@owox/idp-owox-better-auth 0.18.0

package/dist/store/mysql-database-store.d.ts

@@ -0,0 +1,40 @@
+import type { DatabaseAccount, DatabaseOperationResult, DatabaseUser } from '../types/index.js';
+import type { DatabaseStore } from './database-store.js';
+import { StoreResult } from './store-result.js';
+export interface MysqlConnectionConfig {
+    host: string;
+    user: string;
+    password: string;
+    database: string;
+    port?: number;
+    ssl?: unknown;
+}
+/**
+ * MySQL-backed DatabaseStore implementation.
+ */
+export declare class MysqlDatabaseStore implements DatabaseStore {
+    private readonly config;
+    private pool?;
+    private readonly logger;
+    private authTableReady;
+    constructor(config: MysqlConnectionConfig);
+    private getPool;
+    private toIso;
+    private toBoolean;
+    private mapUser;
+    private mapAccount;
+    initialize(): Promise<void>;
+    isHealthy(): Promise<boolean>;
+    cleanupExpiredSessions(): Promise<DatabaseOperationResult>;
+    getUserById(userId: string): Promise<DatabaseUser | null>;
+    getUserByEmail(email: string): Promise<DatabaseUser | null>;
+    getAccountByUserId(userId: string): Promise<DatabaseAccount | null>;
+    saveAuthState(state: string, codeVerifier: string, expiresAt?: Date | null): Promise<void>;
+    getAuthState(state: string): Promise<StoreResult>;
+    deleteAuthState(state: string): Promise<void>;
+    purgeExpiredAuthStates(): Promise<number>;
+    shutdown(): Promise<void>;
+    getAdapter(): Promise<unknown>;
+    private ensureAuthStatesTable;
+}
+//# sourceMappingURL=mysql-database-store.d.ts.map

package/dist/store/mysql-database-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mysql-database-store.d.ts","sourceRoot":"","sources":["../../src/store/mysql-database-store.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,eAAe,EAAE,uBAAuB,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAChG,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAYhD,MAAM,WAAW,qBAAqB;IACpC,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,GAAG,CAAC,EAAE,OAAO,CAAC;CACf;AAED;;GAEG;AACH,qBAAa,kBAAmB,YAAW,aAAa;IAK1C,OAAO,CAAC,QAAQ,CAAC,MAAM;IAJnC,OAAO,CAAC,IAAI,CAAC,CAAY;IACzB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,cAAc,CAAS;gBAEF,MAAM,EAAE,qBAAqB;YAI5C,OAAO;IA2BrB,OAAO,CAAC,KAAK;IAYb,OAAO,CAAC,SAAS;IAqBjB,OAAO,CAAC,OAAO;IAWf,OAAO,CAAC,UAAU;IAUZ,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAK3B,SAAS,IAAI,OAAO,CAAC,OAAO,CAAC;IAW7B,sBAAsB,IAAI,OAAO,CAAC,uBAAuB,CAAC;IAS1D,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAUzD,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAS3D,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAUnE,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,IAAI,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAe1F,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAwBjD,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAM7C,sBAAsB,IAAI,OAAO,CAAC,MAAM,CAAC;IASzC,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC;IAYzB,UAAU,IAAI,OAAO,CAAC,OAAO,CAAC;YAMtB,qBAAqB;CAkBpC"}

package/dist/store/mysql-database-store.js

@@ -0,0 +1,213 @@
+import { LoggerFactory } from '@owox/internal-helpers';
+import { StoreResult } from './store-result.js';
+/**
+ * MySQL-backed DatabaseStore implementation.
+ */
+export class MysqlDatabaseStore {
+    config;
+    pool;
+    logger;
+    authTableReady = false;
+    constructor(config) {
+        this.config = config;
+        this.logger = LoggerFactory.createNamedLogger('BetterAuthMysqlDatabaseStore');
+    }
+    async getPool() {
+        if (this.pool)
+            return this.pool;
+        try {
+            const mysql = await import('mysql2/promise');
+            this.pool = mysql.default.createPool({
+                host: this.config.host,
+                user: this.config.user,
+                password: this.config.password,
+                database: this.config.database,
+                port: this.config.port || 3306,
+                waitForConnections: true,
+                connectionLimit: 10,
+                queueLimit: 0,
+                ssl: this.config.ssl,
+            });
+        }
+        catch (error) {
+            this.logger.error('Failed to initialize MySQL pool', { error });
+            throw new Error('mysql2 is required for MySQL support. Install it with: npm install mysql2');
+        }
+        return this.pool;
+    }
+    toIso(val) {
+        if (val == null)
+            return undefined;
+        if (val instanceof Date)
+            return val.toISOString();
+        try {
+            const parsed = new Date(String(val));
+            if (!Number.isNaN(parsed.getTime()))
+                return parsed.toISOString();
+        }
+        catch {
+            // ignore parse errors
+        }
+        return String(val);
+    }
+    toBoolean(val) {
+        if (val == null)
+            return undefined;
+        if (typeof val === 'boolean')
+            return val;
+        if (typeof val === 'number')
+            return val !== 0;
+        if (val instanceof Date)
+            return true;
+        if (val instanceof Uint8Array) {
+            return val.length > 0 ? val[0] !== 0 : undefined;
+        }
+        if (typeof val === 'string') {
+            const normalized = val.trim().toLowerCase();
+            if (!normalized)
+                return undefined;
+            if (['1', 'true', 't', 'yes', 'y'].includes(normalized))
+                return true;
+            if (['0', 'false', 'f', 'no', 'n'].includes(normalized))
+                return false;
+            if (!Number.isNaN(Date.parse(normalized)))
+                return true;
+        }
+        return undefined;
+    }
+    mapUser(row) {
+        return {
+            id: String(row.id),
+            email: String(row.email),
+            emailVerified: this.toBoolean(row.emailVerified),
+            name: row.name != null ? String(row.name) : undefined,
+            image: row.image != null ? String(row.image) : null,
+            createdAt: this.toIso(row.createdAt),
+        };
+    }
+    mapAccount(row) {
+        return {
+            id: String(row.id),
+            accountId: String(row.accountId),
+            providerId: String(row.providerId),
+            userId: String(row.userId),
+            createdAt: this.toIso(row.createdAt),
+        };
+    }
+    async initialize() {
+        const pool = await this.getPool();
+        await this.ensureAuthStatesTable(pool);
+    }
+    async isHealthy() {
+        try {
+            const pool = await this.getPool();
+            await pool.query('SELECT 1');
+            await this.ensureAuthStatesTable(pool);
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    async cleanupExpiredSessions() {
+        const pool = await this.getPool();
+        const [result] = (await pool.execute('DELETE FROM session WHERE expiresAt < NOW()'));
+        return { changes: Number(result?.affectedRows ?? 0) };
+    }
+    async getUserById(userId) {
+        const pool = await this.getPool();
+        const [rows] = (await pool.execute('SELECT * FROM user WHERE id = ? LIMIT 1', [userId]));
+        const row = rows[0];
+        return row ? this.mapUser(row) : null;
+    }
+    async getUserByEmail(email) {
+        const pool = await this.getPool();
+        const [rows] = (await pool.execute('SELECT * FROM user WHERE LOWER(email) = LOWER(?) LIMIT 1', [
+            email,
+        ]));
+        const row = rows[0];
+        return row ? this.mapUser(row) : null;
+    }
+    async getAccountByUserId(userId) {
+        const pool = await this.getPool();
+        const [rows] = (await pool.execute('SELECT id, accountId, providerId, userId, createdAt FROM account WHERE userId = ? ORDER BY createdAt DESC LIMIT 1', [userId]));
+        const row = rows[0];
+        return row ? this.mapAccount(row) : null;
+    }
+    async saveAuthState(state, codeVerifier, expiresAt) {
+        const pool = await this.getPool();
+        await this.ensureAuthStatesTable(pool);
+        const exp = expiresAt ?? null;
+        await pool.execute(`INSERT INTO auth_states (state, code_verifier, expires_at)
+       VALUES (?, ?, ?)
+       ON DUPLICATE KEY UPDATE
+          code_verifier = VALUES(code_verifier),
+          expires_at    = VALUES(expires_at),
+          created_at    = CURRENT_TIMESTAMP`, [state, codeVerifier, exp]);
+    }
+    async getAuthState(state) {
+        const pool = await this.getPool();
+        await this.ensureAuthStatesTable(pool);
+        const [rows] = await pool.execute(`SELECT code_verifier, expires_at FROM auth_states WHERE state = ? LIMIT 1`, [state]);
+        const row = Array.isArray(rows) && rows.length > 0
+            ? rows[0]
+            : null;
+        if (!row)
+            return StoreResult.notFound();
+        const exp = row.expires_at ? new Date(row.expires_at) : null;
+        if (exp && exp.getTime() <= Date.now()) {
+            await this.deleteAuthState(state);
+            return StoreResult.expired();
+        }
+        await this.deleteAuthState(state);
+        return StoreResult.withCode(row.code_verifier);
+    }
+    async deleteAuthState(state) {
+        const pool = await this.getPool();
+        await this.ensureAuthStatesTable(pool);
+        await pool.execute(`DELETE FROM auth_states WHERE state = ?`, [state]);
+    }
+    async purgeExpiredAuthStates() {
+        const pool = await this.getPool();
+        await this.ensureAuthStatesTable(pool);
+        const [result] = await pool.execute(`DELETE FROM auth_states WHERE expires_at IS NOT NULL AND expires_at <= CURRENT_TIMESTAMP`);
+        return result.affectedRows ?? 0;
+    }
+    async shutdown() {
+        if (this.pool && typeof this.pool.end === 'function') {
+            try {
+                await this.pool.end();
+            }
+            catch (error) {
+                this.logger.error('Failed to close MySQL pool', { error });
+            }
+            finally {
+                this.pool = undefined;
+            }
+        }
+    }
+    async getAdapter() {
+        const pool = await this.getPool();
+        await this.ensureAuthStatesTable(pool);
+        return pool;
+    }
+    async ensureAuthStatesTable(pool) {
+        if (this.authTableReady)
+            return;
+        await pool.query(`
+        CREATE TABLE IF NOT EXISTS auth_states (
+            state VARCHAR(255) NOT NULL PRIMARY KEY,
+            code_verifier VARCHAR(255) NOT NULL,
+            created_at TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
+            expires_at TIMESTAMP NULL
+            )
+    `);
+        try {
+            await pool.query(`CREATE INDEX idx_auth_states_expires_at ON auth_states (expires_at)`);
+        }
+        catch {
+            // index already exists
+        }
+        this.authTableReady = true;
+    }
+}

package/dist/store/sqlite-database-store.d.ts

@@ -0,0 +1,32 @@
+import type { DatabaseAccount, DatabaseOperationResult, DatabaseUser } from '../types/index.js';
+import type { DatabaseStore } from './database-store.js';
+import { StoreResult } from './store-result.js';
+/**
+ * SQLite-backed DatabaseStore implementation.
+ */
+export declare class SqliteDatabaseStore implements DatabaseStore {
+    private readonly dbPath;
+    private db?;
+    private authTableReady;
+    constructor(dbPath: string);
+    connect(): Promise<void>;
+    private getDb;
+    private toIso;
+    private toBoolean;
+    private mapUser;
+    private mapAccount;
+    private ensureAuthStatesTable;
+    shutdown(): Promise<void>;
+    getAdapter(): Promise<unknown>;
+    isHealthy(): Promise<boolean>;
+    initialize(): Promise<void>;
+    cleanupExpiredSessions(): Promise<DatabaseOperationResult>;
+    getUserById(userId: string): Promise<DatabaseUser | null>;
+    getUserByEmail(email: string): Promise<DatabaseUser | null>;
+    getAccountByUserId(userId: string): Promise<DatabaseAccount | null>;
+    saveAuthState(state: string, codeVerifier: string, expiresAt?: Date | null): Promise<void>;
+    getAuthState(state: string): Promise<StoreResult>;
+    deleteAuthState(state: string): Promise<void>;
+    purgeExpiredAuthStates(): Promise<number>;
+}
+//# sourceMappingURL=sqlite-database-store.d.ts.map

package/dist/store/sqlite-database-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sqlite-database-store.d.ts","sourceRoot":"","sources":["../../src/store/sqlite-database-store.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,eAAe,EAAE,uBAAuB,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAChG,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAchD;;GAEG;AACH,qBAAa,mBAAoB,YAAW,aAAa;IAI3C,OAAO,CAAC,QAAQ,CAAC,MAAM;IAHnC,OAAO,CAAC,EAAE,CAAC,CAAW;IACtB,OAAO,CAAC,cAAc,CAAS;gBAEF,MAAM,EAAE,MAAM;IAErC,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAe9B,OAAO,CAAC,KAAK;IAKb,OAAO,CAAC,KAAK;IAYb,OAAO,CAAC,SAAS;IAqBjB,OAAO,CAAC,OAAO;IAWf,OAAO,CAAC,UAAU;IAUlB,OAAO,CAAC,qBAAqB;IAmBvB,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC;IAUzB,UAAU,IAAI,OAAO,CAAC,OAAO,CAAC;IAM9B,SAAS,IAAI,OAAO,CAAC,OAAO,CAAC;IAW7B,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAK3B,sBAAsB,IAAI,OAAO,CAAC,uBAAuB,CAAC;IAO1D,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAOzD,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAO3D,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IASnE,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,IAAI,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAgB1F,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAmBjD,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAM7C,sBAAsB,IAAI,OAAO,CAAC,MAAM,CAAC;CAUhD"}

package/dist/store/sqlite-database-store.js

@@ -0,0 +1,205 @@
+import { logger } from '../core/logger.js';
+import { StoreResult } from './store-result.js';
+/**
+ * SQLite-backed DatabaseStore implementation.
+ */
+export class SqliteDatabaseStore {
+    dbPath;
+    db;
+    authTableReady = false;
+    constructor(dbPath) {
+        this.dbPath = dbPath;
+    }
+    async connect() {
+        if (this.db)
+            return;
+        const { default: DatabaseCtor } = await import('better-sqlite3');
+        this.db = new DatabaseCtor(this.dbPath, { fileMustExist: false });
+        // Ensure sane defaults
+        try {
+            this.db.pragma?.('journal_mode = WAL');
+        }
+        catch {
+            // noop
+        }
+    }
+    getDb() {
+        if (!this.db)
+            throw new Error('SqliteDatabaseStore is not connected');
+        return this.db;
+    }
+    toIso(val) {
+        if (val == null)
+            return undefined;
+        if (val instanceof Date)
+            return val.toISOString();
+        try {
+            const parsed = new Date(String(val));
+            if (!Number.isNaN(parsed.getTime()))
+                return parsed.toISOString();
+        }
+        catch {
+            // ignore parse errors
+        }
+        return String(val);
+    }
+    toBoolean(val) {
+        if (val == null)
+            return undefined;
+        if (typeof val === 'boolean')
+            return val;
+        if (typeof val === 'number')
+            return val !== 0;
+        if (val instanceof Date)
+            return true;
+        if (val instanceof Uint8Array) {
+            return val.length > 0 ? val[0] !== 0 : undefined;
+        }
+        if (typeof val === 'string') {
+            const normalized = val.trim().toLowerCase();
+            if (!normalized)
+                return undefined;
+            if (['1', 'true', 't', 'yes', 'y'].includes(normalized))
+                return true;
+            if (['0', 'false', 'f', 'no', 'n'].includes(normalized))
+                return false;
+            if (!Number.isNaN(Date.parse(normalized)))
+                return true;
+        }
+        return undefined;
+    }
+    mapUser(row) {
+        return {
+            id: String(row.id),
+            email: String(row.email),
+            emailVerified: this.toBoolean(row.emailVerified),
+            name: row.name != null ? String(row.name) : undefined,
+            image: row.image != null ? String(row.image) : null,
+            createdAt: this.toIso(row.createdAt),
+        };
+    }
+    mapAccount(row) {
+        return {
+            id: String(row.id),
+            accountId: String(row.accountId),
+            providerId: String(row.providerId),
+            userId: String(row.userId),
+            createdAt: this.toIso(row.createdAt),
+        };
+    }
+    ensureAuthStatesTable() {
+        if (this.authTableReady)
+            return;
+        const db = this.getDb();
+        db.prepare(`CREATE TABLE IF NOT EXISTS auth_states (
+      state TEXT NOT NULL PRIMARY KEY,
+      code_verifier TEXT NOT NULL,
+      created_at TEXT NOT NULL DEFAULT (CURRENT_TIMESTAMP),
+      expires_at TEXT NULL
+    )`).run();
+        try {
+            db.prepare(`CREATE INDEX idx_auth_states_expires_at ON auth_states (expires_at)`).run();
+        }
+        catch {
+            // index already exists
+        }
+        this.authTableReady = true;
+    }
+    async shutdown() {
+        try {
+            this.db?.close?.();
+        }
+        catch (error) {
+            logger.error('Failed to close SQLite database', {}, error);
+        }
+        finally {
+            this.db = undefined;
+        }
+    }
+    async getAdapter() {
+        await this.connect();
+        this.ensureAuthStatesTable();
+        return this.getDb();
+    }
+    async isHealthy() {
+        try {
+            await this.connect();
+            this.ensureAuthStatesTable();
+            this.getDb().prepare('SELECT 1').get();
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    async initialize() {
+        await this.connect();
+        this.ensureAuthStatesTable();
+    }
+    async cleanupExpiredSessions() {
+        await this.connect();
+        const stmt = this.getDb().prepare('DELETE FROM session WHERE expiresAt < datetime("now")');
+        const result = stmt.run();
+        return { changes: Number(result.changes ?? 0) };
+    }
+    async getUserById(userId) {
+        await this.connect();
+        const stmt = this.getDb().prepare('SELECT * FROM user WHERE id = ?');
+        const row = stmt.get(userId);
+        return row ? this.mapUser(row) : null;
+    }
+    async getUserByEmail(email) {
+        await this.connect();
+        const stmt = this.getDb().prepare('SELECT * FROM user WHERE lower(email) = lower(?)');
+        const row = stmt.get(email);
+        return row ? this.mapUser(row) : null;
+    }
+    async getAccountByUserId(userId) {
+        await this.connect();
+        const stmt = this.getDb().prepare('SELECT id, accountId, providerId, userId, createdAt FROM account WHERE userId = ? ORDER BY createdAt DESC LIMIT 1');
+        const row = stmt.get(userId);
+        return row ? this.mapAccount(row) : null;
+    }
+    async saveAuthState(state, codeVerifier, expiresAt) {
+        await this.connect();
+        this.ensureAuthStatesTable();
+        const exp = expiresAt ? expiresAt.toISOString() : null;
+        this.getDb()
+            .prepare(`INSERT INTO auth_states (state, code_verifier, expires_at)
+         VALUES (?, ?, ?)
+         ON CONFLICT(state) DO UPDATE SET
+           code_verifier = excluded.code_verifier,
+           expires_at = excluded.expires_at,
+           created_at = CURRENT_TIMESTAMP`)
+            .run(state, codeVerifier, exp);
+    }
+    async getAuthState(state) {
+        await this.connect();
+        this.ensureAuthStatesTable();
+        const row = this.getDb()
+            .prepare('SELECT code_verifier, expires_at FROM auth_states WHERE state = ? LIMIT 1')
+            .get(state);
+        if (!row || !row.code_verifier)
+            return StoreResult.notFound();
+        const exp = row.expires_at ? new Date(row.expires_at) : null;
+        if (exp && exp.getTime() <= Date.now()) {
+            await this.deleteAuthState(state);
+            return StoreResult.expired();
+        }
+        await this.deleteAuthState(state);
+        return StoreResult.withCode(row.code_verifier);
+    }
+    async deleteAuthState(state) {
+        await this.connect();
+        this.ensureAuthStatesTable();
+        this.getDb().prepare('DELETE FROM auth_states WHERE state = ?').run(state);
+    }
+    async purgeExpiredAuthStates() {
+        await this.connect();
+        this.ensureAuthStatesTable();
+        const res = this.getDb()
+            .prepare('DELETE FROM auth_states WHERE expires_at IS NOT NULL AND expires_at <= CURRENT_TIMESTAMP')
+            .run();
+        return Number(res.changes ?? 0);
+    }
+}

package/dist/store/store-result.d.ts

@@ -0,0 +1,16 @@
+export declare enum StoreReason {
+    NOT_FOUND = "not_found",
+    EXPIRED = "expired"
+}
+/**
+ * Wraps PKCE state lookup results with reason metadata.
+ */
+export declare class StoreResult {
+    readonly code: string | null;
+    readonly reason: StoreReason | null;
+    private constructor();
+    static withCode(code: string): StoreResult;
+    static notFound(): StoreResult;
+    static expired(): StoreResult;
+}
+//# sourceMappingURL=store-result.d.ts.map

package/dist/store/store-result.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"store-result.d.ts","sourceRoot":"","sources":["../../src/store/store-result.ts"],"names":[],"mappings":"AAAA,oBAAY,WAAW;IACrB,SAAS,cAAc;IACvB,OAAO,YAAY;CACpB;AAED;;GAEG;AACH,qBAAa,WAAW;aAEJ,IAAI,EAAE,MAAM,GAAG,IAAI;aACnB,MAAM,EAAE,WAAW,GAAG,IAAI;IAF5C,OAAO;IAKP,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW;IAG1C,MAAM,CAAC,QAAQ,IAAI,WAAW;IAG9B,MAAM,CAAC,OAAO,IAAI,WAAW;CAG9B"}

package/dist/store/store-result.js

@@ -0,0 +1,25 @@
+export var StoreReason;
+(function (StoreReason) {
+    StoreReason["NOT_FOUND"] = "not_found";
+    StoreReason["EXPIRED"] = "expired";
+})(StoreReason || (StoreReason = {}));
+/**
+ * Wraps PKCE state lookup results with reason metadata.
+ */
+export class StoreResult {
+    code;
+    reason;
+    constructor(code, reason) {
+        this.code = code;
+        this.reason = reason;
+    }
+    static withCode(code) {
+        return new StoreResult(code, null);
+    }
+    static notFound() {
+        return new StoreResult(null, StoreReason.NOT_FOUND);
+    }
+    static expired() {
+        return new StoreResult(null, StoreReason.EXPIRED);
+    }
+}

package/dist/types/auth-request-context.d.ts

@@ -0,0 +1,15 @@
+import { type Request } from 'express';
+import { type PlatformParams } from '../utils/request-utils.js';
+/**
+ * Extracted request context used for auth flow decisions.
+ */
+export interface AuthRequestContext {
+    state?: string;
+    platformParams: PlatformParams;
+    refreshToken?: string;
+}
+/**
+ * Builds auth request context from query and cookies.
+ */
+export declare function buildAuthRequestContext(req: Request): AuthRequestContext;
+//# sourceMappingURL=auth-request-context.d.ts.map

package/dist/types/auth-request-context.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-request-context.d.ts","sourceRoot":"","sources":["../../src/types/auth-request-context.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,OAAO,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAIL,KAAK,cAAc,EACpB,MAAM,2BAA2B,CAAC;AAEnC;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,cAAc,EAAE,cAAc,CAAC;IAC/B,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,GAAG,EAAE,OAAO,GAAG,kBAAkB,CAOxE"}

package/dist/types/auth-request-context.js

@@ -0,0 +1,12 @@
+import { extractPlatformParams, extractRefreshToken, getStateManager, } from '../utils/request-utils.js';
+/**
+ * Builds auth request context from query and cookies.
+ */
+export function buildAuthRequestContext(req) {
+    const stateManager = getStateManager(req);
+    return {
+        state: stateManager.extract() || undefined,
+        platformParams: extractPlatformParams(req),
+        refreshToken: extractRefreshToken(req),
+    };
+}

package/dist/types/auth-session.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Better Auth session data
+ */
+export interface AuthSession {
+    user: {
+        id: string;
+        email: string;
+        name?: string;
+    };
+    session: {
+        id: string;
+        userId: string;
+        token: string;
+        expiresAt: Date;
+    };
+}
+/**
+ * Session validation result
+ */
+export interface SessionValidationResult {
+    isValid: boolean;
+    session?: AuthSession;
+    error?: string;
+}
+//# sourceMappingURL=auth-session.d.ts.map

package/dist/types/auth-session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-session.d.ts","sourceRoot":"","sources":["../../src/types/auth-session.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE;QACJ,EAAE,EAAE,MAAM,CAAC;QACX,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;KACf,CAAC;IACF,OAAO,EAAE;QACP,EAAE,EAAE,MAAM,CAAC;QACX,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,IAAI,CAAC;KACjB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,CAAC,EAAE,WAAW,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB"}

package/dist/types/auth-session.js

@@ -0,0 +1 @@
+export {};

package/dist/types/database-models.d.ts

@@ -0,0 +1,39 @@
+/**
+ * Database user model
+ */
+export interface DatabaseUser {
+    id: string;
+    email: string;
+    emailVerified?: boolean;
+    name?: string;
+    image?: string | null;
+    createdAt?: string;
+}
+/**
+ * Database session model
+ */
+export interface DatabaseSession {
+    id: string;
+    userId: string;
+    token: string;
+    expiresAt: string;
+    createdAt?: string;
+}
+/**
+ * Database account model
+ */
+export interface DatabaseAccount {
+    id: string;
+    userId: string;
+    providerId: string;
+    accountId: string;
+    createdAt?: string;
+}
+/**
+ * Database operation result
+ */
+export interface DatabaseOperationResult {
+    changes: number;
+    lastInsertRowid?: number;
+}
+//# sourceMappingURL=database-models.d.ts.map

package/dist/types/database-models.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"database-models.d.ts","sourceRoot":"","sources":["../../src/types/database-models.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B"}

package/dist/types/database-models.js

@@ -0,0 +1 @@
+export {};