@monocloud/auth-node-core 0.0.0-canary-20251223204113

package/dist/index.d.mts

@@ -0,0 +1,676 @@
+import { AccessToken, AccessToken as AccessToken$1, AuthState, AuthenticateOptions, Authenticators, AuthorizationParams, AuthorizationParams as AuthorizationParams$1, CallbackParams, ClientAuthMethod, CodeChallengeMethod, DisplayOptions, EndSessionParameters, EndSessionParameters as EndSessionParameters$1, Group, IdTokenClaims, IdTokenClaims as IdTokenClaims$1, IssuerMetadata, JWSAlgorithm, Jwk, Jwks, JwsHeaderParameters, MonoCloudAuthBaseError, MonoCloudClientOptions, MonoCloudHttpError, MonoCloudOPError, MonoCloudOidcClient, MonoCloudOidcClient as MonoCloudOidcClient$1, MonoCloudSession, MonoCloudSession as MonoCloudSession$1, MonoCloudTokenError, MonoCloudUser, MonoCloudValidationError, ParResponse, Prompt, PushedAuthorizationParams, RefetchUserInfoOptions, RefreshGrantOptions, RefreshGrantOptions as RefreshGrantOptions$1, RefreshSessionOptions, ResponseModes, ResponseTypes, Tokens, UserinfoResponse, UserinfoResponse as UserinfoResponse$1 } from "@monocloud/auth-core";
+import { SerializeOptions } from "cookie";
+import { Except, PartialDeep } from "type-fest";
+
+//#region src/types/internal.d.ts
+type CookieOptions = SerializeOptions;
+interface IMonoCloudCookieRequest {
+  getCookie(name: string): Promise<string | undefined>;
+  getAllCookies(): Promise<Map<string, string>>;
+}
+interface MonoCloudRequest extends IMonoCloudCookieRequest {
+  getRoute(parameter: string): string | string[] | undefined;
+  getQuery(parameter: string): string | string[] | undefined;
+  getRawRequest(): Promise<{
+    method: string;
+    url: string;
+    body: Record<string, string> | string;
+  }>;
+}
+interface IMonoCloudCookieResponse {
+  setCookie(cookieName: string, value: string, options: CookieOptions): Promise<void>;
+}
+interface MonoCloudResponse extends IMonoCloudCookieResponse {
+  redirect(url: string, statusCode?: number): void;
+  sendJson(data: any, statusCode?: number): void;
+  notFound(): void;
+  noContent(): void;
+  internalServerError(): void;
+  methodNotAllowed(): void;
+  setNoCache(): void;
+  done(): any;
+}
+//#endregion
+//#region src/types/index.d.ts
+/**
+ * Possible values for the SameSite attribute in cookies.
+ */
+type SameSiteValues = 'strict' | 'lax' | 'none';
+/**
+ * Possible values for the Security Algorithms.
+ */
+type SecurityAlgorithms = 'RS256' | 'RS384' | 'RS512' | 'PS256' | 'PS384' | 'PS512' | 'ES256' | 'ES384' | 'ES512';
+/**
+ * Represents the lifetime information of a session, including the creation time (c),
+ * the last updated time (u), and optionally the expiration time (e).
+ */
+interface SessionLifetime {
+  /**
+   * The time at which the session was created (in epoch).
+   */
+  c: number;
+  /**
+   * The time at which the session was last updated (in epoch).
+   */
+  u: number;
+  /**
+   * Optional. The expiration time of the session (in epoch).
+   */
+  e?: number;
+}
+/**
+ * Represents a session store interface for managing session data.
+ */
+interface MonoCloudSessionStore {
+  /**
+   * Retrieves a session from the store based on the provided key.
+   * @param key - The key used to identify the session.
+   * @returns A Promise that resolves with the session data, or undefined / null if not found.
+   */
+  get(key: string): Promise<MonoCloudSession$1 | undefined | null>;
+  /**
+   * Stores a session in the store with the specified key.
+   * @param key - The key used to identify the session.
+   * @param data - The session data to be stored.
+   * @param lifetime - The lifetime information of the session.
+   * @returns A Promise that resolves when the session is successfully stored.
+   */
+  set(key: string, data: MonoCloudSession$1, lifetime: SessionLifetime): Promise<void>;
+  /**
+   * Deletes a session from the store based on the provided key.
+   * @param key - The key used to identify the session to be deleted.
+   * @returns A Promise that resolves when the session is successfully deleted.
+   */
+  delete(key: string): Promise<void>;
+}
+/**
+ * Options for cookies.
+ */
+interface MonoCloudCookieOptions {
+  /**
+   * The name of the cookie.
+   * For session cookies, the default value is 'session'.
+   * For state cookies, the default value is 'state'.
+   */
+  name: string;
+  /**
+   * The path for which the cookie is valid.
+   * @defaultValue '/'
+   */
+  path: string;
+  /**
+   * Optional: The domain for which the cookie is valid.
+   */
+  domain?: string;
+  /**
+   * Determines whether the cookie is accessible only through HTTP requests.
+   * This setting will be ignored for the state cookie and will always be true.
+   * @defaultValue true
+   */
+  httpOnly: boolean;
+  /**
+   * Determines whether the cookie should only be sent over HTTPS connections.
+   * If not provided, this settings will be auto-detected basis the scheme of the application url.
+   */
+  secure: boolean;
+  /**
+   * The SameSite attribute value for the cookie, ensuring cross-site request forgery protection.
+   * @defaultValue 'lax'
+   */
+  sameSite: SameSiteValues;
+  /**
+   * Determines whether the cookie should persist beyond the current session.
+   * For session cookies, the default value is true.
+   * For state cookies, the default value is false.
+   */
+  persistent: boolean;
+}
+/**
+ * Options for the authentication sessions.
+ */
+interface MonoCloudSessionOptionsBase {
+  /**
+   * Configuration options for the authentication session cookie.
+   */
+  cookie: MonoCloudCookieOptions;
+  /**
+   * Determines whether the session should use sliding expiration.
+   * @defaultValue false
+   */
+  sliding: boolean;
+  /**
+   * The duration of the session in seconds.
+   * @defaultValue 86400 (1 Day)
+   */
+  duration: number;
+  /**
+   * The maximum duration for the session in seconds.
+   * Will only be used when the session is set to 'sliding'.
+   * @defaultValue 604800 (1 Week)
+   */
+  maximumDuration: number;
+  /**
+   * Optional: The session store to use for storing session data.
+   */
+  store?: MonoCloudSessionStore;
+}
+/**
+ * Options for the authentication state.
+ */
+interface MonoCloudStateOptions {
+  /**
+   * Configuration options for the authentication state cookie.
+   */
+  cookie: MonoCloudCookieOptions;
+}
+/**
+ * Options for the MonoCloud Authentication route handlers.
+ */
+interface MonoCloudRoutes {
+  /**
+   * The URL of the callback handler
+   * @defaultValue '/api/auth/callback'
+   */
+  callback: string;
+  /**
+   * The URL of the back-channel logout handler
+   * @defaultValue '/api/auth/backchannel-logout'
+   */
+  backChannelLogout: string;
+  /**
+   * The URL of the sign-in handler
+   * @defaultValue '/api/auth/signin'
+   */
+  signIn: string;
+  /**
+   * The URL of the sign-out handler
+   * @defaultValue '/api/auth/signout'
+   */
+  signOut: string;
+  /**
+   * The URL of the userinfo handler
+   * @defaultValue '/api/auth/userinfo'
+   */
+  userInfo: string;
+}
+/**
+ * Represents an indicator for additional resources that can be requested.
+ */
+interface Indicator {
+  /**
+   * Space separated list of resources to scope the access token to
+   */
+  resource: string;
+  /**
+   * Optional: Space separated list of scopes to request
+   */
+  scopes?: string;
+}
+/**
+ * Options for configuration MonoCloud Authentication.
+ */
+interface MonoCloudOptionsBase {
+  /**
+   * The client ID of the authenticating application.
+   */
+  clientId: string;
+  /**
+   * Optional: The client secret of the authenticating application.
+   */
+  clientSecret?: string;
+  /**
+   * MonoCloud tenant domain.
+   */
+  tenantDomain: string;
+  /**
+   * A secret key that will be used for encrypting cookies.
+   */
+  cookieSecret: string;
+  /**
+   * The URL of the application.
+   */
+  appUrl: string;
+  /**
+   * Configuration options for the route handler URLs.
+   */
+  routes: MonoCloudRoutes;
+  /**
+   * The maximum allowed clock skew (in seconds) for token validation.
+   * @defaultValue 60 (seconds)
+   */
+  clockSkew: number;
+  /**
+   * The timeout (in milliseconds) for receiving responses from the authentication service.
+   * @defaultValue 10000 (10 seconds)
+   */
+  responseTimeout: number;
+  /**
+   * Determines whether to use PAR (Pushed Authorization Requests) for authorization requests.
+   * @defaultValue false
+   */
+  usePar: boolean;
+  /**
+   * Optional: The URI to redirect to after the user logs out.
+   */
+  postLogoutRedirectUri?: string;
+  /**
+   * Determines whether the user will be logged out of the authentication service.
+   * @defaultValue true
+   */
+  federatedSignOut: boolean;
+  /**
+   * Determines whether to fetch the user information from the 'userinfo' endpoint during authentication.
+   * @defaultValue true
+   */
+  userInfo: boolean;
+  /**
+   * Determines whether to refetch the user information from the authentication service on each request to the
+   * application's userinfo endpoint.
+   * @defaultValue false
+   */
+  refetchUserInfo: boolean;
+  /**
+   * Default authorization parameters to include in authentication requests.
+   * @defaultValue {
+   *   scope: 'openid email profile',
+   *   response_type: 'code'
+   * }
+   */
+  defaultAuthParams: AuthorizationParams$1;
+  /**
+   * Optional: Additional resources that can be requested in `getTokens()`.
+   *
+   */
+  resources?: Indicator[];
+  /**
+   * Configuration options for the user session.
+   */
+  session: MonoCloudSessionOptionsBase;
+  /**
+   * Configuration options for state management during authentication.
+   */
+  state: MonoCloudStateOptions;
+  /**
+   * The signing algorithm that is expected to be used for signing ID tokens.
+   * @defaultValue 'RS256'
+   */
+  idTokenSigningAlg: SecurityAlgorithms;
+  /**
+   *  Array of strings representing the filtered ID token claims.
+   */
+  filteredIdTokenClaims: string[];
+  /**
+   * The name of the debugger instance.
+   */
+  debugger: string;
+  /**
+   * The name of the user agent.
+   */
+  userAgent: string;
+  /**
+   * Jwks Cache Duration
+   *
+   * Time in seconds to cache the JWKS document after it is fetched
+   *
+   * @default 300
+   *
+   * */
+  jwksCacheDuration?: number;
+  /**
+   * Metadata Cache Duration
+   *
+   * Time in seconds to cache the metadata document after it is fetched.
+   *
+   * @default 300
+   * */
+  metadataCacheDuration?: number;
+  /**
+   * Optional: A callback function invoked when a back-channel logout event is received.
+   */
+  onBackChannelLogout?: OnBackChannelLogout;
+  /**
+   * Optional: A callback function invoked when an authentication state is being set (before sign-in).
+   */
+  onSetApplicationState?: OnSetApplicationState;
+  /**
+   * Optional: A callback function invoked before creating or updating the user session.
+   */
+  onSessionCreating?: OnSessionCreating;
+}
+/**
+ * Options for the authentication sessions.
+ */
+type MonoCloudSessionOptions = Except<PartialDeep<MonoCloudSessionOptionsBase>, 'store'> & {
+  /**
+   * Optional: The session store to use for storing session data.
+   */
+  store?: MonoCloudSessionStore;
+};
+/**
+ * Options for configuration MonoCloud Authentication.
+ */
+type MonoCloudOptions = Except<PartialDeep<MonoCloudOptionsBase>, 'defaultAuthParams' | 'session'> & {
+  /**
+   * Default authorization parameters to include in authentication requests.
+   * @defaultValue {
+   *   scope: 'openid email profile',
+   *   response_type: 'code'
+   * }
+   */
+  defaultAuthParams?: Partial<AuthorizationParams$1>;
+  /**
+   * Configuration options for the user session.
+   */
+  session?: MonoCloudSessionOptions;
+};
+/**
+ * Defines a callback function to be invoked when a back-channel logout event is received.
+ * This function receives an optional subject identifier (sub) of the user and an optional session identifier (sid).
+ *
+ * @param sub - Optional. The subject identifier (sub) of the user.
+ * @param sid - Optional. The session identifier (sid) associated with the user's session.
+ * @returns A Promise that resolves when the operation is completed, or void.
+ */
+type OnBackChannelLogout = (
+/**
+ * Optional. The subject identifier (sub) of the user.
+ */
+sub?: string,
+/**
+ * Optional. The session identifier (sid) associated with the user's session.
+ */
+sid?: string) => Promise<void> | void;
+/**
+ * The custom application state.
+ */
+type ApplicationState = Record<string, any>;
+/**
+ * Defines a callback function to be executed when a new session is being created or updated.
+ * This function receives parameters related to the session being created,
+ * including the session object itself, optional ID token and user information claims,
+ * and the application state.
+ *
+ * @param session - The Session object being created.
+ * @param idToken - Optional. Claims from the ID token received during authentication.
+ * @param userInfo - Optional. Claims from the user information received during authentication.
+ * @param state - Optional. The application state associated with the session.
+ * @returns A Promise that resolves when the operation is completed, or void.
+ */
+type OnSessionCreating = (
+/**
+ * The Session object being created.
+ */
+session: MonoCloudSession$1,
+/**
+ * Optional. Claims from the ID token received during authentication.
+ */
+idToken?: Partial<IdTokenClaims$1>,
+/**
+ * Optional. Claims from the user information received during authentication.
+ */
+userInfo?: UserinfoResponse$1,
+/**
+ * Optional. The application state associated with the session.
+ */
+state?: ApplicationState) => Promise<void> | void;
+/**
+ * Defines a callback function to be executed when an authentication state is being set.
+ * This function receives the incoming request and should return or resolve with an ApplicationState object.
+ *
+ * @param req - The incoming request.
+ * @returns A Promise that resolves with the ApplicationState object when the operation is completed, or the ApplicationState object directly.
+ */
+type OnSetApplicationState = (
+/**
+ * The incoming request.
+ */
+req: MonoCloudRequest) => Promise<ApplicationState> | ApplicationState;
+/**
+ * Represents the tokens obtained during authentication that are available in the session.
+ */
+interface MonoCloudTokens extends AccessToken$1 {
+  /**
+   * The ID token obtained during authentication.
+   */
+  idToken?: string;
+  /**
+   * The refresh token obtained during authentication.
+   */
+  refreshToken?: string;
+  /**
+   * Specifies if the access token has expired.
+   */
+  isExpired: boolean;
+}
+/**
+ * A function used to handle errors that occur during the signin, callback, signout and userinfo endpoint execution.
+ *
+ * @param error - Error occured during execution of the endpoint.
+ */
+type OnError = (error: Error) => Promise<any> | any;
+/**
+ * Represents options for the sign-in handler.
+ */
+interface SignInOptions {
+  /**
+   * The application URL to which the user should be redirected after successful authentication.
+   * Must be a relative Url.
+   * Defaults to the appUrl.
+   */
+  returnUrl?: string;
+  /**
+   * Specifies whether to initiate a user registration process.
+   */
+  register?: boolean;
+  /**
+   * Additional authorization parameters to include in the authentication request.
+   */
+  authParams?: AuthorizationParams$1;
+  /**
+   * A custom function to handle unexpected errors while signing in.
+   */
+  onError?: OnError;
+}
+/**
+ * Represents options for the callback handler.
+ */
+interface CallbackOptions {
+  /**
+   * Determines whether to fetch the user information from the 'userinfo' endpoint after processing the callback.
+   */
+  userInfo?: boolean;
+  /**
+   * Url to be sent to the token endpoint.
+   */
+  redirectUri?: string;
+  /**
+   * A custom function to handle unexpected errors while processing callback from MonoCloud.
+   */
+  onError?: OnError;
+}
+/**
+ * Represents options for the userinfo handler.
+ */
+interface UserInfoOptions {
+  /**
+   * Determines whether to refetch the user information from the authentication service.
+   */
+  refresh?: boolean;
+  /**
+   * A custom function to handle unexpected errors while fetching userinfo.
+   */
+  onError?: OnError;
+}
+/**
+ * Represents options for the sign-out handler.
+ */
+type SignOutOptions = {
+  /**
+   * Determines whether the user will be logged out of the authentication service.
+   */
+  federatedSignOut?: boolean;
+  /**
+   * A custom function to handle unexpected errors while signing out.
+   */
+  onError?: OnError;
+} & EndSessionParameters$1;
+/**
+ * Represents options for the GetTokens handler.
+ */
+interface GetTokensOptions extends RefreshGrantOptions$1 {
+  /**
+   * Specifies whether to force the refresh of the access token.
+   */
+  forceRefresh?: boolean;
+  /**
+   * Determines whether to refetch the user information.
+   */
+  refetchUserInfo?: boolean;
+}
+//#endregion
+//#region src/monocloud-node-core-client.d.ts
+declare class MonoCloudCoreClient {
+  readonly oidcClient: MonoCloudOidcClient$1;
+  private readonly options;
+  private readonly stateService;
+  private readonly sessionService;
+  private readonly debug;
+  private optionsValidated;
+  constructor(partialOptions?: MonoCloudOptions);
+  /**
+   * Initiates the sign-in flow by redirecting the user to the MonoCloud authorization endpoint.
+   *
+   * This method handles scope and resource merging, state generation (nonce, state, PKCE),
+   * and Constructing the final authorization URL.
+   *
+   * @param request - MonoCloud request object.
+   * @param response - MonoCloud response object.
+   * @param signInOptions - Optional configuration to customize the sign-in behavior.
+   * @returns A promise that resolves when the callback processing and redirection are complete.
+   *
+   * @throws {@link MonoCloudValidationError} When validation of parameters or state fails.
+   */
+  signIn(request: MonoCloudRequest, response: MonoCloudResponse, signInOptions?: SignInOptions): Promise<any>;
+  /**
+   * Handles the OpenID callback after the user authenticates with MonoCloud.
+   *
+   * Processes the authorization code, validates the state and nonce, exchanges the code for tokens,
+   * initializes the user session, and performs the final redirect to the application's return URL.
+   *
+   * @param request - MonoCloud request object.
+   * @param response - MonoCloud response object.
+   * @param callbackOptions - Optional configuration for the callback handler.
+   * @returns A promise that resolves when the callback processing and redirection are complete.
+   *
+   * @throws {@link MonoCloudValidationError} If the state is mismatched or tokens are invalid.
+   */
+  callback(request: MonoCloudRequest, response: MonoCloudResponse, callbackOptions?: CallbackOptions): Promise<any>;
+  /**
+   * Retrieves user information, optionally refetching fresh data from the UserInfo endpoint.
+   *
+   * @param request - MonoCloud request object.
+   * @param response - MonoCloud response object.
+   * @param userinfoOptions - Configuration to control refetching and error handling.
+   * @returns A promise that resolves with the user information sent as a JSON response.
+   *
+   * @remarks
+   * If `refresh` is true, the session is updated with fresh claims from the identity provider.
+   */
+  userInfo(request: MonoCloudRequest, response: MonoCloudResponse, userinfoOptions?: UserInfoOptions): Promise<any>;
+  /**
+   * Initiates the sign-out flow, destroying the local session and optionally performing federated sign-out.
+   *
+   * @param request - MonoCloud request object.
+   * @param response - MonoCloud response object.
+   * @param signOutOptions - Configuration for post-logout behavior and federated sign-out.
+   *
+   * @returns A promise that resolves when the sign-out redirection is initiated.
+   */
+  signOut(request: MonoCloudRequest, response: MonoCloudResponse, signOutOptions?: SignOutOptions): Promise<any>;
+  /**
+   * Handles Back-Channel Logout notifications from the identity provider.
+   *
+   * Validates the Logout Token and triggers the `onBackChannelLogout` callback defined in options.
+   *
+   * @param request - MonoCloud request object.
+   * @param response - MonoCloud response object.
+   *
+   * @returns A promise that resolves when the logout notification has been processed.
+   *
+   * @throws {@link MonoCloudValidationError} If the logout token is missing or invalid.
+   */
+  backChannelLogout(request: MonoCloudRequest, response: MonoCloudResponse): Promise<any>;
+  /**
+   * Checks if the current request has an active and authenticated session.
+   *
+   * @param request - MonoCloud cookie request object.
+   * @param response - MonoCloud cookie response object.
+   *
+   * @returns `true` if a valid session with user data exists, `false` otherwise.
+   *
+   */
+  isAuthenticated(request: IMonoCloudCookieRequest, response: IMonoCloudCookieResponse): Promise<boolean>;
+  /**
+   * Checks if the current session user belongs to the specified groups.
+   *
+   * @param request - MonoCloud cookie request object.
+   * @param response - MonoCloud cookie response object.
+   * @param groups - List of group names or IDs to check.
+   * @param groupsClaim - Optional claim name that holds groups. Defaults to "groups".
+   * @param matchAll - If `true`, requires membership in all groups; otherwise any one group is sufficient.
+   *
+   * @returns `true` if the user satisfies the group condition, `false` otherwise.
+   */
+  isUserInGroup(request: IMonoCloudCookieRequest, response: IMonoCloudCookieResponse, groups: string[], groupsClaim?: string, matchAll?: boolean): Promise<boolean>;
+  /**
+   * Retrieves the current user's session data.
+   *
+   * @param request - MonoCloud cookie request object.
+   * @param response - MonoCloud cookie response object.
+   *
+   * @returns Session or `undefined`.
+   */
+  getSession(request: IMonoCloudCookieRequest, response: IMonoCloudCookieResponse): Promise<MonoCloudSession$1 | undefined>;
+  /**
+   * Updates the current user's session with new data.
+   *
+   * @param request - MonoCloud cookie request object.
+   * @param response - MonoCloud cookie response object.
+   * @param session - The updated session object to persist.
+   */
+  updateSession(request: IMonoCloudCookieRequest, response: IMonoCloudCookieResponse, session: MonoCloudSession$1): Promise<void>;
+  /**
+   * Returns a copy of the current client configuration options.
+   *
+   * @returns A copy of the initialized configuration.
+   */
+  getOptions(): MonoCloudOptionsBase;
+  /**
+   * Destroys the local user session.
+   *
+   * @param request - MonoCloud cookie request object.
+   * @param response - MonoCloud cookie response object.
+   *
+   * @remarks
+   * This does not perform federated sign-out. For identity provider sign-out, use `signOut` handler.
+   */
+  destroySession(request: IMonoCloudCookieRequest, response: IMonoCloudCookieResponse): Promise<void>;
+  /**
+   * Retrieves active tokens (Access, ID, Refresh), performing a refresh if they are expired or missing.
+   *
+   * @param request - MonoCloud cookie request object.
+   * @param response - MonoCloud cookie response object.
+   * @param options - Configuration for token retrieval (force refresh, specific scopes/resources).
+   *
+   * @returns Fetched tokens
+   *
+   * @throws {@link MonoCloudValidationError} If the session does not exist or tokens cannot be found/refreshed.
+   */
+  getTokens(request: IMonoCloudCookieRequest, response: IMonoCloudCookieResponse, options?: GetTokensOptions): Promise<MonoCloudTokens>;
+  private verifyLogoutToken;
+  private handleCatchAll;
+  private validateOptions;
+}
+//#endregion
+export { type AccessToken, type ApplicationState, type AuthState, type AuthenticateOptions, type Authenticators, type AuthorizationParams, type CallbackOptions, type CallbackParams, type ClientAuthMethod, type CodeChallengeMethod, type CookieOptions, type DisplayOptions, type EndSessionParameters, type GetTokensOptions, type Group, type IMonoCloudCookieRequest, type IMonoCloudCookieResponse, type IdTokenClaims, type Indicator, type IssuerMetadata, type JWSAlgorithm, type Jwk, type Jwks, type JwsHeaderParameters, MonoCloudAuthBaseError, type MonoCloudClientOptions, type MonoCloudCookieOptions, MonoCloudCoreClient, MonoCloudHttpError, MonoCloudOPError, MonoCloudOidcClient, type MonoCloudOptions, type MonoCloudOptionsBase, type MonoCloudRequest, type MonoCloudResponse, type MonoCloudRoutes, type MonoCloudSession, type MonoCloudSessionOptions, type MonoCloudSessionOptionsBase, type MonoCloudSessionStore, type MonoCloudStateOptions, MonoCloudTokenError, type MonoCloudTokens, type MonoCloudUser, MonoCloudValidationError, type OnBackChannelLogout, type OnError, type OnSessionCreating, type OnSetApplicationState, type ParResponse, type Prompt, type PushedAuthorizationParams, type RefetchUserInfoOptions, type RefreshGrantOptions, type RefreshSessionOptions, type ResponseModes, type ResponseTypes, type SameSiteValues, type SecurityAlgorithms, type SessionLifetime, type SignInOptions, type SignOutOptions, type Tokens, type UserInfoOptions, type UserinfoResponse };
+//# sourceMappingURL=index.d.mts.map