@momentumcms/auth 0.1.9 → 0.1.10

package/CHANGELOG.md

@@ -1,3 +1,14 @@
+## 0.1.10 (2026-02-17)
+
+### 🩹 Fixes
+
+- **create-momentum-app:** add shell option to execFileSync for Windows ([#28](https://github.com/DonaldMurillo/momentum-cms/pull/28))
+
+### ❤️ Thank You
+
+- Claude Opus 4.6
+- Donald Murillo @DonaldMurillo
+
 ## 0.1.9 (2026-02-16)
 
 This was a version bump only for auth to align it with other projects, there were no code changes.

package/index.cjs

@@ -30,6 +30,7 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 // libs/auth/src/index.ts
 var src_exports = {};
 __export(src_exports, {
+  AUTH_ROLES: () => AUTH_ROLES,
   AuthAccountCollection: () => AuthAccountCollection,
   AuthApiKeysCollection: () => AuthApiKeysCollection,
   AuthSessionCollection: () => AuthSessionCollection,
@@ -48,6 +49,14 @@ __export(src_exports, {
 });
 module.exports = __toCommonJS(src_exports);
 
+// libs/auth/src/lib/auth-core.ts
+var AUTH_ROLES = [
+  { label: "Admin", value: "admin" },
+  { label: "Editor", value: "editor" },
+  { label: "User", value: "user" },
+  { label: "Viewer", value: "viewer" }
+];
+
 // libs/auth/src/lib/auth.ts
 var import_better_auth = require("better-auth");
 var import_plugins = require("better-auth/plugins");
@@ -805,12 +814,6 @@ var MediaCollection = defineCollection({
 });
 
 // libs/auth/src/lib/auth-collections.ts
-var AUTH_ROLES = [
-  { label: "Admin", value: "admin" },
-  { label: "Editor", value: "editor" },
-  { label: "User", value: "user" },
-  { label: "Viewer", value: "viewer" }
-];
 var AuthUserCollection = defineCollection({
   slug: "auth-user",
   dbName: "user",
@@ -1021,6 +1024,13 @@ function momentumAuth(config) {
     name: "momentum-auth",
     // Static collections for admin UI route data (read at config time)
     collections: finalAuthCollections,
+    // Browser-safe import paths for the admin config generator
+    browserImports: {
+      collections: {
+        path: "@momentumcms/auth/collections",
+        exportName: "BASE_AUTH_COLLECTIONS"
+      }
+    },
     getAuth() {
       if (!authInstance) {
         throw new Error("Auth not initialized. Call onInit first (via initializeMomentum).");
@@ -1209,6 +1219,7 @@ function authOrganization() {
 }
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
+  AUTH_ROLES,
   AuthAccountCollection,
   AuthApiKeysCollection,
   AuthSessionCollection,

package/index.js

@@ -1,3 +1,11 @@
+// libs/auth/src/lib/auth-core.ts
+var AUTH_ROLES = [
+  { label: "Admin", value: "admin" },
+  { label: "Editor", value: "editor" },
+  { label: "User", value: "user" },
+  { label: "Viewer", value: "viewer" }
+];
+
 // libs/auth/src/lib/auth.ts
 import { betterAuth } from "better-auth";
 import { twoFactor } from "better-auth/plugins";
@@ -755,12 +763,6 @@ var MediaCollection = defineCollection({
 });
 
 // libs/auth/src/lib/auth-collections.ts
-var AUTH_ROLES = [
-  { label: "Admin", value: "admin" },
-  { label: "Editor", value: "editor" },
-  { label: "User", value: "user" },
-  { label: "Viewer", value: "viewer" }
-];
 var AuthUserCollection = defineCollection({
   slug: "auth-user",
   dbName: "user",
@@ -971,6 +973,13 @@ function momentumAuth(config) {
     name: "momentum-auth",
     // Static collections for admin UI route data (read at config time)
     collections: finalAuthCollections,
+    // Browser-safe import paths for the admin config generator
+    browserImports: {
+      collections: {
+        path: "@momentumcms/auth/collections",
+        exportName: "BASE_AUTH_COLLECTIONS"
+      }
+    },
     getAuth() {
       if (!authInstance) {
         throw new Error("Auth not initialized. Call onInit first (via initializeMomentum).");
@@ -1158,6 +1167,7 @@ function authOrganization() {
   };
 }
 export {
+  AUTH_ROLES,
   AuthAccountCollection,
   AuthApiKeysCollection,
   AuthSessionCollection,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@momentumcms/auth",
-  "version": "0.1.9",
+  "version": "0.1.10",
   "description": "Better Auth integration for Momentum CMS",
   "license": "MIT",
   "author": "Momentum CMS Contributors",

package/src/core.d.ts

@@ -0,0 +1,8 @@
+/**
+ * @momentumcms/auth/core
+ *
+ * Browser-safe entry point for auth types and constants.
+ * Import from here in browser contexts (admin UI, SSR client bundles)
+ * instead of `@momentumcms/auth` which pulls in Node.js dependencies.
+ */
+export { AUTH_ROLES, type MomentumUser, type MomentumSession, type OAuthProviderConfig, type OAuthProvidersConfig, } from './lib/auth-core';

package/src/index.d.ts

@@ -1,3 +1,4 @@
+export * from './core';
 export * from './lib/auth';
 export * from './lib/email';
 export * from './lib/email-templates';

package/src/lib/auth-collections.d.ts

@@ -9,12 +9,9 @@
  *
  * Column types are chosen to match Better Auth's expected schema exactly.
  */
-import type { CollectionConfig, SelectOption } from '@momentumcms/core';
-/**
- * Canonical list of auth roles, ordered by privilege (highest first).
- * Used by both server middleware and admin UI for role validation and display.
- */
-export declare const AUTH_ROLES: SelectOption[];
+import type { CollectionConfig } from '@momentumcms/core';
+import { AUTH_ROLES } from './auth-core';
+export { AUTH_ROLES };
 export declare const AuthUserCollection: CollectionConfig;
 export declare const AuthSessionCollection: CollectionConfig;
 export declare const AuthAccountCollection: CollectionConfig;

package/src/lib/auth-core.d.ts

@@ -0,0 +1,55 @@
+/**
+ * Browser-safe Auth Core Types & Constants
+ *
+ * This module contains ONLY types and constants that have zero Node.js dependencies.
+ * It can be safely imported in browser contexts (admin UI, SSR client bundles)
+ * without pulling in `better-auth`, `pg`, `nodemailer`, or other server-only packages.
+ *
+ * Server-only code (createMomentumAuth, email service, etc.) lives in `auth.ts`.
+ */
+import type { SelectOption } from '@momentumcms/core';
+/**
+ * Canonical list of auth roles, ordered by privilege (highest first).
+ * Used by both server middleware and admin UI for role validation and display.
+ */
+export declare const AUTH_ROLES: SelectOption[];
+/**
+ * User type from Better Auth with additional role field.
+ */
+export interface MomentumUser {
+    id: string;
+    email: string;
+    name: string;
+    role: string;
+    emailVerified: boolean;
+    twoFactorEnabled?: boolean;
+    image?: string | null;
+    createdAt: Date;
+    updatedAt: Date;
+}
+/**
+ * Session type from Better Auth.
+ */
+export interface MomentumSession {
+    id: string;
+    userId: string;
+    token: string;
+    expiresAt: Date;
+    ipAddress?: string | null;
+    userAgent?: string | null;
+}
+/**
+ * OAuth provider configuration.
+ */
+export interface OAuthProviderConfig {
+    clientId: string;
+    clientSecret: string;
+    redirectURI?: string;
+}
+/**
+ * Supported OAuth providers.
+ */
+export interface OAuthProvidersConfig {
+    google?: OAuthProviderConfig;
+    github?: OAuthProviderConfig;
+}

package/src/lib/auth.d.ts

@@ -3,6 +3,8 @@ import type { Pool } from 'pg';
 import type { Database } from 'better-sqlite3';
 import { type EmailConfig } from './email';
 import type { Field } from '@momentumcms/core';
+import type { OAuthProvidersConfig } from './auth-core';
+export type { MomentumUser, MomentumSession, OAuthProviderConfig, OAuthProvidersConfig } from './auth-core';
 /**
  * Database configuration for Better Auth.
  * Supports both SQLite (better-sqlite3) and PostgreSQL (pg).
@@ -25,21 +27,6 @@ export interface MomentumEmailOptions extends EmailConfig {
     /** Require email verification on signup. Default: false */
     requireEmailVerification?: boolean;
 }
-/**
- * OAuth provider configuration.
- */
-export interface OAuthProviderConfig {
-    clientId: string;
-    clientSecret: string;
-    redirectURI?: string;
-}
-/**
- * Supported OAuth providers.
- */
-export interface OAuthProvidersConfig {
-    google?: OAuthProviderConfig;
-    github?: OAuthProviderConfig;
-}
 /**
  * Configuration options for Momentum Auth.
  */
@@ -82,31 +69,6 @@ export interface MomentumAuthConfigLegacy {
     /** Enable two-factor authentication (TOTP). Default: false */
     twoFactorAuth?: boolean;
 }
-/**
- * User type from Better Auth with additional role field.
- */
-export interface MomentumUser {
-    id: string;
-    email: string;
-    name: string;
-    role: string;
-    emailVerified: boolean;
-    twoFactorEnabled?: boolean;
-    image?: string | null;
-    createdAt: Date;
-    updatedAt: Date;
-}
-/**
- * Session type from Better Auth.
- */
-export interface MomentumSession {
-    id: string;
-    userId: string;
-    token: string;
-    expiresAt: Date;
-    ipAddress?: string | null;
-    userAgent?: string | null;
-}
 /**
  * Get the list of enabled OAuth provider names from config/env vars.
  * Useful for exposing available providers to the client.