npm - @sentroy-co/client-sdk - Versions diffs - 2.13.8 → 2.13.9 - Mend

@sentroy-co/client-sdk 2.13.8 → 2.13.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/dist/auth/admin/index.d.ts +111 -10
package/dist/auth/admin/index.d.ts.map +1 -1
package/dist/auth/admin/index.js +125 -20
package/dist/auth/admin/index.js.map +1 -1
package/dist/auth/client.d.ts +127 -1
package/dist/auth/client.d.ts.map +1 -1
package/dist/auth/client.js +361 -3
package/dist/auth/client.js.map +1 -1
package/dist/auth/index.d.ts +1 -1
package/dist/auth/index.d.ts.map +1 -1
package/dist/auth/index.js.map +1 -1
package/dist/auth/react/index.d.ts +63 -4
package/dist/auth/react/index.d.ts.map +1 -1
package/dist/auth/react/index.js +180 -1
package/dist/auth/react/index.js.map +1 -1
package/dist/auth/types.d.ts +55 -0
package/dist/auth/types.d.ts.map +1 -1
package/package.json +5 -1
package/src/auth/admin/index.ts +227 -31
package/src/auth/client.ts +438 -4
package/src/auth/index.ts +9 -0
package/src/auth/react/index.tsx +255 -4
package/src/auth/types.ts +66 -0

package/src/auth/react/index.tsx CHANGED Viewed

@@ -2,6 +2,7 @@
 import {
   createContext,
+  useCallback,
   useContext,
   useEffect,
   useMemo,
@@ -9,7 +10,13 @@ import {
   type ReactNode,
 } from "react"
 import { SentroyAuth, type SentroyAuthOptions } from "../client"
-import type { SentroyAuthUser } from "../types"
+import type {
+  SentroyAuthUser,
+  SessionSummary,
+  ActivityEntry,
+  MfaStatus,
+  PasskeySummary,
+} from "../types"
 /**
  * Sentroy Auth React integration.
@@ -23,29 +30,46 @@ import type { SentroyAuthUser } from "../types"
  * Provider içeride tek bir `SentroyAuth` instance tutar (mount/unmount
  * arasında stable), `onAuthStateChanged` ile React state'i senkron tutar.
  * `loading` ilk render → restore tamam mı henüz değil ayrımı için.
+ *
+ * Yeni method'lar (MFA, magic link, passkey, social, /me/*) tüm
+ * `auth` instance üzerinden erişilebilir — context'te kısayol olarak
+ * en sık kullanılanlar mevcut.
  */
 interface AuthContextValue {
+  /** Underlying SDK instance — gelişmiş senaryolarda doğrudan kullan. */
   auth: SentroyAuth
   user: SentroyAuthUser | null
   /** True iken provider ilk state'i restore etmiş değil — UI'da
    *  "spinner" göster, "redirect to /login" tetikleme. */
   loading: boolean
-  /** Convenience proxies — caller `auth.signIn(...)` yerine doğrudan
-   *  `signIn(...)` kullanabilir. */
+  // Sık kullanılan kısayollar (proxies)
   signIn: SentroyAuth["signIn"]
   signUp: SentroyAuth["signUp"]
   signOut: SentroyAuth["signOut"]
   sendPasswordReset: SentroyAuth["sendPasswordReset"]
   verifyEmail: SentroyAuth["verifyEmail"]
+  verifyMfa: SentroyAuth["verifyMfa"]
+  sendMagicLink: SentroyAuth["sendMagicLink"]
+  consumeMagicLink: SentroyAuth["consumeMagicLink"]
+  acceptInvitation: SentroyAuth["acceptInvitation"]
+  socialAuthorizeUrl: SentroyAuth["socialAuthorizeUrl"]
+  consumeRedirectFragment: SentroyAuth["consumeRedirectFragment"]
 }
 const AuthContext = createContext<AuthContextValue | null>(null)
 export function SentroyAuthProvider({
   children,
+  autoConsumeFragment = true,
   ...opts
-}: SentroyAuthOptions & { children: ReactNode }) {
+}: SentroyAuthOptions & {
+  children: ReactNode
+  /** Mount'ta `window.location.hash`'ten social-login fragment'ı
+   *  consume et — default true. RP'nin redirectUri'sinde session
+   *  otomatik kurulur. */
+  autoConsumeFragment?: boolean
+}) {
   // Single instance — opts deep-compare'a girersek dependency drift'i
   // restart'a yol açar. Caller `projectSlug` değiştirmemeli runtime'da.
   const auth = useMemo(
@@ -64,6 +88,17 @@ export function SentroyAuthProvider({
     return unsubscribe
   }, [auth])
+  // Social login redirect handler — fragment varsa otomatik consume
+  useEffect(() => {
+    if (!autoConsumeFragment) return
+    if (typeof window === "undefined") return
+    if (!window.location.hash.includes("access_token=")) return
+    auth.consumeRedirectFragment().catch(() => {
+      // Fragment varsa ama consume fail ise sessizce yut — caller
+      // gerekirse manuel tekrar dener.
+    })
+  }, [auth, autoConsumeFragment])
   const value = useMemo<AuthContextValue>(
     () => ({
       auth,
@@ -74,6 +109,12 @@ export function SentroyAuthProvider({
       signOut: () => auth.signOut(),
       sendPasswordReset: (e) => auth.sendPasswordReset(e),
       verifyEmail: (t) => auth.verifyEmail(t),
+      verifyMfa: (i) => auth.verifyMfa(i),
+      sendMagicLink: (i) => auth.sendMagicLink(i),
+      consumeMagicLink: (t) => auth.consumeMagicLink(t),
+      acceptInvitation: (i) => auth.acceptInvitation(i),
+      socialAuthorizeUrl: (p, o) => auth.socialAuthorizeUrl(p, o),
+      consumeRedirectFragment: () => auth.consumeRedirectFragment(),
     }),
     [auth, user, loading],
   )
@@ -98,3 +139,213 @@ export function useAuth(): AuthContextValue {
 export function useUser(): SentroyAuthUser | null {
   return useAuth().user
 }
+/**
+ * Reactive sessions hook — `/me/sessions` çağırır, refresh trigger eden
+ * `refresh()` döner. Manual revoke sonrası caller `refresh()` çağırır.
+ */
+export function useSessions(): {
+  sessions: SessionSummary[] | null
+  loading: boolean
+  error: Error | null
+  refresh: () => Promise<void>
+  revoke: (id: string) => Promise<void>
+} {
+  const { auth, user } = useAuth()
+  const [sessions, setSessions] = useState<SessionSummary[] | null>(null)
+  const [loading, setLoading] = useState(false)
+  const [error, setError] = useState<Error | null>(null)
+  const refresh = useCallback(async () => {
+    if (!user) {
+      setSessions(null)
+      return
+    }
+    setLoading(true)
+    setError(null)
+    try {
+      const data = await auth.listSessions()
+      setSessions(data)
+    } catch (e) {
+      setError(e instanceof Error ? e : new Error(String(e)))
+    } finally {
+      setLoading(false)
+    }
+  }, [auth, user])
+  useEffect(() => {
+    refresh()
+  }, [refresh])
+  const revoke = useCallback(
+    async (id: string) => {
+      await auth.revokeSession(id)
+      await refresh()
+    },
+    [auth, refresh],
+  )
+  return { sessions, loading, error, refresh, revoke }
+}
+/**
+ * Reactive activity log hook — `/me/activity`. RP'nin "recent activity"
+ * tab'ı için.
+ */
+export function useActivity(): {
+  activity: ActivityEntry[] | null
+  loading: boolean
+  error: Error | null
+  refresh: () => Promise<void>
+} {
+  const { auth, user } = useAuth()
+  const [activity, setActivity] = useState<ActivityEntry[] | null>(null)
+  const [loading, setLoading] = useState(false)
+  const [error, setError] = useState<Error | null>(null)
+  const refresh = useCallback(async () => {
+    if (!user) {
+      setActivity(null)
+      return
+    }
+    setLoading(true)
+    setError(null)
+    try {
+      const data = await auth.getActivity()
+      setActivity(data)
+    } catch (e) {
+      setError(e instanceof Error ? e : new Error(String(e)))
+    } finally {
+      setLoading(false)
+    }
+  }, [auth, user])
+  useEffect(() => {
+    refresh()
+  }, [refresh])
+  return { activity, loading, error, refresh }
+}
+/**
+ * Reactive MFA status. enroll / verify / disable wrapper'ları, status
+ * otomatik yeniden çekilir.
+ */
+export function useMfa(): {
+  status: MfaStatus | null
+  loading: boolean
+  error: Error | null
+  refresh: () => Promise<void>
+  enrollTotp: SentroyAuth["mfa"]["enrollTotp"]
+  verifyTotpEnrollment: (code: string) => Promise<void>
+  disableTotp: (currentPassword: string) => Promise<void>
+} {
+  const { auth, user } = useAuth()
+  const [status, setStatus] = useState<MfaStatus | null>(null)
+  const [loading, setLoading] = useState(false)
+  const [error, setError] = useState<Error | null>(null)
+  const refresh = useCallback(async () => {
+    if (!user) {
+      setStatus(null)
+      return
+    }
+    setLoading(true)
+    setError(null)
+    try {
+      const data = await auth.mfa.getStatus()
+      setStatus(data)
+    } catch (e) {
+      setError(e instanceof Error ? e : new Error(String(e)))
+    } finally {
+      setLoading(false)
+    }
+  }, [auth, user])
+  useEffect(() => {
+    refresh()
+  }, [refresh])
+  const verifyTotpEnrollment = useCallback(
+    async (code: string) => {
+      await auth.mfa.verifyTotpEnrollment(code)
+      await refresh()
+    },
+    [auth, refresh],
+  )
+  const disableTotp = useCallback(
+    async (currentPassword: string) => {
+      await auth.mfa.disableTotp(currentPassword)
+      await refresh()
+    },
+    [auth, refresh],
+  )
+  return {
+    status,
+    loading,
+    error,
+    refresh,
+    enrollTotp: () => auth.mfa.enrollTotp(),
+    verifyTotpEnrollment,
+    disableTotp,
+  }
+}
+/**
+ * Reactive passkey list — list/delete/register, mutation sonrası
+ * otomatik refresh.
+ */
+export function usePasskeys(): {
+  passkeys: PasskeySummary[] | null
+  loading: boolean
+  error: Error | null
+  refresh: () => Promise<void>
+  register: (deviceName?: string) => Promise<void>
+  remove: (id: string) => Promise<void>
+} {
+  const { auth, user } = useAuth()
+  const [passkeys, setPasskeys] = useState<PasskeySummary[] | null>(null)
+  const [loading, setLoading] = useState(false)
+  const [error, setError] = useState<Error | null>(null)
+  const refresh = useCallback(async () => {
+    if (!user) {
+      setPasskeys(null)
+      return
+    }
+    setLoading(true)
+    setError(null)
+    try {
+      const data = await auth.passkey.list()
+      setPasskeys(data)
+    } catch (e) {
+      setError(e instanceof Error ? e : new Error(String(e)))
+    } finally {
+      setLoading(false)
+    }
+  }, [auth, user])
+  useEffect(() => {
+    refresh()
+  }, [refresh])
+  const register = useCallback(
+    async (deviceName?: string) => {
+      await auth.passkey.register(deviceName)
+      await refresh()
+    },
+    [auth, refresh],
+  )
+  const remove = useCallback(
+    async (id: string) => {
+      await auth.passkey.delete(id)
+      await refresh()
+    },
+    [auth, refresh],
+  )
+  return { passkeys, loading, error, refresh, register, remove }
+}

package/src/auth/types.ts CHANGED Viewed

@@ -58,3 +58,69 @@ export class SentroyAuthError extends Error {
     this.status = status
   }
 }
+/**
+ * Login response when MFA is enrolled — first step returns mfaRequired+
+ * mfaToken; second step `verifyMfa(mfaToken, code)` issues final tokens.
+ */
+export interface MfaChallengeResponse {
+  mfaRequired: true
+  mfaToken: string
+  factorType: "totp"
+}
+/** Discriminated union — Login may resolve to tokens OR MFA challenge. */
+export type LoginOutcome =
+  | { kind: "tokens"; data: LoginResponse }
+  | { kind: "mfa"; data: MfaChallengeResponse }
+export interface SessionSummary {
+  id: string
+  refreshTokenPrefix: string
+  userAgent: string | null
+  ip: string | null
+  expiresAt: string
+  createdAt: string
+}
+export interface ActivityEntry {
+  id: string
+  action: string
+  ipAddress: string | null
+  createdAt: string
+  details: Record<string, unknown> | null
+}
+export interface MfaStatus {
+  enrolled: boolean
+  factorType?: "totp"
+  verifiedAt?: string | null
+  recoveryCodesRemaining?: number
+}
+export interface MfaEnrollResponse {
+  secret: string
+  otpauthUri: string
+}
+export interface MfaVerifyEnrollmentResponse {
+  enrolled: true
+  recoveryCodes: string[]
+}
+export interface PasskeySummary {
+  id: string
+  credentialIdPrefix: string
+  deviceName: string | null
+  transports: string[]
+  lastUsedAt: string | null
+  createdAt: string
+}
+export type SocialProvider =
+  | "google"
+  | "github"
+  | "facebook"
+  | "microsoft"
+  | "twitter"
+  | "apple"