npm - @clerk/shared - Versions diffs - 3.31.1 → 3.31.2-canary.v20251107164741 - Mend

@clerk/shared 3.31.1 → 3.31.2-canary.v20251107164741

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (576) hide show

package/dist/runtime/alternativePhoneCode.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { PhoneCodeChannelData } from "./index-OCkMWBUr.mjs";
+import { nu as PhoneCodeChannelData } from "./index-BmFYQinq.mjs";
 //#region src/alternativePhoneCode.d.ts
 declare const ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[];

package/dist/runtime/alternativePhoneCode.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { PhoneCodeChannelData } from "./index-jRkVeeXT.js";
+import { nu as PhoneCodeChannelData } from "./index-DEeSkCwV.js";
 //#region src/alternativePhoneCode.d.ts
 declare const ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[];

package/dist/runtime/alternativePhoneCode.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"alternativePhoneCode.js","names":["ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[]"~~,"channel?: string"~~],"sources":["../../src/alternativePhoneCode.ts"],"sourcesContent":["import type { PhoneCodeChannelData } from './types';\n\nexport const ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[] = [\n {\n channel: 'whatsapp',\n name: 'WhatsApp',\n },\n];\n\nexport const getAlternativePhoneCodeProviderData = (channel?: string): PhoneCodeChannelData \| null => {\n if (!channel) {\n return null;\n }\n return ALTERNATIVE_PHONE_CODE_PROVIDERS.find(p => p.channel === channel) \|\| null;\n};\n"],"mappings":";;AAEA,MAAaA,mCAA2D,CACtE;CACE,SAAS;CACT,MAAM;~~AACP~~,CACF;AAED,MAAa,~~sCAAsC~~,~~CAACC,~~YAAkD;AACpG,~~MAAK~~,QACH,QAAO;AAET,QAAO,iCAAiC,~~KAAK~~,~~OAAK~~,EAAE,YAAY,QAAQ,IAAI~~;AAC7E~~"}
1	+ {"version":3,"file":"alternativePhoneCode.js","names":["ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[]"],"sources":["../../src/alternativePhoneCode.ts"],"sourcesContent":["import type { PhoneCodeChannelData } from './types';\n\nexport const ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[] = [\n {\n channel: 'whatsapp',\n name: 'WhatsApp',\n },\n];\n\nexport const getAlternativePhoneCodeProviderData = (channel?: string): PhoneCodeChannelData \| null => {\n if (!channel) {\n return null;\n }\n return ALTERNATIVE_PHONE_CODE_PROVIDERS.find(p => p.channel === channel) \|\| null;\n};\n"],"mappings":";;AAEA,MAAaA,mCAA2D,CACtE;CACE,SAAS;CACT,MAAM;CACP,CACF;AAED,MAAa,uCAAuC,YAAkD;AACpG,KAAI,CAAC,QACH,QAAO;AAET,QAAO,iCAAiC,MAAK,MAAK,EAAE,YAAY,QAAQ,IAAI"}

package/dist/runtime/alternativePhoneCode.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"alternativePhoneCode.mjs","names":["ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[]"~~,"channel?: string"~~],"sources":["../../src/alternativePhoneCode.ts"],"sourcesContent":["import type { PhoneCodeChannelData } from './types';\n\nexport const ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[] = [\n {\n channel: 'whatsapp',\n name: 'WhatsApp',\n },\n];\n\nexport const getAlternativePhoneCodeProviderData = (channel?: string): PhoneCodeChannelData \| null => {\n if (!channel) {\n return null;\n }\n return ALTERNATIVE_PHONE_CODE_PROVIDERS.find(p => p.channel === channel) \|\| null;\n};\n"],"mappings":";AAEA,MAAaA,mCAA2D,CACtE;CACE,SAAS;CACT,MAAM;~~AACP~~,CACF;AAED,MAAa,~~sCAAsC~~,~~CAACC,~~YAAkD;AACpG,~~MAAK~~,QACH,QAAO;AAET,QAAO,iCAAiC,~~KAAK~~,~~OAAK~~,EAAE,YAAY,QAAQ,IAAI~~;AAC7E~~"}
1	+ {"version":3,"file":"alternativePhoneCode.mjs","names":["ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[]"],"sources":["../../src/alternativePhoneCode.ts"],"sourcesContent":["import type { PhoneCodeChannelData } from './types';\n\nexport const ALTERNATIVE_PHONE_CODE_PROVIDERS: PhoneCodeChannelData[] = [\n {\n channel: 'whatsapp',\n name: 'WhatsApp',\n },\n];\n\nexport const getAlternativePhoneCodeProviderData = (channel?: string): PhoneCodeChannelData \| null => {\n if (!channel) {\n return null;\n }\n return ALTERNATIVE_PHONE_CODE_PROVIDERS.find(p => p.channel === channel) \|\| null;\n};\n"],"mappings":";AAEA,MAAaA,mCAA2D,CACtE;CACE,SAAS;CACT,MAAM;CACP,CACF;AAED,MAAa,uCAAuC,YAAkD;AACpG,KAAI,CAAC,QACH,QAAO;AAET,QAAO,iCAAiC,MAAK,MAAK,EAAE,YAAY,QAAQ,IAAI"}

package/dist/runtime/{apiUrlFromPublishableKey-DFxUPTKg.mjs → apiUrlFromPublishableKey-BrEJDXM6.mjs} RENAMED Viewed

@@ -1,5 +1,5 @@
-import { LEGACY_DEV_INSTANCE_SUFFIXES, LOCAL_API_URL, LOCAL_ENV_SUFFIXES, PROD_API_URL, STAGING_API_URL, STAGING_ENV_SUFFIXES } from "./constants-ByUssRbE.mjs";
-import { parsePublishableKey } from "./keys-Dcilj3cS.mjs";
+import { a as LOCAL_ENV_SUFFIXES, c as STAGING_ENV_SUFFIXES, i as LOCAL_API_URL, o as PROD_API_URL, r as LEGACY_DEV_INSTANCE_SUFFIXES, s as STAGING_API_URL } from "./constants-Bp0qtelQ.mjs";
+import { u as parsePublishableKey } from "./keys-BGyzAyGu.mjs";
 //#region src/apiUrlFromPublishableKey.ts
 /**
@@ -17,5 +17,5 @@ const apiUrlFromPublishableKey = (publishableKey) => {
 };
 //#endregion
-export { apiUrlFromPublishableKey };
-//# sourceMappingURL=apiUrlFromPublishableKey-DFxUPTKg.mjs.map
+export { apiUrlFromPublishableKey as t };
+//# sourceMappingURL=apiUrlFromPublishableKey-BrEJDXM6.mjs.map

package/dist/runtime/apiUrlFromPublishableKey-BrEJDXM6.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"apiUrlFromPublishableKey-BrEJDXM6.mjs","names":[],"sources":["../../src/apiUrlFromPublishableKey.ts"],"sourcesContent":["import {\n LEGACY_DEV_INSTANCE_SUFFIXES,\n LOCAL_API_URL,\n LOCAL_ENV_SUFFIXES,\n PROD_API_URL,\n STAGING_API_URL,\n STAGING_ENV_SUFFIXES,\n} from './constants';\nimport { parsePublishableKey } from './keys';\n\n/**\n * Get the correct API url based on the publishable key.\n *\n * @param publishableKey - The publishable key to parse.\n * @returns One of Clerk's API URLs.\n */\nexport const apiUrlFromPublishableKey = (publishableKey: string) => {\n const frontendApi = parsePublishableKey(publishableKey)?.frontendApi;\n\n if (frontendApi?.startsWith('clerk.') && LEGACY_DEV_INSTANCE_SUFFIXES.some(suffix => frontendApi?.endsWith(suffix))) {\n return PROD_API_URL;\n }\n\n if (LOCAL_ENV_SUFFIXES.some(suffix => frontendApi?.endsWith(suffix))) {\n return LOCAL_API_URL;\n }\n if (STAGING_ENV_SUFFIXES.some(suffix => frontendApi?.endsWith(suffix))) {\n return STAGING_API_URL;\n }\n return PROD_API_URL;\n};\n"],"mappings":";;;;;;;;;;AAgBA,MAAa,4BAA4B,mBAA2B;CAClE,MAAM,cAAc,oBAAoB,eAAe,EAAE;AAEzD,KAAI,aAAa,WAAW,SAAS,IAAI,6BAA6B,MAAK,WAAU,aAAa,SAAS,OAAO,CAAC,CACjH,QAAO;AAGT,KAAI,mBAAmB,MAAK,WAAU,aAAa,SAAS,OAAO,CAAC,CAClE,QAAO;AAET,KAAI,qBAAqB,MAAK,WAAU,aAAa,SAAS,OAAO,CAAC,CACpE,QAAO;AAET,QAAO"}

package/dist/runtime/{apiUrlFromPublishableKey-BK2JHLjb.d.ts → apiUrlFromPublishableKey-CEUyf_FP.d.ts} RENAMED Viewed

@@ -5,7 +5,7 @@
  * @param publishableKey - The publishable key to parse.
  * @returns One of Clerk's API URLs.
  */
-declare const apiUrlFromPublishableKey: (publishableKey: string) => "https://api.lclclerk.com" | "https://api.clerkstage.dev" | "https://api.clerk.com";
+declare const apiUrlFromPublishableKey: (publishableKey: string) => "https://api.clerk.com" | "https://api.lclclerk.com" | "https://api.clerkstage.dev";
 //#endregion
-export { apiUrlFromPublishableKey };
-//# sourceMappingURL=apiUrlFromPublishableKey-BK2JHLjb.d.ts.map
+export { apiUrlFromPublishableKey as t };
+//# sourceMappingURL=apiUrlFromPublishableKey-CEUyf_FP.d.ts.map

package/dist/runtime/apiUrlFromPublishableKey-CEUyf_FP.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"apiUrlFromPublishableKey-CEUyf_FP.d.ts","names":[],"sources":["../../src/apiUrlFromPublishableKey.ts"],"sourcesContent":[],"mappings":";;AAgBA;;;;;cAAa"}

package/dist/runtime/{apiUrlFromPublishableKey-Bjv-2nJ1.js → apiUrlFromPublishableKey-CY46bNyR.js} RENAMED Viewed

@@ -1,5 +1,5 @@
 const require_constants = require('./constants-B8tEdUlH.js');
-const require_keys = require('./keys-CHdYWeEj.js');
+const require_keys = require('./keys-wr08qE7Y.js');
 //#region src/apiUrlFromPublishableKey.ts
 /**
@@ -23,4 +23,4 @@ Object.defineProperty(exports, 'apiUrlFromPublishableKey', {
     return apiUrlFromPublishableKey;
   }
 });
-//# sourceMappingURL=apiUrlFromPublishableKey-Bjv-2nJ1.js.map
+//# sourceMappingURL=apiUrlFromPublishableKey-CY46bNyR.js.map

package/dist/runtime/apiUrlFromPublishableKey-CY46bNyR.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"apiUrlFromPublishableKey-CY46bNyR.js","names":["parsePublishableKey","LEGACY_DEV_INSTANCE_SUFFIXES","PROD_API_URL","LOCAL_ENV_SUFFIXES","LOCAL_API_URL","STAGING_ENV_SUFFIXES","STAGING_API_URL"],"sources":["../../src/apiUrlFromPublishableKey.ts"],"sourcesContent":["import {\n LEGACY_DEV_INSTANCE_SUFFIXES,\n LOCAL_API_URL,\n LOCAL_ENV_SUFFIXES,\n PROD_API_URL,\n STAGING_API_URL,\n STAGING_ENV_SUFFIXES,\n} from './constants';\nimport { parsePublishableKey } from './keys';\n\n/**\n * Get the correct API url based on the publishable key.\n *\n * @param publishableKey - The publishable key to parse.\n * @returns One of Clerk's API URLs.\n */\nexport const apiUrlFromPublishableKey = (publishableKey: string) => {\n const frontendApi = parsePublishableKey(publishableKey)?.frontendApi;\n\n if (frontendApi?.startsWith('clerk.') && LEGACY_DEV_INSTANCE_SUFFIXES.some(suffix => frontendApi?.endsWith(suffix))) {\n return PROD_API_URL;\n }\n\n if (LOCAL_ENV_SUFFIXES.some(suffix => frontendApi?.endsWith(suffix))) {\n return LOCAL_API_URL;\n }\n if (STAGING_ENV_SUFFIXES.some(suffix => frontendApi?.endsWith(suffix))) {\n return STAGING_API_URL;\n }\n return PROD_API_URL;\n};\n"],"mappings":";;;;;;;;;;AAgBA,MAAa,4BAA4B,mBAA2B;CAClE,MAAM,cAAcA,iCAAoB,eAAe,EAAE;AAEzD,KAAI,aAAa,WAAW,SAAS,IAAIC,+CAA6B,MAAK,WAAU,aAAa,SAAS,OAAO,CAAC,CACjH,QAAOC;AAGT,KAAIC,qCAAmB,MAAK,WAAU,aAAa,SAAS,OAAO,CAAC,CAClE,QAAOC;AAET,KAAIC,uCAAqB,MAAK,WAAU,aAAa,SAAS,OAAO,CAAC,CACpE,QAAOC;AAET,QAAOJ"}

package/dist/runtime/{apiUrlFromPublishableKey-Bn4sVlIN.d.mts → apiUrlFromPublishableKey-mDB2xBW0.d.mts} RENAMED Viewed

@@ -5,7 +5,7 @@
  * @param publishableKey - The publishable key to parse.
  * @returns One of Clerk's API URLs.
  */
-declare const apiUrlFromPublishableKey: (publishableKey: string) => "https://api.lclclerk.com" | "https://api.clerkstage.dev" | "https://api.clerk.com";
+declare const apiUrlFromPublishableKey: (publishableKey: string) => "https://api.clerk.com" | "https://api.lclclerk.com" | "https://api.clerkstage.dev";
 //#endregion
-export { apiUrlFromPublishableKey as apiUrlFromPublishableKey$1 };
-//# sourceMappingURL=apiUrlFromPublishableKey-Bn4sVlIN.d.mts.map
+export { apiUrlFromPublishableKey as t };
+//# sourceMappingURL=apiUrlFromPublishableKey-mDB2xBW0.d.mts.map

package/dist/runtime/apiUrlFromPublishableKey-mDB2xBW0.d.mts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"apiUrlFromPublishableKey-mDB2xBW0.d.mts","names":[],"sources":["../../src/apiUrlFromPublishableKey.ts"],"sourcesContent":[],"mappings":";;AAgBA;;;;;cAAa"}

package/dist/runtime/apiUrlFromPublishableKey.d.mts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { apiUrlFromPublishableKey$1 as apiUrlFromPublishableKey } from "./apiUrlFromPublishableKey-Bn4sVlIN.mjs";
+import { t as apiUrlFromPublishableKey } from "./apiUrlFromPublishableKey-mDB2xBW0.mjs";
 export { apiUrlFromPublishableKey };

package/dist/runtime/apiUrlFromPublishableKey.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { apiUrlFromPublishableKey } from "./apiUrlFromPublishableKey-BK2JHLjb.js";
+import { t as apiUrlFromPublishableKey } from "./apiUrlFromPublishableKey-CEUyf_FP.js";
 export { apiUrlFromPublishableKey };

package/dist/runtime/apiUrlFromPublishableKey.js CHANGED Viewed

@@ -1,7 +1,7 @@
 require('./constants-B8tEdUlH.js');
 require('./isomorphicAtob-Chnw1Md3.js');
 require('./isomorphicBtoa-oWNvIgSP.js');
-require('./keys-CHdYWeEj.js');
-const require_apiUrlFromPublishableKey = require('./apiUrlFromPublishableKey-Bjv-2nJ1.js');
+require('./keys-wr08qE7Y.js');
+const require_apiUrlFromPublishableKey = require('./apiUrlFromPublishableKey-CY46bNyR.js');
 exports.apiUrlFromPublishableKey = require_apiUrlFromPublishableKey.apiUrlFromPublishableKey;

package/dist/runtime/apiUrlFromPublishableKey.mjs CHANGED Viewed

@@ -1,7 +1,7 @@
-import "./constants-ByUssRbE.mjs";
-import "./isomorphicAtob-DybBXGFR.mjs";
-import "./isomorphicBtoa-Dr7WubZv.mjs";
-import "./keys-Dcilj3cS.mjs";
-import { apiUrlFromPublishableKey } from "./apiUrlFromPublishableKey-DFxUPTKg.mjs";
+import "./constants-Bp0qtelQ.mjs";
+import "./isomorphicAtob-CYR5fxvZ.mjs";
+import "./isomorphicBtoa-Db71q4D6.mjs";
+import "./keys-BGyzAyGu.mjs";
+import { t as apiUrlFromPublishableKey } from "./apiUrlFromPublishableKey-BrEJDXM6.mjs";
 export { apiUrlFromPublishableKey };

package/dist/runtime/authorization-CJB1hjGu.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authorization-CJB1hjGu.js","names":["TYPES_TO_OBJECTS: TypesToConfig","maxAge: any","level: any","type: any","value: string","checkOrgAuthorization: CheckOrgAuthorization","claim: string","featureOrPlan: string","checkBillingAuthorization: CheckBillingAuthorization","fea: string \| null \| undefined","config: ReverificationConfig \| undefined \| null","config: ReverificationConfig","config","checkReverificationAuthorization: CheckReverificationAuthorization","options: AuthorizationOptions"],"sources":["../../src/authorization.ts"],"sourcesContent":["import type {\n ActClaim,\n CheckAuthorizationWithCustomPermissions,\n GetToken,\n JwtPayload,\n OrganizationCustomPermissionKey,\n OrganizationCustomRoleKey,\n PendingSessionOptions,\n ReverificationConfig,\n SessionStatusClaim,\n SessionVerificationLevel,\n SessionVerificationTypes,\n SignOut,\n UseAuthReturn,\n} from './types';\n\ntype TypesToConfig = Record<SessionVerificationTypes, Exclude<ReverificationConfig, SessionVerificationTypes>>;\ntype AuthorizationOptions = {\n userId: string \| null \| undefined;\n orgId: string \| null \| undefined;\n orgRole: string \| null \| undefined;\n orgPermissions: string[] \| null \| undefined;\n factorVerificationAge: [number, number] \| null;\n features: string \| null \| undefined;\n plans: string \| null \| undefined;\n};\n\ntype CheckOrgAuthorization = (\n params: { role?: OrganizationCustomRoleKey; permission?: OrganizationCustomPermissionKey },\n options: Pick<AuthorizationOptions, 'orgId' \| 'orgRole' \| 'orgPermissions'>,\n) => boolean \| null;\n\ntype CheckBillingAuthorization = (\n params: { feature?: string; plan?: string },\n options: Pick<AuthorizationOptions, 'plans' \| 'features'>,\n) => boolean \| null;\n\ntype CheckReverificationAuthorization = (\n params: {\n reverification?: ReverificationConfig;\n },\n { factorVerificationAge }: AuthorizationOptions,\n) => boolean \| null;\n\nconst TYPES_TO_OBJECTS: TypesToConfig = {\n strict_mfa: {\n afterMinutes: 10,\n level: 'multi_factor',\n },\n strict: {\n afterMinutes: 10,\n level: 'second_factor',\n },\n moderate: {\n afterMinutes: 60,\n level: 'second_factor',\n },\n lax: {\n afterMinutes: 1_440,\n level: 'second_factor',\n },\n};\n\nconst ALLOWED_LEVELS = new Set<SessionVerificationLevel>(['first_factor', 'second_factor', 'multi_factor']);\n\nconst ALLOWED_TYPES = new Set<SessionVerificationTypes>(['strict_mfa', 'strict', 'moderate', 'lax']);\n\n// Helper functions\nconst isValidMaxAge = (maxAge: any) => typeof maxAge === 'number' && maxAge > 0;\nconst isValidLevel = (level: any) => ALLOWED_LEVELS.has(level);\nconst isValidVerificationType = (type: any) => ALLOWED_TYPES.has(type);\n\nconst prefixWithOrg = (value: string) => value.replace(/^(org:)/, 'org:');\n\n/\n Checks if a user has the required organization-level authorization.\n * Verifies if the user has the specified role or permission within their organization.\n * @returns null, if unable to determine due to missing data or unspecified role/permission.\n /\nconst checkOrgAuthorization: CheckOrgAuthorization = (params, options) => {\n const { orgId, orgRole, orgPermissions } = options;\n if (!params.role && !params.permission) {\n return null;\n }\n\n if (!orgId \|\| !orgRole \|\| !orgPermissions) {\n return null;\n }\n\n if (params.permission) {\n return orgPermissions.includes(prefixWithOrg(params.permission));\n }\n\n if (params.role) {\n return prefixWithOrg(orgRole) === prefixWithOrg(params.role);\n }\n return null;\n};\n\nconst checkForFeatureOrPlan = (claim: string, featureOrPlan: string) => {\n const { org: orgFeatures, user: userFeatures } = splitByScope(claim);\n const [scope, _id] = featureOrPlan.split(':');\n const id = _id \|\| scope;\n\n if (scope === 'org') {\n return orgFeatures.includes(id);\n } else if (scope === 'user') {\n return userFeatures.includes(id);\n } else {\n // Since org scoped features will not exist if there is not an active org, merging is safe.\n return [...orgFeatures, ...userFeatures].includes(id);\n }\n};\n\nconst checkBillingAuthorization: CheckBillingAuthorization = (params, options) => {\n const { features, plans } = options;\n\n if (params.feature && features) {\n return checkForFeatureOrPlan(features, params.feature);\n }\n\n if (params.plan && plans) {\n return checkForFeatureOrPlan(plans, params.plan);\n }\n return null;\n};\n\nconst splitByScope = (fea: string \| null \| undefined) => {\n const features = fea ? fea.split(',').map(f => f.trim()) : [];\n\n // TODO: make this more efficient\n return {\n org: features.filter(f => f.split(':')[0].includes('o')).map(f => f.split(':')[1]),\n user: features.filter(f => f.split(':')[0].includes('u')).map(f => f.split(':')[1]),\n };\n};\n\nconst validateReverificationConfig = (config: ReverificationConfig \| undefined \| null) => {\n if (!config) {\n return false;\n }\n\n const convertConfigToObject = (config: ReverificationConfig) => {\n if (typeof config === 'string') {\n return TYPES_TO_OBJECTS[config];\n }\n return config;\n };\n\n const isValidStringValue = typeof config === 'string' && isValidVerificationType(config);\n const isValidObjectValue =\n typeof config === 'object' && isValidLevel(config.level) && isValidMaxAge(config.afterMinutes);\n\n if (isValidStringValue \|\| isValidObjectValue) {\n return convertConfigToObject.bind(null, config);\n }\n\n return false;\n};\n\n/\n Evaluates if the user meets re-verification authentication requirements.\n * Compares the user's factor verification ages against the specified maxAge.\n * Handles different verification levels (first factor, second factor, multi-factor).\n * @returns null, if requirements or verification data are missing.\n /\nconst checkReverificationAuthorization: CheckReverificationAuthorization = (params, { factorVerificationAge }) => {\n if (!params.reverification \|\| !factorVerificationAge) {\n return null;\n }\n\n const isValidReverification = validateReverificationConfig(params.reverification);\n if (!isValidReverification) {\n return null;\n }\n\n const { level, afterMinutes } = isValidReverification();\n const [factor1Age, factor2Age] = factorVerificationAge;\n\n // -1 indicates the factor group (1fa,2fa) is not enabled\n // -1 for 1fa is not a valid scenario, but we need to make sure we handle it properly\n const isValidFactor1 = factor1Age !== -1 ? afterMinutes > factor1Age : null;\n const isValidFactor2 = factor2Age !== -1 ? afterMinutes > factor2Age : null;\n\n switch (level) {\n case 'first_factor':\n return isValidFactor1;\n case 'second_factor':\n return factor2Age !== -1 ? isValidFactor2 : isValidFactor1;\n case 'multi_factor':\n return factor2Age === -1 ? isValidFactor1 : isValidFactor1 && isValidFactor2;\n }\n};\n\n/\n Creates a function for comprehensive user authorization checks.\n * Combines organization-level and reverification authentication checks.\n * The returned function authorizes if both checks pass, or if at least one passes\n * when the other is indeterminate. Fails if userId is missing.\n /\nconst createCheckAuthorization = (options: AuthorizationOptions): CheckAuthorizationWithCustomPermissions => {\n return (params): boolean => {\n if (!options.userId) {\n return false;\n }\n\n const billingAuthorization = checkBillingAuthorization(params, options);\n const orgAuthorization = checkOrgAuthorization(params, options);\n const reverificationAuthorization = checkReverificationAuthorization(params, options);\n\n if ([billingAuthorization \|\| orgAuthorization, reverificationAuthorization].some(a => a === null)) {\n return [billingAuthorization \|\| orgAuthorization, reverificationAuthorization].some(a => a === true);\n }\n\n return [billingAuthorization \|\| orgAuthorization, reverificationAuthorization].every(a => a === true);\n };\n};\n\ntype AuthStateOptions = {\n authObject: {\n userId?: string \| null;\n sessionId?: string \| null;\n sessionStatus?: SessionStatusClaim \| null;\n sessionClaims?: JwtPayload \| null;\n actor?: ActClaim \| null;\n orgId?: string \| null;\n orgRole?: OrganizationCustomRoleKey \| null;\n orgSlug?: string \| null;\n orgPermissions?: OrganizationCustomPermissionKey[] \| null;\n getToken: GetToken;\n signOut: SignOut;\n has: (params: Parameters<CheckAuthorizationWithCustomPermissions>[0]) => boolean;\n };\n options: PendingSessionOptions;\n};\n\n/\n Shared utility function that centralizes auth state resolution logic,\n * preventing duplication across different packages.\n * @internal\n */\nconst resolveAuthState = ({\n authObject: {\n sessionId,\n sessionStatus,\n userId,\n actor,\n orgId,\n orgRole,\n orgSlug,\n signOut,\n getToken,\n has,\n sessionClaims,\n },\n options: { treatPendingAsSignedOut = true },\n}: AuthStateOptions): UseAuthReturn \| undefined => {\n if (sessionId === undefined && userId === undefined) {\n return {\n isLoaded: false,\n isSignedIn: undefined,\n sessionId,\n sessionClaims: undefined,\n userId,\n actor: undefined,\n orgId: undefined,\n orgRole: undefined,\n orgSlug: undefined,\n has: undefined,\n signOut,\n getToken,\n } as const;\n }\n\n if (sessionId === null && userId === null) {\n return {\n isLoaded: true,\n isSignedIn: false,\n sessionId,\n userId,\n sessionClaims: null,\n actor: null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has: () => false,\n signOut,\n getToken,\n } as const;\n }\n\n if (treatPendingAsSignedOut && sessionStatus === 'pending') {\n return {\n isLoaded: true,\n isSignedIn: false,\n sessionId: null,\n userId: null,\n sessionClaims: null,\n actor: null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has: () => false,\n signOut,\n getToken,\n } as const;\n }\n\n if (!!sessionId && !!sessionClaims && !!userId && !!orgId && !!orgRole) {\n return {\n isLoaded: true,\n isSignedIn: true,\n sessionId,\n sessionClaims,\n userId,\n actor: actor \|\| null,\n orgId,\n orgRole,\n orgSlug: orgSlug \|\| null,\n has,\n signOut,\n getToken,\n } as const;\n }\n\n if (!!sessionId && !!sessionClaims && !!userId && !orgId) {\n return {\n isLoaded: true,\n isSignedIn: true,\n sessionId,\n sessionClaims,\n userId,\n actor: actor \|\| null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has,\n signOut,\n getToken,\n } as const;\n }\n};\n\nexport { createCheckAuthorization, resolveAuthState, splitByScope, validateReverificationConfig };\n"],"mappings":";;AA4CA,MAAMA,mBAAkC;CACtC,YAAY;EACV,cAAc;EACd,OAAO;CACR;CACD,QAAQ;EACN,cAAc;EACd,OAAO;CACR;CACD,UAAU;EACR,cAAc;EACd,OAAO;CACR;CACD,KAAK;EACH,cAAc;EACd,OAAO;CACR;AACF;AAED,MAAM,iBAAiB,IAAI,IAA8B;CAAC;CAAgB;CAAiB;AAAe;AAE1G,MAAM,gBAAgB,IAAI,IAA8B;CAAC;CAAc;CAAU;CAAY;AAAM;AAGnG,MAAM,gBAAgB,CAACC,kBAAuB,WAAW,YAAY,SAAS;AAC9E,MAAM,eAAe,CAACC,UAAe,eAAe,IAAI,MAAM;AAC9D,MAAM,0BAA0B,CAACC,SAAc,cAAc,IAAI,KAAK;AAEtE,MAAM,gBAAgB,CAACC,UAAkB,MAAM,QAAQ,YAAY,OAAO;;;;;;AAO1E,MAAMC,wBAA+C,CAAC,QAAQ,YAAY;CACxE,MAAM,EAAE,OAAO,SAAS,gBAAgB,GAAG;AAC3C,MAAK,OAAO,SAAS,OAAO,WAC1B,QAAO;AAGT,MAAK,UAAU,YAAY,eACzB,QAAO;AAGT,KAAI,OAAO,WACT,QAAO,eAAe,SAAS,cAAc,OAAO,WAAW,CAAC;AAGlE,KAAI,OAAO,KACT,QAAO,cAAc,QAAQ,KAAK,cAAc,OAAO,KAAK;AAE9D,QAAO;AACR;AAED,MAAM,wBAAwB,CAACC,OAAeC,kBAA0B;CACtE,MAAM,EAAE,KAAK,aAAa,MAAM,cAAc,GAAG,aAAa,MAAM;CACpE,MAAM,CAAC,OAAO,IAAI,GAAG,cAAc,MAAM,IAAI;CAC7C,MAAM,KAAK,OAAO;AAElB,KAAI,UAAU,MACZ,QAAO,YAAY,SAAS,GAAG;UACtB,UAAU,OACnB,QAAO,aAAa,SAAS,GAAG;KAGhC,QAAO,CAAC,GAAG,aAAa,GAAG,YAAa,EAAC,SAAS,GAAG;AAExD;AAED,MAAMC,4BAAuD,CAAC,QAAQ,YAAY;CAChF,MAAM,EAAE,UAAU,OAAO,GAAG;AAE5B,KAAI,OAAO,WAAW,SACpB,QAAO,sBAAsB,UAAU,OAAO,QAAQ;AAGxD,KAAI,OAAO,QAAQ,MACjB,QAAO,sBAAsB,OAAO,OAAO,KAAK;AAElD,QAAO;AACR;AAED,MAAM,eAAe,CAACC,QAAmC;CACvD,MAAM,WAAW,MAAM,IAAI,MAAM,IAAI,CAAC,IAAI,OAAK,EAAE,MAAM,CAAC,GAAG,CAAE;AAG7D,QAAO;EACL,KAAK,SAAS,OAAO,OAAK,EAAE,MAAM,IAAI,CAAC,GAAG,SAAS,IAAI,CAAC,CAAC,IAAI,OAAK,EAAE,MAAM,IAAI,CAAC,GAAG;EAClF,MAAM,SAAS,OAAO,OAAK,EAAE,MAAM,IAAI,CAAC,GAAG,SAAS,IAAI,CAAC,CAAC,IAAI,OAAK,EAAE,MAAM,IAAI,CAAC,GAAG;CACpF;AACF;AAED,MAAM,+BAA+B,CAACC,WAAoD;AACxF,MAAK,OACH,QAAO;CAGT,MAAM,wBAAwB,CAACC,aAAiC;AAC9D,aAAWC,aAAW,SACpB,QAAO,iBAAiBA;AAE1B,SAAOA;CACR;CAED,MAAM,4BAA4B,WAAW,YAAY,wBAAwB,OAAO;CACxF,MAAM,4BACG,WAAW,YAAY,aAAa,OAAO,MAAM,IAAI,cAAc,OAAO,aAAa;AAEhG,KAAI,sBAAsB,mBACxB,QAAO,sBAAsB,KAAK,MAAM,OAAO;AAGjD,QAAO;AACR;;;;;;;AAQD,MAAMC,mCAAqE,CAAC,QAAQ,EAAE,uBAAuB,KAAK;AAChH,MAAK,OAAO,mBAAmB,sBAC7B,QAAO;CAGT,MAAM,wBAAwB,6BAA6B,OAAO,eAAe;AACjF,MAAK,sBACH,QAAO;CAGT,MAAM,EAAE,OAAO,cAAc,GAAG,uBAAuB;CACvD,MAAM,CAAC,YAAY,WAAW,GAAG;CAIjC,MAAM,iBAAiB,eAAe,KAAK,eAAe,aAAa;CACvE,MAAM,iBAAiB,eAAe,KAAK,eAAe,aAAa;AAEvE,SAAQ,OAAR;EACE,KAAK,eACH,QAAO;EACT,KAAK,gBACH,QAAO,eAAe,KAAK,iBAAiB;EAC9C,KAAK,eACH,QAAO,eAAe,KAAK,iBAAiB,kBAAkB;CACjE;AACF;;;;;;;AAQD,MAAM,2BAA2B,CAACC,YAA2E;AAC3G,QAAO,CAAC,WAAoB;AAC1B,OAAK,QAAQ,OACX,QAAO;EAGT,MAAM,uBAAuB,0BAA0B,QAAQ,QAAQ;EACvE,MAAM,mBAAmB,sBAAsB,QAAQ,QAAQ;EAC/D,MAAM,8BAA8B,iCAAiC,QAAQ,QAAQ;AAErF,MAAI,CAAC,wBAAwB,kBAAkB,2BAA4B,EAAC,KAAK,OAAK,MAAM,KAAK,CAC/F,QAAO,CAAC,wBAAwB,kBAAkB,2BAA4B,EAAC,KAAK,OAAK,MAAM,KAAK;AAGtG,SAAO,CAAC,wBAAwB,kBAAkB,2BAA4B,EAAC,MAAM,OAAK,MAAM,KAAK;CACtG;AACF;;;;;;AAyBD,MAAM,mBAAmB,CAAC,EACxB,YAAY,EACV,WACA,eACA,QACA,OACA,OACA,SACA,SACA,SACA,UACA,KACA,eACD,EACD,SAAS,EAAE,0BAA0B,MAAM,EAC1B,KAAgC;AACjD,KAAI,wBAA2B,kBAC7B,QAAO;EACL,UAAU;EACV;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;CACD;AAGH,KAAI,cAAc,QAAQ,WAAW,KACnC,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA,eAAe;EACf,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,KAAK,MAAM;EACX;EACA;CACD;AAGH,KAAI,2BAA2B,kBAAkB,UAC/C,QAAO;EACL,UAAU;EACV,YAAY;EACZ,WAAW;EACX,QAAQ;EACR,eAAe;EACf,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,KAAK,MAAM;EACX;EACA;CACD;AAGH,OAAM,eAAe,mBAAmB,YAAY,WAAW,QAC7D,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA;EACA,OAAO,SAAS;EAChB;EACA;EACA,SAAS,WAAW;EACpB;EACA;EACA;CACD;AAGH,OAAM,eAAe,mBAAmB,WAAW,MACjD,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA;EACA,OAAO,SAAS;EAChB,OAAO;EACP,SAAS;EACT,SAAS;EACT;EACA;EACA;CACD;AAEJ"}
1	+ {"version":3,"file":"authorization-CJB1hjGu.js","names":["TYPES_TO_OBJECTS: TypesToConfig","checkOrgAuthorization: CheckOrgAuthorization","checkBillingAuthorization: CheckBillingAuthorization","config","checkReverificationAuthorization: CheckReverificationAuthorization"],"sources":["../../src/authorization.ts"],"sourcesContent":["import type {\n ActClaim,\n CheckAuthorizationWithCustomPermissions,\n GetToken,\n JwtPayload,\n OrganizationCustomPermissionKey,\n OrganizationCustomRoleKey,\n PendingSessionOptions,\n ReverificationConfig,\n SessionStatusClaim,\n SessionVerificationLevel,\n SessionVerificationTypes,\n SignOut,\n UseAuthReturn,\n} from './types';\n\ntype TypesToConfig = Record<SessionVerificationTypes, Exclude<ReverificationConfig, SessionVerificationTypes>>;\ntype AuthorizationOptions = {\n userId: string \| null \| undefined;\n orgId: string \| null \| undefined;\n orgRole: string \| null \| undefined;\n orgPermissions: string[] \| null \| undefined;\n factorVerificationAge: [number, number] \| null;\n features: string \| null \| undefined;\n plans: string \| null \| undefined;\n};\n\ntype CheckOrgAuthorization = (\n params: { role?: OrganizationCustomRoleKey; permission?: OrganizationCustomPermissionKey },\n options: Pick<AuthorizationOptions, 'orgId' \| 'orgRole' \| 'orgPermissions'>,\n) => boolean \| null;\n\ntype CheckBillingAuthorization = (\n params: { feature?: string; plan?: string },\n options: Pick<AuthorizationOptions, 'plans' \| 'features'>,\n) => boolean \| null;\n\ntype CheckReverificationAuthorization = (\n params: {\n reverification?: ReverificationConfig;\n },\n { factorVerificationAge }: AuthorizationOptions,\n) => boolean \| null;\n\nconst TYPES_TO_OBJECTS: TypesToConfig = {\n strict_mfa: {\n afterMinutes: 10,\n level: 'multi_factor',\n },\n strict: {\n afterMinutes: 10,\n level: 'second_factor',\n },\n moderate: {\n afterMinutes: 60,\n level: 'second_factor',\n },\n lax: {\n afterMinutes: 1_440,\n level: 'second_factor',\n },\n};\n\nconst ALLOWED_LEVELS = new Set<SessionVerificationLevel>(['first_factor', 'second_factor', 'multi_factor']);\n\nconst ALLOWED_TYPES = new Set<SessionVerificationTypes>(['strict_mfa', 'strict', 'moderate', 'lax']);\n\n// Helper functions\nconst isValidMaxAge = (maxAge: any) => typeof maxAge === 'number' && maxAge > 0;\nconst isValidLevel = (level: any) => ALLOWED_LEVELS.has(level);\nconst isValidVerificationType = (type: any) => ALLOWED_TYPES.has(type);\n\nconst prefixWithOrg = (value: string) => value.replace(/^(org:)/, 'org:');\n\n/\n Checks if a user has the required organization-level authorization.\n * Verifies if the user has the specified role or permission within their organization.\n * @returns null, if unable to determine due to missing data or unspecified role/permission.\n /\nconst checkOrgAuthorization: CheckOrgAuthorization = (params, options) => {\n const { orgId, orgRole, orgPermissions } = options;\n if (!params.role && !params.permission) {\n return null;\n }\n\n if (!orgId \|\| !orgRole \|\| !orgPermissions) {\n return null;\n }\n\n if (params.permission) {\n return orgPermissions.includes(prefixWithOrg(params.permission));\n }\n\n if (params.role) {\n return prefixWithOrg(orgRole) === prefixWithOrg(params.role);\n }\n return null;\n};\n\nconst checkForFeatureOrPlan = (claim: string, featureOrPlan: string) => {\n const { org: orgFeatures, user: userFeatures } = splitByScope(claim);\n const [scope, _id] = featureOrPlan.split(':');\n const id = _id \|\| scope;\n\n if (scope === 'org') {\n return orgFeatures.includes(id);\n } else if (scope === 'user') {\n return userFeatures.includes(id);\n } else {\n // Since org scoped features will not exist if there is not an active org, merging is safe.\n return [...orgFeatures, ...userFeatures].includes(id);\n }\n};\n\nconst checkBillingAuthorization: CheckBillingAuthorization = (params, options) => {\n const { features, plans } = options;\n\n if (params.feature && features) {\n return checkForFeatureOrPlan(features, params.feature);\n }\n\n if (params.plan && plans) {\n return checkForFeatureOrPlan(plans, params.plan);\n }\n return null;\n};\n\nconst splitByScope = (fea: string \| null \| undefined) => {\n const features = fea ? fea.split(',').map(f => f.trim()) : [];\n\n // TODO: make this more efficient\n return {\n org: features.filter(f => f.split(':')[0].includes('o')).map(f => f.split(':')[1]),\n user: features.filter(f => f.split(':')[0].includes('u')).map(f => f.split(':')[1]),\n };\n};\n\nconst validateReverificationConfig = (config: ReverificationConfig \| undefined \| null) => {\n if (!config) {\n return false;\n }\n\n const convertConfigToObject = (config: ReverificationConfig) => {\n if (typeof config === 'string') {\n return TYPES_TO_OBJECTS[config];\n }\n return config;\n };\n\n const isValidStringValue = typeof config === 'string' && isValidVerificationType(config);\n const isValidObjectValue =\n typeof config === 'object' && isValidLevel(config.level) && isValidMaxAge(config.afterMinutes);\n\n if (isValidStringValue \|\| isValidObjectValue) {\n return convertConfigToObject.bind(null, config);\n }\n\n return false;\n};\n\n/\n Evaluates if the user meets re-verification authentication requirements.\n * Compares the user's factor verification ages against the specified maxAge.\n * Handles different verification levels (first factor, second factor, multi-factor).\n * @returns null, if requirements or verification data are missing.\n /\nconst checkReverificationAuthorization: CheckReverificationAuthorization = (params, { factorVerificationAge }) => {\n if (!params.reverification \|\| !factorVerificationAge) {\n return null;\n }\n\n const isValidReverification = validateReverificationConfig(params.reverification);\n if (!isValidReverification) {\n return null;\n }\n\n const { level, afterMinutes } = isValidReverification();\n const [factor1Age, factor2Age] = factorVerificationAge;\n\n // -1 indicates the factor group (1fa,2fa) is not enabled\n // -1 for 1fa is not a valid scenario, but we need to make sure we handle it properly\n const isValidFactor1 = factor1Age !== -1 ? afterMinutes > factor1Age : null;\n const isValidFactor2 = factor2Age !== -1 ? afterMinutes > factor2Age : null;\n\n switch (level) {\n case 'first_factor':\n return isValidFactor1;\n case 'second_factor':\n return factor2Age !== -1 ? isValidFactor2 : isValidFactor1;\n case 'multi_factor':\n return factor2Age === -1 ? isValidFactor1 : isValidFactor1 && isValidFactor2;\n }\n};\n\n/\n Creates a function for comprehensive user authorization checks.\n * Combines organization-level and reverification authentication checks.\n * The returned function authorizes if both checks pass, or if at least one passes\n * when the other is indeterminate. Fails if userId is missing.\n /\nconst createCheckAuthorization = (options: AuthorizationOptions): CheckAuthorizationWithCustomPermissions => {\n return (params): boolean => {\n if (!options.userId) {\n return false;\n }\n\n const billingAuthorization = checkBillingAuthorization(params, options);\n const orgAuthorization = checkOrgAuthorization(params, options);\n const reverificationAuthorization = checkReverificationAuthorization(params, options);\n\n if ([billingAuthorization \|\| orgAuthorization, reverificationAuthorization].some(a => a === null)) {\n return [billingAuthorization \|\| orgAuthorization, reverificationAuthorization].some(a => a === true);\n }\n\n return [billingAuthorization \|\| orgAuthorization, reverificationAuthorization].every(a => a === true);\n };\n};\n\ntype AuthStateOptions = {\n authObject: {\n userId?: string \| null;\n sessionId?: string \| null;\n sessionStatus?: SessionStatusClaim \| null;\n sessionClaims?: JwtPayload \| null;\n actor?: ActClaim \| null;\n orgId?: string \| null;\n orgRole?: OrganizationCustomRoleKey \| null;\n orgSlug?: string \| null;\n orgPermissions?: OrganizationCustomPermissionKey[] \| null;\n getToken: GetToken;\n signOut: SignOut;\n has: (params: Parameters<CheckAuthorizationWithCustomPermissions>[0]) => boolean;\n };\n options: PendingSessionOptions;\n};\n\n/\n Shared utility function that centralizes auth state resolution logic,\n * preventing duplication across different packages.\n * @internal\n */\nconst resolveAuthState = ({\n authObject: {\n sessionId,\n sessionStatus,\n userId,\n actor,\n orgId,\n orgRole,\n orgSlug,\n signOut,\n getToken,\n has,\n sessionClaims,\n },\n options: { treatPendingAsSignedOut = true },\n}: AuthStateOptions): UseAuthReturn \| undefined => {\n if (sessionId === undefined && userId === undefined) {\n return {\n isLoaded: false,\n isSignedIn: undefined,\n sessionId,\n sessionClaims: undefined,\n userId,\n actor: undefined,\n orgId: undefined,\n orgRole: undefined,\n orgSlug: undefined,\n has: undefined,\n signOut,\n getToken,\n } as const;\n }\n\n if (sessionId === null && userId === null) {\n return {\n isLoaded: true,\n isSignedIn: false,\n sessionId,\n userId,\n sessionClaims: null,\n actor: null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has: () => false,\n signOut,\n getToken,\n } as const;\n }\n\n if (treatPendingAsSignedOut && sessionStatus === 'pending') {\n return {\n isLoaded: true,\n isSignedIn: false,\n sessionId: null,\n userId: null,\n sessionClaims: null,\n actor: null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has: () => false,\n signOut,\n getToken,\n } as const;\n }\n\n if (!!sessionId && !!sessionClaims && !!userId && !!orgId && !!orgRole) {\n return {\n isLoaded: true,\n isSignedIn: true,\n sessionId,\n sessionClaims,\n userId,\n actor: actor \|\| null,\n orgId,\n orgRole,\n orgSlug: orgSlug \|\| null,\n has,\n signOut,\n getToken,\n } as const;\n }\n\n if (!!sessionId && !!sessionClaims && !!userId && !orgId) {\n return {\n isLoaded: true,\n isSignedIn: true,\n sessionId,\n sessionClaims,\n userId,\n actor: actor \|\| null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has,\n signOut,\n getToken,\n } as const;\n }\n};\n\nexport { createCheckAuthorization, resolveAuthState, splitByScope, validateReverificationConfig };\n"],"mappings":";;AA4CA,MAAMA,mBAAkC;CACtC,YAAY;EACV,cAAc;EACd,OAAO;EACR;CACD,QAAQ;EACN,cAAc;EACd,OAAO;EACR;CACD,UAAU;EACR,cAAc;EACd,OAAO;EACR;CACD,KAAK;EACH,cAAc;EACd,OAAO;EACR;CACF;AAED,MAAM,iBAAiB,IAAI,IAA8B;CAAC;CAAgB;CAAiB;CAAe,CAAC;AAE3G,MAAM,gBAAgB,IAAI,IAA8B;CAAC;CAAc;CAAU;CAAY;CAAM,CAAC;AAGpG,MAAM,iBAAiB,WAAgB,OAAO,WAAW,YAAY,SAAS;AAC9E,MAAM,gBAAgB,UAAe,eAAe,IAAI,MAAM;AAC9D,MAAM,2BAA2B,SAAc,cAAc,IAAI,KAAK;AAEtE,MAAM,iBAAiB,UAAkB,MAAM,QAAQ,YAAY,OAAO;;;;;;AAO1E,MAAMC,yBAAgD,QAAQ,YAAY;CACxE,MAAM,EAAE,OAAO,SAAS,mBAAmB;AAC3C,KAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,WAC1B,QAAO;AAGT,KAAI,CAAC,SAAS,CAAC,WAAW,CAAC,eACzB,QAAO;AAGT,KAAI,OAAO,WACT,QAAO,eAAe,SAAS,cAAc,OAAO,WAAW,CAAC;AAGlE,KAAI,OAAO,KACT,QAAO,cAAc,QAAQ,KAAK,cAAc,OAAO,KAAK;AAE9D,QAAO;;AAGT,MAAM,yBAAyB,OAAe,kBAA0B;CACtE,MAAM,EAAE,KAAK,aAAa,MAAM,iBAAiB,aAAa,MAAM;CACpE,MAAM,CAAC,OAAO,OAAO,cAAc,MAAM,IAAI;CAC7C,MAAM,KAAK,OAAO;AAElB,KAAI,UAAU,MACZ,QAAO,YAAY,SAAS,GAAG;UACtB,UAAU,OACnB,QAAO,aAAa,SAAS,GAAG;KAGhC,QAAO,CAAC,GAAG,aAAa,GAAG,aAAa,CAAC,SAAS,GAAG;;AAIzD,MAAMC,6BAAwD,QAAQ,YAAY;CAChF,MAAM,EAAE,UAAU,UAAU;AAE5B,KAAI,OAAO,WAAW,SACpB,QAAO,sBAAsB,UAAU,OAAO,QAAQ;AAGxD,KAAI,OAAO,QAAQ,MACjB,QAAO,sBAAsB,OAAO,OAAO,KAAK;AAElD,QAAO;;AAGT,MAAM,gBAAgB,QAAmC;CACvD,MAAM,WAAW,MAAM,IAAI,MAAM,IAAI,CAAC,KAAI,MAAK,EAAE,MAAM,CAAC,GAAG,EAAE;AAG7D,QAAO;EACL,KAAK,SAAS,QAAO,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG,SAAS,IAAI,CAAC,CAAC,KAAI,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG;EAClF,MAAM,SAAS,QAAO,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG,SAAS,IAAI,CAAC,CAAC,KAAI,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG;EACpF;;AAGH,MAAM,gCAAgC,WAAoD;AACxF,KAAI,CAAC,OACH,QAAO;CAGT,MAAM,yBAAyB,aAAiC;AAC9D,MAAI,OAAOC,aAAW,SACpB,QAAO,iBAAiBA;AAE1B,SAAOA;;CAGT,MAAM,qBAAqB,OAAO,WAAW,YAAY,wBAAwB,OAAO;CACxF,MAAM,qBACJ,OAAO,WAAW,YAAY,aAAa,OAAO,MAAM,IAAI,cAAc,OAAO,aAAa;AAEhG,KAAI,sBAAsB,mBACxB,QAAO,sBAAsB,KAAK,MAAM,OAAO;AAGjD,QAAO;;;;;;;;AAST,MAAMC,oCAAsE,QAAQ,EAAE,4BAA4B;AAChH,KAAI,CAAC,OAAO,kBAAkB,CAAC,sBAC7B,QAAO;CAGT,MAAM,wBAAwB,6BAA6B,OAAO,eAAe;AACjF,KAAI,CAAC,sBACH,QAAO;CAGT,MAAM,EAAE,OAAO,iBAAiB,uBAAuB;CACvD,MAAM,CAAC,YAAY,cAAc;CAIjC,MAAM,iBAAiB,eAAe,KAAK,eAAe,aAAa;CACvE,MAAM,iBAAiB,eAAe,KAAK,eAAe,aAAa;AAEvE,SAAQ,OAAR;EACE,KAAK,eACH,QAAO;EACT,KAAK,gBACH,QAAO,eAAe,KAAK,iBAAiB;EAC9C,KAAK,eACH,QAAO,eAAe,KAAK,iBAAiB,kBAAkB;;;;;;;;;AAUpE,MAAM,4BAA4B,YAA2E;AAC3G,SAAQ,WAAoB;AAC1B,MAAI,CAAC,QAAQ,OACX,QAAO;EAGT,MAAM,uBAAuB,0BAA0B,QAAQ,QAAQ;EACvE,MAAM,mBAAmB,sBAAsB,QAAQ,QAAQ;EAC/D,MAAM,8BAA8B,iCAAiC,QAAQ,QAAQ;AAErF,MAAI,CAAC,wBAAwB,kBAAkB,4BAA4B,CAAC,MAAK,MAAK,MAAM,KAAK,CAC/F,QAAO,CAAC,wBAAwB,kBAAkB,4BAA4B,CAAC,MAAK,MAAK,MAAM,KAAK;AAGtG,SAAO,CAAC,wBAAwB,kBAAkB,4BAA4B,CAAC,OAAM,MAAK,MAAM,KAAK;;;;;;;;AA2BzG,MAAM,oBAAoB,EACxB,YAAY,EACV,WACA,eACA,QACA,OACA,OACA,SACA,SACA,SACA,UACA,KACA,iBAEF,SAAS,EAAE,0BAA0B,aACY;AACjD,KAAI,cAAc,UAAa,WAAW,OACxC,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA,eAAe;EACf;EACA,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,KAAK;EACL;EACA;EACD;AAGH,KAAI,cAAc,QAAQ,WAAW,KACnC,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA,eAAe;EACf,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,WAAW;EACX;EACA;EACD;AAGH,KAAI,2BAA2B,kBAAkB,UAC/C,QAAO;EACL,UAAU;EACV,YAAY;EACZ,WAAW;EACX,QAAQ;EACR,eAAe;EACf,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,WAAW;EACX;EACA;EACD;AAGH,KAAI,CAAC,CAAC,aAAa,CAAC,CAAC,iBAAiB,CAAC,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,CAAC,QAC7D,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA;EACA,OAAO,SAAS;EAChB;EACA;EACA,SAAS,WAAW;EACpB;EACA;EACA;EACD;AAGH,KAAI,CAAC,CAAC,aAAa,CAAC,CAAC,iBAAiB,CAAC,CAAC,UAAU,CAAC,MACjD,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA;EACA,OAAO,SAAS;EAChB,OAAO;EACP,SAAS;EACT,SAAS;EACT;EACA;EACA;EACD"}

package/dist/runtime/{authorization-XX4mKaAz.mjs → authorization-DslZKDr7.mjs} RENAMED Viewed

@@ -192,5 +192,5 @@ const resolveAuthState = ({ authObject: { sessionId, sessionStatus, userId, acto
 };
 //#endregion
-export { createCheckAuthorization, resolveAuthState, splitByScope, validateReverificationConfig };
-//# sourceMappingURL=authorization-XX4mKaAz.mjs.map
+export { validateReverificationConfig as i, resolveAuthState as n, splitByScope as r, createCheckAuthorization as t };
+//# sourceMappingURL=authorization-DslZKDr7.mjs.map

package/dist/runtime/authorization-DslZKDr7.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"authorization-DslZKDr7.mjs","names":["TYPES_TO_OBJECTS: TypesToConfig","checkOrgAuthorization: CheckOrgAuthorization","checkBillingAuthorization: CheckBillingAuthorization","config","checkReverificationAuthorization: CheckReverificationAuthorization"],"sources":["../../src/authorization.ts"],"sourcesContent":["import type {\n ActClaim,\n CheckAuthorizationWithCustomPermissions,\n GetToken,\n JwtPayload,\n OrganizationCustomPermissionKey,\n OrganizationCustomRoleKey,\n PendingSessionOptions,\n ReverificationConfig,\n SessionStatusClaim,\n SessionVerificationLevel,\n SessionVerificationTypes,\n SignOut,\n UseAuthReturn,\n} from './types';\n\ntype TypesToConfig = Record<SessionVerificationTypes, Exclude<ReverificationConfig, SessionVerificationTypes>>;\ntype AuthorizationOptions = {\n userId: string | null | undefined;\n orgId: string | null | undefined;\n orgRole: string | null | undefined;\n orgPermissions: string[] | null | undefined;\n factorVerificationAge: [number, number] | null;\n features: string | null | undefined;\n plans: string | null | undefined;\n};\n\ntype CheckOrgAuthorization = (\n params: { role?: OrganizationCustomRoleKey; permission?: OrganizationCustomPermissionKey },\n options: Pick<AuthorizationOptions, 'orgId' | 'orgRole' | 'orgPermissions'>,\n) => boolean | null;\n\ntype CheckBillingAuthorization = (\n params: { feature?: string; plan?: string },\n options: Pick<AuthorizationOptions, 'plans' | 'features'>,\n) => boolean | null;\n\ntype CheckReverificationAuthorization = (\n params: {\n reverification?: ReverificationConfig;\n },\n { factorVerificationAge }: AuthorizationOptions,\n) => boolean | null;\n\nconst TYPES_TO_OBJECTS: TypesToConfig = {\n strict_mfa: {\n afterMinutes: 10,\n level: 'multi_factor',\n },\n strict: {\n afterMinutes: 10,\n level: 'second_factor',\n },\n moderate: {\n afterMinutes: 60,\n level: 'second_factor',\n },\n lax: {\n afterMinutes: 1_440,\n level: 'second_factor',\n },\n};\n\nconst ALLOWED_LEVELS = new Set<SessionVerificationLevel>(['first_factor', 'second_factor', 'multi_factor']);\n\nconst ALLOWED_TYPES = new Set<SessionVerificationTypes>(['strict_mfa', 'strict', 'moderate', 'lax']);\n\n// Helper functions\nconst isValidMaxAge = (maxAge: any) => typeof maxAge === 'number' && maxAge > 0;\nconst isValidLevel = (level: any) => ALLOWED_LEVELS.has(level);\nconst isValidVerificationType = (type: any) => ALLOWED_TYPES.has(type);\n\nconst prefixWithOrg = (value: string) => value.replace(/^(org:)*/, 'org:');\n\n/**\n * Checks if a user has the required organization-level authorization.\n * Verifies if the user has the specified role or permission within their organization.\n * @returns null, if unable to determine due to missing data or unspecified role/permission.\n */\nconst checkOrgAuthorization: CheckOrgAuthorization = (params, options) => {\n const { orgId, orgRole, orgPermissions } = options;\n if (!params.role && !params.permission) {\n return null;\n }\n\n if (!orgId || !orgRole || !orgPermissions) {\n return null;\n }\n\n if (params.permission) {\n return orgPermissions.includes(prefixWithOrg(params.permission));\n }\n\n if (params.role) {\n return prefixWithOrg(orgRole) === prefixWithOrg(params.role);\n }\n return null;\n};\n\nconst checkForFeatureOrPlan = (claim: string, featureOrPlan: string) => {\n const { org: orgFeatures, user: userFeatures } = splitByScope(claim);\n const [scope, _id] = featureOrPlan.split(':');\n const id = _id || scope;\n\n if (scope === 'org') {\n return orgFeatures.includes(id);\n } else if (scope === 'user') {\n return userFeatures.includes(id);\n } else {\n // Since org scoped features will not exist if there is not an active org, merging is safe.\n return [...orgFeatures, ...userFeatures].includes(id);\n }\n};\n\nconst checkBillingAuthorization: CheckBillingAuthorization = (params, options) => {\n const { features, plans } = options;\n\n if (params.feature && features) {\n return checkForFeatureOrPlan(features, params.feature);\n }\n\n if (params.plan && plans) {\n return checkForFeatureOrPlan(plans, params.plan);\n }\n return null;\n};\n\nconst splitByScope = (fea: string | null | undefined) => {\n const features = fea ? fea.split(',').map(f => f.trim()) : [];\n\n // TODO: make this more efficient\n return {\n org: features.filter(f => f.split(':')[0].includes('o')).map(f => f.split(':')[1]),\n user: features.filter(f => f.split(':')[0].includes('u')).map(f => f.split(':')[1]),\n };\n};\n\nconst validateReverificationConfig = (config: ReverificationConfig | undefined | null) => {\n if (!config) {\n return false;\n }\n\n const convertConfigToObject = (config: ReverificationConfig) => {\n if (typeof config === 'string') {\n return TYPES_TO_OBJECTS[config];\n }\n return config;\n };\n\n const isValidStringValue = typeof config === 'string' && isValidVerificationType(config);\n const isValidObjectValue =\n typeof config === 'object' && isValidLevel(config.level) && isValidMaxAge(config.afterMinutes);\n\n if (isValidStringValue || isValidObjectValue) {\n return convertConfigToObject.bind(null, config);\n }\n\n return false;\n};\n\n/**\n * Evaluates if the user meets re-verification authentication requirements.\n * Compares the user's factor verification ages against the specified maxAge.\n * Handles different verification levels (first factor, second factor, multi-factor).\n * @returns null, if requirements or verification data are missing.\n */\nconst checkReverificationAuthorization: CheckReverificationAuthorization = (params, { factorVerificationAge }) => {\n if (!params.reverification || !factorVerificationAge) {\n return null;\n }\n\n const isValidReverification = validateReverificationConfig(params.reverification);\n if (!isValidReverification) {\n return null;\n }\n\n const { level, afterMinutes } = isValidReverification();\n const [factor1Age, factor2Age] = factorVerificationAge;\n\n // -1 indicates the factor group (1fa,2fa) is not enabled\n // -1 for 1fa is not a valid scenario, but we need to make sure we handle it properly\n const isValidFactor1 = factor1Age !== -1 ? afterMinutes > factor1Age : null;\n const isValidFactor2 = factor2Age !== -1 ? afterMinutes > factor2Age : null;\n\n switch (level) {\n case 'first_factor':\n return isValidFactor1;\n case 'second_factor':\n return factor2Age !== -1 ? isValidFactor2 : isValidFactor1;\n case 'multi_factor':\n return factor2Age === -1 ? isValidFactor1 : isValidFactor1 && isValidFactor2;\n }\n};\n\n/**\n * Creates a function for comprehensive user authorization checks.\n * Combines organization-level and reverification authentication checks.\n * The returned function authorizes if both checks pass, or if at least one passes\n * when the other is indeterminate. Fails if userId is missing.\n */\nconst createCheckAuthorization = (options: AuthorizationOptions): CheckAuthorizationWithCustomPermissions => {\n return (params): boolean => {\n if (!options.userId) {\n return false;\n }\n\n const billingAuthorization = checkBillingAuthorization(params, options);\n const orgAuthorization = checkOrgAuthorization(params, options);\n const reverificationAuthorization = checkReverificationAuthorization(params, options);\n\n if ([billingAuthorization || orgAuthorization, reverificationAuthorization].some(a => a === null)) {\n return [billingAuthorization || orgAuthorization, reverificationAuthorization].some(a => a === true);\n }\n\n return [billingAuthorization || orgAuthorization, reverificationAuthorization].every(a => a === true);\n };\n};\n\ntype AuthStateOptions = {\n authObject: {\n userId?: string | null;\n sessionId?: string | null;\n sessionStatus?: SessionStatusClaim | null;\n sessionClaims?: JwtPayload | null;\n actor?: ActClaim | null;\n orgId?: string | null;\n orgRole?: OrganizationCustomRoleKey | null;\n orgSlug?: string | null;\n orgPermissions?: OrganizationCustomPermissionKey[] | null;\n getToken: GetToken;\n signOut: SignOut;\n has: (params: Parameters<CheckAuthorizationWithCustomPermissions>[0]) => boolean;\n };\n options: PendingSessionOptions;\n};\n\n/**\n * Shared utility function that centralizes auth state resolution logic,\n * preventing duplication across different packages.\n * @internal\n */\nconst resolveAuthState = ({\n authObject: {\n sessionId,\n sessionStatus,\n userId,\n actor,\n orgId,\n orgRole,\n orgSlug,\n signOut,\n getToken,\n has,\n sessionClaims,\n },\n options: { treatPendingAsSignedOut = true },\n}: AuthStateOptions): UseAuthReturn | undefined => {\n if (sessionId === undefined && userId === undefined) {\n return {\n isLoaded: false,\n isSignedIn: undefined,\n sessionId,\n sessionClaims: undefined,\n userId,\n actor: undefined,\n orgId: undefined,\n orgRole: undefined,\n orgSlug: undefined,\n has: undefined,\n signOut,\n getToken,\n } as const;\n }\n\n if (sessionId === null && userId === null) {\n return {\n isLoaded: true,\n isSignedIn: false,\n sessionId,\n userId,\n sessionClaims: null,\n actor: null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has: () => false,\n signOut,\n getToken,\n } as const;\n }\n\n if (treatPendingAsSignedOut && sessionStatus === 'pending') {\n return {\n isLoaded: true,\n isSignedIn: false,\n sessionId: null,\n userId: null,\n sessionClaims: null,\n actor: null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has: () => false,\n signOut,\n getToken,\n } as const;\n }\n\n if (!!sessionId && !!sessionClaims && !!userId && !!orgId && !!orgRole) {\n return {\n isLoaded: true,\n isSignedIn: true,\n sessionId,\n sessionClaims,\n userId,\n actor: actor || null,\n orgId,\n orgRole,\n orgSlug: orgSlug || null,\n has,\n signOut,\n getToken,\n } as const;\n }\n\n if (!!sessionId && !!sessionClaims && !!userId && !orgId) {\n return {\n isLoaded: true,\n isSignedIn: true,\n sessionId,\n sessionClaims,\n userId,\n actor: actor || null,\n orgId: null,\n orgRole: null,\n orgSlug: null,\n has,\n signOut,\n getToken,\n } as const;\n }\n};\n\nexport { createCheckAuthorization, resolveAuthState, splitByScope, validateReverificationConfig };\n"],"mappings":";AA4CA,MAAMA,mBAAkC;CACtC,YAAY;EACV,cAAc;EACd,OAAO;EACR;CACD,QAAQ;EACN,cAAc;EACd,OAAO;EACR;CACD,UAAU;EACR,cAAc;EACd,OAAO;EACR;CACD,KAAK;EACH,cAAc;EACd,OAAO;EACR;CACF;AAED,MAAM,iBAAiB,IAAI,IAA8B;CAAC;CAAgB;CAAiB;CAAe,CAAC;AAE3G,MAAM,gBAAgB,IAAI,IAA8B;CAAC;CAAc;CAAU;CAAY;CAAM,CAAC;AAGpG,MAAM,iBAAiB,WAAgB,OAAO,WAAW,YAAY,SAAS;AAC9E,MAAM,gBAAgB,UAAe,eAAe,IAAI,MAAM;AAC9D,MAAM,2BAA2B,SAAc,cAAc,IAAI,KAAK;AAEtE,MAAM,iBAAiB,UAAkB,MAAM,QAAQ,YAAY,OAAO;;;;;;AAO1E,MAAMC,yBAAgD,QAAQ,YAAY;CACxE,MAAM,EAAE,OAAO,SAAS,mBAAmB;AAC3C,KAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,WAC1B,QAAO;AAGT,KAAI,CAAC,SAAS,CAAC,WAAW,CAAC,eACzB,QAAO;AAGT,KAAI,OAAO,WACT,QAAO,eAAe,SAAS,cAAc,OAAO,WAAW,CAAC;AAGlE,KAAI,OAAO,KACT,QAAO,cAAc,QAAQ,KAAK,cAAc,OAAO,KAAK;AAE9D,QAAO;;AAGT,MAAM,yBAAyB,OAAe,kBAA0B;CACtE,MAAM,EAAE,KAAK,aAAa,MAAM,iBAAiB,aAAa,MAAM;CACpE,MAAM,CAAC,OAAO,OAAO,cAAc,MAAM,IAAI;CAC7C,MAAM,KAAK,OAAO;AAElB,KAAI,UAAU,MACZ,QAAO,YAAY,SAAS,GAAG;UACtB,UAAU,OACnB,QAAO,aAAa,SAAS,GAAG;KAGhC,QAAO,CAAC,GAAG,aAAa,GAAG,aAAa,CAAC,SAAS,GAAG;;AAIzD,MAAMC,6BAAwD,QAAQ,YAAY;CAChF,MAAM,EAAE,UAAU,UAAU;AAE5B,KAAI,OAAO,WAAW,SACpB,QAAO,sBAAsB,UAAU,OAAO,QAAQ;AAGxD,KAAI,OAAO,QAAQ,MACjB,QAAO,sBAAsB,OAAO,OAAO,KAAK;AAElD,QAAO;;AAGT,MAAM,gBAAgB,QAAmC;CACvD,MAAM,WAAW,MAAM,IAAI,MAAM,IAAI,CAAC,KAAI,MAAK,EAAE,MAAM,CAAC,GAAG,EAAE;AAG7D,QAAO;EACL,KAAK,SAAS,QAAO,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG,SAAS,IAAI,CAAC,CAAC,KAAI,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG;EAClF,MAAM,SAAS,QAAO,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG,SAAS,IAAI,CAAC,CAAC,KAAI,MAAK,EAAE,MAAM,IAAI,CAAC,GAAG;EACpF;;AAGH,MAAM,gCAAgC,WAAoD;AACxF,KAAI,CAAC,OACH,QAAO;CAGT,MAAM,yBAAyB,aAAiC;AAC9D,MAAI,OAAOC,aAAW,SACpB,QAAO,iBAAiBA;AAE1B,SAAOA;;CAGT,MAAM,qBAAqB,OAAO,WAAW,YAAY,wBAAwB,OAAO;CACxF,MAAM,qBACJ,OAAO,WAAW,YAAY,aAAa,OAAO,MAAM,IAAI,cAAc,OAAO,aAAa;AAEhG,KAAI,sBAAsB,mBACxB,QAAO,sBAAsB,KAAK,MAAM,OAAO;AAGjD,QAAO;;;;;;;;AAST,MAAMC,oCAAsE,QAAQ,EAAE,4BAA4B;AAChH,KAAI,CAAC,OAAO,kBAAkB,CAAC,sBAC7B,QAAO;CAGT,MAAM,wBAAwB,6BAA6B,OAAO,eAAe;AACjF,KAAI,CAAC,sBACH,QAAO;CAGT,MAAM,EAAE,OAAO,iBAAiB,uBAAuB;CACvD,MAAM,CAAC,YAAY,cAAc;CAIjC,MAAM,iBAAiB,eAAe,KAAK,eAAe,aAAa;CACvE,MAAM,iBAAiB,eAAe,KAAK,eAAe,aAAa;AAEvE,SAAQ,OAAR;EACE,KAAK,eACH,QAAO;EACT,KAAK,gBACH,QAAO,eAAe,KAAK,iBAAiB;EAC9C,KAAK,eACH,QAAO,eAAe,KAAK,iBAAiB,kBAAkB;;;;;;;;;AAUpE,MAAM,4BAA4B,YAA2E;AAC3G,SAAQ,WAAoB;AAC1B,MAAI,CAAC,QAAQ,OACX,QAAO;EAGT,MAAM,uBAAuB,0BAA0B,QAAQ,QAAQ;EACvE,MAAM,mBAAmB,sBAAsB,QAAQ,QAAQ;EAC/D,MAAM,8BAA8B,iCAAiC,QAAQ,QAAQ;AAErF,MAAI,CAAC,wBAAwB,kBAAkB,4BAA4B,CAAC,MAAK,MAAK,MAAM,KAAK,CAC/F,QAAO,CAAC,wBAAwB,kBAAkB,4BAA4B,CAAC,MAAK,MAAK,MAAM,KAAK;AAGtG,SAAO,CAAC,wBAAwB,kBAAkB,4BAA4B,CAAC,OAAM,MAAK,MAAM,KAAK;;;;;;;;AA2BzG,MAAM,oBAAoB,EACxB,YAAY,EACV,WACA,eACA,QACA,OACA,OACA,SACA,SACA,SACA,UACA,KACA,iBAEF,SAAS,EAAE,0BAA0B,aACY;AACjD,KAAI,cAAc,UAAa,WAAW,OACxC,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA,eAAe;EACf;EACA,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,KAAK;EACL;EACA;EACD;AAGH,KAAI,cAAc,QAAQ,WAAW,KACnC,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA,eAAe;EACf,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,WAAW;EACX;EACA;EACD;AAGH,KAAI,2BAA2B,kBAAkB,UAC/C,QAAO;EACL,UAAU;EACV,YAAY;EACZ,WAAW;EACX,QAAQ;EACR,eAAe;EACf,OAAO;EACP,OAAO;EACP,SAAS;EACT,SAAS;EACT,WAAW;EACX;EACA;EACD;AAGH,KAAI,CAAC,CAAC,aAAa,CAAC,CAAC,iBAAiB,CAAC,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,CAAC,QAC7D,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA;EACA,OAAO,SAAS;EAChB;EACA;EACA,SAAS,WAAW;EACpB;EACA;EACA;EACD;AAGH,KAAI,CAAC,CAAC,aAAa,CAAC,CAAC,iBAAiB,CAAC,CAAC,UAAU,CAAC,MACjD,QAAO;EACL,UAAU;EACV,YAAY;EACZ;EACA;EACA;EACA,OAAO,SAAS;EAChB,OAAO;EACP,SAAS;EACT,SAAS;EACT;EACA;EACA;EACD"}

package/dist/runtime/{authorization-errors-CS1pNy8i.mjs → authorization-errors-BmyMJ_xr.mjs} RENAMED Viewed

@@ -11,5 +11,5 @@ const isReverificationHint = (result) => {
 };
 //#endregion
-export { isReverificationHint, reverificationError, reverificationErrorResponse };
-//# sourceMappingURL=authorization-errors-CS1pNy8i.mjs.map
+export { reverificationError as n, reverificationErrorResponse as r, isReverificationHint as t };
+//# sourceMappingURL=authorization-errors-BmyMJ_xr.mjs.map

package/dist/runtime/authorization-errors-BmyMJ_xr.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"authorization-errors-BmyMJ_xr.mjs","names":[],"sources":["../../src/authorization-errors.ts"],"sourcesContent":["import type { ReverificationConfig } from './types';\n\ntype ClerkError<T> = {\n clerk_error: T;\n};\n\nconst REVERIFICATION_REASON = 'reverification-error';\n\ntype ReverificationError<M extends { metadata?: any } = { metadata: unknown }> = ClerkError<\n {\n type: 'forbidden';\n reason: typeof REVERIFICATION_REASON;\n } & M\n>;\n\nconst reverificationError = <MC extends ReverificationConfig>(\n missingConfig?: MC,\n): ReverificationError<{\n metadata?: {\n reverification?: MC;\n };\n}> => ({\n clerk_error: {\n type: 'forbidden',\n reason: REVERIFICATION_REASON,\n metadata: {\n reverification: missingConfig,\n },\n },\n});\n\nconst reverificationErrorResponse = (...args: Parameters<typeof reverificationError>) =>\n new Response(JSON.stringify(reverificationError(...args)), {\n status: 403,\n });\n\nconst isReverificationHint = (result: any): result is ReturnType<typeof reverificationError> => {\n return (\n result &&\n typeof result === 'object' &&\n 'clerk_error' in result &&\n result.clerk_error?.type === 'forbidden' &&\n result.clerk_error?.reason === REVERIFICATION_REASON\n );\n};\n\nexport { isReverificationHint, reverificationError, reverificationErrorResponse };\n"],"mappings":";AAMA,MAAM,wBAAwB;AAS9B,MAAM,uBACJ,mBAKK,EACL,aAAa;CACX,MAAM;CACN,QAAQ;CACR,UAAU,EACR,gBAAgB,eACjB;CACF,EACF;AAED,MAAM,+BAA+B,GAAG,SACtC,IAAI,SAAS,KAAK,UAAU,oBAAoB,GAAG,KAAK,CAAC,EAAE,EACzD,QAAQ,KACT,CAAC;AAEJ,MAAM,wBAAwB,WAAkE;AAC9F,QACE,UACA,OAAO,WAAW,YAClB,iBAAiB,UACjB,OAAO,aAAa,SAAS,eAC7B,OAAO,aAAa,WAAW"}

package/dist/runtime/authorization-errors-dSnD6mpz.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authorization-errors-dSnD6mpz.js","names":[~~"missingConfig?: MC","result: any"~~],"sources":["../../src/authorization-errors.ts"],"sourcesContent":["import type { ReverificationConfig } from './types';\n\ntype ClerkError<T> = {\n clerk_error: T;\n};\n\nconst REVERIFICATION_REASON = 'reverification-error';\n\ntype ReverificationError<M extends { metadata?: any } = { metadata: unknown }> = ClerkError<\n {\n type: 'forbidden';\n reason: typeof REVERIFICATION_REASON;\n } & M\n>;\n\nconst reverificationError = <MC extends ReverificationConfig>(\n missingConfig?: MC,\n): ReverificationError<{\n metadata?: {\n reverification?: MC;\n };\n}> => ({\n clerk_error: {\n type: 'forbidden',\n reason: REVERIFICATION_REASON,\n metadata: {\n reverification: missingConfig,\n },\n },\n});\n\nconst reverificationErrorResponse = (...args: Parameters<typeof reverificationError>) =>\n new Response(JSON.stringify(reverificationError(...args)), {\n status: 403,\n });\n\nconst isReverificationHint = (result: any): result is ReturnType<typeof reverificationError> => {\n return (\n result &&\n typeof result === 'object' &&\n 'clerk_error' in result &&\n result.clerk_error?.type === 'forbidden' &&\n result.clerk_error?.reason === REVERIFICATION_REASON\n );\n};\n\nexport { isReverificationHint, reverificationError, reverificationErrorResponse };\n"],"mappings":";;AAMA,MAAM,wBAAwB;AAS9B,MAAM,~~sBAAsB~~,~~CAC1BA,~~mBAKK,EACL,aAAa;CACX,MAAM;CACN,QAAQ;CACR,UAAU,EACR,gBAAgB,~~cACjB~~;~~AACF~~,EACF;AAED,MAAM,~~8BAA8B,CAAC,~~GAAG,SACtC,IAAI,SAAS,KAAK,UAAU,oBAAoB,GAAG,KAAK,CAAC,EAAE,EACzD,QAAQ,~~IACT~~;~~AAEH~~,MAAM,~~uBAAuB~~,~~CAACC,~~WAAkE;AAC9F,QACE,~~iBACO~~,WAAW,YAClB,iBAAiB,UACjB,OAAO,aAAa,SAAS,eAC7B,OAAO,aAAa,WAAW~~;AAElC~~"}
1	+ {"version":3,"file":"authorization-errors-dSnD6mpz.js","names":[],"sources":["../../src/authorization-errors.ts"],"sourcesContent":["import type { ReverificationConfig } from './types';\n\ntype ClerkError<T> = {\n clerk_error: T;\n};\n\nconst REVERIFICATION_REASON = 'reverification-error';\n\ntype ReverificationError<M extends { metadata?: any } = { metadata: unknown }> = ClerkError<\n {\n type: 'forbidden';\n reason: typeof REVERIFICATION_REASON;\n } & M\n>;\n\nconst reverificationError = <MC extends ReverificationConfig>(\n missingConfig?: MC,\n): ReverificationError<{\n metadata?: {\n reverification?: MC;\n };\n}> => ({\n clerk_error: {\n type: 'forbidden',\n reason: REVERIFICATION_REASON,\n metadata: {\n reverification: missingConfig,\n },\n },\n});\n\nconst reverificationErrorResponse = (...args: Parameters<typeof reverificationError>) =>\n new Response(JSON.stringify(reverificationError(...args)), {\n status: 403,\n });\n\nconst isReverificationHint = (result: any): result is ReturnType<typeof reverificationError> => {\n return (\n result &&\n typeof result === 'object' &&\n 'clerk_error' in result &&\n result.clerk_error?.type === 'forbidden' &&\n result.clerk_error?.reason === REVERIFICATION_REASON\n );\n};\n\nexport { isReverificationHint, reverificationError, reverificationErrorResponse };\n"],"mappings":";;AAMA,MAAM,wBAAwB;AAS9B,MAAM,uBACJ,mBAKK,EACL,aAAa;CACX,MAAM;CACN,QAAQ;CACR,UAAU,EACR,gBAAgB,eACjB;CACF,EACF;AAED,MAAM,+BAA+B,GAAG,SACtC,IAAI,SAAS,KAAK,UAAU,oBAAoB,GAAG,KAAK,CAAC,EAAE,EACzD,QAAQ,KACT,CAAC;AAEJ,MAAM,wBAAwB,WAAkE;AAC9F,QACE,UACA,OAAO,WAAW,YAClB,iBAAiB,UACjB,OAAO,aAAa,SAAS,eAC7B,OAAO,aAAa,WAAW"}

package/dist/runtime/authorization-errors.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ReverificationConfig } from "./index-OCkMWBUr.mjs";
+import { Yc as ReverificationConfig } from "./index-BmFYQinq.mjs";
 //#region src/authorization-errors.d.ts
 type ClerkError<T> = {

package/dist/runtime/authorization-errors.d.mts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authorization-errors.d.mts","names":[],"sources":["../../src/authorization-errors.ts"],"sourcesContent":[],"mappings":";;;KAEK;eACU;AAHqC,CAAA;AAGpC,cAGV,qBAAA,GAAqB,sBAAA;AAAA,KAEtB,mBAAA,CAAA,UAAmB;EAGL,QAAA,CAAA,EAAA,GAAA;CACb,GAAA;EAJ2E,QAAA,EAAA,OAAA;~~AAAU~~,CAAA,~~CAAA,~~GAAV,UAAU,CAAA;EAOrF,IAAA,EAAA,WAAA;EAAkC,MAAA,EAAA,OAJrB,qBAIqB;CACtB,GAJZ,CAIY,CAAA;cADZ,mBAIe,EAAA,CAAA,WAJmB,oBAInB,CAAA,CAAA,aAAA,CAAA,EAHH,EAGG,EAAA,GAFlB,mBAEkB,CAAA;EAFlB,QAAA,CAAA,EAAA;IAAmB,cAAA,CAAA,EAED,EAFC;EAchB,CAAA;CAA0D,CAAA;cAA1D,2BAAwC,EAAA,CAAA,GAAA,IAAA,EAAA,UAAA,CAAA,OAAkB,mBAAlB,CAAA,EAAA,GAAsC,QAAtC;cAKxC,oBAL8E,EAAA,CAAA,MAAA,EAAA,GAAA,EAAA,GAAA,MAAA,IAK9B,UAL8B,CAAA,OAKZ,mBALY,CAAA"}
1	+ {"version":3,"file":"authorization-errors.d.mts","names":[],"sources":["../../src/authorization-errors.ts"],"sourcesContent":[],"mappings":";;;KAEK;eACU;AAHqC,CAAA;AAGpC,cAGV,qBAAA,GAAqB,sBAAA;AAAA,KAEtB,mBAAA,CAAA,UAAmB;EAGL,QAAA,CAAA,EAAA,GAAA;CACb,GAAA;EAJ2E,QAAA,EAAA,OAAA;CAAU,CAAA,GAAV,UAAU,CAAA;EAOrF,IAAA,EAAA,WAAA;EAAkC,MAAA,EAAA,OAJrB,qBAIqB;CACtB,GAJZ,CAIY,CAAA;cADZ,mBAIe,EAAA,CAAA,WAJmB,oBAInB,CAAA,CAAA,aAAA,CAAA,EAHH,EAGG,EAAA,GAFlB,mBAEkB,CAAA;EAFlB,QAAA,CAAA,EAAA;IAAmB,cAAA,CAAA,EAED,EAFC;EAchB,CAAA;CAA0D,CAAA;cAA1D,2BAAwC,EAAA,CAAA,GAAA,IAAA,EAAA,UAAA,CAAA,OAAkB,mBAAlB,CAAA,EAAA,GAAsC,QAAtC;cAKxC,oBAL8E,EAAA,CAAA,MAAA,EAAA,GAAA,EAAA,GAAA,MAAA,IAK9B,UAL8B,CAAA,OAKZ,mBALY,CAAA"}

package/dist/runtime/authorization-errors.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ReverificationConfig } from "./index-jRkVeeXT.js";
+import { Yc as ReverificationConfig } from "./index-DEeSkCwV.js";
 //#region src/authorization-errors.d.ts
 type ClerkError<T> = {

package/dist/runtime/authorization-errors.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authorization-errors.d.ts","names":[],"sources":["../../src/authorization-errors.ts"],"sourcesContent":[],"mappings":";;;KAEK;eACU;AAHqC,CAAA;AAGpC,cAGV,qBAAA,GAAqB,sBAAA;AAAA,KAEtB,mBAAA,CAAA,UAAmB;EAGL,QAAA,CAAA,EAAA,GAAA;CACb,GAAA;EAJ2E,QAAA,EAAA,OAAA;~~AAAU~~,CAAA,~~CAAA,~~GAAV,UAAU,CAAA;EAOrF,IAAA,EAAA,WAAA;EAAkC,MAAA,EAAA,OAJrB,qBAIqB;CACtB,GAJZ,CAIY,CAAA;cADZ,mBAIe,EAAA,CAAA,WAJmB,oBAInB,CAAA,CAAA,aAAA,CAAA,EAHH,EAGG,EAAA,GAFlB,mBAEkB,CAAA;EAFlB,QAAA,CAAA,EAAA;IAAmB,cAAA,CAAA,EAED,EAFC;EAchB,CAAA;CAA0D,CAAA;cAA1D,2BAAwC,EAAA,CAAA,GAAA,IAAA,EAAA,UAAA,CAAA,OAAkB,mBAAlB,CAAA,EAAA,GAAsC,QAAtC;cAKxC,oBAL8E,EAAA,CAAA,MAAA,EAAA,GAAA,EAAA,GAAA,MAAA,IAK9B,UAL8B,CAAA,OAKZ,mBALY,CAAA"}
1	+ {"version":3,"file":"authorization-errors.d.ts","names":[],"sources":["../../src/authorization-errors.ts"],"sourcesContent":[],"mappings":";;;KAEK;eACU;AAHqC,CAAA;AAGpC,cAGV,qBAAA,GAAqB,sBAAA;AAAA,KAEtB,mBAAA,CAAA,UAAmB;EAGL,QAAA,CAAA,EAAA,GAAA;CACb,GAAA;EAJ2E,QAAA,EAAA,OAAA;CAAU,CAAA,GAAV,UAAU,CAAA;EAOrF,IAAA,EAAA,WAAA;EAAkC,MAAA,EAAA,OAJrB,qBAIqB;CACtB,GAJZ,CAIY,CAAA;cADZ,mBAIe,EAAA,CAAA,WAJmB,oBAInB,CAAA,CAAA,aAAA,CAAA,EAHH,EAGG,EAAA,GAFlB,mBAEkB,CAAA;EAFlB,QAAA,CAAA,EAAA;IAAmB,cAAA,CAAA,EAED,EAFC;EAchB,CAAA;CAA0D,CAAA;cAA1D,2BAAwC,EAAA,CAAA,GAAA,IAAA,EAAA,UAAA,CAAA,OAAkB,mBAAlB,CAAA,EAAA,GAAsC,QAAtC;cAKxC,oBAL8E,EAAA,CAAA,MAAA,EAAA,GAAA,EAAA,GAAA,MAAA,IAK9B,UAL8B,CAAA,OAKZ,mBALY,CAAA"}

package/dist/runtime/authorization-errors.mjs CHANGED Viewed

@@ -1,3 +1,3 @@
-import { isReverificationHint, reverificationError, reverificationErrorResponse } from "./authorization-errors-CS1pNy8i.mjs";
+import { n as reverificationError, r as reverificationErrorResponse, t as isReverificationHint } from "./authorization-errors-BmyMJ_xr.mjs";
 export { isReverificationHint, reverificationError, reverificationErrorResponse };

package/dist/runtime/authorization.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ActClaim, CheckAuthorizationWithCustomPermissions, GetToken, JwtPayload, OrganizationCustomPermissionKey, OrganizationCustomRoleKey, PendingSessionOptions, ReverificationConfig, SessionStatusClaim, SessionVerificationAfterMinutes, SessionVerificationLevel, SignOut, UseAuthReturn } from "./index-OCkMWBUr.mjs";
+import { Bs as CheckAuthorizationWithCustomPermissions, Qc as SessionVerificationLevel, Us as PendingSessionOptions, Vs as GetToken, Xc as SessionVerificationAfterMinutes, Yc as ReverificationConfig, _ as UseAuthReturn, as as ActClaim, cs as JwtPayload, ds as OrganizationCustomPermissionKey, fs as OrganizationCustomRoleKey, ls as SessionStatusClaim, xt as SignOut } from "./index-BmFYQinq.mjs";
 //#region src/authorization.d.ts
 type AuthorizationOptions = {

package/dist/runtime/authorization.d.mts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authorization.d.mts","names":[],"sources":["../../src/authorization.ts"],"sourcesContent":[],"mappings":";;;KAiBK,oBAAA;;EAAA,KAAA,EAAA,MAAA,GAAA,IAAA,GAAoB,SAAA;EA8GnB,OAAA,EAAA,MAQL,GAAA,IAAA,GAAA,SAAA;EAEK,cAAA,EAAA,MAAA,EAAA,GAAA,IAqBL,GAAA,SAAA;EArB6C,qBAAA,EAAA,CAAA,MAAA,EAAA,MAAA,CAAA,GAAA,IAAA;;;;cAVxC,YAyEA,EAAA,CAAA,GAgBL,EAAA,MAAA,~~GAAA~~,~~IAhB0C~~,GAAA,SAAA,EAAA,~~GAAA~~;~~EAkBtC~~,GAAA,EAAA,MAAA,EAAA;EAIe,IAAA,EAAA,MAAA,EAAA;CACA;cAtFd,4BAuFM,EAAA,CAAA,MAAA,EAvFkC,oBAuFlC,GAAA,SAAA,GAAA,IAAA,EAAA,GAAA,KAAA,GAAA,CAAA,GAAA,GAAA;EAEE,KAAA,0BAAA;EAEO,YAAA,iCAAA;CACP,CAAA~~;;;;;~~AAIkB;~~AAAA;~~cAjC1B,wBAyCoB,EAAA,CAAA,OAAA,EAzCiB,oBAyCjB,EAAA,GAzCwC,uCAyCxC;KAvBrB,gBAAA,GAuBqB;EAAA,UAAA,EAAA;IAAA,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,SAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,aAAA,CAAA,EAnBN,kBAmBM,GAAA,IAAA;IAAA,aAAA,CAAA,EAlBN,UAkBM,GAAA,IAAA;IAAA,KAAA,CAAA,EAjBd,QAiBc,GAAA,IAAA;IAAA,KAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,OAAA,CAAA,EAfZ,yBAeY,GAAA,IAAA;IAAA,OAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,cAAA,CAAA,EAbL,+BAaK,EAAA,GAAA,IAAA;IAevB,QAAA,EA3BW,QA2BX;IAAmB,OAAA,EA1BT,OA0BS;IAAa,GAAA,EAAA,CAAA,MAAA,EAzBjB,UAyBiB,CAzBN,uCAyBM,CAAA,CAAA,CAAA,CAAA,EAAA,GAAA,OAAA;;WAvBxB;;;;;;;cAQL;;;;;;;;;;;;;;;;;GAeH,qBAAmB"}
1	+ {"version":3,"file":"authorization.d.mts","names":[],"sources":["../../src/authorization.ts"],"sourcesContent":[],"mappings":";;;KAiBK,oBAAA;;EAAA,KAAA,EAAA,MAAA,GAAA,IAAA,GAAoB,SAAA;EA8GnB,OAAA,EAAA,MAQL,GAAA,IAAA,GAAA,SAAA;EAEK,cAAA,EAAA,MAAA,EAAA,GAAA,IAqBL,GAAA,SAAA;EArB6C,qBAAA,EAAA,CAAA,MAAA,EAAA,MAAA,CAAA,GAAA,IAAA;;;;cAVxC,YAyEA,EAAA,CAAA,GAgBL,EAAA,MAAA,GAhB0C,IAAA,GAAA,SAAA,EAAA,GAAuB;EAkB7D,GAAA,EAAA,MAAA,EAAA;EAIe,IAAA,EAAA,MAAA,EAAA;CACA;cAtFd,4BAuFM,EAAA,CAAA,MAAA,EAvFkC,oBAuFlC,GAAA,SAAA,GAAA,IAAA,EAAA,GAAA,KAAA,GAAA,CAAA,GAAA,GAAA;EAEE,KAAA,0BAAA;EAEO,YAAA,iCAAA;CACP,CAAA;;;;;;AAIkB;cAjC1B,wBAyCoB,EAAA,CAAA,OAAA,EAzCiB,oBAyCjB,EAAA,GAzCwC,uCAyCxC;KAvBrB,gBAAA,GAuBqB;EAAA,UAAA,EAAA;IAAA,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,SAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,aAAA,CAAA,EAnBN,kBAmBM,GAAA,IAAA;IAAA,aAAA,CAAA,EAlBN,UAkBM,GAAA,IAAA;IAAA,KAAA,CAAA,EAjBd,QAiBc,GAAA,IAAA;IAAA,KAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,OAAA,CAAA,EAfZ,yBAeY,GAAA,IAAA;IAAA,OAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,cAAA,CAAA,EAbL,+BAaK,EAAA,GAAA,IAAA;IAevB,QAAA,EA3BW,QA2BX;IAAmB,OAAA,EA1BT,OA0BS;IAAa,GAAA,EAAA,CAAA,MAAA,EAzBjB,UAyBiB,CAzBN,uCAyBM,CAAA,CAAA,CAAA,CAAA,EAAA,GAAA,OAAA;;WAvBxB;;;;;;;cAQL;;;;;;;;;;;;;;;;;GAeH,qBAAmB"}

package/dist/runtime/authorization.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ActClaim, CheckAuthorizationWithCustomPermissions, GetToken, JwtPayload, OrganizationCustomPermissionKey, OrganizationCustomRoleKey, PendingSessionOptions, ReverificationConfig, SessionStatusClaim, SessionVerificationAfterMinutes, SessionVerificationLevel, SignOut, UseAuthReturn } from "./index-jRkVeeXT.js";
+import { Bs as CheckAuthorizationWithCustomPermissions, Qc as SessionVerificationLevel, Us as PendingSessionOptions, Vs as GetToken, Xc as SessionVerificationAfterMinutes, Yc as ReverificationConfig, _ as UseAuthReturn, as as ActClaim, cs as JwtPayload, ds as OrganizationCustomPermissionKey, fs as OrganizationCustomRoleKey, ls as SessionStatusClaim, xt as SignOut } from "./index-DEeSkCwV.js";
 //#region src/authorization.d.ts
 type AuthorizationOptions = {

package/dist/runtime/authorization.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authorization.d.ts","names":[],"sources":["../../src/authorization.ts"],"sourcesContent":[],"mappings":";;;KAiBK,oBAAA;;EAAA,KAAA,EAAA,MAAA,GAAA,IAAA,GAAoB,SAAA;EA8GnB,OAAA,EAAA,MAQL,GAAA,IAAA,GAAA,SAAA;EAEK,cAAA,EAAA,MAAA,EAAA,GAAA,IAqBL,GAAA,SAAA;EArB6C,qBAAA,EAAA,CAAA,MAAA,EAAA,MAAA,CAAA,GAAA,IAAA;;;;cAVxC,YAyEA,EAAA,CAAA,GAgBL,EAAA,MAAA,GAhB0C,IAAA,GAAA,SAAA,EAAA,GAAA;EAkBtC,GAAA,EAAA,MAAA,EAAA;EAIe,IAAA,EAAA,MAAA,EAAA;CACA;cAtFd,4BAuFM,EAAA,CAAA,MAAA,EAvFkC,oBAuFlC,GAAA,SAAA,GAAA,IAAA,EAAA,GAAA,KAAA,GAAA,CAAA,GAAA,GAAA;EAEE,KAAA,0BAAA;EAEO,YAAA,iCAAA;CACP,CAAA~~;;;;;~~AAIkB;~~AAAA;~~cAjC1B,wBAyCoB,EAAA,CAAA,OAAA,EAzCiB,oBAyCjB,EAAA,GAzCwC,uCAyCxC;KAvBrB,gBAAA,GAuBqB;EAAA,UAAA,EAAA;IAAA,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,SAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,aAAA,CAAA,EAnBN,kBAmBM,GAAA,IAAA;IAAA,aAAA,CAAA,EAlBN,UAkBM,GAAA,IAAA;IAAA,KAAA,CAAA,EAjBd,QAiBc,GAAA,IAAA;IAAA,KAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,OAAA,CAAA,EAfZ,yBAeY,GAAA,IAAA;IAAA,OAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,cAAA,CAAA,EAbL,+BAaK,EAAA,GAAA,IAAA;IAevB,QAAA,EA3BW,QA2BX;IAAmB,OAAA,EA1BT,OA0BS;IAAa,GAAA,EAAA,CAAA,MAAA,EAzBjB,UAyBiB,CAzBN,uCAyBM,CAAA,CAAA,CAAA,CAAA,EAAA,GAAA,OAAA;;WAvBxB;;;;;;;cAQL;;;;;;;;;;;;;;;;;GAeH,qBAAmB"}
1	+ {"version":3,"file":"authorization.d.ts","names":[],"sources":["../../src/authorization.ts"],"sourcesContent":[],"mappings":";;;KAiBK,oBAAA;;EAAA,KAAA,EAAA,MAAA,GAAA,IAAA,GAAoB,SAAA;EA8GnB,OAAA,EAAA,MAQL,GAAA,IAAA,GAAA,SAAA;EAEK,cAAA,EAAA,MAAA,EAAA,GAAA,IAqBL,GAAA,SAAA;EArB6C,qBAAA,EAAA,CAAA,MAAA,EAAA,MAAA,CAAA,GAAA,IAAA;;;;cAVxC,YAyEA,EAAA,CAAA,GAgBL,EAAA,MAAA,GAhB0C,IAAA,GAAA,SAAA,EAAA,GAAA;EAkBtC,GAAA,EAAA,MAAA,EAAA;EAIe,IAAA,EAAA,MAAA,EAAA;CACA;cAtFd,4BAuFM,EAAA,CAAA,MAAA,EAvFkC,oBAuFlC,GAAA,SAAA,GAAA,IAAA,EAAA,GAAA,KAAA,GAAA,CAAA,GAAA,GAAA;EAEE,KAAA,0BAAA;EAEO,YAAA,iCAAA;CACP,CAAA;;;;;;AAIkB;cAjC1B,wBAyCoB,EAAA,CAAA,OAAA,EAzCiB,oBAyCjB,EAAA,GAzCwC,uCAyCxC;KAvBrB,gBAAA,GAuBqB;EAAA,UAAA,EAAA;IAAA,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,SAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,aAAA,CAAA,EAnBN,kBAmBM,GAAA,IAAA;IAAA,aAAA,CAAA,EAlBN,UAkBM,GAAA,IAAA;IAAA,KAAA,CAAA,EAjBd,QAiBc,GAAA,IAAA;IAAA,KAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,OAAA,CAAA,EAfZ,yBAeY,GAAA,IAAA;IAAA,OAAA,CAAA,EAAA,MAAA,GAAA,IAAA;IAAA,cAAA,CAAA,EAbL,+BAaK,EAAA,GAAA,IAAA;IAevB,QAAA,EA3BW,QA2BX;IAAmB,OAAA,EA1BT,OA0BS;IAAa,GAAA,EAAA,CAAA,MAAA,EAzBjB,UAyBiB,CAzBN,uCAyBM,CAAA,CAAA,CAAA,CAAA,EAAA,GAAA,OAAA;;WAvBxB;;;;;;;cAQL;;;;;;;;;;;;;;;;;GAeH,qBAAmB"}

package/dist/runtime/authorization.mjs CHANGED Viewed

@@ -1,3 +1,3 @@
-import { createCheckAuthorization, resolveAuthState, splitByScope, validateReverificationConfig } from "./authorization-XX4mKaAz.mjs";
+import { i as validateReverificationConfig, n as resolveAuthState, r as splitByScope, t as createCheckAuthorization } from "./authorization-DslZKDr7.mjs";
 export { createCheckAuthorization, resolveAuthState, splitByScope, validateReverificationConfig };

package/dist/runtime/{browser-hvvxjQRr.mjs → browser-CSZli54M.mjs} RENAMED Viewed

@@ -6,7 +6,7 @@
 function inBrowser() {
 	return typeof window !== "undefined";
 }
-const botAgents = [
+const botAgentRegex = new RegExp([
 	"bot",
 	"spider",
 	"crawl",
@@ -35,8 +35,7 @@ const botAgents = [
 	"whatsapp",
 	"youtube",
 	"semrush"
-];
-const botAgentRegex = new RegExp(botAgents.join("|"), "i");
+].join("|"), "i");
 /**
 * Checks if the user agent is a bot.
 * @param userAgent - Any user agent string
@@ -62,8 +61,7 @@ function isBrowserOnline() {
 	const navigator = inBrowser() ? window?.navigator : null;
 	if (!navigator) return false;
 	const isNavigatorOnline = navigator?.onLine;
-	const isExperimentalConnectionOnline = navigator?.connection?.rtt !== 0 && navigator?.connection?.downlink !== 0;
-	return isExperimentalConnectionOnline && isNavigatorOnline;
+	return navigator?.connection?.rtt !== 0 && navigator?.connection?.downlink !== 0 && isNavigatorOnline;
 }
 /**
 * Runs `isBrowserOnline` and `isValidBrowser` to check if the current environment is a valid browser and if the navigator is online.
@@ -74,5 +72,5 @@ function isValidBrowserOnline() {
 }
 //#endregion
-export { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot };
-//# sourceMappingURL=browser-hvvxjQRr.mjs.map
+export { userAgentIsRobot as a, isValidBrowserOnline as i, isBrowserOnline as n, isValidBrowser as r, inBrowser as t };
+//# sourceMappingURL=browser-CSZli54M.mjs.map

package/dist/runtime/browser-CSZli54M.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"browser-CSZli54M.mjs","names":[],"sources":["../../src/browser.ts"],"sourcesContent":["/**\n * Checks if the window object is defined. You can also use this to check if something is happening on the client side.\n * @returns {boolean}\n */\nexport function inBrowser(): boolean {\n return typeof window !== 'undefined';\n}\n\nconst botAgents = [\n 'bot',\n 'spider',\n 'crawl',\n 'APIs-Google',\n 'AdsBot',\n 'Googlebot',\n 'mediapartners',\n 'Google Favicon',\n 'FeedFetcher',\n 'Google-Read-Aloud',\n 'DuplexWeb-Google',\n 'googleweblight',\n 'bing',\n 'yandex',\n 'baidu',\n 'duckduck',\n 'yahoo',\n 'ecosia',\n 'ia_archiver',\n 'facebook',\n 'instagram',\n 'pinterest',\n 'reddit',\n 'slack',\n 'twitter',\n 'whatsapp',\n 'youtube',\n 'semrush',\n];\nconst botAgentRegex = new RegExp(botAgents.join('|'), 'i');\n\n/**\n * Checks if the user agent is a bot.\n * @param userAgent - Any user agent string\n * @returns {boolean}\n */\nexport function userAgentIsRobot(userAgent: string): boolean {\n return !userAgent ? false : botAgentRegex.test(userAgent);\n}\n\n/**\n * Checks if the current environment is a browser and the user agent is not a bot.\n * @returns {boolean}\n */\nexport function isValidBrowser(): boolean {\n const navigator = inBrowser() ? window?.navigator : null;\n if (!navigator) {\n return false;\n }\n return !userAgentIsRobot(navigator?.userAgent) && !navigator?.webdriver;\n}\n\n/**\n * Checks if the current environment is a browser and if the navigator is online.\n * @returns {boolean}\n */\nexport function isBrowserOnline(): boolean {\n const navigator = inBrowser() ? window?.navigator : null;\n if (!navigator) {\n return false;\n }\n\n const isNavigatorOnline = navigator?.onLine;\n\n // Being extra safe with the experimental `connection` property, as it is not defined in all browsers\n // https://developer.mozilla.org/en-US/docs/Web/API/Navigator/connection#browser_compatibility\n // @ts-ignore\n const isExperimentalConnectionOnline = navigator?.connection?.rtt !== 0 && navigator?.connection?.downlink !== 0;\n return isExperimentalConnectionOnline && isNavigatorOnline;\n}\n\n/**\n * Runs `isBrowserOnline` and `isValidBrowser` to check if the current environment is a valid browser and if the navigator is online.\n * @returns {boolean}\n */\nexport function isValidBrowserOnline(): boolean {\n return isBrowserOnline() && isValidBrowser();\n}\n"],"mappings":";;;;;AAIA,SAAgB,YAAqB;AACnC,QAAO,OAAO,WAAW;;AAiC3B,MAAM,gBAAgB,IAAI,OA9BR;CAChB;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAC0C,KAAK,IAAI,EAAE,IAAI;;;;;;AAO1D,SAAgB,iBAAiB,WAA4B;AAC3D,QAAO,CAAC,YAAY,QAAQ,cAAc,KAAK,UAAU;;;;;;AAO3D,SAAgB,iBAA0B;CACxC,MAAM,YAAY,WAAW,GAAG,QAAQ,YAAY;AACpD,KAAI,CAAC,UACH,QAAO;AAET,QAAO,CAAC,iBAAiB,WAAW,UAAU,IAAI,CAAC,WAAW;;;;;;AAOhE,SAAgB,kBAA2B;CACzC,MAAM,YAAY,WAAW,GAAG,QAAQ,YAAY;AACpD,KAAI,CAAC,UACH,QAAO;CAGT,MAAM,oBAAoB,WAAW;AAMrC,QADuC,WAAW,YAAY,QAAQ,KAAK,WAAW,YAAY,aAAa,KACtE;;;;;;AAO3C,SAAgB,uBAAgC;AAC9C,QAAO,iBAAiB,IAAI,gBAAgB"}

package/dist/runtime/{browser-DJuTPwze.js → browser-Ch5Nzweq.js} RENAMED Viewed

@@ -7,7 +7,7 @@
 function inBrowser() {
 	return typeof window !== "undefined";
 }
-const botAgents = [
+const botAgentRegex = new RegExp([
 	"bot",
 	"spider",
 	"crawl",
@@ -36,8 +36,7 @@ const botAgents = [
 	"whatsapp",
 	"youtube",
 	"semrush"
-];
-const botAgentRegex = new RegExp(botAgents.join("|"), "i");
+].join("|"), "i");
 /**
 * Checks if the user agent is a bot.
 * @param userAgent - Any user agent string
@@ -63,8 +62,7 @@ function isBrowserOnline() {
 	const navigator = inBrowser() ? window?.navigator : null;
 	if (!navigator) return false;
 	const isNavigatorOnline = navigator?.onLine;
-	const isExperimentalConnectionOnline = navigator?.connection?.rtt !== 0 && navigator?.connection?.downlink !== 0;
-	return isExperimentalConnectionOnline && isNavigatorOnline;
+	return navigator?.connection?.rtt !== 0 && navigator?.connection?.downlink !== 0 && isNavigatorOnline;
 }
 /**
 * Runs `isBrowserOnline` and `isValidBrowser` to check if the current environment is a valid browser and if the navigator is online.
@@ -105,4 +103,4 @@ Object.defineProperty(exports, 'userAgentIsRobot', {
     return userAgentIsRobot;
   }
 });
-//# sourceMappingURL=browser-DJuTPwze.js.map
+//# sourceMappingURL=browser-Ch5Nzweq.js.map

package/dist/runtime/browser-Ch5Nzweq.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"browser-Ch5Nzweq.js","names":[],"sources":["../../src/browser.ts"],"sourcesContent":["/**\n * Checks if the window object is defined. You can also use this to check if something is happening on the client side.\n * @returns {boolean}\n */\nexport function inBrowser(): boolean {\n return typeof window !== 'undefined';\n}\n\nconst botAgents = [\n 'bot',\n 'spider',\n 'crawl',\n 'APIs-Google',\n 'AdsBot',\n 'Googlebot',\n 'mediapartners',\n 'Google Favicon',\n 'FeedFetcher',\n 'Google-Read-Aloud',\n 'DuplexWeb-Google',\n 'googleweblight',\n 'bing',\n 'yandex',\n 'baidu',\n 'duckduck',\n 'yahoo',\n 'ecosia',\n 'ia_archiver',\n 'facebook',\n 'instagram',\n 'pinterest',\n 'reddit',\n 'slack',\n 'twitter',\n 'whatsapp',\n 'youtube',\n 'semrush',\n];\nconst botAgentRegex = new RegExp(botAgents.join('|'), 'i');\n\n/**\n * Checks if the user agent is a bot.\n * @param userAgent - Any user agent string\n * @returns {boolean}\n */\nexport function userAgentIsRobot(userAgent: string): boolean {\n return !userAgent ? false : botAgentRegex.test(userAgent);\n}\n\n/**\n * Checks if the current environment is a browser and the user agent is not a bot.\n * @returns {boolean}\n */\nexport function isValidBrowser(): boolean {\n const navigator = inBrowser() ? window?.navigator : null;\n if (!navigator) {\n return false;\n }\n return !userAgentIsRobot(navigator?.userAgent) && !navigator?.webdriver;\n}\n\n/**\n * Checks if the current environment is a browser and if the navigator is online.\n * @returns {boolean}\n */\nexport function isBrowserOnline(): boolean {\n const navigator = inBrowser() ? window?.navigator : null;\n if (!navigator) {\n return false;\n }\n\n const isNavigatorOnline = navigator?.onLine;\n\n // Being extra safe with the experimental `connection` property, as it is not defined in all browsers\n // https://developer.mozilla.org/en-US/docs/Web/API/Navigator/connection#browser_compatibility\n // @ts-ignore\n const isExperimentalConnectionOnline = navigator?.connection?.rtt !== 0 && navigator?.connection?.downlink !== 0;\n return isExperimentalConnectionOnline && isNavigatorOnline;\n}\n\n/**\n * Runs `isBrowserOnline` and `isValidBrowser` to check if the current environment is a valid browser and if the navigator is online.\n * @returns {boolean}\n */\nexport function isValidBrowserOnline(): boolean {\n return isBrowserOnline() && isValidBrowser();\n}\n"],"mappings":";;;;;;AAIA,SAAgB,YAAqB;AACnC,QAAO,OAAO,WAAW;;AAiC3B,MAAM,gBAAgB,IAAI,OA9BR;CAChB;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAC0C,KAAK,IAAI,EAAE,IAAI;;;;;;AAO1D,SAAgB,iBAAiB,WAA4B;AAC3D,QAAO,CAAC,YAAY,QAAQ,cAAc,KAAK,UAAU;;;;;;AAO3D,SAAgB,iBAA0B;CACxC,MAAM,YAAY,WAAW,GAAG,QAAQ,YAAY;AACpD,KAAI,CAAC,UACH,QAAO;AAET,QAAO,CAAC,iBAAiB,WAAW,UAAU,IAAI,CAAC,WAAW;;;;;;AAOhE,SAAgB,kBAA2B;CACzC,MAAM,YAAY,WAAW,GAAG,QAAQ,YAAY;AACpD,KAAI,CAAC,UACH,QAAO;CAGT,MAAM,oBAAoB,WAAW;AAMrC,QADuC,WAAW,YAAY,QAAQ,KAAK,WAAW,YAAY,aAAa,KACtE;;;;;;AAO3C,SAAgB,uBAAgC;AAC9C,QAAO,iBAAiB,IAAI,gBAAgB"}

package/dist/runtime/{browser-CT1g0w-N.d.ts → browser-Dnks5mlF.d.ts} RENAMED Viewed

@@ -26,5 +26,5 @@ declare function isBrowserOnline(): boolean;
  */
 declare function isValidBrowserOnline(): boolean;
 //#endregion
-export { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot };
-//# sourceMappingURL=browser-CT1g0w-N.d.ts.map
+export { userAgentIsRobot as a, isValidBrowserOnline as i, isBrowserOnline as n, isValidBrowser as r, inBrowser as t };
+//# sourceMappingURL=browser-Dnks5mlF.d.ts.map

package/dist/runtime/{browser-CT1g0w-N.d.ts.map → browser-Dnks5mlF.d.ts.map} RENAMED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"browser-~~CT1g0w-N~~.d.ts","names":[],"sources":["../../src/browser.ts"],"sourcesContent":[],"mappings":";;AAIA;AAyCA;AAQA;AAYgB,iBA7DA,SAAA,CAAA,CA6De,EAAA,OAAA;AAmB/B;;;;;iBAvCgB,gBAAA;;;;;iBAQA,cAAA,CAAA;;;;;iBAYA,eAAA,CAAA;;;;;iBAmBA,oBAAA,CAAA"}
1	+ {"version":3,"file":"browser-Dnks5mlF.d.ts","names":[],"sources":["../../src/browser.ts"],"sourcesContent":[],"mappings":";;AAIA;AAyCA;AAQA;AAYgB,iBA7DA,SAAA,CAAA,CA6De,EAAA,OAAA;AAmB/B;;;;;iBAvCgB,gBAAA;;;;;iBAQA,cAAA,CAAA;;;;;iBAYA,eAAA,CAAA;;;;;iBAmBA,oBAAA,CAAA"}

package/dist/runtime/{browser-BZxfK_h9.d.mts → browser-PBKCCO2m.d.mts} RENAMED Viewed

@@ -26,5 +26,5 @@ declare function isBrowserOnline(): boolean;
  */
 declare function isValidBrowserOnline(): boolean;
 //#endregion
-export { inBrowser as inBrowser$1, isBrowserOnline as isBrowserOnline$1, isValidBrowser as isValidBrowser$1, isValidBrowserOnline as isValidBrowserOnline$1, userAgentIsRobot as userAgentIsRobot$1 };
-//# sourceMappingURL=browser-BZxfK_h9.d.mts.map
+export { userAgentIsRobot as a, isValidBrowserOnline as i, isBrowserOnline as n, isValidBrowser as r, inBrowser as t };
+//# sourceMappingURL=browser-PBKCCO2m.d.mts.map

package/dist/runtime/{browser-BZxfK_h9.d.mts.map → browser-PBKCCO2m.d.mts.map} RENAMED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"browser-~~BZxfK_h9~~.d.mts","names":[],"sources":["../../src/browser.ts"],"sourcesContent":[],"mappings":";;AAIA;AAyCA;AAQA;AAYgB,iBA7DA,SAAA,CAAA,CA6De,EAAA,OAAA;AAmB/B;;;;;iBAvCgB,gBAAA;;;;;iBAQA,cAAA,CAAA;;;;;iBAYA,eAAA,CAAA;;;;;iBAmBA,oBAAA,CAAA"}
1	+ {"version":3,"file":"browser-PBKCCO2m.d.mts","names":[],"sources":["../../src/browser.ts"],"sourcesContent":[],"mappings":";;AAIA;AAyCA;AAQA;AAYgB,iBA7DA,SAAA,CAAA,CA6De,EAAA,OAAA;AAmB/B;;;;;iBAvCgB,gBAAA;;;;;iBAQA,cAAA,CAAA;;;;;iBAYA,eAAA,CAAA;;;;;iBAmBA,oBAAA,CAAA"}

package/dist/runtime/browser.d.mts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { inBrowser$1 as inBrowser, isBrowserOnline$1 as isBrowserOnline, isValidBrowser$1 as isValidBrowser, isValidBrowserOnline$1 as isValidBrowserOnline, userAgentIsRobot$1 as userAgentIsRobot } from "./browser-BZxfK_h9.mjs";
+import { a as userAgentIsRobot, i as isValidBrowserOnline, n as isBrowserOnline, r as isValidBrowser, t as inBrowser } from "./browser-PBKCCO2m.mjs";
 export { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot };

package/dist/runtime/browser.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot } from "./browser-CT1g0w-N.js";
+import { a as userAgentIsRobot, i as isValidBrowserOnline, n as isBrowserOnline, r as isValidBrowser, t as inBrowser } from "./browser-Dnks5mlF.js";
 export { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot };

package/dist/runtime/browser.js CHANGED Viewed

@@ -1,4 +1,4 @@
-const require_browser = require('./browser-DJuTPwze.js');
+const require_browser = require('./browser-Ch5Nzweq.js');
 exports.inBrowser = require_browser.inBrowser;
 exports.isBrowserOnline = require_browser.isBrowserOnline;

package/dist/runtime/browser.mjs CHANGED Viewed

@@ -1,3 +1,3 @@
-import { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot } from "./browser-hvvxjQRr.mjs";
+import { a as userAgentIsRobot, i as isValidBrowserOnline, n as isBrowserOnline, r as isValidBrowser, t as inBrowser } from "./browser-CSZli54M.mjs";
 export { inBrowser, isBrowserOnline, isValidBrowser, isValidBrowserOnline, userAgentIsRobot };

package/dist/runtime/buildAccountsBaseUrl.js CHANGED Viewed

@@ -5,8 +5,7 @@
 */
 function buildAccountsBaseUrl(frontendApi) {
 	if (!frontendApi) return "";
-	const accountsBaseUrl = frontendApi.replace(/clerk\.accountsstage\./, "accountsstage.").replace(/clerk\.accounts\.|clerk\./, "accounts.");
-	return `https://${accountsBaseUrl}`;
+	return `https://${frontendApi.replace(/clerk\.accountsstage\./, "accountsstage.").replace(/clerk\.accounts\.|clerk\./, "accounts.")}`;
 }
 //#endregion

package/dist/runtime/buildAccountsBaseUrl.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"buildAccountsBaseUrl.js","names":[~~"frontendApi?: string"~~],"sources":["../../src/buildAccountsBaseUrl.ts"],"sourcesContent":["/*\n Builds a full origin string pointing to the Account Portal for the given frontend API.\n */\nexport function buildAccountsBaseUrl(frontendApi?: string): string {\n if (!frontendApi) {\n return '';\n }\n\n // convert url from FAPI to accounts for Kima and legacy (prod & dev) instances\n const accountsBaseUrl = frontendApi\n // staging accounts\n .replace(/clerk\\.accountsstage\\./, 'accountsstage.')\n .replace(/clerk\\.accounts\\.\|clerk\\./, 'accounts.');\n return `https://${accountsBaseUrl}`;\n}\n"],"mappings":";;;;;AAGA,SAAgB,~~qBAAqBA~~,aAA8B;AACjE,~~MAAK~~,YACH,QAAO;~~CAIT~~,~~MAAM~~,~~kBAAkB~~,YAErB,QAAQ,0BAA0B,iBAAiB,CACnD,QAAQ,6BAA6B,YAAY~~;AACpD,SAAQ,UAAU,gBAAgB;AACnC~~"}
1	+ {"version":3,"file":"buildAccountsBaseUrl.js","names":[],"sources":["../../src/buildAccountsBaseUrl.ts"],"sourcesContent":["/*\n Builds a full origin string pointing to the Account Portal for the given frontend API.\n */\nexport function buildAccountsBaseUrl(frontendApi?: string): string {\n if (!frontendApi) {\n return '';\n }\n\n // convert url from FAPI to accounts for Kima and legacy (prod & dev) instances\n const accountsBaseUrl = frontendApi\n // staging accounts\n .replace(/clerk\\.accountsstage\\./, 'accountsstage.')\n .replace(/clerk\\.accounts\\.\|clerk\\./, 'accounts.');\n return `https://${accountsBaseUrl}`;\n}\n"],"mappings":";;;;;AAGA,SAAgB,qBAAqB,aAA8B;AACjE,KAAI,CAAC,YACH,QAAO;AAQT,QAAO,WAJiB,YAErB,QAAQ,0BAA0B,iBAAiB,CACnD,QAAQ,6BAA6B,YAAY"}

package/dist/runtime/buildAccountsBaseUrl.mjs CHANGED Viewed

@@ -4,8 +4,7 @@
 */
 function buildAccountsBaseUrl(frontendApi) {
 	if (!frontendApi) return "";
-	const accountsBaseUrl = frontendApi.replace(/clerk\.accountsstage\./, "accountsstage.").replace(/clerk\.accounts\.|clerk\./, "accounts.");
-	return `https://${accountsBaseUrl}`;
+	return `https://${frontendApi.replace(/clerk\.accountsstage\./, "accountsstage.").replace(/clerk\.accounts\.|clerk\./, "accounts.")}`;
 }
 //#endregion

package/dist/runtime/buildAccountsBaseUrl.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"buildAccountsBaseUrl.mjs","names":[~~"frontendApi?: string"~~],"sources":["../../src/buildAccountsBaseUrl.ts"],"sourcesContent":["/*\n Builds a full origin string pointing to the Account Portal for the given frontend API.\n */\nexport function buildAccountsBaseUrl(frontendApi?: string): string {\n if (!frontendApi) {\n return '';\n }\n\n // convert url from FAPI to accounts for Kima and legacy (prod & dev) instances\n const accountsBaseUrl = frontendApi\n // staging accounts\n .replace(/clerk\\.accountsstage\\./, 'accountsstage.')\n .replace(/clerk\\.accounts\\.\|clerk\\./, 'accounts.');\n return `https://${accountsBaseUrl}`;\n}\n"],"mappings":";;;;AAGA,SAAgB,~~qBAAqBA~~,aAA8B;AACjE,~~MAAK~~,YACH,QAAO;~~CAIT~~,~~MAAM~~,~~kBAAkB~~,YAErB,QAAQ,0BAA0B,iBAAiB,CACnD,QAAQ,6BAA6B,YAAY~~;AACpD,SAAQ,UAAU,gBAAgB;AACnC~~"}
1	+ {"version":3,"file":"buildAccountsBaseUrl.mjs","names":[],"sources":["../../src/buildAccountsBaseUrl.ts"],"sourcesContent":["/*\n Builds a full origin string pointing to the Account Portal for the given frontend API.\n */\nexport function buildAccountsBaseUrl(frontendApi?: string): string {\n if (!frontendApi) {\n return '';\n }\n\n // convert url from FAPI to accounts for Kima and legacy (prod & dev) instances\n const accountsBaseUrl = frontendApi\n // staging accounts\n .replace(/clerk\\.accountsstage\\./, 'accountsstage.')\n .replace(/clerk\\.accounts\\.\|clerk\\./, 'accounts.');\n return `https://${accountsBaseUrl}`;\n}\n"],"mappings":";;;;AAGA,SAAgB,qBAAqB,aAA8B;AACjE,KAAI,CAAC,YACH,QAAO;AAQT,QAAO,WAJiB,YAErB,QAAQ,0BAA0B,iBAAiB,CACnD,QAAQ,6BAA6B,YAAY"}

package/dist/runtime/clerkEventBus.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ClerkEventPayload } from "./index-OCkMWBUr.mjs";
+import { L as ClerkEventPayload } from "./index-BmFYQinq.mjs";
 //#region src/clerkEventBus.d.ts
 declare const clerkEvents: {

package/dist/runtime/clerkEventBus.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ClerkEventPayload } from "./index-jRkVeeXT.js";
+import { L as ClerkEventPayload } from "./index-DEeSkCwV.js";
 //#region src/clerkEventBus.d.ts
 declare const clerkEvents: {

package/dist/runtime/clerkEventBus.js CHANGED Viewed

@@ -1,4 +1,4 @@
-const require_eventBus = require('./eventBus-Br28g2jP.js');
+const require_eventBus = require('./eventBus-DwIqUhlf.js');
 //#region src/clerkEventBus.ts
 const clerkEvents = { Status: "status" };