@draftlab/auth 0.15.0 → 0.16.0

package/dist/toolkit/storage.mjs

@@ -1,157 +0,0 @@
-//#region src/toolkit/storage.ts
-const STORAGE_KEY = "draftauth.pkce";
-/**
-* Creates a browser sessionStorage adapter for PKCE state.
-* Suitable for client-side SPAs where state should only persist during the browser session.
-*
-* @returns AuthStorage implementation using sessionStorage
-*
-* @example
-* ```ts
-* const storage = createSessionStorage()
-*
-* // Use in toolkit client
-* const client = createOAuthClient({
-*   storage,
-*   providers: { ... }
-* })
-* ```
-*/
-const createSessionStorage = () => ({
-	set: (data) => {
-		if (typeof sessionStorage === "undefined") throw new Error("sessionStorage is not available in this environment");
-		sessionStorage.setItem(STORAGE_KEY, JSON.stringify(data));
-	},
-	get: () => {
-		if (typeof sessionStorage === "undefined") return null;
-		const data = sessionStorage.getItem(STORAGE_KEY);
-		return data ? JSON.parse(data) : null;
-	},
-	clear: () => {
-		if (typeof sessionStorage === "undefined") return;
-		sessionStorage.removeItem(STORAGE_KEY);
-	}
-});
-/**
-* Creates a browser localStorage adapter for PKCE state.
-* Suitable for client-side SPAs where state should persist across browser sessions.
-*
-* ⚠️ Warning: localStorage persists data indefinitely. Consider using sessionStorage
-* for better security, as it automatically clears on browser close.
-*
-* @returns AuthStorage implementation using localStorage
-*
-* @example
-* ```ts
-* const storage = createLocalStorage()
-*
-* // Use in toolkit client
-* const client = createOAuthClient({
-*   storage,
-*   providers: { ... }
-* })
-* ```
-*/
-const createLocalStorage = () => ({
-	set: (data) => {
-		if (typeof localStorage === "undefined") throw new Error("localStorage is not available in this environment");
-		localStorage.setItem(STORAGE_KEY, JSON.stringify(data));
-	},
-	get: () => {
-		if (typeof localStorage === "undefined") return null;
-		const data = localStorage.getItem(STORAGE_KEY);
-		return data ? JSON.parse(data) : null;
-	},
-	clear: () => {
-		if (typeof localStorage === "undefined") return;
-		localStorage.removeItem(STORAGE_KEY);
-	}
-});
-/**
-* Creates a memory-based storage adapter for PKCE state.
-* Suitable for server-side rendering or testing environments.
-* State is lost when the process terminates or page reloads.
-*
-* @returns AuthStorage implementation using in-memory storage
-*
-* @example
-* ```ts
-* // Server-side or testing
-* const storage = createMemoryStorage()
-*
-* const client = createOAuthClient({
-*   storage,
-*   providers: { ... }
-* })
-* ```
-*/
-const createMemoryStorage = () => {
-	let state = null;
-	return {
-		set: (data) => {
-			state = data;
-		},
-		get: () => {
-			return state;
-		},
-		clear: () => {
-			state = null;
-		}
-	};
-};
-/**
-* Creates a cookie-based storage adapter for PKCE state.
-* Suitable for server-side OAuth flows (Next.js, Remix, etc.) where you need
-* to persist state across requests.
-*
-* @param options - Cookie configuration options
-* @returns AuthStorage implementation using cookies
-*
-* @example
-* ```ts
-* // Next.js App Router
-* import { cookies } from 'next/headers'
-*
-* const storage = createCookieStorage({
-*   getCookie: (name) => cookies().get(name)?.value ?? null,
-*   setCookie: (name, value, opts) => {
-*     cookies().set(name, value, {
-*       httpOnly: true,
-*       secure: true,
-*       sameSite: 'lax',
-*       maxAge: opts.maxAge
-*     })
-*   },
-*   deleteCookie: (name) => cookies().delete(name)
-* })
-*
-* // TanStack Start
-* import { getCookie, setCookie, deleteCookie } from '@tanstack/react-start/server'
-*
-* const storage = createCookieStorage({
-*   getCookie,
-*   setCookie: (name, value, opts) => setCookie(name, value, opts),
-*   deleteCookie
-* })
-* ```
-*/
-const createCookieStorage = (options) => ({
-	set: async (data) => {
-		await options.setCookie(STORAGE_KEY, JSON.stringify(data), {
-			maxAge: 600,
-			httpOnly: true,
-			secure: process.env.NODE_ENV === "production",
-			sameSite: "lax"
-		});
-	},
-	get: async () => {
-		const value = await options.getCookie(STORAGE_KEY);
-		return value ? JSON.parse(value) : null;
-	},
-	clear: async () => {
-		await options.deleteCookie(STORAGE_KEY);
-	}
-});
-
-//#endregion
-export { createCookieStorage, createLocalStorage, createMemoryStorage, createSessionStorage };

package/dist/toolkit/utils.mjs

@@ -1,30 +0,0 @@
-//#region src/toolkit/utils.ts
-/**
-* Universal utilities for the OAuth toolkit.
-* These functions work in both browser and Node.js environments.
-*/
-/**
-* Generates a cryptographically secure random string using Web Crypto API.
-* Works in both browser and Node.js environments (Node 15+).
-*
-* @param length - Length of random data in bytes (default: 32 for 256-bit security)
-* @returns Base64url-encoded secure random string
-*
-* @example
-* ```ts
-* const state = generateSecureRandom(16) // 128-bit random state
-* const token = generateSecureRandom(32) // 256-bit random token
-* ```
-*/
-const generateSecureRandom = (length = 32) => {
-	if (length <= 0 || !Number.isInteger(length)) throw new RangeError("Length must be a positive integer");
-	const randomBytes = new Uint8Array(length);
-	crypto.getRandomValues(randomBytes);
-	let base64 = "";
-	if (typeof btoa !== "undefined") base64 = btoa(String.fromCharCode(...randomBytes));
-	else base64 = Buffer.from(randomBytes).toString("base64");
-	return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
-};
-
-//#endregion
-export { generateSecureRandom };

package/dist/types.d.mts

@@ -1,94 +0,0 @@
-//#region src/types.d.ts
-/**
- * Shared type definitions for Draft Auth core.
- */
-/**
- * Authorization state for OAuth 2.0 flows.
- */
-interface AuthorizationState {
-  /** OAuth redirect URI */
-  redirect_uri?: string;
-  /** OAuth response type (code, token) */
-  response_type?: string;
-  /** OAuth state parameter for CSRF protection */
-  state?: string;
-  /** OAuth client identifier */
-  client_id?: string;
-  /** OAuth audience parameter */
-  audience?: string;
-  /** Raw scope string from request */
-  scope?: string;
-  /** Parsed OAuth scopes array */
-  scopes?: string[];
-  /** PKCE challenge data for code verification */
-  pkce?: PKCEChallenge;
-}
-/**
- * Token generation result for OAuth 2.0.
- */
-interface TokenGenerationResult {
-  /** OAuth access token */
-  access: string;
-  /** Token expiration time in seconds */
-  expiresIn: number;
-  /** OAuth refresh token */
-  refresh: string;
-}
-/**
- * PKCE challenge data for OAuth flows.
- */
-interface PKCEChallenge {
-  challenge: string;
-  method: "S256";
-}
-/**
- * TTL configuration for tokens and sessions.
- */
-interface TtlConfiguration {
-  /** Access token TTL in seconds */
-  access: number;
-  /** Refresh token TTL in seconds */
-  refresh: number;
-}
-/**
- * Refresh token storage payload structure.
- * Contains metadata about issued refresh tokens.
- */
-interface RefreshTokenStoragePayload {
-  /** Subject type identifier */
-  type: string;
-  /** Subject properties/claims */
-  properties: unknown;
-  /** Resolved subject identifier for JWT */
-  subject: string;
-  /** Client identifier that owns this refresh token */
-  clientID: string;
-  /** OAuth scopes associated with this token */
-  scopes?: string[];
-  /** Timestamp when the refresh token was first used */
-  timeUsed?: number;
-}
-/**
- * Code storage payload for authorization code grant.
- * Used for storing authorization code data during OAuth flows.
- */
-interface CodeStoragePayload {
-  /** Subject type identifier */
-  type: string;
-  /** Subject properties/claims */
-  properties: unknown;
-  /** Resolved subject identifier for JWT */
-  subject: string;
-  /** Redirect URI used in authorization request */
-  redirectURI: string;
-  /** Client identifier */
-  clientID: string;
-  /** OAuth scopes */
-  scopes?: string[];
-  /** Token TTL configuration */
-  ttl: TtlConfiguration;
-  /** PKCE challenge data */
-  pkce?: PKCEChallenge;
-}
-//#endregion
-export { AuthorizationState, CodeStoragePayload, PKCEChallenge, RefreshTokenStoragePayload, TokenGenerationResult, TtlConfiguration };

package/dist/types.mjs

@@ -1 +0,0 @@
-export {  };

package/dist/ui/base.d.mts

@@ -1,30 +0,0 @@
-import { Theme } from "../themes/theme.mjs";
-import * as preact0 from "preact";
-import { ComponentChildren } from "preact";
-
-//#region src/ui/base.d.ts
-
-/**
- * Props for the Layout component
- */
-interface LayoutProps {
-  children: ComponentChildren;
-  theme?: Theme;
-  title?: string;
-  size?: "small";
-}
-/**
- * Base Layout component that provides the foundational structure for all auth UIs
- */
-declare const Layout: ({
-  children,
-  theme,
-  title,
-  size
-}: LayoutProps) => preact0.JSX.Element;
-/**
- * Helper function to render a Preact component to HTML string
- */
-declare const renderToHTML: (component: ComponentChildren) => string;
-//#endregion
-export { Layout, LayoutProps, renderToHTML };