@mulverse/mulguard-core 1.0.0

package/providers/asgardeo.d.ts

@@ -0,0 +1,102 @@
+/**
+ * <div class="provider" style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
+ * <span style={{fontSize: "1.35rem" }}>
+ *  Built-in sign in with <b>Asgardeo</b> integration.
+ * </span>
+ * <a href="https://wso2.com/asgardeo/" style={{backgroundColor: "#ECEFF1", padding: "12px", borderRadius: "100%" }}>
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/asgardeo.svg" width="24"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/asgardeo
+ */
+import type { OIDCConfig, OIDCUserConfig } from "./index.js";
+/** The returned user profile from Asgardeo when using the profile callback. */
+export interface AsgardeoProfile extends Record<string, any> {
+    /**
+     * The user Asgardeo account ID
+     */
+    sub: string;
+    /**
+     * The user name
+     */
+    given_name: string;
+    /**
+     * The user email
+     */
+    email: string;
+    /**
+     * The user profile picture
+     */
+    picture: string;
+}
+/**
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/asgardeo
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Asgardeo from "@auth/core/providers/asgardeo";
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Asgardeo({
+ *       clientId: ASGARDEO_CLIENT_ID,
+ *       clientSecret: ASGARDEO_CLIENT_SECRET,
+ *       issuer: ASGARDEO_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Configuring Asgardeo
+ *
+ * Follow these steps:
+ *
+ * 1. Log into the [Asgardeo console](https://console.asgardeo.io)
+ * 2. Next, go to "Application" tab (more info [here](https://wso2.com/asgardeo/docs/guides/applications/register-oidc-web-app/))
+ * 3. Register a standard based, Open ID connect, application
+ * 4. Add the **callback URLs**: `http://localhost:3000/api/auth/callback/asgardeo` (development) and `https://{YOUR_DOMAIN}.com/api/auth/callback/asgardeo` (production)
+ * 5. After registering the application, go to "Protocol" tab.
+ * 6. Check `code` as the grant type.
+ * 7. Add "Authorized redirect URLs" & "Allowed origins fields"
+ * 8. Make Email, First Name, Photo URL user attributes mandatory from the console.
+ *
+ * Then, create a `.env` file in the project root add the following entries:
+ *
+ * ```
+ * ASGARDEO_CLIENT_ID="Copy client ID from protocol tab here"
+ * ASGARDEO_CLIENT_SECRET="Copy client from protocol tab here"
+ * ASGARDEO_ISSUER="Copy the issuer url from the info tab here"
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Asgardeo - Authentication Guide](https://wso2.com/asgardeo/docs/guides/authentication)
+ * - [Learn more about OAuth](https://authjs.dev/concepts/oauth)
+ *
+ * ### Notes
+ *
+ * The Asgardeo provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/asgardeo.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::info
+ * By default, Auth.js assumes that the Asgardeo provider is based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) spec
+ * :::
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function Asgardeo(config: OIDCUserConfig<AsgardeoProfile>): OIDCConfig<AsgardeoProfile>;
+//# sourceMappingURL=asgardeo.d.ts.map

package/providers/asgardeo.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"asgardeo.d.ts","sourceRoot":"","sources":["../src/providers/asgardeo.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE5D,+EAA+E;AAC/E,MAAM,WAAW,eAAgB,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IAC1D;;OAEG;IACH,GAAG,EAAE,MAAM,CAAA;IACX;;OAEG;IACH,UAAU,EAAE,MAAM,CAAA;IAClB;;OAEG;IACH,KAAK,EAAE,MAAM,CAAA;IACb;;OAEG;IACH,OAAO,EAAE,MAAM,CAAA;CAChB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmEG;AACH,MAAM,CAAC,OAAO,UAAU,QAAQ,CAC9B,MAAM,EAAE,cAAc,CAAC,eAAe,CAAC,GACtC,UAAU,CAAC,eAAe,CAAC,CAY7B"}

package/providers/asgardeo.js

@@ -0,0 +1,93 @@
+/**
+ * <div class="provider" style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
+ * <span style={{fontSize: "1.35rem" }}>
+ *  Built-in sign in with <b>Asgardeo</b> integration.
+ * </span>
+ * <a href="https://wso2.com/asgardeo/" style={{backgroundColor: "#ECEFF1", padding: "12px", borderRadius: "100%" }}>
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/asgardeo.svg" width="24"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/asgardeo
+ */
+/**
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/asgardeo
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Asgardeo from "@auth/core/providers/asgardeo";
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Asgardeo({
+ *       clientId: ASGARDEO_CLIENT_ID,
+ *       clientSecret: ASGARDEO_CLIENT_SECRET,
+ *       issuer: ASGARDEO_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Configuring Asgardeo
+ *
+ * Follow these steps:
+ *
+ * 1. Log into the [Asgardeo console](https://console.asgardeo.io)
+ * 2. Next, go to "Application" tab (more info [here](https://wso2.com/asgardeo/docs/guides/applications/register-oidc-web-app/))
+ * 3. Register a standard based, Open ID connect, application
+ * 4. Add the **callback URLs**: `http://localhost:3000/api/auth/callback/asgardeo` (development) and `https://{YOUR_DOMAIN}.com/api/auth/callback/asgardeo` (production)
+ * 5. After registering the application, go to "Protocol" tab.
+ * 6. Check `code` as the grant type.
+ * 7. Add "Authorized redirect URLs" & "Allowed origins fields"
+ * 8. Make Email, First Name, Photo URL user attributes mandatory from the console.
+ *
+ * Then, create a `.env` file in the project root add the following entries:
+ *
+ * ```
+ * ASGARDEO_CLIENT_ID="Copy client ID from protocol tab here"
+ * ASGARDEO_CLIENT_SECRET="Copy client from protocol tab here"
+ * ASGARDEO_ISSUER="Copy the issuer url from the info tab here"
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Asgardeo - Authentication Guide](https://wso2.com/asgardeo/docs/guides/authentication)
+ * - [Learn more about OAuth](https://authjs.dev/concepts/oauth)
+ *
+ * ### Notes
+ *
+ * The Asgardeo provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/asgardeo.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::info
+ * By default, Auth.js assumes that the Asgardeo provider is based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) spec
+ * :::
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function Asgardeo(config) {
+    return {
+        id: "asgardeo",
+        name: "Asgardeo",
+        type: "oidc",
+        wellKnown: `${config?.issuer}/oauth2/token/.well-known/openid-configuration`,
+        style: {
+            bg: "#000",
+            text: "#fff",
+        },
+        options: config,
+    };
+}

package/providers/atlassian.d.ts

@@ -0,0 +1,94 @@
+/**
+ * <div style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
+ * <span style={{fontSize: "1.35rem" }}>
+ *  Built-in sign in with <b>Atlassian</b> integration.
+ * </span>
+ * <a href="https://www.atlassian.com/" style={{backgroundColor: "black", padding: "12px", borderRadius: "100%" }}>
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/atlassian.svg" width="24" style={{ marginTop: "-3px"}} />
+ * </a>
+ * </div>
+ *
+ * @module providers/atlassian
+ */
+import type { OAuthConfig, OAuthUserConfig } from "./index.js";
+/** The returned user profile from Atlassian when using the profile callback. */
+export interface AtlassianProfile extends Record<string, any> {
+    /**
+     * The user's atlassian account ID
+     */
+    account_id: string;
+    /**
+     * The user name
+     */
+    name: string;
+    /**
+     * The user's email
+     */
+    email: string;
+    /**
+     * The user's profile picture
+     */
+    picture: string;
+}
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/atlassian
+ * ```
+ *
+ * #### Configuration
+ *
+ * Import the provider and configure it in your **Auth.js** initialization file:
+ *
+ * ```ts
+ * import Atlassian from "@auth/core/providers/atlassian"
+ * ...
+ * providers: [
+ *  Atlassian({
+ *    clientId: env.AUTH_ATLASSIAN_ID,
+ *    clientSecret: env.AUTH_ATLASSIAN_SECRET,
+ *  }),
+ * ]
+ * ...
+ * ```
+ *
+ * ### Configuring Atlassian
+ *
+ * Follow these steps:
+ *
+ * 1. From any page on [developer.atlassian.com](https://developer.atlassian.com), select your profile icon in the top-right corner, and from the dropdown, select **Developer console**.
+ * 2. Select your app from the list (or create one if you don't already have one)
+ * 3. Select **Authorization** in the left menu
+ * 4. Next to OAuth 2.0 (3LO), select **Configure** (or **Add** for newly created app)
+ * 5. Enter the **Callback URL**: `https://{YOUR_DOMAIN}/api/auth/callback/atlassian`
+ * 6. Click Save changes
+ * 7. Select **Settings** in the left menu
+ * 8. Access and copy your app's **Client ID** and **Secret**
+ *
+ * Then, create a `.env` file in the project root add the following entries:
+ *
+ * ```
+ * AUTH_ATLASSIAN_ID=<Client ID copied in step 8>
+ * AUTH_ATLASSIAN_SECRET=<Secret copied in step 8>
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Atlassian docs](https://developer.atlassian.com/cloud/jira/software/oauth-2-3lo-apps/)
+ *
+ * ### Notes
+ *
+ * The Atlassian provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/atlassian.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/providers/custom-provider#override-default-options).
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function Atlassian(options: OAuthUserConfig<AtlassianProfile>): OAuthConfig<AtlassianProfile>;
+//# sourceMappingURL=atlassian.d.ts.map

package/providers/atlassian.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"atlassian.d.ts","sourceRoot":"","sources":["../src/providers/atlassian.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AACH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D,gFAAgF;AAChF,MAAM,WAAW,gBAAiB,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IAC3D;;OAEG;IACH,UAAU,EAAE,MAAM,CAAA;IAClB;;OAEG;IACH,IAAI,EAAE,MAAM,CAAA;IACZ;;OAEG;IACH,KAAK,EAAE,MAAM,CAAA;IACb;;OAEG;IACH,OAAO,EAAE,MAAM,CAAA;CAChB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2DG;AACH,MAAM,CAAC,OAAO,UAAU,SAAS,CAC/B,OAAO,EAAE,eAAe,CAAC,gBAAgB,CAAC,GACzC,WAAW,CAAC,gBAAgB,CAAC,CAuB/B"}

package/providers/atlassian.js

@@ -0,0 +1,84 @@
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/atlassian
+ * ```
+ *
+ * #### Configuration
+ *
+ * Import the provider and configure it in your **Auth.js** initialization file:
+ *
+ * ```ts
+ * import Atlassian from "@auth/core/providers/atlassian"
+ * ...
+ * providers: [
+ *  Atlassian({
+ *    clientId: env.AUTH_ATLASSIAN_ID,
+ *    clientSecret: env.AUTH_ATLASSIAN_SECRET,
+ *  }),
+ * ]
+ * ...
+ * ```
+ *
+ * ### Configuring Atlassian
+ *
+ * Follow these steps:
+ *
+ * 1. From any page on [developer.atlassian.com](https://developer.atlassian.com), select your profile icon in the top-right corner, and from the dropdown, select **Developer console**.
+ * 2. Select your app from the list (or create one if you don't already have one)
+ * 3. Select **Authorization** in the left menu
+ * 4. Next to OAuth 2.0 (3LO), select **Configure** (or **Add** for newly created app)
+ * 5. Enter the **Callback URL**: `https://{YOUR_DOMAIN}/api/auth/callback/atlassian`
+ * 6. Click Save changes
+ * 7. Select **Settings** in the left menu
+ * 8. Access and copy your app's **Client ID** and **Secret**
+ *
+ * Then, create a `.env` file in the project root add the following entries:
+ *
+ * ```
+ * AUTH_ATLASSIAN_ID=<Client ID copied in step 8>
+ * AUTH_ATLASSIAN_SECRET=<Secret copied in step 8>
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Atlassian docs](https://developer.atlassian.com/cloud/jira/software/oauth-2-3lo-apps/)
+ *
+ * ### Notes
+ *
+ * The Atlassian provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/atlassian.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/providers/custom-provider#override-default-options).
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function Atlassian(options) {
+    return {
+        id: "atlassian",
+        name: "Atlassian",
+        type: "oauth",
+        authorization: {
+            url: "https://auth.atlassian.com/authorize",
+            params: { audience: "api.atlassian.com", scope: "read:me" },
+        },
+        token: "https://auth.atlassian.com/oauth/token",
+        userinfo: "https://api.atlassian.com/me",
+        profile(profile) {
+            return {
+                id: profile.account_id,
+                name: profile.name,
+                email: profile.email,
+                image: profile.picture,
+            };
+        },
+        checks: ["state"],
+        style: { bg: "#fff", text: "#0052cc" },
+        options,
+    };
+}

package/providers/auth0.d.ts

@@ -0,0 +1,116 @@
+/**
+ * <div class="provider" style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
+ * <span style={{fontSize: "1.35rem" }}>
+ *  Built-in sign in with <b>Auth0</b> integration.
+ * </span>
+ * <a href="https://auth0.com" style={{backgroundColor: "black", padding: "12px", borderRadius: "100%" }}>
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/auth0.svg" width="24"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/auth0
+ */
+import type { OIDCConfig, OIDCUserConfig } from "./index.js";
+/** The returned user profile from Auth0 when using the profile callback. [Reference](https://auth0.com/docs/manage-users/user-accounts/user-profiles/user-profile-structure). */
+export interface Auth0Profile extends Record<string, any> {
+    /** The user's unique identifier. */
+    sub: string;
+    /** Custom fields that store info about a user that influences the user's access, such as support plan, security roles (if not using the Authorization Core feature set), or access control groups. To learn more, read Metadata Overview. */
+    app_metadata: object;
+    /** Indicates whether the user has been blocked. Importing enables subscribers to ensure that users remain blocked when migrating to Auth0. */
+    blocked: boolean;
+    /** Timestamp indicating when the user profile was first created. */
+    created_at: Date;
+    /** (unique) The user's email address. */
+    email: string;
+    /** Indicates whether the user has verified their email address. */
+    email_verified: boolean;
+    /** The user's family name. */
+    family_name: string;
+    /** The user's given name. */
+    given_name: string;
+    /** Custom fields that store info about a user that does not impact what they can or cannot access, such as work address, home address, or user preferences. To learn more, read Metadata Overview. */
+    user_metadata: object;
+    /** (unique) The user's username. */
+    username: string;
+    /** Contains info retrieved from the identity provider with which the user originally authenticates. Users may also link their profile to multiple identity providers; those identities will then also appear in this array. The contents of an individual identity provider object varies by provider. In some cases, it will also include an API Access Token to be used with the provider. */
+    identities: Array<{
+        /** Name of the Auth0 connection used to authenticate the user. */
+        connection: string;
+        /** Indicates whether the connection is a social one. */
+        isSocial: boolean;
+        /** Name of the entity that is authenticating the user, such as Facebook, Google, SAML, or your own provider. */
+        provider: string;
+        /** User's unique identifier for this connection/provider. */
+        user_id: string;
+        /** User info associated with the connection. When profiles are linked, it is populated with the associated user info for secondary accounts. */
+        profileData: object;
+        [key: string]: any;
+    }>;
+    /** IP address associated with the user's last login. */
+    last_ip: string;
+    /** Timestamp indicating when the user last logged in. If a user is blocked and logs in, the blocked session updates last_login. If you are using this property from inside a Rule using the user< object, its value will be associated with the login that triggered the rule; this is because rules execute after login. */
+    last_login: Date;
+    /** Timestamp indicating the last time the user's password was reset/changed. At user creation, this field does not exist. This property is only available for Database connections. */
+    last_password_reset: Date;
+    /** Number of times the user has logged in. If a user is blocked and logs in, the blocked session is counted in logins_count. */
+    logins_count: number;
+    /** List of multi-factor providers with which the user is enrolled. */
+    multifactor: string;
+    /** The user's full name. */
+    name: string;
+    /** The user's nickname. */
+    nickname: string;
+    /** The user's phone number. Only valid for users with SMS connections. */
+    phone_number: string;
+    /** Indicates whether the user has been verified their phone number. Only valid for users with SMS connections. */
+    phone_verified: boolean;
+    /** URL pointing to the user's profile picture. */
+    picture: string;
+    /** Timestamp indicating when the user's profile was last updated/modified. Changes to last_login are considered updates, so most of the time, updated_at will match last_login. */
+    updated_at: Date;
+    /** (unique) The user's identifier. Importing allows user records to be synchronized across multiple systems without using mapping tables. */
+    user_id: string;
+}
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/auth0
+ * ```
+ *
+ * #### Configuration
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import Auth0 from "@auth/core/providers/auth0"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Auth0({
+ *       clientId: AUTH0_ID,
+ *       clientSecret: AUTH0_SECRET,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Auth0 docs](https://auth0.com/docs/authenticate)
+ *
+ * ### Notes
+ *
+ * The Auth0 provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/auth0.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function Auth0(config: OIDCUserConfig<Auth0Profile>): OIDCConfig<Auth0Profile>;
+//# sourceMappingURL=auth0.d.ts.map

package/providers/auth0.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth0.d.ts","sourceRoot":"","sources":["../src/providers/auth0.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AACH,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE5D,iLAAiL;AACjL,MAAM,WAAW,YAAa,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IACvD,oCAAoC;IACpC,GAAG,EAAE,MAAM,CAAA;IACX,6OAA6O;IAC7O,YAAY,EAAE,MAAM,CAAA;IACpB,8IAA8I;IAC9I,OAAO,EAAE,OAAO,CAAA;IAChB,oEAAoE;IACpE,UAAU,EAAE,IAAI,CAAA;IAChB,yCAAyC;IACzC,KAAK,EAAE,MAAM,CAAA;IACb,mEAAmE;IACnE,cAAc,EAAE,OAAO,CAAA;IACvB,8BAA8B;IAC9B,WAAW,EAAE,MAAM,CAAA;IACnB,6BAA6B;IAC7B,UAAU,EAAE,MAAM,CAAA;IAClB,sMAAsM;IACtM,aAAa,EAAE,MAAM,CAAA;IACrB,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAA;IAChB,gYAAgY;IAChY,UAAU,EAAE,KAAK,CAAC;QAChB,kEAAkE;QAClE,UAAU,EAAE,MAAM,CAAA;QAClB,wDAAwD;QACxD,QAAQ,EAAE,OAAO,CAAA;QACjB,gHAAgH;QAChH,QAAQ,EAAE,MAAM,CAAA;QAChB,6DAA6D;QAC7D,OAAO,EAAE,MAAM,CAAA;QACf,gJAAgJ;QAChJ,WAAW,EAAE,MAAM,CAAA;QACnB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;KACnB,CAAC,CAAA;IACF,wDAAwD;IACxD,OAAO,EAAE,MAAM,CAAA;IACf,6TAA6T;IAC7T,UAAU,EAAE,IAAI,CAAA;IAChB,uLAAuL;IACvL,mBAAmB,EAAE,IAAI,CAAA;IACzB,gIAAgI;IAChI,YAAY,EAAE,MAAM,CAAA;IACpB,sEAAsE;IACtE,WAAW,EAAE,MAAM,CAAA;IACnB,4BAA4B;IAC5B,IAAI,EAAE,MAAM,CAAA;IACZ,2BAA2B;IAC3B,QAAQ,EAAE,MAAM,CAAA;IAChB,0EAA0E;IAC1E,YAAY,EAAE,MAAM,CAAA;IACpB,kHAAkH;IAClH,cAAc,EAAE,OAAO,CAAA;IACvB,kDAAkD;IAClD,OAAO,EAAE,MAAM,CAAA;IACf,mLAAmL;IACnL,UAAU,EAAE,IAAI,CAAA;IAChB,6IAA6I;IAC7I,OAAO,EAAE,MAAM,CAAA;CAChB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuCG;AACH,MAAM,CAAC,OAAO,UAAU,KAAK,CAC3B,MAAM,EAAE,cAAc,CAAC,YAAY,CAAC,GACnC,UAAU,CAAC,YAAY,CAAC,CAQ1B"}

package/providers/auth0.js

@@ -0,0 +1,49 @@
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/auth0
+ * ```
+ *
+ * #### Configuration
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import Auth0 from "@auth/core/providers/auth0"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Auth0({
+ *       clientId: AUTH0_ID,
+ *       clientSecret: AUTH0_SECRET,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Auth0 docs](https://auth0.com/docs/authenticate)
+ *
+ * ### Notes
+ *
+ * The Auth0 provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/auth0.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function Auth0(config) {
+    return {
+        id: "auth0",
+        name: "Auth0",
+        type: "oidc",
+        style: { text: "#fff", bg: "#EB5424" },
+        options: config,
+    };
+}

package/providers/authentik.d.ts

@@ -0,0 +1,90 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#fd4b2d", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Authentik</b> integration.</span>
+ * <a href="https://goauthentik.io/">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/authentik.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/authentik
+ */
+import type { OAuthConfig, OAuthUserConfig } from "./index.js";
+export interface AuthentikProfile extends Record<string, any> {
+    iss: string;
+    sub: string;
+    aud: string;
+    exp: number;
+    iat: number;
+    auth_time: number;
+    acr: string;
+    c_hash: string;
+    nonce: string;
+    at_hash: string;
+    email: string;
+    email_verified: boolean;
+    name: string;
+    given_name: string;
+    family_name: string;
+    preferred_username: string;
+    nickname: string;
+    groups: string[];
+}
+/**
+ * Add Authentik login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/authentik
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Authentik from "@auth/core/providers/authentik"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Authentik({
+ *       clientId: AUTHENTIK_CLIENT_ID,
+ *       clientSecret: AUTHENTIK_CLIENT_SECRET,
+ *       issuer: AUTHENTIK_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * :::note
+ * issuer should include the slug without a trailing slash – e.g., https://my-authentik-domain.com/application/o/My_Slug
+ * :::
+ *
+ * ### Resources
+ *
+ *  - [Authentik OAuth documentation](https://goauthentik.io/docs/providers/oauth2)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the Authentik provider is
+ * based on the [Open ID Connect](https://openid.net/specs/openid-connect-core-1_0.html) specification.
+ *
+ * :::tip
+ *
+ * The Authentik provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/authentik.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function Authentik<P extends AuthentikProfile>(options: OAuthUserConfig<P>): OAuthConfig<P>;
+//# sourceMappingURL=authentik.d.ts.map

package/providers/authentik.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authentik.d.ts","sourceRoot":"","sources":["../src/providers/authentik.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AACH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D,MAAM,WAAW,gBAAiB,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IAC3D,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,SAAS,EAAE,MAAM,CAAA;IACjB,GAAG,EAAE,MAAM,CAAA;IACX,MAAM,EAAE,MAAM,CAAA;IACd,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,MAAM,CAAA;IACf,KAAK,EAAE,MAAM,CAAA;IACb,cAAc,EAAE,OAAO,CAAA;IACvB,IAAI,EAAE,MAAM,CAAA;IACZ,UAAU,EAAE,MAAM,CAAA;IAClB,WAAW,EAAE,MAAM,CAAA;IACnB,kBAAkB,EAAE,MAAM,CAAA;IAC1B,QAAQ,EAAE,MAAM,CAAA;IAChB,MAAM,EAAE,MAAM,EAAE,CAAA;CACjB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwDG;AACH,MAAM,CAAC,OAAO,UAAU,SAAS,CAAC,CAAC,SAAS,gBAAgB,EAC1D,OAAO,EAAE,eAAe,CAAC,CAAC,CAAC,GAC1B,WAAW,CAAC,CAAC,CAAC,CAOhB"}