@carlonicora/nextjs-jsonapi 1.40.1 → 1.41.0

package/dist/{chunk-GVN7XC3U.mjs → chunk-PHNL4QUF.mjs}

@@ -14,7 +14,7 @@ import {
   setBootstrapper,
   translateResponse,
   tryBootstrap
-} from "./chunk-U4MTVHOC.mjs";
+} from "./chunk-GCQUTWZ2.mjs";
 import {
   __name
 } from "./chunk-PAWJFY3S.mjs";
@@ -283,7 +283,7 @@ var AbstractService = class {
    * Make an API call with automatic environment detection and error handling.
    */
   static async callApi(params) {
-    const { JsonApiGet: JsonApiGet2, JsonApiPost: JsonApiPost2, JsonApiPut, JsonApiPatch, JsonApiDelete: JsonApiDelete2 } = await import("./JsonApiRequest-K5BRU7RE.mjs");
+    const { JsonApiGet: JsonApiGet2, JsonApiPost: JsonApiPost2, JsonApiPut, JsonApiPatch, JsonApiDelete: JsonApiDelete2 } = await import("./JsonApiRequest-XCQHVVYD.mjs");
     let apiResponse;
     let language = "en";
     if (typeof window === "undefined") {
@@ -310,7 +310,8 @@ var AbstractService = class {
           overridesJsonApiCreation: params.overridesJsonApiCreation,
           language,
           responseType: params.responseType,
-          files: params.files
+          files: params.files,
+          token: params.token
         });
         break;
       case "PUT" /* PUT */:
@@ -372,7 +373,7 @@ var AbstractService = class {
    * Make an API call and return both data and meta from the response.
    */
   static async callApiWithMeta(params) {
-    const { JsonApiGet: JsonApiGet2, JsonApiPost: JsonApiPost2, JsonApiPut, JsonApiPatch, JsonApiDelete: JsonApiDelete2 } = await import("./JsonApiRequest-K5BRU7RE.mjs");
+    const { JsonApiGet: JsonApiGet2, JsonApiPost: JsonApiPost2, JsonApiPut, JsonApiPatch, JsonApiDelete: JsonApiDelete2 } = await import("./JsonApiRequest-XCQHVVYD.mjs");
     let apiResponse;
     let language = "en";
     if (typeof window === "undefined") {
@@ -457,7 +458,7 @@ var AbstractService = class {
    * Get raw JSON:API response data without deserialization.
    */
   static async getRawData(params) {
-    const { JsonApiGet: JsonApiGet2 } = await import("./JsonApiRequest-K5BRU7RE.mjs");
+    const { JsonApiGet: JsonApiGet2 } = await import("./JsonApiRequest-XCQHVVYD.mjs");
     let language = "en";
     if (typeof window === "undefined") {
       const { getLocale } = await import("next-intl/server");
@@ -2236,6 +2237,456 @@ function getValueFromPath(obj, path, userId) {
 }
 __name(getValueFromPath, "getValueFromPath");
 
+// src/features/auth/data/totp-authenticator.ts
+var TotpAuthenticator = class extends AbstractApiData {
+  static {
+    __name(this, "TotpAuthenticator");
+  }
+  _name = "";
+  _verified = false;
+  _lastUsedAt;
+  get name() {
+    return this._name;
+  }
+  get verified() {
+    return this._verified;
+  }
+  get lastUsedAt() {
+    return this._lastUsedAt;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._name = data.jsonApi.attributes.name ?? "";
+    this._verified = data.jsonApi.attributes.verified ?? false;
+    this._lastUsedAt = data.jsonApi.attributes.lastUsedAt ? new Date(data.jsonApi.attributes.lastUsedAt) : void 0;
+    return this;
+  }
+};
+
+// src/features/auth/totp-authenticator.module.ts
+var TotpAuthenticatorModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "totp-authenticators",
+  pageUrl: "/totp-authenticators",
+  model: TotpAuthenticator
+}), "TotpAuthenticatorModule");
+
+// src/features/auth/data/totp-setup.ts
+var TotpSetup = class extends AbstractApiData {
+  static {
+    __name(this, "TotpSetup");
+  }
+  _qrCodeUri = "";
+  _secret = "";
+  _authenticatorId = "";
+  get qrCodeUri() {
+    return this._qrCodeUri;
+  }
+  get secret() {
+    return this._secret;
+  }
+  get authenticatorId() {
+    return this._authenticatorId;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._qrCodeUri = data.jsonApi.attributes.qrCodeUri ?? "";
+    this._secret = data.jsonApi.attributes.secret ?? "";
+    this._authenticatorId = data.jsonApi.id ?? "";
+    return this;
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "totp-authenticators",
+        id: data.id,
+        attributes: {
+          name: data.name,
+          accountName: data.accountName
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/totp-setup.module.ts
+var TotpSetupModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "totp-setup",
+  pageUrl: "/totp-setup",
+  model: TotpSetup
+}), "TotpSetupModule");
+
+// src/features/auth/data/totp-verify.ts
+var TotpVerify = class extends AbstractApiData {
+  static {
+    __name(this, "TotpVerify");
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "totp-authenticators",
+        id: data.id,
+        attributes: {
+          authenticatorId: data.authenticatorId,
+          code: data.code
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/totp-verify.module.ts
+var TotpVerifyModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "totp-verify",
+  pageUrl: "/totp-verify",
+  model: TotpVerify
+}), "TotpVerifyModule");
+
+// src/features/auth/data/totp-verify-login.ts
+var TotpVerifyLogin = class extends AbstractApiData {
+  static {
+    __name(this, "TotpVerifyLogin");
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "totp-authenticators",
+        id: data.id,
+        attributes: {
+          code: data.code
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/totp-verify-login.module.ts
+var TotpVerifyLoginModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "totp-verify-login",
+  pageUrl: "/totp-verify-login",
+  model: TotpVerifyLogin
+}), "TotpVerifyLoginModule");
+
+// src/features/auth/data/passkey.ts
+var Passkey = class extends AbstractApiData {
+  static {
+    __name(this, "Passkey");
+  }
+  _name = "";
+  _credentialId = "";
+  _deviceType = "";
+  _backedUp = false;
+  _lastUsedAt;
+  get name() {
+    return this._name;
+  }
+  get credentialId() {
+    return this._credentialId;
+  }
+  get deviceType() {
+    return this._deviceType;
+  }
+  get backedUp() {
+    return this._backedUp;
+  }
+  get lastUsedAt() {
+    return this._lastUsedAt;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._name = data.jsonApi.attributes.name ?? "";
+    this._credentialId = data.jsonApi.attributes.credentialId ?? "";
+    this._deviceType = data.jsonApi.attributes.deviceType ?? "";
+    this._backedUp = data.jsonApi.attributes.backedUp ?? false;
+    this._lastUsedAt = data.jsonApi.attributes.lastUsedAt ? new Date(data.jsonApi.attributes.lastUsedAt) : void 0;
+    return this;
+  }
+};
+
+// src/features/auth/passkey.module.ts
+var PasskeyModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "passkeys",
+  pageUrl: "/passkeys",
+  model: Passkey
+}), "PasskeyModule");
+
+// src/features/auth/data/passkey-registration-options.ts
+var PasskeyRegistrationOptions = class extends AbstractApiData {
+  static {
+    __name(this, "PasskeyRegistrationOptions");
+  }
+  _pendingId = "";
+  _options = {};
+  get pendingId() {
+    return this._pendingId;
+  }
+  get options() {
+    return this._options;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._pendingId = data.jsonApi.attributes.pendingId ?? this.id;
+    this._options = data.jsonApi.attributes.options ?? {};
+    return this;
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "passkeys",
+        id: data.id,
+        attributes: {
+          userName: data.userName,
+          userDisplayName: data.userDisplayName
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/passkey-registration-options.module.ts
+var PasskeyRegistrationOptionsModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "passkey-registration-options",
+  pageUrl: "/passkeys",
+  model: PasskeyRegistrationOptions
+}), "PasskeyRegistrationOptionsModule");
+
+// src/features/auth/data/passkey-registration-verify.ts
+var PasskeyRegistrationVerify = class extends AbstractApiData {
+  static {
+    __name(this, "PasskeyRegistrationVerify");
+  }
+  _name = "";
+  _credentialId = "";
+  _deviceType = "";
+  _backedUp = false;
+  _lastUsedAt;
+  get name() {
+    return this._name;
+  }
+  get credentialId() {
+    return this._credentialId;
+  }
+  get deviceType() {
+    return this._deviceType;
+  }
+  get backedUp() {
+    return this._backedUp;
+  }
+  get lastUsedAt() {
+    return this._lastUsedAt;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._name = data.jsonApi.attributes.name ?? "";
+    this._credentialId = data.jsonApi.attributes.credentialId ?? "";
+    this._deviceType = data.jsonApi.attributes.deviceType ?? "";
+    this._backedUp = data.jsonApi.attributes.backedUp ?? false;
+    this._lastUsedAt = data.jsonApi.attributes.lastUsedAt ? new Date(data.jsonApi.attributes.lastUsedAt) : void 0;
+    return this;
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "passkeys",
+        id: data.id,
+        attributes: {
+          pendingId: data.pendingId,
+          name: data.name,
+          response: data.response
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/passkey-registration-verify.module.ts
+var PasskeyRegistrationVerifyModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "passkey-registration-verify",
+  pageUrl: "/passkeys",
+  model: PasskeyRegistrationVerify
+}), "PasskeyRegistrationVerifyModule");
+
+// src/features/auth/data/passkey-rename.ts
+var PasskeyRename = class extends AbstractApiData {
+  static {
+    __name(this, "PasskeyRename");
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "passkeys",
+        id: data.id,
+        attributes: {
+          name: data.name
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/passkey-rename.module.ts
+var PasskeyRenameModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "passkey-rename",
+  pageUrl: "/passkeys-rename",
+  model: PasskeyRename
+}), "PasskeyRenameModule");
+
+// src/features/auth/data/passkey-verify-login.ts
+var PasskeyVerifyLogin = class extends AbstractApiData {
+  static {
+    __name(this, "PasskeyVerifyLogin");
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "passkeys",
+        id: data.id,
+        attributes: {
+          pendingId: data.pendingId,
+          response: data.response
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/passkey-verify-login.module.ts
+var PasskeyVerifyLoginModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "passkey-verify-login",
+  pageUrl: "/passkeys",
+  model: PasskeyVerifyLogin
+}), "PasskeyVerifyLoginModule");
+
+// src/features/auth/data/passkey-authentication-options.ts
+var PasskeyAuthenticationOptions = class extends AbstractApiData {
+  static {
+    __name(this, "PasskeyAuthenticationOptions");
+  }
+  _pendingId = "";
+  _options = {};
+  get pendingId() {
+    return this._pendingId;
+  }
+  get options() {
+    return this._options;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._pendingId = data.jsonApi.attributes.pendingId ?? this.id ?? "";
+    this._options = data.jsonApi.attributes.options ?? {};
+    return this;
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "passkey-authentication-options",
+        id: data.id,
+        attributes: {}
+      }
+    };
+  }
+};
+
+// src/features/auth/passkey-authentication-options.module.ts
+var PasskeyAuthenticationOptionsModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "passkey-authentication-options",
+  pageUrl: "/passkeys",
+  model: PasskeyAuthenticationOptions
+}), "PasskeyAuthenticationOptionsModule");
+
+// src/features/auth/data/two-factor-enable.ts
+var TwoFactorEnable = class extends AbstractApiData {
+  static {
+    __name(this, "TwoFactorEnable");
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "two-factor-configs",
+        id: data.id,
+        attributes: {
+          preferredMethod: data.preferredMethod
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/two-factor-enable.module.ts
+var TwoFactorEnableModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "two-factor-enable",
+  pageUrl: "/two-factor-enable",
+  model: TwoFactorEnable
+}), "TwoFactorEnableModule");
+
+// src/features/auth/data/two-factor-challenge.ts
+var TwoFactorChallenge = class extends AbstractApiData {
+  static {
+    __name(this, "TwoFactorChallenge");
+  }
+  _pendingToken = "";
+  _availableMethods = [];
+  _expiresAt = /* @__PURE__ */ new Date();
+  get pendingToken() {
+    return this._pendingToken;
+  }
+  get availableMethods() {
+    return this._availableMethods;
+  }
+  get expiresAt() {
+    return this._expiresAt;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._pendingToken = data.jsonApi.attributes.pendingToken ?? "";
+    this._availableMethods = data.jsonApi.attributes.availableMethods ?? [];
+    this._expiresAt = data.jsonApi.attributes.expiresAt ? new Date(data.jsonApi.attributes.expiresAt) : /* @__PURE__ */ new Date();
+    return this;
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "two-factor-configs",
+        id: data.id,
+        attributes: {
+          method: data.method
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/two-factor-challenge.module.ts
+var TwoFactorChallengeModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "two-factor-challenge",
+  pageUrl: "/two-factor-challenge",
+  model: TwoFactorChallenge
+}), "TwoFactorChallengeModule");
+
+// src/features/auth/data/backup-code-verify.ts
+var BackupCodeVerify = class extends AbstractApiData {
+  static {
+    __name(this, "BackupCodeVerify");
+  }
+  createJsonApi(data) {
+    return {
+      data: {
+        type: "backup-codes",
+        id: data.id,
+        attributes: {
+          code: data.code
+        }
+      }
+    };
+  }
+};
+
+// src/features/auth/backup-code-verify.module.ts
+var BackupCodeVerifyModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "backup-codes",
+  pageUrl: "/backup-codes",
+  model: BackupCodeVerify
+}), "BackupCodeVerifyModule");
+
 // src/features/auth/config.ts
 var _tokenHandler = null;
 function configureAuth(handler) {
@@ -2308,6 +2759,13 @@ var AuthService = class extends AbstractService {
       language
     });
     if (!apiResponse.ok) throw new Error(apiResponse.error);
+    if (apiResponse.raw?.data?.type === "two-factor-challenge") {
+      const challenge = rehydrate(Modules.TwoFactorChallenge, {
+        jsonApi: apiResponse.raw.data,
+        included: apiResponse.raw.included ?? []
+      });
+      return challenge;
+    }
     const auth = apiResponse.data;
     const handler = getTokenHandler();
     if (handler) {
@@ -2425,6 +2883,324 @@ var AuthService = class extends AbstractService {
   }
 };
 
+// src/features/auth/data/two-factor-status.ts
+var TwoFactorStatus = class extends AbstractApiData {
+  static {
+    __name(this, "TwoFactorStatus");
+  }
+  _isEnabled = false;
+  _preferredMethod;
+  _totpAuthenticators = [];
+  _passkeys = [];
+  _backupCodesCount = 0;
+  get isEnabled() {
+    return this._isEnabled;
+  }
+  get preferredMethod() {
+    return this._preferredMethod;
+  }
+  get totpAuthenticators() {
+    return this._totpAuthenticators;
+  }
+  get passkeys() {
+    return this._passkeys;
+  }
+  get backupCodesCount() {
+    return this._backupCodesCount;
+  }
+  rehydrate(data) {
+    super.rehydrate(data);
+    this._isEnabled = data.jsonApi.attributes.isEnabled ?? false;
+    this._preferredMethod = data.jsonApi.attributes.preferredMethod;
+    this._backupCodesCount = data.jsonApi.attributes.backupCodesCount ?? 0;
+    return this;
+  }
+};
+
+// src/features/auth/data/two-factor.service.ts
+var TwoFactorService = class extends AbstractService {
+  static {
+    __name(this, "TwoFactorService");
+  }
+  // ============================================================
+  // Status
+  // ============================================================
+  static async getStatus() {
+    return this.callApi({
+      type: Modules.TwoFactorStatus,
+      method: "GET" /* GET */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "status"
+      }).generate()
+    });
+  }
+  static async enable(params) {
+    await this.callApi({
+      type: Modules.TwoFactorEnable,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "enable"
+      }).generate(),
+      input: params
+    });
+  }
+  static async disable(params) {
+    await this.callApi({
+      type: Modules.Auth,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "disable"
+      }).generate(),
+      input: { code: params.code }
+    });
+  }
+  // ============================================================
+  // TOTP
+  // ============================================================
+  static async setupTotp(params) {
+    return this.callApi({
+      type: Modules.TotpSetup,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "totp",
+        childEndpoint: "setup"
+      }).generate(),
+      input: params
+    });
+  }
+  static async verifyTotpSetup(params) {
+    await this.callApi({
+      type: Modules.TotpVerify,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "totp",
+        childEndpoint: "verify-setup"
+      }).generate(),
+      input: params
+    });
+  }
+  static async listTotpAuthenticators() {
+    return this.callApi({
+      type: Modules.TotpAuthenticator,
+      method: "GET" /* GET */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "totp",
+        childEndpoint: "authenticators"
+      }).generate()
+    });
+  }
+  static async deleteTotpAuthenticator(params) {
+    await this.callApi({
+      type: Modules.Auth,
+      method: "DELETE" /* DELETE */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "totp",
+        childEndpoint: "authenticators",
+        childId: params.id
+      }).generate()
+    });
+  }
+  // ============================================================
+  // Passkeys
+  // ============================================================
+  static async getPasskeyRegistrationOptions(params) {
+    return this.callApi({
+      type: Modules.PasskeyRegistrationOptions,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "passkey",
+        childEndpoint: "register",
+        childId: "options"
+      }).generate(),
+      input: params
+    });
+  }
+  static async verifyPasskeyRegistration(params) {
+    return this.callApi({
+      type: Modules.PasskeyRegistrationVerify,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "passkey",
+        childEndpoint: "register",
+        childId: "verify"
+      }).generate(),
+      input: params
+    });
+  }
+  static async listPasskeys() {
+    return this.callApi({
+      type: Modules.Passkey,
+      method: "GET" /* GET */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "passkeys"
+      }).generate()
+    });
+  }
+  static async deletePasskey(params) {
+    await this.callApi({
+      type: Modules.Auth,
+      method: "DELETE" /* DELETE */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "passkeys",
+        childEndpoint: params.id
+      }).generate()
+    });
+  }
+  static async renamePasskey(params) {
+    return this.callApi({
+      type: Modules.PasskeyRename,
+      method: "PATCH" /* PATCH */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "passkeys",
+        childEndpoint: params.id
+      }).generate(),
+      input: { id: params.id, name: params.name }
+    });
+  }
+  // ============================================================
+  // Backup Codes
+  // ============================================================
+  static async generateBackupCodes() {
+    const response = await this.callApi({
+      type: Modules.Auth,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "backup-codes",
+        childEndpoint: "generate"
+      }).generate()
+    });
+    return response.codes;
+  }
+  static async getBackupCodesCount() {
+    const response = await this.callApi({
+      type: Modules.Auth,
+      method: "GET" /* GET */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "backup-codes",
+        childEndpoint: "count"
+      }).generate()
+    });
+    return response.count;
+  }
+  // ============================================================
+  // Login 2FA Verification
+  // ============================================================
+  static async handleSuccessfulAuth(auth) {
+    const handler = getTokenHandler();
+    if (handler) {
+      await handler.updateToken({
+        token: auth.token,
+        refreshToken: auth.refreshToken,
+        userId: auth.user.id,
+        companyId: auth.user.company?.id,
+        roles: auth.user.roles.map((role) => role.id),
+        features: auth.user.company?.features?.map((feature) => feature.id) ?? [],
+        modules: auth.user.modules.map((module) => ({
+          id: module.id,
+          permissions: module.permissions
+        }))
+      });
+    }
+    return auth;
+  }
+  static async getChallenge(params) {
+    return this.callApi({
+      type: Modules.TwoFactorChallenge,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "challenge"
+      }).generate(),
+      input: { id: params.id, method: params.method }
+    });
+  }
+  static async verifyTotp(params) {
+    const auth = await this.callApi({
+      type: Modules.TotpVerifyLogin,
+      // Request: { type: "totp-authenticators", attributes: { code } }
+      responseType: Modules.Auth,
+      // Response: Auth with user relationship
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "verify",
+        childId: "totp"
+      }).generate(),
+      input: { id: params.id, code: params.code },
+      token: params.pendingToken
+    });
+    return this.handleSuccessfulAuth(auth);
+  }
+  static async getPasskeyAuthOptions(params) {
+    return this.callApi({
+      type: Modules.PasskeyAuthenticationOptions,
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "verify/passkey",
+        childId: "options"
+      }).generate(),
+      token: params.pendingToken
+    });
+  }
+  static async verifyPasskey(params) {
+    const auth = await this.callApi({
+      type: Modules.PasskeyVerifyLogin,
+      // Request: passkey verification format
+      responseType: Modules.Auth,
+      // Response: Auth with user relationship
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "verify",
+        childId: "passkey"
+      }).generate(),
+      input: { id: params.id, pendingId: params.pendingId, response: params.credential },
+      token: params.pendingToken
+    });
+    return this.handleSuccessfulAuth(auth);
+  }
+  static async verifyBackupCode(params) {
+    const auth = await this.callApi({
+      type: Modules.BackupCodeVerify,
+      // Request: backup code verification format
+      responseType: Modules.Auth,
+      // Response: Auth with user relationship
+      method: "POST" /* POST */,
+      endpoint: new EndpointCreator({
+        endpoint: Modules.Auth,
+        id: "two-factor",
+        childEndpoint: "verify",
+        childId: "backup"
+      }).generate(),
+      input: { id: params.id, code: params.code },
+      token: params.pendingToken
+    });
+    return this.handleSuccessfulAuth(auth);
+  }
+};
+
 // src/features/auth/enums/AuthComponent.ts
 var AuthComponent = /* @__PURE__ */ ((AuthComponent2) => {
   AuthComponent2[AuthComponent2["Login"] = 0] = "Login";
@@ -2434,6 +3210,7 @@ var AuthComponent = /* @__PURE__ */ ((AuthComponent2) => {
   AuthComponent2[AuthComponent2["AcceptInvitation"] = 4] = "AcceptInvitation";
   AuthComponent2[AuthComponent2["Register"] = 5] = "Register";
   AuthComponent2[AuthComponent2["Landing"] = 6] = "Landing";
+  AuthComponent2["TwoFactorChallenge"] = "2fa_challenge";
   return AuthComponent2;
 })(AuthComponent || {});
 
@@ -2444,6 +3221,13 @@ var AuthModule = /* @__PURE__ */ __name((factory) => factory({
   model: Auth
 }), "AuthModule");
 
+// src/features/auth/two-factor-status.module.ts
+var TwoFactorStatusModule = /* @__PURE__ */ __name((factory) => factory({
+  name: "two-factor-status",
+  pageUrl: "/two-factor-status",
+  model: TwoFactorStatus
+}), "TwoFactorStatusModule");
+
 // src/features/billing/data/billing.service.ts
 var BillingService = class extends AbstractService {
   static {
@@ -2505,6 +3289,7 @@ var Billing = class extends AbstractApiData {
 // src/features/billing/modules/billing.module.ts
 var BillingModule = /* @__PURE__ */ __name((factory) => factory({
   name: "billing",
+  pageUrl: "/billing",
   model: Billing,
   moduleId: "3266b307-5a9a-46f9-b78d-631f672f8735"
 }), "BillingModule");
@@ -2734,6 +3519,7 @@ var StripeCustomerService = class extends AbstractService {
 // src/features/billing/stripe-customer/stripe-customer.module.ts
 var StripeCustomerModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-customers",
+  pageUrl: "/stripe-customers",
   model: StripeCustomer,
   moduleId: "25a80cb3-bf18-47fd-963a-639212519920"
 }), "StripeCustomerModule");
@@ -2741,6 +3527,7 @@ var StripeCustomerModule = /* @__PURE__ */ __name((factory) => factory({
 // src/features/billing/stripe-customer/stripe-payment-method.module.ts
 var StripePaymentMethodModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-payment-methods",
+  pageUrl: "/stripe-payment-methods",
   model: PaymentMethod,
   moduleId: "e8f7d6c5-b4a3-4928-8170-1f2e3d4c5b6a"
 }), "StripePaymentMethodModule");
@@ -2954,6 +3741,7 @@ var StripeInvoiceService = class extends AbstractService {
 // src/features/billing/stripe-invoice/stripe-invoice.module.ts
 var StripeInvoiceModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-invoices",
+  pageUrl: "/stripe-invoices",
   model: StripeInvoice,
   moduleId: "37c73b8b-d3b1-4e5e-8fcb-a66d8ecfc05b"
 }), "StripeInvoiceModule");
@@ -3218,6 +4006,7 @@ var StripePriceService = class extends AbstractService {
 // src/features/billing/stripe-price/stripe-price.module.ts
 var StripePriceModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-prices",
+  pageUrl: "/stripe-prices",
   model: StripePrice,
   moduleId: "a7d3e5f1-8c9b-4a2e-b6d7-3f1c8e9a4b5d"
 }), "StripePriceModule");
@@ -3380,6 +4169,7 @@ var StripeProductService = class extends AbstractService {
 // src/features/billing/stripe-product/stripe-product.module.ts
 var StripeProductModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-products",
+  pageUrl: "/stripe-products",
   model: StripeProduct,
   moduleId: "f8c4a1e9-3b2d-4f7a-9e5c-1d8a6b3c9f2e"
 }), "StripeProductModule");
@@ -3443,8 +4233,6 @@ var StripeSubscription = class extends AbstractApiData {
     return this;
   }
   createJsonApi(data) {
-    console.log("[StripeSubscription.createJsonApi] Input data:", JSON.stringify(data, null, 2));
-    console.log("[StripeSubscription.createJsonApi] promotionCode in input:", data.promotionCode);
     const response = {
       data: {
         type: Modules.StripeSubscription.name,
@@ -3483,7 +4271,6 @@ var StripeSubscription = class extends AbstractApiData {
     if (data.promotionCode) {
       response.data.attributes.promotionCode = data.promotionCode;
     }
-    console.log("[StripeSubscription.createJsonApi] Final response:", JSON.stringify(response, null, 2));
     return response;
   }
 };
@@ -3663,6 +4450,7 @@ var StripeSubscriptionService = class extends AbstractService {
 // src/features/billing/stripe-subscription/stripe-subscription.module.ts
 var StripeSubscriptionModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-subscriptions",
+  pageUrl: "/stripe-subscriptions",
   model: StripeSubscription,
   moduleId: "5e8797ef-650b-4dd5-ac79-a2e530a6c7ba"
 }), "StripeSubscriptionModule");
@@ -3826,6 +4614,7 @@ var StripeUsageService = class extends AbstractService {
 // src/features/billing/stripe-usage/stripe-usage.module.ts
 var StripeUsageModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-usage-records",
+  pageUrl: "/stripe-usage-records",
   model: StripeUsage,
   moduleId: "c2e9f4a6-1d7b-4e3a-8f5c-9b2d6a1e7f3c"
 }), "StripeUsageModule");
@@ -3941,6 +4730,7 @@ var StripePromotionCode = class extends AbstractApiData {
 // src/features/billing/stripe-promotion-code/stripe-promotion-code.module.ts
 var StripePromotionCodeModule = /* @__PURE__ */ __name((factory) => factory({
   name: "stripe-promotion-codes",
+  pageUrl: "/stripe-promotion-codes",
   model: StripePromotionCode,
   moduleId: "b8e4f6a2-9d0c-5b3f-c7e8-4g2d9f0a5c6e"
 }), "StripePromotionCodeModule");
@@ -4780,6 +5570,7 @@ var User = class extends AbstractApiData {
   _rate;
   _isActivated;
   _isDeleted;
+  _twoFactorEnabled = false;
   _lastLogin;
   _relevance;
   _roles = [];
@@ -4821,6 +5612,9 @@ var User = class extends AbstractApiData {
   get isDeleted() {
     return this._isDeleted ?? false;
   }
+  get twoFactorEnabled() {
+    return this._twoFactorEnabled;
+  }
   get lastLogin() {
     return this._lastLogin;
   }
@@ -4845,6 +5639,7 @@ var User = class extends AbstractApiData {
     this._avatarUrl = data.jsonApi.attributes.avatarUrl;
     this._isActivated = data.jsonApi.meta.isActive;
     this._isDeleted = data.jsonApi.meta.isDeleted;
+    this._twoFactorEnabled = data.jsonApi.attributes.twoFactorEnabled ?? false;
     this._lastLogin = data.jsonApi.meta.lastLogin ? new Date(data.jsonApi.meta.lastLogin) : void 0;
     this._relevance = data.jsonApi.meta.relevance;
     this._roles = this._readIncluded(data, "roles", Modules.Role);
@@ -5581,28 +6376,23 @@ var WaitlistService = class extends AbstractService {
    * Validate invite code (public) - calls auth endpoint
    */
   static async validateInvite(code) {
-    console.log("[WaitlistService.validateInvite] Starting validation for code:", code);
     try {
       const endpoint = new EndpointCreator({
         endpoint: Modules.Waitlist,
         childEndpoint: "invite",
         childId: code
       });
-      console.log("[WaitlistService.validateInvite] Calling endpoint:", endpoint.generate());
       const response = await this.callApiWithMeta({
         type: Modules.Auth,
         method: "GET" /* GET */,
         endpoint: endpoint.generate()
       });
-      console.log("[WaitlistService.validateInvite] Response:", JSON.stringify(response));
       const attributes = response.data?._jsonApi?.attributes;
-      console.log("[WaitlistService.validateInvite] Parsed attributes:", JSON.stringify(attributes));
       return {
         email: attributes?.email,
         valid: attributes?.valid ?? false
       };
-    } catch (error) {
-      console.error("[WaitlistService.validateInvite] Error:", error);
+    } catch (_error) {
       return null;
     }
   }
@@ -5658,6 +6448,7 @@ var WaitlistModule = /* @__PURE__ */ __name((factory) => factory({
 // src/features/waitlist/waitlist-stats.module.ts
 var WaitlistStatsModule = /* @__PURE__ */ __name((factory) => factory({
   name: "waitlist-stats",
+  pageUrl: "/waitlist-stats",
   model: WaitlistStats
 }), "WaitlistStatsModule");
 
@@ -5717,12 +6508,41 @@ export {
   checkPermissions,
   checkPermissionsFromServer,
   getValueFromPath,
+  TotpAuthenticator,
+  TotpAuthenticatorModule,
+  TotpSetup,
+  TotpSetupModule,
+  TotpVerify,
+  TotpVerifyModule,
+  TotpVerifyLogin,
+  TotpVerifyLoginModule,
+  Passkey,
+  PasskeyModule,
+  PasskeyRegistrationOptions,
+  PasskeyRegistrationOptionsModule,
+  PasskeyRegistrationVerify,
+  PasskeyRegistrationVerifyModule,
+  PasskeyRename,
+  PasskeyRenameModule,
+  PasskeyVerifyLogin,
+  PasskeyVerifyLoginModule,
+  PasskeyAuthenticationOptions,
+  PasskeyAuthenticationOptionsModule,
+  TwoFactorEnable,
+  TwoFactorEnableModule,
+  TwoFactorChallenge,
+  TwoFactorChallengeModule,
+  BackupCodeVerify,
+  BackupCodeVerifyModule,
   configureAuth,
   getTokenHandler,
   Auth,
   AuthService,
+  TwoFactorStatus,
+  TwoFactorService,
   AuthComponent,
   AuthModule,
+  TwoFactorStatusModule,
   BillingService,
   Billing,
   BillingModule,
@@ -5795,4 +6615,4 @@ export {
   WaitlistModule,
   WaitlistStatsModule
 };
-//# sourceMappingURL=chunk-GVN7XC3U.mjs.map
+//# sourceMappingURL=chunk-PHNL4QUF.mjs.map