@pureq/auth 0.2.0

package/dist/oidc/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/oidc/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAWhD,OAAO,EAAE,eAAe,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAC3E,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACnC,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAa5C,MAAM,yBAAyB,GAAG,IAAI,CAAC;AACvC,MAAM,aAAa,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,aAAa;AACnD,MAAM,kBAAkB,GAAG,KAAM,CAAC;AAElC,SAAS,eAAe,CAAC,GAA4B;IACnD,MAAM,WAAW,GAAG,GAAG,CAAC,YAAY,IAAI,GAAG,CAAC,WAAW,CAAC;IACxD,IAAI,OAAO,WAAW,KAAK,QAAQ,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,EAAE,CAAC;QAC3D,MAAM,eAAe,CAAC,mCAAmC,EAAE,oDAAoD,EAAE;YAC/G,OAAO,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;SACrD,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,WAAW;QACX,GAAG,CAAC,OAAO,GAAG,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACtE,GAAG,CAAC,OAAO,GAAG,CAAC,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,YAAY,EAAE,GAAG,CAAC,aAAa,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACrF,GAAG,CAAC,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC5E,GAAG,CAAC,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC5E,GAAG,CAAC,OAAO,GAAG,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9D,GAAG;KACJ,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,aAAa,CAAC,YAAoB;IAC/C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,YAAY,CAAC,CAAC;IAC3C,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,eAAe,CAAC,6BAA6B,EAAE,wCAAwC,QAAQ,CAAC,MAAM,GAAG,EAAE;YAC/G,OAAO,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,YAAY,EAAE;SACnD,CAAC,CAAC;IACL,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA0B,CAAC;IAC9D,IAAI,CAAC,IAAI,CAAC,sBAAsB,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC;QACzD,MAAM,eAAe,CAAC,uCAAuC,EAAE,wCAAwC,EAAE;YACvG,OAAO,EAAE,EAAE,YAAY,EAAE;SAC1B,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,sBAAsB,EAAE,IAAI,CAAC,sBAAsB;QACnD,cAAc,EAAE,IAAI,CAAC,cAAc;QACnC,GAAG,CAAC,IAAI,CAAC,iBAAiB,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,iBAAiB,EAAE,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9F,GAAG,CAAC,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACnE,GAAG,CAAC,IAAI,CAAC,oBAAoB,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,oBAAoB,EAAE,IAAI,CAAC,oBAAoB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACvG,GAAG,CAAC,IAAI,CAAC,mBAAmB,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,mBAAmB,EAAE,IAAI,CAAC,mBAAmB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACpG,GAAG,CAAC,IAAI,CAAC,sBAAsB,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,sBAAsB,EAAE,IAAI,CAAC,sBAAsB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7G,GAAG,CAAC,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAC9D,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,mBAAmB,CAAC,QAAgB;IACjD,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC;IACzF,OAAO,eAAe,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;AACjD,CAAC;AAED,SAAS,cAAc,CAAC,QAAwC;IAC9D,IAAI,QAAQ,YAAY,eAAe,EAAE,CAAC;QACxC,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,IAAI,QAAQ,YAAY,GAAG,EAAE,CAAC;QAC5B,OAAO,QAAQ,CAAC,YAAY,CAAC;IAC/B,CAAC;IAED,IAAI,QAAQ,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACtE,OAAO,IAAI,GAAG,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC;IACxC,CAAC;IAED,IAAI,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC7B,OAAO,IAAI,eAAe,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAChD,CAAC;IAED,OAAO,IAAI,eAAe,CAAC,QAAQ,CAAC,CAAC;AACvC,CAAC;AAED,SAAS,gBAAgB,CAAC,KAA0B,EAAE,GAAW;IAC/D,IAAI,KAAK,CAAC,IAAI,IAAI,kBAAkB,EAAE,CAAC;QACrC,OAAO;IACT,CAAC;IACD,KAAK,MAAM,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,KAAK,EAAE,CAAC;QAC9B,IAAI,GAAG,GAAG,EAAE,GAAG,aAAa,IAAI,KAAK,CAAC,IAAI,GAAG,kBAAkB,EAAE,CAAC;YAChE,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACpB,CAAC;IACH,CAAC;AACH,CAAC;AAED,uDAAuD;AACvD,SAAS,qBAAqB,CAC5B,OAAe,EACf,cAAkC,EAClC,gBAAwB,EACxB,aAAiC;IAEjC,IAAI,MAA4H,CAAC;IACjI,IAAI,CAAC;QACH,MAAM,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC;IAC9B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,eAAe,CAAC,6BAA6B,EAAE,kCAAkC,CAAC,CAAC;IAC3F,CAAC;IAED,IAAI,cAAc,IAAI,MAAM,CAAC,GAAG,KAAK,cAAc,EAAE,CAAC;QACpD,MAAM,eAAe,CAAC,qCAAqC,EAAE,iCAAiC,EAAE;YAC9F,OAAO,EAAE,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,EAAE,MAAM,CAAC,GAAG,IAAI,WAAW,EAAE;SACzE,CAAC,CAAC;IACL,CAAC;IAED,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAClE,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;QACpC,MAAM,eAAe,CAAC,uCAAuC,EAAE,mCAAmC,EAAE;YAClG,OAAO,EAAE,EAAE,QAAQ,EAAE,gBAAgB,EAAE;SACxC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,OAAO,MAAM,CAAC,GAAG,KAAK,QAAQ,IAAI,MAAM,CAAC,GAAG,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QACrE,MAAM,eAAe,CAAC,6BAA6B,EAAE,6BAA6B,CAAC,CAAC;IACtF,CAAC;IAED,IAAI,aAAa,IAAI,MAAM,CAAC,KAAK,KAAK,aAAa,EAAE,CAAC;QACpD,MAAM,eAAe,CAAC,oCAAoC,EAAE,gCAAgC,CAAC,CAAC;IAChG,CAAC;AACH,CAAC;AAED,SAAS,eAAe,CAAC,QAAgB,EAAE,YAAoB;IAC7D,OAAO,SAAS,YAAY,CAAC,GAAG,QAAQ,IAAI,YAAY,EAAE,CAAC,EAAE,CAAC;AAChE,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,QAAwC,EACxC,aAAsB;IAEtB,MAAM,MAAM,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;IAExC,MAAM,UAAU,GAAG,CAAC,IAAY,EAAiB,EAAE;QACjD,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QACvE,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtB,MAAM,eAAe,CAAC,6BAA6B,EAAE,uCAAuC,IAAI,YAAY,EAAE;gBAC5G,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE;aAC7B,CAAC,CAAC;QACL,CAAC;QACD,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;QAChC,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,CAAC,MAAM,GAAG,yBAAyB,EAAE,CAAC;YAC/D,MAAM,eAAe,CAAC,6BAA6B,EAAE,wBAAwB,IAAI,eAAe,EAAE;gBAChG,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE;aACnD,CAAC,CAAC;QACL,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;IAEF,MAAM,KAAK,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;IAClC,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,WAAW,GAAG,UAAU,CAAC,mBAAmB,CAAC,CAAC;QACpD,MAAM,eAAe,CAAC,2BAA2B,EAAE,WAAW,CAAC,CAAC,CAAC,+BAA+B,KAAK,MAAM,WAAW,EAAE,CAAC,CAAC,CAAC,+BAA+B,KAAK,GAAG,EAAE;YAClK,OAAO,EAAE;gBACP,KAAK;gBACL,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aACxC;SACF,CAAC,CAAC;IACL,CAAC;IAED,MAAM,IAAI,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;IAChC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,eAAe,CAAC,yBAAyB,EAAE,oDAAoD,EAAE;YACrG,OAAO,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE;SACxC,CAAC,CAAC;IACL,CAAC;IAED,MAAM,KAAK,GAAG,UAAU,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC;IAC/C,IAAI,aAAa,IAAI,KAAK,KAAK,aAAa,EAAE,CAAC;QAC7C,MAAM,eAAe,CAAC,2BAA2B,EAAE,4BAA4B,EAAE;YAC/E,OAAO,EAAE;gBACP,aAAa;gBACb,GAAG,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aAC1C;SACF,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,IAAI;QACJ,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAC5B,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,cAAc,CAAC,OAAwB;IACrD,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE,EAAE,CAAC;QAC7B,MAAM,eAAe,CAAC,kCAAkC,EAAE,kCAAkC,EAAE;YAC5F,OAAO,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE;SAC/B,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,EAAE,EAAE,CAAC;QACjC,MAAM,eAAe,CAAC,kCAAkC,EAAE,sCAAsC,EAAE;YAChG,OAAO,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE;SACnC,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,EAAE,EAAE,CAAC;QAChC,MAAM,eAAe,CAAC,kCAAkC,EAAE,qCAAqC,EAAE;YAC/F,OAAO,EAAE,EAAE,KAAK,EAAE,aAAa,EAAE;SAClC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,GAAiC,IAAI,CAAC;IACzD,qCAAqC;IACrC,MAAM,qBAAqB,GAAG,IAAI,GAAG,EAAkB,CAAC;IACxD,MAAM,UAAU,GAAgC,OAAO,CAAC,uBAAuB,IAAI,oBAAoB,CAAC;IAExG,MAAM,WAAW,GAAG,GAA0B,EAAE;QAC9C,IAAI,CAAC,eAAe,EAAE,CAAC;YACrB,eAAe,GAAG,aAAa,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;QACxD,CAAC;QAED,OAAO,eAAe,CAAC;IACzB,CAAC,CAAC;IAEF,MAAM,iBAAiB,GAAG,GAA2B,EAAE;QACrD,MAAM,OAAO,GAA2B,EAAE,cAAc,EAAE,mCAAmC,EAAE,CAAC;QAChG,IAAI,UAAU,KAAK,qBAAqB,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;YACjE,OAAO,CAAC,eAAe,CAAC,GAAG,eAAe,CAAC,OAAO,CAAC,QAAQ,EAAE,OAAO,CAAC,YAAY,CAAC,CAAC;QACrF,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC,CAAC;IAEF,MAAM,uBAAuB,GAAG,CAAC,IAAqB,EAAQ,EAAE;QAC9D,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;QACxC,IAAI,UAAU,KAAK,oBAAoB,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;YAChE,IAAI,CAAC,GAAG,CAAC,eAAe,EAAE,OAAO,CAAC,YAAY,CAAC,CAAC;QAClD,CAAC;IACH,CAAC,CAAC;IAEF,OAAO;QACL,KAAK,CAAC,mBAAmB,CAAC,uBAAiD,EAAE;YAC3E,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;YACrC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,sBAAsB,CAAC,CAAC;YACrD,MAAM,KAAK,GAAG,oBAAoB,CAAC,KAAK,IAAI,gBAAgB,CAAC,YAAY,CAAC,CAAC;YAC3E,MAAM,KAAK,GAAG,oBAAoB,CAAC,KAAK,IAAI,gBAAgB,CAAC,YAAY,CAAC,CAAC;YAC3E,MAAM,KAAK,GAAG,oBAAoB,CAAC,KAAK,IAAI,OAAO,CAAC,YAAY,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC/E,MAAM,YAAY,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;YAC9C,MAAM,mBAAmB,GAAG,oBAAoB,CAAC,mBAAmB,IAAI,MAAM,CAAC;YAC/E,MAAM,aAAa,GACjB,oBAAoB,CAAC,aAAa;gBAClC,CAAC,mBAAmB,KAAK,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,MAAM,mBAAmB,CAAC,YAAY,CAAC,CAAC,CAAC;YAE7F,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;YAC9C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;YACpD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;YAC1D,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;YAC/C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YACrC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YACrC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,gBAAgB,EAAE,aAAa,CAAC,CAAC;YACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,uBAAuB,EAAE,mBAAmB,CAAC,CAAC;YAEnE,IAAI,oBAAoB,CAAC,MAAM,EAAE,CAAC;gBAChC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,oBAAoB,CAAC,MAAM,CAAC,CAAC;YAC9D,CAAC;YAED,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,oBAAoB,CAAC,WAAW,IAAI,EAAE,CAAC,EAAE,CAAC;gBAClF,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;YACnC,CAAC;YAED,OAAO,EAAE,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,YAAY,EAAE,KAAK,EAAE,CAAC;QAC7D,CAAC;QAED,KAAK,CAAC,YAAY,CAAC,IAAY,EAAE,cAAiD;YAChF,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;YACrC,MAAM,IAAI,GAAG,IAAI,eAAe,CAAC;gBAC/B,UAAU,EAAE,oBAAoB;gBAChC,IAAI;gBACJ,YAAY,EAAE,OAAO,CAAC,WAAW;gBACjC,aAAa,EAAE,cAAc,CAAC,YAAY;aAC3C,CAAC,CAAC;YACH,uBAAuB,CAAC,IAAI,CAAC,CAAC;YAE9B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,cAAc,EAAE;gBACpD,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,iBAAiB,EAAE;gBAC5B,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;aACtB,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,eAAe,CAAC,kCAAkC,EAAE,qCAAqC,QAAQ,CAAC,MAAM,GAAG,EAAE;oBACjH,OAAO,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,aAAa,EAAE,QAAQ,CAAC,cAAc,EAAE;iBAC7E,CAAC,CAAC;YACL,CAAC;YAED,MAAM,aAAa,GAAG,eAAe,CAAC,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAC,CAAC;YAE1F,uCAAuC;YACvC,IAAI,aAAa,CAAC,OAAO,EAAE,CAAC;gBAC1B,qBAAqB,CAAC,aAAa,CAAC,OAAO,EAAE,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;YAC7F,CAAC;YAED,OAAO,aAAa,CAAC;QACvB,CAAC;QAED,KAAK,CAAC,gBAAgB,CACpB,QAAwC,EACxC,cAAmH;YAEnH,MAAM,MAAM,GAAG,uBAAuB,CAAC,QAAQ,EAAE,cAAc,CAAC,aAAa,CAAC,CAAC;YAE/E,qCAAqC;YACrC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACvB,gBAAgB,CAAC,qBAAqB,EAAE,GAAG,CAAC,CAAC;YAE7C,MAAM,UAAU,GAAG,qBAAqB,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;YAC1D,IAAI,UAAU,KAAK,SAAS,IAAI,GAAG,GAAG,UAAU,GAAG,aAAa,EAAE,CAAC;gBACjE,MAAM,eAAe,CAAC,4BAA4B,EAAE,2CAA2C,EAAE;oBAC/F,OAAO,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE;iBAC/B,CAAC,CAAC;YACL,CAAC;YACD,qBAAqB,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;YAE5C,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,EAAE;gBACzD,YAAY,EAAE,cAAc,CAAC,YAAY;aAC1C,CAAC,CAAC;YAEH,2CAA2C;YAC3C,IAAI,aAAa,CAAC,OAAO,IAAI,cAAc,CAAC,aAAa,EAAE,CAAC;gBAC1D,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;gBACrC,qBAAqB,CAAC,aAAa,CAAC,OAAO,EAAE,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC,QAAQ,EAAE,cAAc,CAAC,aAAa,CAAC,CAAC;YAChH,CAAC;YAED,OAAO,aAAa,CAAC;QACvB,CAAC;QAED,KAAK,CAAC,OAAO,CAAC,YAAoB;YAChC,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;YACrC,MAAM,IAAI,GAAG,IAAI,eAAe,CAAC;gBAC/B,UAAU,EAAE,eAAe;gBAC3B,aAAa,EAAE,YAAY;aAC5B,CAAC,CAAC;YACH,uBAAuB,CAAC,IAAI,CAAC,CAAC;YAE9B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,cAAc,EAAE;gBACpD,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,iBAAiB,EAAE;gBAC5B,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;aACtB,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,eAAe,CAAC,iCAAiC,EAAE,qCAAqC,QAAQ,CAAC,MAAM,GAAG,EAAE;oBAChH,OAAO,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,aAAa,EAAE,QAAQ,CAAC,cAAc,EAAE;iBAC7E,CAAC,CAAC;YACL,CAAC;YAED,OAAO,eAAe,CAAC,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAC,CAAC;QAC7E,CAAC;QAED,oEAAoE;QACpE,KAAK,CAAC,WAAW,CAAC,WAAmB;YACnC,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;YACrC,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,CAAC;gBAChC,MAAM,eAAe,CAAC,iCAAiC,EAAE,0DAA0D,CAAC,CAAC;YACvH,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,iBAAiB,EAAE;gBACvD,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;aACpD,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,eAAe,CAAC,4BAA4B,EAAE,wCAAwC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;YAClH,CAAC;YAED,OAAO,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAC;QAC5D,CAAC;QAED,4DAA4D;QAC5D,KAAK,CAAC,YAAY,CAAC,aAA0F;YAC3G,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;YACrC,IAAI,CAAC,QAAQ,CAAC,oBAAoB,EAAE,CAAC;gBACnC,MAAM,eAAe,CAAC,oCAAoC,EAAE,8DAA8D,CAAC,CAAC;YAC9H,CAAC;YAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC;YACnD,IAAI,aAAa,EAAE,WAAW,EAAE,CAAC;gBAC/B,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,aAAa,CAAC,WAAW,CAAC,CAAC;YACnE,CAAC;YACD,IAAI,aAAa,EAAE,qBAAqB,EAAE,CAAC;gBACzC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,0BAA0B,EAAE,aAAa,CAAC,qBAAqB,CAAC,CAAC;YACxF,CAAC;YACD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;YACpD,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;QACxB,CAAC;QAED,iDAAiD;QACjD,KAAK,CAAC,UAAU,CAAC,KAAa;YAC5B,MAAM,QAAQ,GAAG,MAAM,WAAW,EAAE,CAAC;YACrC,IAAI,CAAC,QAAQ,CAAC,sBAAsB,EAAE,CAAC;gBACrC,MAAM,eAAe,CAAC,sCAAsC,EAAE,gEAAgE,CAAC,CAAC;YAClI,CAAC;YAED,MAAM,IAAI,GAAG,IAAI,eAAe,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;YAC5C,uBAAuB,CAAC,IAAI,CAAC,CAAC;YAE9B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,sBAAsB,EAAE;gBAC5D,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,iBAAiB,EAAE;gBAC5B,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;aACtB,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,eAAe,CAAC,iCAAiC,EAAE,2CAA2C,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;YAC1H,CAAC;YAED,OAAO,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAC;QAC5D,CAAC;KACF,CAAC;AACJ,CAAC;AAED,4DAA4D;AAC5D,MAAM,CAAC,MAAM,cAAc,GAAG,cAAc,CAAC;AAE7C,MAAM,UAAU,0BAA0B,CACxC,QAAgC,EAChC,OAA+G;IAE/G,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;QAC1B,MAAM,eAAe,CAAC,6BAA6B,EAAE,uCAAuC,EAAE;YAC5F,OAAO,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE;SAC3B,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,EAAE,EAAE,CAAC;QAClC,MAAM,eAAe,CAAC,6BAA6B,EAAE,+CAA+C,EAAE;YACpG,OAAO,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,EAAE,QAAQ,CAAC,IAAI,EAAE;SAC5D,CAAC,CAAC;IACL,CAAC;IAED,MAAM,IAAI,GAAG,cAAc,CAAC;QAC1B,GAAG,OAAO;QACV,YAAY,EAAE,QAAQ,CAAC,YAAY;QACnC,GAAG,CAAC,OAAO,CAAC,YAAY,KAAK,SAAS,IAAI,QAAQ,CAAC,YAAY,KAAK,SAAS;YAC3E,CAAC,CAAC,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,IAAI,QAAQ,CAAC,YAAY,EAAE;YACjE,CAAC,CAAC,EAAE,CAAC;KACR,CAAC,CAAC;IAEH,OAAO;QACL,KAAK,CAAC,mBAAmB,CAAC,uBAAiD,EAAE;YAC3E,QAAQ,CAAC,4BAA4B,EAAE,CAAC,oBAAoB,CAAC,CAAC;YAC9D,OAAO,IAAI,CAAC,mBAAmB,CAAC;gBAC9B,GAAG,oBAAoB;gBACvB,WAAW,EAAE;oBACX,GAAG,CAAC,QAAQ,CAAC,qBAAqB,IAAI,EAAE,CAAC;oBACzC,GAAG,CAAC,oBAAoB,CAAC,WAAW,IAAI,EAAE,CAAC;iBAC5C;aACF,CAAC,CAAC;QACL,CAAC;QACD,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC;QAC1C,gBAAgB,EAAE,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC;QAClD,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;QAChC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACzE,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC5E,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KACvE,CAAC;AACJ,CAAC;AAED,wEAAwE;AACxE,MAAM,CAAC,MAAM,0BAA0B,GAAG,0BAA0B,CAAC;AAErE,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/oidc/providers.d.ts

@@ -0,0 +1,21 @@
+import type { OIDCProviderDefinition } from "../shared";
+/**
+ * Built-in OIDC provider definitions.
+ * FEAT-M7: Extended with Apple, Discord, Slack, GitLab, Keycloak, Okta, Cognito, and generic.
+ */
+export declare const oidcProviders: {
+    google: () => OIDCProviderDefinition;
+    github: () => OIDCProviderDefinition;
+    microsoft: (tenant?: string) => OIDCProviderDefinition;
+    auth0: (domain: string) => OIDCProviderDefinition;
+    apple: () => OIDCProviderDefinition;
+    discord: () => OIDCProviderDefinition;
+    slack: () => OIDCProviderDefinition;
+    gitlab: (baseUrl?: string) => OIDCProviderDefinition;
+    keycloak: (baseUrl: string, realm: string) => OIDCProviderDefinition;
+    okta: (domain: string) => OIDCProviderDefinition;
+    cognito: (domain: string, region?: string) => OIDCProviderDefinition;
+    /** Generic OIDC provider — pass any discovery URL. */
+    generic: (name: string, discoveryUrl: string, defaultScope?: readonly string[]) => OIDCProviderDefinition;
+};
+//# sourceMappingURL=providers.d.ts.map

package/dist/oidc/providers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"providers.d.ts","sourceRoot":"","sources":["../../src/oidc/providers.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AA6BxD;;;GAGG;AACH,eAAO,MAAM,aAAa;;;;oBAiBR,MAAM;;;;;wBAuCF,MAAM,SAAS,MAAM;mBAM1B,MAAM;sBAMH,MAAM,WAAW,MAAM;IAWzC,sDAAsD;oBACtC,MAAM,gBAAgB,MAAM,iBAAiB,SAAS,MAAM,EAAE;CAM/E,CAAC"}

package/dist/oidc/providers.js

@@ -0,0 +1,51 @@
+import { createAuthError } from "../shared";
+function assertNonEmpty(value, label) {
+    const normalized = value.trim();
+    if (!normalized) {
+        throw createAuthError("PUREQ_OIDC_INVALID_PROVIDER", `pureq: ${label} is required`, {
+            details: { label },
+        });
+    }
+    return normalized;
+}
+function provider(name, discoveryUrl, defaultScope, authorizationDefaults, validateAuthorizationOptions) {
+    return {
+        name: assertNonEmpty(name, "provider name"),
+        discoveryUrl: assertNonEmpty(discoveryUrl, "discovery url"),
+        ...(defaultScope ? { defaultScope } : {}),
+        ...(authorizationDefaults ? { authorizationDefaults } : {}),
+        ...(validateAuthorizationOptions ? { validateAuthorizationOptions } : {}),
+    };
+}
+/**
+ * Built-in OIDC provider definitions.
+ * FEAT-M7: Extended with Apple, Discord, Slack, GitLab, Keycloak, Okta, Cognito, and generic.
+ */
+export const oidcProviders = {
+    google: () => provider("google", "https://accounts.google.com/.well-known/openid-configuration", ["openid", "profile", "email"], { access_type: "offline", include_granted_scopes: "true" }),
+    github: () => provider("github", "https://github.com/.well-known/openid-configuration", ["openid", "read:user", "user:email"]),
+    microsoft: (tenant = "common") => provider("microsoft", `https://login.microsoftonline.com/${assertNonEmpty(tenant, "microsoft tenant")}/v2.0/.well-known/openid-configuration`, ["openid", "profile", "email"], { response_mode: "query" }),
+    auth0: (domain) => provider("auth0", `https://${assertNonEmpty(domain, "auth0 domain").replace(/^https?:\/\//, "")}/.well-known/openid-configuration`, ["openid", "profile", "email"], undefined, (options) => {
+        if (options.codeChallengeMethod === "plain") {
+            throw createAuthError("PUREQ_OIDC_INVALID_PROVIDER", "pureq: auth0 provider requires S256 PKCE challenge method", {
+                details: { provider: "auth0", codeChallengeMethod: "plain" },
+            });
+        }
+    }),
+    apple: () => provider("apple", "https://appleid.apple.com/.well-known/openid-configuration", ["openid", "name", "email"], { response_mode: "form_post" }),
+    discord: () => provider("discord", "https://discord.com/.well-known/openid-configuration", ["openid", "identify", "email"]),
+    slack: () => provider("slack", "https://slack.com/.well-known/openid-configuration", ["openid", "profile", "email"]),
+    gitlab: (baseUrl = "https://gitlab.com") => provider("gitlab", `${assertNonEmpty(baseUrl, "gitlab base url").replace(/\/$/, "")}/.well-known/openid-configuration`, ["openid", "profile", "email"]),
+    keycloak: (baseUrl, realm) => provider("keycloak", `${assertNonEmpty(baseUrl, "keycloak base url").replace(/\/$/, "")}/realms/${assertNonEmpty(realm, "keycloak realm")}/.well-known/openid-configuration`, ["openid", "profile", "email"]),
+    okta: (domain) => provider("okta", `https://${assertNonEmpty(domain, "okta domain").replace(/^https?:\/\//, "").replace(/\/$/, "")}/.well-known/openid-configuration`, ["openid", "profile", "email"]),
+    cognito: (domain, region) => {
+        const cleanDomain = assertNonEmpty(domain, "cognito domain").replace(/^https?:\/\//, "").replace(/\/$/, "");
+        const discoveryBase = region
+            ? `https://cognito-idp.${region}.amazonaws.com/${cleanDomain}`
+            : `https://${cleanDomain}`;
+        return provider("cognito", `${discoveryBase}/.well-known/openid-configuration`, ["openid", "profile", "email"]);
+    },
+    /** Generic OIDC provider — pass any discovery URL. */
+    generic: (name, discoveryUrl, defaultScope) => provider(assertNonEmpty(name, "provider name"), assertNonEmpty(discoveryUrl, "discovery url"), defaultScope ?? ["openid"]),
+};
+//# sourceMappingURL=providers.js.map

package/dist/oidc/providers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"providers.js","sourceRoot":"","sources":["../../src/oidc/providers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAG5C,SAAS,cAAc,CAAC,KAAa,EAAE,KAAa;IAClD,MAAM,UAAU,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAChC,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,eAAe,CAAC,6BAA6B,EAAE,UAAU,KAAK,cAAc,EAAE;YAClF,OAAO,EAAE,EAAE,KAAK,EAAE;SACnB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,SAAS,QAAQ,CACf,IAAY,EACZ,YAAoB,EACpB,YAAgC,EAChC,qBAAwD,EACxD,4BAAqF;IAErF,OAAO;QACL,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,eAAe,CAAC;QAC3C,YAAY,EAAE,cAAc,CAAC,YAAY,EAAE,eAAe,CAAC;QAC3D,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,YAAY,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACzC,GAAG,CAAC,qBAAqB,CAAC,CAAC,CAAC,EAAE,qBAAqB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC3D,GAAG,CAAC,4BAA4B,CAAC,CAAC,CAAC,EAAE,4BAA4B,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAC1E,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,aAAa,GAAG;IAC3B,MAAM,EAAE,GAAG,EAAE,CACX,QAAQ,CACN,QAAQ,EACR,8DAA8D,EAC9D,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,EAC9B,EAAE,WAAW,EAAE,SAAS,EAAE,sBAAsB,EAAE,MAAM,EAAE,CAC3D;IACH,MAAM,EAAE,GAAG,EAAE,CACX,QAAQ,CAAC,QAAQ,EAAE,qDAAqD,EAAE,CAAC,QAAQ,EAAE,WAAW,EAAE,YAAY,CAAC,CAAC;IAClH,SAAS,EAAE,CAAC,MAAM,GAAG,QAAQ,EAAE,EAAE,CAC/B,QAAQ,CACN,WAAW,EACX,qCAAqC,cAAc,CAAC,MAAM,EAAE,kBAAkB,CAAC,wCAAwC,EACvH,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,EAC9B,EAAE,aAAa,EAAE,OAAO,EAAE,CAC3B;IACH,KAAK,EAAE,CAAC,MAAc,EAAE,EAAE,CACxB,QAAQ,CACN,OAAO,EACP,WAAW,cAAc,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,mCAAmC,EAChH,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,EAC9B,SAAS,EACT,CAAC,OAAO,EAAE,EAAE;QACV,IAAI,OAAO,CAAC,mBAAmB,KAAK,OAAO,EAAE,CAAC;YAC5C,MAAM,eAAe,CAAC,6BAA6B,EAAE,2DAA2D,EAAE;gBAChH,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,mBAAmB,EAAE,OAAO,EAAE;aAC7D,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CACF;IACH,KAAK,EAAE,GAAG,EAAE,CACV,QAAQ,CACN,OAAO,EACP,4DAA4D,EAC5D,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAC3B,EAAE,aAAa,EAAE,WAAW,EAAE,CAC/B;IACH,OAAO,EAAE,GAAG,EAAE,CACZ,QAAQ,CACN,SAAS,EACT,sDAAsD,EACtD,CAAC,QAAQ,EAAE,UAAU,EAAE,OAAO,CAAC,CAChC;IACH,KAAK,EAAE,GAAG,EAAE,CACV,QAAQ,CACN,OAAO,EACP,oDAAoD,EACpD,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAC/B;IACH,MAAM,EAAE,CAAC,OAAO,GAAG,oBAAoB,EAAE,EAAE,CACzC,QAAQ,CACN,QAAQ,EACR,GAAG,cAAc,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,mCAAmC,EACnG,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAC/B;IACH,QAAQ,EAAE,CAAC,OAAe,EAAE,KAAa,EAAE,EAAE,CAC3C,QAAQ,CACN,UAAU,EACV,GAAG,cAAc,CAAC,OAAO,EAAE,mBAAmB,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,WAAW,cAAc,CAAC,KAAK,EAAE,gBAAgB,CAAC,mCAAmC,EACvJ,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAC/B;IACH,IAAI,EAAE,CAAC,MAAc,EAAE,EAAE,CACvB,QAAQ,CACN,MAAM,EACN,WAAW,cAAc,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,mCAAmC,EAClI,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAC/B;IACH,OAAO,EAAE,CAAC,MAAc,EAAE,MAAe,EAAE,EAAE;QAC3C,MAAM,WAAW,GAAG,cAAc,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAC5G,MAAM,aAAa,GAAG,MAAM;YAC1B,CAAC,CAAC,uBAAuB,MAAM,kBAAkB,WAAW,EAAE;YAC9D,CAAC,CAAC,WAAW,WAAW,EAAE,CAAC;QAC7B,OAAO,QAAQ,CACb,SAAS,EACT,GAAG,aAAa,mCAAmC,EACnD,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAC/B,CAAC;IACJ,CAAC;IACD,sDAAsD;IACtD,OAAO,EAAE,CAAC,IAAY,EAAE,YAAoB,EAAE,YAAgC,EAAE,EAAE,CAChF,QAAQ,CACN,cAAc,CAAC,IAAI,EAAE,eAAe,CAAC,EACrC,cAAc,CAAC,YAAY,EAAE,eAAe,CAAC,EAC7C,YAAY,IAAI,CAAC,QAAQ,CAAC,CAC3B;CACJ,CAAC"}

package/dist/presets/index.d.ts

@@ -0,0 +1,13 @@
+import type { AuthBridge, AuthBridgeCookieOptions, AuthSessionManager, AuthSessionManagerOptions, AuthStore } from "../shared";
+export interface AuthPresetOptions {
+    readonly storage?: AuthStore;
+    readonly session?: AuthSessionManagerOptions;
+    readonly bridge?: AuthBridgeCookieOptions;
+}
+export interface AuthPreset {
+    readonly storage: AuthStore;
+    readonly session: AuthSessionManager;
+    readonly bridge: AuthBridge;
+}
+export declare function createAuthPreset(options?: AuthPresetOptions): AuthPreset;
+//# sourceMappingURL=index.d.ts.map

package/dist/presets/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/presets/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,yBAAyB,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAK/H,MAAM,WAAW,iBAAiB;IAChC,QAAQ,CAAC,OAAO,CAAC,EAAE,SAAS,CAAC;IAC7B,QAAQ,CAAC,OAAO,CAAC,EAAE,yBAAyB,CAAC;IAC7C,QAAQ,CAAC,MAAM,CAAC,EAAE,uBAAuB,CAAC;CAC3C;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC;IAC5B,QAAQ,CAAC,OAAO,EAAE,kBAAkB,CAAC;IACrC,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAC;CAC7B;AAED,wBAAgB,gBAAgB,CAAC,OAAO,GAAE,iBAAsB,GAAG,UAAU,CAQ5E"}

package/dist/presets/index.js

@@ -0,0 +1,12 @@
+import { authMemoryStore } from "../storage";
+import { createAuthBridge } from "../bridge";
+import { createAuthSessionManager } from "../session";
+export function createAuthPreset(options = {}) {
+    const storage = options.storage ?? authMemoryStore();
+    return {
+        storage,
+        session: createAuthSessionManager(storage, options.session),
+        bridge: createAuthBridge(options.bridge),
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/presets/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/presets/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAC7C,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,wBAAwB,EAAE,MAAM,YAAY,CAAC;AActD,MAAM,UAAU,gBAAgB,CAAC,UAA6B,EAAE;IAC9D,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,eAAe,EAAE,CAAC;IAErD,OAAO;QACL,OAAO;QACP,OAAO,EAAE,wBAAwB,CAAC,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC;QAC3D,MAAM,EAAE,gBAAgB,CAAC,OAAO,CAAC,MAAM,CAAC;KACzC,CAAC;AACJ,CAAC"}

package/dist/providers/callbackContracts.d.ts

@@ -0,0 +1,14 @@
+export interface ProviderCallbackContractInput {
+    readonly provider: string;
+    readonly callback: string | URL | URLSearchParams;
+    readonly expectedState?: string;
+    readonly requireCodeVerifier?: boolean;
+    readonly codeVerifier?: string | null;
+}
+export interface ProviderCallbackContractResult {
+    readonly provider: string;
+    readonly code: string;
+    readonly state?: string;
+}
+export declare function validateProviderCallbackContract(input: ProviderCallbackContractInput): ProviderCallbackContractResult;
+//# sourceMappingURL=callbackContracts.d.ts.map

package/dist/providers/callbackContracts.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"callbackContracts.d.ts","sourceRoot":"","sources":["../../src/providers/callbackContracts.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,6BAA6B;IAC5C,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,GAAG,GAAG,eAAe,CAAC;IAClD,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM,CAAC;IAChC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,OAAO,CAAC;IACvC,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACvC;AAED,MAAM,WAAW,8BAA8B;IAC7C,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,wBAAgB,gCAAgC,CAAC,KAAK,EAAE,6BAA6B,GAAG,8BAA8B,CAgBrH"}

package/dist/providers/callbackContracts.js

@@ -0,0 +1,14 @@
+import { parseOIDCCallbackParams } from "../oidc";
+import { createAuthError } from "../shared";
+export function validateProviderCallbackContract(input) {
+    const parsed = parseOIDCCallbackParams(input.callback, input.expectedState);
+    if (input.requireCodeVerifier && (!input.codeVerifier || !input.codeVerifier.trim())) {
+        throw createAuthError("PUREQ_AUTH_MISSING_TOKEN", "pureq: callback contract requires codeVerifier", { details: { provider: input.provider } });
+    }
+    return {
+        provider: input.provider,
+        code: parsed.code,
+        ...(parsed.state !== undefined ? { state: parsed.state } : {}),
+    };
+}
+//# sourceMappingURL=callbackContracts.js.map

package/dist/providers/callbackContracts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"callbackContracts.js","sourceRoot":"","sources":["../../src/providers/callbackContracts.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,MAAM,SAAS,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAgB5C,MAAM,UAAU,gCAAgC,CAAC,KAAoC;IACnF,MAAM,MAAM,GAAG,uBAAuB,CAAC,KAAK,CAAC,QAAQ,EAAE,KAAK,CAAC,aAAa,CAAC,CAAC;IAE5E,IAAI,KAAK,CAAC,mBAAmB,IAAI,CAAC,CAAC,KAAK,CAAC,YAAY,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC;QACrF,MAAM,eAAe,CACnB,0BAA0B,EAC1B,gDAAgD,EAChD,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,CAC1C,CAAC;IACJ,CAAC;IAED,OAAO;QACL,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,GAAG,CAAC,MAAM,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAC/D,CAAC;AACJ,CAAC"}

package/dist/providers/errors.d.ts

@@ -0,0 +1,9 @@
+export interface ProviderNormalizedError {
+    readonly code: string;
+    readonly message: string;
+    readonly status: number;
+    readonly retriable: boolean;
+}
+export declare const PROVIDER_ERROR_NORMALIZATION_TABLE: Readonly<Record<string, ProviderNormalizedError>>;
+export declare function normalizeProviderError(error: unknown): ProviderNormalizedError;
+//# sourceMappingURL=errors.d.ts.map

package/dist/providers/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/providers/errors.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,uBAAuB;IACtC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,SAAS,EAAE,OAAO,CAAC;CAC7B;AAED,eAAO,MAAM,kCAAkC,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,uBAAuB,CAAC,CAiDhG,CAAC;AAEF,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,OAAO,GAAG,uBAAuB,CAiB9E"}

package/dist/providers/errors.js

@@ -0,0 +1,66 @@
+export const PROVIDER_ERROR_NORMALIZATION_TABLE = {
+    PUREQ_OIDC_CALLBACK_ERROR: {
+        code: "PUREQ_OIDC_CALLBACK_ERROR",
+        message: "OIDC callback failed",
+        status: 400,
+        retriable: false,
+    },
+    PUREQ_OIDC_STATE_MISMATCH: {
+        code: "PUREQ_OIDC_STATE_MISMATCH",
+        message: "Invalid callback state",
+        status: 400,
+        retriable: false,
+    },
+    PUREQ_OIDC_MISSING_CODE: {
+        code: "PUREQ_OIDC_MISSING_CODE",
+        message: "Missing authorization code",
+        status: 400,
+        retriable: false,
+    },
+    PUREQ_OIDC_TOKEN_EXCHANGE_FAILED: {
+        code: "PUREQ_OIDC_TOKEN_EXCHANGE_FAILED",
+        message: "Provider token exchange failed",
+        status: 502,
+        retriable: true,
+    },
+    PUREQ_OIDC_TOKEN_REFRESH_FAILED: {
+        code: "PUREQ_OIDC_TOKEN_REFRESH_FAILED",
+        message: "Provider token refresh failed",
+        status: 502,
+        retriable: true,
+    },
+    PUREQ_OIDC_INVALID_TOKEN_RESPONSE: {
+        code: "PUREQ_OIDC_INVALID_TOKEN_RESPONSE",
+        message: "Provider returned invalid token response",
+        status: 502,
+        retriable: false,
+    },
+    PUREQ_AUTH_INVALID_PROVIDER: {
+        code: "PUREQ_AUTH_INVALID_PROVIDER",
+        message: "Unsupported provider configuration",
+        status: 400,
+        retriable: false,
+    },
+    PUREQ_AUTH_UNAUTHORIZED: {
+        code: "PUREQ_AUTH_UNAUTHORIZED",
+        message: "Provider authentication denied",
+        status: 401,
+        retriable: false,
+    },
+};
+export function normalizeProviderError(error) {
+    const code = error && typeof error === "object" && "code" in error && typeof error.code === "string"
+        ? error.code
+        : "PUREQ_PROVIDER_UNKNOWN";
+    const known = PROVIDER_ERROR_NORMALIZATION_TABLE[code];
+    if (known) {
+        return known;
+    }
+    return {
+        code,
+        message: "Provider operation failed",
+        status: 500,
+        retriable: false,
+    };
+}
+//# sourceMappingURL=errors.js.map

package/dist/providers/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/providers/errors.ts"],"names":[],"mappings":"AAOA,MAAM,CAAC,MAAM,kCAAkC,GAAsD;IACnG,yBAAyB,EAAE;QACzB,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,sBAAsB;QAC/B,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB;IACD,yBAAyB,EAAE;QACzB,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,wBAAwB;QACjC,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB;IACD,uBAAuB,EAAE;QACvB,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,4BAA4B;QACrC,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB;IACD,gCAAgC,EAAE;QAChC,IAAI,EAAE,kCAAkC;QACxC,OAAO,EAAE,gCAAgC;QACzC,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,IAAI;KAChB;IACD,+BAA+B,EAAE;QAC/B,IAAI,EAAE,iCAAiC;QACvC,OAAO,EAAE,+BAA+B;QACxC,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,IAAI;KAChB;IACD,iCAAiC,EAAE;QACjC,IAAI,EAAE,mCAAmC;QACzC,OAAO,EAAE,0CAA0C;QACnD,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB;IACD,2BAA2B,EAAE;QAC3B,IAAI,EAAE,6BAA6B;QACnC,OAAO,EAAE,oCAAoC;QAC7C,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB;IACD,uBAAuB,EAAE;QACvB,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,gCAAgC;QACzC,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB;CACF,CAAC;AAEF,MAAM,UAAU,sBAAsB,CAAC,KAAc;IACnD,MAAM,IAAI,GACR,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,MAAM,IAAI,KAAK,IAAI,OAAQ,KAA2B,CAAC,IAAI,KAAK,QAAQ;QAC5G,CAAC,CAAE,KAA0B,CAAC,IAAI;QAClC,CAAC,CAAC,wBAAwB,CAAC;IAE/B,MAAM,KAAK,GAAG,kCAAkC,CAAC,IAAI,CAAC,CAAC;IACvD,IAAI,KAAK,EAAE,CAAC;QACV,OAAO,KAAK,CAAC;IACf,CAAC;IAED,OAAO;QACL,IAAI;QACJ,OAAO,EAAE,2BAA2B;QACpC,MAAM,EAAE,GAAG;QACX,SAAS,EAAE,KAAK;KACjB,CAAC;AACJ,CAAC"}

package/dist/providers/index.d.ts

@@ -0,0 +1,28 @@
+import type { AuthProvider, AuthCredentialsProviderOptions, AuthEmailProviderOptions, AuthUser } from "../shared";
+export { createTopProviderPreset } from "./presets";
+export { listTopProviderPresets } from "./presets";
+export type { TopProviderPreset, TopProviderPresetOptions } from "./presets";
+export { validateProviderCallbackContract } from "./callbackContracts";
+export type { ProviderCallbackContractInput, ProviderCallbackContractResult } from "./callbackContracts";
+export { normalizeProviderError, PROVIDER_ERROR_NORMALIZATION_TABLE } from "./errors";
+export type { ProviderNormalizedError } from "./errors";
+/**
+ * FEAT-H3: Credentials-based sign-in provider.
+ * Accepts a user-supplied authorize function that validates credentials and returns a user.
+ */
+export declare function credentialsProvider(options: AuthCredentialsProviderOptions): AuthProvider & {
+    authorize(credentials: Readonly<Record<string, string>>): Promise<AuthUser | null>;
+};
+/**
+ * FEAT-H3: Email / magic-link sign-in provider.
+ * Uses a verification token flow for passwordless authentication.
+ */
+export declare function emailProvider(options: AuthEmailProviderOptions): AuthProvider & {
+    sendVerificationRequest(params: {
+        identifier: string;
+        url: string;
+        token: string;
+    }): Promise<void>;
+};
+export type { AuthProvider, AuthCredentialsProviderOptions, AuthEmailProviderOptions } from "../shared";
+//# sourceMappingURL=index.d.ts.map

package/dist/providers/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/providers/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,wBAAwB,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAClH,OAAO,EAAE,uBAAuB,EAAE,MAAM,WAAW,CAAC;AACpD,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,YAAY,EAAE,iBAAiB,EAAE,wBAAwB,EAAE,MAAM,WAAW,CAAC;AAC7E,OAAO,EAAE,gCAAgC,EAAE,MAAM,qBAAqB,CAAC;AACvE,YAAY,EAAE,6BAA6B,EAAE,8BAA8B,EAAE,MAAM,qBAAqB,CAAC;AACzG,OAAO,EAAE,sBAAsB,EAAE,kCAAkC,EAAE,MAAM,UAAU,CAAC;AACtF,YAAY,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAC;AAExD;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,8BAA8B,GAAG,YAAY,GAAG;IAC3F,SAAS,CAAC,WAAW,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC;CACpF,CAOA;AAED;;;GAGG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,wBAAwB,GAAG,YAAY,GAAG;IAC/E,uBAAuB,CAAC,MAAM,EAAE;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACpG,CAOA;AAED,YAAY,EAAE,YAAY,EAAE,8BAA8B,EAAE,wBAAwB,EAAE,MAAM,WAAW,CAAC"}

package/dist/providers/index.js

@@ -0,0 +1,29 @@
+export { createTopProviderPreset } from "./presets";
+export { listTopProviderPresets } from "./presets";
+export { validateProviderCallbackContract } from "./callbackContracts";
+export { normalizeProviderError, PROVIDER_ERROR_NORMALIZATION_TABLE } from "./errors";
+/**
+ * FEAT-H3: Credentials-based sign-in provider.
+ * Accepts a user-supplied authorize function that validates credentials and returns a user.
+ */
+export function credentialsProvider(options) {
+    return {
+        id: options.id ?? "credentials",
+        type: "credentials",
+        name: options.name ?? "Credentials",
+        authorize: options.authorize,
+    };
+}
+/**
+ * FEAT-H3: Email / magic-link sign-in provider.
+ * Uses a verification token flow for passwordless authentication.
+ */
+export function emailProvider(options) {
+    return {
+        id: options.id ?? "email",
+        type: "email",
+        name: options.name ?? "Email",
+        sendVerificationRequest: options.sendVerificationRequest,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/providers/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/providers/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,uBAAuB,EAAE,MAAM,WAAW,CAAC;AACpD,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AAEnD,OAAO,EAAE,gCAAgC,EAAE,MAAM,qBAAqB,CAAC;AAEvE,OAAO,EAAE,sBAAsB,EAAE,kCAAkC,EAAE,MAAM,UAAU,CAAC;AAGtF;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAAuC;IAGzE,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,aAAa;QAC/B,IAAI,EAAE,aAAa;QACnB,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,aAAa;QACnC,SAAS,EAAE,OAAO,CAAC,SAAS;KAC7B,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,aAAa,CAAC,OAAiC;IAG7D,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,OAAO;QACzB,IAAI,EAAE,OAAO;QACb,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,OAAO;QAC7B,uBAAuB,EAAE,OAAO,CAAC,uBAAuB;KACzD,CAAC;AACJ,CAAC"}

package/dist/providers/presets.d.ts

@@ -0,0 +1,17 @@
+import type { OIDCProviderDefinition } from "../shared";
+declare const TOP_PROVIDER_PRESETS: readonly ["google", "github", "microsoft", "auth0", "apple", "okta", "keycloak", "cognito", "gitlab", "discord", "slack", "generic"];
+export type TopProviderPreset = (typeof TOP_PROVIDER_PRESETS)[number];
+export interface TopProviderPresetOptions {
+    readonly tenant?: string;
+    readonly domain?: string;
+    readonly baseUrl?: string;
+    readonly realm?: string;
+    readonly region?: string;
+    readonly providerName?: string;
+    readonly discoveryUrl?: string;
+    readonly defaultScope?: readonly string[];
+}
+export declare function listTopProviderPresets(): readonly TopProviderPreset[];
+export declare function createTopProviderPreset(name: TopProviderPreset, options?: TopProviderPresetOptions): OIDCProviderDefinition;
+export {};
+//# sourceMappingURL=presets.d.ts.map

package/dist/providers/presets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"presets.d.ts","sourceRoot":"","sources":["../../src/providers/presets.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AAExD,QAAA,MAAM,oBAAoB,sIAahB,CAAC;AAEX,MAAM,MAAM,iBAAiB,GAAG,CAAC,OAAO,oBAAoB,CAAC,CAAC,MAAM,CAAC,CAAC;AAEtE,MAAM,WAAW,wBAAwB;IACvC,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,YAAY,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;CAC3C;AAED,wBAAgB,sBAAsB,IAAI,SAAS,iBAAiB,EAAE,CAErE;AASD,wBAAgB,uBAAuB,CAAC,IAAI,EAAE,iBAAiB,EAAE,OAAO,GAAE,wBAA6B,GAAG,sBAAsB,CAqE/H"}

package/dist/providers/presets.js

@@ -0,0 +1,84 @@
+import { oidcProviders } from "../oidc/providers";
+import { createAuthError } from "../shared";
+const TOP_PROVIDER_PRESETS = [
+    "google",
+    "github",
+    "microsoft",
+    "auth0",
+    "apple",
+    "okta",
+    "keycloak",
+    "cognito",
+    "gitlab",
+    "discord",
+    "slack",
+    "generic",
+];
+export function listTopProviderPresets() {
+    return TOP_PROVIDER_PRESETS;
+}
+function requireNonEmpty(value, message, details) {
+    if (!value || !value.trim()) {
+        throw createAuthError("PUREQ_OIDC_INVALID_PROVIDER", message, { details });
+    }
+    return value.trim();
+}
+export function createTopProviderPreset(name, options = {}) {
+    if (name === "google") {
+        return oidcProviders.google();
+    }
+    if (name === "github") {
+        return oidcProviders.github();
+    }
+    if (name === "microsoft") {
+        const tenant = options.tenant ?? "common";
+        if (!tenant.trim()) {
+            throw createAuthError("PUREQ_OIDC_INVALID_PROVIDER", "pureq: microsoft preset requires a non-empty tenant", {
+                details: { provider: "microsoft" },
+            });
+        }
+        return oidcProviders.microsoft(tenant);
+    }
+    if (name === "apple") {
+        return oidcProviders.apple();
+    }
+    if (name === "okta") {
+        const domain = requireNonEmpty(options.domain, "pureq: okta preset requires domain", { provider: "okta" });
+        return oidcProviders.okta(domain);
+    }
+    if (name === "keycloak") {
+        const baseUrl = requireNonEmpty(options.baseUrl, "pureq: keycloak preset requires baseUrl", { provider: "keycloak" });
+        const realm = requireNonEmpty(options.realm, "pureq: keycloak preset requires realm", { provider: "keycloak" });
+        return oidcProviders.keycloak(baseUrl, realm);
+    }
+    if (name === "cognito") {
+        const domain = requireNonEmpty(options.domain, "pureq: cognito preset requires domain", { provider: "cognito" });
+        return oidcProviders.cognito(domain, options.region);
+    }
+    if (name === "gitlab") {
+        return oidcProviders.gitlab(options.baseUrl);
+    }
+    if (name === "discord") {
+        return oidcProviders.discord();
+    }
+    if (name === "slack") {
+        return oidcProviders.slack();
+    }
+    if (name === "generic") {
+        const providerName = requireNonEmpty(options.providerName, "pureq: generic preset requires providerName", {
+            provider: "generic",
+        });
+        const discoveryUrl = requireNonEmpty(options.discoveryUrl, "pureq: generic preset requires discoveryUrl", {
+            provider: "generic",
+        });
+        return oidcProviders.generic(providerName, discoveryUrl, options.defaultScope);
+    }
+    const domain = options.domain;
+    if (!domain || !domain.trim()) {
+        throw createAuthError("PUREQ_OIDC_INVALID_PROVIDER", "pureq: auth0 preset requires domain", {
+            details: { provider: "auth0" },
+        });
+    }
+    return oidcProviders.auth0(domain);
+}
+//# sourceMappingURL=presets.js.map

package/dist/providers/presets.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"presets.js","sourceRoot":"","sources":["../../src/providers/presets.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAG5C,MAAM,oBAAoB,GAAG;IAC3B,QAAQ;IACR,QAAQ;IACR,WAAW;IACX,OAAO;IACP,OAAO;IACP,MAAM;IACN,UAAU;IACV,SAAS;IACT,QAAQ;IACR,SAAS;IACT,OAAO;IACP,SAAS;CACD,CAAC;AAeX,MAAM,UAAU,sBAAsB;IACpC,OAAO,oBAAoB,CAAC;AAC9B,CAAC;AAED,SAAS,eAAe,CAAC,KAAyB,EAAE,OAAe,EAAE,OAAyC;IAC5G,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;QAC5B,MAAM,eAAe,CAAC,6BAA6B,EAAE,OAAO,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;IAC7E,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;AACtB,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,IAAuB,EAAE,UAAoC,EAAE;IACrG,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtB,OAAO,aAAa,CAAC,MAAM,EAAE,CAAC;IAChC,CAAC;IAED,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtB,OAAO,aAAa,CAAC,MAAM,EAAE,CAAC;IAChC,CAAC;IAED,IAAI,IAAI,KAAK,WAAW,EAAE,CAAC;QACzB,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,QAAQ,CAAC;QAC1C,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;YACnB,MAAM,eAAe,CAAC,6BAA6B,EAAE,qDAAqD,EAAE;gBAC1G,OAAO,EAAE,EAAE,QAAQ,EAAE,WAAW,EAAE;aACnC,CAAC,CAAC;QACL,CAAC;QACD,OAAO,aAAa,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACzC,CAAC;IAED,IAAI,IAAI,KAAK,OAAO,EAAE,CAAC;QACrB,OAAO,aAAa,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;IAED,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;QACpB,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,MAAM,EAAE,oCAAoC,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3G,OAAO,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACpC,CAAC;IAED,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;QACxB,MAAM,OAAO,GAAG,eAAe,CAAC,OAAO,CAAC,OAAO,EAAE,yCAAyC,EAAE,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;QACtH,MAAM,KAAK,GAAG,eAAe,CAAC,OAAO,CAAC,KAAK,EAAE,uCAAuC,EAAE,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;QAChH,OAAO,aAAa,CAAC,QAAQ,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IAChD,CAAC;IAED,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;QACvB,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,MAAM,EAAE,uCAAuC,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC,CAAC;QACjH,OAAO,aAAa,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;IACvD,CAAC;IAED,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtB,OAAO,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IAC/C,CAAC;IAED,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;QACvB,OAAO,aAAa,CAAC,OAAO,EAAE,CAAC;IACjC,CAAC;IAED,IAAI,IAAI,KAAK,OAAO,EAAE,CAAC;QACrB,OAAO,aAAa,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;IAED,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;QACvB,MAAM,YAAY,GAAG,eAAe,CAAC,OAAO,CAAC,YAAY,EAAE,6CAA6C,EAAE;YACxG,QAAQ,EAAE,SAAS;SACpB,CAAC,CAAC;QACH,MAAM,YAAY,GAAG,eAAe,CAAC,OAAO,CAAC,YAAY,EAAE,6CAA6C,EAAE;YACxG,QAAQ,EAAE,SAAS;SACpB,CAAC,CAAC;QACH,OAAO,aAAa,CAAC,OAAO,CAAC,YAAY,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,CAAC,CAAC;IACjF,CAAC;IAED,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAC9B,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;QAC9B,MAAM,eAAe,CAAC,6BAA6B,EAAE,qCAAqC,EAAE;YAC1F,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE;SAC/B,CAAC,CAAC;IACL,CAAC;IAED,OAAO,aAAa,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;AACrC,CAAC"}

package/dist/revocation/index.d.ts

@@ -0,0 +1,10 @@
+import type { Middleware } from "@pureq/pureq";
+import type { AuthRevocationGuardOptions, AuthRevocationRegistry, AuthRevocationRegistryBackend } from "../shared";
+/**
+ * Create a revocation registry.
+ * SEC-H3: Accepts an optional pluggable backend for distributed deployments (Redis, DB, etc.).
+ * Default is in-memory.
+ */
+export declare function createAuthRevocationRegistry(backend?: AuthRevocationRegistryBackend): AuthRevocationRegistry;
+export declare function withRevocationGuard(options: AuthRevocationGuardOptions): Middleware;
+//# sourceMappingURL=index.d.ts.map

package/dist/revocation/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/revocation/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE/C,OAAO,KAAK,EAEV,0BAA0B,EAC1B,sBAAsB,EACtB,6BAA6B,EAC9B,MAAM,WAAW,CAAC;AA6DnB;;;;GAIG;AACH,wBAAgB,4BAA4B,CAAC,OAAO,CAAC,EAAE,6BAA6B,GAAG,sBAAsB,CAsH5G;AAED,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,0BAA0B,GAAG,UAAU,CAsBnF"}