npm - @fnd-platform/cognito-auth - Versions diffs - 1.0.0-alpha.1 → 1.0.0-alpha.2 - Mend

@fnd-platform/cognito-auth 1.0.0-alpha.1 → 1.0.0-alpha.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (22) hide show

package/lib/client/auth-client.d.ts +151 -94
package/lib/client/auth-client.d.ts.map +1 -1
package/lib/client/auth-client.js +330 -209
package/lib/client/auth-client.js.map +1 -1
package/lib/client/errors.d.ts +45 -23
package/lib/client/errors.d.ts.map +1 -1
package/lib/client/errors.js +80 -38
package/lib/client/errors.js.map +1 -1
package/lib/client/index.js +8 -23
package/lib/index.d.ts +2 -2
package/lib/index.d.ts.map +1 -1
package/lib/index.js +2 -1
package/lib/index.js.map +1 -1
package/lib/jwt.js +27 -27
package/lib/remix/session.server.d.ts.map +1 -1
package/lib/remix/session.server.js +98 -95
package/lib/remix/session.server.js.map +1 -1
package/lib/types.d.ts +140 -106
package/lib/types.d.ts.map +1 -1
package/lib/types.js +3 -3
package/package.json +9 -9
package/LICENSE +0 -21

package/lib/client/auth-client.js CHANGED Viewed

@@ -1,4 +1,4 @@
-'use strict';
+"use strict";
 /**
  * Cognito authentication client for frontend applications.
  *
@@ -7,11 +7,11 @@
  *
  * @packageDocumentation
  */
-Object.defineProperty(exports, '__esModule', { value: true });
+Object.defineProperty(exports, "__esModule", { value: true });
 exports.FndAuthClient = void 0;
 exports.clearClientCache = clearClientCache;
-const client_cognito_identity_provider_1 = require('@aws-sdk/client-cognito-identity-provider');
-const errors_js_1 = require('./errors.js');
+const client_cognito_identity_provider_1 = require("@aws-sdk/client-cognito-identity-provider");
+const errors_js_1 = require("./errors.js");
 /**
  * Cache for Cognito clients keyed by configuration.
  */
@@ -20,27 +20,27 @@ const clientCache = new Map();
  * Generates a cache key for the given configuration.
  */
 function getCacheKey(config) {
-  const region = config.region ?? process.env.AWS_REGION ?? 'us-east-1';
-  return `${config.userPoolId}:${config.clientId}:${region}`;
+    const region = config.region ?? process.env.AWS_REGION ?? 'us-east-1';
+    return `${config.userPoolId}:${config.clientId}:${region}`;
 }
 /**
  * Gets or creates a Cognito client for the given configuration.
  */
 function getClient(config) {
-  const key = getCacheKey(config);
-  let client = clientCache.get(key);
-  if (!client) {
-    const region = config.region ?? process.env.AWS_REGION ?? 'us-east-1';
-    client = new client_cognito_identity_provider_1.CognitoIdentityProviderClient({ region });
-    clientCache.set(key, client);
-  }
-  return client;
+    const key = getCacheKey(config);
+    let client = clientCache.get(key);
+    if (!client) {
+        const region = config.region ?? process.env.AWS_REGION ?? 'us-east-1';
+        client = new client_cognito_identity_provider_1.CognitoIdentityProviderClient({ region });
+        clientCache.set(key, client);
+    }
+    return client;
 }
 /**
  * Clears the client cache. Useful for testing.
  */
 function clearClientCache() {
-  clientCache.clear();
+    clientCache.clear();
 }
 /**
  * Cognito authentication client for frontend applications.
@@ -66,205 +66,326 @@ function clearClientCache() {
  * ```
  */
 class FndAuthClient {
-  client;
-  clientId;
-  /**
-   * Creates a new FndAuthClient.
-   *
-   * @param config - Configuration for the auth client
-   */
-  constructor(config) {
-    this.client = getClient(config);
-    this.clientId = config.clientId;
-  }
-  /**
-   * Signs in a user with email and password.
-   *
-   * @param email - User's email address
-   * @param password - User's password
-   * @returns Authentication tokens
-   * @throws {AuthError} If authentication fails
-   *
-   * @example
-   * ```typescript
-   * try {
-   *   const tokens = await authClient.signIn('user@example.com', 'password');
-   *   console.log('Logged in!', tokens.accessToken);
-   * } catch (error) {
-   *   if (error instanceof AuthError && error.code === 'USER_NOT_CONFIRMED') {
-   *     // Redirect to confirmation page
-   *   }
-   * }
-   * ```
-   */
-  async signIn(email, password) {
-    try {
-      const result = await this.client.send(
-        new client_cognito_identity_provider_1.InitiateAuthCommand({
-          AuthFlow: client_cognito_identity_provider_1.AuthFlowType.USER_PASSWORD_AUTH,
-          ClientId: this.clientId,
-          AuthParameters: {
-            USERNAME: email,
-            PASSWORD: password,
-          },
-        })
-      );
-      if (!result.AuthenticationResult) {
-        throw new Error('Authentication failed - no result returned');
-      }
-      const { AccessToken, IdToken, RefreshToken, ExpiresIn } = result.AuthenticationResult;
-      if (!AccessToken || !IdToken || !RefreshToken) {
-        throw new Error('Authentication failed - missing tokens');
-      }
-      return {
-        accessToken: AccessToken,
-        idToken: IdToken,
-        refreshToken: RefreshToken,
-        expiresIn: ExpiresIn ?? 3600,
-      };
-    } catch (error) {
-      throw (0, errors_js_1.mapCognitoError)(error, 'Sign in failed');
+    client;
+    clientId;
+    /**
+     * Creates a new FndAuthClient.
+     *
+     * @param config - Configuration for the auth client
+     */
+    constructor(config) {
+        this.client = getClient(config);
+        this.clientId = config.clientId;
     }
-  }
-  /**
-   * Signs up a new user.
-   *
-   * @param email - User's email address
-   * @param password - User's password
-   * @param name - Optional user's name
-   * @returns Sign-up result with confirmation status
-   * @throws {AuthError} If sign-up fails
-   *
-   * @example
-   * ```typescript
-   * const result = await authClient.signUp('user@example.com', 'password', 'John Doe');
-   * if (!result.userConfirmed) {
-   *   // Show confirmation code input
-   *   console.log(`Code sent to ${result.codeDeliveryDetails?.destination}`);
-   * }
-   * ```
-   */
-  async signUp(email, password, name) {
-    try {
-      const userAttributes = [{ Name: 'email', Value: email }];
-      if (name) {
-        userAttributes.push({ Name: 'name', Value: name });
-      }
-      const result = await this.client.send(
-        new client_cognito_identity_provider_1.SignUpCommand({
-          ClientId: this.clientId,
-          Username: email,
-          Password: password,
-          UserAttributes: userAttributes,
-        })
-      );
-      return {
-        userConfirmed: result.UserConfirmed ?? false,
-        codeDeliveryDetails: result.CodeDeliveryDetails
-          ? {
-              destination: result.CodeDeliveryDetails.Destination,
-              deliveryMedium: result.CodeDeliveryDetails.DeliveryMedium,
+    /**
+     * Signs in a user with email and password.
+     *
+     * @param email - User's email address
+     * @param password - User's password
+     * @returns Authentication tokens
+     * @throws {AuthError} If authentication fails
+     * @throws {NewPasswordRequiredError} If user must change password first
+     *
+     * @example
+     * ```typescript
+     * try {
+     *   const tokens = await authClient.signIn('user@example.com', 'password');
+     *   console.log('Logged in!', tokens.accessToken);
+     * } catch (error) {
+     *   if (error instanceof NewPasswordRequiredError) {
+     *     // Redirect to change password page
+     *     redirect(`/change-password?session=${error.session}&email=${email}`);
+     *   } else if (error instanceof AuthError && error.code === 'USER_NOT_CONFIRMED') {
+     *     // Redirect to confirmation page
+     *   }
+     * }
+     * ```
+     */
+    async signIn(email, password) {
+        try {
+            const result = await this.client.send(new client_cognito_identity_provider_1.InitiateAuthCommand({
+                AuthFlow: client_cognito_identity_provider_1.AuthFlowType.USER_PASSWORD_AUTH,
+                ClientId: this.clientId,
+                AuthParameters: {
+                    USERNAME: email,
+                    PASSWORD: password,
+                },
+            }));
+            // Check if a challenge is required (e.g., NEW_PASSWORD_REQUIRED)
+            if (result.ChallengeName === client_cognito_identity_provider_1.ChallengeNameType.NEW_PASSWORD_REQUIRED) {
+                if (!result.Session) {
+                    throw new Error('Challenge returned without session');
+                }
+                throw new errors_js_1.NewPasswordRequiredError(result.Session, email);
+            }
+            if (!result.AuthenticationResult) {
+                throw new Error('Authentication failed - no result returned');
             }
-          : undefined,
-      };
-    } catch (error) {
-      throw (0, errors_js_1.mapCognitoError)(error, 'Sign up failed');
+            const { AccessToken, IdToken, RefreshToken, ExpiresIn } = result.AuthenticationResult;
+            if (!AccessToken || !IdToken || !RefreshToken) {
+                throw new Error('Authentication failed - missing tokens');
+            }
+            return {
+                accessToken: AccessToken,
+                idToken: IdToken,
+                refreshToken: RefreshToken,
+                expiresIn: ExpiresIn ?? 3600,
+            };
+        }
+        catch (error) {
+            // Re-throw NewPasswordRequiredError without wrapping
+            if (error instanceof errors_js_1.NewPasswordRequiredError) {
+                throw error;
+            }
+            throw (0, errors_js_1.mapCognitoError)(error, 'Sign in failed');
+        }
     }
-  }
-  /**
-   * Confirms a user's sign-up with the verification code.
-   *
-   * @param email - User's email address
-   * @param code - Verification code from email/SMS
-   * @throws {AuthError} If confirmation fails
-   *
-   * @example
-   * ```typescript
-   * await authClient.confirmSignUp('user@example.com', '123456');
-   * // User is now confirmed, can sign in
-   * ```
-   */
-  async confirmSignUp(email, code) {
-    try {
-      await this.client.send(
-        new client_cognito_identity_provider_1.ConfirmSignUpCommand({
-          ClientId: this.clientId,
-          Username: email,
-          ConfirmationCode: code,
-        })
-      );
-    } catch (error) {
-      throw (0, errors_js_1.mapCognitoError)(error, 'Confirmation failed');
+    /**
+     * Completes password change for users with FORCE_CHANGE_PASSWORD status.
+     *
+     * Use this after catching NewPasswordRequiredError from signIn().
+     *
+     * @param email - User's email address
+     * @param newPassword - New password to set
+     * @param session - Session token from NewPasswordRequiredError
+     * @returns Authentication tokens
+     * @throws {AuthError} If password change fails
+     *
+     * @example
+     * ```typescript
+     * // After catching NewPasswordRequiredError
+     * const tokens = await authClient.completeNewPassword(
+     *   email,
+     *   newPassword,
+     *   error.session
+     * );
+     * ```
+     */
+    async completeNewPassword(email, newPassword, session) {
+        try {
+            const result = await this.client.send(new client_cognito_identity_provider_1.RespondToAuthChallengeCommand({
+                ClientId: this.clientId,
+                ChallengeName: client_cognito_identity_provider_1.ChallengeNameType.NEW_PASSWORD_REQUIRED,
+                Session: session,
+                ChallengeResponses: {
+                    USERNAME: email,
+                    NEW_PASSWORD: newPassword,
+                },
+            }));
+            if (!result.AuthenticationResult) {
+                throw new Error('Password change failed - no result returned');
+            }
+            const { AccessToken, IdToken, RefreshToken, ExpiresIn } = result.AuthenticationResult;
+            if (!AccessToken || !IdToken || !RefreshToken) {
+                throw new Error('Password change failed - missing tokens');
+            }
+            return {
+                accessToken: AccessToken,
+                idToken: IdToken,
+                refreshToken: RefreshToken,
+                expiresIn: ExpiresIn ?? 3600,
+            };
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Password change failed');
+        }
     }
-  }
-  /**
-   * Refreshes authentication tokens using a refresh token.
-   *
-   * @param refreshToken - The refresh token from a previous authentication
-   * @returns New authentication tokens
-   * @throws {AuthError} If refresh fails
-   *
-   * @example
-   * ```typescript
-   * // When access token is about to expire
-   * const newTokens = await authClient.refreshTokens(tokens.refreshToken);
-   * ```
-   */
-  async refreshTokens(refreshToken) {
-    try {
-      const result = await this.client.send(
-        new client_cognito_identity_provider_1.InitiateAuthCommand({
-          AuthFlow: client_cognito_identity_provider_1.AuthFlowType.REFRESH_TOKEN_AUTH,
-          ClientId: this.clientId,
-          AuthParameters: {
-            REFRESH_TOKEN: refreshToken,
-          },
-        })
-      );
-      if (!result.AuthenticationResult) {
-        throw new Error('Token refresh failed - no result returned');
-      }
-      const { AccessToken, IdToken, ExpiresIn } = result.AuthenticationResult;
-      if (!AccessToken || !IdToken) {
-        throw new Error('Token refresh failed - missing tokens');
-      }
-      return {
-        accessToken: AccessToken,
-        idToken: IdToken,
-        // Refresh token doesn't change on refresh
-        refreshToken: refreshToken,
-        expiresIn: ExpiresIn ?? 3600,
-      };
-    } catch (error) {
-      throw (0, errors_js_1.mapCognitoError)(error, 'Token refresh failed');
+    /**
+     * Initiates forgot password flow.
+     *
+     * Sends a verification code to the user's email for password reset.
+     *
+     * @param email - User's email address
+     * @returns Delivery details for the reset code
+     * @throws {AuthError} If request fails
+     *
+     * @example
+     * ```typescript
+     * const result = await authClient.forgotPassword('user@example.com');
+     * console.log(`Code sent to ${result.codeDeliveryDetails?.destination}`);
+     * ```
+     */
+    async forgotPassword(email) {
+        try {
+            const result = await this.client.send(new client_cognito_identity_provider_1.ForgotPasswordCommand({
+                ClientId: this.clientId,
+                Username: email,
+            }));
+            return {
+                codeDeliveryDetails: result.CodeDeliveryDetails
+                    ? {
+                        destination: result.CodeDeliveryDetails.Destination,
+                        deliveryMedium: result.CodeDeliveryDetails.DeliveryMedium,
+                    }
+                    : undefined,
+            };
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Forgot password request failed');
+        }
+    }
+    /**
+     * Completes forgot password flow with verification code.
+     *
+     * @param email - User's email address
+     * @param code - Verification code from email
+     * @param newPassword - New password to set
+     * @throws {AuthError} If password reset fails
+     *
+     * @example
+     * ```typescript
+     * await authClient.confirmForgotPassword('user@example.com', '123456', 'NewP@ssw0rd');
+     * // User can now sign in with new password
+     * ```
+     */
+    async confirmForgotPassword(email, code, newPassword) {
+        try {
+            await this.client.send(new client_cognito_identity_provider_1.ConfirmForgotPasswordCommand({
+                ClientId: this.clientId,
+                Username: email,
+                ConfirmationCode: code,
+                Password: newPassword,
+            }));
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Password reset failed');
+        }
+    }
+    /**
+     * Signs up a new user.
+     *
+     * @param email - User's email address
+     * @param password - User's password
+     * @param name - Optional user's name
+     * @returns Sign-up result with confirmation status
+     * @throws {AuthError} If sign-up fails
+     *
+     * @example
+     * ```typescript
+     * const result = await authClient.signUp('user@example.com', 'password', 'John Doe');
+     * if (!result.userConfirmed) {
+     *   // Show confirmation code input
+     *   console.log(`Code sent to ${result.codeDeliveryDetails?.destination}`);
+     * }
+     * ```
+     */
+    async signUp(email, password, name) {
+        try {
+            const userAttributes = [{ Name: 'email', Value: email }];
+            if (name) {
+                userAttributes.push({ Name: 'name', Value: name });
+            }
+            const result = await this.client.send(new client_cognito_identity_provider_1.SignUpCommand({
+                ClientId: this.clientId,
+                Username: email,
+                Password: password,
+                UserAttributes: userAttributes,
+            }));
+            return {
+                userConfirmed: result.UserConfirmed ?? false,
+                codeDeliveryDetails: result.CodeDeliveryDetails
+                    ? {
+                        destination: result.CodeDeliveryDetails.Destination,
+                        deliveryMedium: result.CodeDeliveryDetails.DeliveryMedium,
+                    }
+                    : undefined,
+            };
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Sign up failed');
+        }
+    }
+    /**
+     * Confirms a user's sign-up with the verification code.
+     *
+     * @param email - User's email address
+     * @param code - Verification code from email/SMS
+     * @throws {AuthError} If confirmation fails
+     *
+     * @example
+     * ```typescript
+     * await authClient.confirmSignUp('user@example.com', '123456');
+     * // User is now confirmed, can sign in
+     * ```
+     */
+    async confirmSignUp(email, code) {
+        try {
+            await this.client.send(new client_cognito_identity_provider_1.ConfirmSignUpCommand({
+                ClientId: this.clientId,
+                Username: email,
+                ConfirmationCode: code,
+            }));
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Confirmation failed');
+        }
+    }
+    /**
+     * Refreshes authentication tokens using a refresh token.
+     *
+     * @param refreshToken - The refresh token from a previous authentication
+     * @returns New authentication tokens
+     * @throws {AuthError} If refresh fails
+     *
+     * @example
+     * ```typescript
+     * // When access token is about to expire
+     * const newTokens = await authClient.refreshTokens(tokens.refreshToken);
+     * ```
+     */
+    async refreshTokens(refreshToken) {
+        try {
+            const result = await this.client.send(new client_cognito_identity_provider_1.InitiateAuthCommand({
+                AuthFlow: client_cognito_identity_provider_1.AuthFlowType.REFRESH_TOKEN_AUTH,
+                ClientId: this.clientId,
+                AuthParameters: {
+                    REFRESH_TOKEN: refreshToken,
+                },
+            }));
+            if (!result.AuthenticationResult) {
+                throw new Error('Token refresh failed - no result returned');
+            }
+            const { AccessToken, IdToken, ExpiresIn } = result.AuthenticationResult;
+            if (!AccessToken || !IdToken) {
+                throw new Error('Token refresh failed - missing tokens');
+            }
+            return {
+                accessToken: AccessToken,
+                idToken: IdToken,
+                // Refresh token doesn't change on refresh
+                refreshToken: refreshToken,
+                expiresIn: ExpiresIn ?? 3600,
+            };
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Token refresh failed');
+        }
     }
-  }
-  /**
-   * Signs out the user from all devices.
-   *
-   * This invalidates all refresh tokens for the user, effectively
-   * signing them out from all devices.
-   *
-   * @param accessToken - The user's current access token
-   * @throws {AuthError} If sign-out fails
-   *
-   * @example
-   * ```typescript
-   * await authClient.signOut(tokens.accessToken);
-   * // User is now signed out from all devices
-   * ```
-   */
-  async signOut(accessToken) {
-    try {
-      await this.client.send(
-        new client_cognito_identity_provider_1.GlobalSignOutCommand({
-          AccessToken: accessToken,
-        })
-      );
-    } catch (error) {
-      throw (0, errors_js_1.mapCognitoError)(error, 'Sign out failed');
+    /**
+     * Signs out the user from all devices.
+     *
+     * This invalidates all refresh tokens for the user, effectively
+     * signing them out from all devices.
+     *
+     * @param accessToken - The user's current access token
+     * @throws {AuthError} If sign-out fails
+     *
+     * @example
+     * ```typescript
+     * await authClient.signOut(tokens.accessToken);
+     * // User is now signed out from all devices
+     * ```
+     */
+    async signOut(accessToken) {
+        try {
+            await this.client.send(new client_cognito_identity_provider_1.GlobalSignOutCommand({
+                AccessToken: accessToken,
+            }));
+        }
+        catch (error) {
+            throw (0, errors_js_1.mapCognitoError)(error, 'Sign out failed');
+        }
     }
-  }
 }
 exports.FndAuthClient = FndAuthClient;
-//# sourceMappingURL=auth-client.js.map
+//# sourceMappingURL=auth-client.js.map

package/lib/client/auth-client.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"auth-client.js","sourceRoot":"","sources":["../../src/client/auth-client.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;~~AA2CH~~,4CAEC;~~AA3CD~~,~~gGAOmD~~;AAEnD,~~2CAA8C~~;~~AAE9C~~;;GAEG;AACH,MAAM,WAAW,GAAG,IAAI,GAAG,EAAyC,CAAC;AAErE;;GAEG;AACH,SAAS,WAAW,CAAC,MAAwB;IAC3C,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,IAAI,WAAW,CAAC;IACtE,OAAO,GAAG,MAAM,CAAC,UAAU,IAAI,MAAM,CAAC,QAAQ,IAAI,MAAM,EAAE,CAAC;AAC7D,CAAC;AAED;;GAEG;AACH,SAAS,SAAS,CAAC,MAAwB;IACzC,MAAM,GAAG,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;IAChC,IAAI,MAAM,GAAG,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,IAAI,WAAW,CAAC;QACtE,MAAM,GAAG,IAAI,gEAA6B,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QACvD,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAC/B,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,SAAgB,gBAAgB;IAC9B,WAAW,CAAC,KAAK,EAAE,CAAC;AACtB,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAa,aAAa;IACP,MAAM,CAAgC;IACtC,QAAQ,CAAS;IAElC;;;;OAIG;IACH,YAAY,MAAwB;QAClC,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;IAClC,CAAC;IAED~~;;;;;;;;;;;;;;;;;;;OAmBG~~;IACH,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,QAAgB;QAC1C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,sDAAmB,CAAC;gBACtB,QAAQ,EAAE,+CAAY,CAAC,kBAAkB;gBACzC,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,cAAc,EAAE;oBACd,QAAQ,EAAE,KAAK;oBACf,QAAQ,EAAE,QAAQ;iBACnB;aACF,CAAC,CACH,CAAC;YAEF,IAAI,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;YAChE,CAAC;YAED,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,YAAY,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC,oBAAoB,CAAC;YAEtF,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,IAAI,CAAC,YAAY,EAAE,CAAC;gBAC9C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;YAC5D,CAAC;YAED,OAAO;gBACL,WAAW,EAAE,WAAW;gBACxB,OAAO,EAAE,OAAO;gBAChB,YAAY,EAAE,YAAY;gBAC1B,SAAS,EAAE,SAAS,IAAI,IAAI;aAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;OAiBG;IACH,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,QAAgB,EAAE,IAAa;QACzD,IAAI,CAAC;YACH,MAAM,cAAc,GAAG,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;YAEzD,IAAI,IAAI,EAAE,CAAC;gBACT,cAAc,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YACrD,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,gDAAa,CAAC;gBAChB,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,QAAQ,EAAE,KAAK;gBACf,QAAQ,EAAE,QAAQ;gBAClB,cAAc,EAAE,cAAc;aAC/B,CAAC,CACH,CAAC;YAEF,OAAO;gBACL,aAAa,EAAE,MAAM,CAAC,aAAa,IAAI,KAAK;gBAC5C,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;oBAC7C,CAAC,CAAC;wBACE,WAAW,EAAE,MAAM,CAAC,mBAAmB,CAAC,WAAW;wBACnD,cAAc,EAAE,MAAM,CAAC,mBAAmB,CAAC,cAAiC;qBAC7E;oBACH,CAAC,CAAC,SAAS;aACd,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa,EAAE,IAAY;QAC7C,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACpB,IAAI,uDAAoB,CAAC;gBACvB,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,QAAQ,EAAE,KAAK;gBACf,gBAAgB,EAAE,IAAI;aACvB,CAAC,CACH,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,qBAAqB,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,aAAa,CAAC,YAAoB;QACtC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,sDAAmB,CAAC;gBACtB,QAAQ,EAAE,+CAAY,CAAC,kBAAkB;gBACzC,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,cAAc,EAAE;oBACd,aAAa,EAAE,YAAY;iBAC5B;aACF,CAAC,CACH,CAAC;YAEF,IAAI,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;YAC/D,CAAC;YAED,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC,oBAAoB,CAAC;YAExE,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,EAAE,CAAC;gBAC7B,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;YAC3D,CAAC;YAED,OAAO;gBACL,WAAW,EAAE,WAAW;gBACxB,OAAO,EAAE,OAAO;gBAChB,0CAA0C;gBAC1C,YAAY,EAAE,YAAY;gBAC1B,SAAS,EAAE,SAAS,IAAI,IAAI;aAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,sBAAsB,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,OAAO,CAAC,WAAmB;QAC/B,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACpB,IAAI,uDAAoB,CAAC;gBACvB,WAAW,EAAE,WAAW;aACzB,CAAC,CACH,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,iBAAiB,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;CACF;~~AAzND~~,~~sCAyNC~~"}
1	+ {"version":3,"file":"auth-client.js","sourceRoot":"","sources":["../../src/client/auth-client.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;AA+CH,4CAEC;AA/CD,gGAWmD;AAEnD,2CAAwE;AAExE;;GAEG;AACH,MAAM,WAAW,GAAG,IAAI,GAAG,EAAyC,CAAC;AAErE;;GAEG;AACH,SAAS,WAAW,CAAC,MAAwB;IAC3C,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,IAAI,WAAW,CAAC;IACtE,OAAO,GAAG,MAAM,CAAC,UAAU,IAAI,MAAM,CAAC,QAAQ,IAAI,MAAM,EAAE,CAAC;AAC7D,CAAC;AAED;;GAEG;AACH,SAAS,SAAS,CAAC,MAAwB;IACzC,MAAM,GAAG,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;IAChC,IAAI,MAAM,GAAG,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,IAAI,WAAW,CAAC;QACtE,MAAM,GAAG,IAAI,gEAA6B,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QACvD,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAC/B,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,SAAgB,gBAAgB;IAC9B,WAAW,CAAC,KAAK,EAAE,CAAC;AACtB,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAa,aAAa;IACP,MAAM,CAAgC;IACtC,QAAQ,CAAS;IAElC;;;;OAIG;IACH,YAAY,MAAwB;QAClC,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;IAClC,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACH,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,QAAgB;QAC1C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,sDAAmB,CAAC;gBACtB,QAAQ,EAAE,+CAAY,CAAC,kBAAkB;gBACzC,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,cAAc,EAAE;oBACd,QAAQ,EAAE,KAAK;oBACf,QAAQ,EAAE,QAAQ;iBACnB;aACF,CAAC,CACH,CAAC;YAEF,iEAAiE;YACjE,IAAI,MAAM,CAAC,aAAa,KAAK,oDAAiB,CAAC,qBAAqB,EAAE,CAAC;gBACrE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;oBACpB,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;gBACxD,CAAC;gBACD,MAAM,IAAI,oCAAwB,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YAC5D,CAAC;YAED,IAAI,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;YAChE,CAAC;YAED,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,YAAY,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC,oBAAoB,CAAC;YAEtF,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,IAAI,CAAC,YAAY,EAAE,CAAC;gBAC9C,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;YAC5D,CAAC;YAED,OAAO;gBACL,WAAW,EAAE,WAAW;gBACxB,OAAO,EAAE,OAAO;gBAChB,YAAY,EAAE,YAAY;gBAC1B,SAAS,EAAE,SAAS,IAAI,IAAI;aAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,qDAAqD;YACrD,IAAI,KAAK,YAAY,oCAAwB,EAAE,CAAC;gBAC9C,MAAM,KAAK,CAAC;YACd,CAAC;YACD,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,KAAK,CAAC,mBAAmB,CACvB,KAAa,EACb,WAAmB,EACnB,OAAe;QAEf,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,gEAA6B,CAAC;gBAChC,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,aAAa,EAAE,oDAAiB,CAAC,qBAAqB;gBACtD,OAAO,EAAE,OAAO;gBAChB,kBAAkB,EAAE;oBAClB,QAAQ,EAAE,KAAK;oBACf,YAAY,EAAE,WAAW;iBAC1B;aACF,CAAC,CACH,CAAC;YAEF,IAAI,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;YACjE,CAAC;YAED,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,YAAY,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC,oBAAoB,CAAC;YAEtF,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,IAAI,CAAC,YAAY,EAAE,CAAC;gBAC9C,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;YAC7D,CAAC;YAED,OAAO;gBACL,WAAW,EAAE,WAAW;gBACxB,OAAO,EAAE,OAAO;gBAChB,YAAY,EAAE,YAAY;gBAC1B,SAAS,EAAE,SAAS,IAAI,IAAI;aAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,wBAAwB,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,cAAc,CAAC,KAAa;QAChC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,wDAAqB,CAAC;gBACxB,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,QAAQ,EAAE,KAAK;aAChB,CAAC,CACH,CAAC;YAEF,OAAO;gBACL,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;oBAC7C,CAAC,CAAC;wBACE,WAAW,EAAE,MAAM,CAAC,mBAAmB,CAAC,WAAW;wBACnD,cAAc,EAAE,MAAM,CAAC,mBAAmB,CAAC,cAAiC;qBAC7E;oBACH,CAAC,CAAC,SAAS;aACd,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,gCAAgC,CAAC,CAAC;QACjE,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;OAaG;IACH,KAAK,CAAC,qBAAqB,CACzB,KAAa,EACb,IAAY,EACZ,WAAmB;QAEnB,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACpB,IAAI,+DAA4B,CAAC;gBAC/B,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,QAAQ,EAAE,KAAK;gBACf,gBAAgB,EAAE,IAAI;gBACtB,QAAQ,EAAE,WAAW;aACtB,CAAC,CACH,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,uBAAuB,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;OAiBG;IACH,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,QAAgB,EAAE,IAAa;QACzD,IAAI,CAAC;YACH,MAAM,cAAc,GAAG,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;YAEzD,IAAI,IAAI,EAAE,CAAC;gBACT,cAAc,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YACrD,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,gDAAa,CAAC;gBAChB,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,QAAQ,EAAE,KAAK;gBACf,QAAQ,EAAE,QAAQ;gBAClB,cAAc,EAAE,cAAc;aAC/B,CAAC,CACH,CAAC;YAEF,OAAO;gBACL,aAAa,EAAE,MAAM,CAAC,aAAa,IAAI,KAAK;gBAC5C,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;oBAC7C,CAAC,CAAC;wBACE,WAAW,EAAE,MAAM,CAAC,mBAAmB,CAAC,WAAW;wBACnD,cAAc,EAAE,MAAM,CAAC,mBAAmB,CAAC,cAAiC;qBAC7E;oBACH,CAAC,CAAC,SAAS;aACd,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa,EAAE,IAAY;QAC7C,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACpB,IAAI,uDAAoB,CAAC;gBACvB,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,QAAQ,EAAE,KAAK;gBACf,gBAAgB,EAAE,IAAI;aACvB,CAAC,CACH,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,qBAAqB,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,aAAa,CAAC,YAAoB;QACtC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACnC,IAAI,sDAAmB,CAAC;gBACtB,QAAQ,EAAE,+CAAY,CAAC,kBAAkB;gBACzC,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,cAAc,EAAE;oBACd,aAAa,EAAE,YAAY;iBAC5B;aACF,CAAC,CACH,CAAC;YAEF,IAAI,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;YAC/D,CAAC;YAED,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC,oBAAoB,CAAC;YAExE,IAAI,CAAC,WAAW,IAAI,CAAC,OAAO,EAAE,CAAC;gBAC7B,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;YAC3D,CAAC;YAED,OAAO;gBACL,WAAW,EAAE,WAAW;gBACxB,OAAO,EAAE,OAAO;gBAChB,0CAA0C;gBAC1C,YAAY,EAAE,YAAY;gBAC1B,SAAS,EAAE,SAAS,IAAI,IAAI;aAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,sBAAsB,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,OAAO,CAAC,WAAmB;QAC/B,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CACpB,IAAI,uDAAoB,CAAC;gBACvB,WAAW,EAAE,WAAW;aACzB,CAAC,CACH,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAA,2BAAe,EAAC,KAAK,EAAE,iBAAiB,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;CACF;AA3WD,sCA2WC"}