@draftlab/auth 0.0.3 → 0.1.0

package/dist/error-CWAdNAzm.d.ts

@@ -1,243 +0,0 @@
-//#region src/error.d.ts
-/**
- * Error classes and types for Draft Auth operations.
- * Provides comprehensive error handling for OAuth 2.0 and authentication flows.
- *
- * ## Usage
- *
- * ```ts
- * import {
- *   InvalidAuthorizationCodeError,
- *   OauthError,
- *   UnknownStateError
- * } from "@draftauth/core/error"
- *
- * try {
- *   await client.exchange(code, redirectUri)
- * } catch (error) {
- *   if (error instanceof InvalidAuthorizationCodeError) {
- *     // Handle invalid authorization code
- *     // Authorization code expired or invalid
- *   } else if (error instanceof OauthError) {
- *     // Handle OAuth-specific errors
- *     // OAuth error: error.error - error.description
- *   }
- * }
- * ```
- *
- * ## Error Categories
- *
- * - **OAuth Errors**: Standard OAuth error responses
- * - **Token Errors**: Issues with access tokens, refresh tokens, and authorization codes
- * - **Client Errors**: Problems with client configuration and authorization
- * - **State Errors**: Session and flow state management issues
- *
- * @packageDocumentation
- */
-/**
- * Standard OAuth error types
- * These error codes are returned by OAuth authorization servers.
- */
-type OauthErrorType = "invalid_request" | "invalid_client" | "invalid_grant" | "invalid_token" | "invalid_redirect_uri" | "insufficient_scope" | "unauthorized_client" | "access_denied" | "unsupported_grant_type" | "server_error" | "temporarily_unavailable" | "unsupported_response_type";
-/**
- * Base OAuth error class for handling standard OAuth error responses.
- * Contains both the error code and human-readable description.
- */
-declare class OauthError extends Error {
-  /** The OAuth error code as defined in the specification */
-  readonly error: OauthErrorType;
-  /** Human-readable description of the error */
-  readonly description: string;
-  /**
-   * Creates a new OAuth error with the specified error code and description.
-   *
-   * @param error - The OAuth error type
-   * @param description - Human-readable error description
-   *
-   * @example
-   * ```ts
-   * throw new OauthError("invalid_grant", "Authorization code has expired")
-   * ```
-   */
-  constructor(error: OauthErrorType, description: string);
-  /**
-   * Converts the error to a standard OAuth JSON response format.
-   *
-   * @returns Object with error and error_description fields
-   *
-   * @example
-   * ```ts
-   * const oauthError = new OauthError("invalid_request", "Missing parameter")
-   * return c.json(oauthError.toJSON(), 400)
-   * ```
-   */
-  toJSON(): {
-    error: OauthErrorType;
-    error_description: string;
-  };
-}
-/**
- * Error thrown when a provider parameter is missing from the authorization request.
- * Occurs when multiple providers are configured but no specific provider is selected.
- */
-declare class MissingProviderError extends OauthError {
-  /**
-   * Creates a missing provider error.
-   * Thrown when the provider query parameter is required but not provided.
-   */
-  constructor();
-}
-/**
- * Error thrown when a required parameter is missing from a request.
- * Used for validating OAuth request parameters.
- */
-declare class MissingParameterError extends OauthError {
-  /** The name of the missing parameter */
-  readonly parameter: string;
-  /**
-   * Creates a missing parameter error.
-   *
-   * @param parameter - The name of the missing parameter
-   *
-   * @example
-   * ```ts
-   * throw new MissingParameterError("client_id")
-   * ```
-   */
-  constructor(parameter: string);
-}
-/**
- * Error thrown when a client is not authorized to use a specific redirect URI.
- * Prevents unauthorized clients from hijacking authorization codes.
- */
-declare class UnauthorizedClientError extends OauthError {
-  /** The client ID that attempted unauthorized access */
-  readonly clientID: string;
-  /**
-   * Creates an unauthorized client error.
-   *
-   * @param clientID - The client ID attempting unauthorized access
-   * @param redirectURI - The unauthorized redirect URI
-   *
-   * @example
-   * ```ts
-   * throw new UnauthorizedClientError("malicious-client", "https://evil.com/callback")
-   * ```
-   */
-  constructor(clientID: string, redirectURI: string);
-}
-/**
- * Error thrown when the authentication flow is in an unknown or invalid state.
- *
- * ## Common Causes
- * - Session cookies have expired during the authentication flow
- * - User switched browsers or devices mid-flow
- * - Authentication state was manually tampered with
- * - Server session storage was cleared
- *
- * @example
- * ```ts
- * // In provider callback handling
- * const state = await getAuthState(request)
- * if (!state) {
- *   throw new UnknownStateError()
- * }
- * ```
- */
-declare class UnknownStateError extends Error {
-  /**
-   * Creates an unknown state error.
-   * Indicates that the authentication flow cannot continue due to missing state.
-   */
-  constructor();
-}
-/**
- * Error thrown when a subject (user identifier) is invalid or malformed.
- * Used during token verification and subject validation.
- *
- * @example
- * ```ts
- * // During token verification
- * const subject = extractSubject(token)
- * if (!isValidSubject(subject)) {
- *   throw new InvalidSubjectError()
- * }
- * ```
- */
-declare class InvalidSubjectError extends Error {
-  /**
-   * Creates an invalid subject error.
-   */
-  constructor();
-}
-/**
- * Error thrown when a refresh token is invalid, expired, or revoked.
- * Occurs during token refresh operations.
- *
- * @example
- * ```ts
- * // During token refresh
- * try {
- *   const newTokens = await client.refresh(refreshToken)
- * } catch (error) {
- *   if (error instanceof InvalidRefreshTokenError) {
- *     // Redirect user to login again
- *     redirectToLogin()
- *   }
- * }
- * ```
- */
-declare class InvalidRefreshTokenError extends Error {
-  /**
-   * Creates an invalid refresh token error.
-   */
-  constructor();
-}
-/**
- * Error thrown when an access token is invalid, expired, or malformed.
- * Occurs during token verification and API requests.
- *
- * @example
- * ```ts
- * // During API request
- * try {
- *   const user = await api.getUser(accessToken)
- * } catch (error) {
- *   if (error instanceof InvalidAccessTokenError) {
- *     // Try to refresh the token
- *     await refreshAccessToken()
- *   }
- * }
- * ```
- */
-declare class InvalidAccessTokenError extends Error {
-  /**
-   * Creates an invalid access token error.
-   */
-  constructor();
-}
-/**
- * Error thrown when an authorization code is invalid, expired, or already used.
- * Occurs during the token exchange step of the OAuth flow.
- *
- * @example
- * ```ts
- * // During authorization code exchange
- * try {
- *   const tokens = await client.exchange(code, redirectUri)
- * } catch (error) {
- *   if (error instanceof InvalidAuthorizationCodeError) {
- *     // Code may have expired or been used already
- *     redirectToAuthorize()
- *   }
- * }
- * ```
- */
-declare class InvalidAuthorizationCodeError extends Error {
-  /**
-   * Creates an invalid authorization code error.
-   */
-  constructor();
-}
-//#endregion
-export { InvalidAccessTokenError, InvalidAuthorizationCodeError, InvalidRefreshTokenError, InvalidSubjectError, MissingParameterError, MissingProviderError, OauthError, OauthErrorType, UnauthorizedClientError, UnknownStateError };

package/dist/error-DgAKK7b2.js

@@ -1,237 +0,0 @@
-//#region src/error.ts
-/**
-* Base OAuth error class for handling standard OAuth error responses.
-* Contains both the error code and human-readable description.
-*/
-var OauthError = class extends Error {
-	/** The OAuth error code as defined in the specification */
-	error;
-	/** Human-readable description of the error */
-	description;
-	/**
-	* Creates a new OAuth error with the specified error code and description.
-	*
-	* @param error - The OAuth error type
-	* @param description - Human-readable error description
-	*
-	* @example
-	* ```ts
-	* throw new OauthError("invalid_grant", "Authorization code has expired")
-	* ```
-	*/
-	constructor(error, description) {
-		super(`${error} - ${description}`);
-		this.name = "OauthError";
-		this.error = error;
-		this.description = description;
-	}
-	/**
-	* Converts the error to a standard OAuth JSON response format.
-	*
-	* @returns Object with error and error_description fields
-	*
-	* @example
-	* ```ts
-	* const oauthError = new OauthError("invalid_request", "Missing parameter")
-	* return c.json(oauthError.toJSON(), 400)
-	* ```
-	*/
-	toJSON() {
-		return {
-			error: this.error,
-			error_description: this.description
-		};
-	}
-};
-/**
-* Error thrown when a provider parameter is missing from the authorization request.
-* Occurs when multiple providers are configured but no specific provider is selected.
-*/
-var MissingProviderError = class extends OauthError {
-	/**
-	* Creates a missing provider error.
-	* Thrown when the provider query parameter is required but not provided.
-	*/
-	constructor() {
-		super("invalid_request", "Must specify `provider` query parameter if `select` callback on issuer is not specified");
-		this.name = "MissingProviderError";
-	}
-};
-/**
-* Error thrown when a required parameter is missing from a request.
-* Used for validating OAuth request parameters.
-*/
-var MissingParameterError = class extends OauthError {
-	/** The name of the missing parameter */
-	parameter;
-	/**
-	* Creates a missing parameter error.
-	*
-	* @param parameter - The name of the missing parameter
-	*
-	* @example
-	* ```ts
-	* throw new MissingParameterError("client_id")
-	* ```
-	*/
-	constructor(parameter) {
-		super("invalid_request", `Missing parameter: ${parameter}`);
-		this.name = "MissingParameterError";
-		this.parameter = parameter;
-	}
-};
-/**
-* Error thrown when a client is not authorized to use a specific redirect URI.
-* Prevents unauthorized clients from hijacking authorization codes.
-*/
-var UnauthorizedClientError = class extends OauthError {
-	/** The client ID that attempted unauthorized access */
-	clientID;
-	/**
-	* Creates an unauthorized client error.
-	*
-	* @param clientID - The client ID attempting unauthorized access
-	* @param redirectURI - The unauthorized redirect URI
-	*
-	* @example
-	* ```ts
-	* throw new UnauthorizedClientError("malicious-client", "https://evil.com/callback")
-	* ```
-	*/
-	constructor(clientID, redirectURI) {
-		super("unauthorized_client", `Client ${clientID} is not authorized to use this redirect_uri: ${redirectURI}`);
-		this.name = "UnauthorizedClientError";
-		this.clientID = clientID;
-	}
-};
-/**
-* Error thrown when the authentication flow is in an unknown or invalid state.
-*
-* ## Common Causes
-* - Session cookies have expired during the authentication flow
-* - User switched browsers or devices mid-flow
-* - Authentication state was manually tampered with
-* - Server session storage was cleared
-*
-* @example
-* ```ts
-* // In provider callback handling
-* const state = await getAuthState(request)
-* if (!state) {
-*   throw new UnknownStateError()
-* }
-* ```
-*/
-var UnknownStateError = class extends Error {
-	/**
-	* Creates an unknown state error.
-	* Indicates that the authentication flow cannot continue due to missing state.
-	*/
-	constructor() {
-		super("The browser was in an unknown state. This could be because certain cookies expired or the browser was switched in the middle of an authentication flow.");
-		this.name = "UnknownStateError";
-	}
-};
-/**
-* Error thrown when a subject (user identifier) is invalid or malformed.
-* Used during token verification and subject validation.
-*
-* @example
-* ```ts
-* // During token verification
-* const subject = extractSubject(token)
-* if (!isValidSubject(subject)) {
-*   throw new InvalidSubjectError()
-* }
-* ```
-*/
-var InvalidSubjectError = class extends Error {
-	/**
-	* Creates an invalid subject error.
-	*/
-	constructor() {
-		super("Invalid subject");
-		this.name = "InvalidSubjectError";
-	}
-};
-/**
-* Error thrown when a refresh token is invalid, expired, or revoked.
-* Occurs during token refresh operations.
-*
-* @example
-* ```ts
-* // During token refresh
-* try {
-*   const newTokens = await client.refresh(refreshToken)
-* } catch (error) {
-*   if (error instanceof InvalidRefreshTokenError) {
-*     // Redirect user to login again
-*     redirectToLogin()
-*   }
-* }
-* ```
-*/
-var InvalidRefreshTokenError = class extends Error {
-	/**
-	* Creates an invalid refresh token error.
-	*/
-	constructor() {
-		super("Invalid refresh token");
-		this.name = "InvalidRefreshTokenError";
-	}
-};
-/**
-* Error thrown when an access token is invalid, expired, or malformed.
-* Occurs during token verification and API requests.
-*
-* @example
-* ```ts
-* // During API request
-* try {
-*   const user = await api.getUser(accessToken)
-* } catch (error) {
-*   if (error instanceof InvalidAccessTokenError) {
-*     // Try to refresh the token
-*     await refreshAccessToken()
-*   }
-* }
-* ```
-*/
-var InvalidAccessTokenError = class extends Error {
-	/**
-	* Creates an invalid access token error.
-	*/
-	constructor() {
-		super("Invalid access token");
-		this.name = "InvalidAccessTokenError";
-	}
-};
-/**
-* Error thrown when an authorization code is invalid, expired, or already used.
-* Occurs during the token exchange step of the OAuth flow.
-*
-* @example
-* ```ts
-* // During authorization code exchange
-* try {
-*   const tokens = await client.exchange(code, redirectUri)
-* } catch (error) {
-*   if (error instanceof InvalidAuthorizationCodeError) {
-*     // Code may have expired or been used already
-*     redirectToAuthorize()
-*   }
-* }
-* ```
-*/
-var InvalidAuthorizationCodeError = class extends Error {
-	/**
-	* Creates an invalid authorization code error.
-	*/
-	constructor() {
-		super("Invalid authorization code");
-		this.name = "InvalidAuthorizationCodeError";
-	}
-};
-
-//#endregion
-export { InvalidAccessTokenError, InvalidAuthorizationCodeError, InvalidRefreshTokenError, InvalidSubjectError, MissingParameterError, MissingProviderError, OauthError, UnauthorizedClientError, UnknownStateError };

package/dist/form-6XKM_cOk.js

@@ -1,61 +0,0 @@
-//#region src/ui/form.ts
-/**
-* Success icon component showing a checkmark in a circle.
-* Used for positive feedback messages.
-*/
-const SuccessIcon = () => `
-	<svg
-		aria-hidden="true"
-		data-slot="icon-success"
-		fill="none"
-		stroke="currentColor"
-		stroke-width="1.5"
-		viewBox="0 0 24 24"
-		xmlns="http://www.w3.org/2000/svg"
-	>
-		<path
-			d="M9 12.75 11.25 15 15 9.75M21 12a9 9 0 1 1-18 0 9 9 0 0 1 18 0Z"
-			stroke-linecap="round"
-			stroke-linejoin="round"
-		/>
-	</svg>
-`;
-/**
-* Danger icon component showing an exclamation mark in a circle.
-* Used for error and warning messages.
-*/
-const DangerIcon = () => `
-	<svg
-		aria-hidden="true"
-		data-slot="icon-danger"
-		fill="none"
-		stroke="currentColor"
-		stroke-width="1.5"
-		viewBox="0 0 24 24"
-		xmlns="http://www.w3.org/2000/svg"
-	>
-		<path
-			d="M12 9v3.75m9-.75a9 9 0 1 1-18 0 9 9 0 0 1 18 0Zm-9 3.75h.008v.008H12v-.008Z"
-			stroke-linecap="round"
-			stroke-linejoin="round"
-		/>
-	</svg>
-`;
-/**
-* Form alert component that displays error or success messages.
-* Returns an HTML string for the alert or empty string if no message.
-*/
-const FormAlert = (props) => {
-	if (!props.message) return "";
-	const alertColor = props.color ?? "danger";
-	return `
-		<div aria-live="polite" data-color="${alertColor}" data-component="form-alert" role="alert">
-			${SuccessIcon()}
-			${DangerIcon()}
-			<span data-slot="message">${props.message}</span>
-		</div>
-	`;
-};
-
-//#endregion
-export { FormAlert };