npm - @stackframe/stack - Versions diffs - 2.7.12 → 2.7.16 - Mend

@stackframe/stack 2.7.12 → 2.7.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (135) hide show

package/CHANGELOG.md +39 -0
package/dist/components/credential-sign-in.js.map +1 -1
package/dist/components/credential-sign-up.js.map +1 -1
package/dist/components/elements/form-warning.js.map +1 -1
package/dist/components/elements/maybe-full-page.js.map +1 -1
package/dist/components/elements/separator-with-text.js.map +1 -1
package/dist/components/elements/sidebar-layout.js.map +1 -1
package/dist/components/elements/ssr-layout-effect.js.map +1 -1
package/dist/components/elements/user-avatar.js.map +1 -1
package/dist/components/iframe-preventer.d.mts +8 -0
package/dist/components/iframe-preventer.d.ts +8 -0
package/dist/{utils/email.js → components/iframe-preventer.js} +28 -11
package/dist/components/iframe-preventer.js.map +1 -0
package/dist/components/magic-link-sign-in.js.map +1 -1
package/dist/components/message-cards/known-error-message-card.js.map +1 -1
package/dist/components/message-cards/message-card.js.map +1 -1
package/dist/components/message-cards/predefined-message-card.js.map +1 -1
package/dist/components/oauth-button-group.js.map +1 -1
package/dist/components/oauth-button.js.map +1 -1
package/dist/components/passkey-button.js.map +1 -1
package/dist/components/profile-image-editor.js.map +1 -1
package/dist/components/selected-team-switcher.js.map +1 -1
package/dist/components/team-icon.js.map +1 -1
package/dist/components/user-button.js.map +1 -1
package/dist/components-page/account-settings.js +9 -1
package/dist/components-page/account-settings.js.map +1 -1
package/dist/components-page/auth-page.js.map +1 -1
package/dist/components-page/email-verification.js.map +1 -1
package/dist/components-page/error-page.js.map +1 -1
package/dist/components-page/forgot-password.js.map +1 -1
package/dist/components-page/magic-link-callback.js.map +1 -1
package/dist/components-page/oauth-callback.js.map +1 -1
package/dist/components-page/password-reset.js.map +1 -1
package/dist/components-page/sign-in.js.map +1 -1
package/dist/components-page/sign-out.js.map +1 -1
package/dist/components-page/sign-up.js.map +1 -1
package/dist/components-page/stack-handler.js +3 -2
package/dist/components-page/stack-handler.js.map +1 -1
package/dist/components-page/team-creation.js.map +1 -1
package/dist/components-page/team-invitation.js.map +1 -1
package/dist/esm/components/credential-sign-in.js.map +1 -1
package/dist/esm/components/credential-sign-up.js.map +1 -1
package/dist/esm/components/elements/form-warning.js.map +1 -1
package/dist/esm/components/elements/maybe-full-page.js.map +1 -1
package/dist/esm/components/elements/separator-with-text.js.map +1 -1
package/dist/esm/components/elements/sidebar-layout.js.map +1 -1
package/dist/esm/components/elements/ssr-layout-effect.js.map +1 -1
package/dist/esm/components/elements/user-avatar.js.map +1 -1
package/dist/esm/components/iframe-preventer.js +28 -0
package/dist/esm/components/iframe-preventer.js.map +1 -0
package/dist/esm/components/magic-link-sign-in.js.map +1 -1
package/dist/esm/components/message-cards/known-error-message-card.js.map +1 -1
package/dist/esm/components/message-cards/message-card.js.map +1 -1
package/dist/esm/components/message-cards/predefined-message-card.js.map +1 -1
package/dist/esm/components/oauth-button-group.js.map +1 -1
package/dist/esm/components/oauth-button.js.map +1 -1
package/dist/esm/components/passkey-button.js.map +1 -1
package/dist/esm/components/profile-image-editor.js.map +1 -1
package/dist/esm/components/selected-team-switcher.js.map +1 -1
package/dist/esm/components/team-icon.js.map +1 -1
package/dist/esm/components/user-button.js.map +1 -1
package/dist/esm/components-page/account-settings.js +11 -3
package/dist/esm/components-page/account-settings.js.map +1 -1
package/dist/esm/components-page/auth-page.js.map +1 -1
package/dist/esm/components-page/email-verification.js.map +1 -1
package/dist/esm/components-page/error-page.js.map +1 -1
package/dist/esm/components-page/forgot-password.js.map +1 -1
package/dist/esm/components-page/magic-link-callback.js.map +1 -1
package/dist/esm/components-page/oauth-callback.js.map +1 -1
package/dist/esm/components-page/password-reset.js.map +1 -1
package/dist/esm/components-page/sign-in.js.map +1 -1
package/dist/esm/components-page/sign-out.js.map +1 -1
package/dist/esm/components-page/sign-up.js.map +1 -1
package/dist/esm/components-page/stack-handler.js +3 -2
package/dist/esm/components-page/stack-handler.js.map +1 -1
package/dist/esm/components-page/team-creation.js.map +1 -1
package/dist/esm/components-page/team-invitation.js.map +1 -1
package/dist/esm/generated/global-css.js +1 -1
package/dist/esm/generated/global-css.js.map +1 -1
package/dist/esm/generated/quetzal-translations.js.map +1 -1
package/dist/esm/index.js +3 -5
package/dist/esm/index.js.map +1 -1
package/dist/esm/lib/auth.js.map +1 -1
package/dist/esm/lib/cookie.js +15 -0
package/dist/esm/lib/cookie.js.map +1 -1
package/dist/esm/lib/hooks.js +2 -2
package/dist/esm/lib/hooks.js.map +1 -1
package/dist/esm/lib/stack-app.js +94 -56
package/dist/esm/lib/stack-app.js.map +1 -1
package/dist/esm/lib/translations.js.map +1 -1
package/dist/esm/providers/stack-provider-client.js.map +1 -1
package/dist/esm/providers/stack-provider.js.map +1 -1
package/dist/esm/providers/theme-provider.js.map +1 -1
package/dist/esm/providers/translation-provider-client.js.map +1 -1
package/dist/esm/providers/translation-provider.js.map +1 -1
package/dist/esm/utils/browser-script.js.map +1 -1
package/dist/esm/utils/constants.js.map +1 -1
package/dist/esm/utils/url.js +1 -1
package/dist/esm/utils/url.js.map +1 -1
package/dist/generated/global-css.d.mts +1 -1
package/dist/generated/global-css.d.ts +1 -1
package/dist/generated/global-css.js +1 -1
package/dist/generated/global-css.js.map +1 -1
package/dist/generated/quetzal-translations.js.map +1 -1
package/dist/index.d.mts +8 -8
package/dist/index.d.ts +8 -8
package/dist/index.js +3 -3
package/dist/index.js.map +1 -1
package/dist/lib/auth.js.map +1 -1
package/dist/lib/cookie.d.mts +2 -1
package/dist/lib/cookie.d.ts +2 -1
package/dist/lib/cookie.js +16 -0
package/dist/lib/cookie.js.map +1 -1
package/dist/lib/hooks.js +2 -2
package/dist/lib/hooks.js.map +1 -1
package/dist/lib/stack-app.d.mts +19 -9
package/dist/lib/stack-app.d.ts +19 -9
package/dist/lib/stack-app.js +92 -54
package/dist/lib/stack-app.js.map +1 -1
package/dist/lib/translations.js.map +1 -1
package/dist/providers/stack-provider-client.js.map +1 -1
package/dist/providers/stack-provider.js.map +1 -1
package/dist/providers/theme-provider.js.map +1 -1
package/dist/providers/translation-provider-client.js.map +1 -1
package/dist/providers/translation-provider.js.map +1 -1
package/dist/utils/browser-script.js.map +1 -1
package/dist/utils/constants.js.map +1 -1
package/dist/utils/url.js +1 -1
package/dist/utils/url.js.map +1 -1
package/package.json +10 -13
package/dist/esm/utils/email.js +0 -10
package/dist/esm/utils/email.js.map +0 -1
package/dist/utils/email.d.mts +0 -3
package/dist/utils/email.d.ts +0 -3
package/dist/utils/email.js.map +0 -1

package/dist/lib/stack-app.d.ts CHANGED Viewed

@@ -14,6 +14,7 @@ type RequestLike = {
         get: (name: string) => string | null;
     };
 };
+type RedirectMethod = "window" | "nextjs" | "none";
 type TokenStoreInit<HasTokenStore extends boolean = boolean> = HasTokenStore extends true ? ("cookie" | "nextjs-cookie" | "memory" | RequestLike | {
     accessToken: string;
     refreshToken: string;
@@ -48,6 +49,7 @@ type StackClientAppConstructorOptions<HasTokenStore extends boolean, ProjectId e
     urls?: Partial<HandlerUrls>;
     oauthScopesOnSignIn?: Partial<OAuthScopesOnSignIn>;
     tokenStore: TokenStoreInit<HasTokenStore>;
+    redirectMethod?: RedirectMethod;
     /**
      * By default, the Stack app will automatically prefetch some data from Stack's server when this app is first
      * constructed. This improves the performance of your app, but will create network requests that are unnecessary if
@@ -184,7 +186,9 @@ type Auth = {
         accessToken: string | null;
         refreshToken: string | null;
     }>;
-    registerPasskey(): Promise<Result<undefined, KnownErrors["PasskeyRegistrationFailed"] | KnownErrors["PasskeyWebAuthnError"]>>;
+    registerPasskey(options?: {
+        hostname?: string;
+    }): Promise<Result<undefined, KnownErrors["PasskeyRegistrationFailed"] | KnownErrors["PasskeyWebAuthnError"]>>;
 };
 /**
  * ```
@@ -307,13 +311,14 @@ type UserUpdateOptions = {
     passkeyAuthEnabled?: boolean;
 };
 type ServerBaseUser = {
-    setPrimaryEmail(email: string, options?: {
+    setPrimaryEmail(email: string | null, options?: {
         verified?: boolean | undefined;
     }): Promise<void>;
     readonly lastActiveAt: Date;
     readonly serverMetadata: any;
     setServerMetadata(metadata: any): Promise<void>;
     setClientReadOnlyMetadata(metadata: any): Promise<void>;
+    createTeam(data: Omit<ServerTeamCreateOptions, "creatorUserId">): Promise<ServerTeam>;
     useContactChannels(): ServerContactChannel[];
     listContactChannels(): Promise<ServerContactChannel[]>;
     createContactChannel(data: ServerContactChannelCreateOptions): Promise<ServerContactChannel>;
@@ -339,7 +344,7 @@ type ServerUser = ServerBaseUser & BaseUser & UserExtra;
 type CurrentServerUser = Auth & ServerUser;
 type CurrentInternalServerUser = CurrentServerUser & InternalUserExtra;
 type ServerUserUpdateOptions = {
-    primaryEmail?: string;
+    primaryEmail?: string | null;
     primaryEmailVerified?: boolean;
     primaryEmailAuthEnabled?: boolean;
     clientReadOnlyMetadata?: ReadonlyJson;
@@ -347,12 +352,15 @@ type ServerUserUpdateOptions = {
     password?: string;
 } & UserUpdateOptions;
 type ServerUserCreateOptions = {
-    primaryEmail?: string;
+    primaryEmail?: string | null;
     primaryEmailAuthEnabled?: boolean;
     password?: string;
     otpAuthEnabled?: boolean;
     displayName?: string;
     primaryEmailVerified?: boolean;
+    clientMetadata?: any;
+    clientReadOnlyMetadata?: any;
+    serverMetadata?: any;
 };
 type Project = {
     readonly id: string;
@@ -569,7 +577,9 @@ type ServerListUsersOptions = {
     desc?: boolean;
     query?: string;
 };
-type ServerTeamCreateOptions = TeamCreateOptions;
+type ServerTeamCreateOptions = TeamCreateOptions & {
+    creatorUserId?: string;
+};
 type ServerTeamUpdateOptions = TeamUpdateOptions & {
     clientReadOnlyMetadata?: ReadonlyJson;
     serverMetadata?: ReadonlyJson;
@@ -699,12 +709,12 @@ type StackServerApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         or: 'throw';
     }): Promise<ProjectCurrentServerUser<ProjectId>>;
     getUser(options?: GetUserOptions<HasTokenStore>): Promise<ProjectCurrentServerUser<ProjectId> | null>;
-    listUsers(options?: ServerListUsersOptions): Promise<ServerUser[] & {
-        nextCursor: string | null;
-    }>;
     useUsers(options?: ServerListUsersOptions): ServerUser[] & {
         nextCursor: string | null;
     };
+    listUsers(options?: ServerListUsersOptions): Promise<ServerUser[] & {
+        nextCursor: string | null;
+    }>;
 } & AsyncStoreProperty<"user", [id: string], ServerUser | null, false> & Omit<AsyncStoreProperty<"users", [], ServerUser[], true>, "listUsers" | "useUsers"> & AsyncStoreProperty<"team", [id: string], ServerTeam | null, false> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & StackClientApp<HasTokenStore, ProjectId>);
 declare const StackServerApp: StackServerAppConstructor;
 type StackAdminAppConstructor = {
@@ -757,4 +767,4 @@ type EmailConfig = {
     senderName: string;
 };
-export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectUpdateOptions, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type ApiKey, type ApiKeyBase, type ApiKeyBaseCrudRead, type ApiKeyCreateOptions, type ApiKeyFirstView, type Connection, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetUserOptions, type HandlerUrls, type OAuthConnection, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerListUsersOptions, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamInvitation, type TeamMemberProfile, type TeamPermission, type TeamUpdateOptions, type TeamUser, type TokenStoreInit, type User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol };
+export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectUpdateOptions, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type ApiKey, type ApiKeyBase, type ApiKeyBaseCrudRead, type ApiKeyCreateOptions, type ApiKeyFirstView, type Connection, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetUserOptions, type HandlerUrls, type OAuthConnection, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerListUsersOptions, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructor, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructor, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructor, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamInvitation, type TeamMemberProfile, type TeamPermission, type TeamUpdateOptions, type TeamUser, type TokenStoreInit, type User, serverTeamPermissionDefinitionCreateOptionsToCrud, serverTeamPermissionDefinitionUpdateOptionsToCrud, stackAppInternalsSymbol };

package/dist/lib/stack-app.js CHANGED Viewed

@@ -64,7 +64,7 @@ var import_url = require("../utils/url");
 var import_auth = require("./auth");
 var import_cookie = require("./cookie");
 var NextNavigation = (0, import_compile_time.scrambleDuringCompileTime)(NextNavigationUnscrambled);
-var clientVersion = "js @stackframe/stack@2.7.12";
+var clientVersion = "js @stackframe/stack@2.7.16";
 function getUrls(partial) {
   const handler = partial.handler ?? "/handler";
   const home = partial.home ?? "/";
@@ -89,23 +89,11 @@ function getUrls(partial) {
     ...(0, import_objects.filterUndefined)(partial)
   };
 }
-async function _redirectTo(url, options) {
-  if (import_stack_sc.isReactServer) {
-    NextNavigation.redirect(url.toString(), options?.replace ? NextNavigation.RedirectType.replace : NextNavigation.RedirectType.push);
-  } else {
-    if (options?.replace) {
-      window.location.replace(url);
-    } else {
-      window.location.assign(url);
-    }
-    await (0, import_promises.wait)(2e3);
-  }
-}
 function getDefaultProjectId() {
-  return process.env.NEXT_PUBLIC_STACK_PROJECT_ID || (0, import_errors.throwErr)(new Error("Welcome to Stack Auth! It seems that you haven't provided a project ID. Please create a project on the Stack dashboard at https://app.stack-auth.com and put it in the NEXT_PUBLIC_STACK_PROJECT_ID environment variable."));
+  return (0, import_env.getPublicEnvVar)("NEXT_PUBLIC_STACK_PROJECT_ID") || (0, import_errors.throwErr)(new Error("Welcome to Stack Auth! It seems that you haven't provided a project ID. Please create a project on the Stack dashboard at https://app.stack-auth.com and put it in the NEXT_PUBLIC_STACK_PROJECT_ID environment variable."));
 }
 function getDefaultPublishableClientKey() {
-  return process.env.NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY || (0, import_errors.throwErr)(new Error("Welcome to Stack Auth! It seems that you haven't provided a publishable client key. Please create an API key for your project on the Stack dashboard at https://app.stack-auth.com and copy your publishable client key into the NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY environment variable."));
+  return (0, import_env.getPublicEnvVar)("NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY") || (0, import_errors.throwErr)(new Error("Welcome to Stack Auth! It seems that you haven't provided a publishable client key. Please create an API key for your project on the Stack dashboard at https://app.stack-auth.com and copy your publishable client key into the NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY environment variable."));
 }
 function getDefaultSecretServerKey() {
   return process.env.STACK_SECRET_SERVER_KEY || (0, import_errors.throwErr)(new Error("No secret server key provided. Please copy your key from the Stack dashboard and put your it in the STACK_SECRET_SERVER_KEY environment variable."));
@@ -114,7 +102,8 @@ function getDefaultSuperSecretAdminKey() {
   return process.env.STACK_SUPER_SECRET_ADMIN_KEY || (0, import_errors.throwErr)(new Error("No super secret admin key provided. Please copy your key from the Stack dashboard and put it in the STACK_SUPER_SECRET_ADMIN_KEY environment variable."));
 }
 function getDefaultBaseUrl() {
-  return process.env.NEXT_PUBLIC_STACK_API_URL || process.env.NEXT_PUBLIC_STACK_URL || defaultBaseUrl;
+  const url = (0, import_env.getPublicEnvVar)("NEXT_PUBLIC_STACK_API_URL") || (0, import_env.getPublicEnvVar)("NEXT_PUBLIC_STACK_URL") || defaultBaseUrl;
+  return url.endsWith("/") ? url.slice(0, -1) : url;
 }
 var defaultBaseUrl = "https://api.stack-auth.com";
 function createEmptyTokenStore() {
@@ -265,13 +254,15 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       this._interface = _options.interface;
     } else {
       this._interface = new import_stack_shared.StackClientInterface({
-        baseUrl: _options.baseUrl ?? getDefaultBaseUrl(),
+        getBaseUrl: () => _options.baseUrl ?? getDefaultBaseUrl(),
         projectId: _options.projectId ?? getDefaultProjectId(),
         clientVersion,
         publishableClientKey: _options.publishableClientKey ?? getDefaultPublishableClientKey()
       });
     }
     this._tokenStoreInit = _options.tokenStore;
+    this._redirectMethod = _options.redirectMethod || "none";
+    this._redirectMethod = _options.redirectMethod || "nextjs";
     this._urlOptions = _options.urls ?? {};
     this._oauthScopesOnSignIn = _options.oauthScopesOnSignIn ?? {};
     if (_options.uniqueIdentifier) {
@@ -285,6 +276,13 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       }
     }
   }
+  async _createCookieHelper() {
+    if (this._tokenStoreInit === "nextjs-cookie" || this._tokenStoreInit === "cookie") {
+      return await (0, import_cookie.createCookieHelper)();
+    } else {
+      return await (0, import_cookie.createEmptyCookieHelper)();
+    }
+  }
   async _getUserOAuthConnectionCacheFn(options) {
     const user = await options.getUser();
     let hasConnection = true;
@@ -522,7 +520,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     return session;
   }
   async _getSession(overrideTokenStoreInit) {
-    const tokenStore = this._getOrCreateTokenStore(await (0, import_cookie.createCookieHelper)(), overrideTokenStoreInit);
+    const tokenStore = this._getOrCreateTokenStore(await this._createCookieHelper(), overrideTokenStoreInit);
     return this._getSessionFromTokenStore(tokenStore);
   }
   _useSession(overrideTokenStoreInit) {
@@ -540,7 +538,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     if (!("accessToken" in tokens) || !("refreshToken" in tokens)) {
       throw new import_errors.StackAssertionError("Invalid tokens object; can't sign in with this", { tokens });
     }
-    const tokenStore = this._getOrCreateTokenStore(await (0, import_cookie.createCookieHelper)());
+    const tokenStore = this._getOrCreateTokenStore(await this._createCookieHelper());
     tokenStore.set(tokens);
   }
   _hasPersistentTokenStore(overrideTokenStoreInit) {
@@ -610,8 +608,8 @@ var _StackClientAppImpl = class __StackClientAppImpl {
       clientMetadata: crud.client_metadata,
       clientReadOnlyMetadata: crud.client_read_only_metadata,
       async inviteUser(options) {
-        if (!options.callbackUrl && typeof window === "undefined") {
-          throw new Error("Cannot invite user without a callback URL from the server. Make sure you pass the `callbackUrl` option: `inviteUser({ email, callbackUrl: ... })`");
+        if (!options.callbackUrl && !await app._getCurrentUrl()) {
+          throw new Error("Cannot invite user without a callback URL from the server or without a redirect method. Make sure you pass the `callbackUrl` option: `inviteUser({ email, callbackUrl: ... })`");
         }
         await app._interface.sendTeamInvitation({
           teamId: crud.id,
@@ -691,7 +689,11 @@ var _StackClientAppImpl = class __StackClientAppImpl {
         const tokens = await this.currentSession.getTokens();
         return tokens;
       },
-      async registerPasskey() {
+      async registerPasskey(options) {
+        const hostname = (await app._getCurrentUrl())?.hostname;
+        if (!hostname) {
+          throw new import_errors.StackAssertionError("hostname must be provided if the Stack App does not have a redirect method");
+        }
         const initiationResult = await app._interface.initiatePasskeyRegistration({}, session);
         if (initiationResult.status !== "ok") {
           return import_results.Result.error(new import_stack_shared.KnownErrors.PasskeyRegistrationFailed("Failed to get initiation options for passkey registration"));
@@ -700,7 +702,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
         if (options_json.rp.id !== "THIS_VALUE_WILL_BE_REPLACED.example.com") {
           throw new import_errors.StackAssertionError(`Expected returned RP ID from server to equal sentinel, but found ${options_json.rp.id}`);
         }
-        options_json.rp.id = window.location.hostname;
+        options_json.rp.id = hostname;
         let attResp;
         try {
           attResp = await (0, import_browser.startRegistration)({ optionsJSON: options_json });
@@ -801,10 +803,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
         return (0, import_react2.useMemo)(() => teams.map((crud2) => app._clientTeamFromCrud(crud2, session)), [teams]);
       },
       async createTeam(data) {
-        const crud2 = await app._interface.createClientTeam({
-          ...teamCreateOptionsToCrud(data),
-          creator_user_id: "me"
-        }, session);
+        const crud2 = await app._interface.createClientTeam(teamCreateOptionsToCrud(data, "me"), session);
         await app._currentUserTeamsCache.refresh([session]);
         return app._clientTeamFromCrud(crud2, session);
       },
@@ -839,8 +838,8 @@ var _StackClientAppImpl = class __StackClientAppImpl {
         if (!crud.primary_email) {
           throw new import_errors.StackAssertionError("User does not have a primary email");
         }
-        if (!options?.callbackUrl && typeof window === "undefined") {
-          throw new Error("Cannot send verification email without a callback URL from the server. Make sure you pass the `callbackUrl` option: `sendVerificationEmail({ callbackUrl: ... })`");
+        if (!options?.callbackUrl && !await app._getCurrentUrl()) {
+          throw new Error("Cannot send verification email without a callback URL from the server or without a redirect method. Make sure you pass the `callbackUrl` option: `sendVerificationEmail({ callbackUrl: ... })`");
         }
         return await app._interface.sendVerificationEmail(crud.primary_email, options?.callbackUrl ?? (0, import_url.constructRedirectUrl)(app.urls.emailVerification), session);
       },
@@ -910,7 +909,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
   _getOwnedAdminApp(forProjectId, session) {
     if (!this._ownedAdminApps.has([session, forProjectId])) {
       this._ownedAdminApps.set([session, forProjectId], new _StackAdminAppImpl({
-        baseUrl: this._interface.options.baseUrl,
+        baseUrl: this._interface.options.getBaseUrl(),
         projectId: forProjectId,
         tokenStore: null,
         projectOwnerSession: session,
@@ -928,11 +927,32 @@ var _StackClientAppImpl = class __StackClientAppImpl {
   get urls() {
     return getUrls(this._urlOptions);
   }
+  async _getCurrentUrl() {
+    if (this._redirectMethod === "none") {
+      return null;
+    }
+    return new URL(window.location.href);
+  }
+  async _redirectTo(options) {
+    if (this._redirectMethod === "none") {
+      return;
+    }
+    if (import_stack_sc.isReactServer && this._redirectMethod === "nextjs") {
+      NextNavigation.redirect(options.url.toString(), options.replace ? NextNavigation.RedirectType.replace : NextNavigation.RedirectType.push);
+    } else {
+      if (options.replace) {
+        window.location.replace(options.url);
+      } else {
+        window.location.assign(options.url);
+      }
+      await (0, import_promises.wait)(2e3);
+    }
+  }
   async _redirectIfTrusted(url, options) {
     if (!await this._isTrusted(url)) {
       throw new Error(`Redirect URL ${url} is not trusted; should be relative.`);
     }
-    return await _redirectTo(url, options);
+    return await this._redirectTo({ url, ...options });
   }
   async _redirectToHandler(handlerName, options) {
     let url = this.urls[handlerName];
@@ -1016,14 +1036,14 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     return await this._redirectToHandler("teamInvitation", options);
   }
   async sendForgotPasswordEmail(email, options) {
-    if (!options?.callbackUrl && typeof window === "undefined") {
-      throw new Error("Cannot send forgot password email without a callback URL from the server. Make sure you pass the `callbackUrl` option: `sendForgotPasswordEmail({ email, callbackUrl: ... })`");
+    if (!options?.callbackUrl && !await this._getCurrentUrl()) {
+      throw new Error("Cannot send forgot password email without a callback URL from the server or without a redirect method. Make sure you pass the `callbackUrl` option: `sendForgotPasswordEmail({ email, callbackUrl: ... })`");
     }
     return await this._interface.sendForgotPasswordEmail(email, options?.callbackUrl ?? (0, import_url.constructRedirectUrl)(this.urls.passwordReset));
   }
   async sendMagicLinkEmail(email, options) {
-    if (!options?.callbackUrl && typeof window === "undefined") {
-      throw new Error("Cannot send magic link email without a callback URL from the server. Make sure you pass the `callbackUrl` option: `sendMagicLinkEmail({ email, callbackUrl: ... })`");
+    if (!options?.callbackUrl && !await this._getCurrentUrl()) {
+      throw new Error("Cannot send magic link email without a callback URL from the server or without a redirect method. Make sure you pass the `callbackUrl` option: `sendMagicLinkEmail({ email, callbackUrl: ... })`");
     }
     return await this._interface.sendMagicLinkEmail(email, options?.callbackUrl ?? (0, import_url.constructRedirectUrl)(this.urls.magicLinkCallback));
   }
@@ -1120,6 +1140,9 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     return res;
   }
   async signInWithOAuth(provider) {
+    if (typeof window === "undefined") {
+      throw new Error("signInWithOAuth can currently only be called in a browser environment");
+    }
     this._ensurePersistentTokenStore();
     await (0, import_auth.signInWithOAuth)(
       this._interface,
@@ -1263,6 +1286,9 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     }
   }
   async callOAuthCallback() {
+    if (typeof window === "undefined") {
+      throw new Error("callOAuthCallback can currently only be called in a browser environment");
+    }
     this._ensurePersistentTokenStore();
     let result;
     try {
@@ -1272,13 +1298,15 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     } catch (e) {
       if (e instanceof import_stack_shared.KnownErrors.InvalidTotpCode) {
         alert("Invalid TOTP code. Please try signing in again.");
+        return false;
+      } else {
+        throw e;
       }
-      throw e;
     }
     if (result.status === "ok" && result.data) {
       await this._signInToAccountWithTokens(result.data);
       if ("afterCallbackRedirectUrl" in result.data && result.data.afterCallbackRedirectUrl) {
-        await _redirectTo(result.data.afterCallbackRedirectUrl, { replace: true });
+        await this._redirectTo({ url: result.data.afterCallbackRedirectUrl, replace: true });
         return true;
       } else if (result.data.newUser) {
         await this.redirectToAfterSignUp({ replace: true });
@@ -1294,7 +1322,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
     await import_stores.storeLock.withWriteLock(async () => {
       await this._interface.signOut(session);
       if (options?.redirectUrl) {
-        await _redirectTo(options.redirectUrl);
+        await this._redirectTo({ url: options.redirectUrl, replace: true });
       } else {
         await this.redirectToAfterSignOut();
       }
@@ -1382,7 +1410,7 @@ var _StackClientAppImpl = class __StackClientAppImpl {
           throw new import_errors.StackAssertionError("Cannot serialize to JSON from an application without a publishable client key");
         }
         return {
-          baseUrl: this._interface.options.baseUrl,
+          baseUrl: this._options.baseUrl,
           projectId: this.projectId,
           publishableClientKey: this._interface.options.publishableClientKey,
           tokenStore: this._tokenStoreInit,
@@ -1411,7 +1439,7 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
       oauthScopesOnSignIn: options.oauthScopesOnSignIn
     } : {
       interface: new import_stack_shared.StackServerInterface({
-        baseUrl: options.baseUrl ?? getDefaultBaseUrl(),
+        getBaseUrl: () => options.baseUrl ?? getDefaultBaseUrl(),
         projectId: options.projectId ?? getDefaultProjectId(),
         clientVersion,
         publishableClientKey: options.publishableClientKey ?? getDefaultPublishableClientKey(),
@@ -1521,8 +1549,8 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
       isPrimary: crud.is_primary,
       usedForAuth: crud.used_for_auth,
       async sendVerificationEmail(options) {
-        if (!options?.callbackUrl && typeof window === "undefined") {
-          throw new Error("Cannot send verification email without a callback URL from the server. Make sure you pass the `callbackUrl` option: `sendVerificationEmail({ callbackUrl: ... })`");
+        if (!options?.callbackUrl && !await app._getCurrentUrl()) {
+          throw new Error("Cannot send verification email without a callback URL from the server or without a redirect method. Make sure you pass the `callbackUrl` option: `sendVerificationEmail({ callbackUrl: ... })`");
         }
         await app._interface.sendServerContactChannelVerificationEmail(userId, crud.id, options?.callbackUrl ?? (0, import_url.constructRedirectUrl)(app.urls.emailVerification));
       },
@@ -1613,10 +1641,10 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
         return (0, import_react2.useMemo)(() => teams.map((t) => app._serverTeamFromCrud(t)), [teams]);
       },
       createTeam: async (data) => {
-        const team = await app._interface.createServerTeam({
-          ...serverTeamCreateOptionsToCrud(data),
-          creator_user_id: crud.id
-        });
+        const team = await app._interface.createServerTeam(serverTeamCreateOptionsToCrud({
+          creatorUserId: crud.id,
+          ...data
+        }));
         await app._serverTeamsCache.refresh([void 0]);
         return app._serverTeamFromCrud(team);
       },
@@ -1753,8 +1781,8 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
         await app._serverTeamMemberProfilesCache.refresh([crud.id]);
       },
       async inviteUser(options) {
-        if (!options.callbackUrl && typeof window === "undefined") {
-          throw new Error("Cannot invite user without a callback URL from the server. Make sure you pass the `callbackUrl` option: `inviteUser({ email, callbackUrl: ... })`");
+        if (!options.callbackUrl && !await app._getCurrentUrl()) {
+          throw new Error("Cannot invite user without a callback URL from the server or without a redirect method. Make sure you pass the `callbackUrl` option: `inviteUser({ email, callbackUrl: ... })`");
         }
         await app._interface.sendServerTeamInvitation({
           teamId: crud.id,
@@ -1902,7 +1930,9 @@ var _StackServerAppImpl = class extends _StackClientAppImpl {
   async _refreshUsers() {
     await Promise.all([
       super._refreshUsers(),
-      this._serverUsersCache.refreshWhere(() => true)
+      this._serverUserCache.refreshWhere(() => true),
+      this._serverUsersCache.refreshWhere(() => true),
+      this._serverContactChannelsCache.refreshWhere(() => true)
     ]);
   }
 };
@@ -1910,7 +1940,7 @@ var _StackAdminAppImpl = class extends _StackServerAppImpl {
   constructor(options) {
     super({
       interface: new import_stack_shared.StackAdminInterface({
-        baseUrl: options.baseUrl ?? getDefaultBaseUrl(),
+        getBaseUrl: () => options.baseUrl ?? getDefaultBaseUrl(),
         projectId: options.projectId ?? getDefaultProjectId(),
         clientVersion,
         ..."projectOwnerSession" in options ? {
@@ -2240,7 +2270,10 @@ function serverUserCreateOptionsToCrud(options) {
     otp_auth_enabled: options.otpAuthEnabled,
     primary_email_auth_enabled: options.primaryEmailAuthEnabled,
     display_name: options.displayName,
-    primary_email_verified: options.primaryEmailVerified
+    primary_email_verified: options.primaryEmailVerified,
+    client_metadata: options.clientMetadata,
+    client_read_only_metadata: options.clientReadOnlyMetadata,
+    server_metadata: options.serverMetadata
   };
 }
 function adminProjectUpdateOptionsToCrud(options) {
@@ -2311,14 +2344,19 @@ function teamUpdateOptionsToCrud(options) {
     client_metadata: options.clientMetadata
   };
 }
-function teamCreateOptionsToCrud(options) {
+function teamCreateOptionsToCrud(options, creatorUserId) {
   return {
     display_name: options.displayName,
-    profile_image_url: options.profileImageUrl
+    profile_image_url: options.profileImageUrl,
+    creator_user_id: creatorUserId
   };
 }
 function serverTeamCreateOptionsToCrud(options) {
-  return teamCreateOptionsToCrud(options);
+  return {
+    display_name: options.displayName,
+    profile_image_url: options.profileImageUrl,
+    creator_user_id: options.creatorUserId
+  };
 }
 function serverTeamUpdateOptionsToCrud(options) {
   return {