npm - @tern-secure/nextjs - Versions diffs - 3.4.3 → 4.1.0 - Mend

@tern-secure/nextjs 3.4.3 → 4.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (96) hide show

package/dist/cjs/app-router/client/TernSecureProvider.js +17 -2
package/dist/cjs/app-router/client/TernSecureProvider.js.map +1 -1
package/dist/cjs/app-router/client/actions.js +55 -55
package/dist/cjs/app-router/client/actions.js.map +1 -1
package/dist/cjs/app-router/route-handler/internal-route.js +22 -3
package/dist/cjs/app-router/route-handler/internal-route.js.map +1 -1
package/dist/cjs/boundary/TernSecureClientProvider.js +167 -34
package/dist/cjs/boundary/TernSecureClientProvider.js.map +1 -1
package/dist/cjs/boundary/TernSecureCtx.js.map +1 -1
package/dist/cjs/boundary/hooks/useAuth.js +15 -2
package/dist/cjs/boundary/hooks/useAuth.js.map +1 -1
package/dist/cjs/components/sign-in.js +158 -35
package/dist/cjs/components/sign-in.js.map +1 -1
package/dist/cjs/components/sign-out-button.js +84 -0
package/dist/cjs/components/sign-out-button.js.map +1 -0
package/dist/cjs/components/sign-out.js +39 -9
package/dist/cjs/components/sign-out.js.map +1 -1
package/dist/cjs/components/sign-up.js +10 -5
package/dist/cjs/components/sign-up.js.map +1 -1
package/dist/cjs/errors.js +233 -5
package/dist/cjs/errors.js.map +1 -1
package/dist/cjs/index.js +3 -3
package/dist/cjs/index.js.map +1 -1
package/dist/cjs/types.js +14 -0
package/dist/cjs/types.js.map +1 -1
package/dist/cjs/utils/construct.js +50 -18
package/dist/cjs/utils/construct.js.map +1 -1
package/dist/cjs/utils/redirect.js +57 -0
package/dist/cjs/utils/redirect.js.map +1 -0
package/dist/esm/app-router/client/TernSecureProvider.js +17 -2
package/dist/esm/app-router/client/TernSecureProvider.js.map +1 -1
package/dist/esm/app-router/client/actions.js +64 -56
package/dist/esm/app-router/client/actions.js.map +1 -1
package/dist/esm/app-router/route-handler/internal-route.js +18 -2
package/dist/esm/app-router/route-handler/internal-route.js.map +1 -1
package/dist/esm/boundary/TernSecureClientProvider.js +168 -35
package/dist/esm/boundary/TernSecureClientProvider.js.map +1 -1
package/dist/esm/boundary/TernSecureCtx.js.map +1 -1
package/dist/esm/boundary/hooks/useAuth.js +15 -2
package/dist/esm/boundary/hooks/useAuth.js.map +1 -1
package/dist/esm/components/sign-in.js +160 -37
package/dist/esm/components/sign-in.js.map +1 -1
package/dist/esm/components/sign-out-button.js +60 -0
package/dist/esm/components/sign-out-button.js.map +1 -0
package/dist/esm/components/sign-out.js +30 -10
package/dist/esm/components/sign-out.js.map +1 -1
package/dist/esm/components/sign-up.js +10 -5
package/dist/esm/components/sign-up.js.map +1 -1
package/dist/esm/errors.js +229 -4
package/dist/esm/errors.js.map +1 -1
package/dist/esm/index.js +2 -2
package/dist/esm/index.js.map +1 -1
package/dist/esm/types.js +6 -0
package/dist/esm/types.js.map +1 -1
package/dist/esm/utils/construct.js +46 -17
package/dist/esm/utils/construct.js.map +1 -1
package/dist/esm/utils/redirect.js +32 -0
package/dist/esm/utils/redirect.js.map +1 -0
package/dist/types/app-router/client/TernSecureProvider.d.ts +14 -3
package/dist/types/app-router/client/TernSecureProvider.d.ts.map +1 -1
package/dist/types/app-router/client/actions.d.ts +24 -18
package/dist/types/app-router/client/actions.d.ts.map +1 -1
package/dist/types/app-router/route-handler/internal-route.d.ts +8 -1
package/dist/types/app-router/route-handler/internal-route.d.ts.map +1 -1
package/dist/types/boundary/TernSecureClientProvider.d.ts +17 -1
package/dist/types/boundary/TernSecureClientProvider.d.ts.map +1 -1
package/dist/types/boundary/TernSecureCtx.d.ts +3 -8
package/dist/types/boundary/TernSecureCtx.d.ts.map +1 -1
package/dist/types/boundary/hooks/useAuth.d.ts +6 -1
package/dist/types/boundary/hooks/useAuth.d.ts.map +1 -1
package/dist/types/components/sign-in.d.ts.map +1 -1
package/dist/types/components/sign-out-button.d.ts +14 -0
package/dist/types/components/sign-out-button.d.ts.map +1 -0
package/dist/types/components/sign-out.d.ts +7 -5
package/dist/types/components/sign-out.d.ts.map +1 -1
package/dist/types/components/sign-up.d.ts +4 -0
package/dist/types/components/sign-up.d.ts.map +1 -1
package/dist/types/components/ui/alert.d.ts +1 -1
package/dist/types/components/ui/button.d.ts +1 -1
package/dist/types/errors.d.ts +37 -2
package/dist/types/errors.d.ts.map +1 -1
package/dist/types/index.d.ts +1 -1
package/dist/types/index.d.ts.map +1 -1
package/dist/types/types.d.ts +45 -0
package/dist/types/types.d.ts.map +1 -1
package/dist/types/utils/construct.d.ts +20 -4
package/dist/types/utils/construct.d.ts.map +1 -1
package/dist/types/utils/redirect.d.ts +9 -0
package/dist/types/utils/redirect.d.ts.map +1 -0
package/package.json +6 -6
package/dist/cjs/boundary/hooks/useUser.js +0 -44
package/dist/cjs/boundary/hooks/useUser.js.map +0 -1
package/dist/esm/boundary/hooks/useUser.js +0 -20
package/dist/esm/boundary/hooks/useUser.js.map +0 -1
package/dist/types/boundary/hooks/useUser.d.ts +0 -7
package/dist/types/boundary/hooks/useUser.d.ts.map +0 -1

package/dist/cjs/utils/construct.js CHANGED Viewed

@@ -20,44 +20,76 @@ var construct_exports = {};
 __export(construct_exports, {
   constructFullUrl: () => constructFullUrl,
   constructUrlWithRedirect: () => constructUrlWithRedirect,
-  getValidRedirectUrl: () => getValidRedirectUrl
+  getPreviousPath: () => getPreviousPath,
+  getValidRedirectUrl: () => getValidRedirectUrl,
+  hasRedirectLoop: () => hasRedirectLoop,
+  storePreviousPath: () => storePreviousPath
 });
 module.exports = __toCommonJS(construct_exports);
+var import_internal_route = require("../app-router/route-handler/internal-route");
 const constructFullUrl = (path) => {
+  if (typeof window === "undefined") return path;
   const baseUrl = window.location.origin;
   if (path.startsWith("http")) {
     return path;
   }
   return `${baseUrl}${path.startsWith("/") ? path : `/${path}`}`;
 };
-const constructUrlWithRedirect = (path, redirectUrl, loginPath) => {
-  const url = new URL(path, window.location.origin);
-  if (redirectUrl && !redirectUrl.startsWith(loginPath)) {
-    const fullRedirectUrl = redirectUrl.startsWith("http") ? redirectUrl : constructFullUrl(redirectUrl);
-    url.searchParams.set("redirect_url", fullRedirectUrl);
+const hasRedirectLoop = (currentPath, redirectPath) => {
+  if (!currentPath || !redirectPath) return false;
+  const cleanCurrentPath = currentPath.split("?")[0];
+  const cleanRedirectPath = redirectPath.split("?")[0];
+  return cleanCurrentPath === cleanRedirectPath;
+};
+const constructUrlWithRedirect = (path, redirectUrl) => {
+  const url = new URL(path, typeof window !== "undefined" ? window.location.origin : void 0);
+  if (redirectUrl && !(0, import_internal_route.isAuthRoute)(redirectUrl) && !(0, import_internal_route.isInternalRoute)(redirectUrl)) {
+    url.searchParams.set("redirect", redirectUrl);
   }
   return url.toString();
 };
-const getValidRedirectUrl = (redirectUrl, searchParams) => {
-  const redirect = redirectUrl || searchParams.get("redirect_url") || "/";
+const storePreviousPath = (path) => {
+  if (typeof window !== "undefined" && !(0, import_internal_route.isAuthRoute)(path)) {
+    sessionStorage.setItem("previousPath", path);
+  }
+};
+const getPreviousPath = () => {
+  if (typeof window !== "undefined") {
+    return sessionStorage.getItem("previousPath");
+  }
+  return null;
+};
+const getValidRedirectUrl = (searchParams, configuredRedirect) => {
+  const urlRedirect = searchParams.get("redirect");
+  if (urlRedirect) {
+    return validateUrl(urlRedirect);
+  }
+  if (configuredRedirect) {
+    return validateUrl(configuredRedirect);
+  }
+  return "/";
+};
+const validateUrl = (url) => {
   try {
-    if (redirect.startsWith("http")) {
-      const url = new URL(redirect);
-      if (url.origin === window.location.origin) {
-        return redirect;
+    if (url.startsWith("http")) {
+      const urlObj = new URL(url);
+      if (typeof window !== "undefined" && urlObj.origin !== window.location.origin) {
+        return "/";
       }
-      return "/";
+      return !(0, import_internal_route.isAuthRoute)(urlObj.pathname) && !(0, import_internal_route.isInternalRoute)(urlObj.pathname) ? urlObj.pathname : "/";
     }
-    return constructFullUrl(redirect);
-  } catch (e) {
-    console.error("Invalid redirect URL:", e);
-    return constructFullUrl("/");
+    return !(0, import_internal_route.isAuthRoute)(url) && !(0, import_internal_route.isInternalRoute)(url) ? url : "/";
+  } catch {
+    return "/";
   }
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   constructFullUrl,
   constructUrlWithRedirect,
-  getValidRedirectUrl
+  getPreviousPath,
+  getValidRedirectUrl,
+  hasRedirectLoop,
+  storePreviousPath
 });
 //# sourceMappingURL=construct.js.map

package/dist/cjs/utils/construct.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/utils/construct.ts"],"sourcesContent":["/*\n Constructs a full URL with the current origin\n * @param path - The path to construct the URL for\n * @returns The full URL with origin\n /\nexport const constructFullUrl = (path: string) => {\n const baseUrl = window.location.origin\n if (path.startsWith('http')) {\n return path\n }\n return `${baseUrl}${path.startsWith('/') ? path : `/${path}`}`\n }\n \n /\n Constructs a URL with redirect parameters\n * @param path - The base path (usually login path)\n * @param redirectUrl - The URL to redirect to after action completes\n * @param loginPath - The login path to check against\n * @returns The full URL with redirect parameters\n /\~~n export~~ const constructUrlWithRedirect = (path: string, redirectUrl: string, ~~loginPath~~: string) => {\n ~~// Create the URL with the full origin\n~~ const url = new URL(path, window.location.origin)\n \n ~~// Add redirect parameter~~ if ~~provided~~ ~~and~~ ~~not redirecting to login\n if~~ (redirectUrl && !redirectUrl~~.startsWith(loginPath~~)) {\n // ~~Ensure~~ ~~redirect~~ ~~URL~~ is ~~also~~ ~~absolute~~ if ~~it's~~ ~~not~~ ~~already~~\n const ~~fullRedirectUrl~~ = ~~redirectUrl.startsWith~~(~~'http'~~) \n ? ~~redirectUrl~~ \~~n :~~ ~~constructFullUrl~~(~~redirectUrl~~)\n ~~\n url~~.~~searchParams.set~~(~~'redirect_url'~~, ~~fullRedirectUrl~~)\n }\n \n return ~~url~~.~~toString~~()\n }\n \n /\n Gets a validated redirect URL ensuring it's from the same origin\n * @param redirectUrl - The URL to validate\n * @param searchParams - The search parameters to check for ~~redirect_url~~\n * @returns A validated redirect URL\n */\~~n export~~ const getValidRedirectUrl = (\n ~~redirectUrl~~: ~~string \| undefined~~,\n ~~searchParams:~~ ~~URLSearchParams\~~n ): string => {\n const ~~redirect~~ = ~~redirectUrl \|\|~~ searchParams.get(~~'redirect_url'~~) \|\| ~~'/'~~\n \n try {\n if (~~redirect~~.startsWith('http')) {\n const ~~url~~ = new URL(~~redirect~~)\n if (~~url~~.origin ~~===~~ window.location.origin) {\n return ~~redirect~~\~~n }~~\n ~~return '/'\n~~ }\n return ~~constructFullUrl~~(~~redirect~~)~~\n }~~ ~~catch~~ (e) {\n ~~console~~.~~error('Invalid~~ ~~redirect URL~~:', e)\n return ~~constructFullUrl~~(~~'/'~~)\n }\n }\n \n "],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;~~AAKO~~,MAAM,mBAAmB,CAAC,SAAiB;~~AAC9C~~,QAAM,UAAU,OAAO,SAAS;AAChC,MAAI,KAAK,WAAW,MAAM,GAAG;AAC3B,WAAO;AAAA,EACT;AACA,SAAO,GAAG,OAAO,GAAG,KAAK,WAAW,GAAG,IAAI,OAAO,IAAI,IAAI,EAAE;AAC9D;~~AASO~~,MAAM,~~2BAA2B~~,CAAC,~~MAAc,~~aAAqB,~~cAAsB~~;~~AAEhG~~,QAAM,MAAM,IAAI,IAAI,MAAM,OAAO,SAAS,~~MAAM~~;~~AAGhD~~,MAAI,eAAe,~~CAAC~~,~~YAAY~~,WAAW,~~SAAS~~,GAAG;~~AAErD~~,~~UAAM~~,~~kBAAkB~~,YAAY,WAAW,MAAM,~~IACjD~~,~~cACA~~,~~iBAAiB~~,WAAW~~;AAEhC~~,~~QAAI~~,~~aAAa~~,IAAI,gBAAgB,~~eAAe~~;AAAA,~~EACtD~~;~~AAEA~~,~~SAAO~~,~~IAAI~~,~~SAAS~~;~~AACtB~~;~~AAQO~~,MAAM,sBAAsB,CACjC,~~aACA~~,~~iBACW~~;~~AACX~~,QAAM,~~WAAW~~,~~eAAe,~~aAAa,IAAI,cAAc,~~KAAK~~;~~AAEpE~~,MAAI;~~AACF~~,QAAI,~~SAAS~~,WAAW,MAAM,GAAG;~~AAC/B~~,YAAM,~~MAAM~~,IAAI,IAAI,~~QAAQ~~;~~AAC5B~~,UAAI,~~IAAI~~,WAAW,OAAO,SAAS,QAAQ;~~AACzC~~,eAAO;AAAA,MACT;AACA,aAAO;AAAA,~~IACT~~;~~AACA~~,WAAO,~~iBAAiB~~,~~QAAQ;AAAA~~,~~EAClC~~,~~SAAS~~,GAAG~~;AACV~~,~~YAAQ~~,MAAM,~~yBAAyB~~,~~CAAC~~;~~AACxC~~,WAAO~~,iBAAiB,GAAG~~;AAAA,~~EAC7B~~;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/utils/construct.ts"],"sourcesContent":["//v2: redict with taking priority from the sign-in page\n\nimport { isInternalRoute, isAuthRoute } from \"../app-router/route-handler/internal-route\"\n\n/*\n Constructs a full URL with the current origin\n * @param path - The path to construct the URL for\n * @returns The full URL with origin\n /\nexport const constructFullUrl = (path: string) => {\n if (typeof window === \"undefined\") return path\n const baseUrl = window.location.origin\n if (path.startsWith('http')) {\n return path\n }\n return `${baseUrl}${path.startsWith('/') ? path : `/${path}`}`\n }\n\n\n/\n Checks if the current URL has a redirect loop\n * @param currentPath - The current pathname\n * @param redirectPath - The path we're trying to redirect to\n * @returns boolean indicating if there's a redirect loop\n /\nexport const hasRedirectLoop = (currentPath: string, redirectPath: string): boolean => {\n if (!currentPath \|\| !redirectPath) return false\n\n // Remove any query parameters for comparison\n const cleanCurrentPath = currentPath.split(\"?\")[0]\n const cleanRedirectPath = redirectPath.split(\"?\")[0]\n\n return cleanCurrentPath === cleanRedirectPath\n}\n \n/\n Constructs a URL with redirect parameters while preventing loops\n * @param path - The base path (usually login path)\n * @param redirectUrl - The URL to redirect to after action completes\n * @param loginPath - The login path to check against\n * @param signUpPath - The sign up path to check against\n * @returns The full URL with redirect parameters\n /\nexport const constructUrlWithRedirect = (\n path: string,\n redirectUrl: string \| undefined,\n): string => {\n const url = new URL(path, typeof window !== \"undefined\" ? window.location.origin : undefined)\n \n if (redirectUrl && !isAuthRoute(redirectUrl) && !isInternalRoute(redirectUrl)) {\n url.searchParams.set(\"redirect\", redirectUrl)\n }\n \n return url.toString()\n}\n\n/\n Stores the current path before signing out\n /\nexport const storePreviousPath = (path: string): void => {\n if (typeof window !== \"undefined\" && !isAuthRoute(path)) {\n sessionStorage.setItem(\"previousPath\", path)\n }\n}\n\n/\n Gets the stored previous path\n /\nexport const getPreviousPath = (): string \| null => {\n if (typeof window !== \"undefined\") {\n return sessionStorage.getItem(\"previousPath\")\n }\n return null\n}\n\n\n \n/\n Gets a validated redirect URL ensuring it's from the same origin\n * @param redirectUrl - The URL to validate\n * @param searchParams - The search parameters to check for redirect\n * @returns A validated redirect URL\n /\nexport const getValidRedirectUrl = (\n searchParams: URLSearchParams,\n configuredRedirect?: string,\n): string => {\n // Check URL search param first (highest priority)\n const urlRedirect = searchParams.get(\"redirect\")\n if (urlRedirect) {\n return validateUrl(urlRedirect)\n }\n\n // Then check configured redirect (for first visits)\n if (configuredRedirect) {\n return validateUrl(configuredRedirect)\n }\n\n // Default fallback\n return \"/\"\n}\n\n/\n Validates and sanitizes URLs\n */\nconst validateUrl = (url: string): string => {\n try {\n // For absolute URLs\n if (url.startsWith(\"http\")) {\n const urlObj = new URL(url)\n if (typeof window !== \"undefined\" && urlObj.origin !== window.location.origin) {\n return \"/\"\n }\n return !isAuthRoute(urlObj.pathname) && !isInternalRoute(urlObj.pathname) \n ? urlObj.pathname \n : \"/\"\n }\n \n // For relative URLs\n return !isAuthRoute(url) && !isInternalRoute(url) ? url : \"/\"\n } catch {\n return \"/\"\n }\n}\n\n\n\n\n\n\n\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAEA,4BAA6C;AAOtC,MAAM,mBAAmB,CAAC,SAAiB;AAChD,MAAI,OAAO,WAAW,YAAa,QAAO;AACxC,QAAM,UAAU,OAAO,SAAS;AAChC,MAAI,KAAK,WAAW,MAAM,GAAG;AAC3B,WAAO;AAAA,EACT;AACA,SAAO,GAAG,OAAO,GAAG,KAAK,WAAW,GAAG,IAAI,OAAO,IAAI,IAAI,EAAE;AAC9D;AASK,MAAM,kBAAkB,CAAC,aAAqB,iBAAkC;AACrF,MAAI,CAAC,eAAe,CAAC,aAAc,QAAO;AAG1C,QAAM,mBAAmB,YAAY,MAAM,GAAG,EAAE,CAAC;AACjD,QAAM,oBAAoB,aAAa,MAAM,GAAG,EAAE,CAAC;AAEnD,SAAO,qBAAqB;AAC9B;AAUO,MAAM,2BAA2B,CACtC,MACA,gBACW;AACX,QAAM,MAAM,IAAI,IAAI,MAAM,OAAO,WAAW,cAAc,OAAO,SAAS,SAAS,MAAS;AAE5F,MAAI,eAAe,KAAC,mCAAY,WAAW,KAAK,KAAC,uCAAgB,WAAW,GAAG;AAC7E,QAAI,aAAa,IAAI,YAAY,WAAW;AAAA,EAC9C;AAEA,SAAO,IAAI,SAAS;AACtB;AAKO,MAAM,oBAAoB,CAAC,SAAuB;AACvD,MAAI,OAAO,WAAW,eAAe,KAAC,mCAAY,IAAI,GAAG;AACvD,mBAAe,QAAQ,gBAAgB,IAAI;AAAA,EAC7C;AACF;AAKO,MAAM,kBAAkB,MAAqB;AAClD,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,eAAe,QAAQ,cAAc;AAAA,EAC9C;AACA,SAAO;AACT;AAUO,MAAM,sBAAsB,CACjC,cACA,uBACW;AAEX,QAAM,cAAc,aAAa,IAAI,UAAU;AAC/C,MAAI,aAAa;AACf,WAAO,YAAY,WAAW;AAAA,EAChC;AAGA,MAAI,oBAAoB;AACtB,WAAO,YAAY,kBAAkB;AAAA,EACvC;AAGA,SAAO;AACT;AAKA,MAAM,cAAc,CAAC,QAAwB;AAC3C,MAAI;AAEF,QAAI,IAAI,WAAW,MAAM,GAAG;AAC1B,YAAM,SAAS,IAAI,IAAI,GAAG;AAC1B,UAAI,OAAO,WAAW,eAAe,OAAO,WAAW,OAAO,SAAS,QAAQ;AAC7E,eAAO;AAAA,MACT;AACA,aAAO,KAAC,mCAAY,OAAO,QAAQ,KAAK,KAAC,uCAAgB,OAAO,QAAQ,IACpE,OAAO,WACP;AAAA,IACN;AAGA,WAAO,KAAC,mCAAY,GAAG,KAAK,KAAC,uCAAgB,GAAG,IAAI,MAAM;AAAA,EAC5D,QAAQ;AACN,WAAO;AAAA,EACT;AACF;","names":[]}

package/dist/cjs/utils/redirect.js ADDED Viewed

@@ -0,0 +1,57 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var redirect_exports = {};
+__export(redirect_exports, {
+  getCurrentPath: () => getCurrentPath,
+  validateRedirectUrl: () => validateRedirectUrl
+});
+module.exports = __toCommonJS(redirect_exports);
+var import_headers = require("next/headers");
+async function validateRedirectUrl(url) {
+  if (!url) return "/";
+  try {
+    if (url.startsWith("/")) {
+      const validPaths = ["/"];
+      return validPaths.includes(url) ? url : "/";
+    }
+    const headersList = await (0, import_headers.headers)();
+    const currentHost = headersList.get("host");
+    const urlObj = new URL(url);
+    if (urlObj.host === currentHost) {
+      return urlObj.pathname;
+    }
+  } catch {
+  }
+  return "/";
+}
+async function getCurrentPath() {
+  try {
+    const headersList = await (0, import_headers.headers)();
+    const pathname = headersList.get("x-pathname") || "/";
+    return pathname;
+  } catch {
+    return "/";
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  getCurrentPath,
+  validateRedirectUrl
+});
+//# sourceMappingURL=redirect.js.map

package/dist/cjs/utils/redirect.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/utils/redirect.ts"],"sourcesContent":["import { headers } from \"next/headers\"\n\n/**\n * Validates and sanitizes redirect URLs\n */\nexport async function validateRedirectUrl(url: string | null): Promise<string> {\n if (!url) return \"/\"\n\n try {\n // Check if it's a relative path\n if (url.startsWith(\"/\")) {\n // Basic validation to ensure the path exists in your app\n // Add more paths as needed\n const validPaths = [\"/\"]\n return validPaths.includes(url) ? url : \"/\"\n }\n\n // If it's an absolute URL, ensure it's from your domain\n const headersList = await headers()\n const currentHost = headersList.get(\"host\")\n const urlObj = new URL(url)\n if (urlObj.host === currentHost) {\n return urlObj.pathname\n }\n } catch {\n // Invalid URL format\n }\n\n return \"/\"\n}\n\n/**\n * Gets the current path for redirect purposes\n */\nexport async function getCurrentPath(): Promise<string> {\n try {\n const headersList = await headers()\n const pathname = headersList.get(\"x-pathname\") || \"/\"\n return pathname\n } catch {\n return \"/\"\n }\n}\n\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,qBAAwB;AAKxB,eAAsB,oBAAoB,KAAqC;AAC7E,MAAI,CAAC,IAAK,QAAO;AAEjB,MAAI;AAEF,QAAI,IAAI,WAAW,GAAG,GAAG;AAGvB,YAAM,aAAa,CAAC,GAAG;AACvB,aAAO,WAAW,SAAS,GAAG,IAAI,MAAM;AAAA,IAC1C;AAGC,UAAM,cAAc,UAAM,wBAAQ;AACnC,UAAM,cAAc,YAAY,IAAI,MAAM;AAC1C,UAAM,SAAS,IAAI,IAAI,GAAG;AAC1B,QAAI,OAAO,SAAS,aAAa;AAC/B,aAAO,OAAO;AAAA,IAChB;AAAA,EACF,QAAQ;AAAA,EAER;AAEA,SAAO;AACT;AAKA,eAAsB,iBAAkC;AACtD,MAAI;AACF,UAAM,cAAc,UAAM,wBAAQ;AAClC,UAAM,WAAW,YAAY,IAAI,YAAY,KAAK;AAClD,WAAO;AAAA,EACT,QAAQ;AACN,WAAO;AAAA,EACT;AACF;","names":[]}

package/dist/esm/app-router/client/TernSecureProvider.js CHANGED Viewed

@@ -1,7 +1,22 @@
 import { jsx } from "react/jsx-runtime";
 import { TernSecureClientProvider } from "../../boundary/TernSecureClientProvider";
-async function TernSecureProvider({ children }) {
-  return /* @__PURE__ */ jsx(TernSecureClientProvider, { children });
+async function TernSecureProvider({
+  children,
+  requiresVerification = true,
+  loginPath,
+  signUpPath,
+  loadingComponent
+}) {
+  return /* @__PURE__ */ jsx(
+    TernSecureClientProvider,
+    {
+      requiresVerification,
+      loginPath,
+      signUpPath,
+      loadingComponent,
+      children
+    }
+  );
 }
 export {
   TernSecureProvider

package/dist/esm/app-router/client/TernSecureProvider.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../src/app-router/client/TernSecureProvider.tsx"],"sourcesContent":["import React from \"react\"\nimport { TernSecureClientProvider } from \"../../boundary/TernSecureClientProvider\"\n\n\n// Loading fallback component\n/function TernSecureLoadingFallback() {\n return (\n <div>\n <span className=\"sr-only\">Loading...</span>\n </div>\n )\n}/\n/*\n Root Provider for TernSecure\n * Use this in your Next.js App Router root layout\n * Automatically handles client/server boundary and authentication state\n * \n * @example\n * /// app/layout.tsx\n * import { TernSecureProvider } from '@tern/secure'\n * \n * export default function RootLayout({ children }) {\n * return (\n * <html>\n * <body>\n * <TernSecureProvider>\n * {children}\n * </TernSecureProvider>\n * </body>\n * </html>\n * )\n * }\n */\nexport async function TernSecureProvider({ children }: { ~~children~~: React.~~ReactNode }~~) {\n return (\n <TernSecureClientProvider>\n {children}\n </TernSecureClientProvider>\n )\n}"],"mappings":"~~AAmCI~~;~~AAlCJ~~,SAAS,gCAAgC;~~AAgCzC~~,eAAsB,mBAAmB,~~EAAE~~,~~SAAS~~,~~GAAkC~~;~~AACpF~~,SACE,~~oBAAC~~,~~4BACI~~,~~UACL~~;AAEJ;","names":[]}
1	+ {"version":3,"sources":["../../../../src/app-router/client/TernSecureProvider.tsx"],"sourcesContent":["import React from \"react\"\nimport { TernSecureClientProvider } from \"../../boundary/TernSecureClientProvider\"\n\n\n/*\n Configuration options for TernSecure authentication\n /\nexport interface TernSecureConfig {\n /* Whether email verification is required (defaults to true) /\n requiresVerification?: boolean\n /* Custom path for login page (defaults to /sign-in) /\n loginPath?: string\n /* Custom path for signup page (defaults to /sign-up) /\n signUpPath?: string\n /* Custom loading component /\n loadingComponent?: React.ReactNode\n}\n\n// Loading fallback component\n/function TernSecureLoadingFallback() {\n return (\n <div>\n <span className=\"sr-only\">Loading...</span>\n </div>\n )\n}/\n/\n Root Provider for TernSecure\n * Use this in your Next.js App Router root layout\n * Automatically handles client/server boundary and authentication state\n * \n * @example\n * /// app/layout.tsx\n * import { TernSecureProvider } from '@tern/secure'\n * \n * export default function RootLayout({ children }) {\n * return (\n * <html>\n * <body>\n * <TernSecureProvider>\n * {children}\n * </TernSecureProvider>\n * </body>\n * </html>\n * )\n * }\n */\nexport async function TernSecureProvider({ \n children,\n requiresVerification = true,\n loginPath,\n signUpPath,\n loadingComponent,\n }: React.PropsWithChildren<TernSecureConfig>) {\n return (\n <TernSecureClientProvider\n requiresVerification={requiresVerification}\n loginPath={loginPath}\n signUpPath={signUpPath}\n loadingComponent={loadingComponent}\n >\n {children}\n </TernSecureClientProvider>\n )\n}"],"mappings":"AAuDI;AAtDJ,SAAS,gCAAgC;AA8CzC,eAAsB,mBAAmB;AAAA,EACvC;AAAA,EACA,uBAAuB;AAAA,EACvB;AAAA,EACA;AAAA,EACA;AACD,GAA8C;AAC7C,SACE;AAAA,IAAC;AAAA;AAAA,MACC;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MAEG;AAAA;AAAA,EACL;AAEJ;","names":[]}

package/dist/esm/app-router/client/actions.js CHANGED Viewed

@@ -1,6 +1,14 @@
 import { TernSecureAuth } from "../../utils/client-init";
-import { signInWithEmailAndPassword, signInWithRedirect, getRedirectResult, GoogleAuthProvider, OAuthProvider, createUserWithEmailAndPassword, sendEmailVerification } from "firebase/auth";
-import { createSessionCookie } from "../server/sessionTernSecure";
+import {
+  signInWithEmailAndPassword,
+  signInWithRedirect,
+  getRedirectResult,
+  GoogleAuthProvider,
+  OAuthProvider,
+  createUserWithEmailAndPassword,
+  sendEmailVerification
+} from "firebase/auth";
+import { handleFirebaseAuthError } from "../../errors";
 async function createUser(email, password) {
   const auth = TernSecureAuth();
   try {
@@ -10,43 +18,40 @@ async function createUser(email, password) {
     };
     const userCredential = await createUserWithEmailAndPassword(auth, email, password);
     await sendEmailVerification(userCredential.user, actionCodeSettings);
-    return { success: true, message: "Account created successfully.", user: userCredential.user };
+    return {
+      success: true,
+      message: "Account created successfully. Please check your email for verification",
+      user: userCredential.user
+    };
   } catch (error) {
-    if (error instanceof Error) {
-      switch (error.message) {
-        case "auth/too-many-requests":
-          throw new Error("Too many attempts. Please try again later.");
-        case "auth/network-request-failed":
-          throw new Error("Network disconnected. Please try again later.");
-        case "auth/email-already-in-use":
-          throw new Error("Email is already registered.");
-        case "auth/invalid-email":
-          throw new Error("Invalid email address.");
-        case "auth/operation-not-allowed":
-          throw new Error("Email/password accounts are not enabled.");
-        case "auth/weak-password":
-          throw new Error("Password is too weak.");
-        default:
-          throw new Error(error.message);
-      }
-    }
-    throw new Error("Failed to create account");
+    const authError = handleFirebaseAuthError(error);
+    return {
+      success: false,
+      message: authError.message,
+      error: authError.code,
+      user: null
+    };
   }
 }
 async function signInWithEmail(email, password) {
   const auth = TernSecureAuth();
   try {
     const UserCredential = await signInWithEmailAndPassword(auth, email, password);
-    const idToken = await UserCredential.user.getIdToken();
-    const res = await createSessionCookie(idToken);
-    if (res.success) {
-      return { success: true, message: "Connected." };
-    } else {
-      throw new Error(res.message);
-    }
+    const user = UserCredential.user;
+    return {
+      success: true,
+      message: "Authentication successful",
+      user,
+      error: !user.emailVerified ? "REQUIRES_VERIFICATION" : "AUTHENTICATED"
+    };
   } catch (error) {
-    const errorMessage = error instanceof Error ? error.message : "Failed to sign in";
-    throw new Error(errorMessage);
+    const authError = handleFirebaseAuthError(error);
+    return {
+      success: false,
+      message: authError.message,
+      error: authError.code,
+      user: null
+    };
   }
 }
 async function signInWithRedirectGoogle() {
@@ -60,8 +65,13 @@ async function signInWithRedirectGoogle() {
     await signInWithRedirect(auth, provider);
     return { success: true, message: "Redirect initiated" };
   } catch (error) {
-    console.error("Error during Google sign-in:", error);
-    return { success: false, error: "Failed to sign in with Google" };
+    const authError = handleFirebaseAuthError(error);
+    return {
+      success: false,
+      message: authError.message,
+      error: authError.code,
+      user: null
+    };
   }
 }
 async function signInWithMicrosoft() {
@@ -74,8 +84,13 @@ async function signInWithMicrosoft() {
     await signInWithRedirect(auth, provider);
     return { success: true, message: "Redirect initiated" };
   } catch (error) {
-    console.error("Error during Google sign-in:", error);
-    return { success: false, error: "Failed to sign in with Google" };
+    const authError = handleFirebaseAuthError(error);
+    return {
+      success: false,
+      message: authError.message,
+      error: authError.code,
+      user: null
+    };
   }
 }
 async function handleAuthRedirectResult() {
@@ -89,8 +104,13 @@ async function handleAuthRedirectResult() {
       return { success: false, error: "No redirect result" };
     }
   } catch (error) {
-    console.error("Error handling auth redirect result:", error);
-    return { success: false, error: error.message || "Failed to handle auth redirect", code: error.code };
+    const authError = handleFirebaseAuthError(error);
+    return {
+      success: false,
+      message: authError.message,
+      error: authError.code,
+      user: null
+    };
   }
 }
 async function resendEmailVerification() {
@@ -119,25 +139,13 @@ async function resendEmailVerification() {
       isVerified: false
     };
   } catch (error) {
-    if (error instanceof Error) {
-      switch (error.message) {
-        case "auth/too-many-requests":
-          throw new Error("Too many attempts. Please try again later.");
-        case "auth/network-request-failed":
-          throw new Error("Network disconnected. Please try again later.");
-        case "auth/email-already-in-use":
-          throw new Error("Email is already registered.");
-        case "auth/invalid-email":
-          throw new Error("Invalid email address.");
-        case "auth/operation-not-allowed":
-          throw new Error("Email/password accounts are not enabled.");
-        case "auth/weak-password":
-          throw new Error("Password is too weak.");
-        default:
-          throw new Error(error.message);
-      }
-    }
-    throw new Error("Failed to resend verification email.");
+    const authError = handleFirebaseAuthError(error);
+    return {
+      success: false,
+      message: authError.message,
+      error: authError.code,
+      user: null
+    };
   }
 }
 export {

package/dist/esm/app-router/client/actions.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../src/app-router/client/actions.ts"],"sourcesContent":["import { TernSecureAuth } from '../../utils/client-init'\nimport { signInWithEmailAndPassword, signInWithRedirect, getRedirectResult, GoogleAuthProvider, OAuthProvider, createUserWithEmailAndPassword, sendEmailVerification } from 'firebase/auth'\nimport { ~~createSessionCookie~~ } from '~~../server/sessionTernSecure~~'\n\nexport async function createUser(email: string, password: string) {\n const auth = TernSecureAuth()\n try {\n \n const actionCodeSettings = {\n url: `${window.location.origin}/sign-in`,\n handleCodeInApp: true\n };\n\n const userCredential = await createUserWithEmailAndPassword(auth, email, password);\n\n await sendEmailVerification(userCredential.user, actionCodeSettings)\n \n return { success: true, message: 'Account created successfully.', user: userCredential.user };\n\n } catch (error) {\n // ~~Handle~~ ~~specific~~ ~~Firebase auth errors~~\n if ~~(error~~ ~~instanceof~~ ~~Error)~~ {\n ~~switch~~ ~~(error~~.message) {\n ~~case~~ ~~'auth/too-many-requests':\n throw new Error('Too many attempts~~. ~~Please try again later.');\~~n ~~case~~ 'auth/network-request-failed':\n throw new Error('Network disconnected. Please try again later.');\n case 'auth/email-already-in-use':\n throw new Error('Email is already registered.');\n case 'auth/invalid-email':\n throw new Error('Invalid email address.');\n case 'auth/operation-not-allowed':\n throw new Error('Email/password accounts are not enabled.');\n case 'auth/weak-password':\n throw new Error('Password is too weak.');\n default:\n throw new Error(error.message);\n }\n }\n ~~throw new Error('Failed to create account');\n~~ }\n}\n\n\nexport async function signInWithEmail(email: string, password: string){\n const auth = TernSecureAuth()\n try {\n const UserCredential = await signInWithEmailAndPassword(auth, email, password)\n const ~~idToken~~ = ~~await~~ UserCredential.user~~.getIdToken();\n~~\n ~~const res = await createSessionCookie(idToken);\n~~\n ~~if(res.success)~~ {\n ~~return {~~ success: true, message: '~~Connected.~~' ~~};\~~n } ~~else {\~~n ~~throw~~ ~~new~~ ~~Error(res.message);\~~n }\n} catch (error){\n const ~~errorMessage~~ = error ~~instanceof~~ ~~Error~~ ? ~~error~~.message : ~~'Failed to sign in';\~~n ~~throw new Error(errorMessage);\~~n}\n} \n\nexport async function signInWithRedirectGoogle() {\n const auth = TernSecureAuth()\n const provider = new GoogleAuthProvider()\n provider.setCustomParameters({\n login_hint: 'user@example.com',\n prompt: 'select_account'\n })\n\n try {\n await signInWithRedirect(auth, provider)\n return { success: true, message: 'Redirect initiated' }\n } catch (error) {\n ~~console.error('Error~~ ~~during~~ ~~Google~~ ~~sign-in:',~~ error)\n return { success: false, error: ~~'Failed~~ ~~to sign in with Google'~~ }\n }\n}\n\n\nexport async function signInWithMicrosoft() {\n const auth = TernSecureAuth()\n const provider = new OAuthProvider('microsoft.com')\n provider.setCustomParameters({\n prompt: 'consent'\n })\n\n try {\n await signInWithRedirect(auth, provider)\n return { success: true, message: 'Redirect initiated' }\n } catch (error) {\n ~~console.error('Error~~ ~~during~~ ~~Google~~ ~~sign-in:',~~ error)\n return { success: false, error: ~~'Failed~~ ~~to sign in with Google'~~ }\n }\n}\n\n\nexport async function handleAuthRedirectResult() {\n const auth = TernSecureAuth()\n try {\n const result = await getRedirectResult(auth)\n if (result) {\n const user = result.user\n return { success: true, user }\n } else {\n return { success: false, error: 'No redirect result' }\n }\n } catch (error: any) {\n ~~console.error('Error~~ ~~handling~~ ~~auth~~ ~~redirect result:',~~ error)\n return { success: false~~, error~~: ~~error~~.message ~~\|\| 'Failed to handle auth redirect', code~~: ~~error~~.code }\n }\n}\n\n\nexport async function resendEmailVerification() {\n const auth = TernSecureAuth()\n try {\n const user = auth.currentUser;\n if (!user) {\n throw new Error('No user found. Please try signing up again.');\n }\n\n await user.reload();\n\n if (user.emailVerified) {\n return { \n success: true, \n message: 'Email is already verified. You can sign in.',\n isVerified: true \n };\n }\n\n const actionCodeSettings = {\n url: `${window.location.origin}/sign-in`,\n handleCodeInApp: true,\n };\n\n await sendEmailVerification(user, actionCodeSettings);\n return { \n success: true, \n message: 'Verification email sent successfully.',\n isVerified: false\n };\n } catch (error) {\n if (error ~~instanceof Error~~) {\n ~~switch~~ ~~(error.message)~~ {\n ~~case~~ ~~'auth/too-many-requests':\~~n ~~throw~~ ~~new Error('Too many attempts~~. ~~Please try again later.');\~~n ~~case~~ ~~'auth/network-request-failed':\n throw new Error('Network disconnected~~. ~~Please try again later.');\~~n ~~case~~ 'auth/email-already-in-use':\n throw new Error('Email is already registered.');\n case 'auth/invalid-email':\n throw new Error('Invalid email address.');\n case 'auth/operation-not-allowed':\n throw new Error('Email/password accounts are not enabled.');\n case 'auth/weak-password':\n throw new Error('Password is too weak.');\n default:\n throw new Error(error.message);\n }\n }\n ~~throw new Error('Failed to resend verification email.');\n~~ }\n}"],"mappings":"AAAA,SAAS,sBAAsB;AAC/B,~~SAAS~~,~~4BAA4B~~,~~oBAAoB~~,~~mBAAmB~~,~~oBAAoB~~,~~eAAe~~,~~gCAAgC~~,~~6BAA6B~~;~~AAC5K~~,SAAS~~,2BAA2B~~;~~AAEpC~~,eAAsB,WAAW,OAAe,~~UAAkB~~;~~AAChE~~,QAAM,OAAO,eAAe;AAC5B,MAAI;AAEF,UAAM,qBAAqB;AAAA,MACzB,KAAK,GAAG,OAAO,SAAS,MAAM;AAAA,MAC9B,iBAAiB;AAAA,IACnB;AAEA,UAAM,iBAAiB,MAAM,+BAA+B,MAAM,OAAO,QAAQ;AAEjF,UAAM,sBAAsB,eAAe,MAAM,kBAAkB;AAEnE,WAAO~~,EAAE,SAAS,MAAM,SAAS,iCAAiC,MAAM,eAAe,KAAK~~;AAAA,~~EAE9F~~,SAAS~~,OAAO~~;~~AAEd~~,~~QAAI~~,~~iBAAiB,OAAO;AAC1B,cAAQ,MAAM,~~SAAS;AAAA,~~QACrB~~,~~KAAK;AACH,gBAAM,IAAI,~~MAAM,~~4CAA4C~~;AAAA,~~QAC9D,KAAK~~;~~AACD,gBAAM,IAAI,MAAM,+CAA+C;~~AAAA,~~QACnE~~,~~KAAK;AACH~~,~~gBAAM,IAAI,MAAM,8BAA8B~~;~~AAAA~~,~~QAChD~~,~~KAAK;AACH~~,~~gBAAM,IAAI,MAAM,~~wBAAwB~~;AAAA~~,~~QAC1C,~~KAAK;~~AACH~~,~~gBAAM,IAAI,MAAM,0CAA0C~~;AAAA,~~QAC5D~~,~~KAAK~~;~~AACH~~,~~gBAAM~~,~~IAAI~~,~~MAAM,uBAAuB~~;AAAA,~~QACzC;AACE~~,~~gBAAM,IAAI,MAAM,MAAM,~~OAAO~~;AAAA~~,~~MACjC~~;AAAA,~~IACF;AACA~~,~~UAAM,IAAI,~~MAAM,~~0BAA0B~~;AAAA,~~EAC5C~~;AACF;AAGA,eAAsB,gBAAgB,OAAe,~~UAAiB~~;~~AACpE~~,QAAM,OAAO,eAAe;AAC5B,MAAI;AACJ,UAAM,iBAAiB,MAAM,2BAA2B,MAAM,OAAO,QAAQ;AAC7E,UAAM,~~UAAU~~,~~MAAM,~~eAAe~~,KAAK,WAAW~~;~~AAErD~~,~~UAAM,MAAM,MAAM,oBAAoB,OAAO~~;~~AAE7C~~,~~QAAG~~,~~IAAI,~~SAAS;~~AACd~~,~~aAAO~~,~~EAAE,~~SAAS,~~MAAM,SAAS,aAAa~~;AAAA,~~IAChD~~,OAAO~~;AACL~~,~~YAAM~~,~~IAAI~~,~~MAAM~~,~~IAAI,OAAO~~;AAAA,~~IAC7B~~;AAAA,~~EACF~~,SAAS,OAAM;AACb,UAAM,~~eAAe~~,~~iBAAiB~~,~~QAAQ~~,~~MAAM~~,UAAU;~~AAC9D~~,~~UAAM~~,~~IAAI~~,MAAM,~~YAAY~~;AAAA,~~EAC9B~~;AACA;AAEA,eAAsB,2BAA2B;AAC/C,QAAM,OAAO,eAAe;AAC5B,QAAM,WAAW,IAAI,mBAAmB;AACxC,WAAS,oBAAoB;AAAA,IAC3B,YAAY;AAAA,IACZ,QAAQ;AAAA,EACV,CAAC;AAED,MAAI;AACF,UAAM,mBAAmB,MAAM,QAAQ;AACvC,WAAO,EAAE,SAAS,MAAM,SAAS,qBAAqB;AAAA,EACxD,SAAS,OAAO;AACd,~~YAAQ~~,~~MAAM~~,~~gCAAgC~~,KAAK;~~AACnD~~,WAAO,~~EAAE~~,SAAS,~~OAAO~~,OAAO,~~gCAAgC~~;AAAA,~~EAClE~~;AACF;AAGA,eAAsB,sBAAsB;AAC1C,QAAM,OAAO,eAAe;AAC5B,QAAM,WAAW,IAAI,cAAc,eAAe;AAClD,WAAS,oBAAoB;AAAA,IAC3B,QAAQ;AAAA,EACV,CAAC;AAED,MAAI;AACF,UAAM,mBAAmB,MAAM,QAAQ;AACvC,WAAO,EAAE,SAAS,MAAM,SAAS,qBAAqB;AAAA,EACxD,SAAS,OAAO;AACd,~~YAAQ~~,~~MAAM~~,~~gCAAgC~~,KAAK;~~AACnD~~,WAAO,~~EAAE~~,SAAS,~~OAAO~~,OAAO,~~gCAAgC~~;AAAA,~~EAClE~~;AACF;AAGA,eAAsB,2BAA2B;AAC/C,QAAM,OAAO,eAAe;AAC5B,MAAI;AACF,UAAM,SAAS,MAAM,kBAAkB,IAAI;AAC3C,QAAI,QAAQ;AACV,YAAM,OAAO,OAAO;AACpB,aAAO,EAAE,SAAS,MAAM,KAAK;AAAA,IAC/B,OAAO;AACL,aAAO,EAAE,SAAS,OAAO,OAAO,qBAAqB;AAAA,IACvD;AAAA,EACF,SAAS,OAAY;AACnB,~~YAAQ~~,~~MAAM~~,~~wCAAwC~~,KAAK;~~AAC3D~~,WAAO,~~EAAE~~,SAAS,~~OAAO~~,~~OAAO~~,~~MAAM~~,~~WAAW~~,~~kCAAkC~~,~~MAAM~~,MAAM,~~KAAK~~;AAAA,~~EACtG~~;AACF;AAGA,eAAsB,0BAA0B;AAC9C,QAAM,OAAO,eAAe;AAC5B,MAAI;AACF,UAAM,OAAO,KAAK;AAClB,QAAI,CAAC,MAAM;AACT,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,UAAM,KAAK,OAAO;AAElB,QAAI,KAAK,eAAe;AACtB,aAAO;AAAA,QACL,SAAS;AAAA,QACT,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,IACF;AAEA,UAAM,qBAAqB;AAAA,MACzB,KAAK,GAAG,OAAO,SAAS,MAAM;AAAA,MAC9B,iBAAiB;AAAA,IACnB;AAEA,UAAM,sBAAsB,MAAM,kBAAkB;AACpD,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS;AAAA,MACT,YAAY;AAAA,IACb;AAAA,EACD,SAAS,OAAO;AACd,~~QAAI~~,~~iBAAiB~~,~~OAAO;AAC1B~~,~~cAAQ,MAAM,SAAS;AAAA,QACrB,~~KAAK;~~AACH,gBAAM,IAAI,MAAM,4CAA4C;AAAA,QAC9D,KAAK;AACD,gBAAM,IAAI,MAAM,+CAA+~~C~~;AAAA~~,~~QACnE,KAAK~~;~~AACH,gBAAM,IAAI,MAAM,8BAA8B;~~AAAA,~~QAChD~~,~~KAAK~~;~~AACH,gBAAM,IAAI,MAAM,wBAAwB;~~AAAA,~~QAC1C~~,~~KAAK;AACH~~,~~gBAAM,IAAI,MAAM,0CAA0C~~;AAAA,~~QAC5D~~,~~KAAK;AACH~~,~~gBAAM,IAAI,MAAM,uBAAuB~~;AAAA,~~QACzC;AACE~~,~~gBAAM,IAAI,~~MAAM~~,MAAM,OAAO~~;AAAA,~~MACjC~~;AAAA,~~IACF~~;~~AACA,UAAM,IAAI,MAAM,sCAAsC;AAAA,EACxD;~~AACJ;","names":[]}
1	+ {"version":3,"sources":["../../../../src/app-router/client/actions.ts"],"sourcesContent":["import { TernSecureAuth } from '../../utils/client-init'\nimport { \n signInWithEmailAndPassword, \n signInWithRedirect, \n getRedirectResult, \n GoogleAuthProvider, \n OAuthProvider, \n createUserWithEmailAndPassword, \n sendEmailVerification } from 'firebase/auth'\nimport type { SignInResponse } from '../../types'\nimport { handleFirebaseAuthError } from '../../errors'\n\n\nexport async function createUser(email: string, password: string): Promise<SignInResponse> {\n const auth = TernSecureAuth()\n try {\n \n const actionCodeSettings = {\n url: `${window.location.origin}/sign-in`,\n handleCodeInApp: true\n };\n\n const userCredential = await createUserWithEmailAndPassword(auth, email, password);\n\n await sendEmailVerification(userCredential.user, actionCodeSettings)\n \n return { \n success: true, \n message: 'Account created successfully. Please check your email for verification', \n user: userCredential.user \n };\n\n } catch (error) {\n const authError = handleFirebaseAuthError(error)\n return { \n success: false, \n message: authError.message, \n error: authError.code,\n user: null\n }\n }\n}\n\n\nexport async function signInWithEmail(email: string, password: string): Promise<SignInResponse> {\n const auth = TernSecureAuth()\n try {\n const UserCredential = await signInWithEmailAndPassword(auth, email, password)\n const user = UserCredential.user\n \n return { \n success: true, \n message: 'Authentication successful',\n user: user,\n error: !user.emailVerified ? 'REQUIRES_VERIFICATION' : 'AUTHENTICATED'\n };\n\n} catch (error){\n const authError = handleFirebaseAuthError(error)\n return { \n success: false,\n message: authError.message,\n error: authError.code,\n user: null\n }\n}\n}\n\nexport async function signInWithRedirectGoogle() {\n const auth = TernSecureAuth()\n const provider = new GoogleAuthProvider()\n provider.setCustomParameters({\n login_hint: 'user@example.com',\n prompt: 'select_account'\n })\n\n try {\n await signInWithRedirect(auth, provider)\n return { success: true, message: 'Redirect initiated' }\n } catch (error) {\n const authError = handleFirebaseAuthError(error)\n return {\n success: false,\n message: authError.message,\n error: authError.code,\n user: null\n }\n }\n}\n\n\nexport async function signInWithMicrosoft() {\n const auth = TernSecureAuth()\n const provider = new OAuthProvider('microsoft.com')\n provider.setCustomParameters({\n prompt: 'consent'\n })\n\n try {\n await signInWithRedirect(auth, provider)\n return { success: true, message: 'Redirect initiated' }\n } catch (error) {\n const authError = handleFirebaseAuthError(error)\n return {\n success: false, \n message: authError.message,\n error: authError.code,\n user: null\n }\n }\n}\n\n\nexport async function handleAuthRedirectResult() {\n const auth = TernSecureAuth()\n try {\n const result = await getRedirectResult(auth)\n if (result) {\n const user = result.user\n return { success: true, user }\n } else {\n return { success: false, error: 'No redirect result' }\n }\n } catch (error: any) {\n const authError = handleFirebaseAuthError(error)\n return {\n success: false,\n message: authError.message,\n error: authError.code,\n user: null\n }\n }\n}\n\n\nexport async function resendEmailVerification() {\n const auth = TernSecureAuth()\n try {\n const user = auth.currentUser;\n if (!user) {\n throw new Error('No user found. Please try signing up again.');\n }\n\n await user.reload();\n\n if (user.emailVerified) {\n return { \n success: true, \n message: 'Email is already verified. You can sign in.',\n isVerified: true \n };\n }\n\n const actionCodeSettings = {\n url: `${window.location.origin}/sign-in`,\n handleCodeInApp: true,\n };\n\n await sendEmailVerification(user, actionCodeSettings);\n return { \n success: true, \n message: 'Verification email sent successfully.',\n isVerified: false\n };\n } catch (error) {\n const authError = handleFirebaseAuthError(error)\n return {\n success: false,\n message: authError.message,\n error: authError.code,\n user: null\n }\n }\n}"],"mappings":"AAAA,SAAS,sBAAsB;AAC/B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OAA6B;AAE/B,SAAS,+BAA+B;AAGxC,eAAsB,WAAW,OAAe,UAA2C;AACzF,QAAM,OAAO,eAAe;AAC5B,MAAI;AAEF,UAAM,qBAAqB;AAAA,MACzB,KAAK,GAAG,OAAO,SAAS,MAAM;AAAA,MAC9B,iBAAiB;AAAA,IACnB;AAEA,UAAM,iBAAiB,MAAM,+BAA+B,MAAM,OAAO,QAAQ;AAEjF,UAAM,sBAAsB,eAAe,MAAM,kBAAkB;AAEnE,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS;AAAA,MACT,MAAM,eAAe;AAAA,IACvB;AAAA,EAEF,SAAS,OAAO;AACd,UAAM,YAAY,wBAAwB,KAAK;AAC/C,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,UAAU;AAAA,MACnB,OAAO,UAAU;AAAA,MACjB,MAAM;AAAA,IACP;AAAA,EACH;AACF;AAGA,eAAsB,gBAAgB,OAAe,UAA2C;AAC9F,QAAM,OAAO,eAAe;AAC5B,MAAI;AACJ,UAAM,iBAAiB,MAAM,2BAA2B,MAAM,OAAO,QAAQ;AAC7E,UAAM,OAAO,eAAe;AAE5B,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS;AAAA,MACT;AAAA,MACA,OAAO,CAAC,KAAK,gBAAgB,0BAA0B;AAAA,IACzD;AAAA,EAEF,SAAS,OAAM;AACb,UAAM,YAAY,wBAAwB,KAAK;AAC/C,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,UAAU;AAAA,MACnB,OAAO,UAAU;AAAA,MACjB,MAAM;AAAA,IACR;AAAA,EACF;AACA;AAEA,eAAsB,2BAA2B;AAC/C,QAAM,OAAO,eAAe;AAC5B,QAAM,WAAW,IAAI,mBAAmB;AACxC,WAAS,oBAAoB;AAAA,IAC3B,YAAY;AAAA,IACZ,QAAQ;AAAA,EACV,CAAC;AAED,MAAI;AACF,UAAM,mBAAmB,MAAM,QAAQ;AACvC,WAAO,EAAE,SAAS,MAAM,SAAS,qBAAqB;AAAA,EACxD,SAAS,OAAO;AACd,UAAM,YAAY,wBAAwB,KAAK;AAC/C,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,UAAU;AAAA,MACnB,OAAO,UAAU;AAAA,MACjB,MAAM;AAAA,IACR;AAAA,EACF;AACF;AAGA,eAAsB,sBAAsB;AAC1C,QAAM,OAAO,eAAe;AAC5B,QAAM,WAAW,IAAI,cAAc,eAAe;AAClD,WAAS,oBAAoB;AAAA,IAC3B,QAAQ;AAAA,EACV,CAAC;AAED,MAAI;AACF,UAAM,mBAAmB,MAAM,QAAQ;AACvC,WAAO,EAAE,SAAS,MAAM,SAAS,qBAAqB;AAAA,EACxD,SAAS,OAAO;AACd,UAAM,YAAY,wBAAwB,KAAK;AAC/C,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,UAAU;AAAA,MACnB,OAAO,UAAU;AAAA,MACjB,MAAM;AAAA,IACR;AAAA,EACF;AACF;AAGA,eAAsB,2BAA2B;AAC/C,QAAM,OAAO,eAAe;AAC5B,MAAI;AACF,UAAM,SAAS,MAAM,kBAAkB,IAAI;AAC3C,QAAI,QAAQ;AACV,YAAM,OAAO,OAAO;AACpB,aAAO,EAAE,SAAS,MAAM,KAAK;AAAA,IAC/B,OAAO;AACL,aAAO,EAAE,SAAS,OAAO,OAAO,qBAAqB;AAAA,IACvD;AAAA,EACF,SAAS,OAAY;AACnB,UAAM,YAAY,wBAAwB,KAAK;AAC/C,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,UAAU;AAAA,MACnB,OAAO,UAAU;AAAA,MACjB,MAAM;AAAA,IACR;AAAA,EACF;AACF;AAGA,eAAsB,0BAA0B;AAC9C,QAAM,OAAO,eAAe;AAC5B,MAAI;AACF,UAAM,OAAO,KAAK;AAClB,QAAI,CAAC,MAAM;AACT,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,UAAM,KAAK,OAAO;AAElB,QAAI,KAAK,eAAe;AACtB,aAAO;AAAA,QACL,SAAS;AAAA,QACT,SAAS;AAAA,QACT,YAAY;AAAA,MACd;AAAA,IACF;AAEA,UAAM,qBAAqB;AAAA,MACzB,KAAK,GAAG,OAAO,SAAS,MAAM;AAAA,MAC9B,iBAAiB;AAAA,IACnB;AAEA,UAAM,sBAAsB,MAAM,kBAAkB;AACpD,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS;AAAA,MACT,YAAY;AAAA,IACb;AAAA,EACD,SAAS,OAAO;AACd,UAAM,YAAY,wBAAwB,KAAK;AAC/C,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,UAAU;AAAA,MACnB,OAAO,UAAU;AAAA,MACjB,MAAM;AAAA,IACR;AAAA,EACF;AACJ;","names":[]}

package/dist/esm/app-router/route-handler/internal-route.js CHANGED Viewed

@@ -1,10 +1,23 @@
 import { Verify } from "../../components/verify";
 const internalRoutes = {
-  verify: {
+  signUpVerify: {
     pattern: /^\/sign-up\/verify$/,
     component: Verify
+  },
+  signInVerify: {
+    pattern: /^\/sign-in\/verify$/,
+    component: Verify
   }
 };
+function isInternalRoute(pathname) {
+  return Object.values(internalRoutes).some((route) => route.pattern.test(pathname));
+}
+function isAuthRoute(pathname) {
+  return pathname.startsWith("/sign-in") || pathname.startsWith("/sign-up");
+}
+function isBaseAuthRoute(pathname) {
+  return pathname === "/sign-in" || pathname === "/sign-up";
+}
 function handleInternalRoute(pathname) {
   for (const [key, route] of Object.entries(internalRoutes)) {
     if (route.pattern.test(pathname)) {
@@ -15,6 +28,9 @@ function handleInternalRoute(pathname) {
 }
 export {
   handleInternalRoute,
-  internalRoutes
+  internalRoutes,
+  isAuthRoute,
+  isBaseAuthRoute,
+  isInternalRoute
 };
 //# sourceMappingURL=internal-route.js.map

package/dist/esm/app-router/route-handler/internal-route.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../src/app-router/route-handler/internal-route.tsx"],"sourcesContent":["import { Verify } from \"../../components/verify\"\n\n// Internal route mapping\nexport const internalRoutes = {\n ~~verify~~: {\n pattern: /^\\/sign-up\\/verify$/,\n component: Verify,\n },\n}\n\n// Internal route handler\nexport function handleInternalRoute(pathname: string) {\n for (const [key, route] of Object.entries(internalRoutes)) {\n if (route.pattern.test(pathname)) {\n return route.component\n }\n }\n return null\n}~~\n\n~~"],"mappings":"AAAA,SAAS,cAAc;AAGhB,MAAM,iBAAiB;AAAA,EAC5B,~~QAAQ~~;AAAA,~~IACN~~,SAAS;AAAA,IACT,WAAW;AAAA,EACb;AACF;AAGO,SAAS,oBAAoB,UAAkB;AACpD,aAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,cAAc,GAAG;AACzD,QAAI,MAAM,QAAQ,KAAK,QAAQ,GAAG;AAChC,aAAO,MAAM;AAAA,IACf;AAAA,EACF;AACA,SAAO;AACT;","names":[]}
1	+ {"version":3,"sources":["../../../../src/app-router/route-handler/internal-route.tsx"],"sourcesContent":["import { Verify } from \"../../components/verify\"\n\n// Internal route mapping\nexport const internalRoutes = {\n signUpVerify: {\n pattern: /^\\/sign-up\\/verify$/,\n component: Verify,\n },\n signInVerify: {\n pattern: /^\\/sign-in\\/verify$/,\n component: Verify,\n },\n}\n\n// Check if path is an internal route\nexport function isInternalRoute(pathname: string): boolean {\n return Object.values(internalRoutes).some((route) => route.pattern.test(pathname))\n}\n\n// Check if path is within auth routes\nexport function isAuthRoute(pathname: string): boolean {\n return pathname.startsWith(\"/sign-in\") \|\| pathname.startsWith(\"/sign-up\")\n}\n\n// Check if path is exactly the base auth route\nexport function isBaseAuthRoute(pathname: string): boolean {\n return pathname === \"/sign-in\" \|\| pathname === \"/sign-up\"\n}\n\n// Internal route handler\nexport function handleInternalRoute(pathname: string) {\n for (const [key, route] of Object.entries(internalRoutes)) {\n if (route.pattern.test(pathname)) {\n return route.component\n }\n }\n return null\n}"],"mappings":"AAAA,SAAS,cAAc;AAGhB,MAAM,iBAAiB;AAAA,EAC5B,cAAc;AAAA,IACZ,SAAS;AAAA,IACT,WAAW;AAAA,EACb;AAAA,EACA,cAAc;AAAA,IACZ,SAAS;AAAA,IACT,WAAW;AAAA,EACb;AACF;AAGO,SAAS,gBAAgB,UAA2B;AACzD,SAAO,OAAO,OAAO,cAAc,EAAE,KAAK,CAAC,UAAU,MAAM,QAAQ,KAAK,QAAQ,CAAC;AACnF;AAGO,SAAS,YAAY,UAA2B;AACrD,SAAO,SAAS,WAAW,UAAU,KAAK,SAAS,WAAW,UAAU;AAC1E;AAGO,SAAS,gBAAgB,UAA2B;AACzD,SAAO,aAAa,cAAc,aAAa;AACjD;AAGO,SAAS,oBAAoB,UAAkB;AACpD,aAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,cAAc,GAAG;AACzD,QAAI,MAAM,QAAQ,KAAK,QAAQ,GAAG;AAChC,aAAO,MAAM;AAAA,IACf;AAAA,EACF;AACA,SAAO;AACT;","names":[]}