@ereo/auth 0.1.6

package/README.md

@@ -0,0 +1,172 @@
+# @ereo/auth
+
+Authentication plugin for the EreoJS framework. Provides authentication and authorization with multiple providers, JWT/cookie-based sessions, and role-based access control.
+
+## Installation
+
+```bash
+bun add @ereo/auth
+```
+
+## Quick Start
+
+```typescript
+import { defineConfig } from '@ereo/core';
+import { createAuthPlugin, credentials, github } from '@ereo/auth';
+
+export default defineConfig({
+  plugins: [
+    createAuthPlugin({
+      session: {
+        secret: process.env.AUTH_SECRET!,
+        strategy: 'jwt',
+        maxAge: 7 * 24 * 60 * 60, // 7 days
+      },
+      providers: [
+        credentials({
+          authorize: async ({ email, password }) => {
+            // Validate credentials and return user
+            const user = await db.users.findByEmail(email);
+            if (user && await bcrypt.compare(password, user.passwordHash)) {
+              return { id: user.id, email: user.email, roles: user.roles };
+            }
+            return null;
+          },
+        }),
+        github({
+          clientId: process.env.GITHUB_CLIENT_ID!,
+          clientSecret: process.env.GITHUB_CLIENT_SECRET!,
+        }),
+      ],
+    }),
+  ],
+});
+```
+
+## Using Auth in Routes
+
+```typescript
+import { useAuth, requireAuth, getSession, getUser } from '@ereo/auth';
+
+// Protect route with requireAuth
+export const config = {
+  ...requireAuth({ redirect: '/login' }),
+};
+
+// Access auth in loader/action
+export async function loader({ context }) {
+  const auth = useAuth(context);
+
+  if (auth.isAuthenticated()) {
+    return { user: auth.getUser() };
+  }
+
+  return { user: null };
+}
+
+// Sign in
+export async function action({ request, context }) {
+  const auth = useAuth(context);
+  const formData = await request.formData();
+
+  const session = await auth.signIn('credentials', {
+    email: formData.get('email'),
+    password: formData.get('password'),
+  });
+
+  return new Response(null, {
+    status: 302,
+    headers: {
+      Location: '/dashboard',
+      'Set-Cookie': auth.getCookieHeader()!,
+    },
+  });
+}
+```
+
+## Features
+
+- **Multiple Auth Providers**: `credentials()`, `github()`, `google()`, `discord()`, `oauth()`, `apiKey()`, `mock()`
+- **Session Strategies**: JWT (stateless), cookie (server-side), or hybrid
+- **Role-Based Access Control**: `hasRole()`, `hasAnyRole()`, `hasAllRoles()`
+- **Route Protection**: `requireAuth()`, `requireRoles()`, `optionalAuth()`, `withAuth()`
+- **Session Callbacks**: `onSessionCreated`, `onSessionValidate`, `onSignIn`, `onSignOut`, `jwt`, `session`
+- **Cookie Configuration**: Secure defaults with full customization
+- **TypeScript Support**: Full type safety with exported interfaces
+
+## Exports
+
+```typescript
+// Plugin and utilities
+import {
+  createAuthPlugin,
+  requireAuth,
+  optionalAuth,
+  requireRoles,
+  useAuth,
+  getSession,
+  getUser,
+  withAuth,
+  getOAuthUrl,
+  handleOAuthCallback,
+} from '@ereo/auth';
+
+// Providers
+import {
+  credentials,
+  github,
+  google,
+  discord,
+  oauth,
+  mock,
+  apiKey,
+} from '@ereo/auth';
+
+// Types
+import type {
+  User,
+  Session,
+  JWTPayload,
+  AuthProvider,
+  SessionStrategy,
+  SessionConfig,
+  AuthConfig,
+  AuthContext,
+} from '@ereo/auth';
+```
+
+## AuthContext Methods
+
+| Method | Description |
+|--------|-------------|
+| `session` | Current session object or null |
+| `signIn(provider, credentials)` | Sign in with provider |
+| `signOut()` | Sign out current user |
+| `isAuthenticated()` | Check if authenticated |
+| `hasRole(role)` | Check for specific role |
+| `hasAnyRole(roles)` | Check for any of the roles |
+| `hasAllRoles(roles)` | Check for all roles |
+| `getUser()` | Get current user object |
+| `getToken()` | Get JWT token |
+| `refreshSession()` | Refresh session expiration |
+| `getCookieHeader()` | Get Set-Cookie header for response |
+
+## Session Strategies
+
+| Strategy | Description |
+|----------|-------------|
+| `'jwt'` | Stateless - session data in signed JWT |
+| `'cookie'` | Server-side - session ID in cookie, data in memory |
+| `'hybrid'` | JWT with server-side validation for revocation |
+
+## Documentation
+
+For full documentation, see [Auth Plugin API Reference](https://ereojs.dev/docs/api/plugins/auth).
+
+## Part of EreoJS
+
+This package is part of the [EreoJS](https://github.com/ereojs/ereo) monorepo - a modern full-stack JavaScript framework.
+
+## License
+
+MIT

package/dist/auth.d.ts

@@ -0,0 +1,220 @@
+/**
+ * @ereo/auth - Authentication plugin for EreoJS framework
+ *
+ * Provides authentication and authorization with multiple providers,
+ * JWT-based sessions, and role-based access control.
+ */
+import type { Plugin, RouteConfig, AppContext } from '@ereo/core';
+/** User data returned from auth providers */
+export interface User {
+    /** User ID */
+    id: string;
+    /** User email */
+    email?: string;
+    /** User name */
+    name?: string;
+    /** User roles for RBAC */
+    roles?: string[];
+    /** Custom user data */
+    [key: string]: unknown;
+}
+/** User session data */
+export interface Session {
+    /** User ID */
+    userId: string;
+    /** User email */
+    email?: string;
+    /** User name */
+    name?: string;
+    /** User roles */
+    roles?: string[];
+    /** Custom claims */
+    claims?: Record<string, unknown>;
+    /** Session expiration */
+    expiresAt?: Date;
+    /** Session ID for in-memory tracking */
+    sessionId?: string;
+    /** Issued at timestamp */
+    issuedAt?: Date;
+    /** Provider used for authentication */
+    provider?: string;
+}
+/** JWT payload structure */
+export interface JWTPayload {
+    /** Subject (user ID) */
+    sub: string;
+    /** Issued at (Unix timestamp) */
+    iat: number;
+    /** Expiration (Unix timestamp) */
+    exp: number;
+    /** Session ID */
+    sid?: string;
+    /** Custom claims */
+    [key: string]: unknown;
+}
+/** Authentication provider configuration */
+export interface AuthProvider {
+    /** Provider ID */
+    id: string;
+    /** Provider name */
+    name: string;
+    /** Provider type */
+    type: 'credentials' | 'oauth';
+    /** Authorize/authenticate user */
+    authorize(credentials: Record<string, unknown>): Promise<User | null>;
+    /** Get OAuth authorization URL (for OAuth providers) */
+    getAuthorizationUrl?(state: string, redirectUri: string): string;
+    /** Handle OAuth callback (for OAuth providers) */
+    handleCallback?(params: {
+        code: string;
+        state: string;
+        redirectUri: string;
+    }): Promise<User | null>;
+}
+/** Session strategy type */
+export type SessionStrategy = 'jwt' | 'cookie' | 'hybrid';
+/** Session configuration */
+export interface SessionConfig {
+    /** Session strategy: 'jwt', 'cookie', or 'hybrid' */
+    strategy?: SessionStrategy;
+    /** Session max age in seconds (default: 7 days) */
+    maxAge?: number;
+    /** Secret for signing JWT/cookies */
+    secret: string;
+    /** Session update age - refresh session if older than this (seconds) */
+    updateAge?: number;
+}
+/** Auth plugin configuration */
+export interface AuthConfig {
+    /** Session secret for signing cookies/JWT (deprecated, use session.secret) */
+    secret?: string;
+    /** Session duration in seconds (deprecated, use session.maxAge) */
+    sessionDuration?: number;
+    /** Authentication providers */
+    providers?: AuthProvider[];
+    /** Session configuration */
+    session?: SessionConfig;
+    /** Callbacks for customization */
+    callbacks?: {
+        /** Called when session is created */
+        onSessionCreated?: (session: Session) => Promise<Session> | Session;
+        /** Called to validate session */
+        onSessionValidate?: (session: Session) => Promise<boolean> | boolean;
+        /** Called when user signs in */
+        onSignIn?: (user: User) => Promise<void> | void;
+        /** Called when user signs out */
+        onSignOut?: (session: Session) => Promise<void> | void;
+        /** Called to generate JWT payload from session */
+        jwt?: (params: {
+            token: JWTPayload;
+            user?: User;
+            session?: Session;
+        }) => Promise<JWTPayload> | JWTPayload;
+        /** Called to generate session from JWT payload */
+        session?: (params: {
+            token: JWTPayload;
+            session: Session;
+        }) => Promise<Session> | Session;
+    };
+    /** Cookie configuration */
+    cookie?: {
+        name?: string;
+        secure?: boolean;
+        sameSite?: 'strict' | 'lax' | 'none';
+        domain?: string;
+        path?: string;
+        httpOnly?: boolean;
+    };
+    /** Debug mode */
+    debug?: boolean;
+}
+/** Auth context added to request context */
+export interface AuthContext {
+    /** Current session (if authenticated) */
+    session: Session | null;
+    /** Sign in with credentials */
+    signIn: (provider: string, credentials: Record<string, unknown>) => Promise<Session>;
+    /** Sign out current user */
+    signOut: () => Promise<void>;
+    /** Check if user is authenticated */
+    isAuthenticated: () => boolean;
+    /** Check if user has role */
+    hasRole: (role: string) => boolean;
+    /** Check if user has any of the roles */
+    hasAnyRole: (roles: string[]) => boolean;
+    /** Check if user has all of the roles */
+    hasAllRoles: (roles: string[]) => boolean;
+    /** Get the current user */
+    getUser: () => User | null;
+    /** Get session token (JWT) */
+    getToken: () => Promise<string | null>;
+    /** Refresh the session */
+    refreshSession: () => Promise<Session | null>;
+    /** Get Set-Cookie header value for response */
+    getCookieHeader: () => string | null;
+}
+/** Create the auth plugin */
+export declare function createAuthPlugin(config: AuthConfig): Plugin;
+/**
+ * Create auth middleware for route protection.
+ */
+export declare function requireAuth(options?: {
+    redirect?: string;
+    roles?: string[];
+    permissions?: string[];
+    unauthorizedResponse?: {
+        status: number;
+        body: unknown;
+    };
+}): Partial<RouteConfig>;
+/**
+ * Create optional auth middleware (allows anonymous but adds auth context).
+ */
+export declare function optionalAuth(): Partial<RouteConfig>;
+/**
+ * Create role-based auth middleware.
+ */
+export declare function requireRoles(roles: string[], options?: {
+    redirect?: string;
+    requireAll?: boolean;
+}): Partial<RouteConfig>;
+/**
+ * Helper to use auth in loaders/actions.
+ */
+export declare function useAuth(context: AppContext): AuthContext;
+/**
+ * Get the current session from context (or null if not authenticated).
+ */
+export declare function getSession(context: AppContext): Session | null;
+/**
+ * Get the current user from context (or null if not authenticated).
+ */
+export declare function getUser(context: AppContext): User | null;
+/**
+ * Create a protected route handler that requires authentication.
+ */
+export declare function withAuth<T>(handler: (args: {
+    request: Request;
+    context: AppContext;
+    auth: AuthContext;
+    params: Record<string, string>;
+}) => T | Promise<T>, options?: {
+    roles?: string[];
+}): (args: {
+    request: Request;
+    context: AppContext;
+    params: Record<string, string>;
+}) => Promise<T>;
+/**
+ * Get OAuth authorization URL for a provider.
+ */
+export declare function getOAuthUrl(context: AppContext, providerId: string, redirectUri: string): string;
+/**
+ * Handle OAuth callback.
+ */
+export declare function handleOAuthCallback(context: AppContext, providerId: string, params: {
+    code: string;
+    state: string;
+    redirectUri: string;
+}): Promise<Session>;
+//# sourceMappingURL=auth.d.ts.map

package/dist/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,UAAU,EAAmC,MAAM,YAAY,CAAC;AAMnG,6CAA6C;AAC7C,MAAM,WAAW,IAAI;IACnB,cAAc;IACd,EAAE,EAAE,MAAM,CAAC;IACX,iBAAiB;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gBAAgB;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,uBAAuB;IACvB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,wBAAwB;AACxB,MAAM,WAAW,OAAO;IACtB,cAAc;IACd,MAAM,EAAE,MAAM,CAAC;IACf,iBAAiB;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gBAAgB;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,iBAAiB;IACjB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,oBAAoB;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,yBAAyB;IACzB,SAAS,CAAC,EAAE,IAAI,CAAC;IACjB,wCAAwC;IACxC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0BAA0B;IAC1B,QAAQ,CAAC,EAAE,IAAI,CAAC;IAChB,uCAAuC;IACvC,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,4BAA4B;AAC5B,MAAM,WAAW,UAAU;IACzB,wBAAwB;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,iCAAiC;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,kCAAkC;IAClC,GAAG,EAAE,MAAM,CAAC;IACZ,iBAAiB;IACjB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,4CAA4C;AAC5C,MAAM,WAAW,YAAY;IAC3B,kBAAkB;IAClB,EAAE,EAAE,MAAM,CAAC;IACX,oBAAoB;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,IAAI,EAAE,aAAa,GAAG,OAAO,CAAC;IAC9B,kCAAkC;IAClC,SAAS,CAAC,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;IACtE,wDAAwD;IACxD,mBAAmB,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,MAAM,CAAC;IACjE,kDAAkD;IAClD,cAAc,CAAC,CAAC,MAAM,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;CACrG;AAED,4BAA4B;AAC5B,MAAM,MAAM,eAAe,GAAG,KAAK,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAE1D,4BAA4B;AAC5B,MAAM,WAAW,aAAa;IAC5B,qDAAqD;IACrD,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,mDAAmD;IACnD,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,qCAAqC;IACrC,MAAM,EAAE,MAAM,CAAC;IACf,wEAAwE;IACxE,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,gCAAgC;AAChC,MAAM,WAAW,UAAU;IACzB,8EAA8E;IAC9E,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,mEAAmE;IACnE,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,+BAA+B;IAC/B,SAAS,CAAC,EAAE,YAAY,EAAE,CAAC;IAC3B,4BAA4B;IAC5B,OAAO,CAAC,EAAE,aAAa,CAAC;IACxB,kCAAkC;IAClC,SAAS,CAAC,EAAE;QACV,qCAAqC;QACrC,gBAAgB,CAAC,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC;QACpE,iCAAiC;QACjC,iBAAiB,CAAC,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC;QACrE,gCAAgC;QAChC,QAAQ,CAAC,EAAE,CAAC,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;QAChD,iCAAiC;QACjC,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;QACvD,kDAAkD;QAClD,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE;YAAE,KAAK,EAAE,UAAU,CAAC;YAAC,IAAI,CAAC,EAAE,IAAI,CAAC;YAAC,OAAO,CAAC,EAAE,OAAO,CAAA;SAAE,KAAK,OAAO,CAAC,UAAU,CAAC,GAAG,UAAU,CAAC;QAC1G,kDAAkD;QAClD,OAAO,CAAC,EAAE,CAAC,MAAM,EAAE;YAAE,KAAK,EAAE,UAAU,CAAC;YAAC,OAAO,EAAE,OAAO,CAAA;SAAE,KAAK,OAAO,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC;KAC3F,CAAC;IACF,2BAA2B;IAC3B,MAAM,CAAC,EAAE;QACP,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,MAAM,CAAC,EAAE,OAAO,CAAC;QACjB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;QACrC,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,QAAQ,CAAC,EAAE,OAAO,CAAC;KACpB,CAAC;IACF,iBAAiB;IACjB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,4CAA4C;AAC5C,MAAM,WAAW,WAAW;IAC1B,yCAAyC;IACzC,OAAO,EAAE,OAAO,GAAG,IAAI,CAAC;IACxB,+BAA+B;IAC/B,MAAM,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;IACrF,4BAA4B;IAC5B,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7B,qCAAqC;IACrC,eAAe,EAAE,MAAM,OAAO,CAAC;IAC/B,6BAA6B;IAC7B,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,OAAO,CAAC;IACnC,yCAAyC;IACzC,UAAU,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,OAAO,CAAC;IACzC,yCAAyC;IACzC,WAAW,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,OAAO,CAAC;IAC1C,2BAA2B;IAC3B,OAAO,EAAE,MAAM,IAAI,GAAG,IAAI,CAAC;IAC3B,8BAA8B;IAC9B,QAAQ,EAAE,MAAM,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IACvC,0BAA0B;IAC1B,cAAc,EAAE,MAAM,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;IAC9C,+CAA+C;IAC/C,eAAe,EAAE,MAAM,MAAM,GAAG,IAAI,CAAC;CACtC;AA0RD,6BAA6B;AAC7B,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,CAkX3D;AAMD;;GAEG;AACH,wBAAgB,WAAW,CAAC,OAAO,CAAC,EAAE;IACpC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,oBAAoB,CAAC,EAAE;QACrB,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE,OAAO,CAAC;KACf,CAAC;CACH,GAAG,OAAO,CAAC,WAAW,CAAC,CAoBvB;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,OAAO,CAAC,WAAW,CAAC,CAMnD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,EAAE;IACtD,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB,GAAG,OAAO,CAAC,WAAW,CAAC,CAkBvB;AAMD;;GAEG;AACH,wBAAgB,OAAO,CAAC,OAAO,EAAE,UAAU,GAAG,WAAW,CAMxD;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,OAAO,EAAE,UAAU,GAAG,OAAO,GAAG,IAAI,CAG9D;AAED;;GAEG;AACH,wBAAgB,OAAO,CAAC,OAAO,EAAE,UAAU,GAAG,IAAI,GAAG,IAAI,CAGxD;AAED;;GAEG;AACH,wBAAgB,QAAQ,CAAC,CAAC,EACxB,OAAO,EAAE,CAAC,IAAI,EAAE;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,OAAO,EAAE,UAAU,CAAC;IAAC,IAAI,EAAE,WAAW,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAAE,KAAK,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,EAC/H,OAAO,CAAC,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,EAAE,CAAA;CAAE,GAC7B,CAAC,IAAI,EAAE;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,OAAO,EAAE,UAAU,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAAE,KAAK,OAAO,CAAC,CAAC,CAAC,CAcjG;AAMD;;GAEG;AACH,wBAAgB,WAAW,CACzB,OAAO,EAAE,UAAU,EACnB,UAAU,EAAE,MAAM,EAClB,WAAW,EAAE,MAAM,GAClB,MAAM,CAYR;AAED;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,UAAU,EACnB,UAAU,EAAE,MAAM,EAClB,MAAM,EAAE;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,MAAM,CAAA;CAAE,GAC3D,OAAO,CAAC,OAAO,CAAC,CAgBlB"}

package/dist/index.d.ts

@@ -0,0 +1,15 @@
+/**
+ * @ereo/auth - Authentication plugin for EreoJS framework
+ *
+ * Provides complete authentication and authorization with:
+ * - Multiple auth providers (credentials, OAuth)
+ * - JWT-based session management
+ * - Cookie-based session management
+ * - Role-based access control (RBAC)
+ * - Protected routes middleware
+ */
+export { createAuthPlugin, requireAuth, optionalAuth, requireRoles, useAuth, getSession, getUser, withAuth, getOAuthUrl, handleOAuthCallback, } from './auth';
+export type { User, Session, JWTPayload, AuthProvider, SessionStrategy, SessionConfig, AuthConfig, AuthContext, } from './auth';
+export { credentials, github, google, discord, oauth, mock, apiKey, } from './providers/index';
+export type { CredentialsConfig, OAuthConfig, GitHubConfig, GoogleConfig, DiscordConfig, GenericOAuthConfig, OAuthTokens, MockConfig, ApiKeyConfig, } from './providers/index';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EACL,gBAAgB,EAChB,WAAW,EACX,YAAY,EACZ,YAAY,EACZ,OAAO,EACP,UAAU,EACV,OAAO,EACP,QAAQ,EACR,WAAW,EACX,mBAAmB,GACpB,MAAM,QAAQ,CAAC;AAGhB,YAAY,EACV,IAAI,EACJ,OAAO,EACP,UAAU,EACV,YAAY,EACZ,eAAe,EACf,aAAa,EACb,UAAU,EACV,WAAW,GACZ,MAAM,QAAQ,CAAC;AAGhB,OAAO,EACL,WAAW,EACX,MAAM,EACN,MAAM,EACN,OAAO,EACP,KAAK,EACL,IAAI,EACJ,MAAM,GACP,MAAM,mBAAmB,CAAC;AAG3B,YAAY,EACV,iBAAiB,EACjB,WAAW,EACX,YAAY,EACZ,YAAY,EACZ,aAAa,EACb,kBAAkB,EAClB,WAAW,EACX,UAAU,EACV,YAAY,GACb,MAAM,mBAAmB,CAAC"}