@edge-base/ssr 0.1.1

package/README.md

@@ -0,0 +1,175 @@
+<h1 align="center">@edge-base/ssr</h1>
+
+<p align="center">
+  <b>Server-side auth and data helpers for EdgeBase</b><br>
+  Cookie-based session handling for SSR frameworks like Next.js, Remix, Nuxt, and SvelteKit
+</p>
+
+<p align="center">
+  <a href="https://www.npmjs.com/package/@edge-base/ssr"><img src="https://img.shields.io/npm/v/%40edge-base%2Fssr?color=brightgreen" alt="npm"></a>&nbsp;
+  <a href="https://edgebase.fun/docs/sdks/nextjs"><img src="https://img.shields.io/badge/docs-ssr-blue" alt="Docs"></a>&nbsp;
+  <a href="https://github.com/edge-base/edgebase/blob/main/LICENSE"><img src="https://img.shields.io/badge/license-MIT-blue.svg" alt="MIT License"></a>
+</p>
+
+<p align="center">
+  Next.js · Remix · Nuxt · SvelteKit · Hono SSR
+</p>
+
+<p align="center">
+  <a href="https://edgebase.fun/docs/sdks/nextjs"><b>Next.js Guide</b></a> ·
+  <a href="https://edgebase.fun/docs/sdks/client-vs-server"><b>Client vs Server</b></a> ·
+  <a href="https://edgebase.fun/docs/authentication"><b>Authentication</b></a>
+</p>
+
+---
+
+`@edge-base/ssr` is the package you use when server-side code should run as the current signed-in user via cookies.
+
+It is built for:
+
+- Server Components
+- Route Handlers
+- loaders and actions
+- SSR middleware and request handlers
+- cookie-based session transfer between server and browser code
+
+If you are writing browser code, use [`@edge-base/web`](https://www.npmjs.com/package/@edge-base/web). If you need privileged admin access from the server, use [`@edge-base/admin`](https://www.npmjs.com/package/@edge-base/admin).
+
+> Beta: the package is already usable, but some APIs may still evolve before general availability.
+
+## Documentation Map
+
+- [Next.js Integration](https://edgebase.fun/docs/sdks/nextjs)
+  End-to-end SSR and client setup
+- [Client vs Server SDKs](https://edgebase.fun/docs/sdks/client-vs-server)
+  Pick the right package for each runtime
+- [Authentication](https://edgebase.fun/docs/authentication)
+  Session, OAuth, MFA, and cookie-backed auth concepts
+- [Database Client SDK](https://edgebase.fun/docs/database/client-sdk)
+  Query patterns that also apply to SSR DB access
+
+## For AI Coding Assistants
+
+This package ships with an `llms.txt` file for AI-assisted SSR integration.
+
+You can find it:
+
+- after install: `node_modules/@edge-base/ssr/llms.txt`
+- in the repository: [llms.txt](https://github.com/edge-base/edgebase/blob/main/packages/sdk/js/packages/ssr/llms.txt)
+
+Use it when you want an agent to:
+
+- set up a cookie adapter correctly
+- keep browser auth code out of server components
+- avoid mixing `ssr`, `web`, and `admin`
+- use `getUser()`, `getSession()`, `setSession()`, and `clearSession()` correctly
+
+## Installation
+
+```bash
+npm install @edge-base/ssr
+```
+
+Most SSR apps also use the browser SDK alongside it:
+
+```bash
+npm install @edge-base/web @edge-base/ssr
+```
+
+## Quick Start
+
+```ts
+import { createServerClient } from '@edge-base/ssr';
+import { cookies } from 'next/headers';
+
+export async function createEdgeBaseServer() {
+  const cookieStore = await cookies();
+
+  return createServerClient(process.env.EDGEBASE_URL!, {
+    cookies: {
+      get: (name) => cookieStore.get(name)?.value,
+      set: (name, value, options) => {
+        try {
+          cookieStore.set(name, value, options);
+        } catch {
+          // read-only contexts such as some Server Components
+        }
+      },
+      delete: (name) => {
+        try {
+          cookieStore.delete(name);
+        } catch {
+          // read-only contexts such as some Server Components
+        }
+      },
+    },
+  });
+}
+```
+
+Then use it inside a server-side request flow:
+
+```ts
+const client = await createEdgeBaseServer();
+const user = client.getUser();
+
+if (user) {
+  const posts = await client.db('app').table('posts').getList();
+  console.log(posts.items);
+}
+```
+
+## What This Package Includes
+
+| Surface | Included |
+| --- | --- |
+| Cookie-backed session tokens | Yes |
+| Request-bound user context | Yes |
+| `db(namespace, id?)` | Yes |
+| `storage` and `functions` | Yes |
+| Client-side sign-in UI | No |
+| Database live subscriptions | No |
+| Rooms / push / browser auth flows | No |
+| Service Key admin user management | No |
+
+## Cookie Store Contract
+
+`createServerClient()` expects a cookie adapter with:
+
+- `get(name)`
+- `set(name, value, options?)`
+- `delete(name)`
+
+That makes it easy to adapt to framework-specific cookie stores while keeping one EdgeBase interface.
+
+## OAuth And Session Transfer
+
+On the server, `@edge-base/ssr` is especially useful for:
+
+- reading the current session from cookies
+- writing tokens after a server-side OAuth callback
+- clearing session cookies during server-side sign out
+
+Example:
+
+```ts
+client.setSession({
+  accessToken,
+  refreshToken,
+});
+
+const session = client.getSession();
+console.log(session.accessToken);
+```
+
+## Choose The Right Package
+
+| Package | Use it for |
+| --- | --- |
+| `@edge-base/web` | Browser components and client-side auth flows |
+| `@edge-base/ssr` | Server-side code acting as the current signed-in user via cookies |
+| `@edge-base/admin` | Trusted server-side code with Service Key access |
+
+## License
+
+MIT

package/dist/cookie-token-manager.d.ts

@@ -0,0 +1,20 @@
+/**
+ * CookieTokenManager — ITokenManager implementation for SSR environments.
+ *
+ * Stores access/refresh tokens in httpOnly cookies instead of localStorage.
+ * Works with any framework that provides a CookieStore interface
+ * (Next.js cookies(), Nuxt useCookie, etc.).
+ */
+import type { ITokenManager, ITokenPair } from '@edge-base/core';
+import type { CookieStore, CookieOptions } from './types.js';
+export declare class CookieTokenManager implements ITokenManager {
+    private cookies;
+    private cookieOptions;
+    constructor(cookies: CookieStore, cookieOptions?: Partial<CookieOptions>);
+    getAccessToken(refreshFn?: (refreshToken: string) => Promise<ITokenPair>): Promise<string | null> | string | null;
+    getRefreshToken(): string | null;
+    invalidateAccessToken(): void;
+    setTokens(tokens: ITokenPair): void;
+    clearTokens(): void;
+}
+//# sourceMappingURL=cookie-token-manager.d.ts.map

package/dist/cookie-token-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookie-token-manager.d.ts","sourceRoot":"","sources":["../src/cookie-token-manager.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AACjE,OAAO,KAAK,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAwC7D,qBAAa,kBAAmB,YAAW,aAAa;IAIpD,OAAO,CAAC,OAAO;IAHjB,OAAO,CAAC,aAAa,CAAgB;gBAG3B,OAAO,EAAE,WAAW,EAC5B,aAAa,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC;IAKxC,cAAc,CACZ,SAAS,CAAC,EAAE,CAAC,YAAY,EAAE,MAAM,KAAK,OAAO,CAAC,UAAU,CAAC,GACxD,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,MAAM,GAAG,IAAI;IAsBzC,eAAe,IAAI,MAAM,GAAG,IAAI;IAIhC,qBAAqB,IAAI,IAAI;IAI7B,SAAS,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI;IAcnC,WAAW,IAAI,IAAI;CAIpB"}

package/dist/cookie-token-manager.js

@@ -0,0 +1,94 @@
+/**
+ * CookieTokenManager — ITokenManager implementation for SSR environments.
+ *
+ * Stores access/refresh tokens in httpOnly cookies instead of localStorage.
+ * Works with any framework that provides a CookieStore interface
+ * (Next.js cookies(), Nuxt useCookie, etc.).
+ */
+const ACCESS_TOKEN_COOKIE = 'eb_access_token';
+const REFRESH_TOKEN_COOKIE = 'eb_refresh_token';
+/** Default cookie options — secure, httpOnly, SameSite=Lax */
+const DEFAULT_COOKIE_OPTIONS = {
+    httpOnly: true,
+    secure: true,
+    sameSite: 'lax',
+    path: '/',
+};
+function decodeJwtPayload(token) {
+    try {
+        const parts = token.split('.');
+        if (parts.length !== 3)
+            return null;
+        const payload = parts[1];
+        const base64 = payload.replace(/-/g, '+').replace(/_/g, '/');
+        const padded = base64 + '=='.slice(0, (4 - (base64.length % 4)) % 4);
+        const binary = atob(padded);
+        const bytes = Uint8Array.from(binary, (char) => char.charCodeAt(0));
+        return JSON.parse(new TextDecoder().decode(bytes));
+    }
+    catch {
+        return null;
+    }
+}
+function getTokenMaxAge(token) {
+    const exp = decodeJwtPayload(token)?.exp;
+    if (typeof exp !== 'number')
+        return null;
+    return Math.max(0, exp - Math.floor(Date.now() / 1000));
+}
+function isTokenExpired(token) {
+    const maxAge = getTokenMaxAge(token);
+    if (maxAge === null)
+        return true;
+    return maxAge <= 0;
+}
+export class CookieTokenManager {
+    cookies;
+    cookieOptions;
+    constructor(cookies, cookieOptions) {
+        this.cookies = cookies;
+        this.cookieOptions = { ...DEFAULT_COOKIE_OPTIONS, ...cookieOptions };
+    }
+    getAccessToken(refreshFn) {
+        const accessToken = this.cookies.get(ACCESS_TOKEN_COOKIE) ?? null;
+        // If we have an access token, return it directly
+        if (accessToken && !isTokenExpired(accessToken))
+            return accessToken;
+        if (accessToken) {
+            this.cookies.delete(ACCESS_TOKEN_COOKIE);
+        }
+        // If no access token but we have a refresh token and a refresh function,
+        // try to refresh
+        const refreshToken = this.getRefreshToken();
+        if (refreshToken && refreshFn) {
+            return refreshFn(refreshToken).then((tokens) => {
+                this.setTokens(tokens);
+                return tokens.accessToken;
+            });
+        }
+        return null;
+    }
+    getRefreshToken() {
+        return this.cookies.get(REFRESH_TOKEN_COOKIE) ?? null;
+    }
+    invalidateAccessToken() {
+        this.cookies.delete(ACCESS_TOKEN_COOKIE);
+    }
+    setTokens(tokens) {
+        const accessMaxAge = getTokenMaxAge(tokens.accessToken) ?? 900;
+        const refreshMaxAge = getTokenMaxAge(tokens.refreshToken) ?? 60 * 60 * 24 * 28;
+        this.cookies.set(ACCESS_TOKEN_COOKIE, tokens.accessToken, {
+            ...this.cookieOptions,
+            maxAge: accessMaxAge,
+        });
+        this.cookies.set(REFRESH_TOKEN_COOKIE, tokens.refreshToken, {
+            ...this.cookieOptions,
+            maxAge: refreshMaxAge,
+        });
+    }
+    clearTokens() {
+        this.cookies.delete(ACCESS_TOKEN_COOKIE);
+        this.cookies.delete(REFRESH_TOKEN_COOKIE);
+    }
+}
+//# sourceMappingURL=cookie-token-manager.js.map

package/dist/cookie-token-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookie-token-manager.js","sourceRoot":"","sources":["../src/cookie-token-manager.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAKH,MAAM,mBAAmB,GAAG,iBAAiB,CAAC;AAC9C,MAAM,oBAAoB,GAAG,kBAAkB,CAAC;AAEhD,8DAA8D;AAC9D,MAAM,sBAAsB,GAAkB;IAC5C,QAAQ,EAAE,IAAI;IACd,MAAM,EAAE,IAAI;IACZ,QAAQ,EAAE,KAAK;IACf,IAAI,EAAE,GAAG;CACV,CAAC;AAEF,SAAS,gBAAgB,CAAC,KAAa;IACrC,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QACpC,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,MAAM,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QAC7D,MAAM,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QACrE,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5B,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;QACpE,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAA4B,CAAC;IAChF,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACnC,MAAM,GAAG,GAAG,gBAAgB,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC;IACzC,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IACzC,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;AAC1D,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACnC,MAAM,MAAM,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IACrC,IAAI,MAAM,KAAK,IAAI;QAAE,OAAO,IAAI,CAAC;IACjC,OAAO,MAAM,IAAI,CAAC,CAAC;AACrB,CAAC;AAED,MAAM,OAAO,kBAAkB;IAInB;IAHF,aAAa,CAAgB;IAErC,YACU,OAAoB,EAC5B,aAAsC;QAD9B,YAAO,GAAP,OAAO,CAAa;QAG5B,IAAI,CAAC,aAAa,GAAG,EAAE,GAAG,sBAAsB,EAAE,GAAG,aAAa,EAAE,CAAC;IACvE,CAAC;IAED,cAAc,CACZ,SAAyD;QAEzD,MAAM,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,IAAI,IAAI,CAAC;QAElE,iDAAiD;QACjD,IAAI,WAAW,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC;YAAE,OAAO,WAAW,CAAC;QACpE,IAAI,WAAW,EAAE,CAAC;YAChB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;QAC3C,CAAC;QAED,yEAAyE;QACzE,iBAAiB;QACjB,MAAM,YAAY,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QAC5C,IAAI,YAAY,IAAI,SAAS,EAAE,CAAC;YAC9B,OAAO,SAAS,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE;gBAC7C,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;gBACvB,OAAO,MAAM,CAAC,WAAW,CAAC;YAC5B,CAAC,CAAC,CAAC;QACL,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED,eAAe;QACb,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,IAAI,CAAC;IACxD,CAAC;IAED,qBAAqB;QACnB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;IAC3C,CAAC;IAED,SAAS,CAAC,MAAkB;QAC1B,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,GAAG,CAAC;QAC/D,MAAM,aAAa,GAAG,cAAc,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;QAE/E,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB,EAAE,MAAM,CAAC,WAAW,EAAE;YACxD,GAAG,IAAI,CAAC,aAAa;YACrB,MAAM,EAAE,YAAY;SACrB,CAAC,CAAC;QACH,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,EAAE,MAAM,CAAC,YAAY,EAAE;YAC1D,GAAG,IAAI,CAAC,aAAa;YACrB,MAAM,EAAE,aAAa;SACtB,CAAC,CAAC;IACL,CAAC;IAED,WAAW;QACT,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;QACzC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,oBAAoB,CAAC,CAAC;IAC5C,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,49 @@
+/**
+ * @edge-base/ssr — Server-side rendering helpers for EdgeBase.
+ *
+ * Provides cookie-based token management for SSR frameworks
+ * (Next.js, Nuxt, SvelteKit, Remix, etc.).
+ *
+ * Usage:
+ * ```ts
+ * import { createServerClient } from '@edge-base/ssr';
+ *
+ * const client = createServerClient('https://my-app.edgebase.fun', {
+ *   cookies: {
+ *     get: (name) => cookieStore.get(name)?.value,
+ *     set: (name, value, options) => cookieStore.set(name, value, options),
+ *     delete: (name) => cookieStore.delete(name),
+ *   },
+ * });
+ *
+ * const user = client.getUser();
+ * const posts = await client.db('shared').table('posts').get();
+ * ```
+ */
+export { ServerEdgeBase, type ServerUser } from './server-client.js';
+export { CookieTokenManager } from './cookie-token-manager.js';
+export type { CookieStore, CookieOptions, ServerClientOptions } from './types.js';
+export type { ITokenPair } from '@edge-base/core';
+export { EdgeBaseError } from '@edge-base/core';
+import { ServerEdgeBase } from './server-client.js';
+import type { ServerClientOptions } from './types.js';
+/**
+ * Create a server-side EdgeBase client with cookie-based token management.
+ *
+ * @param url - EdgeBase project URL
+ * @param options - Cookie store and optional settings
+ *
+ * @example
+ * // Next.js App Router (Server Component)
+ * import { cookies } from 'next/headers';
+ * const cookieStore = await cookies();
+ * const client = createServerClient(process.env.EDGEBASE_URL!, {
+ *   cookies: {
+ *     get: (name) => cookieStore.get(name)?.value,
+ *     set: (name, value, options) => cookieStore.set(name, value, options),
+ *     delete: (name) => cookieStore.delete(name),
+ *   },
+ * });
+ */
+export declare function createServerClient(url: string, options: ServerClientOptions): ServerEdgeBase;
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;AAGH,OAAO,EAAE,cAAc,EAAE,KAAK,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAGrE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAG/D,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAGlF,YAAY,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAIhD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAEtD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,kBAAkB,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,mBAAmB,GAAG,cAAc,CAE5F"}

package/dist/index.js

@@ -0,0 +1,51 @@
+/**
+ * @edge-base/ssr — Server-side rendering helpers for EdgeBase.
+ *
+ * Provides cookie-based token management for SSR frameworks
+ * (Next.js, Nuxt, SvelteKit, Remix, etc.).
+ *
+ * Usage:
+ * ```ts
+ * import { createServerClient } from '@edge-base/ssr';
+ *
+ * const client = createServerClient('https://my-app.edgebase.fun', {
+ *   cookies: {
+ *     get: (name) => cookieStore.get(name)?.value,
+ *     set: (name, value, options) => cookieStore.set(name, value, options),
+ *     delete: (name) => cookieStore.delete(name),
+ *   },
+ * });
+ *
+ * const user = client.getUser();
+ * const posts = await client.db('shared').table('posts').get();
+ * ```
+ */
+// Server client
+export { ServerEdgeBase } from './server-client.js';
+// Cookie token manager (for advanced usage)
+export { CookieTokenManager } from './cookie-token-manager.js';
+export { EdgeBaseError } from '@edge-base/core';
+// ─── Factory ───
+import { ServerEdgeBase } from './server-client.js';
+/**
+ * Create a server-side EdgeBase client with cookie-based token management.
+ *
+ * @param url - EdgeBase project URL
+ * @param options - Cookie store and optional settings
+ *
+ * @example
+ * // Next.js App Router (Server Component)
+ * import { cookies } from 'next/headers';
+ * const cookieStore = await cookies();
+ * const client = createServerClient(process.env.EDGEBASE_URL!, {
+ *   cookies: {
+ *     get: (name) => cookieStore.get(name)?.value,
+ *     set: (name, value, options) => cookieStore.set(name, value, options),
+ *     delete: (name) => cookieStore.delete(name),
+ *   },
+ * });
+ */
+export function createServerClient(url, options) {
+    return new ServerEdgeBase(url, options);
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;AAEH,gBAAgB;AAChB,OAAO,EAAE,cAAc,EAAmB,MAAM,oBAAoB,CAAC;AAErE,4CAA4C;AAC5C,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAO/D,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,kBAAkB;AAElB,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAGpD;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,UAAU,kBAAkB,CAAC,GAAW,EAAE,OAA4B;IAC1E,OAAO,IAAI,cAAc,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;AAC1C,CAAC"}

package/dist/server-client.d.ts

@@ -0,0 +1,78 @@
+/**
+ * ServerEdgeBase — SSR-optimized EdgeBase client.
+ *
+ * Uses cookie-based token management instead of localStorage.
+ * Provides db(), storage, and functions access on behalf of the authenticated user.
+ *
+ * Usage:
+ * ```ts
+ * import { createServerClient } from '@edge-base/ssr';
+ * const client = createServerClient('https://my-app.edgebase.fun', {
+ *   cookies: cookieStore,
+ * });
+ * const posts = await client.db('shared').table('posts').get();
+ * const health = await client.functions.get('public/health');
+ * ```
+ */
+import { DbRef, StorageClient, FunctionsClient } from '@edge-base/core';
+import type { ITokenPair } from '@edge-base/core';
+import type { ServerClientOptions } from './types.js';
+/** Decoded user from JWT access token (payload only, no verification). */
+export interface ServerUser {
+    id: string;
+    email?: string;
+    displayName?: string;
+    avatarUrl?: string;
+    role?: string;
+    isAnonymous?: boolean;
+    emailVisibility?: string;
+    custom?: Record<string, unknown>;
+}
+/**
+ * Server-side EdgeBase client for SSR environments.
+ *
+ * Exposes: db(), storage, functions, getUser(), getSession().
+ * Does NOT expose: auth signIn/signUp (client-side only), database-live, room, push.
+ */
+export declare class ServerEdgeBase {
+    readonly storage: StorageClient;
+    readonly functions: FunctionsClient;
+    private httpClient;
+    private tokenManager;
+    private baseUrl;
+    private core;
+    constructor(url: string, options: ServerClientOptions);
+    /**
+     * Access a database by namespace + optional instance ID.
+     *
+     * @example
+     * const posts = await client.db('shared').table('posts').get();
+     * const docs = await client.db('workspace', 'ws-456').table('documents').get();
+     */
+    db(namespace: string, id?: string): DbRef;
+    /**
+     * Get the current authenticated user from the cookie token.
+     * Decodes the JWT payload without server verification.
+     * Returns null if no valid access token is present.
+     */
+    getUser(): ServerUser | null;
+    /**
+     * Get the current session tokens.
+     * Useful for passing tokens to client-side hydration.
+     */
+    getSession(): {
+        accessToken: string | null;
+        refreshToken: string | null;
+    };
+    /**
+     * Set session tokens (e.g., after OAuth callback on the server).
+     * Writes tokens to cookies for subsequent requests.
+     */
+    setSession(tokens: ITokenPair): void;
+    /**
+     * Clear session tokens (server-side sign out).
+     * Removes token cookies.
+     */
+    clearSession(): void;
+}
+//# sourceMappingURL=server-client.d.ts.map

package/dist/server-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server-client.d.ts","sourceRoot":"","sources":["../src/server-client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAEL,KAAK,EACL,aAAa,EACb,eAAe,EAIhB,MAAM,iBAAiB,CAAC;AACzB,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAElD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAEtD,0EAA0E;AAC1E,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAED;;;;;GAKG;AACH,qBAAa,cAAc;IACzB,QAAQ,CAAC,OAAO,EAAE,aAAa,CAAC;IAChC,QAAQ,CAAC,SAAS,EAAE,eAAe,CAAC;IACpC,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,YAAY,CAAqB;IACzC,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,IAAI,CAAe;gBACf,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,mBAAmB;IAgBrD;;;;;;OAMG;IACH,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,EAAE,CAAC,EAAE,MAAM,GAAG,KAAK;IAIzC;;;;OAIG;IACH,OAAO,IAAI,UAAU,GAAG,IAAI;IAM5B;;;OAGG;IACH,UAAU,IAAI;QAAE,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;QAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CAAA;KAAE;IAOzE;;;OAGG;IACH,UAAU,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI;IAIpC;;;OAGG;IACH,YAAY,IAAI,IAAI;CAIrB"}

package/dist/server-client.js

@@ -0,0 +1,123 @@
+/**
+ * ServerEdgeBase — SSR-optimized EdgeBase client.
+ *
+ * Uses cookie-based token management instead of localStorage.
+ * Provides db(), storage, and functions access on behalf of the authenticated user.
+ *
+ * Usage:
+ * ```ts
+ * import { createServerClient } from '@edge-base/ssr';
+ * const client = createServerClient('https://my-app.edgebase.fun', {
+ *   cookies: cookieStore,
+ * });
+ * const posts = await client.db('shared').table('posts').get();
+ * const health = await client.functions.get('public/health');
+ * ```
+ */
+import { HttpClient, DbRef, StorageClient, FunctionsClient, ContextManager, DefaultDbApi, HttpClientAdapter, } from '@edge-base/core';
+import { CookieTokenManager } from './cookie-token-manager.js';
+/**
+ * Server-side EdgeBase client for SSR environments.
+ *
+ * Exposes: db(), storage, functions, getUser(), getSession().
+ * Does NOT expose: auth signIn/signUp (client-side only), database-live, room, push.
+ */
+export class ServerEdgeBase {
+    storage;
+    functions;
+    httpClient;
+    tokenManager;
+    baseUrl;
+    core;
+    constructor(url, options) {
+        this.baseUrl = url.replace(/\/$/, '');
+        this.tokenManager = new CookieTokenManager(options.cookies, options.cookieOptions);
+        this.httpClient = new HttpClient({
+            baseUrl: this.baseUrl,
+            tokenManager: options.serviceKey ? undefined : this.tokenManager,
+            serviceKey: options.serviceKey,
+            contextManager: new ContextManager(),
+        });
+        this.core = new DefaultDbApi(new HttpClientAdapter(this.httpClient));
+        this.storage = new StorageClient(this.httpClient, this.core);
+        this.functions = new FunctionsClient(this.httpClient);
+    }
+    /**
+     * Access a database by namespace + optional instance ID.
+     *
+     * @example
+     * const posts = await client.db('shared').table('posts').get();
+     * const docs = await client.db('workspace', 'ws-456').table('documents').get();
+     */
+    db(namespace, id) {
+        return new DbRef(this.core, namespace, id, undefined, undefined);
+    }
+    /**
+     * Get the current authenticated user from the cookie token.
+     * Decodes the JWT payload without server verification.
+     * Returns null if no valid access token is present.
+     */
+    getUser() {
+        const token = this.tokenManager.getAccessToken();
+        if (!token)
+            return null;
+        return decodeJwtPayload(token);
+    }
+    /**
+     * Get the current session tokens.
+     * Useful for passing tokens to client-side hydration.
+     */
+    getSession() {
+        return {
+            accessToken: this.tokenManager.getAccessToken(),
+            refreshToken: this.tokenManager.getRefreshToken(),
+        };
+    }
+    /**
+     * Set session tokens (e.g., after OAuth callback on the server).
+     * Writes tokens to cookies for subsequent requests.
+     */
+    setSession(tokens) {
+        this.tokenManager.setTokens(tokens);
+    }
+    /**
+     * Clear session tokens (server-side sign out).
+     * Removes token cookies.
+     */
+    clearSession() {
+        this.tokenManager.clearTokens();
+    }
+}
+// ─── JWT Decode (payload only, no verification) ───
+function decodeJwtPayload(token) {
+    try {
+        const parts = token.split('.');
+        if (parts.length !== 3)
+            return null;
+        // Base64url decode the payload
+        const payload = parts[1]
+            .replace(/-/g, '+')
+            .replace(/_/g, '/');
+        const padded = payload + '='.repeat((4 - (payload.length % 4)) % 4);
+        // Use TextDecoder for portable base64 decoding (Node 16+, Deno, Bun, Edge)
+        const bytes = Uint8Array.from(
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        globalThis.atob(padded), (c) => c.charCodeAt(0));
+        const json = new TextDecoder().decode(bytes);
+        const data = JSON.parse(json);
+        return {
+            id: data.sub ?? data.id,
+            email: data.email,
+            displayName: data.displayName,
+            avatarUrl: data.avatarUrl,
+            role: data.role,
+            isAnonymous: data.isAnonymous,
+            emailVisibility: data.emailVisibility,
+            custom: data.custom,
+        };
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=server-client.js.map

package/dist/server-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server-client.js","sourceRoot":"","sources":["../src/server-client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EACL,UAAU,EACV,KAAK,EACL,aAAa,EACb,eAAe,EACf,cAAc,EACd,YAAY,EACZ,iBAAiB,GAClB,MAAM,iBAAiB,CAAC;AAEzB,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAe/D;;;;;GAKG;AACH,MAAM,OAAO,cAAc;IAChB,OAAO,CAAgB;IACvB,SAAS,CAAkB;IAC5B,UAAU,CAAa;IACvB,YAAY,CAAqB;IACjC,OAAO,CAAS;IAChB,IAAI,CAAe;IAC3B,YAAY,GAAW,EAAE,OAA4B;QACnD,IAAI,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,YAAY,GAAG,IAAI,kBAAkB,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;QAEnF,IAAI,CAAC,UAAU,GAAG,IAAI,UAAU,CAAC;YAC/B,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,YAAY,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY;YAChE,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,cAAc,EAAE,IAAI,cAAc,EAAE;SACrC,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,GAAG,IAAI,YAAY,CAAC,IAAI,iBAAiB,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;QACrE,IAAI,CAAC,OAAO,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7D,IAAI,CAAC,SAAS,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IACxD,CAAC;IAED;;;;;;OAMG;IACH,EAAE,CAAC,SAAiB,EAAE,EAAW;QAC/B,OAAO,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,EAAE,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;IACnE,CAAC;IAED;;;;OAIG;IACH,OAAO;QACL,MAAM,KAAK,GAAG,IAAI,CAAC,YAAY,CAAC,cAAc,EAAmB,CAAC;QAClE,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,OAAO,gBAAgB,CAAC,KAAK,CAAC,CAAC;IACjC,CAAC;IAED;;;OAGG;IACH,UAAU;QACR,OAAO;YACL,WAAW,EAAE,IAAI,CAAC,YAAY,CAAC,cAAc,EAAmB;YAChE,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,eAAe,EAAE;SAClD,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,UAAU,CAAC,MAAkB;QAC3B,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACtC,CAAC;IAED;;;OAGG;IACH,YAAY;QACV,IAAI,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;IAClC,CAAC;CAEF;AAED,qDAAqD;AAErD,SAAS,gBAAgB,CAAC,KAAa;IACrC,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAEpC,+BAA+B;QAC/B,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC;aACrB,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC;aAClB,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QACtB,MAAM,MAAM,GAAG,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QACpE,2EAA2E;QAC3E,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI;QAC3B,8DAA8D;QAC7D,UAAkB,CAAC,IAAI,CAAC,MAAM,CAAW,EAC1C,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAC/B,CAAC;QACF,MAAM,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAE9B,OAAO;YACL,EAAE,EAAE,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,EAAE;YACvB,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,MAAM,EAAE,IAAI,CAAC,MAAM;SACpB,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,42 @@
+/**
+ * @edge-base/ssr — Type definitions for cookie-based SSR authentication.
+ */
+/** Options for cookie serialization. */
+export interface CookieOptions {
+    httpOnly?: boolean;
+    secure?: boolean;
+    sameSite?: 'strict' | 'lax' | 'none';
+    maxAge?: number;
+    path?: string;
+    domain?: string;
+}
+/**
+ * Abstract cookie store interface.
+ *
+ * Implementations:
+ * - Next.js App Router: `cookies()` from `next/headers`
+ * - Next.js Pages Router: wrapper around `nookies` or `req.cookies` + `res.setHeader`
+ * - Nuxt 3: wrapper around `useCookie` or `getCookie`/`setCookie` from `h3`
+ * - SvelteKit: wrapper around `cookies` from `event`
+ */
+export interface CookieStore {
+    /** Get a cookie value by name. Returns null/undefined if not set. */
+    get(name: string): string | null | undefined;
+    /** Set a cookie with the given name, value, and options. */
+    set(name: string, value: string, options?: CookieOptions): void;
+    /** Delete a cookie by name. */
+    delete(name: string): void;
+}
+/** Options for creating a server-side EdgeBase client. */
+export interface ServerClientOptions {
+    /** Cookie store for token persistence across requests. */
+    cookies: CookieStore;
+    /** Override default cookie options (httpOnly, secure, sameSite, path). */
+    cookieOptions?: Partial<CookieOptions>;
+    /**
+     * Service key for admin-level access.
+     * When provided, requests use the service key instead of user tokens.
+     */
+    serviceKey?: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,wCAAwC;AACxC,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;IACrC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;;;GAQG;AACH,MAAM,WAAW,WAAW;IAC1B,qEAAqE;IACrE,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC;IAC7C,4DAA4D;IAC5D,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,aAAa,GAAG,IAAI,CAAC;IAChE,+BAA+B;IAC/B,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;CAC5B;AAED,0DAA0D;AAC1D,MAAM,WAAW,mBAAmB;IAClC,0DAA0D;IAC1D,OAAO,EAAE,WAAW,CAAC;IACrB,0EAA0E;IAC1E,aAAa,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;IACvC;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB"}

package/dist/types.js

@@ -0,0 +1,5 @@
+/**
+ * @edge-base/ssr — Type definitions for cookie-based SSR authentication.
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG"}

package/llms.txt

@@ -0,0 +1,96 @@
+# EdgeBase JS SSR SDK
+
+Use this file as a quick-reference contract for AI coding assistants working with `@edge-base/ssr`.
+
+## Package Boundary
+
+Use `@edge-base/ssr` for server-side code that should act as the current cookie-authenticated user.
+
+Do not use it for browser bundles or client-side sign-in UI. Use `@edge-base/web` there. Do not use it for Service Key admin work; use `@edge-base/admin`.
+
+## Source Of Truth
+
+- Package README: https://github.com/edge-base/edgebase/blob/main/packages/sdk/js/packages/ssr/README.md
+- Next.js guide: https://edgebase.fun/docs/sdks/nextjs
+- Client vs server SDKs: https://edgebase.fun/docs/sdks/client-vs-server
+- Authentication: https://edgebase.fun/docs/authentication
+- Database client SDK: https://edgebase.fun/docs/database/client-sdk
+
+## Canonical Examples
+
+### Create a server client
+
+```ts
+import { createServerClient } from '@edge-base/ssr';
+
+const client = createServerClient(process.env.EDGEBASE_URL!, {
+  cookies: {
+    get: (name) => cookieStore.get(name)?.value,
+    set: (name, value, options) => cookieStore.set(name, value, options),
+    delete: (name) => cookieStore.delete(name),
+  },
+});
+```
+
+### Read the current user
+
+```ts
+const user = client.getUser();
+```
+
+### Query data on the server
+
+```ts
+const posts = await client
+  .db('app')
+  .table('posts')
+  .where('published', '==', true)
+  .getList();
+```
+
+### Write cookies after an OAuth callback
+
+```ts
+client.setSession({
+  accessToken,
+  refreshToken,
+});
+```
+
+### Clear the session
+
+```ts
+client.clearSession();
+```
+
+## Hard Rules
+
+- `createServerClient(url, options)` requires a cookie adapter
+- the cookie adapter must implement `get(name)`, `set(name, value, options?)`, and `delete(name)`
+- `getUser()` is synchronous and returns decoded JWT payload data or `null`
+- `getSession()` is synchronous
+- `setSession()` and `clearSession()` are synchronous cookie operations
+- `client.db(namespace, id?)` takes the instance id positionally
+- this package exposes `db`, `storage`, and `functions`
+- this package does not expose browser auth flows, database live, rooms, or push
+
+## Common Mistakes
+
+- do not call browser-only auth methods like `client.auth.signIn()` here; this package does not expose them
+- do not use `@edge-base/ssr` in client components
+- do not confuse `getUser()` with a server-side verification call; it decodes the cookie token payload
+- if you need privileged admin access or Service Key behavior, use `@edge-base/admin`
+- if you need browser auth state listeners or realtime UI, use `@edge-base/web`
+
+## Quick Reference
+
+```text
+createServerClient(url, { cookies, cookieOptions?, serviceKey? }) -> ServerEdgeBase
+client.getUser()                                                  -> ServerUser | null
+client.getSession()                                               -> { accessToken, refreshToken }
+client.setSession(tokens)                                         -> void
+client.clearSession()                                             -> void
+client.db(namespace, id?)                                         -> DbRef
+client.storage                                                    -> StorageClient
+client.functions                                                  -> FunctionsClient
+```

package/package.json

@@ -0,0 +1,48 @@
+{
+    "name": "@edge-base/ssr",
+    "version": "0.1.1",
+    "description": "EdgeBase SSR helpers — cookie-based token management for server-side rendering",
+    "license": "MIT",
+    "repository": {
+        "type": "git",
+        "url": "https://github.com/edge-base/edgebase.git",
+        "directory": "packages/sdk/js/packages/ssr"
+    },
+    "homepage": "https://edgebase.fun",
+    "bugs": "https://github.com/edge-base/edgebase/issues",
+    "keywords": [
+        "edgebase",
+        "ssr",
+        "server-side-rendering",
+        "cookies",
+        "auth"
+    ],
+    "type": "module",
+    "main": "./dist/index.js",
+    "types": "./dist/index.d.ts",
+    "exports": {
+        ".": {
+            "types": "./dist/index.d.ts",
+            "import": "./dist/index.js"
+        }
+    },
+    "sideEffects": false,
+    "files": [
+        "dist",
+        "llms.txt"
+    ],
+    "publishConfig": {
+        "access": "public"
+    },
+    "scripts": {
+        "build": "tsc",
+        "dev": "tsc --watch",
+        "prepack": "pnpm run build"
+    },
+    "dependencies": {
+        "@edge-base/core": "workspace:*"
+    },
+    "devDependencies": {
+        "typescript": "^5.7.0"
+    }
+}