@stackframe/stack 2.5.3 → 2.5.5

package/dist/esm/providers/stack-provider-client.js

@@ -2,11 +2,10 @@
 "use client";
 
 // src/providers/stack-provider-client.tsx
-import { useEffect } from "react";
-import { StackClientApp, stackAppInternalsSymbol } from "../lib/stack-app";
-import React from "react";
-import { useStackApp } from "..";
 import { globalVar } from "@stackframe/stack-shared/dist/utils/globals";
+import React, { useEffect } from "react";
+import { useStackApp } from "..";
+import { StackClientApp, stackAppInternalsSymbol } from "../lib/stack-app";
 import { jsx } from "react/jsx-runtime";
 var StackContext = React.createContext(null);
 function StackProviderClient(props) {

package/dist/esm/providers/stack-provider-client.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/providers/stack-provider-client.tsx"],"sourcesContent":["\"use client\";\n\nimport { useEffect } from \"react\";\nimport { StackClientApp, StackClientAppJson, stackAppInternalsSymbol } from \"../lib/stack-app\";\nimport React from \"react\";\nimport { UserJson } from \"@stackframe/stack-shared\";\nimport { useStackApp } from \"..\";\nimport { globalVar } from \"@stackframe/stack-shared/dist/utils/globals\";\n\nexport const StackContext = React.createContext<null | {\n  app: StackClientApp<true>,\n}>(null);\n\nexport function StackProviderClient(props: {\n  appJson: StackClientAppJson<true, string>,\n  children?: React.ReactNode,\n}) {\n  const appJson = props.appJson;\n  const app = StackClientApp[stackAppInternalsSymbol].fromClientJson(appJson);\n\n  if (process.env.NODE_ENV === \"development\") {\n    globalVar.stackApp = app;\n  }\n  \n  return (\n    <StackContext.Provider value={{ app }}>\n      {props.children}\n    </StackContext.Provider>\n  );\n}\n\nexport function UserSetter(props: { userJsonPromise: Promise<UserJson | null> }) {\n  const app = useStackApp();\n  useEffect(() => {\n    const promise = (async () => await props.userJsonPromise)();  // there is a Next.js bug where Promises passed by server components return `undefined` as their `then` value, so wrap it in a normal promise\n    app[stackAppInternalsSymbol].setCurrentUser(promise);\n  }, []);\n  return null;\n}\n"],"mappings":";;;AAEA,SAAS,iBAAiB;AAC1B,SAAS,gBAAoC,+BAA+B;AAC5E,OAAO,WAAW;AAElB,SAAS,mBAAmB;AAC5B,SAAS,iBAAiB;AAkBtB;AAhBG,IAAM,eAAe,MAAM,cAE/B,IAAI;AAEA,SAAS,oBAAoB,OAGjC;AACD,QAAM,UAAU,MAAM;AACtB,QAAM,MAAM,eAAe,uBAAuB,EAAE,eAAe,OAAO;AAE1E,MAAI,QAAQ,IAAI,aAAa,eAAe;AAC1C,cAAU,WAAW;AAAA,EACvB;AAEA,SACE,oBAAC,aAAa,UAAb,EAAsB,OAAO,EAAE,IAAI,GACjC,gBAAM,UACT;AAEJ;AAEO,SAAS,WAAW,OAAsD;AAC/E,QAAM,MAAM,YAAY;AACxB,YAAU,MAAM;AACd,UAAM,WAAW,YAAY,MAAM,MAAM,iBAAiB;AAC1D,QAAI,uBAAuB,EAAE,eAAe,OAAO;AAAA,EACrD,GAAG,CAAC,CAAC;AACL,SAAO;AACT;","names":[]}
+{"version":3,"sources":["../../../src/providers/stack-provider-client.tsx"],"sourcesContent":["\"use client\";\n\nimport { CurrentUserCrud } from \"@stackframe/stack-shared/dist/interface/crud/current-user\";\nimport { globalVar } from \"@stackframe/stack-shared/dist/utils/globals\";\nimport React, { useEffect } from \"react\";\nimport { useStackApp } from \"..\";\nimport { StackClientApp, StackClientAppJson, stackAppInternalsSymbol } from \"../lib/stack-app\";\n\nexport const StackContext = React.createContext<null | {\n  app: StackClientApp<true>,\n}>(null);\n\nexport function StackProviderClient(props: {\n  appJson: StackClientAppJson<true, string>,\n  children?: React.ReactNode,\n}) {\n  const appJson = props.appJson;\n  const app = StackClientApp[stackAppInternalsSymbol].fromClientJson(appJson);\n\n  if (process.env.NODE_ENV === \"development\") {\n    globalVar.stackApp = app;\n  }\n\n  return (\n    <StackContext.Provider value={{ app }}>\n      {props.children}\n    </StackContext.Provider>\n  );\n}\n\nexport function UserSetter(props: { userJsonPromise: Promise<CurrentUserCrud['Client']['Read'] | null> }) {\n  const app = useStackApp();\n  useEffect(() => {\n    const promise = (async () => await props.userJsonPromise)();  // there is a Next.js bug where Promises passed by server components return `undefined` as their `then` value, so wrap it in a normal promise\n    app[stackAppInternalsSymbol].setCurrentUser(promise);\n  }, []);\n  return null;\n}\n"],"mappings":";;;AAGA,SAAS,iBAAiB;AAC1B,OAAO,SAAS,iBAAiB;AACjC,SAAS,mBAAmB;AAC5B,SAAS,gBAAoC,+BAA+B;AAkBxE;AAhBG,IAAM,eAAe,MAAM,cAE/B,IAAI;AAEA,SAAS,oBAAoB,OAGjC;AACD,QAAM,UAAU,MAAM;AACtB,QAAM,MAAM,eAAe,uBAAuB,EAAE,eAAe,OAAO;AAE1E,MAAI,QAAQ,IAAI,aAAa,eAAe;AAC1C,cAAU,WAAW;AAAA,EACvB;AAEA,SACE,oBAAC,aAAa,UAAb,EAAsB,OAAO,EAAE,IAAI,GACjC,gBAAM,UACT;AAEJ;AAEO,SAAS,WAAW,OAA+E;AACxG,QAAM,MAAM,YAAY;AACxB,YAAU,MAAM;AACd,UAAM,WAAW,YAAY,MAAM,MAAM,iBAAiB;AAC1D,QAAI,uBAAuB,EAAE,eAAe,OAAO;AAAA,EACrD,GAAG,CAAC,CAAC;AACL,SAAO;AACT;","names":[]}

package/dist/esm/providers/theme-provider.js

@@ -2,20 +2,19 @@
 "use client";
 
 // src/providers/theme-provider.tsx
-import StyledComponentsRegistry from "./styled-components-registry";
 import { globalCSS } from "../generated/global-css";
 import { BrowserScript } from "../utils/browser-script";
 import { DEFAULT_THEME } from "../utils/constants";
 import Color from "color";
 import { deindent } from "@stackframe/stack-shared/dist/utils/strings";
-import { jsx, jsxs } from "react/jsx-runtime";
+import { Fragment, jsx, jsxs } from "react/jsx-runtime";
 function convertColorToCSSVars(obj) {
   return Object.fromEntries(Object.entries(obj).map(([key, value]) => {
     const color = Color(value).hsl().array();
     return [
       // Convert camelCase key to dash-case
       key.replace(/[A-Z]/g, (m) => `-${m.toLowerCase()}`),
-      // Convert color to CSS HSL string 
+      // Convert color to CSS HSL string
       `${color[0]} ${color[1]}% ${color[2]}%`
     ];
   }));
@@ -42,7 +41,8 @@ function convertColorsToCSS(theme) {
 }
 function StackTheme({
   theme,
-  children
+  children,
+  nonce
 }) {
   const themeValue = {
     ...DEFAULT_THEME,
@@ -50,9 +50,18 @@ function StackTheme({
     dark: { ...DEFAULT_THEME.dark, ...theme?.dark },
     light: { ...DEFAULT_THEME.light, ...theme?.light }
   };
-  return /* @__PURE__ */ jsxs(StyledComponentsRegistry, { children: [
-    /* @__PURE__ */ jsx(BrowserScript, {}),
-    /* @__PURE__ */ jsx("style", { dangerouslySetInnerHTML: { __html: globalCSS + "\n" + convertColorsToCSS(themeValue) } }),
+  return /* @__PURE__ */ jsxs(Fragment, { children: [
+    /* @__PURE__ */ jsx(BrowserScript, { nonce }),
+    /* @__PURE__ */ jsx(
+      "style",
+      {
+        suppressHydrationWarning: true,
+        nonce,
+        dangerouslySetInnerHTML: {
+          __html: globalCSS + "\n" + convertColorsToCSS(themeValue)
+        }
+      }
+    ),
     children
   ] });
 }

package/dist/esm/providers/theme-provider.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/providers/theme-provider.tsx"],"sourcesContent":["'use client';\n\nimport React from \"react\";\nimport StyledComponentsRegistry from \"./styled-components-registry\";\nimport { globalCSS } from \"../generated/global-css\";\nimport { BrowserScript } from \"../utils/browser-script\";\nimport { DEFAULT_THEME } from \"../utils/constants\";\nimport Color from \"color\";\nimport { deindent } from \"@stackframe/stack-shared/dist/utils/strings\";\n\ntype Colors = {\n  background: string,\n  foreground: string,\n  card: string,\n  cardForeground: string,\n  popover: string,\n  popoverForeground: string,\n  primary: string,\n  primaryForeground: string,\n  secondary: string,\n  secondaryForeground: string,\n  muted: string,\n  mutedForeground: string,\n  accent: string,\n  accentForeground: string,\n  destructive: string,\n  destructiveForeground: string,\n  border: string,\n  input: string,\n  ring: string,\n}\n\nexport type Theme = {\n  light: Colors,\n  dark: Colors,\n  radius: string,\n};\n\ntype ThemeConfig = {\n  light?: Partial<Colors>,\n  dark?: Partial<Colors>,\n} & Partial<Omit<Theme, 'light' | 'dark'>>;\n\nfunction convertColorToCSSVars(obj: Record<string, string>) {\n  return Object.fromEntries(Object.entries(obj).map(([key, value]) => {\n    const color = Color(value).hsl().array();\n    return [\n      // Convert camelCase key to dash-case\n      key.replace(/[A-Z]/g, m => `-${m.toLowerCase()}`),\n      // Convert color to CSS HSL string \n      `${color[0]} ${color[1]}% ${color[2]}%`\n    ];\n  }));\n}\n\nfunction convertColorsToCSS(theme: Theme) {\n  const { dark, light, ...rest } = theme;\n  const colors = {\n    light: { ...convertColorToCSSVars(light), ...rest },\n    dark: convertColorToCSSVars(dark),\n  };\n\n  function colorsToCSSVars(colors: Record<string, string>) {\n    return Object.entries(colors).map((params) => { \n      return `--${params[0]}: ${params[1]};\\n`;\n    }).join('');\n  }\n  \n  return deindent`\n  .stack-scope {\n  ${colorsToCSSVars(colors.light)}\n  }\n  [data-stack-theme=\"dark\"] .stack-scope {\n  ${colorsToCSSVars(colors.dark)}\n  }`;\n}\n  \n\nexport function StackTheme({\n  theme,\n  children,\n} : {\n  theme?: ThemeConfig,\n  children?: React.ReactNode,\n}) {\n  const themeValue: Theme = { \n    ...DEFAULT_THEME,\n    ...theme,\n    dark: { ...DEFAULT_THEME.dark, ...theme?.dark }, \n    light: { ...DEFAULT_THEME.light, ...theme?.light },\n  };\n\n  return (\n    <StyledComponentsRegistry>\n      <BrowserScript />\n      <style dangerouslySetInnerHTML={{ __html: globalCSS + '\\n' + convertColorsToCSS(themeValue) }} />\n      {children}\n    </StyledComponentsRegistry>\n  );\n}"],"mappings":";;;AAGA,OAAO,8BAA8B;AACrC,SAAS,iBAAiB;AAC1B,SAAS,qBAAqB;AAC9B,SAAS,qBAAqB;AAC9B,OAAO,WAAW;AAClB,SAAS,gBAAgB;AAqFrB,SACE,KADF;AAlDJ,SAAS,sBAAsB,KAA6B;AAC1D,SAAO,OAAO,YAAY,OAAO,QAAQ,GAAG,EAAE,IAAI,CAAC,CAAC,KAAK,KAAK,MAAM;AAClE,UAAM,QAAQ,MAAM,KAAK,EAAE,IAAI,EAAE,MAAM;AACvC,WAAO;AAAA;AAAA,MAEL,IAAI,QAAQ,UAAU,OAAK,IAAI,EAAE,YAAY,CAAC,EAAE;AAAA;AAAA,MAEhD,GAAG,MAAM,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,KAAK,MAAM,CAAC,CAAC;AAAA,IACtC;AAAA,EACF,CAAC,CAAC;AACJ;AAEA,SAAS,mBAAmB,OAAc;AACxC,QAAM,EAAE,MAAM,OAAO,GAAG,KAAK,IAAI;AACjC,QAAM,SAAS;AAAA,IACb,OAAO,EAAE,GAAG,sBAAsB,KAAK,GAAG,GAAG,KAAK;AAAA,IAClD,MAAM,sBAAsB,IAAI;AAAA,EAClC;AAEA,WAAS,gBAAgBA,SAAgC;AACvD,WAAO,OAAO,QAAQA,OAAM,EAAE,IAAI,CAAC,WAAW;AAC5C,aAAO,KAAK,OAAO,CAAC,CAAC,KAAK,OAAO,CAAC,CAAC;AAAA;AAAA,IACrC,CAAC,EAAE,KAAK,EAAE;AAAA,EACZ;AAEA,SAAO;AAAA;AAAA,IAEL,gBAAgB,OAAO,KAAK,CAAC;AAAA;AAAA;AAAA,IAG7B,gBAAgB,OAAO,IAAI,CAAC;AAAA;AAEhC;AAGO,SAAS,WAAW;AAAA,EACzB;AAAA,EACA;AACF,GAGG;AACD,QAAM,aAAoB;AAAA,IACxB,GAAG;AAAA,IACH,GAAG;AAAA,IACH,MAAM,EAAE,GAAG,cAAc,MAAM,GAAG,OAAO,KAAK;AAAA,IAC9C,OAAO,EAAE,GAAG,cAAc,OAAO,GAAG,OAAO,MAAM;AAAA,EACnD;AAEA,SACE,qBAAC,4BACC;AAAA,wBAAC,iBAAc;AAAA,IACf,oBAAC,WAAM,yBAAyB,EAAE,QAAQ,YAAY,OAAO,mBAAmB,UAAU,EAAE,GAAG;AAAA,IAC9F;AAAA,KACH;AAEJ;","names":["colors"]}
+{"version":3,"sources":["../../../src/providers/theme-provider.tsx"],"sourcesContent":["'use client';\n\nimport React from \"react\";\nimport { globalCSS } from \"../generated/global-css\";\nimport { BrowserScript } from \"../utils/browser-script\";\nimport { DEFAULT_THEME } from \"../utils/constants\";\nimport Color from \"color\";\nimport { deindent } from \"@stackframe/stack-shared/dist/utils/strings\";\n\ntype Colors = {\n  background: string,\n  foreground: string,\n  card: string,\n  cardForeground: string,\n  popover: string,\n  popoverForeground: string,\n  primary: string,\n  primaryForeground: string,\n  secondary: string,\n  secondaryForeground: string,\n  muted: string,\n  mutedForeground: string,\n  accent: string,\n  accentForeground: string,\n  destructive: string,\n  destructiveForeground: string,\n  border: string,\n  input: string,\n  ring: string,\n}\n\nexport type Theme = {\n  light: Colors,\n  dark: Colors,\n  radius: string,\n};\n\ntype ThemeConfig = {\n  light?: Partial<Colors>,\n  dark?: Partial<Colors>,\n} & Partial<Omit<Theme, 'light' | 'dark'>>;\n\nfunction convertColorToCSSVars(obj: Record<string, string>) {\n  return Object.fromEntries(Object.entries(obj).map(([key, value]) => {\n    const color = Color(value).hsl().array();\n    return [\n      // Convert camelCase key to dash-case\n      key.replace(/[A-Z]/g, m => `-${m.toLowerCase()}`),\n      // Convert color to CSS HSL string\n      `${color[0]} ${color[1]}% ${color[2]}%`\n    ];\n  }));\n}\n\nfunction convertColorsToCSS(theme: Theme) {\n  const { dark, light, ...rest } = theme;\n  const colors = {\n    light: { ...convertColorToCSSVars(light), ...rest },\n    dark: convertColorToCSSVars(dark),\n  };\n\n  function colorsToCSSVars(colors: Record<string, string>) {\n    return Object.entries(colors).map((params) => {\n      return `--${params[0]}: ${params[1]};\\n`;\n    }).join('');\n  }\n\n  return deindent`\n  .stack-scope {\n  ${colorsToCSSVars(colors.light)}\n  }\n  [data-stack-theme=\"dark\"] .stack-scope {\n  ${colorsToCSSVars(colors.dark)}\n  }`;\n}\n\n\nexport function StackTheme({\n  theme,\n  children,\n  nonce,\n} : {\n  theme?: ThemeConfig,\n  children?: React.ReactNode,\n  nonce?: string,\n}) {\n  const themeValue: Theme = {\n    ...DEFAULT_THEME,\n    ...theme,\n    dark: { ...DEFAULT_THEME.dark, ...theme?.dark },\n    light: { ...DEFAULT_THEME.light, ...theme?.light },\n  };\n\n  return (\n    <>\n      <BrowserScript nonce={nonce} />\n      <style\n        suppressHydrationWarning\n        nonce={nonce}\n        dangerouslySetInnerHTML={{\n          __html: globalCSS + \"\\n\" + convertColorsToCSS(themeValue),\n        }}\n      />\n      {children}\n    </>\n  );\n}"],"mappings":";;;AAGA,SAAS,iBAAiB;AAC1B,SAAS,qBAAqB;AAC9B,SAAS,qBAAqB;AAC9B,OAAO,WAAW;AAClB,SAAS,gBAAgB;AAuFrB,mBACE,KADF;AApDJ,SAAS,sBAAsB,KAA6B;AAC1D,SAAO,OAAO,YAAY,OAAO,QAAQ,GAAG,EAAE,IAAI,CAAC,CAAC,KAAK,KAAK,MAAM;AAClE,UAAM,QAAQ,MAAM,KAAK,EAAE,IAAI,EAAE,MAAM;AACvC,WAAO;AAAA;AAAA,MAEL,IAAI,QAAQ,UAAU,OAAK,IAAI,EAAE,YAAY,CAAC,EAAE;AAAA;AAAA,MAEhD,GAAG,MAAM,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,KAAK,MAAM,CAAC,CAAC;AAAA,IACtC;AAAA,EACF,CAAC,CAAC;AACJ;AAEA,SAAS,mBAAmB,OAAc;AACxC,QAAM,EAAE,MAAM,OAAO,GAAG,KAAK,IAAI;AACjC,QAAM,SAAS;AAAA,IACb,OAAO,EAAE,GAAG,sBAAsB,KAAK,GAAG,GAAG,KAAK;AAAA,IAClD,MAAM,sBAAsB,IAAI;AAAA,EAClC;AAEA,WAAS,gBAAgBA,SAAgC;AACvD,WAAO,OAAO,QAAQA,OAAM,EAAE,IAAI,CAAC,WAAW;AAC5C,aAAO,KAAK,OAAO,CAAC,CAAC,KAAK,OAAO,CAAC,CAAC;AAAA;AAAA,IACrC,CAAC,EAAE,KAAK,EAAE;AAAA,EACZ;AAEA,SAAO;AAAA;AAAA,IAEL,gBAAgB,OAAO,KAAK,CAAC;AAAA;AAAA;AAAA,IAG7B,gBAAgB,OAAO,IAAI,CAAC;AAAA;AAEhC;AAGO,SAAS,WAAW;AAAA,EACzB;AAAA,EACA;AAAA,EACA;AACF,GAIG;AACD,QAAM,aAAoB;AAAA,IACxB,GAAG;AAAA,IACH,GAAG;AAAA,IACH,MAAM,EAAE,GAAG,cAAc,MAAM,GAAG,OAAO,KAAK;AAAA,IAC9C,OAAO,EAAE,GAAG,cAAc,OAAO,GAAG,OAAO,MAAM;AAAA,EACnD;AAEA,SACE,iCACE;AAAA,wBAAC,iBAAc,OAAc;AAAA,IAC7B;AAAA,MAAC;AAAA;AAAA,QACC,0BAAwB;AAAA,QACxB;AAAA,QACA,yBAAyB;AAAA,UACvB,QAAQ,YAAY,OAAO,mBAAmB,UAAU;AAAA,QAC1D;AAAA;AAAA,IACF;AAAA,IACC;AAAA,KACH;AAEJ;","names":["colors"]}

package/dist/esm/utils/browser-script.js

@@ -26,8 +26,8 @@ var script = () => {
     attributeFilter: attributes
   });
 };
-function BrowserScript() {
-  return /* @__PURE__ */ jsx(SsrScript, { script: `(${script.toString()})()` });
+function BrowserScript(props) {
+  return /* @__PURE__ */ jsx(SsrScript, { nonce: props.nonce, script: `(${script.toString()})()` });
 }
 export {
   BrowserScript

package/dist/esm/utils/browser-script.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/utils/browser-script.tsx"],"sourcesContent":["// Note that this script can not import anything from outside as it will be converted to a string and executed in the browser.\n\nimport { SsrScript } from \"../components/elements/ssr-layout-effect\";\n\n// Also please note that there might be hydration issues with this script, always check the browser console for errors after changing this script.\nconst script = () => {\n  const attributes = ['data-joy-color-scheme', 'data-mui-color-scheme', 'data-theme', 'data-color-scheme', 'class'];\n\n  const observer = new MutationObserver((mutations) => {\n    mutations.forEach((mutation) => {\n      for (const attributeName of attributes) {\n        if (mutation.attributeName === attributeName) {\n          const colorTheme = document.documentElement.getAttribute(attributeName);\n          if (!colorTheme) {\n            continue;\n          }\n          const darkMode = colorTheme.includes('dark');\n          const lightMode = colorTheme.includes('light');\n          if (!darkMode && !lightMode) {\n            continue;\n          }\n          document.documentElement.setAttribute('data-stack-theme', darkMode ? 'dark' : 'light');\n        }\n      }\n    });\n  });\n\n  observer.observe(document.documentElement, {\n    attributes: true,\n    attributeFilter: attributes,\n  });\n};\n\nexport function BrowserScript() {\n  return <SsrScript script={`(${script.toString()})()`}/>;\n}"],"mappings":";AAEA,SAAS,iBAAiB;AAgCjB;AA7BT,IAAM,SAAS,MAAM;AACnB,QAAM,aAAa,CAAC,yBAAyB,yBAAyB,cAAc,qBAAqB,OAAO;AAEhH,QAAM,WAAW,IAAI,iBAAiB,CAAC,cAAc;AACnD,cAAU,QAAQ,CAAC,aAAa;AAC9B,iBAAW,iBAAiB,YAAY;AACtC,YAAI,SAAS,kBAAkB,eAAe;AAC5C,gBAAM,aAAa,SAAS,gBAAgB,aAAa,aAAa;AACtE,cAAI,CAAC,YAAY;AACf;AAAA,UACF;AACA,gBAAM,WAAW,WAAW,SAAS,MAAM;AAC3C,gBAAM,YAAY,WAAW,SAAS,OAAO;AAC7C,cAAI,CAAC,YAAY,CAAC,WAAW;AAC3B;AAAA,UACF;AACA,mBAAS,gBAAgB,aAAa,oBAAoB,WAAW,SAAS,OAAO;AAAA,QACvF;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH,CAAC;AAED,WAAS,QAAQ,SAAS,iBAAiB;AAAA,IACzC,YAAY;AAAA,IACZ,iBAAiB;AAAA,EACnB,CAAC;AACH;AAEO,SAAS,gBAAgB;AAC9B,SAAO,oBAAC,aAAU,QAAQ,IAAI,OAAO,SAAS,CAAC,OAAM;AACvD;","names":[]}
+{"version":3,"sources":["../../../src/utils/browser-script.tsx"],"sourcesContent":["// Note that this script can not import anything from outside as it will be converted to a string and executed in the browser.\n\nimport { SsrScript } from \"../components/elements/ssr-layout-effect\";\n\n// Also please note that there might be hydration issues with this script, always check the browser console for errors after changing this script.\nconst script = () => {\n  const attributes = ['data-joy-color-scheme', 'data-mui-color-scheme', 'data-theme', 'data-color-scheme', 'class'];\n\n  const observer = new MutationObserver((mutations) => {\n    mutations.forEach((mutation) => {\n      for (const attributeName of attributes) {\n        if (mutation.attributeName === attributeName) {\n          const colorTheme = document.documentElement.getAttribute(attributeName);\n          if (!colorTheme) {\n            continue;\n          }\n          const darkMode = colorTheme.includes('dark');\n          const lightMode = colorTheme.includes('light');\n          if (!darkMode && !lightMode) {\n            continue;\n          }\n          document.documentElement.setAttribute('data-stack-theme', darkMode ? 'dark' : 'light');\n        }\n      }\n    });\n  });\n\n  observer.observe(document.documentElement, {\n    attributes: true,\n    attributeFilter: attributes,\n  });\n};\n\nexport function BrowserScript(props : { nonce?: string }) {\n  return <SsrScript nonce={props.nonce} script={`(${script.toString()})()`}/>;\n}"],"mappings":";AAEA,SAAS,iBAAiB;AAgCjB;AA7BT,IAAM,SAAS,MAAM;AACnB,QAAM,aAAa,CAAC,yBAAyB,yBAAyB,cAAc,qBAAqB,OAAO;AAEhH,QAAM,WAAW,IAAI,iBAAiB,CAAC,cAAc;AACnD,cAAU,QAAQ,CAAC,aAAa;AAC9B,iBAAW,iBAAiB,YAAY;AACtC,YAAI,SAAS,kBAAkB,eAAe;AAC5C,gBAAM,aAAa,SAAS,gBAAgB,aAAa,aAAa;AACtE,cAAI,CAAC,YAAY;AACf;AAAA,UACF;AACA,gBAAM,WAAW,WAAW,SAAS,MAAM;AAC3C,gBAAM,YAAY,WAAW,SAAS,OAAO;AAC7C,cAAI,CAAC,YAAY,CAAC,WAAW;AAC3B;AAAA,UACF;AACA,mBAAS,gBAAgB,aAAa,oBAAoB,WAAW,SAAS,OAAO;AAAA,QACvF;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH,CAAC;AAED,WAAS,QAAQ,SAAS,iBAAiB;AAAA,IACzC,YAAY;AAAA,IACZ,iBAAiB;AAAA,EACnB,CAAC;AACH;AAEO,SAAS,cAAc,OAA4B;AACxD,SAAO,oBAAC,aAAU,OAAO,MAAM,OAAO,QAAQ,IAAI,OAAO,SAAS,CAAC,OAAM;AAC3E;","names":[]}

package/dist/esm/utils/email.js

@@ -1,8 +1,8 @@
 // src/utils/email.tsx
-import * as yup from "yup";
+import { yupString } from "@stackframe/stack-shared/dist/schema-fields";
 function validateEmail(email) {
   if (typeof email !== "string") throw new Error("Email must be a string");
-  return yup.string().email().isValidSync(email);
+  return yupString().email().isValidSync(email);
 }
 export {
   validateEmail

package/dist/esm/utils/email.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/utils/email.tsx"],"sourcesContent":["import * as yup from \"yup\";\n\nexport function validateEmail(email: string): boolean {\n  if (typeof email !== \"string\") throw new Error(\"Email must be a string\");\n  return yup.string().email().isValidSync(email);\n};\n"],"mappings":";AAAA,YAAY,SAAS;AAEd,SAAS,cAAc,OAAwB;AACpD,MAAI,OAAO,UAAU,SAAU,OAAM,IAAI,MAAM,wBAAwB;AACvE,SAAW,WAAO,EAAE,MAAM,EAAE,YAAY,KAAK;AAC/C;","names":[]}
+{"version":3,"sources":["../../../src/utils/email.tsx"],"sourcesContent":["import { yupString } from \"@stackframe/stack-shared/dist/schema-fields\";\nimport * as yup from \"yup\";\n\nexport function validateEmail(email: string): boolean {\n  if (typeof email !== \"string\") throw new Error(\"Email must be a string\");\n  return yupString().email().isValidSync(email);\n};\n"],"mappings":";AAAA,SAAS,iBAAiB;AAGnB,SAAS,cAAc,OAAwB;AACpD,MAAI,OAAO,UAAU,SAAU,OAAM,IAAI,MAAM,wBAAwB;AACvE,SAAO,UAAU,EAAE,MAAM,EAAE,YAAY,KAAK;AAC9C;","names":[]}

package/dist/index.d.mts

@@ -1,8 +1,8 @@
 export { default as StackProvider } from './providers/stack-provider.mjs';
 export { useStackApp, useUser } from './lib/hooks.mjs';
-export { ApiKeySet, ApiKeySetFirstView, CurrentUser, ServerPermission as Permission, Project, ServerPermission, ServerTeam, ServerTeamMember, ServerUser, StackAdminApp, StackClientApp, StackServerApp, Team, TeamMember } from './lib/stack-app.mjs';
 export { default as StackHandler } from './components-page/stack-handler.mjs';
 export { StackTheme } from './providers/theme-provider.mjs';
+export { AdminDomainConfig, AdminEmailConfig, AdminOAuthProviderConfig, AdminOwnedProject, AdminProject, AdminProjectConfig, AdminProjectConfigUpdateOptions, AdminProjectCreateOptions, AdminProjectUpdateOptions, AdminTeamPermission, AdminTeamPermissionDefinition, AdminTeamPermissionDefinitionCreateOptions, AdminTeamPermissionDefinitionUpdateOptions, ApiKey, ApiKeyBase, ApiKeyBaseCrudRead, ApiKeyCreateOptions, ApiKeyFirstView, Connection, CurrentInternalServerUser, CurrentInternalUser, CurrentServerUser, CurrentUser, GetUserOptions, HandlerUrls, OAuthConnection, OAuthProviderConfig, OAuthScopesOnSignIn, Project, ProjectConfig, ServerTeam, ServerTeamCreateOptions, ServerTeamUpdateOptions, ServerUser, StackAdminApp, StackAdminAppConstructorOptions, StackClientApp, StackClientAppConstructorOptions, StackClientAppJson, StackServerApp, StackServerAppConstructorOptions, Team, TeamCreateOptions, TeamPermission, TokenStoreInit, User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol } from './lib/stack-app.mjs';
 export { SignIn } from './components-page/sign-in.mjs';
 export { SignUp } from './components-page/sign-up.mjs';
 export { EmailVerification } from './components-page/email-verification.mjs';
@@ -21,9 +21,11 @@ export { SelectedTeamSwitcher, SelectedTeamSwitcher as TeamSwitcher } from './co
 import 'react/jsx-runtime';
 import 'react';
 import '@stackframe/stack-shared';
+import '@stackframe/stack-shared/dist/helpers/production-mode';
 import '@stackframe/stack-shared/dist/interface/clientInterface';
-import '@stackframe/stack-shared/dist/utils/json';
-import '@stackframe/stack-shared/dist/interface/adminInterface';
-import '@stackframe/stack-shared/dist/interface/serverInterface';
+import '@stackframe/stack-shared/dist/interface/crud/api-keys';
+import '@stackframe/stack-shared/dist/interface/crud/current-user';
 import '@stackframe/stack-shared/dist/interface/crud/email-templates';
+import '@stackframe/stack-shared/dist/interface/crud/team-permissions';
 import '@stackframe/stack-shared/dist/sessions';
+import '@stackframe/stack-shared/dist/utils/json';

package/dist/index.d.ts

@@ -1,8 +1,8 @@
 export { default as StackProvider } from './providers/stack-provider.js';
 export { useStackApp, useUser } from './lib/hooks.js';
-export { ApiKeySet, ApiKeySetFirstView, CurrentUser, ServerPermission as Permission, Project, ServerPermission, ServerTeam, ServerTeamMember, ServerUser, StackAdminApp, StackClientApp, StackServerApp, Team, TeamMember } from './lib/stack-app.js';
 export { default as StackHandler } from './components-page/stack-handler.js';
 export { StackTheme } from './providers/theme-provider.js';
+export { AdminDomainConfig, AdminEmailConfig, AdminOAuthProviderConfig, AdminOwnedProject, AdminProject, AdminProjectConfig, AdminProjectConfigUpdateOptions, AdminProjectCreateOptions, AdminProjectUpdateOptions, AdminTeamPermission, AdminTeamPermissionDefinition, AdminTeamPermissionDefinitionCreateOptions, AdminTeamPermissionDefinitionUpdateOptions, ApiKey, ApiKeyBase, ApiKeyBaseCrudRead, ApiKeyCreateOptions, ApiKeyFirstView, Connection, CurrentInternalServerUser, CurrentInternalUser, CurrentServerUser, CurrentUser, GetUserOptions, HandlerUrls, OAuthConnection, OAuthProviderConfig, OAuthScopesOnSignIn, Project, ProjectConfig, ServerTeam, ServerTeamCreateOptions, ServerTeamUpdateOptions, ServerUser, StackAdminApp, StackAdminAppConstructorOptions, StackClientApp, StackClientAppConstructorOptions, StackClientAppJson, StackServerApp, StackServerAppConstructorOptions, Team, TeamCreateOptions, TeamPermission, TokenStoreInit, User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol } from './lib/stack-app.js';
 export { SignIn } from './components-page/sign-in.js';
 export { SignUp } from './components-page/sign-up.js';
 export { EmailVerification } from './components-page/email-verification.js';
@@ -21,9 +21,11 @@ export { SelectedTeamSwitcher, SelectedTeamSwitcher as TeamSwitcher } from './co
 import 'react/jsx-runtime';
 import 'react';
 import '@stackframe/stack-shared';
+import '@stackframe/stack-shared/dist/helpers/production-mode';
 import '@stackframe/stack-shared/dist/interface/clientInterface';
-import '@stackframe/stack-shared/dist/utils/json';
-import '@stackframe/stack-shared/dist/interface/adminInterface';
-import '@stackframe/stack-shared/dist/interface/serverInterface';
+import '@stackframe/stack-shared/dist/interface/crud/api-keys';
+import '@stackframe/stack-shared/dist/interface/crud/current-user';
 import '@stackframe/stack-shared/dist/interface/crud/email-templates';
+import '@stackframe/stack-shared/dist/interface/crud/team-permissions';
 import '@stackframe/stack-shared/dist/sessions';
+import '@stackframe/stack-shared/dist/utils/json';

package/dist/index.js

@@ -17,6 +17,7 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
+var __reExport = (target, mod, secondTarget) => (__copyProps(target, mod, "default"), secondTarget && __copyProps(secondTarget, mod, "default"));
 var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
   // If the importer is in node compatibility mode or this is not an ESM
   // file that has been converted to a CommonJS file using a Babel-
@@ -44,11 +45,8 @@ __export(src_exports, {
   SelectedTeamSwitcher: () => import_selected_team_switcher.SelectedTeamSwitcher,
   SignIn: () => import_sign_in.SignIn,
   SignUp: () => import_sign_up.SignUp,
-  StackAdminApp: () => import_stack_app.StackAdminApp,
-  StackClientApp: () => import_stack_app.StackClientApp,
   StackHandler: () => import_stack_handler.default,
   StackProvider: () => import_stack_provider.default,
-  StackServerApp: () => import_stack_app.StackServerApp,
   StackTheme: () => import_theme_provider.StackTheme,
   TeamSwitcher: () => import_selected_team_switcher.SelectedTeamSwitcher,
   UserButton: () => import_user_button.UserButton,
@@ -58,9 +56,9 @@ __export(src_exports, {
 module.exports = __toCommonJS(src_exports);
 var import_stack_provider = __toESM(require("./providers/stack-provider"));
 var import_hooks = require("./lib/hooks");
-var import_stack_app = require("./lib/stack-app");
 var import_stack_handler = __toESM(require("./components-page/stack-handler"));
 var import_theme_provider = require("./providers/theme-provider");
+__reExport(src_exports, require("./lib/stack-app"), module.exports);
 var import_sign_in = require("./components-page/sign-in");
 var import_sign_up = require("./components-page/sign-up");
 var import_email_verification = require("./components-page/email-verification");
@@ -92,15 +90,13 @@ var import_selected_team_switcher = require("./components/selected-team-switcher
   SelectedTeamSwitcher,
   SignIn,
   SignUp,
-  StackAdminApp,
-  StackClientApp,
   StackHandler,
   StackProvider,
-  StackServerApp,
   StackTheme,
   TeamSwitcher,
   UserButton,
   useStackApp,
-  useUser
+  useUser,
+  ...require("./lib/stack-app")
 });
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/index.tsx"],"sourcesContent":["export { default as StackProvider } from \"./providers/stack-provider\";\nexport { useUser, useStackApp } from \"./lib/hooks\";\nexport { StackClientApp, StackServerApp, StackAdminApp } from \"./lib/stack-app\";\nexport { default as StackHandler } from \"./components-page/stack-handler\";\nexport { StackTheme } from './providers/theme-provider';\nexport type {\n  CurrentUser, \n  Project, \n  ServerUser as ServerUser, \n  ApiKeySetFirstView, \n  ApiKeySet, \n  ServerTeam, \n  Team, \n  TeamMember,\n  ServerTeamMember,\n  ServerPermission as Permission,\n  ServerPermission,\n} from './lib/stack-app';\n\nexport { SignIn } from \"./components-page/sign-in\";\nexport { SignUp } from \"./components-page/sign-up\";\nexport { EmailVerification } from \"./components-page/email-verification\";\nexport { PasswordReset } from \"./components-page/password-reset\";\nexport { ForgotPassword } from \"./components-page/forgot-password\";\nexport { MessageCard } from \"./components/message-cards/message-card\";\nexport { UserButton } from \"./components/user-button\";\nexport { AccountSettings } from \"./components-page/account-settings\";\nexport { AuthPage } from \"./components-page/auth-page\";\nexport { CredentialSignInForm as CredentialSignIn } from \"./components/credential-sign-in-form\";\nexport { CredentialSignUpForm as CredentialSignUp } from \"./components/credential-sign-up-form\";\nexport { MagicLinkSignInForm as MagicLinkSignIn } from \"./components/magic-link-sign-in-form\";\nexport { OAuthButton } from \"./components/oauth-button\";\nexport { OAuthButtonGroup } from \"./components/oauth-button-group\";\n\nexport { \n  SelectedTeamSwitcher,\n  /**\n   * @deprecated This was renamed to `SelectedTeamSwitcher`.\n   */\n  SelectedTeamSwitcher as TeamSwitcher,\n} from \"./components/selected-team-switcher\";\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,4BAAyC;AACzC,mBAAqC;AACrC,uBAA8D;AAC9D,2BAAwC;AACxC,4BAA2B;AAe3B,qBAAuB;AACvB,qBAAuB;AACvB,gCAAkC;AAClC,4BAA8B;AAC9B,6BAA+B;AAC/B,0BAA4B;AAC5B,yBAA2B;AAC3B,8BAAgC;AAChC,uBAAyB;AACzB,qCAAyD;AACzD,qCAAyD;AACzD,qCAAuD;AACvD,0BAA4B;AAC5B,gCAAiC;AAEjC,oCAMO;","names":[]}
+{"version":3,"sources":["../src/index.tsx"],"sourcesContent":["export { default as StackProvider } from \"./providers/stack-provider\";\nexport { useUser, useStackApp } from \"./lib/hooks\";\nexport { default as StackHandler } from \"./components-page/stack-handler\";\nexport { StackTheme } from './providers/theme-provider';\nexport * from './lib/stack-app';\n\nexport { SignIn } from \"./components-page/sign-in\";\nexport { SignUp } from \"./components-page/sign-up\";\nexport { EmailVerification } from \"./components-page/email-verification\";\nexport { PasswordReset } from \"./components-page/password-reset\";\nexport { ForgotPassword } from \"./components-page/forgot-password\";\nexport { MessageCard } from \"./components/message-cards/message-card\";\nexport { UserButton } from \"./components/user-button\";\nexport { AccountSettings } from \"./components-page/account-settings\";\nexport { AuthPage } from \"./components-page/auth-page\";\nexport { CredentialSignInForm as CredentialSignIn } from \"./components/credential-sign-in-form\";\nexport { CredentialSignUpForm as CredentialSignUp } from \"./components/credential-sign-up-form\";\nexport { MagicLinkSignInForm as MagicLinkSignIn } from \"./components/magic-link-sign-in-form\";\nexport { OAuthButton } from \"./components/oauth-button\";\nexport { OAuthButtonGroup } from \"./components/oauth-button-group\";\n\nexport {\n  SelectedTeamSwitcher,\n  /**\n   * @deprecated This was renamed to `SelectedTeamSwitcher`.\n   */\n  SelectedTeamSwitcher as TeamSwitcher,\n} from \"./components/selected-team-switcher\";\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,4BAAyC;AACzC,mBAAqC;AACrC,2BAAwC;AACxC,4BAA2B;AAC3B,wBAAc,4BAJd;AAMA,qBAAuB;AACvB,qBAAuB;AACvB,gCAAkC;AAClC,4BAA8B;AAC9B,6BAA+B;AAC/B,0BAA4B;AAC5B,yBAA2B;AAC3B,8BAAgC;AAChC,uBAAyB;AACzB,qCAAyD;AACzD,qCAAyD;AACzD,qCAAuD;AACvD,0BAA4B;AAC5B,gCAAiC;AAEjC,oCAMO;","names":[]}

package/dist/lib/auth.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../src/lib/auth.ts"],"sourcesContent":["import { StackClientInterface } from \"@stackframe/stack-shared\";\nimport { saveVerifierAndState, getVerifierAndState } from \"./cookie\";\nimport { constructRedirectUrl } from \"../utils/url\";\nimport { neverResolve } from \"@stackframe/stack-shared/dist/utils/promises\";\nimport { StackAssertionError } from \"@stackframe/stack-shared/dist/utils/errors\";\nimport { InternalSession } from \"@stackframe/stack-shared/dist/sessions\";\n\nexport async function signInWithOAuth(\n  iface: StackClientInterface,\n  options: { \n    provider: string,\n    redirectUrl: string,\n    errorRedirectUrl: string,\n    providerScope?: string,\n  }\n) {\n  const { codeChallenge, state } = await saveVerifierAndState();\n  const location = await iface.getOAuthUrl({\n    provider: options.provider,\n    redirectUrl: constructRedirectUrl(options.redirectUrl),\n    errorRedirectUrl: constructRedirectUrl(options.errorRedirectUrl),\n    codeChallenge,\n    state,\n    type: \"authenticate\",\n    providerScope: options.providerScope,\n  });\n  window.location.assign(location);\n  await neverResolve();\n}\n\nexport async function addNewOAuthProviderOrScope(\n  iface: StackClientInterface,\n  options: { \n    provider: string,\n    redirectUrl: string,\n    errorRedirectUrl: string,\n    providerScope?: string,\n  },\n  session: InternalSession,\n) {\n  const { codeChallenge, state } = await saveVerifierAndState();\n  const location = await iface.getOAuthUrl({\n    provider: options.provider,\n    redirectUrl: constructRedirectUrl(options.redirectUrl),\n    errorRedirectUrl: constructRedirectUrl(options.errorRedirectUrl),\n    afterCallbackRedirectUrl: constructRedirectUrl(window.location.href),\n    codeChallenge,\n    state,\n    type: \"link\",\n    session,\n    providerScope: options.providerScope,\n  });\n  window.location.assign(location);\n  await neverResolve();\n}\n\n/**\n * Checks if the current URL has the query parameters for an OAuth callback, and if so, removes them.\n * \n * Must be synchronous for the logic in callOAuthCallback to work without race conditions.\n */\nfunction consumeOAuthCallbackQueryParams(expectedState: string): null | URL {\n  const requiredParams = [\"code\", \"state\"];\n  const originalUrl = new URL(window.location.href);\n  for (const param of requiredParams) {\n    if (!originalUrl.searchParams.has(param)) {\n      return null;\n    }\n  }\n\n  if (expectedState !== originalUrl.searchParams.get(\"state\")) {\n    // If the state doesn't match, then the callback wasn't meant for us.\n    // Maybe the website uses another OAuth library?\n    return null;\n  }\n\n\n  const newUrl = new URL(originalUrl);\n  for (const param of requiredParams) {\n    newUrl.searchParams.delete(param);\n  }\n\n  // let's get rid of the authorization code in the history as we\n  // don't redirect to `redirectUrl` if there's a validation error\n  // (as the redirectUrl might be malicious!).\n  //\n  // We use history.replaceState instead of location.assign(...) to\n  // prevent an unnecessary reload\n  window.history.replaceState({}, \"\", newUrl.toString());\n\n  return originalUrl; \n}\n\nexport async function callOAuthCallback(\n  iface: StackClientInterface,\n  redirectUrl: string,\n) {\n  // note: this part of the function (until the return) needs\n  // to be synchronous, to prevent race conditions when\n  // callOAuthCallback is called multiple times in parallel\n  const { codeVerifier, state } = getVerifierAndState();\n  if (!codeVerifier || !state) {\n    throw new Error(\"Invalid OAuth callback URL parameters. It seems like the OAuth flow was interrupted, so please try again.\");\n  }\n  const originalUrl = consumeOAuthCallbackQueryParams(state);\n  if (!originalUrl) return null;\n\n  // the rest can be asynchronous (we now know that we are the\n  // intended recipient of the callback)\n  try {\n    return await iface.callOAuthCallback({\n      oauthParams: originalUrl.searchParams,\n      redirectUri: constructRedirectUrl(redirectUrl),\n      codeVerifier,\n      state,\n    });\n  } catch (e) {\n    throw new StackAssertionError(\"Error signing in during OAuth callback. Please try again.\", { cause: e });\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AACA,oBAA0D;AAC1D,iBAAqC;AACrC,sBAA6B;AAC7B,oBAAoC;AAGpC,eAAsB,gBACpB,OACA,SAMA;AACA,QAAM,EAAE,eAAe,MAAM,IAAI,UAAM,oCAAqB;AAC5D,QAAM,WAAW,MAAM,MAAM,YAAY;AAAA,IACvC,UAAU,QAAQ;AAAA,IAClB,iBAAa,iCAAqB,QAAQ,WAAW;AAAA,IACrD,sBAAkB,iCAAqB,QAAQ,gBAAgB;AAAA,IAC/D;AAAA,IACA;AAAA,IACA,MAAM;AAAA,IACN,eAAe,QAAQ;AAAA,EACzB,CAAC;AACD,SAAO,SAAS,OAAO,QAAQ;AAC/B,YAAM,8BAAa;AACrB;AAEA,eAAsB,2BACpB,OACA,SAMA,SACA;AACA,QAAM,EAAE,eAAe,MAAM,IAAI,UAAM,oCAAqB;AAC5D,QAAM,WAAW,MAAM,MAAM,YAAY;AAAA,IACvC,UAAU,QAAQ;AAAA,IAClB,iBAAa,iCAAqB,QAAQ,WAAW;AAAA,IACrD,sBAAkB,iCAAqB,QAAQ,gBAAgB;AAAA,IAC/D,8BAA0B,iCAAqB,OAAO,SAAS,IAAI;AAAA,IACnE;AAAA,IACA;AAAA,IACA,MAAM;AAAA,IACN;AAAA,IACA,eAAe,QAAQ;AAAA,EACzB,CAAC;AACD,SAAO,SAAS,OAAO,QAAQ;AAC/B,YAAM,8BAAa;AACrB;AAOA,SAAS,gCAAgC,eAAmC;AAC1E,QAAM,iBAAiB,CAAC,QAAQ,OAAO;AACvC,QAAM,cAAc,IAAI,IAAI,OAAO,SAAS,IAAI;AAChD,aAAW,SAAS,gBAAgB;AAClC,QAAI,CAAC,YAAY,aAAa,IAAI,KAAK,GAAG;AACxC,aAAO;AAAA,IACT;AAAA,EACF;AAEA,MAAI,kBAAkB,YAAY,aAAa,IAAI,OAAO,GAAG;AAG3D,WAAO;AAAA,EACT;AAGA,QAAM,SAAS,IAAI,IAAI,WAAW;AAClC,aAAW,SAAS,gBAAgB;AAClC,WAAO,aAAa,OAAO,KAAK;AAAA,EAClC;AAQA,SAAO,QAAQ,aAAa,CAAC,GAAG,IAAI,OAAO,SAAS,CAAC;AAErD,SAAO;AACT;AAEA,eAAsB,kBACpB,OACA,aACA;AAIA,QAAM,EAAE,cAAc,MAAM,QAAI,mCAAoB;AACpD,MAAI,CAAC,gBAAgB,CAAC,OAAO;AAC3B,UAAM,IAAI,MAAM,2GAA2G;AAAA,EAC7H;AACA,QAAM,cAAc,gCAAgC,KAAK;AACzD,MAAI,CAAC,YAAa,QAAO;AAIzB,MAAI;AACF,WAAO,MAAM,MAAM,kBAAkB;AAAA,MACnC,aAAa,YAAY;AAAA,MACzB,iBAAa,iCAAqB,WAAW;AAAA,MAC7C;AAAA,MACA;AAAA,IACF,CAAC;AAAA,EACH,SAAS,GAAG;AACV,UAAM,IAAI,kCAAoB,6DAA6D,EAAE,OAAO,EAAE,CAAC;AAAA,EACzG;AACF;","names":[]}
+{"version":3,"sources":["../../src/lib/auth.ts"],"sourcesContent":["import { StackClientInterface } from \"@stackframe/stack-shared\";\nimport { saveVerifierAndState, getVerifierAndState } from \"./cookie\";\nimport { constructRedirectUrl } from \"../utils/url\";\nimport { neverResolve } from \"@stackframe/stack-shared/dist/utils/promises\";\nimport { StackAssertionError } from \"@stackframe/stack-shared/dist/utils/errors\";\nimport { InternalSession } from \"@stackframe/stack-shared/dist/sessions\";\n\nexport async function signInWithOAuth(\n  iface: StackClientInterface,\n  options: {\n    provider: string,\n    redirectUrl: string,\n    errorRedirectUrl: string,\n    providerScope?: string,\n  }\n) {\n  const { codeChallenge, state } = await saveVerifierAndState();\n  const location = await iface.getOAuthUrl({\n    provider: options.provider,\n    redirectUrl: constructRedirectUrl(options.redirectUrl),\n    errorRedirectUrl: constructRedirectUrl(options.errorRedirectUrl),\n    codeChallenge,\n    state,\n    type: \"authenticate\",\n    providerScope: options.providerScope,\n  });\n  window.location.assign(location);\n  await neverResolve();\n}\n\nexport async function addNewOAuthProviderOrScope(\n  iface: StackClientInterface,\n  options: {\n    provider: string,\n    redirectUrl: string,\n    errorRedirectUrl: string,\n    providerScope?: string,\n  },\n  session: InternalSession,\n) {\n  const { codeChallenge, state } = await saveVerifierAndState();\n  const location = await iface.getOAuthUrl({\n    provider: options.provider,\n    redirectUrl: constructRedirectUrl(options.redirectUrl),\n    errorRedirectUrl: constructRedirectUrl(options.errorRedirectUrl),\n    afterCallbackRedirectUrl: constructRedirectUrl(window.location.href),\n    codeChallenge,\n    state,\n    type: \"link\",\n    session,\n    providerScope: options.providerScope,\n  });\n  window.location.assign(location);\n  await neverResolve();\n}\n\n/**\n * Checks if the current URL has the query parameters for an OAuth callback, and if so, removes them.\n *\n * Must be synchronous for the logic in callOAuthCallback to work without race conditions.\n */\nfunction consumeOAuthCallbackQueryParams(expectedState: string): null | URL {\n  const requiredParams = [\"code\", \"state\"];\n  const originalUrl = new URL(window.location.href);\n  for (const param of requiredParams) {\n    if (!originalUrl.searchParams.has(param)) {\n      return null;\n    }\n  }\n\n  if (expectedState !== originalUrl.searchParams.get(\"state\")) {\n    // If the state doesn't match, then the callback wasn't meant for us.\n    // Maybe the website uses another OAuth library?\n    return null;\n  }\n\n\n  const newUrl = new URL(originalUrl);\n  for (const param of requiredParams) {\n    newUrl.searchParams.delete(param);\n  }\n\n  // let's get rid of the authorization code in the history as we\n  // don't redirect to `redirectUrl` if there's a validation error\n  // (as the redirectUrl might be malicious!).\n  //\n  // We use history.replaceState instead of location.assign(...) to\n  // prevent an unnecessary reload\n  window.history.replaceState({}, \"\", newUrl.toString());\n\n  return originalUrl;\n}\n\nexport async function callOAuthCallback(\n  iface: StackClientInterface,\n  redirectUrl: string,\n) {\n  // note: this part of the function (until the return) needs\n  // to be synchronous, to prevent race conditions when\n  // callOAuthCallback is called multiple times in parallel\n  const { codeVerifier, state } = getVerifierAndState();\n  if (!codeVerifier || !state) {\n    throw new Error(\"Invalid OAuth callback URL parameters. It seems like the OAuth flow was interrupted, so please try again.\");\n  }\n  const originalUrl = consumeOAuthCallbackQueryParams(state);\n  if (!originalUrl) return null;\n\n  // the rest can be asynchronous (we now know that we are the\n  // intended recipient of the callback)\n  try {\n    return await iface.callOAuthCallback({\n      oauthParams: originalUrl.searchParams,\n      redirectUri: constructRedirectUrl(redirectUrl),\n      codeVerifier,\n      state,\n    });\n  } catch (e) {\n    throw new StackAssertionError(\"Error signing in during OAuth callback. Please try again.\", { cause: e });\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AACA,oBAA0D;AAC1D,iBAAqC;AACrC,sBAA6B;AAC7B,oBAAoC;AAGpC,eAAsB,gBACpB,OACA,SAMA;AACA,QAAM,EAAE,eAAe,MAAM,IAAI,UAAM,oCAAqB;AAC5D,QAAM,WAAW,MAAM,MAAM,YAAY;AAAA,IACvC,UAAU,QAAQ;AAAA,IAClB,iBAAa,iCAAqB,QAAQ,WAAW;AAAA,IACrD,sBAAkB,iCAAqB,QAAQ,gBAAgB;AAAA,IAC/D;AAAA,IACA;AAAA,IACA,MAAM;AAAA,IACN,eAAe,QAAQ;AAAA,EACzB,CAAC;AACD,SAAO,SAAS,OAAO,QAAQ;AAC/B,YAAM,8BAAa;AACrB;AAEA,eAAsB,2BACpB,OACA,SAMA,SACA;AACA,QAAM,EAAE,eAAe,MAAM,IAAI,UAAM,oCAAqB;AAC5D,QAAM,WAAW,MAAM,MAAM,YAAY;AAAA,IACvC,UAAU,QAAQ;AAAA,IAClB,iBAAa,iCAAqB,QAAQ,WAAW;AAAA,IACrD,sBAAkB,iCAAqB,QAAQ,gBAAgB;AAAA,IAC/D,8BAA0B,iCAAqB,OAAO,SAAS,IAAI;AAAA,IACnE;AAAA,IACA;AAAA,IACA,MAAM;AAAA,IACN;AAAA,IACA,eAAe,QAAQ;AAAA,EACzB,CAAC;AACD,SAAO,SAAS,OAAO,QAAQ;AAC/B,YAAM,8BAAa;AACrB;AAOA,SAAS,gCAAgC,eAAmC;AAC1E,QAAM,iBAAiB,CAAC,QAAQ,OAAO;AACvC,QAAM,cAAc,IAAI,IAAI,OAAO,SAAS,IAAI;AAChD,aAAW,SAAS,gBAAgB;AAClC,QAAI,CAAC,YAAY,aAAa,IAAI,KAAK,GAAG;AACxC,aAAO;AAAA,IACT;AAAA,EACF;AAEA,MAAI,kBAAkB,YAAY,aAAa,IAAI,OAAO,GAAG;AAG3D,WAAO;AAAA,EACT;AAGA,QAAM,SAAS,IAAI,IAAI,WAAW;AAClC,aAAW,SAAS,gBAAgB;AAClC,WAAO,aAAa,OAAO,KAAK;AAAA,EAClC;AAQA,SAAO,QAAQ,aAAa,CAAC,GAAG,IAAI,OAAO,SAAS,CAAC;AAErD,SAAO;AACT;AAEA,eAAsB,kBACpB,OACA,aACA;AAIA,QAAM,EAAE,cAAc,MAAM,QAAI,mCAAoB;AACpD,MAAI,CAAC,gBAAgB,CAAC,OAAO;AAC3B,UAAM,IAAI,MAAM,2GAA2G;AAAA,EAC7H;AACA,QAAM,cAAc,gCAAgC,KAAK;AACzD,MAAI,CAAC,YAAa,QAAO;AAIzB,MAAI;AACF,WAAO,MAAM,MAAM,kBAAkB;AAAA,MACnC,aAAa,YAAY;AAAA,MACzB,iBAAa,iCAAqB,WAAW;AAAA,MAC7C;AAAA,MACA;AAAA,IACF,CAAC;AAAA,EACH,SAAS,GAAG;AACV,UAAM,IAAI,kCAAoB,6DAA6D,EAAE,OAAO,EAAE,CAAC;AAAA,EACzG;AACF;","names":[]}

package/dist/lib/cookie.js

@@ -203,14 +203,19 @@ function deleteCookie(name) {
   }
 }
 function setCookie(name, value, options = {}) {
+  const isProd = process.env.NODE_ENV === "production";
   try {
     (0, import_force_react_server.cookies)().set(name, value, {
+      secure: isProd,
       maxAge: options.maxAge
     });
   } catch (e) {
     if (isRscCookieUnavailableError(e)) {
+      if (window.location.protocol !== "https:" && isProd) {
+        throw new Error("Attempted to set a secure cookie, but this build was compiled as a production build, but the current page is not served over HTTPS. This is a security risk and is not allowed in production.");
+      }
       import_js_cookie.default.set(name, value, {
-        secure: window.location.protocol === "https:",
+        secure: isProd,
         expires: options.maxAge === void 0 ? void 0 : new Date(Date.now() + options.maxAge * 1e3)
       });
     } else {