varminer-app-header 2.6.2 → 2.6.4

package/dist/injectTenantFallbackCss.d.ts

@@ -0,0 +1,2 @@
+export declare function injectTenantFallbackCss(cssText: string): void;
+//# sourceMappingURL=injectTenantFallbackCss.d.ts.map

package/dist/injectTenantFallbackCss.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"injectTenantFallbackCss.d.ts","sourceRoot":"","sources":["../src/injectTenantFallbackCss.ts"],"names":[],"mappings":"AAiBA,wBAAgB,uBAAuB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CA6B7D"}

package/dist/types.js

@@ -0,0 +1 @@
+export {};

package/dist/utils/localStorage.d.ts

@@ -52,7 +52,8 @@ export interface HeaderAuthState {
  */
 export declare function setHeaderAuth(auth: HeaderAuthState | null): void;
 /**
- * User display data: from IAM only (linn-i-am-userDetails). No dependency on persist:userdb.
+ * User display data: prefers linn-i-am-userDetails (IAM), falls back to
+ * persist:userdb → profileInformation.userDetails, then authDetails.auth.user.
  */
 export declare const getUserDataFromStorage: () => {
     name: string;

package/dist/utils/localStorage.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"localStorage.d.ts","sourceRoot":"","sources":["../../src/utils/localStorage.ts"],"names":[],"mappings":"AACA,uGAAuG;AACvG,eAAO,MAAM,wBAAwB,0BAA0B,CAAC;AAEhE,8DAA8D;AAC9D,MAAM,WAAW,yBAAyB;IACxC,MAAM,EAAE,SAAS,GAAG,SAAS,CAAC;IAC9B,UAAU,EAAE;QACV,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,IAAI,CAAC,EAAE;QACL,YAAY,EAAE,eAAe,EAAE,CAAC;KACjC,CAAC;IACF,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,IAAI,CAAC;CACxC;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAC7D,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE;QACT,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED;;;GAGG;AACH,wBAAgB,oBAAoB,IAAI,eAAe,GAAG,IAAI,CAc7D;AAGD,uIAAuI;AACvI,eAAO,MAAM,kBAAkB,gCAAgC,CAAC;AAEhE,6IAA6I;AAC7I,MAAM,WAAW,eAAe;IAC9B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC1B,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;;GAGG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,eAAe,GAAG,IAAI,GAAG,IAAI,CAOhE;AAED;;GAEG;AACH,eAAO,MAAM,sBAAsB,QAAO;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAY7H,CAAC;AAEF,eAAO,MAAM,+BAA+B,QAAO,MAkClD,CAAC;AAEF,eAAO,MAAM,0BAA0B,QAAO,MAAM,GAAG,SAkCtD,CAAC;AAEF,eAAO,MAAM,wBAAwB,QAAO,MAAM,GAAG,IAOpD,CAAC;AAEF,eAAO,MAAM,sBAAsB,GAAI,QAAQ,MAAM,KAAG,IAMvD,CAAC;AA4CF;;;;GAIG;AACH,eAAO,MAAM,qBAAqB,WAkJjC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,oBAAoB,GAAI,UAAU,MAAM,GAAG,IAAI,KAAG,MAAM,GAAG,IAavE,CAAC;AAyFF;;;GAGG;AACH,wBAAgB,wBAAwB,IAAI,MAAM,GAAG,SAAS,CA+B7D;AAED,eAAO,MAAM,4BAA4B,GACvC,UAAU,MAAM,GAAG,IAAI,EACvB,sBAAsB,MAAM,GAAG,IAAI,KAClC,OAAO,CAAC,MAAM,GAAG,IAAI,CA8FvB,CAAC"}
+{"version":3,"file":"localStorage.d.ts","sourceRoot":"","sources":["../../src/utils/localStorage.ts"],"names":[],"mappings":"AACA,uGAAuG;AACvG,eAAO,MAAM,wBAAwB,0BAA0B,CAAC;AAEhE,8DAA8D;AAC9D,MAAM,WAAW,yBAAyB;IACxC,MAAM,EAAE,SAAS,GAAG,SAAS,CAAC;IAC9B,UAAU,EAAE;QACV,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,IAAI,CAAC,EAAE;QACL,YAAY,EAAE,eAAe,EAAE,CAAC;KACjC,CAAC;IACF,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,IAAI,CAAC;CACxC;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAC7D,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE;QACT,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED;;;GAGG;AACH,wBAAgB,oBAAoB,IAAI,eAAe,GAAG,IAAI,CAc7D;AAGD,uIAAuI;AACvI,eAAO,MAAM,kBAAkB,gCAAgC,CAAC;AAEhE,6IAA6I;AAC7I,MAAM,WAAW,eAAe;IAC9B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC1B,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;;GAGG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,eAAe,GAAG,IAAI,GAAG,IAAI,CAOhE;AAED;;;GAGG;AACH,eAAO,MAAM,sBAAsB,QAAO;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAoE7H,CAAC;AAEF,eAAO,MAAM,+BAA+B,QAAO,MAkClD,CAAC;AAEF,eAAO,MAAM,0BAA0B,QAAO,MAAM,GAAG,SAkCtD,CAAC;AAEF,eAAO,MAAM,wBAAwB,QAAO,MAAM,GAAG,IAOpD,CAAC;AAEF,eAAO,MAAM,sBAAsB,GAAI,QAAQ,MAAM,KAAG,IAMvD,CAAC;AA4CF;;;;GAIG;AACH,eAAO,MAAM,qBAAqB,WAkJjC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,oBAAoB,GAAI,UAAU,MAAM,GAAG,IAAI,KAAG,MAAM,GAAG,IAavE,CAAC;AAyFF;;;GAGG;AACH,wBAAgB,wBAAwB,IAAI,MAAM,GAAG,SAAS,CA+B7D;AAED,eAAO,MAAM,4BAA4B,GACvC,UAAU,MAAM,GAAG,IAAI,EACvB,sBAAsB,MAAM,GAAG,IAAI,KAClC,OAAO,CAAC,MAAM,GAAG,IAAI,CA8FvB,CAAC"}

package/dist/utils/localStorage.js

@@ -0,0 +1,571 @@
+// --- IAM app user details (shared from IAM after verify-OTP, same origin) ---
+/** localStorage key used by IAM app for user details (GET /v1/userManagement/userDetails response). */
+export const USER_DETAILS_STORAGE_KEY = "linn-i-am-userDetails";
+/**
+ * Read user details from IAM app localStorage (set after verify-OTP on same origin).
+ * Does not write or overwrite this key; IAM app is the source of truth.
+ */
+export function getStoredUserDetails() {
+    try {
+        const raw = localStorage.getItem(USER_DETAILS_STORAGE_KEY);
+        if (!raw)
+            return null;
+        const parsed = JSON.parse(raw);
+        if (parsed.status !== "SUCCESS" || !parsed.data?.usersDetails?.length) {
+            return null;
+        }
+        return parsed.data.usersDetails[0];
+    }
+    catch {
+        return null;
+    }
+}
+// --- Header-owned persist store (unique key, no conflict with other apps) ---
+/** Unique localStorage key for this header package. Used only for access token; user details come from IAM (linn-i-am-userDetails). */
+export const PERSIST_HEADER_KEY = "persist:varminer-app-header";
+/**
+ * Store auth (e.g. accessToken) in the header's own persist key. Call this after login so the header can use the token for profile picture etc.
+ * User details are not stored here; they come from IAM (linn-i-am-userDetails).
+ */
+export function setHeaderAuth(auth) {
+    try {
+        const payload = auth ? { auth } : {};
+        localStorage.setItem(PERSIST_HEADER_KEY, JSON.stringify(payload));
+    }
+    catch (err) {
+        console.error("Error setting header auth:", err);
+    }
+}
+/**
+ * User display data: from IAM only (linn-i-am-userDetails). No dependency on persist:userdb.
+ */
+export const getUserDataFromStorage = () => {
+    const iamUser = getStoredUserDetails();
+    if (!iamUser)
+        return null;
+    const name = [iamUser.firstName, iamUser.lastName].filter(Boolean).join(" ").trim();
+    const role = iamUser.roles?.length ? iamUser.roles[0] : iamUser.workInfo?.jobTitle ?? "";
+    return {
+        name: name || "",
+        email: iamUser.email || "",
+        role: role || "",
+        avatar: undefined,
+        initials: name ? name.split(/\s+/).map((s) => s[0]).join("").slice(0, 2).toUpperCase() : undefined,
+    };
+};
+export const getNotificationCountFromStorage = () => {
+    const userDbString = localStorage.getItem("persist:userdb");
+    if (userDbString) {
+        try {
+            const parsedOuter = JSON.parse(userDbString);
+            const parseNested = (value) => {
+                if (typeof value === 'string') {
+                    try {
+                        return JSON.parse(value);
+                    }
+                    catch {
+                        return value;
+                    }
+                }
+                return value;
+            };
+            if (parsedOuter.notifications) {
+                const parsedNotifications = parseNested(parsedOuter.notifications);
+                const count = parsedNotifications.count || parsedNotifications.unreadCount || parsedNotifications.total;
+                if (typeof count === 'number')
+                    return count;
+            }
+            if (parsedOuter.app) {
+                const parsedApp = parseNested(parsedOuter.app);
+                if (parsedApp.notificationCount !== undefined) {
+                    return parsedApp.notificationCount;
+                }
+            }
+        }
+        catch (err) {
+            console.error("Error parsing notification count from localStorage:", err);
+        }
+    }
+    return 0;
+};
+export const getMessageCountFromStorage = () => {
+    const userDbString = localStorage.getItem("persist:userdb");
+    if (userDbString) {
+        try {
+            const parsedOuter = JSON.parse(userDbString);
+            const parseNested = (value) => {
+                if (typeof value === 'string') {
+                    try {
+                        return JSON.parse(value);
+                    }
+                    catch {
+                        return value;
+                    }
+                }
+                return value;
+            };
+            if (parsedOuter.messages) {
+                const parsedMessages = parseNested(parsedOuter.messages);
+                const count = parsedMessages.count || parsedMessages.unreadCount || parsedMessages.total;
+                if (typeof count === 'number')
+                    return count;
+            }
+            if (parsedOuter.app) {
+                const parsedApp = parseNested(parsedOuter.app);
+                if (parsedApp.messageCount !== undefined) {
+                    return parsedApp.messageCount;
+                }
+            }
+        }
+        catch (err) {
+            console.error("Error parsing message count from localStorage:", err);
+        }
+    }
+    return undefined;
+};
+export const getI18nLocaleFromStorage = () => {
+    try {
+        return localStorage.getItem("lnc-i18n");
+    }
+    catch (err) {
+        console.error("Error getting i18n locale from localStorage:", err);
+        return null;
+    }
+};
+export const setI18nLocaleToStorage = (locale) => {
+    try {
+        localStorage.setItem("lnc-i18n", locale);
+    }
+    catch (err) {
+        console.error("Error setting i18n locale to localStorage:", err);
+    }
+};
+/**
+ * Decodes a JWT token and returns its payload
+ * @param token - JWT token string
+ * @returns Decoded payload object or null if decoding fails
+ */
+const decodeJWT = (token) => {
+    try {
+        if (!token)
+            return null;
+        // JWT format: header.payload.signature
+        const parts = token.split('.');
+        if (parts.length !== 3)
+            return null;
+        // Decode the payload (second part)
+        const payload = parts[1];
+        // Base64 decode and parse JSON
+        // Replace URL-safe base64 characters and add padding if needed
+        const base64 = payload.replace(/-/g, '+').replace(/_/g, '/');
+        const padded = base64 + '='.repeat((4 - (base64.length % 4)) % 4);
+        const decoded = atob(padded);
+        return JSON.parse(decoded);
+    }
+    catch (err) {
+        console.error("Error decoding JWT token:", err);
+        return null;
+    }
+};
+const emptyStorageResult = () => ({
+    auth: null,
+    user: null,
+    authDetails: null,
+    userDetails: null,
+    profile: null,
+    notifications: null,
+    messages: null,
+    app: null,
+    decodedToken: null,
+    rawData: null,
+});
+/**
+ * Get auth (and decoded token) for header use. Reads from header's own persist key first; falls back to persist:userdb only for access token.
+ * User details are not read from userdb—use getStoredUserDetails / getUserDataFromStorage (IAM) for that.
+ * @returns Object with auth, decodedToken, and other keys (user/userDetails/profile null when using header key)
+ */
+export const getAllDataFromStorage = () => {
+    // Prefer header-owned persist key (unique, no conflict with other apps)
+    const headerStr = localStorage.getItem(PERSIST_HEADER_KEY);
+    if (headerStr) {
+        try {
+            const parsed = JSON.parse(headerStr);
+            const auth = parsed?.auth;
+            const accessToken = auth?.accessToken ?? auth?.access_token ?? auth?.token;
+            if (accessToken && typeof accessToken === "string") {
+                const decodedToken = decodeJWT(accessToken);
+                return {
+                    ...emptyStorageResult(),
+                    auth: auth,
+                    decodedToken: decodedToken ? Object.fromEntries(Object.entries(decodedToken).map(([k, v]) => [k, v ?? null])) : null,
+                    rawData: parsed,
+                };
+            }
+        }
+        catch (err) {
+            console.error("Error parsing header persist:", err);
+        }
+    }
+    // Fallback: try IAM persist key (persist:linn-i-am) then persist:userdb
+    const tryParsePersistForAuth = (raw) => {
+        if (!raw)
+            return null;
+        try {
+            const outer = JSON.parse(raw);
+            const parseNested = (v) => typeof v === "string" ? (() => { try {
+                return JSON.parse(v);
+            }
+            catch {
+                return v;
+            } })() : v;
+            for (const key of Object.keys(outer)) {
+                const parsed = parseNested(outer[key]);
+                if (parsed?.accessToken || parsed?.access_token || parsed?.token || parsed?.refreshToken)
+                    return parsed;
+                if (parsed?.auth && typeof parsed.auth === "object") {
+                    const a = parsed.auth;
+                    if (a.accessToken || a.access_token || a.token)
+                        return a;
+                }
+            }
+        }
+        catch {
+            /* ignore */
+        }
+        return null;
+    };
+    const iamPersist = localStorage.getItem("persist:linn-i-am");
+    const iamAuth = tryParsePersistForAuth(iamPersist);
+    if (iamAuth) {
+        const token = (iamAuth.accessToken ?? iamAuth.access_token ?? iamAuth.token);
+        if (token) {
+            const decodedToken = decodeJWT(token);
+            return {
+                ...emptyStorageResult(),
+                auth: iamAuth,
+                decodedToken: decodedToken ? Object.fromEntries(Object.entries(decodedToken).map(([k, v]) => [k, v ?? null])) : null,
+                rawData: iamAuth,
+            };
+        }
+    }
+    // Fallback: read access token from persist:userdb (e.g. legacy or shared auth)
+    const userDbString = localStorage.getItem("persist:userdb");
+    if (!userDbString) {
+        return emptyStorageResult();
+    }
+    try {
+        const parsedOuter = JSON.parse(userDbString);
+        // Helper function to parse nested JSON strings
+        const parseNested = (value) => {
+            if (typeof value === 'string') {
+                try {
+                    return JSON.parse(value);
+                }
+                catch {
+                    return value;
+                }
+            }
+            return value;
+        };
+        // Parse all top-level keys dynamically (no hardcoding)
+        const parsedData = {};
+        let authData = null;
+        // Helper to recursively find auth data (contains accessToken, access_token, token, or refreshToken)
+        const findAuthData = (obj) => {
+            if (!obj || typeof obj !== 'object')
+                return null;
+            if (obj.accessToken || obj.access_token || obj.token || obj.refreshToken)
+                return obj;
+            for (const key in obj) {
+                if (Object.prototype.hasOwnProperty.call(obj, key)) {
+                    const nested = findAuthData(obj[key]);
+                    if (nested)
+                        return nested;
+                }
+            }
+            return null;
+        };
+        // Parse all keys in parsedOuter dynamically
+        Object.keys(parsedOuter).forEach((key) => {
+            parsedData[key] = parseNested(parsedOuter[key]);
+            // Dynamically find auth data in any structure
+            const foundAuth = findAuthData(parsedData[key]);
+            if (foundAuth && !authData) {
+                authData = foundAuth;
+                parsedData.auth = authData;
+            }
+        });
+        // Get accessToken (support accessToken, access_token, token) and decode it
+        let decodedToken = null;
+        const accessToken = authData?.accessToken ?? authData?.access_token ?? authData?.token ??
+            parsedData.auth?.accessToken ?? parsedData.auth?.access_token ?? parsedData.auth?.token ??
+            parsedData.authDetails?.accessToken ?? parsedData.authDetails?.access_token ?? parsedData.authDetails?.token;
+        if (accessToken) {
+            decodedToken = decodeJWT(accessToken);
+        }
+        // Extract all auth-related fields from authData dynamically (no hardcoding)
+        const authFields = authData ? Object.keys(authData).reduce((acc, key) => {
+            acc[key] = authData[key] !== undefined ? authData[key] : null;
+            return acc;
+        }, {}) : null;
+        // Build return object dynamically with all parsed data
+        const result = {
+            ...Object.keys(parsedData).reduce((acc, key) => {
+                acc[key] = parsedData[key] !== undefined ? parsedData[key] : null;
+                return acc;
+            }, {}),
+            decodedToken: decodedToken ? Object.keys(decodedToken).reduce((acc, key) => {
+                acc[key] = decodedToken[key] !== undefined ? decodedToken[key] : null;
+                return acc;
+            }, {}) : null,
+            rawData: parsedOuter, // Include raw parsed data for any other fields
+        };
+        // Add auth field if we have authData
+        if (authFields) {
+            result.auth = authFields;
+        }
+        return result;
+    }
+    catch (err) {
+        console.error("Error parsing all data from localStorage:", err);
+        return { ...emptyStorageResult(), error: err instanceof Error ? err.message : "Unknown error" };
+    }
+};
+/**
+ * Get profile picture URL from object store API using user_id.
+ * @param baseUrl - Base URL for the object store API (e.g. from objectStoreUrl prop). When missing or empty, returns null.
+ * @returns Profile picture URL or null if user_id or baseUrl is not available
+ */
+export const getProfilePictureUrl = (baseUrl) => {
+    try {
+        const url = typeof baseUrl === "string" && baseUrl.trim() ? baseUrl.trim() : null;
+        if (!url)
+            return null;
+        const allData = getAllDataFromStorage();
+        const userId = allData.decodedToken?.user_id ?? allData.auth?.user_id ?? getStoredUserDetails()?.userId ?? null;
+        if (userId == null)
+            return null;
+        return `${url.replace(/\/$/, "")}/v1/objectStore/profilePicture/path/${userId}`;
+    }
+    catch (err) {
+        console.error("Error getting profile picture URL:", err);
+        return null;
+    }
+};
+/** Extract S3 object key from s3Uri (e.g. s3://bucket/key → key). */
+function getKeyFromS3Uri(s3Uri) {
+    const match = /^s3:\/\/[^/]+\/(.+)$/.exec(s3Uri.trim());
+    return match ? match[1] : null;
+}
+/**
+ * Fetch profile picture: (1) GET path API for JSON with filePath/s3Uri, (2) GET download API with key; download returns JSON with base64 fileContent.
+ * Path API: { statusResponse, filePath, s3Uri, errors }. Download API: { statusResponse, fileName, contentType, fileContent (base64), errors }.
+ * @param baseUrl - Base URL for the object store API (e.g. from objectStoreUrl prop). When missing or empty, returns null without fetching.
+ * @returns Promise that resolves to blob URL string or null if fetch fails or baseUrl not provided
+ */
+/** Resolve access token from auth object (supports accessToken, access_token, token). */
+function getAccessTokenFromAuth(auth) {
+    if (!auth || typeof auth !== "object")
+        return undefined;
+    const token = auth.accessToken ??
+        auth.access_token ??
+        auth.token;
+    return typeof token === "string" && token.length > 0 ? token : undefined;
+}
+/** True if string looks like a JWT (three base64 parts) or a bearer token, not JSON. */
+function looksLikeToken(s) {
+    return s.length > 0 && !s.trimStart().startsWith("{") && !s.trimStart().startsWith("[");
+}
+/** Recursively find first string value at keys accessToken, access_token, or token. */
+function findTokenInObject(obj) {
+    if (obj === null || obj === undefined)
+        return undefined;
+    if (typeof obj === "string")
+        return looksLikeToken(obj) ? obj : undefined;
+    if (typeof obj !== "object")
+        return undefined;
+    const rec = obj;
+    const direct = rec.accessToken ?? rec.access_token ?? rec.token;
+    if (typeof direct === "string" && looksLikeToken(direct))
+        return direct;
+    for (const key of Object.keys(rec)) {
+        const found = findTokenInObject(rec[key]);
+        if (found)
+            return found;
+    }
+    return undefined;
+}
+/** Parse redux-persist style value (may be double stringified). */
+function parsePersistValue(raw) {
+    if (!raw)
+        return null;
+    try {
+        const first = JSON.parse(raw);
+        if (typeof first === "string") {
+            try {
+                return JSON.parse(first);
+            }
+            catch {
+                return first;
+            }
+        }
+        return first;
+    }
+    catch {
+        return null;
+    }
+}
+/** Get a nested value that may be a string (need parse) or already an object. */
+function parseNestedValue(val) {
+    if (val == null)
+        return null;
+    if (typeof val === "string")
+        return parsePersistValue(val);
+    return val;
+}
+/**
+ * Extract access token from persist:userdb shape: authDetails (string) → parse → auth.accessToken.
+ * Structure: { authDetails: "{\"auth\":{\"accessToken\":\"...\"}}", profileInformation: "...", _persist: "..." }
+ */
+function getTokenFromUserDbPersist(parsed) {
+    const authDetails = parsed.authDetails;
+    const inner = parseNestedValue(authDetails);
+    const obj = typeof inner === "object" && inner !== null ? inner : null;
+    if (!obj)
+        return undefined;
+    const auth = obj.auth;
+    const authObj = typeof auth === "object" && auth !== null ? auth : null;
+    if (!authObj)
+        return undefined;
+    const token = authObj.accessToken ??
+        authObj.access_token ??
+        authObj.token;
+    return typeof token === "string" && looksLikeToken(token) ? token : undefined;
+}
+/**
+ * Get access token from all known storage keys (header, IAM, userdb, and plain keys).
+ * persist:userdb shape: authDetails (stringified) contains auth.accessToken.
+ */
+export function getAccessTokenForRequest() {
+    const keysToTry = [
+        PERSIST_HEADER_KEY,
+        "persist:linn-i-am",
+        "persist:userdb",
+        "token",
+        "accessToken",
+        "auth",
+    ];
+    for (const key of keysToTry) {
+        const raw = localStorage.getItem(key);
+        if (!raw)
+            continue;
+        const parsed = key.startsWith("persist:") ? parsePersistValue(raw) : (() => { try {
+            return JSON.parse(raw);
+        }
+        catch {
+            return raw;
+        } })();
+        const token = findTokenInObject(parsed);
+        if (token)
+            return token;
+        if (key.startsWith("persist:")) {
+            const outer = typeof parsed === "object" && parsed !== null ? parsed : null;
+            if (outer) {
+                if (key === "persist:userdb") {
+                    const fromUserDb = getTokenFromUserDbPersist(outer);
+                    if (fromUserDb)
+                        return fromUserDb;
+                }
+                for (const k of Object.keys(outer)) {
+                    const inner = parseNestedValue(outer[k]);
+                    const t = findTokenInObject(inner);
+                    if (t)
+                        return t;
+                }
+            }
+        }
+    }
+    return getAccessTokenFromAuth(getAllDataFromStorage().auth);
+}
+export const fetchProfilePictureAsBlobUrl = async (baseUrl, accessTokenOverride) => {
+    try {
+        const profilePicturePathUrl = getProfilePictureUrl(baseUrl);
+        if (!profilePicturePathUrl)
+            return null;
+        const cleanBase = typeof baseUrl === "string" && baseUrl.trim() ? baseUrl.trim().replace(/\/$/, "") : "";
+        if (!cleanBase)
+            return null;
+        const accessToken = (typeof accessTokenOverride === "string" && accessTokenOverride.length > 0
+            ? accessTokenOverride
+            : null) ?? getAccessTokenForRequest();
+        const headers = {
+            "X-Message-Id": `msg-${Date.now()}-${Math.random().toString(36).slice(2, 11)}`,
+            "X-Correlation-Id": `corr-${Date.now()}-${Math.random().toString(36).slice(2, 11)}`,
+        };
+        if (accessToken) {
+            headers["Authorization"] = `Bearer ${accessToken}`;
+        }
+        // Step 1: GET path API → JSON with filePath, s3Uri
+        const pathResponse = await fetch(profilePicturePathUrl, { method: "GET", headers });
+        if (!pathResponse.ok) {
+            console.warn(`Failed to fetch profile picture path: ${pathResponse.status} ${pathResponse.statusText}`);
+            return null;
+        }
+        const pathData = (await pathResponse.json());
+        const status = pathData?.statusResponse?.status;
+        if (status !== "SUCCESS") {
+            console.warn("Profile picture path API did not return SUCCESS:", status, pathData?.errors);
+            return null;
+        }
+        // Key for download API: from s3Uri (s3://bucket/key) or response.key
+        let downloadKey = pathData.key ??
+            (pathData.s3Uri ? getKeyFromS3Uri(pathData.s3Uri) : null);
+        if (!downloadKey && pathData.filePath) {
+            try {
+                const u = new URL(pathData.filePath);
+                downloadKey = u.pathname.replace(/^\//, ""); // path without leading slash as key
+            }
+            catch {
+                // ignore
+            }
+        }
+        if (!downloadKey) {
+            console.warn("Profile picture response has no key/s3Uri/filePath for download");
+            return null;
+        }
+        // Step 2: GET download API → JSON with fileContent (base64) and contentType
+        const downloadUrl = `${cleanBase}/v1/objectStore/download?key=${encodeURIComponent(downloadKey)}`;
+        const imageResponse = await fetch(downloadUrl, { method: "GET", headers });
+        if (!imageResponse.ok) {
+            console.warn(`Failed to fetch profile picture image: ${imageResponse.status} ${imageResponse.statusText}`);
+            return null;
+        }
+        const downloadData = (await imageResponse.json());
+        const downloadStatus = downloadData?.statusResponse?.status;
+        if (downloadStatus !== "SUCCESS") {
+            console.warn("Profile picture download API did not return SUCCESS:", downloadStatus, downloadData?.errors);
+            return null;
+        }
+        const fileContent = downloadData?.fileContent;
+        const contentType = (downloadData?.contentType || "").trim() || "image/png";
+        if (!fileContent || typeof fileContent !== "string") {
+            console.warn("Profile picture download response has no fileContent");
+            return null;
+        }
+        if (!contentType.startsWith("image/")) {
+            console.warn(`Profile picture download contentType is not an image: ${contentType}`);
+            return null;
+        }
+        // Decode base64 fileContent → Blob → object URL
+        const binary = atob(fileContent);
+        const bytes = new Uint8Array(binary.length);
+        for (let i = 0; i < binary.length; i++)
+            bytes[i] = binary.charCodeAt(i);
+        const blob = new Blob([bytes], { type: contentType });
+        return URL.createObjectURL(blob);
+    }
+    catch (err) {
+        console.error("Error fetching profile picture:", err);
+        return null;
+    }
+};

package/dist/utils/translations.js

@@ -0,0 +1,25 @@
+export const translations = {
+    en: {
+        accountSettings: 'Account Settings',
+        profile: 'Profile',
+        signOut: 'Sign out',
+        messages: 'Messages',
+        notifications: 'Notifications',
+        online: 'Online',
+        offline: 'Offline',
+        role: 'Role',
+    },
+    es: {
+        accountSettings: 'Configuración de cuenta',
+        profile: 'Perfil',
+        signOut: 'Cerrar sesión',
+        messages: 'Mensajes',
+        notifications: 'Notificaciones',
+        online: 'En línea',
+        offline: 'Desconectado',
+        role: 'Rol',
+    },
+};
+export const getTranslations = (language = 'en') => {
+    return translations[language] || translations.en;
+};

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "varminer-app-header",
-    "version": "2.6.2",
+    "version": "2.6.4",
     "type": "module",
     "description": "A plug-and-play React header component with Material-UI, drawer toggle, notifications, and user profile menu",
     "main": "dist/index.js",
@@ -20,7 +20,7 @@
         "README.md"
     ],
     "scripts": {
-        "build": "rollup -c",
+        "build": "npm run generate:tenant && npm run sync:tenant-fallback && rollup -c",
         "dev": "rollup -c -w",
         "prepublishOnly": "npm run build",
         "prepack": "npm run build",
@@ -30,7 +30,8 @@
         "pack": "npm pack",
         "test:link": "npm run build && npm link",
         "test:pack": "npm run build && npm pack",
-        "generate:tenant": "node generate-tenant-css.js"
+        "generate:tenant": "node generate-tenant-css.js",
+        "sync:tenant-fallback": "node scripts/sync-tenant-fallback.mjs"
     },
     "keywords": [
         "react",