stream-chat 8.5.0 → 8.6.0

package/dist/browser.es.js

@@ -3225,6 +3225,7 @@ var Channel = /*#__PURE__*/function () {
 
                 _this$_initializeStat = this._initializeState(state, messageSetToAddToIfDoesNotExist), messageSet = _this$_initializeStat.messageSet;
                 this.data = state.channel;
+                this.offlineMode = false;
                 this.getClient().dispatchEvent({
                   type: 'channels.queried',
                   queriedChannels: {
@@ -3234,7 +3235,7 @@ var Channel = /*#__PURE__*/function () {
                 });
                 return _context32.abrupt("return", state);
 
-              case 14:
+              case 15:
               case "end":
                 return _context32.stop();
             }
@@ -3938,6 +3939,7 @@ var Channel = /*#__PURE__*/function () {
             var read = _step3.value;
             this.state.read[read.user.id] = {
               last_read: new Date(read.last_read),
+              last_read_message_id: read.last_read_message_id,
               unread_messages: (_read$unread_messages = read.unread_messages) !== null && _read$unread_messages !== void 0 ? _read$unread_messages : 0,
               user: read.user
             };
@@ -5223,16 +5225,21 @@ function DevToken(userId) {
 }
 /**
  *
- * @param {string} body the signed message
+ * @param {string | Buffer} body the signed message
  * @param {string} secret the shared secret used to generate the signature (Stream API secret)
  * @param {string} signature the signature to validate
  * @return {boolean}
  */
 
 function CheckSignature(body, secret, signature) {
-  var key = Buffer.from(secret, 'ascii');
+  var key = Buffer.from(secret, 'utf8');
   var hash = crypto$1.createHmac('sha256', key).update(body).digest('hex');
-  return hash === signature;
+
+  try {
+    return crypto$1.timingSafeEqual(Buffer.from(hash), Buffer.from(signature));
+  } catch (_unused) {
+    return false;
+  }
 }
 
 /**
@@ -8119,18 +8126,6 @@ var StreamChat = /*#__PURE__*/function () {
         _iterator3.f();
       }
 
-      if (!offlineMode) {
-        // If the channels are coming from server, then clear out the
-        // previously help offline channels.
-        for (var _key5 in this.activeChannels) {
-          var _channel7 = this.activeChannels[_key5];
-
-          if (_channel7.offlineMode) {
-            delete this.activeChannels[_key5];
-          }
-        }
-      }
-
       return channels;
     }
     /**
@@ -10021,7 +10016,7 @@ var StreamChat = /*#__PURE__*/function () {
   }, {
     key: "getUserAgent",
     value: function getUserAgent() {
-      return this.userAgent || "stream-chat-javascript-client-".concat(this.node ? 'node' : 'browser', "-", "8.5.0");
+      return this.userAgent || "stream-chat-javascript-client-".concat(this.node ? 'node' : 'browser', "-", "8.6.0");
     }
   }, {
     key: "setUserAgent",
@@ -10098,9 +10093,9 @@ var StreamChat = /*#__PURE__*/function () {
       this.cleaningIntervalRef = setInterval(function () {
         // call clean on the channel, used for calling the stop.typing event etc.
         for (var _i3 = 0, _Object$values2 = Object.values(that.activeChannels); _i3 < _Object$values2.length; _i3++) {
-          var _channel8 = _Object$values2[_i3];
+          var _channel7 = _Object$values2[_i3];
 
-          _channel8.clean();
+          _channel7.clean();
         }
       }, 500);
     }
@@ -10112,7 +10107,14 @@ var StreamChat = /*#__PURE__*/function () {
 
   }, {
     key: "verifyWebhook",
-    value: function verifyWebhook(requestBody, xSignature) {
+    value:
+    /**
+     * checks signature of a request
+     * @param {string | Buffer} rawBody
+     * @param {string} signature from HTTP header
+     * @returns {boolean}
+     */
+    function verifyWebhook(requestBody, xSignature) {
       return !!this.secret && CheckSignature(requestBody, this.secret, xSignature);
     }
     /** getPermission - gets the definition for a permission