@githat/nextjs 0.2.1 → 0.2.2

package/dist/index.js

@@ -21,16 +21,21 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 // src/index.ts
 var src_exports = {};
 __export(src_exports, {
+  ChangePasswordForm: () => ChangePasswordForm,
+  ForgotPasswordForm: () => ForgotPasswordForm,
   GitHatProvider: () => GitHatProvider,
   OrgSwitcher: () => OrgSwitcher,
   ProtectedRoute: () => ProtectedRoute,
+  ResetPasswordForm: () => ResetPasswordForm,
   SignInButton: () => SignInButton,
   SignInForm: () => SignInForm,
   SignUpButton: () => SignUpButton,
   SignUpForm: () => SignUpForm,
   UserButton: () => UserButton,
   VerifiedBadge: () => VerifiedBadge,
+  VerifyEmailStatus: () => VerifyEmailStatus,
   useAuth: () => useAuth,
+  useData: () => useData,
   useGitHat: () => useGitHat
 });
 module.exports = __toCommonJS(src_exports);
@@ -53,15 +58,16 @@ function resolveConfig(config) {
     signInUrl: config.signInUrl || "/sign-in",
     signUpUrl: config.signUpUrl || "/sign-up",
     afterSignInUrl: config.afterSignInUrl || "/dashboard",
-    afterSignOutUrl: config.afterSignOutUrl || "/"
+    afterSignOutUrl: config.afterSignOutUrl || "/",
+    tokenStorage: config.tokenStorage || "localStorage"
   };
 }
 
 // src/client.ts
 var _refreshPromise = null;
-async function refreshTokens(apiUrl, appKey) {
-  const refreshToken = typeof window !== "undefined" ? localStorage.getItem(TOKEN_KEYS.refreshToken) : null;
-  if (!refreshToken) return false;
+async function refreshTokens(apiUrl, appKey, useCookies) {
+  const refreshToken = typeof window !== "undefined" && !useCookies ? localStorage.getItem(TOKEN_KEYS.refreshToken) : null;
+  if (!useCookies && !refreshToken) return false;
   let orgId = null;
   try {
     const orgStr = localStorage.getItem(TOKEN_KEYS.org);
@@ -69,18 +75,22 @@ async function refreshTokens(apiUrl, appKey) {
   } catch {
   }
   try {
-    const res = await fetch(`${apiUrl}/auth/refresh`, {
+    const refreshUrl = useCookies ? `${apiUrl}/auth/refresh?setCookie=true` : `${apiUrl}/auth/refresh`;
+    const res = await fetch(refreshUrl, {
       method: "POST",
       headers: {
         "Content-Type": "application/json",
         "X-GitHat-App-Key": appKey
       },
-      body: JSON.stringify({ refreshToken, orgId })
+      credentials: useCookies ? "include" : "same-origin",
+      body: JSON.stringify(useCookies ? { orgId } : { refreshToken, orgId })
     });
     if (!res.ok) return false;
     const data = await res.json();
-    if (data.accessToken) localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
-    if (data.refreshToken) localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
+    if (!useCookies) {
+      if (data.accessToken) localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
+      if (data.refreshToken) localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
+    }
     if (data.org) localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.org));
     return true;
   } catch {
@@ -90,53 +100,66 @@ async function refreshTokens(apiUrl, appKey) {
 function clearAuth() {
   if (typeof window === "undefined") return;
   Object.values(TOKEN_KEYS).forEach((key) => localStorage.removeItem(key));
-  window.dispatchEvent(new CustomEvent("githat:auth-changed", {
-    detail: { user: null, org: null, signedIn: false }
-  }));
+  window.dispatchEvent(
+    new CustomEvent("githat:auth-changed", {
+      detail: { user: null, org: null, signedIn: false }
+    })
+  );
 }
-function createClient(apiUrl, appKey) {
-  async function fetchApi(endpoint, options = {}) {
+function createClient(apiUrl, appKey, options = {}) {
+  const { useCookies = false } = options;
+  async function fetchApi(endpoint, fetchOptions = {}) {
     const url = `${apiUrl}${endpoint}`;
-    const token = typeof window !== "undefined" ? localStorage.getItem(TOKEN_KEYS.accessToken) : null;
+    const token = typeof window !== "undefined" && !useCookies ? localStorage.getItem(TOKEN_KEYS.accessToken) : null;
     const headers = {
       "Content-Type": "application/json",
       "X-GitHat-App-Key": appKey,
       ...token && { Authorization: `Bearer ${token}` },
-      ...options.headers
+      ...fetchOptions.headers
     };
     let response;
     try {
-      response = await fetch(url, { ...options, headers });
+      response = await fetch(url, {
+        ...fetchOptions,
+        headers,
+        credentials: useCookies ? "include" : "same-origin"
+      });
     } catch (networkError) {
       if (networkError instanceof TypeError) {
-        const isMissingKey = !appKey || !appKey.startsWith("pk_live_");
+        const isMissingKey = !appKey || !appKey.startsWith("pk_live_") && !appKey.startsWith("pk_test_");
         const isLocalhost = typeof window !== "undefined" && (window.location.hostname === "localhost" || window.location.hostname === "127.0.0.1");
         if (isMissingKey && !isLocalhost) {
           throw new Error(
-            "Missing GitHat API key. Add NEXT_PUBLIC_GITHAT_PUBLISHABLE_KEY to .env.local"
+            "GitHat: Missing or invalid publishable key. Add NEXT_PUBLIC_GITHAT_PUBLISHABLE_KEY to your environment variables. Get your key at https://githat.io/dashboard/apps"
+          );
+        }
+        if (isLocalhost) {
+          throw new Error(
+            "GitHat: Cannot reach api.githat.io. Check your internet connection."
           );
         }
         throw new Error(
-          "Unable to connect to GitHat API. Check your network connection."
+          "GitHat: API request failed. Verify your publishable key and app domain at https://githat.io/dashboard/apps"
         );
       }
       throw networkError;
     }
     if (response.status === 401) {
       if (!_refreshPromise) {
-        _refreshPromise = refreshTokens(apiUrl, appKey).finally(() => {
+        _refreshPromise = refreshTokens(apiUrl, appKey, useCookies).finally(() => {
           _refreshPromise = null;
         });
       }
       const refreshed = await _refreshPromise;
       if (refreshed) {
-        const newToken = localStorage.getItem(TOKEN_KEYS.accessToken);
+        const newToken = !useCookies && typeof window !== "undefined" ? localStorage.getItem(TOKEN_KEYS.accessToken) : null;
         const retryResponse = await fetch(url, {
-          ...options,
+          ...fetchOptions,
           headers: {
             ...headers,
             ...newToken && { Authorization: `Bearer ${newToken}` }
-          }
+          },
+          credentials: useCookies ? "include" : "same-origin"
         });
         const retryData = await retryResponse.json();
         if (!retryResponse.ok) throw new Error(retryData.error || "Request failed");
@@ -155,40 +178,108 @@ function createClient(apiUrl, appKey) {
 // src/provider.tsx
 var import_jsx_runtime = require("react/jsx-runtime");
 var GitHatContext = (0, import_react.createContext)(null);
+function isDevMode(key) {
+  return !key || !key.startsWith("pk_live_") && !key.startsWith("pk_test_");
+}
+function DevModeBanner() {
+  const [dismissed, setDismissed] = (0, import_react.useState)(() => {
+    if (typeof window === "undefined") return true;
+    return localStorage.getItem("githat_dev_banner_dismissed") === "1";
+  });
+  if (dismissed || typeof window === "undefined") return null;
+  const hostname = window.location.hostname;
+  if (hostname !== "localhost" && hostname !== "127.0.0.1") return null;
+  return /* @__PURE__ */ (0, import_jsx_runtime.jsxs)("div", { className: "githat-dev-banner", role: "status", children: [
+    /* @__PURE__ */ (0, import_jsx_runtime.jsxs)("span", { children: [
+      /* @__PURE__ */ (0, import_jsx_runtime.jsx)("strong", { children: "GitHat Dev Mode" }),
+      " \u2014 No publishable key. Auth works on localhost.",
+      " ",
+      /* @__PURE__ */ (0, import_jsx_runtime.jsx)("a", { href: "https://githat.io/dashboard/apps", target: "_blank", rel: "noopener noreferrer", children: "Get your key" })
+    ] }),
+    /* @__PURE__ */ (0, import_jsx_runtime.jsx)(
+      "button",
+      {
+        onClick: () => {
+          setDismissed(true);
+          localStorage.setItem("githat_dev_banner_dismissed", "1");
+        },
+        "aria-label": "Dismiss",
+        children: "\xD7"
+      }
+    )
+  ] });
+}
 function GitHatProvider({ config: rawConfig, children }) {
   const config = (0, import_react.useMemo)(() => resolveConfig(rawConfig), [rawConfig]);
-  const clientRef = (0, import_react.useRef)(createClient(config.apiUrl, config.publishableKey));
+  const useCookies = config.tokenStorage === "cookie";
+  const devMode = isDevMode(config.publishableKey);
+  const clientRef = (0, import_react.useRef)(createClient(config.apiUrl, config.publishableKey, { useCookies }));
+  (0, import_react.useEffect)(() => {
+    if (!devMode || typeof window === "undefined") return;
+    const hostname = window.location.hostname;
+    if (hostname === "localhost" || hostname === "127.0.0.1") {
+      console.warn(
+        "%c GitHat Dev Mode %c No publishable key configured. Auth works on localhost but will fail in production. Get your key at https://githat.io/dashboard/apps",
+        "background: #f59e0b; color: #000; font-weight: bold; padding: 2px 6px; border-radius: 3px;",
+        "color: #f59e0b;"
+      );
+    } else {
+      console.error(
+        "%c GitHat %c Missing publishable key. Auth requests will fail. Add NEXT_PUBLIC_GITHAT_PUBLISHABLE_KEY to your environment. Get your key at https://githat.io/dashboard/apps",
+        "background: #ef4444; color: #fff; font-weight: bold; padding: 2px 6px; border-radius: 3px;",
+        "color: #ef4444;"
+      );
+    }
+  }, []);
   const [user, setUser] = (0, import_react.useState)(null);
   const [org, setOrg] = (0, import_react.useState)(null);
   const [isSignedIn, setIsSignedIn] = (0, import_react.useState)(false);
   const [isLoading, setIsLoading] = (0, import_react.useState)(true);
   const [authError, setAuthError] = (0, import_react.useState)(null);
   (0, import_react.useEffect)(() => {
-    const token = localStorage.getItem(TOKEN_KEYS.accessToken);
-    const storedUser = localStorage.getItem(TOKEN_KEYS.user);
-    if (token && storedUser) {
-      clientRef.current.fetchApi("/auth/me").then((data) => {
-        const u = data.user || JSON.parse(storedUser);
-        setUser(u);
-        const storedOrg = localStorage.getItem(TOKEN_KEYS.org);
-        setOrg(data.currentOrg || (storedOrg ? JSON.parse(storedOrg) : null));
-        setIsSignedIn(true);
-        setAuthError(null);
-      }).catch((err) => {
-        if (err.message === "Session expired") {
+    const validateSession = async () => {
+      try {
+        if (!useCookies) {
+          const token = localStorage.getItem(TOKEN_KEYS.accessToken);
+          const storedUser = localStorage.getItem(TOKEN_KEYS.user);
+          if (!token || !storedUser) {
+            setIsLoading(false);
+            return;
+          }
+        }
+        const data = await clientRef.current.fetchApi("/auth/me");
+        if (data.user) {
+          setUser(data.user);
+          setOrg(data.currentOrg || null);
+          setIsSignedIn(true);
+          setAuthError(null);
+          if (!useCookies) {
+            localStorage.setItem(TOKEN_KEYS.user, JSON.stringify(data.user));
+            if (data.currentOrg) {
+              localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.currentOrg));
+            }
+          }
+        }
+      } catch (err) {
+        const error = err;
+        if (error.message === "Session expired") {
           clientRef.current.clearAuth();
-        } else {
-          try {
-            setUser(JSON.parse(storedUser));
-          } catch {
+        } else if (!useCookies) {
+          const storedUser = localStorage.getItem(TOKEN_KEYS.user);
+          if (storedUser) {
+            try {
+              setUser(JSON.parse(storedUser));
+              setIsSignedIn(true);
+            } catch {
+            }
           }
-          setAuthError(err.message || "Failed to verify session");
+          setAuthError(error.message || "Failed to verify session");
         }
-      }).finally(() => setIsLoading(false));
-    } else {
+      }
       setIsLoading(false);
-    }
-  }, []);
+    };
+    validateSession();
+  }, [useCookies]);
   (0, import_react.useEffect)(() => {
     const handleAuthChanged = (e) => {
       const detail = e.detail;
@@ -206,30 +297,36 @@ function GitHatProvider({ config: rawConfig, children }) {
     return () => window.removeEventListener("githat:auth-changed", handleAuthChanged);
   }, []);
   const signIn = (0, import_react.useCallback)(async (email, password) => {
-    const data = await clientRef.current.fetchApi("/auth/login", {
+    const loginUrl = useCookies ? "/auth/login?setCookie=true" : "/auth/login";
+    const data = await clientRef.current.fetchApi(loginUrl, {
       method: "POST",
       body: JSON.stringify({ email, password })
     });
-    localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
-    localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
-    localStorage.setItem(TOKEN_KEYS.user, JSON.stringify(data.user));
-    if (data.org) localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.org));
+    if (!useCookies && data.accessToken && data.refreshToken) {
+      localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
+      localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
+      localStorage.setItem(TOKEN_KEYS.user, JSON.stringify(data.user));
+      if (data.org) localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.org));
+    }
     setUser(data.user);
     setOrg(data.org || null);
     setIsSignedIn(true);
     window.dispatchEvent(new CustomEvent("githat:auth-changed", {
       detail: { user: data.user, org: data.org, signedIn: true }
     }));
-  }, []);
+  }, [useCookies]);
   const signUp = (0, import_react.useCallback)(async (signUpData) => {
-    const data = await clientRef.current.fetchApi("/auth/register", {
+    const registerUrl = useCookies ? "/auth/register?setCookie=true" : "/auth/register";
+    const data = await clientRef.current.fetchApi(registerUrl, {
       method: "POST",
       body: JSON.stringify(signUpData)
     });
-    localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
-    localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
-    localStorage.setItem(TOKEN_KEYS.user, JSON.stringify(data.user));
-    if (data.org) localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.org));
+    if (!useCookies && data.accessToken && data.refreshToken) {
+      localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
+      localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
+      localStorage.setItem(TOKEN_KEYS.user, JSON.stringify(data.user));
+      if (data.org) localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.org));
+    }
     setUser(data.user);
     setOrg(data.org || null);
     setIsSignedIn(true);
@@ -237,10 +334,11 @@ function GitHatProvider({ config: rawConfig, children }) {
       detail: { user: data.user, org: data.org, signedIn: true }
     }));
     return { requiresVerification: !data.user.emailVerified, email: signUpData.email };
-  }, []);
+  }, [useCookies]);
   const signOut = (0, import_react.useCallback)(async () => {
     try {
-      await clientRef.current.fetchApi("/auth/logout", { method: "POST" });
+      const logoutUrl = useCookies ? "/auth/logout?setCookie=true" : "/auth/logout";
+      await clientRef.current.fetchApi(logoutUrl, { method: "POST" });
     } catch {
     }
     clientRef.current.clearAuth();
@@ -250,22 +348,24 @@ function GitHatProvider({ config: rawConfig, children }) {
     if (typeof window !== "undefined" && config.afterSignOutUrl) {
       window.location.href = config.afterSignOutUrl;
     }
-  }, [config.afterSignOutUrl]);
+  }, [config.afterSignOutUrl, useCookies]);
   const switchOrg = (0, import_react.useCallback)(async (orgId) => {
     try {
-      const data = await clientRef.current.fetchApi(`/user/orgs/${orgId}/switch`, { method: "POST" });
-      if (data.accessToken) localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
-      if (data.refreshToken) localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
-      const orgData = data.org;
-      localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(orgData));
-      setOrg(orgData);
+      const switchUrl = useCookies ? `/user/orgs/${orgId}/switch?setCookie=true` : `/user/orgs/${orgId}/switch`;
+      const data = await clientRef.current.fetchApi(switchUrl, { method: "POST" });
+      if (!useCookies) {
+        if (data.accessToken) localStorage.setItem(TOKEN_KEYS.accessToken, data.accessToken);
+        if (data.refreshToken) localStorage.setItem(TOKEN_KEYS.refreshToken, data.refreshToken);
+        localStorage.setItem(TOKEN_KEYS.org, JSON.stringify(data.org));
+      }
+      setOrg(data.org);
       window.dispatchEvent(new CustomEvent("githat:auth-changed", {
-        detail: { user, org: orgData, signedIn: true }
+        detail: { user, org: data.org, signedIn: true }
       }));
     } catch (e) {
       console.error("Org switch failed:", e);
     }
-  }, [user]);
+  }, [user, useCookies]);
   const value = (0, import_react.useMemo)(() => ({
     user,
     org,
@@ -278,7 +378,10 @@ function GitHatProvider({ config: rawConfig, children }) {
     signOut,
     switchOrg
   }), [user, org, isSignedIn, isLoading, authError, config, signIn, signUp, signOut, switchOrg]);
-  return /* @__PURE__ */ (0, import_jsx_runtime.jsx)(GitHatContext.Provider, { value, children });
+  return /* @__PURE__ */ (0, import_jsx_runtime.jsxs)(GitHatContext.Provider, { value, children: [
+    devMode && /* @__PURE__ */ (0, import_jsx_runtime.jsx)(DevModeBanner, {}),
+    children
+  ] });
 }
 
 // src/hooks.ts
@@ -294,23 +397,205 @@ function useGitHat() {
     () => createClient(ctx.config.apiUrl, ctx.config.publishableKey),
     [ctx.config.apiUrl, ctx.config.publishableKey]
   );
+  const getOrgMetadata = (0, import_react2.useCallback)(async () => {
+    if (!ctx.org?.id) {
+      throw new Error("No active organization");
+    }
+    const response = await client.fetchApi(
+      `/orgs/${ctx.org.id}/metadata`
+    );
+    return response.metadata || {};
+  }, [client, ctx.org?.id]);
+  const updateOrgMetadata = (0, import_react2.useCallback)(
+    async (updates) => {
+      if (!ctx.org?.id) {
+        throw new Error("No active organization");
+      }
+      const response = await client.fetchApi(
+        `/orgs/${ctx.org.id}/metadata`,
+        {
+          method: "PATCH",
+          body: JSON.stringify(updates)
+        }
+      );
+      return response.metadata || {};
+    },
+    [client, ctx.org?.id]
+  );
+  const forgotPassword = (0, import_react2.useCallback)(
+    async (email) => {
+      const response = await fetch(`${ctx.config.apiUrl}/auth/forgot-password`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ email })
+      });
+      if (!response.ok) {
+        const error = await response.json().catch(() => ({}));
+        throw new Error(error.message || "Failed to send reset email");
+      }
+      return { success: true };
+    },
+    [ctx.config.apiUrl]
+  );
+  const resetPassword = (0, import_react2.useCallback)(
+    async (token, newPassword) => {
+      const response = await fetch(`${ctx.config.apiUrl}/auth/reset-password`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ token, password: newPassword })
+      });
+      if (!response.ok) {
+        const error = await response.json().catch(() => ({}));
+        throw new Error(error.message || "Failed to reset password");
+      }
+      return { success: true };
+    },
+    [ctx.config.apiUrl]
+  );
+  const changePassword = (0, import_react2.useCallback)(
+    async (currentPassword, newPassword) => {
+      await client.fetchApi("/auth/change-password", {
+        method: "POST",
+        body: JSON.stringify({ currentPassword, newPassword })
+      });
+      return { success: true };
+    },
+    [client]
+  );
+  const verifyEmail = (0, import_react2.useCallback)(
+    async (token) => {
+      const response = await fetch(`${ctx.config.apiUrl}/auth/verify-email`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ token })
+      });
+      if (!response.ok) {
+        const error = await response.json().catch(() => ({}));
+        throw new Error(error.message || "Failed to verify email");
+      }
+      return { success: true };
+    },
+    [ctx.config.apiUrl]
+  );
+  const resendVerificationEmail = (0, import_react2.useCallback)(
+    async (email) => {
+      const response = await fetch(`${ctx.config.apiUrl}/auth/resend-verification`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ email })
+      });
+      if (!response.ok) {
+        const error = await response.json().catch(() => ({}));
+        throw new Error(error.message || "Failed to resend verification email");
+      }
+      return { success: true };
+    },
+    [ctx.config.apiUrl]
+  );
   return {
     fetch: client.fetchApi,
     getUserOrgs: () => client.fetchApi("/user/orgs"),
     verifyMCP: (domain) => client.fetchApi(`/verify/mcp/${domain}`),
-    verifyAgent: (wallet) => client.fetchApi(`/verify/agent/${wallet}`)
+    verifyAgent: (wallet) => client.fetchApi(`/verify/agent/${wallet}`),
+    getOrgMetadata,
+    updateOrgMetadata,
+    // Password management
+    forgotPassword,
+    resetPassword,
+    changePassword,
+    // Email verification
+    verifyEmail,
+    resendVerificationEmail
   };
 }
 
-// src/components/SignInForm.tsx
+// src/data.ts
 var import_react3 = require("react");
+function useData() {
+  const ctx = useAuth();
+  const client = (0, import_react3.useMemo)(
+    () => createClient(ctx.config.apiUrl, ctx.config.publishableKey),
+    [ctx.config.apiUrl, ctx.config.publishableKey]
+  );
+  return (0, import_react3.useMemo)(() => ({
+    /**
+     * Store an item in a collection. If the item exists, it will be updated.
+     * @param collection - Collection name (e.g., 'orders', 'users')
+     * @param data - Data object with required `id` field
+     */
+    put: async (collection, data) => {
+      if (!data.id) {
+        throw new Error('Data must include an "id" field');
+      }
+      return client.fetchApi(`/data/${collection}/${data.id}`, {
+        method: "PUT",
+        body: JSON.stringify(data)
+      });
+    },
+    /**
+     * Get a single item from a collection.
+     * @param collection - Collection name
+     * @param id - Item ID
+     */
+    get: async (collection, id) => {
+      try {
+        const result = await client.fetchApi(`/data/${collection}/${id}`);
+        return result.item;
+      } catch (err) {
+        if (err instanceof Error && err.message === "Item not found") {
+          return null;
+        }
+        throw err;
+      }
+    },
+    /**
+     * Query items from a collection with optional filters and pagination.
+     * @param collection - Collection name
+     * @param options - Query options (limit, cursor, filter)
+     */
+    query: async (collection, options = {}) => {
+      const params = new URLSearchParams();
+      if (options.limit) params.set("limit", options.limit.toString());
+      if (options.cursor) params.set("cursor", options.cursor);
+      if (options.filter) params.set("filter", JSON.stringify(options.filter));
+      const queryString = params.toString();
+      const url = `/data/${collection}${queryString ? `?${queryString}` : ""}`;
+      return client.fetchApi(url);
+    },
+    /**
+     * Delete an item from a collection.
+     * @param collection - Collection name
+     * @param id - Item ID
+     */
+    remove: async (collection, id) => {
+      return client.fetchApi(`/data/${collection}/${id}`, {
+        method: "DELETE"
+      });
+    },
+    /**
+     * Batch operations (put/delete) on a collection.
+     * Maximum 100 operations per request.
+     * @param collection - Collection name
+     * @param operations - Array of operations
+     */
+    batch: async (collection, operations) => {
+      return client.fetchApi(`/data/${collection}/batch`, {
+        method: "POST",
+        body: JSON.stringify({ operations })
+      });
+    }
+  }), [client]);
+}
+
+// src/components/SignInForm.tsx
+var import_react4 = require("react");
 var import_jsx_runtime2 = require("react/jsx-runtime");
 function SignInForm({ onSuccess, signUpUrl, forgotPasswordUrl }) {
   const { signIn, config } = useAuth();
-  const [email, setEmail] = (0, import_react3.useState)("");
-  const [password, setPassword] = (0, import_react3.useState)("");
-  const [error, setError] = (0, import_react3.useState)("");
-  const [loading, setLoading] = (0, import_react3.useState)(false);
+  const [email, setEmail] = (0, import_react4.useState)("");
+  const [password, setPassword] = (0, import_react4.useState)("");
+  const [error, setError] = (0, import_react4.useState)("");
+  const [loading, setLoading] = (0, import_react4.useState)(false);
   const emailValid = /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email);
   const handleSubmit = async (e) => {
     e.preventDefault();
@@ -396,15 +681,15 @@ function SignInForm({ onSuccess, signUpUrl, forgotPasswordUrl }) {
 }
 
 // src/components/SignUpForm.tsx
-var import_react4 = require("react");
+var import_react5 = require("react");
 var import_jsx_runtime3 = require("react/jsx-runtime");
 function SignUpForm({ onSuccess, signInUrl }) {
   const { signUp, config } = useAuth();
-  const [name, setName] = (0, import_react4.useState)("");
-  const [email, setEmail] = (0, import_react4.useState)("");
-  const [password, setPassword] = (0, import_react4.useState)("");
-  const [error, setError] = (0, import_react4.useState)("");
-  const [loading, setLoading] = (0, import_react4.useState)(false);
+  const [name, setName] = (0, import_react5.useState)("");
+  const [email, setEmail] = (0, import_react5.useState)("");
+  const [password, setPassword] = (0, import_react5.useState)("");
+  const [error, setError] = (0, import_react5.useState)("");
+  const [loading, setLoading] = (0, import_react5.useState)(false);
   const emailValid = /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email);
   const passwordValid = password.length >= 8 && /[A-Z]/.test(password) && /[a-z]/.test(password) && /\d/.test(password);
   const handleSubmit = async (e) => {
@@ -510,31 +795,31 @@ function SignUpForm({ onSuccess, signInUrl }) {
 }
 
 // src/components/SignInButton.tsx
-var import_react5 = require("react");
+var import_react6 = require("react");
 var import_jsx_runtime4 = require("react/jsx-runtime");
 function SignInButton({ className, children, href }) {
-  const ctx = (0, import_react5.useContext)(GitHatContext);
+  const ctx = (0, import_react6.useContext)(GitHatContext);
   const url = href || ctx?.config.signInUrl || "/sign-in";
   return /* @__PURE__ */ (0, import_jsx_runtime4.jsx)("a", { href: url, className: className || "githat-button githat-button-primary", "aria-label": "Sign in", children: children || "Sign in" });
 }
 
 // src/components/SignUpButton.tsx
-var import_react6 = require("react");
+var import_react7 = require("react");
 var import_jsx_runtime5 = require("react/jsx-runtime");
 function SignUpButton({ className, children, href }) {
-  const ctx = (0, import_react6.useContext)(GitHatContext);
+  const ctx = (0, import_react7.useContext)(GitHatContext);
   const url = href || ctx?.config.signUpUrl || "/sign-up";
   return /* @__PURE__ */ (0, import_jsx_runtime5.jsx)("a", { href: url, className: className || "githat-button githat-button-outline", "aria-label": "Sign up", children: children || "Sign up" });
 }
 
 // src/components/UserButton.tsx
-var import_react7 = require("react");
+var import_react8 = require("react");
 var import_jsx_runtime6 = require("react/jsx-runtime");
 function UserButton() {
   const { user, org, isSignedIn, signOut } = useAuth();
-  const [open, setOpen] = (0, import_react7.useState)(false);
-  const ref = (0, import_react7.useRef)(null);
-  (0, import_react7.useEffect)(() => {
+  const [open, setOpen] = (0, import_react8.useState)(false);
+  const ref = (0, import_react8.useRef)(null);
+  (0, import_react8.useEffect)(() => {
     const handleClickOutside = (e) => {
       if (ref.current && !ref.current.contains(e.target)) setOpen(false);
     };
@@ -561,23 +846,23 @@ function UserButton() {
 }
 
 // src/components/OrgSwitcher.tsx
-var import_react8 = require("react");
+var import_react9 = require("react");
 var import_jsx_runtime7 = require("react/jsx-runtime");
 function OrgSwitcher() {
   const { org, isSignedIn, switchOrg } = useAuth();
   const githat = useGitHat();
-  const [orgs, setOrgs] = (0, import_react8.useState)([]);
-  const [orgsLoading, setOrgsLoading] = (0, import_react8.useState)(false);
-  const [open, setOpen] = (0, import_react8.useState)(false);
-  const ref = (0, import_react8.useRef)(null);
-  (0, import_react8.useEffect)(() => {
+  const [orgs, setOrgs] = (0, import_react9.useState)([]);
+  const [orgsLoading, setOrgsLoading] = (0, import_react9.useState)(false);
+  const [open, setOpen] = (0, import_react9.useState)(false);
+  const ref = (0, import_react9.useRef)(null);
+  (0, import_react9.useEffect)(() => {
     if (isSignedIn) {
       setOrgsLoading(true);
       githat.getUserOrgs().then((data) => setOrgs(data.orgs || [])).catch(() => {
       }).finally(() => setOrgsLoading(false));
     }
   }, [isSignedIn]);
-  (0, import_react8.useEffect)(() => {
+  (0, import_react9.useEffect)(() => {
     const handleClickOutside = (e) => {
       if (ref.current && !ref.current.contains(e.target)) setOpen(false);
     };
@@ -611,15 +896,15 @@ function OrgSwitcher() {
 }
 
 // src/components/VerifiedBadge.tsx
-var import_react9 = require("react");
+var import_react10 = require("react");
 var import_jsx_runtime8 = require("react/jsx-runtime");
 var CACHE_TTL = 5 * 60 * 1e3;
 var cache = /* @__PURE__ */ new Map();
 function VerifiedBadge({ type, identifier, label }) {
   const githat = useGitHat();
-  const [verified, setVerified] = (0, import_react9.useState)(null);
-  const mounted = (0, import_react9.useRef)(true);
-  (0, import_react9.useEffect)(() => {
+  const [verified, setVerified] = (0, import_react10.useState)(null);
+  const mounted = (0, import_react10.useRef)(true);
+  (0, import_react10.useEffect)(() => {
     mounted.current = true;
     const key = `${type}:${identifier}`;
     const cached = cache.get(key);
@@ -663,18 +948,412 @@ function ProtectedRoute({ children, fallback }) {
   }
   return /* @__PURE__ */ (0, import_jsx_runtime9.jsx)(import_jsx_runtime9.Fragment, { children });
 }
+
+// src/components/ForgotPasswordForm.tsx
+var import_react11 = require("react");
+var import_jsx_runtime10 = require("react/jsx-runtime");
+function ForgotPasswordForm({
+  onSuccess,
+  onError,
+  signInUrl = "/sign-in"
+}) {
+  const { forgotPassword } = useGitHat();
+  const [email, setEmail] = (0, import_react11.useState)("");
+  const [isLoading, setIsLoading] = (0, import_react11.useState)(false);
+  const [sent, setSent] = (0, import_react11.useState)(false);
+  const [error, setError] = (0, import_react11.useState)("");
+  const emailValid = /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email);
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    if (!emailValid) {
+      setError("Please enter a valid email address");
+      return;
+    }
+    setIsLoading(true);
+    setError("");
+    try {
+      await forgotPassword(email);
+      setSent(true);
+      onSuccess?.(email);
+    } catch (err) {
+      const message = err instanceof Error ? err.message : "Failed to send reset email";
+      setError(message);
+      onError?.(err instanceof Error ? err : new Error(message));
+    } finally {
+      setIsLoading(false);
+    }
+  };
+  if (sent) {
+    return /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("div", { className: "githat-form-container", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("div", { className: "githat-form-header", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("h2", { className: "githat-form-title", children: "Check your email" }),
+        /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("p", { className: "githat-form-subtitle", children: [
+          "We sent a password reset link to ",
+          /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("strong", { children: email })
+        ] })
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("a", { href: signInUrl, className: "githat-link", children: "Back to sign in" }),
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("p", { className: "githat-powered-by", children: [
+        "Secured by ",
+        /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("strong", { children: "GitHat" })
+      ] })
+    ] });
+  }
+  return /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("div", { className: "githat-form-container", children: [
+    /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("div", { className: "githat-form-header", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("h2", { className: "githat-form-title", children: "Forgot password" }),
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("p", { className: "githat-form-subtitle", children: "Enter your email and we'll send you a reset link" })
+    ] }),
+    error && /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("div", { className: "githat-alert githat-alert-error", role: "alert", "aria-live": "polite", children: error }),
+    /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("form", { onSubmit: handleSubmit, className: "githat-form", "aria-label": "Forgot password form", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("div", { className: "githat-field", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("label", { className: "githat-label", htmlFor: "githat-forgot-email", children: "Email" }),
+        /* @__PURE__ */ (0, import_jsx_runtime10.jsx)(
+          "input",
+          {
+            id: "githat-forgot-email",
+            className: "githat-input",
+            type: "email",
+            value: email,
+            onChange: (e) => setEmail(e.target.value),
+            placeholder: "you@example.com",
+            autoComplete: "email",
+            disabled: isLoading,
+            required: true
+          }
+        )
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsx)(
+        "button",
+        {
+          type: "submit",
+          className: "githat-button githat-button-primary",
+          disabled: isLoading || !email || email.length > 0 && !emailValid,
+          children: isLoading ? "Sending..." : "Send reset link"
+        }
+      )
+    ] }),
+    /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("p", { className: "githat-form-footer", children: [
+      "Remember your password? ",
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("a", { href: signInUrl, className: "githat-link", children: "Sign in" })
+    ] }),
+    /* @__PURE__ */ (0, import_jsx_runtime10.jsxs)("p", { className: "githat-powered-by", children: [
+      "Secured by ",
+      /* @__PURE__ */ (0, import_jsx_runtime10.jsx)("strong", { children: "GitHat" })
+    ] })
+  ] });
+}
+
+// src/components/ResetPasswordForm.tsx
+var import_react12 = require("react");
+var import_jsx_runtime11 = require("react/jsx-runtime");
+function ResetPasswordForm({
+  token,
+  onSuccess,
+  onError,
+  signInUrl = "/sign-in",
+  minPasswordLength = 8
+}) {
+  const { resetPassword } = useGitHat();
+  const [password, setPassword] = (0, import_react12.useState)("");
+  const [confirm, setConfirm] = (0, import_react12.useState)("");
+  const [isLoading, setIsLoading] = (0, import_react12.useState)(false);
+  const [success, setSuccess] = (0, import_react12.useState)(false);
+  const [error, setError] = (0, import_react12.useState)("");
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    if (password !== confirm) {
+      setError("Passwords do not match");
+      return;
+    }
+    if (password.length < minPasswordLength) {
+      setError(`Password must be at least ${minPasswordLength} characters`);
+      return;
+    }
+    setIsLoading(true);
+    setError("");
+    try {
+      await resetPassword(token, password);
+      setSuccess(true);
+      onSuccess?.();
+    } catch (err) {
+      const message = err instanceof Error ? err.message : "Failed to reset password";
+      setError(message);
+      onError?.(err instanceof Error ? err : new Error(message));
+    } finally {
+      setIsLoading(false);
+    }
+  };
+  if (success) {
+    return /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("div", { className: "githat-form-container", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("div", { className: "githat-form-header", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("h2", { className: "githat-form-title", children: "Password reset!" }),
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("p", { className: "githat-form-subtitle", children: "Your password has been successfully reset." })
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("a", { href: signInUrl, className: "githat-button githat-button-primary", style: { display: "block", textAlign: "center", textDecoration: "none" }, children: "Sign in" }),
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("p", { className: "githat-powered-by", children: [
+        "Secured by ",
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("strong", { children: "GitHat" })
+      ] })
+    ] });
+  }
+  return /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("div", { className: "githat-form-container", children: [
+    /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("div", { className: "githat-form-header", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("h2", { className: "githat-form-title", children: "Reset password" }),
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("p", { className: "githat-form-subtitle", children: "Enter your new password" })
+    ] }),
+    error && /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("div", { className: "githat-alert githat-alert-error", role: "alert", "aria-live": "polite", children: error }),
+    /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("form", { onSubmit: handleSubmit, className: "githat-form", "aria-label": "Reset password form", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("div", { className: "githat-field", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("label", { className: "githat-label", htmlFor: "githat-reset-password", children: "New password" }),
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)(
+          "input",
+          {
+            id: "githat-reset-password",
+            className: "githat-input",
+            type: "password",
+            value: password,
+            onChange: (e) => setPassword(e.target.value),
+            placeholder: "Enter new password",
+            autoComplete: "new-password",
+            disabled: isLoading,
+            required: true,
+            minLength: minPasswordLength
+          }
+        )
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("div", { className: "githat-field", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("label", { className: "githat-label", htmlFor: "githat-reset-confirm", children: "Confirm password" }),
+        /* @__PURE__ */ (0, import_jsx_runtime11.jsx)(
+          "input",
+          {
+            id: "githat-reset-confirm",
+            className: "githat-input",
+            type: "password",
+            value: confirm,
+            onChange: (e) => setConfirm(e.target.value),
+            placeholder: "Confirm new password",
+            autoComplete: "new-password",
+            disabled: isLoading,
+            required: true
+          }
+        )
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsx)(
+        "button",
+        {
+          type: "submit",
+          className: "githat-button githat-button-primary",
+          disabled: isLoading || !password || !confirm,
+          children: isLoading ? "Resetting..." : "Reset password"
+        }
+      )
+    ] }),
+    /* @__PURE__ */ (0, import_jsx_runtime11.jsxs)("p", { className: "githat-powered-by", children: [
+      "Secured by ",
+      /* @__PURE__ */ (0, import_jsx_runtime11.jsx)("strong", { children: "GitHat" })
+    ] })
+  ] });
+}
+
+// src/components/VerifyEmailStatus.tsx
+var import_react13 = require("react");
+var import_jsx_runtime12 = require("react/jsx-runtime");
+function VerifyEmailStatus({
+  token,
+  onSuccess,
+  onError,
+  signInUrl = "/sign-in",
+  redirectDelay = 3e3
+}) {
+  const { verifyEmail } = useGitHat();
+  const [status, setStatus] = (0, import_react13.useState)("loading");
+  const [error, setError] = (0, import_react13.useState)("");
+  (0, import_react13.useEffect)(() => {
+    if (!token) {
+      setStatus("error");
+      setError("Missing verification token");
+      return;
+    }
+    verifyEmail(token).then(() => {
+      setStatus("success");
+      onSuccess?.();
+      if (signInUrl && redirectDelay > 0) {
+        setTimeout(() => {
+          window.location.href = signInUrl;
+        }, redirectDelay);
+      }
+    }).catch((err) => {
+      setStatus("error");
+      const message = err instanceof Error ? err.message : "Verification failed";
+      setError(message);
+      onError?.(err instanceof Error ? err : new Error(message));
+    });
+  }, [token, verifyEmail, onSuccess, onError, signInUrl, redirectDelay]);
+  return /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)("div", { className: "githat-form-container", children: [
+    status === "loading" && /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)("div", { className: "githat-form-header", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("h2", { className: "githat-form-title", children: "Verifying email..." }),
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("p", { className: "githat-form-subtitle", children: "Please wait while we verify your email address." })
+    ] }),
+    status === "success" && /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)(import_jsx_runtime12.Fragment, { children: [
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)("div", { className: "githat-form-header", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("h2", { className: "githat-form-title", children: "Email verified!" }),
+        /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("p", { className: "githat-form-subtitle", children: "Your email has been successfully verified. Redirecting to sign in..." })
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("a", { href: signInUrl, className: "githat-button githat-button-primary", style: { display: "block", textAlign: "center", textDecoration: "none" }, children: "Sign in now" })
+    ] }),
+    status === "error" && /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)(import_jsx_runtime12.Fragment, { children: [
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)("div", { className: "githat-form-header", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("h2", { className: "githat-form-title", children: "Verification failed" }),
+        /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("p", { className: "githat-form-subtitle", children: error })
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)("p", { className: "githat-form-footer", children: [
+        "The link may have expired. ",
+        /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("a", { href: "/sign-up", className: "githat-link", children: "Try signing up again" })
+      ] })
+    ] }),
+    /* @__PURE__ */ (0, import_jsx_runtime12.jsxs)("p", { className: "githat-powered-by", children: [
+      "Secured by ",
+      /* @__PURE__ */ (0, import_jsx_runtime12.jsx)("strong", { children: "GitHat" })
+    ] })
+  ] });
+}
+
+// src/components/ChangePasswordForm.tsx
+var import_react14 = require("react");
+var import_jsx_runtime13 = require("react/jsx-runtime");
+function ChangePasswordForm({
+  onSuccess,
+  onError,
+  minPasswordLength = 8
+}) {
+  const { changePassword } = useGitHat();
+  const [current, setCurrent] = (0, import_react14.useState)("");
+  const [newPass, setNewPass] = (0, import_react14.useState)("");
+  const [confirm, setConfirm] = (0, import_react14.useState)("");
+  const [isLoading, setIsLoading] = (0, import_react14.useState)(false);
+  const [error, setError] = (0, import_react14.useState)("");
+  const [success, setSuccess] = (0, import_react14.useState)(false);
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    if (newPass !== confirm) {
+      setError("Passwords do not match");
+      return;
+    }
+    if (newPass.length < minPasswordLength) {
+      setError(`Password must be at least ${minPasswordLength} characters`);
+      return;
+    }
+    setIsLoading(true);
+    setError("");
+    try {
+      await changePassword(current, newPass);
+      setSuccess(true);
+      setCurrent("");
+      setNewPass("");
+      setConfirm("");
+      onSuccess?.();
+    } catch (err) {
+      const message = err instanceof Error ? err.message : "Failed to change password";
+      setError(message);
+      onError?.(err instanceof Error ? err : new Error(message));
+    } finally {
+      setIsLoading(false);
+    }
+  };
+  return /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("div", { className: "githat-form-container", children: [
+    /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("div", { className: "githat-form-header", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("h2", { className: "githat-form-title", children: "Change password" }),
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("p", { className: "githat-form-subtitle", children: "Update your account password" })
+    ] }),
+    success && /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("div", { className: "githat-alert githat-alert-success", role: "status", "aria-live": "polite", children: "Password changed successfully!" }),
+    error && /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("div", { className: "githat-alert githat-alert-error", role: "alert", "aria-live": "polite", children: error }),
+    /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("form", { onSubmit: handleSubmit, className: "githat-form", "aria-label": "Change password form", children: [
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("div", { className: "githat-field", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("label", { className: "githat-label", htmlFor: "githat-change-current", children: "Current password" }),
+        /* @__PURE__ */ (0, import_jsx_runtime13.jsx)(
+          "input",
+          {
+            id: "githat-change-current",
+            className: "githat-input",
+            type: "password",
+            value: current,
+            onChange: (e) => setCurrent(e.target.value),
+            placeholder: "Enter current password",
+            autoComplete: "current-password",
+            disabled: isLoading,
+            required: true
+          }
+        )
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("div", { className: "githat-field", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("label", { className: "githat-label", htmlFor: "githat-change-new", children: "New password" }),
+        /* @__PURE__ */ (0, import_jsx_runtime13.jsx)(
+          "input",
+          {
+            id: "githat-change-new",
+            className: "githat-input",
+            type: "password",
+            value: newPass,
+            onChange: (e) => setNewPass(e.target.value),
+            placeholder: "Enter new password",
+            autoComplete: "new-password",
+            disabled: isLoading,
+            required: true,
+            minLength: minPasswordLength
+          }
+        )
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("div", { className: "githat-field", children: [
+        /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("label", { className: "githat-label", htmlFor: "githat-change-confirm", children: "Confirm new password" }),
+        /* @__PURE__ */ (0, import_jsx_runtime13.jsx)(
+          "input",
+          {
+            id: "githat-change-confirm",
+            className: "githat-input",
+            type: "password",
+            value: confirm,
+            onChange: (e) => setConfirm(e.target.value),
+            placeholder: "Confirm new password",
+            autoComplete: "new-password",
+            disabled: isLoading,
+            required: true
+          }
+        )
+      ] }),
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsx)(
+        "button",
+        {
+          type: "submit",
+          className: "githat-button githat-button-primary",
+          disabled: isLoading || !current || !newPass || !confirm,
+          children: isLoading ? "Changing..." : "Change password"
+        }
+      )
+    ] }),
+    /* @__PURE__ */ (0, import_jsx_runtime13.jsxs)("p", { className: "githat-powered-by", children: [
+      "Secured by ",
+      /* @__PURE__ */ (0, import_jsx_runtime13.jsx)("strong", { children: "GitHat" })
+    ] })
+  ] });
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
+  ChangePasswordForm,
+  ForgotPasswordForm,
   GitHatProvider,
   OrgSwitcher,
   ProtectedRoute,
+  ResetPasswordForm,
   SignInButton,
   SignInForm,
   SignUpButton,
   SignUpForm,
   UserButton,
   VerifiedBadge,
+  VerifyEmailStatus,
   useAuth,
+  useData,
   useGitHat
 });
 //# sourceMappingURL=index.js.map