@strands.gg/accui 2.18.1 → 2.19.1

package/dist/useStrandsAuth-Yp5OpRHU.cjs.js

@@ -0,0 +1 @@
+"use strict";const o=require("vue"),_e=require("./useStrandsConfig-BY_IIwK8.cjs.js"),$="strands_known_accounts";function R(){if(typeof document>"u")return[];try{const n=document.cookie.split(";").map(w=>w.trim()).find(w=>w.startsWith(`${$}=`));if(!n)return[];const f=n.slice($.length+1),m=decodeURIComponent(f),h=JSON.parse(m);return Array.isArray(h)?h:[]}catch{return[]}}const k=o.ref(R());function Ae(){function n(){k.value=R()}const f=o.computed(()=>k.value.find(s=>s.active)??null),m=o.computed(()=>k.value.filter(s=>!s.active)),h=o.computed(()=>k.value.length>1),w=o.computed(()=>k.value.length>0);return{accounts:k,activeAccount:f,otherAccounts:m,hasMultipleAccounts:h,hasKnownAccounts:w,refreshFromCookie:n}}class ke{cache=new Map;DEFAULT_TTL=300*1e3;async fetch(f,m,h=this.DEFAULT_TTL){const w=Date.now(),s=this.cache.get(f);if(s&&w-s.timestamp<s.ttl)return s.promise;this.cleanExpired();const d=m().finally(()=>{setTimeout(()=>{this.cache.delete(f)},h)});return this.cache.set(f,{promise:d,timestamp:w,ttl:h}),d}clear(){this.cache.clear()}invalidate(f){this.cache.delete(f)}cleanExpired(){const f=Date.now();for(const[m,h]of this.cache.entries())f-h.timestamp>h.ttl&&this.cache.delete(m)}getStats(){return{size:this.cache.size,entries:Array.from(this.cache.keys())}}}const p=new ke;function Ee(){return{fetch:p.fetch.bind(p),clear:p.clear.bind(p),invalidate:p.invalidate.bind(p),getStats:p.getStats.bind(p)}}function xe(n,f){let m=null;return(...h)=>{m&&clearTimeout(m),m=setTimeout(()=>{n(...h)},f)}}const j=xe((n,f)=>{typeof window<"u"&&localStorage.setItem(n,f)},300),E=n=>({id:n.id,email:n.email,firstName:n.first_name||n.firstName||"",lastName:n.last_name||n.lastName||"",avatar:n.avatar_url||n.avatar,mfaEnabled:n.mfa_enabled??n.mfaEnabled??!1,emailVerified:n.email_verified??n.emailVerified??!1,passwordUpdatedAt:n.password_updated_at||n.passwordUpdatedAt,settings:n.settings||{},xp:n.xp||0,level:n.level||1,next_level_xp:n.next_level_xp||n.next_level_xp||4,username:n.username,usernameLastChangedAt:n.username_last_changed_at||n.usernameLastChangedAt,createdAt:n.created_at||n.createdAt,updatedAt:n.updated_at||n.updatedAt||new Date().toISOString()}),U=()=>{if(typeof window>"u")return{currentUser:o.ref(null),currentSession:o.ref(null),loadingStates:o.ref({initializing:!0,signingIn:!1,signingUp:!1,signingOut:!1,refreshingToken:!1,sendingMfaEmail:!1,verifyingMfa:!1,loadingProfile:!1}),isInitialized:o.ref(!1),mfaRequired:o.ref(!1),mfaSessionId:o.ref(null),availableMfaMethods:o.ref([]),promise:null,refreshTimer:null,heartbeatTimer:null,refreshPromise:null,refreshTokenFn:null,startTimerFn:null,stopTimerFn:null};const n=window;return n.__STRANDS_AUTH_STATE__||(n.__STRANDS_AUTH_STATE__={currentUser:o.ref(null),currentSession:o.ref(null),loadingStates:o.ref({initializing:!0,signingIn:!1,signingUp:!1,signingOut:!1,refreshingToken:!1,sendingMfaEmail:!1,verifyingMfa:!1,loadingProfile:!1}),isInitialized:o.ref(!1),mfaRequired:o.ref(!1),mfaSessionId:o.ref(null),availableMfaMethods:o.ref([]),promise:null,refreshTimer:null,heartbeatTimer:null,refreshPromise:null,refreshTokenFn:null,startTimerFn:null,stopTimerFn:null}),n.__STRANDS_AUTH_STATE__},c=U();function Oe(){const{getUrl:n,config:f}=_e.useStrandsConfig(),{fetch:m,clear:h,invalidate:w}=Ee(),{currentUser:s,currentSession:d,loadingStates:i,isInitialized:y,mfaRequired:S,mfaSessionId:g,availableMfaMethods:_}=c,{refreshFromCookie:b}=Ae(),F=()=>{if(s.value=null,d.value=null,S.value=!1,g.value=null,_.value=[],A(),c.refreshPromise=null,h(),typeof window<"u"&&f.value?.onSignOutUrl){const t=window.location.pathname+window.location.search,e=f.value.onSignOutUrl;if(t!==e&&!t.startsWith(e)){const a=encodeURIComponent(t),r=e.includes("?")?"&":"?";window.location.href=`${e}${r}redirect=${a}`}}},J=o.computed(()=>i.value.initializing),z=o.computed(()=>i.value.signingIn),L=o.computed(()=>i.value.signingUp),H=o.computed(()=>i.value.signingOut),K=o.computed(()=>i.value.refreshingToken),V=o.computed(()=>i.value.sendingMfaEmail),q=o.computed(()=>i.value.verifyingMfa);o.computed(()=>i.value.loadingProfile);const C=o.computed(()=>i.value.signingIn||i.value.signingUp||i.value.signingOut||i.value.refreshingToken||i.value.sendingMfaEmail||i.value.verifyingMfa||i.value.loadingProfile),B=o.computed(()=>i.value.initializing||C.value),G=o.computed(()=>{const t=i.value;return t.initializing?"Checking authentication...":t.signingIn?"Signing you in...":t.signingUp?"Creating your account...":t.signingOut?"Signing you out...":t.refreshingToken?"Refreshing session...":t.sendingMfaEmail?"Sending verification code...":t.verifyingMfa?"Verifying code...":t.loadingProfile?"Loading profile...":"Loading..."}),W=()=>({"Content-Type":"application/json"}),Y=async()=>{try{const t=await fetch(n("authStatus"),{method:"GET",credentials:"include"});if(!t.ok)return!1;const e=await t.json();if(e.authenticated&&e.user){s.value=E(e.user);const a=e.expires_at?new Date(e.expires_at*1e3):new Date(Date.now()+480*60*1e3);return d.value={accessToken:"",refreshToken:"",expiresAt:a,userId:e.user.id},!0}return!1}catch{return!1}},Q=async(t,e,a)=>{const r=await fetch(n("mfaHardwareCompleteRegistration"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({device_id:t,credential:e})});if(!r.ok){const u=await r.text();let l="Failed to complete hardware key registration";try{const v=JSON.parse(u);l=v.message||v.error||u}catch{l=u||"Failed to complete hardware key registration"}throw new Error(l)}return r.json()},X=async(t,e,a="hardware")=>{const r=await fetch(n("mfaHardwareStartRegistration"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({device_name:t,device_type:a})});if(!r.ok){const u=await r.text();let l="Failed to start hardware key registration";try{const v=JSON.parse(u);l=v.message||v.error||u}catch{l=u||"Failed to start hardware key registration"}throw new Error(l)}return r.json()},Z=o.computed(()=>s.value!==null),ee=async t=>{i.value.signingIn=!0;try{S.value=!1,g.value=null,_.value=[];const e={"Content-Type":"application/json"};typeof window<"u"&&window.location&&(e.Origin=window.location.origin);const a=await fetch(n("signIn"),{method:"POST",headers:e,credentials:"include",body:JSON.stringify(t)});if(!a.ok)throw a.status===401?new Error("Invalid email or password"):a.status===403?new Error("Please verify your email address before signing in"):new Error(`Sign in failed: ${a.status} ${a.statusText}`);const r=await a.json();if(r.mfa_required){S.value=!0,g.value=r.mfa_session_id||null;const u=(r.available_mfa_methods||[]).map(l=>{let v=`${l.device_type.charAt(0).toUpperCase()+l.device_type.slice(1)} Authentication`;return l.device_type==="hardware"?v=l.device_name||"Security Key":l.device_type==="totp"?v=l.device_name||"Authenticator App":l.device_type==="email"&&(v=l.device_name||"Email Verification"),{id:l.device_id,device_type:l.device_type,device_name:l.device_name||v,is_active:!0,created_at:new Date().toISOString(),last_used_at:l.last_used_at,credential_id:l.credential_id,device_info:l.device_info}});return _.value=u,i.value.signingIn=!1,r}return await O(r),r}catch(e){throw e}finally{i.value.signingIn=!1}},te=async t=>{i.value.signingUp=!0;try{throw new Error("Sign up not implemented - please integrate with auth SDK")}finally{i.value.signingUp=!1}},ne=async t=>{i.value.signingOut=!0;try{const e=t?.all?`${n("signOut")}?all=true`:n("signOut");await(await fetch(e,{method:"POST",credentials:"include"})).text(),A(),c.refreshPromise=null,h(),s.value=null,d.value=null,S.value=!1,g.value=null,_.value=[],y.value=!1,b(),typeof window<"u"&&f.value?.onSignOutUrl&&(window.location.href=f.value.onSignOutUrl)}finally{i.value.signingOut=!1}},x=async()=>{if(c.refreshPromise)return await c.refreshPromise;c.refreshPromise=(async()=>{i.value.refreshingToken=!0;try{const e=await fetch(n("refresh"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include"});if(!e.ok){if(e.status===401)return F(),!1;throw new Error(`Token refresh failed: ${e.status} ${e.statusText}`)}const a=await e.json();a.user&&(s.value=E(a.user));const u={accessToken:"",refreshToken:"",expiresAt:a.expires_at?new Date(a.expires_at*1e3):new Date(Date.now()+480*60*1e3),userId:a.user?.id||s.value?.id};return d.value=u,T(),w(`sessions:${s.value?.id||"unknown"}`),!0}catch{return F(),!1}finally{i.value.refreshingToken=!1}})();const t=await c.refreshPromise;return c.refreshPromise=null,t},ae=async()=>{const t=`profile:${d.value.accessToken.slice(0,20)}`;i.value.loadingProfile=!0;try{return await m(t,async()=>{const e=await fetch(n("profile"),{method:"GET",headers:{"Content-Type":"application/json",Authorization:`Bearer ${d.value?.accessToken}`}});if(!e.ok)throw e.status===401?new Error("Authentication expired. Please sign in again."):new Error(`Failed to fetch profile: ${e.status} ${e.statusText}`);const a=await e.json();return s.value=E(a),s.value&&typeof window<"u"&&localStorage.setItem("strands_auth_user",JSON.stringify(s.value)),s.value})}finally{i.value.loadingProfile=!1}},ie=async t=>{i.value.loadingProfile=!0;try{const e=await fetch(n("profile"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${d.value.accessToken}`},body:JSON.stringify({first_name:t.firstName,last_name:t.lastName})});if(!e.ok)throw e.status===401?new Error("Authentication expired. Please sign in again."):new Error(`Profile update failed: ${e.status} ${e.statusText}`);const a=await e.json();return s.value=E(a),s.value&&j("strands_auth_user",JSON.stringify(s.value)),s.value}finally{i.value.loadingProfile=!1}},se=async t=>{i.value.loadingProfile=!0;try{const e=await fetch(n("settings"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${d.value.accessToken}`},body:JSON.stringify({settings:t})});if(!e.ok)throw e.status===401?new Error("Authentication expired. Please sign in again."):new Error(`Settings update failed: ${e.status} ${e.statusText}`);const a=await e.json();return s.value=E(a),s.value&&j("strands_auth_user",JSON.stringify(s.value)),s.value}finally{i.value.loadingProfile=!1}},re=async(t,e)=>{i.value.loadingProfile=!0;try{const a=await fetch(n("changeEmail"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${d.value.accessToken}`},body:JSON.stringify({new_email:t,password:e})});if(!a.ok){if(a.status===401)throw new Error("Authentication expired. Please sign in again.");{const u=await a.json().catch(()=>({}));throw new Error(u.message||`Email change failed: ${a.status} ${a.statusText}`)}}const r=await a.json();return s.value&&(s.value={...s.value,email:t,emailVerified:!1,updatedAt:new Date().toISOString()},typeof window<"u"&&localStorage.setItem("strands_auth_user",JSON.stringify(s.value))),r}finally{i.value.loadingProfile=!1}},oe=async(t,e,a=!1)=>{if(!g.value)throw new Error("No MFA session available");i.value.verifyingMfa=!0;try{const r=n(a?"mfaBackupCodeVerify":"mfaSigninVerify"),u=a?{mfa_session_id:g.value,backup_code:e}:{mfa_session_id:g.value,device_id:t,code:e},l=await fetch(r,{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify(u)});if(!l.ok){const P=await l.text();let D="MFA verification failed";try{const N=JSON.parse(P);D=N.message||N.error||P}catch{D=P||"MFA verification failed"}throw new Error(D)}const v=await l.json();return S.value=!1,g.value=null,_.value=[],await O(v),v}finally{i.value.verifyingMfa=!1}},le=async t=>{if(!g.value)throw new Error("No MFA session available");i.value.sendingMfaEmail=!0;try{const e=await fetch(n("mfaSigninSendEmail"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({mfa_session_id:g.value,device_id:t})});if(!e.ok){const r=await e.text();let u="Failed to send MFA email code";try{const l=JSON.parse(r);u=l.message||l.error||r}catch{u=r||"Failed to send MFA email code"}throw new Error(u)}return await e.json()}finally{i.value.sendingMfaEmail=!1}},ce=async t=>{if(!g.value)throw new Error("No MFA session available");const e=await fetch(n("mfaWebAuthnChallenge"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({mfa_session_id:g.value,device_id:t})});if(!e.ok){const a=await e.text();let r="Failed to get WebAuthn challenge";try{const u=JSON.parse(a);r=u.message||u.error||a}catch{r=a||r}throw new Error(r)}return e.json()},O=async t=>{try{t.user&&(s.value=E(t.user));const a={accessToken:"",refreshToken:"",expiresAt:t.expires_at?new Date(t.expires_at*1e3):new Date(Date.now()+480*60*1e3),userId:s.value?.id||t.user?.id};d.value=a,T(),b()}catch{}},ue=240*1e3,de=()=>{c.heartbeatTimer&&(clearInterval(c.heartbeatTimer),c.heartbeatTimer=null)};let M;const T=()=>{if(c.refreshTimer&&clearTimeout(c.refreshTimer),!d.value||typeof document<"u"&&document.visibilityState==="hidden")return;const t=new Date,a=d.value.expiresAt.getTime()-t.getTime()-60*1e3;if(a<=0){x();return}c.refreshTimer=setTimeout(async()=>{(typeof document>"u"||document.visibilityState==="visible")&&await x()&&T()},a),M()},A=()=>{c.refreshTimer&&(clearTimeout(c.refreshTimer),c.refreshTimer=null),de()};M=()=>{c.heartbeatTimer||(c.heartbeatTimer=setInterval(async()=>{if(typeof document<"u"&&document.visibilityState==="hidden"||!d.value)return;const t=Date.now();d.value.expiresAt.getTime()-t<=300*1e3&&await x(),!c.refreshTimer&&d.value&&T()},ue))},c.refreshTokenFn=x,c.startTimerFn=T,c.stopTimerFn=A;const I=async()=>{if(y.value){i.value.initializing=!1;return}if(c.promise){await c.promise;return}i.value.initializing=!0;const t=async()=>{try{typeof window<"u"&&(await Promise.race([Y(),new Promise(r=>setTimeout(()=>r(!1),5e3))])?T():(s.value=null,d.value=null)),y.value=!0,await new Promise(e=>setTimeout(e,50))}catch{}finally{i.value.initializing=!1,c.promise=null}};return c.promise=t(),c.promise},fe=async t=>{i.value.loadingProfile=!0;try{const e=await fetch(n("changeUsername"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({username:t})});if(!e.ok){const r=await e.json().catch(()=>({}));throw e.status===409?new Error("Username is already taken"):r.cooldown_end?new Error(`You can only change your username once every 30 days. You can change it again on ${new Date(r.cooldown_end).toLocaleDateString()}`):new Error(r.message||`Username change failed: ${e.status} ${e.statusText}`)}const a=await e.json();return s.value&&(s.value={...s.value,username:t,usernameLastChangedAt:new Date().toISOString(),updatedAt:new Date().toISOString()}),a}finally{i.value.loadingProfile=!1}},he=async()=>{const t=await fetch(n("usernameCooldown"),{method:"GET",credentials:"include"});if(!t.ok)throw new Error(`Failed to get username cooldown: ${t.status} ${t.statusText}`);return t.json()},me=async t=>{const e=n("checkUsernameAvailability").replace("{username}",encodeURIComponent(t)),a=await fetch(e,{method:"GET",headers:{"Content-Type":"application/json"}});if(!a.ok)throw new Error(`Failed to check username availability: ${a.status} ${a.statusText}`);return a.json()},ge=async()=>{const t=`sessions:${s.value?.id||"no-user"}`;try{return await m(t,async()=>{const e=await fetch(n("sessions"),{method:"GET",credentials:"include"});if(!e.ok)throw await e.text(),new Error(`Failed to get user sessions: ${e.status} ${e.statusText}`);return e.json()},120*1e3)}catch(e){throw e}},ve=async()=>{const t=await fetch(n("sessionsStats"),{method:"GET",credentials:"include"});if(!t.ok)throw new Error(`Failed to get session stats: ${t.status} ${t.statusText}`);return t.json()},we=async t=>{const e=n("sessionRevoke").replace("{session_id}",encodeURIComponent(t)),a=await fetch(e,{method:"POST",credentials:"include"});if(!a.ok)throw new Error(`Failed to revoke session: ${a.status} ${a.statusText}`);return a.status===200},pe=async()=>{const t=await fetch(n("sessionsRevokeAll"),{method:"POST",credentials:"include"});if(!t.ok)throw new Error(`Failed to revoke all other sessions: ${t.status} ${t.statusText}`);return t.status===200},ye=async t=>{const e=await fetch(n("switchAccount"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({user_id:t})});if(!e.ok){const r=await e.json().catch(()=>({})),u=new Error(r.message||"Failed to switch account");throw u.code=r.code,u.email=r.email,u}const a=await e.json();return await O(a),a},Te=async t=>{if(!(await fetch(n("removeKnownAccount"),{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({user_id:t})})).ok)throw new Error("Failed to remove known account");b(),s.value?.id===t&&(s.value=null,d.value=null,A(),h())};if(typeof document<"u"&&typeof window<"u"){const t=window;t.__STRANDS_VISIBILITY_LISTENER__||(t.__STRANDS_VISIBILITY_LISTENER__=!0,document.addEventListener("visibilitychange",async()=>{const e=U();if(document.visibilityState==="visible"&&e.currentSession.value){const a=new Date;e.currentSession.value.expiresAt.getTime()-a.getTime()<=120*1e3?e.refreshTokenFn&&await e.refreshTokenFn():e.startTimerFn&&e.startTimerFn()}else document.visibilityState==="hidden"&&e.stopTimerFn&&e.stopTimerFn()}))}const Se=()=>{A(),h()};try{o.getCurrentInstance()&&o.onUnmounted(Se)}catch{}return y.value||I(),{user:o.computed(()=>s.value),currentUser:o.computed(()=>s.value),currentSession:o.computed(()=>d.value),isAuthenticated:Z,isLoading:o.computed(()=>B.value||!y.value),loading:C,loadingMessage:G,isInitializing:J,isInitialized:o.computed(()=>y.value),isSigningIn:z,isSigningUp:L,isSigningOut:H,isRefreshingToken:K,isSendingMfaEmail:V,isVerifyingMfa:q,mfaRequired:o.computed(()=>S.value),mfaSessionId:o.computed(()=>g.value),availableMfaMethods:o.computed(()=>_.value),signIn:ee,signUp:te,signOut:ne,refreshToken:x,fetchProfile:ae,updateProfile:ie,updateUserSettings:se,changeEmail:re,changeUsername:fe,getUsernameCooldown:he,checkUsernameAvailability:me,getUserSessions:ge,getSessionStats:ve,revokeSession:we,revokeAllOtherSessions:pe,initialize:I,setAuthData:O,verifyMfa:oe,sendMfaEmailCode:le,getMfaWebAuthnChallenge:ce,registerHardwareKey:X,completeHardwareKeyRegistration:Q,switchAccount:ye,removeKnownAccount:Te,startTokenRefreshTimer:T,stopTokenRefreshTimer:A,getAuthHeaders:W,forceReInit:()=>{y.value=!1,i.value.initializing=!0,I()}}}exports.useStrandsAuth=Oe;

package/dist/useStrandsConfig-48gZP9xV.es.js

@@ -0,0 +1,209 @@
+import { ref as g, getCurrentInstance as h, inject as S, computed as f, provide as y } from "vue";
+const d = {
+  baseUrl: "https://your-api.example.com",
+  accentColor: "#EA00A8",
+  autoRefresh: !0,
+  refreshInterval: 4,
+  protectedRoutes: [],
+  guestOnlyRoutes: ["/auth", "/login", "/register"],
+  devMode: !1,
+  styles: !0,
+  endpoints: {},
+  useSquircle: !0,
+  theme: "system"
+}, a = {
+  signIn: "/api/v1/auth/sign-in",
+  signUp: "/api/v1/auth/sign-up",
+  signOut: "/api/v1/auth/sign-out",
+  refresh: "/api/v1/auth/refresh",
+  authStatus: "/api/v1/auth/status",
+  passwordReset: "/api/v1/auth/password-reset",
+  passwordResetConfirm: "/api/v1/auth/password-reset/confirm",
+  completeRegistration: "/api/v1/auth/complete-registration",
+  profile: "/api/v1/user/profile",
+  verifyEmail: "/api/v1/auth/verify-email",
+  oauthProviders: "/api/v1/oauth/providers",
+  oauthProvider: "/api/v1/oauth/providers/{provider_id}",
+  changeEmail: "/api/v1/user/change-email",
+  avatar: "/api/v1/user/avatar",
+  settings: "/api/v1/user/settings",
+  // Username endpoints
+  changeUsername: "/api/v1/user/username",
+  usernameCooldown: "/api/v1/user/username/cooldown",
+  checkUsernameAvailability: "/api/v1/username/{username}/available",
+  // MFA endpoints
+  mfaDevices: "/api/v1/mfa/devices",
+  mfaTotpSetup: "/api/v1/mfa/totp/setup",
+  mfaTotpVerify: "/api/v1/mfa/totp/verify",
+  mfaEmailSetup: "/api/v1/mfa/email/setup",
+  mfaEmailSend: "/api/v1/mfa/email/send",
+  mfaEmailVerify: "/api/v1/mfa/email/verify",
+  mfaDeviceDisable: "/api/v1/mfa/device/disable",
+  mfaBackupCodes: "/api/v1/mfa/backup-codes/regenerate",
+  // Hardware key endpoints
+  mfaHardwareStartRegistration: "/api/v1/mfa/hardware/start-registration",
+  mfaHardwareCompleteRegistration: "/api/v1/mfa/hardware/complete-registration",
+  // MFA sign-in specific endpoints
+  mfaSigninSendEmail: "/api/v1/auth/mfa/email/send",
+  mfaSigninVerify: "/api/v1/auth/mfa/verify",
+  mfaBackupCodeVerify: "/api/v1/auth/mfa/backup-code/verify",
+  mfaWebAuthnChallenge: "/api/v1/auth/mfa/webauthn/challenge",
+  // Session management endpoints
+  sessions: "/api/v1/sessions",
+  sessionsStats: "/api/v1/sessions/stats",
+  sessionRevoke: "/api/v1/sessions/{session_id}/revoke",
+  sessionsRevokeAll: "/api/v1/sessions/revoke-all"
+}, p = Symbol("strands-config"), l = g(null);
+function v(s) {
+  if (typeof window > "u" || !document.documentElement) return;
+  if (typeof CSS < "u" && CSS.registerProperty)
+    try {
+      CSS.registerProperty({
+        name: "--strands-accent",
+        syntax: "<color>",
+        inherits: !0,
+        initialValue: s
+      });
+    } catch {
+    }
+  document.documentElement.style.setProperty("--strands-accent", s), document.documentElement.style.setProperty("--accui-strands-accent", s);
+  const i = {
+    "--accui-strands-50": `color-mix(in srgb, ${s} 10%, white)`,
+    "--accui-strands-100": `color-mix(in srgb, ${s} 20%, white)`,
+    "--accui-strands-200": `color-mix(in srgb, ${s} 30%, white)`,
+    "--accui-strands-300": `color-mix(in srgb, ${s} 40%, white)`,
+    "--accui-strands-400": `color-mix(in srgb, ${s} 70%, white)`,
+    "--accui-strands-500": s,
+    "--accui-strands-600": `color-mix(in srgb, ${s} 85%, black)`,
+    "--accui-strands-700": `color-mix(in srgb, ${s} 70%, black)`,
+    "--accui-strands-800": `color-mix(in srgb, ${s} 55%, black)`,
+    "--accui-strands-900": `color-mix(in srgb, ${s} 40%, black)`,
+    "--accui-strands-950": `color-mix(in srgb, ${s} 25%, black)`
+  };
+  for (const [r, n] of Object.entries(i))
+    document.documentElement.style.setProperty(r, n);
+}
+function w(s) {
+  if (l.value = s, typeof window < "u" && document.documentElement) {
+    const i = s.useSquircle !== void 0 ? s.useSquircle : !0;
+    document.documentElement.style.setProperty("--strands-allow-squircle", i ? "1" : "0"), s.accentColor && v(s.accentColor);
+  }
+  try {
+    y(p, s);
+  } catch (i) {
+    console.warn("[Strands Auth] Could not provide config via Vue provide/inject. Config available via global state only.", i);
+  }
+}
+function b(s) {
+  let i = null;
+  try {
+    h() && (i = S(p, null));
+  } catch {
+    i = null;
+  }
+  let r = null;
+  try {
+    if (typeof window < "u") {
+      if (window.__STRANDS_CONFIG__)
+        r = window.__STRANDS_CONFIG__;
+      else if (window.__NUXT__) {
+        const t = window.__NUXT__;
+        r = t?.config?.public?.strandsAuth || t?.public?.strandsAuth || t?.strandsAuth;
+      }
+    }
+  } catch (t) {
+    console.error("[Strands Auth] Error accessing runtime configuration:", t);
+  }
+  const n = f(() => {
+    const t = {
+      ...d,
+      ...s || {},
+      ...i || {},
+      ...l.value || {},
+      ...r || {}
+    };
+    if (t.baseUrl === d.baseUrl && typeof window > "u" && console.warn("[Strands Auth] No baseUrl configured for SSR. Please provide a baseUrl in your strandsAuth configuration."), typeof window < "u" && document.documentElement) {
+      const e = t.useSquircle !== void 0 ? t.useSquircle : !0;
+      document.documentElement.style.setProperty("--strands-allow-squircle", e ? "1" : "0"), t.accentColor && document.documentElement.style.setProperty("--strands-accent", t.accentColor);
+    }
+    return t;
+  }), u = f(() => {
+    const e = n.value.endpoints || {};
+    return {
+      signIn: e.signIn || a.signIn,
+      signUp: e.signUp || a.signUp,
+      signOut: e.signOut || a.signOut,
+      refresh: e.refresh || a.refresh,
+      authStatus: e.authStatus || a.authStatus,
+      passwordReset: e.passwordReset || a.passwordReset,
+      passwordResetConfirm: e.passwordResetConfirm || a.passwordResetConfirm,
+      completeRegistration: e.completeRegistration || a.completeRegistration,
+      profile: e.profile || a.profile,
+      verifyEmail: e.verifyEmail || a.verifyEmail,
+      oauthProviders: e.oauthProviders || a.oauthProviders,
+      oauthProvider: e.oauthProvider || a.oauthProvider,
+      changeEmail: e.changeEmail || a.changeEmail,
+      avatar: e.avatar || a.avatar,
+      settings: e.settings || a.settings,
+      // Username endpoints
+      changeUsername: e.changeUsername || a.changeUsername,
+      usernameCooldown: e.usernameCooldown || a.usernameCooldown,
+      checkUsernameAvailability: e.checkUsernameAvailability || a.checkUsernameAvailability,
+      // MFA endpoints
+      mfaDevices: e.mfaDevices || a.mfaDevices,
+      mfaTotpSetup: e.mfaTotpSetup || a.mfaTotpSetup,
+      mfaTotpVerify: e.mfaTotpVerify || a.mfaTotpVerify,
+      mfaEmailSetup: e.mfaEmailSetup || a.mfaEmailSetup,
+      mfaEmailSend: e.mfaEmailSend || a.mfaEmailSend,
+      mfaEmailVerify: e.mfaEmailVerify || a.mfaEmailVerify,
+      mfaDeviceDisable: e.mfaDeviceDisable || a.mfaDeviceDisable,
+      mfaBackupCodes: e.mfaBackupCodes || a.mfaBackupCodes,
+      // Hardware key endpoints
+      mfaHardwareStartRegistration: e.mfaHardwareStartRegistration || a.mfaHardwareStartRegistration,
+      mfaHardwareCompleteRegistration: e.mfaHardwareCompleteRegistration || a.mfaHardwareCompleteRegistration,
+      // MFA sign-in specific endpoints
+      mfaSigninSendEmail: e.mfaSigninSendEmail || a.mfaSigninSendEmail,
+      mfaSigninVerify: e.mfaSigninVerify || a.mfaSigninVerify,
+      mfaBackupCodeVerify: e.mfaBackupCodeVerify || a.mfaBackupCodeVerify,
+      mfaWebAuthnChallenge: e.mfaWebAuthnChallenge || a.mfaWebAuthnChallenge,
+      // Session management endpoints
+      sessions: e.sessions || a.sessions,
+      sessionsStats: e.sessionsStats || a.sessionsStats,
+      sessionRevoke: e.sessionRevoke || a.sessionRevoke,
+      sessionsRevokeAll: e.sessionsRevokeAll || a.sessionsRevokeAll
+    };
+  });
+  return {
+    config: n,
+    endpoints: u,
+    getUrl: (t) => {
+      const e = n.value;
+      if (!e.baseUrl)
+        throw new Error("Base URL is required in configuration");
+      let o;
+      typeof t == "string" && t in u.value ? o = u.value[t] : typeof t == "string" ? o = t : o = u.value[t];
+      const m = e.baseUrl.replace(/\/$/, ""), c = o.startsWith("/") ? o : `/${o}`;
+      return console.debug(`[Strands Auth] Constructing URL for endpoint "${t}": ${m}${c}`), `${m}${c}`;
+    },
+    getSupportEmail: () => n.value.supportEmail || null
+  };
+}
+function E(s) {
+  if (l.value = s, typeof window < "u" && document.documentElement) {
+    const i = s.useSquircle !== void 0 ? s.useSquircle : !0;
+    document.documentElement.style.setProperty("--strands-allow-squircle", i ? "1" : "0"), s.accentColor && v(s.accentColor);
+  }
+}
+const A = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
+  __proto__: null,
+  provideStrandsConfig: w,
+  setStrandsConfig: E,
+  useStrandsConfig: b
+}, Symbol.toStringTag, { value: "Module" }));
+export {
+  d as S,
+  A as a,
+  w as p,
+  E as s,
+  b as u
+};

package/dist/useStrandsConfig-B8h5hDy7.es.js

@@ -0,0 +1,219 @@
+import { ref as g, getCurrentInstance as h, inject as S, computed as f, provide as y } from "vue";
+const w = {
+  baseUrl: "https://your-api.example.com",
+  accentColor: "#EA00A8",
+  autoRefresh: !0,
+  refreshInterval: 4,
+  protectedRoutes: [],
+  guestOnlyRoutes: ["/auth", "/login", "/register"],
+  devMode: !1,
+  styles: !0,
+  endpoints: {},
+  useSquircle: !0,
+  theme: "system"
+};
+let d = !1;
+const a = {
+  signIn: "/api/v1/auth/sign-in",
+  signUp: "/api/v1/auth/sign-up",
+  signOut: "/api/v1/auth/sign-out",
+  refresh: "/api/v1/auth/refresh",
+  authStatus: "/api/v1/auth/status",
+  passwordReset: "/api/v1/auth/password-reset",
+  passwordResetConfirm: "/api/v1/auth/password-reset/confirm",
+  completeRegistration: "/api/v1/auth/complete-registration",
+  profile: "/api/v1/user/profile",
+  verifyEmail: "/api/v1/auth/verify-email",
+  oauthProviders: "/api/v1/oauth/providers",
+  oauthProvider: "/api/v1/oauth/providers/{provider_id}",
+  changeEmail: "/api/v1/user/change-email",
+  avatar: "/api/v1/user/avatar",
+  settings: "/api/v1/user/settings",
+  // Username endpoints
+  changeUsername: "/api/v1/user/username",
+  usernameCooldown: "/api/v1/user/username/cooldown",
+  checkUsernameAvailability: "/api/v1/username/{username}/available",
+  // MFA endpoints
+  mfaDevices: "/api/v1/mfa/devices",
+  mfaTotpSetup: "/api/v1/mfa/totp/setup",
+  mfaTotpVerify: "/api/v1/mfa/totp/verify",
+  mfaEmailSetup: "/api/v1/mfa/email/setup",
+  mfaEmailSend: "/api/v1/mfa/email/send",
+  mfaEmailVerify: "/api/v1/mfa/email/verify",
+  mfaDeviceDisable: "/api/v1/mfa/device/disable",
+  mfaBackupCodes: "/api/v1/mfa/backup-codes/regenerate",
+  // Hardware key endpoints
+  mfaHardwareStartRegistration: "/api/v1/mfa/hardware/start-registration",
+  mfaHardwareCompleteRegistration: "/api/v1/mfa/hardware/complete-registration",
+  // MFA sign-in specific endpoints
+  mfaSigninSendEmail: "/api/v1/auth/mfa/email/send",
+  mfaSigninVerify: "/api/v1/auth/mfa/verify",
+  mfaBackupCodeVerify: "/api/v1/auth/mfa/backup-code/verify",
+  mfaWebAuthnChallenge: "/api/v1/auth/mfa/webauthn/challenge",
+  // Session management endpoints
+  sessions: "/api/v1/sessions",
+  sessionsStats: "/api/v1/sessions/stats",
+  sessionRevoke: "/api/v1/sessions/{session_id}/revoke",
+  sessionsRevokeAll: "/api/v1/sessions/revoke-all",
+  // Multi-account endpoints
+  switchAccount: "/api/v1/auth/switch-account",
+  removeKnownAccount: "/api/v1/auth/remove-known-account"
+}, p = /* @__PURE__ */ Symbol("strands-config"), c = g(null);
+function v(t) {
+  if (typeof window > "u" || !document.documentElement) return;
+  if (typeof CSS < "u" && CSS.registerProperty)
+    try {
+      CSS.registerProperty({
+        name: "--strands-accent",
+        syntax: "<color>",
+        inherits: !0,
+        initialValue: t
+      });
+    } catch {
+    }
+  document.documentElement.style.setProperty("--strands-accent", t), document.documentElement.style.setProperty("--accui-strands-accent", t);
+  const i = {
+    "--accui-strands-50": `color-mix(in srgb, ${t} 10%, white)`,
+    "--accui-strands-100": `color-mix(in srgb, ${t} 20%, white)`,
+    "--accui-strands-200": `color-mix(in srgb, ${t} 30%, white)`,
+    "--accui-strands-300": `color-mix(in srgb, ${t} 40%, white)`,
+    "--accui-strands-400": `color-mix(in srgb, ${t} 70%, white)`,
+    "--accui-strands-500": t,
+    "--accui-strands-600": `color-mix(in srgb, ${t} 85%, black)`,
+    "--accui-strands-700": `color-mix(in srgb, ${t} 70%, black)`,
+    "--accui-strands-800": `color-mix(in srgb, ${t} 55%, black)`,
+    "--accui-strands-900": `color-mix(in srgb, ${t} 40%, black)`,
+    "--accui-strands-950": `color-mix(in srgb, ${t} 25%, black)`
+  };
+  for (const [n, r] of Object.entries(i))
+    document.documentElement.style.setProperty(n, r);
+}
+function b(t) {
+  if (c.value = t, typeof window < "u" && document.documentElement) {
+    const i = t.useSquircle !== void 0 ? t.useSquircle : !0;
+    document.documentElement.style.setProperty("--strands-allow-squircle", i ? "1" : "0"), t.accentColor && v(t.accentColor);
+  }
+  try {
+    y(p, t);
+  } catch (i) {
+    console.warn("[Strands Auth] Could not provide config via Vue provide/inject. Config available via global state only.", i);
+  }
+}
+function E(t) {
+  let i = null;
+  try {
+    h() && (i = S(p, null));
+  } catch {
+    i = null;
+  }
+  let n = null;
+  try {
+    if (typeof window < "u") {
+      if (window.__STRANDS_CONFIG__)
+        n = window.__STRANDS_CONFIG__;
+      else if (window.__NUXT__) {
+        const s = window.__NUXT__;
+        n = s?.config?.public?.strandsAuth || s?.public?.strandsAuth || s?.strandsAuth;
+      }
+    }
+  } catch (s) {
+    console.error("[Strands Auth] Error accessing runtime configuration:", s);
+  }
+  const r = f(() => {
+    const s = {
+      ...w,
+      ...t || {},
+      ...i || {},
+      ...c.value || {},
+      ...n || {}
+    };
+    if (typeof window < "u" && document.documentElement) {
+      const e = s.useSquircle !== void 0 ? s.useSquircle : !0;
+      document.documentElement.style.setProperty("--strands-allow-squircle", e ? "1" : "0"), s.accentColor && document.documentElement.style.setProperty("--strands-accent", s.accentColor);
+    }
+    return s;
+  });
+  typeof window > "u" && !d && (c.value?.baseUrl || i?.baseUrl || t?.baseUrl || (d = !0, console.warn("[Strands Auth] No baseUrl configured for SSR. Please provide a baseUrl in your strandsAuth configuration.")));
+  const u = f(() => {
+    const e = r.value.endpoints || {};
+    return {
+      signIn: e.signIn || a.signIn,
+      signUp: e.signUp || a.signUp,
+      signOut: e.signOut || a.signOut,
+      refresh: e.refresh || a.refresh,
+      authStatus: e.authStatus || a.authStatus,
+      passwordReset: e.passwordReset || a.passwordReset,
+      passwordResetConfirm: e.passwordResetConfirm || a.passwordResetConfirm,
+      completeRegistration: e.completeRegistration || a.completeRegistration,
+      profile: e.profile || a.profile,
+      verifyEmail: e.verifyEmail || a.verifyEmail,
+      oauthProviders: e.oauthProviders || a.oauthProviders,
+      oauthProvider: e.oauthProvider || a.oauthProvider,
+      changeEmail: e.changeEmail || a.changeEmail,
+      avatar: e.avatar || a.avatar,
+      settings: e.settings || a.settings,
+      // Username endpoints
+      changeUsername: e.changeUsername || a.changeUsername,
+      usernameCooldown: e.usernameCooldown || a.usernameCooldown,
+      checkUsernameAvailability: e.checkUsernameAvailability || a.checkUsernameAvailability,
+      // MFA endpoints
+      mfaDevices: e.mfaDevices || a.mfaDevices,
+      mfaTotpSetup: e.mfaTotpSetup || a.mfaTotpSetup,
+      mfaTotpVerify: e.mfaTotpVerify || a.mfaTotpVerify,
+      mfaEmailSetup: e.mfaEmailSetup || a.mfaEmailSetup,
+      mfaEmailSend: e.mfaEmailSend || a.mfaEmailSend,
+      mfaEmailVerify: e.mfaEmailVerify || a.mfaEmailVerify,
+      mfaDeviceDisable: e.mfaDeviceDisable || a.mfaDeviceDisable,
+      mfaBackupCodes: e.mfaBackupCodes || a.mfaBackupCodes,
+      // Hardware key endpoints
+      mfaHardwareStartRegistration: e.mfaHardwareStartRegistration || a.mfaHardwareStartRegistration,
+      mfaHardwareCompleteRegistration: e.mfaHardwareCompleteRegistration || a.mfaHardwareCompleteRegistration,
+      // MFA sign-in specific endpoints
+      mfaSigninSendEmail: e.mfaSigninSendEmail || a.mfaSigninSendEmail,
+      mfaSigninVerify: e.mfaSigninVerify || a.mfaSigninVerify,
+      mfaBackupCodeVerify: e.mfaBackupCodeVerify || a.mfaBackupCodeVerify,
+      mfaWebAuthnChallenge: e.mfaWebAuthnChallenge || a.mfaWebAuthnChallenge,
+      // Session management endpoints
+      sessions: e.sessions || a.sessions,
+      sessionsStats: e.sessionsStats || a.sessionsStats,
+      sessionRevoke: e.sessionRevoke || a.sessionRevoke,
+      sessionsRevokeAll: e.sessionsRevokeAll || a.sessionsRevokeAll,
+      // Multi-account endpoints
+      switchAccount: e.switchAccount || a.switchAccount,
+      removeKnownAccount: e.removeKnownAccount || a.removeKnownAccount
+    };
+  });
+  return {
+    config: r,
+    endpoints: u,
+    getUrl: (s) => {
+      const e = r.value;
+      if (!e.baseUrl)
+        throw new Error("Base URL is required in configuration");
+      let o;
+      typeof s == "string" && s in u.value ? o = u.value[s] : typeof s == "string" ? o = s : o = u.value[s];
+      const l = e.baseUrl.replace(/\/$/, ""), m = o.startsWith("/") ? o : `/${o}`;
+      return console.debug(`[Strands Auth] Constructing URL for endpoint "${s}": ${l}${m}`), `${l}${m}`;
+    },
+    getSupportEmail: () => r.value.supportEmail || null
+  };
+}
+function C(t) {
+  if (c.value = t, typeof window < "u" && document.documentElement) {
+    const i = t.useSquircle !== void 0 ? t.useSquircle : !0;
+    document.documentElement.style.setProperty("--strands-allow-squircle", i ? "1" : "0"), t.accentColor && v(t.accentColor);
+  }
+}
+const k = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
+  __proto__: null,
+  provideStrandsConfig: b,
+  setStrandsConfig: C,
+  useStrandsConfig: E
+}, Symbol.toStringTag, { value: "Module" }));
+export {
+  w as S,
+  k as a,
+  b as p,
+  C as s,
+  E as u
+};