@better-auth/core 1.4.0-beta.13 → 1.4.0-beta.15

package/src/oauth2/validate-authorization-code.ts

@@ -1,8 +1,8 @@
+import { base64 } from "@better-auth/utils/base64";
 import { betterFetch } from "@better-fetch/fetch";
 import { jwtVerify } from "jose";
 import type { ProviderOptions } from "./index";
 import { getOAuth2Tokens } from "./index";
-import { base64 } from "@better-auth/utils/base64";
 
 export function createAuthorizationCodeRequest({
 	code,
@@ -18,12 +18,12 @@ export function createAuthorizationCodeRequest({
 	code: string;
 	redirectURI: string;
 	options: Partial<ProviderOptions>;
-	codeVerifier?: string;
-	deviceId?: string;
-	authentication?: "basic" | "post";
-	headers?: Record<string, string>;
-	additionalParams?: Record<string, string>;
-	resource?: string | string[];
+	codeVerifier?: string | undefined;
+	deviceId?: string | undefined;
+	authentication?: ("basic" | "post") | undefined;
+	headers?: Record<string, string> | undefined;
+	additionalParams?: Record<string, string> | undefined;
+	resource?: (string | string[]) | undefined;
 }) {
 	const body = new URLSearchParams();
 	const requestHeaders: Record<string, any> = {
@@ -91,13 +91,13 @@ export async function validateAuthorizationCode({
 	code: string;
 	redirectURI: string;
 	options: Partial<ProviderOptions>;
-	codeVerifier?: string;
-	deviceId?: string;
+	codeVerifier?: string | undefined;
+	deviceId?: string | undefined;
 	tokenEndpoint: string;
-	authentication?: "basic" | "post";
-	headers?: Record<string, string>;
-	additionalParams?: Record<string, string>;
-	resource?: string | string[];
+	authentication?: ("basic" | "post") | undefined;
+	headers?: Record<string, string> | undefined;
+	additionalParams?: Record<string, string> | undefined;
+	resource?: (string | string[]) | undefined;
 }) {
 	const { body, headers: requestHeaders } = createAuthorizationCodeRequest({
 		code,

package/src/social-providers/apple.ts

@@ -3,8 +3,8 @@ import { APIError } from "better-call";
 import { decodeJwt, decodeProtectedHeader, importJWK, jwtVerify } from "jose";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
 import {
-	refreshAccessToken,
 	createAuthorizationURL,
+	refreshAccessToken,
 	validateAuthorizationCode,
 } from "../oauth2";
 export interface AppleProfile {
@@ -52,7 +52,7 @@ export interface AppleProfile {
 	 * The URL to the user's profile picture.
 	 */
 	picture: string;
-	user?: AppleNonConformUser;
+	user?: AppleNonConformUser | undefined;
 }
 
 /**
@@ -70,8 +70,8 @@ export interface AppleNonConformUser {
 
 export interface AppleOptions extends ProviderOptions<AppleProfile> {
 	clientId: string;
-	appBundleIdentifier?: string;
-	audience?: string | string[];
+	appBundleIdentifier?: string | undefined;
+	audience?: (string | string[]) | undefined;
 }
 
 export const apple = (options: AppleOptions) => {
@@ -81,8 +81,8 @@ export const apple = (options: AppleOptions) => {
 		name: "Apple",
 		async createAuthorizationURL({ state, scopes, redirectURI }) {
 			const _scope = options.disableDefaultScope ? [] : ["email", "name"];
-			options.scope && _scope.push(...options.scope);
-			scopes && _scope.push(...scopes);
+			if (options.scope) _scope.push(...options.scope);
+			if (scopes) _scope.push(...scopes);
 			const url = await createAuthorizationURL({
 				id: "apple",
 				options,

package/src/social-providers/atlassian.ts

@@ -1,24 +1,29 @@
 import { betterFetch } from "@better-fetch/fetch";
+import { logger } from "../env";
 import { BetterAuthError } from "../error";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
-import { createAuthorizationURL, validateAuthorizationCode } from "../oauth2";
-import { logger } from "../env";
-import { refreshAccessToken } from "../oauth2";
+import {
+	createAuthorizationURL,
+	refreshAccessToken,
+	validateAuthorizationCode,
+} from "../oauth2";
 
 export interface AtlassianProfile {
-	account_type?: string;
+	account_type?: string | undefined;
 	account_id: string;
-	email?: string;
+	email?: string | undefined;
 	name: string;
-	picture?: string;
-	nickname?: string;
-	locale?: string;
-	extended_profile?: {
-		job_title?: string;
-		organization?: string;
-		department?: string;
-		location?: string;
-	};
+	picture?: string | undefined;
+	nickname?: string | undefined;
+	locale?: string | undefined;
+	extended_profile?:
+		| {
+				job_title?: string;
+				organization?: string;
+				department?: string;
+				location?: string;
+		  }
+		| undefined;
 }
 export interface AtlassianOptions extends ProviderOptions<AtlassianProfile> {
 	clientId: string;
@@ -41,8 +46,8 @@ export const atlassian = (options: AtlassianOptions) => {
 			const _scopes = options.disableDefaultScope
 				? []
 				: ["read:jira-user", "offline_access"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 
 			return createAuthorizationURL({
 				id: "atlassian",
@@ -95,8 +100,8 @@ export const atlassian = (options: AtlassianOptions) => {
 				const { data: profile } = await betterFetch<{
 					account_id: string;
 					name: string;
-					email?: string;
-					picture?: string;
+					email?: string | undefined;
+					picture?: string | undefined;
 				}>("https://api.atlassian.com/me", {
 					headers: { Authorization: `Bearer ${token.accessToken}` },
 				});

package/src/social-providers/cognito.ts

@@ -1,24 +1,27 @@
 import { betterFetch } from "@better-fetch/fetch";
+import { APIError } from "better-call";
 import { decodeJwt, decodeProtectedHeader, importJWK, jwtVerify } from "jose";
+import { logger } from "../env";
 import { BetterAuthError } from "../error";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
-import { createAuthorizationURL, validateAuthorizationCode } from "../oauth2";
-import { logger } from "../env";
-import { refreshAccessToken } from "../oauth2";
-import { APIError } from "better-call";
+import {
+	createAuthorizationURL,
+	refreshAccessToken,
+	validateAuthorizationCode,
+} from "../oauth2";
 
 export interface CognitoProfile {
 	sub: string;
 	email: string;
 	email_verified: boolean;
 	name: string;
-	given_name?: string;
-	family_name?: string;
-	picture?: string;
-	username?: string;
-	locale?: string;
-	phone_number?: string;
-	phone_number_verified?: boolean;
+	given_name?: string | undefined;
+	family_name?: string | undefined;
+	picture?: string | undefined;
+	username?: string | undefined;
+	locale?: string | undefined;
+	phone_number?: string | undefined;
+	phone_number_verified?: boolean | undefined;
 	aud: string;
 	iss: string;
 	exp: number;
@@ -38,7 +41,7 @@ export interface CognitoOptions extends ProviderOptions<CognitoProfile> {
 	 */
 	region: string;
 	userPoolId: string;
-	requireClientSecret?: boolean;
+	requireClientSecret?: boolean | undefined;
 }
 
 export const cognito = (options: CognitoOptions) => {
@@ -74,8 +77,8 @@ export const cognito = (options: CognitoOptions) => {
 			const _scopes = options.disableDefaultScope
 				? []
 				: ["openid", "profile", "email"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 
 			const url = await createAuthorizationURL({
 				id: "cognito",

package/src/social-providers/discord.ts

@@ -16,12 +16,12 @@ export interface DiscordProfile extends Record<string, any> {
 	 */
 	avatar: string | null;
 	/** whether the user belongs to an OAuth2 application */
-	bot?: boolean;
+	bot?: boolean | undefined;
 	/**
 	 * whether the user is an Official Discord System user (part of the urgent
 	 * message system)
 	 */
-	system?: boolean;
+	system?: boolean | undefined;
 	/** whether the user has two factor enabled on their account */
 	mfa_enabled: boolean;
 	/**
@@ -75,8 +75,8 @@ export interface DiscordProfile extends Record<string, any> {
 
 export interface DiscordOptions extends ProviderOptions<DiscordProfile> {
 	clientId: string;
-	prompt?: "none" | "consent";
-	permissions?: number;
+	prompt?: ("none" | "consent") | undefined;
+	permissions?: number | undefined;
 }
 
 export const discord = (options: DiscordOptions) => {
@@ -85,8 +85,8 @@ export const discord = (options: DiscordOptions) => {
 		name: "Discord",
 		createAuthorizationURL({ state, scopes, redirectURI }) {
 			const _scopes = options.disableDefaultScope ? [] : ["identify", "email"];
-			scopes && _scopes.push(...scopes);
-			options.scope && _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
 			const hasBotScope = _scopes.includes("bot");
 			const permissionsParam =
 				hasBotScope && options.permissions !== undefined

package/src/social-providers/dropbox.ts

@@ -22,7 +22,7 @@ export interface DropboxProfile {
 
 export interface DropboxOptions extends ProviderOptions<DropboxProfile> {
 	clientId: string;
-	accessType?: "offline" | "online" | "legacy";
+	accessType?: ("offline" | "online" | "legacy") | undefined;
 }
 
 export const dropbox = (options: DropboxOptions) => {
@@ -38,8 +38,8 @@ export const dropbox = (options: DropboxOptions) => {
 			redirectURI,
 		}) => {
 			const _scopes = options.disableDefaultScope ? [] : ["account_info.read"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 			const additionalParams: Record<string, string> = {};
 			if (options.accessType) {
 				additionalParams.token_access_type = options.accessType;

package/src/social-providers/facebook.ts

@@ -1,8 +1,11 @@
 import { betterFetch } from "@better-fetch/fetch";
+import { createRemoteJWKSet, decodeJwt, jwtVerify } from "jose";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
-import { createAuthorizationURL, validateAuthorizationCode } from "../oauth2";
-import { createRemoteJWKSet, jwtVerify, decodeJwt } from "jose";
-import { refreshAccessToken } from "../oauth2";
+import {
+	createAuthorizationURL,
+	refreshAccessToken,
+	validateAuthorizationCode,
+} from "../oauth2";
 export interface FacebookProfile {
 	id: string;
 	name: string;
@@ -25,12 +28,12 @@ export interface FacebookOptions extends ProviderOptions<FacebookProfile> {
 	 *
 	 * @default ["id", "name", "email", "picture"]
 	 */
-	fields?: string[];
+	fields?: string[] | undefined;
 
 	/**
 	 * The config id to use when undergoing oauth
 	 */
-	configId?: string;
+	configId?: string | undefined;
 }
 
 export const facebook = (options: FacebookOptions) => {
@@ -41,8 +44,8 @@ export const facebook = (options: FacebookOptions) => {
 			const _scopes = options.disableDefaultScope
 				? []
 				: ["email", "public_profile"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 			return await createAuthorizationURL({
 				id: "facebook",
 				options,

package/src/social-providers/figma.ts

@@ -1,9 +1,12 @@
 import { betterFetch } from "@better-fetch/fetch";
+import { logger } from "../env";
 import { BetterAuthError } from "../error";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
-import { createAuthorizationURL, validateAuthorizationCode } from "../oauth2";
-import { logger } from "../env";
-import { refreshAccessToken } from "../oauth2";
+import {
+	createAuthorizationURL,
+	refreshAccessToken,
+	validateAuthorizationCode,
+} from "../oauth2";
 
 export interface FigmaProfile {
 	id: string;
@@ -32,8 +35,8 @@ export const figma = (options: FigmaOptions) => {
 			}
 
 			const _scopes = options.disableDefaultScope ? [] : ["file_read"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 
 			const url = await createAuthorizationURL({
 				id: "figma",

package/src/social-providers/github.ts

@@ -65,8 +65,8 @@ export const github = (options: GithubOptions) => {
 			const _scopes = options.disableDefaultScope
 				? []
 				: ["read:user", "user:email"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 			return createAuthorizationURL({
 				id: "github",
 				options,

package/src/social-providers/gitlab.ts

@@ -2,8 +2,8 @@ import { betterFetch } from "@better-fetch/fetch";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
 import {
 	createAuthorizationURL,
-	validateAuthorizationCode,
 	refreshAccessToken,
+	validateAuthorizationCode,
 } from "../oauth2";
 
 export interface GitlabProfile extends Record<string, any> {
@@ -16,7 +16,7 @@ export interface GitlabProfile extends Record<string, any> {
 	web_url: string;
 	created_at: string;
 	bio: string;
-	location?: string;
+	location?: string | undefined;
 	public_email: string;
 	skype: string;
 	linkedin: string;
@@ -26,7 +26,7 @@ export interface GitlabProfile extends Record<string, any> {
 	job_title: string;
 	pronouns: string;
 	bot: boolean;
-	work_information?: string;
+	work_information?: string | undefined;
 	followers: number;
 	following: number;
 	local_time: string;
@@ -53,7 +53,7 @@ export interface GitlabProfile extends Record<string, any> {
 
 export interface GitlabOptions extends ProviderOptions<GitlabProfile> {
 	clientId: string;
-	issuer?: string;
+	issuer?: string | undefined;
 }
 
 const cleanDoubleSlashes = (input: string = "") => {
@@ -63,7 +63,7 @@ const cleanDoubleSlashes = (input: string = "") => {
 		.join("://");
 };
 
-const issuerToEndpoints = (issuer?: string) => {
+const issuerToEndpoints = (issuer?: string | undefined) => {
 	let baseUrl = issuer || "https://gitlab.com";
 	return {
 		authorizationEndpoint: cleanDoubleSlashes(`${baseUrl}/oauth/authorize`),
@@ -88,8 +88,8 @@ export const gitlab = (options: GitlabOptions) => {
 			redirectURI,
 		}) => {
 			const _scopes = options.disableDefaultScope ? [] : ["read_user"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 			return await createAuthorizationURL({
 				id: issuerId,
 				options,

package/src/social-providers/google.ts

@@ -1,10 +1,13 @@
 import { betterFetch } from "@better-fetch/fetch";
 import { decodeJwt } from "jose";
+import { logger } from "../env";
 import { BetterAuthError } from "../error";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
-import { createAuthorizationURL, validateAuthorizationCode } from "../oauth2";
-import { logger } from "../env";
-import { refreshAccessToken } from "../oauth2";
+import {
+	createAuthorizationURL,
+	refreshAccessToken,
+	validateAuthorizationCode,
+} from "../oauth2";
 
 export interface GoogleProfile {
 	aud: string;
@@ -22,13 +25,13 @@ export interface GoogleProfile {
 	 * Western languages.
 	 */
 	given_name: string;
-	hd?: string;
+	hd?: string | undefined;
 	iat: number;
 	iss: string;
-	jti?: string;
-	locale?: string;
+	jti?: string | undefined;
+	locale?: string | undefined;
 	name: string;
-	nbf?: number;
+	nbf?: number | undefined;
 	picture: string;
 	sub: string;
 }
@@ -38,15 +41,15 @@ export interface GoogleOptions extends ProviderOptions<GoogleProfile> {
 	/**
 	 * The access type to use for the authorization code request
 	 */
-	accessType?: "offline" | "online";
+	accessType?: ("offline" | "online") | undefined;
 	/**
 	 * The display mode to use for the authorization code request
 	 */
-	display?: "page" | "popup" | "touch" | "wap";
+	display?: ("page" | "popup" | "touch" | "wap") | undefined;
 	/**
 	 * The hosted domain of the user
 	 */
-	hd?: string;
+	hd?: string | undefined;
 }
 
 export const google = (options: GoogleOptions) => {
@@ -73,8 +76,8 @@ export const google = (options: GoogleOptions) => {
 			const _scopes = options.disableDefaultScope
 				? []
 				: ["email", "profile", "openid"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 			const url = await createAuthorizationURL({
 				id: "google",
 				options,

package/src/social-providers/huggingface.ts

@@ -2,8 +2,8 @@ import { betterFetch } from "@better-fetch/fetch";
 import type { OAuthProvider, ProviderOptions } from "../oauth2";
 import {
 	createAuthorizationURL,
-	validateAuthorizationCode,
 	refreshAccessToken,
+	validateAuthorizationCode,
 } from "../oauth2";
 
 export interface HuggingFaceProfile {
@@ -12,27 +12,29 @@ export interface HuggingFaceProfile {
 	preferred_username: string;
 	profile: string;
 	picture: string;
-	website?: string;
-	email?: string;
-	email_verified?: boolean;
+	website?: string | undefined;
+	email?: string | undefined;
+	email_verified?: boolean | undefined;
 	isPro: boolean;
-	canPay?: boolean;
-	orgs?: {
-		sub: string;
-		name: string;
-		picture: string;
-		preferred_username: string;
-		isEnterprise: boolean | "plus";
-		canPay?: boolean;
-		roleInOrg?: "admin" | "write" | "contributor" | "read";
-		pendingSSO?: boolean;
-		missingMFA?: boolean;
-		resourceGroups?: {
-			sub: string;
-			name: string;
-			role: "admin" | "write" | "contributor" | "read";
-		}[];
-	};
+	canPay?: boolean | undefined;
+	orgs?:
+		| {
+				sub: string;
+				name: string;
+				picture: string;
+				preferred_username: string;
+				isEnterprise: boolean | "plus";
+				canPay?: boolean;
+				roleInOrg?: "admin" | "write" | "contributor" | "read";
+				pendingSSO?: boolean;
+				missingMFA?: boolean;
+				resourceGroups?: {
+					sub: string;
+					name: string;
+					role: "admin" | "write" | "contributor" | "read";
+				}[];
+		  }
+		| undefined;
 }
 
 export interface HuggingFaceOptions
@@ -48,8 +50,8 @@ export const huggingface = (options: HuggingFaceOptions) => {
 			const _scopes = options.disableDefaultScope
 				? []
 				: ["openid", "profile", "email"];
-			options.scope && _scopes.push(...options.scope);
-			scopes && _scopes.push(...scopes);
+			if (options.scope) _scopes.push(...options.scope);
+			if (scopes) _scopes.push(...scopes);
 			return createAuthorizationURL({
 				id: "huggingface",
 				options,

package/src/social-providers/index.ts

@@ -3,33 +3,34 @@ import { apple } from "./apple";
 import { atlassian } from "./atlassian";
 import { cognito } from "./cognito";
 import { discord } from "./discord";
+import { dropbox } from "./dropbox";
 import { facebook } from "./facebook";
 import { figma } from "./figma";
 import { github } from "./github";
+import { gitlab } from "./gitlab";
 import { google } from "./google";
-import { kick } from "./kick";
 import { huggingface } from "./huggingface";
-import { microsoft } from "./microsoft-entra-id";
-import { slack } from "./slack";
-import { notion } from "./notion";
-import { spotify } from "./spotify";
-import { twitch } from "./twitch";
-import { twitter } from "./twitter";
-import { dropbox } from "./dropbox";
+import { kakao } from "./kakao";
+import { kick } from "./kick";
+import { line } from "./line";
 import { linear } from "./linear";
 import { linkedin } from "./linkedin";
-import { gitlab } from "./gitlab";
-import { tiktok } from "./tiktok";
+import { microsoft } from "./microsoft-entra-id";
+import { naver } from "./naver";
+import { notion } from "./notion";
+import { paybin } from "./paybin";
+import { paypal } from "./paypal";
+import { polar } from "./polar";
 import { reddit } from "./reddit";
 import { roblox } from "./roblox";
 import { salesforce } from "./salesforce";
+import { slack } from "./slack";
+import { spotify } from "./spotify";
+import { tiktok } from "./tiktok";
+import { twitch } from "./twitch";
+import { twitter } from "./twitter";
 import { vk } from "./vk";
 import { zoom } from "./zoom";
-import { kakao } from "./kakao";
-import { naver } from "./naver";
-import { line } from "./line";
-import { paypal } from "./paypal";
-import { polar } from "./polar";
 
 export const socialProviders = {
 	apple,
@@ -61,6 +62,7 @@ export const socialProviders = {
 	kakao,
 	naver,
 	line,
+	paybin,
 	paypal,
 	polar,
 };
@@ -80,7 +82,7 @@ export type SocialProviders = {
 	[K in SocialProviderList[number]]?: Parameters<
 		(typeof socialProviders)[K]
 	>[0] & {
-		enabled?: boolean;
+		enabled?: boolean | undefined;
 	};
 };
 
@@ -92,30 +94,31 @@ export * from "./dropbox";
 export * from "./facebook";
 export * from "./figma";
 export * from "./github";
-export * from "./linear";
-export * from "./linkedin";
 export * from "./gitlab";
 export * from "./google";
+export * from "./huggingface";
+export * from "./kakao";
+export * from "./kick";
 export * from "./kick";
+export * from "./line";
+export * from "./linear";
+export * from "./linkedin";
 export * from "./linkedin";
 export * from "./microsoft-entra-id";
+export * from "./naver";
 export * from "./notion";
+export * from "./paybin";
+export * from "./paypal";
+export * from "./polar";
 export * from "./reddit";
 export * from "./roblox";
 export * from "./salesforce";
+export * from "./slack";
 export * from "./spotify";
 export * from "./tiktok";
 export * from "./twitch";
 export * from "./twitter";
 export * from "./vk";
 export * from "./zoom";
-export * from "./kick";
-export * from "./huggingface";
-export * from "./slack";
-export * from "./kakao";
-export * from "./naver";
-export * from "./line";
-export * from "./paypal";
-export * from "./polar";
 
 export type SocialProviderList = typeof socialProviderList;