@delmaredigital/payload-better-auth 0.3.8 → 0.3.10

package/src/components/twoFactor/TwoFactorVerifyView.tsx

@@ -1,238 +0,0 @@
-'use client'
-
-import { useState, type FormEvent } from 'react'
-import { useRouter } from 'next/navigation.js'
-
-export type TwoFactorVerifyViewProps = {
-  /** Custom logo element */
-  logo?: React.ReactNode
-  /** Page title. Default: 'Two-Factor Authentication' */
-  title?: string
-  /** Path to redirect after successful verification. Default: '/admin' */
-  afterVerifyPath?: string
-  /** Callback after successful verification */
-  onVerifyComplete?: () => void
-}
-
-/**
- * Two-factor authentication verification component.
- * Used during login flow when 2FA is enabled on the account.
- * Uses Better Auth's twoFactor plugin endpoints.
- */
-export function TwoFactorVerifyView({
-  logo,
-  title = 'Two-Factor Authentication',
-  afterVerifyPath = '/admin',
-  onVerifyComplete,
-}: TwoFactorVerifyViewProps) {
-  const router = useRouter()
-  const [code, setCode] = useState('')
-  const [error, setError] = useState<string | null>(null)
-  const [loading, setLoading] = useState(false)
-  const [useBackupCode, setUseBackupCode] = useState(false)
-
-  async function handleSubmit(e: FormEvent) {
-    e.preventDefault()
-    setLoading(true)
-    setError(null)
-
-    try {
-      const endpoint = useBackupCode
-        ? '/api/auth/two-factor/verify-backup-code'
-        : '/api/auth/two-factor/verify-totp'
-
-      const response = await fetch(endpoint, {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-        body: JSON.stringify({ code }),
-      })
-
-      if (response.ok) {
-        onVerifyComplete?.()
-        router.push(afterVerifyPath)
-        router.refresh()
-      } else {
-        const data = await response.json().catch(() => ({}))
-        setError(data.message || 'Invalid code. Please try again.')
-      }
-    } catch {
-      setError('An error occurred. Please try again.')
-    } finally {
-      setLoading(false)
-    }
-  }
-
-  return (
-    <div
-      style={{
-        minHeight: '100vh',
-        display: 'flex',
-        alignItems: 'center',
-        justifyContent: 'center',
-        background: 'var(--theme-bg)',
-        padding: 'var(--base)',
-      }}
-    >
-      <div
-        style={{
-          background: 'var(--theme-elevation-50)',
-          padding: 'calc(var(--base) * 2)',
-          borderRadius: 'var(--style-radius-m)',
-          boxShadow: '0 2px 20px rgba(0, 0, 0, 0.1)',
-          width: '100%',
-          maxWidth: '400px',
-        }}
-      >
-        {logo && (
-          <div
-            style={{
-              textAlign: 'center',
-              marginBottom: 'calc(var(--base) * 1.5)',
-            }}
-          >
-            {logo}
-          </div>
-        )}
-
-        <h1
-          style={{
-            color: 'var(--theme-text)',
-            fontSize: 'var(--font-size-h3)',
-            fontWeight: 600,
-            margin: '0 0 calc(var(--base) * 0.5) 0',
-            textAlign: 'center',
-          }}
-        >
-          {title}
-        </h1>
-
-        <p
-          style={{
-            color: 'var(--theme-text)',
-            opacity: 0.7,
-            fontSize: 'var(--font-size-small)',
-            textAlign: 'center',
-            marginBottom: 'calc(var(--base) * 1.5)',
-          }}
-        >
-          {useBackupCode
-            ? 'Enter one of your backup codes.'
-            : 'Enter the code from your authenticator app.'}
-        </p>
-
-        <form onSubmit={handleSubmit}>
-          <div style={{ marginBottom: 'calc(var(--base) * 1.5)' }}>
-            <label
-              htmlFor="code"
-              style={{
-                display: 'block',
-                color: 'var(--theme-text)',
-                marginBottom: 'calc(var(--base) * 0.5)',
-                fontSize: 'var(--font-size-small)',
-                fontWeight: 500,
-              }}
-            >
-              {useBackupCode ? 'Backup Code' : 'Verification Code'}
-            </label>
-            <input
-              id="code"
-              type="text"
-              inputMode={useBackupCode ? 'text' : 'numeric'}
-              pattern={useBackupCode ? undefined : '[0-9]*'}
-              autoComplete="one-time-code"
-              value={code}
-              onChange={(e) => {
-                if (useBackupCode) {
-                  setCode(e.target.value)
-                } else {
-                  setCode(e.target.value.replace(/\D/g, '').slice(0, 6))
-                }
-              }}
-              required
-              placeholder={useBackupCode ? 'xxxxxxxx' : '000000'}
-              style={{
-                width: '100%',
-                padding: 'calc(var(--base) * 0.75)',
-                background: 'var(--theme-input-bg)',
-                border: '1px solid var(--theme-elevation-150)',
-                borderRadius: 'var(--style-radius-s)',
-                color: 'var(--theme-text)',
-                fontSize: 'var(--font-size-h4)',
-                fontFamily: 'monospace',
-                textAlign: 'center',
-                letterSpacing: useBackupCode ? '0.2em' : '0.5em',
-                outline: 'none',
-                boxSizing: 'border-box',
-              }}
-            />
-          </div>
-
-          {error && (
-            <div
-              style={{
-                color: 'var(--theme-error-500)',
-                marginBottom: 'var(--base)',
-                fontSize: 'var(--font-size-small)',
-                padding: 'calc(var(--base) * 0.5)',
-                background: 'var(--theme-error-50)',
-                borderRadius: 'var(--style-radius-s)',
-                border: '1px solid var(--theme-error-200)',
-              }}
-            >
-              {error}
-            </div>
-          )}
-
-          <button
-            type="submit"
-            disabled={loading || (!useBackupCode && code.length !== 6)}
-            style={{
-              width: '100%',
-              padding: 'calc(var(--base) * 0.75)',
-              background: 'var(--theme-elevation-800)',
-              border: 'none',
-              borderRadius: 'var(--style-radius-s)',
-              color: 'var(--theme-elevation-50)',
-              fontSize: 'var(--font-size-base)',
-              fontWeight: 500,
-              cursor: loading || (!useBackupCode && code.length !== 6) ? 'not-allowed' : 'pointer',
-              opacity: loading || (!useBackupCode && code.length !== 6) ? 0.7 : 1,
-              transition: 'opacity 150ms ease',
-              marginBottom: 'var(--base)',
-            }}
-          >
-            {loading ? 'Verifying...' : 'Verify'}
-          </button>
-
-          <div style={{ textAlign: 'center' }}>
-            <button
-              type="button"
-              onClick={() => {
-                setUseBackupCode(!useBackupCode)
-                setCode('')
-                setError(null)
-              }}
-              style={{
-                background: 'none',
-                border: 'none',
-                color: 'var(--theme-text)',
-                opacity: 0.7,
-                fontSize: 'var(--font-size-small)',
-                textDecoration: 'underline',
-                cursor: 'pointer',
-                padding: 0,
-              }}
-            >
-              {useBackupCode
-                ? 'Use authenticator app instead'
-                : 'Use a backup code instead'}
-            </button>
-          </div>
-        </form>
-      </div>
-    </div>
-  )
-}
-
-export default TwoFactorVerifyView

package/src/components/twoFactor/index.ts

@@ -1,8 +0,0 @@
-/**
- * Two-factor authentication UI components
- *
- * @packageDocumentation
- */
-
-export { TwoFactorSetupView, type TwoFactorSetupViewProps } from './TwoFactorSetupView.js'
-export { TwoFactorVerifyView, type TwoFactorVerifyViewProps } from './TwoFactorVerifyView.js'

package/src/exports/client.ts

@@ -1,77 +0,0 @@
-/**
- * Client-side auth utilities
- * Re-exports createAuthClient from better-auth/react and common plugins
- */
-
-import { createAuthClient } from 'better-auth/react'
-import { twoFactorClient, apiKeyClient } from 'better-auth/client/plugins'
-import { passkeyClient } from '@better-auth/passkey/client'
-
-// Re-export createAuthClient and common plugins
-export { createAuthClient } from 'better-auth/react'
-export { twoFactorClient, apiKeyClient } from 'better-auth/client/plugins'
-export { passkeyClient } from '@better-auth/passkey/client'
-
-/**
- * Default plugins included with Payload Better Auth.
- * Use this with createAuthClient when you need custom plugins with full type safety.
- *
- * @example With custom plugins (full type safety)
- * ```typescript
- * import { createAuthClient, payloadAuthPlugins } from '@delmaredigital/payload-better-auth/client'
- * import { stripeClient } from '@better-auth/stripe/client'
- *
- * export const authClient = createAuthClient({
- *   plugins: [...payloadAuthPlugins, stripeClient({ subscription: true })],
- * })
- *
- * // authClient.subscription is fully typed!
- * ```
- */
-export const payloadAuthPlugins = [
-  twoFactorClient(),
-  apiKeyClient(),
-  passkeyClient(),
-] as const
-
-export interface PayloadAuthClientOptions {
-  /** Base URL for auth endpoints (defaults to window.location.origin) */
-  baseURL?: string
-}
-
-/**
- * Create a pre-configured auth client with default plugins (twoFactor, apiKey, passkey).
- *
- * This is a convenience wrapper for simple setups. For custom plugins with full type
- * safety, use `createAuthClient` with `payloadAuthPlugins` instead.
- *
- * @param options - Optional configuration
- * @param options.baseURL - Base URL for auth endpoints (defaults to window.location.origin)
- *
- * @example Basic usage (no custom plugins)
- * ```typescript
- * import { createPayloadAuthClient } from '@delmaredigital/payload-better-auth/client'
- *
- * export const authClient = createPayloadAuthClient()
- * ```
- *
- * @example With custom plugins (use createAuthClient for full type safety)
- * ```typescript
- * import { createAuthClient, payloadAuthPlugins } from '@delmaredigital/payload-better-auth/client'
- * import { stripeClient } from '@better-auth/stripe/client'
- *
- * export const authClient = createAuthClient({
- *   plugins: [...payloadAuthPlugins, stripeClient({ subscription: true })],
- * })
- * ```
- */
-export function createPayloadAuthClient(options?: PayloadAuthClientOptions) {
-  return createAuthClient({
-    baseURL:
-      options?.baseURL ??
-      (typeof window !== 'undefined' ? window.location.origin : ''),
-    plugins: [...payloadAuthPlugins],
-  })
-}
-
-export type PayloadAuthClient = ReturnType<typeof createPayloadAuthClient>

package/src/exports/components.ts

@@ -1,30 +0,0 @@
-/**
- * Admin Components for Better Auth
- *
- * These components are auto-injected when disableLocalStrategy is detected.
- * They can also be used standalone or customized.
- */
-
-export { LogoutButton } from '../components/LogoutButton.js'
-export type { BeforeLoginProps } from '../components/BeforeLogin.js'
-export { BeforeLogin } from '../components/BeforeLogin.js'
-export type { LoginViewProps } from '../components/LoginView.js'
-export { LoginView } from '../components/LoginView.js'
-
-// Password reset components
-export type { ForgotPasswordViewProps } from '../components/auth/ForgotPasswordView.js'
-export { ForgotPasswordView } from '../components/auth/ForgotPasswordView.js'
-export type { ResetPasswordViewProps } from '../components/auth/ResetPasswordView.js'
-export { ResetPasswordView } from '../components/auth/ResetPasswordView.js'
-
-// Two-factor authentication components
-export type { TwoFactorSetupViewProps } from '../components/twoFactor/TwoFactorSetupView.js'
-export { TwoFactorSetupView } from '../components/twoFactor/TwoFactorSetupView.js'
-export type { TwoFactorVerifyViewProps } from '../components/twoFactor/TwoFactorVerifyView.js'
-export { TwoFactorVerifyView } from '../components/twoFactor/TwoFactorVerifyView.js'
-
-// Passkey authentication
-export type { PasskeySignInButtonProps } from '../components/PasskeySignInButton.js'
-export { PasskeySignInButton } from '../components/PasskeySignInButton.js'
-export type { PasskeyRegisterButtonProps } from '../components/PasskeyRegisterButton.js'
-export { PasskeyRegisterButton } from '../components/PasskeyRegisterButton.js'

package/src/exports/management.ts

@@ -1,25 +0,0 @@
-/**
- * Management UI Components Export
- *
- * Client components for managing security features in the Payload admin panel.
- * For server component views, use the './rsc' export.
- */
-
-// Client components
-export {
-  SecurityNavLinks,
-  TwoFactorManagementClient,
-  ApiKeysManagementClient,
-  PasskeysManagementClient,
-} from '../components/management/index.js'
-
-export type {
-  SecurityNavLinksProps,
-  TwoFactorManagementClientProps,
-  ApiKeysManagementClientProps,
-  PasskeysManagementClientProps,
-} from '../components/management/index.js'
-
-// Re-export plugin detection utility
-export { detectEnabledPlugins } from '../utils/detectEnabledPlugins.js'
-export type { EnabledPluginsResult } from '../utils/detectEnabledPlugins.js'

package/src/exports/rsc.ts

@@ -1,11 +0,0 @@
-/**
- * React Server Component Views for Better Auth
- *
- * These async server components use DefaultTemplate for proper
- * integration with Payload's admin panel layout.
- */
-
-export { LoginViewWrapper } from '../components/LoginViewWrapper.js'
-export { TwoFactorView } from '../components/management/views/TwoFactorView.js'
-export { ApiKeysView } from '../components/management/views/ApiKeysView.js'
-export { PasskeysView } from '../components/management/views/PasskeysView.js'

package/src/generated-types.ts

@@ -1,269 +0,0 @@
-/**
- * Auto-generated Better Auth types.
- * DO NOT EDIT - Run `pnpm generate:types` to regenerate.
- *
- * Generated from Better Auth schema introspection.
- * Contains types for all supported plugins and their field additions.
- */
-
-export type BaseUserFields = {
-  name: string
-  email: string
-  emailVerified: boolean
-  image?: string
-  createdAt: Date
-  updatedAt: Date
-  role?: string
-}
-
-export type UserPluginFields = {
-  "username": {
-    username?: string
-    displayUsername?: string
-  }
-  "admin": {
-    banned?: boolean
-    banReason?: string
-    banExpires?: Date
-  }
-  "phone-number": {
-    phoneNumber?: string
-    phoneNumberVerified?: boolean
-  }
-  "anonymous": {
-    isAnonymous?: boolean
-  }
-  "two-factor": {
-    twoFactorEnabled?: boolean
-  }
-}
-
-export type User = BaseUserFields & UserPluginFields["username"] & UserPluginFields["admin"] & UserPluginFields["phone-number"] & UserPluginFields["anonymous"] & UserPluginFields["two-factor"]
-
-export type BaseSessionFields = {
-  expiresAt: Date
-  token: string
-  createdAt: Date
-  updatedAt: Date
-  ipAddress?: string
-  userAgent?: string
-  userId: string
-}
-
-export type SessionPluginFields = {
-  "admin": {
-    impersonatedBy?: string
-  }
-  "organization": {
-    activeOrganizationId?: string
-    activeTeamId?: string
-  }
-}
-
-export type Session = BaseSessionFields & SessionPluginFields["admin"] & SessionPluginFields["organization"]
-
-export type BaseAccountFields = {
-  accountId: string
-  providerId: string
-  userId: string
-  accessToken?: string
-  refreshToken?: string
-  idToken?: string
-  accessTokenExpiresAt?: Date
-  refreshTokenExpiresAt?: Date
-  scope?: string
-  password?: string
-  createdAt: Date
-  updatedAt: Date
-}
-
-export type Account = BaseAccountFields
-
-export type BaseVerificationFields = {
-  identifier: string
-  value: string
-  expiresAt: Date
-  createdAt: Date
-  updatedAt: Date
-}
-
-export type Verification = BaseVerificationFields
-
-export type ApikeyFields = {
-  name?: string
-  start?: string
-  prefix?: string
-  key: string
-  userId: string
-  refillInterval?: number
-  refillAmount?: number
-  lastRefillAt?: Date
-  enabled?: boolean
-  rateLimitEnabled?: boolean
-  rateLimitTimeWindow?: number
-  rateLimitMax?: number
-  requestCount?: number
-  remaining?: number
-  lastRequest?: Date
-  expiresAt?: Date
-  createdAt: Date
-  updatedAt: Date
-  permissions?: string
-  metadata?: string
-}
-
-export type Apikey = ApikeyFields
-
-export type PasskeyFields = {
-  name?: string
-  publicKey: string
-  userId: string
-  credentialID: string
-  counter: number
-  deviceType: string
-  backedUp: boolean
-  transports?: string
-  createdAt?: Date
-  aaguid?: string
-}
-
-export type Passkey = PasskeyFields
-
-export type OauthApplicationFields = {
-  name?: string
-  icon?: string
-  metadata?: string
-  clientId?: string
-  clientSecret?: string
-  redirectUrls?: string
-  type?: string
-  disabled?: boolean
-  userId?: string
-  createdAt?: Date
-  updatedAt?: Date
-}
-
-export type OauthApplication = OauthApplicationFields
-
-export type OauthAccessTokenFields = {
-  accessToken?: string
-  refreshToken?: string
-  accessTokenExpiresAt?: Date
-  refreshTokenExpiresAt?: Date
-  clientId?: string
-  userId?: string
-  scopes?: string
-  createdAt?: Date
-  updatedAt?: Date
-}
-
-export type OauthAccessToken = OauthAccessTokenFields
-
-export type OauthConsentFields = {
-  clientId?: string
-  userId?: string
-  scopes?: string
-  createdAt?: Date
-  updatedAt?: Date
-  consentGiven?: boolean
-}
-
-export type OauthConsent = OauthConsentFields
-
-export type OrganizationFields = {
-  name: string
-  slug: string
-  logo?: string
-  createdAt: Date
-  metadata?: string
-}
-
-export type Organization = OrganizationFields
-
-export type TeamFields = {
-  name: string
-  organizationId: string
-  createdAt: Date
-  updatedAt?: Date
-}
-
-export type Team = TeamFields
-
-export type TeamMemberFields = {
-  teamId: string
-  userId: string
-  createdAt?: Date
-}
-
-export type TeamMember = TeamMemberFields
-
-export type MemberFields = {
-  organizationId: string
-  userId: string
-  role: string
-  createdAt: Date
-}
-
-export type Member = MemberFields
-
-export type InvitationFields = {
-  organizationId: string
-  email: string
-  role?: string
-  teamId?: string
-  status: string
-  expiresAt: Date
-  createdAt: Date
-  inviterId: string
-}
-
-export type Invitation = InvitationFields
-
-export type JwksFields = {
-  publicKey: string
-  privateKey: string
-  createdAt: Date
-  expiresAt?: Date
-}
-
-export type Jwks = JwksFields
-
-export type TwoFactorFields = {
-  secret: string
-  backupCodes: string
-  userId: string
-}
-
-export type TwoFactor = TwoFactorFields
-
-/**
- * Union of all supported plugin identifiers.
- */
-export type PluginId = "username" | "admin" | "api-key" | "passkey" | "bearer" | "email-otp" | "magic-link" | "phone-number" | "one-tap" | "anonymous" | "multi-session" | "one-time-token" | "oidc" | "generic-oauth" | "open-api" | "organization" | "jwt" | "two-factor"
-
-/**
- * Complete schema mapping of all models to their types.
- */
-export type BetterAuthFullSchema = {
-  "user": User
-  "session": Session
-  "account": Account
-  "verification": Verification
-  "apikey": Apikey
-  "passkey": Passkey
-  "oauthApplication": OauthApplication
-  "oauthAccessToken": OauthAccessToken
-  "oauthConsent": OauthConsent
-  "organization": Organization
-  "team": Team
-  "teamMember": TeamMember
-  "member": Member
-  "invitation": Invitation
-  "jwks": Jwks
-  "twoFactor": TwoFactor
-}
-
-/**
- * Union of all model names in the schema.
- */
-export type ModelKey = keyof BetterAuthFullSchema