@aura-stack/auth 0.1.0 → 0.2.0-rc.1

package/dist/cookie.cjs

@@ -21,40 +21,34 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 var cookie_exports = {};
 __export(cookie_exports, {
   COOKIE_NAME: () => COOKIE_NAME,
+  createCookieStore: () => createCookieStore,
   createSessionCookie: () => createSessionCookie,
-  defaultCookieConfig: () => defaultCookieConfig,
   defaultCookieOptions: () => defaultCookieOptions,
   defaultHostCookieConfig: () => defaultHostCookieConfig,
   defaultSecureCookieConfig: () => defaultSecureCookieConfig,
   defaultStandardCookieConfig: () => defaultStandardCookieConfig,
-  defineDefaultCookieOptions: () => defineDefaultCookieOptions,
-  expireCookie: () => expireCookie,
-  expiredCookieOptions: () => expiredCookieOptions,
+  defineSecureCookieOptions: () => defineSecureCookieOptions,
+  expiredCookieAttributes: () => expiredCookieAttributes,
   getCookie: () => getCookie,
-  oauthCookie: () => oauthCookie,
-  parse: () => import_cookie2.parse,
-  secureCookieOptions: () => secureCookieOptions,
+  getSetCookie: () => getSetCookie,
   setCookie: () => setCookie
 });
 module.exports = __toCommonJS(cookie_exports);
-var import_cookie = require("cookie");
+var import_cookie = require("@aura-stack/router/cookie");
 
-// src/error.ts
-var AuthError = class extends Error {
-  constructor(type, message) {
-    super(message);
-    this.type = type;
-    this.name = "AuthError";
+// src/errors.ts
+var AuthInternalError = class extends Error {
+  type = "AUTH_INTERNAL_ERROR";
+  code;
+  constructor(code, message, options) {
+    super(message, options);
+    this.code = code;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
   }
 };
 
-// src/assert.ts
-var isRequest = (value) => {
-  return typeof Request !== "undefined" && value instanceof Request;
-};
-
 // src/cookie.ts
-var import_cookie2 = require("cookie");
 var COOKIE_NAME = "aura-auth";
 var defaultCookieOptions = {
   httpOnly: true,
@@ -62,140 +56,187 @@ var defaultCookieOptions = {
   path: "/",
   maxAge: 60 * 60 * 24 * 15
 };
-var defaultCookieConfig = {
-  strategy: "standard",
-  name: COOKIE_NAME,
-  options: defaultCookieOptions
-};
 var defaultStandardCookieConfig = {
   secure: false,
-  httpOnly: true,
-  prefix: ""
+  httpOnly: true
 };
 var defaultSecureCookieConfig = {
   secure: true,
-  prefix: "__Secure-"
+  httpOnly: true
 };
 var defaultHostCookieConfig = {
   secure: true,
-  prefix: "__Host-",
+  httpOnly: true,
   path: "/",
   domain: void 0
 };
-var expiredCookieOptions = {
+var oauthCookieOptions = {
+  httpOnly: true,
+  maxAge: 5 * 60,
+  sameSite: "lax",
+  expires: new Date(Date.now() + 5 * 60 * 1e3)
+};
+var setCookie = (cookieName, value, options) => {
+  return (0, import_cookie.serialize)(cookieName, value, options);
+};
+var expiredCookieAttributes = {
   ...defaultCookieOptions,
   expires: /* @__PURE__ */ new Date(0),
   maxAge: 0
 };
-var defineDefaultCookieOptions = (options) => {
-  return {
-    name: options?.name ?? COOKIE_NAME,
-    prefix: options?.prefix ?? (options?.secure ? "__Secure-" : ""),
-    ...defaultCookieOptions,
-    ...options
-  };
-};
-var setCookie = (cookieName, value, options) => {
-  const { prefix, name } = defineDefaultCookieOptions(options);
-  const cookieNameWithPrefix = `${prefix}${name}.${cookieName}`;
-  return (0, import_cookie.serialize)(cookieNameWithPrefix, value, {
-    ...defaultCookieOptions,
-    ...options
-  });
-};
-var getCookie = (petition, cookie, options, optional = false) => {
-  const cookies = isRequest(petition) ? petition.headers.get("Cookie") : petition.headers.getSetCookie().join("; ");
+var getCookie = (request, cookieName) => {
+  const cookies = request.headers.get("Cookie");
   if (!cookies) {
-    if (optional) {
-      return "";
-    }
-    throw new AuthError("invalid_request", "No cookies found. There is no active session");
+    throw new AuthInternalError("COOKIE_NOT_FOUND", "No cookies found. There is no active session");
   }
-  const { name, prefix } = defineDefaultCookieOptions(options);
-  const parsedCookies = (0, import_cookie.parse)(cookies);
-  const value = parsedCookies[`${prefix}${name}.${cookie}`];
-  if (value === void 0) {
-    if (optional) {
-      return "";
-    }
-    throw new AuthError("invalid_request", `Cookie "${cookie}" not found. There is no active session`);
+  const value = (0, import_cookie.parse)(cookies)[cookieName];
+  if (!value) {
+    throw new AuthInternalError("COOKIE_NOT_FOUND", `Cookie "${cookieName}" not found. There is no active session`);
   }
   return value;
 };
-var createSessionCookie = async (session, cookieOptions, jose) => {
+var getSetCookie = (response, cookieName) => {
+  const cookies = response.headers.getSetCookie();
+  if (!cookies) {
+    throw new AuthInternalError("COOKIE_NOT_FOUND", "No cookies found in response.");
+  }
+  const strCookie = cookies.find((cookie) => cookie.startsWith(`${cookieName}=`));
+  if (!strCookie) {
+    throw new AuthInternalError("COOKIE_NOT_FOUND", `Cookie "${cookieName}" not found in response.`);
+  }
+  return (0, import_cookie.parseSetCookie)(strCookie).value;
+};
+var createSessionCookie = async (jose, session) => {
   try {
     const encoded = await jose.encodeJWT(session);
-    return setCookie("sessionToken", encoded, cookieOptions);
+    return encoded;
   } catch (error) {
-    throw new AuthError("server_error", "Failed to create session cookie", { cause: error });
+    throw new AuthInternalError("INVALID_JWT_TOKEN", "Failed to create session cookie", { cause: error });
   }
 };
-var secureCookieOptions = (request, cookieOptions, trustedProxyHeaders) => {
-  const name = cookieOptions.name ?? COOKIE_NAME;
-  const isSecure = trustedProxyHeaders ? request.url.startsWith("https://") || request.headers.get("X-Forwarded-Proto") === "https" || request.headers.get("Forwarded")?.includes("proto=https") : request.url.startsWith("https://");
-  if (!cookieOptions.options?.httpOnly) {
+var defineSecureCookieOptions = (useSecure, attributes, strategy) => {
+  if (!attributes.httpOnly) {
     console.warn(
       "[WARNING]: Cookie is configured without HttpOnly. This allows JavaScript access via document.cookie and increases XSS risk."
     );
   }
-  if (cookieOptions.options?.domain === "*") {
+  if (attributes.domain === "*") {
+    attributes.domain = void 0;
     console.warn("[WARNING]: Cookie 'Domain' is set to '*', which is insecure. Avoid wildcard domains.");
   }
-  if (!isSecure) {
-    const options = cookieOptions.options;
-    if (options?.secure) {
+  if (!useSecure) {
+    if (attributes.secure) {
       console.warn(
         "[WARNING]: The 'Secure' attribute will be disabled for this cookie. Serve over HTTPS to enforce Secure cookies."
       );
     }
-    if (options?.sameSite == "none") {
-      console.warn("[WARNING]: SameSite=None without a secure connection can be blocked by browsers.");
+    if (attributes.sameSite == "none") {
+      attributes.sameSite = "lax";
+      console.warn("[WARNING]: SameSite=None requires Secure attribute. Changing SameSite to 'Lax'.");
     }
     if (process.env.NODE_ENV === "production") {
       console.warn("[WARNING]: In production, ensure cookies are served over HTTPS to maintain security.");
     }
+    if (strategy === "host") {
+      console.warn("[WARNING]: __Host- cookies require a secure context. Falling back to standard cookie settings.");
+    }
     return {
       ...defaultCookieOptions,
-      ...cookieOptions.options,
-      sameSite: options?.sameSite === "none" ? "lax" : options?.sameSite ?? "lax",
-      ...defaultStandardCookieConfig,
-      name
+      ...attributes,
+      ...defaultStandardCookieConfig
     };
   }
-  return cookieOptions.strategy === "host" ? {
+  return strategy === "host" ? {
     ...defaultCookieOptions,
-    ...cookieOptions.options,
-    ...defaultHostCookieConfig,
-    name
-  } : { ...defaultCookieOptions, ...cookieOptions.options, ...defaultSecureCookieConfig, name };
-};
-var expireCookie = (name, options) => {
-  return setCookie(name, "", { ...options, ...expiredCookieOptions });
-};
-var oauthCookie = (options) => {
+    ...attributes,
+    ...defaultHostCookieConfig
+  } : { ...defaultCookieOptions, ...attributes, ...defaultSecureCookieConfig };
+};
+var createCookieStore = (useSecure, prefix, overrides) => {
+  prefix ??= COOKIE_NAME;
+  const securePrefix = useSecure ? "__Secure-" : "";
+  const hostPrefix = useSecure ? "__Host-" : "";
   return {
-    ...options,
-    secure: options.secure,
-    httpOnly: options.httpOnly,
-    maxAge: 5 * 60,
-    expires: new Date(Date.now() + 5 * 60 * 1e3)
+    sessionToken: {
+      name: `${securePrefix}${prefix}.${overrides?.sessionToken?.name ?? "session_token"}`,
+      attributes: defineSecureCookieOptions(
+        useSecure,
+        {
+          ...defaultCookieOptions,
+          ...overrides?.sessionToken?.attributes
+        },
+        overrides?.sessionToken?.attributes?.strategy ?? "secure"
+      )
+    },
+    state: {
+      name: `${securePrefix}${prefix}.${overrides?.state?.name ?? "state"}`,
+      attributes: defineSecureCookieOptions(
+        useSecure,
+        {
+          ...oauthCookieOptions,
+          ...overrides?.state?.attributes
+        },
+        overrides?.state?.attributes?.strategy ?? "secure"
+      )
+    },
+    csrfToken: {
+      name: `${hostPrefix}${prefix}.${overrides?.csrfToken?.name ?? "csrf_token"}`,
+      attributes: defineSecureCookieOptions(
+        useSecure,
+        {
+          ...overrides?.csrfToken?.attributes,
+          ...defaultHostCookieConfig
+        },
+        overrides?.csrfToken?.attributes?.strategy ?? "host"
+      )
+    },
+    redirectTo: {
+      name: `${securePrefix}${prefix}.${overrides?.redirectTo?.name ?? "redirect_to"}`,
+      attributes: defineSecureCookieOptions(
+        useSecure,
+        {
+          ...oauthCookieOptions,
+          ...overrides?.redirectTo?.attributes
+        },
+        overrides?.redirectTo?.attributes?.strategy ?? "secure"
+      )
+    },
+    redirectURI: {
+      name: `${securePrefix}${prefix}.${overrides?.redirectURI?.name ?? "redirect_uri"}`,
+      attributes: defineSecureCookieOptions(
+        useSecure,
+        {
+          ...oauthCookieOptions,
+          ...overrides?.redirectURI?.attributes
+        },
+        overrides?.redirectURI?.attributes?.strategy ?? "secure"
+      )
+    },
+    codeVerifier: {
+      name: `${securePrefix}${prefix}.${overrides?.codeVerifier?.name ?? "code_verifier"}`,
+      attributes: defineSecureCookieOptions(
+        useSecure,
+        {
+          ...oauthCookieOptions,
+          ...overrides?.codeVerifier?.attributes
+        },
+        overrides?.codeVerifier?.attributes?.strategy ?? "secure"
+      )
+    }
   };
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   COOKIE_NAME,
+  createCookieStore,
   createSessionCookie,
-  defaultCookieConfig,
   defaultCookieOptions,
   defaultHostCookieConfig,
   defaultSecureCookieConfig,
   defaultStandardCookieConfig,
-  defineDefaultCookieOptions,
-  expireCookie,
-  expiredCookieOptions,
+  defineSecureCookieOptions,
+  expiredCookieAttributes,
   getCookie,
-  oauthCookie,
-  parse,
-  secureCookieOptions,
+  getSetCookie,
   setCookie
 });

package/dist/cookie.d.ts

@@ -1,11 +1,10 @@
-import { SerializeOptions } from 'cookie';
-export { parse } from 'cookie';
+import { SerializeOptions } from '@aura-stack/router/cookie';
 import { JWTPayload } from '@aura-stack/jose/jose';
-import { C as CookieConfig, a as CookieConfigInternal, b as CookieName, A as AuthRuntimeConfig } from './index-DpfbvTZ_.js';
-import { LiteralUnion } from './@types/utility.js';
-import 'zod/v4';
+import { A as AuthRuntimeConfig, C as CookieConfig, a as CookieStoreConfig } from './index-DkaLJFn8.js';
+import 'zod';
 import './schemas.js';
-import 'zod/v4/core';
+import '@aura-stack/jose';
+import './@types/utility.js';
 
 /**
  * Prefix for all cookies set by Aura Auth.
@@ -15,52 +14,51 @@ declare const COOKIE_NAME = "aura-auth";
  * Default cookie options used by Aura Auth.
  */
 declare const defaultCookieOptions: SerializeOptions;
+declare const defaultStandardCookieConfig: SerializeOptions;
 /**
- * Default cookie options for "standard" cookies.
- */
-declare const defaultCookieConfig: CookieConfig;
-declare const defaultStandardCookieConfig: CookieConfigInternal;
-/**
- * Default cookie options for "secure" cookies.
+ * Default cookie options for "__Secure-" cookies.
  * @see https://httpwg.org/http-extensions/draft-ietf-httpbis-rfc6265bis.html#name-the-__secure-prefix
  */
-declare const defaultSecureCookieConfig: CookieConfigInternal;
+declare const defaultSecureCookieConfig: SerializeOptions;
 /**
- * Default cookie options for "host" cookies.
+ * Default cookie options for "__Host-" cookies.
  * @see https://httpwg.org/http-extensions/draft-ietf-httpbis-rfc6265bis.html#name-the-__host-prefix
  */
-declare const defaultHostCookieConfig: CookieConfigInternal;
-/**
- * Cookie options for expired cookies.
- */
-declare const expiredCookieOptions: SerializeOptions;
-declare const defineDefaultCookieOptions: (options?: CookieConfigInternal) => CookieConfigInternal;
+declare const defaultHostCookieConfig: SerializeOptions;
 /**
- * Set a cookie with the given name, value and `CookieOptionsInternal`; supports secure
+ * Set a cookie with the given name, value and `SerializeOptions`; supports secure
  * cookies with the `__Secure-` and `__Host-` prefixes.
  *
  * Cookie attributes are serialized in the following order:
  * Expires, Max-Age, Domain, Path, Secure, HttpOnly, SameSite, Partitioned, Priority.
  */
-declare const setCookie: (cookieName: LiteralUnion<CookieName>, value: string, options?: CookieConfigInternal) => string;
+declare const setCookie: (cookieName: string, value: string, options?: SerializeOptions) => string;
+declare const expiredCookieAttributes: SerializeOptions;
 /**
  * Get a cookie by name from the request.
  *
  * @param request The incoming request object
  * @param cookie Cookie name to retrieve
- * @param options Cookie options to define the prefix and other attributes
- * @param optional If true, returns an empty string instead of throwing an error when the cookie is not found
- * @returns The value of the cookie or undefined if not found
+ * @returns The value of the cookie or throw an error if not found
+ */
+declare const getCookie: (request: Request, cookieName: string) => string;
+/**
+ * Get a Set-Cookie header value by cookie name from the response.
+ *
+ * @param response The response object
+ * @param cookieName Cookie name to retrieve
+ * @returns The value of the Set-Cookie header or throw an error if not found
  */
-declare const getCookie: (petition: Request | Response, cookie: LiteralUnion<CookieName>, options?: CookieConfigInternal, optional?: boolean) => string;
+declare const getSetCookie: (response: Response, cookieName: string) => string | undefined;
 /**
  * Create a session cookie containing a signed and encrypted JWT, using the
  * `@aura-stack/jose` package for the encoding.
  *
+ * @param jose - Jose Instance
  * @param session - The JWT payload to be encoded in the session cookie
  * @returns The serialized session cookie string
  */
-declare const createSessionCookie: (session: JWTPayload, cookieOptions: CookieConfigInternal, jose: AuthRuntimeConfig["jose"]) => Promise<string>;
+declare const createSessionCookie: (jose: AuthRuntimeConfig["jose"], session: JWTPayload) => Promise<string>;
 /**
  * Defines the cookie configuration based on the request security and cookie options passed
  * in the Aura Auth configuration (`createAuth` function). This function ensures the correct
@@ -69,25 +67,18 @@ declare const createSessionCookie: (session: JWTPayload, cookieOptions: CookieCo
  *
  * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Forwarded-Proto
  * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Forwarded
- * @param request The incoming request object
- * @param cookieOptions Cookie options from the Aura Auth configuration
+ * @param useSecure Whether the request is secure (HTTPS)
+ * @param attributes The cookie attributes to be applied
+ * @param strategy The cookie strategy: "host", "secure", or "standard"
  * @returns The finalized cookie options to be used for setting cookies
  */
-declare const secureCookieOptions: (request: Request, cookieOptions: CookieConfig, trustedProxyHeaders?: boolean) => CookieConfigInternal;
-/**
- * Expire a cookie by setting its value to an empty string and applying expired cookie options.
- *
- * @param name The name of the cookie to expire
- * @param options cookie options obtained from secureCookieOptions
- * @returns formatted cookie options for an expired cookie
- */
-declare const expireCookie: (name: LiteralUnion<CookieName>, options: CookieConfigInternal) => string;
+declare const defineSecureCookieOptions: (useSecure: boolean, attributes: SerializeOptions, strategy: "host" | "secure" | "standard") => SerializeOptions;
 /**
- * Set OAuth-specific cookie options, including a short maxAge of 5 minutes.
- *
- * @param options cookie options obtained from secureCookieOptions
- * @returns formatted cookie options for OAuth cookies
+ * @param useSecure Whether the request is secure (HTTPS)
+ * @param prefix Optional prefix added to all cookie names
+ * @param overrides Optional overrides for individual cookie configurations
+ * @returns The complete cookie store configuration
  */
-declare const oauthCookie: (options: CookieConfigInternal) => CookieConfigInternal;
+declare const createCookieStore: (useSecure: boolean, prefix?: string, overrides?: CookieConfig["overrides"]) => CookieStoreConfig;
 
-export { COOKIE_NAME, createSessionCookie, defaultCookieConfig, defaultCookieOptions, defaultHostCookieConfig, defaultSecureCookieConfig, defaultStandardCookieConfig, defineDefaultCookieOptions, expireCookie, expiredCookieOptions, getCookie, oauthCookie, secureCookieOptions, setCookie };
+export { COOKIE_NAME, createCookieStore, createSessionCookie, defaultCookieOptions, defaultHostCookieConfig, defaultSecureCookieConfig, defaultStandardCookieConfig, defineSecureCookieOptions, expiredCookieAttributes, getCookie, getSetCookie, setCookie };

package/dist/cookie.js

@@ -1,36 +1,29 @@
 import {
   COOKIE_NAME,
+  createCookieStore,
   createSessionCookie,
-  defaultCookieConfig,
   defaultCookieOptions,
   defaultHostCookieConfig,
   defaultSecureCookieConfig,
   defaultStandardCookieConfig,
-  defineDefaultCookieOptions,
-  expireCookie,
-  expiredCookieOptions,
+  defineSecureCookieOptions,
+  expiredCookieAttributes,
   getCookie,
-  oauthCookie,
-  parse,
-  secureCookieOptions,
+  getSetCookie,
   setCookie
-} from "./chunk-ZV4BH47P.js";
-import "./chunk-6SM22VVJ.js";
-import "./chunk-FJUDBLCP.js";
+} from "./chunk-W6LG7BFW.js";
+import "./chunk-RRLIF4PQ.js";
 export {
   COOKIE_NAME,
+  createCookieStore,
   createSessionCookie,
-  defaultCookieConfig,
   defaultCookieOptions,
   defaultHostCookieConfig,
   defaultSecureCookieConfig,
   defaultStandardCookieConfig,
-  defineDefaultCookieOptions,
-  expireCookie,
-  expiredCookieOptions,
+  defineSecureCookieOptions,
+  expiredCookieAttributes,
   getCookie,
-  oauthCookie,
-  parse,
-  secureCookieOptions,
+  getSetCookie,
   setCookie
 };

package/dist/errors.cjs

@@ -0,0 +1,85 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/errors.ts
+var errors_exports = {};
+__export(errors_exports, {
+  AuthInternalError: () => AuthInternalError,
+  AuthSecurityError: () => AuthSecurityError,
+  OAuthProtocolError: () => OAuthProtocolError,
+  isAuthInternalError: () => isAuthInternalError,
+  isAuthSecurityError: () => isAuthSecurityError,
+  isNativeError: () => isNativeError,
+  isOAuthProtocolError: () => isOAuthProtocolError
+});
+module.exports = __toCommonJS(errors_exports);
+var OAuthProtocolError = class extends Error {
+  type = "OAUTH_PROTOCOL_ERROR";
+  error;
+  errorURI;
+  constructor(error, description, errorURI, options) {
+    super(description, options);
+    this.error = error;
+    this.errorURI = errorURI;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
+var AuthInternalError = class extends Error {
+  type = "AUTH_INTERNAL_ERROR";
+  code;
+  constructor(code, message, options) {
+    super(message, options);
+    this.code = code;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
+var AuthSecurityError = class extends Error {
+  type = "AUTH_SECURITY_ERROR";
+  code;
+  constructor(code, message, options) {
+    super(message, options);
+    this.code = code;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
+var isNativeError = (error) => {
+  return error instanceof Error;
+};
+var isOAuthProtocolError = (error) => {
+  return error instanceof OAuthProtocolError;
+};
+var isAuthInternalError = (error) => {
+  return error instanceof AuthInternalError;
+};
+var isAuthSecurityError = (error) => {
+  return error instanceof AuthSecurityError;
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AuthInternalError,
+  AuthSecurityError,
+  OAuthProtocolError,
+  isAuthInternalError,
+  isAuthSecurityError,
+  isNativeError,
+  isOAuthProtocolError
+});

package/dist/errors.d.ts

@@ -0,0 +1,49 @@
+import { E as ErrorType, b as AuthInternalErrorCode, c as AuthSecurityErrorCode } from './index-DkaLJFn8.js';
+import { LiteralUnion } from './@types/utility.js';
+import 'zod';
+import './schemas.js';
+import '@aura-stack/router/cookie';
+import '@aura-stack/jose';
+import '@aura-stack/jose/jose';
+
+/**
+ * The object returned by the class to users its:
+ *   - type: "OAUTH_PROTOCOL_ERROR" to identify the error type
+ *   - error: A short error code
+ *   - description: A human-readable description of the error. The description is obtained from the message property of the Error class
+ *   - errorURI: A URI with more information about the error
+ */
+declare class OAuthProtocolError extends Error {
+    readonly type = "OAUTH_PROTOCOL_ERROR";
+    readonly error: string;
+    readonly errorURI?: string;
+    constructor(error: LiteralUnion<Uppercase<ErrorType>>, description?: string, errorURI?: string, options?: ErrorOptions);
+}
+/**
+ * The object returned when an internal error occurs in the Aura Auth library.
+ *   - type: "AUTH_INTERNAL_ERROR" to identify the error type
+ *   - message: A human-readable description of the error. The description is obtained from the message property of the Error class
+ *   - code: An optional error code that can be used to identify the specific error, for example, LIKE "ERR_AUTH_INTERNAL_ERROR"
+ */
+declare class AuthInternalError extends Error {
+    readonly type = "AUTH_INTERNAL_ERROR";
+    readonly code: string;
+    constructor(code: AuthInternalErrorCode, message?: string, options?: ErrorOptions);
+}
+/**
+ * The object returned when a security error occurs in the Aura Auth library.
+ *   - type: "AUTH_SECURITY_ERROR" to identify the error type
+ *   - message: A human-readable description of the error. The description is obtained from the message property of the Error class
+ *   - code: An optional error code that can be used to identify the specific error, for example, LIKE "ERR_AUTH_SECURITY_ERROR"
+ */
+declare class AuthSecurityError extends Error {
+    readonly type = "AUTH_SECURITY_ERROR";
+    readonly code: string;
+    constructor(code: AuthSecurityErrorCode, message?: string, options?: ErrorOptions);
+}
+declare const isNativeError: (error: unknown) => error is Error;
+declare const isOAuthProtocolError: (error: unknown) => error is OAuthProtocolError;
+declare const isAuthInternalError: (error: unknown) => error is AuthInternalError;
+declare const isAuthSecurityError: (error: unknown) => error is AuthSecurityError;
+
+export { AuthInternalError, AuthSecurityError, OAuthProtocolError, isAuthInternalError, isAuthSecurityError, isNativeError, isOAuthProtocolError };

package/dist/errors.js

@@ -0,0 +1,18 @@
+import {
+  AuthInternalError,
+  AuthSecurityError,
+  OAuthProtocolError,
+  isAuthInternalError,
+  isAuthSecurityError,
+  isNativeError,
+  isOAuthProtocolError
+} from "./chunk-RRLIF4PQ.js";
+export {
+  AuthInternalError,
+  AuthSecurityError,
+  OAuthProtocolError,
+  isAuthInternalError,
+  isAuthSecurityError,
+  isNativeError,
+  isOAuthProtocolError
+};