@civic/auth 0.0.1-beta.18 → 0.0.1-beta.19

package/dist/nextjs/client.d.mts

@@ -0,0 +1,12 @@
+import * as react_jsx_runtime from 'react/jsx-runtime';
+import { A as AuthProviderProps } from '../AuthProvider-DUAoX4G9.mjs';
+import { b as EmptyObject, U as User } from '../types-HdCjGldB.mjs';
+import 'react';
+import 'oslo/oauth2';
+
+type NextCivicAuthProviderProps = Omit<AuthProviderProps, "clientId">;
+declare const CivicNextAuthProvider: ({ children, ...props }: NextCivicAuthProviderProps) => react_jsx_runtime.JSX.Element;
+
+declare const useUserCookie: <T extends EmptyObject>() => User<T> | null;
+
+export { type NextCivicAuthProviderProps as AuthProviderProps, CivicNextAuthProvider as CivicAuthProvider, useUserCookie };

package/dist/nextjs/client.d.ts

@@ -0,0 +1,12 @@
+import * as react_jsx_runtime from 'react/jsx-runtime';
+import { A as AuthProviderProps } from '../AuthProvider-Bj_Prt1x.js';
+import { b as EmptyObject, U as User } from '../types-HdCjGldB.js';
+import 'react';
+import 'oslo/oauth2';
+
+type NextCivicAuthProviderProps = Omit<AuthProviderProps, "clientId">;
+declare const CivicNextAuthProvider: ({ children, ...props }: NextCivicAuthProviderProps) => react_jsx_runtime.JSX.Element;
+
+declare const useUserCookie: <T extends EmptyObject>() => User<T> | null;
+
+export { type NextCivicAuthProviderProps as AuthProviderProps, CivicNextAuthProvider as CivicAuthProvider, useUserCookie };

package/dist/nextjs/client.js

@@ -0,0 +1,179 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});require('../chunk-5UQQYXCX.js');
+
+
+
+var _chunkVJVRFKDHjs = require('../chunk-VJVRFKDH.js');
+
+
+
+var _chunkDJFTZS4Pjs = require('../chunk-DJFTZS4P.js');
+
+
+var _chunkCZ3AVCKDjs = require('../chunk-CZ3AVCKD.js');
+require('../chunk-O6DPCPRH.js');
+
+
+var _chunkO2SODTR3js = require('../chunk-O2SODTR3.js');
+
+
+
+
+
+var _chunkCRTRMMJ7js = require('../chunk-CRTRMMJ7.js');
+
+// src/nextjs/providers/NextAuthProvider.tsx
+var _react = require('react');
+var _reactquery = require('@tanstack/react-query');
+
+// src/nextjs/hooks/useUserCookie.ts
+
+var _navigationjs = require('next/navigation.js');
+
+
+// src/lib/cookies.ts
+var getWindowCookieValue = ({
+  key,
+  window: window2,
+  parseJson = false
+}) => {
+  const cookie = window2.document.cookie;
+  if (!cookie) return null;
+  const cookies = cookie.split(";");
+  for (const c of cookies) {
+    const [name, value] = c.trim().split("=");
+    if (value && name === key) {
+      try {
+        const decodeURIComponentValue = decodeURIComponent(value);
+        return parseJson === true ? JSON.parse(decodeURIComponentValue) : decodeURIComponentValue;
+      } catch (e) {
+        return value;
+      }
+    }
+  }
+  return null;
+};
+
+// src/nextjs/hooks/useUserCookie.ts
+var getUserFromCookie = () => {
+  const userCookie = getWindowCookieValue({
+    key: "user" /* USER */,
+    window: globalThis.window,
+    parseJson: true
+  });
+  return userCookie;
+};
+var useUserCookie = () => {
+  const hasRunRef = _react.useRef.call(void 0, false);
+  const router = _navigationjs.useRouter.call(void 0, );
+  const { data: user } = _reactquery.useQuery.call(void 0, {
+    queryKey: ["user"],
+    queryFn: () => getUserFromCookie(),
+    refetchInterval: 2e3,
+    refetchIntervalInBackground: true,
+    enabled: !hasRunRef.current,
+    refetchOnWindowFocus: true
+  });
+  _react.useEffect.call(void 0, () => {
+    if (user) {
+      if (!hasRunRef.current) {
+        hasRunRef.current = true;
+        router.refresh();
+      }
+    } else {
+      hasRunRef.current = false;
+    }
+  }, [user, router]);
+  return user != null ? user : null;
+};
+
+// src/nextjs/hooks/useTokenCookie.ts
+
+
+
+var getTokenFromCookie = (tokenName) => {
+  return getWindowCookieValue({
+    key: tokenName,
+    window: globalThis.window,
+    parseJson: false
+  });
+};
+var useTokenCookie = (tokenName) => {
+  const hasRunRef = _react.useRef.call(void 0, false);
+  const router = _navigationjs.useRouter.call(void 0, );
+  const { data: token } = _reactquery.useQuery.call(void 0, {
+    queryKey: ["token", tokenName],
+    queryFn: () => getTokenFromCookie(tokenName) || null,
+    refetchInterval: 2e3,
+    refetchIntervalInBackground: true,
+    enabled: !hasRunRef.current,
+    refetchOnWindowFocus: true
+  });
+  _react.useEffect.call(void 0, () => {
+    if (token) {
+      if (!hasRunRef.current) {
+        hasRunRef.current = true;
+        router.refresh();
+      }
+    } else {
+      hasRunRef.current = false;
+    }
+  }, [token, router]);
+  return token != null ? token : null;
+};
+
+// src/nextjs/providers/NextAuthProvider.tsx
+var _jsxruntime = require('react/jsx-runtime');
+var queryClient = new (0, _reactquery.QueryClient)();
+var CivicNextAuthProvider = (_a) => {
+  var _b = _a, {
+    children
+  } = _b, props = _chunkCRTRMMJ7js.__objRest.call(void 0, _b, [
+    "children"
+  ]);
+  const [redirectUrl, setRedirectUrl] = _react.useState.call(void 0, "");
+  const resolvedConfig = _chunkCZ3AVCKDjs.resolveAuthConfig.call(void 0, );
+  const { clientId, oauthServer, callbackUrl, challengeUrl, logoutUrl } = resolvedConfig;
+  _react.useEffect.call(void 0, () => {
+    if (typeof globalThis.window !== "undefined") {
+      const currentUrl = globalThis.window.location.href;
+      setRedirectUrl(_chunkDJFTZS4Pjs.resolveCallbackUrl.call(void 0, resolvedConfig, currentUrl));
+    }
+  }, [callbackUrl, resolvedConfig]);
+  const user = useUserCookie();
+  const idToken = useTokenCookie("id_token" /* ID_TOKEN */);
+  const combinedUser = user ? _chunkCRTRMMJ7js.__spreadProps.call(void 0, _chunkCRTRMMJ7js.__spreadValues.call(void 0, {}, user || {}), { idToken }) : null;
+  const sessionData = _chunkCRTRMMJ7js.__spreadValues.call(void 0, {
+    authenticated: !!user
+  }, idToken ? { idToken } : {});
+  const signOut = () => _chunkCRTRMMJ7js.__async.call(void 0, void 0, null, function* () {
+    if (props.onSignOut) {
+      yield props.onSignOut();
+    }
+    window.location.href = logoutUrl;
+    return;
+  });
+  return /* @__PURE__ */ _jsxruntime.jsx.call(void 0, _reactquery.QueryClientProvider, { client: queryClient, children: /* @__PURE__ */ _jsxruntime.jsx.call(void 0, 
+    _chunkVJVRFKDHjs.AuthProvider,
+    _chunkCRTRMMJ7js.__spreadProps.call(void 0, _chunkCRTRMMJ7js.__spreadValues.call(void 0, {}, props), {
+      redirectUrl,
+      config: { oauthServer },
+      clientId,
+      pkceConsumer: new (0, _chunkO2SODTR3js.ConfidentialClientPKCEConsumer)(challengeUrl),
+      sessionData,
+      children: /* @__PURE__ */ _jsxruntime.jsx.call(void 0, 
+        _chunkVJVRFKDHjs.UserProvider,
+        {
+          storage: new (0, _chunkDJFTZS4Pjs.NextjsClientStorage)(),
+          user: combinedUser,
+          signOut,
+          children
+        }
+      )
+    })
+  ) });
+};
+
+
+
+exports.CivicAuthProvider = CivicNextAuthProvider; exports.useUserCookie = useUserCookie;
+//# sourceMappingURL=client.js.map

package/dist/nextjs/client.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["/Users/kevincolgan/code/civic-auth/packages/civic-auth-client/dist/nextjs/client.js","../../src/nextjs/providers/NextAuthProvider.tsx","../../src/nextjs/hooks/useUserCookie.ts","../../src/lib/cookies.ts","../../src/nextjs/hooks/useTokenCookie.ts"],"names":["window","useRef","useRouter","useQuery","useEffect"],"mappings":"AAAA,yGAA6B;AAC7B;AACE;AACA;AACF,uDAA6B;AAC7B;AACE;AACA;AACF,uDAA6B;AAC7B;AACE;AACF,uDAA6B;AAC7B,gCAA6B;AAC7B;AACE;AACF,uDAA6B;AAC7B;AACE;AACA;AACA;AACA;AACF,uDAA6B;AAC7B;AACA;ACnBA,8BAAoC;AAEpC,mDAAiD;ADoBjD;AACA;AE1BA;AACA,kDAA0B;AAC1B;AF4BA;AACA;AGhCA,IAAM,qBAAA,EAAuB,CAAC;AAAA,EAC5B,GAAA;AAAA,EACA,MAAA,EAAAA,OAAAA;AAAA,EACA,UAAA,EAAY;AACd,CAAA,EAAA,GAIM;AACJ,EAAA,MAAM,OAAA,EAASA,OAAAA,CAAO,QAAA,CAAS,MAAA;AAC/B,EAAA,GAAA,CAAI,CAAC,MAAA,EAAQ,OAAO,IAAA;AACpB,EAAA,MAAM,QAAA,EAAU,MAAA,CAAO,KAAA,CAAM,GAAG,CAAA;AAChC,EAAA,IAAA,CAAA,MAAW,EAAA,GAAK,OAAA,EAAS;AACvB,IAAA,MAAM,CAAC,IAAA,EAAM,KAAK,EAAA,EAAI,CAAA,CAAE,IAAA,CAAK,CAAA,CAAE,KAAA,CAAM,GAAG,CAAA;AACxC,IAAA,GAAA,CAAI,MAAA,GAAS,KAAA,IAAS,GAAA,EAAK;AACzB,MAAA,IAAI;AACF,QAAA,MAAM,wBAAA,EAA0B,kBAAA,CAAmB,KAAK,CAAA;AACxD,QAAA,OAAO,UAAA,IAAc,KAAA,EACjB,IAAA,CAAK,KAAA,CAAM,uBAAuB,EAAA,EAClC,uBAAA;AAAA,MACN,EAAA,MAAA,CAAQ,CAAA,EAAA;AACN,QAAA,OAAO,KAAA;AAAA,MACT;AAAA,IACF;AAAA,EACF;AACA,EAAA,OAAO,IAAA;AACT,CAAA;AH4BA;AACA;AE/CA,IAAM,kBAAA,EAAoB,CAAA,EAAA,GAAM;AAC9B,EAAA,MAAM,WAAA,EAAa,oBAAA,CAAqB;AAAA,IACtC,GAAA,EAAA,iBAAA;AAAA,IACA,MAAA,EAAQ,UAAA,CAAW,MAAA;AAAA,IACnB,SAAA,EAAW;AAAA,EACb,CAAC,CAAA;AACD,EAAA,OAAO,UAAA;AACT,CAAA;AAEO,IAAM,cAAA,EAAgB,CAAA,EAAA,GAA6B;AACxD,EAAA,MAAM,UAAA,EAAY,2BAAA,KAAY,CAAA;AAC9B,EAAA,MAAM,OAAA,EAAS,qCAAA,CAAU;AAEzB,EAAA,MAAM,EAAE,IAAA,EAAM,KAAK,EAAA,EAAI,kCAAA;AAAS,IAC9B,QAAA,EAAU,CAAC,MAAM,CAAA;AAAA,IACjB,OAAA,EAAS,CAAA,EAAA,GAAM,iBAAA,CAAkB,CAAA;AAAA,IACjC,eAAA,EAAiB,GAAA;AAAA,IACjB,2BAAA,EAA6B,IAAA;AAAA,IAC7B,OAAA,EAAS,CAAC,SAAA,CAAU,OAAA;AAAA,IACpB,oBAAA,EAAsB;AAAA,EACxB,CAAC,CAAA;AAED,EAAA,8BAAA,CAAU,EAAA,GAAM;AACd,IAAA,GAAA,CAAI,IAAA,EAAM;AACR,MAAA,GAAA,CAAI,CAAC,SAAA,CAAU,OAAA,EAAS;AACtB,QAAA,SAAA,CAAU,QAAA,EAAU,IAAA;AACpB,QAAA,MAAA,CAAO,OAAA,CAAQ,CAAA;AAAA,MACjB;AAAA,IACF,EAAA,KAAO;AACL,MAAA,SAAA,CAAU,QAAA,EAAU,KAAA;AAAA,IACtB;AAAA,EACF,CAAA,EAAG,CAAC,IAAA,EAAM,MAAM,CAAC,CAAA;AAEjB,EAAA,OAAO,KAAA,GAAA,KAAA,EAAA,KAAA,EAAQ,IAAA;AACjB,CAAA;AF6CA;AACA;AIvFA;AACA;AACA;AAIA,IAAM,mBAAA,EAAqB,CAAC,SAAA,EAAA,GAAmC;AAC7D,EAAA,OAAO,oBAAA,CAAqB;AAAA,IAC1B,GAAA,EAAK,SAAA;AAAA,IACL,MAAA,EAAQ,UAAA,CAAW,MAAA;AAAA,IACnB,SAAA,EAAW;AAAA,EACb,CAAC,CAAA;AACH,CAAA;AAEO,IAAM,eAAA,EAAiB,CAAC,SAAA,EAAA,GAA0C;AACvE,EAAA,MAAM,UAAA,EAAYC,2BAAAA,KAAY,CAAA;AAC9B,EAAA,MAAM,OAAA,EAASC,qCAAAA,CAAU;AAEzB,EAAA,MAAM,EAAE,IAAA,EAAM,MAAM,EAAA,EAAIC,kCAAAA;AAAS,IAC/B,QAAA,EAAU,CAAC,OAAA,EAAS,SAAS,CAAA;AAAA,IAC7B,OAAA,EAAS,CAAA,EAAA,GAAM,kBAAA,CAAmB,SAAS,EAAA,GAAK,IAAA;AAAA,IAChD,eAAA,EAAiB,GAAA;AAAA,IACjB,2BAAA,EAA6B,IAAA;AAAA,IAC7B,OAAA,EAAS,CAAC,SAAA,CAAU,OAAA;AAAA,IACpB,oBAAA,EAAsB;AAAA,EACxB,CAAC,CAAA;AAED,EAAAC,8BAAAA,CAAU,EAAA,GAAM;AACd,IAAA,GAAA,CAAI,KAAA,EAAO;AACT,MAAA,GAAA,CAAI,CAAC,SAAA,CAAU,OAAA,EAAS;AACtB,QAAA,SAAA,CAAU,QAAA,EAAU,IAAA;AACpB,QAAA,MAAA,CAAO,OAAA,CAAQ,CAAA;AAAA,MACjB;AAAA,IACF,EAAA,KAAO;AACL,MAAA,SAAA,CAAU,QAAA,EAAU,KAAA;AAAA,IACtB;AAAA,EACF,CAAA,EAAG,CAAC,KAAA,EAAO,MAAM,CAAC,CAAA;AAElB,EAAA,OAAO,MAAA,GAAA,KAAA,EAAA,MAAA,EAAS,IAAA;AAClB,CAAA;AJkFA;AACA;AC3DQ,+CAAA;AA5CR,IAAM,YAAA,EAAc,IAAI,4BAAA,CAAY,CAAA;AAI7B,IAAM,sBAAA,EAAwB,CAAC,EAAA,EAAA,GAGJ;AAHI,EAAA,IAAA,GAAA,EAAA,EAAA,EACpC;AAAA,IAAA;AAAA,EAzBF,EAAA,EAwBsC,EAAA,EAEjC,MAAA,EAAA,wCAAA,EAFiC,EAEjC;AAAA,IADH;AAAA,EAAA,CAAA,CAAA;AAGA,EAAA,MAAM,CAAC,WAAA,EAAa,cAAc,EAAA,EAAI,6BAAA,EAAmB,CAAA;AACzD,EAAA,MAAM,eAAA,EAAiB,gDAAA,CAAkB;AACzC,EAAA,MAAM,EAAE,QAAA,EAAU,WAAA,EAAa,WAAA,EAAa,YAAA,EAAc,UAAU,EAAA,EAClE,cAAA;AAEF,EAAAA,8BAAAA,CAAU,EAAA,GAAM;AACd,IAAA,GAAA,CAAI,OAAO,UAAA,CAAW,OAAA,IAAW,WAAA,EAAa;AAC5C,MAAA,MAAM,WAAA,EAAa,UAAA,CAAW,MAAA,CAAO,QAAA,CAAS,IAAA;AAC9C,MAAA,cAAA,CAAe,iDAAA,cAAmB,EAAgB,UAAU,CAAC,CAAA;AAAA,IAC/D;AAAA,EACF,CAAA,EAAG,CAAC,WAAA,EAAa,cAAc,CAAC,CAAA;AAEhC,EAAA,MAAM,KAAA,EAAO,aAAA,CAAc,CAAA;AAC3B,EAAA,MAAM,QAAA,EAAU,cAAA,CAAA,yBAAmC,CAAA;AACnD,EAAA,MAAM,aAAA,EAAe,KAAA,EAAQ,4CAAA,6CAAA,CAAA,CAAA,EAAM,KAAA,GAAQ,CAAC,CAAA,CAAA,EAAf,EAAmB,QAAQ,CAAA,EAAA,EAAa,IAAA;AACrE,EAAA,MAAM,YAAA,EAAc,6CAAA;AAAA,IAClB,aAAA,EAAe,CAAC,CAAC;AAAA,EAAA,CAAA,EACb,QAAA,EAAU,EAAE,QAAQ,EAAA,EAAI,CAAC,CAAA,CAAA;AAE/B,EAAA,MAAM,QAAA,EAAU,CAAA,EAAA,GAA2B,sCAAA,KAAA,CAAA,EAAA,IAAA,EAAA,QAAA,EAAA,CAAA,EAAA;AACzC,IAAA,GAAA,CAAI,KAAA,CAAM,SAAA,EAAW;AACnB,MAAA,MAAM,KAAA,CAAM,SAAA,CAAU,CAAA;AAAA,IACxB;AACA,IAAA,MAAA,CAAO,QAAA,CAAS,KAAA,EAAO,SAAA;AACvB,IAAA,MAAA;AAAA,EACF,CAAA,CAAA;AACA,EAAA,uBACE,6BAAA,+BAAC,EAAA,EAAoB,MAAA,EAAQ,WAAA,EAC3B,QAAA,kBAAA,6BAAA;AAAA,IAAC,6BAAA;AAAA,IAAA,4CAAA,6CAAA,CAAA,CAAA,EACK,KAAA,CAAA,EADL;AAAA,MAEC,WAAA;AAAA,MACA,MAAA,EAAQ,EAAE,YAAY,CAAA;AAAA,MACtB,QAAA;AAAA,MACA,YAAA,EAAc,IAAI,oDAAA,CAA+B,YAAY,CAAA;AAAA,MAC7D,WAAA;AAAA,MAEA,QAAA,kBAAA,6BAAA;AAAA,QAAC,6BAAA;AAAA,QAAA;AAAA,UACC,OAAA,EAAS,IAAI,yCAAA,CAAoB,CAAA;AAAA,UACjC,IAAA,EAAM,YAAA;AAAA,UACN,OAAA;AAAA,UAEC;AAAA,QAAA;AAAA,MACH;AAAA,IAAA,CAAA;AAAA,EACF,EAAA,CACF,CAAA;AAEJ,CAAA;ADoGA;AACE;AACA;AACF,yFAAC","file":"/Users/kevincolgan/code/civic-auth/packages/civic-auth-client/dist/nextjs/client.js","sourcesContent":[null,"\"use client\";\n/**\n * A very small context provider for the user object - it takes the user object from the cookie and provides it to the app.\n */\nimport { useEffect, useState } from \"react\";\nimport { AuthProvider, AuthProviderProps } from \"@/shared/AuthProvider.js\";\nimport { QueryClient, QueryClientProvider } from \"@tanstack/react-query\";\nimport { resolveAuthConfig } from \"@/nextjs/config.js\";\nimport { resolveCallbackUrl } from \"@/nextjs/utils.js\";\n\n// adding the styles import here to be added to the bundle\nimport \"@/styles.css\";\nimport { ConfidentialClientPKCEConsumer } from \"@/services/PKCE.js\";\nimport { NextjsClientStorage } from \"@/nextjs/cookies\";\nimport { UserProvider } from \"@/shared/UserProvider\";\nimport { useUserCookie } from \"../hooks/useUserCookie\";\nimport { OAuthTokens } from \"@/shared/types\";\nimport { useTokenCookie } from \"../hooks/useTokenCookie\";\nimport { User } from \"@/types\";\n\nconst queryClient = new QueryClient();\n\nexport type NextCivicAuthProviderProps = Omit<AuthProviderProps, \"clientId\">;\n\nexport const CivicNextAuthProvider = ({\n  children,\n  ...props\n}: NextCivicAuthProviderProps) => {\n  const [redirectUrl, setRedirectUrl] = useState<string>(\"\");\n  const resolvedConfig = resolveAuthConfig();\n  const { clientId, oauthServer, callbackUrl, challengeUrl, logoutUrl } =\n    resolvedConfig;\n\n  useEffect(() => {\n    if (typeof globalThis.window !== \"undefined\") {\n      const currentUrl = globalThis.window.location.href;\n      setRedirectUrl(resolveCallbackUrl(resolvedConfig, currentUrl));\n    }\n  }, [callbackUrl, resolvedConfig]);\n\n  const user = useUserCookie();\n  const idToken = useTokenCookie(OAuthTokens.ID_TOKEN);\n  const combinedUser = user ? ({ ...(user || {}), idToken } as User) : null;\n  const sessionData = {\n    authenticated: !!user,\n    ...(idToken ? { idToken } : {}),\n  };\n  const signOut = async (): Promise<void> => {\n    if (props.onSignOut) {\n      await props.onSignOut();\n    }\n    window.location.href = logoutUrl;\n    return;\n  };\n  return (\n    <QueryClientProvider client={queryClient}>\n      <AuthProvider\n        {...props}\n        redirectUrl={redirectUrl}\n        config={{ oauthServer }}\n        clientId={clientId}\n        pkceConsumer={new ConfidentialClientPKCEConsumer(challengeUrl)}\n        sessionData={sessionData}\n      >\n        <UserProvider\n          storage={new NextjsClientStorage()}\n          user={combinedUser}\n          signOut={signOut}\n        >\n          {children}\n        </UserProvider>\n      </AuthProvider>\n    </QueryClientProvider>\n  );\n};\n","\"use client\";\nimport { useEffect, useRef } from \"react\";\nimport { useRouter } from \"next/navigation.js\";\nimport { useQuery } from \"@tanstack/react-query\";\nimport { getWindowCookieValue } from \"@/lib/cookies.js\";\nimport { EmptyObject, User } from \"@/types\";\nimport { UserStorage } from \"@/shared/types\";\n\nconst getUserFromCookie = () => {\n  const userCookie = getWindowCookieValue({\n    key: UserStorage.USER,\n    window: globalThis.window,\n    parseJson: true,\n  });\n  return userCookie;\n};\n\nexport const useUserCookie = <T extends EmptyObject>() => {\n  const hasRunRef = useRef(false);\n  const router = useRouter();\n\n  const { data: user } = useQuery({\n    queryKey: [\"user\"],\n    queryFn: () => getUserFromCookie() as User<T> | null,\n    refetchInterval: 2000,\n    refetchIntervalInBackground: true,\n    enabled: !hasRunRef.current,\n    refetchOnWindowFocus: true,\n  });\n\n  useEffect(() => {\n    if (user) {\n      if (!hasRunRef.current) {\n        hasRunRef.current = true;\n        router.refresh();\n      }\n    } else {\n      hasRunRef.current = false;\n    }\n  }, [user, router]);\n\n  return user ?? null;\n};\n","const getWindowCookieValue = ({\n  key,\n  window,\n  parseJson = false,\n}: {\n  key: string;\n  window: Window;\n  parseJson?: boolean;\n}) => {\n  const cookie = window.document.cookie;\n  if (!cookie) return null;\n  const cookies = cookie.split(\";\");\n  for (const c of cookies) {\n    const [name, value] = c.trim().split(\"=\");\n    if (value && name === key) {\n      try {\n        const decodeURIComponentValue = decodeURIComponent(value);\n        return parseJson === true\n          ? JSON.parse(decodeURIComponentValue)\n          : decodeURIComponentValue;\n      } catch {\n        return value;\n      }\n    }\n  }\n  return null;\n};\nexport { getWindowCookieValue };\n","\"use client\";\nimport { useEffect, useRef } from \"react\";\nimport { useRouter } from \"next/navigation.js\";\nimport { useQuery } from \"@tanstack/react-query\";\nimport { getWindowCookieValue } from \"@/lib/cookies.js\";\nimport { OAuthTokens } from \"@/shared/types\";\n\nconst getTokenFromCookie = (tokenName: OAuthTokens): string => {\n  return getWindowCookieValue({\n    key: tokenName,\n    window: globalThis.window,\n    parseJson: false,\n  });\n};\n\nexport const useTokenCookie = (tokenName: OAuthTokens): string | null => {\n  const hasRunRef = useRef(false);\n  const router = useRouter();\n\n  const { data: token } = useQuery({\n    queryKey: [\"token\", tokenName],\n    queryFn: () => getTokenFromCookie(tokenName) || null,\n    refetchInterval: 2000,\n    refetchIntervalInBackground: true,\n    enabled: !hasRunRef.current,\n    refetchOnWindowFocus: true,\n  });\n\n  useEffect(() => {\n    if (token) {\n      if (!hasRunRef.current) {\n        hasRunRef.current = true;\n        router.refresh();\n      }\n    } else {\n      hasRunRef.current = false;\n    }\n  }, [token, router]);\n\n  return token ?? null;\n};\n"]}

package/dist/nextjs/client.mjs

@@ -0,0 +1,179 @@
+import "../chunk-PMJAV4JJ.mjs";
+import {
+  AuthProvider,
+  UserProvider
+} from "../chunk-UADVRCHY.mjs";
+import {
+  NextjsClientStorage,
+  resolveCallbackUrl
+} from "../chunk-BFESCRFK.mjs";
+import {
+  resolveAuthConfig
+} from "../chunk-X3FQBE22.mjs";
+import "../chunk-HTTTZ2BP.mjs";
+import {
+  ConfidentialClientPKCEConsumer
+} from "../chunk-CBQ3HKRV.mjs";
+import {
+  __async,
+  __objRest,
+  __spreadProps,
+  __spreadValues
+} from "../chunk-RGHW4PYM.mjs";
+
+// src/nextjs/providers/NextAuthProvider.tsx
+import { useEffect as useEffect3, useState } from "react";
+import { QueryClient, QueryClientProvider } from "@tanstack/react-query";
+
+// src/nextjs/hooks/useUserCookie.ts
+import { useEffect, useRef } from "react";
+import { useRouter } from "next/navigation.js";
+import { useQuery } from "@tanstack/react-query";
+
+// src/lib/cookies.ts
+var getWindowCookieValue = ({
+  key,
+  window: window2,
+  parseJson = false
+}) => {
+  const cookie = window2.document.cookie;
+  if (!cookie) return null;
+  const cookies = cookie.split(";");
+  for (const c of cookies) {
+    const [name, value] = c.trim().split("=");
+    if (value && name === key) {
+      try {
+        const decodeURIComponentValue = decodeURIComponent(value);
+        return parseJson === true ? JSON.parse(decodeURIComponentValue) : decodeURIComponentValue;
+      } catch (e) {
+        return value;
+      }
+    }
+  }
+  return null;
+};
+
+// src/nextjs/hooks/useUserCookie.ts
+var getUserFromCookie = () => {
+  const userCookie = getWindowCookieValue({
+    key: "user" /* USER */,
+    window: globalThis.window,
+    parseJson: true
+  });
+  return userCookie;
+};
+var useUserCookie = () => {
+  const hasRunRef = useRef(false);
+  const router = useRouter();
+  const { data: user } = useQuery({
+    queryKey: ["user"],
+    queryFn: () => getUserFromCookie(),
+    refetchInterval: 2e3,
+    refetchIntervalInBackground: true,
+    enabled: !hasRunRef.current,
+    refetchOnWindowFocus: true
+  });
+  useEffect(() => {
+    if (user) {
+      if (!hasRunRef.current) {
+        hasRunRef.current = true;
+        router.refresh();
+      }
+    } else {
+      hasRunRef.current = false;
+    }
+  }, [user, router]);
+  return user != null ? user : null;
+};
+
+// src/nextjs/hooks/useTokenCookie.ts
+import { useEffect as useEffect2, useRef as useRef2 } from "react";
+import { useRouter as useRouter2 } from "next/navigation.js";
+import { useQuery as useQuery2 } from "@tanstack/react-query";
+var getTokenFromCookie = (tokenName) => {
+  return getWindowCookieValue({
+    key: tokenName,
+    window: globalThis.window,
+    parseJson: false
+  });
+};
+var useTokenCookie = (tokenName) => {
+  const hasRunRef = useRef2(false);
+  const router = useRouter2();
+  const { data: token } = useQuery2({
+    queryKey: ["token", tokenName],
+    queryFn: () => getTokenFromCookie(tokenName) || null,
+    refetchInterval: 2e3,
+    refetchIntervalInBackground: true,
+    enabled: !hasRunRef.current,
+    refetchOnWindowFocus: true
+  });
+  useEffect2(() => {
+    if (token) {
+      if (!hasRunRef.current) {
+        hasRunRef.current = true;
+        router.refresh();
+      }
+    } else {
+      hasRunRef.current = false;
+    }
+  }, [token, router]);
+  return token != null ? token : null;
+};
+
+// src/nextjs/providers/NextAuthProvider.tsx
+import { jsx } from "react/jsx-runtime";
+var queryClient = new QueryClient();
+var CivicNextAuthProvider = (_a) => {
+  var _b = _a, {
+    children
+  } = _b, props = __objRest(_b, [
+    "children"
+  ]);
+  const [redirectUrl, setRedirectUrl] = useState("");
+  const resolvedConfig = resolveAuthConfig();
+  const { clientId, oauthServer, callbackUrl, challengeUrl, logoutUrl } = resolvedConfig;
+  useEffect3(() => {
+    if (typeof globalThis.window !== "undefined") {
+      const currentUrl = globalThis.window.location.href;
+      setRedirectUrl(resolveCallbackUrl(resolvedConfig, currentUrl));
+    }
+  }, [callbackUrl, resolvedConfig]);
+  const user = useUserCookie();
+  const idToken = useTokenCookie("id_token" /* ID_TOKEN */);
+  const combinedUser = user ? __spreadProps(__spreadValues({}, user || {}), { idToken }) : null;
+  const sessionData = __spreadValues({
+    authenticated: !!user
+  }, idToken ? { idToken } : {});
+  const signOut = () => __async(void 0, null, function* () {
+    if (props.onSignOut) {
+      yield props.onSignOut();
+    }
+    window.location.href = logoutUrl;
+    return;
+  });
+  return /* @__PURE__ */ jsx(QueryClientProvider, { client: queryClient, children: /* @__PURE__ */ jsx(
+    AuthProvider,
+    __spreadProps(__spreadValues({}, props), {
+      redirectUrl,
+      config: { oauthServer },
+      clientId,
+      pkceConsumer: new ConfidentialClientPKCEConsumer(challengeUrl),
+      sessionData,
+      children: /* @__PURE__ */ jsx(
+        UserProvider,
+        {
+          storage: new NextjsClientStorage(),
+          user: combinedUser,
+          signOut,
+          children
+        }
+      )
+    })
+  ) });
+};
+export {
+  CivicNextAuthProvider as CivicAuthProvider,
+  useUserCookie
+};
+//# sourceMappingURL=client.mjs.map

package/dist/nextjs/client.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/nextjs/providers/NextAuthProvider.tsx","../../src/nextjs/hooks/useUserCookie.ts","../../src/lib/cookies.ts","../../src/nextjs/hooks/useTokenCookie.ts"],"sourcesContent":["\"use client\";\n/**\n * A very small context provider for the user object - it takes the user object from the cookie and provides it to the app.\n */\nimport { useEffect, useState } from \"react\";\nimport { AuthProvider, AuthProviderProps } from \"@/shared/AuthProvider.js\";\nimport { QueryClient, QueryClientProvider } from \"@tanstack/react-query\";\nimport { resolveAuthConfig } from \"@/nextjs/config.js\";\nimport { resolveCallbackUrl } from \"@/nextjs/utils.js\";\n\n// adding the styles import here to be added to the bundle\nimport \"@/styles.css\";\nimport { ConfidentialClientPKCEConsumer } from \"@/services/PKCE.js\";\nimport { NextjsClientStorage } from \"@/nextjs/cookies\";\nimport { UserProvider } from \"@/shared/UserProvider\";\nimport { useUserCookie } from \"../hooks/useUserCookie\";\nimport { OAuthTokens } from \"@/shared/types\";\nimport { useTokenCookie } from \"../hooks/useTokenCookie\";\nimport { User } from \"@/types\";\n\nconst queryClient = new QueryClient();\n\nexport type NextCivicAuthProviderProps = Omit<AuthProviderProps, \"clientId\">;\n\nexport const CivicNextAuthProvider = ({\n  children,\n  ...props\n}: NextCivicAuthProviderProps) => {\n  const [redirectUrl, setRedirectUrl] = useState<string>(\"\");\n  const resolvedConfig = resolveAuthConfig();\n  const { clientId, oauthServer, callbackUrl, challengeUrl, logoutUrl } =\n    resolvedConfig;\n\n  useEffect(() => {\n    if (typeof globalThis.window !== \"undefined\") {\n      const currentUrl = globalThis.window.location.href;\n      setRedirectUrl(resolveCallbackUrl(resolvedConfig, currentUrl));\n    }\n  }, [callbackUrl, resolvedConfig]);\n\n  const user = useUserCookie();\n  const idToken = useTokenCookie(OAuthTokens.ID_TOKEN);\n  const combinedUser = user ? ({ ...(user || {}), idToken } as User) : null;\n  const sessionData = {\n    authenticated: !!user,\n    ...(idToken ? { idToken } : {}),\n  };\n  const signOut = async (): Promise<void> => {\n    if (props.onSignOut) {\n      await props.onSignOut();\n    }\n    window.location.href = logoutUrl;\n    return;\n  };\n  return (\n    <QueryClientProvider client={queryClient}>\n      <AuthProvider\n        {...props}\n        redirectUrl={redirectUrl}\n        config={{ oauthServer }}\n        clientId={clientId}\n        pkceConsumer={new ConfidentialClientPKCEConsumer(challengeUrl)}\n        sessionData={sessionData}\n      >\n        <UserProvider\n          storage={new NextjsClientStorage()}\n          user={combinedUser}\n          signOut={signOut}\n        >\n          {children}\n        </UserProvider>\n      </AuthProvider>\n    </QueryClientProvider>\n  );\n};\n","\"use client\";\nimport { useEffect, useRef } from \"react\";\nimport { useRouter } from \"next/navigation.js\";\nimport { useQuery } from \"@tanstack/react-query\";\nimport { getWindowCookieValue } from \"@/lib/cookies.js\";\nimport { EmptyObject, User } from \"@/types\";\nimport { UserStorage } from \"@/shared/types\";\n\nconst getUserFromCookie = () => {\n  const userCookie = getWindowCookieValue({\n    key: UserStorage.USER,\n    window: globalThis.window,\n    parseJson: true,\n  });\n  return userCookie;\n};\n\nexport const useUserCookie = <T extends EmptyObject>() => {\n  const hasRunRef = useRef(false);\n  const router = useRouter();\n\n  const { data: user } = useQuery({\n    queryKey: [\"user\"],\n    queryFn: () => getUserFromCookie() as User<T> | null,\n    refetchInterval: 2000,\n    refetchIntervalInBackground: true,\n    enabled: !hasRunRef.current,\n    refetchOnWindowFocus: true,\n  });\n\n  useEffect(() => {\n    if (user) {\n      if (!hasRunRef.current) {\n        hasRunRef.current = true;\n        router.refresh();\n      }\n    } else {\n      hasRunRef.current = false;\n    }\n  }, [user, router]);\n\n  return user ?? null;\n};\n","const getWindowCookieValue = ({\n  key,\n  window,\n  parseJson = false,\n}: {\n  key: string;\n  window: Window;\n  parseJson?: boolean;\n}) => {\n  const cookie = window.document.cookie;\n  if (!cookie) return null;\n  const cookies = cookie.split(\";\");\n  for (const c of cookies) {\n    const [name, value] = c.trim().split(\"=\");\n    if (value && name === key) {\n      try {\n        const decodeURIComponentValue = decodeURIComponent(value);\n        return parseJson === true\n          ? JSON.parse(decodeURIComponentValue)\n          : decodeURIComponentValue;\n      } catch {\n        return value;\n      }\n    }\n  }\n  return null;\n};\nexport { getWindowCookieValue };\n","\"use client\";\nimport { useEffect, useRef } from \"react\";\nimport { useRouter } from \"next/navigation.js\";\nimport { useQuery } from \"@tanstack/react-query\";\nimport { getWindowCookieValue } from \"@/lib/cookies.js\";\nimport { OAuthTokens } from \"@/shared/types\";\n\nconst getTokenFromCookie = (tokenName: OAuthTokens): string => {\n  return getWindowCookieValue({\n    key: tokenName,\n    window: globalThis.window,\n    parseJson: false,\n  });\n};\n\nexport const useTokenCookie = (tokenName: OAuthTokens): string | null => {\n  const hasRunRef = useRef(false);\n  const router = useRouter();\n\n  const { data: token } = useQuery({\n    queryKey: [\"token\", tokenName],\n    queryFn: () => getTokenFromCookie(tokenName) || null,\n    refetchInterval: 2000,\n    refetchIntervalInBackground: true,\n    enabled: !hasRunRef.current,\n    refetchOnWindowFocus: true,\n  });\n\n  useEffect(() => {\n    if (token) {\n      if (!hasRunRef.current) {\n        hasRunRef.current = true;\n        router.refresh();\n      }\n    } else {\n      hasRunRef.current = false;\n    }\n  }, [token, router]);\n\n  return token ?? null;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;AAIA,SAAS,aAAAA,YAAW,gBAAgB;AAEpC,SAAS,aAAa,2BAA2B;;;ACLjD,SAAS,WAAW,cAAc;AAClC,SAAS,iBAAiB;AAC1B,SAAS,gBAAgB;;;ACHzB,IAAM,uBAAuB,CAAC;AAAA,EAC5B;AAAA,EACA,QAAAC;AAAA,EACA,YAAY;AACd,MAIM;AACJ,QAAM,SAASA,QAAO,SAAS;AAC/B,MAAI,CAAC,OAAQ,QAAO;AACpB,QAAM,UAAU,OAAO,MAAM,GAAG;AAChC,aAAW,KAAK,SAAS;AACvB,UAAM,CAAC,MAAM,KAAK,IAAI,EAAE,KAAK,EAAE,MAAM,GAAG;AACxC,QAAI,SAAS,SAAS,KAAK;AACzB,UAAI;AACF,cAAM,0BAA0B,mBAAmB,KAAK;AACxD,eAAO,cAAc,OACjB,KAAK,MAAM,uBAAuB,IAClC;AAAA,MACN,SAAQ;AACN,eAAO;AAAA,MACT;AAAA,IACF;AAAA,EACF;AACA,SAAO;AACT;;;ADlBA,IAAM,oBAAoB,MAAM;AAC9B,QAAM,aAAa,qBAAqB;AAAA,IACtC;AAAA,IACA,QAAQ,WAAW;AAAA,IACnB,WAAW;AAAA,EACb,CAAC;AACD,SAAO;AACT;AAEO,IAAM,gBAAgB,MAA6B;AACxD,QAAM,YAAY,OAAO,KAAK;AAC9B,QAAM,SAAS,UAAU;AAEzB,QAAM,EAAE,MAAM,KAAK,IAAI,SAAS;AAAA,IAC9B,UAAU,CAAC,MAAM;AAAA,IACjB,SAAS,MAAM,kBAAkB;AAAA,IACjC,iBAAiB;AAAA,IACjB,6BAA6B;AAAA,IAC7B,SAAS,CAAC,UAAU;AAAA,IACpB,sBAAsB;AAAA,EACxB,CAAC;AAED,YAAU,MAAM;AACd,QAAI,MAAM;AACR,UAAI,CAAC,UAAU,SAAS;AACtB,kBAAU,UAAU;AACpB,eAAO,QAAQ;AAAA,MACjB;AAAA,IACF,OAAO;AACL,gBAAU,UAAU;AAAA,IACtB;AAAA,EACF,GAAG,CAAC,MAAM,MAAM,CAAC;AAEjB,SAAO,sBAAQ;AACjB;;;AEzCA,SAAS,aAAAC,YAAW,UAAAC,eAAc;AAClC,SAAS,aAAAC,kBAAiB;AAC1B,SAAS,YAAAC,iBAAgB;AAIzB,IAAM,qBAAqB,CAAC,cAAmC;AAC7D,SAAO,qBAAqB;AAAA,IAC1B,KAAK;AAAA,IACL,QAAQ,WAAW;AAAA,IACnB,WAAW;AAAA,EACb,CAAC;AACH;AAEO,IAAM,iBAAiB,CAAC,cAA0C;AACvE,QAAM,YAAYC,QAAO,KAAK;AAC9B,QAAM,SAASC,WAAU;AAEzB,QAAM,EAAE,MAAM,MAAM,IAAIC,UAAS;AAAA,IAC/B,UAAU,CAAC,SAAS,SAAS;AAAA,IAC7B,SAAS,MAAM,mBAAmB,SAAS,KAAK;AAAA,IAChD,iBAAiB;AAAA,IACjB,6BAA6B;AAAA,IAC7B,SAAS,CAAC,UAAU;AAAA,IACpB,sBAAsB;AAAA,EACxB,CAAC;AAED,EAAAC,WAAU,MAAM;AACd,QAAI,OAAO;AACT,UAAI,CAAC,UAAU,SAAS;AACtB,kBAAU,UAAU;AACpB,eAAO,QAAQ;AAAA,MACjB;AAAA,IACF,OAAO;AACL,gBAAU,UAAU;AAAA,IACtB;AAAA,EACF,GAAG,CAAC,OAAO,MAAM,CAAC;AAElB,SAAO,wBAAS;AAClB;;;AHwBQ;AA5CR,IAAM,cAAc,IAAI,YAAY;AAI7B,IAAM,wBAAwB,CAAC,OAGJ;AAHI,eACpC;AAAA;AAAA,EAzBF,IAwBsC,IAEjC,kBAFiC,IAEjC;AAAA,IADH;AAAA;AAGA,QAAM,CAAC,aAAa,cAAc,IAAI,SAAiB,EAAE;AACzD,QAAM,iBAAiB,kBAAkB;AACzC,QAAM,EAAE,UAAU,aAAa,aAAa,cAAc,UAAU,IAClE;AAEF,EAAAC,WAAU,MAAM;AACd,QAAI,OAAO,WAAW,WAAW,aAAa;AAC5C,YAAM,aAAa,WAAW,OAAO,SAAS;AAC9C,qBAAe,mBAAmB,gBAAgB,UAAU,CAAC;AAAA,IAC/D;AAAA,EACF,GAAG,CAAC,aAAa,cAAc,CAAC;AAEhC,QAAM,OAAO,cAAc;AAC3B,QAAM,UAAU,wCAAmC;AACnD,QAAM,eAAe,OAAQ,iCAAM,QAAQ,CAAC,IAAf,EAAmB,QAAQ,KAAa;AACrE,QAAM,cAAc;AAAA,IAClB,eAAe,CAAC,CAAC;AAAA,KACb,UAAU,EAAE,QAAQ,IAAI,CAAC;AAE/B,QAAM,UAAU,MAA2B;AACzC,QAAI,MAAM,WAAW;AACnB,YAAM,MAAM,UAAU;AAAA,IACxB;AACA,WAAO,SAAS,OAAO;AACvB;AAAA,EACF;AACA,SACE,oBAAC,uBAAoB,QAAQ,aAC3B;AAAA,IAAC;AAAA,qCACK,QADL;AAAA,MAEC;AAAA,MACA,QAAQ,EAAE,YAAY;AAAA,MACtB;AAAA,MACA,cAAc,IAAI,+BAA+B,YAAY;AAAA,MAC7D;AAAA,MAEA;AAAA,QAAC;AAAA;AAAA,UACC,SAAS,IAAI,oBAAoB;AAAA,UACjC,MAAM;AAAA,UACN;AAAA,UAEC;AAAA;AAAA,MACH;AAAA;AAAA,EACF,GACF;AAEJ;","names":["useEffect","window","useEffect","useRef","useRouter","useQuery","useRef","useRouter","useQuery","useEffect","useEffect"]}

package/dist/nextjs.d.mts

@@ -2,11 +2,17 @@ import * as next_dist_shared_lib_image_config from 'next/dist/shared/lib/image-c
 import * as next_dist_lib_load_custom_routes from 'next/dist/lib/load-custom-routes';
 import * as next_dist_server_config_shared from 'next/dist/server/config-shared';
 import { NextConfig } from 'next';
-import { T as TokensCookieConfig, C as CookieConfig } from './types-b4c1koXj.mjs';
-import { U as User } from './types-HdCjGldB.mjs';
+import { T as TokensCookieConfig, a as CookieConfig, O as OAuthTokens, C as CodeVerifier } from './types-Bqm9OCZN.mjs';
+import { U as User, S as SessionData, a as UnknownObject } from './types-HdCjGldB.mjs';
 import { NextRequest, NextResponse } from 'next/server.js';
+import { NextResponse as NextResponse$1 } from 'next/server';
+import { C as CookieStorage, a as CookieStorageSettings } from './storage-BJPUpxhm.mjs';
 import 'oslo/oauth2';
 
+type CookiesConfigObject = {
+    tokens: TokensCookieConfig;
+    user: CookieConfig;
+};
 type AuthConfigWithDefaults = {
     clientId: string;
     oauthServer: string;
@@ -17,10 +23,7 @@ type AuthConfigWithDefaults = {
     challengeUrl: string;
     include: string[];
     exclude: string[];
-    cookies: {
-        tokens: TokensCookieConfig;
-        user: CookieConfig;
-    };
+    cookies: CookiesConfigObject;
 };
 type AuthConfig = Partial<AuthConfigWithDefaults>;
 /**
@@ -215,4 +218,29 @@ declare function auth(authConfig?: AuthConfig): (middleware: Middleware) => ((re
  */
 declare const handler: (authConfig?: {}) => (request: NextRequest) => Promise<NextResponse>;
 
-export { auth, authMiddleware, createCivicAuthPlugin, getUser, handler, withAuth };
+/**
+ * Creates HTTP-only cookies for authentication tokens
+ */
+declare const createTokenCookies: (response: NextResponse$1, sessionData: SessionData, config: AuthConfig) => void;
+/**
+ * Creates a client-readable cookie with user info
+ */
+declare const createUserInfoCookie: (response: NextResponse$1, user: User<UnknownObject> | null, sessionData: SessionData, config: AuthConfig) => void;
+/**
+ * Clears all authentication cookies
+ */
+declare const clearAuthCookies: (config: AuthConfig) => Promise<void>;
+type KeySetter = OAuthTokens | CodeVerifier;
+declare class NextjsCookieStorage extends CookieStorage {
+    readonly config: Partial<TokensCookieConfig>;
+    constructor(config?: Partial<TokensCookieConfig>);
+    get(key: string): string | null;
+    set(key: KeySetter, value: string): void;
+}
+declare class NextjsClientStorage extends CookieStorage {
+    constructor(config?: Partial<CookieStorageSettings>);
+    get(key: string): string | null;
+    set(key: string, value: string): void;
+}
+
+export { NextjsClientStorage, NextjsCookieStorage, auth, authMiddleware, clearAuthCookies, createCivicAuthPlugin, createTokenCookies, createUserInfoCookie, getUser, handler, withAuth };

package/dist/nextjs.d.ts

@@ -2,11 +2,17 @@ import * as next_dist_shared_lib_image_config from 'next/dist/shared/lib/image-c
 import * as next_dist_lib_load_custom_routes from 'next/dist/lib/load-custom-routes';
 import * as next_dist_server_config_shared from 'next/dist/server/config-shared';
 import { NextConfig } from 'next';
-import { T as TokensCookieConfig, C as CookieConfig } from './types-b4c1koXj.js';
-import { U as User } from './types-HdCjGldB.js';
+import { T as TokensCookieConfig, a as CookieConfig, O as OAuthTokens, C as CodeVerifier } from './types-Bqm9OCZN.js';
+import { U as User, S as SessionData, a as UnknownObject } from './types-HdCjGldB.js';
 import { NextRequest, NextResponse } from 'next/server.js';
+import { NextResponse as NextResponse$1 } from 'next/server';
+import { C as CookieStorage, a as CookieStorageSettings } from './storage-B2eAQNdv.js';
 import 'oslo/oauth2';
 
+type CookiesConfigObject = {
+    tokens: TokensCookieConfig;
+    user: CookieConfig;
+};
 type AuthConfigWithDefaults = {
     clientId: string;
     oauthServer: string;
@@ -17,10 +23,7 @@ type AuthConfigWithDefaults = {
     challengeUrl: string;
     include: string[];
     exclude: string[];
-    cookies: {
-        tokens: TokensCookieConfig;
-        user: CookieConfig;
-    };
+    cookies: CookiesConfigObject;
 };
 type AuthConfig = Partial<AuthConfigWithDefaults>;
 /**
@@ -215,4 +218,29 @@ declare function auth(authConfig?: AuthConfig): (middleware: Middleware) => ((re
  */
 declare const handler: (authConfig?: {}) => (request: NextRequest) => Promise<NextResponse>;
 
-export { auth, authMiddleware, createCivicAuthPlugin, getUser, handler, withAuth };
+/**
+ * Creates HTTP-only cookies for authentication tokens
+ */
+declare const createTokenCookies: (response: NextResponse$1, sessionData: SessionData, config: AuthConfig) => void;
+/**
+ * Creates a client-readable cookie with user info
+ */
+declare const createUserInfoCookie: (response: NextResponse$1, user: User<UnknownObject> | null, sessionData: SessionData, config: AuthConfig) => void;
+/**
+ * Clears all authentication cookies
+ */
+declare const clearAuthCookies: (config: AuthConfig) => Promise<void>;
+type KeySetter = OAuthTokens | CodeVerifier;
+declare class NextjsCookieStorage extends CookieStorage {
+    readonly config: Partial<TokensCookieConfig>;
+    constructor(config?: Partial<TokensCookieConfig>);
+    get(key: string): string | null;
+    set(key: KeySetter, value: string): void;
+}
+declare class NextjsClientStorage extends CookieStorage {
+    constructor(config?: Partial<CookieStorageSettings>);
+    get(key: string): string | null;
+    set(key: string, value: string): void;
+}
+
+export { NextjsClientStorage, NextjsCookieStorage, auth, authMiddleware, clearAuthCookies, createCivicAuthPlugin, createTokenCookies, createUserInfoCookie, getUser, handler, withAuth };