@blinkdotnew/sdk 0.18.1 → 0.18.3

package/README.md

@@ -30,17 +30,21 @@ const blink = createClient({
   authRequired: false // Don't force immediate auth - let users browse first
 })
 
-// Authentication (flexible) - Two modes available
+// Authentication - Choose your mode:
 
-// For websites: Let users browse, require auth for protected areas
-if (!blink.auth.isAuthenticated() && needsAuth) {
-  blink.auth.login() // Redirects to blink.new auth page when needed
-}
+// 🎯 MANAGED MODE: Quick setup with hosted auth page
+const blink = createClient({
+  projectId: 'your-project',
+  auth: { mode: 'managed' }
+})
+// Use: blink.auth.login() - redirects to blink.new auth
 
-// For apps with custom auth UI (headless mode)
-const user = await blink.auth.signUp({ email: 'user@example.com', password: 'secure123' })
-const user = await blink.auth.signInWithEmail('user@example.com', 'secure123')
-const user = await blink.auth.signInWithGoogle()
+// 🎨 HEADLESS MODE: Custom UI with full control  
+const blink = createClient({
+  projectId: 'your-project', 
+  auth: { mode: 'headless' }
+})
+// Use: blink.auth.signInWithEmail(), blink.auth.signInWithGoogle(), etc.
 
 // Current user (works in both modes)
 const user = await blink.auth.me()
@@ -193,65 +197,80 @@ blink.auth.setToken(jwtFromHeader)
 
 > **⚠️ Version Requirement**: The flexible authentication system requires SDK version **0.18.0 or higher**. Version 0.17.x and below only support the legacy authentication system.
 
-Blink provides **two authentication modes** for maximum flexibility:
-
-#### Managed Mode (Default - Redirect-based)
+Blink provides **two authentication modes**:
 
-Perfect for quick setup with Blink's hosted auth page:
+## 🎯 Managed Mode (Redirect-based)
+**Perfect for:** Quick setup, minimal code
+**Best for:** Websites, simple apps, MVP development
 
 ```typescript
-// ⚠️ DEPRECATED: authRequired is legacy - use auth.mode instead
-const blink = createClient({
-  projectId: 'your-project',
-  authRequired: false // Legacy - still works but deprecated
-})
-
-// ✅ RECOMMENDED: Use new auth configuration
 const blink = createClient({
   projectId: 'your-project',
-  auth: {
-    mode: 'managed', // Explicit mode configuration
-    redirectUrl: 'https://myapp.com/dashboard'
-  }
+  auth: { mode: 'managed' }
 })
 
-// Simple redirect authentication
-blink.auth.login() // Redirects to blink.new auth page
+// ONE METHOD: Redirect to hosted auth page
+blink.auth.login() // → Redirects to blink.new/auth
 blink.auth.logout() // Clear tokens and redirect
-```
 
-#### Headless Mode (Custom UI Control)
+// User state (automatic after redirect)
+const user = await blink.auth.me()
+```
 
-Build your own authentication UI with full control:
+## 🎨 Headless Mode (Custom UI)
+**Perfect for:** Custom branding, advanced UX, mobile apps
+**Best for:** Production apps, branded experiences
 
 ```typescript
 const blink = createClient({
   projectId: 'your-project',
-  auth: {
-    mode: 'headless'
-    // Providers controlled via project settings
-  }
+  auth: { mode: 'headless' }
 })
 
-// Email/password authentication
-const user = await blink.auth.signUp({
-  email: 'user@example.com',
-  password: 'SecurePass123!',
-  metadata: { displayName: 'John Doe' }
-})
-
-const user = await blink.auth.signInWithEmail('user@example.com', 'password')
-
-// Social provider authentication
+// MULTIPLE METHODS: Build your own UI
+const user = await blink.auth.signUp({ email, password })
+const user = await blink.auth.signInWithEmail(email, password)
 const user = await blink.auth.signInWithGoogle()
 const user = await blink.auth.signInWithGitHub()
 const user = await blink.auth.signInWithApple()
 const user = await blink.auth.signInWithMicrosoft()
 
 // Magic links (passwordless)
-await blink.auth.sendMagicLink('user@example.com', {
-  redirectUrl: 'https://myapp.com/dashboard'
+await blink.auth.sendMagicLink(email)
+
+// Password management
+await blink.auth.sendPasswordResetEmail(email)
+await blink.auth.sendPasswordResetEmail(email, { 
+  redirectUrl: 'https://myapp.com/reset-password' 
+})
+await blink.auth.changePassword(oldPass, newPass)
+
+// Email verification
+await blink.auth.sendEmailVerification()
+```
+
+### ⚡ Quick Mode Comparison
+
+| Feature | **Managed Mode** | **Headless Mode** |
+|---------|------------------|-------------------|
+| **Setup** | 1 line of code | Custom UI required |
+| **Methods** | `login()` only | `signInWith*()` methods |
+| **UI** | Hosted auth page | Your custom forms |
+| **Branding** | Blink-branded | Fully customizable |
+| **Mobile** | Web redirects | Native integration |
+
+### 🚨 **Common Mistake**
+
+```typescript
+// ❌ WRONG: Using managed method in headless mode
+const blink = createClient({
+  auth: { mode: 'headless' }
 })
+blink.auth.login() // Still redirects! Wrong method for headless
+
+// ✅ CORRECT: Use headless methods
+await blink.auth.signInWithEmail(email, password)
+await blink.auth.signInWithGoogle()
 ```
 
 #### 🔧 Provider Configuration
@@ -418,6 +437,10 @@ blink.auth.setToken(jwt, persist?)
 const isAuth = blink.auth.isAuthenticated()
 
 // Password management
+await blink.auth.sendPasswordResetEmail('user@example.com')
+await blink.auth.sendPasswordResetEmail('user@example.com', { 
+  redirectUrl: 'https://myapp.com/reset-password' // Custom reset page
+})
 await blink.auth.changePassword('oldPass', 'newPass')
 await blink.auth.confirmPasswordReset(token, newPassword)
 
@@ -1567,8 +1590,8 @@ const blink = createClient({
   baseUrl: 'https://custom-api.example.com',
   auth: {
     mode: 'headless', // 'managed' | 'headless'
-    authUrl: 'https://custom-auth.example.com', // Custom auth domain
-    coreUrl: 'https://custom-core.example.com', // Custom API domain
+    authUrl: 'https://your-auth-service.com', // Custom auth domain (for all auth endpoints)
+    coreUrl: 'https://custom-core.example.com', // Custom API domain (for db, ai, storage)
     // Providers controlled via project settings
     redirectUrl: 'https://myapp.com/dashboard',
     roles: {
@@ -1777,146 +1800,126 @@ function MyRealtimeComponent() {
 
 ### React
 
-#### Authentication Integration
+#### 🔑 Complete Examples by Mode
 
-**Complete authentication example with custom UI:**
+**🎯 Managed Mode Example:**
 
 ```typescript
 import { createClient } from '@blinkdotnew/sdk'
-import { useState, useEffect } from 'react'
 
-// ✅ RECOMMENDED: Don't force immediate auth - let users browse first
 const blink = createClient({
   projectId: 'your-project',
-  authRequired: false, // Let users browse public areas
-  auth: {
-    mode: 'headless' // Use headless for custom UI
-    // Providers controlled via project settings
-  }
+  auth: { mode: 'managed' }
 })
 
 function App() {
   const [user, setUser] = useState(null)
-  const [loading, setLoading] = useState(true)
-  const [currentPage, setCurrentPage] = useState('home')
 
-  // ✅ CRITICAL: Always use onAuthStateChanged
   useEffect(() => {
     const unsubscribe = blink.auth.onAuthStateChanged((state) => {
       setUser(state.user)
-      setLoading(state.isLoading)
     })
     return unsubscribe
   }, [])
 
-  // Protected route check - only require auth for dashboard/account areas
-  const requiresAuth = ['dashboard', 'account', 'settings'].includes(currentPage)
-
-  if (loading) return <div>Loading...</div>
-  if (requiresAuth && !user) return <AuthForm />
+  if (!user) {
+    return (
+      <div>
+        <h1>Welcome to My App</h1>
+        <button onClick={() => blink.auth.login()}>
+          Sign In
+        </button>
+      </div>
+    )
+  }
 
-  // Public pages (home, pricing, about) don't require auth
-  if (currentPage === 'home') return <HomePage />
-  if (currentPage === 'pricing') return <PricingPage />
-  
-  // Protected pages require authentication
   return <Dashboard user={user} />
 }
+```
+
+**🎨 Headless Mode Example:**
+
+```typescript
+import { createClient } from '@blinkdotnew/sdk'
+
+const blink = createClient({
+  projectId: 'your-project',
+  auth: { mode: 'headless' }
+})
 
 function AuthForm() {
   const [mode, setMode] = useState('signin') // 'signin' | 'signup' | 'reset'
   const [email, setEmail] = useState('')
   const [password, setPassword] = useState('')
-  const [error, setError] = useState('')
   const [message, setMessage] = useState('')
 
-  const handleEmailAuth = async (e) => {
-    e.preventDefault()
-    setError('')
-    
+  const handleEmailAuth = async () => {
     try {
-      if (mode === 'signup') {
-        const user = await blink.auth.signUp({ email, password })
-        setMessage('Account created! Please check your email to verify.')
-        await blink.auth.sendEmailVerification()
-      } else if (mode === 'signin') {
+      if (mode === 'signin') {
         await blink.auth.signInWithEmail(email, password)
-        // User state updates automatically via onAuthStateChanged
+      } else if (mode === 'signup') {
+        await blink.auth.signUp({ email, password })
+        setMessage('Account created! Check your email to verify.')
       } else if (mode === 'reset') {
-        await blink.auth.sendPasswordResetEmail(email)
-        setMessage('Password reset email sent!')
-      }
-    } catch (err) {
-      if (err.code === 'EMAIL_NOT_VERIFIED') {
-        setError('Please verify your email first')
-        await blink.auth.sendEmailVerification()
-      } else {
-        setError(err.message)
+        await blink.auth.sendPasswordResetEmail(email, {
+          redirectUrl: 'https://myapp.com/reset-password' // Your custom reset page
+        })
+        setMessage('Password reset email sent! Check your inbox.')
       }
+    } catch (error) {
+      console.error('Auth failed:', error.message)
     }
   }
 
-  const handleSocialAuth = async (provider) => {
+  const handleSocialAuth = async () => {
     try {
-      await blink.auth.signInWithProvider(provider)
-    } catch (err) {
-      setError(err.message)
+      await blink.auth.signInWithGoogle()
+    } catch (error) {
+      console.error('Social auth failed:', error.message)
     }
   }
 
   return (
-    <div style={{ maxWidth: '400px', margin: '0 auto', padding: '2rem' }}>
-      <h1>{mode === 'signin' ? 'Sign In' : mode === 'signup' ? 'Sign Up' : 'Reset Password'}</h1>
-      
-      {error && <div style={{ color: 'red', marginBottom: '1rem' }}>{error}</div>}
-      {message && <div style={{ color: 'green', marginBottom: '1rem' }}>{message}</div>}
+    <div>
+      {message && <p style={{ color: 'green' }}>{message}</p>}
       
-      <form onSubmit={handleEmailAuth} style={{ marginBottom: '1rem' }}>
-        <input
-          type="email"
-          placeholder="Email"
+      <form onSubmit={handleEmailAuth}>
+        <input 
+          type="email" 
           value={email}
           onChange={(e) => setEmail(e.target.value)}
-          style={{ width: '100%', padding: '0.5rem', marginBottom: '0.5rem' }}
+          placeholder="Email" 
         />
         
         {mode !== 'reset' && (
-          <input
-            type="password"
-            placeholder="Password"
+          <input 
+            type="password" 
             value={password}
             onChange={(e) => setPassword(e.target.value)}
-            style={{ width: '100%', padding: '0.5rem', marginBottom: '1rem' }}
+            placeholder="Password" 
           />
         )}
         
-        <button type="submit" style={{ width: '100%', padding: '0.75rem', marginBottom: '1rem' }}>
-          {mode === 'signin' ? 'Sign In' : mode === 'signup' ? 'Create Account' : 'Send Reset Email'}
+        <button type="submit">
+          {mode === 'signin' ? 'Sign In' : mode === 'signup' ? 'Sign Up' : 'Send Reset Email'}
         </button>
       </form>
 
       {mode !== 'reset' && (
-        <div style={{ display: 'flex', gap: '0.5rem', marginBottom: '1rem' }}>
-          <button onClick={() => handleSocialAuth('google')} style={{ flex: 1, padding: '0.5rem' }}>
-            Google
-          </button>
-          <button onClick={() => handleSocialAuth('github')} style={{ flex: 1, padding: '0.5rem' }}>
-            GitHub
-          </button>
-        </div>
+        <button type="button" onClick={handleSocialAuth}>
+          Continue with Google
+        </button>
       )}
 
-      <div style={{ textAlign: 'center', fontSize: '0.875rem' }}>
+      <div>
         {mode === 'signin' && (
           <>
-            <button onClick={() => setMode('signup')} style={{ marginRight: '1rem' }}>
-              Create Account
-            </button>
+            <button onClick={() => setMode('signup')}>Create Account</button>
             <button onClick={() => setMode('reset')}>Forgot Password?</button>
           </>
         )}
         {mode === 'signup' && (
-          <button onClick={() => setMode('signin')}>Already have an account?</button>
+          <button onClick={() => setMode('signin')}>Back to Sign In</button>
         )}
         {mode === 'reset' && (
           <button onClick={() => setMode('signin')}>Back to Sign In</button>
@@ -1927,6 +1930,55 @@ function AuthForm() {
 }
 ```
 
+#### 🔄 Custom Reset Page Handling
+
+**When users click the reset link, handle it in your app:**
+
+```typescript
+// /reset-password page component
+function ResetPasswordPage() {
+  const [token, setToken] = useState('')
+  const [projectId, setProjectId] = useState('')
+  const [newPassword, setNewPassword] = useState('')
+  const [message, setMessage] = useState('')
+
+  useEffect(() => {
+    // Extract token and projectId from URL params
+    const params = new URLSearchParams(window.location.search)
+    setToken(params.get('token') || '')
+    setProjectId(params.get('projectId') || '')
+  }, [])
+
+  const handleReset = async (e) => {
+    e.preventDefault()
+    
+    try {
+      await blink.auth.confirmPasswordReset(token, newPassword)
+      setMessage('Password reset successfully! You can now sign in.')
+    } catch (error) {
+      console.error('Reset failed:', error.message)
+    }
+  }
+
+  if (!token) return <div>Invalid reset link</div>
+
+  return (
+    <form onSubmit={handleReset}>
+      <h1>Set New Password</h1>
+      <input
+        type="password"
+        value={newPassword}
+        onChange={(e) => setNewPassword(e.target.value)}
+        placeholder="Enter new password"
+        minLength={8}
+      />
+      <button type="submit">Reset Password</button>
+      {message && <p style={{ color: 'green' }}>{message}</p>}
+    </form>
+  )
+}
+```
+
 #### Custom Email Branding Example
 
 **Send password reset with your own email service:**

package/dist/index.d.mts

@@ -914,7 +914,9 @@ declare class BlinkAuth {
     /**
      * Send password reset email (using Blink default email service)
      */
-    sendPasswordResetEmail(email: string): Promise<void>;
+    sendPasswordResetEmail(email: string, options?: {
+        redirectUrl?: string;
+    }): Promise<void>;
     /**
      * Confirm password reset with token
      */

package/dist/index.d.ts

@@ -914,7 +914,9 @@ declare class BlinkAuth {
     /**
      * Send password reset email (using Blink default email service)
      */
-    sendPasswordResetEmail(email: string): Promise<void>;
+    sendPasswordResetEmail(email: string, options?: {
+        redirectUrl?: string;
+    }): Promise<void>;
     /**
      * Confirm password reset with token
      */

package/dist/index.js

@@ -925,8 +925,8 @@ var BlinkAuth = class {
     };
     this.authUrl = this.authConfig.authUrl || "https://blink.new";
     this.coreUrl = this.authConfig.coreUrl || "https://core.blink.new";
-    if (typeof window !== "undefined" && this.coreUrl === "https://core.blink.new" && (window.location.hostname === "localhost" || window.location.hostname === "127.0.0.1")) {
-      console.warn("\u26A0\uFE0F Using default coreUrl in development. Set auth.coreUrl to your app origin for headless auth endpoints to work.");
+    if (typeof window !== "undefined" && this.authUrl === "https://blink.new" && (window.location.hostname === "localhost" || window.location.hostname === "127.0.0.1")) {
+      console.warn("\u26A0\uFE0F Using default authUrl in development. Set auth.authUrl to your app origin for headless auth endpoints to work.");
     }
     if (config.authRequired !== void 0 && !config.auth?.mode) {
       this.authConfig.mode = config.authRequired ? "managed" : "headless";
@@ -1258,7 +1258,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("INVALID_CREDENTIALS" /* INVALID_CREDENTIALS */, "signUp is only available in headless mode");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signup`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signup`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1297,7 +1297,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("INVALID_CREDENTIALS" /* INVALID_CREDENTIALS */, "signInWithEmail is only available in headless mode");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/email`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/email`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1466,7 +1466,7 @@ var BlinkAuth = class {
    */
   async generatePasswordResetToken(email) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/reset/generate`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/reset/generate`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1501,16 +1501,17 @@ var BlinkAuth = class {
   /**
    * Send password reset email (using Blink default email service)
    */
-  async sendPasswordResetEmail(email) {
+  async sendPasswordResetEmail(email, options) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/reset`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/reset`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
         },
         body: JSON.stringify({
           email,
-          projectId: this.config.projectId
+          projectId: this.config.projectId,
+          redirectUrl: options?.redirectUrl
         })
       });
       if (!response.ok) {
@@ -1530,7 +1531,7 @@ var BlinkAuth = class {
    */
   async confirmPasswordReset(token, newPassword) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/reset/confirm`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/reset/confirm`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1562,7 +1563,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("TOKEN_EXPIRED" /* TOKEN_EXPIRED */, "No access token available");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/change`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/change`, {
         method: "POST",
         headers: {
           "Authorization": `Bearer ${token}`,
@@ -1594,7 +1595,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("TOKEN_EXPIRED" /* TOKEN_EXPIRED */, "No access token available");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/email/verify/generate`, {
+      const response = await fetch(`${this.authUrl}/api/auth/email/verify/generate`, {
         method: "POST",
         headers: {
           "Authorization": `Bearer ${token}`,
@@ -1632,7 +1633,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("TOKEN_EXPIRED" /* TOKEN_EXPIRED */, "No access token available");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/email/verify/send`, {
+      const response = await fetch(`${this.authUrl}/api/auth/email/verify/send`, {
         method: "POST",
         headers: {
           "Authorization": `Bearer ${token}`,
@@ -1656,7 +1657,7 @@ var BlinkAuth = class {
    */
   async verifyEmail(token) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/email/verify`, {
+      const response = await fetch(`${this.authUrl}/api/auth/email/verify`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1683,7 +1684,7 @@ var BlinkAuth = class {
    */
   async generateMagicLinkToken(email, options) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/magic/generate`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/magic/generate`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1721,7 +1722,7 @@ var BlinkAuth = class {
    */
   async sendMagicLink(email, options) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/magic`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/magic`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1753,7 +1754,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("VERIFICATION_FAILED" /* VERIFICATION_FAILED */, "No magic link token found");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/magic/verify`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/magic/verify`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1789,7 +1790,7 @@ var BlinkAuth = class {
    */
   async getAvailableProviders() {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/providers?projectId=${encodeURIComponent(this.config.projectId)}`);
+      const response = await fetch(`${this.authUrl}/api/auth/providers?projectId=${encodeURIComponent(this.config.projectId)}`);
       if (!response.ok) {
         return ["email", "google"];
       }

package/dist/index.mjs

@@ -923,8 +923,8 @@ var BlinkAuth = class {
     };
     this.authUrl = this.authConfig.authUrl || "https://blink.new";
     this.coreUrl = this.authConfig.coreUrl || "https://core.blink.new";
-    if (typeof window !== "undefined" && this.coreUrl === "https://core.blink.new" && (window.location.hostname === "localhost" || window.location.hostname === "127.0.0.1")) {
-      console.warn("\u26A0\uFE0F Using default coreUrl in development. Set auth.coreUrl to your app origin for headless auth endpoints to work.");
+    if (typeof window !== "undefined" && this.authUrl === "https://blink.new" && (window.location.hostname === "localhost" || window.location.hostname === "127.0.0.1")) {
+      console.warn("\u26A0\uFE0F Using default authUrl in development. Set auth.authUrl to your app origin for headless auth endpoints to work.");
     }
     if (config.authRequired !== void 0 && !config.auth?.mode) {
       this.authConfig.mode = config.authRequired ? "managed" : "headless";
@@ -1256,7 +1256,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("INVALID_CREDENTIALS" /* INVALID_CREDENTIALS */, "signUp is only available in headless mode");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signup`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signup`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1295,7 +1295,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("INVALID_CREDENTIALS" /* INVALID_CREDENTIALS */, "signInWithEmail is only available in headless mode");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/email`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/email`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1464,7 +1464,7 @@ var BlinkAuth = class {
    */
   async generatePasswordResetToken(email) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/reset/generate`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/reset/generate`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1499,16 +1499,17 @@ var BlinkAuth = class {
   /**
    * Send password reset email (using Blink default email service)
    */
-  async sendPasswordResetEmail(email) {
+  async sendPasswordResetEmail(email, options) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/reset`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/reset`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
         },
         body: JSON.stringify({
           email,
-          projectId: this.config.projectId
+          projectId: this.config.projectId,
+          redirectUrl: options?.redirectUrl
         })
       });
       if (!response.ok) {
@@ -1528,7 +1529,7 @@ var BlinkAuth = class {
    */
   async confirmPasswordReset(token, newPassword) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/reset/confirm`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/reset/confirm`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1560,7 +1561,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("TOKEN_EXPIRED" /* TOKEN_EXPIRED */, "No access token available");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/password/change`, {
+      const response = await fetch(`${this.authUrl}/api/auth/password/change`, {
         method: "POST",
         headers: {
           "Authorization": `Bearer ${token}`,
@@ -1592,7 +1593,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("TOKEN_EXPIRED" /* TOKEN_EXPIRED */, "No access token available");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/email/verify/generate`, {
+      const response = await fetch(`${this.authUrl}/api/auth/email/verify/generate`, {
         method: "POST",
         headers: {
           "Authorization": `Bearer ${token}`,
@@ -1630,7 +1631,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("TOKEN_EXPIRED" /* TOKEN_EXPIRED */, "No access token available");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/email/verify/send`, {
+      const response = await fetch(`${this.authUrl}/api/auth/email/verify/send`, {
         method: "POST",
         headers: {
           "Authorization": `Bearer ${token}`,
@@ -1654,7 +1655,7 @@ var BlinkAuth = class {
    */
   async verifyEmail(token) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/email/verify`, {
+      const response = await fetch(`${this.authUrl}/api/auth/email/verify`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1681,7 +1682,7 @@ var BlinkAuth = class {
    */
   async generateMagicLinkToken(email, options) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/magic/generate`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/magic/generate`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1719,7 +1720,7 @@ var BlinkAuth = class {
    */
   async sendMagicLink(email, options) {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/magic`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/magic`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1751,7 +1752,7 @@ var BlinkAuth = class {
       throw new BlinkAuthError("VERIFICATION_FAILED" /* VERIFICATION_FAILED */, "No magic link token found");
     }
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/signin/magic/verify`, {
+      const response = await fetch(`${this.authUrl}/api/auth/signin/magic/verify`, {
         method: "POST",
         headers: {
           "Content-Type": "application/json"
@@ -1787,7 +1788,7 @@ var BlinkAuth = class {
    */
   async getAvailableProviders() {
     try {
-      const response = await fetch(`${this.coreUrl}/api/auth/providers?projectId=${encodeURIComponent(this.config.projectId)}`);
+      const response = await fetch(`${this.authUrl}/api/auth/providers?projectId=${encodeURIComponent(this.config.projectId)}`);
       if (!response.ok) {
         return ["email", "google"];
       }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@blinkdotnew/sdk",
-  "version": "0.18.1",
+  "version": "0.18.3",
   "description": "Blink TypeScript SDK for client-side applications - Zero-boilerplate CRUD + auth + AI + analytics + notifications for modern SaaS/AI apps",
   "keywords": [
     "blink",
@@ -50,7 +50,7 @@
   },
   "dependencies": {},
   "devDependencies": {
-    "@blink/core": "0.4.0",
+    "@blink/core": "0.4.1",
     "tsup": "^8.0.0",
     "typescript": "^5.0.0"
   },