@mulverse/mulguard-core 1.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +24 -0
- package/adapters.d.ts +522 -0
- package/adapters.d.ts.map +1 -0
- package/adapters.js +170 -0
- package/errors.d.ts +429 -0
- package/errors.d.ts.map +1 -0
- package/errors.js +473 -0
- package/index.d.ts +547 -0
- package/index.d.ts.map +1 -0
- package/index.js +142 -0
- package/jwt.d.ts +132 -0
- package/jwt.d.ts.map +1 -0
- package/jwt.js +123 -0
- package/lib/actions/callback/handle-login.d.ts +35 -0
- package/lib/actions/callback/handle-login.d.ts.map +1 -0
- package/lib/actions/callback/handle-login.js +275 -0
- package/lib/actions/callback/index.d.ts +5 -0
- package/lib/actions/callback/index.d.ts.map +1 -0
- package/lib/actions/callback/index.js +409 -0
- package/lib/actions/callback/oauth/callback.d.ts +36 -0
- package/lib/actions/callback/oauth/callback.d.ts.map +1 -0
- package/lib/actions/callback/oauth/callback.js +248 -0
- package/lib/actions/callback/oauth/checks.d.ts +70 -0
- package/lib/actions/callback/oauth/checks.d.ts.map +1 -0
- package/lib/actions/callback/oauth/checks.js +188 -0
- package/lib/actions/callback/oauth/csrf-token.d.ts +33 -0
- package/lib/actions/callback/oauth/csrf-token.d.ts.map +1 -0
- package/lib/actions/callback/oauth/csrf-token.js +39 -0
- package/lib/actions/index.d.ts +6 -0
- package/lib/actions/index.d.ts.map +1 -0
- package/lib/actions/index.js +5 -0
- package/lib/actions/session.d.ts +5 -0
- package/lib/actions/session.d.ts.map +1 -0
- package/lib/actions/session.js +127 -0
- package/lib/actions/signin/authorization-url.d.ts +12 -0
- package/lib/actions/signin/authorization-url.d.ts.map +1 -0
- package/lib/actions/signin/authorization-url.js +94 -0
- package/lib/actions/signin/index.d.ts +4 -0
- package/lib/actions/signin/index.d.ts.map +1 -0
- package/lib/actions/signin/index.js +22 -0
- package/lib/actions/signin/send-token.d.ts +10 -0
- package/lib/actions/signin/send-token.d.ts.map +1 -0
- package/lib/actions/signin/send-token.js +98 -0
- package/lib/actions/signout.d.ts +11 -0
- package/lib/actions/signout.d.ts.map +1 -0
- package/lib/actions/signout.js +30 -0
- package/lib/actions/webauthn-options.d.ts +8 -0
- package/lib/actions/webauthn-options.d.ts.map +1 -0
- package/lib/actions/webauthn-options.js +60 -0
- package/lib/index.d.ts +2 -0
- package/lib/index.d.ts.map +1 -0
- package/lib/index.js +70 -0
- package/lib/init.d.ts +25 -0
- package/lib/init.d.ts.map +1 -0
- package/lib/init.js +172 -0
- package/lib/pages/error.d.ts +17 -0
- package/lib/pages/error.d.ts.map +1 -0
- package/lib/pages/error.js +40 -0
- package/lib/pages/index.d.ts +42 -0
- package/lib/pages/index.d.ts.map +1 -0
- package/lib/pages/index.js +136 -0
- package/lib/pages/signin.d.ts +10 -0
- package/lib/pages/signin.d.ts.map +1 -0
- package/lib/pages/signin.js +75 -0
- package/lib/pages/signout.d.ts +8 -0
- package/lib/pages/signout.d.ts.map +1 -0
- package/lib/pages/signout.js +17 -0
- package/lib/pages/styles.d.ts +3 -0
- package/lib/pages/styles.d.ts.map +1 -0
- package/lib/pages/styles.js +381 -0
- package/lib/pages/verify-request.d.ts +8 -0
- package/lib/pages/verify-request.d.ts.map +1 -0
- package/lib/pages/verify-request.js +11 -0
- package/lib/symbols.d.ts +50 -0
- package/lib/symbols.d.ts.map +1 -0
- package/lib/symbols.js +57 -0
- package/lib/utils/actions.d.ts +3 -0
- package/lib/utils/actions.d.ts.map +1 -0
- package/lib/utils/actions.js +14 -0
- package/lib/utils/assert.d.ts +14 -0
- package/lib/utils/assert.d.ts.map +1 -0
- package/lib/utils/assert.js +168 -0
- package/lib/utils/callback-url.d.ts +17 -0
- package/lib/utils/callback-url.d.ts.map +1 -0
- package/lib/utils/callback-url.js +27 -0
- package/lib/utils/cookie.d.ts +111 -0
- package/lib/utils/cookie.d.ts.map +1 -0
- package/lib/utils/cookie.js +205 -0
- package/lib/utils/date.d.ts +7 -0
- package/lib/utils/date.d.ts.map +1 -0
- package/lib/utils/date.js +8 -0
- package/lib/utils/email.d.ts +20 -0
- package/lib/utils/email.d.ts.map +1 -0
- package/lib/utils/email.js +57 -0
- package/lib/utils/env.d.ts +9 -0
- package/lib/utils/env.d.ts.map +1 -0
- package/lib/utils/env.js +96 -0
- package/lib/utils/logger.d.ts +18 -0
- package/lib/utils/logger.d.ts.map +1 -0
- package/lib/utils/logger.js +50 -0
- package/lib/utils/merge.d.ts +3 -0
- package/lib/utils/merge.d.ts.map +1 -0
- package/lib/utils/merge.js +23 -0
- package/lib/utils/providers.d.ts +19 -0
- package/lib/utils/providers.d.ts.map +1 -0
- package/lib/utils/providers.js +149 -0
- package/lib/utils/session.d.ts +7 -0
- package/lib/utils/session.d.ts.map +1 -0
- package/lib/utils/session.js +29 -0
- package/lib/utils/web.d.ts +10 -0
- package/lib/utils/web.d.ts.map +1 -0
- package/lib/utils/web.js +109 -0
- package/lib/utils/webauthn-client.d.ts +30 -0
- package/lib/utils/webauthn-client.d.ts.map +1 -0
- package/lib/utils/webauthn-client.js +197 -0
- package/lib/utils/webauthn-utils.d.ts +81 -0
- package/lib/utils/webauthn-utils.d.ts.map +1 -0
- package/lib/utils/webauthn-utils.js +343 -0
- package/lib/vendored/cookie.d.ts +120 -0
- package/lib/vendored/cookie.d.ts.map +1 -0
- package/lib/vendored/cookie.js +237 -0
- package/package.json +118 -0
- package/providers/42-school.d.ts +240 -0
- package/providers/42-school.d.ts.map +1 -0
- package/providers/42-school.js +78 -0
- package/providers/apple.d.ts +149 -0
- package/providers/apple.d.ts.map +1 -0
- package/providers/apple.js +104 -0
- package/providers/asgardeo.d.ts +102 -0
- package/providers/asgardeo.d.ts.map +1 -0
- package/providers/asgardeo.js +93 -0
- package/providers/atlassian.d.ts +94 -0
- package/providers/atlassian.d.ts.map +1 -0
- package/providers/atlassian.js +84 -0
- package/providers/auth0.d.ts +116 -0
- package/providers/auth0.d.ts.map +1 -0
- package/providers/auth0.js +49 -0
- package/providers/authentik.d.ts +90 -0
- package/providers/authentik.d.ts.map +1 -0
- package/providers/authentik.js +65 -0
- package/providers/azure-ad-b2c.d.ts +104 -0
- package/providers/azure-ad-b2c.d.ts.map +1 -0
- package/providers/azure-ad-b2c.js +100 -0
- package/providers/azure-ad.d.ts +19 -0
- package/providers/azure-ad.d.ts.map +1 -0
- package/providers/azure-ad.js +23 -0
- package/providers/azure-devops.d.ts +128 -0
- package/providers/azure-devops.d.ts.map +1 -0
- package/providers/azure-devops.js +158 -0
- package/providers/bankid-no.d.ts +134 -0
- package/providers/bankid-no.d.ts.map +1 -0
- package/providers/bankid-no.js +65 -0
- package/providers/battlenet.d.ts +85 -0
- package/providers/battlenet.d.ts.map +1 -0
- package/providers/battlenet.js +81 -0
- package/providers/beyondidentity.d.ts +77 -0
- package/providers/beyondidentity.d.ts.map +1 -0
- package/providers/beyondidentity.js +84 -0
- package/providers/bitbucket.d.ts +89 -0
- package/providers/bitbucket.d.ts.map +1 -0
- package/providers/bitbucket.js +92 -0
- package/providers/box.d.ts +63 -0
- package/providers/box.d.ts.map +1 -0
- package/providers/box.js +73 -0
- package/providers/boxyhq-saml.d.ts +121 -0
- package/providers/boxyhq-saml.d.ts.map +1 -0
- package/providers/boxyhq-saml.js +127 -0
- package/providers/bungie.d.ts +167 -0
- package/providers/bungie.d.ts.map +1 -0
- package/providers/bungie.js +174 -0
- package/providers/click-up.d.ts +75 -0
- package/providers/click-up.d.ts.map +1 -0
- package/providers/click-up.js +89 -0
- package/providers/cognito.d.ts +81 -0
- package/providers/cognito.d.ts.map +1 -0
- package/providers/cognito.js +73 -0
- package/providers/coinbase.d.ts +69 -0
- package/providers/coinbase.d.ts.map +1 -0
- package/providers/coinbase.js +78 -0
- package/providers/concept2.d.ts +81 -0
- package/providers/concept2.d.ts.map +1 -0
- package/providers/concept2.js +86 -0
- package/providers/credentials.d.ts +132 -0
- package/providers/credentials.d.ts.map +1 -0
- package/providers/credentials.js +74 -0
- package/providers/descope.d.ts +91 -0
- package/providers/descope.d.ts.map +1 -0
- package/providers/descope.js +78 -0
- package/providers/discord.d.ts +139 -0
- package/providers/discord.d.ts.map +1 -0
- package/providers/discord.js +86 -0
- package/providers/dribbble.d.ts +88 -0
- package/providers/dribbble.d.ts.map +1 -0
- package/providers/dribbble.js +85 -0
- package/providers/dropbox.d.ts +65 -0
- package/providers/dropbox.d.ts.map +1 -0
- package/providers/dropbox.js +88 -0
- package/providers/duende-identity-server6.d.ts +91 -0
- package/providers/duende-identity-server6.d.ts.map +1 -0
- package/providers/duende-identity-server6.js +80 -0
- package/providers/email.d.ts +41 -0
- package/providers/email.d.ts.map +1 -0
- package/providers/email.js +18 -0
- package/providers/eventbrite.d.ts +78 -0
- package/providers/eventbrite.d.ts.map +1 -0
- package/providers/eventbrite.js +88 -0
- package/providers/eveonline.d.ts +94 -0
- package/providers/eveonline.d.ts.map +1 -0
- package/providers/eveonline.js +92 -0
- package/providers/facebook.d.ts +84 -0
- package/providers/facebook.d.ts.map +1 -0
- package/providers/facebook.js +93 -0
- package/providers/faceit.d.ts +64 -0
- package/providers/faceit.d.ts.map +1 -0
- package/providers/faceit.js +74 -0
- package/providers/figma.d.ts +75 -0
- package/providers/figma.d.ts.map +1 -0
- package/providers/figma.js +81 -0
- package/providers/forwardemail.d.ts +4 -0
- package/providers/forwardemail.d.ts.map +1 -0
- package/providers/forwardemail.js +32 -0
- package/providers/foursquare.d.ts +71 -0
- package/providers/foursquare.d.ts.map +1 -0
- package/providers/foursquare.js +91 -0
- package/providers/freshbooks.d.ts +66 -0
- package/providers/freshbooks.d.ts.map +1 -0
- package/providers/freshbooks.js +76 -0
- package/providers/frontegg.d.ts +95 -0
- package/providers/frontegg.d.ts.map +1 -0
- package/providers/frontegg.js +88 -0
- package/providers/fusionauth.d.ts +279 -0
- package/providers/fusionauth.d.ts.map +1 -0
- package/providers/fusionauth.js +292 -0
- package/providers/github.d.ts +127 -0
- package/providers/github.d.ts.map +1 -0
- package/providers/github.js +115 -0
- package/providers/gitlab.d.ts +115 -0
- package/providers/gitlab.d.ts.map +1 -0
- package/providers/gitlab.js +75 -0
- package/providers/google.d.ts +138 -0
- package/providers/google.d.ts.map +1 -0
- package/providers/google.js +119 -0
- package/providers/hubspot.d.ts +76 -0
- package/providers/hubspot.d.ts.map +1 -0
- package/providers/hubspot.js +93 -0
- package/providers/huggingface.d.ts +216 -0
- package/providers/huggingface.d.ts.map +1 -0
- package/providers/huggingface.js +101 -0
- package/providers/identity-server4.d.ts +69 -0
- package/providers/identity-server4.d.ts.map +1 -0
- package/providers/identity-server4.js +64 -0
- package/providers/index.d.ts +61 -0
- package/providers/index.d.ts.map +1 -0
- package/providers/index.js +3 -0
- package/providers/instagram.d.ts +74 -0
- package/providers/instagram.d.ts.map +1 -0
- package/providers/instagram.js +87 -0
- package/providers/kakao.d.ts +148 -0
- package/providers/kakao.d.ts.map +1 -0
- package/providers/kakao.js +103 -0
- package/providers/keycloak.d.ts +100 -0
- package/providers/keycloak.d.ts.map +1 -0
- package/providers/keycloak.js +73 -0
- package/providers/kinde.d.ts +73 -0
- package/providers/kinde.d.ts.map +1 -0
- package/providers/kinde.js +51 -0
- package/providers/line.d.ts +83 -0
- package/providers/line.d.ts.map +1 -0
- package/providers/line.js +73 -0
- package/providers/linkedin.d.ts +77 -0
- package/providers/linkedin.d.ts.map +1 -0
- package/providers/linkedin.js +65 -0
- package/providers/logto.d.ts +98 -0
- package/providers/logto.d.ts.map +1 -0
- package/providers/logto.js +81 -0
- package/providers/loops.d.ts +40 -0
- package/providers/loops.d.ts.map +1 -0
- package/providers/loops.js +59 -0
- package/providers/mailchimp.d.ts +66 -0
- package/providers/mailchimp.d.ts.map +1 -0
- package/providers/mailchimp.js +76 -0
- package/providers/mailgun.d.ts +55 -0
- package/providers/mailgun.d.ts.map +1 -0
- package/providers/mailgun.js +74 -0
- package/providers/mailru.d.ts +63 -0
- package/providers/mailru.d.ts.map +1 -0
- package/providers/mailru.js +61 -0
- package/providers/mastodon.d.ts +90 -0
- package/providers/mastodon.d.ts.map +1 -0
- package/providers/mastodon.js +75 -0
- package/providers/mattermost.d.ts +132 -0
- package/providers/mattermost.d.ts.map +1 -0
- package/providers/mattermost.js +83 -0
- package/providers/medium.d.ts +68 -0
- package/providers/medium.d.ts.map +1 -0
- package/providers/medium.js +84 -0
- package/providers/microsoft-entra-id.d.ts +428 -0
- package/providers/microsoft-entra-id.d.ts.map +1 -0
- package/providers/microsoft-entra-id.js +156 -0
- package/providers/naver.d.ts +80 -0
- package/providers/naver.d.ts.map +1 -0
- package/providers/naver.js +79 -0
- package/providers/netlify.d.ts +66 -0
- package/providers/netlify.d.ts.map +1 -0
- package/providers/netlify.js +85 -0
- package/providers/netsuite.d.ts +189 -0
- package/providers/netsuite.d.ts.map +1 -0
- package/providers/netsuite.js +170 -0
- package/providers/nextcloud.d.ts +150 -0
- package/providers/nextcloud.d.ts.map +1 -0
- package/providers/nextcloud.js +99 -0
- package/providers/nodemailer.d.ts +27 -0
- package/providers/nodemailer.d.ts.map +1 -0
- package/providers/nodemailer.js +34 -0
- package/providers/notion.d.ts +99 -0
- package/providers/notion.d.ts.map +1 -0
- package/providers/notion.js +110 -0
- package/providers/oauth.d.ts +188 -0
- package/providers/oauth.d.ts.map +1 -0
- package/providers/oauth.js +1 -0
- package/providers/okta.d.ts +99 -0
- package/providers/okta.d.ts.map +1 -0
- package/providers/okta.js +63 -0
- package/providers/onelogin.d.ts +65 -0
- package/providers/onelogin.d.ts.map +1 -0
- package/providers/onelogin.js +61 -0
- package/providers/ory-hydra.d.ts +79 -0
- package/providers/ory-hydra.d.ts.map +1 -0
- package/providers/ory-hydra.js +67 -0
- package/providers/osso.d.ts +79 -0
- package/providers/osso.d.ts.map +1 -0
- package/providers/osso.js +77 -0
- package/providers/osu.d.ts +116 -0
- package/providers/osu.d.ts.map +1 -0
- package/providers/osu.js +75 -0
- package/providers/passage.d.ts +88 -0
- package/providers/passage.d.ts.map +1 -0
- package/providers/passage.js +75 -0
- package/providers/passkey.d.ts +65 -0
- package/providers/passkey.d.ts.map +1 -0
- package/providers/passkey.js +87 -0
- package/providers/patreon.d.ts +73 -0
- package/providers/patreon.d.ts.map +1 -0
- package/providers/patreon.js +77 -0
- package/providers/ping-id.d.ts +57 -0
- package/providers/ping-id.d.ts.map +1 -0
- package/providers/ping-id.js +40 -0
- package/providers/pinterest.d.ts +79 -0
- package/providers/pinterest.d.ts.map +1 -0
- package/providers/pinterest.js +85 -0
- package/providers/pipedrive.d.ts +99 -0
- package/providers/pipedrive.d.ts.map +1 -0
- package/providers/pipedrive.js +71 -0
- package/providers/postmark.d.ts +4 -0
- package/providers/postmark.d.ts.map +1 -0
- package/providers/postmark.js +36 -0
- package/providers/provider-types.d.ts +3 -0
- package/providers/provider-types.d.ts.map +1 -0
- package/providers/provider-types.js +1 -0
- package/providers/reddit.d.ts +88 -0
- package/providers/reddit.d.ts.map +1 -0
- package/providers/reddit.js +90 -0
- package/providers/resend.d.ts +4 -0
- package/providers/resend.d.ts.map +1 -0
- package/providers/resend.js +32 -0
- package/providers/roblox.d.ts +67 -0
- package/providers/roblox.d.ts.map +1 -0
- package/providers/roblox.js +53 -0
- package/providers/salesforce.d.ts +59 -0
- package/providers/salesforce.d.ts.map +1 -0
- package/providers/salesforce.js +52 -0
- package/providers/sendgrid.d.ts +4 -0
- package/providers/sendgrid.d.ts.map +1 -0
- package/providers/sendgrid.js +35 -0
- package/providers/simplelogin.d.ts +87 -0
- package/providers/simplelogin.d.ts.map +1 -0
- package/providers/simplelogin.js +83 -0
- package/providers/slack.d.ts +102 -0
- package/providers/slack.d.ts.map +1 -0
- package/providers/slack.js +69 -0
- package/providers/spotify.d.ts +75 -0
- package/providers/spotify.d.ts.map +1 -0
- package/providers/spotify.js +73 -0
- package/providers/strava.d.ts +68 -0
- package/providers/strava.d.ts.map +1 -0
- package/providers/strava.js +80 -0
- package/providers/threads.d.ts +108 -0
- package/providers/threads.d.ts.map +1 -0
- package/providers/threads.js +89 -0
- package/providers/tiktok.d.ts +248 -0
- package/providers/tiktok.d.ts.map +1 -0
- package/providers/tiktok.js +195 -0
- package/providers/todoist.d.ts +76 -0
- package/providers/todoist.d.ts.map +1 -0
- package/providers/todoist.js +97 -0
- package/providers/trakt.d.ts +93 -0
- package/providers/trakt.d.ts.map +1 -0
- package/providers/trakt.js +91 -0
- package/providers/twitch.d.ts +71 -0
- package/providers/twitch.d.ts.map +1 -0
- package/providers/twitch.js +96 -0
- package/providers/twitter.d.ts +183 -0
- package/providers/twitter.d.ts.map +1 -0
- package/providers/twitter.js +100 -0
- package/providers/united-effects.d.ts +80 -0
- package/providers/united-effects.d.ts.map +1 -0
- package/providers/united-effects.js +72 -0
- package/providers/vipps.d.ts +71 -0
- package/providers/vipps.d.ts.map +1 -0
- package/providers/vipps.js +33 -0
- package/providers/vk.d.ts +334 -0
- package/providers/vk.d.ts.map +1 -0
- package/providers/vk.js +103 -0
- package/providers/webauthn.d.ts +148 -0
- package/providers/webauthn.d.ts.map +1 -0
- package/providers/webauthn.js +128 -0
- package/providers/webex.d.ts +78 -0
- package/providers/webex.d.ts.map +1 -0
- package/providers/webex.js +73 -0
- package/providers/wechat.d.ts +78 -0
- package/providers/wechat.d.ts.map +1 -0
- package/providers/wechat.js +105 -0
- package/providers/wikimedia.d.ts +99 -0
- package/providers/wikimedia.d.ts.map +1 -0
- package/providers/wikimedia.js +90 -0
- package/providers/wordpress.d.ts +65 -0
- package/providers/wordpress.d.ts.map +1 -0
- package/providers/wordpress.js +71 -0
- package/providers/workos.d.ts +154 -0
- package/providers/workos.d.ts.map +1 -0
- package/providers/workos.js +143 -0
- package/providers/yandex.d.ts +131 -0
- package/providers/yandex.d.ts.map +1 -0
- package/providers/yandex.js +80 -0
- package/providers/zitadel.d.ts +117 -0
- package/providers/zitadel.d.ts.map +1 -0
- package/providers/zitadel.js +95 -0
- package/providers/zoho.d.ts +63 -0
- package/providers/zoho.d.ts.map +1 -0
- package/providers/zoho.js +79 -0
- package/providers/zoom.d.ts +93 -0
- package/providers/zoom.d.ts.map +1 -0
- package/providers/zoom.js +82 -0
- package/src/adapters/server-actions-helpers.ts +126 -0
- package/src/adapters.ts +603 -0
- package/src/errors.ts +551 -0
- package/src/index.ts +689 -0
- package/src/jwt.ts +283 -0
- package/src/lib/actions/callback/handle-login.ts +334 -0
- package/src/lib/actions/callback/index.ts +554 -0
- package/src/lib/actions/callback/oauth/callback.ts +347 -0
- package/src/lib/actions/callback/oauth/checks.ts +258 -0
- package/src/lib/actions/callback/oauth/csrf-token.ts +60 -0
- package/src/lib/actions/index.ts +5 -0
- package/src/lib/actions/session.ts +167 -0
- package/src/lib/actions/signin/authorization-url.ts +123 -0
- package/src/lib/actions/signin/index.ts +37 -0
- package/src/lib/actions/signin/send-token.ts +124 -0
- package/src/lib/actions/signout.ts +38 -0
- package/src/lib/actions/webauthn-options.ts +100 -0
- package/src/lib/index.ts +97 -0
- package/src/lib/init.ts +236 -0
- package/src/lib/pages/error.tsx +106 -0
- package/src/lib/pages/index.ts +181 -0
- package/src/lib/pages/signin.tsx +255 -0
- package/src/lib/pages/signout.tsx +49 -0
- package/src/lib/pages/styles.css +377 -0
- package/src/lib/pages/styles.ts +381 -0
- package/src/lib/pages/verify-request.tsx +36 -0
- package/src/lib/symbols.ts +60 -0
- package/src/lib/utils/actions.ts +17 -0
- package/src/lib/utils/assert.ts +259 -0
- package/src/lib/utils/callback-url.ts +42 -0
- package/src/lib/utils/cookie.ts +248 -0
- package/src/lib/utils/date.ts +8 -0
- package/src/lib/utils/email.ts +65 -0
- package/src/lib/utils/env.ts +113 -0
- package/src/lib/utils/logger.ts +75 -0
- package/src/lib/utils/merge.ts +30 -0
- package/src/lib/utils/providers.ts +203 -0
- package/src/lib/utils/session.ts +41 -0
- package/src/lib/utils/web.ts +151 -0
- package/src/lib/utils/webauthn-client.js +229 -0
- package/src/lib/utils/webauthn-utils.ts +531 -0
- package/src/lib/vendored/cookie.ts +383 -0
- package/src/providers/42-school.ts +256 -0
- package/src/providers/apple.ts +206 -0
- package/src/providers/asgardeo.ts +118 -0
- package/src/providers/atlassian.ts +120 -0
- package/src/providers/auth0.ts +127 -0
- package/src/providers/authentik.ts +100 -0
- package/src/providers/azure-ad-b2c.ts +124 -0
- package/src/providers/azure-ad.ts +30 -0
- package/src/providers/azure-devops.ts +184 -0
- package/src/providers/bankid-no.ts +161 -0
- package/src/providers/battlenet.ts +107 -0
- package/src/providers/beyondidentity.ts +102 -0
- package/src/providers/bitbucket.ts +122 -0
- package/src/providers/box.ts +87 -0
- package/src/providers/boxyhq-saml.ts +148 -0
- package/src/providers/bungie.ts +192 -0
- package/src/providers/click-up.ts +104 -0
- package/src/providers/cognito.ts +94 -0
- package/src/providers/coinbase.ts +93 -0
- package/src/providers/concept2.ts +108 -0
- package/src/providers/credentials.ts +157 -0
- package/src/providers/descope.ts +105 -0
- package/src/providers/discord.ts +176 -0
- package/src/providers/dribbble.ts +122 -0
- package/src/providers/dropbox.ts +102 -0
- package/src/providers/duende-identity-server6.ts +101 -0
- package/src/providers/email.ts +60 -0
- package/src/providers/eventbrite.ts +105 -0
- package/src/providers/eveonline.ts +117 -0
- package/src/providers/facebook.ts +119 -0
- package/src/providers/faceit.ts +90 -0
- package/src/providers/figma.ts +105 -0
- package/src/providers/forwardemail.ts +37 -0
- package/src/providers/foursquare.ts +105 -0
- package/src/providers/freshbooks.ts +90 -0
- package/src/providers/frontegg.ts +111 -0
- package/src/providers/fusionauth.ts +336 -0
- package/src/providers/github.ts +187 -0
- package/src/providers/gitlab.ts +140 -0
- package/src/providers/google.ts +152 -0
- package/src/providers/hubspot.ts +117 -0
- package/src/providers/huggingface.ts +234 -0
- package/src/providers/identity-server4.ts +78 -0
- package/src/providers/index.ts +115 -0
- package/src/providers/instagram.ts +103 -0
- package/src/providers/kakao.ts +184 -0
- package/src/providers/keycloak.ts +111 -0
- package/src/providers/kinde.ts +85 -0
- package/src/providers/line.ts +99 -0
- package/src/providers/linkedin.ts +91 -0
- package/src/providers/logto.ts +122 -0
- package/src/providers/loops.ts +79 -0
- package/src/providers/mailchimp.ts +90 -0
- package/src/providers/mailgun.ts +98 -0
- package/src/providers/mailru.ts +75 -0
- package/src/providers/mastodon.ts +112 -0
- package/src/providers/mattermost.ts +154 -0
- package/src/providers/medium.ts +89 -0
- package/src/providers/microsoft-entra-id.ts +497 -0
- package/src/providers/naver.ts +102 -0
- package/src/providers/netlify.ts +90 -0
- package/src/providers/netsuite.ts +225 -0
- package/src/providers/nextcloud.ts +207 -0
- package/src/providers/nodemailer.ts +84 -0
- package/src/providers/notion.ts +166 -0
- package/src/providers/oauth.ts +310 -0
- package/src/providers/okta.ts +111 -0
- package/src/providers/onelogin.ts +75 -0
- package/src/providers/ory-hydra.ts +93 -0
- package/src/providers/osso.ts +91 -0
- package/src/providers/osu.ts +138 -0
- package/src/providers/passage.ts +103 -0
- package/src/providers/passkey.ts +94 -0
- package/src/providers/patreon.ts +98 -0
- package/src/providers/ping-id.ts +68 -0
- package/src/providers/pinterest.ts +106 -0
- package/src/providers/pipedrive.ts +120 -0
- package/src/providers/postmark.ts +38 -0
- package/src/providers/provider-types.ts +107 -0
- package/src/providers/reddit.ts +104 -0
- package/src/providers/resend.ts +35 -0
- package/src/providers/roblox.ts +94 -0
- package/src/providers/salesforce.ts +73 -0
- package/src/providers/sendgrid.ts +36 -0
- package/src/providers/simplelogin.ts +107 -0
- package/src/providers/slack.ts +115 -0
- package/src/providers/spotify.ts +99 -0
- package/src/providers/strava.ts +101 -0
- package/src/providers/threads.ts +135 -0
- package/src/providers/tiktok.ts +319 -0
- package/src/providers/todoist.ts +122 -0
- package/src/providers/trakt.ts +120 -0
- package/src/providers/twitch.ts +121 -0
- package/src/providers/twitter.ts +207 -0
- package/src/providers/united-effects.ts +89 -0
- package/src/providers/vipps.ts +86 -0
- package/src/providers/vk.ts +401 -0
- package/src/providers/webauthn.ts +296 -0
- package/src/providers/webex.ts +102 -0
- package/src/providers/wechat.ts +141 -0
- package/src/providers/wikimedia.ts +258 -0
- package/src/providers/wordpress.ts +86 -0
- package/src/providers/workos.ts +180 -0
- package/src/providers/yandex.ts +159 -0
- package/src/providers/zitadel.ts +128 -0
- package/src/providers/zoho.ts +84 -0
- package/src/providers/zoom.ts +119 -0
- package/src/types.ts +430 -0
- package/src/warnings.ts +21 -0
- package/types.d.ts +309 -0
- package/types.d.ts.map +1 -0
- package/types.js +53 -0
- package/warnings.d.ts +17 -0
- package/warnings.d.ts.map +1 -0
- package/warnings.js +1 -0
|
@@ -0,0 +1,76 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Add FreshBooks login to your page.
|
|
3
|
+
*
|
|
4
|
+
* ### Setup
|
|
5
|
+
*
|
|
6
|
+
* #### Callback URL
|
|
7
|
+
* ```
|
|
8
|
+
* https://example.com/api/auth/callback/freshbooks
|
|
9
|
+
* ```
|
|
10
|
+
*
|
|
11
|
+
* #### Configuration
|
|
12
|
+
*```ts
|
|
13
|
+
* import { Auth } from "@auth/core"
|
|
14
|
+
* import FreshBooks from "@auth/core/providers/freshbooks"
|
|
15
|
+
*
|
|
16
|
+
* const request = new Request(origin)
|
|
17
|
+
* const response = await Auth(request, {
|
|
18
|
+
* providers: [
|
|
19
|
+
* FreshBooks({
|
|
20
|
+
* clientId: FRESHBOOKS_CLIENT_ID,
|
|
21
|
+
* clientSecret: FRESHBOOKS_CLIENT_SECRET,
|
|
22
|
+
* }),
|
|
23
|
+
* ],
|
|
24
|
+
* })
|
|
25
|
+
* ```
|
|
26
|
+
*
|
|
27
|
+
* ### Resources
|
|
28
|
+
*
|
|
29
|
+
* - [FreshBooks OAuth documentation](https://www.freshbooks.com/api/authenticating-with-oauth-2-0-on-the-new-freshbooks-api
|
|
30
|
+
)
|
|
31
|
+
*
|
|
32
|
+
* ### Notes
|
|
33
|
+
*
|
|
34
|
+
* By default, Auth.js assumes that the FreshBooks provider is
|
|
35
|
+
* based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
|
|
36
|
+
*
|
|
37
|
+
* :::tip
|
|
38
|
+
*
|
|
39
|
+
* The FreshBooks provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/freshbooks.ts).
|
|
40
|
+
* To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
|
|
41
|
+
*
|
|
42
|
+
* :::
|
|
43
|
+
*
|
|
44
|
+
* :::info **Disclaimer**
|
|
45
|
+
*
|
|
46
|
+
* If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
|
|
47
|
+
*
|
|
48
|
+
* Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
|
|
49
|
+
* the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
|
|
50
|
+
* we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
|
|
51
|
+
*
|
|
52
|
+
* :::
|
|
53
|
+
*/
|
|
54
|
+
export default function Freshbooks(options) {
|
|
55
|
+
return {
|
|
56
|
+
id: "freshbooks",
|
|
57
|
+
name: "Freshbooks",
|
|
58
|
+
type: "oauth",
|
|
59
|
+
authorization: "https://auth.freshbooks.com/service/auth/oauth/authorize",
|
|
60
|
+
token: "https://api.freshbooks.com/auth/oauth/token",
|
|
61
|
+
userinfo: "https://api.freshbooks.com/auth/api/v1/users/me",
|
|
62
|
+
async profile(profile) {
|
|
63
|
+
return {
|
|
64
|
+
id: profile.response.id,
|
|
65
|
+
name: `${profile.response.first_name} ${profile.response.last_name}`,
|
|
66
|
+
email: profile.response.email,
|
|
67
|
+
image: null,
|
|
68
|
+
};
|
|
69
|
+
},
|
|
70
|
+
style: {
|
|
71
|
+
bg: "#0075dd",
|
|
72
|
+
text: "#fff",
|
|
73
|
+
},
|
|
74
|
+
options,
|
|
75
|
+
};
|
|
76
|
+
}
|
|
@@ -0,0 +1,95 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* <div style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
|
|
3
|
+
* <span style={{fontSize: "1.35rem" }}>
|
|
4
|
+
* Built-in sign in with <b>Frontegg</b> integration.
|
|
5
|
+
* </span>
|
|
6
|
+
* <a href="https://frontegg.com" style={{backgroundColor: "black", padding: "12px", borderRadius: "100%" }}>
|
|
7
|
+
* <img style={{display: "block"}} src="https://authjs.dev/img/providers/frontegg.svg" width="24"/>
|
|
8
|
+
* </a>
|
|
9
|
+
* </div>
|
|
10
|
+
*
|
|
11
|
+
* @module providers/frontegg
|
|
12
|
+
*/
|
|
13
|
+
import type { OIDCConfig, OIDCUserConfig } from "./index.js";
|
|
14
|
+
/** The returned user profile from Frontegg when using the profile callback. [Reference](https://docs.frontegg.com/docs/admin-portal-profile). */
|
|
15
|
+
export interface FronteggProfile {
|
|
16
|
+
/** The user's unique Frontegg ID */
|
|
17
|
+
sub: string;
|
|
18
|
+
/** The user's name */
|
|
19
|
+
name: string;
|
|
20
|
+
/** The user's email */
|
|
21
|
+
email: string;
|
|
22
|
+
/** A boolean indicating if the user's email is verified */
|
|
23
|
+
email_verified: boolean;
|
|
24
|
+
/** The user's picture */
|
|
25
|
+
profilePictureUrl: string;
|
|
26
|
+
/** The user's roles */
|
|
27
|
+
roles: string[];
|
|
28
|
+
/** The user's custom attributes */
|
|
29
|
+
[claim: string]: unknown;
|
|
30
|
+
}
|
|
31
|
+
/**
|
|
32
|
+
*
|
|
33
|
+
* ### Setup
|
|
34
|
+
*
|
|
35
|
+
* #### Callback URL
|
|
36
|
+
* ```
|
|
37
|
+
* https://example.com/api/auth/callback/frontegg
|
|
38
|
+
* ```
|
|
39
|
+
*
|
|
40
|
+
* #### Configuration
|
|
41
|
+
* ```ts
|
|
42
|
+
* import { Auth } from "@auth/core"
|
|
43
|
+
* import Frontegg from "@auth/core/providers/frontegg"
|
|
44
|
+
*
|
|
45
|
+
* const request = new Request(origin)
|
|
46
|
+
* const response = await Auth(request, {
|
|
47
|
+
* providers: [
|
|
48
|
+
* Frontegg({
|
|
49
|
+
* clientId: AUTH_FRONTEGG_ID,
|
|
50
|
+
* clientSecret: AUTH_FRONTEGG_SECRET,
|
|
51
|
+
* issuer: AUTH_FRONTEGG_ISSUER
|
|
52
|
+
* }),
|
|
53
|
+
* ],
|
|
54
|
+
* })
|
|
55
|
+
* ```
|
|
56
|
+
*
|
|
57
|
+
* ### Configuring Frontegg
|
|
58
|
+
*
|
|
59
|
+
* Follow these steps:
|
|
60
|
+
*
|
|
61
|
+
* Log into the [Frontegg portal](https://portal.frontegg.com)
|
|
62
|
+
*
|
|
63
|
+
* Authentication > Login method > Hosted login > Add your callback url here
|
|
64
|
+
*
|
|
65
|
+
* Then, create a `.env.local` file in the project root add the following entries:
|
|
66
|
+
*
|
|
67
|
+
* Get the following from the Frontegg's portal:
|
|
68
|
+
* ```
|
|
69
|
+
* AUTH_FRONTEGG_ID="<Client ID>" # Environments > Your environment > Env settings
|
|
70
|
+
* AUTH_FRONTEGG_SECRET="<API KEY>" # Environments > Your environment > Env settings
|
|
71
|
+
* AUTH_FRONTEGG_ISSUER="<https://[YOUR_SUBDOMAIN].frontegg.com>" # Environments > Your environment > Env settings > Domains > Domain name
|
|
72
|
+
* ```
|
|
73
|
+
*
|
|
74
|
+
* ### Resources
|
|
75
|
+
*
|
|
76
|
+
* - [Frontegg Docs](https://docs.frontegg.com/docs/how-to-use-our-docs)
|
|
77
|
+
*
|
|
78
|
+
* ### Notes
|
|
79
|
+
*
|
|
80
|
+
* The Frontegg provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/frontegg.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
|
|
81
|
+
*
|
|
82
|
+
* :::info
|
|
83
|
+
* By default, Auth.js assumes that the Frontegg provider is based on the [OIDC](https://openid.net/specs/openid-connect-core-1_0.html) spec
|
|
84
|
+
* :::
|
|
85
|
+
*
|
|
86
|
+
* ## Help
|
|
87
|
+
*
|
|
88
|
+
* If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
|
|
89
|
+
*
|
|
90
|
+
* Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
|
|
91
|
+
* the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
|
|
92
|
+
* we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
|
|
93
|
+
*/
|
|
94
|
+
export default function Frontegg(options: OIDCUserConfig<FronteggProfile>): OIDCConfig<FronteggProfile>;
|
|
95
|
+
//# sourceMappingURL=frontegg.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"frontegg.d.ts","sourceRoot":"","sources":["../src/providers/frontegg.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAE5D,iJAAiJ;AACjJ,MAAM,WAAW,eAAe;IAC9B,oCAAoC;IACpC,GAAG,EAAE,MAAM,CAAA;IACX,sBAAsB;IACtB,IAAI,EAAE,MAAM,CAAA;IACZ,uBAAuB;IACvB,KAAK,EAAE,MAAM,CAAA;IACb,2DAA2D;IAC3D,cAAc,EAAE,OAAO,CAAA;IACvB,yBAAyB;IACzB,iBAAiB,EAAE,MAAM,CAAA;IACzB,uBAAuB;IACvB,KAAK,EAAE,MAAM,EAAE,CAAA;IACf,mCAAmC;IACnC,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAA;CACzB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8DG;AACH,MAAM,CAAC,OAAO,UAAU,QAAQ,CAC9B,OAAO,EAAE,cAAc,CAAC,eAAe,CAAC,GACvC,UAAU,CAAC,eAAe,CAAC,CAY7B"}
|
|
@@ -0,0 +1,88 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* <div style={{display: "flex", justifyContent: "space-between", alignItems: "center"}}>
|
|
3
|
+
* <span style={{fontSize: "1.35rem" }}>
|
|
4
|
+
* Built-in sign in with <b>Frontegg</b> integration.
|
|
5
|
+
* </span>
|
|
6
|
+
* <a href="https://frontegg.com" style={{backgroundColor: "black", padding: "12px", borderRadius: "100%" }}>
|
|
7
|
+
* <img style={{display: "block"}} src="https://authjs.dev/img/providers/frontegg.svg" width="24"/>
|
|
8
|
+
* </a>
|
|
9
|
+
* </div>
|
|
10
|
+
*
|
|
11
|
+
* @module providers/frontegg
|
|
12
|
+
*/
|
|
13
|
+
/**
|
|
14
|
+
*
|
|
15
|
+
* ### Setup
|
|
16
|
+
*
|
|
17
|
+
* #### Callback URL
|
|
18
|
+
* ```
|
|
19
|
+
* https://example.com/api/auth/callback/frontegg
|
|
20
|
+
* ```
|
|
21
|
+
*
|
|
22
|
+
* #### Configuration
|
|
23
|
+
* ```ts
|
|
24
|
+
* import { Auth } from "@auth/core"
|
|
25
|
+
* import Frontegg from "@auth/core/providers/frontegg"
|
|
26
|
+
*
|
|
27
|
+
* const request = new Request(origin)
|
|
28
|
+
* const response = await Auth(request, {
|
|
29
|
+
* providers: [
|
|
30
|
+
* Frontegg({
|
|
31
|
+
* clientId: AUTH_FRONTEGG_ID,
|
|
32
|
+
* clientSecret: AUTH_FRONTEGG_SECRET,
|
|
33
|
+
* issuer: AUTH_FRONTEGG_ISSUER
|
|
34
|
+
* }),
|
|
35
|
+
* ],
|
|
36
|
+
* })
|
|
37
|
+
* ```
|
|
38
|
+
*
|
|
39
|
+
* ### Configuring Frontegg
|
|
40
|
+
*
|
|
41
|
+
* Follow these steps:
|
|
42
|
+
*
|
|
43
|
+
* Log into the [Frontegg portal](https://portal.frontegg.com)
|
|
44
|
+
*
|
|
45
|
+
* Authentication > Login method > Hosted login > Add your callback url here
|
|
46
|
+
*
|
|
47
|
+
* Then, create a `.env.local` file in the project root add the following entries:
|
|
48
|
+
*
|
|
49
|
+
* Get the following from the Frontegg's portal:
|
|
50
|
+
* ```
|
|
51
|
+
* AUTH_FRONTEGG_ID="<Client ID>" # Environments > Your environment > Env settings
|
|
52
|
+
* AUTH_FRONTEGG_SECRET="<API KEY>" # Environments > Your environment > Env settings
|
|
53
|
+
* AUTH_FRONTEGG_ISSUER="<https://[YOUR_SUBDOMAIN].frontegg.com>" # Environments > Your environment > Env settings > Domains > Domain name
|
|
54
|
+
* ```
|
|
55
|
+
*
|
|
56
|
+
* ### Resources
|
|
57
|
+
*
|
|
58
|
+
* - [Frontegg Docs](https://docs.frontegg.com/docs/how-to-use-our-docs)
|
|
59
|
+
*
|
|
60
|
+
* ### Notes
|
|
61
|
+
*
|
|
62
|
+
* The Frontegg provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/frontegg.ts). To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
|
|
63
|
+
*
|
|
64
|
+
* :::info
|
|
65
|
+
* By default, Auth.js assumes that the Frontegg provider is based on the [OIDC](https://openid.net/specs/openid-connect-core-1_0.html) spec
|
|
66
|
+
* :::
|
|
67
|
+
*
|
|
68
|
+
* ## Help
|
|
69
|
+
*
|
|
70
|
+
* If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
|
|
71
|
+
*
|
|
72
|
+
* Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
|
|
73
|
+
* the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
|
|
74
|
+
* we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
|
|
75
|
+
*/
|
|
76
|
+
export default function Frontegg(options) {
|
|
77
|
+
return {
|
|
78
|
+
id: "frontegg",
|
|
79
|
+
name: "Frontegg",
|
|
80
|
+
type: "oidc",
|
|
81
|
+
authorization: `${options.issuer}/oauth/authorize`,
|
|
82
|
+
token: `${options.issuer}/oauth/token`,
|
|
83
|
+
userinfo: `${options.issuer}/identity/resources/users/v2/me`,
|
|
84
|
+
wellKnown: `${options.issuer}/oauth/.well-known/openid-configuration`,
|
|
85
|
+
issuer: options.issuer,
|
|
86
|
+
options,
|
|
87
|
+
};
|
|
88
|
+
}
|
|
@@ -0,0 +1,279 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* <div class="provider" style={{backgroundColor: "#000", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
|
|
3
|
+
* <span>Built-in <b>FusionAuth</b> integration.</span>
|
|
4
|
+
* <a href="https://fusionauth.com">
|
|
5
|
+
* <img style={{display: "block"}} src="https://authjs.dev/img/providers/fushionauth.svg" height="48" width="48"/>
|
|
6
|
+
* </a>
|
|
7
|
+
* </div>
|
|
8
|
+
*
|
|
9
|
+
* @module providers/fusionauth
|
|
10
|
+
*/
|
|
11
|
+
import type { OAuthConfig, OAuthUserConfig } from "./oauth.js";
|
|
12
|
+
/**
|
|
13
|
+
* This is the default openid signature returned from FusionAuth
|
|
14
|
+
* it can be customized using [lambda functions](https://fusionauth.io/docs/v1/tech/lambdas)
|
|
15
|
+
*/
|
|
16
|
+
export interface FusionAuthProfile extends Record<string, any> {
|
|
17
|
+
aud: string;
|
|
18
|
+
exp: number;
|
|
19
|
+
iat: number;
|
|
20
|
+
iss: string;
|
|
21
|
+
sub: string;
|
|
22
|
+
jti: string;
|
|
23
|
+
authenticationType: string;
|
|
24
|
+
email: string;
|
|
25
|
+
email_verified: boolean;
|
|
26
|
+
preferred_username?: string;
|
|
27
|
+
name?: string;
|
|
28
|
+
given_name?: string;
|
|
29
|
+
middle_name?: string;
|
|
30
|
+
family_name?: string;
|
|
31
|
+
at_hash: string;
|
|
32
|
+
c_hash: string;
|
|
33
|
+
scope: string;
|
|
34
|
+
sid: string;
|
|
35
|
+
picture?: string;
|
|
36
|
+
}
|
|
37
|
+
/**
|
|
38
|
+
* Add FusionAuth login to your page.
|
|
39
|
+
*
|
|
40
|
+
* ### Setup
|
|
41
|
+
*
|
|
42
|
+
* #### Callback URL
|
|
43
|
+
* ```
|
|
44
|
+
* https://example.com/api/auth/callback/fusionauth
|
|
45
|
+
* ```
|
|
46
|
+
*
|
|
47
|
+
* #### Configuration
|
|
48
|
+
*```ts
|
|
49
|
+
* import { Auth } from "@auth/core"
|
|
50
|
+
* import FusionAuth from "@auth/core/providers/fusionauth"
|
|
51
|
+
*
|
|
52
|
+
* const request = new Request(origin)
|
|
53
|
+
* const response = await Auth(request, {
|
|
54
|
+
* providers: [
|
|
55
|
+
* FusionAuth({
|
|
56
|
+
* clientId: FUSIONAUTH_CLIENT_ID,
|
|
57
|
+
* clientSecret: FUSIONAUTH_CLIENT_SECRET,
|
|
58
|
+
* tenantId: FUSIONAUTH_TENANT_ID,
|
|
59
|
+
* issuer: FUSIONAUTH_ISSUER,
|
|
60
|
+
* }),
|
|
61
|
+
* ],
|
|
62
|
+
* })
|
|
63
|
+
* ```
|
|
64
|
+
* :::warning
|
|
65
|
+
* If you're using multi-tenancy, you need to pass in the tenantId option to apply the proper theme.
|
|
66
|
+
* :::
|
|
67
|
+
*
|
|
68
|
+
* ### Resources
|
|
69
|
+
*
|
|
70
|
+
* - [FusionAuth OAuth documentation](https://fusionauth.io/docs/lifecycle/authenticate-users/oauth/)
|
|
71
|
+
*
|
|
72
|
+
* ### Notes
|
|
73
|
+
*
|
|
74
|
+
* By default, Auth.js assumes that the FusionAuth provider is
|
|
75
|
+
* based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
|
|
76
|
+
*
|
|
77
|
+
* ## Configuration
|
|
78
|
+
* :::tip
|
|
79
|
+
* An application can be created at https://your-fusionauth-server-url/admin/application.
|
|
80
|
+
*
|
|
81
|
+
* For more information, follow the [FusionAuth 5-minute setup guide](https://fusionauth.io/docs/v1/tech/5-minute-setup-guide).
|
|
82
|
+
* :::
|
|
83
|
+
*
|
|
84
|
+
* In the OAuth settings for your application, configure the following.
|
|
85
|
+
*
|
|
86
|
+
* - Redirect URL
|
|
87
|
+
* - https://localhost:3000/api/auth/callback/fusionauth
|
|
88
|
+
* - Enabled grants
|
|
89
|
+
* - Make sure _Authorization Code_ is enabled.
|
|
90
|
+
*
|
|
91
|
+
* If using JSON Web Tokens, you need to make sure the signing algorithm is RS256, you can create an RS256 key pair by
|
|
92
|
+
* going to Settings, Key Master, generate RSA and choosing SHA-256 as algorithm. After that, go to the JWT settings of
|
|
93
|
+
* your application and select this key as Access Token signing key and Id Token signing key.
|
|
94
|
+
* :::tip
|
|
95
|
+
*
|
|
96
|
+
* The FusionAuth provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/fusionauth.ts).
|
|
97
|
+
* To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
|
|
98
|
+
*
|
|
99
|
+
* :::
|
|
100
|
+
*
|
|
101
|
+
* :::info **Disclaimer**
|
|
102
|
+
*
|
|
103
|
+
* If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
|
|
104
|
+
*
|
|
105
|
+
* Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
|
|
106
|
+
* the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
|
|
107
|
+
* we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
|
|
108
|
+
*
|
|
109
|
+
* :::
|
|
110
|
+
*
|
|
111
|
+
*
|
|
112
|
+
* It is highly recommended to follow this example call when using the provider in Next.js
|
|
113
|
+
* so that you can access both the access_token and id_token on the server.
|
|
114
|
+
*
|
|
115
|
+
* ```ts
|
|
116
|
+
* /// <reference types="next-auth" />
|
|
117
|
+
import NextAuth from 'next-auth';
|
|
118
|
+
export const { handlers, auth, signIn, signOut } = NextAuth({
|
|
119
|
+
providers: [
|
|
120
|
+
{
|
|
121
|
+
id: 'fusionauth',
|
|
122
|
+
name: 'FusionAuth',
|
|
123
|
+
type: 'oidc',
|
|
124
|
+
issuer: process.env.AUTH_FUSIONAUTH_ISSUER!,
|
|
125
|
+
clientId: process.env.AUTH_FUSIONAUTH_CLIENT_ID!,
|
|
126
|
+
clientSecret: process.env.AUTH_FUSIONAUTH_CLIENT_SECRET!,
|
|
127
|
+
authorization: {
|
|
128
|
+
params: {
|
|
129
|
+
scope: 'offline_access email openid profile',
|
|
130
|
+
tenantId: process.env.AUTH_FUSIONAUTH_TENANT_ID!,
|
|
131
|
+
},
|
|
132
|
+
},
|
|
133
|
+
userinfo: `${process.env.AUTH_FUSIONAUTH_ISSUER}/oauth2/userinfo`,
|
|
134
|
+
// This is due to a known processing issue
|
|
135
|
+
// TODO: https://github.com/nextauthjs/next-auth/issues/8745#issuecomment-1907799026
|
|
136
|
+
token: {
|
|
137
|
+
url: `${process.env.AUTH_FUSIONAUTH_ISSUER}/oauth2/token`,
|
|
138
|
+
conform: async (response: Response) => {
|
|
139
|
+
if (response.status === 401) return response;
|
|
140
|
+
|
|
141
|
+
const newHeaders = Array.from(response.headers.entries())
|
|
142
|
+
.filter(([key]) => key.toLowerCase() !== 'www-authenticate')
|
|
143
|
+
.reduce(
|
|
144
|
+
(headers, [key, value]) => (headers.append(key, value), headers),
|
|
145
|
+
new Headers()
|
|
146
|
+
);
|
|
147
|
+
|
|
148
|
+
return new Response(response.body, {
|
|
149
|
+
status: response.status,
|
|
150
|
+
statusText: response.statusText,
|
|
151
|
+
headers: newHeaders,
|
|
152
|
+
});
|
|
153
|
+
},
|
|
154
|
+
},
|
|
155
|
+
},
|
|
156
|
+
],
|
|
157
|
+
session: {
|
|
158
|
+
strategy: 'jwt',
|
|
159
|
+
},
|
|
160
|
+
// Required to get the account object in the session and enable
|
|
161
|
+
// the ability to call API's externally that rely on JWT tokens.
|
|
162
|
+
callbacks: {
|
|
163
|
+
async jwt(params) {
|
|
164
|
+
const { token, user, account } = params;
|
|
165
|
+
if (account) {
|
|
166
|
+
// First-time login, save the `access_token`, its expiry and the `refresh_token`
|
|
167
|
+
return {
|
|
168
|
+
...token,
|
|
169
|
+
...account,
|
|
170
|
+
};
|
|
171
|
+
} else if (
|
|
172
|
+
token.expires_at &&
|
|
173
|
+
Date.now() < (token.expires_at as number) * 1000
|
|
174
|
+
) {
|
|
175
|
+
// Subsequent logins, but the `access_token` is still valid
|
|
176
|
+
return token;
|
|
177
|
+
} else {
|
|
178
|
+
// Subsequent logins, but the `access_token` has expired, try to refresh it
|
|
179
|
+
if (!token.refresh_token) throw new TypeError('Missing refresh_token');
|
|
180
|
+
|
|
181
|
+
try {
|
|
182
|
+
const refreshResponse = await fetch(
|
|
183
|
+
`${process.env.AUTH_FUSIONAUTH_ISSUER}/oauth2/token`,
|
|
184
|
+
{
|
|
185
|
+
method: 'POST',
|
|
186
|
+
headers: {
|
|
187
|
+
'Content-Type': 'application/x-www-form-urlencoded',
|
|
188
|
+
},
|
|
189
|
+
body: new URLSearchParams({
|
|
190
|
+
client_id: process.env.AUTH_FUSIONAUTH_CLIENT_ID!,
|
|
191
|
+
client_secret: process.env.AUTH_FUSIONAUTH_CLIENT_SECRET!,
|
|
192
|
+
grant_type: 'refresh_token',
|
|
193
|
+
refresh_token: token.refresh_token as string,
|
|
194
|
+
}),
|
|
195
|
+
}
|
|
196
|
+
);
|
|
197
|
+
|
|
198
|
+
if (!refreshResponse.ok) {
|
|
199
|
+
throw new Error('Failed to refresh token');
|
|
200
|
+
}
|
|
201
|
+
|
|
202
|
+
const tokensOrError = await refreshResponse.json();
|
|
203
|
+
|
|
204
|
+
if (!refreshResponse.ok) throw tokensOrError;
|
|
205
|
+
|
|
206
|
+
const newTokens = tokensOrError as {
|
|
207
|
+
access_token: string;
|
|
208
|
+
expires_in: number;
|
|
209
|
+
refresh_token?: string;
|
|
210
|
+
};
|
|
211
|
+
|
|
212
|
+
return {
|
|
213
|
+
...token,
|
|
214
|
+
access_token: newTokens.access_token,
|
|
215
|
+
expires_at: Math.floor(Date.now() / 1000 + newTokens.expires_in),
|
|
216
|
+
// Some providers only issue refresh tokens once, so preserve if we did not get a new one
|
|
217
|
+
refresh_token: newTokens.refresh_token
|
|
218
|
+
? newTokens.refresh_token
|
|
219
|
+
: token.refresh_token,
|
|
220
|
+
};
|
|
221
|
+
} catch (error) {
|
|
222
|
+
console.error('Error refreshing access_token', error);
|
|
223
|
+
// If we fail to refresh the token, return an error so we can handle it on the page
|
|
224
|
+
token.error = 'RefreshTokenError';
|
|
225
|
+
return token;
|
|
226
|
+
}
|
|
227
|
+
}
|
|
228
|
+
},
|
|
229
|
+
async session(params) {
|
|
230
|
+
const { session, token } = params;
|
|
231
|
+
return { ...session, ...token };
|
|
232
|
+
},
|
|
233
|
+
},
|
|
234
|
+
});
|
|
235
|
+
|
|
236
|
+
declare module 'next-auth' {
|
|
237
|
+
interface Session {
|
|
238
|
+
access_token: string;
|
|
239
|
+
expires_in: number;
|
|
240
|
+
id_token?: string;
|
|
241
|
+
expires_at: number;
|
|
242
|
+
refresh_token?: string;
|
|
243
|
+
refresh_token_id?: string;
|
|
244
|
+
error?: 'RefreshTokenError';
|
|
245
|
+
scope: string;
|
|
246
|
+
token_type: string;
|
|
247
|
+
userId: string;
|
|
248
|
+
provider: string;
|
|
249
|
+
type: string;
|
|
250
|
+
providerAccountId: string;
|
|
251
|
+
}
|
|
252
|
+
}
|
|
253
|
+
|
|
254
|
+
declare module 'next-auth' {
|
|
255
|
+
interface JWT {
|
|
256
|
+
access_token: string;
|
|
257
|
+
expires_in: number;
|
|
258
|
+
id_token?: string;
|
|
259
|
+
expires_at: number;
|
|
260
|
+
refresh_token?: string;
|
|
261
|
+
refresh_token_id?: string;
|
|
262
|
+
error?: 'RefreshTokenError';
|
|
263
|
+
scope: string;
|
|
264
|
+
token_type: string;
|
|
265
|
+
userId: string;
|
|
266
|
+
provider: string;
|
|
267
|
+
type: string;
|
|
268
|
+
providerAccountId: string;
|
|
269
|
+
}
|
|
270
|
+
}
|
|
271
|
+
```
|
|
272
|
+
*
|
|
273
|
+
*
|
|
274
|
+
*
|
|
275
|
+
*/
|
|
276
|
+
export default function FusionAuth<P extends FusionAuthProfile>(options: OAuthUserConfig<P> & {
|
|
277
|
+
tenantId?: string;
|
|
278
|
+
}): OAuthConfig<P>;
|
|
279
|
+
//# sourceMappingURL=fusionauth.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"fusionauth.d.ts","sourceRoot":"","sources":["../src/providers/fusionauth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AACH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D;;;GAGG;AACH,MAAM,WAAW,iBAAkB,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IAC5D,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,kBAAkB,EAAE,MAAM,CAAA;IAC1B,KAAK,EAAE,MAAM,CAAA;IACb,cAAc,EAAE,OAAO,CAAA;IACvB,kBAAkB,CAAC,EAAE,MAAM,CAAA;IAC3B,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,OAAO,EAAE,MAAM,CAAA;IACf,MAAM,EAAE,MAAM,CAAA;IACd,KAAK,EAAE,MAAM,CAAA;IACb,GAAG,EAAE,MAAM,CAAA;IACX,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8OG;AACH,MAAM,CAAC,OAAO,UAAU,UAAU,CAAC,CAAC,SAAS,iBAAiB,EAE5D,OAAO,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAClD,WAAW,CAAC,CAAC,CAAC,CAuDhB"}
|