@tern-secure/auth 1.1.0-canary.v20251108045933 → 1.1.0-canary.v20251125170702

package/dist/esm/instance/TernAuth.js

@@ -1,510 +0,0 @@
-import { handleFirebaseAuthError } from "@tern-secure/shared/errors";
-import { createTernAuthEventBus, ternEvents } from "@tern-secure/shared/ternStatusEvent";
-import { stripScheme } from "@tern-secure/shared/url";
-import { handleValueOrFn } from "@tern-secure/shared/utils";
-import { getApps, initializeApp } from "firebase/app";
-import {
-  browserLocalPersistence,
-  browserPopupRedirectResolver,
-  browserSessionPersistence,
-  connectAuthEmulator,
-  getIdToken,
-  getRedirectResult,
-  initializeAuth,
-  inMemoryPersistence,
-  onAuthStateChanged,
-  onIdTokenChanged
-} from "firebase/auth";
-import { getInstallations } from "firebase/installations";
-import { AuthCookieManager, Session, SignIn, SignUp, TernSecureBase } from "../resources/internal";
-import { ALLOWED_PROTOCOLS, buildURL, stripOrigin, windowNavigate } from "../utils/";
-import { RedirectUrls } from "../utils/redirectUrls";
-import { createCoreApiClient } from "./c_coreApiClient";
-import { eventBus, events } from "./events";
-function inBrowser() {
-  return typeof window !== "undefined";
-}
-class TernSecureAuth {
-  static version = "1.1.0-canary.v20251108045933";
-  static sdkMetadata = {
-    name: "@tern-secure/auth",
-    version: "1.1.0-canary.v20251108045933",
-    environment: process.env.NODE_ENV || "production"
-  };
-  static instance = null;
-  _currentUser = null;
-  signedInSession = null;
-  firebaseClientApp;
-  authStateUnsubscribe = null;
-  auth;
-  csrfToken;
-  isLoading = false;
-  error = null;
-  user = null;
-  __internal_country;
-  #domain;
-  #apiClient;
-  #apiUrl;
-  #instanceType;
-  #status = "loading";
-  #listeners = [];
-  #options = {};
-  #authCookieManager;
-  #publicEventBus = createTernAuthEventBus();
-  signIn;
-  signUp;
-  session;
-  get isReady() {
-    return this.status === "ready";
-  }
-  get status() {
-    return this.#status;
-  }
-  get version() {
-    return TernSecureAuth.version;
-  }
-  set sdkMetadata(metadata) {
-    TernSecureAuth.sdkMetadata = metadata;
-  }
-  get sdkMetadata() {
-    return TernSecureAuth.sdkMetadata;
-  }
-  get requiresVerification() {
-    return this.#options.requiresVerification ?? true;
-  }
-  get apiUrl() {
-    return this.#apiUrl;
-  }
-  get domain() {
-    if (inBrowser()) {
-      const strippedDomainString = stripScheme(
-        handleValueOrFn(this.#domain, new URL(window.location.href))
-      );
-      if (this.#instanceType === "production") {
-        return strippedDomainString;
-      }
-      return strippedDomainString;
-    }
-    return "";
-  }
-  get instanceType() {
-    return this.#instanceType;
-  }
-  constructor(options) {
-    var _a;
-    this.#domain = (_a = options == null ? void 0 : options.ternSecureConfig) == null ? void 0 : _a.authDomain;
-    this.#apiUrl = (options == null ? void 0 : options.apiUrl) || "";
-    this.#instanceType = process.env.NODE_ENV || "production";
-    this.#apiClient = createCoreApiClient({
-      domain: this.#domain,
-      apiUrl: options == null ? void 0 : options.apiUrl,
-      instanceType: this.instanceType
-    });
-    this.#publicEventBus.emit(ternEvents.Status, "loading");
-    TernSecureBase.ternsecure = this;
-  }
-  getApiClient = () => this.#apiClient;
-  setLoading(isLoading) {
-    this.isLoading = isLoading;
-  }
-  authCookieManager() {
-    return this.#authCookieManager;
-  }
-  _internal_getOption(key) {
-    return this.#options[key];
-  }
-  _internal_getAllOptions() {
-    return Object.freeze({ ...this.#options });
-  }
-  static getOrCreateInstance(options) {
-    if (!this.instance) {
-      this.instance = new TernSecureAuth(options);
-    }
-    return this.instance;
-  }
-  static clearInstance() {
-    if (TernSecureAuth.instance) {
-      if (TernSecureAuth.instance.authStateUnsubscribe) {
-        TernSecureAuth.instance.authStateUnsubscribe();
-        TernSecureAuth.instance.authStateUnsubscribe = null;
-      }
-      TernSecureAuth.instance = null;
-    }
-  }
-  static initialize(options) {
-    const instance = this.getOrCreateInstance(options);
-    instance.#initialize(options);
-    return instance;
-  }
-  initialize = async (options) => {
-    void this.#initialize(options || {});
-  };
-  static create(options) {
-    const instance = this.getOrCreateInstance();
-    void instance.initialize(options);
-    return instance;
-  }
-  #initialize = (options) => {
-    this.#options = this.#initOptions(options);
-    try {
-      if (!this.#options.ternSecureConfig) {
-        throw new Error("TernSecureConfig is required to initialize TernSecureAuth");
-      }
-      if (!this.#options.apiUrl) {
-        throw new Error("apiUrl is required to initialize TernSecureAuth");
-      }
-      this.initializeFirebaseApp(this.#options.ternSecureConfig, {
-        appName: this.#options.appName,
-        tenantId: this.#options.tenantId
-      });
-      const isBrowserCookiePersistence = this.#options.persistence === "browserCookie";
-      if (!isBrowserCookiePersistence) {
-        this.authStateUnsubscribe = this.initAuthStateListener();
-      }
-      this.#authCookieManager = new AuthCookieManager();
-      this.csrfToken = this.#authCookieManager.getCSRFToken();
-      this.signIn = new SignIn(this.auth, this.csrfToken);
-      this.signUp = new SignUp(this.auth);
-      eventBus.on(events.SessionChanged, () => {
-        this.#setCreatedActiveSession(this.user || null);
-        this.#emit();
-      });
-      this.#setStatus("ready");
-      this.#publicEventBus.emit(ternEvents.Status, "ready");
-    } catch (error) {
-      this.error = error;
-      this.#setStatus("error");
-      this.#publicEventBus.emit(ternEvents.Status, "error");
-      throw error;
-    }
-  };
-  initializeFirebaseApp(config, options) {
-    const appName = (options == null ? void 0 : options.appName) || "[DEFAULT]";
-    this.firebaseClientApp = getApps().length === 0 ? initializeApp(config, appName) : getApps()[0];
-    const persistence = this.#setPersistence();
-    const auth = initializeAuth(this.firebaseClientApp, {
-      persistence,
-      popupRedirectResolver: browserPopupRedirectResolver
-    });
-    this.auth = auth;
-    if (options == null ? void 0 : options.tenantId) {
-      this.auth.tenantId = options.tenantId;
-    }
-    this.#configureEmulator();
-    getInstallations(this.firebaseClientApp);
-  }
-  signOut = async (options) => {
-    const redirectUrl = (options == null ? void 0 : options.redirectUrl) || this.#constructAfterSignOutUrl();
-    if (options == null ? void 0 : options.onBeforeSignOut) {
-      await options.onBeforeSignOut();
-    }
-    await this.auth.signOut();
-    if (options == null ? void 0 : options.onAfterSignOut) {
-      await options.onAfterSignOut();
-    }
-    await this.navigate(redirectUrl);
-    eventBus.emit(events.UserSignOut, null);
-    eventBus.emit(events.TokenUpdate, { token: null });
-    this.#emit();
-  };
-  get currentSession() {
-    return this.signedInSession;
-  }
-  initAuthListener() {
-    (async () => {
-      await this.auth.authStateReady();
-      const user = this.auth.currentUser;
-      this._currentUser = user;
-      this.user = user;
-      await this.updateCurrentSession();
-      this.#emit();
-    })();
-    return () => {
-    };
-  }
-  initAuthStateListener() {
-    return onAuthStateChanged(this.auth, async (user) => {
-      await this.auth.authStateReady();
-      this._currentUser = user;
-      this.user = user;
-      await this.updateCurrentSession();
-      this.#emit();
-    });
-  }
-  _onIdTokenChanged() {
-    return onIdTokenChanged(this.auth, async (user) => {
-      await this.auth.authStateReady();
-      this._currentUser = user;
-      this.user = user;
-      await this.updateCurrentSession();
-      this.#emit();
-    });
-  }
-  async getIdToken() {
-    await this.auth.authStateReady();
-    if (!this.auth.currentUser) {
-      return null;
-    }
-    return getIdToken(this.auth.currentUser);
-  }
-  onAuthStateChanged(callback) {
-    return onAuthStateChanged(this.auth, callback);
-  }
-  onIdTokenChanged(callback) {
-    return onIdTokenChanged(this.auth, callback);
-  }
-  async updateCurrentSession() {
-    if (!this._currentUser) {
-      this.signedInSession = null;
-      return;
-    }
-    try {
-      const res = await this._currentUser.getIdTokenResult();
-      this.signedInSession = {
-        status: "active",
-        token: res.token,
-        claims: res.claims,
-        issuedAtTime: res.issuedAtTime,
-        expirationTime: res.expirationTime,
-        authTime: res.authTime,
-        signInProvider: res.signInProvider || "unknown",
-        signInSecondFactor: res.signInSecondFactor
-      };
-    } catch (error) {
-      console.error("[TernSecureAuth] Error updating session:", error);
-      this.signedInSession = null;
-    }
-  }
-  checkRedirectResult = async () => {
-    try {
-      const result = await getRedirectResult(this.auth);
-      if (result) {
-        return {
-          status: "success",
-          user: result.user
-        };
-      }
-      return null;
-    } catch (error) {
-      const authError = handleFirebaseAuthError(error);
-      return {
-        status: "error",
-        message: authError.message,
-        error: authError.code
-      };
-    }
-  };
-  getRedirectResult = async () => {
-    return this.checkRedirectResult();
-  };
-  addListener = (listener) => {
-    this.#listeners.push(listener);
-    if (this._currentUser) {
-      listener({
-        user: this._currentUser,
-        session: this.signedInSession
-      });
-    }
-    const unsubscribe = () => {
-      this.#listeners = this.#listeners.filter((l) => l !== listener);
-    };
-    return unsubscribe;
-  };
-  on = (...args) => {
-    this.#publicEventBus.on(...args);
-  };
-  off = (...args) => {
-    this.#publicEventBus.off(...args);
-  };
-  createActiveSession = async ({
-    session,
-    redirectUrl
-  }) => {
-    try {
-      if (!session) {
-        throw new Error("No session provided to createActiveSession");
-      }
-      const sessionResult = await session.getIdTokenResult();
-      const sessionData = new Session(sessionResult);
-      await sessionData.create(this.csrfToken || "");
-      if (redirectUrl) {
-        await this.navigate(this.constructUrlWithAuthRedirect(redirectUrl));
-      }
-      this.#setCreatedActiveSession(session);
-      this.#emit();
-    } catch (error) {
-      console.error("[TernSecureAuth] Error creating active session:", error);
-    }
-  };
-  navigate = async (to, options) => {
-    if (!to || !inBrowser()) {
-      return;
-    }
-    let toURL = new URL(to, window.location.href);
-    if (!this.#allowedRedirectProtocols.includes(toURL.protocol)) {
-      console.warn(
-        `TernSecureAuth: "${toURL.protocol}" is not a valid protocol. Redirecting to "/" instead. If you think this is a mistake, please open an issue.`
-      );
-      toURL = new URL("/", window.location.href);
-    }
-    const customNavigate = (options == null ? void 0 : options.replace) && this.#options.routerReplace ? this.#options.routerReplace : this.#options.routerPush;
-    if (toURL.origin !== "null" && toURL.origin !== window.location.origin || !customNavigate) {
-      windowNavigate(toURL);
-      return;
-    }
-    const metadata = {
-      ...(options == null ? void 0 : options.metadata) ? { __internal_metadata: options == null ? void 0 : options.metadata } : {},
-      windowNavigate
-    };
-    return await customNavigate(stripOrigin(toURL), metadata);
-  };
-  constructUrlWithAuthRedirect = (to) => {
-    if (this.#instanceType === "production") {
-      return to;
-    }
-    const baseUrl = window.location.origin;
-    const url = new URL(to, baseUrl);
-    if (url.origin === window.location.origin) {
-      return url.href;
-    }
-    return url.toString();
-  };
-  #buildUrl = (key, options) => {
-    if (!key || !this.isReady) {
-      return "";
-    }
-    const baseUrlConfig = key === "signInUrl" ? this.#options.signInUrl : this.#options.signUpUrl;
-    const defaultPagePath = key === "signInUrl" ? "/sign-in" : "/sign-up";
-    const base = baseUrlConfig || defaultPagePath;
-    const redirectUrls = new RedirectUrls(this.#options, options).toSearchParams();
-    const constructedUrl = buildURL(
-      {
-        base,
-        hashSearchParams: [redirectUrls]
-      },
-      {
-        stringify: true,
-        skipOrigin: false
-      }
-    );
-    return this.constructUrlWithAuthRedirect(constructedUrl);
-  };
-  #constructAfterSignInUrl = () => {
-    return this.constructUrlWithAuthRedirect(new RedirectUrls(this.#options).getAfterSignInUrl());
-  };
-  #constructAfterSignOutUrl = () => {
-    if (!this.#options.afterSignOutUrl) {
-      return "/";
-    }
-    return this.constructUrlWithAuthRedirect(this.#options.afterSignOutUrl);
-  };
-  redirectToSignIn = async (options) => {
-    if (inBrowser()) {
-      return this.navigate(this.constructSignInUrl(options));
-    }
-    return;
-  };
-  redirectToSignUp = async (options) => {
-    if (inBrowser()) {
-      return this.navigate(this.constructSignUpUrl());
-    }
-    return;
-  };
-  redirectAfterSignIn = async () => {
-    if (inBrowser()) {
-      return this.navigate(this.#constructAfterSignInUrl());
-    }
-    return;
-  };
-  redirectAfterSignUp = () => {
-    throw new Error("redirectAfterSignUp is not implemented yet");
-  };
-  constructSignInUrl = (options) => {
-    return this.#buildUrl("signInUrl", {
-      ...options,
-      signInForceRedirectUrl: (options == null ? void 0 : options.signInForceRedirectUrl) || window.location.href
-    });
-  };
-  constructSignUpUrl = (options) => {
-    return this.#buildUrl("signUpUrl", {
-      ...options,
-      signUpForceRedirectUrl: (options == null ? void 0 : options.signUpForceRedirectUrl) || window.location.href
-    });
-  };
-  get #allowedRedirectProtocols() {
-    let allowedProtocols = ALLOWED_PROTOCOLS;
-    if (this.#options.allowedRedirectProtocols) {
-      allowedProtocols = allowedProtocols.concat(this.#options.allowedRedirectProtocols);
-    }
-    return allowedProtocols;
-  }
-  __internal_setCountry = (country) => {
-    if (!this.__internal_country) {
-      this.__internal_country = country;
-    }
-  };
-  #initOptions = (options) => {
-    return {
-      ...options
-    };
-  };
-  #emit = () => {
-    for (const listener of this.#listeners) {
-      listener({
-        user: this.user,
-        session: this.signedInSession
-      });
-    }
-  };
-  #setStatus(newStatus) {
-    if (this.#status !== newStatus) {
-      this.#status = newStatus;
-      this.#publicEventBus.emit(ternEvents.Status, this.#status);
-      if (newStatus === "ready") {
-        this.#publicEventBus.emit(ternEvents.Status, "ready");
-      }
-    }
-  }
-  #setCreatedActiveSession = (session) => {
-    this.user = session;
-    this._currentUser = session;
-  };
-  #setPersistence = () => {
-    const persistenceType = this.#options.persistence;
-    switch (persistenceType) {
-      case "browserCookie":
-        return inMemoryPersistence;
-      case "session":
-        return browserSessionPersistence;
-      case "local":
-        return browserLocalPersistence;
-      case "none":
-      default:
-        return inMemoryPersistence;
-    }
-  };
-  #emulatorHost = () => {
-    if (typeof process === "undefined") return void 0;
-    return process.env.FIREBASE_AUTH_EMULATOR_HOST;
-  };
-  #configureEmulator = () => {
-    const host = this.#emulatorHost();
-    const isDev = this.#instanceType === "development";
-    const shouldUseEmulator = isDev && !!host;
-    if (!shouldUseEmulator || !host) {
-      return;
-    }
-    const emulatorUrl = host.startsWith("http") ? host : `http://${host}`;
-    try {
-      connectAuthEmulator(this.auth, emulatorUrl, { disableWarnings: false });
-      console.warn(`[TernSecure] Firebase Auth Emulator connected at ${emulatorUrl}`);
-    } catch (error) {
-      console.error("[TernSecure] Error connecting to Firebase Auth Emulator:", error);
-    }
-  };
-}
-export {
-  TernSecureAuth,
-  inBrowser
-};
-//# sourceMappingURL=TernAuth.js.map

package/dist/esm/instance/TernAuth.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../src/instance/TernAuth.ts"],"sourcesContent":["import { handleFirebaseAuthError } from '@tern-secure/shared/errors';\nimport { createTernAuthEventBus, ternEvents } from '@tern-secure/shared/ternStatusEvent';\nimport { stripScheme } from '@tern-secure/shared/url';\nimport { handleValueOrFn } from '@tern-secure/shared/utils';\nimport type {\n  CreateActiveSession,\n  DomainOrProxyUrl,\n  InstanceType,\n  ListenerCallback,\n  NavigateOptions,\n  RedirectOptions,\n  SessionResource,\n  SignedInSession,\n  SignInRedirectOptions,\n  SignInResource,\n  SignInResponse,\n  SignOut,\n  SignOutOptions,\n  SignUpRedirectOptions,\n  SignUpResource,\n  TernAuthSDK,\n  TernSecureAuth as TernSecureAuthInterface,\n  TernSecureAuthOptions,\n  TernSecureAuthStatus,\n  TernSecureConfig,\n  TernSecureResources,\n  TernSecureUser,\n  UnsubscribeCallback,\n} from '@tern-secure/types';\nimport type { FirebaseApp } from 'firebase/app';\nimport { getApps, initializeApp } from 'firebase/app';\nimport type { Auth, Auth as TernAuth } from 'firebase/auth';\nimport {\n  browserLocalPersistence,\n  browserPopupRedirectResolver,\n  browserSessionPersistence,\n  connectAuthEmulator,\n  getIdToken,\n  getRedirectResult,\n  initializeAuth,\n  inMemoryPersistence,\n  onAuthStateChanged,\n  onIdTokenChanged,\n} from 'firebase/auth';\nimport { getInstallations } from 'firebase/installations';\n\nimport { AuthCookieManager, Session, SignIn, SignUp, TernSecureBase } from '../resources/internal';\nimport { ALLOWED_PROTOCOLS, buildURL, stripOrigin, windowNavigate } from '../utils/';\nimport { RedirectUrls } from '../utils/redirectUrls';\nimport { type ApiClient, createCoreApiClient } from './c_coreApiClient';\nimport { eventBus, events } from './events';\n\nexport function inBrowser(): boolean {\n  return typeof window !== 'undefined';\n}\n\nexport { TernAuth };\n\n/**\n * Firebase implementation of the TernSecureAuth interface\n */\nexport class TernSecureAuth implements TernSecureAuthInterface {\n  public static version: string = PACKAGE_VERSION;\n  public static sdkMetadata: TernAuthSDK = {\n    name: PACKAGE_NAME,\n    version: PACKAGE_VERSION,\n    environment: process.env.NODE_ENV || 'production',\n  };\n  private static instance: TernSecureAuth | null = null;\n  private _currentUser: TernSecureUser | null = null;\n  private signedInSession: SignedInSession | null = null;\n  private firebaseClientApp: FirebaseApp | undefined;\n  private authStateUnsubscribe: (() => void) | null = null;\n  private auth!: Auth;\n  private csrfToken: string | undefined;\n  public isLoading = false;\n  public error: Error | null = null;\n  public user: TernSecureUser | null | undefined = null;\n  public __internal_country?: string | null;\n  #domain: DomainOrProxyUrl['domain'];\n  #apiClient: ApiClient;\n  #apiUrl: string;\n  #instanceType?: InstanceType;\n  #status: TernSecureAuthInterface['status'] = 'loading';\n  #listeners: Array<(emission: TernSecureResources) => void> = [];\n  #options: TernSecureAuthOptions = {};\n  #authCookieManager?: AuthCookieManager;\n  #publicEventBus = createTernAuthEventBus();\n\n  signIn!: SignInResource | null | undefined;\n  signUp!: SignUpResource | null | undefined;\n  session!: SessionResource | null | undefined;\n\n  get isReady(): boolean {\n    return this.status === 'ready';\n  }\n\n  get status(): TernSecureAuthInterface['status'] {\n    return this.#status;\n  }\n\n  get version(): string {\n    return TernSecureAuth.version;\n  }\n\n  set sdkMetadata(metadata: TernAuthSDK) {\n    TernSecureAuth.sdkMetadata = metadata;\n  }\n\n  get sdkMetadata(): TernAuthSDK {\n    return TernSecureAuth.sdkMetadata;\n  }\n\n  get requiresVerification(): boolean {\n    return this.#options.requiresVerification ?? true;\n  }\n\n  get apiUrl(): string {\n    return this.#apiUrl;\n  }\n\n  get domain(): string {\n    if (inBrowser()) {\n      const strippedDomainString = stripScheme(\n        handleValueOrFn(this.#domain, new URL(window.location.href)),\n      );\n      if (this.#instanceType === 'production') {\n        return strippedDomainString;\n      }\n      return strippedDomainString;\n    }\n    return '';\n  }\n\n  get instanceType() {\n    return this.#instanceType;\n  }\n\n  public constructor(options?: TernSecureAuthOptions) {\n    this.#domain = options?.ternSecureConfig?.authDomain;\n    this.#apiUrl = options?.apiUrl || '';\n    this.#instanceType = (process.env.NODE_ENV as InstanceType) || 'production';\n\n    this.#apiClient = createCoreApiClient({\n      domain: this.#domain,\n      apiUrl: options?.apiUrl,\n      instanceType: this.instanceType as InstanceType,\n    });\n\n    this.#publicEventBus.emit(ternEvents.Status, 'loading');\n    TernSecureBase.ternsecure = this;\n  }\n\n  public getApiClient = (): ApiClient => this.#apiClient;\n\n  public setLoading(isLoading: boolean): void {\n    this.isLoading = isLoading;\n  }\n\n  public authCookieManager(): AuthCookieManager | undefined {\n    return this.#authCookieManager;\n  }\n\n  public _internal_getOption<K extends keyof TernSecureAuthOptions>(\n    key: K,\n  ): TernSecureAuthOptions[K] {\n    return this.#options[key];\n  }\n\n  public _internal_getAllOptions(): Readonly<TernSecureAuthOptions> {\n    return Object.freeze({ ...this.#options });\n  }\n\n  static getOrCreateInstance(options?: TernSecureAuthOptions): TernSecureAuth {\n    if (!this.instance) {\n      this.instance = new TernSecureAuth(options);\n    }\n    return this.instance;\n  }\n\n  static clearInstance() {\n    if (TernSecureAuth.instance) {\n      if (TernSecureAuth.instance.authStateUnsubscribe) {\n        TernSecureAuth.instance.authStateUnsubscribe();\n        TernSecureAuth.instance.authStateUnsubscribe = null;\n      }\n      TernSecureAuth.instance = null;\n    }\n  }\n\n  public static initialize(options: TernSecureAuthOptions): TernSecureAuth {\n    const instance = this.getOrCreateInstance(options);\n    instance.#initialize(options);\n    return instance;\n  }\n\n  initialize = async (options?: TernSecureAuthOptions): Promise<void> => {\n    void this.#initialize(options || {});\n  };\n\n  public static create(options: TernSecureAuthOptions): TernSecureAuth {\n    const instance = this.getOrCreateInstance();\n    void instance.initialize(options);\n    return instance;\n  }\n\n  #initialize = (options: TernSecureAuthOptions): void => {\n    this.#options = this.#initOptions(options);\n\n    try {\n      if (!this.#options.ternSecureConfig) {\n        throw new Error('TernSecureConfig is required to initialize TernSecureAuth');\n      }\n\n      if (!this.#options.apiUrl) {\n        throw new Error('apiUrl is required to initialize TernSecureAuth');\n      }\n\n      this.initializeFirebaseApp(this.#options.ternSecureConfig, {\n        appName: this.#options.appName,\n        tenantId: this.#options.tenantId,\n      });\n\n      const isBrowserCookiePersistence = this.#options.persistence === 'browserCookie';\n\n      if (!isBrowserCookiePersistence) {\n        this.authStateUnsubscribe = this.initAuthStateListener();\n      }\n\n      this.#authCookieManager = new AuthCookieManager();\n      this.csrfToken = this.#authCookieManager.getCSRFToken();\n\n      this.signIn = new SignIn(this.auth, this.csrfToken);\n      this.signUp = new SignUp(this.auth);\n\n      eventBus.on(events.SessionChanged, () => {\n        this.#setCreatedActiveSession(this.user || null);\n        this.#emit();\n      });\n\n      this.#setStatus('ready');\n      this.#publicEventBus.emit(ternEvents.Status, 'ready');\n\n      //return this;\n    } catch (error) {\n      this.error = error as Error;\n      this.#setStatus('error');\n      this.#publicEventBus.emit(ternEvents.Status, 'error');\n      throw error;\n    }\n  };\n\n  private initializeFirebaseApp(\n    config: TernSecureConfig,\n    options?: { appName?: string; tenantId?: string },\n  ): void {\n    const appName = options?.appName || '[DEFAULT]';\n    this.firebaseClientApp = getApps().length === 0 ? initializeApp(config, appName) : getApps()[0];\n\n    const persistence = this.#setPersistence();\n    const auth = initializeAuth(this.firebaseClientApp, {\n      persistence,\n      popupRedirectResolver: browserPopupRedirectResolver,\n    });\n\n    this.auth = auth;\n\n    if (options?.tenantId) {\n      this.auth.tenantId = options.tenantId;\n    }\n\n    this.#configureEmulator();\n\n    getInstallations(this.firebaseClientApp);\n  }\n\n  public signOut: SignOut = async (options?: SignOutOptions) => {\n    const redirectUrl = options?.redirectUrl || this.#constructAfterSignOutUrl();\n    if (options?.onBeforeSignOut) {\n      await options.onBeforeSignOut();\n    }\n\n    await this.auth.signOut();\n\n    if (options?.onAfterSignOut) {\n      await options.onAfterSignOut();\n    }\n\n    await this.navigate(redirectUrl);\n\n    eventBus.emit(events.UserSignOut, null);\n    eventBus.emit(events.TokenUpdate, { token: null });\n    this.#emit();\n  };\n\n  get currentSession(): SignedInSession | null {\n    return this.signedInSession;\n  }\n\n  private initAuthListener(): () => void {\n    (async () => {\n      await this.auth.authStateReady();\n      const user = this.auth.currentUser as TernSecureUser | null;\n      this._currentUser = user;\n      this.user = user;\n      await this.updateCurrentSession();\n      this.#emit();\n    })();\n\n    // Return a no-op unsubscribe function since we're not setting up a listener\n    return () => {\n      // No-op: nothing to unsubscribe from\n    };\n  }\n\n  private initAuthStateListener(): () => void {\n    return onAuthStateChanged(this.auth, async (user: TernSecureUser | null) => {\n      await this.auth.authStateReady();\n      this._currentUser = user;\n      this.user = user;\n      await this.updateCurrentSession();\n\n      this.#emit();\n    });\n  }\n\n  private _onIdTokenChanged(): () => void {\n    return onIdTokenChanged(this.auth, async (user: TernSecureUser | null) => {\n      await this.auth.authStateReady();\n      this._currentUser = user;\n      this.user = user;\n      await this.updateCurrentSession();\n\n      this.#emit();\n    });\n  }\n\n  private async getIdToken(): Promise<string | null> {\n    await this.auth.authStateReady();\n    if (!this.auth.currentUser) {\n      return null;\n    }\n    return getIdToken(this.auth.currentUser);\n  }\n\n  public onAuthStateChanged(callback: (cb: any) => void): () => void {\n    return onAuthStateChanged(this.auth, callback);\n  }\n\n  public onIdTokenChanged(callback: (cb: any) => void): () => void {\n    return onIdTokenChanged(this.auth, callback);\n  }\n\n  private async updateCurrentSession(): Promise<void> {\n    if (!this._currentUser) {\n      this.signedInSession = null;\n      return;\n    }\n\n    try {\n      const res = await this._currentUser.getIdTokenResult();\n      this.signedInSession = {\n        status: 'active',\n        token: res.token,\n        claims: res.claims,\n        issuedAtTime: res.issuedAtTime,\n        expirationTime: res.expirationTime,\n        authTime: res.authTime,\n        signInProvider: res.signInProvider || 'unknown',\n        signInSecondFactor: res.signInSecondFactor,\n      };\n    } catch (error) {\n      console.error('[TernSecureAuth] Error updating session:', error);\n      this.signedInSession = null;\n    }\n  }\n\n  private checkRedirectResult = async (): Promise<SignInResponse | null> => {\n    try {\n      const result = await getRedirectResult(this.auth);\n      if (result) {\n        return {\n          status: 'success',\n          user: result.user as TernSecureUser,\n        };\n      }\n      return null;\n    } catch (error) {\n      const authError = handleFirebaseAuthError(error);\n      return {\n        status: 'error',\n        message: authError.message,\n        error: authError.code,\n      };\n    }\n  };\n\n  public getRedirectResult = async (): Promise<any> => {\n    return this.checkRedirectResult();\n  };\n\n  public addListener = (listener: ListenerCallback): UnsubscribeCallback => {\n    this.#listeners.push(listener);\n    if (this._currentUser) {\n      listener({\n        user: this._currentUser,\n        session: this.signedInSession,\n      });\n    }\n\n    const unsubscribe = () => {\n      this.#listeners = this.#listeners.filter(l => l !== listener);\n    };\n    return unsubscribe;\n  };\n\n  public on: TernSecureAuthInterface['on'] = (...args) => {\n    this.#publicEventBus.on(...args);\n  };\n\n  public off: TernSecureAuthInterface['off'] = (...args) => {\n    this.#publicEventBus.off(...args);\n  };\n\n  public createActiveSession: CreateActiveSession = async ({\n    session,\n    redirectUrl,\n  }): Promise<void> => {\n    try {\n      if (!session) {\n        throw new Error('No session provided to createActiveSession');\n      }\n      const sessionResult = await session.getIdTokenResult();\n      const sessionData = new Session(sessionResult);\n      await sessionData.create(this.csrfToken || '');\n\n      if (redirectUrl) {\n        await this.navigate(this.constructUrlWithAuthRedirect(redirectUrl));\n      }\n\n      this.#setCreatedActiveSession(session);\n      this.#emit();\n    } catch (error) {\n      console.error('[TernSecureAuth] Error creating active session:', error);\n    }\n  };\n\n  public navigate = async (to: string | undefined, options?: NavigateOptions): Promise<unknown> => {\n    if (!to || !inBrowser()) {\n      return;\n    }\n\n    let toURL = new URL(to, window.location.href);\n\n    if (!this.#allowedRedirectProtocols.includes(toURL.protocol)) {\n      console.warn(\n        `TernSecureAuth: \"${toURL.protocol}\" is not a valid protocol. Redirecting to \"/\" instead. If you think this is a mistake, please open an issue.`,\n      );\n      toURL = new URL('/', window.location.href);\n    }\n\n    const customNavigate =\n      options?.replace && this.#options.routerReplace\n        ? this.#options.routerReplace\n        : this.#options.routerPush;\n\n    if ((toURL.origin !== 'null' && toURL.origin !== window.location.origin) || !customNavigate) {\n      windowNavigate(toURL);\n      return;\n    }\n\n    const metadata = {\n      ...(options?.metadata ? { __internal_metadata: options?.metadata } : {}),\n      windowNavigate,\n    };\n\n    // React router only wants the path, search or hash portion.\n    return await customNavigate(stripOrigin(toURL), metadata);\n  };\n\n  public constructUrlWithAuthRedirect = (to: string): string => {\n    if (this.#instanceType === 'production') {\n      return to;\n    }\n    const baseUrl = window.location.origin;\n    const url = new URL(to, baseUrl);\n\n    if (url.origin === window.location.origin) {\n      return url.href;\n    }\n\n    return url.toString();\n  };\n\n  #buildUrl = (key: 'signInUrl' | 'signUpUrl', options: RedirectOptions): string => {\n    if (!key || !this.isReady) {\n      return '';\n    }\n\n    const baseUrlConfig = key === 'signInUrl' ? this.#options.signInUrl : this.#options.signUpUrl;\n    const defaultPagePath = key === 'signInUrl' ? '/sign-in' : '/sign-up';\n    const base = baseUrlConfig || defaultPagePath;\n\n    const redirectUrls = new RedirectUrls(this.#options, options).toSearchParams();\n    const constructedUrl = buildURL(\n      {\n        base,\n        hashSearchParams: [redirectUrls],\n      },\n      {\n        stringify: true,\n        skipOrigin: false,\n      },\n    );\n    return this.constructUrlWithAuthRedirect(constructedUrl);\n  };\n\n  #constructAfterSignInUrl = (): string => {\n    return this.constructUrlWithAuthRedirect(new RedirectUrls(this.#options).getAfterSignInUrl());\n  };\n\n  #constructAfterSignOutUrl = (): string => {\n    if (!this.#options.afterSignOutUrl) {\n      return '/';\n    }\n    return this.constructUrlWithAuthRedirect(this.#options.afterSignOutUrl);\n  };\n\n  public redirectToSignIn = async (options?: SignInRedirectOptions): Promise<unknown> => {\n    if (inBrowser()) {\n      return this.navigate(this.constructSignInUrl(options));\n    }\n    return;\n  };\n\n  public redirectToSignUp = async (options?: SignUpRedirectOptions): Promise<unknown> => {\n    if (inBrowser()) {\n      return this.navigate(this.constructSignUpUrl());\n    }\n    return;\n  };\n\n  public redirectAfterSignIn = async (): Promise<unknown> => {\n    if (inBrowser()) {\n      return this.navigate(this.#constructAfterSignInUrl());\n    }\n    return;\n  };\n\n  redirectAfterSignUp = (): void => {\n    throw new Error('redirectAfterSignUp is not implemented yet');\n  };\n\n  public constructSignInUrl = (options?: SignInRedirectOptions): string => {\n    return this.#buildUrl('signInUrl', {\n      ...options,\n      signInForceRedirectUrl: options?.signInForceRedirectUrl || window.location.href,\n    });\n  };\n\n  public constructSignUpUrl = (options?: SignUpRedirectOptions): string => {\n    return this.#buildUrl('signUpUrl', {\n      ...options,\n      signUpForceRedirectUrl: options?.signUpForceRedirectUrl || window.location.href,\n    });\n  };\n\n  get #allowedRedirectProtocols() {\n    let allowedProtocols = ALLOWED_PROTOCOLS;\n\n    if (this.#options.allowedRedirectProtocols) {\n      allowedProtocols = allowedProtocols.concat(this.#options.allowedRedirectProtocols);\n    }\n\n    return allowedProtocols;\n  }\n\n  __internal_setCountry = (country: string | null) => {\n    if (!this.__internal_country) {\n      this.__internal_country = country;\n    }\n  };\n\n  #initOptions = (options: TernSecureAuthOptions): TernSecureAuthOptions => {\n    return {\n      ...options,\n    };\n  };\n\n  #emit = (): void => {\n    for (const listener of this.#listeners) {\n      listener({\n        user: this.user,\n        session: this.signedInSession,\n      });\n    }\n  };\n\n  #setStatus(newStatus: TernSecureAuthStatus): void {\n    if (this.#status !== newStatus) {\n      this.#status = newStatus;\n      this.#publicEventBus.emit(ternEvents.Status, this.#status);\n\n      if (newStatus === 'ready') {\n        this.#publicEventBus.emit(ternEvents.Status, 'ready');\n      }\n    }\n  }\n\n  #setCreatedActiveSession = (session: TernSecureUser | null) => {\n    this.user = session;\n    this._currentUser = session;\n  };\n\n  #setPersistence = () => {\n    const persistenceType = this.#options.persistence;\n\n    switch (persistenceType) {\n      case 'browserCookie':\n        return inMemoryPersistence;\n      case 'session':\n        return browserSessionPersistence;\n      case 'local':\n        return browserLocalPersistence;\n      case 'none':\n      default:\n        return inMemoryPersistence;\n    }\n  };\n\n  #emulatorHost = (): string | undefined => {\n    if (typeof process === 'undefined') return undefined;\n    return process.env.FIREBASE_AUTH_EMULATOR_HOST;\n  };\n\n  #configureEmulator = (): void => {\n    const host = this.#emulatorHost();\n    const isDev = this.#instanceType === 'development';\n    const shouldUseEmulator = isDev && !!host;\n    if (!shouldUseEmulator || !host) {\n      return;\n    }\n\n    const emulatorUrl = host.startsWith('http') ? host : `http://${host}`;\n\n    try {\n      //(this.auth as unknown as any)._canInitEmulator = true;\n      connectAuthEmulator(this.auth, emulatorUrl, { disableWarnings: false });\n      console.warn(`[TernSecure] Firebase Auth Emulator connected at ${emulatorUrl}`);\n    } catch (error) {\n      console.error('[TernSecure] Error connecting to Firebase Auth Emulator:', error);\n    }\n  };\n}\n"],"mappings":"AAAA,SAAS,+BAA+B;AACxC,SAAS,wBAAwB,kBAAkB;AACnD,SAAS,mBAAmB;AAC5B,SAAS,uBAAuB;AA2BhC,SAAS,SAAS,qBAAqB;AAEvC;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,wBAAwB;AAEjC,SAAS,mBAAmB,SAAS,QAAQ,QAAQ,sBAAsB;AAC3E,SAAS,mBAAmB,UAAU,aAAa,sBAAsB;AACzE,SAAS,oBAAoB;AAC7B,SAAyB,2BAA2B;AACpD,SAAS,UAAU,cAAc;AAE1B,SAAS,YAAqB;AACnC,SAAO,OAAO,WAAW;AAC3B;AAOO,MAAM,eAAkD;AAAA,EAC7D,OAAc,UAAkB;AAAA,EAChC,OAAc,cAA2B;AAAA,IACvC,MAAM;AAAA,IACN,SAAS;AAAA,IACT,aAAa,QAAQ,IAAI,YAAY;AAAA,EACvC;AAAA,EACA,OAAe,WAAkC;AAAA,EACzC,eAAsC;AAAA,EACtC,kBAA0C;AAAA,EAC1C;AAAA,EACA,uBAA4C;AAAA,EAC5C;AAAA,EACA;AAAA,EACD,YAAY;AAAA,EACZ,QAAsB;AAAA,EACtB,OAA0C;AAAA,EAC1C;AAAA,EACP;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,UAA6C;AAAA,EAC7C,aAA6D,CAAC;AAAA,EAC9D,WAAkC,CAAC;AAAA,EACnC;AAAA,EACA,kBAAkB,uBAAuB;AAAA,EAEzC;AAAA,EACA;AAAA,EACA;AAAA,EAEA,IAAI,UAAmB;AACrB,WAAO,KAAK,WAAW;AAAA,EACzB;AAAA,EAEA,IAAI,SAA4C;AAC9C,WAAO,KAAK;AAAA,EACd;AAAA,EAEA,IAAI,UAAkB;AACpB,WAAO,eAAe;AAAA,EACxB;AAAA,EAEA,IAAI,YAAY,UAAuB;AACrC,mBAAe,cAAc;AAAA,EAC/B;AAAA,EAEA,IAAI,cAA2B;AAC7B,WAAO,eAAe;AAAA,EACxB;AAAA,EAEA,IAAI,uBAAgC;AAClC,WAAO,KAAK,SAAS,wBAAwB;AAAA,EAC/C;AAAA,EAEA,IAAI,SAAiB;AACnB,WAAO,KAAK;AAAA,EACd;AAAA,EAEA,IAAI,SAAiB;AACnB,QAAI,UAAU,GAAG;AACf,YAAM,uBAAuB;AAAA,QAC3B,gBAAgB,KAAK,SAAS,IAAI,IAAI,OAAO,SAAS,IAAI,CAAC;AAAA,MAC7D;AACA,UAAI,KAAK,kBAAkB,cAAc;AACvC,eAAO;AAAA,MACT;AACA,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA,EAEA,IAAI,eAAe;AACjB,WAAO,KAAK;AAAA,EACd;AAAA,EAEO,YAAY,SAAiC;AA1ItD;AA2II,SAAK,WAAU,wCAAS,qBAAT,mBAA2B;AAC1C,SAAK,WAAU,mCAAS,WAAU;AAClC,SAAK,gBAAiB,QAAQ,IAAI,YAA6B;AAE/D,SAAK,aAAa,oBAAoB;AAAA,MACpC,QAAQ,KAAK;AAAA,MACb,QAAQ,mCAAS;AAAA,MACjB,cAAc,KAAK;AAAA,IACrB,CAAC;AAED,SAAK,gBAAgB,KAAK,WAAW,QAAQ,SAAS;AACtD,mBAAe,aAAa;AAAA,EAC9B;AAAA,EAEO,eAAe,MAAiB,KAAK;AAAA,EAErC,WAAW,WAA0B;AAC1C,SAAK,YAAY;AAAA,EACnB;AAAA,EAEO,oBAAmD;AACxD,WAAO,KAAK;AAAA,EACd;AAAA,EAEO,oBACL,KAC0B;AAC1B,WAAO,KAAK,SAAS,GAAG;AAAA,EAC1B;AAAA,EAEO,0BAA2D;AAChE,WAAO,OAAO,OAAO,EAAE,GAAG,KAAK,SAAS,CAAC;AAAA,EAC3C;AAAA,EAEA,OAAO,oBAAoB,SAAiD;AAC1E,QAAI,CAAC,KAAK,UAAU;AAClB,WAAK,WAAW,IAAI,eAAe,OAAO;AAAA,IAC5C;AACA,WAAO,KAAK;AAAA,EACd;AAAA,EAEA,OAAO,gBAAgB;AACrB,QAAI,eAAe,UAAU;AAC3B,UAAI,eAAe,SAAS,sBAAsB;AAChD,uBAAe,SAAS,qBAAqB;AAC7C,uBAAe,SAAS,uBAAuB;AAAA,MACjD;AACA,qBAAe,WAAW;AAAA,IAC5B;AAAA,EACF;AAAA,EAEA,OAAc,WAAW,SAAgD;AACvE,UAAM,WAAW,KAAK,oBAAoB,OAAO;AACjD,aAAS,YAAY,OAAO;AAC5B,WAAO;AAAA,EACT;AAAA,EAEA,aAAa,OAAO,YAAmD;AACrE,SAAK,KAAK,YAAY,WAAW,CAAC,CAAC;AAAA,EACrC;AAAA,EAEA,OAAc,OAAO,SAAgD;AACnE,UAAM,WAAW,KAAK,oBAAoB;AAC1C,SAAK,SAAS,WAAW,OAAO;AAChC,WAAO;AAAA,EACT;AAAA,EAEA,cAAc,CAAC,YAAyC;AACtD,SAAK,WAAW,KAAK,aAAa,OAAO;AAEzC,QAAI;AACF,UAAI,CAAC,KAAK,SAAS,kBAAkB;AACnC,cAAM,IAAI,MAAM,2DAA2D;AAAA,MAC7E;AAEA,UAAI,CAAC,KAAK,SAAS,QAAQ;AACzB,cAAM,IAAI,MAAM,iDAAiD;AAAA,MACnE;AAEA,WAAK,sBAAsB,KAAK,SAAS,kBAAkB;AAAA,QACzD,SAAS,KAAK,SAAS;AAAA,QACvB,UAAU,KAAK,SAAS;AAAA,MAC1B,CAAC;AAED,YAAM,6BAA6B,KAAK,SAAS,gBAAgB;AAEjE,UAAI,CAAC,4BAA4B;AAC/B,aAAK,uBAAuB,KAAK,sBAAsB;AAAA,MACzD;AAEA,WAAK,qBAAqB,IAAI,kBAAkB;AAChD,WAAK,YAAY,KAAK,mBAAmB,aAAa;AAEtD,WAAK,SAAS,IAAI,OAAO,KAAK,MAAM,KAAK,SAAS;AAClD,WAAK,SAAS,IAAI,OAAO,KAAK,IAAI;AAElC,eAAS,GAAG,OAAO,gBAAgB,MAAM;AACvC,aAAK,yBAAyB,KAAK,QAAQ,IAAI;AAC/C,aAAK,MAAM;AAAA,MACb,CAAC;AAED,WAAK,WAAW,OAAO;AACvB,WAAK,gBAAgB,KAAK,WAAW,QAAQ,OAAO;AAAA,IAGtD,SAAS,OAAO;AACd,WAAK,QAAQ;AACb,WAAK,WAAW,OAAO;AACvB,WAAK,gBAAgB,KAAK,WAAW,QAAQ,OAAO;AACpD,YAAM;AAAA,IACR;AAAA,EACF;AAAA,EAEQ,sBACN,QACA,SACM;AACN,UAAM,WAAU,mCAAS,YAAW;AACpC,SAAK,oBAAoB,QAAQ,EAAE,WAAW,IAAI,cAAc,QAAQ,OAAO,IAAI,QAAQ,EAAE,CAAC;AAE9F,UAAM,cAAc,KAAK,gBAAgB;AACzC,UAAM,OAAO,eAAe,KAAK,mBAAmB;AAAA,MAClD;AAAA,MACA,uBAAuB;AAAA,IACzB,CAAC;AAED,SAAK,OAAO;AAEZ,QAAI,mCAAS,UAAU;AACrB,WAAK,KAAK,WAAW,QAAQ;AAAA,IAC/B;AAEA,SAAK,mBAAmB;AAExB,qBAAiB,KAAK,iBAAiB;AAAA,EACzC;AAAA,EAEO,UAAmB,OAAO,YAA6B;AAC5D,UAAM,eAAc,mCAAS,gBAAe,KAAK,0BAA0B;AAC3E,QAAI,mCAAS,iBAAiB;AAC5B,YAAM,QAAQ,gBAAgB;AAAA,IAChC;AAEA,UAAM,KAAK,KAAK,QAAQ;AAExB,QAAI,mCAAS,gBAAgB;AAC3B,YAAM,QAAQ,eAAe;AAAA,IAC/B;AAEA,UAAM,KAAK,SAAS,WAAW;AAE/B,aAAS,KAAK,OAAO,aAAa,IAAI;AACtC,aAAS,KAAK,OAAO,aAAa,EAAE,OAAO,KAAK,CAAC;AACjD,SAAK,MAAM;AAAA,EACb;AAAA,EAEA,IAAI,iBAAyC;AAC3C,WAAO,KAAK;AAAA,EACd;AAAA,EAEQ,mBAA+B;AACrC,KAAC,YAAY;AACX,YAAM,KAAK,KAAK,eAAe;AAC/B,YAAM,OAAO,KAAK,KAAK;AACvB,WAAK,eAAe;AACpB,WAAK,OAAO;AACZ,YAAM,KAAK,qBAAqB;AAChC,WAAK,MAAM;AAAA,IACb,GAAG;AAGH,WAAO,MAAM;AAAA,IAEb;AAAA,EACF;AAAA,EAEQ,wBAAoC;AAC1C,WAAO,mBAAmB,KAAK,MAAM,OAAO,SAAgC;AAC1E,YAAM,KAAK,KAAK,eAAe;AAC/B,WAAK,eAAe;AACpB,WAAK,OAAO;AACZ,YAAM,KAAK,qBAAqB;AAEhC,WAAK,MAAM;AAAA,IACb,CAAC;AAAA,EACH;AAAA,EAEQ,oBAAgC;AACtC,WAAO,iBAAiB,KAAK,MAAM,OAAO,SAAgC;AACxE,YAAM,KAAK,KAAK,eAAe;AAC/B,WAAK,eAAe;AACpB,WAAK,OAAO;AACZ,YAAM,KAAK,qBAAqB;AAEhC,WAAK,MAAM;AAAA,IACb,CAAC;AAAA,EACH;AAAA,EAEA,MAAc,aAAqC;AACjD,UAAM,KAAK,KAAK,eAAe;AAC/B,QAAI,CAAC,KAAK,KAAK,aAAa;AAC1B,aAAO;AAAA,IACT;AACA,WAAO,WAAW,KAAK,KAAK,WAAW;AAAA,EACzC;AAAA,EAEO,mBAAmB,UAAyC;AACjE,WAAO,mBAAmB,KAAK,MAAM,QAAQ;AAAA,EAC/C;AAAA,EAEO,iBAAiB,UAAyC;AAC/D,WAAO,iBAAiB,KAAK,MAAM,QAAQ;AAAA,EAC7C;AAAA,EAEA,MAAc,uBAAsC;AAClD,QAAI,CAAC,KAAK,cAAc;AACtB,WAAK,kBAAkB;AACvB;AAAA,IACF;AAEA,QAAI;AACF,YAAM,MAAM,MAAM,KAAK,aAAa,iBAAiB;AACrD,WAAK,kBAAkB;AAAA,QACrB,QAAQ;AAAA,QACR,OAAO,IAAI;AAAA,QACX,QAAQ,IAAI;AAAA,QACZ,cAAc,IAAI;AAAA,QAClB,gBAAgB,IAAI;AAAA,QACpB,UAAU,IAAI;AAAA,QACd,gBAAgB,IAAI,kBAAkB;AAAA,QACtC,oBAAoB,IAAI;AAAA,MAC1B;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,4CAA4C,KAAK;AAC/D,WAAK,kBAAkB;AAAA,IACzB;AAAA,EACF;AAAA,EAEQ,sBAAsB,YAA4C;AACxE,QAAI;AACF,YAAM,SAAS,MAAM,kBAAkB,KAAK,IAAI;AAChD,UAAI,QAAQ;AACV,eAAO;AAAA,UACL,QAAQ;AAAA,UACR,MAAM,OAAO;AAAA,QACf;AAAA,MACF;AACA,aAAO;AAAA,IACT,SAAS,OAAO;AACd,YAAM,YAAY,wBAAwB,KAAK;AAC/C,aAAO;AAAA,QACL,QAAQ;AAAA,QACR,SAAS,UAAU;AAAA,QACnB,OAAO,UAAU;AAAA,MACnB;AAAA,IACF;AAAA,EACF;AAAA,EAEO,oBAAoB,YAA0B;AACnD,WAAO,KAAK,oBAAoB;AAAA,EAClC;AAAA,EAEO,cAAc,CAAC,aAAoD;AACxE,SAAK,WAAW,KAAK,QAAQ;AAC7B,QAAI,KAAK,cAAc;AACrB,eAAS;AAAA,QACP,MAAM,KAAK;AAAA,QACX,SAAS,KAAK;AAAA,MAChB,CAAC;AAAA,IACH;AAEA,UAAM,cAAc,MAAM;AACxB,WAAK,aAAa,KAAK,WAAW,OAAO,OAAK,MAAM,QAAQ;AAAA,IAC9D;AACA,WAAO;AAAA,EACT;AAAA,EAEO,KAAoC,IAAI,SAAS;AACtD,SAAK,gBAAgB,GAAG,GAAG,IAAI;AAAA,EACjC;AAAA,EAEO,MAAsC,IAAI,SAAS;AACxD,SAAK,gBAAgB,IAAI,GAAG,IAAI;AAAA,EAClC;AAAA,EAEO,sBAA2C,OAAO;AAAA,IACvD;AAAA,IACA;AAAA,EACF,MAAqB;AACnB,QAAI;AACF,UAAI,CAAC,SAAS;AACZ,cAAM,IAAI,MAAM,4CAA4C;AAAA,MAC9D;AACA,YAAM,gBAAgB,MAAM,QAAQ,iBAAiB;AACrD,YAAM,cAAc,IAAI,QAAQ,aAAa;AAC7C,YAAM,YAAY,OAAO,KAAK,aAAa,EAAE;AAE7C,UAAI,aAAa;AACf,cAAM,KAAK,SAAS,KAAK,6BAA6B,WAAW,CAAC;AAAA,MACpE;AAEA,WAAK,yBAAyB,OAAO;AACrC,WAAK,MAAM;AAAA,IACb,SAAS,OAAO;AACd,cAAQ,MAAM,mDAAmD,KAAK;AAAA,IACxE;AAAA,EACF;AAAA,EAEO,WAAW,OAAO,IAAwB,YAAgD;AAC/F,QAAI,CAAC,MAAM,CAAC,UAAU,GAAG;AACvB;AAAA,IACF;AAEA,QAAI,QAAQ,IAAI,IAAI,IAAI,OAAO,SAAS,IAAI;AAE5C,QAAI,CAAC,KAAK,0BAA0B,SAAS,MAAM,QAAQ,GAAG;AAC5D,cAAQ;AAAA,QACN,oBAAoB,MAAM,QAAQ;AAAA,MACpC;AACA,cAAQ,IAAI,IAAI,KAAK,OAAO,SAAS,IAAI;AAAA,IAC3C;AAEA,UAAM,kBACJ,mCAAS,YAAW,KAAK,SAAS,gBAC9B,KAAK,SAAS,gBACd,KAAK,SAAS;AAEpB,QAAK,MAAM,WAAW,UAAU,MAAM,WAAW,OAAO,SAAS,UAAW,CAAC,gBAAgB;AAC3F,qBAAe,KAAK;AACpB;AAAA,IACF;AAEA,UAAM,WAAW;AAAA,MACf,IAAI,mCAAS,YAAW,EAAE,qBAAqB,mCAAS,SAAS,IAAI,CAAC;AAAA,MACtE;AAAA,IACF;AAGA,WAAO,MAAM,eAAe,YAAY,KAAK,GAAG,QAAQ;AAAA,EAC1D;AAAA,EAEO,+BAA+B,CAAC,OAAuB;AAC5D,QAAI,KAAK,kBAAkB,cAAc;AACvC,aAAO;AAAA,IACT;AACA,UAAM,UAAU,OAAO,SAAS;AAChC,UAAM,MAAM,IAAI,IAAI,IAAI,OAAO;AAE/B,QAAI,IAAI,WAAW,OAAO,SAAS,QAAQ;AACzC,aAAO,IAAI;AAAA,IACb;AAEA,WAAO,IAAI,SAAS;AAAA,EACtB;AAAA,EAEA,YAAY,CAAC,KAAgC,YAAqC;AAChF,QAAI,CAAC,OAAO,CAAC,KAAK,SAAS;AACzB,aAAO;AAAA,IACT;AAEA,UAAM,gBAAgB,QAAQ,cAAc,KAAK,SAAS,YAAY,KAAK,SAAS;AACpF,UAAM,kBAAkB,QAAQ,cAAc,aAAa;AAC3D,UAAM,OAAO,iBAAiB;AAE9B,UAAM,eAAe,IAAI,aAAa,KAAK,UAAU,OAAO,EAAE,eAAe;AAC7E,UAAM,iBAAiB;AAAA,MACrB;AAAA,QACE;AAAA,QACA,kBAAkB,CAAC,YAAY;AAAA,MACjC;AAAA,MACA;AAAA,QACE,WAAW;AAAA,QACX,YAAY;AAAA,MACd;AAAA,IACF;AACA,WAAO,KAAK,6BAA6B,cAAc;AAAA,EACzD;AAAA,EAEA,2BAA2B,MAAc;AACvC,WAAO,KAAK,6BAA6B,IAAI,aAAa,KAAK,QAAQ,EAAE,kBAAkB,CAAC;AAAA,EAC9F;AAAA,EAEA,4BAA4B,MAAc;AACxC,QAAI,CAAC,KAAK,SAAS,iBAAiB;AAClC,aAAO;AAAA,IACT;AACA,WAAO,KAAK,6BAA6B,KAAK,SAAS,eAAe;AAAA,EACxE;AAAA,EAEO,mBAAmB,OAAO,YAAsD;AACrF,QAAI,UAAU,GAAG;AACf,aAAO,KAAK,SAAS,KAAK,mBAAmB,OAAO,CAAC;AAAA,IACvD;AACA;AAAA,EACF;AAAA,EAEO,mBAAmB,OAAO,YAAsD;AACrF,QAAI,UAAU,GAAG;AACf,aAAO,KAAK,SAAS,KAAK,mBAAmB,CAAC;AAAA,IAChD;AACA;AAAA,EACF;AAAA,EAEO,sBAAsB,YAA8B;AACzD,QAAI,UAAU,GAAG;AACf,aAAO,KAAK,SAAS,KAAK,yBAAyB,CAAC;AAAA,IACtD;AACA;AAAA,EACF;AAAA,EAEA,sBAAsB,MAAY;AAChC,UAAM,IAAI,MAAM,4CAA4C;AAAA,EAC9D;AAAA,EAEO,qBAAqB,CAAC,YAA4C;AACvE,WAAO,KAAK,UAAU,aAAa;AAAA,MACjC,GAAG;AAAA,MACH,yBAAwB,mCAAS,2BAA0B,OAAO,SAAS;AAAA,IAC7E,CAAC;AAAA,EACH;AAAA,EAEO,qBAAqB,CAAC,YAA4C;AACvE,WAAO,KAAK,UAAU,aAAa;AAAA,MACjC,GAAG;AAAA,MACH,yBAAwB,mCAAS,2BAA0B,OAAO,SAAS;AAAA,IAC7E,CAAC;AAAA,EACH;AAAA,EAEA,IAAI,4BAA4B;AAC9B,QAAI,mBAAmB;AAEvB,QAAI,KAAK,SAAS,0BAA0B;AAC1C,yBAAmB,iBAAiB,OAAO,KAAK,SAAS,wBAAwB;AAAA,IACnF;AAEA,WAAO;AAAA,EACT;AAAA,EAEA,wBAAwB,CAAC,YAA2B;AAClD,QAAI,CAAC,KAAK,oBAAoB;AAC5B,WAAK,qBAAqB;AAAA,IAC5B;AAAA,EACF;AAAA,EAEA,eAAe,CAAC,YAA0D;AACxE,WAAO;AAAA,MACL,GAAG;AAAA,IACL;AAAA,EACF;AAAA,EAEA,QAAQ,MAAY;AAClB,eAAW,YAAY,KAAK,YAAY;AACtC,eAAS;AAAA,QACP,MAAM,KAAK;AAAA,QACX,SAAS,KAAK;AAAA,MAChB,CAAC;AAAA,IACH;AAAA,EACF;AAAA,EAEA,WAAW,WAAuC;AAChD,QAAI,KAAK,YAAY,WAAW;AAC9B,WAAK,UAAU;AACf,WAAK,gBAAgB,KAAK,WAAW,QAAQ,KAAK,OAAO;AAEzD,UAAI,cAAc,SAAS;AACzB,aAAK,gBAAgB,KAAK,WAAW,QAAQ,OAAO;AAAA,MACtD;AAAA,IACF;AAAA,EACF;AAAA,EAEA,2BAA2B,CAAC,YAAmC;AAC7D,SAAK,OAAO;AACZ,SAAK,eAAe;AAAA,EACtB;AAAA,EAEA,kBAAkB,MAAM;AACtB,UAAM,kBAAkB,KAAK,SAAS;AAEtC,YAAQ,iBAAiB;AAAA,MACvB,KAAK;AACH,eAAO;AAAA,MACT,KAAK;AACH,eAAO;AAAA,MACT,KAAK;AACH,eAAO;AAAA,MACT,KAAK;AAAA,MACL;AACE,eAAO;AAAA,IACX;AAAA,EACF;AAAA,EAEA,gBAAgB,MAA0B;AACxC,QAAI,OAAO,YAAY,YAAa,QAAO;AAC3C,WAAO,QAAQ,IAAI;AAAA,EACrB;AAAA,EAEA,qBAAqB,MAAY;AAC/B,UAAM,OAAO,KAAK,cAAc;AAChC,UAAM,QAAQ,KAAK,kBAAkB;AACrC,UAAM,oBAAoB,SAAS,CAAC,CAAC;AACrC,QAAI,CAAC,qBAAqB,CAAC,MAAM;AAC/B;AAAA,IACF;AAEA,UAAM,cAAc,KAAK,WAAW,MAAM,IAAI,OAAO,UAAU,IAAI;AAEnE,QAAI;AAEF,0BAAoB,KAAK,MAAM,aAAa,EAAE,iBAAiB,MAAM,CAAC;AACtE,cAAQ,KAAK,oDAAoD,WAAW,EAAE;AAAA,IAChF,SAAS,OAAO;AACd,cAAQ,MAAM,4DAA4D,KAAK;AAAA,IACjF;AAAA,EACF;AACF;","names":[]}

package/dist/esm/instance/TernAuthServer.js

@@ -1,73 +0,0 @@
-import {
-  initializeServerApp
-} from "firebase/app";
-import { getAuth, getIdToken } from "firebase/auth";
-class TernServerAuth {
-  static instance = null;
-  auth;
-  #options = {};
-  constructor() {
-  }
-  static getInstance() {
-    if (!this.instance) {
-      this.instance = new TernServerAuth();
-    }
-    return this.instance;
-  }
-  static initialize(options) {
-    const instance = this.getInstance();
-    instance.#initialize(options);
-    return instance;
-  }
-  #initialize(options) {
-    this.#options = this.#initOptions(options);
-  }
-  static clearInstance() {
-    this.instance = null;
-  }
-  getAuthIdToken = async () => {
-    await this.auth.authStateReady();
-    if (!this.auth.currentUser) return;
-    return await getIdToken(this.auth.currentUser);
-  };
-  getAuthenticatedAppFromHeaders = async (headers) => {
-    const authHeader = headers.get("Authorization");
-    const idToken = authHeader == null ? void 0 : authHeader.split("Bearer ")[1];
-    let appSettings = {};
-    appSettings = {
-      releaseOnDeref: headers
-    };
-    if (idToken && idToken.trim()) {
-      appSettings.authIdToken = idToken;
-    }
-    return this.getServerApp(appSettings);
-  };
-  getServerApp = async (appSettings) => {
-    const firebaseServerConfig = this.#options.firebaseServerConfig;
-    if (!firebaseServerConfig) {
-      throw new Error(
-        "Firebase server configuration is required to initialize the server app"
-      );
-    }
-    const firebaseServerApp = initializeServerApp(
-      firebaseServerConfig,
-      appSettings || {}
-    );
-    this.auth = getAuth(firebaseServerApp);
-    await this.auth.authStateReady();
-    return {
-      firebaseServerApp,
-      currentUser: this.auth.currentUser,
-      auth: this.auth
-    };
-  };
-  #initOptions = (options) => {
-    return {
-      ...options
-    };
-  };
-}
-export {
-  TernServerAuth
-};
-//# sourceMappingURL=TernAuthServer.js.map

package/dist/esm/instance/TernAuthServer.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../src/instance/TernAuthServer.ts"],"sourcesContent":["import type { TernSecureConfig, TernSecureUser } from \"@tern-secure/types\";\nimport type {\n  FirebaseServerApp,\n  FirebaseServerAppSettings} from \"firebase/app\";\nimport {\n  initializeServerApp\n} from \"firebase/app\";\nimport type { Auth} from \"firebase/auth\";\nimport { getAuth, getIdToken } from \"firebase/auth\";\n\ntype TernSecureServerConfig = {\n  apiKey: string;\n};\nexport interface TernServerAuthOptions {\n  firebaseConfig?: TernSecureConfig;\n  firebaseServerConfig?: TernSecureServerConfig;\n  authIdToken?: string;\n}\n\nexport interface AuthenticatedApp {\n  firebaseServerApp: FirebaseServerApp;\n  auth: Auth;\n  currentUser?: TernSecureUser | null;\n}\n\nexport class TernServerAuth {\n  private static instance: TernServerAuth | null = null;\n  private auth!: Auth;\n  #options: TernServerAuthOptions = {};\n\n  public constructor() {}\n\n  static getInstance(): TernServerAuth {\n    if (!this.instance) {\n      this.instance = new TernServerAuth();\n    }\n    return this.instance;\n  }\n\n  public static initialize(options: TernServerAuthOptions): TernServerAuth {\n    const instance = this.getInstance();\n    instance.#initialize(options);\n    return instance;\n  }\n\n  #initialize(options: TernServerAuthOptions): void {\n    this.#options = this.#initOptions(options);\n  }\n\n  static clearInstance(): void {\n    this.instance = null;\n  }\n\n  getAuthIdToken = async (): Promise<string | undefined> => {\n    await this.auth.authStateReady();\n    if (!this.auth.currentUser) return;\n    return await getIdToken(this.auth.currentUser);\n  };\n\n  getAuthenticatedAppFromHeaders = async (headers: {\n    get: (key: string) => string | null;\n  }): Promise<AuthenticatedApp> => {\n    const authHeader = headers.get(\"Authorization\");\n    const idToken = authHeader?.split(\"Bearer \")[1];\n\n    let appSettings: FirebaseServerAppSettings = {};\n\n    appSettings = {\n      releaseOnDeref: headers,\n    };\n\n    if (idToken && idToken.trim()) {\n      appSettings.authIdToken = idToken;\n    }\n\n    return this.getServerApp(appSettings);\n  };\n\n  getServerApp = async (\n    appSettings?: FirebaseServerAppSettings\n  ): Promise<AuthenticatedApp> => {\n    const firebaseServerConfig = this.#options.firebaseServerConfig;\n    if (!firebaseServerConfig) {\n      throw new Error(\n        \"Firebase server configuration is required to initialize the server app\"\n      );\n    }\n\n    const firebaseServerApp = initializeServerApp(\n      firebaseServerConfig,\n      appSettings || {}\n    );\n\n    this.auth = getAuth(firebaseServerApp);\n    await this.auth.authStateReady();\n\n    return {\n      firebaseServerApp,\n      currentUser: this.auth.currentUser,\n      auth: this.auth,\n    };\n  };\n\n  #initOptions = (options?: TernServerAuthOptions): TernServerAuthOptions => {\n    return {\n      ...options,\n    };\n  };\n}\n"],"mappings":"AAIA;AAAA,EACE;AAAA,OACK;AAEP,SAAS,SAAS,kBAAkB;AAiB7B,MAAM,eAAe;AAAA,EAC1B,OAAe,WAAkC;AAAA,EACzC;AAAA,EACR,WAAkC,CAAC;AAAA,EAE5B,cAAc;AAAA,EAAC;AAAA,EAEtB,OAAO,cAA8B;AACnC,QAAI,CAAC,KAAK,UAAU;AAClB,WAAK,WAAW,IAAI,eAAe;AAAA,IACrC;AACA,WAAO,KAAK;AAAA,EACd;AAAA,EAEA,OAAc,WAAW,SAAgD;AACvE,UAAM,WAAW,KAAK,YAAY;AAClC,aAAS,YAAY,OAAO;AAC5B,WAAO;AAAA,EACT;AAAA,EAEA,YAAY,SAAsC;AAChD,SAAK,WAAW,KAAK,aAAa,OAAO;AAAA,EAC3C;AAAA,EAEA,OAAO,gBAAsB;AAC3B,SAAK,WAAW;AAAA,EAClB;AAAA,EAEA,iBAAiB,YAAyC;AACxD,UAAM,KAAK,KAAK,eAAe;AAC/B,QAAI,CAAC,KAAK,KAAK,YAAa;AAC5B,WAAO,MAAM,WAAW,KAAK,KAAK,WAAW;AAAA,EAC/C;AAAA,EAEA,iCAAiC,OAAO,YAEP;AAC/B,UAAM,aAAa,QAAQ,IAAI,eAAe;AAC9C,UAAM,UAAU,yCAAY,MAAM,WAAW;AAE7C,QAAI,cAAyC,CAAC;AAE9C,kBAAc;AAAA,MACZ,gBAAgB;AAAA,IAClB;AAEA,QAAI,WAAW,QAAQ,KAAK,GAAG;AAC7B,kBAAY,cAAc;AAAA,IAC5B;AAEA,WAAO,KAAK,aAAa,WAAW;AAAA,EACtC;AAAA,EAEA,eAAe,OACb,gBAC8B;AAC9B,UAAM,uBAAuB,KAAK,SAAS;AAC3C,QAAI,CAAC,sBAAsB;AACzB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,oBAAoB;AAAA,MACxB;AAAA,MACA,eAAe,CAAC;AAAA,IAClB;AAEA,SAAK,OAAO,QAAQ,iBAAiB;AACrC,UAAM,KAAK,KAAK,eAAe;AAE/B,WAAO;AAAA,MACL;AAAA,MACA,aAAa,KAAK,KAAK;AAAA,MACvB,MAAM,KAAK;AAAA,IACb;AAAA,EACF;AAAA,EAEA,eAAe,CAAC,YAA2D;AACzE,WAAO;AAAA,MACL,GAAG;AAAA,IACL;AAAA,EACF;AACF;","names":[]}