@stackframe/stack 2.6.12 → 2.6.16

package/dist/index.d.mts

@@ -2,7 +2,7 @@ export { default as StackProvider } from './providers/stack-provider.mjs';
 export { useStackApp, useUser } from './lib/hooks.mjs';
 export { default as StackHandler } from './components-page/stack-handler.mjs';
 export { StackTheme } from './providers/theme-provider.mjs';
-export { AdminDomainConfig, AdminEmailConfig, AdminOAuthProviderConfig, AdminOwnedProject, AdminProject, AdminProjectConfig, AdminProjectConfigUpdateOptions, AdminProjectCreateOptions, AdminProjectUpdateOptions, AdminTeamPermission, AdminTeamPermissionDefinition, AdminTeamPermissionDefinitionCreateOptions, AdminTeamPermissionDefinitionUpdateOptions, ApiKey, ApiKeyBase, ApiKeyBaseCrudRead, ApiKeyCreateOptions, ApiKeyFirstView, Connection, CurrentInternalServerUser, CurrentInternalUser, CurrentServerUser, CurrentUser, EditableTeamMemberProfile, GetUserOptions, HandlerUrls, OAuthConnection, OAuthProviderConfig, OAuthScopesOnSignIn, Project, ProjectConfig, ServerTeam, ServerTeamCreateOptions, ServerTeamMemberProfile, ServerTeamUpdateOptions, ServerTeamUser, ServerUser, StackAdminApp, StackAdminAppConstructorOptions, StackClientApp, StackClientAppConstructorOptions, StackClientAppJson, StackServerApp, StackServerAppConstructorOptions, Team, TeamCreateOptions, TeamMemberProfile, TeamPermission, TeamUpdateOptions, TeamUser, TokenStoreInit, User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol } from './lib/stack-app.mjs';
+export { AdminDomainConfig, AdminEmailConfig, AdminOAuthProviderConfig, AdminOwnedProject, AdminProject, AdminProjectConfig, AdminProjectConfigUpdateOptions, AdminProjectCreateOptions, AdminProjectUpdateOptions, AdminTeamPermission, AdminTeamPermissionDefinition, AdminTeamPermissionDefinitionCreateOptions, AdminTeamPermissionDefinitionUpdateOptions, ApiKey, ApiKeyBase, ApiKeyBaseCrudRead, ApiKeyCreateOptions, ApiKeyFirstView, Connection, CurrentInternalServerUser, CurrentInternalUser, CurrentServerUser, CurrentUser, EditableTeamMemberProfile, GetUserOptions, HandlerUrls, OAuthConnection, OAuthProviderConfig, OAuthScopesOnSignIn, Project, ProjectConfig, ServerListUsersOptions, ServerTeam, ServerTeamCreateOptions, ServerTeamMemberProfile, ServerTeamUpdateOptions, ServerTeamUser, ServerUser, StackAdminApp, StackAdminAppConstructorOptions, StackClientApp, StackClientAppConstructorOptions, StackClientAppJson, StackServerApp, StackServerAppConstructorOptions, Team, TeamCreateOptions, TeamMemberProfile, TeamPermission, TeamUpdateOptions, TeamUser, TokenStoreInit, User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol } from './lib/stack-app.mjs';
 export { SignIn } from './components-page/sign-in.mjs';
 export { SignUp } from './components-page/sign-up.mjs';
 export { EmailVerification } from './components-page/email-verification.mjs';

package/dist/index.d.ts

@@ -2,7 +2,7 @@ export { default as StackProvider } from './providers/stack-provider.js';
 export { useStackApp, useUser } from './lib/hooks.js';
 export { default as StackHandler } from './components-page/stack-handler.js';
 export { StackTheme } from './providers/theme-provider.js';
-export { AdminDomainConfig, AdminEmailConfig, AdminOAuthProviderConfig, AdminOwnedProject, AdminProject, AdminProjectConfig, AdminProjectConfigUpdateOptions, AdminProjectCreateOptions, AdminProjectUpdateOptions, AdminTeamPermission, AdminTeamPermissionDefinition, AdminTeamPermissionDefinitionCreateOptions, AdminTeamPermissionDefinitionUpdateOptions, ApiKey, ApiKeyBase, ApiKeyBaseCrudRead, ApiKeyCreateOptions, ApiKeyFirstView, Connection, CurrentInternalServerUser, CurrentInternalUser, CurrentServerUser, CurrentUser, EditableTeamMemberProfile, GetUserOptions, HandlerUrls, OAuthConnection, OAuthProviderConfig, OAuthScopesOnSignIn, Project, ProjectConfig, ServerTeam, ServerTeamCreateOptions, ServerTeamMemberProfile, ServerTeamUpdateOptions, ServerTeamUser, ServerUser, StackAdminApp, StackAdminAppConstructorOptions, StackClientApp, StackClientAppConstructorOptions, StackClientAppJson, StackServerApp, StackServerAppConstructorOptions, Team, TeamCreateOptions, TeamMemberProfile, TeamPermission, TeamUpdateOptions, TeamUser, TokenStoreInit, User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol } from './lib/stack-app.js';
+export { AdminDomainConfig, AdminEmailConfig, AdminOAuthProviderConfig, AdminOwnedProject, AdminProject, AdminProjectConfig, AdminProjectConfigUpdateOptions, AdminProjectCreateOptions, AdminProjectUpdateOptions, AdminTeamPermission, AdminTeamPermissionDefinition, AdminTeamPermissionDefinitionCreateOptions, AdminTeamPermissionDefinitionUpdateOptions, ApiKey, ApiKeyBase, ApiKeyBaseCrudRead, ApiKeyCreateOptions, ApiKeyFirstView, Connection, CurrentInternalServerUser, CurrentInternalUser, CurrentServerUser, CurrentUser, EditableTeamMemberProfile, GetUserOptions, HandlerUrls, OAuthConnection, OAuthProviderConfig, OAuthScopesOnSignIn, Project, ProjectConfig, ServerListUsersOptions, ServerTeam, ServerTeamCreateOptions, ServerTeamMemberProfile, ServerTeamUpdateOptions, ServerTeamUser, ServerUser, StackAdminApp, StackAdminAppConstructorOptions, StackClientApp, StackClientAppConstructorOptions, StackClientAppJson, StackServerApp, StackServerAppConstructorOptions, Team, TeamCreateOptions, TeamMemberProfile, TeamPermission, TeamUpdateOptions, TeamUser, TokenStoreInit, User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol } from './lib/stack-app.js';
 export { SignIn } from './components-page/sign-in.js';
 export { SignUp } from './components-page/sign-up.js';
 export { EmailVerification } from './components-page/email-verification.js';

package/dist/lib/stack-app.d.mts

@@ -74,7 +74,7 @@ type ContactChannel = {
     isPrimary: boolean;
     isVerified: boolean;
     usedForAuth: boolean;
-    sendVerificationEmail(): Promise<Result<undefined, KnownErrors["EmailAlreadyVerified"]>>;
+    sendVerificationEmail(): Promise<void>;
     update(data: ContactChannelUpdateOptions): Promise<void>;
     delete(): Promise<void>;
 };
@@ -88,7 +88,12 @@ type ContactChannelUpdateOptions = {
     value?: string;
     isPrimary?: boolean;
 };
-type ServerContactChannel = ContactChannel;
+type ServerContactChannel = ContactChannel & {
+    update(data: ServerContactChannelUpdateOptions): Promise<void>;
+};
+type ServerContactChannelUpdateOptions = ContactChannelUpdateOptions & {
+    isVerified?: boolean;
+};
 type ServerContactChannelCreateOptions = ContactChannelCreateOptions & {
     isVerified?: boolean;
 };
@@ -176,6 +181,7 @@ type Auth = {
         accessToken: string | null;
         refreshToken: string | null;
     }>;
+    registerPasskey(): Promise<Result<undefined, KnownErrors["PasskeyRegistrationFailed"] | KnownErrors["PasskeyWebAuthnError"]>>;
 };
 /**
  * ```
@@ -218,6 +224,7 @@ type BaseUser = {
      */
     readonly hasPassword: boolean;
     readonly otpAuthEnabled: boolean;
+    readonly passkeyAuthEnabled: boolean;
     readonly isMultiFactorRequired: boolean;
     /**
      * A shorthand method to update multiple fields of the user at once.
@@ -297,6 +304,7 @@ type UserUpdateOptions = {
     totpMultiFactorSecret?: Uint8Array | null;
     profileImageUrl?: string | null;
     otpAuthEnabled?: boolean;
+    passkeyAuthEnabled?: boolean;
 };
 type ServerBaseUser = {
     setPrimaryEmail(email: string, options?: {
@@ -380,6 +388,7 @@ type ProjectConfig = {
     readonly signUpEnabled: boolean;
     readonly credentialEnabled: boolean;
     readonly magicLinkEnabled: boolean;
+    readonly passkeyEnabled: boolean;
     readonly clientTeamCreationEnabled: boolean;
     readonly clientUserDeletionEnabled: boolean;
     readonly oauthProviders: OAuthProviderConfig[];
@@ -392,6 +401,7 @@ type AdminProjectConfig = {
     readonly signUpEnabled: boolean;
     readonly credentialEnabled: boolean;
     readonly magicLinkEnabled: boolean;
+    readonly passkeyEnabled: boolean;
     readonly clientTeamCreationEnabled: boolean;
     readonly clientUserDeletionEnabled: boolean;
     readonly legacyGlobalJwtSigning: boolean;
@@ -439,6 +449,7 @@ type AdminProjectConfigUpdateOptions = {
     signUpEnabled?: boolean;
     credentialEnabled?: boolean;
     magicLinkEnabled?: boolean;
+    passkeyEnabled?: boolean;
     clientTeamCreationEnabled?: boolean;
     clientUserDeletionEnabled?: boolean;
     allowLocalhost?: boolean;
@@ -509,7 +520,7 @@ type Team = {
     clientReadOnlyMetadata: any;
     inviteUser(options: {
         email: string;
-    }): Promise<Result<undefined, KnownErrors["TeamPermissionRequired"]>>;
+    }): Promise<void>;
     listUsers(): Promise<TeamUser[]>;
     useUsers(): TeamUser[];
     update(update: TeamUpdateOptions): Promise<void>;
@@ -537,9 +548,16 @@ type ServerTeam = {
     addUser(userId: string): Promise<void>;
     inviteUser(options: {
         email: string;
-    }): Promise<Result<undefined, KnownErrors["TeamPermissionRequired"]>>;
+    }): Promise<void>;
     removeUser(userId: string): Promise<void>;
 } & Team;
+type ServerListUsersOptions = {
+    cursor?: string;
+    limit?: number;
+    orderBy?: 'signedUpAt';
+    desc?: boolean;
+    query?: string;
+};
 type ServerTeamCreateOptions = TeamCreateOptions;
 type ServerTeamUpdateOptions = TeamUpdateOptions & {
     clientReadOnlyMetadata?: ReadonlyJson;
@@ -600,6 +618,7 @@ type StackClientApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         password: string;
         noRedirect?: boolean;
     }): Promise<Result<undefined, KnownErrors["UserEmailAlreadyExists"] | KnownErrors["PasswordRequirementsNotMet"]>>;
+    signInWithPasskey(): Promise<Result<undefined, KnownErrors["PasskeyAuthenticationFailed"] | KnownErrors["InvalidTotpCode"] | KnownErrors["PasskeyWebAuthnError"]>>;
     callOAuthCallback(): Promise<boolean>;
     sendForgotPasswordEmail(email: string): Promise<Result<undefined, KnownErrors["UserNotFound"]>>;
     sendMagicLinkEmail(email: string): Promise<Result<{
@@ -665,7 +684,13 @@ type StackServerApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         or: 'throw';
     }): Promise<ProjectCurrentServerUser<ProjectId>>;
     getUser(options?: GetUserOptions<HasTokenStore>): Promise<ProjectCurrentServerUser<ProjectId> | null>;
-} & AsyncStoreProperty<"user", [id: string], ServerUser | null, false> & AsyncStoreProperty<"users", [], ServerUser[], true> & AsyncStoreProperty<"team", [id: string], ServerTeam | null, false> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & StackClientApp<HasTokenStore, ProjectId>);
+    listUsers(options?: ServerListUsersOptions): Promise<ServerUser[] & {
+        nextCursor: string | null;
+    }>;
+    useUsers(options?: ServerListUsersOptions): ServerUser[] & {
+        nextCursor: string | null;
+    };
+} & AsyncStoreProperty<"user", [id: string], ServerUser | null, false> & Omit<AsyncStoreProperty<"users", [], ServerUser[], true>, "listUsers" | "useUsers"> & AsyncStoreProperty<"team", [id: string], ServerTeam | null, false> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & StackClientApp<HasTokenStore, ProjectId>);
 declare const StackServerApp: StackServerAppConstructor;
 type StackAdminAppConstructor = {
     new <HasTokenStore extends boolean, ProjectId extends string>(options: StackAdminAppConstructorOptions<HasTokenStore, ProjectId>): StackAdminApp<HasTokenStore, ProjectId>;
@@ -703,4 +728,4 @@ type AsyncStoreProperty<Name extends string, Args extends any[], Value, IsMultip
     [key in `use${Capitalize<Name>}`]: (...args: Args) => Value;
 };
 
-export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectUpdateOptions, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type ApiKey, type ApiKeyBase, type ApiKeyBaseCrudRead, type ApiKeyCreateOptions, type ApiKeyFirstView, type Connection, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetUserOptions, type HandlerUrls, type OAuthConnection, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamMemberProfile, type TeamPermission, type TeamUpdateOptions, type TeamUser, type TokenStoreInit, type User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol };
+export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectUpdateOptions, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type ApiKey, type ApiKeyBase, type ApiKeyBaseCrudRead, type ApiKeyCreateOptions, type ApiKeyFirstView, type Connection, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetUserOptions, type HandlerUrls, type OAuthConnection, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerListUsersOptions, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamMemberProfile, type TeamPermission, type TeamUpdateOptions, type TeamUser, type TokenStoreInit, type User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol };

package/dist/lib/stack-app.d.ts

@@ -74,7 +74,7 @@ type ContactChannel = {
     isPrimary: boolean;
     isVerified: boolean;
     usedForAuth: boolean;
-    sendVerificationEmail(): Promise<Result<undefined, KnownErrors["EmailAlreadyVerified"]>>;
+    sendVerificationEmail(): Promise<void>;
     update(data: ContactChannelUpdateOptions): Promise<void>;
     delete(): Promise<void>;
 };
@@ -88,7 +88,12 @@ type ContactChannelUpdateOptions = {
     value?: string;
     isPrimary?: boolean;
 };
-type ServerContactChannel = ContactChannel;
+type ServerContactChannel = ContactChannel & {
+    update(data: ServerContactChannelUpdateOptions): Promise<void>;
+};
+type ServerContactChannelUpdateOptions = ContactChannelUpdateOptions & {
+    isVerified?: boolean;
+};
 type ServerContactChannelCreateOptions = ContactChannelCreateOptions & {
     isVerified?: boolean;
 };
@@ -176,6 +181,7 @@ type Auth = {
         accessToken: string | null;
         refreshToken: string | null;
     }>;
+    registerPasskey(): Promise<Result<undefined, KnownErrors["PasskeyRegistrationFailed"] | KnownErrors["PasskeyWebAuthnError"]>>;
 };
 /**
  * ```
@@ -218,6 +224,7 @@ type BaseUser = {
      */
     readonly hasPassword: boolean;
     readonly otpAuthEnabled: boolean;
+    readonly passkeyAuthEnabled: boolean;
     readonly isMultiFactorRequired: boolean;
     /**
      * A shorthand method to update multiple fields of the user at once.
@@ -297,6 +304,7 @@ type UserUpdateOptions = {
     totpMultiFactorSecret?: Uint8Array | null;
     profileImageUrl?: string | null;
     otpAuthEnabled?: boolean;
+    passkeyAuthEnabled?: boolean;
 };
 type ServerBaseUser = {
     setPrimaryEmail(email: string, options?: {
@@ -380,6 +388,7 @@ type ProjectConfig = {
     readonly signUpEnabled: boolean;
     readonly credentialEnabled: boolean;
     readonly magicLinkEnabled: boolean;
+    readonly passkeyEnabled: boolean;
     readonly clientTeamCreationEnabled: boolean;
     readonly clientUserDeletionEnabled: boolean;
     readonly oauthProviders: OAuthProviderConfig[];
@@ -392,6 +401,7 @@ type AdminProjectConfig = {
     readonly signUpEnabled: boolean;
     readonly credentialEnabled: boolean;
     readonly magicLinkEnabled: boolean;
+    readonly passkeyEnabled: boolean;
     readonly clientTeamCreationEnabled: boolean;
     readonly clientUserDeletionEnabled: boolean;
     readonly legacyGlobalJwtSigning: boolean;
@@ -439,6 +449,7 @@ type AdminProjectConfigUpdateOptions = {
     signUpEnabled?: boolean;
     credentialEnabled?: boolean;
     magicLinkEnabled?: boolean;
+    passkeyEnabled?: boolean;
     clientTeamCreationEnabled?: boolean;
     clientUserDeletionEnabled?: boolean;
     allowLocalhost?: boolean;
@@ -509,7 +520,7 @@ type Team = {
     clientReadOnlyMetadata: any;
     inviteUser(options: {
         email: string;
-    }): Promise<Result<undefined, KnownErrors["TeamPermissionRequired"]>>;
+    }): Promise<void>;
     listUsers(): Promise<TeamUser[]>;
     useUsers(): TeamUser[];
     update(update: TeamUpdateOptions): Promise<void>;
@@ -537,9 +548,16 @@ type ServerTeam = {
     addUser(userId: string): Promise<void>;
     inviteUser(options: {
         email: string;
-    }): Promise<Result<undefined, KnownErrors["TeamPermissionRequired"]>>;
+    }): Promise<void>;
     removeUser(userId: string): Promise<void>;
 } & Team;
+type ServerListUsersOptions = {
+    cursor?: string;
+    limit?: number;
+    orderBy?: 'signedUpAt';
+    desc?: boolean;
+    query?: string;
+};
 type ServerTeamCreateOptions = TeamCreateOptions;
 type ServerTeamUpdateOptions = TeamUpdateOptions & {
     clientReadOnlyMetadata?: ReadonlyJson;
@@ -600,6 +618,7 @@ type StackClientApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         password: string;
         noRedirect?: boolean;
     }): Promise<Result<undefined, KnownErrors["UserEmailAlreadyExists"] | KnownErrors["PasswordRequirementsNotMet"]>>;
+    signInWithPasskey(): Promise<Result<undefined, KnownErrors["PasskeyAuthenticationFailed"] | KnownErrors["InvalidTotpCode"] | KnownErrors["PasskeyWebAuthnError"]>>;
     callOAuthCallback(): Promise<boolean>;
     sendForgotPasswordEmail(email: string): Promise<Result<undefined, KnownErrors["UserNotFound"]>>;
     sendMagicLinkEmail(email: string): Promise<Result<{
@@ -665,7 +684,13 @@ type StackServerApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         or: 'throw';
     }): Promise<ProjectCurrentServerUser<ProjectId>>;
     getUser(options?: GetUserOptions<HasTokenStore>): Promise<ProjectCurrentServerUser<ProjectId> | null>;
-} & AsyncStoreProperty<"user", [id: string], ServerUser | null, false> & AsyncStoreProperty<"users", [], ServerUser[], true> & AsyncStoreProperty<"team", [id: string], ServerTeam | null, false> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & StackClientApp<HasTokenStore, ProjectId>);
+    listUsers(options?: ServerListUsersOptions): Promise<ServerUser[] & {
+        nextCursor: string | null;
+    }>;
+    useUsers(options?: ServerListUsersOptions): ServerUser[] & {
+        nextCursor: string | null;
+    };
+} & AsyncStoreProperty<"user", [id: string], ServerUser | null, false> & Omit<AsyncStoreProperty<"users", [], ServerUser[], true>, "listUsers" | "useUsers"> & AsyncStoreProperty<"team", [id: string], ServerTeam | null, false> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & StackClientApp<HasTokenStore, ProjectId>);
 declare const StackServerApp: StackServerAppConstructor;
 type StackAdminAppConstructor = {
     new <HasTokenStore extends boolean, ProjectId extends string>(options: StackAdminAppConstructorOptions<HasTokenStore, ProjectId>): StackAdminApp<HasTokenStore, ProjectId>;
@@ -703,4 +728,4 @@ type AsyncStoreProperty<Name extends string, Args extends any[], Value, IsMultip
     [key in `use${Capitalize<Name>}`]: (...args: Args) => Value;
 };
 
-export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectUpdateOptions, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type ApiKey, type ApiKeyBase, type ApiKeyBaseCrudRead, type ApiKeyCreateOptions, type ApiKeyFirstView, type Connection, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetUserOptions, type HandlerUrls, type OAuthConnection, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamMemberProfile, type TeamPermission, type TeamUpdateOptions, type TeamUser, type TokenStoreInit, type User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol };
+export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectUpdateOptions, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type ApiKey, type ApiKeyBase, type ApiKeyBaseCrudRead, type ApiKeyCreateOptions, type ApiKeyFirstView, type Connection, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetUserOptions, type HandlerUrls, type OAuthConnection, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerListUsersOptions, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamMemberProfile, type TeamPermission, type TeamUpdateOptions, type TeamUser, type TokenStoreInit, type User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol };

package/dist/lib/stack-app.js

@@ -38,6 +38,7 @@ __export(stack_app_exports, {
   stackAppInternalsSymbol: () => stackAppInternalsSymbol
 });
 module.exports = __toCommonJS(stack_app_exports);
+var import_browser = require("@simplewebauthn/browser");
 var import_stack_sc = require("@stackframe/stack-sc");
 var import_stack_shared = require("@stackframe/stack-shared");
 var import_production_mode = require("@stackframe/stack-shared/dist/helpers/production-mode");
@@ -63,7 +64,7 @@ var import_url = require("../utils/url");
 var import_auth = require("./auth");
 var import_cookie = require("./cookie");
 var NextNavigation = (0, import_compile_time.scrambleDuringCompileTime)(NextNavigationUnscrambled);
-var clientVersion = "js @stackframe/stack@2.6.12";
+var clientVersion = "js @stackframe/stack@2.6.16";
 function getUrls(partial) {
   const handler = partial.handler ?? "/handler";
   const home = partial.home ?? "/";
@@ -542,6 +543,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
         signUpEnabled: crud.config.sign_up_enabled,
         credentialEnabled: crud.config.credential_enabled,
         magicLinkEnabled: crud.config.magic_link_enabled,
+        passkeyEnabled: crud.config.passkey_enabled,
         clientTeamCreationEnabled: crud.config.client_team_creation_enabled,
         clientUserDeletionEnabled: crud.config.client_user_deletion_enabled,
         oauthProviders: crud.config.enabled_oauth_providers.map((p) => ({
@@ -573,7 +575,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       clientMetadata: crud.client_metadata,
       clientReadOnlyMetadata: crud.client_read_only_metadata,
       async inviteUser(options) {
-        return await app._interface.sendTeamInvitation({
+        await app._interface.sendTeamInvitation({
           teamId: crud.id,
           email: options.email,
           session: app._getSession(),
@@ -604,7 +606,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       isPrimary: crud.is_primary,
       usedForAuth: crud.used_for_auth,
       async sendVerificationEmail() {
-        return await app._interface.sendCurrentUserContactChannelVerificationEmail(crud.id, (0, import_url.constructRedirectUrl)(app.urls.emailVerification), app._getSession());
+        await app._interface.sendCurrentUserContactChannelVerificationEmail(crud.id, (0, import_url.constructRedirectUrl)(app.urls.emailVerification), app._getSession());
       },
       async update(data) {
         await app._interface.updateClientContactChannel(crud.id, contactChannelUpdateOptionsToCrud(data), app._getSession());
@@ -638,6 +640,31 @@ var _StackClientAppImpl = class __StackClientAppImpl {
         const tokens = await this.currentSession.getTokens();
         return tokens;
       },
+      async registerPasskey() {
+        const initiationResult = await app._interface.initiatePasskeyRegistration({}, session);
+        if (initiationResult.status !== "ok") {
+          return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyRegistrationFailed("Failed to get initiation options for passkey registration"));
+        }
+        const { options_json, code } = initiationResult.data;
+        if (options_json.rp.id !== "THIS_VALUE_WILL_BE_REPLACED.example.com") {
+          throw new import_errors.StackAssertionError(`Expected returned RP ID from server to equal sentinel, but found ${options_json.rp.id}`);
+        }
+        options_json.rp.id = window.location.hostname;
+        let attResp;
+        try {
+          attResp = await (0, import_browser.startRegistration)({ optionsJSON: options_json });
+          debugger;
+        } catch (error) {
+          if (error instanceof import_browser.WebAuthnError) {
+            return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyWebAuthnError(error.message, error.name));
+          } else {
+            return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyRegistrationFailed("Failed to start passkey registration"));
+          }
+        }
+        const registrationResult = await app._interface.registerPasskey({ credential: attResp, code }, session);
+        await app._refreshUser(session);
+        return registrationResult;
+      },
       signOut() {
         return app._signOut(session);
       }
@@ -660,6 +687,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       emailAuthEnabled: crud.auth_with_email,
       otpAuthEnabled: crud.otp_auth_enabled,
       oauthProviders: crud.oauth_providers,
+      passkeyAuthEnabled: crud.passkey_auth_enabled,
       selectedTeam: crud.selected_team && this._clientTeamFromCrud(crud.selected_team),
       isMultiFactorRequired: crud.requires_totp_mfa,
       toClientJson() {
@@ -1146,6 +1174,38 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       return import_results.Result.error(result.error);
     }
   }
+  async signInWithPasskey() {
+    this._ensurePersistentTokenStore();
+    let result;
+    try {
+      result = await this._catchMfaRequiredError(async () => {
+        const initiationResult = await this._interface.initiatePasskeyAuthentication({}, this._getSession());
+        if (initiationResult.status !== "ok") {
+          return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyAuthenticationFailed("Failed to get initiation options for passkey authentication"));
+        }
+        const { options_json, code } = initiationResult.data;
+        if (options_json.rpId !== "THIS_VALUE_WILL_BE_REPLACED.example.com") {
+          throw new import_errors.StackAssertionError(`Expected returned RP ID from server to equal sentinel, but found ${options_json.rpId}`);
+        }
+        options_json.rpId = window.location.hostname;
+        const authentication_response = await (0, import_browser.startAuthentication)({ optionsJSON: options_json });
+        return await this._interface.signInWithPasskey({ authentication_response, code });
+      });
+    } catch (error) {
+      if (error instanceof import_browser.WebAuthnError) {
+        return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyWebAuthnError(error.message, error.name));
+      } else {
+        return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyAuthenticationFailed("Failed to sign in with passkey"));
+      }
+    }
+    if (result.status === "ok") {
+      await this._signInToAccountWithTokens(result.data);
+      await this.redirectToAfterSignIn({ replace: true });
+      return import_results.Result.ok(void 0);
+    } else {
+      return import_results.Result.error(result.error);
+    }
+  }
   async callOAuthCallback() {
     this._ensurePersistentTokenStore();
     let result;
@@ -1302,8 +1362,8 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
     this._currentServerUserCache = createCacheBySession(async (session) => {
       return await this._interface.getServerUserByToken(session);
     });
-    this._serverUsersCache = createCache(async () => {
-      return await this._interface.listServerUsers();
+    this._serverUsersCache = createCache(async ([cursor, limit, orderBy, desc, query]) => {
+      return await this._interface.listServerUsers({ cursor, limit, orderBy, desc, query });
     });
     this._serverUserCache = createCache(async ([userId]) => {
       const user = await this._interface.getServerUserById(userId);
@@ -1378,7 +1438,7 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
     return {
       ...this._clientContactChannelFromCrud(crud),
       async sendVerificationEmail() {
-        return await app._interface.sendServerContactChannelVerificationEmail(userId, crud.id, (0, import_url.constructRedirectUrl)(app.urls.emailVerification));
+        await app._interface.sendServerContactChannelVerificationEmail(userId, crud.id, (0, import_url.constructRedirectUrl)(app.urls.emailVerification));
       },
       async update(data) {
         await app._interface.updateServerContactChannel(userId, crud.id, serverContactChannelUpdateOptionsToCrud(data));
@@ -1596,7 +1656,7 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
         await app._serverTeamMemberProfilesCache.refresh([crud.id]);
       },
       async inviteUser(options) {
-        return await app._interface.sendTeamInvitation({
+        await app._interface.sendTeamInvitation({
           teamId: crud.id,
           email: options.email,
           session: null,
@@ -1678,15 +1738,17 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
       return crud && this._serverUserFromCrud(crud);
     }, [crud]);
   }
-  async listUsers() {
-    const crud = await this._serverUsersCache.getOrWait([], "write-only");
-    return crud.map((j) => this._serverUserFromCrud(j));
+  async listUsers(options) {
+    const crud = await this._serverUsersCache.getOrWait([options?.cursor, options?.limit, options?.orderBy, options?.desc, options?.query], "write-only");
+    const result = crud.items.map((j) => this._serverUserFromCrud(j));
+    result.nextCursor = crud.pagination?.next_cursor ?? null;
+    return result;
   }
-  useUsers() {
-    const crud = useAsyncCache(this._serverUsersCache, [], "useServerUsers()");
-    return (0, import_react2.useMemo)(() => {
-      return crud.map((j) => this._serverUserFromCrud(j));
-    }, [crud]);
+  useUsers(options) {
+    const crud = useAsyncCache(this._serverUsersCache, [options?.cursor, options?.limit, options?.orderBy, options?.desc, options?.query], "useServerUsers()");
+    const result = crud.items.map((j) => this._serverUserFromCrud(j));
+    result.nextCursor = crud.pagination?.next_cursor ?? null;
+    return result;
   }
   _serverPermissionFromCrud(crud) {
     return {
@@ -1800,6 +1862,7 @@ var _StackAdminAppImpl = class extends _StackServerAppImpl {
         signUpEnabled: data.config.sign_up_enabled,
         credentialEnabled: data.config.credential_enabled,
         magicLinkEnabled: data.config.magic_link_enabled,
+        passkeyEnabled: data.config.passkey_enabled,
         legacyGlobalJwtSigning: data.config.legacy_global_jwt_signing,
         clientTeamCreationEnabled: data.config.client_team_creation_enabled,
         clientUserDeletionEnabled: data.config.client_user_deletion_enabled,
@@ -2019,7 +2082,8 @@ function userUpdateOptionsToCrud(options) {
     selected_team_id: options.selectedTeamId,
     totp_secret_base64: options.totpMultiFactorSecret != null ? (0, import_bytes.encodeBase64)(options.totpMultiFactorSecret) : options.totpMultiFactorSecret,
     profile_image_url: options.profileImageUrl,
-    otp_auth_enabled: options.otpAuthEnabled
+    otp_auth_enabled: options.otpAuthEnabled,
+    passkey_auth_enabled: options.passkeyAuthEnabled
   };
 }
 function serverUserUpdateOptionsToCrud(options) {
@@ -2082,6 +2146,7 @@ function adminProjectUpdateOptionsToCrud(options) {
       sign_up_enabled: options.config?.signUpEnabled,
       credential_enabled: options.config?.credentialEnabled,
       magic_link_enabled: options.config?.magicLinkEnabled,
+      passkey_enabled: options.config?.passkeyEnabled,
       allow_localhost: options.config?.allowLocalhost,
       create_team_on_sign_up: options.config?.createTeamOnSignUp,
       client_team_creation_enabled: options.config?.clientTeamCreationEnabled,