shogun-core 5.2.2 → 6.0.0

package/dist/config/simplified-config.js

@@ -2,31 +2,94 @@
 /**
  * Simplified configuration options to reduce complexity
  * Provides sensible defaults and easy-to-use presets
+ *
+ * NOTE: This file is deprecated. ShogunCore now requires an existing Gun instance.
+ * Use the examples in the examples/ directory for proper usage.
  */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.QuickConfig = exports.ConfigHelpers = exports.ShogunConfigBuilder = exports.ShogunPresets = void 0;
+exports.QuickConfig = exports.ConfigHelpers = exports.ShogunConfigBuilder = exports.ShogunPresets = exports.GunInstanceHelpers = void 0;
+const gun_1 = __importDefault(require("gun/gun"));
+require("gun/lib/then");
+require("gun/lib/radix");
+require("gun/lib/radisk");
+require("gun/lib/store");
+require("gun/lib/rindexed");
+require("gun/lib/webrtc");
+/**
+ * Helper functions to create Gun instances with common configurations
+ * These functions create Gun instances that can be passed to ShogunCore
+ */
+exports.GunInstanceHelpers = {
+    /**
+     * Create a minimal Gun instance for simple apps
+     */
+    minimal: () => (0, gun_1.default)({
+        peers: ["https://shogunnode.scobrudot.dev/gun"],
+        localStorage: true,
+    }),
+    /**
+     * Create a development Gun instance with local storage
+     */
+    development: () => (0, gun_1.default)({
+        peers: ["https://shogunnode.scobrudot.dev/gun"],
+        localStorage: true,
+        radisk: false,
+    }),
+    /**
+     * Create a production Gun instance with multiple peers
+     */
+    production: (customPeers) => (0, gun_1.default)({
+        peers: customPeers || [
+            "https://shogunnode.scobrudot.dev/gun",
+            "https://peer.wallie.io/gun",
+        ],
+        localStorage: true,
+        radisk: true,
+    }),
+    /**
+     * Create an offline-first Gun instance
+     */
+    offline: () => (0, gun_1.default)({
+        peers: [],
+        localStorage: true,
+        radisk: true,
+    }),
+    /**
+     * Create a Gun instance for Web3-enabled apps
+     */
+    web3: () => (0, gun_1.default)({
+        peers: ["https://shogunnode.scobrudot.dev/gun"],
+        localStorage: true,
+    }),
+    /**
+     * Create a Gun instance for WebAuthn-enabled apps
+     */
+    webauthn: () => (0, gun_1.default)({
+        peers: ["https://shogunnode.scobrudot.dev/gun"],
+        localStorage: true,
+    }),
+};
 /**
  * Preset configurations for common use cases
+ * @deprecated Use GunInstanceHelpers to create Gun instances and pass them to ShogunCore
  */
 exports.ShogunPresets = {
     /**
      * Minimal configuration for simple apps
+     * @deprecated Use GunInstanceHelpers.minimal() instead
      */
     minimal: () => ({
-        gunOptions: {
-            peers: ["https://relay.shogun-eco.xyz/gun"],
-            localStorage: true,
-        },
+        gunInstance: exports.GunInstanceHelpers.minimal(),
     }),
     /**
      * Development configuration with local storage
+     * @deprecated Use GunInstanceHelpers.development() instead
      */
     development: () => ({
-        gunOptions: {
-            peers: ["https://relay.shogun-eco.xyz/gun"],
-            localStorage: true,
-            radisk: false,
-        },
+        gunInstance: exports.GunInstanceHelpers.development(),
         timeouts: {
             login: 5000,
             signup: 5000,
@@ -35,16 +98,10 @@ exports.ShogunPresets = {
     }),
     /**
      * Production configuration with multiple peers
+     * @deprecated Use GunInstanceHelpers.production() instead
      */
     production: (customPeers) => ({
-        gunOptions: {
-            peers: customPeers || [
-                "https://relay.shogun-eco.xyz/gun",
-                "https://peer.wallie.io/gun",
-            ],
-            localStorage: true,
-            radisk: true,
-        },
+        gunInstance: exports.GunInstanceHelpers.production(customPeers),
         timeouts: {
             login: 10000,
             signup: 10000,
@@ -53,62 +110,59 @@ exports.ShogunPresets = {
     }),
     /**
      * Offline-first configuration
+     * @deprecated Use GunInstanceHelpers.offline() instead
      */
     offline: () => ({
-        gunOptions: {
-            peers: [],
-            localStorage: true,
-            radisk: true,
-        },
+        gunInstance: exports.GunInstanceHelpers.offline(),
     }),
     /**
      * Web3-enabled configuration
+     * @deprecated Use GunInstanceHelpers.web3() instead
      */
     web3: () => ({
-        gunOptions: {
-            peers: ["https://relay.shogun-eco.xyz/gun"],
-            localStorage: true,
-        },
+        gunInstance: exports.GunInstanceHelpers.web3(),
         web3: {
             enabled: true,
         },
     }),
     /**
      * WebAuthn-enabled configuration
+     * @deprecated Use GunInstanceHelpers.webauthn() instead
      */
     webauthn: () => ({
-        gunOptions: {
-            peers: ["https://relay.shogun-eco.xyz/gun"],
-            localStorage: true,
-        },
+        gunInstance: exports.GunInstanceHelpers.webauthn(),
         webauthn: {
             enabled: true,
             rpName: "My Shogun App",
-            rpId: window.location.hostname,
+            rpId: typeof window !== "undefined" ? window.location.hostname : "localhost",
         },
     }),
 };
 /**
  * Configuration builder for custom setups
+ * @deprecated Use GunInstanceHelpers to create Gun instances and pass them to ShogunCore
  */
 class ShogunConfigBuilder {
     constructor() {
         this.config = {};
+        this.gunOptions = {};
     }
     /**
-     * Set Gun options
+     * Set Gun options (deprecated - use GunInstanceHelpers instead)
+     * @deprecated Use GunInstanceHelpers to create Gun instances
      */
-    gunOptions(options) {
-        this.config.gunOptions = { ...this.config.gunOptions, ...options };
+    setGunOptions(options) {
+        this.gunOptions = { ...this.gunOptions, ...options };
         return this;
     }
     /**
-     * Add peers
+     * Add peers (deprecated - use GunInstanceHelpers instead)
+     * @deprecated Use GunInstanceHelpers to create Gun instances
      */
     peers(peerList) {
-        this.config.gunOptions = {
-            ...this.config.gunOptions,
-            peers: [...(this.config.gunOptions?.peers || []), ...peerList],
+        this.gunOptions = {
+            ...this.gunOptions,
+            peers: [...(this.gunOptions?.peers || []), ...peerList],
         };
         return this;
     }
@@ -146,18 +200,24 @@ class ShogunConfigBuilder {
     }
     /**
      * Build the final configuration
+     * @deprecated Use GunInstanceHelpers to create Gun instances and pass them to ShogunCore
      */
     build() {
-        return this.config;
+        return {
+            ...this.config,
+            gunInstance: (0, gun_1.default)(this.gunOptions),
+        };
     }
 }
 exports.ShogunConfigBuilder = ShogunConfigBuilder;
 /**
  * Helper functions for common configuration patterns
+ * @deprecated Use GunInstanceHelpers to create Gun instances and pass them to ShogunCore
  */
 exports.ConfigHelpers = {
     /**
      * Create a configuration for a specific environment
+     * @deprecated Use GunInstanceHelpers instead
      */
     forEnvironment(env) {
         switch (env) {
@@ -173,12 +233,14 @@ exports.ConfigHelpers = {
     },
     /**
      * Create a configuration with custom peers
+     * @deprecated Use GunInstanceHelpers.production(peers) instead
      */
     withPeers(peers) {
         return exports.ShogunPresets.production(peers);
     },
     /**
      * Create a configuration for a specific use case
+     * @deprecated Use GunInstanceHelpers instead
      */
     forUseCase(useCase) {
         const baseConfig = exports.ShogunPresets.production();
@@ -211,26 +273,32 @@ exports.ConfigHelpers = {
 };
 /**
  * Quick configuration functions
+ * @deprecated Use GunInstanceHelpers to create Gun instances and pass them to ShogunCore
  */
 exports.QuickConfig = {
     /**
      * Minimal setup for quick testing
+     * @deprecated Use GunInstanceHelpers.minimal() instead
      */
     test: () => exports.ShogunPresets.minimal(),
     /**
      * Standard setup for most apps
+     * @deprecated Use GunInstanceHelpers.production() instead
      */
     standard: () => exports.ShogunPresets.production(),
     /**
      * Setup with WebAuthn for secure apps
+     * @deprecated Use GunInstanceHelpers.webauthn() instead
      */
     secure: () => exports.ShogunPresets.webauthn(),
     /**
      * Setup with Web3 for crypto apps
+     * @deprecated Use GunInstanceHelpers.web3() instead
      */
     crypto: () => exports.ShogunPresets.web3(),
     /**
      * Offline setup for local development
+     * @deprecated Use GunInstanceHelpers.offline() instead
      */
     local: () => exports.ShogunPresets.offline(),
 };

package/dist/crypto/mls.js

@@ -141,7 +141,9 @@ class MLSManager {
             console.group("🔍 [MLS Debug] Commit Structure");
             console.log("commitResult keys:", Object.keys(commitResult));
             console.log("commit:", commitResult.commit);
-            console.log("commit.privateMessage:", commitResult.commit?.privateMessage);
+            if (commitResult.commit?.wireformat === "mls_private_message") {
+                console.log("commit.privateMessage:", commitResult.commit.privateMessage);
+            }
             console.groupEnd();
             // RFC 9420 Section 11.2: Commit Distribution
             // ⚠️ IMPORTANT: The returned commit MUST be sent to all existing group members
@@ -205,8 +207,8 @@ class MLSManager {
                     else {
                         console.log(`  Node ${i}:`, {
                             type: typeof node,
-                            isObject: typeof node === "object",
-                            hasNodeType: node && typeof node === "object" && "nodeType" in node,
+                            isObject: typeof node === "object" && node !== null,
+                            hasNodeType: typeof node === "object" && node !== null && "nodeType" in node,
                             nodeType: node?.nodeType,
                             keys: node && typeof node === "object"
                                 ? Object.keys(node).slice(0, 5)
@@ -283,10 +285,11 @@ class MLSManager {
             }
             // Decode the message
             const decoded = (0, ts_mls_1.decodeMlsMessage)(envelope.ciphertext, 0);
-            if (!decoded) {
+            if (!decoded || decoded.length === 0) {
+                // Changed from 0n to 0 to fix type error
                 throw new Error("Failed to decode message");
             }
-            const [decodedMessage] = decoded;
+            const decodedMessage = decoded[0];
             if (decodedMessage.wireformat !== "mls_private_message") {
                 throw new Error("Expected private message");
             }
@@ -392,7 +395,7 @@ class MLSManager {
         }
         catch (error) {
             console.error("❌ [MLS] Failed to process commit:", error);
-            console.error("❌ [MLS Debug] Error details:", error instanceof Error ? error.stack : "No stack trace");
+            console.error("❌ [MLS Debug] Error details:", error instanceof Error ? error.stack : String(error));
             console.error("❌ [MLS Debug] Error message:", error instanceof Error ? error.message : String(error));
             throw new Error(`Commit processing failed: ${error instanceof Error ? error.message : String(error)}`);
         }
@@ -412,7 +415,7 @@ class MLSManager {
             const removeProposals = memberIndices.map((index) => ({
                 proposalType: "remove",
                 remove: {
-                    removed: index, // ts-mls expects number, not BigInt
+                    removed: index, // Changed from BigInt(index) to number
                 },
             }));
             // Create commit with remove proposals
@@ -420,11 +423,21 @@ class MLSManager {
             // Update group state
             this.groups.set(groupId, commitResult.newState);
             // Encode the commit
-            const encodedCommit = (0, ts_mls_1.encodeMlsMessage)({
-                publicMessage: commitResult.publicMessage,
-                wireformat: "mls_public_message",
-                version: "mls10",
-            });
+            let encodedCommit;
+            if (commitResult.commit &&
+                commitResult.commit.wireformat === "mls_public_message") {
+                encodedCommit = (0, ts_mls_1.encodeMlsMessage)({
+                    publicMessage: commitResult.commit
+                        .publicMessage,
+                    wireformat: "mls_public_message",
+                    version: "mls10",
+                });
+            }
+            else {
+                // Fallback or error handling if not a public message
+                // For now, we'll assume it should be public for remove operation.
+                throw new Error("Commit result does not contain a public message for encoding.");
+            }
             console.log("✅ [MLS] Members removed");
             return encodedCommit;
         }
@@ -517,9 +530,15 @@ class MLSManager {
                 const node = state.ratchetTree[i];
                 if (node &&
                     node.nodeType === "leaf" &&
-                    node.leaf?.credential) {
-                    const identity = new TextDecoder().decode(node.leaf.credential.identity);
-                    members.push(identity);
+                    node.leaf.credential) {
+                    const credential = node.leaf.credential;
+                    if (credential.credentialType === "basic" && credential.identity) {
+                        const identity = new TextDecoder().decode(credential.identity);
+                        members.push(identity);
+                    }
+                    else {
+                        console.warn("Skipping credential without basic identity:", credential);
+                    }
                 }
             }
         }

package/dist/crypto/sframe.js

@@ -110,6 +110,13 @@ class SFrameManager {
             throw new Error(`SFrame key derivation failed: ${error instanceof Error ? error.message : String(error)}`);
         }
     }
+    /**
+     * Set a shared SFrame key (e.g., from another member)
+     */
+    async setSharedKey(sframeKey) {
+        this.keys.set(sframeKey.keyId, sframeKey);
+        console.log(`✅ [SFrame] Shared key ${sframeKey.keyId} set.`);
+    }
     /**
      * Set the active encryption key
      */
@@ -155,11 +162,9 @@ class SFrameManager {
                 tagLength: 128, // 128-bit authentication tag
             }, sframeKey.key, frameData);
             // RFC 9605: SFrame format = header + ciphertext (IV is derived, not transmitted)
-            // Note: We include IV for now for simplicity, but RFC specifies deriving it from counter
-            const encrypted = new Uint8Array(header.length + iv.length + ciphertext.byteLength);
+            const encrypted = new Uint8Array(header.length + ciphertext.byteLength);
             encrypted.set(header, 0);
-            encrypted.set(iv, header.length);
-            encrypted.set(new Uint8Array(ciphertext), header.length + iv.length);
+            encrypted.set(new Uint8Array(ciphertext), header.length);
             // Increment frame counter
             this.frameCounter++;
             return encrypted;
@@ -184,20 +189,17 @@ class SFrameManager {
             if (!sframeKey) {
                 throw new Error(`SFrame key ${keyId} not found`);
             }
-            // Extract IV (12 bytes after header)
-            const iv = encryptedFrame.slice(5, 17);
-            // RFC 9605: Verify IV derivation (optional check for debugging)
-            // Reconstruct expected IV from frame count and salt
+            // RFC 9605: IV is derived from frame count and salt (not transmitted)
             const counterBytes = new Uint8Array(12);
             const counterView = new DataView(counterBytes.buffer);
             counterView.setUint32(4, Math.floor(frameCount / 0x100000000), false);
             counterView.setUint32(8, frameCount & 0xffffffff, false);
-            const expectedIV = new Uint8Array(12);
+            const iv = new Uint8Array(12);
             for (let i = 0; i < 12; i++) {
-                expectedIV[i] = sframeKey.salt[i] ^ counterBytes[i];
+                iv[i] = sframeKey.salt[i] ^ counterBytes[i];
             }
             // Extract ciphertext (rest of the data)
-            const ciphertext = encryptedFrame.slice(17);
+            const ciphertext = encryptedFrame.slice(header.length);
             // Decrypt the frame with header authentication (RFC 9605 Section 4.3)
             const plaintext = await crypto.subtle.decrypt({
                 name: "AES-GCM",