@proveanything/smartlinks-auth-ui 0.5.22 → 0.6.0

package/SMARTLINKS_INTEGRATION.md

@@ -0,0 +1,330 @@
+# Smartlinks SDK Integration
+
+The `@smartlinks/auth-ui` module now integrates with `@proveanything/smartlinks` SDK for enhanced session management and authenticated API calls.
+
+## Installation
+
+The auth-ui package includes `@proveanything/smartlinks` as a dependency. When you install the auth-ui package, the Smartlinks SDK will be automatically included:
+
+```bash
+npm install @smartlinks/auth-ui
+```
+
+## Usage
+
+### Basic Setup with Smartlinks SDK
+
+```tsx
+import { AuthProvider, useAuth } from '@smartlinks/auth-ui';
+
+function App() {
+  return (
+    <AuthProvider 
+      apiEndpoint="https://api.smartlinks.com"
+      clientId="your-client-id"
+    >
+      <YourApp />
+    </AuthProvider>
+  );
+}
+```
+
+### Access Smartlinks Client
+
+The `useAuth` hook now provides access to the initialized Smartlinks client:
+
+```tsx
+import { useAuth } from '@smartlinks/auth-ui';
+
+function Dashboard() {
+  const { user, token, smartlinks } = useAuth();
+
+  // Make authenticated API calls using Smartlinks SDK
+  const fetchData = async () => {
+    if (smartlinks) {
+      const data = await smartlinks.request('/api/data');
+      console.log('Data:', data);
+    }
+  };
+
+  return (
+    <div>
+      <h1>Welcome, {user?.displayName}</h1>
+      <button onClick={fetchData}>Fetch Data</button>
+    </div>
+  );
+}
+```
+
+## Smartlinks Client API
+
+The Smartlinks client is automatically initialized and managed by the AuthProvider. It provides the following methods:
+
+### Authentication
+
+```tsx
+const { smartlinks } = useAuth();
+
+// Token is automatically set on login
+// But you can manually set it if needed
+smartlinks?.setToken('bearer_token');
+
+// Get current token
+const token = smartlinks?.getToken();
+
+// Clear token
+smartlinks?.clearToken();
+
+// Refresh token (automatically updates auth context)
+await smartlinks?.refreshToken();
+
+// Logout (calls server logout endpoint and clears local state)
+await smartlinks?.logout();
+```
+
+### Authenticated API Calls
+
+```tsx
+// GET request
+const data = await smartlinks?.request('/api/endpoint');
+
+// POST request
+const result = await smartlinks?.request(
+  '/api/endpoint',
+  'POST',
+  { key: 'value' }
+);
+
+// With custom headers
+const result = await smartlinks?.request(
+  '/api/endpoint',
+  'POST',
+  { key: 'value' },
+  { 'X-Custom-Header': 'value' }
+);
+```
+
+### User Profile Management
+
+```tsx
+// Get current user profile
+const profile = await smartlinks?.getCurrentUser();
+
+// Update user profile
+const updated = await smartlinks?.updateProfile({
+  displayName: 'New Name',
+  photoURL: 'https://...'
+});
+```
+
+### Account Data Management
+
+```tsx
+// Get account data
+const accountData = await smartlinks?.getAccountData();
+
+// Update account data
+const updated = await smartlinks?.updateAccountData({
+  plan: 'enterprise',
+  seats: 100
+});
+```
+
+## Authentication Headers
+
+The Smartlinks client automatically includes the following headers in all requests:
+
+- `Authorization: Bearer {token}` - Bearer token from authentication
+- `X-Client-ID: {clientId}` - Client identifier for multi-tenancy
+- `Content-Type: application/json` - JSON content type
+
+## Token Refresh
+
+The SDK handles automatic token refresh:
+
+```tsx
+const { refreshToken } = useAuth();
+
+// Manually refresh token
+try {
+  await refreshToken();
+  console.log('Token refreshed successfully');
+} catch (error) {
+  console.error('Token refresh failed, user logged out');
+}
+```
+
+If token refresh fails, the user is automatically logged out.
+
+## Server-Side Logout
+
+The `logout()` function now calls the server-side logout endpoint before clearing local state:
+
+```tsx
+const { logout } = useAuth();
+
+// Logout (invalidates token on server)
+await logout();
+```
+
+This ensures the bearer token is invalidated on the server, preventing its reuse.
+
+## Example: Complete Authentication Flow
+
+```tsx
+import { 
+  FirebaseAuthUI, 
+  AuthProvider, 
+  useAuth,
+  ProtectedRoute 
+} from '@smartlinks/auth-ui';
+
+function App() {
+  return (
+    <AuthProvider 
+      apiEndpoint="https://api.smartlinks.com"
+      clientId="your-client-id"
+    >
+      <Router>
+        <Routes>
+          <Route path="/login" element={<LoginPage />} />
+          <Route path="/dashboard" element={
+            <ProtectedRoute fallback={<Navigate to="/login" />}>
+              <Dashboard />
+            </ProtectedRoute>
+          } />
+        </Routes>
+      </Router>
+    </AuthProvider>
+  );
+}
+
+function LoginPage() {
+  const { login } = useAuth();
+
+  return (
+    <FirebaseAuthUI
+      apiEndpoint="https://api.smartlinks.com/api/v1/public/authui"
+      clientId="your-client-id"
+      accountData={{ plan: 'trial' }}
+      onAuthSuccess={(token, user, accountData) => {
+        // Auth context and Smartlinks SDK are automatically updated
+        login(token, user, accountData);
+      }}
+      enabledProviders={['email', 'google', 'phone']}
+    />
+  );
+}
+
+function Dashboard() {
+  const { user, smartlinks, logout } = useAuth();
+  const [data, setData] = useState(null);
+
+  useEffect(() => {
+    loadData();
+  }, []);
+
+  const loadData = async () => {
+    if (smartlinks) {
+      const result = await smartlinks.request('/api/dashboard');
+      setData(result);
+    }
+  };
+
+  const handleLogout = async () => {
+    await logout(); // Invalidates token on server
+    // User is redirected to login by ProtectedRoute
+  };
+
+  return (
+    <div>
+      <h1>Welcome, {user?.displayName}</h1>
+      <pre>{JSON.stringify(data, null, 2)}</pre>
+      <button onClick={handleLogout}>Logout</button>
+    </div>
+  );
+}
+```
+
+## Backend Requirements
+
+Your Smartlinks backend should implement these endpoints:
+
+### POST /auth/refresh
+```json
+Request: { "token": "current_bearer_token" }
+Response: { "token": "new_bearer_token" }
+```
+
+### POST /auth/logout
+```json
+Request: Headers: Authorization: Bearer {token}
+Response: { "success": true }
+```
+
+### GET /user/me
+```json
+Response: { "uid": "...", "email": "...", "displayName": "..." }
+```
+
+### PATCH /user/me
+```json
+Request: { "displayName": "New Name" }
+Response: { "uid": "...", "email": "...", "displayName": "New Name" }
+```
+
+### GET /account/me
+```json
+Response: { "clientId": "...", "plan": "pro", ... }
+```
+
+### PATCH /account/me
+```json
+Request: { "plan": "enterprise" }
+Response: { "clientId": "...", "plan": "enterprise", ... }
+```
+
+## TypeScript Support
+
+Full TypeScript definitions are included:
+
+```typescript
+import type { 
+  SmartlinksClient,
+  AuthContextValue 
+} from '@smartlinks/auth-ui';
+
+const { smartlinks }: AuthContextValue = useAuth();
+
+// smartlinks is typed as SmartlinksClient | null
+if (smartlinks) {
+  const data = await smartlinks.request<MyDataType>('/api/endpoint');
+}
+```
+
+## Error Handling
+
+```tsx
+const { smartlinks, logout } = useAuth();
+
+try {
+  const data = await smartlinks?.request('/api/endpoint');
+} catch (error) {
+  if (error.message.includes('401')) {
+    // Token expired or invalid
+    await logout();
+  } else {
+    console.error('API error:', error);
+  }
+}
+```
+
+## Benefits of Smartlinks SDK Integration
+
+1. **Automatic Token Management**: Token is automatically included in all API requests
+2. **Automatic Refresh**: Token refresh is handled seamlessly
+3. **Server-Side Logout**: Tokens are properly invalidated on logout
+4. **Type Safety**: Full TypeScript support for all API calls
+5. **Multi-Tenant Support**: Client ID automatically included in headers
+6. **Centralized Error Handling**: Consistent error handling across all requests
+7. **Profile & Account Management**: Built-in utilities for common operations

package/WHATSAPP_OTP_PLAN.md

@@ -0,0 +1,106 @@
+# WhatsApp OTP Flow — Implementation Plan
+
+This is the **outbound** WhatsApp flow: we send the user a templated WhatsApp
+message containing a 6-digit code, they type it back into the form. It mirrors
+the existing SMS phone-OTP flow (`PhoneAuthForm` + `sendPhoneCode` /
+`verifyPhoneCode`) but uses the WhatsApp Business API instead of SMS.
+
+This complements the existing **inbound** flow (user messages us, we
+auto-recognise their phone number and log them in) which is already shipping.
+
+## Why both flows
+
+| Flow | UX | Cost | When it shines |
+|---|---|---|---|
+| **Inbound** (live) | Type name → tap "Open WhatsApp" → hit send | Free (no Meta template fee) | Mobile-first, "magical" feel, opens 24h support window automatically |
+| **Outbound OTP** (this plan) | Type phone → receive code → type code | ~$0.005–0.05 per message (Meta authentication template) | Familiar pattern, works when user can't initiate (e.g. desktop without QR scan), no need for Meta-verified business profile to receive |
+
+Admin should be able to enable either or both. When both are enabled, the WhatsApp screen offers a toggle ("Send me a code" / "I'll message you").
+
+---
+
+## 1. Backend (you)
+
+Two new endpoints, mirroring the phone OTP pair:
+
+### `POST /authkit/:clientId/whatsapp-code`
+Request body:
+```json
+{ "phoneNumber": "+447700900123" }
+```
+Response:
+```json
+{ "verificationId": "wa_otp_abc123", "expiresAt": "2026-05-14T12:05:00Z" }
+```
+Behaviour:
+- Generate 6-digit code, hash it, store `{ verificationId, phoneHash, codeHash, expiresAt, attempts: 0 }` with 5-min TTL.
+- Send via Meta WhatsApp Cloud API using a pre-approved **authentication** template (e.g. `auth_code_v1` with `{{1}} = code`). Use the same Meta WABA + access token as the inbound flow.
+- Rate-limit: max 3 sends per phone per hour, max 1 send per 30s.
+- Errors: `429` rate-limited, `400` invalid phone, `502` Meta API error.
+
+### `POST /authkit/:clientId/whatsapp-code/verify`
+Request body:
+```json
+{ "verificationId": "wa_otp_abc123", "code": "482910" }
+```
+Response (success):
+```json
+{ "uid": "...", "token": "...", "refreshToken": "...", "isNewUser": true, "phoneNumber": "+447700900123" }
+```
+Behaviour:
+- Compare hashed code, decrement `attempts` (max 5), on success call existing `ensureAccount` + issue tokens (same flow as `verifyPhoneCode`).
+- Errors: `400` invalid/expired code, `429` too many attempts.
+
+### SDK additions (`@proveanything/smartlinks`)
+Add to the `authKit` namespace, mirroring `sendPhoneCode` / `verifyPhoneCode`:
+```ts
+authKit.sendWhatsAppCode(clientId, phoneNumber): Promise<{ verificationId, expiresAt }>
+authKit.verifyWhatsAppCode(clientId, verificationId, code): Promise<AuthResponse>
+```
+
+---
+
+## 2. Frontend (auth-module — to do once SDK ships)
+
+### `auth-module/src/api.ts`
+Add two methods alongside `sendPhoneCode` / `verifyPhoneCode`:
+```ts
+async sendWhatsAppCode(phoneNumber: string)
+async verifyWhatsAppCode(verificationId: string, code: string)
+```
+
+### `WhatsAppAuthForm.tsx`
+Extend with a `mode` prop: `'inbound' | 'otp' | 'both'`.
+- `inbound` (current behaviour, default): auto-issues link, polls webhook.
+- `otp`: phone input → sends code → 6-digit OTP screen (reuse `OTPInput`).
+- `both`: top-of-form segmented toggle ("Message us" / "Get a code"), defaulting to inbound on mobile and otp on desktop without QR scanner.
+
+### `SmartlinksAuthUI.tsx`
+Pass the configured WhatsApp mode (from AuthKit config) into `WhatsAppAuthForm`.
+Add a `handleWhatsAppOtp(phoneNumber, code)` callback that calls
+`api.verifyWhatsAppCode` and feeds the result into the same login pipeline as
+`handlePhoneAuth`.
+
+### Admin (`AdminPage.tsx`)
+Under the WhatsApp toggle, add a sub-radio when enabled:
+- ○ Inbound only (zero-friction)
+- ○ Code only (familiar)
+- ● Both (let user choose) ← default
+
+Persist as `whatsappMode: 'inbound' | 'otp' | 'both'` on the AuthKit config doc.
+
+---
+
+## 3. Sequencing
+
+1. **You**: implement the two backend endpoints + SDK methods, ship as e.g. `@proveanything/smartlinks@1.14.0`.
+2. **Me**: bump SDK version, add `api.ts` methods, extend form + admin toggle, wire into `SmartlinksAuthUI`.
+3. **Both**: end-to-end test on a real phone with a Meta-approved auth template.
+
+---
+
+## 4. Open questions
+
+- **Template approval**: do you have a Meta-approved WhatsApp authentication template ready, or do we need to submit one? (Approval takes 1–24h.)
+- **Phone number sharing with SMS**: should the WhatsApp OTP flow fall back to SMS if the user doesn't have WhatsApp installed (no read receipt within e.g. 60s)? This is a nice-to-have but adds complexity.
+- **Cost cap**: do you want a per-AuthKit daily budget cap on WhatsApp template sends to prevent abuse?

package/dist/api.d.ts

@@ -20,6 +20,21 @@ export declare class AuthAPI {
         tokenType?: 'id_token' | 'access_token';
     }): Promise<AuthResponse>;
     loginWithGoogleCode(code: string, redirectUri: string): Promise<AuthResponse>;
+    /**
+     * Sign in with Apple via an identity token (from native "Sign in with Apple"
+     * or the web JS flow). The backend verifies the JWT against Apple's keys.
+     *
+     * Delegates to `smartlinks.authKit.appleLogin`, which on success stores the
+     * bearer token automatically and invalidates the SDK cache.
+     */
+    loginWithApple(identityToken: string, options?: {
+        authorizationCode?: string;
+        nonce?: string;
+        appleUserInfo?: {
+            email?: string;
+            name?: string;
+        };
+    }): Promise<AuthResponse>;
     sendPhoneCode(phoneNumber: string): Promise<{
         verificationId: string;
     }>;

package/dist/api.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../src/api.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAIpF;;;GAGG;AACH,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,UAAU,CAAC,CAAS;IAC5B,OAAO,CAAC,GAAG,CAAyC;gBAExC,YAAY,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,UAAU;IAQxF,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAI7D,QAAQ,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC;IAWnD,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAC7C,cAAc,CAAC,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,GAAG,EAAE,MAAM,CAAC;YAAC,OAAO,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QACjF,SAAS,CAAC,EAAE,UAAU,GAAG,cAAc,CAAC;KACzC,GAAG,OAAO,CAAC,YAAY,CAAC;IAmBnB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAc7E,aAAa,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,cAAc,EAAE,MAAM,CAAA;KAAE,CAAC;IAIvE,eAAe,CACnB,WAAW,EAAE,MAAM,EACnB,IAAI,EAAE,MAAM,GACX,OAAO,CAAC,YAAY,CAAC;IAIlB,oBAAoB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IA0BxG,gBAAgB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAmBlH,qBAAqB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAIzG,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IASzH,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAIhF,kBAAkB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAStH,WAAW,IAAI,OAAO,CAAC,YAAY,CAAC;IAsB1C;;;;OAIG;IACG,aAAa,CAAC,IAAI,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,WAAW,CAAC,EAAE,MAAM,CAAC;QAAC,WAAW,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAyBlG,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAQvH,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAM3E,YAAY,CAChB,WAAW,EAAE,MAAM,EACnB,WAAW,CAAC,EAAE,MAAM,EACpB,KAAK,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,GAAG,CAAC,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,WAAW,EAAE,MAAM,CAAC;YAAC,SAAS,EAAE,MAAM,CAAA;SAAE,CAAA;KAAE,EACzF,cAAc,CAAC,EAAE,MAAM,EACvB,WAAW,CAAC,EAAE;QACZ,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QACnC,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,GACA,OAAO,CAAC;QACT,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;IAeI,uBAAuB,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAIxG,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC;QAC9C,EAAE,EAAE,OAAO,CAAC;QACZ,MAAM,EAAE,SAAS,GAAG,UAAU,GAAG,QAAQ,GAAG,SAAS,GAAG,SAAS,CAAC;QAClE,QAAQ,EAAE,OAAO,CAAC;QAClB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;QAC5B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;KAC7B,CAAC;IAII,cAAc,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAChE,OAAO,EAAE,OAAO,CAAC;QACjB,QAAQ,EAAE,OAAO,CAAC;QAClB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;KAC7B,CAAC;CAGH"}
+{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../src/api.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAIpF;;;GAGG;AACH,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,UAAU,CAAC,CAAS;IAC5B,OAAO,CAAC,GAAG,CAAyC;gBAExC,YAAY,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,UAAU;IAQxF,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAI7D,QAAQ,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC;IAWnD,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAC7C,cAAc,CAAC,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,GAAG,EAAE,MAAM,CAAC;YAAC,OAAO,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QACjF,SAAS,CAAC,EAAE,UAAU,GAAG,cAAc,CAAC;KACzC,GAAG,OAAO,CAAC,YAAY,CAAC;IAmBnB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAcnF;;;;;;OAMG;IACG,cAAc,CAClB,aAAa,EAAE,MAAM,EACrB,OAAO,CAAC,EAAE;QACR,iBAAiB,CAAC,EAAE,MAAM,CAAC;QAC3B,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,aAAa,CAAC,EAAE;YAAE,KAAK,CAAC,EAAE,MAAM,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;KACnD,GACA,OAAO,CAAC,YAAY,CAAC;IAelB,aAAa,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,cAAc,EAAE,MAAM,CAAA;KAAE,CAAC;IAIvE,eAAe,CACnB,WAAW,EAAE,MAAM,EACnB,IAAI,EAAE,MAAM,GACX,OAAO,CAAC,YAAY,CAAC;IAIlB,oBAAoB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IA0BxG,gBAAgB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAmBlH,qBAAqB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAIzG,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IASzH,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAIhF,kBAAkB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAStH,WAAW,IAAI,OAAO,CAAC,YAAY,CAAC;IAsB1C;;;;OAIG;IACG,aAAa,CAAC,IAAI,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,WAAW,CAAC,EAAE,MAAM,CAAC;QAAC,WAAW,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAyBlG,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAQvH,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAM3E,YAAY,CAChB,WAAW,EAAE,MAAM,EACnB,WAAW,CAAC,EAAE,MAAM,EACpB,KAAK,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,GAAG,CAAC,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,WAAW,EAAE,MAAM,CAAC;YAAC,SAAS,EAAE,MAAM,CAAA;SAAE,CAAA;KAAE,EACzF,cAAc,CAAC,EAAE,MAAM,EACvB,WAAW,CAAC,EAAE;QACZ,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QACnC,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,GACA,OAAO,CAAC;QACT,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;IAeI,uBAAuB,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAIxG,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC;QAC9C,EAAE,EAAE,OAAO,CAAC;QACZ,MAAM,EAAE,SAAS,GAAG,UAAU,GAAG,QAAQ,GAAG,SAAS,GAAG,SAAS,CAAC;QAClE,QAAQ,EAAE,OAAO,CAAC;QAClB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;QAC5B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;KAC7B,CAAC;IAII,cAAc,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAChE,OAAO,EAAE,OAAO,CAAC;QACjB,QAAQ,EAAE,OAAO,CAAC;QAClB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;KAC7B,CAAC;CAGH"}

package/dist/components/ProviderButtons.d.ts

@@ -6,6 +6,7 @@ interface ProviderButtonsProps {
     providerOrder?: string[];
     onEmailLogin?: () => void;
     onGoogleLogin: () => Promise<void>;
+    onAppleLogin?: () => Promise<void> | void;
     onPhoneLogin: () => void;
     onMagicLinkLogin?: () => void;
     onWhatsAppLogin?: () => void;

package/dist/components/ProviderButtons.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ProviderButtons.d.ts","sourceRoot":"","sources":["../../src/components/ProviderButtons.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAC7C,OAAO,gBAAgB,CAAC;AAExB,UAAU,oBAAoB;IAC5B,gBAAgB,EAAE,YAAY,EAAE,CAAC;IACjC,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,YAAY,CAAC,EAAE,MAAM,IAAI,CAAC;IAC1B,aAAa,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACnC,YAAY,EAAE,MAAM,IAAI,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,IAAI,CAAC;IAC9B,eAAe,CAAC,EAAE,MAAM,IAAI,CAAC;IAC7B,OAAO,EAAE,OAAO,CAAC;CAClB;AAED,eAAO,MAAM,eAAe,EAAE,KAAK,CAAC,EAAE,CAAC,oBAAoB,CAqI1D,CAAC"}
+{"version":3,"file":"ProviderButtons.d.ts","sourceRoot":"","sources":["../../src/components/ProviderButtons.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAC7C,OAAO,gBAAgB,CAAC;AAExB,UAAU,oBAAoB;IAC5B,gBAAgB,EAAE,YAAY,EAAE,CAAC;IACjC,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,YAAY,CAAC,EAAE,MAAM,IAAI,CAAC;IAC1B,aAAa,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACnC,YAAY,CAAC,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAC1C,YAAY,EAAE,MAAM,IAAI,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,IAAI,CAAC;IAC9B,eAAe,CAAC,EAAE,MAAM,IAAI,CAAC;IAC7B,OAAO,EAAE,OAAO,CAAC;CAClB;AAED,eAAO,MAAM,eAAe,EAAE,KAAK,CAAC,EAAE,CAAC,oBAAoB,CA+I1D,CAAC"}

package/dist/components/SmartlinksAuthUI.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SmartlinksAuthUI.d.ts","sourceRoot":"","sources":["../../src/components/SmartlinksAuthUI.tsx"],"names":[],"mappings":"AAAA,OAAO,KAA+C,MAAM,OAAO,CAAC;AAcpE,OAAO,KAAK,EAAE,qBAAqB,EAAyF,MAAM,UAAU,CAAC;AA2V7I,QAAA,MAAM,mBAAmB,QAAa,OAAO,CAAC,IAAI,CAqBjD,CAAC;AAqDF,OAAO,EAAE,mBAAmB,EAAE,CAAC;AAI/B,eAAO,MAAM,gBAAgB,EAAE,KAAK,CAAC,EAAE,CAAC,qBAAqB,CAwwE5D,CAAC"}
+{"version":3,"file":"SmartlinksAuthUI.d.ts","sourceRoot":"","sources":["../../src/components/SmartlinksAuthUI.tsx"],"names":[],"mappings":"AAAA,OAAO,KAA+C,MAAM,OAAO,CAAC;AAcpE,OAAO,KAAK,EAAE,qBAAqB,EAAyF,MAAM,UAAU,CAAC;AAwW7I,QAAA,MAAM,mBAAmB,QAAa,OAAO,CAAC,IAAI,CAqBjD,CAAC;AAqDF,OAAO,EAAE,mBAAmB,EAAE,CAAC;AAI/B,eAAO,MAAM,gBAAgB,EAAE,KAAK,CAAC,EAAE,CAAC,qBAAqB,CAu2E5D,CAAC"}

package/dist/context/AuthContext.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"AuthContext.d.ts","sourceRoot":"","sources":["../../src/context/AuthContext.tsx"],"names":[],"mappings":"AAAA,OAAO,KAA8E,MAAM,OAAO,CAAC;AAOnG,OAAO,KAAK,EAAqC,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,UAAU,CAAC;AAGvG,eAAO,MAAM,WAAW,6CAAyD,CAAC;AAGlF,YAAY,EAAE,gBAAgB,EAAE,CAAC;AAEjC,eAAO,MAAM,YAAY,EAAE,KAAK,CAAC,EAAE,CAAC,iBAAiB,CAkrCpD,CAAC;AAEF,eAAO,MAAM,OAAO,QAAO,gBAM1B,CAAC"}
+{"version":3,"file":"AuthContext.d.ts","sourceRoot":"","sources":["../../src/context/AuthContext.tsx"],"names":[],"mappings":"AAAA,OAAO,KAA8E,MAAM,OAAO,CAAC;AAOnG,OAAO,KAAK,EAAqC,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,UAAU,CAAC;AAGvG,eAAO,MAAM,WAAW,6CAAyD,CAAC;AAGlF,YAAY,EAAE,gBAAgB,EAAE,CAAC;AAEjC,eAAO,MAAM,YAAY,EAAE,KAAK,CAAC,EAAE,CAAC,iBAAiB,CAg1CpD,CAAC;AAEF,eAAO,MAAM,OAAO,QAAO,gBAM1B,CAAC"}

package/dist/index.d.ts

@@ -5,6 +5,8 @@ export type { SmartlinksFrameProps, IframeResizeOptions, IframeResponderOptions,
 export { AuthProvider, useAuth } from './context/AuthContext';
 export { ProtectedRoute } from './components/ProtectedRoute';
 export { tokenStorage } from './utils/tokenStorage';
+export { setStorageAdapter } from './utils/persistentStorage';
+export type { PersistentStorage, StorageBackend } from './utils/persistentStorage';
 export { AuthUIPreview } from './components/AuthUIPreview';
 export { getDefaultAuthKitId, setDefaultAuthKitId } from './utils/defaultAuthKit';
 export { getFriendlyErrorMessage, isConflictError, isAuthError, isRateLimitError, isServerError, getErrorStatusCode, getErrorCode } from './utils/errorHandling';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.tsx"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AAGjE,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAGnE,OAAO,EACL,eAAe,EAEf,gBAAgB,EAChB,cAAc,EAEd,iBAAiB,EACjB,eAAe,EACf,iBAAiB,GAClB,MAAM,8BAA8B,CAAC;AACtC,YAAY,EACV,oBAAoB,EACpB,mBAAmB,EACnB,sBAAsB,EACtB,UAAU,EACV,aAAa,GACd,MAAM,8BAA8B,CAAC;AAGtC,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAGpD,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAG3D,OAAO,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAGlF,OAAO,EACL,uBAAuB,EACvB,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,aAAa,EACb,kBAAkB,EAClB,YAAY,EACb,MAAM,uBAAuB,CAAC;AAG/B,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,aAAa,EAAE,MAAM,kCAAkC,CAAC;AAC3K,YAAY,EAAE,aAAa,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAE/F,YAAY,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACpH,4CAA4C;AAC5C,YAAY,EAAE,aAAa,IAAI,WAAW,EAAE,MAAM,kCAAkC,CAAC;AACrF,mFAAmF;AACnF,YAAY,EAAE,qBAAqB,IAAI,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAGxF,YAAY,EACV,kBAAkB,EAClB,uBAAuB,EACvB,YAAY,EACZ,aAAa,GACd,MAAM,wBAAwB,CAAC;AAGhC,mBAAmB,SAAS,CAAC;AAC7B,YAAY,EAAE,UAAU,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAG5E,OAAO,EAAE,gBAAgB,IAAI,cAAc,EAAE,MAAM,+BAA+B,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.tsx"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AAGjE,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAGnE,OAAO,EACL,eAAe,EAEf,gBAAgB,EAChB,cAAc,EAEd,iBAAiB,EACjB,eAAe,EACf,iBAAiB,GAClB,MAAM,8BAA8B,CAAC;AACtC,YAAY,EACV,oBAAoB,EACpB,mBAAmB,EACnB,sBAAsB,EACtB,UAAU,EACV,aAAa,GACd,MAAM,8BAA8B,CAAC;AAGtC,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAC9D,YAAY,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAInF,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAG3D,OAAO,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAGlF,OAAO,EACL,uBAAuB,EACvB,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,aAAa,EACb,kBAAkB,EAClB,YAAY,EACb,MAAM,uBAAuB,CAAC;AAG/B,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,aAAa,EAAE,MAAM,kCAAkC,CAAC;AAC3K,YAAY,EAAE,aAAa,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAE/F,YAAY,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACpH,4CAA4C;AAC5C,YAAY,EAAE,aAAa,IAAI,WAAW,EAAE,MAAM,kCAAkC,CAAC;AACrF,mFAAmF;AACnF,YAAY,EAAE,qBAAqB,IAAI,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAGxF,YAAY,EACV,kBAAkB,EAClB,uBAAuB,EACvB,YAAY,EACZ,aAAa,GACd,MAAM,wBAAwB,CAAC;AAGhC,mBAAmB,SAAS,CAAC;AAC7B,YAAY,EAAE,UAAU,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAG5E,OAAO,EAAE,gBAAgB,IAAI,cAAc,EAAE,MAAM,+BAA+B,CAAC"}