@robelest/convex-auth 0.0.4-preview.13 → 0.0.4-preview.15

package/dist/server/keys.js.map

@@ -1 +1 @@
-{"version":3,"file":"keys.js","names":[],"sources":["../../src/server/keys.ts"],"sourcesContent":["/**\n * API Key crypto utilities.\n *\n * Uses `@oslojs/crypto` primitives for key generation and hashing:\n * - SHA-256 for hashing keys (API keys have high entropy, no need for bcrypt)\n * - Cryptographically secure random generation for key material\n *\n * @module\n */\n\nimport type { KeyScope, ScopeChecker } from \"./types\";\nimport { sha256, generateRandomString } from \"./utils\";\n\n// ============================================================================\n// Constants\n// ============================================================================\n\nconst DEFAULT_KEY_PREFIX = \"sk_\";\nconst KEY_RANDOM_LENGTH = 32;\nconst KEY_RANDOM_ALPHABET =\n  \"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789\";\n\n/**\n * How many characters of the full key to store as the visible prefix.\n * Includes the prefix string (e.g. \"sk_\") plus a few random chars.\n */\nconst VISIBLE_PREFIX_EXTRA_CHARS = 4;\n\n// ============================================================================\n// Key generation\n// ============================================================================\n\n/**\n * Generate a new API key.\n *\n * Returns the raw key (to be shown once to the user) and metadata for storage.\n * The raw key is `{prefix}{32 random alphanumeric chars}`.\n *\n * @param prefix - Key prefix, defaults to \"sk_\"\n * @returns `{ raw, hashedKey, displayPrefix }`\n */\nexport async function generateApiKey(\n  prefix: string = DEFAULT_KEY_PREFIX,\n): Promise<{\n  /** The full raw key — show to user once, never store. */\n  raw: string;\n  /** SHA-256 hex hash of the raw key — store this. */\n  hashedKey: string;\n  /** Truncated prefix for display (e.g. \"sk_aBc1...\"). */\n  displayPrefix: string;\n}> {\n  const randomPart = generateRandomString(\n    KEY_RANDOM_LENGTH,\n    KEY_RANDOM_ALPHABET,\n  );\n  const raw = `${prefix}${randomPart}`;\n  const hashedKey = await sha256(raw);\n  const displayPrefix = `${raw.substring(0, prefix.length + VISIBLE_PREFIX_EXTRA_CHARS)}...`;\n\n  return { raw, hashedKey, displayPrefix };\n}\n\n/**\n * Hash a raw API key for lookup.\n *\n * Used during Bearer token verification to find the stored key record.\n */\nexport async function hashApiKey(rawKey: string): Promise<string> {\n  return sha256(rawKey);\n}\n\n// ============================================================================\n// Scope checker\n// ============================================================================\n\n/**\n * Build a `ScopeChecker` from an array of `KeyScope` entries.\n *\n * The checker provides a `.can(resource, action)` method that returns `true`\n * if any scope entry grants the requested permission.\n *\n * A wildcard action `\"*\"` grants all actions on that resource.\n * A wildcard resource `\"*\"` grants the action on all resources.\n */\nexport function buildScopeChecker(scopes: KeyScope[]): ScopeChecker {\n  return {\n    scopes,\n    can(resource: string, action: string): boolean {\n      return scopes.some(\n        (scope) =>\n          (scope.resource === resource || scope.resource === \"*\") &&\n          (scope.actions.includes(action) || scope.actions.includes(\"*\")),\n      );\n    },\n  };\n}\n\n// ============================================================================\n// Per-key rate limiting (token-bucket)\n// ============================================================================\n\n/**\n * Check whether a key is rate-limited based on its stored state.\n *\n * Uses the same token-bucket algorithm as sign-in rate limiting:\n * tokens refill linearly over the configured window.\n *\n * @returns `{ limited: boolean; newState: { attemptsLeft, lastAttemptTime } }`\n */\nexport function checkKeyRateLimit(\n  rateLimit: { maxRequests: number; windowMs: number },\n  state: { attemptsLeft: number; lastAttemptTime: number } | undefined,\n): {\n  limited: boolean;\n  newState: { attemptsLeft: number; lastAttemptTime: number };\n} {\n  const now = Date.now();\n\n  if (!state) {\n    // First request — create initial state with one token consumed.\n    return {\n      limited: false,\n      newState: {\n        attemptsLeft: rateLimit.maxRequests - 1,\n        lastAttemptTime: now,\n      },\n    };\n  }\n\n  const elapsed = now - state.lastAttemptTime;\n  const refillRate = rateLimit.maxRequests / rateLimit.windowMs;\n  const refilled = Math.min(\n    rateLimit.maxRequests,\n    state.attemptsLeft + elapsed * refillRate,\n  );\n\n  if (refilled < 1) {\n    return {\n      limited: true,\n      newState: {\n        attemptsLeft: refilled,\n        lastAttemptTime: now,\n      },\n    };\n  }\n\n  return {\n    limited: false,\n    newState: {\n      attemptsLeft: refilled - 1,\n      lastAttemptTime: now,\n    },\n  };\n}\n"],"mappings":";;;AAiBA,MAAM,qBAAqB;AAC3B,MAAM,oBAAoB;AAC1B,MAAM,sBACJ;;;;;AAMF,MAAM,6BAA6B;;;;;;;;;;AAenC,eAAsB,eACpB,SAAiB,oBAQhB;CAKD,MAAM,MAAM,GAAG,SAJI,qBACjB,mBACA,oBACD;AAKD,QAAO;EAAE;EAAK,WAHI,MAAM,OAAO,IAAI;EAGV,eAFH,GAAG,IAAI,UAAU,GAAG,OAAO,SAAS,2BAA2B,CAAC;EAE9C;;;;;;;AAQ1C,eAAsB,WAAW,QAAiC;AAChE,QAAO,OAAO,OAAO;;;;;;;;;;;AAgBvB,SAAgB,kBAAkB,QAAkC;AAClE,QAAO;EACL;EACA,IAAI,UAAkB,QAAyB;AAC7C,UAAO,OAAO,MACX,WACE,MAAM,aAAa,YAAY,MAAM,aAAa,SAClD,MAAM,QAAQ,SAAS,OAAO,IAAI,MAAM,QAAQ,SAAS,IAAI,EACjE;;EAEJ;;;;;;;;;;AAeH,SAAgB,kBACd,WACA,OAIA;CACA,MAAM,MAAM,KAAK,KAAK;AAEtB,KAAI,CAAC,MAEH,QAAO;EACL,SAAS;EACT,UAAU;GACR,cAAc,UAAU,cAAc;GACtC,iBAAiB;GAClB;EACF;CAGH,MAAM,UAAU,MAAM,MAAM;CAC5B,MAAM,aAAa,UAAU,cAAc,UAAU;CACrD,MAAM,WAAW,KAAK,IACpB,UAAU,aACV,MAAM,eAAe,UAAU,WAChC;AAED,KAAI,WAAW,EACb,QAAO;EACL,SAAS;EACT,UAAU;GACR,cAAc;GACd,iBAAiB;GAClB;EACF;AAGH,QAAO;EACL,SAAS;EACT,UAAU;GACR,cAAc,WAAW;GACzB,iBAAiB;GAClB;EACF"}
+{"version":3,"file":"keys.js","names":[],"sources":["../../src/server/keys.ts"],"sourcesContent":["/**\n * API Key crypto utilities.\n *\n * Uses `@oslojs/crypto` primitives for key generation and hashing:\n * - SHA-256 for hashing keys (API keys have high entropy, no need for bcrypt)\n * - Cryptographically secure random generation for key material\n *\n * @module\n */\n\nimport type { KeyScope, ScopeChecker } from \"./types\";\nimport { sha256, generateRandomString } from \"./utils\";\n\n// ============================================================================\n// Constants\n// ============================================================================\n\nconst DEFAULT_KEY_PREFIX = \"sk_\";\nconst KEY_RANDOM_LENGTH = 32;\nconst KEY_RANDOM_ALPHABET =\n  \"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789\";\n\n/**\n * How many characters of the full key to store as the visible prefix.\n * Includes the prefix string (e.g. \"sk_\") plus a few random chars.\n */\nconst VISIBLE_PREFIX_EXTRA_CHARS = 4;\n\n// ============================================================================\n// Key generation\n// ============================================================================\n\n/**\n * Generate a new API key.\n *\n * Returns the raw key (to be shown once to the user) and metadata for storage.\n * The raw key is `{prefix}{32 random alphanumeric chars}`.\n *\n * @param prefix - Key prefix, defaults to \"sk_\"\n * @returns `{ raw, hashedKey, displayPrefix }`\n */\n/** @internal */\nexport async function generateApiKey(\n  prefix: string = DEFAULT_KEY_PREFIX,\n): Promise<{\n  /** The full raw key — show to user once, never store. */\n  raw: string;\n  /** SHA-256 hex hash of the raw key — store this. */\n  hashedKey: string;\n  /** Truncated prefix for display (e.g. \"sk_aBc1...\"). */\n  displayPrefix: string;\n}> {\n  const randomPart = generateRandomString(\n    KEY_RANDOM_LENGTH,\n    KEY_RANDOM_ALPHABET,\n  );\n  const raw = `${prefix}${randomPart}`;\n  const hashedKey = await sha256(raw);\n  const displayPrefix = `${raw.substring(0, prefix.length + VISIBLE_PREFIX_EXTRA_CHARS)}...`;\n\n  return { raw, hashedKey, displayPrefix };\n}\n\n/**\n * Hash a raw API key for lookup.\n *\n * Used during Bearer token verification to find the stored key record.\n */\n/** @internal */\nexport async function hashApiKey(rawKey: string): Promise<string> {\n  return sha256(rawKey);\n}\n\n// ============================================================================\n// Scope checker\n// ============================================================================\n\n/**\n * Build a `ScopeChecker` from an array of `KeyScope` entries.\n *\n * The checker provides a `.can(resource, action)` method that returns `true`\n * if any scope entry grants the requested permission.\n *\n * A wildcard action `\"*\"` grants all actions on that resource.\n * A wildcard resource `\"*\"` grants the action on all resources.\n */\n/** @internal */\nexport function buildScopeChecker(scopes: KeyScope[]): ScopeChecker {\n  return {\n    scopes,\n    can(resource: string, action: string): boolean {\n      return scopes.some(\n        (scope) =>\n          (scope.resource === resource || scope.resource === \"*\") &&\n          (scope.actions.includes(action) || scope.actions.includes(\"*\")),\n      );\n    },\n  };\n}\n\n// ============================================================================\n// Per-key rate limiting (token-bucket)\n// ============================================================================\n\n/**\n * Check whether a key is rate-limited based on its stored state.\n *\n * Uses the same token-bucket algorithm as sign-in rate limiting:\n * tokens refill linearly over the configured window.\n *\n * @returns `{ limited: boolean; newState: { attemptsLeft, lastAttemptTime } }`\n */\n/** @internal */\nexport function checkKeyRateLimit(\n  rateLimit: { maxRequests: number; windowMs: number },\n  state: { attemptsLeft: number; lastAttemptTime: number } | undefined,\n): {\n  limited: boolean;\n  newState: { attemptsLeft: number; lastAttemptTime: number };\n} {\n  const now = Date.now();\n\n  if (!state) {\n    // First request — create initial state with one token consumed.\n    return {\n      limited: false,\n      newState: {\n        attemptsLeft: rateLimit.maxRequests - 1,\n        lastAttemptTime: now,\n      },\n    };\n  }\n\n  const elapsed = now - state.lastAttemptTime;\n  const refillRate = rateLimit.maxRequests / rateLimit.windowMs;\n  const refilled = Math.min(\n    rateLimit.maxRequests,\n    state.attemptsLeft + elapsed * refillRate,\n  );\n\n  if (refilled < 1) {\n    return {\n      limited: true,\n      newState: {\n        attemptsLeft: refilled,\n        lastAttemptTime: now,\n      },\n    };\n  }\n\n  return {\n    limited: false,\n    newState: {\n      attemptsLeft: refilled - 1,\n      lastAttemptTime: now,\n    },\n  };\n}\n"],"mappings":";;;AAiBA,MAAM,qBAAqB;AAC3B,MAAM,oBAAoB;AAC1B,MAAM,sBACJ;;;;;AAMF,MAAM,6BAA6B;;;;;;;;;;;AAgBnC,eAAsB,eACpB,SAAiB,oBAQhB;CAKD,MAAM,MAAM,GAAG,SAJI,qBACjB,mBACA,oBACD;AAKD,QAAO;EAAE;EAAK,WAHI,MAAM,OAAO,IAAI;EAGV,eAFH,GAAG,IAAI,UAAU,GAAG,OAAO,SAAS,2BAA2B,CAAC;EAE9C;;;;;;;;AAS1C,eAAsB,WAAW,QAAiC;AAChE,QAAO,OAAO,OAAO;;;;;;;;;;;;AAiBvB,SAAgB,kBAAkB,QAAkC;AAClE,QAAO;EACL;EACA,IAAI,UAAkB,QAAyB;AAC7C,UAAO,OAAO,MACX,WACE,MAAM,aAAa,YAAY,MAAM,aAAa,SAClD,MAAM,QAAQ,SAAS,OAAO,IAAI,MAAM,QAAQ,SAAS,IAAI,EACjE;;EAEJ;;;;;;;;;;;AAgBH,SAAgB,kBACd,WACA,OAIA;CACA,MAAM,MAAM,KAAK,KAAK;AAEtB,KAAI,CAAC,MAEH,QAAO;EACL,SAAS;EACT,UAAU;GACR,cAAc,UAAU,cAAc;GACtC,iBAAiB;GAClB;EACF;CAGH,MAAM,UAAU,MAAM,MAAM;CAC5B,MAAM,aAAa,UAAU,cAAc,UAAU;CACrD,MAAM,WAAW,KAAK,IACpB,UAAU,aACV,MAAM,eAAe,UAAU,WAChC;AAED,KAAI,WAAW,EACb,QAAO;EACL,SAAS;EACT,UAAU;GACR,cAAc;GACd,iBAAiB;GAClB;EACF;AAGH,QAAO;EACL,SAAS;EACT,UAAU;GACR,cAAc,WAAW;GACzB,iBAAiB;GAClB;EACF"}

package/dist/server/mutations/account.d.ts

@@ -2,25 +2,25 @@ import { MutationCtx } from "../types.js";
 import { AuthError } from "../fx.js";
 import { Config, GetProviderOrThrowFunc } from "../provider.js";
 import { Fx } from "@robelest/fx";
-import * as convex_values88 from "convex/values";
-import { Infer } from "convex/values";
 import { GenericActionCtx, GenericDataModel } from "convex/server";
+import * as convex_values116 from "convex/values";
+import { Infer } from "convex/values";
 
 //#region src/server/mutations/account.d.ts
-declare const modifyAccountArgs: convex_values88.VObject<{
+declare const modifyAccountArgs: convex_values116.VObject<{
   provider: string;
   account: {
     id: string;
     secret: string;
   };
 }, {
-  provider: convex_values88.VString<string, "required">;
-  account: convex_values88.VObject<{
+  provider: convex_values116.VString<string, "required">;
+  account: convex_values116.VObject<{
     id: string;
     secret: string;
   }, {
-    id: convex_values88.VString<string, "required">;
-    secret: convex_values88.VString<string, "required">;
+    id: convex_values116.VString<string, "required">;
+    secret: convex_values116.VString<string, "required">;
   }, "required", "id" | "secret">;
 }, "required", "provider" | "account" | "account.id" | "account.secret">;
 declare function modifyAccountImpl(ctx: MutationCtx, args: Infer<typeof modifyAccountArgs>, getProviderOrThrow: GetProviderOrThrowFunc, config: Config): Fx<void, AuthError>;

package/dist/server/mutations/account.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"account.d.ts","names":[],"sources":["../../../src/server/mutations/account.ts"],"mappings":";;;;;;;;;cAYa,iBAAA,kBAAiB,OAAA;;;;;;;YAG5B,eAAA,CAAA,OAAA;;;;;;;;;iBAEc,iBAAA,CACd,GAAA,EAAK,WAAA,EACL,IAAA,EAAM,KAAA,QAAa,iBAAA,GACnB,kBAAA,EAAoB,sBAAA,EACpB,MAAA,EAAQ,MAAA,GACP,EAAA,OAAS,SAAA;AAAA,cA2CC,iBAAA,qBAA6C,gBAAA,EACxD,GAAA,EAAK,gBAAA,CAAiB,SAAA,GACtB,IAAA,EAAM,KAAA,QAAa,iBAAA,MAClB,OAAA"}
+{"version":3,"file":"account.d.ts","names":[],"sources":["../../../src/server/mutations/account.ts"],"mappings":";;;;;;;;;cAYa,iBAAA,mBAAiB,OAAA;;;;;;;YAG5B,gBAAA,CAAA,OAAA;;;;;;;;;iBAEc,iBAAA,CACd,GAAA,EAAK,WAAA,EACL,IAAA,EAAM,KAAA,QAAa,iBAAA,GACnB,kBAAA,EAAoB,sBAAA,EACpB,MAAA,EAAQ,MAAA,GACP,EAAA,OAAS,SAAA;AAAA,cA2CC,iBAAA,qBAA6C,gBAAA,EACxD,GAAA,EAAK,gBAAA,CAAiB,SAAA,GACtB,IAAA,EAAM,KAAA,QAAa,iBAAA,MAClB,OAAA"}

package/dist/server/mutations/code.d.ts

@@ -1,27 +1,27 @@
 import { MutationCtx } from "../types.js";
 import { Config, GetProviderOrThrowFunc } from "../provider.js";
-import * as convex_values7 from "convex/values";
-import { Infer } from "convex/values";
 import { GenericActionCtx, GenericDataModel } from "convex/server";
+import * as convex_values1 from "convex/values";
+import { Infer } from "convex/values";
 
 //#region src/server/mutations/code.d.ts
-declare const createVerificationCodeArgs: convex_values7.VObject<{
+declare const createVerificationCodeArgs: convex_values1.VObject<{
   email?: string | undefined;
   phone?: string | undefined;
   accountId?: string | undefined;
-  expirationTime: number;
   provider: string;
-  code: string;
   allowExtraProviders: boolean;
+  code: string;
+  expirationTime: number;
 }, {
-  accountId: convex_values7.VString<string | undefined, "optional">;
-  provider: convex_values7.VString<string, "required">;
-  email: convex_values7.VString<string | undefined, "optional">;
-  phone: convex_values7.VString<string | undefined, "optional">;
-  code: convex_values7.VString<string, "required">;
-  expirationTime: convex_values7.VFloat64<number, "required">;
-  allowExtraProviders: convex_values7.VBoolean<boolean, "required">;
-}, "required", "email" | "phone" | "expirationTime" | "provider" | "accountId" | "code" | "allowExtraProviders">;
+  accountId: convex_values1.VString<string | undefined, "optional">;
+  provider: convex_values1.VString<string, "required">;
+  email: convex_values1.VString<string | undefined, "optional">;
+  phone: convex_values1.VString<string | undefined, "optional">;
+  code: convex_values1.VString<string, "required">;
+  expirationTime: convex_values1.VFloat64<number, "required">;
+  allowExtraProviders: convex_values1.VBoolean<boolean, "required">;
+}, "required", "email" | "phone" | "provider" | "allowExtraProviders" | "accountId" | "code" | "expirationTime">;
 type ReturnType = string;
 declare function createVerificationCodeImpl(ctx: MutationCtx, args: Infer<typeof createVerificationCodeArgs>, getProviderOrThrow: GetProviderOrThrowFunc, config: Config): Promise<ReturnType>;
 declare const callCreateVerificationCode: <DataModel extends GenericDataModel>(ctx: GenericActionCtx<DataModel>, args: Infer<typeof createVerificationCodeArgs>) => Promise<ReturnType>;

package/dist/server/mutations/index.d.ts

@@ -12,11 +12,11 @@ import { callVerifier } from "./verifier.js";
 import { callRefreshSession } from "./refresh.js";
 import { callSignOut } from "./signout.js";
 import { callSignIn } from "./signin.js";
-import * as convex_values15 from "convex/values";
+import * as convex_values9 from "convex/values";
 import { Infer } from "convex/values";
 
 //#region src/server/mutations/index.d.ts
-declare const storeArgs: convex_values15.VObject<{
+declare const storeArgs: convex_values9.VObject<{
   args: {
     sessionId?: string | undefined;
     type: "signIn";
@@ -31,9 +31,9 @@ declare const storeArgs: convex_values15.VObject<{
     provider?: string | undefined;
     verifier?: string | undefined;
     type: "verifyCodeAndSignIn";
-    allowExtraProviders: boolean;
-    generateTokens: boolean;
     params: any;
+    generateTokens: boolean;
+    allowExtraProviders: boolean;
   } | {
     type: "verifier";
   } | {
@@ -42,40 +42,40 @@ declare const storeArgs: convex_values15.VObject<{
     signature: string;
   } | {
     accountExtend?: any;
-    type: "userOAuth";
     provider: string;
-    providerAccountId: string;
+    type: "userOAuth";
     signature: string;
+    providerAccountId: string;
     profile: any;
   } | {
     email?: string | undefined;
     phone?: string | undefined;
     accountId?: string | undefined;
-    type: "createVerificationCode";
-    expirationTime: number;
     provider: string;
-    code: string;
+    type: "createVerificationCode";
     allowExtraProviders: boolean;
+    code: string;
+    expirationTime: number;
   } | {
     shouldLinkViaEmail?: boolean | undefined;
     shouldLinkViaPhone?: boolean | undefined;
-    type: "createAccountFromCredentials";
     provider: string;
+    type: "createAccountFromCredentials";
+    profile: any;
     account: {
       secret?: string | undefined;
       id: string;
     };
-    profile: any;
   } | {
-    type: "retrieveAccountWithCredentials";
     provider: string;
+    type: "retrieveAccountWithCredentials";
     account: {
       secret?: string | undefined;
       id: string;
     };
   } | {
-    type: "modifyAccount";
     provider: string;
+    type: "modifyAccount";
     account: {
       id: string;
       secret: string;
@@ -86,7 +86,7 @@ declare const storeArgs: convex_values15.VObject<{
     userId: string;
   };
 }, {
-  args: convex_values15.VUnion<{
+  args: convex_values9.VUnion<{
     sessionId?: string | undefined;
     type: "signIn";
     userId: string;
@@ -100,9 +100,9 @@ declare const storeArgs: convex_values15.VObject<{
     provider?: string | undefined;
     verifier?: string | undefined;
     type: "verifyCodeAndSignIn";
-    allowExtraProviders: boolean;
-    generateTokens: boolean;
     params: any;
+    generateTokens: boolean;
+    allowExtraProviders: boolean;
   } | {
     type: "verifier";
   } | {
@@ -111,40 +111,40 @@ declare const storeArgs: convex_values15.VObject<{
     signature: string;
   } | {
     accountExtend?: any;
-    type: "userOAuth";
     provider: string;
-    providerAccountId: string;
+    type: "userOAuth";
     signature: string;
+    providerAccountId: string;
     profile: any;
   } | {
     email?: string | undefined;
     phone?: string | undefined;
     accountId?: string | undefined;
-    type: "createVerificationCode";
-    expirationTime: number;
     provider: string;
-    code: string;
+    type: "createVerificationCode";
     allowExtraProviders: boolean;
+    code: string;
+    expirationTime: number;
   } | {
     shouldLinkViaEmail?: boolean | undefined;
     shouldLinkViaPhone?: boolean | undefined;
-    type: "createAccountFromCredentials";
     provider: string;
+    type: "createAccountFromCredentials";
+    profile: any;
     account: {
       secret?: string | undefined;
       id: string;
     };
-    profile: any;
   } | {
-    type: "retrieveAccountWithCredentials";
     provider: string;
+    type: "retrieveAccountWithCredentials";
     account: {
       secret?: string | undefined;
       id: string;
     };
   } | {
-    type: "modifyAccount";
     provider: string;
+    type: "modifyAccount";
     account: {
       id: string;
       secret: string;
@@ -153,157 +153,154 @@ declare const storeArgs: convex_values15.VObject<{
     except?: string[] | undefined;
     type: "invalidateSessions";
     userId: string;
-  }, [convex_values15.VObject<{
+  }, [convex_values9.VObject<{
     sessionId?: string | undefined;
     type: "signIn";
     userId: string;
     generateTokens: boolean;
   }, {
-    userId: convex_values15.VString<string, "required">;
-    sessionId: convex_values15.VString<string | undefined, "optional">;
-    generateTokens: convex_values15.VBoolean<boolean, "required">;
-    type: convex_values15.VLiteral<"signIn", "required">;
-  }, "required", "type" | "userId" | "sessionId" | "generateTokens">, convex_values15.VObject<{
+    userId: convex_values9.VString<string, "required">;
+    sessionId: convex_values9.VString<string | undefined, "optional">;
+    generateTokens: convex_values9.VBoolean<boolean, "required">;
+    type: convex_values9.VLiteral<"signIn", "required">;
+  }, "required", "type" | "userId" | "sessionId" | "generateTokens">, convex_values9.VObject<{
     type: "signOut";
   }, {
-    type: convex_values15.VLiteral<"signOut", "required">;
-  }, "required", "type">, convex_values15.VObject<{
+    type: convex_values9.VLiteral<"signOut", "required">;
+  }, "required", "type">, convex_values9.VObject<{
     type: "refreshSession";
     refreshToken: string;
   }, {
-    refreshToken: convex_values15.VString<string, "required">;
-    type: convex_values15.VLiteral<"refreshSession", "required">;
-  }, "required", "type" | "refreshToken">, convex_values15.VObject<{
+    refreshToken: convex_values9.VString<string, "required">;
+    type: convex_values9.VLiteral<"refreshSession", "required">;
+  }, "required", "type" | "refreshToken">, convex_values9.VObject<{
     provider?: string | undefined;
     verifier?: string | undefined;
     type: "verifyCodeAndSignIn";
-    allowExtraProviders: boolean;
-    generateTokens: boolean;
     params: any;
+    generateTokens: boolean;
+    allowExtraProviders: boolean;
   }, {
-    params: convex_values15.VAny<any, "required", string>;
-    provider: convex_values15.VString<string | undefined, "optional">;
-    verifier: convex_values15.VString<string | undefined, "optional">;
-    generateTokens: convex_values15.VBoolean<boolean, "required">;
-    allowExtraProviders: convex_values15.VBoolean<boolean, "required">;
-    type: convex_values15.VLiteral<"verifyCodeAndSignIn", "required">;
-  }, "required", "type" | "provider" | "verifier" | "allowExtraProviders" | "generateTokens" | "params" | `params.${string}`>, convex_values15.VObject<{
+    params: convex_values9.VAny<any, "required", string>;
+    provider: convex_values9.VString<string | undefined, "optional">;
+    verifier: convex_values9.VString<string | undefined, "optional">;
+    generateTokens: convex_values9.VBoolean<boolean, "required">;
+    allowExtraProviders: convex_values9.VBoolean<boolean, "required">;
+    type: convex_values9.VLiteral<"verifyCodeAndSignIn", "required">;
+  }, "required", "provider" | "type" | "params" | "verifier" | "generateTokens" | "allowExtraProviders" | `params.${string}`>, convex_values9.VObject<{
     type: "verifier";
   }, {
-    type: convex_values15.VLiteral<"verifier", "required">;
-  }, "required", "type">, convex_values15.VObject<{
+    type: convex_values9.VLiteral<"verifier", "required">;
+  }, "required", "type">, convex_values9.VObject<{
     type: "verifierSignature";
     verifier: string;
     signature: string;
   }, {
-    verifier: convex_values15.VString<string, "required">;
-    signature: convex_values15.VString<string, "required">;
-    type: convex_values15.VLiteral<"verifierSignature", "required">;
-  }, "required", "type" | "verifier" | "signature">, convex_values15.VObject<{
+    verifier: convex_values9.VString<string, "required">;
+    signature: convex_values9.VString<string, "required">;
+    type: convex_values9.VLiteral<"verifierSignature", "required">;
+  }, "required", "type" | "verifier" | "signature">, convex_values9.VObject<{
     accountExtend?: any;
-    type: "userOAuth";
     provider: string;
-    providerAccountId: string;
+    type: "userOAuth";
     signature: string;
+    providerAccountId: string;
     profile: any;
   }, {
-    provider: convex_values15.VString<string, "required">;
-    providerAccountId: convex_values15.VString<string, "required">;
-    profile: convex_values15.VAny<any, "required", string>;
-    signature: convex_values15.VString<string, "required">;
-    accountExtend: convex_values15.VAny<any, "optional", string>;
-    type: convex_values15.VLiteral<"userOAuth", "required">;
-  }, "required", "type" | "provider" | "providerAccountId" | "signature" | "profile" | `profile.${string}` | "accountExtend" | `accountExtend.${string}`>, convex_values15.VObject<{
+    provider: convex_values9.VString<string, "required">;
+    providerAccountId: convex_values9.VString<string, "required">;
+    profile: convex_values9.VAny<any, "required", string>;
+    signature: convex_values9.VString<string, "required">;
+    accountExtend: convex_values9.VAny<any, "optional", string>;
+    type: convex_values9.VLiteral<"userOAuth", "required">;
+  }, "required", "provider" | "type" | "signature" | "providerAccountId" | "profile" | "accountExtend" | `profile.${string}` | `accountExtend.${string}`>, convex_values9.VObject<{
     email?: string | undefined;
     phone?: string | undefined;
     accountId?: string | undefined;
-    type: "createVerificationCode";
-    expirationTime: number;
     provider: string;
-    code: string;
+    type: "createVerificationCode";
     allowExtraProviders: boolean;
+    code: string;
+    expirationTime: number;
   }, {
-    accountId: convex_values15.VString<string | undefined, "optional">;
-    provider: convex_values15.VString<string, "required">;
-    email: convex_values15.VString<string | undefined, "optional">;
-    phone: convex_values15.VString<string | undefined, "optional">;
-    code: convex_values15.VString<string, "required">;
-    expirationTime: convex_values15.VFloat64<number, "required">;
-    allowExtraProviders: convex_values15.VBoolean<boolean, "required">;
-    type: convex_values15.VLiteral<"createVerificationCode", "required">;
-  }, "required", "email" | "phone" | "type" | "expirationTime" | "provider" | "accountId" | "code" | "allowExtraProviders">, convex_values15.VObject<{
+    accountId: convex_values9.VString<string | undefined, "optional">;
+    provider: convex_values9.VString<string, "required">;
+    email: convex_values9.VString<string | undefined, "optional">;
+    phone: convex_values9.VString<string | undefined, "optional">;
+    code: convex_values9.VString<string, "required">;
+    expirationTime: convex_values9.VFloat64<number, "required">;
+    allowExtraProviders: convex_values9.VBoolean<boolean, "required">;
+    type: convex_values9.VLiteral<"createVerificationCode", "required">;
+  }, "required", "email" | "phone" | "provider" | "type" | "allowExtraProviders" | "accountId" | "code" | "expirationTime">, convex_values9.VObject<{
     shouldLinkViaEmail?: boolean | undefined;
     shouldLinkViaPhone?: boolean | undefined;
-    type: "createAccountFromCredentials";
     provider: string;
+    type: "createAccountFromCredentials";
+    profile: any;
     account: {
       secret?: string | undefined;
       id: string;
     };
-    profile: any;
   }, {
-    provider: convex_values15.VString<string, "required">;
-    account: convex_values15.VObject<{
+    provider: convex_values9.VString<string, "required">;
+    account: convex_values9.VObject<{
       secret?: string | undefined;
       id: string;
     }, {
-      id: convex_values15.VString<string, "required">;
-      secret: convex_values15.VString<string | undefined, "optional">;
+      id: convex_values9.VString<string, "required">;
+      secret: convex_values9.VString<string | undefined, "optional">;
     }, "required", "id" | "secret">;
-    profile: convex_values15.VAny<any, "required", string>;
-    shouldLinkViaEmail: convex_values15.VBoolean<boolean | undefined, "optional">;
-    shouldLinkViaPhone: convex_values15.VBoolean<boolean | undefined, "optional">;
-    type: convex_values15.VLiteral<"createAccountFromCredentials", "required">;
-  }, "required", "type" | "provider" | "account" | "profile" | "shouldLinkViaEmail" | "shouldLinkViaPhone" | "account.id" | "account.secret" | `profile.${string}`>, convex_values15.VObject<{
-    type: "retrieveAccountWithCredentials";
+    profile: convex_values9.VAny<any, "required", string>;
+    shouldLinkViaEmail: convex_values9.VBoolean<boolean | undefined, "optional">;
+    shouldLinkViaPhone: convex_values9.VBoolean<boolean | undefined, "optional">;
+    type: convex_values9.VLiteral<"createAccountFromCredentials", "required">;
+  }, "required", "provider" | "type" | "profile" | `profile.${string}` | "account" | "shouldLinkViaEmail" | "shouldLinkViaPhone" | "account.id" | "account.secret">, convex_values9.VObject<{
     provider: string;
+    type: "retrieveAccountWithCredentials";
     account: {
       secret?: string | undefined;
       id: string;
     };
   }, {
-    provider: convex_values15.VString<string, "required">;
-    account: convex_values15.VObject<{
+    provider: convex_values9.VString<string, "required">;
+    account: convex_values9.VObject<{
       secret?: string | undefined;
       id: string;
     }, {
-      id: convex_values15.VString<string, "required">;
-      secret: convex_values15.VString<string | undefined, "optional">;
+      id: convex_values9.VString<string, "required">;
+      secret: convex_values9.VString<string | undefined, "optional">;
     }, "required", "id" | "secret">;
-    type: convex_values15.VLiteral<"retrieveAccountWithCredentials", "required">;
-  }, "required", "type" | "provider" | "account" | "account.id" | "account.secret">, convex_values15.VObject<{
-    type: "modifyAccount";
+    type: convex_values9.VLiteral<"retrieveAccountWithCredentials", "required">;
+  }, "required", "provider" | "type" | "account" | "account.id" | "account.secret">, convex_values9.VObject<{
     provider: string;
+    type: "modifyAccount";
     account: {
       id: string;
       secret: string;
     };
   }, {
-    provider: convex_values15.VString<string, "required">;
-    account: convex_values15.VObject<{
+    provider: convex_values9.VString<string, "required">;
+    account: convex_values9.VObject<{
       id: string;
       secret: string;
     }, {
-      id: convex_values15.VString<string, "required">;
-      secret: convex_values15.VString<string, "required">;
+      id: convex_values9.VString<string, "required">;
+      secret: convex_values9.VString<string, "required">;
     }, "required", "id" | "secret">;
-    type: convex_values15.VLiteral<"modifyAccount", "required">;
-  }, "required", "type" | "provider" | "account" | "account.id" | "account.secret">, convex_values15.VObject<{
+    type: convex_values9.VLiteral<"modifyAccount", "required">;
+  }, "required", "provider" | "type" | "account" | "account.id" | "account.secret">, convex_values9.VObject<{
     except?: string[] | undefined;
     type: "invalidateSessions";
     userId: string;
   }, {
-    userId: convex_values15.VString<string, "required">;
-    except: convex_values15.VArray<string[] | undefined, convex_values15.VString<string, "required">, "optional">;
-    type: convex_values15.VLiteral<"invalidateSessions", "required">;
-  }, "required", "type" | "userId" | "except">], "required", "email" | "phone" | "type" | "userId" | "expirationTime" | "provider" | "providerAccountId" | "sessionId" | "accountId" | "code" | "verifier" | "signature" | "account" | "profile" | "shouldLinkViaEmail" | "shouldLinkViaPhone" | "account.id" | "account.secret" | `profile.${string}` | "allowExtraProviders" | "generateTokens" | "refreshToken" | "params" | `params.${string}` | "accountExtend" | `accountExtend.${string}` | "except">;
-}, "required", "args" | "args.email" | "args.phone" | "args.type" | "args.userId" | "args.expirationTime" | "args.provider" | "args.providerAccountId" | "args.sessionId" | "args.accountId" | "args.code" | "args.verifier" | "args.signature" | "args.account" | "args.profile" | "args.shouldLinkViaEmail" | "args.shouldLinkViaPhone" | "args.account.id" | "args.account.secret" | `args.profile.${string}` | "args.allowExtraProviders" | "args.generateTokens" | "args.refreshToken" | "args.params" | `args.params.${string}` | "args.accountExtend" | `args.accountExtend.${string}` | "args.except">;
+    userId: convex_values9.VString<string, "required">;
+    except: convex_values9.VArray<string[] | undefined, convex_values9.VString<string, "required">, "optional">;
+    type: convex_values9.VLiteral<"invalidateSessions", "required">;
+  }, "required", "type" | "userId" | "except">], "required", "email" | "phone" | "provider" | "type" | "params" | "verifier" | "refreshToken" | "userId" | "sessionId" | "generateTokens" | "allowExtraProviders" | `params.${string}` | "signature" | "providerAccountId" | "profile" | "accountExtend" | `profile.${string}` | `accountExtend.${string}` | "accountId" | "code" | "expirationTime" | "account" | "shouldLinkViaEmail" | "shouldLinkViaPhone" | "account.id" | "account.secret" | "except">;
+}, "required", "args" | "args.email" | "args.phone" | "args.provider" | "args.type" | "args.params" | "args.verifier" | "args.refreshToken" | "args.userId" | "args.sessionId" | "args.generateTokens" | "args.allowExtraProviders" | `args.params.${string}` | "args.signature" | "args.providerAccountId" | "args.profile" | "args.accountExtend" | `args.profile.${string}` | `args.accountExtend.${string}` | "args.accountId" | "args.code" | "args.expirationTime" | "args.account" | "args.shouldLinkViaEmail" | "args.shouldLinkViaPhone" | "args.account.id" | "args.account.secret" | "args.except">;
 declare const storeImpl: (ctx: MutationCtx, fnArgs: Infer<typeof storeArgs>, getProviderOrThrow: GetProviderOrThrowFunc, config: Config) => Promise<string | void | {
-  account: Doc<"Account">;
-  user: Doc<"User">;
-} | {
-  userId: convex_values15.GenericId<"User">;
-  sessionId: convex_values15.GenericId<"Session">;
+  userId: convex_values9.GenericId<"User">;
+  sessionId: convex_values9.GenericId<"Session">;
 } | (string & {
   __tableName: "AuthVerifier";
 }) | SessionInfo | {
@@ -312,6 +309,9 @@ declare const storeImpl: (ctx: MutationCtx, fnArgs: Infer<typeof storeArgs>, get
 } | {
   account: Doc<"Account">;
   user: Doc<"User">;
+} | {
+  account: Doc<"Account">;
+  user: Doc<"User">;
 } | null>;
 //#endregion
 export { callCreateAccountFromCredentials, callCreateVerificationCode, callInvalidateSessions, callModifyAccount, callRefreshSession, callRetreiveAccountWithCredentials, callRetrieveAccountWithCredentials, callSignIn, callSignOut, callUserOAuth, callVerifier, callVerifierSignature, callVerifyCodeAndSignIn, storeArgs, storeImpl };

package/dist/server/mutations/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","names":[],"sources":["../../../src/server/mutations/index.ts"],"mappings":";;;;;;;;;;;;;;;;;;cAwCa,SAAA,kBAAS,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;YAiDpB,eAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,SAAA,GACX,GAAA,EAAK,WAAA,EACL,MAAA,EAAQ,KAAA,QAAa,SAAA,GACrB,kBAAA,EAAoB,sBAAA,EACpB,MAAA,EAAQ,MAAA,KAAe,OAAA;WAAA,GAAA"}
+{"version":3,"file":"index.d.ts","names":[],"sources":["../../../src/server/mutations/index.ts"],"mappings":";;;;;;;;;;;;;;;;;;cAwCa,SAAA,iBAAS,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;YAiDpB,cAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,SAAA,GACX,GAAA,EAAK,WAAA,EACL,MAAA,EAAQ,KAAA,QAAa,SAAA,GACrB,kBAAA,EAAoB,sBAAA,EACpB,MAAA,EAAQ,MAAA,KAAe,OAAA;UAAA,cAAA,CAAA,SAAA"}

package/dist/server/mutations/index.js

@@ -48,7 +48,7 @@ const storeArgs = v.object({ args: v.union(v.object({
 })) });
 const storeImpl = async (ctx, fnArgs, getProviderOrThrow, config) => {
 	const args = fnArgs.args;
-	logWithLevel(LOG_LEVELS.INFO, `\`auth/store:run\` type: ${args.type}`);
+	logWithLevel(LOG_LEVELS.INFO, `\`auth:store\` type: ${args.type}`);
 	return Fx.run(Fx.match(args, args.type, {
 		signIn: (a) => Fx.from({
 			ok: () => signInImpl(ctx, a, config),

package/dist/server/mutations/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":[],"sources":["../../../src/server/mutations/index.ts"],"sourcesContent":["import { Fx } from \"@robelest/fx\";\nimport { Infer, v } from \"convex/values\";\n\nimport * as Provider from \"../provider\";\nimport { MutationCtx } from \"../types\";\nimport { LOG_LEVELS, logWithLevel } from \"../utils\";\nimport { modifyAccountArgs, modifyAccountImpl } from \"./account\";\nimport { createVerificationCodeArgs, createVerificationCodeImpl } from \"./code\";\nimport { invalidateSessionsArgs, invalidateSessionsImpl } from \"./invalidate\";\nimport { userOAuthArgs, userOAuthImpl } from \"./oauth\";\nimport { refreshSessionArgs, refreshSessionImpl } from \"./refresh\";\nimport {\n  createAccountFromCredentialsArgs,\n  createAccountFromCredentialsImpl,\n} from \"./register\";\nimport {\n  retrieveAccountWithCredentialsArgs,\n  retrieveAccountWithCredentialsImpl,\n} from \"./retrieve\";\nimport { verifierSignatureArgs, verifierSignatureImpl } from \"./signature\";\nimport { signInArgs, signInImpl } from \"./signin\";\nimport { signOutImpl } from \"./signout\";\nimport { verifierImpl } from \"./verifier\";\nimport { verifyCodeAndSignInArgs, verifyCodeAndSignInImpl } from \"./verify\";\nexport { callInvalidateSessions } from \"./invalidate\";\nexport { callModifyAccount } from \"./account\";\nexport {\n  callRetrieveAccountWithCredentials,\n  callRetreiveAccountWithCredentials,\n} from \"./retrieve\";\nexport { callCreateAccountFromCredentials } from \"./register\";\nexport { callCreateVerificationCode } from \"./code\";\nexport { callUserOAuth } from \"./oauth\";\nexport { callVerifierSignature } from \"./signature\";\nexport { callVerifyCodeAndSignIn } from \"./verify\";\nexport { callVerifier } from \"./verifier\";\nexport { callRefreshSession } from \"./refresh\";\nexport { callSignOut } from \"./signout\";\nexport { callSignIn } from \"./signin\";\n\nexport const storeArgs = v.object({\n  args: v.union(\n    v.object({\n      type: v.literal(\"signIn\"),\n      ...signInArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"signOut\"),\n    }),\n    v.object({\n      type: v.literal(\"refreshSession\"),\n      ...refreshSessionArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"verifyCodeAndSignIn\"),\n      ...verifyCodeAndSignInArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"verifier\"),\n    }),\n    v.object({\n      type: v.literal(\"verifierSignature\"),\n      ...verifierSignatureArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"userOAuth\"),\n      ...userOAuthArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"createVerificationCode\"),\n      ...createVerificationCodeArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"createAccountFromCredentials\"),\n      ...createAccountFromCredentialsArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"retrieveAccountWithCredentials\"),\n      ...retrieveAccountWithCredentialsArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"modifyAccount\"),\n      ...modifyAccountArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"invalidateSessions\"),\n      ...invalidateSessionsArgs.fields,\n    }),\n  ),\n});\n\nexport const storeImpl = async (\n  ctx: MutationCtx,\n  fnArgs: Infer<typeof storeArgs>,\n  getProviderOrThrow: Provider.GetProviderOrThrowFunc,\n  config: Provider.Config,\n) => {\n  const args = fnArgs.args;\n  logWithLevel(LOG_LEVELS.INFO, `\\`auth/store:run\\` type: ${args.type}`);\n  return Fx.run(\n    Fx.match(args, args.type, {\n      signIn: (a) =>\n        Fx.from({\n          ok: () => signInImpl(ctx, a, config),\n          err: (e) => e as never,\n        }),\n      signOut: () => signOutImpl(ctx, config),\n      refreshSession: (a) =>\n        Fx.from({\n          ok: () => refreshSessionImpl(ctx, a, getProviderOrThrow, config),\n          err: (e) => e as never,\n        }),\n      verifyCodeAndSignIn: (a) =>\n        Fx.from({\n          ok: () => verifyCodeAndSignInImpl(ctx, a, getProviderOrThrow, config),\n          err: (e) => e as never,\n        }),\n      verifier: () => verifierImpl(ctx, config),\n      verifierSignature: (a) =>\n        verifierSignatureImpl(ctx, a, config).pipe(\n          Fx.recover((e) => Fx.fatal(e.toConvexError())),\n        ),\n      userOAuth: (a) =>\n        userOAuthImpl(ctx, a, getProviderOrThrow, config).pipe(\n          Fx.recover((e) => Fx.fatal(e.toConvexError())),\n        ),\n      createVerificationCode: (a) =>\n        Fx.from({\n          ok: () =>\n            createVerificationCodeImpl(ctx, a, getProviderOrThrow, config),\n          err: (e) => e as never,\n        }),\n      createAccountFromCredentials: (a) =>\n        Fx.from({\n          ok: () =>\n            createAccountFromCredentialsImpl(\n              ctx,\n              a,\n              getProviderOrThrow,\n              config,\n            ),\n          err: (e) => e as never,\n        }),\n      retrieveAccountWithCredentials: (a) =>\n        retrieveAccountWithCredentialsImpl(ctx, a, getProviderOrThrow, config),\n      modifyAccount: (a) =>\n        modifyAccountImpl(ctx, a, getProviderOrThrow, config).pipe(\n          Fx.recover((e) => Fx.fatal(e.toConvexError())),\n        ),\n      invalidateSessions: (a) => invalidateSessionsImpl(ctx, a, config),\n    }),\n  );\n};\n"],"mappings":";;;;;;;;;;;;;;;;;AAwCA,MAAa,YAAY,EAAE,OAAO,EAChC,MAAM,EAAE,MACN,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,SAAS;CACzB,GAAG,WAAW;CACf,CAAC,EACF,EAAE,OAAO,EACP,MAAM,EAAE,QAAQ,UAAU,EAC3B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,iBAAiB;CACjC,GAAG,mBAAmB;CACvB,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,sBAAsB;CACtC,GAAG,wBAAwB;CAC5B,CAAC,EACF,EAAE,OAAO,EACP,MAAM,EAAE,QAAQ,WAAW,EAC5B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,oBAAoB;CACpC,GAAG,sBAAsB;CAC1B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,YAAY;CAC5B,GAAG,cAAc;CAClB,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,yBAAyB;CACzC,GAAG,2BAA2B;CAC/B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,+BAA+B;CAC/C,GAAG,iCAAiC;CACrC,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,iCAAiC;CACjD,GAAG,mCAAmC;CACvC,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,gBAAgB;CAChC,GAAG,kBAAkB;CACtB,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,qBAAqB;CACrC,GAAG,uBAAuB;CAC3B,CAAC,CACH,EACF,CAAC;AAEF,MAAa,YAAY,OACvB,KACA,QACA,oBACA,WACG;CACH,MAAM,OAAO,OAAO;AACpB,cAAa,WAAW,MAAM,4BAA4B,KAAK,OAAO;AACtE,QAAO,GAAG,IACR,GAAG,MAAM,MAAM,KAAK,MAAM;EACxB,SAAS,MACP,GAAG,KAAK;GACN,UAAU,WAAW,KAAK,GAAG,OAAO;GACpC,MAAM,MAAM;GACb,CAAC;EACJ,eAAe,YAAY,KAAK,OAAO;EACvC,iBAAiB,MACf,GAAG,KAAK;GACN,UAAU,mBAAmB,KAAK,GAAG,oBAAoB,OAAO;GAChE,MAAM,MAAM;GACb,CAAC;EACJ,sBAAsB,MACpB,GAAG,KAAK;GACN,UAAU,wBAAwB,KAAK,GAAG,oBAAoB,OAAO;GACrE,MAAM,MAAM;GACb,CAAC;EACJ,gBAAgB,aAAa,KAAK,OAAO;EACzC,oBAAoB,MAClB,sBAAsB,KAAK,GAAG,OAAO,CAAC,KACpC,GAAG,SAAS,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC,CAC/C;EACH,YAAY,MACV,cAAc,KAAK,GAAG,oBAAoB,OAAO,CAAC,KAChD,GAAG,SAAS,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC,CAC/C;EACH,yBAAyB,MACvB,GAAG,KAAK;GACN,UACE,2BAA2B,KAAK,GAAG,oBAAoB,OAAO;GAChE,MAAM,MAAM;GACb,CAAC;EACJ,+BAA+B,MAC7B,GAAG,KAAK;GACN,UACE,iCACE,KACA,GACA,oBACA,OACD;GACH,MAAM,MAAM;GACb,CAAC;EACJ,iCAAiC,MAC/B,mCAAmC,KAAK,GAAG,oBAAoB,OAAO;EACxE,gBAAgB,MACd,kBAAkB,KAAK,GAAG,oBAAoB,OAAO,CAAC,KACpD,GAAG,SAAS,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC,CAC/C;EACH,qBAAqB,MAAM,uBAAuB,KAAK,GAAG,OAAO;EAClE,CAAC,CACH"}
+{"version":3,"file":"index.js","names":[],"sources":["../../../src/server/mutations/index.ts"],"sourcesContent":["import { Fx } from \"@robelest/fx\";\nimport { Infer, v } from \"convex/values\";\n\nimport * as Provider from \"../provider\";\nimport { MutationCtx } from \"../types\";\nimport { LOG_LEVELS, logWithLevel } from \"../utils\";\nimport { modifyAccountArgs, modifyAccountImpl } from \"./account\";\nimport { createVerificationCodeArgs, createVerificationCodeImpl } from \"./code\";\nimport { invalidateSessionsArgs, invalidateSessionsImpl } from \"./invalidate\";\nimport { userOAuthArgs, userOAuthImpl } from \"./oauth\";\nimport { refreshSessionArgs, refreshSessionImpl } from \"./refresh\";\nimport {\n  createAccountFromCredentialsArgs,\n  createAccountFromCredentialsImpl,\n} from \"./register\";\nimport {\n  retrieveAccountWithCredentialsArgs,\n  retrieveAccountWithCredentialsImpl,\n} from \"./retrieve\";\nimport { verifierSignatureArgs, verifierSignatureImpl } from \"./signature\";\nimport { signInArgs, signInImpl } from \"./signin\";\nimport { signOutImpl } from \"./signout\";\nimport { verifierImpl } from \"./verifier\";\nimport { verifyCodeAndSignInArgs, verifyCodeAndSignInImpl } from \"./verify\";\nexport { callInvalidateSessions } from \"./invalidate\";\nexport { callModifyAccount } from \"./account\";\nexport {\n  callRetrieveAccountWithCredentials,\n  callRetreiveAccountWithCredentials,\n} from \"./retrieve\";\nexport { callCreateAccountFromCredentials } from \"./register\";\nexport { callCreateVerificationCode } from \"./code\";\nexport { callUserOAuth } from \"./oauth\";\nexport { callVerifierSignature } from \"./signature\";\nexport { callVerifyCodeAndSignIn } from \"./verify\";\nexport { callVerifier } from \"./verifier\";\nexport { callRefreshSession } from \"./refresh\";\nexport { callSignOut } from \"./signout\";\nexport { callSignIn } from \"./signin\";\n\nexport const storeArgs = v.object({\n  args: v.union(\n    v.object({\n      type: v.literal(\"signIn\"),\n      ...signInArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"signOut\"),\n    }),\n    v.object({\n      type: v.literal(\"refreshSession\"),\n      ...refreshSessionArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"verifyCodeAndSignIn\"),\n      ...verifyCodeAndSignInArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"verifier\"),\n    }),\n    v.object({\n      type: v.literal(\"verifierSignature\"),\n      ...verifierSignatureArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"userOAuth\"),\n      ...userOAuthArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"createVerificationCode\"),\n      ...createVerificationCodeArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"createAccountFromCredentials\"),\n      ...createAccountFromCredentialsArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"retrieveAccountWithCredentials\"),\n      ...retrieveAccountWithCredentialsArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"modifyAccount\"),\n      ...modifyAccountArgs.fields,\n    }),\n    v.object({\n      type: v.literal(\"invalidateSessions\"),\n      ...invalidateSessionsArgs.fields,\n    }),\n  ),\n});\n\nexport const storeImpl = async (\n  ctx: MutationCtx,\n  fnArgs: Infer<typeof storeArgs>,\n  getProviderOrThrow: Provider.GetProviderOrThrowFunc,\n  config: Provider.Config,\n) => {\n  const args = fnArgs.args;\n  logWithLevel(LOG_LEVELS.INFO, `\\`auth:store\\` type: ${args.type}`);\n  return Fx.run(\n    Fx.match(args, args.type, {\n      signIn: (a) =>\n        Fx.from({\n          ok: () => signInImpl(ctx, a, config),\n          err: (e) => e as never,\n        }),\n      signOut: () => signOutImpl(ctx, config),\n      refreshSession: (a) =>\n        Fx.from({\n          ok: () => refreshSessionImpl(ctx, a, getProviderOrThrow, config),\n          err: (e) => e as never,\n        }),\n      verifyCodeAndSignIn: (a) =>\n        Fx.from({\n          ok: () => verifyCodeAndSignInImpl(ctx, a, getProviderOrThrow, config),\n          err: (e) => e as never,\n        }),\n      verifier: () => verifierImpl(ctx, config),\n      verifierSignature: (a) =>\n        verifierSignatureImpl(ctx, a, config).pipe(\n          Fx.recover((e) => Fx.fatal(e.toConvexError())),\n        ),\n      userOAuth: (a) =>\n        userOAuthImpl(ctx, a, getProviderOrThrow, config).pipe(\n          Fx.recover((e) => Fx.fatal(e.toConvexError())),\n        ),\n      createVerificationCode: (a) =>\n        Fx.from({\n          ok: () =>\n            createVerificationCodeImpl(ctx, a, getProviderOrThrow, config),\n          err: (e) => e as never,\n        }),\n      createAccountFromCredentials: (a) =>\n        Fx.from({\n          ok: () =>\n            createAccountFromCredentialsImpl(\n              ctx,\n              a,\n              getProviderOrThrow,\n              config,\n            ),\n          err: (e) => e as never,\n        }),\n      retrieveAccountWithCredentials: (a) =>\n        retrieveAccountWithCredentialsImpl(ctx, a, getProviderOrThrow, config),\n      modifyAccount: (a) =>\n        modifyAccountImpl(ctx, a, getProviderOrThrow, config).pipe(\n          Fx.recover((e) => Fx.fatal(e.toConvexError())),\n        ),\n      invalidateSessions: (a) => invalidateSessionsImpl(ctx, a, config),\n    }),\n  );\n};\n"],"mappings":";;;;;;;;;;;;;;;;;AAwCA,MAAa,YAAY,EAAE,OAAO,EAChC,MAAM,EAAE,MACN,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,SAAS;CACzB,GAAG,WAAW;CACf,CAAC,EACF,EAAE,OAAO,EACP,MAAM,EAAE,QAAQ,UAAU,EAC3B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,iBAAiB;CACjC,GAAG,mBAAmB;CACvB,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,sBAAsB;CACtC,GAAG,wBAAwB;CAC5B,CAAC,EACF,EAAE,OAAO,EACP,MAAM,EAAE,QAAQ,WAAW,EAC5B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,oBAAoB;CACpC,GAAG,sBAAsB;CAC1B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,YAAY;CAC5B,GAAG,cAAc;CAClB,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,yBAAyB;CACzC,GAAG,2BAA2B;CAC/B,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,+BAA+B;CAC/C,GAAG,iCAAiC;CACrC,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,iCAAiC;CACjD,GAAG,mCAAmC;CACvC,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,gBAAgB;CAChC,GAAG,kBAAkB;CACtB,CAAC,EACF,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,qBAAqB;CACrC,GAAG,uBAAuB;CAC3B,CAAC,CACH,EACF,CAAC;AAEF,MAAa,YAAY,OACvB,KACA,QACA,oBACA,WACG;CACH,MAAM,OAAO,OAAO;AACpB,cAAa,WAAW,MAAM,wBAAwB,KAAK,OAAO;AAClE,QAAO,GAAG,IACR,GAAG,MAAM,MAAM,KAAK,MAAM;EACxB,SAAS,MACP,GAAG,KAAK;GACN,UAAU,WAAW,KAAK,GAAG,OAAO;GACpC,MAAM,MAAM;GACb,CAAC;EACJ,eAAe,YAAY,KAAK,OAAO;EACvC,iBAAiB,MACf,GAAG,KAAK;GACN,UAAU,mBAAmB,KAAK,GAAG,oBAAoB,OAAO;GAChE,MAAM,MAAM;GACb,CAAC;EACJ,sBAAsB,MACpB,GAAG,KAAK;GACN,UAAU,wBAAwB,KAAK,GAAG,oBAAoB,OAAO;GACrE,MAAM,MAAM;GACb,CAAC;EACJ,gBAAgB,aAAa,KAAK,OAAO;EACzC,oBAAoB,MAClB,sBAAsB,KAAK,GAAG,OAAO,CAAC,KACpC,GAAG,SAAS,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC,CAC/C;EACH,YAAY,MACV,cAAc,KAAK,GAAG,oBAAoB,OAAO,CAAC,KAChD,GAAG,SAAS,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC,CAC/C;EACH,yBAAyB,MACvB,GAAG,KAAK;GACN,UACE,2BAA2B,KAAK,GAAG,oBAAoB,OAAO;GAChE,MAAM,MAAM;GACb,CAAC;EACJ,+BAA+B,MAC7B,GAAG,KAAK;GACN,UACE,iCACE,KACA,GACA,oBACA,OACD;GACH,MAAM,MAAM;GACb,CAAC;EACJ,iCAAiC,MAC/B,mCAAmC,KAAK,GAAG,oBAAoB,OAAO;EACxE,gBAAgB,MACd,kBAAkB,KAAK,GAAG,oBAAoB,OAAO,CAAC,KACpD,GAAG,SAAS,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC,CAC/C;EACH,qBAAqB,MAAM,uBAAuB,KAAK,GAAG,OAAO;EAClE,CAAC,CACH"}

package/dist/server/mutations/invalidate.d.ts

@@ -1,17 +1,17 @@
 import { MutationCtx } from "../types.js";
 import { Config } from "../provider.js";
 import { Fx } from "@robelest/fx";
-import * as convex_values84 from "convex/values";
-import { Infer } from "convex/values";
 import { GenericActionCtx, GenericDataModel } from "convex/server";
+import * as convex_values78 from "convex/values";
+import { Infer } from "convex/values";
 
 //#region src/server/mutations/invalidate.d.ts
-declare const invalidateSessionsArgs: convex_values84.VObject<{
+declare const invalidateSessionsArgs: convex_values78.VObject<{
   except?: string[] | undefined;
   userId: string;
 }, {
-  userId: convex_values84.VString<string, "required">;
-  except: convex_values84.VArray<string[] | undefined, convex_values84.VString<string, "required">, "optional">;
+  userId: convex_values78.VString<string, "required">;
+  except: convex_values78.VArray<string[] | undefined, convex_values78.VString<string, "required">, "optional">;
 }, "required", "userId" | "except">;
 declare const callInvalidateSessions: <DataModel extends GenericDataModel>(ctx: GenericActionCtx<DataModel>, args: Infer<typeof invalidateSessionsArgs>) => Promise<void>;
 declare function invalidateSessionsImpl(ctx: MutationCtx, args: Infer<typeof invalidateSessionsArgs>, config: Config): Fx<void, never>;

package/dist/server/mutations/oauth.d.ts

@@ -2,24 +2,24 @@ import { MutationCtx } from "../types.js";
 import { AuthError } from "../fx.js";
 import { Config, GetProviderOrThrowFunc } from "../provider.js";
 import { Fx } from "@robelest/fx";
-import * as convex_values93 from "convex/values";
-import { Infer } from "convex/values";
 import { GenericActionCtx, GenericDataModel } from "convex/server";
+import * as convex_values82 from "convex/values";
+import { Infer } from "convex/values";
 
 //#region src/server/mutations/oauth.d.ts
-declare const userOAuthArgs: convex_values93.VObject<{
+declare const userOAuthArgs: convex_values82.VObject<{
   accountExtend?: any;
   provider: string;
-  providerAccountId: string;
   signature: string;
+  providerAccountId: string;
   profile: any;
 }, {
-  provider: convex_values93.VString<string, "required">;
-  providerAccountId: convex_values93.VString<string, "required">;
-  profile: convex_values93.VAny<any, "required", string>;
-  signature: convex_values93.VString<string, "required">;
-  accountExtend: convex_values93.VAny<any, "optional", string>;
-}, "required", "provider" | "providerAccountId" | "signature" | "profile" | `profile.${string}` | "accountExtend" | `accountExtend.${string}`>;
+  provider: convex_values82.VString<string, "required">;
+  providerAccountId: convex_values82.VString<string, "required">;
+  profile: convex_values82.VAny<any, "required", string>;
+  signature: convex_values82.VString<string, "required">;
+  accountExtend: convex_values82.VAny<any, "optional", string>;
+}, "required", "provider" | "signature" | "providerAccountId" | "profile" | "accountExtend" | `profile.${string}` | `accountExtend.${string}`>;
 type ReturnType = string;
 declare function userOAuthImpl(ctx: MutationCtx, args: Infer<typeof userOAuthArgs>, getProviderOrThrow: GetProviderOrThrowFunc, config: Config): Fx<ReturnType, AuthError>;
 declare const callUserOAuth: <DataModel extends GenericDataModel>(ctx: GenericActionCtx<DataModel>, args: Infer<typeof userOAuthArgs>) => Promise<ReturnType>;