npm - @factiii/auth - Versions diffs - 0.5.4 → 0.5.5 - Mend

@factiii/auth 0.5.4 → 0.5.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -6,6 +6,7 @@ import * as zod from 'zod';
 import { CreateHTTPContextOptions } from '@trpc/server/adapters/standalone';
 import { S as SchemaExtensions, A as AuthHooks } from './hooks-yHGJ7C6_.mjs';
 export { C as ChangePasswordInput, L as LoginInput, O as OAuthLoginInput, R as ResetPasswordInput, a as SignupInput, T as TwoFaVerifyInput, V as VerifyEmailInput, b as biometricVerifySchema, c as changePasswordSchema, e as endAllSessionsSchema, l as loginSchema, o as oAuthLoginSchema, r as requestPasswordResetSchema, d as resetPasswordSchema, s as signupSchema, t as twoFaResetSchema, f as twoFaVerifySchema, v as verifyEmailSchema } from './hooks-yHGJ7C6_.mjs';
+import { AnyPgTable, PgColumn, PgDatabase, PgQueryResultHKT } from 'drizzle-orm/pg-core';
 //# sourceMappingURL=TRPCError.d.ts.map
 //#endregion
@@ -294,35 +295,42 @@ interface DatabaseAdapter {
     };
 }
-type PrismaClient = any;
 /**
  * Creates a DatabaseAdapter backed by Prisma.
- * Each method is a direct extraction of existing Prisma calls from the procedures.
+ * Pass your generated PrismaClient instance — its full types are preserved at the call site.
  */
-declare function createPrismaAdapter(prisma: PrismaClient): DatabaseAdapter;
+declare function createPrismaAdapter(prisma: unknown): DatabaseAdapter;
+/**
+ * A Postgres Drizzle table with column properties accessible by name.
+ * `AnyPgTable` is Drizzle's base Postgres table type; intersecting with
+ * `Record<string, Column>` exposes the column descriptors for index access.
+ */
+type DrizzleTable = AnyPgTable & Record<string, PgColumn>;
 /**
  * Drizzle table references required by the adapter.
- * Consumers pass their Drizzle table objects so the adapter
+ * Consumers pass their Drizzle Postgres table objects so the adapter
  * can build queries without knowing the schema file location.
+ *
+ * **Note:** This adapter only supports PostgreSQL via `drizzle-orm/pg-core`.
  */
 interface DrizzleAdapterTables {
-    users: any;
-    sessions: any;
-    otps: any;
-    passwordResets: any;
-    devices: any;
-    admins: any;
+    users: DrizzleTable;
+    sessions: DrizzleTable;
+    otps: DrizzleTable;
+    passwordResets: DrizzleTable;
+    devices: DrizzleTable;
+    admins: DrizzleTable;
     /** Join table for many-to-many device↔user relation (if applicable). */
-    devicesToUsers?: any;
+    devicesToUsers?: DrizzleTable;
     /** Join table for many-to-many device↔session relation (if applicable). */
-    devicesToSessions?: any;
+    devicesToSessions?: DrizzleTable;
 }
 /**
- * Any Drizzle database instance (pg, mysql, better-sqlite3, etc.).
- * We keep this generic so consumers aren't locked into a specific driver.
+ * Any `PgDatabase` instance, regardless of the underlying driver
+ * (node-postgres, postgres.js, Neon, PGLite, etc.).
  */
-type DrizzleDB = any;
+type AnyPgDatabase = PgDatabase<PgQueryResultHKT, Record<string, unknown>>;
 /**
  * Creates a DatabaseAdapter backed by Drizzle ORM.
  *
@@ -347,7 +355,7 @@ type DrizzleDB = any;
  * for joins and `db.insert/update/delete` for mutations. Make sure your Drizzle
  * instance is created with `{ schema }` so relational queries work.
  */
-declare function createDrizzleAdapter(db: DrizzleDB, tables: DrizzleAdapterTables): DatabaseAdapter;
+declare function createDrizzleAdapter(db: AnyPgDatabase, tables: DrizzleAdapterTables): DatabaseAdapter;
 /**
  * JWT payload structure
@@ -505,9 +513,9 @@ declare function createAuthGuard(config: AuthConfig, t: TrpcBuilder): _trpc_serv
     userId: number;
     socketId: string | null;
     sessionId: number;
+    ip: string | undefined;
     headers: http.IncomingHttpHeaders;
     res: http.ServerResponse<http.IncomingMessage>;
-    ip: string | undefined;
 }, unknown>;
 /**
@@ -1081,17 +1089,17 @@ declare function createAuthRouter<TExtensions extends SchemaExtensions = {}>(con
         sessionId: number;
         userId: number;
         socketId: string | null;
+        ip: string | undefined;
         headers: http.IncomingHttpHeaders;
         res: http.ServerResponse<http.IncomingMessage>;
-        ip: string | undefined;
     }, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, false>;
     authProcedure: _trpc_server.TRPCProcedureBuilder<TrpcContext, Meta, {
         sessionId: number;
         userId: number;
         socketId: string | null;
+        ip: string | undefined;
         headers: http.IncomingHttpHeaders;
         res: http.ServerResponse<http.IncomingMessage>;
-        ip: string | undefined;
     }, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, false>;
     createContext: ({ req, res }: CreateHTTPContextOptions) => TrpcContext;
 };
@@ -1222,6 +1230,54 @@ declare function validatePasswordStrength(password: string, minLength?: number):
     error?: string;
 };
+/**
+ * Parameters for creating a session with a signed JWT token.
+ */
+interface CreateSessionWithTokenParams {
+    /** User ID to create the session for */
+    userId: number;
+    /** Browser name (from user-agent) */
+    browserName: string;
+    /** Socket ID for real-time connections */
+    socketId: string | null;
+    /** Device ID for push notifications */
+    deviceId?: number;
+    /** Extra fields to include in the session record (e.g., instanceId) */
+    extraSessionData?: Record<string, unknown>;
+}
+/**
+ * Result of creating a session with a token.
+ */
+interface SessionWithTokenResult {
+    /** Signed JWT access token */
+    accessToken: string;
+    /** Created session ID */
+    sessionId: number;
+}
+/**
+ * Create a session and sign a JWT token.
+ *
+ * Use this for programmatic auth flows (magic links, auto-login, test helpers)
+ * where you need a token without going through the full login procedure.
+ *
+ * @param config - Resolved auth config (from createAuthConfig)
+ * @param params - Session creation parameters
+ * @returns Signed JWT and session ID
+ */
+declare function createSessionWithToken(config: ResolvedAuthConfig, params: CreateSessionWithTokenParams): Promise<SessionWithTokenResult>;
+/**
+ * Create a session, sign a JWT token, and set the auth cookie on the response.
+ *
+ * Convenience wrapper around {@link createSessionWithToken} for HTTP handlers
+ * that need to set the cookie immediately.
+ *
+ * @param config - Resolved auth config (from createAuthConfig)
+ * @param params - Session creation parameters
+ * @param res - HTTP response to set the cookie on
+ * @returns Signed JWT and session ID
+ */
+declare function createSessionWithTokenAndCookie(config: ResolvedAuthConfig, params: CreateSessionWithTokenParams, res: CreateHTTPContextOptions['res']): Promise<SessionWithTokenResult>;
 /**
  * Generate a random TOTP secret
  * @param length - Length of the secret (default: 16)
@@ -1256,4 +1312,4 @@ declare function verifyTotp(code: string, secret: string): Promise<boolean>;
  */
 declare function generateOtp(min?: number, max?: number): number;
-export { type AuthConfig, type AuthFeatures, AuthHooks, type AuthOTP, type AuthPasswordReset, type AuthRouter, type AuthSession, type AuthUser, type CreateSessionData, type CreateUserData, DEFAULT_STORAGE_KEYS, type DatabaseAdapter, type DrizzleAdapterTables, type EmailAdapter, type OAuthKeys, type OAuthProvider, type OAuthResult, OAuthVerificationError, SchemaExtensions, type SessionWithDevice, type SessionWithUser, type TokenSettings, type TrpcContext, cleanBase32String, clearAuthCookie, comparePassword, createAuthConfig, createAuthGuard, createAuthRouter, createAuthToken, createConsoleEmailAdapter, createDrizzleAdapter, createNoopEmailAdapter, createOAuthVerifier, createPrismaAdapter, decodeToken, defaultAuthConfig, defaultCookieSettings, defaultStorageKeys, defaultTokenSettings, detectBrowser, generateOtp, generateTotpCode, generateTotpSecret, hashPassword, isMobileDevice, isNativeApp, isTokenExpiredError, isTokenInvalidError, parseAuthCookie, setAuthCookie, validatePasswordStrength, verifyAuthToken, verifyTotp };
+export { type AuthConfig, type AuthFeatures, AuthHooks, type AuthOTP, type AuthPasswordReset, type AuthRouter, type AuthSession, type AuthUser, type CreateSessionData, type CreateSessionWithTokenParams, type CreateUserData, DEFAULT_STORAGE_KEYS, type DatabaseAdapter, type DrizzleAdapterTables, type EmailAdapter, type OAuthKeys, type OAuthProvider, type OAuthResult, OAuthVerificationError, type ResolvedAuthConfig, SchemaExtensions, type SessionWithDevice, type SessionWithTokenResult, type SessionWithUser, type TokenSettings, type TrpcContext, cleanBase32String, clearAuthCookie, comparePassword, createAuthConfig, createAuthGuard, createAuthRouter, createAuthToken, createConsoleEmailAdapter, createDrizzleAdapter, createNoopEmailAdapter, createOAuthVerifier, createPrismaAdapter, createSessionWithToken, createSessionWithTokenAndCookie, decodeToken, defaultAuthConfig, defaultCookieSettings, defaultStorageKeys, defaultTokenSettings, detectBrowser, generateOtp, generateTotpCode, generateTotpSecret, hashPassword, isMobileDevice, isNativeApp, isTokenExpiredError, isTokenInvalidError, parseAuthCookie, setAuthCookie, validatePasswordStrength, verifyAuthToken, verifyTotp };

package/dist/index.d.ts CHANGED Viewed

@@ -6,6 +6,7 @@ import * as zod from 'zod';
 import { CreateHTTPContextOptions } from '@trpc/server/adapters/standalone';
 import { S as SchemaExtensions, A as AuthHooks } from './hooks-yHGJ7C6_.js';
 export { C as ChangePasswordInput, L as LoginInput, O as OAuthLoginInput, R as ResetPasswordInput, a as SignupInput, T as TwoFaVerifyInput, V as VerifyEmailInput, b as biometricVerifySchema, c as changePasswordSchema, e as endAllSessionsSchema, l as loginSchema, o as oAuthLoginSchema, r as requestPasswordResetSchema, d as resetPasswordSchema, s as signupSchema, t as twoFaResetSchema, f as twoFaVerifySchema, v as verifyEmailSchema } from './hooks-yHGJ7C6_.js';
+import { AnyPgTable, PgColumn, PgDatabase, PgQueryResultHKT } from 'drizzle-orm/pg-core';
 //# sourceMappingURL=TRPCError.d.ts.map
 //#endregion
@@ -294,35 +295,42 @@ interface DatabaseAdapter {
     };
 }
-type PrismaClient = any;
 /**
  * Creates a DatabaseAdapter backed by Prisma.
- * Each method is a direct extraction of existing Prisma calls from the procedures.
+ * Pass your generated PrismaClient instance — its full types are preserved at the call site.
  */
-declare function createPrismaAdapter(prisma: PrismaClient): DatabaseAdapter;
+declare function createPrismaAdapter(prisma: unknown): DatabaseAdapter;
+/**
+ * A Postgres Drizzle table with column properties accessible by name.
+ * `AnyPgTable` is Drizzle's base Postgres table type; intersecting with
+ * `Record<string, Column>` exposes the column descriptors for index access.
+ */
+type DrizzleTable = AnyPgTable & Record<string, PgColumn>;
 /**
  * Drizzle table references required by the adapter.
- * Consumers pass their Drizzle table objects so the adapter
+ * Consumers pass their Drizzle Postgres table objects so the adapter
  * can build queries without knowing the schema file location.
+ *
+ * **Note:** This adapter only supports PostgreSQL via `drizzle-orm/pg-core`.
  */
 interface DrizzleAdapterTables {
-    users: any;
-    sessions: any;
-    otps: any;
-    passwordResets: any;
-    devices: any;
-    admins: any;
+    users: DrizzleTable;
+    sessions: DrizzleTable;
+    otps: DrizzleTable;
+    passwordResets: DrizzleTable;
+    devices: DrizzleTable;
+    admins: DrizzleTable;
     /** Join table for many-to-many device↔user relation (if applicable). */
-    devicesToUsers?: any;
+    devicesToUsers?: DrizzleTable;
     /** Join table for many-to-many device↔session relation (if applicable). */
-    devicesToSessions?: any;
+    devicesToSessions?: DrizzleTable;
 }
 /**
- * Any Drizzle database instance (pg, mysql, better-sqlite3, etc.).
- * We keep this generic so consumers aren't locked into a specific driver.
+ * Any `PgDatabase` instance, regardless of the underlying driver
+ * (node-postgres, postgres.js, Neon, PGLite, etc.).
  */
-type DrizzleDB = any;
+type AnyPgDatabase = PgDatabase<PgQueryResultHKT, Record<string, unknown>>;
 /**
  * Creates a DatabaseAdapter backed by Drizzle ORM.
  *
@@ -347,7 +355,7 @@ type DrizzleDB = any;
  * for joins and `db.insert/update/delete` for mutations. Make sure your Drizzle
  * instance is created with `{ schema }` so relational queries work.
  */
-declare function createDrizzleAdapter(db: DrizzleDB, tables: DrizzleAdapterTables): DatabaseAdapter;
+declare function createDrizzleAdapter(db: AnyPgDatabase, tables: DrizzleAdapterTables): DatabaseAdapter;
 /**
  * JWT payload structure
@@ -505,9 +513,9 @@ declare function createAuthGuard(config: AuthConfig, t: TrpcBuilder): _trpc_serv
     userId: number;
     socketId: string | null;
     sessionId: number;
+    ip: string | undefined;
     headers: http.IncomingHttpHeaders;
     res: http.ServerResponse<http.IncomingMessage>;
-    ip: string | undefined;
 }, unknown>;
 /**
@@ -1081,17 +1089,17 @@ declare function createAuthRouter<TExtensions extends SchemaExtensions = {}>(con
         sessionId: number;
         userId: number;
         socketId: string | null;
+        ip: string | undefined;
         headers: http.IncomingHttpHeaders;
         res: http.ServerResponse<http.IncomingMessage>;
-        ip: string | undefined;
     }, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, false>;
     authProcedure: _trpc_server.TRPCProcedureBuilder<TrpcContext, Meta, {
         sessionId: number;
         userId: number;
         socketId: string | null;
+        ip: string | undefined;
         headers: http.IncomingHttpHeaders;
         res: http.ServerResponse<http.IncomingMessage>;
-        ip: string | undefined;
     }, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, _trpc_server.TRPCUnsetMarker, false>;
     createContext: ({ req, res }: CreateHTTPContextOptions) => TrpcContext;
 };
@@ -1222,6 +1230,54 @@ declare function validatePasswordStrength(password: string, minLength?: number):
     error?: string;
 };
+/**
+ * Parameters for creating a session with a signed JWT token.
+ */
+interface CreateSessionWithTokenParams {
+    /** User ID to create the session for */
+    userId: number;
+    /** Browser name (from user-agent) */
+    browserName: string;
+    /** Socket ID for real-time connections */
+    socketId: string | null;
+    /** Device ID for push notifications */
+    deviceId?: number;
+    /** Extra fields to include in the session record (e.g., instanceId) */
+    extraSessionData?: Record<string, unknown>;
+}
+/**
+ * Result of creating a session with a token.
+ */
+interface SessionWithTokenResult {
+    /** Signed JWT access token */
+    accessToken: string;
+    /** Created session ID */
+    sessionId: number;
+}
+/**
+ * Create a session and sign a JWT token.
+ *
+ * Use this for programmatic auth flows (magic links, auto-login, test helpers)
+ * where you need a token without going through the full login procedure.
+ *
+ * @param config - Resolved auth config (from createAuthConfig)
+ * @param params - Session creation parameters
+ * @returns Signed JWT and session ID
+ */
+declare function createSessionWithToken(config: ResolvedAuthConfig, params: CreateSessionWithTokenParams): Promise<SessionWithTokenResult>;
+/**
+ * Create a session, sign a JWT token, and set the auth cookie on the response.
+ *
+ * Convenience wrapper around {@link createSessionWithToken} for HTTP handlers
+ * that need to set the cookie immediately.
+ *
+ * @param config - Resolved auth config (from createAuthConfig)
+ * @param params - Session creation parameters
+ * @param res - HTTP response to set the cookie on
+ * @returns Signed JWT and session ID
+ */
+declare function createSessionWithTokenAndCookie(config: ResolvedAuthConfig, params: CreateSessionWithTokenParams, res: CreateHTTPContextOptions['res']): Promise<SessionWithTokenResult>;
 /**
  * Generate a random TOTP secret
  * @param length - Length of the secret (default: 16)
@@ -1256,4 +1312,4 @@ declare function verifyTotp(code: string, secret: string): Promise<boolean>;
  */
 declare function generateOtp(min?: number, max?: number): number;
-export { type AuthConfig, type AuthFeatures, AuthHooks, type AuthOTP, type AuthPasswordReset, type AuthRouter, type AuthSession, type AuthUser, type CreateSessionData, type CreateUserData, DEFAULT_STORAGE_KEYS, type DatabaseAdapter, type DrizzleAdapterTables, type EmailAdapter, type OAuthKeys, type OAuthProvider, type OAuthResult, OAuthVerificationError, SchemaExtensions, type SessionWithDevice, type SessionWithUser, type TokenSettings, type TrpcContext, cleanBase32String, clearAuthCookie, comparePassword, createAuthConfig, createAuthGuard, createAuthRouter, createAuthToken, createConsoleEmailAdapter, createDrizzleAdapter, createNoopEmailAdapter, createOAuthVerifier, createPrismaAdapter, decodeToken, defaultAuthConfig, defaultCookieSettings, defaultStorageKeys, defaultTokenSettings, detectBrowser, generateOtp, generateTotpCode, generateTotpSecret, hashPassword, isMobileDevice, isNativeApp, isTokenExpiredError, isTokenInvalidError, parseAuthCookie, setAuthCookie, validatePasswordStrength, verifyAuthToken, verifyTotp };
+export { type AuthConfig, type AuthFeatures, AuthHooks, type AuthOTP, type AuthPasswordReset, type AuthRouter, type AuthSession, type AuthUser, type CreateSessionData, type CreateSessionWithTokenParams, type CreateUserData, DEFAULT_STORAGE_KEYS, type DatabaseAdapter, type DrizzleAdapterTables, type EmailAdapter, type OAuthKeys, type OAuthProvider, type OAuthResult, OAuthVerificationError, type ResolvedAuthConfig, SchemaExtensions, type SessionWithDevice, type SessionWithTokenResult, type SessionWithUser, type TokenSettings, type TrpcContext, cleanBase32String, clearAuthCookie, comparePassword, createAuthConfig, createAuthGuard, createAuthRouter, createAuthToken, createConsoleEmailAdapter, createDrizzleAdapter, createNoopEmailAdapter, createOAuthVerifier, createPrismaAdapter, createSessionWithToken, createSessionWithTokenAndCookie, decodeToken, defaultAuthConfig, defaultCookieSettings, defaultStorageKeys, defaultTokenSettings, detectBrowser, generateOtp, generateTotpCode, generateTotpSecret, hashPassword, isMobileDevice, isNativeApp, isTokenExpiredError, isTokenInvalidError, parseAuthCookie, setAuthCookie, validatePasswordStrength, verifyAuthToken, verifyTotp };

package/dist/index.js CHANGED Viewed

@@ -46,6 +46,8 @@ __export(index_exports, {
   createNoopEmailAdapter: () => createNoopEmailAdapter,
   createOAuthVerifier: () => createOAuthVerifier,
   createPrismaAdapter: () => createPrismaAdapter,
+  createSessionWithToken: () => createSessionWithToken,
+  createSessionWithTokenAndCookie: () => createSessionWithTokenAndCookie,
   decodeToken: () => decodeToken,
   defaultAuthConfig: () => defaultAuthConfig,
   defaultCookieSettings: () => defaultCookieSettings,
@@ -82,20 +84,21 @@ var import_server = require("@trpc/server");
 // src/adapters/prismaAdapter.ts
 function createPrismaAdapter(prisma) {
+  const db = prisma;
   return {
     user: {
       async findByEmailInsensitive(email) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: { email: { equals: email, mode: "insensitive" } }
         });
       },
       async findByUsernameInsensitive(username) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: { username: { equals: username, mode: "insensitive" } }
         });
       },
       async findByEmailOrUsernameInsensitive(identifier) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: {
             OR: [
               { email: { equals: identifier, mode: "insensitive" } },
@@ -105,7 +108,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findByEmailOrOAuthId(email, oauthId) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: {
             OR: [
               { email: { equals: email, mode: "insensitive" } },
@@ -115,23 +118,23 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findById(id) {
-        return prisma.user.findUnique({ where: { id } });
+        return db.user.findUnique({ where: { id } });
       },
       async findActiveById(id) {
-        return prisma.user.findUnique({
+        return db.user.findUnique({
           where: { id, status: "ACTIVE" }
         });
       },
       async create(data) {
-        return prisma.user.create({ data });
+        return db.user.create({ data });
       },
       async update(id, data) {
-        return prisma.user.update({ where: { id }, data });
+        return db.user.update({ where: { id }, data });
       }
     },
     session: {
       async findById(id) {
-        const session = await prisma.session.findUnique({
+        const session = await db.session.findUnique({
           where: { id },
           select: {
             id: true,
@@ -149,13 +152,13 @@ function createPrismaAdapter(prisma) {
         return session;
       },
       async create(data) {
-        return prisma.session.create({ data });
+        return db.session.create({ data });
       },
       async update(id, data) {
-        return prisma.session.update({ where: { id }, data });
+        return db.session.update({ where: { id }, data });
       },
       async updateLastUsed(id) {
-        const session = await prisma.session.update({
+        const session = await db.session.update({
           where: { id },
           data: { lastUsed: /* @__PURE__ */ new Date() },
           select: {
@@ -174,13 +177,13 @@ function createPrismaAdapter(prisma) {
         return session;
       },
       async revoke(id) {
-        await prisma.session.update({
+        await db.session.update({
           where: { id },
           data: { revokedAt: /* @__PURE__ */ new Date() }
         });
       },
       async findActiveByUserId(userId, excludeSessionId) {
-        return prisma.session.findMany({
+        return db.session.findMany({
           where: {
             userId,
             revokedAt: null,
@@ -190,7 +193,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async revokeAllByUserId(userId, excludeSessionId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: {
             userId,
             revokedAt: null,
@@ -200,13 +203,13 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findTwoFaSecretsByUserId(userId) {
-        return prisma.session.findMany({
+        return db.session.findMany({
           where: { userId, twoFaSecret: { not: null } },
           select: { twoFaSecret: true }
         });
       },
       async clearTwoFaSecrets(userId, excludeSessionId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: {
             userId,
             ...excludeSessionId ? { NOT: { id: excludeSessionId } } : {}
@@ -215,7 +218,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findByIdWithDevice(id, userId) {
-        const session = await prisma.session.findUnique({
+        const session = await db.session.findUnique({
           where: { id, userId },
           select: {
             twoFaSecret: true,
@@ -226,7 +229,7 @@ function createPrismaAdapter(prisma) {
         return session;
       },
       async revokeByDevicePushToken(userId, pushToken, excludeSessionId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: {
             userId,
             id: { not: excludeSessionId },
@@ -237,7 +240,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async clearDeviceId(userId, deviceId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: { userId, deviceId },
           data: { deviceId: null }
         });
@@ -245,39 +248,39 @@ function createPrismaAdapter(prisma) {
     },
     otp: {
       async findValidByUserAndCode(userId, code) {
-        return prisma.oTP.findFirst({
+        return db.oTP.findFirst({
           where: { userId, code, expiresAt: { gte: /* @__PURE__ */ new Date() } }
         });
       },
       async create(data) {
-        return prisma.oTP.create({ data });
+        return db.oTP.create({ data });
       },
       async delete(id) {
-        await prisma.oTP.delete({ where: { id } });
+        await db.oTP.delete({ where: { id } });
       }
     },
     passwordReset: {
       async findById(id) {
-        return prisma.passwordReset.findUnique({
+        return db.passwordReset.findUnique({
           where: { id },
           select: { id: true, createdAt: true, userId: true }
         });
       },
       async create(userId) {
-        return prisma.passwordReset.create({
+        return db.passwordReset.create({
           data: { userId }
         });
       },
       async delete(id) {
-        await prisma.passwordReset.delete({ where: { id } });
+        await db.passwordReset.delete({ where: { id } });
       },
       async deleteAllByUserId(userId) {
-        await prisma.passwordReset.deleteMany({ where: { userId } });
+        await db.passwordReset.deleteMany({ where: { userId } });
       }
     },
     device: {
       async findByTokenSessionAndUser(pushToken, sessionId, userId) {
-        return prisma.device.findFirst({
+        return db.device.findFirst({
           where: {
             pushToken,
             sessions: { some: { id: sessionId } },
@@ -287,7 +290,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async upsertByPushToken(pushToken, sessionId, userId) {
-        await prisma.device.upsert({
+        await db.device.upsert({
           where: { pushToken },
           create: {
             pushToken,
@@ -301,31 +304,31 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findByUserAndToken(userId, pushToken) {
-        return prisma.device.findFirst({
+        return db.device.findFirst({
           where: { users: { some: { id: userId } }, pushToken },
           select: { id: true }
         });
       },
       async disconnectUser(deviceId, userId) {
-        await prisma.device.update({
+        await db.device.update({
           where: { id: deviceId },
           data: { users: { disconnect: { id: userId } } }
         });
       },
       async hasRemainingUsers(deviceId) {
-        const result = await prisma.device.findUnique({
+        const result = await db.device.findUnique({
           where: { id: deviceId },
           select: { users: { select: { id: true }, take: 1 } }
         });
         return (result?.users.length ?? 0) > 0;
       },
       async delete(id) {
-        await prisma.device.delete({ where: { id } });
+        await db.device.delete({ where: { id } });
       }
     },
     admin: {
       async findByUserId(userId) {
-        return prisma.admin.findFirst({
+        return db.admin.findFirst({
           where: { userId },
           select: { ip: true }
         });
@@ -498,11 +501,12 @@ function createDrizzleAdapter(db, tables) {
         if (excludeSessionId !== void 0) {
           conditions.push(ne(sessions.id, excludeSessionId));
         }
-        return db.select({
+        const activeRows = await db.select({
           id: sessions.id,
           socketId: sessions.socketId,
           userId: sessions.userId
         }).from(sessions).where(and(...conditions));
+        return activeRows;
       },
       async revokeAllByUserId(userId, excludeSessionId) {
         const conditions = [eq(sessions.userId, userId), isNull(sessions.revokedAt)];
@@ -512,7 +516,8 @@ function createDrizzleAdapter(db, tables) {
         await db.update(sessions).set({ revokedAt: /* @__PURE__ */ new Date() }).where(and(...conditions));
       },
       async findTwoFaSecretsByUserId(userId) {
-        return db.select({ twoFaSecret: sessions.twoFaSecret }).from(sessions).where(and(eq(sessions.userId, userId), isNotNull(sessions.twoFaSecret)));
+        const secretRows = await db.select({ twoFaSecret: sessions.twoFaSecret }).from(sessions).where(and(eq(sessions.userId, userId), isNotNull(sessions.twoFaSecret)));
+        return secretRows;
       },
       async clearTwoFaSecrets(userId, excludeSessionId) {
         const conditions = [eq(sessions.userId, userId)];
@@ -531,10 +536,11 @@ function createDrizzleAdapter(db, tables) {
         }).from(sessions).leftJoin(devices, eq(sessions.deviceId, devices.id)).where(and(eq(sessions.id, id), eq(sessions.userId, userId))).limit(1);
         if (!rows[0]) return null;
         const row = rows[0];
+        const device = row.device;
         return {
           twoFaSecret: row.twoFaSecret,
           deviceId: row.deviceId,
-          device: row.device?.pushToken ? { pushToken: row.device.pushToken } : null
+          device: device?.pushToken ? { pushToken: device.pushToken } : null
         };
       },
       async revokeByDevicePushToken(userId, pushToken, excludeSessionId) {
@@ -615,8 +621,8 @@ function createDrizzleAdapter(db, tables) {
         if (existing[0]) {
           deviceId = existing[0].id;
         } else {
-          const rows = await db.insert(devices).values({ pushToken }).returning({ id: devices.id });
-          deviceId = rows[0].id;
+          const insertedRows = await db.insert(devices).values({ pushToken }).returning({ id: devices.id });
+          deviceId = insertedRows[0].id;
         }
         if (tables.devicesToSessions) {
           await db.insert(tables.devicesToSessions).values({ deviceId, sessionId }).onConflictDoNothing();
@@ -628,7 +634,7 @@ function createDrizzleAdapter(db, tables) {
       },
       async findByUserAndToken(userId, pushToken) {
         if (tables.devicesToUsers) {
-          const rows2 = await db.select({ id: devices.id }).from(devices).innerJoin(
+          const joinRows = await db.select({ id: devices.id }).from(devices).innerJoin(
             tables.devicesToUsers,
             eq(devices.id, tables.devicesToUsers.deviceId)
           ).where(
@@ -637,7 +643,7 @@ function createDrizzleAdapter(db, tables) {
               eq(tables.devicesToUsers.userId, userId)
             )
           ).limit(1);
-          return rows2[0] ? { id: rows2[0].id } : null;
+          return joinRows[0] ? { id: joinRows[0].id } : null;
         }
         const rows = await db.select({ id: devices.id }).from(devices).where(eq(devices.pushToken, pushToken)).limit(1);
         return rows[0] ? { id: rows[0].id } : null;
@@ -654,8 +660,8 @@ function createDrizzleAdapter(db, tables) {
       },
       async hasRemainingUsers(deviceId) {
         if (tables.devicesToUsers) {
-          const rows = await db.select({ userId: tables.devicesToUsers.userId }).from(tables.devicesToUsers).where(eq(tables.devicesToUsers.deviceId, deviceId)).limit(1);
-          return rows.length > 0;
+          const remainingRows = await db.select({ userId: tables.devicesToUsers.userId }).from(tables.devicesToUsers).where(eq(tables.devicesToUsers.deviceId, deviceId)).limit(1);
+          return remainingRows.length > 0;
         }
         return false;
       },
@@ -1137,6 +1143,36 @@ function validatePasswordStrength(password, minLength = 6) {
   return { valid: true };
 }
+// src/utilities/session.ts
+async function createSessionWithToken(config, params) {
+  const { userId, browserName, socketId, deviceId, extraSessionData } = params;
+  const session = await config.database.session.create({
+    userId,
+    browserName,
+    socketId,
+    ...deviceId != null ? { deviceId } : {},
+    ...extraSessionData
+  });
+  const user = await config.database.user.findById(userId);
+  const accessToken = createAuthToken(
+    {
+      id: session.id,
+      userId: session.userId,
+      verifiedHumanAt: user?.verifiedHumanAt ?? null
+    },
+    {
+      secret: config.secrets.jwt,
+      expiresIn: config.tokenSettings.jwtExpiry
+    }
+  );
+  return { accessToken, sessionId: session.id };
+}
+async function createSessionWithTokenAndCookie(config, params, res) {
+  const result = await createSessionWithToken(config, params);
+  setAuthCookie(res, result.accessToken, config.cookieSettings, config.storageKeys);
+  return result;
+}
 // src/utilities/totp.ts
 var import_crypto = __toESM(require("crypto"));
 var import_totp_generator = require("totp-generator");
@@ -2098,13 +2134,15 @@ var TwoFaProcedureFactory = class {
 var import_server7 = require("@trpc/server");
 var import_superjson = __toESM(require("superjson"));
 var import_zod2 = require("zod");
+function hasStringProp(obj, key) {
+  return typeof obj === "object" && obj !== null && key in obj && typeof obj[key] === "string";
+}
 function isPrismaConnectionError(error) {
   if (!error || typeof error !== "object") {
     return false;
   }
-  const errorCode = error.code;
-  if (errorCode && typeof errorCode === "string") {
-    const codeMatch = errorCode.match(/^P(\d+)$/);
+  if (hasStringProp(error, "code")) {
+    const codeMatch = error.code.match(/^P(\d+)$/);
     if (codeMatch) {
       const codeNum = parseInt(codeMatch[1], 10);
       if (codeNum >= 1e3 && codeNum <= 1003) {
@@ -2114,14 +2152,13 @@ function isPrismaConnectionError(error) {
   }
   const constructorName = error.constructor?.name || "";
   if (constructorName.includes("Prisma")) {
-    const errorMessage = error.message?.toLowerCase() || "";
+    const errorMessage = hasStringProp(error, "message") ? error.message.toLowerCase() : "";
     if (errorMessage.includes("can't reach database") || errorMessage.includes("authentication failed") || errorMessage.includes("database server") || errorMessage.includes("timeout") || errorMessage.includes("connection")) {
       return true;
     }
   }
-  const cause = error.cause;
-  if (cause) {
-    return isPrismaConnectionError(cause);
+  if ("cause" in error) {
+    return isPrismaConnectionError(error.cause);
   }
   return false;
 }
@@ -2167,8 +2204,9 @@ function createBaseProcedure(t, authGuard) {
 }
 function getClientIp(req) {
   const forwarded = req.headers["x-forwarded-for"];
-  if (forwarded) {
-    return forwarded.split(",")[0]?.trim();
+  const forwardedStr = Array.isArray(forwarded) ? forwarded[0] : forwarded;
+  if (forwardedStr) {
+    return forwardedStr.split(",")[0]?.trim();
   }
   return req.socket.remoteAddress || void 0;
 }
@@ -2186,7 +2224,7 @@ var AuthRouterFactory = class {
   constructor(userConfig) {
     this.userConfig = userConfig;
     this.config = createAuthConfig(this.userConfig);
-    this.schemas = createSchemas(this.config.schemaExtensions);
+    this.schemas = createSchemas(this.userConfig.schemaExtensions);
     this.t = createTrpcBuilder(this.config);
     this.authGuard = createAuthGuard(this.config, this.t);
     this.procedure = createBaseProcedure(this.t, this.authGuard);
@@ -2248,6 +2286,8 @@ function createAuthRouter(config) {
   createNoopEmailAdapter,
   createOAuthVerifier,
   createPrismaAdapter,
+  createSessionWithToken,
+  createSessionWithTokenAndCookie,
   decodeToken,
   defaultAuthConfig,
   defaultCookieSettings,

package/dist/index.mjs CHANGED Viewed

@@ -25,20 +25,21 @@ import { TRPCError } from "@trpc/server";
 // src/adapters/prismaAdapter.ts
 function createPrismaAdapter(prisma) {
+  const db = prisma;
   return {
     user: {
       async findByEmailInsensitive(email) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: { email: { equals: email, mode: "insensitive" } }
         });
       },
       async findByUsernameInsensitive(username) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: { username: { equals: username, mode: "insensitive" } }
         });
       },
       async findByEmailOrUsernameInsensitive(identifier) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: {
             OR: [
               { email: { equals: identifier, mode: "insensitive" } },
@@ -48,7 +49,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findByEmailOrOAuthId(email, oauthId) {
-        return prisma.user.findFirst({
+        return db.user.findFirst({
           where: {
             OR: [
               { email: { equals: email, mode: "insensitive" } },
@@ -58,23 +59,23 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findById(id) {
-        return prisma.user.findUnique({ where: { id } });
+        return db.user.findUnique({ where: { id } });
       },
       async findActiveById(id) {
-        return prisma.user.findUnique({
+        return db.user.findUnique({
           where: { id, status: "ACTIVE" }
         });
       },
       async create(data) {
-        return prisma.user.create({ data });
+        return db.user.create({ data });
       },
       async update(id, data) {
-        return prisma.user.update({ where: { id }, data });
+        return db.user.update({ where: { id }, data });
       }
     },
     session: {
       async findById(id) {
-        const session = await prisma.session.findUnique({
+        const session = await db.session.findUnique({
           where: { id },
           select: {
             id: true,
@@ -92,13 +93,13 @@ function createPrismaAdapter(prisma) {
         return session;
       },
       async create(data) {
-        return prisma.session.create({ data });
+        return db.session.create({ data });
       },
       async update(id, data) {
-        return prisma.session.update({ where: { id }, data });
+        return db.session.update({ where: { id }, data });
       },
       async updateLastUsed(id) {
-        const session = await prisma.session.update({
+        const session = await db.session.update({
           where: { id },
           data: { lastUsed: /* @__PURE__ */ new Date() },
           select: {
@@ -117,13 +118,13 @@ function createPrismaAdapter(prisma) {
         return session;
       },
       async revoke(id) {
-        await prisma.session.update({
+        await db.session.update({
           where: { id },
           data: { revokedAt: /* @__PURE__ */ new Date() }
         });
       },
       async findActiveByUserId(userId, excludeSessionId) {
-        return prisma.session.findMany({
+        return db.session.findMany({
           where: {
             userId,
             revokedAt: null,
@@ -133,7 +134,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async revokeAllByUserId(userId, excludeSessionId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: {
             userId,
             revokedAt: null,
@@ -143,13 +144,13 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findTwoFaSecretsByUserId(userId) {
-        return prisma.session.findMany({
+        return db.session.findMany({
           where: { userId, twoFaSecret: { not: null } },
           select: { twoFaSecret: true }
         });
       },
       async clearTwoFaSecrets(userId, excludeSessionId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: {
             userId,
             ...excludeSessionId ? { NOT: { id: excludeSessionId } } : {}
@@ -158,7 +159,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findByIdWithDevice(id, userId) {
-        const session = await prisma.session.findUnique({
+        const session = await db.session.findUnique({
           where: { id, userId },
           select: {
             twoFaSecret: true,
@@ -169,7 +170,7 @@ function createPrismaAdapter(prisma) {
         return session;
       },
       async revokeByDevicePushToken(userId, pushToken, excludeSessionId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: {
             userId,
             id: { not: excludeSessionId },
@@ -180,7 +181,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async clearDeviceId(userId, deviceId) {
-        await prisma.session.updateMany({
+        await db.session.updateMany({
           where: { userId, deviceId },
           data: { deviceId: null }
         });
@@ -188,39 +189,39 @@ function createPrismaAdapter(prisma) {
     },
     otp: {
       async findValidByUserAndCode(userId, code) {
-        return prisma.oTP.findFirst({
+        return db.oTP.findFirst({
           where: { userId, code, expiresAt: { gte: /* @__PURE__ */ new Date() } }
         });
       },
       async create(data) {
-        return prisma.oTP.create({ data });
+        return db.oTP.create({ data });
       },
       async delete(id) {
-        await prisma.oTP.delete({ where: { id } });
+        await db.oTP.delete({ where: { id } });
       }
     },
     passwordReset: {
       async findById(id) {
-        return prisma.passwordReset.findUnique({
+        return db.passwordReset.findUnique({
           where: { id },
           select: { id: true, createdAt: true, userId: true }
         });
       },
       async create(userId) {
-        return prisma.passwordReset.create({
+        return db.passwordReset.create({
           data: { userId }
         });
       },
       async delete(id) {
-        await prisma.passwordReset.delete({ where: { id } });
+        await db.passwordReset.delete({ where: { id } });
       },
       async deleteAllByUserId(userId) {
-        await prisma.passwordReset.deleteMany({ where: { userId } });
+        await db.passwordReset.deleteMany({ where: { userId } });
       }
     },
     device: {
       async findByTokenSessionAndUser(pushToken, sessionId, userId) {
-        return prisma.device.findFirst({
+        return db.device.findFirst({
           where: {
             pushToken,
             sessions: { some: { id: sessionId } },
@@ -230,7 +231,7 @@ function createPrismaAdapter(prisma) {
         });
       },
       async upsertByPushToken(pushToken, sessionId, userId) {
-        await prisma.device.upsert({
+        await db.device.upsert({
           where: { pushToken },
           create: {
             pushToken,
@@ -244,31 +245,31 @@ function createPrismaAdapter(prisma) {
         });
       },
       async findByUserAndToken(userId, pushToken) {
-        return prisma.device.findFirst({
+        return db.device.findFirst({
           where: { users: { some: { id: userId } }, pushToken },
           select: { id: true }
         });
       },
       async disconnectUser(deviceId, userId) {
-        await prisma.device.update({
+        await db.device.update({
           where: { id: deviceId },
           data: { users: { disconnect: { id: userId } } }
         });
       },
       async hasRemainingUsers(deviceId) {
-        const result = await prisma.device.findUnique({
+        const result = await db.device.findUnique({
           where: { id: deviceId },
           select: { users: { select: { id: true }, take: 1 } }
         });
         return (result?.users.length ?? 0) > 0;
       },
       async delete(id) {
-        await prisma.device.delete({ where: { id } });
+        await db.device.delete({ where: { id } });
       }
     },
     admin: {
       async findByUserId(userId) {
-        return prisma.admin.findFirst({
+        return db.admin.findFirst({
           where: { userId },
           select: { ip: true }
         });
@@ -441,11 +442,12 @@ function createDrizzleAdapter(db, tables) {
         if (excludeSessionId !== void 0) {
           conditions.push(ne(sessions.id, excludeSessionId));
         }
-        return db.select({
+        const activeRows = await db.select({
           id: sessions.id,
           socketId: sessions.socketId,
           userId: sessions.userId
         }).from(sessions).where(and(...conditions));
+        return activeRows;
       },
       async revokeAllByUserId(userId, excludeSessionId) {
         const conditions = [eq(sessions.userId, userId), isNull(sessions.revokedAt)];
@@ -455,7 +457,8 @@ function createDrizzleAdapter(db, tables) {
         await db.update(sessions).set({ revokedAt: /* @__PURE__ */ new Date() }).where(and(...conditions));
       },
       async findTwoFaSecretsByUserId(userId) {
-        return db.select({ twoFaSecret: sessions.twoFaSecret }).from(sessions).where(and(eq(sessions.userId, userId), isNotNull(sessions.twoFaSecret)));
+        const secretRows = await db.select({ twoFaSecret: sessions.twoFaSecret }).from(sessions).where(and(eq(sessions.userId, userId), isNotNull(sessions.twoFaSecret)));
+        return secretRows;
       },
       async clearTwoFaSecrets(userId, excludeSessionId) {
         const conditions = [eq(sessions.userId, userId)];
@@ -474,10 +477,11 @@ function createDrizzleAdapter(db, tables) {
         }).from(sessions).leftJoin(devices, eq(sessions.deviceId, devices.id)).where(and(eq(sessions.id, id), eq(sessions.userId, userId))).limit(1);
         if (!rows[0]) return null;
         const row = rows[0];
+        const device = row.device;
         return {
           twoFaSecret: row.twoFaSecret,
           deviceId: row.deviceId,
-          device: row.device?.pushToken ? { pushToken: row.device.pushToken } : null
+          device: device?.pushToken ? { pushToken: device.pushToken } : null
         };
       },
       async revokeByDevicePushToken(userId, pushToken, excludeSessionId) {
@@ -558,8 +562,8 @@ function createDrizzleAdapter(db, tables) {
         if (existing[0]) {
           deviceId = existing[0].id;
         } else {
-          const rows = await db.insert(devices).values({ pushToken }).returning({ id: devices.id });
-          deviceId = rows[0].id;
+          const insertedRows = await db.insert(devices).values({ pushToken }).returning({ id: devices.id });
+          deviceId = insertedRows[0].id;
         }
         if (tables.devicesToSessions) {
           await db.insert(tables.devicesToSessions).values({ deviceId, sessionId }).onConflictDoNothing();
@@ -571,7 +575,7 @@ function createDrizzleAdapter(db, tables) {
       },
       async findByUserAndToken(userId, pushToken) {
         if (tables.devicesToUsers) {
-          const rows2 = await db.select({ id: devices.id }).from(devices).innerJoin(
+          const joinRows = await db.select({ id: devices.id }).from(devices).innerJoin(
             tables.devicesToUsers,
             eq(devices.id, tables.devicesToUsers.deviceId)
           ).where(
@@ -580,7 +584,7 @@ function createDrizzleAdapter(db, tables) {
               eq(tables.devicesToUsers.userId, userId)
             )
           ).limit(1);
-          return rows2[0] ? { id: rows2[0].id } : null;
+          return joinRows[0] ? { id: joinRows[0].id } : null;
         }
         const rows = await db.select({ id: devices.id }).from(devices).where(eq(devices.pushToken, pushToken)).limit(1);
         return rows[0] ? { id: rows[0].id } : null;
@@ -597,8 +601,8 @@ function createDrizzleAdapter(db, tables) {
       },
       async hasRemainingUsers(deviceId) {
         if (tables.devicesToUsers) {
-          const rows = await db.select({ userId: tables.devicesToUsers.userId }).from(tables.devicesToUsers).where(eq(tables.devicesToUsers.deviceId, deviceId)).limit(1);
-          return rows.length > 0;
+          const remainingRows = await db.select({ userId: tables.devicesToUsers.userId }).from(tables.devicesToUsers).where(eq(tables.devicesToUsers.deviceId, deviceId)).limit(1);
+          return remainingRows.length > 0;
         }
         return false;
       },
@@ -1080,6 +1084,36 @@ function validatePasswordStrength(password, minLength = 6) {
   return { valid: true };
 }
+// src/utilities/session.ts
+async function createSessionWithToken(config, params) {
+  const { userId, browserName, socketId, deviceId, extraSessionData } = params;
+  const session = await config.database.session.create({
+    userId,
+    browserName,
+    socketId,
+    ...deviceId != null ? { deviceId } : {},
+    ...extraSessionData
+  });
+  const user = await config.database.user.findById(userId);
+  const accessToken = createAuthToken(
+    {
+      id: session.id,
+      userId: session.userId,
+      verifiedHumanAt: user?.verifiedHumanAt ?? null
+    },
+    {
+      secret: config.secrets.jwt,
+      expiresIn: config.tokenSettings.jwtExpiry
+    }
+  );
+  return { accessToken, sessionId: session.id };
+}
+async function createSessionWithTokenAndCookie(config, params, res) {
+  const result = await createSessionWithToken(config, params);
+  setAuthCookie(res, result.accessToken, config.cookieSettings, config.storageKeys);
+  return result;
+}
 // src/utilities/totp.ts
 import crypto from "crypto";
 import { TOTP } from "totp-generator";
@@ -1963,13 +1997,15 @@ var TwoFaProcedureFactory = class {
 import { initTRPC } from "@trpc/server";
 import SuperJSON from "superjson";
 import { ZodError } from "zod";
+function hasStringProp(obj, key) {
+  return typeof obj === "object" && obj !== null && key in obj && typeof obj[key] === "string";
+}
 function isPrismaConnectionError(error) {
   if (!error || typeof error !== "object") {
     return false;
   }
-  const errorCode = error.code;
-  if (errorCode && typeof errorCode === "string") {
-    const codeMatch = errorCode.match(/^P(\d+)$/);
+  if (hasStringProp(error, "code")) {
+    const codeMatch = error.code.match(/^P(\d+)$/);
     if (codeMatch) {
       const codeNum = parseInt(codeMatch[1], 10);
       if (codeNum >= 1e3 && codeNum <= 1003) {
@@ -1979,14 +2015,13 @@ function isPrismaConnectionError(error) {
   }
   const constructorName = error.constructor?.name || "";
   if (constructorName.includes("Prisma")) {
-    const errorMessage = error.message?.toLowerCase() || "";
+    const errorMessage = hasStringProp(error, "message") ? error.message.toLowerCase() : "";
     if (errorMessage.includes("can't reach database") || errorMessage.includes("authentication failed") || errorMessage.includes("database server") || errorMessage.includes("timeout") || errorMessage.includes("connection")) {
       return true;
     }
   }
-  const cause = error.cause;
-  if (cause) {
-    return isPrismaConnectionError(cause);
+  if ("cause" in error) {
+    return isPrismaConnectionError(error.cause);
   }
   return false;
 }
@@ -2032,8 +2067,9 @@ function createBaseProcedure(t, authGuard) {
 }
 function getClientIp(req) {
   const forwarded = req.headers["x-forwarded-for"];
-  if (forwarded) {
-    return forwarded.split(",")[0]?.trim();
+  const forwardedStr = Array.isArray(forwarded) ? forwarded[0] : forwarded;
+  if (forwardedStr) {
+    return forwardedStr.split(",")[0]?.trim();
   }
   return req.socket.remoteAddress || void 0;
 }
@@ -2051,7 +2087,7 @@ var AuthRouterFactory = class {
   constructor(userConfig) {
     this.userConfig = userConfig;
     this.config = createAuthConfig(this.userConfig);
-    this.schemas = createSchemas(this.config.schemaExtensions);
+    this.schemas = createSchemas(this.userConfig.schemaExtensions);
     this.t = createTrpcBuilder(this.config);
     this.authGuard = createAuthGuard(this.config, this.t);
     this.procedure = createBaseProcedure(this.t, this.authGuard);
@@ -2112,6 +2148,8 @@ export {
   createNoopEmailAdapter,
   createOAuthVerifier,
   createPrismaAdapter,
+  createSessionWithToken,
+  createSessionWithTokenAndCookie,
   decodeToken,
   defaultAuthConfig,
   defaultCookieSettings,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@factiii/auth",
-  "version": "0.5.4",
+  "version": "0.5.5",
   "publishConfig": {
     "access": "public"
   },
@@ -50,26 +50,8 @@
     "prisma",
     "README.md"
   ],
-  "scripts": {
-    "build": "tsup",
-    "dev": "tsup --watch",
-    "check-types": "tsc --noEmit",
-    "lint": "eslint src",
-    "lint:fix": "eslint src --fix",
-    "format": "prettier --check src",
-    "format:fix": "prettier --write src",
-    "test": "vitest run",
-    "test:watch": "vitest",
-    "seed": "tsx e2e/seed.ts",
-    "clean": "rm -rf dist node_modules/.cache .turbo",
-    "prepublishOnly": "npm run build",
-    "e2e": "pnpm e2e:db:up && playwright test --reporter=list; pnpm e2e:db:down",
-    "e2e:ui": "pnpm e2e:db:up && playwright test --ui",
-    "e2e:db:up": "docker compose -f e2e/docker-compose.yml up -d --wait && prisma generate --schema=e2e/server/schema.prisma --config=e2e/server/prisma.config.ts && prisma migrate reset --schema=e2e/server/schema.prisma --config=e2e/server/prisma.config.ts --force",
-    "e2e:db:down": "docker compose -f e2e/docker-compose.yml down"
-  },
   "dependencies": {
-    "@trpc/server": "11.8.0",
+    "@trpc/server": "^11.8.0",
     "apple-signin-auth": "^2.0.0",
     "bcryptjs": "^2.4.3",
     "google-auth-library": "^10.5.0",
@@ -102,7 +84,7 @@
     "@prisma/adapter-pg": "^7.3.0",
     "@prisma/client": "^7.1.0",
     "@trpc/client": "^11.8.0",
-    "@trpc/server": "11.8.0",
+    "@trpc/server": "^11.8.0",
     "@types/bcryptjs": "^2.4.6",
     "@types/better-sqlite3": "^7.6.13",
     "@types/jsonwebtoken": "^9.0.9",
@@ -133,16 +115,21 @@
   "engines": {
     "node": ">=18.0.0"
   },
-  "packageManager": "pnpm@10.26.0",
-  "pnpm": {
-    "overrides": {
-      "hono": ">=4.12.7",
-      "@hono/node-server": ">=1.19.10",
-      "minimatch": ">=9.0.7",
-      "lodash": ">=4.17.23",
-      "flatted": ">=3.4.0",
-      "rollup": ">=4.59.0",
-      "ajv": ">=6.14.0"
-    }
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "check-types": "tsc --noEmit",
+    "lint": "eslint src",
+    "lint:fix": "eslint src --fix",
+    "format": "prettier --check src",
+    "format:fix": "prettier --write src",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "seed": "tsx e2e/seed.ts",
+    "clean": "rm -rf dist node_modules/.cache .turbo",
+    "e2e": "pnpm e2e:db:up && playwright test --reporter=list; pnpm e2e:db:down",
+    "e2e:ui": "pnpm e2e:db:up && playwright test --ui",
+    "e2e:db:up": "docker compose -f e2e/docker-compose.yml up -d --wait && prisma generate --schema=e2e/server/schema.prisma --config=e2e/server/prisma.config.ts && prisma migrate reset --schema=e2e/server/schema.prisma --config=e2e/server/prisma.config.ts --force",
+    "e2e:db:down": "docker compose -f e2e/docker-compose.yml down"
   }
-}
+}