@hammadj/better-auth 1.5.0-beta.9

package/dist/plugins/one-time-token/index.mjs

@@ -0,0 +1,82 @@
+import { generateRandomString } from "../../crypto/random.mjs";
+import "../../crypto/index.mjs";
+import { setSessionCookie } from "../../cookies/index.mjs";
+import { sessionMiddleware } from "../../api/routes/session.mjs";
+import "../../api/index.mjs";
+import { defaultKeyHasher } from "./utils.mjs";
+import { createAuthEndpoint, createAuthMiddleware } from "@better-auth/core/api";
+import * as z from "zod";
+
+//#region src/plugins/one-time-token/index.ts
+const verifyOneTimeTokenBodySchema = z.object({ token: z.string().meta({ description: "The token to verify. Eg: \"some-token\"" }) });
+const oneTimeToken = (options) => {
+	const opts = {
+		storeToken: "plain",
+		...options
+	};
+	async function storeToken(ctx, token) {
+		if (opts.storeToken === "hashed") return await defaultKeyHasher(token);
+		if (typeof opts.storeToken === "object" && "type" in opts.storeToken && opts.storeToken.type === "custom-hasher") return await opts.storeToken.hash(token);
+		return token;
+	}
+	async function generateToken(c, session) {
+		const token = opts?.generateToken ? await opts.generateToken(session, c) : generateRandomString(32);
+		const expiresAt = new Date(Date.now() + (opts?.expiresIn ?? 3) * 60 * 1e3);
+		const storedToken = await storeToken(c, token);
+		await c.context.internalAdapter.createVerificationValue({
+			value: session.session.token,
+			identifier: `one-time-token:${storedToken}`,
+			expiresAt
+		});
+		return token;
+	}
+	return {
+		id: "one-time-token",
+		endpoints: {
+			generateOneTimeToken: createAuthEndpoint("/one-time-token/generate", {
+				method: "GET",
+				use: [sessionMiddleware]
+			}, async (c) => {
+				if (opts?.disableClientRequest && c.request) throw c.error("BAD_REQUEST", { message: "Client requests are disabled" });
+				const session = c.context.session;
+				const token = await generateToken(c, session);
+				return c.json({ token });
+			}),
+			verifyOneTimeToken: createAuthEndpoint("/one-time-token/verify", {
+				method: "POST",
+				body: verifyOneTimeTokenBodySchema
+			}, async (c) => {
+				const { token } = c.body;
+				const storedToken = await storeToken(c, token);
+				const verificationValue = await c.context.internalAdapter.findVerificationValue(`one-time-token:${storedToken}`);
+				if (!verificationValue) throw c.error("BAD_REQUEST", { message: "Invalid token" });
+				await c.context.internalAdapter.deleteVerificationValue(verificationValue.id);
+				if (verificationValue.expiresAt < /* @__PURE__ */ new Date()) throw c.error("BAD_REQUEST", { message: "Token expired" });
+				const session = await c.context.internalAdapter.findSession(verificationValue.value);
+				if (!session) throw c.error("BAD_REQUEST", { message: "Session not found" });
+				if (!opts?.disableSetSessionCookie) await setSessionCookie(c, session);
+				if (session.session.expiresAt < /* @__PURE__ */ new Date()) throw c.error("BAD_REQUEST", { message: "Session expired" });
+				return c.json(session);
+			})
+		},
+		hooks: { after: [{
+			matcher: () => true,
+			handler: createAuthMiddleware(async (ctx) => {
+				if (ctx.context.newSession) {
+					if (!opts?.setOttHeaderOnNewSession) return;
+					const exposedHeaders = ctx.context.responseHeaders?.get("access-control-expose-headers") || "";
+					const headersSet = new Set(exposedHeaders.split(",").map((header) => header.trim()).filter(Boolean));
+					headersSet.add("set-ott");
+					const token = await generateToken(ctx, ctx.context.newSession);
+					ctx.setHeader("set-ott", token);
+					ctx.setHeader("Access-Control-Expose-Headers", Array.from(headersSet).join(", "));
+				}
+			})
+		}] },
+		options
+	};
+};
+
+//#endregion
+export { oneTimeToken };
+//# sourceMappingURL=index.mjs.map

package/dist/plugins/one-time-token/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","names":[],"sources":["../../../src/plugins/one-time-token/index.ts"],"sourcesContent":["import type {\n\tBetterAuthPlugin,\n\tGenericEndpointContext,\n} from \"@better-auth/core\";\nimport {\n\tcreateAuthEndpoint,\n\tcreateAuthMiddleware,\n} from \"@better-auth/core/api\";\nimport * as z from \"zod\";\nimport { sessionMiddleware } from \"../../api\";\nimport { setSessionCookie } from \"../../cookies\";\nimport { generateRandomString } from \"../../crypto\";\nimport type { Session, User } from \"../../types\";\nimport { defaultKeyHasher } from \"./utils\";\n\ndeclare module \"@better-auth/core\" {\n\tinterface BetterAuthPluginRegistry<AuthOptions, Options> {\n\t\t\"one-time-token\": {\n\t\t\tcreator: typeof oneTimeToken;\n\t\t};\n\t}\n}\n\nexport interface OneTimeTokenOptions {\n\t/**\n\t * Expires in minutes\n\t *\n\t * @default 3\n\t */\n\texpiresIn?: number | undefined;\n\t/**\n\t * Only allow server initiated requests\n\t */\n\tdisableClientRequest?: boolean | undefined;\n\t/**\n\t * Generate a custom token\n\t */\n\tgenerateToken?:\n\t\t| ((\n\t\t\t\tsession: {\n\t\t\t\t\tuser: User & Record<string, any>;\n\t\t\t\t\tsession: Session & Record<string, any>;\n\t\t\t\t},\n\t\t\t\tctx: GenericEndpointContext,\n\t\t  ) => Promise<string>)\n\t\t| undefined;\n\t/**\n\t * Disable setting the session cookie when the token is verified\n\t */\n\tdisableSetSessionCookie?: boolean;\n\t/**\n\t * This option allows you to configure how the token is stored in your database.\n\t * Note: This will not affect the token that's sent, it will only affect the token stored in your database.\n\t *\n\t * @default \"plain\"\n\t */\n\tstoreToken?:\n\t\t| (\n\t\t\t\t| \"plain\"\n\t\t\t\t| \"hashed\"\n\t\t\t\t| { type: \"custom-hasher\"; hash: (token: string) => Promise<string> }\n\t\t  )\n\t\t| undefined;\n\t/**\n\t * Set the OTT header on new sessions\n\t */\n\tsetOttHeaderOnNewSession?: boolean;\n}\n\nconst verifyOneTimeTokenBodySchema = z.object({\n\ttoken: z.string().meta({\n\t\tdescription: 'The token to verify. Eg: \"some-token\"',\n\t}),\n});\n\nexport const oneTimeToken = (options?: OneTimeTokenOptions | undefined) => {\n\tconst opts = {\n\t\tstoreToken: \"plain\",\n\t\t...options,\n\t} satisfies OneTimeTokenOptions;\n\n\tasync function storeToken(ctx: GenericEndpointContext, token: string) {\n\t\tif (opts.storeToken === \"hashed\") {\n\t\t\treturn await defaultKeyHasher(token);\n\t\t}\n\t\tif (\n\t\t\ttypeof opts.storeToken === \"object\" &&\n\t\t\t\"type\" in opts.storeToken &&\n\t\t\topts.storeToken.type === \"custom-hasher\"\n\t\t) {\n\t\t\treturn await opts.storeToken.hash(token);\n\t\t}\n\n\t\treturn token;\n\t}\n\n\tasync function generateToken(\n\t\tc: GenericEndpointContext,\n\t\tsession: {\n\t\t\tsession: Session;\n\t\t\tuser: User;\n\t\t},\n\t) {\n\t\tconst token = opts?.generateToken\n\t\t\t? await opts.generateToken(session, c)\n\t\t\t: generateRandomString(32);\n\t\tconst expiresAt = new Date(Date.now() + (opts?.expiresIn ?? 3) * 60 * 1000);\n\t\tconst storedToken = await storeToken(c, token);\n\t\tawait c.context.internalAdapter.createVerificationValue({\n\t\t\tvalue: session.session.token,\n\t\t\tidentifier: `one-time-token:${storedToken}`,\n\t\t\texpiresAt,\n\t\t});\n\t\treturn token;\n\t}\n\n\treturn {\n\t\tid: \"one-time-token\",\n\t\tendpoints: {\n\t\t\t/**\n\t\t\t * ### Endpoint\n\t\t\t *\n\t\t\t * GET `/one-time-token/generate`\n\t\t\t *\n\t\t\t * ### API Methods\n\t\t\t *\n\t\t\t * **server:**\n\t\t\t * `auth.api.generateOneTimeToken`\n\t\t\t *\n\t\t\t * **client:**\n\t\t\t * `authClient.oneTimeToken.generate`\n\t\t\t *\n\t\t\t * @see [Read our docs to learn more.](https://better-auth.com/docs/plugins/one-time-token#api-method-one-time-token-generate)\n\t\t\t */\n\t\t\tgenerateOneTimeToken: createAuthEndpoint(\n\t\t\t\t\"/one-time-token/generate\",\n\t\t\t\t{\n\t\t\t\t\tmethod: \"GET\",\n\t\t\t\t\tuse: [sessionMiddleware],\n\t\t\t\t},\n\t\t\t\tasync (c) => {\n\t\t\t\t\t//if request exist, it means it's a client request\n\t\t\t\t\tif (opts?.disableClientRequest && c.request) {\n\t\t\t\t\t\tthrow c.error(\"BAD_REQUEST\", {\n\t\t\t\t\t\t\tmessage: \"Client requests are disabled\",\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\t\t\t\t\tconst session = c.context.session;\n\t\t\t\t\tconst token = await generateToken(c, session);\n\t\t\t\t\treturn c.json({ token });\n\t\t\t\t},\n\t\t\t),\n\t\t\t/**\n\t\t\t * ### Endpoint\n\t\t\t *\n\t\t\t * POST `/one-time-token/verify`\n\t\t\t *\n\t\t\t * ### API Methods\n\t\t\t *\n\t\t\t * **server:**\n\t\t\t * `auth.api.verifyOneTimeToken`\n\t\t\t *\n\t\t\t * **client:**\n\t\t\t * `authClient.oneTimeToken.verify`\n\t\t\t *\n\t\t\t * @see [Read our docs to learn more.](https://better-auth.com/docs/plugins/one-time-token#api-method-one-time-token-verify)\n\t\t\t */\n\t\t\tverifyOneTimeToken: createAuthEndpoint(\n\t\t\t\t\"/one-time-token/verify\",\n\t\t\t\t{\n\t\t\t\t\tmethod: \"POST\",\n\t\t\t\t\tbody: verifyOneTimeTokenBodySchema,\n\t\t\t\t},\n\t\t\t\tasync (c) => {\n\t\t\t\t\tconst { token } = c.body;\n\t\t\t\t\tconst storedToken = await storeToken(c, token);\n\t\t\t\t\tconst verificationValue =\n\t\t\t\t\t\tawait c.context.internalAdapter.findVerificationValue(\n\t\t\t\t\t\t\t`one-time-token:${storedToken}`,\n\t\t\t\t\t\t);\n\t\t\t\t\tif (!verificationValue) {\n\t\t\t\t\t\tthrow c.error(\"BAD_REQUEST\", {\n\t\t\t\t\t\t\tmessage: \"Invalid token\",\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\t\t\t\t\tawait c.context.internalAdapter.deleteVerificationValue(\n\t\t\t\t\t\tverificationValue.id,\n\t\t\t\t\t);\n\t\t\t\t\tif (verificationValue.expiresAt < new Date()) {\n\t\t\t\t\t\tthrow c.error(\"BAD_REQUEST\", {\n\t\t\t\t\t\t\tmessage: \"Token expired\",\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\t\t\t\t\tconst session = await c.context.internalAdapter.findSession(\n\t\t\t\t\t\tverificationValue.value,\n\t\t\t\t\t);\n\t\t\t\t\tif (!session) {\n\t\t\t\t\t\tthrow c.error(\"BAD_REQUEST\", {\n\t\t\t\t\t\t\tmessage: \"Session not found\",\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\t\t\t\t\tif (!opts?.disableSetSessionCookie) {\n\t\t\t\t\t\tawait setSessionCookie(c, session);\n\t\t\t\t\t}\n\n\t\t\t\t\tif (session.session.expiresAt < new Date()) {\n\t\t\t\t\t\tthrow c.error(\"BAD_REQUEST\", {\n\t\t\t\t\t\t\tmessage: \"Session expired\",\n\t\t\t\t\t\t});\n\t\t\t\t\t}\n\n\t\t\t\t\treturn c.json(session);\n\t\t\t\t},\n\t\t\t),\n\t\t},\n\t\thooks: {\n\t\t\tafter: [\n\t\t\t\t{\n\t\t\t\t\tmatcher: () => true,\n\t\t\t\t\thandler: createAuthMiddleware(async (ctx) => {\n\t\t\t\t\t\tif (ctx.context.newSession) {\n\t\t\t\t\t\t\tif (!opts?.setOttHeaderOnNewSession) {\n\t\t\t\t\t\t\t\treturn;\n\t\t\t\t\t\t\t}\n\t\t\t\t\t\t\tconst exposedHeaders =\n\t\t\t\t\t\t\t\tctx.context.responseHeaders?.get(\n\t\t\t\t\t\t\t\t\t\"access-control-expose-headers\",\n\t\t\t\t\t\t\t\t) || \"\";\n\t\t\t\t\t\t\tconst headersSet = new Set(\n\t\t\t\t\t\t\t\texposedHeaders\n\t\t\t\t\t\t\t\t\t.split(\",\")\n\t\t\t\t\t\t\t\t\t.map((header) => header.trim())\n\t\t\t\t\t\t\t\t\t.filter(Boolean),\n\t\t\t\t\t\t\t);\n\t\t\t\t\t\t\theadersSet.add(\"set-ott\");\n\t\t\t\t\t\t\tconst token = await generateToken(ctx, ctx.context.newSession);\n\t\t\t\t\t\t\tctx.setHeader(\"set-ott\", token);\n\t\t\t\t\t\t\tctx.setHeader(\n\t\t\t\t\t\t\t\t\"Access-Control-Expose-Headers\",\n\t\t\t\t\t\t\t\tArray.from(headersSet).join(\", \"),\n\t\t\t\t\t\t\t);\n\t\t\t\t\t\t}\n\t\t\t\t\t}),\n\t\t\t\t},\n\t\t\t],\n\t\t},\n\t\toptions,\n\t} satisfies BetterAuthPlugin;\n};\n"],"mappings":";;;;;;;;;;AAqEA,MAAM,+BAA+B,EAAE,OAAO,EAC7C,OAAO,EAAE,QAAQ,CAAC,KAAK,EACtB,aAAa,2CACb,CAAC,EACF,CAAC;AAEF,MAAa,gBAAgB,YAA8C;CAC1E,MAAM,OAAO;EACZ,YAAY;EACZ,GAAG;EACH;CAED,eAAe,WAAW,KAA6B,OAAe;AACrE,MAAI,KAAK,eAAe,SACvB,QAAO,MAAM,iBAAiB,MAAM;AAErC,MACC,OAAO,KAAK,eAAe,YAC3B,UAAU,KAAK,cACf,KAAK,WAAW,SAAS,gBAEzB,QAAO,MAAM,KAAK,WAAW,KAAK,MAAM;AAGzC,SAAO;;CAGR,eAAe,cACd,GACA,SAIC;EACD,MAAM,QAAQ,MAAM,gBACjB,MAAM,KAAK,cAAc,SAAS,EAAE,GACpC,qBAAqB,GAAG;EAC3B,MAAM,YAAY,IAAI,KAAK,KAAK,KAAK,IAAI,MAAM,aAAa,KAAK,KAAK,IAAK;EAC3E,MAAM,cAAc,MAAM,WAAW,GAAG,MAAM;AAC9C,QAAM,EAAE,QAAQ,gBAAgB,wBAAwB;GACvD,OAAO,QAAQ,QAAQ;GACvB,YAAY,kBAAkB;GAC9B;GACA,CAAC;AACF,SAAO;;AAGR,QAAO;EACN,IAAI;EACJ,WAAW;GAgBV,sBAAsB,mBACrB,4BACA;IACC,QAAQ;IACR,KAAK,CAAC,kBAAkB;IACxB,EACD,OAAO,MAAM;AAEZ,QAAI,MAAM,wBAAwB,EAAE,QACnC,OAAM,EAAE,MAAM,eAAe,EAC5B,SAAS,gCACT,CAAC;IAEH,MAAM,UAAU,EAAE,QAAQ;IAC1B,MAAM,QAAQ,MAAM,cAAc,GAAG,QAAQ;AAC7C,WAAO,EAAE,KAAK,EAAE,OAAO,CAAC;KAEzB;GAgBD,oBAAoB,mBACnB,0BACA;IACC,QAAQ;IACR,MAAM;IACN,EACD,OAAO,MAAM;IACZ,MAAM,EAAE,UAAU,EAAE;IACpB,MAAM,cAAc,MAAM,WAAW,GAAG,MAAM;IAC9C,MAAM,oBACL,MAAM,EAAE,QAAQ,gBAAgB,sBAC/B,kBAAkB,cAClB;AACF,QAAI,CAAC,kBACJ,OAAM,EAAE,MAAM,eAAe,EAC5B,SAAS,iBACT,CAAC;AAEH,UAAM,EAAE,QAAQ,gBAAgB,wBAC/B,kBAAkB,GAClB;AACD,QAAI,kBAAkB,4BAAY,IAAI,MAAM,CAC3C,OAAM,EAAE,MAAM,eAAe,EAC5B,SAAS,iBACT,CAAC;IAEH,MAAM,UAAU,MAAM,EAAE,QAAQ,gBAAgB,YAC/C,kBAAkB,MAClB;AACD,QAAI,CAAC,QACJ,OAAM,EAAE,MAAM,eAAe,EAC5B,SAAS,qBACT,CAAC;AAEH,QAAI,CAAC,MAAM,wBACV,OAAM,iBAAiB,GAAG,QAAQ;AAGnC,QAAI,QAAQ,QAAQ,4BAAY,IAAI,MAAM,CACzC,OAAM,EAAE,MAAM,eAAe,EAC5B,SAAS,mBACT,CAAC;AAGH,WAAO,EAAE,KAAK,QAAQ;KAEvB;GACD;EACD,OAAO,EACN,OAAO,CACN;GACC,eAAe;GACf,SAAS,qBAAqB,OAAO,QAAQ;AAC5C,QAAI,IAAI,QAAQ,YAAY;AAC3B,SAAI,CAAC,MAAM,yBACV;KAED,MAAM,iBACL,IAAI,QAAQ,iBAAiB,IAC5B,gCACA,IAAI;KACN,MAAM,aAAa,IAAI,IACtB,eACE,MAAM,IAAI,CACV,KAAK,WAAW,OAAO,MAAM,CAAC,CAC9B,OAAO,QAAQ,CACjB;AACD,gBAAW,IAAI,UAAU;KACzB,MAAM,QAAQ,MAAM,cAAc,KAAK,IAAI,QAAQ,WAAW;AAC9D,SAAI,UAAU,WAAW,MAAM;AAC/B,SAAI,UACH,iCACA,MAAM,KAAK,WAAW,CAAC,KAAK,KAAK,CACjC;;KAED;GACF,CACD,EACD;EACD;EACA"}

package/dist/plugins/one-time-token/utils.mjs

@@ -0,0 +1,12 @@
+import { createHash } from "@better-auth/utils/hash";
+import { base64Url } from "@better-auth/utils/base64";
+
+//#region src/plugins/one-time-token/utils.ts
+const defaultKeyHasher = async (token) => {
+	const hash = await createHash("SHA-256").digest(new TextEncoder().encode(token));
+	return base64Url.encode(new Uint8Array(hash), { padding: false });
+};
+
+//#endregion
+export { defaultKeyHasher };
+//# sourceMappingURL=utils.mjs.map

package/dist/plugins/one-time-token/utils.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.mjs","names":[],"sources":["../../../src/plugins/one-time-token/utils.ts"],"sourcesContent":["import { base64Url } from \"@better-auth/utils/base64\";\nimport { createHash } from \"@better-auth/utils/hash\";\nexport const defaultKeyHasher = async (token: string) => {\n\tconst hash = await createHash(\"SHA-256\").digest(\n\t\tnew TextEncoder().encode(token),\n\t);\n\tconst hashed = base64Url.encode(new Uint8Array(hash), {\n\t\tpadding: false,\n\t});\n\treturn hashed;\n};\n"],"mappings":";;;;AAEA,MAAa,mBAAmB,OAAO,UAAkB;CACxD,MAAM,OAAO,MAAM,WAAW,UAAU,CAAC,OACxC,IAAI,aAAa,CAAC,OAAO,MAAM,CAC/B;AAID,QAHe,UAAU,OAAO,IAAI,WAAW,KAAK,EAAE,EACrD,SAAS,OACT,CAAC"}

package/dist/plugins/open-api/generator.d.mts

@@ -0,0 +1,115 @@
+import { AuthContext, BetterAuthOptions } from "@better-auth/core";
+import { DBFieldAttributeConfig, DBFieldType } from "@better-auth/core/db";
+import { OpenAPIParameter, OpenAPISchemaType } from "better-call";
+
+//#region src/plugins/open-api/generator.d.ts
+interface Path {
+  get?: {
+    tags?: string[];
+    operationId?: string;
+    description?: string;
+    security?: [{
+      bearerAuth: string[];
+    }];
+    parameters?: OpenAPIParameter[];
+    responses?: { [key in string]: {
+      description?: string;
+      content: {
+        "application/json": {
+          schema: {
+            type?: OpenAPISchemaType;
+            properties?: Record<string, any>;
+            required?: string[];
+            $ref?: string;
+          };
+        };
+      };
+    } };
+  } | undefined;
+  post?: {
+    tags?: string[];
+    operationId?: string;
+    description?: string;
+    security?: [{
+      bearerAuth: string[];
+    }];
+    parameters?: OpenAPIParameter[];
+    requestBody?: {
+      content: {
+        "application/json": {
+          schema: {
+            type?: OpenAPISchemaType;
+            properties?: Record<string, any>;
+            required?: string[];
+            $ref?: string;
+          };
+        };
+      };
+    };
+    responses?: { [key in string]: {
+      description?: string;
+      content: {
+        "application/json": {
+          schema: {
+            type?: OpenAPISchemaType;
+            properties?: Record<string, any>;
+            required?: string[];
+            $ref?: string;
+          };
+        };
+      };
+    } };
+  } | undefined;
+}
+type FieldSchema = {
+  type: DBFieldType;
+  default?: (DBFieldAttributeConfig["defaultValue"] | "Generated at runtime") | undefined;
+  readOnly?: boolean | undefined;
+  format?: string;
+};
+type OpenAPIModelSchema = {
+  type: "object";
+  properties: Record<string, FieldSchema>;
+  required?: string[] | undefined;
+};
+declare function generator(ctx: AuthContext, options: BetterAuthOptions): Promise<{
+  openapi: string;
+  info: {
+    title: string;
+    description: string;
+    version: string;
+  };
+  components: {
+    securitySchemes: {
+      apiKeyCookie: {
+        type: string;
+        in: string;
+        name: string;
+        description: string;
+      };
+      bearerAuth: {
+        type: string;
+        scheme: string;
+        description: string;
+      };
+    };
+    schemas: {
+      [x: string]: OpenAPIModelSchema;
+    };
+  };
+  security: {
+    apiKeyCookie: never[];
+    bearerAuth: never[];
+  }[];
+  servers: {
+    url: any;
+  }[];
+  tags: {
+    name: string;
+    description: string;
+  }[];
+  paths: Record<string, Path>;
+}>;
+//#endregion
+export { FieldSchema, OpenAPIModelSchema, Path, generator };
+//# sourceMappingURL=generator.d.mts.map

package/dist/plugins/open-api/generator.mjs

@@ -0,0 +1,315 @@
+import { db_exports } from "../../db/index.mjs";
+import { getEndpoints } from "../../api/index.mjs";
+import * as z from "zod";
+
+//#region src/plugins/open-api/generator.ts
+const allowedType = new Set([
+	"string",
+	"number",
+	"boolean",
+	"array",
+	"object"
+]);
+function getTypeFromZodType(zodType) {
+	if (zodType instanceof z.ZodDefault) return getTypeFromZodType(zodType.unwrap());
+	const type = zodType.type;
+	return allowedType.has(type) ? type : "string";
+}
+function getFieldSchema(field) {
+	const schema = {
+		type: field.type === "date" ? "string" : field.type,
+		...field.type === "date" && { format: "date-time" }
+	};
+	if (field.defaultValue !== void 0) schema.default = typeof field.defaultValue === "function" ? "Generated at runtime" : field.defaultValue;
+	if (field.input === false) schema.readOnly = true;
+	return schema;
+}
+function getParameters(options) {
+	const parameters = [];
+	if (options.metadata?.openapi?.parameters) {
+		parameters.push(...options.metadata.openapi.parameters);
+		return parameters;
+	}
+	if (options.query instanceof z.ZodObject) Object.entries(options.query.shape).forEach(([key, value]) => {
+		if (value instanceof z.ZodType) parameters.push({
+			name: key,
+			in: "query",
+			schema: {
+				...processZodType(value),
+				..."minLength" in value && value.minLength ? { minLength: value.minLength } : {}
+			}
+		});
+	});
+	return parameters;
+}
+function getRequestBody(options) {
+	if (options.metadata?.openapi?.requestBody) return options.metadata.openapi.requestBody;
+	if (!options.body) return void 0;
+	if (options.body instanceof z.ZodObject || options.body instanceof z.ZodOptional) {
+		const shape = options.body.shape;
+		if (!shape) return void 0;
+		const properties = {};
+		const required = [];
+		Object.entries(shape).forEach(([key, value]) => {
+			if (value instanceof z.ZodType) {
+				properties[key] = processZodType(value);
+				if (!(value instanceof z.ZodOptional)) required.push(key);
+			}
+		});
+		return {
+			required: options.body instanceof z.ZodOptional ? false : options.body ? true : false,
+			content: { "application/json": { schema: {
+				type: "object",
+				properties,
+				required
+			} } }
+		};
+	}
+}
+function processZodType(zodType) {
+	if (zodType instanceof z.ZodOptional) {
+		const innerSchema = processZodType(zodType.unwrap());
+		if (innerSchema.type) {
+			const type = Array.isArray(innerSchema.type) ? innerSchema.type : [innerSchema.type];
+			return {
+				...innerSchema,
+				type: Array.from(new Set([...type, "null"]))
+			};
+		}
+		return { anyOf: [innerSchema, { type: "null" }] };
+	}
+	if (zodType instanceof z.ZodDefault) {
+		const innerSchema = processZodType(zodType.unwrap());
+		const defaultValueDef = zodType._def.defaultValue;
+		const defaultValue = typeof defaultValueDef === "function" ? defaultValueDef() : defaultValueDef;
+		return {
+			...innerSchema,
+			default: defaultValue
+		};
+	}
+	if (zodType instanceof z.ZodObject) {
+		const shape = zodType.shape;
+		if (shape) {
+			const properties = {};
+			const required = [];
+			Object.entries(shape).forEach(([key, value]) => {
+				if (value instanceof z.ZodType) {
+					properties[key] = processZodType(value);
+					if (!(value instanceof z.ZodOptional)) required.push(key);
+				}
+			});
+			return {
+				type: "object",
+				properties,
+				...required.length > 0 ? { required } : {},
+				description: zodType.description
+			};
+		}
+	}
+	return {
+		type: getTypeFromZodType(zodType),
+		description: zodType.description
+	};
+}
+function getResponse(responses) {
+	return {
+		"400": {
+			content: { "application/json": { schema: {
+				type: "object",
+				properties: { message: { type: "string" } },
+				required: ["message"]
+			} } },
+			description: "Bad Request. Usually due to missing parameters, or invalid parameters."
+		},
+		"401": {
+			content: { "application/json": { schema: {
+				type: "object",
+				properties: { message: { type: "string" } },
+				required: ["message"]
+			} } },
+			description: "Unauthorized. Due to missing or invalid authentication."
+		},
+		"403": {
+			content: { "application/json": { schema: {
+				type: "object",
+				properties: { message: { type: "string" } }
+			} } },
+			description: "Forbidden. You do not have permission to access this resource or to perform this action."
+		},
+		"404": {
+			content: { "application/json": { schema: {
+				type: "object",
+				properties: { message: { type: "string" } }
+			} } },
+			description: "Not Found. The requested resource was not found."
+		},
+		"429": {
+			content: { "application/json": { schema: {
+				type: "object",
+				properties: { message: { type: "string" } }
+			} } },
+			description: "Too Many Requests. You have exceeded the rate limit. Try again later."
+		},
+		"500": {
+			content: { "application/json": { schema: {
+				type: "object",
+				properties: { message: { type: "string" } }
+			} } },
+			description: "Internal Server Error. This is a problem with the server that you cannot fix."
+		},
+		...responses
+	};
+}
+function toOpenApiPath(path) {
+	return path.split("/").map((part) => part.startsWith(":") ? `{${part.slice(1)}}` : part).join("/");
+}
+async function generator(ctx, options) {
+	const baseEndpoints = getEndpoints(ctx, {
+		...options,
+		plugins: []
+	});
+	const tables = (0, db_exports.getAuthTables)({
+		...options,
+		session: {
+			...options.session,
+			storeSessionInDatabase: true
+		}
+	});
+	const components = { schemas: { ...Object.entries(tables).reduce((acc, [key, value]) => {
+		const modelName = key.charAt(0).toUpperCase() + key.slice(1);
+		const fields = value.fields;
+		const required = [];
+		const properties = { id: { type: "string" } };
+		Object.entries(fields).forEach(([fieldKey, fieldValue]) => {
+			if (!fieldValue) return;
+			properties[fieldKey] = getFieldSchema(fieldValue);
+			if (fieldValue.required && fieldValue.input !== false) required.push(fieldKey);
+		});
+		Object.entries(properties).forEach(([key, prop]) => {
+			const field = value.fields[key];
+			if (field && field.type === "date" && prop.type === "string") prop.format = "date-time";
+		});
+		acc[modelName] = {
+			type: "object",
+			properties,
+			required
+		};
+		return acc;
+	}, {}) } };
+	const paths = {};
+	Object.entries(baseEndpoints.api).forEach(([_, value]) => {
+		if (!value.path || ctx.options.disabledPaths?.includes(value.path)) return;
+		const options = value.options;
+		if (options.metadata?.SERVER_ONLY) return;
+		const path = toOpenApiPath(value.path);
+		const methods = Array.isArray(options.method) ? options.method : [options.method];
+		for (const method of methods.filter((m) => m === "GET" || m === "DELETE")) paths[path] = {
+			...paths[path],
+			[method.toLowerCase()]: {
+				tags: ["Default", ...options.metadata?.openapi?.tags || []],
+				description: options.metadata?.openapi?.description,
+				operationId: options.metadata?.openapi?.operationId,
+				security: [{ bearerAuth: [] }],
+				parameters: getParameters(options),
+				responses: getResponse(options.metadata?.openapi?.responses)
+			}
+		};
+		for (const method of methods.filter((m) => m === "POST" || m === "PATCH" || m === "PUT")) {
+			const body = getRequestBody(options);
+			paths[path] = {
+				...paths[path],
+				[method.toLowerCase()]: {
+					tags: ["Default", ...options.metadata?.openapi?.tags || []],
+					description: options.metadata?.openapi?.description,
+					operationId: options.metadata?.openapi?.operationId,
+					security: [{ bearerAuth: [] }],
+					parameters: getParameters(options),
+					...body ? { requestBody: body } : { requestBody: { content: { "application/json": { schema: {
+						type: "object",
+						properties: {}
+					} } } } },
+					responses: getResponse(options.metadata?.openapi?.responses)
+				}
+			};
+		}
+	});
+	for (const plugin of options.plugins || []) {
+		if (plugin.id === "open-api") continue;
+		const pluginEndpoints = getEndpoints(ctx, {
+			...options,
+			plugins: [plugin]
+		});
+		const api = Object.keys(pluginEndpoints.api).map((key) => {
+			if (baseEndpoints.api[key] === void 0) return pluginEndpoints.api[key];
+			return null;
+		}).filter((x) => x !== null);
+		Object.entries(api).forEach(([key, value]) => {
+			if (!value.path || ctx.options.disabledPaths?.includes(value.path)) return;
+			const options = value.options;
+			if (options.metadata?.SERVER_ONLY) return;
+			const path = toOpenApiPath(value.path);
+			const methods = Array.isArray(options.method) ? options.method : [options.method];
+			for (const method of methods.filter((m) => m === "GET" || m === "DELETE")) paths[path] = {
+				...paths[path],
+				[method.toLowerCase()]: {
+					tags: options.metadata?.openapi?.tags || [plugin.id.charAt(0).toUpperCase() + plugin.id.slice(1)],
+					description: options.metadata?.openapi?.description,
+					operationId: options.metadata?.openapi?.operationId,
+					security: [{ bearerAuth: [] }],
+					parameters: getParameters(options),
+					responses: getResponse(options.metadata?.openapi?.responses)
+				}
+			};
+			for (const method of methods.filter((m) => m === "POST" || m === "PATCH" || m === "PUT")) paths[path] = {
+				...paths[path],
+				[method.toLowerCase()]: {
+					tags: options.metadata?.openapi?.tags || [plugin.id.charAt(0).toUpperCase() + plugin.id.slice(1)],
+					description: options.metadata?.openapi?.description,
+					operationId: options.metadata?.openapi?.operationId,
+					security: [{ bearerAuth: [] }],
+					parameters: getParameters(options),
+					requestBody: getRequestBody(options),
+					responses: getResponse(options.metadata?.openapi?.responses)
+				}
+			};
+		});
+	}
+	return {
+		openapi: "3.1.1",
+		info: {
+			title: "Better Auth",
+			description: "API Reference for your Better Auth Instance",
+			version: "1.1.0"
+		},
+		components: {
+			...components,
+			securitySchemes: {
+				apiKeyCookie: {
+					type: "apiKey",
+					in: "cookie",
+					name: "apiKeyCookie",
+					description: "API Key authentication via cookie"
+				},
+				bearerAuth: {
+					type: "http",
+					scheme: "bearer",
+					description: "Bearer token authentication"
+				}
+			}
+		},
+		security: [{
+			apiKeyCookie: [],
+			bearerAuth: []
+		}],
+		servers: [{ url: ctx.baseURL }],
+		tags: [{
+			name: "Default",
+			description: "Default endpoints that are included with Better Auth by default. These endpoints are not part of any plugin."
+		}],
+		paths
+	};
+}
+
+//#endregion
+export { generator };
+//# sourceMappingURL=generator.mjs.map

package/dist/plugins/open-api/generator.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"generator.mjs","names":[],"sources":["../../../src/plugins/open-api/generator.ts"],"sourcesContent":["import type { AuthContext, BetterAuthOptions } from \"@better-auth/core\";\nimport type {\n\tDBFieldAttribute,\n\tDBFieldAttributeConfig,\n\tDBFieldType,\n} from \"@better-auth/core/db\";\nimport type {\n\tEndpoint,\n\tEndpointOptions,\n\tOpenAPIParameter,\n\tOpenAPISchemaType,\n} from \"better-call\";\nimport * as z from \"zod\";\nimport { getEndpoints } from \"../../api\";\nimport { getAuthTables } from \"../../db\";\n\nexport interface Path {\n\tget?:\n\t\t| {\n\t\t\t\ttags?: string[];\n\t\t\t\toperationId?: string;\n\t\t\t\tdescription?: string;\n\t\t\t\tsecurity?: [{ bearerAuth: string[] }];\n\t\t\t\tparameters?: OpenAPIParameter[];\n\t\t\t\tresponses?: {\n\t\t\t\t\t[key in string]: {\n\t\t\t\t\t\tdescription?: string;\n\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\ttype?: OpenAPISchemaType;\n\t\t\t\t\t\t\t\t\tproperties?: Record<string, any>;\n\t\t\t\t\t\t\t\t\trequired?: string[];\n\t\t\t\t\t\t\t\t\t$ref?: string;\n\t\t\t\t\t\t\t\t};\n\t\t\t\t\t\t\t};\n\t\t\t\t\t\t};\n\t\t\t\t\t};\n\t\t\t\t};\n\t\t  }\n\t\t| undefined;\n\tpost?:\n\t\t| {\n\t\t\t\ttags?: string[];\n\t\t\t\toperationId?: string;\n\t\t\t\tdescription?: string;\n\t\t\t\tsecurity?: [{ bearerAuth: string[] }];\n\t\t\t\tparameters?: OpenAPIParameter[];\n\t\t\t\trequestBody?: {\n\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\ttype?: OpenAPISchemaType;\n\t\t\t\t\t\t\t\tproperties?: Record<string, any>;\n\t\t\t\t\t\t\t\trequired?: string[];\n\t\t\t\t\t\t\t\t$ref?: string;\n\t\t\t\t\t\t\t};\n\t\t\t\t\t\t};\n\t\t\t\t\t};\n\t\t\t\t};\n\t\t\t\tresponses?: {\n\t\t\t\t\t[key in string]: {\n\t\t\t\t\t\tdescription?: string;\n\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\ttype?: OpenAPISchemaType;\n\t\t\t\t\t\t\t\t\tproperties?: Record<string, any>;\n\t\t\t\t\t\t\t\t\trequired?: string[];\n\t\t\t\t\t\t\t\t\t$ref?: string;\n\t\t\t\t\t\t\t\t};\n\t\t\t\t\t\t\t};\n\t\t\t\t\t\t};\n\t\t\t\t\t};\n\t\t\t\t};\n\t\t  }\n\t\t| undefined;\n}\n\ntype AllowedType = \"string\" | \"number\" | \"boolean\" | \"array\" | \"object\";\nconst allowedType = new Set([\"string\", \"number\", \"boolean\", \"array\", \"object\"]);\nfunction getTypeFromZodType(zodType: z.ZodType<any>) {\n\t// unwrap ZodDefault to get the inner type\n\tif (zodType instanceof z.ZodDefault) {\n\t\treturn getTypeFromZodType(zodType.unwrap() as any);\n\t}\n\tconst type = zodType.type;\n\treturn allowedType.has(type) ? (type as AllowedType) : \"string\";\n}\n\nexport type FieldSchema = {\n\ttype: DBFieldType;\n\tdefault?:\n\t\t| (DBFieldAttributeConfig[\"defaultValue\"] | \"Generated at runtime\")\n\t\t| undefined;\n\treadOnly?: boolean | undefined;\n\tformat?: string;\n};\n\nexport type OpenAPIModelSchema = {\n\ttype: \"object\";\n\tproperties: Record<string, FieldSchema>;\n\trequired?: string[] | undefined;\n};\n\nfunction getFieldSchema(field: DBFieldAttribute) {\n\tconst schema: FieldSchema = {\n\t\ttype: field.type === \"date\" ? \"string\" : field.type,\n\t\t...(field.type === \"date\" && { format: \"date-time\" }),\n\t};\n\n\tif (field.defaultValue !== undefined) {\n\t\tschema.default =\n\t\t\ttypeof field.defaultValue === \"function\"\n\t\t\t\t? \"Generated at runtime\"\n\t\t\t\t: field.defaultValue;\n\t}\n\n\tif (field.input === false) {\n\t\tschema.readOnly = true;\n\t}\n\n\treturn schema;\n}\n\nfunction getParameters(options: EndpointOptions) {\n\tconst parameters: OpenAPIParameter[] = [];\n\tif (options.metadata?.openapi?.parameters) {\n\t\tparameters.push(...options.metadata.openapi.parameters);\n\t\treturn parameters;\n\t}\n\tif (options.query instanceof z.ZodObject) {\n\t\tObject.entries(options.query.shape).forEach(([key, value]) => {\n\t\t\tif (value instanceof z.ZodType) {\n\t\t\t\tparameters.push({\n\t\t\t\t\tname: key,\n\t\t\t\t\tin: \"query\",\n\t\t\t\t\tschema: {\n\t\t\t\t\t\t...processZodType(value as z.ZodType<any>),\n\t\t\t\t\t\t...(\"minLength\" in value && (value as any).minLength\n\t\t\t\t\t\t\t? {\n\t\t\t\t\t\t\t\t\tminLength: (value as any).minLength as number,\n\t\t\t\t\t\t\t\t}\n\t\t\t\t\t\t\t: {}),\n\t\t\t\t\t},\n\t\t\t\t});\n\t\t\t}\n\t\t});\n\t}\n\treturn parameters;\n}\n\nfunction getRequestBody(options: EndpointOptions): any {\n\tif (options.metadata?.openapi?.requestBody) {\n\t\treturn options.metadata.openapi.requestBody;\n\t}\n\tif (!options.body) return undefined;\n\tif (\n\t\toptions.body instanceof z.ZodObject ||\n\t\toptions.body instanceof z.ZodOptional\n\t) {\n\t\t// @ts-expect-error\n\t\tconst shape = options.body.shape;\n\t\tif (!shape) return undefined;\n\t\tconst properties: Record<string, any> = {};\n\t\tconst required: string[] = [];\n\t\tObject.entries(shape).forEach(([key, value]) => {\n\t\t\tif (value instanceof z.ZodType) {\n\t\t\t\tproperties[key] = processZodType(value as z.ZodType<any>);\n\t\t\t\tif (!(value instanceof z.ZodOptional)) {\n\t\t\t\t\trequired.push(key);\n\t\t\t\t}\n\t\t\t}\n\t\t});\n\t\treturn {\n\t\t\trequired:\n\t\t\t\toptions.body instanceof z.ZodOptional\n\t\t\t\t\t? false\n\t\t\t\t\t: options.body\n\t\t\t\t\t\t? true\n\t\t\t\t\t\t: false,\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties,\n\t\t\t\t\t\trequired,\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t};\n\t}\n\treturn undefined;\n}\n\nfunction processZodType(zodType: z.ZodType<any>): any {\n\t// optional unwrapping\n\tif (zodType instanceof z.ZodOptional) {\n\t\tconst innerType = zodType.unwrap() as any;\n\t\tconst innerSchema = processZodType(innerType);\n\t\tif (innerSchema.type) {\n\t\t\tconst type = Array.isArray(innerSchema.type)\n\t\t\t\t? innerSchema.type\n\t\t\t\t: [innerSchema.type];\n\t\t\treturn {\n\t\t\t\t...innerSchema,\n\t\t\t\ttype: Array.from(new Set([...type, \"null\"])),\n\t\t\t};\n\t\t}\n\t\treturn {\n\t\t\tanyOf: [innerSchema, { type: \"null\" }],\n\t\t};\n\t}\n\t// default unwrapping\n\tif (zodType instanceof z.ZodDefault) {\n\t\tconst innerType = zodType.unwrap() as any;\n\t\tconst innerSchema = processZodType(innerType);\n\t\tconst defaultValueDef = (zodType as any)._def.defaultValue;\n\t\tconst defaultValue =\n\t\t\ttypeof defaultValueDef === \"function\"\n\t\t\t\t? defaultValueDef()\n\t\t\t\t: defaultValueDef;\n\t\treturn {\n\t\t\t...innerSchema,\n\t\t\tdefault: defaultValue,\n\t\t};\n\t}\n\t// object unwrapping\n\tif (zodType instanceof z.ZodObject) {\n\t\tconst shape = (zodType as any).shape;\n\t\tif (shape) {\n\t\t\tconst properties: Record<string, any> = {};\n\t\t\tconst required: string[] = [];\n\t\t\tObject.entries(shape).forEach(([key, value]) => {\n\t\t\t\tif (value instanceof z.ZodType) {\n\t\t\t\t\tproperties[key] = processZodType(value as z.ZodType<any>);\n\t\t\t\t\tif (!(value instanceof z.ZodOptional)) {\n\t\t\t\t\t\trequired.push(key);\n\t\t\t\t\t}\n\t\t\t\t}\n\t\t\t});\n\t\t\treturn {\n\t\t\t\ttype: \"object\",\n\t\t\t\tproperties,\n\t\t\t\t...(required.length > 0 ? { required } : {}),\n\t\t\t\tdescription: (zodType as any).description,\n\t\t\t};\n\t\t}\n\t}\n\n\t// For primitive types, get the correct type from the unwrapped ZodType\n\tconst baseSchema = {\n\t\ttype: getTypeFromZodType(zodType),\n\t\tdescription: (zodType as any).description,\n\t};\n\n\treturn baseSchema;\n}\n\nfunction getResponse(responses?: Record<string, any> | undefined) {\n\treturn {\n\t\t\"400\": {\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t\trequired: [\"message\"],\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tdescription:\n\t\t\t\t\"Bad Request. Usually due to missing parameters, or invalid parameters.\",\n\t\t},\n\t\t\"401\": {\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t\trequired: [\"message\"],\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tdescription: \"Unauthorized. Due to missing or invalid authentication.\",\n\t\t},\n\t\t\"403\": {\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tdescription:\n\t\t\t\t\"Forbidden. You do not have permission to access this resource or to perform this action.\",\n\t\t},\n\t\t\"404\": {\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tdescription: \"Not Found. The requested resource was not found.\",\n\t\t},\n\t\t\"429\": {\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tdescription:\n\t\t\t\t\"Too Many Requests. You have exceeded the rate limit. Try again later.\",\n\t\t},\n\t\t\"500\": {\n\t\t\tcontent: {\n\t\t\t\t\"application/json\": {\n\t\t\t\t\tschema: {\n\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\tproperties: {\n\t\t\t\t\t\t\tmessage: {\n\t\t\t\t\t\t\t\ttype: \"string\",\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t},\n\t\t\t\t\t},\n\t\t\t\t},\n\t\t\t},\n\t\t\tdescription:\n\t\t\t\t\"Internal Server Error. This is a problem with the server that you cannot fix.\",\n\t\t},\n\t\t...responses,\n\t} as any;\n}\n\nfunction toOpenApiPath(path: string) {\n\t// /reset-password/:token -> /reset-password/{token}\n\t// replace all : with {}\n\treturn path\n\t\t.split(\"/\")\n\t\t.map((part) => (part.startsWith(\":\") ? `{${part.slice(1)}}` : part))\n\t\t.join(\"/\");\n}\n\nexport async function generator(ctx: AuthContext, options: BetterAuthOptions) {\n\tconst baseEndpoints = getEndpoints(ctx, {\n\t\t...options,\n\t\tplugins: [],\n\t});\n\n\tconst tables = getAuthTables({\n\t\t...options,\n\t\tsession: {\n\t\t\t...options.session,\n\t\t\tstoreSessionInDatabase: true, // Forcing this to true to return the session table schema\n\t\t},\n\t});\n\tconst models = Object.entries(tables).reduce<\n\t\tRecord<string, OpenAPIModelSchema>\n\t>((acc, [key, value]) => {\n\t\tconst modelName = key.charAt(0).toUpperCase() + key.slice(1);\n\t\tconst fields = value.fields;\n\t\tconst required: string[] = [];\n\t\tconst properties: Record<string, FieldSchema> = {\n\t\t\tid: { type: \"string\" },\n\t\t};\n\t\tObject.entries(fields).forEach(([fieldKey, fieldValue]) => {\n\t\t\tif (!fieldValue) return;\n\t\t\tproperties[fieldKey] = getFieldSchema(fieldValue);\n\t\t\tif (fieldValue.required && fieldValue.input !== false) {\n\t\t\t\trequired.push(fieldKey);\n\t\t\t}\n\t\t});\n\n\t\tObject.entries(properties).forEach(([key, prop]) => {\n\t\t\tconst field = value.fields[key];\n\t\t\tif (field && field.type === \"date\" && prop.type === \"string\") {\n\t\t\t\tprop.format = \"date-time\";\n\t\t\t}\n\t\t});\n\t\tacc[modelName] = {\n\t\t\ttype: \"object\",\n\t\t\tproperties,\n\t\t\trequired,\n\t\t};\n\t\treturn acc;\n\t}, {});\n\n\tconst components = {\n\t\tschemas: {\n\t\t\t...models,\n\t\t},\n\t};\n\n\tconst paths: Record<string, Path> = {};\n\n\tObject.entries(baseEndpoints.api).forEach(([_, value]) => {\n\t\tif (!value.path || ctx.options.disabledPaths?.includes(value.path)) return;\n\t\tconst options = value.options as EndpointOptions;\n\t\tif (options.metadata?.SERVER_ONLY) return;\n\t\tconst path = toOpenApiPath(value.path);\n\t\tconst methods = Array.isArray(options.method)\n\t\t\t? options.method\n\t\t\t: [options.method];\n\t\tfor (const method of methods.filter((m) => m === \"GET\" || m === \"DELETE\")) {\n\t\t\tpaths[path] = {\n\t\t\t\t...paths[path],\n\t\t\t\t[method.toLowerCase()]: {\n\t\t\t\t\ttags: [\"Default\", ...(options.metadata?.openapi?.tags || [])],\n\t\t\t\t\tdescription: options.metadata?.openapi?.description,\n\t\t\t\t\toperationId: options.metadata?.openapi?.operationId,\n\t\t\t\t\tsecurity: [\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\tbearerAuth: [],\n\t\t\t\t\t\t},\n\t\t\t\t\t],\n\t\t\t\t\tparameters: getParameters(options),\n\t\t\t\t\tresponses: getResponse(options.metadata?.openapi?.responses),\n\t\t\t\t},\n\t\t\t};\n\t\t}\n\t\tfor (const method of methods.filter(\n\t\t\t(m) => m === \"POST\" || m === \"PATCH\" || m === \"PUT\",\n\t\t)) {\n\t\t\tconst body = getRequestBody(options);\n\t\t\tpaths[path] = {\n\t\t\t\t...paths[path],\n\t\t\t\t[method.toLowerCase()]: {\n\t\t\t\t\ttags: [\"Default\", ...(options.metadata?.openapi?.tags || [])],\n\t\t\t\t\tdescription: options.metadata?.openapi?.description,\n\t\t\t\t\toperationId: options.metadata?.openapi?.operationId,\n\t\t\t\t\tsecurity: [\n\t\t\t\t\t\t{\n\t\t\t\t\t\t\tbearerAuth: [],\n\t\t\t\t\t\t},\n\t\t\t\t\t],\n\t\t\t\t\tparameters: getParameters(options),\n\t\t\t\t\t...(body\n\t\t\t\t\t\t? { requestBody: body }\n\t\t\t\t\t\t: {\n\t\t\t\t\t\t\t\trequestBody: {\n\t\t\t\t\t\t\t\t\t//set body none\n\t\t\t\t\t\t\t\t\tcontent: {\n\t\t\t\t\t\t\t\t\t\t\"application/json\": {\n\t\t\t\t\t\t\t\t\t\t\tschema: {\n\t\t\t\t\t\t\t\t\t\t\t\ttype: \"object\",\n\t\t\t\t\t\t\t\t\t\t\t\tproperties: {},\n\t\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t\t},\n\t\t\t\t\t\t\t}),\n\t\t\t\t\tresponses: getResponse(options.metadata?.openapi?.responses),\n\t\t\t\t},\n\t\t\t};\n\t\t}\n\t});\n\n\tfor (const plugin of options.plugins || []) {\n\t\tif (plugin.id === \"open-api\") {\n\t\t\tcontinue;\n\t\t}\n\t\tconst pluginEndpoints = getEndpoints(ctx, {\n\t\t\t...options,\n\t\t\tplugins: [plugin],\n\t\t});\n\t\tconst api = Object.keys(pluginEndpoints.api)\n\t\t\t.map((key) => {\n\t\t\t\tif (\n\t\t\t\t\tbaseEndpoints.api[key as keyof typeof baseEndpoints.api] === undefined\n\t\t\t\t) {\n\t\t\t\t\treturn pluginEndpoints.api[key as keyof typeof pluginEndpoints.api];\n\t\t\t\t}\n\t\t\t\treturn null;\n\t\t\t})\n\t\t\t.filter((x) => x !== null) as Endpoint[];\n\t\tObject.entries(api).forEach(([key, value]) => {\n\t\t\tif (!value.path || ctx.options.disabledPaths?.includes(value.path))\n\t\t\t\treturn;\n\t\t\tconst options = value.options as EndpointOptions;\n\t\t\tif (options.metadata?.SERVER_ONLY) return;\n\t\t\tconst path = toOpenApiPath(value.path);\n\t\t\tconst methods = Array.isArray(options.method)\n\t\t\t\t? options.method\n\t\t\t\t: [options.method];\n\t\t\tfor (const method of methods.filter(\n\t\t\t\t(m) => m === \"GET\" || m === \"DELETE\",\n\t\t\t)) {\n\t\t\t\tpaths[path] = {\n\t\t\t\t\t...paths[path],\n\t\t\t\t\t[method.toLowerCase()]: {\n\t\t\t\t\t\ttags: options.metadata?.openapi?.tags || [\n\t\t\t\t\t\t\tplugin.id.charAt(0).toUpperCase() + plugin.id.slice(1),\n\t\t\t\t\t\t],\n\t\t\t\t\t\tdescription: options.metadata?.openapi?.description,\n\t\t\t\t\t\toperationId: options.metadata?.openapi?.operationId,\n\t\t\t\t\t\tsecurity: [\n\t\t\t\t\t\t\t{\n\t\t\t\t\t\t\t\tbearerAuth: [],\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t],\n\t\t\t\t\t\tparameters: getParameters(options),\n\t\t\t\t\t\tresponses: getResponse(options.metadata?.openapi?.responses),\n\t\t\t\t\t},\n\t\t\t\t};\n\t\t\t}\n\t\t\tfor (const method of methods.filter(\n\t\t\t\t(m) => m === \"POST\" || m === \"PATCH\" || m === \"PUT\",\n\t\t\t)) {\n\t\t\t\tpaths[path] = {\n\t\t\t\t\t...paths[path],\n\t\t\t\t\t[method.toLowerCase()]: {\n\t\t\t\t\t\ttags: options.metadata?.openapi?.tags || [\n\t\t\t\t\t\t\tplugin.id.charAt(0).toUpperCase() + plugin.id.slice(1),\n\t\t\t\t\t\t],\n\t\t\t\t\t\tdescription: options.metadata?.openapi?.description,\n\t\t\t\t\t\toperationId: options.metadata?.openapi?.operationId,\n\t\t\t\t\t\tsecurity: [\n\t\t\t\t\t\t\t{\n\t\t\t\t\t\t\t\tbearerAuth: [],\n\t\t\t\t\t\t\t},\n\t\t\t\t\t\t],\n\t\t\t\t\t\tparameters: getParameters(options),\n\t\t\t\t\t\trequestBody: getRequestBody(options),\n\t\t\t\t\t\tresponses: getResponse(options.metadata?.openapi?.responses),\n\t\t\t\t\t},\n\t\t\t\t};\n\t\t\t}\n\t\t});\n\t}\n\n\tconst res = {\n\t\topenapi: \"3.1.1\",\n\t\tinfo: {\n\t\t\ttitle: \"Better Auth\",\n\t\t\tdescription: \"API Reference for your Better Auth Instance\",\n\t\t\tversion: \"1.1.0\",\n\t\t},\n\t\tcomponents: {\n\t\t\t...components,\n\t\t\tsecuritySchemes: {\n\t\t\t\tapiKeyCookie: {\n\t\t\t\t\ttype: \"apiKey\",\n\t\t\t\t\tin: \"cookie\",\n\t\t\t\t\tname: \"apiKeyCookie\",\n\t\t\t\t\tdescription: \"API Key authentication via cookie\",\n\t\t\t\t},\n\t\t\t\tbearerAuth: {\n\t\t\t\t\ttype: \"http\",\n\t\t\t\t\tscheme: \"bearer\",\n\t\t\t\t\tdescription: \"Bearer token authentication\",\n\t\t\t\t},\n\t\t\t},\n\t\t},\n\t\tsecurity: [\n\t\t\t{\n\t\t\t\tapiKeyCookie: [],\n\t\t\t\tbearerAuth: [],\n\t\t\t},\n\t\t],\n\t\tservers: [\n\t\t\t{\n\t\t\t\turl: ctx.baseURL,\n\t\t\t},\n\t\t],\n\t\ttags: [\n\t\t\t{\n\t\t\t\tname: \"Default\",\n\t\t\t\tdescription:\n\t\t\t\t\t\"Default endpoints that are included with Better Auth by default. These endpoints are not part of any plugin.\",\n\t\t\t},\n\t\t],\n\t\tpaths,\n\t};\n\treturn res;\n}\n"],"mappings":";;;;;AAgFA,MAAM,cAAc,IAAI,IAAI;CAAC;CAAU;CAAU;CAAW;CAAS;CAAS,CAAC;AAC/E,SAAS,mBAAmB,SAAyB;AAEpD,KAAI,mBAAmB,EAAE,WACxB,QAAO,mBAAmB,QAAQ,QAAQ,CAAQ;CAEnD,MAAM,OAAO,QAAQ;AACrB,QAAO,YAAY,IAAI,KAAK,GAAI,OAAuB;;AAkBxD,SAAS,eAAe,OAAyB;CAChD,MAAM,SAAsB;EAC3B,MAAM,MAAM,SAAS,SAAS,WAAW,MAAM;EAC/C,GAAI,MAAM,SAAS,UAAU,EAAE,QAAQ,aAAa;EACpD;AAED,KAAI,MAAM,iBAAiB,OAC1B,QAAO,UACN,OAAO,MAAM,iBAAiB,aAC3B,yBACA,MAAM;AAGX,KAAI,MAAM,UAAU,MACnB,QAAO,WAAW;AAGnB,QAAO;;AAGR,SAAS,cAAc,SAA0B;CAChD,MAAM,aAAiC,EAAE;AACzC,KAAI,QAAQ,UAAU,SAAS,YAAY;AAC1C,aAAW,KAAK,GAAG,QAAQ,SAAS,QAAQ,WAAW;AACvD,SAAO;;AAER,KAAI,QAAQ,iBAAiB,EAAE,UAC9B,QAAO,QAAQ,QAAQ,MAAM,MAAM,CAAC,SAAS,CAAC,KAAK,WAAW;AAC7D,MAAI,iBAAiB,EAAE,QACtB,YAAW,KAAK;GACf,MAAM;GACN,IAAI;GACJ,QAAQ;IACP,GAAG,eAAe,MAAwB;IAC1C,GAAI,eAAe,SAAU,MAAc,YACxC,EACA,WAAY,MAAc,WAC1B,GACA,EAAE;IACL;GACD,CAAC;GAEF;AAEH,QAAO;;AAGR,SAAS,eAAe,SAA+B;AACtD,KAAI,QAAQ,UAAU,SAAS,YAC9B,QAAO,QAAQ,SAAS,QAAQ;AAEjC,KAAI,CAAC,QAAQ,KAAM,QAAO;AAC1B,KACC,QAAQ,gBAAgB,EAAE,aAC1B,QAAQ,gBAAgB,EAAE,aACzB;EAED,MAAM,QAAQ,QAAQ,KAAK;AAC3B,MAAI,CAAC,MAAO,QAAO;EACnB,MAAM,aAAkC,EAAE;EAC1C,MAAM,WAAqB,EAAE;AAC7B,SAAO,QAAQ,MAAM,CAAC,SAAS,CAAC,KAAK,WAAW;AAC/C,OAAI,iBAAiB,EAAE,SAAS;AAC/B,eAAW,OAAO,eAAe,MAAwB;AACzD,QAAI,EAAE,iBAAiB,EAAE,aACxB,UAAS,KAAK,IAAI;;IAGnB;AACF,SAAO;GACN,UACC,QAAQ,gBAAgB,EAAE,cACvB,QACA,QAAQ,OACP,OACA;GACL,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN;IACA;IACA,EACD,EACD;GACD;;;AAKH,SAAS,eAAe,SAA8B;AAErD,KAAI,mBAAmB,EAAE,aAAa;EAErC,MAAM,cAAc,eADF,QAAQ,QAAQ,CACW;AAC7C,MAAI,YAAY,MAAM;GACrB,MAAM,OAAO,MAAM,QAAQ,YAAY,KAAK,GACzC,YAAY,OACZ,CAAC,YAAY,KAAK;AACrB,UAAO;IACN,GAAG;IACH,MAAM,MAAM,KAAK,IAAI,IAAI,CAAC,GAAG,MAAM,OAAO,CAAC,CAAC;IAC5C;;AAEF,SAAO,EACN,OAAO,CAAC,aAAa,EAAE,MAAM,QAAQ,CAAC,EACtC;;AAGF,KAAI,mBAAmB,EAAE,YAAY;EAEpC,MAAM,cAAc,eADF,QAAQ,QAAQ,CACW;EAC7C,MAAM,kBAAmB,QAAgB,KAAK;EAC9C,MAAM,eACL,OAAO,oBAAoB,aACxB,iBAAiB,GACjB;AACJ,SAAO;GACN,GAAG;GACH,SAAS;GACT;;AAGF,KAAI,mBAAmB,EAAE,WAAW;EACnC,MAAM,QAAS,QAAgB;AAC/B,MAAI,OAAO;GACV,MAAM,aAAkC,EAAE;GAC1C,MAAM,WAAqB,EAAE;AAC7B,UAAO,QAAQ,MAAM,CAAC,SAAS,CAAC,KAAK,WAAW;AAC/C,QAAI,iBAAiB,EAAE,SAAS;AAC/B,gBAAW,OAAO,eAAe,MAAwB;AACzD,SAAI,EAAE,iBAAiB,EAAE,aACxB,UAAS,KAAK,IAAI;;KAGnB;AACF,UAAO;IACN,MAAM;IACN;IACA,GAAI,SAAS,SAAS,IAAI,EAAE,UAAU,GAAG,EAAE;IAC3C,aAAc,QAAgB;IAC9B;;;AAUH,QALmB;EAClB,MAAM,mBAAmB,QAAQ;EACjC,aAAc,QAAgB;EAC9B;;AAKF,SAAS,YAAY,WAA6C;AACjE,QAAO;EACN,OAAO;GACN,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,UAAU,CAAC,UAAU;IACrB,EACD,EACD;GACD,aACC;GACD;EACD,OAAO;GACN,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,UAAU,CAAC,UAAU;IACrB,EACD,EACD;GACD,aAAa;GACb;EACD,OAAO;GACN,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,EACD,EACD;GACD,aACC;GACD;EACD,OAAO;GACN,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,EACD,EACD;GACD,aAAa;GACb;EACD,OAAO;GACN,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,EACD,EACD;GACD,aACC;GACD;EACD,OAAO;GACN,SAAS,EACR,oBAAoB,EACnB,QAAQ;IACP,MAAM;IACN,YAAY,EACX,SAAS,EACR,MAAM,UACN,EACD;IACD,EACD,EACD;GACD,aACC;GACD;EACD,GAAG;EACH;;AAGF,SAAS,cAAc,MAAc;AAGpC,QAAO,KACL,MAAM,IAAI,CACV,KAAK,SAAU,KAAK,WAAW,IAAI,GAAG,IAAI,KAAK,MAAM,EAAE,CAAC,KAAK,KAAM,CACnE,KAAK,IAAI;;AAGZ,eAAsB,UAAU,KAAkB,SAA4B;CAC7E,MAAM,gBAAgB,aAAa,KAAK;EACvC,GAAG;EACH,SAAS,EAAE;EACX,CAAC;CAEF,MAAM,uCAAuB;EAC5B,GAAG;EACH,SAAS;GACR,GAAG,QAAQ;GACX,wBAAwB;GACxB;EACD,CAAC;CAgCF,MAAM,aAAa,EAClB,SAAS,EACR,GAjCa,OAAO,QAAQ,OAAO,CAAC,QAEnC,KAAK,CAAC,KAAK,WAAW;EACxB,MAAM,YAAY,IAAI,OAAO,EAAE,CAAC,aAAa,GAAG,IAAI,MAAM,EAAE;EAC5D,MAAM,SAAS,MAAM;EACrB,MAAM,WAAqB,EAAE;EAC7B,MAAM,aAA0C,EAC/C,IAAI,EAAE,MAAM,UAAU,EACtB;AACD,SAAO,QAAQ,OAAO,CAAC,SAAS,CAAC,UAAU,gBAAgB;AAC1D,OAAI,CAAC,WAAY;AACjB,cAAW,YAAY,eAAe,WAAW;AACjD,OAAI,WAAW,YAAY,WAAW,UAAU,MAC/C,UAAS,KAAK,SAAS;IAEvB;AAEF,SAAO,QAAQ,WAAW,CAAC,SAAS,CAAC,KAAK,UAAU;GACnD,MAAM,QAAQ,MAAM,OAAO;AAC3B,OAAI,SAAS,MAAM,SAAS,UAAU,KAAK,SAAS,SACnD,MAAK,SAAS;IAEd;AACF,MAAI,aAAa;GAChB,MAAM;GACN;GACA;GACA;AACD,SAAO;IACL,EAAE,CAAC,EAKJ,EACD;CAED,MAAM,QAA8B,EAAE;AAEtC,QAAO,QAAQ,cAAc,IAAI,CAAC,SAAS,CAAC,GAAG,WAAW;AACzD,MAAI,CAAC,MAAM,QAAQ,IAAI,QAAQ,eAAe,SAAS,MAAM,KAAK,CAAE;EACpE,MAAM,UAAU,MAAM;AACtB,MAAI,QAAQ,UAAU,YAAa;EACnC,MAAM,OAAO,cAAc,MAAM,KAAK;EACtC,MAAM,UAAU,MAAM,QAAQ,QAAQ,OAAO,GAC1C,QAAQ,SACR,CAAC,QAAQ,OAAO;AACnB,OAAK,MAAM,UAAU,QAAQ,QAAQ,MAAM,MAAM,SAAS,MAAM,SAAS,CACxE,OAAM,QAAQ;GACb,GAAG,MAAM;IACR,OAAO,aAAa,GAAG;IACvB,MAAM,CAAC,WAAW,GAAI,QAAQ,UAAU,SAAS,QAAQ,EAAE,CAAE;IAC7D,aAAa,QAAQ,UAAU,SAAS;IACxC,aAAa,QAAQ,UAAU,SAAS;IACxC,UAAU,CACT,EACC,YAAY,EAAE,EACd,CACD;IACD,YAAY,cAAc,QAAQ;IAClC,WAAW,YAAY,QAAQ,UAAU,SAAS,UAAU;IAC5D;GACD;AAEF,OAAK,MAAM,UAAU,QAAQ,QAC3B,MAAM,MAAM,UAAU,MAAM,WAAW,MAAM,MAC9C,EAAE;GACF,MAAM,OAAO,eAAe,QAAQ;AACpC,SAAM,QAAQ;IACb,GAAG,MAAM;KACR,OAAO,aAAa,GAAG;KACvB,MAAM,CAAC,WAAW,GAAI,QAAQ,UAAU,SAAS,QAAQ,EAAE,CAAE;KAC7D,aAAa,QAAQ,UAAU,SAAS;KACxC,aAAa,QAAQ,UAAU,SAAS;KACxC,UAAU,CACT,EACC,YAAY,EAAE,EACd,CACD;KACD,YAAY,cAAc,QAAQ;KAClC,GAAI,OACD,EAAE,aAAa,MAAM,GACrB,EACA,aAAa,EAEZ,SAAS,EACR,oBAAoB,EACnB,QAAQ;MACP,MAAM;MACN,YAAY,EAAE;MACd,EACD,EACD,EACD,EACD;KACH,WAAW,YAAY,QAAQ,UAAU,SAAS,UAAU;KAC5D;IACD;;GAED;AAEF,MAAK,MAAM,UAAU,QAAQ,WAAW,EAAE,EAAE;AAC3C,MAAI,OAAO,OAAO,WACjB;EAED,MAAM,kBAAkB,aAAa,KAAK;GACzC,GAAG;GACH,SAAS,CAAC,OAAO;GACjB,CAAC;EACF,MAAM,MAAM,OAAO,KAAK,gBAAgB,IAAI,CAC1C,KAAK,QAAQ;AACb,OACC,cAAc,IAAI,SAA2C,OAE7D,QAAO,gBAAgB,IAAI;AAE5B,UAAO;IACN,CACD,QAAQ,MAAM,MAAM,KAAK;AAC3B,SAAO,QAAQ,IAAI,CAAC,SAAS,CAAC,KAAK,WAAW;AAC7C,OAAI,CAAC,MAAM,QAAQ,IAAI,QAAQ,eAAe,SAAS,MAAM,KAAK,CACjE;GACD,MAAM,UAAU,MAAM;AACtB,OAAI,QAAQ,UAAU,YAAa;GACnC,MAAM,OAAO,cAAc,MAAM,KAAK;GACtC,MAAM,UAAU,MAAM,QAAQ,QAAQ,OAAO,GAC1C,QAAQ,SACR,CAAC,QAAQ,OAAO;AACnB,QAAK,MAAM,UAAU,QAAQ,QAC3B,MAAM,MAAM,SAAS,MAAM,SAC5B,CACA,OAAM,QAAQ;IACb,GAAG,MAAM;KACR,OAAO,aAAa,GAAG;KACvB,MAAM,QAAQ,UAAU,SAAS,QAAQ,CACxC,OAAO,GAAG,OAAO,EAAE,CAAC,aAAa,GAAG,OAAO,GAAG,MAAM,EAAE,CACtD;KACD,aAAa,QAAQ,UAAU,SAAS;KACxC,aAAa,QAAQ,UAAU,SAAS;KACxC,UAAU,CACT,EACC,YAAY,EAAE,EACd,CACD;KACD,YAAY,cAAc,QAAQ;KAClC,WAAW,YAAY,QAAQ,UAAU,SAAS,UAAU;KAC5D;IACD;AAEF,QAAK,MAAM,UAAU,QAAQ,QAC3B,MAAM,MAAM,UAAU,MAAM,WAAW,MAAM,MAC9C,CACA,OAAM,QAAQ;IACb,GAAG,MAAM;KACR,OAAO,aAAa,GAAG;KACvB,MAAM,QAAQ,UAAU,SAAS,QAAQ,CACxC,OAAO,GAAG,OAAO,EAAE,CAAC,aAAa,GAAG,OAAO,GAAG,MAAM,EAAE,CACtD;KACD,aAAa,QAAQ,UAAU,SAAS;KACxC,aAAa,QAAQ,UAAU,SAAS;KACxC,UAAU,CACT,EACC,YAAY,EAAE,EACd,CACD;KACD,YAAY,cAAc,QAAQ;KAClC,aAAa,eAAe,QAAQ;KACpC,WAAW,YAAY,QAAQ,UAAU,SAAS,UAAU;KAC5D;IACD;IAED;;AA8CH,QA3CY;EACX,SAAS;EACT,MAAM;GACL,OAAO;GACP,aAAa;GACb,SAAS;GACT;EACD,YAAY;GACX,GAAG;GACH,iBAAiB;IAChB,cAAc;KACb,MAAM;KACN,IAAI;KACJ,MAAM;KACN,aAAa;KACb;IACD,YAAY;KACX,MAAM;KACN,QAAQ;KACR,aAAa;KACb;IACD;GACD;EACD,UAAU,CACT;GACC,cAAc,EAAE;GAChB,YAAY,EAAE;GACd,CACD;EACD,SAAS,CACR,EACC,KAAK,IAAI,SACT,CACD;EACD,MAAM,CACL;GACC,MAAM;GACN,aACC;GACD,CACD;EACD;EACA"}

package/dist/plugins/open-api/index.d.mts

@@ -0,0 +1,45 @@
+import { FieldSchema, OpenAPIModelSchema, Path, generator } from "./generator.mjs";
+import { LiteralString } from "@better-auth/core";
+
+//#region src/plugins/open-api/index.d.ts
+declare module "@better-auth/core" {
+  interface BetterAuthPluginRegistry<AuthOptions, Options> {
+    "open-api": {
+      creator: typeof openAPI;
+    };
+  }
+}
+type ScalarTheme = "alternate" | "default" | "moon" | "purple" | "solarized" | "bluePlanet" | "saturn" | "kepler" | "mars" | "deepSpace" | "laserwave" | "none";
+interface OpenAPIOptions {
+  /**
+   * The path to the OpenAPI reference page
+   *
+   * keep in mind that this path will be appended to the base URL `/api/auth` path
+   * by default, so if you set this to `/reference`, the full path will be `/api/auth/reference`
+   *
+   * @default "/reference"
+   */
+  path?: LiteralString | undefined;
+  /**
+   * Disable the default reference page that is generated by Scalar
+   *
+   * @default false
+   */
+  disableDefaultReference?: boolean | undefined;
+  /**
+   * Theme of the OpenAPI reference page.
+   *
+   * @default "default"
+   */
+  theme?: ScalarTheme | undefined;
+  /**
+   * A 'nonce' string to be attached to inline scripts
+   * for Content Security Policy (CSP) compliance.
+   * @default undefined
+   */
+  nonce?: string | undefined;
+}
+declare const openAPI: <O extends OpenAPIOptions>(options?: O | undefined) => BetterAuthPlugin;
+//#endregion
+export { type FieldSchema, type OpenAPIModelSchema, OpenAPIOptions, type Path, generator, openAPI };
+//# sourceMappingURL=index.d.mts.map