@tern-secure/auth 1.1.0-canary.v20251008165428 → 1.1.0-canary.v20251020032343

package/dist/types/instance/jwtClient.d.ts

@@ -0,0 +1,22 @@
+import type { DecodedIdToken, SignedInSession, TernSecureUser } from '@tern-secure/types';
+import type { AuthCookieManager } from '../auth/AuthCookieManager';
+/**
+ * Utility functions for loading user from JWT cookie and updating client state
+ * This addresses the issue where user is undefined when client loads on page refresh
+ */
+export interface ClientUpdateOptions {
+    authCookieManager: AuthCookieManager;
+    onUserUpdate?: (user: TernSecureUser | null) => void;
+    onSessionUpdate?: (session: SignedInSession | null) => void;
+}
+/**
+ * Creates Firebase user from stored JWT token (ID token)
+ * Since the token is already a Firebase ID token, we validate it and wait for auth state
+ */
+declare const createClientFromJwt: (jwtToken: string | null) => DecodedIdToken | null;
+/**
+ * Updates client user state and triggers callbacks
+ */
+declare const updateClient: (user: TernSecureUser | null, options: Pick<ClientUpdateOptions, "onUserUpdate" | "onSessionUpdate">) => void;
+export { createClientFromJwt, updateClient };
+//# sourceMappingURL=jwtClient.d.ts.map

package/dist/types/instance/jwtClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwtClient.d.ts","sourceRoot":"","sources":["../../../src/instance/jwtClient.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAE1F,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAGnE;;;GAGG;AAEH,MAAM,WAAW,mBAAmB;IAClC,iBAAiB,EAAE,iBAAiB,CAAC;IACrC,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;IACrD,eAAe,CAAC,EAAE,CAAC,OAAO,EAAE,eAAe,GAAG,IAAI,KAAK,IAAI,CAAC;CAC7D;AAED;;;GAGG;AACH,QAAA,MAAM,mBAAmB,GAAI,UAAU,MAAM,GAAG,IAAI,KAAG,cAAc,GAAG,IAUvE,CAAC;AAEF;;GAEG;AACH,QAAA,MAAM,YAAY,GAChB,MAAM,cAAc,GAAG,IAAI,EAC3B,SAAS,IAAI,CAAC,mBAAmB,EAAE,cAAc,GAAG,iBAAiB,CAAC,KACrE,IAsCF,CAAC;AAEF,OAAO,EAAE,mBAAmB,EAAE,YAAY,EAAE,CAAC"}

package/dist/types/resources/Base.d.ts

@@ -6,6 +6,7 @@ export type PostMutateParams = {
     body?: any;
     method?: HTTPMethod | undefined;
     path?: string;
+    search?: ConstructorParameters<typeof URLSearchParams>[0];
 };
 export declare abstract class TernSecureBase {
     static ternsecure: TernSecureAuth;
@@ -29,6 +30,11 @@ export declare abstract class TernSecureBase {
      * Instance method for making POST requests
      */
     protected basePost(params: PostMutateParams): Promise<ApiResponseJSON<any> | null>;
+    /**
+     * Instance method to make GET requests
+     * This is a convenience method that sets the HTTP method to GET
+     */
+    protected baseGet(params: Omit<PostMutateParams, 'method'>): Promise<ApiResponseJSON<any> | null>;
     /**
      * Protected instance method for making POST requests with specific path and body
      * This is designed to be used by child classes like SignIn

package/dist/types/resources/Base.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Base.d.ts","sourceRoot":"","sources":["../../../src/resources/Base.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,cAAc,EAAe,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAG9F,OAAO,KAAK,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEpE,MAAM,MAAM,UAAU,GAClB,SAAS,GACT,QAAQ,GACR,KAAK,GACL,MAAM,GACN,SAAS,GACT,OAAO,GACP,MAAM,GACN,KAAK,GACL,OAAO,CAAC;AAEZ,MAAM,MAAM,gBAAgB,GAAG;IAC7B,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC5B,IAAI,CAAC,EAAE,GAAG,CAAC;IACX,MAAM,CAAC,EAAE,UAAU,GAAG,SAAS,CAAC;IAChC,IAAI,CAAC,EAAE,MAAM,CAAC;CACf,CAAC;AAEF,8BAAsB,cAAc;IAClC,MAAM,CAAC,UAAU,EAAE,cAAc,CAAC;IAElC,MAAM,KAAK,SAAS,oDAEnB;IAED,MAAM,KAAK,iBAAiB,IAAI,iBAAiB,GAAG,SAAS,CAE5D;IACD,SAAS,KAAK,iBAAiB,IAAI,iBAAiB,GAAG,SAAS,CAE/D;IAED;;;OAGG;qBACoB,gBAAgB,CAAC,CAAC,EACvC,WAAW,EAAE,cAAc,GAC1B,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAoDrC;;OAEG;WACU,QAAQ,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIrF;;OAEG;cACa,gBAAgB,CAC9B,WAAW,EAAE,cAAc,GAC1B,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIvC;;OAEG;cACa,QAAQ,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIxF;;;OAGG;cACa,KAAK,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;WAOxE,cAAc,CAAC,WAAW,EAAE,cAAc,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;cAI9E,cAAc,CAC5B,WAAW,EAAE,cAAc,GAC1B,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIvC,OAAO,CAAC,MAAM,CAAC,gCAAgC;CAIhD"}
+{"version":3,"file":"Base.d.ts","sourceRoot":"","sources":["../../../src/resources/Base.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,cAAc,EAAe,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAG9F,OAAO,KAAK,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEpE,MAAM,MAAM,UAAU,GAClB,SAAS,GACT,QAAQ,GACR,KAAK,GACL,MAAM,GACN,SAAS,GACT,OAAO,GACP,MAAM,GACN,KAAK,GACL,OAAO,CAAC;AAEZ,MAAM,MAAM,gBAAgB,GAAG;IAC7B,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC5B,IAAI,CAAC,EAAE,GAAG,CAAC;IACX,MAAM,CAAC,EAAE,UAAU,GAAG,SAAS,CAAC;IAChC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,qBAAqB,CAAC,OAAO,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC;CAC3D,CAAC;AAEF,8BAAsB,cAAc;IAClC,MAAM,CAAC,UAAU,EAAE,cAAc,CAAC;IAElC,MAAM,KAAK,SAAS,oDAEnB;IAED,MAAM,KAAK,iBAAiB,IAAI,iBAAiB,GAAG,SAAS,CAE5D;IACD,SAAS,KAAK,iBAAiB,IAAI,iBAAiB,GAAG,SAAS,CAE/D;IAED;;;OAGG;qBACoB,gBAAgB,CAAC,CAAC,EACvC,WAAW,EAAE,cAAc,GAC1B,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAoDrC;;OAEG;WACU,QAAQ,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIrF;;OAEG;cACa,gBAAgB,CAC9B,WAAW,EAAE,cAAc,GAC1B,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIvC;;OAEG;cACa,QAAQ,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIxF;;;OAGG;cACa,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,gBAAgB,EAAE,QAAQ,CAAC,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIvG;;;OAGG;cACa,KAAK,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;WAOxE,cAAc,CAAC,WAAW,EAAE,cAAc,GAAG,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;cAI9E,cAAc,CAC5B,WAAW,EAAE,cAAc,GAC1B,OAAO,CAAC,eAAe,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAIvC,OAAO,CAAC,MAAM,CAAC,gCAAgC;CAIhD"}

package/dist/types/resources/Session.d.ts

@@ -0,0 +1,49 @@
+import type { IdTokenResult, SessionJson, SessionResource, SessionStatus, TernSecureUser } from '@tern-secure/types';
+import { TernSecureBase } from './Base';
+/**
+ * Enhanced Session class that handles custom token authentication for client-server sync.
+ *
+ * Key Features:
+ * - Manages custom tokens for server-side verification
+ * - Uses TernSecureUser object directly (no Firebase Auth instance needed)
+ * - Provides seamless client-server session synchronization
+ * - Works with in-memory persistence by using custom tokens to restore auth state
+ */
+export declare class Session extends TernSecureBase implements SessionResource {
+    pathRoot: string;
+    status: SessionStatus;
+    token: string;
+    claims: IdTokenResult['claims'];
+    authTime: string;
+    expirationTime: string;
+    issuedAtTime: string;
+    signInProvider: string | null;
+    signInSecondFactor: string | null;
+    user?: TernSecureUser;
+    constructor(sessionData: Partial<SessionResource>);
+    /**
+     * Initialize session from existing session data
+     */
+    private initializeFromSessionData;
+    /**
+     * Create custom token from current session for server-side sync
+     * This calls the backend API to create a custom token from the current ID token
+     */
+    private createSession;
+    /**
+     * FIXED: Now properly returns the custom token string instead of the full API response
+     * This method correctly extracts the token from the API response structure
+     */
+    getIdAndRefreshToken: (idToken: string, csrfToken: string) => Promise<void>;
+    /**
+     * NEW: create method that calls API to create session
+     * API handles everything, no return value needed
+     * This method works with the existing sessionData passed to constructor
+     */
+    create: (csrfToken: string) => Promise<void>;
+    /**
+     * Convert session to plain object for serialization
+     */
+    toJSON(): SessionJson;
+}
+//# sourceMappingURL=Session.d.ts.map

package/dist/types/resources/Session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Session.d.ts","sourceRoot":"","sources":["../../../src/resources/Session.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,aAAa,EACb,WAAW,EACX,eAAe,EACf,aAAa,EACb,cAAc,EACf,MAAM,oBAAoB,CAAC;AAG5B,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC;;;;;;;;GAQG;AACH,qBAAa,OAAQ,SAAQ,cAAe,YAAW,eAAe;IACpE,QAAQ,SAA6B;IAErC,MAAM,EAAG,aAAa,CAAC;IACvB,KAAK,EAAG,MAAM,CAAC;IACf,MAAM,EAAG,aAAa,CAAC,QAAQ,CAAC,CAAC;IACjC,QAAQ,EAAG,MAAM,CAAC;IAClB,cAAc,EAAG,MAAM,CAAC;IACxB,YAAY,EAAG,MAAM,CAAC;IACtB,cAAc,EAAG,MAAM,GAAG,IAAI,CAAC;IAC/B,kBAAkB,EAAG,MAAM,GAAG,IAAI,CAAC;IACnC,IAAI,CAAC,EAAE,cAAc,CAAC;gBAEV,WAAW,EAAE,OAAO,CAAC,eAAe,CAAC;IAKjD;;OAEG;IACH,OAAO,CAAC,yBAAyB;IAYjC;;;OAGG;IACH,OAAO,CAAC,aAAa,CAQnB;IAGF;;;OAGG;IACH,oBAAoB,GAAU,SAAS,MAAM,EAAE,WAAW,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC,CAE9E;IAEF;;;;OAIG;IACH,MAAM,GAAU,WAAW,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC,CAG/C;IAEF;;OAEG;IACH,MAAM,IAAI,WAAW;CAatB"}

package/dist/types/resources/SignIn.d.ts

@@ -1,6 +1,7 @@
-import type { ResendEmailVerification, SignInFormValues, SignInResource, SignInResponse, SignInStatus } from '@tern-secure/types';
+import type { ResendEmailVerification, SignInFormValues, SignInResource, SignInResponse as SignInResponseFromTypes, SignInStatus } from '@tern-secure/types';
 import type { Auth, UserCredential } from 'firebase/auth';
 import { TernSecureBase } from './Base';
+type SignInResponse = SignInResponseFromTypes;
 export type TernRequestInit = RequestInit;
 export type SignInParams = {
     idToken: string;
@@ -29,4 +30,5 @@ export declare class SignIn extends TernSecureBase implements SignInResource {
     private _signInWithPopUp;
     checkRedirectResult(): Promise<SignInResponse | null>;
 }
+export {};
 //# sourceMappingURL=SignIn.d.ts.map

package/dist/types/resources/SignIn.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SignIn.d.ts","sourceRoot":"","sources":["../../../src/resources/SignIn.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,uBAAuB,EACvB,gBAAgB,EAChB,cAAc,EACd,cAAc,EACd,YAAY,EAEb,MAAM,oBAAoB,CAAC;AAC5B,OAAO,KAAK,EAAE,IAAI,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAW1D,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAOxC,MAAM,MAAM,eAAe,GAAG,WAAW,CAAC;AAE1C,MAAM,MAAM,YAAY,GAAG;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC;CAC/B,CAAC;AASF,qBAAa,MAAO,SAAQ,cAAe,YAAW,cAAc;IAClE,QAAQ,SAA6B;IAErC,MAAM,CAAC,EAAE,YAAY,GAAG,SAAS,CAAC;IAClC,OAAO,CAAC,IAAI,CAAO;IACnB,OAAO,CAAC,SAAS,CAAqB;IACtC,OAAO,CAAC,YAAY,CAA+B;gBAEvC,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,GAAG,SAAS;IAMrD,oBAAoB,GAAU,YAAY,cAAc,uDAWtD;IAEF,oBAAoB,GAAU,QAAQ,gBAAgB,KAAG,OAAO,CAAC,cAAc,CAAC,CAuB9E;IAEF,cAAc,GAAU,QAAQ,gBAAgB,KAAG,OAAO,CAAC,IAAI,CAAC,CAS9D;IAEF,kBAAkB,GAChB,UAAU,MAAM,EAChB,UAAU;QACR,IAAI,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;KAC7B,KACA,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC,CA6B/B;IAEF,iBAAiB,GAAU,WAAW,MAAM,EAAE,cAAc,GAAG,KAAG,OAAO,CAAC,cAAc,CAAC,CAEvF;IAEF,sBAAsB,GAAU,OAAO,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC,CAE3D;IAEF,uBAAuB,QAAa,OAAO,CAAC,uBAAuB,CAAC,CA2BlE;IAEF,OAAO,CAAC,iBAAiB;YA0BX,kBAAkB;YAuBlB,iBAAiB;YAoBjB,mBAAmB;YAInB,gBAAgB;IAIjB,mBAAmB,IAAI,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC;CAGnE"}
+{"version":3,"file":"SignIn.d.ts","sourceRoot":"","sources":["../../../src/resources/SignIn.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,uBAAuB,EACvB,gBAAgB,EAChB,cAAc,EACd,cAAc,IAAI,uBAAuB,EACzC,YAAY,EAEb,MAAM,oBAAoB,CAAC;AAC5B,OAAO,KAAK,EAAE,IAAI,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAW1D,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC,KAAK,cAAc,GAAG,uBAAuB,CAAC;AAO9C,MAAM,MAAM,eAAe,GAAG,WAAW,CAAC;AAE1C,MAAM,MAAM,YAAY,GAAG;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC;CAC/B,CAAC;AASF,qBAAa,MAAO,SAAQ,cAAe,YAAW,cAAc;IAClE,QAAQ,SAA6B;IAErC,MAAM,CAAC,EAAE,YAAY,GAAG,SAAS,CAAC;IAClC,OAAO,CAAC,IAAI,CAAO;IACnB,OAAO,CAAC,SAAS,CAAqB;IACtC,OAAO,CAAC,YAAY,CAA+B;gBAEvC,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,GAAG,SAAS;IAMrD,oBAAoB,GAAU,YAAY,cAAc,uDAWtD;IAEF,oBAAoB,GAAU,QAAQ,gBAAgB,KAAG,OAAO,CAAC,cAAc,CAAC,CAwB9E;IAEF,cAAc,GAAU,QAAQ,gBAAgB,KAAG,OAAO,CAAC,IAAI,CAAC,CAS9D;IAEF,kBAAkB,GAChB,UAAU,MAAM,EAChB,UAAU;QACR,IAAI,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;KAC7B,KACA,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC,CA4B/B;IAEF,iBAAiB,GAAU,WAAW,MAAM,EAAE,cAAc,GAAG,KAAG,OAAO,CAAC,cAAc,CAAC,CAEvF;IAEF,sBAAsB,GAAU,OAAO,MAAM,KAAG,OAAO,CAAC,IAAI,CAAC,CAE3D;IAEF,uBAAuB,QAAa,OAAO,CAAC,uBAAuB,CAAC,CAuBlE;IAEF,OAAO,CAAC,iBAAiB;YA0BX,kBAAkB;YAwBlB,iBAAiB;YAmBjB,mBAAmB;YAInB,gBAAgB;IAIjB,mBAAmB,IAAI,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC;CAGnE"}

package/dist/types/resources/Token.d.ts

@@ -0,0 +1,5 @@
+import { TernSecureBase } from './Base';
+export declare class Token extends TernSecureBase {
+    pathroot: string;
+}
+//# sourceMappingURL=Token.d.ts.map

package/dist/types/resources/Token.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Token.d.ts","sourceRoot":"","sources":["../../../src/resources/Token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC,qBAAa,KAAM,SAAQ,cAAc;IACrC,QAAQ,SAAY;CACvB"}

package/dist/types/resources/UserData.d.ts

@@ -0,0 +1,8 @@
+import { TernSecureBase } from './Base';
+export declare class UserData extends TernSecureBase {
+    pathRoot: string;
+    private idToken;
+    constructor(idToken?: string);
+    get: () => Promise<import("..").ApiResponseJSON<any> | null>;
+}
+//# sourceMappingURL=UserData.d.ts.map

package/dist/types/resources/UserData.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserData.d.ts","sourceRoot":"","sources":["../../../src/resources/UserData.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC,qBAAa,QAAS,SAAQ,cAAc;IAC1C,QAAQ,SAAsB;IAE9B,OAAO,CAAC,OAAO,CAAqB;gBAExB,OAAO,CAAC,EAAE,MAAM;IAK5B,GAAG,0DAKF;CACF"}

package/dist/types/resources/cookie.d.ts

@@ -0,0 +1,24 @@
+import type { CookieResource } from '@tern-secure/types';
+import { TernSecureBase } from './Base';
+export type TokenResult = {
+    success: boolean;
+    token?: string;
+    error?: string;
+};
+export declare class Cookie extends TernSecureBase implements CookieResource {
+    pathroot: string;
+    idToken?: string;
+    sessionToken?: string;
+    refreshToken?: string;
+    customToken?: string;
+    constructor();
+    private getTokenInCookie;
+    private parseTokenResponse;
+    getIdToken: () => Promise<TokenResult>;
+    getSessionToken: () => Promise<TokenResult>;
+    getRefreshToken: () => Promise<TokenResult>;
+    getCustomToken: () => Promise<TokenResult>;
+    getAllTokens: () => Promise<Record<string, TokenResult>>;
+    hasToken: (tokenType: keyof CookieResource) => Promise<boolean>;
+}
+//# sourceMappingURL=cookie.d.ts.map

package/dist/types/resources/cookie.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookie.d.ts","sourceRoot":"","sources":["../../../src/resources/cookie.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAGzD,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC,MAAM,MAAM,WAAW,GAAG;IACxB,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAAC;AAQF,qBAAa,MAAO,SAAQ,cAAe,YAAW,cAAc;IAClE,QAAQ,SAAa;IAErB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;;IAMrB,OAAO,CAAC,gBAAgB,CAKtB;IAGF,OAAO,CAAC,kBAAkB,CAkBxB;IAEF,UAAU,QAAa,OAAO,CAAC,WAAW,CAAC,CAIzC;IAEF,eAAe,QAAa,OAAO,CAAC,WAAW,CAAC,CAqB9C;IAEF,eAAe,QAAa,OAAO,CAAC,WAAW,CAAC,CAqB9C;IAEF,cAAc,QAAa,OAAO,CAAC,WAAW,CAAC,CAqB7C;IAEF,YAAY,QAAa,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC,CAc3D;IAEF,QAAQ,GAAU,WAAW,MAAM,cAAc,KAAG,OAAO,CAAC,OAAO,CAAC,CAalE;CACH"}

package/dist/types/resources/internal.d.ts

@@ -1,8 +1,9 @@
 export type { TernSecureAuth } from '../instance/TernAuth';
+export * from './Session';
 export * from './SignUp';
 export * from './SignIn';
 export * from './Base';
-export * from './AuthCookieManager';
+export * from '../auth/AuthCookieManager';
 export * from '../utils';
 export * from './Error';
 //# sourceMappingURL=internal.d.ts.map

package/dist/types/resources/internal.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"internal.d.ts","sourceRoot":"","sources":["../../../src/resources/internal.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAC3D,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,QAAQ,CAAC;AACvB,cAAc,qBAAqB,CAAC;AACpC,cAAc,UAAU,CAAC;AACzB,cAAc,SAAS,CAAC"}
+{"version":3,"file":"internal.d.ts","sourceRoot":"","sources":["../../../src/resources/internal.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAC3D,cAAc,WAAW,CAAC;AAC1B,cAAc,UAAU,CAAC;AACzB,cAAc,UAAU,CAAC;AACzB,cAAc,QAAQ,CAAC;AACvB,cAAc,2BAA2B,CAAC;AAC1C,cAAc,UAAU,CAAC;AACzB,cAAc,SAAS,CAAC"}

package/dist/types/utils/jwt.d.ts

@@ -0,0 +1,12 @@
+import type { DecodedIdToken, JWTPayload, JWTProtectedHeader } from './mapDecode';
+type JWT = {
+    encoded: {
+        header: JWTProtectedHeader;
+        payload: JWTPayload;
+        signature: string;
+    };
+    decoded: DecodedIdToken;
+};
+export declare function decode(token: string): JWT;
+export {};
+//# sourceMappingURL=jwt.d.ts.map

package/dist/types/utils/jwt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.d.ts","sourceRoot":"","sources":["../../../src/utils/jwt.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,cAAc,EAAE,UAAU,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAGlF,KAAK,GAAG,GAAG;IACT,OAAO,EAAE;QAAE,MAAM,EAAE,kBAAkB,CAAC;QAAC,OAAO,EAAE,UAAU,CAAC;QAAC,SAAS,EAAE,MAAM,CAAA;KAAE,CAAC;IAChF,OAAO,EAAE,cAAc,CAAC;CACzB,CAAC;AAEF,wBAAgB,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,GAAG,CAmBzC"}

package/dist/types/utils/mapDecode.d.ts

@@ -0,0 +1,4 @@
+import type { DecodedIdToken, JWTPayload, JWTProtectedHeader } from '@tern-secure/types';
+export declare function mapJwtPayloadToDecodedIdToken(payload: JWTPayload): DecodedIdToken;
+export type { DecodedIdToken, JWTPayload, JWTProtectedHeader };
+//# sourceMappingURL=mapDecode.d.ts.map

package/dist/types/utils/mapDecode.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mapDecode.d.ts","sourceRoot":"","sources":["../../../src/utils/mapDecode.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,UAAU,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AAEzF,wBAAgB,6BAA6B,CAAC,OAAO,EAAE,UAAU,kBAIhE;AAED,YAAY,EAAE,cAAc,EAAE,UAAU,EAAE,kBAAkB,EAAE,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tern-secure/auth",
-  "version": "1.1.0-canary.v20251008165428",
+  "version": "1.1.0-canary.v20251020032343",
   "repository": {
     "type": "git",
     "url": "git+https://github.com/TernSecure/auth.git",
@@ -25,8 +25,8 @@
   "dependencies": {
     "server-only": "^0.0.1",
     "tslib": "2.4.1",
-    "@tern-secure/shared": "1.3.0-canary.v20251008165428",
-    "@tern-secure/types": "1.1.0-canary.v20251008165428"
+    "@tern-secure/shared": "1.3.0-canary.v20251020032343",
+    "@tern-secure/types": "1.1.0-canary.v20251020032343"
   },
   "devDependencies": {
     "firebase": "^12.0.0",

package/dist/cjs/resources/AuthCookieManager.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../src/resources/AuthCookieManager.ts"],"sourcesContent":["import { \n  type CookieAttributes,\n  cookieHandler} from '@tern-secure/shared/cookie';\n\nconst CSRF_COOKIE_NAME = '_session_terncf';\n\ntype CSRFToken = {\n  token: string | null;\n}\n\ntype CookieOptions = CookieAttributes\n\nconst CSRF_COOKIE_OPTIONS: CookieOptions = {\n  secure: true,\n  sameSite: 'strict',\n  expires: 1 / 24 //1 hour\n};\n\n/**\n * AuthCookieManger class for managing authentication state and cookies\n */\nexport class AuthCookieManager {\n  private readonly csrfCookieHandler = cookieHandler(CSRF_COOKIE_NAME);\n\n  constructor() {\n    this.ensureCSRFToken();\n  }\n\n  \n  private generateCSRFToken(): string {\n    const array = new Uint8Array(32);\n    crypto.getRandomValues(array);\n    return Array.from(array, (byte) => byte.toString(16).padStart(2, '0')).join('');\n  }\n\n  private ensureCSRFToken(): string {\n    let ctoken = this.getCSRFToken();\n    if (!ctoken) {\n      ctoken = this.generateCSRFToken();\n      this.setCSRFToken({ token: ctoken });\n    }\n    return ctoken;\n  }\n  \n\n  /**\n   * Set CSRFcookie\n  */\n\n  setCSRFToken(token: CSRFToken): void {\n    try {\n      if (token.token) {\n        this.csrfCookieHandler.set(token.token, CSRF_COOKIE_OPTIONS);\n      }\n    } catch (error) {\n      console.error('Failed to set CSRF token:', error);\n      throw new Error('Unable to store CSRF token');\n    }\n  }\n  \n\n  /**\n   * Get CSRF token from cookies\n   */\n  getCSRFToken(): string | undefined {\n    try {\n      return this.csrfCookieHandler.get();\n    } catch (error) {\n      console.error('Failed to get CSRF token:', error);\n      return undefined;\n    }\n  }\n\n\n  /**\n   * Clear all authentication cookies\n   */\n  clearAuth(): void {\n    try {\n      this.csrfCookieHandler.remove();\n    } catch (error) {\n      console.error('Failed to clear auth cookies:', error);\n    }\n  }\n}"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,oBAEsB;AAEtB,MAAM,mBAAmB;AAQzB,MAAM,sBAAqC;AAAA,EACzC,QAAQ;AAAA,EACR,UAAU;AAAA,EACV,SAAS,IAAI;AAAA;AACf;AAKO,MAAM,kBAAkB;AAAA,EACZ,wBAAoB,6BAAc,gBAAgB;AAAA,EAEnE,cAAc;AACZ,SAAK,gBAAgB;AAAA,EACvB;AAAA,EAGQ,oBAA4B;AAClC,UAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,WAAO,gBAAgB,KAAK;AAC5B,WAAO,MAAM,KAAK,OAAO,CAAC,SAAS,KAAK,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAAA,EAChF;AAAA,EAEQ,kBAA0B;AAChC,QAAI,SAAS,KAAK,aAAa;AAC/B,QAAI,CAAC,QAAQ;AACX,eAAS,KAAK,kBAAkB;AAChC,WAAK,aAAa,EAAE,OAAO,OAAO,CAAC;AAAA,IACrC;AACA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAOA,aAAa,OAAwB;AACnC,QAAI;AACF,UAAI,MAAM,OAAO;AACf,aAAK,kBAAkB,IAAI,MAAM,OAAO,mBAAmB;AAAA,MAC7D;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,6BAA6B,KAAK;AAChD,YAAM,IAAI,MAAM,4BAA4B;AAAA,IAC9C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAMA,eAAmC;AACjC,QAAI;AACF,aAAO,KAAK,kBAAkB,IAAI;AAAA,IACpC,SAAS,OAAO;AACd,cAAQ,MAAM,6BAA6B,KAAK;AAChD,aAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAMA,YAAkB;AAChB,QAAI;AACF,WAAK,kBAAkB,OAAO;AAAA,IAChC,SAAS,OAAO;AACd,cAAQ,MAAM,iCAAiC,KAAK;AAAA,IACtD;AAAA,EACF;AACF;","names":[]}

package/dist/esm/resources/AuthCookieManager.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../src/resources/AuthCookieManager.ts"],"sourcesContent":["import { \n  type CookieAttributes,\n  cookieHandler} from '@tern-secure/shared/cookie';\n\nconst CSRF_COOKIE_NAME = '_session_terncf';\n\ntype CSRFToken = {\n  token: string | null;\n}\n\ntype CookieOptions = CookieAttributes\n\nconst CSRF_COOKIE_OPTIONS: CookieOptions = {\n  secure: true,\n  sameSite: 'strict',\n  expires: 1 / 24 //1 hour\n};\n\n/**\n * AuthCookieManger class for managing authentication state and cookies\n */\nexport class AuthCookieManager {\n  private readonly csrfCookieHandler = cookieHandler(CSRF_COOKIE_NAME);\n\n  constructor() {\n    this.ensureCSRFToken();\n  }\n\n  \n  private generateCSRFToken(): string {\n    const array = new Uint8Array(32);\n    crypto.getRandomValues(array);\n    return Array.from(array, (byte) => byte.toString(16).padStart(2, '0')).join('');\n  }\n\n  private ensureCSRFToken(): string {\n    let ctoken = this.getCSRFToken();\n    if (!ctoken) {\n      ctoken = this.generateCSRFToken();\n      this.setCSRFToken({ token: ctoken });\n    }\n    return ctoken;\n  }\n  \n\n  /**\n   * Set CSRFcookie\n  */\n\n  setCSRFToken(token: CSRFToken): void {\n    try {\n      if (token.token) {\n        this.csrfCookieHandler.set(token.token, CSRF_COOKIE_OPTIONS);\n      }\n    } catch (error) {\n      console.error('Failed to set CSRF token:', error);\n      throw new Error('Unable to store CSRF token');\n    }\n  }\n  \n\n  /**\n   * Get CSRF token from cookies\n   */\n  getCSRFToken(): string | undefined {\n    try {\n      return this.csrfCookieHandler.get();\n    } catch (error) {\n      console.error('Failed to get CSRF token:', error);\n      return undefined;\n    }\n  }\n\n\n  /**\n   * Clear all authentication cookies\n   */\n  clearAuth(): void {\n    try {\n      this.csrfCookieHandler.remove();\n    } catch (error) {\n      console.error('Failed to clear auth cookies:', error);\n    }\n  }\n}"],"mappings":"AAAA;AAAA,EAEE;AAAA,OAAoB;AAEtB,MAAM,mBAAmB;AAQzB,MAAM,sBAAqC;AAAA,EACzC,QAAQ;AAAA,EACR,UAAU;AAAA,EACV,SAAS,IAAI;AAAA;AACf;AAKO,MAAM,kBAAkB;AAAA,EACZ,oBAAoB,cAAc,gBAAgB;AAAA,EAEnE,cAAc;AACZ,SAAK,gBAAgB;AAAA,EACvB;AAAA,EAGQ,oBAA4B;AAClC,UAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,WAAO,gBAAgB,KAAK;AAC5B,WAAO,MAAM,KAAK,OAAO,CAAC,SAAS,KAAK,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAAA,EAChF;AAAA,EAEQ,kBAA0B;AAChC,QAAI,SAAS,KAAK,aAAa;AAC/B,QAAI,CAAC,QAAQ;AACX,eAAS,KAAK,kBAAkB;AAChC,WAAK,aAAa,EAAE,OAAO,OAAO,CAAC;AAAA,IACrC;AACA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAOA,aAAa,OAAwB;AACnC,QAAI;AACF,UAAI,MAAM,OAAO;AACf,aAAK,kBAAkB,IAAI,MAAM,OAAO,mBAAmB;AAAA,MAC7D;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,6BAA6B,KAAK;AAChD,YAAM,IAAI,MAAM,4BAA4B;AAAA,IAC9C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAMA,eAAmC;AACjC,QAAI;AACF,aAAO,KAAK,kBAAkB,IAAI;AAAA,IACpC,SAAS,OAAO;AACd,cAAQ,MAAM,6BAA6B,KAAK;AAChD,aAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAMA,YAAkB;AAChB,QAAI;AACF,WAAK,kBAAkB,OAAO;AAAA,IAChC,SAAS,OAAO;AACd,cAAQ,MAAM,iCAAiC,KAAK;AAAA,IACtD;AAAA,EACF;AACF;","names":[]}

package/dist/types/resources/AuthCookieManager.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"AuthCookieManager.d.ts","sourceRoot":"","sources":["../../../src/resources/AuthCookieManager.ts"],"names":[],"mappings":"AAMA,KAAK,SAAS,GAAG;IACf,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;CACtB,CAAA;AAUD;;GAEG;AACH,qBAAa,iBAAiB;IAC5B,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAmC;;IAOrE,OAAO,CAAC,iBAAiB;IAMzB,OAAO,CAAC,eAAe;IAUvB;;MAEE;IAEF,YAAY,CAAC,KAAK,EAAE,SAAS,GAAG,IAAI;IAYpC;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,SAAS;IAUlC;;OAEG;IACH,SAAS,IAAI,IAAI;CAOlB"}