npm - @amaster.ai/auth-client - Versions diffs - 1.0.0-beta.6 → 1.0.0-beta.72 - Mend

@amaster.ai/auth-client 1.0.0-beta.6 → 1.0.0-beta.72

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/README.md +252 -79
package/dist/auth.d.cts +66 -4
package/dist/auth.d.ts +66 -4
package/dist/index.cjs +1 -1
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +32 -4
package/dist/index.d.ts +32 -4
package/dist/index.js +1 -1
package/dist/index.js.map +1 -1
package/dist/oauth.d.cts +1 -1
package/dist/oauth.d.ts +1 -1
package/dist/permissions.d.cts +14 -22
package/dist/permissions.d.ts +14 -22
package/dist/sessions.d.cts +1 -1
package/dist/sessions.d.ts +1 -1
package/dist/{types-Bgi_Lwkp.d.cts → types-DGF9cpAg.d.cts} +65 -68
package/dist/{types-Bgi_Lwkp.d.ts → types-DGF9cpAg.d.ts} +65 -68
package/dist/user.d.cts +1 -1
package/dist/user.d.ts +1 -1
package/package.json +2 -2

package/dist/{types-Bgi_Lwkp.d.cts → types-DGF9cpAg.d.cts} RENAMED Viewed

@@ -22,20 +22,24 @@
  * @example
  * Minimal configuration (recommended):
  * ```typescript
- * const options: AuthClientOptions = {
+ * const authClient = createAuthClient();
+ * ```
+ *
+ * @example
+ * With callbacks:
+ * ```typescript
+ * const authClient = createAuthClient({
  *   onTokenExpired: () => window.location.href = "/login",
- * };
+ *   onUnauthorized: () => alert("Session expired"),
+ * });
  * ```
  *
  * @example
- * Full configuration:
+ * With custom base URL:
  * ```typescript
- * const options: AuthClientOptions = {
+ * const authClient = createAuthClient({
  *   baseURL: "https://api.example.com",
- *   storage: "sessionStorage",
- *   onTokenExpired: () => handleTokenExpired(),
- *   onUnauthorized: () => handleUnauthorized(),
- * };
+ * });
  * ```
  */
 interface AuthClientOptions {
@@ -45,11 +49,11 @@ interface AuthClientOptions {
      */
     baseURL?: string;
     /**
-     * Token storage type (defaults to "localStorage")
-     * - localStorage: Persistent across browser sessions
-     * - sessionStorage: Cleared when browser tab closes
+     * Default headers to include in all requests
+     * Useful for adding tenant IDs, API keys, or other common headers
+     * @example { "x-tenant-id": "tenant123", "x-api-key": "key123" }
      */
-    storage?: "localStorage" | "sessionStorage";
+    headers?: Record<string, string>;
     /**
      * Callback when token expires
      * @example () => window.location.href = "/login"
@@ -60,6 +64,35 @@ interface AuthClientOptions {
      * @example () => alert("Session expired")
      */
     onUnauthorized?: () => void;
+    /**
+     * Automatically handle OAuth callback on initialization
+     * When enabled, the client will automatically detect and process OAuth callback URLs with #access_token
+     * @default true
+     * @example
+     * ```typescript
+     * // Enable auto-handling (default)
+     * const authClient = createAuthClient({
+     *   autoHandleOAuthCallback: true,
+     * });
+     *
+     * // Disable if you want to handle OAuth callback manually
+     * const authClient = createAuthClient({
+     *   autoHandleOAuthCallback: false,
+     * });
+     * await authClient.handleOAuthCallback(); // Call manually when needed
+     * ```
+     */
+    autoHandleOAuthCallback?: boolean;
+    /**
+     * Automatically redirect to the current page's `?redirect=...` target after any successful login
+     *
+     * This applies to password login, code login, registration auto-login, mini-program login,
+     * and OAuth callback processing. Set to `false` if your application wants to fully control
+     * post-login navigation.
+     *
+     * @default true
+     */
+    autoRedirectAfterLogin?: boolean;
 }
 /**
  * User information with roles and permissions
@@ -67,7 +100,7 @@ interface AuthClientOptions {
  * Note: This is an optimized format for client-side use.
  * - roles: Only role codes (e.g., ["admin", "user"])
  * - permissions: Only permission names (e.g., ["user.read", "user.write"])
- * - dataScopes: Not included, use getPermissionScope() to load on-demand
+ * - dataScopes: Not included
  *
  * @example
  * ```typescript
@@ -158,46 +191,6 @@ interface Permission {
     description?: string;
     sourceType: "system" | "role" | "direct";
 }
-/**
- * Data scope defining what data a user can access for a permission
- *
- * @example
- * All data:
- * ```typescript
- * { scopeType: "all", scopeFilter: null }
- * ```
- *
- * @example
- * Department-scoped:
- * ```typescript
- * {
- *   scopeType: "department",
- *   scopeFilter: { departmentId: 123 }
- * }
- * ```
- *
- * @example
- * Self only:
- * ```typescript
- * { scopeType: "self", scopeFilter: null }
- * ```
- */
-interface DataScope {
-    /**
-     * Type of data scope:
-     * - "all": User can access all data
-     * - "organization": User can access data in their organization
-     * - "department": User can access data in their department
-     * - "self": User can only access their own data
-     * - "custom": Custom filter defined in scopeFilter
-     */
-    scopeType: "all" | "organization" | "department" | "self" | "custom";
-    /**
-     * Custom filter conditions (used when scopeType="custom")
-     * @example { departmentId: 123, regionId: 456 }
-     */
-    scopeFilter: any;
-}
 /**
  * User registration parameters
  * At least one of username/email/phone must be provided
@@ -337,8 +330,6 @@ interface LoginResponse {
     user: User;
     /** Access token (JWT) for API authentication */
     accessToken: string;
-    /** Refresh token for obtaining new access tokens */
-    refreshToken?: string;
     /** Token expiration time in seconds */
     expiresIn?: number;
 }
@@ -399,7 +390,15 @@ interface ChangePasswordParams {
     oldPassword: string;
     newPassword: string;
 }
-type OAuthProvider = "google" | "github" | "wechat" | "platform";
+/**
+ * OAuth provider types
+ * - google: Google OAuth
+ * - github: GitHub OAuth
+ * - wechat: WeChat Open Platform OAuth (for web/mobile apps)
+ * - wechat_mini: WeChat Mini Program login
+ * - platform: AMaster Platform OAuth
+ */
+type OAuthProvider = "google" | "github" | "wechat" | "wechat_mini" | "platform";
 interface OAuthBinding {
     provider: OAuthProvider;
     providerId: string;
@@ -408,6 +407,15 @@ interface OAuthBinding {
     avatarUrl: string | null;
     createdAt: string;
 }
+/**
+ * WeChat Mini Program phone number response
+ */
+interface MiniProgramPhoneResponse {
+    /** Phone number with country code (e.g., "+8613800138000") */
+    phone: string;
+    /** Whether the phone number is verified by WeChat */
+    phoneVerified: boolean;
+}
 /**
  * Session information for multi-device management
  *
@@ -479,16 +487,5 @@ interface RevokeAllSessionsResponse {
     timestamp?: string;
     revokedCount: number;
 }
-interface CheckPermissionResponse {
-    hasPermission: boolean;
-    dataScope?: DataScope;
-}
-interface BatchCheckPermissionsResponse {
-    [permission: string]: boolean;
-}
-interface PermissionScopeResponse {
-    permission: string;
-    dataScope: DataScope;
-}
-export type { AuthClientOptions as A, BatchCheckPermissionsResponse as B, ChangePasswordParams as C, DataScope as D, EventHandler as E, LoginParams as L, OAuthBinding as O, Permission as P, RefreshTokenResponse as R, SendCodeParams as S, UpdateMeParams as U, AuthEvent as a, CaptchaResponse as b, CheckPermissionResponse as c, CodeLoginParams as d, CodeLoginType as e, LoginResponse as f, LoginType as g, OAuthProvider as h, PermissionDetail as i, PermissionScopeResponse as j, RegisterParams as k, RegisterResponse as l, RevokeAllSessionsResponse as m, Role as n, RoleDetail as o, SendCodeType as p, Session as q, SuccessResponse as r, User as s };
+export type { AuthClientOptions as A, ChangePasswordParams as C, EventHandler as E, LoginParams as L, MiniProgramPhoneResponse as M, OAuthBinding as O, Permission as P, RefreshTokenResponse as R, SendCodeParams as S, UpdateMeParams as U, AuthEvent as a, CaptchaResponse as b, CodeLoginParams as c, CodeLoginType as d, LoginResponse as e, LoginType as f, OAuthProvider as g, PermissionDetail as h, RegisterParams as i, RegisterResponse as j, RevokeAllSessionsResponse as k, Role as l, RoleDetail as m, SendCodeType as n, Session as o, SuccessResponse as p, User as q };

package/dist/{types-Bgi_Lwkp.d.ts → types-DGF9cpAg.d.ts} RENAMED Viewed

@@ -22,20 +22,24 @@
  * @example
  * Minimal configuration (recommended):
  * ```typescript
- * const options: AuthClientOptions = {
+ * const authClient = createAuthClient();
+ * ```
+ *
+ * @example
+ * With callbacks:
+ * ```typescript
+ * const authClient = createAuthClient({
  *   onTokenExpired: () => window.location.href = "/login",
- * };
+ *   onUnauthorized: () => alert("Session expired"),
+ * });
  * ```
  *
  * @example
- * Full configuration:
+ * With custom base URL:
  * ```typescript
- * const options: AuthClientOptions = {
+ * const authClient = createAuthClient({
  *   baseURL: "https://api.example.com",
- *   storage: "sessionStorage",
- *   onTokenExpired: () => handleTokenExpired(),
- *   onUnauthorized: () => handleUnauthorized(),
- * };
+ * });
  * ```
  */
 interface AuthClientOptions {
@@ -45,11 +49,11 @@ interface AuthClientOptions {
      */
     baseURL?: string;
     /**
-     * Token storage type (defaults to "localStorage")
-     * - localStorage: Persistent across browser sessions
-     * - sessionStorage: Cleared when browser tab closes
+     * Default headers to include in all requests
+     * Useful for adding tenant IDs, API keys, or other common headers
+     * @example { "x-tenant-id": "tenant123", "x-api-key": "key123" }
      */
-    storage?: "localStorage" | "sessionStorage";
+    headers?: Record<string, string>;
     /**
      * Callback when token expires
      * @example () => window.location.href = "/login"
@@ -60,6 +64,35 @@ interface AuthClientOptions {
      * @example () => alert("Session expired")
      */
     onUnauthorized?: () => void;
+    /**
+     * Automatically handle OAuth callback on initialization
+     * When enabled, the client will automatically detect and process OAuth callback URLs with #access_token
+     * @default true
+     * @example
+     * ```typescript
+     * // Enable auto-handling (default)
+     * const authClient = createAuthClient({
+     *   autoHandleOAuthCallback: true,
+     * });
+     *
+     * // Disable if you want to handle OAuth callback manually
+     * const authClient = createAuthClient({
+     *   autoHandleOAuthCallback: false,
+     * });
+     * await authClient.handleOAuthCallback(); // Call manually when needed
+     * ```
+     */
+    autoHandleOAuthCallback?: boolean;
+    /**
+     * Automatically redirect to the current page's `?redirect=...` target after any successful login
+     *
+     * This applies to password login, code login, registration auto-login, mini-program login,
+     * and OAuth callback processing. Set to `false` if your application wants to fully control
+     * post-login navigation.
+     *
+     * @default true
+     */
+    autoRedirectAfterLogin?: boolean;
 }
 /**
  * User information with roles and permissions
@@ -67,7 +100,7 @@ interface AuthClientOptions {
  * Note: This is an optimized format for client-side use.
  * - roles: Only role codes (e.g., ["admin", "user"])
  * - permissions: Only permission names (e.g., ["user.read", "user.write"])
- * - dataScopes: Not included, use getPermissionScope() to load on-demand
+ * - dataScopes: Not included
  *
  * @example
  * ```typescript
@@ -158,46 +191,6 @@ interface Permission {
     description?: string;
     sourceType: "system" | "role" | "direct";
 }
-/**
- * Data scope defining what data a user can access for a permission
- *
- * @example
- * All data:
- * ```typescript
- * { scopeType: "all", scopeFilter: null }
- * ```
- *
- * @example
- * Department-scoped:
- * ```typescript
- * {
- *   scopeType: "department",
- *   scopeFilter: { departmentId: 123 }
- * }
- * ```
- *
- * @example
- * Self only:
- * ```typescript
- * { scopeType: "self", scopeFilter: null }
- * ```
- */
-interface DataScope {
-    /**
-     * Type of data scope:
-     * - "all": User can access all data
-     * - "organization": User can access data in their organization
-     * - "department": User can access data in their department
-     * - "self": User can only access their own data
-     * - "custom": Custom filter defined in scopeFilter
-     */
-    scopeType: "all" | "organization" | "department" | "self" | "custom";
-    /**
-     * Custom filter conditions (used when scopeType="custom")
-     * @example { departmentId: 123, regionId: 456 }
-     */
-    scopeFilter: any;
-}
 /**
  * User registration parameters
  * At least one of username/email/phone must be provided
@@ -337,8 +330,6 @@ interface LoginResponse {
     user: User;
     /** Access token (JWT) for API authentication */
     accessToken: string;
-    /** Refresh token for obtaining new access tokens */
-    refreshToken?: string;
     /** Token expiration time in seconds */
     expiresIn?: number;
 }
@@ -399,7 +390,15 @@ interface ChangePasswordParams {
     oldPassword: string;
     newPassword: string;
 }
-type OAuthProvider = "google" | "github" | "wechat" | "platform";
+/**
+ * OAuth provider types
+ * - google: Google OAuth
+ * - github: GitHub OAuth
+ * - wechat: WeChat Open Platform OAuth (for web/mobile apps)
+ * - wechat_mini: WeChat Mini Program login
+ * - platform: AMaster Platform OAuth
+ */
+type OAuthProvider = "google" | "github" | "wechat" | "wechat_mini" | "platform";
 interface OAuthBinding {
     provider: OAuthProvider;
     providerId: string;
@@ -408,6 +407,15 @@ interface OAuthBinding {
     avatarUrl: string | null;
     createdAt: string;
 }
+/**
+ * WeChat Mini Program phone number response
+ */
+interface MiniProgramPhoneResponse {
+    /** Phone number with country code (e.g., "+8613800138000") */
+    phone: string;
+    /** Whether the phone number is verified by WeChat */
+    phoneVerified: boolean;
+}
 /**
  * Session information for multi-device management
  *
@@ -479,16 +487,5 @@ interface RevokeAllSessionsResponse {
     timestamp?: string;
     revokedCount: number;
 }
-interface CheckPermissionResponse {
-    hasPermission: boolean;
-    dataScope?: DataScope;
-}
-interface BatchCheckPermissionsResponse {
-    [permission: string]: boolean;
-}
-interface PermissionScopeResponse {
-    permission: string;
-    dataScope: DataScope;
-}
-export type { AuthClientOptions as A, BatchCheckPermissionsResponse as B, ChangePasswordParams as C, DataScope as D, EventHandler as E, LoginParams as L, OAuthBinding as O, Permission as P, RefreshTokenResponse as R, SendCodeParams as S, UpdateMeParams as U, AuthEvent as a, CaptchaResponse as b, CheckPermissionResponse as c, CodeLoginParams as d, CodeLoginType as e, LoginResponse as f, LoginType as g, OAuthProvider as h, PermissionDetail as i, PermissionScopeResponse as j, RegisterParams as k, RegisterResponse as l, RevokeAllSessionsResponse as m, Role as n, RoleDetail as o, SendCodeType as p, Session as q, SuccessResponse as r, User as s };
+export type { AuthClientOptions as A, ChangePasswordParams as C, EventHandler as E, LoginParams as L, MiniProgramPhoneResponse as M, OAuthBinding as O, Permission as P, RefreshTokenResponse as R, SendCodeParams as S, UpdateMeParams as U, AuthEvent as a, CaptchaResponse as b, CodeLoginParams as c, CodeLoginType as d, LoginResponse as e, LoginType as f, OAuthProvider as g, PermissionDetail as h, RegisterParams as i, RegisterResponse as j, RevokeAllSessionsResponse as k, Role as l, RoleDetail as m, SendCodeType as n, Session as o, SuccessResponse as p, User as q };

package/dist/user.d.cts CHANGED Viewed

@@ -14,7 +14,7 @@
  * ============================================================================
  */
 import { HttpClient, ClientResult } from '@amaster.ai/http-client';
-import { s as User, U as UpdateMeParams, C as ChangePasswordParams, r as SuccessResponse } from './types-Bgi_Lwkp.cjs';
+import { q as User, U as UpdateMeParams, C as ChangePasswordParams, p as SuccessResponse } from './types-DGF9cpAg.cjs';
 /**
  * User Management Module

package/dist/user.d.ts CHANGED Viewed

@@ -14,7 +14,7 @@
  * ============================================================================
  */
 import { HttpClient, ClientResult } from '@amaster.ai/http-client';
-import { s as User, U as UpdateMeParams, C as ChangePasswordParams, r as SuccessResponse } from './types-Bgi_Lwkp.js';
+import { q as User, U as UpdateMeParams, C as ChangePasswordParams, p as SuccessResponse } from './types-DGF9cpAg.js';
 /**
  * User Management Module

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@amaster.ai/auth-client",
-  "version": "1.0.0-beta.6",
+  "version": "1.0.0-beta.72",
   "description": "Authentication SDK for Amaster platform",
   "type": "module",
   "main": "./dist/index.cjs",
@@ -47,7 +47,7 @@
     "registry": "https://registry.npmjs.org/"
   },
   "dependencies": {
-    "@amaster.ai/http-client": "1.0.0-beta.6"
+    "@amaster.ai/http-client": "1.0.0-beta.72"
   },
   "peerDependencies": {
     "axios": "^1.11.0"