@insforge/react 1.0.7 → 1.0.9-dev.0

package/dist/index.d.cts

@@ -36,9 +36,9 @@ interface InsforgeProviderProps {
      */
     afterSignInUrl?: string;
     onAuthChange?: (user: InsforgeUser | null) => void;
-    onSignIn?: (authToken: string) => Promise<void>;
+    onSignIn?: (authToken: string, user: InsforgeUser) => Promise<void>;
     onSignOut?: () => Promise<void>;
-    onRefresh?: (authToken: string) => Promise<void>;
+    onRefresh?: (authToken: string, user: InsforgeUser) => Promise<void>;
     /**
      * Initial auth state from server (for SSR hydration)
      * @internal - Not intended for public use, used by Next.js package

package/dist/index.d.ts

@@ -36,9 +36,9 @@ interface InsforgeProviderProps {
      */
     afterSignInUrl?: string;
     onAuthChange?: (user: InsforgeUser | null) => void;
-    onSignIn?: (authToken: string) => Promise<void>;
+    onSignIn?: (authToken: string, user: InsforgeUser) => Promise<void>;
     onSignOut?: () => Promise<void>;
-    onRefresh?: (authToken: string) => Promise<void>;
+    onRefresh?: (authToken: string, user: InsforgeUser) => Promise<void>;
     /**
      * Initial auth state from server (for SSR hydration)
      * @internal - Not intended for public use, used by Next.js package

package/dist/index.js

@@ -562,7 +562,7 @@ var InsforgeManager = class _InsforgeManager {
       }
       if (this.config.onRefresh && session.accessToken) {
         try {
-          await this.config.onRefresh(session.accessToken);
+          await this.config.onRefresh(session.accessToken, session.user);
         } catch (error) {
           if (error instanceof Error) {
             console.error("[InsforgeManager] Error syncing token on refresh:", error.message);
@@ -607,39 +607,22 @@ var InsforgeManager = class _InsforgeManager {
     }
   }
   // Helper to handle auth success
-  async handleAuthSuccess(authToken, fallbackUser) {
-    const userResult = await this.sdk.auth.getCurrentUser();
-    if (userResult.data) {
-      const userData = {
-        id: userResult.data.user.id,
-        email: userResult.data.user.email,
-        profile: userResult.data.user.profile
-      };
-      this.user = userData;
+  async handleAuthSuccess(accessToken, user) {
+    if (user) {
+      this.user = user;
       this.notifyListeners();
       if (this.config.onAuthChange) {
-        this.config.onAuthChange(userData);
+        this.config.onAuthChange(user);
       }
       if (this.config.onSignIn) {
         try {
-          await this.config.onSignIn(authToken);
+          await this.config.onSignIn(accessToken, user);
         } catch (error) {
           if (error instanceof Error) {
             console.error("[InsforgeManager] Error syncing token to cookie:", error.message);
           }
         }
       }
-    } else if (fallbackUser) {
-      const userData = {
-        id: fallbackUser.id || "",
-        email: fallbackUser.email || "",
-        profile: fallbackUser.profile || null
-      };
-      this.user = userData;
-      this.notifyListeners();
-      if (this.config.onAuthChange) {
-        this.config.onAuthChange(userData);
-      }
     }
   }
   // Business methods
@@ -654,7 +637,7 @@ var InsforgeManager = class _InsforgeManager {
         sdkResult.data.user ? {
           id: sdkResult.data.user.id,
           email: sdkResult.data.user.email,
-          profile: sdkResult.data.user.profile || void 0
+          profile: sdkResult.data.user.profile ?? null
         } : void 0
       );
       return sdkResult.data;
@@ -669,13 +652,16 @@ var InsforgeManager = class _InsforgeManager {
   async signUp(email, password) {
     const sdkResult = await this.sdk.auth.signUp({ email, password });
     if (sdkResult.data) {
+      if (sdkResult.data.requireEmailVerification) {
+        return sdkResult.data;
+      }
       if (sdkResult.data.accessToken) {
         await this.handleAuthSuccess(
           sdkResult.data.accessToken,
           sdkResult.data.user ? {
             id: sdkResult.data.user.id,
             email: sdkResult.data.user.email,
-            profile: sdkResult.data.user.profile || void 0
+            profile: sdkResult.data.user.profile ?? null
           } : void 0
         );
       }
@@ -754,21 +740,20 @@ var InsforgeManager = class _InsforgeManager {
   async verifyEmail(otp, email) {
     const sdkResult = await this.sdk.auth.verifyEmail({ otp, email: email || void 0 });
     if (sdkResult.data) {
+      await this.handleAuthSuccess(
+        sdkResult.data.accessToken,
+        sdkResult.data.user ? {
+          id: sdkResult.data.user.id,
+          email: sdkResult.data.user.email,
+          profile: sdkResult.data.user.profile ?? null
+        } : void 0
+      );
       return sdkResult.data;
     } else {
       return {
-        user: {
-          id: "",
-          createdAt: "",
-          email: "",
-          emailVerified: false,
-          updatedAt: "",
-          metadata: null,
-          profile: null
-        },
-        accessToken: "",
-        redirectTo: void 0,
-        csrfToken: void 0
+        error: sdkResult.error?.message || "Failed to verify email",
+        statusCode: sdkResult.error?.statusCode,
+        errorCode: sdkResult.error?.error
       };
     }
   }
@@ -2200,19 +2185,7 @@ function InsforgeProviderCore({
     const unsubscribe = manager.subscribe((newState) => {
       setState(newState);
     });
-    void manager.initialize().then(() => {
-      const params = new URLSearchParams(window.location.search);
-      if (params.has("access_token")) {
-        const url = new URL(window.location.href);
-        url.searchParams.delete("access_token");
-        url.searchParams.delete("user_id");
-        url.searchParams.delete("email");
-        url.searchParams.delete("name");
-        url.searchParams.delete("csrf_token");
-        url.searchParams.delete("error");
-        window.history.replaceState({}, document.title, url.toString());
-      }
-    });
+    void manager.initialize();
     return () => {
       unsubscribe();
     };
@@ -2267,7 +2240,7 @@ function useInsforge() {
       sendVerificationEmail: () => Promise.resolve(null),
       sendResetPasswordEmail: () => Promise.resolve(null),
       resetPassword: () => Promise.resolve(null),
-      verifyEmail: () => Promise.resolve(null),
+      verifyEmail: () => Promise.resolve({ error: "SSR mode" }),
       exchangeResetPasswordToken: () => Promise.resolve({ error: { message: "SSR mode" } }),
       loginWithOAuth: () => Promise.resolve(),
       getPublicAuthConfig: () => Promise.resolve(null),
@@ -4151,7 +4124,7 @@ function SignInForm({
     ] })
   ] });
 }
-function SignIn({ onError, ...uiProps }) {
+function SignIn({ onSuccess, onError, ...uiProps }) {
   const { signIn, verifyEmail, loginWithOAuth } = useInsforge();
   const { authConfig } = usePublicAuthConfig();
   const [email, setEmail] = useState("");
@@ -4176,19 +4149,12 @@ function SignIn({ onError, ...uiProps }) {
         }
         throw new Error(result.error);
       }
-      const { user, accessToken, redirectTo } = result;
-      const csrfToken = result.csrfToken;
-      if (user) {
-        const finalUrl = new URL(redirectTo || redirectUrl || "", window.location.origin);
-        finalUrl.searchParams.set("access_token", accessToken);
-        finalUrl.searchParams.set("user_id", user.id);
-        finalUrl.searchParams.set("email", user.email);
-        finalUrl.searchParams.set("name", user.profile?.name || "");
-        if (csrfToken) {
-          finalUrl.searchParams.set("csrf_token", csrfToken);
-        }
-        window.location.href = finalUrl.toString();
+      const { redirectTo, user, accessToken, csrfToken } = result;
+      if (onSuccess) {
+        onSuccess(accessToken, user, csrfToken);
       }
+      const finalUrl = new URL(redirectTo || redirectUrl || "", window.location.origin);
+      window.location.href = finalUrl.toString();
     } catch (err) {
       const errorMessage = err instanceof Error ? err.message : "Sign in failed";
       setError(errorMessage);
@@ -4203,17 +4169,10 @@ function SignIn({ onError, ...uiProps }) {
     setError("");
     try {
       const result = await verifyEmail(code, email);
-      if (!result) {
+      if ("error" in result) {
         throw new Error("Verification failed");
       }
       const finalUrl = new URL(result.redirectTo || redirectUrl || "", window.location.origin);
-      finalUrl.searchParams.set("access_token", result.accessToken);
-      finalUrl.searchParams.set("user_id", result.user.id);
-      finalUrl.searchParams.set("email", result.user.email);
-      finalUrl.searchParams.set("name", result.user.profile?.name || "");
-      if (result.csrfToken) {
-        finalUrl.searchParams.set("csrf_token", result.csrfToken);
-      }
       window.location.href = finalUrl.toString();
     } catch (err) {
       const errorMessage = err instanceof Error ? err.message : "Invalid verification code";
@@ -4416,7 +4375,7 @@ function checkPasswordStrength(password) {
   }
   return { score, feedback };
 }
-function SignUp({ onError, ...uiProps }) {
+function SignUp({ onSuccess, onError, ...uiProps }) {
   const { signUp, verifyEmail, loginWithOAuth } = useInsforge();
   const { authConfig } = usePublicAuthConfig();
   const [email, setEmail] = useState("");
@@ -4462,21 +4421,17 @@ function SignUp({ onError, ...uiProps }) {
       if ("error" in result) {
         throw new Error(result.error);
       }
-      if (result.requireEmailVerification && !result.accessToken) {
+      if (result.requireEmailVerification) {
         setStep("awaiting-verification");
         setLoading(false);
         return;
       }
-      if (result.accessToken && result.user) {
-        const csrfToken = result.csrfToken;
-        const finalUrl = new URL(result.redirectTo || redirectUrl || "", window.location.origin);
-        finalUrl.searchParams.set("access_token", result.accessToken);
-        finalUrl.searchParams.set("user_id", result.user.id);
-        finalUrl.searchParams.set("email", result.user.email);
-        finalUrl.searchParams.set("name", result.user.profile?.name || "");
-        if (csrfToken) {
-          finalUrl.searchParams.set("csrf_token", csrfToken);
+      const { redirectTo, user, accessToken, csrfToken } = result;
+      if (accessToken && user) {
+        if (onSuccess) {
+          onSuccess(accessToken, user, csrfToken);
         }
+        const finalUrl = new URL(redirectTo || redirectUrl || "", window.location.origin);
         window.location.href = finalUrl.toString();
       }
     } catch (err) {
@@ -4493,17 +4448,10 @@ function SignUp({ onError, ...uiProps }) {
     setError("");
     try {
       const result = await verifyEmail(code, email);
-      if (!result) {
+      if ("error" in result) {
         throw new Error("Verification failed");
       }
       const finalUrl = new URL(result.redirectTo || redirectUrl || "", window.location.origin);
-      finalUrl.searchParams.set("access_token", result.accessToken);
-      finalUrl.searchParams.set("user_id", result.user.id);
-      finalUrl.searchParams.set("email", result.user.email);
-      finalUrl.searchParams.set("name", result.user.profile?.name || "");
-      if (result.csrfToken) {
-        finalUrl.searchParams.set("csrf_token", result.csrfToken);
-      }
       window.location.href = finalUrl.toString();
     } catch (err) {
       const errorMessage = err instanceof Error ? err.message : "Invalid verification code";
@@ -5077,8 +5025,8 @@ function VerifyEmail({ token: token2, onSuccess, onError, ...uiProps }) {
       }
       try {
         const result = await verifyEmail(token2);
-        if (!result?.accessToken) {
-          const errorMessage = result ? "Verification succeeded but no access token received" : "Email verification failed";
+        if ("error" in result) {
+          const errorMessage = result.error || "Email verification failed";
           setError(errorMessage);
           setStatus("error");
           if (onError) {