@payez/next-mvp 3.9.1 → 4.0.1

package/dist/config/vibe-log-transport.js

@@ -1,212 +0,0 @@
-"use strict";
-/**
- * Vibe Log Transport for Winston
- *
- * Buffers log entries to Redis for async processing by Vibe log drain.
- * This avoids the "log database errors to database" chicken-and-egg problem.
- *
- * Features:
- * - Async batch writing (doesn't block main thread)
- * - Configurable minimum log level
- * - Redis buffering with 1-week TTL
- * - Graceful degradation on failure
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.VibeLogTransport = void 0;
-exports.createVibeLogTransport = createVibeLogTransport;
-const redis_1 = require("../lib/redis");
-// Dynamic import — winston is a peerDependency and may not be installed.
-// We resolve the base class lazily so builds don't break without it.
-let TransportBase;
-try {
-    TransportBase = require('winston-transport');
-}
-catch {
-    // Fallback: minimal base class for when winston is not installed
-    TransportBase = class {
-        constructor(_opts) { }
-        emit(_event, _info) { }
-    };
-}
-/** Redis key for pending log entries */
-const REDIS_LOG_KEY = 'vibe:logs:pending';
-/** TTL in seconds: 1 week */
-const REDIS_LOG_TTL = 7 * 24 * 60 * 60;
-const LEVEL_ORDER = {
-    error: 0,
-    warn: 1,
-    info: 2,
-    http: 3,
-    debug: 4,
-};
-/**
- * Winston transport that buffers logs to Redis for Vibe drain processing
- */
-class VibeLogTransport extends TransportBase {
-    vibeClientId;
-    appSlug;
-    minLevelNum;
-    batchSize;
-    flushInterval;
-    enabled;
-    redisAvailable = false;
-    batch = [];
-    flushTimer = null;
-    isFlushing = false;
-    constructor(opts = {}) {
-        super(opts);
-        this.vibeClientId = opts.vibeClientId || process.env.VIBE_CLIENT_ID || '';
-        this.appSlug = opts.appSlug || process.env.APP_SLUG || process.env.CLIENT_ID || 'mvp-app';
-        this.minLevelNum = LEVEL_ORDER[opts.minLevel || 'warn'] ?? 1;
-        this.batchSize = opts.batchSize || 10;
-        this.flushInterval = opts.flushInterval || 5000;
-        // Enable if Redis URL is configured
-        const redisUrl = opts.redisUrl || process.env.REDIS_URL || '';
-        this.enabled = opts.enabled !== false && !!redisUrl;
-        this.redisAvailable = !!redisUrl;
-        if (this.enabled) {
-            this.startFlushTimer();
-        }
-    }
-    /**
-     * Winston transport log method
-     */
-    log(info, callback) {
-        setImmediate(() => this.emit('logged', info));
-        if (!this.enabled) {
-            callback();
-            return;
-        }
-        const level = info.level?.replace(/\u001b\[\d+m/g, '') || 'info'; // Strip ANSI codes
-        const levelNum = LEVEL_ORDER[level] ?? 2;
-        // Only batch if at or above minimum level
-        if (levelNum <= this.minLevelNum) {
-            const entry = {
-                level,
-                message: info.message || '',
-                timestamp: info.timestamp || new Date().toISOString(),
-                category: this.extractCategory(info.message),
-                meta: this.extractMeta(info),
-            };
-            this.batch.push(entry);
-            // Flush immediately if batch is full or if error/fatal
-            if (this.batch.length >= this.batchSize || level === 'error') {
-                this.flush().catch(() => { }); // Ignore flush errors
-            }
-        }
-        callback();
-    }
-    /**
-     * Extract category from message prefix like [AUTH], [IDP], etc.
-     */
-    extractCategory(message) {
-        const match = message.match(/^\[([A-Z-]+)\]/);
-        return match ? match[1].toLowerCase() : 'app';
-    }
-    /**
-     * Extract metadata from winston info object
-     */
-    extractMeta(info) {
-        const { level, message, timestamp, ...rest } = info;
-        return Object.keys(rest).length > 0 ? rest : {};
-    }
-    /**
-     * Start the periodic flush timer
-     */
-    startFlushTimer() {
-        if (this.flushTimer)
-            return;
-        this.flushTimer = setInterval(() => {
-            if (this.batch.length > 0) {
-                this.flush().catch(() => { });
-            }
-        }, this.flushInterval);
-        // Don't prevent process exit
-        if (this.flushTimer.unref) {
-            this.flushTimer.unref();
-        }
-    }
-    /**
-     * Flush batch to Vibe
-     */
-    async flush() {
-        if (this.isFlushing || this.batch.length === 0)
-            return;
-        this.isFlushing = true;
-        const entries = [...this.batch];
-        this.batch = [];
-        try {
-            await this.sendToVibe(entries);
-        }
-        catch (err) {
-            // On failure, put entries back (up to limit to prevent memory issues)
-            if (this.batch.length < 100) {
-                this.batch = [...entries, ...this.batch].slice(0, 100);
-            }
-            // Log to console as fallback
-            console.error('[VibeLogTransport] Failed to flush logs:', err);
-        }
-        finally {
-            this.isFlushing = false;
-        }
-    }
-    /**
-     * Push log entries to Redis for async drain processing
-     */
-    async sendToVibe(entries) {
-        if (entries.length === 0)
-            return;
-        const redis = (0, redis_1.getRedis)();
-        // Format entries for the drain to process
-        const logRecords = entries.map(e => JSON.stringify({
-            level: e.level,
-            message: e.message,
-            timestamp: e.timestamp,
-            source: 'next-mvp',
-            app_slug: this.appSlug,
-            vibe_client_id: this.vibeClientId,
-            category: e.category,
-            error_code: e.meta?.errorCode || e.meta?.error_code,
-            stack: e.meta?.stack,
-            request_id: e.meta?.requestId || e.meta?.request_id,
-            user_id: e.meta?.userId || e.meta?.user_id,
-            path: e.meta?.path,
-            method: e.meta?.method,
-            status_code: e.meta?.statusCode || e.meta?.status_code,
-            duration_ms: e.meta?.durationMs || e.meta?.duration_ms,
-            meta: e.meta,
-            queued_at: new Date().toISOString(),
-        }));
-        // LPUSH all entries (newest first, drain will RPOP for FIFO)
-        await redis.lpush(REDIS_LOG_KEY, ...logRecords);
-        // Reset TTL on each write (1 week from last activity)
-        await redis.expire(REDIS_LOG_KEY, REDIS_LOG_TTL);
-    }
-    /**
-     * Close transport and flush remaining logs
-     */
-    close() {
-        if (this.flushTimer) {
-            clearInterval(this.flushTimer);
-            this.flushTimer = null;
-        }
-        // Final flush (best effort)
-        if (this.batch.length > 0) {
-            this.flush().catch(() => { });
-        }
-    }
-}
-exports.VibeLogTransport = VibeLogTransport;
-/**
- * Create a configured VibeLogTransport instance
- * Returns null if Redis is not configured (REDIS_URL env var)
- */
-function createVibeLogTransport(opts) {
-    const transport = new VibeLogTransport(opts);
-    // Return null if transport is disabled (no Redis)
-    if (!transport['enabled']) {
-        return null;
-    }
-    return transport;
-}
-exports.default = VibeLogTransport;

package/dist/edge/internal-api-url.d.ts

@@ -1,53 +0,0 @@
-/**
- * Internal API URL Utility for Edge Runtime
- *
- * INTERNAL_API_URL is REQUIRED. This is the URL for THIS application calling ITSELF.
- * Used for middleware to call its own API routes (e.g., /api/session/viability).
- *
- * WHY HTTP IS REQUIRED (not optional):
- * - This is the app calling its OWN backend within the same pod/container
- * - NextAuth cookies are encrypted based on request protocol
- * - TLS is terminated at ingress, so the pod receives HTTP internally
- * - Using HTTPS here causes cookie decryption failures
- * - This is NOT about "K8s internal traffic doesn't need TLS" - it's about
- *   protocol consistency for cookie encryption
- *
- * This is NOT for calling the IDP - use IDP_URL for that.
- *
- * For local dev, set INTERNAL_API_URL=http://localhost:3000 (or your dev port).
- *
- * @module edge/internal-api-url
- * @version 3.0.0
- */
-import { NextRequest } from 'next/server';
-/**
- * Get the internal API base URL for middleware to call its own API routes.
- *
- * THROWS if INTERNAL_API_URL is not set. No fallbacks.
- *
- * @param request - The Next.js request object (unused, kept for API compatibility)
- * @returns Base URL string for constructing internal API calls
- * @throws Error if INTERNAL_API_URL environment variable is not set
- *
- * @example
- * ```typescript
- * import { getInternalApiUrl } from '@payez/next-mvp/edge';
- *
- * export async function middleware(request: NextRequest) {
- *   const baseUrl = getInternalApiUrl(request);
- *   const apiUrl = new URL('/api/session/check', baseUrl);
- *
- *   const response = await fetch(apiUrl, {
- *     headers: {
- *       'Cookie': request.headers.get('cookie') || ''
- *     }
- *   });
- * }
- * ```
- *
- * @environment INTERNAL_API_URL - REQUIRED. URL for this app to call ITSELF.
- *   MUST be HTTP (not HTTPS) - see module docs for why.
- *   K8s: http://myapp.namespace.svc.cluster.local:80
- *   Local: http://localhost:3000
- */
-export declare function getInternalApiUrl(request: NextRequest): string;

package/dist/edge/internal-api-url.js

@@ -1,63 +0,0 @@
-"use strict";
-/**
- * Internal API URL Utility for Edge Runtime
- *
- * INTERNAL_API_URL is REQUIRED. This is the URL for THIS application calling ITSELF.
- * Used for middleware to call its own API routes (e.g., /api/session/viability).
- *
- * WHY HTTP IS REQUIRED (not optional):
- * - This is the app calling its OWN backend within the same pod/container
- * - NextAuth cookies are encrypted based on request protocol
- * - TLS is terminated at ingress, so the pod receives HTTP internally
- * - Using HTTPS here causes cookie decryption failures
- * - This is NOT about "K8s internal traffic doesn't need TLS" - it's about
- *   protocol consistency for cookie encryption
- *
- * This is NOT for calling the IDP - use IDP_URL for that.
- *
- * For local dev, set INTERNAL_API_URL=http://localhost:3000 (or your dev port).
- *
- * @module edge/internal-api-url
- * @version 3.0.0
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getInternalApiUrl = getInternalApiUrl;
-/**
- * Get the internal API base URL for middleware to call its own API routes.
- *
- * THROWS if INTERNAL_API_URL is not set. No fallbacks.
- *
- * @param request - The Next.js request object (unused, kept for API compatibility)
- * @returns Base URL string for constructing internal API calls
- * @throws Error if INTERNAL_API_URL environment variable is not set
- *
- * @example
- * ```typescript
- * import { getInternalApiUrl } from '@payez/next-mvp/edge';
- *
- * export async function middleware(request: NextRequest) {
- *   const baseUrl = getInternalApiUrl(request);
- *   const apiUrl = new URL('/api/session/check', baseUrl);
- *
- *   const response = await fetch(apiUrl, {
- *     headers: {
- *       'Cookie': request.headers.get('cookie') || ''
- *     }
- *   });
- * }
- * ```
- *
- * @environment INTERNAL_API_URL - REQUIRED. URL for this app to call ITSELF.
- *   MUST be HTTP (not HTTPS) - see module docs for why.
- *   K8s: http://myapp.namespace.svc.cluster.local:80
- *   Local: http://localhost:3000
- */
-function getInternalApiUrl(request) {
-    const internalUrl = process.env.INTERNAL_API_URL;
-    if (!internalUrl) {
-        throw new Error('[INTERNAL_API_URL] FATAL: INTERNAL_API_URL environment variable is REQUIRED. ' +
-            'This is for the app to call ITSELF. MUST be HTTP (not HTTPS). ' +
-            'Set to http://myapp.namespace.svc.cluster.local:80 (K8s) or http://localhost:3000 (local).');
-    }
-    return internalUrl;
-}

package/dist/edge/middleware.d.ts

@@ -1,14 +0,0 @@
-/**
- * Edge Runtime Compatible Exports
- *
- * This module exports only Edge Runtime compatible code for use in Next.js middleware.
- * Client-side utilities that depend on browser APIs or server-only code are excluded.
- */
-export { makeAuthDecision } from '../auth/auth-decision';
-export { isUnauthenticatedRoute, configurePublicRoutes, getRouteConfig, configure2FABypassRoutes, should2FABypass, get2FABypassConfig } from '../auth/route-config';
-export type { UnauthenticatedRouteConfig, ProtectedRouteConfig } from '../auth/route-config';
-export { createMvpMiddleware } from '../middleware/create-middleware';
-export type { MvpMiddlewareOptions, CircuitBreakerProvider, MiddlewareLogger, AuthContext, AuthAction, SessionPointer, SessionStatus } from '../middleware/create-middleware';
-export { TwoFactorPresets, AMRValues, ACRLevels, validateAMR, validateACR, checkTwoFactorRequirements } from '../middleware/twofa-presets';
-export type { TwoFactorRequirements, RouteConfig } from '../middleware/twofa-presets';
-export { getInternalApiUrl } from './internal-api-url';

package/dist/edge/middleware.js

@@ -1,32 +0,0 @@
-"use strict";
-/**
- * Edge Runtime Compatible Exports
- *
- * This module exports only Edge Runtime compatible code for use in Next.js middleware.
- * Client-side utilities that depend on browser APIs or server-only code are excluded.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getInternalApiUrl = exports.checkTwoFactorRequirements = exports.validateACR = exports.validateAMR = exports.ACRLevels = exports.AMRValues = exports.TwoFactorPresets = exports.createMvpMiddleware = exports.get2FABypassConfig = exports.should2FABypass = exports.configure2FABypassRoutes = exports.getRouteConfig = exports.configurePublicRoutes = exports.isUnauthenticatedRoute = exports.makeAuthDecision = void 0;
-// Authentication middleware and configuration (Edge Runtime compatible)
-var auth_decision_1 = require("../auth/auth-decision");
-Object.defineProperty(exports, "makeAuthDecision", { enumerable: true, get: function () { return auth_decision_1.makeAuthDecision; } });
-var route_config_1 = require("../auth/route-config");
-Object.defineProperty(exports, "isUnauthenticatedRoute", { enumerable: true, get: function () { return route_config_1.isUnauthenticatedRoute; } });
-Object.defineProperty(exports, "configurePublicRoutes", { enumerable: true, get: function () { return route_config_1.configurePublicRoutes; } });
-Object.defineProperty(exports, "getRouteConfig", { enumerable: true, get: function () { return route_config_1.getRouteConfig; } });
-Object.defineProperty(exports, "configure2FABypassRoutes", { enumerable: true, get: function () { return route_config_1.configure2FABypassRoutes; } });
-Object.defineProperty(exports, "should2FABypass", { enumerable: true, get: function () { return route_config_1.should2FABypass; } });
-Object.defineProperty(exports, "get2FABypassConfig", { enumerable: true, get: function () { return route_config_1.get2FABypassConfig; } });
-var create_middleware_1 = require("../middleware/create-middleware");
-Object.defineProperty(exports, "createMvpMiddleware", { enumerable: true, get: function () { return create_middleware_1.createMvpMiddleware; } });
-// Two-Factor Authentication Presets (Edge Runtime compatible)
-var twofa_presets_1 = require("../middleware/twofa-presets");
-Object.defineProperty(exports, "TwoFactorPresets", { enumerable: true, get: function () { return twofa_presets_1.TwoFactorPresets; } });
-Object.defineProperty(exports, "AMRValues", { enumerable: true, get: function () { return twofa_presets_1.AMRValues; } });
-Object.defineProperty(exports, "ACRLevels", { enumerable: true, get: function () { return twofa_presets_1.ACRLevels; } });
-Object.defineProperty(exports, "validateAMR", { enumerable: true, get: function () { return twofa_presets_1.validateAMR; } });
-Object.defineProperty(exports, "validateACR", { enumerable: true, get: function () { return twofa_presets_1.validateACR; } });
-Object.defineProperty(exports, "checkTwoFactorRequirements", { enumerable: true, get: function () { return twofa_presets_1.checkTwoFactorRequirements; } });
-// Internal API URL utilities for Edge Runtime
-var internal_api_url_1 = require("./internal-api-url");
-Object.defineProperty(exports, "getInternalApiUrl", { enumerable: true, get: function () { return internal_api_url_1.getInternalApiUrl; } });

package/dist/hooks/useAuth.d.ts

@@ -1,23 +0,0 @@
-import { ApiResult } from '../lib/standardized-client-api';
-export interface CustomSession {
-    user: {
-        id: string;
-        email: string;
-        roles?: string[];
-        twoFactorMethod?: string;
-        twoFactorSessionVerified?: boolean;
-        requiresTwoFactor?: boolean;
-    };
-    accessToken?: string;
-    refreshToken?: string;
-    expires: string;
-    error?: string;
-}
-export interface UseAuthResult {
-    session: CustomSession | null;
-    status: 'loading' | 'authenticated' | 'unauthenticated';
-    isLoading: boolean;
-    isAuthenticated: boolean;
-    apiCall: <T>(url: string, method?: 'GET' | 'POST' | 'PUT' | 'DELETE', data?: any) => Promise<ApiResult<T>>;
-}
-export declare function useAuth(): UseAuthResult;

package/dist/hooks/useAuth.js

@@ -1,81 +0,0 @@
-"use strict";
-'use client';
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.useAuth = useAuth;
-/**
- * ⚠️ WARNING: This hook cannot be used directly from the @payez/next-mvp package!
- *
- * @deprecated Import this hook from your local app instead
- *
- * **Why?** React Context (SessionProvider) cannot cross package boundaries in file:// linked packages.
- *
- * **Solution:** Create a local version in your app (e.g., src/hooks/useAuth.ts) that imports standardizedApi:
- *
- * @example
- * ```typescript
- * // src/hooks/useAuth.ts (YOUR APP)
- * 'use client';
- * import { useSession } from 'next-auth/react';
- * import { standardizedApi } from '@payez/next-mvp/lib/standardized-client-api';
- *
- * export function useAuth() {
- *   const { data: session } = useSession(); // Works in your app context
- *   // ... implementation
- * }
- * ```
- *
- * @see {@link https://github.com/payez/next-mvp/blob/main/docs/centralized-auth-api-pattern.md#why-local-hooks-for-auth Complete documentation}
- */
-const react_1 = require("next-auth/react");
-const react_2 = require("react");
-const navigation_1 = require("next/navigation");
-const standardized_client_api_1 = require("../lib/standardized-client-api");
-function useAuth() {
-    const { data: session, status } = (0, react_1.useSession)();
-    const router = (0, navigation_1.useRouter)();
-    const isLoading = status === 'loading';
-    const isAuthenticated = status === 'authenticated' && !!session?.accessToken;
-    // Handle sign out with redirect
-    const handleSignOut = (0, react_2.useCallback)(async () => {
-        await (0, react_1.signOut)({ redirect: false });
-        router.push('/account-auth/login?error=SessionExpired');
-    }, [router]);
-    // API helper that automatically includes the auth token and uses standardized API
-    const apiCall = (0, react_2.useCallback)(async (url, method = 'GET', data) => {
-        if (!session?.accessToken) {
-            console.error('[useAuth] No access token available');
-            throw new Error('Not authenticated');
-        }
-        try {
-            // Use standardized API which handles token refresh and validates response format
-            switch (method) {
-                case 'GET':
-                    return await standardized_client_api_1.standardizedApi.get(url, session.accessToken);
-                case 'POST':
-                    return await standardized_client_api_1.standardizedApi.post(url, data, session.accessToken);
-                case 'PUT':
-                    return await standardized_client_api_1.standardizedApi.put(url, data);
-                case 'DELETE':
-                    return await standardized_client_api_1.standardizedApi.delete(url);
-                default:
-                    throw new Error(`Unsupported method: ${method}`);
-            }
-        }
-        catch (error) {
-            console.error('[useAuth] API call failed:', error);
-            // standardizedApi handles token refresh internally, but if we still get auth errors, sign out
-            if (error instanceof Error && error.message.includes('Authentication failed')) {
-                console.warn('[useAuth] Authentication failed, signing out...');
-                await handleSignOut();
-            }
-            throw error;
-        }
-    }, [session?.accessToken, handleSignOut]);
-    return {
-        session: session,
-        status,
-        isLoading,
-        isAuthenticated,
-        apiCall
-    };
-}

package/dist/hooks/useAuthSettings.d.ts

@@ -1,59 +0,0 @@
-/**
- * useAuthSettings Hook
- *
- * Client-side hook to access auth settings from the IDP config.
- * Settings are passed through the session from server-side config.
- */
-import type { AuthSettings } from '../lib/idp-client-config';
-/**
- * Hook to access auth settings from the session.
- *
- * Auth settings are populated from IDP config on the server side
- * and included in the session for client-side access.
- *
- * @returns AuthSettings or null if not available
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const authSettings = useAuthSettings();
- *
- *   if (authSettings?.require2FA) {
- *     return <TwoFactorPrompt />;
- *   }
- *
- *   return <Dashboard />;
- * }
- * ```
- */
-export declare function useAuthSettings(): AuthSettings | null;
-/**
- * Hook to check if 2FA is required based on auth settings.
- *
- * @returns boolean indicating if 2FA is required
- */
-export declare function useRequires2FA(): boolean;
-/**
- * Hook to get allowed 2FA methods.
- *
- * @returns Array of allowed 2FA method strings (e.g., ['email', 'sms', 'totp'])
- */
-export declare function useAllowed2FAMethods(): string[];
-/**
- * Hook to get session timeout settings.
- *
- * @returns Object with session and idle timeout minutes
- */
-export declare function useSessionTimeouts(): {
-    sessionTimeoutMinutes: number;
-    idleTimeoutMinutes: number;
-};
-/**
- * Hook to check if remember me is allowed.
- *
- * @returns Object with allowRememberMe flag and rememberMeDays
- */
-export declare function useRememberMeSettings(): {
-    allowRememberMe: boolean;
-    rememberMeDays: number;
-};

package/dist/hooks/useAuthSettings.js

@@ -1,93 +0,0 @@
-"use strict";
-/**
- * useAuthSettings Hook
- *
- * Client-side hook to access auth settings from the IDP config.
- * Settings are passed through the session from server-side config.
- */
-'use client';
-/**
- * useAuthSettings Hook
- *
- * Client-side hook to access auth settings from the IDP config.
- * Settings are passed through the session from server-side config.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.useAuthSettings = useAuthSettings;
-exports.useRequires2FA = useRequires2FA;
-exports.useAllowed2FAMethods = useAllowed2FAMethods;
-exports.useSessionTimeouts = useSessionTimeouts;
-exports.useRememberMeSettings = useRememberMeSettings;
-const react_1 = require("next-auth/react");
-/**
- * Hook to access auth settings from the session.
- *
- * Auth settings are populated from IDP config on the server side
- * and included in the session for client-side access.
- *
- * @returns AuthSettings or null if not available
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const authSettings = useAuthSettings();
- *
- *   if (authSettings?.require2FA) {
- *     return <TwoFactorPrompt />;
- *   }
- *
- *   return <Dashboard />;
- * }
- * ```
- */
-function useAuthSettings() {
-    const { data: session } = (0, react_1.useSession)();
-    if (!session) {
-        return null;
-    }
-    // Auth settings are included in the session from server-side config
-    const sessionWithSettings = session;
-    return sessionWithSettings.authSettings || null;
-}
-/**
- * Hook to check if 2FA is required based on auth settings.
- *
- * @returns boolean indicating if 2FA is required
- */
-function useRequires2FA() {
-    const authSettings = useAuthSettings();
-    return authSettings?.require2FA ?? true; // Default to true for security
-}
-/**
- * Hook to get allowed 2FA methods.
- *
- * @returns Array of allowed 2FA method strings (e.g., ['email', 'sms', 'totp'])
- */
-function useAllowed2FAMethods() {
-    const authSettings = useAuthSettings();
-    return authSettings?.allowed2FAMethods ?? ['email', 'sms'];
-}
-/**
- * Hook to get session timeout settings.
- *
- * @returns Object with session and idle timeout minutes
- */
-function useSessionTimeouts() {
-    const authSettings = useAuthSettings();
-    return {
-        sessionTimeoutMinutes: authSettings?.sessionTimeoutMinutes ?? 60,
-        idleTimeoutMinutes: authSettings?.idleTimeoutMinutes ?? 15,
-    };
-}
-/**
- * Hook to check if remember me is allowed.
- *
- * @returns Object with allowRememberMe flag and rememberMeDays
- */
-function useRememberMeSettings() {
-    const authSettings = useAuthSettings();
-    return {
-        allowRememberMe: authSettings?.allowRememberMe ?? true,
-        rememberMeDays: authSettings?.rememberMeDays ?? 30,
-    };
-}

package/dist/hooks/useAvailableProviders.d.ts

@@ -1,45 +0,0 @@
-/**
- * useAvailableProviders Hook
- *
- * Fetches the list of OAuth providers actually configured in NextAuth.
- * This ensures UI only shows buttons for providers that are enabled in IDP.
- */
-import { LiteralUnion, ClientSafeProvider } from 'next-auth/react';
-import { BuiltInProviderType } from 'next-auth/providers/index';
-import type { FederatedProvider } from '../types/auth';
-export interface UseAvailableProvidersResult {
-    providers: FederatedProvider[];
-    isLoading: boolean;
-    error: Error | null;
-    rawProviders: Record<LiteralUnion<BuiltInProviderType>, ClientSafeProvider> | null;
-}
-/**
- * Hook to get available OAuth providers from NextAuth.
- *
- * Returns only the providers that are actually configured in auth-options,
- * which reflects what's enabled in IDP config.
- *
- * @example
- * ```tsx
- * function SignupPage() {
- *   const { providers, isLoading } = useAvailableProviders();
- *
- *   if (isLoading) return <Spinner />;
- *
- *   return (
- *     <FederatedAuthSection
- *       providers={providers}
- *       onProviderClick={handleClick}
- *     />
- *   );
- * }
- * ```
- */
-export declare function useAvailableProviders(): UseAvailableProvidersResult;
-/**
- * Check if a specific provider is available.
- *
- * @param provider The provider to check
- * @returns boolean indicating if provider is configured
- */
-export declare function useIsProviderAvailable(provider: FederatedProvider): boolean;