@mulverse/mulguard-core 1.0.0

package/providers/bankid-no.d.ts

@@ -0,0 +1,134 @@
+/**
+ * <div class="provider" style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
+ * <span style={{fontSize: "1.35rem" }}>
+ *  Built-in sign in with <b>BankID Norway</b> integration.
+ * </span>
+ * <a href="https://bankid.no" style={{backgroundColor: "black", padding: "12px", borderRadius: "100%" }}>
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/bankid-no.svg" width="24"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/bankid-no
+ */
+import type { OIDCConfig, OIDCUserConfig } from "./index.js";
+/**
+ * @see [Core conepts - ID Token](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/core-concepts/id-token)
+ * @see [userinfo](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/api/userinfo)
+ */
+export interface BankIDNorwayProfile {
+    exp: number;
+    iat: number;
+    /** Epoc time */
+    auth_time: number;
+    jti: string;
+    iss: string;
+    /** Always client_id */
+    aud: string;
+    sub: string;
+    typ: "ID";
+    /** Equals client_id */
+    azp: string;
+    session_state: string;
+    at_hash: string;
+    name: string;
+    given_name: string;
+    family_name: string;
+    birthdate: string;
+    updated_at: number;
+    /**
+     * Uniform Resource Name for [IDP option](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/core-concepts/identity-providers) being used,
+     * including Level of Assurance (LoA).
+     * @example
+     * ```
+     * urn:bankid:bid;LOA=4
+     * ```
+     */
+    acr: string;
+    sid: string;
+    /**
+     * Name of [IDP option](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/core-concepts/identity-providers) being used to authenticate the end-user.
+     * If the end-user is subject to authentication step-up,
+     * note that this value may differ from any `amr` value specified
+     * in the `login_hint` parameter of the [authorize](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/api/authorize) endpoint.
+     */
+    amr: "BID" | "BIM" | "BIS";
+    /** Personal Identifier (PID) / Serial Number) from associated BankID certificate. */
+    bankid_altsub: string;
+    /**
+     * In case of BID or BIM, the issuer of the end user certificate is returned.
+     * @example
+     * ```
+     * CN=BankID Bankenes ID-tjeneste Bank CA 2,
+     * OU=988477052,
+     * O=Bankenes ID-tjeneste AS,*
+     * C=NO;OrginatorId=9775;OriginatorName=Gjensidige Bank RA 1
+     * ```
+     */
+    originator: string;
+    additionalCertInfo: {
+        certValidFrom: number;
+        serialNumber: string;
+        keyAlgorithm: string;
+        keySize: string;
+        policyOid: string;
+        certQualified: boolean;
+        certValidTo: number;
+        versionNumber: string;
+        subjectName: string;
+    };
+    /** Currently used as an input parameter for the [securityData](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/api/securitydata) endpoint of the [Fraud Data](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/advanced-topics/fraud-data) service */
+    tid: string;
+    /** Only returned from the `userinfo_endpoint` */
+    email?: string;
+    /**
+     * [Norwegian National Identity Number (fødselsnummer)](https://www.skatteetaten.no/en/person/foreign/norwegian-identification-number/national-identity-number). It can be an alternative to `sub`.
+     * Requires `nnin_altsub` scope at the [authorize](https://confluence.bankidnorge.no/confluence/pdoidcl/technical-documentation/api/authorize) endpoint.
+     * @example
+     * ```
+     * 181266*****
+     * ```
+     */
+    nnin_altsub?: string;
+}
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/bankid-no
+ * ```
+ *
+ * #### Configuration
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import BankIDNorge from "@auth/core/providers/bankid-no"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Auth0({
+ *       clientId: AUTH_BANKID_NO_ID,
+ *       clientSecret: AUTH_BANKID_NO_SECRET,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [OpenID Connect Provider from BankID](https://confluence.bankidnorge.no/confluence/pdoidcl)
+ *
+ * ### Notes
+ *
+ * The BankID Norge provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/bankid-no.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function BankIDNorway(config: OIDCUserConfig<BankIDNorwayProfile>): OIDCConfig<BankIDNorwayProfile>;
+//# sourceMappingURL=bankid-no.d.ts.map

package/providers/bankid-no.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"bankid-no.d.ts","sourceRoot":"","sources":["../src/providers/bankid-no.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AACH,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE5D;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,gBAAgB;IAChB,SAAS,EAAE,MAAM,CAAA;IACjB,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,uBAAuB;IACvB,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,IAAI,CAAA;IACT,uBAAuB;IACvB,GAAG,EAAE,MAAM,CAAA;IACX,aAAa,EAAE,MAAM,CAAA;IACrB,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,EAAE,MAAM,CAAA;IACZ,UAAU,EAAE,MAAM,CAAA;IAClB,WAAW,EAAE,MAAM,CAAA;IACnB,SAAS,EAAE,MAAM,CAAA;IACjB,UAAU,EAAE,MAAM,CAAA;IAClB;;;;;;;OAOG;IACH,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX;;;;;OAKG;IACH,GAAG,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,CAAA;IAC1B,qFAAqF;IACrF,aAAa,EAAE,MAAM,CAAA;IACrB;;;;;;;;;OASG;IACH,UAAU,EAAE,MAAM,CAAA;IAClB,kBAAkB,EAAE;QAClB,aAAa,EAAE,MAAM,CAAA;QACrB,YAAY,EAAE,MAAM,CAAA;QACpB,YAAY,EAAE,MAAM,CAAA;QACpB,OAAO,EAAE,MAAM,CAAA;QACf,SAAS,EAAE,MAAM,CAAA;QACjB,aAAa,EAAE,OAAO,CAAA;QACtB,WAAW,EAAE,MAAM,CAAA;QACnB,aAAa,EAAE,MAAM,CAAA;QACrB,WAAW,EAAE,MAAM,CAAA;KACpB,CAAA;IACD,+SAA+S;IAC/S,GAAG,EAAE,MAAM,CAAA;IACX,iDAAiD;IACjD,KAAK,CAAC,EAAE,MAAM,CAAA;IACd;;;;;;;OAOG;IACH,WAAW,CAAC,EAAE,MAAM,CAAA;CACrB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuCG;AACH,MAAM,CAAC,OAAO,UAAU,YAAY,CAClC,MAAM,EAAE,cAAc,CAAC,mBAAmB,CAAC,GAC1C,UAAU,CAAC,mBAAmB,CAAC,CAwBjC"}

package/providers/bankid-no.js

@@ -0,0 +1,65 @@
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/bankid-no
+ * ```
+ *
+ * #### Configuration
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import BankIDNorge from "@auth/core/providers/bankid-no"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Auth0({
+ *       clientId: AUTH_BANKID_NO_ID,
+ *       clientSecret: AUTH_BANKID_NO_SECRET,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [OpenID Connect Provider from BankID](https://confluence.bankidnorge.no/confluence/pdoidcl)
+ *
+ * ### Notes
+ *
+ * The BankID Norge provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/bankid-no.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * ## Help
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ */
+export default function BankIDNorway(config) {
+    return {
+        id: "bankid-no",
+        name: "BankID Norge",
+        type: "oidc",
+        issuer: "https://auth.bankid.no/auth/realms/prod",
+        client: {
+            token_endpoint_auth_method: "client_secret_post",
+            userinfo_signed_response_alg: "RS256",
+        },
+        idToken: false,
+        authorization: { params: { ui_locales: "no", login_hint: "BIS" } },
+        profile(profile) {
+            return {
+                id: profile.sub,
+                name: profile.name,
+                email: profile.email ?? null,
+                image: null,
+            };
+        },
+        checks: ["pkce", "state", "nonce"],
+        style: { text: "#fff", bg: "#39134c" },
+        options: config,
+    };
+}

package/providers/battlenet.d.ts

@@ -0,0 +1,85 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#000", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Battle.net</b> integration.</span>
+ * <a href="https://Battle.net/">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/battlenet.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/battlenet
+ */
+import type { OAuthConfig, OAuthUserConfig } from "./index.js";
+export interface BattleNetProfile extends Record<string, any> {
+    sub: string;
+    battle_tag: string;
+}
+/** See the [available regions](https://develop.battle.net/documentation/guides/regionality-and-apis) */
+export type BattleNetIssuer = "https://oauth.battle.net" | "https://oauth.battlenet.com.cn" | "https://www.battlenet.com.cn/oauth" | `https://${"us" | "eu" | "kr" | "tw"}.battle.net/oauth`;
+/**
+ * Add Battle.net login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/battlenet
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import BattleNet from "@auth/core/providers/battlenet"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     BattleNet({
+ *       clientId: BATTLENET_CLIENT_ID,
+ *       clientSecret: BATTLENET_CLIENT_SECRET,
+ *       issuer: BATTLENET_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ * issuer must be one of these values, based on the available regions:
+ * ```
+ * type BattleNetIssuer =
+ *   | "https://oauth.battle.net"
+ *   | "https://oauth.battlenet.com.cn"
+ *   | "https://www.battlenet.com.cn/oauth"
+ *   | "https://us.battle.net/oauth"
+ *   | "https://eu.battle.net/oauth"
+ *   | "https://kr.battle.net/oauth"
+ *   | "https://tw.battle.net/oauth"
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [BattleNet OAuth documentation](https://develop.battle.net/documentation/guides/using-oauth)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the BattleNet provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The BattleNet provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/battlenet.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function BattleNet<P extends BattleNetProfile>(options: OAuthUserConfig<P> & {
+    issuer: BattleNetIssuer;
+}): OAuthConfig<P>;
+//# sourceMappingURL=battlenet.d.ts.map

package/providers/battlenet.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"battlenet.d.ts","sourceRoot":"","sources":["../src/providers/battlenet.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AACH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D,MAAM,WAAW,gBAAiB,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IAC3D,GAAG,EAAE,MAAM,CAAA;IACX,UAAU,EAAE,MAAM,CAAA;CACnB;AAED,wGAAwG;AACxG,MAAM,MAAM,eAAe,GACvB,0BAA0B,GAC1B,gCAAgC,GAChC,oCAAoC,GACpC,WAAW,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,mBAAmB,CAAA;AAE3D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+DG;AACH,MAAM,CAAC,OAAO,UAAU,SAAS,CAAC,CAAC,SAAS,gBAAgB,EAC1D,OAAO,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG;IAAE,MAAM,EAAE,eAAe,CAAA;CAAE,GACxD,WAAW,CAAC,CAAC,CAAC,CAgBhB"}

package/providers/battlenet.js

@@ -0,0 +1,81 @@
+/**
+ * Add Battle.net login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/battlenet
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import BattleNet from "@auth/core/providers/battlenet"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     BattleNet({
+ *       clientId: BATTLENET_CLIENT_ID,
+ *       clientSecret: BATTLENET_CLIENT_SECRET,
+ *       issuer: BATTLENET_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ * issuer must be one of these values, based on the available regions:
+ * ```
+ * type BattleNetIssuer =
+ *   | "https://oauth.battle.net"
+ *   | "https://oauth.battlenet.com.cn"
+ *   | "https://www.battlenet.com.cn/oauth"
+ *   | "https://us.battle.net/oauth"
+ *   | "https://eu.battle.net/oauth"
+ *   | "https://kr.battle.net/oauth"
+ *   | "https://tw.battle.net/oauth"
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [BattleNet OAuth documentation](https://develop.battle.net/documentation/guides/using-oauth)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the BattleNet provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The BattleNet provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/battlenet.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function BattleNet(options) {
+    return {
+        id: "battlenet",
+        name: "Battle.net",
+        type: "oidc",
+        profile(profile) {
+            return {
+                id: profile.sub,
+                name: profile.battle_tag,
+                email: null,
+                image: null,
+            };
+        },
+        style: { bg: "#148eff", text: "#fff" },
+        options,
+    };
+}

package/providers/beyondidentity.d.ts

@@ -0,0 +1,77 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#5077c5", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Beyond Identity</b> integration.</span>
+ * <a href="https://www.beyondidentity.com/">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/beyondidentity.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/beyondidentity
+ */
+import type { OIDCConfig, OIDCUserConfig } from "./index.js";
+/** @see [Beyond Identity Developer Docs](https://developer.beyondidentity.com/) */
+export interface BeyondIdentityProfile {
+    /** The user's unique identifier. */
+    sub: string;
+    /** The user's full name. */
+    name: string;
+    /** The user's preferred username. */
+    preferred_username: string;
+    /** The user's email address. */
+    email: string;
+}
+/**
+ * Add Beyond Identity login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/beyondidentity
+ * ```
+ *
+ * #### Configuration
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import BeyondIdentity from "@auth/core/providers/beyondidentity"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     BeyondIdentity({
+ *       clientId: BEYOND_IDENTITY_CLIENT_ID,
+ *       clientSecret: BEYOND_IDENTITY_CLIENT_SECRET,
+ *       issuer: BEYOND_IDENTITY_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Beyond Identity Developer Docs](https://developer.beyondidentity.com/)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the BeyondIdentity provider is
+ * based on the [OIDC](https://openid.net/specs/openid-connect-core-1_0.html) specification.
+ *
+ * :::tip
+ *
+ * The BeyondIdentity provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/beyondidentity.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function BeyondIdentity(config: OIDCUserConfig<BeyondIdentityProfile>): OIDCConfig<BeyondIdentityProfile>;
+//# sourceMappingURL=beyondidentity.d.ts.map

package/providers/beyondidentity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"beyondidentity.d.ts","sourceRoot":"","sources":["../src/providers/beyondidentity.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE5D,mFAAmF;AACnF,MAAM,WAAW,qBAAqB;IACpC,oCAAoC;IACpC,GAAG,EAAE,MAAM,CAAA;IACX,4BAA4B;IAC5B,IAAI,EAAE,MAAM,CAAA;IACZ,qCAAqC;IACrC,kBAAkB,EAAE,MAAM,CAAA;IAC1B,gCAAgC;IAChC,KAAK,EAAE,MAAM,CAAA;CACd;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoDG;AAEH,MAAM,CAAC,OAAO,UAAU,cAAc,CACpC,MAAM,EAAE,cAAc,CAAC,qBAAqB,CAAC,GAC5C,UAAU,CAAC,qBAAqB,CAAC,CAoBnC"}

package/providers/beyondidentity.js

@@ -0,0 +1,84 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#5077c5", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Beyond Identity</b> integration.</span>
+ * <a href="https://www.beyondidentity.com/">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/beyondidentity.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/beyondidentity
+ */
+/**
+ * Add Beyond Identity login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/beyondidentity
+ * ```
+ *
+ * #### Configuration
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import BeyondIdentity from "@auth/core/providers/beyondidentity"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     BeyondIdentity({
+ *       clientId: BEYOND_IDENTITY_CLIENT_ID,
+ *       clientSecret: BEYOND_IDENTITY_CLIENT_SECRET,
+ *       issuer: BEYOND_IDENTITY_ISSUER,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [Beyond Identity Developer Docs](https://developer.beyondidentity.com/)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the BeyondIdentity provider is
+ * based on the [OIDC](https://openid.net/specs/openid-connect-core-1_0.html) specification.
+ *
+ * :::tip
+ *
+ * The BeyondIdentity provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/beyondidentity.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function BeyondIdentity(config) {
+    return {
+        id: "beyondidentity",
+        name: "Beyond Identity",
+        type: "oidc",
+        profile(profile) {
+            return {
+                id: profile.sub,
+                email: profile.email,
+                name: profile.name,
+                image: null,
+                preferred_username: profile.preferred_username,
+            };
+        },
+        style: {
+            bg: "#5077c5",
+            text: "#fff",
+        },
+        options: config,
+    };
+}

package/providers/bitbucket.d.ts

@@ -0,0 +1,89 @@
+/**
+ * <div class="provider" style={{ display: "flex", justifyContent: "space-between", color: "#fff" }}>
+ * <span>Built-in <b>Bitbucket</b> integration.</span>
+ * <a href="https://bitbucket.org">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/bitbucket.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/bitbucket
+ */
+import { OAuthConfig, OAuthUserConfig } from "./index.js";
+type LiteralUnion<T extends U, U = string> = T | (U & Record<never, never>);
+/**
+ * @see https://developer.atlassian.com/cloud/bitbucket/rest/api-group-users/#api-user-get
+ */
+export interface BitbucketProfile {
+    display_name: string;
+    links: Record<LiteralUnion<"self" | "avatar" | "repositories" | "snippets" | "html" | "hooks">, {
+        href?: string;
+    }>;
+    created_on: string;
+    type: string;
+    uuid: string;
+    has_2fa_enabled: boolean | null;
+    username: string;
+    is_staff: boolean;
+    account_id: string;
+    nickname: string;
+    account_status: string;
+    location: string | null;
+}
+/**
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ *
+ * ```ts
+ * https://example.com/api/auth/callback/bitbucket
+ * ```
+ *
+ * #### Configuration
+ *
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import Bitbucket from "@auth/core/providers/bitbucket"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Bitbucket({
+ *       clientId: process.env.BITBUCKET_CLIENT_ID,
+ *       clientSecret: process.env.BITBUCKET_CLIENT_SECRET,
+ *     })
+ *   ],
+ * })
+ * ```
+ *
+ * #### Resources
+ *
+ * - [Using OAuth on Bitbucket Cloud](https://support.atlassian.com/bitbucket-cloud/docs/use-oauth-on-bitbucket-cloud/)
+ * - [Bitbucket REST API Authentication](https://developer.atlassian.com/cloud/bitbucket/rest/intro/#authentication)
+ * - [Bitbucket REST API Users](https://developer.atlassian.com/cloud/bitbucket/rest/api-group-users/#api-group-users)
+ *
+ *  #### Notes
+ *
+ * By default, Auth.js assumes that the Bitbucket provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The Bitbucket provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/bitbucket.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function Bitbucket(options: OAuthUserConfig<BitbucketProfile>): OAuthConfig<BitbucketProfile>;
+export {};
+//# sourceMappingURL=bitbucket.d.ts.map

package/providers/bitbucket.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"bitbucket.d.ts","sourceRoot":"","sources":["../src/providers/bitbucket.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAEzD,KAAK,YAAY,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,CAAA;AAE3E;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,YAAY,EAAE,MAAM,CAAA;IACpB,KAAK,EAAE,MAAM,CACX,YAAY,CACV,MAAM,GAAG,QAAQ,GAAG,cAAc,GAAG,UAAU,GAAG,MAAM,GAAG,OAAO,CACnE,EACD;QAAE,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAClB,CAAA;IACD,UAAU,EAAE,MAAM,CAAA;IAClB,IAAI,EAAE,MAAM,CAAA;IACZ,IAAI,EAAE,MAAM,CAAA;IACZ,eAAe,EAAE,OAAO,GAAG,IAAI,CAAA;IAC/B,QAAQ,EAAE,MAAM,CAAA;IAChB,QAAQ,EAAE,OAAO,CAAA;IACjB,UAAU,EAAE,MAAM,CAAA;IAClB,QAAQ,EAAE,MAAM,CAAA;IAChB,cAAc,EAAE,MAAM,CAAA;IACtB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAA;CACxB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsDG;AACH,MAAM,CAAC,OAAO,UAAU,SAAS,CAC/B,OAAO,EAAE,eAAe,CAAC,gBAAgB,CAAC,GACzC,WAAW,CAAC,gBAAgB,CAAC,CA0B/B"}