@rpcbase/auth 0.44.0 → 0.46.0

package/dist/index.js

@@ -1,10 +1,12 @@
 import { jsxs, jsx, Fragment } from "react/jsx-runtime";
-import { useLocation, Link } from "@rpcbase/router";
+import { useLocation, Link, useNavigate } from "@rpcbase/router";
 import clsx from "clsx";
 import { useFormContext, useForm, zodResolver, FormProvider } from "@rpcbase/form";
-import { useEffect } from "react";
-import { r as requestSchema } from "./index-oIC-DH2m.js";
-import { r as requestSchema$1 } from "./index-Nc4R1TKZ.js";
+import * as React from "react";
+import { useEffect, useState } from "react";
+import { r as requestSchema } from "./index-Bdcryyvv.js";
+import { r as requestSchema$1 } from "./index-DwX0Y2YV.js";
+import { b, a, r } from "./middleware-BiMXO6Dq.js";
 const LINKS_REDIRECTION_MAP = {
   "/auth/sign-in": {
     "title": "Sign Up",
@@ -77,13 +79,13 @@ const AppleSignInButton = ({
     }
   );
 };
-const EmailOrPhoneInput = ({
+const EmailInput = ({
   id,
   className,
   placeholder
 }) => {
   const { register, formState } = useFormContext();
-  const error = formState.errors.email_or_phone;
+  const error = formState.errors.email;
   let errorMessage;
   if (typeof error === "string") {
     errorMessage = error;
@@ -95,12 +97,12 @@ const EmailOrPhoneInput = ({
       "input",
       {
         id,
-        type: "text",
+        type: "email",
         required: true,
-        autoComplete: "on",
+        autoComplete: "email",
         className,
         placeholder,
-        ...register("email_or_phone")
+        ...register("email")
       }
     ),
     errorMessage ? /* @__PURE__ */ jsx("p", { className: "mt-1 -mb-2 text-sm/6 text-red-500", children: errorMessage }) : null
@@ -112,13 +114,30 @@ const SignInForm = ({
 }) => {
   const methods = useForm({
     defaultValues: {
-      email_or_phone: "",
+      email: "",
+      password: "",
       remember_me: true
     },
     resolver: zodResolver(requestSchema)
   });
   const onSubmit = async (data) => {
     console.log("SUBMIT SIGNIN", data);
+    try {
+      const res = await fetch("/api/rb/auth/sign-in", {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json"
+        },
+        body: JSON.stringify(data)
+      });
+      const json = await res.json();
+      console.log("SIGN IN RESPONSE", json);
+      if (!res.ok) {
+        console.error("Sign-in failed", json);
+      }
+    } catch (err) {
+      console.error("Sign-in request error", err);
+    }
   };
   useEffect(() => {
     console.log(methods.formState.errors);
@@ -127,23 +146,62 @@ const SignInForm = ({
 };
 const SignUpForm = ({
   children,
-  className
+  className,
+  otpNextPath
 }) => {
+  const navigate = useNavigate();
+  const [serverMessage, setServerMessage] = useState(null);
   const methods = useForm({
     defaultValues: {
-      email_or_phone: "",
+      email: "",
       password: "",
-      password_confirmation: ""
+      remember_me: true
     },
     resolver: zodResolver(requestSchema$1)
   });
   const onSubmit = async (data) => {
+    setServerMessage(null);
+    methods.clearErrors("root");
     console.log("SUBMIT SIGNUp", data);
+    try {
+      const res = await fetch("/api/rb/auth/sign-up", {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json"
+        },
+        body: JSON.stringify(data)
+      });
+      const json = await res.json();
+      console.log("SIGN UP RESPONSE", json);
+      if (!res.ok) {
+        console.error("Sign-up failed", json);
+        const message = json.error === "user_exists" ? "An account already exists with this email." : "Sign-up failed. Please try again.";
+        methods.setError("root", { type: "server", message });
+        return;
+      }
+      if (!json.success) {
+        methods.setError("root", { type: "server", message: "Sign-up failed. Please try again." });
+        return;
+      }
+      const search = new URLSearchParams({ email: data.email });
+      if (otpNextPath) {
+        search.set("next", otpNextPath);
+      }
+      navigate(`/auth/sign-up-otp?${search.toString()}`);
+      setServerMessage("Account created. Check your inbox to verify your email.");
+    } catch (err) {
+      console.error("Sign-up request error", err);
+      methods.setError("root", { type: "server", message: "Network error. Please try again." });
+    }
   };
   useEffect(() => {
     console.log(methods.formState.errors);
   }, [methods.formState.errors]);
-  return /* @__PURE__ */ jsx(FormProvider, { ...methods, children: /* @__PURE__ */ jsx("form", { method: "post", noValidate: true, className, onSubmit: methods.handleSubmit(onSubmit), children }) });
+  return /* @__PURE__ */ jsx(FormProvider, { ...methods, children: /* @__PURE__ */ jsxs("form", { method: "post", noValidate: true, className, onSubmit: methods.handleSubmit(onSubmit), children: [
+    children,
+    methods.formState.errors.root?.message && /* @__PURE__ */ jsx("p", { className: "mt-2 text-sm text-red-600", role: "alert", children: methods.formState.errors.root.message }),
+    serverMessage && /* @__PURE__ */ jsx("p", { className: "mt-2 text-sm text-green-700", role: "status", children: serverMessage })
+  ] }) });
 };
 const RememberMeCheckbox = ({
   label,
@@ -168,11 +226,106 @@ const RememberMeCheckbox = ({
     )
   ] });
 };
+function EyeSlashIcon({
+  title,
+  titleId,
+  ...props
+}, svgRef) {
+  return /* @__PURE__ */ React.createElement("svg", Object.assign({
+    xmlns: "http://www.w3.org/2000/svg",
+    fill: "none",
+    viewBox: "0 0 24 24",
+    strokeWidth: 1.5,
+    stroke: "currentColor",
+    "aria-hidden": "true",
+    "data-slot": "icon",
+    ref: svgRef,
+    "aria-labelledby": titleId
+  }, props), title ? /* @__PURE__ */ React.createElement("title", {
+    id: titleId
+  }, title) : null, /* @__PURE__ */ React.createElement("path", {
+    strokeLinecap: "round",
+    strokeLinejoin: "round",
+    d: "M3.98 8.223A10.477 10.477 0 0 0 1.934 12C3.226 16.338 7.244 19.5 12 19.5c.993 0 1.953-.138 2.863-.395M6.228 6.228A10.451 10.451 0 0 1 12 4.5c4.756 0 8.773 3.162 10.065 7.498a10.522 10.522 0 0 1-4.293 5.774M6.228 6.228 3 3m3.228 3.228 3.65 3.65m7.894 7.894L21 21m-3.228-3.228-3.65-3.65m0 0a3 3 0 1 0-4.243-4.243m4.242 4.242L9.88 9.88"
+  }));
+}
+const ForwardRef$1 = /* @__PURE__ */ React.forwardRef(EyeSlashIcon);
+function EyeIcon({
+  title,
+  titleId,
+  ...props
+}, svgRef) {
+  return /* @__PURE__ */ React.createElement("svg", Object.assign({
+    xmlns: "http://www.w3.org/2000/svg",
+    fill: "none",
+    viewBox: "0 0 24 24",
+    strokeWidth: 1.5,
+    stroke: "currentColor",
+    "aria-hidden": "true",
+    "data-slot": "icon",
+    ref: svgRef,
+    "aria-labelledby": titleId
+  }, props), title ? /* @__PURE__ */ React.createElement("title", {
+    id: titleId
+  }, title) : null, /* @__PURE__ */ React.createElement("path", {
+    strokeLinecap: "round",
+    strokeLinejoin: "round",
+    d: "M2.036 12.322a1.012 1.012 0 0 1 0-.639C3.423 7.51 7.36 4.5 12 4.5c4.638 0 8.573 3.007 9.963 7.178.07.207.07.431 0 .639C20.577 16.49 16.64 19.5 12 19.5c-4.638 0-8.573-3.007-9.963-7.178Z"
+  }), /* @__PURE__ */ React.createElement("path", {
+    strokeLinecap: "round",
+    strokeLinejoin: "round",
+    d: "M15 12a3 3 0 1 1-6 0 3 3 0 0 1 6 0Z"
+  }));
+}
+const ForwardRef = /* @__PURE__ */ React.forwardRef(EyeIcon);
+const PasswordInput = ({
+  id,
+  name = "password",
+  className,
+  placeholder,
+  autoComplete = "current-password"
+}) => {
+  const [showPassword, setShowPassword] = useState(false);
+  const { register, formState } = useFormContext();
+  const fieldError = formState.errors[name];
+  const errorMessage = typeof fieldError === "string" ? fieldError : typeof fieldError?.message === "string" ? fieldError.message : void 0;
+  const inputClassName = className ? `${className} pr-11` : "pr-11";
+  return /* @__PURE__ */ jsxs(Fragment, { children: [
+    /* @__PURE__ */ jsxs("div", { className: "relative", children: [
+      /* @__PURE__ */ jsx(
+        "input",
+        {
+          id,
+          type: showPassword ? "text" : "password",
+          autoComplete,
+          className: inputClassName,
+          placeholder,
+          ...register(name)
+        }
+      ),
+      /* @__PURE__ */ jsx(
+        "button",
+        {
+          type: "button",
+          className: "absolute inset-y-0 right-0 flex items-center pr-3 text-gray-500",
+          onClick: () => setShowPassword((prev) => !prev),
+          "aria-label": showPassword ? "Hide characters" : "Show characters",
+          children: showPassword ? /* @__PURE__ */ jsx(ForwardRef$1, { className: "h-5 w-5", "aria-hidden": true }) : /* @__PURE__ */ jsx(ForwardRef, { className: "h-5 w-5", "aria-hidden": true })
+        }
+      )
+    ] }),
+    errorMessage ? /* @__PURE__ */ jsx("p", { className: "mt-1 -mb-2 text-sm/6 text-red-500", children: errorMessage }) : null
+  ] });
+};
 export {
   AppleSignInButton,
   AuthLayout,
-  EmailOrPhoneInput,
+  EmailInput,
+  PasswordInput,
   RememberMeCheckbox,
   SignInForm,
-  SignUpForm
+  SignUpForm,
+  b as redirectAuthMiddleware,
+  a as requireSession,
+  r as restrictSessionMiddleware
 };

package/dist/middleware-BiMXO6Dq.js

@@ -0,0 +1,21 @@
+const isAuthenticated = (req) => {
+  return Boolean(req.session?.user?.id);
+};
+const restrictSessionMiddleware = (req, res, next) => {
+  if (isAuthenticated(req)) {
+    return next();
+  }
+  res.status(401).json({ error: "unauthorized" });
+};
+const requireSession = restrictSessionMiddleware;
+const redirectAuthMiddleware = (req, res, next) => {
+  if (req.path.startsWith("/app") && !isAuthenticated(req)) {
+    return res.redirect("/auth/sign-in");
+  }
+  next();
+};
+export {
+  requireSession as a,
+  redirectAuthMiddleware as b,
+  restrictSessionMiddleware as r
+};

package/dist/middleware.d.ts

@@ -0,0 +1,6 @@
+import { Middleware } from '../../api/src';
+import { AuthSessionUser } from './types';
+export declare const restrictSessionMiddleware: Middleware<AuthSessionUser>;
+export declare const requireSession: Middleware<AuthSessionUser>;
+export declare const redirectAuthMiddleware: Middleware<AuthSessionUser>;
+//# sourceMappingURL=middleware.d.ts.map

package/dist/middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"middleware.d.ts","sourceRoot":"","sources":["../src/middleware.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AAE9C,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAA;AAO9C,eAAO,MAAM,yBAAyB,EAAE,UAAU,CAAC,eAAe,CAMjE,CAAA;AAED,eAAO,MAAM,cAAc,6BAA4B,CAAA;AAEvD,eAAO,MAAM,sBAAsB,EAAE,UAAU,CAAC,eAAe,CAM9D,CAAA"}

package/dist/routes.js

@@ -1,5 +1,5 @@
 const routes = Object.entries({
-  .../* @__PURE__ */ Object.assign({ "./api/sign-in/handler.ts": () => import("./handler-BD2C82Z3.js"), "./api/sign-out/handler.ts": () => import("./handler-42q87FS8.js"), "./api/sign-up/handler.ts": () => import("./handler-C7htSfmB.js") })
+  .../* @__PURE__ */ Object.assign({ "./api/me/handler.ts": () => import("./handler-Ba3pgtfZ.js"), "./api/sign-in/handler.ts": () => import("./handler-r4ZECW_z.js"), "./api/sign-out/handler.ts": () => import("./handler-CNHucHrj.js"), "./api/sign-up/handler.ts": () => import("./handler-CE4lXc0G.js"), "./api/verify-otp/handler.ts": () => import("./handler-DOnLMd-9.js") })
 }).reduce((acc, [path, mod]) => {
   acc[path.replace("./api/", "@rpcbase/auth/api/")] = mod;
   return acc;

package/dist/{schemas-7XFc7XYG.js → schemas-KL7REOdt.js}

@@ -2975,6 +2975,7 @@ function superRefine(fn) {
   return _superRefine(fn);
 }
 export {
+  array as a,
   boolean as b,
   object as o,
   string as s

package/dist/types.d.ts

@@ -0,0 +1,7 @@
+export type AuthSessionUser = {
+    id: string;
+    current_tenant_id: string;
+    signed_in_tenants: string[];
+    is_entry_gate_authorized: boolean;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,eAAe,GAAG;IAC5B,EAAE,EAAE,MAAM,CAAA;IACV,iBAAiB,EAAE,MAAM,CAAA;IACzB,iBAAiB,EAAE,MAAM,EAAE,CAAA;IAC3B,wBAAwB,EAAE,OAAO,CAAA;CAClC,CAAA"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@rpcbase/auth",
-  "version": "0.44.0",
+  "version": "0.46.0",
   "type": "module",
   "files": [
     "dist"
@@ -38,6 +38,13 @@
         "dist/"
       ]
     },
+    "build-watch": {
+      "command": "../../node_modules/.bin/vite build --watch",
+      "service": true,
+      "dependencies": [
+        "build"
+      ]
+    },
     "release": {
       "command": "../../scripts/publish.js",
       "dependencies": [

package/dist/components/EmailOrPhoneInput/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/components/EmailOrPhoneInput/index.tsx"],"names":[],"mappings":"AAGA,eAAO,MAAM,iBAAiB,GAAI,iCAI/B;IACD,EAAE,EAAE,MAAM,CAAA;IACV,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,WAAW,CAAC,EAAE,MAAM,CAAA;CACrB,4CA6BA,CAAA"}

package/dist/handler-BD2C82Z3.js

@@ -1,17 +0,0 @@
-import { i as isEmail } from "./isEmail-IG0hXiQk.js";
-import { R as Route, r as requestSchema } from "./index-oIC-DH2m.js";
-const signIn = async (payload, ctx) => {
-  const { email_or_phone } = requestSchema.parse(payload);
-  if (isEmail(email_or_phone)) {
-    console.log("is valid email");
-  } else {
-    console.log("is not valid email");
-  }
-  return { success: true };
-};
-const handler = (api) => {
-  api.post(Route, signIn);
-};
-export {
-  handler as default
-};

package/dist/handler-C7htSfmB.js

@@ -1,32 +0,0 @@
-import crypto from "crypto";
-import { i as isEmail } from "./isEmail-IG0hXiQk.js";
-import { loadModel } from "@rpcbase/api";
-import { hashPassword } from "@rpcbase/server";
-import { R as Route, r as requestSchema } from "./index-Nc4R1TKZ.js";
-const signUp = async (payload, ctx) => {
-  const User = await loadModel("User", ctx);
-  const { email_or_phone, password } = requestSchema.parse(payload);
-  const is_email = isEmail(email_or_phone);
-  const query = is_email ? { email: email_or_phone } : { phone: email_or_phone };
-  const existingUser = await User.findOne(query);
-  if (existingUser) {
-    console.log("user with email or phone already exists", email_or_phone);
-    return { success: false };
-  }
-  const salt = crypto.randomBytes(16).toString("hex");
-  const derivedKey = await hashPassword(password, salt);
-  const hashedPassword = `${salt}:${derivedKey.toString("hex")}`;
-  const user = new User({
-    ...query,
-    password: hashedPassword
-  });
-  await user.save();
-  console.log("created new user", user._id.toString());
-  return { success: true };
-};
-const handler = (api) => {
-  api.post(Route, signUp);
-};
-export {
-  handler as default
-};

package/dist/index-Nc4R1TKZ.js

@@ -1,25 +0,0 @@
-import { i as isValidNumber } from "./isValidNumber-6pMDGLRn.js";
-import { o as object, s as string, b as boolean } from "./schemas-7XFc7XYG.js";
-const Route = "/api/rb/auth/sign-up";
-const requestSchema = object({
-  email_or_phone: string().nonempty("Email or phone number is required").refine(
-    (value) => {
-      const isEmail = string().email().safeParse(value).success;
-      const isPhone = isValidNumber(value);
-      return isEmail || isPhone;
-    },
-    "Please enter a valid email address or phone number"
-  ),
-  password: string().min(8, { message: "Password must be at least 8 characters long." }),
-  password_confirmation: string().nonempty({ message: "Please confirm your password." })
-}).refine((data) => data.password === data.password_confirmation, {
-  message: "Passwords do not match.",
-  path: ["password_confirmation"]
-});
-object({
-  success: boolean()
-});
-export {
-  Route as R,
-  requestSchema as r
-};

package/dist/index-oIC-DH2m.js

@@ -1,21 +0,0 @@
-import { i as isValidNumber } from "./isValidNumber-6pMDGLRn.js";
-import { o as object, b as boolean, s as string } from "./schemas-7XFc7XYG.js";
-const Route = "/api/rb/auth/sign-in";
-const requestSchema = object({
-  email_or_phone: string().nonempty("Email or phone number is required").default("").refine(
-    (value) => {
-      const isEmail = string().email().safeParse(value).success;
-      const isPhone = isValidNumber(value);
-      return isEmail || isPhone;
-    },
-    "Please enter a valid email address or phone number"
-  ),
-  remember_me: boolean().default(true)
-});
-object({
-  success: boolean()
-});
-export {
-  Route as R,
-  requestSchema as r
-};