@dloizides/auth-web 1.2.1 → 1.3.0

package/CHANGELOG.md

@@ -1,5 +1,37 @@
 # Changelog
 
+## 1.3.0 (2026-05-31)
+
+Additive release for the auth-UX reuse roll-out (feature-reuse-roadmap #1).
+Promotes the "Forgot password?" modal body the product apps each hand-rolled
+into a single shared, **react-query-free** export so katalogos / erevna / kefi
+stop duplicating it. No breaking changes; every 1.2.x export is unchanged.
+
+### Added
+
+- **`<ForgotPasswordFields>`** — the embedded, themeable "request a reset link"
+  body, sized to live inside an app-owned modal shell (no screen/card wrapper,
+  no title — the host modal owns those). Adds the two modal affordances a
+  screen-shaped form lacks: a `Cancel` button beside submit and a `Close` button
+  on the success state, each rendered only when its handler is supplied. Clears
+  itself when `visible` flips to `false` so reopening starts fresh.
+- **`useForgotPasswordSubmit`** — the headless, **react-query-free** forgot-
+  password logic: a plain `useState` + `client.forgotPassword(...)` promise
+  chain that runs on a provider-less login route (where the existing
+  `useBffForgotPassword` `useMutation` crashes with "No QueryClient set"). Email
+  validation gating via `canSubmit`, anti-enumeration success, `hasNetworkError`,
+  and `reset()`. Also exports the `isValidForgotPasswordEmail` helper.
+- **`ForgotPasswordFieldsLabels`** + **`DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS`** —
+  the forgot-password label bag plus the modal `cancel` / `close` strings.
+- New `AuthTestIds` entries `forgotPasswordCancelButton` /
+  `forgotPasswordCloseButton`.
+
+### Notes
+
+- The existing screen-shaped `<ForgotPasswordForm>` (react-query-based) is
+  unchanged. A future cleanup may re-base it on `useForgotPasswordSubmit` to drop
+  its react-query coupling; deferred to keep this release additive.
+
 ## 1.2.0 (2026-05-22)
 
 Additive release for Phase 3d of the unified-auth plan — the event-scoped PIN

package/dist/index.d.mts

@@ -28,6 +28,9 @@ interface LoginFormLabels {
     submitting: string;
     /** The "Forgot password?" link text. */
     forgotPassword: string;
+    /** The "Create account" link shown below the submit button when an
+     *  `onSignUp` handler is supplied. Omit the handler to hide the link. */
+    signUp: string;
     /** Generic credentials-rejected message. */
     invalidCredentials: string;
     /** Shown when one or both fields are empty on submit. */
@@ -49,6 +52,17 @@ interface ForgotPasswordFormLabels {
     /** Shown when the entered value is not a valid email. */
     invalidEmail: string;
 }
+/**
+ * Strings rendered by `<ForgotPasswordFields>` — the embedded modal body. It is
+ * the forgot-password form plus the two modal affordances (`cancel` alongside
+ * submit, `close` on the success state) that a screen-shaped form has no need of.
+ */
+interface ForgotPasswordFieldsLabels extends ForgotPasswordFormLabels {
+    /** The "cancel" button shown alongside submit. */
+    cancel: string;
+    /** The "close" button shown on the success state. */
+    close: string;
+}
 /** Strings rendered by `<OtpForm>` — the two-step email-OTP login form. */
 interface OtpFormLabels {
     /** Title shown on the request-a-code step. */
@@ -124,6 +138,7 @@ interface ResetPasswordFormLabels {
 }
 declare const DEFAULT_LOGIN_LABELS: LoginFormLabels;
 declare const DEFAULT_FORGOT_PASSWORD_LABELS: ForgotPasswordFormLabels;
+declare const DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS: ForgotPasswordFieldsLabels;
 declare const DEFAULT_OTP_LABELS: OtpFormLabels;
 declare const DEFAULT_PIN_LABELS: PinFormLabels;
 declare const DEFAULT_RESET_PASSWORD_LABELS: ResetPasswordFormLabels;
@@ -233,11 +248,18 @@ interface LoginFormProps {
     onSuccess: (user: BffUser) => void;
     /** Called when the user taps the "Forgot password?" link. Omit to hide the link. */
     onForgotPassword?: () => void;
+    /**
+     * Called when the user taps the "Create account" link. Omit to hide the link
+     * (the registration UI then has to be reached some other way — direct nav,
+     * marketing CTA, etc.). The consuming app decides where the link routes;
+     * `<LoginForm>` just surfaces the entry point.
+     */
+    onSignUp?: () => void;
     /** Prefix applied to every `testID` so multiple forms can share a screen. */
     testIdPrefix?: string;
 }
 /** Themeable password-login form built on `useBffAuth`. */
-declare function LoginForm({ client, theme: themeProp, labels: labelsProp, onSuccess, onForgotPassword, testIdPrefix, }: Readonly<LoginFormProps>): ReactElement;
+declare function LoginForm({ client, theme: themeProp, labels: labelsProp, onSuccess, onForgotPassword, onSignUp, testIdPrefix, }: Readonly<LoginFormProps>): ReactElement;
 
 /**
  * `<ForgotPasswordForm>` — the ready-made, themeable "request a reset link"
@@ -274,6 +296,56 @@ interface ForgotPasswordFormProps {
 /** Themeable "request a reset link" form built on `useBffForgotPassword`. */
 declare function ForgotPasswordForm({ client, theme: themeProp, labels: labelsProp, resetUrlTemplate, onSuccess, testIdPrefix, }: Readonly<ForgotPasswordFormProps>): ReactElement;
 
+/**
+ * `<ForgotPasswordFields>` — the embedded, themeable "request a reset link"
+ * body, sized to live INSIDE an app-owned modal shell (not a full screen).
+ *
+ * The product apps each show "Forgot password?" as a modal launched from their
+ * login route, wrapping their own modal chrome (title bar + close affordance)
+ * around an identical email field + submit/cancel body. This is that body,
+ * promoted into the package so the three apps stop hand-rolling it.
+ *
+ * Built on the react-query-free `useForgotPasswordSubmit` hook, so it renders +
+ * submits on a provider-less login route (where `useMutation` would crash). The
+ * backend is anti-enumeration, so a successful request swaps to a generic
+ * confirmation that never reveals whether the address is registered.
+ *
+ * Differs from the screen-shaped `<ForgotPasswordForm>`: no outer screen/card
+ * wrapper and no title (the host modal owns those), plus two modal affordances —
+ * a `Cancel` button beside submit and a `Close` button on the success state —
+ * each rendered only when its handler is supplied.
+ */
+
+interface ForgotPasswordFieldsProps {
+    /** The same-origin BFF client (build it with `createBffAuthClient`). */
+    client: BffAuthClient;
+    /** Explicit theme; overrides any `<AuthThemeProvider>`. */
+    theme?: AuthTheme;
+    /** Localised copy. Partial — unspecified keys fall back to English defaults. */
+    labels?: Partial<ForgotPasswordFieldsLabels>;
+    /**
+     * Full URL with a `{token}` placeholder, forwarded to the backend so it can
+     * build the reset-email link without hardcoding a frontend host.
+     */
+    resetUrlTemplate?: string;
+    /**
+     * The host modal's open state. When it flips to `false` the body clears
+     * itself, so reopening shows a fresh form regardless of which affordance
+     * closed it. Defaults to `true` for non-modal embedding.
+     */
+    visible?: boolean;
+    /** Called once the request succeeds (the generic-confirmation state). */
+    onSuccess?: () => void;
+    /** When supplied, renders a Cancel button beside submit. */
+    onCancel?: () => void;
+    /** When supplied, renders a Close button on the success state. */
+    onClose?: () => void;
+    /** Prefix applied to every `testID`. */
+    testIdPrefix?: string;
+}
+/** Embedded "request a reset link" body for an app-owned modal. */
+declare function ForgotPasswordFields({ client, theme: themeProp, labels: labelsProp, resetUrlTemplate, visible, onSuccess, onCancel, onClose, testIdPrefix, }: Readonly<ForgotPasswordFieldsProps>): ReactElement;
+
 /**
  * `<ResetPasswordForm>` — the ready-made, themeable "choose a new password"
  * form.
@@ -423,10 +495,13 @@ declare const AuthTestIds: {
     readonly loginPasswordInput: "auth-login-password";
     readonly loginSubmitButton: "auth-login-submit";
     readonly loginForgotLink: "auth-login-forgot-link";
+    readonly loginSignUpLink: "auth-login-signup-link";
     readonly loginError: "auth-login-error";
     readonly forgotPasswordForm: "auth-forgot-form";
     readonly forgotPasswordEmailInput: "auth-forgot-email";
     readonly forgotPasswordSubmitButton: "auth-forgot-submit";
+    readonly forgotPasswordCancelButton: "auth-forgot-cancel";
+    readonly forgotPasswordCloseButton: "auth-forgot-close";
     readonly forgotPasswordError: "auth-forgot-error";
     readonly forgotPasswordSuccess: "auth-forgot-success";
     readonly resetPasswordForm: "auth-reset-form";
@@ -579,6 +654,38 @@ interface UseResetPasswordFormResult {
  */
 declare function useResetPasswordForm({ client, token, onSuccess, }: UseResetPasswordFormArgs): UseResetPasswordFormResult;
 
+/** `true` when `value` (after trimming) looks like an email address. */
+declare function isValidForgotPasswordEmail(value: string): boolean;
+interface UseForgotPasswordSubmitArgs {
+    /** The same-origin BFF client (build it with `createBffAuthClient`). */
+    client: BffAuthClient;
+    /**
+     * Full URL with a `{token}` placeholder, forwarded to the backend so it can
+     * build the reset-email link without hardcoding a frontend host.
+     */
+    resetUrlTemplate?: string;
+    /** Invoked once the request succeeds (the generic-confirmation state). */
+    onSuccess?: () => void;
+}
+interface UseForgotPasswordSubmitResult {
+    email: string;
+    setEmail: (value: string) => void;
+    /** `true` once the request has succeeded (show the generic confirmation). */
+    submitted: boolean;
+    /** `true` while the request is in flight. */
+    isSubmitting: boolean;
+    /** `true` when the last submit hit a network / 5xx failure. */
+    hasNetworkError: boolean;
+    /** `true` when the email is valid and no request is in flight. */
+    canSubmit: boolean;
+    /** Validate, then fire the request (no-op when `canSubmit` is false). */
+    submit: () => void;
+    /** Clear all state — call when the modal closes. */
+    reset: () => void;
+}
+/** Headless, react-query-free "request a reset link" logic. */
+declare function useForgotPasswordSubmit({ client, resetUrlTemplate, onSuccess, }: UseForgotPasswordSubmitArgs): UseForgotPasswordSubmitResult;
+
 /**
  * The two discrete steps of the email-OTP login flow.
  *
@@ -803,4 +910,4 @@ declare function validatePasswordPolicy(password: string): PasswordPolicyError[]
 /** `true` when the password satisfies every policy rule. */
 declare function isPasswordValid(password: string): boolean;
 
-export { AuthTestIds, type AuthTheme, type AuthThemeColors, AuthThemeProvider, type AuthThemeProviderProps, type AuthThemeRadii, type AuthThemeSpacing, type AuthThemeTypography, BffAuthStatus, type CreateBffAuthClientOptions, DEFAULT_FORGOT_PASSWORD_LABELS, DEFAULT_LOGIN_LABELS, DEFAULT_OTP_LABELS, DEFAULT_PIN_LABELS, DEFAULT_RESET_PASSWORD_LABELS, ForgotPasswordForm, type ForgotPasswordFormLabels, type ForgotPasswordFormProps, LoginForm, type LoginFormLabels, type LoginFormProps, OtpForm, type OtpFormLabels, type OtpFormProps, OtpLoginStep, PASSWORD_MAX_LENGTH, PASSWORD_MIN_LENGTH, PasswordPolicyError, PinForm, type PinFormLabels, type PinFormProps, ResetPasswordError, ResetPasswordForm, type ResetPasswordFormLabels, type ResetPasswordFormProps, type RoleRoute, type RoleRouteTable, type UseBffAuthOptions, type UseBffAuthResult, type UseBffForgotPasswordOptions, type UseBffResetPasswordOptions, type UseOtpLoginOptions, type UseOtpLoginResult, type UsePinLoginOptions, type UsePinLoginResult, type UseResetPasswordFormArgs, type UseResetPasswordFormResult, collectUserRoles, createBffAuthClient, defaultAuthTheme, isPasswordValid, resolvePostLoginRoute, useAuthTheme, useBffAuth, useBffForgotPassword, useBffResetPassword, useOtpLogin, usePinLogin, useResetPasswordForm, validatePasswordPolicy, withTestIdPrefix };
+export { AuthTestIds, type AuthTheme, type AuthThemeColors, AuthThemeProvider, type AuthThemeProviderProps, type AuthThemeRadii, type AuthThemeSpacing, type AuthThemeTypography, BffAuthStatus, type CreateBffAuthClientOptions, DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS, DEFAULT_FORGOT_PASSWORD_LABELS, DEFAULT_LOGIN_LABELS, DEFAULT_OTP_LABELS, DEFAULT_PIN_LABELS, DEFAULT_RESET_PASSWORD_LABELS, ForgotPasswordFields, type ForgotPasswordFieldsLabels, type ForgotPasswordFieldsProps, ForgotPasswordForm, type ForgotPasswordFormLabels, type ForgotPasswordFormProps, LoginForm, type LoginFormLabels, type LoginFormProps, OtpForm, type OtpFormLabels, type OtpFormProps, OtpLoginStep, PASSWORD_MAX_LENGTH, PASSWORD_MIN_LENGTH, PasswordPolicyError, PinForm, type PinFormLabels, type PinFormProps, ResetPasswordError, ResetPasswordForm, type ResetPasswordFormLabels, type ResetPasswordFormProps, type RoleRoute, type RoleRouteTable, type UseBffAuthOptions, type UseBffAuthResult, type UseBffForgotPasswordOptions, type UseBffResetPasswordOptions, type UseForgotPasswordSubmitArgs, type UseForgotPasswordSubmitResult, type UseOtpLoginOptions, type UseOtpLoginResult, type UsePinLoginOptions, type UsePinLoginResult, type UseResetPasswordFormArgs, type UseResetPasswordFormResult, collectUserRoles, createBffAuthClient, defaultAuthTheme, isPasswordValid, isValidForgotPasswordEmail, resolvePostLoginRoute, useAuthTheme, useBffAuth, useBffForgotPassword, useBffResetPassword, useForgotPasswordSubmit, useOtpLogin, usePinLogin, useResetPasswordForm, validatePasswordPolicy, withTestIdPrefix };

package/dist/index.d.ts

@@ -28,6 +28,9 @@ interface LoginFormLabels {
     submitting: string;
     /** The "Forgot password?" link text. */
     forgotPassword: string;
+    /** The "Create account" link shown below the submit button when an
+     *  `onSignUp` handler is supplied. Omit the handler to hide the link. */
+    signUp: string;
     /** Generic credentials-rejected message. */
     invalidCredentials: string;
     /** Shown when one or both fields are empty on submit. */
@@ -49,6 +52,17 @@ interface ForgotPasswordFormLabels {
     /** Shown when the entered value is not a valid email. */
     invalidEmail: string;
 }
+/**
+ * Strings rendered by `<ForgotPasswordFields>` — the embedded modal body. It is
+ * the forgot-password form plus the two modal affordances (`cancel` alongside
+ * submit, `close` on the success state) that a screen-shaped form has no need of.
+ */
+interface ForgotPasswordFieldsLabels extends ForgotPasswordFormLabels {
+    /** The "cancel" button shown alongside submit. */
+    cancel: string;
+    /** The "close" button shown on the success state. */
+    close: string;
+}
 /** Strings rendered by `<OtpForm>` — the two-step email-OTP login form. */
 interface OtpFormLabels {
     /** Title shown on the request-a-code step. */
@@ -124,6 +138,7 @@ interface ResetPasswordFormLabels {
 }
 declare const DEFAULT_LOGIN_LABELS: LoginFormLabels;
 declare const DEFAULT_FORGOT_PASSWORD_LABELS: ForgotPasswordFormLabels;
+declare const DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS: ForgotPasswordFieldsLabels;
 declare const DEFAULT_OTP_LABELS: OtpFormLabels;
 declare const DEFAULT_PIN_LABELS: PinFormLabels;
 declare const DEFAULT_RESET_PASSWORD_LABELS: ResetPasswordFormLabels;
@@ -233,11 +248,18 @@ interface LoginFormProps {
     onSuccess: (user: BffUser) => void;
     /** Called when the user taps the "Forgot password?" link. Omit to hide the link. */
     onForgotPassword?: () => void;
+    /**
+     * Called when the user taps the "Create account" link. Omit to hide the link
+     * (the registration UI then has to be reached some other way — direct nav,
+     * marketing CTA, etc.). The consuming app decides where the link routes;
+     * `<LoginForm>` just surfaces the entry point.
+     */
+    onSignUp?: () => void;
     /** Prefix applied to every `testID` so multiple forms can share a screen. */
     testIdPrefix?: string;
 }
 /** Themeable password-login form built on `useBffAuth`. */
-declare function LoginForm({ client, theme: themeProp, labels: labelsProp, onSuccess, onForgotPassword, testIdPrefix, }: Readonly<LoginFormProps>): ReactElement;
+declare function LoginForm({ client, theme: themeProp, labels: labelsProp, onSuccess, onForgotPassword, onSignUp, testIdPrefix, }: Readonly<LoginFormProps>): ReactElement;
 
 /**
  * `<ForgotPasswordForm>` — the ready-made, themeable "request a reset link"
@@ -274,6 +296,56 @@ interface ForgotPasswordFormProps {
 /** Themeable "request a reset link" form built on `useBffForgotPassword`. */
 declare function ForgotPasswordForm({ client, theme: themeProp, labels: labelsProp, resetUrlTemplate, onSuccess, testIdPrefix, }: Readonly<ForgotPasswordFormProps>): ReactElement;
 
+/**
+ * `<ForgotPasswordFields>` — the embedded, themeable "request a reset link"
+ * body, sized to live INSIDE an app-owned modal shell (not a full screen).
+ *
+ * The product apps each show "Forgot password?" as a modal launched from their
+ * login route, wrapping their own modal chrome (title bar + close affordance)
+ * around an identical email field + submit/cancel body. This is that body,
+ * promoted into the package so the three apps stop hand-rolling it.
+ *
+ * Built on the react-query-free `useForgotPasswordSubmit` hook, so it renders +
+ * submits on a provider-less login route (where `useMutation` would crash). The
+ * backend is anti-enumeration, so a successful request swaps to a generic
+ * confirmation that never reveals whether the address is registered.
+ *
+ * Differs from the screen-shaped `<ForgotPasswordForm>`: no outer screen/card
+ * wrapper and no title (the host modal owns those), plus two modal affordances —
+ * a `Cancel` button beside submit and a `Close` button on the success state —
+ * each rendered only when its handler is supplied.
+ */
+
+interface ForgotPasswordFieldsProps {
+    /** The same-origin BFF client (build it with `createBffAuthClient`). */
+    client: BffAuthClient;
+    /** Explicit theme; overrides any `<AuthThemeProvider>`. */
+    theme?: AuthTheme;
+    /** Localised copy. Partial — unspecified keys fall back to English defaults. */
+    labels?: Partial<ForgotPasswordFieldsLabels>;
+    /**
+     * Full URL with a `{token}` placeholder, forwarded to the backend so it can
+     * build the reset-email link without hardcoding a frontend host.
+     */
+    resetUrlTemplate?: string;
+    /**
+     * The host modal's open state. When it flips to `false` the body clears
+     * itself, so reopening shows a fresh form regardless of which affordance
+     * closed it. Defaults to `true` for non-modal embedding.
+     */
+    visible?: boolean;
+    /** Called once the request succeeds (the generic-confirmation state). */
+    onSuccess?: () => void;
+    /** When supplied, renders a Cancel button beside submit. */
+    onCancel?: () => void;
+    /** When supplied, renders a Close button on the success state. */
+    onClose?: () => void;
+    /** Prefix applied to every `testID`. */
+    testIdPrefix?: string;
+}
+/** Embedded "request a reset link" body for an app-owned modal. */
+declare function ForgotPasswordFields({ client, theme: themeProp, labels: labelsProp, resetUrlTemplate, visible, onSuccess, onCancel, onClose, testIdPrefix, }: Readonly<ForgotPasswordFieldsProps>): ReactElement;
+
 /**
  * `<ResetPasswordForm>` — the ready-made, themeable "choose a new password"
  * form.
@@ -423,10 +495,13 @@ declare const AuthTestIds: {
     readonly loginPasswordInput: "auth-login-password";
     readonly loginSubmitButton: "auth-login-submit";
     readonly loginForgotLink: "auth-login-forgot-link";
+    readonly loginSignUpLink: "auth-login-signup-link";
     readonly loginError: "auth-login-error";
     readonly forgotPasswordForm: "auth-forgot-form";
     readonly forgotPasswordEmailInput: "auth-forgot-email";
     readonly forgotPasswordSubmitButton: "auth-forgot-submit";
+    readonly forgotPasswordCancelButton: "auth-forgot-cancel";
+    readonly forgotPasswordCloseButton: "auth-forgot-close";
     readonly forgotPasswordError: "auth-forgot-error";
     readonly forgotPasswordSuccess: "auth-forgot-success";
     readonly resetPasswordForm: "auth-reset-form";
@@ -579,6 +654,38 @@ interface UseResetPasswordFormResult {
  */
 declare function useResetPasswordForm({ client, token, onSuccess, }: UseResetPasswordFormArgs): UseResetPasswordFormResult;
 
+/** `true` when `value` (after trimming) looks like an email address. */
+declare function isValidForgotPasswordEmail(value: string): boolean;
+interface UseForgotPasswordSubmitArgs {
+    /** The same-origin BFF client (build it with `createBffAuthClient`). */
+    client: BffAuthClient;
+    /**
+     * Full URL with a `{token}` placeholder, forwarded to the backend so it can
+     * build the reset-email link without hardcoding a frontend host.
+     */
+    resetUrlTemplate?: string;
+    /** Invoked once the request succeeds (the generic-confirmation state). */
+    onSuccess?: () => void;
+}
+interface UseForgotPasswordSubmitResult {
+    email: string;
+    setEmail: (value: string) => void;
+    /** `true` once the request has succeeded (show the generic confirmation). */
+    submitted: boolean;
+    /** `true` while the request is in flight. */
+    isSubmitting: boolean;
+    /** `true` when the last submit hit a network / 5xx failure. */
+    hasNetworkError: boolean;
+    /** `true` when the email is valid and no request is in flight. */
+    canSubmit: boolean;
+    /** Validate, then fire the request (no-op when `canSubmit` is false). */
+    submit: () => void;
+    /** Clear all state — call when the modal closes. */
+    reset: () => void;
+}
+/** Headless, react-query-free "request a reset link" logic. */
+declare function useForgotPasswordSubmit({ client, resetUrlTemplate, onSuccess, }: UseForgotPasswordSubmitArgs): UseForgotPasswordSubmitResult;
+
 /**
  * The two discrete steps of the email-OTP login flow.
  *
@@ -803,4 +910,4 @@ declare function validatePasswordPolicy(password: string): PasswordPolicyError[]
 /** `true` when the password satisfies every policy rule. */
 declare function isPasswordValid(password: string): boolean;
 
-export { AuthTestIds, type AuthTheme, type AuthThemeColors, AuthThemeProvider, type AuthThemeProviderProps, type AuthThemeRadii, type AuthThemeSpacing, type AuthThemeTypography, BffAuthStatus, type CreateBffAuthClientOptions, DEFAULT_FORGOT_PASSWORD_LABELS, DEFAULT_LOGIN_LABELS, DEFAULT_OTP_LABELS, DEFAULT_PIN_LABELS, DEFAULT_RESET_PASSWORD_LABELS, ForgotPasswordForm, type ForgotPasswordFormLabels, type ForgotPasswordFormProps, LoginForm, type LoginFormLabels, type LoginFormProps, OtpForm, type OtpFormLabels, type OtpFormProps, OtpLoginStep, PASSWORD_MAX_LENGTH, PASSWORD_MIN_LENGTH, PasswordPolicyError, PinForm, type PinFormLabels, type PinFormProps, ResetPasswordError, ResetPasswordForm, type ResetPasswordFormLabels, type ResetPasswordFormProps, type RoleRoute, type RoleRouteTable, type UseBffAuthOptions, type UseBffAuthResult, type UseBffForgotPasswordOptions, type UseBffResetPasswordOptions, type UseOtpLoginOptions, type UseOtpLoginResult, type UsePinLoginOptions, type UsePinLoginResult, type UseResetPasswordFormArgs, type UseResetPasswordFormResult, collectUserRoles, createBffAuthClient, defaultAuthTheme, isPasswordValid, resolvePostLoginRoute, useAuthTheme, useBffAuth, useBffForgotPassword, useBffResetPassword, useOtpLogin, usePinLogin, useResetPasswordForm, validatePasswordPolicy, withTestIdPrefix };
+export { AuthTestIds, type AuthTheme, type AuthThemeColors, AuthThemeProvider, type AuthThemeProviderProps, type AuthThemeRadii, type AuthThemeSpacing, type AuthThemeTypography, BffAuthStatus, type CreateBffAuthClientOptions, DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS, DEFAULT_FORGOT_PASSWORD_LABELS, DEFAULT_LOGIN_LABELS, DEFAULT_OTP_LABELS, DEFAULT_PIN_LABELS, DEFAULT_RESET_PASSWORD_LABELS, ForgotPasswordFields, type ForgotPasswordFieldsLabels, type ForgotPasswordFieldsProps, ForgotPasswordForm, type ForgotPasswordFormLabels, type ForgotPasswordFormProps, LoginForm, type LoginFormLabels, type LoginFormProps, OtpForm, type OtpFormLabels, type OtpFormProps, OtpLoginStep, PASSWORD_MAX_LENGTH, PASSWORD_MIN_LENGTH, PasswordPolicyError, PinForm, type PinFormLabels, type PinFormProps, ResetPasswordError, ResetPasswordForm, type ResetPasswordFormLabels, type ResetPasswordFormProps, type RoleRoute, type RoleRouteTable, type UseBffAuthOptions, type UseBffAuthResult, type UseBffForgotPasswordOptions, type UseBffResetPasswordOptions, type UseForgotPasswordSubmitArgs, type UseForgotPasswordSubmitResult, type UseOtpLoginOptions, type UseOtpLoginResult, type UsePinLoginOptions, type UsePinLoginResult, type UseResetPasswordFormArgs, type UseResetPasswordFormResult, collectUserRoles, createBffAuthClient, defaultAuthTheme, isPasswordValid, isValidForgotPasswordEmail, resolvePostLoginRoute, useAuthTheme, useBffAuth, useBffForgotPassword, useBffResetPassword, useForgotPasswordSubmit, useOtpLogin, usePinLogin, useResetPasswordForm, validatePasswordPolicy, withTestIdPrefix };

package/dist/index.js

@@ -19,6 +19,7 @@ var DEFAULT_LOGIN_LABELS = {
   submit: "Sign in",
   submitting: "Signing in...",
   forgotPassword: "Forgot password?",
+  signUp: "Create an account",
   invalidCredentials: "Incorrect username or password.",
   missingFields: "Enter both your username and password."
 };
@@ -33,6 +34,11 @@ var DEFAULT_FORGOT_PASSWORD_LABELS = {
   networkError: "Something went wrong. Please try again.",
   invalidEmail: "Enter a valid email address."
 };
+var DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS = {
+  ...DEFAULT_FORGOT_PASSWORD_LABELS,
+  cancel: "Cancel",
+  close: "Close"
+};
 var DEFAULT_OTP_LABELS = {
   requestTitle: "Sign in with a code",
   requestDescription: "Enter your email and we will send you a one-time code.",
@@ -86,10 +92,13 @@ var AuthTestIds = {
   loginPasswordInput: "auth-login-password",
   loginSubmitButton: "auth-login-submit",
   loginForgotLink: "auth-login-forgot-link",
+  loginSignUpLink: "auth-login-signup-link",
   loginError: "auth-login-error",
   forgotPasswordForm: "auth-forgot-form",
   forgotPasswordEmailInput: "auth-forgot-email",
   forgotPasswordSubmitButton: "auth-forgot-submit",
+  forgotPasswordCancelButton: "auth-forgot-cancel",
+  forgotPasswordCloseButton: "auth-forgot-close",
   forgotPasswordError: "auth-forgot-error",
   forgotPasswordSuccess: "auth-forgot-success",
   resetPasswordForm: "auth-reset-form",
@@ -359,6 +368,7 @@ function LoginForm({
   labels: labelsProp,
   onSuccess,
   onForgotPassword,
+  onSignUp,
   testIdPrefix
 }) {
   const theme = useAuthTheme(themeProp);
@@ -465,7 +475,20 @@ function LoginForm({
         onPress: handleSubmit,
         children: isSubmitting ? /* @__PURE__ */ jsxRuntime.jsx(reactNative.ActivityIndicator, { color: theme.colors.onPrimary, size: "small" }) : /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.primaryButtonText, children: labels.submit })
       }
-    )
+    ),
+    onSignUp !== void 0 ? /* @__PURE__ */ jsxRuntime.jsx(
+      reactNative.TouchableOpacity,
+      {
+        accessibilityHint: labels.signUp,
+        accessibilityLabel: labels.signUp,
+        accessibilityRole: "link",
+        disabled: isSubmitting,
+        style: styles.fieldGroup,
+        testID: withTestIdPrefix(AuthTestIds.loginSignUpLink, testIdPrefix),
+        onPress: onSignUp,
+        children: /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.linkText, children: labels.signUp })
+      }
+    ) : null
   ] }) });
 }
 function useBffForgotPassword(options) {
@@ -596,6 +619,182 @@ function ForgotPasswordForm({
     }
   ) });
 }
+var EMAIL_REGEX2 = /^[^@\s]+@[^.\s]+\.[^\s]+$/;
+function isValidForgotPasswordEmail(value) {
+  return EMAIL_REGEX2.test(value.trim());
+}
+function useForgotPasswordSubmit({
+  client,
+  resetUrlTemplate,
+  onSuccess
+}) {
+  const [email, setEmail] = react.useState("");
+  const [submitted, setSubmitted] = react.useState(false);
+  const [isSubmitting, setIsSubmitting] = react.useState(false);
+  const [hasNetworkError, setHasNetworkError] = react.useState(false);
+  const canSubmit = isValidForgotPasswordEmail(email) && !isSubmitting;
+  const submit = react.useCallback(() => {
+    const target = email.trim();
+    if (!isValidForgotPasswordEmail(target) || isSubmitting) {
+      return;
+    }
+    setHasNetworkError(false);
+    setIsSubmitting(true);
+    const request = { email: target, resetUrlTemplate };
+    client.forgotPassword(request).then(() => {
+      setSubmitted(true);
+      onSuccess?.();
+    }).catch(() => setHasNetworkError(true)).finally(() => setIsSubmitting(false));
+  }, [client, email, isSubmitting, resetUrlTemplate, onSuccess]);
+  const reset = react.useCallback(() => {
+    setEmail("");
+    setSubmitted(false);
+    setIsSubmitting(false);
+    setHasNetworkError(false);
+  }, []);
+  return {
+    email,
+    setEmail,
+    submitted,
+    isSubmitting,
+    hasNetworkError,
+    canSubmit,
+    submit,
+    reset
+  };
+}
+var SECONDARY_BORDER_WIDTH = 1;
+function useModalStyles(theme) {
+  return react.useMemo(
+    () => reactNative.StyleSheet.create({
+      body: { padding: theme.spacing.md },
+      actions: {
+        flexDirection: "row",
+        justifyContent: "flex-end",
+        alignItems: "center",
+        marginTop: theme.spacing.md,
+        gap: theme.spacing.sm
+      },
+      secondaryButton: {
+        borderRadius: theme.radii.input,
+        paddingVertical: theme.spacing.sm,
+        paddingHorizontal: theme.spacing.md,
+        borderWidth: SECONDARY_BORDER_WIDTH,
+        borderColor: theme.colors.border
+      },
+      secondaryButtonText: {
+        fontSize: theme.typography.body,
+        fontWeight: "600",
+        color: theme.colors.text
+      }
+    }),
+    [theme]
+  );
+}
+function ForgotPasswordFields({
+  client,
+  theme: themeProp,
+  labels: labelsProp,
+  resetUrlTemplate,
+  visible = true,
+  onSuccess,
+  onCancel,
+  onClose,
+  testIdPrefix
+}) {
+  const theme = useAuthTheme(themeProp);
+  const styles = useAuthStyles(theme);
+  const modalStyles = useModalStyles(theme);
+  const labels = react.useMemo(
+    () => ({ ...DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS, ...labelsProp }),
+    [labelsProp]
+  );
+  const form = useForgotPasswordSubmit({ client, resetUrlTemplate, onSuccess });
+  const { reset } = form;
+  react.useEffect(() => {
+    if (!visible) {
+      reset();
+    }
+  }, [visible, reset]);
+  const submitButtonStyle = form.canSubmit ? styles.primaryButton : [styles.primaryButton, styles.primaryButtonDisabled];
+  const handleCancel = () => {
+    form.reset();
+    onCancel?.();
+  };
+  const handleClose = () => {
+    form.reset();
+    onClose?.();
+  };
+  if (form.submitted) {
+    return /* @__PURE__ */ jsxRuntime.jsxs(reactNative.View, { style: modalStyles.body, testID: withTestIdPrefix(AuthTestIds.forgotPasswordForm, testIdPrefix), children: [
+      /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.successText, testID: withTestIdPrefix(AuthTestIds.forgotPasswordSuccess, testIdPrefix), children: labels.successMessage }),
+      onClose !== void 0 ? /* @__PURE__ */ jsxRuntime.jsx(reactNative.View, { style: modalStyles.actions, children: /* @__PURE__ */ jsxRuntime.jsx(
+        reactNative.TouchableOpacity,
+        {
+          accessibilityHint: labels.close,
+          accessibilityLabel: labels.close,
+          accessibilityRole: "button",
+          style: styles.primaryButton,
+          testID: withTestIdPrefix(AuthTestIds.forgotPasswordCloseButton, testIdPrefix),
+          onPress: handleClose,
+          children: /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.primaryButtonText, children: labels.close })
+        }
+      ) }) : null
+    ] });
+  }
+  return /* @__PURE__ */ jsxRuntime.jsxs(reactNative.View, { style: modalStyles.body, testID: withTestIdPrefix(AuthTestIds.forgotPasswordForm, testIdPrefix), children: [
+    /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.subtitle, children: labels.description }),
+    /* @__PURE__ */ jsxRuntime.jsxs(reactNative.View, { style: styles.fieldGroup, children: [
+      /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.label, children: labels.emailLabel }),
+      /* @__PURE__ */ jsxRuntime.jsx(
+        reactNative.TextInput,
+        {
+          accessibilityHint: labels.emailPlaceholder,
+          accessibilityLabel: labels.emailLabel,
+          autoCapitalize: "none",
+          autoCorrect: false,
+          editable: !form.isSubmitting,
+          keyboardType: "email-address",
+          placeholder: labels.emailPlaceholder,
+          placeholderTextColor: theme.colors.textSecondary,
+          style: styles.input,
+          testID: withTestIdPrefix(AuthTestIds.forgotPasswordEmailInput, testIdPrefix),
+          value: form.email,
+          onChangeText: form.setEmail
+        }
+      )
+    ] }),
+    form.hasNetworkError ? /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.errorText, testID: withTestIdPrefix(AuthTestIds.forgotPasswordError, testIdPrefix), children: labels.networkError }) : null,
+    /* @__PURE__ */ jsxRuntime.jsxs(reactNative.View, { style: modalStyles.actions, children: [
+      onCancel !== void 0 ? /* @__PURE__ */ jsxRuntime.jsx(
+        reactNative.TouchableOpacity,
+        {
+          accessibilityHint: labels.cancel,
+          accessibilityLabel: labels.cancel,
+          accessibilityRole: "button",
+          disabled: form.isSubmitting,
+          style: modalStyles.secondaryButton,
+          testID: withTestIdPrefix(AuthTestIds.forgotPasswordCancelButton, testIdPrefix),
+          onPress: handleCancel,
+          children: /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: modalStyles.secondaryButtonText, children: labels.cancel })
+        }
+      ) : null,
+      /* @__PURE__ */ jsxRuntime.jsx(
+        reactNative.TouchableOpacity,
+        {
+          accessibilityHint: labels.submit,
+          accessibilityLabel: form.isSubmitting ? labels.submitting : labels.submit,
+          accessibilityRole: "button",
+          disabled: !form.canSubmit,
+          style: submitButtonStyle,
+          testID: withTestIdPrefix(AuthTestIds.forgotPasswordSubmitButton, testIdPrefix),
+          onPress: form.submit,
+          children: form.isSubmitting ? /* @__PURE__ */ jsxRuntime.jsx(reactNative.ActivityIndicator, { color: theme.colors.onPrimary, size: "small" }) : /* @__PURE__ */ jsxRuntime.jsx(reactNative.Text, { style: styles.primaryButtonText, children: labels.submit })
+        }
+      )
+    ] })
+  ] });
+}
 
 // src/hooks/ResetPasswordError.ts
 var ResetPasswordError = /* @__PURE__ */ ((ResetPasswordError2) => {
@@ -1097,9 +1296,9 @@ function useOtpLogin(options) {
     ]
   );
 }
-var EMAIL_REGEX2 = /^[^@\s]+@[^.\s]+\.[^\s]+$/;
+var EMAIL_REGEX3 = /^[^@\s]+@[^.\s]+\.[^\s]+$/;
 function isValidEmail2(value) {
-  return EMAIL_REGEX2.test(value);
+  return EMAIL_REGEX3.test(value);
 }
 function transportErrorFor(step, error, labels) {
   if (error === null) {
@@ -1380,11 +1579,13 @@ Object.defineProperty(exports, "createFetchHttpClient", {
 exports.AuthTestIds = AuthTestIds;
 exports.AuthThemeProvider = AuthThemeProvider;
 exports.BffAuthStatus = BffAuthStatus;
+exports.DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS = DEFAULT_FORGOT_PASSWORD_FIELDS_LABELS;
 exports.DEFAULT_FORGOT_PASSWORD_LABELS = DEFAULT_FORGOT_PASSWORD_LABELS;
 exports.DEFAULT_LOGIN_LABELS = DEFAULT_LOGIN_LABELS;
 exports.DEFAULT_OTP_LABELS = DEFAULT_OTP_LABELS;
 exports.DEFAULT_PIN_LABELS = DEFAULT_PIN_LABELS;
 exports.DEFAULT_RESET_PASSWORD_LABELS = DEFAULT_RESET_PASSWORD_LABELS;
+exports.ForgotPasswordFields = ForgotPasswordFields;
 exports.ForgotPasswordForm = ForgotPasswordForm;
 exports.LoginForm = LoginForm;
 exports.OtpForm = OtpForm;
@@ -1399,11 +1600,13 @@ exports.collectUserRoles = collectUserRoles;
 exports.createBffAuthClient = createBffAuthClient;
 exports.defaultAuthTheme = defaultAuthTheme;
 exports.isPasswordValid = isPasswordValid;
+exports.isValidForgotPasswordEmail = isValidForgotPasswordEmail;
 exports.resolvePostLoginRoute = resolvePostLoginRoute;
 exports.useAuthTheme = useAuthTheme;
 exports.useBffAuth = useBffAuth;
 exports.useBffForgotPassword = useBffForgotPassword;
 exports.useBffResetPassword = useBffResetPassword;
+exports.useForgotPasswordSubmit = useForgotPasswordSubmit;
 exports.useOtpLogin = useOtpLogin;
 exports.usePinLogin = usePinLogin;
 exports.useResetPasswordForm = useResetPasswordForm;