npm - @donotdev/supabase - Versions diffs - 0.0.1 - Mend

@donotdev/supabase 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (30) hide show

package/LICENSE.md +10 -0
package/README.md +125 -0
package/dist/client/auth.d.ts +93 -0
package/dist/client/auth.d.ts.map +1 -0
package/dist/client/auth.js +1 -0
package/dist/client/callableProvider.d.ts +62 -0
package/dist/client/callableProvider.d.ts.map +1 -0
package/dist/client/callableProvider.js +1 -0
package/dist/client/crudAdapter.d.ts +94 -0
package/dist/client/crudAdapter.d.ts.map +1 -0
package/dist/client/crudAdapter.js +1 -0
package/dist/client/index.d.ts +13 -0
package/dist/client/index.d.ts.map +1 -0
package/dist/client/index.js +1 -0
package/dist/client/storageAdapter.d.ts +26 -0
package/dist/client/storageAdapter.d.ts.map +1 -0
package/dist/client/storageAdapter.js +1 -0
package/dist/fieldMapper.d.ts +27 -0
package/dist/fieldMapper.d.ts.map +1 -0
package/dist/fieldMapper.js +1 -0
package/dist/index.d.ts +9 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +1 -0
package/dist/server/authAdapter.d.ts +38 -0
package/dist/server/authAdapter.d.ts.map +1 -0
package/dist/server/authAdapter.js +1 -0
package/dist/server/index.d.ts +7 -0
package/dist/server/index.d.ts.map +1 -0
package/dist/server/index.js +1 -0
package/package.json +60 -0

package/LICENSE.md ADDED Viewed

@@ -0,0 +1,10 @@
+# DoNotDev Framework License Agreement
+**Version 1.0 – Effective Date: May 5, 2025**
+Copyright © 2025 Ambroise Park Consulting. All rights reserved.
+See the full license at [packages/providers/firebase/LICENSE.md](../../providers/firebase/LICENSE.md) or donotdev.com.
+**DoNotDev Framework License**
+Ambroise Park Consulting – 2025

package/README.md ADDED Viewed

@@ -0,0 +1,125 @@
+# @donotdev/supabase
+Supabase provider for DoNotDev: CRUD, auth, storage, and server auth adapters. Use this package when you want to run a DoNotDev app on Supabase instead of Firebase.
+## Setup
+### Environment
+- **Client:** `VITE_SUPABASE_URL`, `VITE_SUPABASE_PUBLIC_KEY` (or `VITE_SUPABASE_ANON_KEY` for legacy) — public, safe to ship in client bundle
+- **Server:** same URL, use `SUPABASE_SECRET_KEY` (or `SUPABASE_SERVICE_ROLE_KEY` for legacy) for admin auth (never expose this key to the client)
+Run `dndev supabase:setup` to configure these interactively.
+### Tables and storage
+- **CRUD:** Entity `collection` name is used as the Supabase **table** name (e.g. `products` -> table `products`). Tables must exist and must have an `id` column (text or uuid).
+- **Storage:** Default bucket is `uploads`. Create the bucket in the Supabase dashboard and set public policies as needed.
+## Usage
+### Client
+```ts
+import { createClient } from '@supabase/supabase-js';
+import { configureProviders } from '@donotdev/core';
+import {
+  SupabaseCrudAdapter,
+  SupabaseStorageAdapter,
+  SupabaseAuth,
+} from '@donotdev/supabase';
+const supabase = createClient(
+  import.meta.env.VITE_SUPABASE_URL,
+  import.meta.env.VITE_SUPABASE_PUBLIC_KEY || import.meta.env.VITE_SUPABASE_ANON_KEY // New: sb_publishable_..., Legacy: anon key
+);
+configureProviders({
+  crud: new SupabaseCrudAdapter(supabase),
+  auth: new SupabaseAuth(supabase),
+  storage: new SupabaseStorageAdapter(supabase),
+});
+```
+### Server
+```ts
+import {
+  createServerClient,
+  SupabaseServerAuthAdapter,
+} from '@donotdev/supabase/server';
+import { SupabaseCrudAdapter } from '@donotdev/supabase';
+const supabase = createServerClient(
+  process.env.SUPABASE_URL!,
+  process.env.SUPABASE_SECRET_KEY || process.env.SUPABASE_SERVICE_ROLE_KEY! // New: sb_secret_..., Legacy: service_role
+);
+configureProviders({
+  crud: new SupabaseCrudAdapter(supabase),
+  serverAuth: new SupabaseServerAuthAdapter(supabase),
+});
+```
+## Exports
+- **Client (`@donotdev/supabase`):** `SupabaseCrudAdapter`, `SupabaseStorageAdapter`, `SupabaseAuth`
+- **Server (`@donotdev/supabase/server`):** `SupabaseServerAuthAdapter`, `createServerClient`
+## What Works
+All core framework features work when you register Supabase providers via `configureProviders()`:
+| Feature | Status |
+|---------|--------|
+| CRUD (create, read, update, delete) | Full support, schema validation via valibot |
+| Query with filters, ordering, pagination | Full support (all operators) |
+| Real-time subscriptions (document + collection) | Full support via Supabase channels |
+| Auth (email/password, OAuth, magic link) | Full support |
+| OAuth partners (Google, GitHub, Facebook, Apple, etc.) | Full support (14+ providers) |
+| Storage (upload, delete, get URL) | Full support |
+| Server auth (token verification, custom claims) | Full support |
+| Account linking | Supported via `linkIdentity()` |
+## Known Limitations
+### Auth Methods
+| Method | Behavior | Workaround |
+|--------|----------|------------|
+| `deleteAccount()` | Throws `DELETE_ACCOUNT_REQUIRES_SERVER` | Implement via server endpoint using `auth.admin.deleteUser()` |
+| `signInWithGoogleCredential()` | Returns `null` | Use `signInWithPartner('google')` for standard OAuth flow |
+| `reauthenticateWithProvider()` | Triggers full OAuth redirect | Works but navigates away from page (no popup) |
+### Framework Components (Firebase-Only)
+These framework features import Firebase SDK directly and **will not work** with Supabase:
+| Feature | Alternative |
+|---------|------------|
+| `EmailPasswordForm` component | Build custom form using `useAuth()` hook |
+| `useGoogleOneTap` hook | Use `signInWithPartner('google')` |
+| `FirebaseSmartRecovery` | Not needed for Supabase |
+| `FirebaseAccountLinking` | Use `SupabaseAuth.linkWithPartner()` directly |
+| `useStripeBilling` | Implement Stripe via Supabase Edge Functions or API routes |
+### CLI Commands (Firebase-Only)
+| Command | Alternative |
+|---------|------------|
+| `dndev emu` | Use `supabase start` (Supabase CLI) for local development |
+| `dndev deploy` | Deploy via Vercel, Netlify, or other hosting |
+| `dndev sync-secrets` (Firebase target) | Use `dndev sync-secrets --target github` for CI/CD secrets |
+## Future Work
+These gaps are tracked for future implementation:
+- **Provider-agnostic EmailPasswordForm** — refactor to use `getProvider('auth')` instead of Firebase SDK
+- **Provider-agnostic useStripeBilling** — abstract callable functions behind provider interface
+- **Google One Tap for Supabase** — potentially implement via `signInWithIdToken()`
+- **deleteAccount server template** — Supabase Edge Function template for user deletion
+## License
+See [LICENSE.md](./LICENSE.md).

package/dist/client/auth.d.ts ADDED Viewed

@@ -0,0 +1,93 @@
+import type { AuthProvider, AuthUser, AuthResult, AuthPartnerId, AuthMethod, UnsubscribeFn, UserRole, AuthState, AuthActions, SecurityContext } from '@donotdev/core';
+import type { SupabaseClient } from '@supabase/supabase-js';
+/**
+ * Supabase Auth implementation of AuthProvider.
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ */
+export declare class SupabaseAuth implements AuthProvider {
+    private readonly client;
+    private store;
+    private initialized;
+    /** Optional security context — injected via setSecurity() */
+    private security;
+    /**
+     * Default lockout tracker — used when no SecurityContext is injected.
+     * When `setSecurity()` is called, delegation is to `security.authHardening` which
+     * respects the consumer's configured maxAttempts / lockoutMs.
+     * Using AuthHardening (not a raw Map) ensures a single lockout implementation.
+     */
+    private readonly defaultHardening;
+    constructor(client: SupabaseClient);
+    /**
+     * Set store reference for state updates
+     * Called by useAuth on initialization.
+     */
+    setStore(store: AuthState & AuthActions): void;
+    /**
+     * Inject a SecurityContext for audit logging + anomaly detection.
+     * Call after construction: `auth.setSecurity(security)`.
+     *
+     * @version 0.0.1
+     * @since 0.0.1
+     */
+    setSecurity(security: SecurityContext): void;
+    /**
+     * Active hardening context — SecurityContext's when injected, otherwise the default instance.
+     * Typed as `AuthHardeningContext` (the interface) — do NOT cast to the concrete `AuthHardening`
+     * class, as a custom implementation may not return `LockoutResult` from `recordFailure`.
+     */
+    private get _hardening();
+    /**
+     * Throws if email is currently locked out (SOC2 CC6.2).
+     * Uses SecurityContext.authHardening when injected (respects consumer config),
+     * otherwise the default AuthHardening instance with standard defaults.
+     */
+    private _checkLockout;
+    private _recordFailure;
+    private _recordSuccess;
+    initialize(): Promise<void>;
+    getCurrentUser(): Promise<AuthUser | null>;
+    /**
+     * Handle authenticated state change
+     * Updates store with user, subscription, and profile.
+     */
+    private handleAuthStateChange;
+    signInWithEmailAndPassword(email: string, password: string): Promise<AuthUser>;
+    createUserWithEmailAndPassword(email: string, password: string): Promise<AuthUser>;
+    signOut(): Promise<void>;
+    sendPasswordResetEmail(email: string): Promise<void>;
+    updateUserProfile(updates: Partial<AuthUser>): Promise<void>;
+    getAccessToken(): Promise<string | null>;
+    refreshToken(): Promise<string | null>;
+    onAuthStateChanged(callback: (user: AuthUser | null) => void): UnsubscribeFn;
+    hasRole(role: UserRole): Promise<boolean>;
+    hasFeature(featureId: string): Promise<boolean>;
+    hasTier(requiredTier: string): Promise<boolean>;
+    signInWithEmail(email: string, password: string): Promise<AuthResult | null>;
+    createUserWithEmail(email: string, password: string): Promise<AuthResult | null>;
+    signInWithPartner(partnerId: AuthPartnerId, _method?: AuthMethod): Promise<AuthResult | null>;
+    linkWithPartner(partnerId: AuthPartnerId, _method?: AuthMethod): Promise<AuthResult | null>;
+    signInWithGoogleCredential(_credential: string): Promise<AuthResult | null>;
+    updatePassword(newPassword: string): Promise<void>;
+    sendEmailVerification(): Promise<void>;
+    sendSignInLinkToEmail(email: string, actionCodeSettings?: {
+        url: string;
+        handleCodeInApp: boolean;
+    }): Promise<void>;
+    signInWithEmailLink(_email: string, emailLink?: string): Promise<AuthResult | null>;
+    isSignInWithEmailLink(emailLink?: string): boolean;
+    getEmailVerificationStatus(): Promise<{
+        status: string;
+    }>;
+    isEmailVerificationEnabled(): Promise<boolean>;
+    reauthenticateWithPassword(password: string): Promise<void>;
+    reauthenticateWithProvider(partnerId: AuthPartnerId, _method?: AuthMethod): Promise<void>;
+    /**
+     * Delete current user account. Delegates to callable provider (Edge Function) when configured,
+     * otherwise throws with an actionable error message.
+     */
+    deleteAccount(_password?: string): Promise<void>;
+}
+//# sourceMappingURL=auth.d.ts.map

package/dist/client/auth.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/client/auth.ts"],"names":[],"mappings":"AAsBA,OAAO,KAAK,EACV,YAAY,EACZ,QAAQ,EACR,UAAU,EACV,aAAa,EACb,UAAU,EACV,aAAa,EACb,QAAQ,EACR,SAAS,EACT,WAAW,EAGX,eAAe,EAEhB,MAAM,gBAAgB,CAAC;AAGxB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AA6C5D;;;;;GAKG;AACH,qBAAa,YAAa,YAAW,YAAY;IAanC,OAAO,CAAC,QAAQ,CAAC,MAAM;IAZnC,OAAO,CAAC,KAAK,CAA0C;IACvD,OAAO,CAAC,WAAW,CAAS;IAC5B,6DAA6D;IAC7D,OAAO,CAAC,QAAQ,CAAgC;IAChD;;;;;OAKG;IACH,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAuB;gBAE3B,MAAM,EAAE,cAAc;IAEnD;;;OAGG;IACH,QAAQ,CAAC,KAAK,EAAE,SAAS,GAAG,WAAW,GAAG,IAAI;IAI9C;;;;;;OAMG;IACH,WAAW,CAAC,QAAQ,EAAE,eAAe,GAAG,IAAI;IAI5C;;;;OAIG;IACH,OAAO,KAAK,UAAU,GAErB;IAED;;;;OAIG;IACH,OAAO,CAAC,aAAa;IAarB,OAAO,CAAC,cAAc;IAatB,OAAO,CAAC,cAAc;IAIhB,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAwB3B,cAAc,IAAI,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAOhD;;;OAGG;YACW,qBAAqB;IAgC7B,0BAA0B,CAC9B,KAAK,EAAE,MAAM,EACb,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,QAAQ,CAAC;IA8Bd,8BAA8B,CAClC,KAAK,EAAE,MAAM,EACb,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,QAAQ,CAAC;IA6Bd,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAexB,sBAAsB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAgBpD,iBAAiB,CAAC,OAAO,EAAE,OAAO,CAAC,QAAQ,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAqB5D,cAAc,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAQxC,YAAY,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAM5C,kBAAkB,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,QAAQ,GAAG,IAAI,KAAK,IAAI,GAAG,aAAa;IAyBtE,OAAO,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC;IAOzC,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAO/C,OAAO,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAO/C,eAAe,CACnB,KAAK,EAAE,MAAM,EACb,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAKvB,mBAAmB,CACvB,KAAK,EAAE,MAAM,EACb,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAMvB,iBAAiB,CACrB,SAAS,EAAE,aAAa,EACxB,OAAO,CAAC,EAAE,UAAU,GACnB,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAuFvB,eAAe,CACnB,SAAS,EAAE,aAAa,EACxB,OAAO,CAAC,EAAE,UAAU,GACnB,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAgBvB,0BAA0B,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAI3E,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAUlD,qBAAqB,IAAI,OAAO,CAAC,IAAI,CAAC;IAYtC,qBAAqB,CACzB,KAAK,EAAE,MAAM,EACb,kBAAkB,CAAC,EAAE;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,eAAe,EAAE,OAAO,CAAA;KAAE,GAC7D,OAAO,CAAC,IAAI,CAAC;IAgBV,mBAAmB,CACvB,MAAM,EAAE,MAAM,EACd,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAoC7B,qBAAqB,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,OAAO;IAqB5C,0BAA0B,IAAI,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC;IAOzD,0BAA0B,IAAI,OAAO,CAAC,OAAO,CAAC;IAI9C,0BAA0B,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAmB3D,0BAA0B,CAC9B,SAAS,EAAE,aAAa,EACxB,OAAO,CAAC,EAAE,UAAU,GACnB,OAAO,CAAC,IAAI,CAAC;IAgBhB;;;OAGG;IACG,aAAa,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAsBvD"}

package/dist/client/auth.js ADDED Viewed

@@ -0,0 +1 @@

+ import{isClient as E,redirectToExternalUrl as P,hasProvider as U,getProvider as k,createDefaultUserProfile as W,SUBSCRIPTION_TIERS as I,hasRoleAccess as v,wrapAuthError as s,DoNotDevError as n}from"@donotdev/core";import{AuthHardening as R}from"@donotdev/core";function o(c){const t=c.user_metadata??{},e=c.app_metadata??{};return{id:c.id,email:c.email??void 0,displayName:t.full_name??t.name??void 0,photoURL:t.avatar_url??void 0,emailVerified:!!c.email_confirmed_at,role:e.role??"guest",customClaims:{...t,...e}}}const y={google:"google",github:"github",facebook:"facebook",apple:"apple",discord:"discord",slack:"slack",microsoft:"microsoft",spotify:"spotify",twitch:"twitch",twitter:"twitter",x:"twitter",linkedin:"linkedin",notion:"notion",medium:"medium",reddit:"reddit",yahoo:"yahoo",youtube:"youtube"};class N{client;store=null;initialized=!1;security=null;defaultHardening=new R;constructor(t){this.client=t}setStore(t){this.store=t}setSecurity(t){this.security=t}get _hardening(){return this.security?.authHardening??this.defaultHardening}_checkLockout(t){try{this._hardening.checkLockout(t)}catch(e){throw s(e instanceof Error?e:new Error(String(e)),"SupabaseAuth","signInWithEmailAndPassword",{email:t})}}_recordFailure(t){this._hardening.recordFailure(t);try{this._hardening.checkLockout(t)}catch{this.security?.audit({type:"auth.locked"})}this.security?.audit({type:"auth.login.failure"})}_recordSuccess(t){this._hardening.recordSuccess(t)}async initialize(){if(!this.initialized)try{const{data:t}=await this.client.auth.getSession();t.session?.user?await this.handleAuthStateChange(t.session.user):this.store?.setUnauthenticated(),this.initialized=!0}catch{this.store?.setUnauthenticated()}}async getCurrentUser(){const{data:{user:t}}=await this.client.auth.getUser();return t?o(t):null}async handleAuthStateChange(t){if(!this.store)return;const e=o(t),r={userId:e.id,tier:e.customClaims?.tier||I.FREE,status:"active",isActive:!0,features:[],subscriptionId:null,customerId:e.id,subscriptionEnd:null,cancelAtPeriodEnd:!1,updatedAt:new Date().toISOString()},a={...W(e.id),email:e.email??void 0,displayName:e.displayName??void 0,photoURL:e.photoURL??void 0,role:e.role};this.store.setAuthenticated(e,r,a)}async signInWithEmailAndPassword(t,e){this._checkLockout(t);try{const{data:{user:r},error:a}=await this.client.auth.signInWithPassword({email:t,password:e});if(a)throw this._recordFailure(t),s(a,"SupabaseAuth","signInWithEmailAndPassword",{email:t});if(!r)throw this._recordFailure(t),s(new Error("Sign in failed"),"SupabaseAuth","signInWithEmailAndPassword",{email:t});return this._recordSuccess(t),this.security?.audit({type:"auth.login.success",userId:r.id}),o(r)}catch(r){throw r instanceof n?r:s(r,"SupabaseAuth","signInWithEmailAndPassword",{email:t})}}async createUserWithEmailAndPassword(t,e){try{const{data:{user:r},error:a}=await this.client.auth.signUp({email:t,password:e});if(a)throw s(a,"SupabaseAuth","createUserWithEmailAndPassword",{email:t});if(!r)throw s(new Error("Sign up failed"),"SupabaseAuth","createUserWithEmailAndPassword",{email:t});if(Array.isArray(r.identities)&&r.identities.length===0)throw s(new Error("An account with this email already exists"),"SupabaseAuth","createUserWithEmailAndPassword",{email:t});return o(r)}catch(r){throw r instanceof n?r:s(r,"SupabaseAuth","createUserWithEmailAndPassword",{email:t})}}async signOut(){let t;try{const{data:{user:e}}=await this.client.auth.getUser();t=e?.id}catch{}await this.client.auth.signOut(),this.store?.setUnauthenticated(),this.security?.audit({type:"auth.logout",userId:t})}async sendPasswordResetEmail(t){this.security&&await this.security.checkRateLimit(`password_reset:${t}`,"write");try{const{error:e}=await this.client.auth.resetPasswordForEmail(t);if(e)throw s(e,"SupabaseAuth","sendPasswordResetEmail",{email:t});this.security?.audit({type:"auth.password.reset"})}catch(e){throw e instanceof n?e:s(e,"SupabaseAuth","sendPasswordResetEmail",{email:t})}}async updateUserProfile(t){try{const{data:{user:e}}=await this.client.auth.getUser();if(!e)throw s(new Error("No current user"),"SupabaseAuth","updateUserProfile");const r=e.user_metadata??{},a={full_name:t.displayName??r.full_name,name:t.displayName??r.name,avatar_url:t.photoURL??r.avatar_url},{error:i}=await this.client.auth.updateUser({data:a});if(i)throw s(i,"SupabaseAuth","updateUserProfile")}catch(e){throw e instanceof n?e:s(e,"SupabaseAuth","updateUserProfile")}}async getAccessToken(){const{data:{session:t}}=await this.client.auth.getSession();return t?.access_token??null}async refreshToken(){const{data:{session:t},error:e}=await this.client.auth.refreshSession();return e?null:t?.access_token??null}onAuthStateChanged(t){const{data:{subscription:e}}=this.client.auth.onAuthStateChange((r,a)=>{const i=a?.user||null;i?this.handleAuthStateChange(i).then(()=>{t(o(i))}).catch(()=>{t(o(i))}):(this.store?.setUnauthenticated(),t(null))});return()=>e.unsubscribe()}async hasRole(t){const e=await this.getCurrentUser();if(!e)return!1;const r=e.role??"guest";return v(r,t)}async hasFeature(t){const e=await this.getCurrentUser();if(!e?.customClaims)return!1;const r=e.customClaims.features;return Array.isArray(r)&&r.includes(t)}async hasTier(t){const e=await this.getCurrentUser();return e?.customClaims?e.customClaims.tier===t:!1}async signInWithEmail(t,e){return{user:await this.signInWithEmailAndPassword(t,e),success:!0}}async createUserWithEmail(t,e){return{user:await this.createUserWithEmailAndPassword(t,e),success:!0,isNewUser:!0}}async signInWithPartner(t,e){try{const r=y[t]??t;if(E()){const{data:u,error:h}=await this.client.auth.signInWithOAuth({provider:r,options:{skipBrowserRedirect:!0,redirectTo:window.location.origin}});if(h)throw s(h,"SupabaseAuth","signInWithPartner",{partnerId:t});if(u?.url){const f=window.screen.width/2-300,_=window.screen.height/2-700/2,p=window.open(u.url,"supabase-auth-popup",`width=600,height=700,left=${f},top=${_},resizable=yes,scrollbars=yes,status=yes`);if(!p)throw new Error("Popup blocked. Please allow popups for this site.");return new Promise(g=>{let m=null;const A=setInterval(async()=>{if(p.closed){clearInterval(A),m?.unsubscribe();const l=await this.getCurrentUser();g(l?{user:l,success:!0}:null)}},500),{data:{subscription:S}}=this.client.auth.onAuthStateChange((l,b)=>{l==="SIGNED_IN"&&b?.user&&(clearInterval(A),S.unsubscribe(),p.close(),g({user:o(b.user),success:!0}))});m=S})}}const{data:a,error:i}=await this.client.auth.signInWithOAuth({provider:r});if(i)throw s(i,"SupabaseAuth","signInWithPartner",{partnerId:t});return a?.url&&await P(a.url,{validateUrl:!0}),null}catch(r){throw r instanceof n?r:s(r,"SupabaseAuth","signInWithPartner",{partnerId:t})}}async linkWithPartner(t,e){try{const r=y[t]??t,{data:a,error:i}=await this.client.auth.linkIdentity({provider:r});if(i)throw s(i,"SupabaseAuth","linkWithPartner",{partnerId:t});const u=a?.user??(await this.client.auth.getUser()).data?.user;return u?{user:o(u),success:!0}:null}catch(r){throw r instanceof n?r:s(r,"SupabaseAuth","linkWithPartner",{partnerId:t})}}async signInWithGoogleCredential(t){return null}async updatePassword(t){try{const{error:e}=await this.client.auth.updateUser({password:t});if(e)throw s(e,"SupabaseAuth","updatePassword")}catch(e){throw e instanceof n?e:s(e,"SupabaseAuth","updatePassword")}}async sendEmailVerification(){try{const{data:{user:t}}=await this.client.auth.getUser();if(!t?.email)return;const{error:e}=await this.client.auth.resend({type:"signup",email:t.email});if(e)throw s(e,"SupabaseAuth","sendEmailVerification")}catch(t){throw t instanceof n?t:s(t,"SupabaseAuth","sendEmailVerification")}}async sendSignInLinkToEmail(t,e){try{const r=e?.url??(typeof window<"u"?window.location.origin:void 0),{error:a}=await this.client.auth.signInWithOtp({email:t,options:r?{emailRedirectTo:r}:void 0});if(a)throw s(a,"SupabaseAuth","sendSignInLinkToEmail",{email:t})}catch(r){throw r instanceof n?r:s(r,"SupabaseAuth","sendSignInLinkToEmail",{email:t})}}async signInWithEmailLink(t,e){if(!e)return null;try{const r=new URL(e),a=r.searchParams.get("token")||r.searchParams.get("token_hash")||"",i=r.searchParams.get("type")||"magiclink";if(!a){const d=r.hash?.slice(1)||"";if(!d)return null;const{data:{user:w},error:f}=await this.client.auth.verifyOtp({token_hash:d,type:"magiclink"});return f?null:w?{user:o(w),success:!0}:null}const{data:{user:u},error:h}=await this.client.auth.verifyOtp({token_hash:a,type:i});return h?null:u?{user:o(u),success:!0}:null}catch{return null}}isSignInWithEmailLink(t){if(!t)return!1;try{const e=new URL(t);return e.searchParams.has("token")||e.searchParams.has("token_hash")||e.searchParams.get("type")==="magiclink"||e.hash.includes("token_hash=")||e.hash.includes("type=magiclink")}catch{return t.includes("token=")||t.includes("token_hash=")||t.includes("type=magiclink")}}async getEmailVerificationStatus(){const{data:{user:t}}=await this.client.auth.getUser();return{status:t?.email_confirmed_at?"verified":"pending"}}async isEmailVerificationEnabled(){return!0}async reauthenticateWithPassword(t){try{const{data:{user:e}}=await this.client.auth.getUser();if(!e?.email)throw s(new Error("No email"),"SupabaseAuth","reauthenticateWithPassword");this._checkLockout(e.email);const{error:r}=await this.client.auth.signInWithPassword({email:e.email,password:t});if(r)throw this._recordFailure(e.email),s(r,"SupabaseAuth","reauthenticateWithPassword");this._recordSuccess(e.email)}catch(e){throw e instanceof n?e:s(e,"SupabaseAuth","reauthenticateWithPassword")}}async reauthenticateWithProvider(t,e){try{const r=y[t]??t,{data:a,error:i}=await this.client.auth.signInWithOAuth({provider:r});if(i)throw s(i,"SupabaseAuth","reauthenticateWithProvider",{partnerId:t});a?.url&&E()&&await P(a.url,{validateUrl:!0})}catch(r){throw r instanceof n?r:s(r,"SupabaseAuth","reauthenticateWithProvider",{partnerId:t})}}async deleteAccount(t){try{if(U("callable")){await k("callable").call("delete-account",{}),await this.client.auth.signOut();return}const e=new Error("Account deletion requires a server endpoint. Configure a callable provider or deploy a delete-account Edge Function.");throw e.code="DELETE_ACCOUNT_REQUIRES_SERVER",s(e,"SupabaseAuth","deleteAccount")}catch(e){throw e instanceof n?e:s(e,"SupabaseAuth","deleteAccount")}}}export{N as SupabaseAuth};

package/dist/client/callableProvider.d.ts ADDED Viewed

@@ -0,0 +1,62 @@
+/**
+ * @fileoverview Supabase Callable Provider
+ * @description ICallableProvider implementation using Supabase Edge Functions.
+ * Auth token is automatically passed by the Supabase client SDK.
+ *
+ * @version 0.0.1
+ * @since 0.5.0
+ * @author AMBROISE PARK Consulting
+ */
+import type { ICallableProvider } from '@donotdev/core';
+import type { SupabaseClient } from '@supabase/supabase-js';
+/**
+ * Invokes Supabase Edge Functions via the client SDK.
+ * The Supabase client automatically includes the user's auth token.
+ *
+ * CRUD operations (get_*, create_*, update_*, delete_*, list_*, listCard_*) are automatically
+ * routed to a single `crud` Edge Function with `_functionName` in the body for dispatch.
+ *
+ * **Important:** If you have custom Edge Functions whose names start with `get_`, `list_`,
+ * `create_`, `update_`, `delete_`, or `listCard_`, pass `crudCollections` to restrict
+ * auto-routing to only those explicit collection names. Without it, any function matching
+ * the prefix pattern is silently rerouted to the `crud` dispatcher.
+ *
+ * @example
+ * ```typescript
+ * import { configureProviders } from '@donotdev/core';
+ * import { SupabaseCallableProvider } from '@donotdev/supabase';
+ *
+ * // Safe: only 'users' and 'products' collections route through the crud dispatcher
+ * configureProviders({
+ *   callable: new SupabaseCallableProvider(supabaseClient, {
+ *     crudCollections: ['users', 'products'],
+ *   }),
+ * });
+ *
+ * // Without crudCollections: any get_*, list_*, etc. is auto-routed (may conflict with custom functions)
+ * configureProviders({
+ *   callable: new SupabaseCallableProvider(supabaseClient),
+ * });
+ * ```
+ *
+ * @version 0.0.1
+ * @since 0.5.0
+ */
+export declare class SupabaseCallableProvider implements ICallableProvider {
+    private readonly client;
+    private readonly crudFunctionName;
+    private readonly crudCollections;
+    private static readonly CRUD_OP_REGEX;
+    constructor(client: SupabaseClient, options?: {
+        crudFunctionName?: string;
+        /**
+         * Explicit list of collection names that route through crudFunctionName.
+         * When provided, only operations for these exact collections are auto-routed.
+         * When omitted, any function matching the CRUD naming pattern is auto-routed.
+         * Provide this to prevent misrouting of custom functions like get_summary, list_report, etc.
+         */
+        crudCollections?: string[];
+    });
+    call<TReq, TRes>(functionName: string, data: TReq): Promise<TRes>;
+}
+//# sourceMappingURL=callableProvider.d.ts.map

package/dist/client/callableProvider.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"callableProvider.d.ts","sourceRoot":"","sources":["../../src/client/callableProvider.ts"],"names":[],"mappings":"AAEA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,gBAAgB,CAAC;AAExD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAM5D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,qBAAa,wBAAyB,YAAW,iBAAiB;IAO9D,OAAO,CAAC,QAAQ,CAAC,MAAM;IANzB,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAS;IAC1C,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAqB;IAErD,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,aAAa,CAAqD;gBAGvE,MAAM,EAAE,cAAc,EACvC,OAAO,CAAC,EAAE;QACR,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B;;;;;WAKG;QACH,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;KAC5B;IAQG,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAwCxE"}

package/dist/client/callableProvider.js ADDED Viewed

@@ -0,0 +1 @@

+ import{wrapCrudError as l,DoNotDevError as u}from"@donotdev/core";class n{client;crudFunctionName;crudCollections;static CRUD_OP_REGEX=/^(get|create|update|delete|list|listCard)_(.+)$/;constructor(t,c){this.client=t,this.crudFunctionName=c?.crudFunctionName??"crud",this.crudCollections=c?.crudCollections?new Set(c.crudCollections):null}async call(t,c){try{const r=n.CRUD_OP_REGEX.exec(t),e=r!==null&&(this.crudCollections===null||this.crudCollections.has(r[2])),i=e?this.crudFunctionName:t,s=e?{_functionName:t,...c}:c,{data:a,error:o}=await this.client.functions.invoke(i,{body:s});if(o)throw l(o instanceof Error?o:new Error(String(o)),"SupabaseCallableProvider","call",t);return a}catch(r){throw r instanceof u?r:l(r instanceof Error?r:new Error(String(r)),"SupabaseCallableProvider","call",t)}}}export{n as SupabaseCallableProvider};

package/dist/client/crudAdapter.d.ts ADDED Viewed

@@ -0,0 +1,94 @@
+/**
+ * @fileoverview Supabase CRUD Adapter
+ * @description ICrudAdapter implementation using Supabase PostgREST. Collection name = table name.
+ *
+ * **Caching contract:**
+ * This adapter is unaware of caching — CrudService owns TanStack Query entirely.
+ * The adapter only fetches/writes; CrudService updates GET + list caches after every mutation
+ * so the UI never refetches. Default staleTime is Infinity.
+ *
+ * **Audit fields (`createdById` / `updatedById`):**
+ * `add()` injects these from the active Supabase session (stored as created_by_id/updated_by_id in DB).
+ * The adapter's field mapper converts app ↔ backend names at the boundary only.
+ *
+ * **Field mapping (single boundary):**
+ * By default (`fieldMapping: 'camelToSnake'`), app field names (camelCase) are converted to/from
+ * backend column names (snake_case). Set `fieldMapping: 'identity'` if your entity uses snake_case
+ * and DB columns match. No normalization outside this adapter.
+ *
+ * **Cursor pagination:**
+ * `QueryOptions.startAfter` must be the value of the first `orderBy` field from the last row
+ * of the previous page — i.e. pass `lastVisible` returned by `query()` directly as `startAfter`.
+ *
+ * **Multi-tenant subscriptions:**
+ * `subscribeToCollection()` translates equality `where` clauses (e.g. scope filters) into
+ * Supabase channel-level filters so only relevant tenant rows trigger the callback.
+ * Each unique filter set gets its own named channel to prevent cross-tenant notifications.
+ * Rapid table changes are debounced (100 ms) so bursts of writes coalesce into one re-fetch.
+ *
+ * @version 0.0.3
+ * @since 0.0.1
+ * @author AMBROISE PARK Consulting
+ */
+import type { ICrudAdapter, QueryOptions, PaginatedQueryResult, DocumentSubscriptionCallback, CollectionSubscriptionCallback, dndevSchema } from '@donotdev/core';
+import type { SupabaseClient } from '@supabase/supabase-js';
+import type { FieldMappingMode } from '../fieldMapper';
+export declare class SupabaseCrudAdapter implements ICrudAdapter {
+    private readonly client;
+    private readonly idColumn;
+    /**
+     * Supabase enforces field-level and row-level security at the Postgres layer via RLS
+     * and column-level grants. The framework visibility gate is not needed here.
+     *
+     * **Required:** RLS must be enabled on every table this adapter accesses.
+     * Without RLS, authenticated users can read all rows and columns.
+     *
+     * ```sql
+     * ALTER TABLE your_table ENABLE ROW LEVEL SECURITY;
+     * -- Row-level: users see only their own rows
+     * CREATE POLICY "read_own" ON your_table FOR SELECT USING (auth.uid() = user_id);
+     * -- Field-level: restrict columns per role
+     * REVOKE SELECT ON your_table FROM anon;
+     * GRANT SELECT (id, public_col) ON your_table TO anon;
+     * GRANT SELECT ON your_table TO authenticated;
+     * ```
+     */
+    readonly dbLevelSecurity = true;
+    private readonly mapper;
+    private _roleCache;
+    private readonly _unsubscribeAuthState;
+    constructor(client: SupabaseClient, idColumn?: string, options?: {
+        normalizeColumns?: boolean;
+        fieldMapping?: FieldMappingMode;
+    });
+    /**
+     * Invalidate the role cache immediately.
+     * Call this when you know the session has changed (e.g., after sign-out) and cannot
+     * wait for the auth state listener to fire.
+     */
+    invalidateRoleCache(): void;
+    /**
+     * Remove the auth state listener. Call when the adapter is no longer needed
+     * to prevent memory leaks in long-running server processes.
+     */
+    dispose(): void;
+    private normalize;
+    /**
+     * Resolve the current user's role from the Supabase JWT app_metadata.
+     * Result is cached for 30 seconds to avoid a getSession() call on every read/query.
+     * Falls back to 'guest' when no session exists.
+     */
+    private getUserRole;
+    get<T>(collection: string, id: string, schema?: dndevSchema<unknown>): Promise<T | null>;
+    add<T>(collection: string, data: T, schema?: dndevSchema<T>): Promise<{
+        id: string;
+        data: Record<string, unknown>;
+    }>;
+    set<T>(collection: string, id: string, data: T, schema?: dndevSchema<T>): Promise<void>;
+    update<T>(collection: string, id: string, data: Partial<T>): Promise<void>;
+    delete(collection: string, id: string): Promise<void>;
+    query<T>(collection: string, options: QueryOptions, schema?: dndevSchema<unknown>, _schemaType?: 'list' | 'listCard'): Promise<PaginatedQueryResult<T>>;
+    subscribe?<T>(collection: string, id: string, callback: DocumentSubscriptionCallback<T>, schema?: dndevSchema<unknown>): () => void;
+    subscribeToCollection?<T>(collection: string, options: QueryOptions, callback: CollectionSubscriptionCallback<T>, schema?: dndevSchema<unknown>): () => void;
+}
+//# sourceMappingURL=crudAdapter.d.ts.map

package/dist/client/crudAdapter.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"crudAdapter.d.ts","sourceRoot":"","sources":["../../src/client/crudAdapter.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AAEH,OAAO,KAAK,EACV,YAAY,EACZ,YAAY,EAEZ,oBAAoB,EACpB,4BAA4B,EAC5B,8BAA8B,EAE9B,WAAW,EACZ,MAAM,gBAAgB,CAAC;AAUxB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAG5D,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AA0HvD,qBAAa,mBAAoB,YAAW,YAAY;IAwBpD,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,QAAQ;IAxB3B;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,eAAe,QAAQ;IAChC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAuC;IAC9D,OAAO,CAAC,UAAU,CAA0B;IAC5C,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAAa;gBAGhC,MAAM,EAAE,cAAc,EACtB,QAAQ,GAAE,MAA0B,EACrD,OAAO,CAAC,EAAE;QAAE,gBAAgB,CAAC,EAAE,OAAO,CAAC;QAAC,YAAY,CAAC,EAAE,gBAAgB,CAAA;KAAE;IAe3E;;;;OAIG;IACH,mBAAmB,IAAI,IAAI;IAI3B;;;OAGG;IACH,OAAO,IAAI,IAAI;IAIf,OAAO,CAAC,SAAS;IAIjB;;;;OAIG;YACW,WAAW;IAsBnB,GAAG,CAAC,CAAC,EACT,UAAU,EAAE,MAAM,EAClB,EAAE,EAAE,MAAM,EACV,MAAM,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,GAC5B,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC;IA2Bd,GAAG,CAAC,CAAC,EACT,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,CAAC,EACP,MAAM,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,GACtB,OAAO,CAAC;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,CAAC;IAgDnD,GAAG,CAAC,CAAC,EACT,UAAU,EAAE,MAAM,EAClB,EAAE,EAAE,MAAM,EACV,IAAI,EAAE,CAAC,EACP,MAAM,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,GACtB,OAAO,CAAC,IAAI,CAAC;IAuCV,MAAM,CAAC,CAAC,EACZ,UAAU,EAAE,MAAM,EAClB,EAAE,EAAE,MAAM,EACV,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,GACf,OAAO,CAAC,IAAI,CAAC;IAqCV,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAiCrD,KAAK,CAAC,CAAC,EACX,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,YAAY,EACrB,MAAM,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,EAC7B,WAAW,CAAC,EAAE,MAAM,GAAG,UAAU,GAChC,OAAO,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC;IAqFnC,SAAS,CAAC,CAAC,CAAC,EACV,UAAU,EAAE,MAAM,EAClB,EAAE,EAAE,MAAM,EACV,QAAQ,EAAE,4BAA4B,CAAC,CAAC,CAAC,EACzC,MAAM,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,GAC5B,MAAM,IAAI;IA6Db,qBAAqB,CAAC,CAAC,CAAC,EACtB,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,YAAY,EACrB,QAAQ,EAAE,8BAA8B,CAAC,CAAC,CAAC,EAC3C,MAAM,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,GAC5B,MAAM,IAAI;CAkFd"}

package/dist/client/crudAdapter.js ADDED Viewed

@@ -0,0 +1 @@

+ import{wrapCrudError as c,validateWithSchema as v,DoNotDevError as D,CRUD_OPERATORS as f,ERROR_CODES as U,filterVisibleFields as b}from"@donotdev/core";import{createFieldMapper as q}from"../fieldMapper";const L="id";function R(u){const{createdAt:t,updatedAt:r,created_at:s,updated_at:a,...e}=u;return e}function $(u){if(/[.(),]/.test(u))throw new Error("[crudAdapter] Invalid filter value: contains PostgREST operator characters");return u}function A(u,t){return typeof u=="string"?u:String(u)}function x(u,t,r){const{field:s,operator:a,value:e}=t,n=r(A(s,"where"));switch(a){case f.EQ:return u.eq(n,e);case f.NEQ:return u.neq(n,e);case f.LT:return u.lt(n,e);case f.LTE:return u.lte(n,e);case f.GT:return u.gt(n,e);case f.GTE:return u.gte(n,e);case f.IN:return u.in(n,Array.isArray(e)?e:[e]);case f.NOT_IN:return u.not(n,"in",Array.isArray(e)?e:[e]);case f.ARRAY_CONTAINS:return u.contains(n,e);case f.ARRAY_CONTAINS_ANY:if(!Array.isArray(e)||e.length===0)throw new D("SupabaseCrudAdapter: ARRAY_CONTAINS_ANY requires a non-empty array",U.INVALID_ARGUMENT,{context:{operator:a,field:s}});return u.overlaps(n,e);default:throw new D(`SupabaseCrudAdapter: unsupported operator "${a}"`,U.INVALID_ARGUMENT,{context:{operator:a,field:s}})}}class P{client;idColumn;dbLevelSecurity=!0;mapper;_roleCache=null;_unsubscribeAuthState;constructor(t,r=L,s){this.client=t,this.idColumn=r;const a=s?.fieldMapping??(s?.normalizeColumns===!1?"identity":"camelToSnake");this.mapper=q(a);const{data:{subscription:e}}=this.client.auth.onAuthStateChange(()=>{this._roleCache=null});this._unsubscribeAuthState=()=>e.unsubscribe()}invalidateRoleCache(){this._roleCache=null}dispose(){this._unsubscribeAuthState()}normalize(t){return this.mapper.fromBackendRow(t)}async getUserRole(){const t=Date.now();if(this._roleCache&&t<this._roleCache.expiresAt)return this._roleCache.role;try{const{data:r}=await this.client.auth.getSession(),s=r?.session?.user?.app_metadata;let a="guest";return s&&(s.role==="super"||s.isSuper===!0?a="super":s.role==="admin"||s.isAdmin===!0?a="admin":s.role==="user"?a="user":a=s.role||"guest"),this._roleCache={role:a,expiresAt:t+3e4},a}catch{return"guest"}}async get(t,r,s){const{data:a,error:e}=await this.client.from(t).select("*").eq(this.idColumn,r).maybeSingle();if(e){if(e.code==="PGRST116"||e.message?.includes("No rows"))return null;throw c(e,"SupabaseCrudAdapter","get",t,r)}if(!a)return null;const n=a,o=String(n[this.idColumn]??r),h={...n,id:o},d=this.normalize(h);if(s){const p=await this.getUserRole();return{...b(d,s,p),id:o}}return{...d,id:o}}async add(t,r,s){const a=s?v(s,r,"SupabaseCrudAdapter.add"):r,e=R(a);let n;try{const{data:i}=await this.client.auth.getSession();n=i?.session?.user?.id}catch(i){throw c(i instanceof Error?i:new Error(String(i)),"SupabaseCrudAdapter","add",t)}if(!n)throw c(new Error("Authentication required for this operation"),"SupabaseCrudAdapter","add",t);const o={...e,createdById:n,updatedById:n},h=this.mapper.toBackendKeys(o),{data:d,error:p}=await this.client.from(t).insert(h).select().single();if(p)throw c(p,"SupabaseCrudAdapter","add",t);if(!d)throw c(new Error("Insert returned no data"),"SupabaseCrudAdapter","add",t);const l=String(d[this.idColumn]??""),C=this.normalize({...d,id:l});return{id:l,data:C}}async set(t,r,s,a){const e=a?v(a,s,"SupabaseCrudAdapter.set"):s;let n;try{const{data:d}=await this.client.auth.getSession();n=d?.session?.user?.id}catch(d){throw c(d instanceof Error?d:new Error(String(d)),"SupabaseCrudAdapter","set",t,r)}if(!n)throw c(new Error("Authentication required for this operation"),"SupabaseCrudAdapter","set",t,r);const o=R({...e,[this.idColumn]:r,updatedById:n}),{error:h}=await this.client.from(t).upsert(this.mapper.toBackendKeys(o),{onConflict:this.idColumn});if(h)throw c(h,"SupabaseCrudAdapter","set",t,r)}async update(t,r,s){let a;try{const{data:o}=await this.client.auth.getSession();a=o?.session?.user?.id}catch(o){throw c(o instanceof Error?o:new Error(String(o)),"SupabaseCrudAdapter","update",t,r)}if(!a)throw c(new Error("Authentication required for this operation"),"SupabaseCrudAdapter","update",t,r);const e=R({...s,updatedById:a}),{error:n}=await this.client.from(t).update(this.mapper.toBackendKeys(e)).eq(this.idColumn,r);if(n)throw c(n,"SupabaseCrudAdapter","update",t,r)}async delete(t,r){let s;try{const{data:e}=await this.client.auth.getSession();s=e?.session?.user?.id}catch(e){throw c(e instanceof Error?e:new Error(String(e)),"SupabaseCrudAdapter","delete",t,r)}if(!s)throw c(new Error("Authentication required for this operation"),"SupabaseCrudAdapter","delete",t,r);const{error:a}=await this.client.from(t).delete().eq(this.idColumn,r);if(a)throw c(a,"SupabaseCrudAdapter","delete",t,r)}async query(t,r,s,a){let e=this.client.from(t).select("*",{count:"exact"});const n=m=>this.mapper.toBackendField(m);if(r.where)for(const m of r.where)e=x(e,m,n);const o=r.orderBy?.[0],h=A(o?.field??this.idColumn,"orderBy"),d=n(h),p=o?.direction??"asc";if(r.orderBy&&r.orderBy.length>0)for(const m of r.orderBy){const S=n(A(m.field,"orderBy"));e=e.order(S,{ascending:(m.direction??"asc")==="asc"})}else e=e.order(this.idColumn,{ascending:!0});const l=r.limit??50,C=r.startAfter??null;C&&(p==="asc"?e=e.gt(d,C):e=e.lt(d,C)),e=e.limit(l+1);const i=await e,{data:y,error:w,count:F}=i;if(w)throw c(w instanceof Error?w:new Error(w.message||String(w)),"SupabaseCrudAdapter","query",t);const E=y??[],I=E.length>l,_=I?E.slice(0,l):E,g=_[_.length-1],O=g!=null?String(g[d]??g[this.idColumn]??g.id??""):null,T=s?await this.getUserRole():null,N=[];for(const m of _){const S=String(m[this.idColumn]??m.id??""),z={...m,id:S},B=this.normalize(z),M=s&&T?b(B,s,T):B;N.push({...M,id:S})}return{items:N,total:F??void 0,hasMore:I,lastVisible:O}}subscribe(t,r,s,a){const e=this.client.channel(`doc:${encodeURIComponent(t)}:${encodeURIComponent(r)}`);return e.on("postgres_changes",{event:"*",schema:"public",table:t,filter:`${this.idColumn}=eq.${$(r)}`},n=>{const o=n.new;if(!o){s(null);return}const h={...o,id:o[this.idColumn]??r},d=this.normalize(h);a?this.getUserRole().then(p=>{const l=b(d,a,p);s({...l,id:r})},()=>{const p=b(d,a,"guest");s({...p,id:r})}):s({...d,id:r})}).subscribe(n=>{(n==="CHANNEL_ERROR"||n==="TIMED_OUT")&&s(null,c(new Error(`Subscription error: ${n}`),"SupabaseCrudAdapter","subscribe",t,r))}),()=>{this.client.removeChannel(e)}}subscribeToCollection(t,r,s,a){const e=(r.where??[]).filter(i=>i.operator===f.EQ&&i.value!=null),n=i=>this.mapper.toBackendField(i),o=e.length>0?e.map(i=>`${n(A(i.field,"subscribeToCollection.where"))}=eq.${$(String(i.value))}`).join("&"):void 0,h=e.length>0?e.map(i=>`${n(A(i.field,"subscribeToCollection.where"))}=eq.${encodeURIComponent(String(i.value))}`).join("&"):void 0,d=h?`col:${encodeURIComponent(t)}:${h}`:`col:${encodeURIComponent(t)}`,p=this.client.channel(d);let l=null;const C=()=>{l&&clearTimeout(l),l=setTimeout(()=>{this.query(t,r,a).then(i=>s(i.items),i=>{const y=i instanceof Error?i:new Error(String(i));s([],c(y,"SupabaseCrudAdapter","subscribeToCollection",t))})},100)};return p.on("postgres_changes",{event:"*",schema:"public",table:t,...o?{filter:o}:{}},C).subscribe(i=>{(i==="CHANNEL_ERROR"||i==="TIMED_OUT")&&s([],c(new Error(`Subscription error: ${i}`),"SupabaseCrudAdapter","subscribeToCollection",t))}),()=>{l&&clearTimeout(l),this.client.removeChannel(p)}}}export{P as SupabaseCrudAdapter};

package/dist/client/index.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+/**
+ * @fileoverview Supabase client exports
+ * @description CRUD adapter, storage adapter, and auth provider for browser use.
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ * @author AMBROISE PARK Consulting
+ */
+export { SupabaseCallableProvider } from './callableProvider';
+export { SupabaseCrudAdapter } from './crudAdapter';
+export { SupabaseStorageAdapter } from './storageAdapter';
+export { SupabaseAuth } from './auth';
+//# sourceMappingURL=index.d.ts.map

package/dist/client/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/client/index.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AAEH,OAAO,EAAE,wBAAwB,EAAE,MAAM,oBAAoB,CAAC;AAC9D,OAAO,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,sBAAsB,EAAE,MAAM,kBAAkB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC"}

package/dist/client/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{SupabaseCallableProvider as e}from"./callableProvider";import{SupabaseCrudAdapter as p}from"./crudAdapter";import{SupabaseStorageAdapter as u}from"./storageAdapter";import{SupabaseAuth as S}from"./auth";export{S as SupabaseAuth,e as SupabaseCallableProvider,p as SupabaseCrudAdapter,u as SupabaseStorageAdapter};

package/dist/client/storageAdapter.d.ts ADDED Viewed

@@ -0,0 +1,26 @@
+/**
+ * @fileoverview Supabase Storage Adapter
+ * @description IStorageAdapter implementation using Supabase Storage.
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ * @author AMBROISE PARK Consulting
+ */
+import type { IStorageAdapter, UploadOptions, UploadResult } from '@donotdev/core';
+import type { SupabaseClient } from '@supabase/supabase-js';
+/**
+ * Supabase Storage adapter implementing IStorageAdapter.
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ */
+export declare class SupabaseStorageAdapter implements IStorageAdapter {
+    private readonly client;
+    private readonly bucket;
+    constructor(client: SupabaseClient, bucket?: string);
+    upload(file: File | Blob, options?: UploadOptions): Promise<UploadResult>;
+    delete(urlOrPath: string): Promise<void>;
+    getUrl(path: string): Promise<string>;
+    private pathFromUrl;
+}
+//# sourceMappingURL=storageAdapter.d.ts.map

package/dist/client/storageAdapter.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"storageAdapter.d.ts","sourceRoot":"","sources":["../../src/client/storageAdapter.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AAEH,OAAO,KAAK,EACV,eAAe,EACf,aAAa,EACb,YAAY,EACb,MAAM,gBAAgB,CAAC;AAExB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAI5D;;;;;GAKG;AACH,qBAAa,sBAAuB,YAAW,eAAe;IAE1D,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,MAAM;gBADN,MAAM,EAAE,cAAc,EACtB,MAAM,GAAE,MAAuB;IAG5C,MAAM,CACV,IAAI,EAAE,IAAI,GAAG,IAAI,EACjB,OAAO,CAAC,EAAE,aAAa,GACtB,OAAO,CAAC,YAAY,CAAC;IAiClB,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAYxC,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAO3C,OAAO,CAAC,WAAW;CA8BpB"}

package/dist/client/storageAdapter.js ADDED Viewed

@@ -0,0 +1 @@

+ import{wrapStorageError as r}from"@donotdev/core";const i="uploads";class d{client;bucket;constructor(e,t=i){this.client=e,this.bucket=t}async upload(e,t){try{t?.onProgress?.(0);const a=t?.storagePath??"",h=e instanceof File&&e.name?.includes(".")?e.name.slice(e.name.lastIndexOf(".")):"",s=t?.filename??`${Date.now()}-${Math.random().toString(36).slice(2,10)}${h}`,o=a?`${a}/${s}`:s,{data:n,error:c}=await this.client.storage.from(this.bucket).upload(o,e,{upsert:!0});if(c)throw r(c,"SupabaseStorageAdapter","upload",o);if(!n)throw r(new Error("Upload returned no data"),"SupabaseStorageAdapter","upload",o);t?.onProgress?.(100);const{data:{publicUrl:p}}=this.client.storage.from(this.bucket).getPublicUrl(n.path);return{url:p,path:n.path}}catch(a){throw r(a,"SupabaseStorageAdapter","upload",t?.storagePath||"")}}async delete(e){try{const t=e.startsWith("http")?this.pathFromUrl(e):e,{error:a}=await this.client.storage.from(this.bucket).remove([t]);if(a)throw r(a,"SupabaseStorageAdapter","delete",t)}catch(t){throw r(t,"SupabaseStorageAdapter","delete",e)}}async getUrl(e){const{data:{publicUrl:t}}=this.client.storage.from(this.bucket).getPublicUrl(e);return t}pathFromUrl(e){try{const t=new URL(e);let a=t.pathname.match(/\/storage\/v1\/object\/public\/[^/]+\/(.+)/);return a&&a[1]!=null||(a=t.pathname.match(/\/storage\/v1\/object\/sign\/[^/]+\/(.+)/),a&&a[1]!=null)?decodeURIComponent(a[1]):t.pathname&&t.pathname.length>1&&!t.pathname.startsWith("/api/")?decodeURIComponent(t.pathname.slice(1)):e}catch{return e}}}export{d as SupabaseStorageAdapter};

package/dist/fieldMapper.d.ts ADDED Viewed

@@ -0,0 +1,27 @@
+/**
+ * @fileoverview Supabase field name mapper — single boundary for app ↔ backend (Postgres) names.
+ * @description Entity field names (app) are translated to/from backend column names here only.
+ * Used by SupabaseCrudAdapter (client) and Supabase Edge Function CRUD handlers.
+ *
+ * Default: camelCase (app) ↔ snake_case (backend). Option: identity for entities using snake_case.
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ */
+export type FieldMappingMode = 'camelToSnake' | 'identity';
+export interface SupabaseFieldMapper {
+    /** App field name → backend column name */
+    toBackendField(appFieldName: string): string;
+    /** App-shaped object → backend-shaped object (all keys mapped) */
+    toBackendKeys(obj: Record<string, unknown>): Record<string, unknown>;
+    /** Backend row → app-shaped object (keys mapped, timestamps to ISO) */
+    fromBackendRow(row: Record<string, unknown>): Record<string, unknown>;
+}
+/**
+ * Create the single boundary mapper for Supabase/Postgres.
+ * @param fieldMapping - 'camelToSnake' (default) or 'identity' when entity uses snake_case
+ */
+export declare function createFieldMapper(fieldMapping?: FieldMappingMode): SupabaseFieldMapper;
+/** Default mapper (camelToSnake) for use when no adapter option is set */
+export declare const defaultFieldMapper: SupabaseFieldMapper;
+//# sourceMappingURL=fieldMapper.d.ts.map

package/dist/fieldMapper.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"fieldMapper.d.ts","sourceRoot":"","sources":["../src/fieldMapper.ts"],"names":[],"mappings":"AAEA;;;;;;;;;GASG;AAEH,MAAM,MAAM,gBAAgB,GAAG,cAAc,GAAG,UAAU,CAAC;AA0B3D,MAAM,WAAW,mBAAmB;IAClC,2CAA2C;IAC3C,cAAc,CAAC,YAAY,EAAE,MAAM,GAAG,MAAM,CAAC;IAC7C,kEAAkE;IAClE,aAAa,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrE,uEAAuE;IACvE,cAAc,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACvE;AAED;;;GAGG;AACH,wBAAgB,iBAAiB,CAC/B,YAAY,GAAE,gBAAiC,GAC9C,mBAAmB,CA8BrB;AAED,0EAA0E;AAC1E,eAAO,MAAM,kBAAkB,qBAAoC,CAAC"}

package/dist/fieldMapper.js ADDED Viewed

@@ -0,0 +1 @@

+ function s(e){return typeof e!="string"?String(e):e.replace(/[A-Z]/g,i=>`_${i.toLowerCase()}`)}function a(e){return typeof e!="string"?String(e):e.replace(/_([a-z])/g,(i,c)=>c.toUpperCase())}const f=new Set(["createdAt","updatedAt"]);function u(e){if(e instanceof Date)return e.toISOString();if(typeof e=="string"){if(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}/.test(e))return e;if(/^\d{4}-\d{2}-\d{2} \d{2}:\d{2}:\d{2}/.test(e))return new Date(e.replace(" ","T")).toISOString()}return e}function y(e="camelToSnake"){return{toBackendField:t=>{if(typeof t!="string")throw new TypeError(`Supabase field mapper: field name must be a string (e.g. "createdById"), got ${typeof t}. Check where query options (orderBy/where) are built \u2014 ensure "field" is the field name string, not a schema or other value.`);return e==="identity"?t:s(t)},toBackendKeys:t=>{if(e==="identity")return t;const n={};for(const[r,o]of Object.entries(t))n[s(r)]=o;return n},fromBackendRow:t=>{const n={};for(const[r,o]of Object.entries(t)){const d=e==="identity"?r:a(r);n[d]=f.has(d)?u(o):o}return n}}}const S=y("camelToSnake");export{y as createFieldMapper,S as defaultFieldMapper};

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * @donotdev/supabase — Supabase provider for DoNotDev
+ * Client-only exports: adapters and client init.
+ *
+ * @packageDocumentation
+ */
+export * from './client';
+export { createFieldMapper, defaultFieldMapper, type FieldMappingMode, type SupabaseFieldMapper, } from './fieldMapper';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAEA;;;;;GAKG;AAEH,cAAc,UAAU,CAAC;AACzB,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,KAAK,gBAAgB,EACrB,KAAK,mBAAmB,GACzB,MAAM,eAAe,CAAC"}

package/dist/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export*from"./client";import{createFieldMapper as a,defaultFieldMapper as o}from"./fieldMapper";export{a as createFieldMapper,o as defaultFieldMapper};

package/dist/server/authAdapter.d.ts ADDED Viewed

@@ -0,0 +1,38 @@
+/**
+ * @fileoverview Supabase Server Auth Adapter
+ * @description IServerAuthAdapter implementation using Supabase Auth Admin API.
+ * Requires a Supabase client created with the secret key (sb_secret_...) or service_role key (legacy).
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ * @author AMBROISE PARK Consulting
+ */
+import type { IServerAuthAdapter, VerifiedToken, ServerUserRecord } from '@donotdev/core';
+import type { SupabaseClient } from '@supabase/supabase-js';
+/**
+ * Create a Supabase client with the secret key (sb_secret_...) or service_role key (legacy) for server-side auth admin.
+ * Use this only on the server (Node.js); never expose the secret key to the client.
+ *
+ * @param url - Supabase project URL
+ * @param secretKey - Secret key (sb_secret_...) or service_role key (legacy)
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ */
+export declare function createServerClient(url: string, secretKey: string): SupabaseClient;
+/**
+ * Supabase server auth adapter implementing IServerAuthAdapter.
+ * Pass a Supabase client created with createServerClient(url, secretKey).
+ * Secret key can be SUPABASE_SECRET_KEY (sb_secret_...) or SUPABASE_SERVICE_ROLE_KEY (legacy).
+ *
+ * @version 0.0.1
+ * @since 0.0.1
+ */
+export declare class SupabaseServerAuthAdapter implements IServerAuthAdapter {
+    private readonly client;
+    constructor(client: SupabaseClient);
+    verifyToken(token: string): Promise<VerifiedToken>;
+    getUser(uid: string): Promise<ServerUserRecord | null>;
+    setCustomClaims(uid: string, claims: Record<string, unknown>): Promise<void>;
+}
+//# sourceMappingURL=authAdapter.d.ts.map

package/dist/server/authAdapter.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"authAdapter.d.ts","sourceRoot":"","sources":["../../src/server/authAdapter.ts"],"names":[],"mappings":"AAEA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EACV,kBAAkB,EAClB,aAAa,EACb,gBAAgB,EACjB,MAAM,gBAAgB,CAAC;AAExB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAO5D;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAChC,GAAG,EAAE,MAAM,EACX,SAAS,EAAE,MAAM,GAChB,cAAc,CAOhB;AAMD;;;;;;;GAOG;AACH,qBAAa,yBAA0B,YAAW,kBAAkB;IACtD,OAAO,CAAC,QAAQ,CAAC,MAAM;gBAAN,MAAM,EAAE,cAAc;IAE7C,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC;IAmClD,OAAO,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC;IA0BtD,eAAe,CACnB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC9B,OAAO,CAAC,IAAI,CAAC;CAwBjB"}

package/dist/server/authAdapter.js ADDED Viewed

@@ -0,0 +1 @@

+ import{wrapAuthError as s,DoNotDevError as i}from"@donotdev/core";import{createClient as u}from"@supabase/supabase-js";function d(n,t){return u(n,t,{auth:{autoRefreshToken:!1,persistSession:!1}})}class p{client;constructor(t){this.client=t}async verifyToken(t){try{const{data:{user:r},error:e}=await this.client.auth.getUser(t);if(e){const a=e instanceof Error?e:new Error(e.message||e.error_description||String(e));throw s(a,"SupabaseServerAuthAdapter","verifyToken")}if(!r)throw s(new Error("Invalid token"),"SupabaseServerAuthAdapter","verifyToken");return{uid:r.id,email:r.email??void 0,claims:{...r.user_metadata,...r.app_metadata}}}catch(r){throw r instanceof i?r:s(r,"SupabaseServerAuthAdapter","verifyToken")}}async getUser(t){const{data:{user:r},error:e}=await this.client.auth.admin.getUserById(t);if(e||!r)return null;const a=r.user_metadata??{},o=typeof a.full_name=="string"?a.full_name:typeof a.name=="string"?a.name:void 0;return{uid:r.id,email:r.email??void 0,displayName:o,customClaims:{...r.user_metadata,...r.app_metadata}}}async setCustomClaims(t,r){try{const{error:e}=await this.client.auth.admin.updateUserById(t,{app_metadata:r});if(e){const a=e instanceof Error?e:new Error(e.message||e.error_description||String(e));throw s(a,"SupabaseServerAuthAdapter","setCustomClaims",{uid:t})}}catch(e){throw e instanceof i?e:s(e,"SupabaseServerAuthAdapter","setCustomClaims",{uid:t})}}}export{p as SupabaseServerAuthAdapter,d as createServerClient};

package/dist/server/index.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/**
+ * @donotdev/supabase/server — Server-only exports (SupabaseServerAuthAdapter, createServerClient).
+ *
+ * @packageDocumentation
+ */
+export { SupabaseServerAuthAdapter, createServerClient } from './authAdapter';
+//# sourceMappingURL=index.d.ts.map

package/dist/server/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/server/index.ts"],"names":[],"mappings":"AAEA;;;;GAIG;AAEH,OAAO,EAAE,yBAAyB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC"}

package/dist/server/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{SupabaseServerAuthAdapter as t,createServerClient as a}from"./authAdapter";export{t as SupabaseServerAuthAdapter,a as createServerClient};

package/package.json ADDED Viewed

@@ -0,0 +1,60 @@
+{
+  "name": "@donotdev/supabase",
+  "version": "0.0.1",
+  "private": false,
+  "type": "module",
+  "license": "SEE LICENSE IN LICENSE.md",
+  "description": "Supabase provider for DoNotDev — CRUD, auth, storage, server auth adapters",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    },
+    "./server": {
+      "types": "./dist/server/index.d.ts",
+      "import": "./dist/server/index.js",
+      "default": "./dist/server/index.js"
+    }
+  },
+  "scripts": {
+    "dev": "tsc --noEmit --watch --listFiles false --listEmittedFiles false",
+    "clean": "rimraf dist tsconfig.tsbuildinfo",
+    "type-check": "tsc --noEmit",
+    "test": "vitest run",
+    "test:watch": "vitest"
+  },
+  "dependencies": {
+    "valibot": "^1.2.0"
+  },
+  "peerDependencies": {
+    "@donotdev/core": "^0.0.24",
+    "@supabase/supabase-js": "^2.45.0"
+  },
+  "peerDependenciesMeta": {},
+  "files": [
+    "dist",
+    "package.json",
+    "README.md",
+    "LICENSE.md"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/donotdev/dndev.git"
+  },
+  "keywords": [
+    "donotdev",
+    "dndev",
+    "supabase",
+    "auth",
+    "storage",
+    "react",
+    "typescript"
+  ],
+  "publishConfig": {
+    "registry": "https://registry.npmjs.org",
+    "access": "public"
+  }
+}