npm - @supertokens/rownd-react - Versions diffs - 0.1.0-beta.0 → 0.1.0-beta.1 - Mend

@supertokens/rownd-react 0.1.0-beta.0 → 0.1.0-beta.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/README.md +114 -258
package/dist/context/HubScriptInjector/HubScriptInjector.js +21 -12
package/dist/context/HubScriptInjector/HubScriptInjector.js.map +1 -1
package/dist/next/server/withRowndMiddleware.d.ts +2 -0
package/dist/next/server/withRowndMiddleware.js +25 -6
package/dist/next/server/withRowndMiddleware.js.map +1 -1
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,308 +1,164 @@
-#### README's for [Next](https://github.com/rownd/react/tree/main/packages/next) and [Remix](https://github.com/rownd/react/tree/main/packages/remix).
+# SuperTokens Rownd React SDK
-# React
+React bindings for the SuperTokens Rownd Hub. The SDK injects the SuperTokens Rownd Hub script, keeps React state in sync with the Hub, and exposes auth helpers through `useRownd()`.
-## Installation
-Simply run `npm install @rownd/react` or `yarn add @rownd/react`.
+For Next.js, use `@supertokens/rownd-nextjs` and see `packages/next/README.md`.
-## Usage
+## Installation
-### React
+```bash
+npm install @supertokens/rownd-react
+# or
+yarn add @supertokens/rownd-react
+```
-The library provides a React provider and hook for the Rownd browser API.
+## Provider Setup
-In your app's main entrypoint, add the Rownd provider, likely before other providers:
+Add `RowndProvider` near the root of your React app.
-```jsx
-import React from 'react',
-import ReactDOM from 'react-dom';
-import { RowndProvider } from '@rownd/react';
+```tsx
+import React from 'react';
+import ReactDOM from 'react-dom/client';
+import { RowndProvider } from '@supertokens/rownd-react';
 import App from './App';
-ReactDOM.render(
+ReactDOM.createRoot(document.getElementById('root')!).render(
   <RowndProvider
-    appKey="<your app key>"
+    appKey="<your Rownd app key>"
+    supertokens={{
+      appInfo: {
+        appName: 'My App',
+        apiDomain: 'http://localhost:3001',
+        apiBasePath: '/auth',
+      },
+    }}
   >
     <App />
-  </RowndProvider>,
-  document.getElementById('root')
+  </RowndProvider>
 );
 ```
-{% hint style="warning" %}
-The Rownd React SDK automatically injects the Rownd Hub snippet into your React application, so you should _not_ manually include the Hub snippet in your HTML page. Doing so will produce unexpected results.
-{% endhint %}
-### RowndProvider props
+Do not manually include the Hub snippet in your HTML. The provider injects the SuperTokens Rownd Hub bundle for you.
+## RowndProvider Props
+| Prop | Required | Default | Description |
+| --- | --- | --- | --- |
+| `appKey` | Yes | - | Rownd app key used by the Hub. |
+| `supertokens` | Yes | - | SuperTokens app config passed to the Hub. |
+| `hubUrlOverride` | No | `https://rownd-hub.supertokens.com` | Alternate SuperTokens Rownd Hub URL. Mostly used for staging or local Hub development. |
+| `apiUrl` | No | - | Legacy Rownd API URL override, forwarded to the Hub as `setLegacyRowndApiUrl`. |
+| `rootOrigin` | No | - | Root origin for multi-domain deployments. |
+| `postRegistrationUrl` | No | - | URL the Hub should use after registration when that flow needs a redirect. |
+| `postSignOutRedirect` | No | - | URL the Hub should redirect to after sign-out. |
+| `apiVersion` | No | `2026-01-21` | Hub API version date. Set an earlier date to opt out of newer Hub behavior. |
+`supertokens` has this shape:
+```ts
+type SuperTokensConfig = {
+  appInfo: {
+    appName?: string;
+    apiDomain: string;
+    apiBasePath?: string;
+  };
+};
+```
-- `appKey` (required): This is the key generated by the [Rownd dashboard](https://app.rownd.io).
-- `postLoginRedirect` (optional): Where the browser should redirect the user after a successful sign-in. If not supplied, the user will remain on the same page.
-- `rootOrigin` (optional): If you're using Rownd across multiple domains (e.g., `rownd.io` and `app.rownd.io`), set this to the "root" _origin_ (e.g., https://rownd.io).
+`apiDomain` and `apiBasePath` must match the SuperTokens backend that the Hub should use for session creation and refresh.
-### Provider props
+## useRownd
-* `appKey` (required): This is the key generated by the [Rownd dashboard](https://app.rownd.io).
-* `postLoginRedirect` (optional): Where the browser should redirect the user after a successful sign-in. If not supplied, the user will remain on the same page.
-* `rootOrigin` (optional): If you're using Rownd across multiple domains (e.g., `rownd.io` and `app.rownd.io`), set this to the "root" _origin_ (e.g., https://rownd.io).
+Use `useRownd()` inside provider children to read auth state and call Hub APIs.
-Later on within your app's components, you can use the Rownd hook to access the Rownd browser API:
+```tsx
+import { useEffect } from 'react';
+import { useRownd } from '@supertokens/rownd-react';
-```jsx
-import React from 'react';
-import { useRownd } from '@rownd/react';
-export default function MyProtectedComponent(props) {
-  const { is_authenticated, user, requestSignIn, is_initializing } = useRownd();
+export function ProtectedContent() {
+  const {
+    is_authenticated,
+    is_initializing,
+    user,
+    requestSignIn,
+    signOut,
+    getAccessToken,
+  } = useRownd();
   useEffect(() => {
-    if (!is_authenticated && !is_initializing) {
+    if (!is_initializing && !is_authenticated) {
       requestSignIn();
     }
-  }, [is_authenticated, is_initializing]);
-  return (
-    <div>
-      {is_authenticated ? (
-        <div>
-          <h1>Welcome {user.data.first_name}</h1>
-          <h2>Email:{user.data.email}</h2>
-          <button onClick={() => getAccessToken()}>Get access token</button>
-        </div>
-      ) : (
-        <div>
-          <h1>Please sign in to continue</h1>
-        </div>
-      )}
-    </div>
-  );
-}
-```
-### Usage with redux, etc
-Often, sending and receiving data from your server will rely on the Rownd access token as a means of authenticating the user within your back-end (see our [Node.js SDK](node.js.md) as an example of this). Many React apps leverage Redux or similar technologies to manage an app's global state.
-The key here is to call Rownd's `getAccessToken({ waitForToken: true })` method when calling your own authenticated APIs. For example, if you're using [axios](https://npmjs.com/package/axios), you'd likely set up an interceptor that looks something like this:
-```javascript
-// api-client.js
-import axios from 'axios';
+  }, [is_authenticated, is_initializing, requestSignIn]);
-let getAccessToken;
-axios.interceptors.request.use(async (config) => {
-  if (!getAccessToken) {
-    return config;
+  if (is_initializing) {
+    return <div>Loading...</div>;
   }
-  if (config.skipAuth || !config.url.startsWith('/api')) {
-    return config;
+  if (!is_authenticated) {
+    return <button onClick={() => requestSignIn()}>Sign in</button>;
   }
-  const accessToken = await getAccessToken({ waitForToken: true });
-  config.headers.common.Authorization = `Bearer ${accessToken}`;
-  return config;
-});
-export function setAccessTokenHelper(fn) {
-  getAccessToken = fn;
+  return (
+    <div>
+      <p>Welcome {user.data.email ?? user.data.user_id}</p>
+      <button onClick={() => signOut()}>Sign out</button>
+      <button onClick={() => getAccessToken({ waitForToken: true })}>
+        Get access token
+      </button>
+    </div>
+  );
 }
-export default axios;
 ```
-Here's another example, this time using [ky](https://npmjs.com/package/ky):
+## Common Methods
-```javascript
-// api-client.js
+| Method | Description |
+| --- | --- |
+| `requestSignIn(options?)` | Opens the Hub sign-in UI. |
+| `signOut()` | Signs out the current user. |
+| `getAccessToken(options?)` | Gets the current Rownd/SuperTokens access token. Use `{ waitForToken: true }` when making authenticated API calls. |
+| `setUser(data)` | Merges data into the Rownd user profile. |
+| `setUserValue(key, value)` | Updates one user profile field. |
+| `manageAccount()` | Opens the Hub account management UI. |
+| `getAppConfig()` | Reads the active Hub app config. |
+| `onAuthenticated(callback)` | Runs a callback when a user becomes authenticated. Returns an unsubscribe function. |
-import ky from 'ky';
+## Authenticated Requests
-let getAccessToken;
+Call `getAccessToken({ waitForToken: true })` before requests that require the SuperTokens session.
-ky.extend({
-  hooks: {
-    beforeRequest: [
-      // Auto-refresh tokens
-      async (request) => {
-        if (!getAccessToken) {
-          return;
-        }
+```ts
+import { useRownd } from '@supertokens/rownd-react';
-        if (request.skipAuth || !request.url.startsWith('/api')) {
-          return;
-        }
+export function ProtectedRequestButton() {
+  const { getAccessToken } = useRownd();
-        const accessToken = await getAccessToken({ waitForToken: true });
+  async function callApi() {
+    const accessToken = await getAccessToken({ waitForToken: true });
-        request.headers.set(
-          'Authorization',
-          `Bearer ${tokenResp.access_token}`
-        );
+    const response = await fetch('/api/protected', {
+      headers: {
+        Authorization: `Bearer ${accessToken}`,
       },
-    ],
-  },
-});
+    });
-function setAccessTokenHelper(fn) {
-  getAccessToken = fn;
-}
-export { api, setAccessTokenHelper };
-```
-In both of the cases above, our async actions would use these instances of axios or ky to make requests back to the server, but before any of those fire, we need to set the access token helper from our React app like this:
-```javascript
-// AppWrapper.jsx
-import { useRownd } from '@rownd/react';
-import { setAccessTokenHelper } from './api-client';
-import App from './app';
-export default function MyReactAppWrapper() {
-  const { getAccessToken } = useRownd();
-  useEffect(() => {
-    setAccessTokenHelper(getAccessToken);
-  }, [getAccessToken]);
+    return response.json();
+  }
-  return <App />;
+  return <button onClick={callApi}>Call protected API</button>;
 }
 ```
-That's one way to solve this problem. Another might be to wrap the redux provider in your own component and simply pass the `getAccessToken` function down into the store during initialization. If you come up with a better mousetrap here, let us know!
-## API reference
-Most API methods are made available via the Rownd Provider and its associated `useRownd` React hook. Unless otherwise noted, we're assuming that you're using hooks.
-#### requestSignIn()
-Trigger the Rownd sign in dialog
-```javascript
-const { requestSignIn } = useRownd();
+## Sign-In Options
+```ts
 requestSignIn({
-  auto_sign_in: false, // optional
-  identifier: 'me@company.com' || '+19105551212', // optional
-});
-```
-- `auto_sign_in: boolean` - when `true`, automatically trigger a sign-in attempt _if_ `identifier` is included or an email address or phone number has already been set in the user data.
-- `identifier: string` - an email address or phone number (in E164 format) to which a verification message may be sent. If the Rownd app is configured to allow unverified users, then sign-in will complete without verification if the user has not signed in previously.
-#### signOut()
-Sign out the user and clear their profile, returning them to a completely unauthenticated state.
-```javascript
-const { signOut } = useRownd();
-signOut();
-```
-#### **getAccessToken()**
-Retrieves the active, valid access token for the current user.&#x20;
-```javascript
-const { getAccessToken } = useRownd();
-let accessToken = await getAccessToken({
-  waitForToken: false,
+  identifier: 'me@company.com',
+  auto_sign_in: false,
+  method: 'email',
+  post_login_redirect: '/profile',
 });
 ```
-- `waitForToken: boolean` - when `true`, if no access token is present or if it's expired, the promise will not resolve until a valid token is available. While unlikely, this could result in waiting forever.
-**is_initializing**
-`is_initializing` will be `true` until the Hub has fully loaded, recalled its state, and resolved the current user's authentication status. This usually takes only a few milliseconds, but if you make decisions that depend on the `is_authenticated` flag while `is_initializing` is still `true`, your code/logic may not work as you expect.
-```javascript
-const { is_initializing } = useRownd();
-if (is_initializing) {
-  // return loading state or null
-}
-```
-#### is_authenticated
-Indicates whether the current user is signed in or not.
-```javascript
-const { is_authenticated } = useRownd();
-return (
-  <>
-    {is_authenticated && <ProtectedRoute />}
-    {!is_authenticated && <PublicRoute />}
-  </>
-);
-```
-#### access_token
-Represents the current access token for the user.
-```javascript
-const { access_token } = useRownd();
-useEffect(() => {
-    axios({
-        method: 'post',
-        url: '/api/sessions'
-        headers: {
-            authorization: `Bearer ${access_token}`
-        }
-    }).then(console.log);
-}, [access_token]);
-```
-#### user
-Represents information about the current user, specifically their profile information. In the example below, we use the existing data to display the current value of `first_name` in a form field, update a local copy of that data as the user changes it, and then save the changes to Rownd once the user submits the form.
-```javascript
-const { user } = useRownd();
-const [profile, setProfile] = useState(user.data);
-return (
-  <form onSubmit={() => user.set(profile)}>
-    <label htmlFor="first_name">
-      <input
-        id="first_name"
-        type="text"
-        value={profile?.first_name}
-        onInput={(evt) =>
-          setProfile({ ...profile, first_name: evt.target.value })
-        }
-      />
-    </label>
-    <button type="submit">Save</button>
-  </form>
-);
-```
-**Merge data into the user profile**
-```javascript
-const { user } = useRownd();
-user.set({
-  first_name: 'Alice',
-  last_name: 'Ranier',
-});
-```
-Set a specific field in the user profile
-```javascript
-const { user } = useRownd();
-user.setValue('first_name', 'Alice');
-```
+Supported fields include `identifier`, `auto_sign_in`, `init_data`, `post_login_redirect`, `include_user_data`, `redirect`, `intent`, `group_to_join`, `prevent_closing`, `method`, and method-specific `method_options`.

package/dist/context/HubScriptInjector/HubScriptInjector.js CHANGED Viewed

@@ -1,32 +1,41 @@
-import { useEffect as _ } from "react";
-function t(s, o) {
-  o && (window == null || window._rphConfig.push([s, o]));
+import { useEffect as m } from "react";
+function t(i, o) {
+  o && (window == null || window._rphConfig.push([i, o]));
 }
-const m = "2026-01-21";
+const _ = "2026-01-21";
 var h;
 const f = typeof window < "u" ? (h = window == null ? void 0 : window.location) == null ? void 0 : h.hash : void 0;
 function y({
-  appKey: s,
+  appKey: i,
   apiUrl: o,
   supertokens: p,
   hubUrlOverride: a,
   stateListener: l,
-  apiVersion: u = m,
+  apiVersion: u = _,
   ...c
 }) {
-  return _(() => {
+  return m(() => {
     if (!window)
       return;
-    const w = window._rphConfig = window._rphConfig || [], d = window.localStorage.getItem("rph_base_url_override") || a || "https://hub.rownd.io";
-    w.push(["setBaseUrl", d]), t("setAppKey", s), t("setStateListener", l), t("setLocationHash", f), t("setApiVersion", u), t("setSupertokens", p), t("setLegacyRowndApiUrl", o);
-    const n = document, r = n.createElement("script"), i = n.createElement("script"), e = n.getElementsByTagName("script")[0];
-    r.noModule = !0, r.async = !0, r.src = d + "/static/scripts/rph.js", i.type = "module", i.async = !0, i.src = d + "/static/scripts/rph.mjs", e != null && e.parentNode ? (e.parentNode.insertBefore(r, e), e.parentNode.insertBefore(i, e)) : (n.body.appendChild(r), n.body.appendChild(i)), window.localStorage.getItem("rph_log_level") === "debug" && console.debug("[debug] rest:", c), c && (Object.entries(c).forEach(([g, b]) => {
+    const w = window._rphConfig = window._rphConfig || [], d = window.localStorage.getItem("rph_base_url_override") || a || "https://rownd-hub.supertokens.com";
+    w.push(["setBaseUrl", d]), t("setAppKey", i), t("setStateListener", l), t("setLocationHash", f), t("setApiVersion", u), t("setSupertokens", p), t("setLegacyRowndApiUrl", o);
+    const n = document, r = n.createElement("script"), s = n.createElement("script"), e = n.getElementsByTagName("script")[0];
+    r.noModule = !0, r.async = !0, r.src = d + "/static/scripts/rph.js", s.type = "module", s.async = !0, s.src = d + "/static/scripts/rph.mjs", e != null && e.parentNode ? (e.parentNode.insertBefore(r, e), e.parentNode.insertBefore(s, e)) : (n.body.appendChild(r), n.body.appendChild(s)), window.localStorage.getItem("rph_log_level") === "debug" && console.debug("[debug] rest:", c), c && (Object.entries(c).forEach(([g, b]) => {
       t(
         `set${g.charAt(0).toUpperCase() + g.substring(1)}`,
         b
       );
     }), window.localStorage.getItem("rph_log_level") === "debug" && console.debug("[debug] hubConfig:", window._rphConfig));
-  }, [s, o, p, l, f, a, u, c]), null;
+  }, [
+    i,
+    o,
+    p,
+    l,
+    f,
+    a,
+    u,
+    c
+  ]), null;
 }
 export {
   y as default

package/dist/context/HubScriptInjector/HubScriptInjector.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"HubScriptInjector.js","sources":["../../../src/context/HubScriptInjector/HubScriptInjector.tsx"],"sourcesContent":["import { useEffect } from 'react';\nimport { HubListenerProps, SuperTokensConfig } from '../RowndContext';\n\ndeclare global {\n interface Window {\n _rphConfig: any;\n }\n}\n\nfunction setConfigValue(key: string, value: any) {\n if (!value) {\n return;\n }\n\n window?._rphConfig.push([key, value]);\n}\n\n/*\n Default API version for new SDK releases.\n * This controls which Hub features are enabled by default.\n */\nconst DEFAULT_API_VERSION = '2026-01-21';\n\nexport type HubScriptInjectorProps = {\n appKey: string;\n stateListener: ({ state, api }: HubListenerProps) => void;\n apiUrl?: string;\n supertokens: SuperTokensConfig;\n hubUrlOverride?: string;\n locationHash?: string;\n apiVersion?: string;\n};\n\n// Grab the URL hash ASAP in case it contains an `rph_init` param\nconst locationHash =\n typeof window !== 'undefined' ? window?.location?.hash : void 0;\n\nexport default function HubScriptInjector({\n appKey,\n apiUrl,\n supertokens,\n hubUrlOverride,\n stateListener,\n apiVersion = DEFAULT_API_VERSION,\n ...rest\n}: HubScriptInjectorProps) {\n\n useEffect(() => {\n if (!window) {\n return; // compat with server-side rendering\n }\n\n const _rphConfig = (window._rphConfig = window._rphConfig \|\| []);\n const baseUrl =\n window.localStorage.getItem('rph_base_url_override') \|\|\n hubUrlOverride \|\|\n 'https://hub.~~rownd~~.io';\n _rphConfig.push(['setBaseUrl', baseUrl]);\n\n setConfigValue('setAppKey', appKey);\n setConfigValue('setStateListener', stateListener);\n setConfigValue('setLocationHash', locationHash);\n setConfigValue('setApiVersion', apiVersion);\n setConfigValue('setSupertokens', supertokens);\n setConfigValue('setLegacyRowndApiUrl', apiUrl);\n\n const d = document,\n g = d.createElement('script'),\n m = d.createElement('script'),\n s = d.getElementsByTagName('script')[0];\n g.noModule = true;\n g.async = true;\n g.src = baseUrl + '/static/scripts/rph.js';\n m.type = 'module';\n m.async = true;\n m.src = baseUrl + '/static/scripts/rph.mjs';\n\n if (s?.parentNode) {\n s.parentNode.insertBefore(g, s);\n s.parentNode.insertBefore(m, s);\n } else {\n d.body.appendChild(g);\n d.body.appendChild(m);\n }\n\n if (window.localStorage.getItem('rph_log_level') === 'debug') {\n console.debug('[debug] rest:', rest);\n }\n\n if (rest) {\n Object.entries(rest).forEach(([key, value]) => {\n setConfigValue(\n `set${key.charAt(0).toUpperCase() + key.substring(1)}`,\n value\n );\n });\n\n if (window.localStorage.getItem('rph_log_level') === 'debug') {\n console.debug('[debug] hubConfig:', window._rphConfig);\n }\n }\n }, [appKey, apiUrl, supertokens, stateListener, locationHash, hubUrlOverride, apiVersion, rest]);\n\n return null;\n}\n"],"names":["setConfigValue","key","value","DEFAULT_API_VERSION","locationHash","_a","HubScriptInjector","appKey","apiUrl","supertokens","hubUrlOverride","stateListener","apiVersion","rest","useEffect","_rphConfig","baseUrl","d","g","m","s"],"mappings":";AASA,SAASA,EAAeC,GAAaC,GAAY;AAC/C,EAAKA,MAIL,yBAAQ,WAAW,KAAK,CAACD,GAAKC,CAAK;AACrC;AAMA,MAAMC,IAAsB;;AAa5B,MAAMC,IACJ,OAAO,SAAW,OAAcC,IAAA,iCAAQ,aAAR,gBAAAA,EAAkB,OAAO;AAE3D,SAAwBC,EAAkB;AAAA,EACxC,QAAAC;AAAA,EACA,QAAAC;AAAA,EACA,aAAAC;AAAA,EACA,gBAAAC;AAAA,EACA,eAAAC;AAAA,EACA,YAAAC,IAAaT;AAAA,EACb,GAAGU;AACL,GAA2B;~~AAEzB~~,SAAAC,EAAU,MAAM;AACd,QAAI,CAAC;AACH;AAGF,UAAMC,IAAc,OAAO,aAAa,OAAO,cAAc,CAAA,GACvDC,IACJ,OAAO,aAAa,QAAQ,uBAAuB,KACnDN,KACA;AACF,IAAAK,EAAW,KAAK,CAAC,cAAcC,CAAO,CAAC,GAEvChB,EAAe,aAAaO,CAAM,GAClCP,EAAe,oBAAoBW,CAAa,GAChDX,EAAe,mBAAmBI,CAAY,GAC9CJ,EAAe,iBAAiBY,CAAU,GAC1CZ,EAAe,kBAAkBS,CAAW,GAC5CT,EAAe,wBAAwBQ,CAAM;AAE7C,UAAMS,IAAI,UACRC,IAAID,EAAE,cAAc,QAAQ,GAC5BE,IAAIF,EAAE,cAAc,QAAQ,GAC5BG,IAAIH,EAAE,qBAAqB,QAAQ,EAAE,CAAC;AACxC,IAAAC,EAAE,WAAW,IACbA,EAAE,QAAQ,IACVA,EAAE,MAAMF,IAAU,0BAClBG,EAAE,OAAO,UACTA,EAAE,QAAQ,IACVA,EAAE,MAAMH,IAAU,2BAEdI,KAAA,QAAAA,EAAG,cACLA,EAAE,WAAW,aAAaF,GAAGE,CAAC,GAC9BA,EAAE,WAAW,aAAaD,GAAGC,CAAC,MAE9BH,EAAE,KAAK,YAAYC,CAAC,GACpBD,EAAE,KAAK,YAAYE,CAAC,IAGlB,OAAO,aAAa,QAAQ,eAAe,MAAM,WACnD,QAAQ,MAAM,iBAAiBN,CAAI,GAGjCA,MACF,OAAO,QAAQA,CAAI,EAAE,QAAQ,CAAC,CAACZ,GAAKC,CAAK,MAAM;AAC7C,MAAAF;AAAA,QACE,MAAMC,EAAI,OAAO,CAAC,EAAE,gBAAgBA,EAAI,UAAU,CAAC,CAAC;AAAA,QACpDC;AAAA,MAAA;AAAA,IAEJ,CAAC,GAEG,OAAO,aAAa,QAAQ,eAAe,MAAM,WACnD,QAAQ,MAAM,sBAAsB,OAAO,UAAU;AAAA,EAG3D,GAAG,~~CAACK~~,~~GAAQC~~,~~GAAQC~~,~~GAAaE~~,~~GAAeP~~,~~GAAcM~~,~~GAAgBE~~,~~GAAYC~~,~~CAAI~~,~~CAAC~~,~~GAExF~~;AACT;"}
1	+ {"version":3,"file":"HubScriptInjector.js","sources":["../../../src/context/HubScriptInjector/HubScriptInjector.tsx"],"sourcesContent":["import { useEffect } from 'react';\nimport { HubListenerProps, SuperTokensConfig } from '../RowndContext';\n\ndeclare global {\n interface Window {\n _rphConfig: any;\n }\n}\n\nfunction setConfigValue(key: string, value: any) {\n if (!value) {\n return;\n }\n\n window?._rphConfig.push([key, value]);\n}\n\n/*\n Default API version for new SDK releases.\n * This controls which Hub features are enabled by default.\n */\nconst DEFAULT_API_VERSION = '2026-01-21';\n\nexport type HubScriptInjectorProps = {\n appKey: string;\n stateListener: ({ state, api }: HubListenerProps) => void;\n apiUrl?: string;\n supertokens: SuperTokensConfig;\n hubUrlOverride?: string;\n locationHash?: string;\n apiVersion?: string;\n};\n\n// Grab the URL hash ASAP in case it contains an `rph_init` param\nconst locationHash =\n typeof window !== 'undefined' ? window?.location?.hash : void 0;\n\nexport default function HubScriptInjector({\n appKey,\n apiUrl,\n supertokens,\n hubUrlOverride,\n stateListener,\n apiVersion = DEFAULT_API_VERSION,\n ...rest\n}: HubScriptInjectorProps) {\n useEffect(() => {\n if (!window) {\n return; // compat with server-side rendering\n }\n\n const _rphConfig = (window._rphConfig = window._rphConfig \|\| []);\n const baseUrl =\n window.localStorage.getItem('rph_base_url_override') \|\|\n hubUrlOverride \|\|\n 'https://rownd-hub.supertokens.com';\n _rphConfig.push(['setBaseUrl', baseUrl]);\n\n setConfigValue('setAppKey', appKey);\n setConfigValue('setStateListener', stateListener);\n setConfigValue('setLocationHash', locationHash);\n setConfigValue('setApiVersion', apiVersion);\n setConfigValue('setSupertokens', supertokens);\n setConfigValue('setLegacyRowndApiUrl', apiUrl);\n\n const d = document,\n g = d.createElement('script'),\n m = d.createElement('script'),\n s = d.getElementsByTagName('script')[0];\n g.noModule = true;\n g.async = true;\n g.src = baseUrl + '/static/scripts/rph.js';\n m.type = 'module';\n m.async = true;\n m.src = baseUrl + '/static/scripts/rph.mjs';\n\n if (s?.parentNode) {\n s.parentNode.insertBefore(g, s);\n s.parentNode.insertBefore(m, s);\n } else {\n d.body.appendChild(g);\n d.body.appendChild(m);\n }\n\n if (window.localStorage.getItem('rph_log_level') === 'debug') {\n console.debug('[debug] rest:', rest);\n }\n\n if (rest) {\n Object.entries(rest).forEach(([key, value]) => {\n setConfigValue(\n `set${key.charAt(0).toUpperCase() + key.substring(1)}`,\n value\n );\n });\n\n if (window.localStorage.getItem('rph_log_level') === 'debug') {\n console.debug('[debug] hubConfig:', window._rphConfig);\n }\n }\n }, [\n appKey,\n apiUrl,\n supertokens,\n stateListener,\n locationHash,\n hubUrlOverride,\n apiVersion,\n rest,\n ]);\n\n return null;\n}\n"],"names":["setConfigValue","key","value","DEFAULT_API_VERSION","locationHash","_a","HubScriptInjector","appKey","apiUrl","supertokens","hubUrlOverride","stateListener","apiVersion","rest","useEffect","_rphConfig","baseUrl","d","g","m","s"],"mappings":";AASA,SAASA,EAAeC,GAAaC,GAAY;AAC/C,EAAKA,MAIL,yBAAQ,WAAW,KAAK,CAACD,GAAKC,CAAK;AACrC;AAMA,MAAMC,IAAsB;;AAa5B,MAAMC,IACJ,OAAO,SAAW,OAAcC,IAAA,iCAAQ,aAAR,gBAAAA,EAAkB,OAAO;AAE3D,SAAwBC,EAAkB;AAAA,EACxC,QAAAC;AAAA,EACA,QAAAC;AAAA,EACA,aAAAC;AAAA,EACA,gBAAAC;AAAA,EACA,eAAAC;AAAA,EACA,YAAAC,IAAaT;AAAA,EACb,GAAGU;AACL,GAA2B;AACzB,SAAAC,EAAU,MAAM;AACd,QAAI,CAAC;AACH;AAGF,UAAMC,IAAc,OAAO,aAAa,OAAO,cAAc,CAAA,GACvDC,IACJ,OAAO,aAAa,QAAQ,uBAAuB,KACnDN,KACA;AACF,IAAAK,EAAW,KAAK,CAAC,cAAcC,CAAO,CAAC,GAEvChB,EAAe,aAAaO,CAAM,GAClCP,EAAe,oBAAoBW,CAAa,GAChDX,EAAe,mBAAmBI,CAAY,GAC9CJ,EAAe,iBAAiBY,CAAU,GAC1CZ,EAAe,kBAAkBS,CAAW,GAC5CT,EAAe,wBAAwBQ,CAAM;AAE7C,UAAMS,IAAI,UACRC,IAAID,EAAE,cAAc,QAAQ,GAC5BE,IAAIF,EAAE,cAAc,QAAQ,GAC5BG,IAAIH,EAAE,qBAAqB,QAAQ,EAAE,CAAC;AACxC,IAAAC,EAAE,WAAW,IACbA,EAAE,QAAQ,IACVA,EAAE,MAAMF,IAAU,0BAClBG,EAAE,OAAO,UACTA,EAAE,QAAQ,IACVA,EAAE,MAAMH,IAAU,2BAEdI,KAAA,QAAAA,EAAG,cACLA,EAAE,WAAW,aAAaF,GAAGE,CAAC,GAC9BA,EAAE,WAAW,aAAaD,GAAGC,CAAC,MAE9BH,EAAE,KAAK,YAAYC,CAAC,GACpBD,EAAE,KAAK,YAAYE,CAAC,IAGlB,OAAO,aAAa,QAAQ,eAAe,MAAM,WACnD,QAAQ,MAAM,iBAAiBN,CAAI,GAGjCA,MACF,OAAO,QAAQA,CAAI,EAAE,QAAQ,CAAC,CAACZ,GAAKC,CAAK,MAAM;AAC7C,MAAAF;AAAA,QACE,MAAMC,EAAI,OAAO,CAAC,EAAE,gBAAgBA,EAAI,UAAU,CAAC,CAAC;AAAA,QACpDC;AAAA,MAAA;AAAA,IAEJ,CAAC,GAEG,OAAO,aAAa,QAAQ,eAAe,MAAM,WACnD,QAAQ,MAAM,sBAAsB,OAAO,UAAU;AAAA,EAG3D,GAAG;AAAA,IACDK;AAAA,IACAC;AAAA,IACAC;AAAA,IACAE;AAAA,IACAP;AAAA,IACAM;AAAA,IACAE;AAAA,IACAC;AAAA,EAAA,CACD,GAEM;AACT;"}

package/dist/next/server/withRowndMiddleware.d.ts CHANGED Viewed

@@ -1,4 +1,6 @@
 type NextResponse = any;
 type NextRequest = any;
 export declare const withRowndMiddleware: (middleware: (request: NextRequest) => NextResponse) => (request: NextRequest) => Promise<any>;
+export declare function withRowndHandleRequest(handleRequest: (request: Request, responseStatusCode: number, responseHeaders: Headers, remixContext: any, loadContext: any) => Promise<unknown>): (request: Request, responseStatusCode: number, responseHeaders: Headers, remixContext: any, loadContext: any) => Promise<unknown>;
+export declare function handleRowndTokenCallback(request: Request): Promise<Response>;
 export {};

package/dist/next/server/withRowndMiddleware.js CHANGED Viewed

@@ -1,11 +1,30 @@
-import { handleRowndTokenCallback as l } from "../../remix/server/withRowndActionHandler.js";
-import { ROWND_TOKEN_CALLBACK_PATH as h, ROWND_COOKIE_ID as m } from "../../ssr/server/cookie.js";
+import { ROWND_TOKEN_CALLBACK_PATH as s, ROWND_COOKIE_ID as c, rowndCookie as i } from "../../ssr/server/cookie.js";
 import { getRowndAuthenticationStatus as d } from "../../ssr/server/token.js";
-const R = (i) => (n) => {
-  var t, o, a;
-  return (o = (t = n == null ? void 0 : n.nextUrl) == null ? void 0 : t.pathname) != null && o.startsWith(h) ? l(n) : d(((a = n.cookies.get(m)) == null ? void 0 : a.value) || null).then((r) => (n.auth = r, i(n)));
+const k = (r) => (o) => {
+  var n, e, t;
+  return (e = (n = o == null ? void 0 : o.nextUrl) == null ? void 0 : n.pathname) != null && e.startsWith(s) ? l(o) : d(
+    ((t = o.cookies.get(c)) == null ? void 0 : t.value) || null
+  ).then((a) => (o.auth = a, r(o)));
 };
+async function l(r) {
+  const o = r.body;
+  try {
+    const n = await new Response(o).text(), e = JSON.parse(n), t = e == null ? void 0 : e.accessToken;
+    if (!t)
+      throw new Error("Missing access token");
+    return new Response("Success", {
+      headers: {
+        "Set-Cookie": i.serialize({
+          accessToken: t
+        })
+      }
+    });
+  } catch (n) {
+    return console.error("Failed to decode body text", n), new Response("Failed", { status: 400 });
+  }
+}
 export {
-  R as withRowndMiddleware
+  l as handleRowndTokenCallback,
+  k as withRowndMiddleware
 };
 //# sourceMappingURL=withRowndMiddleware.js.map

package/dist/next/server/withRowndMiddleware.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"withRowndMiddleware.js","sources":["../../../src/next/server/withRowndMiddleware.ts"],"sourcesContent":["import { ~~handleRowndTokenCallback } from '../../remix/server/withRowndActionHandler';\nimport {~~ ROWND_COOKIE_ID, ROWND_TOKEN_CALLBACK_PATH } from '../../ssr/server/cookie';\nimport { getRowndAuthenticationStatus } from '../../ssr/server/token';\n\ntype NextResponse = any;\ntype NextRequest = any;\n\nexport const withRowndMiddleware = (\n middleware: (request: NextRequest) => NextResponse\n) => {\n return (request: NextRequest) => {\n if (request?.nextUrl?.pathname?.startsWith(ROWND_TOKEN_CALLBACK_PATH)) {\n return handleRowndTokenCallback(request)\n }\n\n return getRowndAuthenticationStatus(request.cookies.get(ROWND_COOKIE_ID)?.value \|\| null).then((tokenInfo) => {\n request.auth = tokenInfo;\n\n return middleware(request);\n });\n };\n};\n"],"names":["withRowndMiddleware","middleware","request","_b","_a","ROWND_TOKEN_CALLBACK_PATH","handleRowndTokenCallback","getRowndAuthenticationStatus","_c","ROWND_COOKIE_ID","tokenInfo"],"mappings":"~~;;;AAOO~~,MAAMA,IAAsB,CACjCC,MAEO,CAACC,MAAyB;;AAC/B,UAAIC,KAAAC,IAAAF,KAAA,gBAAAA,EAAS,YAAT,gBAAAE,EAAkB,aAAlB,QAAAD,EAA4B,WAAWE,KAClCC,EAAyBJ,CAAO,IAGlCK,~~IAA6BC~~,IAAAN,EAAQ,QAAQ,IAAIO,CAAe,MAAnC,gBAAAD,EAAsC,UAAS,~~IAAI~~,~~EAAE~~,KAAK,CAACE,~~OAC7FR~~,EAAQ,OAAOQ,GAERT,EAAWC,CAAO,EAC1B;AACH;"}
1	+ {"version":3,"file":"withRowndMiddleware.js","sources":["../../../src/next/server/withRowndMiddleware.ts"],"sourcesContent":["import {\n ROWND_COOKIE_ID,\n ROWND_TOKEN_CALLBACK_PATH,\n rowndCookie,\n} from '../../ssr/server/cookie';\nimport { getRowndAuthenticationStatus } from '../../ssr/server/token';\n\ntype NextResponse = any;\ntype NextRequest = any;\n\nexport const withRowndMiddleware = (\n middleware: (request: NextRequest) => NextResponse\n) => {\n return (request: NextRequest) => {\n if (request?.nextUrl?.pathname?.startsWith(ROWND_TOKEN_CALLBACK_PATH)) {\n return handleRowndTokenCallback(request);\n }\n\n return getRowndAuthenticationStatus(\n request.cookies.get(ROWND_COOKIE_ID)?.value \|\| null\n ).then((tokenInfo) => {\n request.auth = tokenInfo;\n\n return middleware(request);\n });\n };\n};\n\nexport function withRowndHandleRequest(\n handleRequest: (\n request: Request,\n responseStatusCode: number,\n responseHeaders: Headers,\n remixContext: any,\n loadContext: any\n ) => Promise<unknown>\n) {\n return async function (\n request: Request,\n responseStatusCode: number,\n responseHeaders: Headers,\n remixContext: any,\n loadContext: any\n ) {\n const url = new URL(request.url);\n if (url.pathname === ROWND_TOKEN_CALLBACK_PATH) {\n return handleRowndTokenCallback(request);\n }\n\n return handleRequest(\n request,\n responseStatusCode,\n responseHeaders,\n remixContext,\n loadContext\n );\n };\n}\n\nexport async function handleRowndTokenCallback(request: Request) {\n const body = request.body;\n try {\n const text = await new Response(body).text();\n const res = JSON.parse(text);\n\n const accessToken = res?.accessToken;\n if (!accessToken) {\n throw new Error('Missing access token');\n }\n\n return new Response('Success', {\n headers: {\n 'Set-Cookie': rowndCookie.serialize({\n accessToken,\n }),\n },\n });\n } catch (err) {\n console.error('Failed to decode body text', err);\n return new Response('Failed', { status: 400 });\n }\n}\n"],"names":["withRowndMiddleware","middleware","request","_b","_a","ROWND_TOKEN_CALLBACK_PATH","handleRowndTokenCallback","getRowndAuthenticationStatus","_c","ROWND_COOKIE_ID","tokenInfo","body","text","res","accessToken","rowndCookie","err"],"mappings":";;AAUO,MAAMA,IAAsB,CACjCC,MAEO,CAACC,MAAyB;;AAC/B,UAAIC,KAAAC,IAAAF,KAAA,gBAAAA,EAAS,YAAT,gBAAAE,EAAkB,aAAlB,QAAAD,EAA4B,WAAWE,KAClCC,EAAyBJ,CAAO,IAGlCK;AAAA,MACLC,IAAAN,EAAQ,QAAQ,IAAIO,CAAe,MAAnC,gBAAAD,EAAsC,UAAS;AAAA,EAAA,EAC/C,KAAK,CAACE,OACNR,EAAQ,OAAOQ,GAERT,EAAWC,CAAO,EAC1B;AACH;AAkCF,eAAsBI,EAAyBJ,GAAkB;AAC/D,QAAMS,IAAOT,EAAQ;AACrB,MAAI;AACF,UAAMU,IAAO,MAAM,IAAI,SAASD,CAAI,EAAE,KAAA,GAChCE,IAAM,KAAK,MAAMD,CAAI,GAErBE,IAAcD,KAAA,gBAAAA,EAAK;AACzB,QAAI,CAACC;AACH,YAAM,IAAI,MAAM,sBAAsB;AAGxC,WAAO,IAAI,SAAS,WAAW;AAAA,MAC7B,SAAS;AAAA,QACP,cAAcC,EAAY,UAAU;AAAA,UAClC,aAAAD;AAAA,QAAA,CACD;AAAA,MAAA;AAAA,IACH,CACD;AAAA,EACH,SAASE,GAAK;AACZ,mBAAQ,MAAM,8BAA8BA,CAAG,GACxC,IAAI,SAAS,UAAU,EAAE,QAAQ,KAAK;AAAA,EAC/C;AACF;"}

package/package.json CHANGED Viewed

@@ -30,5 +30,5 @@
     "type": "git",
     "url": "https://github.com/rownd/react.git"
   },
-  "version": "0.1.0-beta.0"
+  "version": "0.1.0-beta.1"
 }