@descope/nextjs-sdk 0.0.0-next-3ba7f03f-20240207

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2023 Descope <help@descope.com>
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,254 @@
+# Descope SDK for NextJS
+
+The Descope SDK for NextJS provides convenient access to the Descope for an application written on top of NextJS. You can read more on the [Descope Website](https://descope.com).
+
+This SDK uses under the hood the Descope React SDK and Descope Node SDK
+Refer to the [Descope React SDK](https://github.com/descope/react-sdk) and [Descope Node SDK](https://github.com/descope/node-sdk) for more details.
+
+## Requirements
+
+- The SDK supports NextJS version 13 and above.
+- A Descope `Project ID` is required for using the SDK. Find it on the [project page in the Descope Console](https://app.descope.com/settings/project).
+
+## Installing the SDK
+
+Install the package with:
+
+```bash
+npm i --save @descope/nextjs-sdk
+```
+
+## Usage
+
+This section contains guides for App router and Pages router.
+For Pages router, see the [Pages Router](#pages-router) section.
+
+### App Router
+
+#### Wrap your app layout with Auth Provider
+
+```js
+// src/app/layout.tsx
+
+import { AuthProvider } from '@descope/nextjs-sdk'
+
+export default function RootLayout({
+	children
+}: {
+	children: React.ReactNode
+}) {
+	return (
+		<AuthProvider
+			projectId="your-descope-project-id"
+		>
+			<html lang="en">
+				<body>{children}</body>
+			</html>
+		</AuthProvider>
+	)
+}
+```
+
+Note: `AuthProvider` uses `sessionTokenViaCookie` by default, in order that the [AuthMiddleware](<#Require-authentication-for-application-(Middleware)>) will work out of the box.
+
+#### Use Descope to render Flow
+
+You can use **default flows** or **provide flow id** directly to the Descope component
+
+```js
+// Login page, e.g. src/app/sign-in.tsx
+import { Descope } from '@descope/react-sdk';
+// you can choose flow to run from the following without `flowId` instead
+// import { SignInFlow, SignUpFlow, SignUpOrInFlow } from '@descope/react-sdk'
+
+const Page = () => {
+	return (
+		<Descope
+			flowId="sign-up-or-in"
+			onSuccess={(e) => console.log('Logged in!')}
+			onError={(e) => console.log('Could not logged in!')}
+			redirectAfterSuccess="/"
+			// redirectAfterError="/error-page"
+		/>
+	);
+};
+```
+
+Refer to the [Descope React SDK Section](https://github.com/descope/react-sdk?tab=readme-ov-file#2-provide-flow-id) for a list of available props.
+
+**Note:** Descope is a client component. if the component that renders it is a server component, you cannot pass `onSuccess`/`onError`/`errorTransformer`/`logger` props because they are not serializable. To redirect the user after the flow is completed, use the `redirectAfterSuccess` and `redirectAfterError` props.
+
+#### Client Side Usage
+
+Use the `useDescope`, `useSession` and `useUser` hooks in your components in order to get authentication state, user details and utilities
+
+This can be helpful to implement application-specific logic. Examples:
+
+- Render different components if current session is authenticated
+- Render user's content
+- Logout button
+
+Note: these hooks should be used in a client component only (For example, component with `use client` notation).
+
+```js
+'use client';
+import { useDescope, useSession, useUser } from '@descope/nextjs-sdk/client';
+import { useCallback } from 'react';
+
+const App = () => {
+	// NOTE - `useDescope`, `useSession`, `useUser` should be used inside `AuthProvider` context,
+	// and will throw an exception if this requirement is not met
+	// useSession retrieves authentication state, session loading status, and session token
+	const { isAuthenticated, isSessionLoading, sessionToken } = useSession();
+	// useUser retrieves the logged in user information
+	const { user } = useUser();
+	// useDescope retrieves Descope SDK for further operations related to authentication
+	// such as logout
+	const sdk = useDescope();
+
+	if (isSessionLoading || isUserLoading) {
+		return <p>Loading...</p>;
+	}
+
+	const handleLogout = useCallback(() => {
+		sdk.logout();
+	}, [sdk]);
+
+	if (isAuthenticated) {
+		return (
+			<>
+				<p>Hello {user.name}</p>
+				<button onClick={handleLogout}>Logout</button>
+			</>
+		);
+	}
+
+	return <p>You are not logged in</p>;
+};
+```
+
+#### Server Side Usage
+
+##### Require authentication for application (Middleware)
+
+You can use NextJS Middleware to require authentication for a page/route or a group of pages/routes.
+
+Descope SDK provides a middleware function that can be used to require authentication for a page/route or a group of pages/routes.
+
+```js
+// src/middleware.ts
+import { authMiddleware } from '@descope/nextjs-sdk/server'
+
+export default authMiddleware({
+	// The Descope project ID to use for authentication
+	// Defaults to process.env.DESCOPE_PROJECT_ID
+	projectId: 'your-descope-project-id'
+
+	// The URL to redirect to if the user is not authenticated
+	// Defaults to process.env.SIGN_IN_ROUTE or '/sign-in' if not provided
+	redirectUrl?: string
+
+	// An array of public routes that do not require authentication
+	// In addition to the default public routes:
+	// - process.env.SIGN_IN_ROUTE or /sign-in if not provided
+	// - process.env.SIGN_UP_ROUTE or /sign-up if not provided
+	publicRoutes?: string[]
+})
+
+export const config = {
+	matcher: ['/((?!.+\\.[\\w]+$|_next).*)', '/', '/(api|trpc)(.*)']
+}
+```
+
+##### Read session information in server side
+
+use the `session()` helper to read session information in Server Components and Route handlers.
+
+Note: `session()` requires the `authMiddleware` to be used for the Server Component or Route handler that uses it.
+
+Server Component:
+
+```js
+// src/app/page.tsx
+
+import { session } from '@descope/nextjs-sdk/server';
+
+async function Page() {
+	const sessionRes = session();
+	if (!sessionRes) {
+		// ...
+	}
+	// Use the session jwt or parsed token
+	const { jwt, token } = sessionRes;
+}
+```
+
+Route handler:
+
+```js
+// src/pages/api/routes.ts
+export async function GET() {
+	const currSession = session();
+	if (!currSession.isAuthenticated) {
+		// ...
+	}
+
+	// Use the session jwt or parsed token
+	const { jwt, token } = currSession;
+}
+```
+
+#### Access Descope SDK in server side
+
+Use `createSdk` function to create Descope SDK in server side.
+
+Refer to the [Descope Node SDK](https://github.com/descope/node-sdk/?tab=readme-ov-file#authentication-functions) for a list of available functions.
+
+Usage example in Route handler:
+
+```js
+// src/pages/api/routes.ts
+import { createSdk } from '@descope/nextjs-sdk/server';
+
+const sdk = createSdk({
+	// The Descope project ID to use for authentication
+	// Defaults to process.env.DESCOPE_PROJECT_ID
+	projectId: 'your-descope-project-id',
+
+	// The Descope management key to use for management operations
+	// Defaults to process.env.DESCOPE_MANAGEMENT_KEY
+	managementKey: 'your-descope-management-key'
+});
+
+export async function GET(req) {
+	const { searchParams } = new URL(req.url);
+	const loginId = searchParams.get('loginId');
+
+	const { ok, data: user } = await sdk.management.user.load(loginId);
+	if (!ok) {
+		// ...
+	}
+	// Use the user data ...
+}
+```
+
+### Pages Router
+
+This section is Working in progress :-)
+In the meantime, you can see the example in the [Pages Router](/examples/pages-router/) folder.
+
+## Code Example
+
+You can find an example react app in the [examples folder](./examples). - [App Router](/examples/app-router/) - [Pages Router](/examples/pages-router/)
+
+## Learn More
+
+To learn more please see the [Descope Documentation and API reference page](https://docs.descope.com/).
+
+## Contact Us
+
+If you need help you can email [Descope Support](mailto:support@descope.com)
+
+## License
+
+The Descope SDK for React is licensed for use under the terms and conditions of the [MIT license Agreement](./LICENSE).

package/dist/client/dts/src/client/index.d.ts

@@ -0,0 +1 @@
+export { useDescope, useSession, useUser, getSessionToken, getRefreshToken, getJwtPermissions, getJwtRoles, refresh } from '@descope/react-sdk';

package/dist/client/dts/src/index.d.ts

@@ -0,0 +1 @@
+export * from './shared';

package/dist/client/dts/src/server/authMiddleware.d.ts

@@ -0,0 +1,8 @@
+import { NextRequest, NextResponse } from 'next/server';
+type MiddlewareOptions = {
+    projectId?: string;
+    redirectUrl?: string;
+    publicRoutes?: string[];
+};
+declare const createAuthMiddleware: (options?: MiddlewareOptions) => (req: NextRequest) => Promise<NextResponse<unknown>>;
+export default createAuthMiddleware;

package/dist/client/dts/src/server/constants.d.ts

@@ -0,0 +1,5 @@
+export declare const DESCOPE_SESSION_HEADER = "x-descope-session";
+export declare const baseHeaders: {
+    'x-descope-sdk-name': string;
+    'x-descope-sdk-version': string;
+};

package/dist/client/dts/src/server/index.d.ts

@@ -0,0 +1,3 @@
+export { default as authMiddleware } from './authMiddleware';
+export { session, getSession } from './session';
+export { createSdk } from './sdk';

package/dist/client/dts/src/server/sdk.d.ts

@@ -0,0 +1,8 @@
+import descopeSdk from '@descope/node-sdk';
+type Sdk = ReturnType<typeof descopeSdk>;
+type CreateSdkParams = Omit<Parameters<typeof descopeSdk>[0], 'projectId'> & {
+    projectId?: string | undefined;
+};
+export declare const createSdk: (config?: CreateSdkParams) => Sdk;
+export declare const getGlobalSdk: (config?: Pick<CreateSdkParams, 'projectId'>) => Sdk;
+export {};

package/dist/client/dts/src/server/session.d.ts

@@ -0,0 +1,4 @@
+import { AuthenticationInfo } from '@descope/node-sdk';
+import { NextApiRequest } from 'next';
+export declare const session: () => AuthenticationInfo | undefined;
+export declare const getSession: (req: NextApiRequest) => AuthenticationInfo | undefined;

package/dist/client/dts/src/shared/AuthProvider.d.ts

@@ -0,0 +1,4 @@
+import React, { ComponentProps } from 'react';
+import { AuthProvider as AuthProviderComp } from '@descope/react-sdk';
+declare const AuthProvider: (props: ComponentProps<typeof AuthProviderComp>) => React.JSX.Element;
+export default AuthProvider;

package/dist/client/dts/src/shared/DescopeFlows.d.ts

@@ -0,0 +1,156 @@
+import React from 'react';
+type AdditionalProps = {
+    redirectAfterSuccess?: string;
+    redirectAfterError?: string;
+};
+export declare const Descope: React.ComponentType<(({
+    flowId: string;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    form?: Record<string, any>;
+    client?: Record<string, any>;
+} & React.RefAttributes<HTMLElement>) | ({
+    flowId: string;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    form?: Record<string, any>;
+    client?: Record<string, any>;
+} & React.RefAttributes<HTMLElement> & {
+    children?: React.ReactNode;
+})) & AdditionalProps>;
+export declare const SignInFlow: React.ComponentType<({
+    form?: Record<string, any>;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    client?: Record<string, any>;
+} | ({
+    form?: Record<string, any>;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    client?: Record<string, any>;
+} & {
+    children?: React.ReactNode;
+})) & AdditionalProps>;
+export declare const SignUpFlow: React.ComponentType<({
+    form?: Record<string, any>;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    client?: Record<string, any>;
+} | ({
+    form?: Record<string, any>;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    client?: Record<string, any>;
+} & {
+    children?: React.ReactNode;
+})) & AdditionalProps>;
+export declare const SignUpOrInFlow: React.ComponentType<({
+    form?: Record<string, any>;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    client?: Record<string, any>;
+} | ({
+    form?: Record<string, any>;
+    onSuccess?: (event: CustomEvent<any>) => void;
+    onError?: OnErrorEventHandlerNonNull & ((event: CustomEvent<any>) => void);
+    logger?: import("@descope/web-component").ILogger;
+    tenant?: string;
+    theme?: import("@descope/web-component").ThemeOptions;
+    locale?: string;
+    autoFocus?: import("@descope/web-component").AutoFocusOptions;
+    debug?: boolean;
+    telemetryKey?: string;
+    redirectUrl?: string;
+    errorTransformer?: (error: {
+        text: string;
+        type: string;
+    }) => string;
+    client?: Record<string, any>;
+} & {
+    children?: React.ReactNode;
+})) & AdditionalProps>;
+export {};

package/dist/client/dts/src/shared/index.d.ts

@@ -0,0 +1,2 @@
+export { default as AuthProvider } from './AuthProvider';
+export * from './DescopeFlows';

package/dist/client/dts/src/types.d.ts

@@ -0,0 +1 @@
+export type TempType = {};

package/dist/client/index.d.ts

@@ -0,0 +1 @@
+export { getJwtPermissions, getJwtRoles, getRefreshToken, getSessionToken, refresh, useDescope, useSession, useUser } from '@descope/react-sdk';

package/dist/client/index.js

@@ -0,0 +1,3 @@
+'use client';
+export { getJwtPermissions, getJwtRoles, getRefreshToken, getSessionToken, refresh, useDescope, useSession, useUser } from '@descope/react-sdk';
+//# sourceMappingURL=index.js.map

package/dist/client/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sources":[],"sourcesContent":[],"names":[],"mappings":";"}

package/dist/dts/src/client/index.d.ts

@@ -0,0 +1 @@
+export { useDescope, useSession, useUser, getSessionToken, getRefreshToken, getJwtPermissions, getJwtRoles, refresh } from '@descope/react-sdk';

package/dist/dts/src/index.d.ts

@@ -0,0 +1 @@
+export * from './shared';

package/dist/dts/src/server/authMiddleware.d.ts

@@ -0,0 +1,8 @@
+import { NextRequest, NextResponse } from 'next/server';
+type MiddlewareOptions = {
+    projectId?: string;
+    redirectUrl?: string;
+    publicRoutes?: string[];
+};
+declare const createAuthMiddleware: (options?: MiddlewareOptions) => (req: NextRequest) => Promise<NextResponse<unknown>>;
+export default createAuthMiddleware;

package/dist/dts/src/server/constants.d.ts

@@ -0,0 +1,5 @@
+export declare const DESCOPE_SESSION_HEADER = "x-descope-session";
+export declare const baseHeaders: {
+    'x-descope-sdk-name': string;
+    'x-descope-sdk-version': string;
+};

package/dist/dts/src/server/index.d.ts

@@ -0,0 +1,3 @@
+export { default as authMiddleware } from './authMiddleware';
+export { session, getSession } from './session';
+export { createSdk } from './sdk';

package/dist/dts/src/server/sdk.d.ts

@@ -0,0 +1,8 @@
+import descopeSdk from '@descope/node-sdk';
+type Sdk = ReturnType<typeof descopeSdk>;
+type CreateSdkParams = Omit<Parameters<typeof descopeSdk>[0], 'projectId'> & {
+    projectId?: string | undefined;
+};
+export declare const createSdk: (config?: CreateSdkParams) => Sdk;
+export declare const getGlobalSdk: (config?: Pick<CreateSdkParams, 'projectId'>) => Sdk;
+export {};

package/dist/dts/src/server/session.d.ts

@@ -0,0 +1,4 @@
+import { AuthenticationInfo } from '@descope/node-sdk';
+import { NextApiRequest } from 'next';
+export declare const session: () => AuthenticationInfo | undefined;
+export declare const getSession: (req: NextApiRequest) => AuthenticationInfo | undefined;

package/dist/dts/src/shared/AuthProvider.d.ts

@@ -0,0 +1,4 @@
+import React, { ComponentProps } from 'react';
+import { AuthProvider as AuthProviderComp } from '@descope/react-sdk';
+declare const AuthProvider: (props: ComponentProps<typeof AuthProviderComp>) => React.JSX.Element;
+export default AuthProvider;