@farmsdotmarket/openauth 0.4.4

package/examples/client/lambda-api/api.ts

@@ -0,0 +1,69 @@
+import { Context, Hono } from "hono"
+import { getCookie, setCookie } from "hono/cookie"
+import { createClient } from "@farmsdotmarket/openauth/client"
+import { handle } from "hono/aws-lambda"
+import { subjects } from "../../subjects"
+
+const client = createClient({
+  clientID: "lambda-api",
+})
+
+const app = new Hono()
+  .get("/authorize", async (c) => {
+    const origin = new URL(c.req.url).origin
+    const { url } = await client.authorize(origin + "/callback", "code")
+    return c.redirect(url, 302)
+  })
+  .get("/callback", async (c) => {
+    const origin = new URL(c.req.url).origin
+    try {
+      const code = c.req.query("code")
+      if (!code) throw new Error("Missing code")
+      const exchanged = await client.exchange(code, origin + "/callback")
+      if (exchanged.err)
+        return new Response(exchanged.err.toString(), {
+          status: 400,
+        })
+      setSession(c, exchanged.tokens.access, exchanged.tokens.refresh)
+      return c.redirect("/", 302)
+    } catch (e: any) {
+      return new Response(e.toString())
+    }
+  })
+  .get("/", async (c) => {
+    const access = getCookie(c, "access_token")
+    const refresh = getCookie(c, "refresh_token")
+    try {
+      const verified = await client.verify(subjects, access!, {
+        refresh,
+      })
+      if (verified.err) throw new Error("Invalid access token")
+      if (verified.tokens)
+        setSession(c, verified.tokens.access, verified.tokens.refresh)
+      return c.json(verified.subject)
+    } catch (e) {
+      console.error(e)
+      return c.redirect("/authorize", 302)
+    }
+  })
+
+export const handler = handle(app)
+
+function setSession(c: Context, accessToken?: string, refreshToken?: string) {
+  if (accessToken) {
+    setCookie(c, "access_token", accessToken, {
+      httpOnly: true,
+      sameSite: "Strict",
+      path: "/",
+      maxAge: 34560000,
+    })
+  }
+  if (refreshToken) {
+    setCookie(c, "refresh_token", refreshToken, {
+      httpOnly: true,
+      sameSite: "Strict",
+      path: "/",
+      maxAge: 34560000,
+    })
+  }
+}

package/examples/client/lambda-api/package.json

@@ -0,0 +1,5 @@
+{
+  "name": "lambda-api",
+  "version": "0.0.0",
+  "private": true
+}

package/examples/client/nextjs/CHANGELOG.md

@@ -0,0 +1,46 @@
+# nextjs
+
+## 0.1.6
+
+### Patch Changes
+
+- Updated dependencies [8b5f490]
+  - @openauthjs/openauth@0.2.4
+
+## 0.1.5
+
+### Patch Changes
+
+- Updated dependencies [80238de]
+  - @openauthjs/openauth@0.2.3
+
+## 0.1.4
+
+### Patch Changes
+
+- Updated dependencies [6da8647]
+  - @openauthjs/openauth@0.2.2
+
+## 0.1.3
+
+### Patch Changes
+
+- Updated dependencies [83125f1]
+  - @openauthjs/openauth@0.2.1
+
+## 0.1.2
+
+### Patch Changes
+
+- Updated dependencies [8c3f050]
+- Updated dependencies [0f93def]
+  - @openauthjs/openauth@0.2.0
+
+## 0.1.1
+
+### Patch Changes
+
+- Updated dependencies [584728f]
+- Updated dependencies [41acdc2]
+- Updated dependencies [2aa531b]
+  - @openauthjs/openauth@0.1.2

package/examples/client/nextjs/README.md

@@ -0,0 +1,26 @@
+This is a [Next.js](https://nextjs.org) project bootstrapped with [`create-next-app`](https://nextjs.org/docs/app/api-reference/cli/create-next-app).
+
+## Getting Started
+
+Make sure your OpenAuth server is running at `http://localhost:3000`.
+
+Then start the development server:
+
+```bash
+npm run dev
+# or
+yarn dev
+# or
+pnpm dev
+# or
+bun dev
+```
+
+Open [http://localhost:3001](http://localhost:3001) with your browser and click **Login with OpenAuth** to start the auth flow.
+
+## Files
+
+- [`app/auth.ts`](app/auth.ts): OpenAuth client and helper to set tokens in cookies.
+- [`app/actions.ts`](app/actions.ts): Actions to get current logged in user, and to login and logout.
+- [`app/api/callback/route.ts`](app/api/callback/route.ts): Callback route for OpenAuth.
+- [`app/page.tsx`](app/page.tsx): Shows login and logout buttons and the current user.

package/examples/client/nextjs/app/actions.ts

@@ -0,0 +1,61 @@
+"use server"
+
+import { redirect } from "next/navigation"
+import { headers as getHeaders, cookies as getCookies } from "next/headers"
+import { client, subjects, setTokens } from "./auth"
+
+export async function auth() {
+  const cookies = await getCookies()
+  const accessToken = cookies.get("access_token")
+  const refreshToken = cookies.get("refresh_token")
+
+  if (!accessToken) {
+    return false
+  }
+
+  const verified = await client.verify(subjects, accessToken.value, {
+    refresh: refreshToken?.value,
+  })
+
+  if (verified.err) {
+    return false
+  }
+  if (verified.tokens) {
+    await setTokens(verified.tokens.access, verified.tokens.refresh)
+  }
+
+  return verified.subject
+}
+
+export async function login() {
+  const cookies = await getCookies()
+  const accessToken = cookies.get("access_token")
+  const refreshToken = cookies.get("refresh_token")
+
+  if (accessToken) {
+    const verified = await client.verify(subjects, accessToken.value, {
+      refresh: refreshToken?.value,
+    })
+    if (!verified.err && verified.tokens) {
+      await setTokens(verified.tokens.access, verified.tokens.refresh)
+      redirect("/")
+    }
+  }
+
+  const headers = await getHeaders()
+  const host = headers.get("host")
+  const protocol = host?.includes("localhost") ? "http" : "https"
+  const { url } = await client.authorize(
+    `${protocol}://${host}/api/callback`,
+    "code",
+  )
+  redirect(url)
+}
+
+export async function logout() {
+  const cookies = await getCookies()
+  cookies.delete("access_token")
+  cookies.delete("refresh_token")
+
+  redirect("/")
+}

package/examples/client/nextjs/app/api/callback/route.ts

@@ -0,0 +1,11 @@
+import { client, setTokens } from "../../auth"
+import { type NextRequest, NextResponse } from "next/server"
+
+export async function GET(req: NextRequest) {
+  const url = new URL(req.url)
+  const code = url.searchParams.get("code")
+  const exchanged = await client.exchange(code!, `${url.origin}/api/callback`)
+  if (exchanged.err) return NextResponse.json(exchanged.err, { status: 400 })
+  await setTokens(exchanged.tokens.access, exchanged.tokens.refresh)
+  return NextResponse.redirect(`${url.origin}/`)
+}

package/examples/client/nextjs/app/auth.ts

@@ -0,0 +1,29 @@
+import { createClient } from "@farmsdotmarket/openauth/client"
+import { cookies as getCookies } from "next/headers"
+export { subjects } from "../../../subjects"
+
+export const client = createClient({
+  clientID: "nextjs",
+  issuer: "http://localhost:3000",
+})
+
+export async function setTokens(access: string, refresh: string) {
+  const cookies = await getCookies()
+
+  cookies.set({
+    name: "access_token",
+    value: access,
+    httpOnly: true,
+    sameSite: "lax",
+    path: "/",
+    maxAge: 34560000,
+  })
+  cookies.set({
+    name: "refresh_token",
+    value: refresh,
+    httpOnly: true,
+    sameSite: "lax",
+    path: "/",
+    maxAge: 34560000,
+  })
+}

package/examples/client/nextjs/app/globals.css

@@ -0,0 +1,42 @@
+:root {
+  --background: #ffffff;
+  --foreground: #171717;
+}
+
+@media (prefers-color-scheme: dark) {
+  :root {
+    --background: #0a0a0a;
+    --foreground: #ededed;
+  }
+}
+
+html,
+body {
+  max-width: 100vw;
+  overflow-x: hidden;
+}
+
+body {
+  color: var(--foreground);
+  background: var(--background);
+  font-family: Arial, Helvetica, sans-serif;
+  -webkit-font-smoothing: antialiased;
+  -moz-osx-font-smoothing: grayscale;
+}
+
+* {
+  box-sizing: border-box;
+  padding: 0;
+  margin: 0;
+}
+
+a {
+  color: inherit;
+  text-decoration: none;
+}
+
+@media (prefers-color-scheme: dark) {
+  html {
+    color-scheme: dark;
+  }
+}

package/examples/client/nextjs/app/layout.tsx

@@ -0,0 +1,32 @@
+import type { Metadata } from "next"
+import { Geist, Geist_Mono } from "next/font/google"
+import "./globals.css"
+
+const geistSans = Geist({
+  variable: "--font-geist-sans",
+  subsets: ["latin"],
+})
+
+const geistMono = Geist_Mono({
+  variable: "--font-geist-mono",
+  subsets: ["latin"],
+})
+
+export const metadata: Metadata = {
+  title: "Create Next App",
+  description: "Generated by create next app",
+}
+
+export default function RootLayout({
+  children,
+}: Readonly<{
+  children: React.ReactNode
+}>) {
+  return (
+    <html lang="en">
+      <body className={`${geistSans.variable} ${geistMono.variable}`}>
+        {children}
+      </body>
+    </html>
+  )
+}

package/examples/client/nextjs/app/page.module.css

@@ -0,0 +1,169 @@
+.page {
+  --gray-rgb: 0, 0, 0;
+  --gray-alpha-200: rgba(var(--gray-rgb), 0.08);
+  --gray-alpha-100: rgba(var(--gray-rgb), 0.05);
+
+  --button-primary-hover: #383838;
+  --button-secondary-hover: #f2f2f2;
+
+  display: grid;
+  grid-template-rows: 20px 1fr 20px;
+  align-items: center;
+  justify-items: center;
+  min-height: 100svh;
+  padding: 80px;
+  gap: 64px;
+  font-family: var(--font-geist-sans);
+}
+
+@media (prefers-color-scheme: dark) {
+  .page {
+    --gray-rgb: 255, 255, 255;
+    --gray-alpha-200: rgba(var(--gray-rgb), 0.145);
+    --gray-alpha-100: rgba(var(--gray-rgb), 0.06);
+
+    --button-primary-hover: #ccc;
+    --button-secondary-hover: #1a1a1a;
+  }
+}
+
+.main {
+  display: flex;
+  flex-direction: column;
+  gap: 32px;
+  grid-row-start: 2;
+}
+
+.main ol {
+  font-family: var(--font-geist-mono);
+  padding-left: 0;
+  margin: 0;
+  font-size: 14px;
+  line-height: 24px;
+  letter-spacing: -0.01em;
+  list-style-position: inside;
+}
+
+.main li:not(:last-of-type) {
+  margin-bottom: 8px;
+}
+
+.main code {
+  font-family: inherit;
+  background: var(--gray-alpha-100);
+  padding: 2px 4px;
+  border-radius: 4px;
+  font-weight: 600;
+}
+
+.ctas {
+  display: flex;
+  gap: 16px;
+}
+
+.ctas button {
+  appearance: none;
+  background: transparent;
+  border-radius: 128px;
+  height: 48px;
+  padding: 0 20px;
+  border: none;
+  border: 1px solid transparent;
+  transition:
+    background 0.2s,
+    color 0.2s,
+    border-color 0.2s;
+  cursor: pointer;
+  display: flex;
+  align-items: center;
+  justify-content: center;
+  font-size: 16px;
+  line-height: 20px;
+  font-weight: 500;
+}
+
+button.primary {
+  background: var(--foreground);
+  color: var(--background);
+  gap: 8px;
+}
+
+button.secondary {
+  border-color: var(--gray-alpha-200);
+  min-width: 180px;
+}
+
+.footer {
+  grid-row-start: 3;
+  display: flex;
+  gap: 24px;
+}
+
+.footer a {
+  display: flex;
+  align-items: center;
+  gap: 8px;
+}
+
+.footer img {
+  flex-shrink: 0;
+}
+
+/* Enable hover only on non-touch devices */
+@media (hover: hover) and (pointer: fine) {
+  a.primary:hover {
+    background: var(--button-primary-hover);
+    border-color: transparent;
+  }
+
+  a.secondary:hover {
+    background: var(--button-secondary-hover);
+    border-color: transparent;
+  }
+
+  .footer a:hover {
+    text-decoration: underline;
+    text-underline-offset: 4px;
+  }
+}
+
+@media (max-width: 600px) {
+  .page {
+    padding: 32px;
+    padding-bottom: 80px;
+  }
+
+  .main {
+    align-items: center;
+  }
+
+  .main ol {
+    text-align: center;
+  }
+
+  .ctas {
+    flex-direction: column;
+  }
+
+  .ctas a {
+    font-size: 14px;
+    height: 40px;
+    padding: 0 16px;
+  }
+
+  a.secondary {
+    min-width: auto;
+  }
+
+  .footer {
+    flex-wrap: wrap;
+    align-items: center;
+    justify-content: center;
+  }
+}
+
+@media (prefers-color-scheme: dark) {
+  .logo {
+    filter: invert();
+  }
+}

package/examples/client/nextjs/app/page.tsx

@@ -0,0 +1,97 @@
+import Image from "next/image"
+import { auth, login, logout } from "./actions"
+import styles from "./page.module.css"
+
+export default async function Home() {
+  const subject = await auth()
+
+  return (
+    <div className={styles.page}>
+      <main className={styles.main}>
+        <Image
+          className={styles.logo}
+          src="/next.svg"
+          alt="Next.js logo"
+          width={180}
+          height={38}
+          priority
+        />
+        <ol>
+          {subject ? (
+            <>
+              <li>
+                Logged in as <code>{subject.properties.id}</code>.
+              </li>
+              <li>
+                And then check out <code>app/page.tsx</code>.
+              </li>
+            </>
+          ) : (
+            <>
+              <li>Login with your email and password.</li>
+              <li>
+                And then check out <code>app/page.tsx</code>.
+              </li>
+            </>
+          )}
+        </ol>
+
+        <div className={styles.ctas}>
+          {subject ? (
+            <form action={logout}>
+              <button className={styles.secondary}>Logout</button>
+            </form>
+          ) : (
+            <form action={login}>
+              <button className={styles.primary}>Login with OpenAuth</button>
+            </form>
+          )}
+        </div>
+      </main>
+      <footer className={styles.footer}>
+        <a
+          href="https://nextjs.org/learn?utm_source=create-next-app&utm_medium=appdir-template&utm_campaign=create-next-app"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <Image
+            aria-hidden
+            src="/file.svg"
+            alt="File icon"
+            width={16}
+            height={16}
+          />
+          Learn
+        </a>
+        <a
+          href="https://vercel.com/templates?framework=next.js&utm_source=create-next-app&utm_medium=appdir-template&utm_campaign=create-next-app"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <Image
+            aria-hidden
+            src="/window.svg"
+            alt="Window icon"
+            width={16}
+            height={16}
+          />
+          Examples
+        </a>
+        <a
+          href="https://nextjs.org?utm_source=create-next-app&utm_medium=appdir-template&utm_campaign=create-next-app"
+          target="_blank"
+          rel="noopener noreferrer"
+        >
+          <Image
+            aria-hidden
+            src="/globe.svg"
+            alt="Globe icon"
+            width={16}
+            height={16}
+          />
+          Go to nextjs.org →
+        </a>
+      </footer>
+    </div>
+  )
+}

package/examples/client/nextjs/next.config.ts

@@ -0,0 +1,7 @@
+import type { NextConfig } from "next"
+
+const nextConfig: NextConfig = {
+  /* config options here */
+}
+
+export default nextConfig

package/examples/client/nextjs/package.json

@@ -0,0 +1,23 @@
+{
+  "name": "@openauthjs/example-nextjs",
+  "version": "0.1.6",
+  "private": true,
+  "scripts": {
+    "dev": "next dev",
+    "build": "next build",
+    "start": "next start",
+    "lint": "next lint"
+  },
+  "dependencies": {
+    "@farmsdotmarket/openauth": "workspace:*",
+    "next": "15.1.0",
+    "react": "19.0.0",
+    "react-dom": "19.0.0"
+  },
+  "devDependencies": {
+    "@types/node": "22.10.1",
+    "@types/react": "19.0.1",
+    "@types/react-dom": "19.0.2",
+    "typescript": "5.6.3"
+  }
+}

package/examples/client/nextjs/public/file.svg

@@ -0,0 +1 @@
+<svg fill="none" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path d="M14.5 13.5V5.41a1 1 0 0 0-.3-.7L9.8.29A1 1 0 0 0 9.08 0H1.5v13.5A2.5 2.5 0 0 0 4 16h8a2.5 2.5 0 0 0 2.5-2.5m-1.5 0v-7H8v-5H3v12a1 1 0 0 0 1 1h8a1 1 0 0 0 1-1M9.5 5V2.12L12.38 5zM5.13 5h-.62v1.25h2.12V5zm-.62 3h7.12v1.25H4.5zm.62 3h-.62v1.25h7.12V11z" clip-rule="evenodd" fill="#666" fill-rule="evenodd"/></svg>

package/examples/client/nextjs/public/globe.svg

@@ -0,0 +1 @@
+<svg fill="none" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><g clip-path="url(#a)"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.27 14.1a6.5 6.5 0 0 0 3.67-3.45q-1.24.21-2.7.34-.31 1.83-.97 3.1M8 16A8 8 0 1 0 8 0a8 8 0 0 0 0 16m.48-1.52a7 7 0 0 1-.96 0H7.5a4 4 0 0 1-.84-1.32q-.38-.89-.63-2.08a40 40 0 0 0 3.92 0q-.25 1.2-.63 2.08a4 4 0 0 1-.84 1.31zm2.94-4.76q1.66-.15 2.95-.43a7 7 0 0 0 0-2.58q-1.3-.27-2.95-.43a18 18 0 0 1 0 3.44m-1.27-3.54a17 17 0 0 1 0 3.64 39 39 0 0 1-4.3 0 17 17 0 0 1 0-3.64 39 39 0 0 1 4.3 0m1.1-1.17q1.45.13 2.69.34a6.5 6.5 0 0 0-3.67-3.44q.65 1.26.98 3.1M8.48 1.5l.01.02q.41.37.84 1.31.38.89.63 2.08a40 40 0 0 0-3.92 0q.25-1.2.63-2.08a4 4 0 0 1 .85-1.32 7 7 0 0 1 .96 0m-2.75.4a6.5 6.5 0 0 0-3.67 3.44 29 29 0 0 1 2.7-.34q.31-1.83.97-3.1M4.58 6.28q-1.66.16-2.95.43a7 7 0 0 0 0 2.58q1.3.27 2.95.43a18 18 0 0 1 0-3.44m.17 4.71q-1.45-.12-2.69-.34a6.5 6.5 0 0 0 3.67 3.44q-.65-1.27-.98-3.1" fill="#666"/></g><defs><clipPath id="a"><path fill="#fff" d="M0 0h16v16H0z"/></clipPath></defs></svg>

package/examples/client/nextjs/public/next.svg

@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 394 80"><path fill="#000" d="M262 0h68.5v12.7h-27.2v66.6h-13.6V12.7H262V0ZM149 0v12.7H94v20.4h44.3v12.6H94v21h55v12.6H80.5V0h68.7zm34.3 0h-17.8l63.8 79.4h17.9l-32-39.7 32-39.6h-17.9l-23 28.6-23-28.6zm18.3 56.7-9-11-27.1 33.7h17.8l18.3-22.7z"/><path fill="#000" d="M81 79.3 17 0H0v79.3h13.6V17l50.2 62.3H81Zm252.6-.4c-1 0-1.8-.4-2.5-1s-1.1-1.6-1.1-2.6.3-1.8 1-2.5 1.6-1 2.6-1 1.8.3 2.5 1a3.4 3.4 0 0 1 .6 4.3 3.7 3.7 0 0 1-3 1.8zm23.2-33.5h6v23.3c0 2.1-.4 4-1.3 5.5a9.1 9.1 0 0 1-3.8 3.5c-1.6.8-3.5 1.3-5.7 1.3-2 0-3.7-.4-5.3-1s-2.8-1.8-3.7-3.2c-.9-1.3-1.4-3-1.4-5h6c.1.8.3 1.6.7 2.2s1 1.2 1.6 1.5c.7.4 1.5.5 2.4.5 1 0 1.8-.2 2.4-.6a4 4 0 0 0 1.6-1.8c.3-.8.5-1.8.5-3V45.5zm30.9 9.1a4.4 4.4 0 0 0-2-3.3 7.5 7.5 0 0 0-4.3-1.1c-1.3 0-2.4.2-3.3.5-.9.4-1.6 1-2 1.6a3.5 3.5 0 0 0-.3 4c.3.5.7.9 1.3 1.2l1.8 1 2 .5 3.2.8c1.3.3 2.5.7 3.7 1.2a13 13 0 0 1 3.2 1.8 8.1 8.1 0 0 1 3 6.5c0 2-.5 3.7-1.5 5.1a10 10 0 0 1-4.4 3.5c-1.8.8-4.1 1.2-6.8 1.2-2.6 0-4.9-.4-6.8-1.2-2-.8-3.4-2-4.5-3.5a10 10 0 0 1-1.7-5.6h6a5 5 0 0 0 3.5 4.6c1 .4 2.2.6 3.4.6 1.3 0 2.5-.2 3.5-.6 1-.4 1.8-1 2.4-1.7a4 4 0 0 0 .8-2.4c0-.9-.2-1.6-.7-2.2a11 11 0 0 0-2.1-1.4l-3.2-1-3.8-1c-2.8-.7-5-1.7-6.6-3.2a7.2 7.2 0 0 1-2.4-5.7 8 8 0 0 1 1.7-5 10 10 0 0 1 4.3-3.5c2-.8 4-1.2 6.4-1.2 2.3 0 4.4.4 6.2 1.2 1.8.8 3.2 2 4.3 3.4 1 1.4 1.5 3 1.5 5h-5.8z"/></svg>

package/examples/client/nextjs/public/vercel.svg

@@ -0,0 +1 @@
+<svg fill="none" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 1155 1000"><path d="m577.3 0 577.4 1000H0z" fill="#fff"/></svg>

package/examples/client/nextjs/public/window.svg

@@ -0,0 +1 @@
+<svg fill="none" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill-rule="evenodd" clip-rule="evenodd" d="M1.5 2.5h13v10a1 1 0 0 1-1 1h-11a1 1 0 0 1-1-1zM0 1h16v11.5a2.5 2.5 0 0 1-2.5 2.5h-11A2.5 2.5 0 0 1 0 12.5zm3.75 4.5a.75.75 0 1 0 0-1.5.75.75 0 0 0 0 1.5M7 4.75a.75.75 0 1 1-1.5 0 .75.75 0 0 1 1.5 0m1.75.75a.75.75 0 1 0 0-1.5.75.75 0 0 0 0 1.5" fill="#666"/></svg>

package/examples/client/nextjs/tsconfig.json

@@ -0,0 +1,27 @@
+{
+  "compilerOptions": {
+    "target": "ES2017",
+    "lib": ["dom", "dom.iterable", "esnext"],
+    "allowJs": true,
+    "skipLibCheck": true,
+    "strict": true,
+    "noEmit": true,
+    "esModuleInterop": true,
+    "module": "esnext",
+    "moduleResolution": "bundler",
+    "resolveJsonModule": true,
+    "isolatedModules": true,
+    "jsx": "preserve",
+    "incremental": true,
+    "plugins": [
+      {
+        "name": "next"
+      }
+    ],
+    "paths": {
+      "@/*": ["./*"]
+    }
+  },
+  "include": ["next-env.d.ts", "**/*.ts", "**/*.tsx", ".next/types/**/*.ts"],
+  "exclude": ["node_modules"]
+}