@sentropic/auth-ui 0.2.0

package/dist/transport-types.d.ts

@@ -0,0 +1,77 @@
+import type { AuthenticationResponseJSON, PublicKeyCredentialCreationOptionsJSON, PublicKeyCredentialRequestOptionsJSON, RegistrationResponseJSON } from '@simplewebauthn/browser';
+import type { AuthUiCredential, AuthUiResult, AuthUiSession } from './types.js';
+export interface RequestEmailCodeInput {
+    email: string;
+}
+export interface RequestEmailCodeResult {
+    delivery: 'email' | 'magic_link' | string;
+    expiresAt?: string;
+}
+export interface VerifyEmailCodeInput {
+    email: string;
+    code: string;
+}
+export interface VerifyEmailCodeResult {
+    verificationToken: string;
+}
+export interface VerifyMagicLinkInput {
+    token: string;
+}
+export interface CreatePasskeyRegistrationOptionsInput {
+    email: string;
+    verificationToken: string;
+    deviceName?: string;
+}
+export interface CreatePasskeyRegistrationOptionsResult {
+    userId: string;
+    options: PublicKeyCredentialCreationOptionsJSON;
+}
+export interface VerifyPasskeyRegistrationInput {
+    email: string;
+    verificationToken: string;
+    userId: string;
+    credential: RegistrationResponseJSON;
+    deviceName?: string;
+}
+export interface CreatePasskeyAuthenticationOptionsInput {
+    email?: string;
+}
+export interface CreatePasskeyAuthenticationOptionsResult {
+    options: PublicKeyCredentialRequestOptionsJSON;
+}
+export interface VerifyPasskeyAuthenticationInput {
+    credential: AuthenticationResponseJSON;
+}
+export interface RenameCredentialInput {
+    credentialId: string;
+    deviceName: string;
+}
+export interface RevokeCredentialInput {
+    credentialId: string;
+}
+export interface ListCredentialsResult {
+    credentials: AuthUiCredential[];
+}
+export interface ApproveDevicePairingInput {
+    userCode: string;
+    deviceName?: string;
+}
+export interface ApproveDevicePairingResult {
+    deviceName?: string;
+}
+export interface AuthUiTransport {
+    requestEmailCode(input: RequestEmailCodeInput): Promise<AuthUiResult<RequestEmailCodeResult>>;
+    verifyEmailCode(input: VerifyEmailCodeInput): Promise<AuthUiResult<VerifyEmailCodeResult>>;
+    verifyMagicLink(input: VerifyMagicLinkInput): Promise<AuthUiResult<AuthUiSession>>;
+    createPasskeyRegistrationOptions(input: CreatePasskeyRegistrationOptionsInput): Promise<AuthUiResult<CreatePasskeyRegistrationOptionsResult>>;
+    verifyPasskeyRegistration(input: VerifyPasskeyRegistrationInput): Promise<AuthUiResult<AuthUiSession>>;
+    createPasskeyAuthenticationOptions(input: CreatePasskeyAuthenticationOptionsInput): Promise<AuthUiResult<CreatePasskeyAuthenticationOptionsResult>>;
+    verifyPasskeyAuthentication(input: VerifyPasskeyAuthenticationInput): Promise<AuthUiResult<AuthUiSession>>;
+    refreshSession(): Promise<AuthUiResult<AuthUiSession>>;
+    logout(): Promise<AuthUiResult<void>>;
+    listCredentials(): Promise<AuthUiResult<ListCredentialsResult>>;
+    renameCredential(input: RenameCredentialInput): Promise<AuthUiResult<AuthUiCredential>>;
+    revokeCredential(input: RevokeCredentialInput): Promise<AuthUiResult<void>>;
+    approveDevicePairing(input: ApproveDevicePairingInput): Promise<AuthUiResult<ApproveDevicePairingResult>>;
+}
+//# sourceMappingURL=transport-types.d.ts.map

package/dist/transport-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"transport-types.d.ts","sourceRoot":"","sources":["../src/transport-types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,0BAA0B,EAC1B,sCAAsC,EACtC,qCAAqC,EACrC,wBAAwB,EACzB,MAAM,yBAAyB,CAAC;AAEjC,OAAO,KAAK,EAAE,gBAAgB,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAEhF,MAAM,WAAW,qBAAqB;IACpC,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,sBAAsB;IACrC,QAAQ,EAAE,OAAO,GAAG,YAAY,GAAG,MAAM,CAAC;IAC1C,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,oBAAoB;IACnC,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,qBAAqB;IACpC,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AAED,MAAM,WAAW,oBAAoB;IACnC,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,qCAAqC;IACpD,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB,EAAE,MAAM,CAAC;IAC1B,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,sCAAsC;IACrD,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,sCAAsC,CAAC;CACjD;AAED,MAAM,WAAW,8BAA8B;IAC7C,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB,EAAE,MAAM,CAAC;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,wBAAwB,CAAC;IACrC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,uCAAuC;IACtD,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,wCAAwC;IACvD,OAAO,EAAE,qCAAqC,CAAC;CAChD;AAED,MAAM,WAAW,gCAAgC;IAC/C,UAAU,EAAE,0BAA0B,CAAC;CACxC;AAED,MAAM,WAAW,qBAAqB;IACpC,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,qBAAqB;IACpC,WAAW,EAAE,gBAAgB,EAAE,CAAC;CACjC;AAED,MAAM,WAAW,yBAAyB;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,0BAA0B;IACzC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,eAAe;IAC9B,gBAAgB,CAAC,KAAK,EAAE,qBAAqB,GAAG,OAAO,CAAC,YAAY,CAAC,sBAAsB,CAAC,CAAC,CAAC;IAC9F,eAAe,CAAC,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAC,YAAY,CAAC,qBAAqB,CAAC,CAAC,CAAC;IAC3F,eAAe,CAAC,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC,CAAC;IACnF,gCAAgC,CAC9B,KAAK,EAAE,qCAAqC,GAC3C,OAAO,CAAC,YAAY,CAAC,sCAAsC,CAAC,CAAC,CAAC;IACjE,yBAAyB,CAAC,KAAK,EAAE,8BAA8B,GAAG,OAAO,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC,CAAC;IACvG,kCAAkC,CAChC,KAAK,EAAE,uCAAuC,GAC7C,OAAO,CAAC,YAAY,CAAC,wCAAwC,CAAC,CAAC,CAAC;IACnE,2BAA2B,CAAC,KAAK,EAAE,gCAAgC,GAAG,OAAO,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC,CAAC;IAC3G,cAAc,IAAI,OAAO,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC,CAAC;IACvD,MAAM,IAAI,OAAO,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC;IACtC,eAAe,IAAI,OAAO,CAAC,YAAY,CAAC,qBAAqB,CAAC,CAAC,CAAC;IAChE,gBAAgB,CAAC,KAAK,EAAE,qBAAqB,GAAG,OAAO,CAAC,YAAY,CAAC,gBAAgB,CAAC,CAAC,CAAC;IACxF,gBAAgB,CAAC,KAAK,EAAE,qBAAqB,GAAG,OAAO,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC;IAC5E,oBAAoB,CAClB,KAAK,EAAE,yBAAyB,GAC/B,OAAO,CAAC,YAAY,CAAC,0BAA0B,CAAC,CAAC,CAAC;CACtD"}

package/dist/transport-types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=transport-types.js.map

package/dist/transport-types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"transport-types.js","sourceRoot":"","sources":["../src/transport-types.ts"],"names":[],"mappings":""}

package/dist/transport.d.ts

@@ -0,0 +1,3 @@
+import type { AuthUiTransport } from './transport-types.js';
+export declare const assertAuthUiTransport: (candidate: unknown) => AuthUiTransport;
+//# sourceMappingURL=transport.d.ts.map

package/dist/transport.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"transport.d.ts","sourceRoot":"","sources":["../src/transport.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAE5D,eAAO,MAAM,qBAAqB,cAAe,OAAO,KAAG,eA6B1D,CAAC"}

package/dist/transport.js

@@ -0,0 +1,29 @@
+import { createAuthUiError } from './errors.js';
+export const assertAuthUiTransport = (candidate) => {
+    const requiredMethods = [
+        'requestEmailCode',
+        'verifyEmailCode',
+        'verifyMagicLink',
+        'createPasskeyRegistrationOptions',
+        'verifyPasskeyRegistration',
+        'createPasskeyAuthenticationOptions',
+        'verifyPasskeyAuthentication',
+        'refreshSession',
+        'logout',
+        'listCredentials',
+        'renameCredential',
+        'revokeCredential',
+        'approveDevicePairing',
+    ];
+    if (!candidate || typeof candidate !== 'object') {
+        throw createAuthUiError('invalid_input', 'Auth UI transport must be an object');
+    }
+    const record = candidate;
+    for (const method of requiredMethods) {
+        if (typeof record[method] !== 'function') {
+            throw createAuthUiError('invalid_input', `Auth UI transport is missing method ${method}`);
+        }
+    }
+    return candidate;
+};
+//# sourceMappingURL=transport.js.map

package/dist/transport.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"transport.js","sourceRoot":"","sources":["../src/transport.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAGhD,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,SAAkB,EAAmB,EAAE;IAC3E,MAAM,eAAe,GAAiC;QACpD,kBAAkB;QAClB,iBAAiB;QACjB,iBAAiB;QACjB,kCAAkC;QAClC,2BAA2B;QAC3B,oCAAoC;QACpC,6BAA6B;QAC7B,gBAAgB;QAChB,QAAQ;QACR,iBAAiB;QACjB,kBAAkB;QAClB,kBAAkB;QAClB,sBAAsB;KACvB,CAAC;IAEF,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QAChD,MAAM,iBAAiB,CAAC,eAAe,EAAE,qCAAqC,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,MAAM,GAAG,SAAoC,CAAC;IACpD,KAAK,MAAM,MAAM,IAAI,eAAe,EAAE,CAAC;QACrC,IAAI,OAAO,MAAM,CAAC,MAAM,CAAC,KAAK,UAAU,EAAE,CAAC;YACzC,MAAM,iBAAiB,CAAC,eAAe,EAAE,uCAAuC,MAAM,EAAE,CAAC,CAAC;QAC5F,CAAC;IACH,CAAC;IAED,OAAO,SAA4B,CAAC;AACtC,CAAC,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,137 @@
+export type AuthUiErrorCode = 'invalid_input' | 'transport_error' | 'email_code_invalid' | 'magic_link_invalid' | 'passkey_cancelled' | 'passkey_already_registered' | 'passkey_no_matching_authenticator' | 'passkey_not_supported' | 'passkey_registration_failed' | 'passkey_authentication_failed' | 'credential_not_found' | 'unknown';
+export interface AuthUiError extends Error {
+    readonly name: 'AuthUiError';
+    readonly code: AuthUiErrorCode;
+    readonly retryable: boolean;
+    readonly cause?: unknown;
+}
+export type AuthUiResult<T> = {
+    ok: true;
+    value: T;
+} | {
+    ok: false;
+    error: AuthUiError;
+};
+export interface AuthUiUser {
+    id: string;
+    email: string;
+    displayName?: string | null;
+    role?: string | null;
+}
+export interface AuthUiSession {
+    user: AuthUiUser;
+    sessionToken?: string;
+    refreshToken?: string;
+    expiresAt?: string;
+}
+export interface AuthUiCredential {
+    id: string;
+    credentialId: string;
+    deviceName: string;
+    uv: boolean;
+    createdAt: string;
+    lastUsedAt: string | null;
+}
+export interface AuthUiNavigation {
+    navigate(to: string): void | Promise<void>;
+    buildLoginHref?(returnUrl?: string): string;
+    buildRegisterHref?(returnUrl?: string): string;
+    buildDevicesHref?(): string;
+}
+export interface AuthUiSessionCallbacks {
+    onSession?(session: AuthUiSession): void | Promise<void>;
+    onLogout?(): void | Promise<void>;
+    onError?(error: AuthUiError): void | Promise<void>;
+}
+export interface AuthUiBranding {
+    productName?: string;
+    logoUrl?: string;
+    logoAlt?: string;
+    primaryColor?: string;
+    accentColor?: string;
+}
+export interface AuthUiLabels {
+    loading: string;
+    save: string;
+    cancel: string;
+    emailPlaceholder: string;
+    webauthnRegisterNotice: string;
+    verifyInProgress: string;
+    redirectingDashboard: string;
+    registerDeviceNow: string;
+    loginTitle: string;
+    loginSupportedHint: string;
+    loginUnavailable: string;
+    loginUnsupportedBrowser: string;
+    loginButton: string;
+    loginButtonLoading: string;
+    loginLostDevice: string;
+    loginLostDeviceTitle: string;
+    loginNoAccount: string;
+    loginRegisterNewDevice: string;
+    loginBackToLogin: string;
+    registerTitle: string;
+    registerSubtitle: string;
+    registerUnsupportedBrowserTitle: string;
+    registerUnsupportedBrowser: string;
+    registerEmailLabel: string;
+    registerGetCode: string;
+    registerSendingCode: string;
+    registerAlreadyHaveAccount: string;
+    registerCodeLabel: string;
+    registerCodeHelp: string;
+    registerVerifyCode: string;
+    registerVerifyingCode: string;
+    registerChangeEmail: string;
+    registerCodeVerifiedTitle: string;
+    registerPasskeyButton: string;
+    registerRegistering: string;
+    registerSuccessTitle: string;
+    registerSuccessCodeSent: string;
+    registerSuccessRedirecting: string;
+    registerErrorInvalidEmail: string;
+    registerErrorSendCode: string;
+    magicLinkTitle: string;
+    magicLinkVerifying: string;
+    magicLinkSuccess: string;
+    magicLinkSuccessTitle: string;
+    magicLinkErrorTitle: string;
+    magicLinkBackToLogin: string;
+    magicLinkErrorMissingToken: string;
+    magicLinkErrorVerifyFailed: string;
+    devicesTitle: string;
+    devicesSubtitle: string;
+    devicesEmpty: string;
+    devicesRegister: string;
+    devicesAddNew: string;
+    devicesRename: string;
+    devicesRevoke: string;
+    devicesUvEnabled: string;
+    devicesAddedOn: string;
+    devicesLastUsed: string;
+    devicesConfirmRevoke: string;
+    devicesErrorLoad: string;
+    devicesErrorUpdate: string;
+    devicesErrorRevoke: string;
+    devicePairTitle: string;
+    devicePairSubtitle: string;
+    devicePairCodeLabel: string;
+    devicePairCodePlaceholder: string;
+    devicePairDeviceNameLabel: string;
+    devicePairDeviceNamePlaceholder: string;
+    devicePairConfirm: string;
+    devicePairConfirming: string;
+    devicePairSuccess: string;
+    devicePairBack: string;
+    devicePairErrorCodeRequired: string;
+    devicePairErrorNotFound: string;
+    devicePairErrorGeneric: string;
+    passkeyNotSupported: string;
+    passkeyCancelled: string;
+    passkeyAlreadyRegistered: string;
+    passkeyNoMatchingAuthenticator: string;
+    passkeyAuthenticatorNotSupported: string;
+    passkeyRegistrationCancelled: string;
+    passkeyAuthenticationCancelled: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,eAAe,GACvB,eAAe,GACf,iBAAiB,GACjB,oBAAoB,GACpB,oBAAoB,GACpB,mBAAmB,GACnB,4BAA4B,GAC5B,mCAAmC,GACnC,uBAAuB,GACvB,6BAA6B,GAC7B,+BAA+B,GAC/B,sBAAsB,GACtB,SAAS,CAAC;AAEd,MAAM,WAAW,WAAY,SAAQ,KAAK;IACxC,QAAQ,CAAC,IAAI,EAAE,aAAa,CAAC;IAC7B,QAAQ,CAAC,IAAI,EAAE,eAAe,CAAC;IAC/B,QAAQ,CAAC,SAAS,EAAE,OAAO,CAAC;IAC5B,QAAQ,CAAC,KAAK,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,MAAM,MAAM,YAAY,CAAC,CAAC,IACtB;IAAE,EAAE,EAAE,IAAI,CAAC;IAAC,KAAK,EAAE,CAAC,CAAA;CAAE,GACtB;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,KAAK,EAAE,WAAW,CAAA;CAAE,CAAC;AAEtC,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACtB;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,UAAU,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,EAAE,EAAE,OAAO,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3C,cAAc,CAAC,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC5C,iBAAiB,CAAC,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC/C,gBAAgB,CAAC,IAAI,MAAM,CAAC;CAC7B;AAED,MAAM,WAAW,sBAAsB;IACrC,SAAS,CAAC,CAAC,OAAO,EAAE,aAAa,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACzD,QAAQ,CAAC,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAClC,OAAO,CAAC,CAAC,KAAK,EAAE,WAAW,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACpD;AAED,MAAM,WAAW,cAAc;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB,EAAE,MAAM,CAAC;IACzB,sBAAsB,EAAE,MAAM,CAAC;IAC/B,gBAAgB,EAAE,MAAM,CAAC;IACzB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,gBAAgB,EAAE,MAAM,CAAC;IACzB,uBAAuB,EAAE,MAAM,CAAC;IAChC,WAAW,EAAE,MAAM,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,eAAe,EAAE,MAAM,CAAC;IACxB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,cAAc,EAAE,MAAM,CAAC;IACvB,sBAAsB,EAAE,MAAM,CAAC;IAC/B,gBAAgB,EAAE,MAAM,CAAC;IACzB,aAAa,EAAE,MAAM,CAAC;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,+BAA+B,EAAE,MAAM,CAAC;IACxC,0BAA0B,EAAE,MAAM,CAAC;IACnC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,eAAe,EAAE,MAAM,CAAC;IACxB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,0BAA0B,EAAE,MAAM,CAAC;IACnC,iBAAiB,EAAE,MAAM,CAAC;IAC1B,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,qBAAqB,EAAE,MAAM,CAAC;IAC9B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,yBAAyB,EAAE,MAAM,CAAC;IAClC,qBAAqB,EAAE,MAAM,CAAC;IAC9B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,uBAAuB,EAAE,MAAM,CAAC;IAChC,0BAA0B,EAAE,MAAM,CAAC;IACnC,yBAAyB,EAAE,MAAM,CAAC;IAClC,qBAAqB,EAAE,MAAM,CAAC;IAC9B,cAAc,EAAE,MAAM,CAAC;IACvB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,gBAAgB,EAAE,MAAM,CAAC;IACzB,qBAAqB,EAAE,MAAM,CAAC;IAC9B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,0BAA0B,EAAE,MAAM,CAAC;IACnC,0BAA0B,EAAE,MAAM,CAAC;IACnC,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,eAAe,EAAE,MAAM,CAAC;IACxB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,eAAe,EAAE,MAAM,CAAC;IACxB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,yBAAyB,EAAE,MAAM,CAAC;IAClC,yBAAyB,EAAE,MAAM,CAAC;IAClC,+BAA+B,EAAE,MAAM,CAAC;IACxC,iBAAiB,EAAE,MAAM,CAAC;IAC1B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,cAAc,EAAE,MAAM,CAAC;IACvB,2BAA2B,EAAE,MAAM,CAAC;IACpC,uBAAuB,EAAE,MAAM,CAAC;IAChC,sBAAsB,EAAE,MAAM,CAAC;IAC/B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,gBAAgB,EAAE,MAAM,CAAC;IACzB,wBAAwB,EAAE,MAAM,CAAC;IACjC,8BAA8B,EAAE,MAAM,CAAC;IACvC,gCAAgC,EAAE,MAAM,CAAC;IACzC,4BAA4B,EAAE,MAAM,CAAC;IACrC,8BAA8B,EAAE,MAAM,CAAC;CACxC"}

package/dist/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}

package/dist/webauthn.d.ts

@@ -0,0 +1,26 @@
+import type { AuthenticationResponseJSON, PublicKeyCredentialCreationOptionsJSON, PublicKeyCredentialRequestOptionsJSON, RegistrationResponseJSON } from '@simplewebauthn/browser';
+import { type AuthUiLabels } from './contracts.js';
+export interface AuthUiWebAuthnBrowser {
+    PublicKeyCredential?: {
+        new (...args: never[]): unknown;
+        isUserVerifyingPlatformAuthenticatorAvailable?: () => Promise<boolean>;
+    };
+}
+export interface StartPasskeyRegistrationOptions {
+    browser?: AuthUiWebAuthnBrowser;
+    startRegistration?: (input: {
+        optionsJSON: PublicKeyCredentialCreationOptionsJSON;
+    }) => Promise<RegistrationResponseJSON>;
+}
+export interface StartPasskeyAuthenticationOptions {
+    browser?: AuthUiWebAuthnBrowser;
+    startAuthentication?: (input: {
+        optionsJSON: PublicKeyCredentialRequestOptionsJSON;
+    }) => Promise<AuthenticationResponseJSON>;
+}
+export declare const isWebAuthnSupported: (browser?: AuthUiWebAuthnBrowser | undefined) => boolean;
+export declare const isPlatformAuthenticatorAvailable: (browser?: AuthUiWebAuthnBrowser | undefined) => Promise<boolean>;
+export declare const startPasskeyRegistration: (options: PublicKeyCredentialCreationOptionsJSON, deps?: StartPasskeyRegistrationOptions) => Promise<RegistrationResponseJSON>;
+export declare const startPasskeyAuthentication: (options: PublicKeyCredentialRequestOptionsJSON, deps?: StartPasskeyAuthenticationOptions) => Promise<AuthenticationResponseJSON>;
+export declare const getWebAuthnErrorMessage: (error: unknown, labels?: Partial<AuthUiLabels>) => string;
+//# sourceMappingURL=webauthn.d.ts.map

package/dist/webauthn.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"webauthn.d.ts","sourceRoot":"","sources":["../src/webauthn.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,0BAA0B,EAC1B,sCAAsC,EACtC,qCAAqC,EACrC,wBAAwB,EACzB,MAAM,yBAAyB,CAAC;AAEjC,OAAO,EAAkE,KAAK,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAEnH,MAAM,WAAW,qBAAqB;IACpC,mBAAmB,CAAC,EAAE;QACpB,KAAK,GAAG,IAAI,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC;QAChC,6CAA6C,CAAC,EAAE,MAAM,OAAO,CAAC,OAAO,CAAC,CAAC;KACxE,CAAC;CACH;AAED,MAAM,WAAW,+BAA+B;IAC9C,OAAO,CAAC,EAAE,qBAAqB,CAAC;IAChC,iBAAiB,CAAC,EAAE,CAAC,KAAK,EAAE;QAAE,WAAW,EAAE,sCAAsC,CAAA;KAAE,KAAK,OAAO,CAAC,wBAAwB,CAAC,CAAC;CAC3H;AAED,MAAM,WAAW,iCAAiC;IAChD,OAAO,CAAC,EAAE,qBAAqB,CAAC;IAChC,mBAAmB,CAAC,EAAE,CAAC,KAAK,EAAE;QAAE,WAAW,EAAE,qCAAqC,CAAA;KAAE,KAAK,OAAO,CAAC,0BAA0B,CAAC,CAAC;CAC9H;AAKD,eAAO,MAAM,mBAAmB,aAAa,qBAAqB,GAAG,SAAS,KAAyB,OACnD,CAAC;AAErD,eAAO,MAAM,gCAAgC,aAClC,qBAAqB,GAAG,SAAS,KACzC,QAAQ,OAAO,CAUjB,CAAC;AAEF,eAAO,MAAM,wBAAwB,YAC1B,sCAAsC,SACzC,+BAA+B,KACpC,QAAQ,wBAAwB,CAUlC,CAAC;AAEF,eAAO,MAAM,0BAA0B,YAC5B,qCAAqC,SACxC,iCAAiC,KACtC,QAAQ,0BAA0B,CAUpC,CAAC;AAEF,eAAO,MAAM,uBAAuB,UAC3B,OAAO,WACN,QAAQ,YAAY,CAAC,KAC5B,MAoBF,CAAC"}

package/dist/webauthn.js

@@ -0,0 +1,76 @@
+import { startAuthentication as defaultStartAuthentication, startRegistration as defaultStartRegistration } from '@simplewebauthn/browser';
+import { createAuthUiError, createDefaultAuthUiLabels } from './contracts.js';
+const getDefaultBrowser = () => typeof window === 'undefined' ? undefined : window;
+export const isWebAuthnSupported = (browser = getDefaultBrowser()) => typeof browser?.PublicKeyCredential === 'function';
+export const isPlatformAuthenticatorAvailable = async (browser = getDefaultBrowser()) => {
+    if (!isWebAuthnSupported(browser)) {
+        return false;
+    }
+    try {
+        return Boolean(await browser?.PublicKeyCredential?.isUserVerifyingPlatformAuthenticatorAvailable?.());
+    }
+    catch {
+        return false;
+    }
+};
+export const startPasskeyRegistration = async (options, deps = {}) => {
+    if (!isWebAuthnSupported(deps.browser)) {
+        throw createAuthUiError('passkey_not_supported', 'WebAuthn is not supported in this browser');
+    }
+    try {
+        return await (deps.startRegistration ?? defaultStartRegistration)({ optionsJSON: options });
+    }
+    catch (error) {
+        throw mapWebAuthnError(error, 'registration');
+    }
+};
+export const startPasskeyAuthentication = async (options, deps = {}) => {
+    if (!isWebAuthnSupported(deps.browser)) {
+        throw createAuthUiError('passkey_not_supported', 'WebAuthn is not supported in this browser');
+    }
+    try {
+        return await (deps.startAuthentication ?? defaultStartAuthentication)({ optionsJSON: options });
+    }
+    catch (error) {
+        throw mapWebAuthnError(error, 'authentication');
+    }
+};
+export const getWebAuthnErrorMessage = (error, labels = createDefaultAuthUiLabels()) => {
+    if (typeof error === 'string') {
+        return error;
+    }
+    const code = error?.code;
+    const message = error?.message ?? 'Unknown error';
+    switch (code) {
+        case 'passkey_cancelled':
+            return labels.passkeyCancelled ?? message;
+        case 'passkey_already_registered':
+            return labels.passkeyAlreadyRegistered ?? message;
+        case 'passkey_no_matching_authenticator':
+            return labels.passkeyNoMatchingAuthenticator ?? message;
+        case 'passkey_not_supported':
+            return labels.passkeyNotSupported ?? message;
+        default:
+            return message;
+    }
+};
+const mapWebAuthnError = (error, ceremony) => {
+    const name = error?.name;
+    const message = error?.message ?? 'Unknown error';
+    if (name === 'NotAllowedError') {
+        return createAuthUiError('passkey_cancelled', ceremony === 'registration' ? 'Registration cancelled by user' : 'Authentication cancelled by user', { retryable: true, cause: error });
+    }
+    if (name === 'InvalidStateError') {
+        const code = ceremony === 'registration' ? 'passkey_already_registered' : 'passkey_no_matching_authenticator';
+        const fallback = ceremony === 'registration' ? 'This authenticator is already registered' : 'No matching authenticator found';
+        return createAuthUiError(code, fallback, { retryable: ceremony !== 'registration', cause: error });
+    }
+    if (name === 'NotSupportedError') {
+        return createAuthUiError('passkey_not_supported', 'This authenticator is not supported', {
+            retryable: false,
+            cause: error,
+        });
+    }
+    return createAuthUiError(ceremony === 'registration' ? 'passkey_registration_failed' : 'passkey_authentication_failed', `${ceremony === 'registration' ? 'Registration' : 'Authentication'} failed: ${message}`, { retryable: true, cause: error });
+};
+//# sourceMappingURL=webauthn.js.map

package/dist/webauthn.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"webauthn.js","sourceRoot":"","sources":["../src/webauthn.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,mBAAmB,IAAI,0BAA0B,EAAE,iBAAiB,IAAI,wBAAwB,EAAE,MAAM,yBAAyB,CAAC;AAQ3I,OAAO,EAAE,iBAAiB,EAAE,yBAAyB,EAAuC,MAAM,gBAAgB,CAAC;AAmBnH,MAAM,iBAAiB,GAAG,GAAsC,EAAE,CAChE,OAAO,MAAM,KAAK,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAE,MAA2C,CAAC;AAE3F,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,UAA6C,iBAAiB,EAAE,EAAW,EAAE,CAC/G,OAAO,OAAO,EAAE,mBAAmB,KAAK,UAAU,CAAC;AAErD,MAAM,CAAC,MAAM,gCAAgC,GAAG,KAAK,EACnD,UAA6C,iBAAiB,EAAE,EAC9C,EAAE;IACpB,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,EAAE,CAAC;QAClC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,CAAC;QACH,OAAO,OAAO,CAAC,MAAM,OAAO,EAAE,mBAAmB,EAAE,6CAA6C,EAAE,EAAE,CAAC,CAAC;IACxG,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,wBAAwB,GAAG,KAAK,EAC3C,OAA+C,EAC/C,OAAwC,EAAE,EACP,EAAE;IACrC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACvC,MAAM,iBAAiB,CAAC,uBAAuB,EAAE,2CAA2C,CAAC,CAAC;IAChG,CAAC;IAED,IAAI,CAAC;QACH,OAAO,MAAM,CAAC,IAAI,CAAC,iBAAiB,IAAI,wBAAwB,CAAC,CAAC,EAAE,WAAW,EAAE,OAAO,EAAE,CAAC,CAAC;IAC9F,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,gBAAgB,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;IAChD,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,0BAA0B,GAAG,KAAK,EAC7C,OAA8C,EAC9C,OAA0C,EAAE,EACP,EAAE;IACvC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACvC,MAAM,iBAAiB,CAAC,uBAAuB,EAAE,2CAA2C,CAAC,CAAC;IAChG,CAAC;IAED,IAAI,CAAC;QACH,OAAO,MAAM,CAAC,IAAI,CAAC,mBAAmB,IAAI,0BAA0B,CAAC,CAAC,EAAE,WAAW,EAAE,OAAO,EAAE,CAAC,CAAC;IAClG,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,gBAAgB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;IAClD,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACrC,KAAc,EACd,SAAgC,yBAAyB,EAAE,EACnD,EAAE;IACV,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,IAAI,GAAI,KAA0C,EAAE,IAAI,CAAC;IAC/D,MAAM,OAAO,GAAI,KAA0C,EAAE,OAAO,IAAI,eAAe,CAAC;IAExF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,mBAAmB;YACtB,OAAO,MAAM,CAAC,gBAAgB,IAAI,OAAO,CAAC;QAC5C,KAAK,4BAA4B;YAC/B,OAAO,MAAM,CAAC,wBAAwB,IAAI,OAAO,CAAC;QACpD,KAAK,mCAAmC;YACtC,OAAO,MAAM,CAAC,8BAA8B,IAAI,OAAO,CAAC;QAC1D,KAAK,uBAAuB;YAC1B,OAAO,MAAM,CAAC,mBAAmB,IAAI,OAAO,CAAC;QAC/C;YACE,OAAO,OAAO,CAAC;IACnB,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,gBAAgB,GAAG,CAAC,KAAc,EAAE,QAA2C,EAAe,EAAE;IACpG,MAAM,IAAI,GAAI,KAAuC,EAAE,IAAI,CAAC;IAC5D,MAAM,OAAO,GAAI,KAA0C,EAAE,OAAO,IAAI,eAAe,CAAC;IAExF,IAAI,IAAI,KAAK,iBAAiB,EAAE,CAAC;QAC/B,OAAO,iBAAiB,CACtB,mBAAmB,EACnB,QAAQ,KAAK,cAAc,CAAC,CAAC,CAAC,gCAAgC,CAAC,CAAC,CAAC,kCAAkC,EACnG,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,CAClC,CAAC;IACJ,CAAC;IAED,IAAI,IAAI,KAAK,mBAAmB,EAAE,CAAC;QACjC,MAAM,IAAI,GAAG,QAAQ,KAAK,cAAc,CAAC,CAAC,CAAC,4BAA4B,CAAC,CAAC,CAAC,mCAAmC,CAAC;QAC9G,MAAM,QAAQ,GAAG,QAAQ,KAAK,cAAc,CAAC,CAAC,CAAC,0CAA0C,CAAC,CAAC,CAAC,iCAAiC,CAAC;QAC9H,OAAO,iBAAiB,CAAC,IAAI,EAAE,QAAQ,EAAE,EAAE,SAAS,EAAE,QAAQ,KAAK,cAAc,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IACrG,CAAC;IAED,IAAI,IAAI,KAAK,mBAAmB,EAAE,CAAC;QACjC,OAAO,iBAAiB,CAAC,uBAAuB,EAAE,qCAAqC,EAAE;YACvF,SAAS,EAAE,KAAK;YAChB,KAAK,EAAE,KAAK;SACb,CAAC,CAAC;IACL,CAAC;IAED,OAAO,iBAAiB,CACtB,QAAQ,KAAK,cAAc,CAAC,CAAC,CAAC,6BAA6B,CAAC,CAAC,CAAC,+BAA+B,EAC7F,GAAG,QAAQ,KAAK,cAAc,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,gBAAgB,YAAY,OAAO,EAAE,EACvF,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,CAClC,CAAC;AACJ,CAAC,CAAC"}

package/package.json

@@ -0,0 +1,86 @@
+{
+  "name": "@sentropic/auth-ui",
+  "version": "0.2.0",
+  "description": "Reusable Svelte authentication UI contracts and browser passkey helpers for Sentropic-compatible apps.",
+  "type": "module",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/rhanka/sentropic.git",
+    "directory": "packages/auth-ui"
+  },
+  "main": "./src/index.ts",
+  "types": "./src/index.ts",
+  "exports": {
+    ".": {
+      "types": "./src/index.ts",
+      "svelte": "./src/index.ts",
+      "import": "./src/index.ts"
+    },
+    "./contracts": {
+      "types": "./src/contracts.ts",
+      "svelte": "./src/contracts.ts",
+      "import": "./src/contracts.ts"
+    },
+    "./webauthn": {
+      "types": "./src/webauthn.ts",
+      "svelte": "./src/webauthn.ts",
+      "import": "./src/webauthn.ts"
+    },
+    "./transport-fetch": {
+      "types": "./src/transport-fetch.ts",
+      "svelte": "./src/transport-fetch.ts",
+      "import": "./src/transport-fetch.ts"
+    },
+    "./components/AuthLogin.svelte": {
+      "types": "./src/components/AuthLogin.svelte.d.ts",
+      "svelte": "./src/components/AuthLogin.svelte",
+      "import": "./src/components/AuthLogin.svelte"
+    },
+    "./components/AuthRegister.svelte": {
+      "types": "./src/components/AuthRegister.svelte.d.ts",
+      "svelte": "./src/components/AuthRegister.svelte",
+      "import": "./src/components/AuthRegister.svelte"
+    },
+    "./components/AuthMagicLinkVerify.svelte": {
+      "types": "./src/components/AuthMagicLinkVerify.svelte.d.ts",
+      "svelte": "./src/components/AuthMagicLinkVerify.svelte",
+      "import": "./src/components/AuthMagicLinkVerify.svelte"
+    },
+    "./components/AuthDevices.svelte": {
+      "types": "./src/components/AuthDevices.svelte.d.ts",
+      "svelte": "./src/components/AuthDevices.svelte",
+      "import": "./src/components/AuthDevices.svelte"
+    },
+    "./components/AuthDevicePair.svelte": {
+      "types": "./src/components/AuthDevicePair.svelte.d.ts",
+      "svelte": "./src/components/AuthDevicePair.svelte",
+      "import": "./src/components/AuthDevicePair.svelte"
+    }
+  },
+  "files": [
+    "dist",
+    "src",
+    "README.md",
+    "LICENSE"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "sideEffects": [
+    "**/*.svelte"
+  ],
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "typecheck": "tsc --noEmit -p tsconfig.json",
+    "test": "vitest run tests"
+  },
+  "peerDependencies": {
+    "@simplewebauthn/browser": "^13.2.2",
+    "svelte": "^5.0.0"
+  },
+  "devDependencies": {
+    "@simplewebauthn/browser": "^13.2.2",
+    "typescript": "5.4.5"
+  }
+}