npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

capacitor-messenger-notifications

v1.0.1

Published

Capacitor plugin for managing messenger notifications using a web socket in Android and iOS.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

imuhammadnadeemimuhammadnadeem

Keywords

capacitorcapacitor-pluginmessengernotificationssocket.ioandroidios

Readme

capacitor-messenger-notifications

license

Capacitor plugin for managing messenger-style notifications with WebSocket support on Android and iOS. Built for end-to-end encrypted chat applications.

Table of Contents

Features

  • Native Notification Grouping: Groups messages per room using MessagingStyle (Android) and threadIdentifier (iOS), keyed dynamically off the host app's package/bundle ID.
  • End-to-End Decryption: Decrypts room names, usernames, and message bodies on-device using Libsodium (Android) and swift-sodium (iOS) before showing any notification.
  • Persistent WebSocket (Android): A foreground service maintains a live Socket.IO connection for devices without Google Play Services (GMS), auto-reconnecting on token or network changes.
  • FCM Background Fetch (Android): On GMS devices, FcmFetchForegroundService + FcmFetchBackgroundService spin up a short-lived socket session triggered by each FCM push and tear it down cleanly.
  • Job Scheduler Retry (Android): FcmJobService schedules a retry via JobScheduler if the primary fetch fails, ensuring no message is dropped.
  • Background Fetch (iOS): TemporarySocketSessionManager opens a short-lived Socket.IO session inside didReceiveRemoteNotification with idle and max-session timeouts.
  • HTTP Unread Fallback: Both platforms fall back to fetching from the /api/rooms/messages/unread endpoint when a socket session cannot decrypt a message.
  • Rich Notifications: Custom SVG avatar rendering (Android via AndroidSVG), conversation shortcuts, and dismissal tracking.
  • Notification Deduplication: In-memory + persisted message ID tracking prevents showing the same message twice across socket and FCM paths.
  • Dynamic Resources: All icon, app name, and notification group key lookups are resolved from the host app at runtime — no hardcoded app-specific values.
  • window.Notification Polyfill (Android): Injects a polyfill into the WebView so the JS app's new Notification(...) calls route through the native plugin.
  • FCM Token Registration: Registers the device's FCM push token with your backend API automatically after login.

Requirements

  • Capacitor: ^6.0.0 || ^7.0.0 || ^8.0.0
  • Node.js: 18.x or higher
  • iOS: 13.0 or higher
  • Android: API level 22 (Android 5.1) or higher

Install

npm install capacitor-messenger-notifications
npx cap sync

Usage

Permissions

Before showing notifications, check and request permission:

import { MessengerNotifications } from 'capacitor-messenger-notifications';

const status = await MessengerNotifications.checkPermissions();

if (status.notifications !== 'granted') {
  const result = await MessengerNotifications.requestPermissions();
  if (result.notifications !== 'granted') {
    console.warn('Notification permission denied');
  }
}

Show a Notification

await MessengerNotifications.showNotification({
  title: 'Alice',
  body: 'Hey, how are you?',
  roomId: 101,
  roomName: 'General Chat',
  messageId: 'uuid-12345',
  timestamp: Date.now(),
  senderId: 42,
  avatarSvg: '<svg>...</svg>', // optional SVG string for sender avatar
});

Clear a Room's Notifications

await MessengerNotifications.clearRoomNotification({ roomId: 101 });

Cold-Start Navigation

When the user taps a notification to open the app, retrieve the room to navigate to:

const { roomId } = await MessengerNotifications.getPendingRoomId();
if (roomId !== null) {
  router.push(`/room/${roomId}`);
}

Persistent Socket (Android)

On non-GMS Android devices the plugin starts a foreground service that keeps a Socket.IO connection alive. Call this after the user logs in:

await MessengerNotifications.startPersistentSocket({
  url: 'wss://your-chat-server.com',
  token: 'YOUR_AUTH_JWT',
});

// Call when the user logs out
await MessengerNotifications.stopPersistentSocket();

On GMS devices the socket is only opened for the duration of each incoming FCM push. startPersistentSocket stores the credentials but does not start the service.

FCM Token Registration

After the user logs in, trigger FCM token registration with your backend:

await MessengerNotifications.registerFcmToken();

The plugin reads the FCM token and JWT from safe_storage (SharedPreferences / UserDefaults) and POSTs to {backendBaseUrl}/api/users/fcm-token. Registration is skipped automatically if it has already succeeded.

Native Integration

The plugin is typically triggered from native background handlers:

Android — Inside your FirebaseMessagingService.onMessageReceived:

// Kicks off the full fetch → decrypt → notify pipeline
FcmFetchManager.retrieveMessages(context, remoteMessage.getData());

iOS — Inside application(_:didReceiveRemoteNotification:fetchCompletionHandler:):

EncryptedMessageNotifier.notifyFromPushData(userInfo as? [String: Any] ?? [:])

Setup by Platform

Android

1. Safe Storage Keys

The plugin reads credentials from SharedPreferences file "safe_storage". Your JS app should write the following keys (e.g. via a SafeStorage plugin):

| Key | Description | | --- | --- | | token / authToken | User's JWT for socket auth and API calls | | socketUrl | WebSocket server URL | | backendBaseUrl / serverUrl / ... | HTTP base URL for the unread messages API | | fcmToken | FCM registration token (written by Firebase) | | roomDecryptedKeys | JSON map of room E2EE private keys | | memberDecryptedKeys | JSON map of member E2EE private keys |

2. Required Resources

Add the following drawables to your host app's res/drawable/ so the plugin can find them at runtime (fallback to system icons if absent):

| Resource | Purpose | | --- | --- | | ic_notification.png | Small notification icon (monochrome, white on transparent) | | ic_transparent.png | Transparent icon for the persistent service notification |

3. AndroidManifest.xml

The plugin's manifest already declares all necessary services and permissions. If you need to override, merge the following into your app's manifest:

<uses-permission android:name="android.permission.INTERNET" />
<uses-permission android:name="android.permission.WAKE_LOCK" />
<uses-permission android:name="android.permission.FOREGROUND_SERVICE" />
<uses-permission android:name="android.permission.FOREGROUND_SERVICE_DATA_SYNC" />
<uses-permission android:name="android.permission.POST_NOTIFICATIONS" />
<uses-permission android:name="android.permission.RECEIVE_BOOT_COMPLETED" />

4. ProGuard

Add to your proguard-rules.pro:

-keep class com.codecraft_studio.messenger.notifications.** { *; }
-keep class io.socket.** { *; }
-keep class org.java_websocket.** { *; }

iOS

1. Capabilities

In Xcode, enable the following for your app target:

  • Push Notifications
  • Background Modes → check Remote notifications and Background fetch

2. AppDelegate

Forward remote notifications to the plugin:

import UIKit
import Capacitor

@UIApplicationMain
class AppDelegate: UIResponder, UIApplicationDelegate {

    func application(
        _ application: UIApplication,
        didReceiveRemoteNotification userInfo: [AnyHashable: Any],
        fetchCompletionHandler completionHandler: @escaping (UIBackgroundFetchResult) -> Void
    ) {
        let data = userInfo as? [String: Any] ?? [:]
        let handled = EncryptedMessageNotifier.notifyFromPushData(data)
        completionHandler(handled ? .newData : .noData)
    }
}

3. Safe Storage Keys

The plugin reads from UserDefaults suite "safe_storage". Write the following keys from your JS app:

| Key | Description | | --- | --- | | token / authToken | User's JWT | | socketUrl | WebSocket server URL | | backendBaseUrl / serverUrl / ... | HTTP base URL | | fcmToken | APNs/FCM token | | roomDecryptedKeys | JSON map of room E2EE private keys | | memberDecryptedKeys | JSON map of member E2EE private keys |

How It Works

Message Flow (Android)

FCM push received
       │
       ▼
FcmFetchManager.retrieveMessages()
       │
       ├─► FcmFetchForegroundService  (keep process alive + wake lock)
       │
       ├─► TemporarySocketSessionManager.runSession()
       │         └─► socket.emit("sync_messages")
       │              └─► EncryptedMessageNotifier.notifyFromSyncMessagesResponse()
       │                       └─► NativeCrypto.decrypt*()
       │                              └─► NotificationHelper.showRoomNotification()
       │
       └─► [fallback] UnreadMessagesFetcher.fetchAndNotify()  (HTTP API)

Message Flow (iOS)

Silent push received
       │
       ▼
EncryptedMessageNotifier.notifyFromPushData()
       │
       ├─► Direct decrypt from push payload
       │
       └─► [fallback] TemporarySocketSessionManager.runSession()
                  └─► UnreadMessagesFetcher.fetchAndNotify()  (HTTP API)

API

showNotification(options)

Shows a native grouped chat notification.

| Option | Type | Required | Description | | ----------- | -------- | -------- | ---------------------------------------------------------- | | title | string | ✓ | Sender name displayed in the notification | | body | string | ✓ | Message body | | roomId | number | ✓ | Room identifier used for grouping | | messageId | string | | Unique message ID for deduplication | | timestamp | number | | Unix timestamp (ms) for message ordering | | roomName | string | | Room display name shown in notification subtitle | | senderId | number | | Sender's user ID (used for avatar/Person identity) | | avatarSvg | string | | SVG string for the sender's avatar |

clearRoomNotification(options)

Cancels all active notifications for a room and clears its in-memory history.

| Option | Type | Required | Description | | -------- | -------- | -------- | -------------------------------------------- | | roomId | number | ✓ | Room whose notifications should be cleared |

getPendingRoomId()

Returns the roomId from the notification that launched the app (cold start), then clears it. Returns { roomId: null } if the app was not opened via a notification.

startPersistentSocket(options)

Stores socket credentials and starts the persistent foreground service on non-GMS Android devices.

| Option | Type | Required | Description | | ------- | -------- | -------- | -------------------- | | url | string | ✓ | WebSocket server URL | | token | string | ✓ | JWT auth token |

stopPersistentSocket()

Stops the persistent socket foreground service.

checkPermissions()

Returns the current notification permission state.

Returns: Promise<{ notifications: 'granted' | 'denied' | 'prompt' }>

requestPermissions()

Prompts the user for notification permission.

Returns: Promise<{ notifications: 'granted' | 'denied' | 'prompt' }>

registerFcmToken()

Triggers registration of the device's FCM/APNs token with the backend server. Reads fcmToken, JWT, and backend URL from safe_storage. No-ops if already registered or if prerequisites are missing.

Troubleshooting

Android: Notifications not appearing after FCM push

  1. Confirm roomDecryptedKeys and memberDecryptedKeys are written to safe_storage before the push arrives.
  2. Check Logcat for EncryptedMessageNotifier, NativeCrypto, and NotificationHelper tags.
  3. Ensure ic_notification drawable exists in the host app (required for the notification icon).

Android: Persistent service is killed

Ensure android:foregroundServiceType="dataSync" is declared on PersistentSocketService (already set in the plugin manifest). On Android 14+ the system enforces this.

Android: Duplicate notifications

The plugin deduplicates by messageId. Ensure each message has a unique, stable messageId in the FCM payload.

iOS: Notifications not grouping

Confirm the same roomId is passed to showNotification and that Background Modes are enabled for the app target in Xcode.

iOS: Decryption failing

Ensure roomDecryptedKeys and memberDecryptedKeys are present in UserDefaults suite "safe_storage" before the silent push arrives.

Development

npm run build    # compile TypeScript
npm run lint     # run ESLint
npm run fmt      # run Prettier
npm run verify   # build + lint + native checks

Contributing

Please see CONTRIBUTING.md for details.

License

MIT