npm - @hexclave/tanstack-start - Versions diffs - 1.0.5 → 1.0.6 - Mend

@hexclave/tanstack-start 1.0.5 → 1.0.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

package/src/lib/hexclave-app/apps/implementations/client-app-impl.ts CHANGED Viewed

@@ -39,7 +39,7 @@ import { Store, storeLock } from "@hexclave/shared/dist/utils/stores";
 import { deindent, mergeScopeStrings } from "@hexclave/shared/dist/utils/strings";
 import type { TurnstileAction } from "@hexclave/shared/dist/utils/turnstile";
 import { BotChallengeExecutionFailedError, BotChallengeUserCancelledError, withBotChallengeFlow } from "@hexclave/shared/dist/utils/turnstile-flow";
-import { createUrlIfValid, isRelative } from "@hexclave/shared/dist/utils/urls";
+import { createUrlIfValid, getRelativePart, isRelative } from "@hexclave/shared/dist/utils/urls";
 import { generateUuid } from "@hexclave/shared/dist/utils/uuids";
 import * as tanstackStartServerContext from "@hexclave/tanstack-start/tanstack-start-server-context"; // THIS_LINE_PLATFORM tanstack-start
 import * as TanStackRouter from "@tanstack/react-router"; // THIS_LINE_PLATFORM tanstack-start
@@ -49,7 +49,7 @@ import type * as yup from "yup";
 import { constructRedirectUrl } from "../../../../utils/url";
 import { callOAuthCallback, getNewOAuthProviderOrScopeUrl } from "../../../auth";
 import { CookieHelper, createBrowserCookieHelper, createCookieHelper, createPlaceholderCookieHelper, deleteCookie, deleteCookieClient, getCookieClient, isSecure as isSecureCookieContext, saveVerifierAndState, setOrDeleteCookie, setOrDeleteCookieClient } from "../../../cookie";
-import { envVars } from "../../../env";
+import { envVars } from "../../../../generated/env";
 import { ApiKey, ApiKeyCreationOptions, ApiKeyUpdateOptions, apiKeyCreationOptionsToCrud } from "../../api-keys";
 import { ConvexCtx, GetCurrentPartialUserOptions, GetCurrentUserOptions, HandlerUrlOptions, HandlerUrls, OAuthScopesOnSignIn, RedirectMethod, RedirectToOptions, RequestLike, ResolvedHandlerUrls, TokenStoreInit, hexclaveAppInternalsSymbol } from "../../common";
 import { DeprecatedOAuthConnection, OAuthConnection } from "../../connected-accounts";
@@ -816,12 +816,16 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
     return currentUrl.toString();
   }
-  protected async _getCurrentRefreshTokenIdIfSignedIn(options?: {
+  protected async _fetchCurrentRefreshTokenIdIfSignedIn(options?: {
     awaitPendingAuthResolutions?: boolean,
     overrideTokenStoreInit?: TokenStoreInit,
   }): Promise<string | null> {
     const session = await this._getSession(options?.overrideTokenStoreInit, options);
-    const tokens = await session.getOrFetchLikelyValidTokens(0, null);
+    // Nested cross-domain auth passes this ID to another origin, which later
+    // asks us to prove the same raw refresh token. A cached access token can be
+    // valid but stale relative to the refresh token, so mint from the refresh
+    // token that owns this session before exposing the ID.
+    const tokens = await session.fetchNewTokens();
     if (tokens?.refreshToken == null) {
       return null;
     }
@@ -839,7 +843,7 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
       return options.url;
     }
-    const refreshTokenId = await this._getCurrentRefreshTokenIdIfSignedIn({
+    const refreshTokenId = await this._fetchCurrentRefreshTokenIdIfSignedIn({
       awaitPendingAuthResolutions: options.awaitPendingAuthResolutions,
       overrideTokenStoreInit: options.overrideTokenStoreInit,
     });
@@ -894,7 +898,7 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
       if (!await this._isTrusted(afterCallbackRedirectUrl.toString())) {
         throw new Error(`Nested cross-domain auth after-callback redirect URL ${afterCallbackRedirectUrlString} is not trusted.`);
       }
-      const currentRefreshTokenId = await this._getCurrentRefreshTokenIdIfSignedIn({ awaitPendingAuthResolutions: false });
+      const currentRefreshTokenId = await this._fetchCurrentRefreshTokenIdIfSignedIn({ awaitPendingAuthResolutions: false });
       if (currentRefreshTokenId !== refreshTokenId) {
         throw new Error("Nested cross-domain auth source session does not match the requested refresh token ID.");
       }
@@ -913,8 +917,12 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
     // We are on b.com. Bounce to the trusted callback on a.com with a normal OAuth request
     // shape; a.com will verify the source session and issue the one-time code.
-    const currentRefreshTokenId = await this._getCurrentRefreshTokenIdIfSignedIn({ awaitPendingAuthResolutions: false });
+    const currentRefreshTokenId = await this._fetchCurrentRefreshTokenIdIfSignedIn({ awaitPendingAuthResolutions: false });
     if (currentRefreshTokenId === refreshTokenId) return false;
+    if (currentRefreshTokenId != null) {
+      const session = await this._getSession(undefined, { awaitPendingAuthResolutions: false });
+      session.markInvalid();
+    }
     const callbackUrlString = currentUrl.searchParams.get(nestedCrossDomainAuthQueryParams.callbackUrl);
     if (callbackUrlString == null) {
       throw new HexclaveAssertionError("Nested cross-domain auth URL is missing callback URL");
@@ -1107,6 +1115,13 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
       accessToken,
     };
   }
+  private _getCurrentBrowserCookieTokenStoreValue(old: TokenObject | null): TokenObject {
+    const tokens = this._getTokensFromCookies(this._getAllBrowserCookies());
+    return {
+      refreshToken: tokens.refreshToken,
+      accessToken: tokens.accessToken ?? (old?.refreshToken === tokens.refreshToken ? old.accessToken : null),
+    };
+  }
   protected get _accessTokenCookieName() {
     // The access token, unlike the refresh token, should not depend on the project ID. We never want to store the
     // access token in cookies more than once because of how big it is (there's a limit of 4096 bytes for all cookies
@@ -1249,20 +1264,13 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
     }
     if (this._storedBrowserCookieTokenStore === null) {
-      const getCurrentValue = (old: TokenObject | null) => {
-        const tokens = this._getTokensFromCookies(this._getAllBrowserCookies());
-        return {
-          refreshToken: tokens.refreshToken,
-          accessToken: tokens.accessToken ?? (old?.refreshToken === tokens.refreshToken ? old.accessToken : null),
-        };
-      };
-      this._storedBrowserCookieTokenStore = new Store<TokenObject>(getCurrentValue(null));
+      this._storedBrowserCookieTokenStore = new Store<TokenObject>(this._getCurrentBrowserCookieTokenStoreValue(null));
       let hasSucceededInWriting = true;
       setInterval(() => {
         if (hasSucceededInWriting) {
           const oldValue = this._storedBrowserCookieTokenStore!.get();
-          const currentValue = getCurrentValue(oldValue);
+          const currentValue = this._getCurrentBrowserCookieTokenStoreValue(oldValue);
           if (!deepPlainEquals(currentValue, oldValue)) {
             this._storedBrowserCookieTokenStore!.set(currentValue);
           }
@@ -1296,6 +1304,12 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
           }
         }
       });
+    } else {
+      const oldValue = this._storedBrowserCookieTokenStore.get();
+      const currentValue = this._getCurrentBrowserCookieTokenStoreValue(oldValue);
+      if (!deepPlainEquals(currentValue, oldValue)) {
+        this._storedBrowserCookieTokenStore.set(currentValue);
+      }
     }
     return this._storedBrowserCookieTokenStore;
@@ -1444,17 +1458,17 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
       accessToken: tokenObj.accessToken,
     });
     session.onAccessTokenChange((newAccessToken) => {
-      tokenStore.update((old) => ({
+      tokenStore.update((old) => InternalSession.calculateSessionKey(old) === sessionKey ? {
         ...old,
         accessToken: newAccessToken?.token ?? null
-      }));
+      } : old);
     });
     session.onInvalidate(() => {
-      tokenStore.update((old) => ({
+      tokenStore.update((old) => InternalSession.calculateSessionKey(old) === sessionKey ? {
         ...old,
         accessToken: null,
         refreshToken: null,
-      }));
+      } : old);
     });
     let sessionsBySessionKey = this._sessionsByTokenStoreAndSessionKey.get(tokenStore) ?? new Map();
@@ -2554,16 +2568,16 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
   private _getBotChallengeSiteKeys(): { visibleSiteKey: string, invisibleSiteKey: string } | null {
     if (!isBrowserLike()) return null;
-    const visibleSiteKey = envVars.NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY;
+    const visibleSiteKey = envVars.HEXCLAVE_BOT_CHALLENGE_SITE_KEY;
     if (!visibleSiteKey) {
       if (!this._botChallengeSiteKeysWarned) {
         this._botChallengeSiteKeysWarned = true;
-        console.warn("[stack-auth] NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY is not set — bot challenge fraud protection is disabled. Set the env variable to enable it.");
+        console.warn("[stack-auth] HEXCLAVE_BOT_CHALLENGE_SITE_KEY is not set — bot challenge fraud protection is disabled. Set the env variable to enable it.");
       }
       return null;
     }
-    const invisibleSiteKey = envVars.NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY ?? visibleSiteKey;
+    const invisibleSiteKey = envVars.HEXCLAVE_BOT_CHALLENGE_INVISIBLE_SITE_KEY ?? visibleSiteKey;
     return { visibleSiteKey, invisibleSiteKey };
   }
@@ -2745,6 +2759,11 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
     overrideTokenStoreInit?: TokenStoreInit,
   }): Promise<string> {
     const session = await this._getSession(options.overrideTokenStoreInit, { awaitPendingAuthResolutions: options.awaitPendingAuthResolutions });
+    // The authorize endpoint intentionally verifies that the access token and
+    // raw refresh token describe the same DB session. Force the access token to
+    // be minted from the refresh token we are about to send, instead of reusing
+    // a still-valid cached token from a pre-handoff session snapshot.
+    await session.fetchNewTokens();
     const response = await this._interface.sendClientRequest(
       "/auth/oauth/cross-domain/authorize",
       {
@@ -2892,7 +2911,13 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
   async redirectToSignIn(options?: RedirectToOptions) { return await this._redirectToHandler("signIn", options); }
   async redirectToSignUp(options?: RedirectToOptions) { return await this._redirectToHandler("signUp", options); }
-  async redirectToSignOut(options?: RedirectToOptions) { return await this._redirectToHandler("signOut", options); }
+  async redirectToSignOut(options?: RedirectToOptions) {
+    const configuredSignOutTarget = this._urlOptions.signOut ?? this._urlOptions.default;
+    if (typeof configuredSignOutTarget !== "string" && configuredSignOutTarget?.type === "hosted") {
+      return await this.signOut();
+    }
+    return await this._redirectToHandler("signOut", options);
+  }
   async redirectToEmailVerification(options?: RedirectToOptions) { return await this._redirectToHandler("emailVerification", options); }
   async redirectToPasswordReset(options?: RedirectToOptions) { return await this._redirectToHandler("passwordReset", options); }
   async redirectToForgotPassword(options?: RedirectToOptions) { return await this._redirectToHandler("forgotPassword", options); }
@@ -3689,11 +3714,30 @@ export class _HexclaveClientAppImplIncomplete<HasTokenStore extends boolean, Pro
       if (options?.redirectUrl) {
         await this._redirectTo({ url: options.redirectUrl, replace: true });
       } else {
-        await this.redirectToAfterSignOut();
+        await this._redirectToDefaultAfterSignOut();
       }
     });
   }
+  protected async _redirectToDefaultAfterSignOut(): Promise<void> {
+    if (this._urlOptions.afterSignOut != null) {
+      await this.redirectToAfterSignOut({ replace: true });
+      return;
+    }
+    if (this._urlOptions.home != null) {
+      await this.redirectToHome({ replace: true });
+      return;
+    }
+    if (this._urlOptions.default?.type === "hosted" && typeof window !== "undefined") {
+      await this._redirectTo({ url: getRelativePart(new URL(window.location.href)), replace: true });
+      return;
+    }
+    await this.redirectToAfterSignOut({ replace: true });
+  }
   async signOut(options?: { redirectUrl?: URL | string, tokenStore?: TokenStoreInit }): Promise<void> {
     const user = await this.getUser({ tokenStore: options?.tokenStore ?? undefined as any });
     if (user) {

package/src/lib/hexclave-app/apps/implementations/common.ts CHANGED Viewed

@@ -14,7 +14,7 @@ import { Result } from "@hexclave/shared/dist/utils/results";
 import { Store } from "@hexclave/shared/dist/utils/stores";
 import { getDefaultApiUrls } from "@hexclave/shared/dist/utils/urls";
 import React, { useCallback } from "react"; // THIS_LINE_PLATFORM react-like
-import { envVars } from "../../../env";
+import { envVars } from "../../../../generated/env";
 import { HandlerUrlOptions, ResolvedHandlerUrls, hexclaveAppInternalsSymbol } from "../../common";
 import { resolveHandlerUrls } from "../../url-targets";
@@ -25,10 +25,30 @@ if (clientVersion.startsWith("STACK_COMPILE_TIME")) {
 const replaceHexclavePortPrefix = <T extends string | undefined>(input: T): T => {
   if (!input) return input;
-  const prefix = envVars.NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX;
+  const prefix = envVars.HEXCLAVE_PORT_PREFIX;
   return prefix ? input.replace(/\$\{NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX:-81\}/g, prefix) as T : input;
 };
+const showMissingConfigAlertInBrowser = (message: string) => {
+  if (!isBrowserLike()) return;
+  const global = globalThis as any;
+  const alertAlreadyShownKey = "__hexclave_missing_config_alert_already_shown";
+  if (global[alertAlreadyShownKey]) return;
+  global[alertAlreadyShownKey] = true;
+  const alertFn = global.alert;
+  if (typeof alertFn === "function") {
+    alertFn(message);
+  }
+};
+const throwMissingProjectIdError = (): never => {
+  const message = "Welcome to Hexclave! It seems that you haven't provided a project ID. Please create a project on the Hexclave dashboard at https://app.hexclave.com and put it in the HEXCLAVE_PROJECT_ID environment variable.";
+  showMissingConfigAlertInBrowser(message);
+  return throwErr(new Error(message));
+};
 export const createCache = <D extends any[], T>(fetcher: (dependencies: D) => Promise<T>) => {
   return new AsyncCache<D, Result<T>>(
@@ -66,23 +86,23 @@ export function getUrls(partial: HandlerUrlOptions, options: { projectId: string
 }
 export function getDefaultProjectId() {
-  return envVars.NEXT_PUBLIC_STACK_PROJECT_ID || envVars.STACK_PROJECT_ID || throwErr(new Error("Welcome to Hexclave! It seems that you haven't provided a project ID. Please create a project on the Hexclave dashboard at https://app.hexclave.com and put it in the NEXT_PUBLIC_STACK_PROJECT_ID environment variable."));
+  return envVars.HEXCLAVE_PROJECT_ID || throwMissingProjectIdError();
 }
 export function getDefaultPublishableClientKey() {
-  return envVars.NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY || envVars.STACK_PUBLISHABLE_CLIENT_KEY;
+  return envVars.HEXCLAVE_PUBLISHABLE_CLIENT_KEY;
 }
 export function getDefaultSecretServerKey() {
-  return envVars.STACK_SECRET_SERVER_KEY || throwErr(new Error("No secret server key provided. Please copy your key from the Hexclave dashboard and put it in the STACK_SECRET_SERVER_KEY environment variable."));
+  return envVars.HEXCLAVE_SECRET_SERVER_KEY || throwErr(new Error("No secret server key provided. Please copy your key from the Hexclave dashboard and put it in the HEXCLAVE_SECRET_SERVER_KEY environment variable."));
 }
 export function getDefaultSuperSecretAdminKey() {
-  return envVars.STACK_SUPER_SECRET_ADMIN_KEY || throwErr(new Error("No super secret admin key provided. Please copy your key from the Hexclave dashboard and put it in the STACK_SUPER_SECRET_ADMIN_KEY environment variable."));
+  return envVars.HEXCLAVE_SUPER_SECRET_ADMIN_KEY || throwErr(new Error("No super secret admin key provided. Please copy your key from the Hexclave dashboard and put it in the HEXCLAVE_SUPER_SECRET_ADMIN_KEY environment variable."));
 }
 export function getDefaultExtraRequestHeaders() {
-  return JSON.parse(envVars.NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS || envVars.STACK_EXTRA_REQUEST_HEADERS || '{}');
+  return JSON.parse(envVars.HEXCLAVE_EXTRA_REQUEST_HEADERS || '{}');
 }
 /**
@@ -91,9 +111,9 @@ export function getDefaultExtraRequestHeaders() {
  * The URL can be specified in several ways, in order of precedence:
  * 1. Directly through userSpecifiedBaseUrl parameter as string or browser/server object
  * 2. Through environment variables:
- *    - Browser: NEXT_PUBLIC_BROWSER_STACK_API_URL
- *    - Server: NEXT_PUBLIC_SERVER_STACK_API_URL
- *    - Fallback: NEXT_PUBLIC_STACK_API_URL or NEXT_PUBLIC_STACK_URL
+ *    - Browser: NEXT_PUBLIC_HEXCLAVE_API_URL_BROWSER/VITE_HEXCLAVE_API_URL_BROWSER
+ *    - Server: HEXCLAVE_API_URL_SERVER
+ *    - Default: HEXCLAVE_API_URL
  * 3. Default base URL if none of the above are specified
  *
  * The function also ensures the URL doesn't end with a trailing slash
@@ -116,13 +136,12 @@ export function getBaseUrl(userSpecifiedBaseUrl: string | { browser: string, ser
       }
     }
   } else {
-    // note: NEXT_PUBLIC_BROWSER_STACK_API_URL was renamed to NEXT_PUBLIC_STACK_API_URL_BROWSER, and NEXT_PUBLIC_STACK_URL to NEXT_PUBLIC_STACK_API_URL
     if (isBrowserLike()) {
-      url = envVars.NEXT_PUBLIC_BROWSER_STACK_API_URL || envVars.NEXT_PUBLIC_STACK_API_URL_BROWSER || envVars.STACK_API_URL_BROWSER;
+      url = envVars.HEXCLAVE_API_URL_BROWSER;
     } else {
-      url = envVars.NEXT_PUBLIC_SERVER_STACK_API_URL || envVars.NEXT_PUBLIC_STACK_API_URL_SERVER || envVars.STACK_API_URL_SERVER;
+      url = envVars.HEXCLAVE_API_URL_SERVER;
     }
-    url = url || envVars.NEXT_PUBLIC_STACK_API_URL || envVars.STACK_API_URL || envVars.NEXT_PUBLIC_STACK_URL || defaultBaseUrl;
+    url = url || envVars.HEXCLAVE_API_URL || defaultBaseUrl;
   }
   return replaceHexclavePortPrefix(url.endsWith('/') ? url.slice(0, -1) : url);
@@ -220,6 +239,7 @@ export function useAsyncCache<D extends any[], T>(cache: AsyncCache<D, Result<T>
     });
     return unsubscribe;
   }, [cache, ...dependencies]);
   const getSnapshot = useCallback(() => {
     // React checks whether a promise passed to `use` is still the same as the previous one by comparing the reference.
     // If we didn't cache here, this wouldn't work because the promise would be recreated every time the value changes.

package/src/lib/hexclave-app/url-targets.test.ts CHANGED Viewed

@@ -100,6 +100,23 @@ describe("handler URL targets", () => {
     expect(urls.cliAuthConfirm).toBe("https://project-id.example-stack-hosted.test/handler/cli-auth-confirm");
   });
+  it("keeps redirect-only post-auth targets local even when the default target is hosted", () => {
+    vi.stubEnv("NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX", ".example-stack-hosted.test");
+    const urls = resolveHandlerUrls({
+      projectId: "project-id",
+      urls: {
+        default: { type: "hosted" },
+      },
+    });
+    expect(urls.signIn).toBe("https://project-id.example-stack-hosted.test/handler/sign-in");
+    expect(urls.signOut).toBe("https://project-id.example-stack-hosted.test/handler/sign-out");
+    expect(urls.afterSignIn).toBe("/");
+    expect(urls.afterSignUp).toBe("/");
+    expect(urls.afterSignOut).toBe("/");
+  });
   it("rejects absolute OAuth callback string targets", () => {
     expect(() => resolveHandlerUrls({
       projectId: "project-id",

package/src/lib/hexclave-app/url-targets.ts CHANGED Viewed

@@ -5,7 +5,7 @@
 import { getCustomPagePrompts, type CustomPagePrompt } from "@hexclave/shared/dist/interface/handler-urls";
 import { HexclaveAssertionError } from "@hexclave/shared/dist/utils/errors";
 import { getHostedHandlerUrlFromConfig } from "@hexclave/shared/dist/utils/redirect-urls";
-import { envVars } from "../env";
+import { envVars } from "../../generated/env";
 import { DefaultHandlerUrlTarget, HandlerPageUrls, HandlerUrlOptions, HandlerUrlTarget, HandlerUrls, ResolvedHandlerUrls } from "./common";
 const localUrlPlaceholderOrigin = "http://example.com";
@@ -111,9 +111,9 @@ export const getHostedHandlerUrl = (options: { projectId: string, pagePath: stri
   return getHostedHandlerUrlFromConfig({
     projectId: options.projectId,
     hostedPath,
-    hostedHandlerDomainSuffix: envVars.NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX,
-    hostedHandlerUrlTemplate: envVars.NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE,
-    hexclavePortPrefix: envVars.NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX,
+    hostedHandlerDomainSuffix: envVars.HEXCLAVE_HOSTED_HANDLER_DOMAIN_SUFFIX,
+    hostedHandlerUrlTemplate: envVars.HEXCLAVE_HOSTED_HANDLER_URL_TEMPLATE,
+    hexclavePortPrefix: envVars.HEXCLAVE_PORT_PREFIX,
   });
 };
@@ -124,6 +124,12 @@ const isRelativeUrlString = (url: string): boolean => {
   return !schemePrefixRegex.test(url);
 };
+const nonHostedHandlerNames = new Set<keyof HandlerUrls>([
+  "afterSignIn",
+  "afterSignUp",
+  "afterSignOut",
+]);
 export const isLocalHandlerUrlTarget = (options: {
   targetUrl: string,
   handlerPath: string,
@@ -159,6 +165,9 @@ const resolveUrlTarget = (options: {
       return options.fallbackPath;
     }
     case "hosted": {
+      if (nonHostedHandlerNames.has(options.handlerName)) {
+        return options.fallbackPath;
+      }
       return getHostedHandlerUrl({
         projectId: options.projectId,
         pagePath: getHostedPagePathForHandlerName(options.handlerName),
@@ -206,15 +215,24 @@ export const resolveHandlerUrls = (options: { urls: HandlerUrlOptions | undefine
     });
   }
+  const homeTarget = configuredUrls?.home ?? defaultTarget;
+  const localHome = resolveUrlTarget({
+    target: typeof homeTarget !== "string" && homeTarget.type === "hosted"
+      ? { type: "handler-component" }
+      : homeTarget,
+    fallbackPath: "/",
+    handlerName: "home",
+    projectId: options.projectId,
+  });
   const home = resolveUrlTarget({
-    target: configuredUrls?.home ?? defaultTarget,
+    target: homeTarget,
     fallbackPath: "/",
     handlerName: "home",
     projectId: options.projectId,
   });
   const afterSignIn = resolveUrlTarget({
     target: configuredUrls?.afterSignIn ?? defaultTarget,
-    fallbackPath: home,
+    fallbackPath: localHome,
     handlerName: "afterSignIn",
     projectId: options.projectId,
   });
@@ -253,7 +271,7 @@ export const resolveHandlerUrls = (options: { urls: HandlerUrlOptions | undefine
     }),
     afterSignOut: resolveUrlTarget({
       target: configuredUrls?.afterSignOut ?? defaultTarget,
-      fallbackPath: home,
+      fallbackPath: localHome,
       handlerName: "afterSignOut",
       projectId: options.projectId,
     }),

package/dist/esm/lib/env.d.ts DELETED Viewed

@@ -1,42 +0,0 @@
-//#region src/lib/env.d.ts
-/**
- * Centralized environment-variable reads for the SDK.
- *
- * Keep each key explicit and reference `process.env.KEY` directly so bundlers
- * like Next.js can inline values at build time.
- *
- * Hexclave rebrand: each getter prefers the HEXCLAVE_*-prefixed literal and
- * falls back to the legacy STACK_* literal(s). Both operands stay literal
- * `process.env.X` references so bundlers can inline them. The port-prefix var
- * is a straight rename (no dual-read).
- */
-declare const envVars: {
-  readonly NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX: string | undefined;
-  readonly NEXT_PUBLIC_STACK_PROJECT_ID: string | undefined;
-  readonly STACK_PROJECT_ID: string | undefined;
-  readonly NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY: string | undefined;
-  readonly STACK_PUBLISHABLE_CLIENT_KEY: string | undefined;
-  readonly STACK_SECRET_SERVER_KEY: string | undefined;
-  readonly STACK_SUPER_SECRET_ADMIN_KEY: string | undefined;
-  readonly NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS: string | undefined;
-  readonly STACK_EXTRA_REQUEST_HEADERS: string | undefined;
-  readonly NEXT_PUBLIC_BROWSER_STACK_API_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_API_URL_BROWSER: string | undefined;
-  readonly STACK_API_URL_BROWSER: string | undefined;
-  readonly NEXT_PUBLIC_SERVER_STACK_API_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_API_URL_SERVER: string | undefined;
-  readonly STACK_API_URL_SERVER: string | undefined;
-  readonly NEXT_PUBLIC_STACK_API_URL: string | undefined;
-  readonly STACK_API_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX: string | undefined;
-  readonly NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE: string | undefined;
-  readonly NEXT_PUBLIC_STACK_STRIPE_PUBLISHABLE_KEY: string | undefined;
-  readonly NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY: string | undefined;
-  readonly NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY: string | undefined;
-  readonly NODE_ENV: string | undefined;
-  readonly NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR: string | undefined;
-};
-//#endregion
-export { envVars };
-//# sourceMappingURL=env.d.ts.map

package/dist/esm/lib/env.js DELETED Viewed

@@ -1,93 +0,0 @@
-//#region src/lib/env.ts
-/**
-* Centralized environment-variable reads for the SDK.
-*
-* Keep each key explicit and reference `process.env.KEY` directly so bundlers
-* like Next.js can inline values at build time.
-*
-* Hexclave rebrand: each getter prefers the HEXCLAVE_*-prefixed literal and
-* falls back to the legacy STACK_* literal(s). Both operands stay literal
-* `process.env.X` references so bundlers can inline them. The port-prefix var
-* is a straight rename (no dual-read).
-*/
-const envVars = {
-	get NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_PROJECT_ID() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_PROJECT_ID ?? process.env.NEXT_PUBLIC_STACK_PROJECT_ID : void 0) ?? void 0;
-	},
-	get STACK_PROJECT_ID() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_PROJECT_ID ?? process.env.STACK_PROJECT_ID : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_PUBLISHABLE_CLIENT_KEY ?? process.env.NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY : void 0) ?? void 0;
-	},
-	get STACK_PUBLISHABLE_CLIENT_KEY() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_PUBLISHABLE_CLIENT_KEY ?? process.env.STACK_PUBLISHABLE_CLIENT_KEY : void 0) ?? void 0;
-	},
-	get STACK_SECRET_SERVER_KEY() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_SECRET_SERVER_KEY ?? process.env.STACK_SECRET_SERVER_KEY : void 0) ?? void 0;
-	},
-	get STACK_SUPER_SECRET_ADMIN_KEY() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_SUPER_SECRET_ADMIN_KEY ?? process.env.STACK_SUPER_SECRET_ADMIN_KEY : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_EXTRA_REQUEST_HEADERS ?? process.env.NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS : void 0) ?? void 0;
-	},
-	get STACK_EXTRA_REQUEST_HEADERS() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_EXTRA_REQUEST_HEADERS ?? process.env.STACK_EXTRA_REQUEST_HEADERS : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_BROWSER_STACK_API_URL() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_BROWSER_HEXCLAVE_API_URL ?? process.env.NEXT_PUBLIC_BROWSER_STACK_API_URL : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_API_URL_BROWSER() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_API_URL_BROWSER ?? process.env.NEXT_PUBLIC_STACK_API_URL_BROWSER : void 0) ?? void 0;
-	},
-	get STACK_API_URL_BROWSER() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_API_URL_BROWSER ?? process.env.STACK_API_URL_BROWSER : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_SERVER_STACK_API_URL() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_SERVER_HEXCLAVE_API_URL ?? process.env.NEXT_PUBLIC_SERVER_STACK_API_URL : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_API_URL_SERVER() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_API_URL_SERVER ?? process.env.NEXT_PUBLIC_STACK_API_URL_SERVER : void 0) ?? void 0;
-	},
-	get STACK_API_URL_SERVER() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_API_URL_SERVER ?? process.env.STACK_API_URL_SERVER : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_API_URL() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_API_URL ?? process.env.NEXT_PUBLIC_STACK_API_URL : void 0) ?? void 0;
-	},
-	get STACK_API_URL() {
-		return (typeof process !== "undefined" ? process.env.HEXCLAVE_API_URL ?? process.env.STACK_API_URL : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_URL() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_URL ?? process.env.NEXT_PUBLIC_STACK_URL : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_HOSTED_HANDLER_DOMAIN_SUFFIX ?? process.env.NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_HOSTED_HANDLER_URL_TEMPLATE ?? process.env.NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_STRIPE_PUBLISHABLE_KEY() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_STRIPE_PUBLISHABLE_KEY ?? process.env.NEXT_PUBLIC_STACK_STRIPE_PUBLISHABLE_KEY : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_BOT_CHALLENGE_SITE_KEY ?? process.env.NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_BOT_CHALLENGE_INVISIBLE_SITE_KEY ?? process.env.NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY : void 0) ?? void 0;
-	},
-	get NODE_ENV() {
-		return (typeof process !== "undefined" ? process.env.NODE_ENV : void 0) ?? void 0;
-	},
-	get NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR() {
-		return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_HEXCLAVE_IS_LOCAL_EMULATOR ?? process.env.NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR : void 0) ?? void 0;
-	}
-};
-//#endregion
-export { envVars };
-//# sourceMappingURL=env.js.map

package/dist/esm/lib/env.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"env.js","names":[],"sources":["../../../src/lib/env.ts"],"sourcesContent":["\n//===========================================\n// THIS FILE IS AUTO-GENERATED FROM TEMPLATE. DO NOT EDIT IT DIRECTLY UNLESS YOU ALSO EDIT THE CORRESPONDING FILE IN packages/template\n//===========================================\n/**\n * Centralized environment-variable reads for the SDK.\n *\n * Keep each key explicit and reference `process.env.KEY` directly so bundlers\n * like Next.js can inline values at build time.\n *\n * Hexclave rebrand: each getter prefers the HEXCLAVE_*-prefixed literal and\n * falls back to the legacy STACK_* literal(s). Both operands stay literal\n * `process.env.X` references so bundlers can inline them. The port-prefix var\n * is a straight rename (no dual-read).\n */\nexport const envVars = {\n // Hexclave rebrand: port-prefix var renamed outright (no dual-read).\n get NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_PROJECT_ID() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_PROJECT_ID ?? process.env.NEXT_PUBLIC_STACK_PROJECT_ID : undefined) ?? undefined;\n },\n get STACK_PROJECT_ID() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_PROJECT_ID ?? process.env.STACK_PROJECT_ID : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_PUBLISHABLE_CLIENT_KEY ?? process.env.NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY : undefined) ?? undefined;\n },\n get STACK_PUBLISHABLE_CLIENT_KEY() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_PUBLISHABLE_CLIENT_KEY ?? process.env.STACK_PUBLISHABLE_CLIENT_KEY : undefined) ?? undefined;\n },\n get STACK_SECRET_SERVER_KEY() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_SECRET_SERVER_KEY ?? process.env.STACK_SECRET_SERVER_KEY : undefined) ?? undefined;\n },\n get STACK_SUPER_SECRET_ADMIN_KEY() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_SUPER_SECRET_ADMIN_KEY ?? process.env.STACK_SUPER_SECRET_ADMIN_KEY : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_EXTRA_REQUEST_HEADERS ?? process.env.NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS : undefined) ?? undefined;\n },\n get STACK_EXTRA_REQUEST_HEADERS() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_EXTRA_REQUEST_HEADERS ?? process.env.STACK_EXTRA_REQUEST_HEADERS : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_BROWSER_STACK_API_URL() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_BROWSER_HEXCLAVE_API_URL ?? process.env.NEXT_PUBLIC_BROWSER_STACK_API_URL : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_API_URL_BROWSER() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_API_URL_BROWSER ?? process.env.NEXT_PUBLIC_STACK_API_URL_BROWSER : undefined) ?? undefined;\n },\n get STACK_API_URL_BROWSER() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_API_URL_BROWSER ?? process.env.STACK_API_URL_BROWSER : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_SERVER_STACK_API_URL() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_SERVER_HEXCLAVE_API_URL ?? process.env.NEXT_PUBLIC_SERVER_STACK_API_URL : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_API_URL_SERVER() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_API_URL_SERVER ?? process.env.NEXT_PUBLIC_STACK_API_URL_SERVER : undefined) ?? undefined;\n },\n get STACK_API_URL_SERVER() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_API_URL_SERVER ?? process.env.STACK_API_URL_SERVER : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_API_URL() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_API_URL ?? process.env.NEXT_PUBLIC_STACK_API_URL : undefined) ?? undefined;\n },\n get STACK_API_URL() {\n return (typeof process !== \"undefined\" ? process.env.HEXCLAVE_API_URL ?? process.env.STACK_API_URL : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_URL() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_URL ?? process.env.NEXT_PUBLIC_STACK_URL : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_HOSTED_HANDLER_DOMAIN_SUFFIX ?? process.env.NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_HOSTED_HANDLER_URL_TEMPLATE ?? process.env.NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_STRIPE_PUBLISHABLE_KEY() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_STRIPE_PUBLISHABLE_KEY ?? process.env.NEXT_PUBLIC_STACK_STRIPE_PUBLISHABLE_KEY : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_BOT_CHALLENGE_SITE_KEY ?? process.env.NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_BOT_CHALLENGE_INVISIBLE_SITE_KEY ?? process.env.NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY : undefined) ?? undefined;\n },\n get NODE_ENV() {\n return (typeof process !== \"undefined\" ? process.env.NODE_ENV : undefined) ?? undefined;\n },\n get NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR() {\n return (typeof process !== \"undefined\" ? process.env.NEXT_PUBLIC_HEXCLAVE_IS_LOCAL_EMULATOR ?? process.env.NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR : undefined) ?? undefined;\n },\n};\n"],"mappings":";;;;;;;;;;;;AAeA,MAAa,UAAU;CAErB,IAAI,mCAAmC;AACrC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,mCAAmC,WAAc;;CAExG,IAAI,+BAA+B;AACjC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,mCAAmC,QAAQ,IAAI,+BAA+B,WAAc;;CAEnJ,IAAI,mBAAmB;AACrB,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,uBAAuB,QAAQ,IAAI,mBAAmB,WAAc;;CAE3H,IAAI,2CAA2C;AAC7C,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,+CAA+C,QAAQ,IAAI,2CAA2C,WAAc;;CAE3K,IAAI,+BAA+B;AACjC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,mCAAmC,QAAQ,IAAI,+BAA+B,WAAc;;CAEnJ,IAAI,0BAA0B;AAC5B,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,8BAA8B,QAAQ,IAAI,0BAA0B,WAAc;;CAEzI,IAAI,+BAA+B;AACjC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,mCAAmC,QAAQ,IAAI,+BAA+B,WAAc;;CAEnJ,IAAI,0CAA0C;AAC5C,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,8CAA8C,QAAQ,IAAI,0CAA0C,WAAc;;CAEzK,IAAI,8BAA8B;AAChC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,kCAAkC,QAAQ,IAAI,8BAA8B,WAAc;;CAEjJ,IAAI,oCAAoC;AACtC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,wCAAwC,QAAQ,IAAI,oCAAoC,WAAc;;CAE7J,IAAI,oCAAoC;AACtC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,wCAAwC,QAAQ,IAAI,oCAAoC,WAAc;;CAE7J,IAAI,wBAAwB;AAC1B,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,4BAA4B,QAAQ,IAAI,wBAAwB,WAAc;;CAErI,IAAI,mCAAmC;AACrC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,uCAAuC,QAAQ,IAAI,mCAAmC,WAAc;;CAE3J,IAAI,mCAAmC;AACrC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,uCAAuC,QAAQ,IAAI,mCAAmC,WAAc;;CAE3J,IAAI,uBAAuB;AACzB,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,2BAA2B,QAAQ,IAAI,uBAAuB,WAAc;;CAEnI,IAAI,4BAA4B;AAC9B,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,gCAAgC,QAAQ,IAAI,4BAA4B,WAAc;;CAE7I,IAAI,gBAAgB;AAClB,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,oBAAoB,QAAQ,IAAI,gBAAgB,WAAc;;CAErH,IAAI,wBAAwB;AAC1B,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,4BAA4B,QAAQ,IAAI,wBAAwB,WAAc;;CAErI,IAAI,iDAAiD;AACnD,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,qDAAqD,QAAQ,IAAI,iDAAiD,WAAc;;CAEvL,IAAI,gDAAgD;AAClD,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,oDAAoD,QAAQ,IAAI,gDAAgD,WAAc;;CAErL,IAAI,2CAA2C;AAC7C,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,+CAA+C,QAAQ,IAAI,2CAA2C,WAAc;;CAE3K,IAAI,2CAA2C;AAC7C,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,+CAA+C,QAAQ,IAAI,2CAA2C,WAAc;;CAE3K,IAAI,qDAAqD;AACvD,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,yDAAyD,QAAQ,IAAI,qDAAqD,WAAc;;CAE/L,IAAI,WAAW;AACb,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,WAAW,WAAc;;CAEhF,IAAI,sCAAsC;AACxC,UAAQ,OAAO,YAAY,cAAc,QAAQ,IAAI,0CAA0C,QAAQ,IAAI,sCAAsC,WAAc;;CAElK"}

package/dist/lib/env.d.ts DELETED Viewed

@@ -1,42 +0,0 @@
-//#region src/lib/env.d.ts
-/**
- * Centralized environment-variable reads for the SDK.
- *
- * Keep each key explicit and reference `process.env.KEY` directly so bundlers
- * like Next.js can inline values at build time.
- *
- * Hexclave rebrand: each getter prefers the HEXCLAVE_*-prefixed literal and
- * falls back to the legacy STACK_* literal(s). Both operands stay literal
- * `process.env.X` references so bundlers can inline them. The port-prefix var
- * is a straight rename (no dual-read).
- */
-declare const envVars: {
-  readonly NEXT_PUBLIC_HEXCLAVE_PORT_PREFIX: string | undefined;
-  readonly NEXT_PUBLIC_STACK_PROJECT_ID: string | undefined;
-  readonly STACK_PROJECT_ID: string | undefined;
-  readonly NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY: string | undefined;
-  readonly STACK_PUBLISHABLE_CLIENT_KEY: string | undefined;
-  readonly STACK_SECRET_SERVER_KEY: string | undefined;
-  readonly STACK_SUPER_SECRET_ADMIN_KEY: string | undefined;
-  readonly NEXT_PUBLIC_STACK_EXTRA_REQUEST_HEADERS: string | undefined;
-  readonly STACK_EXTRA_REQUEST_HEADERS: string | undefined;
-  readonly NEXT_PUBLIC_BROWSER_STACK_API_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_API_URL_BROWSER: string | undefined;
-  readonly STACK_API_URL_BROWSER: string | undefined;
-  readonly NEXT_PUBLIC_SERVER_STACK_API_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_API_URL_SERVER: string | undefined;
-  readonly STACK_API_URL_SERVER: string | undefined;
-  readonly NEXT_PUBLIC_STACK_API_URL: string | undefined;
-  readonly STACK_API_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_URL: string | undefined;
-  readonly NEXT_PUBLIC_STACK_HOSTED_HANDLER_DOMAIN_SUFFIX: string | undefined;
-  readonly NEXT_PUBLIC_STACK_HOSTED_HANDLER_URL_TEMPLATE: string | undefined;
-  readonly NEXT_PUBLIC_STACK_STRIPE_PUBLISHABLE_KEY: string | undefined;
-  readonly NEXT_PUBLIC_STACK_BOT_CHALLENGE_SITE_KEY: string | undefined;
-  readonly NEXT_PUBLIC_STACK_BOT_CHALLENGE_INVISIBLE_SITE_KEY: string | undefined;
-  readonly NODE_ENV: string | undefined;
-  readonly NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR: string | undefined;
-};
-//#endregion
-export { envVars };
-//# sourceMappingURL=env.d.ts.map