@mulverse/mulguard-core 1.0.0

package/providers/microsoft-entra-id.js

@@ -0,0 +1,156 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#0072c6", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Microsoft Entra ID</b> integration.</span>
+ * <a href="https://learn.microsoft.com/en-us/entra/identity">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/microsoft-entra-id.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/microsoft-entra-id
+ */
+import { conformInternal, customFetch } from "../lib/symbols.js";
+/**
+ * ### Setup
+ *
+ * #### Callback URL
+ *
+ * ```
+ * https://example.com/api/auth/callback/microsoft-entra-id
+ * ```
+ *
+ * #### Environment Variables
+ *
+ * ```env
+ * AUTH_MICROSOFT_ENTRA_ID_ID="<Application (client) ID>"
+ * AUTH_MICROSOFT_ENTRA_ID_SECRET="<Client secret value>"
+ * AUTH_MICROSOFT_ENTRA_ID_ISSUER="https://login.microsoftonline.com/<Directory (tenant) ID>/v2.0/"
+ * ```
+ *
+ * #### Configuration
+ *
+ * When the `issuer` parameter is omitted it will default to
+ * `"https://login.microsoftonline.com/common/v2.0/"`.
+ * This allows any Microsoft account (Personal, School or Work) to log in.
+ *
+ * ```typescript
+ * import MicrosoftEntraID from "@auth/core/providers/microsoft-entra-id"
+ * ...
+ * providers: [
+ *   MicrosoftEntraID({
+ *     clientId: process.env.AUTH_MICROSOFT_ENTRA_ID_ID,
+ *     clientSecret: process.env.AUTH_MICROSOFT_ENTRA_ID_SECRET,
+ *   }),
+ * ]
+ * ...
+ * ```
+ *
+ * To only allow your organization's users to log in you will need to configure
+ * the `issuer` parameter with your Directory (tenant) ID.
+ *
+ * ```env
+ * AUTH_MICROSOFT_ENTRA_ID_ISSUER="https://login.microsoftonline.com/<Directory (tenant) ID>/v2.0/"
+ * ```
+ *
+ * ```typescript
+ * import MicrosoftEntraID from "@auth/core/providers/microsoft-entra-id"
+ * ...
+ * providers: [
+ *   MicrosoftEntraID({
+ *     clientId: process.env.AUTH_MICROSOFT_ENTRA_ID_ID,
+ *     clientSecret: process.env.AUTH_MICROSOFT_ENTRA_ID_SECRET,
+ *     issuer: process.env.AUTH_MICROSOFT_ENTRA_ID_ISSUER,
+ *   }),
+ * ]
+ * ...
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [Microsoft Entra OAuth documentation](https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-auth-code-flow)
+ *  - [Microsoft Entra OAuth apps](https://learn.microsoft.com/en-us/entra/identity-platform/quickstart-register-app)
+ *
+ * ### Notes
+ *
+ * Microsoft Entra ID returns the profile picture in an ArrayBuffer, instead of
+ * just a URL to the image, so our provider converts it to a base64 encoded
+ * image string and returns that instead. See:
+ * https://learn.microsoft.com/en-us/graph/api/profilephoto-get?view=graph-rest-1.0&tabs=http#examples.
+ * The default image size is 48x48 to avoid
+ * [running out of space](https://next-auth.js.org/faq#json-web-tokens)
+ * in case the session is saved as a JWT.
+ *
+ * By default, Auth.js assumes that the Microsoft Entra ID provider is based on
+ * the [Open ID Connect](https://openid.net/specs/openid-connect-core-1_0.html)
+ * specification.
+ *
+ * :::tip
+ *
+ * The Microsoft Entra ID provider comes with a
+ * [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/microsoft-entra-id.ts).
+ * To override the defaults for your use case, check out
+ * [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can
+ * [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take
+ * responsibility for any deviation from the spec by the provider. You can open
+ * an issue, but if the problem is non-compliance with the spec, we might not
+ * pursue a resolution. You can ask for more help in
+ * [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function MicrosoftEntraID(config) {
+    const { profilePhotoSize = 48 } = config;
+    // If issuer is not set, first fallback to environment variable, then
+    // fallback to /common/ uri.
+    config.issuer ?? (config.issuer = process.env.AUTH_MICROSOFT_ENTRA_ID_ISSUER ||
+        "https://login.microsoftonline.com/common/v2.0");
+    return {
+        id: "microsoft-entra-id",
+        name: "Microsoft Entra ID",
+        type: "oidc",
+        authorization: { params: { scope: "openid profile email User.Read" } },
+        async profile(profile, tokens) {
+            // https://learn.microsoft.com/en-us/graph/api/profilephoto-get?view=graph-rest-1.0&tabs=http#examples
+            const response = await fetch(`https://graph.microsoft.com/v1.0/me/photos/${profilePhotoSize}x${profilePhotoSize}/$value`, { headers: { Authorization: `Bearer ${tokens.access_token}` } });
+            // Confirm that profile photo was returned
+            let image;
+            // TODO: Do this without Buffer
+            if (response.ok && typeof Buffer !== "undefined") {
+                try {
+                    const pictureBuffer = await response.arrayBuffer();
+                    const pictureBase64 = Buffer.from(pictureBuffer).toString("base64");
+                    image = `data:image/jpeg;base64, ${pictureBase64}`;
+                }
+                catch { }
+            }
+            return {
+                id: profile.sub,
+                name: profile.name,
+                email: profile.email,
+                image: image ?? null,
+            };
+        },
+        style: { text: "#fff", bg: "#0072c6" },
+        async [customFetch](...args) {
+            const url = new URL(args[0] instanceof Request ? args[0].url : args[0]);
+            if (url.pathname.endsWith(".well-known/openid-configuration")) {
+                const response = await fetch(...args);
+                const json = await response.clone().json();
+                const tenantRe = /microsoftonline\.com\/(\w+)\/v2\.0/;
+                const tenantId = config.issuer?.match(tenantRe)?.[1] ?? "common";
+                const issuer = json.issuer.replace("{tenantid}", tenantId);
+                return Response.json({ ...json, issuer });
+            }
+            return fetch(...args);
+        },
+        [conformInternal]: true,
+        options: config,
+    };
+}

package/providers/naver.d.ts

@@ -0,0 +1,80 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#000", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Naver</b> integration.</span>
+ * <a href="https://naver.com">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/naver.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/naver
+ */
+import type { OAuthConfig, OAuthUserConfig } from "./index.js";
+/** https://developers.naver.com/docs/login/profile/profile.md */
+export interface NaverProfile extends Record<string, any> {
+    resultcode: string;
+    message: string;
+    response: {
+        id: string;
+        nickname?: string;
+        name?: string;
+        email?: string;
+        gender?: "F" | "M" | "U";
+        age?: string;
+        birthday?: string;
+        profile_image?: string;
+        birthyear?: string;
+        mobile?: string;
+    };
+}
+/**
+ * Add Naver login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/naver
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Naver from "@auth/core/providers/naver"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Naver({ clientId: NAVER_CLIENT_ID, clientSecret: NAVER_CLIENT_SECRET }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [Naver OAuth documentation](https://developers.naver.com/docs/login/overview/overview.md)
+ *  - [Naver OAuth documentation 2](https://developers.naver.com/docs/login/api/api.md)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the Naver provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The Naver provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/naver.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function Naver<P extends NaverProfile>(options: OAuthUserConfig<P>): OAuthConfig<P>;
+//# sourceMappingURL=naver.d.ts.map

package/providers/naver.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"naver.d.ts","sourceRoot":"","sources":["../src/providers/naver.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D,iEAAiE;AACjE,MAAM,WAAW,YAAa,SAAQ,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IACvD,UAAU,EAAE,MAAM,CAAA;IAClB,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE;QACR,EAAE,EAAE,MAAM,CAAA;QACV,QAAQ,CAAC,EAAE,MAAM,CAAA;QACjB,IAAI,CAAC,EAAE,MAAM,CAAA;QACb,KAAK,CAAC,EAAE,MAAM,CAAA;QACd,MAAM,CAAC,EAAE,GAAG,GAAG,GAAG,GAAG,GAAG,CAAA;QACxB,GAAG,CAAC,EAAE,MAAM,CAAA;QACZ,QAAQ,CAAC,EAAE,MAAM,CAAA;QACjB,aAAa,CAAC,EAAE,MAAM,CAAA;QACtB,SAAS,CAAC,EAAE,MAAM,CAAA;QAClB,MAAM,CAAC,EAAE,MAAM,CAAA;KAChB,CAAA;CACF;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiDG;AACH,MAAM,CAAC,OAAO,UAAU,KAAK,CAAC,CAAC,SAAS,YAAY,EAClD,OAAO,EAAE,eAAe,CAAC,CAAC,CAAC,GAC1B,WAAW,CAAC,CAAC,CAAC,CAkBhB"}

package/providers/naver.js

@@ -0,0 +1,79 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#000", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Naver</b> integration.</span>
+ * <a href="https://naver.com">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/naver.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/naver
+ */
+/**
+ * Add Naver login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/naver
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Naver from "@auth/core/providers/naver"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Naver({ clientId: NAVER_CLIENT_ID, clientSecret: NAVER_CLIENT_SECRET }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [Naver OAuth documentation](https://developers.naver.com/docs/login/overview/overview.md)
+ *  - [Naver OAuth documentation 2](https://developers.naver.com/docs/login/api/api.md)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the Naver provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The Naver provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/naver.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function Naver(options) {
+    return {
+        id: "naver",
+        name: "Naver",
+        type: "oauth",
+        authorization: "https://nid.naver.com/oauth2.0/authorize",
+        token: "https://nid.naver.com/oauth2.0/token",
+        userinfo: "https://openapi.naver.com/v1/nid/me",
+        profile(profile) {
+            return {
+                id: profile.response.id,
+                name: profile.response.nickname,
+                email: profile.response.email,
+                image: profile.response.profile_image,
+            };
+        },
+        options,
+    };
+}

package/providers/netlify.d.ts

@@ -0,0 +1,66 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#000", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Netlify</b> integration.</span>
+ * <a href="https://netlify.com">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/netlify.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/netlify
+ */
+import type { OAuthConfig, OAuthUserConfig } from "./index.js";
+/**
+ * Add Netlify login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/netlify
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Netlify from "@auth/core/providers/netlify"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Netlify({
+ *       clientId: NETLIFY_CLIENT_ID,
+ *       clientSecret: NETLIFY_CLIENT_SECRET,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [Netlify OAuth blog](https://www.netlify.com/blog/2016/10/10/integrating-with-netlify-oauth2/)
+ *  - [Netlify OAuth example](https://github.com/netlify/netlify-oauth-example/)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the Netlify provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The Netlify provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/netlify.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function Netlify(config: OAuthUserConfig<Record<string, any>>): OAuthConfig<Record<string, any>>;
+//# sourceMappingURL=netlify.d.ts.map

package/providers/netlify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"netlify.d.ts","sourceRoot":"","sources":["../src/providers/netlify.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoDG;AACH,MAAM,CAAC,OAAO,UAAU,OAAO,CAC7B,MAAM,EAAE,eAAe,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAC3C,WAAW,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAqBlC"}

package/providers/netlify.js

@@ -0,0 +1,85 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#000", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>Netlify</b> integration.</span>
+ * <a href="https://netlify.com">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/netlify.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/netlify
+ */
+/**
+ * Add Netlify login to your page.
+ *
+ * ### Setup
+ *
+ * #### Callback URL
+ * ```
+ * https://example.com/api/auth/callback/netlify
+ * ```
+ *
+ * #### Configuration
+ *```ts
+ * import { Auth } from "@auth/core"
+ * import Netlify from "@auth/core/providers/netlify"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *     Netlify({
+ *       clientId: NETLIFY_CLIENT_ID,
+ *       clientSecret: NETLIFY_CLIENT_SECRET,
+ *     }),
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ *  - [Netlify OAuth blog](https://www.netlify.com/blog/2016/10/10/integrating-with-netlify-oauth2/)
+ *  - [Netlify OAuth example](https://github.com/netlify/netlify-oauth-example/)
+ *
+ * ### Notes
+ *
+ * By default, Auth.js assumes that the Netlify provider is
+ * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ *
+ * :::tip
+ *
+ * The Netlify provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/netlify.ts).
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/configuring-oauth-providers).
+ *
+ * :::
+ *
+ * :::info **Disclaimer**
+ *
+ * If you think you found a bug in the default configuration, you can [open an issue](https://authjs.dev/new/provider-issue).
+ *
+ * Auth.js strictly adheres to the specification and it cannot take responsibility for any deviation from
+ * the spec by the provider. You can open an issue, but if the problem is non-compliance with the spec,
+ * we might not pursue a resolution. You can ask for more help in [Discussions](https://authjs.dev/new/github-discussions).
+ *
+ * :::
+ */
+export default function Netlify(config) {
+    return {
+        id: "netlify",
+        name: "Netlify",
+        type: "oauth",
+        authorization: "https://app.netlify.com/authorize?scope",
+        token: "https://api.netlify.com/oauth/token",
+        userinfo: "https://api.netlify.com/api/v1/user",
+        profile(profile) {
+            return {
+                id: profile.id,
+                name: profile.full_name,
+                email: profile.email,
+                image: profile.avatar_url,
+            };
+        },
+        style: {
+            brandColor: "#32e6e2",
+        },
+        options: config,
+    };
+}

package/providers/netsuite.d.ts

@@ -0,0 +1,189 @@
+/**
+ * <div class="provider" style={{backgroundColor: "#24292f", display: "flex", justifyContent: "space-between", color: "#fff", padding: 16}}>
+ * <span>Built-in <b>NetSuite</b> integration.</span>
+ * <a href="https://system.netsuite.com">
+ *   <img style={{display: "block"}} src="https://authjs.dev/img/providers/netsuite.svg" height="48" width="48"/>
+ * </a>
+ * </div>
+ *
+ * @module providers/netsuite
+ */
+import type { OAuthConfig, OAuthUserConfig } from "./index.js";
+export interface OAuthNetSuiteOptions {
+    /**
+     *  The prompt options - also viewable below
+     *
+     *  @link https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/section_160855585734.html
+     *
+     * 	authorization.params.prompt
+     *
+     * The optional prompt parameter provides additional control of when the login/consent screen appears. Following are the values you can use with the prompt parameter:
+     * "none" - the consent screen does not appear. If there is no active session, the application returns an error.
+     * "login" - the user must authenticate even if there is an active session.
+     * This option only works if the application sends the request to the account-specific domain.
+     * "consent" - the consent screen appears every time. The user must authenticate if there is no active session.
+     * login consent or consent login - the consent screen appears every time, and the user must authenticate even if there is an active session and allow the connection to the NetSuite. Similar to GitHub, Google, and Facebook data consent screens.
+     */
+    prompt: string | "none" | "login" | "consent";
+    /**
+     * EX: TSTDRV1234567 or 81555 for prod
+     */
+    accountID: string;
+    /**
+     * restlets rest_webservices or restlets or rest_webservices suiteanalytics_connect restlets
+     */
+    scope: string;
+    /**
+     * Either a restlet or suitelet returning runtime info or record info -> RESTlet recommended
+     */
+    userinfo: string;
+}
+export interface NetSuiteProfile {
+    id: number;
+    name: string;
+    email: string;
+    location: number;
+    role: number;
+    roleId?: string;
+    roleCenter?: string;
+    contact?: number;
+    subsidiary?: number;
+    department?: number;
+}
+/**
+ * Add Netsuite login to your page and make requests to:
+ * - [NetSuite RESTLets](https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/section_4567507062.html#Tracking-RESTlet-Calls-Made-with-TBA-and-OAuth-2.0).
+ * - [NetSuite REST Web Services](https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/book_1559132836.html#SuiteTalk-REST-Web-Services-API-Guide).
+ *
+ * ### Setup
+ *
+ * #### Disclaimer
+ * By using this provider, you consent to sharing your data with NetSuite.
+ * By using this provider we assume you comply with NetSuite's [Terms of Service](https://www.netsuite.com/portal/assets/pdf/terms_of_service.pdf) and [Privacy Policy](https://www.oracle.com/legal/privacy).
+ * The author of this provider is not affiliated with NetSuite. Proceeding with this provider you must be a NetSuite customer and have a NetSuite account (Full access user).
+ * **Ensure the OAuth 2.0 Feature is enabled in your NetSuite account with the proper permissions set up on the current role/user**
+ *
+ * Before setting up the provider, you will need to:
+ * - [Create an Integration Record](https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/section_157771733782.html#procedure_157838925981)
+ *   - Uncheck the TBA Auth Flow checkbox.
+ *   - Check OAuth 2.0 Auth Flow checkbox.
+ *   - Copy and paste the `Callback URL` below into the `Redirect URI` field.
+ *   - Then select the scope(s) you want to use.
+ *     - **REST Web Services** (`rest_webservices`) - Access to REST Web Services.
+ *     - **RESTlets**(`restlets`) - Access to RESTLets.
+ *     - **SuiteAnalytics Connect** (`suiteanalytics_connect`) - Access to SuiteAnalytics Connect.
+ *   - Add any policies you want to use.
+ *     - Application Logo (_Optional_) (Shown to users when they are asked to grant access to your application). - Consent Screen
+ *     - Application Terms of Use (_Optional_) - A PDF file that contains the terms of use for your application. - Consent Screen
+ *     - Application Privacy Policy (_Optional_) - A PDF file that contains the privacy policy for your application. - Consent Screen
+ *   - OAuth 2.0 Consent Policy Preference - This setting determines whether the user is asked to grant access to your application **every time** they sign in or only the **first time** they sign in or **never**.
+ *   - **Save** the Integration record.
+ *   - The Integration record will be used to generate the `clientId` and `clientSecret` for the provider. **Save the generated values for later**
+ *
+ * #### Callback URL
+ *
+ * :::tip
+ * When setting the Redirect URI in the Integration record, you must use the `https` protocol.
+ * Otherwise, you will get an error when trying to sign in. (_INVALID_LOGIN_ATTEMPT_).
+ * If you are testing locally, you can use a service like [ngrok](https://ngrok.com/) to create a secure tunnel to your localhost.
+ * :::
+ *
+ * ```
+ * https://example.com/api/auth/callback/netsuite
+ * ```
+ *
+ * :::tip
+ * Our `userinfo` needs to compose of a suitelet or RESTLet url that gives us the information about the user. This has to be very fast in which the handshake profile gather execution can't take long.
+ * The best bet is to use the `N/runtime` module to get the basics first. - Here is an example of a RESTlet below. Be sure to deploy and enable access to "All Roles".
+ * :::
+ *
+ * #### Example RESTLet Callback Handler
+ * Be sure to deploy and use the **external** RESTLet url of any usage of the URIs.
+ *
+ * ```js
+ * * /**
+ * * @NApiVersion 2.1
+ * * @NScriptType Restlet
+ * *\/
+ * define(["N/runtime"], /**
+ *  @param{runtime} runtimee
+ * \/ (runtime) => {
+ *  /**
+ *   * Defines the function that is executed when a GET request is sent to a RESTlet.
+ *   * @param {Object} requestParams - Parameters from HTTP request URL; parameters passed as an Object (for all supported
+ *   *     content types)
+ *   * @returns {string | Object} HTTP response body; returns a string when request Content-Type is 'text/plain'; returns an
+ *   *     Object when request Content-Type is 'application/json' or 'application/xml'
+ *   * @since 2015.2
+ *   *\/
+ *   const get = (requestParams) => {
+ *     let userObject = runtime.getCurrentUser();
+ *
+ *     try {
+ *       log.debug({ title: "Payload received:", details: requestParams });
+ *
+ *       const { id, name, role, location, email, contact } = userObject;
+ *
+ *       log.audit({ title: "Current User Ran", details: name });
+ *
+ *       let user = {
+ *         id,
+ *         name,
+ *         role,
+ *         location,
+ *         email,
+ *         contact,
+ *       };
+ *
+ *       log.debug({ title: "Returning user", details: user });
+ *
+ *       return JSON.stringify(user);
+ *     } catch (e) {
+ *       log.error({ title: "Error grabbing current user:", details: e });
+ *     }
+ *   };
+ *
+ *   return {
+ *     get,
+ *   };
+ * );
+ * ```
+ *
+ * > **Note**: Above is an example of returning the basic runtime information. Be sure to create a new script record and deployment record. Upon saving the deployment record. We will get our URLs for our RESTlet.
+ *
+ * ### Configuration
+ *
+ * ```ts
+ * import { Auth } from "@auth/core"
+ * import Netsuite from "@auth/core/providers/netsuite"
+ *
+ * const request = new Request(origin)
+ * const response = await Auth(request, {
+ *   providers: [
+ *       NetSuite({
+ *         accountID: NETSUITE_ACCOUNT_ID, // EX: TSTDRV1234567 or 81555 for prod, and 1234567-SB1 for Sandbox accounts not "_" use "-".
+ *        // Returns the current user using the N/runtime module. This url can be a suitelet or RESTlet (Recommended)
+ *        // Using getCurrentUser(); So we match this schema returned from this RESTlet in the profile callback. (Required)
+ *         userinfo: "https://1234567.restlets.api.netsuite.com/app/site/hosting/restlet.nl?script=123&deploy=1",
+ *       })
+ *   ],
+ * })
+ * ```
+ *
+ * ### Resources
+ *
+ * - [NetSuite - Creating an Integration Record (OAuth 2.0)](https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/section_157771733782.html#Related-Topics)
+ * - [NetSuite - Authorizing OAuth Requests](https://docs.github.com/en/developers/apps/building-oauth-apps/authorizing-oauth-apps)
+ * - [NetSuite - Configure OAuth Roles](https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/section_157771510070.html#Set-Up-OAuth-2.0-Roles)
+ * - [Learn more about NetSuite OAuth 2.0](https://docs.oracle.com/en/cloud/saas/netsuite/ns-online-help/chapter_157769826287.html#OAuth-2.0)
+ *
+ * ### Notes
+ *
+ * :::tip
+ * Make sure the `userinfo` matches the return type of the profile callback to ensure the user session gets read correctly.
+ * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/providers/custom-provider#override-default-options).
+ * :::
+ *
+ */
+export default function NetSuite<P extends NetSuiteProfile>(config: OAuthUserConfig<P> & OAuthNetSuiteOptions): OAuthConfig<P>;
+//# sourceMappingURL=netsuite.d.ts.map

package/providers/netsuite.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"netsuite.d.ts","sourceRoot":"","sources":["../src/providers/netsuite.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAOH,OAAO,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAE9D,MAAM,WAAW,oBAAoB;IACnC;;;;;;;;;;;;;OAaG;IACH,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,SAAS,CAAA;IAC7C;;OAEG;IACH,SAAS,EAAE,MAAM,CAAA;IACjB;;OAEG;IACH,KAAK,EAAE,MAAM,CAAA;IACb;;OAEG;IACH,QAAQ,EAAE,MAAM,CAAA;CACjB;AAED,MAAM,WAAW,eAAe;IAE9B,EAAE,EAAE,MAAM,CAAA;IACV,IAAI,EAAE,MAAM,CAAA;IACZ,KAAK,EAAE,MAAM,CAAA;IACb,QAAQ,EAAE,MAAM,CAAA;IAChB,IAAI,EAAE,MAAM,CAAA;IACZ,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,UAAU,CAAC,EAAE,MAAM,CAAA;CACpB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsIG;AACH,MAAM,CAAC,OAAO,UAAU,QAAQ,CAAC,CAAC,SAAS,eAAe,EACxD,MAAM,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG,oBAAoB,GAChD,WAAW,CAAC,CAAC,CAAC,CAyBhB"}