@foldspace-fe/casdoor-next-auth-kit 0.1.13 → 0.1.15

package/dist/{callback-BTzHQK_r.d.ts → callback-rEWxVGyL.d.ts}

@@ -1,5 +1,5 @@
 import { NextRequest, NextResponse } from 'next/server';
-import { A as AuthKitConfig, a as AuthBusinessAdapter, b as AuthPersistenceAdapter } from './types-DqVXdUge.js';
+import { A as AuthKitConfig, a as AuthBusinessAdapter, b as AuthPersistenceAdapter } from './types-BJv6j3NZ.js';
 
 interface CallbackHandlerOptions {
     config: AuthKitConfig;

package/dist/casdoor/index.d.ts

@@ -1,6 +1,6 @@
-import { A as AuthKitConfig, O as OAuthTokens, C as CasdoorUserInfo } from '../types-DqVXdUge.js';
+import { A as AuthKitConfig, O as OAuthTokens, C as CasdoorUserInfo } from '../types-BJv6j3NZ.js';
 import { NextRequest, NextResponse } from 'next/server';
-export { C as CallbackHandlerOptions, c as createCallbackHandler, a as createCallbackResponse } from '../callback-BTzHQK_r.js';
+export { C as CallbackHandlerOptions, c as createCallbackHandler, a as createCallbackResponse } from '../callback-rEWxVGyL.js';
 
 declare function getCasdoorConfig(config: AuthKitConfig): AuthKitConfig;
 declare function getCasdoorAuthorizeUrl(config: AuthKitConfig, params: {

package/dist/{chunk-CULH4UKG.js → chunk-CLABP4I6.js}

@@ -78,6 +78,13 @@ var AUTH_KIT_ENV_VARIABLES = [
     local: "/login/oauth/authorize",
     production: "/login/oauth/authorize"
   },
+  {
+    key: "NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH",
+    description: "\u6CE8\u9500\u540E\u8DF3\u8F6C\u8DEF\u5F84\uFF0C\u9ED8\u8BA4\u9996\u9875",
+    example: "/",
+    local: "/",
+    production: "/"
+  },
   {
     key: "NEXT_PUBLIC_CASDOOR_STATIC_ORIGIN",
     description: "Casdoor \u9759\u6001\u8D44\u6E90 origin",
@@ -315,4 +322,4 @@ export {
   AUTH_PRISMA_SCHEMA_MODELS,
   buildAuthPrismaSchemaTemplate
 };
-//# sourceMappingURL=chunk-CULH4UKG.js.map
+//# sourceMappingURL=chunk-CLABP4I6.js.map

package/dist/chunk-CLABP4I6.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/core/env.ts","../src/prisma/schema-template.ts"],"sourcesContent":["import type { ManagedEnvFile, ManagedEnvVariableDefinition } from '../types';\n\nexport const AUTH_KIT_ENV_FILES: ManagedEnvFile[] = ['.env', '.env.local', '.env.production', '.env.example'];\n\nexport const AUTH_KIT_ENV_VARIABLES: ManagedEnvVariableDefinition[] = [\n  {\n    key: 'APP_URL',\n    description: '站点对外公开地址',\n    example: 'https://your-domain.com',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_URL',\n    description: 'NextAuth 回调地址',\n    example: 'http://localhost:5177',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_SECRET',\n    description: 'NextAuth JWT secret',\n    example: 'replace-with-a-random-secret',\n    local: 'replace-with-a-random-secret',\n    production: 'replace-with-a-random-secret',\n  },\n  {\n    key: 'GLOBAL_ADMIN_EMAILS',\n    description: '全局管理员邮箱，逗号分隔',\n    example: 'admin@example.com',\n    local: 'admin@example.com',\n    production: 'admin@example.com',\n  },\n  {\n    key: 'AUTH_DEBUG',\n    description: '是否开启认证调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SERVER_URL',\n    description: 'Casdoor 服务地址',\n    example: 'https://auth.example.com',\n    local: 'https://auth.example.com',\n    production: 'https://auth.example.com',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_CLIENT_ID',\n    description: 'Casdoor client id',\n    example: 'your-casdoor-client-id',\n    local: 'your-casdoor-client-id',\n    production: 'your-casdoor-client-id',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_APP_NAME',\n    description: 'Casdoor app name',\n    example: 'your-app-name',\n    local: 'your-app-name',\n    production: 'your-app-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME',\n    description: 'Casdoor organization name',\n    example: 'your-org-name',\n    local: 'your-org-name',\n    production: 'your-org-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_REDIRECT_PATH',\n    description: 'Casdoor OAuth 回调路径',\n    example: '/callback',\n    local: '/callback',\n    production: '/callback',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SIGNIN_PATH',\n    description: 'Casdoor authorize 路径',\n    example: '/login/oauth/authorize',\n    local: '/login/oauth/authorize',\n    production: '/login/oauth/authorize',\n  },\n  {\n    key: 'NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH',\n    description: '注销后跳转路径，默认首页',\n    example: '/',\n    local: '/',\n    production: '/',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_STATIC_ORIGIN',\n    description: 'Casdoor 静态资源 origin',\n    example: 'https://casdoor-static.foldspace.cn',\n    local: 'https://casdoor-static.foldspace.cn',\n    production: 'https://casdoor-static.foldspace.cn',\n  },\n  {\n    key: 'CASDOOR_CLIENT_SECRET',\n    description: 'Casdoor client secret',\n    example: 'your-casdoor-client-secret',\n    local: 'your-casdoor-client-secret',\n    production: 'your-casdoor-client-secret',\n  },\n  {\n    key: 'BILLING_PAYMENT_SUCCESS_DEBUG',\n    description: '是否打印 payment-success 调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n];\n\nfunction stringifyEnvValue(value: string): string {\n  if (value === '') {\n    return '\"\"';\n  }\n\n  if (/^[A-Za-z0-9_./:-]+$/.test(value)) {\n    return value;\n  }\n\n  return JSON.stringify(value);\n}\n\nfunction stripQuotes(value: string): string {\n  const trimmed = value.trim();\n  if (\n    (trimmed.startsWith('\"') && trimmed.endsWith('\"')) ||\n    (trimmed.startsWith(\"'\") && trimmed.endsWith(\"'\"))\n  ) {\n    return trimmed.slice(1, -1);\n  }\n\n  return trimmed;\n}\n\nfunction parseEnvKeys(content: string): Set<string> {\n  const keys = new Set<string>();\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const key = trimmed.slice(0, separatorIndex).trim();\n    if (key) {\n      keys.add(key);\n    }\n  }\n  return keys;\n}\n\nexport function readManagedEnvValue(content: string, key: string): string | null {\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const currentKey = trimmed.slice(0, separatorIndex).trim();\n    if (currentKey !== key) {\n      continue;\n    }\n\n    const rawValue = trimmed.slice(separatorIndex + 1).trim();\n    return stripQuotes(rawValue);\n  }\n\n  return null;\n}\n\nexport function getManagedEnvValue(definition: ManagedEnvVariableDefinition, file: ManagedEnvFile): string {\n  if (file === '.env.example') {\n    return definition.example;\n  }\n  if (file === '.env.production') {\n    return definition.production ?? definition.example;\n  }\n  if (file === '.env.local') {\n    return definition.local ?? definition.example;\n  }\n  return definition.base ?? definition.local ?? definition.production ?? definition.example;\n}\n\nexport function buildManagedEnvTemplate(file: ManagedEnvFile, existingContent = ''): string {\n  const existingKeys = parseEnvKeys(existingContent);\n  const lines: string[] = existingContent.trimEnd() ? existingContent.trimEnd().split(/\\r?\\n/) : [];\n  const missing = AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key));\n\n  if (missing.length === 0 && existingContent) {\n    return existingContent;\n  }\n\n  if (lines.length > 0) {\n    lines.push('');\n  }\n\n  lines.push(`# Casdoor Next Auth Kit managed values for ${file}`);\n  for (const definition of missing) {\n    const value = getManagedEnvValue(definition, file);\n    lines.push(`# ${definition.description}`);\n    lines.push(`${definition.key}=${stringifyEnvValue(value)}`);\n    lines.push('');\n  }\n\n  while (lines.length > 0 && lines[lines.length - 1] === '') {\n    lines.pop();\n  }\n\n  return `${lines.join('\\n')}\\n`;\n}\n\nexport function getMissingManagedEnvKeys(content: string): string[] {\n  const existingKeys = parseEnvKeys(content);\n  return AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key)).map(\n    (definition) => definition.key,\n  );\n}\n\nexport function sanitizeExistingEnvContent(content: string): string {\n  return stripQuotes(content);\n}\n","import type { PrismaSchemaFieldDefinition, PrismaSchemaModelDefinition } from '../types';\n\nexport const AUTH_PRISMA_SCHEMA_MODELS: PrismaSchemaModelDefinition[] = [\n  {\n    name: 'AuthUser',\n    description: 'Shared authentication user record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'email', type: 'String?', attributes: ['@unique'] },\n      { name: 'name', type: 'String?' },\n      { name: 'image', type: 'String?' },\n      { name: 'isAdmin', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'tokenBalance', type: 'Int', attributes: ['@default(0)'] },\n      { name: 'isVip', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([email])'],\n  },\n  {\n    name: 'AuthMembership',\n    description: 'Subscription membership snapshot',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String', attributes: ['@unique'] },\n      { name: 'plan', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthOrder',\n    description: 'Commerce order record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'kind', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'currency', type: 'String', attributes: ['@default(\"CNY\")'] },\n      { name: 'payload', type: 'Json?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthSubscription',\n    description: 'Commerce subscription record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'productId', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'interval', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([productId])'],\n  },\n  {\n    name: 'AuthInvoice',\n    description: 'Commerce invoice record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'orderId', type: 'String?' },\n      { name: 'invoiceNo', type: 'String', attributes: ['@unique'] },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([orderId])'],\n  },\n];\n\nfunction renderField(field: PrismaSchemaFieldDefinition): string {\n  const attributes = field.attributes?.length ? ` ${field.attributes.join(' ')}` : '';\n  return `  ${field.name} ${field.type}${attributes}`;\n}\n\nfunction renderModel(model: PrismaSchemaModelDefinition): string {\n  const lines = [\n    `/// ${model.description}`,\n    `model ${model.name} {`,\n    ...model.fields.map(renderField),\n  ];\n\n  if (model.blockAttributes?.length) {\n    lines.push(...model.blockAttributes.map((attribute) => `  ${attribute}`));\n  }\n\n  lines.push('}');\n  return lines.join('\\n');\n}\n\nexport function buildAuthPrismaSchemaTemplate(models: PrismaSchemaModelDefinition[] = AUTH_PRISMA_SCHEMA_MODELS): string {\n  return [\n    '// generated by @foldspace-fe/casdoor-next-auth-kit',\n    '// merge these models into the host Prisma schema if you want a dedicated auth module',\n    '',\n    ...models.map(renderModel),\n  ].join('\\n\\n');\n}\n"],"mappings":";AAEO,IAAM,qBAAuC,CAAC,QAAQ,cAAc,mBAAmB,cAAc;AAErG,IAAM,yBAAyD;AAAA,EACpE;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AACF;AAEA,SAAS,kBAAkB,OAAuB;AAChD,MAAI,UAAU,IAAI;AAChB,WAAO;AAAA,EACT;AAEA,MAAI,sBAAsB,KAAK,KAAK,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,SAAO,KAAK,UAAU,KAAK;AAC7B;AAEA,SAAS,YAAY,OAAuB;AAC1C,QAAM,UAAU,MAAM,KAAK;AAC3B,MACG,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,KAC/C,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,GAChD;AACA,WAAO,QAAQ,MAAM,GAAG,EAAE;AAAA,EAC5B;AAEA,SAAO;AACT;AAEA,SAAS,aAAa,SAA8B;AAClD,QAAM,OAAO,oBAAI,IAAY;AAC7B,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,MAAM,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AAClD,QAAI,KAAK;AACP,WAAK,IAAI,GAAG;AAAA,IACd;AAAA,EACF;AACA,SAAO;AACT;AAEO,SAAS,oBAAoB,SAAiB,KAA4B;AAC/E,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,aAAa,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AACzD,QAAI,eAAe,KAAK;AACtB;AAAA,IACF;AAEA,UAAM,WAAW,QAAQ,MAAM,iBAAiB,CAAC,EAAE,KAAK;AACxD,WAAO,YAAY,QAAQ;AAAA,EAC7B;AAEA,SAAO;AACT;AAEO,SAAS,mBAAmB,YAA0C,MAA8B;AACzG,MAAI,SAAS,gBAAgB;AAC3B,WAAO,WAAW;AAAA,EACpB;AACA,MAAI,SAAS,mBAAmB;AAC9B,WAAO,WAAW,cAAc,WAAW;AAAA,EAC7C;AACA,MAAI,SAAS,cAAc;AACzB,WAAO,WAAW,SAAS,WAAW;AAAA,EACxC;AACA,SAAO,WAAW,QAAQ,WAAW,SAAS,WAAW,cAAc,WAAW;AACpF;AAEO,SAAS,wBAAwB,MAAsB,kBAAkB,IAAY;AAC1F,QAAM,eAAe,aAAa,eAAe;AACjD,QAAM,QAAkB,gBAAgB,QAAQ,IAAI,gBAAgB,QAAQ,EAAE,MAAM,OAAO,IAAI,CAAC;AAChG,QAAM,UAAU,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC;AAE/F,MAAI,QAAQ,WAAW,KAAK,iBAAiB;AAC3C,WAAO;AAAA,EACT;AAEA,MAAI,MAAM,SAAS,GAAG;AACpB,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,QAAM,KAAK,8CAA8C,IAAI,EAAE;AAC/D,aAAW,cAAc,SAAS;AAChC,UAAM,QAAQ,mBAAmB,YAAY,IAAI;AACjD,UAAM,KAAK,KAAK,WAAW,WAAW,EAAE;AACxC,UAAM,KAAK,GAAG,WAAW,GAAG,IAAI,kBAAkB,KAAK,CAAC,EAAE;AAC1D,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,SAAO,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,IAAI;AACzD,UAAM,IAAI;AAAA,EACZ;AAEA,SAAO,GAAG,MAAM,KAAK,IAAI,CAAC;AAAA;AAC5B;AAEO,SAAS,yBAAyB,SAA2B;AAClE,QAAM,eAAe,aAAa,OAAO;AACzC,SAAO,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC,EAAE;AAAA,IACtF,CAAC,eAAe,WAAW;AAAA,EAC7B;AACF;AAEO,SAAS,2BAA2B,SAAyB;AAClE,SAAO,YAAY,OAAO;AAC5B;;;ACrOO,IAAM,4BAA2D;AAAA,EACtE;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,gBAAgB,MAAM,OAAO,YAAY,CAAC,aAAa,EAAE;AAAA,MACjE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MAClE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,kBAAkB;AAAA,EACtC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,YAAY,MAAM,UAAU,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,WAAW,MAAM,QAAQ;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,SAAS;AAAA,MACpC,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,SAAS;AAAA,MACnC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,sBAAsB;AAAA,EAC/D;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,UAAU;AAAA,MACnC,EAAE,MAAM,aAAa,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC7D,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,oBAAoB;AAAA,EAC7D;AACF;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,aAAa,MAAM,YAAY,SAAS,IAAI,MAAM,WAAW,KAAK,GAAG,CAAC,KAAK;AACjF,SAAO,KAAK,MAAM,IAAI,IAAI,MAAM,IAAI,GAAG,UAAU;AACnD;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,QAAQ;AAAA,IACZ,OAAO,MAAM,WAAW;AAAA,IACxB,SAAS,MAAM,IAAI;AAAA,IACnB,GAAG,MAAM,OAAO,IAAI,WAAW;AAAA,EACjC;AAEA,MAAI,MAAM,iBAAiB,QAAQ;AACjC,UAAM,KAAK,GAAG,MAAM,gBAAgB,IAAI,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;AAAA,EAC1E;AAEA,QAAM,KAAK,GAAG;AACd,SAAO,MAAM,KAAK,IAAI;AACxB;AAEO,SAAS,8BAA8B,SAAwC,2BAAmC;AACvH,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,IACA,GAAG,OAAO,IAAI,WAAW;AAAA,EAC3B,EAAE,KAAK,MAAM;AACf;","names":[]}

package/dist/{chunk-QYGC4WNG.js → chunk-GLK4IW22.js}

@@ -8,8 +8,7 @@ import {
   encodeSessionToken,
   isGlobalAdminEmail,
   isSecureRequest,
-  normalizeAuthKitConfig,
-  pkceCookiePrefix
+  normalizeAuthKitConfig
 } from "./chunk-MWXY4JSL.js";
 
 // src/next/login.ts
@@ -35,44 +34,49 @@ function getCookieNamesFromHeader(cookieHeader) {
   }
   return cookieHeader.split(";").map((part) => part.trim()).filter(Boolean).map((part) => part.split("=")[0]?.trim()).filter((name) => Boolean(name));
 }
+function getPathCandidates(pathname) {
+  const normalized = pathname.startsWith("/") ? pathname : `/${pathname}`;
+  const segments = normalized.split("/").filter(Boolean);
+  const paths = /* @__PURE__ */ new Set(["/"]);
+  let current = "";
+  for (const segment of segments) {
+    current += `/${segment}`;
+    paths.add(current);
+  }
+  return [...paths];
+}
+function resolveLogoutTargetUrl(request, config) {
+  const origin = request.cookies.get("auth_origin")?.value ?? config.appUrl ?? new URL(request.url).origin;
+  const logoutRedirectPath = config.logoutRedirectPath ?? "/";
+  return new URL(logoutRedirectPath, origin);
+}
+function clearCookieEverywhere(response, cookieName, secure, pathCandidates) {
+  for (const path of pathCandidates) {
+    response.cookies.set(cookieName, "", {
+      path,
+      httpOnly: true,
+      sameSite: "lax",
+      secure,
+      maxAge: 0
+    });
+  }
+}
 function createLogoutHandler(config) {
   return async function GET(request) {
-    const origin = request.cookies.get("auth_origin")?.value ?? config.appUrl ?? new URL(request.url).origin;
     const secure = config.cookie?.secure === "auto" ? isSecureRequest(request, config.appUrl) : Boolean(config.cookie?.secure);
-    const response = NextResponse.redirect(new URL("/", origin));
+    const targetUrl = resolveLogoutTargetUrl(request, config);
+    const response = NextResponse.redirect(targetUrl, 307);
+    response.headers.set("Clear-Site-Data", '"cookies"');
     const cookieNames = getCookieNamesFromHeader(request.headers.get("cookie"));
-    const sessionCookiePrefixes = [
-      "next-auth.session-token",
-      "__Secure-next-auth.session-token",
-      "authjs.session-token",
-      "__Secure-authjs.session-token"
-    ];
+    const pathCandidates = getPathCandidates(request.nextUrl.pathname);
     for (const cookieName of cookieNames) {
-      if (sessionCookiePrefixes.some((prefix) => cookieName === prefix || cookieName.startsWith(`${prefix}.`))) {
-        response.cookies.set(cookieName, "", {
-          path: "/",
-          httpOnly: true,
-          sameSite: "lax",
-          secure,
-          maxAge: 0
-        });
-      }
+      clearCookieEverywhere(response, cookieName, secure, pathCandidates);
     }
-    response.cookies.delete("oauth_state");
-    response.cookies.delete("auth_origin");
+    clearCookieEverywhere(response, "oauth_state", secure, pathCandidates);
+    clearCookieEverywhere(response, "auth_origin", secure, pathCandidates);
+    clearCookieEverywhere(response, "auth_redirect", secure, pathCandidates);
     clearAuthRedirectCookie(response, secure);
     clearPublicOriginCookie(response, secure);
-    for (const cookieName of cookieNames) {
-      if (cookieName.startsWith(`${pkceCookiePrefix}.`)) {
-        response.cookies.set(cookieName, "", {
-          path: "/",
-          httpOnly: true,
-          sameSite: "lax",
-          secure,
-          maxAge: 0
-        });
-      }
-    }
     return response;
   };
 }
@@ -189,4 +193,4 @@ export {
   createNextAuthOptions,
   createNextAuthRouteHandler
 };
-//# sourceMappingURL=chunk-QYGC4WNG.js.map
+//# sourceMappingURL=chunk-GLK4IW22.js.map

package/dist/chunk-GLK4IW22.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/next/login.ts","../src/next/signup.ts","../src/next/authorize.ts","../src/next/logout.ts","../src/next/options.ts"],"sourcesContent":["import type { NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { createLoginEntryResponse } from '../casdoor/entry';\n\nexport function createLoginRouteHandler(config: AuthKitConfig) {\n  return async (request: NextRequest) => createLoginEntryResponse(request, config);\n}\n","import type { NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { createSignupEntryResponse } from '../casdoor/entry';\n\nexport function createSignupRouteHandler(config: AuthKitConfig) {\n  return async (request: NextRequest) => createSignupEntryResponse(request, config);\n}\n","import type { NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { createAuthorizeEntryResponse } from '../casdoor/entry';\n\nexport function createAuthorizeRouteHandler(config: AuthKitConfig) {\n  return async (request: NextRequest) => createAuthorizeEntryResponse(request, config);\n}\n","import { NextResponse, type NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { isSecureRequest } from '../core/request-security';\nimport { clearAuthRedirectCookie } from '../core/auth-redirect';\nimport { clearPublicOriginCookie } from '../core/public-origin';\n\nfunction getCookieNamesFromHeader(cookieHeader: string | null): string[] {\n  if (!cookieHeader) {\n    return [];\n  }\n\n  return cookieHeader\n    .split(';')\n    .map((part) => part.trim())\n    .filter(Boolean)\n    .map((part) => part.split('=')[0]?.trim())\n    .filter((name): name is string => Boolean(name));\n}\n\nfunction getPathCandidates(pathname: string): string[] {\n  const normalized = pathname.startsWith('/') ? pathname : `/${pathname}`;\n  const segments = normalized.split('/').filter(Boolean);\n  const paths = new Set<string>(['/']);\n\n  let current = '';\n  for (const segment of segments) {\n    current += `/${segment}`;\n    paths.add(current);\n  }\n\n  return [...paths];\n}\n\nfunction resolveLogoutTargetUrl(request: NextRequest, config: AuthKitConfig): URL {\n  const origin = request.cookies.get('auth_origin')?.value ?? config.appUrl ?? new URL(request.url).origin;\n  const logoutRedirectPath = config.logoutRedirectPath ?? '/';\n  return new URL(logoutRedirectPath, origin);\n}\n\nfunction clearCookieEverywhere(\n  response: NextResponse,\n  cookieName: string,\n  secure: boolean,\n  pathCandidates: string[],\n) {\n  for (const path of pathCandidates) {\n    response.cookies.set(cookieName, '', {\n      path,\n      httpOnly: true,\n      sameSite: 'lax',\n      secure,\n      maxAge: 0,\n    });\n  }\n}\n\nexport function createLogoutHandler(config: AuthKitConfig) {\n  return async function GET(request: NextRequest) {\n    const secure = config.cookie?.secure === 'auto' ? isSecureRequest(request, config.appUrl) : Boolean(config.cookie?.secure);\n    // 307 keeps same-path targets behaving like a reload instead of a cache-friendly rewrite.\n    const targetUrl = resolveLogoutTargetUrl(request, config);\n    const response = NextResponse.redirect(targetUrl, 307);\n    response.headers.set('Clear-Site-Data', '\"cookies\"');\n    const cookieNames = getCookieNamesFromHeader(request.headers.get('cookie'));\n    const pathCandidates = getPathCandidates(request.nextUrl.pathname);\n\n    for (const cookieName of cookieNames) {\n      clearCookieEverywhere(response, cookieName, secure, pathCandidates);\n    }\n    clearCookieEverywhere(response, 'oauth_state', secure, pathCandidates);\n    clearCookieEverywhere(response, 'auth_origin', secure, pathCandidates);\n    clearCookieEverywhere(response, 'auth_redirect', secure, pathCandidates);\n    clearAuthRedirectCookie(response, secure);\n    clearPublicOriginCookie(response, secure);\n\n    return response;\n  };\n}\n","import NextAuth from 'next-auth';\nimport type { NextAuthOptions, Session } from 'next-auth';\nimport type { JWT } from 'next-auth/jwt';\nimport type { AuthBusinessAdapter, AuthKitConfig, AuthPersistenceAdapter, AuthUser } from '../types';\nimport { normalizeAuthKitConfig } from '../core/config';\nimport { decodeSessionToken, encodeSessionToken } from '../core/session-token';\nimport { isGlobalAdminEmail } from '../core/admin';\n\nexport interface NextAuthRouteOptions {\n  config: AuthKitConfig;\n  adapter?: AuthBusinessAdapter;\n  persistence?: AuthPersistenceAdapter;\n  providers?: NextAuthOptions['providers'];\n}\n\nexport interface AuthTokenPayload extends JWT {\n  id?: string;\n  name?: string;\n  email?: string;\n  picture?: string | null;\n  userId?: string;\n  accessToken?: string;\n  expiresAt?: number;\n  tokenBalance?: number;\n  isVip?: boolean;\n  isAdmin?: boolean;\n}\n\nexport interface AuthSessionUser {\n  id?: string;\n  isAdmin?: boolean;\n  tokenBalance?: number;\n  isVip?: boolean;\n}\n\nexport interface AuthSession extends Session {\n  accessToken?: string;\n  expiresAt?: number;\n  user?: AuthSessionUser & NonNullable<Session['user']>;\n}\n\nfunction resolveAuthUserFromToken(token: AuthTokenPayload, adapter?: AuthBusinessAdapter): AuthUser {\n  const email = typeof token.email === 'string' ? token.email : null;\n  return {\n    id: token.userId || token.sub || token.id || email || 'casdoor-user',\n    name: typeof token.name === 'string' ? token.name : null,\n    email,\n    image: typeof token.picture === 'string' ? token.picture : null,\n    isAdmin: Boolean(token.isAdmin) || Boolean(adapter?.isAdminEmail?.(email)) || isGlobalAdminEmail(email),\n    tokenBalance: Number(token.tokenBalance ?? 2580),\n    isVip: Boolean(token.isVip ?? true),\n  };\n}\n\nexport function createNextAuthOptions(options: NextAuthRouteOptions): NextAuthOptions {\n  const normalized = normalizeAuthKitConfig(options.config);\n\n  return {\n    providers: options.providers ?? [],\n    session: {\n      strategy: 'jwt',\n    },\n    jwt: {\n      encode: encodeSessionToken,\n      decode: decodeSessionToken,\n    },\n    pages: {\n      signIn: '/login',\n      error: '/callback/error',\n    },\n    callbacks: {\n      async jwt({ token, account, profile }) {\n        const typedToken = token as AuthTokenPayload;\n\n        if (account) {\n          typedToken.accessToken = account.access_token;\n          typedToken.expiresAt = account.expires_at ? account.expires_at * 1000 : undefined;\n        }\n\n        if (profile && typeof profile === 'object') {\n          const typedProfile = profile as Partial<AuthUser> & {\n            sub?: string;\n            id?: string;\n            picture?: string;\n          };\n\n          typedToken.userId = typedProfile.id || typedProfile.sub || typedToken.userId;\n          typedToken.name = typedProfile.name || typedToken.name;\n          typedToken.email = typedProfile.email || typedToken.email;\n          typedToken.picture = typedProfile.image || typedProfile.picture || typedToken.picture;\n          typedToken.isAdmin = Boolean(typedProfile.isAdmin ?? typedToken.isAdmin);\n          typedToken.tokenBalance = typedProfile.tokenBalance ?? typedToken.tokenBalance ?? 2580;\n          typedToken.isVip = typedProfile.isVip ?? typedToken.isVip ?? true;\n        }\n\n        return typedToken;\n      },\n      async session({ session, token }) {\n        const typedSession = session as AuthSession;\n        const typedToken = token as AuthTokenPayload;\n        const tokenUserId = typedToken.userId || typedToken.sub || typedToken.id || '';\n        const tokenEmail = typeof typedToken.email === 'string' ? typedToken.email : null;\n        const persistedUser = options.persistence?.findAuthUser\n          ? await options.persistence.findAuthUser({ id: tokenUserId || undefined, email: tokenEmail })\n          : null;\n        const resolvedUser = persistedUser ?? resolveAuthUserFromToken(typedToken, options.adapter);\n\n        if (typedSession.user) {\n          typedSession.user.id = resolvedUser.id;\n          typedSession.user.isAdmin = resolvedUser.isAdmin;\n          typedSession.user.tokenBalance = resolvedUser.tokenBalance;\n          typedSession.user.isVip = resolvedUser.isVip;\n        }\n\n        typedSession.accessToken = typedToken.accessToken;\n        typedSession.expiresAt = typedToken.expiresAt;\n        typedSession.user = {\n          ...(typedSession.user || {}),\n          name: typedSession.user?.name || resolvedUser.name,\n          email: typedSession.user?.email || resolvedUser.email,\n          image: typedSession.user?.image || resolvedUser.image,\n          id: resolvedUser.id,\n          isAdmin: resolvedUser.isAdmin,\n          tokenBalance: resolvedUser.tokenBalance,\n          isVip: resolvedUser.isVip,\n        };\n\n        return typedSession;\n      },\n    },\n    events: {\n      async signOut({ token }) {\n        const typedToken = token as AuthTokenPayload | null;\n        if (!typedToken?.accessToken || !normalized.appUrl) {\n          return;\n        }\n\n        try {\n          await fetch(new URL('/api/casdoor/logout', normalized.appUrl).toString(), {\n            method: 'POST',\n            headers: {\n              Authorization: `Bearer ${typedToken.accessToken}`,\n            },\n          });\n        } catch {\n          // ignored\n        }\n      },\n    },\n    secret: normalized.nextauthSecret,\n  };\n}\n\nexport function createNextAuthRouteHandler(options: NextAuthRouteOptions) {\n  const handler = NextAuth(createNextAuthOptions(options));\n  return {\n    GET: handler,\n    POST: handler,\n  };\n}\n"],"mappings":";;;;;;;;;;;;;;AAIO,SAAS,wBAAwB,QAAuB;AAC7D,SAAO,OAAO,YAAyB,yBAAyB,SAAS,MAAM;AACjF;;;ACFO,SAAS,yBAAyB,QAAuB;AAC9D,SAAO,OAAO,YAAyB,0BAA0B,SAAS,MAAM;AAClF;;;ACFO,SAAS,4BAA4B,QAAuB;AACjE,SAAO,OAAO,YAAyB,6BAA6B,SAAS,MAAM;AACrF;;;ACNA,SAAS,oBAAsC;AAM/C,SAAS,yBAAyB,cAAuC;AACvE,MAAI,CAAC,cAAc;AACjB,WAAO,CAAC;AAAA,EACV;AAEA,SAAO,aACJ,MAAM,GAAG,EACT,IAAI,CAAC,SAAS,KAAK,KAAK,CAAC,EACzB,OAAO,OAAO,EACd,IAAI,CAAC,SAAS,KAAK,MAAM,GAAG,EAAE,CAAC,GAAG,KAAK,CAAC,EACxC,OAAO,CAAC,SAAyB,QAAQ,IAAI,CAAC;AACnD;AAEA,SAAS,kBAAkB,UAA4B;AACrD,QAAM,aAAa,SAAS,WAAW,GAAG,IAAI,WAAW,IAAI,QAAQ;AACrE,QAAM,WAAW,WAAW,MAAM,GAAG,EAAE,OAAO,OAAO;AACrD,QAAM,QAAQ,oBAAI,IAAY,CAAC,GAAG,CAAC;AAEnC,MAAI,UAAU;AACd,aAAW,WAAW,UAAU;AAC9B,eAAW,IAAI,OAAO;AACtB,UAAM,IAAI,OAAO;AAAA,EACnB;AAEA,SAAO,CAAC,GAAG,KAAK;AAClB;AAEA,SAAS,uBAAuB,SAAsB,QAA4B;AAChF,QAAM,SAAS,QAAQ,QAAQ,IAAI,aAAa,GAAG,SAAS,OAAO,UAAU,IAAI,IAAI,QAAQ,GAAG,EAAE;AAClG,QAAM,qBAAqB,OAAO,sBAAsB;AACxD,SAAO,IAAI,IAAI,oBAAoB,MAAM;AAC3C;AAEA,SAAS,sBACP,UACA,YACA,QACA,gBACA;AACA,aAAW,QAAQ,gBAAgB;AACjC,aAAS,QAAQ,IAAI,YAAY,IAAI;AAAA,MACnC;AAAA,MACA,UAAU;AAAA,MACV,UAAU;AAAA,MACV;AAAA,MACA,QAAQ;AAAA,IACV,CAAC;AAAA,EACH;AACF;AAEO,SAAS,oBAAoB,QAAuB;AACzD,SAAO,eAAe,IAAI,SAAsB;AAC9C,UAAM,SAAS,OAAO,QAAQ,WAAW,SAAS,gBAAgB,SAAS,OAAO,MAAM,IAAI,QAAQ,OAAO,QAAQ,MAAM;AAEzH,UAAM,YAAY,uBAAuB,SAAS,MAAM;AACxD,UAAM,WAAW,aAAa,SAAS,WAAW,GAAG;AACrD,aAAS,QAAQ,IAAI,mBAAmB,WAAW;AACnD,UAAM,cAAc,yBAAyB,QAAQ,QAAQ,IAAI,QAAQ,CAAC;AAC1E,UAAM,iBAAiB,kBAAkB,QAAQ,QAAQ,QAAQ;AAEjE,eAAW,cAAc,aAAa;AACpC,4BAAsB,UAAU,YAAY,QAAQ,cAAc;AAAA,IACpE;AACA,0BAAsB,UAAU,eAAe,QAAQ,cAAc;AACrE,0BAAsB,UAAU,eAAe,QAAQ,cAAc;AACrE,0BAAsB,UAAU,iBAAiB,QAAQ,cAAc;AACvE,4BAAwB,UAAU,MAAM;AACxC,4BAAwB,UAAU,MAAM;AAExC,WAAO;AAAA,EACT;AACF;;;AC7EA,OAAO,cAAc;AAyCrB,SAAS,yBAAyB,OAAyB,SAAyC;AAClG,QAAM,QAAQ,OAAO,MAAM,UAAU,WAAW,MAAM,QAAQ;AAC9D,SAAO;AAAA,IACL,IAAI,MAAM,UAAU,MAAM,OAAO,MAAM,MAAM,SAAS;AAAA,IACtD,MAAM,OAAO,MAAM,SAAS,WAAW,MAAM,OAAO;AAAA,IACpD;AAAA,IACA,OAAO,OAAO,MAAM,YAAY,WAAW,MAAM,UAAU;AAAA,IAC3D,SAAS,QAAQ,MAAM,OAAO,KAAK,QAAQ,SAAS,eAAe,KAAK,CAAC,KAAK,mBAAmB,KAAK;AAAA,IACtG,cAAc,OAAO,MAAM,gBAAgB,IAAI;AAAA,IAC/C,OAAO,QAAQ,MAAM,SAAS,IAAI;AAAA,EACpC;AACF;AAEO,SAAS,sBAAsB,SAAgD;AACpF,QAAM,aAAa,uBAAuB,QAAQ,MAAM;AAExD,SAAO;AAAA,IACL,WAAW,QAAQ,aAAa,CAAC;AAAA,IACjC,SAAS;AAAA,MACP,UAAU;AAAA,IACZ;AAAA,IACA,KAAK;AAAA,MACH,QAAQ;AAAA,MACR,QAAQ;AAAA,IACV;AAAA,IACA,OAAO;AAAA,MACL,QAAQ;AAAA,MACR,OAAO;AAAA,IACT;AAAA,IACA,WAAW;AAAA,MACT,MAAM,IAAI,EAAE,OAAO,SAAS,QAAQ,GAAG;AACrC,cAAM,aAAa;AAEnB,YAAI,SAAS;AACX,qBAAW,cAAc,QAAQ;AACjC,qBAAW,YAAY,QAAQ,aAAa,QAAQ,aAAa,MAAO;AAAA,QAC1E;AAEA,YAAI,WAAW,OAAO,YAAY,UAAU;AAC1C,gBAAM,eAAe;AAMrB,qBAAW,SAAS,aAAa,MAAM,aAAa,OAAO,WAAW;AACtE,qBAAW,OAAO,aAAa,QAAQ,WAAW;AAClD,qBAAW,QAAQ,aAAa,SAAS,WAAW;AACpD,qBAAW,UAAU,aAAa,SAAS,aAAa,WAAW,WAAW;AAC9E,qBAAW,UAAU,QAAQ,aAAa,WAAW,WAAW,OAAO;AACvE,qBAAW,eAAe,aAAa,gBAAgB,WAAW,gBAAgB;AAClF,qBAAW,QAAQ,aAAa,SAAS,WAAW,SAAS;AAAA,QAC/D;AAEA,eAAO;AAAA,MACT;AAAA,MACA,MAAM,QAAQ,EAAE,SAAS,MAAM,GAAG;AAChC,cAAM,eAAe;AACrB,cAAM,aAAa;AACnB,cAAM,cAAc,WAAW,UAAU,WAAW,OAAO,WAAW,MAAM;AAC5E,cAAM,aAAa,OAAO,WAAW,UAAU,WAAW,WAAW,QAAQ;AAC7E,cAAM,gBAAgB,QAAQ,aAAa,eACvC,MAAM,QAAQ,YAAY,aAAa,EAAE,IAAI,eAAe,QAAW,OAAO,WAAW,CAAC,IAC1F;AACJ,cAAM,eAAe,iBAAiB,yBAAyB,YAAY,QAAQ,OAAO;AAE1F,YAAI,aAAa,MAAM;AACrB,uBAAa,KAAK,KAAK,aAAa;AACpC,uBAAa,KAAK,UAAU,aAAa;AACzC,uBAAa,KAAK,eAAe,aAAa;AAC9C,uBAAa,KAAK,QAAQ,aAAa;AAAA,QACzC;AAEA,qBAAa,cAAc,WAAW;AACtC,qBAAa,YAAY,WAAW;AACpC,qBAAa,OAAO;AAAA,UAClB,GAAI,aAAa,QAAQ,CAAC;AAAA,UAC1B,MAAM,aAAa,MAAM,QAAQ,aAAa;AAAA,UAC9C,OAAO,aAAa,MAAM,SAAS,aAAa;AAAA,UAChD,OAAO,aAAa,MAAM,SAAS,aAAa;AAAA,UAChD,IAAI,aAAa;AAAA,UACjB,SAAS,aAAa;AAAA,UACtB,cAAc,aAAa;AAAA,UAC3B,OAAO,aAAa;AAAA,QACtB;AAEA,eAAO;AAAA,MACT;AAAA,IACF;AAAA,IACA,QAAQ;AAAA,MACN,MAAM,QAAQ,EAAE,MAAM,GAAG;AACvB,cAAM,aAAa;AACnB,YAAI,CAAC,YAAY,eAAe,CAAC,WAAW,QAAQ;AAClD;AAAA,QACF;AAEA,YAAI;AACF,gBAAM,MAAM,IAAI,IAAI,uBAAuB,WAAW,MAAM,EAAE,SAAS,GAAG;AAAA,YACxE,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,eAAe,UAAU,WAAW,WAAW;AAAA,YACjD;AAAA,UACF,CAAC;AAAA,QACH,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAAA,IACA,QAAQ,WAAW;AAAA,EACrB;AACF;AAEO,SAAS,2BAA2B,SAA+B;AACxE,QAAM,UAAU,SAAS,sBAAsB,OAAO,CAAC;AACvD,SAAO;AAAA,IACL,KAAK;AAAA,IACL,MAAM;AAAA,EACR;AACF;","names":[]}

package/dist/cli.js

@@ -4,7 +4,7 @@ import {
   buildAuthPrismaSchemaTemplate,
   buildManagedEnvTemplate,
   getMissingManagedEnvKeys
-} from "./chunk-CULH4UKG.js";
+} from "./chunk-CLABP4I6.js";
 
 // package.json
 var package_default = {
@@ -167,6 +167,250 @@ export const dynamic = 'force-dynamic';
 export const GET = logoutHandler;
 `;
 }
+function callbackErrorPageTemplate() {
+  return `import { ClearDomainCookiesButton } from './clear-domain-cookies-button';
+
+export const dynamic = 'force-dynamic';
+
+export default async function CallbackErrorPage({
+  searchParams,
+}: {
+  searchParams: Promise<{ title?: string; message?: string; details?: string }>;
+}) {
+  const params = await searchParams;
+
+  return (
+    <main
+      style={{
+        minHeight: '100dvh',
+        display: 'flex',
+        alignItems: 'center',
+        justifyContent: 'center',
+        padding: '20px 16px',
+        background:
+          'radial-gradient(circle at top, rgba(99, 102, 241, 0.12) 0, rgba(99, 102, 241, 0) 38%), linear-gradient(180deg, #f8fafc 0%, #eef2ff 100%)',
+      }}
+    >
+      <section
+        style={{
+          width: 'min(100%, 400px)',
+          borderRadius: 28,
+          padding: '24px 20px',
+          boxSizing: 'border-box',
+          background: 'rgba(255, 255, 255, 0.96)',
+          border: '1px solid rgba(148, 163, 184, 0.2)',
+          boxShadow: '0 22px 52px rgba(15, 23, 42, 0.12)',
+          textAlign: 'center',
+          backdropFilter: 'blur(10px)',
+        }}
+      >
+        <div
+          style={{
+            width: 52,
+            height: 52,
+            margin: '0 auto 14px',
+            display: 'grid',
+            placeItems: 'center',
+            borderRadius: 18,
+            background: 'linear-gradient(135deg, rgba(239, 68, 68, 0.15), rgba(249, 115, 22, 0.1))',
+            color: '#b91c1c',
+            fontSize: 28,
+            lineHeight: 1,
+          }}
+          aria-hidden="true"
+        >
+          !
+        </div>
+        <div
+          style={{
+            display: 'inline-flex',
+            alignItems: 'center',
+            justifyContent: 'center',
+            marginBottom: 12,
+            padding: '6px 12px',
+            borderRadius: 9999,
+            background: 'rgba(254, 226, 226, 0.9)',
+            color: '#b91c1c',
+            fontSize: 13,
+            fontWeight: 600,
+            letterSpacing: '0.04em',
+          }}
+        >
+          \u8BA4\u8BC1\u5931\u8D25
+        </div>
+        <h2 style={{ margin: 0, fontSize: 24, lineHeight: 1.2, color: '#0f172a' }}>{params.title ?? 'Callback Error'}</h2>
+        <p style={{ margin: '12px 0 0', color: '#334155', lineHeight: 1.6 }}>{params.message ?? 'Unknown callback failure.'}</p>
+        {params.details ? (
+          <pre
+            style={{
+              margin: '14px 0 0',
+              maxHeight: 140,
+              overflow: 'auto',
+              padding: 14,
+              borderRadius: 18,
+              textAlign: 'left',
+              whiteSpace: 'pre-wrap',
+              wordBreak: 'break-word',
+              background: '#f8fafc',
+              color: '#0f172a',
+              border: '1px solid rgba(148, 163, 184, 0.18)',
+              fontSize: 13,
+              lineHeight: 1.6,
+            }}
+          >
+            {params.details}
+          </pre>
+        ) : null}
+${customBegin}
+        <div style={{ display: 'flex', flexDirection: 'column', gap: 10, marginTop: 20 }}>
+        <ClearDomainCookiesButton />
+          <a href="/" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>\u8FD4\u56DE\u9996\u9875</a>
+          <a href="/auth/login" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>\u91CD\u65B0\u767B\u5F55</a>
+          <a href="/auth/signup" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>\u53BB\u6CE8\u518C</a>
+        </div>
+${customEnd}
+      </section>
+    </main>
+  );
+}
+`;
+}
+function callbackErrorClearCookiesButtonTemplate() {
+  return `'use client';
+
+import { useState } from 'react';
+
+const AUTH_COOKIE_NAMES = [
+  'auth_origin',
+  'auth_redirect',
+  'oauth_state',
+  'pkce_code_verifier',
+  'next-auth.session-token',
+  '__Secure-next-auth.session-token',
+  'next-auth.csrf-token',
+  '__Secure-next-auth.csrf-token',
+  '__Host-next-auth.csrf-token',
+];
+
+function getPathCandidates(pathname: string): string[] {
+  const normalized = pathname.startsWith('/') ? pathname : '/' + pathname;
+  const segments = normalized.split('/').filter(Boolean);
+  const paths = new Set<string>(['/']);
+
+  let current = '';
+  for (const segment of segments) {
+    current += '/' + segment;
+    paths.add(current);
+  }
+
+  return [...paths];
+}
+
+function getDomainCandidates(hostname: string): string[] {
+  const normalized = hostname.toLowerCase();
+  if (
+    normalized === 'localhost' ||
+    normalized.endsWith('.localhost') ||
+    /^\\d+\\.\\d+\\.\\d+\\.\\d+$/.test(normalized) ||
+    /^\\[[^\\]]+\\]$/.test(normalized)
+  ) {
+    return [];
+  }
+
+  const parts = normalized.split('.');
+  if (parts.length < 2) {
+    return [];
+  }
+
+  const domains = new Set<string>();
+  for (let index = 0; index < parts.length - 1; index++) {
+    const suffix = parts.slice(index).join('.');
+    domains.add(suffix);
+    domains.add('.' + suffix);
+  }
+
+  return [...domains];
+}
+
+function expireCookie(name: string, path: string, domain?: string) {
+  const pieces = [
+    name + '=',
+    'Max-Age=0',
+    'Expires=Thu, 01 Jan 1970 00:00:00 GMT',
+    'Path=' + path,
+    'SameSite=Lax',
+  ];
+
+  if (domain) {
+    pieces.push('Domain=' + domain);
+  }
+
+  if (window.location.protocol === 'https:') {
+    pieces.push('Secure');
+  }
+
+  document.cookie = pieces.join('; ');
+}
+
+${customBegin}
+export function ClearDomainCookiesButton() {
+  const [cleared, setCleared] = useState(false);
+
+  const handleClick = () => {
+    if (typeof document === 'undefined' || typeof window === 'undefined') {
+      return;
+    }
+
+    const names = new Set<string>(AUTH_COOKIE_NAMES);
+    for (const entry of document.cookie.split(';')) {
+      const [rawName] = entry.trim().split('=');
+      if (rawName) {
+        names.add(rawName);
+      }
+    }
+
+    const pathCandidates = getPathCandidates(window.location.pathname);
+    const domainCandidates = getDomainCandidates(window.location.hostname);
+
+    for (const name of names) {
+      for (const path of pathCandidates) {
+        expireCookie(name, path);
+        for (const domain of domainCandidates) {
+          expireCookie(name, path, domain);
+        }
+      }
+    }
+
+    setCleared(true);
+  };
+
+  return (
+    <button
+      type="button"
+      onClick={handleClick}
+      disabled={cleared}
+      style={{
+        display: 'inline-flex',
+        width: '100%',
+        alignItems: 'center',
+        justifyContent: 'center',
+        minHeight: 44,
+        padding: '0 16px',
+        boxSizing: 'border-box',
+        borderRadius: 9999,
+        border: '1px solid rgba(148, 163, 184, 0.35)',
+        color: '#0f172a',
+        background: cleared ? 'rgba(220, 252, 231, 0.92)' : 'rgba(248, 250, 252, 0.9)',
+        cursor: cleared ? 'default' : 'pointer',
+      }}
+    >
+      {cleared ? '\u5DF2\u6E05\u7A7A' : '\u6E05\u7A7A\u5F53\u524D\u57DF Cookie'}
+    </button>
+  );
+}
+${customEnd}
+`;
+}
 function authConfigTemplate() {
   return `import {
   createCallbackHandler,
@@ -189,6 +433,7 @@ export function createAuthKitConfig(): AuthKitConfig {
   return {
     appUrl: process.env.APP_URL || '',
     nextauthSecret: process.env.NEXTAUTH_SECRET || 'dev-nextauth-secret',
+    logoutRedirectPath: process.env.NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH || '/',
     casdoor: {
       serverUrl: process.env.NEXT_PUBLIC_CASDOOR_SERVER_URL || process.env.CASDOOR_SERVER_URL || '',
       clientId: process.env.NEXT_PUBLIC_CASDOOR_CLIENT_ID || process.env.CASDOOR_CLIENT_ID || '',
@@ -367,6 +612,8 @@ var targets = [
   ["app/(auth-kit)/auth/payment/success/route.ts", paymentSuccessRouteTemplate],
   ["app/(auth-kit)/auth/payment/finished/route.ts", paymentFinishedRouteTemplate],
   ["app/(auth-kit)/callback/route.ts", callbackRouteTemplate],
+  ["app/(auth-kit)/callback/error/page.tsx", callbackErrorPageTemplate],
+  ["app/(auth-kit)/callback/error/clear-domain-cookies-button.tsx", callbackErrorClearCookiesButtonTemplate],
   ["app/(auth-kit)/logout/route.ts", logoutRouteTemplate],
   ["app/(auth-kit)/auth/api/commerce/[...path]/route.ts", commerceProxyRouteTemplate],
   ["lib/billing/payment-success.ts", billingPaymentSuccessHandlerTemplate],
@@ -384,6 +631,7 @@ var deprecatedTargets = [
   "app/(auth-kit)/signup/oauth/authorize/route.ts",
   "app/(auth-kit)/auth/payment-success/route.ts",
   "app/(auth-kit)/auth/payment/finished/page.tsx",
+  "app/(auth-kit)/callback/error/page.tsx",
   "app/auth/index-html.ts",
   "app/auth/libs/index.ts",
   "app/auth/libs/auth-config.ts",

package/dist/cli.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../package.json","../src/cli/operations.ts","../src/cli/fs.ts","../src/cli/templates.ts","../src/cli/index.ts","../src/cli.ts"],"sourcesContent":["{\n  \"name\": \"@foldspace-fe/casdoor-next-auth-kit\",\n  \"version\": \"0.1.0\",\n  \"private\": false,\n  \"type\": \"module\",\n  \"repository\": {\n    \"type\": \"git\",\n    \"url\": \"https://github.com/foldspace-stack/casdoor-next-auth-kit\"\n  },\n  \"homepage\": \"https://github.com/foldspace-stack/casdoor-next-auth-kit#readme\",\n  \"bugs\": {\n    \"url\": \"https://github.com/foldspace-stack/casdoor-next-auth-kit/issues\"\n  },\n  \"main\": \"./dist/index.js\",\n  \"types\": \"./dist/index.d.ts\",\n  \"exports\": {\n    \".\": {\n      \"types\": \"./dist/index.d.ts\",\n      \"default\": \"./dist/index.js\"\n    },\n    \"./casdoor\": {\n      \"types\": \"./dist/casdoor/index.d.ts\",\n      \"default\": \"./dist/casdoor/index.js\"\n    },\n    \"./next\": {\n      \"types\": \"./dist/next/index.d.ts\",\n      \"default\": \"./dist/next/index.js\"\n    },\n    \"./billing\": {\n      \"types\": \"./dist/billing/index.d.ts\",\n      \"default\": \"./dist/billing/index.js\"\n    },\n    \"./react\": {\n      \"types\": \"./dist/react/index.d.ts\",\n      \"default\": \"./dist/react/index.js\"\n    }\n  },\n  \"bin\": {\n    \"casdoor-next-auth-kit\": \"./dist/cli.js\"\n  },\n  \"publishConfig\": {\n    \"access\": \"public\",\n    \"provenance\": true\n  },\n  \"files\": [\"dist\", \"README.md\"],\n  \"scripts\": {\n    \"build\": \"tsup && node ./scripts/copy-skill.mjs\",\n    \"test\": \"pnpm build && node --test --experimental-strip-types ./scripts/verify-casdoor-proxy.mjs\",\n    \"typecheck\": \"tsc -p tsconfig.json --noEmit\",\n    \"dev\": \"tsup --watch\"\n  },\n  \"peerDependencies\": {\n    \"next\": \">=16\",\n    \"next-auth\": \"^4.24.0\",\n    \"react\": \">=19\",\n    \"react-dom\": \">=19\"\n  },\n  \"dependencies\": {\n    \"jose\": \"^6.1.0\"\n  },\n  \"devDependencies\": {\n    \"@types/node\": \"^22.15.0\",\n    \"@types/react\": \"^19.2.0\",\n    \"@types/react-dom\": \"^19.2.0\",\n    \"tsup\": \"^8.5.0\",\n    \"typescript\": \"^5.6.3\"\n  }\n}\n","import fs from 'node:fs';\nimport path from 'node:path';\nimport { fileURLToPath } from 'node:url';\n\nimport { AUTH_KIT_ENV_FILES, getMissingManagedEnvKeys } from '../core/env';\nimport { exists, preserveCustomBlock, read, removePath, writeGeneratedFile, writeTextFile } from './fs';\nimport {\n  apiProxyRouteTemplate,\n  authConfigTemplate,\n  authIndexHtmlTemplate,\n  authLoginRouteTemplate,\n  authSignupRouteTemplate,\n  authorizeRouteTemplate,\n  callbackRouteTemplate,\n  billingPaymentFinishedHandlerTemplate,\n  billingPaymentSuccessHandlerTemplate,\n  commerceProxyRouteTemplate,\n  envTemplate,\n  logoutRouteTemplate,\n  nextAuthRouteTemplate,\n  paymentFinishedRouteTemplate,\n  paymentSuccessRouteTemplate,\n  prismaSchemaTemplate,\n  signupAuthorizeRouteTemplate,\n} from './templates';\n\nconst projectRoot = process.cwd();\nconst distRoot = path.dirname(fileURLToPath(import.meta.url));\nconst canonicalSkillPaths = [\n  path.join(distRoot, 'skills/casdoor-next-auth-kit'),\n  path.resolve(distRoot, '..', '..', '..', 'skills/casdoor-next-auth-kit'),\n];\nconst skillTarget = '.agents/skills/casdoor-next-auth-kit';\n\nconst targets = [\n  ['app/(auth-kit)/auth-config.ts', authConfigTemplate],\n  ['app/(auth-kit)/auth/login/route.ts', authLoginRouteTemplate],\n  ['app/(auth-kit)/auth/signup/route.ts', authSignupRouteTemplate],\n  ['app/(auth-kit)/login/oauth/authorize/route.ts', authorizeRouteTemplate],\n  ['app/(auth-kit)/signup/oauth/authorize/route.ts', signupAuthorizeRouteTemplate],\n  ['app/(auth-kit)/auth/api/[...path]/route.ts', apiProxyRouteTemplate],\n  ['app/(auth-kit)/api/auth/[...nextauth]/route.ts', nextAuthRouteTemplate],\n  ['app/(auth-kit)/auth/payment/success/route.ts', paymentSuccessRouteTemplate],\n  ['app/(auth-kit)/auth/payment/finished/route.ts', paymentFinishedRouteTemplate],\n  ['app/(auth-kit)/callback/route.ts', callbackRouteTemplate],\n  ['app/(auth-kit)/logout/route.ts', logoutRouteTemplate],\n  ['app/(auth-kit)/auth/api/commerce/[...path]/route.ts', commerceProxyRouteTemplate],\n  ['lib/billing/payment-success.ts', billingPaymentSuccessHandlerTemplate],\n  ['lib/billing/payment-finished.ts', billingPaymentFinishedHandlerTemplate],\n  ['app/(auth-kit)/index-html.ts', authIndexHtmlTemplate],\n  ['prisma/auth-kit.prisma', prismaSchemaTemplate],\n] as const;\n\nconst deprecatedTargets = [\n  'app/(auth-kit)/api/casdoor/[...path]/route.ts',\n  'app/(auth-kit)/api/casdoor/commerce/[...path]/route.ts',\n  'app/(auth-kit)/auth/api/casdoor/[...path]/route.ts',\n  'app/(auth-kit)/auth/api/casdoor/commerce/[...path]/route.ts',\n  'app/(auth-kit)/login/route.ts',\n  'app/(auth-kit)/signup/route.ts',\n  'app/(auth-kit)/signup/oauth/authorize/route.ts',\n  'app/(auth-kit)/auth/payment-success/route.ts',\n  'app/(auth-kit)/auth/payment/finished/page.tsx',\n  'app/auth/index-html.ts',\n  'app/auth/libs/index.ts',\n  'app/auth/libs/auth-config.ts',\n  'app/auth/libs/casdoor-config.ts',\n  'app/auth/libs/session-token.ts',\n  'app/auth/libs/oauth-state.ts',\n  'app/auth/libs/page-proxy.ts',\n  'app/auth/libs/api-proxy.ts',\n  'app/auth/libs/casdoor-oauth.ts',\n  'app/auth/libs/nextauth-route.ts',\n  'app/auth/libs',\n  'lib/auth-kit/index.ts',\n  'lib/auth-kit/index-html.ts',\n  'lib/auth-kit',\n  'lib/casdoor-entry.ts',\n  'lib/auth.ts',\n  'lib/public-origin.ts',\n  'lib/request-security.ts',\n  'lib/auth-redirect.ts',\n] as const;\n\nfunction logCreated(filePath: string) {\n  console.log(`+ ${path.relative(projectRoot, filePath)}`);\n}\n\nfunction logUpdated(filePath: string) {\n  console.log(`~ ${path.relative(projectRoot, filePath)}`);\n}\n\nfunction logRemoved(filePath: string) {\n  console.log(`- ${path.relative(projectRoot, filePath)}`);\n}\n\nfunction syncManagedEnvFiles() {\n  for (const file of AUTH_KIT_ENV_FILES) {\n    const filePath = path.join(projectRoot, file);\n    const existed = exists(filePath);\n    const current = existed ? read(filePath) : '';\n    const next = envTemplate(file, current);\n    if (!existed || current !== next) {\n      writeTextFile(filePath, next);\n      if (!existed) {\n        logCreated(filePath);\n      } else {\n        logUpdated(filePath);\n      }\n    }\n  }\n}\n\nfunction syncManagedSkillFile() {\n  const filePath = path.join(projectRoot, skillTarget);\n  try {\n    const sourcePath = canonicalSkillPaths.find((candidate) => fs.existsSync(candidate));\n    if (!sourcePath) {\n      throw new Error(`Unable to locate canonical skill directory. Checked: ${canonicalSkillPaths.join(', ')}`);\n    }\n    removePath(filePath);\n    fs.mkdirSync(filePath, { recursive: true });\n    logCreated(filePath);\n    for (const entry of fs.readdirSync(sourcePath, { withFileTypes: true })) {\n      const sourceEntry = path.join(sourcePath, entry.name);\n      const targetEntry = path.join(filePath, entry.name);\n      if (entry.isDirectory()) {\n        fs.cpSync(sourceEntry, targetEntry, { recursive: true });\n        console.log(`+ ${path.relative(projectRoot, targetEntry)}/`);\n        continue;\n      }\n      fs.copyFileSync(sourceEntry, targetEntry);\n      console.log(`+ ${path.relative(projectRoot, targetEntry)}`);\n    }\n  } catch (error) {\n    console.warn(`Skipped skill sync for ${skillTarget}: ${error instanceof Error ? error.message : String(error)}`);\n  }\n}\n\nexport async function initProject() {\n  for (const [rel, factory] of targets) {\n    const filePath = path.join(projectRoot, rel);\n    if (!exists(filePath)) {\n      writeGeneratedFile(filePath, factory());\n      logCreated(filePath);\n    }\n  }\n\n  syncManagedEnvFiles();\n  syncManagedSkillFile();\n  console.log('Initialized casdoor-next-auth-kit managed files.');\n}\n\nexport async function updateProject() {\n  for (const rel of deprecatedTargets) {\n    const filePath = path.join(projectRoot, rel);\n    if (exists(filePath)) {\n      removePath(filePath);\n      logRemoved(filePath);\n    }\n  }\n\n  for (const [rel, factory] of targets) {\n    const filePath = path.join(projectRoot, rel);\n    const next = '// generated by @foldspace-fe/casdoor-next-auth-kit\\n' + factory();\n    if (!exists(filePath)) {\n      writeGeneratedFile(filePath, factory());\n      logCreated(filePath);\n      continue;\n    }\n\n    if (rel === 'app/(auth-kit)/auth-config.ts') {\n      const current = read(filePath);\n      if (current !== next) {\n        writeTextFile(filePath, next);\n        logUpdated(filePath);\n      }\n      continue;\n    }\n\n    const current = read(filePath);\n    const updated = preserveCustomBlock(current, next);\n    if (current !== updated) {\n      writeTextFile(filePath, updated);\n      logUpdated(filePath);\n    }\n  }\n\n  syncManagedEnvFiles();\n  syncManagedSkillFile();\n  console.log('Updated managed route shells, env files, and skill file.');\n}\n\nexport async function checkProject() {\n  const missingRoutes = targets.filter(([rel]) => !exists(path.join(projectRoot, rel))).map(([rel]) => rel);\n  const missingEnv = AUTH_KIT_ENV_FILES.filter((file) => {\n    const filePath = path.join(projectRoot, file);\n    if (!exists(filePath)) {\n      return true;\n    }\n    return getMissingManagedEnvKeys(read(filePath)).length > 0;\n  });\n  const skillDir = path.join(projectRoot, skillTarget);\n  const missingSkill = exists(path.join(skillDir, 'SKILL.md')) ? [] : [path.join(skillTarget, 'SKILL.md')];\n  const missing = [...missingRoutes, ...missingEnv, ...missingSkill];\n\n  if (missing.length > 0) {\n    console.error('Missing generated files:');\n    for (const rel of missing) {\n      console.error('- ' + rel);\n    }\n    process.exitCode = 1;\n    return;\n  }\n\n  console.log('All managed files are present.');\n}\n","    import fs from 'node:fs';\n    import path from 'node:path';\n\n    export const generatedHeader = '// generated by @foldspace-fe/casdoor-next-auth-kit\\n';\n    export const customBegin = '// @foldspace-fe/casdoor-next-auth-kit:begin custom';\n    export const customEnd = '// @foldspace-fe/casdoor-next-auth-kit:end custom';\n\nexport function ensureDir(filePath: string) {\n  fs.mkdirSync(path.dirname(filePath), { recursive: true });\n}\n\nexport function writeGeneratedFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, generatedHeader + content, 'utf8');\n}\n\nexport function writeTextFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, content, 'utf8');\n}\n\nexport function exists(filePath: string) {\n  return fs.existsSync(filePath);\n}\n\n    export function read(filePath: string) {\n      return fs.readFileSync(filePath, 'utf8');\n    }\n\nexport function preserveCustomBlock(existing: string, next: string) {\n      const begin = existing.indexOf(customBegin);\n      const end = existing.indexOf(customEnd);\n      if (begin === -1 || end === -1 || end <= begin) return next;\n      const custom = existing.slice(begin, end + customEnd.length);\n      const targetBegin = next.indexOf(customBegin);\n      const targetEnd = next.indexOf(customEnd);\n      if (targetBegin === -1 || targetEnd === -1 || targetEnd <= targetBegin) return next;\n  return next.slice(0, targetBegin) + custom + next.slice(targetEnd + customEnd.length);\n}\n\nexport function removePath(filePath: string) {\n  fs.rmSync(filePath, { force: true, recursive: true });\n}\n","import { customBegin, customEnd } from './fs';\nimport { buildAuthPrismaSchemaTemplate } from '../prisma/schema-template';\nimport { AUTH_KIT_ENV_FILES, buildManagedEnvTemplate } from '../core/env';\n\nexport function authLoginRouteTemplate() {\n  return `import { loginHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = loginHandler;\n`;\n}\n\nexport function authSignupRouteTemplate() {\n  return `import { signupHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = signupHandler;\n`;\n}\n\nexport function authorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function signupAuthorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function callbackRouteTemplate() {\n  return `import { callbackHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = callbackHandler;\n`;\n}\n\nexport function logoutRouteTemplate() {\n  return `import { logoutHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = logoutHandler;\n`;\n}\n\nexport function authConfigTemplate() {\n  return `import {\n  createCallbackHandler,\n  createCasdoorApiProxyHandler,\n  createCasdoorCommerceProxyHandler,\n  createAuthorizeRouteHandler,\n  createLoginRouteHandler,\n  createLogoutHandler,\n  createNextAuthOptions,\n  createSignupRouteHandler,\n  type AuthBusinessAdapter,\n  type AuthKitConfig,\n  type AuthPersistenceAdapter,\n} from '@foldspace-fe/casdoor-next-auth-kit';\nimport { isGlobalAdminEmail } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { paymentSuccessHandler as billingPaymentSuccessHandler } from '@/lib/billing/payment-success';\nimport { paymentFinishedHandler as billingPaymentFinishedHandler } from '@/lib/billing/payment-finished';\n\nexport function createAuthKitConfig(): AuthKitConfig {\n  return {\n    appUrl: process.env.APP_URL || '',\n    nextauthSecret: process.env.NEXTAUTH_SECRET || 'dev-nextauth-secret',\n    casdoor: {\n      serverUrl: process.env.NEXT_PUBLIC_CASDOOR_SERVER_URL || process.env.CASDOOR_SERVER_URL || '',\n      clientId: process.env.NEXT_PUBLIC_CASDOOR_CLIENT_ID || process.env.CASDOOR_CLIENT_ID || '',\n      clientSecret: process.env.CASDOOR_CLIENT_SECRET || '',\n      appName: process.env.NEXT_PUBLIC_CASDOOR_APP_NAME || '',\n      organizationName: process.env.NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME || '',\n      redirectPath: process.env.NEXT_PUBLIC_CASDOOR_REDIRECT_PATH || '/callback',\n      signinPath: process.env.NEXT_PUBLIC_CASDOOR_SIGNIN_PATH || '/login/oauth/authorize',\n    },\n  };\n}\n\nexport const authKitConfig = createAuthKitConfig();\n\nexport const adapter: AuthBusinessAdapter = {\n  isAdminEmail: isGlobalAdminEmail,\n};\n\nexport const persistence: AuthPersistenceAdapter = {\n  async syncAuthUser() {\n    return;\n  },\n  async findAuthUser() {\n    return null;\n  },\n};\n\nexport const paymentSuccessHandler = billingPaymentSuccessHandler;\nexport const paymentFinishedHandler = billingPaymentFinishedHandler;\n\nexport const loginHandler = createLoginRouteHandler(authKitConfig);\nexport const signupHandler = createSignupRouteHandler(authKitConfig);\nexport const authorizeHandler = createAuthorizeRouteHandler(authKitConfig);\nexport const callbackHandler = createCallbackHandler({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const logoutHandler = createLogoutHandler(authKitConfig);\nexport const authOptions = createNextAuthOptions({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const apiProxyHandler = createCasdoorApiProxyHandler(authKitConfig, '/auth/api', '/api');\nexport const commerceProxyHandler = createCasdoorCommerceProxyHandler(authKitConfig, '/auth/api/commerce', '/api/commerce');\n`;\n}\n\nexport function nextAuthRouteTemplate() {\n  return `import NextAuth from 'next-auth';\nimport { createNextAuthOptions } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { adapter, authKitConfig, persistence } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nconst handler = NextAuth(\n  createNextAuthOptions({\n    config: authKitConfig,\n    adapter,\n    persistence,\n  }),\n);\n\nexport const GET = handler;\nexport const POST = handler;\n`;\n}\n\nexport function paymentSuccessRouteTemplate() {\n  return `import { createBillingPaymentSuccessRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentSuccessHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentSuccessRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/auth/payment/finished',\n  handler: paymentSuccessHandler,\n});\n`;\n}\n\nexport function paymentFinishedRouteTemplate() {\n  return `import { createBillingPaymentFinishedRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentFinishedHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentFinishedRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/',\n  handler: paymentFinishedHandler,\n});\n`;\n}\n\nexport function billingPaymentSuccessHandlerTemplate() {\n  return `import type { BillingPaymentSuccessHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\n\n${customBegin}\nconst paymentSuccessHandlerImpl: BillingPaymentSuccessHandler = async () => {\n  return;\n};\n${customEnd}\n\nexport const paymentSuccessHandler: BillingPaymentSuccessHandler = paymentSuccessHandlerImpl;\n`;\n}\n\nexport function billingPaymentFinishedHandlerTemplate() {\n  return `import type { BillingPaymentFinishedHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\n\n${customBegin}\nconst paymentFinishedHandlerImpl: BillingPaymentFinishedHandler = async () => {\n  return;\n};\n${customEnd}\n\nexport const paymentFinishedHandler: BillingPaymentFinishedHandler = paymentFinishedHandlerImpl;\n`;\n}\n\n    export function authIndexHtmlTemplate() {\n      return `export { AUTH_INDEX_HTML, createAuthIndexHtml } from '@foldspace-fe/casdoor-next-auth-kit';\n`;\n    }\n\n    export function prismaSchemaTemplate() {\n      return buildAuthPrismaSchemaTemplate();\n    }\n\nexport function apiProxyRouteTemplate() {\n  return `import { apiProxyHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = apiProxyHandler;\nexport const HEAD = apiProxyHandler;\nexport const POST = apiProxyHandler;\nexport const PUT = apiProxyHandler;\nexport const PATCH = apiProxyHandler;\nexport const DELETE = apiProxyHandler;\nexport const OPTIONS = apiProxyHandler;\n`;\n}\n\nexport function commerceProxyRouteTemplate() {\n  return `import { commerceProxyHandler } from '../../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = commerceProxyHandler;\nexport const HEAD = commerceProxyHandler;\nexport const POST = commerceProxyHandler;\nexport const PUT = commerceProxyHandler;\nexport const PATCH = commerceProxyHandler;\nexport const DELETE = commerceProxyHandler;\nexport const OPTIONS = commerceProxyHandler;\n`;\n}\n\n    export function envTemplate(file: typeof AUTH_KIT_ENV_FILES[number], existingContent = '') {\n      return buildManagedEnvTemplate(file, existingContent);\n    }\n","import packageJson from '../../package.json';\n\nimport { initProject, checkProject, updateProject } from './operations';\n\nfunction printUsage() {\n  console.log('Usage: npx @foldspace-fe/casdoor-next-auth-kit@latest <init|update|check>');\n  console.log('       npx @foldspace-fe/casdoor-next-auth-kit@latest --help');\n  console.log('       npx @foldspace-fe/casdoor-next-auth-kit@latest --version');\n}\n\nexport async function runCli(argv: string[]) {\n  const command = argv[0] ?? 'help';\n  if (command === '--help' || command === '-h' || command === 'help') {\n    printUsage();\n    return;\n  }\n  if (command === '--version' || command === '-v') {\n    console.log(packageJson.version);\n    return;\n  }\n  if (command === 'init') return initProject();\n  if (command === 'update') return updateProject();\n  if (command === 'check') return checkProject();\n  printUsage();\n}\n","#!/usr/bin/env node\nimport { runCli } from './cli/index';\n\nrunCli(process.argv.slice(2)).catch((error) => {\n  console.error(error instanceof Error ? error.message : error);\n  process.exit(1);\n});\n"],"mappings":";;;;;;;;;AAAA;AAAA,EACE,MAAQ;AAAA,EACR,SAAW;AAAA,EACX,SAAW;AAAA,EACX,MAAQ;AAAA,EACR,YAAc;AAAA,IACZ,MAAQ;AAAA,IACR,KAAO;AAAA,EACT;AAAA,EACA,UAAY;AAAA,EACZ,MAAQ;AAAA,IACN,KAAO;AAAA,EACT;AAAA,EACA,MAAQ;AAAA,EACR,OAAS;AAAA,EACT,SAAW;AAAA,IACT,KAAK;AAAA,MACH,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,aAAa;AAAA,MACX,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,UAAU;AAAA,MACR,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,aAAa;AAAA,MACX,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,WAAW;AAAA,MACT,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,EACF;AAAA,EACA,KAAO;AAAA,IACL,yBAAyB;AAAA,EAC3B;AAAA,EACA,eAAiB;AAAA,IACf,QAAU;AAAA,IACV,YAAc;AAAA,EAChB;AAAA,EACA,OAAS,CAAC,QAAQ,WAAW;AAAA,EAC7B,SAAW;AAAA,IACT,OAAS;AAAA,IACT,MAAQ;AAAA,IACR,WAAa;AAAA,IACb,KAAO;AAAA,EACT;AAAA,EACA,kBAAoB;AAAA,IAClB,MAAQ;AAAA,IACR,aAAa;AAAA,IACb,OAAS;AAAA,IACT,aAAa;AAAA,EACf;AAAA,EACA,cAAgB;AAAA,IACd,MAAQ;AAAA,EACV;AAAA,EACA,iBAAmB;AAAA,IACjB,eAAe;AAAA,IACf,gBAAgB;AAAA,IAChB,oBAAoB;AAAA,IACpB,MAAQ;AAAA,IACR,YAAc;AAAA,EAChB;AACF;;;ACnEA,OAAOA,SAAQ;AACf,OAAOC,WAAU;AACjB,SAAS,qBAAqB;;;ACF1B,OAAO,QAAQ;AACf,OAAO,UAAU;AAEV,IAAM,kBAAkB;AACxB,IAAM,cAAc;AACpB,IAAM,YAAY;AAEtB,SAAS,UAAU,UAAkB;AAC1C,KAAG,UAAU,KAAK,QAAQ,QAAQ,GAAG,EAAE,WAAW,KAAK,CAAC;AAC1D;AAEO,SAAS,mBAAmB,UAAkB,SAAiB;AACpE,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,kBAAkB,SAAS,MAAM;AAC9D;AAEO,SAAS,cAAc,UAAkB,SAAiB;AAC/D,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,SAAS,MAAM;AAC5C;AAEO,SAAS,OAAO,UAAkB;AACvC,SAAO,GAAG,WAAW,QAAQ;AAC/B;AAEW,SAAS,KAAK,UAAkB;AACrC,SAAO,GAAG,aAAa,UAAU,MAAM;AACzC;AAEG,SAAS,oBAAoB,UAAkB,MAAc;AAC9D,QAAM,QAAQ,SAAS,QAAQ,WAAW;AAC1C,QAAM,MAAM,SAAS,QAAQ,SAAS;AACtC,MAAI,UAAU,MAAM,QAAQ,MAAM,OAAO,MAAO,QAAO;AACvD,QAAM,SAAS,SAAS,MAAM,OAAO,MAAM,UAAU,MAAM;AAC3D,QAAM,cAAc,KAAK,QAAQ,WAAW;AAC5C,QAAM,YAAY,KAAK,QAAQ,SAAS;AACxC,MAAI,gBAAgB,MAAM,cAAc,MAAM,aAAa,YAAa,QAAO;AACnF,SAAO,KAAK,MAAM,GAAG,WAAW,IAAI,SAAS,KAAK,MAAM,YAAY,UAAU,MAAM;AACtF;AAEO,SAAS,WAAW,UAAkB;AAC3C,KAAG,OAAO,UAAU,EAAE,OAAO,MAAM,WAAW,KAAK,CAAC;AACtD;;;ACtCO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,0BAA0B;AACxC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,sBAAsB;AACpC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,qBAAqB;AACnC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAoET;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAkBT;AAEO,SAAS,8BAA8B;AAC5C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,uCAAuC;AACrD,SAAO;AAAA;AAAA,EAEP,WAAW;AAAA;AAAA;AAAA;AAAA,EAIX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEO,SAAS,wCAAwC;AACtD,SAAO;AAAA;AAAA,EAEP,WAAW;AAAA;AAAA;AAAA;AAAA,EAIX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEW,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAET;AAEO,SAAS,uBAAuB;AACrC,SAAO,8BAA8B;AACvC;AAEG,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,6BAA6B;AAC3C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEW,SAAS,YAAY,MAAyC,kBAAkB,IAAI;AACzF,SAAO,wBAAwB,MAAM,eAAe;AACtD;;;AF7NJ,IAAM,cAAc,QAAQ,IAAI;AAChC,IAAM,WAAWC,MAAK,QAAQ,cAAc,YAAY,GAAG,CAAC;AAC5D,IAAM,sBAAsB;AAAA,EAC1BA,MAAK,KAAK,UAAU,8BAA8B;AAAA,EAClDA,MAAK,QAAQ,UAAU,MAAM,MAAM,MAAM,8BAA8B;AACzE;AACA,IAAM,cAAc;AAEpB,IAAM,UAAU;AAAA,EACd,CAAC,iCAAiC,kBAAkB;AAAA,EACpD,CAAC,sCAAsC,sBAAsB;AAAA,EAC7D,CAAC,uCAAuC,uBAAuB;AAAA,EAC/D,CAAC,iDAAiD,sBAAsB;AAAA,EACxE,CAAC,kDAAkD,4BAA4B;AAAA,EAC/E,CAAC,8CAA8C,qBAAqB;AAAA,EACpE,CAAC,kDAAkD,qBAAqB;AAAA,EACxE,CAAC,gDAAgD,2BAA2B;AAAA,EAC5E,CAAC,iDAAiD,4BAA4B;AAAA,EAC9E,CAAC,oCAAoC,qBAAqB;AAAA,EAC1D,CAAC,kCAAkC,mBAAmB;AAAA,EACtD,CAAC,uDAAuD,0BAA0B;AAAA,EAClF,CAAC,kCAAkC,oCAAoC;AAAA,EACvE,CAAC,mCAAmC,qCAAqC;AAAA,EACzE,CAAC,gCAAgC,qBAAqB;AAAA,EACtD,CAAC,0BAA0B,oBAAoB;AACjD;AAEA,IAAM,oBAAoB;AAAA,EACxB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,SAAS,WAAW,UAAkB;AACpC,UAAQ,IAAI,KAAKA,MAAK,SAAS,aAAa,QAAQ,CAAC,EAAE;AACzD;AAEA,SAAS,WAAW,UAAkB;AACpC,UAAQ,IAAI,KAAKA,MAAK,SAAS,aAAa,QAAQ,CAAC,EAAE;AACzD;AAEA,SAAS,WAAW,UAAkB;AACpC,UAAQ,IAAI,KAAKA,MAAK,SAAS,aAAa,QAAQ,CAAC,EAAE;AACzD;AAEA,SAAS,sBAAsB;AAC7B,aAAW,QAAQ,oBAAoB;AACrC,UAAM,WAAWA,MAAK,KAAK,aAAa,IAAI;AAC5C,UAAM,UAAU,OAAO,QAAQ;AAC/B,UAAM,UAAU,UAAU,KAAK,QAAQ,IAAI;AAC3C,UAAM,OAAO,YAAY,MAAM,OAAO;AACtC,QAAI,CAAC,WAAW,YAAY,MAAM;AAChC,oBAAc,UAAU,IAAI;AAC5B,UAAI,CAAC,SAAS;AACZ,mBAAW,QAAQ;AAAA,MACrB,OAAO;AACL,mBAAW,QAAQ;AAAA,MACrB;AAAA,IACF;AAAA,EACF;AACF;AAEA,SAAS,uBAAuB;AAC9B,QAAM,WAAWA,MAAK,KAAK,aAAa,WAAW;AACnD,MAAI;AACF,UAAM,aAAa,oBAAoB,KAAK,CAAC,cAAcC,IAAG,WAAW,SAAS,CAAC;AACnF,QAAI,CAAC,YAAY;AACf,YAAM,IAAI,MAAM,wDAAwD,oBAAoB,KAAK,IAAI,CAAC,EAAE;AAAA,IAC1G;AACA,eAAW,QAAQ;AACnB,IAAAA,IAAG,UAAU,UAAU,EAAE,WAAW,KAAK,CAAC;AAC1C,eAAW,QAAQ;AACnB,eAAW,SAASA,IAAG,YAAY,YAAY,EAAE,eAAe,KAAK,CAAC,GAAG;AACvE,YAAM,cAAcD,MAAK,KAAK,YAAY,MAAM,IAAI;AACpD,YAAM,cAAcA,MAAK,KAAK,UAAU,MAAM,IAAI;AAClD,UAAI,MAAM,YAAY,GAAG;AACvB,QAAAC,IAAG,OAAO,aAAa,aAAa,EAAE,WAAW,KAAK,CAAC;AACvD,gBAAQ,IAAI,KAAKD,MAAK,SAAS,aAAa,WAAW,CAAC,GAAG;AAC3D;AAAA,MACF;AACA,MAAAC,IAAG,aAAa,aAAa,WAAW;AACxC,cAAQ,IAAI,KAAKD,MAAK,SAAS,aAAa,WAAW,CAAC,EAAE;AAAA,IAC5D;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,KAAK,0BAA0B,WAAW,KAAK,iBAAiB,QAAQ,MAAM,UAAU,OAAO,KAAK,CAAC,EAAE;AAAA,EACjH;AACF;AAEA,eAAsB,cAAc;AAClC,aAAW,CAAC,KAAK,OAAO,KAAK,SAAS;AACpC,UAAM,WAAWA,MAAK,KAAK,aAAa,GAAG;AAC3C,QAAI,CAAC,OAAO,QAAQ,GAAG;AACrB,yBAAmB,UAAU,QAAQ,CAAC;AACtC,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF;AAEA,sBAAoB;AACpB,uBAAqB;AACrB,UAAQ,IAAI,kDAAkD;AAChE;AAEA,eAAsB,gBAAgB;AACpC,aAAW,OAAO,mBAAmB;AACnC,UAAM,WAAWA,MAAK,KAAK,aAAa,GAAG;AAC3C,QAAI,OAAO,QAAQ,GAAG;AACpB,iBAAW,QAAQ;AACnB,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF;AAEA,aAAW,CAAC,KAAK,OAAO,KAAK,SAAS;AACpC,UAAM,WAAWA,MAAK,KAAK,aAAa,GAAG;AAC3C,UAAM,OAAO,0DAA0D,QAAQ;AAC/E,QAAI,CAAC,OAAO,QAAQ,GAAG;AACrB,yBAAmB,UAAU,QAAQ,CAAC;AACtC,iBAAW,QAAQ;AACnB;AAAA,IACF;AAEA,QAAI,QAAQ,iCAAiC;AAC3C,YAAME,WAAU,KAAK,QAAQ;AAC7B,UAAIA,aAAY,MAAM;AACpB,sBAAc,UAAU,IAAI;AAC5B,mBAAW,QAAQ;AAAA,MACrB;AACA;AAAA,IACF;AAEA,UAAM,UAAU,KAAK,QAAQ;AAC7B,UAAM,UAAU,oBAAoB,SAAS,IAAI;AACjD,QAAI,YAAY,SAAS;AACvB,oBAAc,UAAU,OAAO;AAC/B,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF;AAEA,sBAAoB;AACpB,uBAAqB;AACrB,UAAQ,IAAI,0DAA0D;AACxE;AAEA,eAAsB,eAAe;AACnC,QAAM,gBAAgB,QAAQ,OAAO,CAAC,CAAC,GAAG,MAAM,CAAC,OAAOF,MAAK,KAAK,aAAa,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,GAAG,MAAM,GAAG;AACxG,QAAM,aAAa,mBAAmB,OAAO,CAAC,SAAS;AACrD,UAAM,WAAWA,MAAK,KAAK,aAAa,IAAI;AAC5C,QAAI,CAAC,OAAO,QAAQ,GAAG;AACrB,aAAO;AAAA,IACT;AACA,WAAO,yBAAyB,KAAK,QAAQ,CAAC,EAAE,SAAS;AAAA,EAC3D,CAAC;AACD,QAAM,WAAWA,MAAK,KAAK,aAAa,WAAW;AACnD,QAAM,eAAe,OAAOA,MAAK,KAAK,UAAU,UAAU,CAAC,IAAI,CAAC,IAAI,CAACA,MAAK,KAAK,aAAa,UAAU,CAAC;AACvG,QAAM,UAAU,CAAC,GAAG,eAAe,GAAG,YAAY,GAAG,YAAY;AAEjE,MAAI,QAAQ,SAAS,GAAG;AACtB,YAAQ,MAAM,0BAA0B;AACxC,eAAW,OAAO,SAAS;AACzB,cAAQ,MAAM,OAAO,GAAG;AAAA,IAC1B;AACA,YAAQ,WAAW;AACnB;AAAA,EACF;AAEA,UAAQ,IAAI,gCAAgC;AAC9C;;;AGpNA,SAAS,aAAa;AACpB,UAAQ,IAAI,2EAA2E;AACvF,UAAQ,IAAI,8DAA8D;AAC1E,UAAQ,IAAI,iEAAiE;AAC/E;AAEA,eAAsB,OAAO,MAAgB;AAC3C,QAAM,UAAU,KAAK,CAAC,KAAK;AAC3B,MAAI,YAAY,YAAY,YAAY,QAAQ,YAAY,QAAQ;AAClE,eAAW;AACX;AAAA,EACF;AACA,MAAI,YAAY,eAAe,YAAY,MAAM;AAC/C,YAAQ,IAAI,gBAAY,OAAO;AAC/B;AAAA,EACF;AACA,MAAI,YAAY,OAAQ,QAAO,YAAY;AAC3C,MAAI,YAAY,SAAU,QAAO,cAAc;AAC/C,MAAI,YAAY,QAAS,QAAO,aAAa;AAC7C,aAAW;AACb;;;ACrBA,OAAO,QAAQ,KAAK,MAAM,CAAC,CAAC,EAAE,MAAM,CAAC,UAAU;AAC7C,UAAQ,MAAM,iBAAiB,QAAQ,MAAM,UAAU,KAAK;AAC5D,UAAQ,KAAK,CAAC;AAChB,CAAC;","names":["fs","path","path","fs","current"]}
+{"version":3,"sources":["../package.json","../src/cli/operations.ts","../src/cli/fs.ts","../src/cli/templates.ts","../src/cli/index.ts","../src/cli.ts"],"sourcesContent":["{\n  \"name\": \"@foldspace-fe/casdoor-next-auth-kit\",\n  \"version\": \"0.1.0\",\n  \"private\": false,\n  \"type\": \"module\",\n  \"repository\": {\n    \"type\": \"git\",\n    \"url\": \"https://github.com/foldspace-stack/casdoor-next-auth-kit\"\n  },\n  \"homepage\": \"https://github.com/foldspace-stack/casdoor-next-auth-kit#readme\",\n  \"bugs\": {\n    \"url\": \"https://github.com/foldspace-stack/casdoor-next-auth-kit/issues\"\n  },\n  \"main\": \"./dist/index.js\",\n  \"types\": \"./dist/index.d.ts\",\n  \"exports\": {\n    \".\": {\n      \"types\": \"./dist/index.d.ts\",\n      \"default\": \"./dist/index.js\"\n    },\n    \"./casdoor\": {\n      \"types\": \"./dist/casdoor/index.d.ts\",\n      \"default\": \"./dist/casdoor/index.js\"\n    },\n    \"./next\": {\n      \"types\": \"./dist/next/index.d.ts\",\n      \"default\": \"./dist/next/index.js\"\n    },\n    \"./billing\": {\n      \"types\": \"./dist/billing/index.d.ts\",\n      \"default\": \"./dist/billing/index.js\"\n    },\n    \"./react\": {\n      \"types\": \"./dist/react/index.d.ts\",\n      \"default\": \"./dist/react/index.js\"\n    }\n  },\n  \"bin\": {\n    \"casdoor-next-auth-kit\": \"./dist/cli.js\"\n  },\n  \"publishConfig\": {\n    \"access\": \"public\",\n    \"provenance\": true\n  },\n  \"files\": [\"dist\", \"README.md\"],\n  \"scripts\": {\n    \"build\": \"tsup && node ./scripts/copy-skill.mjs\",\n    \"test\": \"pnpm build && node --test --experimental-strip-types ./scripts/verify-casdoor-proxy.mjs\",\n    \"typecheck\": \"tsc -p tsconfig.json --noEmit\",\n    \"dev\": \"tsup --watch\"\n  },\n  \"peerDependencies\": {\n    \"next\": \">=16\",\n    \"next-auth\": \"^4.24.0\",\n    \"react\": \">=19\",\n    \"react-dom\": \">=19\"\n  },\n  \"dependencies\": {\n    \"jose\": \"^6.1.0\"\n  },\n  \"devDependencies\": {\n    \"@types/node\": \"^22.15.0\",\n    \"@types/react\": \"^19.2.0\",\n    \"@types/react-dom\": \"^19.2.0\",\n    \"tsup\": \"^8.5.0\",\n    \"typescript\": \"^5.6.3\"\n  }\n}\n","import fs from 'node:fs';\nimport path from 'node:path';\nimport { fileURLToPath } from 'node:url';\n\nimport { AUTH_KIT_ENV_FILES, getMissingManagedEnvKeys } from '../core/env';\nimport { exists, preserveCustomBlock, read, removePath, writeGeneratedFile, writeTextFile } from './fs';\nimport {\n  apiProxyRouteTemplate,\n  authConfigTemplate,\n  authIndexHtmlTemplate,\n  authLoginRouteTemplate,\n  authSignupRouteTemplate,\n  callbackErrorClearCookiesButtonTemplate,\n  callbackErrorPageTemplate,\n  authorizeRouteTemplate,\n  callbackRouteTemplate,\n  billingPaymentFinishedHandlerTemplate,\n  billingPaymentSuccessHandlerTemplate,\n  commerceProxyRouteTemplate,\n  envTemplate,\n  logoutRouteTemplate,\n  nextAuthRouteTemplate,\n  paymentFinishedRouteTemplate,\n  paymentSuccessRouteTemplate,\n  prismaSchemaTemplate,\n  signupAuthorizeRouteTemplate,\n} from './templates';\n\nconst projectRoot = process.cwd();\nconst distRoot = path.dirname(fileURLToPath(import.meta.url));\nconst canonicalSkillPaths = [\n  path.join(distRoot, 'skills/casdoor-next-auth-kit'),\n  path.resolve(distRoot, '..', '..', '..', 'skills/casdoor-next-auth-kit'),\n];\nconst skillTarget = '.agents/skills/casdoor-next-auth-kit';\n\nconst targets = [\n  ['app/(auth-kit)/auth-config.ts', authConfigTemplate],\n  ['app/(auth-kit)/auth/login/route.ts', authLoginRouteTemplate],\n  ['app/(auth-kit)/auth/signup/route.ts', authSignupRouteTemplate],\n  ['app/(auth-kit)/login/oauth/authorize/route.ts', authorizeRouteTemplate],\n  ['app/(auth-kit)/signup/oauth/authorize/route.ts', signupAuthorizeRouteTemplate],\n  ['app/(auth-kit)/auth/api/[...path]/route.ts', apiProxyRouteTemplate],\n  ['app/(auth-kit)/api/auth/[...nextauth]/route.ts', nextAuthRouteTemplate],\n  ['app/(auth-kit)/auth/payment/success/route.ts', paymentSuccessRouteTemplate],\n  ['app/(auth-kit)/auth/payment/finished/route.ts', paymentFinishedRouteTemplate],\n  ['app/(auth-kit)/callback/route.ts', callbackRouteTemplate],\n  ['app/(auth-kit)/callback/error/page.tsx', callbackErrorPageTemplate],\n  ['app/(auth-kit)/callback/error/clear-domain-cookies-button.tsx', callbackErrorClearCookiesButtonTemplate],\n  ['app/(auth-kit)/logout/route.ts', logoutRouteTemplate],\n  ['app/(auth-kit)/auth/api/commerce/[...path]/route.ts', commerceProxyRouteTemplate],\n  ['lib/billing/payment-success.ts', billingPaymentSuccessHandlerTemplate],\n  ['lib/billing/payment-finished.ts', billingPaymentFinishedHandlerTemplate],\n  ['app/(auth-kit)/index-html.ts', authIndexHtmlTemplate],\n  ['prisma/auth-kit.prisma', prismaSchemaTemplate],\n] as const;\n\nconst deprecatedTargets = [\n  'app/(auth-kit)/api/casdoor/[...path]/route.ts',\n  'app/(auth-kit)/api/casdoor/commerce/[...path]/route.ts',\n  'app/(auth-kit)/auth/api/casdoor/[...path]/route.ts',\n  'app/(auth-kit)/auth/api/casdoor/commerce/[...path]/route.ts',\n  'app/(auth-kit)/login/route.ts',\n  'app/(auth-kit)/signup/route.ts',\n  'app/(auth-kit)/signup/oauth/authorize/route.ts',\n  'app/(auth-kit)/auth/payment-success/route.ts',\n  'app/(auth-kit)/auth/payment/finished/page.tsx',\n  'app/(auth-kit)/callback/error/page.tsx',\n  'app/auth/index-html.ts',\n  'app/auth/libs/index.ts',\n  'app/auth/libs/auth-config.ts',\n  'app/auth/libs/casdoor-config.ts',\n  'app/auth/libs/session-token.ts',\n  'app/auth/libs/oauth-state.ts',\n  'app/auth/libs/page-proxy.ts',\n  'app/auth/libs/api-proxy.ts',\n  'app/auth/libs/casdoor-oauth.ts',\n  'app/auth/libs/nextauth-route.ts',\n  'app/auth/libs',\n  'lib/auth-kit/index.ts',\n  'lib/auth-kit/index-html.ts',\n  'lib/auth-kit',\n  'lib/casdoor-entry.ts',\n  'lib/auth.ts',\n  'lib/public-origin.ts',\n  'lib/request-security.ts',\n  'lib/auth-redirect.ts',\n] as const;\n\nfunction logCreated(filePath: string) {\n  console.log(`+ ${path.relative(projectRoot, filePath)}`);\n}\n\nfunction logUpdated(filePath: string) {\n  console.log(`~ ${path.relative(projectRoot, filePath)}`);\n}\n\nfunction logRemoved(filePath: string) {\n  console.log(`- ${path.relative(projectRoot, filePath)}`);\n}\n\nfunction syncManagedEnvFiles() {\n  for (const file of AUTH_KIT_ENV_FILES) {\n    const filePath = path.join(projectRoot, file);\n    const existed = exists(filePath);\n    const current = existed ? read(filePath) : '';\n    const next = envTemplate(file, current);\n    if (!existed || current !== next) {\n      writeTextFile(filePath, next);\n      if (!existed) {\n        logCreated(filePath);\n      } else {\n        logUpdated(filePath);\n      }\n    }\n  }\n}\n\nfunction syncManagedSkillFile() {\n  const filePath = path.join(projectRoot, skillTarget);\n  try {\n    const sourcePath = canonicalSkillPaths.find((candidate) => fs.existsSync(candidate));\n    if (!sourcePath) {\n      throw new Error(`Unable to locate canonical skill directory. Checked: ${canonicalSkillPaths.join(', ')}`);\n    }\n    removePath(filePath);\n    fs.mkdirSync(filePath, { recursive: true });\n    logCreated(filePath);\n    for (const entry of fs.readdirSync(sourcePath, { withFileTypes: true })) {\n      const sourceEntry = path.join(sourcePath, entry.name);\n      const targetEntry = path.join(filePath, entry.name);\n      if (entry.isDirectory()) {\n        fs.cpSync(sourceEntry, targetEntry, { recursive: true });\n        console.log(`+ ${path.relative(projectRoot, targetEntry)}/`);\n        continue;\n      }\n      fs.copyFileSync(sourceEntry, targetEntry);\n      console.log(`+ ${path.relative(projectRoot, targetEntry)}`);\n    }\n  } catch (error) {\n    console.warn(`Skipped skill sync for ${skillTarget}: ${error instanceof Error ? error.message : String(error)}`);\n  }\n}\n\nexport async function initProject() {\n  for (const [rel, factory] of targets) {\n    const filePath = path.join(projectRoot, rel);\n    if (!exists(filePath)) {\n      writeGeneratedFile(filePath, factory());\n      logCreated(filePath);\n    }\n  }\n\n  syncManagedEnvFiles();\n  syncManagedSkillFile();\n  console.log('Initialized casdoor-next-auth-kit managed files.');\n}\n\nexport async function updateProject() {\n  for (const rel of deprecatedTargets) {\n    const filePath = path.join(projectRoot, rel);\n    if (exists(filePath)) {\n      removePath(filePath);\n      logRemoved(filePath);\n    }\n  }\n\n  for (const [rel, factory] of targets) {\n    const filePath = path.join(projectRoot, rel);\n    const next = '// generated by @foldspace-fe/casdoor-next-auth-kit\\n' + factory();\n    if (!exists(filePath)) {\n      writeGeneratedFile(filePath, factory());\n      logCreated(filePath);\n      continue;\n    }\n\n    if (rel === 'app/(auth-kit)/auth-config.ts') {\n      const current = read(filePath);\n      if (current !== next) {\n        writeTextFile(filePath, next);\n        logUpdated(filePath);\n      }\n      continue;\n    }\n\n    const current = read(filePath);\n    const updated = preserveCustomBlock(current, next);\n    if (current !== updated) {\n      writeTextFile(filePath, updated);\n      logUpdated(filePath);\n    }\n  }\n\n  syncManagedEnvFiles();\n  syncManagedSkillFile();\n  console.log('Updated managed route shells, env files, and skill file.');\n}\n\nexport async function checkProject() {\n  const missingRoutes = targets.filter(([rel]) => !exists(path.join(projectRoot, rel))).map(([rel]) => rel);\n  const missingEnv = AUTH_KIT_ENV_FILES.filter((file) => {\n    const filePath = path.join(projectRoot, file);\n    if (!exists(filePath)) {\n      return true;\n    }\n    return getMissingManagedEnvKeys(read(filePath)).length > 0;\n  });\n  const skillDir = path.join(projectRoot, skillTarget);\n  const missingSkill = exists(path.join(skillDir, 'SKILL.md')) ? [] : [path.join(skillTarget, 'SKILL.md')];\n  const missing = [...missingRoutes, ...missingEnv, ...missingSkill];\n\n  if (missing.length > 0) {\n    console.error('Missing generated files:');\n    for (const rel of missing) {\n      console.error('- ' + rel);\n    }\n    process.exitCode = 1;\n    return;\n  }\n\n  console.log('All managed files are present.');\n}\n","    import fs from 'node:fs';\n    import path from 'node:path';\n\n    export const generatedHeader = '// generated by @foldspace-fe/casdoor-next-auth-kit\\n';\n    export const customBegin = '// @foldspace-fe/casdoor-next-auth-kit:begin custom';\n    export const customEnd = '// @foldspace-fe/casdoor-next-auth-kit:end custom';\n\nexport function ensureDir(filePath: string) {\n  fs.mkdirSync(path.dirname(filePath), { recursive: true });\n}\n\nexport function writeGeneratedFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, generatedHeader + content, 'utf8');\n}\n\nexport function writeTextFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, content, 'utf8');\n}\n\nexport function exists(filePath: string) {\n  return fs.existsSync(filePath);\n}\n\n    export function read(filePath: string) {\n      return fs.readFileSync(filePath, 'utf8');\n    }\n\nexport function preserveCustomBlock(existing: string, next: string) {\n      const begin = existing.indexOf(customBegin);\n      const end = existing.indexOf(customEnd);\n      if (begin === -1 || end === -1 || end <= begin) return next;\n      const custom = existing.slice(begin, end + customEnd.length);\n      const targetBegin = next.indexOf(customBegin);\n      const targetEnd = next.indexOf(customEnd);\n      if (targetBegin === -1 || targetEnd === -1 || targetEnd <= targetBegin) return next;\n  return next.slice(0, targetBegin) + custom + next.slice(targetEnd + customEnd.length);\n}\n\nexport function removePath(filePath: string) {\n  fs.rmSync(filePath, { force: true, recursive: true });\n}\n","import { customBegin, customEnd } from './fs';\nimport { buildAuthPrismaSchemaTemplate } from '../prisma/schema-template';\nimport { AUTH_KIT_ENV_FILES, buildManagedEnvTemplate } from '../core/env';\n\nexport function authLoginRouteTemplate() {\n  return `import { loginHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = loginHandler;\n`;\n}\n\nexport function authSignupRouteTemplate() {\n  return `import { signupHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = signupHandler;\n`;\n}\n\nexport function authorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function signupAuthorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function callbackRouteTemplate() {\n  return `import { callbackHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = callbackHandler;\n`;\n}\n\nexport function logoutRouteTemplate() {\n  return `import { logoutHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = logoutHandler;\n`;\n}\n\nexport function callbackErrorPageTemplate() {\n  return `import { ClearDomainCookiesButton } from './clear-domain-cookies-button';\n\nexport const dynamic = 'force-dynamic';\n\nexport default async function CallbackErrorPage({\n  searchParams,\n}: {\n  searchParams: Promise<{ title?: string; message?: string; details?: string }>;\n}) {\n  const params = await searchParams;\n\n  return (\n    <main\n      style={{\n        minHeight: '100dvh',\n        display: 'flex',\n        alignItems: 'center',\n        justifyContent: 'center',\n        padding: '20px 16px',\n        background:\n          'radial-gradient(circle at top, rgba(99, 102, 241, 0.12) 0, rgba(99, 102, 241, 0) 38%), linear-gradient(180deg, #f8fafc 0%, #eef2ff 100%)',\n      }}\n    >\n      <section\n        style={{\n          width: 'min(100%, 400px)',\n          borderRadius: 28,\n          padding: '24px 20px',\n          boxSizing: 'border-box',\n          background: 'rgba(255, 255, 255, 0.96)',\n          border: '1px solid rgba(148, 163, 184, 0.2)',\n          boxShadow: '0 22px 52px rgba(15, 23, 42, 0.12)',\n          textAlign: 'center',\n          backdropFilter: 'blur(10px)',\n        }}\n      >\n        <div\n          style={{\n            width: 52,\n            height: 52,\n            margin: '0 auto 14px',\n            display: 'grid',\n            placeItems: 'center',\n            borderRadius: 18,\n            background: 'linear-gradient(135deg, rgba(239, 68, 68, 0.15), rgba(249, 115, 22, 0.1))',\n            color: '#b91c1c',\n            fontSize: 28,\n            lineHeight: 1,\n          }}\n          aria-hidden=\"true\"\n        >\n          !\n        </div>\n        <div\n          style={{\n            display: 'inline-flex',\n            alignItems: 'center',\n            justifyContent: 'center',\n            marginBottom: 12,\n            padding: '6px 12px',\n            borderRadius: 9999,\n            background: 'rgba(254, 226, 226, 0.9)',\n            color: '#b91c1c',\n            fontSize: 13,\n            fontWeight: 600,\n            letterSpacing: '0.04em',\n          }}\n        >\n          认证失败\n        </div>\n        <h2 style={{ margin: 0, fontSize: 24, lineHeight: 1.2, color: '#0f172a' }}>{params.title ?? 'Callback Error'}</h2>\n        <p style={{ margin: '12px 0 0', color: '#334155', lineHeight: 1.6 }}>{params.message ?? 'Unknown callback failure.'}</p>\n        {params.details ? (\n          <pre\n            style={{\n              margin: '14px 0 0',\n              maxHeight: 140,\n              overflow: 'auto',\n              padding: 14,\n              borderRadius: 18,\n              textAlign: 'left',\n              whiteSpace: 'pre-wrap',\n              wordBreak: 'break-word',\n              background: '#f8fafc',\n              color: '#0f172a',\n              border: '1px solid rgba(148, 163, 184, 0.18)',\n              fontSize: 13,\n              lineHeight: 1.6,\n            }}\n          >\n            {params.details}\n          </pre>\n        ) : null}\n${customBegin}\n        <div style={{ display: 'flex', flexDirection: 'column', gap: 10, marginTop: 20 }}>\n        <ClearDomainCookiesButton />\n          <a href=\"/\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>返回首页</a>\n          <a href=\"/auth/login\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>重新登录</a>\n          <a href=\"/auth/signup\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>去注册</a>\n        </div>\n${customEnd}\n      </section>\n    </main>\n  );\n}\n`;\n}\n\nexport function callbackErrorClearCookiesButtonTemplate() {\n  return `'use client';\n\nimport { useState } from 'react';\n\nconst AUTH_COOKIE_NAMES = [\n  'auth_origin',\n  'auth_redirect',\n  'oauth_state',\n  'pkce_code_verifier',\n  'next-auth.session-token',\n  '__Secure-next-auth.session-token',\n  'next-auth.csrf-token',\n  '__Secure-next-auth.csrf-token',\n  '__Host-next-auth.csrf-token',\n];\n\nfunction getPathCandidates(pathname: string): string[] {\n  const normalized = pathname.startsWith('/') ? pathname : '/' + pathname;\n  const segments = normalized.split('/').filter(Boolean);\n  const paths = new Set<string>(['/']);\n\n  let current = '';\n  for (const segment of segments) {\n    current += '/' + segment;\n    paths.add(current);\n  }\n\n  return [...paths];\n}\n\nfunction getDomainCandidates(hostname: string): string[] {\n  const normalized = hostname.toLowerCase();\n  if (\n    normalized === 'localhost' ||\n    normalized.endsWith('.localhost') ||\n    /^\\\\d+\\\\.\\\\d+\\\\.\\\\d+\\\\.\\\\d+$/.test(normalized) ||\n    /^\\\\[[^\\\\]]+\\\\]$/.test(normalized)\n  ) {\n    return [];\n  }\n\n  const parts = normalized.split('.');\n  if (parts.length < 2) {\n    return [];\n  }\n\n  const domains = new Set<string>();\n  for (let index = 0; index < parts.length - 1; index++) {\n    const suffix = parts.slice(index).join('.');\n    domains.add(suffix);\n    domains.add('.' + suffix);\n  }\n\n  return [...domains];\n}\n\nfunction expireCookie(name: string, path: string, domain?: string) {\n  const pieces = [\n    name + '=',\n    'Max-Age=0',\n    'Expires=Thu, 01 Jan 1970 00:00:00 GMT',\n    'Path=' + path,\n    'SameSite=Lax',\n  ];\n\n  if (domain) {\n    pieces.push('Domain=' + domain);\n  }\n\n  if (window.location.protocol === 'https:') {\n    pieces.push('Secure');\n  }\n\n  document.cookie = pieces.join('; ');\n}\n\n${customBegin}\nexport function ClearDomainCookiesButton() {\n  const [cleared, setCleared] = useState(false);\n\n  const handleClick = () => {\n    if (typeof document === 'undefined' || typeof window === 'undefined') {\n      return;\n    }\n\n    const names = new Set<string>(AUTH_COOKIE_NAMES);\n    for (const entry of document.cookie.split(';')) {\n      const [rawName] = entry.trim().split('=');\n      if (rawName) {\n        names.add(rawName);\n      }\n    }\n\n    const pathCandidates = getPathCandidates(window.location.pathname);\n    const domainCandidates = getDomainCandidates(window.location.hostname);\n\n    for (const name of names) {\n      for (const path of pathCandidates) {\n        expireCookie(name, path);\n        for (const domain of domainCandidates) {\n          expireCookie(name, path, domain);\n        }\n      }\n    }\n\n    setCleared(true);\n  };\n\n  return (\n    <button\n      type=\"button\"\n      onClick={handleClick}\n      disabled={cleared}\n      style={{\n        display: 'inline-flex',\n        width: '100%',\n        alignItems: 'center',\n        justifyContent: 'center',\n        minHeight: 44,\n        padding: '0 16px',\n        boxSizing: 'border-box',\n        borderRadius: 9999,\n        border: '1px solid rgba(148, 163, 184, 0.35)',\n        color: '#0f172a',\n        background: cleared ? 'rgba(220, 252, 231, 0.92)' : 'rgba(248, 250, 252, 0.9)',\n        cursor: cleared ? 'default' : 'pointer',\n      }}\n    >\n      {cleared ? '已清空' : '清空当前域 Cookie'}\n    </button>\n  );\n}\n${customEnd}\n`;\n}\n\nexport function authConfigTemplate() {\n  return `import {\n  createCallbackHandler,\n  createCasdoorApiProxyHandler,\n  createCasdoorCommerceProxyHandler,\n  createAuthorizeRouteHandler,\n  createLoginRouteHandler,\n  createLogoutHandler,\n  createNextAuthOptions,\n  createSignupRouteHandler,\n  type AuthBusinessAdapter,\n  type AuthKitConfig,\n  type AuthPersistenceAdapter,\n} from '@foldspace-fe/casdoor-next-auth-kit';\nimport { isGlobalAdminEmail } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { paymentSuccessHandler as billingPaymentSuccessHandler } from '@/lib/billing/payment-success';\nimport { paymentFinishedHandler as billingPaymentFinishedHandler } from '@/lib/billing/payment-finished';\n\nexport function createAuthKitConfig(): AuthKitConfig {\n  return {\n    appUrl: process.env.APP_URL || '',\n    nextauthSecret: process.env.NEXTAUTH_SECRET || 'dev-nextauth-secret',\n    logoutRedirectPath: process.env.NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH || '/',\n    casdoor: {\n      serverUrl: process.env.NEXT_PUBLIC_CASDOOR_SERVER_URL || process.env.CASDOOR_SERVER_URL || '',\n      clientId: process.env.NEXT_PUBLIC_CASDOOR_CLIENT_ID || process.env.CASDOOR_CLIENT_ID || '',\n      clientSecret: process.env.CASDOOR_CLIENT_SECRET || '',\n      appName: process.env.NEXT_PUBLIC_CASDOOR_APP_NAME || '',\n      organizationName: process.env.NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME || '',\n      redirectPath: process.env.NEXT_PUBLIC_CASDOOR_REDIRECT_PATH || '/callback',\n      signinPath: process.env.NEXT_PUBLIC_CASDOOR_SIGNIN_PATH || '/login/oauth/authorize',\n    },\n  };\n}\n\nexport const authKitConfig = createAuthKitConfig();\n\nexport const adapter: AuthBusinessAdapter = {\n  isAdminEmail: isGlobalAdminEmail,\n};\n\nexport const persistence: AuthPersistenceAdapter = {\n  async syncAuthUser() {\n    return;\n  },\n  async findAuthUser() {\n    return null;\n  },\n};\n\nexport const paymentSuccessHandler = billingPaymentSuccessHandler;\nexport const paymentFinishedHandler = billingPaymentFinishedHandler;\n\nexport const loginHandler = createLoginRouteHandler(authKitConfig);\nexport const signupHandler = createSignupRouteHandler(authKitConfig);\nexport const authorizeHandler = createAuthorizeRouteHandler(authKitConfig);\nexport const callbackHandler = createCallbackHandler({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const logoutHandler = createLogoutHandler(authKitConfig);\nexport const authOptions = createNextAuthOptions({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const apiProxyHandler = createCasdoorApiProxyHandler(authKitConfig, '/auth/api', '/api');\nexport const commerceProxyHandler = createCasdoorCommerceProxyHandler(authKitConfig, '/auth/api/commerce', '/api/commerce');\n`;\n}\n\nexport function nextAuthRouteTemplate() {\n  return `import NextAuth from 'next-auth';\nimport { createNextAuthOptions } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { adapter, authKitConfig, persistence } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nconst handler = NextAuth(\n  createNextAuthOptions({\n    config: authKitConfig,\n    adapter,\n    persistence,\n  }),\n);\n\nexport const GET = handler;\nexport const POST = handler;\n`;\n}\n\nexport function paymentSuccessRouteTemplate() {\n  return `import { createBillingPaymentSuccessRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentSuccessHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentSuccessRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/auth/payment/finished',\n  handler: paymentSuccessHandler,\n});\n`;\n}\n\nexport function paymentFinishedRouteTemplate() {\n  return `import { createBillingPaymentFinishedRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentFinishedHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentFinishedRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/',\n  handler: paymentFinishedHandler,\n});\n`;\n}\n\nexport function billingPaymentSuccessHandlerTemplate() {\n  return `import type { BillingPaymentSuccessHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\n\n${customBegin}\nconst paymentSuccessHandlerImpl: BillingPaymentSuccessHandler = async () => {\n  return;\n};\n${customEnd}\n\nexport const paymentSuccessHandler: BillingPaymentSuccessHandler = paymentSuccessHandlerImpl;\n`;\n}\n\nexport function billingPaymentFinishedHandlerTemplate() {\n  return `import type { BillingPaymentFinishedHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\n\n${customBegin}\nconst paymentFinishedHandlerImpl: BillingPaymentFinishedHandler = async () => {\n  return;\n};\n${customEnd}\n\nexport const paymentFinishedHandler: BillingPaymentFinishedHandler = paymentFinishedHandlerImpl;\n`;\n}\n\n    export function authIndexHtmlTemplate() {\n      return `export { AUTH_INDEX_HTML, createAuthIndexHtml } from '@foldspace-fe/casdoor-next-auth-kit';\n`;\n    }\n\n    export function prismaSchemaTemplate() {\n      return buildAuthPrismaSchemaTemplate();\n    }\n\nexport function apiProxyRouteTemplate() {\n  return `import { apiProxyHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = apiProxyHandler;\nexport const HEAD = apiProxyHandler;\nexport const POST = apiProxyHandler;\nexport const PUT = apiProxyHandler;\nexport const PATCH = apiProxyHandler;\nexport const DELETE = apiProxyHandler;\nexport const OPTIONS = apiProxyHandler;\n`;\n}\n\nexport function commerceProxyRouteTemplate() {\n  return `import { commerceProxyHandler } from '../../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = commerceProxyHandler;\nexport const HEAD = commerceProxyHandler;\nexport const POST = commerceProxyHandler;\nexport const PUT = commerceProxyHandler;\nexport const PATCH = commerceProxyHandler;\nexport const DELETE = commerceProxyHandler;\nexport const OPTIONS = commerceProxyHandler;\n`;\n}\n\n    export function envTemplate(file: typeof AUTH_KIT_ENV_FILES[number], existingContent = '') {\n      return buildManagedEnvTemplate(file, existingContent);\n    }\n","import packageJson from '../../package.json';\n\nimport { initProject, checkProject, updateProject } from './operations';\n\nfunction printUsage() {\n  console.log('Usage: npx @foldspace-fe/casdoor-next-auth-kit@latest <init|update|check>');\n  console.log('       npx @foldspace-fe/casdoor-next-auth-kit@latest --help');\n  console.log('       npx @foldspace-fe/casdoor-next-auth-kit@latest --version');\n}\n\nexport async function runCli(argv: string[]) {\n  const command = argv[0] ?? 'help';\n  if (command === '--help' || command === '-h' || command === 'help') {\n    printUsage();\n    return;\n  }\n  if (command === '--version' || command === '-v') {\n    console.log(packageJson.version);\n    return;\n  }\n  if (command === 'init') return initProject();\n  if (command === 'update') return updateProject();\n  if (command === 'check') return checkProject();\n  printUsage();\n}\n","#!/usr/bin/env node\nimport { runCli } from './cli/index';\n\nrunCli(process.argv.slice(2)).catch((error) => {\n  console.error(error instanceof Error ? error.message : error);\n  process.exit(1);\n});\n"],"mappings":";;;;;;;;;AAAA;AAAA,EACE,MAAQ;AAAA,EACR,SAAW;AAAA,EACX,SAAW;AAAA,EACX,MAAQ;AAAA,EACR,YAAc;AAAA,IACZ,MAAQ;AAAA,IACR,KAAO;AAAA,EACT;AAAA,EACA,UAAY;AAAA,EACZ,MAAQ;AAAA,IACN,KAAO;AAAA,EACT;AAAA,EACA,MAAQ;AAAA,EACR,OAAS;AAAA,EACT,SAAW;AAAA,IACT,KAAK;AAAA,MACH,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,aAAa;AAAA,MACX,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,UAAU;AAAA,MACR,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,aAAa;AAAA,MACX,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,IACA,WAAW;AAAA,MACT,OAAS;AAAA,MACT,SAAW;AAAA,IACb;AAAA,EACF;AAAA,EACA,KAAO;AAAA,IACL,yBAAyB;AAAA,EAC3B;AAAA,EACA,eAAiB;AAAA,IACf,QAAU;AAAA,IACV,YAAc;AAAA,EAChB;AAAA,EACA,OAAS,CAAC,QAAQ,WAAW;AAAA,EAC7B,SAAW;AAAA,IACT,OAAS;AAAA,IACT,MAAQ;AAAA,IACR,WAAa;AAAA,IACb,KAAO;AAAA,EACT;AAAA,EACA,kBAAoB;AAAA,IAClB,MAAQ;AAAA,IACR,aAAa;AAAA,IACb,OAAS;AAAA,IACT,aAAa;AAAA,EACf;AAAA,EACA,cAAgB;AAAA,IACd,MAAQ;AAAA,EACV;AAAA,EACA,iBAAmB;AAAA,IACjB,eAAe;AAAA,IACf,gBAAgB;AAAA,IAChB,oBAAoB;AAAA,IACpB,MAAQ;AAAA,IACR,YAAc;AAAA,EAChB;AACF;;;ACnEA,OAAOA,SAAQ;AACf,OAAOC,WAAU;AACjB,SAAS,qBAAqB;;;ACF1B,OAAO,QAAQ;AACf,OAAO,UAAU;AAEV,IAAM,kBAAkB;AACxB,IAAM,cAAc;AACpB,IAAM,YAAY;AAEtB,SAAS,UAAU,UAAkB;AAC1C,KAAG,UAAU,KAAK,QAAQ,QAAQ,GAAG,EAAE,WAAW,KAAK,CAAC;AAC1D;AAEO,SAAS,mBAAmB,UAAkB,SAAiB;AACpE,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,kBAAkB,SAAS,MAAM;AAC9D;AAEO,SAAS,cAAc,UAAkB,SAAiB;AAC/D,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,SAAS,MAAM;AAC5C;AAEO,SAAS,OAAO,UAAkB;AACvC,SAAO,GAAG,WAAW,QAAQ;AAC/B;AAEW,SAAS,KAAK,UAAkB;AACrC,SAAO,GAAG,aAAa,UAAU,MAAM;AACzC;AAEG,SAAS,oBAAoB,UAAkB,MAAc;AAC9D,QAAM,QAAQ,SAAS,QAAQ,WAAW;AAC1C,QAAM,MAAM,SAAS,QAAQ,SAAS;AACtC,MAAI,UAAU,MAAM,QAAQ,MAAM,OAAO,MAAO,QAAO;AACvD,QAAM,SAAS,SAAS,MAAM,OAAO,MAAM,UAAU,MAAM;AAC3D,QAAM,cAAc,KAAK,QAAQ,WAAW;AAC5C,QAAM,YAAY,KAAK,QAAQ,SAAS;AACxC,MAAI,gBAAgB,MAAM,cAAc,MAAM,aAAa,YAAa,QAAO;AACnF,SAAO,KAAK,MAAM,GAAG,WAAW,IAAI,SAAS,KAAK,MAAM,YAAY,UAAU,MAAM;AACtF;AAEO,SAAS,WAAW,UAAkB;AAC3C,KAAG,OAAO,UAAU,EAAE,OAAO,MAAM,WAAW,KAAK,CAAC;AACtD;;;ACtCO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,0BAA0B;AACxC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,sBAAsB;AACpC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,4BAA4B;AAC1C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA6FP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOX,SAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAMX;AAEO,SAAS,0CAA0C;AACxD,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA4EP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAwDX,SAAS;AAAA;AAEX;AAEO,SAAS,qBAAqB;AACnC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAqET;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAkBT;AAEO,SAAS,8BAA8B;AAC5C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,uCAAuC;AACrD,SAAO;AAAA;AAAA,EAEP,WAAW;AAAA;AAAA;AAAA;AAAA,EAIX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEO,SAAS,wCAAwC;AACtD,SAAO;AAAA;AAAA,EAEP,WAAW;AAAA;AAAA;AAAA;AAAA,EAIX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEW,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAET;AAEO,SAAS,uBAAuB;AACrC,SAAO,8BAA8B;AACvC;AAEG,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,6BAA6B;AAC3C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEW,SAAS,YAAY,MAAyC,kBAAkB,IAAI;AACzF,SAAO,wBAAwB,MAAM,eAAe;AACtD;;;AFldJ,IAAM,cAAc,QAAQ,IAAI;AAChC,IAAM,WAAWC,MAAK,QAAQ,cAAc,YAAY,GAAG,CAAC;AAC5D,IAAM,sBAAsB;AAAA,EAC1BA,MAAK,KAAK,UAAU,8BAA8B;AAAA,EAClDA,MAAK,QAAQ,UAAU,MAAM,MAAM,MAAM,8BAA8B;AACzE;AACA,IAAM,cAAc;AAEpB,IAAM,UAAU;AAAA,EACd,CAAC,iCAAiC,kBAAkB;AAAA,EACpD,CAAC,sCAAsC,sBAAsB;AAAA,EAC7D,CAAC,uCAAuC,uBAAuB;AAAA,EAC/D,CAAC,iDAAiD,sBAAsB;AAAA,EACxE,CAAC,kDAAkD,4BAA4B;AAAA,EAC/E,CAAC,8CAA8C,qBAAqB;AAAA,EACpE,CAAC,kDAAkD,qBAAqB;AAAA,EACxE,CAAC,gDAAgD,2BAA2B;AAAA,EAC5E,CAAC,iDAAiD,4BAA4B;AAAA,EAC9E,CAAC,oCAAoC,qBAAqB;AAAA,EAC1D,CAAC,0CAA0C,yBAAyB;AAAA,EACpE,CAAC,iEAAiE,uCAAuC;AAAA,EACzG,CAAC,kCAAkC,mBAAmB;AAAA,EACtD,CAAC,uDAAuD,0BAA0B;AAAA,EAClF,CAAC,kCAAkC,oCAAoC;AAAA,EACvE,CAAC,mCAAmC,qCAAqC;AAAA,EACzE,CAAC,gCAAgC,qBAAqB;AAAA,EACtD,CAAC,0BAA0B,oBAAoB;AACjD;AAEA,IAAM,oBAAoB;AAAA,EACxB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,SAAS,WAAW,UAAkB;AACpC,UAAQ,IAAI,KAAKA,MAAK,SAAS,aAAa,QAAQ,CAAC,EAAE;AACzD;AAEA,SAAS,WAAW,UAAkB;AACpC,UAAQ,IAAI,KAAKA,MAAK,SAAS,aAAa,QAAQ,CAAC,EAAE;AACzD;AAEA,SAAS,WAAW,UAAkB;AACpC,UAAQ,IAAI,KAAKA,MAAK,SAAS,aAAa,QAAQ,CAAC,EAAE;AACzD;AAEA,SAAS,sBAAsB;AAC7B,aAAW,QAAQ,oBAAoB;AACrC,UAAM,WAAWA,MAAK,KAAK,aAAa,IAAI;AAC5C,UAAM,UAAU,OAAO,QAAQ;AAC/B,UAAM,UAAU,UAAU,KAAK,QAAQ,IAAI;AAC3C,UAAM,OAAO,YAAY,MAAM,OAAO;AACtC,QAAI,CAAC,WAAW,YAAY,MAAM;AAChC,oBAAc,UAAU,IAAI;AAC5B,UAAI,CAAC,SAAS;AACZ,mBAAW,QAAQ;AAAA,MACrB,OAAO;AACL,mBAAW,QAAQ;AAAA,MACrB;AAAA,IACF;AAAA,EACF;AACF;AAEA,SAAS,uBAAuB;AAC9B,QAAM,WAAWA,MAAK,KAAK,aAAa,WAAW;AACnD,MAAI;AACF,UAAM,aAAa,oBAAoB,KAAK,CAAC,cAAcC,IAAG,WAAW,SAAS,CAAC;AACnF,QAAI,CAAC,YAAY;AACf,YAAM,IAAI,MAAM,wDAAwD,oBAAoB,KAAK,IAAI,CAAC,EAAE;AAAA,IAC1G;AACA,eAAW,QAAQ;AACnB,IAAAA,IAAG,UAAU,UAAU,EAAE,WAAW,KAAK,CAAC;AAC1C,eAAW,QAAQ;AACnB,eAAW,SAASA,IAAG,YAAY,YAAY,EAAE,eAAe,KAAK,CAAC,GAAG;AACvE,YAAM,cAAcD,MAAK,KAAK,YAAY,MAAM,IAAI;AACpD,YAAM,cAAcA,MAAK,KAAK,UAAU,MAAM,IAAI;AAClD,UAAI,MAAM,YAAY,GAAG;AACvB,QAAAC,IAAG,OAAO,aAAa,aAAa,EAAE,WAAW,KAAK,CAAC;AACvD,gBAAQ,IAAI,KAAKD,MAAK,SAAS,aAAa,WAAW,CAAC,GAAG;AAC3D;AAAA,MACF;AACA,MAAAC,IAAG,aAAa,aAAa,WAAW;AACxC,cAAQ,IAAI,KAAKD,MAAK,SAAS,aAAa,WAAW,CAAC,EAAE;AAAA,IAC5D;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,KAAK,0BAA0B,WAAW,KAAK,iBAAiB,QAAQ,MAAM,UAAU,OAAO,KAAK,CAAC,EAAE;AAAA,EACjH;AACF;AAEA,eAAsB,cAAc;AAClC,aAAW,CAAC,KAAK,OAAO,KAAK,SAAS;AACpC,UAAM,WAAWA,MAAK,KAAK,aAAa,GAAG;AAC3C,QAAI,CAAC,OAAO,QAAQ,GAAG;AACrB,yBAAmB,UAAU,QAAQ,CAAC;AACtC,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF;AAEA,sBAAoB;AACpB,uBAAqB;AACrB,UAAQ,IAAI,kDAAkD;AAChE;AAEA,eAAsB,gBAAgB;AACpC,aAAW,OAAO,mBAAmB;AACnC,UAAM,WAAWA,MAAK,KAAK,aAAa,GAAG;AAC3C,QAAI,OAAO,QAAQ,GAAG;AACpB,iBAAW,QAAQ;AACnB,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF;AAEA,aAAW,CAAC,KAAK,OAAO,KAAK,SAAS;AACpC,UAAM,WAAWA,MAAK,KAAK,aAAa,GAAG;AAC3C,UAAM,OAAO,0DAA0D,QAAQ;AAC/E,QAAI,CAAC,OAAO,QAAQ,GAAG;AACrB,yBAAmB,UAAU,QAAQ,CAAC;AACtC,iBAAW,QAAQ;AACnB;AAAA,IACF;AAEA,QAAI,QAAQ,iCAAiC;AAC3C,YAAME,WAAU,KAAK,QAAQ;AAC7B,UAAIA,aAAY,MAAM;AACpB,sBAAc,UAAU,IAAI;AAC5B,mBAAW,QAAQ;AAAA,MACrB;AACA;AAAA,IACF;AAEA,UAAM,UAAU,KAAK,QAAQ;AAC7B,UAAM,UAAU,oBAAoB,SAAS,IAAI;AACjD,QAAI,YAAY,SAAS;AACvB,oBAAc,UAAU,OAAO;AAC/B,iBAAW,QAAQ;AAAA,IACrB;AAAA,EACF;AAEA,sBAAoB;AACpB,uBAAqB;AACrB,UAAQ,IAAI,0DAA0D;AACxE;AAEA,eAAsB,eAAe;AACnC,QAAM,gBAAgB,QAAQ,OAAO,CAAC,CAAC,GAAG,MAAM,CAAC,OAAOF,MAAK,KAAK,aAAa,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,GAAG,MAAM,GAAG;AACxG,QAAM,aAAa,mBAAmB,OAAO,CAAC,SAAS;AACrD,UAAM,WAAWA,MAAK,KAAK,aAAa,IAAI;AAC5C,QAAI,CAAC,OAAO,QAAQ,GAAG;AACrB,aAAO;AAAA,IACT;AACA,WAAO,yBAAyB,KAAK,QAAQ,CAAC,EAAE,SAAS;AAAA,EAC3D,CAAC;AACD,QAAM,WAAWA,MAAK,KAAK,aAAa,WAAW;AACnD,QAAM,eAAe,OAAOA,MAAK,KAAK,UAAU,UAAU,CAAC,IAAI,CAAC,IAAI,CAACA,MAAK,KAAK,aAAa,UAAU,CAAC;AACvG,QAAM,UAAU,CAAC,GAAG,eAAe,GAAG,YAAY,GAAG,YAAY;AAEjE,MAAI,QAAQ,SAAS,GAAG;AACtB,YAAQ,MAAM,0BAA0B;AACxC,eAAW,OAAO,SAAS;AACzB,cAAQ,MAAM,OAAO,GAAG;AAAA,IAC1B;AACA,YAAQ,WAAW;AACnB;AAAA,EACF;AAEA,UAAQ,IAAI,gCAAgC;AAC9C;;;AGzNA,SAAS,aAAa;AACpB,UAAQ,IAAI,2EAA2E;AACvF,UAAQ,IAAI,8DAA8D;AAC1E,UAAQ,IAAI,iEAAiE;AAC/E;AAEA,eAAsB,OAAO,MAAgB;AAC3C,QAAM,UAAU,KAAK,CAAC,KAAK;AAC3B,MAAI,YAAY,YAAY,YAAY,QAAQ,YAAY,QAAQ;AAClE,eAAW;AACX;AAAA,EACF;AACA,MAAI,YAAY,eAAe,YAAY,MAAM;AAC/C,YAAQ,IAAI,gBAAY,OAAO;AAC/B;AAAA,EACF;AACA,MAAI,YAAY,OAAQ,QAAO,YAAY;AAC3C,MAAI,YAAY,SAAU,QAAO,cAAc;AAC/C,MAAI,YAAY,QAAS,QAAO,aAAa;AAC7C,aAAW;AACb;;;ACrBA,OAAO,QAAQ,KAAK,MAAM,CAAC,CAAC,EAAE,MAAM,CAAC,UAAU;AAC7C,UAAQ,MAAM,iBAAiB,QAAQ,MAAM,UAAU,KAAK;AAC5D,UAAQ,KAAK,CAAC;AAChB,CAAC;","names":["fs","path","path","fs","current"]}

package/dist/index.d.ts

@@ -1,10 +1,10 @@
-import { A as AuthKitConfig, c as AuthUser, M as ManagedEnvFile, d as ManagedEnvVariableDefinition, e as AuthIndexHtmlOptions, P as PrismaSchemaModelDefinition } from './types-DqVXdUge.js';
-export { a as AuthBusinessAdapter, f as AuthDatabaseContract, g as AuthDatabaseFieldRequirement, h as AuthDatabaseTableRequirement, b as AuthPersistenceAdapter, i as AuthRuntimeContext, C as CasdoorUserInfo, O as OAuthTokens, j as PrismaSchemaFieldDefinition } from './types-DqVXdUge.js';
+import { A as AuthKitConfig, c as AuthUser, M as ManagedEnvFile, d as ManagedEnvVariableDefinition, e as AuthIndexHtmlOptions, P as PrismaSchemaModelDefinition } from './types-BJv6j3NZ.js';
+export { a as AuthBusinessAdapter, f as AuthDatabaseContract, g as AuthDatabaseFieldRequirement, h as AuthDatabaseTableRequirement, b as AuthPersistenceAdapter, i as AuthRuntimeContext, C as CasdoorUserInfo, O as OAuthTokens, j as PrismaSchemaFieldDefinition } from './types-BJv6j3NZ.js';
 import { JWTDecodeParams, JWT, JWTEncodeParams } from 'next-auth/jwt';
 export { createAuthorizeEntryResponse, createCasdoorApiProxyHandler, createCasdoorCommerceProxyHandler, createCasdoorPageProxyHandler, createLoginEntryResponse, createSignupEntryResponse, decodeCasdoorAccessToken, exchangeCasdoorOAuthToken, exchangeCodeForToken, fetchCasdoorUserInfo, getCasdoorAuthorizeUrl, getCasdoorConfig, getCasdoorTokenUrl, getCasdoorUserInfoUrl } from './casdoor/index.js';
-export { C as CallbackHandlerOptions, c as createCallbackHandler, a as createCallbackResponse } from './callback-BTzHQK_r.js';
+export { C as CallbackHandlerOptions, c as createCallbackHandler, a as createCallbackResponse } from './callback-rEWxVGyL.js';
 export { createAuthorizeRouteHandler, createLoginRouteHandler, createLogoutHandler, createSignupRouteHandler } from './next/index.js';
-export { A as AuthSession, a as AuthSessionUser, b as AuthTokenPayload, N as NextAuthRouteOptions, c as createNextAuthOptions, d as createNextAuthRouteHandler } from './options-JUwZSXu2.js';
+export { A as AuthSession, a as AuthSessionUser, b as AuthTokenPayload, N as NextAuthRouteOptions, c as createNextAuthOptions, d as createNextAuthRouteHandler } from './options-D2YQdRWu.js';
 export { f as BillingActionExecutor, s as BillingActionKind, B as BillingActionPayload, d as BillingApiClient, c as BillingCatalogConfig, t as BillingConversionRule, r as BillingCoreContextValue, u as BillingCreditsContextValue, m as BillingCreditsState, g as BillingDefaults, n as BillingEntitlementState, v as BillingInterval, a as BillingItem, w as BillingItemKind, e as BillingLoaders, k as BillingOrderHistoryItem, x as BillingPaymentFinishedHandler, y as BillingPaymentFinishedRouteOptions, l as BillingPaymentHistoryItem, z as BillingPaymentSuccessContext, A as BillingPaymentSuccessHandler, C as BillingPaymentSuccessHandlerResult, D as BillingPaymentSuccessRouteOptions, E as BillingProductContextValue, F as BillingProductPurchaseConfig, q as BillingProductSnapshot, j as BillingProductState, p as BillingPurchaseStatus, b as BillingRuntimeConfig, o as BillingStatusState, G as BillingSubscriptionContextValue, i as BillingSubscriptionHistoryItem, H as BillingSubscriptionPurchaseConfig, h as BillingSubscriptionState } from './types-DwThfdu-.js';
 export { buildBillingActionPayload, createBillingPaymentFinishedResponse, createBillingPaymentFinishedRouteHandler, createBillingPaymentSuccessResponse, createBillingPaymentSuccessRouteHandler, deriveBillingCreditsState, deriveBillingEntitlements, normalizeBillingCatalogConfig, normalizeBillingPurchaseStatus, normalizeBillingRuntimeConfig, resolveBillingInterval, resolveBillingItem, resolveBillingProductSnapshot, resolveBillingSubscriptionProduct } from './billing/index.js';
 import 'next/server';

package/dist/index.js

@@ -8,7 +8,7 @@ import {
   getMissingManagedEnvKeys,
   readManagedEnvValue,
   sanitizeExistingEnvContent
-} from "./chunk-CULH4UKG.js";
+} from "./chunk-CLABP4I6.js";
 import {
   createBillingPaymentFinishedResponse,
   createBillingPaymentFinishedRouteHandler,
@@ -27,7 +27,7 @@ import {
   createNextAuthOptions,
   createNextAuthRouteHandler,
   createSignupRouteHandler
-} from "./chunk-QYGC4WNG.js";
+} from "./chunk-GLK4IW22.js";
 import {
   AUTH_INDEX_HTML,
   AUTH_REDIRECT_COOKIE_NAME,

package/dist/next/index.d.ts

@@ -1,8 +1,8 @@
 import * as next_server from 'next/server';
 import { NextRequest, NextResponse } from 'next/server';
-import { A as AuthKitConfig } from '../types-DqVXdUge.js';
-export { C as CallbackHandlerOptions, c as createCallbackHandler, a as createCallbackResponse } from '../callback-BTzHQK_r.js';
-export { A as AuthSession, a as AuthSessionUser, b as AuthTokenPayload, N as NextAuthRouteOptions, c as createNextAuthOptions, d as createNextAuthRouteHandler } from '../options-JUwZSXu2.js';
+import { A as AuthKitConfig } from '../types-BJv6j3NZ.js';
+export { C as CallbackHandlerOptions, c as createCallbackHandler, a as createCallbackResponse } from '../callback-rEWxVGyL.js';
+export { A as AuthSession, a as AuthSessionUser, b as AuthTokenPayload, N as NextAuthRouteOptions, c as createNextAuthOptions, d as createNextAuthRouteHandler } from '../options-D2YQdRWu.js';
 import 'next-auth';
 import 'next-auth/jwt';
 

package/dist/next/index.js

@@ -5,7 +5,7 @@ import {
   createNextAuthOptions,
   createNextAuthRouteHandler,
   createSignupRouteHandler
-} from "../chunk-QYGC4WNG.js";
+} from "../chunk-GLK4IW22.js";
 import {
   createCallbackHandler,
   createCallbackResponse

package/dist/{options-JUwZSXu2.d.ts → options-D2YQdRWu.d.ts}

@@ -1,6 +1,6 @@
 import { Session, NextAuthOptions } from 'next-auth';
 import { JWT } from 'next-auth/jwt';
-import { A as AuthKitConfig, a as AuthBusinessAdapter, b as AuthPersistenceAdapter } from './types-DqVXdUge.js';
+import { A as AuthKitConfig, a as AuthBusinessAdapter, b as AuthPersistenceAdapter } from './types-BJv6j3NZ.js';
 
 interface NextAuthRouteOptions {
     config: AuthKitConfig;

package/dist/react/index.d.ts

@@ -3,11 +3,11 @@ import { ReactNode } from 'react';
 import { Session } from 'next-auth';
 export { Session } from 'next-auth';
 import { useSession } from 'next-auth/react';
-import { A as AuthSession } from '../options-JUwZSXu2.js';
-export { a as AuthSessionUser, b as AuthTokenPayload } from '../options-JUwZSXu2.js';
+import { A as AuthSession } from '../options-D2YQdRWu.js';
+export { a as AuthSessionUser, b as AuthTokenPayload } from '../options-D2YQdRWu.js';
 import { B as BillingActionPayload, a as BillingItem, b as BillingRuntimeConfig, c as BillingCatalogConfig, d as BillingApiClient, e as BillingLoaders, f as BillingActionExecutor, g as BillingDefaults, h as BillingSubscriptionState, i as BillingSubscriptionHistoryItem, j as BillingProductState, k as BillingOrderHistoryItem, l as BillingPaymentHistoryItem, m as BillingCreditsState, n as BillingEntitlementState, o as BillingStatusState, p as BillingPurchaseStatus, q as BillingProductSnapshot, r as BillingCoreContextValue } from '../types-DwThfdu-.js';
 import 'next-auth/jwt';
-import '../types-DqVXdUge.js';
+import '../types-BJv6j3NZ.js';
 
 declare function AuthProvider({ children, session, }: {
     children: ReactNode;

package/dist/skills/casdoor-next-auth-kit/SKILL.md

@@ -92,11 +92,15 @@ npx @foldspace-fe/casdoor-next-auth-kit@latest check
 - `/login/oauth/authorize` — 同源登录授权壳，宿主项目渲染 Casdoor 的登录表单界面
 - `/signup/oauth/authorize` — 同源注册授权壳，宿主项目渲染 Casdoor 的注册表单界面
 - `/callback` — OAuth 回调路由，处理 Casdoor 认证成功后的回调
-- `/logout` — 注销路由，清除会话并跳转
+- `/callback/error` — 回调错误提示页，默认以视口居中、小尺寸卡片呈现错误信息，包含明显的错误状态视觉锚点，并提供“清空当前域 Cookie”按钮，帮助用户清理残留认证 cookie 后重新登录
+- `/logout` — 注销路由，优先用 `Clear-Site-Data: "cookies"` 清空当前域 cookie，再补一轮 `Set-Cookie` 删除兜底，并跳转到首页或 `AuthKitConfig.logoutRedirectPath`；如果目标路径和当前页相同，则按刷新处理
 - `/auth/api/*` — Casdoor API 代理，所有个人操作的 API 请求通过此路径转发
 
 入口路由（login/signup）负责将用户引导至授权壳，授权壳在同源 iframe 或内嵌组件中渲染 Casdoor 界面，避免用户感知到离开宿主应用。
 
+如果宿主希望注销后回到自定义配置页，可以在 `AuthKitConfig` 中设置 `logoutRedirectPath`，默认值为 `/`。
+若想通过环境变量控制默认值，可设置 `NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH=/` 或其他同源路径。
+
 ## 宿主工程 `proxy.ts` 配置要求
 
 `proxy.ts` 是宿主工程的 Next.js middleware（通常放在项目根目录，在 `next.config.ts` 中通过 `middleware` 字段指向），不属于 `@foldspace-fe/casdoor-next-auth-kit` 的受管文件。它的核心职责是**认证守卫**——拦截未登录用户对业务页面的访问，将其重定向到登录页；同时放行所有公开路径和认证流程路径。
@@ -404,6 +408,8 @@ Billing 支付成功后，Casdoor 会回跳到宿主站内的两个固定回调
 
 默认生成的 billing handler 文件必须保持“拿来就能编译”，文件里如果没有业务逻辑，也要保留可运行的空实现和明确日志，不允许生成只写注释或只留导入的半成品。
 
+默认生成的 callback error page 也必须保持可编译，并在错误提示外额外提供本地清 cookie 按钮；按钮逻辑必须只在浏览器端执行，不能依赖服务端接口。
+
 `app/(auth-kit)/auth-config.ts` 必须显式导出 `authKitConfig`、`adapter`、`persistence`、`paymentSuccessHandler` 和 `paymentFinishedHandler`，route 文件必须能直接从这个文件拿到所需配置和 handler，不要只保留局部变量让 route 间接取值。
 
 billing 默认就是受管内容，CLI 必须同时生成 `lib/billing/payment-success.ts` 和 `lib/billing/payment-finished.ts`，`auth-config.ts` 直接导入这两个默认文件，不要要求宿主手工创建 `@/lib/billing/*`。

package/dist/{types-DqVXdUge.d.ts → types-BJv6j3NZ.d.ts}

@@ -58,6 +58,7 @@ interface AuthPersistenceAdapter {
 interface AuthKitConfig {
     appUrl?: string;
     nextauthSecret: string;
+    logoutRedirectPath?: string;
     casdoor: {
         serverUrl: string;
         clientId: string;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@foldspace-fe/casdoor-next-auth-kit",
-  "version": "0.1.13",
+  "version": "0.1.15",
   "private": false,
   "type": "module",
   "repository": {

package/dist/chunk-CULH4UKG.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/core/env.ts","../src/prisma/schema-template.ts"],"sourcesContent":["import type { ManagedEnvFile, ManagedEnvVariableDefinition } from '../types';\n\nexport const AUTH_KIT_ENV_FILES: ManagedEnvFile[] = ['.env', '.env.local', '.env.production', '.env.example'];\n\nexport const AUTH_KIT_ENV_VARIABLES: ManagedEnvVariableDefinition[] = [\n  {\n    key: 'APP_URL',\n    description: '站点对外公开地址',\n    example: 'https://your-domain.com',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_URL',\n    description: 'NextAuth 回调地址',\n    example: 'http://localhost:5177',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_SECRET',\n    description: 'NextAuth JWT secret',\n    example: 'replace-with-a-random-secret',\n    local: 'replace-with-a-random-secret',\n    production: 'replace-with-a-random-secret',\n  },\n  {\n    key: 'GLOBAL_ADMIN_EMAILS',\n    description: '全局管理员邮箱，逗号分隔',\n    example: 'admin@example.com',\n    local: 'admin@example.com',\n    production: 'admin@example.com',\n  },\n  {\n    key: 'AUTH_DEBUG',\n    description: '是否开启认证调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SERVER_URL',\n    description: 'Casdoor 服务地址',\n    example: 'https://auth.example.com',\n    local: 'https://auth.example.com',\n    production: 'https://auth.example.com',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_CLIENT_ID',\n    description: 'Casdoor client id',\n    example: 'your-casdoor-client-id',\n    local: 'your-casdoor-client-id',\n    production: 'your-casdoor-client-id',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_APP_NAME',\n    description: 'Casdoor app name',\n    example: 'your-app-name',\n    local: 'your-app-name',\n    production: 'your-app-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME',\n    description: 'Casdoor organization name',\n    example: 'your-org-name',\n    local: 'your-org-name',\n    production: 'your-org-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_REDIRECT_PATH',\n    description: 'Casdoor OAuth 回调路径',\n    example: '/callback',\n    local: '/callback',\n    production: '/callback',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SIGNIN_PATH',\n    description: 'Casdoor authorize 路径',\n    example: '/login/oauth/authorize',\n    local: '/login/oauth/authorize',\n    production: '/login/oauth/authorize',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_STATIC_ORIGIN',\n    description: 'Casdoor 静态资源 origin',\n    example: 'https://casdoor-static.foldspace.cn',\n    local: 'https://casdoor-static.foldspace.cn',\n    production: 'https://casdoor-static.foldspace.cn',\n  },\n  {\n    key: 'CASDOOR_CLIENT_SECRET',\n    description: 'Casdoor client secret',\n    example: 'your-casdoor-client-secret',\n    local: 'your-casdoor-client-secret',\n    production: 'your-casdoor-client-secret',\n  },\n  {\n    key: 'BILLING_PAYMENT_SUCCESS_DEBUG',\n    description: '是否打印 payment-success 调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n];\n\nfunction stringifyEnvValue(value: string): string {\n  if (value === '') {\n    return '\"\"';\n  }\n\n  if (/^[A-Za-z0-9_./:-]+$/.test(value)) {\n    return value;\n  }\n\n  return JSON.stringify(value);\n}\n\nfunction stripQuotes(value: string): string {\n  const trimmed = value.trim();\n  if (\n    (trimmed.startsWith('\"') && trimmed.endsWith('\"')) ||\n    (trimmed.startsWith(\"'\") && trimmed.endsWith(\"'\"))\n  ) {\n    return trimmed.slice(1, -1);\n  }\n\n  return trimmed;\n}\n\nfunction parseEnvKeys(content: string): Set<string> {\n  const keys = new Set<string>();\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const key = trimmed.slice(0, separatorIndex).trim();\n    if (key) {\n      keys.add(key);\n    }\n  }\n  return keys;\n}\n\nexport function readManagedEnvValue(content: string, key: string): string | null {\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const currentKey = trimmed.slice(0, separatorIndex).trim();\n    if (currentKey !== key) {\n      continue;\n    }\n\n    const rawValue = trimmed.slice(separatorIndex + 1).trim();\n    return stripQuotes(rawValue);\n  }\n\n  return null;\n}\n\nexport function getManagedEnvValue(definition: ManagedEnvVariableDefinition, file: ManagedEnvFile): string {\n  if (file === '.env.example') {\n    return definition.example;\n  }\n  if (file === '.env.production') {\n    return definition.production ?? definition.example;\n  }\n  if (file === '.env.local') {\n    return definition.local ?? definition.example;\n  }\n  return definition.base ?? definition.local ?? definition.production ?? definition.example;\n}\n\nexport function buildManagedEnvTemplate(file: ManagedEnvFile, existingContent = ''): string {\n  const existingKeys = parseEnvKeys(existingContent);\n  const lines: string[] = existingContent.trimEnd() ? existingContent.trimEnd().split(/\\r?\\n/) : [];\n  const missing = AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key));\n\n  if (missing.length === 0 && existingContent) {\n    return existingContent;\n  }\n\n  if (lines.length > 0) {\n    lines.push('');\n  }\n\n  lines.push(`# Casdoor Next Auth Kit managed values for ${file}`);\n  for (const definition of missing) {\n    const value = getManagedEnvValue(definition, file);\n    lines.push(`# ${definition.description}`);\n    lines.push(`${definition.key}=${stringifyEnvValue(value)}`);\n    lines.push('');\n  }\n\n  while (lines.length > 0 && lines[lines.length - 1] === '') {\n    lines.pop();\n  }\n\n  return `${lines.join('\\n')}\\n`;\n}\n\nexport function getMissingManagedEnvKeys(content: string): string[] {\n  const existingKeys = parseEnvKeys(content);\n  return AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key)).map(\n    (definition) => definition.key,\n  );\n}\n\nexport function sanitizeExistingEnvContent(content: string): string {\n  return stripQuotes(content);\n}\n","import type { PrismaSchemaFieldDefinition, PrismaSchemaModelDefinition } from '../types';\n\nexport const AUTH_PRISMA_SCHEMA_MODELS: PrismaSchemaModelDefinition[] = [\n  {\n    name: 'AuthUser',\n    description: 'Shared authentication user record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'email', type: 'String?', attributes: ['@unique'] },\n      { name: 'name', type: 'String?' },\n      { name: 'image', type: 'String?' },\n      { name: 'isAdmin', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'tokenBalance', type: 'Int', attributes: ['@default(0)'] },\n      { name: 'isVip', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([email])'],\n  },\n  {\n    name: 'AuthMembership',\n    description: 'Subscription membership snapshot',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String', attributes: ['@unique'] },\n      { name: 'plan', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthOrder',\n    description: 'Commerce order record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'kind', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'currency', type: 'String', attributes: ['@default(\"CNY\")'] },\n      { name: 'payload', type: 'Json?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthSubscription',\n    description: 'Commerce subscription record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'productId', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'interval', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([productId])'],\n  },\n  {\n    name: 'AuthInvoice',\n    description: 'Commerce invoice record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'orderId', type: 'String?' },\n      { name: 'invoiceNo', type: 'String', attributes: ['@unique'] },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([orderId])'],\n  },\n];\n\nfunction renderField(field: PrismaSchemaFieldDefinition): string {\n  const attributes = field.attributes?.length ? ` ${field.attributes.join(' ')}` : '';\n  return `  ${field.name} ${field.type}${attributes}`;\n}\n\nfunction renderModel(model: PrismaSchemaModelDefinition): string {\n  const lines = [\n    `/// ${model.description}`,\n    `model ${model.name} {`,\n    ...model.fields.map(renderField),\n  ];\n\n  if (model.blockAttributes?.length) {\n    lines.push(...model.blockAttributes.map((attribute) => `  ${attribute}`));\n  }\n\n  lines.push('}');\n  return lines.join('\\n');\n}\n\nexport function buildAuthPrismaSchemaTemplate(models: PrismaSchemaModelDefinition[] = AUTH_PRISMA_SCHEMA_MODELS): string {\n  return [\n    '// generated by @foldspace-fe/casdoor-next-auth-kit',\n    '// merge these models into the host Prisma schema if you want a dedicated auth module',\n    '',\n    ...models.map(renderModel),\n  ].join('\\n\\n');\n}\n"],"mappings":";AAEO,IAAM,qBAAuC,CAAC,QAAQ,cAAc,mBAAmB,cAAc;AAErG,IAAM,yBAAyD;AAAA,EACpE;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AACF;AAEA,SAAS,kBAAkB,OAAuB;AAChD,MAAI,UAAU,IAAI;AAChB,WAAO;AAAA,EACT;AAEA,MAAI,sBAAsB,KAAK,KAAK,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,SAAO,KAAK,UAAU,KAAK;AAC7B;AAEA,SAAS,YAAY,OAAuB;AAC1C,QAAM,UAAU,MAAM,KAAK;AAC3B,MACG,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,KAC/C,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,GAChD;AACA,WAAO,QAAQ,MAAM,GAAG,EAAE;AAAA,EAC5B;AAEA,SAAO;AACT;AAEA,SAAS,aAAa,SAA8B;AAClD,QAAM,OAAO,oBAAI,IAAY;AAC7B,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,MAAM,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AAClD,QAAI,KAAK;AACP,WAAK,IAAI,GAAG;AAAA,IACd;AAAA,EACF;AACA,SAAO;AACT;AAEO,SAAS,oBAAoB,SAAiB,KAA4B;AAC/E,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,aAAa,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AACzD,QAAI,eAAe,KAAK;AACtB;AAAA,IACF;AAEA,UAAM,WAAW,QAAQ,MAAM,iBAAiB,CAAC,EAAE,KAAK;AACxD,WAAO,YAAY,QAAQ;AAAA,EAC7B;AAEA,SAAO;AACT;AAEO,SAAS,mBAAmB,YAA0C,MAA8B;AACzG,MAAI,SAAS,gBAAgB;AAC3B,WAAO,WAAW;AAAA,EACpB;AACA,MAAI,SAAS,mBAAmB;AAC9B,WAAO,WAAW,cAAc,WAAW;AAAA,EAC7C;AACA,MAAI,SAAS,cAAc;AACzB,WAAO,WAAW,SAAS,WAAW;AAAA,EACxC;AACA,SAAO,WAAW,QAAQ,WAAW,SAAS,WAAW,cAAc,WAAW;AACpF;AAEO,SAAS,wBAAwB,MAAsB,kBAAkB,IAAY;AAC1F,QAAM,eAAe,aAAa,eAAe;AACjD,QAAM,QAAkB,gBAAgB,QAAQ,IAAI,gBAAgB,QAAQ,EAAE,MAAM,OAAO,IAAI,CAAC;AAChG,QAAM,UAAU,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC;AAE/F,MAAI,QAAQ,WAAW,KAAK,iBAAiB;AAC3C,WAAO;AAAA,EACT;AAEA,MAAI,MAAM,SAAS,GAAG;AACpB,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,QAAM,KAAK,8CAA8C,IAAI,EAAE;AAC/D,aAAW,cAAc,SAAS;AAChC,UAAM,QAAQ,mBAAmB,YAAY,IAAI;AACjD,UAAM,KAAK,KAAK,WAAW,WAAW,EAAE;AACxC,UAAM,KAAK,GAAG,WAAW,GAAG,IAAI,kBAAkB,KAAK,CAAC,EAAE;AAC1D,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,SAAO,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,IAAI;AACzD,UAAM,IAAI;AAAA,EACZ;AAEA,SAAO,GAAG,MAAM,KAAK,IAAI,CAAC;AAAA;AAC5B;AAEO,SAAS,yBAAyB,SAA2B;AAClE,QAAM,eAAe,aAAa,OAAO;AACzC,SAAO,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC,EAAE;AAAA,IACtF,CAAC,eAAe,WAAW;AAAA,EAC7B;AACF;AAEO,SAAS,2BAA2B,SAAyB;AAClE,SAAO,YAAY,OAAO;AAC5B;;;AC9NO,IAAM,4BAA2D;AAAA,EACtE;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,gBAAgB,MAAM,OAAO,YAAY,CAAC,aAAa,EAAE;AAAA,MACjE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MAClE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,kBAAkB;AAAA,EACtC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,YAAY,MAAM,UAAU,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,WAAW,MAAM,QAAQ;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,SAAS;AAAA,MACpC,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,SAAS;AAAA,MACnC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,sBAAsB;AAAA,EAC/D;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,UAAU;AAAA,MACnC,EAAE,MAAM,aAAa,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC7D,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,oBAAoB;AAAA,EAC7D;AACF;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,aAAa,MAAM,YAAY,SAAS,IAAI,MAAM,WAAW,KAAK,GAAG,CAAC,KAAK;AACjF,SAAO,KAAK,MAAM,IAAI,IAAI,MAAM,IAAI,GAAG,UAAU;AACnD;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,QAAQ;AAAA,IACZ,OAAO,MAAM,WAAW;AAAA,IACxB,SAAS,MAAM,IAAI;AAAA,IACnB,GAAG,MAAM,OAAO,IAAI,WAAW;AAAA,EACjC;AAEA,MAAI,MAAM,iBAAiB,QAAQ;AACjC,UAAM,KAAK,GAAG,MAAM,gBAAgB,IAAI,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;AAAA,EAC1E;AAEA,QAAM,KAAK,GAAG;AACd,SAAO,MAAM,KAAK,IAAI;AACxB;AAEO,SAAS,8BAA8B,SAAwC,2BAAmC;AACvH,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,IACA,GAAG,OAAO,IAAI,WAAW;AAAA,EAC3B,EAAE,KAAK,MAAM;AACf;","names":[]}

package/dist/chunk-QYGC4WNG.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/next/login.ts","../src/next/signup.ts","../src/next/authorize.ts","../src/next/logout.ts","../src/next/options.ts"],"sourcesContent":["import type { NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { createLoginEntryResponse } from '../casdoor/entry';\n\nexport function createLoginRouteHandler(config: AuthKitConfig) {\n  return async (request: NextRequest) => createLoginEntryResponse(request, config);\n}\n","import type { NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { createSignupEntryResponse } from '../casdoor/entry';\n\nexport function createSignupRouteHandler(config: AuthKitConfig) {\n  return async (request: NextRequest) => createSignupEntryResponse(request, config);\n}\n","import type { NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { createAuthorizeEntryResponse } from '../casdoor/entry';\n\nexport function createAuthorizeRouteHandler(config: AuthKitConfig) {\n  return async (request: NextRequest) => createAuthorizeEntryResponse(request, config);\n}\n","import { NextResponse, type NextRequest } from 'next/server';\nimport type { AuthKitConfig } from '../types';\nimport { isSecureRequest } from '../core/request-security';\nimport { clearAuthRedirectCookie } from '../core/auth-redirect';\nimport { clearPublicOriginCookie } from '../core/public-origin';\nimport { pkceCookiePrefix } from '../core/oauth-state';\n\nfunction getCookieNamesFromHeader(cookieHeader: string | null): string[] {\n  if (!cookieHeader) {\n    return [];\n  }\n\n  return cookieHeader\n    .split(';')\n    .map((part) => part.trim())\n    .filter(Boolean)\n    .map((part) => part.split('=')[0]?.trim())\n    .filter((name): name is string => Boolean(name));\n}\n\nexport function createLogoutHandler(config: AuthKitConfig) {\n  return async function GET(request: NextRequest) {\n    const origin = request.cookies.get('auth_origin')?.value ?? config.appUrl ?? new URL(request.url).origin;\n    const secure = config.cookie?.secure === 'auto' ? isSecureRequest(request, config.appUrl) : Boolean(config.cookie?.secure);\n    const response = NextResponse.redirect(new URL('/', origin));\n    const cookieNames = getCookieNamesFromHeader(request.headers.get('cookie'));\n    const sessionCookiePrefixes = [\n      'next-auth.session-token',\n      '__Secure-next-auth.session-token',\n      'authjs.session-token',\n      '__Secure-authjs.session-token',\n    ];\n    for (const cookieName of cookieNames) {\n      if (sessionCookiePrefixes.some((prefix) => cookieName === prefix || cookieName.startsWith(`${prefix}.`))) {\n        response.cookies.set(cookieName, '', {\n          path: '/',\n          httpOnly: true,\n          sameSite: 'lax',\n          secure,\n          maxAge: 0,\n        });\n      }\n    }\n    response.cookies.delete('oauth_state');\n    response.cookies.delete('auth_origin');\n    clearAuthRedirectCookie(response, secure);\n    clearPublicOriginCookie(response, secure);\n    for (const cookieName of cookieNames) {\n      if (cookieName.startsWith(`${pkceCookiePrefix}.`)) {\n        response.cookies.set(cookieName, '', {\n          path: '/',\n          httpOnly: true,\n          sameSite: 'lax',\n          secure,\n          maxAge: 0,\n        });\n      }\n    }\n    return response;\n  };\n}\n","import NextAuth from 'next-auth';\nimport type { NextAuthOptions, Session } from 'next-auth';\nimport type { JWT } from 'next-auth/jwt';\nimport type { AuthBusinessAdapter, AuthKitConfig, AuthPersistenceAdapter, AuthUser } from '../types';\nimport { normalizeAuthKitConfig } from '../core/config';\nimport { decodeSessionToken, encodeSessionToken } from '../core/session-token';\nimport { isGlobalAdminEmail } from '../core/admin';\n\nexport interface NextAuthRouteOptions {\n  config: AuthKitConfig;\n  adapter?: AuthBusinessAdapter;\n  persistence?: AuthPersistenceAdapter;\n  providers?: NextAuthOptions['providers'];\n}\n\nexport interface AuthTokenPayload extends JWT {\n  id?: string;\n  name?: string;\n  email?: string;\n  picture?: string | null;\n  userId?: string;\n  accessToken?: string;\n  expiresAt?: number;\n  tokenBalance?: number;\n  isVip?: boolean;\n  isAdmin?: boolean;\n}\n\nexport interface AuthSessionUser {\n  id?: string;\n  isAdmin?: boolean;\n  tokenBalance?: number;\n  isVip?: boolean;\n}\n\nexport interface AuthSession extends Session {\n  accessToken?: string;\n  expiresAt?: number;\n  user?: AuthSessionUser & NonNullable<Session['user']>;\n}\n\nfunction resolveAuthUserFromToken(token: AuthTokenPayload, adapter?: AuthBusinessAdapter): AuthUser {\n  const email = typeof token.email === 'string' ? token.email : null;\n  return {\n    id: token.userId || token.sub || token.id || email || 'casdoor-user',\n    name: typeof token.name === 'string' ? token.name : null,\n    email,\n    image: typeof token.picture === 'string' ? token.picture : null,\n    isAdmin: Boolean(token.isAdmin) || Boolean(adapter?.isAdminEmail?.(email)) || isGlobalAdminEmail(email),\n    tokenBalance: Number(token.tokenBalance ?? 2580),\n    isVip: Boolean(token.isVip ?? true),\n  };\n}\n\nexport function createNextAuthOptions(options: NextAuthRouteOptions): NextAuthOptions {\n  const normalized = normalizeAuthKitConfig(options.config);\n\n  return {\n    providers: options.providers ?? [],\n    session: {\n      strategy: 'jwt',\n    },\n    jwt: {\n      encode: encodeSessionToken,\n      decode: decodeSessionToken,\n    },\n    pages: {\n      signIn: '/login',\n      error: '/callback/error',\n    },\n    callbacks: {\n      async jwt({ token, account, profile }) {\n        const typedToken = token as AuthTokenPayload;\n\n        if (account) {\n          typedToken.accessToken = account.access_token;\n          typedToken.expiresAt = account.expires_at ? account.expires_at * 1000 : undefined;\n        }\n\n        if (profile && typeof profile === 'object') {\n          const typedProfile = profile as Partial<AuthUser> & {\n            sub?: string;\n            id?: string;\n            picture?: string;\n          };\n\n          typedToken.userId = typedProfile.id || typedProfile.sub || typedToken.userId;\n          typedToken.name = typedProfile.name || typedToken.name;\n          typedToken.email = typedProfile.email || typedToken.email;\n          typedToken.picture = typedProfile.image || typedProfile.picture || typedToken.picture;\n          typedToken.isAdmin = Boolean(typedProfile.isAdmin ?? typedToken.isAdmin);\n          typedToken.tokenBalance = typedProfile.tokenBalance ?? typedToken.tokenBalance ?? 2580;\n          typedToken.isVip = typedProfile.isVip ?? typedToken.isVip ?? true;\n        }\n\n        return typedToken;\n      },\n      async session({ session, token }) {\n        const typedSession = session as AuthSession;\n        const typedToken = token as AuthTokenPayload;\n        const tokenUserId = typedToken.userId || typedToken.sub || typedToken.id || '';\n        const tokenEmail = typeof typedToken.email === 'string' ? typedToken.email : null;\n        const persistedUser = options.persistence?.findAuthUser\n          ? await options.persistence.findAuthUser({ id: tokenUserId || undefined, email: tokenEmail })\n          : null;\n        const resolvedUser = persistedUser ?? resolveAuthUserFromToken(typedToken, options.adapter);\n\n        if (typedSession.user) {\n          typedSession.user.id = resolvedUser.id;\n          typedSession.user.isAdmin = resolvedUser.isAdmin;\n          typedSession.user.tokenBalance = resolvedUser.tokenBalance;\n          typedSession.user.isVip = resolvedUser.isVip;\n        }\n\n        typedSession.accessToken = typedToken.accessToken;\n        typedSession.expiresAt = typedToken.expiresAt;\n        typedSession.user = {\n          ...(typedSession.user || {}),\n          name: typedSession.user?.name || resolvedUser.name,\n          email: typedSession.user?.email || resolvedUser.email,\n          image: typedSession.user?.image || resolvedUser.image,\n          id: resolvedUser.id,\n          isAdmin: resolvedUser.isAdmin,\n          tokenBalance: resolvedUser.tokenBalance,\n          isVip: resolvedUser.isVip,\n        };\n\n        return typedSession;\n      },\n    },\n    events: {\n      async signOut({ token }) {\n        const typedToken = token as AuthTokenPayload | null;\n        if (!typedToken?.accessToken || !normalized.appUrl) {\n          return;\n        }\n\n        try {\n          await fetch(new URL('/api/casdoor/logout', normalized.appUrl).toString(), {\n            method: 'POST',\n            headers: {\n              Authorization: `Bearer ${typedToken.accessToken}`,\n            },\n          });\n        } catch {\n          // ignored\n        }\n      },\n    },\n    secret: normalized.nextauthSecret,\n  };\n}\n\nexport function createNextAuthRouteHandler(options: NextAuthRouteOptions) {\n  const handler = NextAuth(createNextAuthOptions(options));\n  return {\n    GET: handler,\n    POST: handler,\n  };\n}\n"],"mappings":";;;;;;;;;;;;;;;AAIO,SAAS,wBAAwB,QAAuB;AAC7D,SAAO,OAAO,YAAyB,yBAAyB,SAAS,MAAM;AACjF;;;ACFO,SAAS,yBAAyB,QAAuB;AAC9D,SAAO,OAAO,YAAyB,0BAA0B,SAAS,MAAM;AAClF;;;ACFO,SAAS,4BAA4B,QAAuB;AACjE,SAAO,OAAO,YAAyB,6BAA6B,SAAS,MAAM;AACrF;;;ACNA,SAAS,oBAAsC;AAO/C,SAAS,yBAAyB,cAAuC;AACvE,MAAI,CAAC,cAAc;AACjB,WAAO,CAAC;AAAA,EACV;AAEA,SAAO,aACJ,MAAM,GAAG,EACT,IAAI,CAAC,SAAS,KAAK,KAAK,CAAC,EACzB,OAAO,OAAO,EACd,IAAI,CAAC,SAAS,KAAK,MAAM,GAAG,EAAE,CAAC,GAAG,KAAK,CAAC,EACxC,OAAO,CAAC,SAAyB,QAAQ,IAAI,CAAC;AACnD;AAEO,SAAS,oBAAoB,QAAuB;AACzD,SAAO,eAAe,IAAI,SAAsB;AAC9C,UAAM,SAAS,QAAQ,QAAQ,IAAI,aAAa,GAAG,SAAS,OAAO,UAAU,IAAI,IAAI,QAAQ,GAAG,EAAE;AAClG,UAAM,SAAS,OAAO,QAAQ,WAAW,SAAS,gBAAgB,SAAS,OAAO,MAAM,IAAI,QAAQ,OAAO,QAAQ,MAAM;AACzH,UAAM,WAAW,aAAa,SAAS,IAAI,IAAI,KAAK,MAAM,CAAC;AAC3D,UAAM,cAAc,yBAAyB,QAAQ,QAAQ,IAAI,QAAQ,CAAC;AAC1E,UAAM,wBAAwB;AAAA,MAC5B;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AACA,eAAW,cAAc,aAAa;AACpC,UAAI,sBAAsB,KAAK,CAAC,WAAW,eAAe,UAAU,WAAW,WAAW,GAAG,MAAM,GAAG,CAAC,GAAG;AACxG,iBAAS,QAAQ,IAAI,YAAY,IAAI;AAAA,UACnC,MAAM;AAAA,UACN,UAAU;AAAA,UACV,UAAU;AAAA,UACV;AAAA,UACA,QAAQ;AAAA,QACV,CAAC;AAAA,MACH;AAAA,IACF;AACA,aAAS,QAAQ,OAAO,aAAa;AACrC,aAAS,QAAQ,OAAO,aAAa;AACrC,4BAAwB,UAAU,MAAM;AACxC,4BAAwB,UAAU,MAAM;AACxC,eAAW,cAAc,aAAa;AACpC,UAAI,WAAW,WAAW,GAAG,gBAAgB,GAAG,GAAG;AACjD,iBAAS,QAAQ,IAAI,YAAY,IAAI;AAAA,UACnC,MAAM;AAAA,UACN,UAAU;AAAA,UACV,UAAU;AAAA,UACV;AAAA,UACA,QAAQ;AAAA,QACV,CAAC;AAAA,MACH;AAAA,IACF;AACA,WAAO;AAAA,EACT;AACF;;;AC5DA,OAAO,cAAc;AAyCrB,SAAS,yBAAyB,OAAyB,SAAyC;AAClG,QAAM,QAAQ,OAAO,MAAM,UAAU,WAAW,MAAM,QAAQ;AAC9D,SAAO;AAAA,IACL,IAAI,MAAM,UAAU,MAAM,OAAO,MAAM,MAAM,SAAS;AAAA,IACtD,MAAM,OAAO,MAAM,SAAS,WAAW,MAAM,OAAO;AAAA,IACpD;AAAA,IACA,OAAO,OAAO,MAAM,YAAY,WAAW,MAAM,UAAU;AAAA,IAC3D,SAAS,QAAQ,MAAM,OAAO,KAAK,QAAQ,SAAS,eAAe,KAAK,CAAC,KAAK,mBAAmB,KAAK;AAAA,IACtG,cAAc,OAAO,MAAM,gBAAgB,IAAI;AAAA,IAC/C,OAAO,QAAQ,MAAM,SAAS,IAAI;AAAA,EACpC;AACF;AAEO,SAAS,sBAAsB,SAAgD;AACpF,QAAM,aAAa,uBAAuB,QAAQ,MAAM;AAExD,SAAO;AAAA,IACL,WAAW,QAAQ,aAAa,CAAC;AAAA,IACjC,SAAS;AAAA,MACP,UAAU;AAAA,IACZ;AAAA,IACA,KAAK;AAAA,MACH,QAAQ;AAAA,MACR,QAAQ;AAAA,IACV;AAAA,IACA,OAAO;AAAA,MACL,QAAQ;AAAA,MACR,OAAO;AAAA,IACT;AAAA,IACA,WAAW;AAAA,MACT,MAAM,IAAI,EAAE,OAAO,SAAS,QAAQ,GAAG;AACrC,cAAM,aAAa;AAEnB,YAAI,SAAS;AACX,qBAAW,cAAc,QAAQ;AACjC,qBAAW,YAAY,QAAQ,aAAa,QAAQ,aAAa,MAAO;AAAA,QAC1E;AAEA,YAAI,WAAW,OAAO,YAAY,UAAU;AAC1C,gBAAM,eAAe;AAMrB,qBAAW,SAAS,aAAa,MAAM,aAAa,OAAO,WAAW;AACtE,qBAAW,OAAO,aAAa,QAAQ,WAAW;AAClD,qBAAW,QAAQ,aAAa,SAAS,WAAW;AACpD,qBAAW,UAAU,aAAa,SAAS,aAAa,WAAW,WAAW;AAC9E,qBAAW,UAAU,QAAQ,aAAa,WAAW,WAAW,OAAO;AACvE,qBAAW,eAAe,aAAa,gBAAgB,WAAW,gBAAgB;AAClF,qBAAW,QAAQ,aAAa,SAAS,WAAW,SAAS;AAAA,QAC/D;AAEA,eAAO;AAAA,MACT;AAAA,MACA,MAAM,QAAQ,EAAE,SAAS,MAAM,GAAG;AAChC,cAAM,eAAe;AACrB,cAAM,aAAa;AACnB,cAAM,cAAc,WAAW,UAAU,WAAW,OAAO,WAAW,MAAM;AAC5E,cAAM,aAAa,OAAO,WAAW,UAAU,WAAW,WAAW,QAAQ;AAC7E,cAAM,gBAAgB,QAAQ,aAAa,eACvC,MAAM,QAAQ,YAAY,aAAa,EAAE,IAAI,eAAe,QAAW,OAAO,WAAW,CAAC,IAC1F;AACJ,cAAM,eAAe,iBAAiB,yBAAyB,YAAY,QAAQ,OAAO;AAE1F,YAAI,aAAa,MAAM;AACrB,uBAAa,KAAK,KAAK,aAAa;AACpC,uBAAa,KAAK,UAAU,aAAa;AACzC,uBAAa,KAAK,eAAe,aAAa;AAC9C,uBAAa,KAAK,QAAQ,aAAa;AAAA,QACzC;AAEA,qBAAa,cAAc,WAAW;AACtC,qBAAa,YAAY,WAAW;AACpC,qBAAa,OAAO;AAAA,UAClB,GAAI,aAAa,QAAQ,CAAC;AAAA,UAC1B,MAAM,aAAa,MAAM,QAAQ,aAAa;AAAA,UAC9C,OAAO,aAAa,MAAM,SAAS,aAAa;AAAA,UAChD,OAAO,aAAa,MAAM,SAAS,aAAa;AAAA,UAChD,IAAI,aAAa;AAAA,UACjB,SAAS,aAAa;AAAA,UACtB,cAAc,aAAa;AAAA,UAC3B,OAAO,aAAa;AAAA,QACtB;AAEA,eAAO;AAAA,MACT;AAAA,IACF;AAAA,IACA,QAAQ;AAAA,MACN,MAAM,QAAQ,EAAE,MAAM,GAAG;AACvB,cAAM,aAAa;AACnB,YAAI,CAAC,YAAY,eAAe,CAAC,WAAW,QAAQ;AAClD;AAAA,QACF;AAEA,YAAI;AACF,gBAAM,MAAM,IAAI,IAAI,uBAAuB,WAAW,MAAM,EAAE,SAAS,GAAG;AAAA,YACxE,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,eAAe,UAAU,WAAW,WAAW;AAAA,YACjD;AAAA,UACF,CAAC;AAAA,QACH,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAAA,IACA,QAAQ,WAAW;AAAA,EACrB;AACF;AAEO,SAAS,2BAA2B,SAA+B;AACxE,QAAM,UAAU,SAAS,sBAAsB,OAAO,CAAC;AACvD,SAAO;AAAA,IACL,KAAK;AAAA,IACL,MAAM;AAAA,EACR;AACF;","names":[]}