@axproo/auth-kit 1.0.1

package/README.md

@@ -0,0 +1,183 @@
+# Auth-Kit 🔐
+
+![npm](https://img.shields.io/npm/v/auth-kit)
+![vue](https://img.shields.io/badge/Vue-3.5+-42b883)
+![pinia](https://img.shields.io/badge/Pinia-3.0.4-yellow)
+![typescript](https://img.shields.io/badge/TypeScript-ready-blue)
+![license](https://img.shields.io/badge/license-MIT-green)
+
+**Auth-Kit** est un kit d’authentification moderne pour **Vue 3**, conçu pour fonctionner avec **Pinia**, **TypeScript** et des **formulaires dynamiques**.  
+Il fournit un flux d’authentification clair, extensible et prêt pour la production.
+
+> 💡 Pensé pour les apps SaaS, dashboards admin et projets modulaires.
+
+---
+
+## ✨ Fonctionnalités
+
+- 🔐 Login sécurisé
+- ⏳ Gestion du chargement (`isLoading`)
+- 🔒 Verrouillage temporaire après erreurs (`isLocked`)
+- 🔁 Gestion du flux d’authentification (steps)
+- 🌍 Compatible `vue-i18n`
+- 🧩 Intégration native avec `@axproo/form-builder`
+- 🧠 Store Pinia prêt à l’emploi
+- 🧪 Full TypeScript
+
+---
+
+## 📦 Installation
+
+```bash
+npm install auth-kit pinia vue
+```
+
+⚠️ auth-kit utilise des peerDependencies, assure-toi qu’elles sont bien installées.
+
+## 🔗 Peer Dependencies
+
+| Package          | Version |
+| ---------------- | ------- |
+| vue              | ^3.5.0  |
+| pinia            | 3.0.4   |
+| vite             | ^7.2.4  |
+| @axproo/app-core | ^0.1.0  |
+
+## 🚀 Utilisation rapide
+
+### 1️⃣ Initialiser Pinia
+
+```typescript
+import { createPinia } from 'pinia'
+
+export const pinia = createPinia()
+```
+
+### 2️⃣ Utiliser Auth-Kit
+
+```TypeScript
+import { useAuth, useAuthFlowStore } from '@axproo/auth-kit'
+import { pinia } from '@/pinia'
+
+const { login } = useAuth()
+const flow = useAuthFlowStore(pinia)
+```
+
+### 3️⃣ Soumettre le formulaire
+
+```typescript
+const onSubmit = async (data: Record<string, any>) => {
+  const ok = await login(pinia, data)
+
+  if (ok) {
+    flow.setStep('dashboard')
+  }
+}
+```
+
+## 🧩 Exemple complet (Login)
+
+```vue
+<template>
+  <DynamicForm
+    form-id="auth_login"
+    :ui="loginSchema"
+    @submit="onSubmit"
+    form-class="space-y-6"
+  >
+    <template #spinner>
+      <span class="flex items-center justify-center gap-2">
+        <Loader :size="20" class="animate-spin" />
+        Chargement...
+      </span>
+    </template>
+
+    <template #passwordToggleButton="{ toggle, showPassword }">
+      <button type="button" @click="toggle">
+        <EyeOff v-if="showPassword" />
+        <Eye v-else />
+      </button>
+    </template>
+
+    <template #submit>
+      <button :disabled="flow.isLoading || flow.isLocked">
+        <span v-if="flow.isLoading">Connexion...</span>
+        <span v-else-if="flow.isLocked">
+          Verrouillé {{ flow.lockTimer }}s
+        </span>
+        <span v-else>Se connecter</span>
+      </button>
+    </template>
+
+    <template #errorGlobal="{ error }">
+      <ErrorMessage
+        v-if="error"
+        :message="error"
+        :is-locked="flow.isLocked"
+      />
+    </template>
+  </DynamicForm>
+</template>
+```
+
+## 🧠 Stores disponibles
+
+useAuthFlowStore
+
+| Propriété   | Description                                 |
+| ----------- | ------------------------------------------- |
+| `isLoading` | État de chargement                          |
+| `isLocked`  | Compte temporairement verrouillé            |
+| `lockTimer` | Temps restant du verrouillage               |
+| `step`      | Étape actuelle (`login`, `dashboard`, etc.) |
+
+Méthodes
+
+```typescript
+flow.setStep('login' | 'dashboard' | string)
+```
+
+## 🧩 Slots supportés (DynamicForm)
+
+| Slot                   | Description                        |
+| ---------------------- | ---------------------------------- |
+| `spinner`              | Indicateur de chargement           |
+| `passwordToggleButton` | Afficher / masquer le mot de passe |
+| `showLabel`            | Label “Se souvenir de moi”         |
+| `showPasswordForgot`   | Bouton “Mot de passe oublié”       |
+| `submit`               | Bouton de soumission               |
+| `errorGlobal`          | Message d’erreur global            |
+
+## 🛠 Build
+
+```bash
+npm run build
+```
+
+Génère :
+
+* auth-kit.es.js → ESM
+* auth-kit.umd.js → UMD
+* index.d.ts → Types TS
+
+## 🧪 Environnements supportés
+
+- Vue 3 SPA
+- Dashboard Admin
+- SaaS
+- Projets modulaires / monorepos
+
+## 📄 Licence
+
+MIT © AXPROO
+
+## 🤝 Contribuer
+
+Les PR sont bienvenues.
+Merci de respecter la structure TypeScript et Pinia existante.
+
+## 💬 Support
+
+Pour toute question ou intégration avancée :
+
+👉 AXPROO Team

package/dist/api/auth.api.d.ts

@@ -0,0 +1,6 @@
+import { AuthResponse } from '../types/auth.types';
+export declare const authApi: {
+    login(payload: any): Promise<AuthResponse>;
+    me(): Promise<AuthResponse>;
+    logout(): Promise<AuthResponse>;
+};

package/dist/auth-kit.es.js

@@ -0,0 +1,446 @@
+import { useAppErrors as pt, normalizeBackendErrors as dt } from "@axproo/app-core";
+import { hasInjectionContext as B, inject as W, getCurrentInstance as Et, ref as ot, reactive as _t, markRaw as j, effectScope as gt, isRef as A, isReactive as z, toRef as I, toRaw as mt, nextTick as Y, getCurrentScope as vt, onScopeDispose as yt, watch as Nt, computed as nt, toRefs as Z } from "vue";
+const rt = {
+  apiBaseUrl: "",
+  userKey: "auth_login",
+  enableMock: !1
+}, Ct = {
+  install(t, r) {
+    Object.assign(rt, r);
+  }
+};
+async function R(t, r) {
+  try {
+    const n = await fetch(`${rt.apiBaseUrl}${t}`, {
+      credentials: "include",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      ...r
+    }), s = await n.json().catch(() => ({}));
+    return {
+      ok: n.ok,
+      status: n.status,
+      data: s,
+      next: s?.next,
+      user: s?.data?.user ?? {}
+    };
+  } catch (n) {
+    return {
+      ok: !1,
+      status: 0,
+      data: n
+    };
+  }
+}
+const J = {
+  async login(t) {
+    return R("/auth/login", {
+      method: "POST",
+      body: JSON.stringify(t)
+    });
+  },
+  async me() {
+    return R("/auth/me", {
+      method: "GET"
+    });
+  },
+  async logout() {
+    return R("/auth/logout", {
+      method: "POST"
+    });
+  }
+};
+const P = typeof window < "u";
+let b;
+const L = (t) => b = t;
+process.env.NODE_ENV;
+const H = process.env.NODE_ENV !== "production" ? /* @__PURE__ */ Symbol("pinia") : (
+  /* istanbul ignore next */
+  /* @__PURE__ */ Symbol()
+);
+function O(t) {
+  return t && typeof t == "object" && Object.prototype.toString.call(t) === "[object Object]" && typeof t.toJSON != "function";
+}
+var w;
+(function(t) {
+  t.direct = "direct", t.patchObject = "patch object", t.patchFunction = "patch function";
+})(w || (w = {}));
+function ct(t, r) {
+  for (const n in r) {
+    const s = r[n];
+    if (!(n in t))
+      continue;
+    const i = t[n];
+    O(i) && O(s) && !A(s) && !z(s) ? t[n] = ct(i, s) : t[n] = s;
+  }
+  return t;
+}
+const at = () => {
+};
+function K(t, r, n, s = at) {
+  t.add(r);
+  const i = () => {
+    t.delete(r) && s();
+  };
+  return !n && vt() && yt(i), i;
+}
+function S(t, ...r) {
+  t.forEach((n) => {
+    n(...r);
+  });
+}
+const bt = (t) => t(), tt = /* @__PURE__ */ Symbol(), F = /* @__PURE__ */ Symbol();
+function M(t, r) {
+  t instanceof Map && r instanceof Map ? r.forEach((n, s) => t.set(s, n)) : t instanceof Set && r instanceof Set && r.forEach(t.add, t);
+  for (const n in r) {
+    if (!r.hasOwnProperty(n))
+      continue;
+    const s = r[n], i = t[n];
+    O(i) && O(s) && t.hasOwnProperty(n) && !A(s) && !z(s) ? t[n] = M(i, s) : t[n] = s;
+  }
+  return t;
+}
+const Ot = process.env.NODE_ENV !== "production" ? /* @__PURE__ */ Symbol("pinia:skipHydration") : (
+  /* istanbul ignore next */
+  /* @__PURE__ */ Symbol()
+);
+function kt(t) {
+  return !O(t) || !Object.prototype.hasOwnProperty.call(t, Ot);
+}
+const { assign: _ } = Object;
+function et(t) {
+  return !!(A(t) && t.effect);
+}
+function st(t, r, n, s) {
+  const { state: i, actions: f, getters: a } = r, g = n.state.value[t];
+  let N;
+  function h() {
+    !g && (process.env.NODE_ENV === "production" || !s) && (n.state.value[t] = i ? i() : {});
+    const l = process.env.NODE_ENV !== "production" && s ? (
+      // use ref() to unwrap refs inside state TODO: check if this is still necessary
+      Z(ot(i ? i() : {}).value)
+    ) : Z(n.state.value[t]);
+    return _(l, f, Object.keys(a || {}).reduce((p, m) => (process.env.NODE_ENV !== "production" && m in l && console.warn(`[🍍]: A getter cannot have the same name as another state property. Rename one of them. Found with "${m}" in store "${t}".`), p[m] = j(nt(() => {
+      L(n);
+      const v = n._s.get(t);
+      return a[m].call(v, v);
+    })), p), {}));
+  }
+  return N = q(t, h, r, n, s, !0), N;
+}
+function q(t, r, n = {}, s, i, f) {
+  let a;
+  const g = _({ actions: {} }, n);
+  if (process.env.NODE_ENV !== "production" && !s._e.active)
+    throw new Error("Pinia destroyed");
+  const N = { deep: !0 };
+  process.env.NODE_ENV !== "production" && (N.onTrigger = (o) => {
+    h ? v = o : h == !1 && !c._hotUpdating && (Array.isArray(v) ? v.push(o) : console.error("🍍 debuggerEvents should be an array. This is most likely an internal Pinia bug."));
+  });
+  let h, l, p = /* @__PURE__ */ new Set(), m = /* @__PURE__ */ new Set(), v;
+  const k = s.state.value[t];
+  !f && !k && (process.env.NODE_ENV === "production" || !i) && (s.state.value[t] = {});
+  const U = ot({});
+  let G;
+  function Q(o) {
+    let e;
+    h = l = !1, process.env.NODE_ENV !== "production" && (v = []), typeof o == "function" ? (o(s.state.value[t]), e = {
+      type: w.patchFunction,
+      storeId: t,
+      events: v
+    }) : (M(s.state.value[t], o), e = {
+      type: w.patchObject,
+      payload: o,
+      storeId: t,
+      events: v
+    });
+    const u = G = /* @__PURE__ */ Symbol();
+    Y().then(() => {
+      G === u && (h = !0);
+    }), l = !0, S(p, e, s.state.value[t]);
+  }
+  const ut = f ? function() {
+    const { state: e } = n, u = e ? e() : {};
+    this.$patch((d) => {
+      _(d, u);
+    });
+  } : (
+    /* istanbul ignore next */
+    process.env.NODE_ENV !== "production" ? () => {
+      throw new Error(`🍍: Store "${t}" is built using the setup syntax and does not implement $reset().`);
+    } : at
+  );
+  function lt() {
+    a.stop(), p.clear(), m.clear(), s._s.delete(t);
+  }
+  const $ = (o, e = "") => {
+    if (tt in o)
+      return o[F] = e, o;
+    const u = function() {
+      L(s);
+      const d = Array.from(arguments), D = /* @__PURE__ */ new Set(), T = /* @__PURE__ */ new Set();
+      function ft(E) {
+        D.add(E);
+      }
+      function ht(E) {
+        T.add(E);
+      }
+      S(m, {
+        args: d,
+        name: u[F],
+        store: c,
+        after: ft,
+        onError: ht
+      });
+      let V;
+      try {
+        V = o.apply(this && this.$id === t ? this : c, d);
+      } catch (E) {
+        throw S(T, E), E;
+      }
+      return V instanceof Promise ? V.then((E) => (S(D, E), E)).catch((E) => (S(T, E), Promise.reject(E))) : (S(D, V), V);
+    };
+    return u[tt] = !0, u[F] = e, u;
+  }, C = /* @__PURE__ */ j({
+    actions: {},
+    getters: {},
+    state: [],
+    hotState: U
+  }), X = {
+    _p: s,
+    // _s: scope,
+    $id: t,
+    $onAction: K.bind(null, m),
+    $patch: Q,
+    $reset: ut,
+    $subscribe(o, e = {}) {
+      const u = K(p, o, e.detached, () => d()), d = a.run(() => Nt(() => s.state.value[t], (D) => {
+        (e.flush === "sync" ? l : h) && o({
+          storeId: t,
+          type: w.direct,
+          events: v
+        }, D);
+      }, _({}, N, e)));
+      return u;
+    },
+    $dispose: lt
+  }, c = _t(process.env.NODE_ENV !== "production" || process.env.NODE_ENV !== "production" && process.env.NODE_ENV !== "test" && P ? _(
+    {
+      _hmrPayload: C,
+      _customProperties: j(/* @__PURE__ */ new Set())
+      // devtools custom properties
+    },
+    X
+    // must be added later
+    // setupStore
+  ) : X);
+  s._s.set(t, c);
+  const y = (s._a && s._a.runWithContext || bt)(() => s._e.run(() => (a = gt()).run(() => r({ action: $ }))));
+  for (const o in y) {
+    const e = y[o];
+    if (A(e) && !et(e) || z(e))
+      process.env.NODE_ENV !== "production" && i ? U.value[o] = I(y, o) : f || (k && kt(e) && (A(e) ? e.value = k[o] : M(e, k[o])), s.state.value[t][o] = e), process.env.NODE_ENV !== "production" && C.state.push(o);
+    else if (typeof e == "function") {
+      const u = process.env.NODE_ENV !== "production" && i ? e : $(e, o);
+      y[o] = u, process.env.NODE_ENV !== "production" && (C.actions[o] = e), g.actions[o] = e;
+    } else process.env.NODE_ENV !== "production" && et(e) && (C.getters[o] = f ? (
+      // @ts-expect-error
+      n.getters[o]
+    ) : e, P && (y._getters || // @ts-expect-error: same
+    (y._getters = j([]))).push(o));
+  }
+  if (_(c, y), _(mt(c), y), Object.defineProperty(c, "$state", {
+    get: () => process.env.NODE_ENV !== "production" && i ? U.value : s.state.value[t],
+    set: (o) => {
+      if (process.env.NODE_ENV !== "production" && i)
+        throw new Error("cannot set hotState");
+      Q((e) => {
+        _(e, o);
+      });
+    }
+  }), process.env.NODE_ENV !== "production" && (c._hotUpdate = j((o) => {
+    c._hotUpdating = !0, o._hmrPayload.state.forEach((e) => {
+      if (e in c.$state) {
+        const u = o.$state[e], d = c.$state[e];
+        typeof u == "object" && O(u) && O(d) ? ct(u, d) : o.$state[e] = d;
+      }
+      c[e] = I(o.$state, e);
+    }), Object.keys(c.$state).forEach((e) => {
+      e in o.$state || delete c[e];
+    }), h = !1, l = !1, s.state.value[t] = I(o._hmrPayload, "hotState"), l = !0, Y().then(() => {
+      h = !0;
+    });
+    for (const e in o._hmrPayload.actions) {
+      const u = o[e];
+      c[e] = //
+      $(u, e);
+    }
+    for (const e in o._hmrPayload.getters) {
+      const u = o._hmrPayload.getters[e], d = f ? (
+        // special handling of options api
+        nt(() => (L(s), u.call(c, c)))
+      ) : u;
+      c[e] = //
+      d;
+    }
+    Object.keys(c._hmrPayload.getters).forEach((e) => {
+      e in o._hmrPayload.getters || delete c[e];
+    }), Object.keys(c._hmrPayload.actions).forEach((e) => {
+      e in o._hmrPayload.actions || delete c[e];
+    }), c._hmrPayload = o._hmrPayload, c._getters = o._getters, c._hotUpdating = !1;
+  })), process.env.NODE_ENV !== "production" && process.env.NODE_ENV !== "test" && P) {
+    const o = {
+      writable: !0,
+      configurable: !0,
+      // avoid warning on devtools trying to display this property
+      enumerable: !1
+    };
+    ["_p", "_hmrPayload", "_getters", "_customProperties"].forEach((e) => {
+      Object.defineProperty(c, e, _({ value: c[e] }, o));
+    });
+  }
+  return s._p.forEach((o) => {
+    if (process.env.NODE_ENV !== "production" && process.env.NODE_ENV !== "test" && P) {
+      const e = a.run(() => o({
+        store: c,
+        app: s._a,
+        pinia: s,
+        options: g
+      }));
+      Object.keys(e || {}).forEach((u) => c._customProperties.add(u)), _(c, e);
+    } else
+      _(c, a.run(() => o({
+        store: c,
+        app: s._a,
+        pinia: s,
+        options: g
+      })));
+  }), process.env.NODE_ENV !== "production" && c.$state && typeof c.$state == "object" && typeof c.$state.constructor == "function" && !c.$state.constructor.toString().includes("[native code]") && console.warn(`[🍍]: The "state" must be a plain object. It cannot be
+	state: () => new MyClass()
+Found in store "${c.$id}".`), k && f && n.hydrate && n.hydrate(c.$state, k), h = !0, l = !0, c;
+}
+// @__NO_SIDE_EFFECTS__
+function it(t, r, n) {
+  let s;
+  const i = typeof r == "function";
+  s = i ? n : r;
+  function f(a, g) {
+    const N = B();
+    if (a = // in test mode, ignore the argument provided as we can always retrieve a
+    // pinia instance with getActivePinia()
+    (process.env.NODE_ENV === "test" && b && b._testing ? null : a) || (N ? W(H, null) : null), a && L(a), process.env.NODE_ENV !== "production" && !b)
+      throw new Error(`[🍍]: "getActivePinia()" was called but there was no active Pinia. Are you trying to use a store before calling "app.use(pinia)"?
+See https://pinia.vuejs.org/core-concepts/outside-component-usage.html for help.
+This will fail in production.`);
+    a = b, a._s.has(t) || (i ? q(t, r, s, a) : st(t, s, a), process.env.NODE_ENV !== "production" && (f._pinia = a));
+    const h = a._s.get(t);
+    if (process.env.NODE_ENV !== "production" && g) {
+      const l = "__hot:" + t, p = i ? q(l, r, s, a, !0) : st(l, _({}, s), a, !0);
+      g._hotUpdate(p), delete a.state.value[l], a._s.delete(l);
+    }
+    if (process.env.NODE_ENV !== "production" && P) {
+      const l = Et();
+      if (l && l.proxy && // avoid adding stores that are just built for hot module replacement
+      !g) {
+        const p = l.proxy, m = "_pStores" in p ? p._pStores : p._pStores = {};
+        m[t] = h;
+      }
+    }
+    return h;
+  }
+  return f.$id = t, f;
+}
+const St = /* @__PURE__ */ it("auth-flow", {
+  state: () => ({
+    isLoading: !1,
+    isLocked: !1,
+    lockTimer: 0,
+    loginAttempts: 0,
+    step: "login"
+  }),
+  actions: {
+    registerOnUnlock(t) {
+      this.onUnlock = t;
+    },
+    startLoading() {
+      this.isLoading = !0;
+    },
+    stopLoading() {
+      this.isLoading = !1;
+    },
+    failAttempt() {
+      this.loginAttempts++;
+    },
+    lockFromBackend(t) {
+      this.isLocked = !0, this.lockTimer = t;
+      const r = setInterval(() => {
+        this.lockTimer--, this.lockTimer <= 0 && (clearInterval(r), this.unLock());
+      }, 1e3);
+    },
+    unLock() {
+      this.isLocked = !1, this.loginAttempts = 0, this.lockTimer = 0, this.onUnlock?.();
+    },
+    setStep(t) {
+      this.step = t;
+    }
+  }
+}), x = /* @__PURE__ */ it("auth", {
+  state: () => ({
+    user: null,
+    isAuthenticated: !1,
+    checked: !1
+  }),
+  actions: {
+    // Connexion
+    setUser(t) {
+      this.user = t, this.isAuthenticated = !0, this.checked = !0;
+    },
+    logout() {
+      this.user = null, this.isAuthenticated = !1, this.checked = !0;
+    }
+  }
+});
+async function Pt(t, r, n = "auth_login") {
+  const s = pt(), i = St(t), f = x(t);
+  if (i.registerOnUnlock(() => s.clear(n)), i.isLocked) return !1;
+  s.clear(n), i.startLoading();
+  const a = await J.login(r);
+  if (i.stopLoading(), !a?.ok) {
+    const g = dt(a.data);
+    return a.data?.code === "AUTH_ACCOUNT_LOCKED" && a.data?.remaining ? i.lockFromBackend(a.data?.remaining) : i.failAttempt(), s.setFromBackend(n, g), !1;
+  }
+  return a?.next ? (console.log("response success", a?.next), a?.user && f.setUser(a.user), i.setStep(a?.next), s.clear(n), !0) : !1;
+}
+async function Dt(t) {
+  const r = x(t);
+  try {
+    const n = await J.me();
+    return !n.ok || !n?.user ? (r.logout(), !1) : (r.setUser(n.user), !0);
+  } catch {
+    return r.logout(), !1;
+  }
+}
+async function Vt(t) {
+  const r = x(t);
+  try {
+    return (await J.logout()).ok && r.logout(), !0;
+  } catch {
+    return !1;
+  }
+}
+function Lt() {
+  return {
+    ...x(),
+    login: Pt,
+    me: Dt,
+    logout: Vt
+  };
+}
+export {
+  Ct as AuthKit,
+  rt as authConfig,
+  Lt as useAuth,
+  St as useAuthFlowStore,
+  x as useAuthState
+};

package/dist/auth-kit.umd.js

@@ -0,0 +1,5 @@
+(function(d,P){typeof exports=="object"&&typeof module<"u"?P(exports,require("@axproo/app-core"),require("vue")):typeof define=="function"&&define.amd?define(["exports","@axproo/app-core","vue"],P):(d=typeof globalThis<"u"?globalThis:d||self,P(d.AuthKit={},d.AppCore,d.Vue))})(this,(function(d,P,a){"use strict";const T={apiBaseUrl:"",userKey:"auth_login",enableMock:!1},ot={install(t,r){Object.assign(T,r)}};async function U(t,r){try{const n=await fetch(`${T.apiBaseUrl}${t}`,{credentials:"include",headers:{"Content-Type":"application/json"},...r}),s=await n.json().catch(()=>({}));return{ok:n.ok,status:n.status,data:s,next:s?.next,user:s?.data?.user??{}}}catch(n){return{ok:!1,status:0,data:n}}}const $={async login(t){return U("/auth/login",{method:"POST",body:JSON.stringify(t)})},async me(){return U("/auth/me",{method:"GET"})},async logout(){return U("/auth/logout",{method:"POST"})}};const V=typeof window<"u";let k;const x=t=>k=t;process.env.NODE_ENV;const I=process.env.NODE_ENV!=="production"?Symbol("pinia"):Symbol();function v(t){return t&&typeof t=="object"&&Object.prototype.toString.call(t)==="[object Object]"&&typeof t.toJSON!="function"}var w;(function(t){t.direct="direct",t.patchObject="patch object",t.patchFunction="patch function"})(w||(w={}));function z(t,r){for(const n in r){const s=r[n];if(!(n in t))continue;const u=t[n];v(u)&&v(s)&&!a.isRef(s)&&!a.isReactive(s)?t[n]=z(u,s):t[n]=s}return t}const J=()=>{};function G(t,r,n,s=J){t.add(r);const u=()=>{t.delete(r)&&s()};return!n&&a.getCurrentScope()&&a.onScopeDispose(u),u}function j(t,...r){t.forEach(n=>{n(...r)})}const nt=t=>t(),K=Symbol(),F=Symbol();function B(t,r){t instanceof Map&&r instanceof Map?r.forEach((n,s)=>t.set(s,n)):t instanceof Set&&r instanceof Set&&r.forEach(t.add,t);for(const n in r){if(!r.hasOwnProperty(n))continue;const s=r[n],u=t[n];v(u)&&v(s)&&t.hasOwnProperty(n)&&!a.isRef(s)&&!a.isReactive(s)?t[n]=B(u,s):t[n]=s}return t}const rt=process.env.NODE_ENV!=="production"?Symbol("pinia:skipHydration"):Symbol();function ct(t){return!v(t)||!Object.prototype.hasOwnProperty.call(t,rt)}const{assign:E}=Object;function Q(t){return!!(a.isRef(t)&&t.effect)}function X(t,r,n,s){const{state:u,actions:h,getters:i}=r,y=n.state.value[t];let S;function p(){!y&&(process.env.NODE_ENV==="production"||!s)&&(n.state.value[t]=u?u():{});const f=process.env.NODE_ENV!=="production"&&s?a.toRefs(a.ref(u?u():{}).value):a.toRefs(n.state.value[t]);return E(f,h,Object.keys(i||{}).reduce((_,N)=>(process.env.NODE_ENV!=="production"&&N in f&&console.warn(`[🍍]: A getter cannot have the same name as another state property. Rename one of them. Found with "${N}" in store "${t}".`),_[N]=a.markRaw(a.computed(()=>{x(n);const b=n._s.get(t);return i[N].call(b,b)})),_),{}))}return S=M(t,p,r,n,s,!0),S}function M(t,r,n={},s,u,h){let i;const y=E({actions:{}},n);if(process.env.NODE_ENV!=="production"&&!s._e.active)throw new Error("Pinia destroyed");const S={deep:!0};process.env.NODE_ENV!=="production"&&(S.onTrigger=o=>{p?b=o:p==!1&&!c._hotUpdating&&(Array.isArray(b)?b.push(o):console.error("🍍 debuggerEvents should be an array. This is most likely an internal Pinia bug."))});let p,f,_=new Set,N=new Set,b;const D=s.state.value[t];!h&&!D&&(process.env.NODE_ENV==="production"||!u)&&(s.state.value[t]={});const W=a.ref({});let tt;function et(o){let e;p=f=!1,process.env.NODE_ENV!=="production"&&(b=[]),typeof o=="function"?(o(s.state.value[t]),e={type:w.patchFunction,storeId:t,events:b}):(B(s.state.value[t],o),e={type:w.patchObject,payload:o,storeId:t,events:b});const l=tt=Symbol();a.nextTick().then(()=>{tt===l&&(p=!0)}),f=!0,j(_,e,s.state.value[t])}const ft=h?function(){const{state:e}=n,l=e?e():{};this.$patch(g=>{E(g,l)})}:process.env.NODE_ENV!=="production"?()=>{throw new Error(`🍍: Store "${t}" is built using the setup syntax and does not implement $reset().`)}:J;function ht(){i.stop(),_.clear(),N.clear(),s._s.delete(t)}const q=(o,e="")=>{if(K in o)return o[F]=e,o;const l=function(){x(s);const g=Array.from(arguments),R=new Set,H=new Set;function pt(m){R.add(m)}function dt(m){H.add(m)}j(N,{args:g,name:l[F],store:c,after:pt,onError:dt});let C;try{C=o.apply(this&&this.$id===t?this:c,g)}catch(m){throw j(H,m),m}return C instanceof Promise?C.then(m=>(j(R,m),m)).catch(m=>(j(H,m),Promise.reject(m))):(j(R,C),C)};return l[K]=!0,l[F]=e,l},L=a.markRaw({actions:{},getters:{},state:[],hotState:W}),st={_p:s,$id:t,$onAction:G.bind(null,N),$patch:et,$reset:ft,$subscribe(o,e={}){const l=G(_,o,e.detached,()=>g()),g=i.run(()=>a.watch(()=>s.state.value[t],R=>{(e.flush==="sync"?f:p)&&o({storeId:t,type:w.direct,events:b},R)},E({},S,e)));return l},$dispose:ht},c=a.reactive(process.env.NODE_ENV!=="production"||process.env.NODE_ENV!=="production"&&process.env.NODE_ENV!=="test"&&V?E({_hmrPayload:L,_customProperties:a.markRaw(new Set)},st):st);s._s.set(t,c);const O=(s._a&&s._a.runWithContext||nt)(()=>s._e.run(()=>(i=a.effectScope()).run(()=>r({action:q}))));for(const o in O){const e=O[o];if(a.isRef(e)&&!Q(e)||a.isReactive(e))process.env.NODE_ENV!=="production"&&u?W.value[o]=a.toRef(O,o):h||(D&&ct(e)&&(a.isRef(e)?e.value=D[o]:B(e,D[o])),s.state.value[t][o]=e),process.env.NODE_ENV!=="production"&&L.state.push(o);else if(typeof e=="function"){const l=process.env.NODE_ENV!=="production"&&u?e:q(e,o);O[o]=l,process.env.NODE_ENV!=="production"&&(L.actions[o]=e),y.actions[o]=e}else process.env.NODE_ENV!=="production"&&Q(e)&&(L.getters[o]=h?n.getters[o]:e,V&&(O._getters||(O._getters=a.markRaw([]))).push(o))}if(E(c,O),E(a.toRaw(c),O),Object.defineProperty(c,"$state",{get:()=>process.env.NODE_ENV!=="production"&&u?W.value:s.state.value[t],set:o=>{if(process.env.NODE_ENV!=="production"&&u)throw new Error("cannot set hotState");et(e=>{E(e,o)})}}),process.env.NODE_ENV!=="production"&&(c._hotUpdate=a.markRaw(o=>{c._hotUpdating=!0,o._hmrPayload.state.forEach(e=>{if(e in c.$state){const l=o.$state[e],g=c.$state[e];typeof l=="object"&&v(l)&&v(g)?z(l,g):o.$state[e]=g}c[e]=a.toRef(o.$state,e)}),Object.keys(c.$state).forEach(e=>{e in o.$state||delete c[e]}),p=!1,f=!1,s.state.value[t]=a.toRef(o._hmrPayload,"hotState"),f=!0,a.nextTick().then(()=>{p=!0});for(const e in o._hmrPayload.actions){const l=o[e];c[e]=q(l,e)}for(const e in o._hmrPayload.getters){const l=o._hmrPayload.getters[e],g=h?a.computed(()=>(x(s),l.call(c,c))):l;c[e]=g}Object.keys(c._hmrPayload.getters).forEach(e=>{e in o._hmrPayload.getters||delete c[e]}),Object.keys(c._hmrPayload.actions).forEach(e=>{e in o._hmrPayload.actions||delete c[e]}),c._hmrPayload=o._hmrPayload,c._getters=o._getters,c._hotUpdating=!1})),process.env.NODE_ENV!=="production"&&process.env.NODE_ENV!=="test"&&V){const o={writable:!0,configurable:!0,enumerable:!1};["_p","_hmrPayload","_getters","_customProperties"].forEach(e=>{Object.defineProperty(c,e,E({value:c[e]},o))})}return s._p.forEach(o=>{if(process.env.NODE_ENV!=="production"&&process.env.NODE_ENV!=="test"&&V){const e=i.run(()=>o({store:c,app:s._a,pinia:s,options:y}));Object.keys(e||{}).forEach(l=>c._customProperties.add(l)),E(c,e)}else E(c,i.run(()=>o({store:c,app:s._a,pinia:s,options:y})))}),process.env.NODE_ENV!=="production"&&c.$state&&typeof c.$state=="object"&&typeof c.$state.constructor=="function"&&!c.$state.constructor.toString().includes("[native code]")&&console.warn(`[🍍]: The "state" must be a plain object. It cannot be
+	state: () => new MyClass()
+Found in store "${c.$id}".`),D&&h&&n.hydrate&&n.hydrate(c.$state,D),p=!0,f=!0,c}function Y(t,r,n){let s;const u=typeof r=="function";s=u?n:r;function h(i,y){const S=a.hasInjectionContext();if(i=(process.env.NODE_ENV==="test"&&k&&k._testing?null:i)||(S?a.inject(I,null):null),i&&x(i),process.env.NODE_ENV!=="production"&&!k)throw new Error(`[🍍]: "getActivePinia()" was called but there was no active Pinia. Are you trying to use a store before calling "app.use(pinia)"?
+See https://pinia.vuejs.org/core-concepts/outside-component-usage.html for help.
+This will fail in production.`);i=k,i._s.has(t)||(u?M(t,r,s,i):X(t,s,i),process.env.NODE_ENV!=="production"&&(h._pinia=i));const p=i._s.get(t);if(process.env.NODE_ENV!=="production"&&y){const f="__hot:"+t,_=u?M(f,r,s,i,!0):X(f,E({},s),i,!0);y._hotUpdate(_),delete i.state.value[f],i._s.delete(f)}if(process.env.NODE_ENV!=="production"&&V){const f=a.getCurrentInstance();if(f&&f.proxy&&!y){const _=f.proxy,N="_pStores"in _?_._pStores:_._pStores={};N[t]=p}}return p}return h.$id=t,h}const Z=Y("auth-flow",{state:()=>({isLoading:!1,isLocked:!1,lockTimer:0,loginAttempts:0,step:"login"}),actions:{registerOnUnlock(t){this.onUnlock=t},startLoading(){this.isLoading=!0},stopLoading(){this.isLoading=!1},failAttempt(){this.loginAttempts++},lockFromBackend(t){this.isLocked=!0,this.lockTimer=t;const r=setInterval(()=>{this.lockTimer--,this.lockTimer<=0&&(clearInterval(r),this.unLock())},1e3)},unLock(){this.isLocked=!1,this.loginAttempts=0,this.lockTimer=0,this.onUnlock?.()},setStep(t){this.step=t}}}),A=Y("auth",{state:()=>({user:null,isAuthenticated:!1,checked:!1}),actions:{setUser(t){this.user=t,this.isAuthenticated=!0,this.checked=!0},logout(){this.user=null,this.isAuthenticated=!1,this.checked=!0}}});async function at(t,r,n="auth_login"){const s=P.useAppErrors(),u=Z(t),h=A(t);if(u.registerOnUnlock(()=>s.clear(n)),u.isLocked)return!1;s.clear(n),u.startLoading();const i=await $.login(r);if(u.stopLoading(),!i?.ok){const y=P.normalizeBackendErrors(i.data);return i.data?.code==="AUTH_ACCOUNT_LOCKED"&&i.data?.remaining?u.lockFromBackend(i.data?.remaining):u.failAttempt(),s.setFromBackend(n,y),!1}return i?.next?(console.log("response success",i?.next),i?.user&&h.setUser(i.user),u.setStep(i?.next),s.clear(n),!0):!1}async function it(t){const r=A(t);try{const n=await $.me();return!n.ok||!n?.user?(r.logout(),!1):(r.setUser(n.user),!0)}catch{return r.logout(),!1}}async function ut(t){const r=A(t);try{return(await $.logout()).ok&&r.logout(),!0}catch{return!1}}function lt(){return{...A(),login:at,me:it,logout:ut}}d.AuthKit=ot,d.authConfig=T,d.useAuth=lt,d.useAuthFlowStore=Z,d.useAuthState=A,Object.defineProperty(d,Symbol.toStringTag,{value:"Module"})}));

package/dist/composables/useAuth.d.ts

@@ -0,0 +1,68 @@
+import { login, logout, me } from '../services/auth.service';
+export declare function useAuth(): {
+    login: typeof login;
+    me: typeof me;
+    logout: typeof logout;
+    $state: {
+        user: {
+            id: number | string;
+            email?: string | undefined;
+            name?: string | undefined;
+            isActivated: boolean;
+        } | null;
+        isAuthenticated: boolean;
+        checked: boolean;
+    } & import('pinia').PiniaCustomStateProperties<{
+        user: import('..').User | null;
+        isAuthenticated: boolean;
+        checked: boolean;
+    }>;
+    $patch(partialState: import('pinia')._DeepPartial<{
+        user: {
+            id: number | string;
+            email?: string | undefined;
+            name?: string | undefined;
+            isActivated: boolean;
+        } | null;
+        isAuthenticated: boolean;
+        checked: boolean;
+    }>): void;
+    $patch<F extends (state: {
+        user: {
+            id: number | string;
+            email?: string | undefined;
+            name?: string | undefined;
+            isActivated: boolean;
+        } | null;
+        isAuthenticated: boolean;
+        checked: boolean;
+    }) => any>(stateMutator: ReturnType<F> extends Promise<any> ? never : F): void;
+    $reset(): void;
+    $subscribe(callback: import('pinia').SubscriptionCallback<{
+        user: import('..').User | null;
+        isAuthenticated: boolean;
+        checked: boolean;
+    }>, options?: {
+        detached?: boolean;
+    } & import('vue').WatchOptions): () => void;
+    $onAction(callback: import('pinia').StoreOnActionListener<"auth", {
+        user: import('..').User | null;
+        isAuthenticated: boolean;
+        checked: boolean;
+    }, {}, {
+        setUser(user: import('..').User | null): void;
+        logout(): void;
+    }>, detached?: boolean): () => void;
+    $dispose(): void;
+    $id: "auth";
+    _customProperties: Set<string>;
+    user: {
+        id: number | string;
+        email?: string | undefined;
+        name?: string | undefined;
+        isActivated: boolean;
+    } | null;
+    isAuthenticated: boolean;
+    checked: boolean;
+    setUser(user: import('..').User | null): void;
+};

package/dist/composables/useAuthFlow.d.ts

@@ -0,0 +1,14 @@
+import { AuthFlowState, AuthStep } from '../types/auth.types';
+type UnlockCallback = () => void;
+export declare const useAuthFlowStore: import('pinia').StoreDefinition<"auth-flow", AuthFlowState & {
+    onUnlock?: UnlockCallback;
+}, {}, {
+    registerOnUnlock(cb: UnlockCallback): void;
+    startLoading(): void;
+    stopLoading(): void;
+    failAttempt(): void;
+    lockFromBackend(duration: number): void;
+    unLock(): void;
+    setStep(step: AuthStep): void;
+}>;
+export {};

package/dist/config/auth.config.d.ts

@@ -0,0 +1,5 @@
+export declare const authConfig: {
+    apiBaseUrl: string;
+    userKey: string;
+    enableMock: boolean;
+};

package/dist/index.d.ts

@@ -0,0 +1,6 @@
+export { AuthKit } from './plugins/AuthKit';
+export { authConfig } from './config/auth.config';
+export { useAuth } from './composables/useAuth';
+export { useAuthState } from './stores/useAuthState';
+export { useAuthFlowStore } from './composables/useAuthFlow';
+export * from './types/auth.types';

package/dist/plugins/AuthKit.d.ts

@@ -0,0 +1,5 @@
+import { App } from 'vue';
+import { authConfig } from '../config/auth.config';
+export declare const AuthKit: {
+    install(app: App, options?: Partial<typeof authConfig>): void;
+};

package/dist/services/auth.service.d.ts

@@ -0,0 +1,4 @@
+import { Pinia } from 'pinia';
+export declare function login(pinia: Pinia, payload: any, formId?: string): Promise<boolean>;
+export declare function me(pinia: Pinia): Promise<boolean>;
+export declare function logout(pinia: Pinia): Promise<boolean>;

package/dist/stores/useAuthState.d.ts

@@ -0,0 +1,9 @@
+import { User } from '../types/auth.types';
+export declare const useAuthState: import('pinia').StoreDefinition<"auth", {
+    user: User | null;
+    isAuthenticated: boolean;
+    checked: boolean;
+}, {}, {
+    setUser(user: User | null): void;
+    logout(): void;
+}>;

package/dist/types/auth.types.d.ts

@@ -0,0 +1,23 @@
+export type AuthErrorCode = 'AUTH_INVALID_CREDENTIALS' | 'AUTH_ACCOUNT_LOCKED' | 'AUTH_REQUIRES_2FA' | 'AUTH_SUCCESS' | 'HTTP_401' | 'HTTP_403' | 'HTTP_404' | 'HTTP_422' | 'HTTP_500' | 'AUTH_REQUEST_FAILED';
+export interface AuthResponse {
+    ok: boolean;
+    code?: AuthErrorCode;
+    status?: number;
+    data?: any;
+    next?: AuthStep;
+    user?: User;
+}
+export type AuthStep = 'login' | 'activation' | 'twofactor' | 'dashboard' | 'success' | 'verify' | 'forgot' | 'reset';
+export interface AuthFlowState {
+    isLoading: boolean;
+    isLocked: boolean;
+    lockTimer: number;
+    loginAttempts: number;
+    step: AuthStep;
+}
+export interface User {
+    id: number | string;
+    email?: string;
+    name?: string;
+    isActivated: boolean;
+}

package/dist/types/error.types.d.ts

@@ -0,0 +1,14 @@
+export declare class AuthHttpError extends Error {
+    status?: number;
+    code?: string;
+    rawMessage?: string;
+    locked?: boolean;
+    retryAfter?: number;
+    constructor(params: {
+        status: number;
+        code?: string;
+        message?: string;
+        locked?: boolean;
+        retryAfter?: number;
+    });
+}

package/dist/vite.svg

@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" class="iconify iconify--logos" width="31.88" height="32" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 257"><defs><linearGradient id="IconifyId1813088fe1fbc01fb466" x1="-.828%" x2="57.636%" y1="7.652%" y2="78.411%"><stop offset="0%" stop-color="#41D1FF"></stop><stop offset="100%" stop-color="#BD34FE"></stop></linearGradient><linearGradient id="IconifyId1813088fe1fbc01fb467" x1="43.376%" x2="50.316%" y1="2.242%" y2="89.03%"><stop offset="0%" stop-color="#FFEA83"></stop><stop offset="8.333%" stop-color="#FFDD35"></stop><stop offset="100%" stop-color="#FFA800"></stop></linearGradient></defs><path fill="url(#IconifyId1813088fe1fbc01fb466)" d="M255.153 37.938L134.897 252.976c-2.483 4.44-8.862 4.466-11.382.048L.875 37.958c-2.746-4.814 1.371-10.646 6.827-9.67l120.385 21.517a6.537 6.537 0 0 0 2.322-.004l117.867-21.483c5.438-.991 9.574 4.796 6.877 9.62Z"></path><path fill="url(#IconifyId1813088fe1fbc01fb467)" d="M185.432.063L96.44 17.501a3.268 3.268 0 0 0-2.634 3.014l-5.474 92.456a3.268 3.268 0 0 0 3.997 3.378l24.777-5.718c2.318-.535 4.413 1.507 3.936 3.838l-7.361 36.047c-.495 2.426 1.782 4.5 4.151 3.78l15.304-4.649c2.372-.72 4.652 1.36 4.15 3.788l-11.698 56.621c-.732 3.542 3.979 5.473 5.943 2.437l1.313-2.028l72.516-144.72c1.215-2.423-.88-5.186-3.54-4.672l-25.505 4.922c-2.396.462-4.435-1.77-3.759-4.114l16.646-57.705c.677-2.35-1.37-4.583-3.769-4.113Z"></path></svg>

package/package.json

@@ -0,0 +1,36 @@
+{
+  "name": "@axproo/auth-kit",
+  "version": "1.0.1",
+  "type": "module",
+  "main": "./dist/auth-kit.umd.js",
+  "module": "./dist/auth-kit.es.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/auth-kit.es.js",
+      "types": "./dist/index.d.ts",
+      "require": "./dist/auth-kit.umd.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "vite build"
+  },
+  "peerDependencies": {
+    "@axproo/app-core": "^0.1.0",
+    "vue": "^3.5.0",
+    "vite": "^7.2.4",
+    "pinia": "3.0.4"
+  },
+  "devDependencies": {
+    "@types/node": "^24.10.1",
+    "@vitejs/plugin-vue": "^6.0.1",
+    "@vue/tsconfig": "^0.8.1",
+    "typescript": "~5.9.3",
+    "vite-plugin-dts": "^4.5.4",
+    "vue-tsc": "^3.1.4",
+    "pinia": "3.0.4"
+  }
+}