commit 32bbf691c6f103b9f50ad76c7433bd21588405a7 · bretton.dev/coves-mobile

+16

.env.example

···

       1
       +
       # Coves Mobile - Environment Variables Template

     

       2
       +
       # Copy this file to .env and fill in your values

     

       3
       +
       

     

       4
       +
       # OAuth Server Base URL

     

       5
       +
       # This is where your client-metadata.json and OAuth callbacks are hosted

     

       6
       +
       EXPO_PUBLIC_OAUTH_SERVER_URL=https://your-oauth-server.workers.dev

     

       7
       +
       

     

       8
       +
       # Custom URL Scheme (for deep linking)

     

       9
       +
       # Format: reverse-dns style or custom scheme

     

       10
       +
       # Must match the scheme in your client-metadata.json

     

       11
       +
       EXPO_PUBLIC_CUSTOM_SCHEME=com.yourapp.scheme

     

       12
       +
       

     

       13
       +
       # API Configuration

     

       14
       +
       # Development: Use localhost or your local IP

     

       15
       +
       # Production: Use your production API URL

     

       16
       +
       EXPO_PUBLIC_API_URL=http://localhost:8081

CLAUDE.md

···

       8
        
       - Security is built-in, not bolted-on

     

       9
        
       - Test on real devices, not just simulators

     

       10
        
       - When stuck, check official Expo/React Native docs

     

       0
        
       
     

       11
        
       - ASK QUESTIONS about product requirements - DON'T ASSUME

     

       12
        
       

     

       13
        
       ## Tech Stack Essentials

     
···

       18
        
       **State**: Zustand + TanStack Query

     

       19
        
       **UI**: NativeWind (Tailwind CSS for RN)

     

       20
        
       **Storage**: MMKV (encrypted), AsyncStorage (persistence)

     

       0
        
       
     

       0
        
       
     

       21
        
       

     

       22
        
       ## atProto Mobile Patterns

     

       23

···

       8
        
       - Security is built-in, not bolted-on

     

       9
        
       - Test on real devices, not just simulators

     

       10
        
       - When stuck, check official Expo/React Native docs

     

       11
       +
       - Always follow YAGNI, DRY, KISS principles

     

       12
        
       - ASK QUESTIONS about product requirements - DON'T ASSUME

     

       13
        
       

     

       14
        
       ## Tech Stack Essentials

     
···

       19
        
       **State**: Zustand + TanStack Query

     

       20
        
       **UI**: NativeWind (Tailwind CSS for RN)

     

       21
        
       **Storage**: MMKV (encrypted), AsyncStorage (persistence)

     

       22
       +
       

     

       23
       +
       **Backend**: Already implemented! The Coves backend at `/home/bretton/Code/Coves`

     

       24
        
       

     

       25
        
       ## atProto Mobile Patterns

     

       26

+95

app.config.js

···

       1
       +
       const IS_DEV = process.env.APP_VARIANT === 'development';

     

       2
       +
       

     

       3
       +
       // OAuth Server Configuration

     

       4
       +
       // Single source of truth for OAuth server URLs

     

       5
       +
       const OAUTH_SERVER_URL = process.env.EXPO_PUBLIC_OAUTH_SERVER_URL;

     

       6
       +
       if (!OAUTH_SERVER_URL) {

     

       7
       +
         throw new Error(

     

       8
       +
           'EXPO_PUBLIC_OAUTH_SERVER_URL is required. Please set it in your .env file.\n' +

     

       9
       +
             'Example: EXPO_PUBLIC_OAUTH_SERVER_URL=https://your-oauth-server.workers.dev'

     

       10
       +
         );

     

       11
       +
       }

     

       12
       +
       

     

       13
       +
       // Custom URL scheme for deep linking

     

       14
       +
       // Production should use reverse-DNS format matching bundle ID

     

       15
       +
       // Development can use a custom scheme for testing

     

       16
       +
       const CUSTOM_SCHEME =

     

       17
       +
         process.env.EXPO_PUBLIC_CUSTOM_SCHEME ||

     

       18
       +
         (IS_DEV ? 'com.coves.app.dev' : 'com.coves.app');

     

       19
       +
       

     

       20
       +
       // Build OAuth URLs from base server URL

     

       21
       +
       const OAUTH_CLIENT_METADATA_URL = `${OAUTH_SERVER_URL}/client-metadata.json`;

     

       22
       +
       const OAUTH_REDIRECT_URI = `${OAUTH_SERVER_URL}/oauth/callback`;

     

       23
       +
       

     

       24
       +
       // Extract host from OAuth server URL for deep linking configuration

     

       25
       +
       const OAUTH_SERVER_HOST = new URL(OAUTH_SERVER_URL).host;

     

       26
       +
       

     

       27
       +
       module.exports = {

     

       28
       +
         expo: {

     

       29
       +
           name: 'Coves',

     

       30
       +
           slug: 'coves-mobile',

     

       31
       +
           version: '1.0.0',

     

       32
       +
           scheme: CUSTOM_SCHEME,

     

       33
       +
           orientation: 'portrait',

     

       34
       +
           icon: './assets/icon.png',

     

       35
       +
           userInterfaceStyle: 'automatic',

     

       36
       +
           newArchEnabled: true,

     

       37
       +
           splash: {

     

       38
       +
             image: './assets/splash-icon.png',

     

       39
       +
             resizeMode: 'contain',

     

       40
       +
             backgroundColor: '#ffffff',

     

       41
       +
           },

     

       42
       +
           ios: {

     

       43
       +
             bundleIdentifier: 'com.coves.app',

     

       44
       +
             supportsTablet: true,

     

       45
       +
             // iOS Universal Links - must match OAuth redirect domain

     

       46
       +
             associatedDomains: [`applinks:${OAUTH_SERVER_HOST}`],

     

       47
       +
           },

     

       48
       +
           android: {

     

       49
       +
             package: 'com.coves.app',

     

       50
       +
             adaptiveIcon: {

     

       51
       +
               foregroundImage: './assets/adaptive-icon.png',

     

       52
       +
               backgroundColor: '#ffffff',

     

       53
       +
             },

     

       54
       +
             edgeToEdgeEnabled: true,

     

       55
       +
             predictiveBackGestureEnabled: false,

     

       56
       +
             intentFilters: [

     

       57
       +
               {

     

       58
       +
                 action: 'VIEW',

     

       59
       +
                 autoVerify: true,

     

       60
       +
                 data: [

     

       61
       +
                   // HTTPS deep link - must match OAuth redirect domain

     

       62
       +
                   {

     

       63
       +
                     scheme: 'https',

     

       64
       +
                     host: OAUTH_SERVER_HOST,

     

       65
       +
                     pathPrefix: '/oauth/callback',

     

       66
       +
                   },

     

       67
       +
                   // Custom scheme fallback

     

       68
       +
                   {

     

       69
       +
                     scheme: CUSTOM_SCHEME,

     

       70
       +
                   },

     

       71
       +
                 ],

     

       72
       +
                 category: ['BROWSABLE', 'DEFAULT'],

     

       73
       +
               },

     

       74
       +
             ],

     

       75
       +
           },

     

       76
       +
           web: {

     

       77
       +
             favicon: './assets/favicon.png',

     

       78
       +
           },

     

       79
       +
           plugins: ['expo-router'],

     

       80
       +
           extra: {

     

       81
       +
             // OAuth Configuration - built from OAUTH_SERVER_URL

     

       82
       +
             EXPO_PUBLIC_OAUTH_CLIENT_ID: OAUTH_CLIENT_METADATA_URL,

     

       83
       +
             EXPO_PUBLIC_OAUTH_CLIENT_URI: OAUTH_CLIENT_METADATA_URL,

     

       84
       +
             EXPO_PUBLIC_OAUTH_REDIRECT_URI: OAUTH_REDIRECT_URI,

     

       85
       +
       

     

       86
       +
             // Custom URL scheme for deep linking

     

       87
       +
             EXPO_PUBLIC_CUSTOM_SCHEME: CUSTOM_SCHEME,

     

       88
       +
       

     

       89
       +
             // API Configuration

     

       90
       +
             EXPO_PUBLIC_API_URL:

     

       91
       +
               process.env.EXPO_PUBLIC_API_URL ||

     

       92
       +
               (IS_DEV ? 'http://localhost:8081' : 'https://api.coves.app'),

     

       93
       +
           },

     

       94
       +
         },

     

       95
       +
       };

+45 -3

app/oauth/callback.tsx

···

       1
        
       import { useEffect, useState } from 'react';

     

       2
        
       import { View, ActivityIndicator, Text } from 'react-native';

     

       3
        
       import { useRouter, useLocalSearchParams } from 'expo-router';

     

       0
        
       
     

       4
        
       import { oauthClient } from '@/lib/oauthClient';

     

       5
        
       import { createAgent } from '@/lib/api';

     

       6
        
       import { useAuthStore } from '@/stores/authStore';

     

       7
        
       

     

       8
        
       /**

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       9
        
        * OAuth Callback Handler

     

       10
        
        *

     

       11
        
        * This route is triggered when the deep link opens the app after authorization.

     
···

       23
        
       

     

       24
        
         async function handleCallback() {

     

       25
        
           try {

     

       26
       -
             console.log('OAuth callback received with params:', params);

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       27
        
       

     

       28
        
             // Build URLSearchParams from the query params

     

       29
        
             const searchParams = new URLSearchParams();

     
···

       33
        
       

     

       34
        
             // Complete the OAuth flow manually

     

       35
        
             const { session } = await oauthClient.callback(searchParams, {

     

       36
       -
               redirect_uri: process.env.EXPO_PUBLIC_OAUTH_REDIRECT_URI!,

     

       37
        
             });

     

       38
        
       

     

       39
        
             // Create agent and get profile

     
···

       43
        
             // Update auth store using proper action

     

       44
        
             useAuthStore.getState().completeOAuthCallback(session, agent, profile.data.handle);

     

       45
        
       

     

       46
       -
             console.log('OAuth login successful!');

     

       0
        
       
     

       0
        
       
     

       47
        
             router.replace('/(tabs)');

     

       48
        
           } catch (err) {

     

       49
        
             console.error('OAuth callback failed:', err);

···

       1
        
       import { useEffect, useState } from 'react';

     

       2
        
       import { View, ActivityIndicator, Text } from 'react-native';

     

       3
        
       import { useRouter, useLocalSearchParams } from 'expo-router';

     

       4
       +
       import Constants from 'expo-constants';

     

       5
        
       import { oauthClient } from '@/lib/oauthClient';

     

       6
        
       import { createAgent } from '@/lib/api';

     

       7
        
       import { useAuthStore } from '@/stores/authStore';

     

       8
        
       

     

       9
        
       /**

     

       10
       +
        * Get configuration value from Expo Constants

     

       11
       +
        * Works in both Expo Go and native builds

     

       12
       +
        */

     

       13
       +
       function getConfig(key: string): string {

     

       14
       +
         const value =

     

       15
       +
           Constants.expoConfig?.extra?.[key] ??

     

       16
       +
           Constants.manifest2?.extra?.expoClient?.extra?.[key] ??

     

       17
       +
           Constants.manifest?.extra?.[key] ??

     

       18
       +
           process.env[key];

     

       19
       +
       

     

       20
       +
         if (!value) {

     

       21
       +
           throw new Error(`Missing required configuration: ${key}`);

     

       22
       +
         }

     

       23
       +
       

     

       24
       +
         return value;

     

       25
       +
       }

     

       26
       +
       

     

       27
       +
       // Get redirect URI - will throw if not configured

     

       28
       +
       const REDIRECT_URI = getConfig('EXPO_PUBLIC_OAUTH_REDIRECT_URI');

     

       29
       +
       

     

       30
       +
       /**

     

       31
        
        * OAuth Callback Handler

     

       32
        
        *

     

       33
        
        * This route is triggered when the deep link opens the app after authorization.

     
···

       45
        
       

     

       46
        
         async function handleCallback() {

     

       47
        
           try {

     

       48
       +
             if (__DEV__) {

     

       49
       +
               console.log('OAuth callback received with params:', params);

     

       50
       +
             }

     

       51
       +
       

     

       52
       +
             // Check for OAuth error response

     

       53
       +
             if (params.error) {

     

       54
       +
               const errorDescription = params.error_description || 'Unknown OAuth error';

     

       55
       +
               throw new Error(`OAuth error: ${params.error} - ${errorDescription}`);

     

       56
       +
             }

     

       57
       +
       

     

       58
       +
             // Validate required OAuth parameters

     

       59
       +
             const requiredParams = ['code', 'state'];

     

       60
       +
             const missingParams = requiredParams.filter((param) => !params[param]);

     

       61
       +
       

     

       62
       +
             if (missingParams.length > 0) {

     

       63
       +
               throw new Error(

     

       64
       +
                 `Invalid OAuth callback: Missing required parameters: ${missingParams.join(', ')}`

     

       65
       +
               );

     

       66
       +
             }

     

       67
        
       

     

       68
        
             // Build URLSearchParams from the query params

     

       69
        
             const searchParams = new URLSearchParams();

     
···

       73
        
       

     

       74
        
             // Complete the OAuth flow manually

     

       75
        
             const { session } = await oauthClient.callback(searchParams, {

     

       76
       +
               redirect_uri: REDIRECT_URI,

     

       77
        
             });

     

       78
        
       

     

       79
        
             // Create agent and get profile

     
···

       83
        
             // Update auth store using proper action

     

       84
        
             useAuthStore.getState().completeOAuthCallback(session, agent, profile.data.handle);

     

       85
        
       

     

       86
       +
             if (__DEV__) {

     

       87
       +
               console.log('OAuth login successful!');

     

       88
       +
             }

     

       89
        
             router.replace('/(tabs)');

     

       90
        
           } catch (err) {

     

       91
        
             console.error('OAuth callback failed:', err);

+70 -18

lib/oauthClient.ts

···

       1
        
       import { ExpoOAuthClient } from '@atproto/oauth-client-expo';

     

       2
       -
       import { config } from '@/constants/config';

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       3
        
       

     

       4
        
       /**

     

       5
        
        * Initialize the OAuth client

     
···

       8
        
       export const oauthClient = new ExpoOAuthClient({

     

       9
        
         // Client metadata - must match hosted client-metadata.json

     

       10
        
         clientMetadata: {

     

       11
       -
           client_id: config.clientMetadata.client_id,

     

       12
       -
           client_name: config.clientMetadata.client_name,

     

       13
       -
           client_uri: config.clientMetadata.client_uri,

     

       14
       -
           redirect_uris: config.clientMetadata.redirect_uris,

     

       15
       -
           scope: config.clientMetadata.scope,

     

       16
       -
           grant_types: config.clientMetadata.grant_types,

     

       17
       -
           response_types: config.clientMetadata.response_types,

     

       18
       -
           application_type: config.clientMetadata.application_type,

     

       19
       -
           token_endpoint_auth_method: config.clientMetadata.token_endpoint_auth_method,

     

       20
       -
           dpop_bound_access_tokens: config.clientMetadata.dpop_bound_access_tokens,

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       21
        
         },

     

       22
        
       

     

       23
        
         // Handle resolver - resolves atProto handles to DID documents

     
···

       35
        
        */

     

       36
        
       export async function initializeOAuth(storedDid?: string | null) {

     

       37
        
         try {

     

       38
       -
           console.log('Initializing OAuth client...');

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       39
        
       

     

       40
        
           // Only try to restore if we have a stored DID

     

       41
        
           if (!storedDid) {

     

       42
       -
             console.log('No stored DID found, skipping session restore');

     

       0
        
       
     

       0
        
       
     

       43
        
             return null;

     

       44
        
           }

     

       45
        
       

     

       46
       -
           console.log('Attempting to restore session for:', storedDid);

     

       0
        
       
     

       0
        
       
     

       47
        
           const session = await oauthClient.restore(storedDid);

     

       48
        
       

     

       49
        
           if (session) {

     

       50
       -
             console.log('Successfully restored session for:', session.sub);

     

       0
        
       
     

       0
        
       
     

       51
        
             return session;

     

       52
        
           }

     

       53
        
       

     

       54
       -
           console.log('No valid session found');

     

       0
        
       
     

       0
        
       
     

       55
        
           return null;

     

       56
        
         } catch (error) {

     

       57
        
           console.error('Failed to restore session:', error);

     
···

       72
        
         const result = await oauthClient.signIn(handle, {

     

       73
        
           signal: new AbortController().signal,

     

       74
        
           // Force HTTPS redirect URI (works better on Android than custom schemes)

     

       75
       -
           redirect_uri: process.env.EXPO_PUBLIC_OAUTH_REDIRECT_URI!,

     

       76
        
         });

     

       77
        
       

     

       78
        
         // Check the result status

     
···

       93
        
       export async function signOut(sub: string) {

     

       94
        
         try {

     

       95
        
           await oauthClient.revoke(sub);

     

       96
       -
           console.log('Signed out successfully');

     

       0
        
       
     

       0
        
       
     

       97
        
         } catch (error) {

     

       98
        
           console.error('Sign out failed:', error);

     

       99
        
           throw error;

···

       1
        
       import { ExpoOAuthClient } from '@atproto/oauth-client-expo';

     

       2
       +
       import Constants from 'expo-constants';

     

       3
       +
       

     

       4
       +
       /**

     

       5
       +
        * Get configuration value from Expo Constants

     

       6
       +
        * Works in both Expo Go (expoConfig) and native builds (manifestExtra)

     

       7
       +
        */

     

       8
       +
       function getConfig(key: string): string {

     

       9
       +
         // Try multiple sources in order:

     

       10
       +
         // 1. expoConfig.extra (Expo Go, dev builds)

     

       11
       +
         // 2. manifestExtra (native builds via EAS)

     

       12
       +
         // 3. process.env (fallback)

     

       13
       +
         const value =

     

       14
       +
           Constants.expoConfig?.extra?.[key] ??

     

       15
       +
           Constants.manifest2?.extra?.expoClient?.extra?.[key] ??

     

       16
       +
           Constants.manifest?.extra?.[key] ??

     

       17
       +
           process.env[key];

     

       18
       +
       

     

       19
       +
         if (!value) {

     

       20
       +
           throw new Error(

     

       21
       +
             `Missing required configuration: ${key}\n` +

     

       22
       +
               `Please ensure it's set in app.config.js extra field.\n` +

     

       23
       +
               `See .env.example for required variables.`

     

       24
       +
           );

     

       25
       +
         }

     

       26
       +
       

     

       27
       +
         return value;

     

       28
       +
       }

     

       29
       +
       

     

       30
       +
       // Get OAuth configuration - will throw if not properly configured

     

       31
       +
       const CLIENT_ID = getConfig('EXPO_PUBLIC_OAUTH_CLIENT_ID');

     

       32
       +
       const CLIENT_URI = getConfig('EXPO_PUBLIC_OAUTH_CLIENT_URI');

     

       33
       +
       const REDIRECT_URI = getConfig('EXPO_PUBLIC_OAUTH_REDIRECT_URI');

     

       34
       +
       const CUSTOM_SCHEME = getConfig('EXPO_PUBLIC_CUSTOM_SCHEME');

     

       35
       +
       

     

       36
       +
       // Build the custom scheme callback URI

     

       37
       +
       const CUSTOM_SCHEME_CALLBACK = `${CUSTOM_SCHEME}:/oauth/callback`;

     

       38
        
       

     

       39
        
       /**

     

       40
        
        * Initialize the OAuth client

     
···

       43
        
       export const oauthClient = new ExpoOAuthClient({

     

       44
        
         // Client metadata - must match hosted client-metadata.json

     

       45
        
         clientMetadata: {

     

       46
       +
           client_id: CLIENT_ID,

     

       47
       +
           client_name: 'Coves',

     

       48
       +
           client_uri: CLIENT_URI,

     

       49
       +
           redirect_uris: [

     

       50
       +
             REDIRECT_URI, // HTTPS redirect (works better on Android)

     

       51
       +
             CUSTOM_SCHEME_CALLBACK, // Fallback custom scheme

     

       52
       +
           ],

     

       53
       +
           scope: 'atproto transition:generic',

     

       54
       +
           grant_types: ['authorization_code', 'refresh_token'],

     

       55
       +
           response_types: ['code'],

     

       56
       +
           application_type: 'native',

     

       57
       +
           token_endpoint_auth_method: 'none', // Public client

     

       58
       +
           dpop_bound_access_tokens: true,

     

       59
        
         },

     

       60
        
       

     

       61
        
         // Handle resolver - resolves atProto handles to DID documents

     
···

       73
        
        */

     

       74
        
       export async function initializeOAuth(storedDid?: string | null) {

     

       75
        
         try {

     

       76
       +
           if (__DEV__) {

     

       77
       +
             console.log('Initializing OAuth client...');

     

       78
       +
             console.log('Client ID:', CLIENT_ID);

     

       79
       +
             console.log('Redirect URI:', REDIRECT_URI);

     

       80
       +
           }

     

       81
        
       

     

       82
        
           // Only try to restore if we have a stored DID

     

       83
        
           if (!storedDid) {

     

       84
       +
             if (__DEV__) {

     

       85
       +
               console.log('No stored DID found, skipping session restore');

     

       86
       +
             }

     

       87
        
             return null;

     

       88
        
           }

     

       89
        
       

     

       90
       +
           if (__DEV__) {

     

       91
       +
             console.log('Attempting to restore session for:', storedDid);

     

       92
       +
           }

     

       93
        
           const session = await oauthClient.restore(storedDid);

     

       94
        
       

     

       95
        
           if (session) {

     

       96
       +
             if (__DEV__) {

     

       97
       +
               console.log('Successfully restored session for:', session.sub);

     

       98
       +
             }

     

       99
        
             return session;

     

       100
        
           }

     

       101
        
       

     

       102
       +
           if (__DEV__) {

     

       103
       +
             console.log('No valid session found');

     

       104
       +
           }

     

       105
        
           return null;

     

       106
        
         } catch (error) {

     

       107
        
           console.error('Failed to restore session:', error);

     
···

       122
        
         const result = await oauthClient.signIn(handle, {

     

       123
        
           signal: new AbortController().signal,

     

       124
        
           // Force HTTPS redirect URI (works better on Android than custom schemes)

     

       125
       +
           redirect_uri: REDIRECT_URI,

     

       126
        
         });

     

       127
        
       

     

       128
        
         // Check the result status

     
···

       143
        
       export async function signOut(sub: string) {

     

       144
        
         try {

     

       145
        
           await oauthClient.revoke(sub);

     

       146
       +
           if (__DEV__) {

     

       147
       +
             console.log('Signed out successfully');

     

       148
       +
           }

     

       149
        
         } catch (error) {

     

       150
        
           console.error('Sign out failed:', error);

     

       151
        
           throw error;

+26 -6

package-lock.json

···

       8
        
             "name": "coves-mobile",

     

       9
        
             "version": "1.0.0",

     

       10
        
             "dependencies": {

     

       11
       -
               "@atproto/api": "^0.17.1",

     

       12
        
               "@atproto/oauth-client": "^0.5.7",

     

       13
        
               "@atproto/oauth-client-expo": "^0.0.1",

     

       14
        
               "@craftzdog/react-native-buffer": "^6.1.1",

     
···

       140
        
             }

     

       141
        
           },

     

       142
        
           "node_modules/@atproto/api": {

     

       143
       -
             "version": "0.17.1",

     

       144
       -
             "resolved": "https://registry.npmjs.org/@atproto/api/-/api-0.17.1.tgz",

     

       145
       -
             "integrity": "sha512-MjW6zVP8PsxPhvOpSWIZLoEiFOK0oKIokeHoUgG1CLHGXNnz2TwBGrrPglyiE0j9GYFD5p6lAsHx8Dbx/9j5vg==",

     

       146
        
             "license": "MIT",

     

       147
        
             "dependencies": {

     

       148
        
               "@atproto/common-web": "^0.4.3",

     
···

       4267
        
             "version": "19.1.17",

     

       4268
        
             "resolved": "https://registry.npmjs.org/@types/react/-/react-19.1.17.tgz",

     

       4269
        
             "integrity": "sha512-Qec1E3mhALmaspIrhWt9jkQMNdw6bReVu64mjvhbhq2NFPftLPVr+l1SZgmw/66WwBNpDh7ao5AT6gF5v41PFA==",

     

       4270
       -
             "dev": true,

     

       4271
        
             "license": "MIT",

     

       4272
        
             "dependencies": {

     

       4273
        
               "csstype": "^3.0.2"

     
···

       6387
        
             "version": "3.1.3",

     

       6388
        
             "resolved": "https://registry.npmjs.org/csstype/-/csstype-3.1.3.tgz",

     

       6389
        
             "integrity": "sha512-M1uQkMl8rQK/szD0LNhtqxIPLpimGm8sOBwU7lLnCpSbTyY3yeU1Vc7l4KT5zT4s/yOxHH5O7tIuuLOCnLADRw==",

     

       6390
       -
             "dev": true,

     

       6391
        
             "license": "MIT"

     

       6392
        
           },

     

       6393
        
           "node_modules/data-view-buffer": {

     
···

       12665
        
               "ws": "^7"

     

       12666
        
             }

     

       12667
        
           },

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       12668
        
           "node_modules/react-fast-compare": {

     

       12669
        
             "version": "3.2.2",

     

       12670
        
             "resolved": "https://registry.npmjs.org/react-fast-compare/-/react-fast-compare-3.2.2.tgz",

     
···

       13528
        
             "resolved": "https://registry.npmjs.org/sax/-/sax-1.4.1.tgz",

     

       13529
        
             "integrity": "sha512-+aWOz7yVScEGoKNd4PA10LZ8sk0A/z5+nXQG5giUO5rprX9jgYsTdov9qCchZiPIZezbZH+jRut8nPodFAX4Jg==",

     

       13530
        
             "license": "ISC"

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       13531
        
           },

     

       13532
        
           "node_modules/semver": {

     

       13533
        
             "version": "7.7.2",

···

       8
        
             "name": "coves-mobile",

     

       9
        
             "version": "1.0.0",

     

       10
        
             "dependencies": {

     

       11
       +
               "@atproto/api": "^0.17.3",

     

       12
        
               "@atproto/oauth-client": "^0.5.7",

     

       13
        
               "@atproto/oauth-client-expo": "^0.0.1",

     

       14
        
               "@craftzdog/react-native-buffer": "^6.1.1",

     
···

       140
        
             }

     

       141
        
           },

     

       142
        
           "node_modules/@atproto/api": {

     

       143
       +
             "version": "0.17.3",

     

       144
       +
             "resolved": "https://registry.npmjs.org/@atproto/api/-/api-0.17.3.tgz",

     

       145
       +
             "integrity": "sha512-pdQXhUAapNPdmN00W0vX5ta/aMkHqfgBHATt20X02XwxQpY2AnrPm2Iog4FyjsZqoHooAtCNV/NWJ4xfddJzsg==",

     

       146
        
             "license": "MIT",

     

       147
        
             "dependencies": {

     

       148
        
               "@atproto/common-web": "^0.4.3",

     
···

       4267
        
             "version": "19.1.17",

     

       4268
        
             "resolved": "https://registry.npmjs.org/@types/react/-/react-19.1.17.tgz",

     

       4269
        
             "integrity": "sha512-Qec1E3mhALmaspIrhWt9jkQMNdw6bReVu64mjvhbhq2NFPftLPVr+l1SZgmw/66WwBNpDh7ao5AT6gF5v41PFA==",

     

       4270
       +
             "devOptional": true,

     

       4271
        
             "license": "MIT",

     

       4272
        
             "dependencies": {

     

       4273
        
               "csstype": "^3.0.2"

     
···

       6387
        
             "version": "3.1.3",

     

       6388
        
             "resolved": "https://registry.npmjs.org/csstype/-/csstype-3.1.3.tgz",

     

       6389
        
             "integrity": "sha512-M1uQkMl8rQK/szD0LNhtqxIPLpimGm8sOBwU7lLnCpSbTyY3yeU1Vc7l4KT5zT4s/yOxHH5O7tIuuLOCnLADRw==",

     

       6390
       +
             "devOptional": true,

     

       6391
        
             "license": "MIT"

     

       6392
        
           },

     

       6393
        
           "node_modules/data-view-buffer": {

     
···

       12665
        
               "ws": "^7"

     

       12666
        
             }

     

       12667
        
           },

     

       12668
       +
           "node_modules/react-dom": {

     

       12669
       +
             "version": "19.2.0",

     

       12670
       +
             "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-19.2.0.tgz",

     

       12671
       +
             "integrity": "sha512-UlbRu4cAiGaIewkPyiRGJk0imDN2T3JjieT6spoL2UeSf5od4n5LB/mQ4ejmxhCFT1tYe8IvaFulzynWovsEFQ==",

     

       12672
       +
             "license": "MIT",

     

       12673
       +
             "peer": true,

     

       12674
       +
             "dependencies": {

     

       12675
       +
               "scheduler": "^0.27.0"

     

       12676
       +
             },

     

       12677
       +
             "peerDependencies": {

     

       12678
       +
               "react": "^19.2.0"

     

       12679
       +
             }

     

       12680
       +
           },

     

       12681
        
           "node_modules/react-fast-compare": {

     

       12682
        
             "version": "3.2.2",

     

       12683
        
             "resolved": "https://registry.npmjs.org/react-fast-compare/-/react-fast-compare-3.2.2.tgz",

     
···

       13541
        
             "resolved": "https://registry.npmjs.org/sax/-/sax-1.4.1.tgz",

     

       13542
        
             "integrity": "sha512-+aWOz7yVScEGoKNd4PA10LZ8sk0A/z5+nXQG5giUO5rprX9jgYsTdov9qCchZiPIZezbZH+jRut8nPodFAX4Jg==",

     

       13543
        
             "license": "ISC"

     

       13544
       +
           },

     

       13545
       +
           "node_modules/scheduler": {

     

       13546
       +
             "version": "0.27.0",

     

       13547
       +
             "resolved": "https://registry.npmjs.org/scheduler/-/scheduler-0.27.0.tgz",

     

       13548
       +
             "integrity": "sha512-eNv+WrVbKu1f3vbYJT/xtiF5syA5HPIMtf9IgY/nKg0sWqzAUEvqY/xm7OcZc/qafLx/iO9FgOmeSAp4v5ti/Q==",

     

       13549
       +
             "license": "MIT",

     

       13550
       +
             "peer": true

     

       13551
        
           },

     

       13552
        
           "node_modules/semver": {

     

       13553
        
             "version": "7.7.2",

+5 -2

package.json

···

       9
        
           "web": "expo start --web",

     

       10
        
           "lint": "eslint .",

     

       11
        
           "lint:fix": "eslint . --fix",

     

       12
       -
           "type-check": "tsc --noEmit"

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       13
        
         },

     

       14
        
         "dependencies": {

     

       15
       -
           "@atproto/api": "^0.17.1",

     

       16
        
           "@atproto/oauth-client": "^0.5.7",

     

       17
        
           "@atproto/oauth-client-expo": "^0.0.1",

     

       18
        
           "@craftzdog/react-native-buffer": "^6.1.1",

···

       9
        
           "web": "expo start --web",

     

       10
        
           "lint": "eslint .",

     

       11
        
           "lint:fix": "eslint . --fix",

     

       12
       +
           "type-check": "tsc --noEmit",

     

       13
       +
           "validate-config": "node scripts/validate-config.js",

     

       14
       +
           "test-oauth": "bash scripts/test-oauth.sh",

     

       15
       +
           "prestart": "npm run validate-config"

     

       16
        
         },

     

       17
        
         "dependencies": {

     

       18
       +
           "@atproto/api": "^0.17.3",

     

       19
        
           "@atproto/oauth-client": "^0.5.7",

     

       20
        
           "@atproto/oauth-client-expo": "^0.0.1",

     

       21
        
           "@craftzdog/react-native-buffer": "^6.1.1",

+11

run-android.sh

···

       1
       +
       #!/bin/bash

     

       2
       +
       # Convenience script to run Android app with proper environment

     

       3
       +
       

     

       4
       +
       export ANDROID_HOME=$HOME/Android/Sdk

     

       5
       +
       export PATH=$PATH:$ANDROID_HOME/emulator:$ANDROID_HOME/platform-tools

     

       6
       +
       

     

       7
       +
       # Kill any existing metro bundler

     

       8
       +
       lsof -ti:8081 | xargs kill -9 2>/dev/null || true

     

       9
       +
       

     

       10
       +
       # Run the app

     

       11
       +
       npx expo run:android

+125

scripts/test-oauth.sh

···

       1
       +
       #!/bin/bash

     

       2
       +
       # OAuth Testing Script for Coves Mobile

     

       3
       +
       # This script helps verify the OAuth flow is working correctly

     

       4
       +
       

     

       5
       +
       set -e

     

       6
       +
       

     

       7
       +
       echo "🔍 Coves Mobile - OAuth Flow Test"

     

       8
       +
       echo "=================================="

     

       9
       +
       echo ""

     

       10
       +
       

     

       11
       +
       # Colors

     

       12
       +
       GREEN='\033[0;32m'

     

       13
       +
       YELLOW='\033[1;33m'

     

       14
       +
       RED='\033[0;31m'

     

       15
       +
       NC='\033[0m' # No Color

     

       16
       +
       

     

       17
       +
       # 1. Check environment configuration

     

       18
       +
       echo "1️⃣  Checking environment configuration..."

     

       19
       +
       if [ ! -f ".env" ]; then

     

       20
       +
           echo -e "${RED}❌ .env file not found${NC}"

     

       21
       +
           exit 1

     

       22
       +
       fi

     

       23
       +
       

     

       24
       +
       source .env

     

       25
       +
       

     

       26
       +
       if [ -z "$EXPO_PUBLIC_OAUTH_SERVER_URL" ]; then

     

       27
       +
           echo -e "${RED}❌ EXPO_PUBLIC_OAUTH_SERVER_URL not set${NC}"

     

       28
       +
           exit 1

     

       29
       +
       fi

     

       30
       +
       

     

       31
       +
       echo -e "${GREEN}✅ Environment variables configured${NC}"

     

       32
       +
       echo "   - OAuth Server: $EXPO_PUBLIC_OAUTH_SERVER_URL"

     

       33
       +
       echo ""

     

       34
       +
       

     

       35
       +
       # 2. Check client-metadata.json endpoint

     

       36
       +
       echo "2️⃣  Checking client-metadata.json endpoint..."

     

       37
       +
       CLIENT_METADATA_URL="${EXPO_PUBLIC_OAUTH_SERVER_URL}/client-metadata.json"

     

       38
       +
       HTTP_CODE=$(curl -s -o /dev/null -w "%{http_code}" "$CLIENT_METADATA_URL")

     

       39
       +
       

     

       40
       +
       if [ "$HTTP_CODE" == "200" ]; then

     

       41
       +
           echo -e "${GREEN}✅ Client metadata endpoint accessible${NC}"

     

       42
       +
           echo "   Endpoint: $CLIENT_METADATA_URL"

     

       43
       +
           echo ""

     

       44
       +
           echo "   Metadata:"

     

       45
       +
           curl -s "$CLIENT_METADATA_URL" | python3 -m json.tool 2>/dev/null || curl -s "$CLIENT_METADATA_URL"

     

       46
       +
       else

     

       47
       +
           echo -e "${RED}❌ Client metadata endpoint not accessible (HTTP $HTTP_CODE)${NC}"

     

       48
       +
           exit 1

     

       49
       +
       fi

     

       50
       +
       echo ""

     

       51
       +
       

     

       52
       +
       # 3. Check TypeScript compilation

     

       53
       +
       echo "3️⃣  Checking TypeScript compilation..."

     

       54
       +
       if npx tsc --noEmit 2>&1 | grep -q "error TS"; then

     

       55
       +
           echo -e "${RED}❌ TypeScript errors found${NC}"

     

       56
       +
           npx tsc --noEmit

     

       57
       +
           exit 1

     

       58
       +
       else

     

       59
       +
           echo -e "${GREEN}✅ No TypeScript errors${NC}"

     

       60
       +
       fi

     

       61
       +
       echo ""

     

       62
       +
       

     

       63
       +
       # 4. Check app configuration

     

       64
       +
       echo "4️⃣  Checking app.json configuration..."

     

       65
       +
       if grep -q "\"scheme\":" app.json; then

     

       66
       +
           SCHEME=$(grep "\"scheme\":" app.json | cut -d'"' -f4)

     

       67
       +
           echo -e "${GREEN}✅ App scheme configured: $SCHEME${NC}"

     

       68
       +
       else

     

       69
       +
           echo -e "${RED}❌ No app scheme found in app.json${NC}"

     

       70
       +
           exit 1

     

       71
       +
       fi

     

       72
       +
       

     

       73
       +
       if grep -q "\"intentFilters\":" app.json; then

     

       74
       +
           echo -e "${GREEN}✅ Android intent filters configured${NC}"

     

       75
       +
       else

     

       76
       +
           echo -e "${YELLOW}⚠️  No Android intent filters found${NC}"

     

       77
       +
       fi

     

       78
       +
       

     

       79
       +
       if grep -q "\"associatedDomains\":" app.json; then

     

       80
       +
           echo -e "${GREEN}✅ iOS associated domains configured${NC}"

     

       81
       +
       else

     

       82
       +
           echo -e "${YELLOW}⚠️  No iOS associated domains found${NC}"

     

       83
       +
       fi

     

       84
       +
       echo ""

     

       85
       +
       

     

       86
       +
       # 5. Package versions

     

       87
       +
       echo "5️⃣  Checking OAuth package versions..."

     

       88
       +
       OAUTH_CLIENT_VERSION=$(npm list @atproto/oauth-client 2>/dev/null | grep @atproto/oauth-client | cut -d'@' -f3)

     

       89
       +
       OAUTH_CLIENT_EXPO_VERSION=$(npm list @atproto/oauth-client-expo 2>/dev/null | grep @atproto/oauth-client-expo | cut -d'@' -f3)

     

       90
       +
       API_VERSION=$(npm list @atproto/api 2>/dev/null | grep @atproto/api | cut -d'@' -f3)

     

       91
       +
       

     

       92
       +
       echo "   - @atproto/oauth-client: $OAUTH_CLIENT_VERSION"

     

       93
       +
       echo "   - @atproto/oauth-client-expo: $OAUTH_CLIENT_EXPO_VERSION"

     

       94
       +
       echo "   - @atproto/api: $API_VERSION"

     

       95
       +
       echo ""

     

       96
       +
       

     

       97
       +
       # Summary

     

       98
       +
       echo "=================================="

     

       99
       +
       echo -e "${GREEN}✅ All pre-flight checks passed!${NC}"

     

       100
       +
       echo ""

     

       101
       +
       echo "📱 Next steps for testing:"

     

       102
       +
       echo ""

     

       103
       +
       echo "   For Android:"

     

       104
       +
       echo "   $ npm run android"

     

       105
       +
       echo ""

     

       106
       +
       echo "   For iOS:"

     

       107
       +
       echo "   $ npm run ios"

     

       108
       +
       echo ""

     

       109
       +
       echo "   Then test the OAuth flow:"

     

       110
       +
       echo "   1. Tap 'Sign In' on the login screen"

     

       111
       +
       echo "   2. Enter a valid atProto handle (e.g., user.bsky.social)"

     

       112
       +
       echo "   3. Authorize in the browser"

     

       113
       +
       echo "   4. Verify deep link returns to app"

     

       114
       +
       echo "   5. Check that you're logged in"

     

       115
       +
       echo ""

     

       116
       +
       echo "   To test session persistence:"

     

       117
       +
       echo "   1. Force close the app"

     

       118
       +
       echo "   2. Reopen the app"

     

       119
       +
       echo "   3. Verify you're still logged in"

     

       120
       +
       echo ""

     

       121
       +
       echo "🔧 Troubleshooting:"

     

       122
       +
       echo "   - Clear app data: Use '[DEV] Clear Storage' button on login screen"

     

       123
       +
       echo "   - Check logs: Use 'npx react-native log-android' or 'npx react-native log-ios'"

     

       124
       +
       echo "   - Verify redirect URI matches in app.json and .env"

     

       125
       +
       echo ""