npm - @payez/next-mvp - Versions diffs - 3.9.1 → 4.0.1 - Mend

@payez/next-mvp 3.9.1 → 4.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (526) hide show

package/package.json +6 -18
package/src/api/auth-handler.ts +550 -549
package/src/api-handlers/account/change-password.ts +5 -8
package/src/api-handlers/admin/analytics.ts +4 -6
package/src/api-handlers/admin/audit.ts +5 -7
package/src/api-handlers/admin/index.ts +1 -2
package/src/api-handlers/admin/redis-sessions.ts +6 -8
package/src/api-handlers/admin/sessions.ts +5 -7
package/src/api-handlers/admin/site-logs.ts +8 -10
package/src/api-handlers/admin/stats.ts +4 -6
package/src/api-handlers/admin/users.ts +5 -7
package/src/api-handlers/admin/vibe-data.ts +10 -12
package/src/api-handlers/auth/refresh.ts +5 -7
package/src/api-handlers/auth/signout.ts +5 -6
package/src/api-handlers/auth/status.ts +4 -7
package/src/api-handlers/auth/update-session.ts +123 -125
package/src/api-handlers/auth/verify-code.ts +9 -13
package/src/api-handlers/session/viability.ts +10 -47
package/src/api-handlers/test/force-expire.ts +4 -11
package/src/auth/auth-decision.ts +1 -1
package/src/auth/better-auth.ts +138 -141
package/src/auth/route-config.ts +219 -219
package/src/auth/utils/token-utils.ts +0 -1
package/src/client/AuthContext.tsx +6 -2
package/src/client/fetch-with-auth.ts +47 -47
package/src/components/SessionSync.tsx +6 -5
package/src/components/account/MobileNavDrawer.tsx +3 -3
package/src/components/account/UserAvatarMenu.tsx +6 -3
package/src/components/admin/VibeAdminLayout.tsx +4 -2
package/src/config/logger.ts +1 -1
package/src/hooks/useAuth.ts +117 -115
package/src/hooks/useAuthSettings.ts +2 -2
package/src/hooks/useAvailableProviders.ts +9 -5
package/src/hooks/useSessionExpiration.ts +101 -102
package/src/hooks/useViabilitySession.ts +336 -335
package/src/index.ts +60 -63
package/src/lib/api-handler.ts +0 -1
package/src/lib/app-slug.ts +6 -6
package/src/lib/standardized-client-api.ts +901 -895
package/src/lib/startup-init.ts +243 -247
package/src/lib/test-aware-get-token.ts +22 -12
package/src/lib/token-lifecycle.ts +12 -53
package/src/pages/admin-login/page.tsx +9 -17
package/src/pages/client-admin/ClientSiteAdminPage.tsx +4 -2
package/src/pages/login/page.tsx +21 -28
package/src/pages/showcase/ShowcasePage.tsx +4 -2
package/src/pages/test-env/EmergencyLogoutPage.tsx +7 -6
package/src/pages/test-env/JwtInspectPage.tsx +5 -3
package/src/pages/test-env/RefreshTokenPage.tsx +157 -155
package/src/pages/test-env/TestEnvPage.tsx +4 -2
package/src/pages/verify-code/page.tsx +10 -6
package/src/routes/auth/logout.ts +7 -25
package/src/routes/auth/nextauth.ts +45 -71
package/src/routes/auth/session.ts +25 -50
package/src/routes/auth/viability.ts +7 -19
package/src/server/auth.ts +60 -0
package/src/stores/authStore.ts +1899 -1904
package/src/utils/logout.ts +30 -30
package/dist/api/auth-handler.d.ts +0 -67
package/dist/api/auth-handler.js +0 -397
package/dist/api/index.d.ts +0 -10
package/dist/api/index.js +0 -19
package/dist/api-handlers/account/change-password.d.ts +0 -9
package/dist/api-handlers/account/change-password.js +0 -112
package/dist/api-handlers/account/masked-info.d.ts +0 -2
package/dist/api-handlers/account/masked-info.js +0 -41
package/dist/api-handlers/account/profile.d.ts +0 -3
package/dist/api-handlers/account/profile.js +0 -63
package/dist/api-handlers/account/recovery/initiate.d.ts +0 -2
package/dist/api-handlers/account/recovery/initiate.js +0 -26
package/dist/api-handlers/account/recovery/send-code.d.ts +0 -2
package/dist/api-handlers/account/recovery/send-code.js +0 -28
package/dist/api-handlers/account/recovery/verify-code.d.ts +0 -2
package/dist/api-handlers/account/recovery/verify-code.js +0 -28
package/dist/api-handlers/account/reset-password.d.ts +0 -2
package/dist/api-handlers/account/reset-password.js +0 -26
package/dist/api-handlers/account/send-code.d.ts +0 -24
package/dist/api-handlers/account/send-code.js +0 -60
package/dist/api-handlers/account/update-phone.d.ts +0 -27
package/dist/api-handlers/account/update-phone.js +0 -64
package/dist/api-handlers/account/validate-password.d.ts +0 -17
package/dist/api-handlers/account/validate-password.js +0 -81
package/dist/api-handlers/account/verify-email.d.ts +0 -26
package/dist/api-handlers/account/verify-email.js +0 -106
package/dist/api-handlers/account/verify-sms.d.ts +0 -26
package/dist/api-handlers/account/verify-sms.js +0 -106
package/dist/api-handlers/admin/analytics.d.ts +0 -20
package/dist/api-handlers/admin/analytics.js +0 -379
package/dist/api-handlers/admin/audit.d.ts +0 -20
package/dist/api-handlers/admin/audit.js +0 -214
package/dist/api-handlers/admin/index.d.ts +0 -22
package/dist/api-handlers/admin/index.js +0 -43
package/dist/api-handlers/admin/redis-sessions.d.ts +0 -36
package/dist/api-handlers/admin/redis-sessions.js +0 -204
package/dist/api-handlers/admin/sessions.d.ts +0 -21
package/dist/api-handlers/admin/sessions.js +0 -284
package/dist/api-handlers/admin/site-logs.d.ts +0 -46
package/dist/api-handlers/admin/site-logs.js +0 -318
package/dist/api-handlers/admin/stats.d.ts +0 -21
package/dist/api-handlers/admin/stats.js +0 -240
package/dist/api-handlers/admin/users.d.ts +0 -20
package/dist/api-handlers/admin/users.js +0 -222
package/dist/api-handlers/admin/vibe-data.d.ts +0 -80
package/dist/api-handlers/admin/vibe-data.js +0 -268
package/dist/api-handlers/anon/preferences.d.ts +0 -37
package/dist/api-handlers/anon/preferences.js +0 -96
package/dist/api-handlers/auth/jwks.d.ts +0 -2
package/dist/api-handlers/auth/jwks.js +0 -24
package/dist/api-handlers/auth/login.d.ts +0 -42
package/dist/api-handlers/auth/login.js +0 -178
package/dist/api-handlers/auth/refresh.d.ts +0 -74
package/dist/api-handlers/auth/refresh.js +0 -635
package/dist/api-handlers/auth/signout.d.ts +0 -37
package/dist/api-handlers/auth/signout.js +0 -187
package/dist/api-handlers/auth/status.d.ts +0 -8
package/dist/api-handlers/auth/status.js +0 -26
package/dist/api-handlers/auth/update-session.d.ts +0 -37
package/dist/api-handlers/auth/update-session.js +0 -95
package/dist/api-handlers/auth/validate.d.ts +0 -6
package/dist/api-handlers/auth/validate.js +0 -43
package/dist/api-handlers/auth/verify-code.d.ts +0 -43
package/dist/api-handlers/auth/verify-code.js +0 -94
package/dist/api-handlers/session/refresh-viability.d.ts +0 -14
package/dist/api-handlers/session/refresh-viability.js +0 -39
package/dist/api-handlers/session/viability.d.ts +0 -13
package/dist/api-handlers/session/viability.js +0 -146
package/dist/api-handlers/test/force-expire.d.ts +0 -23
package/dist/api-handlers/test/force-expire.js +0 -65
package/dist/auth/auth-decision.d.ts +0 -39
package/dist/auth/auth-decision.js +0 -182
package/dist/auth/auth-options.d.ts +0 -57
package/dist/auth/auth-options.js +0 -213
package/dist/auth/better-auth.d.ts +0 -82
package/dist/auth/better-auth.js +0 -122
package/dist/auth/callbacks/index.d.ts +0 -6
package/dist/auth/callbacks/index.js +0 -12
package/dist/auth/callbacks/jwt.d.ts +0 -45
package/dist/auth/callbacks/jwt.js +0 -305
package/dist/auth/callbacks/session.d.ts +0 -60
package/dist/auth/callbacks/session.js +0 -170
package/dist/auth/callbacks/signin.d.ts +0 -23
package/dist/auth/callbacks/signin.js +0 -44
package/dist/auth/events/index.d.ts +0 -4
package/dist/auth/events/index.js +0 -8
package/dist/auth/events/signout.d.ts +0 -17
package/dist/auth/events/signout.js +0 -32
package/dist/auth/providers/credentials.d.ts +0 -32
package/dist/auth/providers/credentials.js +0 -223
package/dist/auth/providers/index.d.ts +0 -5
package/dist/auth/providers/index.js +0 -21
package/dist/auth/providers/oauth.d.ts +0 -26
package/dist/auth/providers/oauth.js +0 -105
package/dist/auth/route-config.d.ts +0 -66
package/dist/auth/route-config.js +0 -190
package/dist/auth/types/auth-types.d.ts +0 -417
package/dist/auth/types/auth-types.js +0 -53
package/dist/auth/types/index.d.ts +0 -6
package/dist/auth/types/index.js +0 -22
package/dist/auth/unauthenticated-routes.d.ts +0 -1
package/dist/auth/unauthenticated-routes.js +0 -19
package/dist/auth/utils/idp-client.d.ts +0 -94
package/dist/auth/utils/idp-client.js +0 -384
package/dist/auth/utils/index.d.ts +0 -5
package/dist/auth/utils/index.js +0 -21
package/dist/auth/utils/token-utils.d.ts +0 -84
package/dist/auth/utils/token-utils.js +0 -219
package/dist/client/AuthContext.d.ts +0 -19
package/dist/client/AuthContext.js +0 -112
package/dist/client/better-auth-client.d.ts +0 -1020
package/dist/client/better-auth-client.js +0 -68
package/dist/client/fetch-with-auth.d.ts +0 -11
package/dist/client/fetch-with-auth.js +0 -44
package/dist/client/fetchWithSession.d.ts +0 -3
package/dist/client/fetchWithSession.js +0 -24
package/dist/client/index.d.ts +0 -9
package/dist/client/index.js +0 -20
package/dist/client/useAnonSession.d.ts +0 -36
package/dist/client/useAnonSession.js +0 -99
package/dist/components/SessionSync.d.ts +0 -13
package/dist/components/SessionSync.js +0 -119
package/dist/components/SignalRHealthCheck.d.ts +0 -10
package/dist/components/SignalRHealthCheck.js +0 -97
package/dist/components/account/MobileNavDrawer.d.ts +0 -32
package/dist/components/account/MobileNavDrawer.js +0 -81
package/dist/components/account/UserAvatarMenu.d.ts +0 -20
package/dist/components/account/UserAvatarMenu.js +0 -88
package/dist/components/account/index.d.ts +0 -9
package/dist/components/account/index.js +0 -13
package/dist/components/admin/AlertSettingsTab.d.ts +0 -48
package/dist/components/admin/AlertSettingsTab.js +0 -351
package/dist/components/admin/AnalyticsTab.d.ts +0 -22
package/dist/components/admin/AnalyticsTab.js +0 -167
package/dist/components/admin/DataBrowserTab.d.ts +0 -19
package/dist/components/admin/DataBrowserTab.js +0 -252
package/dist/components/admin/LoggingSettingsTab.d.ts +0 -73
package/dist/components/admin/LoggingSettingsTab.js +0 -339
package/dist/components/admin/SessionsTab.d.ts +0 -37
package/dist/components/admin/SessionsTab.js +0 -165
package/dist/components/admin/StatsTab.d.ts +0 -53
package/dist/components/admin/StatsTab.js +0 -161
package/dist/components/admin/VibeAdminContext.d.ts +0 -32
package/dist/components/admin/VibeAdminContext.js +0 -38
package/dist/components/admin/VibeAdminLayout.d.ts +0 -11
package/dist/components/admin/VibeAdminLayout.js +0 -69
package/dist/components/admin/index.d.ts +0 -29
package/dist/components/admin/index.js +0 -44
package/dist/components/auth/FederatedAuthSection.d.ts +0 -8
package/dist/components/auth/FederatedAuthSection.js +0 -45
package/dist/components/auth/ModeAwareLoginPage.d.ts +0 -10
package/dist/components/auth/ModeAwareLoginPage.js +0 -42
package/dist/components/auth/ModeAwareSignupPage.d.ts +0 -9
package/dist/components/auth/ModeAwareSignupPage.js +0 -78
package/dist/components/auth/TraditionalAuthSection.d.ts +0 -14
package/dist/components/auth/TraditionalAuthSection.js +0 -20
package/dist/components/recovery/CompleteStep.d.ts +0 -5
package/dist/components/recovery/CompleteStep.js +0 -8
package/dist/components/recovery/InitiateRecoveryStep.d.ts +0 -8
package/dist/components/recovery/InitiateRecoveryStep.js +0 -20
package/dist/components/recovery/SelectMethodStep.d.ts +0 -8
package/dist/components/recovery/SelectMethodStep.js +0 -8
package/dist/components/recovery/SetPasswordStep.d.ts +0 -6
package/dist/components/recovery/SetPasswordStep.js +0 -20
package/dist/components/recovery/VerifyCodeStep.d.ts +0 -10
package/dist/components/recovery/VerifyCodeStep.js +0 -24
package/dist/components/reserved/ReservedRecoveryWarning.d.ts +0 -38
package/dist/components/reserved/ReservedRecoveryWarning.js +0 -92
package/dist/components/reserved/ReservedStatusBox.d.ts +0 -30
package/dist/components/reserved/ReservedStatusBox.js +0 -71
package/dist/components/ui/BetaBadge.d.ts +0 -29
package/dist/components/ui/BetaBadge.js +0 -38
package/dist/components/ui/Footer.d.ts +0 -37
package/dist/components/ui/Footer.js +0 -41
package/dist/config/env.d.ts +0 -66
package/dist/config/env.js +0 -57
package/dist/config/logger.d.ts +0 -57
package/dist/config/logger.js +0 -73
package/dist/config/logging-config.d.ts +0 -30
package/dist/config/logging-config.js +0 -122
package/dist/config/unauthenticated-routes.d.ts +0 -17
package/dist/config/unauthenticated-routes.js +0 -24
package/dist/config/vibe-log-transport.d.ts +0 -81
package/dist/config/vibe-log-transport.js +0 -212
package/dist/edge/internal-api-url.d.ts +0 -53
package/dist/edge/internal-api-url.js +0 -63
package/dist/edge/middleware.d.ts +0 -14
package/dist/edge/middleware.js +0 -32
package/dist/hooks/useAuth.d.ts +0 -23
package/dist/hooks/useAuth.js +0 -81
package/dist/hooks/useAuthSettings.d.ts +0 -59
package/dist/hooks/useAuthSettings.js +0 -93
package/dist/hooks/useAvailableProviders.d.ts +0 -45
package/dist/hooks/useAvailableProviders.js +0 -108
package/dist/hooks/usePasswordValidation.d.ts +0 -27
package/dist/hooks/usePasswordValidation.js +0 -102
package/dist/hooks/useProfile.d.ts +0 -15
package/dist/hooks/useProfile.js +0 -59
package/dist/hooks/usePublicAuthSettings.d.ts +0 -56
package/dist/hooks/usePublicAuthSettings.js +0 -131
package/dist/hooks/useSessionExpiration.d.ts +0 -57
package/dist/hooks/useSessionExpiration.js +0 -72
package/dist/hooks/useViabilitySession.d.ts +0 -75
package/dist/hooks/useViabilitySession.js +0 -268
package/dist/index.d.ts +0 -12
package/dist/index.js +0 -55
package/dist/lib/anon-session.d.ts +0 -74
package/dist/lib/anon-session.js +0 -169
package/dist/lib/api-handler.d.ts +0 -123
package/dist/lib/api-handler.js +0 -478
package/dist/lib/app-slug.d.ts +0 -95
package/dist/lib/app-slug.js +0 -172
package/dist/lib/demo-mode.d.ts +0 -6
package/dist/lib/demo-mode.js +0 -16
package/dist/lib/geolocation.d.ts +0 -64
package/dist/lib/geolocation.js +0 -235
package/dist/lib/idp-client-config.d.ts +0 -75
package/dist/lib/idp-client-config.js +0 -425
package/dist/lib/idp-fetch.d.ts +0 -14
package/dist/lib/idp-fetch.js +0 -91
package/dist/lib/internal-api.d.ts +0 -87
package/dist/lib/internal-api.js +0 -122
package/dist/lib/jwt-decode-client.d.ts +0 -10
package/dist/lib/jwt-decode-client.js +0 -46
package/dist/lib/jwt-decode.d.ts +0 -48
package/dist/lib/jwt-decode.js +0 -57
package/dist/lib/nextauth-secret.d.ts +0 -10
package/dist/lib/nextauth-secret.js +0 -100
package/dist/lib/rate-limit-service.d.ts +0 -23
package/dist/lib/rate-limit-service.js +0 -6
package/dist/lib/redis.d.ts +0 -5
package/dist/lib/redis.js +0 -28
package/dist/lib/refresh-token-validator.d.ts +0 -13
package/dist/lib/refresh-token-validator.js +0 -117
package/dist/lib/roles.d.ts +0 -145
package/dist/lib/roles.js +0 -168
package/dist/lib/secret-validation.d.ts +0 -4
package/dist/lib/secret-validation.js +0 -14
package/dist/lib/session-store.d.ts +0 -170
package/dist/lib/session-store.js +0 -545
package/dist/lib/session.d.ts +0 -21
package/dist/lib/session.js +0 -26
package/dist/lib/site-logger.d.ts +0 -214
package/dist/lib/site-logger.js +0 -210
package/dist/lib/standardized-client-api.d.ts +0 -161
package/dist/lib/standardized-client-api.js +0 -786
package/dist/lib/startup-init.d.ts +0 -40
package/dist/lib/startup-init.js +0 -261
package/dist/lib/test-aware-get-token.d.ts +0 -2
package/dist/lib/test-aware-get-token.js +0 -81
package/dist/lib/token-expiry.d.ts +0 -14
package/dist/lib/token-expiry.js +0 -39
package/dist/lib/token-lifecycle.d.ts +0 -52
package/dist/lib/token-lifecycle.js +0 -398
package/dist/lib/types/api-responses.d.ts +0 -128
package/dist/lib/types/api-responses.js +0 -171
package/dist/lib/user-agent-parser.d.ts +0 -50
package/dist/lib/user-agent-parser.js +0 -220
package/dist/logging/api/admin-analytics.d.ts +0 -3
package/dist/logging/api/admin-analytics.js +0 -45
package/dist/logging/api/audit-log.d.ts +0 -3
package/dist/logging/api/audit-log.js +0 -52
package/dist/logging/components/AdminAnalyticsLayout.d.ts +0 -10
package/dist/logging/components/AdminAnalyticsLayout.js +0 -11
package/dist/logging/components/AuditLogViewer.d.ts +0 -7
package/dist/logging/components/AuditLogViewer.js +0 -51
package/dist/logging/components/ErrorMetricsCard.d.ts +0 -7
package/dist/logging/components/ErrorMetricsCard.js +0 -16
package/dist/logging/components/HealthMetricsCard.d.ts +0 -7
package/dist/logging/components/HealthMetricsCard.js +0 -19
package/dist/logging/hooks/useAdminAnalytics.d.ts +0 -24
package/dist/logging/hooks/useAdminAnalytics.js +0 -22
package/dist/logging/hooks/useAuditLog.d.ts +0 -6
package/dist/logging/hooks/useAuditLog.js +0 -25
package/dist/logging/hooks/useErrorMetrics.d.ts +0 -6
package/dist/logging/hooks/useErrorMetrics.js +0 -38
package/dist/logging/hooks/useHealthMetrics.d.ts +0 -6
package/dist/logging/hooks/useHealthMetrics.js +0 -41
package/dist/logging/index.d.ts +0 -11
package/dist/logging/index.js +0 -40
package/dist/logging/types/analytics.d.ts +0 -68
package/dist/logging/types/analytics.js +0 -3
package/dist/logging/types/audit.d.ts +0 -29
package/dist/logging/types/audit.js +0 -2
package/dist/logging/types/index.d.ts +0 -2
package/dist/logging/types/index.js +0 -19
package/dist/middleware/auth-decision.d.ts +0 -33
package/dist/middleware/auth-decision.js +0 -65
package/dist/middleware/create-middleware.d.ts +0 -102
package/dist/middleware/create-middleware.js +0 -469
package/dist/middleware/rbac-check.d.ts +0 -51
package/dist/middleware/rbac-check.js +0 -219
package/dist/middleware/twofa-presets.d.ts +0 -134
package/dist/middleware/twofa-presets.js +0 -175
package/dist/models/DecodedAccessToken.d.ts +0 -17
package/dist/models/DecodedAccessToken.js +0 -2
package/dist/models/SessionModel.d.ts +0 -122
package/dist/models/SessionModel.js +0 -136
package/dist/pages/admin-login/page.d.ts +0 -31
package/dist/pages/admin-login/page.js +0 -83
package/dist/pages/admin-page-permissions/PagePermissionsAdminPage.d.ts +0 -18
package/dist/pages/admin-page-permissions/PagePermissionsAdminPage.js +0 -276
package/dist/pages/admin-page-permissions/index.d.ts +0 -6
package/dist/pages/admin-page-permissions/index.js +0 -13
package/dist/pages/admin-roles/RolesAdminPage.d.ts +0 -16
package/dist/pages/admin-roles/RolesAdminPage.js +0 -261
package/dist/pages/admin-roles/index.d.ts +0 -8
package/dist/pages/admin-roles/index.js +0 -15
package/dist/pages/admin-roles/modals.d.ts +0 -72
package/dist/pages/admin-roles/modals.js +0 -154
package/dist/pages/client-admin/ClientSiteAdminPage.d.ts +0 -79
package/dist/pages/client-admin/ClientSiteAdminPage.js +0 -177
package/dist/pages/client-admin/index.d.ts +0 -32
package/dist/pages/client-admin/index.js +0 -37
package/dist/pages/coming-soon/page.d.ts +0 -8
package/dist/pages/coming-soon/page.js +0 -28
package/dist/pages/login/page.d.ts +0 -22
package/dist/pages/login/page.js +0 -239
package/dist/pages/profile/EnhancedProfilePage.d.ts +0 -13
package/dist/pages/profile/EnhancedProfilePage.js +0 -150
package/dist/pages/profile/index.d.ts +0 -8
package/dist/pages/profile/index.js +0 -16
package/dist/pages/profile/page.d.ts +0 -19
package/dist/pages/profile/page.js +0 -47
package/dist/pages/profile/profile-patch.d.ts +0 -1
package/dist/pages/profile/profile-patch.js +0 -281
package/dist/pages/recovery/page.d.ts +0 -1
package/dist/pages/recovery/page.js +0 -142
package/dist/pages/roles/MyRolesPage.d.ts +0 -24
package/dist/pages/roles/MyRolesPage.js +0 -71
package/dist/pages/roles/components.d.ts +0 -63
package/dist/pages/roles/components.js +0 -108
package/dist/pages/roles/index.d.ts +0 -8
package/dist/pages/roles/index.js +0 -19
package/dist/pages/security/EnhancedSecurityPage.d.ts +0 -14
package/dist/pages/security/EnhancedSecurityPage.js +0 -248
package/dist/pages/security/index.d.ts +0 -8
package/dist/pages/security/index.js +0 -16
package/dist/pages/security/page.d.ts +0 -21
package/dist/pages/security/page.js +0 -212
package/dist/pages/security/security-patch.d.ts +0 -1
package/dist/pages/security/security-patch.js +0 -302
package/dist/pages/settings/EnhancedSettingsPage.d.ts +0 -46
package/dist/pages/settings/EnhancedSettingsPage.js +0 -231
package/dist/pages/settings/index.d.ts +0 -8
package/dist/pages/settings/index.js +0 -16
package/dist/pages/settings/page.d.ts +0 -7
package/dist/pages/settings/page.js +0 -26
package/dist/pages/showcase/ShowcasePage.d.ts +0 -13
package/dist/pages/showcase/ShowcasePage.js +0 -140
package/dist/pages/showcase/index.d.ts +0 -12
package/dist/pages/showcase/index.js +0 -17
package/dist/pages/test-env/EmergencyLogoutPage.d.ts +0 -14
package/dist/pages/test-env/EmergencyLogoutPage.js +0 -98
package/dist/pages/test-env/JwtInspectPage.d.ts +0 -14
package/dist/pages/test-env/JwtInspectPage.js +0 -114
package/dist/pages/test-env/RefreshTokenPage.d.ts +0 -15
package/dist/pages/test-env/RefreshTokenPage.js +0 -91
package/dist/pages/test-env/TestEnvPage.d.ts +0 -13
package/dist/pages/test-env/TestEnvPage.js +0 -49
package/dist/pages/test-env/index.d.ts +0 -24
package/dist/pages/test-env/index.js +0 -32
package/dist/pages/verify-code/page.d.ts +0 -30
package/dist/pages/verify-code/page.js +0 -408
package/dist/routes/account/index.d.ts +0 -28
package/dist/routes/account/index.js +0 -71
package/dist/routes/account/masked-info.d.ts +0 -33
package/dist/routes/account/masked-info.js +0 -39
package/dist/routes/account/send-code.d.ts +0 -37
package/dist/routes/account/send-code.js +0 -42
package/dist/routes/account/update-phone.d.ts +0 -13
package/dist/routes/account/update-phone.js +0 -17
package/dist/routes/account/verify-email.d.ts +0 -38
package/dist/routes/account/verify-email.js +0 -43
package/dist/routes/account/verify-sms.d.ts +0 -38
package/dist/routes/account/verify-sms.js +0 -43
package/dist/routes/auth/index.d.ts +0 -19
package/dist/routes/auth/index.js +0 -64
package/dist/routes/auth/logout.d.ts +0 -31
package/dist/routes/auth/logout.js +0 -113
package/dist/routes/auth/nextauth.d.ts +0 -19
package/dist/routes/auth/nextauth.js +0 -72
package/dist/routes/auth/refresh.d.ts +0 -30
package/dist/routes/auth/refresh.js +0 -51
package/dist/routes/auth/session.d.ts +0 -43
package/dist/routes/auth/session.js +0 -179
package/dist/routes/auth/settings.d.ts +0 -25
package/dist/routes/auth/settings.js +0 -55
package/dist/routes/auth/viability.d.ts +0 -52
package/dist/routes/auth/viability.js +0 -201
package/dist/routes/index.d.ts +0 -12
package/dist/routes/index.js +0 -54
package/dist/routes/session/index.d.ts +0 -6
package/dist/routes/session/index.js +0 -10
package/dist/routes/session/refresh-viability.d.ts +0 -16
package/dist/routes/session/refresh-viability.js +0 -20
package/dist/server/auth-guard.d.ts +0 -46
package/dist/server/auth-guard.js +0 -128
package/dist/server/decode-session.d.ts +0 -30
package/dist/server/decode-session.js +0 -78
package/dist/server/slim-middleware.d.ts +0 -23
package/dist/server/slim-middleware.js +0 -89
package/dist/server/with-auth.d.ts +0 -33
package/dist/server/with-auth.js +0 -59
package/dist/services/signalrActivityService.d.ts +0 -44
package/dist/services/signalrActivityService.js +0 -257
package/dist/stores/authStore.d.ts +0 -154
package/dist/stores/authStore.js +0 -1531
package/dist/theme/ThemeProvider.d.ts +0 -14
package/dist/theme/ThemeProvider.js +0 -28
package/dist/theme/default.d.ts +0 -8
package/dist/theme/default.js +0 -33
package/dist/theme/index.d.ts +0 -15
package/dist/theme/index.js +0 -25
package/dist/theme/types.d.ts +0 -56
package/dist/theme/types.js +0 -8
package/dist/theme/useTheme.d.ts +0 -60
package/dist/theme/useTheme.js +0 -63
package/dist/theme/utils.d.ts +0 -13
package/dist/theme/utils.js +0 -39
package/dist/types/api.d.ts +0 -134
package/dist/types/api.js +0 -44
package/dist/types/auth.d.ts +0 -19
package/dist/types/auth.js +0 -2
package/dist/types/logging.d.ts +0 -42
package/dist/types/logging.js +0 -2
package/dist/types/recovery.d.ts +0 -48
package/dist/types/recovery.js +0 -2
package/dist/types/security.d.ts +0 -1
package/dist/types/security.js +0 -2
package/dist/utils/api.d.ts +0 -85
package/dist/utils/api.js +0 -287
package/dist/utils/circuitBreaker.d.ts +0 -43
package/dist/utils/circuitBreaker.js +0 -91
package/dist/utils/error-message.d.ts +0 -1
package/dist/utils/error-message.js +0 -103
package/dist/utils/layout/reservedSpace.d.ts +0 -59
package/dist/utils/layout/reservedSpace.js +0 -102
package/dist/utils/logout.d.ts +0 -14
package/dist/utils/logout.js +0 -32
package/dist/vibe/client.d.ts +0 -261
package/dist/vibe/client.js +0 -445
package/dist/vibe/enterprise-auth.d.ts +0 -106
package/dist/vibe/enterprise-auth.js +0 -173
package/dist/vibe/errors.d.ts +0 -83
package/dist/vibe/errors.js +0 -146
package/dist/vibe/generic.d.ts +0 -234
package/dist/vibe/generic.js +0 -369
package/dist/vibe/hooks/index.d.ts +0 -169
package/dist/vibe/hooks/index.js +0 -252
package/dist/vibe/index.d.ts +0 -25
package/dist/vibe/index.js +0 -72
package/dist/vibe/sessions.d.ts +0 -161
package/dist/vibe/sessions.js +0 -391
package/dist/vibe/types.d.ts +0 -353
package/dist/vibe/types.js +0 -315
package/src/auth/auth-options.ts +0 -237
package/src/auth/callbacks/index.ts +0 -7
package/src/auth/callbacks/jwt.ts +0 -382
package/src/auth/callbacks/session.ts +0 -243
package/src/auth/callbacks/signin.ts +0 -56
package/src/auth/events/index.ts +0 -5
package/src/auth/events/signout.ts +0 -33
package/src/auth/providers/credentials.ts +0 -256
package/src/auth/providers/index.ts +0 -6
package/src/auth/providers/oauth.ts +0 -114
package/src/lib/nextauth-secret.ts +0 -121
package/src/types/next-auth.d.ts +0 -15

package/dist/server/slim-middleware.js DELETED Viewed

@@ -1,89 +0,0 @@
-"use strict";
-/**
- * Slim Middleware — Cookie-Only Auth Check
- *
- * Replaces the self-fetching middleware with a cookie existence check.
- * All real auth validation happens in server-side layouts (authGuard).
- *
- * Zero self-fetches. Zero Redis calls. Zero JWT decoding.
- * Just: does the session cookie exist? Yes → pass through. No → redirect to login.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createSlimMiddleware = createSlimMiddleware;
-const server_1 = require("next/server");
-const app_slug_1 = require("../lib/app-slug");
-// =============================================================================
-// DEFAULT BYPASS PATHS
-// =============================================================================
-/** Routes that must always bypass middleware (prevent infinite loops) */
-const DEFAULT_BYPASS_PREFIXES = [
-    '/api/auth/',
-    '/api/session/',
-    '/_next/',
-    '/favicon.ico',
-];
-/** Static file extensions to bypass */
-const STATIC_EXTENSIONS = /\.(svg|png|jpg|jpeg|gif|webp|ico|css|js|woff|woff2|ttf|eot|map)$/i;
-// =============================================================================
-// MAIN
-// =============================================================================
-/**
- * Create a slim middleware that only checks cookie existence.
- * Auth validation is deferred to server-side layouts (authGuard).
- */
-function createSlimMiddleware(options) {
-    const publicRoutes = options?.publicRoutes || [];
-    const loginUrl = options?.loginUrl || '/account-auth/login';
-    const extraBypass = options?.bypassPrefixes || [];
-    const allBypass = [...DEFAULT_BYPASS_PREFIXES, ...extraBypass];
-    // Pre-compile public route patterns for fast matching
-    const publicMatchers = publicRoutes.map(pattern => {
-        if (pattern.endsWith('/*')) {
-            const prefix = pattern.slice(0, -2);
-            return (p) => p === prefix || p.startsWith(prefix + '/');
-        }
-        if (pattern.endsWith('*')) {
-            const prefix = pattern.slice(0, -1);
-            return (p) => p.startsWith(prefix);
-        }
-        if (pattern.startsWith('/*.')) {
-            const ext = pattern.slice(2);
-            return (p) => p.endsWith(ext);
-        }
-        return (p) => p === pattern;
-    });
-    return function middleware(request) {
-        const { pathname } = request.nextUrl;
-        // 1. Always bypass static/internal routes
-        if (STATIC_EXTENSIONS.test(pathname)) {
-            return server_1.NextResponse.next();
-        }
-        for (const prefix of allBypass) {
-            if (pathname.startsWith(prefix)) {
-                return server_1.NextResponse.next();
-            }
-        }
-        // 2. Check if it's a public route → pass through
-        for (const matcher of publicMatchers) {
-            if (matcher(pathname)) {
-                return server_1.NextResponse.next();
-            }
-        }
-        // 3. THE ONLY AUTH CHECK: Does a session cookie exist?
-        const sessionCookieName = (0, app_slug_1.getSessionCookieName)();
-        const secureCookieName = (0, app_slug_1.getSecureSessionCookieName)();
-        const hasCookie = request.cookies.has(sessionCookieName) ||
-            request.cookies.has(secureCookieName);
-        if (!hasCookie) {
-            // No cookie on a protected route → redirect to login
-            // API routes get 401 instead of redirect
-            if (pathname.startsWith('/api/')) {
-                return server_1.NextResponse.json({ error: 'Unauthorized', message: 'No session' }, { status: 401 });
-            }
-            const callbackUrl = encodeURIComponent(pathname);
-            return server_1.NextResponse.redirect(new URL(`${loginUrl}?callbackUrl=${callbackUrl}`, request.url));
-        }
-        // Cookie exists → pass through, layout authGuard does the real validation
-        return server_1.NextResponse.next();
-    };
-}

package/dist/server/with-auth.d.ts DELETED Viewed

@@ -1,33 +0,0 @@
-/**
- * Server-Side Auth Wrapper for API Routes & Server Actions
- *
- * Wraps route handlers with session validation. Uses direct Redis reads.
- * Zero HTTP self-fetches.
- *
- * Usage:
- *   export const GET = withAuth(async (req, auth) => {
- *     return NextResponse.json({ userId: auth.userId });
- *   });
- *
- *   // With role requirement:
- *   export const POST = withAuth(async (req, auth) => { ... }, { requiredRoles: ['admin'] });
- */
-import 'server-only';
-import { NextRequest, NextResponse } from 'next/server';
-import type { SessionData } from '../lib/session-store';
-export interface ApiAuthResult {
-    userId: string;
-    email: string;
-    roles: string[];
-    sessionData: SessionData;
-    accessToken?: string;
-}
-export interface WithAuthOptions {
-    /** Roles required to access the route (any match = allowed) */
-    requiredRoles?: string[];
-}
-/**
- * Wrap an API route handler with auth validation.
- * Returns 401 if not authenticated, 403 if missing required roles.
- */
-export declare function withAuth(handler: (req: NextRequest, auth: ApiAuthResult) => Promise<NextResponse>, options?: WithAuthOptions): (req: NextRequest) => Promise<NextResponse>;

package/dist/server/with-auth.js DELETED Viewed

@@ -1,59 +0,0 @@
-"use strict";
-/**
- * Server-Side Auth Wrapper for API Routes & Server Actions
- *
- * Wraps route handlers with session validation. Uses direct Redis reads.
- * Zero HTTP self-fetches.
- *
- * Usage:
- *   export const GET = withAuth(async (req, auth) => {
- *     return NextResponse.json({ userId: auth.userId });
- *   });
- *
- *   // With role requirement:
- *   export const POST = withAuth(async (req, auth) => { ... }, { requiredRoles: ['admin'] });
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.withAuth = withAuth;
-require("server-only");
-const server_1 = require("next/server");
-const decode_session_1 = require("./decode-session");
-// =============================================================================
-// MAIN
-// =============================================================================
-/**
- * Wrap an API route handler with auth validation.
- * Returns 401 if not authenticated, 403 if missing required roles.
- */
-function withAuth(handler, options) {
-    return async (req) => {
-        try {
-            // Decode session from request cookies (direct Redis, no self-fetch)
-            const decoded = await (0, decode_session_1.decodeSession)(req.cookies);
-            if (!decoded) {
-                return server_1.NextResponse.json({ error: 'Unauthorized', message: 'No valid session' }, { status: 401 });
-            }
-            const { sessionData } = decoded;
-            // Check required roles
-            if (options?.requiredRoles && options.requiredRoles.length > 0) {
-                const userRoles = sessionData.roles || [];
-                const hasRole = options.requiredRoles.some(r => userRoles.includes(r));
-                if (!hasRole) {
-                    return server_1.NextResponse.json({ error: 'Forbidden', message: 'Insufficient permissions' }, { status: 403 });
-                }
-            }
-            const auth = {
-                userId: sessionData.userId,
-                email: sessionData.email,
-                roles: sessionData.roles || [],
-                sessionData,
-                accessToken: sessionData.idpAccessToken,
-            };
-            return handler(req, auth);
-        }
-        catch (error) {
-            console.error('[WITH-AUTH] Error:', error instanceof Error ? error.message : String(error));
-            return server_1.NextResponse.json({ error: 'Internal Server Error', message: 'Auth check failed' }, { status: 500 });
-        }
-    };
-}

package/dist/services/signalrActivityService.d.ts DELETED Viewed

@@ -1,44 +0,0 @@
-export interface HealthStatus {
-    isHealthy: boolean;
-    message: string;
-    lastHeartbeat: Date | null;
-    connectionId: string | null | undefined;
-    responseTime?: string;
-}
-export type HealthStatusCallback = (status: HealthStatus) => void;
-/**
- * SignalR-based health service following Occam's Razor principle:
- * - If SignalR connection is alive = Service is working
- * - If SignalR connection is dead = Service is not working
- * - No complex orchestration, just connection state monitoring
- */
-declare class SignalRActivityService {
-    private connection;
-    private subscribers;
-    private currentStatus;
-    private heartbeatTimeout;
-    private readonly heartbeatTimeoutMs;
-    /**
-     * Start the health monitoring connection
-     * @param idpBaseUrl - The base URL of the IDP server (e.g., 'http://localhost:32785')
-     */
-    start(idpBaseUrl: string): Promise<void>;
-    /**
-     * Stop the health monitoring connection
-     */
-    stop(): Promise<void>;
-    /**
-     * Subscribe to health status changes
-     */
-    subscribe(callback: HealthStatusCallback): () => void;
-    /**
-     * Get current health status
-     */
-    getCurrentStatus(): HealthStatus;
-    private updateStatus;
-    private notifySubscribers;
-    private resetHeartbeatTimeout;
-    private clearHeartbeatTimeout;
-}
-export declare const signalRActivityService: SignalRActivityService;
-export {};

package/dist/services/signalrActivityService.js DELETED Viewed

@@ -1,257 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.signalRActivityService = void 0;
-const signalR = __importStar(require("@microsoft/signalr"));
-/**
- * SignalR-based health service following Occam's Razor principle:
- * - If SignalR connection is alive = Service is working
- * - If SignalR connection is dead = Service is not working
- * - No complex orchestration, just connection state monitoring
- */
-class SignalRActivityService {
-    connection = null;
-    subscribers = new Set();
-    currentStatus = {
-        isHealthy: false,
-        message: 'Disconnected',
-        lastHeartbeat: null,
-        connectionId: null
-    };
-    heartbeatTimeout = null;
-    heartbeatTimeoutMs = 45000; // 45 seconds (server sends every 30s)
-    /**
-     * Start the health monitoring connection
-     * @param idpBaseUrl - The base URL of the IDP server (e.g., 'http://localhost:32785')
-     */
-    async start(idpBaseUrl) {
-        // If we already have a connected or connecting connection, don't start again
-        if (this.connection &&
-            (this.connection.state === signalR.HubConnectionState.Connected ||
-                this.connection.state === signalR.HubConnectionState.Connecting)) {
-            console.info('[SignalRHealth] Connection already active, skipping start');
-            return;
-        }
-        // Stop existing connection if it exists
-        if (this.connection) {
-            await this.stop();
-        }
-        try {
-            if (!idpBaseUrl) {
-                throw new Error('IDP base URL is required for health monitoring');
-            }
-            // Construct absolute hub URL safely
-            const activityHubUrl = new URL('/healthHub', idpBaseUrl).toString();
-            console.info('[SignalRHealth] Using hub URL:', activityHubUrl);
-            this.connection = new signalR.HubConnectionBuilder()
-                .withUrl(activityHubUrl, {
-                withCredentials: false,
-                transport: signalR.HttpTransportType.WebSockets | signalR.HttpTransportType.ServerSentEvents | signalR.HttpTransportType.LongPolling,
-            })
-                .withAutomaticReconnect({
-                nextRetryDelayInMilliseconds: (retryContext) => {
-                    // More conservative backoff: 5s, 15s, 45s, then stop trying
-                    const delays = [5000, 15000, 45000];
-                    if (retryContext.previousRetryCount >= delays.length) {
-                        return null; // Stop automatic reconnection
-                    }
-                    return delays[retryContext.previousRetryCount];
-                }
-            })
-                .configureLogging(signalR.LogLevel.Critical) // Only critical errors, hide connection noise
-                .build();
-            // Handle connection events
-            this.connection.onclose(() => {
-                this.updateStatus({
-                    isHealthy: false,
-                    message: 'Service unavailable',
-                    lastHeartbeat: null,
-                    connectionId: null
-                });
-                this.clearHeartbeatTimeout();
-            });
-            this.connection.onreconnecting(() => {
-                this.updateStatus({
-                    isHealthy: false,
-                    message: 'Service unavailable',
-                    lastHeartbeat: this.currentStatus.lastHeartbeat,
-                    connectionId: null
-                });
-            });
-            this.connection.onreconnected((connectionId) => {
-                this.updateStatus({
-                    isHealthy: true,
-                    message: 'Service operational',
-                    lastHeartbeat: new Date(),
-                    connectionId
-                });
-                this.resetHeartbeatTimeout();
-            });
-            // Handle heartbeat messages - this is the core health indicator
-            this.connection.on('Heartbeat', (data) => {
-                this.updateStatus({
-                    isHealthy: true,
-                    message: 'Service operational',
-                    lastHeartbeat: new Date(),
-                    connectionId: this.connection?.connectionId || null
-                });
-                this.resetHeartbeatTimeout();
-            });
-            // Handle initial health status
-            this.connection.on('HealthStatus', (data) => {
-                this.updateStatus({
-                    isHealthy: data.status === 'healthy',
-                    message: data.message || 'Service connected',
-                    lastHeartbeat: new Date(),
-                    connectionId: this.connection?.connectionId || null
-                });
-                this.resetHeartbeatTimeout();
-            });
-            // Start the connection
-            await this.connection.start();
-            console.info('[SignalRHealth] Connection started, connectionId:', this.connection.connectionId);
-            this.updateStatus({
-                isHealthy: true,
-                message: 'Service connected',
-                lastHeartbeat: new Date(),
-                connectionId: this.connection.connectionId
-            });
-            this.resetHeartbeatTimeout();
-        }
-        catch (error) {
-            // Reduce console noise for expected connection failures
-            const errorMessage = error instanceof Error ? error.message : String(error);
-            console.warn('[SignalRHealth] Connection start failed:', errorMessage);
-            const isConnectionRefused = errorMessage.includes('ERR_CONNECTION_REFUSED') ||
-                errorMessage.includes('Failed to fetch') ||
-                errorMessage.includes('Failed to complete negotiation');
-            if (isConnectionRefused) {
-                // Service is down - this is expected, log at info level
-                console.info('SignalR Health Service: Backend service unavailable');
-            }
-            else {
-                // Unexpected error - log as error
-                console.error('SignalR Health Service failed to start:', error);
-            }
-            this.updateStatus({
-                isHealthy: false,
-                message: 'Service unavailable',
-                lastHeartbeat: null,
-                connectionId: null
-            });
-        }
-    }
-    /**
-     * Stop the health monitoring connection
-     */
-    async stop() {
-        this.clearHeartbeatTimeout();
-        if (this.connection) {
-            try {
-                // Check if connection is in a state that can be stopped
-                if (this.connection.state !== signalR.HubConnectionState.Disconnected) {
-                    await this.connection.stop();
-                }
-            }
-            catch (error) {
-                // Ignore "connection was stopped before the hub handshake could complete" errors
-                // as these are expected during rapid start/stop cycles
-                const errorMessage = error instanceof Error ? error.message : String(error);
-                if (!errorMessage.includes('stopped before the hub handshake could complete')) {
-                    console.error('Error stopping SignalR health connection:', error);
-                }
-            }
-            this.connection = null;
-        }
-        this.updateStatus({
-            isHealthy: false,
-            message: 'Disconnected',
-            lastHeartbeat: null,
-            connectionId: null
-        });
-    }
-    /**
-     * Subscribe to health status changes
-     */
-    subscribe(callback) {
-        this.subscribers.add(callback);
-        // Immediately notify with current status
-        callback(this.currentStatus);
-        // Return unsubscribe function
-        return () => {
-            this.subscribers.delete(callback);
-        };
-    }
-    /**
-     * Get current health status
-     */
-    getCurrentStatus() {
-        return { ...this.currentStatus };
-    }
-    updateStatus(newStatus) {
-        this.currentStatus = newStatus;
-        this.notifySubscribers();
-    }
-    notifySubscribers() {
-        this.subscribers.forEach(callback => {
-            try {
-                callback(this.currentStatus);
-            }
-            catch (error) {
-                console.error('Error in health status subscriber:', error);
-            }
-        });
-    }
-    resetHeartbeatTimeout() {
-        this.clearHeartbeatTimeout();
-        // If we don't receive a heartbeat within the timeout period, consider service unhealthy
-        this.heartbeatTimeout = setTimeout(() => {
-            this.updateStatus({
-                isHealthy: false,
-                message: 'Service unavailable',
-                lastHeartbeat: this.currentStatus.lastHeartbeat,
-                connectionId: this.currentStatus.connectionId
-            });
-        }, this.heartbeatTimeoutMs);
-    }
-    clearHeartbeatTimeout() {
-        if (this.heartbeatTimeout) {
-            clearTimeout(this.heartbeatTimeout);
-            this.heartbeatTimeout = null;
-        }
-    }
-}
-// Export singleton instance
-exports.signalRActivityService = new SignalRActivityService();

package/dist/stores/authStore.d.ts DELETED Viewed

@@ -1,154 +0,0 @@
-/**
- * 🚀 CENTRALIZED AUTH STORE - THE SINGLE SOURCE OF TRUTH
- *
- * This Zustand store replaces ALL scattered useState patterns for auth-related state.
- * No more prop drilling, no more duplicate loading states, no more auth chaos.
- *
- * Features:
- * - Centralized session, token, and user state
- * - Built-in API calling with auto token refresh
- * - Loading state management for all async operations
- * - Type-safe throughout
- * - Integrates seamlessly with existing NextAuth
- */
-import { AppSession } from '../lib/session';
-import { HubConnection, HubConnectionState } from '@microsoft/signalr';
-export interface User {
-    id: string;
-    email: string;
-    roles: string[];
-    twoFactorSessionVerified: boolean;
-    requiresTwoFactor: boolean;
-    twoFactorMethod?: string;
-    authenticationMethods?: string[];
-    authenticationLevel?: string;
-    isApproved: boolean;
-    isSuspended: boolean;
-    lockoutEnabled: boolean;
-    lockoutEnd?: Date | null;
-    pausedAt?: Date | null;
-    pausedBy?: string | null;
-    suspensionReason?: string | null;
-}
-export interface UserStateChangeEvent {
-    userId: string;
-    action: 'APPROVE' | 'DISAPPROVE' | 'PAUSE' | 'RESUME' | 'HALT' | 'UNLOCK';
-    newState: {
-        isApproved?: boolean;
-        isSuspended?: boolean;
-        lockoutEnabled?: boolean;
-        lockoutEnd?: string | null;
-        pausedAt?: string | null;
-        pausedBy?: string | null;
-        suspensionReason?: string | null;
-    };
-    reason?: string;
-    changedBy: string;
-    timestamp: string;
-}
-export interface SecurityNotificationEvent {
-    type: 'USER_LOCKOUT' | 'IP_THROTTLE' | 'BRUTE_FORCE' | 'DISTRIBUTED_ATTACK';
-    userId?: string;
-    ipAddress?: string;
-    message: string;
-    severity: 'LOW' | 'MEDIUM' | 'HIGH' | 'CRITICAL';
-    timestamp: string;
-}
-export interface AuthState {
-    session: AppSession | null;
-    user: User | null;
-    accessToken: string | null;
-    refreshToken: string | null;
-    isAuthenticated: boolean;
-    isInitialized: boolean;
-    isLoading: boolean;
-    isRefreshingToken: boolean;
-    isLoadingUserStats: boolean;
-    isLoadingClients: boolean;
-    isLoadingRoles: boolean;
-    isLoadingUsers: boolean;
-    isLoadingUserDetails: Record<string, boolean>;
-    isLoadingRoleCategories: boolean;
-    isLoadingUserAssignments: Record<string, boolean>;
-    isLoadingClientAuthorizations: Record<string, boolean>;
-    error: string | null;
-    tokenError: string | null;
-    userStats: any | null;
-    clients: any[] | null;
-    roles: any[] | null;
-    users: any[] | null;
-    userDetails: Record<string, any>;
-    userAssignments: Record<string, any>;
-    roleCategories: any[] | null;
-    clientAuthorizations: Record<string, any[] | undefined>;
-    userStatsLastFetch: number | null;
-    clientsLastFetch: number | null;
-    rolesLastFetch: number | null;
-    usersLastFetch: number | null;
-    roleCategoriesLastFetch: number | null;
-    signalrConnection: HubConnection | null;
-    signalrConnectionState: HubConnectionState;
-    isConnectedToSignalR: boolean;
-}
-export interface AuthActions {
-    setSession: (session: AppSession | null) => void;
-    clearSession: () => void;
-    refreshSession: () => Promise<void>;
-    refreshTokens: () => Promise<void>;
-    rehydrateSessionAfterRefresh: () => Promise<void>;
-    signIn: (credentials: {
-        email: string;
-        password: string;
-    }) => Promise<boolean>;
-    signOut: () => Promise<void>;
-    forceLogoutAndRedirect: (reason: string) => Promise<void>;
-    apiCall: <T = any>(url: string, options?: RequestInit, maxRetries?: number) => Promise<T>;
-    makeApiCall: <T = any>(url: string, options?: RequestInit, attempt?: number) => Promise<T>;
-    fetchUserStats: (force?: boolean) => Promise<void>;
-    fetchClients: (force?: boolean) => Promise<void>;
-    fetchRoles: (force?: boolean) => Promise<void>;
-    fetchUsers: (params?: any, force?: boolean) => Promise<void>;
-    fetchUserDetails: (userId: string, force?: boolean) => Promise<void>;
-    fetchUserClientAuthorizations: (userId: string, force?: boolean) => Promise<void>;
-    fetchUserRoleAssignments: (userId: string, force?: boolean) => Promise<void>;
-    fetchRoleCategories: (force?: boolean) => Promise<void>;
-    createUser: (userData: any) => Promise<any>;
-    updateUser: (userId: string, updates: any) => Promise<any>;
-    deleteUser: (userId: string) => Promise<void>;
-    createRole: (roleData: any) => Promise<any>;
-    updateRole: (roleId: string, updates: any) => Promise<any>;
-    deleteRole: (roleId: string) => Promise<void>;
-    assignUserToRole: (userId: string, roleId: string) => Promise<void>;
-    removeUserFromRole: (userId: string, roleId: string) => Promise<void>;
-    assignUserToClient: (userId: string, clientId: string) => Promise<void>;
-    removeUserFromClient: (userId: string, clientId: string) => Promise<void>;
-    hasRole: (role: string) => boolean;
-    hasAnyRole: (roles: string[]) => boolean;
-    hasAllRoles: (roles: string[]) => boolean;
-    isFullyAuthenticated: () => boolean;
-    setError: (error: string | null) => void;
-    clearError: () => void;
-    approveUser: (userId: string, reason?: string) => Promise<void>;
-    disapproveUser: (userId: string, reason?: string) => Promise<void>;
-    pauseUser: (userId: string, reason?: string) => Promise<void>;
-    resumeUser: (userId: string) => Promise<void>;
-    haltUser: (userId: string, reason?: string) => Promise<void>;
-    unlockUser: (userId: string) => Promise<void>;
-    canUserAccess: () => boolean;
-    getUserStateDisplay: () => string;
-    isUserLocked: () => boolean;
-    initializeSignalR: () => Promise<void>;
-    disconnectSignalR: () => Promise<void>;
-    handleUserStateChanged: (data: UserStateChangeEvent) => void;
-}
-export type AuthStore = AuthState & AuthActions;
-export declare const useAuthStore: import("zustand").UseBoundStore<Omit<import("zustand").StoreApi<AuthStore>, "setState"> & {
-    setState<A extends string | {
-        type: string;
-    }>(partial: AuthStore | Partial<AuthStore> | ((state: AuthStore) => AuthStore | Partial<AuthStore>), replace?: boolean | undefined, action?: A | undefined): void;
-}>;
-/**
- * Initialize the auth store with a session (typically called in layout)
- */
-export declare const initializeAuthStore: (session: AppSession | null) => void;
-export default useAuthStore;