npm - @mulverse/mulguard-core - Versions diffs - 1.0.0 - Mend

@mulverse/mulguard-core 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (600) hide show

package/README.md +24 -0
package/adapters.d.ts +522 -0
package/adapters.d.ts.map +1 -0
package/adapters.js +170 -0
package/errors.d.ts +429 -0
package/errors.d.ts.map +1 -0
package/errors.js +473 -0
package/index.d.ts +547 -0
package/index.d.ts.map +1 -0
package/index.js +142 -0
package/jwt.d.ts +132 -0
package/jwt.d.ts.map +1 -0
package/jwt.js +123 -0
package/lib/actions/callback/handle-login.d.ts +35 -0
package/lib/actions/callback/handle-login.d.ts.map +1 -0
package/lib/actions/callback/handle-login.js +275 -0
package/lib/actions/callback/index.d.ts +5 -0
package/lib/actions/callback/index.d.ts.map +1 -0
package/lib/actions/callback/index.js +409 -0
package/lib/actions/callback/oauth/callback.d.ts +36 -0
package/lib/actions/callback/oauth/callback.d.ts.map +1 -0
package/lib/actions/callback/oauth/callback.js +248 -0
package/lib/actions/callback/oauth/checks.d.ts +70 -0
package/lib/actions/callback/oauth/checks.d.ts.map +1 -0
package/lib/actions/callback/oauth/checks.js +188 -0
package/lib/actions/callback/oauth/csrf-token.d.ts +33 -0
package/lib/actions/callback/oauth/csrf-token.d.ts.map +1 -0
package/lib/actions/callback/oauth/csrf-token.js +39 -0
package/lib/actions/index.d.ts +6 -0
package/lib/actions/index.d.ts.map +1 -0
package/lib/actions/index.js +5 -0
package/lib/actions/session.d.ts +5 -0
package/lib/actions/session.d.ts.map +1 -0
package/lib/actions/session.js +127 -0
package/lib/actions/signin/authorization-url.d.ts +12 -0
package/lib/actions/signin/authorization-url.d.ts.map +1 -0
package/lib/actions/signin/authorization-url.js +94 -0
package/lib/actions/signin/index.d.ts +4 -0
package/lib/actions/signin/index.d.ts.map +1 -0
package/lib/actions/signin/index.js +22 -0
package/lib/actions/signin/send-token.d.ts +10 -0
package/lib/actions/signin/send-token.d.ts.map +1 -0
package/lib/actions/signin/send-token.js +98 -0
package/lib/actions/signout.d.ts +11 -0
package/lib/actions/signout.d.ts.map +1 -0
package/lib/actions/signout.js +30 -0
package/lib/actions/webauthn-options.d.ts +8 -0
package/lib/actions/webauthn-options.d.ts.map +1 -0
package/lib/actions/webauthn-options.js +60 -0
package/lib/index.d.ts +2 -0
package/lib/index.d.ts.map +1 -0
package/lib/index.js +70 -0
package/lib/init.d.ts +25 -0
package/lib/init.d.ts.map +1 -0
package/lib/init.js +172 -0
package/lib/pages/error.d.ts +17 -0
package/lib/pages/error.d.ts.map +1 -0
package/lib/pages/error.js +40 -0
package/lib/pages/index.d.ts +42 -0
package/lib/pages/index.d.ts.map +1 -0
package/lib/pages/index.js +136 -0
package/lib/pages/signin.d.ts +10 -0
package/lib/pages/signin.d.ts.map +1 -0
package/lib/pages/signin.js +75 -0
package/lib/pages/signout.d.ts +8 -0
package/lib/pages/signout.d.ts.map +1 -0
package/lib/pages/signout.js +17 -0
package/lib/pages/styles.d.ts +3 -0
package/lib/pages/styles.d.ts.map +1 -0
package/lib/pages/styles.js +381 -0
package/lib/pages/verify-request.d.ts +8 -0
package/lib/pages/verify-request.d.ts.map +1 -0
package/lib/pages/verify-request.js +11 -0
package/lib/symbols.d.ts +50 -0
package/lib/symbols.d.ts.map +1 -0
package/lib/symbols.js +57 -0
package/lib/utils/actions.d.ts +3 -0
package/lib/utils/actions.d.ts.map +1 -0
package/lib/utils/actions.js +14 -0
package/lib/utils/assert.d.ts +14 -0
package/lib/utils/assert.d.ts.map +1 -0
package/lib/utils/assert.js +168 -0
package/lib/utils/callback-url.d.ts +17 -0
package/lib/utils/callback-url.d.ts.map +1 -0
package/lib/utils/callback-url.js +27 -0
package/lib/utils/cookie.d.ts +111 -0
package/lib/utils/cookie.d.ts.map +1 -0
package/lib/utils/cookie.js +205 -0
package/lib/utils/date.d.ts +7 -0
package/lib/utils/date.d.ts.map +1 -0
package/lib/utils/date.js +8 -0
package/lib/utils/email.d.ts +20 -0
package/lib/utils/email.d.ts.map +1 -0
package/lib/utils/email.js +57 -0
package/lib/utils/env.d.ts +9 -0
package/lib/utils/env.d.ts.map +1 -0
package/lib/utils/env.js +96 -0
package/lib/utils/logger.d.ts +18 -0
package/lib/utils/logger.d.ts.map +1 -0
package/lib/utils/logger.js +50 -0
package/lib/utils/merge.d.ts +3 -0
package/lib/utils/merge.d.ts.map +1 -0
package/lib/utils/merge.js +23 -0
package/lib/utils/providers.d.ts +19 -0
package/lib/utils/providers.d.ts.map +1 -0
package/lib/utils/providers.js +149 -0
package/lib/utils/session.d.ts +7 -0
package/lib/utils/session.d.ts.map +1 -0
package/lib/utils/session.js +29 -0
package/lib/utils/web.d.ts +10 -0
package/lib/utils/web.d.ts.map +1 -0
package/lib/utils/web.js +109 -0
package/lib/utils/webauthn-client.d.ts +30 -0
package/lib/utils/webauthn-client.d.ts.map +1 -0
package/lib/utils/webauthn-client.js +197 -0
package/lib/utils/webauthn-utils.d.ts +81 -0
package/lib/utils/webauthn-utils.d.ts.map +1 -0
package/lib/utils/webauthn-utils.js +343 -0
package/lib/vendored/cookie.d.ts +120 -0
package/lib/vendored/cookie.d.ts.map +1 -0
package/lib/vendored/cookie.js +237 -0
package/package.json +118 -0
package/providers/42-school.d.ts +240 -0
package/providers/42-school.d.ts.map +1 -0
package/providers/42-school.js +78 -0
package/providers/apple.d.ts +149 -0
package/providers/apple.d.ts.map +1 -0
package/providers/apple.js +104 -0
package/providers/asgardeo.d.ts +102 -0
package/providers/asgardeo.d.ts.map +1 -0
package/providers/asgardeo.js +93 -0
package/providers/atlassian.d.ts +94 -0
package/providers/atlassian.d.ts.map +1 -0
package/providers/atlassian.js +84 -0
package/providers/auth0.d.ts +116 -0
package/providers/auth0.d.ts.map +1 -0
package/providers/auth0.js +49 -0
package/providers/authentik.d.ts +90 -0
package/providers/authentik.d.ts.map +1 -0
package/providers/authentik.js +65 -0
package/providers/azure-ad-b2c.d.ts +104 -0
package/providers/azure-ad-b2c.d.ts.map +1 -0
package/providers/azure-ad-b2c.js +100 -0
package/providers/azure-ad.d.ts +19 -0
package/providers/azure-ad.d.ts.map +1 -0
package/providers/azure-ad.js +23 -0
package/providers/azure-devops.d.ts +128 -0
package/providers/azure-devops.d.ts.map +1 -0
package/providers/azure-devops.js +158 -0
package/providers/bankid-no.d.ts +134 -0
package/providers/bankid-no.d.ts.map +1 -0
package/providers/bankid-no.js +65 -0
package/providers/battlenet.d.ts +85 -0
package/providers/battlenet.d.ts.map +1 -0
package/providers/battlenet.js +81 -0
package/providers/beyondidentity.d.ts +77 -0
package/providers/beyondidentity.d.ts.map +1 -0
package/providers/beyondidentity.js +84 -0
package/providers/bitbucket.d.ts +89 -0
package/providers/bitbucket.d.ts.map +1 -0
package/providers/bitbucket.js +92 -0
package/providers/box.d.ts +63 -0
package/providers/box.d.ts.map +1 -0
package/providers/box.js +73 -0
package/providers/boxyhq-saml.d.ts +121 -0
package/providers/boxyhq-saml.d.ts.map +1 -0
package/providers/boxyhq-saml.js +127 -0
package/providers/bungie.d.ts +167 -0
package/providers/bungie.d.ts.map +1 -0
package/providers/bungie.js +174 -0
package/providers/click-up.d.ts +75 -0
package/providers/click-up.d.ts.map +1 -0
package/providers/click-up.js +89 -0
package/providers/cognito.d.ts +81 -0
package/providers/cognito.d.ts.map +1 -0
package/providers/cognito.js +73 -0
package/providers/coinbase.d.ts +69 -0
package/providers/coinbase.d.ts.map +1 -0
package/providers/coinbase.js +78 -0
package/providers/concept2.d.ts +81 -0
package/providers/concept2.d.ts.map +1 -0
package/providers/concept2.js +86 -0
package/providers/credentials.d.ts +132 -0
package/providers/credentials.d.ts.map +1 -0
package/providers/credentials.js +74 -0
package/providers/descope.d.ts +91 -0
package/providers/descope.d.ts.map +1 -0
package/providers/descope.js +78 -0
package/providers/discord.d.ts +139 -0
package/providers/discord.d.ts.map +1 -0
package/providers/discord.js +86 -0
package/providers/dribbble.d.ts +88 -0
package/providers/dribbble.d.ts.map +1 -0
package/providers/dribbble.js +85 -0
package/providers/dropbox.d.ts +65 -0
package/providers/dropbox.d.ts.map +1 -0
package/providers/dropbox.js +88 -0
package/providers/duende-identity-server6.d.ts +91 -0
package/providers/duende-identity-server6.d.ts.map +1 -0
package/providers/duende-identity-server6.js +80 -0
package/providers/email.d.ts +41 -0
package/providers/email.d.ts.map +1 -0
package/providers/email.js +18 -0
package/providers/eventbrite.d.ts +78 -0
package/providers/eventbrite.d.ts.map +1 -0
package/providers/eventbrite.js +88 -0
package/providers/eveonline.d.ts +94 -0
package/providers/eveonline.d.ts.map +1 -0
package/providers/eveonline.js +92 -0
package/providers/facebook.d.ts +84 -0
package/providers/facebook.d.ts.map +1 -0
package/providers/facebook.js +93 -0
package/providers/faceit.d.ts +64 -0
package/providers/faceit.d.ts.map +1 -0
package/providers/faceit.js +74 -0
package/providers/figma.d.ts +75 -0
package/providers/figma.d.ts.map +1 -0
package/providers/figma.js +81 -0
package/providers/forwardemail.d.ts +4 -0
package/providers/forwardemail.d.ts.map +1 -0
package/providers/forwardemail.js +32 -0
package/providers/foursquare.d.ts +71 -0
package/providers/foursquare.d.ts.map +1 -0
package/providers/foursquare.js +91 -0
package/providers/freshbooks.d.ts +66 -0
package/providers/freshbooks.d.ts.map +1 -0
package/providers/freshbooks.js +76 -0
package/providers/frontegg.d.ts +95 -0
package/providers/frontegg.d.ts.map +1 -0
package/providers/frontegg.js +88 -0
package/providers/fusionauth.d.ts +279 -0
package/providers/fusionauth.d.ts.map +1 -0
package/providers/fusionauth.js +292 -0
package/providers/github.d.ts +127 -0
package/providers/github.d.ts.map +1 -0
package/providers/github.js +115 -0
package/providers/gitlab.d.ts +115 -0
package/providers/gitlab.d.ts.map +1 -0
package/providers/gitlab.js +75 -0
package/providers/google.d.ts +138 -0
package/providers/google.d.ts.map +1 -0
package/providers/google.js +119 -0
package/providers/hubspot.d.ts +76 -0
package/providers/hubspot.d.ts.map +1 -0
package/providers/hubspot.js +93 -0
package/providers/huggingface.d.ts +216 -0
package/providers/huggingface.d.ts.map +1 -0
package/providers/huggingface.js +101 -0
package/providers/identity-server4.d.ts +69 -0
package/providers/identity-server4.d.ts.map +1 -0
package/providers/identity-server4.js +64 -0
package/providers/index.d.ts +61 -0
package/providers/index.d.ts.map +1 -0
package/providers/index.js +3 -0
package/providers/instagram.d.ts +74 -0
package/providers/instagram.d.ts.map +1 -0
package/providers/instagram.js +87 -0
package/providers/kakao.d.ts +148 -0
package/providers/kakao.d.ts.map +1 -0
package/providers/kakao.js +103 -0
package/providers/keycloak.d.ts +100 -0
package/providers/keycloak.d.ts.map +1 -0
package/providers/keycloak.js +73 -0
package/providers/kinde.d.ts +73 -0
package/providers/kinde.d.ts.map +1 -0
package/providers/kinde.js +51 -0
package/providers/line.d.ts +83 -0
package/providers/line.d.ts.map +1 -0
package/providers/line.js +73 -0
package/providers/linkedin.d.ts +77 -0
package/providers/linkedin.d.ts.map +1 -0
package/providers/linkedin.js +65 -0
package/providers/logto.d.ts +98 -0
package/providers/logto.d.ts.map +1 -0
package/providers/logto.js +81 -0
package/providers/loops.d.ts +40 -0
package/providers/loops.d.ts.map +1 -0
package/providers/loops.js +59 -0
package/providers/mailchimp.d.ts +66 -0
package/providers/mailchimp.d.ts.map +1 -0
package/providers/mailchimp.js +76 -0
package/providers/mailgun.d.ts +55 -0
package/providers/mailgun.d.ts.map +1 -0
package/providers/mailgun.js +74 -0
package/providers/mailru.d.ts +63 -0
package/providers/mailru.d.ts.map +1 -0
package/providers/mailru.js +61 -0
package/providers/mastodon.d.ts +90 -0
package/providers/mastodon.d.ts.map +1 -0
package/providers/mastodon.js +75 -0
package/providers/mattermost.d.ts +132 -0
package/providers/mattermost.d.ts.map +1 -0
package/providers/mattermost.js +83 -0
package/providers/medium.d.ts +68 -0
package/providers/medium.d.ts.map +1 -0
package/providers/medium.js +84 -0
package/providers/microsoft-entra-id.d.ts +428 -0
package/providers/microsoft-entra-id.d.ts.map +1 -0
package/providers/microsoft-entra-id.js +156 -0
package/providers/naver.d.ts +80 -0
package/providers/naver.d.ts.map +1 -0
package/providers/naver.js +79 -0
package/providers/netlify.d.ts +66 -0
package/providers/netlify.d.ts.map +1 -0
package/providers/netlify.js +85 -0
package/providers/netsuite.d.ts +189 -0
package/providers/netsuite.d.ts.map +1 -0
package/providers/netsuite.js +170 -0
package/providers/nextcloud.d.ts +150 -0
package/providers/nextcloud.d.ts.map +1 -0
package/providers/nextcloud.js +99 -0
package/providers/nodemailer.d.ts +27 -0
package/providers/nodemailer.d.ts.map +1 -0
package/providers/nodemailer.js +34 -0
package/providers/notion.d.ts +99 -0
package/providers/notion.d.ts.map +1 -0
package/providers/notion.js +110 -0
package/providers/oauth.d.ts +188 -0
package/providers/oauth.d.ts.map +1 -0
package/providers/oauth.js +1 -0
package/providers/okta.d.ts +99 -0
package/providers/okta.d.ts.map +1 -0
package/providers/okta.js +63 -0
package/providers/onelogin.d.ts +65 -0
package/providers/onelogin.d.ts.map +1 -0
package/providers/onelogin.js +61 -0
package/providers/ory-hydra.d.ts +79 -0
package/providers/ory-hydra.d.ts.map +1 -0
package/providers/ory-hydra.js +67 -0
package/providers/osso.d.ts +79 -0
package/providers/osso.d.ts.map +1 -0
package/providers/osso.js +77 -0
package/providers/osu.d.ts +116 -0
package/providers/osu.d.ts.map +1 -0
package/providers/osu.js +75 -0
package/providers/passage.d.ts +88 -0
package/providers/passage.d.ts.map +1 -0
package/providers/passage.js +75 -0
package/providers/passkey.d.ts +65 -0
package/providers/passkey.d.ts.map +1 -0
package/providers/passkey.js +87 -0
package/providers/patreon.d.ts +73 -0
package/providers/patreon.d.ts.map +1 -0
package/providers/patreon.js +77 -0
package/providers/ping-id.d.ts +57 -0
package/providers/ping-id.d.ts.map +1 -0
package/providers/ping-id.js +40 -0
package/providers/pinterest.d.ts +79 -0
package/providers/pinterest.d.ts.map +1 -0
package/providers/pinterest.js +85 -0
package/providers/pipedrive.d.ts +99 -0
package/providers/pipedrive.d.ts.map +1 -0
package/providers/pipedrive.js +71 -0
package/providers/postmark.d.ts +4 -0
package/providers/postmark.d.ts.map +1 -0
package/providers/postmark.js +36 -0
package/providers/provider-types.d.ts +3 -0
package/providers/provider-types.d.ts.map +1 -0
package/providers/provider-types.js +1 -0
package/providers/reddit.d.ts +88 -0
package/providers/reddit.d.ts.map +1 -0
package/providers/reddit.js +90 -0
package/providers/resend.d.ts +4 -0
package/providers/resend.d.ts.map +1 -0
package/providers/resend.js +32 -0
package/providers/roblox.d.ts +67 -0
package/providers/roblox.d.ts.map +1 -0
package/providers/roblox.js +53 -0
package/providers/salesforce.d.ts +59 -0
package/providers/salesforce.d.ts.map +1 -0
package/providers/salesforce.js +52 -0
package/providers/sendgrid.d.ts +4 -0
package/providers/sendgrid.d.ts.map +1 -0
package/providers/sendgrid.js +35 -0
package/providers/simplelogin.d.ts +87 -0
package/providers/simplelogin.d.ts.map +1 -0
package/providers/simplelogin.js +83 -0
package/providers/slack.d.ts +102 -0
package/providers/slack.d.ts.map +1 -0
package/providers/slack.js +69 -0
package/providers/spotify.d.ts +75 -0
package/providers/spotify.d.ts.map +1 -0
package/providers/spotify.js +73 -0
package/providers/strava.d.ts +68 -0
package/providers/strava.d.ts.map +1 -0
package/providers/strava.js +80 -0
package/providers/threads.d.ts +108 -0
package/providers/threads.d.ts.map +1 -0
package/providers/threads.js +89 -0
package/providers/tiktok.d.ts +248 -0
package/providers/tiktok.d.ts.map +1 -0
package/providers/tiktok.js +195 -0
package/providers/todoist.d.ts +76 -0
package/providers/todoist.d.ts.map +1 -0
package/providers/todoist.js +97 -0
package/providers/trakt.d.ts +93 -0
package/providers/trakt.d.ts.map +1 -0
package/providers/trakt.js +91 -0
package/providers/twitch.d.ts +71 -0
package/providers/twitch.d.ts.map +1 -0
package/providers/twitch.js +96 -0
package/providers/twitter.d.ts +183 -0
package/providers/twitter.d.ts.map +1 -0
package/providers/twitter.js +100 -0
package/providers/united-effects.d.ts +80 -0
package/providers/united-effects.d.ts.map +1 -0
package/providers/united-effects.js +72 -0
package/providers/vipps.d.ts +71 -0
package/providers/vipps.d.ts.map +1 -0
package/providers/vipps.js +33 -0
package/providers/vk.d.ts +334 -0
package/providers/vk.d.ts.map +1 -0
package/providers/vk.js +103 -0
package/providers/webauthn.d.ts +148 -0
package/providers/webauthn.d.ts.map +1 -0
package/providers/webauthn.js +128 -0
package/providers/webex.d.ts +78 -0
package/providers/webex.d.ts.map +1 -0
package/providers/webex.js +73 -0
package/providers/wechat.d.ts +78 -0
package/providers/wechat.d.ts.map +1 -0
package/providers/wechat.js +105 -0
package/providers/wikimedia.d.ts +99 -0
package/providers/wikimedia.d.ts.map +1 -0
package/providers/wikimedia.js +90 -0
package/providers/wordpress.d.ts +65 -0
package/providers/wordpress.d.ts.map +1 -0
package/providers/wordpress.js +71 -0
package/providers/workos.d.ts +154 -0
package/providers/workos.d.ts.map +1 -0
package/providers/workos.js +143 -0
package/providers/yandex.d.ts +131 -0
package/providers/yandex.d.ts.map +1 -0
package/providers/yandex.js +80 -0
package/providers/zitadel.d.ts +117 -0
package/providers/zitadel.d.ts.map +1 -0
package/providers/zitadel.js +95 -0
package/providers/zoho.d.ts +63 -0
package/providers/zoho.d.ts.map +1 -0
package/providers/zoho.js +79 -0
package/providers/zoom.d.ts +93 -0
package/providers/zoom.d.ts.map +1 -0
package/providers/zoom.js +82 -0
package/src/adapters/server-actions-helpers.ts +126 -0
package/src/adapters.ts +603 -0
package/src/errors.ts +551 -0
package/src/index.ts +689 -0
package/src/jwt.ts +283 -0
package/src/lib/actions/callback/handle-login.ts +334 -0
package/src/lib/actions/callback/index.ts +554 -0
package/src/lib/actions/callback/oauth/callback.ts +347 -0
package/src/lib/actions/callback/oauth/checks.ts +258 -0
package/src/lib/actions/callback/oauth/csrf-token.ts +60 -0
package/src/lib/actions/index.ts +5 -0
package/src/lib/actions/session.ts +167 -0
package/src/lib/actions/signin/authorization-url.ts +123 -0
package/src/lib/actions/signin/index.ts +37 -0
package/src/lib/actions/signin/send-token.ts +124 -0
package/src/lib/actions/signout.ts +38 -0
package/src/lib/actions/webauthn-options.ts +100 -0
package/src/lib/index.ts +97 -0
package/src/lib/init.ts +236 -0
package/src/lib/pages/error.tsx +106 -0
package/src/lib/pages/index.ts +181 -0
package/src/lib/pages/signin.tsx +255 -0
package/src/lib/pages/signout.tsx +49 -0
package/src/lib/pages/styles.css +377 -0
package/src/lib/pages/styles.ts +381 -0
package/src/lib/pages/verify-request.tsx +36 -0
package/src/lib/symbols.ts +60 -0
package/src/lib/utils/actions.ts +17 -0
package/src/lib/utils/assert.ts +259 -0
package/src/lib/utils/callback-url.ts +42 -0
package/src/lib/utils/cookie.ts +248 -0
package/src/lib/utils/date.ts +8 -0
package/src/lib/utils/email.ts +65 -0
package/src/lib/utils/env.ts +113 -0
package/src/lib/utils/logger.ts +75 -0
package/src/lib/utils/merge.ts +30 -0
package/src/lib/utils/providers.ts +203 -0
package/src/lib/utils/session.ts +41 -0
package/src/lib/utils/web.ts +151 -0
package/src/lib/utils/webauthn-client.js +229 -0
package/src/lib/utils/webauthn-utils.ts +531 -0
package/src/lib/vendored/cookie.ts +383 -0
package/src/providers/42-school.ts +256 -0
package/src/providers/apple.ts +206 -0
package/src/providers/asgardeo.ts +118 -0
package/src/providers/atlassian.ts +120 -0
package/src/providers/auth0.ts +127 -0
package/src/providers/authentik.ts +100 -0
package/src/providers/azure-ad-b2c.ts +124 -0
package/src/providers/azure-ad.ts +30 -0
package/src/providers/azure-devops.ts +184 -0
package/src/providers/bankid-no.ts +161 -0
package/src/providers/battlenet.ts +107 -0
package/src/providers/beyondidentity.ts +102 -0
package/src/providers/bitbucket.ts +122 -0
package/src/providers/box.ts +87 -0
package/src/providers/boxyhq-saml.ts +148 -0
package/src/providers/bungie.ts +192 -0
package/src/providers/click-up.ts +104 -0
package/src/providers/cognito.ts +94 -0
package/src/providers/coinbase.ts +93 -0
package/src/providers/concept2.ts +108 -0
package/src/providers/credentials.ts +157 -0
package/src/providers/descope.ts +105 -0
package/src/providers/discord.ts +176 -0
package/src/providers/dribbble.ts +122 -0
package/src/providers/dropbox.ts +102 -0
package/src/providers/duende-identity-server6.ts +101 -0
package/src/providers/email.ts +60 -0
package/src/providers/eventbrite.ts +105 -0
package/src/providers/eveonline.ts +117 -0
package/src/providers/facebook.ts +119 -0
package/src/providers/faceit.ts +90 -0
package/src/providers/figma.ts +105 -0
package/src/providers/forwardemail.ts +37 -0
package/src/providers/foursquare.ts +105 -0
package/src/providers/freshbooks.ts +90 -0
package/src/providers/frontegg.ts +111 -0
package/src/providers/fusionauth.ts +336 -0
package/src/providers/github.ts +187 -0
package/src/providers/gitlab.ts +140 -0
package/src/providers/google.ts +152 -0
package/src/providers/hubspot.ts +117 -0
package/src/providers/huggingface.ts +234 -0
package/src/providers/identity-server4.ts +78 -0
package/src/providers/index.ts +115 -0
package/src/providers/instagram.ts +103 -0
package/src/providers/kakao.ts +184 -0
package/src/providers/keycloak.ts +111 -0
package/src/providers/kinde.ts +85 -0
package/src/providers/line.ts +99 -0
package/src/providers/linkedin.ts +91 -0
package/src/providers/logto.ts +122 -0
package/src/providers/loops.ts +79 -0
package/src/providers/mailchimp.ts +90 -0
package/src/providers/mailgun.ts +98 -0
package/src/providers/mailru.ts +75 -0
package/src/providers/mastodon.ts +112 -0
package/src/providers/mattermost.ts +154 -0
package/src/providers/medium.ts +89 -0
package/src/providers/microsoft-entra-id.ts +497 -0
package/src/providers/naver.ts +102 -0
package/src/providers/netlify.ts +90 -0
package/src/providers/netsuite.ts +225 -0
package/src/providers/nextcloud.ts +207 -0
package/src/providers/nodemailer.ts +84 -0
package/src/providers/notion.ts +166 -0
package/src/providers/oauth.ts +310 -0
package/src/providers/okta.ts +111 -0
package/src/providers/onelogin.ts +75 -0
package/src/providers/ory-hydra.ts +93 -0
package/src/providers/osso.ts +91 -0
package/src/providers/osu.ts +138 -0
package/src/providers/passage.ts +103 -0
package/src/providers/passkey.ts +94 -0
package/src/providers/patreon.ts +98 -0
package/src/providers/ping-id.ts +68 -0
package/src/providers/pinterest.ts +106 -0
package/src/providers/pipedrive.ts +120 -0
package/src/providers/postmark.ts +38 -0
package/src/providers/provider-types.ts +107 -0
package/src/providers/reddit.ts +104 -0
package/src/providers/resend.ts +35 -0
package/src/providers/roblox.ts +94 -0
package/src/providers/salesforce.ts +73 -0
package/src/providers/sendgrid.ts +36 -0
package/src/providers/simplelogin.ts +107 -0
package/src/providers/slack.ts +115 -0
package/src/providers/spotify.ts +99 -0
package/src/providers/strava.ts +101 -0
package/src/providers/threads.ts +135 -0
package/src/providers/tiktok.ts +319 -0
package/src/providers/todoist.ts +122 -0
package/src/providers/trakt.ts +120 -0
package/src/providers/twitch.ts +121 -0
package/src/providers/twitter.ts +207 -0
package/src/providers/united-effects.ts +89 -0
package/src/providers/vipps.ts +86 -0
package/src/providers/vk.ts +401 -0
package/src/providers/webauthn.ts +296 -0
package/src/providers/webex.ts +102 -0
package/src/providers/wechat.ts +141 -0
package/src/providers/wikimedia.ts +258 -0
package/src/providers/wordpress.ts +86 -0
package/src/providers/workos.ts +180 -0
package/src/providers/yandex.ts +159 -0
package/src/providers/zitadel.ts +128 -0
package/src/providers/zoho.ts +84 -0
package/src/providers/zoom.ts +119 -0
package/src/types.ts +430 -0
package/src/warnings.ts +21 -0
package/types.d.ts +309 -0
package/types.d.ts.map +1 -0
package/types.js +53 -0
package/warnings.d.ts +17 -0
package/warnings.d.ts.map +1 -0
package/warnings.js +1 -0

package/src/lib/utils/env.ts ADDED Viewed

@@ -0,0 +1,113 @@
+import type { AuthAction } from "../../types.js"
+import type { AuthConfig } from "../../index.js"
+import { setLogger } from "./logger.js"
+/**
+ *  Set default env variables on the config object
+ * @param suppressWarnings intended for framework authors.
+ */
+export function setEnvDefaults(
+  envObject: any,
+  config: AuthConfig,
+  suppressBasePathWarning = false
+) {
+  try {
+    const url = envObject.AUTH_URL
+    if (url) {
+      if (config.basePath) {
+        if (!suppressBasePathWarning) {
+          const logger = setLogger(config)
+          logger.warn("env-url-basepath-redundant")
+        }
+      } else {
+        config.basePath = new URL(url).pathname
+      }
+    }
+  } catch {
+    // Catching and swallowing potential URL parsing errors, we'll fall
+    // back to `/auth` below.
+  } finally {
+    config.basePath ??= `/auth`
+  }
+  if (!config.secret?.length) {
+    config.secret = []
+    const secret = envObject.AUTH_SECRET
+    if (secret) config.secret.push(secret)
+    for (const i of [1, 2, 3]) {
+      const secret = envObject[`AUTH_SECRET_${i}`]
+      if (secret) config.secret.unshift(secret)
+    }
+  }
+  config.redirectProxyUrl ??= envObject.AUTH_REDIRECT_PROXY_URL
+  config.trustHost ??= !!(
+    envObject.AUTH_URL ??
+    envObject.AUTH_TRUST_HOST ??
+    envObject.VERCEL ??
+    envObject.CF_PAGES ??
+    envObject.NODE_ENV !== "production"
+  )
+  config.providers = config.providers.map((provider) => {
+    const { id } = typeof provider === "function" ? provider({}) : provider
+    const ID = id.toUpperCase().replace(/-/g, "_")
+    const clientId = envObject[`AUTH_${ID}_ID`]
+    const clientSecret = envObject[`AUTH_${ID}_SECRET`]
+    const issuer = envObject[`AUTH_${ID}_ISSUER`]
+    const apiKey = envObject[`AUTH_${ID}_KEY`]
+    const finalProvider =
+      typeof provider === "function"
+        ? provider({ clientId, clientSecret, issuer, apiKey })
+        : provider
+    if (finalProvider.type === "oauth" || finalProvider.type === "oidc") {
+      finalProvider.clientId ??= clientId
+      finalProvider.clientSecret ??= clientSecret
+      finalProvider.issuer ??= issuer
+    } else if (finalProvider.type === "email") {
+      finalProvider.apiKey ??= apiKey
+    }
+    return finalProvider
+  })
+}
+export function createActionURL(
+  action: AuthAction,
+  protocol: string,
+  headers: Headers,
+  envObject: any,
+  config: Pick<AuthConfig, "basePath" | "logger">
+): URL {
+  const basePath = config?.basePath
+  const envUrl = envObject.AUTH_URL ?? envObject.NEXTAUTH_URL
+  let url: URL
+  if (envUrl) {
+    url = new URL(envUrl)
+    if (basePath && basePath !== "/" && url.pathname !== "/") {
+      if (url.pathname !== basePath) {
+        const logger = setLogger(config)
+        logger.warn("env-url-basepath-mismatch")
+      }
+      url.pathname = "/"
+    }
+  } else {
+    const detectedHost = headers.get("x-forwarded-host") ?? headers.get("host")
+    const detectedProtocol =
+      headers.get("x-forwarded-proto") ?? protocol ?? "https"
+    const _protocol = detectedProtocol.endsWith(":")
+      ? detectedProtocol
+      : detectedProtocol + ":"
+    url = new URL(`${_protocol}//${detectedHost}`)
+  }
+  // remove trailing slash
+  const sanitizedUrl = url.toString().replace(/\/$/, "")
+  if (basePath) {
+    // remove leading and trailing slash
+    const sanitizedBasePath = basePath?.replace(/(^\/|\/$)/g, "") ?? ""
+    return new URL(`${sanitizedUrl}/${sanitizedBasePath}/${action}`)
+  }
+  return new URL(`${sanitizedUrl}/${action}`)
+}

package/src/lib/utils/logger.ts ADDED Viewed

@@ -0,0 +1,75 @@
+import { AuthError } from "../../errors.js"
+import type { WarningCode } from "../../warnings.js"
+import type { AuthConfig } from "../../index.js"
+/**
+ * Override any of the methods, and the rest will use the default logger.
+ *
+ * [Documentation](https://authjs.dev/reference/core#authconfig#logger)
+ */
+// eslint-disable-next-line @typescript-eslint/no-unsafe-function-type
+export interface LoggerInstance extends Record<string, Function> {
+  warn: (code: WarningCode) => void
+  error: (error: Error) => void
+  debug: (message: string, metadata?: unknown) => void
+}
+const red = "\x1b[31m"
+const yellow = "\x1b[33m"
+const grey = "\x1b[90m"
+const reset = "\x1b[0m"
+const defaultLogger: LoggerInstance = {
+  error(error) {
+    const name = error instanceof AuthError ? error.type : error.name
+    console.error(`${red}[auth][error]${reset} ${name}: ${error.message}`)
+    if (
+      error.cause &&
+      typeof error.cause === "object" &&
+      "err" in error.cause &&
+      error.cause.err instanceof Error
+    ) {
+      const { err, ...data } = error.cause
+      console.error(`${red}[auth][cause]${reset}:`, err.stack)
+      if (data)
+        console.error(
+          `${red}[auth][details]${reset}:`,
+          JSON.stringify(data, null, 2)
+        )
+    } else if (error.stack) {
+      console.error(error.stack.replace(/.*/, "").substring(1))
+    }
+  },
+  warn(code) {
+    const url = `https://warnings.authjs.dev`
+    console.warn(`${yellow}[auth][warn][${code}]${reset}`, `Read more: ${url}`)
+  },
+  debug(message, metadata) {
+    console.log(
+      `${grey}[auth][debug]:${reset} ${message}`,
+      JSON.stringify(metadata, null, 2)
+    )
+  },
+}
+/**
+ * Override the built-in logger with user's implementation.
+ * Any `undefined` level will use the default logger.
+ */
+export function setLogger(
+  config: Pick<AuthConfig, "logger" | "debug">
+): LoggerInstance {
+  const newLogger: LoggerInstance = {
+    ...defaultLogger,
+  }
+  // Turn off debug logging if `debug` isn't set to `true`
+  if (!config.debug) newLogger.debug = () => {}
+  if (config.logger?.error) newLogger.error = config.logger.error
+  if (config.logger?.warn) newLogger.warn = config.logger.warn
+  if (config.logger?.debug) newLogger.debug = config.logger.debug
+  config.logger ??= newLogger
+  return newLogger
+}

package/src/lib/utils/merge.ts ADDED Viewed

@@ -0,0 +1,30 @@
+function isObject(item: unknown): item is object {
+  return item !== null && typeof item === "object"
+}
+/** Deep merge two or more objects */
+export function merge<T extends Record<string, unknown>>(
+  target: T,
+  ...sources: Array<Record<string, unknown> | undefined>
+): T & Record<string, unknown> {
+  if (!sources.length) return target
+  const source = sources.shift()
+  if (isObject(target) && isObject(source)) {
+    for (const key in source) {
+      if (isObject(source[key])) {
+        if (!isObject(target[key]))
+          (target as Record<string, unknown>)[key] = Array.isArray(source[key])
+            ? []
+            : {}
+        merge(
+          (target as Record<string, unknown>)[key] as T,
+          source[key] as Record<string, unknown>
+        )
+      } else if (source[key] !== undefined)
+        (target as Record<string, unknown>)[key] = source[key]
+    }
+  }
+  return merge(target, ...sources)
+}

package/src/lib/utils/providers.ts ADDED Viewed

@@ -0,0 +1,203 @@
+import { merge } from "./merge.js"
+import type {
+  AccountCallback,
+  OAuthConfig,
+  OAuthConfigInternal,
+  OAuthEndpointType,
+  OAuthUserConfig,
+  ProfileCallback,
+} from "../../providers/index.js"
+import type { InternalProvider, Profile } from "../../types.js"
+import { type AuthConfig } from "../../index.js"
+import { customFetch } from "../symbols.js"
+/**
+ * Adds `signinUrl` and `callbackUrl` to each provider
+ * and deep merge user-defined options.
+ */
+export default function parseProviders(params: {
+  url: URL
+  providerId?: string
+  config: AuthConfig
+}): {
+  providers: InternalProvider[]
+  provider?: InternalProvider
+} {
+  const { providerId, config } = params
+  const url = new URL(config.basePath ?? "/auth", params.url.origin)
+  const providers = config.providers.map((p) => {
+    const provider = typeof p === "function" ? p() : p
+    const { options: userOptions, ...defaults } = provider
+    const id = (userOptions?.id ?? defaults.id) as string
+    // TODO: Support if properties have different types, e.g. authorization: string or object
+    const merged = merge(defaults, userOptions, {
+      signinUrl: `${url}/signin/${id}`,
+      callbackUrl: `${url}/callback/${id}`,
+    })
+    if (provider.type === "oauth" || provider.type === "oidc") {
+      merged.redirectProxyUrl ??=
+        userOptions?.redirectProxyUrl ?? config.redirectProxyUrl
+      const normalized = normalizeOAuth(merged) as InternalProvider<
+        "oauth" | "oidc"
+      >
+      // We currently don't support redirect proxies for response_mode=form_post
+      if (
+        normalized.authorization?.url.searchParams.get("response_mode") ===
+        "form_post"
+      ) {
+        delete normalized.redirectProxyUrl
+      }
+      // @ts-expect-error Symbols don't get merged by the `merge` function
+      // so we need to do it manually.
+      normalized[customFetch] ??= userOptions?.[customFetch]
+      return normalized
+    }
+    return merged as InternalProvider
+  })
+  const provider = providers.find(({ id }) => id === providerId)
+  if (providerId && !provider) {
+    const availableProviders = providers.map((p) => p.id).join(", ")
+    throw new Error(
+      `Provider with id "${providerId}" not found. Available providers: [${availableProviders}].`
+    )
+  }
+  return { providers, provider }
+}
+// TODO: Also add discovery here, if some endpoints/config are missing.
+// We should return both a client and authorization server config.
+function normalizeOAuth(
+  c: OAuthConfig<any> | OAuthUserConfig<any>
+): OAuthConfigInternal<any> | object {
+  if (c.issuer) c.wellKnown ??= `${c.issuer}/.well-known/openid-configuration`
+  const authorization = normalizeEndpoint(c.authorization, c.issuer)
+  if (authorization && !authorization.url?.searchParams.has("scope")) {
+    authorization.url.searchParams.set("scope", "openid profile email")
+  }
+  const token = normalizeEndpoint(c.token, c.issuer)
+  const userinfo = normalizeEndpoint(c.userinfo, c.issuer)
+  const checks = c.checks ?? ["pkce"]
+  if (c.redirectProxyUrl) {
+    if (!checks.includes("state")) checks.push("state")
+    c.redirectProxyUrl = `${c.redirectProxyUrl}/callback/${c.id}`
+  }
+  return {
+    ...c,
+    authorization,
+    token,
+    checks,
+    userinfo,
+    profile: c.profile ?? defaultProfile,
+    account: c.account ?? defaultAccount,
+  }
+}
+/**
+ * Returns basic user profile from the userinfo response/`id_token` claims.
+ * The returned `id` will become the `account.providerAccountId`. `user.id`
+ * and `account.id` are auto-generated UUID's.
+ *
+ * The result if this function is used to create the `User` in the database.
+ * @see https://authjs.dev/reference/core/adapters#user
+ * @see https://openid.net/specs/openid-connect-core-1_0.html#IDToken
+ * @see https://openid.net/specs/openid-connect-core-1_0.html#
+ */
+const defaultProfile: ProfileCallback<Profile> = (profile) => {
+  return stripUndefined({
+    id: profile.sub ?? profile.id ?? crypto.randomUUID(),
+    name: profile.name ?? profile.nickname ?? profile.preferred_username,
+    email: profile.email,
+    image: profile.picture,
+  })
+}
+/**
+ * Returns basic OAuth/OIDC values from the token response.
+ * @see https://www.ietf.org/rfc/rfc6749.html#section-5.1
+ * @see https://openid.net/specs/openid-connect-core-1_0.html#TokenResponse
+ * @see https://authjs.dev/reference/core/adapters#account
+ */
+const defaultAccount: AccountCallback = (account) => {
+  return stripUndefined({
+    access_token: account.access_token,
+    id_token: account.id_token,
+    refresh_token: account.refresh_token,
+    expires_at: account.expires_at,
+    scope: account.scope,
+    token_type: account.token_type,
+    session_state: account.session_state,
+  })
+}
+function stripUndefined<T extends object>(o: T): T {
+  const result = {} as any
+  for (const [k, v] of Object.entries(o)) {
+    if (v !== undefined) result[k] = v
+  }
+  return result as T
+}
+function normalizeEndpoint(
+  e?: OAuthConfig<any>[OAuthEndpointType],
+  issuer?: string
+): OAuthConfigInternal<any>[OAuthEndpointType] {
+  if (!e && issuer) return
+  if (typeof e === "string") {
+    return { url: new URL(e) }
+  }
+  // If e.url is undefined, it's because the provider config
+  // assumes that we will use the issuer endpoint.
+  // The existence of either e.url or provider.issuer is checked in
+  // assert.ts. We fallback to "https://authjs.dev" to be able to pass around
+  // a valid URL even if the user only provided params.
+  // NOTE: This need to be checked when constructing the URL
+  // for the authorization, token and userinfo endpoints.
+  const url = new URL(e?.url ?? "https://authjs.dev")
+  if (e?.params != null) {
+    for (let [key, value] of Object.entries(e.params)) {
+      if (key === "claims") {
+        value = JSON.stringify(value)
+      }
+      url.searchParams.set(key, String(value))
+    }
+  }
+  return {
+    url,
+    request: e?.request,
+    conform: e?.conform,
+    ...(e?.clientPrivateKey ? { clientPrivateKey: e?.clientPrivateKey } : null),
+  }
+}
+export function isOIDCProvider(
+  provider: InternalProvider<"oidc" | "oauth">
+): provider is InternalProvider<"oidc"> {
+  return provider.type === "oidc"
+}
+export function isOAuth2Provider(
+  provider: InternalProvider<"oidc" | "oauth">
+): provider is InternalProvider<"oauth"> {
+  return provider.type === "oauth"
+}
+/** Either OAuth 2 or OIDC */
+export function isOAuthProvider(
+  provider: InternalProvider<any>
+): provider is InternalProvider<"oauth" | "oidc"> {
+  return provider.type === "oauth" || provider.type === "oidc"
+}

package/src/lib/utils/session.ts ADDED Viewed

@@ -0,0 +1,41 @@
+import type { InternalOptions, User } from "../../types.js"
+import type { SessionStore } from "./cookie.js"
+/**
+ * Returns the currently logged in user, if any.
+ */
+export async function getLoggedInUser(
+  options: InternalOptions,
+  sessionStore: SessionStore
+): Promise<User | null> {
+  const {
+    adapter,
+    jwt,
+    session: { strategy: sessionStrategy },
+  } = options
+  const sessionToken = sessionStore.value
+  if (!sessionToken) return null
+  // Try to decode JWT
+  if (sessionStrategy === "jwt") {
+    const salt = options.cookies.sessionToken.name
+    const payload = await jwt.decode({ ...jwt, token: sessionToken, salt })
+    if (payload && payload.sub) {
+      return {
+        id: payload.sub,
+        name: payload.name,
+        email: payload.email,
+        image: payload.picture,
+      }
+    }
+  } else {
+    const userAndSession = await adapter?.getSessionAndUser(sessionToken)
+    if (userAndSession) {
+      return userAndSession.user
+    }
+  }
+  return null
+}

package/src/lib/utils/web.ts ADDED Viewed

@@ -0,0 +1,151 @@
+import * as cookie from "../vendored/cookie.js"
+import { UnknownAction } from "../../errors.js"
+import { setLogger } from "./logger.js"
+import type {
+  AuthAction,
+  RequestInternal,
+  ResponseInternal,
+} from "../../types.js"
+import { isAuthAction } from "./actions.js"
+import type { AuthConfig } from "../../index.js"
+const { parse: parseCookie, serialize: serializeCookie } = cookie
+async function getBody(req: Request): Promise<Record<string, any> | undefined> {
+  if (!("body" in req) || !req.body || req.method !== "POST") return
+  const contentType = req.headers.get("content-type")
+  if (contentType?.includes("application/json")) {
+    return await req.json()
+  } else if (contentType?.includes("application/x-www-form-urlencoded")) {
+    const params = new URLSearchParams(await req.text())
+    return Object.fromEntries(params)
+  }
+}
+export async function toInternalRequest(
+  req: Request,
+  config: AuthConfig
+): Promise<RequestInternal | undefined> {
+  try {
+    if (req.method !== "GET" && req.method !== "POST")
+      throw new UnknownAction("Only GET and POST requests are supported")
+    // Defaults are usually set in the `init` function, but this is needed below
+    config.basePath ??= "/auth"
+    const url = new URL(req.url)
+    const { action, providerId } = parseActionAndProviderId(
+      url.pathname,
+      config.basePath
+    )
+    return {
+      url,
+      action,
+      providerId,
+      method: req.method,
+      headers: Object.fromEntries(req.headers),
+      body: req.body ? await getBody(req) : undefined,
+      cookies: parseCookie(req.headers.get("cookie") ?? "") ?? {},
+      error: url.searchParams.get("error") ?? undefined,
+      query: Object.fromEntries(url.searchParams),
+    }
+  } catch (e) {
+    const logger = setLogger(config)
+    logger.error(e as Error)
+    logger.debug("request", req)
+  }
+}
+export function toRequest(request: RequestInternal): Request {
+  return new Request(request.url, {
+    headers: request.headers,
+    method: request.method,
+    body:
+      request.method === "POST"
+        ? JSON.stringify(request.body ?? {})
+        : undefined,
+  })
+}
+export function toResponse(res: ResponseInternal): Response {
+  const headers = new Headers(res.headers)
+  res.cookies?.forEach((cookie) => {
+    const { name, value, options } = cookie
+    const cookieHeader = serializeCookie(name, value, options)
+    if (headers.has("Set-Cookie")) headers.append("Set-Cookie", cookieHeader)
+    else headers.set("Set-Cookie", cookieHeader)
+  })
+  let body = res.body
+  if (headers.get("content-type") === "application/json")
+    body = JSON.stringify(res.body)
+  else if (headers.get("content-type") === "application/x-www-form-urlencoded")
+    body = new URLSearchParams(res.body).toString()
+  const status = res.redirect ? 302 : (res.status ?? 200)
+  const response = new Response(body, { headers, status })
+  if (res.redirect) response.headers.set("Location", res.redirect)
+  return response
+}
+/** Web compatible method to create a hash, using SHA256 */
+export async function createHash(message: string) {
+  const data = new TextEncoder().encode(message)
+  const hash = await crypto.subtle.digest("SHA-256", data)
+  return Array.from(new Uint8Array(hash))
+    .map((b) => b.toString(16).padStart(2, "0"))
+    .join("")
+    .toString()
+}
+/** Web compatible method to create a random string of a given length */
+export function randomString(size: number) {
+  const i2hex = (i: number) => ("0" + i.toString(16)).slice(-2)
+  const r = (a: string, i: number): string => a + i2hex(i)
+  const bytes = crypto.getRandomValues(new Uint8Array(size))
+  return Array.from(bytes).reduce(r, "")
+}
+/** @internal Parse the action and provider id from a URL pathname. */
+export function parseActionAndProviderId(
+  pathname: string,
+  base: string
+): {
+  action: AuthAction
+  providerId?: string
+} {
+  const a = pathname.match(new RegExp(`^${base}(.+)`))
+  if (a === null) throw new UnknownAction(`Cannot parse action at ${pathname}`)
+  const actionAndProviderId = a.at(-1)!
+  const b = actionAndProviderId.replace(/^\//, "").split("/").filter(Boolean)
+  if (b.length !== 1 && b.length !== 2)
+    throw new UnknownAction(`Cannot parse action at ${pathname}`)
+  const [action, providerId] = b
+  if (!isAuthAction(action))
+    throw new UnknownAction(`Cannot parse action at ${pathname}`)
+  if (
+    providerId &&
+    !["signin", "callback", "webauthn-options"].includes(action)
+  )
+    throw new UnknownAction(`Cannot parse action at ${pathname}`)
+  return {
+    action,
+    providerId: providerId == "undefined" ? undefined : providerId,
+  }
+}