAI;MACF,MAAME,YAAY,GAAG,MAAMjB,OAAO,CAACe,GAAG,EAAE,KAAK,CAAC;MAC9C,OAAO/B,YAAY,CAAC+C,UAAU,CAACd,YAAY,CAAC;IAC9C,CAAC,CAAC,OAAOE,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,oBAAoB,EAAEW,CAAC,CAAC;IACxC;EACF,CAAC;EACDa,UAAU,EAAE,MAAAA,CAAA,KAAwC;IAClD,IAAI;MACF,MAAMC,aAAa,GAAG,MAAMjD,YAAY,CAACgD,UAAU,CAAC,CAAC;MACrD,OAAO,MAAM5B,OAAO,CAAC8B,GAAG,CACtBD,aAAa,CAACE,GAAG,CAAC,MAAOC,IAAY,IAAsB;QACzD,MAAMC,YAAY,GAAG,MAAMnC,OAAO,CAACkC,IAAI,EAAE,KAAK,CAAC;QAC/C,OAAOC,YAAY,GAAGA,YAAY,GAAGD,IAAI;MAC3C,CAAC,CACH,CAAC;IACH,CAAC,CAAC,OAAOjB,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,oBAAoB,EAAEW,CAAC,CAAC;MACtC,OAAO,EAAE;IACX;EACF,CAAC;EACDmB,QAAQ,EAAE,MAAOC,aAAmC,IAAoB;IACtE,IAAI;MACF,MAAMC,sBAA2B,GAAG,MAAMpC,OAAO,CAAC8B,GAAG,CACnDK,aAAa,CAACJ,GAAG,CAAC,MAAOC,IAAmB,IAAK;QAC/C,IAAIA,IAAI,CAACK,MAAM,KAAK,CAAC,IAAIL,IAAI,CAAC,CAAC,CAAC,IAAIA,IAAI,CAAC,CAAC,CAAC,EAAE;UAC3C,MAAMnB,YAAY,GAAG,MAAMjB,OAAO,CAACoC,IAAI,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC;UAClD,MAAMlB,cAAc,GAAG,MAAMlB,OAAO,CAACoC,IAAI,CAAC,CAAC,CAAC,CAAC;UAC7C,OAAO,CAACnB,YAAY,EAAEC,cAAc,CAAC;QACvC;QAEA,OAAO,IAAI;MACb,CAAC,CACH,CAAC;MACDlC,YAAY,CAACsD,QAAQ,CAACE,sBAAsB,CAAC;IAC/C,CAAC,CAAC,OAAOrB,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,kBAAkB,EAAEW,CAAC,CAAC;IACtC;EACF,CAAC;EACDuB,QAAQ,EAAE,MACRC,IAAmB,IAC6B;IAChD,IAAI;MACF,IAAI,CAACC,KAAK,CAACC,OAAO,CAACF,IAAI,CAAC,EAAE,OAAO,EAAE;MACnC,MAAMV,aAAa,GAAG,MAAM7B,OAAO,CAAC8B,GAAG,CACrCS,IAAI,CAACR,GAAG,CACN,MAAOC,IAAY,IAAsB,MAAMpC,OAAO,CAACoC,IAAI,EAAE,KAAK,CACpE,CACF,CAAC;MACD,MAAMU,cAAc,GAAG,MAAM9D,YAAY,CAAC0D,QAAQ,CAACT,aAAa,CAAC;MACjE,OAAO,MAAM7B,OAAO,CAAC8B,GAAG,CACtBY,cAAc,IAAIA,cAAc,CAACL,MAAM,GACnCK,cAAc,CAACX,GAAG,CAAC,MAAOC,IAAS,IAAgC;QACjE,MAAMC,YAAY,GAAG,MAAMnC,OAAO,CAACkC,IAAI,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC;QAClD,MAAMW,aAAa,GAAG,MAAM7C,OAAO,CAACkC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5C,OAAO,CAACC,YAAY,EAAEU,aAAa,CAAC;MACtC,CAAC,CAAC,GACF,EACN,CAAC;IACH,CAAC,CAAC,OAAO5B,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,kBAAkB,EAAEW,CAAC,CAAC;MACpC,OAAO,EAAE;IACX;EACF,CAAC;EACD6B,UAAU,EAAE,MAAOT,aAAmC,IAAoB;IACxE,IAAI;MACFA,aAAa,CAACJ,GAAG,CAAC,MAAOC,IAAmB,IAAK;QAC/C,IAAIA,IAAI,CAACK,MAAM,KAAK,CAAC,IAAIL,IAAI,CAAC,CAAC,CAAC,IAAIA,IAAI,CAAC,CAAC,CAAC,EAAE;UAC3C,MAAMnB,YAAY,GAAG,MAAMjB,OAAO,CAACoC,IAAI,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC;UAClD,MAAMd,aAAa,GAAG,MAAMtC,YAAY,CAACqC,OAAO,CAACe,IAAI,CAAC,CAAC,CAAC,CAAC;UACzD,MAAMZ,IAAI,GAAG,MAAMtB,OAAO,CAACoB,aAAa,IAAI,EAAE,CAAC;UAC/C,IAAI,CAACrC,YAAY,CAACuC,IAAI,CAAC,IAAI,CAACvC,YAAY,CAACmD,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,OAAO,IAAI;UAC9D,MAAMX,UAAU,GAAG,MAAMC,IAAI,CAACC,SAAS,CACrCC,MAAM,CAACC,MAAM,CAACH,IAAI,CAACI,KAAK,CAACN,IAAI,CAAC,EAAEE,IAAI,CAACI,KAAK,CAACM,IAAI,CAAC,CAAC,CAAC,CAAC,CACrD,CAAC;UACD,MAAMlB,cAAc,GAAG,MAAMlB,OAAO,CAACyB,UAAU,EAAE,KAAK,CAAC;UACvD,OAAOzC,YAAY,CAAC8B,OAAO,CAACG,YAAY,EAAEC,cAAc,CAAC;QAC3D;QAEA,OAAO,IAAI;MACb,CAAC,CAAC;IACJ,CAAC,CAAC,OAAOC,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,oBAAoB,EAAEW,CAAC,CAAC;IACxC;EACF,CAAC;EACD8B,WAAW,EAAE,MAAON,IAAmB,IAAoB;IACzD,IAAI;MACF,IAAI,CAACC,KAAK,CAACC,OAAO,CAACF,IAAI,CAAC,EAAE,OAAOA,IAAI;MACrC,MAAMV,aAAa,GAAG,MAAM7B,OAAO,CAAC8B,GAAG,CACrCS,IAAI,CAACR,GAAG,CACN,MAAOC,IAAY,IAAsB,MAAMpC,OAAO,CAACoC,IAAI,EAAE,KAAK,CACpE,CACF,CAAC;MACD,OAAOpD,YAAY,CAACiE,WAAW,CAAChB,aAAa,CAAC;IAChD,CAAC,CAAC,OAAOd,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,qBAAqB,EAAEW,CAAC,CAAC;IACzC;EACF,CAAC;EACD+B,KAAK,EAAE,MAAAA,CAAA,KAA2B;IAChC,IAAI;MACF,OAAOlE,YAAY,CAACkE,KAAK,CAAC,CAAC;IAC7B,CAAC,CAAC,OAAO/B,CAAC,EAAE;MACVC,OAAO,CAACZ,KAAK,CAAC,eAAe,EAAEW,CAAC,CAAC;IACnC;EACF;AACF,CAAC;AAED,OAAO,SAASgC,KAAKA,CACnBC,GAAW,EACXC,OAAgB,EAChBC,eAAe,GAAG,KAAK,EACmB;EAC1C,OAAO,IAAIlD,OAAO,CAAC,CAACC,OAAO,EAAEC,MAAM,KAAK;IACtCf,aAAa,CAAC4D,KAAK,CACjBC,GAAG,EACH;MAAE,GAAGC,OAAO;MAAEC;IAAgB,CAAC,EAC/B,CAAC/C,MAAuB,EAAEC,KAAoB,KAAK;MACjD,IAAI;QACF,IAAIA,KAAK,KAAK,IAAI,EAAE;UAClBH,OAAO,CAAC;YACN,GAAGE,MAAM;YACTgD,IAAI,EAAEA,CAAA,KAAMrE,SAAS,CAACqB,MAAM,CAACiD,QAAQ;UACvC,CAAC,CAAC;QACJ,CAAC,MAAM;UACL,MAAMC,SAAS,GAAGvE,SAAS,CAACsB,KAAK,CAACA,KAAK,CAAC;UACxCF,MAAM,CAAC;YACLiD,IAAI,EAAEA,CAAA,KAAME,SAAS;YACrBjD,KAAK,EAAEA,KAAK,EAAEA,KAAK,IAAIA,KAAK;YAC5BkD,MAAM,EAAElD,KAAK,EAAEkD,MAAM,IAAI,EAAE;YAC3BN,GAAG,EAAE5C,KAAK,EAAE4C,GAAG,IAAI,EAAE;YACrB,GAAGK;UACL,CAAC,CAAC;QACJ;MACF,CAAC,CAAC,OAAOtC,CAAC,EAAE;QACVC,OAAO,CAACZ,KAAK,CAAC,4BAA4B,EAAEW,CAAC,CAAC;MAChD;IACF,CACF,CAAC;EACH,CAAC,CAAC;AACJ;AAEA,OAAO,SAASwC,qBAAqBA,CAAA,EAAqB;EACxD,OAAOpE,aAAa,CAACoE,qBAAqB,CAAC,CAAC;AAC9C;AAEA,eAAepE,aAAa","ignoreList":[]}
+{"version":3,"names":["NativeModules","Platform","jsonParse","toNativeCryptoOptions","toNativeGenerateJWSOptions","toNativeJwsFetchOptions","SecurityError","SecurityErrorCode","mapNativeError","isSecurityError","DeviceSecurity","RuntimeSecurity","AppIntegrity","Crypto","SecuritySuite","LINKING_ERROR","select","ios","default","NativeSecuritySuiteModule","Proxy","get","Error","getPublicKey","getSharedKey","serverPublicKey","options","encryptBySharedKey","input","Promise","reject","encrypt","decryptBySharedKey","decrypt","generateJWS","nativeOptions","normalizeFetchOptions","jws","nativeJws","algorithm","secret","headers","detached","headerName","payload","undefined","obfuscate","deobfuscate","getDeviceId","resolve","result","error","hardEncryption","secretKey","storageEncrypt","storageDecrypt","SECURE_STORAGE_FAILED","wrapSecureStorage","operation","promise","catch","detail","message","SecureStorage","setItem","key","value","secureStorageSetItem","getItem","secureStorageGetItem","removeItem","secureStorageRemoveItem","getAllKeys","secureStorageGetAllKeys","clear","secureStorageClear","multiSet","keyValuePairs","all","map","multiGet","keys","multiRemove","mergeItem","existing","merged","JSON","stringify","parse","multiMerge","fetch","url","loggerIsEnabled","__DEV__","json","response","errorJson","status","path","String","code","duration","deviceHasSecurityRisk"],"sourceRoot":"../../src","sources":["index.tsx"],"mappings":";;AAAA,SAASA,aAAa,EAAEC,QAAQ,QAAQ,cAAc;AACtD,SAASC,SAAS,QAAQ,cAAW;AACrC,SACEC,qBAAqB,QAEhB,2BAAwB;AAC/B,SACEC,0BAA0B,EAC1BC,uBAAuB,QAGlB,UAAO;AAEd,cAAc,iBAAc;AAmB5B,SAASC,aAAa,EAAEC,iBAAiB,EAAEC,cAAc,EAAEC,eAAe,QAAQ,aAAU;AAC5F,SAASC,cAAc,QAAQ,mBAAU;AACzC,SAASC,eAAe,QAAQ,oBAAW;AAC3C,SAASC,YAAY,QAAQ,sBAAa;AAC1C,SAASC,MAAM,QAAQ,mBAAU;AACjC,SAASC,aAAa,QAAQ,0BAAiB;;AAW/C;;AAyEA,MAAMC,aAAa,GACjB,sFAAsF,GACtFd,QAAQ,CAACe,MAAM,CAAC;EAAEC,GAAG,EAAE,gCAAgC;EAAEC,OAAO,EAAE;AAAG,CAAC,CAAC,GACvE,sDAAsD,GACtD,6CAA6C;AAE/C,MAAMC,yBAAyB,GAAGnB,aAAa,CAACc,aAAa,GACzDd,aAAa,CAACc,aAAa,GAC3B,IAAIM,KAAK,CACP,CAAC,CAAC,EACF;EACEC,GAAGA,CAAA,EAAG;IACJ,MAAM,IAAIC,KAAK,CAACP,aAAa,CAAC;EAChC;AACF,CACF,CAAC;AAEL,OAAO,MAAMQ,YAAY,GAAGA,CAAA,KAC1BJ,yBAAyB,CAACI,YAAY,CAAC,CAAC;;AAE1C;AACA;AACA;AACA,OAAO,MAAMC,YAAY,GAAGA,CAC1BC,eAAuB,EACvBC,OAAuB,KAEvBP,yBAAyB,CAACK,YAAY,CAACC,eAAe,EAAEtB,qBAAqB,CAACuB,OAAO,CAAC,CAAC;AAEzF,OAAO,MAAMC,kBAAkB,GAAGA,CAChCC,KAAa,EACbF,OAAuB,KACH;EACpB,IAAI,CAACE,KAAK,IAAI,OAAOA,KAAK,KAAK,QAAQ,EAAE;IACvC,OAAOC,OAAO,CAACC,MAAM,CAAC,IAAIR,KAAK,CAAC,kCAAkC,CAAC,CAAC;EACtE;EACA,OAAOH,yBAAyB,CAACY,OAAO,CAACH,KAAK,EAAEzB,qBAAqB,CAACuB,OAAO,CAAC,CAAC;AACjF,CAAC;AAED,OAAO,MAAMM,kBAAkB,GAAGA,CAChCJ,KAAa,EACbF,OAAuB,KACH;EACpB,IAAI,CAACE,KAAK,IAAI,OAAOA,KAAK,KAAK,QAAQ,EAAE;IACvC,OAAOC,OAAO,CAACC,MAAM,CAAC,IAAIR,KAAK,CAAC,kCAAkC,CAAC,CAAC;EACtE;EACA,OAAOH,yBAAyB,CAACc,OAAO,CAACL,KAAK,EAAEzB,qBAAqB,CAACuB,OAAO,CAAC,CAAC;AACjF,CAAC;AAED,OAAO,MAAMQ,WAAW,GAAIR,OAA2B,IAAsB;EAC3E,MAAMS,aAAa,GAAG/B,0BAA0B,CAACsB,OAAO,CAAC;EACzD,OAAOP,yBAAyB,CAACe,WAAW,CAACC,aAAa,CAAC;AAC7D,CAAC;AAED,SAASC,qBAAqBA,CAACV,OAAgB,EAAW;EACxD,IAAI,CAACA,OAAO,CAACW,GAAG,EAAE;IAChB,OAAOX,OAAO;EAChB;EAEA,MAAMY,SAAS,GAAGjC,uBAAuB,CAACqB,OAAO,CAACW,GAAG,CAAC;EACtD,OAAO;IACL,GAAGX,OAAO;IACVW,GAAG,EAAE;MACHE,SAAS,EAAED,SAAS,CAACC,SAAS;MAC9BC,MAAM,EAAEF,SAAS,CAACE,MAAM;MACxBC,OAAO,EAAEH,SAAS,CAACG,OAAO;MAC1BC,QAAQ,EAAEJ,SAAS,CAACI,QAAQ;MAC5B,IAAIhB,OAAO,CAACW,GAAG,CAACM,UAAU,GAAG;QAAEA,UAAU,EAAEjB,OAAO,CAACW,GAAG,CAACM;MAAW,CAAC,GAAG,CAAC,CAAC,CAAC;MACzE,IAAIjB,OAAO,CAACW,GAAG,CAACO,OAAO,KAAKC,SAAS,GACjC;QAAED,OAAO,EAAEN,SAAS,CAACM;MAAQ,CAAC,GAC9B,CAAC,CAAC;IACR;EACF,CAAC;AACH;;AAEA;AACA;AACA;AACA;AACA,OAAO,MAAME,SAAS,GAAGA,CAAClB,KAAa,EAAEY,MAAc,KACrDrB,yBAAyB,CAAC2B,SAAS,CAAClB,KAAK,EAAEY,MAAM,CAAC;AAEpD,OAAO,MAAMO,WAAW,GAAGA,CAACnB,KAAa,EAAEY,MAAc,KACvDrB,yBAAyB,CAAC4B,WAAW,CAACnB,KAAK,EAAEY,MAAM,CAAC;AAEtD,OAAO,MAAMQ,WAAW,GAAGA,CAAA,KACzB,IAAInB,OAAO,CAAC,CAACoB,OAAO,EAAEnB,MAAM,KAAK;EAC/BX,yBAAyB,CAAC6B,WAAW,CAAC,CAACE,MAAqB,EAAEC,KAAoB,KAAK;IACrF,IAAIA,KAAK,KAAK,IAAI,EAAErB,MAAM,CAACqB,KAAK,CAAC,CAAC,KAC7B,IAAID,MAAM,KAAK,IAAI,EAAED,OAAO,CAACC,MAAM,CAAC,CAAC,KACrCpB,MAAM,CAAC,IAAIR,KAAK,CAAC,qBAAqB,CAAC,CAAC;EAC/C,CAAC,CAAC;AACJ,CAAC,CAAC;;AAEJ;AACA;AACA;AACA,OAAO,MAAMS,OAAO,GAAGA,CACrBH,KAAa,EACbwB,cAAc,GAAG,IAAI,EACrBC,SAAwB,GAAG,IAAI,KAE/B,IAAIxB,OAAO,CAAC,CAACoB,OAAO,EAAEnB,MAAM,KAAK;EAC/B,IAAI,CAACF,KAAK,EAAE;IACVqB,OAAO,CAACrB,KAAK,CAAC;IACd;EACF;EACA,IAAI,CAACyB,SAAS,EAAE;IACdvB,MAAM,CACJ,IAAIR,KAAK,CACP,gFACF,CACF,CAAC;IACD;EACF;EACAH,yBAAyB,CAACmC,cAAc,CACtC1B,KAAK,EACLyB,SAAS,EACTD,cAAc,EACd,CAACF,MAAqB,EAAEC,KAAoB,KAAK;IAC/C,IAAIA,KAAK,KAAK,IAAI,EAAErB,MAAM,CAACqB,KAAK,CAAC,CAAC,KAC7B,IAAID,MAAM,KAAK,IAAI,EAAED,OAAO,CAACC,MAAM,CAAC,CAAC,KACrCpB,MAAM,CAAC,IAAIR,KAAK,CAAC,eAAe,CAAC,CAAC;EACzC,CACF,CAAC;AACH,CAAC,CAAC;;AAEJ;AACA;AACA;AACA,OAAO,MAAMW,OAAO,GAAGA,CACrBL,KAAa,EACbwB,cAAc,GAAG,IAAI,EACrBC,SAAwB,GAAG,IAAI,KAE/B,IAAIxB,OAAO,CAAC,CAACoB,OAAO,EAAEnB,MAAM,KAAK;EAC/B,IAAI,CAACF,KAAK,EAAE;IACVqB,OAAO,CAACrB,KAAK,CAAC;IACd;EACF;EACA,IAAI,CAACyB,SAAS,EAAE;IACdvB,MAAM,CACJ,IAAIR,KAAK,CACP,gFACF,CACF,CAAC;IACD;EACF;EACAH,yBAAyB,CAACoC,cAAc,CACtC3B,KAAK,EACLyB,SAAS,EACTD,cAAc,EACd,CAACF,MAAqB,EAAEC,KAAoB,KAAK;IAC/C,IAAIA,KAAK,KAAK,IAAI,EAAErB,MAAM,CAACqB,KAAK,CAAC,CAAC,KAC7B,IAAID,MAAM,KAAK,IAAI,EAAED,OAAO,CAACC,MAAM,CAAC,CAAC,KACrCpB,MAAM,CAAC,IAAIR,KAAK,CAAC,eAAe,CAAC,CAAC;EACzC,CACF,CAAC;AACH,CAAC,CAAC;AAEJ,MAAMkC,qBAAqB,GAAG,iCAAiC;AAE/D,SAASC,iBAAiBA,CAAIC,SAAiB,EAAEC,OAAmB,EAAc;EAChF,OAAOA,OAAO,CAACC,KAAK,CAAET,KAAc,IAAK;IACvC,MAAMU,MAAM,GACVV,KAAK,YAAY7B,KAAK,GAClB6B,KAAK,CAACW,OAAO,GACb,OAAOX,KAAK,KAAK,QAAQ,GACvBA,KAAK,GACL,eAAe;IACvB,MAAM,IAAI7B,KAAK,CAAC,GAAGkC,qBAAqB,KAAKE,SAAS,MAAMG,MAAM,EAAE,CAAC;EACvE,CAAC,CAAC;AACJ;;AAEA;AACA,OAAO,MAAME,aAAa,GAAG;EAC3BC,OAAO,EAAEA,CAACC,GAAW,EAAEC,KAAa,KAClCT,iBAAiB,CACf,SAAS,EACTtC,yBAAyB,CAACgD,oBAAoB,CAACF,GAAG,EAAEC,KAAK,CAC3D,CAAC;EAEHE,OAAO,EAAGH,GAAW,IACnBR,iBAAiB,CACf,SAAS,EACTtC,yBAAyB,CAACkD,oBAAoB,CAACJ,GAAG,CACpD,CAAC;EAEHK,UAAU,EAAGL,GAAW,IACtBR,iBAAiB,CACf,YAAY,EACZtC,yBAAyB,CAACoD,uBAAuB,CAACN,GAAG,CACvD,CAAC;EAEHO,UAAU,EAAEA,CAAA,KACVf,iBAAiB,CACf,YAAY,EACZtC,yBAAyB,CAACsD,uBAAuB,CAAC,CACpD,CAAC;EAEHC,KAAK,EAAEA,CAAA,KACLjB,iBAAiB,CAAC,OAAO,EAAEtC,yBAAyB,CAACwD,kBAAkB,CAAC,CAAC,CAAC;EAE5EC,QAAQ,EAAE,MAAOC,aAAsC,IAAoB;IACzE,MAAMhD,OAAO,CAACiD,GAAG,CACfD,aAAa,CAACE,GAAG,CAAC,CAAC,CAACd,GAAG,EAAEC,KAAK,CAAC,KAAKH,aAAa,CAACC,OAAO,CAACC,GAAG,EAAEC,KAAK,CAAC,CACvE,CAAC;EACH,CAAC;EAEDc,QAAQ,EAAE,MACRC,IAAc,IAEdpD,OAAO,CAACiD,GAAG,CACTG,IAAI,CAACF,GAAG,CAAC,MAAOd,GAAG,IAAuC,CACxDA,GAAG,EACH,MAAMF,aAAa,CAACK,OAAO,CAACH,GAAG,CAAC,CACjC,CACH,CAAC;EAEHiB,WAAW,EAAE,MAAOD,IAAc,IAAoB;IACpD,MAAMpD,OAAO,CAACiD,GAAG,CAACG,IAAI,CAACF,GAAG,CAAEd,GAAG,IAAKF,aAAa,CAACO,UAAU,CAACL,GAAG,CAAC,CAAC,CAAC;EACrE,CAAC;EAED;EACAkB,SAAS,EAAE,MAAAA,CAAOlB,GAAW,EAAEC,KAAa,KAAoB;IAC9D,MAAMkB,QAAQ,GAAG,MAAMrB,aAAa,CAACK,OAAO,CAACH,GAAG,CAAC;IACjD,IAAI,CAACmB,QAAQ,EAAE;MACb,MAAMrB,aAAa,CAACC,OAAO,CAACC,GAAG,EAAEC,KAAK,CAAC;MACvC;IACF;IACA,IAAI;MACF,MAAMmB,MAAM,GAAGC,IAAI,CAACC,SAAS,CAAC;QAC5B,GAAGD,IAAI,CAACE,KAAK,CAACJ,QAAQ,CAAC;QACvB,GAAGE,IAAI,CAACE,KAAK,CAACtB,KAAK;MACrB,CAAC,CAAC;MACF,MAAMH,aAAa,CAACC,OAAO,CAACC,GAAG,EAAEoB,MAAM,CAAC;IAC1C,CAAC,CAAC,MAAM;MACN,MAAM,IAAI/D,KAAK,CAAC,uCAAuC,CAAC;IAC1D;EACF,CAAC;EAED;EACAmE,UAAU,EAAE,MAAOZ,aAAsC,IAAoB;IAC3E,MAAMhD,OAAO,CAACiD,GAAG,CACfD,aAAa,CAACE,GAAG,CAAC,CAAC,CAACd,GAAG,EAAEC,KAAK,CAAC,KAAKH,aAAa,CAACoB,SAAS,CAAClB,GAAG,EAAEC,KAAK,CAAC,CACzE,CAAC;EACH;AACF,CAAC;AAED,OAAO,SAASwB,KAAKA,CACnBC,GAAW,EACXjE,OAAgB,EAChBkE,eAAe,GAAGC,OAAO,EACiB;EAC1C,OAAO,IAAIhE,OAAO,CAAC,CAACoB,OAAO,EAAEnB,MAAM,KAAK;IACtCX,yBAAyB,CAACuE,KAAK,CAC7BC,GAAG,EACH;MAAE,GAAGvD,qBAAqB,CAACV,OAAO,CAAC;MAAEkE;IAAgB,CAAC,EACtD,CAAC1C,MAAuB,EAAEC,KAAoB,KAAK;MACjD,IAAIA,KAAK,KAAK,IAAI,EAAE;QAClBF,OAAO,CAAC;UACN,GAAGC,MAAM;UACT4C,IAAI,EAAEA,CAAA,KAAM5F,SAAS,CAACgD,MAAM,CAAC6C,QAAQ;QACvC,CAAC,CAAC;MACJ,CAAC,MAAM;QACL,MAAMC,SAAS,GAAG9F,SAAS,CACzB,OAAOiD,KAAK,EAAEA,KAAK,KAAK,QAAQ,GAAGA,KAAK,CAACA,KAAK,GAAGmC,IAAI,CAACC,SAAS,CAACpC,KAAK,CACvE,CAAC;QACDrB,MAAM,CAAC;UACLgE,IAAI,EAAEA,CAAA,KAAME,SAAS;UACrB7C,KAAK,EAAEA,KAAK,EAAEA,KAAK,IAAIA,KAAK;UAC5B8C,MAAM,EAAE9C,KAAK,EAAE8C,MAAM,IAAI,CAAC;UAC1BN,GAAG,EAAExC,KAAK,EAAEwC,GAAG,IAAIA,GAAG;UACtBO,IAAI,EAAEF,SAAS,EAAEE,IAAI,IAAI,EAAE;UAC3BpC,OAAO,EAAEkC,SAAS,EAAElC,OAAO,IAAIqC,MAAM,CAAChD,KAAK,EAAEA,KAAK,IAAIA,KAAK,CAAC;UAC5DiD,IAAI,EAAEJ,SAAS,EAAEI,IAAI,IAAI,EAAE;UAC3BC,QAAQ,EAAElD,KAAK,EAAEkD,QAAQ,IAAI,EAAE;UAC/B,GAAGL;QACL,CAAC,CAAC;MACJ;IACF,CACF,CAAC;EACH,CAAC,CAAC;AACJ;AAEA,OAAO,SAASM,qBAAqBA,CAAA,EAAqB;EACxD,OAAOnF,yBAAyB,CAACmF,qBAAqB,CAAC,CAAC;AAC1D;AAEA,eAAenF,yBAAyB","ignoreList":[]}

package/lib/module/integrity/index.js

@@ -0,0 +1,36 @@
+"use strict";
+
+import { getNativeModule } from "../native/bridge.js";
+function parseBuildType(value) {
+  if (value === 'debug' || value === 'release' || value === 'testflight') {
+    return value;
+  }
+  return 'release';
+}
+function parseIntegrityReport(raw) {
+  const report = {
+    validSignature: Boolean(raw.validSignature),
+    debuggable: Boolean(raw.debuggable),
+    tampered: Boolean(raw.tampered),
+    buildType: parseBuildType(raw.buildType)
+  };
+  if (raw.installerTrusted !== undefined) {
+    report.installerTrusted = Boolean(raw.installerTrusted);
+  }
+  if (typeof raw.signingCertificateSha256 === 'string') {
+    report.signingCertificateSha256 = raw.signingCertificateSha256;
+  }
+  if (raw.installerPackage === null || typeof raw.installerPackage === 'string') {
+    report.installerPackage = raw.installerPackage;
+  }
+  if (typeof raw.bundleIdentifier === 'string') {
+    report.bundleIdentifier = raw.bundleIdentifier;
+  }
+  return report;
+}
+export const AppIntegrity = {
+  verify() {
+    return getNativeModule().appIntegrityVerify().then(result => parseIntegrityReport(result));
+  }
+};
+//# sourceMappingURL=index.js.map

package/lib/module/integrity/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["getNativeModule","parseBuildType","value","parseIntegrityReport","raw","report","validSignature","Boolean","debuggable","tampered","buildType","installerTrusted","undefined","signingCertificateSha256","installerPackage","bundleIdentifier","AppIntegrity","verify","appIntegrityVerify","then","result"],"sourceRoot":"../../../src","sources":["integrity/index.ts"],"mappings":";;AAAA,SAASA,eAAe,QAAQ,qBAAkB;AAGlD,SAASC,cAAcA,CAACC,KAAc,EAAa;EACjD,IAAIA,KAAK,KAAK,OAAO,IAAIA,KAAK,KAAK,SAAS,IAAIA,KAAK,KAAK,YAAY,EAAE;IACtE,OAAOA,KAAK;EACd;EACA,OAAO,SAAS;AAClB;AAEA,SAASC,oBAAoBA,CAACC,GAA4B,EAAsB;EAC9E,MAAMC,MAA0B,GAAG;IACjCC,cAAc,EAAEC,OAAO,CAACH,GAAG,CAACE,cAAc,CAAC;IAC3CE,UAAU,EAAED,OAAO,CAACH,GAAG,CAACI,UAAU,CAAC;IACnCC,QAAQ,EAAEF,OAAO,CAACH,GAAG,CAACK,QAAQ,CAAC;IAC/BC,SAAS,EAAET,cAAc,CAACG,GAAG,CAACM,SAAS;EACzC,CAAC;EAED,IAAIN,GAAG,CAACO,gBAAgB,KAAKC,SAAS,EAAE;IACtCP,MAAM,CAACM,gBAAgB,GAAGJ,OAAO,CAACH,GAAG,CAACO,gBAAgB,CAAC;EACzD;EAEA,IAAI,OAAOP,GAAG,CAACS,wBAAwB,KAAK,QAAQ,EAAE;IACpDR,MAAM,CAACQ,wBAAwB,GAAGT,GAAG,CAACS,wBAAwB;EAChE;EAEA,IAAIT,GAAG,CAACU,gBAAgB,KAAK,IAAI,IAAI,OAAOV,GAAG,CAACU,gBAAgB,KAAK,QAAQ,EAAE;IAC7ET,MAAM,CAACS,gBAAgB,GAAGV,GAAG,CAACU,gBAAiC;EACjE;EAEA,IAAI,OAAOV,GAAG,CAACW,gBAAgB,KAAK,QAAQ,EAAE;IAC5CV,MAAM,CAACU,gBAAgB,GAAGX,GAAG,CAACW,gBAAgB;EAChD;EAEA,OAAOV,MAAM;AACf;AAEA,OAAO,MAAMW,YAAY,GAAG;EAC1BC,MAAMA,CAAA,EAAgC;IACpC,OAAOjB,eAAe,CAAC,CAAC,CACrBkB,kBAAkB,CAAC,CAAC,CACpBC,IAAI,CAAEC,MAAM,IAAKjB,oBAAoB,CAACiB,MAAM,CAAC,CAAC;EACnD;AACF,CAAC","ignoreList":[]}

package/lib/module/jws.js

@@ -0,0 +1,127 @@
+"use strict";
+
+const SUPPORTED_ALGORITHMS = ['HS256', 'HS384', 'HS512'];
+const SAFE_HEADER_KEY = /^[a-zA-Z][a-zA-Z0-9_-]*$/;
+export function isEmptyJwsPayload(payload) {
+  return payload === undefined || payload === null || typeof payload === 'string' && payload.length === 0;
+}
+
+/**
+ * Normalizes a JWS payload to the exact UTF-8 string used for signing.
+ * Empty payload cases return an empty string (never "null" or "undefined").
+ */
+export function normalizeJwsPayload(payload) {
+  if (isEmptyJwsPayload(payload)) {
+    return '';
+  }
+  if (typeof payload === 'string') {
+    return payload;
+  }
+  if (typeof payload === 'number' || typeof payload === 'boolean') {
+    return JSON.stringify(payload);
+  }
+  return JSON.stringify(payload);
+}
+export function validateJwsAlgorithm(algorithm) {
+  if (!algorithm) {
+    return 'HS256';
+  }
+  if (!SUPPORTED_ALGORITHMS.includes(algorithm)) {
+    throw new Error(`Unsupported JWS algorithm: ${algorithm}`);
+  }
+  return algorithm;
+}
+export function validateJwsSecret(secret) {
+  if (typeof secret !== 'string' || secret.trim().length === 0) {
+    throw new Error('JWS secret is required and must be a non-empty string');
+  }
+  return secret;
+}
+export function validateJwsHeaderKey(key) {
+  if (!SAFE_HEADER_KEY.test(key)) {
+    throw new Error(`Invalid JWS header key: ${key}`);
+  }
+}
+export function validateJwsHeaderValue(key, value) {
+  if (value === null || typeof value === 'string' || typeof value === 'number' || typeof value === 'boolean') {
+    if (typeof value === 'string' && value.length > 0) {
+      for (let i = 0; i < value.length; i++) {
+        const code = value.charCodeAt(i);
+        if (code < 0x20 || code > 0x7e) {
+          throw new Error(`Invalid JWS header value for key: ${key}`);
+        }
+      }
+    }
+    return value;
+  }
+  throw new Error(`JWS header values must be JSON-serializable primitives: ${key}`);
+}
+export function validateJwsHeaders(headers) {
+  if (headers === undefined || headers === null) {
+    return {};
+  }
+  if (typeof headers !== 'object' || Array.isArray(headers)) {
+    throw new Error('JWS headers must be an object when provided');
+  }
+  const result = {};
+  for (const [key, value] of Object.entries(headers)) {
+    validateJwsHeaderKey(key);
+    result[key] = validateJwsHeaderValue(key, value);
+  }
+  return result;
+}
+
+/**
+ * Resolves the JWS algorithm from options and/or protected headers.
+ */
+export function resolveJwsAlgorithm(algorithm, headers) {
+  const headerAlg = headers.alg !== undefined && headers.alg !== null ? String(headers.alg) : undefined;
+  if (algorithm && headerAlg && algorithm !== headerAlg) {
+    throw new Error('JWS algorithm mismatch: options.algorithm and headers.alg must match');
+  }
+  if (algorithm) {
+    return validateJwsAlgorithm(algorithm);
+  }
+  if (headerAlg) {
+    return validateJwsAlgorithm(headerAlg);
+  }
+  return 'HS256';
+}
+export function toNativeGenerateJWSOptions(options, detached = false) {
+  const secret = validateJwsSecret(options.secret);
+  const headers = validateJwsHeaders(options.headers);
+  const algorithm = resolveJwsAlgorithm(options.algorithm, headers);
+  const payload = normalizeJwsPayload(options.payload);
+  return {
+    payload,
+    algorithm,
+    secret,
+    headers: {
+      ...headers,
+      alg: algorithm
+    },
+    detached
+  };
+}
+export function toNativeJwsFetchOptions(jws) {
+  const secret = validateJwsSecret(jws.secret);
+  const headers = validateJwsHeaders(jws.headers);
+  const algorithm = resolveJwsAlgorithm(jws.algorithm, headers);
+  return {
+    payload: normalizeJwsPayload(jws.payload),
+    algorithm,
+    secret,
+    headers: {
+      ...headers,
+      alg: algorithm
+    },
+    detached: jws.detached ?? false
+  };
+}
+export function assertCompactJwsShape(jws) {
+  const segments = jws.split('.');
+  if (segments.length !== 3) {
+    throw new Error(`Invalid compact JWS: expected 3 segments, got ${segments.length}`);
+  }
+}
+//# sourceMappingURL=jws.js.map

package/lib/module/jws.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["SUPPORTED_ALGORITHMS","SAFE_HEADER_KEY","isEmptyJwsPayload","payload","undefined","length","normalizeJwsPayload","JSON","stringify","validateJwsAlgorithm","algorithm","includes","Error","validateJwsSecret","secret","trim","validateJwsHeaderKey","key","test","validateJwsHeaderValue","value","i","code","charCodeAt","validateJwsHeaders","headers","Array","isArray","result","Object","entries","resolveJwsAlgorithm","headerAlg","alg","String","toNativeGenerateJWSOptions","options","detached","toNativeJwsFetchOptions","jws","assertCompactJwsShape","segments","split"],"sourceRoot":"../../src","sources":["jws.ts"],"mappings":";;AAeA,MAAMA,oBAA6C,GAAG,CACpD,OAAO,EACP,OAAO,EACP,OAAO,CACR;AAED,MAAMC,eAAe,GAAG,0BAA0B;AAkBlD,OAAO,SAASC,iBAAiBA,CAACC,OAA+B,EAAW;EAC1E,OACEA,OAAO,KAAKC,SAAS,IACrBD,OAAO,KAAK,IAAI,IACf,OAAOA,OAAO,KAAK,QAAQ,IAAIA,OAAO,CAACE,MAAM,KAAK,CAAE;AAEzD;;AAEA;AACA;AACA;AACA;AACA,OAAO,SAASC,mBAAmBA,CAACH,OAA+B,EAAU;EAC3E,IAAID,iBAAiB,CAACC,OAAO,CAAC,EAAE;IAC9B,OAAO,EAAE;EACX;EAEA,IAAI,OAAOA,OAAO,KAAK,QAAQ,EAAE;IAC/B,OAAOA,OAAO;EAChB;EAEA,IAAI,OAAOA,OAAO,KAAK,QAAQ,IAAI,OAAOA,OAAO,KAAK,SAAS,EAAE;IAC/D,OAAOI,IAAI,CAACC,SAAS,CAACL,OAAO,CAAC;EAChC;EAEA,OAAOI,IAAI,CAACC,SAAS,CAACL,OAAO,CAAC;AAChC;AAEA,OAAO,SAASM,oBAAoBA,CAClCC,SAA6B,EACf;EACd,IAAI,CAACA,SAAS,EAAE;IACd,OAAO,OAAO;EAChB;EACA,IAAI,CAACV,oBAAoB,CAACW,QAAQ,CAACD,SAAyB,CAAC,EAAE;IAC7D,MAAM,IAAIE,KAAK,CAAC,8BAA8BF,SAAS,EAAE,CAAC;EAC5D;EACA,OAAOA,SAAS;AAClB;AAEA,OAAO,SAASG,iBAAiBA,CAACC,MAAe,EAAU;EACzD,IAAI,OAAOA,MAAM,KAAK,QAAQ,IAAIA,MAAM,CAACC,IAAI,CAAC,CAAC,CAACV,MAAM,KAAK,CAAC,EAAE;IAC5D,MAAM,IAAIO,KAAK,CAAC,uDAAuD,CAAC;EAC1E;EACA,OAAOE,MAAM;AACf;AAEA,OAAO,SAASE,oBAAoBA,CAACC,GAAW,EAAQ;EACtD,IAAI,CAAChB,eAAe,CAACiB,IAAI,CAACD,GAAG,CAAC,EAAE;IAC9B,MAAM,IAAIL,KAAK,CAAC,2BAA2BK,GAAG,EAAE,CAAC;EACnD;AACF;AAEA,OAAO,SAASE,sBAAsBA,CACpCF,GAAW,EACXG,KAAc,EACE;EAChB,IACEA,KAAK,KAAK,IAAI,IACd,OAAOA,KAAK,KAAK,QAAQ,IACzB,OAAOA,KAAK,KAAK,QAAQ,IACzB,OAAOA,KAAK,KAAK,SAAS,EAC1B;IACA,IAAI,OAAOA,KAAK,KAAK,QAAQ,IAAIA,KAAK,CAACf,MAAM,GAAG,CAAC,EAAE;MACjD,KAAK,IAAIgB,CAAC,GAAG,CAAC,EAAEA,CAAC,GAAGD,KAAK,CAACf,MAAM,EAAEgB,CAAC,EAAE,EAAE;QACrC,MAAMC,IAAI,GAAGF,KAAK,CAACG,UAAU,CAACF,CAAC,CAAC;QAChC,IAAIC,IAAI,GAAG,IAAI,IAAIA,IAAI,GAAG,IAAI,EAAE;UAC9B,MAAM,IAAIV,KAAK,CAAC,qCAAqCK,GAAG,EAAE,CAAC;QAC7D;MACF;IACF;IACA,OAAOG,KAAK;EACd;EAEA,MAAM,IAAIR,KAAK,CACb,2DAA2DK,GAAG,EAChE,CAAC;AACH;AAEA,OAAO,SAASO,kBAAkBA,CAACC,OAAgB,EAAc;EAC/D,IAAIA,OAAO,KAAKrB,SAAS,IAAIqB,OAAO,KAAK,IAAI,EAAE;IAC7C,OAAO,CAAC,CAAC;EACX;EACA,IAAI,OAAOA,OAAO,KAAK,QAAQ,IAAIC,KAAK,CAACC,OAAO,CAACF,OAAO,CAAC,EAAE;IACzD,MAAM,IAAIb,KAAK,CAAC,6CAA6C,CAAC;EAChE;EAEA,MAAMgB,MAAkB,GAAG,CAAC,CAAC;EAC7B,KAAK,MAAM,CAACX,GAAG,EAAEG,KAAK,CAAC,IAAIS,MAAM,CAACC,OAAO,CAACL,OAAkC,CAAC,EAAE;IAC7ET,oBAAoB,CAACC,GAAG,CAAC;IACzBW,MAAM,CAACX,GAAG,CAAC,GAAGE,sBAAsB,CAACF,GAAG,EAAEG,KAAK,CAAC;EAClD;EACA,OAAOQ,MAAM;AACf;;AAEA;AACA;AACA;AACA,OAAO,SAASG,mBAAmBA,CACjCrB,SAAmC,EACnCe,OAAmB,EACL;EACd,MAAMO,SAAS,GACbP,OAAO,CAACQ,GAAG,KAAK7B,SAAS,IAAIqB,OAAO,CAACQ,GAAG,KAAK,IAAI,GAC7CC,MAAM,CAACT,OAAO,CAACQ,GAAG,CAAC,GACnB7B,SAAS;EAEf,IAAIM,SAAS,IAAIsB,SAAS,IAAItB,SAAS,KAAKsB,SAAS,EAAE;IACrD,MAAM,IAAIpB,KAAK,CACb,sEACF,CAAC;EACH;EAEA,IAAIF,SAAS,EAAE;IACb,OAAOD,oBAAoB,CAACC,SAAS,CAAC;EACxC;EAEA,IAAIsB,SAAS,EAAE;IACb,OAAOvB,oBAAoB,CAACuB,SAAS,CAAC;EACxC;EAEA,OAAO,OAAO;AAChB;AAUA,OAAO,SAASG,0BAA0BA,CACxCC,OAA2B,EAC3BC,QAAQ,GAAG,KAAK,EACU;EAC1B,MAAMvB,MAAM,GAAGD,iBAAiB,CAACuB,OAAO,CAACtB,MAAM,CAAC;EAChD,MAAMW,OAAO,GAAGD,kBAAkB,CAACY,OAAO,CAACX,OAAO,CAAC;EACnD,MAAMf,SAAS,GAAGqB,mBAAmB,CAACK,OAAO,CAAC1B,SAAS,EAAEe,OAAO,CAAC;EACjE,MAAMtB,OAAO,GAAGG,mBAAmB,CAAC8B,OAAO,CAACjC,OAAO,CAAC;EAEpD,OAAO;IACLA,OAAO;IACPO,SAAS;IACTI,MAAM;IACNW,OAAO,EAAE;MAAE,GAAGA,OAAO;MAAEQ,GAAG,EAAEvB;IAAU,CAAC;IACvC2B;EACF,CAAC;AACH;AAEA,OAAO,SAASC,uBAAuBA,CACrCC,GAAoB,EACM;EAC1B,MAAMzB,MAAM,GAAGD,iBAAiB,CAAC0B,GAAG,CAACzB,MAAM,CAAC;EAC5C,MAAMW,OAAO,GAAGD,kBAAkB,CAACe,GAAG,CAACd,OAAO,CAAC;EAC/C,MAAMf,SAAS,GAAGqB,mBAAmB,CAACQ,GAAG,CAAC7B,SAAS,EAAEe,OAAO,CAAC;EAE7D,OAAO;IACLtB,OAAO,EAAEG,mBAAmB,CAACiC,GAAG,CAACpC,OAAO,CAAC;IACzCO,SAAS;IACTI,MAAM;IACNW,OAAO,EAAE;MAAE,GAAGA,OAAO;MAAEQ,GAAG,EAAEvB;IAAU,CAAC;IACvC2B,QAAQ,EAAEE,GAAG,CAACF,QAAQ,IAAI;EAC5B,CAAC;AACH;AAEA,OAAO,SAASG,qBAAqBA,CAACD,GAAW,EAAQ;EACvD,MAAME,QAAQ,GAAGF,GAAG,CAACG,KAAK,CAAC,GAAG,CAAC;EAC/B,IAAID,QAAQ,CAACpC,MAAM,KAAK,CAAC,EAAE;IACzB,MAAM,IAAIO,KAAK,CACb,iDAAiD6B,QAAQ,CAACpC,MAAM,EAClE,CAAC;EACH;AACF","ignoreList":[]}

package/lib/module/legacy/cryptoOptions.js

@@ -0,0 +1,25 @@
+"use strict";
+
+/** Shared crypto option types used by legacy exports and the Crypto namespace. */
+
+function requireCryptoOption(value, key) {
+  if (value === undefined || value === null || value === '') {
+    throw new Error(`Missing required crypto option: ${key}`);
+  }
+  return value;
+}
+export function toNativeCryptoOptions(options) {
+  if (!options) {
+    throw new Error('Crypto options are required');
+  }
+  return {
+    keyAgreementAlgorithm: requireCryptoOption(options.keyAgreementAlgorithm, 'keyAgreementAlgorithm'),
+    keyFactoryAlgorithm: requireCryptoOption(options.keyType ?? options.keyFactoryAlgorithm, 'keyFactoryAlgorithm'),
+    encryptionKeyAlgorithm: requireCryptoOption(options.encryptionKeyAlgorithm, 'encryptionKeyAlgorithm'),
+    hmacKeyAlgorithm: requireCryptoOption(options.hmacAlgorithm ?? options.hmacKeyAlgorithm, 'hmacKeyAlgorithm'),
+    cipherTransformation: requireCryptoOption(options.cipher ?? options.cipherTransformation, 'cipherTransformation'),
+    gcmTagLength: requireCryptoOption(options.tagLength ?? options.gcmTagLength, 'gcmTagLength'),
+    gcmIvLength: requireCryptoOption(options.ivLength ?? options.gcmIvLength, 'gcmIvLength')
+  };
+}
+//# sourceMappingURL=cryptoOptions.js.map

package/lib/module/legacy/cryptoOptions.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["requireCryptoOption","value","key","undefined","Error","toNativeCryptoOptions","options","keyAgreementAlgorithm","keyFactoryAlgorithm","keyType","encryptionKeyAlgorithm","hmacKeyAlgorithm","hmacAlgorithm","cipherTransformation","cipher","gcmTagLength","tagLength","gcmIvLength","ivLength"],"sourceRoot":"../../../src","sources":["legacy/cryptoOptions.ts"],"mappings":";;AAAA;;AAsCA,SAASA,mBAAmBA,CAC1BC,KAA2B,EAC3BC,GAAW,EACR;EACH,IAAID,KAAK,KAAKE,SAAS,IAAIF,KAAK,KAAK,IAAI,IAAIA,KAAK,KAAK,EAAE,EAAE;IACzD,MAAM,IAAIG,KAAK,CAAC,mCAAmCF,GAAG,EAAE,CAAC;EAC3D;EACA,OAAOD,KAAK;AACd;AAEA,OAAO,SAASI,qBAAqBA,CAACC,OAA8B,EAAE;EACpE,IAAI,CAACA,OAAO,EAAE;IACZ,MAAM,IAAIF,KAAK,CAAC,6BAA6B,CAAC;EAChD;EAEA,OAAO;IACLG,qBAAqB,EAAEP,mBAAmB,CACxCM,OAAO,CAACC,qBAAqB,EAC7B,uBACF,CAAC;IACDC,mBAAmB,EAAER,mBAAmB,CACtCM,OAAO,CAACG,OAAO,IAAIH,OAAO,CAACE,mBAAmB,EAC9C,qBACF,CAAC;IACDE,sBAAsB,EAAEV,mBAAmB,CACzCM,OAAO,CAACI,sBAAsB,EAC9B,wBACF,CAAC;IACDC,gBAAgB,EAAEX,mBAAmB,CACnCM,OAAO,CAACM,aAAa,IAAIN,OAAO,CAACK,gBAAgB,EACjD,kBACF,CAAC;IACDE,oBAAoB,EAAEb,mBAAmB,CACvCM,OAAO,CAACQ,MAAM,IAAIR,OAAO,CAACO,oBAAoB,EAC9C,sBACF,CAAC;IACDE,YAAY,EAAEf,mBAAmB,CAC/BM,OAAO,CAACU,SAAS,IAAIV,OAAO,CAACS,YAAY,EACzC,cACF,CAAC;IACDE,WAAW,EAAEjB,mBAAmB,CAC9BM,OAAO,CAACY,QAAQ,IAAIZ,OAAO,CAACW,WAAW,EACvC,aACF;EACF,CAAC;AACH","ignoreList":[]}