@foldspace-fe/casdoor-next-auth-kit 0.1.22 → 0.1.24

package/dist/chunk-YHPSOLXM.js

@@ -0,0 +1,904 @@
+// src/prisma/schema-template.ts
+var AUTH_PRISMA_SCHEMA_MODELS = [
+  {
+    name: "AuthUser",
+    description: "Shared authentication user record",
+    fields: [
+      { name: "id", type: "String", attributes: ["@id", "@default(cuid())"] },
+      { name: "email", type: "String?", attributes: ["@unique"] },
+      { name: "name", type: "String?" },
+      { name: "image", type: "String?" },
+      { name: "isAdmin", type: "Boolean", attributes: ["@default(false)"] },
+      { name: "role", type: "String", attributes: ['@default("user")'] },
+      { name: "tokenBalance", type: "Int", attributes: ["@default(0)"] },
+      { name: "isVip", type: "Boolean", attributes: ["@default(false)"] },
+      { name: "createdAt", type: "DateTime", attributes: ["@default(now())"] },
+      { name: "updatedAt", type: "DateTime", attributes: ["@updatedAt"] }
+    ],
+    blockAttributes: ["@@index([email])"]
+  },
+  {
+    name: "AuthMembership",
+    description: "Subscription membership snapshot",
+    fields: [
+      { name: "id", type: "String", attributes: ["@id", "@default(cuid())"] },
+      { name: "userId", type: "String", attributes: ["@unique"] },
+      { name: "plan", type: "String" },
+      { name: "status", type: "String" },
+      { name: "startsAt", type: "DateTime?" },
+      { name: "endsAt", type: "DateTime?" },
+      { name: "createdAt", type: "DateTime", attributes: ["@default(now())"] },
+      { name: "updatedAt", type: "DateTime", attributes: ["@updatedAt"] }
+    ],
+    blockAttributes: ["@@index([userId])"]
+  },
+  {
+    name: "AuthOrder",
+    description: "Commerce order record",
+    fields: [
+      { name: "id", type: "String", attributes: ["@id", "@default(cuid())"] },
+      { name: "userId", type: "String" },
+      { name: "kind", type: "String" },
+      { name: "status", type: "String" },
+      { name: "amount", type: "Int" },
+      { name: "currency", type: "String", attributes: ['@default("CNY")'] },
+      { name: "payload", type: "Json?" },
+      { name: "createdAt", type: "DateTime", attributes: ["@default(now())"] },
+      { name: "updatedAt", type: "DateTime", attributes: ["@updatedAt"] }
+    ],
+    blockAttributes: ["@@index([userId])"]
+  },
+  {
+    name: "AuthSubscription",
+    description: "Commerce subscription record",
+    fields: [
+      { name: "id", type: "String", attributes: ["@id", "@default(cuid())"] },
+      { name: "userId", type: "String" },
+      { name: "productId", type: "String" },
+      { name: "status", type: "String" },
+      { name: "interval", type: "String" },
+      { name: "startsAt", type: "DateTime?" },
+      { name: "endsAt", type: "DateTime?" },
+      { name: "createdAt", type: "DateTime", attributes: ["@default(now())"] },
+      { name: "updatedAt", type: "DateTime", attributes: ["@updatedAt"] }
+    ],
+    blockAttributes: ["@@index([userId])", "@@index([productId])"]
+  },
+  {
+    name: "AuthInvoice",
+    description: "Commerce invoice record",
+    fields: [
+      { name: "id", type: "String", attributes: ["@id", "@default(cuid())"] },
+      { name: "userId", type: "String" },
+      { name: "orderId", type: "String?" },
+      { name: "invoiceNo", type: "String", attributes: ["@unique"] },
+      { name: "status", type: "String" },
+      { name: "amount", type: "Int" },
+      { name: "createdAt", type: "DateTime", attributes: ["@default(now())"] },
+      { name: "updatedAt", type: "DateTime", attributes: ["@updatedAt"] }
+    ],
+    blockAttributes: ["@@index([userId])", "@@index([orderId])"]
+  }
+];
+function renderField(field) {
+  const attributes = field.attributes?.length ? ` ${field.attributes.join(" ")}` : "";
+  return `  ${field.name} ${field.type}${attributes}`;
+}
+function renderModel(model) {
+  const lines = [
+    `/// ${model.description}`,
+    `model ${model.name} {`,
+    ...model.fields.map(renderField)
+  ];
+  if (model.blockAttributes?.length) {
+    lines.push(...model.blockAttributes.map((attribute) => `  ${attribute}`));
+  }
+  lines.push("}");
+  return lines.join("\n");
+}
+function buildAuthPrismaSchemaTemplate(models = AUTH_PRISMA_SCHEMA_MODELS) {
+  return [
+    "// generated by @foldspace-fe/casdoor-next-auth-kit",
+    "// merge these models into the host Prisma schema if you want a dedicated auth module",
+    "",
+    ...models.map(renderModel)
+  ].join("\n\n");
+}
+
+// src/core/env.ts
+var AUTH_KIT_ENV_FILES = [".env", ".env.local", ".env.production", ".env.example"];
+var AUTH_KIT_ENV_VARIABLES = [
+  {
+    key: "APP_URL",
+    description: "\u7AD9\u70B9\u5BF9\u5916\u516C\u5F00\u5730\u5740",
+    example: "https://your-domain.com",
+    local: "http://localhost:5177",
+    production: "https://your-domain.com"
+  },
+  {
+    key: "NEXTAUTH_URL",
+    description: "NextAuth \u56DE\u8C03\u5730\u5740",
+    example: "http://localhost:5177",
+    local: "http://localhost:5177",
+    production: "https://your-domain.com"
+  },
+  {
+    key: "NEXTAUTH_SECRET",
+    description: "NextAuth JWT secret",
+    example: "replace-with-a-random-secret",
+    local: "replace-with-a-random-secret",
+    production: "replace-with-a-random-secret"
+  },
+  {
+    key: "GLOBAL_ADMIN_EMAILS",
+    description: "\u5168\u5C40\u7BA1\u7406\u5458\u90AE\u7BB1\uFF0C\u9017\u53F7\u5206\u9694",
+    example: "admin@example.com",
+    local: "admin@example.com",
+    production: "admin@example.com"
+  },
+  {
+    key: "AUTH_DEBUG",
+    description: "\u662F\u5426\u5F00\u542F\u8BA4\u8BC1\u8C03\u8BD5\u65E5\u5FD7",
+    example: "false",
+    local: "false",
+    production: "false"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_SERVER_URL",
+    description: "Casdoor \u670D\u52A1\u5730\u5740",
+    example: "https://auth.example.com",
+    local: "https://auth.example.com",
+    production: "https://auth.example.com"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_CLIENT_ID",
+    description: "Casdoor client id",
+    example: "your-casdoor-client-id",
+    local: "your-casdoor-client-id",
+    production: "your-casdoor-client-id"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_APP_NAME",
+    description: "Casdoor app name",
+    example: "your-app-name",
+    local: "your-app-name",
+    production: "your-app-name"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME",
+    description: "Casdoor organization name",
+    example: "your-org-name",
+    local: "your-org-name",
+    production: "your-org-name"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_REDIRECT_PATH",
+    description: "Casdoor OAuth \u56DE\u8C03\u8DEF\u5F84",
+    example: "/callback",
+    local: "/callback",
+    production: "/callback"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_SIGNIN_PATH",
+    description: "Casdoor authorize \u8DEF\u5F84",
+    example: "/login/oauth/authorize",
+    local: "/login/oauth/authorize",
+    production: "/login/oauth/authorize"
+  },
+  {
+    key: "NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH",
+    description: "\u6CE8\u9500\u540E\u8DF3\u8F6C\u8DEF\u5F84\uFF0C\u9ED8\u8BA4\u9996\u9875",
+    example: "/",
+    local: "/",
+    production: "/"
+  },
+  {
+    key: "NEXT_PUBLIC_BILLING_PURCHASABLE_IDS",
+    description: "Billing \u53EF\u8D2D\u4E70\u9879\u767D\u540D\u5355\uFF0C\u9017\u53F7\u5206\u9694",
+    example: "membership-monthly,credits-50",
+    local: "membership-monthly,credits-50",
+    production: "membership-monthly,credits-50"
+  },
+  {
+    key: "NEXT_PUBLIC_CASDOOR_STATIC_ORIGIN",
+    description: "Casdoor \u9759\u6001\u8D44\u6E90 origin",
+    example: "https://casdoor-static.foldspace.cn",
+    local: "https://casdoor-static.foldspace.cn",
+    production: "https://casdoor-static.foldspace.cn"
+  },
+  {
+    key: "CASDOOR_CLIENT_SECRET",
+    description: "Casdoor client secret",
+    example: "your-casdoor-client-secret",
+    local: "your-casdoor-client-secret",
+    production: "your-casdoor-client-secret"
+  },
+  {
+    key: "BILLING_PAYMENT_SUCCESS_DEBUG",
+    description: "\u662F\u5426\u6253\u5370 payment-success \u8C03\u8BD5\u65E5\u5FD7",
+    example: "false",
+    local: "false",
+    production: "false"
+  }
+];
+function stringifyEnvValue(value) {
+  if (value === "") {
+    return '""';
+  }
+  if (/^[A-Za-z0-9_./:-]+$/.test(value)) {
+    return value;
+  }
+  return JSON.stringify(value);
+}
+function stripQuotes(value) {
+  const trimmed = value.trim();
+  if (trimmed.startsWith('"') && trimmed.endsWith('"') || trimmed.startsWith("'") && trimmed.endsWith("'")) {
+    return trimmed.slice(1, -1);
+  }
+  return trimmed;
+}
+function parseEnvKeys(content) {
+  const keys = /* @__PURE__ */ new Set();
+  for (const line of content.split(/\r?\n/)) {
+    const trimmed = line.trim();
+    if (!trimmed || trimmed.startsWith("#")) {
+      continue;
+    }
+    const separatorIndex = trimmed.indexOf("=");
+    if (separatorIndex === -1) {
+      continue;
+    }
+    const key = trimmed.slice(0, separatorIndex).trim();
+    if (key) {
+      keys.add(key);
+    }
+  }
+  return keys;
+}
+function readManagedEnvValue(content, key) {
+  for (const line of content.split(/\r?\n/)) {
+    const trimmed = line.trim();
+    if (!trimmed || trimmed.startsWith("#")) {
+      continue;
+    }
+    const separatorIndex = trimmed.indexOf("=");
+    if (separatorIndex === -1) {
+      continue;
+    }
+    const currentKey = trimmed.slice(0, separatorIndex).trim();
+    if (currentKey !== key) {
+      continue;
+    }
+    const rawValue = trimmed.slice(separatorIndex + 1).trim();
+    return stripQuotes(rawValue);
+  }
+  return null;
+}
+function getManagedEnvValue(definition, file) {
+  if (file === ".env.example") {
+    return definition.example;
+  }
+  if (file === ".env.production") {
+    return definition.production ?? definition.example;
+  }
+  if (file === ".env.local") {
+    return definition.local ?? definition.example;
+  }
+  return definition.base ?? definition.local ?? definition.production ?? definition.example;
+}
+function buildManagedEnvTemplate(file, existingContent = "") {
+  const existingKeys = parseEnvKeys(existingContent);
+  const lines = existingContent.trimEnd() ? existingContent.trimEnd().split(/\r?\n/) : [];
+  const missing = AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key));
+  if (missing.length === 0 && existingContent) {
+    return existingContent;
+  }
+  if (lines.length > 0) {
+    lines.push("");
+  }
+  lines.push(`# Casdoor Next Auth Kit managed values for ${file}`);
+  for (const definition of missing) {
+    const value = getManagedEnvValue(definition, file);
+    lines.push(`# ${definition.description}`);
+    lines.push(`${definition.key}=${stringifyEnvValue(value)}`);
+    lines.push("");
+  }
+  while (lines.length > 0 && lines[lines.length - 1] === "") {
+    lines.pop();
+  }
+  return `${lines.join("\n")}
+`;
+}
+function getMissingManagedEnvKeys(content) {
+  const existingKeys = parseEnvKeys(content);
+  return AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key)).map(
+    (definition) => definition.key
+  );
+}
+function sanitizeExistingEnvContent(content) {
+  return stripQuotes(content);
+}
+
+// src/cli/fs.ts
+import fs from "fs";
+import path from "path";
+var generatedHeader = "// generated by @foldspace-fe/casdoor-next-auth-kit\n";
+var customBegin = "// @foldspace-fe/casdoor-next-auth-kit:begin custom";
+var customEnd = "// @foldspace-fe/casdoor-next-auth-kit:end custom";
+function ensureDir(filePath) {
+  fs.mkdirSync(path.dirname(filePath), { recursive: true });
+}
+function writeGeneratedFile(filePath, content) {
+  ensureDir(filePath);
+  fs.writeFileSync(filePath, generatedHeader + content, "utf8");
+}
+function writeTextFile(filePath, content) {
+  ensureDir(filePath);
+  fs.writeFileSync(filePath, content, "utf8");
+}
+function exists(filePath) {
+  return fs.existsSync(filePath);
+}
+function read(filePath) {
+  return fs.readFileSync(filePath, "utf8");
+}
+function preserveCustomBlock(existing, next) {
+  const begin = existing.indexOf(customBegin);
+  const end = existing.indexOf(customEnd);
+  if (begin === -1 || end === -1 || end <= begin) return next;
+  const custom = existing.slice(begin, end + customEnd.length);
+  const targetBegin = next.indexOf(customBegin);
+  const targetEnd = next.indexOf(customEnd);
+  if (targetBegin === -1 || targetEnd === -1 || targetEnd <= targetBegin) return next;
+  return next.slice(0, targetBegin) + custom + next.slice(targetEnd + customEnd.length);
+}
+function removePath(filePath) {
+  fs.rmSync(filePath, { force: true, recursive: true });
+}
+
+// src/cli/templates.ts
+function authLoginRouteTemplate() {
+  return `import { loginHandler } from '../../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = loginHandler;
+`;
+}
+function authSignupRouteTemplate() {
+  return `import { signupHandler } from '../../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = signupHandler;
+`;
+}
+function authorizeRouteTemplate() {
+  return `import { authorizeHandler } from '../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = authorizeHandler;
+`;
+}
+function signupAuthorizeRouteTemplate() {
+  return `import { authorizeHandler } from '../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = authorizeHandler;
+`;
+}
+function callbackRouteTemplate() {
+  return `import { callbackHandler } from '../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = callbackHandler;
+`;
+}
+function logoutRouteTemplate() {
+  return `import { logoutHandler } from '../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = logoutHandler;
+`;
+}
+function callbackErrorPageTemplate() {
+  return `import { ClearDomainCookiesButton } from './clear-domain-cookies-button';
+
+export const dynamic = 'force-dynamic';
+
+export default async function CallbackErrorPage({
+  searchParams,
+}: {
+  searchParams: Promise<{ title?: string; message?: string; details?: string }>;
+}) {
+  const params = await searchParams;
+
+  return (
+    <main
+      style={{
+        minHeight: '100dvh',
+        display: 'flex',
+        alignItems: 'center',
+        justifyContent: 'center',
+        padding: '20px 16px',
+        background:
+          'radial-gradient(circle at top, rgba(99, 102, 241, 0.12) 0, rgba(99, 102, 241, 0) 38%), linear-gradient(180deg, #f8fafc 0%, #eef2ff 100%)',
+      }}
+    >
+      <section
+        style={{
+          width: 'min(100%, 400px)',
+          borderRadius: 28,
+          padding: '24px 20px',
+          boxSizing: 'border-box',
+          background: 'rgba(255, 255, 255, 0.96)',
+          border: '1px solid rgba(148, 163, 184, 0.2)',
+          boxShadow: '0 22px 52px rgba(15, 23, 42, 0.12)',
+          textAlign: 'center',
+          backdropFilter: 'blur(10px)',
+        }}
+      >
+        <div
+          style={{
+            width: 52,
+            height: 52,
+            margin: '0 auto 14px',
+            display: 'grid',
+            placeItems: 'center',
+            borderRadius: 18,
+            background: 'linear-gradient(135deg, rgba(239, 68, 68, 0.15), rgba(249, 115, 22, 0.1))',
+            color: '#b91c1c',
+            fontSize: 28,
+            lineHeight: 1,
+          }}
+          aria-hidden="true"
+        >
+          !
+        </div>
+        <div
+          style={{
+            display: 'inline-flex',
+            alignItems: 'center',
+            justifyContent: 'center',
+            marginBottom: 12,
+            padding: '6px 12px',
+            borderRadius: 9999,
+            background: 'rgba(254, 226, 226, 0.9)',
+            color: '#b91c1c',
+            fontSize: 13,
+            fontWeight: 600,
+            letterSpacing: '0.04em',
+          }}
+        >
+          \u8BA4\u8BC1\u5931\u8D25
+        </div>
+        <h2 style={{ margin: 0, fontSize: 24, lineHeight: 1.2, color: '#0f172a' }}>{params.title ?? 'Callback Error'}</h2>
+        <p style={{ margin: '12px 0 0', color: '#334155', lineHeight: 1.6 }}>{params.message ?? 'Unknown callback failure.'}</p>
+        {params.details ? (
+          <pre
+            style={{
+              margin: '14px 0 0',
+              maxHeight: 140,
+              overflow: 'auto',
+              padding: 14,
+              borderRadius: 18,
+              textAlign: 'left',
+              whiteSpace: 'pre-wrap',
+              wordBreak: 'break-word',
+              background: '#f8fafc',
+              color: '#0f172a',
+              border: '1px solid rgba(148, 163, 184, 0.18)',
+              fontSize: 13,
+              lineHeight: 1.6,
+            }}
+          >
+            {params.details}
+          </pre>
+        ) : null}
+${customBegin}
+        <div style={{ display: 'flex', flexDirection: 'column', gap: 10, marginTop: 20 }}>
+        <ClearDomainCookiesButton />
+          <a href="/" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>\u8FD4\u56DE\u9996\u9875</a>
+          <a href="/auth/login" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>\u91CD\u65B0\u767B\u5F55</a>
+          <a href="/auth/signup" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>\u53BB\u6CE8\u518C</a>
+        </div>
+${customEnd}
+      </section>
+    </main>
+  );
+}
+`;
+}
+function callbackErrorClearCookiesButtonTemplate() {
+  return `'use client';
+
+import { useState } from 'react';
+
+const AUTH_COOKIE_NAMES = [
+  'auth_origin',
+  'auth_redirect',
+  'oauth_state',
+  'pkce_code_verifier',
+  'next-auth.session-token',
+  '__Secure-next-auth.session-token',
+  'next-auth.csrf-token',
+  '__Secure-next-auth.csrf-token',
+  '__Host-next-auth.csrf-token',
+];
+
+function getPathCandidates(pathname: string): string[] {
+  const normalized = pathname.startsWith('/') ? pathname : '/' + pathname;
+  const segments = normalized.split('/').filter(Boolean);
+  const paths = new Set<string>(['/']);
+
+  let current = '';
+  for (const segment of segments) {
+    current += '/' + segment;
+    paths.add(current);
+  }
+
+  return [...paths];
+}
+
+function getDomainCandidates(hostname: string): string[] {
+  const normalized = hostname.toLowerCase();
+  if (
+    normalized === 'localhost' ||
+    normalized.endsWith('.localhost') ||
+    /^\\d+\\.\\d+\\.\\d+\\.\\d+$/.test(normalized) ||
+    /^\\[[^\\]]+\\]$/.test(normalized)
+  ) {
+    return [];
+  }
+
+  const parts = normalized.split('.');
+  if (parts.length < 2) {
+    return [];
+  }
+
+  const domains = new Set<string>();
+  for (let index = 0; index < parts.length - 1; index++) {
+    const suffix = parts.slice(index).join('.');
+    domains.add(suffix);
+    domains.add('.' + suffix);
+  }
+
+  return [...domains];
+}
+
+function expireCookie(name: string, path: string, domain?: string) {
+  const pieces = [
+    name + '=',
+    'Max-Age=0',
+    'Expires=Thu, 01 Jan 1970 00:00:00 GMT',
+    'Path=' + path,
+    'SameSite=Lax',
+  ];
+
+  if (domain) {
+    pieces.push('Domain=' + domain);
+  }
+
+  if (window.location.protocol === 'https:') {
+    pieces.push('Secure');
+  }
+
+  document.cookie = pieces.join('; ');
+}
+
+${customBegin}
+export function ClearDomainCookiesButton() {
+  const [cleared, setCleared] = useState(false);
+
+  const handleClick = () => {
+    if (typeof document === 'undefined' || typeof window === 'undefined') {
+      return;
+    }
+
+    const names = new Set<string>(AUTH_COOKIE_NAMES);
+    for (const entry of document.cookie.split(';')) {
+      const [rawName] = entry.trim().split('=');
+      if (rawName) {
+        names.add(rawName);
+      }
+    }
+
+    const pathCandidates = getPathCandidates(window.location.pathname);
+    const domainCandidates = getDomainCandidates(window.location.hostname);
+
+    for (const name of names) {
+      for (const path of pathCandidates) {
+        expireCookie(name, path);
+        for (const domain of domainCandidates) {
+          expireCookie(name, path, domain);
+        }
+      }
+    }
+
+    setCleared(true);
+  };
+
+  return (
+    <button
+      type="button"
+      onClick={handleClick}
+      disabled={cleared}
+      style={{
+        display: 'inline-flex',
+        width: '100%',
+        alignItems: 'center',
+        justifyContent: 'center',
+        minHeight: 44,
+        padding: '0 16px',
+        boxSizing: 'border-box',
+        borderRadius: 9999,
+        border: '1px solid rgba(148, 163, 184, 0.35)',
+        color: '#0f172a',
+        background: cleared ? 'rgba(220, 252, 231, 0.92)' : 'rgba(248, 250, 252, 0.9)',
+        cursor: cleared ? 'default' : 'pointer',
+      }}
+    >
+      {cleared ? '\u5DF2\u6E05\u7A7A' : '\u6E05\u7A7A\u5F53\u524D\u57DF Cookie'}
+    </button>
+  );
+}
+${customEnd}
+`;
+}
+function authConfigTemplate() {
+  return `import {
+  createCallbackHandler,
+  createCasdoorApiProxyHandler,
+  createCasdoorCommerceProxyHandler,
+  createAuthorizeRouteHandler,
+  createLoginRouteHandler,
+  createLogoutHandler,
+  createNextAuthOptions,
+  createSignupRouteHandler,
+  type AuthBusinessAdapter,
+  type AuthKitConfig,
+  type AuthPersistenceAdapter,
+} from '@foldspace-fe/casdoor-next-auth-kit';
+import { isGlobalAdminEmail } from '@foldspace-fe/casdoor-next-auth-kit';
+import { paymentSuccessHandler as billingPaymentSuccessHandler } from '@/lib/billing/payment-success';
+import { paymentFinishedHandler as billingPaymentFinishedHandler } from '@/lib/billing/payment-finished';
+
+export function createAuthKitConfig(): AuthKitConfig {
+  return {
+    appUrl: process.env.APP_URL || '',
+    nextauthSecret: process.env.NEXTAUTH_SECRET || 'dev-nextauth-secret',
+    logoutRedirectPath: process.env.NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH || '/',
+    casdoor: {
+      serverUrl: process.env.NEXT_PUBLIC_CASDOOR_SERVER_URL || process.env.CASDOOR_SERVER_URL || '',
+      clientId: process.env.NEXT_PUBLIC_CASDOOR_CLIENT_ID || process.env.CASDOOR_CLIENT_ID || '',
+      clientSecret: process.env.CASDOOR_CLIENT_SECRET || '',
+      appName: process.env.NEXT_PUBLIC_CASDOOR_APP_NAME || '',
+      organizationName: process.env.NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME || '',
+      redirectPath: process.env.NEXT_PUBLIC_CASDOOR_REDIRECT_PATH || '/callback',
+      signinPath: process.env.NEXT_PUBLIC_CASDOOR_SIGNIN_PATH || '/login/oauth/authorize',
+    },
+  };
+}
+
+export const authKitConfig = createAuthKitConfig();
+
+export const adapter: AuthBusinessAdapter = {
+  onUserSync: async (profile) => {
+    const email = profile.email ?? null;
+    const isAdmin = Boolean(profile.isAdmin) || isGlobalAdminEmail(email);
+
+    return {
+      id: String(profile.id ?? profile.sub ?? email ?? 'casdoor-user'),
+      name: profile.name ?? profile.displayName ?? null,
+      email,
+      image: profile.picture ?? profile.avatarUrl ?? null,
+      isAdmin,
+      role: isAdmin ? 'admin' : 'user',
+      tokenBalance: 2580,
+      isVip: true,
+    };
+  },
+  isAdminEmail: isGlobalAdminEmail,
+};
+
+export const persistence: AuthPersistenceAdapter = {
+  async syncAuthUser(user) {
+    console.info('[casdoor-next-auth-kit] syncAuthUser received user', {
+      id: user.id,
+      email: user.email,
+      isAdmin: user.isAdmin,
+      role: user.role,
+    });
+  },
+  async findAuthUser() {
+    return null;
+  },
+};
+
+export const paymentSuccessHandler = billingPaymentSuccessHandler;
+export const paymentFinishedHandler = billingPaymentFinishedHandler;
+
+export const loginHandler = createLoginRouteHandler(authKitConfig);
+export const signupHandler = createSignupRouteHandler(authKitConfig);
+export const authorizeHandler = createAuthorizeRouteHandler(authKitConfig);
+export const callbackHandler = createCallbackHandler({
+  config: authKitConfig,
+  adapter,
+  persistence,
+});
+export const logoutHandler = createLogoutHandler(authKitConfig);
+export const authOptions = createNextAuthOptions({
+  config: authKitConfig,
+  adapter,
+  persistence,
+});
+export const apiProxyHandler = createCasdoorApiProxyHandler(authKitConfig, '/auth/api', '/api');
+export const commerceProxyHandler = createCasdoorCommerceProxyHandler(authKitConfig, '/auth/api/commerce', '/api/commerce');
+`;
+}
+function nextAuthRouteTemplate() {
+  return `import NextAuth from 'next-auth';
+import { createNextAuthOptions } from '@foldspace-fe/casdoor-next-auth-kit';
+import { adapter, authKitConfig, persistence } from '../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+export const runtime = 'nodejs';
+
+const handler = NextAuth(
+  createNextAuthOptions({
+    config: authKitConfig,
+    adapter,
+    persistence,
+  }),
+);
+
+export const GET = handler;
+export const POST = handler;
+`;
+}
+function paymentSuccessRouteTemplate() {
+  return `import { createBillingPaymentSuccessRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';
+import { authKitConfig, paymentSuccessHandler } from '../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+export const runtime = 'nodejs';
+
+export const GET = createBillingPaymentSuccessRouteHandler({
+  appUrl: authKitConfig.appUrl,
+  fallbackRedirect: '/auth/payment/finished',
+  handler: paymentSuccessHandler,
+  phase: 'success',
+});
+`;
+}
+function paymentFinishedRouteTemplate() {
+  return `import { createBillingPaymentFinishedRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';
+import { authKitConfig, paymentFinishedHandler } from '../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+export const runtime = 'nodejs';
+
+export const GET = createBillingPaymentFinishedRouteHandler({
+  appUrl: authKitConfig.appUrl,
+  fallbackRedirect: '/',
+  handler: paymentFinishedHandler,
+  phase: 'finished',
+});
+`;
+}
+function billingPaymentSuccessHandlerTemplate() {
+  return `import type { BillingPaymentSuccessHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';
+
+${customBegin}
+const paymentSuccessHandlerImpl: BillingPaymentSuccessHandler = async (context) => {
+  console.info('[casdoor-next-auth-kit] payment success callback received', {
+    paymentId: context.paymentId,
+    orderId: context.orderId,
+    status: context.status,
+    redirectTo: context.redirectTo,
+  });
+  return;
+};
+${customEnd}
+
+export const paymentSuccessHandler: BillingPaymentSuccessHandler = paymentSuccessHandlerImpl;
+`;
+}
+function billingPaymentFinishedHandlerTemplate() {
+  return `import type { BillingPaymentFinishedHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';
+
+${customBegin}
+const paymentFinishedHandlerImpl: BillingPaymentFinishedHandler = async (context) => {
+  console.info('[casdoor-next-auth-kit] payment finished callback received', {
+    paymentId: context.paymentId,
+    orderId: context.orderId,
+    status: context.status,
+    redirectTo: context.redirectTo,
+  });
+  return;
+};
+${customEnd}
+
+export const paymentFinishedHandler: BillingPaymentFinishedHandler = paymentFinishedHandlerImpl;
+`;
+}
+function authIndexHtmlTemplate() {
+  return `export { AUTH_INDEX_HTML, createAuthIndexHtml } from '@foldspace-fe/casdoor-next-auth-kit';
+`;
+}
+function prismaSchemaTemplate() {
+  return buildAuthPrismaSchemaTemplate();
+}
+function apiProxyRouteTemplate() {
+  return `import { apiProxyHandler } from '../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = apiProxyHandler;
+export const HEAD = apiProxyHandler;
+export const POST = apiProxyHandler;
+export const PUT = apiProxyHandler;
+export const PATCH = apiProxyHandler;
+export const DELETE = apiProxyHandler;
+export const OPTIONS = apiProxyHandler;
+`;
+}
+function commerceProxyRouteTemplate() {
+  return `import { commerceProxyHandler } from '../../../../auth-config';
+
+export const dynamic = 'force-dynamic';
+
+export const GET = commerceProxyHandler;
+export const HEAD = commerceProxyHandler;
+export const POST = commerceProxyHandler;
+export const PUT = commerceProxyHandler;
+export const PATCH = commerceProxyHandler;
+export const DELETE = commerceProxyHandler;
+export const OPTIONS = commerceProxyHandler;
+`;
+}
+function envTemplate(file, existingContent = "") {
+  return buildManagedEnvTemplate(file, existingContent);
+}
+
+export {
+  writeGeneratedFile,
+  writeTextFile,
+  exists,
+  read,
+  preserveCustomBlock,
+  removePath,
+  AUTH_PRISMA_SCHEMA_MODELS,
+  buildAuthPrismaSchemaTemplate,
+  AUTH_KIT_ENV_FILES,
+  AUTH_KIT_ENV_VARIABLES,
+  readManagedEnvValue,
+  getManagedEnvValue,
+  buildManagedEnvTemplate,
+  getMissingManagedEnvKeys,
+  sanitizeExistingEnvContent,
+  authLoginRouteTemplate,
+  authSignupRouteTemplate,
+  authorizeRouteTemplate,
+  signupAuthorizeRouteTemplate,
+  callbackRouteTemplate,
+  logoutRouteTemplate,
+  callbackErrorPageTemplate,
+  callbackErrorClearCookiesButtonTemplate,
+  authConfigTemplate,
+  nextAuthRouteTemplate,
+  paymentSuccessRouteTemplate,
+  paymentFinishedRouteTemplate,
+  billingPaymentSuccessHandlerTemplate,
+  billingPaymentFinishedHandlerTemplate,
+  authIndexHtmlTemplate,
+  prismaSchemaTemplate,
+  apiProxyRouteTemplate,
+  commerceProxyRouteTemplate,
+  envTemplate
+};
+//# sourceMappingURL=chunk-YHPSOLXM.js.map