@notionx/core 0.1.0

package/dist/auth/auth-pages/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/auth/auth-pages/login.tsx","../../../src/auth/auth-pages/register.tsx","../../../src/auth/auth-pages/forgot-password.tsx","../../../src/auth/auth-pages/reset-password.tsx"],"sourcesContent":["// auth/auth-pages/login.tsx\n//\n// Login page. Renders the \"Sign in with Google\" button when OAuth is\n// configured plus the email/password form, with optional Turnstile\n// captcha. All UI primitives are passed in via the `ui` prop so the\n// package stays unopinionated about the design system.\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface LoginPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: {\n    error?: string;\n    loginError?: string;\n    registered?: string;\n    email?: string;\n    verifyError?: string;\n    resendSent?: string;\n    resendError?: string;\n    retry?: string;\n    accountDeleted?: string;\n  };\n  emailLoginAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { emailLogin: infer F }\n      ? F\n      : never\n    : never;\n  resendVerificationAction?: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { resendVerification: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  getCurrentUser?: AuthPageContext[\"getCurrentUser\"];\n  getGoogleOAuthConfig?: AuthPageContext[\"getGoogleOAuthConfig\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function LoginPage({\n  ui,\n  searchParams,\n  emailLoginAction,\n  resendVerificationAction,\n  isAuthenticated,\n  getCurrentUser,\n  getGoogleOAuthConfig,\n  redirectWhenAuthenticated = \"/admin\",\n}: LoginPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const {\n    loginError,\n    registered,\n    email,\n    verifyError,\n    resendSent,\n    resendError,\n    retry,\n    accountDeleted,\n  } = searchParams;\n  const user = getCurrentUser ? await getCurrentUser() : null;\n  const googleCfg = getGoogleOAuthConfig ? await getGoogleOAuthConfig() : null;\n  const googleEnabled = Boolean(googleCfg);\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Separator, Turnstile } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>后台登录</CardTitle>\n          <CardDescription>多种方式登录管理面板</CardDescription>\n        </CardHeader>\n        <CardContent>\n          {accountDeleted && (\n            <div className=\"rounded-md bg-muted px-3 py-2 text-sm text-muted-foreground\">\n              账户已注销。如需再次使用，请重新注册。\n            </div>\n          )}\n          {registered && (\n            <div className=\"rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400\">\n              验证邮件已发送到 {email ?? \"你的邮箱\"}，请先验证后再登录。\n            </div>\n          )}\n          {verifyError && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              验证链接无效或已过期，请重新发送验证邮件。\n            </div>\n          )}\n          {resendSent && (\n            <div className=\"rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400\">\n              如果 {email ?? \"该邮箱\"} 有待验证账户，验证邮件已重新发送。\n            </div>\n          )}\n          {resendError === \"verified\" && (\n            <div className=\"rounded-md bg-amber-500/10 px-3 py-2 text-sm text-amber-700 dark:text-amber-400\">\n              该邮箱已验证，请直接登录。\n            </div>\n          )}\n          {resendError === \"captcha\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              请完成人机验证后再重发邮件\n            </div>\n          )}\n          {resendError === \"rate\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              重发过于频繁，请 {retry ?? \"900\"} 秒后再试\n            </div>\n          )}\n\n          {googleEnabled ? (\n            <Button asChild variant=\"outline\" className=\"w-full\" size=\"lg\">\n              <a href=\"/api/auth/google\">使用 Google 登录</a>\n            </Button>\n          ) : (\n            <div className=\"rounded-md border border-dashed p-3 text-xs text-muted-foreground\">\n              Google 登录未启用（管理员可在 <a href=\"/admin/settings\" className=\"underline\">/admin/settings</a> 配置）\n            </div>\n          )}\n\n          <Separator />\n\n          <form action={emailLoginAction as unknown as (formData: FormData) => void}>\n            <Label htmlFor=\"email\">邮箱</Label>\n            <Input\n              id=\"email\"\n              name=\"email\"\n              type=\"email\"\n              placeholder=\"you@example.com\"\n              required\n            />\n            <Label htmlFor=\"email-password\">密码</Label>\n            <Input\n              id=\"email-password\"\n              name=\"password\"\n              type=\"password\"\n              placeholder=\"输入密码\"\n              required\n            />\n            {loginError === \"rate\" && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                登录尝试过多，请 {retry ?? \"900\"} 秒后再试\n              </div>\n            )}\n            {loginError === \"captcha\" && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                请完成人机验证后再试\n              </div>\n            )}\n            {loginError === \"invalid\" && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                邮箱或密码错误\n              </div>\n            )}\n            {loginError === \"unverified\" && (\n              <div className=\"rounded-md bg-amber-500/10 px-3 py-2 text-sm text-amber-700 dark:text-amber-400\">\n                邮箱还没有验证，请先打开验证邮件中的链接。\n              </div>\n            )}\n            {Turnstile && <Turnstile action=\"login\" />}\n            <Button type=\"submit\" className=\"w-full\">使用邮箱登录</Button>\n          </form>\n\n          {loginError === \"unverified\" && email && resendVerificationAction && (\n            <form action={resendVerificationAction as unknown as (formData: FormData) => void}>\n              <input type=\"hidden\" name=\"email\" value={email} />\n              {Turnstile && <Turnstile action=\"resend_verify\" />}\n              <Button type=\"submit\" variant=\"outline\" size=\"sm\" className=\"w-full\">\n                重新发送验证邮件\n              </Button>\n            </form>\n          )}\n\n          <Button asChild variant=\"secondary\" className=\"w-full\">\n            <a href=\"/register\">新用户注册</a>\n          </Button>\n\n          {user && (\n            <p className=\"text-center text-xs text-muted-foreground\">\n              当前已登录：{user.email}\n            </p>\n          )}\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n","// auth/auth-pages/register.tsx\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface RegisterPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: { error?: string };\n  registerAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { register: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function RegisterPage({\n  ui,\n  searchParams,\n  registerAction,\n  isAuthenticated,\n  redirectWhenAuthenticated = \"/admin\",\n}: RegisterPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const { error } = searchParams;\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Turnstile } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>邮箱注册</CardTitle>\n          <CardDescription>\n            注册后会发送验证邮件，验证完成即可进入后台。\n          </CardDescription>\n        </CardHeader>\n        <CardContent>\n          <form action={registerAction as unknown as (formData: FormData) => void}>\n            <Label htmlFor=\"email\">邮箱</Label>\n            <Input\n              id=\"email\"\n              name=\"email\"\n              type=\"email\"\n              placeholder=\"you@example.com\"\n              autoFocus\n              required\n            />\n            <Label htmlFor=\"password\">密码</Label>\n            <Input\n              id=\"password\"\n              name=\"password\"\n              type=\"password\"\n              placeholder=\"至少 8 位，包含字母和数字\"\n              required\n            />\n            <Label htmlFor=\"confirmPassword\">确认密码</Label>\n            <Input\n              id=\"confirmPassword\"\n              name=\"confirmPassword\"\n              type=\"password\"\n              placeholder=\"再次输入密码\"\n              required\n            />\n            {error && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                {error}\n              </div>\n            )}\n            {Turnstile && <Turnstile action=\"register\" />}\n            <Button type=\"submit\" className=\"w-full\">注册并发送验证邮件</Button>\n          </form>\n\n          <Button asChild variant=\"ghost\" className=\"w-full\">\n            <a href=\"/login\">返回登录</a>\n          </Button>\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n","// auth/auth-pages/forgot-password.tsx\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface ForgotPasswordPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: {\n    sent?: string;\n    email?: string;\n    error?: string;\n    retry?: string;\n  };\n  forgotPasswordAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { forgotPassword: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function ForgotPasswordPage({\n  ui,\n  searchParams,\n  forgotPasswordAction,\n  isAuthenticated,\n  redirectWhenAuthenticated = \"/admin\",\n}: ForgotPasswordPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const { sent, email, error, retry } = searchParams;\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Turnstile } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>忘记密码</CardTitle>\n          <CardDescription>\n            输入注册邮箱，我们会发送重置链接（1 小时内有效）。\n          </CardDescription>\n        </CardHeader>\n        <CardContent>\n          {sent && (\n            <div className=\"rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400\">\n              如果 {email ?? \"该邮箱\"} 已注册且已验证，你会收到重置密码邮件。\n            </div>\n          )}\n          {error === \"invalid\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              邮箱格式不正确\n            </div>\n          )}\n          {error === \"captcha\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              请完成人机验证后再试\n            </div>\n          )}\n          {error === \"rate\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              请求过于频繁，请 {retry ?? \"900\"} 秒后再试\n            </div>\n          )}\n\n          <form action={forgotPasswordAction as unknown as (formData: FormData) => void}>\n            <Label htmlFor=\"email\">邮箱</Label>\n            <Input\n              id=\"email\"\n              name=\"email\"\n              type=\"email\"\n              placeholder=\"you@example.com\"\n              defaultValue={email ?? \"\"}\n              required\n            />\n            {Turnstile && <Turnstile action=\"forgot_password\" />}\n            <Button type=\"submit\" className=\"w-full\">发送重置链接</Button>\n          </form>\n\n          <Button asChild variant=\"ghost\" className=\"w-full\">\n            <a href=\"/login\">返回登录</a>\n          </Button>\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n","// auth/auth-pages/reset-password.tsx\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface ResetPasswordPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: {\n    token?: string;\n    error?: string;\n  };\n  resetPasswordAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { resetPassword: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function ResetPasswordPage({\n  ui,\n  searchParams,\n  resetPasswordAction,\n  isAuthenticated,\n  redirectWhenAuthenticated = \"/admin\",\n}: ResetPasswordPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const { token, error } = searchParams;\n  if (!token) {\n    redirect(\"/forgot-password?error=missing\");\n  }\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>设置新密码</CardTitle>\n          <CardDescription>请输入新密码，提交后将自动登录。</CardDescription>\n        </CardHeader>\n        <CardContent>\n          {error && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              {error}\n            </div>\n          )}\n\n          <form action={resetPasswordAction as unknown as (formData: FormData) => void}>\n            <input type=\"hidden\" name=\"token\" value={token} />\n            <Label htmlFor=\"password\">新密码</Label>\n            <Input\n              id=\"password\"\n              name=\"password\"\n              type=\"password\"\n              placeholder=\"至少 8 位，包含字母和数字\"\n              required\n            />\n            <Label htmlFor=\"confirmPassword\">确认新密码</Label>\n            <Input\n              id=\"confirmPassword\"\n              name=\"confirmPassword\"\n              type=\"password\"\n              placeholder=\"再次输入新密码\"\n              required\n            />\n            <Button type=\"submit\" className=\"w-full\">更新密码并登录</Button>\n          </form>\n\n          <Button asChild variant=\"ghost\" className=\"w-full\">\n            <a href=\"/login\">返回登录</a>\n          </Button>\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n"],"mappings":";AAOA,SAAS,gBAAgB;AAwEjB,SACE,KADF;AAxCR,eAAO,UAAiC;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAAmB;AACjB,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,aAAS,yBAAyB;AAAA,EACpC;AACA,QAAM;AAAA,IACJ;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,IAAI;AACJ,QAAM,OAAO,iBAAiB,MAAM,eAAe,IAAI;AACvD,QAAM,YAAY,uBAAuB,MAAM,qBAAqB,IAAI;AACxE,QAAM,gBAAgB,QAAQ,SAAS;AACvC,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,aAAa,WAAW,UAAU,IAAI;AAElH,SACE;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,+BAAC,QAAK,WAAU,mBACd;AAAA,6BAAC,cACC;AAAA,8BAAC,aAAU,sCAAI;AAAA,UACf,oBAAC,mBAAgB,0EAAU;AAAA,WAC7B;AAAA,QACA,qBAAC,eACE;AAAA,4BACC,oBAAC,SAAI,WAAU,+DAA8D,gIAE7E;AAAA,UAED,cACC,qBAAC,SAAI,WAAU,yFAAwF;AAAA;AAAA,YAC3F,SAAS;AAAA,YAAO;AAAA,aAC5B;AAAA,UAED,eACC,oBAAC,SAAI,WAAU,mEAAkE,4IAEjF;AAAA,UAED,cACC,qBAAC,SAAI,WAAU,yFAAwF;AAAA;AAAA,YACjG,SAAS;AAAA,YAAM;AAAA,aACrB;AAAA,UAED,gBAAgB,cACf,oBAAC,SAAI,WAAU,mFAAkF,4FAEjG;AAAA,UAED,gBAAgB,aACf,oBAAC,SAAI,WAAU,mEAAkE,4FAEjF;AAAA,UAED,gBAAgB,UACf,qBAAC,SAAI,WAAU,mEAAkE;AAAA;AAAA,YACrE,SAAS;AAAA,YAAM;AAAA,aAC3B;AAAA,UAGD,gBACC,oBAAC,UAAO,SAAO,MAAC,SAAQ,WAAU,WAAU,UAAS,MAAK,MACxD,8BAAC,OAAE,MAAK,oBAAmB,8CAAY,GACzC,IAEA,qBAAC,SAAI,WAAU,qEAAoE;AAAA;AAAA,YAC9D,oBAAC,OAAE,MAAK,mBAAkB,WAAU,aAAY,6BAAe;AAAA,YAAI;AAAA,aACxF;AAAA,UAGF,oBAAC,aAAU;AAAA,UAEX,qBAAC,UAAK,QAAQ,kBACZ;AAAA,gCAAC,SAAM,SAAQ,SAAQ,0BAAE;AAAA,YACzB;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,oBAAC,SAAM,SAAQ,kBAAiB,0BAAE;AAAA,YAClC;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACC,eAAe,UACd,qBAAC,SAAI,WAAU,mEAAkE;AAAA;AAAA,cACrE,SAAS;AAAA,cAAM;AAAA,eAC3B;AAAA,YAED,eAAe,aACd,oBAAC,SAAI,WAAU,mEAAkE,0EAEjF;AAAA,YAED,eAAe,aACd,oBAAC,SAAI,WAAU,mEAAkE,wDAEjF;AAAA,YAED,eAAe,gBACd,oBAAC,SAAI,WAAU,mFAAkF,4IAEjG;AAAA,YAED,aAAa,oBAAC,aAAU,QAAO,SAAQ;AAAA,YACxC,oBAAC,UAAO,MAAK,UAAS,WAAU,UAAS,kDAAM;AAAA,aACjD;AAAA,UAEC,eAAe,gBAAgB,SAAS,4BACvC,qBAAC,UAAK,QAAQ,0BACZ;AAAA,gCAAC,WAAM,MAAK,UAAS,MAAK,SAAQ,OAAO,OAAO;AAAA,YAC/C,aAAa,oBAAC,aAAU,QAAO,iBAAgB;AAAA,YAChD,oBAAC,UAAO,MAAK,UAAS,SAAQ,WAAU,MAAK,MAAK,WAAU,UAAS,8DAErE;AAAA,aACF;AAAA,UAGF,oBAAC,UAAO,SAAO,MAAC,SAAQ,aAAY,WAAU,UAC5C,8BAAC,OAAE,MAAK,aAAY,4CAAK,GAC3B;AAAA,UAEC,QACC,qBAAC,OAAE,WAAU,6CAA4C;AAAA;AAAA,YAChD,KAAK;AAAA,aACd;AAAA,WAEJ;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;;;AClMA,SAAS,YAAAA,iBAAgB;AAwCjB,SACE,OAAAC,MADF,QAAAC,aAAA;AAzBR,eAAO,aAAoC;AAAA,EACzC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAAsB;AACpB,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,IAAAF,UAAS,yBAAyB;AAAA,EACpC;AACA,QAAM,EAAE,MAAM,IAAI;AAClB,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,aAAa,UAAU,IAAI;AAEvG,SACE,gBAAAC;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,0BAAAC,MAAC,QAAK,WAAU,mBACd;AAAA,wBAAAA,MAAC,cACC;AAAA,0BAAAD,KAAC,aAAU,sCAAI;AAAA,UACf,gBAAAA,KAAC,mBAAgB,kJAEjB;AAAA,WACF;AAAA,QACA,gBAAAC,MAAC,eACC;AAAA,0BAAAA,MAAC,UAAK,QAAQ,gBACZ;AAAA,4BAAAD,KAAC,SAAM,SAAQ,SAAQ,0BAAE;AAAA,YACzB,gBAAAA;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,WAAS;AAAA,gBACT,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,gBAAAA,KAAC,SAAM,SAAQ,YAAW,0BAAE;AAAA,YAC5B,gBAAAA;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,gBAAAA,KAAC,SAAM,SAAQ,mBAAkB,sCAAI;AAAA,YACrC,gBAAAA;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACC,SACC,gBAAAA,KAAC,SAAI,WAAU,mEACZ,iBACH;AAAA,YAED,aAAa,gBAAAA,KAAC,aAAU,QAAO,YAAW;AAAA,YAC3C,gBAAAA,KAAC,UAAO,MAAK,UAAS,WAAU,UAAS,oEAAS;AAAA,aACpD;AAAA,UAEA,gBAAAA,KAAC,UAAO,SAAO,MAAC,SAAQ,SAAQ,WAAU,UACxC,0BAAAA,KAAC,OAAE,MAAK,UAAS,sCAAI,GACvB;AAAA,WACF;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;;;ACzFA,SAAS,YAAAE,iBAAgB;AA6CjB,SACE,OAAAC,MADF,QAAAC,aAAA;AAzBR,eAAO,mBAA0C;AAAA,EAC/C;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAA4B;AAC1B,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,IAAAF,UAAS,yBAAyB;AAAA,EACpC;AACA,QAAM,EAAE,MAAM,OAAO,OAAO,MAAM,IAAI;AACtC,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,aAAa,UAAU,IAAI;AAEvG,SACE,gBAAAC;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,0BAAAC,MAAC,QAAK,WAAU,mBACd;AAAA,wBAAAA,MAAC,cACC;AAAA,0BAAAD,KAAC,aAAU,sCAAI;AAAA,UACf,gBAAAA,KAAC,mBAAgB,gKAEjB;AAAA,WACF;AAAA,QACA,gBAAAC,MAAC,eACE;AAAA,kBACC,gBAAAA,MAAC,SAAI,WAAU,yFAAwF;AAAA;AAAA,YACjG,SAAS;AAAA,YAAM;AAAA,aACrB;AAAA,UAED,UAAU,aACT,gBAAAD,KAAC,SAAI,WAAU,mEAAkE,wDAEjF;AAAA,UAED,UAAU,aACT,gBAAAA,KAAC,SAAI,WAAU,mEAAkE,0EAEjF;AAAA,UAED,UAAU,UACT,gBAAAC,MAAC,SAAI,WAAU,mEAAkE;AAAA;AAAA,YACrE,SAAS;AAAA,YAAM;AAAA,aAC3B;AAAA,UAGF,gBAAAA,MAAC,UAAK,QAAQ,sBACZ;AAAA,4BAAAD,KAAC,SAAM,SAAQ,SAAQ,0BAAE;AAAA,YACzB,gBAAAA;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,cAAc,SAAS;AAAA,gBACvB,UAAQ;AAAA;AAAA,YACV;AAAA,YACC,aAAa,gBAAAA,KAAC,aAAU,QAAO,mBAAkB;AAAA,YAClD,gBAAAA,KAAC,UAAO,MAAK,UAAS,WAAU,UAAS,kDAAM;AAAA,aACjD;AAAA,UAEA,gBAAAA,KAAC,UAAO,SAAO,MAAC,SAAQ,SAAQ,WAAU,UACxC,0BAAAA,KAAC,OAAE,MAAK,UAAS,sCAAI,GACvB;AAAA,WACF;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;;;AC9FA,SAAS,YAAAE,iBAAgB;AA8CjB,SACE,OAAAC,MADF,QAAAC,aAAA;AA5BR,eAAO,kBAAyC;AAAA,EAC9C;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAA2B;AACzB,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,IAAAF,UAAS,yBAAyB;AAAA,EACpC;AACA,QAAM,EAAE,OAAO,MAAM,IAAI;AACzB,MAAI,CAAC,OAAO;AACV,IAAAA,UAAS,gCAAgC;AAAA,EAC3C;AACA,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,YAAY,IAAI;AAE5F,SACE,gBAAAC;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,0BAAAC,MAAC,QAAK,WAAU,mBACd;AAAA,wBAAAA,MAAC,cACC;AAAA,0BAAAD,KAAC,aAAU,4CAAK;AAAA,UAChB,gBAAAA,KAAC,mBAAgB,8GAAgB;AAAA,WACnC;AAAA,QACA,gBAAAC,MAAC,eACE;AAAA,mBACC,gBAAAD,KAAC,SAAI,WAAU,mEACZ,iBACH;AAAA,UAGF,gBAAAC,MAAC,UAAK,QAAQ,qBACZ;AAAA,4BAAAD,KAAC,WAAM,MAAK,UAAS,MAAK,SAAQ,OAAO,OAAO;AAAA,YAChD,gBAAAA,KAAC,SAAM,SAAQ,YAAW,gCAAG;AAAA,YAC7B,gBAAAA;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,gBAAAA,KAAC,SAAM,SAAQ,mBAAkB,4CAAK;AAAA,YACtC,gBAAAA;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,gBAAAA,KAAC,UAAO,MAAK,UAAS,WAAU,UAAS,wDAAO;AAAA,aAClD;AAAA,UAEA,gBAAAA,KAAC,UAAO,SAAO,MAAC,SAAQ,SAAQ,WAAU,UACxC,0BAAAA,KAAC,OAAE,MAAK,UAAS,sCAAI,GACvB;AAAA,WACF;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;","names":["redirect","jsx","jsxs","redirect","jsx","jsxs","redirect","jsx","jsxs"]}

package/dist/auth/auth-pages/login.d.ts

@@ -0,0 +1,30 @@
+import * as react from 'react';
+import { A as AuthPageContext } from '../../types-BsAcZSNX.js';
+
+interface LoginPageProps {
+    ui: AuthPageContext["ui"];
+    searchParams: {
+        error?: string;
+        loginError?: string;
+        registered?: string;
+        email?: string;
+        verifyError?: string;
+        resendSent?: string;
+        resendError?: string;
+        retry?: string;
+        accountDeleted?: string;
+    };
+    emailLoginAction: AuthPageContext["actions"] extends infer A ? A extends {
+        emailLogin: infer F;
+    } ? F : never : never;
+    resendVerificationAction?: AuthPageContext["actions"] extends infer A ? A extends {
+        resendVerification: infer F;
+    } ? F : never : never;
+    isAuthenticated?: AuthPageContext["isAuthenticated"];
+    getCurrentUser?: AuthPageContext["getCurrentUser"];
+    getGoogleOAuthConfig?: AuthPageContext["getGoogleOAuthConfig"];
+    redirectWhenAuthenticated?: string;
+}
+declare function LoginPage({ ui, searchParams, emailLoginAction, resendVerificationAction, isAuthenticated, getCurrentUser, getGoogleOAuthConfig, redirectWhenAuthenticated, }: LoginPageProps): Promise<react.JSX.Element>;
+
+export { type LoginPageProps, LoginPage as default };

package/dist/auth/auth-pages/login.js

@@ -0,0 +1,125 @@
+// src/auth/auth-pages/login.tsx
+import { redirect } from "next/navigation";
+import { jsx, jsxs } from "react/jsx-runtime";
+async function LoginPage({
+  ui,
+  searchParams,
+  emailLoginAction,
+  resendVerificationAction,
+  isAuthenticated,
+  getCurrentUser,
+  getGoogleOAuthConfig,
+  redirectWhenAuthenticated = "/admin"
+}) {
+  if (isAuthenticated && await isAuthenticated()) {
+    redirect(redirectWhenAuthenticated);
+  }
+  const {
+    loginError,
+    registered,
+    email,
+    verifyError,
+    resendSent,
+    resendError,
+    retry,
+    accountDeleted
+  } = searchParams;
+  const user = getCurrentUser ? await getCurrentUser() : null;
+  const googleCfg = getGoogleOAuthConfig ? await getGoogleOAuthConfig() : null;
+  const googleEnabled = Boolean(googleCfg);
+  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Separator, Turnstile } = ui;
+  return /* @__PURE__ */ jsx(
+    "main",
+    {
+      style: {
+        minHeight: "100vh",
+        display: "flex",
+        alignItems: "center",
+        justifyContent: "center",
+        padding: "1rem",
+        background: "linear-gradient(to bottom right, var(--background), var(--muted))"
+      },
+      children: /* @__PURE__ */ jsxs(Card, { className: "w-full max-w-sm", children: [
+        /* @__PURE__ */ jsxs(CardHeader, { children: [
+          /* @__PURE__ */ jsx(CardTitle, { children: "\u540E\u53F0\u767B\u5F55" }),
+          /* @__PURE__ */ jsx(CardDescription, { children: "\u591A\u79CD\u65B9\u5F0F\u767B\u5F55\u7BA1\u7406\u9762\u677F" })
+        ] }),
+        /* @__PURE__ */ jsxs(CardContent, { children: [
+          accountDeleted && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-muted px-3 py-2 text-sm text-muted-foreground", children: "\u8D26\u6237\u5DF2\u6CE8\u9500\u3002\u5982\u9700\u518D\u6B21\u4F7F\u7528\uFF0C\u8BF7\u91CD\u65B0\u6CE8\u518C\u3002" }),
+          registered && /* @__PURE__ */ jsxs("div", { className: "rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400", children: [
+            "\u9A8C\u8BC1\u90AE\u4EF6\u5DF2\u53D1\u9001\u5230 ",
+            email ?? "\u4F60\u7684\u90AE\u7BB1",
+            "\uFF0C\u8BF7\u5148\u9A8C\u8BC1\u540E\u518D\u767B\u5F55\u3002"
+          ] }),
+          verifyError && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: "\u9A8C\u8BC1\u94FE\u63A5\u65E0\u6548\u6216\u5DF2\u8FC7\u671F\uFF0C\u8BF7\u91CD\u65B0\u53D1\u9001\u9A8C\u8BC1\u90AE\u4EF6\u3002" }),
+          resendSent && /* @__PURE__ */ jsxs("div", { className: "rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400", children: [
+            "\u5982\u679C ",
+            email ?? "\u8BE5\u90AE\u7BB1",
+            " \u6709\u5F85\u9A8C\u8BC1\u8D26\u6237\uFF0C\u9A8C\u8BC1\u90AE\u4EF6\u5DF2\u91CD\u65B0\u53D1\u9001\u3002"
+          ] }),
+          resendError === "verified" && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-amber-500/10 px-3 py-2 text-sm text-amber-700 dark:text-amber-400", children: "\u8BE5\u90AE\u7BB1\u5DF2\u9A8C\u8BC1\uFF0C\u8BF7\u76F4\u63A5\u767B\u5F55\u3002" }),
+          resendError === "captcha" && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: "\u8BF7\u5B8C\u6210\u4EBA\u673A\u9A8C\u8BC1\u540E\u518D\u91CD\u53D1\u90AE\u4EF6" }),
+          resendError === "rate" && /* @__PURE__ */ jsxs("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: [
+            "\u91CD\u53D1\u8FC7\u4E8E\u9891\u7E41\uFF0C\u8BF7 ",
+            retry ?? "900",
+            " \u79D2\u540E\u518D\u8BD5"
+          ] }),
+          googleEnabled ? /* @__PURE__ */ jsx(Button, { asChild: true, variant: "outline", className: "w-full", size: "lg", children: /* @__PURE__ */ jsx("a", { href: "/api/auth/google", children: "\u4F7F\u7528 Google \u767B\u5F55" }) }) : /* @__PURE__ */ jsxs("div", { className: "rounded-md border border-dashed p-3 text-xs text-muted-foreground", children: [
+            "Google \u767B\u5F55\u672A\u542F\u7528\uFF08\u7BA1\u7406\u5458\u53EF\u5728 ",
+            /* @__PURE__ */ jsx("a", { href: "/admin/settings", className: "underline", children: "/admin/settings" }),
+            " \u914D\u7F6E\uFF09"
+          ] }),
+          /* @__PURE__ */ jsx(Separator, {}),
+          /* @__PURE__ */ jsxs("form", { action: emailLoginAction, children: [
+            /* @__PURE__ */ jsx(Label, { htmlFor: "email", children: "\u90AE\u7BB1" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "email",
+                name: "email",
+                type: "email",
+                placeholder: "you@example.com",
+                required: true
+              }
+            ),
+            /* @__PURE__ */ jsx(Label, { htmlFor: "email-password", children: "\u5BC6\u7801" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "email-password",
+                name: "password",
+                type: "password",
+                placeholder: "\u8F93\u5165\u5BC6\u7801",
+                required: true
+              }
+            ),
+            loginError === "rate" && /* @__PURE__ */ jsxs("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: [
+              "\u767B\u5F55\u5C1D\u8BD5\u8FC7\u591A\uFF0C\u8BF7 ",
+              retry ?? "900",
+              " \u79D2\u540E\u518D\u8BD5"
+            ] }),
+            loginError === "captcha" && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: "\u8BF7\u5B8C\u6210\u4EBA\u673A\u9A8C\u8BC1\u540E\u518D\u8BD5" }),
+            loginError === "invalid" && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: "\u90AE\u7BB1\u6216\u5BC6\u7801\u9519\u8BEF" }),
+            loginError === "unverified" && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-amber-500/10 px-3 py-2 text-sm text-amber-700 dark:text-amber-400", children: "\u90AE\u7BB1\u8FD8\u6CA1\u6709\u9A8C\u8BC1\uFF0C\u8BF7\u5148\u6253\u5F00\u9A8C\u8BC1\u90AE\u4EF6\u4E2D\u7684\u94FE\u63A5\u3002" }),
+            Turnstile && /* @__PURE__ */ jsx(Turnstile, { action: "login" }),
+            /* @__PURE__ */ jsx(Button, { type: "submit", className: "w-full", children: "\u4F7F\u7528\u90AE\u7BB1\u767B\u5F55" })
+          ] }),
+          loginError === "unverified" && email && resendVerificationAction && /* @__PURE__ */ jsxs("form", { action: resendVerificationAction, children: [
+            /* @__PURE__ */ jsx("input", { type: "hidden", name: "email", value: email }),
+            Turnstile && /* @__PURE__ */ jsx(Turnstile, { action: "resend_verify" }),
+            /* @__PURE__ */ jsx(Button, { type: "submit", variant: "outline", size: "sm", className: "w-full", children: "\u91CD\u65B0\u53D1\u9001\u9A8C\u8BC1\u90AE\u4EF6" })
+          ] }),
+          /* @__PURE__ */ jsx(Button, { asChild: true, variant: "secondary", className: "w-full", children: /* @__PURE__ */ jsx("a", { href: "/register", children: "\u65B0\u7528\u6237\u6CE8\u518C" }) }),
+          user && /* @__PURE__ */ jsxs("p", { className: "text-center text-xs text-muted-foreground", children: [
+            "\u5F53\u524D\u5DF2\u767B\u5F55\uFF1A",
+            user.email
+          ] })
+        ] })
+      ] })
+    }
+  );
+}
+export {
+  LoginPage as default
+};
+//# sourceMappingURL=login.js.map

package/dist/auth/auth-pages/login.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/auth/auth-pages/login.tsx"],"sourcesContent":["// auth/auth-pages/login.tsx\n//\n// Login page. Renders the \"Sign in with Google\" button when OAuth is\n// configured plus the email/password form, with optional Turnstile\n// captcha. All UI primitives are passed in via the `ui` prop so the\n// package stays unopinionated about the design system.\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface LoginPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: {\n    error?: string;\n    loginError?: string;\n    registered?: string;\n    email?: string;\n    verifyError?: string;\n    resendSent?: string;\n    resendError?: string;\n    retry?: string;\n    accountDeleted?: string;\n  };\n  emailLoginAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { emailLogin: infer F }\n      ? F\n      : never\n    : never;\n  resendVerificationAction?: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { resendVerification: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  getCurrentUser?: AuthPageContext[\"getCurrentUser\"];\n  getGoogleOAuthConfig?: AuthPageContext[\"getGoogleOAuthConfig\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function LoginPage({\n  ui,\n  searchParams,\n  emailLoginAction,\n  resendVerificationAction,\n  isAuthenticated,\n  getCurrentUser,\n  getGoogleOAuthConfig,\n  redirectWhenAuthenticated = \"/admin\",\n}: LoginPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const {\n    loginError,\n    registered,\n    email,\n    verifyError,\n    resendSent,\n    resendError,\n    retry,\n    accountDeleted,\n  } = searchParams;\n  const user = getCurrentUser ? await getCurrentUser() : null;\n  const googleCfg = getGoogleOAuthConfig ? await getGoogleOAuthConfig() : null;\n  const googleEnabled = Boolean(googleCfg);\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Separator, Turnstile } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>后台登录</CardTitle>\n          <CardDescription>多种方式登录管理面板</CardDescription>\n        </CardHeader>\n        <CardContent>\n          {accountDeleted && (\n            <div className=\"rounded-md bg-muted px-3 py-2 text-sm text-muted-foreground\">\n              账户已注销。如需再次使用，请重新注册。\n            </div>\n          )}\n          {registered && (\n            <div className=\"rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400\">\n              验证邮件已发送到 {email ?? \"你的邮箱\"}，请先验证后再登录。\n            </div>\n          )}\n          {verifyError && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              验证链接无效或已过期，请重新发送验证邮件。\n            </div>\n          )}\n          {resendSent && (\n            <div className=\"rounded-md bg-emerald-500/10 px-3 py-2 text-sm text-emerald-700 dark:text-emerald-400\">\n              如果 {email ?? \"该邮箱\"} 有待验证账户，验证邮件已重新发送。\n            </div>\n          )}\n          {resendError === \"verified\" && (\n            <div className=\"rounded-md bg-amber-500/10 px-3 py-2 text-sm text-amber-700 dark:text-amber-400\">\n              该邮箱已验证，请直接登录。\n            </div>\n          )}\n          {resendError === \"captcha\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              请完成人机验证后再重发邮件\n            </div>\n          )}\n          {resendError === \"rate\" && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              重发过于频繁，请 {retry ?? \"900\"} 秒后再试\n            </div>\n          )}\n\n          {googleEnabled ? (\n            <Button asChild variant=\"outline\" className=\"w-full\" size=\"lg\">\n              <a href=\"/api/auth/google\">使用 Google 登录</a>\n            </Button>\n          ) : (\n            <div className=\"rounded-md border border-dashed p-3 text-xs text-muted-foreground\">\n              Google 登录未启用（管理员可在 <a href=\"/admin/settings\" className=\"underline\">/admin/settings</a> 配置）\n            </div>\n          )}\n\n          <Separator />\n\n          <form action={emailLoginAction as unknown as (formData: FormData) => void}>\n            <Label htmlFor=\"email\">邮箱</Label>\n            <Input\n              id=\"email\"\n              name=\"email\"\n              type=\"email\"\n              placeholder=\"you@example.com\"\n              required\n            />\n            <Label htmlFor=\"email-password\">密码</Label>\n            <Input\n              id=\"email-password\"\n              name=\"password\"\n              type=\"password\"\n              placeholder=\"输入密码\"\n              required\n            />\n            {loginError === \"rate\" && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                登录尝试过多，请 {retry ?? \"900\"} 秒后再试\n              </div>\n            )}\n            {loginError === \"captcha\" && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                请完成人机验证后再试\n              </div>\n            )}\n            {loginError === \"invalid\" && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                邮箱或密码错误\n              </div>\n            )}\n            {loginError === \"unverified\" && (\n              <div className=\"rounded-md bg-amber-500/10 px-3 py-2 text-sm text-amber-700 dark:text-amber-400\">\n                邮箱还没有验证，请先打开验证邮件中的链接。\n              </div>\n            )}\n            {Turnstile && <Turnstile action=\"login\" />}\n            <Button type=\"submit\" className=\"w-full\">使用邮箱登录</Button>\n          </form>\n\n          {loginError === \"unverified\" && email && resendVerificationAction && (\n            <form action={resendVerificationAction as unknown as (formData: FormData) => void}>\n              <input type=\"hidden\" name=\"email\" value={email} />\n              {Turnstile && <Turnstile action=\"resend_verify\" />}\n              <Button type=\"submit\" variant=\"outline\" size=\"sm\" className=\"w-full\">\n                重新发送验证邮件\n              </Button>\n            </form>\n          )}\n\n          <Button asChild variant=\"secondary\" className=\"w-full\">\n            <a href=\"/register\">新用户注册</a>\n          </Button>\n\n          {user && (\n            <p className=\"text-center text-xs text-muted-foreground\">\n              当前已登录：{user.email}\n            </p>\n          )}\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n"],"mappings":";AAOA,SAAS,gBAAgB;AAwEjB,SACE,KADF;AAxCR,eAAO,UAAiC;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAAmB;AACjB,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,aAAS,yBAAyB;AAAA,EACpC;AACA,QAAM;AAAA,IACJ;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,IAAI;AACJ,QAAM,OAAO,iBAAiB,MAAM,eAAe,IAAI;AACvD,QAAM,YAAY,uBAAuB,MAAM,qBAAqB,IAAI;AACxE,QAAM,gBAAgB,QAAQ,SAAS;AACvC,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,aAAa,WAAW,UAAU,IAAI;AAElH,SACE;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,+BAAC,QAAK,WAAU,mBACd;AAAA,6BAAC,cACC;AAAA,8BAAC,aAAU,sCAAI;AAAA,UACf,oBAAC,mBAAgB,0EAAU;AAAA,WAC7B;AAAA,QACA,qBAAC,eACE;AAAA,4BACC,oBAAC,SAAI,WAAU,+DAA8D,gIAE7E;AAAA,UAED,cACC,qBAAC,SAAI,WAAU,yFAAwF;AAAA;AAAA,YAC3F,SAAS;AAAA,YAAO;AAAA,aAC5B;AAAA,UAED,eACC,oBAAC,SAAI,WAAU,mEAAkE,4IAEjF;AAAA,UAED,cACC,qBAAC,SAAI,WAAU,yFAAwF;AAAA;AAAA,YACjG,SAAS;AAAA,YAAM;AAAA,aACrB;AAAA,UAED,gBAAgB,cACf,oBAAC,SAAI,WAAU,mFAAkF,4FAEjG;AAAA,UAED,gBAAgB,aACf,oBAAC,SAAI,WAAU,mEAAkE,4FAEjF;AAAA,UAED,gBAAgB,UACf,qBAAC,SAAI,WAAU,mEAAkE;AAAA;AAAA,YACrE,SAAS;AAAA,YAAM;AAAA,aAC3B;AAAA,UAGD,gBACC,oBAAC,UAAO,SAAO,MAAC,SAAQ,WAAU,WAAU,UAAS,MAAK,MACxD,8BAAC,OAAE,MAAK,oBAAmB,8CAAY,GACzC,IAEA,qBAAC,SAAI,WAAU,qEAAoE;AAAA;AAAA,YAC9D,oBAAC,OAAE,MAAK,mBAAkB,WAAU,aAAY,6BAAe;AAAA,YAAI;AAAA,aACxF;AAAA,UAGF,oBAAC,aAAU;AAAA,UAEX,qBAAC,UAAK,QAAQ,kBACZ;AAAA,gCAAC,SAAM,SAAQ,SAAQ,0BAAE;AAAA,YACzB;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,oBAAC,SAAM,SAAQ,kBAAiB,0BAAE;AAAA,YAClC;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACC,eAAe,UACd,qBAAC,SAAI,WAAU,mEAAkE;AAAA;AAAA,cACrE,SAAS;AAAA,cAAM;AAAA,eAC3B;AAAA,YAED,eAAe,aACd,oBAAC,SAAI,WAAU,mEAAkE,0EAEjF;AAAA,YAED,eAAe,aACd,oBAAC,SAAI,WAAU,mEAAkE,wDAEjF;AAAA,YAED,eAAe,gBACd,oBAAC,SAAI,WAAU,mFAAkF,4IAEjG;AAAA,YAED,aAAa,oBAAC,aAAU,QAAO,SAAQ;AAAA,YACxC,oBAAC,UAAO,MAAK,UAAS,WAAU,UAAS,kDAAM;AAAA,aACjD;AAAA,UAEC,eAAe,gBAAgB,SAAS,4BACvC,qBAAC,UAAK,QAAQ,0BACZ;AAAA,gCAAC,WAAM,MAAK,UAAS,MAAK,SAAQ,OAAO,OAAO;AAAA,YAC/C,aAAa,oBAAC,aAAU,QAAO,iBAAgB;AAAA,YAChD,oBAAC,UAAO,MAAK,UAAS,SAAQ,WAAU,MAAK,MAAK,WAAU,UAAS,8DAErE;AAAA,aACF;AAAA,UAGF,oBAAC,UAAO,SAAO,MAAC,SAAQ,aAAY,WAAU,UAC5C,8BAAC,OAAE,MAAK,aAAY,4CAAK,GAC3B;AAAA,UAEC,QACC,qBAAC,OAAE,WAAU,6CAA4C;AAAA;AAAA,YAChD,KAAK;AAAA,aACd;AAAA,WAEJ;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;","names":[]}

package/dist/auth/auth-pages/register.d.ts

@@ -0,0 +1,17 @@
+import * as react from 'react';
+import { A as AuthPageContext } from '../../types-BsAcZSNX.js';
+
+interface RegisterPageProps {
+    ui: AuthPageContext["ui"];
+    searchParams: {
+        error?: string;
+    };
+    registerAction: AuthPageContext["actions"] extends infer A ? A extends {
+        register: infer F;
+    } ? F : never : never;
+    isAuthenticated?: AuthPageContext["isAuthenticated"];
+    redirectWhenAuthenticated?: string;
+}
+declare function RegisterPage({ ui, searchParams, registerAction, isAuthenticated, redirectWhenAuthenticated, }: RegisterPageProps): Promise<react.JSX.Element>;
+
+export { type RegisterPageProps, RegisterPage as default };

package/dist/auth/auth-pages/register.js

@@ -0,0 +1,81 @@
+// src/auth/auth-pages/register.tsx
+import { redirect } from "next/navigation";
+import { jsx, jsxs } from "react/jsx-runtime";
+async function RegisterPage({
+  ui,
+  searchParams,
+  registerAction,
+  isAuthenticated,
+  redirectWhenAuthenticated = "/admin"
+}) {
+  if (isAuthenticated && await isAuthenticated()) {
+    redirect(redirectWhenAuthenticated);
+  }
+  const { error } = searchParams;
+  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Turnstile } = ui;
+  return /* @__PURE__ */ jsx(
+    "main",
+    {
+      style: {
+        minHeight: "100vh",
+        display: "flex",
+        alignItems: "center",
+        justifyContent: "center",
+        padding: "1rem",
+        background: "linear-gradient(to bottom right, var(--background), var(--muted))"
+      },
+      children: /* @__PURE__ */ jsxs(Card, { className: "w-full max-w-sm", children: [
+        /* @__PURE__ */ jsxs(CardHeader, { children: [
+          /* @__PURE__ */ jsx(CardTitle, { children: "\u90AE\u7BB1\u6CE8\u518C" }),
+          /* @__PURE__ */ jsx(CardDescription, { children: "\u6CE8\u518C\u540E\u4F1A\u53D1\u9001\u9A8C\u8BC1\u90AE\u4EF6\uFF0C\u9A8C\u8BC1\u5B8C\u6210\u5373\u53EF\u8FDB\u5165\u540E\u53F0\u3002" })
+        ] }),
+        /* @__PURE__ */ jsxs(CardContent, { children: [
+          /* @__PURE__ */ jsxs("form", { action: registerAction, children: [
+            /* @__PURE__ */ jsx(Label, { htmlFor: "email", children: "\u90AE\u7BB1" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "email",
+                name: "email",
+                type: "email",
+                placeholder: "you@example.com",
+                autoFocus: true,
+                required: true
+              }
+            ),
+            /* @__PURE__ */ jsx(Label, { htmlFor: "password", children: "\u5BC6\u7801" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "password",
+                name: "password",
+                type: "password",
+                placeholder: "\u81F3\u5C11 8 \u4F4D\uFF0C\u5305\u542B\u5B57\u6BCD\u548C\u6570\u5B57",
+                required: true
+              }
+            ),
+            /* @__PURE__ */ jsx(Label, { htmlFor: "confirmPassword", children: "\u786E\u8BA4\u5BC6\u7801" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "confirmPassword",
+                name: "confirmPassword",
+                type: "password",
+                placeholder: "\u518D\u6B21\u8F93\u5165\u5BC6\u7801",
+                required: true
+              }
+            ),
+            error && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: error }),
+            Turnstile && /* @__PURE__ */ jsx(Turnstile, { action: "register" }),
+            /* @__PURE__ */ jsx(Button, { type: "submit", className: "w-full", children: "\u6CE8\u518C\u5E76\u53D1\u9001\u9A8C\u8BC1\u90AE\u4EF6" })
+          ] }),
+          /* @__PURE__ */ jsx(Button, { asChild: true, variant: "ghost", className: "w-full", children: /* @__PURE__ */ jsx("a", { href: "/login", children: "\u8FD4\u56DE\u767B\u5F55" }) })
+        ] })
+      ] })
+    }
+  );
+}
+export {
+  RegisterPage as default
+};
+//# sourceMappingURL=register.js.map

package/dist/auth/auth-pages/register.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/auth/auth-pages/register.tsx"],"sourcesContent":["// auth/auth-pages/register.tsx\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface RegisterPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: { error?: string };\n  registerAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { register: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function RegisterPage({\n  ui,\n  searchParams,\n  registerAction,\n  isAuthenticated,\n  redirectWhenAuthenticated = \"/admin\",\n}: RegisterPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const { error } = searchParams;\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent, Turnstile } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>邮箱注册</CardTitle>\n          <CardDescription>\n            注册后会发送验证邮件，验证完成即可进入后台。\n          </CardDescription>\n        </CardHeader>\n        <CardContent>\n          <form action={registerAction as unknown as (formData: FormData) => void}>\n            <Label htmlFor=\"email\">邮箱</Label>\n            <Input\n              id=\"email\"\n              name=\"email\"\n              type=\"email\"\n              placeholder=\"you@example.com\"\n              autoFocus\n              required\n            />\n            <Label htmlFor=\"password\">密码</Label>\n            <Input\n              id=\"password\"\n              name=\"password\"\n              type=\"password\"\n              placeholder=\"至少 8 位，包含字母和数字\"\n              required\n            />\n            <Label htmlFor=\"confirmPassword\">确认密码</Label>\n            <Input\n              id=\"confirmPassword\"\n              name=\"confirmPassword\"\n              type=\"password\"\n              placeholder=\"再次输入密码\"\n              required\n            />\n            {error && (\n              <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n                {error}\n              </div>\n            )}\n            {Turnstile && <Turnstile action=\"register\" />}\n            <Button type=\"submit\" className=\"w-full\">注册并发送验证邮件</Button>\n          </form>\n\n          <Button asChild variant=\"ghost\" className=\"w-full\">\n            <a href=\"/login\">返回登录</a>\n          </Button>\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n"],"mappings":";AAEA,SAAS,gBAAgB;AAwCjB,SACE,KADF;AAzBR,eAAO,aAAoC;AAAA,EACzC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAAsB;AACpB,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,aAAS,yBAAyB;AAAA,EACpC;AACA,QAAM,EAAE,MAAM,IAAI;AAClB,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,aAAa,UAAU,IAAI;AAEvG,SACE;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,+BAAC,QAAK,WAAU,mBACd;AAAA,6BAAC,cACC;AAAA,8BAAC,aAAU,sCAAI;AAAA,UACf,oBAAC,mBAAgB,kJAEjB;AAAA,WACF;AAAA,QACA,qBAAC,eACC;AAAA,+BAAC,UAAK,QAAQ,gBACZ;AAAA,gCAAC,SAAM,SAAQ,SAAQ,0BAAE;AAAA,YACzB;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,WAAS;AAAA,gBACT,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,oBAAC,SAAM,SAAQ,YAAW,0BAAE;AAAA,YAC5B;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,oBAAC,SAAM,SAAQ,mBAAkB,sCAAI;AAAA,YACrC;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACC,SACC,oBAAC,SAAI,WAAU,mEACZ,iBACH;AAAA,YAED,aAAa,oBAAC,aAAU,QAAO,YAAW;AAAA,YAC3C,oBAAC,UAAO,MAAK,UAAS,WAAU,UAAS,oEAAS;AAAA,aACpD;AAAA,UAEA,oBAAC,UAAO,SAAO,MAAC,SAAQ,SAAQ,WAAU,UACxC,8BAAC,OAAE,MAAK,UAAS,sCAAI,GACvB;AAAA,WACF;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;","names":[]}

package/dist/auth/auth-pages/reset-password.d.ts

@@ -0,0 +1,18 @@
+import * as react from 'react';
+import { A as AuthPageContext } from '../../types-BsAcZSNX.js';
+
+interface ResetPasswordPageProps {
+    ui: AuthPageContext["ui"];
+    searchParams: {
+        token?: string;
+        error?: string;
+    };
+    resetPasswordAction: AuthPageContext["actions"] extends infer A ? A extends {
+        resetPassword: infer F;
+    } ? F : never : never;
+    isAuthenticated?: AuthPageContext["isAuthenticated"];
+    redirectWhenAuthenticated?: string;
+}
+declare function ResetPasswordPage({ ui, searchParams, resetPasswordAction, isAuthenticated, redirectWhenAuthenticated, }: ResetPasswordPageProps): Promise<react.JSX.Element>;
+
+export { type ResetPasswordPageProps, ResetPasswordPage as default };

package/dist/auth/auth-pages/reset-password.js

@@ -0,0 +1,72 @@
+// src/auth/auth-pages/reset-password.tsx
+import { redirect } from "next/navigation";
+import { jsx, jsxs } from "react/jsx-runtime";
+async function ResetPasswordPage({
+  ui,
+  searchParams,
+  resetPasswordAction,
+  isAuthenticated,
+  redirectWhenAuthenticated = "/admin"
+}) {
+  if (isAuthenticated && await isAuthenticated()) {
+    redirect(redirectWhenAuthenticated);
+  }
+  const { token, error } = searchParams;
+  if (!token) {
+    redirect("/forgot-password?error=missing");
+  }
+  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent } = ui;
+  return /* @__PURE__ */ jsx(
+    "main",
+    {
+      style: {
+        minHeight: "100vh",
+        display: "flex",
+        alignItems: "center",
+        justifyContent: "center",
+        padding: "1rem",
+        background: "linear-gradient(to bottom right, var(--background), var(--muted))"
+      },
+      children: /* @__PURE__ */ jsxs(Card, { className: "w-full max-w-sm", children: [
+        /* @__PURE__ */ jsxs(CardHeader, { children: [
+          /* @__PURE__ */ jsx(CardTitle, { children: "\u8BBE\u7F6E\u65B0\u5BC6\u7801" }),
+          /* @__PURE__ */ jsx(CardDescription, { children: "\u8BF7\u8F93\u5165\u65B0\u5BC6\u7801\uFF0C\u63D0\u4EA4\u540E\u5C06\u81EA\u52A8\u767B\u5F55\u3002" })
+        ] }),
+        /* @__PURE__ */ jsxs(CardContent, { children: [
+          error && /* @__PURE__ */ jsx("div", { className: "rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive", children: error }),
+          /* @__PURE__ */ jsxs("form", { action: resetPasswordAction, children: [
+            /* @__PURE__ */ jsx("input", { type: "hidden", name: "token", value: token }),
+            /* @__PURE__ */ jsx(Label, { htmlFor: "password", children: "\u65B0\u5BC6\u7801" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "password",
+                name: "password",
+                type: "password",
+                placeholder: "\u81F3\u5C11 8 \u4F4D\uFF0C\u5305\u542B\u5B57\u6BCD\u548C\u6570\u5B57",
+                required: true
+              }
+            ),
+            /* @__PURE__ */ jsx(Label, { htmlFor: "confirmPassword", children: "\u786E\u8BA4\u65B0\u5BC6\u7801" }),
+            /* @__PURE__ */ jsx(
+              Input,
+              {
+                id: "confirmPassword",
+                name: "confirmPassword",
+                type: "password",
+                placeholder: "\u518D\u6B21\u8F93\u5165\u65B0\u5BC6\u7801",
+                required: true
+              }
+            ),
+            /* @__PURE__ */ jsx(Button, { type: "submit", className: "w-full", children: "\u66F4\u65B0\u5BC6\u7801\u5E76\u767B\u5F55" })
+          ] }),
+          /* @__PURE__ */ jsx(Button, { asChild: true, variant: "ghost", className: "w-full", children: /* @__PURE__ */ jsx("a", { href: "/login", children: "\u8FD4\u56DE\u767B\u5F55" }) })
+        ] })
+      ] })
+    }
+  );
+}
+export {
+  ResetPasswordPage as default
+};
+//# sourceMappingURL=reset-password.js.map

package/dist/auth/auth-pages/reset-password.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/auth/auth-pages/reset-password.tsx"],"sourcesContent":["// auth/auth-pages/reset-password.tsx\n\nimport { redirect } from \"next/navigation\";\nimport type { AuthPageContext } from \"./types\";\n\nexport interface ResetPasswordPageProps {\n  ui: AuthPageContext[\"ui\"];\n  searchParams: {\n    token?: string;\n    error?: string;\n  };\n  resetPasswordAction: AuthPageContext[\"actions\"] extends infer A\n    ? A extends { resetPassword: infer F }\n      ? F\n      : never\n    : never;\n  isAuthenticated?: AuthPageContext[\"isAuthenticated\"];\n  redirectWhenAuthenticated?: string;\n}\n\nexport default async function ResetPasswordPage({\n  ui,\n  searchParams,\n  resetPasswordAction,\n  isAuthenticated,\n  redirectWhenAuthenticated = \"/admin\",\n}: ResetPasswordPageProps) {\n  if (isAuthenticated && (await isAuthenticated())) {\n    redirect(redirectWhenAuthenticated);\n  }\n  const { token, error } = searchParams;\n  if (!token) {\n    redirect(\"/forgot-password?error=missing\");\n  }\n  const { Button, Input, Label, Card, CardHeader, CardTitle, CardDescription, CardContent } = ui;\n\n  return (\n    <main\n      style={{\n        minHeight: \"100vh\",\n        display: \"flex\",\n        alignItems: \"center\",\n        justifyContent: \"center\",\n        padding: \"1rem\",\n        background: \"linear-gradient(to bottom right, var(--background), var(--muted))\",\n      }}\n    >\n      <Card className=\"w-full max-w-sm\">\n        <CardHeader>\n          <CardTitle>设置新密码</CardTitle>\n          <CardDescription>请输入新密码，提交后将自动登录。</CardDescription>\n        </CardHeader>\n        <CardContent>\n          {error && (\n            <div className=\"rounded-md bg-destructive/10 px-3 py-2 text-sm text-destructive\">\n              {error}\n            </div>\n          )}\n\n          <form action={resetPasswordAction as unknown as (formData: FormData) => void}>\n            <input type=\"hidden\" name=\"token\" value={token} />\n            <Label htmlFor=\"password\">新密码</Label>\n            <Input\n              id=\"password\"\n              name=\"password\"\n              type=\"password\"\n              placeholder=\"至少 8 位，包含字母和数字\"\n              required\n            />\n            <Label htmlFor=\"confirmPassword\">确认新密码</Label>\n            <Input\n              id=\"confirmPassword\"\n              name=\"confirmPassword\"\n              type=\"password\"\n              placeholder=\"再次输入新密码\"\n              required\n            />\n            <Button type=\"submit\" className=\"w-full\">更新密码并登录</Button>\n          </form>\n\n          <Button asChild variant=\"ghost\" className=\"w-full\">\n            <a href=\"/login\">返回登录</a>\n          </Button>\n        </CardContent>\n      </Card>\n    </main>\n  );\n}\n"],"mappings":";AAEA,SAAS,gBAAgB;AA8CjB,SACE,KADF;AA5BR,eAAO,kBAAyC;AAAA,EAC9C;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,4BAA4B;AAC9B,GAA2B;AACzB,MAAI,mBAAoB,MAAM,gBAAgB,GAAI;AAChD,aAAS,yBAAyB;AAAA,EACpC;AACA,QAAM,EAAE,OAAO,MAAM,IAAI;AACzB,MAAI,CAAC,OAAO;AACV,aAAS,gCAAgC;AAAA,EAC3C;AACA,QAAM,EAAE,QAAQ,OAAO,OAAO,MAAM,YAAY,WAAW,iBAAiB,YAAY,IAAI;AAE5F,SACE;AAAA,IAAC;AAAA;AAAA,MACC,OAAO;AAAA,QACL,WAAW;AAAA,QACX,SAAS;AAAA,QACT,YAAY;AAAA,QACZ,gBAAgB;AAAA,QAChB,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,MAEA,+BAAC,QAAK,WAAU,mBACd;AAAA,6BAAC,cACC;AAAA,8BAAC,aAAU,4CAAK;AAAA,UAChB,oBAAC,mBAAgB,8GAAgB;AAAA,WACnC;AAAA,QACA,qBAAC,eACE;AAAA,mBACC,oBAAC,SAAI,WAAU,mEACZ,iBACH;AAAA,UAGF,qBAAC,UAAK,QAAQ,qBACZ;AAAA,gCAAC,WAAM,MAAK,UAAS,MAAK,SAAQ,OAAO,OAAO;AAAA,YAChD,oBAAC,SAAM,SAAQ,YAAW,gCAAG;AAAA,YAC7B;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,oBAAC,SAAM,SAAQ,mBAAkB,4CAAK;AAAA,YACtC;AAAA,cAAC;AAAA;AAAA,gBACC,IAAG;AAAA,gBACH,MAAK;AAAA,gBACL,MAAK;AAAA,gBACL,aAAY;AAAA,gBACZ,UAAQ;AAAA;AAAA,YACV;AAAA,YACA,oBAAC,UAAO,MAAK,UAAS,WAAU,UAAS,wDAAO;AAAA,aAClD;AAAA,UAEA,oBAAC,UAAO,SAAO,MAAC,SAAQ,SAAQ,WAAU,UACxC,8BAAC,OAAE,MAAK,UAAS,sCAAI,GACvB;AAAA,WACF;AAAA,SACF;AAAA;AAAA,EACF;AAEJ;","names":[]}

package/dist/auth/index.d.ts

@@ -0,0 +1,72 @@
+import { AuthConfig } from '../types.js';
+export { SessionUser } from './session.js';
+export { ADMIN_COOKIE, AuthViewer, USER_COOKIE, checkPassword, clearSessionCookie, clearUserSessionCookie, getAuthViewer, getCurrentUser, isAuthenticated, setSessionCookie, setUserSessionCookie, signUserToken, verifyUserToken } from './user-session.js';
+export { hashPassword, validatePasswordStrength, verifyPassword } from './passwords.js';
+export { User, UserListItem, UserRole, authenticateEmailUser, changeUserPassword, createEmailUser, deleteUserAccount, getUserByEmail, getUserById, issuePasswordResetToken, issueVerificationToken, listUsers, listUsersWithPostCounts, normalizeUserRole, resetPasswordWithToken, revokeUserSessions, setUserRole, upsertGoogleUser, userToSession, verifyEmailUser } from './users.js';
+export { AuthRateLimitKind, checkAuthRateLimit, clearAuthRateLimit, clearAuthRateLimits, enforceAuthRateLimits, recordAuthFailure, recordAuthFailures } from './rate-limit.js';
+export { TurnstileRuntimeConfig, getTurnstileRuntimeConfig, verifyTurnstileFromForm, verifyTurnstileToken } from './turnstile.js';
+import '../content/models.js';
+import '../notion/types.js';
+import '../platform/current.js';
+import '../platform/runtime.js';
+import '../env-C5qu-0R-.js';
+import '../platform/selection.js';
+
+/**
+ * Minimal user shape. Expanded in Task 3.2 to mirror the full D1 row.
+ */
+interface AuthUser {
+    id: number;
+    email: string;
+    role: string | null;
+}
+/**
+ * Minimal viewer shape returned by `requireViewer` / `requireRole`.
+ * Expanded in Task 3.2 to include session info and role flags.
+ */
+interface AuthViewer {
+    id: number;
+    email: string;
+    role: string;
+    isAdmin: boolean;
+    isVip: boolean;
+}
+/**
+ * Rate-limit verdict returned by `checkRateLimit`.
+ */
+type AuthRateLimitResult = {
+    ok: true;
+} | {
+    ok: false;
+    retryAfterSec: number;
+    scope: "email" | "ip";
+};
+/**
+ * Aggregate auth surface returned by `createAuth`. Each method is bound
+ * to the configured database and cookie settings; consumers should not
+ * need to pass these in again.
+ */
+interface Auth {
+    requireViewer(request: Request): Promise<{
+        user: AuthViewer;
+    }>;
+    requireRole(request: Request, role: string): Promise<{
+        user: AuthViewer;
+    }>;
+    listUsers(): Promise<AuthUser[]>;
+    setUserRole(userId: number, role: string): Promise<void>;
+    checkRateLimit(key: string, limit: number, windowMs: number): Promise<AuthRateLimitResult>;
+    verifyTurnstile(token: string, ip: string | null): Promise<boolean>;
+}
+/**
+ * Build an `Auth` object bound to `config` and the current platform
+ * runtime. The returned methods share the same database/cookie context,
+ * removing the need for module-level singletons.
+ *
+ * Runtime/database validation is deferred to the first call so callers
+ * that only need the typed surface (e.g. tests) can still construct the
+ * factory in environments without a configured D1 binding.
+ */
+declare function createAuth(config: AuthConfig): Auth;
+
+export { type Auth, type AuthRateLimitResult, type AuthUser, createAuth };