@iqauth/sdk 2.6.4 → 2.8.1

package/dist/mobile.mjs

@@ -1,17 +1,112 @@
 import {
   IQAuthClient
-} from "./chunk-W3F4JYGP.mjs";
-import "./chunk-UNYDG2L4.mjs";
+} from "./chunk-ZLJPABB7.mjs";
+import "./chunk-NUO2I65G.mjs";
 import {
   ErrorCodes,
   IQAuthError
-} from "./chunk-6I6RM4MN.mjs";
+} from "./chunk-6PJRLRB4.mjs";
 import "./chunk-Y6FXYEAI.mjs";
 
 // src/mobile.ts
+function resolveAppState() {
+  try {
+    const rn = Function("return require")()("react-native");
+    return rn?.AppState ?? null;
+  } catch {
+    return null;
+  }
+}
 var MobileIQAuthClient = class extends IQAuthClient {
   constructor(config) {
     super({ ...config, environment: "mobile" });
+    this.appStateSub = null;
+    this.lastAppState = "active";
+    this.refreshing = false;
+    this.appStateMode = config.autoRefresh === "app-state";
+    this.leewaySeconds = config.appStateRefreshLeewaySeconds ?? 300;
+    this.onTokenRefreshCb = config.onTokenRefresh;
+    this.onAppStateRefreshError = config.onAppStateRefreshError;
+    if (this.appStateMode) {
+      const appState = config.appState !== void 0 ? config.appState : resolveAppState();
+      if (appState) this.startAppStateListener(appState);
+    }
+  }
+  /** True iff the client is configured for AppState-driven refresh. */
+  get isAppStateMode() {
+    return this.appStateMode;
+  }
+  startAppStateListener(appState) {
+    this.lastAppState = appState.currentState ?? "active";
+    const handler = (next) => {
+      const prev = this.lastAppState;
+      this.lastAppState = next;
+      if (next === "active" && prev !== "active") {
+        void this.maybeRefreshOnForeground();
+      }
+    };
+    const sub = appState.addEventListener("change", handler);
+    if (sub && typeof sub.remove === "function") {
+      this.appStateSub = sub;
+    } else if (typeof sub === "function") {
+      this.appStateSub = { remove: sub };
+    } else if (typeof appState.removeEventListener === "function") {
+      this.appStateSub = {
+        remove: () => appState.removeEventListener("change", handler)
+      };
+    } else {
+      this.appStateSub = { remove: () => {
+      } };
+    }
+  }
+  /**
+   * Public hook: call this from your own AppState handler if you've passed
+   * `appState: null` to opt out of the auto-subscription. Returns true if a
+   * refresh was attempted.
+   */
+  async refreshIfStale() {
+    return this.maybeRefreshOnForeground();
+  }
+  async maybeRefreshOnForeground() {
+    if (this.refreshing) return false;
+    if (!this.getRefreshToken()) return false;
+    if (!this.isAccessTokenStale()) return false;
+    const refreshToken = this.getRefreshToken();
+    if (!refreshToken) return false;
+    this.refreshing = true;
+    try {
+      const next = await this.auth.refreshTokens(refreshToken);
+      this.setTokens(next);
+      this.onTokenRefreshCb?.(next);
+      return true;
+    } catch (err) {
+      this.onAppStateRefreshError?.(err);
+      return false;
+    } finally {
+      this.refreshing = false;
+    }
+  }
+  isAccessTokenStale() {
+    const token = this.getAccessToken();
+    if (!token) return true;
+    try {
+      const parts = token.split(".");
+      if (parts.length !== 3) return true;
+      const payload = JSON.parse(
+        typeof atob === "function" ? atob(parts[1].replace(/-/g, "+").replace(/_/g, "/")) : Buffer.from(parts[1], "base64url").toString("utf8")
+      );
+      if (!payload.exp) return false;
+      const now = Math.floor(Date.now() / 1e3);
+      return payload.exp - now < this.leewaySeconds;
+    } catch {
+      return true;
+    }
+  }
+  /** Remove the AppState subscription. Idempotent. */
+  stop() {
+    const sub = this.appStateSub;
+    this.appStateSub = null;
+    sub?.remove();
   }
 };
 function createMobileClient(config) {

package/dist/next.d.mts

@@ -1,5 +1,6 @@
 import { IQAuthHelperConfig } from './server/handlers.mjs';
-import { J as JwtClaims } from './types-DZAflmmq.mjs';
+import { J as JwtClaims } from './types-Bn8O-OEd.mjs';
+import './tokens-B06VtvUi.mjs';
 
 /**
  * @iqauth/sdk/next — Next.js (App Router) adapter.
@@ -20,6 +21,14 @@ import { J as JwtClaims } from './types-DZAflmmq.mjs';
 interface IQAuthNextOptions extends IQAuthHelperConfig {
     /** Path prefix where the helper routes live. */
     mountPath?: string;
+    /**
+     * Cookie name the browser SDK publishes the post-login destination into
+     * before redirect. The callback handler reads it, surfaces it as `returnTo`
+     * in the JSON response body after a successful exchange, and clears it on
+     * success. Mirrors the express inline-callback adapter. Defaults to
+     * `iqauth_return_to`.
+     */
+    returnToCookieName?: string;
 }
 declare function handler(options: IQAuthNextOptions): (req: Request) => Promise<Response>;
 /**

package/dist/next.d.ts

@@ -1,5 +1,6 @@
 import { IQAuthHelperConfig } from './server/handlers.js';
-import { J as JwtClaims } from './types-DZAflmmq.js';
+import { J as JwtClaims } from './types-Bn8O-OEd.js';
+import './tokens-9F6ETrzk.js';
 
 /**
  * @iqauth/sdk/next — Next.js (App Router) adapter.
@@ -20,6 +21,14 @@ import { J as JwtClaims } from './types-DZAflmmq.js';
 interface IQAuthNextOptions extends IQAuthHelperConfig {
     /** Path prefix where the helper routes live. */
     mountPath?: string;
+    /**
+     * Cookie name the browser SDK publishes the post-login destination into
+     * before redirect. The callback handler reads it, surfaces it as `returnTo`
+     * in the JSON response body after a successful exchange, and clears it on
+     * success. Mirrors the express inline-callback adapter. Defaults to
+     * `iqauth_return_to`.
+     */
+    returnToCookieName?: string;
 }
 declare function handler(options: IQAuthNextOptions): (req: Request) => Promise<Response>;
 /**