@tern-secure/nextjs 3.3.5 → 3.4.1

package/dist/cjs/app-router/client/TernSecureProvider.js

@@ -0,0 +1,33 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var TernSecureProvider_exports = {};
+__export(TernSecureProvider_exports, {
+  TernSecureProvider: () => TernSecureProvider
+});
+module.exports = __toCommonJS(TernSecureProvider_exports);
+var import_jsx_runtime = require("react/jsx-runtime");
+var import_TernSecureClientProvider = require("../../boundary/TernSecureClientProvider");
+async function TernSecureProvider({ children }) {
+  return /* @__PURE__ */ (0, import_jsx_runtime.jsx)(import_TernSecureClientProvider.TernSecureClientProvider, { children });
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  TernSecureProvider
+});
+//# sourceMappingURL=TernSecureProvider.js.map

package/dist/cjs/app-router/client/TernSecureProvider.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/client/TernSecureProvider.tsx"],"sourcesContent":["import React from \"react\"\nimport { TernSecureClientProvider } from \"../../boundary/TernSecureClientProvider\"\n\n\n// Loading fallback component\n/*function TernSecureLoadingFallback() {\n  return (\n    <div>\n      <span className=\"sr-only\">Loading...</span>\n    </div>\n  )\n}*/\n/**\n * Root Provider for TernSecure\n * Use this in your Next.js App Router root layout\n * Automatically handles client/server boundary and authentication state\n * \n * @example\n * /// app/layout.tsx\n * import { TernSecureProvider } from '@tern/secure'\n * \n * export default function RootLayout({ children }) {\n *   return (\n *     <html>\n *       <body>\n *         <TernSecureProvider>\n *           {children}\n *         </TernSecureProvider>\n *       </body>\n *     </html>\n *   )\n * }\n */\nexport async function TernSecureProvider({ children }: { children: React.ReactNode }) {\n  return (\n    <TernSecureClientProvider>\n        {children}\n    </TernSecureClientProvider>\n  )\n}"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAmCI;AAlCJ,sCAAyC;AAgCzC,eAAsB,mBAAmB,EAAE,SAAS,GAAkC;AACpF,SACE,4CAAC,4DACI,UACL;AAEJ;","names":[]}

package/dist/cjs/app-router/client/actions.js

@@ -0,0 +1,180 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var actions_exports = {};
+__export(actions_exports, {
+  createUser: () => createUser,
+  handleAuthRedirectResult: () => handleAuthRedirectResult,
+  resendEmailVerification: () => resendEmailVerification,
+  signInWithEmail: () => signInWithEmail,
+  signInWithMicrosoft: () => signInWithMicrosoft,
+  signInWithRedirectGoogle: () => signInWithRedirectGoogle
+});
+module.exports = __toCommonJS(actions_exports);
+var import_client_init = require("../../utils/client-init");
+var import_auth = require("firebase/auth");
+var import_sessionTernSecure = require("../server/sessionTernSecure");
+async function createUser(email, password) {
+  const auth = (0, import_client_init.TernSecureAuth)();
+  try {
+    const actionCodeSettings = {
+      url: `${window.location.origin}/sign-in`,
+      handleCodeInApp: true
+    };
+    const userCredential = await (0, import_auth.createUserWithEmailAndPassword)(auth, email, password);
+    await (0, import_auth.sendEmailVerification)(userCredential.user, actionCodeSettings);
+    return { success: true, message: "Account created successfully.", user: userCredential.user };
+  } catch (error) {
+    if (error instanceof Error) {
+      switch (error.message) {
+        case "auth/too-many-requests":
+          throw new Error("Too many attempts. Please try again later.");
+        case "auth/network-request-failed":
+          throw new Error("Network disconnected. Please try again later.");
+        case "auth/email-already-in-use":
+          throw new Error("Email is already registered.");
+        case "auth/invalid-email":
+          throw new Error("Invalid email address.");
+        case "auth/operation-not-allowed":
+          throw new Error("Email/password accounts are not enabled.");
+        case "auth/weak-password":
+          throw new Error("Password is too weak.");
+        default:
+          throw new Error(error.message);
+      }
+    }
+    throw new Error("Failed to create account");
+  }
+}
+async function signInWithEmail(email, password) {
+  const auth = (0, import_client_init.TernSecureAuth)();
+  try {
+    const UserCredential = await (0, import_auth.signInWithEmailAndPassword)(auth, email, password);
+    const idToken = await UserCredential.user.getIdToken();
+    const res = await (0, import_sessionTernSecure.createSessionCookie)(idToken);
+    if (res.success) {
+      return { success: true, message: "Connected." };
+    } else {
+      throw new Error(res.message);
+    }
+  } catch (error) {
+    const errorMessage = error instanceof Error ? error.message : "Failed to sign in";
+    throw new Error(errorMessage);
+  }
+}
+async function signInWithRedirectGoogle() {
+  const auth = (0, import_client_init.TernSecureAuth)();
+  const provider = new import_auth.GoogleAuthProvider();
+  provider.setCustomParameters({
+    login_hint: "user@example.com",
+    prompt: "select_account"
+  });
+  try {
+    await (0, import_auth.signInWithRedirect)(auth, provider);
+    return { success: true, message: "Redirect initiated" };
+  } catch (error) {
+    console.error("Error during Google sign-in:", error);
+    return { success: false, error: "Failed to sign in with Google" };
+  }
+}
+async function signInWithMicrosoft() {
+  const auth = (0, import_client_init.TernSecureAuth)();
+  const provider = new import_auth.OAuthProvider("microsoft.com");
+  provider.setCustomParameters({
+    prompt: "consent"
+  });
+  try {
+    await (0, import_auth.signInWithRedirect)(auth, provider);
+    return { success: true, message: "Redirect initiated" };
+  } catch (error) {
+    console.error("Error during Google sign-in:", error);
+    return { success: false, error: "Failed to sign in with Google" };
+  }
+}
+async function handleAuthRedirectResult() {
+  const auth = (0, import_client_init.TernSecureAuth)();
+  try {
+    const result = await (0, import_auth.getRedirectResult)(auth);
+    if (result) {
+      const user = result.user;
+      return { success: true, user };
+    } else {
+      return { success: false, error: "No redirect result" };
+    }
+  } catch (error) {
+    console.error("Error handling auth redirect result:", error);
+    return { success: false, error: error.message || "Failed to handle auth redirect", code: error.code };
+  }
+}
+async function resendEmailVerification() {
+  const auth = (0, import_client_init.TernSecureAuth)();
+  try {
+    const user = auth.currentUser;
+    if (!user) {
+      throw new Error("No user found. Please try signing up again.");
+    }
+    await user.reload();
+    if (user.emailVerified) {
+      return {
+        success: true,
+        message: "Email is already verified. You can sign in.",
+        isVerified: true
+      };
+    }
+    const actionCodeSettings = {
+      url: `${window.location.origin}/sign-in`,
+      handleCodeInApp: true
+    };
+    await (0, import_auth.sendEmailVerification)(user, actionCodeSettings);
+    return {
+      success: true,
+      message: "Verification email sent successfully.",
+      isVerified: false
+    };
+  } catch (error) {
+    if (error instanceof Error) {
+      switch (error.message) {
+        case "auth/too-many-requests":
+          throw new Error("Too many attempts. Please try again later.");
+        case "auth/network-request-failed":
+          throw new Error("Network disconnected. Please try again later.");
+        case "auth/email-already-in-use":
+          throw new Error("Email is already registered.");
+        case "auth/invalid-email":
+          throw new Error("Invalid email address.");
+        case "auth/operation-not-allowed":
+          throw new Error("Email/password accounts are not enabled.");
+        case "auth/weak-password":
+          throw new Error("Password is too weak.");
+        default:
+          throw new Error(error.message);
+      }
+    }
+    throw new Error("Failed to resend verification email.");
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  createUser,
+  handleAuthRedirectResult,
+  resendEmailVerification,
+  signInWithEmail,
+  signInWithMicrosoft,
+  signInWithRedirectGoogle
+});
+//# sourceMappingURL=actions.js.map

package/dist/cjs/app-router/client/actions.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/client/actions.ts"],"sourcesContent":["import { TernSecureAuth } from '../../utils/client-init'\nimport { signInWithEmailAndPassword, signInWithRedirect, getRedirectResult, GoogleAuthProvider, OAuthProvider, createUserWithEmailAndPassword, sendEmailVerification } from 'firebase/auth'\nimport { createSessionCookie } from '../server/sessionTernSecure'\n\nexport async function createUser(email: string, password: string) {\n  const auth = TernSecureAuth()\n  try {\n    \n    const actionCodeSettings = {\n      url: `${window.location.origin}/sign-in`,\n      handleCodeInApp: true\n    };\n\n    const userCredential = await createUserWithEmailAndPassword(auth, email, password);\n\n    await sendEmailVerification(userCredential.user, actionCodeSettings)\n    \n    return { success: true, message: 'Account created successfully.', user: userCredential.user };\n\n  } catch (error) {\n    // Handle specific Firebase auth errors\n    if (error instanceof Error) {\n      switch (error.message) {\n        case 'auth/too-many-requests':\n          throw new Error('Too many attempts. Please try again later.');\n        case 'auth/network-request-failed':\n            throw new Error('Network disconnected. Please try again later.');\n        case 'auth/email-already-in-use':\n          throw new Error('Email is already registered.');\n        case 'auth/invalid-email':\n          throw new Error('Invalid email address.');\n        case 'auth/operation-not-allowed':\n          throw new Error('Email/password accounts are not enabled.');\n        case 'auth/weak-password':\n          throw new Error('Password is too weak.');\n        default:\n          throw new Error(error.message);\n      }\n    }\n    throw new Error('Failed to create account');\n  }\n}\n\n\nexport async function signInWithEmail(email: string, password: string){\n  const auth = TernSecureAuth()\n  try {\n  const UserCredential = await signInWithEmailAndPassword(auth, email, password)\n  const idToken = await UserCredential.user.getIdToken();\n\n  const res = await createSessionCookie(idToken);\n\n  if(res.success) {\n    return { success: true, message: 'Connected.' };\n  } else {\n    throw new Error(res.message);\n  }\n} catch (error){\n  const errorMessage = error instanceof Error ? error.message : 'Failed to sign in';\n  throw new Error(errorMessage);\n}\n} \n\nexport async function signInWithRedirectGoogle() {\n  const auth = TernSecureAuth()\n  const provider = new GoogleAuthProvider()\n  provider.setCustomParameters({\n    login_hint: 'user@example.com',\n    prompt: 'select_account'\n  })\n\n  try {\n    await signInWithRedirect(auth, provider)\n    return { success: true, message: 'Redirect initiated' }\n  } catch (error) {\n    console.error('Error during Google sign-in:', error)\n    return { success: false, error: 'Failed to sign in with Google' }\n  }\n}\n\n\nexport async function signInWithMicrosoft() {\n  const auth = TernSecureAuth()\n  const provider = new OAuthProvider('microsoft.com')\n  provider.setCustomParameters({\n    prompt: 'consent'\n  })\n\n  try {\n    await signInWithRedirect(auth, provider)\n    return { success: true, message: 'Redirect initiated' }\n  } catch (error) {\n    console.error('Error during Google sign-in:', error)\n    return { success: false, error: 'Failed to sign in with Google' }\n  }\n}\n\n\nexport async function handleAuthRedirectResult() {\n  const auth = TernSecureAuth()\n  try {\n    const result = await getRedirectResult(auth)\n    if (result) {\n      const user = result.user\n      return { success: true, user }\n    } else {\n      return { success: false, error: 'No redirect result' }\n    }\n  } catch (error: any) {\n    console.error('Error handling auth redirect result:', error)\n    return { success: false, error: error.message || 'Failed to handle auth redirect', code: error.code }\n  }\n}\n\n\nexport async function resendEmailVerification() {\n  const auth = TernSecureAuth()\n  try {\n    const user = auth.currentUser;\n    if (!user) {\n      throw new Error('No user found. Please try signing up again.');\n    }\n\n    await user.reload();\n\n    if (user.emailVerified) {\n      return { \n        success: true, \n        message: 'Email is already verified. You can sign in.',\n        isVerified: true \n      };\n    }\n\n    const actionCodeSettings = {\n      url: `${window.location.origin}/sign-in`,\n      handleCodeInApp: true,\n    };\n\n    await sendEmailVerification(user, actionCodeSettings);\n    return { \n      success: true, \n      message: 'Verification email sent successfully.',\n      isVerified: false\n     };\n    } catch (error) {\n      if (error instanceof Error) {\n        switch (error.message) {\n          case 'auth/too-many-requests':\n            throw new Error('Too many attempts. Please try again later.');\n          case 'auth/network-request-failed':\n              throw new Error('Network disconnected. Please try again later.');\n          case 'auth/email-already-in-use':\n            throw new Error('Email is already registered.');\n          case 'auth/invalid-email':\n            throw new Error('Invalid email address.');\n          case 'auth/operation-not-allowed':\n            throw new Error('Email/password accounts are not enabled.');\n          case 'auth/weak-password':\n            throw new Error('Password is too weak.');\n          default:\n            throw new Error(error.message);\n        }\n      }\n      throw new Error('Failed to resend verification email.');\n    }\n}"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,yBAA+B;AAC/B,kBAA4K;AAC5K,+BAAoC;AAEpC,eAAsB,WAAW,OAAe,UAAkB;AAChE,QAAM,WAAO,mCAAe;AAC5B,MAAI;AAEF,UAAM,qBAAqB;AAAA,MACzB,KAAK,GAAG,OAAO,SAAS,MAAM;AAAA,MAC9B,iBAAiB;AAAA,IACnB;AAEA,UAAM,iBAAiB,UAAM,4CAA+B,MAAM,OAAO,QAAQ;AAEjF,cAAM,mCAAsB,eAAe,MAAM,kBAAkB;AAEnE,WAAO,EAAE,SAAS,MAAM,SAAS,iCAAiC,MAAM,eAAe,KAAK;AAAA,EAE9F,SAAS,OAAO;AAEd,QAAI,iBAAiB,OAAO;AAC1B,cAAQ,MAAM,SAAS;AAAA,QACrB,KAAK;AACH,gBAAM,IAAI,MAAM,4CAA4C;AAAA,QAC9D,KAAK;AACD,gBAAM,IAAI,MAAM,+CAA+C;AAAA,QACnE,KAAK;AACH,gBAAM,IAAI,MAAM,8BAA8B;AAAA,QAChD,KAAK;AACH,gBAAM,IAAI,MAAM,wBAAwB;AAAA,QAC1C,KAAK;AACH,gBAAM,IAAI,MAAM,0CAA0C;AAAA,QAC5D,KAAK;AACH,gBAAM,IAAI,MAAM,uBAAuB;AAAA,QACzC;AACE,gBAAM,IAAI,MAAM,MAAM,OAAO;AAAA,MACjC;AAAA,IACF;AACA,UAAM,IAAI,MAAM,0BAA0B;AAAA,EAC5C;AACF;AAGA,eAAsB,gBAAgB,OAAe,UAAiB;AACpE,QAAM,WAAO,mCAAe;AAC5B,MAAI;AACJ,UAAM,iBAAiB,UAAM,wCAA2B,MAAM,OAAO,QAAQ;AAC7E,UAAM,UAAU,MAAM,eAAe,KAAK,WAAW;AAErD,UAAM,MAAM,UAAM,8CAAoB,OAAO;AAE7C,QAAG,IAAI,SAAS;AACd,aAAO,EAAE,SAAS,MAAM,SAAS,aAAa;AAAA,IAChD,OAAO;AACL,YAAM,IAAI,MAAM,IAAI,OAAO;AAAA,IAC7B;AAAA,EACF,SAAS,OAAM;AACb,UAAM,eAAe,iBAAiB,QAAQ,MAAM,UAAU;AAC9D,UAAM,IAAI,MAAM,YAAY;AAAA,EAC9B;AACA;AAEA,eAAsB,2BAA2B;AAC/C,QAAM,WAAO,mCAAe;AAC5B,QAAM,WAAW,IAAI,+BAAmB;AACxC,WAAS,oBAAoB;AAAA,IAC3B,YAAY;AAAA,IACZ,QAAQ;AAAA,EACV,CAAC;AAED,MAAI;AACF,cAAM,gCAAmB,MAAM,QAAQ;AACvC,WAAO,EAAE,SAAS,MAAM,SAAS,qBAAqB;AAAA,EACxD,SAAS,OAAO;AACd,YAAQ,MAAM,gCAAgC,KAAK;AACnD,WAAO,EAAE,SAAS,OAAO,OAAO,gCAAgC;AAAA,EAClE;AACF;AAGA,eAAsB,sBAAsB;AAC1C,QAAM,WAAO,mCAAe;AAC5B,QAAM,WAAW,IAAI,0BAAc,eAAe;AAClD,WAAS,oBAAoB;AAAA,IAC3B,QAAQ;AAAA,EACV,CAAC;AAED,MAAI;AACF,cAAM,gCAAmB,MAAM,QAAQ;AACvC,WAAO,EAAE,SAAS,MAAM,SAAS,qBAAqB;AAAA,EACxD,SAAS,OAAO;AACd,YAAQ,MAAM,gCAAgC,KAAK;AACnD,WAAO,EAAE,SAAS,OAAO,OAAO,gCAAgC;AAAA,EAClE;AACF;AAGA,eAAsB,2BAA2B;AAC/C,QAAM,WAAO,mCAAe;AAC5B,MAAI;AACF,UAAM,SAAS,UAAM,+BAAkB,IAAI;AAC3C,QAAI,QAAQ;AACV,YAAM,OAAO,OAAO;AACpB,aAAO,EAAE,SAAS,MAAM,KAAK;AAAA,IAC/B,OAAO;AACL,aAAO,EAAE,SAAS,OAAO,OAAO,qBAAqB;AAAA,IACvD;AAAA,EACF,SAAS,OAAY;AACnB,YAAQ,MAAM,wCAAwC,KAAK;AAC3D,WAAO,EAAE,SAAS,OAAO,OAAO,MAAM,WAAW,kCAAkC,MAAM,MAAM,KAAK;AAAA,EACtG;AACF;AAGA,eAAsB,0BAA0B;AAC9C,QAAM,WAAO,mCAAe;AAC5B,MAAI;AACF,UAAM,OAAO,KAAK;AAClB,QAAI,CAAC,MAAM;AACT,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,UAAM,KAAK,OAAO;AAElB,QAAI,KAAK,eAAe;AACtB,aAAO;AAAA,QACL,SAAS;AAAA,QACT,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,IACF;AAEA,UAAM,qBAAqB;AAAA,MACzB,KAAK,GAAG,OAAO,SAAS,MAAM;AAAA,MAC9B,iBAAiB;AAAA,IACnB;AAEA,cAAM,mCAAsB,MAAM,kBAAkB;AACpD,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS;AAAA,MACT,YAAY;AAAA,IACb;AAAA,EACD,SAAS,OAAO;AACd,QAAI,iBAAiB,OAAO;AAC1B,cAAQ,MAAM,SAAS;AAAA,QACrB,KAAK;AACH,gBAAM,IAAI,MAAM,4CAA4C;AAAA,QAC9D,KAAK;AACD,gBAAM,IAAI,MAAM,+CAA+C;AAAA,QACnE,KAAK;AACH,gBAAM,IAAI,MAAM,8BAA8B;AAAA,QAChD,KAAK;AACH,gBAAM,IAAI,MAAM,wBAAwB;AAAA,QAC1C,KAAK;AACH,gBAAM,IAAI,MAAM,0CAA0C;AAAA,QAC5D,KAAK;AACH,gBAAM,IAAI,MAAM,uBAAuB;AAAA,QACzC;AACE,gBAAM,IAAI,MAAM,MAAM,OAAO;AAAA,MACjC;AAAA,IACF;AACA,UAAM,IAAI,MAAM,sCAAsC;AAAA,EACxD;AACJ;","names":[]}

package/dist/cjs/app-router/route-handler/internal-route.js

@@ -0,0 +1,45 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var internal_route_exports = {};
+__export(internal_route_exports, {
+  handleInternalRoute: () => handleInternalRoute,
+  internalRoutes: () => internalRoutes
+});
+module.exports = __toCommonJS(internal_route_exports);
+var import_verify = require("../../components/verify");
+const internalRoutes = {
+  verify: {
+    pattern: /^\/sign-up\/verify$/,
+    component: import_verify.Verify
+  }
+};
+function handleInternalRoute(pathname) {
+  for (const [key, route] of Object.entries(internalRoutes)) {
+    if (route.pattern.test(pathname)) {
+      return route.component;
+    }
+  }
+  return null;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  handleInternalRoute,
+  internalRoutes
+});
+//# sourceMappingURL=internal-route.js.map

package/dist/cjs/app-router/route-handler/internal-route.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/route-handler/internal-route.tsx"],"sourcesContent":["import { Verify } from \"../../components/verify\"\n\n// Internal route mapping\nexport const internalRoutes = {\n  verify: {\n    pattern: /^\\/sign-up\\/verify$/,\n    component: Verify,\n  },\n}\n\n// Internal route handler\nexport function handleInternalRoute(pathname: string) {\n  for (const [key, route] of Object.entries(internalRoutes)) {\n    if (route.pattern.test(pathname)) {\n      return route.component\n    }\n  }\n  return null\n}\n\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,oBAAuB;AAGhB,MAAM,iBAAiB;AAAA,EAC5B,QAAQ;AAAA,IACN,SAAS;AAAA,IACT,WAAW;AAAA,EACb;AACF;AAGO,SAAS,oBAAoB,UAAkB;AACpD,aAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,cAAc,GAAG;AACzD,QAAI,MAAM,QAAQ,KAAK,QAAQ,GAAG;AAChC,aAAO,MAAM;AAAA,IACf;AAAA,EACF;AACA,SAAO;AACT;","names":[]}

package/dist/cjs/app-router/server/auth.js

@@ -0,0 +1,71 @@
+"use strict";
+"use server";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var auth_exports = {};
+__export(auth_exports, {
+  auth: () => auth
+});
+module.exports = __toCommonJS(auth_exports);
+var import_headers = require("next/headers");
+var import_sessionTernSecure = require("./sessionTernSecure");
+async function auth() {
+  var _a, _b, _c;
+  try {
+    const cookieStore = await (0, import_headers.cookies)();
+    const sessionCookie = (_a = cookieStore.get("_session_cookie")) == null ? void 0 : _a.value;
+    if (sessionCookie) {
+      const sessionResult = await (0, import_sessionTernSecure.verifyTernSessionCookie)(sessionCookie);
+      if (sessionResult.valid) {
+        return {
+          userId: sessionResult.uid,
+          token: sessionCookie,
+          error: null
+        };
+      }
+    }
+    const idToken = (_b = cookieStore.get("_session_token")) == null ? void 0 : _b.value;
+    if (idToken) {
+      const tokenResult = await (0, import_sessionTernSecure.verifyTernIdToken)(idToken);
+      if (tokenResult.valid) {
+        return {
+          userId: (_c = tokenResult.uid) != null ? _c : null,
+          token: idToken,
+          error: null
+        };
+      }
+    }
+    return {
+      userId: null,
+      token: null,
+      error: new Error("No valid session or token found")
+    };
+  } catch (error) {
+    console.error("Error in auth function:", error);
+    return {
+      userId: null,
+      token: null,
+      error: error instanceof Error ? error : new Error("An unknown error occurred")
+    };
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  auth
+});
+//# sourceMappingURL=auth.js.map

package/dist/cjs/app-router/server/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/server/auth.ts"],"sourcesContent":["'use server'\n\nimport { cookies } from 'next/headers';\nimport {  verifyTernIdToken, verifyTernSessionCookie } from './sessionTernSecure';\n\nexport interface AuthResult {\n  userId: string | null;\n  token: string | null;\n  error: Error | null;\n}\n\nexport async function auth(): Promise<AuthResult> {\n  try {\n    const cookieStore = await cookies();\n    const sessionCookie = cookieStore.get('_session_cookie')?.value;\n    if (sessionCookie) {\n      const sessionResult = await verifyTernSessionCookie(sessionCookie);\n      if (sessionResult.valid) {\n        return {\n          userId: sessionResult.uid,\n          token: sessionCookie,\n          error: null\n        };\n      }\n    }\n\n    // If session cookie is not present or invalid, try the ID token\n    const idToken = cookieStore.get('_session_token')?.value;\n    if (idToken) {\n      const tokenResult = await verifyTernIdToken(idToken);\n      if (tokenResult.valid) {\n        return {\n          userId: tokenResult.uid ?? null,\n          token: idToken,\n          error: null\n        };\n      }\n    }\n\n    /// If both checks fail, return null values\n    return {\n      userId: null,\n      token: null,\n      error: new Error('No valid session or token found')\n    };\n  } catch (error) {\n    console.error('Error in auth function:', error);\n    return {\n      userId: null,\n      token: null,\n      error: error instanceof Error ? error : new Error('An unknown error occurred')\n    };\n  }\n}\n\n"],"mappings":";;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAEA,qBAAwB;AACxB,+BAA4D;AAQ5D,eAAsB,OAA4B;AAXlD;AAYE,MAAI;AACF,UAAM,cAAc,UAAM,wBAAQ;AAClC,UAAM,iBAAgB,iBAAY,IAAI,iBAAiB,MAAjC,mBAAoC;AAC1D,QAAI,eAAe;AACjB,YAAM,gBAAgB,UAAM,kDAAwB,aAAa;AACjE,UAAI,cAAc,OAAO;AACvB,eAAO;AAAA,UACL,QAAQ,cAAc;AAAA,UACtB,OAAO;AAAA,UACP,OAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AAGA,UAAM,WAAU,iBAAY,IAAI,gBAAgB,MAAhC,mBAAmC;AACnD,QAAI,SAAS;AACX,YAAM,cAAc,UAAM,4CAAkB,OAAO;AACnD,UAAI,YAAY,OAAO;AACrB,eAAO;AAAA,UACL,SAAQ,iBAAY,QAAZ,YAAmB;AAAA,UAC3B,OAAO;AAAA,UACP,OAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,MACL,QAAQ;AAAA,MACR,OAAO;AAAA,MACP,OAAO,IAAI,MAAM,iCAAiC;AAAA,IACpD;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,2BAA2B,KAAK;AAC9C,WAAO;AAAA,MACL,QAAQ;AAAA,MACR,OAAO;AAAA,MACP,OAAO,iBAAiB,QAAQ,QAAQ,IAAI,MAAM,2BAA2B;AAAA,IAC/E;AAAA,EACF;AACF;","names":[]}

package/dist/cjs/app-router/server/index.js

@@ -0,0 +1,42 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var server_exports = {};
+__export(server_exports, {
+  adminTernSecureAuth: () => import_admin_init.adminTernSecureAuth,
+  adminTernSecureDb: () => import_admin_init.adminTernSecureDb,
+  auth: () => import_auth.auth,
+  createSessionCookie: () => import_sessionTernSecure.createSessionCookie,
+  ternSecureMiddleware: () => import_ternSecureMiddleware.ternSecureMiddleware,
+  verifyTernSessionCookie: () => import_sessionTernSecure.verifyTernSessionCookie
+});
+module.exports = __toCommonJS(server_exports);
+var import_admin_init = require("../../utils/admin-init");
+var import_ternSecureMiddleware = require("./ternSecureMiddleware");
+var import_sessionTernSecure = require("./sessionTernSecure");
+var import_auth = require("./auth");
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  adminTernSecureAuth,
+  adminTernSecureDb,
+  auth,
+  createSessionCookie,
+  ternSecureMiddleware,
+  verifyTernSessionCookie
+});
+//# sourceMappingURL=index.js.map

package/dist/cjs/app-router/server/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/server/index.ts"],"sourcesContent":["export { adminTernSecureAuth, adminTernSecureDb } from '../../utils/admin-init'\nexport { ternSecureMiddleware } from './ternSecureMiddleware'\nexport { verifyTernSessionCookie, createSessionCookie } from './sessionTernSecure'\nexport { auth } from './auth'"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,wBAAuD;AACvD,kCAAqC;AACrC,+BAA6D;AAC7D,kBAAqB;","names":[]}

package/dist/cjs/app-router/server/sessionTernSecure.js

@@ -0,0 +1,159 @@
+"use strict";
+"use server";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var sessionTernSecure_exports = {};
+__export(sessionTernSecure_exports, {
+  clearSessionCookie: () => clearSessionCookie,
+  createSessionCookie: () => createSessionCookie,
+  getIdToken: () => getIdToken,
+  getServerSessionCookie: () => getServerSessionCookie,
+  setServerSession: () => setServerSession,
+  verifyTernIdToken: () => verifyTernIdToken,
+  verifyTernSessionCookie: () => verifyTernSessionCookie
+});
+module.exports = __toCommonJS(sessionTernSecure_exports);
+var import_headers = require("next/headers");
+var import_admin_init = require("../../utils/admin-init");
+async function createSessionCookie(idToken) {
+  try {
+    const expiresIn = 60 * 60 * 24 * 5 * 1e3;
+    const sessionCookie = await import_admin_init.adminTernSecureAuth.createSessionCookie(idToken, { expiresIn });
+    const cookieStore = await (0, import_headers.cookies)();
+    cookieStore.set("_session_cookie", sessionCookie, {
+      maxAge: expiresIn,
+      httpOnly: true,
+      secure: process.env.NODE_ENV === "production",
+      path: "/"
+    });
+    return { success: true, message: "Session created" };
+  } catch (error) {
+    return { success: false, message: "Failed to create session" };
+  }
+}
+async function getServerSessionCookie() {
+  var _a;
+  const cookieStore = await (0, import_headers.cookies)();
+  const sessionCookie = (_a = cookieStore.get("_session_cookie")) == null ? void 0 : _a.value;
+  if (!sessionCookie) {
+    throw new Error("No session cookie found");
+  }
+  try {
+    const decondeClaims = await import_admin_init.adminTernSecureAuth.verifySessionCookie(sessionCookie, true);
+    return {
+      token: sessionCookie,
+      userId: decondeClaims.uid
+    };
+  } catch (error) {
+    console.error("Error verifying session:", error);
+    throw new Error("Invalid Session");
+  }
+}
+async function getIdToken() {
+  var _a;
+  const cookieStore = await (0, import_headers.cookies)();
+  const token = (_a = cookieStore.get("_session_token")) == null ? void 0 : _a.value;
+  if (!token) {
+    throw new Error("No session cookie found");
+  }
+  try {
+    const decodedClaims = await import_admin_init.adminTernSecureAuth.verifyIdToken(token);
+    return {
+      token,
+      userId: decodedClaims.uid
+    };
+  } catch (error) {
+    console.error("Error verifying session:", error);
+    throw new Error("Invalid Session");
+  }
+}
+async function setServerSession(token) {
+  const cookieStore = await (0, import_headers.cookies)();
+  cookieStore.set("_session", token, {
+    httpOnly: true,
+    secure: process.env.NODE_ENV === "production",
+    sameSite: "strict",
+    maxAge: 60 * 60,
+    // 1 hour
+    path: "/"
+  });
+}
+async function verifyTernIdToken(token) {
+  try {
+    const decodedToken = await import_admin_init.adminTernSecureAuth.verifyIdToken(token, true);
+    return { valid: true, uid: decodedToken.uid };
+  } catch (error) {
+    if (error instanceof Error) {
+      const firebaseError = error;
+      if (error.name === "FirebaseAuthError") {
+        switch (firebaseError.code) {
+          case "auth/id-token-expired":
+            return { valid: false, error: "Token has expired" };
+          case "auth/id-token-revoked":
+            return { valid: false, error: "Token has been revoked" };
+          case "auth/user-disabled":
+            return { valid: false, error: "User account has been disabled" };
+          default:
+            return { valid: false, error: "Invalid token" };
+        }
+      }
+    }
+    return { valid: false, error: "Error verifying token" };
+  }
+}
+async function verifyTernSessionCookie(session) {
+  try {
+    const res = await import_admin_init.adminTernSecureAuth.verifySessionCookie(session, true);
+    if (res) {
+      return { valid: true, uid: res.uid };
+    } else {
+      return { valid: false, error: "Invalid session" };
+    }
+  } catch (error) {
+    return { error, valid: false };
+  }
+}
+async function clearSessionCookie() {
+  var _a;
+  const cookieStore = await (0, import_headers.cookies)();
+  cookieStore.delete("_session_cookie");
+  cookieStore.delete("_session_token");
+  cookieStore.delete("_session");
+  try {
+    const sessionCookie = (_a = cookieStore.get("_session_cookie")) == null ? void 0 : _a.value;
+    if (sessionCookie) {
+      const decodedClaims = await import_admin_init.adminTernSecureAuth.verifySessionCookie(sessionCookie);
+      await import_admin_init.adminTernSecureAuth.revokeRefreshTokens(decodedClaims.uid);
+    }
+    return { success: true, message: "Session cleared successfully" };
+  } catch (error) {
+    console.error("Error clearing session:", error);
+    return { success: true, message: "Session cookies cleared" };
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  clearSessionCookie,
+  createSessionCookie,
+  getIdToken,
+  getServerSessionCookie,
+  setServerSession,
+  verifyTernIdToken,
+  verifyTernSessionCookie
+});
+//# sourceMappingURL=sessionTernSecure.js.map

package/dist/cjs/app-router/server/sessionTernSecure.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/server/sessionTernSecure.ts"],"sourcesContent":["'use server'\n\nimport { cookies } from 'next/headers';\nimport { adminTernSecureAuth as adminAuth } from '../../utils/admin-init';\n\ninterface FirebaseAuthError extends Error {\n  code?: string;\n}\n\nexport interface User {\n    uid: string | null;\n    email: string | null;\n  }\n\nexport interface Session {\n    user: User | null;\n    token: string | null;\n    error: Error | null;\n}\n\nexport async function createSessionCookie(idToken: string) {\n  try {\n    const expiresIn = 60 * 60 * 24 * 5 * 1000;\n      const sessionCookie = await adminAuth.createSessionCookie(idToken, { expiresIn });\n\n      const cookieStore = await cookies();\n      cookieStore.set('_session_cookie', sessionCookie, {\n          maxAge: expiresIn,\n          httpOnly: true,\n          secure: process.env.NODE_ENV === 'production',\n          path: '/',\n      });\n      return { success: true, message: 'Session created' };\n  } catch (error) {\n      return { success: false, message: 'Failed to create session' };\n  }\n}\n\n\n\nexport async function getServerSessionCookie() {\n  const cookieStore = await cookies();\n  const sessionCookie = cookieStore.get('_session_cookie')?.value;\n\n  if (!sessionCookie) {\n    throw new Error('No session cookie found')\n  }\n    \n  try {\n    const decondeClaims = await adminAuth.verifySessionCookie(sessionCookie, true)\n    return {\n      token: sessionCookie,\n      userId: decondeClaims.uid\n    }\n  } catch (error) {\n    console.error('Error verifying session:', error)\n    throw new Error('Invalid Session')\n  }\n}\n\n\nexport async function getIdToken() {\n  const cookieStore = await cookies();\n  const token = cookieStore.get('_session_token')?.value;\n\n  if (!token) {\n    throw new Error('No session cookie found')\n  }\n    \n  try {\n    const decodedClaims = await adminAuth.verifyIdToken(token)\n    return {\n      token: token,\n      userId: decodedClaims.uid\n    }\n  } catch (error) {\n    console.error('Error verifying session:', error)\n    throw new Error('Invalid Session')\n  }\n}\n\nexport async function setServerSession(token: string) {\n    const cookieStore = await cookies();\n    cookieStore.set('_session', token, {\n      httpOnly: true,\n      secure: process.env.NODE_ENV === 'production',\n      sameSite: 'strict',\n      maxAge: 60 * 60, // 1 hour\n      path: '/',\n    });\n  }\n\n  export async function verifyTernIdToken(token: string): Promise<{ valid: boolean; uid?: string; error?: string }> {\n    try {\n      const decodedToken = await adminAuth.verifyIdToken(token, true);\n      return { valid: true, uid: decodedToken.uid };\n    } catch (error) {\n      if (error instanceof Error) {\n        const firebaseError = error as FirebaseAuthError;\n        if (error.name === 'FirebaseAuthError') {\n          // Handle specific Firebase Auth errors\n          switch (firebaseError.code) {\n            case 'auth/id-token-expired':\n              return { valid: false, error: 'Token has expired' };\n            case 'auth/id-token-revoked':\n              return { valid: false, error: 'Token has been revoked' };\n            case 'auth/user-disabled':\n              return { valid: false, error: 'User account has been disabled' };\n            default:\n              return { valid: false, error: 'Invalid token' };\n          }\n        }\n      }\n      return { valid: false, error: 'Error verifying token' };\n    }\n  }\n  \n\n  export async function verifyTernSessionCookie(session: string): Promise<{ valid: boolean; uid?: any; error?: any }>{\n    try {\n      const res = await adminAuth.verifySessionCookie(session, true);\n      if (res) {\n        return { valid: true, uid: res.uid };\n      } else {\n        return { valid: false, error: 'Invalid session'};\n      }\n    } catch (error) {\n      return {error: error, valid: false}\n    }\n  }\n\n\n  export async function clearSessionCookie() {\n    const cookieStore = await cookies()\n    \n    cookieStore.delete('_session_cookie')\n    cookieStore.delete('_session_token')\n    cookieStore.delete('_session')\n  \n    try {\n      // Verify if there's an active session before revoking\n      const sessionCookie = cookieStore.get('_session_cookie')?.value\n      if (sessionCookie) {\n        // Get the decoded claims to get the user's ID\n        const decodedClaims = await adminAuth.verifySessionCookie(sessionCookie)\n        \n        // Revoke all sessions for the user\n        await adminAuth.revokeRefreshTokens(decodedClaims.uid)\n      }\n      \n      return { success: true, message: 'Session cleared successfully' }\n    } catch (error) {\n      console.error('Error clearing session:', error)\n      // Still return success even if revoking fails, as cookies are cleared\n      return { success: true, message: 'Session cookies cleared' }\n    }\n  }\n\n\n\n/*\n  export async function GET(request: NextRequest) {\n    const cookieStore = await cookies();\n    const sessionCookie = cookieStore.get('session')?.value\n  \n    if (!sessionCookie) {\n      return NextResponse.json({ isAuthenticated: false }, { status: 401 })\n    }\n  \n    try {\n      const decodedClaims = await adminAuth.verifySessionCookie(sessionCookie, true)\n      return NextResponse.json({ isAuthenticated: true, user: decodedClaims }, { status: 200 })\n    } catch (error) {\n      console.error('Error verifying session cookie:', error)\n      return NextResponse.json({ isAuthenticated: false }, { status: 401 })\n    }\n  }\n\n*/"],"mappings":";;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAEA,qBAAwB;AACxB,wBAAiD;AAiBjD,eAAsB,oBAAoB,SAAiB;AACzD,MAAI;AACF,UAAM,YAAY,KAAK,KAAK,KAAK,IAAI;AACnC,UAAM,gBAAgB,MAAM,kBAAAA,oBAAU,oBAAoB,SAAS,EAAE,UAAU,CAAC;AAEhF,UAAM,cAAc,UAAM,wBAAQ;AAClC,gBAAY,IAAI,mBAAmB,eAAe;AAAA,MAC9C,QAAQ;AAAA,MACR,UAAU;AAAA,MACV,QAAQ,QAAQ,IAAI,aAAa;AAAA,MACjC,MAAM;AAAA,IACV,CAAC;AACD,WAAO,EAAE,SAAS,MAAM,SAAS,kBAAkB;AAAA,EACvD,SAAS,OAAO;AACZ,WAAO,EAAE,SAAS,OAAO,SAAS,2BAA2B;AAAA,EACjE;AACF;AAIA,eAAsB,yBAAyB;AAxC/C;AAyCE,QAAM,cAAc,UAAM,wBAAQ;AAClC,QAAM,iBAAgB,iBAAY,IAAI,iBAAiB,MAAjC,mBAAoC;AAE1D,MAAI,CAAC,eAAe;AAClB,UAAM,IAAI,MAAM,yBAAyB;AAAA,EAC3C;AAEA,MAAI;AACF,UAAM,gBAAgB,MAAM,kBAAAA,oBAAU,oBAAoB,eAAe,IAAI;AAC7E,WAAO;AAAA,MACL,OAAO;AAAA,MACP,QAAQ,cAAc;AAAA,IACxB;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,4BAA4B,KAAK;AAC/C,UAAM,IAAI,MAAM,iBAAiB;AAAA,EACnC;AACF;AAGA,eAAsB,aAAa;AA7DnC;AA8DE,QAAM,cAAc,UAAM,wBAAQ;AAClC,QAAM,SAAQ,iBAAY,IAAI,gBAAgB,MAAhC,mBAAmC;AAEjD,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,yBAAyB;AAAA,EAC3C;AAEA,MAAI;AACF,UAAM,gBAAgB,MAAM,kBAAAA,oBAAU,cAAc,KAAK;AACzD,WAAO;AAAA,MACL;AAAA,MACA,QAAQ,cAAc;AAAA,IACxB;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,4BAA4B,KAAK;AAC/C,UAAM,IAAI,MAAM,iBAAiB;AAAA,EACnC;AACF;AAEA,eAAsB,iBAAiB,OAAe;AAClD,QAAM,cAAc,UAAM,wBAAQ;AAClC,cAAY,IAAI,YAAY,OAAO;AAAA,IACjC,UAAU;AAAA,IACV,QAAQ,QAAQ,IAAI,aAAa;AAAA,IACjC,UAAU;AAAA,IACV,QAAQ,KAAK;AAAA;AAAA,IACb,MAAM;AAAA,EACR,CAAC;AACH;AAEA,eAAsB,kBAAkB,OAA0E;AAChH,MAAI;AACF,UAAM,eAAe,MAAM,kBAAAA,oBAAU,cAAc,OAAO,IAAI;AAC9D,WAAO,EAAE,OAAO,MAAM,KAAK,aAAa,IAAI;AAAA,EAC9C,SAAS,OAAO;AACd,QAAI,iBAAiB,OAAO;AAC1B,YAAM,gBAAgB;AACtB,UAAI,MAAM,SAAS,qBAAqB;AAEtC,gBAAQ,cAAc,MAAM;AAAA,UAC1B,KAAK;AACH,mBAAO,EAAE,OAAO,OAAO,OAAO,oBAAoB;AAAA,UACpD,KAAK;AACH,mBAAO,EAAE,OAAO,OAAO,OAAO,yBAAyB;AAAA,UACzD,KAAK;AACH,mBAAO,EAAE,OAAO,OAAO,OAAO,iCAAiC;AAAA,UACjE;AACE,mBAAO,EAAE,OAAO,OAAO,OAAO,gBAAgB;AAAA,QAClD;AAAA,MACF;AAAA,IACF;AACA,WAAO,EAAE,OAAO,OAAO,OAAO,wBAAwB;AAAA,EACxD;AACF;AAGA,eAAsB,wBAAwB,SAAqE;AACjH,MAAI;AACF,UAAM,MAAM,MAAM,kBAAAA,oBAAU,oBAAoB,SAAS,IAAI;AAC7D,QAAI,KAAK;AACP,aAAO,EAAE,OAAO,MAAM,KAAK,IAAI,IAAI;AAAA,IACrC,OAAO;AACL,aAAO,EAAE,OAAO,OAAO,OAAO,kBAAiB;AAAA,IACjD;AAAA,EACF,SAAS,OAAO;AACd,WAAO,EAAC,OAAc,OAAO,MAAK;AAAA,EACpC;AACF;AAGA,eAAsB,qBAAqB;AApI7C;AAqII,QAAM,cAAc,UAAM,wBAAQ;AAElC,cAAY,OAAO,iBAAiB;AACpC,cAAY,OAAO,gBAAgB;AACnC,cAAY,OAAO,UAAU;AAE7B,MAAI;AAEF,UAAM,iBAAgB,iBAAY,IAAI,iBAAiB,MAAjC,mBAAoC;AAC1D,QAAI,eAAe;AAEjB,YAAM,gBAAgB,MAAM,kBAAAA,oBAAU,oBAAoB,aAAa;AAGvE,YAAM,kBAAAA,oBAAU,oBAAoB,cAAc,GAAG;AAAA,IACvD;AAEA,WAAO,EAAE,SAAS,MAAM,SAAS,+BAA+B;AAAA,EAClE,SAAS,OAAO;AACd,YAAQ,MAAM,2BAA2B,KAAK;AAE9C,WAAO,EAAE,SAAS,MAAM,SAAS,0BAA0B;AAAA,EAC7D;AACF;","names":["adminAuth"]}

package/dist/cjs/app-router/server/ternSecureMiddleware.js

@@ -0,0 +1,50 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var ternSecureMiddleware_exports = {};
+__export(ternSecureMiddleware_exports, {
+  ternSecureMiddleware: () => ternSecureMiddleware
+});
+module.exports = __toCommonJS(ternSecureMiddleware_exports);
+var import_server = require("next/server");
+var import_auth = require("./auth");
+function ternSecureMiddleware(options = {}) {
+  const { publicPaths = [], redirectTo = "/login" } = options;
+  return async function middleware(request) {
+    const { pathname } = request.nextUrl;
+    if (publicPaths.includes(pathname)) {
+      return import_server.NextResponse.next();
+    }
+    try {
+      const { userId, token, error } = await (0, import_auth.auth)();
+      if (error || !userId || !token) {
+        return import_server.NextResponse.redirect(new URL(redirectTo, request.url));
+      }
+      const response = import_server.NextResponse.next();
+      return response;
+    } catch (error) {
+      console.error("Error in ternSecureMiddleware:", error);
+      return import_server.NextResponse.redirect(new URL(redirectTo, request.url));
+    }
+  };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  ternSecureMiddleware
+});
+//# sourceMappingURL=ternSecureMiddleware.js.map

package/dist/cjs/app-router/server/ternSecureMiddleware.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../src/app-router/server/ternSecureMiddleware.ts"],"sourcesContent":["import { NextRequest, NextResponse } from 'next/server';\nimport { auth } from './auth';\n\nexport interface TernSecureMiddlewareOptions {\n  publicPaths?: string[];\n  redirectTo?: string;\n}\n\nexport function ternSecureMiddleware(options: TernSecureMiddlewareOptions = {}) {\n  const { publicPaths = [], redirectTo = '/login' } = options;\n\n  return async function middleware(request: NextRequest) {\n    const { pathname } = request.nextUrl;\n\n    // Check if the path is public\n    if (publicPaths.includes(pathname)) {\n      return NextResponse.next();\n    }\n\n    try {\n      const { userId, token, error } = await auth();\n\n      if (error || !userId || !token) {\n        // If there's no valid session, redirect to login\n        return NextResponse.redirect(new URL(redirectTo, request.url));\n      }\n\n      // If there's a valid session, allow the request to proceed\n      const response = NextResponse.next();\n      \n      // Optionally, you can set headers here if needed\n      // response.headers.set('X-User-ID', userId);\n\n      return response;\n    } catch (error) {\n      console.error('Error in ternSecureMiddleware:', error);\n      return NextResponse.redirect(new URL(redirectTo, request.url));\n    }\n  };\n}\n\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,oBAA0C;AAC1C,kBAAqB;AAOd,SAAS,qBAAqB,UAAuC,CAAC,GAAG;AAC9E,QAAM,EAAE,cAAc,CAAC,GAAG,aAAa,SAAS,IAAI;AAEpD,SAAO,eAAe,WAAW,SAAsB;AACrD,UAAM,EAAE,SAAS,IAAI,QAAQ;AAG7B,QAAI,YAAY,SAAS,QAAQ,GAAG;AAClC,aAAO,2BAAa,KAAK;AAAA,IAC3B;AAEA,QAAI;AACF,YAAM,EAAE,QAAQ,OAAO,MAAM,IAAI,UAAM,kBAAK;AAE5C,UAAI,SAAS,CAAC,UAAU,CAAC,OAAO;AAE9B,eAAO,2BAAa,SAAS,IAAI,IAAI,YAAY,QAAQ,GAAG,CAAC;AAAA,MAC/D;AAGA,YAAM,WAAW,2BAAa,KAAK;AAKnC,aAAO;AAAA,IACT,SAAS,OAAO;AACd,cAAQ,MAAM,kCAAkC,KAAK;AACrD,aAAO,2BAAa,SAAS,IAAI,IAAI,YAAY,QAAQ,GAAG,CAAC;AAAA,IAC/D;AAAA,EACF;AACF;","names":[]}