npm - @insforge/nextjs - Versions diffs - 0.10.9 → 0.10.10 - Mend

@insforge/nextjs 0.10.9 → 0.10.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (37) hide show

package/dist/api/route-handlers.d.ts +0 -5
package/dist/client/provider.d.ts +48 -0
package/dist/components.client.d.ts +3 -0
package/dist/components.server.d.ts +10 -0
package/dist/esm/api/index.js.map +1 -1
package/dist/esm/api/route-handlers.js +51 -13
package/dist/esm/api/route-handlers.js.map +1 -1
package/dist/esm/client/components.js.map +1 -0
package/dist/esm/client/hooks.js.map +1 -0
package/dist/esm/{client-boundary → client}/provider.js +12 -6
package/dist/esm/client/provider.js.map +1 -0
package/dist/esm/components.client.js +6 -0
package/dist/esm/components.client.js.map +1 -0
package/dist/esm/components.server.js +5 -0
package/dist/esm/components.server.js.map +1 -0
package/dist/esm/index.js +6 -6
package/dist/esm/index.js.map +1 -1
package/dist/esm/middleware/InsforgeMiddleware.js +23 -6
package/dist/esm/middleware/InsforgeMiddleware.js.map +1 -1
package/dist/esm/package.json +10 -0
package/dist/esm/server/InsforgeProvider.js +102 -0
package/dist/esm/server/InsforgeProvider.js.map +1 -0
package/dist/esm/server/index.js +5 -0
package/dist/esm/server/index.js.map +1 -0
package/dist/index.d.ts +4 -2
package/dist/middleware/InsforgeMiddleware.d.ts +1 -6
package/dist/server/InsforgeProvider.d.ts +102 -0
package/dist/server/index.d.ts +4 -0
package/package.json +7 -3
package/dist/client-boundary/provider.d.ts +0 -50
package/dist/esm/client-boundary/components.js.map +0 -1
package/dist/esm/client-boundary/hooks.js.map +0 -1
package/dist/esm/client-boundary/provider.js.map +0 -1
/package/dist/{client-boundary → client}/components.d.ts +0 -0
/package/dist/{client-boundary → client}/hooks.d.ts +0 -0
/package/dist/esm/{client-boundary → client}/components.js +0 -0
/package/dist/esm/{client-boundary → client}/hooks.js +0 -0

package/dist/api/route-handlers.d.ts CHANGED Viewed

@@ -5,11 +5,6 @@ interface AuthRouteConfig {
      * Base URL of your Insforge backend
      */
     baseUrl: string;
-    /**
-     * Cookie name for the auth token
-     * @default 'insforge_token'
-     */
-    cookieName?: string;
     /**
      * Cookie max age in seconds (default: 7 days)
      * @default 604800

package/dist/client/provider.d.ts ADDED Viewed

@@ -0,0 +1,48 @@
+import * as react_jsx_runtime from 'react/jsx-runtime';
+import { InsforgeProviderProps, InitialAuthState, useInsforge as useInsforge$1 } from '@insforge/react';
+interface ExtendedProviderProps extends InsforgeProviderProps {
+    afterSignInUrl?: string;
+    onSignIn?: (authToken: string) => Promise<void>;
+    onSignOut?: () => Promise<void>;
+    /**
+     * Initial auth state from server (for SSR hydration)
+     * @internal
+     */
+    initialState?: InitialAuthState;
+}
+/**
+ * Client Insforge Provider for Next.js
+ *
+ * This is a Client Component ('use client') that:
+ * 1. Receives initialState from Server Provider
+ * 2. Manages authentication state on the client
+ * 3. Syncs tokens to HTTP-only cookies via /api/auth
+ *
+ * @internal - Not intended for direct use. Use the Server Provider instead.
+ */
+declare function ClientInsforgeProvider({ children, baseUrl, afterSignInUrl, onAuthChange, initialState, }: ExtendedProviderProps): react_jsx_runtime.JSX.Element;
+/**
+ * Hook to access Insforge context
+ *
+ * Re-exports the hook from @insforge/react for convenience.
+ *
+ * @example
+ * ```tsx
+ * function MyComponent() {
+ *   const { user, isSignedIn, signOut } = useInsforge();
+ *
+ *   if (!isSignedIn) return <SignIn />;
+ *
+ *   return (
+ *     <div>
+ *       <p>Welcome {user.email}</p>
+ *       <button onClick={signOut}>Sign Out</button>
+ *     </div>
+ *   );
+ * }
+ * ```
+ */
+declare const useInsforge: typeof useInsforge$1;
+export { ClientInsforgeProvider, useInsforge };

package/dist/components.client.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export { ClientInsforgeProvider as InsforgeProvider } from './client/provider.js';
+import 'react/jsx-runtime';
+import '@insforge/react';

package/dist/components.server.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+import { InsforgeProvider } from './server/InsforgeProvider.js';
+import 'react/jsx-runtime';
+import 'react';
+import '@insforge/react';
+type ServerComponentsServerModuleTypes = {
+    InsforgeProvider: typeof InsforgeProvider;
+};
+export { InsforgeProvider, type ServerComponentsServerModuleTypes };

package/dist/esm/api/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/api/index.ts"],"sourcesContent":["export { createAuthRouteHandlers } from './route-handlers';\nexport type { AuthRouteConfig } from './route-handlers'~~;\n~~"],"mappings":"AAAA,SAAS,+BAA+B;","names":[]}
1	+ {"version":3,"sources":["../../../src/api/index.ts"],"sourcesContent":["export { createAuthRouteHandlers } from './route-handlers';\nexport type { AuthRouteConfig } from './route-handlers';"],"mappings":"AAAA,SAAS,+BAA+B;","names":[]}

package/dist/esm/api/route-handlers.js CHANGED Viewed

@@ -3,16 +3,17 @@ import { createClient } from "@insforge/sdk";
 function createAuthRouteHandlers(config) {
   const {
     baseUrl,
-    cookieName = "insforge_token",
     cookieMaxAge = 7 * 24 * 60 * 60
     // 7 days
   } = config;
+  const sessionCookieName = "insforge-session";
+  const userCookieName = "insforge-user";
   const insforge = createClient({ baseUrl });
-  function setAuthCookie(response, token) {
+  function setAuthCookies(response, token, user) {
     const isProduction = process.env.NODE_ENV === "production";
     const secure = config.secure ?? isProduction;
     response.cookies.set({
-      name: cookieName,
+      name: sessionCookieName,
       value: token,
       httpOnly: true,
       // Cannot be accessed by JavaScript
@@ -22,14 +23,38 @@ function createAuthRouteHandlers(config) {
       maxAge: cookieMaxAge,
       path: "/"
     });
+    const userInfo = JSON.stringify({
+      id: user.id,
+      email: user.email,
+      name: user.name || ""
+    });
+    response.cookies.set({
+      name: userCookieName,
+      value: userInfo,
+      httpOnly: true,
+      secure,
+      sameSite: "lax",
+      maxAge: cookieMaxAge,
+      path: "/"
+    });
     return response;
   }
-  function clearAuthCookie(response) {
+  function clearAuthCookies(response) {
+    const secure = config.secure ?? process.env.NODE_ENV === "production";
+    response.cookies.set({
+      name: sessionCookieName,
+      value: "",
+      httpOnly: true,
+      secure,
+      sameSite: "lax",
+      maxAge: 0,
+      path: "/"
+    });
     response.cookies.set({
-      name: cookieName,
+      name: userCookieName,
       value: "",
       httpOnly: true,
-      secure: config.secure ?? process.env.NODE_ENV === "production",
+      secure,
       sameSite: "lax",
       maxAge: 0,
       path: "/"
@@ -67,7 +92,11 @@ function createAuthRouteHandlers(config) {
               createdAt: (/* @__PURE__ */ new Date()).toISOString()
             }
           });
-          setAuthCookie(response, result.data.accessToken || "");
+          setAuthCookies(response, result.data.accessToken || "", {
+            id: result.data.user.id,
+            email: result.data.user.email,
+            name: result.data.user.name
+          });
           return response;
         }
         case "sign-up": {
@@ -90,12 +119,17 @@ function createAuthRouteHandlers(config) {
               createdAt: (/* @__PURE__ */ new Date()).toISOString()
             }
           });
-          setAuthCookie(response, result.data.accessToken || "");
+          setAuthCookies(response, result.data.accessToken || "", {
+            id: result.data.user.id,
+            email: result.data.user.email,
+            name: result.data.user.name
+          });
           return response;
         }
         case "sync-token": {
           const { token } = body;
           if (!token) {
+            console.error("[Auth Route] No token provided");
             return NextResponse.json({ error: "Token is required" }, { status: 400 });
           }
           try {
@@ -122,7 +156,11 @@ function createAuthRouteHandlers(config) {
                 createdAt: (/* @__PURE__ */ new Date()).toISOString()
               }
             });
-            setAuthCookie(nextResponse, token);
+            setAuthCookies(nextResponse, token, {
+              id: session.user.id,
+              email: session.user.email,
+              name: session.user.name
+            });
             return nextResponse;
           } catch (error) {
             console.error("[Auth API] Token validation error:", error);
@@ -142,7 +180,7 @@ function createAuthRouteHandlers(config) {
   }
   async function GET(request) {
     try {
-      const token = request.cookies.get(cookieName)?.value;
+      const token = request.cookies.get(sessionCookieName)?.value;
       if (!token) {
         return NextResponse.json({ user: null, session: null });
       }
@@ -154,7 +192,7 @@ function createAuthRouteHandlers(config) {
       });
       if (!response.ok) {
         const nextResponse = NextResponse.json({ user: null, session: null });
-        clearAuthCookie(nextResponse);
+        clearAuthCookies(nextResponse);
         return nextResponse;
       }
       const session = await response.json();
@@ -174,7 +212,7 @@ function createAuthRouteHandlers(config) {
   }
   async function DELETE(request) {
     try {
-      const token = request.cookies.get(cookieName)?.value;
+      const token = request.cookies.get(sessionCookieName)?.value;
       if (token) {
         try {
           await fetch(`${baseUrl}/auth/sessions/current`, {
@@ -189,7 +227,7 @@ function createAuthRouteHandlers(config) {
         }
       }
       const response = NextResponse.json({ success: true });
-      clearAuthCookie(response);
+      clearAuthCookies(response);
       return response;
     } catch (error) {
       console.error("[Auth API Error]:", error);

package/dist/esm/api/route-handlers.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/api/route-handlers.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\nimport { createClient } from '@insforge/sdk';\n\ninterface SignInRequestBody {\n action: 'sign-in';\n email: string;\n password: string;\n}\n\ninterface SignUpRequestBody {\n action: 'sign-up';\n email: string;\n password: string;\n}\n\ninterface SyncTokenRequestBody {\n action: 'sync-token';\n token: string;\n}\n\ntype AuthRequestBody = SignInRequestBody \| SignUpRequestBody \| SyncTokenRequestBody;\n\ninterface SessionResponse {\n user: {\n id: string;\n email: string;\n [key: string]: unknown;\n };\n [key: string]: unknown;\n}\n\nexport interface AuthRouteConfig {\n /*\n Base URL of your Insforge backend\n /\n baseUrl: string;\n\n /\n Cookie name for the auth token\n * @default 'insforge_token'\n /\n cookieName?: string;\n\n /\n Cookie max age in seconds (default: 7 days)\n * @default 604800\n /\n cookieMaxAge?: number;\n\n /\n Whether to use secure cookies (HTTPS only)\n * Auto-detected based on environment\n /\n secure?: boolean;\n}\n\n/\n Creates authentication route handlers for Next.js App Router\n * These handlers set HTTP-only cookies that can be read by middleware\n \n @example\n * ```ts\n * // app/api/auth/[...auth]/route.ts\n * import { createAuthRouteHandlers } from '@insforge/nextjs/api';\n \n const handlers = createAuthRouteHandlers({\n * baseUrl: process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!,\n * });\n \n export const POST = handlers.POST;\n * export const GET = handlers.GET;\n * export const DELETE = handlers.DELETE;\n * ```\n /\nexport function createAuthRouteHandlers(config: AuthRouteConfig) {\n const {\n baseUrl,\n cookieName = 'insforge_token',\n cookieMaxAge = 7 24 * 60 * 60, // 7 days\n } = config;\n\n const insforge = createClient({ baseUrl });\n\n /*\n Helper to set auth cookie\n /\n function setAuthCookie(response: NextResponse, token: string) {\n // NODE_ENV is automatically set by Next.js runtime ('development' \| 'production' \| 'test')\n // In production, cookies are sent over HTTPS only (secure flag)\n const isProduction = process.env.NODE_ENV === 'production';\n const secure = config.secure ?? isProduction;\n\n response.cookies.set({\n name: cookieName,\n value: token,\n httpOnly: true, // Cannot be accessed by JavaScript\n secure, // Only sent over HTTPS in production\n sameSite: 'lax',\n maxAge: cookieMaxAge,\n path: '/',\n });\n\n return response;\n }\n\n /\n Helper to clear auth cookie\n /\n function clearAuthCookie(response: NextResponse) {\n response.cookies.set({\n name: cookieName,\n value: '',\n httpOnly: true,\n secure: config.secure ?? process.env.NODE_ENV === 'production',\n sameSite: 'lax',\n maxAge: 0,\n path: '/',\n });\n\n return response;\n }\n\n /\n POST handler for authentication actions\n * Supports: sign-in, sign-up\n /\n async function POST(request: NextRequest) {\n try {\n const body = (await request.json()) as AuthRequestBody;\n const { action } = body;\n\n if (!action) {\n return NextResponse.json({ error: 'Action is required' }, { status: 400 });\n }\n\n switch (action) {\n case 'sign-in': {\n const { email, password } = body;\n if (!email \|\| !password) {\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\n }\n\n const result = await insforge.auth.signInWithPassword({\n email,\n password,\n });\n\n if (result.error) {\n return NextResponse.json({ error: result.error.message }, { status: 401 });\n }\n\n if (!result.data \|\| !result.data.user) {\n return NextResponse.json({ error: 'Authentication failed' }, { status: 401 });\n }\n\n const response = NextResponse.json({\n user: result.data.user,\n session: {\n userId: result.data.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookie(response, result.data.accessToken \|\| '');\n\n return response;\n }\n\n case 'sign-up': {\n const { email, password } = body;\n if (!email \|\| !password) {\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\n }\n\n const result = await insforge.auth.signUp({ email, password });\n\n if (result.error) {\n return NextResponse.json({ error: result.error.message }, { status: 400 });\n }\n\n if (!result.data \|\| !result.data.user) {\n return NextResponse.json({ error: 'Sign up failed' }, { status: 400 });\n }\n\n const response = NextResponse.json({\n user: result.data.user,\n session: {\n userId: result.data.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookie(response, result.data.accessToken \|\| '');\n\n return response;\n }\n\n case 'sync-token': {\n // Syncs a token from localStorage to HTTP-only cookie\n const { token } = body;\n\n if (!token) {\n return NextResponse.json({ error: 'Token is required' }, { status: 400 });\n }\n\n // Verify the token is valid by checking with backend\n try {\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n const errorText = await response.text();\n console.error('[Auth API] Token validation failed:', errorText);\n return NextResponse.json(\n { error: 'Invalid token', details: errorText },\n { status: 401 }\n );\n }\n\n const session = (await response.json()) as SessionResponse;\n\n const nextResponse = NextResponse.json({\n user: session.user,\n session: {\n userId: session.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookie(nextResponse, token);\n\n return nextResponse;\n } catch (error) {\n console.error('[Auth API] Token validation error:', error);\n return NextResponse.json(\n { error: 'Token validation failed', details: String(error) },\n { status: 401 }\n );\n }\n }\n\n default:\n return NextResponse.json({ error: 'Invalid action' }, { status: 400 });\n }\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\n }\n }\n\n /\n GET handler to check current session\n /\n async function GET(request: NextRequest) {\n try {\n const token = request.cookies.get(cookieName)?.value;\n\n if (!token) {\n return NextResponse.json({ user: null, session: null });\n }\n\n // Verify token with backend\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n const nextResponse = NextResponse.json({ user: null, session: null });\n clearAuthCookie(nextResponse);\n return nextResponse;\n }\n\n const session = (await response.json()) as SessionResponse;\n\n return NextResponse.json({\n user: session.user,\n session: {\n userId: session.user.id,\n token,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ user: null, session: null });\n }\n }\n\n /\n DELETE handler for sign out\n */\n async function DELETE(request: NextRequest) {\n try {\n const token = request.cookies.get(cookieName)?.value;\n\n if (token) {\n // Call backend sign out\n try {\n await fetch(`${baseUrl}/auth/sessions/current`, {\n method: 'DELETE',\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n } catch (error) {\n // Ignore backend errors during sign out\n console.error('[Auth API] Sign out error:', error);\n }\n }\n\n const response = NextResponse.json({ success: true });\n clearAuthCookie(response);\n\n return response;\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\n }\n }\n\n return {\n POST,\n GET,\n DELETE,\n };\n}\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAC1C,SAAS,oBAAoB;AAyEtB,SAAS,wBAAwB,QAAyB;AAC/D,QAAM;AAAA,IACJ;AAAA,IACA,aAAa;AAAA,IACb,eAAe,IAAI,KAAK,KAAK;AAAA;AAAA,EAC/B,IAAI;AAEJ,QAAM,WAAW,aAAa,EAAE,QAAQ,CAAC;AAKzC,WAAS,cAAc,UAAwB,OAAe;AAG5D,UAAM,eAAe,QAAQ,IAAI,aAAa;AAC9C,UAAM,SAAS,OAAO,UAAU;AAEhC,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM;AAAA,MACN,OAAO;AAAA,MACP,UAAU;AAAA;AAAA,MACV;AAAA;AAAA,MACA,UAAU;AAAA,MACV,QAAQ;AAAA,MACR,MAAM;AAAA,IACR,CAAC;AAED,WAAO;AAAA,EACT;AAKA,WAAS,gBAAgB,UAAwB;AAC/C,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM;AAAA,MACN,OAAO;AAAA,MACP,UAAU;AAAA,MACV,QAAQ,OAAO,UAAU,QAAQ,IAAI,aAAa;AAAA,MAClD,UAAU;AAAA,MACV,QAAQ;AAAA,MACR,MAAM;AAAA,IACR,CAAC;AAED,WAAO;AAAA,EACT;AAMA,iBAAe,KAAK,SAAsB;AACxC,QAAI;AACF,YAAM,OAAQ,MAAM,QAAQ,KAAK;AACjC,YAAM,EAAE,OAAO,IAAI;AAEnB,UAAI,CAAC,QAAQ;AACX,eAAO,aAAa,KAAK,EAAE,OAAO,qBAAqB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MAC3E;AAEA,cAAQ,QAAQ;AAAA,QACd,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,mBAAmB;AAAA,YACpD;AAAA,YACA;AAAA,UACF,CAAC;AAED,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC9E;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,wBAAc,UAAU,OAAO,KAAK,eAAe,EAAE;AAErD,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,OAAO,EAAE,OAAO,SAAS,CAAC;AAE7D,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACvE;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,wBAAc,UAAU,OAAO,KAAK,eAAe,EAAE;AAErD,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,cAAc;AAEjB,gBAAM,EAAE,MAAM,IAAI;AAElB,cAAI,CAAC,OAAO;AACV,mBAAO,aAAa,KAAK,EAAE,OAAO,oBAAoB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC1E;AAGA,cAAI;AACF,kBAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,cACnE,SAAS;AAAA,gBACP,eAAe,UAAU,KAAK;AAAA,gBAC9B,gBAAgB;AAAA,cAClB;AAAA,YACF,CAAC;AAED,gBAAI,CAAC,SAAS,IAAI;AAChB,oBAAM,YAAY,MAAM,SAAS,KAAK;AACtC,sBAAQ,MAAM,uCAAuC,SAAS;AAC9D,qBAAO,aAAa;AAAA,gBAClB,EAAE,OAAO,iBAAiB,SAAS,UAAU;AAAA,gBAC7C,EAAE,QAAQ,IAAI;AAAA,cAChB;AAAA,YACF;AAEA,kBAAM,UAAW,MAAM,SAAS,KAAK;AAErC,kBAAM,eAAe,aAAa,KAAK;AAAA,cACrC,MAAM,QAAQ;AAAA,cACd,SAAS;AAAA,gBACP,QAAQ,QAAQ,KAAK;AAAA,gBACrB,WAAW;AAAA,gBACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,cACpC;AAAA,YACF,CAAC;AAED,0BAAc,cAAc,KAAK;AAEjC,mBAAO;AAAA,UACT,SAAS,OAAO;AACd,oBAAQ,MAAM,sCAAsC,KAAK;AACzD,mBAAO,aAAa;AAAA,cAClB,EAAE,OAAO,2BAA2B,SAAS,OAAO,KAAK,EAAE;AAAA,cAC3D,EAAE,QAAQ,IAAI;AAAA,YAChB;AAAA,UACF;AAAA,QACF;AAAA,QAEA;AACE,iBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MACzE;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAKA,iBAAe,IAAI,SAAsB;AACvC,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,UAAU,GAAG;AAE/C,UAAI,CAAC,OAAO;AACV,eAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,MACxD;AAGA,YAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,QACnE,SAAS;AAAA,UACP,eAAe,UAAU,KAAK;AAAA,UAC9B,gBAAgB;AAAA,QAClB;AAAA,MACF,CAAC;AAED,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,eAAe,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AACpE,wBAAgB,YAAY;AAC5B,eAAO;AAAA,MACT;AAEA,YAAM,UAAW,MAAM,SAAS,KAAK;AAErC,aAAO,aAAa,KAAK;AAAA,QACvB,MAAM,QAAQ;AAAA,QACd,SAAS;AAAA,UACP,QAAQ,QAAQ,KAAK;AAAA,UACrB;AAAA,UACA,WAAW;AAAA,UACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,QACpC;AAAA,MACF,CAAC;AAAA,IACH,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,IACxD;AAAA,EACF;AAKA,iBAAe,OAAO,SAAsB;AAC1C,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,UAAU,GAAG;AAE/C,UAAI,OAAO;AAET,YAAI;AACF,gBAAM,MAAM,GAAG,OAAO,0BAA0B;AAAA,YAC9C,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,eAAe,UAAU,KAAK;AAAA,cAC9B,gBAAgB;AAAA,YAClB;AAAA,UACF,CAAC;AAAA,QACH,SAAS,OAAO;AAEd,kBAAQ,MAAM,8BAA8B,KAAK;AAAA,QACnD;AAAA,MACF;AAEA,YAAM,WAAW,aAAa,KAAK,EAAE,SAAS,KAAK,CAAC;AACpD,sBAAgB,QAAQ;AAExB,aAAO;AAAA,IACT,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/api/route-handlers.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\nimport { createClient } from '@insforge/sdk';\n\ninterface SignInRequestBody {\n action: 'sign-in';\n email: string;\n password: string;\n}\n\ninterface SignUpRequestBody {\n action: 'sign-up';\n email: string;\n password: string;\n}\n\ninterface SyncTokenRequestBody {\n action: 'sync-token';\n token: string;\n}\n\ntype AuthRequestBody = SignInRequestBody \| SignUpRequestBody \| SyncTokenRequestBody;\n\ninterface SessionResponse {\n user: {\n id: string;\n email: string;\n [key: string]: unknown;\n };\n [key: string]: unknown;\n}\n\nexport interface AuthRouteConfig {\n /*\n Base URL of your Insforge backend\n /\n baseUrl: string;\n\n /\n Cookie max age in seconds (default: 7 days)\n * @default 604800\n /\n cookieMaxAge?: number;\n\n /\n Whether to use secure cookies (HTTPS only)\n * Auto-detected based on environment\n /\n secure?: boolean;\n}\n\n/\n Creates authentication route handlers for Next.js App Router\n * These handlers set HTTP-only cookies that can be read by middleware\n \n @example\n * ```ts\n * // app/api/auth/[...auth]/route.ts\n * import { createAuthRouteHandlers } from '@insforge/nextjs/api';\n \n const handlers = createAuthRouteHandlers({\n * baseUrl: process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!,\n * });\n \n export const POST = handlers.POST;\n * export const GET = handlers.GET;\n * export const DELETE = handlers.DELETE;\n * ```\n /\nexport function createAuthRouteHandlers(config: AuthRouteConfig) {\n const {\n baseUrl,\n cookieMaxAge = 7 24 * 60 * 60, // 7 days\n } = config;\n\n // Fixed cookie names - not configurable\n const sessionCookieName = 'insforge-session';\n const userCookieName = 'insforge-user';\n\n const insforge = createClient({ baseUrl });\n\n /*\n Helper to set auth cookies (session token + user identity)\n /\n function setAuthCookies(\n response: NextResponse, \n token: string, \n user: { id: string; email: string; name?: string }\n ) {\n // NODE_ENV is automatically set by Next.js runtime ('development' \| 'production' \| 'test')\n // In production, cookies are sent over HTTPS only (secure flag)\n const isProduction = process.env.NODE_ENV === 'production';\n const secure = config.secure ?? isProduction;\n\n // Set session cookie (access token)\n response.cookies.set({\n name: sessionCookieName,\n value: token,\n httpOnly: true, // Cannot be accessed by JavaScript\n secure, // Only sent over HTTPS in production\n sameSite: 'lax',\n maxAge: cookieMaxAge,\n path: '/',\n });\n\n // Set user identity cookie (basic info for SSR)\n const userInfo = JSON.stringify({\n id: user.id,\n email: user.email,\n name: user.name \|\| '',\n });\n\n response.cookies.set({\n name: userCookieName,\n value: userInfo,\n httpOnly: true,\n secure,\n sameSite: 'lax',\n maxAge: cookieMaxAge,\n path: '/',\n });\n\n return response;\n }\n\n /\n Helper to clear auth cookies\n /\n function clearAuthCookies(response: NextResponse) {\n const secure = config.secure ?? process.env.NODE_ENV === 'production';\n\n // Clear session cookie\n response.cookies.set({\n name: sessionCookieName,\n value: '',\n httpOnly: true,\n secure,\n sameSite: 'lax',\n maxAge: 0,\n path: '/',\n });\n\n // Clear user cookie\n response.cookies.set({\n name: userCookieName,\n value: '',\n httpOnly: true,\n secure,\n sameSite: 'lax',\n maxAge: 0,\n path: '/',\n });\n\n return response;\n }\n\n /\n POST handler for authentication actions\n * Supports: sign-in, sign-up\n /\n async function POST(request: NextRequest) {\n try {\n const body = (await request.json()) as AuthRequestBody;\n const { action } = body;\n\n if (!action) {\n return NextResponse.json({ error: 'Action is required' }, { status: 400 });\n }\n\n switch (action) {\n case 'sign-in': {\n const { email, password } = body;\n if (!email \|\| !password) {\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\n }\n\n const result = await insforge.auth.signInWithPassword({\n email,\n password,\n });\n\n if (result.error) {\n return NextResponse.json({ error: result.error.message }, { status: 401 });\n }\n\n if (!result.data \|\| !result.data.user) {\n return NextResponse.json({ error: 'Authentication failed' }, { status: 401 });\n }\n\n const response = NextResponse.json({\n user: result.data.user,\n session: {\n userId: result.data.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(response, result.data.accessToken \|\| '', {\n id: result.data.user.id,\n email: result.data.user.email,\n name: (result.data.user as any).name,\n });\n\n return response;\n }\n\n case 'sign-up': {\n const { email, password } = body;\n if (!email \|\| !password) {\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\n }\n\n const result = await insforge.auth.signUp({ email, password });\n\n if (result.error) {\n return NextResponse.json({ error: result.error.message }, { status: 400 });\n }\n\n if (!result.data \|\| !result.data.user) {\n return NextResponse.json({ error: 'Sign up failed' }, { status: 400 });\n }\n\n const response = NextResponse.json({\n user: result.data.user,\n session: {\n userId: result.data.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(response, result.data.accessToken \|\| '', {\n id: result.data.user.id,\n email: result.data.user.email,\n name: (result.data.user as any).name,\n });\n\n return response;\n }\n\n case 'sync-token': {\n // Syncs a token from localStorage to HTTP-only cookie\n const { token } = body;\n\n if (!token) {\n console.error('[Auth Route] No token provided');\n return NextResponse.json({ error: 'Token is required' }, { status: 400 });\n }\n\n // Verify the token is valid by checking with backend\n try {\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n const errorText = await response.text();\n console.error('[Auth API] Token validation failed:', errorText);\n return NextResponse.json(\n { error: 'Invalid token', details: errorText },\n { status: 401 }\n );\n }\n\n const session = (await response.json()) as SessionResponse;\n\n const nextResponse = NextResponse.json({\n user: session.user,\n session: {\n userId: session.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(nextResponse, token, {\n id: session.user.id,\n email: session.user.email,\n name: (session.user as any).name,\n });\n\n return nextResponse;\n } catch (error) {\n console.error('[Auth API] Token validation error:', error);\n return NextResponse.json(\n { error: 'Token validation failed', details: String(error) },\n { status: 401 }\n );\n }\n }\n\n default:\n return NextResponse.json({ error: 'Invalid action' }, { status: 400 });\n }\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\n }\n }\n\n /\n GET handler to check current session\n /\n async function GET(request: NextRequest) {\n try {\n const token = request.cookies.get(sessionCookieName)?.value;\n\n if (!token) {\n return NextResponse.json({ user: null, session: null });\n }\n\n // Verify token with backend\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n const nextResponse = NextResponse.json({ user: null, session: null });\n clearAuthCookies(nextResponse);\n return nextResponse;\n }\n\n const session = (await response.json()) as SessionResponse;\n\n return NextResponse.json({\n user: session.user,\n session: {\n userId: session.user.id,\n token,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ user: null, session: null });\n }\n }\n\n /\n DELETE handler for sign out\n */\n async function DELETE(request: NextRequest) {\n try {\n const token = request.cookies.get(sessionCookieName)?.value;\n\n if (token) {\n // Call backend sign out\n try {\n await fetch(`${baseUrl}/auth/sessions/current`, {\n method: 'DELETE',\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n } catch (error) {\n // Ignore backend errors during sign out\n console.error('[Auth API] Sign out error:', error);\n }\n }\n\n const response = NextResponse.json({ success: true });\n clearAuthCookies(response);\n\n return response;\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\n }\n }\n\n return {\n POST,\n GET,\n DELETE,\n };\n}\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAC1C,SAAS,oBAAoB;AAmEtB,SAAS,wBAAwB,QAAyB;AAC/D,QAAM;AAAA,IACJ;AAAA,IACA,eAAe,IAAI,KAAK,KAAK;AAAA;AAAA,EAC/B,IAAI;AAGJ,QAAM,oBAAoB;AAC1B,QAAM,iBAAiB;AAEvB,QAAM,WAAW,aAAa,EAAE,QAAQ,CAAC;AAKzC,WAAS,eACP,UACA,OACA,MACA;AAGA,UAAM,eAAe,QAAQ,IAAI,aAAa;AAC9C,UAAM,SAAS,OAAO,UAAU;AAGhC,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM;AAAA,MACN,OAAO;AAAA,MACP,UAAU;AAAA;AAAA,MACV;AAAA;AAAA,MACA,UAAU;AAAA,MACV,QAAQ;AAAA,MACR,MAAM;AAAA,IACR,CAAC;AAGD,UAAM,WAAW,KAAK,UAAU;AAAA,MAC9B,IAAI,KAAK;AAAA,MACT,OAAO,KAAK;AAAA,MACZ,MAAM,KAAK,QAAQ;AAAA,IACrB,CAAC;AAED,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM;AAAA,MACN,OAAO;AAAA,MACP,UAAU;AAAA,MACV;AAAA,MACA,UAAU;AAAA,MACV,QAAQ;AAAA,MACR,MAAM;AAAA,IACR,CAAC;AAED,WAAO;AAAA,EACT;AAKA,WAAS,iBAAiB,UAAwB;AAChD,UAAM,SAAS,OAAO,UAAU,QAAQ,IAAI,aAAa;AAGzD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM;AAAA,MACN,OAAO;AAAA,MACP,UAAU;AAAA,MACV;AAAA,MACA,UAAU;AAAA,MACV,QAAQ;AAAA,MACR,MAAM;AAAA,IACR,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM;AAAA,MACN,OAAO;AAAA,MACP,UAAU;AAAA,MACV;AAAA,MACA,UAAU;AAAA,MACV,QAAQ;AAAA,MACR,MAAM;AAAA,IACR,CAAC;AAED,WAAO;AAAA,EACT;AAMA,iBAAe,KAAK,SAAsB;AACxC,QAAI;AACF,YAAM,OAAQ,MAAM,QAAQ,KAAK;AACjC,YAAM,EAAE,OAAO,IAAI;AAEnB,UAAI,CAAC,QAAQ;AACX,eAAO,aAAa,KAAK,EAAE,OAAO,qBAAqB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MAC3E;AAEA,cAAQ,QAAQ;AAAA,QACd,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,mBAAmB;AAAA,YACpD;AAAA,YACA;AAAA,UACF,CAAC;AAED,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC9E;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,yBAAe,UAAU,OAAO,KAAK,eAAe,IAAI;AAAA,YACtD,IAAI,OAAO,KAAK,KAAK;AAAA,YACrB,OAAO,OAAO,KAAK,KAAK;AAAA,YACxB,MAAO,OAAO,KAAK,KAAa;AAAA,UAClC,CAAC;AAED,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,OAAO,EAAE,OAAO,SAAS,CAAC;AAE7D,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACvE;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,yBAAe,UAAU,OAAO,KAAK,eAAe,IAAI;AAAA,YACtD,IAAI,OAAO,KAAK,KAAK;AAAA,YACrB,OAAO,OAAO,KAAK,KAAK;AAAA,YACxB,MAAO,OAAO,KAAK,KAAa;AAAA,UAClC,CAAC;AAED,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,cAAc;AAEjB,gBAAM,EAAE,MAAM,IAAI;AAElB,cAAI,CAAC,OAAO;AACV,oBAAQ,MAAM,gCAAgC;AAC9C,mBAAO,aAAa,KAAK,EAAE,OAAO,oBAAoB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC1E;AAGA,cAAI;AACF,kBAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,cACnE,SAAS;AAAA,gBACP,eAAe,UAAU,KAAK;AAAA,gBAC9B,gBAAgB;AAAA,cAClB;AAAA,YACF,CAAC;AAED,gBAAI,CAAC,SAAS,IAAI;AAChB,oBAAM,YAAY,MAAM,SAAS,KAAK;AACtC,sBAAQ,MAAM,uCAAuC,SAAS;AAC9D,qBAAO,aAAa;AAAA,gBAClB,EAAE,OAAO,iBAAiB,SAAS,UAAU;AAAA,gBAC7C,EAAE,QAAQ,IAAI;AAAA,cAChB;AAAA,YACF;AAEA,kBAAM,UAAW,MAAM,SAAS,KAAK;AAErC,kBAAM,eAAe,aAAa,KAAK;AAAA,cACrC,MAAM,QAAQ;AAAA,cACd,SAAS;AAAA,gBACP,QAAQ,QAAQ,KAAK;AAAA,gBACrB,WAAW;AAAA,gBACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,cACpC;AAAA,YACF,CAAC;AAED,2BAAe,cAAc,OAAO;AAAA,cAClC,IAAI,QAAQ,KAAK;AAAA,cACjB,OAAO,QAAQ,KAAK;AAAA,cACpB,MAAO,QAAQ,KAAa;AAAA,YAC9B,CAAC;AAED,mBAAO;AAAA,UACT,SAAS,OAAO;AACd,oBAAQ,MAAM,sCAAsC,KAAK;AACzD,mBAAO,aAAa;AAAA,cAClB,EAAE,OAAO,2BAA2B,SAAS,OAAO,KAAK,EAAE;AAAA,cAC3D,EAAE,QAAQ,IAAI;AAAA,YAChB;AAAA,UACF;AAAA,QACF;AAAA,QAEA;AACE,iBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MACzE;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAKA,iBAAe,IAAI,SAAsB;AACvC,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,iBAAiB,GAAG;AAEtD,UAAI,CAAC,OAAO;AACV,eAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,MACxD;AAGA,YAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,QACnE,SAAS;AAAA,UACP,eAAe,UAAU,KAAK;AAAA,UAC9B,gBAAgB;AAAA,QAClB;AAAA,MACF,CAAC;AAED,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,eAAe,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AACpE,yBAAiB,YAAY;AAC7B,eAAO;AAAA,MACT;AAEA,YAAM,UAAW,MAAM,SAAS,KAAK;AAErC,aAAO,aAAa,KAAK;AAAA,QACvB,MAAM,QAAQ;AAAA,QACd,SAAS;AAAA,UACP,QAAQ,QAAQ,KAAK;AAAA,UACrB;AAAA,UACA,WAAW;AAAA,UACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,QACpC;AAAA,MACF,CAAC;AAAA,IACH,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,IACxD;AAAA,EACF;AAKA,iBAAe,OAAO,SAAsB;AAC1C,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,iBAAiB,GAAG;AAEtD,UAAI,OAAO;AAET,YAAI;AACF,gBAAM,MAAM,GAAG,OAAO,0BAA0B;AAAA,YAC9C,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,eAAe,UAAU,KAAK;AAAA,cAC9B,gBAAgB;AAAA,YAClB;AAAA,UACF,CAAC;AAAA,QACH,SAAS,OAAO;AAEd,kBAAQ,MAAM,8BAA8B,KAAK;AAAA,QACnD;AAAA,MACF;AAEA,YAAM,WAAW,aAAa,KAAK,EAAE,SAAS,KAAK,CAAC;AACpD,uBAAiB,QAAQ;AAEzB,aAAO;AAAA,IACT,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;","names":[]}

package/dist/esm/client/components.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/client/components.tsx"],"sourcesContent":["'use client';\n\n/**\n * Client-side UI components boundary for Next.js App Router\n * All components from @insforge/react are re-exported here with 'use client' directive\n */\n\n// Main components\nexport {\n SignIn,\n SignUp,\n ForgotPassword,\n ResetPassword,\n VerifyEmail,\n UserButton,\n Protect,\n SignedIn,\n SignedOut,\n SignInButton,\n SignUpButton,\n} from '@insforge/react/components';\n\n// Form components\nexport {\n SignInForm,\n SignUpForm,\n ForgotPasswordForm,\n ResetPasswordForm,\n VerifyEmailStatus,\n} from '@insforge/react/components';\n\n// Atom components\nexport {\n AuthBranding,\n AuthContainer,\n AuthHeader,\n AuthErrorBanner,\n AuthFormField,\n AuthPasswordField,\n AuthPasswordStrengthIndicator,\n AuthSubmitButton,\n AuthLink,\n AuthDivider,\n AuthOAuthButton,\n AuthOAuthProviders,\n AuthVerificationCodeInput,\n AuthEmailVerificationStep,\n AuthResetPasswordVerificationStep,\n} from '@insforge/react/components';\n\n// Re-export all component types\nexport type {\n SignInProps,\n SignUpProps,\n ForgotPasswordProps,\n ResetPasswordProps,\n VerifyEmailProps,\n UserButtonProps,\n ProtectProps,\n ConditionalProps,\n SignInFormProps,\n SignUpFormProps,\n ForgotPasswordFormProps,\n ResetPasswordFormProps,\n VerifyEmailStatusProps,\n AuthContainerProps,\n AuthHeaderProps,\n AuthErrorBannerProps,\n AuthFormFieldProps,\n AuthPasswordFieldProps,\n AuthPasswordStrengthIndicatorProps,\n AuthSubmitButtonProps,\n AuthLinkProps,\n AuthDividerProps,\n AuthOAuthButtonProps,\n AuthOAuthProvidersProps,\n AuthVerificationCodeInputProps,\n} from '@insforge/react/components';\n"],"mappings":";AAQA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;","names":[]}

package/dist/esm/client/hooks.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/client/hooks.ts"],"sourcesContent":["'use client';\n\nimport { useInsforge } from './provider';\n\n/**\n * Next.js specific hooks - implemented locally to avoid Context duplication\n */\n\nexport function useAuth() {\n const { signIn, signUp, signOut, isLoaded, isSignedIn } = useInsforge();\n return { signIn, signUp, signOut, isLoaded, isSignedIn };\n}\n\nexport function useUser() {\n const { user, isLoaded } = useInsforge();\n return { user, isLoaded };\n}\n\nexport function usePublicAuthConfig() {\n const { getPublicAuthConfig } = useInsforge();\n return { getPublicAuthConfig };\n}\n"],"mappings":";AAEA,SAAS,mBAAmB;AAMrB,SAAS,UAAU;AACxB,QAAM,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW,IAAI,YAAY;AACtE,SAAO,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW;AACzD;AAEO,SAAS,UAAU;AACxB,QAAM,EAAE,MAAM,SAAS,IAAI,YAAY;AACvC,SAAO,EAAE,MAAM,SAAS;AAC1B;AAEO,SAAS,sBAAsB;AACpC,QAAM,EAAE,oBAAoB,IAAI,YAAY;AAC5C,SAAO,EAAE,oBAAoB;AAC/B;","names":[]}

package/dist/esm/{client-boundary → client}/provider.js RENAMED Viewed

@@ -8,7 +8,7 @@ import {
 import { NavigationAdapter } from "../navigation";
 async function handleSignIn(token) {
   try {
-    await fetch("/api/auth", {
+    const response = await fetch("/api/auth", {
       method: "POST",
       headers: {
         "Content-Type": "application/json"
@@ -18,8 +18,12 @@ async function handleSignIn(token) {
         token
       })
     });
+    if (!response.ok) {
+      const errorText = await response.text();
+      console.error("[Insforge Client Provider] sync-token failed:", errorText);
+    }
   } catch (err) {
-    console.error("[InsforgeProvider] Failed to sync token to cookie:", err);
+    console.error("[Insforge Client Provider] Failed to sync token to cookie:", err);
   }
 }
 async function handleSignOut() {
@@ -28,11 +32,12 @@ async function handleSignOut() {
   } catch {
   }
 }
-function InsforgeProvider({
+function ClientInsforgeProvider({
   children,
   baseUrl,
   afterSignInUrl = "/",
-  onAuthChange
+  onAuthChange,
+  initialState
 }) {
   const providerProps = {
     children,
@@ -40,13 +45,14 @@ function InsforgeProvider({
     afterSignInUrl,
     onAuthChange,
     onSignIn: handleSignIn,
-    onSignOut: handleSignOut
+    onSignOut: handleSignOut,
+    initialState
   };
   return /* @__PURE__ */ jsx(NavigationProvider, { adapter: NavigationAdapter, children: /* @__PURE__ */ jsx(InsforgeProviderCore, { ...providerProps, children }) });
 }
 const useInsforge = useReactInsforge;
 export {
-  InsforgeProvider,
+  ClientInsforgeProvider,
   useInsforge
 };
 //# sourceMappingURL=provider.js.map

package/dist/esm/client/provider.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/client/provider.tsx"],"sourcesContent":["'use client';\n\nimport {\n InsforgeProviderCore,\n type InsforgeProviderProps,\n type InitialAuthState,\n useInsforge as useReactInsforge,\n NavigationProvider,\n} from '@insforge/react';\nimport { NavigationAdapter } from '../navigation';\n\n// Extended interface for Next.js provider\ninterface ExtendedProviderProps extends InsforgeProviderProps {\n afterSignInUrl?: string;\n onSignIn?: (authToken: string) => Promise<void>;\n onSignOut?: () => Promise<void>;\n /**\n * Initial auth state from server (for SSR hydration)\n * @internal\n */\n initialState?: InitialAuthState;\n}\n\n// Sync token to server-side cookie on sign in\nasync function handleSignIn(token: string): Promise<void> {\n try {\n const response = await fetch('/api/auth', {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n action: 'sync-token',\n token,\n }),\n });\n \n if (!response.ok) {\n const errorText = await response.text();\n console.error('[Insforge Client Provider] sync-token failed:', errorText);\n }\n } catch (err) {\n console.error('[Insforge Client Provider] Failed to sync token to cookie:', err);\n }\n}\n\n// Clear HTTP-only cookie on sign out\nasync function handleSignOut(): Promise<void> {\n try {\n await fetch('/api/auth', { method: 'DELETE' });\n } catch {\n // API route doesn't exist - ignore\n }\n}\n\n/**\n * Client Insforge Provider for Next.js\n * \n * This is a Client Component ('use client') that:\n * 1. Receives initialState from Server Provider\n * 2. Manages authentication state on the client\n * 3. Syncs tokens to HTTP-only cookies via /api/auth\n * \n * @internal - Not intended for direct use. Use the Server Provider instead.\n */\nexport function ClientInsforgeProvider({\n children,\n baseUrl,\n afterSignInUrl = '/',\n onAuthChange,\n initialState,\n}: ExtendedProviderProps) {\n const providerProps: ExtendedProviderProps = {\n children,\n baseUrl,\n afterSignInUrl,\n onAuthChange,\n onSignIn: handleSignIn,\n onSignOut: handleSignOut,\n initialState,\n };\n\n return (\n <NavigationProvider adapter={NavigationAdapter}>\n <InsforgeProviderCore {...providerProps}>{children}</InsforgeProviderCore>\n </NavigationProvider>\n );\n}\n\n/**\n * Hook to access Insforge context\n *\n * Re-exports the hook from @insforge/react for convenience.\n *\n * @example\n * ```tsx\n * function MyComponent() {\n * const { user, isSignedIn, signOut } = useInsforge();\n *\n * if (!isSignedIn) return <SignIn />;\n *\n * return (\n * <div>\n * <p>Welcome {user.email}</p>\n * <button onClick={signOut}>Sign Out</button>\n * </div>\n * );\n * }\n * ```\n */\nexport const useInsforge = useReactInsforge;\n"],"mappings":";AAoFM;AAlFN;AAAA,EACE;AAAA,EAGA,eAAe;AAAA,EACf;AAAA,OACK;AACP,SAAS,yBAAyB;AAelC,eAAe,aAAa,OAA8B;AACxD,MAAI;AACF,UAAM,WAAW,MAAM,MAAM,aAAa;AAAA,MACxC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,QAAQ;AAAA,QACR;AAAA,MACF,CAAC;AAAA,IACH,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,YAAY,MAAM,SAAS,KAAK;AACtC,cAAQ,MAAM,iDAAiD,SAAS;AAAA,IAC1E;AAAA,EACF,SAAS,KAAK;AACZ,YAAQ,MAAM,8DAA8D,GAAG;AAAA,EACjF;AACF;AAGA,eAAe,gBAA+B;AAC5C,MAAI;AACF,UAAM,MAAM,aAAa,EAAE,QAAQ,SAAS,CAAC;AAAA,EAC/C,QAAQ;AAAA,EAER;AACF;AAYO,SAAS,uBAAuB;AAAA,EACrC;AAAA,EACA;AAAA,EACA,iBAAiB;AAAA,EACjB;AAAA,EACA;AACF,GAA0B;AACxB,QAAM,gBAAuC;AAAA,IAC3C;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,UAAU;AAAA,IACV,WAAW;AAAA,IACX;AAAA,EACF;AAEA,SACE,oBAAC,sBAAmB,SAAS,mBAC3B,8BAAC,wBAAsB,GAAG,eAAgB,UAAS,GACrD;AAEJ;AAuBO,MAAM,cAAc;","names":[]}

package/dist/esm/components.client.js ADDED Viewed

@@ -0,0 +1,6 @@
+"use client";
+import { ClientInsforgeProvider } from "./client/provider";
+export {
+  ClientInsforgeProvider as InsforgeProvider
+};
+//# sourceMappingURL=components.client.js.map

package/dist/esm/components.client.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"sources":["../../src/components.client.ts"],"sourcesContent":["'use client';\r\n\r\n// Client Component exports (from client folder)\r\n// This file is used when code runs in a Client Component (browser environment)\r\nexport { ClientInsforgeProvider as InsforgeProvider } from './client/provider';\r\n\r\n"],"mappings":";AAIA,SAAmC,8BAAwB;","names":[]}

package/dist/esm/components.server.js ADDED Viewed

@@ -0,0 +1,5 @@
+import { InsforgeProvider as ServerInsforgeProvider } from "./server/InsforgeProvider";
+export {
+  ServerInsforgeProvider as InsforgeProvider
+};
+//# sourceMappingURL=components.server.js.map

package/dist/esm/components.server.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../src/components.server.ts"],"sourcesContent":["// Server Component exports (from server folder)\r\n// This file is used when code runs in a Server Component (react-server environment)\r\nimport { InsforgeProvider as ServerInsforgeProvider } from './server/InsforgeProvider';\r\n\r\nexport { ServerInsforgeProvider as InsforgeProvider };\r\n\r\nexport type ServerComponentsServerModuleTypes = {\r\n InsforgeProvider: typeof ServerInsforgeProvider;\r\n};\r\n\r\n"],"mappings":"AAEA,SAAS,oBAAoB,8BAA8B;","names":[]}

package/dist/esm/index.js CHANGED Viewed

@@ -1,5 +1,5 @@
-"use client";
-import { InsforgeProvider, useInsforge } from "./client-boundary/provider";
+import { InsforgeProvider } from "#components";
+import { useInsforge } from "./client/provider";
 import {
   SignIn,
   SignUp,
@@ -12,14 +12,14 @@ import {
   SignedOut,
   SignInButton,
   SignUpButton
-} from "./client-boundary/components";
+} from "./client/components";
 import {
   SignInForm,
   SignUpForm,
   ForgotPasswordForm,
   ResetPasswordForm,
   VerifyEmailStatus
-} from "./client-boundary/components";
+} from "./client/components";
 import {
   AuthBranding,
   AuthContainer,
@@ -36,8 +36,8 @@ import {
   AuthVerificationCodeInput,
   AuthEmailVerificationStep,
   AuthResetPasswordVerificationStep
-} from "./client-boundary/components";
-import { useAuth, useUser, usePublicAuthConfig } from "./client-boundary/hooks";
+} from "./client/components";
+import { useAuth, useUser, usePublicAuthConfig } from "./client/hooks";
 export {
   AuthBranding,
   AuthContainer,

package/dist/esm/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/index.ts"],"sourcesContent":["~~'use client';\n\n~~// Types (no 'use client' needed for types)\nexport type {\n OAuthProvider,\n AuthConfig,\n EmailVerificationMethod,\n InsforgeUser,\n OAuthProviderConfig,\n} from '@insforge/react/types';\n\n// Provider (from client~~-boundary~~)\nexport { InsforgeProvider, useInsforge } from './client~~-boundary~~/provider';\n\n/*\n These need to be explicitly listed. Do not use an * here.\n * If you do, app router will break.\n \n Pattern learned from @clerk/nextjs\n */\n\n// Main UI Components\nexport {\n SignIn,\n SignUp,\n ForgotPassword,\n ResetPassword,\n VerifyEmail,\n UserButton,\n Protect,\n SignedIn,\n SignedOut,\n SignInButton,\n SignUpButton,\n} from './client~~-boundary~~/components';\n\n// Form Components\nexport {\n SignInForm,\n SignUpForm,\n ForgotPasswordForm,\n ResetPasswordForm,\n VerifyEmailStatus,\n} from './client~~-boundary~~/components';\n\n// Atom Components\nexport {\n AuthBranding,\n AuthContainer,\n AuthHeader,\n AuthErrorBanner,\n AuthFormField,\n AuthPasswordField,\n AuthPasswordStrengthIndicator,\n AuthSubmitButton,\n AuthLink,\n AuthDivider,\n AuthOAuthButton,\n AuthOAuthProviders,\n AuthVerificationCodeInput,\n AuthEmailVerificationStep,\n AuthResetPasswordVerificationStep,\n} from './client~~-boundary~~/components';\n\n// Component Types\nexport type {\n SignInProps,\n SignUpProps,\n ForgotPasswordProps,\n ResetPasswordProps,\n VerifyEmailProps,\n UserButtonProps,\n ProtectProps,\n ConditionalProps,\n SignInFormProps,\n SignUpFormProps,\n ForgotPasswordFormProps,\n ResetPasswordFormProps,\n VerifyEmailStatusProps,\n AuthContainerProps,\n AuthHeaderProps,\n AuthErrorBannerProps,\n AuthFormFieldProps,\n AuthPasswordFieldProps,\n AuthPasswordStrengthIndicatorProps,\n AuthSubmitButtonProps,\n AuthLinkProps,\n AuthDividerProps,\n AuthOAuthButtonProps,\n AuthOAuthProvidersProps,\n AuthVerificationCodeInputProps,\n} from './client~~-boundary~~/components';\n\n// Hooks\nexport { useAuth, useUser, usePublicAuthConfig } from './client~~-boundary~~/hooks';\n"],"mappings":";AAYA,SAAS,~~kBAAkB~~,mBAAmB;~~AAU9C~~;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAgCP,SAAS,SAAS,SAAS,2BAA2B;","names":[]}
1	+ {"version":3,"sources":["../../src/index.ts"],"sourcesContent":["// Types (no 'use client' needed for types)\nexport type {\n OAuthProvider,\n AuthConfig,\n EmailVerificationMethod,\n InsforgeUser,\n OAuthProviderConfig,\n} from '@insforge/react/types';\n\n// Provider - Uses conditional exports to provide correct version\n// In Server Components: exports from server/InsforgeProvider (async, uses next/headers)\n// In Client Components: exports from client/provider (use client)\nexport { InsforgeProvider } from '#components';\n\n// Hooks (from client)\nexport { useInsforge } from './client/provider';\n\n/*\n These need to be explicitly listed. Do not use an * here.\n * If you do, app router will break.\n \n Pattern learned from @clerk/nextjs\n */\n\n// Main UI Components\nexport {\n SignIn,\n SignUp,\n ForgotPassword,\n ResetPassword,\n VerifyEmail,\n UserButton,\n Protect,\n SignedIn,\n SignedOut,\n SignInButton,\n SignUpButton,\n} from './client/components';\n\n// Form Components\nexport {\n SignInForm,\n SignUpForm,\n ForgotPasswordForm,\n ResetPasswordForm,\n VerifyEmailStatus,\n} from './client/components';\n\n// Atom Components\nexport {\n AuthBranding,\n AuthContainer,\n AuthHeader,\n AuthErrorBanner,\n AuthFormField,\n AuthPasswordField,\n AuthPasswordStrengthIndicator,\n AuthSubmitButton,\n AuthLink,\n AuthDivider,\n AuthOAuthButton,\n AuthOAuthProviders,\n AuthVerificationCodeInput,\n AuthEmailVerificationStep,\n AuthResetPasswordVerificationStep,\n} from './client/components';\n\n// Component Types\nexport type {\n SignInProps,\n SignUpProps,\n ForgotPasswordProps,\n ResetPasswordProps,\n VerifyEmailProps,\n UserButtonProps,\n ProtectProps,\n ConditionalProps,\n SignInFormProps,\n SignUpFormProps,\n ForgotPasswordFormProps,\n ResetPasswordFormProps,\n VerifyEmailStatusProps,\n AuthContainerProps,\n AuthHeaderProps,\n AuthErrorBannerProps,\n AuthFormFieldProps,\n AuthPasswordFieldProps,\n AuthPasswordStrengthIndicatorProps,\n AuthSubmitButtonProps,\n AuthLinkProps,\n AuthDividerProps,\n AuthOAuthButtonProps,\n AuthOAuthProvidersProps,\n AuthVerificationCodeInputProps,\n} from './client/components';\n\n// Hooks\nexport { useAuth, useUser, usePublicAuthConfig } from './client/hooks';\n"],"mappings":"AAYA,SAAS,wBAAwB;AAGjC,SAAS,mBAAmB;AAU5B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAgCP,SAAS,SAAS,SAAS,2BAA2B;","names":[]}

package/dist/esm/middleware/InsforgeMiddleware.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { NextResponse } from "next/server";
-function InsforgeMiddleware(config) {
+const InsforgeMiddleware = (config) => {
   const {
     baseUrl,
     publicRoutes = ["/"],
@@ -7,15 +7,32 @@ function InsforgeMiddleware(config) {
     signUpUrl = "/sign-up",
     forgotPasswordUrl = "/forgot-password",
     afterSignInUrl = "/",
-    cookieName = "insforge_token",
     useBuiltInAuth = true
   } = config;
+  const sessionCookieName = "insforge-session";
+  const userCookieName = "insforge-user";
   return function middleware(request) {
     const { pathname, searchParams } = request.nextUrl;
     const accessToken = searchParams.get("access_token");
-    if (accessToken) {
+    const userId = searchParams.get("user_id");
+    const email = searchParams.get("email");
+    const name = searchParams.get("name");
+    if (accessToken && userId && email) {
       const response = NextResponse.next();
-      response.cookies.set(cookieName, accessToken, {
+      response.cookies.set(sessionCookieName, accessToken, {
+        httpOnly: true,
+        secure: process.env.NODE_ENV === "production",
+        sameSite: "lax",
+        path: "/",
+        maxAge: 60 * 60 * 24 * 7
+        // 7 days
+      });
+      const userInfo = JSON.stringify({
+        id: userId,
+        email,
+        name: name || ""
+      });
+      response.cookies.set(userCookieName, userInfo, {
         httpOnly: true,
         secure: process.env.NODE_ENV === "production",
         sameSite: "lax",
@@ -48,7 +65,7 @@ function InsforgeMiddleware(config) {
     if (isPublicRoute) {
       return NextResponse.next();
     }
-    const token = request.cookies.get(cookieName)?.value;
+    const token = request.cookies.get(sessionCookieName)?.value;
     if (!token) {
       if (useBuiltInAuth) {
         const backendSignInUrl = new URL("/auth/sign-in", baseUrl);
@@ -62,7 +79,7 @@ function InsforgeMiddleware(config) {
     }
     return NextResponse.next();
   };
-}
+};
 export {
   InsforgeMiddleware
 };

package/dist/esm/middleware/InsforgeMiddleware.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/middleware/InsforgeMiddleware.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\n\nexport interface InsforgeMiddlewareConfig {\n /*\n Base URL of your Insforge backend\n * @example 'https://your-backend.com' or 'http://localhost:3001'\n /\n baseUrl: string;\n\n /\n Routes that are public and don't require authentication\n * @default ['/']\n * @example ['/sign-in', '/sign-up', '/', '/about']\n /\n publicRoutes?: string[];\n\n /\n Local route path for sign-in (can be customized to any path like '/login')\n * When using built-in auth, this will redirect to backend's `/auth/sign-in`\n * @default '/sign-in'\n /\n signInUrl?: string;\n\n /\n Local route path for sign-up (can be customized to any path like '/register')\n * When using built-in auth, this will redirect to backend's `/auth/sign-up`\n * @default '/sign-up'\n /\n signUpUrl?: string;\n\n /\n Local route path for forgot password\n * When using built-in auth, this will redirect to backend's `/auth/forgot-password`\n * @default '/forgot-password'\n /\n forgotPasswordUrl?: string;\n\n /\n URL to redirect to after successful authentication\n * When user completes sign-in/sign-up, they will be redirected to this URL with token in URL\n * @default '/'\n /\n afterSignInUrl?: string;\n\n /\n Cookie name for the auth token\n * @default 'insforge_token'\n /\n cookieName?: string;\n\n /\n Whether to use built-in authentication pages hosted on the backend\n * - When true: redirects to backend's `/auth/sign-in` and `/auth/sign-up` pages\n * - When false: redirects to local sign-in/sign-up pages (you provide your own components)\n * @default true\n /\n useBuiltInAuth?: boolean;\n}\n\n/\n Creates Next.js middleware for protecting routes with Insforge authentication.\n \n This middleware provides lightweight route protection by:\n * - Detecting and storing auth tokens from URL parameters (after backend redirect)\n * - Checking for auth token presence in cookies\n * - Redirecting unauthenticated users to sign-in page\n * - Allowing public routes to be accessed without authentication\n * - Mapping local auth routes to backend's fixed paths when using built-in auth\n \n How Authentication Flow Works:\n * 1. User visits protected route → Middleware checks for token\n * 2. No token → Redirects to sign-in (backend or local)\n * 3. User accesses auth page (e.g., /sign-in) → Redirects to backend with afterSignInUrl as redirect target\n * 4. After sign-in → Backend redirects to `yourapp.com/afterSignInUrl?access_token=xxx&user_id=xxx...`\n * 5. Middleware detects `access_token` in URL → Stores in HTTP-only cookie → Cleans URL → Allows access\n * 6. SDK also detects token from URL → Stores in localStorage → Updates auth state\n \n Important Notes:\n * - This middleware only checks if a token exists, it doesn't validate it\n * - Tokens from URL are automatically extracted and stored in cookies\n * - When `useBuiltInAuth: true`, local routes map to backend's fixed auth paths\n * - You can customize local route paths (e.g., `/login`) while backend paths remain fixed\n * - After successful auth, users are redirected to `afterSignInUrl` (default: `/`), not back to the auth page\n \n @param config - Middleware configuration\n * @returns Next.js middleware function\n \n @example\n * ```ts\n * // middleware.ts - Using built-in auth\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * publicRoutes: ['/', '/about'],\n * afterSignInUrl: '/', // Redirect here after successful auth\n * useBuiltInAuth: true,\n * });\n \n export const config = {\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\n };\n * ```\n \n @example\n * ```ts\n * // middleware.ts - Custom local auth pages with custom paths\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * publicRoutes: ['/login', '/register', '/', '/about'],\n * signInUrl: '/login',\n * signUpUrl: '/register',\n * afterSignInUrl: '/dashboard',\n * useBuiltInAuth: false,\n * });\n \n export const config = {\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\n };\n * ```\n \n @example\n * ```ts\n * // middleware.ts - Built-in auth with custom auth route paths\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: 'https://your-backend.com',\n * signInUrl: '/login',\n * signUpUrl: '/register',\n * forgotPasswordUrl: '/forgot',\n * afterSignInUrl: '/dashboard',\n * useBuiltInAuth: true,\n * });\n * ```\n /\nexport function InsforgeMiddleware(config: InsforgeMiddlewareConfig) {\n const {\n baseUrl,\n publicRoutes = ['/'],\n signInUrl = '/sign-in',\n signUpUrl = '/sign-up',\n forgotPasswordUrl = '/forgot-password',\n afterSignInUrl = '/',\n cookieName = 'insforge_token',\n useBuiltInAuth = true,\n } = config;\n\n return function middleware(request: NextRequest) {\n const { pathname, searchParams } = request.nextUrl;\n\n // STEP 1: Check if URL contains access_token (from backend redirect after auth)\n const accessToken = searchParams.get('access_token');\n\n if (accessToken) {\n // Token detected in URL - store it in HTTP-only cookie\n const response = NextResponse.next();\n\n // Set HTTP-only cookie with secure settings\n response.cookies.set(cookieName, accessToken, {\n httpOnly: true,\n secure: process.env.NODE_ENV === 'production',\n sameSite: 'lax',\n path: '/',\n maxAge: 60 60 * 24 * 7, // 7 days\n });\n\n return response;\n }\n\n // STEP 2: Handle built-in auth redirects for authentication pages\n // Map local auth routes to backend's fixed auth pages\n if (useBuiltInAuth) {\n const authRouteMapping: Record<string, string> = {\n [signInUrl]: '/auth/sign-in',\n [signUpUrl]: '/auth/sign-up',\n [forgotPasswordUrl]: '/auth/forgot-password',\n };\n\n const backendAuthPath = authRouteMapping[pathname];\n if (backendAuthPath) {\n // Redirect to afterSignInUrl after successful authentication\n const redirectUrl = new URL(afterSignInUrl, request.url).toString();\n const backendAuthUrl = new URL(backendAuthPath, baseUrl);\n backendAuthUrl.searchParams.set('redirect', redirectUrl);\n return NextResponse.redirect(backendAuthUrl.toString());\n }\n }\n\n // STEP 3: Check if route is public\n const isPublicRoute = publicRoutes.some((route) => {\n if (route.endsWith('')) {\n // Wildcard route: /admin/ matches /admin/anything\n return pathname.startsWith(route.slice(0, -1));\n }\n // Exact match or starts with route path\n return pathname === route \|\| pathname.startsWith(route + '/');\n });\n\n if (isPublicRoute) {\n return NextResponse.next();\n }\n\n // STEP 4: Check for authentication token in cookies\n const token = request.cookies.get(cookieName)?.value;\n\n if (!token) {\n // No token found, redirect to sign-in\n if (useBuiltInAuth) {\n // Built-in auth: redirect to backend's /auth/sign-in page\n // Backend will redirect back to current URL with token\n const backendSignInUrl = new URL('/auth/sign-in', baseUrl);\n backendSignInUrl.searchParams.set('redirect', request.url);\n return NextResponse.redirect(backendSignInUrl);\n } else {\n // Custom auth: redirect to local sign-in page\n const localSignInUrl = new URL(signInUrl, request.url);\n localSignInUrl.searchParams.set('redirect', pathname);\n return NextResponse.redirect(localSignInUrl);\n }\n }\n\n // Token exists in cookie, allow request to continue\n return NextResponse.next();\n };\n}\n"],"mappings":"AAAA,SAAsB,oBAAoB;AA0InC,SAAS,mBAAmB,QAAkC;AACnE,QAAM;AAAA,IACJ;AAAA,IACA,eAAe,CAAC,GAAG;AAAA,IACnB,YAAY;AAAA,IACZ,YAAY;AAAA,IACZ,oBAAoB;AAAA,IACpB,iBAAiB;AAAA,IACjB,aAAa;AAAA,IACb,iBAAiB;AAAA,EACnB,IAAI;AAEJ,SAAO,SAAS,WAAW,SAAsB;AAC/C,UAAM,EAAE,UAAU,aAAa,IAAI,QAAQ;AAG3C,UAAM,cAAc,aAAa,IAAI,cAAc;AAEnD,QAAI,aAAa;AAEf,YAAM,WAAW,aAAa,KAAK;AAGnC,eAAS,QAAQ,IAAI,YAAY,aAAa;AAAA,QAC5C,UAAU;AAAA,QACV,QAAQ,QAAQ,IAAI,aAAa;AAAA,QACjC,UAAU;AAAA,QACV,MAAM;AAAA,QACN,QAAQ,KAAK,KAAK,KAAK;AAAA;AAAA,MACzB,CAAC;AAED,aAAO;AAAA,IACT;AAIA,QAAI,gBAAgB;AAClB,YAAM,mBAA2C;AAAA,QAC/C,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,iBAAiB,GAAG;AAAA,MACvB;AAEA,YAAM,kBAAkB,iBAAiB,QAAQ;AACjD,UAAI,iBAAiB;AAEnB,cAAM,cAAc,IAAI,IAAI,gBAAgB,QAAQ,GAAG,EAAE,SAAS;AAClE,cAAM,iBAAiB,IAAI,IAAI,iBAAiB,OAAO;AACvD,uBAAe,aAAa,IAAI,YAAY,WAAW;AACvD,eAAO,aAAa,SAAS,eAAe,SAAS,CAAC;AAAA,MACxD;AAAA,IACF;AAGA,UAAM,gBAAgB,aAAa,KAAK,CAAC,UAAU;AACjD,UAAI,MAAM,SAAS,GAAG,GAAG;AAEvB,eAAO,SAAS,WAAW,MAAM,MAAM,GAAG,EAAE,CAAC;AAAA,MAC/C;AAEA,aAAO,aAAa,SAAS,SAAS,WAAW,QAAQ,GAAG;AAAA,IAC9D,CAAC;AAED,QAAI,eAAe;AACjB,aAAO,aAAa,KAAK;AAAA,IAC3B;AAGA,UAAM,QAAQ,QAAQ,QAAQ,IAAI,UAAU,GAAG;AAE/C,QAAI,CAAC,OAAO;AAEV,UAAI,gBAAgB;AAGlB,cAAM,mBAAmB,IAAI,IAAI,iBAAiB,OAAO;AACzD,yBAAiB,aAAa,IAAI,YAAY,QAAQ,GAAG;AACzD,eAAO,aAAa,SAAS,gBAAgB;AAAA,MAC/C,OAAO;AAEL,cAAM,iBAAiB,IAAI,IAAI,WAAW,QAAQ,GAAG;AACrD,uBAAe,aAAa,IAAI,YAAY,QAAQ;AACpD,eAAO,aAAa,SAAS,cAAc;AAAA,MAC7C;AAAA,IACF;AAGA,WAAO,aAAa,KAAK;AAAA,EAC3B;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/middleware/InsforgeMiddleware.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\n\nexport interface InsforgeMiddlewareConfig {\n /*\n Base URL of your Insforge backend\n * @example 'https://your-backend.com' or 'http://localhost:3001'\n /\n baseUrl: string;\n\n /\n Routes that are public and don't require authentication\n * @default ['/']\n * @example ['/sign-in', '/sign-up', '/', '/about']\n /\n publicRoutes?: string[];\n\n /\n Local route path for sign-in (can be customized to any path like '/login')\n * When using built-in auth, this will redirect to backend's `/auth/sign-in`\n * @default '/sign-in'\n /\n signInUrl?: string;\n\n /\n Local route path for sign-up (can be customized to any path like '/register')\n * When using built-in auth, this will redirect to backend's `/auth/sign-up`\n * @default '/sign-up'\n /\n signUpUrl?: string;\n\n /\n Local route path for forgot password\n * When using built-in auth, this will redirect to backend's `/auth/forgot-password`\n * @default '/forgot-password'\n /\n forgotPasswordUrl?: string;\n\n /\n URL to redirect to after successful authentication\n * When user completes sign-in/sign-up, they will be redirected to this URL with token in URL\n * @default '/'\n /\n afterSignInUrl?: string;\n\n /\n Whether to use built-in authentication pages hosted on the backend\n * - When true: redirects to backend's `/auth/sign-in` and `/auth/sign-up` pages\n * - When false: redirects to local sign-in/sign-up pages (you provide your own components)\n * @default true\n /\n useBuiltInAuth?: boolean;\n}\n\n/\n Creates Next.js middleware for protecting routes with Insforge authentication.\n \n This middleware provides lightweight route protection by:\n * - Detecting and storing auth tokens from URL parameters (after backend redirect)\n * - Checking for auth token presence in cookies\n * - Redirecting unauthenticated users to sign-in page\n * - Allowing public routes to be accessed without authentication\n * - Mapping local auth routes to backend's fixed paths when using built-in auth\n \n How Authentication Flow Works:\n * 1. User visits protected route → Middleware checks for token\n * 2. No token → Redirects to sign-in (backend or local)\n * 3. User accesses auth page (e.g., /sign-in) → Redirects to backend with afterSignInUrl as redirect target\n * 4. After sign-in → Backend redirects to `yourapp.com/afterSignInUrl?access_token=xxx&user_id=xxx...`\n * 5. Middleware detects `access_token` in URL → Stores in HTTP-only cookie → Cleans URL → Allows access\n * 6. SDK also detects token from URL → Stores in localStorage → Updates auth state\n \n Important Notes:\n * - This middleware only checks if a token exists, it doesn't validate it\n * - Tokens from URL are automatically extracted and stored in cookies\n * - When `useBuiltInAuth: true`, local routes map to backend's fixed auth paths\n * - You can customize local route paths (e.g., `/login`) while backend paths remain fixed\n * - After successful auth, users are redirected to `afterSignInUrl` (default: `/`), not back to the auth page\n \n @param config - Middleware configuration\n * @returns Next.js middleware function\n \n @example\n * ```ts\n * // middleware.ts - Using built-in auth\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * publicRoutes: ['/', '/about'],\n * afterSignInUrl: '/', // Redirect here after successful auth\n * useBuiltInAuth: true,\n * });\n \n export const config = {\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\n };\n * ```\n \n @example\n * ```ts\n * // middleware.ts - Custom local auth pages with custom paths\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * publicRoutes: ['/login', '/register', '/', '/about'],\n * signInUrl: '/login',\n * signUpUrl: '/register',\n * afterSignInUrl: '/dashboard',\n * useBuiltInAuth: false,\n * });\n \n export const config = {\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\n };\n * ```\n \n @example\n * ```ts\n * // middleware.ts - Built-in auth with custom auth route paths\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: 'https://your-backend.com',\n * signInUrl: '/login',\n * signUpUrl: '/register',\n * forgotPasswordUrl: '/forgot',\n * afterSignInUrl: '/dashboard',\n * useBuiltInAuth: true,\n * });\n * ```\n /\nexport const InsforgeMiddleware = (config: InsforgeMiddlewareConfig) => {\n const {\n baseUrl,\n publicRoutes = ['/'],\n signInUrl = '/sign-in',\n signUpUrl = '/sign-up',\n forgotPasswordUrl = '/forgot-password',\n afterSignInUrl = '/',\n useBuiltInAuth = true,\n } = config;\n\n // Fixed cookie names - not configurable\n const sessionCookieName = 'insforge-session';\n const userCookieName = 'insforge-user';\n\n return function middleware(request: NextRequest) {\n const { pathname, searchParams } = request.nextUrl;\n\n // STEP 1: Check if URL contains access_token (from backend redirect after auth)\n const accessToken = searchParams.get('access_token');\n const userId = searchParams.get('user_id');\n const email = searchParams.get('email');\n const name = searchParams.get('name');\n\n if (accessToken && userId && email) {\n // Token detected in URL - store it in HTTP-only cookies\n const response = NextResponse.next();\n\n // Set session cookie (access token)\n response.cookies.set(sessionCookieName, accessToken, {\n httpOnly: true,\n secure: process.env.NODE_ENV === 'production',\n sameSite: 'lax',\n path: '/',\n maxAge: 60 60 * 24 * 7, // 7 days\n });\n\n // Set user identity cookie (basic user info for SSR)\n const userInfo = JSON.stringify({\n id: userId,\n email: email,\n name: name \|\| '',\n });\n\n response.cookies.set(userCookieName, userInfo, {\n httpOnly: true,\n secure: process.env.NODE_ENV === 'production',\n sameSite: 'lax',\n path: '/',\n maxAge: 60 * 60 * 24 * 7, // 7 days\n });\n\n return response;\n }\n\n // STEP 2: Handle built-in auth redirects for authentication pages\n // Map local auth routes to backend's fixed auth pages\n if (useBuiltInAuth) {\n const authRouteMapping: Record<string, string> = {\n [signInUrl]: '/auth/sign-in',\n [signUpUrl]: '/auth/sign-up',\n [forgotPasswordUrl]: '/auth/forgot-password',\n };\n\n const backendAuthPath = authRouteMapping[pathname];\n if (backendAuthPath) {\n // Redirect to afterSignInUrl after successful authentication\n const redirectUrl = new URL(afterSignInUrl, request.url).toString();\n const backendAuthUrl = new URL(backendAuthPath, baseUrl);\n backendAuthUrl.searchParams.set('redirect', redirectUrl);\n return NextResponse.redirect(backendAuthUrl.toString());\n }\n }\n\n // STEP 3: Check if route is public\n const isPublicRoute = publicRoutes.some((route) => {\n if (route.endsWith('')) {\n // Wildcard route: /admin/ matches /admin/anything\n return pathname.startsWith(route.slice(0, -1));\n }\n // Exact match or starts with route path\n return pathname === route \|\| pathname.startsWith(route + '/');\n });\n\n if (isPublicRoute) {\n return NextResponse.next();\n }\n\n // STEP 4: Check for authentication token in cookies\n const token = request.cookies.get(sessionCookieName)?.value;\n\n if (!token) {\n // No token found, redirect to sign-in\n if (useBuiltInAuth) {\n // Built-in auth: redirect to backend's /auth/sign-in page\n // Backend will redirect back to current URL with token\n const backendSignInUrl = new URL('/auth/sign-in', baseUrl);\n backendSignInUrl.searchParams.set('redirect', request.url);\n return NextResponse.redirect(backendSignInUrl);\n } else {\n // Custom auth: redirect to local sign-in page\n const localSignInUrl = new URL(signInUrl, request.url);\n localSignInUrl.searchParams.set('redirect', pathname);\n return NextResponse.redirect(localSignInUrl);\n }\n }\n\n // Token exists in cookie, allow request to continue\n return NextResponse.next();\n };\n}\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAoInC,MAAM,qBAAqB,CAAC,WAAqC;AACtE,QAAM;AAAA,IACJ;AAAA,IACA,eAAe,CAAC,GAAG;AAAA,IACnB,YAAY;AAAA,IACZ,YAAY;AAAA,IACZ,oBAAoB;AAAA,IACpB,iBAAiB;AAAA,IACjB,iBAAiB;AAAA,EACnB,IAAI;AAGJ,QAAM,oBAAoB;AAC1B,QAAM,iBAAiB;AAEvB,SAAO,SAAS,WAAW,SAAsB;AAC/C,UAAM,EAAE,UAAU,aAAa,IAAI,QAAQ;AAG3C,UAAM,cAAc,aAAa,IAAI,cAAc;AACnD,UAAM,SAAS,aAAa,IAAI,SAAS;AACzC,UAAM,QAAQ,aAAa,IAAI,OAAO;AACtC,UAAM,OAAO,aAAa,IAAI,MAAM;AAEpC,QAAI,eAAe,UAAU,OAAO;AAElC,YAAM,WAAW,aAAa,KAAK;AAGnC,eAAS,QAAQ,IAAI,mBAAmB,aAAa;AAAA,QACnD,UAAU;AAAA,QACV,QAAQ,QAAQ,IAAI,aAAa;AAAA,QACjC,UAAU;AAAA,QACV,MAAM;AAAA,QACN,QAAQ,KAAK,KAAK,KAAK;AAAA;AAAA,MACzB,CAAC;AAGD,YAAM,WAAW,KAAK,UAAU;AAAA,QAC9B,IAAI;AAAA,QACJ;AAAA,QACA,MAAM,QAAQ;AAAA,MAChB,CAAC;AAED,eAAS,QAAQ,IAAI,gBAAgB,UAAU;AAAA,QAC7C,UAAU;AAAA,QACV,QAAQ,QAAQ,IAAI,aAAa;AAAA,QACjC,UAAU;AAAA,QACV,MAAM;AAAA,QACN,QAAQ,KAAK,KAAK,KAAK;AAAA;AAAA,MACzB,CAAC;AAED,aAAO;AAAA,IACT;AAIA,QAAI,gBAAgB;AAClB,YAAM,mBAA2C;AAAA,QAC/C,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,iBAAiB,GAAG;AAAA,MACvB;AAEA,YAAM,kBAAkB,iBAAiB,QAAQ;AACjD,UAAI,iBAAiB;AAEnB,cAAM,cAAc,IAAI,IAAI,gBAAgB,QAAQ,GAAG,EAAE,SAAS;AAClE,cAAM,iBAAiB,IAAI,IAAI,iBAAiB,OAAO;AACvD,uBAAe,aAAa,IAAI,YAAY,WAAW;AACvD,eAAO,aAAa,SAAS,eAAe,SAAS,CAAC;AAAA,MACxD;AAAA,IACF;AAGA,UAAM,gBAAgB,aAAa,KAAK,CAAC,UAAU;AACjD,UAAI,MAAM,SAAS,GAAG,GAAG;AAEvB,eAAO,SAAS,WAAW,MAAM,MAAM,GAAG,EAAE,CAAC;AAAA,MAC/C;AAEA,aAAO,aAAa,SAAS,SAAS,WAAW,QAAQ,GAAG;AAAA,IAC9D,CAAC;AAED,QAAI,eAAe;AACjB,aAAO,aAAa,KAAK;AAAA,IAC3B;AAGA,UAAM,QAAQ,QAAQ,QAAQ,IAAI,iBAAiB,GAAG;AAEtD,QAAI,CAAC,OAAO;AAEV,UAAI,gBAAgB;AAGlB,cAAM,mBAAmB,IAAI,IAAI,iBAAiB,OAAO;AACzD,yBAAiB,aAAa,IAAI,YAAY,QAAQ,GAAG;AACzD,eAAO,aAAa,SAAS,gBAAgB;AAAA,MAC/C,OAAO;AAEL,cAAM,iBAAiB,IAAI,IAAI,WAAW,QAAQ,GAAG;AACrD,uBAAe,aAAa,IAAI,YAAY,QAAQ;AACpD,eAAO,aAAa,SAAS,cAAc;AAAA,MAC7C;AAAA,IACF;AAGA,WAAO,aAAa,KAAK;AAAA,EAC3B;AACF;","names":[]}

package/dist/esm/package.json ADDED Viewed

@@ -0,0 +1,10 @@
+{
+  "sideEffects": false,
+  "imports": {
+    "#components": {
+      "react-server": "./components.server.js",
+      "default": "./components.client.js"
+    }
+  }
+}

package/dist/esm/server/InsforgeProvider.js ADDED Viewed

@@ -0,0 +1,102 @@
+import { jsx } from "react/jsx-runtime";
+import { ClientInsforgeProvider } from "../client/provider";
+import { cookies } from "next/headers";
+async function getAuthFromCookies() {
+  try {
+    const cookieStore = await cookies();
+    const sessionToken = cookieStore.get("insforge-session")?.value;
+    if (!sessionToken) {
+      return {
+        user: null,
+        userId: null
+      };
+    }
+    const userCookie = cookieStore.get("insforge-user")?.value;
+    if (!userCookie) {
+      return {
+        user: null,
+        userId: null
+      };
+    }
+    try {
+      const user = JSON.parse(userCookie);
+      return {
+        user: {
+          id: user.id,
+          email: user.email,
+          name: user.name || ""
+        },
+        userId: user.id
+      };
+    } catch {
+      return {
+        user: null,
+        userId: null
+      };
+    }
+  } catch (error) {
+    console.error("[Insforge] Error reading cookies:", error);
+    return {
+      user: null,
+      userId: null
+    };
+  }
+}
+function getAuthFromRequest(request) {
+  try {
+    const cookieHeader = request.headers.get("cookie") || "";
+    const cookies2 = Object.fromEntries(
+      cookieHeader.split("; ").map((c) => {
+        const [key, ...v] = c.split("=");
+        return [key, v.join("=")];
+      })
+    );
+    const sessionToken = cookies2["insforge-session"];
+    if (!sessionToken) {
+      return {
+        user: null,
+        userId: null
+      };
+    }
+    const userCookie = cookies2["insforge-user"];
+    if (!userCookie) {
+      return {
+        user: null,
+        userId: null
+      };
+    }
+    try {
+      const user = JSON.parse(decodeURIComponent(userCookie));
+      return {
+        user: {
+          id: user.id,
+          email: user.email,
+          name: user.name || ""
+        },
+        userId: user.id
+      };
+    } catch {
+      return {
+        user: null,
+        userId: null
+      };
+    }
+  } catch (error) {
+    console.error("[Insforge] Error reading cookies from request:", error);
+    return {
+      user: null,
+      userId: null
+    };
+  }
+}
+async function InsforgeProvider(props) {
+  const { children, dynamic = true, ...restProps } = props;
+  const initialAuth = dynamic ? await getAuthFromCookies() : { user: null, userId: null };
+  return /* @__PURE__ */ jsx(ClientInsforgeProvider, { ...restProps, initialState: initialAuth, children });
+}
+export {
+  InsforgeProvider,
+  getAuthFromCookies,
+  getAuthFromRequest
+};
+//# sourceMappingURL=InsforgeProvider.js.map

package/dist/esm/server/InsforgeProvider.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/server/InsforgeProvider.tsx"],"sourcesContent":["import type { ReactNode } from 'react';\nimport { ClientInsforgeProvider } from '../client/provider';\nimport type { InsforgeProviderProps } from '@insforge/react';\nimport { cookies } from 'next/headers';\nimport type { InitialAuthState } from '@insforge/react';\n\nexport interface InsforgeProviderServerProps extends Omit<InsforgeProviderProps, 'initialState'> {\n children: ReactNode;\n /**\n * Opt into dynamic rendering to read auth state from cookies during SSR.\n * \n * - When true: Reads cookies on server, prevents content flashing, opts into dynamic rendering\n * - When false: Static rendering, may see brief content flash during hydration\n * \n * Following Clerk's pattern: dynamic prop controls server-side auth state access\n * \n * @default false\n * \n * @example\n * ```tsx\n * <InsforgeProvider baseUrl={...} dynamic>\n * {children}\n * </InsforgeProvider>\n * ```\n */\n dynamic?: boolean;\n}\n\n/**\n * Get initial auth state from cookies (server-side)\n * \n * This helper reads the authentication state from cookies set by the SDK.\n * Use this in Server Components or Server Actions to get the initial auth state\n * and pass it to the InsforgeProvider via initialState prop.\n * \n * This prevents hydration mismatches by ensuring SSR and client render have the same state.\n * \n * @example\n * ```tsx\n * // app/layout.tsx (Server Component)\n * import { InsforgeProvider } from '@insforge/nextjs';\n * import { getAuthFromCookies } from '@insforge/nextjs/api/auth-helpers';\n * \n * export default async function RootLayout({ children }) {\n * const initialAuth = await getAuthFromCookies();\n * \n * return (\n * <html>\n * <body>\n * <InsforgeProvider\n * baseUrl={process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!}\n * initialState={initialAuth}\n * >\n * {children}\n * </InsforgeProvider>\n * </body>\n * </html>\n * );\n * }\n * ```\n * \n * @returns Initial auth state with user and userId, or empty object if not authenticated\n */\nexport async function getAuthFromCookies(): Promise<InitialAuthState> {\n try {\n const cookieStore = await cookies();\n \n // Read session token from cookie (set by middleware or /api/auth route)\n const sessionToken = cookieStore.get('insforge-session')?.value;\n \n if (!sessionToken) {\n // Not authenticated - return null to indicate signed out\n return {\n user: null,\n userId: null,\n };\n }\n\n // Read user identity from cookie (set by middleware or /api/auth route)\n const userCookie = cookieStore.get('insforge-user')?.value;\n \n if (!userCookie) {\n // Have session token but no user info - this shouldn't happen\n // but return null to be safe\n return {\n user: null,\n userId: null,\n };\n }\n\n try {\n const user = JSON.parse(userCookie);\n \n // Return basic user info from cookie\n // This is lightweight data for SSR hydration only\n // Full profile will be loaded by SDK's getCurrentUser() after hydration\n return {\n user: {\n id: user.id,\n email: user.email,\n name: user.name || '',\n },\n userId: user.id,\n };\n } catch {\n // Invalid user data in cookie\n return {\n user: null,\n userId: null,\n };\n }\n } catch (error) {\n // Error reading cookies (might be in middleware or edge runtime)\n console.error('[Insforge] Error reading cookies:', error);\n return {\n user: null,\n userId: null,\n };\n }\n}\n\n/**\n * Synchronous version for use in middleware or edge runtime\n * \n * @param request - Next.js request object\n * @returns Initial auth state\n */\nexport function getAuthFromRequest(request: Request): InitialAuthState {\n try {\n // Parse cookies from request headers\n const cookieHeader = request.headers.get('cookie') || '';\n const cookies = Object.fromEntries(\n cookieHeader.split('; ').map(c => {\n const [key, ...v] = c.split('=');\n return [key, v.join('=')];\n })\n );\n\n const sessionToken = cookies['insforge-session'];\n \n if (!sessionToken) {\n // Not authenticated\n return {\n user: null,\n userId: null,\n };\n }\n\n const userCookie = cookies['insforge-user'];\n \n if (!userCookie) {\n // Have session but no user info\n return {\n user: null,\n userId: null,\n };\n }\n\n try {\n const user = JSON.parse(decodeURIComponent(userCookie));\n \n // Return basic user info from cookie\n // This is lightweight data for SSR hydration only\n return {\n user: {\n id: user.id,\n email: user.email,\n name: user.name || '',\n },\n userId: user.id,\n };\n } catch {\n return {\n user: null,\n userId: null,\n };\n }\n } catch (error) {\n console.error('[Insforge] Error reading cookies from request:', error);\n return {\n user: null,\n userId: null,\n };\n }\n}\n\n\n\n/**\n * Server Component Provider for Insforge\n * \n * This is a Server Component (no 'use client') that:\n * 1. Optionally reads auth state from cookies on the server (when dynamic=true)\n * 2. Passes initialState to the Client Provider\n * 3. Ensures SSR and client hydration match perfectly\n * \n * Following Clerk's pattern: packages/nextjs/src/app-router/server/ClerkProvider.tsx\n * \n * @example\n * ```tsx\n * // app/layout.tsx (Server Component)\n * import { InsforgeProvider } from '@insforge/nextjs';\n * \n * export default async function RootLayout({ children }) {\n * return (\n * <html>\n * <body>\n * <InsforgeProvider\n * baseUrl={process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!}\n * dynamic // 👈 Enable dynamic rendering for SSR auth\n * >\n * {children}\n * </InsforgeProvider>\n * </body>\n * </html>\n * );\n * }\n * ```\n */\nexport async function InsforgeProvider(props: InsforgeProviderServerProps) {\n const { children, dynamic = true, ...restProps } = props;\n\n // Only read cookies if dynamic=true (opts into dynamic rendering)\n // When dynamic=false, Next.js can statically generate the page\n const initialAuth = dynamic \n ? await getAuthFromCookies()\n : { user: null, userId: null };\n\n // Pass initialState to Client Provider\n return (\n <ClientInsforgeProvider {...restProps} initialState={initialAuth}>\n {children}\n </ClientInsforgeProvider>\n );\n}\n\n"],"mappings":"AAsOI;AArOJ,SAAS,8BAA8B;AAEvC,SAAS,eAAe;AA4DxB,eAAsB,qBAAgD;AACpE,MAAI;AACF,UAAM,cAAc,MAAM,QAAQ;AAGlC,UAAM,eAAe,YAAY,IAAI,kBAAkB,GAAG;AAE1D,QAAI,CAAC,cAAc;AAEjB,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAGA,UAAM,aAAa,YAAY,IAAI,eAAe,GAAG;AAErD,QAAI,CAAC,YAAY;AAGf,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAEA,QAAI;AACF,YAAM,OAAO,KAAK,MAAM,UAAU;AAKlC,aAAO;AAAA,QACL,MAAM;AAAA,UACJ,IAAI,KAAK;AAAA,UACT,OAAO,KAAK;AAAA,UACZ,MAAM,KAAK,QAAQ;AAAA,QACrB;AAAA,QACA,QAAQ,KAAK;AAAA,MACf;AAAA,IACF,QAAQ;AAEN,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AAEd,YAAQ,MAAM,qCAAqC,KAAK;AACxD,WAAO;AAAA,MACL,MAAM;AAAA,MACN,QAAQ;AAAA,IACV;AAAA,EACF;AACF;AAQO,SAAS,mBAAmB,SAAoC;AACrE,MAAI;AAEF,UAAM,eAAe,QAAQ,QAAQ,IAAI,QAAQ,KAAK;AACtD,UAAMA,WAAU,OAAO;AAAA,MACrB,aAAa,MAAM,IAAI,EAAE,IAAI,OAAK;AAChC,cAAM,CAAC,KAAK,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG;AAC/B,eAAO,CAAC,KAAK,EAAE,KAAK,GAAG,CAAC;AAAA,MAC1B,CAAC;AAAA,IACH;AAEA,UAAM,eAAeA,SAAQ,kBAAkB;AAE/C,QAAI,CAAC,cAAc;AAEjB,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAEA,UAAM,aAAaA,SAAQ,eAAe;AAE1C,QAAI,CAAC,YAAY;AAEf,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAEA,QAAI;AACF,YAAM,OAAO,KAAK,MAAM,mBAAmB,UAAU,CAAC;AAItD,aAAO;AAAA,QACL,MAAM;AAAA,UACJ,IAAI,KAAK;AAAA,UACT,OAAO,KAAK;AAAA,UACZ,MAAM,KAAK,QAAQ;AAAA,QACrB;AAAA,QACA,QAAQ,KAAK;AAAA,MACf;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,kDAAkD,KAAK;AACrE,WAAO;AAAA,MACL,MAAM;AAAA,MACN,QAAQ;AAAA,IACV;AAAA,EACF;AACF;AAmCA,eAAsB,iBAAiB,OAAoC;AACzE,QAAM,EAAE,UAAU,UAAU,MAAM,GAAG,UAAU,IAAI;AAInD,QAAM,cAAc,UAChB,MAAM,mBAAmB,IACzB,EAAE,MAAM,MAAM,QAAQ,KAAK;AAG/B,SACE,oBAAC,0BAAwB,GAAG,WAAW,cAAc,aAClD,UACH;AAEJ;","names":["cookies"]}

package/dist/esm/server/index.js ADDED Viewed

@@ -0,0 +1,5 @@
+import { InsforgeProvider } from "./InsforgeProvider";
+export {
+  InsforgeProvider
+};
+//# sourceMappingURL=index.js.map

package/dist/esm/server/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"sources":["../../../src/server/index.ts"],"sourcesContent":["// Server-side exports (Server Components, no 'use client')\r\nexport { InsforgeProvider } from './InsforgeProvider';\r\n\r\n"],"mappings":"AACA,SAAS,wBAAwB;","names":[]}

package/dist/index.d.ts CHANGED Viewed

@@ -1,8 +1,10 @@
 export { AuthConfig, EmailVerificationMethod, InsforgeUser, OAuthProvider, OAuthProviderConfig } from '@insforge/react/types';
-export { InsforgeProvider, useInsforge } from './client-boundary/provider.js';
+export { InsforgeProvider } from './server/InsforgeProvider.js';
+export { useInsforge } from './client/provider.js';
 export { AuthBranding, AuthContainer, AuthContainerProps, AuthDivider, AuthDividerProps, AuthEmailVerificationStep, AuthErrorBanner, AuthErrorBannerProps, AuthFormField, AuthFormFieldProps, AuthHeader, AuthHeaderProps, AuthLink, AuthLinkProps, AuthOAuthButton, AuthOAuthButtonProps, AuthOAuthProviders, AuthOAuthProvidersProps, AuthPasswordField, AuthPasswordFieldProps, AuthPasswordStrengthIndicator, AuthPasswordStrengthIndicatorProps, AuthResetPasswordVerificationStep, AuthSubmitButton, AuthSubmitButtonProps, AuthVerificationCodeInput, AuthVerificationCodeInputProps, ConditionalProps, ForgotPassword, ForgotPasswordForm, ForgotPasswordFormProps, ForgotPasswordProps, Protect, ProtectProps, ResetPassword, ResetPasswordForm, ResetPasswordFormProps, ResetPasswordProps, SignIn, SignInButton, SignInForm, SignInFormProps, SignInProps, SignUp, SignUpButton, SignUpForm, SignUpFormProps, SignUpProps, SignedIn, SignedOut, UserButton, UserButtonProps, VerifyEmail, VerifyEmailProps, VerifyEmailStatus, VerifyEmailStatusProps } from '@insforge/react/components';
-export { useAuth, usePublicAuthConfig, useUser } from './client-boundary/hooks.js';
+export { useAuth, usePublicAuthConfig, useUser } from './client/hooks.js';
 import 'react/jsx-runtime';
+import 'react';
 import '@insforge/react';
 import '@insforge/shared';
 import '@insforge/shared-schemas';

package/dist/middleware/InsforgeMiddleware.d.ts CHANGED Viewed

@@ -36,11 +36,6 @@ interface InsforgeMiddlewareConfig {
      * @default '/'
      */
     afterSignInUrl?: string;
-    /**
-     * Cookie name for the auth token
-     * @default 'insforge_token'
-     */
-    cookieName?: string;
     /**
      * Whether to use built-in authentication pages hosted on the backend
      * - When true: redirects to backend's `/auth/sign-in` and `/auth/sign-up` pages
@@ -128,6 +123,6 @@ interface InsforgeMiddlewareConfig {
  * });
  * ```
  */
-declare function InsforgeMiddleware(config: InsforgeMiddlewareConfig): (request: NextRequest) => NextResponse<unknown>;
+declare const InsforgeMiddleware: (config: InsforgeMiddlewareConfig) => (request: NextRequest) => NextResponse<unknown>;
 export { InsforgeMiddleware, type InsforgeMiddlewareConfig };

package/dist/server/InsforgeProvider.d.ts ADDED Viewed

@@ -0,0 +1,102 @@
+import * as react_jsx_runtime from 'react/jsx-runtime';
+import { ReactNode } from 'react';
+import { InsforgeProviderProps, InitialAuthState } from '@insforge/react';
+interface InsforgeProviderServerProps extends Omit<InsforgeProviderProps, 'initialState'> {
+    children: ReactNode;
+    /**
+     * Opt into dynamic rendering to read auth state from cookies during SSR.
+     *
+     * - When true: Reads cookies on server, prevents content flashing, opts into dynamic rendering
+     * - When false: Static rendering, may see brief content flash during hydration
+     *
+     * Following Clerk's pattern: dynamic prop controls server-side auth state access
+     *
+     * @default false
+     *
+     * @example
+     * ```tsx
+     * <InsforgeProvider baseUrl={...} dynamic>
+     *   {children}
+     * </InsforgeProvider>
+     * ```
+     */
+    dynamic?: boolean;
+}
+/**
+ * Get initial auth state from cookies (server-side)
+ *
+ * This helper reads the authentication state from cookies set by the SDK.
+ * Use this in Server Components or Server Actions to get the initial auth state
+ * and pass it to the InsforgeProvider via initialState prop.
+ *
+ * This prevents hydration mismatches by ensuring SSR and client render have the same state.
+ *
+ * @example
+ * ```tsx
+ * // app/layout.tsx (Server Component)
+ * import { InsforgeProvider } from '@insforge/nextjs';
+ * import { getAuthFromCookies } from '@insforge/nextjs/api/auth-helpers';
+ *
+ * export default async function RootLayout({ children }) {
+ *   const initialAuth = await getAuthFromCookies();
+ *
+ *   return (
+ *     <html>
+ *       <body>
+ *         <InsforgeProvider
+ *           baseUrl={process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!}
+ *           initialState={initialAuth}
+ *         >
+ *           {children}
+ *         </InsforgeProvider>
+ *       </body>
+ *     </html>
+ *   );
+ * }
+ * ```
+ *
+ * @returns Initial auth state with user and userId, or empty object if not authenticated
+ */
+declare function getAuthFromCookies(): Promise<InitialAuthState>;
+/**
+ * Synchronous version for use in middleware or edge runtime
+ *
+ * @param request - Next.js request object
+ * @returns Initial auth state
+ */
+declare function getAuthFromRequest(request: Request): InitialAuthState;
+/**
+ * Server Component Provider for Insforge
+ *
+ * This is a Server Component (no 'use client') that:
+ * 1. Optionally reads auth state from cookies on the server (when dynamic=true)
+ * 2. Passes initialState to the Client Provider
+ * 3. Ensures SSR and client hydration match perfectly
+ *
+ * Following Clerk's pattern: packages/nextjs/src/app-router/server/ClerkProvider.tsx
+ *
+ * @example
+ * ```tsx
+ * // app/layout.tsx (Server Component)
+ * import { InsforgeProvider } from '@insforge/nextjs';
+ *
+ * export default async function RootLayout({ children }) {
+ *   return (
+ *     <html>
+ *       <body>
+ *         <InsforgeProvider
+ *           baseUrl={process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!}
+ *           dynamic  // 👈 Enable dynamic rendering for SSR auth
+ *         >
+ *           {children}
+ *         </InsforgeProvider>
+ *       </body>
+ *     </html>
+ *   );
+ * }
+ * ```
+ */
+declare function InsforgeProvider(props: InsforgeProviderServerProps): Promise<react_jsx_runtime.JSX.Element>;
+export { InsforgeProvider, type InsforgeProviderServerProps, getAuthFromCookies, getAuthFromRequest };

package/dist/server/index.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export { InsforgeProvider } from './InsforgeProvider.js';
+import 'react/jsx-runtime';
+import 'react';
+import '@insforge/react';

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@insforge/nextjs",
-  "version": "0.10.9",
+  "version": "0.10.10",
   "description": "Pre-built authentication UI components for Next.js with Insforge backend - zero configuration required",
   "type": "module",
   "types": "./dist/index.d.ts",
@@ -9,6 +9,10 @@
       "types": "./dist/index.d.ts",
       "import": "./dist/esm/index.js"
     },
+    "./server": {
+      "types": "./dist/server/index.d.ts",
+      "import": "./dist/esm/server/index.js"
+    },
     "./middleware": {
       "types": "./dist/middleware/index.d.ts",
       "import": "./dist/esm/middleware/index.js"
@@ -41,9 +45,9 @@
   "author": "Insforge",
   "license": "MIT",
   "dependencies": {
-    "@insforge/react": "^0.6.5",
+    "@insforge/react": "^0.6.6",
     "@insforge/sdk": "^0.0.58",
-    "@insforge/shared": "^0.1.2",
+    "@insforge/shared": "^0.1.5",
     "@insforge/shared-schemas": "^1.1.19"
   },
   "devDependencies": {

package/dist/client-boundary/provider.d.ts DELETED Viewed

@@ -1,50 +0,0 @@
-import * as react_jsx_runtime from 'react/jsx-runtime';
-import { InsforgeProviderProps, useInsforge as useInsforge$1 } from '@insforge/react';
-/**
- * Insforge Provider for Next.js - wraps @insforge/react provider with Next.js-specific cookie sync
- *
- * Manages user authentication state and provides all necessary context to child components.
- * Automatically syncs authentication tokens to HTTP-only cookies for server-side middleware support.
- *
- * @example
- * ```tsx
- * import { InsforgeProvider } from '@insforge/nextjs';
- *
- * export default function RootLayout({ children }) {
- *   return (
- *     <InsforgeProvider
- *       baseUrl={process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!}
- *       afterSignInUrl="/dashboard"
- *     >
- *       {children}
- *     </InsforgeProvider>
- *   );
- * }
- * ```
- */
-declare function InsforgeProvider({ children, baseUrl, afterSignInUrl, onAuthChange, }: InsforgeProviderProps): react_jsx_runtime.JSX.Element;
-/**
- * Hook to access Insforge context
- *
- * Re-exports the hook from @insforge/react for convenience.
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { user, isSignedIn, signOut } = useInsforge();
- *
- *   if (!isSignedIn) return <SignIn />;
- *
- *   return (
- *     <div>
- *       <p>Welcome {user.email}</p>
- *       <button onClick={signOut}>Sign Out</button>
- *     </div>
- *   );
- * }
- * ```
- */
-declare const useInsforge: typeof useInsforge$1;
-export { InsforgeProvider, useInsforge };

package/dist/esm/client-boundary/components.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"sources":["../../../src/client-boundary/components.tsx"],"sourcesContent":["'use client';\n\n/**\n * Client-side UI components boundary for Next.js App Router\n * All components from @insforge/react are re-exported here with 'use client' directive\n */\n\n// Main components\nexport {\n SignIn,\n SignUp,\n ForgotPassword,\n ResetPassword,\n VerifyEmail,\n UserButton,\n Protect,\n SignedIn,\n SignedOut,\n SignInButton,\n SignUpButton,\n} from '@insforge/react/components';\n\n// Form components\nexport {\n SignInForm,\n SignUpForm,\n ForgotPasswordForm,\n ResetPasswordForm,\n VerifyEmailStatus,\n} from '@insforge/react/components';\n\n// Atom components\nexport {\n AuthBranding,\n AuthContainer,\n AuthHeader,\n AuthErrorBanner,\n AuthFormField,\n AuthPasswordField,\n AuthPasswordStrengthIndicator,\n AuthSubmitButton,\n AuthLink,\n AuthDivider,\n AuthOAuthButton,\n AuthOAuthProviders,\n AuthVerificationCodeInput,\n AuthEmailVerificationStep,\n AuthResetPasswordVerificationStep,\n} from '@insforge/react/components';\n\n// Re-export all component types\nexport type {\n SignInProps,\n SignUpProps,\n ForgotPasswordProps,\n ResetPasswordProps,\n VerifyEmailProps,\n UserButtonProps,\n ProtectProps,\n ConditionalProps,\n SignInFormProps,\n SignUpFormProps,\n ForgotPasswordFormProps,\n ResetPasswordFormProps,\n VerifyEmailStatusProps,\n AuthContainerProps,\n AuthHeaderProps,\n AuthErrorBannerProps,\n AuthFormFieldProps,\n AuthPasswordFieldProps,\n AuthPasswordStrengthIndicatorProps,\n AuthSubmitButtonProps,\n AuthLinkProps,\n AuthDividerProps,\n AuthOAuthButtonProps,\n AuthOAuthProvidersProps,\n AuthVerificationCodeInputProps,\n} from '@insforge/react/components';\n"],"mappings":";AAQA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;","names":[]}

package/dist/esm/client-boundary/hooks.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"sources":["../../../src/client-boundary/hooks.ts"],"sourcesContent":["'use client';\n\nimport { useInsforge } from './provider';\n\n/**\n * Next.js specific hooks - implemented locally to avoid Context duplication\n */\n\nexport function useAuth() {\n const { signIn, signUp, signOut, isLoaded, isSignedIn } = useInsforge();\n return { signIn, signUp, signOut, isLoaded, isSignedIn };\n}\n\nexport function useUser() {\n const { user, isLoaded } = useInsforge();\n return { user, isLoaded };\n}\n\nexport function usePublicAuthConfig() {\n const { getPublicAuthConfig } = useInsforge();\n return { getPublicAuthConfig };\n}\n"],"mappings":";AAEA,SAAS,mBAAmB;AAMrB,SAAS,UAAU;AACxB,QAAM,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW,IAAI,YAAY;AACtE,SAAO,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW;AACzD;AAEO,SAAS,UAAU;AACxB,QAAM,EAAE,MAAM,SAAS,IAAI,YAAY;AACvC,SAAO,EAAE,MAAM,SAAS;AAC1B;AAEO,SAAS,sBAAsB;AACpC,QAAM,EAAE,oBAAoB,IAAI,YAAY;AAC5C,SAAO,EAAE,oBAAoB;AAC/B;","names":[]}

package/dist/esm/client-boundary/provider.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"sources":["../../../src/client-boundary/provider.tsx"],"sourcesContent":["'use client';\n\nimport {\n InsforgeProviderCore,\n type InsforgeProviderProps,\n useInsforge as useReactInsforge,\n NavigationProvider,\n} from '@insforge/react';\nimport { NavigationAdapter } from '../navigation';\n\n// Extended interface for React provider that includes internal handlers\ninterface ExtendedProviderProps extends InsforgeProviderProps {\n afterSignInUrl?: string;\n onSignIn?: (authToken: string) => Promise<void>;\n onSignOut?: () => Promise<void>;\n}\n\n// Sync token to server-side cookie on sign in\nasync function handleSignIn(token: string): Promise<void> {\n try {\n await fetch('/api/auth', {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n action: 'sync-token',\n token,\n }),\n });\n } catch (err) {\n console.error('[InsforgeProvider] Failed to sync token to cookie:', err);\n }\n}\n\n// Clear HTTP-only cookie on sign out\nasync function handleSignOut(): Promise<void> {\n try {\n await fetch('/api/auth', { method: 'DELETE' });\n } catch {\n // API route doesn't exist - ignore\n }\n}\n\n/**\n * Insforge Provider for Next.js - wraps @insforge/react provider with Next.js-specific cookie sync\n *\n * Manages user authentication state and provides all necessary context to child components.\n * Automatically syncs authentication tokens to HTTP-only cookies for server-side middleware support.\n *\n * @example\n * ```tsx\n * import { InsforgeProvider } from '@insforge/nextjs';\n *\n * export default function RootLayout({ children }) {\n * return (\n * <InsforgeProvider\n * baseUrl={process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!}\n * afterSignInUrl=\"/dashboard\"\n * >\n * {children}\n * </InsforgeProvider>\n * );\n * }\n * ```\n */\nexport function InsforgeProvider({\n children,\n baseUrl,\n afterSignInUrl = '/',\n onAuthChange,\n}: InsforgeProviderProps) {\n const providerProps: ExtendedProviderProps = {\n children,\n baseUrl,\n afterSignInUrl,\n onAuthChange,\n onSignIn: handleSignIn,\n onSignOut: handleSignOut,\n };\n\n return (\n <NavigationProvider adapter={NavigationAdapter}>\n <InsforgeProviderCore {...providerProps}>{children}</InsforgeProviderCore>\n </NavigationProvider>\n );\n}\n\n/**\n * Hook to access Insforge context\n *\n * Re-exports the hook from @insforge/react for convenience.\n *\n * @example\n * ```tsx\n * function MyComponent() {\n * const { user, isSignedIn, signOut } = useInsforge();\n *\n * if (!isSignedIn) return <SignIn />;\n *\n * return (\n * <div>\n * <p>Welcome {user.email}</p>\n * <button onClick={signOut}>Sign Out</button>\n * </div>\n * );\n * }\n * ```\n */\nexport const useInsforge = useReactInsforge;\n"],"mappings":";AAmFM;AAjFN;AAAA,EACE;AAAA,EAEA,eAAe;AAAA,EACf;AAAA,OACK;AACP,SAAS,yBAAyB;AAUlC,eAAe,aAAa,OAA8B;AACxD,MAAI;AACF,UAAM,MAAM,aAAa;AAAA,MACvB,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,QAAQ;AAAA,QACR;AAAA,MACF,CAAC;AAAA,IACH,CAAC;AAAA,EACH,SAAS,KAAK;AACZ,YAAQ,MAAM,sDAAsD,GAAG;AAAA,EACzE;AACF;AAGA,eAAe,gBAA+B;AAC5C,MAAI;AACF,UAAM,MAAM,aAAa,EAAE,QAAQ,SAAS,CAAC;AAAA,EAC/C,QAAQ;AAAA,EAER;AACF;AAwBO,SAAS,iBAAiB;AAAA,EAC/B;AAAA,EACA;AAAA,EACA,iBAAiB;AAAA,EACjB;AACF,GAA0B;AACxB,QAAM,gBAAuC;AAAA,IAC3C;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,UAAU;AAAA,IACV,WAAW;AAAA,EACb;AAEA,SACE,oBAAC,sBAAmB,SAAS,mBAC3B,8BAAC,wBAAsB,GAAG,eAAgB,UAAS,GACrD;AAEJ;AAuBO,MAAM,cAAc;","names":[]}

/package/dist/{client-boundary → client}/components.d.ts RENAMED Viewed

File without changes

/package/dist/{client-boundary → client}/hooks.d.ts RENAMED Viewed

File without changes

/package/dist/esm/{client-boundary → client}/components.js RENAMED Viewed

File without changes

/package/dist/esm/{client-boundary → client}/hooks.js RENAMED Viewed

File without changes