@explita/cloud-auth-client 0.0.1 → 0.0.2

package/README.md

@@ -78,7 +78,7 @@ export default function Layout({ children }: { children: React.ReactNode }) {
         loginPath: "/login", //default is /login
         signupPath: "/signup", //default is /signup
         resetPasswordPath: "/reset-password", //default is /reset-password
-        cookieOverride: cookieOverrideHandler, //included in the server-side functions and only needed if your app runs on localhost subdomain eg: http://console.localhost:3000
+        cookieOverride: cookieOverrideHandler, //included in the server-side functions and only needed if your app needs to use anything from @explita/cloud-auth-client/server, e.g: getServerSession() - only in Next.js
         disableLoading: true, //default is false
         excludedPaths: [], //array of strings of relative paths, all the paths mentioned above are already excluded.
       }}
@@ -165,7 +165,7 @@ LoggedOut; //check if user is logged out
 ```typescript
 "use server";
 
-import {
+import type {
   NewRole,
   ResetPasswordWithToken,
   ResetPasswordWithUserId,
@@ -227,6 +227,29 @@ export async function assignPermissions(roleId: string, permissions: string[]) {
 
 ---
 
+### Using Node/Express Backend
+
+If you're using a Node.js/Express backend and need to authenticate requests between your frontend and backend, use [cloud-auth-express](https://www.npmjs.com/package/@explita/cloud-auth-express) to verify tokens server-side.
+
+Make sure your frontend sends the token along in each request:
+
+```typescript
+import { getToken } from "@explita/cloud-auth-client";
+
+const response = await fetch("/api/your-route", {
+  method: "POST",
+  headers: {
+    Authorization: `Bearer ${getToken()}`,
+  },
+  body: JSON.stringify(data),
+});
+```
+
+> ⚠️ **Note:** This section only applies if you're doing separate frontend/backend communication.
+> If you're building a fullstack app (e.g. with Next.js using Server Actions or API routes), you don't need to handle this manually — it's already managed internally by cloud-auth-client.
+
+---
+
 ### Getting started
 
 Sign up for an account at [Explita Cloud](https://cloud.explita.ng), create a project, add auth service and get your API key from the dashboard and add it to your environment variables.

package/dist/components/change-password.js

@@ -44,7 +44,6 @@ const message_1 = require("./message");
 const must_login_1 = require("./must-login");
 const utils_1 = require("../lib/utils");
 function ChangePassword({ user, open, onOpenChange, onSubmit, onSuccess, }) {
-    var _a, _b;
     const { user: loggedInUser } = (0, auth_provider_1.useAuth)();
     const [state, handleSubmit, isPending] = (0, react_1.useActionState)(async function (prevState, formData) {
         if (!onSubmit || typeof onSubmit !== "function") {
@@ -55,11 +54,11 @@ function ChangePassword({ user, open, onOpenChange, onSubmit, onSuccess, }) {
         }
         try {
             const result = await onSubmit({
-                userId: (user === null || user === void 0 ? void 0 : user.id) || loggedInUser.id,
+                userId: user?.id || loggedInUser.id,
                 password: formData.get("password"),
                 confirmPassword: formData.get("confirmPassword"),
             });
-            onSuccess === null || onSuccess === void 0 ? void 0 : onSuccess();
+            onSuccess?.();
             return result;
         }
         catch (error) {
@@ -70,7 +69,10 @@ function ChangePassword({ user, open, onOpenChange, onSubmit, onSuccess, }) {
             onOpenChange(state);
             (0, utils_1.unstuckPointerEvents)();
         } },
-        react_1.default.createElement(dialog_1.DialogContent, null, !loggedInUser ? (react_1.default.createElement(must_login_1.MustLogin, { onOpenChange: onOpenChange })) : (react_1.default.createElement("form", { action: handleSubmit },
+        react_1.default.createElement(dialog_1.DialogContent, null, !loggedInUser ? (react_1.default.createElement(must_login_1.MustLogin, { onOpenChange: (state) => {
+                onOpenChange(state);
+                (0, utils_1.unstuckPointerEvents)();
+            } })) : (react_1.default.createElement("form", { action: handleSubmit },
             react_1.default.createElement(dialog_1.DialogHeader, null,
                 !user || loggedInUser.id === user.id ? (react_1.default.createElement(dialog_1.DialogTitle, null, "Change your password")) : (react_1.default.createElement(dialog_1.DialogTitle, null,
                     "Change password for ",
@@ -78,22 +80,22 @@ function ChangePassword({ user, open, onOpenChange, onSubmit, onSuccess, }) {
                     " ",
                     user.lastName)),
                 react_1.default.createElement(dialog_1.DialogDescription, null, "Please enter the new password"),
-                user && loggedInUser.id !== (user === null || user === void 0 ? void 0 : user.id) && (react_1.default.createElement(dialog_1.DialogDescription, { className: "ecpauth:mt-2 ecpauth:text-base" },
+                user && loggedInUser.id !== user?.id && (react_1.default.createElement(dialog_1.DialogDescription, { className: "ecpauth:mt-2 ecpauth:text-base" },
                     "Username: ",
-                    (user === null || user === void 0 ? void 0 : user.username) || (user === null || user === void 0 ? void 0 : user.email)))),
-            (state === null || state === void 0 ? void 0 : state.status) === "success" ? (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:mt-2 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:mt-2" })),
+                    user?.username || user?.email))),
+            state?.status === "success" ? (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:mt-2 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:mt-2" })),
             react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:flex-col ecpauth:gap-6 ecpauth:my-5" },
                 react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                     react_1.default.createElement(label_1.Label, { htmlFor: "password" }, "New Password"),
                     react_1.default.createElement(input_1.Input, { id: "password", type: "password", name: "password" }),
-                    react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                            ? (_a = state === null || state === void 0 ? void 0 : state.errors) === null || _a === void 0 ? void 0 : _a.password
+                    react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                            ? state?.errors?.password
                             : "" })),
                 react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                     react_1.default.createElement(label_1.Label, { htmlFor: "confirmPassword" }, "Confirm New Password"),
                     react_1.default.createElement(input_1.Input, { id: "confirmPassword", type: "password", name: "confirmPassword" }),
-                    react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                            ? (_b = state === null || state === void 0 ? void 0 : state.errors) === null || _b === void 0 ? void 0 : _b.confirmPassword
+                    react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                            ? state?.errors?.confirmPassword
                             : "" }))),
             react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:justify-end ecpauth:gap-2" },
                 react_1.default.createElement(button_1.Button, { type: "button", variant: "outline", onClick: () => onOpenChange(false) }, "Cancel"),

package/dist/components/login-form.js

@@ -45,7 +45,6 @@ const auth_provider_1 = require("../contexts/auth-provider");
 const loader_1 = require("./loader");
 const message_1 = require("./message");
 function Login({ className, ...props }) {
-    var _a, _b;
     const { login, error, computedRouteContext, isAuthenticated } = (0, auth_provider_1.useAuth)();
     const [authToken, setAuthToken] = react_1.default.useState(null);
     const { resetPasswordUrl, signupUrl, loginUrl } = computedRouteContext;
@@ -86,14 +85,14 @@ function Login({ className, ...props }) {
                     react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:flex-col ecpauth:gap-6" },
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "email" }, "Email/Username"),
-                            react_1.default.createElement(input_1.Input, { id: "email", type: "text", placeholder: "email@example.com", name: "email", defaultValue: state === null || state === void 0 ? void 0 : state.email }),
-                            react_1.default.createElement(message_1.Message, { message: (_a = error === null || error === void 0 ? void 0 : error.errors) === null || _a === void 0 ? void 0 : _a.email })),
+                            react_1.default.createElement(input_1.Input, { id: "email", type: "text", placeholder: "email@example.com", name: "email", defaultValue: state?.email }),
+                            react_1.default.createElement(message_1.Message, { message: error?.errors?.email })),
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:items-center" },
                                 react_1.default.createElement(label_1.Label, { htmlFor: "password" }, "Password"),
                                 resetPasswordUrl && (react_1.default.createElement("a", { href: resetPasswordUrl, className: "ecpauth:ml-auto ecpauth:inline-block ecpauth:text-sm ecpauth:underline-offset-4 ecpauth:hover:underline" }, "Forgot your password?"))),
                             react_1.default.createElement(input_1.Input, { id: "password", type: "password", name: "password" }),
-                            react_1.default.createElement(message_1.Message, { message: (_b = error === null || error === void 0 ? void 0 : error.errors) === null || _b === void 0 ? void 0 : _b.password })),
+                            react_1.default.createElement(message_1.Message, { message: error?.errors?.password })),
                         react_1.default.createElement(button_1.Button, { type: "submit", className: "ecpauth:w-full ecpauth:cursor-pointer", disabled: isPending }, isPending ? "Logging in..." : "Login")),
                     signupUrl && (react_1.default.createElement("div", { className: "ecpauth:mt-4 ecpauth:text-center ecpauth:text-sm" },
                         "Don't have an account?",

package/dist/components/optional-otp.js

@@ -55,10 +55,10 @@ function OptionalOTPInner({ user, onVerified, onCanceled }) {
         return null; // or a fallback UI
     }
     const otp = useOTP({
-        referenceId: user === null || user === void 0 ? void 0 : user.id,
+        referenceId: user?.id,
         onVerified,
         onCanceled,
-        sentTo: user === null || user === void 0 ? void 0 : user.email,
+        sentTo: user?.email,
         channel: "email",
     });
     (0, react_1.useEffect)(() => {

package/dist/components/reset-password.js

@@ -44,7 +44,6 @@ const label_1 = require("./ui/label");
 const message_1 = require("./message");
 const auth_provider_1 = require("../contexts/auth-provider");
 function ResetPassword({ className, onChangePassword, ...props }) {
-    var _a;
     const { sendPasswordResetRequest, computedRouteContext } = (0, auth_provider_1.useAuth)();
     const [token, setToken] = (0, react_1.useState)(null);
     const { loginUrl } = computedRouteContext;
@@ -77,7 +76,7 @@ function ResetPassword({ className, onChangePassword, ...props }) {
     }, undefined);
     (0, react_1.useEffect)(() => {
         let timer;
-        if ((state === null || state === void 0 ? void 0 : state.status) === "success") {
+        if (state?.status === "success") {
             if (loginUrl) {
                 timer = setTimeout(() => {
                     window.location.href = loginUrl;
@@ -87,21 +86,21 @@ function ResetPassword({ className, onChangePassword, ...props }) {
         return () => {
             clearTimeout(timer);
         };
-    }, [state === null || state === void 0 ? void 0 : state.status]);
+    }, [state?.status]);
     return (react_1.default.createElement("div", { className: (0, utils_1.cn)("ecpauth:flex ecpauth:flex-col ecpauth:gap-6 ecpauth:w-full ecpauth:max-w-sm", className), ...props },
         react_1.default.createElement(card_1.Card, null,
             react_1.default.createElement(card_1.CardHeader, null,
                 react_1.default.createElement(card_1.CardTitle, { className: "ecpauth:text-2xl" }, "Reset Password"),
                 react_1.default.createElement(card_1.CardDescription, null, "Provide your details to reset your password.")),
             react_1.default.createElement(card_1.CardContent, null,
-                (state === null || state === void 0 ? void 0 : state.status) === "success" ? (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:mb-4 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:mb-4" })),
+                state?.status === "success" ? (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:mb-4 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:mb-4" })),
                 !token ? (react_1.default.createElement("form", { action: handleSubmit },
                     react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:flex-col ecpauth:gap-6" },
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "email" }, "Email"),
                             react_1.default.createElement(input_1.Input, { id: "email", type: "email", placeholder: "email@example.com", name: "email", defaultValue: 
                                 //@ts-ignore
-                                (_a = state === null || state === void 0 ? void 0 : state.form) === null || _a === void 0 ? void 0 : _a.email })),
+                                state?.form?.email })),
                         react_1.default.createElement(button_1.Button, { type: "submit", className: "ecpauth:w-full ecpauth:cursor-pointer", disabled: isPending }, "Send Reset Password Link")))) : (react_1.default.createElement("form", { action: handleSubmit },
                     react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:flex-col ecpauth:gap-6" },
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },

package/dist/components/settings.js

@@ -16,7 +16,10 @@ function Settings({ open, onOpenChange, onToggle2FA }) {
             onOpenChange(state);
             (0, utils_1.unstuckPointerEvents)();
         } },
-        react_1.default.createElement(dialog_1.DialogContent, null, !user ? (react_1.default.createElement(must_login_1.MustLogin, { onOpenChange: onOpenChange })) : (react_1.default.createElement("div", { className: "ecpauth:relative" },
+        react_1.default.createElement(dialog_1.DialogContent, null, !user ? (react_1.default.createElement(must_login_1.MustLogin, { onOpenChange: (state) => {
+                onOpenChange(state);
+                (0, utils_1.unstuckPointerEvents)();
+            } })) : (react_1.default.createElement("div", { className: "ecpauth:relative" },
             react_1.default.createElement(dialog_1.DialogHeader, { className: "ecpauth:border-b ecpauth:border-gray-200 ecpauth:dark:border-gray-800 ecpauth:pb-2" },
                 react_1.default.createElement(dialog_1.DialogTitle, { className: "ecpauth:flex ecpauth:items-center ecpauth:justify-between" },
                     react_1.default.createElement("span", { className: "ecpauth:text-stone-800 ecpauth:dark:text-stone-50" }, "Account Settings")),

package/dist/components/signup-form.js

@@ -44,7 +44,6 @@ const label_1 = require("./ui/label");
 const message_1 = require("./message");
 const auth_provider_1 = require("../contexts/auth-provider");
 function Signup({ className, onSubmit, groupId, metaData, acceptUsername = true, ...props }) {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k;
     const { computedRouteContext } = (0, auth_provider_1.useAuth)();
     const { loginUrl } = computedRouteContext;
     const [state, handleSubmit, isPending] = (0, react_1.useActionState)(async function (prevState, formData) {
@@ -76,59 +75,59 @@ function Signup({ className, onSubmit, groupId, metaData, acceptUsername = true,
     }, undefined);
     (0, react_1.useEffect)(() => {
         let timer;
-        if ((state === null || state === void 0 ? void 0 : state.status) === "success" && loginUrl) {
+        if (state?.status === "success" && loginUrl) {
             timer = setTimeout(() => {
-                window.location.href = `${loginUrl}?authToken=${state === null || state === void 0 ? void 0 : state.authToken}`;
+                window.location.href = `${loginUrl}?authToken=${state?.authToken}`;
             }, 2000);
         }
         return () => {
             clearTimeout(timer);
         };
-    }, [state === null || state === void 0 ? void 0 : state.status, loginUrl]);
+    }, [state?.status, loginUrl]);
     return (react_1.default.createElement("div", { className: (0, utils_1.cn)("ecpauth:flex ecpauth:flex-col ecpauth:gap-6 ecpauth:w-full ecpauth:max-w-sm", className), ...props },
         react_1.default.createElement(card_1.Card, null,
             react_1.default.createElement(card_1.CardHeader, null,
                 react_1.default.createElement(card_1.CardTitle, { className: "ecpauth:text-2xl" }, "Sign Up"),
                 react_1.default.createElement(card_1.CardDescription, null, "Provide your details to sign up from your account.")),
             react_1.default.createElement(card_1.CardContent, null,
-                (state === null || state === void 0 ? void 0 : state.status) === "success" ? (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:mb-4 ecpauth:font-semibold ecpauth:text-lg", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:mb-4" })),
+                state?.status === "success" ? (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:mb-4 ecpauth:font-semibold ecpauth:text-lg", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:mb-4" })),
                 react_1.default.createElement("form", { action: handleSubmit },
                     react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:flex-col ecpauth:gap-6" },
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "firstName" }, "First Name"),
-                            react_1.default.createElement(input_1.Input, { id: "firstName", type: "text", placeholder: "First Name", name: "firstName", defaultValue: (_a = state === null || state === void 0 ? void 0 : state.form) === null || _a === void 0 ? void 0 : _a.firstName }),
-                            react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                                    ? (_b = state === null || state === void 0 ? void 0 : state.errors) === null || _b === void 0 ? void 0 : _b.firstName
+                            react_1.default.createElement(input_1.Input, { id: "firstName", type: "text", placeholder: "First Name", name: "firstName", defaultValue: state?.form?.firstName }),
+                            react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                                    ? state?.errors?.firstName
                                     : "" })),
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "lastName" }, "Last Name"),
-                            react_1.default.createElement(input_1.Input, { id: "lastName", type: "text", placeholder: "Last Name", name: "lastName", defaultValue: (_c = state === null || state === void 0 ? void 0 : state.form) === null || _c === void 0 ? void 0 : _c.lastName }),
-                            react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                                    ? (_d = state === null || state === void 0 ? void 0 : state.errors) === null || _d === void 0 ? void 0 : _d.lastName
+                            react_1.default.createElement(input_1.Input, { id: "lastName", type: "text", placeholder: "Last Name", name: "lastName", defaultValue: state?.form?.lastName }),
+                            react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                                    ? state?.errors?.lastName
                                     : "" })),
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "email" }, "Email"),
-                            react_1.default.createElement(input_1.Input, { id: "email", type: "email", placeholder: "email@example.com", name: "email", defaultValue: (_e = state === null || state === void 0 ? void 0 : state.form) === null || _e === void 0 ? void 0 : _e.email }),
-                            react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                                    ? (_f = state === null || state === void 0 ? void 0 : state.errors) === null || _f === void 0 ? void 0 : _f.email
+                            react_1.default.createElement(input_1.Input, { id: "email", type: "email", placeholder: "email@example.com", name: "email", defaultValue: state?.form?.email }),
+                            react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                                    ? state?.errors?.email
                                     : "" })),
                         acceptUsername && (react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "username" }, "Username"),
-                            react_1.default.createElement(input_1.Input, { id: "username", type: "text", placeholder: "Username", name: "username", defaultValue: (_g = state === null || state === void 0 ? void 0 : state.form) === null || _g === void 0 ? void 0 : _g.username }),
-                            react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                                    ? (_h = state === null || state === void 0 ? void 0 : state.errors) === null || _h === void 0 ? void 0 : _h.username
+                            react_1.default.createElement(input_1.Input, { id: "username", type: "text", placeholder: "Username", name: "username", defaultValue: state?.form?.username }),
+                            react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                                    ? state?.errors?.username
                                     : "" }))),
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "password" }, "Password"),
                             react_1.default.createElement(input_1.Input, { id: "password", type: "password", name: "password" }),
-                            react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                                    ? (_j = state === null || state === void 0 ? void 0 : state.errors) === null || _j === void 0 ? void 0 : _j.password
+                            react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                                    ? state?.errors?.password
                                     : "" })),
                         react_1.default.createElement("div", { className: "ecpauth:grid ecpauth:gap-2" },
                             react_1.default.createElement(label_1.Label, { htmlFor: "confirmPassword" }, "Confirm Password"),
                             react_1.default.createElement(input_1.Input, { id: "confirmPassword", type: "password", name: "confirmPassword" }),
-                            react_1.default.createElement(message_1.Message, { message: (state === null || state === void 0 ? void 0 : state.status) === "validation-error"
-                                    ? (_k = state === null || state === void 0 ? void 0 : state.errors) === null || _k === void 0 ? void 0 : _k.confirmPassword
+                            react_1.default.createElement(message_1.Message, { message: state?.status === "validation-error"
+                                    ? state?.errors?.confirmPassword
                                     : "" })),
                         react_1.default.createElement(button_1.Button, { type: "submit", className: "ecpauth:w-full ecpauth:cursor-pointer", disabled: isPending }, isPending ? "Signing up..." : "Sign Up")),
                     loginUrl && (react_1.default.createElement("div", { className: "ecpauth:mt-4 ecpauth:text-center ecpauth:text-sm" },

package/dist/components/toggle-2fa.js

@@ -64,15 +64,15 @@ function Toggle2FA({ onSubmit }) {
     return (react_1.default.createElement("div", { className: "ecpauth:text-stone-800 ecpauth:dark:text-stone-50" },
         isPending && react_1.default.createElement(loader_1.Loader, null),
         react_1.default.createElement("p", { className: "ecpauth:font-semibold ecpauth:text-lg ecpauth:mb-2" }, "Toggle Two Factor Authentication"),
-        (state === null || state === void 0 ? void 0 : state.status) === "success" ? (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:my-2 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:my-2" })),
+        state?.status === "success" ? (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:my-2 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:my-2" })),
         react_1.default.createElement("p", null,
             "This action will enable or disable 2FA on your account. If enabled, you\u2019ll be asked for a code sent to ",
-            react_1.default.createElement("strong", null, user === null || user === void 0 ? void 0 : user.email),
+            react_1.default.createElement("strong", null, user?.email),
             " during login."),
         react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:items-center ecpauth:justify-between ecpauth:py-3 ecpauth:my-3 ecpauth:border-y ecpauth:border-gray-200 ecpauth:dark:border-gray-800" },
             react_1.default.createElement("p", { className: "ecpauth:flex-1 ecpauth:mb-0" }, "You can enable or disable your Two Factor Authentication"),
             react_1.default.createElement("div", { className: "ecpauth:w-40 ecpauth:flex ecpauth:justify-end ecpauth:pe-3" },
-                react_1.default.createElement(switch_1.Switch, { checked: !!(user === null || user === void 0 ? void 0 : user.with2fa), onCheckedChange: () => startTransition(handleSubmit), disabled: !canUseOtp }))),
+                react_1.default.createElement(switch_1.Switch, { checked: !!user?.with2fa, onCheckedChange: () => startTransition(handleSubmit), disabled: !canUseOtp }))),
         !canUseOtp && (react_1.default.createElement("p", { className: "ecpauth:text-red-500 ecpauth:my-2 ecpauth:text-sm" },
             "2FA is not available. Please install",
             " ",

package/dist/components/toggle-account-status.js

@@ -40,6 +40,7 @@ const button_1 = require("./ui/button");
 const auth_provider_1 = require("../contexts/auth-provider");
 const message_1 = require("./message");
 const must_login_1 = require("./must-login");
+const utils_1 = require("../lib/utils");
 function ToggleAccountStatus({ user, open, onOpenChange, onSuccess, onSubmit, }) {
     const { user: loggedInUser } = (0, auth_provider_1.useAuth)();
     const [state, handleSubmit, isPending] = (0, react_1.useActionState)(async function () {
@@ -57,35 +58,41 @@ function ToggleAccountStatus({ user, open, onOpenChange, onSuccess, onSubmit, })
         }
         try {
             const result = await onSubmit(user.id);
-            onSuccess === null || onSuccess === void 0 ? void 0 : onSuccess();
+            onSuccess?.();
             return result;
         }
         catch (error) {
             console.log(error);
         }
     }, undefined);
-    return (react_1.default.createElement(dialog_1.Dialog, { open: open, onOpenChange: onOpenChange },
-        react_1.default.createElement(dialog_1.DialogContent, null, !loggedInUser ? (react_1.default.createElement(must_login_1.MustLogin, { onOpenChange: onOpenChange })) : (react_1.default.createElement("form", { action: handleSubmit },
+    return (react_1.default.createElement(dialog_1.Dialog, { open: open, onOpenChange: (state) => {
+            onOpenChange(state);
+            (0, utils_1.unstuckPointerEvents)();
+        } },
+        react_1.default.createElement(dialog_1.DialogContent, null, !loggedInUser ? (react_1.default.createElement(must_login_1.MustLogin, { onOpenChange: (state) => {
+                onOpenChange(state);
+                (0, utils_1.unstuckPointerEvents)();
+            } })) : (react_1.default.createElement("form", { action: handleSubmit },
             react_1.default.createElement(dialog_1.DialogHeader, null,
                 react_1.default.createElement(dialog_1.DialogTitle, null,
-                    "Toggle account status (", user === null || user === void 0 ? void 0 :
-                    user.firstName,
-                    " ", user === null || user === void 0 ? void 0 :
-                    user.lastName,
+                    "Toggle account status (",
+                    user?.firstName,
+                    " ",
+                    user?.lastName,
                     ")"),
-                (state === null || state === void 0 ? void 0 : state.status) === "success" ? (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:my-2 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state === null || state === void 0 ? void 0 : state.message, className: "ecpauth:my-2" }))),
+                state?.status === "success" ? (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:my-2 ecpauth:font-semibold ecpauth:text-base", variant: "success" })) : (react_1.default.createElement(message_1.Message, { message: state?.message, className: "ecpauth:my-2" }))),
             react_1.default.createElement(dialog_1.DialogDescription, { className: "ecpauth:flex ecpauth:flex-col ecpauth:gap-2 ecpauth:text-gray-700 ecpauth:dark:text-gray-50 ecpauth:mt-4" },
                 react_1.default.createElement("span", null,
                     "This action will",
                     " ",
-                    react_1.default.createElement("strong", null, (user === null || user === void 0 ? void 0 : user.isActive) ? "suspend" : "unsuspend"),
+                    react_1.default.createElement("strong", null, user?.isActive ? "suspend" : "unsuspend"),
                     " the user."),
                 react_1.default.createElement("span", null,
                     "You can always",
                     " ",
-                    react_1.default.createElement("strong", null, (user === null || user === void 0 ? void 0 : user.isActive) ? "unsuspend" : "suspend"),
+                    react_1.default.createElement("strong", null, user?.isActive ? "unsuspend" : "suspend"),
                     " the user if you change your mind.")),
             react_1.default.createElement(dialog_1.DialogFooter, { className: "ecpauth:flex ecpauth:justify-center ecpauth:gap-2 ecpauth:mt-4" },
                 react_1.default.createElement(button_1.Button, { type: "button", variant: "outline", onClick: () => onOpenChange(false) }, "Cancel"),
-                react_1.default.createElement(button_1.Button, { disabled: isPending, type: "submit" }, (user === null || user === void 0 ? void 0 : user.isActive) ? "Suspend" : "Unsuspend")))))));
+                react_1.default.createElement(button_1.Button, { disabled: isPending, type: "submit" }, user?.isActive ? "Suspend" : "Unsuspend")))))));
 }

package/dist/components/user-card.js

@@ -59,9 +59,9 @@ function Trigger() {
     return (react_1.default.createElement(dropdown_menu_1.DropdownMenuTrigger, { className: "ecpauth:flex ecpauth:items-center ecpauth:gap-2 ecpauth:p-1 ecpauth:pe-4 ecpauth:rounded-lg ecpauth:border ecpauth:border-gray-200 ecpauth:dark:border-gray-800 ecpauth:cursor-pointer ecpauth:bg-white ecpauth:hover:bg-gray-100 ecpauth:dark:bg-gray-800 ecpauth:dark:hover:bg-gray-800/80 ecpauth:dark:hover:text-white ecpauth:outline-none ecpauth:focus:outline-none" }, authLoading ? ("Please wait...") : (react_1.default.createElement(react_1.default.Fragment, null,
         react_1.default.createElement("div", { className: "ecpauth:size-12 ecpauth:rounded-full ecpauth:bg-gray-200" }),
         react_1.default.createElement("div", { className: "ecpauth:flex ecpauth:flex-col ecpauth:text-left" },
-            react_1.default.createElement("span", { className: "ecpauth:font-semibold ecpauth:text-stone-800 ecpauth:dark:text-stone-50" }, user === null || user === void 0 ? void 0 :
-                user.firstName,
-                " ", user === null || user === void 0 ? void 0 :
-                user.lastName),
-            react_1.default.createElement("span", { className: "ecpauth:text-sm ecpauth:text-gray-500" }, user === null || user === void 0 ? void 0 : user.email))))));
+            react_1.default.createElement("span", { className: "ecpauth:font-semibold ecpauth:text-stone-800 ecpauth:dark:text-stone-50" },
+                user?.firstName,
+                " ",
+                user?.lastName),
+            react_1.default.createElement("span", { className: "ecpauth:text-sm ecpauth:text-gray-500" }, user?.email))))));
 }

package/dist/contexts/auth-provider.js

@@ -42,7 +42,7 @@ const loader_1 = require("../components/loader");
 const error_1 = require("../lib/error");
 const use_token_refresher_1 = require("../hooks/use-token-refresher");
 const optional_otp_wrapper_1 = require("../components/optional-otp-wrapper");
-const refresh_helper_1 = require("../lib/refresh-helper");
+const constants_1 = require("../lib/constants");
 const AuthContext = (0, react_1.createContext)(undefined);
 function AuthProvider({ children, config }) {
     const [twoFAData, setTwoFAData] = (0, react_1.useState)(null);
@@ -53,12 +53,11 @@ function AuthProvider({ children, config }) {
     const [transition, startTransition] = (0, react_1.useTransition)();
     const withFullObject = (0, utils_1.shouldPassFullUserObject)();
     const computedRouteContext = (0, utils_1.buildRouteContext)(config);
-    const { loginUrl, resetPasswordUrl, dashboardUrl, returnPath, isExcluded } = computedRouteContext;
+    const { loginUrl, resetPasswordUrl, dashboardUrl, returnPathRaw, isExcluded, } = computedRouteContext;
     const { disableLoading = false } = config || {};
     async function redirectAfterLogin(authToken, tempRefreshToken) {
-        var _a;
-        await ((_a = config === null || config === void 0 ? void 0 : config.cookieOverride) === null || _a === void 0 ? void 0 : _a.call(config, tempRefreshToken));
-        localStorage.setItem(refresh_helper_1.AUTH_TOKEN_KEY, authToken);
+        await config?.cookieOverride?.(tempRefreshToken);
+        localStorage.setItem(constants_1.AUTH_TOKEN_KEY, authToken);
         const returnPath = new URLSearchParams(window.location.search).get("returnPath");
         window.location.href = returnPath ? returnPath : dashboardUrl;
     }
@@ -72,7 +71,7 @@ function AuthProvider({ children, config }) {
         if (!navigator.onLine) {
             try {
                 const payload = (0, utils_1.parseJwt)(token);
-                setUser(payload === null || payload === void 0 ? void 0 : payload.user);
+                setUser(payload?.user);
                 setIsAuthenticated(true);
             }
             catch (e) {
@@ -143,24 +142,30 @@ function AuthProvider({ children, config }) {
         }
     }
     async function logout(reason = "", params) {
-        var _a;
+        let logoutSucceeded = false;
         try {
             await (0, api_1.apiFactory)("/logout");
+            logoutSucceeded = true;
         }
         catch (err) {
-            console.log(err);
+            if ([401, 403].includes(err.status)) {
+                logoutSucceeded = true;
+            }
+            console.error("Logout failed:", err);
         }
-        finally {
-            localStorage.removeItem(refresh_helper_1.AUTH_TOKEN_KEY);
-            localStorage.removeItem(refresh_helper_1.LEADING_TAB_KEY);
-            localStorage.removeItem(refresh_helper_1.AUTH_RETRY_STATE_KEY);
-            await ((_a = config === null || config === void 0 ? void 0 : config.cookieOverride) === null || _a === void 0 ? void 0 : _a.call(config, ""));
+        const forceLogout = reason === "user_logout";
+        if (logoutSucceeded || forceLogout) {
+            localStorage.removeItem(constants_1.AUTH_TOKEN_KEY);
+            localStorage.removeItem(constants_1.LEADING_TAB_KEY);
+            localStorage.removeItem(constants_1.AUTH_RETRY_STATE_KEY);
+            await config?.cookieOverride?.("");
             const fullParams = new URLSearchParams({
+                returnPath: returnPathRaw,
                 reason,
                 ...params,
             }).toString();
             if (typeof window !== "undefined") {
-                window.location.href = `${loginUrl}?${returnPath}&${fullParams}`;
+                window.location.href = `${loginUrl}?${fullParams}`;
             }
         }
     }
@@ -175,9 +180,8 @@ function AuthProvider({ children, config }) {
             return res;
         },
         onTokenRefreshed: (authToken, tempRefreshToken) => {
-            var _a;
-            localStorage.setItem(refresh_helper_1.AUTH_TOKEN_KEY, authToken);
-            (_a = config === null || config === void 0 ? void 0 : config.cookieOverride) === null || _a === void 0 ? void 0 : _a.call(config, tempRefreshToken);
+            localStorage.setItem(constants_1.AUTH_TOKEN_KEY, authToken);
+            config?.cookieOverride?.(tempRefreshToken);
         },
         revalidateUserWhenOnline: fetchCurrentUser,
         onRefreshFailed: async () => await logout("session_expired"),
@@ -198,6 +202,7 @@ function AuthProvider({ children, config }) {
                 logout: (params) => logout("user_logout", params),
                 hasPermission: (permission) => (0, utils_1.hasPermission)(user, permission),
                 revalidate: () => startTransition(fetchCurrentUser),
+                getToken: () => (0, utils_1.getClientToken)(),
             } }, children)));
 }
 function useAuth() {

package/dist/hooks/use-token-refresher.js

@@ -4,6 +4,7 @@ exports.useTokenRefresher = useTokenRefresher;
 const utils_1 = require("../lib/utils");
 const react_1 = require("react");
 const refresh_helper_1 = require("../lib/refresh-helper");
+const constants_1 = require("../lib/constants");
 function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefreshed, revalidateUserWhenOnline, config, }) {
     const refreshing = (0, react_1.useRef)(false);
     const interval = (0, react_1.useRef)(null);
@@ -26,7 +27,7 @@ function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefres
         refreshing.current = true;
         const token = (0, utils_1.getClientToken)();
         if (!token && !isExcluded) {
-            onRefreshFailed === null || onRefreshFailed === void 0 ? void 0 : onRefreshFailed();
+            onRefreshFailed?.();
             refreshing.current = false;
             return;
         }
@@ -40,7 +41,7 @@ function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefres
                 const payload = (0, utils_1.parseJwt)(token);
                 const expiresAt = payload.exp * 1000;
                 const timeLeft = expiresAt - Date.now();
-                if (timeLeft < refresh_helper_1.thresholdMs) {
+                if (timeLeft < constants_1.thresholdMs) {
                     shouldRefresh = true;
                 }
                 else {
@@ -49,22 +50,22 @@ function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefres
             }
             catch (e) {
                 console.warn("[ecp-auth] Invalid token format, skipping refresh.");
-                onRefreshFailed === null || onRefreshFailed === void 0 ? void 0 : onRefreshFailed();
+                onRefreshFailed?.();
             }
             if (shouldRefresh) {
                 const { authToken, tempRefreshToken } = await refreshTokenRequest();
                 if (!authToken) {
-                    onRefreshFailed === null || onRefreshFailed === void 0 ? void 0 : onRefreshFailed();
+                    onRefreshFailed?.();
                 }
                 else {
-                    onTokenRefreshed === null || onTokenRefreshed === void 0 ? void 0 : onTokenRefreshed(authToken, tempRefreshToken);
+                    onTokenRefreshed?.(authToken, tempRefreshToken);
                 }
             }
         }
         catch (err) {
             const success = await (0, refresh_helper_1.tryRefreshWithRetry)(refreshTokenRequest);
             if (!success) {
-                onRefreshFailed === null || onRefreshFailed === void 0 ? void 0 : onRefreshFailed();
+                onRefreshFailed?.();
                 console.warn("[ecp-auth] All retry attempts failed, triggering logout.");
             }
         }
@@ -74,7 +75,7 @@ function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefres
     }
     (0, react_1.useEffect)(() => {
         refreshIfNeeded(); // run once on mount
-        interval.current = setInterval(refreshIfNeeded, refresh_helper_1.intervalMs);
+        interval.current = setInterval(refreshIfNeeded, constants_1.intervalMs);
         function onVisible() {
             if (document.visibilityState === "visible") {
                 refreshIfNeeded();
@@ -96,11 +97,10 @@ function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefres
     }, []);
     (0, react_1.useEffect)(() => {
         function onStorage(e) {
-            if (e.key === refresh_helper_1.LEADING_TAB_KEY) {
+            if (e.key === constants_1.LEADING_TAB_KEY) {
                 // If leader changes, check if we need to act
-                // Optionally, you can trigger a refresh of local state here
             }
-            if (e.key === refresh_helper_1.AUTH_RETRY_STATE_KEY) {
+            if (e.key === constants_1.AUTH_RETRY_STATE_KEY) {
                 // Optionally, react to retry state changes
             }
         }
@@ -112,7 +112,7 @@ function useTokenRefresher({ refreshTokenRequest, onRefreshFailed, onTokenRefres
             return;
         const renewInterval = setInterval(() => {
             (0, refresh_helper_1.renewLeadership)();
-        }, refresh_helper_1.LEADER_TIMEOUT / 2); // Renew halfway before timeout
+        }, constants_1.LEADER_TIMEOUT / 2); // Renew halfway before timeout
         return () => clearInterval(renewInterval);
     }, [refresh_helper_1.isLeader]);
 }

package/dist/index.d.ts

@@ -1,4 +1,4 @@
 export * from "./contexts/auth-provider";
 export * from "./components/message";
-export { buildRouteContext } from "./lib/utils";
-export type { AuthConfig, Project, Service, ServiceType, User, Role, Status, NewRole, UpdateUser, GeneralResponse, FormResponse, VerifyUser, VerifyUserResponse, ResetPasswordWithToken, ResetPasswordWithUserId, Signup, Login, Otp, } from "./types";
+export { buildRouteContext, getClientToken as getToken } from "./lib/utils";
+export type { AuthConfig, User, Role, Status, NewRole, UpdateUser, GeneralResponse, FormResponse, VerifyUser, VerifyUserResponse, ResetPasswordWithToken, ResetPasswordWithUserId, Signup, Login, } from "./types";

package/dist/index.js

@@ -14,8 +14,9 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.buildRouteContext = void 0;
+exports.getToken = exports.buildRouteContext = void 0;
 __exportStar(require("./contexts/auth-provider"), exports);
 __exportStar(require("./components/message"), exports);
 var utils_1 = require("./lib/utils");
 Object.defineProperty(exports, "buildRouteContext", { enumerable: true, get: function () { return utils_1.buildRouteContext; } });
+Object.defineProperty(exports, "getToken", { enumerable: true, get: function () { return utils_1.getClientToken; } });

package/dist/lib/api-client.js

@@ -10,7 +10,7 @@ async function apiClient(path, options) {
         throw new Error("Invalid API URL or API key. Please set ECP_AUTH_PUBLIC_TOKEN (or the VITE_/NEXT_PUBLIC_ equivalent) in your .env file. Check admin dashboard for env variables.");
     }
     const token = (0, utils_1.getClientToken)(); // from localStorage
-    const { method = "POST", body, headers, ...rest } = options !== null && options !== void 0 ? options : {};
+    const { method = "POST", body, headers, ...rest } = options ?? {};
     const res = await fetch(`${apiUrl}${path}`, {
         method,
         body: body ? JSON.stringify(body) : undefined,

package/dist/lib/api-server.js

@@ -6,13 +6,12 @@ const error_1 = require("./error");
 const server_token_1 = require("../server/server-token");
 // SERVER: secure-only calls using private key
 async function apiServer(apiPath, options) {
-    var _a;
-    let [apiUrl, apiKey] = atob((_a = process.env.ECP_AUTH_PRIVATE_TOKEN) !== null && _a !== void 0 ? _a : "").split("$");
-    if ((!apiUrl || !apiKey) && !(options === null || options === void 0 ? void 0 : options.adminCall)) {
+    let [apiUrl, apiKey] = atob(process.env.ECP_AUTH_PRIVATE_TOKEN ?? "").split("$");
+    if ((!apiUrl || !apiKey) && !options?.adminCall) {
         throw new Error("Invalid API URL or API key, please set ECP_AUTH_PRIVATE_TOKEN in your .env file. Check admin dashboard for env variables.");
     }
     let token = await (0, server_token_1.getServerToken)();
-    const { method = "POST", body, headers, adminCall, ...rest } = options !== null && options !== void 0 ? options : {};
+    const { method = "POST", body, headers, adminCall, ...rest } = options ?? {};
     const res = await fetch(`${apiUrl}${apiPath}`, {
         method,
         body: body ? JSON.stringify(body) : undefined,

package/dist/lib/constants.d.ts

@@ -0,0 +1,9 @@
+export declare const AUTH_TOKEN_KEY = "_ecp_auth_token";
+export declare const AUTH_RETRY_STATE_KEY = "_ecp_auth_retry_state";
+export declare const LEADING_TAB_KEY = "_ecp_leading_tab";
+export declare const LEADER_TIMEOUT: number;
+export declare const thresholdMs: number;
+export declare const intervalMs: number;
+export declare const retryDelayMs = 60000;
+export declare const maxRetries = 5;
+export declare const backoffFactor = 2;

package/dist/lib/constants.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.backoffFactor = exports.maxRetries = exports.retryDelayMs = exports.intervalMs = exports.thresholdMs = exports.LEADER_TIMEOUT = exports.LEADING_TAB_KEY = exports.AUTH_RETRY_STATE_KEY = exports.AUTH_TOKEN_KEY = void 0;
+exports.AUTH_TOKEN_KEY = "_ecp_auth_token";
+exports.AUTH_RETRY_STATE_KEY = "_ecp_auth_retry_state";
+exports.LEADING_TAB_KEY = "_ecp_leading_tab";
+exports.LEADER_TIMEOUT = 2 * 60 * 1000;
+exports.thresholdMs = 2 * 60_000;
+exports.intervalMs = 1 * 60_000;
+exports.retryDelayMs = 60_000;
+exports.maxRetries = 5;
+exports.backoffFactor = 2;

package/dist/lib/error.js

@@ -11,5 +11,5 @@ class APIError extends Error {
 }
 exports.APIError = APIError;
 function isAPIError(err) {
-    return (err === null || err === void 0 ? void 0 : err.data) !== undefined;
+    return err?.data !== undefined;
 }

package/dist/lib/refresh-helper.d.ts

@@ -1,10 +1,4 @@
 import { UseTokenRefresherOptions } from "../types";
-export declare const AUTH_TOKEN_KEY = "_ecp_auth_token";
-export declare const AUTH_RETRY_STATE_KEY = "_ecp_auth_retry_state";
-export declare const LEADING_TAB_KEY = "_ecp_leading_tab";
-export declare const LEADER_TIMEOUT: number;
-export declare const thresholdMs: number;
-export declare const intervalMs: number;
 export declare function tryRefreshWithRetry(refreshTokenRequest: UseTokenRefresherOptions["refreshTokenRequest"]): Promise<boolean>;
 export declare function isLeader(): boolean | undefined;
 export declare function becomeLeader(): void;

package/dist/lib/refresh-helper.js

@@ -1,38 +1,28 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.intervalMs = exports.thresholdMs = exports.LEADER_TIMEOUT = exports.LEADING_TAB_KEY = exports.AUTH_RETRY_STATE_KEY = exports.AUTH_TOKEN_KEY = void 0;
 exports.tryRefreshWithRetry = tryRefreshWithRetry;
 exports.isLeader = isLeader;
 exports.becomeLeader = becomeLeader;
 exports.renewLeadership = renewLeadership;
 exports.tryToBecomeLeader = tryToBecomeLeader;
 const utils_1 = require("./utils");
-exports.AUTH_TOKEN_KEY = "_ecp_auth_token";
-exports.AUTH_RETRY_STATE_KEY = "_ecp_auth_retry_state";
-exports.LEADING_TAB_KEY = "_ecp_leading_tab";
-exports.LEADER_TIMEOUT = 2 * 60 * 1000;
-exports.thresholdMs = 2 * 60000;
-exports.intervalMs = 1 * 60000;
-const retryDelayMs = 60000;
-const maxRetries = 5;
-const backoffFactor = 2;
+const constants_1 = require("./constants");
 async function tryRefreshWithRetry(refreshTokenRequest) {
-    var _a;
-    const savedState = JSON.parse(localStorage.getItem(exports.AUTH_RETRY_STATE_KEY) || "{}");
-    for (let attempt = (_a = savedState === null || savedState === void 0 ? void 0 : savedState.attemptNumber) !== null && _a !== void 0 ? _a : 1; attempt <= maxRetries; attempt++) {
+    const savedState = JSON.parse(localStorage.getItem(constants_1.AUTH_RETRY_STATE_KEY) || "{}");
+    for (let attempt = savedState?.attemptNumber ?? 1; attempt <= constants_1.maxRetries; attempt++) {
         try {
             await refreshTokenRequest();
-            localStorage.removeItem(exports.AUTH_RETRY_STATE_KEY);
+            localStorage.removeItem(constants_1.AUTH_RETRY_STATE_KEY);
             return true; // ✅ success!
         }
         catch (err) {
             console.warn(`[ecp-auth] Silent refresh attempt ${attempt} failed`, err);
-            if (attempt < maxRetries) {
-                localStorage.setItem(exports.AUTH_RETRY_STATE_KEY, JSON.stringify({
+            if (attempt < constants_1.maxRetries) {
+                localStorage.setItem(constants_1.AUTH_RETRY_STATE_KEY, JSON.stringify({
                     lastAttempt: Date.now(),
                     attemptNumber: attempt,
                 }));
-                const delay = retryDelayMs * Math.pow(backoffFactor, attempt - 1);
+                const delay = constants_1.retryDelayMs * Math.pow(constants_1.backoffFactor, attempt - 1);
                 console.info(`[ecp-auth] Retrying in ${delay}ms...`);
                 await new Promise((res) => setTimeout(res, delay));
             }
@@ -50,11 +40,11 @@ const TAB_ID = (() => {
 function isLeader() {
     if (typeof localStorage === "undefined")
         return;
-    const leaderData = JSON.parse(localStorage.getItem(exports.LEADING_TAB_KEY) || "{}");
+    const leaderData = JSON.parse(localStorage.getItem(constants_1.LEADING_TAB_KEY) || "{}");
     if (!leaderData.id || !leaderData.timestamp)
         return false;
     // If leader is stale, allow takeover
-    if (Date.now() - leaderData.timestamp > exports.LEADER_TIMEOUT)
+    if (Date.now() - leaderData.timestamp > constants_1.LEADER_TIMEOUT)
         return false;
     return leaderData.id === TAB_ID;
 }
@@ -62,7 +52,7 @@ function becomeLeader() {
     const authToken = (0, utils_1.getClientToken)();
     if (!authToken)
         return;
-    localStorage.setItem(exports.LEADING_TAB_KEY, JSON.stringify({ id: TAB_ID, timestamp: Date.now() }));
+    localStorage.setItem(constants_1.LEADING_TAB_KEY, JSON.stringify({ id: TAB_ID, timestamp: Date.now() }));
 }
 function renewLeadership() {
     // Called periodically by leader to keep leadership
@@ -73,8 +63,8 @@ function renewLeadership() {
 function tryToBecomeLeader() {
     if (typeof localStorage === "undefined")
         return;
-    const leaderData = JSON.parse(localStorage.getItem(exports.LEADING_TAB_KEY) || "{}");
-    if (!leaderData.id || Date.now() - leaderData.timestamp > exports.LEADER_TIMEOUT) {
+    const leaderData = JSON.parse(localStorage.getItem(constants_1.LEADING_TAB_KEY) || "{}");
+    if (!leaderData.id || Date.now() - leaderData.timestamp > constants_1.LEADER_TIMEOUT) {
         becomeLeader();
         return true;
     }

package/dist/lib/utils.d.ts

@@ -1,4 +1,4 @@
-import { AuthConfig, User } from "../types";
+import { AuthConfig, QueryOpts, User } from "../types";
 export declare function cn(...classes: (string | false | null | undefined)[]): string;
 export declare function unstuckPointerEvents(): void;
 export declare function buildRouteContext(config?: AuthConfig, currentPath?: string): {
@@ -7,6 +7,7 @@ export declare function buildRouteContext(config?: AuthConfig, currentPath?: str
     dashboardUrl: string;
     resetPasswordUrl: string;
     returnPath: string;
+    returnPathRaw: string;
     currentPath: string;
     excludedPaths: string[];
     isExcluded: boolean;
@@ -14,6 +15,7 @@ export declare function buildRouteContext(config?: AuthConfig, currentPath?: str
 export declare function getClientToken(): string;
 export declare function hasPermission(user: User | null, permission: string): boolean;
 export declare function parseMessage(message: string): string;
+export declare function parseGroupId(data?: QueryOpts["groupIds"]): string;
 export declare function parseJwt(token: string): any;
 export declare function isOtpAvailable(): boolean;
 export declare function shouldPassFullUserObject(): boolean;

package/dist/lib/utils.js

@@ -6,11 +6,13 @@ exports.buildRouteContext = buildRouteContext;
 exports.getClientToken = getClientToken;
 exports.hasPermission = hasPermission;
 exports.parseMessage = parseMessage;
+exports.parseGroupId = parseGroupId;
 exports.parseJwt = parseJwt;
 exports.isOtpAvailable = isOtpAvailable;
 exports.shouldPassFullUserObject = shouldPassFullUserObject;
 exports.getPublicTokenEnv = getPublicTokenEnv;
 exports.getPrivateTokenEnv = getPrivateTokenEnv;
+const constants_1 = require("./constants");
 function cn(...classes) {
     return classes.filter(Boolean).join(" ");
 }
@@ -30,7 +32,6 @@ const defaultAuthConfig = {
     excludedPaths: [],
 };
 function buildRouteContext(config, currentPath = "") {
-    var _a;
     const finalConfig = { ...defaultAuthConfig, ...config };
     const hostOverride = finalConfig.hostOverride;
     currentPath =
@@ -50,7 +51,7 @@ function buildRouteContext(config, currentPath = "") {
     const excludedPaths = [
         normalize(loginUrl),
         normalize(signupUrl),
-        ...((_a = config === null || config === void 0 ? void 0 : config.excludedPaths) !== null && _a !== void 0 ? _a : []),
+        ...(config?.excludedPaths ?? []),
     ];
     try {
         if (resetPasswordUrl) {
@@ -62,15 +63,16 @@ function buildRouteContext(config, currentPath = "") {
     }
     const normalizedCurrentPath = normalize(currentPath);
     const isExcluded = excludedPaths.includes(normalizedCurrentPath);
-    const returnPath = typeof window !== "undefined"
-        ? encodeURIComponent(`${window.location.pathname}${window.location.search}`)
-        : encodeURIComponent(currentPath);
+    const returnPathRaw = typeof window !== "undefined"
+        ? `${window.location.pathname}${window.location.search}`
+        : currentPath;
     return {
         loginUrl,
         signupUrl,
         dashboardUrl,
         resetPasswordUrl,
-        returnPath,
+        returnPath: encodeURIComponent(returnPathRaw),
+        returnPathRaw,
         currentPath: normalizedCurrentPath,
         excludedPaths,
         isExcluded,
@@ -78,34 +80,38 @@ function buildRouteContext(config, currentPath = "") {
 }
 function getAbsoluteUrl(pathOrUrl, hostOverride) {
     try {
-        const url = new URL(pathOrUrl, hostOverride !== null && hostOverride !== void 0 ? hostOverride : "");
+        const url = new URL(pathOrUrl, hostOverride ?? "");
         return url.toString();
     }
     catch {
         if (typeof window !== "undefined") {
-            const base = hostOverride !== null && hostOverride !== void 0 ? hostOverride : window.location.origin;
+            const base = hostOverride ?? window.location.origin;
             return new URL(pathOrUrl.replace(/^\/+/, "/"), base).toString();
         }
         return `http://localhost${pathOrUrl.startsWith("/") ? "" : "/"}${pathOrUrl}`;
     }
 }
 function getClientToken() {
-    var _a;
     return typeof localStorage !== "undefined"
-        ? ((_a = localStorage.getItem("_ecp_auth_token")) !== null && _a !== void 0 ? _a : "")
+        ? localStorage.getItem(constants_1.AUTH_TOKEN_KEY) || ""
         : "";
 }
 function hasPermission(user, permission) {
-    var _a;
     if (!user)
         return false;
-    return ((_a = user.role.permissions) === null || _a === void 0 ? void 0 : _a.includes(permission)) || user.isSuperAdmin;
+    return user.role.permissions?.includes(permission) || user.isSuperAdmin;
 }
 function parseMessage(message) {
     return message == "fetch failed" || message == "Failed to fetch"
         ? "Please check your internet connection"
         : message;
 }
+function parseGroupId(data) {
+    const query = data
+        ?.map((id) => id ?? "null") // keep null as "null"
+        .join(",") || "";
+    return query ? `?groupIds=${encodeURIComponent(query)}` : "";
+}
 function base64UrlDecode(b64url) {
     // Replace URL-safe chars
     let base64 = b64url.replace(/-/g, "+").replace(/_/g, "/");
@@ -143,6 +149,5 @@ function getPublicTokenEnv() {
         "");
 }
 function getPrivateTokenEnv() {
-    var _a;
-    return (_a = process.env.ECP_AUTH_PRIVATE_TOKEN) !== null && _a !== void 0 ? _a : "";
+    return process.env.ECP_AUTH_PRIVATE_TOKEN ?? "";
 }

package/dist/server/index.d.ts

@@ -1,7 +1,7 @@
 export * from "./toggle-2fa";
 export * from "./reset-password";
 export * from "./users-accounts";
-export * from "./cookie";
+export * from "./next-cookie-override";
 export * from "./server-session";
 export * from "./server-token";
 export * from "./role";

package/dist/server/index.js

@@ -17,7 +17,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./toggle-2fa"), exports);
 __exportStar(require("./reset-password"), exports);
 __exportStar(require("./users-accounts"), exports);
-__exportStar(require("./cookie"), exports);
+__exportStar(require("./next-cookie-override"), exports);
 __exportStar(require("./server-session"), exports);
 __exportStar(require("./server-token"), exports);
 __exportStar(require("./role"), exports);

package/dist/server/{cookie.js → next-cookie-override.js}

@@ -1,17 +1,17 @@
-"use server";
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.setCookie = setCookie;
+const constants_1 = require("../lib/constants");
 async function setCookie(value) {
     try {
         // Dynamically import to avoid bundling next in non-Next environments
         const { cookies } = require("next/headers");
         const cookieStore = await cookies();
         if (!value) {
-            cookieStore.delete("_ecp_auth_token");
+            cookieStore.delete(constants_1.AUTH_TOKEN_KEY);
         }
         else {
-            cookieStore.set("_ecp_auth_token", value, {
+            cookieStore.set(constants_1.AUTH_TOKEN_KEY, value, {
                 httpOnly: true,
                 sameSite: "lax",
                 secure: process.env.NODE_ENV === "production",

package/dist/server/role.d.ts

@@ -1,7 +1,5 @@
-import { Role, NewRole, FormResponse } from "../types";
-export declare function getRoles(options?: {
-    groupId: string;
-}): Promise<Role[]>;
+import { Role, NewRole, FormResponse, QueryOpts } from "../types";
+export declare function getRoles(options?: QueryOpts): Promise<Role[]>;
 export declare function addRole(role: NewRole): Promise<FormResponse<Role>>;
 export declare function updateRole(roleId: string, role: NewRole): Promise<FormResponse<Role>>;
 export declare function assignPermission(roleId: string, permissions: string[]): Promise<FormResponse<Role>>;

package/dist/server/role.js

@@ -7,9 +7,11 @@ exports.updateRole = updateRole;
 exports.assignPermission = assignPermission;
 const api_1 = require("../lib/api");
 const error_1 = require("../lib/error");
+const utils_1 = require("../lib/utils");
 async function getRoles(options) {
     try {
-        const res = await (0, api_1.apiFactory)(`/roles?groupId=${(options === null || options === void 0 ? void 0 : options.groupId) || ""}`, {
+        const query = (0, utils_1.parseGroupId)(options?.groupIds);
+        const res = await (0, api_1.apiFactory)(`/roles${query}`, {
             method: "GET",
         });
         return res.data;

package/dist/server/server-token.js

@@ -2,16 +2,16 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getServerToken = getServerToken;
+const constants_1 = require("../lib/constants");
 async function getServerToken(source) {
-    var _a, _b;
-    const cookieName = "_ecp_auth_token";
+    const cookieName = constants_1.AUTH_TOKEN_KEY;
     // Case 1: No source, assume App Router (next/headers)
     if (!source) {
         try {
             // Dynamically import to avoid bundling next in non-Next environments
             const { cookies } = require("next/headers");
             const cookieStore = await cookies();
-            return (_a = cookieStore.get(cookieName)) === null || _a === void 0 ? void 0 : _a.value;
+            return cookieStore.get(cookieName)?.value;
         }
         catch {
             return undefined;
@@ -28,8 +28,8 @@ async function getServerToken(source) {
     }
     // Case 3: API routes or custom cookie objects
     const cookieSource = source.cookies;
-    if (typeof (cookieSource === null || cookieSource === void 0 ? void 0 : cookieSource.get) === "function") {
-        return (_b = cookieSource.get(cookieName)) === null || _b === void 0 ? void 0 : _b.value; // next/headers-style
+    if (typeof cookieSource?.get === "function") {
+        return cookieSource.get(cookieName)?.value; // next/headers-style
     }
     if (typeof cookieSource === "object") {
         //@ts-ignore

package/dist/server/users-accounts.d.ts

@@ -1,11 +1,9 @@
-import { VerifyUser, VerifyUserResponse, Signup, UpdateUser, User, GeneralResponse, FormResponse } from "../types";
+import { VerifyUser, VerifyUserResponse, Signup, UpdateUser, User, GeneralResponse, FormResponse, QueryOpts } from "../types";
 export declare function verifyUser(data: VerifyUser): Promise<VerifyUserResponse>;
 export declare function registerUser(data: Signup, options?: {
     isSuperAdmin?: boolean;
 }): Promise<FormResponse<User>>;
 export declare function updateUser(userId: string, data: UpdateUser): Promise<FormResponse<User>>;
-export declare function getUsers(options?: {
-    groupId: string;
-}): Promise<User[]>;
+export declare function getUsers(options?: QueryOpts): Promise<User[]>;
 export declare function getUserById(userId: string): Promise<User | null>;
 export declare function toggleUserStatus(userId: string): Promise<GeneralResponse>;

package/dist/server/users-accounts.js

@@ -10,6 +10,7 @@ exports.toggleUserStatus = toggleUserStatus;
 const utils_1 = require("../lib/utils");
 const api_1 = require("../lib/api");
 const error_1 = require("../lib/error");
+const utils_2 = require("../lib/utils");
 async function verifyUser(data) {
     try {
         const res = await (0, api_1.apiFactory)("/users/verify", {
@@ -23,7 +24,7 @@ async function verifyUser(data) {
 }
 async function registerUser(data, options) {
     try {
-        const res = await (0, api_1.apiFactory)(`/signup?isSuperAdmin=${(options === null || options === void 0 ? void 0 : options.isSuperAdmin) || false}`, {
+        const res = await (0, api_1.apiFactory)(`/signup?isSuperAdmin=${options?.isSuperAdmin || false}`, {
             body: { ...data },
         });
         return res;
@@ -55,7 +56,8 @@ async function updateUser(userId, data) {
 }
 async function getUsers(options) {
     try {
-        const res = await (0, api_1.apiFactory)(`/users?groupId=${(options === null || options === void 0 ? void 0 : options.groupId) || ""}`, {
+        const query = (0, utils_2.parseGroupId)(options?.groupIds);
+        const res = await (0, api_1.apiFactory)(`/users${query}`, {
             method: "GET",
         });
         return res.data;

package/dist/types.d.ts

@@ -66,7 +66,7 @@ type ComputedRouteContext = {
     excludedPaths: string[];
     isExcluded: boolean;
 };
-type CookieOverrideFn = (cookie: string | undefined) => Promise<void>;
+type CookieOverrideFn = (cookie?: string) => Promise<void>;
 export type ApiOptions = {
     method?: "GET" | "POST" | "PUT" | "DELETE";
     body?: Record<string, any>;
@@ -75,7 +75,7 @@ export type ApiOptions = {
 };
 export type NewRole = {
     groupId?: string;
-    name: string;
+    label: string;
     description?: string;
     permissions?: string[];
 };
@@ -149,49 +149,9 @@ export type AuthContextType = {
     logout: (params?: Record<string, string>) => void;
     hasPermission: (permission: string) => boolean;
     revalidate: () => void;
+    getToken: () => string | null;
     computedRouteContext: ComputedRouteContext;
 };
-export type OTPContextReturn = {
-    processing: boolean;
-    isOpen: boolean;
-    open: () => void;
-    close: () => void;
-    onCanceled?: () => void;
-    successMessage: string;
-    errorMessage: string;
-    otpValue: string;
-    setOtpValue: (value: string) => void;
-    sendOtp: () => Promise<void>;
-    verifyOtp: () => Promise<void>;
-    isVerified: boolean;
-    id: string;
-    sendOnMount?: boolean;
-    hasSent: boolean;
-};
-export type OTPContextProps = {
-    id?: string;
-    userId: string;
-    email?: string;
-    sendOnMount?: boolean;
-    onVerified: (authToken: string, tempRefreshToken?: string) => void;
-    onCanceled?: () => void;
-    onSend?: () => void;
-    onError?: () => void;
-};
-export type Otp = {
-    id: string;
-    userId: string;
-    createdAt: Date;
-    serviceId: string | null;
-    sentTo: string;
-    code: string;
-    channel: Channel;
-    used: boolean;
-    success: boolean;
-    reason: Reason | null;
-    expiresAt: Date;
-    verifiedAt: Date | null;
-};
 export type User = {
     id: string;
     roleId: string | null;
@@ -229,33 +189,6 @@ export type Role = {
     updatedAt: Date;
     isSuperAdmin: boolean;
 };
-export type Project = {
-    id: string;
-    projectName: string;
-    createdAt: string;
-    updatedAt: string;
-    isActive: boolean;
-    slug: string;
-    services: Service[];
-};
-export type Service = {
-    id: string;
-    label: string;
-    type: ServiceType;
-    publicKey: string;
-    privateKey: string;
-    isLive: boolean;
-    isActive: boolean;
-    lastUsed: string | null;
-    createdAt: string;
-    updatedAt: string;
-    envs: {
-        privateEnv: string;
-        publicEnv: string;
-        combined: string;
-    };
-    slug: string;
-};
 export type AuthError = {
     errors: Record<string, string>;
     message: string;
@@ -277,8 +210,8 @@ export type UseTokenRefresherOptions = {
     revalidateUserWhenOnline?: () => void;
     config?: AuthConfig;
 };
+export type QueryOpts = {
+    groupIds?: (string | number | null)[];
+};
 export type Status = "ACTIVE" | "INACTIVE";
-export type ServiceType = "auth" | "database" | "otp" | "storage";
-export type Channel = "email" | "sms" | "totp" | "whatsapp";
-export type Reason = "expired" | "invalid" | "success";
 export {};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@explita/cloud-auth-client",
-  "version": "0.0.1",
+  "version": "0.0.2",
   "author": "Explita",
   "license": "MIT",
   "description": "A simple authentication library for React",
@@ -34,20 +34,20 @@
     "otp"
   ],
   "devDependencies": {
-    "@tailwindcss/cli": "^4.1.5",
-    "@types/node": "^24",
-    "@types/react": "^19",
-    "@types/react-dom": "^19",
-    "fs-extra": "^11.3.0",
+    "@tailwindcss/cli": "^4.1.12",
+    "@types/node": "^24.3.0",
+    "@types/react": "^19.1.10",
+    "@types/react-dom": "^19.1.7",
+    "fs-extra": "^11.3.1",
     "rimraf": "^6.0.1",
-    "tailwindcss": "^4.1.5",
-    "typescript": "^5.8.3"
+    "tailwindcss": "^4.1.12",
+    "typescript": "^5.9.2"
   },
   "dependencies": {
     "class-variance-authority": "^0.7.1"
   },
   "optionalDependencies": {
-    "@explita/cloud-otp-client": "*"
+    "@explita/cloud-otp-client": "^0.0.1"
   },
   "peerDependencies": {
     "@radix-ui/react-dialog": "^1",