@sprinterai/supabase 0.4.1 → 0.5.0

package/dist/auth/adapter.js

@@ -10,9 +10,9 @@
  * is responsible for creating the client with proper cookie handling.
  */
 import { isAdminRole } from '@sprinterai/core';
-import { getTenantContext } from '../tenant/context';
-import { getUserId } from './claims';
-import { getUserPermissions } from './permissions';
+import { getTenantContext } from '../tenant/context.js';
+import { getUserId } from './claims.js';
+import { getUserPermissions } from './permissions.js';
 function createAuthenticationError(message) {
     const error = new Error(message);
     error.name = 'AuthenticationError';

package/dist/auth/guards.d.ts

@@ -0,0 +1,27 @@
+import type { AppPermission, TenantContext } from '@sprinterai/core';
+import type { SupabaseClient } from '@supabase/supabase-js';
+/** Auth error with HTTP status code. */
+export declare class AuthError extends Error {
+    readonly status: 401 | 403;
+    constructor(message: string, status: 401 | 403);
+}
+/**
+ * Require an authenticated user with a valid tenant context.
+ * Returns the tenant context. Throws 401 if not authenticated.
+ */
+export declare function requireAuth(client: SupabaseClient): Promise<TenantContext>;
+/**
+ * Require admin-level access (owner or admin role).
+ * Returns the tenant context. Throws 403 if not admin.
+ */
+export declare function requireAdmin(client: SupabaseClient): Promise<TenantContext>;
+/**
+ * Require a specific permission for the current user.
+ * Returns the tenant context. Throws 403 if permission missing.
+ */
+export declare function requirePermission(client: SupabaseClient, permission: AppPermission): Promise<TenantContext>;
+/**
+ * Check if user has a specific permission without throwing.
+ */
+export declare function hasPermission(client: SupabaseClient, permission: AppPermission): Promise<boolean>;
+//# sourceMappingURL=guards.d.ts.map

package/dist/auth/guards.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"guards.d.ts","sourceRoot":"","sources":["../../src/auth/guards.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAErE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAM5D,wCAAwC;AACxC,qBAAa,SAAU,SAAQ,KAAK;aAGhB,MAAM,EAAE,GAAG,GAAG,GAAG;gBADjC,OAAO,EAAE,MAAM,EACC,MAAM,EAAE,GAAG,GAAG,GAAG;CAKpC;AAED;;;GAGG;AACH,wBAAsB,WAAW,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,aAAa,CAAC,CAMhF;AAED;;;GAGG;AACH,wBAAsB,YAAY,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,aAAa,CAAC,CAMjF;AAED;;;GAGG;AACH,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,cAAc,EACtB,UAAU,EAAE,aAAa,GACxB,OAAO,CAAC,aAAa,CAAC,CAOxB;AAED;;GAEG;AACH,wBAAsB,aAAa,CACjC,MAAM,EAAE,cAAc,EACtB,UAAU,EAAE,aAAa,GACxB,OAAO,CAAC,OAAO,CAAC,CAQlB"}

package/dist/auth/guards.js

@@ -0,0 +1,61 @@
+import { isAdminRole } from '@sprinterai/core';
+import { getTenantContext } from '../tenant/context.js';
+import { getUserPermissions } from './permissions.js';
+/** Auth error with HTTP status code. */
+export class AuthError extends Error {
+    status;
+    constructor(message, status) {
+        super(message);
+        this.status = status;
+        this.name = 'AuthError';
+    }
+}
+/**
+ * Require an authenticated user with a valid tenant context.
+ * Returns the tenant context. Throws 401 if not authenticated.
+ */
+export async function requireAuth(client) {
+    try {
+        return await getTenantContext(client);
+    }
+    catch {
+        throw new AuthError('Authentication required', 401);
+    }
+}
+/**
+ * Require admin-level access (owner or admin role).
+ * Returns the tenant context. Throws 403 if not admin.
+ */
+export async function requireAdmin(client) {
+    const ctx = await requireAuth(client);
+    if (!isAdminRole(ctx.role)) {
+        throw new AuthError('Admin access required', 403);
+    }
+    return ctx;
+}
+/**
+ * Require a specific permission for the current user.
+ * Returns the tenant context. Throws 403 if permission missing.
+ */
+export async function requirePermission(client, permission) {
+    const ctx = await requireAuth(client);
+    const permissions = await getUserPermissions(client, ctx.userId, ctx.tenantId);
+    if (!permissions.includes(permission)) {
+        throw new AuthError(`Permission required: ${permission}`, 403);
+    }
+    return ctx;
+}
+/**
+ * Check if user has a specific permission without throwing.
+ */
+export async function hasPermission(client, permission) {
+    try {
+        const ctx = await getTenantContext(client);
+        const permissions = await getUserPermissions(client, ctx.userId, ctx.tenantId);
+        return permissions.includes(permission);
+    }
+    catch {
+        return false;
+    }
+}
+//# sourceMappingURL=guards.js.map

package/dist/auth/guards.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"guards.js","sourceRoot":"","sources":["../../src/auth/guards.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAG/C,OAAO,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAErD,OAAO,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEnD,wCAAwC;AACxC,MAAM,OAAO,SAAU,SAAQ,KAAK;IAGhB;IAFlB,YACE,OAAe,EACC,MAAiB;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC;QAFC,WAAM,GAAN,MAAM,CAAW;QAGjC,IAAI,CAAC,IAAI,GAAG,WAAW,CAAC;IAC1B,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,MAAsB;IACtD,IAAI,CAAC;QACH,OAAO,MAAM,gBAAgB,CAAC,MAAM,CAAC,CAAC;IACxC,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,SAAS,CAAC,yBAAyB,EAAE,GAAG,CAAC,CAAC;IACtD,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,MAAsB;IACvD,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,CAAC;IACtC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,SAAS,CAAC,uBAAuB,EAAE,GAAG,CAAC,CAAC;IACpD,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,MAAsB,EACtB,UAAyB;IAEzB,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,CAAC;IACtC,MAAM,WAAW,GAAG,MAAM,kBAAkB,CAAC,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC/E,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;QACtC,MAAM,IAAI,SAAS,CAAC,wBAAwB,UAAU,EAAE,EAAE,GAAG,CAAC,CAAC;IACjE,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,MAAsB,EACtB,UAAyB;IAEzB,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAC3C,MAAM,WAAW,GAAG,MAAM,kBAAkB,CAAC,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC/E,OAAO,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC"}

package/dist/auth/index.d.ts

@@ -1,5 +1,7 @@
-export { getClaims, getUserId } from "./claims";
-export type { JwtClaims } from "./claims";
-export { getUserPermissions, getPermissionsForRole } from "./permissions";
-export { requireAuth, requireAdmin, hasPermission, requirePermission, } from "./adapter";
+export { getClaims, getUserId } from './claims.js';
+export type { JwtClaims } from './claims.js';
+export { getUserPermissions, getPermissionsForRole, resolveSubjectPermissions, } from './permissions.js';
+export { requireAuth, requireAdmin, hasPermission, requirePermission } from './adapter.js';
+export { AuthError } from './guards.js';
+export { requireAuth as requireAuthGuard, requireAdmin as requireAdminGuard, requirePermission as requirePermissionGuard, hasPermission as hasPermissionGuard, } from './guards.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/auth/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAChD,YAAY,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAC1C,OAAO,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAC1E,OAAO,EACL,WAAW,EACX,YAAY,EACZ,aAAa,EACb,iBAAiB,GAClB,MAAM,WAAW,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAChD,YAAY,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAC1C,OAAO,EACL,kBAAkB,EAClB,qBAAqB,EACrB,yBAAyB,GAC1B,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,aAAa,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AACxF,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AACrC,OAAO,EACL,WAAW,IAAI,gBAAgB,EAC/B,YAAY,IAAI,iBAAiB,EACjC,iBAAiB,IAAI,sBAAsB,EAC3C,aAAa,IAAI,kBAAkB,GACpC,MAAM,UAAU,CAAC"}

package/dist/auth/index.js

@@ -1,4 +1,6 @@
-export { getClaims, getUserId } from "./claims";
-export { getUserPermissions, getPermissionsForRole } from "./permissions";
-export { requireAuth, requireAdmin, hasPermission, requirePermission, } from "./adapter";
+export { getClaims, getUserId } from './claims.js';
+export { getUserPermissions, getPermissionsForRole, resolveSubjectPermissions, } from './permissions.js';
+export { requireAuth, requireAdmin, hasPermission, requirePermission } from './adapter.js';
+export { AuthError } from './guards.js';
+export { requireAuth as requireAuthGuard, requireAdmin as requireAdminGuard, requirePermission as requirePermissionGuard, hasPermission as hasPermissionGuard, } from './guards.js';
 //# sourceMappingURL=index.js.map

package/dist/auth/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAEhD,OAAO,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAC1E,OAAO,EACL,WAAW,EACX,YAAY,EACZ,aAAa,EACb,iBAAiB,GAClB,MAAM,WAAW,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAEhD,OAAO,EACL,kBAAkB,EAClB,qBAAqB,EACrB,yBAAyB,GAC1B,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,aAAa,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AACxF,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AACrC,OAAO,EACL,WAAW,IAAI,gBAAgB,EAC/B,YAAY,IAAI,iBAAiB,EACjC,iBAAiB,IAAI,sBAAsB,EAC3C,aAAa,IAAI,kBAAkB,GACpC,MAAM,UAAU,CAAC"}

package/dist/auth/permissions.d.ts

@@ -1,4 +1,4 @@
-import type { AppPermission } from '@sprinterai/core';
+import type { AppPermission, PermissionSubject } from '@sprinterai/core';
 import type { SupabaseClient } from '@supabase/supabase-js';
 /**
  * Get all permissions for a user in a specific tenant.
@@ -11,4 +11,12 @@ export declare function getUserPermissions(client: SupabaseClient, userId: strin
  * Requires admin client to bypass RLS.
  */
 export declare function getPermissionsForRole(adminClient: SupabaseClient, roleId: string): Promise<AppPermission[]>;
+/**
+ * Resolve permissions for any subject (user or agent).
+ * Provides a single entry point for permission resolution regardless of subject type.
+ *
+ * For users: queries the denormalized user_permissions table.
+ * For agents: queries role_permissions via the agent's assigned role.
+ */
+export declare function resolveSubjectPermissions(client: SupabaseClient, subject: PermissionSubject): Promise<AppPermission[]>;
 //# sourceMappingURL=permissions.d.ts.map

package/dist/auth/permissions.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"permissions.d.ts","sourceRoot":"","sources":["../../src/auth/permissions.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACtD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAE5D;;;GAGG;AACH,wBAAsB,kBAAkB,CACtC,MAAM,EAAE,cAAc,EACtB,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,aAAa,EAAE,CAAC,CAQ1B;AAED;;;;GAIG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,EAAE,cAAc,EAC3B,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,aAAa,EAAE,CAAC,CAO1B"}
+{"version":3,"file":"permissions.d.ts","sourceRoot":"","sources":["../../src/auth/permissions.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,iBAAiB,EAAE,MAAM,kBAAkB,CAAC;AACzE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAE5D;;;GAGG;AACH,wBAAsB,kBAAkB,CACtC,MAAM,EAAE,cAAc,EACtB,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,aAAa,EAAE,CAAC,CAQ1B;AAED;;;;GAIG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,EAAE,cAAc,EAC3B,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,aAAa,EAAE,CAAC,CAO1B;AAED;;;;;;GAMG;AACH,wBAAsB,yBAAyB,CAC7C,MAAM,EAAE,cAAc,EACtB,OAAO,EAAE,iBAAiB,GACzB,OAAO,CAAC,aAAa,EAAE,CAAC,CAK1B"}

package/dist/auth/permissions.js

@@ -22,4 +22,17 @@ export async function getPermissionsForRole(adminClient, roleId) {
         .eq('role_id', roleId);
     return (data ?? []).map((row) => row.permission);
 }
+/**
+ * Resolve permissions for any subject (user or agent).
+ * Provides a single entry point for permission resolution regardless of subject type.
+ *
+ * For users: queries the denormalized user_permissions table.
+ * For agents: queries role_permissions via the agent's assigned role.
+ */
+export async function resolveSubjectPermissions(client, subject) {
+    if (subject.type === 'user') {
+        return getUserPermissions(client, subject.userId, subject.tenantId);
+    }
+    return getPermissionsForRole(client, subject.roleId);
+}
 //# sourceMappingURL=permissions.js.map

package/dist/auth/permissions.js.map

@@ -1 +1 @@
-{"version":3,"file":"permissions.js","sourceRoot":"","sources":["../../src/auth/permissions.ts"],"names":[],"mappings":"AAGA;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,MAAsB,EACtB,MAAc,EACd,QAAgB;IAEhB,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM;SAC1B,IAAI,CAAC,kBAAkB,CAAC;SACxB,MAAM,CAAC,YAAY,CAAC;SACpB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;SACrB,EAAE,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAE7B,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAA2B,EAAE,EAAE,CAAC,GAAG,CAAC,UAA2B,CAAC,CAAC;AAC5F,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,WAA2B,EAC3B,MAAc;IAEd,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,WAAW;SAC/B,IAAI,CAAC,kBAAkB,CAAC;SACxB,MAAM,CAAC,YAAY,CAAC;SACpB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IAEzB,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAA2B,EAAE,EAAE,CAAC,GAAG,CAAC,UAA2B,CAAC,CAAC;AAC5F,CAAC"}
+{"version":3,"file":"permissions.js","sourceRoot":"","sources":["../../src/auth/permissions.ts"],"names":[],"mappings":"AAGA;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,MAAsB,EACtB,MAAc,EACd,QAAgB;IAEhB,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM;SAC1B,IAAI,CAAC,kBAAkB,CAAC;SACxB,MAAM,CAAC,YAAY,CAAC;SACpB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;SACrB,EAAE,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAE7B,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAA2B,EAAE,EAAE,CAAC,GAAG,CAAC,UAA2B,CAAC,CAAC;AAC5F,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,WAA2B,EAC3B,MAAc;IAEd,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,WAAW;SAC/B,IAAI,CAAC,kBAAkB,CAAC;SACxB,MAAM,CAAC,YAAY,CAAC;SACpB,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IAEzB,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAA2B,EAAE,EAAE,CAAC,GAAG,CAAC,UAA2B,CAAC,CAAC;AAC5F,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,yBAAyB,CAC7C,MAAsB,EACtB,OAA0B;IAE1B,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QAC5B,OAAO,kBAAkB,CAAC,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;IACtE,CAAC;IACD,OAAO,qBAAqB,CAAC,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;AACvD,CAAC"}

package/dist/clients/admin.d.ts

@@ -1,3 +1,5 @@
+import type { SupabaseClient } from '@supabase/supabase-js';
+import type { Database } from '../generated/index.js';
 /**
  * Create a Supabase admin client using the service role key.
  * Bypasses RLS — use only for system operations.
@@ -5,5 +7,5 @@
 export declare function createAdminClient(options?: {
     supabaseUrl?: string;
     supabaseServiceRoleKey?: string;
-}): import("@supabase/supabase-js").SupabaseClient<any, "public", "public", any, any>;
+}): SupabaseClient<Database>;
 //# sourceMappingURL=admin.d.ts.map

package/dist/clients/admin.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../../src/clients/admin.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,CAAC,EAAE;IAC1C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC,qFAUA"}
+{"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../../src/clients/admin.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAE5D,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AAE7C;;;GAGG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,CAAC,EAAE;IAC1C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC,GAAG,cAAc,CAAC,QAAQ,CAAC,CAS3B"}

package/dist/clients/admin.js

@@ -1,14 +1,14 @@
-import { createClient } from "@supabase/supabase-js";
+import { createClient } from '@supabase/supabase-js';
 /**
  * Create a Supabase admin client using the service role key.
  * Bypasses RLS — use only for system operations.
  */
 export function createAdminClient(options) {
-    const url = options?.supabaseUrl ?? process.env.NEXT_PUBLIC_SUPABASE_URL ?? "";
+    const url = options?.supabaseUrl ?? process.env.NEXT_PUBLIC_SUPABASE_URL ?? '';
     const key = options?.supabaseServiceRoleKey ??
         process.env.SUPABASE_SECRET_KEY ??
         process.env.SUPABASE_SERVICE_ROLE_KEY ??
-        "";
+        '';
     return createClient(url, key);
 }
 //# sourceMappingURL=admin.js.map

package/dist/clients/admin.js.map

@@ -1 +1 @@
-{"version":3,"file":"admin.js","sourceRoot":"","sources":["../../src/clients/admin.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAErD;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAGjC;IACC,MAAM,GAAG,GACP,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,EAAE,CAAC;IACrE,MAAM,GAAG,GACP,OAAO,EAAE,sBAAsB;QAC/B,OAAO,CAAC,GAAG,CAAC,mBAAmB;QAC/B,OAAO,CAAC,GAAG,CAAC,yBAAyB;QACrC,EAAE,CAAC;IAEL,OAAO,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;AAChC,CAAC"}
+{"version":3,"file":"admin.js","sourceRoot":"","sources":["../../src/clients/admin.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAKrD;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAGjC;IACC,MAAM,GAAG,GAAG,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,EAAE,CAAC;IAC/E,MAAM,GAAG,GACP,OAAO,EAAE,sBAAsB;QAC/B,OAAO,CAAC,GAAG,CAAC,mBAAmB;QAC/B,OAAO,CAAC,GAAG,CAAC,yBAAyB;QACrC,EAAE,CAAC;IAEL,OAAO,YAAY,CAAW,GAAG,EAAE,GAAG,CAAC,CAAC;AAC1C,CAAC"}

package/dist/clients/browser.d.ts

@@ -1,3 +1,5 @@
+import type { SupabaseClient } from '@supabase/supabase-js';
+import type { Database } from '../generated/index.js';
 /**
  * Create a Supabase browser client for use in client components.
  * Reads env vars or accepts explicit URL/key.
@@ -5,5 +7,5 @@
 export declare function createBrowserClient(options?: {
     supabaseUrl?: string;
     supabaseAnonKey?: string;
-}): import("@supabase/supabase-js").SupabaseClient<any, "public", "public", any, any>;
+}): SupabaseClient<Database>;
 //# sourceMappingURL=browser.d.ts.map

package/dist/clients/browser.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"browser.d.ts","sourceRoot":"","sources":["../../src/clients/browser.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,CAAC,EAAE;IAC5C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,qFAUA"}
+{"version":3,"file":"browser.d.ts","sourceRoot":"","sources":["../../src/clients/browser.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAE5D,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AAE7C;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,CAAC,EAAE;IAC5C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,GAAG,cAAc,CAAC,QAAQ,CAAC,CAS3B"}

package/dist/clients/browser.js

@@ -1,14 +1,14 @@
-import { createBrowserClient as createSSRBrowserClient } from "@supabase/ssr";
+import { createBrowserClient as createSSRBrowserClient } from '@supabase/ssr';
 /**
  * Create a Supabase browser client for use in client components.
  * Reads env vars or accepts explicit URL/key.
  */
 export function createBrowserClient(options) {
-    const url = options?.supabaseUrl ?? process.env.NEXT_PUBLIC_SUPABASE_URL ?? "";
+    const url = options?.supabaseUrl ?? process.env.NEXT_PUBLIC_SUPABASE_URL ?? '';
     const key = options?.supabaseAnonKey ??
         process.env.NEXT_PUBLIC_SUPABASE_PUBLISHABLE_KEY ??
         process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY ??
-        "";
+        '';
     return createSSRBrowserClient(url, key);
 }
 //# sourceMappingURL=browser.js.map

package/dist/clients/browser.js.map

@@ -1 +1 @@
-{"version":3,"file":"browser.js","sourceRoot":"","sources":["../../src/clients/browser.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,mBAAmB,IAAI,sBAAsB,EAAE,MAAM,eAAe,CAAC;AAE9E;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAGnC;IACC,MAAM,GAAG,GACP,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,EAAE,CAAC;IACrE,MAAM,GAAG,GACP,OAAO,EAAE,eAAe;QACxB,OAAO,CAAC,GAAG,CAAC,oCAAoC;QAChD,OAAO,CAAC,GAAG,CAAC,6BAA6B;QACzC,EAAE,CAAC;IAEL,OAAO,sBAAsB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;AAC1C,CAAC"}
+{"version":3,"file":"browser.js","sourceRoot":"","sources":["../../src/clients/browser.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,mBAAmB,IAAI,sBAAsB,EAAE,MAAM,eAAe,CAAC;AAK9E;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAGnC;IACC,MAAM,GAAG,GAAG,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,EAAE,CAAC;IAC/E,MAAM,GAAG,GACP,OAAO,EAAE,eAAe;QACxB,OAAO,CAAC,GAAG,CAAC,oCAAoC;QAChD,OAAO,CAAC,GAAG,CAAC,6BAA6B;QACzC,EAAE,CAAC;IAEL,OAAO,sBAAsB,CAAW,GAAG,EAAE,GAAG,CAAC,CAAC;AACpD,CAAC"}

package/dist/clients/index.d.ts

@@ -1,4 +1,4 @@
-export { createServerClient } from "./server";
-export { createBrowserClient } from "./browser";
-export { createAdminClient } from "./admin";
+export { createServerClient } from "./server.js";
+export { createBrowserClient } from "./browser.js";
+export { createAdminClient } from "./admin.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/clients/index.js

@@ -1,4 +1,4 @@
-export { createServerClient } from "./server";
-export { createBrowserClient } from "./browser";
-export { createAdminClient } from "./admin";
+export { createServerClient } from "./server.js";
+export { createBrowserClient } from "./browser.js";
+export { createAdminClient } from "./admin.js";
 //# sourceMappingURL=index.js.map

package/dist/clients/server.d.ts

@@ -1,3 +1,4 @@
+import type { SupabaseClient } from '@supabase/supabase-js';
 /**
  * Create a Supabase server client for use in Next.js server components and route handlers.
  * Requires `next/headers` cookies — call within a request context.
@@ -18,5 +19,5 @@ export declare function createServerClient(options: {
             options: Record<string, unknown>;
         }>) => void;
     };
-}): import("@supabase/supabase-js").SupabaseClient<any, "public", "public", any, any>;
+}): SupabaseClient;
 //# sourceMappingURL=server.d.ts.map

package/dist/clients/server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/clients/server.ts"],"names":[],"mappings":"AAEA;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE;IAC1C,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,WAAW,EAAE;QACX,MAAM,EAAE,MAAM,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;QACrD,MAAM,EAAE,CACN,OAAO,EAAE,KAAK,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,KAAK,EAAE,MAAM,CAAC;YACd,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;SAClC,CAAC,KACC,IAAI,CAAC;KACX,CAAC;CACH,qFAeA"}
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/clients/server.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAE5D;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE;IAC1C,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,WAAW,EAAE;QACX,MAAM,EAAE,MAAM,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;QACrD,MAAM,EAAE,CACN,OAAO,EAAE,KAAK,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,KAAK,EAAE,MAAM,CAAC;YACd,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;SAClC,CAAC,KACC,IAAI,CAAC;KACX,CAAC;CACH,GAAG,cAAc,CAejB"}

package/dist/clients/server.js

@@ -1,4 +1,4 @@
-import { createServerClient as createSSRServerClient } from "@supabase/ssr";
+import { createServerClient as createSSRServerClient } from '@supabase/ssr';
 /**
  * Create a Supabase server client for use in Next.js server components and route handlers.
  * Requires `next/headers` cookies — call within a request context.

package/dist/clients/server.js.map

@@ -1 +1 @@
-{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/clients/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,IAAI,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAE5E;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,OAalC;IACC,OAAO,qBAAqB,CAAC,OAAO,CAAC,WAAW,EAAE,OAAO,CAAC,eAAe,EAAE;QACzE,OAAO,EAAE;YACP,MAAM;gBACJ,OAAO,OAAO,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC;YACtC,CAAC;YACD,MAAM,CAAC,YAAY;gBACjB,IAAI,CAAC;oBACH,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBAC3C,CAAC;gBAAC,MAAM,CAAC;oBACP,8DAA8D;gBAChE,CAAC;YACH,CAAC;SACF;KACF,CAAC,CAAC;AACL,CAAC"}
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/clients/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,IAAI,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAG5E;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,OAalC;IACC,OAAO,qBAAqB,CAAC,OAAO,CAAC,WAAW,EAAE,OAAO,CAAC,eAAe,EAAE;QACzE,OAAO,EAAE;YACP,MAAM;gBACJ,OAAO,OAAO,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC;YACtC,CAAC;YACD,MAAM,CAAC,YAAY;gBACjB,IAAI,CAAC;oBACH,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBAC3C,CAAC;gBAAC,MAAM,CAAC;oBACP,8DAA8D;gBAChE,CAAC;YACH,CAAC;SACF;KACF,CAAC,CAAC;AACL,CAAC"}