@choiceform/shared-auth 0.1.17 → 0.1.18

package/dist/hooks/use-email-verification.js

@@ -0,0 +1,145 @@
+/**
+ * 邮箱验证 Hook
+ *
+ * 职责：
+ * 1. 重新发送验证邮件
+ * 2. 检查邮箱是否已验证
+ * 3. 更换邮箱（登出并跳转）
+ * 4. 倒计时逻辑
+ */
+import { useCallback, useRef, useState } from "react";
+/**
+ * 邮箱验证 Hook
+ *
+ * 使用示例：
+ * ```tsx
+ * function VerifyEmailPage({ email, lang }) {
+ *   const navigate = useNavigate()
+ *
+ *   const {
+ *     isLoading,
+ *     isAlreadyVerified,
+ *     isCountingDown,
+ *     countdown,
+ *     resendVerification,
+ *     changeEmail
+ *   } = useEmailVerification(auth, {
+ *     email,
+ *     lang,
+ *     onRedirect: (path) => navigate(path),
+ *     onSendSuccess: (email) => toast.success(`验证邮件已发送到 ${email}`),
+ *     onSendError: () => toast.error('发送失败'),
+ *     onAlreadyVerified: () => navigate('/community')
+ *   })
+ *
+ *   return (
+ *     <div>
+ *       {isAlreadyVerified ? (
+ *         <p>邮箱已验证，正在跳转...</p>
+ *       ) : (
+ *         <>
+ *           <button onClick={resendVerification} disabled={isLoading || isCountingDown}>
+ *             {isCountingDown ? `${countdown}s 后重试` : '重新发送'}
+ *           </button>
+ *           <button onClick={changeEmail}>使用其他邮箱</button>
+ *         </>
+ *       )}
+ *     </div>
+ *   )
+ * }
+ * ```
+ */
+export function useEmailVerification(auth, config) {
+    const { email, lang = "us", countdownDuration = 60, onRedirect, onSendSuccess, onSendError, onAlreadyVerified, } = config;
+    const [isLoading, setIsLoading] = useState(false);
+    const [isAlreadyVerified, setIsAlreadyVerified] = useState(false);
+    const [countdown, setCountdown] = useState(countdownDuration);
+    const [isCountingDown, setIsCountingDown] = useState(false);
+    const countdownTimerRef = useRef(null);
+    // 开始倒计时
+    const startCountdown = useCallback(() => {
+        setCountdown(countdownDuration);
+        setIsCountingDown(true);
+        if (countdownTimerRef.current) {
+            clearInterval(countdownTimerRef.current);
+        }
+        countdownTimerRef.current = setInterval(() => {
+            setCountdown((prev) => {
+                if (prev <= 1) {
+                    if (countdownTimerRef.current) {
+                        clearInterval(countdownTimerRef.current);
+                        countdownTimerRef.current = null;
+                    }
+                    setIsCountingDown(false);
+                    return countdownDuration;
+                }
+                return prev - 1;
+            });
+        }, 1000);
+    }, [countdownDuration]);
+    // 重新发送验证邮件
+    const resendVerification = useCallback(async () => {
+        if (!email || isCountingDown || isLoading)
+            return;
+        setIsLoading(true);
+        try {
+            // 先获取最新 session 状态，确认邮箱是否已验证
+            const token = auth.tokenStorage.get();
+            if (token) {
+                try {
+                    const session = await auth.authService.fetchAndSetSession(token);
+                    if (session?.emailVerified === true) {
+                        // 邮箱已验证，不需要再发送
+                        setIsAlreadyVerified(true);
+                        onAlreadyVerified?.();
+                        return;
+                    }
+                }
+                catch {
+                    // 获取 session 失败，继续发送验证邮件
+                }
+            }
+            // 发送验证邮件
+            await auth.authApi.resendVerificationEmail(email);
+            onSendSuccess?.(email);
+            startCountdown();
+        }
+        catch (error) {
+            onSendError?.(error instanceof Error ? error : new Error("Failed to send verification email"));
+        }
+        finally {
+            setIsLoading(false);
+        }
+    }, [
+        email,
+        isCountingDown,
+        isLoading,
+        auth,
+        onSendSuccess,
+        onSendError,
+        onAlreadyVerified,
+        startCountdown,
+    ]);
+    // 更换邮箱（登出并跳转）
+    const changeEmail = useCallback(async () => {
+        try {
+            // 完全清除登录状态（包括 Better Auth session）
+            await auth.authClient.signOut().catch(() => { });
+            auth.storeActions.clearAuth();
+            // 跳转到登录页
+            onRedirect?.(`/sign-in?lang=${lang}`);
+        }
+        catch {
+            // 静默失败，仍然执行跳转
+            onRedirect?.(`/sign-in?lang=${lang}`);
+        }
+    }, [auth, lang, onRedirect]);
+    return {
+        isLoading,
+        isAlreadyVerified,
+        isCountingDown,
+        countdown,
+        resendVerification,
+        changeEmail,
+    };
+}

package/dist/hooks/use-protected-route.d.ts

@@ -0,0 +1,67 @@
+/**
+ * 路由保护 Hook
+ *
+ * 职责：
+ * 1. 等待认证初始化完成
+ * 2. 根据认证状态进行路由保护
+ * 3. 强制邮箱验证检查
+ * 4. 支持公开路由例外
+ */
+import type { AuthInstance } from "../core";
+/** 保护状态 */
+export type ProtectionStatus = "loading" | "unauthenticated" | "unverified" | "authorized" | "public";
+/** useProtectedRoute 配置 */
+export interface UseProtectedRouteConfig {
+    /** 语言参数 */
+    lang?: string;
+    /** 重定向函数（由项目提供） */
+    onRedirect?: (path: string) => void;
+    /** 当前路径（如果不传则从 window.location 获取） */
+    pathname?: string;
+    /** 公开路由前缀列表（不需要认证的路径） */
+    publicRoutePrefixes?: string[];
+    /** 是否要求邮箱已验证（默认 true） */
+    requireEmailVerified?: boolean;
+}
+/** useProtectedRoute 返回值 */
+export interface UseProtectedRouteResult {
+    /** 是否正在加载 */
+    isLoading: boolean;
+    /** 重定向路径（如果需要重定向） */
+    redirectPath: string | null;
+    /** 是否应该渲染子组件 */
+    shouldRender: boolean;
+    /** 保护状态 */
+    status: ProtectionStatus;
+}
+/**
+ * 路由保护 Hook
+ *
+ * 使用示例：
+ * ```tsx
+ * function ProtectedRoute({ children }) {
+ *   const navigate = useNavigate()
+ *   const location = useLocation()
+ *
+ *   const { status, shouldRender, isLoading, redirectPath } = useProtectedRoute(auth, {
+ *     pathname: location.pathname,
+ *     publicRoutePrefixes: ['/resources', '/public'],
+ *     onRedirect: (path) => navigate(path, { replace: true })
+ *   })
+ *
+ *   useEffect(() => {
+ *     if (redirectPath) {
+ *       navigate(redirectPath, { replace: true })
+ *     }
+ *   }, [redirectPath, navigate])
+ *
+ *   if (!shouldRender) {
+ *     return <Loading />
+ *   }
+ *
+ *   return <>{children}</>
+ * }
+ * ```
+ */
+export declare function useProtectedRoute(auth: AuthInstance, config?: UseProtectedRouteConfig): UseProtectedRouteResult;
+//# sourceMappingURL=use-protected-route.d.ts.map

package/dist/hooks/use-protected-route.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"use-protected-route.d.ts","sourceRoot":"","sources":["../../src/hooks/use-protected-route.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,SAAS,CAAA;AAE3C,WAAW;AACX,MAAM,MAAM,gBAAgB,GACxB,SAAS,GACT,iBAAiB,GACjB,YAAY,GACZ,YAAY,GACZ,QAAQ,CAAA;AAEZ,2BAA2B;AAC3B,MAAM,WAAW,uBAAuB;IACtC,WAAW;IACX,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,mBAAmB;IACnB,UAAU,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,CAAC;IACpC,sCAAsC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,yBAAyB;IACzB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,yBAAyB;IACzB,oBAAoB,CAAC,EAAE,OAAO,CAAA;CAC/B;AAED,4BAA4B;AAC5B,MAAM,WAAW,uBAAuB;IACtC,aAAa;IACb,SAAS,EAAE,OAAO,CAAC;IACnB,qBAAqB;IACrB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,gBAAgB;IAChB,YAAY,EAAE,OAAO,CAAC;IACtB,WAAW;IACX,MAAM,EAAE,gBAAgB,CAAA;CACzB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,wBAAgB,iBAAiB,CAC/B,IAAI,EAAE,YAAY,EAClB,MAAM,GAAE,uBAA4B,GACnC,uBAAuB,CA4EzB"}

package/dist/hooks/use-protected-route.js

@@ -0,0 +1,102 @@
+/**
+ * 路由保护 Hook
+ *
+ * 职责：
+ * 1. 等待认证初始化完成
+ * 2. 根据认证状态进行路由保护
+ * 3. 强制邮箱验证检查
+ * 4. 支持公开路由例外
+ */
+import { useEffect, useMemo } from "react";
+import { use$ } from "@legendapp/state/react";
+/**
+ * 路由保护 Hook
+ *
+ * 使用示例：
+ * ```tsx
+ * function ProtectedRoute({ children }) {
+ *   const navigate = useNavigate()
+ *   const location = useLocation()
+ *
+ *   const { status, shouldRender, isLoading, redirectPath } = useProtectedRoute(auth, {
+ *     pathname: location.pathname,
+ *     publicRoutePrefixes: ['/resources', '/public'],
+ *     onRedirect: (path) => navigate(path, { replace: true })
+ *   })
+ *
+ *   useEffect(() => {
+ *     if (redirectPath) {
+ *       navigate(redirectPath, { replace: true })
+ *     }
+ *   }, [redirectPath, navigate])
+ *
+ *   if (!shouldRender) {
+ *     return <Loading />
+ *   }
+ *
+ *   return <>{children}</>
+ * }
+ * ```
+ */
+export function useProtectedRoute(auth, config = {}) {
+    const { requireEmailVerified = true, publicRoutePrefixes = [], pathname: propPathname, lang = "us", onRedirect, } = config;
+    // 从 authStore 获取状态
+    const isLoaded = use$(auth.authStore.isLoaded);
+    const isAuthenticated = use$(auth.authStore.isAuthenticated);
+    const user = use$(auth.authStore.user);
+    // 获取当前路径
+    const pathname = useMemo(() => {
+        if (propPathname)
+            return propPathname;
+        if (typeof window === "undefined")
+            return "/";
+        return window.location.pathname;
+    }, [propPathname]);
+    // 检查是否是公开路由
+    const isPublicRoute = useMemo(() => {
+        return publicRoutePrefixes.some((prefix) => pathname === prefix || pathname.startsWith(prefix));
+    }, [pathname, publicRoutePrefixes]);
+    // 计算保护状态
+    const status = useMemo(() => {
+        // 公开路由
+        if (isPublicRoute)
+            return "public";
+        // 未加载完成
+        if (!isLoaded)
+            return "loading";
+        // 未认证
+        if (!isAuthenticated)
+            return "unauthenticated";
+        // 邮箱未验证
+        if (requireEmailVerified && user && user.emailVerified !== true) {
+            return "unverified";
+        }
+        // 已授权
+        return "authorized";
+    }, [isPublicRoute, isLoaded, isAuthenticated, user, requireEmailVerified]);
+    // 计算重定向路径
+    const redirectPath = useMemo(() => {
+        switch (status) {
+            case "unauthenticated":
+                return `/sign-in?lang=${lang}`;
+            case "unverified":
+                return `/verify-email?lang=${lang}&email=${encodeURIComponent(user?.email || "")}`;
+            default:
+                return null;
+        }
+    }, [status, lang, user?.email]);
+    // 执行重定向
+    useEffect(() => {
+        if (redirectPath && onRedirect) {
+            onRedirect(redirectPath);
+        }
+    }, [redirectPath, onRedirect]);
+    // 是否应该渲染子组件
+    const shouldRender = status === "authorized" || status === "public";
+    return {
+        status,
+        shouldRender,
+        isLoading: status === "loading",
+        redirectPath,
+    };
+}

package/dist/index.d.ts

@@ -1,19 +1,25 @@
 /**
  * @choiceform/shared-auth
  * 共享认证包
+ *
+ * 架构设计：
+ * - Store Layer: 响应式状态管理（authStore + storeActions）
+ * - Service Layer: 业务逻辑（authService + callbackService）
+ * - API Layer: HTTP 请求（apiClient + authApi/organizationApi/teamApi）
+ * - Hooks Layer: React 专用 hooks
  */
 export { createAuth, type AuthInstance } from "./core";
 export { initAuth } from "./init";
 export { defaultAuthConfig } from "./config";
-export type { SessionUser, SessionUserMetadata, Session, AuthState, AuthConfig, BetterAuthPlugin, DefaultAuthConfig, UpdateUserRequest, MagicLinkRequest, SignInWithMagicLink, CompanionTeamOptions, AuthClientMethods, AuthClientSignIn, Organization, FullOrganization, CreateOrganizationRequest, UpdateOrganizationRequest, DeleteOrganizationRequest, SetActiveOrganizationRequest, CheckSlugRequest, MemberRole, Member, MemberUser, MemberWithUser, RemoveMemberRequest, UpdateMemberRoleRequest, InvitationStatus, Invitation, InvitationDetail, InviteMemberRequest, CancelInvitationRequest, AcceptInvitationRequest, RejectInvitationRequest, InvitationResponse, Team, CreateTeamRequest, UpdateTeamRequest, DeleteTeamRequest, SetActiveTeamRequest, TeamMember, AddTeamMemberRequest, RemoveTeamMemberRequest, ListTeamMembersRequest, } from "./types";
+export type { SessionUser, SessionUserMetadata, Session, AuthState, AuthConfig, BetterAuthPlugin, DefaultAuthConfig, UpdateUserRequest, MagicLinkRequest, SignInWithMagicLink, CompanionTeamOptions, AuthClientMethods, AuthClientSignIn, Account, UserSession, RevokeSessionRequest, Organization, OrganizationMetadata, FullOrganization, CreateOrganizationRequest, UpdateOrganizationRequest, DeleteOrganizationRequest, SetActiveOrganizationRequest, CheckSlugRequest, MemberRole, Member, MemberUser, UserMetadata, MemberWithUser, RemoveMemberRequest, UpdateMemberRoleRequest, InvitationStatus, Invitation, InvitationDetail, InviteMemberRequest, CancelInvitationRequest, AcceptInvitationRequest, RejectInvitationRequest, InvitationResponse, Team, TeamMetadata, CreateTeamRequest, UpdateTeamRequest, DeleteTeamRequest, SetActiveTeamRequest, TeamMember, AddTeamMemberRequest, RemoveTeamMemberRequest, ListTeamMembersRequest, CallbackType, CallbackResult, CallbackConfig, } from "./types";
 export { createAuthStore, createTokenStorage } from "./store/state";
-export { createAuthActions, type AuthActions } from "./store/actions";
+export { createStoreActions, type StoreActions } from "./store/actions";
 export { createAuthComputed } from "./store/computed";
-export { createBoundAuthUtils, createUserManager, getAuthHeaders, getAuthHeadersSync, getAuthToken, getAuthTokenSync, getCurrentUser, getCurrentUserId, handle401Response, isAuthenticated, isLoaded, isLoading, waitForAuth, } from "./store/utils";
+export { getCurrentUser, getCurrentUserId, isAuthenticated, isLoading, isLoaded, waitForAuth, getAuthToken, getAuthTokenSync, getAuthHeaders, getAuthHeadersSync, handle401Response, createUserManager, } from "./store/utils";
+export { createAuthService, type AuthService, type AuthServiceConfig, type BetterAuthClientMethods, setupCompanionTeam, createCallbackService, type CallbackService, } from "./services";
 export { createApiClient, createAuthApi, createOrganizationApi, createTeamApi, parseErrorResponse, } from "./api";
 export type { ApiClient, ApiClientConfig, ApiResponse, TokenStorage, UnauthorizedHandler, AuthApi, OrganizationApi, TeamApi, } from "./api";
-export { setupCompanionTeam } from "./services";
-export { getEnvVar, getAuthBaseUrl, extractSessionUser } from "./utils";
-export { useAuthInit, initializeAuth } from "./hooks/use-auth-init";
+export { useAuthInit, initializeAuth, useAuthSync, type UseAuthSyncConfig, type UseAuthSyncResult, useProtectedRoute, type UseProtectedRouteConfig, type UseProtectedRouteResult, type ProtectionStatus, useEmailVerification, type UseEmailVerificationConfig, type UseEmailVerificationResult, } from "./hooks";
+export { getEnvVar, getAuthBaseUrl, extractSessionUser, isValidEmail, parseAuthError, isTokenExpiredError, AUTH_ERROR_CODES, type AuthErrorCode, type ParsedAuthError, getNameFromEmail, buildAuthUrl, buildAuthPath, clearAuthParams, } from "./utils";
 export { createAuthClientFromConfig } from "./lib/auth-client";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH,OAAO,EAAE,UAAU,EAAE,KAAK,YAAY,EAAE,MAAM,QAAQ,CAAA;AACtD,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAA;AACjC,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAA;AAM5C,YAAY,EACV,WAAW,EACX,mBAAmB,EACnB,OAAO,EACP,SAAS,EACT,UAAU,EACV,gBAAgB,EAChB,iBAAiB,EACjB,iBAAiB,EACjB,gBAAgB,EAChB,mBAAmB,EACnB,oBAAoB,EACpB,iBAAiB,EACjB,gBAAgB,EAEhB,YAAY,EACZ,gBAAgB,EAChB,yBAAyB,EACzB,yBAAyB,EACzB,yBAAyB,EACzB,4BAA4B,EAC5B,gBAAgB,EAChB,UAAU,EACV,MAAM,EACN,UAAU,EACV,cAAc,EACd,mBAAmB,EACnB,uBAAuB,EACvB,gBAAgB,EAChB,UAAU,EACV,gBAAgB,EAChB,mBAAmB,EACnB,uBAAuB,EACvB,uBAAuB,EACvB,uBAAuB,EACvB,kBAAkB,EAElB,IAAI,EACJ,iBAAiB,EACjB,iBAAiB,EACjB,iBAAiB,EACjB,oBAAoB,EACpB,UAAU,EACV,oBAAoB,EACpB,uBAAuB,EACvB,sBAAsB,GACvB,MAAM,SAAS,CAAA;AAMhB,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAA;AACnE,OAAO,EAAE,iBAAiB,EAAE,KAAK,WAAW,EAAE,MAAM,iBAAiB,CAAA;AACrE,OAAO,EAAE,kBAAkB,EAAE,MAAM,kBAAkB,CAAA;AACrD,OAAO,EACL,oBAAoB,EACpB,iBAAiB,EACjB,cAAc,EACd,kBAAkB,EAClB,YAAY,EACZ,gBAAgB,EAChB,cAAc,EACd,gBAAgB,EAChB,iBAAiB,EACjB,eAAe,EACf,QAAQ,EACR,SAAS,EACT,WAAW,GACZ,MAAM,eAAe,CAAA;AAMtB,OAAO,EACL,eAAe,EACf,aAAa,EACb,qBAAqB,EACrB,aAAa,EACb,kBAAkB,GACnB,MAAM,OAAO,CAAA;AAEd,YAAY,EACV,SAAS,EACT,eAAe,EACf,WAAW,EACX,YAAY,EACZ,mBAAmB,EACnB,OAAO,EACP,eAAe,EACf,OAAO,GACR,MAAM,OAAO,CAAA;AAMd,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAA;AAM/C,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAA;AAMvE,OAAO,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAA;AAMnE,OAAO,EAAE,0BAA0B,EAAE,MAAM,mBAAmB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAMH,OAAO,EAAE,UAAU,EAAE,KAAK,YAAY,EAAE,MAAM,QAAQ,CAAA;AACtD,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAA;AACjC,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAA;AAM5C,YAAY,EAEV,WAAW,EACX,mBAAmB,EACnB,OAAO,EACP,SAAS,EACT,UAAU,EACV,gBAAgB,EAChB,iBAAiB,EACjB,iBAAiB,EACjB,gBAAgB,EAChB,mBAAmB,EACnB,oBAAoB,EACpB,iBAAiB,EACjB,gBAAgB,EAEhB,OAAO,EAEP,WAAW,EACX,oBAAoB,EAEpB,YAAY,EACZ,oBAAoB,EACpB,gBAAgB,EAChB,yBAAyB,EACzB,yBAAyB,EACzB,yBAAyB,EACzB,4BAA4B,EAC5B,gBAAgB,EAChB,UAAU,EACV,MAAM,EACN,UAAU,EACV,YAAY,EACZ,cAAc,EACd,mBAAmB,EACnB,uBAAuB,EACvB,gBAAgB,EAChB,UAAU,EACV,gBAAgB,EAChB,mBAAmB,EACnB,uBAAuB,EACvB,uBAAuB,EACvB,uBAAuB,EACvB,kBAAkB,EAElB,IAAI,EACJ,YAAY,EACZ,iBAAiB,EACjB,iBAAiB,EACjB,iBAAiB,EACjB,oBAAoB,EACpB,UAAU,EACV,oBAAoB,EACpB,uBAAuB,EACvB,sBAAsB,EAEtB,YAAY,EACZ,cAAc,EACd,cAAc,GACf,MAAM,SAAS,CAAA;AAMhB,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAA;AACnE,OAAO,EAAE,kBAAkB,EAAE,KAAK,YAAY,EAAE,MAAM,iBAAiB,CAAA;AACvE,OAAO,EAAE,kBAAkB,EAAE,MAAM,kBAAkB,CAAA;AACrD,OAAO,EACL,cAAc,EACd,gBAAgB,EAChB,eAAe,EACf,SAAS,EACT,QAAQ,EACR,WAAW,EACX,YAAY,EACZ,gBAAgB,EAChB,cAAc,EACd,kBAAkB,EAClB,iBAAiB,EACjB,iBAAiB,GAClB,MAAM,eAAe,CAAA;AAMtB,OAAO,EAEL,iBAAiB,EACjB,KAAK,WAAW,EAChB,KAAK,iBAAiB,EACtB,KAAK,uBAAuB,EAE5B,kBAAkB,EAElB,qBAAqB,EACrB,KAAK,eAAe,GACrB,MAAM,YAAY,CAAA;AAMnB,OAAO,EACL,eAAe,EACf,aAAa,EACb,qBAAqB,EACrB,aAAa,EACb,kBAAkB,GACnB,MAAM,OAAO,CAAA;AAEd,YAAY,EACV,SAAS,EACT,eAAe,EACf,WAAW,EACX,YAAY,EACZ,mBAAmB,EACnB,OAAO,EACP,eAAe,EACf,OAAO,GACR,MAAM,OAAO,CAAA;AAMd,OAAO,EAEL,WAAW,EACX,cAAc,EAEd,WAAW,EACX,KAAK,iBAAiB,EACtB,KAAK,iBAAiB,EAEtB,iBAAiB,EACjB,KAAK,uBAAuB,EAC5B,KAAK,uBAAuB,EAC5B,KAAK,gBAAgB,EAErB,oBAAoB,EACpB,KAAK,0BAA0B,EAC/B,KAAK,0BAA0B,GAChC,MAAM,SAAS,CAAA;AAMhB,OAAO,EAEL,SAAS,EACT,cAAc,EAEd,kBAAkB,EAElB,YAAY,EAEZ,cAAc,EACd,mBAAmB,EACnB,gBAAgB,EAChB,KAAK,aAAa,EAClB,KAAK,eAAe,EAEpB,gBAAgB,EAChB,YAAY,EACZ,aAAa,EACb,eAAe,GAChB,MAAM,SAAS,CAAA;AAMhB,OAAO,EAAE,0BAA0B,EAAE,MAAM,mBAAmB,CAAA"}

package/dist/index.js

@@ -1,37 +1,67 @@
 /**
  * @choiceform/shared-auth
  * 共享认证包
+ *
+ * 架构设计：
+ * - Store Layer: 响应式状态管理（authStore + storeActions）
+ * - Service Layer: 业务逻辑（authService + callbackService）
+ * - API Layer: HTTP 请求（apiClient + authApi/organizationApi/teamApi）
+ * - Hooks Layer: React 专用 hooks
  */
 // ============================================================
-// 核心
+// 核心 - 主入口
 // ============================================================
 export { createAuth } from "./core";
 export { initAuth } from "./init";
 export { defaultAuthConfig } from "./config";
 // ============================================================
-// Store
+// Store Layer - 状态管理
 // ============================================================
 export { createAuthStore, createTokenStorage } from "./store/state";
-export { createAuthActions } from "./store/actions";
+export { createStoreActions } from "./store/actions";
 export { createAuthComputed } from "./store/computed";
-export { createBoundAuthUtils, createUserManager, getAuthHeaders, getAuthHeadersSync, getAuthToken, getAuthTokenSync, getCurrentUser, getCurrentUserId, handle401Response, isAuthenticated, isLoaded, isLoading, waitForAuth, } from "./store/utils";
+export { getCurrentUser, getCurrentUserId, isAuthenticated, isLoading, isLoaded, waitForAuth, getAuthToken, getAuthTokenSync, getAuthHeaders, getAuthHeadersSync, handle401Response, createUserManager, } from "./store/utils";
 // ============================================================
-// API
+// Service Layer - 业务逻辑
 // ============================================================
-export { createApiClient, createAuthApi, createOrganizationApi, createTeamApi, parseErrorResponse, } from "./api";
+export { 
+// 认证服务
+createAuthService, 
+// 伴生团队
+setupCompanionTeam, 
+// 回调服务
+createCallbackService, } from "./services";
 // ============================================================
-// 服务
+// API Layer - HTTP 请求
 // ============================================================
-export { setupCompanionTeam } from "./services";
+export { createApiClient, createAuthApi, createOrganizationApi, createTeamApi, parseErrorResponse, } from "./api";
 // ============================================================
-// 工具
+// Hooks Layer - React 专用
 // ============================================================
-export { getEnvVar, getAuthBaseUrl, extractSessionUser } from "./utils";
+export { 
+// 初始化
+useAuthInit, initializeAuth, 
+// 认证状态同步
+useAuthSync, 
+// 路由保护
+useProtectedRoute, 
+// 邮箱验证
+useEmailVerification, } from "./hooks";
 // ============================================================
-// Hooks
+// 工具函数
 // ============================================================
-export { useAuthInit, initializeAuth } from "./hooks/use-auth-init";
+export { 
+// 环境
+getEnvVar, getAuthBaseUrl, 
+// 用户映射
+extractSessionUser, 
+// 验证
+isValidEmail, 
+// 错误处理
+parseAuthError, isTokenExpiredError, AUTH_ERROR_CODES, 
+// URL 工具
+getNameFromEmail, buildAuthUrl, buildAuthPath, clearAuthParams, } from "./utils";
 // ============================================================
-// Better Auth Client
+// Better Auth Client（高级用法）
 // ============================================================
 export { createAuthClientFromConfig } from "./lib/auth-client";