@atzentis/auth-react 0.0.13 → 0.0.14

package/dist/index.js

@@ -1,8 +1,17 @@
-import { AuthClient } from '@atzentis/auth-sdk';
-import { createContext, useState, useCallback, useMemo, useContext } from 'react';
-import { jsx } from 'react/jsx-runtime';
+import { AuthClient, AuthError, AuthErrorCode } from '@atzentis/auth-sdk';
+import { createContext, useState, useCallback, useMemo, useContext, useEffect } from 'react';
+import { jsx, jsxs, Fragment } from 'react/jsx-runtime';
+import { DropdownMenu, DropdownMenuTrigger, Button, DropdownMenuContent, DropdownMenuItem, DropdownMenuSeparator, Card, DropdownMenuLabel } from '@atzentis/ui-shadcn';
+import { FormSelect, FormInput, OTPInput, FormPasswordInput } from '@atzentis/ui-shared';
+import { zodResolver } from '@hookform/resolvers/zod';
+import { useForm } from 'react-hook-form';
+import { z } from 'zod';
 
 var AuthContext = createContext(null);
+var LocalizationContext = createContext({
+  overrides: null,
+  localizeErrors: true
+});
 function AuthProvider({
   apiKey,
   baseUrl,
@@ -15,7 +24,9 @@ function AuthProvider({
   onNewDeviceAlert,
   children,
   initialUser,
-  storage
+  storage,
+  localization,
+  localizeErrors = true
 }) {
   const [client] = useState(() => {
     const handleSessionExpired = () => {
@@ -58,7 +69,376 @@ function AuthProvider({
     }),
     [client, user, session, isLoading, error, clearError]
   );
-  return /* @__PURE__ */ jsx(AuthContext.Provider, { value, children });
+  const localizationValue = useMemo(
+    () => ({ overrides: localization ?? null, localizeErrors }),
+    [localization, localizeErrors]
+  );
+  return /* @__PURE__ */ jsx(AuthContext.Provider, { value, children: /* @__PURE__ */ jsx(LocalizationContext.Provider, { value: localizationValue, children }) });
+}
+
+// src/localization/error-codes.ts
+var AUTH_ERROR_CODES = {
+  INVALID_CREDENTIALS: "Invalid email or password",
+  EMAIL_NOT_VERIFIED: "Email address is not verified",
+  TWO_FACTOR_REQUIRED: "Two-factor authentication is required",
+  INVALID_PHONE_NUMBER: "Invalid phone number",
+  OTP_EXPIRED: "Verification code has expired",
+  OTP_INVALID: "Invalid verification code",
+  OTP_MAX_ATTEMPTS: "Too many verification attempts",
+  PHONE_NUMBER_IN_USE: "Phone number is already in use",
+  FRAUD_DETECTED: "Suspicious activity detected",
+  USERNAME_TAKEN: "Username is already taken",
+  USERNAME_INVALID: "Invalid username",
+  USERNAME_RESERVED: "This username is reserved",
+  DEVICE_NOT_FOUND: "Device not found",
+  LOGIN_EVENT_NOT_FOUND: "Login event not found",
+  REAUTH_REQUIRED: "Please sign in again to continue",
+  MAX_SESSIONS_EXCEEDED: "Maximum number of sessions exceeded",
+  CAPTCHA_REQUIRED: "CAPTCHA verification is required",
+  CAPTCHA_INVALID: "CAPTCHA verification failed",
+  PASSWORD_BREACHED: "This password has been found in a data breach",
+  SESSION_EXPIRED: "Session expired",
+  TOKEN_EXPIRED: "Token has expired",
+  INVALID_TOKEN: "Invalid token",
+  UNAUTHORIZED_ROLE: "You do not have permission to perform this action",
+  ORGANIZATION_NOT_FOUND: "Organization not found",
+  PERMISSION_DENIED: "Permission denied",
+  RATE_LIMITED: "Too many requests. Please try again later.",
+  NETWORK_ERROR: "Network error. Please check your connection.",
+  TIMEOUT: "Request timed out. Please try again.",
+  USER_NOT_FOUND: "User not found",
+  USER_ALREADY_EXISTS: "A user with this email already exists",
+  INVALID_EMAIL: "Invalid email address",
+  WEAK_PASSWORD: "Password is too weak",
+  ORG_LIMIT_EXCEEDED: "Organization limit exceeded",
+  MEMBER_LIMIT_EXCEEDED: "Member limit exceeded",
+  KEY_NOT_FOUND: "API key not found",
+  KEY_REVOKED: "API key has been revoked",
+  KEY_EXPIRED: "API key has expired"
+};
+
+// src/localization/auth-localization.ts
+var authLocalization = {
+  // --- General / Shared ---
+  /** @default "Continue" */
+  CONTINUE: "Continue",
+  /** @default "Cancel" */
+  CANCEL: "Cancel",
+  /** @default "Save" */
+  SAVE: "Save",
+  /** @default "Delete" */
+  DELETE: "Delete",
+  /** @default "Update" */
+  UPDATE: "Update",
+  /** @default "Remove" */
+  REMOVE: "Remove",
+  /** @default "Done" */
+  DONE: "Done",
+  /** @default "Go back" */
+  GO_BACK: "Go back",
+  /** @default "Loading..." */
+  LOADING: "Loading...",
+  /** @default "Load more" */
+  LOAD_MORE: "Load more",
+  /** @default "Unknown" */
+  UNKNOWN: "Unknown",
+  /** @default "Request failed" */
+  REQUEST_FAILED: "Request failed",
+  /** @default "Updated successfully" */
+  UPDATED_SUCCESSFULLY: "Updated successfully",
+  // --- Sign In (LoginForm) ---
+  /** @default "Sign in" */
+  SIGN_IN: "Sign in",
+  /** @default "Sign in" */
+  SIGN_IN_ACTION: "Sign in",
+  /** @default "Enter your email below to sign in" */
+  SIGN_IN_DESCRIPTION: "Enter your email below to sign in",
+  /** @default "Enter your username or email to sign in" */
+  SIGN_IN_USERNAME_DESCRIPTION: "Enter your username or email to sign in",
+  /** @default "Username or email" */
+  SIGN_IN_USERNAME_PLACEHOLDER: "Username or email",
+  /** @default "Signing in..." */
+  SIGNING_IN: "Signing in...",
+  /** @default "m@example.com" */
+  EMAIL_PLACEHOLDER: "m@example.com",
+  /** @default "Password" */
+  PASSWORD_PLACEHOLDER: "Password",
+  /** @default "Forgot your password?" */
+  FORGOT_PASSWORD_LINK: "Forgot your password?",
+  /** @default "Use phone instead" */
+  USE_PHONE_INSTEAD: "Use phone instead",
+  /** @default "Use email instead" */
+  USE_EMAIL_INSTEAD: "Use email instead",
+  /** @default "Or continue with" */
+  OR_CONTINUE_WITH: "Or continue with",
+  /** @default "Sign in with" */
+  SIGN_IN_WITH: "Sign in with",
+  /** @default "Don't have an account?" */
+  DONT_HAVE_AN_ACCOUNT: "Don't have an account?",
+  /** @default "Remember me" */
+  REMEMBER_ME: "Remember me",
+  // --- Sign Up (SignupForm) ---
+  /** @default "Sign up" */
+  SIGN_UP: "Sign up",
+  /** @default "Create account" */
+  SIGN_UP_ACTION: "Create account",
+  /** @default "Enter your information to create an account" */
+  SIGN_UP_DESCRIPTION: "Enter your information to create an account",
+  /** @default "Check your email for the verification link." */
+  SIGN_UP_EMAIL: "Check your email for the verification link.",
+  /** @default "Name" */
+  NAME_PLACEHOLDER: "Name",
+  /** @default "Please enter your full name." */
+  NAME_DESCRIPTION: "Please enter your full name.",
+  /** @default "Username" */
+  USERNAME_PLACEHOLDER: "Username",
+  /** @default "Username" */
+  USERNAME: "Username",
+  /** @default "Confirm password" */
+  CONFIRM_PASSWORD_PLACEHOLDER: "Confirm password",
+  /** @default "Already have an account?" */
+  ALREADY_HAVE_AN_ACCOUNT: "Already have an account?",
+  /** @default "I accept the terms and conditions" */
+  ACCEPT_TERMS: "I accept the terms and conditions",
+  /** @default "You must accept the terms" */
+  ACCEPT_TERMS_ERROR: "You must accept the terms",
+  /** @default "By continuing, you agree to the" */
+  BY_CONTINUING_YOU_AGREE: "By continuing, you agree to the",
+  /** @default "Terms of Service" */
+  TERMS_OF_SERVICE: "Terms of Service",
+  /** @default "Privacy Policy" */
+  PRIVACY_POLICY: "Privacy Policy",
+  // --- Phone Login (PhoneLoginForm) ---
+  /** @default "Phone number" */
+  PHONE_NUMBER_PLACEHOLDER: "Phone number",
+  /** @default "Country code" */
+  COUNTRY_CODE: "Country code",
+  /** @default "Send code" */
+  SEND_VERIFICATION_CODE: "Send code",
+  /** @default "Sending code..." */
+  SENDING_VERIFICATION_CODE: "Sending code...",
+  /** @default "One-Time Password" */
+  ONE_TIME_PASSWORD: "One-Time Password",
+  /** @default "Verification code" */
+  VERIFICATION_CODE_LABEL: "Verification code",
+  /** @default "Verify" */
+  VERIFY: "Verify",
+  /** @default "Verifying..." */
+  VERIFYING: "Verifying...",
+  /** @default "Code expires in" */
+  CODE_EXPIRES_IN: "Code expires in",
+  /** @default "Resend code" */
+  RESEND_CODE: "Resend code",
+  /** @default "Sign in with password" */
+  USE_PASSWORD_INSTEAD: "Sign in with password",
+  // --- OAuth ---
+  /** @default "Continue with" */
+  CONTINUE_WITH: "Continue with",
+  /** @default "Redirecting..." */
+  REDIRECTING: "Redirecting...",
+  // --- Magic Link ---
+  /** @default "Magic Link" */
+  MAGIC_LINK: "Magic Link",
+  /** @default "Send magic link" */
+  MAGIC_LINK_ACTION: "Send magic link",
+  /** @default "Enter your email to receive a magic link" */
+  MAGIC_LINK_DESCRIPTION: "Enter your email to receive a magic link",
+  /** @default "We sent a magic link to" */
+  MAGIC_LINK_EMAIL: "We sent a magic link to",
+  /** @default "Check your inbox and click the link to sign in." */
+  MAGIC_LINK_HINT: "Check your inbox and click the link to sign in.",
+  /** @default "Sending..." */
+  SENDING: "Sending...",
+  /** @default "Resend" */
+  RESEND: "Resend",
+  /** @default "Resending..." */
+  RESENDING: "Resending...",
+  // --- Password Management ---
+  /** @default "Password" */
+  PASSWORD: "Password",
+  /** @default "New Password" */
+  NEW_PASSWORD: "New Password",
+  /** @default "Current Password" */
+  CURRENT_PASSWORD: "Current Password",
+  /** @default "Change Password" */
+  CHANGE_PASSWORD: "Change Password",
+  /** @default "Enter your current and new password" */
+  CHANGE_PASSWORD_DESCRIPTION: "Enter your current and new password",
+  /** @default "Password has been changed" */
+  CHANGE_PASSWORD_SUCCESS: "Password has been changed",
+  /** @default "Forgot Password" */
+  FORGOT_PASSWORD: "Forgot Password",
+  /** @default "Send reset link" */
+  FORGOT_PASSWORD_ACTION: "Send reset link",
+  /** @default "Enter your email to reset your password" */
+  FORGOT_PASSWORD_DESCRIPTION: "Enter your email to reset your password",
+  /** @default "Check your email for the reset link" */
+  FORGOT_PASSWORD_EMAIL: "Check your email for the reset link",
+  /** @default "Reset Password" */
+  RESET_PASSWORD: "Reset Password",
+  /** @default "Save new password" */
+  RESET_PASSWORD_ACTION: "Save new password",
+  /** @default "Password reset successfully" */
+  RESET_PASSWORD_SUCCESS: "Password reset successfully",
+  /** @default "Set Password" */
+  SET_PASSWORD: "Set Password",
+  /** @default "Click the button to receive an email to set your password" */
+  SET_PASSWORD_DESCRIPTION: "Click the button to receive an email to set your password",
+  // --- Devices & Sessions ---
+  /** @default "Current Session" */
+  CURRENT_SESSION: "Current Session",
+  /** @default "Current device" */
+  CURRENT_DEVICE: "Current device",
+  /** @default "Sessions" */
+  SESSIONS: "Sessions",
+  /** @default "Manage your active sessions" */
+  SESSIONS_DESCRIPTION: "Manage your active sessions",
+  /** @default "Trust" */
+  TRUST_DEVICE: "Trust",
+  /** @default "Untrust" */
+  UNTRUST_DEVICE: "Untrust",
+  /** @default "Loading devices..." */
+  LOADING_DEVICES: "Loading devices...",
+  /** @default "No devices found" */
+  NO_DEVICES: "No devices found",
+  /** @default "Last used:" */
+  LAST_USED: "Last used:",
+  /** @default "IP:" */
+  IP_LABEL: "IP:",
+  /** @default "Security" */
+  SECURITY: "Security",
+  /** @default "Session not fresh. Please sign in again." */
+  SESSION_NOT_FRESH: "Session not fresh. Please sign in again.",
+  // --- Login Activity & Risk ---
+  /** @default "Login Activity" */
+  LOGIN_ACTIVITY: "Login Activity",
+  /** @default "Recent login attempts" */
+  LOGIN_ACTIVITY_DESCRIPTION: "Recent login attempts",
+  /** @default "Low" */
+  RISK_LOW: "Low",
+  /** @default "Medium" */
+  RISK_MEDIUM: "Medium",
+  /** @default "High" */
+  RISK_HIGH: "High",
+  /** @default "This was me" */
+  MARK_RECOGNIZED: "This was me",
+  /** @default "Not me" */
+  REPORT_SUSPICIOUS: "Not me",
+  /** @default "Loading activity..." */
+  LOADING_ACTIVITY: "Loading activity...",
+  /** @default "No login activity found" */
+  NO_ACTIVITY: "No login activity found",
+  // --- Accounts & Switching ---
+  /** @default "Accounts" */
+  ACCOUNTS: "Accounts",
+  /** @default "Manage signed in accounts" */
+  ACCOUNTS_DESCRIPTION: "Manage signed in accounts",
+  /** @default "Add account" */
+  ADD_ACCOUNT: "Add account",
+  /** @default "Switch Account" */
+  SWITCH_ACCOUNT: "Switch Account",
+  /** @default "Select account" */
+  SELECT_ACCOUNT: "Select account",
+  /** @default "Personal Account" */
+  PERSONAL_ACCOUNT: "Personal Account",
+  /** @default "Sign out" */
+  SIGN_OUT: "Sign out",
+  // --- Organizations ---
+  /** @default "Organization" */
+  ORGANIZATION: "Organization",
+  /** @default "Organizations" */
+  ORGANIZATIONS: "Organizations",
+  /** @default "Manage your organizations" */
+  ORGANIZATIONS_DESCRIPTION: "Manage your organizations",
+  /** @default "Select organization" */
+  SELECT_ORGANIZATION: "Select organization",
+  /** @default "Create organization" */
+  CREATE_ORGANIZATION: "Create organization",
+  /** @default "Name" */
+  ORGANIZATION_NAME: "Name",
+  /** @default "Acme Inc." */
+  ORGANIZATION_NAME_PLACEHOLDER: "Acme Inc.",
+  /** @default "Leave Organization" */
+  LEAVE_ORGANIZATION: "Leave Organization",
+  /** @default "Delete Organization" */
+  DELETE_ORGANIZATION: "Delete Organization",
+  /** @default "Members" */
+  MEMBERS: "Members",
+  /** @default "Invite Member" */
+  INVITE_MEMBER: "Invite Member",
+  /** @default "Remove Member" */
+  REMOVE_MEMBER: "Remove Member",
+  /** @default "Role" */
+  ROLE: "Role",
+  /** @default "Admin" */
+  ADMIN: "Admin",
+  /** @default "Member" */
+  MEMBER: "Member",
+  /** @default "Owner" */
+  OWNER: "Owner",
+  // --- User Menu ---
+  /** @default "Settings" */
+  SETTINGS: "Settings",
+  /** @default "Account" */
+  ACCOUNT: "Account",
+  /** @default "Avatar" */
+  AVATAR: "Avatar",
+  /** @default "Click avatar to upload a custom one" */
+  AVATAR_DESCRIPTION: "Click avatar to upload a custom one",
+  /** @default "Delete Avatar" */
+  DELETE_AVATAR: "Delete Avatar",
+  /** @default "Upload Avatar" */
+  UPLOAD_AVATAR: "Upload Avatar",
+  /** @default "Email" */
+  EMAIL: "Email",
+  /** @default "Name" */
+  NAME: "Name",
+  // --- Two-Factor ---
+  /** @default "Two-Factor" */
+  TWO_FACTOR: "Two-Factor",
+  /** @default "Two-Factor Authentication" */
+  TWO_FACTOR_PROMPT: "Two-Factor Authentication",
+  /** @default "Enter your one-time password" */
+  TWO_FACTOR_DESCRIPTION: "Enter your one-time password",
+  /** @default "Verify code" */
+  TWO_FACTOR_ACTION: "Verify code",
+  /** @default "Two-factor authentication has been enabled" */
+  TWO_FACTOR_ENABLED: "Two-factor authentication has been enabled",
+  /** @default "Two-factor authentication has been disabled" */
+  TWO_FACTOR_DISABLED: "Two-factor authentication has been disabled",
+  /** @default "Enable Two-Factor" */
+  ENABLE_TWO_FACTOR: "Enable Two-Factor",
+  /** @default "Disable Two-Factor" */
+  DISABLE_TWO_FACTOR: "Disable Two-Factor",
+  /** @default "Backup Codes" */
+  BACKUP_CODES: "Backup Codes",
+  /** @default "Save these codes in a secure place" */
+  BACKUP_CODES_DESCRIPTION: "Save these codes in a secure place",
+  // --- Validation ---
+  /** @default "Passwords do not match" */
+  PASSWORDS_DO_NOT_MATCH: "Passwords do not match",
+  /** @default "Password is required" */
+  PASSWORD_REQUIRED: "Password is required",
+  /** @default "Email address is required" */
+  EMAIL_REQUIRED: "Email address is required",
+  /** @default "is required" */
+  IS_REQUIRED: "is required",
+  /** @default "is invalid" */
+  IS_INVALID: "is invalid",
+  // --- Error Codes ---
+  ...AUTH_ERROR_CODES
+};
+function getLocalizedError(error, localization, localizeErrors) {
+  if (!localizeErrors) {
+    if (error instanceof Error && error.message) return error.message;
+    return authLocalization.REQUEST_FAILED;
+  }
+  if (error instanceof AuthError) {
+    const errorCode = error.code;
+    if (localization?.[errorCode]) return localization[errorCode];
+  }
+  if (error instanceof Error && error.message) return error.message;
+  return localization?.REQUEST_FAILED ?? authLocalization.REQUEST_FAILED;
 }
 function useAuthContext() {
   const context = useContext(AuthContext);
@@ -251,6 +631,11 @@ function useAuth() {
     clearError
   };
 }
+function useAuthLocalization() {
+  const ctx = useContext(LocalizationContext);
+  const localization = ctx.overrides ? { ...authLocalization, ...ctx.overrides } : authLocalization;
+  return { localization, localizeErrors: ctx.localizeErrors };
+}
 function useDevices() {
   const { client } = useAuthContext();
   const [devices, setDevices] = useState([]);
@@ -748,6 +1133,1050 @@ function useUser() {
   };
 }
 
-export { AuthContext, AuthProvider, useApiKeys, useAuth, useAuthContext, useDevices, useLoginActivity, useOrganizations, usePhone, useSession, useSessions, useUser };
+// src/helpers/initials.ts
+function getInitials(name) {
+  return name.split(" ").map((w) => w[0]).join("").toUpperCase().slice(0, 2);
+}
+function AccountSwitcher({
+  showAddAccount = false,
+  onSwitch,
+  onAddAccount,
+  maxAccounts = 5,
+  className
+}) {
+  const { deviceSessions, switchAccount, isLoading, refresh } = useSessions();
+  const { localization } = useAuthLocalization();
+  useEffect(() => {
+    refresh();
+  }, [refresh]);
+  const handleSwitch = useCallback(
+    async (sessionToken, user) => {
+      await switchAccount(sessionToken);
+      onSwitch?.(user);
+    },
+    [switchAccount, onSwitch]
+  );
+  const visibleSessions = deviceSessions.slice(0, maxAccounts);
+  const activeSession = deviceSessions.find((s) => s.isActive);
+  return /* @__PURE__ */ jsx("div", { className, children: /* @__PURE__ */ jsxs(DropdownMenu, { children: [
+    /* @__PURE__ */ jsx(DropdownMenuTrigger, { asChild: true, children: /* @__PURE__ */ jsx(Button, { variant: "outline", disabled: isLoading, children: activeSession ? activeSession.user.name : localization.SELECT_ACCOUNT }) }),
+    /* @__PURE__ */ jsxs(DropdownMenuContent, { align: "end", children: [
+      visibleSessions.map((session) => /* @__PURE__ */ jsx(
+        DropdownMenuItem,
+        {
+          onClick: () => handleSwitch(session.sessionToken, session.user),
+          children: /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+            /* @__PURE__ */ jsx("span", { className: "flex h-8 w-8 items-center justify-center rounded-full bg-gray-200 text-xs font-medium", children: session.user.avatar ? /* @__PURE__ */ jsx("img", { src: session.user.avatar, alt: "", className: "h-8 w-8 rounded-full" }) : getInitials(session.user.name) }),
+            /* @__PURE__ */ jsxs("div", { className: "flex flex-col", children: [
+              /* @__PURE__ */ jsx("span", { className: "text-sm font-medium", children: session.user.name }),
+              /* @__PURE__ */ jsx("span", { className: "text-xs text-gray-500", children: session.user.email })
+            ] }),
+            session.isActive && /* @__PURE__ */ jsx("span", { className: "ml-auto text-sm", children: "\u2713" })
+          ] })
+        },
+        session.sessionToken
+      )),
+      showAddAccount && /* @__PURE__ */ jsxs(Fragment, { children: [
+        /* @__PURE__ */ jsx(DropdownMenuSeparator, {}),
+        /* @__PURE__ */ jsx(DropdownMenuItem, { onClick: onAddAccount, children: localization.ADD_ACCOUNT })
+      ] })
+    ] })
+  ] }) });
+}
+function SessionGuard({
+  children,
+  fallback,
+  loadingFallback = null,
+  freshRequired = false,
+  freshThreshold = 300,
+  requiredRole,
+  className
+}) {
+  const { user, session, isAuthenticated, isLoading } = useSession();
+  if (isLoading) {
+    return className ? /* @__PURE__ */ jsx("div", { className, children: loadingFallback }) : /* @__PURE__ */ jsx(Fragment, { children: loadingFallback });
+  }
+  if (!isAuthenticated) {
+    return className ? /* @__PURE__ */ jsx("div", { className, children: fallback }) : /* @__PURE__ */ jsx(Fragment, { children: fallback });
+  }
+  if (freshRequired && session) {
+    const sessionAge = (Date.now() - new Date(session.createdAt).getTime()) / 1e3;
+    if (sessionAge > freshThreshold) {
+      return className ? /* @__PURE__ */ jsx("div", { className, children: fallback }) : /* @__PURE__ */ jsx(Fragment, { children: fallback });
+    }
+  }
+  if (requiredRole && user) {
+    const userRole = user.role;
+    if (userRole !== requiredRole) {
+      return className ? /* @__PURE__ */ jsx("div", { className, children: fallback }) : /* @__PURE__ */ jsx(Fragment, { children: fallback });
+    }
+  }
+  return className ? /* @__PURE__ */ jsx("div", { className, children }) : /* @__PURE__ */ jsx(Fragment, { children });
+}
+var DEFAULT_DEVICE_ICONS = {
+  mobile: "\u{1F4F1}",
+  desktop: "\u{1F4BB}",
+  tablet: "\u{1F4DF}"
+};
+function DeviceList({
+  showTrustToggle = false,
+  showRemoveAction = false,
+  onDeviceTrusted,
+  onDeviceUntrusted,
+  onDeviceRemoved,
+  renderDeviceIcon,
+  className
+}) {
+  const { devices, isLoading, error, refresh, trustDevice, untrustDevice, removeDevice } = useDevices();
+  const { localization } = useAuthLocalization();
+  useEffect(() => {
+    refresh();
+  }, [refresh]);
+  const handleTrustToggle = useCallback(
+    async (device) => {
+      if (device.isTrusted) {
+        await untrustDevice(device.id);
+        onDeviceUntrusted?.(device);
+      } else {
+        await trustDevice(device.id);
+        onDeviceTrusted?.(device);
+      }
+    },
+    [trustDevice, untrustDevice, onDeviceTrusted, onDeviceUntrusted]
+  );
+  const handleRemove = useCallback(
+    async (device) => {
+      await removeDevice(device.id);
+      onDeviceRemoved?.(device);
+    },
+    [removeDevice, onDeviceRemoved]
+  );
+  if (isLoading && devices.length === 0) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 text-center text-sm text-gray-500", children: localization.LOADING_DEVICES }) });
+  }
+  if (error) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 text-center text-sm text-red-600", children: error.message }) });
+  }
+  if (devices.length === 0) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 text-center text-sm text-gray-500", children: localization.NO_DEVICES }) });
+  }
+  return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 space-y-4", children: devices.map((device) => /* @__PURE__ */ jsxs(
+    "div",
+    {
+      className: "flex items-start justify-between gap-4 rounded border p-4",
+      children: [
+        /* @__PURE__ */ jsxs("div", { className: "flex items-start gap-3", children: [
+          /* @__PURE__ */ jsx("span", { className: "text-2xl", children: renderDeviceIcon ? renderDeviceIcon(device) : DEFAULT_DEVICE_ICONS[device.deviceType] ?? "\u{1F4BB}" }),
+          /* @__PURE__ */ jsxs("div", { children: [
+            /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+              /* @__PURE__ */ jsx("span", { className: "font-medium", children: device.name }),
+              device.isCurrent && /* @__PURE__ */ jsx("span", { className: "rounded bg-blue-100 px-2 py-0.5 text-xs text-blue-700", children: localization.CURRENT_DEVICE })
+            ] }),
+            /* @__PURE__ */ jsxs("p", { className: "text-sm text-gray-500", children: [
+              device.browser,
+              " \xB7 ",
+              device.os
+            ] }),
+            (device.lastCity || device.lastCountry) && /* @__PURE__ */ jsx("p", { className: "text-sm text-gray-500", children: [device.lastCity, device.lastCountry].filter(Boolean).join(", ") }),
+            /* @__PURE__ */ jsxs("p", { className: "text-xs text-gray-400", children: [
+              localization.LAST_USED,
+              " ",
+              device.lastUsedAt,
+              " \xB7 ",
+              localization.IP_LABEL,
+              " ",
+              device.lastIp
+            ] })
+          ] })
+        ] }),
+        /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+          showTrustToggle && /* @__PURE__ */ jsx(
+            Button,
+            {
+              type: "button",
+              variant: "outline",
+              size: "sm",
+              onClick: () => handleTrustToggle(device),
+              children: device.isTrusted ? localization.UNTRUST_DEVICE : localization.TRUST_DEVICE
+            }
+          ),
+          showRemoveAction && /* @__PURE__ */ jsx(
+            Button,
+            {
+              type: "button",
+              variant: "destructive",
+              size: "sm",
+              disabled: device.isCurrent,
+              onClick: () => handleRemove(device),
+              children: localization.REMOVE
+            }
+          )
+        ] })
+      ]
+    },
+    device.id
+  )) }) });
+}
+function LoadingBoundary({
+  children,
+  spinner = /* @__PURE__ */ jsx("div", { children: "Loading..." }),
+  delay = 0,
+  className
+}) {
+  const { isLoading } = useSession();
+  const [showSpinner, setShowSpinner] = useState(delay === 0 && isLoading);
+  useEffect(() => {
+    if (!isLoading) {
+      setShowSpinner(false);
+      return;
+    }
+    if (delay === 0) {
+      setShowSpinner(true);
+      return;
+    }
+    const timer = setTimeout(() => {
+      setShowSpinner(true);
+    }, delay);
+    return () => clearTimeout(timer);
+  }, [isLoading, delay]);
+  if (isLoading && showSpinner) {
+    return className ? /* @__PURE__ */ jsx("div", { className, children: spinner }) : /* @__PURE__ */ jsx(Fragment, { children: spinner });
+  }
+  if (isLoading) {
+    return null;
+  }
+  return /* @__PURE__ */ jsx(Fragment, { children });
+}
+function SubmitButton({ loading, loadingLabel, actionLabel, className }) {
+  return /* @__PURE__ */ jsx(Button, { type: "submit", disabled: loading, className: className ?? "w-full", children: loading ? loadingLabel : actionLabel });
+}
+
+// src/helpers/risk-utils.ts
+function getRiskLevel(score) {
+  if (score < 30) return "low";
+  if (score < 60) return "medium";
+  return "high";
+}
+var RISK_COLORS = {
+  low: "text-green-600 bg-green-50",
+  medium: "text-yellow-600 bg-yellow-50",
+  high: "text-red-600 bg-red-50"
+};
+function LoginActivityFeed({
+  limit = 20,
+  showRiskBadge = false,
+  showReportActions = false,
+  filterByStatus,
+  onSuspiciousReported,
+  className
+}) {
+  const {
+    events,
+    hasMore,
+    isLoading,
+    error,
+    refresh,
+    loadMore,
+    filter,
+    markRecognized,
+    reportSuspicious
+  } = useLoginActivity({ limit });
+  const { localization } = useAuthLocalization();
+  useEffect(() => {
+    if (filterByStatus) {
+      filter({ status: filterByStatus, limit });
+    }
+    refresh();
+  }, [refresh, filter, filterByStatus, limit]);
+  const handleMarkRecognized = useCallback(
+    async (event) => {
+      await markRecognized(event.id);
+    },
+    [markRecognized]
+  );
+  const handleReportSuspicious = useCallback(
+    async (event) => {
+      await reportSuspicious(event.id);
+      onSuspiciousReported?.(event);
+    },
+    [reportSuspicious, onSuspiciousReported]
+  );
+  if (isLoading && events.length === 0) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 text-center text-sm text-gray-500", children: localization.LOADING_ACTIVITY }) });
+  }
+  if (error) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 text-center text-sm text-red-600", children: error.message }) });
+  }
+  if (events.length === 0) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsx("div", { className: "p-6 text-center text-sm text-gray-500", children: localization.NO_ACTIVITY }) });
+  }
+  return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("div", { className: "p-6 space-y-4", children: [
+    events.map((event) => {
+      const riskLevel = getRiskLevel(event.riskScore);
+      return /* @__PURE__ */ jsxs(
+        "div",
+        {
+          className: "flex items-start justify-between gap-4 rounded border p-4",
+          children: [
+            /* @__PURE__ */ jsxs("div", { children: [
+              /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+                /* @__PURE__ */ jsx("span", { className: "font-medium", children: event.deviceName }),
+                /* @__PURE__ */ jsx("span", { className: "rounded bg-gray-100 px-2 py-0.5 text-xs text-gray-600", children: event.status }),
+                showRiskBadge && /* @__PURE__ */ jsx("span", { className: `rounded px-2 py-0.5 text-xs ${RISK_COLORS[riskLevel]}`, children: riskLevel })
+              ] }),
+              /* @__PURE__ */ jsxs("p", { className: "text-sm text-gray-500", children: [
+                event.method,
+                " \xB7 ",
+                event.ip
+              ] }),
+              (event.city || event.country) && /* @__PURE__ */ jsx("p", { className: "text-sm text-gray-500", children: [event.city, event.country].filter(Boolean).join(", ") }),
+              /* @__PURE__ */ jsx("p", { className: "text-xs text-gray-400", children: event.createdAt })
+            ] }),
+            showReportActions && /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+              /* @__PURE__ */ jsx(
+                Button,
+                {
+                  type: "button",
+                  variant: "outline",
+                  size: "sm",
+                  onClick: () => handleMarkRecognized(event),
+                  children: localization.MARK_RECOGNIZED
+                }
+              ),
+              /* @__PURE__ */ jsx(
+                Button,
+                {
+                  type: "button",
+                  variant: "destructive",
+                  size: "sm",
+                  onClick: () => handleReportSuspicious(event),
+                  children: localization.REPORT_SUSPICIOUS
+                }
+              )
+            ] })
+          ]
+        },
+        event.id
+      );
+    }),
+    hasMore && /* @__PURE__ */ jsx("div", { className: "text-center", children: /* @__PURE__ */ jsx(Button, { type: "button", variant: "outline", disabled: isLoading, onClick: loadMore, children: isLoading ? localization.LOADING : localization.LOAD_MORE }) })
+  ] }) });
+}
+function toAuthError(error) {
+  if (error instanceof AuthError) return error;
+  const message = error instanceof Error ? error.message : String(error);
+  return new AuthError({
+    code: AuthErrorCode.NetworkError,
+    message,
+    statusCode: 0
+  });
+}
+var credentialLoginSchema = z.object({
+  identity: z.string().min(1, "Email or username is required"),
+  password: z.string().min(1, "Password is required"),
+  captchaToken: z.string().optional()
+});
+var phoneLoginSchema = z.object({
+  countryCode: z.string(),
+  phoneNumber: z.string().min(1, "Phone number is required")
+});
+var otpVerifySchema = z.object({
+  code: z.string().length(6, "Code must be 6 digits")
+});
+
+// src/components/shared/utils.ts
+function isEmail(value) {
+  return value.includes("@");
+}
+var PROVIDER_NAMES = {
+  google: "Google",
+  github: "GitHub",
+  apple: "Apple",
+  microsoft: "Microsoft",
+  atzentis: "Atzentis"
+};
+function OAuthButton({
+  provider,
+  redirectUri,
+  state,
+  variant = "outline",
+  size = "md",
+  className
+}) {
+  const { getOAuthUrl } = useAuth();
+  const { localization } = useAuthLocalization();
+  const [isLoading, setIsLoading] = useState(false);
+  const sizeMap = {
+    sm: "sm",
+    md: "default",
+    lg: "lg"
+  };
+  const providerName = PROVIDER_NAMES[provider];
+  const handleClick = useCallback(async () => {
+    setIsLoading(true);
+    try {
+      const url = await getOAuthUrl({ provider, redirectUri, state: state ?? "" });
+      window.location.href = url;
+    } catch {
+      setIsLoading(false);
+    }
+  }, [getOAuthUrl, provider, redirectUri, state]);
+  return /* @__PURE__ */ jsx(
+    Button,
+    {
+      type: "button",
+      variant: variant === "filled" ? "default" : "outline",
+      size: sizeMap[size],
+      disabled: isLoading,
+      onClick: handleClick,
+      "aria-label": `${localization.SIGN_IN_WITH} ${providerName}`,
+      className,
+      children: isLoading ? localization.REDIRECTING : `${localization.CONTINUE_WITH} ${providerName}`
+    }
+  );
+}
+var phoneNumberSchema = z.object({
+  countryCode: z.string(),
+  phoneNumber: z.string().min(1, "Phone number is required")
+});
+var otpVerifySchema2 = z.object({
+  code: z.string().length(6, "Code must be 6 digits")
+});
+var phonePasswordSchema = z.object({
+  countryCode: z.string(),
+  phoneNumber: z.string().min(1, "Phone number is required"),
+  password: z.string().min(1, "Password is required")
+});
+
+// src/components/shared/country-codes.ts
+var COUNTRY_CODES = [
+  { code: "+30", country: "GR", name: "Greece", flag: "\u{1F1EC}\u{1F1F7}" },
+  { code: "+49", country: "DE", name: "Germany", flag: "\u{1F1E9}\u{1F1EA}" },
+  { code: "+1", country: "US", name: "United States", flag: "\u{1F1FA}\u{1F1F8}" },
+  { code: "+44", country: "GB", name: "United Kingdom", flag: "\u{1F1EC}\u{1F1E7}" },
+  { code: "+33", country: "FR", name: "France", flag: "\u{1F1EB}\u{1F1F7}" },
+  { code: "+39", country: "IT", name: "Italy", flag: "\u{1F1EE}\u{1F1F9}" },
+  { code: "+34", country: "ES", name: "Spain", flag: "\u{1F1EA}\u{1F1F8}" },
+  { code: "+31", country: "NL", name: "Netherlands", flag: "\u{1F1F3}\u{1F1F1}" },
+  { code: "+43", country: "AT", name: "Austria", flag: "\u{1F1E6}\u{1F1F9}" },
+  { code: "+41", country: "CH", name: "Switzerland", flag: "\u{1F1E8}\u{1F1ED}" },
+  { code: "+357", country: "CY", name: "Cyprus", flag: "\u{1F1E8}\u{1F1FE}" },
+  { code: "+90", country: "TR", name: "Turkey", flag: "\u{1F1F9}\u{1F1F7}" }
+];
+function PhoneLoginForm({
+  onSuccess,
+  onError,
+  allowedCountryCodes = ["+30", "+49"],
+  showPasswordFallback = false,
+  className
+}) {
+  const { sendOTP, verify, signIn, isSending, isVerifying, expiresIn } = usePhone();
+  const { localization, localizeErrors } = useAuthLocalization();
+  const [step, setStep] = useState("phone");
+  const [formError, setFormError] = useState(null);
+  const [fullPhoneNumber, setFullPhoneNumber] = useState("");
+  const filteredCountryCodes = useMemo(
+    () => COUNTRY_CODES.filter((c) => allowedCountryCodes.includes(c.code)),
+    [allowedCountryCodes]
+  );
+  const phoneForm = useForm({
+    resolver: zodResolver(phoneNumberSchema),
+    defaultValues: {
+      countryCode: filteredCountryCodes[0]?.code ?? "+30",
+      phoneNumber: ""
+    }
+  });
+  const otpForm = useForm({
+    resolver: zodResolver(otpVerifySchema2),
+    defaultValues: { code: "" }
+  });
+  const [passwordValue, setPasswordValue] = useState("");
+  const countryCodeOptions = filteredCountryCodes.map((c) => ({
+    value: c.code,
+    label: `${c.flag} ${c.name} (${c.code})`
+  }));
+  const handlePhoneSubmit = useCallback(
+    async (data) => {
+      setFormError(null);
+      const phone = `${data.countryCode}${data.phoneNumber}`;
+      setFullPhoneNumber(phone);
+      try {
+        await sendOTP(phone);
+        setStep("otp");
+      } catch (err) {
+        setFormError(getLocalizedError(err, localization, localizeErrors));
+        onError?.(toAuthError(err));
+      }
+    },
+    [sendOTP, onError, localization, localizeErrors]
+  );
+  const handleOtpSubmit = useCallback(
+    async (data) => {
+      setFormError(null);
+      try {
+        const response = await verify(fullPhoneNumber, data.code);
+        onSuccess(response.user);
+      } catch (err) {
+        setFormError(getLocalizedError(err, localization, localizeErrors));
+        onError?.(toAuthError(err));
+      }
+    },
+    [verify, fullPhoneNumber, onSuccess, onError, localization, localizeErrors]
+  );
+  const handleOtpComplete = useCallback(
+    (code) => {
+      otpForm.setValue("code", code);
+      otpForm.handleSubmit(handleOtpSubmit)();
+    },
+    [otpForm, handleOtpSubmit]
+  );
+  const handlePasswordSubmit = useCallback(
+    async (e) => {
+      e.preventDefault();
+      setFormError(null);
+      try {
+        const response = await signIn(fullPhoneNumber, passwordValue);
+        onSuccess(response.user);
+      } catch (err) {
+        setFormError(getLocalizedError(err, localization, localizeErrors));
+        onError?.(toAuthError(err));
+      }
+    },
+    [signIn, fullPhoneNumber, passwordValue, onSuccess, onError, localization, localizeErrors]
+  );
+  return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("div", { className: "p-6 space-y-4", children: [
+    step === "phone" && /* @__PURE__ */ jsxs("form", { onSubmit: phoneForm.handleSubmit(handlePhoneSubmit), className: "space-y-4", children: [
+      /* @__PURE__ */ jsx(
+        FormSelect,
+        {
+          label: localization.COUNTRY_CODE,
+          options: countryCodeOptions,
+          value: phoneForm.watch("countryCode"),
+          onValueChange: (value) => phoneForm.setValue("countryCode", value)
+        }
+      ),
+      /* @__PURE__ */ jsx(
+        FormInput,
+        {
+          label: localization.PHONE_NUMBER_PLACEHOLDER,
+          id: "phone-number",
+          type: "tel",
+          error: phoneForm.formState.errors.phoneNumber?.message,
+          ...phoneForm.register("phoneNumber")
+        }
+      ),
+      formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError }),
+      /* @__PURE__ */ jsx(
+        SubmitButton,
+        {
+          loading: isSending,
+          loadingLabel: localization.SENDING_VERIFICATION_CODE,
+          actionLabel: localization.SEND_VERIFICATION_CODE
+        }
+      )
+    ] }),
+    step === "otp" && /* @__PURE__ */ jsxs("form", { onSubmit: otpForm.handleSubmit(handleOtpSubmit), className: "space-y-4", children: [
+      /* @__PURE__ */ jsxs("label", { className: "block text-sm font-medium", children: [
+        localization.VERIFICATION_CODE_LABEL,
+        /* @__PURE__ */ jsx(OTPInput, { length: 6, onComplete: handleOtpComplete, disabled: isVerifying })
+      ] }),
+      expiresIn !== null && /* @__PURE__ */ jsxs("p", { className: "text-sm text-gray-500", children: [
+        localization.CODE_EXPIRES_IN,
+        " ",
+        expiresIn,
+        "s"
+      ] }),
+      formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError }),
+      /* @__PURE__ */ jsx(
+        SubmitButton,
+        {
+          loading: isVerifying,
+          loadingLabel: localization.VERIFYING,
+          actionLabel: localization.VERIFY
+        }
+      ),
+      showPasswordFallback && /* @__PURE__ */ jsx(
+        Button,
+        {
+          variant: "link",
+          type: "button",
+          className: "p-0 h-auto text-sm",
+          onClick: () => setStep("password"),
+          children: localization.USE_PASSWORD_INSTEAD
+        }
+      )
+    ] }),
+    step === "password" && /* @__PURE__ */ jsxs("form", { onSubmit: handlePasswordSubmit, className: "space-y-4", children: [
+      /* @__PURE__ */ jsx(
+        FormPasswordInput,
+        {
+          label: localization.PASSWORD,
+          id: "phone-password",
+          value: passwordValue,
+          onChange: (e) => setPasswordValue(e.target.value)
+        }
+      ),
+      formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError }),
+      /* @__PURE__ */ jsx(
+        SubmitButton,
+        {
+          loading: isVerifying,
+          loadingLabel: localization.SIGNING_IN,
+          actionLabel: localization.SIGN_IN
+        }
+      )
+    ] })
+  ] }) });
+}
+function LoginForm({
+  onSuccess,
+  onError,
+  enablePhone = false,
+  enableForgotPassword = false,
+  onForgotPasswordClick,
+  className,
+  ...oauthProps
+}) {
+  const oauthProviders = "oauthProviders" in oauthProps ? oauthProps.oauthProviders : void 0;
+  const oauthRedirectUri = "oauthRedirectUri" in oauthProps ? oauthProps.oauthRedirectUri : "";
+  const { login, loginWithUsername } = useAuth();
+  const { localization, localizeErrors } = useAuthLocalization();
+  const [mode, setMode] = useState("credential");
+  const [formError, setFormError] = useState(null);
+  const [isSubmitting, setIsSubmitting] = useState(false);
+  const {
+    register,
+    handleSubmit,
+    watch,
+    formState: { errors }
+  } = useForm({
+    resolver: zodResolver(credentialLoginSchema),
+    defaultValues: { identity: "", password: "" }
+  });
+  const identityValue = watch("identity");
+  const onSubmit = useCallback(
+    async (data) => {
+      setFormError(null);
+      setIsSubmitting(true);
+      try {
+        if (isEmail(data.identity)) {
+          const response = await login({
+            email: data.identity,
+            password: data.password,
+            captchaToken: data.captchaToken
+          });
+          onSuccess(response.user);
+        } else {
+          const response = await loginWithUsername({
+            username: data.identity,
+            password: data.password,
+            captchaToken: data.captchaToken
+          });
+          onSuccess(response.user);
+        }
+      } catch (err) {
+        setFormError(getLocalizedError(err, localization, localizeErrors));
+        onError?.(toAuthError(err));
+      } finally {
+        setIsSubmitting(false);
+      }
+    },
+    [login, loginWithUsername, onSuccess, onError, localization, localizeErrors]
+  );
+  const handleSwitchToPhone = useCallback(() => {
+    setMode("phone");
+    setFormError(null);
+  }, []);
+  const handleSwitchToCredential = useCallback(() => {
+    setMode("credential");
+    setFormError(null);
+  }, []);
+  if (mode === "phone") {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("div", { className: "p-6 space-y-4", children: [
+      /* @__PURE__ */ jsx(PhoneLoginForm, { onSuccess, onError }),
+      /* @__PURE__ */ jsx(
+        Button,
+        {
+          variant: "link",
+          type: "button",
+          className: "p-0 h-auto text-sm",
+          onClick: handleSwitchToCredential,
+          children: localization.USE_EMAIL_INSTEAD
+        }
+      )
+    ] }) });
+  }
+  return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("form", { onSubmit: handleSubmit(onSubmit), className: "p-6 space-y-4", children: [
+    /* @__PURE__ */ jsx(
+      FormInput,
+      {
+        label: localization.SIGN_IN_USERNAME_PLACEHOLDER,
+        id: "login-identity",
+        type: "text",
+        autoComplete: "username",
+        error: errors.identity?.message,
+        ...register("identity")
+      }
+    ),
+    identityValue && /* @__PURE__ */ jsx(
+      FormPasswordInput,
+      {
+        label: localization.PASSWORD,
+        id: "login-password",
+        autoComplete: "current-password",
+        error: errors.password?.message,
+        ...register("password")
+      }
+    ),
+    formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError }),
+    /* @__PURE__ */ jsx(
+      SubmitButton,
+      {
+        loading: isSubmitting,
+        loadingLabel: localization.SIGNING_IN,
+        actionLabel: localization.SIGN_IN
+      }
+    ),
+    /* @__PURE__ */ jsxs("div", { className: "flex items-center justify-between text-sm", children: [
+      enableForgotPassword && /* @__PURE__ */ jsx(
+        Button,
+        {
+          variant: "link",
+          type: "button",
+          className: "p-0 h-auto",
+          onClick: onForgotPasswordClick,
+          children: localization.FORGOT_PASSWORD_LINK
+        }
+      ),
+      enablePhone && /* @__PURE__ */ jsx(
+        Button,
+        {
+          variant: "link",
+          type: "button",
+          className: "p-0 h-auto",
+          onClick: handleSwitchToPhone,
+          children: localization.USE_PHONE_INSTEAD
+        }
+      )
+    ] }),
+    oauthProviders && oauthProviders.length > 0 && /* @__PURE__ */ jsxs(Fragment, { children: [
+      /* @__PURE__ */ jsxs("div", { className: "relative flex items-center py-2", children: [
+        /* @__PURE__ */ jsx("div", { className: "flex-grow border-t border-gray-300" }),
+        /* @__PURE__ */ jsx("span", { className: "mx-4 text-sm text-gray-500", children: localization.OR_CONTINUE_WITH }),
+        /* @__PURE__ */ jsx("div", { className: "flex-grow border-t border-gray-300" })
+      ] }),
+      /* @__PURE__ */ jsx("div", { className: "space-y-2", children: oauthProviders.map((provider) => /* @__PURE__ */ jsx(OAuthButton, { provider, redirectUri: oauthRedirectUri }, provider)) })
+    ] })
+  ] }) });
+}
+var magicLinkSchema = z.object({
+  email: z.string().email("Invalid email address")
+});
+function maskEmail(email) {
+  const [local, domain] = email.split("@");
+  if (!local || !domain) return email;
+  const masked = local.length <= 2 ? `${local[0]}***` : `${local[0]}***${local[local.length - 1]}`;
+  return `${masked}@${domain}`;
+}
+function MagicLinkForm({ redirectUrl, onSuccess, onError, className }) {
+  const { sendMagicLink } = useAuth();
+  const { localization, localizeErrors } = useAuthLocalization();
+  const [sent, setSent] = useState(false);
+  const [sentEmail, setSentEmail] = useState("");
+  const [isSubmitting, setIsSubmitting] = useState(false);
+  const [formError, setFormError] = useState(null);
+  const {
+    register,
+    handleSubmit,
+    formState: { errors },
+    getValues
+  } = useForm({
+    resolver: zodResolver(magicLinkSchema),
+    defaultValues: { email: "" }
+  });
+  const onSubmit = useCallback(
+    async (data) => {
+      setFormError(null);
+      setIsSubmitting(true);
+      try {
+        await sendMagicLink({ email: data.email, redirectUrl });
+        setSent(true);
+        setSentEmail(data.email);
+        onSuccess?.();
+      } catch (err) {
+        setFormError(getLocalizedError(err, localization, localizeErrors));
+        onError?.(toAuthError(err));
+      } finally {
+        setIsSubmitting(false);
+      }
+    },
+    [sendMagicLink, redirectUrl, onSuccess, onError, localization, localizeErrors]
+  );
+  const handleResend = useCallback(async () => {
+    const email = getValues("email");
+    setFormError(null);
+    setIsSubmitting(true);
+    try {
+      await sendMagicLink({ email, redirectUrl });
+    } catch (err) {
+      setFormError(getLocalizedError(err, localization, localizeErrors));
+    } finally {
+      setIsSubmitting(false);
+    }
+  }, [sendMagicLink, redirectUrl, getValues, localization, localizeErrors]);
+  if (sent) {
+    return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("div", { className: "p-6 space-y-4 text-center", children: [
+      /* @__PURE__ */ jsxs("p", { className: "text-sm", children: [
+        localization.MAGIC_LINK_EMAIL,
+        " ",
+        /* @__PURE__ */ jsx("strong", { children: maskEmail(sentEmail) })
+      ] }),
+      /* @__PURE__ */ jsx("p", { className: "text-sm text-gray-500", children: localization.MAGIC_LINK_HINT }),
+      /* @__PURE__ */ jsx(Button, { type: "button", variant: "outline", disabled: isSubmitting, onClick: handleResend, children: isSubmitting ? localization.RESENDING : localization.RESEND }),
+      formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError })
+    ] }) });
+  }
+  return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("form", { onSubmit: handleSubmit(onSubmit), className: "p-6 space-y-4", children: [
+    /* @__PURE__ */ jsx(
+      FormInput,
+      {
+        label: localization.EMAIL,
+        id: "magic-link-email",
+        type: "email",
+        autoComplete: "email",
+        error: errors.email?.message,
+        ...register("email")
+      }
+    ),
+    formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError }),
+    /* @__PURE__ */ jsx(
+      SubmitButton,
+      {
+        loading: isSubmitting,
+        loadingLabel: localization.SENDING,
+        actionLabel: localization.MAGIC_LINK_ACTION
+      }
+    )
+  ] }) });
+}
+var signupSchema = z.object({
+  email: z.string().email("Invalid email address"),
+  password: z.string().min(8, "Password must be at least 8 characters"),
+  name: z.string().min(1, "Name is required"),
+  username: z.string().optional(),
+  phoneNumber: z.string().optional(),
+  organizationName: z.string().optional(),
+  acceptTerms: z.boolean(),
+  captchaToken: z.string().optional()
+});
+function SignupForm({
+  onSuccess,
+  onError,
+  showUsernameField = false,
+  showPhoneField = false,
+  organizationName,
+  acceptTermsRequired = false,
+  onLoginClick,
+  className
+}) {
+  const { signup } = useAuth();
+  const { localization, localizeErrors } = useAuthLocalization();
+  const [formError, setFormError] = useState(null);
+  const [isSubmitting, setIsSubmitting] = useState(false);
+  const {
+    register,
+    handleSubmit,
+    formState: { errors }
+  } = useForm({
+    resolver: zodResolver(
+      acceptTermsRequired ? signupSchema.refine((data) => data.acceptTerms === true, {
+        message: localization.ACCEPT_TERMS_ERROR,
+        path: ["acceptTerms"]
+      }) : signupSchema
+    ),
+    defaultValues: {
+      email: "",
+      password: "",
+      name: "",
+      username: "",
+      phoneNumber: "",
+      organizationName: organizationName ?? "",
+      acceptTerms: false
+    }
+  });
+  const onSubmit = useCallback(
+    async (data) => {
+      setFormError(null);
+      setIsSubmitting(true);
+      try {
+        const response = await signup({
+          email: data.email,
+          password: data.password,
+          name: data.name,
+          username: data.username,
+          organizationName: data.organizationName,
+          acceptTerms: data.acceptTerms
+        });
+        onSuccess(response.user);
+      } catch (err) {
+        setFormError(getLocalizedError(err, localization, localizeErrors));
+        onError?.(toAuthError(err));
+      } finally {
+        setIsSubmitting(false);
+      }
+    },
+    [signup, onSuccess, onError, localization, localizeErrors]
+  );
+  return /* @__PURE__ */ jsx(Card, { className, children: /* @__PURE__ */ jsxs("form", { onSubmit: handleSubmit(onSubmit), className: "p-6 space-y-4", children: [
+    /* @__PURE__ */ jsx(
+      FormInput,
+      {
+        label: localization.NAME,
+        id: "signup-name",
+        type: "text",
+        autoComplete: "name",
+        error: errors.name?.message,
+        ...register("name")
+      }
+    ),
+    /* @__PURE__ */ jsx(
+      FormInput,
+      {
+        label: localization.EMAIL,
+        id: "signup-email",
+        type: "email",
+        autoComplete: "email",
+        error: errors.email?.message,
+        ...register("email")
+      }
+    ),
+    /* @__PURE__ */ jsx(
+      FormPasswordInput,
+      {
+        label: localization.PASSWORD,
+        id: "signup-password",
+        autoComplete: "new-password",
+        error: errors.password?.message,
+        ...register("password")
+      }
+    ),
+    showUsernameField && /* @__PURE__ */ jsx(
+      FormInput,
+      {
+        label: localization.USERNAME,
+        id: "signup-username",
+        type: "text",
+        autoComplete: "username",
+        error: errors.username?.message,
+        ...register("username")
+      }
+    ),
+    showPhoneField && /* @__PURE__ */ jsx(
+      FormInput,
+      {
+        label: localization.PHONE_NUMBER_PLACEHOLDER,
+        id: "signup-phone",
+        type: "tel",
+        autoComplete: "tel",
+        error: errors.phoneNumber?.message,
+        ...register("phoneNumber")
+      }
+    ),
+    acceptTermsRequired && /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+      /* @__PURE__ */ jsx(
+        "input",
+        {
+          id: "signup-terms",
+          type: "checkbox",
+          "aria-invalid": errors.acceptTerms ? true : void 0,
+          ...register("acceptTerms")
+        }
+      ),
+      /* @__PURE__ */ jsx("label", { htmlFor: "signup-terms", className: "text-sm", children: localization.ACCEPT_TERMS }),
+      errors.acceptTerms && /* @__PURE__ */ jsx("p", { className: "text-sm text-red-600", children: errors.acceptTerms.message })
+    ] }),
+    formError && /* @__PURE__ */ jsx("div", { "aria-live": "polite", className: "text-sm text-red-600", children: formError }),
+    /* @__PURE__ */ jsx(
+      SubmitButton,
+      {
+        loading: isSubmitting,
+        loadingLabel: localization.SIGNING_IN,
+        actionLabel: localization.SIGN_UP_ACTION
+      }
+    ),
+    onLoginClick && /* @__PURE__ */ jsxs("p", { className: "text-sm text-center", children: [
+      localization.ALREADY_HAVE_AN_ACCOUNT,
+      " ",
+      /* @__PURE__ */ jsx(
+        Button,
+        {
+          variant: "link",
+          type: "button",
+          className: "p-0 h-auto text-sm",
+          onClick: onLoginClick,
+          children: localization.SIGN_IN
+        }
+      )
+    ] })
+  ] }) });
+}
+function OrganizationMenu({
+  showCreateNew = false,
+  currentOrgId,
+  onSwitch,
+  onCreateNew,
+  className
+}) {
+  const { organizations, isLoading, refresh } = useOrganizations();
+  const { localization } = useAuthLocalization();
+  useEffect(() => {
+    refresh();
+  }, [refresh]);
+  const currentOrg = organizations.find((o) => o.id === currentOrgId);
+  return /* @__PURE__ */ jsx("div", { className, children: /* @__PURE__ */ jsxs(DropdownMenu, { children: [
+    /* @__PURE__ */ jsx(DropdownMenuTrigger, { asChild: true, children: /* @__PURE__ */ jsx(Button, { variant: "outline", disabled: isLoading, children: currentOrg ? /* @__PURE__ */ jsxs("span", { className: "flex items-center gap-2", children: [
+      currentOrg.logo ? /* @__PURE__ */ jsx("img", { src: currentOrg.logo, alt: "", className: "h-5 w-5 rounded" }) : /* @__PURE__ */ jsx("span", { className: "flex h-5 w-5 items-center justify-center rounded bg-gray-200 text-xs", children: getInitials(currentOrg.name) }),
+      currentOrg.name
+    ] }) : localization.SELECT_ORGANIZATION }) }),
+    /* @__PURE__ */ jsxs(DropdownMenuContent, { align: "end", children: [
+      organizations.map((org) => /* @__PURE__ */ jsx(DropdownMenuItem, { onClick: () => onSwitch?.(org), children: /* @__PURE__ */ jsxs("div", { className: "flex items-center gap-2", children: [
+        org.logo ? /* @__PURE__ */ jsx("img", { src: org.logo, alt: "", className: "h-5 w-5 rounded" }) : /* @__PURE__ */ jsx("span", { className: "flex h-5 w-5 items-center justify-center rounded bg-gray-200 text-xs", children: getInitials(org.name) }),
+        /* @__PURE__ */ jsx("span", { children: org.name }),
+        org.id === currentOrgId && /* @__PURE__ */ jsx("span", { className: "ml-auto", children: "\u2713" })
+      ] }) }, org.id)),
+      showCreateNew && /* @__PURE__ */ jsxs(Fragment, { children: [
+        /* @__PURE__ */ jsx(DropdownMenuSeparator, {}),
+        /* @__PURE__ */ jsx(DropdownMenuItem, { onClick: onCreateNew, children: localization.CREATE_ORGANIZATION })
+      ] })
+    ] })
+  ] }) });
+}
+function UserMenu({ showOrganization = false, menuItems, className }) {
+  const { user } = useSession();
+  const { logout } = useAuth();
+  const { localization } = useAuthLocalization();
+  const handleSignOut = useCallback(async () => {
+    await logout();
+  }, [logout]);
+  if (!user) return null;
+  return /* @__PURE__ */ jsx("div", { className, children: /* @__PURE__ */ jsxs(DropdownMenu, { children: [
+    /* @__PURE__ */ jsx(DropdownMenuTrigger, { asChild: true, children: /* @__PURE__ */ jsx(Button, { variant: "ghost", children: /* @__PURE__ */ jsxs("span", { className: "flex items-center gap-2", children: [
+      user.avatar ? /* @__PURE__ */ jsx("img", { src: user.avatar, alt: "", className: "h-8 w-8 rounded-full" }) : /* @__PURE__ */ jsx("span", { className: "flex h-8 w-8 items-center justify-center rounded-full bg-gray-200 text-xs font-medium", children: getInitials(user.name) }),
+      /* @__PURE__ */ jsx("span", { className: "text-sm font-medium", children: user.name })
+    ] }) }) }),
+    /* @__PURE__ */ jsxs(DropdownMenuContent, { align: "end", children: [
+      /* @__PURE__ */ jsx(DropdownMenuLabel, { children: /* @__PURE__ */ jsxs("div", { children: [
+        /* @__PURE__ */ jsx("p", { className: "text-sm", children: user.email }),
+        showOrganization && /* @__PURE__ */ jsx("p", { className: "text-xs text-gray-500", children: localization.ORGANIZATION })
+      ] }) }),
+      /* @__PURE__ */ jsx(DropdownMenuSeparator, {}),
+      menuItems?.map((item) => /* @__PURE__ */ jsx(DropdownMenuItem, { onClick: item.onClick, children: item.label }, item.label)),
+      menuItems && menuItems.length > 0 && /* @__PURE__ */ jsx(DropdownMenuSeparator, {}),
+      /* @__PURE__ */ jsx(DropdownMenuItem, { onClick: handleSignOut, children: localization.SIGN_OUT })
+    ] })
+  ] }) });
+}
+
+export { AUTH_ERROR_CODES, AccountSwitcher, AuthContext, AuthProvider, DeviceList, LoadingBoundary, LocalizationContext, LoginActivityFeed, LoginForm, MagicLinkForm, OAuthButton, OrganizationMenu, PhoneLoginForm, RISK_COLORS, SessionGuard, SignupForm, UserMenu, authLocalization, credentialLoginSchema, getInitials, getLocalizedError, getRiskLevel, magicLinkSchema, otpVerifySchema, phoneLoginSchema, phoneNumberSchema, otpVerifySchema2 as phoneOtpVerifySchema, phonePasswordSchema, signupSchema, toAuthError, useApiKeys, useAuth, useAuthContext, useAuthLocalization, useDevices, useLoginActivity, useOrganizations, usePhone, useSession, useSessions, useUser };
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map