@supertokens/rownd-react 0.1.0-beta.0

package/dist/remix/server/withRowndActionHandler.js

@@ -0,0 +1,41 @@
+import { ROWND_TOKEN_CALLBACK_PATH as a, rowndCookie as r } from "../../ssr/server/cookie.js";
+function l(t) {
+  return async function(n, o, e, s, c) {
+    return new URL(n.url).pathname === a ? i(n) : t(
+      n,
+      o,
+      e,
+      s,
+      c
+    );
+  };
+}
+async function i(t) {
+  const n = t.body;
+  try {
+    const o = await new Response(n).text(), e = JSON.parse(o);
+    if (e != null && e.clear)
+      return new Response("Success", {
+        headers: {
+          "Set-Cookie": r.serialize({ accessToken: "" }, { maxAge: 0 })
+        }
+      });
+    const s = e == null ? void 0 : e.accessToken;
+    if (!s)
+      throw new Error("Missing access token");
+    return new Response("Success", {
+      headers: {
+        "Set-Cookie": r.serialize({
+          accessToken: s
+        })
+      }
+    });
+  } catch (o) {
+    return console.error("Failed to decode body text", o), new Response("Failed", { status: 400 });
+  }
+}
+export {
+  i as handleRowndTokenCallback,
+  l as withRowndHandleRequest
+};
+//# sourceMappingURL=withRowndActionHandler.js.map

package/dist/remix/server/withRowndActionHandler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"withRowndActionHandler.js","sources":["../../../src/remix/server/withRowndActionHandler.ts"],"sourcesContent":["import { ROWND_TOKEN_CALLBACK_PATH, rowndCookie } from \"../../ssr/server/cookie\";\n\nexport function withRowndHandleRequest(\n  handleRequest: (\n    request: Request,\n    responseStatusCode: number,\n    responseHeaders: Headers,\n    remixContext: any,\n    loadContext: any\n  ) => Promise<unknown>\n) {\n  return async function (\n    request: Request,\n    responseStatusCode: number,\n    responseHeaders: Headers,\n    remixContext: any,\n    loadContext: any\n  ) {\n    const url = new URL(request.url);\n    if (url.pathname === ROWND_TOKEN_CALLBACK_PATH) {\n      return handleRowndTokenCallback(request);\n    }\n\n    return handleRequest(\n      request,\n      responseStatusCode,\n      responseHeaders,\n      remixContext,\n      loadContext\n    );\n  };\n}\n\nexport async function handleRowndTokenCallback(request: Request) {\n  const body = request.body;\n  try {\n    const text = await new Response(body).text();\n    const res = JSON.parse(text);\n\n    if (res?.clear) {\n      return new Response('Success', {\n        headers: {\n          'Set-Cookie': rowndCookie.serialize({ accessToken: '' }, { maxAge: 0 }),\n        },\n      });\n    }\n\n    const accessToken = res?.accessToken;\n    if (!accessToken) {\n      throw new Error('Missing access token');\n    }\n\n    return new Response('Success', {\n      headers: {\n        'Set-Cookie': rowndCookie.serialize({\n          accessToken,\n        }),\n      },\n    });\n  } catch (err) {\n    console.error('Failed to decode body text', err);\n    return new Response('Failed', { status: 400 });\n  }\n}\n"],"names":["withRowndHandleRequest","handleRequest","request","responseStatusCode","responseHeaders","remixContext","loadContext","ROWND_TOKEN_CALLBACK_PATH","handleRowndTokenCallback","body","text","res","rowndCookie","accessToken","err"],"mappings":";AAEO,SAASA,EACdC,GAOA;AACA,SAAO,eACLC,GACAC,GACAC,GACAC,GACAC,GACA;AAEA,WADY,IAAI,IAAIJ,EAAQ,GAAG,EACvB,aAAaK,IACZC,EAAyBN,CAAO,IAGlCD;AAAA,MACLC;AAAA,MACAC;AAAA,MACAC;AAAA,MACAC;AAAA,MACAC;AAAA,IAAA;AAAA,EAEJ;AACF;AAEA,eAAsBE,EAAyBN,GAAkB;AAC/D,QAAMO,IAAOP,EAAQ;AACrB,MAAI;AACF,UAAMQ,IAAO,MAAM,IAAI,SAASD,CAAI,EAAE,KAAA,GAChCE,IAAM,KAAK,MAAMD,CAAI;AAE3B,QAAIC,KAAA,QAAAA,EAAK;AACP,aAAO,IAAI,SAAS,WAAW;AAAA,QAC7B,SAAS;AAAA,UACP,cAAcC,EAAY,UAAU,EAAE,aAAa,MAAM,EAAE,QAAQ,EAAA,CAAG;AAAA,QAAA;AAAA,MACxE,CACD;AAGH,UAAMC,IAAcF,KAAA,gBAAAA,EAAK;AACzB,QAAI,CAACE;AACH,YAAM,IAAI,MAAM,sBAAsB;AAGxC,WAAO,IAAI,SAAS,WAAW;AAAA,MAC7B,SAAS;AAAA,QACP,cAAcD,EAAY,UAAU;AAAA,UAClC,aAAAC;AAAA,QAAA,CACD;AAAA,MAAA;AAAA,IACH,CACD;AAAA,EACH,SAASC,GAAK;AACZ,mBAAQ,MAAM,8BAA8BA,CAAG,GACxC,IAAI,SAAS,UAAU,EAAE,QAAQ,KAAK;AAAA,EAC/C;AACF;"}

package/dist/remix/server/withRowndLoader.d.ts

@@ -0,0 +1,13 @@
+type LoaderFunctionArgs = {
+    request: Record<string, any>;
+    context: Record<string, any>;
+} & any;
+type RowndLoaderResponse = {
+    access_token: string;
+    is_authenticated: true;
+    user_id: string;
+};
+export declare const withRowndLoader: (loader: (args: LoaderFunctionArgs, rowndResponse: RowndLoaderResponse) => Promise<any>, options?: {
+    onUnauthenticated?: (args: LoaderFunctionArgs) => void;
+}) => (args: LoaderFunctionArgs) => Promise<any>;
+export {};

package/dist/remix/server/withRowndLoader.js

@@ -0,0 +1,19 @@
+import { getRowndAuthenticationStatus as s } from "../../ssr/server/token.js";
+const o = (a, t = {}) => async function(e) {
+  const { request: r } = e, n = await s(
+    r.headers.get("Cookie")
+  ), u = n.is_expired, c = n.is_authenticated;
+  if (u)
+    return { is_expired: !0 };
+  if (!c) {
+    const i = t == null ? void 0 : t.onUnauthenticated;
+    return i ? i(e) : { is_authenticated: !1 };
+  }
+  return a(e, {
+    ...n
+  });
+};
+export {
+  o as withRowndLoader
+};
+//# sourceMappingURL=withRowndLoader.js.map

package/dist/remix/server/withRowndLoader.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"withRowndLoader.js","sources":["../../../src/remix/server/withRowndLoader.tsx"],"sourcesContent":["import { getRowndAuthenticationStatus } from '../../ssr/server/token';\n\ntype LoaderFunctionArgs = {\n  request: Record<string, any>;\n  context: Record<string, any>;\n} & any;\n\ntype RowndLoaderResponse = {\n  access_token: string;\n  is_authenticated: true;\n  user_id: string;\n};\n\nexport const withRowndLoader = (\n  loader: (args: LoaderFunctionArgs, rowndResponse: RowndLoaderResponse) => Promise<any>,\n  options: {\n    onUnauthenticated?: (args: LoaderFunctionArgs) => void;\n  } = {}\n) => {\n  return async function (args: LoaderFunctionArgs) {\n    const { request } = args;\n    const status = await getRowndAuthenticationStatus(\n      request.headers.get('Cookie')\n    );\n\n    const isExpired = status.is_expired;\n    const isAuthenticated = status.is_authenticated;\n\n    if (isExpired) {\n      return { is_expired: true };\n    }\n\n    if (!isAuthenticated) {\n      const onUnauthenticatedCallback = options?.onUnauthenticated;\n      if (onUnauthenticatedCallback) {\n        return onUnauthenticatedCallback(args);\n      }\n      return { is_authenticated: false };\n    }\n    return loader(args, {\n      ...status,\n    });\n  };\n};"],"names":["withRowndLoader","loader","options","args","request","status","getRowndAuthenticationStatus","isExpired","isAuthenticated","onUnauthenticatedCallback"],"mappings":";AAaO,MAAMA,IAAkB,CAC7BC,GACAC,IAEI,OAEG,eAAgBC,GAA0B;AAC/C,QAAM,EAAE,SAAAC,MAAYD,GACdE,IAAS,MAAMC;AAAA,IACnBF,EAAQ,QAAQ,IAAI,QAAQ;AAAA,EAAA,GAGxBG,IAAYF,EAAO,YACnBG,IAAkBH,EAAO;AAE/B,MAAIE;AACF,WAAO,EAAE,YAAY,GAAA;AAGvB,MAAI,CAACC,GAAiB;AACpB,UAAMC,IAA4BP,KAAA,gBAAAA,EAAS;AAC3C,WAAIO,IACKA,EAA0BN,CAAI,IAEhC,EAAE,kBAAkB,GAAA;AAAA,EAC7B;AACA,SAAOF,EAAOE,GAAM;AAAA,IAClB,GAAGE;AAAA,EAAA,CACJ;AACH;"}

package/dist/remix-server.d.ts

@@ -0,0 +1 @@
+export * from './remix/server/index'

package/dist/remix-server.js

@@ -0,0 +1,15 @@
+import { getRowndAuthenticationStatus as e } from "./ssr/server/token.js";
+import { isAuthenticated as d } from "./remix/server/isAuthenticated.js";
+import { withRowndHandleRequest as w } from "./remix/server/withRowndActionHandler.js";
+import { withRowndLoader as i } from "./remix/server/withRowndLoader.js";
+import { getRowndUser as p } from "./remix/server/getRowndUser.js";
+import { getRowndUserId as R } from "./remix/server/getRowndUserId.js";
+export {
+  e as getRowndAuthenticationStatus,
+  p as getRowndUser,
+  R as getRowndUserId,
+  d as isAuthenticated,
+  w as withRowndHandleRequest,
+  i as withRowndLoader
+};
+//# sourceMappingURL=remix-server.js.map

package/dist/remix-server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remix-server.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;"}

package/dist/remix.d.ts

@@ -0,0 +1 @@
+export * from './remix/index'

package/dist/remix.js

@@ -0,0 +1,17 @@
+import { RemixRowndProvider as t } from "./remix/RemixRowndProvider.js";
+import { useRownd as i } from "./remix/client/useRownd.js";
+import { default as d } from "./remix/client/RemixClientScript.js";
+import { default as f } from "./remix/client/withRowndRequireSignIn.js";
+import { getRowndAuthenticationStatus as w } from "./ssr/server/token.js";
+import { withRowndHandleRequest as a } from "./remix/server/withRowndActionHandler.js";
+import { withRowndLoader as u } from "./remix/server/withRowndLoader.js";
+export {
+  d as RemixClientScript,
+  t as RemixRowndProvider,
+  w as getRowndAuthenticationStatus,
+  i as useRownd,
+  a as withRowndHandleRequest,
+  u as withRowndLoader,
+  f as withRowndRequireSignIn
+};
+//# sourceMappingURL=remix.js.map

package/dist/remix.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remix.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;"}

package/dist/ssr/hooks/useCookie.d.ts

@@ -0,0 +1,7 @@
+import { TRowndContext } from '../../context/types';
+
+declare const useCookie: (useRownd: () => TRowndContext) => {
+    cookieSignIn: (callback?: () => void) => Promise<void>;
+    cookieSignOut: (callback?: () => void) => Promise<void>;
+};
+export default useCookie;

package/dist/ssr/hooks/useCookie.js

@@ -0,0 +1,22 @@
+import { useCallback as i } from "react";
+import { setCookie as u, clearCookie as g } from "../server/cookie.js";
+const C = (n) => {
+  const { getAccessToken: e } = n(), s = i(
+    async (o) => {
+      const t = await e();
+      t && (await u(t), o == null || o());
+    },
+    [e]
+  ), r = i(async (o) => {
+    try {
+      await g(), o == null || o();
+    } catch (t) {
+      console.log("Failed to sign out cookie: ", t);
+    }
+  }, []);
+  return { cookieSignIn: s, cookieSignOut: r };
+};
+export {
+  C as default
+};
+//# sourceMappingURL=useCookie.js.map

package/dist/ssr/hooks/useCookie.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"useCookie.js","sources":["../../../src/ssr/hooks/useCookie.tsx"],"sourcesContent":["import { useCallback } from 'react';\nimport { clearCookie, setCookie } from '../server/cookie';\nimport { TRowndContext } from '../../context/types';\n\nconst useCookie = (useRownd: () => TRowndContext) => {\n  const { getAccessToken } = useRownd();\n\n  const cookieSignIn = useCallback(\n    async (callback?: () => void) => {\n      const token = await getAccessToken();\n      if (!token) {\n        return;\n      }\n      await setCookie(token);\n      callback?.();\n    },\n    [getAccessToken]\n  );\n\n  const cookieSignOut = useCallback(async (callback?: () => void) => {\n    try {\n      await clearCookie();\n      callback?.();\n    } catch (err) {\n      console.log('Failed to sign out cookie: ', err);\n    }\n  }, []);\n\n  return { cookieSignIn, cookieSignOut };\n};\n\nexport default useCookie;\n"],"names":["useCookie","useRownd","getAccessToken","cookieSignIn","useCallback","callback","token","setCookie","cookieSignOut","clearCookie","err"],"mappings":";;AAIA,MAAMA,IAAY,CAACC,MAAkC;AACnD,QAAM,EAAE,gBAAAC,EAAA,IAAmBD,EAAA,GAErBE,IAAeC;AAAA,IACnB,OAAOC,MAA0B;AAC/B,YAAMC,IAAQ,MAAMJ,EAAA;AACpB,MAAKI,MAGL,MAAMC,EAAUD,CAAK,GACrBD,KAAA,QAAAA;AAAA,IACF;AAAA,IACA,CAACH,CAAc;AAAA,EAAA,GAGXM,IAAgBJ,EAAY,OAAOC,MAA0B;AACjE,QAAI;AACF,YAAMI,EAAA,GACNJ,KAAA,QAAAA;AAAA,IACF,SAASK,GAAK;AACZ,cAAQ,IAAI,+BAA+BA,CAAG;AAAA,IAChD;AAAA,EACF,GAAG,CAAA,CAAE;AAEL,SAAO,EAAE,cAAAP,GAAc,eAAAK,EAAA;AACzB;"}

package/dist/ssr/server/cookie.d.ts

@@ -0,0 +1,13 @@
+export type RowndCookieData = {
+    accessToken: string;
+};
+export declare const ROWND_COOKIE_ID = "rownd-session";
+export declare const ROWND_TOKEN_CALLBACK_PATH = "/api/rownd-token-callback";
+export declare const setCookie: (token: string) => Promise<string | undefined>;
+export declare const clearCookie: () => Promise<void>;
+export declare const rowndCookie: {
+    parse: (header: string | null) => undefined | RowndCookieData;
+    serialize: (data: RowndCookieData, { maxAge }?: {
+        maxAge?: number;
+    }) => string;
+};

package/dist/ssr/server/cookie.js

@@ -0,0 +1,51 @@
+const d = "rownd-session", p = (o, r = "/") => ({
+  parse: (t) => {
+    if (!t) return;
+    const n = t.split(";");
+    for (const e of n) {
+      const [s, a] = e.split("=");
+      if (decodeURIComponent(s.trim()) === o)
+        try {
+          return JSON.parse(decodeURIComponent(a.trim()));
+        } catch (c) {
+          console.error("Failed to parse cookie", c);
+          return;
+        }
+    }
+  },
+  serialize: (t, { maxAge: n = 3600 } = {}) => {
+    let e = `${encodeURIComponent(o)}=${encodeURIComponent(
+      JSON.stringify(t)
+    )}`;
+    return e += "; Secure", e += "; HttpOnly", e += `; Max-Age=${n}`, e += "; SameSite=Strict", e += `; Path=${r}`, e;
+  }
+}), i = "/api/rownd-token-callback", l = async (o) => {
+  try {
+    return await fetch(i, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify({ accessToken: o })
+    }), o;
+  } catch (r) {
+    console.error("Failed to set cookie: ", r);
+    return;
+  }
+}, u = async () => {
+  await fetch(i, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json"
+    },
+    body: JSON.stringify({ clear: !0 })
+  });
+}, C = p(d);
+export {
+  d as ROWND_COOKIE_ID,
+  i as ROWND_TOKEN_CALLBACK_PATH,
+  u as clearCookie,
+  C as rowndCookie,
+  l as setCookie
+};
+//# sourceMappingURL=cookie.js.map

package/dist/ssr/server/cookie.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookie.js","sources":["../../../src/ssr/server/cookie.ts"],"sourcesContent":["export type RowndCookieData = {\n  accessToken: string;\n};\n\nexport const ROWND_COOKIE_ID = 'rownd-session';\n\nconst createCookie = (id: string, path: string = '/') => {\n  return {\n    parse: (header: string | null): undefined | RowndCookieData => {\n      if (!header) return undefined;\n      const cookies = header.split(';');\n\n      for (const cookie of cookies) {\n        const [name, value] = cookie.split('=');\n\n        if (decodeURIComponent(name.trim()) === id) {\n          try {\n            const parsedValue = JSON.parse(decodeURIComponent(value.trim()));\n            return parsedValue;\n          } catch (err) {\n            console.error('Failed to parse cookie', err);\n            return undefined;\n          }\n        }\n      }\n\n      return undefined;\n    },\n    serialize: (data: RowndCookieData, { maxAge = 3600 }: { maxAge?: number } = {}): string => {\n      let cookie = `${encodeURIComponent(id)}=${encodeURIComponent(\n        JSON.stringify(data)\n      )}`;\n\n      cookie += '; Secure';\n      cookie += '; HttpOnly';\n      cookie += `; Max-Age=${maxAge}`;\n      cookie += '; SameSite=Strict';\n      cookie += `; Path=${path}`;\n\n      return cookie;\n    },\n  };\n};\n\nexport const ROWND_TOKEN_CALLBACK_PATH = '/api/rownd-token-callback';\n\nexport const setCookie = async (token: string): Promise<string | undefined> => {\n  try {\n    await fetch(ROWND_TOKEN_CALLBACK_PATH, {\n      method: 'POST',\n      headers: {\n        'Content-Type': 'application/json',\n      },\n      body: JSON.stringify({ accessToken: token }),\n    });\n    return token;\n  } catch (err) {\n    console.error('Failed to set cookie: ', err);\n    return undefined; \n  }\n};\n\nexport const clearCookie = async (): Promise<void> => {\n  await fetch(ROWND_TOKEN_CALLBACK_PATH, {\n    method: 'POST',\n    headers: {\n      'Content-Type': 'application/json',\n    },\n    body: JSON.stringify({ clear: true }),\n  });\n};\n\nexport const rowndCookie = createCookie(ROWND_COOKIE_ID);\n"],"names":["ROWND_COOKIE_ID","createCookie","id","path","header","cookies","cookie","name","value","err","data","maxAge","ROWND_TOKEN_CALLBACK_PATH","setCookie","token","clearCookie","rowndCookie"],"mappings":"AAIO,MAAMA,IAAkB,iBAEzBC,IAAe,CAACC,GAAYC,IAAe,SACxC;AAAA,EACL,OAAO,CAACC,MAAuD;AAC7D,QAAI,CAACA,EAAQ;AACb,UAAMC,IAAUD,EAAO,MAAM,GAAG;AAEhC,eAAWE,KAAUD,GAAS;AAC5B,YAAM,CAACE,GAAMC,CAAK,IAAIF,EAAO,MAAM,GAAG;AAEtC,UAAI,mBAAmBC,EAAK,KAAA,CAAM,MAAML;AACtC,YAAI;AAEF,iBADoB,KAAK,MAAM,mBAAmBM,EAAM,KAAA,CAAM,CAAC;AAAA,QAEjE,SAASC,GAAK;AACZ,kBAAQ,MAAM,0BAA0BA,CAAG;AAC3C;AAAA,QACF;AAAA,IAEJ;AAAA,EAGF;AAAA,EACA,WAAW,CAACC,GAAuB,EAAE,QAAAC,IAAS,KAAA,IAA8B,CAAA,MAAe;AACzF,QAAIL,IAAS,GAAG,mBAAmBJ,CAAE,CAAC,IAAI;AAAA,MACxC,KAAK,UAAUQ,CAAI;AAAA,IAAA,CACpB;AAED,WAAAJ,KAAU,YACVA,KAAU,cACVA,KAAU,aAAaK,CAAM,IAC7BL,KAAU,qBACVA,KAAU,UAAUH,CAAI,IAEjBG;AAAA,EACT;AAAA,IAISM,IAA4B,6BAE5BC,IAAY,OAAOC,MAA+C;AAC7E,MAAI;AACF,iBAAM,MAAMF,GAA2B;AAAA,MACrC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAAA;AAAA,MAElB,MAAM,KAAK,UAAU,EAAE,aAAaE,GAAO;AAAA,IAAA,CAC5C,GACMA;AAAA,EACT,SAASL,GAAK;AACZ,YAAQ,MAAM,0BAA0BA,CAAG;AAC3C;AAAA,EACF;AACF,GAEaM,IAAc,YAA2B;AACpD,QAAM,MAAMH,GAA2B;AAAA,IACrC,QAAQ;AAAA,IACR,SAAS;AAAA,MACP,gBAAgB;AAAA,IAAA;AAAA,IAElB,MAAM,KAAK,UAAU,EAAE,OAAO,IAAM;AAAA,EAAA,CACrC;AACH,GAEaI,IAAcf,EAAaD,CAAe;"}

package/dist/ssr/server/token.d.ts

@@ -0,0 +1,44 @@
+import { UserContext } from '../../context/types';
+import * as jose from 'jose';
+export type RowndAuthenticatedUser = {
+    user_id: string;
+    access_token: string;
+};
+export type IsAuthenticatedResponse = {
+    user_id: string;
+    access_token: string;
+    is_authenticated: true;
+    is_expired: boolean;
+    err: undefined;
+} | {
+    user_id: undefined;
+    access_token: undefined;
+    is_authenticated: false;
+    is_expired: boolean;
+    err: Error;
+};
+export declare const CLAIM_USER_ID = "https://auth.rownd.io/app_user_id";
+export declare const getSuperTokensApiUrl: () => URL;
+export declare const getSuperTokensApiBasePath: () => string;
+export declare const getSuperTokensApiBaseUrl: () => URL;
+type Keystore = (protectedHeader?: jose.JWSHeaderParameters, token?: jose.FlattenedJWSInput) => Promise<jose.KeyLike>;
+export declare class TokenHandler {
+    private readonly joseInstance;
+    private keystoreCache;
+    constructor(joseInstance?: typeof jose);
+    getKeystore(): Promise<Keystore>;
+    getRowndAuthenticationStatus(cookie: string | null, { allowExpired }?: {
+        allowExpired?: boolean;
+    }): Promise<IsAuthenticatedResponse>;
+    determineAccessTokenFromCookie(cookie: string): string | undefined;
+    validateAccessToken(accessToken?: string): Promise<{
+        payload: jose.JWTPayload;
+        accessToken: string;
+    }>;
+    getRowndUserData(accessToken: string): Promise<null | UserContext>;
+}
+export declare const getRowndAuthenticationStatus: (cookie: string | null, { allowExpired }?: {
+    allowExpired?: boolean;
+}) => Promise<IsAuthenticatedResponse>;
+export declare const getRowndUserData: (accessToken: string) => Promise<null | UserContext>;
+export {};

package/dist/ssr/server/token.js

@@ -0,0 +1,128 @@
+import * as u from "jose";
+import { rowndCookie as h } from "./cookie.js";
+const d = "https://auth.rownd.io/app_user_id", w = () => {
+  let a;
+  const t = "https://api.rownd.io";
+  try {
+    a = new URL(
+      process.env.ROWND_SUPERTOKENS_API_DOMAIN ?? process.env.ROWND_API_URL ?? t
+    );
+  } catch {
+    a = new URL(t);
+  }
+  return a;
+}, l = () => {
+  const a = process.env.ROWND_SUPERTOKENS_API_BASE_PATH || "/auth";
+  return a.startsWith("/") ? a : `/${a}`;
+}, c = () => new URL(l(), w().origin), _ = 1800;
+class p {
+  constructor(t = u) {
+    this.joseInstance = t;
+  }
+  async getKeystore() {
+    if (this.keystoreCache && this.keystoreCache.expiresAt >= Date.now())
+      return this.keystoreCache.keystore;
+    const e = await (await fetch(
+      `${c().origin}${c().pathname.replace(/\/$/, "")}/jwt/jwks.json`
+    )).json(), s = this.joseInstance.createLocalJWKSet(e);
+    return this.keystoreCache = {
+      keystore: s,
+      expiresAt: (Date.now() / 1e3 + _) * 1e3
+    }, s;
+  }
+  async getRowndAuthenticationStatus(t, { allowExpired: e = !1 } = {}) {
+    let s;
+    try {
+      if (!t)
+        throw new Error("Cookie is null");
+      if (s = this.determineAccessTokenFromCookie(t), !s)
+        throw new Error("Cookie is missing access token");
+      const { payload: r, accessToken: n } = await this.validateAccessToken(s), o = r == null ? void 0 : r[d];
+      if (!o)
+        throw new Error("Payload is missing user id claim");
+      return {
+        user_id: o,
+        access_token: n,
+        is_authenticated: !0,
+        is_expired: !1,
+        err: void 0
+      };
+    } catch (r) {
+      let n = !1;
+      if (r.name === "JWTExpired" && (n = !0), n && e && s) {
+        await this.joseInstance.compactVerify(s, await this.getKeystore());
+        const o = this.joseInstance.decodeJwt(s);
+        return {
+          user_id: o == null ? void 0 : o[d],
+          access_token: s,
+          is_authenticated: !0,
+          is_expired: n,
+          err: void 0
+        };
+      }
+      if (r.name === "JWKSNoMatchingKey")
+        throw new Error(r.message + ". Do you need to update the ROWND_SUPERTOKENS_API_DOMAIN env var?");
+      return {
+        is_authenticated: !1,
+        user_id: void 0,
+        access_token: void 0,
+        is_expired: n,
+        err: r
+      };
+    }
+  }
+  determineAccessTokenFromCookie(t) {
+    let e;
+    try {
+      const s = JSON.parse(t);
+      s.accessToken && (e = s);
+    } catch {
+    }
+    return e || (e = h.parse(t)), e == null ? void 0 : e.accessToken;
+  }
+  async validateAccessToken(t) {
+    if (!t)
+      throw new Error("Cookie does not have accessToken");
+    const e = await this.getKeystore();
+    return {
+      payload: (await this.joseInstance.jwtVerify(t, e)).payload,
+      accessToken: t
+    };
+  }
+  async getRowndUserData(t) {
+    await this.validateAccessToken(t);
+    let e;
+    try {
+      const s = c(), r = await fetch(`${s.origin}${s.pathname.replace(/\/$/, "")}/plugin/rownd/user`, {
+        headers: {
+          Authorization: `Bearer ${t}`
+        }
+      });
+      if (!r.ok)
+        return null;
+      e = await r.json();
+    } catch (s) {
+      return console.error("Error fetching user data:", s), null;
+    }
+    return {
+      data: e.data || {},
+      groups: e.groups || [],
+      redacted_fields: e.redacted_fields || e.redacted || [],
+      verified_data: e.verified_data || {},
+      meta: e.meta || {},
+      instant_user: e.instant_user,
+      is_loading: !!e.is_loading
+    };
+  }
+}
+const i = new p(), f = i.getRowndAuthenticationStatus.bind(i), g = i.getRowndUserData.bind(i);
+export {
+  d as CLAIM_USER_ID,
+  p as TokenHandler,
+  f as getRowndAuthenticationStatus,
+  g as getRowndUserData,
+  l as getSuperTokensApiBasePath,
+  c as getSuperTokensApiBaseUrl,
+  w as getSuperTokensApiUrl
+};
+//# sourceMappingURL=token.js.map

package/dist/ssr/server/token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.js","sources":["../../../src/ssr/server/token.ts"],"sourcesContent":["import * as jose from 'jose';\nimport { rowndCookie, RowndCookieData } from './cookie';\nimport { UserContext } from '../../context/types';\n\nexport type RowndAuthenticatedUser = {\n  user_id: string;\n  access_token: string;\n}\n\nexport type IsAuthenticatedResponse =\n  | {\n      user_id: string;\n      access_token: string;\n      is_authenticated: true;\n      is_expired: boolean;\n      err: undefined;\n    }\n  | {\n      user_id: undefined;\n      access_token: undefined;\n      is_authenticated: false;\n      is_expired: boolean;\n      err: Error;\n    };\n\nexport const CLAIM_USER_ID = 'https://auth.rownd.io/app_user_id';\n\nexport const getSuperTokensApiUrl = (): URL => {\n  let url: URL;\n  const defaultUrl = 'https://api.rownd.io';\n  try {\n    url = new URL(\n      process.env.ROWND_SUPERTOKENS_API_DOMAIN ??\n        process.env.ROWND_API_URL ??\n        defaultUrl\n    );\n  } catch {\n    url = new URL(defaultUrl);\n  }\n  return url;\n}\n\nexport const getSuperTokensApiBasePath = (): string => {\n  const basePath = process.env.ROWND_SUPERTOKENS_API_BASE_PATH || '/auth';\n  return basePath.startsWith('/') ? basePath : `/${basePath}`;\n}\n\nexport const getSuperTokensApiBaseUrl = (): URL => {\n  return new URL(getSuperTokensApiBasePath(), getSuperTokensApiUrl().origin);\n}\n\nconst KEYSTORE_CACHE_TTL = 1800; // 30 minutes\ntype Keystore = (\n  protectedHeader?: jose.JWSHeaderParameters,\n  token?: jose.FlattenedJWSInput\n) => Promise<jose.KeyLike>;\n\nexport class TokenHandler {\n  private keystoreCache: undefined | { keystore: Keystore; expiresAt: number };\n\n  constructor(\n    private readonly joseInstance: typeof jose = jose,\n  ) {}\n\n  async getKeystore(): Promise<Keystore> {\n\n    if (this.keystoreCache && this.keystoreCache.expiresAt >= Date.now()) {\n      return this.keystoreCache.keystore;\n    }\n\n    const jwksRes = await fetch(\n      `${getSuperTokensApiBaseUrl().origin}${getSuperTokensApiBaseUrl().pathname.replace(/\\/$/, '')}/jwt/jwks.json`\n    );\n    const jwks = await jwksRes.json();\n\n    const keystore = this.joseInstance.createLocalJWKSet(jwks);\n\n    this.keystoreCache = {\n      keystore,\n      expiresAt: (Date.now() / 1000 + KEYSTORE_CACHE_TTL) * 1000,\n    };\n\n    return keystore;\n  }\n\n  async getRowndAuthenticationStatus(\n    cookie: string | null,\n    { allowExpired = false }: { allowExpired?: boolean } = {}\n  ): Promise<IsAuthenticatedResponse> {\n    let unverifiedAccessToken: string | undefined;\n    try {\n      if (!cookie) {\n        throw new Error('Cookie is null');\n      }\n\n      unverifiedAccessToken = this.determineAccessTokenFromCookie(cookie);\n\n      if (!unverifiedAccessToken) {\n        throw new Error('Cookie is missing access token');\n      }\n\n      const { payload, accessToken } = await this.validateAccessToken(unverifiedAccessToken);\n      const userId = payload?.[CLAIM_USER_ID] as string | undefined;\n\n      if (!userId) {\n        throw new Error('Payload is missing user id claim');\n      }\n\n      return {\n        user_id: userId,\n        access_token: accessToken,\n        is_authenticated: true,\n        is_expired: false,\n        err: undefined,\n      };\n    } catch (err) {\n      let isExpired = false;\n\n      if ((err as Error).name === 'JWTExpired') {\n        isExpired = true;\n      }\n\n      if (isExpired && allowExpired && unverifiedAccessToken) {\n        // At least make sure the token is properly signed\n        await this.joseInstance.compactVerify(unverifiedAccessToken, await this.getKeystore());\n\n        const payload = this.joseInstance.decodeJwt(unverifiedAccessToken);\n\n        return {\n          user_id: payload?.[CLAIM_USER_ID] as string,\n          access_token: unverifiedAccessToken,\n          is_authenticated: true,\n          is_expired: isExpired,\n          err: undefined,\n        }\n      }\n\n      // This likely indicates an issue with configuration,\n      // so better to throw than to fail somewhat silently.\n      if ((err as Error).name === 'JWKSNoMatchingKey') {\n        throw new Error((err as Error).message + '. Do you need to update the ROWND_SUPERTOKENS_API_DOMAIN env var?');\n      }\n\n      return {\n        is_authenticated: false,\n        user_id: undefined,\n        access_token: undefined,\n        is_expired: isExpired,\n        err: err as Error,\n      };\n    }\n  }\n\n  determineAccessTokenFromCookie(cookie: string): string | undefined {\n    let cookieData: RowndCookieData | undefined\n\n    // First, try to parse as JSON\n    try {\n      const parsedCookie = JSON.parse(cookie);\n      if (parsedCookie.accessToken) {\n        cookieData = parsedCookie\n      }\n    } catch {\n      // Do nothing\n    }\n\n    // If that fails, try to parse as a cookie string\n    if (!cookieData) {\n      cookieData = rowndCookie.parse(cookie);\n    }\n\n    return cookieData?.accessToken\n  }\n\n  async validateAccessToken(\n    accessToken?: string\n  ): Promise<{\n    payload: jose.JWTPayload;\n    accessToken: string;\n  }> {\n\n    if (!accessToken) {\n      throw new Error('Cookie does not have accessToken');\n    }\n\n    const keystore = await this.getKeystore();\n\n    return {\n      payload: (await this.joseInstance.jwtVerify(accessToken, keystore)).payload,\n      accessToken,\n    };\n  }\n\n  async getRowndUserData(accessToken: string): Promise<null | UserContext> {\n    await this.validateAccessToken(accessToken);\n\n    let userData: Partial<UserContext> & { redacted?: string[] };\n\n    try {\n      const baseUrl = getSuperTokensApiBaseUrl();\n      const userDataRes = await fetch(`${baseUrl.origin}${baseUrl.pathname.replace(/\\/$/, '')}/plugin/rownd/user`, {\n        headers: {\n          Authorization: `Bearer ${accessToken}`,\n        },\n      });\n\n      if (!userDataRes.ok) {\n        return null;\n      }\n\n      userData = await userDataRes.json();\n    } catch (err) {\n      console.error('Error fetching user data:', err);\n      return null;\n    }\n\n    return {\n      data: userData.data || {},\n      groups: userData.groups || [],\n      redacted_fields: userData.redacted_fields || userData.redacted || [],\n      verified_data: userData.verified_data || {},\n      meta: userData.meta || {},\n      instant_user: userData.instant_user,\n      is_loading: Boolean(userData.is_loading),\n    };\n  }\n}\n\n// Default implementation\nconst defaultTokenHandler = new TokenHandler();\n\nexport const getRowndAuthenticationStatus = defaultTokenHandler.getRowndAuthenticationStatus.bind(defaultTokenHandler);\nexport const getRowndUserData = defaultTokenHandler.getRowndUserData.bind(defaultTokenHandler);\n"],"names":["CLAIM_USER_ID","getSuperTokensApiUrl","url","defaultUrl","getSuperTokensApiBasePath","basePath","getSuperTokensApiBaseUrl","KEYSTORE_CACHE_TTL","TokenHandler","joseInstance","jose","jwks","keystore","cookie","allowExpired","unverifiedAccessToken","payload","accessToken","userId","err","isExpired","cookieData","parsedCookie","rowndCookie","userData","baseUrl","userDataRes","defaultTokenHandler","getRowndAuthenticationStatus","getRowndUserData"],"mappings":";;AAyBO,MAAMA,IAAgB,qCAEhBC,IAAuB,MAAW;AAC7C,MAAIC;AACJ,QAAMC,IAAa;AACnB,MAAI;AACF,IAAAD,IAAM,IAAI;AAAA,MACR,QAAQ,IAAI,gCACV,QAAQ,IAAI,iBACZC;AAAA,IAAA;AAAA,EAEN,QAAQ;AACN,IAAAD,IAAM,IAAI,IAAIC,CAAU;AAAA,EAC1B;AACA,SAAOD;AACT,GAEaE,IAA4B,MAAc;AACrD,QAAMC,IAAW,QAAQ,IAAI,mCAAmC;AAChE,SAAOA,EAAS,WAAW,GAAG,IAAIA,IAAW,IAAIA,CAAQ;AAC3D,GAEaC,IAA2B,MAC/B,IAAI,IAAIF,EAAA,GAA6BH,EAAA,EAAuB,MAAM,GAGrEM,IAAqB;AAMpB,MAAMC,EAAa;AAAA,EAGxB,YACmBC,IAA4BC,GAC7C;AADiB,SAAA,eAAAD;AAAA,EAChB;AAAA,EAEH,MAAM,cAAiC;AAErC,QAAI,KAAK,iBAAiB,KAAK,cAAc,aAAa,KAAK;AAC7D,aAAO,KAAK,cAAc;AAM5B,UAAME,IAAO,OAHG,MAAM;AAAA,MACpB,GAAGL,EAAA,EAA2B,MAAM,GAAGA,EAAA,EAA2B,SAAS,QAAQ,OAAO,EAAE,CAAC;AAAA,IAAA,GAEpE,KAAA,GAErBM,IAAW,KAAK,aAAa,kBAAkBD,CAAI;AAEzD,gBAAK,gBAAgB;AAAA,MACnB,UAAAC;AAAA,MACA,YAAY,KAAK,IAAA,IAAQ,MAAOL,KAAsB;AAAA,IAAA,GAGjDK;AAAA,EACT;AAAA,EAEA,MAAM,6BACJC,GACA,EAAE,cAAAC,IAAe,GAAA,IAAsC,CAAA,GACrB;AAClC,QAAIC;AACJ,QAAI;AACF,UAAI,CAACF;AACH,cAAM,IAAI,MAAM,gBAAgB;AAKlC,UAFAE,IAAwB,KAAK,+BAA+BF,CAAM,GAE9D,CAACE;AACH,cAAM,IAAI,MAAM,gCAAgC;AAGlD,YAAM,EAAE,SAAAC,GAAS,aAAAC,EAAA,IAAgB,MAAM,KAAK,oBAAoBF,CAAqB,GAC/EG,IAASF,KAAA,gBAAAA,EAAUhB;AAEzB,UAAI,CAACkB;AACH,cAAM,IAAI,MAAM,kCAAkC;AAGpD,aAAO;AAAA,QACL,SAASA;AAAA,QACT,cAAcD;AAAA,QACd,kBAAkB;AAAA,QAClB,YAAY;AAAA,QACZ,KAAK;AAAA,MAAA;AAAA,IAET,SAASE,GAAK;AACZ,UAAIC,IAAY;AAMhB,UAJKD,EAAc,SAAS,iBAC1BC,IAAY,KAGVA,KAAaN,KAAgBC,GAAuB;AAEtD,cAAM,KAAK,aAAa,cAAcA,GAAuB,MAAM,KAAK,aAAa;AAErF,cAAMC,IAAU,KAAK,aAAa,UAAUD,CAAqB;AAEjE,eAAO;AAAA,UACL,SAASC,KAAA,gBAAAA,EAAUhB;AAAA,UACnB,cAAce;AAAA,UACd,kBAAkB;AAAA,UAClB,YAAYK;AAAA,UACZ,KAAK;AAAA,QAAA;AAAA,MAET;AAIA,UAAKD,EAAc,SAAS;AAC1B,cAAM,IAAI,MAAOA,EAAc,UAAU,mEAAmE;AAG9G,aAAO;AAAA,QACL,kBAAkB;AAAA,QAClB,SAAS;AAAA,QACT,cAAc;AAAA,QACd,YAAYC;AAAA,QACZ,KAAAD;AAAA,MAAA;AAAA,IAEJ;AAAA,EACF;AAAA,EAEA,+BAA+BN,GAAoC;AACjE,QAAIQ;AAGJ,QAAI;AACF,YAAMC,IAAe,KAAK,MAAMT,CAAM;AACtC,MAAIS,EAAa,gBACfD,IAAaC;AAAA,IAEjB,QAAQ;AAAA,IAER;AAGA,WAAKD,MACHA,IAAaE,EAAY,MAAMV,CAAM,IAGhCQ,KAAA,gBAAAA,EAAY;AAAA,EACrB;AAAA,EAEA,MAAM,oBACJJ,GAIC;AAED,QAAI,CAACA;AACH,YAAM,IAAI,MAAM,kCAAkC;AAGpD,UAAML,IAAW,MAAM,KAAK,YAAA;AAE5B,WAAO;AAAA,MACL,UAAU,MAAM,KAAK,aAAa,UAAUK,GAAaL,CAAQ,GAAG;AAAA,MACpE,aAAAK;AAAA,IAAA;AAAA,EAEJ;AAAA,EAEA,MAAM,iBAAiBA,GAAkD;AACvE,UAAM,KAAK,oBAAoBA,CAAW;AAE1C,QAAIO;AAEJ,QAAI;AACF,YAAMC,IAAUnB,EAAA,GACVoB,IAAc,MAAM,MAAM,GAAGD,EAAQ,MAAM,GAAGA,EAAQ,SAAS,QAAQ,OAAO,EAAE,CAAC,sBAAsB;AAAA,QAC3G,SAAS;AAAA,UACP,eAAe,UAAUR,CAAW;AAAA,QAAA;AAAA,MACtC,CACD;AAED,UAAI,CAACS,EAAY;AACf,eAAO;AAGT,MAAAF,IAAW,MAAME,EAAY,KAAA;AAAA,IAC/B,SAASP,GAAK;AACZ,qBAAQ,MAAM,6BAA6BA,CAAG,GACvC;AAAA,IACT;AAEA,WAAO;AAAA,MACL,MAAMK,EAAS,QAAQ,CAAA;AAAA,MACvB,QAAQA,EAAS,UAAU,CAAA;AAAA,MAC3B,iBAAiBA,EAAS,mBAAmBA,EAAS,YAAY,CAAA;AAAA,MAClE,eAAeA,EAAS,iBAAiB,CAAA;AAAA,MACzC,MAAMA,EAAS,QAAQ,CAAA;AAAA,MACvB,cAAcA,EAAS;AAAA,MACvB,YAAY,EAAQA,EAAS;AAAA,IAAU;AAAA,EAE3C;AACF;AAGA,MAAMG,IAAsB,IAAInB,EAAA,GAEnBoB,IAA+BD,EAAoB,6BAA6B,KAAKA,CAAmB,GACxGE,IAAmBF,EAAoB,iBAAiB,KAAKA,CAAmB;"}

package/dist/ssr/server/token.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/utils/listeners.d.ts

@@ -0,0 +1,8 @@
+import { UserDataContext } from '../context/types';
+
+export declare const unsubscribeOnAuthenticatedListener: (id: string) => void;
+export declare const addOnAuthenticatedListener: (callback: (userData: UserDataContext) => void) => string;
+export declare const getOnAuthenticatedListeners: () => {
+    id: string;
+    callback: (userData: UserDataContext) => void;
+}[];

package/dist/utils/listeners.js

@@ -0,0 +1,15 @@
+let e = [];
+const s = (n) => {
+  e = e.filter(
+    (t) => t.id !== n
+  );
+}, i = (n) => {
+  const t = Math.random().toString(36).substring(2, 15);
+  return e.push({ id: t, callback: n }), t;
+}, r = () => e;
+export {
+  i as addOnAuthenticatedListener,
+  r as getOnAuthenticatedListeners,
+  s as unsubscribeOnAuthenticatedListener
+};
+//# sourceMappingURL=listeners.js.map

package/dist/utils/listeners.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"listeners.js","sources":["../../src/utils/listeners.ts"],"sourcesContent":["import { UserDataContext } from '../context/types';\n\nlet onAuthenticatedListeners: {\n  id: string;\n  callback: (userData: UserDataContext) => void;\n}[] = [];\n\nexport const unsubscribeOnAuthenticatedListener = (id: string) => {\n  onAuthenticatedListeners = onAuthenticatedListeners.filter(\n    (listener) => listener.id !== id\n  );\n};\n\nexport const addOnAuthenticatedListener = (\n  callback: (userData: UserDataContext) => void\n): string => {\n  const id = Math.random().toString(36).substring(2, 15);\n  onAuthenticatedListeners.push({ id, callback });\n  return id;\n};\n\nexport const getOnAuthenticatedListeners = () => onAuthenticatedListeners;  \n"],"names":["onAuthenticatedListeners","unsubscribeOnAuthenticatedListener","id","listener","addOnAuthenticatedListener","callback","getOnAuthenticatedListeners"],"mappings":"AAEA,IAAIA,IAGE,CAAA;AAEC,MAAMC,IAAqC,CAACC,MAAe;AAChE,EAAAF,IAA2BA,EAAyB;AAAA,IAClD,CAACG,MAAaA,EAAS,OAAOD;AAAA,EAAA;AAElC,GAEaE,IAA6B,CACxCC,MACW;AACX,QAAMH,IAAK,KAAK,SAAS,SAAS,EAAE,EAAE,UAAU,GAAG,EAAE;AACrD,SAAAF,EAAyB,KAAK,EAAE,IAAAE,GAAI,UAAAG,EAAA,CAAU,GACvCH;AACT,GAEaI,IAA8B,MAAMN;"}

package/package.json

@@ -0,0 +1,34 @@
+{
+  "name": "@supertokens/rownd-react",
+  "type": "module",
+  "module": "dist/main.js",
+  "types": "dist/main.d.ts",
+  "files": [
+    "*"
+  ],
+  "exports": {
+    ".": {
+      "import": "./dist/main.js",
+      "types": "./dist/main.d.ts"
+    },
+    "./next": {
+      "import": "./dist/next.js",
+      "types": "./dist/next.d.ts"
+    },
+    "./remix": {
+      "import": "./dist/remix.js",
+      "types": "./dist/remix.d.ts"
+    }
+  },
+  "license": "MIT",
+  "private": false,
+  "peerDependencies": {
+    "react": ">=17.0",
+    "react-dom": ">=17.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/rownd/react.git"
+  },
+  "version": "0.1.0-beta.0"
+}