npm - @insforge/nextjs - Versions diffs - 1.1.0 → 1.1.2 - Mend

@insforge/nextjs 1.1.0 → 1.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/README.md +380 -380
package/dist/client/provider.d.ts +2 -27
package/dist/esm/api/index.js.map +1 -1
package/dist/esm/api/route-handlers.js.map +1 -1
package/dist/esm/client/components.js.map +1 -1
package/dist/esm/client/hooks.js.map +1 -1
package/dist/esm/client/provider.js.map +1 -1
package/dist/esm/components.server.js.map +1 -1
package/dist/esm/index.js.map +1 -1
package/dist/esm/lib/cookies.js.map +1 -1
package/dist/esm/middleware/InsforgeMiddleware.js.map +1 -1
package/dist/esm/middleware/index.js.map +1 -1
package/dist/esm/navigation/NextNavigationAdapter.js.map +1 -1
package/dist/esm/navigation/index.js.map +1 -1
package/dist/esm/package.json +9 -9
package/dist/esm/server/InsforgeProvider.js.map +1 -1
package/dist/esm/server/auth.js.map +1 -1
package/dist/esm/server/index.js.map +1 -1
package/dist/index.d.ts +0 -1
package/package.json +75 -75
package/src/styles.css +9 -9

package/dist/client/provider.d.ts CHANGED Viewed

@@ -1,36 +1,11 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import { InsforgeProviderProps, InsforgeUser, InitialAuthState, useInsforge as useInsforge$1 } from '@insforge/react';
+import { InsforgeProviderProps, useInsforge as useInsforge$1 } from '@insforge/react';
 export { InitialAuthState } from '@insforge/react';
-import { InsForgeClient } from '@insforge/sdk';
 /**
  * Props for InsforgeBrowserProvider
  */
-interface InsforgeBrowserProviderProps extends InsforgeProviderProps {
-    children: React.ReactNode;
-    /**
-     * The InsForge SDK client instance.
-     *
-     * **Important:** Use the same client instance that you use for database,
-     * storage, and other SDK operations. This ensures authentication tokens
-     * are shared correctly.
-     */
-    client: InsForgeClient;
-    /**
-     * URL to redirect to after successful sign in
-     * @default '/'
-     */
-    afterSignInUrl?: string;
-    /**
-     * Callback when auth state changes
-     */
-    onAuthChange?: (user: InsforgeUser | null) => void;
-    /**
-     * Initial auth state from server (for SSR hydration).
-     * Get this using `getAuthFromCookies()`.
-     */
-    initialState?: InitialAuthState;
-}
+type InsforgeBrowserProviderProps = InsforgeProviderProps;
 /**
  * Browser-side Insforge Provider for Next.js
  *

package/dist/esm/api/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/api/index.ts"],"sourcesContent":["export { createAuthRouteHandlers } from './route-handlers';\nexport type { AuthRouteConfig } from './route-handlers';\n"],"mappings":"AAAA,SAAS,+BAA+B;","names":[]}
1	+ {"version":3,"sources":["../../../src/api/index.ts"],"sourcesContent":["export { createAuthRouteHandlers } from './route-handlers';\r\nexport type { AuthRouteConfig } from './route-handlers';\r\n"],"mappings":"AAAA,SAAS,+BAA+B;","names":[]}

package/dist/esm/api/route-handlers.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/api/route-handlers.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\nimport { createClient } from '@insforge/sdk';\nimport {\n COOKIE_NAMES,\n COOKIE_DEFAULTS,\n getBaseCookieOptions,\n getClearCookieOptions,\n serializeUserCookie,\n} from '../lib/cookies';\nimport { InsforgeUser } from '@insforge/shared';\nimport { GetCurrentSessionResponse } from '@insforge/shared-schemas';\n\ninterface SignInRequestBody {\n action: 'sign-in';\n email: string;\n password: string;\n}\n\ninterface SignUpRequestBody {\n action: 'sign-up';\n email: string;\n password: string;\n}\n\ninterface SyncTokenRequestBody {\n action: 'sync-token';\n}\n\ntype AuthRequestBody = SignInRequestBody \| SignUpRequestBody \| SyncTokenRequestBody;\n\nexport interface AuthRouteConfig {\n /*\n Base URL of your Insforge backend\n /\n baseUrl: string;\n\n /\n Cookie max age in seconds (default: 7 days)\n * @default 604800\n /\n cookieMaxAge?: number;\n\n /\n Whether to use secure cookies (HTTPS only)\n * Auto-detected based on environment\n /\n secure?: boolean;\n}\n\ninterface AuthRouteHandlers {\n POST: (request: NextRequest) => Promise<NextResponse>;\n GET: (request: NextRequest) => Promise<NextResponse>;\n DELETE: (request: NextRequest) => Promise<NextResponse>;\n}\n\n/\n Creates authentication route handlers for Next.js App Router\n * These handlers set HTTP-only cookies that can be read by middleware\n \n @example\n * ```ts\n * // app/api/auth/[...auth]/route.ts\n * import { createAuthRouteHandlers } from '@insforge/nextjs/api';\n \n const handlers = createAuthRouteHandlers({\n * baseUrl: process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!,\n * });\n \n export const POST = handlers.POST;\n * export const GET = handlers.GET;\n * export const DELETE = handlers.DELETE;\n * ```\n /\nexport function createAuthRouteHandlers(config: AuthRouteConfig): AuthRouteHandlers {\n const { baseUrl, cookieMaxAge = COOKIE_DEFAULTS.MAX_AGE } = config;\n\n const insforge = createClient({ baseUrl });\n\n /\n Helper to set auth cookies (session token + user identity)\n /\n function setAuthCookies(response: NextResponse, token: string, user: InsforgeUser) {\n const cookieOptions = getBaseCookieOptions({\n maxAge: cookieMaxAge,\n secure: config.secure,\n });\n\n // Set session cookie (access token)\n response.cookies.set({\n name: COOKIE_NAMES.SESSION,\n value: token,\n ...cookieOptions,\n });\n\n // Set user identity cookie (basic info for SSR)\n response.cookies.set({\n name: COOKIE_NAMES.USER,\n value: serializeUserCookie(user),\n ...cookieOptions,\n });\n\n return response;\n }\n\n /\n Helper to clear auth cookies\n /\n function clearAuthCookies(response: NextResponse) {\n const clearOptions = getClearCookieOptions({ secure: config.secure });\n\n // Clear session cookie\n response.cookies.set({\n name: COOKIE_NAMES.SESSION,\n value: '',\n ...clearOptions,\n });\n\n // Clear user cookie\n response.cookies.set({\n name: COOKIE_NAMES.USER,\n value: '',\n ...clearOptions,\n });\n\n return response;\n }\n\n /\n POST handler for authentication actions\n * Supports: sign-in, sign-up\n /\n async function POST(request: NextRequest) {\n try {\n const body = (await request.json()) as AuthRequestBody;\n const { action } = body;\n\n if (!action) {\n return NextResponse.json({ error: 'Action is required' }, { status: 400 });\n }\n\n switch (action) {\n case 'sign-in': {\n const { email, password } = body;\n if (!email \|\| !password) {\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\n }\n\n const result = await insforge.auth.signInWithPassword({\n email,\n password,\n });\n\n if (result.error) {\n return NextResponse.json({ error: result.error.message }, { status: 401 });\n }\n\n if (!result.data \|\| !result.data.user) {\n return NextResponse.json({ error: 'Authentication failed' }, { status: 401 });\n }\n\n const response = NextResponse.json({\n user: result.data.user,\n session: {\n userId: result.data.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(response, result.data.accessToken \|\| '', {\n id: result.data.user.id,\n email: result.data.user.email,\n profile: result.data.user.profile \|\| null,\n });\n\n return response;\n }\n\n case 'sign-up': {\n const { email, password } = body;\n if (!email \|\| !password) {\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\n }\n\n const result = await insforge.auth.signUp({ email, password });\n\n if (result.error) {\n return NextResponse.json({ error: result.error.message }, { status: 400 });\n }\n\n if (!result.data \|\| !result.data.user) {\n return NextResponse.json({ error: 'Sign up failed' }, { status: 400 });\n }\n\n const response = NextResponse.json({\n user: result.data.user,\n session: {\n userId: result.data.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(response, result.data.accessToken \|\| '', {\n id: result.data.user.id,\n email: result.data.user.email,\n profile: result.data.user.profile \|\| null,\n });\n\n return response;\n }\n\n case 'sync-token': {\n // Syncs access token to HTTP-only cookie for server-side usage\n // Token is passed via Authorization header (preferred)\n const authHeader = request.headers.get('Authorization');\n const tokenFromHeader = authHeader?.startsWith('Bearer ') ? authHeader.slice(7) : null;\n const token = tokenFromHeader;\n\n if (!token) {\n console.error('[Auth Route] No token provided in header');\n return NextResponse.json({ error: 'Token is required' }, { status: 400 });\n }\n\n // User data can be passed from client (preferred) or fetched from backend\n const { user: userFromBody } = body as { user?: InsforgeUser };\n\n // If user data is provided by client, use it directly (faster)\n if (userFromBody?.id && userFromBody?.email) {\n const nextResponse = NextResponse.json({\n user: userFromBody,\n session: {\n userId: userFromBody.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(nextResponse, token, {\n id: userFromBody.id,\n email: userFromBody.email,\n profile: userFromBody.profile \|\| null,\n });\n\n return nextResponse;\n }\n\n // Fallback: Verify the token and get user data from backend\n try {\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n const errorText = await response.text();\n console.error('[Auth API] Token validation failed:', errorText);\n return NextResponse.json(\n { error: 'Invalid token', details: errorText },\n { status: 401 }\n );\n }\n\n const session = (await response.json()) as GetCurrentSessionResponse;\n\n const nextResponse = NextResponse.json({\n user: session.user,\n session: {\n userId: session.user.id,\n expiresAt: '',\n createdAt: new Date().toISOString(),\n },\n });\n\n setAuthCookies(nextResponse, token, {\n id: session.user.id,\n email: session.user.email,\n profile: session.user.profile \|\| null,\n });\n\n return nextResponse;\n } catch (error) {\n console.error('[Auth API] Token validation error:', error);\n return NextResponse.json(\n { error: 'Token validation failed', details: String(error) },\n { status: 401 }\n );\n }\n }\n\n default:\n return NextResponse.json({ error: 'Invalid action' }, { status: 400 });\n }\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\n }\n }\n\n /\n GET handler to check current session\n /\n async function GET(request: NextRequest) {\n try {\n const token = request.cookies.get(COOKIE_NAMES.SESSION)?.value;\n\n if (!token) {\n return NextResponse.json({ user: null, session: null });\n }\n\n // Verify token with backend\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n\n if (!response.ok) {\n const nextResponse = NextResponse.json({ user: null, session: null });\n clearAuthCookies(nextResponse);\n return nextResponse;\n }\n\n const session = (await response.json()) as GetCurrentSessionResponse;\n\n return NextResponse.json({\n user: session.user,\n });\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ user: null, session: null });\n }\n }\n\n /\n DELETE handler for sign out\n */\n async function DELETE(request: NextRequest) {\n try {\n const token = request.cookies.get(COOKIE_NAMES.SESSION)?.value;\n\n if (token) {\n // Call backend sign out\n try {\n await fetch(`${baseUrl}/auth/sessions/current`, {\n method: 'DELETE',\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n });\n } catch (error) {\n // Ignore backend errors during sign out\n console.error('[Auth API] Sign out error:', error);\n }\n }\n\n const response = NextResponse.json({ success: true });\n clearAuthCookies(response);\n\n return response;\n } catch (error) {\n console.error('[Auth API Error]:', error);\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\n }\n }\n\n return {\n POST,\n GET,\n DELETE,\n };\n}\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAC1C,SAAS,oBAAoB;AAC7B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAiEA,SAAS,wBAAwB,QAA4C;AAClF,QAAM,EAAE,SAAS,eAAe,gBAAgB,QAAQ,IAAI;AAE5D,QAAM,WAAW,aAAa,EAAE,QAAQ,CAAC;AAKzC,WAAS,eAAe,UAAwB,OAAe,MAAoB;AACjF,UAAM,gBAAgB,qBAAqB;AAAA,MACzC,QAAQ;AAAA,MACR,QAAQ,OAAO;AAAA,IACjB,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO;AAAA,MACP,GAAG;AAAA,IACL,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO,oBAAoB,IAAI;AAAA,MAC/B,GAAG;AAAA,IACL,CAAC;AAED,WAAO;AAAA,EACT;AAKA,WAAS,iBAAiB,UAAwB;AAChD,UAAM,eAAe,sBAAsB,EAAE,QAAQ,OAAO,OAAO,CAAC;AAGpE,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO;AAAA,MACP,GAAG;AAAA,IACL,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO;AAAA,MACP,GAAG;AAAA,IACL,CAAC;AAED,WAAO;AAAA,EACT;AAMA,iBAAe,KAAK,SAAsB;AACxC,QAAI;AACF,YAAM,OAAQ,MAAM,QAAQ,KAAK;AACjC,YAAM,EAAE,OAAO,IAAI;AAEnB,UAAI,CAAC,QAAQ;AACX,eAAO,aAAa,KAAK,EAAE,OAAO,qBAAqB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MAC3E;AAEA,cAAQ,QAAQ;AAAA,QACd,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,mBAAmB;AAAA,YACpD;AAAA,YACA;AAAA,UACF,CAAC;AAED,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC9E;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,yBAAe,UAAU,OAAO,KAAK,eAAe,IAAI;AAAA,YACtD,IAAI,OAAO,KAAK,KAAK;AAAA,YACrB,OAAO,OAAO,KAAK,KAAK;AAAA,YACxB,SAAS,OAAO,KAAK,KAAK,WAAW;AAAA,UACvC,CAAC;AAED,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,OAAO,EAAE,OAAO,SAAS,CAAC;AAE7D,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACvE;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,yBAAe,UAAU,OAAO,KAAK,eAAe,IAAI;AAAA,YACtD,IAAI,OAAO,KAAK,KAAK;AAAA,YACrB,OAAO,OAAO,KAAK,KAAK;AAAA,YACxB,SAAS,OAAO,KAAK,KAAK,WAAW;AAAA,UACvC,CAAC;AAED,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,cAAc;AAGjB,gBAAM,aAAa,QAAQ,QAAQ,IAAI,eAAe;AACtD,gBAAM,kBAAkB,YAAY,WAAW,SAAS,IAAI,WAAW,MAAM,CAAC,IAAI;AAClF,gBAAM,QAAQ;AAEd,cAAI,CAAC,OAAO;AACV,oBAAQ,MAAM,0CAA0C;AACxD,mBAAO,aAAa,KAAK,EAAE,OAAO,oBAAoB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC1E;AAGA,gBAAM,EAAE,MAAM,aAAa,IAAI;AAG/B,cAAI,cAAc,MAAM,cAAc,OAAO;AAC3C,kBAAM,eAAe,aAAa,KAAK;AAAA,cACrC,MAAM;AAAA,cACN,SAAS;AAAA,gBACP,QAAQ,aAAa;AAAA,gBACrB,WAAW;AAAA,gBACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,cACpC;AAAA,YACF,CAAC;AAED,2BAAe,cAAc,OAAO;AAAA,cAClC,IAAI,aAAa;AAAA,cACjB,OAAO,aAAa;AAAA,cACpB,SAAS,aAAa,WAAW;AAAA,YACnC,CAAC;AAED,mBAAO;AAAA,UACT;AAGA,cAAI;AACF,kBAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,cACnE,SAAS;AAAA,gBACP,eAAe,UAAU,KAAK;AAAA,gBAC9B,gBAAgB;AAAA,cAClB;AAAA,YACF,CAAC;AAED,gBAAI,CAAC,SAAS,IAAI;AAChB,oBAAM,YAAY,MAAM,SAAS,KAAK;AACtC,sBAAQ,MAAM,uCAAuC,SAAS;AAC9D,qBAAO,aAAa;AAAA,gBAClB,EAAE,OAAO,iBAAiB,SAAS,UAAU;AAAA,gBAC7C,EAAE,QAAQ,IAAI;AAAA,cAChB;AAAA,YACF;AAEA,kBAAM,UAAW,MAAM,SAAS,KAAK;AAErC,kBAAM,eAAe,aAAa,KAAK;AAAA,cACrC,MAAM,QAAQ;AAAA,cACd,SAAS;AAAA,gBACP,QAAQ,QAAQ,KAAK;AAAA,gBACrB,WAAW;AAAA,gBACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,cACpC;AAAA,YACF,CAAC;AAED,2BAAe,cAAc,OAAO;AAAA,cAClC,IAAI,QAAQ,KAAK;AAAA,cACjB,OAAO,QAAQ,KAAK;AAAA,cACpB,SAAS,QAAQ,KAAK,WAAW;AAAA,YACnC,CAAC;AAED,mBAAO;AAAA,UACT,SAAS,OAAO;AACd,oBAAQ,MAAM,sCAAsC,KAAK;AACzD,mBAAO,aAAa;AAAA,cAClB,EAAE,OAAO,2BAA2B,SAAS,OAAO,KAAK,EAAE;AAAA,cAC3D,EAAE,QAAQ,IAAI;AAAA,YAChB;AAAA,UACF;AAAA,QACF;AAAA,QAEA;AACE,iBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MACzE;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAKA,iBAAe,IAAI,SAAsB;AACvC,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,aAAa,OAAO,GAAG;AAEzD,UAAI,CAAC,OAAO;AACV,eAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,MACxD;AAGA,YAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,QACnE,SAAS;AAAA,UACP,eAAe,UAAU,KAAK;AAAA,UAC9B,gBAAgB;AAAA,QAClB;AAAA,MACF,CAAC;AAED,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,eAAe,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AACpE,yBAAiB,YAAY;AAC7B,eAAO;AAAA,MACT;AAEA,YAAM,UAAW,MAAM,SAAS,KAAK;AAErC,aAAO,aAAa,KAAK;AAAA,QACvB,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,IACH,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,IACxD;AAAA,EACF;AAKA,iBAAe,OAAO,SAAsB;AAC1C,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,aAAa,OAAO,GAAG;AAEzD,UAAI,OAAO;AAET,YAAI;AACF,gBAAM,MAAM,GAAG,OAAO,0BAA0B;AAAA,YAC9C,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,eAAe,UAAU,KAAK;AAAA,cAC9B,gBAAgB;AAAA,YAClB;AAAA,UACF,CAAC;AAAA,QACH,SAAS,OAAO;AAEd,kBAAQ,MAAM,8BAA8B,KAAK;AAAA,QACnD;AAAA,MACF;AAEA,YAAM,WAAW,aAAa,KAAK,EAAE,SAAS,KAAK,CAAC;AACpD,uBAAiB,QAAQ;AAEzB,aAAO;AAAA,IACT,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/api/route-handlers.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\r\nimport { createClient } from '@insforge/sdk';\r\nimport {\r\n COOKIE_NAMES,\r\n COOKIE_DEFAULTS,\r\n getBaseCookieOptions,\r\n getClearCookieOptions,\r\n serializeUserCookie,\r\n} from '../lib/cookies';\r\nimport { InsforgeUser } from '@insforge/shared';\r\nimport { GetCurrentSessionResponse } from '@insforge/shared-schemas';\r\n\r\ninterface SignInRequestBody {\r\n action: 'sign-in';\r\n email: string;\r\n password: string;\r\n}\r\n\r\ninterface SignUpRequestBody {\r\n action: 'sign-up';\r\n email: string;\r\n password: string;\r\n}\r\n\r\ninterface SyncTokenRequestBody {\r\n action: 'sync-token';\r\n}\r\n\r\ntype AuthRequestBody = SignInRequestBody \| SignUpRequestBody \| SyncTokenRequestBody;\r\n\r\nexport interface AuthRouteConfig {\r\n /*\r\n Base URL of your Insforge backend\r\n /\r\n baseUrl: string;\r\n\r\n /\r\n Cookie max age in seconds (default: 7 days)\r\n * @default 604800\r\n /\r\n cookieMaxAge?: number;\r\n\r\n /\r\n Whether to use secure cookies (HTTPS only)\r\n * Auto-detected based on environment\r\n /\r\n secure?: boolean;\r\n}\r\n\r\ninterface AuthRouteHandlers {\r\n POST: (request: NextRequest) => Promise<NextResponse>;\r\n GET: (request: NextRequest) => Promise<NextResponse>;\r\n DELETE: (request: NextRequest) => Promise<NextResponse>;\r\n}\r\n\r\n/\r\n Creates authentication route handlers for Next.js App Router\r\n * These handlers set HTTP-only cookies that can be read by middleware\r\n \r\n @example\r\n * ```ts\r\n * // app/api/auth/[...auth]/route.ts\r\n * import { createAuthRouteHandlers } from '@insforge/nextjs/api';\r\n \r\n const handlers = createAuthRouteHandlers({\r\n * baseUrl: process.env.NEXT_PUBLIC_INSFORGE_BASE_URL!,\r\n * });\r\n \r\n export const POST = handlers.POST;\r\n * export const GET = handlers.GET;\r\n * export const DELETE = handlers.DELETE;\r\n * ```\r\n /\r\nexport function createAuthRouteHandlers(config: AuthRouteConfig): AuthRouteHandlers {\r\n const { baseUrl, cookieMaxAge = COOKIE_DEFAULTS.MAX_AGE } = config;\r\n\r\n const insforge = createClient({ baseUrl });\r\n\r\n /\r\n Helper to set auth cookies (session token + user identity)\r\n /\r\n function setAuthCookies(response: NextResponse, token: string, user: InsforgeUser) {\r\n const cookieOptions = getBaseCookieOptions({\r\n maxAge: cookieMaxAge,\r\n secure: config.secure,\r\n });\r\n\r\n // Set session cookie (access token)\r\n response.cookies.set({\r\n name: COOKIE_NAMES.SESSION,\r\n value: token,\r\n ...cookieOptions,\r\n });\r\n\r\n // Set user identity cookie (basic info for SSR)\r\n response.cookies.set({\r\n name: COOKIE_NAMES.USER,\r\n value: serializeUserCookie(user),\r\n ...cookieOptions,\r\n });\r\n\r\n return response;\r\n }\r\n\r\n /\r\n Helper to clear auth cookies\r\n /\r\n function clearAuthCookies(response: NextResponse) {\r\n const clearOptions = getClearCookieOptions({ secure: config.secure });\r\n\r\n // Clear session cookie\r\n response.cookies.set({\r\n name: COOKIE_NAMES.SESSION,\r\n value: '',\r\n ...clearOptions,\r\n });\r\n\r\n // Clear user cookie\r\n response.cookies.set({\r\n name: COOKIE_NAMES.USER,\r\n value: '',\r\n ...clearOptions,\r\n });\r\n\r\n return response;\r\n }\r\n\r\n /\r\n POST handler for authentication actions\r\n * Supports: sign-in, sign-up\r\n /\r\n async function POST(request: NextRequest) {\r\n try {\r\n const body = (await request.json()) as AuthRequestBody;\r\n const { action } = body;\r\n\r\n if (!action) {\r\n return NextResponse.json({ error: 'Action is required' }, { status: 400 });\r\n }\r\n\r\n switch (action) {\r\n case 'sign-in': {\r\n const { email, password } = body;\r\n if (!email \|\| !password) {\r\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\r\n }\r\n\r\n const result = await insforge.auth.signInWithPassword({\r\n email,\r\n password,\r\n });\r\n\r\n if (result.error) {\r\n return NextResponse.json({ error: result.error.message }, { status: 401 });\r\n }\r\n\r\n if (!result.data \|\| !result.data.user) {\r\n return NextResponse.json({ error: 'Authentication failed' }, { status: 401 });\r\n }\r\n\r\n const response = NextResponse.json({\r\n user: result.data.user,\r\n session: {\r\n userId: result.data.user.id,\r\n expiresAt: '',\r\n createdAt: new Date().toISOString(),\r\n },\r\n });\r\n\r\n setAuthCookies(response, result.data.accessToken \|\| '', {\r\n id: result.data.user.id,\r\n email: result.data.user.email,\r\n profile: result.data.user.profile \|\| null,\r\n });\r\n\r\n return response;\r\n }\r\n\r\n case 'sign-up': {\r\n const { email, password } = body;\r\n if (!email \|\| !password) {\r\n return NextResponse.json({ error: 'Email and password are required' }, { status: 400 });\r\n }\r\n\r\n const result = await insforge.auth.signUp({ email, password });\r\n\r\n if (result.error) {\r\n return NextResponse.json({ error: result.error.message }, { status: 400 });\r\n }\r\n\r\n if (!result.data \|\| !result.data.user) {\r\n return NextResponse.json({ error: 'Sign up failed' }, { status: 400 });\r\n }\r\n\r\n const response = NextResponse.json({\r\n user: result.data.user,\r\n session: {\r\n userId: result.data.user.id,\r\n expiresAt: '',\r\n createdAt: new Date().toISOString(),\r\n },\r\n });\r\n\r\n setAuthCookies(response, result.data.accessToken \|\| '', {\r\n id: result.data.user.id,\r\n email: result.data.user.email,\r\n profile: result.data.user.profile \|\| null,\r\n });\r\n\r\n return response;\r\n }\r\n\r\n case 'sync-token': {\r\n // Syncs access token to HTTP-only cookie for server-side usage\r\n // Token is passed via Authorization header (preferred)\r\n const authHeader = request.headers.get('Authorization');\r\n const tokenFromHeader = authHeader?.startsWith('Bearer ') ? authHeader.slice(7) : null;\r\n const token = tokenFromHeader;\r\n\r\n if (!token) {\r\n console.error('[Auth Route] No token provided in header');\r\n return NextResponse.json({ error: 'Token is required' }, { status: 400 });\r\n }\r\n\r\n // User data can be passed from client (preferred) or fetched from backend\r\n const { user: userFromBody } = body as { user?: InsforgeUser };\r\n\r\n // If user data is provided by client, use it directly (faster)\r\n if (userFromBody?.id && userFromBody?.email) {\r\n const nextResponse = NextResponse.json({\r\n user: userFromBody,\r\n session: {\r\n userId: userFromBody.id,\r\n expiresAt: '',\r\n createdAt: new Date().toISOString(),\r\n },\r\n });\r\n\r\n setAuthCookies(nextResponse, token, {\r\n id: userFromBody.id,\r\n email: userFromBody.email,\r\n profile: userFromBody.profile \|\| null,\r\n });\r\n\r\n return nextResponse;\r\n }\r\n\r\n // Fallback: Verify the token and get user data from backend\r\n try {\r\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\r\n headers: {\r\n Authorization: `Bearer ${token}`,\r\n 'Content-Type': 'application/json',\r\n },\r\n });\r\n\r\n if (!response.ok) {\r\n const errorText = await response.text();\r\n console.error('[Auth API] Token validation failed:', errorText);\r\n return NextResponse.json(\r\n { error: 'Invalid token', details: errorText },\r\n { status: 401 }\r\n );\r\n }\r\n\r\n const session = (await response.json()) as GetCurrentSessionResponse;\r\n\r\n const nextResponse = NextResponse.json({\r\n user: session.user,\r\n session: {\r\n userId: session.user.id,\r\n expiresAt: '',\r\n createdAt: new Date().toISOString(),\r\n },\r\n });\r\n\r\n setAuthCookies(nextResponse, token, {\r\n id: session.user.id,\r\n email: session.user.email,\r\n profile: session.user.profile \|\| null,\r\n });\r\n\r\n return nextResponse;\r\n } catch (error) {\r\n console.error('[Auth API] Token validation error:', error);\r\n return NextResponse.json(\r\n { error: 'Token validation failed', details: String(error) },\r\n { status: 401 }\r\n );\r\n }\r\n }\r\n\r\n default:\r\n return NextResponse.json({ error: 'Invalid action' }, { status: 400 });\r\n }\r\n } catch (error) {\r\n console.error('[Auth API Error]:', error);\r\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\r\n }\r\n }\r\n\r\n /\r\n GET handler to check current session\r\n /\r\n async function GET(request: NextRequest) {\r\n try {\r\n const token = request.cookies.get(COOKIE_NAMES.SESSION)?.value;\r\n\r\n if (!token) {\r\n return NextResponse.json({ user: null, session: null });\r\n }\r\n\r\n // Verify token with backend\r\n const response = await fetch(`${baseUrl}/api/auth/sessions/current`, {\r\n headers: {\r\n Authorization: `Bearer ${token}`,\r\n 'Content-Type': 'application/json',\r\n },\r\n });\r\n\r\n if (!response.ok) {\r\n const nextResponse = NextResponse.json({ user: null, session: null });\r\n clearAuthCookies(nextResponse);\r\n return nextResponse;\r\n }\r\n\r\n const session = (await response.json()) as GetCurrentSessionResponse;\r\n\r\n return NextResponse.json({\r\n user: session.user,\r\n });\r\n } catch (error) {\r\n console.error('[Auth API Error]:', error);\r\n return NextResponse.json({ user: null, session: null });\r\n }\r\n }\r\n\r\n /\r\n DELETE handler for sign out\r\n */\r\n async function DELETE(request: NextRequest) {\r\n try {\r\n const token = request.cookies.get(COOKIE_NAMES.SESSION)?.value;\r\n\r\n if (token) {\r\n // Call backend sign out\r\n try {\r\n await fetch(`${baseUrl}/auth/sessions/current`, {\r\n method: 'DELETE',\r\n headers: {\r\n Authorization: `Bearer ${token}`,\r\n 'Content-Type': 'application/json',\r\n },\r\n });\r\n } catch (error) {\r\n // Ignore backend errors during sign out\r\n console.error('[Auth API] Sign out error:', error);\r\n }\r\n }\r\n\r\n const response = NextResponse.json({ success: true });\r\n clearAuthCookies(response);\r\n\r\n return response;\r\n } catch (error) {\r\n console.error('[Auth API Error]:', error);\r\n return NextResponse.json({ error: 'Internal server error' }, { status: 500 });\r\n }\r\n }\r\n\r\n return {\r\n POST,\r\n GET,\r\n DELETE,\r\n };\r\n}\r\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAC1C,SAAS,oBAAoB;AAC7B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAiEA,SAAS,wBAAwB,QAA4C;AAClF,QAAM,EAAE,SAAS,eAAe,gBAAgB,QAAQ,IAAI;AAE5D,QAAM,WAAW,aAAa,EAAE,QAAQ,CAAC;AAKzC,WAAS,eAAe,UAAwB,OAAe,MAAoB;AACjF,UAAM,gBAAgB,qBAAqB;AAAA,MACzC,QAAQ;AAAA,MACR,QAAQ,OAAO;AAAA,IACjB,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO;AAAA,MACP,GAAG;AAAA,IACL,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO,oBAAoB,IAAI;AAAA,MAC/B,GAAG;AAAA,IACL,CAAC;AAED,WAAO;AAAA,EACT;AAKA,WAAS,iBAAiB,UAAwB;AAChD,UAAM,eAAe,sBAAsB,EAAE,QAAQ,OAAO,OAAO,CAAC;AAGpE,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO;AAAA,MACP,GAAG;AAAA,IACL,CAAC;AAGD,aAAS,QAAQ,IAAI;AAAA,MACnB,MAAM,aAAa;AAAA,MACnB,OAAO;AAAA,MACP,GAAG;AAAA,IACL,CAAC;AAED,WAAO;AAAA,EACT;AAMA,iBAAe,KAAK,SAAsB;AACxC,QAAI;AACF,YAAM,OAAQ,MAAM,QAAQ,KAAK;AACjC,YAAM,EAAE,OAAO,IAAI;AAEnB,UAAI,CAAC,QAAQ;AACX,eAAO,aAAa,KAAK,EAAE,OAAO,qBAAqB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MAC3E;AAEA,cAAQ,QAAQ;AAAA,QACd,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,mBAAmB;AAAA,YACpD;AAAA,YACA;AAAA,UACF,CAAC;AAED,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC9E;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,yBAAe,UAAU,OAAO,KAAK,eAAe,IAAI;AAAA,YACtD,IAAI,OAAO,KAAK,KAAK;AAAA,YACrB,OAAO,OAAO,KAAK,KAAK;AAAA,YACxB,SAAS,OAAO,KAAK,KAAK,WAAW;AAAA,UACvC,CAAC;AAED,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,WAAW;AACd,gBAAM,EAAE,OAAO,SAAS,IAAI;AAC5B,cAAI,CAAC,SAAS,CAAC,UAAU;AACvB,mBAAO,aAAa,KAAK,EAAE,OAAO,kCAAkC,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACxF;AAEA,gBAAM,SAAS,MAAM,SAAS,KAAK,OAAO,EAAE,OAAO,SAAS,CAAC;AAE7D,cAAI,OAAO,OAAO;AAChB,mBAAO,aAAa,KAAK,EAAE,OAAO,OAAO,MAAM,QAAQ,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC3E;AAEA,cAAI,CAAC,OAAO,QAAQ,CAAC,OAAO,KAAK,MAAM;AACrC,mBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UACvE;AAEA,gBAAM,WAAW,aAAa,KAAK;AAAA,YACjC,MAAM,OAAO,KAAK;AAAA,YAClB,SAAS;AAAA,cACP,QAAQ,OAAO,KAAK,KAAK;AAAA,cACzB,WAAW;AAAA,cACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YACpC;AAAA,UACF,CAAC;AAED,yBAAe,UAAU,OAAO,KAAK,eAAe,IAAI;AAAA,YACtD,IAAI,OAAO,KAAK,KAAK;AAAA,YACrB,OAAO,OAAO,KAAK,KAAK;AAAA,YACxB,SAAS,OAAO,KAAK,KAAK,WAAW;AAAA,UACvC,CAAC;AAED,iBAAO;AAAA,QACT;AAAA,QAEA,KAAK,cAAc;AAGjB,gBAAM,aAAa,QAAQ,QAAQ,IAAI,eAAe;AACtD,gBAAM,kBAAkB,YAAY,WAAW,SAAS,IAAI,WAAW,MAAM,CAAC,IAAI;AAClF,gBAAM,QAAQ;AAEd,cAAI,CAAC,OAAO;AACV,oBAAQ,MAAM,0CAA0C;AACxD,mBAAO,aAAa,KAAK,EAAE,OAAO,oBAAoB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,UAC1E;AAGA,gBAAM,EAAE,MAAM,aAAa,IAAI;AAG/B,cAAI,cAAc,MAAM,cAAc,OAAO;AAC3C,kBAAM,eAAe,aAAa,KAAK;AAAA,cACrC,MAAM;AAAA,cACN,SAAS;AAAA,gBACP,QAAQ,aAAa;AAAA,gBACrB,WAAW;AAAA,gBACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,cACpC;AAAA,YACF,CAAC;AAED,2BAAe,cAAc,OAAO;AAAA,cAClC,IAAI,aAAa;AAAA,cACjB,OAAO,aAAa;AAAA,cACpB,SAAS,aAAa,WAAW;AAAA,YACnC,CAAC;AAED,mBAAO;AAAA,UACT;AAGA,cAAI;AACF,kBAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,cACnE,SAAS;AAAA,gBACP,eAAe,UAAU,KAAK;AAAA,gBAC9B,gBAAgB;AAAA,cAClB;AAAA,YACF,CAAC;AAED,gBAAI,CAAC,SAAS,IAAI;AAChB,oBAAM,YAAY,MAAM,SAAS,KAAK;AACtC,sBAAQ,MAAM,uCAAuC,SAAS;AAC9D,qBAAO,aAAa;AAAA,gBAClB,EAAE,OAAO,iBAAiB,SAAS,UAAU;AAAA,gBAC7C,EAAE,QAAQ,IAAI;AAAA,cAChB;AAAA,YACF;AAEA,kBAAM,UAAW,MAAM,SAAS,KAAK;AAErC,kBAAM,eAAe,aAAa,KAAK;AAAA,cACrC,MAAM,QAAQ;AAAA,cACd,SAAS;AAAA,gBACP,QAAQ,QAAQ,KAAK;AAAA,gBACrB,WAAW;AAAA,gBACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,cACpC;AAAA,YACF,CAAC;AAED,2BAAe,cAAc,OAAO;AAAA,cAClC,IAAI,QAAQ,KAAK;AAAA,cACjB,OAAO,QAAQ,KAAK;AAAA,cACpB,SAAS,QAAQ,KAAK,WAAW;AAAA,YACnC,CAAC;AAED,mBAAO;AAAA,UACT,SAAS,OAAO;AACd,oBAAQ,MAAM,sCAAsC,KAAK;AACzD,mBAAO,aAAa;AAAA,cAClB,EAAE,OAAO,2BAA2B,SAAS,OAAO,KAAK,EAAE;AAAA,cAC3D,EAAE,QAAQ,IAAI;AAAA,YAChB;AAAA,UACF;AAAA,QACF;AAAA,QAEA;AACE,iBAAO,aAAa,KAAK,EAAE,OAAO,iBAAiB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,MACzE;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAKA,iBAAe,IAAI,SAAsB;AACvC,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,aAAa,OAAO,GAAG;AAEzD,UAAI,CAAC,OAAO;AACV,eAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,MACxD;AAGA,YAAM,WAAW,MAAM,MAAM,GAAG,OAAO,8BAA8B;AAAA,QACnE,SAAS;AAAA,UACP,eAAe,UAAU,KAAK;AAAA,UAC9B,gBAAgB;AAAA,QAClB;AAAA,MACF,CAAC;AAED,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,eAAe,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AACpE,yBAAiB,YAAY;AAC7B,eAAO;AAAA,MACT;AAEA,YAAM,UAAW,MAAM,SAAS,KAAK;AAErC,aAAO,aAAa,KAAK;AAAA,QACvB,MAAM,QAAQ;AAAA,MAChB,CAAC;AAAA,IACH,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,MAAM,MAAM,SAAS,KAAK,CAAC;AAAA,IACxD;AAAA,EACF;AAKA,iBAAe,OAAO,SAAsB;AAC1C,QAAI;AACF,YAAM,QAAQ,QAAQ,QAAQ,IAAI,aAAa,OAAO,GAAG;AAEzD,UAAI,OAAO;AAET,YAAI;AACF,gBAAM,MAAM,GAAG,OAAO,0BAA0B;AAAA,YAC9C,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,eAAe,UAAU,KAAK;AAAA,cAC9B,gBAAgB;AAAA,YAClB;AAAA,UACF,CAAC;AAAA,QACH,SAAS,OAAO;AAEd,kBAAQ,MAAM,8BAA8B,KAAK;AAAA,QACnD;AAAA,MACF;AAEA,YAAM,WAAW,aAAa,KAAK,EAAE,SAAS,KAAK,CAAC;AACpD,uBAAiB,QAAQ;AAEzB,aAAO;AAAA,IACT,SAAS,OAAO;AACd,cAAQ,MAAM,qBAAqB,KAAK;AACxC,aAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,IAC9E;AAAA,EACF;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;","names":[]}

package/dist/esm/client/components.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/client/components.tsx"],"sourcesContent":["'use client';\n\n/*\n Client-side UI components boundary for Next.js App Router\n * All components from @insforge/react are re-exported here with 'use client' directive\n */\n\n// Main components\nexport {\n SignIn,\n SignUp,\n ForgotPassword,\n ResetPassword,\n VerifyEmail,\n UserButton,\n Protect,\n SignedIn,\n SignedOut,\n SignInButton,\n SignUpButton,\n} from '@insforge/react/components';\n\n// Form components\nexport {\n SignInForm,\n SignUpForm,\n ForgotPasswordForm,\n ResetPasswordForm,\n VerifyEmailStatus,\n} from '@insforge/react/components';\n\n// Atom components\nexport {\n AuthBranding,\n AuthContainer,\n AuthHeader,\n AuthErrorBanner,\n AuthFormField,\n AuthPasswordField,\n AuthPasswordStrengthIndicator,\n AuthSubmitButton,\n AuthLink,\n AuthDivider,\n AuthOAuthButton,\n AuthOAuthProviders,\n AuthVerificationCodeInput,\n AuthEmailVerificationStep,\n AuthResetPasswordVerificationStep,\n} from '@insforge/react/components';\n\n// Re-export all component types\nexport type {\n SignInProps,\n SignUpProps,\n ForgotPasswordProps,\n ResetPasswordProps,\n VerifyEmailProps,\n UserButtonProps,\n ProtectProps,\n ConditionalProps,\n SignInFormProps,\n SignUpFormProps,\n ForgotPasswordFormProps,\n ResetPasswordFormProps,\n VerifyEmailStatusProps,\n AuthContainerProps,\n AuthHeaderProps,\n AuthErrorBannerProps,\n AuthFormFieldProps,\n AuthPasswordFieldProps,\n AuthPasswordStrengthIndicatorProps,\n AuthSubmitButtonProps,\n AuthLinkProps,\n AuthDividerProps,\n AuthOAuthButtonProps,\n AuthOAuthProvidersProps,\n AuthVerificationCodeInputProps,\n} from '@insforge/react/components';\n"],"mappings":";AAQA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;","names":[]}
1	+ {"version":3,"sources":["../../../src/client/components.tsx"],"sourcesContent":["'use client';\r\n\r\n/*\r\n Client-side UI components boundary for Next.js App Router\r\n * All components from @insforge/react are re-exported here with 'use client' directive\r\n */\r\n\r\n// Main components\r\nexport {\r\n SignIn,\r\n SignUp,\r\n ForgotPassword,\r\n ResetPassword,\r\n VerifyEmail,\r\n UserButton,\r\n Protect,\r\n SignedIn,\r\n SignedOut,\r\n SignInButton,\r\n SignUpButton,\r\n} from '@insforge/react/components';\r\n\r\n// Form components\r\nexport {\r\n SignInForm,\r\n SignUpForm,\r\n ForgotPasswordForm,\r\n ResetPasswordForm,\r\n VerifyEmailStatus,\r\n} from '@insforge/react/components';\r\n\r\n// Atom components\r\nexport {\r\n AuthBranding,\r\n AuthContainer,\r\n AuthHeader,\r\n AuthErrorBanner,\r\n AuthFormField,\r\n AuthPasswordField,\r\n AuthPasswordStrengthIndicator,\r\n AuthSubmitButton,\r\n AuthLink,\r\n AuthDivider,\r\n AuthOAuthButton,\r\n AuthOAuthProviders,\r\n AuthVerificationCodeInput,\r\n AuthEmailVerificationStep,\r\n AuthResetPasswordVerificationStep,\r\n} from '@insforge/react/components';\r\n\r\n// Re-export all component types\r\nexport type {\r\n SignInProps,\r\n SignUpProps,\r\n ForgotPasswordProps,\r\n ResetPasswordProps,\r\n VerifyEmailProps,\r\n UserButtonProps,\r\n ProtectProps,\r\n ConditionalProps,\r\n SignInFormProps,\r\n SignUpFormProps,\r\n ForgotPasswordFormProps,\r\n ResetPasswordFormProps,\r\n VerifyEmailStatusProps,\r\n AuthContainerProps,\r\n AuthHeaderProps,\r\n AuthErrorBannerProps,\r\n AuthFormFieldProps,\r\n AuthPasswordFieldProps,\r\n AuthPasswordStrengthIndicatorProps,\r\n AuthSubmitButtonProps,\r\n AuthLinkProps,\r\n AuthDividerProps,\r\n AuthOAuthButtonProps,\r\n AuthOAuthProvidersProps,\r\n AuthVerificationCodeInputProps,\r\n} from '@insforge/react/components';\r\n"],"mappings":";AAQA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;","names":[]}

package/dist/esm/client/hooks.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/client/hooks.ts"],"sourcesContent":["'use client';\n\nimport { useInsforge } from './provider';\nimport { CreateSessionResponse, CreateUserResponse } from '@insforge/shared-schemas';\nimport type { InsforgeUser } from '@insforge/shared';\n\n/*\n Next.js specific hooks - implemented locally to avoid Context duplication\n */\n\nexport function useAuth(): {\n signIn: (email: string, password: string) => Promise<CreateSessionResponse \| { error?: string }>;\n signUp: (email: string, password: string) => Promise<CreateUserResponse \| { error?: string }>;\n signOut: () => Promise<void>;\n isLoaded: boolean;\n isSignedIn: boolean \| undefined;\n} {\n const { signIn, signUp, signOut, isLoaded, isSignedIn } = useInsforge();\n return { signIn, signUp, signOut, isLoaded, isSignedIn };\n}\n\nexport function useUser(): {\n user: InsforgeUser \| null \| undefined;\n isLoaded: boolean;\n} {\n const { user, isLoaded } = useInsforge();\n return { user, isLoaded };\n}\n\nexport function usePublicAuthConfig() {\n const { getPublicAuthConfig } = useInsforge();\n return { getPublicAuthConfig };\n}\n"],"mappings":";AAEA,SAAS,mBAAmB;AAQrB,SAAS,UAMd;AACA,QAAM,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW,IAAI,YAAY;AACtE,SAAO,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW;AACzD;AAEO,SAAS,UAGd;AACA,QAAM,EAAE,MAAM,SAAS,IAAI,YAAY;AACvC,SAAO,EAAE,MAAM,SAAS;AAC1B;AAEO,SAAS,sBAAsB;AACpC,QAAM,EAAE,oBAAoB,IAAI,YAAY;AAC5C,SAAO,EAAE,oBAAoB;AAC/B;","names":[]}
1	+ {"version":3,"sources":["../../../src/client/hooks.ts"],"sourcesContent":["'use client';\r\n\r\nimport { useInsforge } from './provider';\r\nimport { CreateSessionResponse, CreateUserResponse } from '@insforge/shared-schemas';\r\nimport type { InsforgeUser } from '@insforge/shared';\r\n\r\n/*\r\n Next.js specific hooks - implemented locally to avoid Context duplication\r\n */\r\n\r\nexport function useAuth(): {\r\n signIn: (email: string, password: string) => Promise<CreateSessionResponse \| { error?: string }>;\r\n signUp: (email: string, password: string) => Promise<CreateUserResponse \| { error?: string }>;\r\n signOut: () => Promise<void>;\r\n isLoaded: boolean;\r\n isSignedIn: boolean \| undefined;\r\n} {\r\n const { signIn, signUp, signOut, isLoaded, isSignedIn } = useInsforge();\r\n return { signIn, signUp, signOut, isLoaded, isSignedIn };\r\n}\r\n\r\nexport function useUser(): {\r\n user: InsforgeUser \| null \| undefined;\r\n isLoaded: boolean;\r\n} {\r\n const { user, isLoaded } = useInsforge();\r\n return { user, isLoaded };\r\n}\r\n\r\nexport function usePublicAuthConfig() {\r\n const { getPublicAuthConfig } = useInsforge();\r\n return { getPublicAuthConfig };\r\n}\r\n"],"mappings":";AAEA,SAAS,mBAAmB;AAQrB,SAAS,UAMd;AACA,QAAM,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW,IAAI,YAAY;AACtE,SAAO,EAAE,QAAQ,QAAQ,SAAS,UAAU,WAAW;AACzD;AAEO,SAAS,UAGd;AACA,QAAM,EAAE,MAAM,SAAS,IAAI,YAAY;AACvC,SAAO,EAAE,MAAM,SAAS;AAC1B;AAEO,SAAS,sBAAsB;AACpC,QAAM,EAAE,oBAAoB,IAAI,YAAY;AAC5C,SAAO,EAAE,oBAAoB;AAC/B;","names":[]}

package/dist/esm/client/provider.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/client/provider.tsx"],"sourcesContent":["'use client';\n\nimport {\n InsforgeProviderCore,\n type InsforgeProviderProps,\n type InitialAuthState,\n useInsforge as useReactInsforge,\n NavigationProvider,\n StyleProvider,\n InsforgeUser,\n} from '@insforge/react';\nimport { NavigationAdapter } from '../navigation';\~~nimport type { InsForgeClient } from '@insforge/sdk';\~~n\n/*\n Props for InsforgeBrowserProvider\n /\nexport ~~interface~~ InsforgeBrowserProviderProps ~~extends~~ InsforgeProviderProps ~~{\n children: React.ReactNode~~;\n /\n The InsForge SDK client instance.\n \n Important: Use the same client instance that you use for database,\n * storage, and other SDK operations. This ensures authentication tokens\n * are shared correctly.\n /\n client: InsForgeClient;\n /\n URL to redirect to after successful sign in\~~n * @default '/'~~\n /\n afterSignInUrl?: string;\n /\n Callback when auth state changes\n /\n onAuthChange?: (user: InsforgeUser \| null) => void;\n /\n Initial auth state from server (for SSR hydration).\n * Get this using `getAuthFromCookies()`.\n /\n initialState?: InitialAuthState;\n}\n\n// Sync to server-side cookie using Authorization header\nasync function syncToCookie(token: string, user: InsforgeUser): Promise<void> {\n try {\n const response = await fetch('/api/auth', {\n method: 'POST',\n headers: {\n Authorization: `Bearer ${token}`,\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n action: 'sync-token',\n user: user,\n }),\n });\n\n if (!response.ok) {\n const errorText = await response.text();\n console.error('[InsforgeBrowserProvider] sync-token failed:', errorText);\n }\n } catch (err) {\n console.error('[InsforgeBrowserProvider] Failed to sync token to cookie:', err);\n }\n}\n\n// Sync token to server-side cookie on sign in\nasync function handleSignIn(token: string, user: InsforgeUser): Promise<void> {\n await syncToCookie(token, user);\n}\n\n// Sync token to server-side cookie on refresh (page load/refresh)\nasync function handleRefresh(token: string, user: InsforgeUser): Promise<void> {\n await syncToCookie(token, user);\n}\n\n// Clear HTTP-only cookie on sign out\nasync function handleSignOut(): Promise<void> {\n try {\n await fetch('/api/auth', { method: 'DELETE' });\n } catch {\n // API route doesn't exist - ignore\n }\n}\n\n/\n Browser-side Insforge Provider for Next.js\n \n This provider manages authentication state on the client side and automatically\n * syncs tokens to HTTP-only cookies via `/api/auth` route for server-side access.\n \n Key Features:\n * - Uses YOUR SDK client instance (shared with database/storage operations)\n * - Automatic token sync to HTTP-only cookies\n * - SSR hydration support via `initialState`\n * - Works with Next.js App Router\n \n ---\n \n ## Setup Guide\n \n ### Step 1: Create your SDK client\n \n @example\n * ```tsx\n * // lib/insforge.ts\n * import { createClient } from '@insforge/sdk';\n \n export const insforge = createClient({\n * baseUrl: process.env.NEXT_PUBLIC_INSFORGE_URL!,\n * anonKey: process.env.NEXT_PUBLIC_INSFORGE_ANON_KEY!,\n * });\n * ```\n \n ### Step 2: Create your Providers component\n \n @example\n * ```tsx\n * // app/providers.tsx\n * 'use client';\n * import { InsforgeBrowserProvider, type InitialAuthState } from '@insforge/nextjs';\n * import { insforge } from '@/lib/insforge';\n \n export function Providers({\n * children,\n * }: {\n * children: React.ReactNode;\n * }) {\n * return (\n * <InsforgeBrowserProvider\n * client={insforge}\n * afterSignInUrl=\"/dashboard\"\n * >\n * {children}\n * </InsforgeBrowserProvider>\n * );\n * }\n * ```\n \n ### Step 3: Use in your root layout\n \n @example\n * ```tsx\n * // app/layout.tsx\n * import { getAuthFromCookies } from '@insforge/nextjs';\n * import { Providers } from './providers';\n \n export default async function RootLayout({\n * children,\n * }: {\n * children: React.ReactNode;\n * }) {\n * const initialState = await getAuthFromCookies();\n \n return (\n * <html>\n * <body>\n * <Providers initialState={initialState}>\n * {children}\n * </Providers>\n * </body>\n * </html>\n * );\n * }\n * ```\n \n ### Step 4: Use auth components and hooks\n \n @example\n * ```tsx\n * // app/page.tsx\n * 'use client';\n * import { SignIn, UserButton, useInsforge } from '@insforge/nextjs';\n \n export default function Page() {\n * const { isSignedIn, user } = useInsforge();\n \n if (!isSignedIn) return <SignIn />;\n \n return (\n * <div>\n * <UserButton />\n * <p>Welcome {user?.email}</p>\n * </div>\n * );\n * }\n * ```\n \n ---\n \n ## Why pass your own client?\n \n Authentication tokens are stored in the SDK client instance's memory.\n * If auth components use a different client than your app, they won't share\n * tokens, causing authentication to fail for database/storage operations.\n \n By passing YOUR client to the provider, all operations use the same\n * authenticated session.\n /\nexport function InsforgeBrowserProvider({\n children,\n client,\n afterSignInUrl = '/',\n onAuthChange,\n initialState = { user: null, userId: null },\n}: InsforgeBrowserProviderProps) {\n const providerProps: InsforgeProviderProps = {\n children,\n client,\n afterSignInUrl,\n onAuthChange,\n onSignIn: handleSignIn,\n onSignOut: handleSignOut,\n onRefresh: handleRefresh,\n initialState,\n };\n\n return (\n <StyleProvider>\n <NavigationProvider adapter={NavigationAdapter}>\n <InsforgeProviderCore {...providerProps}>{children}</InsforgeProviderCore>\n </NavigationProvider>\n </StyleProvider>\n );\n}\n\n/\n @deprecated Use `InsforgeBrowserProvider` instead.\n \n This alias is kept for backward compatibility and will be removed in a future version.\n \n Migration:\n * ```tsx\n * // Before\n * import { ClientInsforgeProvider } from '@insforge/nextjs';\n \n // After\n * import { InsforgeBrowserProvider } from '@insforge/nextjs';\n * ```\n /\nexport const ClientInsforgeProvider = InsforgeBrowserProvider;\n\n/\n Hook to access Insforge context\n \n Re-exports the hook from @insforge/react for convenience.\n \n @example\n * ```tsx\n * function MyComponent() {\n * const { user, isSignedIn, signOut } = useInsforge();\n \n if (!isSignedIn) return <SignIn />;\n \n return (\n * <div>\n * <p>Welcome {user.email}</p>\n * <button onClick={signOut}>Sign Out</button>\n * </div>\n * );\n * }\n * ```\n */\nexport const useInsforge = useReactInsforge;\n\n// Re-export types\nexport type { InitialAuthState };\n"],"mappings":";~~AA6NQ~~;~~AA3NR~~;AAAA,EACE;AAAA,EAGA,eAAe;AAAA,EACf;AAAA,EACA;AAAA,OAEK;AACP,SAAS,yBAAyB;~~AAiClC~~,eAAe,aAAa,OAAe,MAAmC;AAC5E,MAAI;AACF,UAAM,WAAW,MAAM,MAAM,aAAa;AAAA,MACxC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,eAAe,UAAU,KAAK;AAAA,QAC9B,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,QAAQ;AAAA,QACR;AAAA,MACF,CAAC;AAAA,IACH,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,YAAY,MAAM,SAAS,KAAK;AACtC,cAAQ,MAAM,gDAAgD,SAAS;AAAA,IACzE;AAAA,EACF,SAAS,KAAK;AACZ,YAAQ,MAAM,6DAA6D,GAAG;AAAA,EAChF;AACF;AAGA,eAAe,aAAa,OAAe,MAAmC;AAC5E,QAAM,aAAa,OAAO,IAAI;AAChC;AAGA,eAAe,cAAc,OAAe,MAAmC;AAC7E,QAAM,aAAa,OAAO,IAAI;AAChC;AAGA,eAAe,gBAA+B;AAC5C,MAAI;AACF,UAAM,MAAM,aAAa,EAAE,QAAQ,SAAS,CAAC;AAAA,EAC/C,QAAQ;AAAA,EAER;AACF;AAoHO,SAAS,wBAAwB;AAAA,EACtC;AAAA,EACA;AAAA,EACA,iBAAiB;AAAA,EACjB;AAAA,EACA,eAAe,EAAE,MAAM,MAAM,QAAQ,KAAK;AAC5C,GAAiC;AAC/B,QAAM,gBAAuC;AAAA,IAC3C;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,UAAU;AAAA,IACV,WAAW;AAAA,IACX,WAAW;AAAA,IACX;AAAA,EACF;AAEA,SACE,oBAAC,iBACC,8BAAC,sBAAmB,SAAS,mBAC3B,8BAAC,wBAAsB,GAAG,eAAgB,UAAS,GACrD,GACF;AAEJ;AAgBO,MAAM,yBAAyB;AAuB/B,MAAM,cAAc;","names":[]}
1	+ {"version":3,"sources":["../../../src/client/provider.tsx"],"sourcesContent":["'use client';\r\n\r\nimport {\r\n InsforgeProviderCore,\r\n type InsforgeProviderProps,\r\n type InitialAuthState,\r\n useInsforge as useReactInsforge,\r\n NavigationProvider,\r\n StyleProvider,\r\n InsforgeUser,\r\n} from '@insforge/react';\r\nimport { NavigationAdapter } from '../navigation';\r\n\r\n/*\r\n Props for InsforgeBrowserProvider\r\n /\r\nexport type InsforgeBrowserProviderProps = InsforgeProviderProps;\r\n\r\n// Sync to server-side cookie using Authorization header\r\nasync function syncToCookie(token: string, user: InsforgeUser): Promise<void> {\r\n try {\r\n const response = await fetch('/api/auth', {\r\n method: 'POST',\r\n headers: {\r\n Authorization: `Bearer ${token}`,\r\n 'Content-Type': 'application/json',\r\n },\r\n body: JSON.stringify({\r\n action: 'sync-token',\r\n user: user,\r\n }),\r\n });\r\n\r\n if (!response.ok) {\r\n const errorText = await response.text();\r\n console.error('[InsforgeBrowserProvider] sync-token failed:', errorText);\r\n }\r\n } catch (err) {\r\n console.error('[InsforgeBrowserProvider] Failed to sync token to cookie:', err);\r\n }\r\n}\r\n\r\n// Sync token to server-side cookie on sign in\r\nasync function handleSignIn(token: string, user: InsforgeUser): Promise<void> {\r\n await syncToCookie(token, user);\r\n}\r\n\r\n// Sync token to server-side cookie on refresh (page load/refresh)\r\nasync function handleRefresh(token: string, user: InsforgeUser): Promise<void> {\r\n await syncToCookie(token, user);\r\n}\r\n\r\n// Clear HTTP-only cookie on sign out\r\nasync function handleSignOut(): Promise<void> {\r\n try {\r\n await fetch('/api/auth', { method: 'DELETE' });\r\n } catch {\r\n // API route doesn't exist - ignore\r\n }\r\n}\r\n\r\n/\r\n Browser-side Insforge Provider for Next.js\r\n \r\n This provider manages authentication state on the client side and automatically\r\n * syncs tokens to HTTP-only cookies via `/api/auth` route for server-side access.\r\n \r\n Key Features:\r\n * - Uses YOUR SDK client instance (shared with database/storage operations)\r\n * - Automatic token sync to HTTP-only cookies\r\n * - SSR hydration support via `initialState`\r\n * - Works with Next.js App Router\r\n \r\n ---\r\n \r\n ## Setup Guide\r\n \r\n ### Step 1: Create your SDK client\r\n \r\n @example\r\n * ```tsx\r\n * // lib/insforge.ts\r\n * import { createClient } from '@insforge/sdk';\r\n \r\n export const insforge = createClient({\r\n * baseUrl: process.env.NEXT_PUBLIC_INSFORGE_URL!,\r\n * anonKey: process.env.NEXT_PUBLIC_INSFORGE_ANON_KEY!,\r\n * });\r\n * ```\r\n \r\n ### Step 2: Create your Providers component\r\n \r\n @example\r\n * ```tsx\r\n * // app/providers.tsx\r\n * 'use client';\r\n * import { InsforgeBrowserProvider, type InitialAuthState } from '@insforge/nextjs';\r\n * import { insforge } from '@/lib/insforge';\r\n \r\n export function Providers({\r\n * children,\r\n * }: {\r\n * children: React.ReactNode;\r\n * }) {\r\n * return (\r\n * <InsforgeBrowserProvider\r\n * client={insforge}\r\n * afterSignInUrl=\"/dashboard\"\r\n * >\r\n * {children}\r\n * </InsforgeBrowserProvider>\r\n * );\r\n * }\r\n * ```\r\n \r\n ### Step 3: Use in your root layout\r\n \r\n @example\r\n * ```tsx\r\n * // app/layout.tsx\r\n * import { getAuthFromCookies } from '@insforge/nextjs';\r\n * import { Providers } from './providers';\r\n \r\n export default async function RootLayout({\r\n * children,\r\n * }: {\r\n * children: React.ReactNode;\r\n * }) {\r\n * const initialState = await getAuthFromCookies();\r\n \r\n return (\r\n * <html>\r\n * <body>\r\n * <Providers initialState={initialState}>\r\n * {children}\r\n * </Providers>\r\n * </body>\r\n * </html>\r\n * );\r\n * }\r\n * ```\r\n \r\n ### Step 4: Use auth components and hooks\r\n \r\n @example\r\n * ```tsx\r\n * // app/page.tsx\r\n * 'use client';\r\n * import { SignIn, UserButton, useInsforge } from '@insforge/nextjs';\r\n \r\n export default function Page() {\r\n * const { isSignedIn, user } = useInsforge();\r\n \r\n if (!isSignedIn) return <SignIn />;\r\n \r\n return (\r\n * <div>\r\n * <UserButton />\r\n * <p>Welcome {user?.email}</p>\r\n * </div>\r\n * );\r\n * }\r\n * ```\r\n \r\n ---\r\n \r\n ## Why pass your own client?\r\n \r\n Authentication tokens are stored in the SDK client instance's memory.\r\n * If auth components use a different client than your app, they won't share\r\n * tokens, causing authentication to fail for database/storage operations.\r\n \r\n By passing YOUR client to the provider, all operations use the same\r\n * authenticated session.\r\n /\r\nexport function InsforgeBrowserProvider({\r\n children,\r\n client,\r\n afterSignInUrl = '/',\r\n onAuthChange,\r\n initialState = { user: null, userId: null },\r\n}: InsforgeBrowserProviderProps) {\r\n const providerProps: InsforgeProviderProps = {\r\n children,\r\n client,\r\n afterSignInUrl,\r\n onAuthChange,\r\n onSignIn: handleSignIn,\r\n onSignOut: handleSignOut,\r\n onRefresh: handleRefresh,\r\n initialState,\r\n };\r\n\r\n return (\r\n <StyleProvider>\r\n <NavigationProvider adapter={NavigationAdapter}>\r\n <InsforgeProviderCore {...providerProps}>{children}</InsforgeProviderCore>\r\n </NavigationProvider>\r\n </StyleProvider>\r\n );\r\n}\r\n\r\n/\r\n @deprecated Use `InsforgeBrowserProvider` instead.\r\n \r\n This alias is kept for backward compatibility and will be removed in a future version.\r\n \r\n Migration:\r\n * ```tsx\r\n * // Before\r\n * import { ClientInsforgeProvider } from '@insforge/nextjs';\r\n \r\n // After\r\n * import { InsforgeBrowserProvider } from '@insforge/nextjs';\r\n * ```\r\n /\r\nexport const ClientInsforgeProvider = InsforgeBrowserProvider;\r\n\r\n/\r\n Hook to access Insforge context\r\n \r\n Re-exports the hook from @insforge/react for convenience.\r\n \r\n @example\r\n * ```tsx\r\n * function MyComponent() {\r\n * const { user, isSignedIn, signOut } = useInsforge();\r\n \r\n if (!isSignedIn) return <SignIn />;\r\n \r\n return (\r\n * <div>\r\n * <p>Welcome {user.email}</p>\r\n * <button onClick={signOut}>Sign Out</button>\r\n * </div>\r\n * );\r\n * }\r\n * ```\r\n */\r\nexport const useInsforge = useReactInsforge;\r\n\r\n// Re-export types\r\nexport type { InitialAuthState };\r\n"],"mappings":";AAoMQ;AAlMR;AAAA,EACE;AAAA,EAGA,eAAe;AAAA,EACf;AAAA,EACA;AAAA,OAEK;AACP,SAAS,yBAAyB;AAQlC,eAAe,aAAa,OAAe,MAAmC;AAC5E,MAAI;AACF,UAAM,WAAW,MAAM,MAAM,aAAa;AAAA,MACxC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,eAAe,UAAU,KAAK;AAAA,QAC9B,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,QAAQ;AAAA,QACR;AAAA,MACF,CAAC;AAAA,IACH,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,YAAY,MAAM,SAAS,KAAK;AACtC,cAAQ,MAAM,gDAAgD,SAAS;AAAA,IACzE;AAAA,EACF,SAAS,KAAK;AACZ,YAAQ,MAAM,6DAA6D,GAAG;AAAA,EAChF;AACF;AAGA,eAAe,aAAa,OAAe,MAAmC;AAC5E,QAAM,aAAa,OAAO,IAAI;AAChC;AAGA,eAAe,cAAc,OAAe,MAAmC;AAC7E,QAAM,aAAa,OAAO,IAAI;AAChC;AAGA,eAAe,gBAA+B;AAC5C,MAAI;AACF,UAAM,MAAM,aAAa,EAAE,QAAQ,SAAS,CAAC;AAAA,EAC/C,QAAQ;AAAA,EAER;AACF;AAoHO,SAAS,wBAAwB;AAAA,EACtC;AAAA,EACA;AAAA,EACA,iBAAiB;AAAA,EACjB;AAAA,EACA,eAAe,EAAE,MAAM,MAAM,QAAQ,KAAK;AAC5C,GAAiC;AAC/B,QAAM,gBAAuC;AAAA,IAC3C;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,UAAU;AAAA,IACV,WAAW;AAAA,IACX,WAAW;AAAA,IACX;AAAA,EACF;AAEA,SACE,oBAAC,iBACC,8BAAC,sBAAmB,SAAS,mBAC3B,8BAAC,wBAAsB,GAAG,eAAgB,UAAS,GACrD,GACF;AAEJ;AAgBO,MAAM,yBAAyB;AAuB/B,MAAM,cAAc;","names":[]}

package/dist/esm/components.server.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/components.server.ts"],"sourcesContent":["// Server Component exports (react-server environment)\n// This file is used when code runs in a Server Component\n\n// Server-only utilities that use next/headers\nexport { auth, type InsforgeAuth } from './server/auth';\nexport { getAuthFromCookies } from './server/InsforgeProvider';\n\n// Server Provider (deprecated but exported for backward compatibility)\nexport {\n InsforgeServerProvider,\n type InsforgeServerProviderProps,\n type InsforgeProviderServerProps,\n} from './server/InsforgeProvider';\n"],"mappings":"AAIA,SAAS,YAA+B;AACxC,SAAS,0BAA0B;AAGnC;AAAA,EACE;AAAA,OAGK;","names":[]}
1	+ {"version":3,"sources":["../../src/components.server.ts"],"sourcesContent":["// Server Component exports (react-server environment)\r\n// This file is used when code runs in a Server Component\r\n\r\n// Server-only utilities that use next/headers\r\nexport { auth, type InsforgeAuth } from './server/auth';\r\nexport { getAuthFromCookies } from './server/InsforgeProvider';\r\n\r\n// Server Provider (deprecated but exported for backward compatibility)\r\nexport {\r\n InsforgeServerProvider,\r\n type InsforgeServerProviderProps,\r\n type InsforgeProviderServerProps,\r\n} from './server/InsforgeProvider';\r\n"],"mappings":"AAIA,SAAS,YAA+B;AACxC,SAAS,0BAA0B;AAGnC;AAAA,EACE;AAAA,OAGK;","names":[]}

package/dist/esm/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/index.ts"],"sourcesContent":["// ============================================================================\n// Providers\n// ============================================================================\n\n// Browser Provider - The recommended way to use Insforge in Next.js\n// Use this directly in a client component for proper SDK client sharing\nexport {\n InsforgeBrowserProvider,\n ClientInsforgeProvider, // Deprecated alias\n type InsforgeBrowserProviderProps,\n type InitialAuthState,\n} from './client/provider';\n\n// Server-only exports (uses conditional exports via #components)\n// In Server Components: exports auth, getAuthFromCookies, InsforgeServerProvider\n// In Client Components: not available (will error if imported, which is correct)\nexport {\n auth,\n type InsforgeAuth,\n getAuthFromCookies,\n InsforgeServerProvider,\n type InsforgeServerProviderProps,\n type InsforgeProviderServerProps,\n} from '#components';\n\n// Hooks (from client)\nexport { useInsforge } from './client/provider';\n\n/*\n These need to be explicitly listed. Do not use an * here.\n * If you do, app router will break.\n \n Pattern learned from @clerk/nextjs\n */\n\n// Main UI Components\nexport {\n SignIn,\n SignUp,\n ForgotPassword,\n ResetPassword,\n VerifyEmail,\n UserButton,\n Protect,\n SignedIn,\n SignedOut,\n SignInButton,\n SignUpButton,\n} from './client/components';\n\n// Form Components\nexport {\n SignInForm,\n SignUpForm,\n ForgotPasswordForm,\n ResetPasswordForm,\n VerifyEmailStatus,\n} from './client/components';\n\n// Atom Components\nexport {\n AuthBranding,\n AuthContainer,\n AuthHeader,\n AuthErrorBanner,\n AuthFormField,\n AuthPasswordField,\n AuthPasswordStrengthIndicator,\n AuthSubmitButton,\n AuthLink,\n AuthDivider,\n AuthOAuthButton,\n AuthOAuthProviders,\n AuthVerificationCodeInput,\n AuthEmailVerificationStep,\n AuthResetPasswordVerificationStep,\n} from './client/components';\n\n// Component Types\nexport type {\n SignInProps,\n SignUpProps,\n ForgotPasswordProps,\n ResetPasswordProps,\n VerifyEmailProps,\n UserButtonProps,\n ProtectProps,\n ConditionalProps,\n SignInFormProps,\n SignUpFormProps,\n ForgotPasswordFormProps,\n ResetPasswordFormProps,\n VerifyEmailStatusProps,\n AuthContainerProps,\n AuthHeaderProps,\n AuthErrorBannerProps,\n AuthFormFieldProps,\n AuthPasswordFieldProps,\n AuthPasswordStrengthIndicatorProps,\n AuthSubmitButtonProps,\n AuthLinkProps,\n AuthDividerProps,\n AuthOAuthButtonProps,\n AuthOAuthProvidersProps,\n AuthVerificationCodeInputProps,\n} from './client/components';\n\n// Hooks\nexport { useAuth, useUser, usePublicAuthConfig } from './client/hooks';\n"],"mappings":"AAMA;AAAA,EACE;AAAA,EACA;AAAA,OAGK;AAKP;AAAA,EACE;AAAA,EAEA;AAAA,EACA;AAAA,OAGK;AAGP,SAAS,mBAAmB;AAU5B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAgCP,SAAS,SAAS,SAAS,2BAA2B;","names":[]}
1	+ {"version":3,"sources":["../../src/index.ts"],"sourcesContent":["// ============================================================================\r\n// Providers\r\n// ============================================================================\r\n\r\n// Browser Provider - The recommended way to use Insforge in Next.js\r\n// Use this directly in a client component for proper SDK client sharing\r\nexport {\r\n InsforgeBrowserProvider,\r\n ClientInsforgeProvider, // Deprecated alias\r\n type InsforgeBrowserProviderProps,\r\n type InitialAuthState,\r\n} from './client/provider';\r\n\r\n// Server-only exports (uses conditional exports via #components)\r\n// In Server Components: exports auth, getAuthFromCookies, InsforgeServerProvider\r\n// In Client Components: not available (will error if imported, which is correct)\r\nexport {\r\n auth,\r\n type InsforgeAuth,\r\n getAuthFromCookies,\r\n InsforgeServerProvider,\r\n type InsforgeServerProviderProps,\r\n type InsforgeProviderServerProps,\r\n} from '#components';\r\n\r\n// Hooks (from client)\r\nexport { useInsforge } from './client/provider';\r\n\r\n/*\r\n These need to be explicitly listed. Do not use an * here.\r\n * If you do, app router will break.\r\n \r\n Pattern learned from @clerk/nextjs\r\n */\r\n\r\n// Main UI Components\r\nexport {\r\n SignIn,\r\n SignUp,\r\n ForgotPassword,\r\n ResetPassword,\r\n VerifyEmail,\r\n UserButton,\r\n Protect,\r\n SignedIn,\r\n SignedOut,\r\n SignInButton,\r\n SignUpButton,\r\n} from './client/components';\r\n\r\n// Form Components\r\nexport {\r\n SignInForm,\r\n SignUpForm,\r\n ForgotPasswordForm,\r\n ResetPasswordForm,\r\n VerifyEmailStatus,\r\n} from './client/components';\r\n\r\n// Atom Components\r\nexport {\r\n AuthBranding,\r\n AuthContainer,\r\n AuthHeader,\r\n AuthErrorBanner,\r\n AuthFormField,\r\n AuthPasswordField,\r\n AuthPasswordStrengthIndicator,\r\n AuthSubmitButton,\r\n AuthLink,\r\n AuthDivider,\r\n AuthOAuthButton,\r\n AuthOAuthProviders,\r\n AuthVerificationCodeInput,\r\n AuthEmailVerificationStep,\r\n AuthResetPasswordVerificationStep,\r\n} from './client/components';\r\n\r\n// Component Types\r\nexport type {\r\n SignInProps,\r\n SignUpProps,\r\n ForgotPasswordProps,\r\n ResetPasswordProps,\r\n VerifyEmailProps,\r\n UserButtonProps,\r\n ProtectProps,\r\n ConditionalProps,\r\n SignInFormProps,\r\n SignUpFormProps,\r\n ForgotPasswordFormProps,\r\n ResetPasswordFormProps,\r\n VerifyEmailStatusProps,\r\n AuthContainerProps,\r\n AuthHeaderProps,\r\n AuthErrorBannerProps,\r\n AuthFormFieldProps,\r\n AuthPasswordFieldProps,\r\n AuthPasswordStrengthIndicatorProps,\r\n AuthSubmitButtonProps,\r\n AuthLinkProps,\r\n AuthDividerProps,\r\n AuthOAuthButtonProps,\r\n AuthOAuthProvidersProps,\r\n AuthVerificationCodeInputProps,\r\n} from './client/components';\r\n\r\n// Hooks\r\nexport { useAuth, useUser, usePublicAuthConfig } from './client/hooks';\r\n"],"mappings":"AAMA;AAAA,EACE;AAAA,EACA;AAAA,OAGK;AAKP;AAAA,EACE;AAAA,EAEA;AAAA,EACA;AAAA,OAGK;AAGP,SAAS,mBAAmB;AAU5B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAGP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAgCP,SAAS,SAAS,SAAS,2BAA2B;","names":[]}

package/dist/esm/lib/cookies.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/lib/cookies.ts"],"sourcesContent":["import type { ResponseCookie } from 'next/dist/compiled/@edge-runtime/cookies';\nimport { InsforgeUser } from '@insforge/shared';\n\n/*\n Cookie names used by Insforge authentication\n * These are fixed and should not be changed to ensure consistency\n /\nexport const COOKIE_NAMES = {\n /* Session cookie storing the access token /\n SESSION: 'insforge-session',\n /* User info cookie storing basic user data for SSR /\n USER: 'insforge-user',\n} as const;\n\n/\n Default cookie configuration values\n /\nexport const COOKIE_DEFAULTS = {\n /* Default max age: 7 days in seconds /\n MAX_AGE: 7 24 * 60 * 60,\n /** Cookie path /\n PATH: '/',\n /* SameSite policy /\n SAME_SITE: 'lax' as const,\n} as const;\n\n/\n Options for cookie operations\n /\nexport interface CookieOptions {\n /* Max age in seconds (default: 7 days) /\n maxAge?: number;\n /* Whether to use secure cookies (HTTPS only). Auto-detected if not provided /\n secure?: boolean;\n}\n\n/\n Determines if secure cookies should be used based on environment\n * @param explicitSecure - Explicit secure value if provided\n * @returns Whether to use secure cookies\n /\nexport function isSecureCookie(explicitSecure?: boolean): boolean {\n if (explicitSecure !== undefined) {\n return explicitSecure;\n }\n // NODE_ENV is automatically set by Next.js runtime ('development' \| 'production' \| 'test')\n return process.env.NODE_ENV === 'production';\n}\n\n/\n Get base cookie options for auth cookies\n * @param options - Optional cookie configuration\n * @returns Cookie options object compatible with Next.js cookies API\n /\nexport function getBaseCookieOptions(\n options?: CookieOptions\n): Omit<ResponseCookie, 'name' \| 'value'> {\n const secure = isSecureCookie(options?.secure);\n const maxAge = options?.maxAge ?? COOKIE_DEFAULTS.MAX_AGE;\n\n return {\n httpOnly: true,\n secure,\n sameSite: COOKIE_DEFAULTS.SAME_SITE,\n maxAge,\n path: COOKIE_DEFAULTS.PATH,\n };\n}\n\n/\n Get cookie options for clearing/deleting a cookie\n * @param options - Optional cookie configuration\n * @returns Cookie options for deletion (maxAge: 0)\n /\nexport function getClearCookieOptions(\n options?: Pick<CookieOptions, 'secure'>\n): Omit<ResponseCookie, 'name' \| 'value'> {\n const secure = isSecureCookie(options?.secure);\n\n return {\n httpOnly: true,\n secure,\n sameSite: COOKIE_DEFAULTS.SAME_SITE,\n maxAge: 0,\n path: COOKIE_DEFAULTS.PATH,\n };\n}\n\n/\n Serialize user info for storage in cookie\n * @param user - User information to serialize\n * @returns JSON string of user info\n /\nexport function serializeUserCookie(user: InsforgeUser): string {\n return JSON.stringify({\n id: user.id,\n email: user.email,\n profile: user.profile \|\| null,\n });\n}\n\n/\n Parse user info from cookie value\n * @param cookieValue - Raw cookie value\n * @returns Parsed user info or null if invalid\n */\nexport function parseUserCookie(cookieValue: string \| undefined): InsforgeUser \| null {\n if (!cookieValue) {\n return null;\n }\n\n try {\n const parsed = JSON.parse(cookieValue) as unknown;\n\n // Type guard to validate the parsed data\n if (\n parsed &&\n typeof parsed === 'object' &&\n 'id' in parsed &&\n 'email' in parsed &&\n 'profile' in parsed &&\n typeof parsed.id === 'string' &&\n typeof parsed.email === 'string' &&\n typeof parsed.profile === 'object'\n ) {\n return parsed as InsforgeUser;\n }\n\n return null;\n } catch {\n return null;\n }\n}\n"],"mappings":"AAOO,MAAM,eAAe;AAAA;AAAA,EAE1B,SAAS;AAAA;AAAA,EAET,MAAM;AACR;AAKO,MAAM,kBAAkB;AAAA;AAAA,EAE7B,SAAS,IAAI,KAAK,KAAK;AAAA;AAAA,EAEvB,MAAM;AAAA;AAAA,EAEN,WAAW;AACb;AAiBO,SAAS,eAAe,gBAAmC;AAChE,MAAI,mBAAmB,QAAW;AAChC,WAAO;AAAA,EACT;AAEA,SAAO,QAAQ,IAAI,aAAa;AAClC;AAOO,SAAS,qBACd,SACwC;AACxC,QAAM,SAAS,eAAe,SAAS,MAAM;AAC7C,QAAM,SAAS,SAAS,UAAU,gBAAgB;AAElD,SAAO;AAAA,IACL,UAAU;AAAA,IACV;AAAA,IACA,UAAU,gBAAgB;AAAA,IAC1B;AAAA,IACA,MAAM,gBAAgB;AAAA,EACxB;AACF;AAOO,SAAS,sBACd,SACwC;AACxC,QAAM,SAAS,eAAe,SAAS,MAAM;AAE7C,SAAO;AAAA,IACL,UAAU;AAAA,IACV;AAAA,IACA,UAAU,gBAAgB;AAAA,IAC1B,QAAQ;AAAA,IACR,MAAM,gBAAgB;AAAA,EACxB;AACF;AAOO,SAAS,oBAAoB,MAA4B;AAC9D,SAAO,KAAK,UAAU;AAAA,IACpB,IAAI,KAAK;AAAA,IACT,OAAO,KAAK;AAAA,IACZ,SAAS,KAAK,WAAW;AAAA,EAC3B,CAAC;AACH;AAOO,SAAS,gBAAgB,aAAsD;AACpF,MAAI,CAAC,aAAa;AAChB,WAAO;AAAA,EACT;AAEA,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,WAAW;AAGrC,QACE,UACA,OAAO,WAAW,YAClB,QAAQ,UACR,WAAW,UACX,aAAa,UACb,OAAO,OAAO,OAAO,YACrB,OAAO,OAAO,UAAU,YACxB,OAAO,OAAO,YAAY,UAC1B;AACA,aAAO;AAAA,IACT;AAEA,WAAO;AAAA,EACT,QAAQ;AACN,WAAO;AAAA,EACT;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/lib/cookies.ts"],"sourcesContent":["import type { ResponseCookie } from 'next/dist/compiled/@edge-runtime/cookies';\r\nimport { InsforgeUser } from '@insforge/shared';\r\n\r\n/*\r\n Cookie names used by Insforge authentication\r\n * These are fixed and should not be changed to ensure consistency\r\n /\r\nexport const COOKIE_NAMES = {\r\n /* Session cookie storing the access token /\r\n SESSION: 'insforge-session',\r\n /* User info cookie storing basic user data for SSR /\r\n USER: 'insforge-user',\r\n} as const;\r\n\r\n/\r\n Default cookie configuration values\r\n /\r\nexport const COOKIE_DEFAULTS = {\r\n /* Default max age: 7 days in seconds /\r\n MAX_AGE: 7 24 * 60 * 60,\r\n /** Cookie path /\r\n PATH: '/',\r\n /* SameSite policy /\r\n SAME_SITE: 'lax' as const,\r\n} as const;\r\n\r\n/\r\n Options for cookie operations\r\n /\r\nexport interface CookieOptions {\r\n /* Max age in seconds (default: 7 days) /\r\n maxAge?: number;\r\n /* Whether to use secure cookies (HTTPS only). Auto-detected if not provided /\r\n secure?: boolean;\r\n}\r\n\r\n/\r\n Determines if secure cookies should be used based on environment\r\n * @param explicitSecure - Explicit secure value if provided\r\n * @returns Whether to use secure cookies\r\n /\r\nexport function isSecureCookie(explicitSecure?: boolean): boolean {\r\n if (explicitSecure !== undefined) {\r\n return explicitSecure;\r\n }\r\n // NODE_ENV is automatically set by Next.js runtime ('development' \| 'production' \| 'test')\r\n return process.env.NODE_ENV === 'production';\r\n}\r\n\r\n/\r\n Get base cookie options for auth cookies\r\n * @param options - Optional cookie configuration\r\n * @returns Cookie options object compatible with Next.js cookies API\r\n /\r\nexport function getBaseCookieOptions(\r\n options?: CookieOptions\r\n): Omit<ResponseCookie, 'name' \| 'value'> {\r\n const secure = isSecureCookie(options?.secure);\r\n const maxAge = options?.maxAge ?? COOKIE_DEFAULTS.MAX_AGE;\r\n\r\n return {\r\n httpOnly: true,\r\n secure,\r\n sameSite: COOKIE_DEFAULTS.SAME_SITE,\r\n maxAge,\r\n path: COOKIE_DEFAULTS.PATH,\r\n };\r\n}\r\n\r\n/\r\n Get cookie options for clearing/deleting a cookie\r\n * @param options - Optional cookie configuration\r\n * @returns Cookie options for deletion (maxAge: 0)\r\n /\r\nexport function getClearCookieOptions(\r\n options?: Pick<CookieOptions, 'secure'>\r\n): Omit<ResponseCookie, 'name' \| 'value'> {\r\n const secure = isSecureCookie(options?.secure);\r\n\r\n return {\r\n httpOnly: true,\r\n secure,\r\n sameSite: COOKIE_DEFAULTS.SAME_SITE,\r\n maxAge: 0,\r\n path: COOKIE_DEFAULTS.PATH,\r\n };\r\n}\r\n\r\n/\r\n Serialize user info for storage in cookie\r\n * @param user - User information to serialize\r\n * @returns JSON string of user info\r\n /\r\nexport function serializeUserCookie(user: InsforgeUser): string {\r\n return JSON.stringify({\r\n id: user.id,\r\n email: user.email,\r\n profile: user.profile \|\| null,\r\n });\r\n}\r\n\r\n/\r\n Parse user info from cookie value\r\n * @param cookieValue - Raw cookie value\r\n * @returns Parsed user info or null if invalid\r\n */\r\nexport function parseUserCookie(cookieValue: string \| undefined): InsforgeUser \| null {\r\n if (!cookieValue) {\r\n return null;\r\n }\r\n\r\n try {\r\n const parsed = JSON.parse(cookieValue) as unknown;\r\n\r\n // Type guard to validate the parsed data\r\n if (\r\n parsed &&\r\n typeof parsed === 'object' &&\r\n 'id' in parsed &&\r\n 'email' in parsed &&\r\n 'profile' in parsed &&\r\n typeof parsed.id === 'string' &&\r\n typeof parsed.email === 'string' &&\r\n typeof parsed.profile === 'object'\r\n ) {\r\n return parsed as InsforgeUser;\r\n }\r\n\r\n return null;\r\n } catch {\r\n return null;\r\n }\r\n}\r\n"],"mappings":"AAOO,MAAM,eAAe;AAAA;AAAA,EAE1B,SAAS;AAAA;AAAA,EAET,MAAM;AACR;AAKO,MAAM,kBAAkB;AAAA;AAAA,EAE7B,SAAS,IAAI,KAAK,KAAK;AAAA;AAAA,EAEvB,MAAM;AAAA;AAAA,EAEN,WAAW;AACb;AAiBO,SAAS,eAAe,gBAAmC;AAChE,MAAI,mBAAmB,QAAW;AAChC,WAAO;AAAA,EACT;AAEA,SAAO,QAAQ,IAAI,aAAa;AAClC;AAOO,SAAS,qBACd,SACwC;AACxC,QAAM,SAAS,eAAe,SAAS,MAAM;AAC7C,QAAM,SAAS,SAAS,UAAU,gBAAgB;AAElD,SAAO;AAAA,IACL,UAAU;AAAA,IACV;AAAA,IACA,UAAU,gBAAgB;AAAA,IAC1B;AAAA,IACA,MAAM,gBAAgB;AAAA,EACxB;AACF;AAOO,SAAS,sBACd,SACwC;AACxC,QAAM,SAAS,eAAe,SAAS,MAAM;AAE7C,SAAO;AAAA,IACL,UAAU;AAAA,IACV;AAAA,IACA,UAAU,gBAAgB;AAAA,IAC1B,QAAQ;AAAA,IACR,MAAM,gBAAgB;AAAA,EACxB;AACF;AAOO,SAAS,oBAAoB,MAA4B;AAC9D,SAAO,KAAK,UAAU;AAAA,IACpB,IAAI,KAAK;AAAA,IACT,OAAO,KAAK;AAAA,IACZ,SAAS,KAAK,WAAW;AAAA,EAC3B,CAAC;AACH;AAOO,SAAS,gBAAgB,aAAsD;AACpF,MAAI,CAAC,aAAa;AAChB,WAAO;AAAA,EACT;AAEA,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,WAAW;AAGrC,QACE,UACA,OAAO,WAAW,YAClB,QAAQ,UACR,WAAW,UACX,aAAa,UACb,OAAO,OAAO,OAAO,YACrB,OAAO,OAAO,UAAU,YACxB,OAAO,OAAO,YAAY,UAC1B;AACA,aAAO;AAAA,IACT;AAEA,WAAO;AAAA,EACT,QAAQ;AACN,WAAO;AAAA,EACT;AACF;","names":[]}

package/dist/esm/middleware/InsforgeMiddleware.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/middleware/InsforgeMiddleware.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\nimport { COOKIE_NAMES, getBaseCookieOptions, serializeUserCookie } from '../lib/cookies';\n\nexport interface InsforgeMiddlewareConfig {\n /*\n Base URL of your Insforge backend\n * @example 'https://your-backend.com' or 'http://localhost:3001'\n /\n baseUrl: string;\n\n /\n Routes that are public and don't require authentication\n * @default ['/']\n * @example ['/sign-in', '/sign-up', '/', '/about']\n /\n publicRoutes?: string[];\n\n /\n Local route path for sign-in (can be customized to any path like '/login')\n * When using built-in auth, this will redirect to backend's `/auth/sign-in`\n * @default '/sign-in'\n /\n signInUrl?: string;\n\n /\n Local route path for sign-up (can be customized to any path like '/register')\n * When using built-in auth, this will redirect to backend's `/auth/sign-up`\n * @default '/sign-up'\n /\n signUpUrl?: string;\n\n /\n Local route path for forgot password\n * When using built-in auth, this will redirect to backend's `/auth/forgot-password`\n * @default '/forgot-password'\n /\n forgotPasswordUrl?: string;\n\n /\n URL to redirect to after successful authentication\n * When user completes sign-in/sign-up, they will be redirected to this URL with token in URL\n * @default '/'\n /\n afterSignInUrl?: string;\n\n /\n Whether to use built-in authentication pages hosted on the backend\n * - When true: redirects to backend's `/auth/sign-in` and `/auth/sign-up` pages\n * - When false: redirects to local sign-in/sign-up pages (you provide your own components)\n * @default true\n /\n useBuiltInAuth?: boolean;\n}\n\n/\n Creates Next.js middleware for protecting routes with Insforge authentication.\n \n This middleware provides lightweight route protection by:\n * - Detecting and storing auth tokens from URL parameters (after backend redirect)\n * - Checking for auth token presence in cookies\n * - Redirecting unauthenticated users to sign-in page\n * - Allowing public routes to be accessed without authentication\n * - Mapping local auth routes to backend's fixed paths when using built-in auth\n \n How Authentication Flow Works:\n * 1. User visits protected route → Middleware checks for token\n * 2. No token → Redirects to sign-in (backend or local)\n * 3. User accesses auth page (e.g., /sign-in) → Redirects to backend with afterSignInUrl as redirect target\n * 4. After sign-in → Backend redirects to `yourapp.com/afterSignInUrl?access_token=xxx&user_id=xxx...`\n * 5. Middleware detects `access_token` in URL → Stores in HTTP-only cookie → Cleans URL → Allows access\n * 6. SDK also detects token from URL → Stores in localStorage → Updates auth state\n \n Important Notes:\n * - This middleware only checks if a token exists, it doesn't validate it\n * - Tokens from URL are automatically extracted and stored in cookies\n * - When `useBuiltInAuth: true`, local routes map to backend's fixed auth paths\n * - You can customize local route paths (e.g., `/login`) while backend paths remain fixed\n * - After successful auth, users are redirected to `afterSignInUrl` (default: `/`), not back to the auth page\n \n @param config - Middleware configuration\n * @returns Next.js middleware function\n \n @example\n * ```ts\n * // middleware.ts - Using built-in auth\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * publicRoutes: ['/', '/about'],\n * afterSignInUrl: '/', // Redirect here after successful auth\n * useBuiltInAuth: true,\n * });\n \n export const config = {\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\n };\n * ```\n \n @example\n * ```ts\n * // middleware.ts - Custom local auth pages with custom paths\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * publicRoutes: ['/login', '/register', '/', '/about'],\n * signInUrl: '/login',\n * signUpUrl: '/register',\n * afterSignInUrl: '/dashboard',\n * useBuiltInAuth: false,\n * });\n \n export const config = {\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\n };\n * ```\n \n @example\n * ```ts\n * // middleware.ts - Built-in auth with custom auth route paths\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\n \n export default InsforgeMiddleware({\n * baseUrl: 'https://your-backend.com',\n * signInUrl: '/login',\n * signUpUrl: '/register',\n * forgotPasswordUrl: '/forgot',\n * afterSignInUrl: '/dashboard',\n * useBuiltInAuth: true,\n * });\n * ```\n /\nexport const InsforgeMiddleware = (config: InsforgeMiddlewareConfig) => {\n const {\n baseUrl,\n publicRoutes = ['/'],\n signInUrl = '/sign-in',\n signUpUrl = '/sign-up',\n forgotPasswordUrl = '/forgot-password',\n afterSignInUrl = '/',\n useBuiltInAuth = true,\n } = config;\n\n return function middleware(request: NextRequest) {\n const { pathname, searchParams } = request.nextUrl;\n\n // STEP 1: Check if URL contains access_token (from backend redirect after auth)\n const accessToken = searchParams.get('access_token');\n const userId = searchParams.get('user_id');\n const email = searchParams.get('email');\n const name = searchParams.get('name');\n\n if (accessToken && userId && email) {\n // Token detected in URL - store it in HTTP-only cookies\n const response = NextResponse.next();\n const cookieOptions = getBaseCookieOptions();\n\n // Set session cookie (access token)\n response.cookies.set(COOKIE_NAMES.SESSION, accessToken, cookieOptions);\n\n // Set user identity cookie (basic user info for SSR)\n response.cookies.set(\n COOKIE_NAMES.USER,\n serializeUserCookie({ id: userId, email, profile: { name: name \|\| undefined } }),\n cookieOptions\n );\n\n return response;\n }\n\n // STEP 2: Handle built-in auth redirects for authentication pages\n // Map local auth routes to backend's fixed auth pages\n if (useBuiltInAuth) {\n const authRouteMapping: Record<string, string> = {\n [signInUrl]: '/auth/sign-in',\n [signUpUrl]: '/auth/sign-up',\n [forgotPasswordUrl]: '/auth/forgot-password',\n };\n\n const backendAuthPath = authRouteMapping[pathname];\n if (backendAuthPath) {\n // Redirect to afterSignInUrl after successful authentication\n const redirectUrl = new URL(afterSignInUrl, request.url).toString();\n const backendAuthUrl = new URL(backendAuthPath, baseUrl);\n backendAuthUrl.searchParams.set('redirect', redirectUrl);\n return NextResponse.redirect(backendAuthUrl.toString());\n }\n }\n\n // STEP 3: Check if route is public\n const isPublicRoute = publicRoutes.some((route) => {\n if (route.endsWith('')) {\n // Wildcard route: /admin/* matches /admin/anything\n return pathname.startsWith(route.slice(0, -1));\n }\n // Exact match or starts with route path\n return pathname === route \|\| pathname.startsWith(route + '/');\n });\n\n if (isPublicRoute) {\n return NextResponse.next();\n }\n\n // STEP 4: Check for authentication token in cookies\n const token = request.cookies.get(COOKIE_NAMES.SESSION)?.value;\n\n if (!token) {\n // No token found, redirect to sign-in\n if (useBuiltInAuth) {\n // Built-in auth: redirect to backend's /auth/sign-in page\n // Backend will redirect back to current URL with token\n const backendSignInUrl = new URL('/auth/sign-in', baseUrl);\n backendSignInUrl.searchParams.set('redirect', request.url);\n return NextResponse.redirect(backendSignInUrl);\n } else {\n // Custom auth: redirect to local sign-in page\n const localSignInUrl = new URL(signInUrl, request.url);\n localSignInUrl.searchParams.set('redirect', pathname);\n return NextResponse.redirect(localSignInUrl);\n }\n }\n\n // Token exists in cookie, allow request to continue\n return NextResponse.next();\n };\n};\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAC1C,SAAS,cAAc,sBAAsB,2BAA2B;AAoIjE,MAAM,qBAAqB,CAAC,WAAqC;AACtE,QAAM;AAAA,IACJ;AAAA,IACA,eAAe,CAAC,GAAG;AAAA,IACnB,YAAY;AAAA,IACZ,YAAY;AAAA,IACZ,oBAAoB;AAAA,IACpB,iBAAiB;AAAA,IACjB,iBAAiB;AAAA,EACnB,IAAI;AAEJ,SAAO,SAAS,WAAW,SAAsB;AAC/C,UAAM,EAAE,UAAU,aAAa,IAAI,QAAQ;AAG3C,UAAM,cAAc,aAAa,IAAI,cAAc;AACnD,UAAM,SAAS,aAAa,IAAI,SAAS;AACzC,UAAM,QAAQ,aAAa,IAAI,OAAO;AACtC,UAAM,OAAO,aAAa,IAAI,MAAM;AAEpC,QAAI,eAAe,UAAU,OAAO;AAElC,YAAM,WAAW,aAAa,KAAK;AACnC,YAAM,gBAAgB,qBAAqB;AAG3C,eAAS,QAAQ,IAAI,aAAa,SAAS,aAAa,aAAa;AAGrE,eAAS,QAAQ;AAAA,QACf,aAAa;AAAA,QACb,oBAAoB,EAAE,IAAI,QAAQ,OAAO,SAAS,EAAE,MAAM,QAAQ,OAAU,EAAE,CAAC;AAAA,QAC/E;AAAA,MACF;AAEA,aAAO;AAAA,IACT;AAIA,QAAI,gBAAgB;AAClB,YAAM,mBAA2C;AAAA,QAC/C,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,iBAAiB,GAAG;AAAA,MACvB;AAEA,YAAM,kBAAkB,iBAAiB,QAAQ;AACjD,UAAI,iBAAiB;AAEnB,cAAM,cAAc,IAAI,IAAI,gBAAgB,QAAQ,GAAG,EAAE,SAAS;AAClE,cAAM,iBAAiB,IAAI,IAAI,iBAAiB,OAAO;AACvD,uBAAe,aAAa,IAAI,YAAY,WAAW;AACvD,eAAO,aAAa,SAAS,eAAe,SAAS,CAAC;AAAA,MACxD;AAAA,IACF;AAGA,UAAM,gBAAgB,aAAa,KAAK,CAAC,UAAU;AACjD,UAAI,MAAM,SAAS,GAAG,GAAG;AAEvB,eAAO,SAAS,WAAW,MAAM,MAAM,GAAG,EAAE,CAAC;AAAA,MAC/C;AAEA,aAAO,aAAa,SAAS,SAAS,WAAW,QAAQ,GAAG;AAAA,IAC9D,CAAC;AAED,QAAI,eAAe;AACjB,aAAO,aAAa,KAAK;AAAA,IAC3B;AAGA,UAAM,QAAQ,QAAQ,QAAQ,IAAI,aAAa,OAAO,GAAG;AAEzD,QAAI,CAAC,OAAO;AAEV,UAAI,gBAAgB;AAGlB,cAAM,mBAAmB,IAAI,IAAI,iBAAiB,OAAO;AACzD,yBAAiB,aAAa,IAAI,YAAY,QAAQ,GAAG;AACzD,eAAO,aAAa,SAAS,gBAAgB;AAAA,MAC/C,OAAO;AAEL,cAAM,iBAAiB,IAAI,IAAI,WAAW,QAAQ,GAAG;AACrD,uBAAe,aAAa,IAAI,YAAY,QAAQ;AACpD,eAAO,aAAa,SAAS,cAAc;AAAA,MAC7C;AAAA,IACF;AAGA,WAAO,aAAa,KAAK;AAAA,EAC3B;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/middleware/InsforgeMiddleware.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\r\nimport { COOKIE_NAMES, getBaseCookieOptions, serializeUserCookie } from '../lib/cookies';\r\n\r\nexport interface InsforgeMiddlewareConfig {\r\n /*\r\n Base URL of your Insforge backend\r\n * @example 'https://your-backend.com' or 'http://localhost:3001'\r\n /\r\n baseUrl: string;\r\n\r\n /\r\n Routes that are public and don't require authentication\r\n * @default ['/']\r\n * @example ['/sign-in', '/sign-up', '/', '/about']\r\n /\r\n publicRoutes?: string[];\r\n\r\n /\r\n Local route path for sign-in (can be customized to any path like '/login')\r\n * When using built-in auth, this will redirect to backend's `/auth/sign-in`\r\n * @default '/sign-in'\r\n /\r\n signInUrl?: string;\r\n\r\n /\r\n Local route path for sign-up (can be customized to any path like '/register')\r\n * When using built-in auth, this will redirect to backend's `/auth/sign-up`\r\n * @default '/sign-up'\r\n /\r\n signUpUrl?: string;\r\n\r\n /\r\n Local route path for forgot password\r\n * When using built-in auth, this will redirect to backend's `/auth/forgot-password`\r\n * @default '/forgot-password'\r\n /\r\n forgotPasswordUrl?: string;\r\n\r\n /\r\n URL to redirect to after successful authentication\r\n * When user completes sign-in/sign-up, they will be redirected to this URL with token in URL\r\n * @default '/'\r\n /\r\n afterSignInUrl?: string;\r\n\r\n /\r\n Whether to use built-in authentication pages hosted on the backend\r\n * - When true: redirects to backend's `/auth/sign-in` and `/auth/sign-up` pages\r\n * - When false: redirects to local sign-in/sign-up pages (you provide your own components)\r\n * @default true\r\n /\r\n useBuiltInAuth?: boolean;\r\n}\r\n\r\n/\r\n Creates Next.js middleware for protecting routes with Insforge authentication.\r\n \r\n This middleware provides lightweight route protection by:\r\n * - Detecting and storing auth tokens from URL parameters (after backend redirect)\r\n * - Checking for auth token presence in cookies\r\n * - Redirecting unauthenticated users to sign-in page\r\n * - Allowing public routes to be accessed without authentication\r\n * - Mapping local auth routes to backend's fixed paths when using built-in auth\r\n \r\n How Authentication Flow Works:\r\n * 1. User visits protected route → Middleware checks for token\r\n * 2. No token → Redirects to sign-in (backend or local)\r\n * 3. User accesses auth page (e.g., /sign-in) → Redirects to backend with afterSignInUrl as redirect target\r\n * 4. After sign-in → Backend redirects to `yourapp.com/afterSignInUrl?access_token=xxx&user_id=xxx...`\r\n * 5. Middleware detects `access_token` in URL → Stores in HTTP-only cookie → Cleans URL → Allows access\r\n * 6. SDK also detects token from URL → Stores in localStorage → Updates auth state\r\n \r\n Important Notes:\r\n * - This middleware only checks if a token exists, it doesn't validate it\r\n * - Tokens from URL are automatically extracted and stored in cookies\r\n * - When `useBuiltInAuth: true`, local routes map to backend's fixed auth paths\r\n * - You can customize local route paths (e.g., `/login`) while backend paths remain fixed\r\n * - After successful auth, users are redirected to `afterSignInUrl` (default: `/`), not back to the auth page\r\n \r\n @param config - Middleware configuration\r\n * @returns Next.js middleware function\r\n \r\n @example\r\n * ```ts\r\n * // middleware.ts - Using built-in auth\r\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\r\n \r\n export default InsforgeMiddleware({\r\n * baseUrl: process.env.INSFORGE_BASE_URL!,\r\n * publicRoutes: ['/', '/about'],\r\n * afterSignInUrl: '/', // Redirect here after successful auth\r\n * useBuiltInAuth: true,\r\n * });\r\n \r\n export const config = {\r\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\r\n };\r\n * ```\r\n \r\n @example\r\n * ```ts\r\n * // middleware.ts - Custom local auth pages with custom paths\r\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\r\n \r\n export default InsforgeMiddleware({\r\n * baseUrl: process.env.INSFORGE_BASE_URL!,\r\n * publicRoutes: ['/login', '/register', '/', '/about'],\r\n * signInUrl: '/login',\r\n * signUpUrl: '/register',\r\n * afterSignInUrl: '/dashboard',\r\n * useBuiltInAuth: false,\r\n * });\r\n \r\n export const config = {\r\n * matcher: ['/((?!_next\|api\|.\\\\..).)'],\r\n };\r\n * ```\r\n \r\n @example\r\n * ```ts\r\n * // middleware.ts - Built-in auth with custom auth route paths\r\n * import { InsforgeMiddleware } from '@insforge/nextjs/middleware';\r\n \r\n export default InsforgeMiddleware({\r\n * baseUrl: 'https://your-backend.com',\r\n * signInUrl: '/login',\r\n * signUpUrl: '/register',\r\n * forgotPasswordUrl: '/forgot',\r\n * afterSignInUrl: '/dashboard',\r\n * useBuiltInAuth: true,\r\n * });\r\n * ```\r\n /\r\nexport const InsforgeMiddleware = (config: InsforgeMiddlewareConfig) => {\r\n const {\r\n baseUrl,\r\n publicRoutes = ['/'],\r\n signInUrl = '/sign-in',\r\n signUpUrl = '/sign-up',\r\n forgotPasswordUrl = '/forgot-password',\r\n afterSignInUrl = '/',\r\n useBuiltInAuth = true,\r\n } = config;\r\n\r\n return function middleware(request: NextRequest) {\r\n const { pathname, searchParams } = request.nextUrl;\r\n\r\n // STEP 1: Check if URL contains access_token (from backend redirect after auth)\r\n const accessToken = searchParams.get('access_token');\r\n const userId = searchParams.get('user_id');\r\n const email = searchParams.get('email');\r\n const name = searchParams.get('name');\r\n\r\n if (accessToken && userId && email) {\r\n // Token detected in URL - store it in HTTP-only cookies\r\n const response = NextResponse.next();\r\n const cookieOptions = getBaseCookieOptions();\r\n\r\n // Set session cookie (access token)\r\n response.cookies.set(COOKIE_NAMES.SESSION, accessToken, cookieOptions);\r\n\r\n // Set user identity cookie (basic user info for SSR)\r\n response.cookies.set(\r\n COOKIE_NAMES.USER,\r\n serializeUserCookie({ id: userId, email, profile: { name: name \|\| undefined } }),\r\n cookieOptions\r\n );\r\n\r\n return response;\r\n }\r\n\r\n // STEP 2: Handle built-in auth redirects for authentication pages\r\n // Map local auth routes to backend's fixed auth pages\r\n if (useBuiltInAuth) {\r\n const authRouteMapping: Record<string, string> = {\r\n [signInUrl]: '/auth/sign-in',\r\n [signUpUrl]: '/auth/sign-up',\r\n [forgotPasswordUrl]: '/auth/forgot-password',\r\n };\r\n\r\n const backendAuthPath = authRouteMapping[pathname];\r\n if (backendAuthPath) {\r\n // Redirect to afterSignInUrl after successful authentication\r\n const redirectUrl = new URL(afterSignInUrl, request.url).toString();\r\n const backendAuthUrl = new URL(backendAuthPath, baseUrl);\r\n backendAuthUrl.searchParams.set('redirect', redirectUrl);\r\n return NextResponse.redirect(backendAuthUrl.toString());\r\n }\r\n }\r\n\r\n // STEP 3: Check if route is public\r\n const isPublicRoute = publicRoutes.some((route) => {\r\n if (route.endsWith('')) {\r\n // Wildcard route: /admin/* matches /admin/anything\r\n return pathname.startsWith(route.slice(0, -1));\r\n }\r\n // Exact match or starts with route path\r\n return pathname === route \|\| pathname.startsWith(route + '/');\r\n });\r\n\r\n if (isPublicRoute) {\r\n return NextResponse.next();\r\n }\r\n\r\n // STEP 4: Check for authentication token in cookies\r\n const token = request.cookies.get(COOKIE_NAMES.SESSION)?.value;\r\n\r\n if (!token) {\r\n // No token found, redirect to sign-in\r\n if (useBuiltInAuth) {\r\n // Built-in auth: redirect to backend's /auth/sign-in page\r\n // Backend will redirect back to current URL with token\r\n const backendSignInUrl = new URL('/auth/sign-in', baseUrl);\r\n backendSignInUrl.searchParams.set('redirect', request.url);\r\n return NextResponse.redirect(backendSignInUrl);\r\n } else {\r\n // Custom auth: redirect to local sign-in page\r\n const localSignInUrl = new URL(signInUrl, request.url);\r\n localSignInUrl.searchParams.set('redirect', pathname);\r\n return NextResponse.redirect(localSignInUrl);\r\n }\r\n }\r\n\r\n // Token exists in cookie, allow request to continue\r\n return NextResponse.next();\r\n };\r\n};\r\n"],"mappings":"AAAA,SAAsB,oBAAoB;AAC1C,SAAS,cAAc,sBAAsB,2BAA2B;AAoIjE,MAAM,qBAAqB,CAAC,WAAqC;AACtE,QAAM;AAAA,IACJ;AAAA,IACA,eAAe,CAAC,GAAG;AAAA,IACnB,YAAY;AAAA,IACZ,YAAY;AAAA,IACZ,oBAAoB;AAAA,IACpB,iBAAiB;AAAA,IACjB,iBAAiB;AAAA,EACnB,IAAI;AAEJ,SAAO,SAAS,WAAW,SAAsB;AAC/C,UAAM,EAAE,UAAU,aAAa,IAAI,QAAQ;AAG3C,UAAM,cAAc,aAAa,IAAI,cAAc;AACnD,UAAM,SAAS,aAAa,IAAI,SAAS;AACzC,UAAM,QAAQ,aAAa,IAAI,OAAO;AACtC,UAAM,OAAO,aAAa,IAAI,MAAM;AAEpC,QAAI,eAAe,UAAU,OAAO;AAElC,YAAM,WAAW,aAAa,KAAK;AACnC,YAAM,gBAAgB,qBAAqB;AAG3C,eAAS,QAAQ,IAAI,aAAa,SAAS,aAAa,aAAa;AAGrE,eAAS,QAAQ;AAAA,QACf,aAAa;AAAA,QACb,oBAAoB,EAAE,IAAI,QAAQ,OAAO,SAAS,EAAE,MAAM,QAAQ,OAAU,EAAE,CAAC;AAAA,QAC/E;AAAA,MACF;AAEA,aAAO;AAAA,IACT;AAIA,QAAI,gBAAgB;AAClB,YAAM,mBAA2C;AAAA,QAC/C,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,SAAS,GAAG;AAAA,QACb,CAAC,iBAAiB,GAAG;AAAA,MACvB;AAEA,YAAM,kBAAkB,iBAAiB,QAAQ;AACjD,UAAI,iBAAiB;AAEnB,cAAM,cAAc,IAAI,IAAI,gBAAgB,QAAQ,GAAG,EAAE,SAAS;AAClE,cAAM,iBAAiB,IAAI,IAAI,iBAAiB,OAAO;AACvD,uBAAe,aAAa,IAAI,YAAY,WAAW;AACvD,eAAO,aAAa,SAAS,eAAe,SAAS,CAAC;AAAA,MACxD;AAAA,IACF;AAGA,UAAM,gBAAgB,aAAa,KAAK,CAAC,UAAU;AACjD,UAAI,MAAM,SAAS,GAAG,GAAG;AAEvB,eAAO,SAAS,WAAW,MAAM,MAAM,GAAG,EAAE,CAAC;AAAA,MAC/C;AAEA,aAAO,aAAa,SAAS,SAAS,WAAW,QAAQ,GAAG;AAAA,IAC9D,CAAC;AAED,QAAI,eAAe;AACjB,aAAO,aAAa,KAAK;AAAA,IAC3B;AAGA,UAAM,QAAQ,QAAQ,QAAQ,IAAI,aAAa,OAAO,GAAG;AAEzD,QAAI,CAAC,OAAO;AAEV,UAAI,gBAAgB;AAGlB,cAAM,mBAAmB,IAAI,IAAI,iBAAiB,OAAO;AACzD,yBAAiB,aAAa,IAAI,YAAY,QAAQ,GAAG;AACzD,eAAO,aAAa,SAAS,gBAAgB;AAAA,MAC/C,OAAO;AAEL,cAAM,iBAAiB,IAAI,IAAI,WAAW,QAAQ,GAAG;AACrD,uBAAe,aAAa,IAAI,YAAY,QAAQ;AACpD,eAAO,aAAa,SAAS,cAAc;AAAA,MAC7C;AAAA,IACF;AAGA,WAAO,aAAa,KAAK;AAAA,EAC3B;AACF;","names":[]}

package/dist/esm/middleware/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/middleware/index.ts"],"sourcesContent":["// Middleware exports - NO 'use client' directive here!\n// Middleware runs in Edge Runtime, not in client browser\n\nexport { InsforgeMiddleware } from './InsforgeMiddleware';\n\nexport type { InsforgeMiddlewareConfig } from './InsforgeMiddleware';\n"],"mappings":"AAGA,SAAS,0BAA0B;","names":[]}
1	+ {"version":3,"sources":["../../../src/middleware/index.ts"],"sourcesContent":["// Middleware exports - NO 'use client' directive here!\r\n// Middleware runs in Edge Runtime, not in client browser\r\n\r\nexport { InsforgeMiddleware } from './InsforgeMiddleware';\r\n\r\nexport type { InsforgeMiddlewareConfig } from './InsforgeMiddleware';\r\n"],"mappings":"AAGA,SAAS,0BAA0B;","names":[]}

package/dist/esm/navigation/NextNavigationAdapter.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/navigation/NextNavigationAdapter.tsx"],"sourcesContent":["'use client';\nimport type { ReactNode } from 'react';\nimport { useSearchParams as useNextSearchParams } from 'next/navigation';\nimport Link from 'next/link';\nimport type { NavigationAdapter } from '@insforge/react/navigation';\n\n/*\n Next.js navigation adapter\n * Uses Next.js's useSearchParams hook and Link component\n * Provides optimized navigation with prefetching and client-side routing\n /\nexport const NextNavigationAdapter: NavigationAdapter = {\n /\n Returns URLSearchParams from Next.js's useSearchParams\n * Reactive - updates when URL changes\n /\n useSearchParams() {\n const nextSearchParams = useNextSearchParams();\n // Convert Next.js's ReadonlyURLSearchParams to URLSearchParams\n return new URLSearchParams(nextSearchParams?.toString() \|\| '');\n },\n\n /\n Next.js's Link component for optimized client-side navigation\n * Supports prefetching, scroll restoration, and shallow routing\n */\n Link({ href, className, children }: { href: string; className?: string; children: ReactNode }) {\n return (\n <Link href={href} className={className}>\n {children}\n </Link>\n );\n },\n};\n"],"mappings":";AA4BM;AA1BN,SAAS,mBAAmB,2BAA2B;AACvD,OAAO,UAAU;AAQV,MAAM,wBAA2C;AAAA;AAAA;AAAA;AAAA;AAAA,EAKtD,kBAAkB;AAChB,UAAM,mBAAmB,oBAAoB;AAE7C,WAAO,IAAI,gBAAgB,kBAAkB,SAAS,KAAK,EAAE;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,KAAK,EAAE,MAAM,WAAW,SAAS,GAA8D;AAC7F,WACE,oBAAC,QAAK,MAAY,WACf,UACH;AAAA,EAEJ;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/navigation/NextNavigationAdapter.tsx"],"sourcesContent":["'use client';\r\nimport type { ReactNode } from 'react';\r\nimport { useSearchParams as useNextSearchParams } from 'next/navigation';\r\nimport Link from 'next/link';\r\nimport type { NavigationAdapter } from '@insforge/react/navigation';\r\n\r\n/*\r\n Next.js navigation adapter\r\n * Uses Next.js's useSearchParams hook and Link component\r\n * Provides optimized navigation with prefetching and client-side routing\r\n /\r\nexport const NextNavigationAdapter: NavigationAdapter = {\r\n /\r\n Returns URLSearchParams from Next.js's useSearchParams\r\n * Reactive - updates when URL changes\r\n /\r\n useSearchParams() {\r\n const nextSearchParams = useNextSearchParams();\r\n // Convert Next.js's ReadonlyURLSearchParams to URLSearchParams\r\n return new URLSearchParams(nextSearchParams?.toString() \|\| '');\r\n },\r\n\r\n /\r\n Next.js's Link component for optimized client-side navigation\r\n * Supports prefetching, scroll restoration, and shallow routing\r\n */\r\n Link({ href, className, children }: { href: string; className?: string; children: ReactNode }) {\r\n return (\r\n <Link href={href} className={className}>\r\n {children}\r\n </Link>\r\n );\r\n },\r\n};\r\n"],"mappings":";AA4BM;AA1BN,SAAS,mBAAmB,2BAA2B;AACvD,OAAO,UAAU;AAQV,MAAM,wBAA2C;AAAA;AAAA;AAAA;AAAA;AAAA,EAKtD,kBAAkB;AAChB,UAAM,mBAAmB,oBAAoB;AAE7C,WAAO,IAAI,gBAAgB,kBAAkB,SAAS,KAAK,EAAE;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,KAAK,EAAE,MAAM,WAAW,SAAS,GAA8D;AAC7F,WACE,oBAAC,QAAK,MAAY,WACf,UACH;AAAA,EAEJ;AACF;","names":[]}

package/dist/esm/navigation/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/navigation/index.ts"],"sourcesContent":["'use client';\nexport { NextNavigationAdapter as NavigationAdapter } from './NextNavigationAdapter';\n"],"mappings":";AACA,SAAkC,6BAAyB;","names":[]}
1	+ {"version":3,"sources":["../../../src/navigation/index.ts"],"sourcesContent":["'use client';\r\nexport { NextNavigationAdapter as NavigationAdapter } from './NextNavigationAdapter';\r\n"],"mappings":";AACA,SAAkC,6BAAyB;","names":[]}

package/dist/esm/package.json CHANGED Viewed

@@ -1,9 +1,9 @@
-{
-  "sideEffects": false,
-  "imports": {
-    "#components": {
-      "react-server": "./components.server.js",
-      "default": "./components.client.js"
-    }
-  }
-}
+{
+  "sideEffects": false,
+  "imports": {
+    "#components": {
+      "react-server": "./components.server.js",
+      "default": "./components.client.js"
+    }
+  }
+}

package/dist/esm/server/InsforgeProvider.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/server/InsforgeProvider.tsx"],"sourcesContent":["import type { ReactNode } from 'react';\nimport { InsforgeBrowserProvider } from '../client/provider';\nimport type { InsforgeProviderProps, InitialAuthState } from '@insforge/react';\nimport { cookies } from 'next/headers';\nimport { COOKIE_NAMES, parseUserCookie } from '../lib/cookies';\n\nexport interface InsforgeServerProviderProps extends Omit<InsforgeProviderProps, 'initialState'> {\n children: ReactNode;\n /*\n The base URL of your InsForge backend.\n \n @deprecated Use `InsforgeBrowserProvider` in a client component instead.\n * This prop is kept for backward compatibility only.\n /\n baseUrl?: string;\n /\n The anonymous key for your InsForge backend.\n \n @deprecated Use `InsforgeBrowserProvider` in a client component instead.\n * This prop is kept for backward compatibility only.\n /\n anonKey?: string;\n /\n Opt into dynamic rendering to read auth state from cookies during SSR.\n \n - When true: Reads cookies on server, prevents content flashing, opts into dynamic rendering\n * - When false: Static rendering, may see brief content flash during hydration\n \n @default true\n /\n dynamic?: boolean;\n}\n\n/\n @deprecated Use `InsforgeServerProviderProps` instead.\n /\nexport type InsforgeProviderServerProps = InsforgeServerProviderProps;\n\n/\n Get initial auth state from cookies (server-side)\n \n This helper reads the authentication state from cookies set by the SDK.\n * Use this in Server Components to get the initial auth state and pass it\n * to `InsforgeBrowserProvider` via the `initialState` prop.\n \n This prevents hydration mismatches by ensuring SSR and client render have the same state.\n \n @example\n * ```tsx\n * // app/layout.tsx (Server Component)\n * import { getAuthFromCookies } from '@insforge/nextjs';\n * import { Providers } from './providers';\n \n export default async function RootLayout({ children }) {\n * const initialState = await getAuthFromCookies();\n \n return (\n * <html>\n * <body>\n * <Providers initialState={initialState}>\n * {children}\n * </Providers>\n * </body>\n * </html>\n * );\n * }\n * ```\n \n @returns Initial auth state with user and userId, or null values if not authenticated\n /\nexport async function getAuthFromCookies(): Promise<InitialAuthState> {\n try {\n const cookieStore = await cookies();\n\n // Read session token from cookie (set by middleware or /api/auth route)\n const token = cookieStore.get(COOKIE_NAMES.SESSION)?.value \|\| null;\n\n if (!token) {\n // Not authenticated - return null to indicate signed out\n return {\n user: null,\n userId: null,\n };\n }\n\n // Read user identity from cookie (set by middleware or /api/auth route)\n const userCookie = cookieStore.get(COOKIE_NAMES.USER)?.value;\n\n try {\n const user = parseUserCookie(userCookie);\n\n // Return basic user info from cookie\n // This is lightweight data for SSR hydration only\n // Full profile will be loaded by SDK's ~~getCurrentUser~~() after hydration\n return {\n user,\n userId: user?.id \|\| null,\n };\n } catch {\n // Invalid user data in cookie\n return {\n user: null,\n userId: null,\n };\n }\n } catch (error) {\n // Error reading cookies (might be in middleware or edge runtime)\n console.error('[Insforge] Error reading cookies:', error);\n return {\n user: null,\n userId: null,\n };\n }\n}\n\n/\n @deprecated This component is deprecated. Use `InsforgeBrowserProvider` instead.\n \n This Server Component wrapper doesn't work correctly because SDK client instances\n * (class objects) cannot be serialized and passed from Server to Client Components.\n \n ---\n \n ## Migration Guide\n \n ### Before (deprecated):\n * ```tsx\n * // app/layout.tsx\n * import { InsforgeServerProvider } from '@insforge/nextjs';\n * import { insforge } from '@/lib/insforge';\n \n export default function RootLayout({ children }) {\n * return (\n * <InsforgeServerProvider client={insforge}> // ❌ This fails!\n * {children}\n * </InsforgeServerProvider>\n * );\n * }\n * ```\n \n ### After (recommended):\n \n Step 1: Create a client-side Providers component:\n * ```tsx\n * // app/providers.tsx\n * 'use client';\n * import { InsforgeBrowserProvider, type InitialAuthState } from '@insforge/nextjs';\n * import { insforge } from '@/lib/insforge';\n \n export function Providers({\n * children,\n * initialState,\n * }: {\n * children: React.ReactNode;\n * initialState?: InitialAuthState;\n * }) {\n * return (\n * <InsforgeBrowserProvider client={insforge} initialState={initialState}>\n * {children}\n * </InsforgeBrowserProvider>\n * );\n * }\n * ```\n \n Step 2: Use it in your layout:\n * ```tsx\n * // app/layout.tsx\n * import { getAuthFromCookies } from '@insforge/nextjs';\n * import { Providers } from './providers';\n \n export default async function RootLayout({ children }) {\n * const initialState = await getAuthFromCookies();\n \n return (\n * <html>\n * <body>\n * <Providers initialState={initialState}>\n * {children}\n * </Providers>\n * </body>\n * </html>\n * );\n * }\n * ```\n \n ---\n \n @see InsforgeBrowserProvider - The recommended client-side provider\n * @see getAuthFromCookies - Helper to get initial auth state for SSR\n /\nexport async function InsforgeServerProvider(\n props: InsforgeServerProviderProps\n): Promise<React.JSX.Element> {\n const { children, dynamic = true, baseUrl, anonKey, ...restProps } = props;\n\n if (baseUrl \|\| anonKey) {\n console.warn(\n '[Insforge] ⚠️ InsforgeServerProvider is deprecated and will not work correctly.\\n' +\n 'SDK client instances cannot be passed from Server to Client Components in Next.js.\\n\\n' +\n 'Please migrate to InsforgeBrowserProvider:\\n' +\n '1. Create a client component (e.g., app/providers.tsx) with \"use client\"\\n' +\n '2. Use InsforgeBrowserProvider with your SDK client in that component\\n' +\n '3. Use getAuthFromCookies() in your layout to pass initialState\\n\\n' +\n 'See: https://insforge.com/docs/nextjs/migration'\n );\n }\n\n // Only read cookies if dynamic=true (opts into dynamic rendering)\n // When dynamic=false, Next.js can statically generate the page\n const initialAuth = dynamic ? await getAuthFromCookies() : { user: null, userId: null };\n\n // Note: This will fail at runtime because `client` is a class instance\n // We still attempt to render for backward compatibility, but it won't work\n return (\n <InsforgeBrowserProvider initialState={initialAuth} {...restProps}>\n {children}\n </InsforgeBrowserProvider>\n );\n}\n\n/\n @deprecated Use `InsforgeServerProvider` instead (which is also deprecated).\n * Migrate to `InsforgeBrowserProvider` for proper Next.js App Router support.\n */\nexport const InsforgeProvider = InsforgeServerProvider;\n"],"mappings":"AAsNI;AArNJ,SAAS,+BAA+B;AAExC,SAAS,eAAe;AACxB,SAAS,cAAc,uBAAuB;AAkE9C,eAAsB,qBAAgD;AACpE,MAAI;AACF,UAAM,cAAc,MAAM,QAAQ;AAGlC,UAAM,QAAQ,YAAY,IAAI,aAAa,OAAO,GAAG,SAAS;AAE9D,QAAI,CAAC,OAAO;AAEV,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAGA,UAAM,aAAa,YAAY,IAAI,aAAa,IAAI,GAAG;AAEvD,QAAI;AACF,YAAM,OAAO,gBAAgB,UAAU;AAKvC,aAAO;AAAA,QACL;AAAA,QACA,QAAQ,MAAM,MAAM;AAAA,MACtB;AAAA,IACF,QAAQ;AAEN,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AAEd,YAAQ,MAAM,qCAAqC,KAAK;AACxD,WAAO;AAAA,MACL,MAAM;AAAA,MACN,QAAQ;AAAA,IACV;AAAA,EACF;AACF;AA6EA,eAAsB,uBACpB,OAC4B;AAC5B,QAAM,EAAE,UAAU,UAAU,MAAM,SAAS,SAAS,GAAG,UAAU,IAAI;AAErE,MAAI,WAAW,SAAS;AACtB,YAAQ;AAAA,MACN;AAAA,IAOF;AAAA,EACF;AAIA,QAAM,cAAc,UAAU,MAAM,mBAAmB,IAAI,EAAE,MAAM,MAAM,QAAQ,KAAK;AAItF,SACE,oBAAC,2BAAwB,cAAc,aAAc,GAAG,WACrD,UACH;AAEJ;AAMO,MAAM,mBAAmB;","names":[]}
1	+ {"version":3,"sources":["../../../src/server/InsforgeProvider.tsx"],"sourcesContent":["import type { ReactNode } from 'react';\r\nimport { InsforgeBrowserProvider } from '../client/provider';\r\nimport type { InsforgeProviderProps, InitialAuthState } from '@insforge/react';\r\nimport { cookies } from 'next/headers';\r\nimport { COOKIE_NAMES, parseUserCookie } from '../lib/cookies';\r\n\r\nexport interface InsforgeServerProviderProps extends Omit<InsforgeProviderProps, 'initialState'> {\r\n children: ReactNode;\r\n /*\r\n The base URL of your InsForge backend.\r\n \r\n @deprecated Use `InsforgeBrowserProvider` in a client component instead.\r\n * This prop is kept for backward compatibility only.\r\n /\r\n baseUrl?: string;\r\n /\r\n The anonymous key for your InsForge backend.\r\n \r\n @deprecated Use `InsforgeBrowserProvider` in a client component instead.\r\n * This prop is kept for backward compatibility only.\r\n /\r\n anonKey?: string;\r\n /\r\n Opt into dynamic rendering to read auth state from cookies during SSR.\r\n \r\n - When true: Reads cookies on server, prevents content flashing, opts into dynamic rendering\r\n * - When false: Static rendering, may see brief content flash during hydration\r\n \r\n @default true\r\n /\r\n dynamic?: boolean;\r\n}\r\n\r\n/\r\n @deprecated Use `InsforgeServerProviderProps` instead.\r\n /\r\nexport type InsforgeProviderServerProps = InsforgeServerProviderProps;\r\n\r\n/\r\n Get initial auth state from cookies (server-side)\r\n \r\n This helper reads the authentication state from cookies set by the SDK.\r\n * Use this in Server Components to get the initial auth state and pass it\r\n * to `InsforgeBrowserProvider` via the `initialState` prop.\r\n \r\n This prevents hydration mismatches by ensuring SSR and client render have the same state.\r\n \r\n @example\r\n * ```tsx\r\n * // app/layout.tsx (Server Component)\r\n * import { getAuthFromCookies } from '@insforge/nextjs';\r\n * import { Providers } from './providers';\r\n \r\n export default async function RootLayout({ children }) {\r\n * const initialState = await getAuthFromCookies();\r\n \r\n return (\r\n * <html>\r\n * <body>\r\n * <Providers initialState={initialState}>\r\n * {children}\r\n * </Providers>\r\n * </body>\r\n * </html>\r\n * );\r\n * }\r\n * ```\r\n \r\n @returns Initial auth state with user and userId, or null values if not authenticated\r\n /\r\nexport async function getAuthFromCookies(): Promise<InitialAuthState> {\r\n try {\r\n const cookieStore = await cookies();\r\n\r\n // Read session token from cookie (set by middleware or /api/auth route)\r\n const token = cookieStore.get(COOKIE_NAMES.SESSION)?.value \|\| null;\r\n\r\n if (!token) {\r\n // Not authenticated - return null to indicate signed out\r\n return {\r\n user: null,\r\n userId: null,\r\n };\r\n }\r\n\r\n // Read user identity from cookie (set by middleware or /api/auth route)\r\n const userCookie = cookieStore.get(COOKIE_NAMES.USER)?.value;\r\n\r\n try {\r\n const user = parseUserCookie(userCookie);\r\n\r\n // Return basic user info from cookie\r\n // This is lightweight data for SSR hydration only\r\n // Full profile will be loaded by SDK's getCurrentSession() after hydration\r\n return {\r\n user,\r\n userId: user?.id \|\| null,\r\n };\r\n } catch {\r\n // Invalid user data in cookie\r\n return {\r\n user: null,\r\n userId: null,\r\n };\r\n }\r\n } catch (error) {\r\n // Error reading cookies (might be in middleware or edge runtime)\r\n console.error('[Insforge] Error reading cookies:', error);\r\n return {\r\n user: null,\r\n userId: null,\r\n };\r\n }\r\n}\r\n\r\n/\r\n @deprecated This component is deprecated. Use `InsforgeBrowserProvider` instead.\r\n \r\n This Server Component wrapper doesn't work correctly because SDK client instances\r\n * (class objects) cannot be serialized and passed from Server to Client Components.\r\n \r\n ---\r\n \r\n ## Migration Guide\r\n \r\n ### Before (deprecated):\r\n * ```tsx\r\n * // app/layout.tsx\r\n * import { InsforgeServerProvider } from '@insforge/nextjs';\r\n * import { insforge } from '@/lib/insforge';\r\n \r\n export default function RootLayout({ children }) {\r\n * return (\r\n * <InsforgeServerProvider client={insforge}> // ❌ This fails!\r\n * {children}\r\n * </InsforgeServerProvider>\r\n * );\r\n * }\r\n * ```\r\n \r\n ### After (recommended):\r\n \r\n Step 1: Create a client-side Providers component:\r\n * ```tsx\r\n * // app/providers.tsx\r\n * 'use client';\r\n * import { InsforgeBrowserProvider, type InitialAuthState } from '@insforge/nextjs';\r\n * import { insforge } from '@/lib/insforge';\r\n \r\n export function Providers({\r\n * children,\r\n * initialState,\r\n * }: {\r\n * children: React.ReactNode;\r\n * initialState?: InitialAuthState;\r\n * }) {\r\n * return (\r\n * <InsforgeBrowserProvider client={insforge} initialState={initialState}>\r\n * {children}\r\n * </InsforgeBrowserProvider>\r\n * );\r\n * }\r\n * ```\r\n \r\n Step 2: Use it in your layout:\r\n * ```tsx\r\n * // app/layout.tsx\r\n * import { getAuthFromCookies } from '@insforge/nextjs';\r\n * import { Providers } from './providers';\r\n \r\n export default async function RootLayout({ children }) {\r\n * const initialState = await getAuthFromCookies();\r\n \r\n return (\r\n * <html>\r\n * <body>\r\n * <Providers initialState={initialState}>\r\n * {children}\r\n * </Providers>\r\n * </body>\r\n * </html>\r\n * );\r\n * }\r\n * ```\r\n \r\n ---\r\n \r\n @see InsforgeBrowserProvider - The recommended client-side provider\r\n * @see getAuthFromCookies - Helper to get initial auth state for SSR\r\n /\r\nexport async function InsforgeServerProvider(\r\n props: InsforgeServerProviderProps\r\n): Promise<React.JSX.Element> {\r\n const { children, dynamic = true, baseUrl, anonKey, ...restProps } = props;\r\n\r\n if (baseUrl \|\| anonKey) {\r\n console.warn(\r\n '[Insforge] ⚠️ InsforgeServerProvider is deprecated and will not work correctly.\\n' +\r\n 'SDK client instances cannot be passed from Server to Client Components in Next.js.\\n\\n' +\r\n 'Please migrate to InsforgeBrowserProvider:\\n' +\r\n '1. Create a client component (e.g., app/providers.tsx) with \"use client\"\\n' +\r\n '2. Use InsforgeBrowserProvider with your SDK client in that component\\n' +\r\n '3. Use getAuthFromCookies() in your layout to pass initialState\\n\\n' +\r\n 'See: https://insforge.com/docs/nextjs/migration'\r\n );\r\n }\r\n\r\n // Only read cookies if dynamic=true (opts into dynamic rendering)\r\n // When dynamic=false, Next.js can statically generate the page\r\n const initialAuth = dynamic ? await getAuthFromCookies() : { user: null, userId: null };\r\n\r\n // Note: This will fail at runtime because `client` is a class instance\r\n // We still attempt to render for backward compatibility, but it won't work\r\n return (\r\n <InsforgeBrowserProvider initialState={initialAuth} {...restProps}>\r\n {children}\r\n </InsforgeBrowserProvider>\r\n );\r\n}\r\n\r\n/\r\n @deprecated Use `InsforgeServerProvider` instead (which is also deprecated).\r\n * Migrate to `InsforgeBrowserProvider` for proper Next.js App Router support.\r\n */\r\nexport const InsforgeProvider = InsforgeServerProvider;\r\n"],"mappings":"AAsNI;AArNJ,SAAS,+BAA+B;AAExC,SAAS,eAAe;AACxB,SAAS,cAAc,uBAAuB;AAkE9C,eAAsB,qBAAgD;AACpE,MAAI;AACF,UAAM,cAAc,MAAM,QAAQ;AAGlC,UAAM,QAAQ,YAAY,IAAI,aAAa,OAAO,GAAG,SAAS;AAE9D,QAAI,CAAC,OAAO;AAEV,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAGA,UAAM,aAAa,YAAY,IAAI,aAAa,IAAI,GAAG;AAEvD,QAAI;AACF,YAAM,OAAO,gBAAgB,UAAU;AAKvC,aAAO;AAAA,QACL;AAAA,QACA,QAAQ,MAAM,MAAM;AAAA,MACtB;AAAA,IACF,QAAQ;AAEN,aAAO;AAAA,QACL,MAAM;AAAA,QACN,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF,SAAS,OAAO;AAEd,YAAQ,MAAM,qCAAqC,KAAK;AACxD,WAAO;AAAA,MACL,MAAM;AAAA,MACN,QAAQ;AAAA,IACV;AAAA,EACF;AACF;AA6EA,eAAsB,uBACpB,OAC4B;AAC5B,QAAM,EAAE,UAAU,UAAU,MAAM,SAAS,SAAS,GAAG,UAAU,IAAI;AAErE,MAAI,WAAW,SAAS;AACtB,YAAQ;AAAA,MACN;AAAA,IAOF;AAAA,EACF;AAIA,QAAM,cAAc,UAAU,MAAM,mBAAmB,IAAI,EAAE,MAAM,MAAM,QAAQ,KAAK;AAItF,SACE,oBAAC,2BAAwB,cAAc,aAAc,GAAG,WACrD,UACH;AAEJ;AAMO,MAAM,mBAAmB;","names":[]}

package/dist/esm/server/auth.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/server/auth.ts"],"sourcesContent":["import { cookies } from 'next/headers';\nimport type { InsforgeUser } from '@insforge/shared';\nimport { COOKIE_NAMES, parseUserCookie } from '../lib/cookies';\n\n/*\n Session information extracted from cookies\n /\nexport interface InsforgeAuth {\n /\n The current user's ID, or null if not authenticated\n /\n userId: string \| null;\n\n /\n The current session token, or null if not authenticated\n /\n token: string \| null;\n\n /\n User information (email, name) if available\n /\n user: InsforgeUser \| null;\n}\n\n/\n Get authentication information from cookies in Server Components,\n * Route Handlers, and Server Actions.\n \n This function reads the HTTP-only cookies set by the middleware\n * and returns user authentication data.\n \n @example\n * ```ts\n * // In a Server Component\n * import { auth } from '@insforge/nextjs/server';\n \n export default async function Page() {\n * const { userId, token } = await auth();\n \n if (!userId) {\n * return <div>Not authenticated</div>;\n * }\n \n return <div>User ID: {userId}</div>;\n * }\n * ```\n \n @example\n * ```ts\n * // In an API Route Handler\n * import { auth } from '@insforge/nextjs/server';\n * import { createClient } from '@insforge/sdk';\n \n export async function GET() {\n * const { userId, token } = await auth();\n \n if (!userId \|\| !token) {\n * return Response.json({ error: 'Unauthorized' }, { status: 401 });\n * }\n \n // Use token with SDK\n * const insforge = createClient({\n * baseUrl: process.env.INSFORGE_BASE_URL!,\n * edgeFunctionToken: token,\n * });\n \n const result = await insforge.database.from('posts').select();\n * return Response.json(result.data);\n * }\n * ```\n \n @example\n * ```ts\n * // In a Server Action\n * 'use server';\n \n import { auth } from '@insforge/nextjs/server';\n \n export async function createPost(formData: FormData) {\n * const { userId } = await auth();\n \n if (!userId) {\n * throw new Error('Not authenticated');\n * }\n \n // Create post with userId\n * }\n * ```\n */\nexport async function auth(): Promise<InsforgeAuth> {\n const cookieStore = await cookies();\n\n // Get session token\n const token = cookieStore.get(COOKIE_NAMES.SESSION)?.value \|\| null;\n\n // Get user info using centralized parsing\n const userCookie = cookieStore.get(COOKIE_NAMES.USER)?.value;\n const user = parseUserCookie(userCookie);\n const userId = user?.id \|\| null;\n\n return {\n userId,\n token,\n user,\n };\n}\n"],"mappings":"AAAA,SAAS,eAAe;AAExB,SAAS,cAAc,uBAAuB;AAuF9C,eAAsB,OAA8B;AAClD,QAAM,cAAc,MAAM,QAAQ;AAGlC,QAAM,QAAQ,YAAY,IAAI,aAAa,OAAO,GAAG,SAAS;AAG9D,QAAM,aAAa,YAAY,IAAI,aAAa,IAAI,GAAG;AACvD,QAAM,OAAO,gBAAgB,UAAU;AACvC,QAAM,SAAS,MAAM,MAAM;AAE3B,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/server/auth.ts"],"sourcesContent":["import { cookies } from 'next/headers';\r\nimport type { InsforgeUser } from '@insforge/shared';\r\nimport { COOKIE_NAMES, parseUserCookie } from '../lib/cookies';\r\n\r\n/*\r\n Session information extracted from cookies\r\n /\r\nexport interface InsforgeAuth {\r\n /\r\n The current user's ID, or null if not authenticated\r\n /\r\n userId: string \| null;\r\n\r\n /\r\n The current session token, or null if not authenticated\r\n /\r\n token: string \| null;\r\n\r\n /\r\n User information (email, name) if available\r\n /\r\n user: InsforgeUser \| null;\r\n}\r\n\r\n/\r\n Get authentication information from cookies in Server Components,\r\n * Route Handlers, and Server Actions.\r\n \r\n This function reads the HTTP-only cookies set by the middleware\r\n * and returns user authentication data.\r\n \r\n @example\r\n * ```ts\r\n * // In a Server Component\r\n * import { auth } from '@insforge/nextjs/server';\r\n \r\n export default async function Page() {\r\n * const { userId, token } = await auth();\r\n \r\n if (!userId) {\r\n * return <div>Not authenticated</div>;\r\n * }\r\n \r\n return <div>User ID: {userId}</div>;\r\n * }\r\n * ```\r\n \r\n @example\r\n * ```ts\r\n * // In an API Route Handler\r\n * import { auth } from '@insforge/nextjs/server';\r\n * import { createClient } from '@insforge/sdk';\r\n \r\n export async function GET() {\r\n * const { userId, token } = await auth();\r\n \r\n if (!userId \|\| !token) {\r\n * return Response.json({ error: 'Unauthorized' }, { status: 401 });\r\n * }\r\n \r\n // Use token with SDK\r\n * const insforge = createClient({\r\n * baseUrl: process.env.INSFORGE_BASE_URL!,\r\n * edgeFunctionToken: token,\r\n * });\r\n \r\n const result = await insforge.database.from('posts').select();\r\n * return Response.json(result.data);\r\n * }\r\n * ```\r\n \r\n @example\r\n * ```ts\r\n * // In a Server Action\r\n * 'use server';\r\n \r\n import { auth } from '@insforge/nextjs/server';\r\n \r\n export async function createPost(formData: FormData) {\r\n * const { userId } = await auth();\r\n \r\n if (!userId) {\r\n * throw new Error('Not authenticated');\r\n * }\r\n \r\n // Create post with userId\r\n * }\r\n * ```\r\n */\r\nexport async function auth(): Promise<InsforgeAuth> {\r\n const cookieStore = await cookies();\r\n\r\n // Get session token\r\n const token = cookieStore.get(COOKIE_NAMES.SESSION)?.value \|\| null;\r\n\r\n // Get user info using centralized parsing\r\n const userCookie = cookieStore.get(COOKIE_NAMES.USER)?.value;\r\n const user = parseUserCookie(userCookie);\r\n const userId = user?.id \|\| null;\r\n\r\n return {\r\n userId,\r\n token,\r\n user,\r\n };\r\n}\r\n"],"mappings":"AAAA,SAAS,eAAe;AAExB,SAAS,cAAc,uBAAuB;AAuF9C,eAAsB,OAA8B;AAClD,QAAM,cAAc,MAAM,QAAQ;AAGlC,QAAM,QAAQ,YAAY,IAAI,aAAa,OAAO,GAAG,SAAS;AAG9D,QAAM,aAAa,YAAY,IAAI,aAAa,IAAI,GAAG;AACvD,QAAM,OAAO,gBAAgB,UAAU;AACvC,QAAM,SAAS,MAAM,MAAM;AAE3B,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;","names":[]}

package/dist/esm/server/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/server/index.ts"],"sourcesContent":["// Server-side exports (Server Components, no 'use client')\n\n// Auth helpers\nexport { getAuthFromCookies } from './InsforgeProvider';\nexport { auth } from './auth';\nexport type { InsforgeAuth } from './auth';\n\n// Deprecated: Server Provider (doesn't work due to Next.js serialization constraints)\n// Use InsforgeBrowserProvider directly in a client component instead\nexport {\n InsforgeServerProvider,\n InsforgeProvider, // Deprecated alias\n type InsforgeServerProviderProps,\n type InsforgeProviderServerProps, // Deprecated alias\n} from './InsforgeProvider';\n"],"mappings":"AAGA,SAAS,0BAA0B;AACnC,SAAS,YAAY;AAKrB;AAAA,EACE;AAAA,EACA;AAAA,OAGK;","names":[]}
1	+ {"version":3,"sources":["../../../src/server/index.ts"],"sourcesContent":["// Server-side exports (Server Components, no 'use client')\r\n\r\n// Auth helpers\r\nexport { getAuthFromCookies } from './InsforgeProvider';\r\nexport { auth } from './auth';\r\nexport type { InsforgeAuth } from './auth';\r\n\r\n// Deprecated: Server Provider (doesn't work due to Next.js serialization constraints)\r\n// Use InsforgeBrowserProvider directly in a client component instead\r\nexport {\r\n InsforgeServerProvider,\r\n InsforgeProvider, // Deprecated alias\r\n type InsforgeServerProviderProps,\r\n type InsforgeProviderServerProps, // Deprecated alias\r\n} from './InsforgeProvider';\r\n"],"mappings":"AAGA,SAAS,0BAA0B;AACnC,SAAS,YAAY;AAKrB;AAAA,EACE;AAAA,EACA;AAAA,OAGK;","names":[]}

package/dist/index.d.ts CHANGED Viewed

@@ -5,7 +5,6 @@ export { AuthBranding, AuthContainer, AuthContainerProps, AuthDivider, AuthDivid
 export { useAuth, usePublicAuthConfig, useUser } from './client/hooks.js';
 export { InitialAuthState } from '@insforge/react';
 import 'react/jsx-runtime';
-import '@insforge/sdk';
 import '@insforge/shared';
 import 'react';
 import '@insforge/shared-schemas';