@strands.gg/accui 2.9.0 → 2.9.1

package/dist/nuxt/module.cjs.js

@@ -0,0 +1 @@
+"use strict";const t=require("@nuxt/kit");var e="undefined"!=typeof document?document.currentScript:null;const s=t.defineNuxtModule({meta:{name:"@strands.gg/accui/nuxt",configKey:"strandsAuth",compatibility:{nuxt:"^3.0.0 || ^4.0.0"}},defaults:{baseUrl:"https://your-api.example.com",accentColor:"#EA00A8",redirectUrl:"/",onSignInUrl:"/dashboard",onSignOutUrl:"/",autoRefresh:1,refreshInterval:4,protectedRoutes:[],guestOnlyRoutes:["/auth","/login","/register"],devMode:0,styles:1,supportEmail:"",oauth2RedirectUrl:""},async setup(s,n){const r=t.createResolver("undefined"==typeof document?require("url").pathToFileURL(__filename).href:e&&"SCRIPT"===e.tagName.toUpperCase()&&e.src||new URL("nuxt/module.cjs.js",document.baseURI).href);n.options.runtimeConfig.public=n.options.runtimeConfig.public||{};const o={...s,styles:0!=s.styles};if(n.options.runtimeConfig.public.strandsAuth=o,n.options.appConfig&&(n.options.appConfig.strandsAuth=o),0!=s.styles&&n.options.css.push("@strands.gg/accui/style.css"),s.accentColor&&"#EA00A8"!==s.accentColor){const t=s.accentColor,e=`\n        :root {\n          --strands-custom-accent: ${t};\n          --strands-custom-50: color-mix(in srgb, ${t} 10%, white);\n          --strands-custom-100: color-mix(in srgb, ${t} 20%, white);\n          --strands-custom-200: color-mix(in srgb, ${t} 30%, white);\n          --strands-custom-300: color-mix(in srgb, ${t} 40%, white);\n          --strands-custom-400: color-mix(in srgb, ${t} 70%, white);\n          --strands-custom-500: ${t};\n          --strands-custom-600: color-mix(in srgb, ${t} 85%, black);\n          --strands-custom-700: color-mix(in srgb, ${t} 70%, black);\n          --strands-custom-800: color-mix(in srgb, ${t} 55%, black);\n          --strands-custom-900: color-mix(in srgb, ${t} 40%, black);\n          --strands-custom-950: color-mix(in srgb, ${t} 25%, black);\n        }\n      `;n.options.app.head=n.options.app.head||{},n.options.app.head.style=n.options.app.head.style||[],n.options.app.head.style.unshift({innerHTML:e,key:"strands-accent-override"})}const a="es.js",i=r.resolve(`./runtime/plugin.client.${a}`),u=r.resolve(`./runtime/plugin.server.${a}`),d=r.resolve(`./runtime/middleware/auth.global.${a}`),c=r.resolve(`./runtime/plugins/auth-interceptor.client.${a}`);t.addPlugin({src:i,mode:"client"}),t.addPlugin({src:u,mode:"server"}),t.addPlugin({src:c,mode:"client"}),t.addRouteMiddleware({name:"auth",path:d,global:1}),n.hook("pages:extend",()=>{}),t.addImports([{name:"useStrandsAuth",as:"useStrandsAuth",from:r.resolve(`./runtime/composables/useStrandsAuth.${a}`)},{name:"useAuthUser",as:"useAuthUser",from:r.resolve(`./runtime/composables/useStrandsAuth.${a}`)},{name:"useAuthState",as:"useAuthState",from:r.resolve(`./runtime/composables/useStrandsAuth.${a}`)},{name:"useAuthenticatedFetch",as:"useAuthenticatedFetch",from:r.resolve(`./runtime/composables/useAuthenticatedFetch.${a}`)}]);const l=["StrandsAuth","StrandsSignIn","StrandsSignUp","StrandsCompleteSignUp","StrandsUserProfile","StrandsUserButton","StrandsPasswordReset","StrandsMFASetup","StrandsMfaVerification","StrandsMfaModal","StrandsBackupCodesModal","StrandsConfirmModal","StrandsEmailMfaSetupModal","StrandsHardwareKeySetupModal","StrandsSessionsModal","StrandsSettingsModal","StrandsTotpSetupModal","StrandsConfigProvider","SignedIn","StrandsLogo","StrandsSecuredFooter","StrandsNav","StrandsNavItem","UiAlert","UiApp","UiAvatarEditor","UiButton","UiCard","UiCheckboxGroup","UiColorPicker","UiDateTimePicker","UiDivider","UiHero","UiInput","UiLevelProgress","UiLink","UiLoader","UiModal","UiPill","UiRadioGroup","UiSlider","UiTable","UiTabs","UiThemeToggle","UiToggle","UiTooltip","VirtualList","SvgIcon","IconGithub","IconGoogle"];for(const e of l)t.addComponent({name:e,export:e,filePath:"@strands.gg/accui"});n.hook("prepare:types",t=>{t.references.push({types:"@strands.gg/auth-nuxt"}),t.declarations&&t.declarations.push(`\n          declare global {\n            const useStrandsAuth: typeof import('${r.resolve("./runtime/composables/useStrandsAuth.d.ts")}')['useStrandsAuth']\n            const useAuthUser: typeof import('${r.resolve("./runtime/composables/useStrandsAuth.d.ts")}')['useAuthUser']\n            const useAuthState: typeof import('${r.resolve("./runtime/composables/useStrandsAuth.d.ts")}')['useAuthState']\n            const useAuthenticatedFetch: typeof import('${r.resolve("./runtime/composables/useAuthenticatedFetch.d.ts")}')['useAuthenticatedFetch']\n          }\n        `)})}});module.exports=s;

package/dist/nuxt/module.es.js

@@ -0,0 +1,193 @@
+import { defineNuxtModule, createResolver, addPlugin, addRouteMiddleware, addImports, addComponent } from "@nuxt/kit";
+const moduleDefaults = {
+  baseUrl: "https://your-api.example.com",
+  accentColor: "#EA00A8",
+  redirectUrl: "/",
+  onSignInUrl: "/dashboard",
+  onSignOutUrl: "/",
+  autoRefresh: true,
+  refreshInterval: 4,
+  protectedRoutes: [],
+  guestOnlyRoutes: ["/auth", "/login", "/register"],
+  devMode: false,
+  styles: true,
+  supportEmail: "",
+  oauth2RedirectUrl: ""
+};
+const module = defineNuxtModule({
+  meta: {
+    name: "@strands.gg/accui/nuxt",
+    configKey: "strandsAuth",
+    compatibility: {
+      nuxt: "^3.0.0 || ^4.0.0"
+    }
+  },
+  defaults: moduleDefaults,
+  async setup(options, nuxt) {
+    const resolver = createResolver(import.meta.url);
+    nuxt.options.runtimeConfig.public = nuxt.options.runtimeConfig.public || {};
+    const runtimeConfig = {
+      ...options,
+      styles: options.styles !== false
+    };
+    nuxt.options.runtimeConfig.public.strandsAuth = runtimeConfig;
+    if (nuxt.options.appConfig) {
+      nuxt.options.appConfig.strandsAuth = runtimeConfig;
+    }
+    if (options.styles !== false) {
+      nuxt.options.css.push("@strands.gg/accui/style.css");
+    }
+    if (options.accentColor && options.accentColor !== "#EA00A8") {
+      const accentColor = options.accentColor;
+      const cssVariables = `
+        :root {
+          --strands-custom-accent: ${accentColor};
+          --strands-custom-50: color-mix(in srgb, ${accentColor} 10%, white);
+          --strands-custom-100: color-mix(in srgb, ${accentColor} 20%, white);
+          --strands-custom-200: color-mix(in srgb, ${accentColor} 30%, white);
+          --strands-custom-300: color-mix(in srgb, ${accentColor} 40%, white);
+          --strands-custom-400: color-mix(in srgb, ${accentColor} 70%, white);
+          --strands-custom-500: ${accentColor};
+          --strands-custom-600: color-mix(in srgb, ${accentColor} 85%, black);
+          --strands-custom-700: color-mix(in srgb, ${accentColor} 70%, black);
+          --strands-custom-800: color-mix(in srgb, ${accentColor} 55%, black);
+          --strands-custom-900: color-mix(in srgb, ${accentColor} 40%, black);
+          --strands-custom-950: color-mix(in srgb, ${accentColor} 25%, black);
+        }
+      `;
+      nuxt.options.app.head = nuxt.options.app.head || {};
+      nuxt.options.app.head.style = nuxt.options.app.head.style || [];
+      nuxt.options.app.head.style.unshift({
+        innerHTML: cssVariables,
+        key: "strands-accent-override"
+      });
+    }
+    const ext = "es.js";
+    const clientPluginPath = resolver.resolve(`./runtime/plugin.client.${ext}`);
+    const serverPluginPath = resolver.resolve(`./runtime/plugin.server.${ext}`);
+    const middlewarePath = resolver.resolve(`./runtime/middleware/auth.global.${ext}`);
+    const authInterceptorPath = resolver.resolve(`./runtime/plugins/auth-interceptor.client.${ext}`);
+    addPlugin({
+      src: clientPluginPath,
+      mode: "client"
+    });
+    addPlugin({
+      src: serverPluginPath,
+      mode: "server"
+    });
+    addPlugin({
+      src: authInterceptorPath,
+      mode: "client"
+    });
+    addRouteMiddleware({
+      name: "auth",
+      path: middlewarePath,
+      global: true
+    });
+    nuxt.hook("pages:extend", () => {
+    });
+    addImports([
+      {
+        name: "useStrandsAuth",
+        as: "useStrandsAuth",
+        from: resolver.resolve(`./runtime/composables/useStrandsAuth.${ext}`)
+      },
+      {
+        name: "useAuthUser",
+        as: "useAuthUser",
+        from: resolver.resolve(`./runtime/composables/useStrandsAuth.${ext}`)
+      },
+      {
+        name: "useAuthState",
+        as: "useAuthState",
+        from: resolver.resolve(`./runtime/composables/useStrandsAuth.${ext}`)
+      },
+      {
+        name: "useAuthenticatedFetch",
+        as: "useAuthenticatedFetch",
+        from: resolver.resolve(`./runtime/composables/useAuthenticatedFetch.${ext}`)
+      }
+    ]);
+    const components = [
+      // Strands Auth Components
+      "StrandsAuth",
+      "StrandsSignIn",
+      "StrandsSignUp",
+      "StrandsCompleteSignUp",
+      "StrandsUserProfile",
+      "StrandsUserButton",
+      "StrandsPasswordReset",
+      "StrandsMFASetup",
+      "StrandsMfaVerification",
+      "StrandsMfaModal",
+      "StrandsBackupCodesModal",
+      "StrandsConfirmModal",
+      "StrandsEmailMfaSetupModal",
+      "StrandsHardwareKeySetupModal",
+      "StrandsSessionsModal",
+      "StrandsSettingsModal",
+      "StrandsTotpSetupModal",
+      "StrandsConfigProvider",
+      "SignedIn",
+      "StrandsLogo",
+      "StrandsSecuredFooter",
+      "StrandsNav",
+      "StrandsNavItem",
+      // UI Components
+      "UiAlert",
+      "UiApp",
+      "UiAvatarEditor",
+      "UiButton",
+      "UiCard",
+      "UiCheckboxGroup",
+      "UiColorPicker",
+      "UiDateTimePicker",
+      "UiDivider",
+      "UiHero",
+      "UiInput",
+      "UiLevelProgress",
+      "UiLink",
+      "UiLoader",
+      "UiModal",
+      "UiPill",
+      "UiRadioGroup",
+      "UiSlider",
+      "UiTable",
+      "UiTabs",
+      "UiThemeToggle",
+      "UiToggle",
+      "UiTooltip",
+      // Utility Components
+      "VirtualList",
+      "SvgIcon",
+      // Icons
+      "IconGithub",
+      "IconGoogle"
+    ];
+    for (const component of components) {
+      addComponent({
+        name: component,
+        export: component,
+        filePath: "@strands.gg/accui"
+      });
+    }
+    nuxt.hook("prepare:types", (opts) => {
+      opts.references.push({
+        types: "@strands.gg/auth-nuxt"
+      });
+      if (opts.declarations) {
+        opts.declarations.push(`
+          declare global {
+            const useStrandsAuth: typeof import('${resolver.resolve(`./runtime/composables/useStrandsAuth.d.ts`)}')['useStrandsAuth']
+            const useAuthUser: typeof import('${resolver.resolve(`./runtime/composables/useStrandsAuth.d.ts`)}')['useAuthUser']
+            const useAuthState: typeof import('${resolver.resolve(`./runtime/composables/useStrandsAuth.d.ts`)}')['useAuthState']
+            const useAuthenticatedFetch: typeof import('${resolver.resolve(`./runtime/composables/useAuthenticatedFetch.d.ts`)}')['useAuthenticatedFetch']
+          }
+        `);
+      }
+    });
+  }
+});
+export {
+  module as default
+};

package/dist/nuxt/runtime/composables/useAuthenticatedFetch.cjs.js

@@ -0,0 +1 @@
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const t=require("nuxt/app"),e=require("./useStrandsAuth.cjs.js");function n(){const n=t.useRuntimeConfig().public.strandsAuth,{currentSession:o,refreshToken:s,getAuthHeaders:r}=e.useStrandsAuth(),c=async(t,e={})=>{const{autoRefresh:c=1,requireAuth:a=1,baseURL:p,...u}=e;if(a&&!o.value?.accessToken)throw new Error("User is not authenticated");let h=t;const d=p||n.baseUrl;d&&"string"==typeof t&&!t.startsWith("http")&&(h=new URL(t,d).toString());const y=new Headers(u.headers);if(o.value?.accessToken)try{const t=r();Object.entries(t).forEach(([t,e])=>{y.set(t,e)})}catch(b){if(a)throw b}const i={...u,headers:y};let f=await fetch(h,i);if(401===f.status&&c&&o.value?.refreshToken)try{if(await s()&&o.value?.accessToken){const t=r();Object.entries(t).forEach(([t,e])=>{y.set(t,e)}),f=await fetch(h,{...i,headers:y})}}catch(j){}return f};return{authenticatedFetch:c,get:(t,e)=>c(t,{...e,method:"GET"}),post:(t,e,n)=>{const o=new Headers(n?.headers);return e&&"object"==typeof e&&!o.has("Content-Type")&&o.set("Content-Type","application/json"),c(t,{...n,method:"POST",headers:o,body:"object"==typeof e?JSON.stringify(e):e})},put:(t,e,n)=>{const o=new Headers(n?.headers);return e&&"object"==typeof e&&!o.has("Content-Type")&&o.set("Content-Type","application/json"),c(t,{...n,method:"PUT",headers:o,body:"object"==typeof e?JSON.stringify(e):e})},delete:(t,e)=>c(t,{...e,method:"DELETE"}),patch:(t,e,n)=>{const o=new Headers(n?.headers);return e&&"object"==typeof e&&!o.has("Content-Type")&&o.set("Content-Type","application/json"),c(t,{...n,method:"PATCH",headers:o,body:"object"==typeof e?JSON.stringify(e):e})}}}const o={get:async(t,e)=>{const{get:o}=n();return o(t,e)},post:async(t,e,o)=>{const{post:s}=n();return s(t,e,o)},put:async(t,e,o)=>{const{put:s}=n();return s(t,e,o)},delete:async(t,e)=>{const{delete:o}=n();return o(t,e)},patch:async(t,e,o)=>{const{patch:s}=n();return s(t,e,o)}};exports.$authFetch=o,exports.useAuthenticatedFetch=n;

package/dist/nuxt/runtime/composables/useAuthenticatedFetch.es.js

@@ -0,0 +1,134 @@
+import { useRuntimeConfig } from "nuxt/app";
+import { useStrandsAuth } from "./useStrandsAuth.es.js";
+function useAuthenticatedFetch() {
+  const config = useRuntimeConfig().public["strandsAuth"];
+  const { currentSession, refreshToken, getAuthHeaders } = useStrandsAuth();
+  const authenticatedFetch = async (url, options = {}) => {
+    const {
+      autoRefresh = true,
+      requireAuth = true,
+      baseURL,
+      ...fetchOptions
+    } = options;
+    if (requireAuth && !currentSession.value?.accessToken) {
+      throw new Error("User is not authenticated");
+    }
+    let fullUrl = url;
+    const resolvedBaseURL = baseURL || config.baseUrl;
+    if (resolvedBaseURL && typeof url === "string" && !url.startsWith("http")) {
+      fullUrl = new URL(url, resolvedBaseURL).toString();
+    }
+    const headers = new Headers(fetchOptions.headers);
+    if (currentSession.value?.accessToken) {
+      try {
+        const authHeaders = getAuthHeaders();
+        Object.entries(authHeaders).forEach(([key, value]) => {
+          headers.set(key, value);
+        });
+      } catch (error) {
+        console.warn("[Strands Auth] Failed to get auth headers:", error);
+        if (requireAuth) {
+          throw error;
+        }
+      }
+    }
+    const enhancedOptions = {
+      ...fetchOptions,
+      headers
+    };
+    let response = await fetch(fullUrl, enhancedOptions);
+    if (response.status === 401 && autoRefresh && currentSession.value?.refreshToken) {
+      console.log("[Strands Auth] Request failed with 401, attempting token refresh...");
+      try {
+        const refreshed = await refreshToken();
+        if (refreshed && currentSession.value?.accessToken) {
+          const newAuthHeaders = getAuthHeaders();
+          Object.entries(newAuthHeaders).forEach(([key, value]) => {
+            headers.set(key, value);
+          });
+          console.log("[Strands Auth] Retrying request with refreshed token");
+          response = await fetch(fullUrl, { ...enhancedOptions, headers });
+        }
+      } catch (refreshError) {
+        console.error("[Strands Auth] Token refresh failed:", refreshError);
+      }
+    }
+    return response;
+  };
+  const get = (url, options) => {
+    return authenticatedFetch(url, { ...options, method: "GET" });
+  };
+  const post = (url, body, options) => {
+    const headers = new Headers(options?.headers);
+    if (body && typeof body === "object" && !headers.has("Content-Type")) {
+      headers.set("Content-Type", "application/json");
+    }
+    return authenticatedFetch(url, {
+      ...options,
+      method: "POST",
+      headers,
+      body: typeof body === "object" ? JSON.stringify(body) : body
+    });
+  };
+  const put = (url, body, options) => {
+    const headers = new Headers(options?.headers);
+    if (body && typeof body === "object" && !headers.has("Content-Type")) {
+      headers.set("Content-Type", "application/json");
+    }
+    return authenticatedFetch(url, {
+      ...options,
+      method: "PUT",
+      headers,
+      body: typeof body === "object" ? JSON.stringify(body) : body
+    });
+  };
+  const del = (url, options) => {
+    return authenticatedFetch(url, { ...options, method: "DELETE" });
+  };
+  const patch = (url, body, options) => {
+    const headers = new Headers(options?.headers);
+    if (body && typeof body === "object" && !headers.has("Content-Type")) {
+      headers.set("Content-Type", "application/json");
+    }
+    return authenticatedFetch(url, {
+      ...options,
+      method: "PATCH",
+      headers,
+      body: typeof body === "object" ? JSON.stringify(body) : body
+    });
+  };
+  return {
+    authenticatedFetch,
+    get,
+    post,
+    put,
+    delete: del,
+    patch
+  };
+}
+const $authFetch = {
+  get: async (url, options) => {
+    const { get } = useAuthenticatedFetch();
+    return get(url, options);
+  },
+  post: async (url, body, options) => {
+    const { post } = useAuthenticatedFetch();
+    return post(url, body, options);
+  },
+  put: async (url, body, options) => {
+    const { put } = useAuthenticatedFetch();
+    return put(url, body, options);
+  },
+  delete: async (url, options) => {
+    const { delete: del } = useAuthenticatedFetch();
+    return del(url, options);
+  },
+  patch: async (url, body, options) => {
+    const { patch } = useAuthenticatedFetch();
+    return patch(url, body, options);
+  }
+};
+export {
+  $authFetch,
+  useAuthenticatedFetch
+};

package/dist/nuxt/runtime/composables/useStrandsAuth.cjs.js

@@ -0,0 +1 @@
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const t=require("nuxt/app"),s=require("../../../useStrandsAuth-Bp5aTR3h.cjs.js"),a=()=>{const a=t.useRuntimeConfig().public.strandsAuth,e=s.useStrandsAuth();return{...e,initialize:async()=>{await e.initialize()},signIn:async s=>{const i=await e.signIn(s);return i&&a.onSignInUrl&&await t.navigateTo(a.onSignInUrl),i},signUp:async t=>await e.signUp({email:t.email,password:"",firstName:"",lastName:""}),signOut:async()=>{await e.signOut(),a.onSignOutUrl&&await t.navigateTo(a.onSignOutUrl)}}};exports.useAuthState=()=>{const{isAuthenticated:t,isLoading:s}=a();return{isAuthenticated:t,isLoading:s}},exports.useAuthUser=()=>{const{user:t}=a();return{user:t}},exports.useStrandsAuth=a;

package/dist/nuxt/runtime/composables/useStrandsAuth.es.js

@@ -0,0 +1,56 @@
+import { useRuntimeConfig, navigateTo } from "nuxt/app";
+import { u as useStrandsAuth$1 } from "../../../useStrandsAuth-Xz8lnhv7.es.js";
+const useStrandsAuth = () => {
+  const config = useRuntimeConfig().public["strandsAuth"];
+  const vueAuth = useStrandsAuth$1();
+  const initialize = async () => {
+    await vueAuth.initialize();
+  };
+  const signIn = async (credentials) => {
+    const result = await vueAuth.signIn(credentials);
+    if (result && config.onSignInUrl) {
+      await navigateTo(config.onSignInUrl);
+    }
+    return result;
+  };
+  const signUp = async (userData) => {
+    const result = await vueAuth.signUp({
+      email: userData.email,
+      password: "",
+      // Empty password for magic link
+      firstName: "",
+      // Will be filled later in the magic link flow
+      lastName: ""
+    });
+    return result;
+  };
+  const signOut = async () => {
+    await vueAuth.signOut();
+    if (config.onSignOutUrl) {
+      await navigateTo(config.onSignOutUrl);
+    }
+  };
+  return {
+    // Re-export Vue composable state and methods
+    ...vueAuth,
+    // Add initialize function
+    initialize,
+    // Override methods with Nuxt-specific navigation
+    signIn,
+    signUp,
+    signOut
+  };
+};
+const useAuthUser = () => {
+  const { user } = useStrandsAuth();
+  return { user };
+};
+const useAuthState = () => {
+  const { isAuthenticated, isLoading } = useStrandsAuth();
+  return { isAuthenticated, isLoading };
+};
+export {
+  useAuthState,
+  useAuthUser,
+  useStrandsAuth
+};

package/dist/nuxt/runtime/middleware/auth.global.cjs.js

@@ -0,0 +1 @@
+"use strict";const e=require("nuxt/app"),t=e.defineNuxtRouteMiddleware(t=>{const n=e.useRuntimeConfig().public.strandsAuth;return new Promise(r=>{Promise.resolve().then(()=>require("../composables/useStrandsAuth.cjs.js")).then(({useStrandsAuth:o})=>{const{isAuthenticated:i,isLoading:s}=o(),u=()=>{if(s.value)return void setTimeout(u,50);const o=t.path,d=n.protectedRoutes?.some(e=>e.endsWith("*")?o.startsWith(e.slice(0,-1)):o===e||o.startsWith(e+"/")),c=n.guestOnlyRoutes?.some(e=>e.endsWith("*")?o.startsWith(e.slice(0,-1)):o===e||o.startsWith(e+"/"));if(d&&!i.value){const t=n.onSignOutUrl||"/auth",r=t.includes("?")?`${t}&redirect=${encodeURIComponent(o)}`:`${t}?redirect=${encodeURIComponent(o)}`;try{return e.navigateTo(r)}catch(a){if("undefined"!=typeof window)return void(window.location.href=r);throw a}}if(c&&i.value)return e.navigateTo(n.onSignInUrl||"/dashboard");r()};u()})})});module.exports=t;

package/dist/nuxt/runtime/middleware/auth.global.es.js

@@ -0,0 +1,54 @@
+import { defineNuxtRouteMiddleware, useRuntimeConfig, navigateTo } from "nuxt/app";
+const auth_global = defineNuxtRouteMiddleware((to) => {
+  const config = useRuntimeConfig().public["strandsAuth"];
+  if (import.meta.server) return;
+  return new Promise((resolve) => {
+    import("../composables/useStrandsAuth.es.js").then(({ useStrandsAuth }) => {
+      const { isAuthenticated, isLoading } = useStrandsAuth();
+      const checkAuth = () => {
+        if (isLoading.value) {
+          setTimeout(checkAuth, 50);
+          return;
+        }
+        const currentPath = to.path;
+        const isProtectedRoute = config.protectedRoutes?.some((route) => {
+          if (route.endsWith("*")) {
+            return currentPath.startsWith(route.slice(0, -1));
+          }
+          return currentPath === route || currentPath.startsWith(route + "/");
+        });
+        const isGuestOnlyRoute = config.guestOnlyRoutes?.some((route) => {
+          if (route.endsWith("*")) {
+            return currentPath.startsWith(route.slice(0, -1));
+          }
+          return currentPath === route || currentPath.startsWith(route + "/");
+        });
+        if (isProtectedRoute && !isAuthenticated.value) {
+          console.log("[Strands Auth] Protected route accessed without authentication, redirecting to auth");
+          const authUrl = config.onSignOutUrl || "/auth";
+          const redirectUrl = authUrl.includes("?") ? `${authUrl}&redirect=${encodeURIComponent(currentPath)}` : `${authUrl}?redirect=${encodeURIComponent(currentPath)}`;
+          console.log("[Strands Auth] Redirecting to:", redirectUrl);
+          try {
+            return navigateTo(redirectUrl);
+          } catch (error) {
+            console.warn("[Strands Auth] navigateTo failed, using window.location:", error);
+            if (typeof window !== "undefined") {
+              window.location.href = redirectUrl;
+              return;
+            }
+            throw error;
+          }
+        }
+        if (isGuestOnlyRoute && isAuthenticated.value) {
+          console.log("[Strands Auth] Guest-only route accessed while authenticated, redirecting");
+          return navigateTo(config.onSignInUrl || "/dashboard");
+        }
+        resolve();
+      };
+      checkAuth();
+    });
+  });
+});
+export {
+  auth_global as default
+};

package/dist/nuxt/runtime/plugin.client.cjs.js

@@ -0,0 +1 @@
+"use strict";const e=require("nuxt/app"),s=require("../../useStrandsConfig-CLSzvTvE.cjs.js"),n=e.defineNuxtPlugin({name:"strands-auth-client",async setup(){const n=e.useRuntimeConfig().public.strandsAuth,t={...s.STRANDS_AUTH_DEFAULTS,...n};s.setStrandsConfig(t),"undefined"!=typeof window&&(window.__STRANDS_CONFIG__=t),t?.accentColor&&"undefined"!=typeof window&&document.documentElement.style.setProperty("--strands-accent",t.accentColor);const{useStrandsAuth:i}=await Promise.resolve().then(()=>require("./composables/useStrandsAuth.cjs.js")),{initialize:a}=i();await a()}});module.exports=n;

package/dist/nuxt/runtime/plugin.client.es.js

@@ -0,0 +1,26 @@
+import { defineNuxtPlugin, useRuntimeConfig } from "nuxt/app";
+import { s as setStrandsConfig, S as STRANDS_AUTH_DEFAULTS } from "../../useStrandsConfig-XmPqJn_B.es.js";
+const plugin_client = defineNuxtPlugin({
+  name: "strands-auth-client",
+  async setup() {
+    const config = useRuntimeConfig();
+    const strandsConfig = config.public["strandsAuth"];
+    const mergedConfig = {
+      ...STRANDS_AUTH_DEFAULTS,
+      ...strandsConfig
+    };
+    setStrandsConfig(mergedConfig);
+    if (typeof window !== "undefined") {
+      window.__STRANDS_CONFIG__ = mergedConfig;
+    }
+    if (mergedConfig?.accentColor && typeof window !== "undefined") {
+      document.documentElement.style.setProperty("--strands-accent", mergedConfig.accentColor);
+    }
+    const { useStrandsAuth } = await import("./composables/useStrandsAuth.es.js");
+    const { initialize } = useStrandsAuth();
+    await initialize();
+  }
+});
+export {
+  plugin_client as default
+};

package/dist/nuxt/runtime/plugin.server.cjs.js

@@ -0,0 +1 @@
+"use strict";const s=require("nuxt/app"),e=require("../../useStrandsConfig-CLSzvTvE.cjs.js"),r=s.defineNuxtPlugin({name:"strands-auth-server",setup(){const r=s.useRuntimeConfig().public.strandsAuth,t={...e.STRANDS_AUTH_DEFAULTS,...r};e.setStrandsConfig(t)}});module.exports=r;

package/dist/nuxt/runtime/plugin.server.es.js

@@ -0,0 +1,17 @@
+import { defineNuxtPlugin, useRuntimeConfig } from "nuxt/app";
+import { s as setStrandsConfig, S as STRANDS_AUTH_DEFAULTS } from "../../useStrandsConfig-XmPqJn_B.es.js";
+const plugin_server = defineNuxtPlugin({
+  name: "strands-auth-server",
+  setup() {
+    const config = useRuntimeConfig();
+    const strandsConfig = config.public["strandsAuth"];
+    const mergedConfig = {
+      ...STRANDS_AUTH_DEFAULTS,
+      ...strandsConfig
+    };
+    setStrandsConfig(mergedConfig);
+  }
+});
+export {
+  plugin_server as default
+};

package/dist/nuxt/runtime/plugins/auth-interceptor.client.cjs.js

@@ -0,0 +1 @@
+"use strict";const t=require("nuxt/app").defineNuxtPlugin({name:"strands-auth-interceptor",setup(){if(process.server)return;const t=globalThis.fetch;globalThis.fetch=async(r,e)=>{try{const{useStrandsAuth:o}=await Promise.resolve().then(()=>require("../composables/useStrandsAuth.cjs.js")),{currentSession:c,getAuthHeaders:i}=o();let n;n="string"==typeof r?r:r instanceof URL?r.toString():r.url;const a=function(t){if(!t.startsWith("http"))return 0;if(["googleapis.com","github.com/api","api.github.com","discord.com/api","graph.microsoft.com","api.stripe.com","api.twilio.com"].some(r=>t.includes(r)))return 0;const r=["/api/","/v1/","/v2/","/graphql","/trpc"].some(r=>t.includes(r)),e=[":3001",":8000",":8080",":5000",":4000"].some(r=>t.includes(r));return r||e}(n);if(a&&c.value?.accessToken)try{const s=i(),o=new Headers(e?.headers);Object.entries(s).forEach(([t,r])=>{o.set(t,r)});const c={...e,headers:o};return t(r,c)}catch(s){}return t(r,e)}catch(s){return t(r,e)}}}});module.exports=t;

package/dist/nuxt/runtime/plugins/auth-interceptor.client.es.js

@@ -0,0 +1,77 @@
+import { defineNuxtPlugin } from "nuxt/app";
+const authInterceptor_client = defineNuxtPlugin({
+  name: "strands-auth-interceptor",
+  setup() {
+    if (process.server) return;
+    const originalFetch = globalThis.fetch;
+    globalThis.fetch = async (input, init) => {
+      try {
+        const { useStrandsAuth } = await import("../composables/useStrandsAuth.es.js");
+        const { currentSession, getAuthHeaders } = useStrandsAuth();
+        let url;
+        if (typeof input === "string") {
+          url = input;
+        } else if (input instanceof URL) {
+          url = input.toString();
+        } else {
+          url = input.url;
+        }
+        const shouldAddAuth = shouldInjectAuth(url);
+        if (shouldAddAuth && currentSession.value?.accessToken) {
+          try {
+            const authHeaders = getAuthHeaders();
+            const headers = new Headers(init?.headers);
+            Object.entries(authHeaders).forEach(([key, value]) => {
+              headers.set(key, value);
+            });
+            const enhancedInit = {
+              ...init,
+              headers
+            };
+            console.log("[Strands Auth] Injecting auth headers for request:", url);
+            return originalFetch(input, enhancedInit);
+          } catch (error) {
+            console.warn("[Strands Auth] Failed to inject auth headers:", error);
+          }
+        }
+        return originalFetch(input, init);
+      } catch (error) {
+        console.error("[Strands Auth] Error in fetch interceptor:", error);
+        return originalFetch(input, init);
+      }
+    };
+  }
+});
+function shouldInjectAuth(url) {
+  if (!url.startsWith("http")) {
+    return false;
+  }
+  const skipDomains = [
+    "googleapis.com",
+    "github.com/api",
+    "api.github.com",
+    "discord.com/api",
+    "graph.microsoft.com",
+    "api.stripe.com",
+    "api.twilio.com"
+    // Add other third-party APIs here
+  ];
+  const shouldSkip = skipDomains.some((domain) => url.includes(domain));
+  if (shouldSkip) {
+    return false;
+  }
+  const apiPatterns = [
+    "/api/",
+    "/v1/",
+    "/v2/",
+    "/graphql",
+    "/trpc"
+  ];
+  const isApiRequest = apiPatterns.some((pattern) => url.includes(pattern));
+  const apiPorts = [":3001", ":8000", ":8080", ":5000", ":4000"];
+  const hasApiPort = apiPorts.some((port) => url.includes(port));
+  return isApiRequest || hasApiPort;
+}
+export {
+  authInterceptor_client as default
+};

package/dist/nuxt.cjs.js

@@ -0,0 +1 @@
+"use strict";Object.defineProperties(exports,{t:{value:1},[Symbol.toStringTag]:{value:"Module"}});const e=require("./nuxt/module.cjs.js"),s=require("./nuxt/runtime/composables/useStrandsAuth.cjs.js"),t=require("./nuxt/runtime/composables/useAuthenticatedFetch.cjs.js");exports.default=e,exports.useAuthState=s.useAuthState,exports.useAuthUser=s.useAuthUser,exports.useStrandsAuth=s.useStrandsAuth,exports.$authFetch=t.$authFetch,exports.useAuthenticatedFetch=t.useAuthenticatedFetch;

package/dist/nuxt.es.js

@@ -0,0 +1,11 @@
+import { default as default2 } from "./nuxt/module.es.js";
+import { useAuthState, useAuthUser, useStrandsAuth } from "./nuxt/runtime/composables/useStrandsAuth.es.js";
+import { $authFetch, useAuthenticatedFetch } from "./nuxt/runtime/composables/useAuthenticatedFetch.es.js";
+export {
+  $authFetch,
+  default2 as default,
+  useAuthState,
+  useAuthUser,
+  useAuthenticatedFetch,
+  useStrandsAuth
+};

package/dist/useStrandsAuth-Bp5aTR3h.cjs.js

@@ -0,0 +1 @@
+"use strict";const e=require("vue"),t=require("./useStrandsConfig-CLSzvTvE.cjs.js"),n=new class{cache=new Map;DEFAULT_TTL=3e5;async fetch(e,t,n=this.DEFAULT_TTL){const a=Date.now(),i=this.cache.get(e);if(i&&a-i.timestamp<i.ttl)return i.promise;this.cleanExpired();const r=t().finally(()=>{setTimeout(()=>{this.cache.delete(e)},n)});return this.cache.set(e,{promise:r,timestamp:a,ttl:n}),r}clear(){this.cache.clear()}invalidate(e){this.cache.delete(e)}cleanExpired(){const e=Date.now();for(const[t,n]of this.cache.entries())e-n.timestamp>n.ttl&&this.cache.delete(t)}getStats(){return{size:this.cache.size,entries:Array.from(this.cache.keys())}}},a=function(){let e=null;return(...t)=>{e&&clearTimeout(e),e=setTimeout(()=>{((e,t)=>{"undefined"!=typeof window&&localStorage.setItem(e,t)})(...t)},300)}}(),i=e=>({id:e.id,email:e.email,firstName:e.first_name||e.firstName||"",lastName:e.last_name||e.lastName||"",avatar:e.avatar_url||e.avatar,mfaEnabled:e.mfa_enabled??e.mfaEnabled??0,emailVerified:e.email_verified??e.emailVerified??0,passwordUpdatedAt:e.password_updated_at||e.passwordUpdatedAt,settings:e.settings||{},xp:e.xp||0,level:e.level||1,next_level_xp:e.next_level_xp||e.next_level_xp||4,username:e.username,usernameLastChangedAt:e.username_last_changed_at||e.usernameLastChangedAt,createdAt:e.created_at||e.createdAt,updatedAt:e.updated_at||e.updatedAt||(new Date).toISOString()}),r={currentUser:e.ref(null),currentSession:e.ref(null),loadingStates:e.ref({initializing:1,signingIn:0,signingUp:0,signingOut:0,refreshingToken:0,sendingMfaEmail:0,verifyingMfa:0,loadingProfile:0}),isInitialized:e.ref(0),mfaRequired:e.ref(0),mfaSessionId:e.ref(null),availableMfaMethods:e.ref([])};let o=null,s=null;exports.useStrandsAuth=function(){const{getUrl:d,config:c}=t.useStrandsConfig(),{fetch:l,clear:u,invalidate:h}={fetch:n.fetch.bind(n),clear:n.clear.bind(n),invalidate:n.invalidate.bind(n),getStats:n.getStats.bind(n)},{currentUser:f,currentSession:w,loadingStates:y,isInitialized:g,mfaRequired:m,mfaSessionId:p,availableMfaMethods:S}=r,_=()=>{if(f.value=null,w.value=null,m.value=0,p.value=null,S.value=[],"undefined"!=typeof window&&(localStorage.removeItem("strands_auth_session"),localStorage.removeItem("strands_auth_user")),D(),s=null,u(),"undefined"!=typeof window&&c.value?.onSignOutUrl){const e=window.location.pathname+window.location.search,t=c.value.onSignOutUrl;e!==t&&(window.location.href=t)}},T=e.computed(()=>y.value.initializing),E=e.computed(()=>y.value.signingIn),O=e.computed(()=>y.value.signingUp),v=e.computed(()=>y.value.signingOut),A=e.computed(()=>y.value.refreshingToken),$=e.computed(()=>y.value.sendingMfaEmail),N=e.computed(()=>y.value.verifyingMfa);e.computed(()=>y.value.loadingProfile);const b=e.computed(()=>y.value.signingIn||y.value.signingUp||y.value.signingOut||y.value.refreshingToken||y.value.sendingMfaEmail||y.value.verifyingMfa||y.value.loadingProfile),k=e.computed(()=>y.value.initializing||b.value),C=e.computed(()=>{const e=y.value;return e.initializing?"Checking authentication...":e.signingIn?"Signing you in...":e.signingUp?"Creating your account...":e.signingOut?"Signing you out...":e.refreshingToken?"Refreshing session...":e.sendingMfaEmail?"Sending verification code...":e.verifyingMfa?"Verifying code...":e.loadingProfile?"Loading profile...":"Loading..."}),J=()=>{const e={};return w.value?.accessToken&&(e.Authorization=`Bearer ${w.value.accessToken}`),w.value?.refreshToken&&(e["x-refresh-token"]=w.value.refreshToken),e},P=e.computed(()=>null!==f.value),F=async()=>{if(!w.value?.refreshToken)return 0;if(s)return await s;s=(async()=>{y.value.refreshingToken=1;try{const e=await fetch(d("refresh"),{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({refresh_token:w.value.refreshToken})});if(!e.ok){if(401===e.status)return _(),0;throw new Error(`Token refresh failed: ${e.status} ${e.statusText}`)}const t=await e.json();t.user&&(f.value=i(t.user),f.value&&"undefined"!=typeof window&&localStorage.setItem("strands_auth_user",JSON.stringify(f.value)));const n={accessToken:t.access_token,refreshToken:t.refresh_token,expiresAt:new Date(Date.now()+3e5),userId:t.user?.id||f.value?.id};return w.value=n,"undefined"!=typeof window&&localStorage.setItem("strands_auth_session",JSON.stringify(n)),U(),h(`sessions:${w.value.accessToken.slice(0,20)}`),1}catch(e){return _(),0}finally{y.value.refreshingToken=0}})();const e=await s;return s=null,e},M=async e=>{try{e.user&&(f.value=i(e.user));const t={accessToken:e.access_token,refreshToken:e.refresh_token,expiresAt:new Date(Date.now()+3e5),userId:f.value?.id||e.user?.id};w.value=t,"undefined"!=typeof window&&(localStorage.setItem("strands_auth_session",JSON.stringify(t)),f.value&&localStorage.setItem("strands_auth_user",JSON.stringify(f.value))),U()}catch(t){}},U=()=>{if(o&&clearTimeout(o),!w.value)return;if("undefined"!=typeof document&&"hidden"===document.visibilityState)return;const e=new Date,t=w.value.expiresAt.getTime()-e.getTime()-6e4;t<=0?F():o=setTimeout(async()=>{"undefined"!=typeof document&&"visible"!==document.visibilityState||await F()&&U()},t)},D=()=>{o&&(clearTimeout(o),o=null)},I=async()=>{if(!g.value){y.value.initializing=1;try{if("undefined"!=typeof window){const t=localStorage.getItem("strands_auth_session"),n=localStorage.getItem("strands_auth_user");if(t&&n)try{const e=JSON.parse(t),a=JSON.parse(n);e.expiresAt=new Date(e.expiresAt),e.expiresAt<=new Date&&e.refreshToken?(w.value=e,f.value=a,await F()||_()):e.expiresAt>new Date?(w.value=e,f.value=a,U()):(localStorage.removeItem("strands_auth_session"),localStorage.removeItem("strands_auth_user"))}catch(e){localStorage.removeItem("strands_auth_session"),localStorage.removeItem("strands_auth_user")}}g.value=1,await new Promise(e=>setTimeout(e,50))}catch(e){}finally{y.value.initializing=0}}};"undefined"!=typeof document&&document.addEventListener("visibilitychange",()=>{"visible"===document.visibilityState&&w.value?(U(),j()):"hidden"===document.visibilityState&&D()}),"undefined"!=typeof window&&window.addEventListener("storage",e=>{"strands_auth_session"!==e.key&&"strands_auth_user"!==e.key||!e.newValue&&f.value&&_()});const j=()=>{if("undefined"!=typeof window&&f.value&&w.value){const e=localStorage.getItem("strands_auth_session"),t=localStorage.getItem("strands_auth_user");e&&t||_()}},R=()=>{D(),u()};try{e.getCurrentInstance()&&e.onUnmounted(R)}catch(z){}return g.value||I(),{user:e.computed(()=>f.value),currentUser:e.computed(()=>f.value),currentSession:e.computed(()=>w.value),isAuthenticated:P,isLoading:e.computed(()=>k.value||!g.value),loading:b,loadingMessage:C,isInitializing:T,isSigningIn:E,isSigningUp:O,isSigningOut:v,isRefreshingToken:A,isSendingMfaEmail:$,isVerifyingMfa:N,mfaRequired:e.computed(()=>m.value),mfaSessionId:e.computed(()=>p.value),availableMfaMethods:e.computed(()=>S.value),signIn:async e=>{y.value.signingIn=1;try{m.value=0,p.value=null,S.value=[];const t={"Content-Type":"application/json"};"undefined"!=typeof window&&window.location&&(t.Origin=window.location.origin);const n=await fetch(d("signIn"),{method:"POST",headers:t,body:JSON.stringify(e)});if(!n.ok)throw 401===n.status?new Error("Invalid email or password"):403===n.status?new Error("Please verify your email address before signing in"):new Error(`Sign in failed: ${n.status} ${n.statusText}`);const a=await n.json();if(a.mfa_required){m.value=1,p.value=a.mfa_session_id||null;const e=(a.available_mfa_methods||[]).map(e=>{let t=`${e.device_type.charAt(0).toUpperCase()+e.device_type.slice(1)} Authentication`;return"hardware"===e.device_type?t=e.device_name||"Security Key":"totp"===e.device_type?t=e.device_name||"Authenticator App":"email"===e.device_type&&(t=e.device_name||"Email Verification"),{id:e.device_id,device_type:e.device_type,device_name:e.device_name||t,is_active:1,created_at:(new Date).toISOString(),last_used_at:e.last_used_at,credential_id:e.credential_id,device_info:e.device_info}});return S.value=e,y.value.signingIn=0,a}return await M(a),a}catch(t){throw t}finally{y.value.signingIn=0}},signUp:async e=>{y.value.signingUp=1;try{throw new Error("Sign up not implemented - please integrate with auth SDK")}finally{y.value.signingUp=0}},signOut:async()=>{y.value.signingOut=1;try{D(),s=null,u(),f.value=null,w.value=null,m.value=0,p.value=null,S.value=[],"undefined"!=typeof window&&(localStorage.removeItem("strands_auth_session"),localStorage.removeItem("strands_auth_user"))}finally{y.value.signingOut=0}},refreshToken:F,fetchProfile:async()=>{const e=`profile:${w.value.accessToken.slice(0,20)}`;y.value.loadingProfile=1;try{return await l(e,async()=>{const e=await fetch(d("profile"),{method:"GET",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value?.accessToken}`}});if(!e.ok)throw 401===e.status?new Error("Authentication expired. Please sign in again."):new Error(`Failed to fetch profile: ${e.status} ${e.statusText}`);const t=await e.json();return f.value=i(t),f.value&&"undefined"!=typeof window&&localStorage.setItem("strands_auth_user",JSON.stringify(f.value)),f.value})}finally{y.value.loadingProfile=0}},updateProfile:async e=>{y.value.loadingProfile=1;try{const t=await fetch(d("profile"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value.accessToken}`},body:JSON.stringify({first_name:e.firstName,last_name:e.lastName})});if(!t.ok)throw 401===t.status?new Error("Authentication expired. Please sign in again."):new Error(`Profile update failed: ${t.status} ${t.statusText}`);const n=await t.json();return f.value=i(n),f.value&&a("strands_auth_user",JSON.stringify(f.value)),f.value}finally{y.value.loadingProfile=0}},updateUserSettings:async e=>{y.value.loadingProfile=1;try{const t=await fetch(d("settings"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value.accessToken}`},body:JSON.stringify({settings:e})});if(!t.ok)throw 401===t.status?new Error("Authentication expired. Please sign in again."):new Error(`Settings update failed: ${t.status} ${t.statusText}`);const n=await t.json();return f.value=i(n),f.value&&a("strands_auth_user",JSON.stringify(f.value)),f.value}finally{y.value.loadingProfile=0}},changeEmail:async(e,t)=>{y.value.loadingProfile=1;try{const n=await fetch(d("changeEmail"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value.accessToken}`},body:JSON.stringify({new_email:e,password:t})});if(!n.ok){if(401===n.status)throw new Error("Authentication expired. Please sign in again.");{const e=await n.json().catch(()=>({}));throw new Error(e.message||`Email change failed: ${n.status} ${n.statusText}`)}}const a=await n.json();return f.value&&(f.value={...f.value,email:e,emailVerified:0,updatedAt:(new Date).toISOString()},"undefined"!=typeof window&&localStorage.setItem("strands_auth_user",JSON.stringify(f.value))),a}finally{y.value.loadingProfile=0}},changeUsername:async e=>{y.value.loadingProfile=1;try{const t=await fetch(d("changeUsername"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value.accessToken}`},body:JSON.stringify({username:e})});if(!t.ok){const e=await t.json().catch(()=>({}));if(409===t.status)throw new Error("Username is already taken");if(e.cooldown_end)throw new Error(`You can only change your username once every 30 days. You can change it again on ${new Date(e.cooldown_end).toLocaleDateString()}`);throw new Error(e.message||`Username change failed: ${t.status} ${t.statusText}`)}const n=await t.json();return f.value&&(f.value={...f.value,username:e,usernameLastChangedAt:(new Date).toISOString(),updatedAt:(new Date).toISOString()},"undefined"!=typeof window&&localStorage.setItem("strands_auth_user",JSON.stringify(f.value))),n}finally{y.value.loadingProfile=0}},getUsernameCooldown:async()=>{const e=await fetch(d("usernameCooldown"),{method:"GET",headers:{Authorization:`Bearer ${w.value.accessToken}`}});if(!e.ok)throw new Error(`Failed to get username cooldown: ${e.status} ${e.statusText}`);return e.json()},checkUsernameAvailability:async e=>{const t=d("checkUsernameAvailability").replace("{username}",encodeURIComponent(e)),n=await fetch(t,{method:"GET",headers:{"Content-Type":"application/json"}});if(!n.ok)throw new Error(`Failed to check username availability: ${n.status} ${n.statusText}`);return n.json()},getUserSessions:async()=>{const e=`sessions:${w.value?.accessToken?.slice(0,20)||"no-token"}`;try{return await l(e,async()=>{const e=J(),t=await fetch(d("sessions"),{method:"GET",headers:e});if(!t.ok)throw await t.text(),new Error(`Failed to get user sessions: ${t.status} ${t.statusText}`);return t.json()},12e4)}catch(t){throw t}},getSessionStats:async()=>{const e=await fetch(d("sessionsStats"),{method:"GET",headers:J()});if(!e.ok)throw new Error(`Failed to get session stats: ${e.status} ${e.statusText}`);return e.json()},revokeSession:async e=>{const t=d("sessionRevoke").replace("{session_id}",encodeURIComponent(e)),n=await fetch(t,{method:"POST",headers:J()});if(!n.ok)throw new Error(`Failed to revoke session: ${n.status} ${n.statusText}`);return 200===n.status},revokeAllOtherSessions:async()=>{const e=await fetch(d("sessionsRevokeAll"),{method:"POST",headers:J()});if(!e.ok)throw new Error(`Failed to revoke all other sessions: ${e.status} ${e.statusText}`);return 200===e.status},initialize:I,setAuthData:M,verifyMfa:async(e,t,n=0)=>{if(!p.value)throw new Error("No MFA session available");y.value.verifyingMfa=1;try{const a=d(n?"mfaBackupCodeVerify":"mfaSigninVerify"),i=n?{mfa_session_id:p.value,backup_code:t}:{mfa_session_id:p.value,device_id:e,code:t},r=await fetch(a,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(i)});if(!r.ok){const e=await r.text();let t="MFA verification failed";try{const n=JSON.parse(e);t=n.message||n.error||e}catch{t=e||"MFA verification failed"}throw new Error(t)}const o=await r.json();return m.value=0,p.value=null,S.value=[],await M(o),o}finally{y.value.verifyingMfa=0}},sendMfaEmailCode:async e=>{if(!p.value)throw new Error("No MFA session available");y.value.sendingMfaEmail=1;try{const t=await fetch(d("mfaSigninSendEmail"),{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({mfa_session_id:p.value,device_id:e})});if(!t.ok){const e=await t.text();let n="Failed to send MFA email code";try{const t=JSON.parse(e);n=t.message||t.error||e}catch{n=e||"Failed to send MFA email code"}throw new Error(n)}return await t.json()}finally{y.value.sendingMfaEmail=0}},getMfaWebAuthnChallenge:async e=>{if(!p.value)throw new Error("No MFA session available");const t=await fetch(d("mfaWebAuthnChallenge"),{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({mfa_session_id:p.value,device_id:e})});if(!t.ok){const e=await t.text();let n="Failed to get WebAuthn challenge";try{const t=JSON.parse(e);n=t.message||t.error||e}catch{n=e||n}throw new Error(n)}return t.json()},registerHardwareKey:async(e,t,n="hardware")=>{const a=await fetch(d("mfaHardwareStartRegistration"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value.accessToken}`},body:JSON.stringify({device_name:e,device_type:n})});if(!a.ok){const e=await a.text();let t="Failed to start hardware key registration";try{const n=JSON.parse(e);t=n.message||n.error||e}catch{t=e||"Failed to start hardware key registration"}throw new Error(t)}return a.json()},completeHardwareKeyRegistration:async(e,t,n)=>{const a=await fetch(d("mfaHardwareCompleteRegistration"),{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${w.value.accessToken}`},body:JSON.stringify({device_id:e,credential:t})});if(!a.ok){const e=await a.text();let t="Failed to complete hardware key registration";try{const n=JSON.parse(e);t=n.message||n.error||e}catch{t=e||"Failed to complete hardware key registration"}throw new Error(t)}return a.json()},startTokenRefreshTimer:U,stopTokenRefreshTimer:D,getAuthHeaders:J,forceReInit:()=>{g.value=0,y.value.initializing=1,I()}}};