vesant-sdk 1.4.0 → 1.4.2

package/dist/{client-DoczGA6L.d.ts → client-BlAt791q.d.ts}

@@ -1,4 +1,4 @@
-import { L as Logger, B as BaseClient, R as RequestOptions } from './client-DzElM7u-.js';
+import { L as Logger, B as BaseClient, R as RequestOptions } from './client-CY41e2Z_.js';
 import { P as PaginationParams } from './types-DZHongaK.js';
 
 interface DeviceFingerprintRequest {
@@ -472,6 +472,8 @@ interface GeolocationClientConfig {
     debug?: boolean;
     /** Custom logger instance */
     logger?: Logger;
+    /** Environment mode - 'sandbox' uses isolated sandbox data */
+    environment?: 'production' | 'sandbox';
 }
 interface UseGeolocationOptions {
     /** Auto-detect and verify user's IP on mount */
@@ -804,6 +806,15 @@ declare class GeolocationClient extends BaseClient {
      * ```
      */
     getGPSConfig(requestOptions?: RequestOptions): Promise<GeolocationConfigResponse>;
+    /**
+     * Fetch the signing key from the dedicated authenticated endpoint.
+     *
+     * Falls back to getGPSConfig() for backward compatibility with older servers
+     * that don't expose `/api/v1/geo/signing-key`.
+     *
+     * @returns The signing key string, or undefined if unavailable
+     */
+    fetchSigningKey(requestOptions?: RequestOptions): Promise<string | undefined>;
     /**
      * Validate a cipherText generated by the frontend SDK
      *

package/dist/{client-DzElM7u-.d.mts → client-CY41e2Z_.d.mts}

@@ -92,10 +92,8 @@ interface BaseClientConfig {
     interceptors?: RequestInterceptor[];
     /** Custom logger instance */
     logger?: Logger;
-    /** Environment mode (default: 'production') */
+    /** Environment mode (default: 'production'). When 'sandbox', adds X-Sandbox header to all requests for data isolation. */
     environment?: 'production' | 'sandbox';
-    /** Base URL to use in sandbox mode */
-    sandboxBaseURL?: string;
     /** Circuit breaker configuration */
     circuitBreaker?: CircuitBreakerConfig;
     /** Enable rate limit header tracking (default: false) */
@@ -124,19 +122,17 @@ interface CGSConfig {
     interceptors?: RequestInterceptor[];
     /** Custom logger instance */
     logger?: Logger;
-    /** Environment mode (default: 'production') */
+    /** Environment mode (default: 'production'). When 'sandbox', adds X-Sandbox header to all requests for data isolation. */
     environment?: 'production' | 'sandbox';
-    /** Base URL to use in sandbox mode */
-    sandboxBaseURL?: string;
     /** Circuit breaker configuration */
     circuitBreaker?: CircuitBreakerConfig;
     /** Enable rate limit header tracking (default: false) */
     enableRateLimitTracking?: boolean;
 }
 /** CGSConfig with core fields required, enterprise features remain optional */
-type RequiredCGSConfig = Required<Pick<CGSConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'autoCreateProfiles' | 'syncMode' | 'interceptors' | 'logger'>> & Pick<CGSConfig, 'environment' | 'sandboxBaseURL' | 'circuitBreaker' | 'enableRateLimitTracking'>;
+type RequiredCGSConfig = Required<Pick<CGSConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'autoCreateProfiles' | 'syncMode' | 'interceptors' | 'logger'>> & Pick<CGSConfig, 'environment' | 'circuitBreaker' | 'enableRateLimitTracking'>;
 /** BaseClientConfig with core fields required, enterprise features remain optional */
-type RequiredBaseClientConfig = Required<Pick<BaseClientConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'interceptors' | 'logger'>> & Pick<BaseClientConfig, 'environment' | 'sandboxBaseURL' | 'circuitBreaker' | 'enableRateLimitTracking'>;
+type RequiredBaseClientConfig = Required<Pick<BaseClientConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'interceptors' | 'logger'>> & Pick<BaseClientConfig, 'environment' | 'circuitBreaker' | 'enableRateLimitTracking'>;
 
 /**
  * Rate limit tracking from API response headers.

package/dist/{client-DzElM7u-.d.ts → client-CY41e2Z_.d.ts}

@@ -92,10 +92,8 @@ interface BaseClientConfig {
     interceptors?: RequestInterceptor[];
     /** Custom logger instance */
     logger?: Logger;
-    /** Environment mode (default: 'production') */
+    /** Environment mode (default: 'production'). When 'sandbox', adds X-Sandbox header to all requests for data isolation. */
     environment?: 'production' | 'sandbox';
-    /** Base URL to use in sandbox mode */
-    sandboxBaseURL?: string;
     /** Circuit breaker configuration */
     circuitBreaker?: CircuitBreakerConfig;
     /** Enable rate limit header tracking (default: false) */
@@ -124,19 +122,17 @@ interface CGSConfig {
     interceptors?: RequestInterceptor[];
     /** Custom logger instance */
     logger?: Logger;
-    /** Environment mode (default: 'production') */
+    /** Environment mode (default: 'production'). When 'sandbox', adds X-Sandbox header to all requests for data isolation. */
     environment?: 'production' | 'sandbox';
-    /** Base URL to use in sandbox mode */
-    sandboxBaseURL?: string;
     /** Circuit breaker configuration */
     circuitBreaker?: CircuitBreakerConfig;
     /** Enable rate limit header tracking (default: false) */
     enableRateLimitTracking?: boolean;
 }
 /** CGSConfig with core fields required, enterprise features remain optional */
-type RequiredCGSConfig = Required<Pick<CGSConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'autoCreateProfiles' | 'syncMode' | 'interceptors' | 'logger'>> & Pick<CGSConfig, 'environment' | 'sandboxBaseURL' | 'circuitBreaker' | 'enableRateLimitTracking'>;
+type RequiredCGSConfig = Required<Pick<CGSConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'autoCreateProfiles' | 'syncMode' | 'interceptors' | 'logger'>> & Pick<CGSConfig, 'environment' | 'circuitBreaker' | 'enableRateLimitTracking'>;
 /** BaseClientConfig with core fields required, enterprise features remain optional */
-type RequiredBaseClientConfig = Required<Pick<BaseClientConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'interceptors' | 'logger'>> & Pick<BaseClientConfig, 'environment' | 'sandboxBaseURL' | 'circuitBreaker' | 'enableRateLimitTracking'>;
+type RequiredBaseClientConfig = Required<Pick<BaseClientConfig, 'baseURL' | 'tenantId' | 'apiKey' | 'headers' | 'timeout' | 'retries' | 'debug' | 'interceptors' | 'logger'>> & Pick<BaseClientConfig, 'environment' | 'circuitBreaker' | 'enableRateLimitTracking'>;
 
 /**
  * Rate limit tracking from API response headers.

package/dist/{client-B6fUFAUM.d.mts → client-oo_3-0YW.d.mts}

@@ -1,4 +1,4 @@
-import { L as Logger, B as BaseClient, R as RequestOptions } from './client-DzElM7u-.mjs';
+import { L as Logger, B as BaseClient, R as RequestOptions } from './client-CY41e2Z_.mjs';
 import { P as PaginationParams } from './types-DZHongaK.mjs';
 
 interface DeviceFingerprintRequest {
@@ -472,6 +472,8 @@ interface GeolocationClientConfig {
     debug?: boolean;
     /** Custom logger instance */
     logger?: Logger;
+    /** Environment mode - 'sandbox' uses isolated sandbox data */
+    environment?: 'production' | 'sandbox';
 }
 interface UseGeolocationOptions {
     /** Auto-detect and verify user's IP on mount */
@@ -804,6 +806,15 @@ declare class GeolocationClient extends BaseClient {
      * ```
      */
     getGPSConfig(requestOptions?: RequestOptions): Promise<GeolocationConfigResponse>;
+    /**
+     * Fetch the signing key from the dedicated authenticated endpoint.
+     *
+     * Falls back to getGPSConfig() for backward compatibility with older servers
+     * that don't expose `/api/v1/geo/signing-key`.
+     *
+     * @returns The signing key string, or undefined if unavailable
+     */
+    fetchSigningKey(requestOptions?: RequestOptions): Promise<string | undefined>;
     /**
      * Validate a cipherText generated by the frontend SDK
      *

package/dist/compliance/index.d.mts

@@ -1,7 +1,7 @@
-import { D as DeviceFingerprintRequest, L as LocationVerification, P as LocationRequest, G as GeolocationClient, S as LocationRequestFilters, T as LocationRequestListResponse } from '../client-B6fUFAUM.mjs';
-export { Q as CreateLocationRequestRequest, Y as LocationCaptureRequest, _ as LocationCaptureResponse, O as LocationRequestChannel, R as LocationRequestResult, N as LocationRequestStatus, Z as LocationShareInfo, W as ResendLocationRequestRequest } from '../client-B6fUFAUM.mjs';
+import { D as DeviceFingerprintRequest, L as LocationVerification, P as LocationRequest, G as GeolocationClient, S as LocationRequestFilters, T as LocationRequestListResponse } from '../client-oo_3-0YW.mjs';
+export { Q as CreateLocationRequestRequest, Y as LocationCaptureRequest, _ as LocationCaptureResponse, O as LocationRequestChannel, R as LocationRequestResult, N as LocationRequestStatus, Z as LocationShareInfo, W as ResendLocationRequestRequest } from '../client-oo_3-0YW.mjs';
 import { RiskProfileClient } from '../risk-profile/index.mjs';
-import { c as CGSConfig, R as RequestOptions } from '../client-DzElM7u-.mjs';
+import { c as CGSConfig, R as RequestOptions } from '../client-CY41e2Z_.mjs';
 import { C as CustomerProfile } from '../types-jaLuzruy.mjs';
 import { E as EntityType, P as PaginationParams } from '../types-DZHongaK.mjs';
 

package/dist/compliance/index.d.ts

@@ -1,7 +1,7 @@
-import { D as DeviceFingerprintRequest, L as LocationVerification, P as LocationRequest, G as GeolocationClient, S as LocationRequestFilters, T as LocationRequestListResponse } from '../client-DoczGA6L.js';
-export { Q as CreateLocationRequestRequest, Y as LocationCaptureRequest, _ as LocationCaptureResponse, O as LocationRequestChannel, R as LocationRequestResult, N as LocationRequestStatus, Z as LocationShareInfo, W as ResendLocationRequestRequest } from '../client-DoczGA6L.js';
+import { D as DeviceFingerprintRequest, L as LocationVerification, P as LocationRequest, G as GeolocationClient, S as LocationRequestFilters, T as LocationRequestListResponse } from '../client-BlAt791q.js';
+export { Q as CreateLocationRequestRequest, Y as LocationCaptureRequest, _ as LocationCaptureResponse, O as LocationRequestChannel, R as LocationRequestResult, N as LocationRequestStatus, Z as LocationShareInfo, W as ResendLocationRequestRequest } from '../client-BlAt791q.js';
 import { RiskProfileClient } from '../risk-profile/index.js';
-import { c as CGSConfig, R as RequestOptions } from '../client-DzElM7u-.js';
+import { c as CGSConfig, R as RequestOptions } from '../client-CY41e2Z_.js';
 import { C as CustomerProfile } from '../types-DLC7Sfy5.js';
 import { E as EntityType, P as PaginationParams } from '../types-DZHongaK.js';
 

package/dist/compliance/index.js

@@ -224,7 +224,7 @@ function createConsoleLogger() {
 }
 
 // src/core/version.ts
-var SDK_VERSION = "1.4.0";
+var SDK_VERSION = "1.4.1";
 
 // src/shared/browser-utils.ts
 function generateUUID() {
@@ -318,12 +318,6 @@ var BaseClient = class {
       interceptors: this.interceptors,
       logger: this.logger
     };
-    if (this.config.environment === "sandbox" && this.config.apiKey?.startsWith("pk_live_")) {
-      this.logger.warn("Production API key used with sandbox environment. Use your sandbox API key (sk_sandbox_) instead.");
-    }
-    if (this.config.environment !== "sandbox" && this.config.apiKey?.startsWith("sk_sandbox_")) {
-      this.logger.warn("Sandbox API key used with production environment. Use your production API key (pk_live_) instead.");
-    }
     if (config.circuitBreaker) {
       this.circuitBreaker = new CircuitBreaker(config.circuitBreaker);
     }
@@ -347,9 +341,7 @@ var BaseClient = class {
       error.requestId = requestId;
       throw error;
     }
-    const DEFAULT_SANDBOX_URL = "https://sandbox-api.vesant.ai";
-    const resolvedBaseURL = this.config.environment === "sandbox" ? this.config.sandboxBaseURL || DEFAULT_SANDBOX_URL : serviceURL || this.config.baseURL;
-    const url = `${serviceURL || resolvedBaseURL}${endpoint}`;
+    const url = `${serviceURL || this.config.baseURL}${endpoint}`;
     const headers = {
       "Content-Type": "application/json",
       "X-Tenant-ID": this.config.tenantId,
@@ -794,7 +786,8 @@ var GeolocationClient = class extends BaseClient {
       retries: 3,
       // Default retry count for geolocation calls
       debug: config.debug,
-      logger: config.logger
+      logger: config.logger,
+      environment: config.environment
     };
     super(baseConfig);
   }
@@ -888,6 +881,32 @@ var GeolocationClient = class extends BaseClient {
     }
     return config;
   }
+  /**
+   * Fetch the signing key from the dedicated authenticated endpoint.
+   *
+   * Falls back to getGPSConfig() for backward compatibility with older servers
+   * that don't expose `/api/v1/geo/signing-key`.
+   *
+   * @returns The signing key string, or undefined if unavailable
+   */
+  async fetchSigningKey(requestOptions) {
+    try {
+      const response = await this.requestWithRetry(
+        "/api/v1/geo/signing-key",
+        void 0,
+        void 0,
+        void 0,
+        requestOptions
+      );
+      if (response.signing_key) {
+        this.cachedSigningKey = response.signing_key;
+        return response.signing_key;
+      }
+    } catch {
+    }
+    const config = await this.getGPSConfig(requestOptions);
+    return config.signing_key;
+  }
   // ============================================================================
   // CipherText Validation
   // ============================================================================
@@ -1168,11 +1187,10 @@ var GeolocationClient = class extends BaseClient {
     let signingKey = this.cachedSigningKey;
     let resolvedGpsConfig = gpsConfig;
     if (!signingKey) {
-      const config = await this.getGPSConfig();
-      signingKey = config.signing_key;
-      if (!resolvedGpsConfig) {
-        resolvedGpsConfig = config;
-      }
+      signingKey = await this.fetchSigningKey();
+    }
+    if (!resolvedGpsConfig) {
+      resolvedGpsConfig = await this.getGPSConfig();
     }
     return generateCipherText(
       { ...options, signingKey: signingKey || void 0 },