@feelflow/ffid-sdk 1.4.0 → 1.6.0

package/README.md

@@ -3,7 +3,7 @@
 [![npm version](https://img.shields.io/npm/v/@feelflow/ffid-sdk.svg)](https://www.npmjs.com/package/@feelflow/ffid-sdk)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
 
-FeelFlow ID Platform SDK for React/Next.js applications.
+FeelFlow ID Platform SDK — React/Next.js 向け + サーバーサイドモジュールはフレームワーク非依存。
 
 **5行のコードでFFID認証を導入！**
 
@@ -273,6 +273,92 @@ interface FFIDOAuthUserInfoSubscription {
 
 `seatModel` はシートモデル識別用であり、organization と role は userinfo の解決済み組織文脈として扱います。
 
+## React 以外の環境で使う
+
+本 SDK は React/Next.js 向けに設計されていますが、一部のモジュールはフレームワーク非依存で利用できます。
+
+### サーバーサイドモジュール（React 依存なし）
+
+以下の subpath exports は React に一切依存しません。Node.js、Deno、Bun 等で即座に利用できます。
+
+```typescript
+// 利用規約・法的文書
+import { createFFIDLegalClient } from '@feelflow/ffid-sdk/legal'
+
+// Agency（代理店）管理
+import { createFFIDAgencyClient } from '@feelflow/ffid-sdk/agency'
+
+// お知らせ取得
+import { createFFIDAnnouncementsClient } from '@feelflow/ffid-sdk/announcements'
+
+// Webhook 署名検証・ハンドラー（※ Node.js crypto が必要）
+import { createFFIDWebhookHandler, verifyWebhookSignature } from '@feelflow/ffid-sdk/webhooks'
+```
+
+> **Note**: `webhooks` モジュールは Node.js の `crypto` モジュールと `Buffer` を使用します。Cloudflare Workers で利用する場合は [`nodejs_compat` 互換フラグ](https://developers.cloudflare.com/workers/runtime-apis/nodejs/)を有効にしてください。
+
+これらのモジュールは独立した subpath export として公開されているため、メインエントリ (`@feelflow/ffid-sdk`) を経由せず、React の依存が伝播しません。
+
+### `createFFIDClient` を非 React 環境で使う
+
+非 React 環境では、可能な限り上記の subpath exports（`/legal`、`/webhooks` 等）の個別クライアントを使用してください。メインエントリの `createFFIDClient` を使う必要がある場合、`createFFIDClient` 自体は React を使用しませんが、メインエントリに含まれるため **bundler 環境では React を external に指定する**必要があります。
+
+#### Cloudflare Workers
+
+ビルドコマンドで `--external` を指定するか、カスタム esbuild 設定で `external` を設定してください。
+
+```bash
+# wrangler のビルドコマンド例
+esbuild src/index.ts --bundle --format=esm --external:react --external:react-dom
+```
+
+#### Vue / Nuxt（Vite）
+
+```typescript
+// vite.config.ts
+export default defineConfig({
+  build: {
+    rollupOptions: {
+      external: ['react', 'react-dom'],
+    },
+  },
+})
+```
+
+#### esbuild
+
+```bash
+esbuild src/index.ts --bundle --external:react --external:react-dom
+```
+
+#### webpack
+
+```javascript
+// webpack.config.js
+module.exports = {
+  externals: {
+    react: 'react',
+    'react-dom': 'react-dom',
+  },
+}
+```
+
+> **Note**: サーバーサイドで bundler を使わずに実行する場合、**subpath exports（`@feelflow/ffid-sdk/legal` 等）を使用すれば** external 設定なしで React がインストールされていなくても動作します。メインエントリ（`@feelflow/ffid-sdk`）を ESM で import する場合は、モジュールグラフが静的に解決されるため React が必要です。
+
+### `peerDependencies` は optional です
+
+SDK の `package.json` で `react` / `react-dom` は `optional: true` に設定済みです（利用者側での設定は不要）。React をインストールしなくても `npm install` 時に warning は発生しません。
+
+```json
+// SDK の package.json に設定済み（参考）
+{
+  "peerDependenciesMeta": {
+    "react": { "optional": true },
+    "react-dom": { "optional": true }
+  }
+}
+```
+
 ## 環境変数
 
 オプションで環境変数を使用してデフォルト設定を上書きできます：

package/dist/{chunk-S2YL5Y4O.js → chunk-4LSSBFZG.js}

@@ -1,4 +1,5 @@
 import { createContext, useState, useRef, useEffect, useMemo, useCallback, useContext } from 'react';
+import { createRemoteJWKSet, jwtVerify } from 'jose';
 import { jsx, jsxs, Fragment } from 'react/jsx-runtime';
 
 // src/constants.ts
@@ -176,11 +177,79 @@ function mapUserinfoSubscriptionToSession(userinfo, serviceCode) {
     }
   ];
 }
+var JWKS_ENDPOINT = "/.well-known/jwks.json";
+var JWT_ISSUER = "https://id.feelflow.co.jp";
+var JWT_ALGORITHM = "ES256";
+var JWT_CLOCK_TOLERANCE_SECONDS = 30;
+function createJwtVerifier(deps) {
+  const { baseUrl, serviceCode, logger, createError, errorCodes } = deps;
+  const jwksUrl = new URL(JWKS_ENDPOINT, baseUrl);
+  const jwks = createRemoteJWKSet(jwksUrl);
+  async function verifyJwt(accessToken) {
+    if (!accessToken || !accessToken.trim()) {
+      return {
+        error: createError(
+          errorCodes.TOKEN_VERIFICATION_ERROR,
+          "\u30A2\u30AF\u30BB\u30B9\u30C8\u30FC\u30AF\u30F3\u304C\u6307\u5B9A\u3055\u308C\u3066\u3044\u307E\u305B\u3093"
+        )
+      };
+    }
+    try {
+      const { payload } = await jwtVerify(accessToken, jwks, {
+        algorithms: [JWT_ALGORITHM],
+        issuer: JWT_ISSUER,
+        audience: serviceCode,
+        clockTolerance: JWT_CLOCK_TOLERANCE_SECONDS
+      });
+      if (!payload.sub) {
+        logger.error("JWT payload missing sub claim");
+        return {
+          error: createError(
+            errorCodes.TOKEN_VERIFICATION_ERROR,
+            "JWT\u30DA\u30A4\u30ED\u30FC\u30C9\u306B\u30E6\u30FC\u30B6\u30FCID\u304C\u542B\u307E\u308C\u3066\u3044\u307E\u305B\u3093"
+          )
+        };
+      }
+      const userInfo = {
+        sub: payload.sub,
+        email: null,
+        name: null,
+        picture: null,
+        organizationId: payload.org_id ?? null
+        // subscription is not available from JWT
+      };
+      return { data: userInfo };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : "JWT\u691C\u8A3C\u306B\u5931\u6557\u3057\u307E\u3057\u305F";
+      logger.error("JWT verification failed:", message);
+      return {
+        error: createError(
+          errorCodes.TOKEN_VERIFICATION_ERROR,
+          `JWT\u691C\u8A3C\u306B\u5931\u6557\u3057\u307E\u3057\u305F: ${message}`
+        )
+      };
+    }
+  }
+  return verifyJwt;
+}
 
 // src/client/verify-access-token.ts
 var OAUTH_INTROSPECT_ENDPOINT = "/api/v1/oauth/introspect";
 function createVerifyAccessToken(deps) {
-  const { authMode, baseUrl, serviceApiKey, logger, createError, errorCodes } = deps;
+  const { authMode, baseUrl, serviceCode, serviceApiKey, verifyStrategy, logger, createError, errorCodes } = deps;
+  let jwtVerify2 = null;
+  function getJwtVerifier() {
+    if (!jwtVerify2) {
+      jwtVerify2 = createJwtVerifier({
+        baseUrl,
+        serviceCode,
+        logger,
+        createError,
+        errorCodes: { TOKEN_VERIFICATION_ERROR: errorCodes.TOKEN_VERIFICATION_ERROR }
+      });
+    }
+    return jwtVerify2;
+  }
   async function verifyAccessToken(accessToken) {
     if (authMode !== "service-key") {
       return {
@@ -198,6 +267,12 @@ function createVerifyAccessToken(deps) {
         )
       };
     }
+    if (verifyStrategy === "jwt") {
+      return getJwtVerifier()(accessToken);
+    }
+    return verifyViaIntrospect(accessToken);
+  }
+  async function verifyViaIntrospect(accessToken) {
     if (!serviceApiKey) {
       return {
         error: createError(
@@ -333,7 +408,9 @@ function createFFIDClient(config) {
   const baseUrl = config.apiBaseUrl ?? DEFAULT_API_BASE_URL;
   const authMode = config.authMode ?? "cookie";
   const clientId = config.clientId ?? config.serviceCode;
+  const resolvedRedirectUri = config.redirectUri ?? null;
   const serviceApiKey = config.serviceApiKey?.trim();
+  const verifyStrategy = config.verifyStrategy ?? "jwt";
   if (authMode === "service-key" && !serviceApiKey) {
     throw new Error("FFID Client: service-key \u30E2\u30FC\u30C9\u3067\u306F serviceApiKey \u304C\u5FC5\u9808\u3067\u3059");
   }
@@ -637,11 +714,21 @@ function createFFIDClient(config) {
   async function exchangeCodeForTokens(code, codeVerifier) {
     const url = `${baseUrl}${OAUTH_TOKEN_ENDPOINT}`;
     logger.debug("Exchanging code for tokens:", url);
+    const effectiveRedirectUri = resolvedRedirectUri ?? (typeof window !== "undefined" ? window.location.origin + window.location.pathname : null);
+    if (!effectiveRedirectUri) {
+      logger.error("redirectUri is required for token exchange in SSR environments. Set config.redirectUri explicitly.");
+      return {
+        error: {
+          code: FFID_ERROR_CODES.TOKEN_EXCHANGE_ERROR,
+          message: "redirectUri \u304C\u672A\u8A2D\u5B9A\u3067\u3059\u3002SSR\u74B0\u5883\u3067\u306F config.redirectUri \u3092\u660E\u793A\u7684\u306B\u6307\u5B9A\u3057\u3066\u304F\u3060\u3055\u3044"
+        }
+      };
+    }
     const body = {
       grant_type: "authorization_code",
       code,
       client_id: clientId,
-      redirect_uri: typeof window !== "undefined" ? window.location.origin + window.location.pathname : ""
+      redirect_uri: effectiveRedirectUri
     };
     if (codeVerifier) {
       body.code_verifier = codeVerifier;
@@ -779,11 +866,11 @@ function createFFIDClient(config) {
     storeCodeVerifier(verifier);
     generateCodeChallenge(verifier).then((challenge) => {
       const state = generateRandomState();
-      const currentUrl = window.location.origin + window.location.pathname;
+      const redirectUri = resolvedRedirectUri ?? window.location.origin + window.location.pathname;
       const params = new URLSearchParams({
         response_type: "code",
         client_id: clientId,
-        redirect_uri: currentUrl,
+        redirect_uri: redirectUri,
         state,
         code_challenge: challenge,
         code_challenge_method: "S256"
@@ -825,7 +912,9 @@ function createFFIDClient(config) {
   const verifyAccessToken = createVerifyAccessToken({
     authMode,
     baseUrl,
+    serviceCode: config.serviceCode,
     serviceApiKey,
+    verifyStrategy,
     logger,
     createError,
     errorCodes: FFID_ERROR_CODES
@@ -849,7 +938,8 @@ function createFFIDClient(config) {
     logger,
     baseUrl,
     serviceCode: config.serviceCode,
-    clientId
+    clientId,
+    redirectUri: resolvedRedirectUri
   };
 }
 function generateRandomState() {

package/dist/{chunk-5XOQIUEZ.cjs → chunk-LILTOMJP.cjs}

@@ -1,6 +1,7 @@
 'use strict';
 
 var react = require('react');
+var jose = require('jose');
 var jsxRuntime = require('react/jsx-runtime');
 
 // src/constants.ts
@@ -178,11 +179,79 @@ function mapUserinfoSubscriptionToSession(userinfo, serviceCode) {
     }
   ];
 }
+var JWKS_ENDPOINT = "/.well-known/jwks.json";
+var JWT_ISSUER = "https://id.feelflow.co.jp";
+var JWT_ALGORITHM = "ES256";
+var JWT_CLOCK_TOLERANCE_SECONDS = 30;
+function createJwtVerifier(deps) {
+  const { baseUrl, serviceCode, logger, createError, errorCodes } = deps;
+  const jwksUrl = new URL(JWKS_ENDPOINT, baseUrl);
+  const jwks = jose.createRemoteJWKSet(jwksUrl);
+  async function verifyJwt(accessToken) {
+    if (!accessToken || !accessToken.trim()) {
+      return {
+        error: createError(
+          errorCodes.TOKEN_VERIFICATION_ERROR,
+          "\u30A2\u30AF\u30BB\u30B9\u30C8\u30FC\u30AF\u30F3\u304C\u6307\u5B9A\u3055\u308C\u3066\u3044\u307E\u305B\u3093"
+        )
+      };
+    }
+    try {
+      const { payload } = await jose.jwtVerify(accessToken, jwks, {
+        algorithms: [JWT_ALGORITHM],
+        issuer: JWT_ISSUER,
+        audience: serviceCode,
+        clockTolerance: JWT_CLOCK_TOLERANCE_SECONDS
+      });
+      if (!payload.sub) {
+        logger.error("JWT payload missing sub claim");
+        return {
+          error: createError(
+            errorCodes.TOKEN_VERIFICATION_ERROR,
+            "JWT\u30DA\u30A4\u30ED\u30FC\u30C9\u306B\u30E6\u30FC\u30B6\u30FCID\u304C\u542B\u307E\u308C\u3066\u3044\u307E\u305B\u3093"
+          )
+        };
+      }
+      const userInfo = {
+        sub: payload.sub,
+        email: null,
+        name: null,
+        picture: null,
+        organizationId: payload.org_id ?? null
+        // subscription is not available from JWT
+      };
+      return { data: userInfo };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : "JWT\u691C\u8A3C\u306B\u5931\u6557\u3057\u307E\u3057\u305F";
+      logger.error("JWT verification failed:", message);
+      return {
+        error: createError(
+          errorCodes.TOKEN_VERIFICATION_ERROR,
+          `JWT\u691C\u8A3C\u306B\u5931\u6557\u3057\u307E\u3057\u305F: ${message}`
+        )
+      };
+    }
+  }
+  return verifyJwt;
+}
 
 // src/client/verify-access-token.ts
 var OAUTH_INTROSPECT_ENDPOINT = "/api/v1/oauth/introspect";
 function createVerifyAccessToken(deps) {
-  const { authMode, baseUrl, serviceApiKey, logger, createError, errorCodes } = deps;
+  const { authMode, baseUrl, serviceCode, serviceApiKey, verifyStrategy, logger, createError, errorCodes } = deps;
+  let jwtVerify2 = null;
+  function getJwtVerifier() {
+    if (!jwtVerify2) {
+      jwtVerify2 = createJwtVerifier({
+        baseUrl,
+        serviceCode,
+        logger,
+        createError,
+        errorCodes: { TOKEN_VERIFICATION_ERROR: errorCodes.TOKEN_VERIFICATION_ERROR }
+      });
+    }
+    return jwtVerify2;
+  }
   async function verifyAccessToken(accessToken) {
     if (authMode !== "service-key") {
       return {
@@ -200,6 +269,12 @@ function createVerifyAccessToken(deps) {
         )
       };
     }
+    if (verifyStrategy === "jwt") {
+      return getJwtVerifier()(accessToken);
+    }
+    return verifyViaIntrospect(accessToken);
+  }
+  async function verifyViaIntrospect(accessToken) {
     if (!serviceApiKey) {
       return {
         error: createError(
@@ -335,7 +410,9 @@ function createFFIDClient(config) {
   const baseUrl = config.apiBaseUrl ?? DEFAULT_API_BASE_URL;
   const authMode = config.authMode ?? "cookie";
   const clientId = config.clientId ?? config.serviceCode;
+  const resolvedRedirectUri = config.redirectUri ?? null;
   const serviceApiKey = config.serviceApiKey?.trim();
+  const verifyStrategy = config.verifyStrategy ?? "jwt";
   if (authMode === "service-key" && !serviceApiKey) {
     throw new Error("FFID Client: service-key \u30E2\u30FC\u30C9\u3067\u306F serviceApiKey \u304C\u5FC5\u9808\u3067\u3059");
   }
@@ -639,11 +716,21 @@ function createFFIDClient(config) {
   async function exchangeCodeForTokens(code, codeVerifier) {
     const url = `${baseUrl}${OAUTH_TOKEN_ENDPOINT}`;
     logger.debug("Exchanging code for tokens:", url);
+    const effectiveRedirectUri = resolvedRedirectUri ?? (typeof window !== "undefined" ? window.location.origin + window.location.pathname : null);
+    if (!effectiveRedirectUri) {
+      logger.error("redirectUri is required for token exchange in SSR environments. Set config.redirectUri explicitly.");
+      return {
+        error: {
+          code: FFID_ERROR_CODES.TOKEN_EXCHANGE_ERROR,
+          message: "redirectUri \u304C\u672A\u8A2D\u5B9A\u3067\u3059\u3002SSR\u74B0\u5883\u3067\u306F config.redirectUri \u3092\u660E\u793A\u7684\u306B\u6307\u5B9A\u3057\u3066\u304F\u3060\u3055\u3044"
+        }
+      };
+    }
     const body = {
       grant_type: "authorization_code",
       code,
       client_id: clientId,
-      redirect_uri: typeof window !== "undefined" ? window.location.origin + window.location.pathname : ""
+      redirect_uri: effectiveRedirectUri
     };
     if (codeVerifier) {
       body.code_verifier = codeVerifier;
@@ -781,11 +868,11 @@ function createFFIDClient(config) {
     storeCodeVerifier(verifier);
     generateCodeChallenge(verifier).then((challenge) => {
       const state = generateRandomState();
-      const currentUrl = window.location.origin + window.location.pathname;
+      const redirectUri = resolvedRedirectUri ?? window.location.origin + window.location.pathname;
       const params = new URLSearchParams({
         response_type: "code",
         client_id: clientId,
-        redirect_uri: currentUrl,
+        redirect_uri: redirectUri,
         state,
         code_challenge: challenge,
         code_challenge_method: "S256"
@@ -827,7 +914,9 @@ function createFFIDClient(config) {
   const verifyAccessToken = createVerifyAccessToken({
     authMode,
     baseUrl,
+    serviceCode: config.serviceCode,
     serviceApiKey,
+    verifyStrategy,
     logger,
     createError,
     errorCodes: FFID_ERROR_CODES
@@ -851,7 +940,8 @@ function createFFIDClient(config) {
     logger,
     baseUrl,
     serviceCode: config.serviceCode,
-    clientId
+    clientId,
+    redirectUri: resolvedRedirectUri
   };
 }
 function generateRandomState() {

package/dist/components/index.cjs

@@ -1,30 +1,30 @@
 'use strict';
 
-var chunk5XOQIUEZ_cjs = require('../chunk-5XOQIUEZ.cjs');
+var chunkLILTOMJP_cjs = require('../chunk-LILTOMJP.cjs');
 
 
 
 Object.defineProperty(exports, "FFIDAnnouncementBadge", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDAnnouncementBadge; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDAnnouncementBadge; }
 });
 Object.defineProperty(exports, "FFIDAnnouncementList", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDAnnouncementList; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDAnnouncementList; }
 });
 Object.defineProperty(exports, "FFIDLoginButton", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDLoginButton; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDLoginButton; }
 });
 Object.defineProperty(exports, "FFIDOrganizationSwitcher", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDOrganizationSwitcher; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDOrganizationSwitcher; }
 });
 Object.defineProperty(exports, "FFIDSubscriptionBadge", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDSubscriptionBadge; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDSubscriptionBadge; }
 });
 Object.defineProperty(exports, "FFIDUserMenu", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDUserMenu; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDUserMenu; }
 });

package/dist/components/index.d.cts

@@ -1,3 +1,3 @@
-export { p as FFIDAnnouncementBadge, K as FFIDAnnouncementBadgeClassNames, M as FFIDAnnouncementBadgeProps, q as FFIDAnnouncementList, N as FFIDAnnouncementListClassNames, O as FFIDAnnouncementListProps, v as FFIDLoginButton, P as FFIDLoginButtonProps, z as FFIDOrganizationSwitcher, Q as FFIDOrganizationSwitcherClassNames, R as FFIDOrganizationSwitcherProps, D as FFIDSubscriptionBadge, S as FFIDSubscriptionBadgeClassNames, T as FFIDSubscriptionBadgeProps, H as FFIDUserMenu, V as FFIDUserMenuClassNames, W as FFIDUserMenuProps } from '../index-DHmt43kQ.cjs';
+export { p as FFIDAnnouncementBadge, M as FFIDAnnouncementBadgeClassNames, N as FFIDAnnouncementBadgeProps, q as FFIDAnnouncementList, O as FFIDAnnouncementListClassNames, P as FFIDAnnouncementListProps, w as FFIDLoginButton, Q as FFIDLoginButtonProps, B as FFIDOrganizationSwitcher, R as FFIDOrganizationSwitcherClassNames, S as FFIDOrganizationSwitcherProps, E as FFIDSubscriptionBadge, T as FFIDSubscriptionBadgeClassNames, V as FFIDSubscriptionBadgeProps, I as FFIDUserMenu, W as FFIDUserMenuClassNames, X as FFIDUserMenuProps } from '../index-oF_MAO2T.cjs';
 import 'react/jsx-runtime';
 import 'react';

package/dist/components/index.d.ts

@@ -1,3 +1,3 @@
-export { p as FFIDAnnouncementBadge, K as FFIDAnnouncementBadgeClassNames, M as FFIDAnnouncementBadgeProps, q as FFIDAnnouncementList, N as FFIDAnnouncementListClassNames, O as FFIDAnnouncementListProps, v as FFIDLoginButton, P as FFIDLoginButtonProps, z as FFIDOrganizationSwitcher, Q as FFIDOrganizationSwitcherClassNames, R as FFIDOrganizationSwitcherProps, D as FFIDSubscriptionBadge, S as FFIDSubscriptionBadgeClassNames, T as FFIDSubscriptionBadgeProps, H as FFIDUserMenu, V as FFIDUserMenuClassNames, W as FFIDUserMenuProps } from '../index-DHmt43kQ.js';
+export { p as FFIDAnnouncementBadge, M as FFIDAnnouncementBadgeClassNames, N as FFIDAnnouncementBadgeProps, q as FFIDAnnouncementList, O as FFIDAnnouncementListClassNames, P as FFIDAnnouncementListProps, w as FFIDLoginButton, Q as FFIDLoginButtonProps, B as FFIDOrganizationSwitcher, R as FFIDOrganizationSwitcherClassNames, S as FFIDOrganizationSwitcherProps, E as FFIDSubscriptionBadge, T as FFIDSubscriptionBadgeClassNames, V as FFIDSubscriptionBadgeProps, I as FFIDUserMenu, W as FFIDUserMenuClassNames, X as FFIDUserMenuProps } from '../index-oF_MAO2T.js';
 import 'react/jsx-runtime';
 import 'react';

package/dist/components/index.js

@@ -1 +1 @@
-export { FFIDAnnouncementBadge, FFIDAnnouncementList, FFIDLoginButton, FFIDOrganizationSwitcher, FFIDSubscriptionBadge, FFIDUserMenu } from '../chunk-S2YL5Y4O.js';
+export { FFIDAnnouncementBadge, FFIDAnnouncementList, FFIDLoginButton, FFIDOrganizationSwitcher, FFIDSubscriptionBadge, FFIDUserMenu } from '../chunk-4LSSBFZG.js';

package/dist/{index-DHmt43kQ.d.cts → index-oF_MAO2T.d.cts}

@@ -137,8 +137,46 @@ interface FFIDConfig {
     authMode?: 'cookie' | 'token' | 'service-key' | undefined;
     /** Client ID for token mode (defaults to serviceCode if not set) */
     clientId?: string | undefined;
+    /** Custom redirect URI for OAuth flow (defaults to window.location.origin + window.location.pathname) */
+    redirectUri?: string | undefined;
     /** Service API key for service-key mode (X-Service-Api-Key header) */
     serviceApiKey?: string | undefined;
+    /**
+     * Token verification strategy for service-key mode.
+     * - 'jwt': Local JWT verification via JWKS (default, lower latency)
+     * - 'introspect': Remote introspection via /api/v1/oauth/introspect
+     *
+     * JWT verification returns limited claims (no email/name/picture/subscription).
+     * Use 'introspect' if you need full user profile data.
+     */
+    verifyStrategy?: 'jwt' | 'introspect' | undefined;
+}
+/**
+ * FFID JWT claims structure (minimal payload).
+ *
+ * These are the claims available when using JWT local verification.
+ * email, name, picture, and subscription are NOT included in the JWT
+ * to minimize token size.
+ */
+interface FFIDJwtClaims {
+    /** Subject: user UUID */
+    sub: string;
+    /** Issuer */
+    iss: string;
+    /** Audience: service code */
+    aud: string;
+    /** Expiration time (Unix timestamp) */
+    exp: number;
+    /** Issued at (Unix timestamp) */
+    iat: number;
+    /** JWT ID: token row UUID */
+    jti: string;
+    /** OAuth scope */
+    scope: string;
+    /** Organization UUID */
+    org_id: string | null;
+    /** Service UUID */
+    svc_id: string;
 }
 /**
  * FFID context value provided to consumers
@@ -647,4 +685,4 @@ interface FFIDAnnouncementListProps {
  */
 declare function FFIDAnnouncementList({ announcements, isLoading, className, classNames, style, formatDate, emptyMessage, loadingRender, renderItem, maxContentLines, }: FFIDAnnouncementListProps): react_jsx_runtime.JSX.Element;
 
-export { type AnnouncementListResponse as A, type FFIDSeatModel as B, type FFIDSubscription as C, FFIDSubscriptionBadge as D, type FFIDSubscriptionStatus as E, type FFIDConfig as F, type FFIDTokenIntrospectionResponse as G, FFIDUserMenu as H, type UseFFIDAnnouncementsReturn as I, useFFIDAnnouncements as J, type FFIDAnnouncementBadgeClassNames as K, type ListAnnouncementsOptions as L, type FFIDAnnouncementBadgeProps as M, type FFIDAnnouncementListClassNames as N, type FFIDAnnouncementListProps as O, type FFIDLoginButtonProps as P, type FFIDOrganizationSwitcherClassNames as Q, type FFIDOrganizationSwitcherProps as R, type FFIDSubscriptionBadgeClassNames as S, type FFIDSubscriptionBadgeProps as T, type UseFFIDAnnouncementsOptions as U, type FFIDUserMenuClassNames as V, type FFIDUserMenuProps as W, type FFIDApiResponse as a, type FFIDSessionResponse as b, type FFIDError as c, type FFIDSubscriptionCheckResponse as d, type FFIDOAuthUserInfo as e, type FFIDLogger as f, type FFIDUser as g, type FFIDOrganization as h, type FFIDSubscriptionContextValue as i, type FFIDAnnouncementsClientConfig as j, type FFIDAnnouncementsApiResponse as k, type FFIDAnnouncementsLogger as l, type Announcement as m, type AnnouncementStatus as n, type AnnouncementType as o, FFIDAnnouncementBadge as p, FFIDAnnouncementList as q, type FFIDAnnouncementsError as r, type FFIDAnnouncementsErrorCode as s, type FFIDAnnouncementsServerResponse as t, type FFIDContextValue as u, FFIDLoginButton as v, type FFIDOAuthTokenResponse as w, type FFIDOAuthUserInfoMemberRole as x, type FFIDOAuthUserInfoSubscription as y, FFIDOrganizationSwitcher as z };
+export { type AnnouncementListResponse as A, FFIDOrganizationSwitcher as B, type FFIDSeatModel as C, type FFIDSubscription as D, FFIDSubscriptionBadge as E, type FFIDConfig as F, type FFIDSubscriptionStatus as G, type FFIDTokenIntrospectionResponse as H, FFIDUserMenu as I, type UseFFIDAnnouncementsReturn as J, useFFIDAnnouncements as K, type ListAnnouncementsOptions as L, type FFIDAnnouncementBadgeClassNames as M, type FFIDAnnouncementBadgeProps as N, type FFIDAnnouncementListClassNames as O, type FFIDAnnouncementListProps as P, type FFIDLoginButtonProps as Q, type FFIDOrganizationSwitcherClassNames as R, type FFIDOrganizationSwitcherProps as S, type FFIDSubscriptionBadgeClassNames as T, type UseFFIDAnnouncementsOptions as U, type FFIDSubscriptionBadgeProps as V, type FFIDUserMenuClassNames as W, type FFIDUserMenuProps as X, type FFIDApiResponse as a, type FFIDSessionResponse as b, type FFIDError as c, type FFIDSubscriptionCheckResponse as d, type FFIDOAuthUserInfo as e, type FFIDLogger as f, type FFIDUser as g, type FFIDOrganization as h, type FFIDSubscriptionContextValue as i, type FFIDAnnouncementsClientConfig as j, type FFIDAnnouncementsApiResponse as k, type FFIDAnnouncementsLogger as l, type Announcement as m, type AnnouncementStatus as n, type AnnouncementType as o, FFIDAnnouncementBadge as p, FFIDAnnouncementList as q, type FFIDAnnouncementsError as r, type FFIDAnnouncementsErrorCode as s, type FFIDAnnouncementsServerResponse as t, type FFIDContextValue as u, type FFIDJwtClaims as v, FFIDLoginButton as w, type FFIDOAuthTokenResponse as x, type FFIDOAuthUserInfoMemberRole as y, type FFIDOAuthUserInfoSubscription as z };

package/dist/{index-DHmt43kQ.d.ts → index-oF_MAO2T.d.ts}

@@ -137,8 +137,46 @@ interface FFIDConfig {
     authMode?: 'cookie' | 'token' | 'service-key' | undefined;
     /** Client ID for token mode (defaults to serviceCode if not set) */
     clientId?: string | undefined;
+    /** Custom redirect URI for OAuth flow (defaults to window.location.origin + window.location.pathname) */
+    redirectUri?: string | undefined;
     /** Service API key for service-key mode (X-Service-Api-Key header) */
     serviceApiKey?: string | undefined;
+    /**
+     * Token verification strategy for service-key mode.
+     * - 'jwt': Local JWT verification via JWKS (default, lower latency)
+     * - 'introspect': Remote introspection via /api/v1/oauth/introspect
+     *
+     * JWT verification returns limited claims (no email/name/picture/subscription).
+     * Use 'introspect' if you need full user profile data.
+     */
+    verifyStrategy?: 'jwt' | 'introspect' | undefined;
+}
+/**
+ * FFID JWT claims structure (minimal payload).
+ *
+ * These are the claims available when using JWT local verification.
+ * email, name, picture, and subscription are NOT included in the JWT
+ * to minimize token size.
+ */
+interface FFIDJwtClaims {
+    /** Subject: user UUID */
+    sub: string;
+    /** Issuer */
+    iss: string;
+    /** Audience: service code */
+    aud: string;
+    /** Expiration time (Unix timestamp) */
+    exp: number;
+    /** Issued at (Unix timestamp) */
+    iat: number;
+    /** JWT ID: token row UUID */
+    jti: string;
+    /** OAuth scope */
+    scope: string;
+    /** Organization UUID */
+    org_id: string | null;
+    /** Service UUID */
+    svc_id: string;
 }
 /**
  * FFID context value provided to consumers
@@ -647,4 +685,4 @@ interface FFIDAnnouncementListProps {
  */
 declare function FFIDAnnouncementList({ announcements, isLoading, className, classNames, style, formatDate, emptyMessage, loadingRender, renderItem, maxContentLines, }: FFIDAnnouncementListProps): react_jsx_runtime.JSX.Element;
 
-export { type AnnouncementListResponse as A, type FFIDSeatModel as B, type FFIDSubscription as C, FFIDSubscriptionBadge as D, type FFIDSubscriptionStatus as E, type FFIDConfig as F, type FFIDTokenIntrospectionResponse as G, FFIDUserMenu as H, type UseFFIDAnnouncementsReturn as I, useFFIDAnnouncements as J, type FFIDAnnouncementBadgeClassNames as K, type ListAnnouncementsOptions as L, type FFIDAnnouncementBadgeProps as M, type FFIDAnnouncementListClassNames as N, type FFIDAnnouncementListProps as O, type FFIDLoginButtonProps as P, type FFIDOrganizationSwitcherClassNames as Q, type FFIDOrganizationSwitcherProps as R, type FFIDSubscriptionBadgeClassNames as S, type FFIDSubscriptionBadgeProps as T, type UseFFIDAnnouncementsOptions as U, type FFIDUserMenuClassNames as V, type FFIDUserMenuProps as W, type FFIDApiResponse as a, type FFIDSessionResponse as b, type FFIDError as c, type FFIDSubscriptionCheckResponse as d, type FFIDOAuthUserInfo as e, type FFIDLogger as f, type FFIDUser as g, type FFIDOrganization as h, type FFIDSubscriptionContextValue as i, type FFIDAnnouncementsClientConfig as j, type FFIDAnnouncementsApiResponse as k, type FFIDAnnouncementsLogger as l, type Announcement as m, type AnnouncementStatus as n, type AnnouncementType as o, FFIDAnnouncementBadge as p, FFIDAnnouncementList as q, type FFIDAnnouncementsError as r, type FFIDAnnouncementsErrorCode as s, type FFIDAnnouncementsServerResponse as t, type FFIDContextValue as u, FFIDLoginButton as v, type FFIDOAuthTokenResponse as w, type FFIDOAuthUserInfoMemberRole as x, type FFIDOAuthUserInfoSubscription as y, FFIDOrganizationSwitcher as z };
+export { type AnnouncementListResponse as A, FFIDOrganizationSwitcher as B, type FFIDSeatModel as C, type FFIDSubscription as D, FFIDSubscriptionBadge as E, type FFIDConfig as F, type FFIDSubscriptionStatus as G, type FFIDTokenIntrospectionResponse as H, FFIDUserMenu as I, type UseFFIDAnnouncementsReturn as J, useFFIDAnnouncements as K, type ListAnnouncementsOptions as L, type FFIDAnnouncementBadgeClassNames as M, type FFIDAnnouncementBadgeProps as N, type FFIDAnnouncementListClassNames as O, type FFIDAnnouncementListProps as P, type FFIDLoginButtonProps as Q, type FFIDOrganizationSwitcherClassNames as R, type FFIDOrganizationSwitcherProps as S, type FFIDSubscriptionBadgeClassNames as T, type UseFFIDAnnouncementsOptions as U, type FFIDSubscriptionBadgeProps as V, type FFIDUserMenuClassNames as W, type FFIDUserMenuProps as X, type FFIDApiResponse as a, type FFIDSessionResponse as b, type FFIDError as c, type FFIDSubscriptionCheckResponse as d, type FFIDOAuthUserInfo as e, type FFIDLogger as f, type FFIDUser as g, type FFIDOrganization as h, type FFIDSubscriptionContextValue as i, type FFIDAnnouncementsClientConfig as j, type FFIDAnnouncementsApiResponse as k, type FFIDAnnouncementsLogger as l, type Announcement as m, type AnnouncementStatus as n, type AnnouncementType as o, FFIDAnnouncementBadge as p, FFIDAnnouncementList as q, type FFIDAnnouncementsError as r, type FFIDAnnouncementsErrorCode as s, type FFIDAnnouncementsServerResponse as t, type FFIDContextValue as u, type FFIDJwtClaims as v, FFIDLoginButton as w, type FFIDOAuthTokenResponse as x, type FFIDOAuthUserInfoMemberRole as y, type FFIDOAuthUserInfoSubscription as z };

package/dist/index.cjs

@@ -1,12 +1,12 @@
 'use strict';
 
-var chunk5XOQIUEZ_cjs = require('./chunk-5XOQIUEZ.cjs');
+var chunkLILTOMJP_cjs = require('./chunk-LILTOMJP.cjs');
 var react = require('react');
 var jsxRuntime = require('react/jsx-runtime');
 
 function withFFIDAuth(Component, options = {}) {
   const WrappedComponent = (props) => {
-    const { isLoading, isAuthenticated, login } = chunk5XOQIUEZ_cjs.useFFIDContext();
+    const { isLoading, isAuthenticated, login } = chunkLILTOMJP_cjs.useFFIDContext();
     const hasRedirected = react.useRef(false);
     react.useEffect(() => {
       if (!isLoading && !isAuthenticated && options.redirectToLogin && !hasRedirected.current) {
@@ -31,82 +31,82 @@ function withFFIDAuth(Component, options = {}) {
 
 Object.defineProperty(exports, "DEFAULT_API_BASE_URL", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.DEFAULT_API_BASE_URL; }
+  get: function () { return chunkLILTOMJP_cjs.DEFAULT_API_BASE_URL; }
 });
 Object.defineProperty(exports, "FFIDAnnouncementBadge", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDAnnouncementBadge; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDAnnouncementBadge; }
 });
 Object.defineProperty(exports, "FFIDAnnouncementList", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDAnnouncementList; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDAnnouncementList; }
 });
 Object.defineProperty(exports, "FFIDLoginButton", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDLoginButton; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDLoginButton; }
 });
 Object.defineProperty(exports, "FFIDOrganizationSwitcher", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDOrganizationSwitcher; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDOrganizationSwitcher; }
 });
 Object.defineProperty(exports, "FFIDProvider", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDProvider; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDProvider; }
 });
 Object.defineProperty(exports, "FFIDSubscriptionBadge", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDSubscriptionBadge; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDSubscriptionBadge; }
 });
 Object.defineProperty(exports, "FFIDUserMenu", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFIDUserMenu; }
+  get: function () { return chunkLILTOMJP_cjs.FFIDUserMenu; }
 });
 Object.defineProperty(exports, "FFID_ANNOUNCEMENTS_ERROR_CODES", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.FFID_ANNOUNCEMENTS_ERROR_CODES; }
+  get: function () { return chunkLILTOMJP_cjs.FFID_ANNOUNCEMENTS_ERROR_CODES; }
 });
 Object.defineProperty(exports, "createFFIDAnnouncementsClient", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.createFFIDAnnouncementsClient; }
+  get: function () { return chunkLILTOMJP_cjs.createFFIDAnnouncementsClient; }
 });
 Object.defineProperty(exports, "createFFIDClient", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.createFFIDClient; }
+  get: function () { return chunkLILTOMJP_cjs.createFFIDClient; }
 });
 Object.defineProperty(exports, "createTokenStore", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.createTokenStore; }
+  get: function () { return chunkLILTOMJP_cjs.createTokenStore; }
 });
 Object.defineProperty(exports, "generateCodeChallenge", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.generateCodeChallenge; }
+  get: function () { return chunkLILTOMJP_cjs.generateCodeChallenge; }
 });
 Object.defineProperty(exports, "generateCodeVerifier", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.generateCodeVerifier; }
+  get: function () { return chunkLILTOMJP_cjs.generateCodeVerifier; }
 });
 Object.defineProperty(exports, "retrieveCodeVerifier", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.retrieveCodeVerifier; }
+  get: function () { return chunkLILTOMJP_cjs.retrieveCodeVerifier; }
 });
 Object.defineProperty(exports, "storeCodeVerifier", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.storeCodeVerifier; }
+  get: function () { return chunkLILTOMJP_cjs.storeCodeVerifier; }
 });
 Object.defineProperty(exports, "useFFID", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.useFFID; }
+  get: function () { return chunkLILTOMJP_cjs.useFFID; }
 });
 Object.defineProperty(exports, "useFFIDAnnouncements", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.useFFIDAnnouncements; }
+  get: function () { return chunkLILTOMJP_cjs.useFFIDAnnouncements; }
 });
 Object.defineProperty(exports, "useSubscription", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.useSubscription; }
+  get: function () { return chunkLILTOMJP_cjs.useSubscription; }
 });
 Object.defineProperty(exports, "withSubscription", {
   enumerable: true,
-  get: function () { return chunk5XOQIUEZ_cjs.withSubscription; }
+  get: function () { return chunkLILTOMJP_cjs.withSubscription; }
 });
 exports.withFFIDAuth = withFFIDAuth;

package/dist/index.d.cts

@@ -1,5 +1,5 @@
-import { F as FFIDConfig, a as FFIDApiResponse, b as FFIDSessionResponse, c as FFIDError, d as FFIDSubscriptionCheckResponse, e as FFIDOAuthUserInfo, f as FFIDLogger, g as FFIDUser, h as FFIDOrganization, i as FFIDSubscriptionContextValue, j as FFIDAnnouncementsClientConfig, L as ListAnnouncementsOptions, k as FFIDAnnouncementsApiResponse, A as AnnouncementListResponse, l as FFIDAnnouncementsLogger } from './index-DHmt43kQ.cjs';
-export { m as Announcement, n as AnnouncementStatus, o as AnnouncementType, p as FFIDAnnouncementBadge, q as FFIDAnnouncementList, r as FFIDAnnouncementsError, s as FFIDAnnouncementsErrorCode, t as FFIDAnnouncementsServerResponse, u as FFIDContextValue, v as FFIDLoginButton, w as FFIDOAuthTokenResponse, x as FFIDOAuthUserInfoMemberRole, y as FFIDOAuthUserInfoSubscription, z as FFIDOrganizationSwitcher, B as FFIDSeatModel, C as FFIDSubscription, D as FFIDSubscriptionBadge, E as FFIDSubscriptionStatus, G as FFIDTokenIntrospectionResponse, H as FFIDUserMenu, U as UseFFIDAnnouncementsOptions, I as UseFFIDAnnouncementsReturn, J as useFFIDAnnouncements } from './index-DHmt43kQ.cjs';
+import { F as FFIDConfig, a as FFIDApiResponse, b as FFIDSessionResponse, c as FFIDError, d as FFIDSubscriptionCheckResponse, e as FFIDOAuthUserInfo, f as FFIDLogger, g as FFIDUser, h as FFIDOrganization, i as FFIDSubscriptionContextValue, j as FFIDAnnouncementsClientConfig, L as ListAnnouncementsOptions, k as FFIDAnnouncementsApiResponse, A as AnnouncementListResponse, l as FFIDAnnouncementsLogger } from './index-oF_MAO2T.cjs';
+export { m as Announcement, n as AnnouncementStatus, o as AnnouncementType, p as FFIDAnnouncementBadge, q as FFIDAnnouncementList, r as FFIDAnnouncementsError, s as FFIDAnnouncementsErrorCode, t as FFIDAnnouncementsServerResponse, u as FFIDContextValue, v as FFIDJwtClaims, w as FFIDLoginButton, x as FFIDOAuthTokenResponse, y as FFIDOAuthUserInfoMemberRole, z as FFIDOAuthUserInfoSubscription, B as FFIDOrganizationSwitcher, C as FFIDSeatModel, D as FFIDSubscription, E as FFIDSubscriptionBadge, G as FFIDSubscriptionStatus, H as FFIDTokenIntrospectionResponse, I as FFIDUserMenu, U as UseFFIDAnnouncementsOptions, J as UseFFIDAnnouncementsReturn, K as useFFIDAnnouncements } from './index-oF_MAO2T.cjs';
 import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ReactNode, ComponentType, FC } from 'react';
 
@@ -108,6 +108,7 @@ declare function createFFIDClient(config: FFIDConfig): {
     baseUrl: string;
     serviceCode: string;
     clientId: string;
+    redirectUri: string | null;
 };
 /** Type of the FFID client */
 type FFIDClient = ReturnType<typeof createFFIDClient>;

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-import { F as FFIDConfig, a as FFIDApiResponse, b as FFIDSessionResponse, c as FFIDError, d as FFIDSubscriptionCheckResponse, e as FFIDOAuthUserInfo, f as FFIDLogger, g as FFIDUser, h as FFIDOrganization, i as FFIDSubscriptionContextValue, j as FFIDAnnouncementsClientConfig, L as ListAnnouncementsOptions, k as FFIDAnnouncementsApiResponse, A as AnnouncementListResponse, l as FFIDAnnouncementsLogger } from './index-DHmt43kQ.js';
-export { m as Announcement, n as AnnouncementStatus, o as AnnouncementType, p as FFIDAnnouncementBadge, q as FFIDAnnouncementList, r as FFIDAnnouncementsError, s as FFIDAnnouncementsErrorCode, t as FFIDAnnouncementsServerResponse, u as FFIDContextValue, v as FFIDLoginButton, w as FFIDOAuthTokenResponse, x as FFIDOAuthUserInfoMemberRole, y as FFIDOAuthUserInfoSubscription, z as FFIDOrganizationSwitcher, B as FFIDSeatModel, C as FFIDSubscription, D as FFIDSubscriptionBadge, E as FFIDSubscriptionStatus, G as FFIDTokenIntrospectionResponse, H as FFIDUserMenu, U as UseFFIDAnnouncementsOptions, I as UseFFIDAnnouncementsReturn, J as useFFIDAnnouncements } from './index-DHmt43kQ.js';
+import { F as FFIDConfig, a as FFIDApiResponse, b as FFIDSessionResponse, c as FFIDError, d as FFIDSubscriptionCheckResponse, e as FFIDOAuthUserInfo, f as FFIDLogger, g as FFIDUser, h as FFIDOrganization, i as FFIDSubscriptionContextValue, j as FFIDAnnouncementsClientConfig, L as ListAnnouncementsOptions, k as FFIDAnnouncementsApiResponse, A as AnnouncementListResponse, l as FFIDAnnouncementsLogger } from './index-oF_MAO2T.js';
+export { m as Announcement, n as AnnouncementStatus, o as AnnouncementType, p as FFIDAnnouncementBadge, q as FFIDAnnouncementList, r as FFIDAnnouncementsError, s as FFIDAnnouncementsErrorCode, t as FFIDAnnouncementsServerResponse, u as FFIDContextValue, v as FFIDJwtClaims, w as FFIDLoginButton, x as FFIDOAuthTokenResponse, y as FFIDOAuthUserInfoMemberRole, z as FFIDOAuthUserInfoSubscription, B as FFIDOrganizationSwitcher, C as FFIDSeatModel, D as FFIDSubscription, E as FFIDSubscriptionBadge, G as FFIDSubscriptionStatus, H as FFIDTokenIntrospectionResponse, I as FFIDUserMenu, U as UseFFIDAnnouncementsOptions, J as UseFFIDAnnouncementsReturn, K as useFFIDAnnouncements } from './index-oF_MAO2T.js';
 import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ReactNode, ComponentType, FC } from 'react';
 
@@ -108,6 +108,7 @@ declare function createFFIDClient(config: FFIDConfig): {
     baseUrl: string;
     serviceCode: string;
     clientId: string;
+    redirectUri: string | null;
 };
 /** Type of the FFID client */
 type FFIDClient = ReturnType<typeof createFFIDClient>;

package/dist/index.js

@@ -1,5 +1,5 @@
-import { useFFIDContext } from './chunk-S2YL5Y4O.js';
-export { DEFAULT_API_BASE_URL, FFIDAnnouncementBadge, FFIDAnnouncementList, FFIDLoginButton, FFIDOrganizationSwitcher, FFIDProvider, FFIDSubscriptionBadge, FFIDUserMenu, FFID_ANNOUNCEMENTS_ERROR_CODES, createFFIDAnnouncementsClient, createFFIDClient, createTokenStore, generateCodeChallenge, generateCodeVerifier, retrieveCodeVerifier, storeCodeVerifier, useFFID, useFFIDAnnouncements, useSubscription, withSubscription } from './chunk-S2YL5Y4O.js';
+import { useFFIDContext } from './chunk-4LSSBFZG.js';
+export { DEFAULT_API_BASE_URL, FFIDAnnouncementBadge, FFIDAnnouncementList, FFIDLoginButton, FFIDOrganizationSwitcher, FFIDProvider, FFIDSubscriptionBadge, FFIDUserMenu, FFID_ANNOUNCEMENTS_ERROR_CODES, createFFIDAnnouncementsClient, createFFIDClient, createTokenStore, generateCodeChallenge, generateCodeVerifier, retrieveCodeVerifier, storeCodeVerifier, useFFID, useFFIDAnnouncements, useSubscription, withSubscription } from './chunk-4LSSBFZG.js';
 import { useRef, useEffect } from 'react';
 import { jsx, Fragment } from 'react/jsx-runtime';
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@feelflow/ffid-sdk",
-  "version": "1.4.0",
+  "version": "1.6.0",
   "description": "FeelFlow ID Platform SDK for React/Next.js applications",
   "keywords": [
     "feelflow",
@@ -73,6 +73,9 @@
     "test:coverage": "vitest run --coverage",
     "prepublishOnly": "npm run build"
   },
+  "dependencies": {
+    "jose": "^6.0.0"
+  },
   "peerDependencies": {
     "react": "^18.0.0 || ^19.0.0",
     "react-dom": "^18.0.0 || ^19.0.0"