@aura-stack/auth 0.1.0-rc.6 → 0.1.0-rc.7

package/dist/@types/index.d.ts

@@ -1,9 +1,7 @@
 import 'zod/v4';
-import '../jose.js';
+import '@aura-stack/jose/jose';
 import '../schemas.js';
-import '@aura-stack/router';
 import 'cookie';
 export { LiteralUnion, Prettify } from './utility.js';
-export { w as AccessTokenError, c as AuthConfig, A as AuthRuntimeConfig, v as AuthorizationError, C as CookieConfig, a as CookieConfigInternal, b as CookieName, t as CookieStrategyOptions, E as ErrorType, H as HostCookie, p as JWTStandardClaims, J as JoseInstance, u as OAuthError, O as OAuthProvider, d as OAuthProviderConfig, e as OAuthProviderCredentials, R as RouterGlobalContext, q as SecureCookie, S as Session, r as StandardCookie, T as TokenRevocationError, U as User } from '../index-CKVRbv5V.js';
-import '@aura-stack/jose/jose';
+export { y as AccessTokenError, c as AuthConfig, d as AuthInstance, A as AuthRuntimeConfig, w as AuthorizationError, C as CookieConfig, a as CookieConfigInternal, b as CookieName, u as CookieStrategyOptions, E as ErrorType, H as HostCookie, q as JWTStandardClaims, J as JoseInstance, v as OAuthError, O as OAuthProvider, e as OAuthProviderConfig, f as OAuthProviderCredentials, R as RouterGlobalContext, r as SecureCookie, S as Session, t as StandardCookie, T as TokenRevocationError, U as User } from '../index-DpfbvTZ_.js';
 import 'zod/v4/core';

package/dist/@types/router.d.d.ts

@@ -1,10 +1,8 @@
-import { R as RouterGlobalContext } from '../index-CKVRbv5V.js';
+import { R as RouterGlobalContext } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import './utility.js';
 

package/dist/@types/utility.d.ts

@@ -1,6 +1,10 @@
 type Prettify<T> = {
     [K in keyof T]: T[K];
-} & {};
-type LiteralUnion<T extends U, U = string> = T | (U & Record<never, never>);
+} & {
+    __aura_auth_prettify_brand?: never;
+};
+type LiteralUnion<T extends U, U = string> = (T | (U & Record<never, never>)) & {
+    __aura_auth_literal_union_brand?: never;
+};
 
 export type { LiteralUnion, Prettify };

package/dist/actions/callback/access-token.d.ts

@@ -1,10 +1,8 @@
-import { e as OAuthProviderCredentials } from '../../index-CKVRbv5V.js';
+import { f as OAuthProviderCredentials } from '../../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../../jose.js';
 import '@aura-stack/jose/jose';
 import '../../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../../@types/utility.js';
 

package/dist/actions/callback/callback.d.ts

@@ -1,7 +1,6 @@
 import * as _aura_stack_router from '@aura-stack/router';
-import { A as AuthRuntimeConfig } from '../../index-CKVRbv5V.js';
+import { A as AuthRuntimeConfig } from '../../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../../jose.js';
 import '@aura-stack/jose/jose';
 import '../../schemas.js';
 import 'zod/v4/core';

package/dist/actions/callback/userinfo.d.ts

@@ -1,10 +1,8 @@
-import { e as OAuthProviderCredentials, U as User } from '../../index-CKVRbv5V.js';
+import { f as OAuthProviderCredentials, U as User } from '../../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../../jose.js';
 import '@aura-stack/jose/jose';
 import '../../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../../@types/utility.js';
 

package/dist/actions/index.d.ts

@@ -4,9 +4,8 @@ export { sessionAction } from './session/session.js';
 export { signOutAction } from './signOut/signOut.js';
 export { csrfTokenAction } from './csrfToken/csrfToken.js';
 import '@aura-stack/router';
-import '../index-CKVRbv5V.js';
+import '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';

package/dist/actions/signIn/authorization.d.ts

@@ -1,10 +1,8 @@
-import { e as OAuthProviderCredentials } from '../../index-CKVRbv5V.js';
+import { f as OAuthProviderCredentials } from '../../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../../jose.js';
 import '@aura-stack/jose/jose';
 import '../../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../../@types/utility.js';
 

package/dist/actions/signIn/signIn.d.ts

@@ -1,7 +1,6 @@
 import * as _aura_stack_router from '@aura-stack/router';
-import { A as AuthRuntimeConfig } from '../../index-CKVRbv5V.js';
+import { A as AuthRuntimeConfig } from '../../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../../jose.js';
 import '@aura-stack/jose/jose';
 import '../../schemas.js';
 import 'zod/v4/core';

package/dist/cookie.d.ts

@@ -1,13 +1,11 @@
 import { SerializeOptions } from 'cookie';
 export { parse } from 'cookie';
 import { JWTPayload } from '@aura-stack/jose/jose';
-import { C as CookieConfig, a as CookieConfigInternal, b as CookieName, A as AuthRuntimeConfig } from './index-CKVRbv5V.js';
+import { C as CookieConfig, a as CookieConfigInternal, b as CookieName, A as AuthRuntimeConfig } from './index-DpfbvTZ_.js';
 import { LiteralUnion } from './@types/utility.js';
 import 'zod/v4';
-import './jose.js';
 import './schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 
 /**
  * Prefix for all cookies set by Aura Auth.

package/dist/error.d.ts

@@ -1,11 +1,9 @@
-import { E as ErrorType } from './index-CKVRbv5V.js';
+import { E as ErrorType } from './index-DpfbvTZ_.js';
 import { LiteralUnion } from './@types/utility.js';
 import 'zod/v4';
-import './jose.js';
 import '@aura-stack/jose/jose';
 import './schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 
 /**

package/dist/{index-CKVRbv5V.d.ts → index-DpfbvTZ_.d.ts}

@@ -1,10 +1,8 @@
 import { z } from 'zod/v4';
-import { createJoseInstance } from './jose.js';
+import { JWTPayload } from '@aura-stack/jose/jose';
 import { OAuthAuthorizationErrorResponse, OAuthAccessTokenErrorResponse } from './schemas.js';
-import { Prettify, RoutePattern } from '@aura-stack/router';
 import { SerializeOptions } from 'cookie';
-import { LiteralUnion } from './@types/utility.js';
-import { JWTPayload } from '@aura-stack/jose/jose';
+import { LiteralUnion, Prettify } from './@types/utility.js';
 
 /**
  * @see [X - Get my User](https://docs.x.com/x-api/users/get-my-user)
@@ -474,7 +472,7 @@ interface AuthConfig {
     /**
      * Base path for all authentication routes. Default is `/auth`.
      */
-    basePath?: RoutePattern;
+    basePath?: `/${string}`;
     /**
      * Enable trusted proxy headers for scenarios where the application is behind a reverse proxy or load balancer.
      * This setting allows Aura Auth to correctly interpret headers like `X-Forwarded-For` and `X-Forwarded-Proto`
@@ -491,11 +489,17 @@ interface AuthConfig {
      */
     trustedProxyHeaders?: boolean;
 }
-type JoseInstance = ReturnType<typeof createJoseInstance>;
+interface JoseInstance {
+    decodeJWT: (token: string) => Promise<JWTPayload>;
+    encodeJWT: (payload: JWTPayload) => Promise<string>;
+    signJWS: (payload: JWTPayload) => Promise<string>;
+    verifyJWS: (payload: string) => Promise<JWTPayload>;
+}
 /**
  * Internal runtime configuration used within Aura Auth after initialization.
  * All optional fields from AuthConfig are resolved to their default values.
  * @internal
+ * @todo: is this needed?
  */
 interface AuthRuntimeConfig {
     oauth: Record<LiteralUnion<BuiltInOAuthProvider>, OAuthProviderCredentials>;
@@ -505,11 +509,18 @@ interface AuthRuntimeConfig {
 }
 interface RouterGlobalContext {
     oauth: Record<LiteralUnion<BuiltInOAuthProvider>, OAuthProviderCredentials>;
+    cookies: CookieConfigInternal;
     jose: JoseInstance;
     basePath: string;
-    cookies: CookieConfig;
     trustedProxyHeaders: boolean;
 }
+interface AuthInstance {
+    handlers: {
+        GET: (request: Request) => Response | Promise<Response>;
+        POST: (request: Request) => Response | Promise<Response>;
+    };
+    jose: JoseInstance;
+}
 /**
  * Base OAuth error response structure.
  */
@@ -534,4 +545,4 @@ type AccessTokenError = OAuthError<z.infer<typeof OAuthAccessTokenErrorResponse>
 type TokenRevocationError = OAuthError<"invalid_session_token" | "invalid_csrf_token" | "invalid_redirect_to">;
 type ErrorType = AuthorizationError["error"] | AccessTokenError["error"] | TokenRevocationError["error"];
 
-export { type AuthRuntimeConfig as A, type BitbucketProfile as B, type CookieConfig as C, type DiscordProfile as D, type ErrorType as E, type FigmaProfile as F, type GitLabProfile as G, type HostCookie as H, type JoseInstance as J, type Nameplate as N, type OAuthProvider as O, type RouterGlobalContext as R, type Session as S, type TokenRevocationError as T, type User as U, type XProfile as X, type CookieConfigInternal as a, type CookieName as b, type AuthConfig as c, type OAuthProviderConfig as d, type OAuthProviderCredentials as e, type SpotifyProfile as f, gitlab as g, discord as h, figma as i, bitbucket as j, type GitHubProfile as k, github as l, builtInOAuthProviders as m, createBuiltInOAuthProviders as n, type BuiltInOAuthProvider as o, type JWTStandardClaims as p, type SecureCookie as q, type StandardCookie as r, spotify as s, type CookieStrategyOptions as t, type OAuthError as u, type AuthorizationError as v, type AccessTokenError as w, x };
+export { type AuthRuntimeConfig as A, type BitbucketProfile as B, type CookieConfig as C, type DiscordProfile as D, type ErrorType as E, type FigmaProfile as F, type GitLabProfile as G, type HostCookie as H, type JoseInstance as J, type Nameplate as N, type OAuthProvider as O, type RouterGlobalContext as R, type Session as S, type TokenRevocationError as T, type User as U, type XProfile as X, type CookieConfigInternal as a, type CookieName as b, type AuthConfig as c, type AuthInstance as d, type OAuthProviderConfig as e, type OAuthProviderCredentials as f, type SpotifyProfile as g, gitlab as h, discord as i, figma as j, bitbucket as k, type GitHubProfile as l, github as m, builtInOAuthProviders as n, createBuiltInOAuthProviders as o, type BuiltInOAuthProvider as p, type JWTStandardClaims as q, type SecureCookie as r, spotify as s, type StandardCookie as t, type CookieStrategyOptions as u, type OAuthError as v, type AuthorizationError as w, x, type AccessTokenError as y };

package/dist/index.d.ts

@@ -1,9 +1,7 @@
-import { JWTPayload } from '@aura-stack/jose/jose';
-import * as _aura_stack_router from '@aura-stack/router';
-import { c as AuthConfig } from './index-CKVRbv5V.js';
-export { C as CookieConfig, E as ErrorType, J as JoseInstance, O as OAuthProvider, d as OAuthProviderConfig, e as OAuthProviderCredentials, S as Session, U as User } from './index-CKVRbv5V.js';
+import { c as AuthConfig, d as AuthInstance } from './index-DpfbvTZ_.js';
+export { C as CookieConfig, E as ErrorType, J as JoseInstance, O as OAuthProvider, e as OAuthProviderConfig, f as OAuthProviderCredentials, S as Session, U as User } from './index-DpfbvTZ_.js';
 import 'zod/v4';
-import './jose.js';
+import '@aura-stack/jose/jose';
 import './schemas.js';
 import 'zod/v4/core';
 import 'cookie';
@@ -31,14 +29,6 @@ import './@types/utility.js';
  *   }]
  * })
  */
-declare const createAuth: (authConfig: AuthConfig) => {
-    handlers: _aura_stack_router.GetHttpHandlers<[_aura_stack_router.RouteEndpoint<"GET", "/signIn/:oauth", {}>, _aura_stack_router.RouteEndpoint<"GET", "/callback/:oauth", {}>, _aura_stack_router.RouteEndpoint<"GET", "/session", {}>, _aura_stack_router.RouteEndpoint<"POST", "/signOut", {}>, _aura_stack_router.RouteEndpoint<"GET", "/csrfToken", {}>]>;
-    jose: {
-        decodeJWT: (token: string) => Promise<JWTPayload>;
-        encodeJWT: (payload: JWTPayload) => Promise<string>;
-        signJWS: (payload: JWTPayload) => Promise<string>;
-        verifyJWS: (payload: string) => Promise<JWTPayload>;
-    };
-};
+declare const createAuth: (authConfig: AuthConfig) => AuthInstance;
 
-export { AuthConfig, createAuth };
+export { AuthConfig, AuthInstance, createAuth };

package/dist/oauth/bitbucket.d.ts

@@ -1,9 +1,7 @@
-export { B as BitbucketProfile, j as bitbucket } from '../index-CKVRbv5V.js';
+export { B as BitbucketProfile, k as bitbucket } from '../index-DpfbvTZ_.js';
 import '../@types/utility.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';

package/dist/oauth/discord.d.ts

@@ -1,9 +1,7 @@
-export { D as DiscordProfile, N as Nameplate, h as discord } from '../index-CKVRbv5V.js';
+export { D as DiscordProfile, N as Nameplate, i as discord } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../@types/utility.js';

package/dist/oauth/figma.d.ts

@@ -1,9 +1,7 @@
-export { F as FigmaProfile, i as figma } from '../index-CKVRbv5V.js';
+export { F as FigmaProfile, j as figma } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../@types/utility.js';

package/dist/oauth/github.d.ts

@@ -1,9 +1,7 @@
-export { k as GitHubProfile, l as github } from '../index-CKVRbv5V.js';
+export { l as GitHubProfile, m as github } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../@types/utility.js';

package/dist/oauth/gitlab.d.ts

@@ -1,9 +1,7 @@
-export { G as GitLabProfile, g as gitlab } from '../index-CKVRbv5V.js';
+export { G as GitLabProfile, h as gitlab } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../@types/utility.js';

package/dist/oauth/index.d.ts

@@ -1,9 +1,7 @@
-export { B as BitbucketProfile, o as BuiltInOAuthProvider, D as DiscordProfile, F as FigmaProfile, k as GitHubProfile, G as GitLabProfile, N as Nameplate, f as SpotifyProfile, X as XProfile, j as bitbucket, m as builtInOAuthProviders, n as createBuiltInOAuthProviders, h as discord, i as figma, l as github, g as gitlab, s as spotify, x } from '../index-CKVRbv5V.js';
+export { B as BitbucketProfile, p as BuiltInOAuthProvider, D as DiscordProfile, F as FigmaProfile, l as GitHubProfile, G as GitLabProfile, N as Nameplate, g as SpotifyProfile, X as XProfile, k as bitbucket, n as builtInOAuthProviders, o as createBuiltInOAuthProviders, i as discord, j as figma, m as github, h as gitlab, s as spotify, x } from '../index-DpfbvTZ_.js';
 import '../@types/utility.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';

package/dist/oauth/spotify.d.ts

@@ -1,9 +1,7 @@
-export { f as SpotifyProfile, s as spotify } from '../index-CKVRbv5V.js';
+export { g as SpotifyProfile, s as spotify } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../@types/utility.js';

package/dist/oauth/x.d.ts

@@ -1,9 +1,7 @@
-export { X as XProfile, x } from '../index-CKVRbv5V.js';
+export { X as XProfile, x } from '../index-DpfbvTZ_.js';
 import 'zod/v4';
-import '../jose.js';
 import '@aura-stack/jose/jose';
 import '../schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import '../@types/utility.js';

package/dist/secure.d.ts

@@ -1,10 +1,8 @@
-import { A as AuthRuntimeConfig } from './index-CKVRbv5V.js';
+import { A as AuthRuntimeConfig } from './index-DpfbvTZ_.js';
 import 'zod/v4';
-import './jose.js';
 import '@aura-stack/jose/jose';
 import './schemas.js';
 import 'zod/v4/core';
-import '@aura-stack/router';
 import 'cookie';
 import './@types/utility.js';
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aura-stack/auth",
-  "version": "0.1.0-rc.6",
+  "version": "0.1.0-rc.7",
   "private": false,
   "type": "module",
   "description": "Core auth for @aura-stack/auth",