@robelest/convex-auth 0.0.4-preview.25 → 0.0.4-preview.28

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (666) hide show
  1. package/README.md +43 -36
  2. package/dist/bin.js +5765 -4880
  3. package/dist/browser/index.d.ts +30 -0
  4. package/dist/browser/index.js +93 -0
  5. package/dist/browser/locks.js +11 -0
  6. package/dist/browser/navigation.js +14 -0
  7. package/dist/{factors → browser}/passkey.js +23 -32
  8. package/dist/browser/runtime.js +92 -0
  9. package/dist/client/core/types.d.ts +452 -5
  10. package/dist/client/core/types.js +17 -0
  11. package/dist/client/errors.js +19 -0
  12. package/dist/client/factors/device.js +94 -0
  13. package/dist/{factors → client/factors}/totp.js +12 -4
  14. package/dist/client/index.d.ts +47 -1
  15. package/dist/client/index.js +269 -232
  16. package/dist/client/runtime/mutex.js +24 -0
  17. package/dist/client/runtime/proxy.js +30 -0
  18. package/dist/client/runtime/storage.js +45 -0
  19. package/dist/client/services/adapters.js +7 -0
  20. package/dist/client/services/http.js +6 -0
  21. package/dist/client/services/resolve.js +13 -0
  22. package/dist/client/services/runtime.js +6 -0
  23. package/dist/component/_generated/component.d.ts +1355 -1399
  24. package/dist/component/convex.config.d.ts +2 -2
  25. package/dist/component/index.d.ts +4 -26
  26. package/dist/component/index.js +1 -1
  27. package/dist/component/model.d.ts +26 -112
  28. package/dist/component/model.js +76 -54
  29. package/dist/component/modules.js +38 -0
  30. package/dist/component/public/factors/devices.js +1 -1
  31. package/dist/component/public/factors/passkeys.js +1 -1
  32. package/dist/component/public/factors/totp.js +1 -1
  33. package/dist/component/public/groups/core.js +2 -2
  34. package/dist/component/public/groups/invites.js +1 -1
  35. package/dist/component/public/groups/members.js +1 -1
  36. package/dist/component/public/identity/accounts.js +1 -1
  37. package/dist/component/public/identity/codes.js +1 -1
  38. package/dist/component/public/identity/sessions.js +39 -2
  39. package/dist/component/public/identity/tokens.js +82 -4
  40. package/dist/component/public/identity/users.js +1 -1
  41. package/dist/component/public/identity/verifiers.js +10 -4
  42. package/dist/component/public/security/keys.js +1 -1
  43. package/dist/component/public/security/limits.js +1 -1
  44. package/dist/component/public/{enterprise → sso}/audit.js +26 -26
  45. package/dist/component/public/sso/core.js +263 -0
  46. package/dist/component/public/sso/domains.js +280 -0
  47. package/dist/component/public/{enterprise → sso}/scim.js +87 -87
  48. package/dist/component/public/sso/secrets.js +125 -0
  49. package/dist/component/public/{enterprise → sso}/webhooks.js +59 -59
  50. package/dist/component/public.js +9 -9
  51. package/dist/component/schema.d.ts +472 -393
  52. package/dist/component/schema.js +36 -35
  53. package/dist/core/index.d.ts +380 -0
  54. package/dist/core/index.js +83 -0
  55. package/dist/otel.d.ts +69 -0
  56. package/dist/otel.js +82 -0
  57. package/dist/providers/anonymous.d.ts +15 -34
  58. package/dist/providers/anonymous.js +27 -35
  59. package/dist/providers/apple.d.ts +59 -0
  60. package/dist/providers/apple.js +58 -0
  61. package/dist/providers/credentials.d.ts +18 -34
  62. package/dist/providers/credentials.js +16 -27
  63. package/dist/providers/custom.d.ts +94 -0
  64. package/dist/providers/custom.js +119 -0
  65. package/dist/providers/device.d.ts +15 -49
  66. package/dist/providers/device.js +17 -34
  67. package/dist/providers/email.d.ts +21 -38
  68. package/dist/providers/email.js +36 -55
  69. package/dist/providers/github.d.ts +54 -0
  70. package/dist/providers/github.js +75 -0
  71. package/dist/providers/google.d.ts +54 -0
  72. package/dist/providers/google.js +61 -0
  73. package/dist/providers/index.d.ts +16 -12
  74. package/dist/providers/index.js +15 -11
  75. package/dist/providers/microsoft.d.ts +57 -0
  76. package/dist/providers/microsoft.js +101 -0
  77. package/dist/providers/passkey.d.ts +19 -35
  78. package/dist/providers/passkey.js +20 -30
  79. package/dist/providers/password.d.ts +17 -18
  80. package/dist/providers/password.js +121 -143
  81. package/dist/providers/phone.d.ts +13 -28
  82. package/dist/providers/phone.js +21 -46
  83. package/dist/providers/sso.d.ts +16 -36
  84. package/dist/providers/sso.js +21 -22
  85. package/dist/providers/totp.d.ts +13 -29
  86. package/dist/providers/totp.js +17 -27
  87. package/dist/server/auth-context.d.ts +204 -0
  88. package/dist/server/auth-context.js +76 -0
  89. package/dist/server/auth.d.ts +99 -244
  90. package/dist/server/auth.js +56 -152
  91. package/dist/server/componentContext.d.ts +12 -0
  92. package/dist/server/componentContext.js +1 -0
  93. package/dist/server/config.js +6 -67
  94. package/dist/server/constants.js +6 -0
  95. package/dist/server/contract.d.ts +105 -0
  96. package/dist/server/contract.js +43 -0
  97. package/dist/server/cookies.js +3 -2
  98. package/dist/server/core.js +31 -36
  99. package/dist/server/crypto.js +34 -44
  100. package/dist/server/db.js +6 -1
  101. package/dist/server/device.js +96 -130
  102. package/dist/server/env.js +48 -0
  103. package/dist/server/errors.js +20 -0
  104. package/dist/server/http.d.ts +15 -59
  105. package/dist/server/http.js +136 -120
  106. package/dist/server/identity.js +2 -2
  107. package/dist/server/index.d.ts +5 -4
  108. package/dist/server/index.js +3 -3
  109. package/dist/server/keys.js +10 -1
  110. package/dist/server/limits.js +26 -26
  111. package/dist/server/log.js +28 -0
  112. package/dist/server/mounts.d.ts +1107 -296
  113. package/dist/server/mounts.js +315 -196
  114. package/dist/server/mutations/account.js +11 -14
  115. package/dist/server/mutations/code.js +6 -5
  116. package/dist/server/mutations/invalidate.js +9 -11
  117. package/dist/server/mutations/oauth.js +112 -73
  118. package/dist/server/mutations/refresh.js +47 -97
  119. package/dist/server/mutations/register.js +37 -35
  120. package/dist/server/mutations/retrieve.js +16 -16
  121. package/dist/server/mutations/signature.js +15 -18
  122. package/dist/server/mutations/signin.js +10 -5
  123. package/dist/server/mutations/signout.js +11 -14
  124. package/dist/server/mutations/store.js +25 -18
  125. package/dist/server/mutations/verifier.js +11 -8
  126. package/dist/server/mutations/verify.js +53 -41
  127. package/dist/server/oauth/factory.js +44 -0
  128. package/dist/server/oauth/index.js +12 -0
  129. package/dist/server/oauth/runtime.js +248 -0
  130. package/dist/server/passkey.js +331 -365
  131. package/dist/server/payloads.d.ts +16 -0
  132. package/dist/server/payloads.js +30 -0
  133. package/dist/server/{ssr.d.ts → prefetch.d.ts} +2 -2
  134. package/dist/server/prefetch.js +635 -0
  135. package/dist/server/random.js +19 -0
  136. package/dist/server/redirects.js +10 -5
  137. package/dist/server/refresh.js +14 -86
  138. package/dist/server/runtime.d.ts +531 -31
  139. package/dist/server/runtime.js +106 -267
  140. package/dist/server/secret.js +44 -0
  141. package/dist/server/services/config.js +10 -0
  142. package/dist/server/services/group.js +211 -0
  143. package/dist/server/services/logger.js +8 -0
  144. package/dist/server/services/providers.js +22 -0
  145. package/dist/server/services/refresh.js +8 -0
  146. package/dist/server/services/resolve.js +27 -0
  147. package/dist/server/services/signin.js +8 -0
  148. package/dist/server/sessions.js +35 -34
  149. package/dist/server/signin.js +229 -140
  150. package/dist/server/{enterprise → sso}/config.js +10 -3
  151. package/dist/server/sso/domain.d.ts +614 -0
  152. package/dist/server/sso/domain.js +1175 -0
  153. package/dist/server/sso/http.js +1060 -0
  154. package/dist/server/sso/oidc.js +324 -0
  155. package/dist/server/sso/policies.js +59 -0
  156. package/dist/server/sso/policy.js +139 -0
  157. package/dist/server/sso/profile.js +22 -0
  158. package/dist/server/sso/provision.js +179 -0
  159. package/dist/{component/server/enterprise → server/sso}/saml.js +142 -56
  160. package/dist/{component/server/enterprise → server/sso}/scim.js +13 -7
  161. package/dist/server/sso/shared.js +74 -0
  162. package/dist/server/sso/validators.js +88 -0
  163. package/dist/server/sso/webhook.js +94 -0
  164. package/dist/server/tokens.js +16 -4
  165. package/dist/server/totp.js +155 -164
  166. package/dist/server/types.d.ts +306 -296
  167. package/dist/server/types.js +1 -30
  168. package/dist/server/url.js +32 -0
  169. package/dist/server/users.js +74 -40
  170. package/dist/server/utils/cache.js +51 -0
  171. package/dist/server/utils/dispatch.js +36 -0
  172. package/dist/server/utils/retry.js +24 -0
  173. package/dist/server/utils/span.js +32 -0
  174. package/dist/shared/errors.js +19 -0
  175. package/dist/shared/log.js +45 -0
  176. package/{src/test.ts → dist/test.d.ts} +21 -22
  177. package/dist/test.js +51 -0
  178. package/package.json +70 -42
  179. package/dist/authorization/index.d.ts.map +0 -1
  180. package/dist/authorization/index.js.map +0 -1
  181. package/dist/client/core/types.d.ts.map +0 -1
  182. package/dist/client/index.d.ts.map +0 -1
  183. package/dist/client/index.js.map +0 -1
  184. package/dist/component/_generated/api.d.ts +0 -75
  185. package/dist/component/_generated/api.d.ts.map +0 -1
  186. package/dist/component/_generated/api.js.map +0 -1
  187. package/dist/component/_generated/component.d.ts.map +0 -1
  188. package/dist/component/_generated/dataModel.d.ts +0 -42
  189. package/dist/component/_generated/dataModel.d.ts.map +0 -1
  190. package/dist/component/_generated/server.d.ts +0 -117
  191. package/dist/component/_generated/server.d.ts.map +0 -1
  192. package/dist/component/_generated/server.js.map +0 -1
  193. package/dist/component/_virtual/rolldown_runtime.js +0 -18
  194. package/dist/component/client/core/types.d.ts +0 -2
  195. package/dist/component/client/index.d.ts +0 -1
  196. package/dist/component/convex.config.d.ts.map +0 -1
  197. package/dist/component/convex.config.js.map +0 -1
  198. package/dist/component/functions.d.ts +0 -25
  199. package/dist/component/functions.d.ts.map +0 -1
  200. package/dist/component/functions.js.map +0 -1
  201. package/dist/component/index.d.ts.map +0 -1
  202. package/dist/component/model.d.ts.map +0 -1
  203. package/dist/component/model.js.map +0 -1
  204. package/dist/component/providers/anonymous.d.ts +0 -54
  205. package/dist/component/providers/anonymous.d.ts.map +0 -1
  206. package/dist/component/providers/credentials.d.ts +0 -38
  207. package/dist/component/providers/credentials.d.ts.map +0 -1
  208. package/dist/component/providers/device.d.ts +0 -67
  209. package/dist/component/providers/device.d.ts.map +0 -1
  210. package/dist/component/providers/email.d.ts +0 -62
  211. package/dist/component/providers/email.d.ts.map +0 -1
  212. package/dist/component/providers/oauth.d.ts +0 -25
  213. package/dist/component/providers/oauth.d.ts.map +0 -1
  214. package/dist/component/providers/oauth.js +0 -13
  215. package/dist/component/providers/oauth.js.map +0 -1
  216. package/dist/component/providers/passkey.d.ts +0 -57
  217. package/dist/component/providers/passkey.d.ts.map +0 -1
  218. package/dist/component/providers/password.d.ts +0 -88
  219. package/dist/component/providers/password.d.ts.map +0 -1
  220. package/dist/component/providers/phone.d.ts +0 -48
  221. package/dist/component/providers/phone.d.ts.map +0 -1
  222. package/dist/component/providers/sso.d.ts +0 -50
  223. package/dist/component/providers/sso.d.ts.map +0 -1
  224. package/dist/component/providers/totp.d.ts +0 -45
  225. package/dist/component/providers/totp.d.ts.map +0 -1
  226. package/dist/component/public/enterprise/audit.d.ts +0 -73
  227. package/dist/component/public/enterprise/audit.d.ts.map +0 -1
  228. package/dist/component/public/enterprise/audit.js.map +0 -1
  229. package/dist/component/public/enterprise/core.d.ts +0 -176
  230. package/dist/component/public/enterprise/core.d.ts.map +0 -1
  231. package/dist/component/public/enterprise/core.js +0 -292
  232. package/dist/component/public/enterprise/core.js.map +0 -1
  233. package/dist/component/public/enterprise/domains.d.ts +0 -174
  234. package/dist/component/public/enterprise/domains.d.ts.map +0 -1
  235. package/dist/component/public/enterprise/domains.js +0 -271
  236. package/dist/component/public/enterprise/domains.js.map +0 -1
  237. package/dist/component/public/enterprise/scim.d.ts +0 -245
  238. package/dist/component/public/enterprise/scim.d.ts.map +0 -1
  239. package/dist/component/public/enterprise/scim.js.map +0 -1
  240. package/dist/component/public/enterprise/secrets.d.ts +0 -78
  241. package/dist/component/public/enterprise/secrets.d.ts.map +0 -1
  242. package/dist/component/public/enterprise/secrets.js +0 -118
  243. package/dist/component/public/enterprise/secrets.js.map +0 -1
  244. package/dist/component/public/enterprise/webhooks.d.ts +0 -211
  245. package/dist/component/public/enterprise/webhooks.d.ts.map +0 -1
  246. package/dist/component/public/enterprise/webhooks.js.map +0 -1
  247. package/dist/component/public/factors/devices.d.ts +0 -157
  248. package/dist/component/public/factors/devices.d.ts.map +0 -1
  249. package/dist/component/public/factors/devices.js.map +0 -1
  250. package/dist/component/public/factors/passkeys.d.ts +0 -175
  251. package/dist/component/public/factors/passkeys.d.ts.map +0 -1
  252. package/dist/component/public/factors/passkeys.js.map +0 -1
  253. package/dist/component/public/factors/totp.d.ts +0 -189
  254. package/dist/component/public/factors/totp.d.ts.map +0 -1
  255. package/dist/component/public/factors/totp.js.map +0 -1
  256. package/dist/component/public/groups/core.d.ts +0 -137
  257. package/dist/component/public/groups/core.d.ts.map +0 -1
  258. package/dist/component/public/groups/core.js.map +0 -1
  259. package/dist/component/public/groups/invites.d.ts +0 -217
  260. package/dist/component/public/groups/invites.d.ts.map +0 -1
  261. package/dist/component/public/groups/invites.js.map +0 -1
  262. package/dist/component/public/groups/members.d.ts +0 -204
  263. package/dist/component/public/groups/members.d.ts.map +0 -1
  264. package/dist/component/public/groups/members.js.map +0 -1
  265. package/dist/component/public/identity/accounts.d.ts +0 -147
  266. package/dist/component/public/identity/accounts.d.ts.map +0 -1
  267. package/dist/component/public/identity/accounts.js.map +0 -1
  268. package/dist/component/public/identity/codes.d.ts +0 -104
  269. package/dist/component/public/identity/codes.d.ts.map +0 -1
  270. package/dist/component/public/identity/codes.js.map +0 -1
  271. package/dist/component/public/identity/sessions.d.ts +0 -128
  272. package/dist/component/public/identity/sessions.d.ts.map +0 -1
  273. package/dist/component/public/identity/sessions.js.map +0 -1
  274. package/dist/component/public/identity/tokens.d.ts +0 -169
  275. package/dist/component/public/identity/tokens.d.ts.map +0 -1
  276. package/dist/component/public/identity/tokens.js.map +0 -1
  277. package/dist/component/public/identity/users.d.ts +0 -212
  278. package/dist/component/public/identity/users.d.ts.map +0 -1
  279. package/dist/component/public/identity/users.js.map +0 -1
  280. package/dist/component/public/identity/verifiers.d.ts +0 -116
  281. package/dist/component/public/identity/verifiers.d.ts.map +0 -1
  282. package/dist/component/public/identity/verifiers.js.map +0 -1
  283. package/dist/component/public/security/keys.d.ts +0 -209
  284. package/dist/component/public/security/keys.d.ts.map +0 -1
  285. package/dist/component/public/security/keys.js.map +0 -1
  286. package/dist/component/public/security/limits.d.ts +0 -114
  287. package/dist/component/public/security/limits.d.ts.map +0 -1
  288. package/dist/component/public/security/limits.js.map +0 -1
  289. package/dist/component/public.d.ts +0 -28
  290. package/dist/component/public.d.ts.map +0 -1
  291. package/dist/component/schema.d.ts.map +0 -1
  292. package/dist/component/schema.js.map +0 -1
  293. package/dist/component/server/auth.d.ts +0 -447
  294. package/dist/component/server/auth.d.ts.map +0 -1
  295. package/dist/component/server/auth.js +0 -254
  296. package/dist/component/server/auth.js.map +0 -1
  297. package/dist/component/server/config.js +0 -121
  298. package/dist/component/server/config.js.map +0 -1
  299. package/dist/component/server/context.js +0 -53
  300. package/dist/component/server/context.js.map +0 -1
  301. package/dist/component/server/cookies.js +0 -47
  302. package/dist/component/server/cookies.js.map +0 -1
  303. package/dist/component/server/core.js +0 -576
  304. package/dist/component/server/core.js.map +0 -1
  305. package/dist/component/server/crypto.js +0 -56
  306. package/dist/component/server/crypto.js.map +0 -1
  307. package/dist/component/server/db.js +0 -87
  308. package/dist/component/server/db.js.map +0 -1
  309. package/dist/component/server/device.js +0 -152
  310. package/dist/component/server/device.js.map +0 -1
  311. package/dist/component/server/enterprise/config.js +0 -46
  312. package/dist/component/server/enterprise/config.js.map +0 -1
  313. package/dist/component/server/enterprise/domain.js +0 -974
  314. package/dist/component/server/enterprise/domain.js.map +0 -1
  315. package/dist/component/server/enterprise/http.js +0 -787
  316. package/dist/component/server/enterprise/http.js.map +0 -1
  317. package/dist/component/server/enterprise/oidc.js +0 -248
  318. package/dist/component/server/enterprise/oidc.js.map +0 -1
  319. package/dist/component/server/enterprise/policy.js +0 -85
  320. package/dist/component/server/enterprise/policy.js.map +0 -1
  321. package/dist/component/server/enterprise/saml.js.map +0 -1
  322. package/dist/component/server/enterprise/scim.js.map +0 -1
  323. package/dist/component/server/enterprise/shared.js +0 -51
  324. package/dist/component/server/enterprise/shared.js.map +0 -1
  325. package/dist/component/server/http.d.ts +0 -85
  326. package/dist/component/server/http.d.ts.map +0 -1
  327. package/dist/component/server/http.js +0 -351
  328. package/dist/component/server/http.js.map +0 -1
  329. package/dist/component/server/identity.js +0 -16
  330. package/dist/component/server/identity.js.map +0 -1
  331. package/dist/component/server/keys.js +0 -96
  332. package/dist/component/server/keys.js.map +0 -1
  333. package/dist/component/server/limits.js +0 -52
  334. package/dist/component/server/limits.js.map +0 -1
  335. package/dist/component/server/mutations/account.js +0 -46
  336. package/dist/component/server/mutations/account.js.map +0 -1
  337. package/dist/component/server/mutations/code.js +0 -68
  338. package/dist/component/server/mutations/code.js.map +0 -1
  339. package/dist/component/server/mutations/invalidate.js +0 -32
  340. package/dist/component/server/mutations/invalidate.js.map +0 -1
  341. package/dist/component/server/mutations/oauth.js +0 -116
  342. package/dist/component/server/mutations/oauth.js.map +0 -1
  343. package/dist/component/server/mutations/refresh.js +0 -119
  344. package/dist/component/server/mutations/refresh.js.map +0 -1
  345. package/dist/component/server/mutations/register.js +0 -87
  346. package/dist/component/server/mutations/register.js.map +0 -1
  347. package/dist/component/server/mutations/retrieve.js +0 -61
  348. package/dist/component/server/mutations/retrieve.js.map +0 -1
  349. package/dist/component/server/mutations/signature.js +0 -38
  350. package/dist/component/server/mutations/signature.js.map +0 -1
  351. package/dist/component/server/mutations/signin.js +0 -27
  352. package/dist/component/server/mutations/signin.js.map +0 -1
  353. package/dist/component/server/mutations/signout.js +0 -27
  354. package/dist/component/server/mutations/signout.js.map +0 -1
  355. package/dist/component/server/mutations/store/refs.js +0 -15
  356. package/dist/component/server/mutations/store/refs.js.map +0 -1
  357. package/dist/component/server/mutations/store.js +0 -70
  358. package/dist/component/server/mutations/store.js.map +0 -1
  359. package/dist/component/server/mutations/verifier.js +0 -18
  360. package/dist/component/server/mutations/verifier.js.map +0 -1
  361. package/dist/component/server/mutations/verify.js +0 -98
  362. package/dist/component/server/mutations/verify.js.map +0 -1
  363. package/dist/component/server/oauth.js +0 -242
  364. package/dist/component/server/oauth.js.map +0 -1
  365. package/dist/component/server/passkey.js +0 -415
  366. package/dist/component/server/passkey.js.map +0 -1
  367. package/dist/component/server/redirects.js +0 -40
  368. package/dist/component/server/redirects.js.map +0 -1
  369. package/dist/component/server/refresh.js +0 -99
  370. package/dist/component/server/refresh.js.map +0 -1
  371. package/dist/component/server/runtime.d.ts +0 -136
  372. package/dist/component/server/runtime.d.ts.map +0 -1
  373. package/dist/component/server/runtime.js +0 -456
  374. package/dist/component/server/runtime.js.map +0 -1
  375. package/dist/component/server/sessions.js +0 -71
  376. package/dist/component/server/sessions.js.map +0 -1
  377. package/dist/component/server/signin.js +0 -225
  378. package/dist/component/server/signin.js.map +0 -1
  379. package/dist/component/server/tokens.js +0 -17
  380. package/dist/component/server/tokens.js.map +0 -1
  381. package/dist/component/server/totp.js +0 -208
  382. package/dist/component/server/totp.js.map +0 -1
  383. package/dist/component/server/types.d.ts +0 -949
  384. package/dist/component/server/types.d.ts.map +0 -1
  385. package/dist/component/server/types.js +0 -79
  386. package/dist/component/server/types.js.map +0 -1
  387. package/dist/component/server/users.js +0 -123
  388. package/dist/component/server/users.js.map +0 -1
  389. package/dist/component/server/utils.js +0 -140
  390. package/dist/component/server/utils.js.map +0 -1
  391. package/dist/core/types.d.ts +0 -361
  392. package/dist/core/types.d.ts.map +0 -1
  393. package/dist/factors/device.js +0 -104
  394. package/dist/factors/device.js.map +0 -1
  395. package/dist/factors/passkey.js.map +0 -1
  396. package/dist/factors/totp.js.map +0 -1
  397. package/dist/providers/anonymous.d.ts.map +0 -1
  398. package/dist/providers/anonymous.js.map +0 -1
  399. package/dist/providers/credentials.d.ts.map +0 -1
  400. package/dist/providers/credentials.js.map +0 -1
  401. package/dist/providers/device.d.ts.map +0 -1
  402. package/dist/providers/device.js.map +0 -1
  403. package/dist/providers/email.d.ts.map +0 -1
  404. package/dist/providers/email.js.map +0 -1
  405. package/dist/providers/oauth.d.ts +0 -69
  406. package/dist/providers/oauth.d.ts.map +0 -1
  407. package/dist/providers/oauth.js +0 -43
  408. package/dist/providers/oauth.js.map +0 -1
  409. package/dist/providers/passkey.d.ts.map +0 -1
  410. package/dist/providers/passkey.js.map +0 -1
  411. package/dist/providers/password.d.ts.map +0 -1
  412. package/dist/providers/password.js.map +0 -1
  413. package/dist/providers/phone.d.ts.map +0 -1
  414. package/dist/providers/phone.js.map +0 -1
  415. package/dist/providers/sso.d.ts.map +0 -1
  416. package/dist/providers/sso.js.map +0 -1
  417. package/dist/providers/totp.d.ts.map +0 -1
  418. package/dist/providers/totp.js.map +0 -1
  419. package/dist/runtime/browser.js +0 -68
  420. package/dist/runtime/browser.js.map +0 -1
  421. package/dist/runtime/invite.js.map +0 -1
  422. package/dist/runtime/proxy.js +0 -70
  423. package/dist/runtime/proxy.js.map +0 -1
  424. package/dist/runtime/storage.js +0 -37
  425. package/dist/runtime/storage.js.map +0 -1
  426. package/dist/server/auth.d.ts.map +0 -1
  427. package/dist/server/auth.js.map +0 -1
  428. package/dist/server/config.d.ts +0 -1
  429. package/dist/server/config.js.map +0 -1
  430. package/dist/server/context.d.ts +0 -1
  431. package/dist/server/context.js.map +0 -1
  432. package/dist/server/cookies.d.ts +0 -1
  433. package/dist/server/cookies.js.map +0 -1
  434. package/dist/server/core.d.ts +0 -1315
  435. package/dist/server/core.d.ts.map +0 -1
  436. package/dist/server/core.js.map +0 -1
  437. package/dist/server/crypto.d.ts +0 -8
  438. package/dist/server/crypto.d.ts.map +0 -1
  439. package/dist/server/crypto.js.map +0 -1
  440. package/dist/server/db.d.ts +0 -1
  441. package/dist/server/db.js.map +0 -1
  442. package/dist/server/device.d.ts +0 -1
  443. package/dist/server/device.js.map +0 -1
  444. package/dist/server/enterprise/config.d.ts +0 -1
  445. package/dist/server/enterprise/config.js.map +0 -1
  446. package/dist/server/enterprise/domain.d.ts +0 -401
  447. package/dist/server/enterprise/domain.d.ts.map +0 -1
  448. package/dist/server/enterprise/domain.js +0 -974
  449. package/dist/server/enterprise/domain.js.map +0 -1
  450. package/dist/server/enterprise/http.d.ts +0 -26
  451. package/dist/server/enterprise/http.d.ts.map +0 -1
  452. package/dist/server/enterprise/http.js +0 -787
  453. package/dist/server/enterprise/http.js.map +0 -1
  454. package/dist/server/enterprise/oidc.d.ts +0 -1
  455. package/dist/server/enterprise/oidc.js +0 -248
  456. package/dist/server/enterprise/oidc.js.map +0 -1
  457. package/dist/server/enterprise/policy.d.ts +0 -1
  458. package/dist/server/enterprise/policy.js +0 -85
  459. package/dist/server/enterprise/policy.js.map +0 -1
  460. package/dist/server/enterprise/saml.d.ts +0 -1
  461. package/dist/server/enterprise/saml.js +0 -338
  462. package/dist/server/enterprise/saml.js.map +0 -1
  463. package/dist/server/enterprise/scim.d.ts +0 -1
  464. package/dist/server/enterprise/scim.js +0 -97
  465. package/dist/server/enterprise/scim.js.map +0 -1
  466. package/dist/server/enterprise/shared.d.ts +0 -5
  467. package/dist/server/enterprise/shared.d.ts.map +0 -1
  468. package/dist/server/enterprise/shared.js +0 -51
  469. package/dist/server/enterprise/shared.js.map +0 -1
  470. package/dist/server/enterprise/validators.d.ts +0 -1
  471. package/dist/server/enterprise/validators.js +0 -60
  472. package/dist/server/enterprise/validators.js.map +0 -1
  473. package/dist/server/http.d.ts.map +0 -1
  474. package/dist/server/http.js.map +0 -1
  475. package/dist/server/identity.d.ts +0 -1
  476. package/dist/server/identity.js.map +0 -1
  477. package/dist/server/keys.d.ts +0 -1
  478. package/dist/server/keys.js.map +0 -1
  479. package/dist/server/limits.d.ts +0 -1
  480. package/dist/server/limits.js.map +0 -1
  481. package/dist/server/mounts.d.ts.map +0 -1
  482. package/dist/server/mounts.js.map +0 -1
  483. package/dist/server/mutations/account.d.ts +0 -29
  484. package/dist/server/mutations/account.d.ts.map +0 -1
  485. package/dist/server/mutations/account.js.map +0 -1
  486. package/dist/server/mutations/code.d.ts +0 -30
  487. package/dist/server/mutations/code.d.ts.map +0 -1
  488. package/dist/server/mutations/code.js.map +0 -1
  489. package/dist/server/mutations/index.d.ts +0 -14
  490. package/dist/server/mutations/invalidate.d.ts +0 -20
  491. package/dist/server/mutations/invalidate.d.ts.map +0 -1
  492. package/dist/server/mutations/invalidate.js.map +0 -1
  493. package/dist/server/mutations/oauth.d.ts +0 -30
  494. package/dist/server/mutations/oauth.d.ts.map +0 -1
  495. package/dist/server/mutations/oauth.js.map +0 -1
  496. package/dist/server/mutations/refresh.d.ts +0 -21
  497. package/dist/server/mutations/refresh.d.ts.map +0 -1
  498. package/dist/server/mutations/refresh.js.map +0 -1
  499. package/dist/server/mutations/register.d.ts +0 -38
  500. package/dist/server/mutations/register.d.ts.map +0 -1
  501. package/dist/server/mutations/register.js.map +0 -1
  502. package/dist/server/mutations/retrieve.d.ts +0 -33
  503. package/dist/server/mutations/retrieve.d.ts.map +0 -1
  504. package/dist/server/mutations/retrieve.js.map +0 -1
  505. package/dist/server/mutations/signature.d.ts +0 -21
  506. package/dist/server/mutations/signature.d.ts.map +0 -1
  507. package/dist/server/mutations/signature.js.map +0 -1
  508. package/dist/server/mutations/signin.d.ts +0 -22
  509. package/dist/server/mutations/signin.d.ts.map +0 -1
  510. package/dist/server/mutations/signin.js.map +0 -1
  511. package/dist/server/mutations/signout.d.ts +0 -16
  512. package/dist/server/mutations/signout.d.ts.map +0 -1
  513. package/dist/server/mutations/signout.js.map +0 -1
  514. package/dist/server/mutations/store/refs.d.ts +0 -12
  515. package/dist/server/mutations/store/refs.d.ts.map +0 -1
  516. package/dist/server/mutations/store/refs.js.map +0 -1
  517. package/dist/server/mutations/store.d.ts +0 -306
  518. package/dist/server/mutations/store.d.ts.map +0 -1
  519. package/dist/server/mutations/store.js.map +0 -1
  520. package/dist/server/mutations/verifier.d.ts +0 -13
  521. package/dist/server/mutations/verifier.d.ts.map +0 -1
  522. package/dist/server/mutations/verifier.js.map +0 -1
  523. package/dist/server/mutations/verify.d.ts +0 -26
  524. package/dist/server/mutations/verify.d.ts.map +0 -1
  525. package/dist/server/mutations/verify.js.map +0 -1
  526. package/dist/server/oauth.d.ts +0 -1
  527. package/dist/server/oauth.js +0 -242
  528. package/dist/server/oauth.js.map +0 -1
  529. package/dist/server/passkey.d.ts +0 -27
  530. package/dist/server/passkey.d.ts.map +0 -1
  531. package/dist/server/passkey.js.map +0 -1
  532. package/dist/server/redirects.d.ts +0 -1
  533. package/dist/server/redirects.js.map +0 -1
  534. package/dist/server/refresh.d.ts +0 -1
  535. package/dist/server/refresh.js.map +0 -1
  536. package/dist/server/runtime.d.ts.map +0 -1
  537. package/dist/server/runtime.js.map +0 -1
  538. package/dist/server/sessions.d.ts +0 -1
  539. package/dist/server/sessions.js.map +0 -1
  540. package/dist/server/signin.d.ts +0 -1
  541. package/dist/server/signin.js.map +0 -1
  542. package/dist/server/ssr.d.ts.map +0 -1
  543. package/dist/server/ssr.js +0 -777
  544. package/dist/server/ssr.js.map +0 -1
  545. package/dist/server/templates.d.ts +0 -1
  546. package/dist/server/templates.js.map +0 -1
  547. package/dist/server/tokens.d.ts +0 -1
  548. package/dist/server/tokens.js.map +0 -1
  549. package/dist/server/totp.d.ts +0 -1
  550. package/dist/server/totp.js.map +0 -1
  551. package/dist/server/types.d.ts.map +0 -1
  552. package/dist/server/types.js.map +0 -1
  553. package/dist/server/users.d.ts +0 -1
  554. package/dist/server/users.js.map +0 -1
  555. package/dist/server/utils.d.ts +0 -1
  556. package/dist/server/utils.js +0 -140
  557. package/dist/server/utils.js.map +0 -1
  558. package/src/authorization/index.ts +0 -83
  559. package/src/cli/bin.ts +0 -5
  560. package/src/cli/command.ts +0 -70
  561. package/src/cli/index.ts +0 -1112
  562. package/src/cli/keys.ts +0 -23
  563. package/src/client/core/types.ts +0 -437
  564. package/src/client/factors/device.ts +0 -158
  565. package/src/client/factors/passkey.ts +0 -279
  566. package/src/client/factors/totp.ts +0 -150
  567. package/src/client/index.ts +0 -1124
  568. package/src/client/runtime/browser.ts +0 -112
  569. package/src/client/runtime/invite.ts +0 -63
  570. package/src/client/runtime/proxy.ts +0 -111
  571. package/src/client/runtime/storage.ts +0 -79
  572. package/src/component/_generated/api.ts +0 -96
  573. package/src/component/_generated/component.ts +0 -3774
  574. package/src/component/_generated/dataModel.ts +0 -60
  575. package/src/component/_generated/server.ts +0 -156
  576. package/src/component/convex.config.ts +0 -5
  577. package/src/component/functions.ts +0 -104
  578. package/src/component/index.ts +0 -42
  579. package/src/component/model.ts +0 -449
  580. package/src/component/public/enterprise/audit.ts +0 -125
  581. package/src/component/public/enterprise/core.ts +0 -355
  582. package/src/component/public/enterprise/domains.ts +0 -327
  583. package/src/component/public/enterprise/scim.ts +0 -397
  584. package/src/component/public/enterprise/secrets.ts +0 -133
  585. package/src/component/public/enterprise/webhooks.ts +0 -307
  586. package/src/component/public/factors/devices.ts +0 -224
  587. package/src/component/public/factors/passkeys.ts +0 -243
  588. package/src/component/public/factors/totp.ts +0 -259
  589. package/src/component/public/groups/core.ts +0 -481
  590. package/src/component/public/groups/invites.ts +0 -608
  591. package/src/component/public/groups/members.ts +0 -410
  592. package/src/component/public/identity/accounts.ts +0 -207
  593. package/src/component/public/identity/codes.ts +0 -149
  594. package/src/component/public/identity/sessions.ts +0 -210
  595. package/src/component/public/identity/tokens.ts +0 -251
  596. package/src/component/public/identity/users.ts +0 -355
  597. package/src/component/public/identity/verifiers.ts +0 -158
  598. package/src/component/public/security/keys.ts +0 -366
  599. package/src/component/public/security/limits.ts +0 -174
  600. package/src/component/public.ts +0 -27
  601. package/src/component/schema.ts +0 -505
  602. package/src/providers/anonymous.ts +0 -99
  603. package/src/providers/credentials.ts +0 -102
  604. package/src/providers/device.ts +0 -87
  605. package/src/providers/email.ts +0 -99
  606. package/src/providers/index.ts +0 -31
  607. package/src/providers/oauth.ts +0 -117
  608. package/src/providers/passkey.ts +0 -77
  609. package/src/providers/password.ts +0 -441
  610. package/src/providers/phone.ts +0 -93
  611. package/src/providers/sso.ts +0 -54
  612. package/src/providers/totp.ts +0 -62
  613. package/src/samlify.d.ts +0 -53
  614. package/src/server/auth.ts +0 -949
  615. package/src/server/config.ts +0 -200
  616. package/src/server/context.ts +0 -90
  617. package/src/server/cookies.ts +0 -49
  618. package/src/server/core.ts +0 -2004
  619. package/src/server/crypto.ts +0 -90
  620. package/src/server/db.ts +0 -203
  621. package/src/server/device.ts +0 -254
  622. package/src/server/enterprise/config.ts +0 -51
  623. package/src/server/enterprise/domain.ts +0 -1739
  624. package/src/server/enterprise/http.ts +0 -1331
  625. package/src/server/enterprise/oidc.ts +0 -500
  626. package/src/server/enterprise/policy.ts +0 -128
  627. package/src/server/enterprise/saml.ts +0 -578
  628. package/src/server/enterprise/scim.ts +0 -135
  629. package/src/server/enterprise/shared.ts +0 -134
  630. package/src/server/enterprise/validators.ts +0 -93
  631. package/src/server/http.ts +0 -790
  632. package/src/server/identity.ts +0 -18
  633. package/src/server/index.ts +0 -40
  634. package/src/server/keys.ts +0 -158
  635. package/src/server/limits.ts +0 -107
  636. package/src/server/mounts.ts +0 -924
  637. package/src/server/mutations/account.ts +0 -62
  638. package/src/server/mutations/code.ts +0 -119
  639. package/src/server/mutations/index.ts +0 -13
  640. package/src/server/mutations/invalidate.ts +0 -50
  641. package/src/server/mutations/oauth.ts +0 -243
  642. package/src/server/mutations/refresh.ts +0 -299
  643. package/src/server/mutations/register.ts +0 -155
  644. package/src/server/mutations/retrieve.ts +0 -109
  645. package/src/server/mutations/signature.ts +0 -57
  646. package/src/server/mutations/signin.ts +0 -54
  647. package/src/server/mutations/signout.ts +0 -43
  648. package/src/server/mutations/store/refs.ts +0 -10
  649. package/src/server/mutations/store.ts +0 -123
  650. package/src/server/mutations/verifier.ts +0 -34
  651. package/src/server/mutations/verify.ts +0 -200
  652. package/src/server/oauth.ts +0 -418
  653. package/src/server/passkey.ts +0 -838
  654. package/src/server/redirects.ts +0 -59
  655. package/src/server/refresh.ts +0 -218
  656. package/src/server/runtime.ts +0 -918
  657. package/src/server/sessions.ts +0 -132
  658. package/src/server/signin.ts +0 -445
  659. package/src/server/ssr.ts +0 -1747
  660. package/src/server/templates.ts +0 -82
  661. package/src/server/tokens.ts +0 -35
  662. package/src/server/totp.ts +0 -399
  663. package/src/server/types.ts +0 -1942
  664. package/src/server/users.ts +0 -291
  665. package/src/server/utils.ts +0 -220
  666. /package/dist/{runtime → client/runtime}/invite.js +0 -0
@@ -1,13 +1,12 @@
1
- import { Credentials } from "./credentials.js";
1
+ import { credentials } from "./credentials.js";
2
2
  import { scryptAsync } from "@noble/hashes/scrypt.js";
3
3
  import { bytesToHex } from "@noble/hashes/utils.js";
4
- import { Fx } from "@robelest/fx";
5
4
 
6
5
  //#region src/providers/password.ts
7
6
  /**
8
- * Configure {@link Password} provider for email/password authentication.
7
+ * Configure the password provider for email/password authentication.
9
8
  *
10
- * The `Password` provider supports the following flows, determined
9
+ * The password provider supports the following flows, determined
11
10
  * by the `flow` parameter:
12
11
  *
13
12
  * - `"signUp"`: Create a new account with a password.
@@ -18,9 +17,9 @@ import { Fx } from "@robelest/fx";
18
17
  * included in params, verify an OTP.
19
18
  *
20
19
  * ```ts
21
- * import { Password } from "@robelest/convex-auth/providers";
20
+ * import { password } from "@robelest/convex-auth/providers";
22
21
  *
23
- * new Password()
22
+ * password()
24
23
  * ```
25
24
  *
26
25
  * @module
@@ -54,148 +53,127 @@ function decodePasswordFlow(flow) {
54
53
  *
55
54
  * @example
56
55
  * ```ts
57
- * import { Password } from "@robelest/convex-auth/providers";
56
+ * import { password } from "@robelest/convex-auth/providers";
58
57
  *
59
- * new Password()
60
- * new Password({ verify: myEmailProvider })
58
+ * password()
59
+ * password({ verify: myEmailProvider })
61
60
  * ```
61
+ *
62
+ * @typeParam DataModel - The Convex data model used by the auth context.
63
+ * @param config - Password flow hooks and optional verification providers.
64
+ * @returns A configured password provider for `createAuth`.
65
+ * @throws {Error} During sign-in flows when required password params are missing or reset is not enabled.
62
66
  */
63
- var Password = class {
64
- id;
65
- type = "credentials";
66
- config;
67
- constructor(config = {}) {
68
- this.id = config.id ?? "password";
69
- this.config = config;
70
- }
71
- /** @internal Convert to the internal materialized config shape. */
72
- _toMaterialized() {
73
- const config = this.config;
74
- const provider = this.id;
75
- return new Credentials({
76
- id: "password",
77
- authorize: async (params, ctx) => {
78
- const flowDispatch = decodePasswordFlow(params.flow);
79
- const validatePasswordRequirements = (password) => {
80
- if (config.validatePasswordRequirements !== void 0) {
81
- config.validatePasswordRequirements(password);
82
- return;
67
+ function password(config = {}) {
68
+ const provider = config.id ?? "password";
69
+ const resetProvider = typeof config.reset === "function" ? config.reset() : config.reset;
70
+ const verifyProvider = typeof config.verify === "function" ? config.verify() : config.verify;
71
+ return credentials({
72
+ id: provider,
73
+ authorize: async (params, ctx) => {
74
+ const flowDispatch = decodePasswordFlow(params.flow);
75
+ const validatePasswordRequirements = (password) => {
76
+ if (config.validatePasswordRequirements !== void 0) {
77
+ config.validatePasswordRequirements(password);
78
+ return;
79
+ }
80
+ validateDefaultPasswordRequirements(password);
81
+ };
82
+ if (flowDispatch.tag === "signUp") validatePasswordRequirements(params.password);
83
+ else if (flowDispatch.tag === "resetVerification") validatePasswordRequirements(params.newPassword);
84
+ const profile = config.profile?.(params, ctx) ?? defaultProfile(params);
85
+ const { email } = profile;
86
+ const requirePasswordParam = (value, flow) => {
87
+ if (typeof value !== "string" || value.length === 0) throw new Error(`Missing \`password\` param for \`${flow}\` flow`);
88
+ return value;
89
+ };
90
+ const finalizeCredentialsResult = async (account, user) => {
91
+ if (verifyProvider && !account.emailVerified) return await ctx.auth.provider.signIn(ctx, verifyProvider, {
92
+ accountId: account._id,
93
+ params
94
+ });
95
+ return { userId: user._id };
96
+ };
97
+ if (flowDispatch.tag === "signUp") {
98
+ const secret = requirePasswordParam(params.password, "signUp");
99
+ const created = await ctx.auth.account.create(ctx, {
100
+ provider,
101
+ account: {
102
+ id: email,
103
+ secret
104
+ },
105
+ profile,
106
+ shouldLinkViaEmail: config.verify !== void 0,
107
+ shouldLinkViaPhone: false
108
+ });
109
+ return await finalizeCredentialsResult(created.account, created.user);
110
+ } else if (flowDispatch.tag === "signIn") {
111
+ const secret = requirePasswordParam(params.password, "signIn");
112
+ const retrieved = await ctx.auth.account.get(ctx, {
113
+ provider,
114
+ account: {
115
+ id: email,
116
+ secret
83
117
  }
84
- validateDefaultPasswordRequirements(password);
85
- };
86
- await Fx.run(Fx.match(flowDispatch, flowDispatch.tag, {
87
- signUp: () => Fx.sync(() => {
88
- validatePasswordRequirements(params.password);
89
- }),
90
- resetVerification: () => Fx.sync(() => {
91
- validatePasswordRequirements(params.newPassword);
92
- }),
93
- signIn: () => Fx.succeed(void 0),
94
- reset: () => Fx.succeed(void 0),
95
- emailVerification: () => Fx.succeed(void 0),
96
- invalid: () => Fx.succeed(void 0)
97
- }));
98
- const profile = config.profile?.(params, ctx) ?? defaultProfile(params);
99
- const { email } = profile;
100
- const requirePasswordParam = (value, flow) => {
101
- if (typeof value !== "string" || value.length === 0) throw new Error(`Missing \`password\` param for \`${flow}\` flow`);
102
- return value;
103
- };
104
- const finalizeCredentialsResult = async (account, user) => {
105
- if (config.verify && !account.emailVerified) return await ctx.auth.provider.signIn(ctx, config.verify, {
106
- accountId: account._id,
107
- params
108
- });
109
- return { userId: user._id };
118
+ });
119
+ if (retrieved === null) throw new Error("Invalid credentials");
120
+ return await finalizeCredentialsResult(retrieved.account, retrieved.user);
121
+ } else if (flowDispatch.tag === "reset") {
122
+ if (!resetProvider) throw new Error(`Password reset is not enabled for ${provider}`);
123
+ const { account } = await ctx.auth.account.get(ctx, {
124
+ provider,
125
+ account: { id: email }
126
+ });
127
+ return await ctx.auth.provider.signIn(ctx, resetProvider, {
128
+ accountId: account._id,
129
+ params
130
+ });
131
+ } else if (flowDispatch.tag === "resetVerification") {
132
+ if (!resetProvider) throw new Error(`Password reset is not enabled for ${provider}`);
133
+ if (params.newPassword === void 0) throw new Error("Missing `newPassword` param for `reset-verification` flow");
134
+ const result = await ctx.auth.provider.signIn(ctx, resetProvider, { params });
135
+ if (result === null) throw new Error("Invalid code");
136
+ const { userId, sessionId } = result;
137
+ const secret = params.newPassword;
138
+ await ctx.auth.account.update(ctx, {
139
+ provider,
140
+ account: {
141
+ id: email,
142
+ secret
143
+ }
144
+ });
145
+ await ctx.auth.session.invalidate(ctx, {
146
+ userId,
147
+ except: [sessionId]
148
+ });
149
+ return {
150
+ userId,
151
+ sessionId
110
152
  };
111
- return await Fx.run(Fx.match(flowDispatch, flowDispatch.tag, {
112
- signUp: () => Fx.promise(async () => {
113
- const secret = requirePasswordParam(params.password, "signUp");
114
- const created = await ctx.auth.account.create(ctx, {
115
- provider,
116
- account: {
117
- id: email,
118
- secret
119
- },
120
- profile,
121
- shouldLinkViaEmail: config.verify !== void 0,
122
- shouldLinkViaPhone: false
123
- });
124
- return await finalizeCredentialsResult(created.account, created.user);
125
- }),
126
- signIn: () => Fx.promise(async () => {
127
- const secret = requirePasswordParam(params.password, "signIn");
128
- const retrieved = await ctx.auth.account.get(ctx, {
129
- provider,
130
- account: {
131
- id: email,
132
- secret
133
- }
134
- });
135
- if (retrieved === null) throw new Error("Invalid credentials");
136
- return await finalizeCredentialsResult(retrieved.account, retrieved.user);
137
- }),
138
- reset: () => Fx.promise(async () => {
139
- if (!config.reset) throw new Error(`Password reset is not enabled for ${provider}`);
140
- const { account } = await ctx.auth.account.get(ctx, {
141
- provider,
142
- account: { id: email }
143
- });
144
- return await ctx.auth.provider.signIn(ctx, config.reset, {
145
- accountId: account._id,
146
- params
147
- });
148
- }),
149
- resetVerification: () => Fx.promise(async () => {
150
- if (!config.reset) throw new Error(`Password reset is not enabled for ${provider}`);
151
- if (params.newPassword === void 0) throw new Error("Missing `newPassword` param for `reset-verification` flow");
152
- const result = await ctx.auth.provider.signIn(ctx, config.reset, { params });
153
- if (result === null) throw new Error("Invalid code");
154
- const { userId, sessionId } = result;
155
- const secret = params.newPassword;
156
- await ctx.auth.account.update(ctx, {
157
- provider,
158
- account: {
159
- id: email,
160
- secret
161
- }
162
- });
163
- await ctx.auth.session.invalidate(ctx, {
164
- userId,
165
- except: [sessionId]
166
- });
167
- return {
168
- userId,
169
- sessionId
170
- };
171
- }),
172
- emailVerification: () => Fx.promise(async () => {
173
- if (!config.verify) throw new Error(`Email verification is not enabled for ${provider}`);
174
- const { account } = await ctx.auth.account.get(ctx, {
175
- provider,
176
- account: { id: email }
177
- });
178
- return await ctx.auth.provider.signIn(ctx, config.verify, {
179
- accountId: account._id,
180
- params
181
- });
182
- }),
183
- invalid: () => Fx.fatal(/* @__PURE__ */ new Error("Missing `flow` param, it must be one of \"signUp\", \"signIn\", \"reset\", \"reset-verification\" or \"email-verification\"!"))
184
- }));
153
+ } else if (flowDispatch.tag === "emailVerification") {
154
+ if (!verifyProvider) throw new Error(`Email verification is not enabled for ${provider}`);
155
+ const { account } = await ctx.auth.account.get(ctx, {
156
+ provider,
157
+ account: { id: email }
158
+ });
159
+ return await ctx.auth.provider.signIn(ctx, verifyProvider, {
160
+ accountId: account._id,
161
+ params
162
+ });
163
+ } else throw new Error("Missing `flow` param, it must be one of \"signUp\", \"signIn\", \"reset\", \"reset-verification\" or \"email-verification\"!");
164
+ },
165
+ crypto: config.crypto ?? {
166
+ async hashSecret(password) {
167
+ return await hashPassword(password);
185
168
  },
186
- crypto: config.crypto ?? {
187
- async hashSecret(password) {
188
- return await hashPassword(password);
189
- },
190
- async verifySecret(password, hash) {
191
- return await verifyPassword(password, hash);
192
- }
193
- },
194
- extraProviders: [config.reset, config.verify],
195
- ...config
196
- })._toMaterialized();
197
- }
198
- };
169
+ async verifySecret(password, hash) {
170
+ return await verifyPassword(password, hash);
171
+ }
172
+ },
173
+ extraProviders: [resetProvider, verifyProvider],
174
+ ...config
175
+ });
176
+ }
199
177
  function validateDefaultPasswordRequirements(password) {
200
178
  if (!password || password.length < 8) throw new Error("Invalid password");
201
179
  }
@@ -249,5 +227,5 @@ function constantTimeEqual(left, right) {
249
227
  }
250
228
 
251
229
  //#endregion
252
- export { Password };
230
+ export { password };
253
231
  //# sourceMappingURL=password.js.map
@@ -1,48 +1,33 @@
1
1
  import { PhoneConfig } from "../server/types.js";
2
2
 
3
3
  //#region src/providers/phone.d.ts
4
- /**
5
- * User-facing configuration for the {@link Phone} provider.
6
- *
7
- * Use this to send SMS or other phone-based verification messages during
8
- * sign-in.
9
- */
4
+ /** Configuration for the {@link phone} provider. */
10
5
  interface PhoneProviderConfig {
11
- /** Send the verification code to the user's phone. */
6
+ /** SMS or phone delivery callback for verification tokens. */
12
7
  send: PhoneConfig["sendVerificationRequest"];
13
- /** Provider ID override. Defaults to "phone". */
8
+ /** Stable provider identifier used in `signIn("<id>")`. */
14
9
  id?: string;
15
- /** Token expiration in seconds. Defaults to 1200 (20 minutes). */
10
+ /** Verification token lifetime in seconds. */
16
11
  maxAge?: number;
17
12
  }
18
13
  /**
19
- * Phone provider for SMS or phone-number verification flows.
14
+ * Create a phone or SMS verification provider.
20
15
  *
21
- * Wraps your `send()` implementation and materializes the runtime behavior
22
- * Convex Auth needs for short-code or magic-link-style phone verification.
16
+ * @param config - SMS delivery hook and optional provider settings.
17
+ * @returns A configured phone provider for `createAuth`.
23
18
  *
24
19
  * @example
25
20
  * ```ts
26
- * import { Phone } from "@robelest/convex-auth/providers";
21
+ * import { phone } from "@robelest/convex-auth/providers";
27
22
  *
28
- * const phone = new Phone({
23
+ * phone({
29
24
  * send: async ({ identifier, token }) => {
30
- * await sms.send({ to: identifier, body: `Your sign-in code is ${token}` });
25
+ * await sendSms(identifier, `Your sign-in code is ${token}`);
31
26
  * },
32
- * });
27
+ * })
33
28
  * ```
34
29
  */
35
- declare class Phone {
36
- readonly config: PhoneProviderConfig;
37
- readonly id: string;
38
- readonly type: "phone";
39
- /**
40
- * Create a phone provider instance.
41
- *
42
- * @param config - Phone delivery and provider settings.
43
- */
44
- constructor(config: PhoneProviderConfig);
45
- }
30
+ declare function phone(config: PhoneProviderConfig): PhoneConfig;
46
31
  //#endregion
47
- export { Phone, PhoneProviderConfig };
32
+ export { PhoneProviderConfig, phone };
48
33
  //# sourceMappingURL=phone.d.ts.map
@@ -1,60 +1,35 @@
1
- import { Fx } from "@robelest/fx";
2
-
3
1
  //#region src/providers/phone.ts
4
2
  /**
5
- * Phone / SMS authentication provider.
6
- *
7
- * @module
8
- */
9
- /**
10
- * Phone provider for SMS or phone-number verification flows.
3
+ * Create a phone or SMS verification provider.
11
4
  *
12
- * Wraps your `send()` implementation and materializes the runtime behavior
13
- * Convex Auth needs for short-code or magic-link-style phone verification.
5
+ * @param config - SMS delivery hook and optional provider settings.
6
+ * @returns A configured phone provider for `createAuth`.
14
7
  *
15
8
  * @example
16
9
  * ```ts
17
- * import { Phone } from "@robelest/convex-auth/providers";
10
+ * import { phone } from "@robelest/convex-auth/providers";
18
11
  *
19
- * const phone = new Phone({
12
+ * phone({
20
13
  * send: async ({ identifier, token }) => {
21
- * await sms.send({ to: identifier, body: `Your sign-in code is ${token}` });
14
+ * await sendSms(identifier, `Your sign-in code is ${token}`);
22
15
  * },
23
- * });
16
+ * })
24
17
  * ```
25
18
  */
26
- var Phone = class {
27
- id;
28
- type = "phone";
29
- /**
30
- * Create a phone provider instance.
31
- *
32
- * @param config - Phone delivery and provider settings.
33
- */
34
- constructor(config) {
35
- this.config = config;
36
- this.id = config.id ?? "phone";
37
- }
38
- /** @internal */
39
- _toMaterialized() {
40
- return {
41
- id: this.id,
42
- type: "phone",
43
- maxAge: this.config.maxAge ?? 1200,
44
- authorize: async (params, account) => {
45
- const dispatch = typeof params.phone !== "string" ? { tag: "missingPhone" } : account.providerAccountId !== params.phone ? { tag: "mismatch" } : { tag: "ok" };
46
- return await Fx.run(Fx.match(dispatch, dispatch.tag, {
47
- missingPhone: () => Fx.fatal(/* @__PURE__ */ new Error("Token verification requires a `phone` in params of `signIn`.")),
48
- mismatch: () => Fx.fatal(/* @__PURE__ */ new Error("Short verification code requires a matching `phone` in params of `signIn`.")),
49
- ok: () => Fx.succeed(void 0)
50
- }));
51
- },
52
- sendVerificationRequest: this.config.send,
53
- options: {}
54
- };
55
- }
56
- };
19
+ function phone(config) {
20
+ return {
21
+ id: config.id ?? "phone",
22
+ type: "phone",
23
+ maxAge: config.maxAge ?? 1200,
24
+ authorize: async (params, account) => {
25
+ if (typeof params.phone !== "string") throw new Error("Token verification requires a `phone` in params of `signIn`.");
26
+ if (account.providerAccountId !== params.phone) throw new Error("Short verification code requires a matching `phone` in params of `signIn`.");
27
+ },
28
+ sendVerificationRequest: config.send,
29
+ options: {}
30
+ };
31
+ }
57
32
 
58
33
  //#endregion
59
- export { Phone };
34
+ export { phone };
60
35
  //# sourceMappingURL=phone.js.map
@@ -1,50 +1,30 @@
1
+ import { SSOProviderConfig } from "../server/types.js";
2
+
1
3
  //#region src/providers/sso.d.ts
2
4
  /**
3
- * Enterprise SSO provider (OIDC + SAML + SCIM).
5
+ * Create the group SSO provider.
4
6
  *
5
- * Adding `new SSO()` to your providers list enables enterprise SSO
6
- * sign-in flows and registers the OIDC, SAML, and SCIM runtime HTTP
7
- * routes. It also makes `auth.sso.*` available on the auth
8
- * object returned by `createAuth`.
7
+ * @param options - Optional SSO provider settings.
8
+ * @param options.redirectURI - Override the callback URI used for provider
9
+ * initiated sign-in flows.
10
+ * @returns A provider that enables the `auth.group.sso.*` server helpers and
11
+ * registers the runtime SSO routes.
9
12
  *
13
+ * @example
10
14
  * ```ts
11
- * import { SSO } from "@robelest/convex-auth/providers";
12
- *
13
- * const auth = createAuth(components.auth, {
14
- * providers: [new SSO(), new Password()],
15
- * });
15
+ * import { sso } from "@robelest/convex-auth/providers";
16
16
  *
17
- * // auth.sso is now available
18
- * await auth.sso.admin.oidc.configure(ctx, { enterpriseId, clientId, ... });
17
+ * sso()
19
18
  * ```
20
19
  *
21
- * Without `new SSO()` in the providers list, `auth.sso` is not
22
- * present on the returned object and accessing it is a TypeScript error.
23
- *
24
- * @module
25
- */
26
- /**
27
- * Enterprise SSO provider.
28
- *
29
- * Zero-configuration — sensible defaults are applied for all enterprise
30
- * protocols (OIDC, SAML, SCIM). Per-tenant configuration is done at
31
- * runtime via `auth.sso.*` helpers.
32
- *
33
20
  * @example
34
21
  * ```ts
35
- * import { createAuth } from "@robelest/convex-auth/component";
36
- * import { SSO, Password } from "@robelest/convex-auth/providers";
37
- * import { components } from "./_generated/api";
38
- *
39
- * export const auth = createAuth(components.auth, {
40
- * providers: [new SSO(), new Password()],
41
- * });
22
+ * sso({ redirectURI: "https://app.example.com/auth/sso/callback" })
42
23
  * ```
43
24
  */
44
- declare class SSO {
45
- readonly id = "enterprise-sso";
46
- readonly type: "sso";
47
- }
25
+ declare function sso(options?: {
26
+ redirectURI?: string;
27
+ }): SSOProviderConfig;
48
28
  //#endregion
49
- export { SSO };
29
+ export { sso };
50
30
  //# sourceMappingURL=sso.d.ts.map
@@ -1,34 +1,33 @@
1
1
  //#region src/providers/sso.ts
2
2
  /**
3
- * Enterprise SSO provider.
3
+ * Create the group SSO provider.
4
4
  *
5
- * Zero-configuration sensible defaults are applied for all enterprise
6
- * protocols (OIDC, SAML, SCIM). Per-tenant configuration is done at
7
- * runtime via `auth.sso.*` helpers.
5
+ * @param options - Optional SSO provider settings.
6
+ * @param options.redirectURI - Override the callback URI used for provider
7
+ * initiated sign-in flows.
8
+ * @returns A provider that enables the `auth.group.sso.*` server helpers and
9
+ * registers the runtime SSO routes.
8
10
  *
9
11
  * @example
10
12
  * ```ts
11
- * import { createAuth } from "@robelest/convex-auth/component";
12
- * import { SSO, Password } from "@robelest/convex-auth/providers";
13
- * import { components } from "./_generated/api";
13
+ * import { sso } from "@robelest/convex-auth/providers";
14
14
  *
15
- * export const auth = createAuth(components.auth, {
16
- * providers: [new SSO(), new Password()],
17
- * });
15
+ * sso()
16
+ * ```
17
+ *
18
+ * @example
19
+ * ```ts
20
+ * sso({ redirectURI: "https://app.example.com/auth/sso/callback" })
18
21
  * ```
19
22
  */
20
- var SSO = class {
21
- id = "enterprise-sso";
22
- type = "sso";
23
- /** @internal Convert to the internal materialized config shape. */
24
- _toMaterialized() {
25
- return {
26
- id: this.id,
27
- type: "sso"
28
- };
29
- }
30
- };
23
+ function sso(options) {
24
+ return {
25
+ id: "sso",
26
+ type: "sso",
27
+ redirectURI: options?.redirectURI
28
+ };
29
+ }
31
30
 
32
31
  //#endregion
33
- export { SSO };
32
+ export { sso };
34
33
  //# sourceMappingURL=sso.js.map
@@ -1,45 +1,29 @@
1
+ import { TotpProviderConfig } from "../server/types.js";
2
+
1
3
  //#region src/providers/totp.d.ts
2
- /**
3
- * TOTP (Time-based One-Time Password) two-factor authentication provider.
4
- *
5
- * ```ts
6
- * import { Totp } from "@robelest/convex-auth/providers";
7
- *
8
- * new Totp({ issuer: "My App" })
9
- * ```
10
- *
11
- * @module
12
- */
13
- /**
14
- * Configuration for the TOTP provider.
15
- */
4
+ /** Configuration for the {@link totp} provider. */
16
5
  interface TotpConfig {
17
- /** Issuer name shown in authenticator apps (e.g. "My App"). */
6
+ /** Issuer label embedded in the otpauth URI shown to authenticator apps. */
18
7
  issuer?: string;
19
- /** Number of digits in each code (default: 6). */
8
+ /** Number of digits expected in generated TOTP codes. */
20
9
  digits?: number;
21
- /** Time period in seconds for code rotation (default: 30). */
10
+ /** Time step, in seconds, used when generating and validating codes. */
22
11
  period?: number;
23
12
  }
24
13
  /**
25
- * TOTP (Time-based One-Time Password) two-factor authentication provider.
14
+ * Create a TOTP provider.
26
15
  *
27
- * Generates time-based one-time passwords compatible with authenticator
28
- * apps like Google Authenticator and Authy.
16
+ * @param config - Optional issuer and token generation settings.
17
+ * @returns A configured TOTP provider for `createAuth`.
29
18
  *
30
19
  * @example
31
20
  * ```ts
32
- * import { Totp } from "@robelest/convex-auth/providers";
21
+ * import { totp } from "@robelest/convex-auth/providers";
33
22
  *
34
- * new Totp({ issuer: "My App" })
23
+ * totp({ issuer: "My App" })
35
24
  * ```
36
25
  */
37
- declare class Totp {
38
- readonly id: string;
39
- readonly type: "totp";
40
- readonly config: TotpConfig;
41
- constructor(config?: TotpConfig);
42
- }
26
+ declare function totp(config?: TotpConfig): TotpProviderConfig;
43
27
  //#endregion
44
- export { Totp, TotpConfig };
28
+ export { TotpConfig, totp };
45
29
  //# sourceMappingURL=totp.d.ts.map