npm - @saas-maker/auth-preset - Versions diffs - 0.1.0 - Mend

@saas-maker/auth-preset 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/dist/client.js ADDED Viewed

@@ -0,0 +1,67 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/client.ts
+var client_exports = {};
+__export(client_exports, {
+  AuthProvider: () => AuthProvider,
+  createFoundryAuthClient: () => createFoundryAuthClient,
+  useAuthClient: () => useAuthClient,
+  useSession: () => useSession
+});
+module.exports = __toCommonJS(client_exports);
+var import_react = require("react");
+var import_react2 = require("better-auth/react");
+function resolveBaseURL(opts = {}) {
+  if (opts.baseURL)
+    return opts.baseURL;
+  if (typeof window !== "undefined")
+    return window.location.origin;
+  if (typeof process !== "undefined") {
+    return process.env?.["AUTH_URL"] ?? process.env?.["NEXTAUTH_URL"];
+  }
+  return void 0;
+}
+function createFoundryAuthClient(opts = {}) {
+  return (0, import_react2.createAuthClient)({ baseURL: resolveBaseURL(opts) });
+}
+var AuthClientContext = (0, import_react.createContext)(null);
+function AuthProvider({ client, children, ...opts }) {
+  const value = client ?? createFoundryAuthClient(opts);
+  return (0, import_react.createElement)(AuthClientContext.Provider, { value }, children);
+}
+function useAuthClient() {
+  const ctx = (0, import_react.useContext)(AuthClientContext);
+  if (!ctx) {
+    throw new Error("useAuthClient() called outside <AuthProvider>");
+  }
+  return ctx;
+}
+function useSession() {
+  const client = useAuthClient();
+  return client.useSession();
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AuthProvider,
+  createFoundryAuthClient,
+  useAuthClient,
+  useSession
+});
+//# sourceMappingURL=client.js.map

package/dist/client.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/client.ts"],"sourcesContent":["/**\n * Browser entrypoint — better-auth React client + <AuthProvider> + useSession() hook.\n */\n\nimport { createContext, createElement, useContext, type ReactNode } from 'react';\nimport { createAuthClient } from 'better-auth/react';\n\ndeclare const process: { env?: Record<string, string | undefined> } | undefined;\n\nexport interface AuthClientOpts {\n /** baseURL of your auth-bearing app. Falls back to window.location.origin or AUTH_URL. */\n baseURL?: string;\n}\n\nfunction resolveBaseURL(opts: AuthClientOpts = {}): string | undefined {\n if (opts.baseURL) return opts.baseURL;\n if (typeof window !== 'undefined') return window.location.origin;\n if (typeof process !== 'undefined') {\n return process.env?.['AUTH_URL'] ?? process.env?.['NEXTAUTH_URL'];\n }\n return undefined;\n}\n\nexport function createFoundryAuthClient(opts: AuthClientOpts = {}) {\n return createAuthClient({ baseURL: resolveBaseURL(opts) });\n}\n\nexport type FoundryAuthClient = ReturnType<typeof createFoundryAuthClient>;\n\nconst AuthClientContext = createContext<FoundryAuthClient | null>(null);\n\nexport interface AuthProviderProps extends AuthClientOpts {\n client?: FoundryAuthClient;\n children: ReactNode;\n}\n\n/**\n * Provides a single auth client instance to the React tree.\n * Pass an existing `client` to share with non-React code, or let the provider create one.\n */\nexport function AuthProvider({ client, children, ...opts }: AuthProviderProps) {\n const value = client ?? createFoundryAuthClient(opts);\n return createElement(AuthClientContext.Provider, { value }, children);\n}\n\nexport function useAuthClient(): FoundryAuthClient {\n const ctx = useContext(AuthClientContext);\n if (!ctx) {\n throw new Error('useAuthClient() called outside <AuthProvider>');\n }\n return ctx;\n}\n\n/**\n * Returns the current session via better-auth's useSession.\n */\nexport function useSession() {\n const client = useAuthClient();\n return client.useSession();\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAIA,mBAAyE;AACzE,IAAAA,gBAAiC;AASjC,SAAS,eAAe,OAAuB,CAAC,GAAuB;AACrE,MAAI,KAAK;AAAS,WAAO,KAAK;AAC9B,MAAI,OAAO,WAAW;AAAa,WAAO,OAAO,SAAS;AAC1D,MAAI,OAAO,YAAY,aAAa;AAClC,WAAO,QAAQ,MAAM,UAAU,KAAK,QAAQ,MAAM,cAAc;AAAA,EAClE;AACA,SAAO;AACT;AAEO,SAAS,wBAAwB,OAAuB,CAAC,GAAG;AACjE,aAAO,gCAAiB,EAAE,SAAS,eAAe,IAAI,EAAE,CAAC;AAC3D;AAIA,IAAM,wBAAoB,4BAAwC,IAAI;AAW/D,SAAS,aAAa,EAAE,QAAQ,UAAU,GAAG,KAAK,GAAsB;AAC7E,QAAM,QAAQ,UAAU,wBAAwB,IAAI;AACpD,aAAO,4BAAc,kBAAkB,UAAU,EAAE,MAAM,GAAG,QAAQ;AACtE;AAEO,SAAS,gBAAmC;AACjD,QAAM,UAAM,yBAAW,iBAAiB;AACxC,MAAI,CAAC,KAAK;AACR,UAAM,IAAI,MAAM,+CAA+C;AAAA,EACjE;AACA,SAAO;AACT;AAKO,SAAS,aAAa;AAC3B,QAAM,SAAS,cAAc;AAC7B,SAAO,OAAO,WAAW;AAC3B;","names":["import_react"]}

package/dist/client.mjs ADDED Viewed

@@ -0,0 +1,39 @@
+// src/client.ts
+import { createContext, createElement, useContext } from "react";
+import { createAuthClient } from "better-auth/react";
+function resolveBaseURL(opts = {}) {
+  if (opts.baseURL)
+    return opts.baseURL;
+  if (typeof window !== "undefined")
+    return window.location.origin;
+  if (typeof process !== "undefined") {
+    return process.env?.["AUTH_URL"] ?? process.env?.["NEXTAUTH_URL"];
+  }
+  return void 0;
+}
+function createFoundryAuthClient(opts = {}) {
+  return createAuthClient({ baseURL: resolveBaseURL(opts) });
+}
+var AuthClientContext = createContext(null);
+function AuthProvider({ client, children, ...opts }) {
+  const value = client ?? createFoundryAuthClient(opts);
+  return createElement(AuthClientContext.Provider, { value }, children);
+}
+function useAuthClient() {
+  const ctx = useContext(AuthClientContext);
+  if (!ctx) {
+    throw new Error("useAuthClient() called outside <AuthProvider>");
+  }
+  return ctx;
+}
+function useSession() {
+  const client = useAuthClient();
+  return client.useSession();
+}
+export {
+  AuthProvider,
+  createFoundryAuthClient,
+  useAuthClient,
+  useSession
+};
+//# sourceMappingURL=client.mjs.map

package/dist/client.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/client.ts"],"sourcesContent":["/**\n * Browser entrypoint — better-auth React client + <AuthProvider> + useSession() hook.\n */\n\nimport { createContext, createElement, useContext, type ReactNode } from 'react';\nimport { createAuthClient } from 'better-auth/react';\n\ndeclare const process: { env?: Record<string, string | undefined> } | undefined;\n\nexport interface AuthClientOpts {\n /** baseURL of your auth-bearing app. Falls back to window.location.origin or AUTH_URL. */\n baseURL?: string;\n}\n\nfunction resolveBaseURL(opts: AuthClientOpts = {}): string | undefined {\n if (opts.baseURL) return opts.baseURL;\n if (typeof window !== 'undefined') return window.location.origin;\n if (typeof process !== 'undefined') {\n return process.env?.['AUTH_URL'] ?? process.env?.['NEXTAUTH_URL'];\n }\n return undefined;\n}\n\nexport function createFoundryAuthClient(opts: AuthClientOpts = {}) {\n return createAuthClient({ baseURL: resolveBaseURL(opts) });\n}\n\nexport type FoundryAuthClient = ReturnType<typeof createFoundryAuthClient>;\n\nconst AuthClientContext = createContext<FoundryAuthClient | null>(null);\n\nexport interface AuthProviderProps extends AuthClientOpts {\n client?: FoundryAuthClient;\n children: ReactNode;\n}\n\n/**\n * Provides a single auth client instance to the React tree.\n * Pass an existing `client` to share with non-React code, or let the provider create one.\n */\nexport function AuthProvider({ client, children, ...opts }: AuthProviderProps) {\n const value = client ?? createFoundryAuthClient(opts);\n return createElement(AuthClientContext.Provider, { value }, children);\n}\n\nexport function useAuthClient(): FoundryAuthClient {\n const ctx = useContext(AuthClientContext);\n if (!ctx) {\n throw new Error('useAuthClient() called outside <AuthProvider>');\n }\n return ctx;\n}\n\n/**\n * Returns the current session via better-auth's useSession.\n */\nexport function useSession() {\n const client = useAuthClient();\n return client.useSession();\n}\n"],"mappings":";AAIA,SAAS,eAAe,eAAe,kBAAkC;AACzE,SAAS,wBAAwB;AASjC,SAAS,eAAe,OAAuB,CAAC,GAAuB;AACrE,MAAI,KAAK;AAAS,WAAO,KAAK;AAC9B,MAAI,OAAO,WAAW;AAAa,WAAO,OAAO,SAAS;AAC1D,MAAI,OAAO,YAAY,aAAa;AAClC,WAAO,QAAQ,MAAM,UAAU,KAAK,QAAQ,MAAM,cAAc;AAAA,EAClE;AACA,SAAO;AACT;AAEO,SAAS,wBAAwB,OAAuB,CAAC,GAAG;AACjE,SAAO,iBAAiB,EAAE,SAAS,eAAe,IAAI,EAAE,CAAC;AAC3D;AAIA,IAAM,oBAAoB,cAAwC,IAAI;AAW/D,SAAS,aAAa,EAAE,QAAQ,UAAU,GAAG,KAAK,GAAsB;AAC7E,QAAM,QAAQ,UAAU,wBAAwB,IAAI;AACpD,SAAO,cAAc,kBAAkB,UAAU,EAAE,MAAM,GAAG,QAAQ;AACtE;AAEO,SAAS,gBAAmC;AACjD,QAAM,MAAM,WAAW,iBAAiB;AACxC,MAAI,CAAC,KAAK;AACR,UAAM,IAAI,MAAM,+CAA+C;AAAA,EACjE;AACA,SAAO;AACT;AAKO,SAAS,aAAa;AAC3B,QAAM,SAAS,cAAc;AAC7B,SAAO,OAAO,WAAW;AAC3B;","names":[]}

package/dist/index.d.mts ADDED Viewed

@@ -0,0 +1,105 @@
+import * as better_auth from 'better-auth';
+/**
+ * Foundry auth defaults — applied by createAuth() before the user-supplied opts.
+ *
+ * The actual better-auth instance is constructed in `index.ts` (server) and
+ * `client.ts` (browser). This file isolates the defaults so they can be
+ * unit-tested without pulling in the full better-auth dependency tree.
+ */
+interface FoundryAuthOpts {
+    /** D1 binding from the Cloudflare context, e.g. env.DB. */
+    d1: unknown;
+    /** Drizzle schema for auth tables (user / session / account / verification). */
+    schema: Record<string, unknown>;
+    /** Optional secret. Reads BETTER_AUTH_SECRET / AUTH_SECRET if omitted. */
+    secret?: string;
+    /** Public base URL of your auth-bearing app. Reads AUTH_URL if omitted. */
+    baseURL?: string;
+    /** Google OAuth credentials. Reads GOOGLE_CLIENT_ID / SECRET if omitted. */
+    google?: {
+        clientId?: string;
+        clientSecret?: string;
+    };
+    /** Trusted redirect origins. */
+    trustedOrigins?: string[];
+    /** Override session cookie name. Defaults to 'foundry.session'. */
+    sessionCookieName?: string;
+    /** Set to 'production' to force secure cookies. Reads NODE_ENV otherwise. */
+    env?: 'development' | 'production' | 'test';
+}
+interface ResolvedAuthConfig {
+    secret: string;
+    baseURL: string;
+    socialProviders: {
+        google: {
+            clientId: string;
+            clientSecret: string;
+        };
+    };
+    trustedOrigins: string[];
+    advanced: {
+        cookies: {
+            session_token: {
+                name: string;
+                attributes: {
+                    secure: boolean;
+                    sameSite: 'lax';
+                    httpOnly: true;
+                };
+            };
+        };
+        crossSubDomainCookies: {
+            enabled: false;
+        };
+        useSecureCookies: boolean;
+    };
+}
+/**
+ * Resolves the Foundry auth defaults. Pure function — call this from createAuth()
+ * to get the config object, then pass it to betterAuth() with your `database`.
+ */
+declare function resolveAuthConfig(opts: FoundryAuthOpts): ResolvedAuthConfig;
+/**
+ * Create a Foundry-standard better-auth instance.
+ *
+ * @example
+ * ```ts
+ * import { createAuth } from '@saas-maker/auth-preset';
+ * import * as schema from './auth-schema';
+ *
+ * const auth = createAuth({ d1: env.DB, schema });
+ * ```
+ */
+declare function createAuth(opts: FoundryAuthOpts): better_auth.Auth<{
+    database: (options: better_auth.BetterAuthOptions) => better_auth.DBAdapter<better_auth.BetterAuthOptions>;
+    secret: string;
+    baseURL: string;
+    socialProviders: {
+        google: {
+            clientId: string;
+            clientSecret: string;
+        };
+    };
+    trustedOrigins: string[];
+    advanced: {
+        cookies: {
+            session_token: {
+                name: string;
+                attributes: {
+                    secure: boolean;
+                    sameSite: "lax";
+                    httpOnly: true;
+                };
+            };
+        };
+        crossSubDomainCookies: {
+            enabled: false;
+        };
+        useSecureCookies: boolean;
+    };
+}>;
+type FoundryAuth = ReturnType<typeof createAuth>;
+export { type FoundryAuth, type FoundryAuthOpts, type ResolvedAuthConfig, createAuth, resolveAuthConfig };

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,105 @@
+import * as better_auth from 'better-auth';
+/**
+ * Foundry auth defaults — applied by createAuth() before the user-supplied opts.
+ *
+ * The actual better-auth instance is constructed in `index.ts` (server) and
+ * `client.ts` (browser). This file isolates the defaults so they can be
+ * unit-tested without pulling in the full better-auth dependency tree.
+ */
+interface FoundryAuthOpts {
+    /** D1 binding from the Cloudflare context, e.g. env.DB. */
+    d1: unknown;
+    /** Drizzle schema for auth tables (user / session / account / verification). */
+    schema: Record<string, unknown>;
+    /** Optional secret. Reads BETTER_AUTH_SECRET / AUTH_SECRET if omitted. */
+    secret?: string;
+    /** Public base URL of your auth-bearing app. Reads AUTH_URL if omitted. */
+    baseURL?: string;
+    /** Google OAuth credentials. Reads GOOGLE_CLIENT_ID / SECRET if omitted. */
+    google?: {
+        clientId?: string;
+        clientSecret?: string;
+    };
+    /** Trusted redirect origins. */
+    trustedOrigins?: string[];
+    /** Override session cookie name. Defaults to 'foundry.session'. */
+    sessionCookieName?: string;
+    /** Set to 'production' to force secure cookies. Reads NODE_ENV otherwise. */
+    env?: 'development' | 'production' | 'test';
+}
+interface ResolvedAuthConfig {
+    secret: string;
+    baseURL: string;
+    socialProviders: {
+        google: {
+            clientId: string;
+            clientSecret: string;
+        };
+    };
+    trustedOrigins: string[];
+    advanced: {
+        cookies: {
+            session_token: {
+                name: string;
+                attributes: {
+                    secure: boolean;
+                    sameSite: 'lax';
+                    httpOnly: true;
+                };
+            };
+        };
+        crossSubDomainCookies: {
+            enabled: false;
+        };
+        useSecureCookies: boolean;
+    };
+}
+/**
+ * Resolves the Foundry auth defaults. Pure function — call this from createAuth()
+ * to get the config object, then pass it to betterAuth() with your `database`.
+ */
+declare function resolveAuthConfig(opts: FoundryAuthOpts): ResolvedAuthConfig;
+/**
+ * Create a Foundry-standard better-auth instance.
+ *
+ * @example
+ * ```ts
+ * import { createAuth } from '@saas-maker/auth-preset';
+ * import * as schema from './auth-schema';
+ *
+ * const auth = createAuth({ d1: env.DB, schema });
+ * ```
+ */
+declare function createAuth(opts: FoundryAuthOpts): better_auth.Auth<{
+    database: (options: better_auth.BetterAuthOptions) => better_auth.DBAdapter<better_auth.BetterAuthOptions>;
+    secret: string;
+    baseURL: string;
+    socialProviders: {
+        google: {
+            clientId: string;
+            clientSecret: string;
+        };
+    };
+    trustedOrigins: string[];
+    advanced: {
+        cookies: {
+            session_token: {
+                name: string;
+                attributes: {
+                    secure: boolean;
+                    sameSite: "lax";
+                    httpOnly: true;
+                };
+            };
+        };
+        crossSubDomainCookies: {
+            enabled: false;
+        };
+        useSecureCookies: boolean;
+    };
+}>;
+type FoundryAuth = ReturnType<typeof createAuth>;
+export { type FoundryAuth, type FoundryAuthOpts, type ResolvedAuthConfig, createAuth, resolveAuthConfig };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,92 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var src_exports = {};
+__export(src_exports, {
+  createAuth: () => createAuth,
+  resolveAuthConfig: () => resolveAuthConfig
+});
+module.exports = __toCommonJS(src_exports);
+var import_better_auth = require("better-auth");
+var import_drizzle = require("better-auth/adapters/drizzle");
+var import_d1 = require("drizzle-orm/d1");
+// src/config.ts
+function readEnv(key) {
+  if (typeof process === "undefined" || !process.env)
+    return void 0;
+  return process.env[key];
+}
+function resolveAuthConfig(opts) {
+  const secret = opts.secret ?? readEnv("BETTER_AUTH_SECRET") ?? readEnv("AUTH_SECRET");
+  if (!secret) {
+    throw new Error(
+      "[auth-preset] missing secret \u2014 set BETTER_AUTH_SECRET or pass `secret` to createAuth()"
+    );
+  }
+  const baseURL = opts.baseURL ?? readEnv("AUTH_URL") ?? readEnv("NEXTAUTH_URL") ?? readEnv("BETTER_AUTH_URL");
+  if (!baseURL) {
+    throw new Error(
+      "[auth-preset] missing baseURL \u2014 set AUTH_URL or pass `baseURL` to createAuth()"
+    );
+  }
+  const googleId = opts.google?.clientId ?? readEnv("GOOGLE_CLIENT_ID") ?? readEnv("AUTH_GOOGLE_ID") ?? "";
+  const googleSecret = opts.google?.clientSecret ?? readEnv("GOOGLE_CLIENT_SECRET") ?? readEnv("AUTH_GOOGLE_SECRET") ?? "";
+  const env = opts.env ?? readEnv("NODE_ENV") ?? "development";
+  const isProd = env === "production";
+  return {
+    secret,
+    baseURL,
+    socialProviders: {
+      google: { clientId: googleId, clientSecret: googleSecret }
+    },
+    trustedOrigins: opts.trustedOrigins ?? [baseURL],
+    advanced: {
+      cookies: {
+        session_token: {
+          name: opts.sessionCookieName ?? "foundry.session",
+          attributes: { secure: isProd, sameSite: "lax", httpOnly: true }
+        }
+      },
+      crossSubDomainCookies: { enabled: false },
+      useSecureCookies: isProd
+    }
+  };
+}
+// src/index.ts
+function createAuth(opts) {
+  const cfg = resolveAuthConfig(opts);
+  const db = (0, import_d1.drizzle)(opts.d1, { schema: opts.schema });
+  return (0, import_better_auth.betterAuth)({
+    database: (0, import_drizzle.drizzleAdapter)(db, { provider: "sqlite", schema: opts.schema }),
+    secret: cfg.secret,
+    baseURL: cfg.baseURL,
+    socialProviders: cfg.socialProviders,
+    trustedOrigins: cfg.trustedOrigins,
+    advanced: cfg.advanced
+  });
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  createAuth,
+  resolveAuthConfig
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/config.ts"],"sourcesContent":["/**\n * Server entrypoint — wires better-auth with Foundry defaults + D1 adapter.\n */\n\nimport { betterAuth } from 'better-auth';\nimport { drizzleAdapter } from 'better-auth/adapters/drizzle';\nimport { drizzle } from 'drizzle-orm/d1';\nimport { resolveAuthConfig, type FoundryAuthOpts } from './config.js';\n\nexport type { FoundryAuthOpts, ResolvedAuthConfig } from './config.js';\nexport { resolveAuthConfig } from './config.js';\n\n/**\n * Create a Foundry-standard better-auth instance.\n *\n * @example\n * ```ts\n * import { createAuth } from '@saas-maker/auth-preset';\n * import * as schema from './auth-schema';\n *\n * const auth = createAuth({ d1: env.DB, schema });\n * ```\n */\nexport function createAuth(opts: FoundryAuthOpts) {\n const cfg = resolveAuthConfig(opts);\n const db = drizzle(opts.d1 as Parameters<typeof drizzle>[0], { schema: opts.schema });\n\n return betterAuth({\n database: drizzleAdapter(db, { provider: 'sqlite', schema: opts.schema }),\n secret: cfg.secret,\n baseURL: cfg.baseURL,\n socialProviders: cfg.socialProviders,\n trustedOrigins: cfg.trustedOrigins,\n advanced: cfg.advanced,\n });\n}\n\nexport type FoundryAuth = ReturnType<typeof createAuth>;\n","/**\n * Foundry auth defaults — applied by createAuth() before the user-supplied opts.\n *\n * The actual better-auth instance is constructed in `index.ts` (server) and\n * `client.ts` (browser). This file isolates the defaults so they can be\n * unit-tested without pulling in the full better-auth dependency tree.\n */\n\ndeclare const process: { env?: Record<string, string | undefined> } | undefined;\n\nexport interface FoundryAuthOpts {\n /** D1 binding from the Cloudflare context, e.g. env.DB. */\n d1: unknown;\n /** Drizzle schema for auth tables (user / session / account / verification). */\n schema: Record<string, unknown>;\n /** Optional secret. Reads BETTER_AUTH_SECRET / AUTH_SECRET if omitted. */\n secret?: string;\n /** Public base URL of your auth-bearing app. Reads AUTH_URL if omitted. */\n baseURL?: string;\n /** Google OAuth credentials. Reads GOOGLE_CLIENT_ID / SECRET if omitted. */\n google?: { clientId?: string; clientSecret?: string };\n /** Trusted redirect origins. */\n trustedOrigins?: string[];\n /** Override session cookie name. Defaults to 'foundry.session'. */\n sessionCookieName?: string;\n /** Set to 'production' to force secure cookies. Reads NODE_ENV otherwise. */\n env?: 'development' | 'production' | 'test';\n}\n\nexport interface ResolvedAuthConfig {\n secret: string;\n baseURL: string;\n socialProviders: {\n google: { clientId: string; clientSecret: string };\n };\n trustedOrigins: string[];\n advanced: {\n cookies: {\n session_token: { name: string; attributes: { secure: boolean; sameSite: 'lax'; httpOnly: true } };\n };\n crossSubDomainCookies: { enabled: false };\n useSecureCookies: boolean;\n };\n}\n\nfunction readEnv(key: string): string | undefined {\n if (typeof process === 'undefined' || !process.env) return undefined;\n return process.env[key];\n}\n\n/**\n * Resolves the Foundry auth defaults. Pure function — call this from createAuth()\n * to get the config object, then pass it to betterAuth() with your `database`.\n */\nexport function resolveAuthConfig(opts: FoundryAuthOpts): ResolvedAuthConfig {\n const secret = opts.secret ?? readEnv('BETTER_AUTH_SECRET') ?? readEnv('AUTH_SECRET');\n if (!secret) {\n throw new Error(\n '[auth-preset] missing secret — set BETTER_AUTH_SECRET or pass `secret` to createAuth()',\n );\n }\n\n const baseURL =\n opts.baseURL ??\n readEnv('AUTH_URL') ??\n readEnv('NEXTAUTH_URL') ??\n readEnv('BETTER_AUTH_URL');\n if (!baseURL) {\n throw new Error(\n '[auth-preset] missing baseURL — set AUTH_URL or pass `baseURL` to createAuth()',\n );\n }\n\n const googleId =\n opts.google?.clientId ?? readEnv('GOOGLE_CLIENT_ID') ?? readEnv('AUTH_GOOGLE_ID') ?? '';\n const googleSecret =\n opts.google?.clientSecret ??\n readEnv('GOOGLE_CLIENT_SECRET') ??\n readEnv('AUTH_GOOGLE_SECRET') ??\n '';\n\n const env = opts.env ?? (readEnv('NODE_ENV') as FoundryAuthOpts['env']) ?? 'development';\n const isProd = env === 'production';\n\n return {\n secret,\n baseURL,\n socialProviders: {\n google: { clientId: googleId, clientSecret: googleSecret },\n },\n trustedOrigins: opts.trustedOrigins ?? [baseURL],\n advanced: {\n cookies: {\n session_token: {\n name: opts.sessionCookieName ?? 'foundry.session',\n attributes: { secure: isProd, sameSite: 'lax', httpOnly: true },\n },\n },\n crossSubDomainCookies: { enabled: false },\n useSecureCookies: isProd,\n },\n };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAIA,yBAA2B;AAC3B,qBAA+B;AAC/B,gBAAwB;;;ACuCxB,SAAS,QAAQ,KAAiC;AAChD,MAAI,OAAO,YAAY,eAAe,CAAC,QAAQ;AAAK,WAAO;AAC3D,SAAO,QAAQ,IAAI,GAAG;AACxB;AAMO,SAAS,kBAAkB,MAA2C;AAC3E,QAAM,SAAS,KAAK,UAAU,QAAQ,oBAAoB,KAAK,QAAQ,aAAa;AACpF,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AAEA,QAAM,UACJ,KAAK,WACL,QAAQ,UAAU,KAClB,QAAQ,cAAc,KACtB,QAAQ,iBAAiB;AAC3B,MAAI,CAAC,SAAS;AACZ,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AAEA,QAAM,WACJ,KAAK,QAAQ,YAAY,QAAQ,kBAAkB,KAAK,QAAQ,gBAAgB,KAAK;AACvF,QAAM,eACJ,KAAK,QAAQ,gBACb,QAAQ,sBAAsB,KAC9B,QAAQ,oBAAoB,KAC5B;AAEF,QAAM,MAAM,KAAK,OAAQ,QAAQ,UAAU,KAAgC;AAC3E,QAAM,SAAS,QAAQ;AAEvB,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA,iBAAiB;AAAA,MACf,QAAQ,EAAE,UAAU,UAAU,cAAc,aAAa;AAAA,IAC3D;AAAA,IACA,gBAAgB,KAAK,kBAAkB,CAAC,OAAO;AAAA,IAC/C,UAAU;AAAA,MACR,SAAS;AAAA,QACP,eAAe;AAAA,UACb,MAAM,KAAK,qBAAqB;AAAA,UAChC,YAAY,EAAE,QAAQ,QAAQ,UAAU,OAAO,UAAU,KAAK;AAAA,QAChE;AAAA,MACF;AAAA,MACA,uBAAuB,EAAE,SAAS,MAAM;AAAA,MACxC,kBAAkB;AAAA,IACpB;AAAA,EACF;AACF;;;AD/EO,SAAS,WAAW,MAAuB;AAChD,QAAM,MAAM,kBAAkB,IAAI;AAClC,QAAM,SAAK,mBAAQ,KAAK,IAAqC,EAAE,QAAQ,KAAK,OAAO,CAAC;AAEpF,aAAO,+BAAW;AAAA,IAChB,cAAU,+BAAe,IAAI,EAAE,UAAU,UAAU,QAAQ,KAAK,OAAO,CAAC;AAAA,IACxE,QAAQ,IAAI;AAAA,IACZ,SAAS,IAAI;AAAA,IACb,iBAAiB,IAAI;AAAA,IACrB,gBAAgB,IAAI;AAAA,IACpB,UAAU,IAAI;AAAA,EAChB,CAAC;AACH;","names":[]}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,66 @@
+// src/index.ts
+import { betterAuth } from "better-auth";
+import { drizzleAdapter } from "better-auth/adapters/drizzle";
+import { drizzle } from "drizzle-orm/d1";
+// src/config.ts
+function readEnv(key) {
+  if (typeof process === "undefined" || !process.env)
+    return void 0;
+  return process.env[key];
+}
+function resolveAuthConfig(opts) {
+  const secret = opts.secret ?? readEnv("BETTER_AUTH_SECRET") ?? readEnv("AUTH_SECRET");
+  if (!secret) {
+    throw new Error(
+      "[auth-preset] missing secret \u2014 set BETTER_AUTH_SECRET or pass `secret` to createAuth()"
+    );
+  }
+  const baseURL = opts.baseURL ?? readEnv("AUTH_URL") ?? readEnv("NEXTAUTH_URL") ?? readEnv("BETTER_AUTH_URL");
+  if (!baseURL) {
+    throw new Error(
+      "[auth-preset] missing baseURL \u2014 set AUTH_URL or pass `baseURL` to createAuth()"
+    );
+  }
+  const googleId = opts.google?.clientId ?? readEnv("GOOGLE_CLIENT_ID") ?? readEnv("AUTH_GOOGLE_ID") ?? "";
+  const googleSecret = opts.google?.clientSecret ?? readEnv("GOOGLE_CLIENT_SECRET") ?? readEnv("AUTH_GOOGLE_SECRET") ?? "";
+  const env = opts.env ?? readEnv("NODE_ENV") ?? "development";
+  const isProd = env === "production";
+  return {
+    secret,
+    baseURL,
+    socialProviders: {
+      google: { clientId: googleId, clientSecret: googleSecret }
+    },
+    trustedOrigins: opts.trustedOrigins ?? [baseURL],
+    advanced: {
+      cookies: {
+        session_token: {
+          name: opts.sessionCookieName ?? "foundry.session",
+          attributes: { secure: isProd, sameSite: "lax", httpOnly: true }
+        }
+      },
+      crossSubDomainCookies: { enabled: false },
+      useSecureCookies: isProd
+    }
+  };
+}
+// src/index.ts
+function createAuth(opts) {
+  const cfg = resolveAuthConfig(opts);
+  const db = drizzle(opts.d1, { schema: opts.schema });
+  return betterAuth({
+    database: drizzleAdapter(db, { provider: "sqlite", schema: opts.schema }),
+    secret: cfg.secret,
+    baseURL: cfg.baseURL,
+    socialProviders: cfg.socialProviders,
+    trustedOrigins: cfg.trustedOrigins,
+    advanced: cfg.advanced
+  });
+}
+export {
+  createAuth,
+  resolveAuthConfig
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/config.ts"],"sourcesContent":["/**\n * Server entrypoint — wires better-auth with Foundry defaults + D1 adapter.\n */\n\nimport { betterAuth } from 'better-auth';\nimport { drizzleAdapter } from 'better-auth/adapters/drizzle';\nimport { drizzle } from 'drizzle-orm/d1';\nimport { resolveAuthConfig, type FoundryAuthOpts } from './config.js';\n\nexport type { FoundryAuthOpts, ResolvedAuthConfig } from './config.js';\nexport { resolveAuthConfig } from './config.js';\n\n/**\n * Create a Foundry-standard better-auth instance.\n *\n * @example\n * ```ts\n * import { createAuth } from '@saas-maker/auth-preset';\n * import * as schema from './auth-schema';\n *\n * const auth = createAuth({ d1: env.DB, schema });\n * ```\n */\nexport function createAuth(opts: FoundryAuthOpts) {\n const cfg = resolveAuthConfig(opts);\n const db = drizzle(opts.d1 as Parameters<typeof drizzle>[0], { schema: opts.schema });\n\n return betterAuth({\n database: drizzleAdapter(db, { provider: 'sqlite', schema: opts.schema }),\n secret: cfg.secret,\n baseURL: cfg.baseURL,\n socialProviders: cfg.socialProviders,\n trustedOrigins: cfg.trustedOrigins,\n advanced: cfg.advanced,\n });\n}\n\nexport type FoundryAuth = ReturnType<typeof createAuth>;\n","/**\n * Foundry auth defaults — applied by createAuth() before the user-supplied opts.\n *\n * The actual better-auth instance is constructed in `index.ts` (server) and\n * `client.ts` (browser). This file isolates the defaults so they can be\n * unit-tested without pulling in the full better-auth dependency tree.\n */\n\ndeclare const process: { env?: Record<string, string | undefined> } | undefined;\n\nexport interface FoundryAuthOpts {\n /** D1 binding from the Cloudflare context, e.g. env.DB. */\n d1: unknown;\n /** Drizzle schema for auth tables (user / session / account / verification). */\n schema: Record<string, unknown>;\n /** Optional secret. Reads BETTER_AUTH_SECRET / AUTH_SECRET if omitted. */\n secret?: string;\n /** Public base URL of your auth-bearing app. Reads AUTH_URL if omitted. */\n baseURL?: string;\n /** Google OAuth credentials. Reads GOOGLE_CLIENT_ID / SECRET if omitted. */\n google?: { clientId?: string; clientSecret?: string };\n /** Trusted redirect origins. */\n trustedOrigins?: string[];\n /** Override session cookie name. Defaults to 'foundry.session'. */\n sessionCookieName?: string;\n /** Set to 'production' to force secure cookies. Reads NODE_ENV otherwise. */\n env?: 'development' | 'production' | 'test';\n}\n\nexport interface ResolvedAuthConfig {\n secret: string;\n baseURL: string;\n socialProviders: {\n google: { clientId: string; clientSecret: string };\n };\n trustedOrigins: string[];\n advanced: {\n cookies: {\n session_token: { name: string; attributes: { secure: boolean; sameSite: 'lax'; httpOnly: true } };\n };\n crossSubDomainCookies: { enabled: false };\n useSecureCookies: boolean;\n };\n}\n\nfunction readEnv(key: string): string | undefined {\n if (typeof process === 'undefined' || !process.env) return undefined;\n return process.env[key];\n}\n\n/**\n * Resolves the Foundry auth defaults. Pure function — call this from createAuth()\n * to get the config object, then pass it to betterAuth() with your `database`.\n */\nexport function resolveAuthConfig(opts: FoundryAuthOpts): ResolvedAuthConfig {\n const secret = opts.secret ?? readEnv('BETTER_AUTH_SECRET') ?? readEnv('AUTH_SECRET');\n if (!secret) {\n throw new Error(\n '[auth-preset] missing secret — set BETTER_AUTH_SECRET or pass `secret` to createAuth()',\n );\n }\n\n const baseURL =\n opts.baseURL ??\n readEnv('AUTH_URL') ??\n readEnv('NEXTAUTH_URL') ??\n readEnv('BETTER_AUTH_URL');\n if (!baseURL) {\n throw new Error(\n '[auth-preset] missing baseURL — set AUTH_URL or pass `baseURL` to createAuth()',\n );\n }\n\n const googleId =\n opts.google?.clientId ?? readEnv('GOOGLE_CLIENT_ID') ?? readEnv('AUTH_GOOGLE_ID') ?? '';\n const googleSecret =\n opts.google?.clientSecret ??\n readEnv('GOOGLE_CLIENT_SECRET') ??\n readEnv('AUTH_GOOGLE_SECRET') ??\n '';\n\n const env = opts.env ?? (readEnv('NODE_ENV') as FoundryAuthOpts['env']) ?? 'development';\n const isProd = env === 'production';\n\n return {\n secret,\n baseURL,\n socialProviders: {\n google: { clientId: googleId, clientSecret: googleSecret },\n },\n trustedOrigins: opts.trustedOrigins ?? [baseURL],\n advanced: {\n cookies: {\n session_token: {\n name: opts.sessionCookieName ?? 'foundry.session',\n attributes: { secure: isProd, sameSite: 'lax', httpOnly: true },\n },\n },\n crossSubDomainCookies: { enabled: false },\n useSecureCookies: isProd,\n },\n };\n}\n"],"mappings":";AAIA,SAAS,kBAAkB;AAC3B,SAAS,sBAAsB;AAC/B,SAAS,eAAe;;;ACuCxB,SAAS,QAAQ,KAAiC;AAChD,MAAI,OAAO,YAAY,eAAe,CAAC,QAAQ;AAAK,WAAO;AAC3D,SAAO,QAAQ,IAAI,GAAG;AACxB;AAMO,SAAS,kBAAkB,MAA2C;AAC3E,QAAM,SAAS,KAAK,UAAU,QAAQ,oBAAoB,KAAK,QAAQ,aAAa;AACpF,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AAEA,QAAM,UACJ,KAAK,WACL,QAAQ,UAAU,KAClB,QAAQ,cAAc,KACtB,QAAQ,iBAAiB;AAC3B,MAAI,CAAC,SAAS;AACZ,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AAEA,QAAM,WACJ,KAAK,QAAQ,YAAY,QAAQ,kBAAkB,KAAK,QAAQ,gBAAgB,KAAK;AACvF,QAAM,eACJ,KAAK,QAAQ,gBACb,QAAQ,sBAAsB,KAC9B,QAAQ,oBAAoB,KAC5B;AAEF,QAAM,MAAM,KAAK,OAAQ,QAAQ,UAAU,KAAgC;AAC3E,QAAM,SAAS,QAAQ;AAEvB,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA,iBAAiB;AAAA,MACf,QAAQ,EAAE,UAAU,UAAU,cAAc,aAAa;AAAA,IAC3D;AAAA,IACA,gBAAgB,KAAK,kBAAkB,CAAC,OAAO;AAAA,IAC/C,UAAU;AAAA,MACR,SAAS;AAAA,QACP,eAAe;AAAA,UACb,MAAM,KAAK,qBAAqB;AAAA,UAChC,YAAY,EAAE,QAAQ,QAAQ,UAAU,OAAO,UAAU,KAAK;AAAA,QAChE;AAAA,MACF;AAAA,MACA,uBAAuB,EAAE,SAAS,MAAM;AAAA,MACxC,kBAAkB;AAAA,IACpB;AAAA,EACF;AACF;;;AD/EO,SAAS,WAAW,MAAuB;AAChD,QAAM,MAAM,kBAAkB,IAAI;AAClC,QAAM,KAAK,QAAQ,KAAK,IAAqC,EAAE,QAAQ,KAAK,OAAO,CAAC;AAEpF,SAAO,WAAW;AAAA,IAChB,UAAU,eAAe,IAAI,EAAE,UAAU,UAAU,QAAQ,KAAK,OAAO,CAAC;AAAA,IACxE,QAAQ,IAAI;AAAA,IACZ,SAAS,IAAI;AAAA,IACb,iBAAiB,IAAI;AAAA,IACrB,gBAAgB,IAAI;AAAA,IACpB,UAAU,IAAI;AAAA,EAChB,CAAC;AACH;","names":[]}

package/dist/next.d.mts ADDED Viewed

@@ -0,0 +1,25 @@
+import { FoundryAuth } from './index.mjs';
+import 'better-auth';
+/**
+ * Next.js App Router route handler glue.
+ *
+ * Usage:
+ * ```ts
+ * // app/api/auth/[...all]/route.ts
+ * import { createAuth } from '@saas-maker/auth-preset';
+ * import { toNextHandler } from '@saas-maker/auth-preset/next';
+ * import * as schema from '@/lib/auth-schema';
+ *
+ * const auth = createAuth({ d1: env.DB, schema });
+ * export const { GET, POST } = toNextHandler(auth);
+ * ```
+ */
+type WebHandler = (req: Request) => Promise<Response> | Response;
+declare function toNextHandler(auth: FoundryAuth): {
+    GET: WebHandler;
+    POST: WebHandler;
+};
+export { toNextHandler };

package/dist/next.d.ts ADDED Viewed

@@ -0,0 +1,25 @@
+import { FoundryAuth } from './index.js';
+import 'better-auth';
+/**
+ * Next.js App Router route handler glue.
+ *
+ * Usage:
+ * ```ts
+ * // app/api/auth/[...all]/route.ts
+ * import { createAuth } from '@saas-maker/auth-preset';
+ * import { toNextHandler } from '@saas-maker/auth-preset/next';
+ * import * as schema from '@/lib/auth-schema';
+ *
+ * const auth = createAuth({ d1: env.DB, schema });
+ * export const { GET, POST } = toNextHandler(auth);
+ * ```
+ */
+type WebHandler = (req: Request) => Promise<Response> | Response;
+declare function toNextHandler(auth: FoundryAuth): {
+    GET: WebHandler;
+    POST: WebHandler;
+};
+export { toNextHandler };

package/dist/next.js ADDED Viewed

@@ -0,0 +1,34 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/next.ts
+var next_exports = {};
+__export(next_exports, {
+  toNextHandler: () => toNextHandler
+});
+module.exports = __toCommonJS(next_exports);
+function toNextHandler(auth) {
+  const handler = (req) => auth.handler(req);
+  return { GET: handler, POST: handler };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  toNextHandler
+});
+//# sourceMappingURL=next.js.map

package/dist/next.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/next.ts"],"sourcesContent":["/**\n * Next.js App Router route handler glue.\n *\n * Usage:\n * ```ts\n * // app/api/auth/[...all]/route.ts\n * import { createAuth } from '@saas-maker/auth-preset';\n * import { toNextHandler } from '@saas-maker/auth-preset/next';\n * import * as schema from '@/lib/auth-schema';\n *\n * const auth = createAuth({ d1: env.DB, schema });\n * export const { GET, POST } = toNextHandler(auth);\n * ```\n */\n\nimport type { FoundryAuth } from './index.js';\n\ntype WebHandler = (req: Request) => Promise<Response> | Response;\n\nexport function toNextHandler(auth: FoundryAuth): { GET: WebHandler; POST: WebHandler } {\n // better-auth exposes a `handler` Web-fetch-style function.\n const handler: WebHandler = (req: Request) => auth.handler(req);\n return { GET: handler, POST: handler };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAmBO,SAAS,cAAc,MAA0D;AAEtF,QAAM,UAAsB,CAAC,QAAiB,KAAK,QAAQ,GAAG;AAC9D,SAAO,EAAE,KAAK,SAAS,MAAM,QAAQ;AACvC;","names":[]}

package/dist/next.mjs ADDED Viewed

@@ -0,0 +1,9 @@
+// src/next.ts
+function toNextHandler(auth) {
+  const handler = (req) => auth.handler(req);
+  return { GET: handler, POST: handler };
+}
+export {
+  toNextHandler
+};
+//# sourceMappingURL=next.mjs.map

package/dist/next.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/next.ts"],"sourcesContent":["/**\n * Next.js App Router route handler glue.\n *\n * Usage:\n * ```ts\n * // app/api/auth/[...all]/route.ts\n * import { createAuth } from '@saas-maker/auth-preset';\n * import { toNextHandler } from '@saas-maker/auth-preset/next';\n * import * as schema from '@/lib/auth-schema';\n *\n * const auth = createAuth({ d1: env.DB, schema });\n * export const { GET, POST } = toNextHandler(auth);\n * ```\n */\n\nimport type { FoundryAuth } from './index.js';\n\ntype WebHandler = (req: Request) => Promise<Response> | Response;\n\nexport function toNextHandler(auth: FoundryAuth): { GET: WebHandler; POST: WebHandler } {\n // better-auth exposes a `handler` Web-fetch-style function.\n const handler: WebHandler = (req: Request) => auth.handler(req);\n return { GET: handler, POST: handler };\n}\n"],"mappings":";AAmBO,SAAS,cAAc,MAA0D;AAEtF,QAAM,UAAsB,CAAC,QAAiB,KAAK,QAAQ,GAAG;AAC9D,SAAO,EAAE,KAAK,SAAS,MAAM,QAAQ;AACvC;","names":[]}