@crossmint/client-sdk-auth 0.2.3 → 1.0.0

package/LICENSE

@@ -186,7 +186,7 @@ APPENDIX: How to apply the Apache License to your work.
       same "printed page" as the copyright notice for easier
       identification within third-party archives.
 
-Copyright 2022 Paella Labs Inc
+Copyright 2024 Paella Labs Inc
 
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.

package/README.md

@@ -1,2 +1,99 @@
 # @crossmint/client-sdk-auth
 
+This SDK provides a set of tools for authenticating users in a Crossmint-powered application on the client-side. It simplifies the process of handling authentication tokens, managing user sessions, and integrating various authentication methods into your web applications.
+
+## Installation
+
+To install the SDK, you can use npm or yarn:
+
+```bash
+npm install @crossmint/client-sdk-auth
+```
+
+## Usage
+
+To use the SDK in your application, follow these steps:
+
+1. Import the SDK into your project:
+
+```typescript
+import { createCrossmint, CrossmintAuth } from "@crossmint/client-sdk-auth";
+
+const crossmint = createCrossmint({
+    apiKey: process.env.CLIENT_CROSSMINT_API_KEY || "",
+});
+
+const crossmintAuth = CrossmintAuth.from(crossmint);
+```
+
+2. Use the SDK to authenticate users and manage sessions:
+
+```typescript
+// Get the current user
+const user = await crossmintAuth.getUser();
+
+// Log out the user and clear cookies
+crossmintAuth.logout();
+```
+
+## Secure setup using HttpOnly cookies
+
+To secure the authentication material, you can set up a custom endpoint in your backend that will handle refreshing the authentication material and storing it in HttpOnly cookies. This way, the authentication material is not accessible to JavaScript running in the browser.
+
+### Configure custom refresh route
+
+In the client, provide the custom refresh route when creating the CrossmintAuth instance:
+
+```typescript
+const crossmintAuth = CrossmintAuth.from(crossmint, {
+    refreshRoute: "/api/refresh",
+});
+```
+
+This way, the SDK will use the provided route to refresh the token instead of the default one and the authentication material can be stored in HttpOnly cookies that are tied to the domain of the provided route.
+
+### Configure custom logout route
+
+As you're now using HttpOnly cookies, logout can't happen client-side as it doesn't have access to the cookies. You can set up a custom logout route to handle the logout process.
+
+In the client, provide the custom logout route when creating the CrossmintAuth instance:
+
+```typescript
+const crossmintAuth = CrossmintAuth.from(crossmint, {
+    logoutRoute: "/api/logout",
+});
+```
+
+NOTE: Depending on the framework you're using, you might need to set the whole URL in the `refreshRoute` and `logoutRoute` options.
+
+## Advanced Usage
+
+You can provide callbacks for token refresh and logout events when creating the CrossmintAuthClient:
+
+```typescript
+const crossmintAuth = CrossmintAuth.from(crossmint, {
+    callbacks: {
+        onTokenRefresh: (authMaterial) => {
+            // Handle new authentication material
+        },
+        onLogout: () => {
+            // Handle logout
+        },
+    },
+});
+```
+
+### Authentication Material
+
+```json
+{
+    "jwt": "...",
+    "refreshToken": "...",
+    "user": {
+        "id": "...",
+        "email": "..."
+    }
+}
+```
+
+These callbacks allow you to perform custom actions when tokens are refreshed or when the user logs out.

package/dist/CrossmintAuthClient.cjs

@@ -0,0 +1,12 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkILL57KWXcjs = require('./chunk-ILL57KWX.cjs');
+require('./chunk-VQ3HTIQ3.cjs');
+require('./chunk-TIUX4OOQ.cjs');
+require('./chunk-BGMXXFQ4.cjs');
+require('./chunk-QY4RIGNM.cjs');
+require('./chunk-F45I5NLI.cjs');
+
+
+exports.CrossmintAuthClient = _chunkILL57KWXcjs.CrossmintAuthClient;
+//# sourceMappingURL=CrossmintAuthClient.cjs.map

package/dist/CrossmintAuthClient.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":""}

package/dist/CrossmintAuthClient.d.cts

@@ -0,0 +1,35 @@
+import { UseSignInData } from '@farcaster/auth-kit';
+import { CrossmintAuth, AuthMaterialWithUser, OAuthProvider, CrossmintAuthOptions } from '@crossmint/common-sdk-auth';
+import { Crossmint } from '@crossmint/common-sdk-base';
+
+type CrossmintAuthClientConfig = CrossmintAuthOptions & {
+    callbacks?: CrossmintAuthClientCallbacks;
+    logoutRoute?: string;
+};
+declare class CrossmintAuthClient extends CrossmintAuth {
+    private callbacks;
+    private refreshTask;
+    private isRefreshing;
+    private logoutRoute;
+    private constructor();
+    static from(crossmint: Crossmint, config?: CrossmintAuthClientConfig): CrossmintAuthClient;
+    getUser(): Promise<any>;
+    storeAuthMaterial(authMaterial: AuthMaterialWithUser): void;
+    logout(): Promise<void>;
+    handleRefreshAuthMaterial(refreshTokenSecret?: string): Promise<void>;
+    getOAuthUrl(provider: OAuthProvider): Promise<string>;
+    sendEmailOtp(email: string): Promise<any>;
+    confirmEmailOtp(email: string, emailId: string, token: string): Promise<string | null>;
+    signInWithFarcaster(data: UseSignInData): Promise<string | null>;
+    signInWithSmartWallet(address: string): Promise<any>;
+    authenticateSmartWallet(address: string, signature: string): Promise<any>;
+    private logoutFromCustomRoute;
+    private scheduleNextRefresh;
+    private cancelScheduledRefresh;
+}
+type CrossmintAuthClientCallbacks = {
+    onTokenRefresh?: (authMaterial: AuthMaterialWithUser) => void;
+    onLogout?: () => void;
+};
+
+export { CrossmintAuthClient };

package/dist/CrossmintAuthClient.d.ts

@@ -0,0 +1,35 @@
+import { UseSignInData } from '@farcaster/auth-kit';
+import { CrossmintAuth, AuthMaterialWithUser, OAuthProvider, CrossmintAuthOptions } from '@crossmint/common-sdk-auth';
+import { Crossmint } from '@crossmint/common-sdk-base';
+
+type CrossmintAuthClientConfig = CrossmintAuthOptions & {
+    callbacks?: CrossmintAuthClientCallbacks;
+    logoutRoute?: string;
+};
+declare class CrossmintAuthClient extends CrossmintAuth {
+    private callbacks;
+    private refreshTask;
+    private isRefreshing;
+    private logoutRoute;
+    private constructor();
+    static from(crossmint: Crossmint, config?: CrossmintAuthClientConfig): CrossmintAuthClient;
+    getUser(): Promise<any>;
+    storeAuthMaterial(authMaterial: AuthMaterialWithUser): void;
+    logout(): Promise<void>;
+    handleRefreshAuthMaterial(refreshTokenSecret?: string): Promise<void>;
+    getOAuthUrl(provider: OAuthProvider): Promise<string>;
+    sendEmailOtp(email: string): Promise<any>;
+    confirmEmailOtp(email: string, emailId: string, token: string): Promise<string | null>;
+    signInWithFarcaster(data: UseSignInData): Promise<string | null>;
+    signInWithSmartWallet(address: string): Promise<any>;
+    authenticateSmartWallet(address: string, signature: string): Promise<any>;
+    private logoutFromCustomRoute;
+    private scheduleNextRefresh;
+    private cancelScheduledRefresh;
+}
+type CrossmintAuthClientCallbacks = {
+    onTokenRefresh?: (authMaterial: AuthMaterialWithUser) => void;
+    onLogout?: () => void;
+};
+
+export { CrossmintAuthClient };

package/dist/CrossmintAuthClient.js

@@ -0,0 +1,12 @@
+import {
+  CrossmintAuthClient
+} from "./chunk-7YATBCAU.js";
+import "./chunk-TOXKCKTY.js";
+import "./chunk-BMYZMMVR.js";
+import "./chunk-5JXPQKM4.js";
+import "./chunk-MLMLBCSI.js";
+import "./chunk-JPRRZPBL.js";
+export {
+  CrossmintAuthClient
+};
+//# sourceMappingURL=CrossmintAuthClient.js.map

package/dist/CrossmintAuthClient.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/chunk-5JXPQKM4.js

@@ -0,0 +1,19 @@
+// src/utils/cookies.ts
+function getCookie(name) {
+  const crossmintRefreshToken = document.cookie.split("; ").find((row) => row.startsWith(name));
+  return crossmintRefreshToken ? crossmintRefreshToken.split("=")[1] : void 0;
+}
+function setCookie(name, value, expiresAt) {
+  const expiresInUtc = expiresAt ? new Date(expiresAt).toUTCString() : "";
+  document.cookie = `${name}=${value}; ${expiresAt ? `expires=${expiresInUtc};` : ""} path=/; SameSite=Lax;`;
+}
+function deleteCookie(name) {
+  document.cookie = `${name}=; expires=Thu, 01 Jan 1970 00:00:00 UTC; path=/;`;
+}
+
+export {
+  getCookie,
+  setCookie,
+  deleteCookie
+};
+//# sourceMappingURL=chunk-5JXPQKM4.js.map

package/dist/chunk-5JXPQKM4.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/utils/cookies.ts"],"sourcesContent":["export function getCookie(name: string): string | undefined {\n    const crossmintRefreshToken = document.cookie.split(\"; \").find((row) => row.startsWith(name));\n    return crossmintRefreshToken ? crossmintRefreshToken.split(\"=\")[1] : undefined;\n}\n\nexport function setCookie(name: string, value: string, expiresAt?: string) {\n    const expiresInUtc = expiresAt ? new Date(expiresAt).toUTCString() : \"\";\n    document.cookie = `${name}=${value}; ${expiresAt ? `expires=${expiresInUtc};` : \"\"} path=/; SameSite=Lax;`;\n}\n\nexport function deleteCookie(name: string) {\n    document.cookie = `${name}=; expires=Thu, 01 Jan 1970 00:00:00 UTC; path=/;`;\n}\n"],"mappings":";AAAO,SAAS,UAAU,MAAkC;AACxD,QAAM,wBAAwB,SAAS,OAAO,MAAM,IAAI,EAAE,KAAK,CAAC,QAAQ,IAAI,WAAW,IAAI,CAAC;AAC5F,SAAO,wBAAwB,sBAAsB,MAAM,GAAG,EAAE,CAAC,IAAI;AACzE;AAEO,SAAS,UAAU,MAAc,OAAe,WAAoB;AACvE,QAAM,eAAe,YAAY,IAAI,KAAK,SAAS,EAAE,YAAY,IAAI;AACrE,WAAS,SAAS,GAAG,IAAI,IAAI,KAAK,KAAK,YAAY,WAAW,YAAY,MAAM,EAAE;AACtF;AAEO,SAAS,aAAa,MAAc;AACvC,WAAS,SAAS,GAAG,IAAI;AAC7B;","names":[]}

package/dist/chunk-7YATBCAU.js

@@ -0,0 +1,229 @@
+import {
+  TIME_BEFORE_EXPIRING_JWT_IN_SECONDS
+} from "./chunk-BMYZMMVR.js";
+import {
+  deleteCookie,
+  getCookie,
+  setCookie
+} from "./chunk-5JXPQKM4.js";
+import {
+  getJWTExpiration
+} from "./chunk-MLMLBCSI.js";
+import {
+  __async,
+  __spreadProps,
+  __spreadValues
+} from "./chunk-JPRRZPBL.js";
+
+// src/CrossmintAuthClient.ts
+import {
+  AUTH_SDK_ROOT_ENDPOINT,
+  CROSSMINT_API_VERSION,
+  CrossmintAuth,
+  REFRESH_TOKEN_PREFIX,
+  SESSION_PREFIX
+} from "@crossmint/common-sdk-auth";
+import { queueTask } from "@crossmint/client-sdk-base";
+var CrossmintAuthClient = class _CrossmintAuthClient extends CrossmintAuth {
+  constructor(crossmint, apiClient, config = {}) {
+    var _a, _b;
+    super(crossmint, apiClient, config);
+    this.refreshTask = null;
+    this.isRefreshing = false;
+    this.callbacks = (_a = config.callbacks) != null ? _a : {};
+    this.logoutRoute = (_b = config.logoutRoute) != null ? _b : null;
+  }
+  static from(crossmint, config = {}) {
+    const authClient = new _CrossmintAuthClient(crossmint, CrossmintAuth.defaultApiClient(crossmint), config);
+    if (typeof window !== "undefined") {
+      authClient.handleRefreshAuthMaterial();
+    }
+    return authClient;
+  }
+  getUser() {
+    return __async(this, null, function* () {
+      const result = yield this.apiClient.get(`api/${CROSSMINT_API_VERSION}/sdk/auth/user`, {
+        headers: {
+          "Content-Type": "application/json"
+        }
+      });
+      const user = yield result.json();
+      return user;
+    });
+  }
+  storeAuthMaterial(authMaterial) {
+    setCookie(SESSION_PREFIX, authMaterial.jwt);
+    setCookie(REFRESH_TOKEN_PREFIX, authMaterial.refreshToken.secret, authMaterial.refreshToken.expiresAt);
+  }
+  logout() {
+    return __async(this, null, function* () {
+      var _a, _b;
+      try {
+        if (this.logoutRoute != null) {
+          yield this.logoutFromCustomRoute();
+        } else {
+          yield this.logoutFromDefaultRoute(getCookie(REFRESH_TOKEN_PREFIX));
+        }
+      } catch (error) {
+        console.error(error);
+      } finally {
+        deleteCookie(REFRESH_TOKEN_PREFIX);
+        deleteCookie(SESSION_PREFIX);
+        (_b = (_a = this.callbacks).onLogout) == null ? void 0 : _b.call(_a);
+      }
+    });
+  }
+  handleRefreshAuthMaterial(refreshTokenSecret) {
+    return __async(this, null, function* () {
+      var _a, _b;
+      const refreshToken = refreshTokenSecret != null ? refreshTokenSecret : getCookie(REFRESH_TOKEN_PREFIX);
+      if (refreshToken == null && this.refreshRoute == null || this.isRefreshing) {
+        return;
+      }
+      try {
+        this.isRefreshing = true;
+        const authMaterial = yield this.refreshAuthMaterial(refreshToken);
+        if (this.refreshRoute == null) {
+          this.storeAuthMaterial(authMaterial);
+        }
+        (_b = (_a = this.callbacks).onTokenRefresh) == null ? void 0 : _b.call(_a, authMaterial);
+        this.scheduleNextRefresh(authMaterial.jwt);
+      } catch (error) {
+        console.error(error);
+        this.logout();
+      } finally {
+        this.isRefreshing = false;
+      }
+    });
+  }
+  getOAuthUrl(provider) {
+    return __async(this, null, function* () {
+      const result = yield this.apiClient.get(`${AUTH_SDK_ROOT_ENDPOINT}/social/${provider}/start`, {
+        headers: {
+          "Content-Type": "application/json"
+        }
+      });
+      const data = yield result.json();
+      return data.oauthUrl;
+    });
+  }
+  sendEmailOtp(email) {
+    return __async(this, null, function* () {
+      const result = yield this.apiClient.post(`${AUTH_SDK_ROOT_ENDPOINT}/otps/send`, {
+        headers: {
+          "Content-Type": "application/json"
+        },
+        body: JSON.stringify({ email })
+      });
+      return yield result.json();
+    });
+  }
+  confirmEmailOtp(email, emailId, token) {
+    return __async(this, null, function* () {
+      const queryParams = new URLSearchParams({
+        email,
+        signinAuthenticationMethod: "email",
+        token,
+        locale: "en",
+        state: emailId,
+        callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/we-dont-actually-use-this-anymore`
+      });
+      const result = yield this.apiClient.post(`${AUTH_SDK_ROOT_ENDPOINT}/authenticate?${queryParams}`, {
+        headers: {
+          "Content-Type": "application/json"
+        }
+      });
+      const resData = yield result.json();
+      const callbackUrl = new URL(resData.callbackUrl);
+      return callbackUrl.searchParams.get("oneTimeSecret");
+    });
+  }
+  signInWithFarcaster(data) {
+    return __async(this, null, function* () {
+      const queryParams = new URLSearchParams({
+        signinAuthenticationMethod: "farcaster",
+        callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/callback?isPopup=false`
+      });
+      const result = yield this.apiClient.post(`${AUTH_SDK_ROOT_ENDPOINT}/authenticate?${queryParams}`, {
+        headers: {
+          "Content-Type": "application/json"
+        },
+        body: JSON.stringify(__spreadProps(__spreadValues({}, data), {
+          domain: data.signatureParams.domain,
+          redirect: true,
+          callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/callback?isPopup=false`
+        }))
+      });
+      const resData = yield result.json();
+      const callbackUrl = new URL(resData.callbackUrl);
+      return callbackUrl.searchParams.get("oneTimeSecret");
+    });
+  }
+  signInWithSmartWallet(address) {
+    return __async(this, null, function* () {
+      const queryParams = new URLSearchParams({
+        signinAuthenticationMethod: "evm"
+      });
+      const result = yield this.apiClient.post(
+        `${AUTH_SDK_ROOT_ENDPOINT}/crypto_wallets/authenticate/start?${queryParams}`,
+        {
+          headers: {
+            "Content-Type": "application/json"
+          },
+          body: JSON.stringify({ walletAddress: address })
+        }
+      );
+      return yield result.json();
+    });
+  }
+  authenticateSmartWallet(address, signature) {
+    return __async(this, null, function* () {
+      const queryParams = new URLSearchParams({
+        signinAuthenticationMethod: "evm",
+        callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/we-dont-actually-use-this-anymore`
+      });
+      const result = yield this.apiClient.post(
+        `${AUTH_SDK_ROOT_ENDPOINT}/crypto_wallets/authenticate?${queryParams}`,
+        {
+          headers: {
+            "Content-Type": "application/json"
+          },
+          body: JSON.stringify({ walletAddress: address, signature })
+        }
+      );
+      return yield result.json();
+    });
+  }
+  logoutFromCustomRoute() {
+    return __async(this, null, function* () {
+      if (!this.logoutRoute) {
+        throw new Error("Custom logout route is not set");
+      }
+      return yield fetch(this.logoutRoute, { method: "POST" });
+    });
+  }
+  scheduleNextRefresh(jwt) {
+    const jwtExpiration = getJWTExpiration(jwt);
+    if (!jwtExpiration) {
+      throw new Error("Invalid JWT");
+    }
+    const currentTime = Date.now() / 1e3;
+    const timeToExpire = jwtExpiration - currentTime - TIME_BEFORE_EXPIRING_JWT_IN_SECONDS;
+    if (timeToExpire > 0) {
+      const endTime = Date.now() + timeToExpire * 1e3;
+      this.cancelScheduledRefresh();
+      this.refreshTask = queueTask(() => this.handleRefreshAuthMaterial(), endTime);
+    }
+  }
+  cancelScheduledRefresh() {
+    if (this.refreshTask) {
+      this.refreshTask.cancel();
+      this.refreshTask = null;
+    }
+  }
+};
+
+export {
+  CrossmintAuthClient
+};
+//# sourceMappingURL=chunk-7YATBCAU.js.map

package/dist/chunk-7YATBCAU.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/CrossmintAuthClient.ts"],"sourcesContent":["import type { UseSignInData } from \"@farcaster/auth-kit\";\nimport {\n    AUTH_SDK_ROOT_ENDPOINT,\n    type AuthMaterialWithUser,\n    CROSSMINT_API_VERSION,\n    CrossmintAuth,\n    type CrossmintAuthOptions,\n    type OAuthProvider,\n    REFRESH_TOKEN_PREFIX,\n    SESSION_PREFIX,\n} from \"@crossmint/common-sdk-auth\";\nimport type { Crossmint, CrossmintApiClient } from \"@crossmint/common-sdk-base\";\nimport { type CancellableTask, queueTask } from \"@crossmint/client-sdk-base\";\nimport { deleteCookie, getCookie, getJWTExpiration, setCookie, TIME_BEFORE_EXPIRING_JWT_IN_SECONDS } from \"./utils\";\n\ntype CrossmintAuthClientConfig = CrossmintAuthOptions & {\n    callbacks?: CrossmintAuthClientCallbacks;\n    logoutRoute?: string;\n};\n\nexport class CrossmintAuthClient extends CrossmintAuth {\n    private callbacks: CrossmintAuthClientCallbacks;\n    private refreshTask: CancellableTask | null = null;\n    private isRefreshing = false;\n    private logoutRoute: string | null;\n\n    private constructor(crossmint: Crossmint, apiClient: CrossmintApiClient, config: CrossmintAuthClientConfig = {}) {\n        super(crossmint, apiClient, config);\n        this.callbacks = config.callbacks ?? {};\n        this.logoutRoute = config.logoutRoute ?? null;\n    }\n\n    public static from(crossmint: Crossmint, config: CrossmintAuthClientConfig = {}): CrossmintAuthClient {\n        const authClient = new CrossmintAuthClient(crossmint, CrossmintAuth.defaultApiClient(crossmint), config);\n        // In case an instance is created on the server, we can't refresh as this stores cookies\n        if (typeof window !== \"undefined\") {\n            authClient.handleRefreshAuthMaterial();\n        }\n        return authClient;\n    }\n\n    public async getUser() {\n        const result = await this.apiClient.get(`api/${CROSSMINT_API_VERSION}/sdk/auth/user`, {\n            headers: {\n                \"Content-Type\": \"application/json\",\n            },\n        });\n\n        const user = await result.json();\n        return user;\n    }\n\n    public storeAuthMaterial(authMaterial: AuthMaterialWithUser) {\n        setCookie(SESSION_PREFIX, authMaterial.jwt);\n        setCookie(REFRESH_TOKEN_PREFIX, authMaterial.refreshToken.secret, authMaterial.refreshToken.expiresAt);\n    }\n\n    public async logout() {\n        // Even if there's a server error, we want to clear the cookies\n        try {\n            if (this.logoutRoute != null) {\n                await this.logoutFromCustomRoute();\n            } else {\n                await this.logoutFromDefaultRoute(getCookie(REFRESH_TOKEN_PREFIX));\n            }\n        } catch (error) {\n            console.error(error);\n        } finally {\n            deleteCookie(REFRESH_TOKEN_PREFIX);\n            deleteCookie(SESSION_PREFIX);\n            this.callbacks.onLogout?.();\n        }\n    }\n\n    public async handleRefreshAuthMaterial(refreshTokenSecret?: string): Promise<void> {\n        const refreshToken = refreshTokenSecret ?? getCookie(REFRESH_TOKEN_PREFIX);\n        // If there is a custom refresh route, that endpoint will fetch the cookies itself\n        if ((refreshToken == null && this.refreshRoute == null) || this.isRefreshing) {\n            return;\n        }\n\n        try {\n            this.isRefreshing = true;\n            const authMaterial = await this.refreshAuthMaterial(refreshToken);\n\n            // If a custom refresh route is set, storing in cookies is handled in the server\n            if (this.refreshRoute == null) {\n                this.storeAuthMaterial(authMaterial);\n            }\n\n            this.callbacks.onTokenRefresh?.(authMaterial);\n\n            this.scheduleNextRefresh(authMaterial.jwt);\n        } catch (error) {\n            console.error(error);\n            this.logout();\n        } finally {\n            this.isRefreshing = false;\n        }\n    }\n\n    public async getOAuthUrl(provider: OAuthProvider) {\n        const result = await this.apiClient.get(`${AUTH_SDK_ROOT_ENDPOINT}/social/${provider}/start`, {\n            headers: {\n                \"Content-Type\": \"application/json\",\n            },\n        });\n\n        const data = (await result.json()) as { oauthUrl: string };\n        return data.oauthUrl;\n    }\n\n    public async sendEmailOtp(email: string) {\n        const result = await this.apiClient.post(`${AUTH_SDK_ROOT_ENDPOINT}/otps/send`, {\n            headers: {\n                \"Content-Type\": \"application/json\",\n            },\n            body: JSON.stringify({ email }),\n        });\n\n        return await result.json();\n    }\n\n    public async confirmEmailOtp(email: string, emailId: string, token: string) {\n        const queryParams = new URLSearchParams({\n            email,\n            signinAuthenticationMethod: \"email\",\n            token,\n            locale: \"en\",\n            state: emailId,\n            callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/we-dont-actually-use-this-anymore`,\n        });\n        const result = await this.apiClient.post(`${AUTH_SDK_ROOT_ENDPOINT}/authenticate?${queryParams}`, {\n            headers: {\n                \"Content-Type\": \"application/json\",\n            },\n        });\n\n        const resData = await result.json();\n        const callbackUrl = new URL(resData.callbackUrl);\n\n        // parse the oneTimeSecret from the callbackUrl response\n        return callbackUrl.searchParams.get(\"oneTimeSecret\");\n    }\n\n    public async signInWithFarcaster(data: UseSignInData) {\n        const queryParams = new URLSearchParams({\n            signinAuthenticationMethod: \"farcaster\",\n            callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/callback?isPopup=false`,\n        });\n\n        const result = await this.apiClient.post(`${AUTH_SDK_ROOT_ENDPOINT}/authenticate?${queryParams}`, {\n            headers: {\n                \"Content-Type\": \"application/json\",\n            },\n            body: JSON.stringify({\n                ...data,\n                domain: data.signatureParams.domain,\n                redirect: true,\n                callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/callback?isPopup=false`,\n            }),\n        });\n\n        const resData = await result.json();\n        const callbackUrl = new URL(resData.callbackUrl);\n\n        // parse the oneTimeSecret from the callbackUrl response\n        return callbackUrl.searchParams.get(\"oneTimeSecret\");\n    }\n\n    public async signInWithSmartWallet(address: string) {\n        const queryParams = new URLSearchParams({\n            signinAuthenticationMethod: \"evm\",\n        });\n\n        const result = await this.apiClient.post(\n            `${AUTH_SDK_ROOT_ENDPOINT}/crypto_wallets/authenticate/start?${queryParams}`,\n            {\n                headers: {\n                    \"Content-Type\": \"application/json\",\n                },\n                body: JSON.stringify({ walletAddress: address }),\n            }\n        );\n        return await result.json();\n    }\n\n    public async authenticateSmartWallet(address: string, signature: string) {\n        const queryParams = new URLSearchParams({\n            signinAuthenticationMethod: \"evm\",\n            callbackUrl: `${this.apiClient.baseUrl}/${AUTH_SDK_ROOT_ENDPOINT}/we-dont-actually-use-this-anymore`,\n        });\n\n        const result = await this.apiClient.post(\n            `${AUTH_SDK_ROOT_ENDPOINT}/crypto_wallets/authenticate?${queryParams}`,\n            {\n                headers: {\n                    \"Content-Type\": \"application/json\",\n                },\n                body: JSON.stringify({ walletAddress: address, signature }),\n            }\n        );\n        return await result.json();\n    }\n\n    private async logoutFromCustomRoute(): Promise<Response> {\n        if (!this.logoutRoute) {\n            throw new Error(\"Custom logout route is not set\");\n        }\n\n        return await fetch(this.logoutRoute, { method: \"POST\" });\n    }\n\n    private scheduleNextRefresh(jwt: string): void {\n        const jwtExpiration = getJWTExpiration(jwt);\n        if (!jwtExpiration) {\n            throw new Error(\"Invalid JWT\");\n        }\n\n        const currentTime = Date.now() / 1000;\n        const timeToExpire = jwtExpiration - currentTime - TIME_BEFORE_EXPIRING_JWT_IN_SECONDS;\n\n        if (timeToExpire > 0) {\n            const endTime = Date.now() + timeToExpire * 1000;\n            this.cancelScheduledRefresh();\n            this.refreshTask = queueTask(() => this.handleRefreshAuthMaterial(), endTime);\n        }\n    }\n\n    private cancelScheduledRefresh(): void {\n        if (this.refreshTask) {\n            this.refreshTask.cancel();\n            this.refreshTask = null;\n        }\n    }\n}\n\ntype CrossmintAuthClientCallbacks = {\n    onTokenRefresh?: (authMaterial: AuthMaterialWithUser) => void;\n    onLogout?: () => void;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;AACA;AAAA,EACI;AAAA,EAEA;AAAA,EACA;AAAA,EAGA;AAAA,EACA;AAAA,OACG;AAEP,SAA+B,iBAAiB;AAQzC,IAAM,sBAAN,MAAM,6BAA4B,cAAc;AAAA,EAM3C,YAAY,WAAsB,WAA+B,SAAoC,CAAC,GAAG;AA1BrH;AA2BQ,UAAM,WAAW,WAAW,MAAM;AALtC,SAAQ,cAAsC;AAC9C,SAAQ,eAAe;AAKnB,SAAK,aAAY,YAAO,cAAP,YAAoB,CAAC;AACtC,SAAK,eAAc,YAAO,gBAAP,YAAsB;AAAA,EAC7C;AAAA,EAEA,OAAc,KAAK,WAAsB,SAAoC,CAAC,GAAwB;AAClG,UAAM,aAAa,IAAI,qBAAoB,WAAW,cAAc,iBAAiB,SAAS,GAAG,MAAM;AAEvG,QAAI,OAAO,WAAW,aAAa;AAC/B,iBAAW,0BAA0B;AAAA,IACzC;AACA,WAAO;AAAA,EACX;AAAA,EAEa,UAAU;AAAA;AACnB,YAAM,SAAS,MAAM,KAAK,UAAU,IAAI,OAAO,qBAAqB,kBAAkB;AAAA,QAClF,SAAS;AAAA,UACL,gBAAgB;AAAA,QACpB;AAAA,MACJ,CAAC;AAED,YAAM,OAAO,MAAM,OAAO,KAAK;AAC/B,aAAO;AAAA,IACX;AAAA;AAAA,EAEO,kBAAkB,cAAoC;AACzD,cAAU,gBAAgB,aAAa,GAAG;AAC1C,cAAU,sBAAsB,aAAa,aAAa,QAAQ,aAAa,aAAa,SAAS;AAAA,EACzG;AAAA,EAEa,SAAS;AAAA;AAzD1B;AA2DQ,UAAI;AACA,YAAI,KAAK,eAAe,MAAM;AAC1B,gBAAM,KAAK,sBAAsB;AAAA,QACrC,OAAO;AACH,gBAAM,KAAK,uBAAuB,UAAU,oBAAoB,CAAC;AAAA,QACrE;AAAA,MACJ,SAAS,OAAO;AACZ,gBAAQ,MAAM,KAAK;AAAA,MACvB,UAAE;AACE,qBAAa,oBAAoB;AACjC,qBAAa,cAAc;AAC3B,yBAAK,WAAU,aAAf;AAAA,MACJ;AAAA,IACJ;AAAA;AAAA,EAEa,0BAA0B,oBAA4C;AAAA;AA1EvF;AA2EQ,YAAM,eAAe,kDAAsB,UAAU,oBAAoB;AAEzE,UAAK,gBAAgB,QAAQ,KAAK,gBAAgB,QAAS,KAAK,cAAc;AAC1E;AAAA,MACJ;AAEA,UAAI;AACA,aAAK,eAAe;AACpB,cAAM,eAAe,MAAM,KAAK,oBAAoB,YAAY;AAGhE,YAAI,KAAK,gBAAgB,MAAM;AAC3B,eAAK,kBAAkB,YAAY;AAAA,QACvC;AAEA,yBAAK,WAAU,mBAAf,4BAAgC;AAEhC,aAAK,oBAAoB,aAAa,GAAG;AAAA,MAC7C,SAAS,OAAO;AACZ,gBAAQ,MAAM,KAAK;AACnB,aAAK,OAAO;AAAA,MAChB,UAAE;AACE,aAAK,eAAe;AAAA,MACxB;AAAA,IACJ;AAAA;AAAA,EAEa,YAAY,UAAyB;AAAA;AAC9C,YAAM,SAAS,MAAM,KAAK,UAAU,IAAI,GAAG,sBAAsB,WAAW,QAAQ,UAAU;AAAA,QAC1F,SAAS;AAAA,UACL,gBAAgB;AAAA,QACpB;AAAA,MACJ,CAAC;AAED,YAAM,OAAQ,MAAM,OAAO,KAAK;AAChC,aAAO,KAAK;AAAA,IAChB;AAAA;AAAA,EAEa,aAAa,OAAe;AAAA;AACrC,YAAM,SAAS,MAAM,KAAK,UAAU,KAAK,GAAG,sBAAsB,cAAc;AAAA,QAC5E,SAAS;AAAA,UACL,gBAAgB;AAAA,QACpB;AAAA,QACA,MAAM,KAAK,UAAU,EAAE,MAAM,CAAC;AAAA,MAClC,CAAC;AAED,aAAO,MAAM,OAAO,KAAK;AAAA,IAC7B;AAAA;AAAA,EAEa,gBAAgB,OAAe,SAAiB,OAAe;AAAA;AACxE,YAAM,cAAc,IAAI,gBAAgB;AAAA,QACpC;AAAA,QACA,4BAA4B;AAAA,QAC5B;AAAA,QACA,QAAQ;AAAA,QACR,OAAO;AAAA,QACP,aAAa,GAAG,KAAK,UAAU,OAAO,IAAI,sBAAsB;AAAA,MACpE,CAAC;AACD,YAAM,SAAS,MAAM,KAAK,UAAU,KAAK,GAAG,sBAAsB,iBAAiB,WAAW,IAAI;AAAA,QAC9F,SAAS;AAAA,UACL,gBAAgB;AAAA,QACpB;AAAA,MACJ,CAAC;AAED,YAAM,UAAU,MAAM,OAAO,KAAK;AAClC,YAAM,cAAc,IAAI,IAAI,QAAQ,WAAW;AAG/C,aAAO,YAAY,aAAa,IAAI,eAAe;AAAA,IACvD;AAAA;AAAA,EAEa,oBAAoB,MAAqB;AAAA;AAClD,YAAM,cAAc,IAAI,gBAAgB;AAAA,QACpC,4BAA4B;AAAA,QAC5B,aAAa,GAAG,KAAK,UAAU,OAAO,IAAI,sBAAsB;AAAA,MACpE,CAAC;AAED,YAAM,SAAS,MAAM,KAAK,UAAU,KAAK,GAAG,sBAAsB,iBAAiB,WAAW,IAAI;AAAA,QAC9F,SAAS;AAAA,UACL,gBAAgB;AAAA,QACpB;AAAA,QACA,MAAM,KAAK,UAAU,iCACd,OADc;AAAA,UAEjB,QAAQ,KAAK,gBAAgB;AAAA,UAC7B,UAAU;AAAA,UACV,aAAa,GAAG,KAAK,UAAU,OAAO,IAAI,sBAAsB;AAAA,QACpE,EAAC;AAAA,MACL,CAAC;AAED,YAAM,UAAU,MAAM,OAAO,KAAK;AAClC,YAAM,cAAc,IAAI,IAAI,QAAQ,WAAW;AAG/C,aAAO,YAAY,aAAa,IAAI,eAAe;AAAA,IACvD;AAAA;AAAA,EAEa,sBAAsB,SAAiB;AAAA;AAChD,YAAM,cAAc,IAAI,gBAAgB;AAAA,QACpC,4BAA4B;AAAA,MAChC,CAAC;AAED,YAAM,SAAS,MAAM,KAAK,UAAU;AAAA,QAChC,GAAG,sBAAsB,sCAAsC,WAAW;AAAA,QAC1E;AAAA,UACI,SAAS;AAAA,YACL,gBAAgB;AAAA,UACpB;AAAA,UACA,MAAM,KAAK,UAAU,EAAE,eAAe,QAAQ,CAAC;AAAA,QACnD;AAAA,MACJ;AACA,aAAO,MAAM,OAAO,KAAK;AAAA,IAC7B;AAAA;AAAA,EAEa,wBAAwB,SAAiB,WAAmB;AAAA;AACrE,YAAM,cAAc,IAAI,gBAAgB;AAAA,QACpC,4BAA4B;AAAA,QAC5B,aAAa,GAAG,KAAK,UAAU,OAAO,IAAI,sBAAsB;AAAA,MACpE,CAAC;AAED,YAAM,SAAS,MAAM,KAAK,UAAU;AAAA,QAChC,GAAG,sBAAsB,gCAAgC,WAAW;AAAA,QACpE;AAAA,UACI,SAAS;AAAA,YACL,gBAAgB;AAAA,UACpB;AAAA,UACA,MAAM,KAAK,UAAU,EAAE,eAAe,SAAS,UAAU,CAAC;AAAA,QAC9D;AAAA,MACJ;AACA,aAAO,MAAM,OAAO,KAAK;AAAA,IAC7B;AAAA;AAAA,EAEc,wBAA2C;AAAA;AACrD,UAAI,CAAC,KAAK,aAAa;AACnB,cAAM,IAAI,MAAM,gCAAgC;AAAA,MACpD;AAEA,aAAO,MAAM,MAAM,KAAK,aAAa,EAAE,QAAQ,OAAO,CAAC;AAAA,IAC3D;AAAA;AAAA,EAEQ,oBAAoB,KAAmB;AAC3C,UAAM,gBAAgB,iBAAiB,GAAG;AAC1C,QAAI,CAAC,eAAe;AAChB,YAAM,IAAI,MAAM,aAAa;AAAA,IACjC;AAEA,UAAM,cAAc,KAAK,IAAI,IAAI;AACjC,UAAM,eAAe,gBAAgB,cAAc;AAEnD,QAAI,eAAe,GAAG;AAClB,YAAM,UAAU,KAAK,IAAI,IAAI,eAAe;AAC5C,WAAK,uBAAuB;AAC5B,WAAK,cAAc,UAAU,MAAM,KAAK,0BAA0B,GAAG,OAAO;AAAA,IAChF;AAAA,EACJ;AAAA,EAEQ,yBAA+B;AACnC,QAAI,KAAK,aAAa;AAClB,WAAK,YAAY,OAAO;AACxB,WAAK,cAAc;AAAA,IACvB;AAAA,EACJ;AACJ;","names":[]}

package/dist/chunk-BGMXXFQ4.cjs

@@ -0,0 +1,19 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});// src/utils/cookies.ts
+function getCookie(name) {
+  const crossmintRefreshToken = document.cookie.split("; ").find((row) => row.startsWith(name));
+  return crossmintRefreshToken ? crossmintRefreshToken.split("=")[1] : void 0;
+}
+function setCookie(name, value, expiresAt) {
+  const expiresInUtc = expiresAt ? new Date(expiresAt).toUTCString() : "";
+  document.cookie = `${name}=${value}; ${expiresAt ? `expires=${expiresInUtc};` : ""} path=/; SameSite=Lax;`;
+}
+function deleteCookie(name) {
+  document.cookie = `${name}=; expires=Thu, 01 Jan 1970 00:00:00 UTC; path=/;`;
+}
+
+
+
+
+
+exports.getCookie = getCookie; exports.setCookie = setCookie; exports.deleteCookie = deleteCookie;
+//# sourceMappingURL=chunk-BGMXXFQ4.cjs.map

package/dist/chunk-BGMXXFQ4.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/utils/cookies.ts"],"names":[],"mappings":";AAAO,SAAS,UAAU,MAAkC;AACxD,QAAM,wBAAwB,SAAS,OAAO,MAAM,IAAI,EAAE,KAAK,CAAC,QAAQ,IAAI,WAAW,IAAI,CAAC;AAC5F,SAAO,wBAAwB,sBAAsB,MAAM,GAAG,EAAE,CAAC,IAAI;AACzE;AAEO,SAAS,UAAU,MAAc,OAAe,WAAoB;AACvE,QAAM,eAAe,YAAY,IAAI,KAAK,SAAS,EAAE,YAAY,IAAI;AACrE,WAAS,SAAS,GAAG,IAAI,IAAI,KAAK,KAAK,YAAY,WAAW,YAAY,MAAM,EAAE;AACtF;AAEO,SAAS,aAAa,MAAc;AACvC,WAAS,SAAS,GAAG,IAAI;AAC7B","sourcesContent":["export function getCookie(name: string): string | undefined {\n    const crossmintRefreshToken = document.cookie.split(\"; \").find((row) => row.startsWith(name));\n    return crossmintRefreshToken ? crossmintRefreshToken.split(\"=\")[1] : undefined;\n}\n\nexport function setCookie(name: string, value: string, expiresAt?: string) {\n    const expiresInUtc = expiresAt ? new Date(expiresAt).toUTCString() : \"\";\n    document.cookie = `${name}=${value}; ${expiresAt ? `expires=${expiresInUtc};` : \"\"} path=/; SameSite=Lax;`;\n}\n\nexport function deleteCookie(name: string) {\n    document.cookie = `${name}=; expires=Thu, 01 Jan 1970 00:00:00 UTC; path=/;`;\n}\n"]}

package/dist/chunk-BMYZMMVR.js

@@ -0,0 +1,7 @@
+// src/utils/constants.ts
+var TIME_BEFORE_EXPIRING_JWT_IN_SECONDS = 120;
+
+export {
+  TIME_BEFORE_EXPIRING_JWT_IN_SECONDS
+};
+//# sourceMappingURL=chunk-BMYZMMVR.js.map

package/dist/chunk-BMYZMMVR.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/utils/constants.ts"],"sourcesContent":["export const TIME_BEFORE_EXPIRING_JWT_IN_SECONDS = 120;\n"],"mappings":";AAAO,IAAM,sCAAsC;","names":[]}

package/dist/chunk-F45I5NLI.cjs

@@ -0,0 +1,46 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});var __defProp = Object.defineProperty;
+var __defProps = Object.defineProperties;
+var __getOwnPropDescs = Object.getOwnPropertyDescriptors;
+var __getOwnPropSymbols = Object.getOwnPropertySymbols;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __propIsEnum = Object.prototype.propertyIsEnumerable;
+var __defNormalProp = (obj, key, value) => key in obj ? __defProp(obj, key, { enumerable: true, configurable: true, writable: true, value }) : obj[key] = value;
+var __spreadValues = (a, b) => {
+  for (var prop in b || (b = {}))
+    if (__hasOwnProp.call(b, prop))
+      __defNormalProp(a, prop, b[prop]);
+  if (__getOwnPropSymbols)
+    for (var prop of __getOwnPropSymbols(b)) {
+      if (__propIsEnum.call(b, prop))
+        __defNormalProp(a, prop, b[prop]);
+    }
+  return a;
+};
+var __spreadProps = (a, b) => __defProps(a, __getOwnPropDescs(b));
+var __async = (__this, __arguments, generator) => {
+  return new Promise((resolve, reject) => {
+    var fulfilled = (value) => {
+      try {
+        step(generator.next(value));
+      } catch (e) {
+        reject(e);
+      }
+    };
+    var rejected = (value) => {
+      try {
+        step(generator.throw(value));
+      } catch (e) {
+        reject(e);
+      }
+    };
+    var step = (x) => x.done ? resolve(x.value) : Promise.resolve(x.value).then(fulfilled, rejected);
+    step((generator = generator.apply(__this, __arguments)).next());
+  });
+};
+
+
+
+
+
+exports.__spreadValues = __spreadValues; exports.__spreadProps = __spreadProps; exports.__async = __async;
+//# sourceMappingURL=chunk-F45I5NLI.cjs.map

package/dist/chunk-F45I5NLI.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":""}