npm - @mesob/auth-react - Versions diffs - 0.5.0 → 0.5.3 - Mend

@mesob/auth-react 0.5.0 → 0.5.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (214) hide show

package/dist/{chunk-DG6GRTPG.js → chunk-4LHFPVAY.js} RENAMED Viewed

@@ -5,7 +5,7 @@ import {
   useApi,
   useConfig,
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/profile/request-change-phone-form.tsx
 import { zodResolver } from "@hookform/resolvers/zod";
@@ -269,4 +269,4 @@ function RequestChangePhoneForm({
 export {
   RequestChangePhoneForm
 };
-//# sourceMappingURL=chunk-DG6GRTPG.js.map
+//# sourceMappingURL=chunk-4LHFPVAY.js.map

package/dist/{chunk-H5PUZDNU.js → chunk-57L345IN.js} RENAMED Viewed

@@ -1,16 +1,16 @@
 import {
   authApi$
-} from "./chunk-W3D4HG5W.js";
+} from "./chunk-DRM44QBR.js";
 import {
   defaultEntityQueryOptions
 } from "./chunk-NPW7D2HZ.js";
 import {
   IAMGuard
-} from "./chunk-V6ZHX4LT.js";
+} from "./chunk-BM3YKYGC.js";
 import {
   useApi,
   useConfig
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/iam/sessions-page.tsx
 import {
@@ -271,4 +271,4 @@ function SessionsPageContent() {
 export {
   SessionsPage
 };
-//# sourceMappingURL=chunk-H5PUZDNU.js.map
+//# sourceMappingURL=chunk-57L345IN.js.map

package/dist/{chunk-CP4TTRV4.js → chunk-5B6GREDA.js} RENAMED Viewed

@@ -1,6 +1,6 @@
 import {
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/authorization/deny.tsx
 import { deny as canDeny } from "@mesob/common";
@@ -20,4 +20,4 @@ function Deny({ permissions, userPermissions, children }) {
 export {
   Deny
 };
-//# sourceMappingURL=chunk-CP4TTRV4.js.map
+//# sourceMappingURL=chunk-5B6GREDA.js.map

package/dist/{chunk-TEHMLZFI.js → chunk-5XCUGCW7.js} RENAMED Viewed

@@ -3,17 +3,17 @@ import {
 } from "./chunk-V2W3WPCZ.js";
 import {
   handleError
-} from "./chunk-RRLFPSSM.js";
+} from "./chunk-W7UHDTBI.js";
 import {
   AuthLayout
 } from "./chunk-DPH2PHK3.js";
 import {
   useTranslator
-} from "./chunk-EPEXIGKB.js";
+} from "./chunk-HBQK5PAH.js";
 import {
   useApi,
   useConfig
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/auth/set-password.tsx
 import { zodResolver } from "@hookform/resolvers/zod";
@@ -302,4 +302,4 @@ var SetPassword = function SetPassword2({
 export {
   SetPassword
 };
-//# sourceMappingURL=chunk-TEHMLZFI.js.map
+//# sourceMappingURL=chunk-5XCUGCW7.js.map

package/dist/{chunk-5AEV7RAN.js → chunk-6AV6I5B4.js} RENAMED Viewed

@@ -1,10 +1,10 @@
 import {
   OtpVerificationModal
-} from "./chunk-UGQP733V.js";
+} from "./chunk-ZOKBN5H4.js";
 import {
   useApi,
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/profile/verify-change-email-form.tsx
 import { useState } from "react";
@@ -136,4 +136,4 @@ function VerifyChangeEmailForm({
 export {
   VerifyChangeEmailForm
 };
-//# sourceMappingURL=chunk-5AEV7RAN.js.map
+//# sourceMappingURL=chunk-6AV6I5B4.js.map

package/dist/{chunk-SGDXNT7M.js → chunk-7VWWIN6Q.js} RENAMED Viewed

@@ -1,9 +1,9 @@
 import {
   AppLink
-} from "./chunk-WY2JJNZW.js";
+} from "./chunk-IK7V3PT3.js";
 import {
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/pages/profile/_components/profile-sidebar.tsx
 import { Avatar, AvatarFallback, AvatarImage } from "@mesob/ui/components";
@@ -92,4 +92,4 @@ export {
   ProfileSidebar,
   ProfileLayout
 };
-//# sourceMappingURL=chunk-SGDXNT7M.js.map
+//# sourceMappingURL=chunk-7VWWIN6Q.js.map

package/dist/{chunk-AWSAC7RT.js → chunk-A5ON3RKH.js} RENAMED Viewed

@@ -1,7 +1,7 @@
 // src/utils/cookie.ts
 var isProduction = typeof process !== "undefined" && process.env.NODE_ENV === "production";
 var getSessionCookieName = (config) => {
-  const prefix = config.cookiePrefix || "";
+  const prefix = config.prefix?.trim() || config.cookiePrefix?.trim() || "";
   const baseName = "session_token";
   if (prefix) {
     return `${prefix}_${baseName}`;
@@ -49,13 +49,16 @@ var defaultAuthClientConfig = {
     enablePasswordReset: true,
     enableEmailSignup: true,
     enablePhoneSignup: true,
+    enableEmailSignIn: true,
+    enablePhoneSignIn: true,
+    allowedSignupEmailDomains: [],
     enableSocialSignup: false,
     socialProviders: []
   },
   navigation: {
     locale: "en"
   },
-  cookiePrefix: "msb",
+  prefix: "msb",
   phoneRegex: /^(\+2519|\+2517|2519|2517|09|07)\d{8}$/
 };
@@ -288,4 +291,4 @@ export {
   useHasAuthCookie,
   MesobAuthProvider
 };
-//# sourceMappingURL=chunk-AWSAC7RT.js.map
+//# sourceMappingURL=chunk-A5ON3RKH.js.map

package/dist/chunk-A5ON3RKH.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/utils/cookie.ts","../src/provider.tsx","../src/lib/translations.ts","../src/types.ts","../src/utils/custom-fetch.ts"],"sourcesContent":["import type { AuthClientConfig } from '../types';\n\nconst isProduction =\n typeof process !== 'undefined' && process.env.NODE_ENV === 'production';\n\nexport const getSessionCookieName = (config: AuthClientConfig): string => {\n const prefix = config.prefix?.trim() || config.cookiePrefix?.trim() || '';\n const baseName = 'session_token';\n if (prefix) {\n return `${prefix}_${baseName}`;\n }\n return isProduction ? '__Host-session_token' : baseName;\n};\n","'use client';\n\nimport { QueryClient, QueryClientProvider } from '@tanstack/react-query';\nimport { deepmerge } from 'deepmerge-ts';\nimport createFetchClient from 'openapi-fetch';\nimport createClient from 'openapi-react-query';\nimport type { ReactNode } from 'react';\nimport { createContext, useContext, useMemo, useState } from 'react';\nimport type { paths } from './data/openapi';\nimport { createTranslator } from './lib/translations';\nimport {\n type AuthClientConfig,\n type AuthResponse,\n defaultAuthClientConfig,\n type Session,\n type User,\n} from './types';\nimport { getSessionCookieName } from './utils/cookie';\nimport { createCustomFetch } from './utils/custom-fetch';\n\n// biome-ignore lint/suspicious/noExplicitAny: OpenAPI hooks type\ntype OpenApiHooks = any;\n\n// --- Utility: Check if running on server ---\nfunction isServer(): boolean {\n return typeof document === 'undefined';\n}\n\n/**\n * @deprecated Cookie is httpOnly and cannot be read client-side.\n * Use `useSession().isAuthenticated` instead.\n * This function always returns false on client.\n */\nexport function hasAuthCookie(_cookieName: string): boolean {\n // Cookie is httpOnly, can't check client-side\n // Always return false - use useSession() for auth status\n return false;\n}\n\n// --- Types ---\nexport type AuthStatus = 'loading' | 'authenticated' | 'unauthenticated';\n\ntype AuthState = {\n user: User | null;\n session: Session | null;\n status: AuthStatus;\n error: Error | null;\n};\n\ntype SessionContextValue = AuthState & {\n isLoading: boolean;\n isAuthenticated: boolean;\n refresh: () => Promise<void>;\n signOut: () => Promise<void>;\n};\n\ntype ApiContextValue = {\n hooks: OpenApiHooks;\n setAuth: (auth: AuthResponse) => void;\n clearAuth: () => void;\n refresh: () => Promise<void>;\n};\n\ntype ConfigContextValue = {\n config: AuthClientConfig;\n cookieName: string;\n t: (key: string, params?: Record<string, string | number>) => string;\n};\n\nconst SessionContext = createContext<SessionContextValue | null>(null);\nconst ApiContext = createContext<ApiContextValue | null>(null);\nconst ConfigContext = createContext<ConfigContextValue | null>(null);\n\nconst queryClient = new QueryClient({\n defaultOptions: {\n queries: {\n refetchOnWindowFocus: false,\n },\n },\n});\n\n// --- Hooks ---\n\n/**\n * Get session state including user, session, and auth status.\n * - `status`: 'loading' | 'authenticated' | 'unauthenticated'\n * - `isLoading`: true while fetching session\n * - `isAuthenticated`: true if user and session exist\n */\nexport function useSession(): SessionContextValue {\n const context = useContext(SessionContext);\n if (!context) {\n throw new Error('useSession must be used within MesobAuthProvider');\n }\n return context;\n}\n\nexport function useApi(): ApiContextValue {\n const context = useContext(ApiContext);\n if (!context) {\n throw new Error('useApi must be used within MesobAuthProvider');\n }\n return context;\n}\n\nexport function useConfig(): ConfigContextValue {\n const context = useContext(ConfigContext);\n if (!context) {\n throw new Error('useConfig must be used within MesobAuthProvider');\n }\n return context;\n}\n\n/**\n * @deprecated Cookie is httpOnly, can't be checked client-side.\n * Use `useSession().isAuthenticated` instead.\n */\nexport function useHasAuthCookie(): boolean {\n const { status } = useSession();\n return status === 'authenticated' || status === 'loading';\n}\n\n// --- Provider ---\n\ntype MesobAuthProviderProps = {\n config: AuthClientConfig;\n children: ReactNode;\n};\n\nexport function MesobAuthProvider({\n config,\n children,\n}: MesobAuthProviderProps) {\n const mergedConfig = useMemo(\n () =>\n deepmerge(\n { ...defaultAuthClientConfig } as Partial<AuthClientConfig>,\n config,\n ) as AuthClientConfig,\n [config],\n );\n\n const api = useMemo(\n () =>\n createFetchClient<paths>({\n baseUrl: mergedConfig.baseURL,\n fetch: createCustomFetch(mergedConfig),\n }),\n [mergedConfig],\n );\n\n const hooks = useMemo(() => createClient(api), [api]);\n const cookieName = useMemo(\n () => getSessionCookieName(mergedConfig),\n [mergedConfig],\n );\n\n return (\n <QueryClientProvider client={queryClient}>\n <AuthStateProvider\n config={mergedConfig}\n hooks={hooks}\n cookieName={cookieName}\n >\n {children}\n </AuthStateProvider>\n </QueryClientProvider>\n );\n}\n\ntype AuthStateProviderProps = {\n config: AuthClientConfig;\n hooks: OpenApiHooks;\n cookieName: string;\n children: ReactNode;\n};\n\nfunction AuthStateProvider({\n config,\n hooks,\n cookieName,\n children,\n}: AuthStateProviderProps) {\n // Manual override for sign-out / sign-in\n const [override, setOverride] = useState<AuthState | null>(null);\n\n // Always fetch session - cookie is httpOnly, can't check client-side\n // Server will read the cookie and return user/session if valid\n const {\n data: sessionData,\n isLoading,\n isFetched,\n error: sessionError,\n refetch,\n } = hooks.useQuery(\n 'get',\n '/session',\n {},\n {\n enabled: !(override || isServer()),\n refetchOnMount: false,\n refetchOnWindowFocus: false,\n refetchOnReconnect: false,\n retry: false,\n gcTime: 0,\n staleTime: 0,\n },\n );\n\n // Derive state directly - no useEffect\n const user = override?.user ?? sessionData?.user ?? null;\n const session = override?.session ?? sessionData?.session ?? null;\n const error = override?.error ?? (sessionError as Error | null);\n\n // Check error status code\n const errorStatus = (() => {\n if (!sessionError) {\n return null;\n }\n const err = sessionError as { status?: number };\n return err.status ?? null;\n })();\n\n // Check if error is a network/connection error\n const isNetworkError = (() => {\n if (!sessionError) {\n return false;\n }\n const error = sessionError as Error & { cause?: unknown; data?: unknown };\n const errorMessage =\n error.message || String(error) || JSON.stringify(error);\n // Network errors: TypeError, DOMException, or fetch failures\n if (\n error instanceof TypeError ||\n error instanceof DOMException ||\n error.name === 'TypeError' ||\n errorMessage.includes('Failed to fetch') ||\n errorMessage.includes('ERR_CONNECTION_REFUSED') ||\n errorMessage.includes('NetworkError') ||\n errorMessage.includes('Network request failed') ||\n errorMessage.includes('fetch failed')\n ) {\n return true;\n }\n // Check error cause\n if (error.cause) {\n const causeStr = String(error.cause);\n if (\n causeStr.includes('Failed to fetch') ||\n causeStr.includes('ERR_CONNECTION_REFUSED') ||\n causeStr.includes('NetworkError')\n ) {\n return true;\n }\n }\n return false;\n })();\n\n // Compute status\n // biome-ignore lint: Status determination requires multiple checks\n const status: AuthStatus = (() => {\n if (override) {\n return override.status;\n }\n if (isServer()) {\n return 'loading';\n }\n if (user && session) {\n return 'authenticated';\n }\n // Check for network errors or auth errors first - allow auth page to show\n if (isNetworkError || errorStatus === 401) {\n return 'unauthenticated';\n }\n // If we have an error but it's not a network error, still check loading state\n if (sessionError && !isNetworkError && errorStatus !== 401) {\n if (errorStatus && errorStatus >= 500) {\n return 'authenticated';\n }\n // Other errors mean unauthenticated\n if (isFetched) {\n return 'unauthenticated';\n }\n }\n if (isLoading || !isFetched) {\n return 'loading';\n }\n if (isFetched && !user && !session) {\n return 'unauthenticated';\n }\n return 'unauthenticated';\n })();\n\n const signOutMutation = hooks.useMutation('post', '/sign-out');\n const t = createTranslator(config.messages || {});\n\n const setAuth = (auth: AuthResponse) => {\n setOverride({\n user: auth.user,\n session: auth.session,\n status: 'authenticated',\n error: null,\n });\n };\n\n const clearAuth = () => {\n setOverride({\n user: null,\n session: null,\n status: 'unauthenticated',\n error: null,\n });\n };\n\n const refresh = async () => {\n setOverride(null);\n await refetch();\n };\n\n const signOut = async () => {\n await signOutMutation.mutateAsync({});\n clearAuth();\n\n const redirectUrl = config.navigation?.defaultRedirectUrl || '/';\n\n if (config.navigation?.onNavigate) {\n config.navigation.onNavigate(redirectUrl);\n } else if (typeof window !== 'undefined') {\n window.location.href = redirectUrl;\n }\n };\n\n return (\n <ConfigContext.Provider value={{ config, cookieName, t }}>\n <ApiContext.Provider value={{ hooks, setAuth, clearAuth, refresh }}>\n <SessionContext.Provider\n value={{\n user,\n session,\n status,\n error,\n isLoading: status === 'loading',\n isAuthenticated: status === 'authenticated',\n refresh,\n signOut,\n }}\n >\n {children}\n </SessionContext.Provider>\n </ApiContext.Provider>\n </ConfigContext.Provider>\n );\n}\n","type Messages = Record<string, unknown>;\n\nexport function createTranslator(messages: Messages, namespace?: string) {\n return (key: string, params?: Record<string, string | number>): string => {\n const fullKey = namespace ? `${namespace}.${key}` : key;\n const keys = fullKey.split('.');\n\n let value: unknown = messages;\n for (const k of keys) {\n if (value && typeof value === 'object' && value !== null) {\n value = (value as Record<string, unknown>)[k];\n } else {\n return fullKey;\n }\n }\n\n if (typeof value !== 'string') {\n return fullKey;\n }\n\n // Simple parameter replacement\n if (params) {\n return value.replace(/\\{(\\w+)\\}/g, (_, param) =>\n String(params[param] ?? `{${param}}`),\n );\n }\n\n return value;\n };\n}\n","import type { PermissionTree } from '@mesob/common';\n\nexport type UIConfig = {\n logo: React.ReactNode;\n name: React.ReactNode;\n logoImage?: string;\n};\n\nexport type FeaturesConfig = {\n enableSignup?: boolean;\n enablePasswordReset?: boolean;\n enableEmailSignup?: boolean;\n enablePhoneSignup?: boolean;\n enableEmailSignIn?: boolean;\n enablePhoneSignIn?: boolean;\n allowedSignupEmailDomains?: string[];\n enableSocialSignup?: boolean;\n socialProviders?: string[];\n};\n\nexport type TenantConfig = {\n enabled: boolean;\n tenantId: string;\n};\n\nexport type NavigationConfig = {\n locale?: string;\n defaultRedirectUrl?: string;\n onNavigate?: (path: string) => void;\n linkComponent?: React.ComponentType<\n React.ComponentProps<'a'> & { href: string }\n >;\n links?: {\n signIn?: string;\n signUp?: string;\n forgotPassword?: string;\n setPassword?: string;\n };\n};\n\nexport type AuthClientConfig = {\n baseURL: string;\n ui: UIConfig;\n features?: FeaturesConfig;\n tenant?: TenantConfig;\n permissions?: PermissionTree;\n navigation?: NavigationConfig;\n messages?: Record<string, unknown>;\n /** @deprecated use `prefix` */\n cookiePrefix?: string;\n /** Must match API `prefix` (session cookie + KV namespace). */\n prefix?: string;\n phoneRegex?: RegExp | string;\n /** Default userType filter for users list (e.g. 'employee'). Omit or 'all' to show all. */\n defaultUserType?: string;\n};\n\ntype DefaultAuthClientConfig = {\n readonly features: {\n readonly enableSignup: true;\n readonly enablePasswordReset: true;\n readonly enableEmailSignup: true;\n readonly enablePhoneSignup: true;\n readonly enableEmailSignIn: true;\n readonly enablePhoneSignIn: true;\n readonly allowedSignupEmailDomains: [];\n readonly enableSocialSignup: false;\n readonly socialProviders: [];\n };\n readonly navigation: {\n readonly locale: 'en';\n };\n readonly prefix: 'msb';\n readonly phoneRegex: RegExp;\n};\n\nexport const defaultAuthClientConfig: DefaultAuthClientConfig = {\n features: {\n enableSignup: true,\n enablePasswordReset: true,\n enableEmailSignup: true,\n enablePhoneSignup: true,\n enableEmailSignIn: true,\n enablePhoneSignIn: true,\n allowedSignupEmailDomains: [],\n enableSocialSignup: false,\n socialProviders: [],\n },\n navigation: {\n locale: 'en',\n },\n prefix: 'msb',\n phoneRegex: /^(\\+2519|\\+2517|2519|2517|09|07)\\d{8}$/,\n} as const;\n\nexport type User = {\n id: string;\n tenantId: string;\n fullName: string;\n email: string | null;\n phone: string | null;\n handle?: string;\n image: string | null;\n emailVerified: boolean;\n phoneVerified: boolean;\n lastSignInAt?: string | null;\n /** Role IDs */\n roles?: string[] | null;\n roleCodes?: string[] | null;\n permissions?: string[] | null;\n};\n\nexport type Session = {\n id?: string;\n expiresAt: string;\n createdAt?: string;\n userAgent?: string | null;\n ip?: string | null;\n};\n\nexport type AuthResponse = {\n user: User;\n session: Session;\n sessionToken?: string;\n sessionExpiresAt?: string;\n};\n\nexport type AuthErrorCode =\n | 'USER_NOT_FOUND'\n | 'INVALID_PASSWORD'\n | 'USER_EXISTS'\n | 'VERIFICATION_EXPIRED'\n | 'VERIFICATION_MISMATCH'\n | 'VERIFICATION_NOT_FOUND'\n | 'TOO_MANY_ATTEMPTS'\n | 'REQUIRES_VERIFICATION'\n | 'UNAUTHORIZED'\n | 'ACCESS_DENIED'\n | 'HAS_NO_PASSWORD'\n | 'PASSWORD_ALREADY_SET'\n | 'RATE_LIMITED';\n\nexport type AuthError = {\n message: string;\n code?: AuthErrorCode;\n status?: number;\n details?: Record<string, unknown>;\n};\n","import type { AuthClientConfig } from '../types';\n\nexport const createCustomFetch = (_config: AuthClientConfig) => {\n return (input: RequestInfo | URL, init?: RequestInit): Promise<Response> => {\n if (input instanceof Request) {\n return fetch(input, { ...init, credentials: 'include' });\n }\n return fetch(input, { ...init, credentials: 'include' });\n };\n};\n"],"mappings":";AAEA,IAAM,eACJ,OAAO,YAAY,eAAe,QAAQ,IAAI,aAAa;AAEtD,IAAM,uBAAuB,CAAC,WAAqC;AACxE,QAAM,SAAS,OAAO,QAAQ,KAAK,KAAK,OAAO,cAAc,KAAK,KAAK;AACvE,QAAM,WAAW;AACjB,MAAI,QAAQ;AACV,WAAO,GAAG,MAAM,IAAI,QAAQ;AAAA,EAC9B;AACA,SAAO,eAAe,yBAAyB;AACjD;;;ACVA,SAAS,aAAa,2BAA2B;AACjD,SAAS,iBAAiB;AAC1B,OAAO,uBAAuB;AAC9B,OAAO,kBAAkB;AAEzB,SAAS,eAAe,YAAY,SAAS,gBAAgB;;;ACLtD,SAAS,iBAAiB,UAAoB,WAAoB;AACvE,SAAO,CAAC,KAAa,WAAqD;AACxE,UAAM,UAAU,YAAY,GAAG,SAAS,IAAI,GAAG,KAAK;AACpD,UAAM,OAAO,QAAQ,MAAM,GAAG;AAE9B,QAAI,QAAiB;AACrB,eAAW,KAAK,MAAM;AACpB,UAAI,SAAS,OAAO,UAAU,YAAY,UAAU,MAAM;AACxD,gBAAS,MAAkC,CAAC;AAAA,MAC9C,OAAO;AACL,eAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI,OAAO,UAAU,UAAU;AAC7B,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ;AACV,aAAO,MAAM;AAAA,QAAQ;AAAA,QAAc,CAAC,GAAG,UACrC,OAAO,OAAO,KAAK,KAAK,IAAI,KAAK,GAAG;AAAA,MACtC;AAAA,IACF;AAEA,WAAO;AAAA,EACT;AACF;;;AC+CO,IAAM,0BAAmD;AAAA,EAC9D,UAAU;AAAA,IACR,cAAc;AAAA,IACd,qBAAqB;AAAA,IACrB,mBAAmB;AAAA,IACnB,mBAAmB;AAAA,IACnB,mBAAmB;AAAA,IACnB,mBAAmB;AAAA,IACnB,2BAA2B,CAAC;AAAA,IAC5B,oBAAoB;AAAA,IACpB,iBAAiB,CAAC;AAAA,EACpB;AAAA,EACA,YAAY;AAAA,IACV,QAAQ;AAAA,EACV;AAAA,EACA,QAAQ;AAAA,EACR,YAAY;AACd;;;AC3FO,IAAM,oBAAoB,CAAC,YAA8B;AAC9D,SAAO,CAAC,OAA0B,SAA0C;AAC1E,QAAI,iBAAiB,SAAS;AAC5B,aAAO,MAAM,OAAO,EAAE,GAAG,MAAM,aAAa,UAAU,CAAC;AAAA,IACzD;AACA,WAAO,MAAM,OAAO,EAAE,GAAG,MAAM,aAAa,UAAU,CAAC;AAAA,EACzD;AACF;;;AHsJM;AAvIN,SAAS,WAAoB;AAC3B,SAAO,OAAO,aAAa;AAC7B;AAOO,SAAS,cAAc,aAA8B;AAG1D,SAAO;AACT;AAgCA,IAAM,iBAAiB,cAA0C,IAAI;AACrE,IAAM,aAAa,cAAsC,IAAI;AAC7D,IAAM,gBAAgB,cAAyC,IAAI;AAEnE,IAAM,cAAc,IAAI,YAAY;AAAA,EAClC,gBAAgB;AAAA,IACd,SAAS;AAAA,MACP,sBAAsB;AAAA,IACxB;AAAA,EACF;AACF,CAAC;AAUM,SAAS,aAAkC;AAChD,QAAM,UAAU,WAAW,cAAc;AACzC,MAAI,CAAC,SAAS;AACZ,UAAM,IAAI,MAAM,kDAAkD;AAAA,EACpE;AACA,SAAO;AACT;AAEO,SAAS,SAA0B;AACxC,QAAM,UAAU,WAAW,UAAU;AACrC,MAAI,CAAC,SAAS;AACZ,UAAM,IAAI,MAAM,8CAA8C;AAAA,EAChE;AACA,SAAO;AACT;AAEO,SAAS,YAAgC;AAC9C,QAAM,UAAU,WAAW,aAAa;AACxC,MAAI,CAAC,SAAS;AACZ,UAAM,IAAI,MAAM,iDAAiD;AAAA,EACnE;AACA,SAAO;AACT;AAMO,SAAS,mBAA4B;AAC1C,QAAM,EAAE,OAAO,IAAI,WAAW;AAC9B,SAAO,WAAW,mBAAmB,WAAW;AAClD;AASO,SAAS,kBAAkB;AAAA,EAChC;AAAA,EACA;AACF,GAA2B;AACzB,QAAM,eAAe;AAAA,IACnB,MACE;AAAA,MACE,EAAE,GAAG,wBAAwB;AAAA,MAC7B;AAAA,IACF;AAAA,IACF,CAAC,MAAM;AAAA,EACT;AAEA,QAAM,MAAM;AAAA,IACV,MACE,kBAAyB;AAAA,MACvB,SAAS,aAAa;AAAA,MACtB,OAAO,kBAAkB,YAAY;AAAA,IACvC,CAAC;AAAA,IACH,CAAC,YAAY;AAAA,EACf;AAEA,QAAM,QAAQ,QAAQ,MAAM,aAAa,GAAG,GAAG,CAAC,GAAG,CAAC;AACpD,QAAM,aAAa;AAAA,IACjB,MAAM,qBAAqB,YAAY;AAAA,IACvC,CAAC,YAAY;AAAA,EACf;AAEA,SACE,oBAAC,uBAAoB,QAAQ,aAC3B;AAAA,IAAC;AAAA;AAAA,MACC,QAAQ;AAAA,MACR;AAAA,MACA;AAAA,MAEC;AAAA;AAAA,EACH,GACF;AAEJ;AASA,SAAS,kBAAkB;AAAA,EACzB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,GAA2B;AAEzB,QAAM,CAAC,UAAU,WAAW,IAAI,SAA2B,IAAI;AAI/D,QAAM;AAAA,IACJ,MAAM;AAAA,IACN;AAAA,IACA;AAAA,IACA,OAAO;AAAA,IACP;AAAA,EACF,IAAI,MAAM;AAAA,IACR;AAAA,IACA;AAAA,IACA,CAAC;AAAA,IACD;AAAA,MACE,SAAS,EAAE,YAAY,SAAS;AAAA,MAChC,gBAAgB;AAAA,MAChB,sBAAsB;AAAA,MACtB,oBAAoB;AAAA,MACpB,OAAO;AAAA,MACP,QAAQ;AAAA,MACR,WAAW;AAAA,IACb;AAAA,EACF;AAGA,QAAM,OAAO,UAAU,QAAQ,aAAa,QAAQ;AACpD,QAAM,UAAU,UAAU,WAAW,aAAa,WAAW;AAC7D,QAAM,QAAQ,UAAU,SAAU;AAGlC,QAAM,eAAe,MAAM;AACzB,QAAI,CAAC,cAAc;AACjB,aAAO;AAAA,IACT;AACA,UAAM,MAAM;AACZ,WAAO,IAAI,UAAU;AAAA,EACvB,GAAG;AAGH,QAAM,kBAAkB,MAAM;AAC5B,QAAI,CAAC,cAAc;AACjB,aAAO;AAAA,IACT;AACA,UAAMA,SAAQ;AACd,UAAM,eACJA,OAAM,WAAW,OAAOA,MAAK,KAAK,KAAK,UAAUA,MAAK;AAExD,QACEA,kBAAiB,aACjBA,kBAAiB,gBACjBA,OAAM,SAAS,eACf,aAAa,SAAS,iBAAiB,KACvC,aAAa,SAAS,wBAAwB,KAC9C,aAAa,SAAS,cAAc,KACpC,aAAa,SAAS,wBAAwB,KAC9C,aAAa,SAAS,cAAc,GACpC;AACA,aAAO;AAAA,IACT;AAEA,QAAIA,OAAM,OAAO;AACf,YAAM,WAAW,OAAOA,OAAM,KAAK;AACnC,UACE,SAAS,SAAS,iBAAiB,KACnC,SAAS,SAAS,wBAAwB,KAC1C,SAAS,SAAS,cAAc,GAChC;AACA,eAAO;AAAA,MACT;AAAA,IACF;AACA,WAAO;AAAA,EACT,GAAG;AAIH,QAAM,UAAsB,MAAM;AAChC,QAAI,UAAU;AACZ,aAAO,SAAS;AAAA,IAClB;AACA,QAAI,SAAS,GAAG;AACd,aAAO;AAAA,IACT;AACA,QAAI,QAAQ,SAAS;AACnB,aAAO;AAAA,IACT;AAEA,QAAI,kBAAkB,gBAAgB,KAAK;AACzC,aAAO;AAAA,IACT;AAEA,QAAI,gBAAgB,CAAC,kBAAkB,gBAAgB,KAAK;AAC1D,UAAI,eAAe,eAAe,KAAK;AACrC,eAAO;AAAA,MACT;AAEA,UAAI,WAAW;AACb,eAAO;AAAA,MACT;AAAA,IACF;AACA,QAAI,aAAa,CAAC,WAAW;AAC3B,aAAO;AAAA,IACT;AACA,QAAI,aAAa,CAAC,QAAQ,CAAC,SAAS;AAClC,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT,GAAG;AAEH,QAAM,kBAAkB,MAAM,YAAY,QAAQ,WAAW;AAC7D,QAAM,IAAI,iBAAiB,OAAO,YAAY,CAAC,CAAC;AAEhD,QAAM,UAAU,CAAC,SAAuB;AACtC,gBAAY;AAAA,MACV,MAAM,KAAK;AAAA,MACX,SAAS,KAAK;AAAA,MACd,QAAQ;AAAA,MACR,OAAO;AAAA,IACT,CAAC;AAAA,EACH;AAEA,QAAM,YAAY,MAAM;AACtB,gBAAY;AAAA,MACV,MAAM;AAAA,MACN,SAAS;AAAA,MACT,QAAQ;AAAA,MACR,OAAO;AAAA,IACT,CAAC;AAAA,EACH;AAEA,QAAM,UAAU,YAAY;AAC1B,gBAAY,IAAI;AAChB,UAAM,QAAQ;AAAA,EAChB;AAEA,QAAM,UAAU,YAAY;AAC1B,UAAM,gBAAgB,YAAY,CAAC,CAAC;AACpC,cAAU;AAEV,UAAM,cAAc,OAAO,YAAY,sBAAsB;AAE7D,QAAI,OAAO,YAAY,YAAY;AACjC,aAAO,WAAW,WAAW,WAAW;AAAA,IAC1C,WAAW,OAAO,WAAW,aAAa;AACxC,aAAO,SAAS,OAAO;AAAA,IACzB;AAAA,EACF;AAEA,SACE,oBAAC,cAAc,UAAd,EAAuB,OAAO,EAAE,QAAQ,YAAY,EAAE,GACrD,8BAAC,WAAW,UAAX,EAAoB,OAAO,EAAE,OAAO,SAAS,WAAW,QAAQ,GAC/D;AAAA,IAAC,eAAe;AAAA,IAAf;AAAA,MACC,OAAO;AAAA,QACL;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA,WAAW,WAAW;AAAA,QACtB,iBAAiB,WAAW;AAAA,QAC5B;AAAA,QACA;AAAA,MACF;AAAA,MAEC;AAAA;AAAA,EACH,GACF,GACF;AAEJ;","names":["error"]}

package/dist/{chunk-V6ZHX4LT.js → chunk-BM3YKYGC.js} RENAMED Viewed

@@ -1,6 +1,6 @@
 import {
   Grant
-} from "./chunk-5SDS2E3F.js";
+} from "./chunk-FU4K62DS.js";
 // src/components/iam/iam-guard.tsx
 import { jsx } from "react/jsx-runtime";
@@ -12,4 +12,4 @@ function IAMGuard({ fallback = null, children }) {
 export {
   IAMGuard
 };
-//# sourceMappingURL=chunk-V6ZHX4LT.js.map
+//# sourceMappingURL=chunk-BM3YKYGC.js.map

package/dist/{chunk-TLQMK2QF.js → chunk-BX75EFF3.js} RENAMED Viewed

@@ -1,12 +1,12 @@
 import {
   VerifyChangePhoneForm
-} from "./chunk-6IEX2RLA.js";
+} from "./chunk-Z4FXOZEJ.js";
 import {
   RequestChangePhoneForm
-} from "./chunk-DG6GRTPG.js";
+} from "./chunk-4LHFPVAY.js";
 import {
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/profile/change-phone-form.tsx
 import {
@@ -91,4 +91,4 @@ function ChangePhoneForm() {
 export {
   ChangePhoneForm
 };
-//# sourceMappingURL=chunk-TLQMK2QF.js.map
+//# sourceMappingURL=chunk-BX75EFF3.js.map

package/dist/{chunk-OXUOGOG3.js → chunk-DCWKYK3D.js} RENAMED Viewed

@@ -1,16 +1,16 @@
 import {
   handleError
-} from "./chunk-RRLFPSSM.js";
+} from "./chunk-W7UHDTBI.js";
 import {
   AuthLayout
 } from "./chunk-DPH2PHK3.js";
 import {
   useTranslator
-} from "./chunk-EPEXIGKB.js";
+} from "./chunk-HBQK5PAH.js";
 import {
   useApi,
   useConfig
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/auth/sign-up.tsx
 import { zodResolver } from "@hookform/resolvers/zod";
@@ -36,6 +36,8 @@ import { toast } from "sonner";
 import { z } from "zod";
 import { jsx, jsxs } from "react/jsx-runtime";
 var isPhone = (s) => /^\+?[0-9()[\]\s-]{6,}$/.test(s);
+var isEmail = (s) => z.email().safeParse(s).success;
+var normalizeDomain = (value) => value.trim().toLowerCase().replace(/^@/, "");
 function PasswordInput({
   field,
   show,
@@ -69,19 +71,41 @@ function PasswordInput({
     )
   ] });
 }
-var signUpSchema = (t) => z.object({
+var signUpSchema = (t, options) => z.object({
   fullName: z.string().min(1, t("errors.fullNameRequired")),
-  identifier: z.string().min(1, t("errors.contactRequired")).refine(
-    (val) => {
-      if (!val) {
-        return false;
-      }
-      return val.includes("@") || isPhone(val);
-    },
-    {
-      message: t("errors.invalidEmailOrPhone")
+  identifier: z.string().trim().min(1, t("errors.contactRequired")).superRefine((value, ctx) => {
+    const emailInput = isEmail(value);
+    const phoneInput = isPhone(value);
+    if (!(emailInput || phoneInput)) {
+      ctx.addIssue({
+        code: z.ZodIssueCode.custom,
+        message: t("errors.invalidEmailOrPhone")
+      });
+      return;
+    }
+    if (emailInput && !options.allowEmailSignup) {
+      ctx.addIssue({
+        code: z.ZodIssueCode.custom,
+        message: "Email sign up is disabled"
+      });
+      return;
+    }
+    if (phoneInput && !options.allowPhoneSignup) {
+      ctx.addIssue({
+        code: z.ZodIssueCode.custom,
+        message: "Phone sign up is disabled"
+      });
+      return;
+    }
+    if (emailInput && options.allowedSignupEmailDomains.length > 0 && !options.allowedSignupEmailDomains.includes(
+      normalizeDomain(value.split("@")[1] || "")
+    )) {
+      ctx.addIssue({
+        code: z.ZodIssueCode.custom,
+        message: "Email domain is not allowed for sign up"
+      });
     }
-  ),
+  }),
   password: z.string().min(8, t("errors.passwordLength")).max(128, t("errors.longPasswordError")),
   confirmPassword: z.string()
 }).refine((data) => data.password === data.confirmPassword, {
@@ -101,6 +125,12 @@ var SignUp = ({
   const [error, setError] = useState(null);
   const [showPassword, setShowPassword] = useState(false);
   const [showConfirmPassword, setShowConfirmPassword] = useState(false);
+  const signupEnabled = config.features?.enableSignup !== false;
+  const allowEmailSignup = config.features?.enableEmailSignup !== false;
+  const allowPhoneSignup = config.features?.enablePhoneSignup !== false;
+  const allowedSignupEmailDomains = (config.features?.allowedSignupEmailDomains || []).map(normalizeDomain).filter(Boolean);
+  const hasSignupIdentifierChannel = allowEmailSignup || allowPhoneSignup;
+  const isSignupAvailable = signupEnabled && hasSignupIdentifierChannel;
   const signUpMutation = hooks.useMutation("post", "/sign-up");
   const signInLink = config.navigation?.links?.signIn || "/auth/sign-in";
   const onNavigate = config.navigation?.onNavigate || ((path) => {
@@ -112,7 +142,13 @@ var SignUp = ({
   const defaultRedirect = redirectUrl || config.navigation?.defaultRedirectUrl || "/";
   const hasInitialIdentifier = !!initialIdentifier;
   const form = useForm({
-    resolver: zodResolver(signUpSchema(t)),
+    resolver: zodResolver(
+      signUpSchema(t, {
+        allowEmailSignup,
+        allowPhoneSignup,
+        allowedSignupEmailDomains
+      })
+    ),
     defaultValues: {
       fullName: "",
       identifier: initialIdentifier || "",
@@ -135,11 +171,21 @@ var SignUp = ({
     }
   }, [error]);
   const handleSubmit = form.handleSubmit(async (values) => {
+    if (!signupEnabled) {
+      form.setError("identifier", { message: "Sign up is disabled" });
+      return;
+    }
+    if (!hasSignupIdentifierChannel) {
+      form.setError("identifier", {
+        message: "Sign up is unavailable for email and phone"
+      });
+      return;
+    }
     setIsLoading(true);
     setError(null);
     try {
-      const identifier = values.identifier;
-      const usingPhone = isPhone(identifier);
+      const identifier = values.identifier.trim();
+      const usingPhone = allowPhoneSignup && (isPhone(identifier) || !allowEmailSignup);
       const res = await signUpMutation.mutateAsync({
         body: usingPhone ? {
           phone: identifier,
@@ -175,6 +221,12 @@ var SignUp = ({
     }
   });
   const getIdentifierLabel = () => {
+    if (allowEmailSignup && !allowPhoneSignup) {
+      return t("form.emailLabel");
+    }
+    if (!allowEmailSignup && allowPhoneSignup) {
+      return t("form.phoneLabel");
+    }
     if (!hasInitialIdentifier) {
       return t("form.accountLabel") || "Email/Phone";
     }
@@ -184,6 +236,16 @@ var SignUp = ({
     return t("form.phoneLabel");
   };
   const identifierLabel = getIdentifierLabel();
+  let signupUnavailableDescription = "No sign up channel is enabled.";
+  if (!signupEnabled) {
+    signupUnavailableDescription = "Sign up is disabled.";
+  }
+  let identifierInputType = "email";
+  if (!allowEmailSignup && allowPhoneSignup) {
+    identifierInputType = "tel";
+  } else if (allowEmailSignup && allowPhoneSignup) {
+    identifierInputType = isPhone(form.watch("identifier")) ? "tel" : "email";
+  }
   let errorContent = null;
   if (error) {
     if (typeof error === "string") {
@@ -215,6 +277,11 @@ var SignUp = ({
         )
       ] }),
       children: [
+        isSignupAvailable ? null : /* @__PURE__ */ jsxs(Alert, { variant: "destructive", children: [
+          /* @__PURE__ */ jsx(IconAlertCircle, { className: "h-4 w-4" }),
+          /* @__PURE__ */ jsx(AlertTitle, { children: "Sign up unavailable" }),
+          /* @__PURE__ */ jsx(AlertDescription, { children: signupUnavailableDescription })
+        ] }),
         /* @__PURE__ */ jsx(Form, { ...form, children: /* @__PURE__ */ jsxs(
           "form",
           {
@@ -252,8 +319,8 @@ var SignUp = ({
                       Input,
                       {
                         ...field,
-                        type: field.value.includes("@") ? "email" : "tel",
-                        autoComplete: field.value.includes("@") ? "email" : "tel",
+                        type: identifierInputType,
+                        autoComplete: identifierInputType,
                         disabled: hasInitialIdentifier
                       }
                     ) }),
@@ -307,7 +374,7 @@ var SignUp = ({
                   type: "submit",
                   form: "sign-up-form",
                   className: "w-full",
-                  disabled: isLoading || signUpMutation.isPending,
+                  disabled: isLoading || signUpMutation.isPending || !signupEnabled || !hasSignupIdentifierChannel,
                   children: isLoading || signUpMutation.isPending ? t("form.submitting") : t("form.submit")
                 }
               )
@@ -327,4 +394,4 @@ var SignUp = ({
 export {
   SignUp
 };
-//# sourceMappingURL=chunk-OXUOGOG3.js.map
+//# sourceMappingURL=chunk-DCWKYK3D.js.map

package/dist/chunk-DCWKYK3D.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/components/auth/sign-up.tsx"],"sourcesContent":["'use client';\n\nimport { zodResolver } from '@hookform/resolvers/zod';\nimport {\n Alert,\n AlertDescription,\n AlertTitle,\n Button,\n Form,\n FormControl,\n FormField,\n FormItem,\n FormLabel,\n FormMessage,\n Input,\n useFormField,\n} from '@mesob/ui/components';\nimport { useMesob } from '@mesob/ui/providers';\nimport { IconAlertCircle, IconEye, IconEyeOff } from '@tabler/icons-react';\nimport type { ChangeEvent, ComponentProps } from 'react';\nimport { useEffect, useState } from 'react';\nimport { useForm } from 'react-hook-form';\nimport { toast } from 'sonner';\nimport { z } from 'zod';\nimport { useTranslator } from '../../hooks/use-translator';\nimport { useApi, useConfig } from '../../provider';\nimport type { AuthErrorContent } from '../../utils/handle-error';\nimport { handleError } from '../../utils/handle-error';\nimport { AuthLayout } from './auth-layout';\n\nconst isPhone = (s: string) => /^\\+?[0-9()[\\]\\s-]{6,}$/.test(s);\nconst isEmail = (s: string) => z.email().safeParse(s).success;\nconst normalizeDomain = (value: string) =>\n value.trim().toLowerCase().replace(/^@/, '');\n\ntype SignUpValidationOptions = {\n allowEmailSignup: boolean;\n allowPhoneSignup: boolean;\n allowedSignupEmailDomains: string[];\n};\n\ntype PasswordInputProps = {\n field: ComponentProps<'input'> & {\n value: string;\n onChange: (e: ChangeEvent<HTMLInputElement>) => void;\n onBlur: () => void;\n };\n show: boolean;\n onToggle: () => void;\n autoComplete?: 'current-password' | 'new-password';\n};\n\nfunction PasswordInput({\n field,\n show,\n onToggle,\n autoComplete = 'current-password',\n}: PasswordInputProps) {\n const { formItemId, error } = useFormField();\n return (\n <div className=\"relative\">\n <Input\n {...field}\n id={formItemId}\n type={show ? 'text' : 'password'}\n autoComplete={autoComplete}\n aria-invalid={!!error}\n className=\"pr-10\"\n />\n <Button\n type=\"button\"\n variant=\"ghost\"\n size=\"icon\"\n className=\"absolute right-0 top-0 h-full px-3 text-muted-foreground hover:text-foreground\"\n onClick={onToggle}\n aria-label={show ? 'Hide password' : 'Show password'}\n >\n {show ? (\n <IconEyeOff className=\"h-4 w-4\" />\n ) : (\n <IconEye className=\"h-4 w-4\" />\n )}\n </Button>\n </div>\n );\n}\n\ntype SignUpFormValues = {\n fullName: string;\n identifier: string;\n password: string;\n confirmPassword: string;\n};\n\ntype SignUpProps = {\n redirectUrl?: string;\n initialIdentifier?: string;\n};\n\nconst signUpSchema = (\n t: (key: string) => string,\n options: SignUpValidationOptions,\n) =>\n z\n .object({\n fullName: z.string().min(1, t('errors.fullNameRequired')),\n identifier: z\n .string()\n .trim()\n .min(1, t('errors.contactRequired'))\n .superRefine((value, ctx) => {\n const emailInput = isEmail(value);\n const phoneInput = isPhone(value);\n if (!(emailInput || phoneInput)) {\n ctx.addIssue({\n code: z.ZodIssueCode.custom,\n message: t('errors.invalidEmailOrPhone'),\n });\n return;\n }\n if (emailInput && !options.allowEmailSignup) {\n ctx.addIssue({\n code: z.ZodIssueCode.custom,\n message: 'Email sign up is disabled',\n });\n return;\n }\n if (phoneInput && !options.allowPhoneSignup) {\n ctx.addIssue({\n code: z.ZodIssueCode.custom,\n message: 'Phone sign up is disabled',\n });\n return;\n }\n if (\n emailInput &&\n options.allowedSignupEmailDomains.length > 0 &&\n !options.allowedSignupEmailDomains.includes(\n normalizeDomain(value.split('@')[1] || ''),\n )\n ) {\n ctx.addIssue({\n code: z.ZodIssueCode.custom,\n message: 'Email domain is not allowed for sign up',\n });\n }\n }),\n password: z\n .string()\n .min(8, t('errors.passwordLength'))\n .max(128, t('errors.longPasswordError')),\n confirmPassword: z.string(),\n })\n .refine((data) => data.password === data.confirmPassword, {\n message: t('errors.passwordsMismatch'),\n path: ['confirmPassword'],\n });\n\nexport const SignUp = ({\n redirectUrl,\n initialIdentifier,\n}: SignUpProps = {}) => {\n const { hooks, setAuth } = useApi();\n const { config } = useConfig();\n const mesob = useMesob();\n const t = useTranslator('Auth.signUp');\n const Link = mesob?.navigation?.Link;\n const [isLoading, setIsLoading] = useState(false);\n const [error, setError] = useState<AuthErrorContent | null>(null);\n const [showPassword, setShowPassword] = useState(false);\n const [showConfirmPassword, setShowConfirmPassword] = useState(false);\n const signupEnabled = config.features?.enableSignup !== false;\n const allowEmailSignup = config.features?.enableEmailSignup !== false;\n const allowPhoneSignup = config.features?.enablePhoneSignup !== false;\n const allowedSignupEmailDomains = (\n config.features?.allowedSignupEmailDomains || []\n )\n .map(normalizeDomain)\n .filter(Boolean);\n const hasSignupIdentifierChannel = allowEmailSignup || allowPhoneSignup;\n const isSignupAvailable = signupEnabled && hasSignupIdentifierChannel;\n\n const signUpMutation = hooks.useMutation('post', '/sign-up');\n\n const signInLink = config.navigation?.links?.signIn || '/auth/sign-in';\n const onNavigate =\n config.navigation?.onNavigate ||\n ((path: string) => {\n if (typeof window !== 'undefined') {\n window.location.href = path;\n }\n });\n const logoImage = config.ui.logoImage;\n const defaultRedirect =\n redirectUrl || config.navigation?.defaultRedirectUrl || '/';\n\n const hasInitialIdentifier = !!initialIdentifier;\n\n const form = useForm<SignUpFormValues>({\n resolver: zodResolver(\n signUpSchema(t, {\n allowEmailSignup,\n allowPhoneSignup,\n allowedSignupEmailDomains,\n }),\n ),\n defaultValues: {\n fullName: '',\n identifier: initialIdentifier || '',\n password: '',\n confirmPassword: '',\n },\n mode: 'onSubmit',\n reValidateMode: 'onSubmit',\n });\n\n useEffect(() => {\n if (initialIdentifier) {\n form.setValue('identifier', initialIdentifier);\n }\n }, [initialIdentifier, form]);\n\n useEffect(() => {\n if (error) {\n toast.error(error.title || 'Error', {\n description: error.description,\n });\n }\n }, [error]);\n\n const handleSubmit = form.handleSubmit(async (values) => {\n if (!signupEnabled) {\n form.setError('identifier', { message: 'Sign up is disabled' });\n return;\n }\n if (!hasSignupIdentifierChannel) {\n form.setError('identifier', {\n message: 'Sign up is unavailable for email and phone',\n });\n return;\n }\n setIsLoading(true);\n setError(null);\n\n try {\n const identifier = values.identifier.trim();\n const usingPhone =\n allowPhoneSignup && (isPhone(identifier) || !allowEmailSignup);\n\n const res = await signUpMutation.mutateAsync({\n body: usingPhone\n ? {\n phone: identifier,\n password: values.password,\n fullName: values.fullName,\n }\n : {\n email: identifier,\n password: values.password,\n fullName: values.fullName,\n },\n });\n\n if ('verificationId' in res && res.verificationId) {\n const redirectParam = defaultRedirect\n ? `&redirect=${encodeURIComponent(defaultRedirect)}`\n : '';\n if (usingPhone) {\n onNavigate(\n `/auth/verify-phone?context=sign-up&verificationId=${res.verificationId}&phone=${encodeURIComponent(identifier)}${redirectParam}`,\n );\n } else {\n onNavigate(\n `/auth/verify-email?verificationId=${res.verificationId}&email=${encodeURIComponent(identifier)}${redirectParam}`,\n );\n }\n return;\n }\n\n if ('user' in res && 'session' in res) {\n setAuth(res);\n }\n onNavigate(defaultRedirect);\n } catch (err) {\n handleError(err, setError, t);\n } finally {\n setIsLoading(false);\n }\n });\n\n const getIdentifierLabel = () => {\n if (allowEmailSignup && !allowPhoneSignup) {\n return t('form.emailLabel');\n }\n if (!allowEmailSignup && allowPhoneSignup) {\n return t('form.phoneLabel');\n }\n if (!hasInitialIdentifier) {\n return t('form.accountLabel') || 'Email/Phone';\n }\n if (initialIdentifier?.includes('@')) {\n return t('form.emailLabel');\n }\n return t('form.phoneLabel');\n };\n const identifierLabel = getIdentifierLabel();\n let signupUnavailableDescription = 'No sign up channel is enabled.';\n if (!signupEnabled) {\n signupUnavailableDescription = 'Sign up is disabled.';\n }\n\n let identifierInputType: 'email' | 'tel' = 'email';\n if (!allowEmailSignup && allowPhoneSignup) {\n identifierInputType = 'tel';\n } else if (allowEmailSignup && allowPhoneSignup) {\n identifierInputType = isPhone(form.watch('identifier')) ? 'tel' : 'email';\n }\n\n let errorContent: AuthErrorContent | null = null;\n if (error) {\n if (typeof error === 'string') {\n errorContent = { title: 'Error', description: error };\n } else {\n errorContent = error;\n }\n }\n\n return (\n <AuthLayout\n title={config.ui.name}\n description={t('description')}\n logoImage={logoImage}\n footer={\n <p>\n {t('footer.hasAccount')}{' '}\n {Link ? (\n <Link href={signInLink} className=\"text-primary hover:underline\">\n {t('footer.signInCta')}\n </Link>\n ) : (\n <a\n href={signInLink}\n onClick={(e) => {\n e.preventDefault();\n onNavigate(signInLink);\n }}\n className=\"text-primary hover:underline\"\n >\n {t('footer.signInCta')}\n </a>\n )}\n </p>\n }\n >\n {isSignupAvailable ? null : (\n <Alert variant=\"destructive\">\n <IconAlertCircle className=\"h-4 w-4\" />\n <AlertTitle>Sign up unavailable</AlertTitle>\n <AlertDescription>{signupUnavailableDescription}</AlertDescription>\n </Alert>\n )}\n <Form {...form}>\n <form\n id=\"sign-up-form\"\n autoComplete=\"on\"\n onSubmit={handleSubmit}\n className=\"space-y-4\"\n >\n <FormField\n control={form.control}\n name=\"fullName\"\n render={({ field }) => (\n <FormItem>\n <FormLabel>{t('form.fullNameLabel')}</FormLabel>\n <FormControl>\n <Input {...field} autoComplete=\"name\" />\n </FormControl>\n <FormMessage />\n </FormItem>\n )}\n />\n <FormField\n control={form.control}\n name=\"identifier\"\n render={({ field }) => (\n <FormItem>\n <FormLabel\n className={hasInitialIdentifier ? 'block' : undefined}\n >\n {identifierLabel}\n </FormLabel>\n <FormControl>\n <Input\n {...field}\n type={identifierInputType}\n autoComplete={identifierInputType}\n disabled={hasInitialIdentifier}\n />\n </FormControl>\n <FormMessage />\n </FormItem>\n )}\n />\n <FormField\n control={form.control}\n name=\"password\"\n render={({ field }) => (\n <FormItem>\n <FormLabel>{t('form.passwordLabel')}</FormLabel>\n <PasswordInput\n field={field}\n show={showPassword}\n onToggle={() => setShowPassword(!showPassword)}\n autoComplete=\"new-password\"\n />\n <FormMessage />\n </FormItem>\n )}\n />\n <FormField\n control={form.control}\n name=\"confirmPassword\"\n render={({ field }) => (\n <FormItem>\n <FormLabel>{t('form.confirmPasswordLabel')}</FormLabel>\n <PasswordInput\n field={field}\n show={showConfirmPassword}\n onToggle={() => setShowConfirmPassword(!showConfirmPassword)}\n autoComplete=\"new-password\"\n />\n <FormMessage />\n </FormItem>\n )}\n />\n <Button\n type=\"submit\"\n form=\"sign-up-form\"\n className=\"w-full\"\n disabled={\n isLoading ||\n signUpMutation.isPending ||\n !signupEnabled ||\n !hasSignupIdentifierChannel\n }\n >\n {isLoading || signUpMutation.isPending\n ? t('form.submitting')\n : t('form.submit')}\n </Button>\n </form>\n </Form>\n {errorContent && (\n <Alert variant=\"destructive\" className=\"mt-4\">\n <IconAlertCircle className=\"h-4 w-4\" />\n <AlertTitle>{errorContent.title}</AlertTitle>\n <AlertDescription>{errorContent.description}</AlertDescription>\n </Alert>\n )}\n </AuthLayout>\n );\n};\n"],"mappings":";;;;;;;;;;;;;;;AAEA,SAAS,mBAAmB;AAC5B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,gBAAgB;AACzB,SAAS,iBAAiB,SAAS,kBAAkB;AAErD,SAAS,WAAW,gBAAgB;AACpC,SAAS,eAAe;AACxB,SAAS,aAAa;AACtB,SAAS,SAAS;AAqCd,SACE,KADF;AA9BJ,IAAM,UAAU,CAAC,MAAc,yBAAyB,KAAK,CAAC;AAC9D,IAAM,UAAU,CAAC,MAAc,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE;AACtD,IAAM,kBAAkB,CAAC,UACvB,MAAM,KAAK,EAAE,YAAY,EAAE,QAAQ,MAAM,EAAE;AAmB7C,SAAS,cAAc;AAAA,EACrB;AAAA,EACA;AAAA,EACA;AAAA,EACA,eAAe;AACjB,GAAuB;AACrB,QAAM,EAAE,YAAY,MAAM,IAAI,aAAa;AAC3C,SACE,qBAAC,SAAI,WAAU,YACb;AAAA;AAAA,MAAC;AAAA;AAAA,QACE,GAAG;AAAA,QACJ,IAAI;AAAA,QACJ,MAAM,OAAO,SAAS;AAAA,QACtB;AAAA,QACA,gBAAc,CAAC,CAAC;AAAA,QAChB,WAAU;AAAA;AAAA,IACZ;AAAA,IACA;AAAA,MAAC;AAAA;AAAA,QACC,MAAK;AAAA,QACL,SAAQ;AAAA,QACR,MAAK;AAAA,QACL,WAAU;AAAA,QACV,SAAS;AAAA,QACT,cAAY,OAAO,kBAAkB;AAAA,QAEpC,iBACC,oBAAC,cAAW,WAAU,WAAU,IAEhC,oBAAC,WAAQ,WAAU,WAAU;AAAA;AAAA,IAEjC;AAAA,KACF;AAEJ;AAcA,IAAM,eAAe,CACnB,GACA,YAEA,EACG,OAAO;AAAA,EACN,UAAU,EAAE,OAAO,EAAE,IAAI,GAAG,EAAE,yBAAyB,CAAC;AAAA,EACxD,YAAY,EACT,OAAO,EACP,KAAK,EACL,IAAI,GAAG,EAAE,wBAAwB,CAAC,EAClC,YAAY,CAAC,OAAO,QAAQ;AAC3B,UAAM,aAAa,QAAQ,KAAK;AAChC,UAAM,aAAa,QAAQ,KAAK;AAChC,QAAI,EAAE,cAAc,aAAa;AAC/B,UAAI,SAAS;AAAA,QACX,MAAM,EAAE,aAAa;AAAA,QACrB,SAAS,EAAE,4BAA4B;AAAA,MACzC,CAAC;AACD;AAAA,IACF;AACA,QAAI,cAAc,CAAC,QAAQ,kBAAkB;AAC3C,UAAI,SAAS;AAAA,QACX,MAAM,EAAE,aAAa;AAAA,QACrB,SAAS;AAAA,MACX,CAAC;AACD;AAAA,IACF;AACA,QAAI,cAAc,CAAC,QAAQ,kBAAkB;AAC3C,UAAI,SAAS;AAAA,QACX,MAAM,EAAE,aAAa;AAAA,QACrB,SAAS;AAAA,MACX,CAAC;AACD;AAAA,IACF;AACA,QACE,cACA,QAAQ,0BAA0B,SAAS,KAC3C,CAAC,QAAQ,0BAA0B;AAAA,MACjC,gBAAgB,MAAM,MAAM,GAAG,EAAE,CAAC,KAAK,EAAE;AAAA,IAC3C,GACA;AACA,UAAI,SAAS;AAAA,QACX,MAAM,EAAE,aAAa;AAAA,QACrB,SAAS;AAAA,MACX,CAAC;AAAA,IACH;AAAA,EACF,CAAC;AAAA,EACH,UAAU,EACP,OAAO,EACP,IAAI,GAAG,EAAE,uBAAuB,CAAC,EACjC,IAAI,KAAK,EAAE,0BAA0B,CAAC;AAAA,EACzC,iBAAiB,EAAE,OAAO;AAC5B,CAAC,EACA,OAAO,CAAC,SAAS,KAAK,aAAa,KAAK,iBAAiB;AAAA,EACxD,SAAS,EAAE,0BAA0B;AAAA,EACrC,MAAM,CAAC,iBAAiB;AAC1B,CAAC;AAEE,IAAM,SAAS,CAAC;AAAA,EACrB;AAAA,EACA;AACF,IAAiB,CAAC,MAAM;AACtB,QAAM,EAAE,OAAO,QAAQ,IAAI,OAAO;AAClC,QAAM,EAAE,OAAO,IAAI,UAAU;AAC7B,QAAM,QAAQ,SAAS;AACvB,QAAM,IAAI,cAAc,aAAa;AACrC,QAAM,OAAO,OAAO,YAAY;AAChC,QAAM,CAAC,WAAW,YAAY,IAAI,SAAS,KAAK;AAChD,QAAM,CAAC,OAAO,QAAQ,IAAI,SAAkC,IAAI;AAChE,QAAM,CAAC,cAAc,eAAe,IAAI,SAAS,KAAK;AACtD,QAAM,CAAC,qBAAqB,sBAAsB,IAAI,SAAS,KAAK;AACpE,QAAM,gBAAgB,OAAO,UAAU,iBAAiB;AACxD,QAAM,mBAAmB,OAAO,UAAU,sBAAsB;AAChE,QAAM,mBAAmB,OAAO,UAAU,sBAAsB;AAChE,QAAM,6BACJ,OAAO,UAAU,6BAA6B,CAAC,GAE9C,IAAI,eAAe,EACnB,OAAO,OAAO;AACjB,QAAM,6BAA6B,oBAAoB;AACvD,QAAM,oBAAoB,iBAAiB;AAE3C,QAAM,iBAAiB,MAAM,YAAY,QAAQ,UAAU;AAE3D,QAAM,aAAa,OAAO,YAAY,OAAO,UAAU;AACvD,QAAM,aACJ,OAAO,YAAY,eAClB,CAAC,SAAiB;AACjB,QAAI,OAAO,WAAW,aAAa;AACjC,aAAO,SAAS,OAAO;AAAA,IACzB;AAAA,EACF;AACF,QAAM,YAAY,OAAO,GAAG;AAC5B,QAAM,kBACJ,eAAe,OAAO,YAAY,sBAAsB;AAE1D,QAAM,uBAAuB,CAAC,CAAC;AAE/B,QAAM,OAAO,QAA0B;AAAA,IACrC,UAAU;AAAA,MACR,aAAa,GAAG;AAAA,QACd;AAAA,QACA;AAAA,QACA;AAAA,MACF,CAAC;AAAA,IACH;AAAA,IACA,eAAe;AAAA,MACb,UAAU;AAAA,MACV,YAAY,qBAAqB;AAAA,MACjC,UAAU;AAAA,MACV,iBAAiB;AAAA,IACnB;AAAA,IACA,MAAM;AAAA,IACN,gBAAgB;AAAA,EAClB,CAAC;AAED,YAAU,MAAM;AACd,QAAI,mBAAmB;AACrB,WAAK,SAAS,cAAc,iBAAiB;AAAA,IAC/C;AAAA,EACF,GAAG,CAAC,mBAAmB,IAAI,CAAC;AAE5B,YAAU,MAAM;AACd,QAAI,OAAO;AACT,YAAM,MAAM,MAAM,SAAS,SAAS;AAAA,QAClC,aAAa,MAAM;AAAA,MACrB,CAAC;AAAA,IACH;AAAA,EACF,GAAG,CAAC,KAAK,CAAC;AAEV,QAAM,eAAe,KAAK,aAAa,OAAO,WAAW;AACvD,QAAI,CAAC,eAAe;AAClB,WAAK,SAAS,cAAc,EAAE,SAAS,sBAAsB,CAAC;AAC9D;AAAA,IACF;AACA,QAAI,CAAC,4BAA4B;AAC/B,WAAK,SAAS,cAAc;AAAA,QAC1B,SAAS;AAAA,MACX,CAAC;AACD;AAAA,IACF;AACA,iBAAa,IAAI;AACjB,aAAS,IAAI;AAEb,QAAI;AACF,YAAM,aAAa,OAAO,WAAW,KAAK;AAC1C,YAAM,aACJ,qBAAqB,QAAQ,UAAU,KAAK,CAAC;AAE/C,YAAM,MAAM,MAAM,eAAe,YAAY;AAAA,QAC3C,MAAM,aACF;AAAA,UACE,OAAO;AAAA,UACP,UAAU,OAAO;AAAA,UACjB,UAAU,OAAO;AAAA,QACnB,IACA;AAAA,UACE,OAAO;AAAA,UACP,UAAU,OAAO;AAAA,UACjB,UAAU,OAAO;AAAA,QACnB;AAAA,MACN,CAAC;AAED,UAAI,oBAAoB,OAAO,IAAI,gBAAgB;AACjD,cAAM,gBAAgB,kBAClB,aAAa,mBAAmB,eAAe,CAAC,KAChD;AACJ,YAAI,YAAY;AACd;AAAA,YACE,qDAAqD,IAAI,cAAc,UAAU,mBAAmB,UAAU,CAAC,GAAG,aAAa;AAAA,UACjI;AAAA,QACF,OAAO;AACL;AAAA,YACE,qCAAqC,IAAI,cAAc,UAAU,mBAAmB,UAAU,CAAC,GAAG,aAAa;AAAA,UACjH;AAAA,QACF;AACA;AAAA,MACF;AAEA,UAAI,UAAU,OAAO,aAAa,KAAK;AACrC,gBAAQ,GAAG;AAAA,MACb;AACA,iBAAW,eAAe;AAAA,IAC5B,SAAS,KAAK;AACZ,kBAAY,KAAK,UAAU,CAAC;AAAA,IAC9B,UAAE;AACA,mBAAa,KAAK;AAAA,IACpB;AAAA,EACF,CAAC;AAED,QAAM,qBAAqB,MAAM;AAC/B,QAAI,oBAAoB,CAAC,kBAAkB;AACzC,aAAO,EAAE,iBAAiB;AAAA,IAC5B;AACA,QAAI,CAAC,oBAAoB,kBAAkB;AACzC,aAAO,EAAE,iBAAiB;AAAA,IAC5B;AACA,QAAI,CAAC,sBAAsB;AACzB,aAAO,EAAE,mBAAmB,KAAK;AAAA,IACnC;AACA,QAAI,mBAAmB,SAAS,GAAG,GAAG;AACpC,aAAO,EAAE,iBAAiB;AAAA,IAC5B;AACA,WAAO,EAAE,iBAAiB;AAAA,EAC5B;AACA,QAAM,kBAAkB,mBAAmB;AAC3C,MAAI,+BAA+B;AACnC,MAAI,CAAC,eAAe;AAClB,mCAA+B;AAAA,EACjC;AAEA,MAAI,sBAAuC;AAC3C,MAAI,CAAC,oBAAoB,kBAAkB;AACzC,0BAAsB;AAAA,EACxB,WAAW,oBAAoB,kBAAkB;AAC/C,0BAAsB,QAAQ,KAAK,MAAM,YAAY,CAAC,IAAI,QAAQ;AAAA,EACpE;AAEA,MAAI,eAAwC;AAC5C,MAAI,OAAO;AACT,QAAI,OAAO,UAAU,UAAU;AAC7B,qBAAe,EAAE,OAAO,SAAS,aAAa,MAAM;AAAA,IACtD,OAAO;AACL,qBAAe;AAAA,IACjB;AAAA,EACF;AAEA,SACE;AAAA,IAAC;AAAA;AAAA,MACC,OAAO,OAAO,GAAG;AAAA,MACjB,aAAa,EAAE,aAAa;AAAA,MAC5B;AAAA,MACA,QACE,qBAAC,OACE;AAAA,UAAE,mBAAmB;AAAA,QAAG;AAAA,QACxB,OACC,oBAAC,QAAK,MAAM,YAAY,WAAU,gCAC/B,YAAE,kBAAkB,GACvB,IAEA;AAAA,UAAC;AAAA;AAAA,YACC,MAAM;AAAA,YACN,SAAS,CAAC,MAAM;AACd,gBAAE,eAAe;AACjB,yBAAW,UAAU;AAAA,YACvB;AAAA,YACA,WAAU;AAAA,YAET,YAAE,kBAAkB;AAAA;AAAA,QACvB;AAAA,SAEJ;AAAA,MAGD;AAAA,4BAAoB,OACnB,qBAAC,SAAM,SAAQ,eACb;AAAA,8BAAC,mBAAgB,WAAU,WAAU;AAAA,UACrC,oBAAC,cAAW,iCAAmB;AAAA,UAC/B,oBAAC,oBAAkB,wCAA6B;AAAA,WAClD;AAAA,QAEF,oBAAC,QAAM,GAAG,MACR;AAAA,UAAC;AAAA;AAAA,YACC,IAAG;AAAA,YACH,cAAa;AAAA,YACb,UAAU;AAAA,YACV,WAAU;AAAA,YAEV;AAAA;AAAA,gBAAC;AAAA;AAAA,kBACC,SAAS,KAAK;AAAA,kBACd,MAAK;AAAA,kBACL,QAAQ,CAAC,EAAE,MAAM,MACf,qBAAC,YACC;AAAA,wCAAC,aAAW,YAAE,oBAAoB,GAAE;AAAA,oBACpC,oBAAC,eACC,8BAAC,SAAO,GAAG,OAAO,cAAa,QAAO,GACxC;AAAA,oBACA,oBAAC,eAAY;AAAA,qBACf;AAAA;AAAA,cAEJ;AAAA,cACA;AAAA,gBAAC;AAAA;AAAA,kBACC,SAAS,KAAK;AAAA,kBACd,MAAK;AAAA,kBACL,QAAQ,CAAC,EAAE,MAAM,MACf,qBAAC,YACC;AAAA;AAAA,sBAAC;AAAA;AAAA,wBACC,WAAW,uBAAuB,UAAU;AAAA,wBAE3C;AAAA;AAAA,oBACH;AAAA,oBACA,oBAAC,eACC;AAAA,sBAAC;AAAA;AAAA,wBACE,GAAG;AAAA,wBACJ,MAAM;AAAA,wBACN,cAAc;AAAA,wBACd,UAAU;AAAA;AAAA,oBACZ,GACF;AAAA,oBACA,oBAAC,eAAY;AAAA,qBACf;AAAA;AAAA,cAEJ;AAAA,cACA;AAAA,gBAAC;AAAA;AAAA,kBACC,SAAS,KAAK;AAAA,kBACd,MAAK;AAAA,kBACL,QAAQ,CAAC,EAAE,MAAM,MACf,qBAAC,YACC;AAAA,wCAAC,aAAW,YAAE,oBAAoB,GAAE;AAAA,oBACpC;AAAA,sBAAC;AAAA;AAAA,wBACC;AAAA,wBACA,MAAM;AAAA,wBACN,UAAU,MAAM,gBAAgB,CAAC,YAAY;AAAA,wBAC7C,cAAa;AAAA;AAAA,oBACf;AAAA,oBACA,oBAAC,eAAY;AAAA,qBACf;AAAA;AAAA,cAEJ;AAAA,cACA;AAAA,gBAAC;AAAA;AAAA,kBACC,SAAS,KAAK;AAAA,kBACd,MAAK;AAAA,kBACL,QAAQ,CAAC,EAAE,MAAM,MACf,qBAAC,YACC;AAAA,wCAAC,aAAW,YAAE,2BAA2B,GAAE;AAAA,oBAC3C;AAAA,sBAAC;AAAA;AAAA,wBACC;AAAA,wBACA,MAAM;AAAA,wBACN,UAAU,MAAM,uBAAuB,CAAC,mBAAmB;AAAA,wBAC3D,cAAa;AAAA;AAAA,oBACf;AAAA,oBACA,oBAAC,eAAY;AAAA,qBACf;AAAA;AAAA,cAEJ;AAAA,cACA;AAAA,gBAAC;AAAA;AAAA,kBACC,MAAK;AAAA,kBACL,MAAK;AAAA,kBACL,WAAU;AAAA,kBACV,UACE,aACA,eAAe,aACf,CAAC,iBACD,CAAC;AAAA,kBAGF,uBAAa,eAAe,YACzB,EAAE,iBAAiB,IACnB,EAAE,aAAa;AAAA;AAAA,cACrB;AAAA;AAAA;AAAA,QACF,GACF;AAAA,QACC,gBACC,qBAAC,SAAM,SAAQ,eAAc,WAAU,QACrC;AAAA,8BAAC,mBAAgB,WAAU,WAAU;AAAA,UACrC,oBAAC,cAAY,uBAAa,OAAM;AAAA,UAChC,oBAAC,oBAAkB,uBAAa,aAAY;AAAA,WAC9C;AAAA;AAAA;AAAA,EAEJ;AAEJ;","names":[]}

package/dist/{chunk-W3D4HG5W.js → chunk-DRM44QBR.js} RENAMED Viewed

@@ -1,10 +1,10 @@
 import {
   AppLink,
   useNavigate
-} from "./chunk-WY2JJNZW.js";
+} from "./chunk-IK7V3PT3.js";
 import {
   useApi
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/pages/iam/shared/page-helpers.tsx
 import { jsx } from "react/jsx-runtime";
@@ -33,4 +33,4 @@ export {
   Link,
   useRouter
 };
-//# sourceMappingURL=chunk-W3D4HG5W.js.map
+//# sourceMappingURL=chunk-DRM44QBR.js.map

package/dist/{chunk-Z34NJZRL.js → chunk-EIJFTUTM.js} RENAMED Viewed

@@ -1,9 +1,9 @@
 import {
   Countdown
-} from "./chunk-RMJNENJB.js";
+} from "./chunk-IFFWIROT.js";
 import {
   useTranslator
-} from "./chunk-EPEXIGKB.js";
+} from "./chunk-HBQK5PAH.js";
 // src/components/auth/verification-form.tsx
 import { zodResolver } from "@hookform/resolvers/zod";
@@ -96,4 +96,4 @@ var VerificationForm = ({
 export {
   VerificationForm
 };
-//# sourceMappingURL=chunk-Z34NJZRL.js.map
+//# sourceMappingURL=chunk-EIJFTUTM.js.map

package/dist/{chunk-5E3XN6SW.js → chunk-FCPN2FD7.js} RENAMED Viewed

@@ -1,19 +1,19 @@
 import {
   VerificationForm
-} from "./chunk-Z34NJZRL.js";
+} from "./chunk-EIJFTUTM.js";
 import {
   handleError
-} from "./chunk-RRLFPSSM.js";
+} from "./chunk-W7UHDTBI.js";
 import {
   AuthLayout
 } from "./chunk-DPH2PHK3.js";
 import {
   useTranslator
-} from "./chunk-EPEXIGKB.js";
+} from "./chunk-HBQK5PAH.js";
 import {
   useApi,
   useConfig
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/auth/verify-phone.tsx
 import { Alert, AlertDescription, AlertTitle } from "@mesob/ui/components";
@@ -185,4 +185,4 @@ var VerifyPhone = ({
 export {
   VerifyPhone
 };
-//# sourceMappingURL=chunk-5E3XN6SW.js.map
+//# sourceMappingURL=chunk-FCPN2FD7.js.map

package/dist/{chunk-VVKXFEAN.js → chunk-FLGP4ROM.js} RENAMED Viewed

@@ -1,19 +1,19 @@
 import {
   VerificationForm
-} from "./chunk-Z34NJZRL.js";
+} from "./chunk-EIJFTUTM.js";
 import {
   handleError
-} from "./chunk-RRLFPSSM.js";
+} from "./chunk-W7UHDTBI.js";
 import {
   AuthLayout
 } from "./chunk-DPH2PHK3.js";
 import {
   useTranslator
-} from "./chunk-EPEXIGKB.js";
+} from "./chunk-HBQK5PAH.js";
 import {
   useApi,
   useConfig
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/auth/verify-email.tsx
 import { Alert, AlertDescription, AlertTitle } from "@mesob/ui/components";
@@ -180,4 +180,4 @@ var VerifyEmail = ({
 export {
   VerifyEmail
 };
-//# sourceMappingURL=chunk-VVKXFEAN.js.map
+//# sourceMappingURL=chunk-FLGP4ROM.js.map

package/dist/{chunk-5SDS2E3F.js → chunk-FU4K62DS.js} RENAMED Viewed

@@ -1,6 +1,6 @@
 import {
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/authorization/grant.tsx
 import { grant as canGrant } from "@mesob/common";
@@ -25,4 +25,4 @@ function Grant({
 export {
   Grant
 };
-//# sourceMappingURL=chunk-5SDS2E3F.js.map
+//# sourceMappingURL=chunk-FU4K62DS.js.map

package/dist/chunk-G2XRGSQE.js ADDED Viewed

@@ -0,0 +1,22 @@
+// src/utils/safe-redirect.ts
+function getSafeRedirectFromSearch(search) {
+  try {
+    const raw = new URLSearchParams(
+      search.startsWith("?") ? search.slice(1) : search
+    ).get("redirect");
+    if (!raw) {
+      return null;
+    }
+    const decoded = decodeURIComponent(raw);
+    if (decoded.startsWith("/") && !decoded.startsWith("//")) {
+      return decoded;
+    }
+  } catch {
+  }
+  return null;
+}
+export {
+  getSafeRedirectFromSearch
+};
+//# sourceMappingURL=chunk-G2XRGSQE.js.map

package/dist/chunk-G2XRGSQE.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/utils/safe-redirect.ts"],"sourcesContent":["/** Same-origin path only; blocks //evil open redirects */\nexport function getSafeRedirectFromSearch(search: string): string | null {\n try {\n const raw = new URLSearchParams(\n search.startsWith('?') ? search.slice(1) : search,\n ).get('redirect');\n if (!raw) {\n return null;\n }\n const decoded = decodeURIComponent(raw);\n if (decoded.startsWith('/') && !decoded.startsWith('//')) {\n return decoded;\n }\n } catch {\n // malformed query\n }\n return null;\n}\n"],"mappings":";AACO,SAAS,0BAA0B,QAA+B;AACvE,MAAI;AACF,UAAM,MAAM,IAAI;AAAA,MACd,OAAO,WAAW,GAAG,IAAI,OAAO,MAAM,CAAC,IAAI;AAAA,IAC7C,EAAE,IAAI,UAAU;AAChB,QAAI,CAAC,KAAK;AACR,aAAO;AAAA,IACT;AACA,UAAM,UAAU,mBAAmB,GAAG;AACtC,QAAI,QAAQ,WAAW,GAAG,KAAK,CAAC,QAAQ,WAAW,IAAI,GAAG;AACxD,aAAO;AAAA,IACT;AAAA,EACF,QAAQ;AAAA,EAER;AACA,SAAO;AACT;","names":[]}

package/dist/{chunk-X2BHF4KC.js → chunk-G4VPR4UC.js} RENAMED Viewed

@@ -1,7 +1,7 @@
 import {
   useApi,
   useSession
-} from "./chunk-AWSAC7RT.js";
+} from "./chunk-A5ON3RKH.js";
 // src/components/profile/request-change-email-form.tsx
 import { zodResolver } from "@hookform/resolvers/zod";
@@ -252,4 +252,4 @@ function RequestChangeEmailForm({
 export {
   RequestChangeEmailForm
 };
-//# sourceMappingURL=chunk-X2BHF4KC.js.map
+//# sourceMappingURL=chunk-G4VPR4UC.js.map