@bagelink/auth 1.12.16 → 1.12.20

package/dist/api.d.ts

@@ -1,4 +1,4 @@
-import { RegisterRequest, UpdateAccountRequest, ChangePasswordRequest, ForgotPasswordRequest, ResetPasswordRequest, SendVerificationRequest, VerifyEmailRequest, AuthenticationAccount, PasswordLoginRequest, EmailTokenSendRequest, EmailTokenVerifyRequest, OTPSendRequest, OTPVerifyRequest, SSOLoginRequest, LoginResponse, RegisterResponse, LogoutResponse, GetMeResponse, UpdateMeResponse, DeleteMeResponse, ChangePasswordResponse, ForgotPasswordResponse, ResetPasswordResponse, VerifyResetTokenResponse, SendVerificationResponse, VerifyEmailResponse, RefreshSessionResponse, GetSessionsResponse, DeleteSessionResponse, DeleteAllSessionsResponse, CleanupSessionsResponse, GetMethodsResponse, GetAuthStatusResponse, SendEmailTokenResponse, VerifyEmailTokenResponse, SendOTPResponse, VerifyOTPResponse, LegacySSOLoginResponse, SSOProvider, SSOInitiateRequest, SSOCallbackRequest, SSOLinkRequest, InitiateSSOResponse, CallbackSSOResponse, LinkSSOResponse, UnlinkSSOResponse, GetTenantsResponse, GetTenantResponse, CreateTenantResponse, UpdateTenantResponse, DeleteTenantResponse, GetTenantMembersResponse, AddTenantMemberResponse, UpdateTenantMemberResponse, DeleteTenantMemberResponse, GetTenantRolesResponse, CreateInvitationResponse, GetInvitationResponse, AcceptInvitationResponse, CreateTenantRequest, UpdateTenantRequest, AddMemberRequest, UpdateMemberRequest, CreateInvitationRequest, AcceptInvitationRequest } from './types';
+import { RegisterRequest, UpdateAccountRequest, ChangePasswordRequest, ForgotPasswordRequest, ResetPasswordRequest, SendVerificationRequest, VerifyEmailRequest, AuthenticationAccount, PasswordLoginRequest, EmailTokenSendRequest, EmailTokenVerifyRequest, OTPSendRequest, OTPVerifyRequest, SMSSendRequest, SMSVerifyRequest, GenerateTokenRequest, RedeemTokenRequest, SSOLoginRequest, LoginResponse, RegisterResponse, LogoutResponse, GetMeResponse, UpdateMeResponse, DeleteMeResponse, ChangePasswordResponse, ForgotPasswordResponse, ResetPasswordResponse, VerifyResetTokenResponse, SendVerificationResponse, VerifyEmailResponse, RefreshSessionResponse, GetSessionsResponse, DeleteSessionResponse, DeleteAllSessionsResponse, CleanupSessionsResponse, GetMethodsResponse, GetAuthStatusResponse, SendEmailTokenResponse, VerifyEmailTokenResponse, SendOTPResponse, VerifyOTPResponse, SendSMSResponse, VerifySMSResponse, GenerateLoginTokenResponse, RedeemLoginTokenResponse, LegacySSOLoginResponse, SSOProvider, SSOInitiateRequest, SSOCallbackRequest, SSOLinkRequest, InitiateSSOResponse, CallbackSSOResponse, LinkSSOResponse, UnlinkSSOResponse, GetTenantsResponse, GetTenantResponse, CreateTenantResponse, UpdateTenantResponse, DeleteTenantResponse, GetTenantMembersResponse, AddTenantMemberResponse, UpdateTenantMemberResponse, DeleteTenantMemberResponse, GetTenantRolesResponse, CreateInvitationResponse, GetInvitationResponse, AcceptInvitationResponse, CreateTenantRequest, UpdateTenantRequest, AddMemberRequest, UpdateMemberRequest, CreateInvitationRequest, AcceptInvitationRequest } from './types';
 export declare class AuthApi {
     private api;
     private currentTenantId;
@@ -37,13 +37,35 @@ export declare class AuthApi {
      */
     verifyEmailToken(data: EmailTokenVerifyRequest): Promise<VerifyEmailTokenResponse>;
     /**
-     * Send OTP code to phone number
+     * Send SMS verification code to phone number
+     */
+    sendSMS(data: SMSSendRequest): Promise<SendSMSResponse>;
+    /**
+     * Verify SMS code and login
+     */
+    verifySMS(data: SMSVerifyRequest): Promise<VerifySMSResponse>;
+    /**
+     * @deprecated Use sendSMS() instead
      */
     sendOTP(data: OTPSendRequest): Promise<SendOTPResponse>;
     /**
-     * Verify OTP code and login
+     * @deprecated Use verifySMS() instead
      */
     verifyOTP(data: OTPVerifyRequest): Promise<VerifyOTPResponse>;
+    /**
+     * Generate a one-time login token.
+     * Omit target_identity_id to generate for yourself (e.g. desktop → mobile).
+     * Provide target_identity_id to generate for another user (admin only).
+     */
+    generateLoginToken(data?: GenerateTokenRequest): Promise<GenerateLoginTokenResponse>;
+    /**
+     * Redeem a one-time login token (no authentication required).
+     */
+    redeemLoginToken(data: RedeemTokenRequest): Promise<RedeemLoginTokenResponse>;
+    /**
+     * Check if a login token is still valid (no auth required).
+     */
+    getLoginTokenStatus(token: string): Promise<any>;
     /**
      * Login with SSO provider (legacy endpoint without PKCE)
      */

package/dist/index.cjs

@@ -129,25 +129,60 @@ class AuthApi {
    * Send email token to user
    */
   async sendEmailToken(data) {
-    return this.api.post("authentication/login/email-token/send", data);
+    return this.api.post("authentication/login/email/send", data);
   }
   /**
    * Verify email token and login
    */
   async verifyEmailToken(data) {
-    return this.api.post("authentication/login/email-token/verify", data);
+    return this.api.post("authentication/login/email/verify", data);
   }
   /**
-   * Send OTP code to phone number
+   * Send SMS verification code to phone number
+   */
+  async sendSMS(data) {
+    return this.api.post("authentication/login/sms/send", data);
+  }
+  /**
+   * Verify SMS code and login
+   */
+  async verifySMS(data) {
+    return this.api.post("authentication/login/sms/verify", data);
+  }
+  /**
+   * @deprecated Use sendSMS() instead
    */
   async sendOTP(data) {
-    return this.api.post("authentication/login/otp/send", data);
+    return this.sendSMS(data);
   }
   /**
-   * Verify OTP code and login
+   * @deprecated Use verifySMS() instead
    */
   async verifyOTP(data) {
-    return this.api.post("authentication/login/otp/verify", data);
+    return this.verifySMS(data);
+  }
+  // ============================================
+  // Login Token Methods
+  // ============================================
+  /**
+   * Generate a one-time login token.
+   * Omit target_identity_id to generate for yourself (e.g. desktop → mobile).
+   * Provide target_identity_id to generate for another user (admin only).
+   */
+  async generateLoginToken(data = {}) {
+    return this.api.post("authentication/login-token/generate", data);
+  }
+  /**
+   * Redeem a one-time login token (no authentication required).
+   */
+  async redeemLoginToken(data) {
+    return this.api.post("authentication/login-token/redeem", data);
+  }
+  /**
+   * Check if a login token is still valid (no auth required).
+   */
+  async getLoginTokenStatus(token) {
+    return this.api.get(`authentication/login-token/${token}/status`);
   }
   /**
    * Login with SSO provider (legacy endpoint without PKCE)
@@ -1151,6 +1186,54 @@ function useAuth() {
     emitter.emit(AuthState.LOGIN);
     return data;
   }
+  async function sendSMS(data) {
+    const { data: response } = await api.sendSMS(data);
+    return response;
+  }
+  async function verifySMS(data) {
+    const { data: response } = await api.verifySMS(data);
+    if (response.success === true && response.requires_verification !== true) {
+      await checkAuth();
+    }
+    emitter.emit(AuthState.LOGIN);
+    return response;
+  }
+  async function sendOTP(data) {
+    return sendSMS(data);
+  }
+  async function verifyOTP(data) {
+    return verifySMS(data);
+  }
+  async function sendEmailToken(data) {
+    const { data: response } = await api.sendEmailToken(data);
+    return response;
+  }
+  async function verifyEmailToken(data) {
+    const { data: response } = await api.verifyEmailToken(data);
+    if (response.success === true && response.requires_verification !== true) {
+      await checkAuth();
+    }
+    emitter.emit(AuthState.LOGIN);
+    return response;
+  }
+  async function generateLoginToken(data = {}) {
+    const { data: response } = await api.generateLoginToken(data);
+    return response;
+  }
+  async function loginWithToken(token) {
+    try {
+      const { data: response } = await api.redeemLoginToken({ token });
+      if (response.success === true && response.requires_verification !== true) {
+        await checkAuth();
+      }
+      if (response.success) {
+        emitter.emit(AuthState.LOGIN);
+      }
+      return response.success === true;
+    } catch {
+      return false;
+    }
+  }
   async function checkAuth() {
     try {
       const { data } = await api.getCurrentUser();
@@ -1377,6 +1460,18 @@ function useAuth() {
     signup,
     checkAuth,
     refreshSession,
+    // SMS Login
+    sendSMS,
+    verifySMS,
+    // SMS Login (deprecated aliases)
+    sendOTP,
+    verifyOTP,
+    // Email Token Login
+    sendEmailToken,
+    verifyEmailToken,
+    // Login Token (one-time token auth)
+    generateLoginToken,
+    loginWithToken,
     // SSO Authentication (lower-level - prefer using sso.google.redirect())
     initiateSSO,
     loginWithSSO,

package/dist/index.mjs

@@ -127,25 +127,60 @@ class AuthApi {
    * Send email token to user
    */
   async sendEmailToken(data) {
-    return this.api.post("authentication/login/email-token/send", data);
+    return this.api.post("authentication/login/email/send", data);
   }
   /**
    * Verify email token and login
    */
   async verifyEmailToken(data) {
-    return this.api.post("authentication/login/email-token/verify", data);
+    return this.api.post("authentication/login/email/verify", data);
   }
   /**
-   * Send OTP code to phone number
+   * Send SMS verification code to phone number
+   */
+  async sendSMS(data) {
+    return this.api.post("authentication/login/sms/send", data);
+  }
+  /**
+   * Verify SMS code and login
+   */
+  async verifySMS(data) {
+    return this.api.post("authentication/login/sms/verify", data);
+  }
+  /**
+   * @deprecated Use sendSMS() instead
    */
   async sendOTP(data) {
-    return this.api.post("authentication/login/otp/send", data);
+    return this.sendSMS(data);
   }
   /**
-   * Verify OTP code and login
+   * @deprecated Use verifySMS() instead
    */
   async verifyOTP(data) {
-    return this.api.post("authentication/login/otp/verify", data);
+    return this.verifySMS(data);
+  }
+  // ============================================
+  // Login Token Methods
+  // ============================================
+  /**
+   * Generate a one-time login token.
+   * Omit target_identity_id to generate for yourself (e.g. desktop → mobile).
+   * Provide target_identity_id to generate for another user (admin only).
+   */
+  async generateLoginToken(data = {}) {
+    return this.api.post("authentication/login-token/generate", data);
+  }
+  /**
+   * Redeem a one-time login token (no authentication required).
+   */
+  async redeemLoginToken(data) {
+    return this.api.post("authentication/login-token/redeem", data);
+  }
+  /**
+   * Check if a login token is still valid (no auth required).
+   */
+  async getLoginTokenStatus(token) {
+    return this.api.get(`authentication/login-token/${token}/status`);
   }
   /**
    * Login with SSO provider (legacy endpoint without PKCE)
@@ -1149,6 +1184,54 @@ function useAuth() {
     emitter.emit(AuthState.LOGIN);
     return data;
   }
+  async function sendSMS(data) {
+    const { data: response } = await api.sendSMS(data);
+    return response;
+  }
+  async function verifySMS(data) {
+    const { data: response } = await api.verifySMS(data);
+    if (response.success === true && response.requires_verification !== true) {
+      await checkAuth();
+    }
+    emitter.emit(AuthState.LOGIN);
+    return response;
+  }
+  async function sendOTP(data) {
+    return sendSMS(data);
+  }
+  async function verifyOTP(data) {
+    return verifySMS(data);
+  }
+  async function sendEmailToken(data) {
+    const { data: response } = await api.sendEmailToken(data);
+    return response;
+  }
+  async function verifyEmailToken(data) {
+    const { data: response } = await api.verifyEmailToken(data);
+    if (response.success === true && response.requires_verification !== true) {
+      await checkAuth();
+    }
+    emitter.emit(AuthState.LOGIN);
+    return response;
+  }
+  async function generateLoginToken(data = {}) {
+    const { data: response } = await api.generateLoginToken(data);
+    return response;
+  }
+  async function loginWithToken(token) {
+    try {
+      const { data: response } = await api.redeemLoginToken({ token });
+      if (response.success === true && response.requires_verification !== true) {
+        await checkAuth();
+      }
+      if (response.success) {
+        emitter.emit(AuthState.LOGIN);
+      }
+      return response.success === true;
+    } catch {
+      return false;
+    }
+  }
   async function checkAuth() {
     try {
       const { data } = await api.getCurrentUser();
@@ -1375,6 +1458,18 @@ function useAuth() {
     signup,
     checkAuth,
     refreshSession,
+    // SMS Login
+    sendSMS,
+    verifySMS,
+    // SMS Login (deprecated aliases)
+    sendOTP,
+    verifyOTP,
+    // Email Token Login
+    sendEmailToken,
+    verifyEmailToken,
+    // Login Token (one-time token auth)
+    generateLoginToken,
+    loginWithToken,
     // SSO Authentication (lower-level - prefer using sso.google.redirect())
     initiateSSO,
     loginWithSSO,

package/dist/types.d.ts

@@ -104,7 +104,7 @@ export type GetInvitationResponse = AxiosResponse<{
     last_name?: string | null;
 }>;
 export type AcceptInvitationResponse = AxiosResponse<MessageResponse>;
-export type AuthenticationMethodType = 'password' | 'email_token' | 'sso' | 'otp';
+export type AuthenticationMethodType = 'password' | 'email_token' | 'email' | 'sso' | 'otp' | 'sms' | 'login_token';
 export type SSOProvider = 'google' | 'microsoft' | 'github' | 'okta' | 'apple' | 'facebook' | 'custom';
 export interface AuthenticationAccount {
     created_at?: string;
@@ -244,6 +244,24 @@ export interface OTPVerifyRequest {
     verification_hash: string;
     timestamp: number;
 }
+/** @alias OTPSendRequest — renamed to SMSSendRequest in API v2 */
+export type SMSSendRequest = OTPSendRequest;
+/** @alias OTPVerifyRequest — renamed to SMSVerifyRequest in API v2 */
+export type SMSVerifyRequest = OTPVerifyRequest;
+export interface GenerateTokenRequest {
+    target_identity_id?: string;
+    expires_in_minutes?: number;
+}
+export interface GenerateTokenResponse {
+    token: string;
+    target_identity_id: string;
+    issued_by: string;
+    expires_at: string;
+    expires_in_minutes: number;
+}
+export interface RedeemTokenRequest {
+    token: string;
+}
 export interface SSOLoginRequest {
     provider: SSOProvider;
     authorization_code?: string;
@@ -371,6 +389,10 @@ export type SendEmailTokenResponse = AxiosResponse<AuthenticationResponse>;
 export type VerifyEmailTokenResponse = AxiosResponse<AuthenticationResponse>;
 export type SendOTPResponse = AxiosResponse<AuthenticationResponse>;
 export type VerifyOTPResponse = AxiosResponse<AuthenticationResponse>;
+export type SendSMSResponse = AxiosResponse<AuthenticationResponse>;
+export type VerifySMSResponse = AxiosResponse<AuthenticationResponse>;
+export type GenerateLoginTokenResponse = AxiosResponse<GenerateTokenResponse>;
+export type RedeemLoginTokenResponse = AxiosResponse<AuthenticationResponse>;
 export type LegacySSOLoginResponse = AxiosResponse<AuthenticationResponse>;
 /**
  * Extract unified user from account info

package/dist/useAuth.d.ts

@@ -1,5 +1,5 @@
 import { App, ObjectPlugin } from 'vue';
-import { AccountInfo, User, NewUser, UpdatePasswordForm, UpdateAccountRequest, AuthEventMap, SSOProvider, SSOInitiateRequest, SSOCallbackRequest, SSOLinkRequest, TenantInfo, CreateTenantRequest, UpdateTenantRequest, AddMemberRequest, UpdateMemberRequest, CreateInvitationRequest, AcceptInvitationRequest, AuthState } from './types';
+import { AccountInfo, User, NewUser, UpdatePasswordForm, UpdateAccountRequest, AuthEventMap, SSOProvider, SSOInitiateRequest, SSOCallbackRequest, SSOLinkRequest, TenantInfo, CreateTenantRequest, UpdateTenantRequest, AddMemberRequest, UpdateMemberRequest, CreateInvitationRequest, AcceptInvitationRequest, OTPSendRequest, OTPVerifyRequest, SMSSendRequest, SMSVerifyRequest, EmailTokenSendRequest, EmailTokenVerifyRequest, GenerateTokenRequest, GenerateTokenResponse, AuthenticationResponse, AuthState } from './types';
 import { RedirectConfig, NormalizedRedirectConfig } from './types/redirect';
 interface InitParams {
     baseURL: string;
@@ -171,11 +171,19 @@ export declare function useAuth(): {
     login: (credentials: {
         email: string;
         password: string;
-    }) => Promise<import('./types').AuthenticationResponse>;
+    }) => Promise<AuthenticationResponse>;
     logout: () => Promise<void>;
-    signup: (newUser: NewUser) => Promise<import('./types').AuthenticationResponse>;
+    signup: (newUser: NewUser) => Promise<AuthenticationResponse>;
     checkAuth: () => Promise<boolean>;
     refreshSession: () => Promise<void>;
+    sendSMS: (data: SMSSendRequest) => Promise<AuthenticationResponse>;
+    verifySMS: (data: SMSVerifyRequest) => Promise<AuthenticationResponse>;
+    sendOTP: (data: OTPSendRequest) => Promise<AuthenticationResponse>;
+    verifyOTP: (data: OTPVerifyRequest) => Promise<AuthenticationResponse>;
+    sendEmailToken: (data: EmailTokenSendRequest) => Promise<AuthenticationResponse>;
+    verifyEmailToken: (data: EmailTokenVerifyRequest) => Promise<AuthenticationResponse>;
+    generateLoginToken: (data?: GenerateTokenRequest) => Promise<GenerateTokenResponse>;
+    loginWithToken: (token: string) => Promise<boolean>;
     initiateSSO: (provider: SSOProvider, params: SSOInitiateRequest) => Promise<string>;
     loginWithSSO: (provider: SSOProvider, params: SSOCallbackRequest) => Promise<import('./types').SSOCallbackResponse>;
     linkSSOProvider: (provider: SSOProvider, params: SSOLinkRequest) => Promise<void>;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@bagelink/auth",
   "type": "module",
-  "version": "1.12.16",
+  "version": "1.12.20",
   "description": "Bagelink auth package",
   "author": {
     "name": "Bagel Studio",

package/src/api.ts

@@ -13,6 +13,10 @@ import type {
 	EmailTokenVerifyRequest,
 	OTPSendRequest,
 	OTPVerifyRequest,
+	SMSSendRequest,
+	SMSVerifyRequest,
+	GenerateTokenRequest,
+	RedeemTokenRequest,
 	SSOLoginRequest,
 	LoginResponse,
 	RegisterResponse,
@@ -37,6 +41,10 @@ import type {
 	VerifyEmailTokenResponse,
 	SendOTPResponse,
 	VerifyOTPResponse,
+	SendSMSResponse,
+	VerifySMSResponse,
+	GenerateLoginTokenResponse,
+	RedeemLoginTokenResponse,
 	LegacySSOLoginResponse,
 	SSOProvider,
 	SSOInitiateRequest,
@@ -151,28 +159,69 @@ export class AuthApi {
 	 * Send email token to user
 	 */
 	async sendEmailToken(data: EmailTokenSendRequest): Promise<SendEmailTokenResponse> {
-		return this.api.post('authentication/login/email-token/send', data)
+		return this.api.post('authentication/login/email/send', data)
 	}
 
 	/**
 	 * Verify email token and login
 	 */
 	async verifyEmailToken(data: EmailTokenVerifyRequest): Promise<VerifyEmailTokenResponse> {
-		return this.api.post('authentication/login/email-token/verify', data)
+		return this.api.post('authentication/login/email/verify', data)
 	}
 
 	/**
-	 * Send OTP code to phone number
+	 * Send SMS verification code to phone number
+	 */
+	async sendSMS(data: SMSSendRequest): Promise<SendSMSResponse> {
+		return this.api.post('authentication/login/sms/send', data)
+	}
+
+	/**
+	 * Verify SMS code and login
+	 */
+	async verifySMS(data: SMSVerifyRequest): Promise<VerifySMSResponse> {
+		return this.api.post('authentication/login/sms/verify', data)
+	}
+
+	/**
+	 * @deprecated Use sendSMS() instead
 	 */
 	async sendOTP(data: OTPSendRequest): Promise<SendOTPResponse> {
-		return this.api.post('authentication/login/otp/send', data)
+		return this.sendSMS(data)
 	}
 
 	/**
-	 * Verify OTP code and login
+	 * @deprecated Use verifySMS() instead
 	 */
 	async verifyOTP(data: OTPVerifyRequest): Promise<VerifyOTPResponse> {
-		return this.api.post('authentication/login/otp/verify', data)
+		return this.verifySMS(data)
+	}
+
+	// ============================================
+	// Login Token Methods
+	// ============================================
+
+	/**
+	 * Generate a one-time login token.
+	 * Omit target_identity_id to generate for yourself (e.g. desktop → mobile).
+	 * Provide target_identity_id to generate for another user (admin only).
+	 */
+	async generateLoginToken(data: GenerateTokenRequest = {}): Promise<GenerateLoginTokenResponse> {
+		return this.api.post('authentication/login-token/generate', data)
+	}
+
+	/**
+	 * Redeem a one-time login token (no authentication required).
+	 */
+	async redeemLoginToken(data: RedeemTokenRequest): Promise<RedeemLoginTokenResponse> {
+		return this.api.post('authentication/login-token/redeem', data)
+	}
+
+	/**
+	 * Check if a login token is still valid (no auth required).
+	 */
+	async getLoginTokenStatus(token: string): Promise<any> {
+		return this.api.get(`authentication/login-token/${token}/status`)
 	}
 
 	/**

package/src/types.ts

@@ -140,8 +140,11 @@ export type AcceptInvitationResponse = AxiosResponse<MessageResponse>
 export type AuthenticationMethodType
 	= | 'password'
 		| 'email_token'
+		| 'email'
 		| 'sso'
 		| 'otp'
+		| 'sms'
+		| 'login_token'
 
 export type SSOProvider = 'google' | 'microsoft' | 'github' | 'okta' | 'apple' | 'facebook' | 'custom'
 
@@ -312,6 +315,31 @@ export interface OTPVerifyRequest {
 	timestamp: number
 }
 
+/** @alias OTPSendRequest — renamed to SMSSendRequest in API v2 */
+export type SMSSendRequest = OTPSendRequest
+
+/** @alias OTPVerifyRequest — renamed to SMSVerifyRequest in API v2 */
+export type SMSVerifyRequest = OTPVerifyRequest
+
+// ─── Login Token Types ────────────────────────────────────────────────────────
+
+export interface GenerateTokenRequest {
+	target_identity_id?: string
+	expires_in_minutes?: number
+}
+
+export interface GenerateTokenResponse {
+	token: string
+	target_identity_id: string
+	issued_by: string
+	expires_at: string
+	expires_in_minutes: number
+}
+
+export interface RedeemTokenRequest {
+	token: string
+}
+
 export interface SSOLoginRequest {
 	provider: SSOProvider
 	authorization_code?: string
@@ -449,6 +477,10 @@ export type SendEmailTokenResponse = AxiosResponse<AuthenticationResponse>
 export type VerifyEmailTokenResponse = AxiosResponse<AuthenticationResponse>
 export type SendOTPResponse = AxiosResponse<AuthenticationResponse>
 export type VerifyOTPResponse = AxiosResponse<AuthenticationResponse>
+export type SendSMSResponse = AxiosResponse<AuthenticationResponse>
+export type VerifySMSResponse = AxiosResponse<AuthenticationResponse>
+export type GenerateLoginTokenResponse = AxiosResponse<GenerateTokenResponse>
+export type RedeemLoginTokenResponse = AxiosResponse<AuthenticationResponse>
 export type LegacySSOLoginResponse = AxiosResponse<AuthenticationResponse>
 
 // ============================================

package/src/useAuth.ts

@@ -17,6 +17,15 @@ import type {
 	UpdateMemberRequest,
 	CreateInvitationRequest,
 	AcceptInvitationRequest,
+	OTPSendRequest,
+	OTPVerifyRequest,
+	SMSSendRequest,
+	SMSVerifyRequest,
+	EmailTokenSendRequest,
+	EmailTokenVerifyRequest,
+	GenerateTokenRequest,
+	GenerateTokenResponse,
+	AuthenticationResponse,
 } from './types'
 import type { RedirectConfig, NormalizedRedirectConfig } from './types/redirect'
 import { ref, computed } from 'vue'
@@ -318,6 +327,93 @@ export function useAuth() {
 		return data
 	}
 
+	// ============================================
+	// SMS Login
+	// ============================================
+
+	async function sendSMS(data: SMSSendRequest): Promise<AuthenticationResponse> {
+		const { data: response } = await api.sendSMS(data)
+		return response
+	}
+
+	async function verifySMS(data: SMSVerifyRequest): Promise<AuthenticationResponse> {
+		const { data: response } = await api.verifySMS(data)
+
+		if (response.success === true && response.requires_verification !== true) {
+			await checkAuth()
+		}
+
+		emitter.emit(AuthState.LOGIN)
+		return response
+	}
+
+	/** @deprecated Use sendSMS() instead */
+	async function sendOTP(data: OTPSendRequest): Promise<AuthenticationResponse> {
+		return sendSMS(data)
+	}
+
+	/** @deprecated Use verifySMS() instead */
+	async function verifyOTP(data: OTPVerifyRequest): Promise<AuthenticationResponse> {
+		return verifySMS(data)
+	}
+
+	// ============================================
+	// Email Token Login
+	// ============================================
+
+	async function sendEmailToken(data: EmailTokenSendRequest): Promise<AuthenticationResponse> {
+		const { data: response } = await api.sendEmailToken(data)
+		return response
+	}
+
+	async function verifyEmailToken(data: EmailTokenVerifyRequest): Promise<AuthenticationResponse> {
+		const { data: response } = await api.verifyEmailToken(data)
+
+		if (response.success === true && response.requires_verification !== true) {
+			await checkAuth()
+		}
+
+		emitter.emit(AuthState.LOGIN)
+		return response
+	}
+
+	// ============================================
+	// Login Token (one-time token auth)
+	// ============================================
+
+	/**
+	 * Generate a one-time login token.
+	 * Omit target_identity_id to generate for yourself (e.g. desktop → mobile).
+	 * Provide target_identity_id to generate for another user (admin only).
+	 */
+	async function generateLoginToken(data: GenerateTokenRequest = {}): Promise<GenerateTokenResponse> {
+		const { data: response } = await api.generateLoginToken(data)
+		return response
+	}
+
+	/**
+	 * Redeem a one-time login token and authenticate.
+	 * @param token - The login token string
+	 * @returns true if login succeeded, false otherwise
+	 */
+	async function loginWithToken(token: string): Promise<boolean> {
+		try {
+			const { data: response } = await api.redeemLoginToken({ token })
+
+			if (response.success === true && response.requires_verification !== true) {
+				await checkAuth()
+			}
+
+			if (response.success) {
+				emitter.emit(AuthState.LOGIN)
+			}
+
+			return response.success === true
+		} catch {
+			return false
+		}
+	}
+
 	async function checkAuth(): Promise<boolean> {
 		try {
 			const { data } = await api.getCurrentUser()
@@ -628,6 +724,22 @@ export function useAuth() {
 		checkAuth,
 		refreshSession,
 
+		// SMS Login
+		sendSMS,
+		verifySMS,
+
+		// SMS Login (deprecated aliases)
+		sendOTP,
+		verifyOTP,
+
+		// Email Token Login
+		sendEmailToken,
+		verifyEmailToken,
+
+		// Login Token (one-time token auth)
+		generateLoginToken,
+		loginWithToken,
+
 		// SSO Authentication (lower-level - prefer using sso.google.redirect())
 		initiateSSO,
 		loginWithSSO,