@hammadj/better-auth 1.5.0-beta.10
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +33 -0
- package/dist/_virtual/rolldown_runtime.mjs +36 -0
- package/dist/adapters/drizzle-adapter/index.d.mts +1 -0
- package/dist/adapters/drizzle-adapter/index.mjs +3 -0
- package/dist/adapters/index.d.mts +23 -0
- package/dist/adapters/index.mjs +13 -0
- package/dist/adapters/index.mjs.map +1 -0
- package/dist/adapters/kysely-adapter/index.d.mts +1 -0
- package/dist/adapters/kysely-adapter/index.mjs +3 -0
- package/dist/adapters/memory-adapter/index.d.mts +1 -0
- package/dist/adapters/memory-adapter/index.mjs +3 -0
- package/dist/adapters/mongodb-adapter/index.d.mts +1 -0
- package/dist/adapters/mongodb-adapter/index.mjs +3 -0
- package/dist/adapters/prisma-adapter/index.d.mts +1 -0
- package/dist/adapters/prisma-adapter/index.mjs +3 -0
- package/dist/api/index.d.mts +40 -0
- package/dist/api/index.mjs +205 -0
- package/dist/api/index.mjs.map +1 -0
- package/dist/api/middlewares/index.d.mts +1 -0
- package/dist/api/middlewares/index.mjs +3 -0
- package/dist/api/middlewares/origin-check.d.mts +17 -0
- package/dist/api/middlewares/origin-check.mjs +140 -0
- package/dist/api/middlewares/origin-check.mjs.map +1 -0
- package/dist/api/rate-limiter/index.mjs +177 -0
- package/dist/api/rate-limiter/index.mjs.map +1 -0
- package/dist/api/routes/account.d.mts +10 -0
- package/dist/api/routes/account.mjs +493 -0
- package/dist/api/routes/account.mjs.map +1 -0
- package/dist/api/routes/callback.d.mts +5 -0
- package/dist/api/routes/callback.mjs +178 -0
- package/dist/api/routes/callback.mjs.map +1 -0
- package/dist/api/routes/email-verification.d.mts +29 -0
- package/dist/api/routes/email-verification.mjs +301 -0
- package/dist/api/routes/email-verification.mjs.map +1 -0
- package/dist/api/routes/error.d.mts +5 -0
- package/dist/api/routes/error.mjs +386 -0
- package/dist/api/routes/error.mjs.map +1 -0
- package/dist/api/routes/index.d.mts +11 -0
- package/dist/api/routes/index.mjs +13 -0
- package/dist/api/routes/ok.d.mts +5 -0
- package/dist/api/routes/ok.mjs +30 -0
- package/dist/api/routes/ok.mjs.map +1 -0
- package/dist/api/routes/password.d.mts +8 -0
- package/dist/api/routes/password.mjs +198 -0
- package/dist/api/routes/password.mjs.map +1 -0
- package/dist/api/routes/session.d.mts +52 -0
- package/dist/api/routes/session.mjs +478 -0
- package/dist/api/routes/session.mjs.map +1 -0
- package/dist/api/routes/sign-in.d.mts +8 -0
- package/dist/api/routes/sign-in.mjs +262 -0
- package/dist/api/routes/sign-in.mjs.map +1 -0
- package/dist/api/routes/sign-out.d.mts +5 -0
- package/dist/api/routes/sign-out.mjs +33 -0
- package/dist/api/routes/sign-out.mjs.map +1 -0
- package/dist/api/routes/sign-up.d.mts +7 -0
- package/dist/api/routes/sign-up.mjs +227 -0
- package/dist/api/routes/sign-up.mjs.map +1 -0
- package/dist/api/routes/update-user.d.mts +12 -0
- package/dist/api/routes/update-user.mjs +493 -0
- package/dist/api/routes/update-user.mjs.map +1 -0
- package/dist/api/state/oauth.d.mts +5 -0
- package/dist/api/state/oauth.mjs +8 -0
- package/dist/api/state/oauth.mjs.map +1 -0
- package/dist/api/state/should-session-refresh.d.mts +13 -0
- package/dist/api/state/should-session-refresh.mjs +16 -0
- package/dist/api/state/should-session-refresh.mjs.map +1 -0
- package/dist/api/to-auth-endpoints.mjs +197 -0
- package/dist/api/to-auth-endpoints.mjs.map +1 -0
- package/dist/auth/base.mjs +44 -0
- package/dist/auth/base.mjs.map +1 -0
- package/dist/auth/full.d.mts +30 -0
- package/dist/auth/full.mjs +32 -0
- package/dist/auth/full.mjs.map +1 -0
- package/dist/auth/minimal.d.mts +12 -0
- package/dist/auth/minimal.mjs +14 -0
- package/dist/auth/minimal.mjs.map +1 -0
- package/dist/auth/trusted-origins.mjs +31 -0
- package/dist/auth/trusted-origins.mjs.map +1 -0
- package/dist/client/broadcast-channel.d.mts +20 -0
- package/dist/client/broadcast-channel.mjs +46 -0
- package/dist/client/broadcast-channel.mjs.map +1 -0
- package/dist/client/config.mjs +90 -0
- package/dist/client/config.mjs.map +1 -0
- package/dist/client/fetch-plugins.mjs +18 -0
- package/dist/client/fetch-plugins.mjs.map +1 -0
- package/dist/client/focus-manager.d.mts +11 -0
- package/dist/client/focus-manager.mjs +32 -0
- package/dist/client/focus-manager.mjs.map +1 -0
- package/dist/client/index.d.mts +30 -0
- package/dist/client/index.mjs +21 -0
- package/dist/client/index.mjs.map +1 -0
- package/dist/client/lynx/index.d.mts +62 -0
- package/dist/client/lynx/index.mjs +24 -0
- package/dist/client/lynx/index.mjs.map +1 -0
- package/dist/client/lynx/lynx-store.d.mts +47 -0
- package/dist/client/lynx/lynx-store.mjs +47 -0
- package/dist/client/lynx/lynx-store.mjs.map +1 -0
- package/dist/client/online-manager.d.mts +12 -0
- package/dist/client/online-manager.mjs +35 -0
- package/dist/client/online-manager.mjs.map +1 -0
- package/dist/client/parser.mjs +73 -0
- package/dist/client/parser.mjs.map +1 -0
- package/dist/client/path-to-object.d.mts +57 -0
- package/dist/client/plugins/index.d.mts +58 -0
- package/dist/client/plugins/index.mjs +33 -0
- package/dist/client/plugins/infer-plugin.d.mts +9 -0
- package/dist/client/plugins/infer-plugin.mjs +11 -0
- package/dist/client/plugins/infer-plugin.mjs.map +1 -0
- package/dist/client/proxy.mjs +79 -0
- package/dist/client/proxy.mjs.map +1 -0
- package/dist/client/query.d.mts +23 -0
- package/dist/client/query.mjs +98 -0
- package/dist/client/query.mjs.map +1 -0
- package/dist/client/react/index.d.mts +63 -0
- package/dist/client/react/index.mjs +24 -0
- package/dist/client/react/index.mjs.map +1 -0
- package/dist/client/react/react-store.d.mts +47 -0
- package/dist/client/react/react-store.mjs +47 -0
- package/dist/client/react/react-store.mjs.map +1 -0
- package/dist/client/session-atom.mjs +29 -0
- package/dist/client/session-atom.mjs.map +1 -0
- package/dist/client/session-refresh.d.mts +28 -0
- package/dist/client/session-refresh.mjs +140 -0
- package/dist/client/session-refresh.mjs.map +1 -0
- package/dist/client/solid/index.d.mts +57 -0
- package/dist/client/solid/index.mjs +22 -0
- package/dist/client/solid/index.mjs.map +1 -0
- package/dist/client/solid/solid-store.mjs +24 -0
- package/dist/client/solid/solid-store.mjs.map +1 -0
- package/dist/client/svelte/index.d.mts +63 -0
- package/dist/client/svelte/index.mjs +20 -0
- package/dist/client/svelte/index.mjs.map +1 -0
- package/dist/client/types.d.mts +58 -0
- package/dist/client/vanilla.d.mts +62 -0
- package/dist/client/vanilla.mjs +20 -0
- package/dist/client/vanilla.mjs.map +1 -0
- package/dist/client/vue/index.d.mts +86 -0
- package/dist/client/vue/index.mjs +38 -0
- package/dist/client/vue/index.mjs.map +1 -0
- package/dist/client/vue/vue-store.mjs +26 -0
- package/dist/client/vue/vue-store.mjs.map +1 -0
- package/dist/context/create-context.mjs +211 -0
- package/dist/context/create-context.mjs.map +1 -0
- package/dist/context/helpers.mjs +62 -0
- package/dist/context/helpers.mjs.map +1 -0
- package/dist/context/init-minimal.mjs +20 -0
- package/dist/context/init-minimal.mjs.map +1 -0
- package/dist/context/init.mjs +22 -0
- package/dist/context/init.mjs.map +1 -0
- package/dist/cookies/cookie-utils.d.mts +29 -0
- package/dist/cookies/cookie-utils.mjs +105 -0
- package/dist/cookies/cookie-utils.mjs.map +1 -0
- package/dist/cookies/index.d.mts +67 -0
- package/dist/cookies/index.mjs +264 -0
- package/dist/cookies/index.mjs.map +1 -0
- package/dist/cookies/session-store.d.mts +36 -0
- package/dist/cookies/session-store.mjs +200 -0
- package/dist/cookies/session-store.mjs.map +1 -0
- package/dist/crypto/buffer.d.mts +8 -0
- package/dist/crypto/buffer.mjs +18 -0
- package/dist/crypto/buffer.mjs.map +1 -0
- package/dist/crypto/index.d.mts +27 -0
- package/dist/crypto/index.mjs +38 -0
- package/dist/crypto/index.mjs.map +1 -0
- package/dist/crypto/jwt.d.mts +8 -0
- package/dist/crypto/jwt.mjs +95 -0
- package/dist/crypto/jwt.mjs.map +1 -0
- package/dist/crypto/password.d.mts +12 -0
- package/dist/crypto/password.mjs +36 -0
- package/dist/crypto/password.mjs.map +1 -0
- package/dist/crypto/random.d.mts +5 -0
- package/dist/crypto/random.mjs +8 -0
- package/dist/crypto/random.mjs.map +1 -0
- package/dist/db/adapter-base.d.mts +8 -0
- package/dist/db/adapter-base.mjs +28 -0
- package/dist/db/adapter-base.mjs.map +1 -0
- package/dist/db/adapter-kysely.d.mts +8 -0
- package/dist/db/adapter-kysely.mjs +21 -0
- package/dist/db/adapter-kysely.mjs.map +1 -0
- package/dist/db/field-converter.d.mts +8 -0
- package/dist/db/field-converter.mjs +21 -0
- package/dist/db/field-converter.mjs.map +1 -0
- package/dist/db/field.d.mts +55 -0
- package/dist/db/field.mjs +11 -0
- package/dist/db/field.mjs.map +1 -0
- package/dist/db/get-migration.d.mts +23 -0
- package/dist/db/get-migration.mjs +339 -0
- package/dist/db/get-migration.mjs.map +1 -0
- package/dist/db/get-schema.d.mts +11 -0
- package/dist/db/get-schema.mjs +39 -0
- package/dist/db/get-schema.mjs.map +1 -0
- package/dist/db/index.d.mts +9 -0
- package/dist/db/index.mjs +36 -0
- package/dist/db/index.mjs.map +1 -0
- package/dist/db/internal-adapter.d.mts +14 -0
- package/dist/db/internal-adapter.mjs +616 -0
- package/dist/db/internal-adapter.mjs.map +1 -0
- package/dist/db/schema.d.mts +26 -0
- package/dist/db/schema.mjs +118 -0
- package/dist/db/schema.mjs.map +1 -0
- package/dist/db/to-zod.d.mts +36 -0
- package/dist/db/to-zod.mjs +26 -0
- package/dist/db/to-zod.mjs.map +1 -0
- package/dist/db/verification-token-storage.mjs +28 -0
- package/dist/db/verification-token-storage.mjs.map +1 -0
- package/dist/db/with-hooks.d.mts +33 -0
- package/dist/db/with-hooks.mjs +159 -0
- package/dist/db/with-hooks.mjs.map +1 -0
- package/dist/index.d.mts +52 -0
- package/dist/index.mjs +26 -0
- package/dist/integrations/next-js.d.mts +14 -0
- package/dist/integrations/next-js.mjs +78 -0
- package/dist/integrations/next-js.mjs.map +1 -0
- package/dist/integrations/node.d.mts +13 -0
- package/dist/integrations/node.mjs +16 -0
- package/dist/integrations/node.mjs.map +1 -0
- package/dist/integrations/solid-start.d.mts +23 -0
- package/dist/integrations/solid-start.mjs +17 -0
- package/dist/integrations/solid-start.mjs.map +1 -0
- package/dist/integrations/svelte-kit.d.mts +29 -0
- package/dist/integrations/svelte-kit.mjs +57 -0
- package/dist/integrations/svelte-kit.mjs.map +1 -0
- package/dist/integrations/tanstack-start-solid.d.mts +22 -0
- package/dist/integrations/tanstack-start-solid.mjs +61 -0
- package/dist/integrations/tanstack-start-solid.mjs.map +1 -0
- package/dist/integrations/tanstack-start.d.mts +22 -0
- package/dist/integrations/tanstack-start.mjs +61 -0
- package/dist/integrations/tanstack-start.mjs.map +1 -0
- package/dist/oauth2/index.d.mts +5 -0
- package/dist/oauth2/index.mjs +7 -0
- package/dist/oauth2/link-account.d.mts +31 -0
- package/dist/oauth2/link-account.mjs +144 -0
- package/dist/oauth2/link-account.mjs.map +1 -0
- package/dist/oauth2/state.d.mts +26 -0
- package/dist/oauth2/state.mjs +51 -0
- package/dist/oauth2/state.mjs.map +1 -0
- package/dist/oauth2/utils.d.mts +8 -0
- package/dist/oauth2/utils.mjs +31 -0
- package/dist/oauth2/utils.mjs.map +1 -0
- package/dist/plugins/access/access.d.mts +30 -0
- package/dist/plugins/access/access.mjs +46 -0
- package/dist/plugins/access/access.mjs.map +1 -0
- package/dist/plugins/access/index.d.mts +3 -0
- package/dist/plugins/access/index.mjs +3 -0
- package/dist/plugins/access/types.d.mts +17 -0
- package/dist/plugins/additional-fields/client.d.mts +14 -0
- package/dist/plugins/additional-fields/client.mjs +11 -0
- package/dist/plugins/additional-fields/client.mjs.map +1 -0
- package/dist/plugins/admin/access/index.d.mts +2 -0
- package/dist/plugins/admin/access/index.mjs +3 -0
- package/dist/plugins/admin/access/statement.d.mts +118 -0
- package/dist/plugins/admin/access/statement.mjs +53 -0
- package/dist/plugins/admin/access/statement.mjs.map +1 -0
- package/dist/plugins/admin/admin.d.mts +14 -0
- package/dist/plugins/admin/admin.mjs +95 -0
- package/dist/plugins/admin/admin.mjs.map +1 -0
- package/dist/plugins/admin/client.d.mts +14 -0
- package/dist/plugins/admin/client.mjs +36 -0
- package/dist/plugins/admin/client.mjs.map +1 -0
- package/dist/plugins/admin/error-codes.d.mts +5 -0
- package/dist/plugins/admin/error-codes.mjs +30 -0
- package/dist/plugins/admin/error-codes.mjs.map +1 -0
- package/dist/plugins/admin/has-permission.mjs +16 -0
- package/dist/plugins/admin/has-permission.mjs.map +1 -0
- package/dist/plugins/admin/index.d.mts +3 -0
- package/dist/plugins/admin/index.mjs +3 -0
- package/dist/plugins/admin/routes.mjs +855 -0
- package/dist/plugins/admin/routes.mjs.map +1 -0
- package/dist/plugins/admin/schema.d.mts +6 -0
- package/dist/plugins/admin/schema.mjs +34 -0
- package/dist/plugins/admin/schema.mjs.map +1 -0
- package/dist/plugins/admin/types.d.mts +89 -0
- package/dist/plugins/anonymous/client.d.mts +9 -0
- package/dist/plugins/anonymous/client.mjs +22 -0
- package/dist/plugins/anonymous/client.mjs.map +1 -0
- package/dist/plugins/anonymous/error-codes.d.mts +5 -0
- package/dist/plugins/anonymous/error-codes.mjs +16 -0
- package/dist/plugins/anonymous/error-codes.mjs.map +1 -0
- package/dist/plugins/anonymous/index.d.mts +14 -0
- package/dist/plugins/anonymous/index.mjs +163 -0
- package/dist/plugins/anonymous/index.mjs.map +1 -0
- package/dist/plugins/anonymous/schema.d.mts +5 -0
- package/dist/plugins/anonymous/schema.mjs +11 -0
- package/dist/plugins/anonymous/schema.mjs.map +1 -0
- package/dist/plugins/anonymous/types.d.mts +68 -0
- package/dist/plugins/api-key/adapter.mjs +468 -0
- package/dist/plugins/api-key/adapter.mjs.map +1 -0
- package/dist/plugins/api-key/client.d.mts +9 -0
- package/dist/plugins/api-key/client.mjs +19 -0
- package/dist/plugins/api-key/client.mjs.map +1 -0
- package/dist/plugins/api-key/error-codes.d.mts +5 -0
- package/dist/plugins/api-key/error-codes.mjs +34 -0
- package/dist/plugins/api-key/error-codes.mjs.map +1 -0
- package/dist/plugins/api-key/index.d.mts +17 -0
- package/dist/plugins/api-key/index.mjs +134 -0
- package/dist/plugins/api-key/index.mjs.map +1 -0
- package/dist/plugins/api-key/rate-limit.mjs +74 -0
- package/dist/plugins/api-key/rate-limit.mjs.map +1 -0
- package/dist/plugins/api-key/routes/create-api-key.mjs +252 -0
- package/dist/plugins/api-key/routes/create-api-key.mjs.map +1 -0
- package/dist/plugins/api-key/routes/delete-all-expired-api-keys.mjs +24 -0
- package/dist/plugins/api-key/routes/delete-all-expired-api-keys.mjs.map +1 -0
- package/dist/plugins/api-key/routes/delete-api-key.mjs +74 -0
- package/dist/plugins/api-key/routes/delete-api-key.mjs.map +1 -0
- package/dist/plugins/api-key/routes/get-api-key.mjs +158 -0
- package/dist/plugins/api-key/routes/get-api-key.mjs.map +1 -0
- package/dist/plugins/api-key/routes/index.mjs +71 -0
- package/dist/plugins/api-key/routes/index.mjs.map +1 -0
- package/dist/plugins/api-key/routes/list-api-keys.mjs +194 -0
- package/dist/plugins/api-key/routes/list-api-keys.mjs.map +1 -0
- package/dist/plugins/api-key/routes/update-api-key.mjs +248 -0
- package/dist/plugins/api-key/routes/update-api-key.mjs.map +1 -0
- package/dist/plugins/api-key/routes/verify-api-key.mjs +223 -0
- package/dist/plugins/api-key/routes/verify-api-key.mjs.map +1 -0
- package/dist/plugins/api-key/schema.d.mts +11 -0
- package/dist/plugins/api-key/schema.mjs +130 -0
- package/dist/plugins/api-key/schema.mjs.map +1 -0
- package/dist/plugins/api-key/types.d.mts +346 -0
- package/dist/plugins/bearer/index.d.mts +25 -0
- package/dist/plugins/bearer/index.mjs +66 -0
- package/dist/plugins/bearer/index.mjs.map +1 -0
- package/dist/plugins/captcha/constants.d.mts +10 -0
- package/dist/plugins/captcha/constants.mjs +22 -0
- package/dist/plugins/captcha/constants.mjs.map +1 -0
- package/dist/plugins/captcha/error-codes.mjs +16 -0
- package/dist/plugins/captcha/error-codes.mjs.map +1 -0
- package/dist/plugins/captcha/index.d.mts +14 -0
- package/dist/plugins/captcha/index.mjs +60 -0
- package/dist/plugins/captcha/index.mjs.map +1 -0
- package/dist/plugins/captcha/types.d.mts +28 -0
- package/dist/plugins/captcha/utils.mjs +11 -0
- package/dist/plugins/captcha/utils.mjs.map +1 -0
- package/dist/plugins/captcha/verify-handlers/captchafox.mjs +27 -0
- package/dist/plugins/captcha/verify-handlers/captchafox.mjs.map +1 -0
- package/dist/plugins/captcha/verify-handlers/cloudflare-turnstile.mjs +25 -0
- package/dist/plugins/captcha/verify-handlers/cloudflare-turnstile.mjs.map +1 -0
- package/dist/plugins/captcha/verify-handlers/google-recaptcha.mjs +29 -0
- package/dist/plugins/captcha/verify-handlers/google-recaptcha.mjs.map +1 -0
- package/dist/plugins/captcha/verify-handlers/h-captcha.mjs +27 -0
- package/dist/plugins/captcha/verify-handlers/h-captcha.mjs.map +1 -0
- package/dist/plugins/captcha/verify-handlers/index.mjs +6 -0
- package/dist/plugins/custom-session/client.d.mts +10 -0
- package/dist/plugins/custom-session/client.mjs +11 -0
- package/dist/plugins/custom-session/client.mjs.map +1 -0
- package/dist/plugins/custom-session/index.d.mts +26 -0
- package/dist/plugins/custom-session/index.mjs +70 -0
- package/dist/plugins/custom-session/index.mjs.map +1 -0
- package/dist/plugins/device-authorization/client.d.mts +5 -0
- package/dist/plugins/device-authorization/client.mjs +18 -0
- package/dist/plugins/device-authorization/client.mjs.map +1 -0
- package/dist/plugins/device-authorization/error-codes.mjs +21 -0
- package/dist/plugins/device-authorization/error-codes.mjs.map +1 -0
- package/dist/plugins/device-authorization/index.d.mts +28 -0
- package/dist/plugins/device-authorization/index.mjs +50 -0
- package/dist/plugins/device-authorization/index.mjs.map +1 -0
- package/dist/plugins/device-authorization/routes.mjs +510 -0
- package/dist/plugins/device-authorization/routes.mjs.map +1 -0
- package/dist/plugins/device-authorization/schema.mjs +57 -0
- package/dist/plugins/device-authorization/schema.mjs.map +1 -0
- package/dist/plugins/email-otp/client.d.mts +7 -0
- package/dist/plugins/email-otp/client.mjs +18 -0
- package/dist/plugins/email-otp/client.mjs.map +1 -0
- package/dist/plugins/email-otp/error-codes.d.mts +5 -0
- package/dist/plugins/email-otp/error-codes.mjs +12 -0
- package/dist/plugins/email-otp/error-codes.mjs.map +1 -0
- package/dist/plugins/email-otp/index.d.mts +14 -0
- package/dist/plugins/email-otp/index.mjs +108 -0
- package/dist/plugins/email-otp/index.mjs.map +1 -0
- package/dist/plugins/email-otp/otp-token.mjs +29 -0
- package/dist/plugins/email-otp/otp-token.mjs.map +1 -0
- package/dist/plugins/email-otp/routes.mjs +564 -0
- package/dist/plugins/email-otp/routes.mjs.map +1 -0
- package/dist/plugins/email-otp/types.d.mts +74 -0
- package/dist/plugins/email-otp/utils.mjs +17 -0
- package/dist/plugins/email-otp/utils.mjs.map +1 -0
- package/dist/plugins/generic-oauth/client.d.mts +19 -0
- package/dist/plugins/generic-oauth/client.mjs +14 -0
- package/dist/plugins/generic-oauth/client.mjs.map +1 -0
- package/dist/plugins/generic-oauth/error-codes.d.mts +5 -0
- package/dist/plugins/generic-oauth/error-codes.mjs +15 -0
- package/dist/plugins/generic-oauth/error-codes.mjs.map +1 -0
- package/dist/plugins/generic-oauth/index.d.mts +34 -0
- package/dist/plugins/generic-oauth/index.mjs +137 -0
- package/dist/plugins/generic-oauth/index.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/auth0.d.mts +37 -0
- package/dist/plugins/generic-oauth/providers/auth0.mjs +62 -0
- package/dist/plugins/generic-oauth/providers/auth0.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/gumroad.d.mts +32 -0
- package/dist/plugins/generic-oauth/providers/gumroad.mjs +60 -0
- package/dist/plugins/generic-oauth/providers/gumroad.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/hubspot.d.mts +37 -0
- package/dist/plugins/generic-oauth/providers/hubspot.mjs +60 -0
- package/dist/plugins/generic-oauth/providers/hubspot.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/index.d.mts +9 -0
- package/dist/plugins/generic-oauth/providers/index.mjs +11 -0
- package/dist/plugins/generic-oauth/providers/keycloak.d.mts +37 -0
- package/dist/plugins/generic-oauth/providers/keycloak.mjs +62 -0
- package/dist/plugins/generic-oauth/providers/keycloak.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/line.d.mts +55 -0
- package/dist/plugins/generic-oauth/providers/line.mjs +91 -0
- package/dist/plugins/generic-oauth/providers/line.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/microsoft-entra-id.d.mts +37 -0
- package/dist/plugins/generic-oauth/providers/microsoft-entra-id.mjs +66 -0
- package/dist/plugins/generic-oauth/providers/microsoft-entra-id.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/okta.d.mts +37 -0
- package/dist/plugins/generic-oauth/providers/okta.mjs +62 -0
- package/dist/plugins/generic-oauth/providers/okta.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/patreon.d.mts +30 -0
- package/dist/plugins/generic-oauth/providers/patreon.mjs +59 -0
- package/dist/plugins/generic-oauth/providers/patreon.mjs.map +1 -0
- package/dist/plugins/generic-oauth/providers/slack.d.mts +30 -0
- package/dist/plugins/generic-oauth/providers/slack.mjs +61 -0
- package/dist/plugins/generic-oauth/providers/slack.mjs.map +1 -0
- package/dist/plugins/generic-oauth/routes.mjs +394 -0
- package/dist/plugins/generic-oauth/routes.mjs.map +1 -0
- package/dist/plugins/generic-oauth/types.d.mts +145 -0
- package/dist/plugins/haveibeenpwned/index.d.mts +21 -0
- package/dist/plugins/haveibeenpwned/index.mjs +56 -0
- package/dist/plugins/haveibeenpwned/index.mjs.map +1 -0
- package/dist/plugins/index.d.mts +68 -0
- package/dist/plugins/index.mjs +51 -0
- package/dist/plugins/jwt/adapter.mjs +27 -0
- package/dist/plugins/jwt/adapter.mjs.map +1 -0
- package/dist/plugins/jwt/client.d.mts +18 -0
- package/dist/plugins/jwt/client.mjs +19 -0
- package/dist/plugins/jwt/client.mjs.map +1 -0
- package/dist/plugins/jwt/index.d.mts +17 -0
- package/dist/plugins/jwt/index.mjs +202 -0
- package/dist/plugins/jwt/index.mjs.map +1 -0
- package/dist/plugins/jwt/schema.d.mts +5 -0
- package/dist/plugins/jwt/schema.mjs +23 -0
- package/dist/plugins/jwt/schema.mjs.map +1 -0
- package/dist/plugins/jwt/sign.d.mts +57 -0
- package/dist/plugins/jwt/sign.mjs +66 -0
- package/dist/plugins/jwt/sign.mjs.map +1 -0
- package/dist/plugins/jwt/types.d.mts +194 -0
- package/dist/plugins/jwt/utils.d.mts +42 -0
- package/dist/plugins/jwt/utils.mjs +64 -0
- package/dist/plugins/jwt/utils.mjs.map +1 -0
- package/dist/plugins/jwt/verify.d.mts +12 -0
- package/dist/plugins/jwt/verify.mjs +46 -0
- package/dist/plugins/jwt/verify.mjs.map +1 -0
- package/dist/plugins/last-login-method/client.d.mts +18 -0
- package/dist/plugins/last-login-method/client.mjs +32 -0
- package/dist/plugins/last-login-method/client.mjs.map +1 -0
- package/dist/plugins/last-login-method/index.d.mts +52 -0
- package/dist/plugins/last-login-method/index.mjs +77 -0
- package/dist/plugins/last-login-method/index.mjs.map +1 -0
- package/dist/plugins/magic-link/client.d.mts +5 -0
- package/dist/plugins/magic-link/client.mjs +11 -0
- package/dist/plugins/magic-link/client.mjs.map +1 -0
- package/dist/plugins/magic-link/index.d.mts +61 -0
- package/dist/plugins/magic-link/index.mjs +167 -0
- package/dist/plugins/magic-link/index.mjs.map +1 -0
- package/dist/plugins/magic-link/utils.mjs +12 -0
- package/dist/plugins/magic-link/utils.mjs.map +1 -0
- package/dist/plugins/mcp/authorize.mjs +133 -0
- package/dist/plugins/mcp/authorize.mjs.map +1 -0
- package/dist/plugins/mcp/index.d.mts +46 -0
- package/dist/plugins/mcp/index.mjs +717 -0
- package/dist/plugins/mcp/index.mjs.map +1 -0
- package/dist/plugins/multi-session/client.d.mts +8 -0
- package/dist/plugins/multi-session/client.mjs +20 -0
- package/dist/plugins/multi-session/client.mjs.map +1 -0
- package/dist/plugins/multi-session/error-codes.d.mts +5 -0
- package/dist/plugins/multi-session/error-codes.mjs +8 -0
- package/dist/plugins/multi-session/error-codes.mjs.map +1 -0
- package/dist/plugins/multi-session/index.d.mts +22 -0
- package/dist/plugins/multi-session/index.mjs +172 -0
- package/dist/plugins/multi-session/index.mjs.map +1 -0
- package/dist/plugins/oauth-proxy/index.d.mts +39 -0
- package/dist/plugins/oauth-proxy/index.mjs +305 -0
- package/dist/plugins/oauth-proxy/index.mjs.map +1 -0
- package/dist/plugins/oauth-proxy/utils.mjs +44 -0
- package/dist/plugins/oauth-proxy/utils.mjs.map +1 -0
- package/dist/plugins/oidc-provider/authorize.mjs +194 -0
- package/dist/plugins/oidc-provider/authorize.mjs.map +1 -0
- package/dist/plugins/oidc-provider/client.d.mts +8 -0
- package/dist/plugins/oidc-provider/client.mjs +11 -0
- package/dist/plugins/oidc-provider/client.mjs.map +1 -0
- package/dist/plugins/oidc-provider/error.mjs +17 -0
- package/dist/plugins/oidc-provider/error.mjs.map +1 -0
- package/dist/plugins/oidc-provider/index.d.mts +32 -0
- package/dist/plugins/oidc-provider/index.mjs +1093 -0
- package/dist/plugins/oidc-provider/index.mjs.map +1 -0
- package/dist/plugins/oidc-provider/schema.d.mts +26 -0
- package/dist/plugins/oidc-provider/schema.mjs +132 -0
- package/dist/plugins/oidc-provider/schema.mjs.map +1 -0
- package/dist/plugins/oidc-provider/types.d.mts +517 -0
- package/dist/plugins/oidc-provider/utils/prompt.mjs +19 -0
- package/dist/plugins/oidc-provider/utils/prompt.mjs.map +1 -0
- package/dist/plugins/oidc-provider/utils.mjs +15 -0
- package/dist/plugins/oidc-provider/utils.mjs.map +1 -0
- package/dist/plugins/one-tap/client.d.mts +159 -0
- package/dist/plugins/one-tap/client.mjs +214 -0
- package/dist/plugins/one-tap/client.mjs.map +1 -0
- package/dist/plugins/one-tap/index.d.mts +27 -0
- package/dist/plugins/one-tap/index.mjs +96 -0
- package/dist/plugins/one-tap/index.mjs.map +1 -0
- package/dist/plugins/one-time-token/client.d.mts +7 -0
- package/dist/plugins/one-time-token/client.mjs +11 -0
- package/dist/plugins/one-time-token/client.mjs.map +1 -0
- package/dist/plugins/one-time-token/index.d.mts +53 -0
- package/dist/plugins/one-time-token/index.mjs +82 -0
- package/dist/plugins/one-time-token/index.mjs.map +1 -0
- package/dist/plugins/one-time-token/utils.mjs +12 -0
- package/dist/plugins/one-time-token/utils.mjs.map +1 -0
- package/dist/plugins/open-api/generator.d.mts +115 -0
- package/dist/plugins/open-api/generator.mjs +315 -0
- package/dist/plugins/open-api/generator.mjs.map +1 -0
- package/dist/plugins/open-api/index.d.mts +45 -0
- package/dist/plugins/open-api/index.mjs +67 -0
- package/dist/plugins/open-api/index.mjs.map +1 -0
- package/dist/plugins/open-api/logo.mjs +15 -0
- package/dist/plugins/open-api/logo.mjs.map +1 -0
- package/dist/plugins/organization/access/index.d.mts +2 -0
- package/dist/plugins/organization/access/index.mjs +3 -0
- package/dist/plugins/organization/access/statement.d.mts +249 -0
- package/dist/plugins/organization/access/statement.mjs +81 -0
- package/dist/plugins/organization/access/statement.mjs.map +1 -0
- package/dist/plugins/organization/adapter.d.mts +205 -0
- package/dist/plugins/organization/adapter.mjs +624 -0
- package/dist/plugins/organization/adapter.mjs.map +1 -0
- package/dist/plugins/organization/call.mjs +19 -0
- package/dist/plugins/organization/call.mjs.map +1 -0
- package/dist/plugins/organization/client.d.mts +151 -0
- package/dist/plugins/organization/client.mjs +107 -0
- package/dist/plugins/organization/client.mjs.map +1 -0
- package/dist/plugins/organization/error-codes.d.mts +5 -0
- package/dist/plugins/organization/error-codes.mjs +65 -0
- package/dist/plugins/organization/error-codes.mjs.map +1 -0
- package/dist/plugins/organization/has-permission.mjs +35 -0
- package/dist/plugins/organization/has-permission.mjs.map +1 -0
- package/dist/plugins/organization/index.d.mts +5 -0
- package/dist/plugins/organization/index.mjs +4 -0
- package/dist/plugins/organization/organization.d.mts +252 -0
- package/dist/plugins/organization/organization.mjs +428 -0
- package/dist/plugins/organization/organization.mjs.map +1 -0
- package/dist/plugins/organization/permission.d.mts +26 -0
- package/dist/plugins/organization/permission.mjs +16 -0
- package/dist/plugins/organization/permission.mjs.map +1 -0
- package/dist/plugins/organization/routes/crud-access-control.d.mts +11 -0
- package/dist/plugins/organization/routes/crud-access-control.mjs +656 -0
- package/dist/plugins/organization/routes/crud-access-control.mjs.map +1 -0
- package/dist/plugins/organization/routes/crud-invites.d.mts +16 -0
- package/dist/plugins/organization/routes/crud-invites.mjs +555 -0
- package/dist/plugins/organization/routes/crud-invites.mjs.map +1 -0
- package/dist/plugins/organization/routes/crud-members.d.mts +13 -0
- package/dist/plugins/organization/routes/crud-members.mjs +473 -0
- package/dist/plugins/organization/routes/crud-members.mjs.map +1 -0
- package/dist/plugins/organization/routes/crud-org.d.mts +13 -0
- package/dist/plugins/organization/routes/crud-org.mjs +447 -0
- package/dist/plugins/organization/routes/crud-org.mjs.map +1 -0
- package/dist/plugins/organization/routes/crud-team.d.mts +15 -0
- package/dist/plugins/organization/routes/crud-team.mjs +676 -0
- package/dist/plugins/organization/routes/crud-team.mjs.map +1 -0
- package/dist/plugins/organization/schema.d.mts +376 -0
- package/dist/plugins/organization/schema.mjs +68 -0
- package/dist/plugins/organization/schema.mjs.map +1 -0
- package/dist/plugins/organization/types.d.mts +733 -0
- package/dist/plugins/phone-number/client.d.mts +8 -0
- package/dist/plugins/phone-number/client.mjs +20 -0
- package/dist/plugins/phone-number/client.mjs.map +1 -0
- package/dist/plugins/phone-number/error-codes.d.mts +5 -0
- package/dist/plugins/phone-number/error-codes.mjs +21 -0
- package/dist/plugins/phone-number/error-codes.mjs.map +1 -0
- package/dist/plugins/phone-number/index.d.mts +14 -0
- package/dist/plugins/phone-number/index.mjs +49 -0
- package/dist/plugins/phone-number/index.mjs.map +1 -0
- package/dist/plugins/phone-number/routes.mjs +459 -0
- package/dist/plugins/phone-number/routes.mjs.map +1 -0
- package/dist/plugins/phone-number/schema.d.mts +5 -0
- package/dist/plugins/phone-number/schema.mjs +20 -0
- package/dist/plugins/phone-number/schema.mjs.map +1 -0
- package/dist/plugins/phone-number/types.d.mts +118 -0
- package/dist/plugins/siwe/client.d.mts +5 -0
- package/dist/plugins/siwe/client.mjs +11 -0
- package/dist/plugins/siwe/client.mjs.map +1 -0
- package/dist/plugins/siwe/error-codes.mjs +13 -0
- package/dist/plugins/siwe/error-codes.mjs.map +1 -0
- package/dist/plugins/siwe/index.d.mts +26 -0
- package/dist/plugins/siwe/index.mjs +261 -0
- package/dist/plugins/siwe/index.mjs.map +1 -0
- package/dist/plugins/siwe/schema.d.mts +5 -0
- package/dist/plugins/siwe/schema.mjs +32 -0
- package/dist/plugins/siwe/schema.mjs.map +1 -0
- package/dist/plugins/siwe/types.d.mts +44 -0
- package/dist/plugins/two-factor/backup-codes/index.d.mts +91 -0
- package/dist/plugins/two-factor/backup-codes/index.mjs +277 -0
- package/dist/plugins/two-factor/backup-codes/index.mjs.map +1 -0
- package/dist/plugins/two-factor/client.d.mts +17 -0
- package/dist/plugins/two-factor/client.mjs +37 -0
- package/dist/plugins/two-factor/client.mjs.map +1 -0
- package/dist/plugins/two-factor/constant.mjs +8 -0
- package/dist/plugins/two-factor/constant.mjs.map +1 -0
- package/dist/plugins/two-factor/error-code.d.mts +5 -0
- package/dist/plugins/two-factor/error-code.mjs +18 -0
- package/dist/plugins/two-factor/error-code.mjs.map +1 -0
- package/dist/plugins/two-factor/index.d.mts +19 -0
- package/dist/plugins/two-factor/index.mjs +207 -0
- package/dist/plugins/two-factor/index.mjs.map +1 -0
- package/dist/plugins/two-factor/otp/index.d.mts +96 -0
- package/dist/plugins/two-factor/otp/index.mjs +199 -0
- package/dist/plugins/two-factor/otp/index.mjs.map +1 -0
- package/dist/plugins/two-factor/schema.d.mts +5 -0
- package/dist/plugins/two-factor/schema.mjs +36 -0
- package/dist/plugins/two-factor/schema.mjs.map +1 -0
- package/dist/plugins/two-factor/totp/index.d.mts +81 -0
- package/dist/plugins/two-factor/totp/index.mjs +157 -0
- package/dist/plugins/two-factor/totp/index.mjs.map +1 -0
- package/dist/plugins/two-factor/types.d.mts +65 -0
- package/dist/plugins/two-factor/utils.mjs +12 -0
- package/dist/plugins/two-factor/utils.mjs.map +1 -0
- package/dist/plugins/two-factor/verify-two-factor.mjs +76 -0
- package/dist/plugins/two-factor/verify-two-factor.mjs.map +1 -0
- package/dist/plugins/username/client.d.mts +7 -0
- package/dist/plugins/username/client.mjs +18 -0
- package/dist/plugins/username/client.mjs.map +1 -0
- package/dist/plugins/username/error-codes.d.mts +5 -0
- package/dist/plugins/username/error-codes.mjs +17 -0
- package/dist/plugins/username/error-codes.mjs.map +1 -0
- package/dist/plugins/username/index.d.mts +74 -0
- package/dist/plugins/username/index.mjs +237 -0
- package/dist/plugins/username/index.mjs.map +1 -0
- package/dist/plugins/username/schema.d.mts +9 -0
- package/dist/plugins/username/schema.mjs +26 -0
- package/dist/plugins/username/schema.mjs.map +1 -0
- package/dist/social-providers/index.d.mts +1 -0
- package/dist/social-providers/index.mjs +3 -0
- package/dist/state.d.mts +42 -0
- package/dist/state.mjs +107 -0
- package/dist/state.mjs.map +1 -0
- package/dist/test-utils/headers.d.mts +9 -0
- package/dist/test-utils/headers.mjs +24 -0
- package/dist/test-utils/headers.mjs.map +1 -0
- package/dist/test-utils/index.d.mts +3 -0
- package/dist/test-utils/index.mjs +4 -0
- package/dist/test-utils/test-instance.d.mts +181 -0
- package/dist/test-utils/test-instance.mjs +210 -0
- package/dist/test-utils/test-instance.mjs.map +1 -0
- package/dist/types/adapter.d.mts +24 -0
- package/dist/types/api.d.mts +62 -0
- package/dist/types/auth.d.mts +30 -0
- package/dist/types/helper.d.mts +21 -0
- package/dist/types/index.d.mts +11 -0
- package/dist/types/index.mjs +1 -0
- package/dist/types/models.d.mts +17 -0
- package/dist/types/plugins.d.mts +16 -0
- package/dist/utils/boolean.mjs +8 -0
- package/dist/utils/boolean.mjs.map +1 -0
- package/dist/utils/constants.mjs +6 -0
- package/dist/utils/constants.mjs.map +1 -0
- package/dist/utils/date.mjs +8 -0
- package/dist/utils/date.mjs.map +1 -0
- package/dist/utils/get-request-ip.d.mts +7 -0
- package/dist/utils/get-request-ip.mjs +23 -0
- package/dist/utils/get-request-ip.mjs.map +1 -0
- package/dist/utils/hashing.mjs +21 -0
- package/dist/utils/hashing.mjs.map +1 -0
- package/dist/utils/hide-metadata.d.mts +7 -0
- package/dist/utils/hide-metadata.mjs +6 -0
- package/dist/utils/hide-metadata.mjs.map +1 -0
- package/dist/utils/index.d.mts +3 -0
- package/dist/utils/index.mjs +5 -0
- package/dist/utils/is-api-error.d.mts +7 -0
- package/dist/utils/is-api-error.mjs +11 -0
- package/dist/utils/is-api-error.mjs.map +1 -0
- package/dist/utils/is-atom.mjs +8 -0
- package/dist/utils/is-atom.mjs.map +1 -0
- package/dist/utils/is-promise.mjs +8 -0
- package/dist/utils/is-promise.mjs.map +1 -0
- package/dist/utils/middleware-response.mjs +6 -0
- package/dist/utils/middleware-response.mjs.map +1 -0
- package/dist/utils/password.mjs +26 -0
- package/dist/utils/password.mjs.map +1 -0
- package/dist/utils/plugin-helper.mjs +17 -0
- package/dist/utils/plugin-helper.mjs.map +1 -0
- package/dist/utils/shim.mjs +24 -0
- package/dist/utils/shim.mjs.map +1 -0
- package/dist/utils/time.d.mts +49 -0
- package/dist/utils/time.mjs +100 -0
- package/dist/utils/time.mjs.map +1 -0
- package/dist/utils/url.mjs +92 -0
- package/dist/utils/url.mjs.map +1 -0
- package/dist/utils/wildcard.mjs +108 -0
- package/dist/utils/wildcard.mjs.map +1 -0
- package/package.json +601 -0
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"routes.mjs","names":[],"sources":["../../../src/plugins/phone-number/routes.ts"],"sourcesContent":["import { createAuthEndpoint } from \"@better-auth/core/api\";\nimport { APIError, BASE_ERROR_CODES } from \"@better-auth/core/error\";\nimport * as z from \"zod\";\nimport { getSessionFromCtx } from \"../../api\";\nimport { setSessionCookie } from \"../../cookies\";\nimport { generateRandomString } from \"../../crypto/random\";\nimport { parseUserOutput } from \"../../db/schema\";\nimport type { User } from \"../../types\";\nimport { getDate } from \"../../utils/date\";\nimport { PHONE_NUMBER_ERROR_CODES } from \"./error-codes\";\nimport type { PhoneNumberOptions, UserWithPhoneNumber } from \"./types\";\n\nexport type RequiredPhoneNumberOptions = PhoneNumberOptions & {\n\texpiresIn: number;\n\totpLength: number;\n\tphoneNumber: string;\n\tphoneNumberVerified: string;\n\tcode: string;\n\tcreatedAt: string;\n};\n\nconst signInPhoneNumberBodySchema = z.object({\n\tphoneNumber: z.string().meta({\n\t\tdescription: 'Phone number to sign in. Eg: \"+1234567890\"',\n\t}),\n\tpassword: z.string().meta({\n\t\tdescription: \"Password to use for sign in.\",\n\t}),\n\trememberMe: z\n\t\t.boolean()\n\t\t.meta({\n\t\t\tdescription: \"Remember the session. Eg: true\",\n\t\t})\n\t\t.optional(),\n});\n\n/**\n * ### Endpoint\n *\n * POST `/sign-in/phone-number`\n *\n * ### API Methods\n *\n * **server:**\n * `auth.api.signInPhoneNumber`\n *\n * **client:**\n * `authClient.signIn.phoneNumber`\n *\n * @see [Read our docs to learn more.](https://better-auth.com/docs/plugins/phone-number#api-method-sign-in-phone-number)\n */\nexport const signInPhoneNumber = (opts: RequiredPhoneNumberOptions) =>\n\tcreateAuthEndpoint(\n\t\t\"/sign-in/phone-number\",\n\t\t{\n\t\t\tmethod: \"POST\",\n\t\t\tbody: signInPhoneNumberBodySchema,\n\t\t\tmetadata: {\n\t\t\t\topenapi: {\n\t\t\t\t\tsummary: \"Sign in with phone number\",\n\t\t\t\t\tdescription: \"Use this endpoint to sign in with phone number\",\n\t\t\t\t\tresponses: {\n\t\t\t\t\t\t200: {\n\t\t\t\t\t\t\tdescription: \"Success\",\n\t\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\t\t\t\t\tuser: {\n\t\t\t\t\t\t\t\t\t\t\t\t$ref: \"#/components/schemas/User\",\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\tsession: {\n\t\t\t\t\t\t\t\t\t\t\t\t$ref: \"#/components/schemas/Session\",\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t\t400: {\n\t\t\t\t\t\t\tdescription: \"Invalid phone number or password\",\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t},\n\t\tasync (ctx) => {\n\t\t\tconst { password, phoneNumber } = ctx.body;\n\n\t\t\tif (opts.phoneNumberValidator) {\n\t\t\t\tconst isValidNumber = await opts.phoneNumberValidator(\n\t\t\t\t\tctx.body.phoneNumber,\n\t\t\t\t);\n\t\t\t\tif (!isValidNumber) {\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_PHONE_NUMBER,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t}\n\n\t\t\tconst user = await ctx.context.adapter.findOne<UserWithPhoneNumber>({\n\t\t\t\tmodel: \"user\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tfield: \"phoneNumber\",\n\t\t\t\t\t\tvalue: phoneNumber,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t});\n\t\t\tif (!user) {\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_PHONE_NUMBER_OR_PASSWORD,\n\t\t\t\t);\n\t\t\t}\n\t\t\tif (opts.requireVerification) {\n\t\t\t\tif (!user.phoneNumberVerified) {\n\t\t\t\t\tconst otp = generateOTP(opts.otpLength);\n\t\t\t\t\tawait ctx.context.internalAdapter.createVerificationValue({\n\t\t\t\t\t\tvalue: otp,\n\t\t\t\t\t\tidentifier: phoneNumber,\n\t\t\t\t\t\texpiresAt: getDate(opts.expiresIn, \"sec\"),\n\t\t\t\t\t});\n\t\t\t\t\tif (opts.sendOTP) {\n\t\t\t\t\t\tawait ctx.context.runInBackgroundOrAwait(\n\t\t\t\t\t\t\topts.sendOTP(\n\t\t\t\t\t\t\t\t{\n\t\t\t\t\t\t\t\t\tphoneNumber,\n\t\t\t\t\t\t\t\t\tcode: otp,\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\tctx,\n\t\t\t\t\t\t\t),\n\t\t\t\t\t\t);\n\t\t\t\t\t}\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.PHONE_NUMBER_NOT_VERIFIED,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t}\n\t\t\tconst accounts = await ctx.context.internalAdapter.findAccountByUserId(\n\t\t\t\tuser.id,\n\t\t\t);\n\t\t\tconst credentialAccount = accounts.find(\n\t\t\t\t(a) => a.providerId === \"credential\",\n\t\t\t);\n\t\t\tif (!credentialAccount) {\n\t\t\t\tctx.context.logger.error(\"Credential account not found\", {\n\t\t\t\t\tphoneNumber,\n\t\t\t\t});\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_PHONE_NUMBER_OR_PASSWORD,\n\t\t\t\t);\n\t\t\t}\n\t\t\tconst currentPassword = credentialAccount?.password;\n\t\t\tif (!currentPassword) {\n\t\t\t\tctx.context.logger.error(\"Password not found\", { phoneNumber });\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.UNEXPECTED_ERROR,\n\t\t\t\t);\n\t\t\t}\n\t\t\tconst validPassword = await ctx.context.password.verify({\n\t\t\t\thash: currentPassword,\n\t\t\t\tpassword,\n\t\t\t});\n\t\t\tif (!validPassword) {\n\t\t\t\tctx.context.logger.error(\"Invalid password\");\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_PHONE_NUMBER_OR_PASSWORD,\n\t\t\t\t);\n\t\t\t}\n\t\t\tconst session = await ctx.context.internalAdapter.createSession(\n\t\t\t\tuser.id,\n\t\t\t\tctx.body.rememberMe === false,\n\t\t\t);\n\t\t\tif (!session) {\n\t\t\t\tctx.context.logger.error(\"Failed to create session\");\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\tBASE_ERROR_CODES.FAILED_TO_CREATE_SESSION,\n\t\t\t\t);\n\t\t\t}\n\n\t\t\tawait setSessionCookie(\n\t\t\t\tctx,\n\t\t\t\t{\n\t\t\t\t\tsession,\n\t\t\t\t\tuser: user,\n\t\t\t\t},\n\t\t\t\tctx.body.rememberMe === false,\n\t\t\t);\n\t\t\treturn ctx.json({\n\t\t\t\ttoken: session.token,\n\t\t\t\tuser: parseUserOutput(ctx.context.options, user),\n\t\t\t});\n\t\t},\n\t);\n\nconst sendPhoneNumberOTPBodySchema = z.object({\n\tphoneNumber: z.string().meta({\n\t\tdescription: 'Phone number to send OTP. Eg: \"+1234567890\"',\n\t}),\n});\n\n/**\n * ### Endpoint\n *\n * POST `/phone-number/send-otp`\n *\n * ### API Methods\n *\n * **server:**\n * `auth.api.sendPhoneNumberOTP`\n *\n * **client:**\n * `authClient.phoneNumber.sendOtp`\n *\n * @see [Read our docs to learn more.](https://better-auth.com/docs/plugins/phone-number#api-method-phone-number-send-otp)\n */\nexport const sendPhoneNumberOTP = (opts: RequiredPhoneNumberOptions) =>\n\tcreateAuthEndpoint(\n\t\t\"/phone-number/send-otp\",\n\t\t{\n\t\t\tmethod: \"POST\",\n\t\t\tbody: sendPhoneNumberOTPBodySchema,\n\t\t\tmetadata: {\n\t\t\t\topenapi: {\n\t\t\t\t\tsummary: \"Send OTP to phone number\",\n\t\t\t\t\tdescription: \"Use this endpoint to send OTP to phone number\",\n\t\t\t\t\tresponses: {\n\t\t\t\t\t\t200: {\n\t\t\t\t\t\t\tdescription: \"Success\",\n\t\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t},\n\t\tasync (ctx) => {\n\t\t\tif (!opts?.sendOTP) {\n\t\t\t\tctx.context.logger.warn(\"sendOTP not implemented\");\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"NOT_IMPLEMENTED\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.SEND_OTP_NOT_IMPLEMENTED,\n\t\t\t\t);\n\t\t\t}\n\n\t\t\tif (opts.phoneNumberValidator) {\n\t\t\t\tconst isValidNumber = await opts.phoneNumberValidator(\n\t\t\t\t\tctx.body.phoneNumber,\n\t\t\t\t);\n\t\t\t\tif (!isValidNumber) {\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_PHONE_NUMBER,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t}\n\n\t\t\tconst code = generateOTP(opts.otpLength);\n\t\t\tawait ctx.context.internalAdapter.createVerificationValue({\n\t\t\t\tvalue: `${code}:0`,\n\t\t\t\tidentifier: ctx.body.phoneNumber,\n\t\t\t\texpiresAt: getDate(opts.expiresIn, \"sec\"),\n\t\t\t});\n\t\t\tawait ctx.context.runInBackgroundOrAwait(\n\t\t\t\topts.sendOTP(\n\t\t\t\t\t{\n\t\t\t\t\t\tphoneNumber: ctx.body.phoneNumber,\n\t\t\t\t\t\tcode,\n\t\t\t\t\t},\n\t\t\t\t\tctx,\n\t\t\t\t),\n\t\t\t);\n\t\t\treturn ctx.json({ message: \"code sent\" });\n\t\t},\n\t);\n\nconst verifyPhoneNumberBodySchema = z.object({\n\t/**\n\t * Phone number\n\t */\n\tphoneNumber: z.string().meta({\n\t\tdescription: 'Phone number to verify. Eg: \"+1234567890\"',\n\t}),\n\t/**\n\t * OTP code\n\t */\n\tcode: z.string().meta({\n\t\tdescription: 'OTP code. Eg: \"123456\"',\n\t}),\n\t/**\n\t * Disable session creation after verification\n\t * @default false\n\t */\n\tdisableSession: z\n\t\t.boolean()\n\t\t.meta({\n\t\t\tdescription: \"Disable session creation after verification. Eg: false\",\n\t\t})\n\t\t.optional(),\n\t/**\n\t * This checks if there is a session already\n\t * and updates the phone number with the provided\n\t * phone number\n\t */\n\tupdatePhoneNumber: z\n\t\t.boolean()\n\t\t.meta({\n\t\t\tdescription:\n\t\t\t\t\"Check if there is a session and update the phone number. Eg: true\",\n\t\t})\n\t\t.optional(),\n});\n\n/**\n * ### Endpoint\n *\n * POST `/phone-number/verify`\n *\n * ### API Methods\n *\n * **server:**\n * `auth.api.verifyPhoneNumber`\n *\n * **client:**\n * `authClient.phoneNumber.verify`\n *\n * @see [Read our docs to learn more.](https://better-auth.com/docs/plugins/phone-number#api-method-phone-number-verify)\n */\nexport const verifyPhoneNumber = (opts: RequiredPhoneNumberOptions) =>\n\tcreateAuthEndpoint(\n\t\t\"/phone-number/verify\",\n\t\t{\n\t\t\tmethod: \"POST\",\n\t\t\tbody: verifyPhoneNumberBodySchema,\n\t\t\tmetadata: {\n\t\t\t\topenapi: {\n\t\t\t\t\tsummary: \"Verify phone number\",\n\t\t\t\t\tdescription: \"Use this endpoint to verify phone number\",\n\t\t\t\t\tresponses: {\n\t\t\t\t\t\t\"200\": {\n\t\t\t\t\t\t\tdescription: \"Phone number verified successfully\",\n\t\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\t\t\t\t\tstatus: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"boolean\",\n\t\t\t\t\t\t\t\t\t\t\t\tdescription:\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"Indicates if the verification was successful\",\n\t\t\t\t\t\t\t\t\t\t\t\tenum: [true],\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\ttoken: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\tnullable: true,\n\t\t\t\t\t\t\t\t\t\t\t\tdescription:\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"Session token if session is created, null if disableSession is true or no session is created\",\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\tuser: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\t\t\tnullable: true,\n\t\t\t\t\t\t\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\t\t\t\t\t\t\tid: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"Unique identifier of the user\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\temail: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tformat: \"email\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tnullable: true,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"User's email address\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\temailVerified: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"boolean\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tnullable: true,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"Whether the email is verified\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\tname: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tnullable: true,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"User's name\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\timage: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tformat: \"uri\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tnullable: true,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"User's profile image URL\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\tphoneNumber: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"User's phone number\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\tphoneNumberVerified: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"boolean\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"Whether the phone number is verified\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\tcreatedAt: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tformat: \"date-time\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription: \"Timestamp when the user was created\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t\tupdatedAt: {\n\t\t\t\t\t\t\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tformat: \"date-time\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tdescription:\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Timestamp when the user was last updated\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t\t\trequired: [\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"id\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"phoneNumber\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"phoneNumberVerified\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"createdAt\",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"updatedAt\",\n\t\t\t\t\t\t\t\t\t\t\t\t],\n\t\t\t\t\t\t\t\t\t\t\t\tdescription:\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"User object with phone number details, null if no user is created or found\",\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\trequired: [\"status\"],\n\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t\t400: {\n\t\t\t\t\t\t\tdescription: \"Invalid OTP\",\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t},\n\t\tasync (ctx) => {\n\t\t\tif (opts?.verifyOTP) {\n\t\t\t\t// Use custom verifyOTP if provided\n\t\t\t\tconst isValid = await opts.verifyOTP(\n\t\t\t\t\t{\n\t\t\t\t\t\tphoneNumber: ctx.body.phoneNumber,\n\t\t\t\t\t\tcode: ctx.body.code,\n\t\t\t\t\t},\n\t\t\t\t\tctx,\n\t\t\t\t);\n\n\t\t\t\tif (!isValid) {\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_OTP,\n\t\t\t\t\t);\n\t\t\t\t}\n\n\t\t\t\t// Clean up verification value\n\t\t\t\tconst otp = await ctx.context.internalAdapter.findVerificationValue(\n\t\t\t\t\tctx.body.phoneNumber,\n\t\t\t\t);\n\t\t\t\tif (otp) {\n\t\t\t\t\tawait ctx.context.internalAdapter.deleteVerificationValue(otp.id);\n\t\t\t\t}\n\t\t\t} else {\n\t\t\t\t// Default internal verification logic\n\t\t\t\tconst otp = await ctx.context.internalAdapter.findVerificationValue(\n\t\t\t\t\tctx.body.phoneNumber,\n\t\t\t\t);\n\n\t\t\t\tif (!otp || otp.expiresAt < new Date()) {\n\t\t\t\t\tif (otp && otp.expiresAt < new Date()) {\n\t\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.OTP_EXPIRED,\n\t\t\t\t\t\t);\n\t\t\t\t\t}\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.OTP_NOT_FOUND,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t\tconst [otpValue, attempts] = otp.value.split(\":\");\n\t\t\t\tconst allowedAttempts = opts?.allowedAttempts || 3;\n\t\t\t\tif (attempts && parseInt(attempts) >= allowedAttempts) {\n\t\t\t\t\tawait ctx.context.internalAdapter.deleteVerificationValue(otp.id);\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"FORBIDDEN\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.TOO_MANY_ATTEMPTS,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t\tif (otpValue !== ctx.body.code) {\n\t\t\t\t\tawait ctx.context.internalAdapter.updateVerificationValue(otp.id, {\n\t\t\t\t\t\tvalue: `${otpValue}:${parseInt(attempts || \"0\") + 1}`,\n\t\t\t\t\t});\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_OTP,\n\t\t\t\t\t);\n\t\t\t\t}\n\n\t\t\t\tawait ctx.context.internalAdapter.deleteVerificationValue(otp.id);\n\t\t\t}\n\n\t\t\tif (ctx.body.updatePhoneNumber) {\n\t\t\t\tconst session = await getSessionFromCtx(ctx);\n\t\t\t\tif (!session) {\n\t\t\t\t\tthrow APIError.from(\"UNAUTHORIZED\", BASE_ERROR_CODES.USER_NOT_FOUND);\n\t\t\t\t}\n\t\t\t\tconst existingUser =\n\t\t\t\t\tawait ctx.context.adapter.findMany<UserWithPhoneNumber>({\n\t\t\t\t\t\tmodel: \"user\",\n\t\t\t\t\t\twhere: [\n\t\t\t\t\t\t\t{\n\t\t\t\t\t\t\t\tfield: \"phoneNumber\",\n\t\t\t\t\t\t\t\tvalue: ctx.body.phoneNumber,\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t],\n\t\t\t\t\t});\n\t\t\t\tif (existingUser.length) {\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.PHONE_NUMBER_EXIST,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t\tconst user =\n\t\t\t\t\tawait ctx.context.internalAdapter.updateUser<UserWithPhoneNumber>(\n\t\t\t\t\t\tsession.user.id,\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\t[opts.phoneNumber]: ctx.body.phoneNumber,\n\t\t\t\t\t\t\t[opts.phoneNumberVerified]: true,\n\t\t\t\t\t\t},\n\t\t\t\t\t);\n\t\t\t\treturn ctx.json({\n\t\t\t\t\tstatus: true,\n\t\t\t\t\ttoken: session.session.token,\n\t\t\t\t\tuser: parseUserOutput(ctx.context.options, user),\n\t\t\t\t});\n\t\t\t}\n\n\t\t\tlet user = await ctx.context.adapter.findOne<UserWithPhoneNumber>({\n\t\t\t\tmodel: \"user\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tvalue: ctx.body.phoneNumber,\n\t\t\t\t\t\tfield: opts.phoneNumber,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t});\n\t\t\tif (!user) {\n\t\t\t\tif (opts?.signUpOnVerification) {\n\t\t\t\t\tuser =\n\t\t\t\t\t\tawait ctx.context.internalAdapter.createUser<UserWithPhoneNumber>({\n\t\t\t\t\t\t\temail: opts.signUpOnVerification.getTempEmail(\n\t\t\t\t\t\t\t\tctx.body.phoneNumber,\n\t\t\t\t\t\t\t),\n\t\t\t\t\t\t\tname: opts.signUpOnVerification.getTempName\n\t\t\t\t\t\t\t\t? opts.signUpOnVerification.getTempName(ctx.body.phoneNumber)\n\t\t\t\t\t\t\t\t: ctx.body.phoneNumber,\n\t\t\t\t\t\t\t[opts.phoneNumber]: ctx.body.phoneNumber,\n\t\t\t\t\t\t\t[opts.phoneNumberVerified]: true,\n\t\t\t\t\t\t});\n\t\t\t\t\tif (!user) {\n\t\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\t\"INTERNAL_SERVER_ERROR\",\n\t\t\t\t\t\t\tBASE_ERROR_CODES.FAILED_TO_CREATE_USER,\n\t\t\t\t\t\t);\n\t\t\t\t\t}\n\t\t\t\t}\n\t\t\t} else {\n\t\t\t\tuser =\n\t\t\t\t\tawait ctx.context.internalAdapter.updateUser<UserWithPhoneNumber>(\n\t\t\t\t\t\tuser.id,\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\t[opts.phoneNumberVerified]: true,\n\t\t\t\t\t\t},\n\t\t\t\t\t);\n\t\t\t}\n\t\t\tif (!user) {\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"INTERNAL_SERVER_ERROR\",\n\t\t\t\t\tBASE_ERROR_CODES.FAILED_TO_UPDATE_USER,\n\t\t\t\t);\n\t\t\t}\n\n\t\t\tawait opts?.callbackOnVerification?.(\n\t\t\t\t{\n\t\t\t\t\tphoneNumber: ctx.body.phoneNumber,\n\t\t\t\t\tuser,\n\t\t\t\t},\n\t\t\t\tctx,\n\t\t\t);\n\n\t\t\tif (!ctx.body.disableSession) {\n\t\t\t\tconst session = await ctx.context.internalAdapter.createSession(\n\t\t\t\t\tuser.id,\n\t\t\t\t);\n\t\t\t\tif (!session) {\n\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\"INTERNAL_SERVER_ERROR\",\n\t\t\t\t\t\tBASE_ERROR_CODES.FAILED_TO_CREATE_SESSION,\n\t\t\t\t\t);\n\t\t\t\t}\n\t\t\t\tawait setSessionCookie(ctx, {\n\t\t\t\t\tsession,\n\t\t\t\t\tuser,\n\t\t\t\t});\n\t\t\t\treturn ctx.json({\n\t\t\t\t\tstatus: true,\n\t\t\t\t\ttoken: session.token,\n\t\t\t\t\tuser: parseUserOutput(ctx.context.options, user),\n\t\t\t\t});\n\t\t\t}\n\n\t\t\treturn ctx.json({\n\t\t\t\tstatus: true,\n\t\t\t\ttoken: null,\n\t\t\t\tuser: parseUserOutput(ctx.context.options, user),\n\t\t\t});\n\t\t},\n\t);\n\nconst requestPasswordResetPhoneNumberBodySchema = z.object({\n\tphoneNumber: z.string(),\n});\n\nexport const requestPasswordResetPhoneNumber = (\n\topts: RequiredPhoneNumberOptions,\n) =>\n\tcreateAuthEndpoint(\n\t\t\"/phone-number/request-password-reset\",\n\t\t{\n\t\t\tmethod: \"POST\",\n\t\t\tbody: requestPasswordResetPhoneNumberBodySchema,\n\t\t\tmetadata: {\n\t\t\t\topenapi: {\n\t\t\t\t\tdescription: \"Request OTP for password reset via phone number\",\n\t\t\t\t\tresponses: {\n\t\t\t\t\t\t\"200\": {\n\t\t\t\t\t\t\tdescription: \"OTP sent successfully for password reset\",\n\t\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\t\t\t\t\tstatus: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"boolean\",\n\t\t\t\t\t\t\t\t\t\t\t\tdescription:\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"Indicates if the OTP was sent successfully\",\n\t\t\t\t\t\t\t\t\t\t\t\tenum: [true],\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\trequired: [\"status\"],\n\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t},\n\t\tasync (ctx) => {\n\t\t\tconst user = await ctx.context.adapter.findOne<UserWithPhoneNumber>({\n\t\t\t\tmodel: \"user\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tvalue: ctx.body.phoneNumber,\n\t\t\t\t\t\tfield: opts.phoneNumber,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t});\n\t\t\tconst code = generateOTP(opts.otpLength);\n\t\t\tawait ctx.context.internalAdapter.createVerificationValue({\n\t\t\t\tvalue: `${code}:0`,\n\t\t\t\tidentifier: `${ctx.body.phoneNumber}-request-password-reset`,\n\t\t\t\texpiresAt: getDate(opts.expiresIn, \"sec\"),\n\t\t\t});\n\t\t\t// to avoid leaking the existence of the phone number\n\t\t\tif (!user) {\n\t\t\t\treturn ctx.json({\n\t\t\t\t\tstatus: true,\n\t\t\t\t});\n\t\t\t}\n\t\t\tif (opts.sendPasswordResetOTP) {\n\t\t\t\tawait ctx.context.runInBackgroundOrAwait(\n\t\t\t\t\topts.sendPasswordResetOTP(\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\tphoneNumber: ctx.body.phoneNumber,\n\t\t\t\t\t\t\tcode,\n\t\t\t\t\t\t},\n\t\t\t\t\t\tctx,\n\t\t\t\t\t),\n\t\t\t\t);\n\t\t\t}\n\t\t\treturn ctx.json({\n\t\t\t\tstatus: true,\n\t\t\t});\n\t\t},\n\t);\n\nconst resetPasswordPhoneNumberBodySchema = z.object({\n\totp: z.string().meta({\n\t\tdescription: 'The one time password to reset the password. Eg: \"123456\"',\n\t}),\n\tphoneNumber: z.string().meta({\n\t\tdescription:\n\t\t\t'The phone number to the account which intends to reset the password for. Eg: \"+1234567890\"',\n\t}),\n\tnewPassword: z.string().meta({\n\t\tdescription: `The new password. Eg: \"new-and-secure-password\"`,\n\t}),\n});\n\nexport const resetPasswordPhoneNumber = (opts: RequiredPhoneNumberOptions) =>\n\tcreateAuthEndpoint(\n\t\t\"/phone-number/reset-password\",\n\t\t{\n\t\t\tmethod: \"POST\",\n\t\t\tbody: resetPasswordPhoneNumberBodySchema,\n\t\t\tmetadata: {\n\t\t\t\topenapi: {\n\t\t\t\t\tdescription: \"Reset password using phone number OTP\",\n\t\t\t\t\tresponses: {\n\t\t\t\t\t\t\"200\": {\n\t\t\t\t\t\t\tdescription: \"Password reset successfully\",\n\t\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\t\t\t\t\tstatus: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"boolean\",\n\t\t\t\t\t\t\t\t\t\t\t\tdescription:\n\t\t\t\t\t\t\t\t\t\t\t\t\t\"Indicates if the password was reset successfully\",\n\t\t\t\t\t\t\t\t\t\t\t\tenum: [true],\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\trequired: [\"status\"],\n\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t},\n\t\tasync (ctx) => {\n\t\t\tconst verification =\n\t\t\t\tawait ctx.context.internalAdapter.findVerificationValue(\n\t\t\t\t\t`${ctx.body.phoneNumber}-request-password-reset`,\n\t\t\t\t);\n\t\t\tif (!verification) {\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.OTP_NOT_FOUND,\n\t\t\t\t);\n\t\t\t}\n\t\t\tif (verification.expiresAt < new Date()) {\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.OTP_EXPIRED,\n\t\t\t\t);\n\t\t\t}\n\t\t\tconst [otpValue, attempts] = verification.value.split(\":\");\n\t\t\tconst allowedAttempts = opts?.allowedAttempts || 3;\n\t\t\tif (attempts && parseInt(attempts) >= allowedAttempts) {\n\t\t\t\tawait ctx.context.internalAdapter.deleteVerificationValue(\n\t\t\t\t\tverification.id,\n\t\t\t\t);\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"FORBIDDEN\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.TOO_MANY_ATTEMPTS,\n\t\t\t\t);\n\t\t\t}\n\t\t\tif (ctx.body.otp !== otpValue) {\n\t\t\t\tawait ctx.context.internalAdapter.updateVerificationValue(\n\t\t\t\t\tverification.id,\n\t\t\t\t\t{\n\t\t\t\t\t\tvalue: `${otpValue}:${parseInt(attempts || \"0\") + 1}`,\n\t\t\t\t\t},\n\t\t\t\t);\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.INVALID_OTP,\n\t\t\t\t);\n\t\t\t}\n\t\t\tconst user = await ctx.context.adapter.findOne<User>({\n\t\t\t\tmodel: \"user\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tfield: \"phoneNumber\",\n\t\t\t\t\t\tvalue: ctx.body.phoneNumber,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t});\n\t\t\tif (!user) {\n\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\tPHONE_NUMBER_ERROR_CODES.UNEXPECTED_ERROR,\n\t\t\t\t);\n\t\t\t}\n\t\t\tconst minLength = ctx.context.password.config.minPasswordLength;\n\t\t\tconst maxLength = ctx.context.password.config.maxPasswordLength;\n\t\t\tif (ctx.body.newPassword.length < minLength) {\n\t\t\t\tthrow APIError.from(\"BAD_REQUEST\", BASE_ERROR_CODES.PASSWORD_TOO_SHORT);\n\t\t\t}\n\t\t\tif (ctx.body.newPassword.length > maxLength) {\n\t\t\t\tthrow APIError.from(\"BAD_REQUEST\", BASE_ERROR_CODES.PASSWORD_TOO_LONG);\n\t\t\t}\n\t\t\tconst hashedPassword = await ctx.context.password.hash(\n\t\t\t\tctx.body.newPassword,\n\t\t\t);\n\t\t\tawait ctx.context.internalAdapter.updatePassword(user.id, hashedPassword);\n\t\t\tawait ctx.context.internalAdapter.deleteVerificationValue(\n\t\t\t\tverification.id,\n\t\t\t);\n\n\t\t\tif (ctx.context.options.emailAndPassword?.revokeSessionsOnPasswordReset) {\n\t\t\t\tawait ctx.context.internalAdapter.deleteSessions(user.id);\n\t\t\t}\n\n\t\t\treturn ctx.json({\n\t\t\t\tstatus: true,\n\t\t\t});\n\t\t},\n\t);\n\nfunction generateOTP(size: number) {\n\treturn generateRandomString(size, \"0-9\");\n}\n"],"mappings":";;;;;;;;;;;;AAqBA,MAAM,8BAA8B,EAAE,OAAO;CAC5C,aAAa,EAAE,QAAQ,CAAC,KAAK,EAC5B,aAAa,gDACb,CAAC;CACF,UAAU,EAAE,QAAQ,CAAC,KAAK,EACzB,aAAa,gCACb,CAAC;CACF,YAAY,EACV,SAAS,CACT,KAAK,EACL,aAAa,kCACb,CAAC,CACD,UAAU;CACZ,CAAC;;;;;;;;;;;;;;;;AAiBF,MAAa,qBAAqB,SACjC,mBACC,yBACA;CACC,QAAQ;CACR,MAAM;CACN,UAAU,EACT,SAAS;EACR,SAAS;EACT,aAAa;EACb,WAAW;GACV,KAAK;IACJ,aAAa;IACb,SAAS,EACR,oBAAoB,EACnB,QAAQ;KACP,MAAM;KACN,YAAY;MACX,MAAM,EACL,MAAM,6BACN;MACD,SAAS,EACR,MAAM,gCACN;MACD;KACD,EACD,EACD;IACD;GACD,KAAK,EACJ,aAAa,oCACb;GACD;EACD,EACD;CACD,EACD,OAAO,QAAQ;CACd,MAAM,EAAE,UAAU,gBAAgB,IAAI;AAEtC,KAAI,KAAK,sBAIR;MAAI,CAHkB,MAAM,KAAK,qBAChC,IAAI,KAAK,YACT,CAEA,OAAM,SAAS,KACd,eACA,yBAAyB,qBACzB;;CAIH,MAAM,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAA6B;EACnE,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD,CAAC;AACF,KAAI,CAAC,KACJ,OAAM,SAAS,KACd,gBACA,yBAAyB,iCACzB;AAEF,KAAI,KAAK,qBACR;MAAI,CAAC,KAAK,qBAAqB;GAC9B,MAAM,MAAM,YAAY,KAAK,UAAU;AACvC,SAAM,IAAI,QAAQ,gBAAgB,wBAAwB;IACzD,OAAO;IACP,YAAY;IACZ,WAAW,QAAQ,KAAK,WAAW,MAAM;IACzC,CAAC;AACF,OAAI,KAAK,QACR,OAAM,IAAI,QAAQ,uBACjB,KAAK,QACJ;IACC;IACA,MAAM;IACN,EACD,IACA,CACD;AAEF,SAAM,SAAS,KACd,gBACA,yBAAyB,0BACzB;;;CAMH,MAAM,qBAHW,MAAM,IAAI,QAAQ,gBAAgB,oBAClD,KAAK,GACL,EACkC,MACjC,MAAM,EAAE,eAAe,aACxB;AACD,KAAI,CAAC,mBAAmB;AACvB,MAAI,QAAQ,OAAO,MAAM,gCAAgC,EACxD,aACA,CAAC;AACF,QAAM,SAAS,KACd,gBACA,yBAAyB,iCACzB;;CAEF,MAAM,kBAAkB,mBAAmB;AAC3C,KAAI,CAAC,iBAAiB;AACrB,MAAI,QAAQ,OAAO,MAAM,sBAAsB,EAAE,aAAa,CAAC;AAC/D,QAAM,SAAS,KACd,gBACA,yBAAyB,iBACzB;;AAMF,KAAI,CAJkB,MAAM,IAAI,QAAQ,SAAS,OAAO;EACvD,MAAM;EACN;EACA,CAAC,EACkB;AACnB,MAAI,QAAQ,OAAO,MAAM,mBAAmB;AAC5C,QAAM,SAAS,KACd,gBACA,yBAAyB,iCACzB;;CAEF,MAAM,UAAU,MAAM,IAAI,QAAQ,gBAAgB,cACjD,KAAK,IACL,IAAI,KAAK,eAAe,MACxB;AACD,KAAI,CAAC,SAAS;AACb,MAAI,QAAQ,OAAO,MAAM,2BAA2B;AACpD,QAAM,SAAS,KACd,gBACA,iBAAiB,yBACjB;;AAGF,OAAM,iBACL,KACA;EACC;EACM;EACN,EACD,IAAI,KAAK,eAAe,MACxB;AACD,QAAO,IAAI,KAAK;EACf,OAAO,QAAQ;EACf,MAAM,gBAAgB,IAAI,QAAQ,SAAS,KAAK;EAChD,CAAC;EAEH;AAEF,MAAM,+BAA+B,EAAE,OAAO,EAC7C,aAAa,EAAE,QAAQ,CAAC,KAAK,EAC5B,aAAa,iDACb,CAAC,EACF,CAAC;;;;;;;;;;;;;;;;AAiBF,MAAa,sBAAsB,SAClC,mBACC,0BACA;CACC,QAAQ;CACR,MAAM;CACN,UAAU,EACT,SAAS;EACR,SAAS;EACT,aAAa;EACb,WAAW,EACV,KAAK;GACJ,aAAa;GACb,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,EACD,EACD;GACD,EACD;EACD,EACD;CACD,EACD,OAAO,QAAQ;AACd,KAAI,CAAC,MAAM,SAAS;AACnB,MAAI,QAAQ,OAAO,KAAK,0BAA0B;AAClD,QAAM,SAAS,KACd,mBACA,yBAAyB,yBACzB;;AAGF,KAAI,KAAK,sBAIR;MAAI,CAHkB,MAAM,KAAK,qBAChC,IAAI,KAAK,YACT,CAEA,OAAM,SAAS,KACd,eACA,yBAAyB,qBACzB;;CAIH,MAAM,OAAO,YAAY,KAAK,UAAU;AACxC,OAAM,IAAI,QAAQ,gBAAgB,wBAAwB;EACzD,OAAO,GAAG,KAAK;EACf,YAAY,IAAI,KAAK;EACrB,WAAW,QAAQ,KAAK,WAAW,MAAM;EACzC,CAAC;AACF,OAAM,IAAI,QAAQ,uBACjB,KAAK,QACJ;EACC,aAAa,IAAI,KAAK;EACtB;EACA,EACD,IACA,CACD;AACD,QAAO,IAAI,KAAK,EAAE,SAAS,aAAa,CAAC;EAE1C;AAEF,MAAM,8BAA8B,EAAE,OAAO;CAI5C,aAAa,EAAE,QAAQ,CAAC,KAAK,EAC5B,aAAa,+CACb,CAAC;CAIF,MAAM,EAAE,QAAQ,CAAC,KAAK,EACrB,aAAa,4BACb,CAAC;CAKF,gBAAgB,EACd,SAAS,CACT,KAAK,EACL,aAAa,0DACb,CAAC,CACD,UAAU;CAMZ,mBAAmB,EACjB,SAAS,CACT,KAAK,EACL,aACC,qEACD,CAAC,CACD,UAAU;CACZ,CAAC;;;;;;;;;;;;;;;;AAiBF,MAAa,qBAAqB,SACjC,mBACC,wBACA;CACC,QAAQ;CACR,MAAM;CACN,UAAU,EACT,SAAS;EACR,SAAS;EACT,aAAa;EACb,WAAW;GACV,OAAO;IACN,aAAa;IACb,SAAS,EACR,oBAAoB,EACnB,QAAQ;KACP,MAAM;KACN,YAAY;MACX,QAAQ;OACP,MAAM;OACN,aACC;OACD,MAAM,CAAC,KAAK;OACZ;MACD,OAAO;OACN,MAAM;OACN,UAAU;OACV,aACC;OACD;MACD,MAAM;OACL,MAAM;OACN,UAAU;OACV,YAAY;QACX,IAAI;SACH,MAAM;SACN,aAAa;SACb;QACD,OAAO;SACN,MAAM;SACN,QAAQ;SACR,UAAU;SACV,aAAa;SACb;QACD,eAAe;SACd,MAAM;SACN,UAAU;SACV,aAAa;SACb;QACD,MAAM;SACL,MAAM;SACN,UAAU;SACV,aAAa;SACb;QACD,OAAO;SACN,MAAM;SACN,QAAQ;SACR,UAAU;SACV,aAAa;SACb;QACD,aAAa;SACZ,MAAM;SACN,aAAa;SACb;QACD,qBAAqB;SACpB,MAAM;SACN,aAAa;SACb;QACD,WAAW;SACV,MAAM;SACN,QAAQ;SACR,aAAa;SACb;QACD,WAAW;SACV,MAAM;SACN,QAAQ;SACR,aACC;SACD;QACD;OACD,UAAU;QACT;QACA;QACA;QACA;QACA;QACA;OACD,aACC;OACD;MACD;KACD,UAAU,CAAC,SAAS;KACpB,EACD,EACD;IACD;GACD,KAAK,EACJ,aAAa,eACb;GACD;EACD,EACD;CACD,EACD,OAAO,QAAQ;AACd,KAAI,MAAM,WAAW;AAUpB,MAAI,CARY,MAAM,KAAK,UAC1B;GACC,aAAa,IAAI,KAAK;GACtB,MAAM,IAAI,KAAK;GACf,EACD,IACA,CAGA,OAAM,SAAS,KACd,eACA,yBAAyB,YACzB;EAIF,MAAM,MAAM,MAAM,IAAI,QAAQ,gBAAgB,sBAC7C,IAAI,KAAK,YACT;AACD,MAAI,IACH,OAAM,IAAI,QAAQ,gBAAgB,wBAAwB,IAAI,GAAG;QAE5D;EAEN,MAAM,MAAM,MAAM,IAAI,QAAQ,gBAAgB,sBAC7C,IAAI,KAAK,YACT;AAED,MAAI,CAAC,OAAO,IAAI,4BAAY,IAAI,MAAM,EAAE;AACvC,OAAI,OAAO,IAAI,4BAAY,IAAI,MAAM,CACpC,OAAM,SAAS,KACd,eACA,yBAAyB,YACzB;AAEF,SAAM,SAAS,KACd,eACA,yBAAyB,cACzB;;EAEF,MAAM,CAAC,UAAU,YAAY,IAAI,MAAM,MAAM,IAAI;EACjD,MAAM,kBAAkB,MAAM,mBAAmB;AACjD,MAAI,YAAY,SAAS,SAAS,IAAI,iBAAiB;AACtD,SAAM,IAAI,QAAQ,gBAAgB,wBAAwB,IAAI,GAAG;AACjE,SAAM,SAAS,KACd,aACA,yBAAyB,kBACzB;;AAEF,MAAI,aAAa,IAAI,KAAK,MAAM;AAC/B,SAAM,IAAI,QAAQ,gBAAgB,wBAAwB,IAAI,IAAI,EACjE,OAAO,GAAG,SAAS,GAAG,SAAS,YAAY,IAAI,GAAG,KAClD,CAAC;AACF,SAAM,SAAS,KACd,eACA,yBAAyB,YACzB;;AAGF,QAAM,IAAI,QAAQ,gBAAgB,wBAAwB,IAAI,GAAG;;AAGlE,KAAI,IAAI,KAAK,mBAAmB;EAC/B,MAAM,UAAU,MAAM,kBAAkB,IAAI;AAC5C,MAAI,CAAC,QACJ,OAAM,SAAS,KAAK,gBAAgB,iBAAiB,eAAe;AAYrE,OATC,MAAM,IAAI,QAAQ,QAAQ,SAA8B;GACvD,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO,IAAI,KAAK;IAChB,CACD;GACD,CAAC,EACc,OAChB,OAAM,SAAS,KACd,eACA,yBAAyB,mBACzB;EAEF,MAAM,OACL,MAAM,IAAI,QAAQ,gBAAgB,WACjC,QAAQ,KAAK,IACb;IACE,KAAK,cAAc,IAAI,KAAK;IAC5B,KAAK,sBAAsB;GAC5B,CACD;AACF,SAAO,IAAI,KAAK;GACf,QAAQ;GACR,OAAO,QAAQ,QAAQ;GACvB,MAAM,gBAAgB,IAAI,QAAQ,SAAS,KAAK;GAChD,CAAC;;CAGH,IAAI,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAA6B;EACjE,OAAO;EACP,OAAO,CACN;GACC,OAAO,IAAI,KAAK;GAChB,OAAO,KAAK;GACZ,CACD;EACD,CAAC;AACF,KAAI,CAAC,MACJ;MAAI,MAAM,sBAAsB;AAC/B,UACC,MAAM,IAAI,QAAQ,gBAAgB,WAAgC;IACjE,OAAO,KAAK,qBAAqB,aAChC,IAAI,KAAK,YACT;IACD,MAAM,KAAK,qBAAqB,cAC7B,KAAK,qBAAqB,YAAY,IAAI,KAAK,YAAY,GAC3D,IAAI,KAAK;KACX,KAAK,cAAc,IAAI,KAAK;KAC5B,KAAK,sBAAsB;IAC5B,CAAC;AACH,OAAI,CAAC,KACJ,OAAM,SAAS,KACd,yBACA,iBAAiB,sBACjB;;OAIH,QACC,MAAM,IAAI,QAAQ,gBAAgB,WACjC,KAAK,IACL,GACE,KAAK,sBAAsB,MAC5B,CACD;AAEH,KAAI,CAAC,KACJ,OAAM,SAAS,KACd,yBACA,iBAAiB,sBACjB;AAGF,OAAM,MAAM,yBACX;EACC,aAAa,IAAI,KAAK;EACtB;EACA,EACD,IACA;AAED,KAAI,CAAC,IAAI,KAAK,gBAAgB;EAC7B,MAAM,UAAU,MAAM,IAAI,QAAQ,gBAAgB,cACjD,KAAK,GACL;AACD,MAAI,CAAC,QACJ,OAAM,SAAS,KACd,yBACA,iBAAiB,yBACjB;AAEF,QAAM,iBAAiB,KAAK;GAC3B;GACA;GACA,CAAC;AACF,SAAO,IAAI,KAAK;GACf,QAAQ;GACR,OAAO,QAAQ;GACf,MAAM,gBAAgB,IAAI,QAAQ,SAAS,KAAK;GAChD,CAAC;;AAGH,QAAO,IAAI,KAAK;EACf,QAAQ;EACR,OAAO;EACP,MAAM,gBAAgB,IAAI,QAAQ,SAAS,KAAK;EAChD,CAAC;EAEH;AAEF,MAAM,4CAA4C,EAAE,OAAO,EAC1D,aAAa,EAAE,QAAQ,EACvB,CAAC;AAEF,MAAa,mCACZ,SAEA,mBACC,wCACA;CACC,QAAQ;CACR,MAAM;CACN,UAAU,EACT,SAAS;EACR,aAAa;EACb,WAAW,EACV,OAAO;GACN,aAAa;GACb,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,QAAQ;KACP,MAAM;KACN,aACC;KACD,MAAM,CAAC,KAAK;KACZ,EACD;IACD,UAAU,CAAC,SAAS;IACpB,EACD,EACD;GACD,EACD;EACD,EACD;CACD,EACD,OAAO,QAAQ;CACd,MAAM,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAA6B;EACnE,OAAO;EACP,OAAO,CACN;GACC,OAAO,IAAI,KAAK;GAChB,OAAO,KAAK;GACZ,CACD;EACD,CAAC;CACF,MAAM,OAAO,YAAY,KAAK,UAAU;AACxC,OAAM,IAAI,QAAQ,gBAAgB,wBAAwB;EACzD,OAAO,GAAG,KAAK;EACf,YAAY,GAAG,IAAI,KAAK,YAAY;EACpC,WAAW,QAAQ,KAAK,WAAW,MAAM;EACzC,CAAC;AAEF,KAAI,CAAC,KACJ,QAAO,IAAI,KAAK,EACf,QAAQ,MACR,CAAC;AAEH,KAAI,KAAK,qBACR,OAAM,IAAI,QAAQ,uBACjB,KAAK,qBACJ;EACC,aAAa,IAAI,KAAK;EACtB;EACA,EACD,IACA,CACD;AAEF,QAAO,IAAI,KAAK,EACf,QAAQ,MACR,CAAC;EAEH;AAEF,MAAM,qCAAqC,EAAE,OAAO;CACnD,KAAK,EAAE,QAAQ,CAAC,KAAK,EACpB,aAAa,+DACb,CAAC;CACF,aAAa,EAAE,QAAQ,CAAC,KAAK,EAC5B,aACC,gGACD,CAAC;CACF,aAAa,EAAE,QAAQ,CAAC,KAAK,EAC5B,aAAa,mDACb,CAAC;CACF,CAAC;AAEF,MAAa,4BAA4B,SACxC,mBACC,gCACA;CACC,QAAQ;CACR,MAAM;CACN,UAAU,EACT,SAAS;EACR,aAAa;EACb,WAAW,EACV,OAAO;GACN,aAAa;GACb,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,QAAQ;KACP,MAAM;KACN,aACC;KACD,MAAM,CAAC,KAAK;KACZ,EACD;IACD,UAAU,CAAC,SAAS;IACpB,EACD,EACD;GACD,EACD;EACD,EACD;CACD,EACD,OAAO,QAAQ;CACd,MAAM,eACL,MAAM,IAAI,QAAQ,gBAAgB,sBACjC,GAAG,IAAI,KAAK,YAAY,yBACxB;AACF,KAAI,CAAC,aACJ,OAAM,SAAS,KACd,eACA,yBAAyB,cACzB;AAEF,KAAI,aAAa,4BAAY,IAAI,MAAM,CACtC,OAAM,SAAS,KACd,eACA,yBAAyB,YACzB;CAEF,MAAM,CAAC,UAAU,YAAY,aAAa,MAAM,MAAM,IAAI;CAC1D,MAAM,kBAAkB,MAAM,mBAAmB;AACjD,KAAI,YAAY,SAAS,SAAS,IAAI,iBAAiB;AACtD,QAAM,IAAI,QAAQ,gBAAgB,wBACjC,aAAa,GACb;AACD,QAAM,SAAS,KACd,aACA,yBAAyB,kBACzB;;AAEF,KAAI,IAAI,KAAK,QAAQ,UAAU;AAC9B,QAAM,IAAI,QAAQ,gBAAgB,wBACjC,aAAa,IACb,EACC,OAAO,GAAG,SAAS,GAAG,SAAS,YAAY,IAAI,GAAG,KAClD,CACD;AACD,QAAM,SAAS,KACd,eACA,yBAAyB,YACzB;;CAEF,MAAM,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACpD,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO,IAAI,KAAK;GAChB,CACD;EACD,CAAC;AACF,KAAI,CAAC,KACJ,OAAM,SAAS,KACd,eACA,yBAAyB,iBACzB;CAEF,MAAM,YAAY,IAAI,QAAQ,SAAS,OAAO;CAC9C,MAAM,YAAY,IAAI,QAAQ,SAAS,OAAO;AAC9C,KAAI,IAAI,KAAK,YAAY,SAAS,UACjC,OAAM,SAAS,KAAK,eAAe,iBAAiB,mBAAmB;AAExE,KAAI,IAAI,KAAK,YAAY,SAAS,UACjC,OAAM,SAAS,KAAK,eAAe,iBAAiB,kBAAkB;CAEvE,MAAM,iBAAiB,MAAM,IAAI,QAAQ,SAAS,KACjD,IAAI,KAAK,YACT;AACD,OAAM,IAAI,QAAQ,gBAAgB,eAAe,KAAK,IAAI,eAAe;AACzE,OAAM,IAAI,QAAQ,gBAAgB,wBACjC,aAAa,GACb;AAED,KAAI,IAAI,QAAQ,QAAQ,kBAAkB,8BACzC,OAAM,IAAI,QAAQ,gBAAgB,eAAe,KAAK,GAAG;AAG1D,QAAO,IAAI,KAAK,EACf,QAAQ,MACR,CAAC;EAEH;AAEF,SAAS,YAAY,MAAc;AAClC,QAAO,qBAAqB,MAAM,MAAM"}
|
|
@@ -0,0 +1,20 @@
|
|
|
1
|
+
//#region src/plugins/phone-number/schema.ts
|
|
2
|
+
const schema = { user: { fields: {
|
|
3
|
+
phoneNumber: {
|
|
4
|
+
type: "string",
|
|
5
|
+
required: false,
|
|
6
|
+
unique: true,
|
|
7
|
+
sortable: true,
|
|
8
|
+
returned: true
|
|
9
|
+
},
|
|
10
|
+
phoneNumberVerified: {
|
|
11
|
+
type: "boolean",
|
|
12
|
+
required: false,
|
|
13
|
+
returned: true,
|
|
14
|
+
input: false
|
|
15
|
+
}
|
|
16
|
+
} } };
|
|
17
|
+
|
|
18
|
+
//#endregion
|
|
19
|
+
export { schema };
|
|
20
|
+
//# sourceMappingURL=schema.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"schema.mjs","names":[],"sources":["../../../src/plugins/phone-number/schema.ts"],"sourcesContent":["import type { BetterAuthPluginDBSchema } from \"@better-auth/core/db\";\n\nexport const schema = {\n\tuser: {\n\t\tfields: {\n\t\t\tphoneNumber: {\n\t\t\t\ttype: \"string\",\n\t\t\t\trequired: false,\n\t\t\t\tunique: true,\n\t\t\t\tsortable: true,\n\t\t\t\treturned: true,\n\t\t\t},\n\t\t\tphoneNumberVerified: {\n\t\t\t\ttype: \"boolean\",\n\t\t\t\trequired: false,\n\t\t\t\treturned: true,\n\t\t\t\tinput: false,\n\t\t\t},\n\t\t},\n\t},\n} satisfies BetterAuthPluginDBSchema;\n"],"mappings":";AAEA,MAAa,SAAS,EACrB,MAAM,EACL,QAAQ;CACP,aAAa;EACZ,MAAM;EACN,UAAU;EACV,QAAQ;EACR,UAAU;EACV,UAAU;EACV;CACD,qBAAqB;EACpB,MAAM;EACN,UAAU;EACV,UAAU;EACV,OAAO;EACP;CACD,EACD,EACD"}
|
|
@@ -0,0 +1,118 @@
|
|
|
1
|
+
import { User } from "../../types/models.mjs";
|
|
2
|
+
import { InferOptionSchema } from "../../types/plugins.mjs";
|
|
3
|
+
import "../../types/index.mjs";
|
|
4
|
+
import { schema } from "./schema.mjs";
|
|
5
|
+
import { Awaitable, GenericEndpointContext } from "@better-auth/core";
|
|
6
|
+
|
|
7
|
+
//#region src/plugins/phone-number/types.d.ts
|
|
8
|
+
interface UserWithPhoneNumber extends User {
|
|
9
|
+
phoneNumber: string;
|
|
10
|
+
phoneNumberVerified: boolean;
|
|
11
|
+
}
|
|
12
|
+
interface PhoneNumberOptions {
|
|
13
|
+
/**
|
|
14
|
+
* Length of the OTP code
|
|
15
|
+
* @default 6
|
|
16
|
+
*/
|
|
17
|
+
otpLength?: number | undefined;
|
|
18
|
+
/**
|
|
19
|
+
* Send OTP code to the user
|
|
20
|
+
*
|
|
21
|
+
* @param phoneNumber
|
|
22
|
+
* @param code
|
|
23
|
+
* @returns
|
|
24
|
+
*/
|
|
25
|
+
sendOTP: (data: {
|
|
26
|
+
phoneNumber: string;
|
|
27
|
+
code: string;
|
|
28
|
+
}, ctx?: GenericEndpointContext | undefined) => Awaitable<void>;
|
|
29
|
+
/**
|
|
30
|
+
* Custom OTP verification function
|
|
31
|
+
*
|
|
32
|
+
* If provided, this function will be called instead of the internal verification logic.
|
|
33
|
+
* This is useful when using SMS providers that handle their own OTP generation and verification.
|
|
34
|
+
*
|
|
35
|
+
* @param data - Contains phone number and OTP code
|
|
36
|
+
* @param request - The request object
|
|
37
|
+
* @returns true if OTP is valid, false otherwise
|
|
38
|
+
*/
|
|
39
|
+
verifyOTP?: ((data: {
|
|
40
|
+
phoneNumber: string;
|
|
41
|
+
code: string;
|
|
42
|
+
}, ctx?: GenericEndpointContext) => Awaitable<boolean>) | undefined;
|
|
43
|
+
/**
|
|
44
|
+
* a callback to send otp on user requesting to reset their password
|
|
45
|
+
*
|
|
46
|
+
* @param data - contains phone number and code
|
|
47
|
+
* @param request - the request object
|
|
48
|
+
* @returns
|
|
49
|
+
*/
|
|
50
|
+
sendPasswordResetOTP?: ((data: {
|
|
51
|
+
phoneNumber: string;
|
|
52
|
+
code: string;
|
|
53
|
+
}, ctx?: GenericEndpointContext) => Awaitable<void>) | undefined;
|
|
54
|
+
/**
|
|
55
|
+
* Expiry time of the OTP code in seconds
|
|
56
|
+
* @default 300
|
|
57
|
+
*/
|
|
58
|
+
expiresIn?: number | undefined;
|
|
59
|
+
/**
|
|
60
|
+
* Function to validate phone number
|
|
61
|
+
*
|
|
62
|
+
* by default any string is accepted
|
|
63
|
+
*/
|
|
64
|
+
phoneNumberValidator?: ((phoneNumber: string) => Awaitable<boolean>) | undefined;
|
|
65
|
+
/**
|
|
66
|
+
* Require a phone number verification before signing in
|
|
67
|
+
*
|
|
68
|
+
* @default false
|
|
69
|
+
*/
|
|
70
|
+
requireVerification?: boolean | undefined;
|
|
71
|
+
/**
|
|
72
|
+
* Callback when phone number is verified
|
|
73
|
+
*/
|
|
74
|
+
callbackOnVerification?: ((data: {
|
|
75
|
+
phoneNumber: string;
|
|
76
|
+
user: UserWithPhoneNumber;
|
|
77
|
+
}, ctx?: GenericEndpointContext) => Awaitable<void>) | undefined;
|
|
78
|
+
/**
|
|
79
|
+
* Sign up user after phone number verification
|
|
80
|
+
*
|
|
81
|
+
* the user will be signed up with the temporary email
|
|
82
|
+
* and the phone number will be updated after verification
|
|
83
|
+
*/
|
|
84
|
+
signUpOnVerification?: {
|
|
85
|
+
/**
|
|
86
|
+
* When a user signs up, a temporary email will be need to be created
|
|
87
|
+
* to sign up the user. This function should return a temporary email
|
|
88
|
+
* for the user given the phone number
|
|
89
|
+
*
|
|
90
|
+
* @param phoneNumber
|
|
91
|
+
* @returns string (temporary email)
|
|
92
|
+
*/
|
|
93
|
+
getTempEmail: (phoneNumber: string) => string;
|
|
94
|
+
/**
|
|
95
|
+
* When a user signs up, a temporary name will be need to be created
|
|
96
|
+
* to sign up the user. This function should return a temporary name
|
|
97
|
+
* for the user given the phone number
|
|
98
|
+
*
|
|
99
|
+
* @param phoneNumber
|
|
100
|
+
* @returns string (temporary name)
|
|
101
|
+
*
|
|
102
|
+
* @default phoneNumber - the phone number will be used as the name
|
|
103
|
+
*/
|
|
104
|
+
getTempName?: (phoneNumber: string) => string;
|
|
105
|
+
} | undefined;
|
|
106
|
+
/**
|
|
107
|
+
* Custom schema for the admin plugin
|
|
108
|
+
*/
|
|
109
|
+
schema?: InferOptionSchema<typeof schema> | undefined;
|
|
110
|
+
/**
|
|
111
|
+
* Allowed attempts for the OTP code
|
|
112
|
+
* @default 3
|
|
113
|
+
*/
|
|
114
|
+
allowedAttempts?: number | undefined;
|
|
115
|
+
}
|
|
116
|
+
//#endregion
|
|
117
|
+
export { PhoneNumberOptions, UserWithPhoneNumber };
|
|
118
|
+
//# sourceMappingURL=types.d.mts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"client.mjs","names":[],"sources":["../../../src/plugins/siwe/client.ts"],"sourcesContent":["import type { BetterAuthClientPlugin } from \"@better-auth/core\";\nimport type { siwe } from \".\";\n\nexport const siweClient = () => {\n\treturn {\n\t\tid: \"siwe\",\n\t\t$InferServerPlugin: {} as ReturnType<typeof siwe>,\n\t} satisfies BetterAuthClientPlugin;\n};\n"],"mappings":";AAGA,MAAa,mBAAmB;AAC/B,QAAO;EACN,IAAI;EACJ,oBAAoB,EAAE;EACtB"}
|
|
@@ -0,0 +1,13 @@
|
|
|
1
|
+
import { defineErrorCodes } from "@better-auth/core/utils/error-codes";
|
|
2
|
+
|
|
3
|
+
//#region src/plugins/siwe/error-codes.ts
|
|
4
|
+
const SIWE_ERROR_CODES = defineErrorCodes({
|
|
5
|
+
INVALID_OR_EXPIRED_NONCE: "Invalid or expired nonce",
|
|
6
|
+
INVALID_SIWE_SIGNATURE: "Invalid SIWE signature",
|
|
7
|
+
WALLET_ALREADY_LINKED: "Wallet already linked to another user",
|
|
8
|
+
SESSION_CREATION_FAILED: "Failed to create session"
|
|
9
|
+
});
|
|
10
|
+
|
|
11
|
+
//#endregion
|
|
12
|
+
export { SIWE_ERROR_CODES };
|
|
13
|
+
//# sourceMappingURL=error-codes.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"error-codes.mjs","names":[],"sources":["../../../src/plugins/siwe/error-codes.ts"],"sourcesContent":["import { defineErrorCodes } from \"@better-auth/core/utils/error-codes\";\n\nexport const SIWE_ERROR_CODES = defineErrorCodes({\n\tINVALID_OR_EXPIRED_NONCE: \"Invalid or expired nonce\",\n\tINVALID_SIWE_SIGNATURE: \"Invalid SIWE signature\",\n\tWALLET_ALREADY_LINKED: \"Wallet already linked to another user\",\n\tSESSION_CREATION_FAILED: \"Failed to create session\",\n});\n"],"mappings":";;;AAEA,MAAa,mBAAmB,iBAAiB;CAChD,0BAA0B;CAC1B,wBAAwB;CACxB,uBAAuB;CACvB,yBAAyB;CACzB,CAAC"}
|
|
@@ -0,0 +1,26 @@
|
|
|
1
|
+
import { InferOptionSchema } from "../../types/plugins.mjs";
|
|
2
|
+
import "../../types/index.mjs";
|
|
3
|
+
import { schema } from "./schema.mjs";
|
|
4
|
+
import { ENSLookupArgs, ENSLookupResult, SIWEVerifyMessageArgs } from "./types.mjs";
|
|
5
|
+
|
|
6
|
+
//#region src/plugins/siwe/index.d.ts
|
|
7
|
+
declare module "@better-auth/core" {
|
|
8
|
+
interface BetterAuthPluginRegistry<AuthOptions, Options> {
|
|
9
|
+
siwe: {
|
|
10
|
+
creator: typeof siwe;
|
|
11
|
+
};
|
|
12
|
+
}
|
|
13
|
+
}
|
|
14
|
+
interface SIWEPluginOptions {
|
|
15
|
+
domain: string;
|
|
16
|
+
emailDomainName?: string | undefined;
|
|
17
|
+
anonymous?: boolean | undefined;
|
|
18
|
+
getNonce: () => Promise<string>;
|
|
19
|
+
verifyMessage: (args: SIWEVerifyMessageArgs) => Promise<boolean>;
|
|
20
|
+
ensLookup?: ((args: ENSLookupArgs) => Promise<ENSLookupResult>) | undefined;
|
|
21
|
+
schema?: InferOptionSchema<typeof schema> | undefined;
|
|
22
|
+
}
|
|
23
|
+
declare const siwe: (options: SIWEPluginOptions) => BetterAuthPlugin;
|
|
24
|
+
//#endregion
|
|
25
|
+
export { SIWEPluginOptions, siwe };
|
|
26
|
+
//# sourceMappingURL=index.d.mts.map
|
|
@@ -0,0 +1,261 @@
|
|
|
1
|
+
import { getOrigin } from "../../utils/url.mjs";
|
|
2
|
+
import { mergeSchema } from "../../db/schema.mjs";
|
|
3
|
+
import { setSessionCookie } from "../../cookies/index.mjs";
|
|
4
|
+
import { getSessionFromCtx } from "../../api/routes/session.mjs";
|
|
5
|
+
import { APIError } from "../../api/index.mjs";
|
|
6
|
+
import { toChecksumAddress } from "../../utils/hashing.mjs";
|
|
7
|
+
import { SIWE_ERROR_CODES } from "./error-codes.mjs";
|
|
8
|
+
import { schema } from "./schema.mjs";
|
|
9
|
+
import { createAuthEndpoint } from "@better-auth/core/api";
|
|
10
|
+
import * as z from "zod";
|
|
11
|
+
|
|
12
|
+
//#region src/plugins/siwe/index.ts
|
|
13
|
+
const walletAddressSchema = z.string().regex(/^0[xX][a-fA-F0-9]{40}$/i).length(42);
|
|
14
|
+
const chainIdSchema = z.number().int().positive().max(2147483647).optional().default(1);
|
|
15
|
+
const getSiweNonceBodySchema = z.object({
|
|
16
|
+
walletAddress: walletAddressSchema,
|
|
17
|
+
chainId: chainIdSchema
|
|
18
|
+
});
|
|
19
|
+
const verifySiweMessageBodyBaseSchema = z.object({
|
|
20
|
+
message: z.string().min(1),
|
|
21
|
+
signature: z.string().min(1),
|
|
22
|
+
walletAddress: walletAddressSchema,
|
|
23
|
+
chainId: chainIdSchema,
|
|
24
|
+
email: z.email().optional()
|
|
25
|
+
});
|
|
26
|
+
const createWalletAccountId = (walletAddress, chainId) => `${walletAddress}:${chainId}`;
|
|
27
|
+
const createWalletVerificationIdentifier = (walletAddress, chainId) => `siwe:${createWalletAccountId(walletAddress, chainId)}`;
|
|
28
|
+
const parseWalletAccountId = (accountId) => {
|
|
29
|
+
const [address, chainIdStr] = accountId.split(":");
|
|
30
|
+
const chainId = parseInt(chainIdStr ?? "", 10);
|
|
31
|
+
if (!address || Number.isNaN(chainId)) return null;
|
|
32
|
+
return {
|
|
33
|
+
address,
|
|
34
|
+
chainId
|
|
35
|
+
};
|
|
36
|
+
};
|
|
37
|
+
const verifySiweMessageOrThrow = async (options, args) => {
|
|
38
|
+
try {
|
|
39
|
+
if (!await options.verifyMessage({
|
|
40
|
+
message: args.message,
|
|
41
|
+
signature: args.signature,
|
|
42
|
+
address: args.address,
|
|
43
|
+
chainId: args.chainId,
|
|
44
|
+
cacao: {
|
|
45
|
+
h: { t: "caip122" },
|
|
46
|
+
p: {
|
|
47
|
+
domain: options.domain,
|
|
48
|
+
aud: options.domain,
|
|
49
|
+
nonce: args.nonce,
|
|
50
|
+
iss: options.domain,
|
|
51
|
+
version: "1"
|
|
52
|
+
},
|
|
53
|
+
s: {
|
|
54
|
+
t: "eip191",
|
|
55
|
+
s: args.signature
|
|
56
|
+
}
|
|
57
|
+
}
|
|
58
|
+
})) throw APIError.from("UNAUTHORIZED", SIWE_ERROR_CODES.INVALID_SIWE_SIGNATURE);
|
|
59
|
+
} catch {
|
|
60
|
+
throw APIError.from("UNAUTHORIZED", SIWE_ERROR_CODES.INVALID_SIWE_SIGNATURE);
|
|
61
|
+
}
|
|
62
|
+
};
|
|
63
|
+
const siwe = (options) => ({
|
|
64
|
+
id: "siwe",
|
|
65
|
+
schema: mergeSchema(schema, options?.schema),
|
|
66
|
+
init(ctx) {
|
|
67
|
+
return { options: { databaseHooks: { account: { delete: { async after(account) {
|
|
68
|
+
if (account.providerId !== "siwe" || !account.accountId) return;
|
|
69
|
+
const parsed = parseWalletAccountId(account.accountId);
|
|
70
|
+
if (!parsed) return;
|
|
71
|
+
await ctx.adapter.deleteMany({
|
|
72
|
+
model: "walletAddress",
|
|
73
|
+
where: [
|
|
74
|
+
{
|
|
75
|
+
field: "address",
|
|
76
|
+
value: parsed.address
|
|
77
|
+
},
|
|
78
|
+
{
|
|
79
|
+
field: "chainId",
|
|
80
|
+
value: parsed.chainId
|
|
81
|
+
},
|
|
82
|
+
{
|
|
83
|
+
field: "userId",
|
|
84
|
+
value: account.userId
|
|
85
|
+
}
|
|
86
|
+
]
|
|
87
|
+
});
|
|
88
|
+
} } } } } };
|
|
89
|
+
},
|
|
90
|
+
endpoints: {
|
|
91
|
+
getSiweNonce: createAuthEndpoint("/siwe/nonce", {
|
|
92
|
+
method: "POST",
|
|
93
|
+
body: getSiweNonceBodySchema
|
|
94
|
+
}, async (ctx) => {
|
|
95
|
+
const { walletAddress: rawWalletAddress, chainId } = ctx.body;
|
|
96
|
+
const walletAddress = toChecksumAddress(rawWalletAddress);
|
|
97
|
+
const nonce = await options.getNonce();
|
|
98
|
+
await ctx.context.internalAdapter.createVerificationValue({
|
|
99
|
+
identifier: `siwe:${createWalletAccountId(walletAddress, chainId)}`,
|
|
100
|
+
value: nonce,
|
|
101
|
+
expiresAt: new Date(Date.now() + 900 * 1e3)
|
|
102
|
+
});
|
|
103
|
+
return ctx.json({ nonce });
|
|
104
|
+
}),
|
|
105
|
+
verifySiweMessage: createAuthEndpoint("/siwe/verify", {
|
|
106
|
+
method: "POST",
|
|
107
|
+
body: verifySiweMessageBodyBaseSchema.refine((data) => options.anonymous !== false || !!data.email, {
|
|
108
|
+
message: "Email is required when the anonymous plugin option is disabled.",
|
|
109
|
+
path: ["email"]
|
|
110
|
+
}),
|
|
111
|
+
requireRequest: true
|
|
112
|
+
}, async (ctx) => {
|
|
113
|
+
const { message, signature, walletAddress: rawWalletAddress, chainId, email } = ctx.body;
|
|
114
|
+
const walletAddress = toChecksumAddress(rawWalletAddress);
|
|
115
|
+
const isAnonymous = options.anonymous ?? true;
|
|
116
|
+
const verificationIdentifier = createWalletVerificationIdentifier(walletAddress, chainId);
|
|
117
|
+
const verification = await ctx.context.internalAdapter.findVerificationValue(verificationIdentifier);
|
|
118
|
+
if (!verification || /* @__PURE__ */ new Date() > verification.expiresAt) throw APIError.from("UNAUTHORIZED", SIWE_ERROR_CODES.INVALID_OR_EXPIRED_NONCE);
|
|
119
|
+
await verifySiweMessageOrThrow(options, {
|
|
120
|
+
message,
|
|
121
|
+
signature,
|
|
122
|
+
address: walletAddress,
|
|
123
|
+
chainId,
|
|
124
|
+
nonce: verification.value
|
|
125
|
+
});
|
|
126
|
+
await ctx.context.internalAdapter.deleteVerificationValue(verification.id);
|
|
127
|
+
const walletAddressForChain = await ctx.context.adapter.findOne({
|
|
128
|
+
model: "walletAddress",
|
|
129
|
+
where: [{
|
|
130
|
+
field: "address",
|
|
131
|
+
operator: "eq",
|
|
132
|
+
value: walletAddress
|
|
133
|
+
}, {
|
|
134
|
+
field: "chainId",
|
|
135
|
+
operator: "eq",
|
|
136
|
+
value: chainId
|
|
137
|
+
}]
|
|
138
|
+
});
|
|
139
|
+
const walletAddressAnyChain = await ctx.context.adapter.findOne({
|
|
140
|
+
model: "walletAddress",
|
|
141
|
+
where: [{
|
|
142
|
+
field: "address",
|
|
143
|
+
operator: "eq",
|
|
144
|
+
value: walletAddress
|
|
145
|
+
}]
|
|
146
|
+
});
|
|
147
|
+
const currentSession = await getSessionFromCtx(ctx);
|
|
148
|
+
const accountLinking = ctx.context.options.account?.accountLinking;
|
|
149
|
+
const trustedProviders = accountLinking?.trustedProviders;
|
|
150
|
+
if (currentSession !== null && accountLinking?.enabled !== false && (trustedProviders === void 0 || trustedProviders.length === 0 || trustedProviders.includes("siwe"))) {
|
|
151
|
+
const sessionUser = currentSession.user;
|
|
152
|
+
if (walletAddressForChain && walletAddressForChain.userId === sessionUser.id) return ctx.json({
|
|
153
|
+
token: currentSession.session.token,
|
|
154
|
+
success: true,
|
|
155
|
+
user: {
|
|
156
|
+
id: sessionUser.id,
|
|
157
|
+
walletAddress,
|
|
158
|
+
chainId
|
|
159
|
+
}
|
|
160
|
+
});
|
|
161
|
+
const walletOwner = walletAddressForChain?.userId ?? walletAddressAnyChain?.userId;
|
|
162
|
+
if (walletOwner && walletOwner !== sessionUser.id) throw APIError.from("BAD_REQUEST", SIWE_ERROR_CODES.WALLET_ALREADY_LINKED);
|
|
163
|
+
await ctx.context.adapter.create({
|
|
164
|
+
model: "walletAddress",
|
|
165
|
+
data: {
|
|
166
|
+
userId: sessionUser.id,
|
|
167
|
+
address: walletAddress,
|
|
168
|
+
chainId,
|
|
169
|
+
isPrimary: false,
|
|
170
|
+
createdAt: /* @__PURE__ */ new Date()
|
|
171
|
+
}
|
|
172
|
+
});
|
|
173
|
+
await ctx.context.internalAdapter.linkAccount({
|
|
174
|
+
userId: sessionUser.id,
|
|
175
|
+
providerId: "siwe",
|
|
176
|
+
accountId: createWalletAccountId(walletAddress, chainId)
|
|
177
|
+
});
|
|
178
|
+
return ctx.json({
|
|
179
|
+
token: currentSession.session.token,
|
|
180
|
+
success: true,
|
|
181
|
+
user: {
|
|
182
|
+
id: sessionUser.id,
|
|
183
|
+
walletAddress,
|
|
184
|
+
chainId
|
|
185
|
+
}
|
|
186
|
+
});
|
|
187
|
+
}
|
|
188
|
+
const existingUserId = walletAddressForChain?.userId ?? walletAddressAnyChain?.userId;
|
|
189
|
+
let user = existingUserId ? await ctx.context.adapter.findOne({
|
|
190
|
+
model: "user",
|
|
191
|
+
where: [{
|
|
192
|
+
field: "id",
|
|
193
|
+
operator: "eq",
|
|
194
|
+
value: existingUserId
|
|
195
|
+
}]
|
|
196
|
+
}) : null;
|
|
197
|
+
if (!user) {
|
|
198
|
+
const domain = options.emailDomainName ?? getOrigin(ctx.context.baseURL);
|
|
199
|
+
const userEmail = !isAnonymous && email ? email : `${walletAddress}@${domain}`;
|
|
200
|
+
const { name, avatar } = await options.ensLookup?.({ walletAddress }) ?? {};
|
|
201
|
+
user = await ctx.context.internalAdapter.createUser({
|
|
202
|
+
name: name ?? walletAddress,
|
|
203
|
+
email: userEmail,
|
|
204
|
+
image: avatar ?? ""
|
|
205
|
+
});
|
|
206
|
+
await ctx.context.adapter.create({
|
|
207
|
+
model: "walletAddress",
|
|
208
|
+
data: {
|
|
209
|
+
userId: user.id,
|
|
210
|
+
address: walletAddress,
|
|
211
|
+
chainId,
|
|
212
|
+
isPrimary: true,
|
|
213
|
+
createdAt: /* @__PURE__ */ new Date()
|
|
214
|
+
}
|
|
215
|
+
});
|
|
216
|
+
await ctx.context.internalAdapter.createAccount({
|
|
217
|
+
userId: user.id,
|
|
218
|
+
providerId: "siwe",
|
|
219
|
+
accountId: createWalletAccountId(walletAddress, chainId)
|
|
220
|
+
});
|
|
221
|
+
} else if (!walletAddressForChain) {
|
|
222
|
+
await ctx.context.adapter.create({
|
|
223
|
+
model: "walletAddress",
|
|
224
|
+
data: {
|
|
225
|
+
userId: user.id,
|
|
226
|
+
address: walletAddress,
|
|
227
|
+
chainId,
|
|
228
|
+
isPrimary: false,
|
|
229
|
+
createdAt: /* @__PURE__ */ new Date()
|
|
230
|
+
}
|
|
231
|
+
});
|
|
232
|
+
await ctx.context.internalAdapter.createAccount({
|
|
233
|
+
userId: user.id,
|
|
234
|
+
providerId: "siwe",
|
|
235
|
+
accountId: createWalletAccountId(walletAddress, chainId)
|
|
236
|
+
});
|
|
237
|
+
}
|
|
238
|
+
const session = await ctx.context.internalAdapter.createSession(user.id);
|
|
239
|
+
if (!session) throw APIError.from("INTERNAL_SERVER_ERROR", SIWE_ERROR_CODES.SESSION_CREATION_FAILED);
|
|
240
|
+
await setSessionCookie(ctx, {
|
|
241
|
+
session,
|
|
242
|
+
user
|
|
243
|
+
});
|
|
244
|
+
return ctx.json({
|
|
245
|
+
token: session.token,
|
|
246
|
+
success: true,
|
|
247
|
+
user: {
|
|
248
|
+
id: user.id,
|
|
249
|
+
walletAddress,
|
|
250
|
+
chainId
|
|
251
|
+
}
|
|
252
|
+
});
|
|
253
|
+
})
|
|
254
|
+
},
|
|
255
|
+
options,
|
|
256
|
+
$ERROR_CODES: SIWE_ERROR_CODES
|
|
257
|
+
});
|
|
258
|
+
|
|
259
|
+
//#endregion
|
|
260
|
+
export { siwe };
|
|
261
|
+
//# sourceMappingURL=index.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index.mjs","names":[],"sources":["../../../src/plugins/siwe/index.ts"],"sourcesContent":["import type { BetterAuthPlugin } from \"@better-auth/core\";\nimport { createAuthEndpoint } from \"@better-auth/core/api\";\nimport type { Account } from \"@better-auth/core/db\";\n\nimport * as z from \"zod\";\nimport { APIError, getSessionFromCtx } from \"../../api\";\nimport { setSessionCookie } from \"../../cookies\";\nimport { mergeSchema } from \"../../db/schema\";\nimport type { InferOptionSchema, User } from \"../../types\";\nimport { toChecksumAddress } from \"../../utils/hashing\";\nimport { getOrigin } from \"../../utils/url\";\nimport { SIWE_ERROR_CODES } from \"./error-codes\";\nimport { schema } from \"./schema\";\nimport type {\n\tENSLookupArgs,\n\tENSLookupResult,\n\tSIWEVerifyMessageArgs,\n\tWalletAddress,\n} from \"./types\";\n\ndeclare module \"@better-auth/core\" {\n\tinterface BetterAuthPluginRegistry<AuthOptions, Options> {\n\t\tsiwe: {\n\t\t\tcreator: typeof siwe;\n\t\t};\n\t}\n}\n\nexport interface SIWEPluginOptions {\n\tdomain: string;\n\temailDomainName?: string | undefined;\n\tanonymous?: boolean | undefined;\n\tgetNonce: () => Promise<string>;\n\tverifyMessage: (args: SIWEVerifyMessageArgs) => Promise<boolean>;\n\tensLookup?: ((args: ENSLookupArgs) => Promise<ENSLookupResult>) | undefined;\n\tschema?: InferOptionSchema<typeof schema> | undefined;\n}\n\nconst walletAddressSchema = z\n\t.string()\n\t.regex(/^0[xX][a-fA-F0-9]{40}$/i)\n\t.length(42);\n\nconst chainIdSchema = z\n\t.number()\n\t.int()\n\t.positive()\n\t.max(2147483647)\n\t.optional()\n\t.default(1);\n\nconst getSiweNonceBodySchema = z.object({\n\twalletAddress: walletAddressSchema,\n\tchainId: chainIdSchema,\n});\n\nconst verifySiweMessageBodyBaseSchema = z.object({\n\tmessage: z.string().min(1),\n\tsignature: z.string().min(1),\n\twalletAddress: walletAddressSchema,\n\tchainId: chainIdSchema,\n\temail: z.email().optional(),\n});\n\nconst createWalletAccountId = (walletAddress: string, chainId: number) =>\n\t`${walletAddress}:${chainId}`;\n\nconst createWalletVerificationIdentifier = (\n\twalletAddress: string,\n\tchainId: number,\n) => `siwe:${createWalletAccountId(walletAddress, chainId)}`;\n\nconst parseWalletAccountId = (\n\taccountId: string,\n): { address: string; chainId: number } | null => {\n\tconst [address, chainIdStr] = accountId.split(\":\");\n\tconst chainId = parseInt(chainIdStr ?? \"\", 10);\n\n\tif (!address || Number.isNaN(chainId)) {\n\t\treturn null;\n\t}\n\n\treturn { address, chainId };\n};\n\nconst verifySiweMessageOrThrow = async (\n\toptions: SIWEPluginOptions,\n\targs: {\n\t\tmessage: string;\n\t\tsignature: string;\n\t\taddress: string;\n\t\tchainId: number;\n\t\tnonce: string;\n\t},\n) => {\n\ttry {\n\t\tconst verified = await options.verifyMessage({\n\t\t\tmessage: args.message,\n\t\t\tsignature: args.signature,\n\t\t\taddress: args.address,\n\t\t\tchainId: args.chainId,\n\t\t\tcacao: {\n\t\t\t\th: { t: \"caip122\" },\n\t\t\t\tp: {\n\t\t\t\t\tdomain: options.domain,\n\t\t\t\t\taud: options.domain,\n\t\t\t\t\tnonce: args.nonce,\n\t\t\t\t\tiss: options.domain,\n\t\t\t\t\tversion: \"1\",\n\t\t\t\t},\n\t\t\t\ts: { t: \"eip191\", s: args.signature },\n\t\t\t},\n\t\t});\n\n\t\tif (!verified) {\n\t\t\tthrow APIError.from(\n\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\tSIWE_ERROR_CODES.INVALID_SIWE_SIGNATURE,\n\t\t\t);\n\t\t}\n\t} catch {\n\t\tthrow APIError.from(\n\t\t\t\"UNAUTHORIZED\",\n\t\t\tSIWE_ERROR_CODES.INVALID_SIWE_SIGNATURE,\n\t\t);\n\t}\n};\n\nexport const siwe = (options: SIWEPluginOptions) =>\n\t({\n\t\tid: \"siwe\",\n\t\tschema: mergeSchema(schema, options?.schema),\n\t\tinit(ctx) {\n\t\t\treturn {\n\t\t\t\toptions: {\n\t\t\t\t\tdatabaseHooks: {\n\t\t\t\t\t\taccount: {\n\t\t\t\t\t\t\tdelete: {\n\t\t\t\t\t\t\t\tasync after(account: Account) {\n\t\t\t\t\t\t\t\t\tif (account.providerId !== \"siwe\" || !account.accountId) {\n\t\t\t\t\t\t\t\t\t\treturn;\n\t\t\t\t\t\t\t\t\t}\n\n\t\t\t\t\t\t\t\t\tconst parsed = parseWalletAccountId(account.accountId);\n\t\t\t\t\t\t\t\t\tif (!parsed) {\n\t\t\t\t\t\t\t\t\t\treturn;\n\t\t\t\t\t\t\t\t\t}\n\n\t\t\t\t\t\t\t\t\tawait ctx.adapter.deleteMany({\n\t\t\t\t\t\t\t\t\t\tmodel: \"walletAddress\",\n\t\t\t\t\t\t\t\t\t\twhere: [\n\t\t\t\t\t\t\t\t\t\t\t{ field: \"address\", value: parsed.address },\n\t\t\t\t\t\t\t\t\t\t\t{ field: \"chainId\", value: parsed.chainId },\n\t\t\t\t\t\t\t\t\t\t\t{ field: \"userId\", value: account.userId },\n\t\t\t\t\t\t\t\t\t\t],\n\t\t\t\t\t\t\t\t\t});\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t};\n\t\t},\n\t\tendpoints: {\n\t\t\tgetSiweNonce: createAuthEndpoint(\n\t\t\t\t\"/siwe/nonce\",\n\t\t\t\t{\n\t\t\t\t\tmethod: \"POST\",\n\t\t\t\t\tbody: getSiweNonceBodySchema,\n\t\t\t\t},\n\t\t\t\tasync (ctx) => {\n\t\t\t\t\tconst { walletAddress: rawWalletAddress, chainId } = ctx.body;\n\t\t\t\t\tconst walletAddress = toChecksumAddress(rawWalletAddress);\n\t\t\t\t\tconst nonce = await options.getNonce();\n\n\t\t\t\t\tawait ctx.context.internalAdapter.createVerificationValue({\n\t\t\t\t\t\tidentifier: `siwe:${createWalletAccountId(walletAddress, chainId)}`,\n\t\t\t\t\t\tvalue: nonce,\n\t\t\t\t\t\texpiresAt: new Date(Date.now() + 15 * 60 * 1000),\n\t\t\t\t\t});\n\n\t\t\t\t\treturn ctx.json({ nonce });\n\t\t\t\t},\n\t\t\t),\n\t\t\tverifySiweMessage: createAuthEndpoint(\n\t\t\t\t\"/siwe/verify\",\n\t\t\t\t{\n\t\t\t\t\tmethod: \"POST\",\n\t\t\t\t\tbody: verifySiweMessageBodyBaseSchema.refine(\n\t\t\t\t\t\t(data) => options.anonymous !== false || !!data.email,\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\tmessage:\n\t\t\t\t\t\t\t\t\"Email is required when the anonymous plugin option is disabled.\",\n\t\t\t\t\t\t\tpath: [\"email\"],\n\t\t\t\t\t\t},\n\t\t\t\t\t),\n\t\t\t\t\trequireRequest: true,\n\t\t\t\t},\n\t\t\t\tasync (ctx) => {\n\t\t\t\t\tconst {\n\t\t\t\t\t\tmessage,\n\t\t\t\t\t\tsignature,\n\t\t\t\t\t\twalletAddress: rawWalletAddress,\n\t\t\t\t\t\tchainId,\n\t\t\t\t\t\temail,\n\t\t\t\t\t} = ctx.body;\n\n\t\t\t\t\tconst walletAddress = toChecksumAddress(rawWalletAddress);\n\t\t\t\t\tconst isAnonymous = options.anonymous ?? true;\n\n\t\t\t\t\tconst verificationIdentifier = createWalletVerificationIdentifier(\n\t\t\t\t\t\twalletAddress,\n\t\t\t\t\t\tchainId,\n\t\t\t\t\t);\n\n\t\t\t\t\tconst verification =\n\t\t\t\t\t\tawait ctx.context.internalAdapter.findVerificationValue(\n\t\t\t\t\t\t\tverificationIdentifier,\n\t\t\t\t\t\t);\n\n\t\t\t\t\tif (!verification || new Date() > verification.expiresAt) {\n\t\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\t\"UNAUTHORIZED\",\n\t\t\t\t\t\t\tSIWE_ERROR_CODES.INVALID_OR_EXPIRED_NONCE,\n\t\t\t\t\t\t);\n\t\t\t\t\t}\n\n\t\t\t\t\tawait verifySiweMessageOrThrow(options, {\n\t\t\t\t\t\tmessage,\n\t\t\t\t\t\tsignature,\n\t\t\t\t\t\taddress: walletAddress,\n\t\t\t\t\t\tchainId,\n\t\t\t\t\t\tnonce: verification.value,\n\t\t\t\t\t});\n\n\t\t\t\t\t// Nonce is single-use: delete it after successful verification.\n\t\t\t\t\tawait ctx.context.internalAdapter.deleteVerificationValue(\n\t\t\t\t\t\tverification.id,\n\t\t\t\t\t);\n\n\t\t\t\t\tconst walletAddressForChain =\n\t\t\t\t\t\tawait ctx.context.adapter.findOne<WalletAddress>({\n\t\t\t\t\t\t\tmodel: \"walletAddress\",\n\t\t\t\t\t\t\twhere: [\n\t\t\t\t\t\t\t\t{ field: \"address\", operator: \"eq\", value: walletAddress },\n\t\t\t\t\t\t\t\t{ field: \"chainId\", operator: \"eq\", value: chainId },\n\t\t\t\t\t\t\t],\n\t\t\t\t\t\t});\n\n\t\t\t\t\tconst walletAddressAnyChain =\n\t\t\t\t\t\tawait ctx.context.adapter.findOne<WalletAddress>({\n\t\t\t\t\t\t\tmodel: \"walletAddress\",\n\t\t\t\t\t\t\twhere: [\n\t\t\t\t\t\t\t\t{ field: \"address\", operator: \"eq\", value: walletAddress },\n\t\t\t\t\t\t\t],\n\t\t\t\t\t\t});\n\n\t\t\t\t\tconst currentSession = await getSessionFromCtx(ctx);\n\t\t\t\t\tconst accountLinking = ctx.context.options.account?.accountLinking;\n\t\t\t\t\tconst trustedProviders = accountLinking?.trustedProviders;\n\n\t\t\t\t\tconst shouldLink =\n\t\t\t\t\t\tcurrentSession !== null &&\n\t\t\t\t\t\taccountLinking?.enabled !== false &&\n\t\t\t\t\t\t(trustedProviders === undefined ||\n\t\t\t\t\t\t\ttrustedProviders.length === 0 ||\n\t\t\t\t\t\t\ttrustedProviders.includes(\"siwe\"));\n\n\t\t\t\t\tif (shouldLink) {\n\t\t\t\t\t\tconst sessionUser = currentSession.user;\n\n\t\t\t\t\t\tif (\n\t\t\t\t\t\t\twalletAddressForChain &&\n\t\t\t\t\t\t\twalletAddressForChain.userId === sessionUser.id\n\t\t\t\t\t\t) {\n\t\t\t\t\t\t\treturn ctx.json({\n\t\t\t\t\t\t\t\ttoken: currentSession.session.token,\n\t\t\t\t\t\t\t\tsuccess: true,\n\t\t\t\t\t\t\t\tuser: { id: sessionUser.id, walletAddress, chainId },\n\t\t\t\t\t\t\t});\n\t\t\t\t\t\t}\n\n\t\t\t\t\t\tconst walletOwner =\n\t\t\t\t\t\t\twalletAddressForChain?.userId ?? walletAddressAnyChain?.userId;\n\t\t\t\t\t\tif (walletOwner && walletOwner !== sessionUser.id) {\n\t\t\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\t\t\"BAD_REQUEST\",\n\t\t\t\t\t\t\t\tSIWE_ERROR_CODES.WALLET_ALREADY_LINKED,\n\t\t\t\t\t\t\t);\n\t\t\t\t\t\t}\n\n\t\t\t\t\t\tawait ctx.context.adapter.create({\n\t\t\t\t\t\t\tmodel: \"walletAddress\",\n\t\t\t\t\t\t\tdata: {\n\t\t\t\t\t\t\t\tuserId: sessionUser.id,\n\t\t\t\t\t\t\t\taddress: walletAddress,\n\t\t\t\t\t\t\t\tchainId,\n\t\t\t\t\t\t\t\tisPrimary: false,\n\t\t\t\t\t\t\t\tcreatedAt: new Date(),\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t});\n\n\t\t\t\t\t\tawait ctx.context.internalAdapter.linkAccount({\n\t\t\t\t\t\t\tuserId: sessionUser.id,\n\t\t\t\t\t\t\tproviderId: \"siwe\",\n\t\t\t\t\t\t\taccountId: createWalletAccountId(walletAddress, chainId),\n\t\t\t\t\t\t});\n\n\t\t\t\t\t\treturn ctx.json({\n\t\t\t\t\t\t\ttoken: currentSession.session.token,\n\t\t\t\t\t\t\tsuccess: true,\n\t\t\t\t\t\t\tuser: { id: sessionUser.id, walletAddress, chainId },\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\n\t\t\t\t\tconst existingUserId =\n\t\t\t\t\t\twalletAddressForChain?.userId ?? walletAddressAnyChain?.userId;\n\n\t\t\t\t\tlet user = existingUserId\n\t\t\t\t\t\t? await ctx.context.adapter.findOne<User>({\n\t\t\t\t\t\t\t\tmodel: \"user\",\n\t\t\t\t\t\t\t\twhere: [{ field: \"id\", operator: \"eq\", value: existingUserId }],\n\t\t\t\t\t\t\t})\n\t\t\t\t\t\t: null;\n\n\t\t\t\t\tif (!user) {\n\t\t\t\t\t\tconst domain =\n\t\t\t\t\t\t\toptions.emailDomainName ?? getOrigin(ctx.context.baseURL);\n\t\t\t\t\t\tconst userEmail =\n\t\t\t\t\t\t\t!isAnonymous && email ? email : `${walletAddress}@${domain}`;\n\t\t\t\t\t\tconst { name, avatar } =\n\t\t\t\t\t\t\t(await options.ensLookup?.({ walletAddress })) ?? {};\n\n\t\t\t\t\t\tuser = await ctx.context.internalAdapter.createUser({\n\t\t\t\t\t\t\tname: name ?? walletAddress,\n\t\t\t\t\t\t\temail: userEmail,\n\t\t\t\t\t\t\timage: avatar ?? \"\",\n\t\t\t\t\t\t});\n\n\t\t\t\t\t\tawait ctx.context.adapter.create({\n\t\t\t\t\t\t\tmodel: \"walletAddress\",\n\t\t\t\t\t\t\tdata: {\n\t\t\t\t\t\t\t\tuserId: user.id,\n\t\t\t\t\t\t\t\taddress: walletAddress,\n\t\t\t\t\t\t\t\tchainId,\n\t\t\t\t\t\t\t\tisPrimary: true,\n\t\t\t\t\t\t\t\tcreatedAt: new Date(),\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t});\n\n\t\t\t\t\t\tawait ctx.context.internalAdapter.createAccount({\n\t\t\t\t\t\t\tuserId: user.id,\n\t\t\t\t\t\t\tproviderId: \"siwe\",\n\t\t\t\t\t\t\taccountId: createWalletAccountId(walletAddress, chainId),\n\t\t\t\t\t\t});\n\t\t\t\t\t} else if (!walletAddressForChain) {\n\t\t\t\t\t\t// User exists but this specific address/chain combo doesn't\n\t\t\t\t\t\tawait ctx.context.adapter.create({\n\t\t\t\t\t\t\tmodel: \"walletAddress\",\n\t\t\t\t\t\t\tdata: {\n\t\t\t\t\t\t\t\tuserId: user.id,\n\t\t\t\t\t\t\t\taddress: walletAddress,\n\t\t\t\t\t\t\t\tchainId,\n\t\t\t\t\t\t\t\tisPrimary: false,\n\t\t\t\t\t\t\t\tcreatedAt: new Date(),\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t});\n\n\t\t\t\t\t\tawait ctx.context.internalAdapter.createAccount({\n\t\t\t\t\t\t\tuserId: user.id,\n\t\t\t\t\t\t\tproviderId: \"siwe\",\n\t\t\t\t\t\t\taccountId: createWalletAccountId(walletAddress, chainId),\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\n\t\t\t\t\tconst session = await ctx.context.internalAdapter.createSession(\n\t\t\t\t\t\tuser.id,\n\t\t\t\t\t);\n\n\t\t\t\t\tif (!session) {\n\t\t\t\t\t\tthrow APIError.from(\n\t\t\t\t\t\t\t\"INTERNAL_SERVER_ERROR\",\n\t\t\t\t\t\t\tSIWE_ERROR_CODES.SESSION_CREATION_FAILED,\n\t\t\t\t\t\t);\n\t\t\t\t\t}\n\n\t\t\t\t\tawait setSessionCookie(ctx, { session, user });\n\n\t\t\t\t\treturn ctx.json({\n\t\t\t\t\t\ttoken: session.token,\n\t\t\t\t\t\tsuccess: true,\n\t\t\t\t\t\tuser: { id: user.id, walletAddress, chainId },\n\t\t\t\t\t});\n\t\t\t\t},\n\t\t\t),\n\t\t},\n\t\toptions,\n\t\t$ERROR_CODES: SIWE_ERROR_CODES,\n\t}) satisfies BetterAuthPlugin;\n"],"mappings":";;;;;;;;;;;;AAsCA,MAAM,sBAAsB,EAC1B,QAAQ,CACR,MAAM,0BAA0B,CAChC,OAAO,GAAG;AAEZ,MAAM,gBAAgB,EACpB,QAAQ,CACR,KAAK,CACL,UAAU,CACV,IAAI,WAAW,CACf,UAAU,CACV,QAAQ,EAAE;AAEZ,MAAM,yBAAyB,EAAE,OAAO;CACvC,eAAe;CACf,SAAS;CACT,CAAC;AAEF,MAAM,kCAAkC,EAAE,OAAO;CAChD,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE;CAC1B,WAAW,EAAE,QAAQ,CAAC,IAAI,EAAE;CAC5B,eAAe;CACf,SAAS;CACT,OAAO,EAAE,OAAO,CAAC,UAAU;CAC3B,CAAC;AAEF,MAAM,yBAAyB,eAAuB,YACrD,GAAG,cAAc,GAAG;AAErB,MAAM,sCACL,eACA,YACI,QAAQ,sBAAsB,eAAe,QAAQ;AAE1D,MAAM,wBACL,cACiD;CACjD,MAAM,CAAC,SAAS,cAAc,UAAU,MAAM,IAAI;CAClD,MAAM,UAAU,SAAS,cAAc,IAAI,GAAG;AAE9C,KAAI,CAAC,WAAW,OAAO,MAAM,QAAQ,CACpC,QAAO;AAGR,QAAO;EAAE;EAAS;EAAS;;AAG5B,MAAM,2BAA2B,OAChC,SACA,SAOI;AACJ,KAAI;AAmBH,MAAI,CAlBa,MAAM,QAAQ,cAAc;GAC5C,SAAS,KAAK;GACd,WAAW,KAAK;GAChB,SAAS,KAAK;GACd,SAAS,KAAK;GACd,OAAO;IACN,GAAG,EAAE,GAAG,WAAW;IACnB,GAAG;KACF,QAAQ,QAAQ;KAChB,KAAK,QAAQ;KACb,OAAO,KAAK;KACZ,KAAK,QAAQ;KACb,SAAS;KACT;IACD,GAAG;KAAE,GAAG;KAAU,GAAG,KAAK;KAAW;IACrC;GACD,CAAC,CAGD,OAAM,SAAS,KACd,gBACA,iBAAiB,uBACjB;SAEK;AACP,QAAM,SAAS,KACd,gBACA,iBAAiB,uBACjB;;;AAIH,MAAa,QAAQ,aACnB;CACA,IAAI;CACJ,QAAQ,YAAY,QAAQ,SAAS,OAAO;CAC5C,KAAK,KAAK;AACT,SAAO,EACN,SAAS,EACR,eAAe,EACd,SAAS,EACR,QAAQ,EACP,MAAM,MAAM,SAAkB;AAC7B,OAAI,QAAQ,eAAe,UAAU,CAAC,QAAQ,UAC7C;GAGD,MAAM,SAAS,qBAAqB,QAAQ,UAAU;AACtD,OAAI,CAAC,OACJ;AAGD,SAAM,IAAI,QAAQ,WAAW;IAC5B,OAAO;IACP,OAAO;KACN;MAAE,OAAO;MAAW,OAAO,OAAO;MAAS;KAC3C;MAAE,OAAO;MAAW,OAAO,OAAO;MAAS;KAC3C;MAAE,OAAO;MAAU,OAAO,QAAQ;MAAQ;KAC1C;IACD,CAAC;KAEH,EACD,EACD,EACD,EACD;;CAEF,WAAW;EACV,cAAc,mBACb,eACA;GACC,QAAQ;GACR,MAAM;GACN,EACD,OAAO,QAAQ;GACd,MAAM,EAAE,eAAe,kBAAkB,YAAY,IAAI;GACzD,MAAM,gBAAgB,kBAAkB,iBAAiB;GACzD,MAAM,QAAQ,MAAM,QAAQ,UAAU;AAEtC,SAAM,IAAI,QAAQ,gBAAgB,wBAAwB;IACzD,YAAY,QAAQ,sBAAsB,eAAe,QAAQ;IACjE,OAAO;IACP,WAAW,IAAI,KAAK,KAAK,KAAK,GAAG,MAAU,IAAK;IAChD,CAAC;AAEF,UAAO,IAAI,KAAK,EAAE,OAAO,CAAC;IAE3B;EACD,mBAAmB,mBAClB,gBACA;GACC,QAAQ;GACR,MAAM,gCAAgC,QACpC,SAAS,QAAQ,cAAc,SAAS,CAAC,CAAC,KAAK,OAChD;IACC,SACC;IACD,MAAM,CAAC,QAAQ;IACf,CACD;GACD,gBAAgB;GAChB,EACD,OAAO,QAAQ;GACd,MAAM,EACL,SACA,WACA,eAAe,kBACf,SACA,UACG,IAAI;GAER,MAAM,gBAAgB,kBAAkB,iBAAiB;GACzD,MAAM,cAAc,QAAQ,aAAa;GAEzC,MAAM,yBAAyB,mCAC9B,eACA,QACA;GAED,MAAM,eACL,MAAM,IAAI,QAAQ,gBAAgB,sBACjC,uBACA;AAEF,OAAI,CAAC,gCAAgB,IAAI,MAAM,GAAG,aAAa,UAC9C,OAAM,SAAS,KACd,gBACA,iBAAiB,yBACjB;AAGF,SAAM,yBAAyB,SAAS;IACvC;IACA;IACA,SAAS;IACT;IACA,OAAO,aAAa;IACpB,CAAC;AAGF,SAAM,IAAI,QAAQ,gBAAgB,wBACjC,aAAa,GACb;GAED,MAAM,wBACL,MAAM,IAAI,QAAQ,QAAQ,QAAuB;IAChD,OAAO;IACP,OAAO,CACN;KAAE,OAAO;KAAW,UAAU;KAAM,OAAO;KAAe,EAC1D;KAAE,OAAO;KAAW,UAAU;KAAM,OAAO;KAAS,CACpD;IACD,CAAC;GAEH,MAAM,wBACL,MAAM,IAAI,QAAQ,QAAQ,QAAuB;IAChD,OAAO;IACP,OAAO,CACN;KAAE,OAAO;KAAW,UAAU;KAAM,OAAO;KAAe,CAC1D;IACD,CAAC;GAEH,MAAM,iBAAiB,MAAM,kBAAkB,IAAI;GACnD,MAAM,iBAAiB,IAAI,QAAQ,QAAQ,SAAS;GACpD,MAAM,mBAAmB,gBAAgB;AASzC,OANC,mBAAmB,QACnB,gBAAgB,YAAY,UAC3B,qBAAqB,UACrB,iBAAiB,WAAW,KAC5B,iBAAiB,SAAS,OAAO,GAEnB;IACf,MAAM,cAAc,eAAe;AAEnC,QACC,yBACA,sBAAsB,WAAW,YAAY,GAE7C,QAAO,IAAI,KAAK;KACf,OAAO,eAAe,QAAQ;KAC9B,SAAS;KACT,MAAM;MAAE,IAAI,YAAY;MAAI;MAAe;MAAS;KACpD,CAAC;IAGH,MAAM,cACL,uBAAuB,UAAU,uBAAuB;AACzD,QAAI,eAAe,gBAAgB,YAAY,GAC9C,OAAM,SAAS,KACd,eACA,iBAAiB,sBACjB;AAGF,UAAM,IAAI,QAAQ,QAAQ,OAAO;KAChC,OAAO;KACP,MAAM;MACL,QAAQ,YAAY;MACpB,SAAS;MACT;MACA,WAAW;MACX,2BAAW,IAAI,MAAM;MACrB;KACD,CAAC;AAEF,UAAM,IAAI,QAAQ,gBAAgB,YAAY;KAC7C,QAAQ,YAAY;KACpB,YAAY;KACZ,WAAW,sBAAsB,eAAe,QAAQ;KACxD,CAAC;AAEF,WAAO,IAAI,KAAK;KACf,OAAO,eAAe,QAAQ;KAC9B,SAAS;KACT,MAAM;MAAE,IAAI,YAAY;MAAI;MAAe;MAAS;KACpD,CAAC;;GAGH,MAAM,iBACL,uBAAuB,UAAU,uBAAuB;GAEzD,IAAI,OAAO,iBACR,MAAM,IAAI,QAAQ,QAAQ,QAAc;IACxC,OAAO;IACP,OAAO,CAAC;KAAE,OAAO;KAAM,UAAU;KAAM,OAAO;KAAgB,CAAC;IAC/D,CAAC,GACD;AAEH,OAAI,CAAC,MAAM;IACV,MAAM,SACL,QAAQ,mBAAmB,UAAU,IAAI,QAAQ,QAAQ;IAC1D,MAAM,YACL,CAAC,eAAe,QAAQ,QAAQ,GAAG,cAAc,GAAG;IACrD,MAAM,EAAE,MAAM,WACZ,MAAM,QAAQ,YAAY,EAAE,eAAe,CAAC,IAAK,EAAE;AAErD,WAAO,MAAM,IAAI,QAAQ,gBAAgB,WAAW;KACnD,MAAM,QAAQ;KACd,OAAO;KACP,OAAO,UAAU;KACjB,CAAC;AAEF,UAAM,IAAI,QAAQ,QAAQ,OAAO;KAChC,OAAO;KACP,MAAM;MACL,QAAQ,KAAK;MACb,SAAS;MACT;MACA,WAAW;MACX,2BAAW,IAAI,MAAM;MACrB;KACD,CAAC;AAEF,UAAM,IAAI,QAAQ,gBAAgB,cAAc;KAC/C,QAAQ,KAAK;KACb,YAAY;KACZ,WAAW,sBAAsB,eAAe,QAAQ;KACxD,CAAC;cACQ,CAAC,uBAAuB;AAElC,UAAM,IAAI,QAAQ,QAAQ,OAAO;KAChC,OAAO;KACP,MAAM;MACL,QAAQ,KAAK;MACb,SAAS;MACT;MACA,WAAW;MACX,2BAAW,IAAI,MAAM;MACrB;KACD,CAAC;AAEF,UAAM,IAAI,QAAQ,gBAAgB,cAAc;KAC/C,QAAQ,KAAK;KACb,YAAY;KACZ,WAAW,sBAAsB,eAAe,QAAQ;KACxD,CAAC;;GAGH,MAAM,UAAU,MAAM,IAAI,QAAQ,gBAAgB,cACjD,KAAK,GACL;AAED,OAAI,CAAC,QACJ,OAAM,SAAS,KACd,yBACA,iBAAiB,wBACjB;AAGF,SAAM,iBAAiB,KAAK;IAAE;IAAS;IAAM,CAAC;AAE9C,UAAO,IAAI,KAAK;IACf,OAAO,QAAQ;IACf,SAAS;IACT,MAAM;KAAE,IAAI,KAAK;KAAI;KAAe;KAAS;IAC7C,CAAC;IAEH;EACD;CACD;CACA,cAAc;CACd"}
|
|
@@ -0,0 +1,32 @@
|
|
|
1
|
+
//#region src/plugins/siwe/schema.ts
|
|
2
|
+
const schema = { walletAddress: { fields: {
|
|
3
|
+
userId: {
|
|
4
|
+
type: "string",
|
|
5
|
+
references: {
|
|
6
|
+
model: "user",
|
|
7
|
+
field: "id"
|
|
8
|
+
},
|
|
9
|
+
required: true,
|
|
10
|
+
index: true
|
|
11
|
+
},
|
|
12
|
+
address: {
|
|
13
|
+
type: "string",
|
|
14
|
+
required: true
|
|
15
|
+
},
|
|
16
|
+
chainId: {
|
|
17
|
+
type: "number",
|
|
18
|
+
required: true
|
|
19
|
+
},
|
|
20
|
+
isPrimary: {
|
|
21
|
+
type: "boolean",
|
|
22
|
+
defaultValue: false
|
|
23
|
+
},
|
|
24
|
+
createdAt: {
|
|
25
|
+
type: "date",
|
|
26
|
+
required: true
|
|
27
|
+
}
|
|
28
|
+
} } };
|
|
29
|
+
|
|
30
|
+
//#endregion
|
|
31
|
+
export { schema };
|
|
32
|
+
//# sourceMappingURL=schema.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"schema.mjs","names":[],"sources":["../../../src/plugins/siwe/schema.ts"],"sourcesContent":["import type { BetterAuthPluginDBSchema } from \"@better-auth/core/db\";\n\nexport const schema = {\n\twalletAddress: {\n\t\tfields: {\n\t\t\tuserId: {\n\t\t\t\ttype: \"string\",\n\t\t\t\treferences: {\n\t\t\t\t\tmodel: \"user\",\n\t\t\t\t\tfield: \"id\",\n\t\t\t\t},\n\t\t\t\trequired: true,\n\t\t\t\tindex: true,\n\t\t\t},\n\t\t\taddress: {\n\t\t\t\ttype: \"string\",\n\t\t\t\trequired: true,\n\t\t\t},\n\t\t\tchainId: {\n\t\t\t\ttype: \"number\",\n\t\t\t\trequired: true,\n\t\t\t},\n\t\t\tisPrimary: {\n\t\t\t\ttype: \"boolean\",\n\t\t\t\tdefaultValue: false,\n\t\t\t},\n\t\t\tcreatedAt: {\n\t\t\t\ttype: \"date\",\n\t\t\t\trequired: true,\n\t\t\t},\n\t\t},\n\t},\n} satisfies BetterAuthPluginDBSchema;\n"],"mappings":";AAEA,MAAa,SAAS,EACrB,eAAe,EACd,QAAQ;CACP,QAAQ;EACP,MAAM;EACN,YAAY;GACX,OAAO;GACP,OAAO;GACP;EACD,UAAU;EACV,OAAO;EACP;CACD,SAAS;EACR,MAAM;EACN,UAAU;EACV;CACD,SAAS;EACR,MAAM;EACN,UAAU;EACV;CACD,WAAW;EACV,MAAM;EACN,cAAc;EACd;CACD,WAAW;EACV,MAAM;EACN,UAAU;EACV;CACD,EACD,EACD"}
|