@prmichaelsen/firebase-admin-sdk-v8 2.3.1 → 2.4.2

package/AGENT.md

@@ -1,9 +1,9 @@
 # Agent Context Protocol (ACP)
 
-**Also Known As**: The Agent Directory Pattern  
-**Version**: 1.0.3
-**Created**: 2026-02-11  
-**Status**: Production Pattern  
+**Also Known As**: The Agent Directory Pattern
+**Version**: 1.4.3
+**Created**: 2026-02-11
+**Status**: Production Pattern
 
 ---
 
@@ -81,6 +81,14 @@ ACP solves these by:
 project-root/
 ├── AGENT.md                        # This file - ACP documentation
 ├── agent/                          # Agent directory (ACP structure)
+│   ├── commands/                   # Command system
+│   │   ├── .gitkeep
+│   │   ├── command.template.md     # Command template
+│   │   ├── acp.init.md             # @acp-init
+│   │   ├── acp.proceed.md          # @acp-proceed
+│   │   ├── acp.status.md           # @acp-status
+│   │   └── ...                     # More commands
+│   │
 │   ├── design/                     # Design documents
 │   │   ├── .gitkeep
 │   │   ├── requirements.md         # Core requirements
@@ -551,6 +559,91 @@ The Agent Pattern represents a **paradigm shift** in how we approach AI-assisted
 
 ---
 
+## ACP Commands
+
+ACP supports a command system for common workflows. Commands are file-based triggers that provide standardized, discoverable interfaces for ACP operations.
+
+### What are ACP Commands?
+
+Commands are markdown files in [`agent/commands/`](agent/commands/) that contain step-by-step instructions for AI agents. Instead of typing long prompts like "AGENT.md: Initialize", you can reference command files like `@acp.init` to trigger specific workflows.
+
+**Benefits**:
+- **Discoverable**: Browse [`agent/commands/`](agent/commands/) to see all available commands
+- **Consistent**: All commands follow the same structure
+- **Extensible**: Create custom commands for your project
+- **Self-Documenting**: Each command file contains complete documentation
+- **Autocomplete-Friendly**: Type `@acp.` to see all ACP commands
+
+### Core Commands
+
+Core ACP commands use the `acp.` prefix and are available in [`agent/commands/`](agent/commands/):
+
+- **[`@acp.init`](agent/commands/acp.init.md)** - Initialize agent context (replaces "AGENT.md: Initialize")
+- **[`@acp.proceed`](agent/commands/acp.proceed.md)** - Continue with next task (replaces "AGENT.md: Proceed")
+- **[`@acp.status`](agent/commands/acp.status.md)** - Display project status
+- **[`@acp.version-check`](agent/commands/acp.version-check.md)** - Show current ACP version
+- **[`@acp.version-check-for-updates`](agent/commands/acp.version-check-for-updates.md)** - Check for ACP updates
+- **[`@acp.version-update`](agent/commands/acp.version-update.md)** - Update ACP to latest version
+
+### Command Invocation
+
+Commands are invoked using the `@` syntax with dot notation:
+
+```
+@acp.init                    → agent/commands/acp.init.md
+@acp.proceed                 → agent/commands/acp.proceed.md
+@acp.status                  → agent/commands/acp.status.md
+@deploy.production           → agent/commands/deploy.production.md
+```
+
+**Format**: `@{namespace}.{action}` resolves to `agent/commands/{namespace}.{action}.md`
+
+### Creating Custom Commands
+
+To create custom commands for your project:
+
+1. **Choose a namespace** (e.g., `deploy`, `test`, `custom`)
+   - ⚠️ The `acp` namespace is reserved for core commands
+   - Use descriptive, single-word namespaces
+
+2. **Copy the command template**:
+   ```bash
+   cp agent/commands/command.template.md agent/commands/{namespace}.{action}.md
+   ```
+
+3. **Fill in the template sections**:
+   - Purpose and description
+   - Prerequisites
+   - Step-by-step instructions
+   - Verification checklist
+   - Examples and troubleshooting
+
+4. **Invoke your command**: `@{namespace}.{action}`
+
+**Example**: Creating a deployment command:
+```bash
+# Create the command file
+cp agent/commands/command.template.md agent/commands/deploy.production.md
+
+# Edit the file with your deployment steps
+# ...
+
+# Invoke it
+@deploy.production
+```
+
+### Command Template
+
+See [`agent/commands/command.template.md`](agent/commands/command.template.md) for the complete command template with all sections and examples.
+
+### Installing Third-Party Commands
+
+Use `@acp.install` to install command packages from git repositories (available in future release).
+
+**Security Note**: Third-party commands can instruct agents to modify files and execute scripts. Always review command files before installation.
+
+---
+
 ## Sample Prompts for Using ACP
 
 ### Initialize Prompt
@@ -782,7 +875,17 @@ Run ./agent/scripts/uninstall.sh to remove all ACP files (agent/ directory and A
    - Update percentages
    - Add recent work notes
 
-7. **NEVER handle secrets or sensitive data**
+7. **CRITICAL: Always update CHANGELOG.md for version changes**
+   - ❌ **DO NOT** commit version changes without updating CHANGELOG.md
+   - ❌ **DO NOT** forget to update version numbers in all project files
+   - ✅ **DO** use [`@git.commit`](agent/commands/git.commit.md) for version-aware commits
+   - ✅ **DO** detect version impact: major (breaking), minor (features), patch (fixes)
+   - ✅ **DO** update CHANGELOG.md with clear, user-focused descriptions
+   - ✅ **DO** update all version files (package.json, AGENT.md, etc.)
+   - ✅ **DO** use Conventional Commits format for commit messages
+   - **Rationale**: CHANGELOG.md is the primary communication tool for users. Every version change must be documented with clear descriptions of what changed, why it changed, and how it affects users. Forgetting to update CHANGELOG.md breaks the project's version history and makes it impossible for users to understand what changed between versions.
+
+8. **NEVER handle secrets or sensitive data**
    - ❌ **DO NOT** read `.env` files, `.env.local`, or any environment files
    - ❌ **DO NOT** read files containing API keys, tokens, passwords, or credentials
    - ❌ **DO NOT** include secrets in messages, documentation, or code examples
@@ -793,6 +896,14 @@ Run ./agent/scripts/uninstall.sh to remove all ACP files (agent/ directory and A
    - ✅ **DO** create `.env.example` files with placeholder values only
    - **Rationale**: Secrets must never be exposed in chat logs, documentation, or version control. Agents should treat all credential files as off-limits to prevent accidental exposure.
 
+9. **CRITICAL: Respect user's intentional file edits**
+   - ❌ **DO NOT** assume missing content needs to be added back
+   - ❌ **DO NOT** revert changes without confirming with user
+   - ✅ **DO** read files before editing to see current state
+   - ✅ **DO** ask user if unexpected changes were intentional
+   - ✅ **DO** confirm before reverting user's manual edits
+   - **Rationale**: If you read a file and it is missing contents or has changed contents (i.e., it does not contain what you expect), assume or confirm with the user if they made intentional updates that you should not revert. Do not assume "The file is missing <xyz>, I need to add it back". The user may have edited files manually with intention.
+
 ---
 
 ## Best Practices
@@ -882,7 +993,7 @@ This repository is actively maintained with improvements to the ACP methodology
 ./agent/scripts/update.sh
 
 # Or download and run directly
-curl -fsSL https://raw.githubusercontent.com/prmichaelsen/agent-context-protocol/mainlin./agent/scripts/update.sh | bash
+curl -fsSL https://raw.githubusercontent.com/prmichaelsen/agent-context-protocol/mainline/agent/scripts/update.sh | bash
 ```
 
 The update script will:

package/CHANGELOG.md

@@ -7,6 +7,20 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [2.4.0] - 2026-02-15
+
+### Added
+- **Session Cookie Support**: Added `createSessionCookie()` and `verifySessionCookie()`
+- Long-lived authentication sessions (up to 14 days) instead of 1-hour ID tokens
+- Session cookie verification with proper issuer validation
+- 15 new unit tests for session cookie functionality
+- 3 new E2E tests for session cookie creation and verification
+- Comprehensive session cookie documentation in README
+
+### Changed
+- Auth module coverage improved from 63.18% to 97.51%
+- Total tests increased from 418 to 433 (+15 tests)
+
 ## [2.3.1] - 2026-02-14
 
 ### Fixed

package/README.md

@@ -15,6 +15,7 @@ This library provides Firebase Admin SDK functionality for Cloudflare Workers an
 - ✅ **Zero Dependencies** - No external dependencies, pure Web APIs (crypto.subtle, fetch)
 - ✅ **JWT Token Generation** - Service account authentication
 - ✅ **ID Token Verification** - Verify Firebase ID tokens (supports v9 and v10 formats)
+- ✅ **Session Cookies** - Create and verify long-lived session cookies (up to 14 days)
 - ✅ **Firebase v10 Compatible** - Supports both old and new token issuer formats
 - ✅ **Firestore REST API** - Full CRUD operations via REST
 - ✅ **Field Value Operations** - increment, arrayUnion, arrayRemove, serverTimestamp, delete
@@ -94,7 +95,26 @@ try {
 }
 ```
 
-### 3. Basic Firestore Operations
+### 3. Session Cookies (Long-Lived Sessions)
+
+```typescript
+import { createSessionCookie, verifySessionCookie } from '@prmichaelsen/firebase-admin-sdk-v8';
+
+// Create 14-day session cookie from ID token
+const sessionCookie = await createSessionCookie(idToken, {
+  expiresIn: 60 * 60 * 24 * 14 * 1000
+});
+
+// Set as HTTP-only cookie
+response.headers.set('Set-Cookie',
+  `session=${sessionCookie}; Max-Age=1209600; HttpOnly; Secure; SameSite=Strict`
+);
+
+// Verify session cookie
+const user = await verifySessionCookie(cookie);
+```
+
+### 4. Basic Firestore Operations
 
 ```typescript
 import { setDocument, getDocument, updateDocument, FieldValue } from '@prmichaelsen/firebase-admin-sdk-v8';

package/dist/chunk-5X465GLA.mjs

@@ -0,0 +1,161 @@
+// src/config.ts
+var globalConfig = {};
+function initializeApp(config) {
+  globalConfig = { ...config };
+}
+function getConfig() {
+  return globalConfig;
+}
+function clearConfig() {
+  globalConfig = {};
+}
+function getServiceAccount() {
+  if (globalConfig.serviceAccount) {
+    if (typeof globalConfig.serviceAccount === "string") {
+      return JSON.parse(globalConfig.serviceAccount);
+    }
+    return globalConfig.serviceAccount;
+  }
+  const key = typeof process !== "undefined" && process.env?.FIREBASE_ADMIN_SERVICE_ACCOUNT_KEY;
+  if (!key) {
+    throw new Error(
+      "Firebase service account not configured. Either call initializeApp({ serviceAccount: ... }) or set FIREBASE_ADMIN_SERVICE_ACCOUNT_KEY environment variable."
+    );
+  }
+  try {
+    const serviceAccount = JSON.parse(key);
+    const requiredFields = [
+      "type",
+      "project_id",
+      "private_key_id",
+      "private_key",
+      "client_email",
+      "client_id",
+      "token_uri"
+    ];
+    for (const field of requiredFields) {
+      if (!(field in serviceAccount)) {
+        throw new Error(`Service account is missing required field: ${field}`);
+      }
+    }
+    return serviceAccount;
+  } catch (error) {
+    if (error instanceof SyntaxError) {
+      throw new Error(
+        "Failed to parse FIREBASE_ADMIN_SERVICE_ACCOUNT_KEY. Ensure it contains valid JSON."
+      );
+    }
+    throw error;
+  }
+}
+function getProjectId() {
+  if (globalConfig.projectId) {
+    return globalConfig.projectId;
+  }
+  if (typeof process !== "undefined" && process.env) {
+    const projectId = process.env.FIREBASE_PROJECT_ID || process.env.PUBLIC_FIREBASE_PROJECT_ID;
+    if (projectId) {
+      return projectId;
+    }
+  }
+  throw new Error(
+    "Firebase project ID not configured. Either call initializeApp({ projectId: ... }) or set FIREBASE_PROJECT_ID environment variable."
+  );
+}
+function getFirebaseApiKey() {
+  if (globalConfig.apiKey) {
+    return globalConfig.apiKey;
+  }
+  if (typeof process !== "undefined" && process.env) {
+    const apiKey = process.env.FIREBASE_API_KEY || process.env.PUBLIC_FIREBASE_API_KEY;
+    if (apiKey) {
+      return apiKey;
+    }
+  }
+  throw new Error(
+    "Firebase API key not configured. Either call initializeApp({ apiKey: ... }) or set FIREBASE_API_KEY environment variable. Find your API key in Firebase Console > Project Settings > Web API Key."
+  );
+}
+
+// src/token-generation.ts
+function base64UrlEncode(str) {
+  return btoa(str).replace(/=/g, "").replace(/\+/g, "-").replace(/\//g, "_");
+}
+function base64UrlEncodeBuffer(buffer) {
+  return btoa(String.fromCharCode(...buffer)).replace(/=/g, "").replace(/\+/g, "-").replace(/\//g, "_");
+}
+async function createJWT(serviceAccount) {
+  const now = Math.floor(Date.now() / 1e3);
+  const expiry = now + 3600;
+  const header = {
+    alg: "RS256",
+    typ: "JWT"
+  };
+  const payload = {
+    iss: serviceAccount.client_email,
+    sub: serviceAccount.client_email,
+    aud: serviceAccount.token_uri,
+    iat: now,
+    exp: expiry,
+    scope: "https://www.googleapis.com/auth/cloud-platform https://www.googleapis.com/auth/datastore https://www.googleapis.com/auth/firebase"
+  };
+  const encodedHeader = base64UrlEncode(JSON.stringify(header));
+  const encodedPayload = base64UrlEncode(JSON.stringify(payload));
+  const unsignedToken = `${encodedHeader}.${encodedPayload}`;
+  const pemContents = serviceAccount.private_key.replace("-----BEGIN PRIVATE KEY-----", "").replace("-----END PRIVATE KEY-----", "").replace(/\s/g, "");
+  const binaryDer = Uint8Array.from(atob(pemContents), (c) => c.charCodeAt(0));
+  const cryptoKey = await crypto.subtle.importKey(
+    "pkcs8",
+    binaryDer,
+    { name: "RSASSA-PKCS1-v1_5", hash: "SHA-256" },
+    false,
+    ["sign"]
+  );
+  const signature = await crypto.subtle.sign(
+    "RSASSA-PKCS1-v1_5",
+    cryptoKey,
+    new TextEncoder().encode(unsignedToken)
+  );
+  const encodedSignature = base64UrlEncodeBuffer(new Uint8Array(signature));
+  return `${unsignedToken}.${encodedSignature}`;
+}
+var cachedAccessToken = null;
+var tokenExpiry = 0;
+async function getAdminAccessToken() {
+  if (cachedAccessToken && Date.now() < tokenExpiry) {
+    return cachedAccessToken;
+  }
+  const serviceAccount = getServiceAccount();
+  const jwt = await createJWT(serviceAccount);
+  const response = await fetch(serviceAccount.token_uri, {
+    method: "POST",
+    headers: { "Content-Type": "application/x-www-form-urlencoded" },
+    body: new URLSearchParams({
+      grant_type: "urn:ietf:params:oauth:grant-type:jwt-bearer",
+      assertion: jwt
+    })
+  });
+  if (!response.ok) {
+    const errorText = await response.text();
+    throw new Error(`Failed to get access token: ${errorText}`);
+  }
+  const data = await response.json();
+  cachedAccessToken = data.access_token;
+  tokenExpiry = Date.now() + data.expires_in * 1e3 - 6e4;
+  return cachedAccessToken;
+}
+function clearTokenCache() {
+  cachedAccessToken = null;
+  tokenExpiry = 0;
+}
+
+export {
+  initializeApp,
+  getConfig,
+  clearConfig,
+  getServiceAccount,
+  getProjectId,
+  getFirebaseApiKey,
+  getAdminAccessToken,
+  clearTokenCache
+};

package/dist/index.d.mts

@@ -335,6 +335,60 @@ declare function createCustomToken(uid: string, customClaims?: CustomClaims): Pr
  * ```
  */
 declare function signInWithCustomToken(customToken: string): Promise<CustomTokenSignInResponse>;
+/**
+ * Options for creating a session cookie
+ */
+interface SessionCookieOptions {
+    /**
+     * Session duration in milliseconds
+     * Maximum: 14 days (1,209,600,000 ms)
+     * Minimum: 5 minutes (300,000 ms)
+     */
+    expiresIn: number;
+}
+/**
+ * Create a session cookie from an ID token
+ *
+ * Session cookies can have a maximum duration of 14 days and are
+ * useful for maintaining long-lived authentication sessions.
+ *
+ * @param idToken - Valid Firebase ID token
+ * @param options - Session cookie options
+ * @returns Session cookie string
+ *
+ * @example
+ * ```typescript
+ * // Create 14-day session cookie
+ * const sessionCookie = await createSessionCookie(idToken, {
+ *   expiresIn: 60 * 60 * 24 * 14 * 1000
+ * });
+ *
+ * // Set as HTTP-only cookie
+ * response.headers.set('Set-Cookie',
+ *   `session=${sessionCookie}; Max-Age=1209600; HttpOnly; Secure; SameSite=Strict`
+ * );
+ * ```
+ */
+declare function createSessionCookie(idToken: string, options: SessionCookieOptions): Promise<string>;
+/**
+ * Verify a Firebase session cookie
+ *
+ * Session cookies are verified similarly to ID tokens but have
+ * different expiration times (up to 14 days) and issuer format.
+ *
+ * @param sessionCookie - Session cookie string to verify
+ * @param checkRevoked - Whether to check if the token has been revoked (not yet implemented)
+ * @returns Decoded token claims
+ *
+ * @example
+ * ```typescript
+ * // Verify session cookie from request
+ * const sessionCookie = request.cookies.get('session');
+ * const decodedToken = await verifySessionCookie(sessionCookie);
+ * console.log('User ID:', decodedToken.uid);
+ * ```
+ */
+declare function verifySessionCookie(sessionCookie: string, checkRevoked?: boolean): Promise<DecodedIdToken>;
 /**
  * Get Auth instance (for compatibility, but not used in new implementation)
  * @deprecated Use verifyIdToken directly
@@ -925,4 +979,4 @@ declare function getAdminAccessToken(): Promise<string>;
  */
 declare function clearTokenCache(): void;
 
-export { type BatchWrite, type BatchWriteResult, type CustomClaims, type CustomTokenSignInResponse, type DataObject, type DecodedIdToken, type DocumentReference, type DownloadOptions, FieldValue, type FieldValue$1 as FieldValueSentinel, FieldValueType, type FileMetadata, type FirestoreDocument, type FirestoreValue, type ListFilesResult, type ListOptions, type QueryFilter, type QueryOptions, type QueryOrder, type ResumableUploadOptions, type ServiceAccount, type SetOptions, type SignedUrlOptions, type TokenResponse, type UpdateOptions, type UploadOptions, type UserInfo, type WhereFilterOp, addDocument, batchWrite, clearConfig, clearTokenCache, countDocuments, createCustomToken, deleteDocument, deleteFile, downloadFile, fileExists, generateSignedUrl, getAdminAccessToken, getAuth, getConfig, getDocument, getFileMetadata, getProjectId, getServiceAccount, getUserFromToken, initializeApp, iterateCollection, listDocuments, listFiles, queryDocuments, setDocument, signInWithCustomToken, updateDocument, uploadFile, uploadFileResumable, verifyIdToken };
+export { type BatchWrite, type BatchWriteResult, type CustomClaims, type CustomTokenSignInResponse, type DataObject, type DecodedIdToken, type DocumentReference, type DownloadOptions, FieldValue, type FieldValue$1 as FieldValueSentinel, FieldValueType, type FileMetadata, type FirestoreDocument, type FirestoreValue, type ListFilesResult, type ListOptions, type QueryFilter, type QueryOptions, type QueryOrder, type ResumableUploadOptions, type ServiceAccount, type SessionCookieOptions, type SetOptions, type SignedUrlOptions, type TokenResponse, type UpdateOptions, type UploadOptions, type UserInfo, type WhereFilterOp, addDocument, batchWrite, clearConfig, clearTokenCache, countDocuments, createCustomToken, createSessionCookie, deleteDocument, deleteFile, downloadFile, fileExists, generateSignedUrl, getAdminAccessToken, getAuth, getConfig, getDocument, getFileMetadata, getProjectId, getServiceAccount, getUserFromToken, initializeApp, iterateCollection, listDocuments, listFiles, queryDocuments, setDocument, signInWithCustomToken, updateDocument, uploadFile, uploadFileResumable, verifyIdToken, verifySessionCookie };

package/dist/index.d.ts

@@ -335,6 +335,60 @@ declare function createCustomToken(uid: string, customClaims?: CustomClaims): Pr
  * ```
  */
 declare function signInWithCustomToken(customToken: string): Promise<CustomTokenSignInResponse>;
+/**
+ * Options for creating a session cookie
+ */
+interface SessionCookieOptions {
+    /**
+     * Session duration in milliseconds
+     * Maximum: 14 days (1,209,600,000 ms)
+     * Minimum: 5 minutes (300,000 ms)
+     */
+    expiresIn: number;
+}
+/**
+ * Create a session cookie from an ID token
+ *
+ * Session cookies can have a maximum duration of 14 days and are
+ * useful for maintaining long-lived authentication sessions.
+ *
+ * @param idToken - Valid Firebase ID token
+ * @param options - Session cookie options
+ * @returns Session cookie string
+ *
+ * @example
+ * ```typescript
+ * // Create 14-day session cookie
+ * const sessionCookie = await createSessionCookie(idToken, {
+ *   expiresIn: 60 * 60 * 24 * 14 * 1000
+ * });
+ *
+ * // Set as HTTP-only cookie
+ * response.headers.set('Set-Cookie',
+ *   `session=${sessionCookie}; Max-Age=1209600; HttpOnly; Secure; SameSite=Strict`
+ * );
+ * ```
+ */
+declare function createSessionCookie(idToken: string, options: SessionCookieOptions): Promise<string>;
+/**
+ * Verify a Firebase session cookie
+ *
+ * Session cookies are verified similarly to ID tokens but have
+ * different expiration times (up to 14 days) and issuer format.
+ *
+ * @param sessionCookie - Session cookie string to verify
+ * @param checkRevoked - Whether to check if the token has been revoked (not yet implemented)
+ * @returns Decoded token claims
+ *
+ * @example
+ * ```typescript
+ * // Verify session cookie from request
+ * const sessionCookie = request.cookies.get('session');
+ * const decodedToken = await verifySessionCookie(sessionCookie);
+ * console.log('User ID:', decodedToken.uid);
+ * ```
+ */
+declare function verifySessionCookie(sessionCookie: string, checkRevoked?: boolean): Promise<DecodedIdToken>;
 /**
  * Get Auth instance (for compatibility, but not used in new implementation)
  * @deprecated Use verifyIdToken directly
@@ -925,4 +979,4 @@ declare function getAdminAccessToken(): Promise<string>;
  */
 declare function clearTokenCache(): void;
 
-export { type BatchWrite, type BatchWriteResult, type CustomClaims, type CustomTokenSignInResponse, type DataObject, type DecodedIdToken, type DocumentReference, type DownloadOptions, FieldValue, type FieldValue$1 as FieldValueSentinel, FieldValueType, type FileMetadata, type FirestoreDocument, type FirestoreValue, type ListFilesResult, type ListOptions, type QueryFilter, type QueryOptions, type QueryOrder, type ResumableUploadOptions, type ServiceAccount, type SetOptions, type SignedUrlOptions, type TokenResponse, type UpdateOptions, type UploadOptions, type UserInfo, type WhereFilterOp, addDocument, batchWrite, clearConfig, clearTokenCache, countDocuments, createCustomToken, deleteDocument, deleteFile, downloadFile, fileExists, generateSignedUrl, getAdminAccessToken, getAuth, getConfig, getDocument, getFileMetadata, getProjectId, getServiceAccount, getUserFromToken, initializeApp, iterateCollection, listDocuments, listFiles, queryDocuments, setDocument, signInWithCustomToken, updateDocument, uploadFile, uploadFileResumable, verifyIdToken };
+export { type BatchWrite, type BatchWriteResult, type CustomClaims, type CustomTokenSignInResponse, type DataObject, type DecodedIdToken, type DocumentReference, type DownloadOptions, FieldValue, type FieldValue$1 as FieldValueSentinel, FieldValueType, type FileMetadata, type FirestoreDocument, type FirestoreValue, type ListFilesResult, type ListOptions, type QueryFilter, type QueryOptions, type QueryOrder, type ResumableUploadOptions, type ServiceAccount, type SessionCookieOptions, type SetOptions, type SignedUrlOptions, type TokenResponse, type UpdateOptions, type UploadOptions, type UserInfo, type WhereFilterOp, addDocument, batchWrite, clearConfig, clearTokenCache, countDocuments, createCustomToken, createSessionCookie, deleteDocument, deleteFile, downloadFile, fileExists, generateSignedUrl, getAdminAccessToken, getAuth, getConfig, getDocument, getFileMetadata, getProjectId, getServiceAccount, getUserFromToken, initializeApp, iterateCollection, listDocuments, listFiles, queryDocuments, setDocument, signInWithCustomToken, updateDocument, uploadFile, uploadFileResumable, verifyIdToken, verifySessionCookie };