@amtarc/auth-utils 1.0.1

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 amtarc
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,82 @@
+# @amtarc/auth-utils
+
+> Core authentication and session management utilities
+
+## Installation
+
+```bash
+pnpm add @amtarc/auth-utils
+```
+
+## Features
+
+- ✅ Session creation and validation
+- ✅ Session guards and middleware
+- ✅ Framework-agnostic design
+- ✅ TypeScript-first with full type safety
+- ✅ Zero runtime dependencies
+
+## Quick Start
+
+```typescript
+import { createSession, validateSession, requireSession } from '@amtarc/auth-utils';
+
+// Create a session
+const session = createSession('user-123', {
+  expiresIn: 1000 * 60 * 60 * 24, // 24 hours
+  idleTimeout: 1000 * 60 * 30, // 30 minutes
+});
+
+// Validate a session
+const validation = validateSession(session);
+if (!validation.valid) {
+  console.error('Session invalid:', validation.reason);
+}
+
+// Use as a guard
+const getSession = () => getCurrentSession(); // Your session retrieval logic
+const guard = requireSession(getSession);
+
+const handler = guard(async (session) => {
+  return { userId: session.userId };
+});
+```
+
+## API Reference
+
+### `createSession(userId, options)`
+
+Creates a new session for a user.
+
+**Parameters:**
+- `userId` (string): The user ID
+- `options` (SessionOptions): Configuration options
+  - `expiresIn` (number): Session lifetime in milliseconds (default: 7 days)
+  - `idleTimeout` (number): Idle timeout in milliseconds
+  - `fingerprint` (boolean): Enable session fingerprinting
+
+**Returns:** `Session<TUser>`
+
+### `validateSession(session, options)`
+
+Validates a session against expiration and idle timeout rules.
+
+**Parameters:**
+- `session` (Session): The session to validate
+- `options` (SessionOptions): Validation options
+
+**Returns:** `ValidationResult`
+
+### `requireSession(getSession, options)`
+
+Creates a guard that requires a valid session.
+
+**Parameters:**
+- `getSession` (() => Session | Promise<Session | null>): Function to retrieve session
+- `options` (SessionOptions): Session validation options
+
+**Returns:** Guard function
+
+## License
+
+MIT

package/dist/chunk-5MVLFEZI.js

@@ -0,0 +1,67 @@
+import { SessionExpiredError } from './chunk-MAVNKELK.js';
+import { randomBytes } from 'crypto';
+
+function generateSessionId() {
+  const timestamp = Date.now().toString(36);
+  const randomPart = randomBytes(16).toString("hex");
+  return `session_${timestamp}_${randomPart}`;
+}
+function createSession(userId, options = {}) {
+  const now = /* @__PURE__ */ new Date();
+  const expiresIn = options.expiresIn ?? 1e3 * 60 * 60 * 24 * 7;
+  const session = {
+    id: generateSessionId(),
+    userId,
+    expiresAt: new Date(now.getTime() + expiresIn),
+    createdAt: now,
+    lastActivityAt: now
+  };
+  if (options.fingerprint) {
+    session.metadata = { fingerprint: true };
+  }
+  return session;
+}
+
+// src/session/validate-session.ts
+function validateSession(session, options = {}) {
+  const now = /* @__PURE__ */ new Date();
+  if (!session.id || !session.userId || !session.expiresAt) {
+    return { valid: false, reason: "invalid" };
+  }
+  if (now > session.expiresAt) {
+    return { valid: false, reason: "expired" };
+  }
+  if (options.idleTimeout && session.lastActivityAt) {
+    const idleTime = now.getTime() - session.lastActivityAt.getTime();
+    if (idleTime > options.idleTimeout) {
+      return { valid: false, reason: "idle-timeout" };
+    }
+  }
+  const totalLifetime = session.expiresAt.getTime() - session.createdAt.getTime();
+  const elapsed = now.getTime() - session.createdAt.getTime();
+  const shouldRefresh = elapsed > totalLifetime * 0.5;
+  return { valid: true, shouldRefresh };
+}
+
+// src/session/require-session.ts
+function requireSession(getSession, options = {}) {
+  return function(handler) {
+    return async () => {
+      const session = await getSession();
+      if (!session) {
+        throw new SessionExpiredError("No active session found");
+      }
+      const validation = validateSession(session, options);
+      if (!validation.valid) {
+        throw new SessionExpiredError(
+          `Session ${validation.reason || "invalid"}`
+        );
+      }
+      return handler(session);
+    };
+  };
+}
+
+export { createSession, requireSession, validateSession };
+//# sourceMappingURL=chunk-5MVLFEZI.js.map
+//# sourceMappingURL=chunk-5MVLFEZI.js.map

package/dist/chunk-5MVLFEZI.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/session/create-session.ts","../src/session/validate-session.ts","../src/session/require-session.ts"],"names":[],"mappings":";;;AAMA,SAAS,iBAAA,GAA4B;AACnC,EAAA,MAAM,SAAA,GAAY,IAAA,CAAK,GAAA,EAAI,CAAE,SAAS,EAAE,CAAA;AACxC,EAAA,MAAM,UAAA,GAAa,WAAA,CAAY,EAAE,CAAA,CAAE,SAAS,KAAK,CAAA;AACjD,EAAA,OAAO,CAAA,QAAA,EAAW,SAAS,CAAA,CAAA,EAAI,UAAU,CAAA,CAAA;AAC3C;AAiBO,SAAS,aAAA,CACd,MAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AACrB,EAAA,MAAM,YAAY,OAAA,CAAQ,SAAA,IAAa,GAAA,GAAO,EAAA,GAAK,KAAK,EAAA,GAAK,CAAA;AAE7D,EAAA,MAAM,OAAA,GAA0B;AAAA,IAC9B,IAAI,iBAAA,EAAkB;AAAA,IACtB,MAAA;AAAA,IACA,WAAW,IAAI,IAAA,CAAK,GAAA,CAAI,OAAA,KAAY,SAAS,CAAA;AAAA,IAC7C,SAAA,EAAW,GAAA;AAAA,IACX,cAAA,EAAgB;AAAA,GAClB;AAEA,EAAA,IAAI,QAAQ,WAAA,EAAa;AACvB,IAAA,OAAA,CAAQ,QAAA,GAAW,EAAE,WAAA,EAAa,IAAA,EAAK;AAAA,EACzC;AAEA,EAAA,OAAO,OAAA;AACT;;;AClBO,SAAS,eAAA,CACd,OAAA,EACA,OAAA,GAA0B,EAAC,EACT;AAClB,EAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AAGrB,EAAA,IAAI,CAAC,QAAQ,EAAA,IAAM,CAAC,QAAQ,MAAA,IAAU,CAAC,QAAQ,SAAA,EAAW;AACxD,IAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,MAAA,EAAQ,SAAA,EAAU;AAAA,EAC3C;AAGA,EAAA,IAAI,GAAA,GAAM,QAAQ,SAAA,EAAW;AAC3B,IAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,MAAA,EAAQ,SAAA,EAAU;AAAA,EAC3C;AAGA,EAAA,IAAI,OAAA,CAAQ,WAAA,IAAe,OAAA,CAAQ,cAAA,EAAgB;AACjD,IAAA,MAAM,WAAW,GAAA,CAAI,OAAA,EAAQ,GAAI,OAAA,CAAQ,eAAe,OAAA,EAAQ;AAChE,IAAA,IAAI,QAAA,GAAW,QAAQ,WAAA,EAAa;AAClC,MAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,MAAA,EAAQ,cAAA,EAAe;AAAA,IAChD;AAAA,EACF;AAGA,EAAA,MAAM,gBACJ,OAAA,CAAQ,SAAA,CAAU,SAAQ,GAAI,OAAA,CAAQ,UAAU,OAAA,EAAQ;AAC1D,EAAA,MAAM,UAAU,GAAA,CAAI,OAAA,EAAQ,GAAI,OAAA,CAAQ,UAAU,OAAA,EAAQ;AAC1D,EAAA,MAAM,aAAA,GAAgB,UAAU,aAAA,GAAgB,GAAA;AAEhD,EAAA,OAAO,EAAE,KAAA,EAAO,IAAA,EAAM,aAAA,EAAc;AACtC;;;AC9BO,SAAS,cAAA,CACd,UAAA,EACA,OAAA,GAA0B,EAAC,EAC3B;AACA,EAAA,OAAO,SACL,OAAA,EACwB;AACxB,IAAA,OAAO,YAAY;AACjB,MAAA,MAAM,OAAA,GAAU,MAAM,UAAA,EAAW;AAEjC,MAAA,IAAI,CAAC,OAAA,EAAS;AACZ,QAAA,MAAM,IAAI,oBAAoB,yBAAyB,CAAA;AAAA,MACzD;AAEA,MAAA,MAAM,UAAA,GAAa,eAAA,CAAgB,OAAA,EAAS,OAAO,CAAA;AAEnD,MAAA,IAAI,CAAC,WAAW,KAAA,EAAO;AACrB,QAAA,MAAM,IAAI,mBAAA;AAAA,UACR,CAAA,QAAA,EAAW,UAAA,CAAW,MAAA,IAAU,SAAS,CAAA;AAAA,SAC3C;AAAA,MACF;AAEA,MAAA,OAAO,QAAQ,OAAO,CAAA;AAAA,IACxB,CAAA;AAAA,EACF,CAAA;AACF","file":"chunk-5MVLFEZI.js","sourcesContent":["import type { Session, SessionOptions, User } from '../types';\nimport { randomBytes } from 'crypto';\n\n/**\n * Generates a secure random session ID\n */\nfunction generateSessionId(): string {\n  const timestamp = Date.now().toString(36);\n  const randomPart = randomBytes(16).toString('hex');\n  return `session_${timestamp}_${randomPart}`;\n}\n\n/**\n * Creates a new session for a user\n *\n * @param userId - The user ID to create a session for\n * @param options - Session configuration options\n * @returns A new session object\n *\n * @example\n * ```ts\n * const session = createSession('user-123', {\n *   expiresIn: 1000 * 60 * 60 * 24, // 24 hours\n *   idleTimeout: 1000 * 60 * 30, // 30 minutes\n * });\n * ```\n */\nexport function createSession<TUser extends User = User>(\n  userId: string,\n  options: SessionOptions = {}\n): Session<TUser> {\n  const now = new Date();\n  const expiresIn = options.expiresIn ?? 1000 * 60 * 60 * 24 * 7; // 7 days default\n\n  const session: Session<TUser> = {\n    id: generateSessionId(),\n    userId,\n    expiresAt: new Date(now.getTime() + expiresIn),\n    createdAt: now,\n    lastActivityAt: now,\n  };\n\n  if (options.fingerprint) {\n    session.metadata = { fingerprint: true };\n  }\n\n  return session;\n}\n","import type { Session, SessionOptions, User } from '../types';\n\n/**\n * Validation result\n */\nexport interface ValidationResult {\n  valid: boolean;\n  reason?: 'expired' | 'idle-timeout' | 'invalid';\n  shouldRefresh?: boolean;\n}\n\n/**\n * Validates a session\n *\n * @param session - The session to validate\n * @param options - Validation options\n * @returns Validation result\n *\n * @example\n * ```ts\n * const result = validateSession(session, {\n *   idleTimeout: 1000 * 60 * 30, // 30 minutes\n * });\n *\n * if (!result.valid) {\n *   throw new SessionExpiredError(result.reason);\n * }\n * ```\n */\nexport function validateSession<TUser extends User = User>(\n  session: Session<TUser>,\n  options: SessionOptions = {}\n): ValidationResult {\n  const now = new Date();\n\n  // Check if session structure is valid\n  if (!session.id || !session.userId || !session.expiresAt) {\n    return { valid: false, reason: 'invalid' };\n  }\n\n  // Check absolute expiration\n  if (now > session.expiresAt) {\n    return { valid: false, reason: 'expired' };\n  }\n\n  // Check idle timeout\n  if (options.idleTimeout && session.lastActivityAt) {\n    const idleTime = now.getTime() - session.lastActivityAt.getTime();\n    if (idleTime > options.idleTimeout) {\n      return { valid: false, reason: 'idle-timeout' };\n    }\n  }\n\n  // Check if session should be refreshed (>50% through its lifetime)\n  const totalLifetime =\n    session.expiresAt.getTime() - session.createdAt.getTime();\n  const elapsed = now.getTime() - session.createdAt.getTime();\n  const shouldRefresh = elapsed > totalLifetime * 0.5;\n\n  return { valid: true, shouldRefresh };\n}\n","import type { Session, SessionOptions, User } from '../types';\nimport { validateSession } from './validate-session';\nimport { SessionExpiredError } from '../errors';\n\n/**\n * Session handler callback\n */\nexport type SessionHandler<TUser extends User = User, TResult = unknown> = (\n  _session: Session<TUser>\n) => TResult | Promise<TResult>;\n\n/**\n * Creates a guard that requires a valid session\n *\n * @param getSession - Function to retrieve the current session\n * @param options - Session options for validation\n * @returns A function that wraps a handler with session validation\n *\n * @example\n * ```ts\n * const guard = requireSession(\n *   async () => getCurrentSession(),\n *   { idleTimeout: 1000 * 60 * 30 }\n * );\n *\n * const handler = guard(async (session) => {\n *   return { userId: session.userId };\n * });\n * ```\n */\nexport function requireSession<TUser extends User = User>(\n  getSession: () => Session<TUser> | Promise<Session<TUser> | null> | null,\n  options: SessionOptions = {}\n) {\n  return function <TResult>(\n    handler: SessionHandler<TUser, TResult>\n  ): () => Promise<TResult> {\n    return async () => {\n      const session = await getSession();\n\n      if (!session) {\n        throw new SessionExpiredError('No active session found');\n      }\n\n      const validation = validateSession(session, options);\n\n      if (!validation.valid) {\n        throw new SessionExpiredError(\n          `Session ${validation.reason || 'invalid'}`\n        );\n      }\n\n      return handler(session);\n    };\n  };\n}\n"]}

package/dist/chunk-5XQQYIDO.js

@@ -0,0 +1,3 @@
+
+//# sourceMappingURL=chunk-5XQQYIDO.js.map
+//# sourceMappingURL=chunk-5XQQYIDO.js.map

package/dist/chunk-5XQQYIDO.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"chunk-5XQQYIDO.js"}

package/dist/chunk-LBCZ2NQO.cjs

@@ -0,0 +1,4 @@
+'use strict';
+
+//# sourceMappingURL=chunk-LBCZ2NQO.cjs.map
+//# sourceMappingURL=chunk-LBCZ2NQO.cjs.map

package/dist/chunk-LBCZ2NQO.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"chunk-LBCZ2NQO.cjs"}

package/dist/chunk-MAVNKELK.js

@@ -0,0 +1,65 @@
+// src/errors/base-errors.ts
+var AuthError = class _AuthError extends Error {
+  code;
+  constructor(message, code) {
+    super(message);
+    this.name = "AuthError";
+    this.code = code;
+    Object.setPrototypeOf(this, _AuthError.prototype);
+  }
+};
+var AuthenticationError = class _AuthenticationError extends AuthError {
+  constructor(message = "Authentication failed") {
+    super(message, "AUTHENTICATION_ERROR");
+    this.name = "AuthenticationError";
+    Object.setPrototypeOf(this, _AuthenticationError.prototype);
+  }
+};
+var AuthorizationError = class _AuthorizationError extends AuthError {
+  constructor(message = "Authorization failed") {
+    super(message, "AUTHORIZATION_ERROR");
+    this.name = "AuthorizationError";
+    Object.setPrototypeOf(this, _AuthorizationError.prototype);
+  }
+};
+var InvalidTokenError = class _InvalidTokenError extends AuthError {
+  constructor(message = "Invalid token") {
+    super(message, "INVALID_TOKEN");
+    this.name = "InvalidTokenError";
+    Object.setPrototypeOf(this, _InvalidTokenError.prototype);
+  }
+};
+var RateLimitError = class _RateLimitError extends AuthError {
+  constructor(message = "Rate limit exceeded") {
+    super(message, "RATE_LIMIT_EXCEEDED");
+    this.name = "RateLimitError";
+    Object.setPrototypeOf(this, _RateLimitError.prototype);
+  }
+};
+var CSRFError = class _CSRFError extends AuthError {
+  constructor(message = "CSRF validation failed") {
+    super(message, "CSRF_ERROR");
+    this.name = "CSRFError";
+    Object.setPrototypeOf(this, _CSRFError.prototype);
+  }
+};
+
+// src/errors/session-errors.ts
+var SessionExpiredError = class _SessionExpiredError extends AuthError {
+  constructor(message = "Session expired") {
+    super(message, "SESSION_EXPIRED");
+    this.name = "SessionExpiredError";
+    Object.setPrototypeOf(this, _SessionExpiredError.prototype);
+  }
+};
+var InvalidSessionError = class _InvalidSessionError extends AuthError {
+  constructor(message = "Invalid session") {
+    super(message, "INVALID_SESSION");
+    this.name = "InvalidSessionError";
+    Object.setPrototypeOf(this, _InvalidSessionError.prototype);
+  }
+};
+
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError };
+//# sourceMappingURL=chunk-MAVNKELK.js.map
+//# sourceMappingURL=chunk-MAVNKELK.js.map

package/dist/chunk-MAVNKELK.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/errors/base-errors.ts","../src/errors/session-errors.ts"],"names":[],"mappings":";AAGO,IAAM,SAAA,GAAN,MAAM,UAAA,SAAkB,KAAA,CAAM;AAAA,EACnB,IAAA;AAAA,EAEhB,WAAA,CAAY,SAAiB,IAAA,EAAc;AACzC,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AACZ,IAAA,IAAA,CAAK,IAAA,GAAO,IAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,UAAA,CAAU,SAAS,CAAA;AAAA,EACjD;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,WAAA,CAAY,UAAkB,uBAAA,EAAyB;AACrD,IAAA,KAAA,CAAM,SAAS,sBAAsB,CAAA;AACrC,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,kBAAA,GAAN,MAAM,mBAAA,SAA2B,SAAA,CAAU;AAAA,EAChD,WAAA,CAAY,UAAkB,sBAAA,EAAwB;AACpD,IAAA,KAAA,CAAM,SAAS,qBAAqB,CAAA;AACpC,IAAA,IAAA,CAAK,IAAA,GAAO,oBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,mBAAA,CAAmB,SAAS,CAAA;AAAA,EAC1D;AACF;AAKO,IAAM,iBAAA,GAAN,MAAM,kBAAA,SAA0B,SAAA,CAAU;AAAA,EAC/C,WAAA,CAAY,UAAkB,eAAA,EAAiB;AAC7C,IAAA,KAAA,CAAM,SAAS,eAAe,CAAA;AAC9B,IAAA,IAAA,CAAK,IAAA,GAAO,mBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,kBAAA,CAAkB,SAAS,CAAA;AAAA,EACzD;AACF;AAKO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,SAAA,CAAU;AAAA,EAC5C,WAAA,CAAY,UAAkB,qBAAA,EAAuB;AACnD,IAAA,KAAA,CAAM,SAAS,qBAAqB,CAAA;AACpC,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF;AAKO,IAAM,SAAA,GAAN,MAAM,UAAA,SAAkB,SAAA,CAAU;AAAA,EACvC,WAAA,CAAY,UAAkB,wBAAA,EAA0B;AACtD,IAAA,KAAA,CAAM,SAAS,YAAY,CAAA;AAC3B,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,UAAA,CAAU,SAAS,CAAA;AAAA,EACjD;AACF;;;AC9DO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,WAAA,CAAY,UAAkB,iBAAA,EAAmB;AAC/C,IAAA,KAAA,CAAM,SAAS,iBAAiB,CAAA;AAChC,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,WAAA,CAAY,UAAkB,iBAAA,EAAmB;AAC/C,IAAA,KAAA,CAAM,SAAS,iBAAiB,CAAA;AAChC,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF","file":"chunk-MAVNKELK.js","sourcesContent":["/**\n * Base authentication error\n */\nexport class AuthError extends Error {\n  public readonly code: string;\n\n  constructor(message: string, code: string) {\n    super(message);\n    this.name = 'AuthError';\n    this.code = code;\n    Object.setPrototypeOf(this, AuthError.prototype);\n  }\n}\n\n/**\n * Authentication failed error\n */\nexport class AuthenticationError extends AuthError {\n  constructor(message: string = 'Authentication failed') {\n    super(message, 'AUTHENTICATION_ERROR');\n    this.name = 'AuthenticationError';\n    Object.setPrototypeOf(this, AuthenticationError.prototype);\n  }\n}\n\n/**\n * Authorization failed error\n */\nexport class AuthorizationError extends AuthError {\n  constructor(message: string = 'Authorization failed') {\n    super(message, 'AUTHORIZATION_ERROR');\n    this.name = 'AuthorizationError';\n    Object.setPrototypeOf(this, AuthorizationError.prototype);\n  }\n}\n\n/**\n * Invalid token error\n */\nexport class InvalidTokenError extends AuthError {\n  constructor(message: string = 'Invalid token') {\n    super(message, 'INVALID_TOKEN');\n    this.name = 'InvalidTokenError';\n    Object.setPrototypeOf(this, InvalidTokenError.prototype);\n  }\n}\n\n/**\n * Rate limit exceeded error\n */\nexport class RateLimitError extends AuthError {\n  constructor(message: string = 'Rate limit exceeded') {\n    super(message, 'RATE_LIMIT_EXCEEDED');\n    this.name = 'RateLimitError';\n    Object.setPrototypeOf(this, RateLimitError.prototype);\n  }\n}\n\n/**\n * CSRF validation failed error\n */\nexport class CSRFError extends AuthError {\n  constructor(message: string = 'CSRF validation failed') {\n    super(message, 'CSRF_ERROR');\n    this.name = 'CSRFError';\n    Object.setPrototypeOf(this, CSRFError.prototype);\n  }\n}\n","import { AuthError } from './base-errors';\n\n/**\n * Session expired error\n */\nexport class SessionExpiredError extends AuthError {\n  constructor(message: string = 'Session expired') {\n    super(message, 'SESSION_EXPIRED');\n    this.name = 'SessionExpiredError';\n    Object.setPrototypeOf(this, SessionExpiredError.prototype);\n  }\n}\n\n/**\n * Invalid session error\n */\nexport class InvalidSessionError extends AuthError {\n  constructor(message: string = 'Invalid session') {\n    super(message, 'INVALID_SESSION');\n    this.name = 'InvalidSessionError';\n    Object.setPrototypeOf(this, InvalidSessionError.prototype);\n  }\n}\n"]}

package/dist/chunk-NW5NFB77.cjs

@@ -0,0 +1,71 @@
+'use strict';
+
+var chunkRGDYDO4P_cjs = require('./chunk-RGDYDO4P.cjs');
+var crypto = require('crypto');
+
+function generateSessionId() {
+  const timestamp = Date.now().toString(36);
+  const randomPart = crypto.randomBytes(16).toString("hex");
+  return `session_${timestamp}_${randomPart}`;
+}
+function createSession(userId, options = {}) {
+  const now = /* @__PURE__ */ new Date();
+  const expiresIn = options.expiresIn ?? 1e3 * 60 * 60 * 24 * 7;
+  const session = {
+    id: generateSessionId(),
+    userId,
+    expiresAt: new Date(now.getTime() + expiresIn),
+    createdAt: now,
+    lastActivityAt: now
+  };
+  if (options.fingerprint) {
+    session.metadata = { fingerprint: true };
+  }
+  return session;
+}
+
+// src/session/validate-session.ts
+function validateSession(session, options = {}) {
+  const now = /* @__PURE__ */ new Date();
+  if (!session.id || !session.userId || !session.expiresAt) {
+    return { valid: false, reason: "invalid" };
+  }
+  if (now > session.expiresAt) {
+    return { valid: false, reason: "expired" };
+  }
+  if (options.idleTimeout && session.lastActivityAt) {
+    const idleTime = now.getTime() - session.lastActivityAt.getTime();
+    if (idleTime > options.idleTimeout) {
+      return { valid: false, reason: "idle-timeout" };
+    }
+  }
+  const totalLifetime = session.expiresAt.getTime() - session.createdAt.getTime();
+  const elapsed = now.getTime() - session.createdAt.getTime();
+  const shouldRefresh = elapsed > totalLifetime * 0.5;
+  return { valid: true, shouldRefresh };
+}
+
+// src/session/require-session.ts
+function requireSession(getSession, options = {}) {
+  return function(handler) {
+    return async () => {
+      const session = await getSession();
+      if (!session) {
+        throw new chunkRGDYDO4P_cjs.SessionExpiredError("No active session found");
+      }
+      const validation = validateSession(session, options);
+      if (!validation.valid) {
+        throw new chunkRGDYDO4P_cjs.SessionExpiredError(
+          `Session ${validation.reason || "invalid"}`
+        );
+      }
+      return handler(session);
+    };
+  };
+}
+
+exports.createSession = createSession;
+exports.requireSession = requireSession;
+exports.validateSession = validateSession;
+//# sourceMappingURL=chunk-NW5NFB77.cjs.map
+//# sourceMappingURL=chunk-NW5NFB77.cjs.map

package/dist/chunk-NW5NFB77.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/session/create-session.ts","../src/session/validate-session.ts","../src/session/require-session.ts"],"names":["randomBytes","SessionExpiredError"],"mappings":";;;;;AAMA,SAAS,iBAAA,GAA4B;AACnC,EAAA,MAAM,SAAA,GAAY,IAAA,CAAK,GAAA,EAAI,CAAE,SAAS,EAAE,CAAA;AACxC,EAAA,MAAM,UAAA,GAAaA,kBAAA,CAAY,EAAE,CAAA,CAAE,SAAS,KAAK,CAAA;AACjD,EAAA,OAAO,CAAA,QAAA,EAAW,SAAS,CAAA,CAAA,EAAI,UAAU,CAAA,CAAA;AAC3C;AAiBO,SAAS,aAAA,CACd,MAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AACrB,EAAA,MAAM,YAAY,OAAA,CAAQ,SAAA,IAAa,GAAA,GAAO,EAAA,GAAK,KAAK,EAAA,GAAK,CAAA;AAE7D,EAAA,MAAM,OAAA,GAA0B;AAAA,IAC9B,IAAI,iBAAA,EAAkB;AAAA,IACtB,MAAA;AAAA,IACA,WAAW,IAAI,IAAA,CAAK,GAAA,CAAI,OAAA,KAAY,SAAS,CAAA;AAAA,IAC7C,SAAA,EAAW,GAAA;AAAA,IACX,cAAA,EAAgB;AAAA,GAClB;AAEA,EAAA,IAAI,QAAQ,WAAA,EAAa;AACvB,IAAA,OAAA,CAAQ,QAAA,GAAW,EAAE,WAAA,EAAa,IAAA,EAAK;AAAA,EACzC;AAEA,EAAA,OAAO,OAAA;AACT;;;AClBO,SAAS,eAAA,CACd,OAAA,EACA,OAAA,GAA0B,EAAC,EACT;AAClB,EAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AAGrB,EAAA,IAAI,CAAC,QAAQ,EAAA,IAAM,CAAC,QAAQ,MAAA,IAAU,CAAC,QAAQ,SAAA,EAAW;AACxD,IAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,MAAA,EAAQ,SAAA,EAAU;AAAA,EAC3C;AAGA,EAAA,IAAI,GAAA,GAAM,QAAQ,SAAA,EAAW;AAC3B,IAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,MAAA,EAAQ,SAAA,EAAU;AAAA,EAC3C;AAGA,EAAA,IAAI,OAAA,CAAQ,WAAA,IAAe,OAAA,CAAQ,cAAA,EAAgB;AACjD,IAAA,MAAM,WAAW,GAAA,CAAI,OAAA,EAAQ,GAAI,OAAA,CAAQ,eAAe,OAAA,EAAQ;AAChE,IAAA,IAAI,QAAA,GAAW,QAAQ,WAAA,EAAa;AAClC,MAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,MAAA,EAAQ,cAAA,EAAe;AAAA,IAChD;AAAA,EACF;AAGA,EAAA,MAAM,gBACJ,OAAA,CAAQ,SAAA,CAAU,SAAQ,GAAI,OAAA,CAAQ,UAAU,OAAA,EAAQ;AAC1D,EAAA,MAAM,UAAU,GAAA,CAAI,OAAA,EAAQ,GAAI,OAAA,CAAQ,UAAU,OAAA,EAAQ;AAC1D,EAAA,MAAM,aAAA,GAAgB,UAAU,aAAA,GAAgB,GAAA;AAEhD,EAAA,OAAO,EAAE,KAAA,EAAO,IAAA,EAAM,aAAA,EAAc;AACtC;;;AC9BO,SAAS,cAAA,CACd,UAAA,EACA,OAAA,GAA0B,EAAC,EAC3B;AACA,EAAA,OAAO,SACL,OAAA,EACwB;AACxB,IAAA,OAAO,YAAY;AACjB,MAAA,MAAM,OAAA,GAAU,MAAM,UAAA,EAAW;AAEjC,MAAA,IAAI,CAAC,OAAA,EAAS;AACZ,QAAA,MAAM,IAAIC,sCAAoB,yBAAyB,CAAA;AAAA,MACzD;AAEA,MAAA,MAAM,UAAA,GAAa,eAAA,CAAgB,OAAA,EAAS,OAAO,CAAA;AAEnD,MAAA,IAAI,CAAC,WAAW,KAAA,EAAO;AACrB,QAAA,MAAM,IAAIA,qCAAA;AAAA,UACR,CAAA,QAAA,EAAW,UAAA,CAAW,MAAA,IAAU,SAAS,CAAA;AAAA,SAC3C;AAAA,MACF;AAEA,MAAA,OAAO,QAAQ,OAAO,CAAA;AAAA,IACxB,CAAA;AAAA,EACF,CAAA;AACF","file":"chunk-NW5NFB77.cjs","sourcesContent":["import type { Session, SessionOptions, User } from '../types';\nimport { randomBytes } from 'crypto';\n\n/**\n * Generates a secure random session ID\n */\nfunction generateSessionId(): string {\n  const timestamp = Date.now().toString(36);\n  const randomPart = randomBytes(16).toString('hex');\n  return `session_${timestamp}_${randomPart}`;\n}\n\n/**\n * Creates a new session for a user\n *\n * @param userId - The user ID to create a session for\n * @param options - Session configuration options\n * @returns A new session object\n *\n * @example\n * ```ts\n * const session = createSession('user-123', {\n *   expiresIn: 1000 * 60 * 60 * 24, // 24 hours\n *   idleTimeout: 1000 * 60 * 30, // 30 minutes\n * });\n * ```\n */\nexport function createSession<TUser extends User = User>(\n  userId: string,\n  options: SessionOptions = {}\n): Session<TUser> {\n  const now = new Date();\n  const expiresIn = options.expiresIn ?? 1000 * 60 * 60 * 24 * 7; // 7 days default\n\n  const session: Session<TUser> = {\n    id: generateSessionId(),\n    userId,\n    expiresAt: new Date(now.getTime() + expiresIn),\n    createdAt: now,\n    lastActivityAt: now,\n  };\n\n  if (options.fingerprint) {\n    session.metadata = { fingerprint: true };\n  }\n\n  return session;\n}\n","import type { Session, SessionOptions, User } from '../types';\n\n/**\n * Validation result\n */\nexport interface ValidationResult {\n  valid: boolean;\n  reason?: 'expired' | 'idle-timeout' | 'invalid';\n  shouldRefresh?: boolean;\n}\n\n/**\n * Validates a session\n *\n * @param session - The session to validate\n * @param options - Validation options\n * @returns Validation result\n *\n * @example\n * ```ts\n * const result = validateSession(session, {\n *   idleTimeout: 1000 * 60 * 30, // 30 minutes\n * });\n *\n * if (!result.valid) {\n *   throw new SessionExpiredError(result.reason);\n * }\n * ```\n */\nexport function validateSession<TUser extends User = User>(\n  session: Session<TUser>,\n  options: SessionOptions = {}\n): ValidationResult {\n  const now = new Date();\n\n  // Check if session structure is valid\n  if (!session.id || !session.userId || !session.expiresAt) {\n    return { valid: false, reason: 'invalid' };\n  }\n\n  // Check absolute expiration\n  if (now > session.expiresAt) {\n    return { valid: false, reason: 'expired' };\n  }\n\n  // Check idle timeout\n  if (options.idleTimeout && session.lastActivityAt) {\n    const idleTime = now.getTime() - session.lastActivityAt.getTime();\n    if (idleTime > options.idleTimeout) {\n      return { valid: false, reason: 'idle-timeout' };\n    }\n  }\n\n  // Check if session should be refreshed (>50% through its lifetime)\n  const totalLifetime =\n    session.expiresAt.getTime() - session.createdAt.getTime();\n  const elapsed = now.getTime() - session.createdAt.getTime();\n  const shouldRefresh = elapsed > totalLifetime * 0.5;\n\n  return { valid: true, shouldRefresh };\n}\n","import type { Session, SessionOptions, User } from '../types';\nimport { validateSession } from './validate-session';\nimport { SessionExpiredError } from '../errors';\n\n/**\n * Session handler callback\n */\nexport type SessionHandler<TUser extends User = User, TResult = unknown> = (\n  _session: Session<TUser>\n) => TResult | Promise<TResult>;\n\n/**\n * Creates a guard that requires a valid session\n *\n * @param getSession - Function to retrieve the current session\n * @param options - Session options for validation\n * @returns A function that wraps a handler with session validation\n *\n * @example\n * ```ts\n * const guard = requireSession(\n *   async () => getCurrentSession(),\n *   { idleTimeout: 1000 * 60 * 30 }\n * );\n *\n * const handler = guard(async (session) => {\n *   return { userId: session.userId };\n * });\n * ```\n */\nexport function requireSession<TUser extends User = User>(\n  getSession: () => Session<TUser> | Promise<Session<TUser> | null> | null,\n  options: SessionOptions = {}\n) {\n  return function <TResult>(\n    handler: SessionHandler<TUser, TResult>\n  ): () => Promise<TResult> {\n    return async () => {\n      const session = await getSession();\n\n      if (!session) {\n        throw new SessionExpiredError('No active session found');\n      }\n\n      const validation = validateSession(session, options);\n\n      if (!validation.valid) {\n        throw new SessionExpiredError(\n          `Session ${validation.reason || 'invalid'}`\n        );\n      }\n\n      return handler(session);\n    };\n  };\n}\n"]}

package/dist/chunk-OIQMYYPZ.cjs

@@ -0,0 +1,4 @@
+'use strict';
+
+//# sourceMappingURL=chunk-OIQMYYPZ.cjs.map
+//# sourceMappingURL=chunk-OIQMYYPZ.cjs.map

package/dist/chunk-OIQMYYPZ.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"chunk-OIQMYYPZ.cjs"}

package/dist/chunk-RGDYDO4P.cjs

@@ -0,0 +1,74 @@
+'use strict';
+
+// src/errors/base-errors.ts
+var AuthError = class _AuthError extends Error {
+  code;
+  constructor(message, code) {
+    super(message);
+    this.name = "AuthError";
+    this.code = code;
+    Object.setPrototypeOf(this, _AuthError.prototype);
+  }
+};
+var AuthenticationError = class _AuthenticationError extends AuthError {
+  constructor(message = "Authentication failed") {
+    super(message, "AUTHENTICATION_ERROR");
+    this.name = "AuthenticationError";
+    Object.setPrototypeOf(this, _AuthenticationError.prototype);
+  }
+};
+var AuthorizationError = class _AuthorizationError extends AuthError {
+  constructor(message = "Authorization failed") {
+    super(message, "AUTHORIZATION_ERROR");
+    this.name = "AuthorizationError";
+    Object.setPrototypeOf(this, _AuthorizationError.prototype);
+  }
+};
+var InvalidTokenError = class _InvalidTokenError extends AuthError {
+  constructor(message = "Invalid token") {
+    super(message, "INVALID_TOKEN");
+    this.name = "InvalidTokenError";
+    Object.setPrototypeOf(this, _InvalidTokenError.prototype);
+  }
+};
+var RateLimitError = class _RateLimitError extends AuthError {
+  constructor(message = "Rate limit exceeded") {
+    super(message, "RATE_LIMIT_EXCEEDED");
+    this.name = "RateLimitError";
+    Object.setPrototypeOf(this, _RateLimitError.prototype);
+  }
+};
+var CSRFError = class _CSRFError extends AuthError {
+  constructor(message = "CSRF validation failed") {
+    super(message, "CSRF_ERROR");
+    this.name = "CSRFError";
+    Object.setPrototypeOf(this, _CSRFError.prototype);
+  }
+};
+
+// src/errors/session-errors.ts
+var SessionExpiredError = class _SessionExpiredError extends AuthError {
+  constructor(message = "Session expired") {
+    super(message, "SESSION_EXPIRED");
+    this.name = "SessionExpiredError";
+    Object.setPrototypeOf(this, _SessionExpiredError.prototype);
+  }
+};
+var InvalidSessionError = class _InvalidSessionError extends AuthError {
+  constructor(message = "Invalid session") {
+    super(message, "INVALID_SESSION");
+    this.name = "InvalidSessionError";
+    Object.setPrototypeOf(this, _InvalidSessionError.prototype);
+  }
+};
+
+exports.AuthError = AuthError;
+exports.AuthenticationError = AuthenticationError;
+exports.AuthorizationError = AuthorizationError;
+exports.CSRFError = CSRFError;
+exports.InvalidSessionError = InvalidSessionError;
+exports.InvalidTokenError = InvalidTokenError;
+exports.RateLimitError = RateLimitError;
+exports.SessionExpiredError = SessionExpiredError;
+//# sourceMappingURL=chunk-RGDYDO4P.cjs.map
+//# sourceMappingURL=chunk-RGDYDO4P.cjs.map

package/dist/chunk-RGDYDO4P.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/errors/base-errors.ts","../src/errors/session-errors.ts"],"names":[],"mappings":";;;AAGO,IAAM,SAAA,GAAN,MAAM,UAAA,SAAkB,KAAA,CAAM;AAAA,EACnB,IAAA;AAAA,EAEhB,WAAA,CAAY,SAAiB,IAAA,EAAc;AACzC,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AACZ,IAAA,IAAA,CAAK,IAAA,GAAO,IAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,UAAA,CAAU,SAAS,CAAA;AAAA,EACjD;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,WAAA,CAAY,UAAkB,uBAAA,EAAyB;AACrD,IAAA,KAAA,CAAM,SAAS,sBAAsB,CAAA;AACrC,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,kBAAA,GAAN,MAAM,mBAAA,SAA2B,SAAA,CAAU;AAAA,EAChD,WAAA,CAAY,UAAkB,sBAAA,EAAwB;AACpD,IAAA,KAAA,CAAM,SAAS,qBAAqB,CAAA;AACpC,IAAA,IAAA,CAAK,IAAA,GAAO,oBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,mBAAA,CAAmB,SAAS,CAAA;AAAA,EAC1D;AACF;AAKO,IAAM,iBAAA,GAAN,MAAM,kBAAA,SAA0B,SAAA,CAAU;AAAA,EAC/C,WAAA,CAAY,UAAkB,eAAA,EAAiB;AAC7C,IAAA,KAAA,CAAM,SAAS,eAAe,CAAA;AAC9B,IAAA,IAAA,CAAK,IAAA,GAAO,mBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,kBAAA,CAAkB,SAAS,CAAA;AAAA,EACzD;AACF;AAKO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,SAAA,CAAU;AAAA,EAC5C,WAAA,CAAY,UAAkB,qBAAA,EAAuB;AACnD,IAAA,KAAA,CAAM,SAAS,qBAAqB,CAAA;AACpC,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF;AAKO,IAAM,SAAA,GAAN,MAAM,UAAA,SAAkB,SAAA,CAAU;AAAA,EACvC,WAAA,CAAY,UAAkB,wBAAA,EAA0B;AACtD,IAAA,KAAA,CAAM,SAAS,YAAY,CAAA;AAC3B,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,UAAA,CAAU,SAAS,CAAA;AAAA,EACjD;AACF;;;AC9DO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,WAAA,CAAY,UAAkB,iBAAA,EAAmB;AAC/C,IAAA,KAAA,CAAM,SAAS,iBAAiB,CAAA;AAChC,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,WAAA,CAAY,UAAkB,iBAAA,EAAmB;AAC/C,IAAA,KAAA,CAAM,SAAS,iBAAiB,CAAA;AAChC,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF","file":"chunk-RGDYDO4P.cjs","sourcesContent":["/**\n * Base authentication error\n */\nexport class AuthError extends Error {\n  public readonly code: string;\n\n  constructor(message: string, code: string) {\n    super(message);\n    this.name = 'AuthError';\n    this.code = code;\n    Object.setPrototypeOf(this, AuthError.prototype);\n  }\n}\n\n/**\n * Authentication failed error\n */\nexport class AuthenticationError extends AuthError {\n  constructor(message: string = 'Authentication failed') {\n    super(message, 'AUTHENTICATION_ERROR');\n    this.name = 'AuthenticationError';\n    Object.setPrototypeOf(this, AuthenticationError.prototype);\n  }\n}\n\n/**\n * Authorization failed error\n */\nexport class AuthorizationError extends AuthError {\n  constructor(message: string = 'Authorization failed') {\n    super(message, 'AUTHORIZATION_ERROR');\n    this.name = 'AuthorizationError';\n    Object.setPrototypeOf(this, AuthorizationError.prototype);\n  }\n}\n\n/**\n * Invalid token error\n */\nexport class InvalidTokenError extends AuthError {\n  constructor(message: string = 'Invalid token') {\n    super(message, 'INVALID_TOKEN');\n    this.name = 'InvalidTokenError';\n    Object.setPrototypeOf(this, InvalidTokenError.prototype);\n  }\n}\n\n/**\n * Rate limit exceeded error\n */\nexport class RateLimitError extends AuthError {\n  constructor(message: string = 'Rate limit exceeded') {\n    super(message, 'RATE_LIMIT_EXCEEDED');\n    this.name = 'RateLimitError';\n    Object.setPrototypeOf(this, RateLimitError.prototype);\n  }\n}\n\n/**\n * CSRF validation failed error\n */\nexport class CSRFError extends AuthError {\n  constructor(message: string = 'CSRF validation failed') {\n    super(message, 'CSRF_ERROR');\n    this.name = 'CSRFError';\n    Object.setPrototypeOf(this, CSRFError.prototype);\n  }\n}\n","import { AuthError } from './base-errors';\n\n/**\n * Session expired error\n */\nexport class SessionExpiredError extends AuthError {\n  constructor(message: string = 'Session expired') {\n    super(message, 'SESSION_EXPIRED');\n    this.name = 'SessionExpiredError';\n    Object.setPrototypeOf(this, SessionExpiredError.prototype);\n  }\n}\n\n/**\n * Invalid session error\n */\nexport class InvalidSessionError extends AuthError {\n  constructor(message: string = 'Invalid session') {\n    super(message, 'INVALID_SESSION');\n    this.name = 'InvalidSessionError';\n    Object.setPrototypeOf(this, InvalidSessionError.prototype);\n  }\n}\n"]}

package/dist/chunk-USPZICST.js

@@ -0,0 +1,3 @@
+
+//# sourceMappingURL=chunk-USPZICST.js.map
+//# sourceMappingURL=chunk-USPZICST.js.map

package/dist/chunk-USPZICST.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"chunk-USPZICST.js"}

package/dist/cookies/index.cjs

@@ -0,0 +1,6 @@
+'use strict';
+
+require('../chunk-LBCZ2NQO.cjs');
+
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/cookies/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.cjs"}

package/dist/cookies/index.d.cts

@@ -0,0 +1,2 @@
+
+export {  }

package/dist/cookies/index.d.ts

@@ -0,0 +1,2 @@
+
+export {  }

package/dist/cookies/index.js

@@ -0,0 +1,3 @@
+import '../chunk-5XQQYIDO.js';
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/cookies/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.js"}

package/dist/errors/index.cjs

@@ -0,0 +1,40 @@
+'use strict';
+
+var chunkRGDYDO4P_cjs = require('../chunk-RGDYDO4P.cjs');
+
+
+
+Object.defineProperty(exports, "AuthError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.AuthError; }
+});
+Object.defineProperty(exports, "AuthenticationError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.AuthenticationError; }
+});
+Object.defineProperty(exports, "AuthorizationError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.AuthorizationError; }
+});
+Object.defineProperty(exports, "CSRFError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.CSRFError; }
+});
+Object.defineProperty(exports, "InvalidSessionError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.InvalidSessionError; }
+});
+Object.defineProperty(exports, "InvalidTokenError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.InvalidTokenError; }
+});
+Object.defineProperty(exports, "RateLimitError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.RateLimitError; }
+});
+Object.defineProperty(exports, "SessionExpiredError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.SessionExpiredError; }
+});
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/errors/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.cjs"}

package/dist/errors/index.d.cts

@@ -0,0 +1,52 @@
+/**
+ * Base authentication error
+ */
+declare class AuthError extends Error {
+    readonly code: string;
+    constructor(message: string, code: string);
+}
+/**
+ * Authentication failed error
+ */
+declare class AuthenticationError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Authorization failed error
+ */
+declare class AuthorizationError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Invalid token error
+ */
+declare class InvalidTokenError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Rate limit exceeded error
+ */
+declare class RateLimitError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * CSRF validation failed error
+ */
+declare class CSRFError extends AuthError {
+    constructor(message?: string);
+}
+
+/**
+ * Session expired error
+ */
+declare class SessionExpiredError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Invalid session error
+ */
+declare class InvalidSessionError extends AuthError {
+    constructor(message?: string);
+}
+
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError };

package/dist/errors/index.d.ts

@@ -0,0 +1,52 @@
+/**
+ * Base authentication error
+ */
+declare class AuthError extends Error {
+    readonly code: string;
+    constructor(message: string, code: string);
+}
+/**
+ * Authentication failed error
+ */
+declare class AuthenticationError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Authorization failed error
+ */
+declare class AuthorizationError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Invalid token error
+ */
+declare class InvalidTokenError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Rate limit exceeded error
+ */
+declare class RateLimitError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * CSRF validation failed error
+ */
+declare class CSRFError extends AuthError {
+    constructor(message?: string);
+}
+
+/**
+ * Session expired error
+ */
+declare class SessionExpiredError extends AuthError {
+    constructor(message?: string);
+}
+/**
+ * Invalid session error
+ */
+declare class InvalidSessionError extends AuthError {
+    constructor(message?: string);
+}
+
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError };

package/dist/errors/index.js

@@ -0,0 +1,3 @@
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError } from '../chunk-MAVNKELK.js';
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/errors/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.js"}

package/dist/guards/index.cjs

@@ -0,0 +1,6 @@
+'use strict';
+
+require('../chunk-OIQMYYPZ.cjs');
+
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/guards/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.cjs"}

package/dist/guards/index.d.cts

@@ -0,0 +1,2 @@
+
+export {  }

package/dist/guards/index.d.ts

@@ -0,0 +1,2 @@
+
+export {  }

package/dist/guards/index.js

@@ -0,0 +1,3 @@
+import '../chunk-USPZICST.js';
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/guards/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.js"}

package/dist/index-Bg3pYjD_.d.cts

@@ -0,0 +1,138 @@
+/**
+ * Core type definitions for @amtarc/auth-utils
+ */
+/**
+ * Base user type - meant to be extended by consumers
+ */
+interface User {
+    id: string;
+    [key: string]: unknown;
+}
+/**
+ * Session data structure
+ */
+interface Session<TUser extends User = User> {
+    id: string;
+    userId: string;
+    user?: TUser;
+    expiresAt: Date;
+    createdAt: Date;
+    lastActivityAt: Date;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Session options
+ */
+interface SessionOptions {
+    /** Session expiration time in milliseconds */
+    expiresIn?: number;
+    /** Idle timeout in milliseconds */
+    idleTimeout?: number;
+    /** Absolute timeout in milliseconds */
+    absoluteTimeout?: number;
+    /** Enable session fingerprinting */
+    fingerprint?: boolean;
+}
+/**
+ * Cookie options
+ */
+interface CookieOptions {
+    httpOnly?: boolean;
+    secure?: boolean;
+    sameSite?: 'strict' | 'lax' | 'none';
+    domain?: string;
+    path?: string;
+    maxAge?: number;
+    signed?: boolean;
+    encrypted?: boolean;
+}
+/**
+ * Request context (framework-agnostic)
+ */
+interface RequestContext {
+    headers: Record<string, string | string[] | undefined>;
+    cookies: Record<string, string>;
+    url: string;
+    method: string;
+    ip?: string;
+}
+/**
+ * Response context (framework-agnostic)
+ */
+interface ResponseContext {
+    setHeader(_name: string, _value: string): void;
+    setCookie(_name: string, _value: string, _options?: CookieOptions): void;
+    redirect?(_url: string, _status?: number): void;
+}
+
+/**
+ * Creates a new session for a user
+ *
+ * @param userId - The user ID to create a session for
+ * @param options - Session configuration options
+ * @returns A new session object
+ *
+ * @example
+ * ```ts
+ * const session = createSession('user-123', {
+ *   expiresIn: 1000 * 60 * 60 * 24, // 24 hours
+ *   idleTimeout: 1000 * 60 * 30, // 30 minutes
+ * });
+ * ```
+ */
+declare function createSession<TUser extends User = User>(userId: string, options?: SessionOptions): Session<TUser>;
+
+/**
+ * Validation result
+ */
+interface ValidationResult {
+    valid: boolean;
+    reason?: 'expired' | 'idle-timeout' | 'invalid';
+    shouldRefresh?: boolean;
+}
+/**
+ * Validates a session
+ *
+ * @param session - The session to validate
+ * @param options - Validation options
+ * @returns Validation result
+ *
+ * @example
+ * ```ts
+ * const result = validateSession(session, {
+ *   idleTimeout: 1000 * 60 * 30, // 30 minutes
+ * });
+ *
+ * if (!result.valid) {
+ *   throw new SessionExpiredError(result.reason);
+ * }
+ * ```
+ */
+declare function validateSession<TUser extends User = User>(session: Session<TUser>, options?: SessionOptions): ValidationResult;
+
+/**
+ * Session handler callback
+ */
+type SessionHandler<TUser extends User = User, TResult = unknown> = (_session: Session<TUser>) => TResult | Promise<TResult>;
+/**
+ * Creates a guard that requires a valid session
+ *
+ * @param getSession - Function to retrieve the current session
+ * @param options - Session options for validation
+ * @returns A function that wraps a handler with session validation
+ *
+ * @example
+ * ```ts
+ * const guard = requireSession(
+ *   async () => getCurrentSession(),
+ *   { idleTimeout: 1000 * 60 * 30 }
+ * );
+ *
+ * const handler = guard(async (session) => {
+ *   return { userId: session.userId };
+ * });
+ * ```
+ */
+declare function requireSession<TUser extends User = User>(getSession: () => Session<TUser> | Promise<Session<TUser> | null> | null, options?: SessionOptions): <TResult>(handler: SessionHandler<TUser, TResult>) => () => Promise<TResult>;
+
+export { type CookieOptions as C, type RequestContext as R, type Session as S, type User as U, type ResponseContext as a, type SessionOptions as b, createSession as c, requireSession as r, validateSession as v };

package/dist/index-Bg3pYjD_.d.ts

@@ -0,0 +1,138 @@
+/**
+ * Core type definitions for @amtarc/auth-utils
+ */
+/**
+ * Base user type - meant to be extended by consumers
+ */
+interface User {
+    id: string;
+    [key: string]: unknown;
+}
+/**
+ * Session data structure
+ */
+interface Session<TUser extends User = User> {
+    id: string;
+    userId: string;
+    user?: TUser;
+    expiresAt: Date;
+    createdAt: Date;
+    lastActivityAt: Date;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Session options
+ */
+interface SessionOptions {
+    /** Session expiration time in milliseconds */
+    expiresIn?: number;
+    /** Idle timeout in milliseconds */
+    idleTimeout?: number;
+    /** Absolute timeout in milliseconds */
+    absoluteTimeout?: number;
+    /** Enable session fingerprinting */
+    fingerprint?: boolean;
+}
+/**
+ * Cookie options
+ */
+interface CookieOptions {
+    httpOnly?: boolean;
+    secure?: boolean;
+    sameSite?: 'strict' | 'lax' | 'none';
+    domain?: string;
+    path?: string;
+    maxAge?: number;
+    signed?: boolean;
+    encrypted?: boolean;
+}
+/**
+ * Request context (framework-agnostic)
+ */
+interface RequestContext {
+    headers: Record<string, string | string[] | undefined>;
+    cookies: Record<string, string>;
+    url: string;
+    method: string;
+    ip?: string;
+}
+/**
+ * Response context (framework-agnostic)
+ */
+interface ResponseContext {
+    setHeader(_name: string, _value: string): void;
+    setCookie(_name: string, _value: string, _options?: CookieOptions): void;
+    redirect?(_url: string, _status?: number): void;
+}
+
+/**
+ * Creates a new session for a user
+ *
+ * @param userId - The user ID to create a session for
+ * @param options - Session configuration options
+ * @returns A new session object
+ *
+ * @example
+ * ```ts
+ * const session = createSession('user-123', {
+ *   expiresIn: 1000 * 60 * 60 * 24, // 24 hours
+ *   idleTimeout: 1000 * 60 * 30, // 30 minutes
+ * });
+ * ```
+ */
+declare function createSession<TUser extends User = User>(userId: string, options?: SessionOptions): Session<TUser>;
+
+/**
+ * Validation result
+ */
+interface ValidationResult {
+    valid: boolean;
+    reason?: 'expired' | 'idle-timeout' | 'invalid';
+    shouldRefresh?: boolean;
+}
+/**
+ * Validates a session
+ *
+ * @param session - The session to validate
+ * @param options - Validation options
+ * @returns Validation result
+ *
+ * @example
+ * ```ts
+ * const result = validateSession(session, {
+ *   idleTimeout: 1000 * 60 * 30, // 30 minutes
+ * });
+ *
+ * if (!result.valid) {
+ *   throw new SessionExpiredError(result.reason);
+ * }
+ * ```
+ */
+declare function validateSession<TUser extends User = User>(session: Session<TUser>, options?: SessionOptions): ValidationResult;
+
+/**
+ * Session handler callback
+ */
+type SessionHandler<TUser extends User = User, TResult = unknown> = (_session: Session<TUser>) => TResult | Promise<TResult>;
+/**
+ * Creates a guard that requires a valid session
+ *
+ * @param getSession - Function to retrieve the current session
+ * @param options - Session options for validation
+ * @returns A function that wraps a handler with session validation
+ *
+ * @example
+ * ```ts
+ * const guard = requireSession(
+ *   async () => getCurrentSession(),
+ *   { idleTimeout: 1000 * 60 * 30 }
+ * );
+ *
+ * const handler = guard(async (session) => {
+ *   return { userId: session.userId };
+ * });
+ * ```
+ */
+declare function requireSession<TUser extends User = User>(getSession: () => Session<TUser> | Promise<Session<TUser> | null> | null, options?: SessionOptions): <TResult>(handler: SessionHandler<TUser, TResult>) => () => Promise<TResult>;
+
+export { type CookieOptions as C, type RequestContext as R, type Session as S, type User as U, type ResponseContext as a, type SessionOptions as b, createSession as c, requireSession as r, validateSession as v };

package/dist/index.cjs

@@ -0,0 +1,57 @@
+'use strict';
+
+require('./chunk-OIQMYYPZ.cjs');
+require('./chunk-LBCZ2NQO.cjs');
+var chunkNW5NFB77_cjs = require('./chunk-NW5NFB77.cjs');
+var chunkRGDYDO4P_cjs = require('./chunk-RGDYDO4P.cjs');
+
+// src/index.ts
+var VERSION = "1.0.0";
+
+Object.defineProperty(exports, "createSession", {
+  enumerable: true,
+  get: function () { return chunkNW5NFB77_cjs.createSession; }
+});
+Object.defineProperty(exports, "requireSession", {
+  enumerable: true,
+  get: function () { return chunkNW5NFB77_cjs.requireSession; }
+});
+Object.defineProperty(exports, "validateSession", {
+  enumerable: true,
+  get: function () { return chunkNW5NFB77_cjs.validateSession; }
+});
+Object.defineProperty(exports, "AuthError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.AuthError; }
+});
+Object.defineProperty(exports, "AuthenticationError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.AuthenticationError; }
+});
+Object.defineProperty(exports, "AuthorizationError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.AuthorizationError; }
+});
+Object.defineProperty(exports, "CSRFError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.CSRFError; }
+});
+Object.defineProperty(exports, "InvalidSessionError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.InvalidSessionError; }
+});
+Object.defineProperty(exports, "InvalidTokenError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.InvalidTokenError; }
+});
+Object.defineProperty(exports, "RateLimitError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.RateLimitError; }
+});
+Object.defineProperty(exports, "SessionExpiredError", {
+  enumerable: true,
+  get: function () { return chunkRGDYDO4P_cjs.SessionExpiredError; }
+});
+exports.VERSION = VERSION;
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;AAYO,IAAM,OAAA,GAAU","file":"index.cjs","sourcesContent":["/**\n * @amtarc/auth-utils\n *\n * Enterprise-grade authentication and session management utilities\n */\n\nexport * from './types';\nexport * from './session';\nexport * from './guards';\nexport * from './cookies';\nexport * from './errors';\n\nexport const VERSION = '1.0.0';\n"]}

package/dist/index.d.cts

@@ -0,0 +1,12 @@
+export { C as CookieOptions, R as RequestContext, a as ResponseContext, S as Session, b as SessionOptions, U as User, c as createSession, r as requireSession, v as validateSession } from './index-Bg3pYjD_.cjs';
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError } from './errors/index.cjs';
+
+/**
+ * @amtarc/auth-utils
+ *
+ * Enterprise-grade authentication and session management utilities
+ */
+
+declare const VERSION = "1.0.0";
+
+export { VERSION };

package/dist/index.d.ts

@@ -0,0 +1,12 @@
+export { C as CookieOptions, R as RequestContext, a as ResponseContext, S as Session, b as SessionOptions, U as User, c as createSession, r as requireSession, v as validateSession } from './index-Bg3pYjD_.js';
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError } from './errors/index.js';
+
+/**
+ * @amtarc/auth-utils
+ *
+ * Enterprise-grade authentication and session management utilities
+ */
+
+declare const VERSION = "1.0.0";
+
+export { VERSION };

package/dist/index.js

@@ -0,0 +1,11 @@
+import './chunk-USPZICST.js';
+import './chunk-5XQQYIDO.js';
+export { createSession, requireSession, validateSession } from './chunk-5MVLFEZI.js';
+export { AuthError, AuthenticationError, AuthorizationError, CSRFError, InvalidSessionError, InvalidTokenError, RateLimitError, SessionExpiredError } from './chunk-MAVNKELK.js';
+
+// src/index.ts
+var VERSION = "1.0.0";
+
+export { VERSION };
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/index.ts"],"names":[],"mappings":";;;;;;AAYO,IAAM,OAAA,GAAU","file":"index.js","sourcesContent":["/**\n * @amtarc/auth-utils\n *\n * Enterprise-grade authentication and session management utilities\n */\n\nexport * from './types';\nexport * from './session';\nexport * from './guards';\nexport * from './cookies';\nexport * from './errors';\n\nexport const VERSION = '1.0.0';\n"]}

package/dist/session/index.cjs

@@ -0,0 +1,21 @@
+'use strict';
+
+var chunkNW5NFB77_cjs = require('../chunk-NW5NFB77.cjs');
+require('../chunk-RGDYDO4P.cjs');
+
+
+
+Object.defineProperty(exports, "createSession", {
+  enumerable: true,
+  get: function () { return chunkNW5NFB77_cjs.createSession; }
+});
+Object.defineProperty(exports, "requireSession", {
+  enumerable: true,
+  get: function () { return chunkNW5NFB77_cjs.requireSession; }
+});
+Object.defineProperty(exports, "validateSession", {
+  enumerable: true,
+  get: function () { return chunkNW5NFB77_cjs.validateSession; }
+});
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/session/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.cjs"}

package/dist/session/index.d.cts

@@ -0,0 +1 @@
+export { S as Session, b as SessionOptions, c as createSession, r as requireSession, v as validateSession } from '../index-Bg3pYjD_.cjs';

package/dist/session/index.d.ts

@@ -0,0 +1 @@
+export { S as Session, b as SessionOptions, c as createSession, r as requireSession, v as validateSession } from '../index-Bg3pYjD_.js';

package/dist/session/index.js

@@ -0,0 +1,4 @@
+export { createSession, requireSession, validateSession } from '../chunk-5MVLFEZI.js';
+import '../chunk-MAVNKELK.js';
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/session/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.js"}

package/package.json

@@ -0,0 +1,71 @@
+{
+  "name": "@amtarc/auth-utils",
+  "version": "1.0.1",
+  "description": "Core authentication and session management utilities",
+  "type": "module",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs",
+      "types": "./dist/index.d.ts"
+    },
+    "./session": {
+      "import": "./dist/session/index.js",
+      "require": "./dist/session/index.cjs",
+      "types": "./dist/session/index.d.ts"
+    },
+    "./guards": {
+      "import": "./dist/guards/index.js",
+      "require": "./dist/guards/index.cjs",
+      "types": "./dist/guards/index.d.ts"
+    },
+    "./cookies": {
+      "import": "./dist/cookies/index.js",
+      "require": "./dist/cookies/index.cjs",
+      "types": "./dist/cookies/index.d.ts"
+    },
+    "./errors": {
+      "import": "./dist/errors/index.js",
+      "require": "./dist/errors/index.cjs",
+      "types": "./dist/errors/index.d.ts"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "keywords": [
+    "authentication",
+    "session",
+    "security",
+    "typescript",
+    "guards"
+  ],
+  "author": "amtarc",
+  "license": "MIT",
+  "publishConfig": {
+    "access": "public"
+  },
+  "devDependencies": {
+    "@types/node": "^20.11.17",
+    "@vitest/coverage-v8": "^1.3.1",
+    "tsup": "^8.0.2",
+    "typescript": "^5.3.3",
+    "vitest": "^1.3.1"
+  },
+  "peerDependencies": {
+    "typescript": ">=5.0.0"
+  },
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "lint": "eslint src/",
+    "lint:fix": "eslint src/ --fix",
+    "test": "vitest",
+    "test:run": "vitest run",
+    "test:coverage": "vitest run --coverage",
+    "typecheck": "tsc --noEmit",
+    "clean": "rm -rf dist"
+  }
+}