@codefox-inc/oauth-provider 0.2.0

package/dist/lib/convex-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"convex-types.d.ts","sourceRoot":"","sources":["../../src/lib/convex-types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACR,iBAAiB,EACjB,kBAAkB,EAClB,YAAY,EACZ,kBAAkB,EACrB,MAAM,eAAe,CAAC;AAEvB;;;;;;;;;GASG;AACH,MAAM,MAAM,WAAW,GAAG;IACtB,QAAQ,CAAC,CAAC,SAAS,iBAAiB,CAAC,OAAO,EAAE,kBAAkB,CAAC,EAC7D,KAAK,EAAE,CAAC,EACR,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC,GACtB,OAAO,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,CAAC;CACrC,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG,WAAW,GAAG;IACvC,WAAW,CAAC,CAAC,SAAS,iBAAiB,CAAC,UAAU,EAAE,kBAAkB,CAAC,EACnE,QAAQ,EAAE,CAAC,EACX,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC,GACtB,OAAO,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,CAAC;CACrC,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,cAAc,GAAG;IACxC,SAAS,CAAC,CAAC,SAAS,iBAAiB,CAAC,QAAQ,EAAE,kBAAkB,CAAC,EAC/D,MAAM,EAAE,CAAC,EACT,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC,GACtB,OAAO,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,CAAC;CACrC,CAAC"}

package/dist/lib/convex-types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=convex-types.js.map

package/dist/lib/convex-types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"convex-types.js","sourceRoot":"","sources":["../../src/lib/convex-types.ts"],"names":[],"mappings":""}

package/dist/lib/oauth.d.ts

@@ -0,0 +1,123 @@
+import { exportJWK } from "jose";
+import type { JWTPayload } from "jose";
+import type { Auth } from "convex/server";
+import type { RunActionCtx } from "./convex-types.js";
+/**
+ * OAuth 2.1 Provider Configuration
+ */
+export interface OAuthConfig {
+    privateKey: string;
+    jwks: string;
+    keyId?: string;
+    siteUrl: string;
+    convexSiteUrl?: string;
+    allowedOrigins?: string;
+    allowedScopes?: string[];
+    getUserId?: (ctx: RunActionCtx & {
+        auth: Auth;
+    }, request: Request) => Promise<string | null> | string | null;
+    checkAuthorization?: (ctx: RunActionCtx & {
+        auth: Auth;
+    }, userId: string, clientId?: string) => Promise<boolean>;
+    allowDynamicClientRegistration?: boolean;
+    prefix?: string;
+}
+/**
+ * User Profile for UserInfo endpoint
+ */
+export interface UserProfile {
+    sub: string;
+    name?: string;
+    email?: string;
+    picture?: string;
+    email_verified?: boolean;
+}
+type JoseJWK = Awaited<ReturnType<typeof exportJWK>>;
+/**
+ * Reset key cache (for testing)
+ */
+export declare function resetKeysForTest(): void;
+/**
+ * Get Public JWK (for JWKS endpoint)
+ * @deprecated Use getJWKS instead
+ */
+export declare function getPublicJWK(publicKeyPEM: string): Promise<JoseJWK>;
+/**
+ * Get JWKS for the JWKS endpoint
+ * Adds kid: "default-key" to each key if not present (for compatibility with Convex Auth JWKS)
+ */
+export declare function getJWKS(config: OAuthConfig): Promise<{
+    keys: JoseJWK[];
+}>;
+export declare function getSigningKeyId(config: OAuthConfig): string;
+/**
+ * Sign a JWT using the private key
+ */
+export declare function sign(payload: Record<string, unknown>, subject: string, audience: string, expiresIn: string | number, privateKeyPEM: string, issuer?: string, keyId?: string): Promise<string>;
+/**
+ * Verify Access Token using Public Key (PEM) or JWKS
+ */
+export declare function verifyAccessToken(token: string, publicKeyOrConfig: string | OAuthConfig, issuerUrl: string, expectedAudience?: string): Promise<JWTPayload>;
+/**
+ * Generate a random code (Authorization Code)
+ */
+export declare function generateCode(length?: number): string;
+/**
+ * Generate a cryptographically strong Client Secret (hex string)
+ */
+export declare function generateClientSecret(length?: number): string;
+/**
+ * Get Issuer URL helper
+ */
+export declare function getIssuerUrl(config: OAuthConfig): string;
+/**
+ * Normalize OAuth prefix for consistent URL building.
+ * Ensures a leading slash, trims a trailing slash, and treats "/" as root ("").
+ */
+export declare function normalizePrefix(prefix?: string): string;
+/**
+ * CORS Helper - Get allowed origin
+ */
+export declare function getAllowedOrigin(origin: string | null, config: OAuthConfig): string | null;
+/**
+ * Create CORS headers
+ */
+export declare function createCorsHeaders(origin: string | null, config: OAuthConfig, methods?: string): Record<string, string>;
+/**
+ * Handle CORS preflight OPTIONS request
+ */
+export declare function handleCorsOptions(request: Request, config: OAuthConfig, methods?: string): Response | null;
+/**
+ * OAuth Error Class
+ */
+export declare class OAuthError extends Error {
+    code: string;
+    statusCode: number;
+    constructor(code: string, message: string, statusCode?: number);
+    toResponse(headers: Record<string, string>): Response;
+}
+/**
+ * Default OAuth issuer pattern
+ * Used to identify OAuth tokens by checking if issuer URL contains this pattern
+ */
+export declare const DEFAULT_OAUTH_ISSUER_PATTERN = "/oauth";
+/**
+ * Check if an identity is from an OAuth token
+ * @param identity - User identity from ctx.auth.getUserIdentity()
+ * @param issuerPattern - Pattern to match in issuer URL (default: "/oauth")
+ * @returns true if the identity is from an OAuth token
+ */
+export declare function isOAuthToken(identity: {
+    issuer?: string;
+    subject?: string;
+} | null | undefined, issuerPattern?: string): boolean;
+/**
+ * Extract client ID from an OAuth token identity
+ * @param identity - User identity from ctx.auth.getUserIdentity()
+ * @returns Client ID if present, undefined otherwise
+ */
+export declare function getOAuthClientId(identity: {
+    cid?: string;
+} | null | undefined): string | undefined;
+export {};
+//# sourceMappingURL=oauth.d.ts.map

package/dist/lib/oauth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.d.ts","sourceRoot":"","sources":["../../src/lib/oauth.ts"],"names":[],"mappings":"AAAA,OAAO,EAGH,SAAS,EAIZ,MAAM,MAAM,CAAC;AACd,OAAO,KAAK,EAAE,UAAU,EAAW,MAAM,MAAM,CAAC;AAChD,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAC1C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEtD;;GAEG;AACH,MAAM,WAAW,WAAW;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,SAAS,CAAC,EAAE,CAAC,GAAG,EAAE,YAAY,GAAG;QAAE,IAAI,EAAE,IAAI,CAAA;KAAE,EAAE,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,MAAM,GAAG,IAAI,CAAC;IAC7G,kBAAkB,CAAC,EAAE,CAAC,GAAG,EAAE,YAAY,GAAG;QAAE,IAAI,EAAE,IAAI,CAAA;KAAE,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;IACjH,8BAA8B,CAAC,EAAE,OAAO,CAAC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC5B;AAID,KAAK,OAAO,GAAG,OAAO,CAAC,UAAU,CAAC,OAAO,SAAS,CAAC,CAAC,CAAC;AAOrD;;GAEG;AACH,wBAAgB,gBAAgB,SAI/B;AA4BD;;;GAGG;AACH,wBAAsB,YAAY,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAczE;AAED;;;GAGG;AACH,wBAAsB,OAAO,CAAC,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC;IAAE,IAAI,EAAE,OAAO,EAAE,CAAA;CAAE,CAAC,CAgC/E;AASD,wBAAgB,eAAe,CAAC,MAAM,EAAE,WAAW,GAAG,MAAM,CAY3D;AAED;;GAEG;AACH,wBAAsB,IAAI,CACtB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAChC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,EAChB,SAAS,EAAE,MAAM,GAAG,MAAM,EAC1B,aAAa,EAAE,MAAM,EACrB,MAAM,CAAC,EAAE,MAAM,EACf,KAAK,GAAE,MAAuB,GAC/B,OAAO,CAAC,MAAM,CAAC,CAejB;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CACnC,KAAK,EAAE,MAAM,EACb,iBAAiB,EAAE,MAAM,GAAG,WAAW,EACvC,SAAS,EAAE,MAAM,EACjB,gBAAgB,GAAE,MAAiB,GACpC,OAAO,CAAC,UAAU,CAAC,CAoBrB;AAqBD;;GAEG;AACH,wBAAgB,YAAY,CAAC,MAAM,SAAK,GAAG,MAAM,CAShD;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,SAAK,GAAG,MAAM,CAIxD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,MAAM,EAAE,WAAW,GAAG,MAAM,CAIxD;AAED;;;GAGG;AACH,wBAAgB,eAAe,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAQvD;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,EAAE,MAAM,EAAE,WAAW,GAAG,MAAM,GAAG,IAAI,CA6B1F;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAC7B,MAAM,EAAE,MAAM,GAAG,IAAI,EACrB,MAAM,EAAE,WAAW,EACnB,OAAO,GAAE,MAA6B,GACvC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAWxB;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAC7B,OAAO,EAAE,OAAO,EAChB,MAAM,EAAE,WAAW,EACnB,OAAO,GAAE,MAA6B,GACvC,QAAQ,GAAG,IAAI,CAMjB;AAED;;GAEG;AACH,qBAAa,UAAW,SAAQ,KAAK;IAEtB,IAAI,EAAE,MAAM;IAEZ,UAAU,EAAE,MAAM;gBAFlB,IAAI,EAAE,MAAM,EACnB,OAAO,EAAE,MAAM,EACR,UAAU,GAAE,MAAY;IAMnC,UAAU,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,QAAQ;CASxD;AAMD;;;GAGG;AACH,eAAO,MAAM,4BAA4B,WAAW,CAAC;AAErD;;;;;GAKG;AACH,wBAAgB,YAAY,CACxB,QAAQ,EAAE;IAAE,MAAM,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAAI,GAAG,SAAS,EAClE,aAAa,GAAE,MAAqC,GACrD,OAAO,CAET;AAED;;;;GAIG;AACH,wBAAgB,gBAAgB,CAC5B,QAAQ,EAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAAI,GAAG,SAAS,GAC9C,MAAM,GAAG,SAAS,CAEpB"}

package/dist/lib/oauth.js

@@ -0,0 +1,295 @@
+import { SignJWT, importPKCS8, exportJWK, jwtVerify, importSPKI, createLocalJWKSet } from "jose";
+const keyCache = new Map();
+const jwkCache = new Map();
+const jwksKeyCache = new Map();
+const DEFAULT_KEY_ID = "default-key";
+/**
+ * Reset key cache (for testing)
+ */
+export function resetKeysForTest() {
+    keyCache.clear();
+    jwkCache.clear();
+    jwksKeyCache.clear();
+}
+/**
+ * Get Private Key from PEM string
+ */
+async function getPrivateKey(privateKeyPEM) {
+    const cacheKey = `private:${privateKeyPEM}`;
+    const cached = keyCache.get(cacheKey);
+    if (cached)
+        return cached;
+    const key = await importPKCS8(privateKeyPEM, "RS256");
+    keyCache.set(cacheKey, key);
+    return key;
+}
+/**
+ * Get Public Key from PEM string
+ */
+async function getPublicKey(publicKeyPEM) {
+    const cacheKey = `public:${publicKeyPEM}`;
+    const cached = keyCache.get(cacheKey);
+    if (cached)
+        return cached;
+    const key = await importSPKI(publicKeyPEM, "RS256", { extractable: true });
+    keyCache.set(cacheKey, key);
+    return key;
+}
+/**
+ * Get Public JWK (for JWKS endpoint)
+ * @deprecated Use getJWKS instead
+ */
+export async function getPublicJWK(publicKeyPEM) {
+    const cacheKey = `jwk:${publicKeyPEM}`;
+    const cached = jwkCache.get(cacheKey);
+    if (cached)
+        return cached;
+    const key = await getPublicKey(publicKeyPEM);
+    const jwk = await exportJWK(key);
+    // Remove private fields
+    const { d: _d, p: _p, q: _q, dp: _dp, dq: _dq, qi: _qi, ...publicKey } = jwk;
+    const result = { ...publicKey, use: "sig", alg: "RS256", kid: "default-key" };
+    jwkCache.set(cacheKey, result);
+    return result;
+}
+/**
+ * Get JWKS for the JWKS endpoint
+ * Adds kid: "default-key" to each key if not present (for compatibility with Convex Auth JWKS)
+ */
+export async function getJWKS(config) {
+    const jwks = JSON.parse(config.jwks);
+    const keyId = getSigningKeyId(config);
+    jwks.keys = jwks.keys.map((key) => {
+        const { d: _d, p: _p, q: _q, dp: _dp, dq: _dq, qi: _qi, oth: _oth, k: _k, ...publicKey } = key;
+        return {
+            ...publicKey,
+            kid: publicKey.kid ?? keyId,
+        };
+    });
+    return jwks;
+}
+function ensureKidOnJwksKeys(keys, keyId) {
+    return keys.map((key) => ({
+        ...key,
+        kid: key.kid ?? keyId,
+    }));
+}
+export function getSigningKeyId(config) {
+    if (config.keyId)
+        return config.keyId;
+    try {
+        const jwks = JSON.parse(config.jwks);
+        const kid = jwks.keys?.[0]?.kid;
+        if (typeof kid === "string" && kid.length > 0) {
+            return kid;
+        }
+    }
+    catch {
+        // Fall through to default when jwks is invalid.
+    }
+    return DEFAULT_KEY_ID;
+}
+/**
+ * Sign a JWT using the private key
+ */
+export async function sign(payload, subject, audience, expiresIn, privateKeyPEM, issuer, keyId = DEFAULT_KEY_ID) {
+    const privateKey = await getPrivateKey(privateKeyPEM);
+    const jwt = new SignJWT(payload)
+        .setProtectedHeader({ alg: "RS256", kid: keyId })
+        .setIssuedAt()
+        .setSubject(subject)
+        .setAudience(audience)
+        .setExpirationTime(expiresIn);
+    if (issuer) {
+        jwt.setIssuer(issuer);
+    }
+    return jwt.sign(privateKey);
+}
+/**
+ * Verify Access Token using Public Key (PEM) or JWKS
+ */
+export async function verifyAccessToken(token, publicKeyOrConfig, issuerUrl, expectedAudience = "convex") {
+    let publicKey;
+    if (typeof publicKeyOrConfig === "string") {
+        // Legacy: PEM string
+        publicKey = await getPublicKey(publicKeyOrConfig);
+    }
+    else {
+        // New: OAuthConfig - get key from jwks or publicKey
+        publicKey = await getVerificationKey(publicKeyOrConfig);
+    }
+    const options = {
+        issuer: issuerUrl,
+        audience: expectedAudience,
+    };
+    const { payload } = typeof publicKey === "function"
+        ? await jwtVerify(token, publicKey, options)
+        : await jwtVerify(token, publicKey, options);
+    return payload;
+}
+/**
+ * Get verification key from config (JWKS)
+ */
+async function getVerificationKey(config) {
+    const cached = jwksKeyCache.get(config.jwks);
+    if (cached)
+        return cached;
+    const jwks = JSON.parse(config.jwks);
+    if (!jwks.keys?.length) {
+        throw new Error("jwks must include at least one key");
+    }
+    const normalized = { keys: ensureKidOnJwksKeys(jwks.keys, getSigningKeyId(config)) };
+    const localJwks = createLocalJWKSet(normalized);
+    jwksKeyCache.set(config.jwks, localJwks);
+    return localJwks;
+}
+/**
+ * Generate a random code (Authorization Code)
+ */
+export function generateCode(length = 32) {
+    const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-._~";
+    let result = "";
+    const randomValues = new Uint32Array(length);
+    crypto.getRandomValues(randomValues);
+    for (let i = 0; i < length; i++) {
+        result += chars[randomValues[i] % chars.length];
+    }
+    return result;
+}
+/**
+ * Generate a cryptographically strong Client Secret (hex string)
+ */
+export function generateClientSecret(length = 64) {
+    const array = new Uint8Array(length);
+    crypto.getRandomValues(array);
+    return Array.from(array, byte => byte.toString(16).padStart(2, '0')).join('');
+}
+/**
+ * Get Issuer URL helper
+ */
+export function getIssuerUrl(config) {
+    const issuerBaseUrl = config.convexSiteUrl ?? config.siteUrl;
+    const prefix = normalizePrefix(config.prefix);
+    return issuerBaseUrl + prefix;
+}
+/**
+ * Normalize OAuth prefix for consistent URL building.
+ * Ensures a leading slash, trims a trailing slash, and treats "/" as root ("").
+ */
+export function normalizePrefix(prefix) {
+    const raw = (prefix ?? "/oauth").trim();
+    if (!raw || raw === "/")
+        return "";
+    let normalized = raw.startsWith("/") ? raw : `/${raw}`;
+    if (normalized.length > 1 && normalized.endsWith("/")) {
+        normalized = normalized.slice(0, -1);
+    }
+    return normalized;
+}
+/**
+ * CORS Helper - Get allowed origin
+ */
+export function getAllowedOrigin(origin, config) {
+    // 1. CLI / Non-browser clients (No Origin header)
+    if (!origin)
+        return null;
+    // 2. Browser clients (Verified Origins)
+    const toOrigin = (value) => {
+        if (!value)
+            return null;
+        try {
+            return new URL(value).origin;
+        }
+        catch {
+            return null;
+        }
+    };
+    const allowedList = (config.allowedOrigins || "")
+        .split(",")
+        .map((u) => toOrigin(u.trim()))
+        .filter((u) => !!u);
+    const siteOrigin = toOrigin(config.siteUrl);
+    const convexOrigin = toOrigin(config.convexSiteUrl);
+    if (allowedList.includes(origin))
+        return origin;
+    if (siteOrigin && origin === siteOrigin)
+        return origin;
+    if (convexOrigin && origin === convexOrigin)
+        return origin;
+    // Allow Localhost (Development tools & Inspectors)
+    if (/^http:\/\/localhost(:\d+)?$/.test(origin))
+        return origin;
+    if (/^http:\/\/127\.0\.0\.1(:\d+)?$/.test(origin))
+        return origin;
+    return null;
+}
+/**
+ * Create CORS headers
+ */
+export function createCorsHeaders(origin, config, methods = "GET, POST, OPTIONS") {
+    const headers = {
+        "Content-Type": "application/json",
+        "Access-Control-Allow-Methods": methods,
+        "Access-Control-Allow-Headers": "Content-Type, Authorization, mcp-protocol-version",
+    };
+    const allowedOrigin = getAllowedOrigin(origin, config);
+    if (allowedOrigin) {
+        headers["Access-Control-Allow-Origin"] = allowedOrigin;
+    }
+    return headers;
+}
+/**
+ * Handle CORS preflight OPTIONS request
+ */
+export function handleCorsOptions(request, config, methods = "GET, POST, OPTIONS") {
+    if (request.method === "OPTIONS") {
+        const origin = request.headers.get("Origin");
+        return new Response(null, { headers: createCorsHeaders(origin, config, methods) });
+    }
+    return null;
+}
+/**
+ * OAuth Error Class
+ */
+export class OAuthError extends Error {
+    code;
+    statusCode;
+    constructor(code, message, statusCode = 400) {
+        super(message);
+        this.code = code;
+        this.statusCode = statusCode;
+        this.name = "OAuthError";
+    }
+    toResponse(headers) {
+        return new Response(JSON.stringify({
+            error: this.code,
+            error_description: this.message,
+        }), { status: this.statusCode, headers });
+    }
+}
+// ============================================================================
+// OAuth Token Detection Helpers
+// ============================================================================
+/**
+ * Default OAuth issuer pattern
+ * Used to identify OAuth tokens by checking if issuer URL contains this pattern
+ */
+export const DEFAULT_OAUTH_ISSUER_PATTERN = "/oauth";
+/**
+ * Check if an identity is from an OAuth token
+ * @param identity - User identity from ctx.auth.getUserIdentity()
+ * @param issuerPattern - Pattern to match in issuer URL (default: "/oauth")
+ * @returns true if the identity is from an OAuth token
+ */
+export function isOAuthToken(identity, issuerPattern = DEFAULT_OAUTH_ISSUER_PATTERN) {
+    return !!(identity?.issuer?.includes(issuerPattern) && identity?.subject);
+}
+/**
+ * Extract client ID from an OAuth token identity
+ * @param identity - User identity from ctx.auth.getUserIdentity()
+ * @returns Client ID if present, undefined otherwise
+ */
+export function getOAuthClientId(identity) {
+    return identity?.cid;
+}
+//# sourceMappingURL=oauth.js.map

package/dist/lib/oauth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../src/lib/oauth.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,OAAO,EACP,WAAW,EACX,SAAS,EACT,SAAS,EACT,UAAU,EACV,iBAAiB,EACpB,MAAM,MAAM,CAAC;AAqCd,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAmB,CAAC;AAC5C,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAmB,CAAC;AAC5C,MAAM,YAAY,GAAG,IAAI,GAAG,EAAgD,CAAC;AAC7E,MAAM,cAAc,GAAG,aAAa,CAAC;AAErC;;GAEG;AACH,MAAM,UAAU,gBAAgB;IAC5B,QAAQ,CAAC,KAAK,EAAE,CAAC;IACjB,QAAQ,CAAC,KAAK,EAAE,CAAC;IACjB,YAAY,CAAC,KAAK,EAAE,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,aAAa,CAAC,aAAqB;IAC9C,MAAM,QAAQ,GAAG,WAAW,aAAa,EAAE,CAAC;IAC5C,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,aAAa,EAAE,OAAO,CAAC,CAAC;IACtD,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;IAC5B,OAAO,GAAG,CAAC;AACf,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,YAAY,CAAC,YAAoB;IAC5C,MAAM,QAAQ,GAAG,UAAU,YAAY,EAAE,CAAC;IAC1C,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,YAAY,EAAE,OAAO,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC;IAC3E,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;IAC5B,OAAO,GAAG,CAAC;AACf,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,YAAoB;IACnD,MAAM,QAAQ,GAAG,OAAO,YAAY,EAAE,CAAC;IACvC,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,YAAY,CAAC,CAAC;IAC7C,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;IAEjC,wBAAwB;IACxB,MAAM,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,EAAE,GAAG,EAAE,EAAE,EAAE,GAAG,EAAE,EAAE,EAAE,GAAG,EAAE,GAAG,SAAS,EAAE,GAAG,GAAG,CAAC;IAE7E,MAAM,MAAM,GAAG,EAAE,GAAG,SAAS,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,aAAa,EAAE,CAAC;IAC9E,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAC/B,OAAO,MAAM,CAAC;AAClB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,MAAmB;IAC7C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAwB,CAAC;IAC5D,MAAM,KAAK,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACtC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QAC9B,MAAM,EACF,CAAC,EAAE,EAAE,EACL,CAAC,EAAE,EAAE,EACL,CAAC,EAAE,EAAE,EACL,EAAE,EAAE,GAAG,EACP,EAAE,EAAE,GAAG,EACP,EAAE,EAAE,GAAG,EACP,GAAG,EAAE,IAAI,EACT,CAAC,EAAE,EAAE,EACL,GAAG,SAAS,EACf,GAAG,GASH,CAAC;QAEF,OAAO;YACH,GAAG,SAAS;YACZ,GAAG,EAAE,SAAS,CAAC,GAAG,IAAI,KAAK;SAC9B,CAAC;IACN,CAAC,CAAC,CAAC;IAEH,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe,EAAE,KAAa;IACvD,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QACtB,GAAG,GAAG;QACN,GAAG,EAAE,GAAG,CAAC,GAAG,IAAI,KAAK;KACxB,CAAC,CAAC,CAAC;AACR,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,MAAmB;IAC/C,IAAI,MAAM,CAAC,KAAK;QAAE,OAAO,MAAM,CAAC,KAAK,CAAC;IACtC,IAAI,CAAC;QACD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAyB,CAAC;QAC7D,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC;QAChC,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5C,OAAO,GAAG,CAAC;QACf,CAAC;IACL,CAAC;IAAC,MAAM,CAAC;QACL,gDAAgD;IACpD,CAAC;IACD,OAAO,cAAc,CAAC;AAC1B,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,IAAI,CACtB,OAAgC,EAChC,OAAe,EACf,QAAgB,EAChB,SAA0B,EAC1B,aAAqB,EACrB,MAAe,EACf,QAAgB,cAAc;IAE9B,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,aAAa,CAAC,CAAC;IAEtD,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,OAAO,CAAC;SAC3B,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;SAChD,WAAW,EAAE;SACb,UAAU,CAAC,OAAO,CAAC;SACnB,WAAW,CAAC,QAAQ,CAAC;SACrB,iBAAiB,CAAC,SAAS,CAAC,CAAC;IAElC,IAAI,MAAM,EAAE,CAAC;QACT,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAC1B,CAAC;IAED,OAAO,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;AAChC,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACnC,KAAa,EACb,iBAAuC,EACvC,SAAiB,EACjB,mBAA2B,QAAQ;IAEnC,IAAI,SAAyD,CAAC;IAE9D,IAAI,OAAO,iBAAiB,KAAK,QAAQ,EAAE,CAAC;QACxC,qBAAqB;QACrB,SAAS,GAAG,MAAM,YAAY,CAAC,iBAAiB,CAAC,CAAC;IACtD,CAAC;SAAM,CAAC;QACJ,oDAAoD;QACpD,SAAS,GAAG,MAAM,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;IAC5D,CAAC;IAED,MAAM,OAAO,GAAG;QACZ,MAAM,EAAE,SAAS;QACjB,QAAQ,EAAE,gBAAgB;KAC7B,CAAC;IACF,MAAM,EAAE,OAAO,EAAE,GAAG,OAAO,SAAS,KAAK,UAAU;QAC/C,CAAC,CAAC,MAAM,SAAS,CAAC,KAAK,EAAE,SAAS,EAAE,OAAO,CAAC;QAC5C,CAAC,CAAC,MAAM,SAAS,CAAC,KAAK,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IAEjD,OAAO,OAAO,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,kBAAkB,CAC7B,MAAmB;IAEnB,MAAM,MAAM,GAAG,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IAC7C,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAwB,CAAC;IAC5D,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;IAC1D,CAAC;IACD,MAAM,UAAU,GAAG,EAAE,IAAI,EAAE,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,eAAe,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;IACrF,MAAM,SAAS,GAAG,iBAAiB,CAAC,UAAU,CAAC,CAAC;IAChD,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;IACzC,OAAO,SAAS,CAAC;AACrB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,MAAM,GAAG,EAAE;IACpC,MAAM,KAAK,GAAG,oEAAoE,CAAC;IACnF,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,MAAM,YAAY,GAAG,IAAI,WAAW,CAAC,MAAM,CAAC,CAAC;IAC7C,MAAM,CAAC,eAAe,CAAC,YAAY,CAAC,CAAC;IACrC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;IACpD,CAAC;IACD,OAAO,MAAM,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAAC,MAAM,GAAG,EAAE;IAC5C,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IAC9B,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AAClF,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,MAAmB;IAC5C,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,IAAI,MAAM,CAAC,OAAO,CAAC;IAC7D,MAAM,MAAM,GAAG,eAAe,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC9C,OAAO,aAAa,GAAG,MAAM,CAAC;AAClC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,eAAe,CAAC,MAAe;IAC3C,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;IACxC,IAAI,CAAC,GAAG,IAAI,GAAG,KAAK,GAAG;QAAE,OAAO,EAAE,CAAC;IACnC,IAAI,UAAU,GAAG,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,GAAG,EAAE,CAAC;IACvD,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACpD,UAAU,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACzC,CAAC;IACD,OAAO,UAAU,CAAC;AACtB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,MAAqB,EAAE,MAAmB;IACvE,kDAAkD;IAClD,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IAEzB,wCAAwC;IACxC,MAAM,QAAQ,GAAG,CAAC,KAAyB,EAAiB,EAAE;QAC1D,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,IAAI,CAAC;YACD,OAAO,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC;QACjC,CAAC;QAAC,MAAM,CAAC;YACL,OAAO,IAAI,CAAC;QAChB,CAAC;IACL,CAAC,CAAC;IACF,MAAM,WAAW,GAAG,CAAC,MAAM,CAAC,cAAc,IAAI,EAAE,CAAC;SAC5C,KAAK,CAAC,GAAG,CAAC;SACV,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;SAC9B,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACrC,MAAM,UAAU,GAAG,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC5C,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAEpD,IAAI,WAAW,CAAC,QAAQ,CAAC,MAAM,CAAC;QAAE,OAAO,MAAM,CAAC;IAChD,IAAI,UAAU,IAAI,MAAM,KAAK,UAAU;QAAE,OAAO,MAAM,CAAC;IACvD,IAAI,YAAY,IAAI,MAAM,KAAK,YAAY;QAAE,OAAO,MAAM,CAAC;IAE3D,mDAAmD;IACnD,IAAI,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC;QAAE,OAAO,MAAM,CAAC;IAC9D,IAAI,gCAAgC,CAAC,IAAI,CAAC,MAAM,CAAC;QAAE,OAAO,MAAM,CAAC;IAEjE,OAAO,IAAI,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAC7B,MAAqB,EACrB,MAAmB,EACnB,UAAkB,oBAAoB;IAEtC,MAAM,OAAO,GAA2B;QACpC,cAAc,EAAE,kBAAkB;QAClC,8BAA8B,EAAE,OAAO;QACvC,8BAA8B,EAAE,mDAAmD;KACtF,CAAC;IACF,MAAM,aAAa,GAAG,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACvD,IAAI,aAAa,EAAE,CAAC;QAChB,OAAO,CAAC,6BAA6B,CAAC,GAAG,aAAa,CAAC;IAC3D,CAAC;IACD,OAAO,OAAO,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAC7B,OAAgB,EAChB,MAAmB,EACnB,UAAkB,oBAAoB;IAEtC,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC7C,OAAO,IAAI,QAAQ,CAAC,IAAI,EAAE,EAAE,OAAO,EAAE,iBAAiB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC;IACvF,CAAC;IACD,OAAO,IAAI,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,OAAO,UAAW,SAAQ,KAAK;IAEtB;IAEA;IAHX,YACW,IAAY,EACnB,OAAe,EACR,aAAqB,GAAG;QAE/B,KAAK,CAAC,OAAO,CAAC,CAAC;QAJR,SAAI,GAAJ,IAAI,CAAQ;QAEZ,eAAU,GAAV,UAAU,CAAc;QAG/B,IAAI,CAAC,IAAI,GAAG,YAAY,CAAC;IAC7B,CAAC;IAED,UAAU,CAAC,OAA+B;QACtC,OAAO,IAAI,QAAQ,CACf,IAAI,CAAC,SAAS,CAAC;YACX,KAAK,EAAE,IAAI,CAAC,IAAI;YAChB,iBAAiB,EAAE,IAAI,CAAC,OAAO;SAClC,CAAC,EACF,EAAE,MAAM,EAAE,IAAI,CAAC,UAAU,EAAE,OAAO,EAAE,CACvC,CAAC;IACN,CAAC;CACJ;AAED,+EAA+E;AAC/E,gCAAgC;AAChC,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAG,QAAQ,CAAC;AAErD;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CACxB,QAAkE,EAClE,gBAAwB,4BAA4B;IAEpD,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC,aAAa,CAAC,IAAI,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC9E,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,gBAAgB,CAC5B,QAA6C;IAE7C,OAAO,QAAQ,EAAE,GAAG,CAAC;AACzB,CAAC"}

package/dist/react/index.d.ts

@@ -0,0 +1,2 @@
+export declare const useMyComponent: () => {};
+//# sourceMappingURL=index.d.ts.map

package/dist/react/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/react/index.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,cAAc,UAE1B,CAAC"}

package/dist/react/index.js

@@ -0,0 +1,6 @@
+"use client";
+// This is where React components / hooks go.
+export const useMyComponent = () => {
+    return {};
+};
+//# sourceMappingURL=index.js.map

package/dist/react/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/react/index.ts"],"names":[],"mappings":"AAAA,YAAY,CAAC;AAEb,6CAA6C;AAE7C,MAAM,CAAC,MAAM,cAAc,GAAG,GAAG,EAAE;IACjC,OAAO,EAAE,CAAC;AACZ,CAAC,CAAC"}

package/package.json

@@ -0,0 +1,121 @@
+{
+  "name": "@codefox-inc/oauth-provider",
+  "description": "OAuth 2.1 / OpenID Connect Provider for Convex Auth (Beta).",
+  "repository": "github:codefox-inc/convex-oauth-provider",
+  "homepage": "https://github.com/codefox-inc/convex-oauth-provider#readme",
+  "bugs": {
+    "url": "https://github.com/codefox-inc/convex-oauth-provider/issues"
+  },
+  "version": "0.2.0",
+  "license": "Apache-2.0",
+  "publishConfig": {
+    "access": "public"
+  },
+  "keywords": [
+    "convex",
+    "component",
+    "oauth",
+    "oauth2",
+    "openid-connect",
+    "oidc",
+    "authentication",
+    "authorization"
+  ],
+  "type": "module",
+  "scripts": {
+    "dev": "run-p -r 'dev:*'",
+    "dev:backend": "convex dev --typecheck-components",
+    "dev:frontend": "cd example && vite --clearScreen false",
+    "dev:build": "chokidar 'tsconfig*.json' 'src/**/*.ts' -i '**/*.test.ts' -c 'npm run build:codegen' --initial",
+    "dev:worker": "cd example && wrangler dev --port 8787 2>&1 | cat",
+    "predev": "path-exists .env.local dist || (npm run build && convex dev --once)",
+    "build": "tsc --project ./tsconfig.build.json",
+    "build:codegen": "npx convex codegen --component-dir ./src/component && npm run build",
+    "build:clean": "rm -rf dist *.tsbuildinfo && npm run build:codegen",
+    "typecheck": "tsc --noEmit && tsc -p example && tsc -p example/convex",
+    "lint": "eslint .",
+    "all": "run-p -r 'dev:*' 'test:watch'",
+    "test": "vitest run --typecheck",
+    "test:watch": "vitest --typecheck --clearScreen false",
+    "test:debug": "vitest --inspect-brk --no-file-parallelism",
+    "test:coverage": "vitest run --coverage --coverage.reporter=text",
+    "changeset": "changeset",
+    "version": "changeset version && npm install --package-lock-only",
+    "release": "npm run build && changeset publish"
+  },
+  "files": [
+    "dist",
+    "src"
+  ],
+  "exports": {
+    "./package.json": "./package.json",
+    ".": {
+      "types": "./dist/client/index.d.ts",
+      "default": "./dist/client/index.js"
+    },
+    "./react": {
+      "types": "./dist/react/index.d.ts",
+      "default": "./dist/react/index.js"
+    },
+    "./test": "./src/test.ts",
+    "./_generated/component.js": {
+      "types": "./dist/component/_generated/component.d.ts"
+    },
+    "./convex.config": {
+      "types": "./dist/component/convex.config.d.ts",
+      "default": "./dist/component/convex.config.js"
+    },
+    "./convex.config.js": {
+      "types": "./dist/component/convex.config.d.ts",
+      "default": "./dist/component/convex.config.js"
+    }
+  },
+  "peerDependencies": {
+    "convex": "^1.31.6",
+    "react": "^18.2.0 || ^19.0.0"
+  },
+  "dependencies": {
+    "bcryptjs": "^2.4.3",
+    "jose": "^5.9.6"
+  },
+  "devDependencies": {
+    "@changesets/cli": "^2.27.1",
+    "@cloudflare/workers-types": "^4.20260123.0",
+    "@convex-dev/auth": "^0.0.88",
+    "@convex-dev/eslint-plugin": "^1.1.1",
+    "@edge-runtime/vm": "^5.0.0",
+    "@eslint/eslintrc": "^3.3.3",
+    "@eslint/js": "9.39.2",
+    "@modelcontextprotocol/sdk": "^1.25.3",
+    "@types/bcryptjs": "^2.4.6",
+    "@types/node": "^24.10.9",
+    "@types/react": "^19.2.9",
+    "@types/react-dom": "^19.2.3",
+    "@vitejs/plugin-react": "^5.1.2",
+    "@vitest/coverage-v8": "^4.0.17",
+    "chokidar-cli": "3.0.0",
+    "convex": "1.31.6",
+    "convex-test": "0.0.41",
+    "cpy-cli": "^6.0.0",
+    "eslint": "9.39.2",
+    "eslint-plugin-react": "^7.37.5",
+    "eslint-plugin-react-hooks": "^7.0.1",
+    "eslint-plugin-react-refresh": "^0.4.26",
+    "globals": "^17.0.0",
+    "hono": "^4.11.5",
+    "npm-run-all2": "8.0.4",
+    "path-exists-cli": "2.0.0",
+    "pkg-pr-new": "^0.0.62",
+    "prettier": "3.8.1",
+    "react": "^19.2.3",
+    "react-dom": "^19.2.3",
+    "react-router-dom": "^7.6.2",
+    "typescript": "5.9.3",
+    "typescript-eslint": "8.53.1",
+    "vite": "7.3.1",
+    "vitest": "4.0.17",
+    "wrangler": "^4.15.2"
+  },
+  "types": "./dist/client/index.d.ts",
+  "module": "./dist/client/index.js"
+}