@revealui/auth 0.0.1-pre.0

package/dist/better-auth/plugin/lib/build-collections/team-members.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../src/better-auth/plugin/lib/build-collections/team-members.ts"],"sourcesContent":["import { baModelKey } from '../../constants';\nimport { getAdminAccess } from '../../helpers/get-admin-access';\nimport {\n  assertAllSchemaFields,\n  getSchemaCollectionSlug,\n  getSchemaFieldName,\n} from './utils/collection-schema';\nimport { filterDuplicateFields } from './utils/filter-duplicate-fields';\nimport { getCollectionFields } from './utils/transform-schema-fields-to-payload';\n\nimport type { TeamMember } from '@/better-auth/generated-types';\nimport type { BuildCollectionProps, FieldOverrides } from '@/better-auth/plugin/types';\nimport type { CollectionConfig } from 'payload';\n\nexport function buildTeamMembersCollection({\n  incomingCollections,\n  pluginOptions,\n  resolvedSchemas,\n}: BuildCollectionProps): CollectionConfig {\n  const teamMemberSlug = getSchemaCollectionSlug(resolvedSchemas, baModelKey.teamMember);\n  const teamMemberSchema = resolvedSchemas[baModelKey.teamMember];\n\n  const existingTeamMemberCollection = incomingCollections.find(\n    collection => collection.slug === teamMemberSlug\n  ) as CollectionConfig | undefined;\n\n  const fieldOverrides: FieldOverrides<keyof TeamMember> = {\n    teamId: () => ({\n      index: true,\n      admin: { readOnly: true, description: 'The team that the membership belongs to.' },\n    }),\n    userId: () => ({\n      index: true,\n      admin: { readOnly: true, description: 'The user that is a member of the team.' },\n    }),\n  };\n\n  const collectionFields = getCollectionFields({\n    schema: teamMemberSchema,\n    additionalProperties: fieldOverrides,\n  });\n\n  const teamMemberCollection: CollectionConfig = {\n    ...existingTeamMemberCollection,\n    slug: teamMemberSlug,\n    admin: {\n      hidden: pluginOptions.hidePluginCollections ?? false,\n      useAsTitle: getSchemaFieldName(resolvedSchemas, baModelKey.teamMember, 'teamId'),\n      description: 'Team members of an organization team.',\n      group: pluginOptions?.collectionAdminGroup ?? 'Auth',\n      ...existingTeamMemberCollection?.admin,\n    },\n    access: {\n      ...getAdminAccess(pluginOptions),\n      ...(existingTeamMemberCollection?.access ?? {}),\n    },\n    custom: {\n      ...(existingTeamMemberCollection?.custom ?? {}),\n      betterAuthModelKey: baModelKey.teamMember,\n    },\n    fields: [\n      ...(existingTeamMemberCollection?.fields ?? []),\n      ...filterDuplicateFields(existingTeamMemberCollection?.fields, collectionFields),\n    ],\n  };\n\n  assertAllSchemaFields(teamMemberCollection, teamMemberSchema);\n\n  return teamMemberCollection;\n}\n"],"names":["baModelKey","getAdminAccess","assertAllSchemaFields","getSchemaCollectionSlug","getSchemaFieldName","filterDuplicateFields","getCollectionFields","buildTeamMembersCollection","incomingCollections","pluginOptions","resolvedSchemas","teamMemberSlug","teamMember","teamMemberSchema","existingTeamMemberCollection","find","collection","slug","fieldOverrides","teamId","index","admin","readOnly","description","userId","collectionFields","schema","additionalProperties","teamMemberCollection","hidden","hidePluginCollections","useAsTitle","group","collectionAdminGroup","access","custom","betterAuthModelKey","fields"],"mappings":"AAAA,SAASA,UAAU,QAAQ,kBAAkB;AAC7C,SAASC,cAAc,QAAQ,iCAAiC;AAChE,SACEC,qBAAqB,EACrBC,uBAAuB,EACvBC,kBAAkB,QACb,4BAA4B;AACnC,SAASC,qBAAqB,QAAQ,kCAAkC;AACxE,SAASC,mBAAmB,QAAQ,6CAA6C;AAMjF,OAAO,SAASC,2BAA2B,EACzCC,mBAAmB,EACnBC,aAAa,EACbC,eAAe,EACM;IACrB,MAAMC,iBAAiBR,wBAAwBO,iBAAiBV,WAAWY,UAAU;IACrF,MAAMC,mBAAmBH,eAAe,CAACV,WAAWY,UAAU,CAAC;IAE/D,MAAME,+BAA+BN,oBAAoBO,IAAI,CAC3DC,CAAAA,aAAcA,WAAWC,IAAI,KAAKN;IAGpC,MAAMO,iBAAmD;QACvDC,QAAQ,IAAO,CAAA;gBACbC,OAAO;gBACPC,OAAO;oBAAEC,UAAU;oBAAMC,aAAa;gBAA2C;YACnF,CAAA;QACAC,QAAQ,IAAO,CAAA;gBACbJ,OAAO;gBACPC,OAAO;oBAAEC,UAAU;oBAAMC,aAAa;gBAAyC;YACjF,CAAA;IACF;IAEA,MAAME,mBAAmBnB,oBAAoB;QAC3CoB,QAAQb;QACRc,sBAAsBT;IACxB;IAEA,MAAMU,uBAAyC;QAC7C,GAAGd,4BAA4B;QAC/BG,MAAMN;QACNU,OAAO;YACLQ,QAAQpB,cAAcqB,qBAAqB,IAAI;YAC/CC,YAAY3B,mBAAmBM,iBAAiBV,WAAWY,UAAU,EAAE;YACvEW,aAAa;YACbS,OAAOvB,eAAewB,wBAAwB;YAC9C,GAAGnB,8BAA8BO,KAAK;QACxC;QACAa,QAAQ;YACN,GAAGjC,eAAeQ,cAAc;YAChC,GAAIK,8BAA8BoB,UAAU,CAAC,CAAC;QAChD;QACAC,QAAQ;YACN,GAAIrB,8BAA8BqB,UAAU,CAAC,CAAC;YAC9CC,oBAAoBpC,WAAWY,UAAU;QAC3C;QACAyB,QAAQ;eACFvB,8BAA8BuB,UAAU,EAAE;eAC3ChC,sBAAsBS,8BAA8BuB,QAAQZ;SAChE;IACH;IAEAvB,sBAAsB0B,sBAAsBf;IAE5C,OAAOe;AACT"}

package/dist/better-auth/plugin/lib/build-collections/teams.d.ts

@@ -0,0 +1,3 @@
+import type { CollectionConfig } from 'payload';
+import type { BuildCollectionProps } from '../../types';
+export declare function buildTeamsCollection({ incomingCollections, pluginOptions, resolvedSchemas, }: BuildCollectionProps): CollectionConfig;

package/dist/better-auth/plugin/lib/build-collections/teams.js

@@ -0,0 +1,76 @@
+import { baModelKey } from "../../constants";
+import { getAdminAccess } from "../../helpers/get-admin-access";
+import { assertAllSchemaFields, getSchemaCollectionSlug, getSchemaFieldName } from "./utils/collection-schema";
+import { filterDuplicateFields } from "./utils/filter-duplicate-fields";
+import { getCollectionFields } from "./utils/transform-schema-fields-to-payload";
+export function buildTeamsCollection({ incomingCollections, pluginOptions, resolvedSchemas }) {
+    const teamSlug = getSchemaCollectionSlug(resolvedSchemas, baModelKey.team);
+    const teamSchema = resolvedSchemas[baModelKey.team];
+    const existingTeamCollection = incomingCollections.find((collection)=>collection.slug === teamSlug);
+    const fieldOverrides = {
+        name: ()=>({
+                admin: {
+                    description: 'The name of the team.'
+                }
+            }),
+        organizationId: ()=>({
+                admin: {
+                    readOnly: true,
+                    description: 'The organization that the team belongs to.'
+                }
+            })
+    };
+    const teamFieldRules = [
+        {
+            condition: (field)=>field.type === 'date',
+            transform: (field)=>({
+                    ...field,
+                    saveToJWT: false,
+                    admin: {
+                        disableBulkEdit: true,
+                        hidden: true
+                    },
+                    index: true,
+                    // Using any because PayloadCMS label function receives translation function with dynamic type
+                    label: ({ t })=>t('general:updatedAt')
+                })
+        }
+    ];
+    const collectionFields = getCollectionFields({
+        schema: teamSchema,
+        fieldRules: teamFieldRules,
+        additionalProperties: fieldOverrides
+    });
+    let teamCollection = {
+        ...existingTeamCollection,
+        slug: teamSlug,
+        admin: {
+            hidden: pluginOptions.hidePluginCollections ?? false,
+            useAsTitle: getSchemaFieldName(resolvedSchemas, baModelKey.team, 'name'),
+            description: 'Teams are groups of users that share access to certain resources.',
+            group: pluginOptions?.collectionAdminGroup ?? 'Auth',
+            ...existingTeamCollection?.admin
+        },
+        access: {
+            ...getAdminAccess(pluginOptions),
+            ...existingTeamCollection?.access ?? {}
+        },
+        custom: {
+            ...existingTeamCollection?.custom ?? {},
+            betterAuthModelKey: baModelKey.team
+        },
+        fields: [
+            ...existingTeamCollection?.fields ?? [],
+            ...filterDuplicateFields(existingTeamCollection?.fields, collectionFields)
+        ]
+    };
+    if (typeof pluginOptions.pluginCollectionOverrides?.teams === 'function') {
+        teamCollection = pluginOptions.pluginCollectionOverrides.teams({
+            collection: teamCollection
+        });
+    }
+    assertAllSchemaFields(teamCollection, teamSchema);
+    return teamCollection;
+}
+
+//# sourceMappingURL=teams.js.map

package/dist/better-auth/plugin/lib/build-collections/teams.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../src/better-auth/plugin/lib/build-collections/teams.ts"],"sourcesContent":["import type { Team } from '@/better-auth/generated-types';\nimport type { CollectionConfig } from 'payload';\nimport { baModelKey } from '../../constants';\nimport { getAdminAccess } from '../../helpers/get-admin-access';\nimport type { BuildCollectionProps, FieldOverrides, FieldRule } from '../../types';\nimport {\n  assertAllSchemaFields,\n  getSchemaCollectionSlug,\n  getSchemaFieldName,\n} from './utils/collection-schema';\nimport { filterDuplicateFields } from './utils/filter-duplicate-fields';\nimport { getCollectionFields } from './utils/transform-schema-fields-to-payload';\n\nexport function buildTeamsCollection({\n  incomingCollections,\n  pluginOptions,\n  resolvedSchemas,\n}: BuildCollectionProps): CollectionConfig {\n  const teamSlug = getSchemaCollectionSlug(resolvedSchemas, baModelKey.team);\n  const teamSchema = resolvedSchemas[baModelKey.team];\n  const existingTeamCollection = incomingCollections.find(\n    collection => collection.slug === teamSlug\n  ) as CollectionConfig | undefined;\n\n  const fieldOverrides: FieldOverrides<keyof Team> = {\n    name: () => ({\n      admin: { description: 'The name of the team.' },\n    }),\n    organizationId: () => ({\n      admin: {\n        readOnly: true,\n        description: 'The organization that the team belongs to.',\n      },\n    }),\n  };\n\n  const teamFieldRules: FieldRule[] = [\n    {\n      condition: field => field.type === 'date',\n      transform: field => ({\n        ...field,\n        saveToJWT: false,\n        admin: {\n          disableBulkEdit: true,\n          hidden: true,\n        },\n        index: true,\n        // Using any because PayloadCMS label function receives translation function with dynamic type\n        label: ({ t }: any) => t('general:updatedAt'),\n      }),\n    },\n  ];\n\n  const collectionFields = getCollectionFields({\n    schema: teamSchema,\n    fieldRules: teamFieldRules,\n    additionalProperties: fieldOverrides,\n  });\n\n  let teamCollection: CollectionConfig = {\n    ...existingTeamCollection,\n    slug: teamSlug,\n    admin: {\n      hidden: pluginOptions.hidePluginCollections ?? false,\n      useAsTitle: getSchemaFieldName(resolvedSchemas, baModelKey.team, 'name'),\n      description: 'Teams are groups of users that share access to certain resources.',\n      group: pluginOptions?.collectionAdminGroup ?? 'Auth',\n      ...existingTeamCollection?.admin,\n    },\n    access: {\n      ...getAdminAccess(pluginOptions),\n      ...(existingTeamCollection?.access ?? {}),\n    },\n    custom: {\n      ...(existingTeamCollection?.custom ?? {}),\n      betterAuthModelKey: baModelKey.team,\n    },\n    fields: [\n      ...(existingTeamCollection?.fields ?? []),\n      ...filterDuplicateFields(existingTeamCollection?.fields, collectionFields),\n    ],\n  };\n\n  if (typeof pluginOptions.pluginCollectionOverrides?.teams === 'function') {\n    teamCollection = pluginOptions.pluginCollectionOverrides.teams({\n      collection: teamCollection,\n    });\n  }\n\n  assertAllSchemaFields(teamCollection, teamSchema);\n\n  return teamCollection;\n}\n"],"names":["baModelKey","getAdminAccess","assertAllSchemaFields","getSchemaCollectionSlug","getSchemaFieldName","filterDuplicateFields","getCollectionFields","buildTeamsCollection","incomingCollections","pluginOptions","resolvedSchemas","teamSlug","team","teamSchema","existingTeamCollection","find","collection","slug","fieldOverrides","name","admin","description","organizationId","readOnly","teamFieldRules","condition","field","type","transform","saveToJWT","disableBulkEdit","hidden","index","label","t","collectionFields","schema","fieldRules","additionalProperties","teamCollection","hidePluginCollections","useAsTitle","group","collectionAdminGroup","access","custom","betterAuthModelKey","fields","pluginCollectionOverrides","teams"],"mappings":"AAEA,SAASA,UAAU,QAAQ,kBAAkB;AAC7C,SAASC,cAAc,QAAQ,iCAAiC;AAEhE,SACEC,qBAAqB,EACrBC,uBAAuB,EACvBC,kBAAkB,QACb,4BAA4B;AACnC,SAASC,qBAAqB,QAAQ,kCAAkC;AACxE,SAASC,mBAAmB,QAAQ,6CAA6C;AAEjF,OAAO,SAASC,qBAAqB,EACnCC,mBAAmB,EACnBC,aAAa,EACbC,eAAe,EACM;IACrB,MAAMC,WAAWR,wBAAwBO,iBAAiBV,WAAWY,IAAI;IACzE,MAAMC,aAAaH,eAAe,CAACV,WAAWY,IAAI,CAAC;IACnD,MAAME,yBAAyBN,oBAAoBO,IAAI,CACrDC,CAAAA,aAAcA,WAAWC,IAAI,KAAKN;IAGpC,MAAMO,iBAA6C;QACjDC,MAAM,IAAO,CAAA;gBACXC,OAAO;oBAAEC,aAAa;gBAAwB;YAChD,CAAA;QACAC,gBAAgB,IAAO,CAAA;gBACrBF,OAAO;oBACLG,UAAU;oBACVF,aAAa;gBACf;YACF,CAAA;IACF;IAEA,MAAMG,iBAA8B;QAClC;YACEC,WAAWC,CAAAA,QAASA,MAAMC,IAAI,KAAK;YACnCC,WAAWF,CAAAA,QAAU,CAAA;oBACnB,GAAGA,KAAK;oBACRG,WAAW;oBACXT,OAAO;wBACLU,iBAAiB;wBACjBC,QAAQ;oBACV;oBACAC,OAAO;oBACP,8FAA8F;oBAC9FC,OAAO,CAAC,EAAEC,CAAC,EAAO,GAAKA,EAAE;gBAC3B,CAAA;QACF;KACD;IAED,MAAMC,mBAAmB7B,oBAAoB;QAC3C8B,QAAQvB;QACRwB,YAAYb;QACZc,sBAAsBpB;IACxB;IAEA,IAAIqB,iBAAmC;QACrC,GAAGzB,sBAAsB;QACzBG,MAAMN;QACNS,OAAO;YACLW,QAAQtB,cAAc+B,qBAAqB,IAAI;YAC/CC,YAAYrC,mBAAmBM,iBAAiBV,WAAWY,IAAI,EAAE;YACjES,aAAa;YACbqB,OAAOjC,eAAekC,wBAAwB;YAC9C,GAAG7B,wBAAwBM,KAAK;QAClC;QACAwB,QAAQ;YACN,GAAG3C,eAAeQ,cAAc;YAChC,GAAIK,wBAAwB8B,UAAU,CAAC,CAAC;QAC1C;QACAC,QAAQ;YACN,GAAI/B,wBAAwB+B,UAAU,CAAC,CAAC;YACxCC,oBAAoB9C,WAAWY,IAAI;QACrC;QACAmC,QAAQ;eACFjC,wBAAwBiC,UAAU,EAAE;eACrC1C,sBAAsBS,wBAAwBiC,QAAQZ;SAC1D;IACH;IAEA,IAAI,OAAO1B,cAAcuC,yBAAyB,EAAEC,UAAU,YAAY;QACxEV,iBAAiB9B,cAAcuC,yBAAyB,CAACC,KAAK,CAAC;YAC7DjC,YAAYuB;QACd;IACF;IAEArC,sBAAsBqC,gBAAgB1B;IAEtC,OAAO0B;AACT"}

package/dist/better-auth/plugin/lib/build-collections/two-factors.d.ts

@@ -0,0 +1,3 @@
+import type { CollectionConfig } from 'payload';
+import type { BuildCollectionProps } from '../../types';
+export declare function buildTwoFactorsCollection({ incomingCollections, pluginOptions, resolvedSchemas, }: BuildCollectionProps): CollectionConfig;

package/dist/better-auth/plugin/lib/build-collections/two-factors.js

@@ -0,0 +1,67 @@
+import { baModelKey } from "../../constants";
+import { getAdminAccess } from "../../helpers/get-admin-access";
+import { assertAllSchemaFields, getSchemaCollectionSlug, getSchemaFieldName } from "./utils/collection-schema";
+import { filterDuplicateFields } from "./utils/filter-duplicate-fields";
+import { getCollectionFields } from "./utils/transform-schema-fields-to-payload";
+export function buildTwoFactorsCollection({ incomingCollections, pluginOptions, resolvedSchemas }) {
+    const twoFactorSlug = getSchemaCollectionSlug(resolvedSchemas, baModelKey.twoFactor);
+    const twoFactorSchema = resolvedSchemas[baModelKey.twoFactor];
+    const existingTwoFactorCollection = incomingCollections.find((collection)=>collection.slug === twoFactorSlug);
+    const fieldOverrides = {
+        userId: ()=>({
+                admin: {
+                    readOnly: true,
+                    description: 'The user that the two factor authentication secret belongs to'
+                }
+            }),
+        secret: ()=>({
+                index: true,
+                admin: {
+                    readOnly: true,
+                    description: 'The secret used to generate the TOTP code.'
+                }
+            }),
+        backupCodes: ()=>({
+                admin: {
+                    readOnly: true,
+                    description: 'The backup codes used to recover access to the account if the user loses access to their phone or email'
+                }
+            })
+    };
+    const collectionFields = getCollectionFields({
+        schema: twoFactorSchema,
+        additionalProperties: fieldOverrides
+    });
+    let twoFactorCollection = {
+        ...existingTwoFactorCollection,
+        slug: twoFactorSlug,
+        admin: {
+            hidden: pluginOptions.hidePluginCollections ?? false,
+            useAsTitle: getSchemaFieldName(resolvedSchemas, baModelKey.twoFactor, 'secret'),
+            description: 'Two factor authentication secrets',
+            group: pluginOptions?.collectionAdminGroup ?? 'Auth',
+            ...existingTwoFactorCollection?.admin
+        },
+        access: {
+            ...getAdminAccess(pluginOptions),
+            ...existingTwoFactorCollection?.access ?? {}
+        },
+        custom: {
+            ...existingTwoFactorCollection?.custom ?? {},
+            betterAuthModelKey: baModelKey.twoFactor
+        },
+        fields: [
+            ...existingTwoFactorCollection?.fields ?? [],
+            ...filterDuplicateFields(existingTwoFactorCollection?.fields, collectionFields)
+        ]
+    };
+    if (typeof pluginOptions.pluginCollectionOverrides?.twoFactors === 'function') {
+        twoFactorCollection = pluginOptions.pluginCollectionOverrides.twoFactors({
+            collection: twoFactorCollection
+        });
+    }
+    assertAllSchemaFields(twoFactorCollection, twoFactorSchema);
+    return twoFactorCollection;
+}
+
+//# sourceMappingURL=two-factors.js.map

package/dist/better-auth/plugin/lib/build-collections/two-factors.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../src/better-auth/plugin/lib/build-collections/two-factors.ts"],"sourcesContent":["import { baModelKey } from '../../constants';\nimport { getAdminAccess } from '../../helpers/get-admin-access';\nimport {\n  assertAllSchemaFields,\n  getSchemaCollectionSlug,\n  getSchemaFieldName,\n} from './utils/collection-schema';\nimport { filterDuplicateFields } from './utils/filter-duplicate-fields';\nimport { getCollectionFields } from './utils/transform-schema-fields-to-payload';\n\nimport type { TwoFactor } from '@/better-auth/generated-types';\nimport type { CollectionConfig } from 'payload';\nimport type { BuildCollectionProps, FieldOverrides } from '../../types';\n\nexport function buildTwoFactorsCollection({\n  incomingCollections,\n  pluginOptions,\n  resolvedSchemas,\n}: BuildCollectionProps): CollectionConfig {\n  const twoFactorSlug = getSchemaCollectionSlug(resolvedSchemas, baModelKey.twoFactor);\n  const twoFactorSchema = resolvedSchemas[baModelKey.twoFactor];\n\n  const existingTwoFactorCollection = incomingCollections.find(\n    collection => collection.slug === twoFactorSlug\n  ) as CollectionConfig | undefined;\n\n  const fieldOverrides: FieldOverrides<keyof TwoFactor> = {\n    userId: () => ({\n      admin: {\n        readOnly: true,\n        description: 'The user that the two factor authentication secret belongs to',\n      },\n    }),\n    secret: () => ({\n      index: true,\n      admin: {\n        readOnly: true,\n        description: 'The secret used to generate the TOTP code.',\n      },\n    }),\n    backupCodes: () => ({\n      admin: {\n        readOnly: true,\n        description:\n          'The backup codes used to recover access to the account if the user loses access to their phone or email',\n      },\n    }),\n  };\n\n  const collectionFields = getCollectionFields({\n    schema: twoFactorSchema,\n    additionalProperties: fieldOverrides,\n  });\n\n  let twoFactorCollection: CollectionConfig = {\n    ...existingTwoFactorCollection,\n    slug: twoFactorSlug,\n    admin: {\n      hidden: pluginOptions.hidePluginCollections ?? false,\n      useAsTitle: getSchemaFieldName(resolvedSchemas, baModelKey.twoFactor, 'secret'),\n      description: 'Two factor authentication secrets',\n      group: pluginOptions?.collectionAdminGroup ?? 'Auth',\n      ...existingTwoFactorCollection?.admin,\n    },\n    access: {\n      ...getAdminAccess(pluginOptions),\n      ...(existingTwoFactorCollection?.access ?? {}),\n    },\n    custom: {\n      ...(existingTwoFactorCollection?.custom ?? {}),\n      betterAuthModelKey: baModelKey.twoFactor,\n    },\n    fields: [\n      ...(existingTwoFactorCollection?.fields ?? []),\n      ...filterDuplicateFields(existingTwoFactorCollection?.fields, collectionFields),\n    ],\n  };\n\n  if (typeof pluginOptions.pluginCollectionOverrides?.twoFactors === 'function') {\n    twoFactorCollection = pluginOptions.pluginCollectionOverrides.twoFactors({\n      collection: twoFactorCollection,\n    });\n  }\n\n  assertAllSchemaFields(twoFactorCollection, twoFactorSchema);\n\n  return twoFactorCollection;\n}\n"],"names":["baModelKey","getAdminAccess","assertAllSchemaFields","getSchemaCollectionSlug","getSchemaFieldName","filterDuplicateFields","getCollectionFields","buildTwoFactorsCollection","incomingCollections","pluginOptions","resolvedSchemas","twoFactorSlug","twoFactor","twoFactorSchema","existingTwoFactorCollection","find","collection","slug","fieldOverrides","userId","admin","readOnly","description","secret","index","backupCodes","collectionFields","schema","additionalProperties","twoFactorCollection","hidden","hidePluginCollections","useAsTitle","group","collectionAdminGroup","access","custom","betterAuthModelKey","fields","pluginCollectionOverrides","twoFactors"],"mappings":"AAAA,SAASA,UAAU,QAAQ,kBAAkB;AAC7C,SAASC,cAAc,QAAQ,iCAAiC;AAChE,SACEC,qBAAqB,EACrBC,uBAAuB,EACvBC,kBAAkB,QACb,4BAA4B;AACnC,SAASC,qBAAqB,QAAQ,kCAAkC;AACxE,SAASC,mBAAmB,QAAQ,6CAA6C;AAMjF,OAAO,SAASC,0BAA0B,EACxCC,mBAAmB,EACnBC,aAAa,EACbC,eAAe,EACM;IACrB,MAAMC,gBAAgBR,wBAAwBO,iBAAiBV,WAAWY,SAAS;IACnF,MAAMC,kBAAkBH,eAAe,CAACV,WAAWY,SAAS,CAAC;IAE7D,MAAME,8BAA8BN,oBAAoBO,IAAI,CAC1DC,CAAAA,aAAcA,WAAWC,IAAI,KAAKN;IAGpC,MAAMO,iBAAkD;QACtDC,QAAQ,IAAO,CAAA;gBACbC,OAAO;oBACLC,UAAU;oBACVC,aAAa;gBACf;YACF,CAAA;QACAC,QAAQ,IAAO,CAAA;gBACbC,OAAO;gBACPJ,OAAO;oBACLC,UAAU;oBACVC,aAAa;gBACf;YACF,CAAA;QACAG,aAAa,IAAO,CAAA;gBAClBL,OAAO;oBACLC,UAAU;oBACVC,aACE;gBACJ;YACF,CAAA;IACF;IAEA,MAAMI,mBAAmBpB,oBAAoB;QAC3CqB,QAAQd;QACRe,sBAAsBV;IACxB;IAEA,IAAIW,sBAAwC;QAC1C,GAAGf,2BAA2B;QAC9BG,MAAMN;QACNS,OAAO;YACLU,QAAQrB,cAAcsB,qBAAqB,IAAI;YAC/CC,YAAY5B,mBAAmBM,iBAAiBV,WAAWY,SAAS,EAAE;YACtEU,aAAa;YACbW,OAAOxB,eAAeyB,wBAAwB;YAC9C,GAAGpB,6BAA6BM,KAAK;QACvC;QACAe,QAAQ;YACN,GAAGlC,eAAeQ,cAAc;YAChC,GAAIK,6BAA6BqB,UAAU,CAAC,CAAC;QAC/C;QACAC,QAAQ;YACN,GAAItB,6BAA6BsB,UAAU,CAAC,CAAC;YAC7CC,oBAAoBrC,WAAWY,SAAS;QAC1C;QACA0B,QAAQ;eACFxB,6BAA6BwB,UAAU,EAAE;eAC1CjC,sBAAsBS,6BAA6BwB,QAAQZ;SAC/D;IACH;IAEA,IAAI,OAAOjB,cAAc8B,yBAAyB,EAAEC,eAAe,YAAY;QAC7EX,sBAAsBpB,cAAc8B,yBAAyB,CAACC,UAAU,CAAC;YACvExB,YAAYa;QACd;IACF;IAEA3B,sBAAsB2B,qBAAqBhB;IAE3C,OAAOgB;AACT"}

package/dist/better-auth/plugin/lib/build-collections/users/better-auth-strategy.d.ts

@@ -0,0 +1,7 @@
+import type { AuthStrategy } from 'payload';
+/**
+ * Auth strategy for BetterAuth
+ * @param userSlug - User collection slug
+ * @returns Auth strategy
+ */
+export declare function betterAuthStrategy(userSlug?: string): AuthStrategy;

package/dist/better-auth/plugin/lib/build-collections/users/better-auth-strategy.js

@@ -0,0 +1,53 @@
+import { baseSlugs } from "@/better-auth/plugin/constants";
+import { getPayloadAuth } from "@/better-auth/plugin/lib/get-payload-auth";
+/**
+ * Auth strategy for BetterAuth
+ * @param userSlug - User collection slug
+ * @returns Auth strategy
+ */ export function betterAuthStrategy(userSlug) {
+    return {
+        authenticate: async ({ headers, payload })=>{
+            try {
+                const payloadAuth = await getPayloadAuth(payload.config);
+                const res = await payloadAuth.betterAuth.api.getSession({
+                    headers
+                });
+                if (!res) {
+                    return {
+                        user: null
+                    };
+                }
+                const userId = res.session.userId ?? res.user.id;
+                if (!userId) {
+                    return {
+                        user: null
+                    };
+                }
+                const user = await payloadAuth.findByID({
+                    collection: userSlug ?? baseSlugs.users,
+                    id: userId
+                });
+                if (!user) {
+                    return {
+                        user: null
+                    };
+                }
+                return {
+                    user: {
+                        ...user,
+                        _strategy: 'better-auth',
+                        collection: userSlug ?? baseSlugs.users
+                    }
+                };
+            } catch  {
+                // Authentication failed - return null user
+                return {
+                    user: null
+                };
+            }
+        },
+        name: 'better-auth'
+    };
+}
+
+//# sourceMappingURL=better-auth-strategy.js.map

package/dist/better-auth/plugin/lib/build-collections/users/better-auth-strategy.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../../src/better-auth/plugin/lib/build-collections/users/better-auth-strategy.ts"],"sourcesContent":["import { baseSlugs } from '@/better-auth/plugin/constants';\nimport { getPayloadAuth } from '@/better-auth/plugin/lib/get-payload-auth';\n\nimport type { AuthStrategy, CollectionSlug } from 'payload';\n\n/**\n * Auth strategy for BetterAuth\n * @param userSlug - User collection slug\n * @returns Auth strategy\n */\nexport function betterAuthStrategy(userSlug?: string): AuthStrategy {\n  return {\n    authenticate: async ({ headers, payload }) => {\n      try {\n        const payloadAuth = await getPayloadAuth(payload.config);\n\n        const res = await payloadAuth.betterAuth.api.getSession({\n          headers,\n        });\n\n        if (!res) {\n          return { user: null };\n        }\n        const userId = res.session.userId ?? res.user.id;\n        if (!userId) {\n          return { user: null };\n        }\n        const user = await payloadAuth.findByID({\n          collection: (userSlug ?? baseSlugs.users) as CollectionSlug,\n          id: userId,\n        });\n        if (!user) {\n          return { user: null };\n        }\n        return {\n          user: {\n            ...user,\n            _strategy: 'better-auth',\n            collection: (userSlug ?? baseSlugs.users) as 'users',\n          } as any,\n        };\n      } catch {\n        // Authentication failed - return null user\n        return { user: null };\n      }\n    },\n    name: 'better-auth',\n  };\n}\n"],"names":["baseSlugs","getPayloadAuth","betterAuthStrategy","userSlug","authenticate","headers","payload","payloadAuth","config","res","betterAuth","api","getSession","user","userId","session","id","findByID","collection","users","_strategy","name"],"mappings":"AAAA,SAASA,SAAS,QAAQ,iCAAiC;AAC3D,SAASC,cAAc,QAAQ,4CAA4C;AAI3E;;;;CAIC,GACD,OAAO,SAASC,mBAAmBC,QAAiB;IAClD,OAAO;QACLC,cAAc,OAAO,EAAEC,OAAO,EAAEC,OAAO,EAAE;YACvC,IAAI;gBACF,MAAMC,cAAc,MAAMN,eAAeK,QAAQE,MAAM;gBAEvD,MAAMC,MAAM,MAAMF,YAAYG,UAAU,CAACC,GAAG,CAACC,UAAU,CAAC;oBACtDP;gBACF;gBAEA,IAAI,CAACI,KAAK;oBACR,OAAO;wBAAEI,MAAM;oBAAK;gBACtB;gBACA,MAAMC,SAASL,IAAIM,OAAO,CAACD,MAAM,IAAIL,IAAII,IAAI,CAACG,EAAE;gBAChD,IAAI,CAACF,QAAQ;oBACX,OAAO;wBAAED,MAAM;oBAAK;gBACtB;gBACA,MAAMA,OAAO,MAAMN,YAAYU,QAAQ,CAAC;oBACtCC,YAAaf,YAAYH,UAAUmB,KAAK;oBACxCH,IAAIF;gBACN;gBACA,IAAI,CAACD,MAAM;oBACT,OAAO;wBAAEA,MAAM;oBAAK;gBACtB;gBACA,OAAO;oBACLA,MAAM;wBACJ,GAAGA,IAAI;wBACPO,WAAW;wBACXF,YAAaf,YAAYH,UAAUmB,KAAK;oBAC1C;gBACF;YACF,EAAE,OAAM;gBACN,2CAA2C;gBAC3C,OAAO;oBAAEN,MAAM;gBAAK;YACtB;QACF;QACAQ,MAAM;IACR;AACF"}

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/generate-invite-url.d.ts

@@ -0,0 +1,11 @@
+import type { BetterAuthPluginOptions } from '@/better-auth/plugin/types';
+import { type Endpoint } from 'payload';
+type InviteEndpointProps = {
+    roles: {
+        label: string;
+        value: string;
+    }[];
+    pluginOptions: BetterAuthPluginOptions;
+};
+export declare const getGenerateInviteUrlEndpoint: ({ roles, pluginOptions, }: InviteEndpointProps) => Endpoint;
+export {};

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/generate-invite-url.js

@@ -0,0 +1,75 @@
+import { adminEndpoints, baseSlugs } from "@/better-auth/plugin/constants";
+import { generateAdminInviteUrl } from "@/better-auth/plugin/payload/utils/generate-admin-invite-url";
+import { status as httpStatus } from "http-status";
+import { addDataAndFileToRequest } from "payload";
+export const getGenerateInviteUrlEndpoint = ({ roles, pluginOptions })=>{
+    const endpoint = {
+        path: adminEndpoints.generateInviteUrl,
+        method: 'post',
+        handler: async (req)=>{
+            await addDataAndFileToRequest(req);
+            const body = req.data;
+            const generateAdminInviteUrlFn = pluginOptions?.adminInvitations?.generateInviteUrl ?? generateAdminInviteUrl;
+            if (!body) {
+                return Response.json({
+                    message: 'No body provided'
+                }, {
+                    status: httpStatus.BAD_REQUEST
+                });
+            }
+            if (typeof body !== 'object' || !('role' in body)) {
+                return Response.json({
+                    message: 'Invalid body'
+                }, {
+                    status: httpStatus.BAD_REQUEST
+                });
+            }
+            if (!roles.some((role)=>role.value === body.role.value)) {
+                return Response.json({
+                    message: 'Invalid role'
+                }, {
+                    status: httpStatus.BAD_REQUEST
+                });
+            }
+            const token = crypto.randomUUID();
+            const inviteLink = generateAdminInviteUrlFn({
+                payload: req.payload,
+                token
+            });
+            try {
+                await req.payload.create({
+                    collection: pluginOptions.adminInvitations?.slug ?? baseSlugs.adminInvitations,
+                    data: {
+                        token,
+                        role: body.role.value,
+                        url: inviteLink
+                    }
+                });
+                const response = new Response(JSON.stringify({
+                    message: 'Invite link generated successfully',
+                    inviteLink
+                }), {
+                    status: 200
+                });
+                return response;
+            } catch (error) {
+                req.payload.logger.error('Failed to generate invite link', {
+                    operation: 'generateInviteUrl',
+                    error: error instanceof Error ? error.message : String(error),
+                    stack: error instanceof Error ? error.stack : undefined,
+                    context: {
+                        role: body.role.value
+                    }
+                });
+                return Response.json({
+                    message: 'Error generating invite link'
+                }, {
+                    status: httpStatus.INTERNAL_SERVER_ERROR
+                });
+            }
+        }
+    };
+    return endpoint;
+};
+
+//# sourceMappingURL=generate-invite-url.js.map

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/generate-invite-url.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../../../src/better-auth/plugin/lib/build-collections/users/endpoints/generate-invite-url.ts"],"sourcesContent":["import { adminEndpoints, baseSlugs } from '@/better-auth/plugin/constants';\nimport { generateAdminInviteUrl } from '@/better-auth/plugin/payload/utils/generate-admin-invite-url';\nimport type { BetterAuthPluginOptions } from '@/better-auth/plugin/types';\nimport { status as httpStatus } from 'http-status';\nimport { type CollectionSlug, type Endpoint, addDataAndFileToRequest } from 'payload';\n\ntype InviteEndpointProps = {\n  roles: { label: string; value: string }[];\n  pluginOptions: BetterAuthPluginOptions;\n};\n\nexport const getGenerateInviteUrlEndpoint = ({\n  roles,\n  pluginOptions,\n}: InviteEndpointProps): Endpoint => {\n  const endpoint: Endpoint = {\n    path: adminEndpoints.generateInviteUrl,\n    method: 'post',\n    handler: async req => {\n      await addDataAndFileToRequest(req);\n      const body = req.data as { role: { label: string; value: string } };\n      const generateAdminInviteUrlFn =\n        pluginOptions?.adminInvitations?.generateInviteUrl ?? generateAdminInviteUrl;\n\n      if (!body) {\n        return Response.json({ message: 'No body provided' }, { status: httpStatus.BAD_REQUEST });\n      }\n\n      if (typeof body !== 'object' || !('role' in body)) {\n        return Response.json({ message: 'Invalid body' }, { status: httpStatus.BAD_REQUEST });\n      }\n\n      if (!roles.some(role => role.value === body.role.value)) {\n        return Response.json({ message: 'Invalid role' }, { status: httpStatus.BAD_REQUEST });\n      }\n      const token = crypto.randomUUID();\n      const inviteLink = generateAdminInviteUrlFn({\n        payload: req.payload,\n        token,\n      });\n\n      try {\n        await req.payload.create({\n          collection: (pluginOptions.adminInvitations?.slug ??\n            baseSlugs.adminInvitations) as CollectionSlug,\n          data: {\n            token,\n            role: body.role.value,\n            url: inviteLink,\n            // Using Record<string, unknown> because PayloadCMS create data structure varies by collection configuration\n          } as /* Using Record<string, unknown> because PayloadCMS create data structure varies by collection configuration */ Record<\n            string,\n            unknown\n          >,\n        });\n        const response = new Response(\n          JSON.stringify({\n            message: 'Invite link generated successfully',\n            inviteLink,\n          }),\n          {\n            status: 200,\n          }\n        );\n        return response;\n      } catch (error) {\n        req.payload.logger.error('Failed to generate invite link', {\n          operation: 'generateInviteUrl',\n          error: error instanceof Error ? error.message : String(error),\n          stack: error instanceof Error ? error.stack : undefined,\n          context: { role: body.role.value },\n        });\n        return Response.json(\n          { message: 'Error generating invite link' },\n          { status: httpStatus.INTERNAL_SERVER_ERROR }\n        );\n      }\n    },\n  };\n\n  return endpoint;\n};\n"],"names":["adminEndpoints","baseSlugs","generateAdminInviteUrl","status","httpStatus","addDataAndFileToRequest","getGenerateInviteUrlEndpoint","roles","pluginOptions","endpoint","path","generateInviteUrl","method","handler","req","body","data","generateAdminInviteUrlFn","adminInvitations","Response","json","message","BAD_REQUEST","some","role","value","token","crypto","randomUUID","inviteLink","payload","create","collection","slug","url","response","JSON","stringify","error","logger","operation","Error","String","stack","undefined","context","INTERNAL_SERVER_ERROR"],"mappings":"AAAA,SAASA,cAAc,EAAEC,SAAS,QAAQ,iCAAiC;AAC3E,SAASC,sBAAsB,QAAQ,+DAA+D;AAEtG,SAASC,UAAUC,UAAU,QAAQ,cAAc;AACnD,SAA6CC,uBAAuB,QAAQ,UAAU;AAOtF,OAAO,MAAMC,+BAA+B,CAAC,EAC3CC,KAAK,EACLC,aAAa,EACO;IACpB,MAAMC,WAAqB;QACzBC,MAAMV,eAAeW,iBAAiB;QACtCC,QAAQ;QACRC,SAAS,OAAMC;YACb,MAAMT,wBAAwBS;YAC9B,MAAMC,OAAOD,IAAIE,IAAI;YACrB,MAAMC,2BACJT,eAAeU,kBAAkBP,qBAAqBT;YAExD,IAAI,CAACa,MAAM;gBACT,OAAOI,SAASC,IAAI,CAAC;oBAAEC,SAAS;gBAAmB,GAAG;oBAAElB,QAAQC,WAAWkB,WAAW;gBAAC;YACzF;YAEA,IAAI,OAAOP,SAAS,YAAY,CAAE,CAAA,UAAUA,IAAG,GAAI;gBACjD,OAAOI,SAASC,IAAI,CAAC;oBAAEC,SAAS;gBAAe,GAAG;oBAAElB,QAAQC,WAAWkB,WAAW;gBAAC;YACrF;YAEA,IAAI,CAACf,MAAMgB,IAAI,CAACC,CAAAA,OAAQA,KAAKC,KAAK,KAAKV,KAAKS,IAAI,CAACC,KAAK,GAAG;gBACvD,OAAON,SAASC,IAAI,CAAC;oBAAEC,SAAS;gBAAe,GAAG;oBAAElB,QAAQC,WAAWkB,WAAW;gBAAC;YACrF;YACA,MAAMI,QAAQC,OAAOC,UAAU;YAC/B,MAAMC,aAAaZ,yBAAyB;gBAC1Ca,SAAShB,IAAIgB,OAAO;gBACpBJ;YACF;YAEA,IAAI;gBACF,MAAMZ,IAAIgB,OAAO,CAACC,MAAM,CAAC;oBACvBC,YAAaxB,cAAcU,gBAAgB,EAAEe,QAC3ChC,UAAUiB,gBAAgB;oBAC5BF,MAAM;wBACJU;wBACAF,MAAMT,KAAKS,IAAI,CAACC,KAAK;wBACrBS,KAAKL;oBAEP;gBAIF;gBACA,MAAMM,WAAW,IAAIhB,SACnBiB,KAAKC,SAAS,CAAC;oBACbhB,SAAS;oBACTQ;gBACF,IACA;oBACE1B,QAAQ;gBACV;gBAEF,OAAOgC;YACT,EAAE,OAAOG,OAAO;gBACdxB,IAAIgB,OAAO,CAACS,MAAM,CAACD,KAAK,CAAC,kCAAkC;oBACzDE,WAAW;oBACXF,OAAOA,iBAAiBG,QAAQH,MAAMjB,OAAO,GAAGqB,OAAOJ;oBACvDK,OAAOL,iBAAiBG,QAAQH,MAAMK,KAAK,GAAGC;oBAC9CC,SAAS;wBAAErB,MAAMT,KAAKS,IAAI,CAACC,KAAK;oBAAC;gBACnC;gBACA,OAAON,SAASC,IAAI,CAClB;oBAAEC,SAAS;gBAA+B,GAC1C;oBAAElB,QAAQC,WAAW0C,qBAAqB;gBAAC;YAE/C;QACF;IACF;IAEA,OAAOrC;AACT,EAAE"}

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/index.d.ts

@@ -0,0 +1,4 @@
+export * from './generate-invite-url';
+export * from './refresh-token';
+export * from './send-invite-url';
+export * from './set-admin-role';

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/index.js

@@ -0,0 +1,6 @@
+export * from "./generate-invite-url";
+export * from "./refresh-token";
+export * from "./send-invite-url";
+export * from "./set-admin-role";
+
+//# sourceMappingURL=index.js.map

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../../../src/better-auth/plugin/lib/build-collections/users/endpoints/index.ts"],"sourcesContent":["export * from './generate-invite-url';\nexport * from './refresh-token';\nexport * from './send-invite-url';\nexport * from './set-admin-role';\n"],"names":[],"mappings":"AAAA,cAAc,wBAAwB;AACtC,cAAc,kBAAkB;AAChC,cAAc,oBAAoB;AAClC,cAAc,mBAAmB"}

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/refresh-token.d.ts

@@ -0,0 +1,2 @@
+import { type Endpoint } from 'payload';
+export declare const getRefreshTokenEndpoint: (userSlug: string) => Endpoint;

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/refresh-token.js

@@ -0,0 +1,115 @@
+// import { GenericEndpointContext } from 'better-auth/types'
+import { adminEndpoints } from "@/better-auth/plugin/constants";
+import { getSignedCookie } from "@/better-auth/plugin/helpers/get-signed-cookie";
+import { getPayloadAuth } from "@/better-auth/plugin/lib/get-payload-auth";
+import { setCookieCache } from "better-auth/cookies";
+import { getFieldsToSign, refreshOperation } from "payload";
+export const getRefreshTokenEndpoint = (userSlug)=>{
+    const endpoint = {
+        path: adminEndpoints.refreshToken,
+        method: 'post',
+        handler: async (req)=>{
+            const payload = await getPayloadAuth(req.payload.config);
+            const authContext = await payload.betterAuth?.$context;
+            const userCollection = payload.collections[userSlug];
+            if (!userCollection) {
+                return new Response(JSON.stringify({
+                    message: 'User collection not found'
+                }), {
+                    status: 500
+                });
+            }
+            if (!payload.betterAuth || !authContext) {
+                return new Response(JSON.stringify({
+                    message: 'BetterAuth not initialized'
+                }), {
+                    status: 500
+                });
+            }
+            const sessionTokenName = authContext.authCookies.sessionToken.name;
+            const cookieHeader = req.headers.get('cookie') || '';
+            const hasSessionToken = cookieHeader.includes(`${sessionTokenName}=`);
+            const dontRememberTokenName = authContext.authCookies.dontRememberToken.name;
+            if (!hasSessionToken) {
+                try {
+                    const result = await refreshOperation({
+                        collection: userCollection,
+                        req
+                    });
+                    return new Response(JSON.stringify(result), {
+                        status: 200
+                    });
+                } catch (error) {
+                    console.error('Token refresh failed:', error);
+                    return new Response(JSON.stringify({
+                        message: 'Token refresh failed'
+                    }), {
+                        status: 401
+                    });
+                }
+            }
+            const res = await payload.betterAuth.api.getSession({
+                headers: req.headers,
+                query: {
+                    disableCookieCache: true
+                }
+            });
+            if (!res) {
+                return new Response(JSON.stringify({
+                    message: 'No current session'
+                }), {
+                    status: 401
+                });
+            }
+            const user = await payload.findByID({
+                collection: userSlug,
+                id: res.session.userId
+            });
+            if (!user) {
+                return new Response(JSON.stringify({
+                    message: 'No user found'
+                }), {
+                    status: 401
+                });
+            }
+            const cookieCacheFields = getFieldsToSign({
+                collectionConfig: userCollection?.config,
+                email: user.email,
+                user: user
+            });
+            const responseData = {
+                refreshedToken: null,
+                setCookie: !!authContext.options.session?.cookieCache?.enabled,
+                strategy: 'better-auth',
+                user: {
+                    ...user,
+                    collection: userSlug
+                }
+            };
+            const response = new Response(JSON.stringify(responseData), {
+                status: 200
+            });
+            const ctx = {
+                context: authContext,
+                setCookie (name, value, options) {
+                    const path = options?.path ?? '/';
+                    const maxAge = options?.maxAge ? `; Max-Age=${options.maxAge}` : '';
+                    const httpOnly = options?.httpOnly ? '; HttpOnly' : '';
+                    const secure = options?.secure ? '; Secure' : '';
+                    const sameSite = options?.sameSite ? `; SameSite=${options.sameSite}` : '; SameSite=Lax';
+                    response.headers.set('Set-Cookie', `${name}=${value}; Path=${path}${maxAge}${httpOnly}${secure}${sameSite}`);
+                    return name;
+                }
+            };
+            const dontRememberMe = await getSignedCookie(cookieHeader, dontRememberTokenName, authContext.secret);
+            await setCookieCache(ctx, {
+                session: res.session,
+                user: cookieCacheFields
+            }, !!dontRememberMe);
+            return response;
+        }
+    };
+    return endpoint;
+};
+
+//# sourceMappingURL=refresh-token.js.map

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/refresh-token.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../../../src/better-auth/plugin/lib/build-collections/users/endpoints/refresh-token.ts"],"sourcesContent":["// import { GenericEndpointContext } from 'better-auth/types'\nimport { adminEndpoints } from '@/better-auth/plugin/constants';\nimport { getSignedCookie } from '@/better-auth/plugin/helpers/get-signed-cookie';\nimport { getPayloadAuth } from '@/better-auth/plugin/lib/get-payload-auth';\nimport { setCookieCache } from 'better-auth/cookies';\nimport {\n  type CollectionSlug,\n  type Endpoint,\n  type TypedUser,\n  getFieldsToSign,\n  refreshOperation,\n} from 'payload';\n\nexport const getRefreshTokenEndpoint = (userSlug: string): Endpoint => {\n  const endpoint: Endpoint = {\n    path: adminEndpoints.refreshToken,\n    method: 'post',\n    handler: async req => {\n      const payload = await getPayloadAuth(req.payload.config);\n      const authContext = await payload.betterAuth?.$context;\n      const userCollection = payload.collections[userSlug as CollectionSlug];\n\n      if (!userCollection) {\n        return new Response(JSON.stringify({ message: 'User collection not found' }), {\n          status: 500,\n        });\n      }\n\n      if (!payload.betterAuth || !authContext) {\n        return new Response(JSON.stringify({ message: 'BetterAuth not initialized' }), {\n          status: 500,\n        });\n      }\n\n      const sessionTokenName = authContext.authCookies.sessionToken.name;\n      const cookieHeader = req.headers.get('cookie') || '';\n      const hasSessionToken = cookieHeader.includes(`${sessionTokenName}=`);\n      const dontRememberTokenName = authContext.authCookies.dontRememberToken.name;\n\n      if (!hasSessionToken) {\n        try {\n          const result = await refreshOperation({\n            collection: userCollection,\n            req,\n          });\n          return new Response(JSON.stringify(result), { status: 200 });\n        } catch (error) {\n          console.error('Token refresh failed:', error);\n          return new Response(JSON.stringify({ message: 'Token refresh failed' }), { status: 401 });\n        }\n      }\n\n      const res = await payload.betterAuth.api.getSession({\n        headers: req.headers,\n        query: { disableCookieCache: true },\n      });\n\n      if (!res) {\n        return new Response(JSON.stringify({ message: 'No current session' }), {\n          status: 401,\n        });\n      }\n\n      const user = await payload.findByID({\n        collection: userSlug as CollectionSlug,\n        id: res.session.userId,\n      });\n\n      if (!user) {\n        return new Response(JSON.stringify({ message: 'No user found' }), {\n          status: 401,\n        });\n      }\n\n      const cookieCacheFields = getFieldsToSign({\n        collectionConfig: userCollection?.config,\n        email: (user as any).email,\n        user: user as TypedUser,\n      });\n\n      const responseData = {\n        refreshedToken: null,\n        setCookie: !!authContext.options.session?.cookieCache?.enabled,\n        strategy: 'better-auth',\n        user: { ...user, collection: userSlug },\n      };\n\n      const response = new Response(JSON.stringify(responseData), {\n        status: 200,\n      });\n\n      const ctx = {\n        context: authContext,\n        setCookie(name: string, value: string, options?: any) {\n          const path = options?.path ?? '/';\n          const maxAge = options?.maxAge ? `; Max-Age=${options.maxAge}` : '';\n          const httpOnly = options?.httpOnly ? '; HttpOnly' : '';\n          const secure = options?.secure ? '; Secure' : '';\n          const sameSite = options?.sameSite ? `; SameSite=${options.sameSite}` : '; SameSite=Lax';\n\n          response.headers.set(\n            'Set-Cookie',\n            `${name}=${value}; Path=${path}${maxAge}${httpOnly}${secure}${sameSite}`\n          );\n          return name;\n        },\n      } as any;\n\n      const dontRememberMe = await getSignedCookie(\n        cookieHeader,\n        dontRememberTokenName,\n        authContext.secret\n      );\n\n      await setCookieCache(\n        ctx,\n        {\n          session: res.session,\n          user: cookieCacheFields as any,\n        },\n        !!dontRememberMe\n      );\n\n      return response;\n    },\n  };\n\n  return endpoint;\n};\n"],"names":["adminEndpoints","getSignedCookie","getPayloadAuth","setCookieCache","getFieldsToSign","refreshOperation","getRefreshTokenEndpoint","userSlug","endpoint","path","refreshToken","method","handler","req","payload","config","authContext","betterAuth","$context","userCollection","collections","Response","JSON","stringify","message","status","sessionTokenName","authCookies","sessionToken","name","cookieHeader","headers","get","hasSessionToken","includes","dontRememberTokenName","dontRememberToken","result","collection","error","console","res","api","getSession","query","disableCookieCache","user","findByID","id","session","userId","cookieCacheFields","collectionConfig","email","responseData","refreshedToken","setCookie","options","cookieCache","enabled","strategy","response","ctx","context","value","maxAge","httpOnly","secure","sameSite","set","dontRememberMe","secret"],"mappings":"AAAA,6DAA6D;AAC7D,SAASA,cAAc,QAAQ,iCAAiC;AAChE,SAASC,eAAe,QAAQ,iDAAiD;AACjF,SAASC,cAAc,QAAQ,4CAA4C;AAC3E,SAASC,cAAc,QAAQ,sBAAsB;AACrD,SAIEC,eAAe,EACfC,gBAAgB,QACX,UAAU;AAEjB,OAAO,MAAMC,0BAA0B,CAACC;IACtC,MAAMC,WAAqB;QACzBC,MAAMT,eAAeU,YAAY;QACjCC,QAAQ;QACRC,SAAS,OAAMC;YACb,MAAMC,UAAU,MAAMZ,eAAeW,IAAIC,OAAO,CAACC,MAAM;YACvD,MAAMC,cAAc,MAAMF,QAAQG,UAAU,EAAEC;YAC9C,MAAMC,iBAAiBL,QAAQM,WAAW,CAACb,SAA2B;YAEtE,IAAI,CAACY,gBAAgB;gBACnB,OAAO,IAAIE,SAASC,KAAKC,SAAS,CAAC;oBAAEC,SAAS;gBAA4B,IAAI;oBAC5EC,QAAQ;gBACV;YACF;YAEA,IAAI,CAACX,QAAQG,UAAU,IAAI,CAACD,aAAa;gBACvC,OAAO,IAAIK,SAASC,KAAKC,SAAS,CAAC;oBAAEC,SAAS;gBAA6B,IAAI;oBAC7EC,QAAQ;gBACV;YACF;YAEA,MAAMC,mBAAmBV,YAAYW,WAAW,CAACC,YAAY,CAACC,IAAI;YAClE,MAAMC,eAAejB,IAAIkB,OAAO,CAACC,GAAG,CAAC,aAAa;YAClD,MAAMC,kBAAkBH,aAAaI,QAAQ,CAAC,GAAGR,iBAAiB,CAAC,CAAC;YACpE,MAAMS,wBAAwBnB,YAAYW,WAAW,CAACS,iBAAiB,CAACP,IAAI;YAE5E,IAAI,CAACI,iBAAiB;gBACpB,IAAI;oBACF,MAAMI,SAAS,MAAMhC,iBAAiB;wBACpCiC,YAAYnB;wBACZN;oBACF;oBACA,OAAO,IAAIQ,SAASC,KAAKC,SAAS,CAACc,SAAS;wBAAEZ,QAAQ;oBAAI;gBAC5D,EAAE,OAAOc,OAAO;oBACdC,QAAQD,KAAK,CAAC,yBAAyBA;oBACvC,OAAO,IAAIlB,SAASC,KAAKC,SAAS,CAAC;wBAAEC,SAAS;oBAAuB,IAAI;wBAAEC,QAAQ;oBAAI;gBACzF;YACF;YAEA,MAAMgB,MAAM,MAAM3B,QAAQG,UAAU,CAACyB,GAAG,CAACC,UAAU,CAAC;gBAClDZ,SAASlB,IAAIkB,OAAO;gBACpBa,OAAO;oBAAEC,oBAAoB;gBAAK;YACpC;YAEA,IAAI,CAACJ,KAAK;gBACR,OAAO,IAAIpB,SAASC,KAAKC,SAAS,CAAC;oBAAEC,SAAS;gBAAqB,IAAI;oBACrEC,QAAQ;gBACV;YACF;YAEA,MAAMqB,OAAO,MAAMhC,QAAQiC,QAAQ,CAAC;gBAClCT,YAAY/B;gBACZyC,IAAIP,IAAIQ,OAAO,CAACC,MAAM;YACxB;YAEA,IAAI,CAACJ,MAAM;gBACT,OAAO,IAAIzB,SAASC,KAAKC,SAAS,CAAC;oBAAEC,SAAS;gBAAgB,IAAI;oBAChEC,QAAQ;gBACV;YACF;YAEA,MAAM0B,oBAAoB/C,gBAAgB;gBACxCgD,kBAAkBjC,gBAAgBJ;gBAClCsC,OAAO,AAACP,KAAaO,KAAK;gBAC1BP,MAAMA;YACR;YAEA,MAAMQ,eAAe;gBACnBC,gBAAgB;gBAChBC,WAAW,CAAC,CAACxC,YAAYyC,OAAO,CAACR,OAAO,EAAES,aAAaC;gBACvDC,UAAU;gBACVd,MAAM;oBAAE,GAAGA,IAAI;oBAAER,YAAY/B;gBAAS;YACxC;YAEA,MAAMsD,WAAW,IAAIxC,SAASC,KAAKC,SAAS,CAAC+B,eAAe;gBAC1D7B,QAAQ;YACV;YAEA,MAAMqC,MAAM;gBACVC,SAAS/C;gBACTwC,WAAU3B,IAAY,EAAEmC,KAAa,EAAEP,OAAa;oBAClD,MAAMhD,OAAOgD,SAAShD,QAAQ;oBAC9B,MAAMwD,SAASR,SAASQ,SAAS,CAAC,UAAU,EAAER,QAAQQ,MAAM,EAAE,GAAG;oBACjE,MAAMC,WAAWT,SAASS,WAAW,eAAe;oBACpD,MAAMC,SAASV,SAASU,SAAS,aAAa;oBAC9C,MAAMC,WAAWX,SAASW,WAAW,CAAC,WAAW,EAAEX,QAAQW,QAAQ,EAAE,GAAG;oBAExEP,SAAS9B,OAAO,CAACsC,GAAG,CAClB,cACA,GAAGxC,KAAK,CAAC,EAAEmC,MAAM,OAAO,EAAEvD,OAAOwD,SAASC,WAAWC,SAASC,UAAU;oBAE1E,OAAOvC;gBACT;YACF;YAEA,MAAMyC,iBAAiB,MAAMrE,gBAC3B6B,cACAK,uBACAnB,YAAYuD,MAAM;YAGpB,MAAMpE,eACJ2D,KACA;gBACEb,SAASR,IAAIQ,OAAO;gBACpBH,MAAMK;YACR,GACA,CAAC,CAACmB;YAGJ,OAAOT;QACT;IACF;IAEA,OAAOrD;AACT,EAAE"}

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/send-invite-url.d.ts

@@ -0,0 +1,3 @@
+import { type Endpoint } from 'payload';
+import type { BetterAuthPluginOptions } from '@/better-auth/plugin/types';
+export declare const getSendInviteUrlEndpoint: (pluginOptions: BetterAuthPluginOptions) => Endpoint;

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/send-invite-url.js

@@ -0,0 +1,64 @@
+import { adminEndpoints } from "@/better-auth/plugin/constants";
+import { status as httpStatus } from "http-status";
+import { addDataAndFileToRequest, headersWithCors, killTransaction } from "payload";
+import { z } from "zod";
+const requestSchema = z.object({
+    email: z.email(),
+    link: z.string()
+});
+export const getSendInviteUrlEndpoint = (pluginOptions)=>{
+    const endpoint = {
+        handler: async (req)=>{
+            await addDataAndFileToRequest(req);
+            const { t } = req;
+            const body = requestSchema.safeParse(req.data);
+            if (!body.success) {
+                return Response.json({
+                    message: body.error.message
+                }, {
+                    status: httpStatus.BAD_REQUEST
+                });
+            }
+            const sendInviteEmailFn = pluginOptions.adminInvitations?.sendInviteEmail;
+            if (!sendInviteEmailFn) {
+                req.payload.logger.error('Send admin invite email function not configured, please add the function to the betterAuthPlugin options.');
+                return Response.json({
+                    message: 'Send invite email function not found'
+                }, {
+                    status: httpStatus.INTERNAL_SERVER_ERROR
+                });
+            }
+            try {
+                const res = await sendInviteEmailFn({
+                    email: body.data.email,
+                    payload: req.payload,
+                    url: body.data.link
+                });
+                if (!res.success) {
+                    return Response.json({
+                        message: res.message
+                    }, {
+                        status: httpStatus.INTERNAL_SERVER_ERROR
+                    });
+                }
+                return Response.json({
+                    message: t('general:success')
+                }, {
+                    headers: headersWithCors({
+                        headers: new Headers(),
+                        req
+                    }),
+                    status: httpStatus.OK
+                });
+            } catch (error) {
+                await killTransaction(req);
+                throw error;
+            }
+        },
+        method: 'post',
+        path: adminEndpoints.sendInvite
+    };
+    return endpoint;
+};
+
+//# sourceMappingURL=send-invite-url.js.map

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/send-invite-url.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../../../../src/better-auth/plugin/lib/build-collections/users/endpoints/send-invite-url.ts"],"sourcesContent":["import { adminEndpoints } from '@/better-auth/plugin/constants';\nimport { status as httpStatus } from 'http-status';\nimport { type Endpoint, addDataAndFileToRequest, headersWithCors, killTransaction } from 'payload';\nimport { z } from 'zod';\n\nimport type { BetterAuthPluginOptions } from '@/better-auth/plugin/types';\n\nconst requestSchema = z.object({\n  email: z.email(),\n  link: z.string(),\n});\n\nexport const getSendInviteUrlEndpoint = (pluginOptions: BetterAuthPluginOptions): Endpoint => {\n  const endpoint: Endpoint = {\n    handler: async req => {\n      await addDataAndFileToRequest(req);\n      const { t } = req;\n      const body = requestSchema.safeParse(req.data);\n      if (!body.success) {\n        return Response.json({ message: body.error.message }, { status: httpStatus.BAD_REQUEST });\n      }\n\n      const sendInviteEmailFn = pluginOptions.adminInvitations?.sendInviteEmail;\n\n      if (!sendInviteEmailFn) {\n        req.payload.logger.error(\n          'Send admin invite email function not configured, please add the function to the betterAuthPlugin options.'\n        );\n        return Response.json(\n          { message: 'Send invite email function not found' },\n          { status: httpStatus.INTERNAL_SERVER_ERROR }\n        );\n      }\n\n      try {\n        const res = await sendInviteEmailFn({\n          email: body.data.email,\n          payload: req.payload,\n          url: body.data.link,\n        });\n\n        if (!res.success) {\n          return Response.json(\n            { message: res.message },\n            { status: httpStatus.INTERNAL_SERVER_ERROR }\n          );\n        }\n\n        return Response.json(\n          {\n            message: t('general:success'),\n          },\n          {\n            headers: headersWithCors({\n              headers: new Headers(),\n              req,\n            }),\n            status: httpStatus.OK,\n          }\n        );\n      } catch (error) {\n        await killTransaction(req);\n        throw error;\n      }\n    },\n    method: 'post',\n    path: adminEndpoints.sendInvite,\n  };\n  return endpoint;\n};\n"],"names":["adminEndpoints","status","httpStatus","addDataAndFileToRequest","headersWithCors","killTransaction","z","requestSchema","object","email","link","string","getSendInviteUrlEndpoint","pluginOptions","endpoint","handler","req","t","body","safeParse","data","success","Response","json","message","error","BAD_REQUEST","sendInviteEmailFn","adminInvitations","sendInviteEmail","payload","logger","INTERNAL_SERVER_ERROR","res","url","headers","Headers","OK","method","path","sendInvite"],"mappings":"AAAA,SAASA,cAAc,QAAQ,iCAAiC;AAChE,SAASC,UAAUC,UAAU,QAAQ,cAAc;AACnD,SAAwBC,uBAAuB,EAAEC,eAAe,EAAEC,eAAe,QAAQ,UAAU;AACnG,SAASC,CAAC,QAAQ,MAAM;AAIxB,MAAMC,gBAAgBD,EAAEE,MAAM,CAAC;IAC7BC,OAAOH,EAAEG,KAAK;IACdC,MAAMJ,EAAEK,MAAM;AAChB;AAEA,OAAO,MAAMC,2BAA2B,CAACC;IACvC,MAAMC,WAAqB;QACzBC,SAAS,OAAMC;YACb,MAAMb,wBAAwBa;YAC9B,MAAM,EAAEC,CAAC,EAAE,GAAGD;YACd,MAAME,OAAOX,cAAcY,SAAS,CAACH,IAAII,IAAI;YAC7C,IAAI,CAACF,KAAKG,OAAO,EAAE;gBACjB,OAAOC,SAASC,IAAI,CAAC;oBAAEC,SAASN,KAAKO,KAAK,CAACD,OAAO;gBAAC,GAAG;oBAAEvB,QAAQC,WAAWwB,WAAW;gBAAC;YACzF;YAEA,MAAMC,oBAAoBd,cAAce,gBAAgB,EAAEC;YAE1D,IAAI,CAACF,mBAAmB;gBACtBX,IAAIc,OAAO,CAACC,MAAM,CAACN,KAAK,CACtB;gBAEF,OAAOH,SAASC,IAAI,CAClB;oBAAEC,SAAS;gBAAuC,GAClD;oBAAEvB,QAAQC,WAAW8B,qBAAqB;gBAAC;YAE/C;YAEA,IAAI;gBACF,MAAMC,MAAM,MAAMN,kBAAkB;oBAClClB,OAAOS,KAAKE,IAAI,CAACX,KAAK;oBACtBqB,SAASd,IAAIc,OAAO;oBACpBI,KAAKhB,KAAKE,IAAI,CAACV,IAAI;gBACrB;gBAEA,IAAI,CAACuB,IAAIZ,OAAO,EAAE;oBAChB,OAAOC,SAASC,IAAI,CAClB;wBAAEC,SAASS,IAAIT,OAAO;oBAAC,GACvB;wBAAEvB,QAAQC,WAAW8B,qBAAqB;oBAAC;gBAE/C;gBAEA,OAAOV,SAASC,IAAI,CAClB;oBACEC,SAASP,EAAE;gBACb,GACA;oBACEkB,SAAS/B,gBAAgB;wBACvB+B,SAAS,IAAIC;wBACbpB;oBACF;oBACAf,QAAQC,WAAWmC,EAAE;gBACvB;YAEJ,EAAE,OAAOZ,OAAO;gBACd,MAAMpB,gBAAgBW;gBACtB,MAAMS;YACR;QACF;QACAa,QAAQ;QACRC,MAAMvC,eAAewC,UAAU;IACjC;IACA,OAAO1B;AACT,EAAE"}

package/dist/better-auth/plugin/lib/build-collections/users/endpoints/set-admin-role.d.ts

@@ -0,0 +1,3 @@
+import { type Endpoint } from 'payload';
+import type { BetterAuthPluginOptions } from '../../../../types';
+export declare const getSetAdminRoleEndpoint: (pluginOptions: BetterAuthPluginOptions, userSlug: string) => Endpoint;