@tern-secure/nextjs 5.1.10 → 5.1.11

package/dist/types/app-router/admin/actions.d.ts

@@ -0,0 +1,19 @@
+export declare function createSessionCookieServer(idToken: string): Promise<import("@tern-secure/types").SessionResult>;
+export declare function clearSessionCookieServer(): Promise<import("@tern-secure/types").SessionResult>;
+export declare function clearNextSessionCookie(): Promise<{
+    success: boolean;
+    message: string;
+}>;
+export declare function setNextServerSession(idToken: string): Promise<{
+    success: boolean;
+    message: string;
+}>;
+export declare function setNextServerToken(token: string): Promise<{
+    success: boolean;
+    message: string;
+}>;
+export declare function createNextSessionCookie(idToken: string): Promise<{
+    success: boolean;
+    message: string;
+}>;
+//# sourceMappingURL=actions.d.ts.map

package/dist/types/app-router/admin/actions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"actions.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/actions.ts"],"names":[],"mappings":"AAcA,wBAAsB,yBAAyB,CAAC,OAAO,EAAE,MAAM,uDAG9D;AAED,wBAAsB,wBAAwB,wDAG7C;AAED,wBAAsB,sBAAsB;;;GAE3C;AAED,wBAAsB,oBAAoB,CAAC,OAAO,EAAE,MAAM;;;GAEzD;AAED,wBAAsB,kBAAkB,CAAC,KAAK,EAAE,MAAM;;;GAErD;AAED,wBAAsB,uBAAuB,CAAC,OAAO,EAAE,MAAM;;;GAE5D"}

package/dist/types/app-router/admin/constants.d.ts

@@ -0,0 +1,2 @@
+export declare const TENANT_ID: string;
+//# sourceMappingURL=constants.d.ts.map

package/dist/types/app-router/admin/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,SAAS,QAAmD,CAAC"}

package/dist/types/app-router/admin/fnValidators.d.ts

@@ -0,0 +1,35 @@
+import { type NextRequest, NextResponse } from 'next/server';
+import type { AuthEndpoint, ComprehensiveValidationResult, CorsOptions, EndpointConfig, SecurityOptions, SessionSubEndpoint, ValidationConfig } from './types';
+export interface RequestContext {
+    request: NextRequest;
+    origin: string | null;
+    host: string | null;
+    referer: string | null;
+    userAgent: string;
+    method: string;
+    pathSegments: string[];
+}
+export declare function createRequestContext(request: NextRequest): RequestContext;
+/**
+ * Main validators factory function
+ * Returns an object containing all validator functions and utilities
+ */
+export declare function createValidators(context: RequestContext): {
+    createValidationConfig: (overrides?: Partial<ValidationConfig>) => ValidationConfig;
+    validateRequest: (config: ValidationConfig) => Promise<ComprehensiveValidationResult>;
+    validateCors: (corsOptions: CorsOptions) => Promise<NextResponse | null>;
+    validateSecurity: (securityOptions: SecurityOptions) => Promise<NextResponse | null>;
+    validatePathStructure: () => NextResponse | null;
+    validateEndpoint: (_endpoint: AuthEndpoint, endpointConfig: EndpointConfig) => NextResponse | null;
+    validateSubEndpoint: (subEndpoint: SessionSubEndpoint | undefined, subEndpointConfig: any) => NextResponse | null;
+    validateSessionRequest: () => Promise<{
+        body: any;
+        idToken?: string;
+        csrfToken?: string;
+        error?: NextResponse;
+    }>;
+    validateIdToken: (idToken: string | undefined) => NextResponse | null;
+    validateCsrfToken: (csrfToken: string, csrfCookieValue: string | undefined) => NextResponse | null;
+    createCorsOptionsResponse: (corsOptions: CorsOptions) => NextResponse;
+};
+//# sourceMappingURL=fnValidators.d.ts.map

package/dist/types/app-router/admin/fnValidators.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fnValidators.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/fnValidators.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAG7D,OAAO,KAAK,EACV,YAAY,EACZ,6BAA6B,EAC7B,WAAW,EACX,cAAc,EACd,eAAe,EACf,kBAAkB,EAClB,gBAAgB,EACjB,MAAM,SAAS,CAAC;AAEjB,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,WAAW,CAAC;IACrB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,WAAW,GAAG,cAAc,CAazE;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,cAAc;yCA4SX,OAAO,CAAC,gBAAgB,CAAC,KAAQ,gBAAgB;8BA7ErD,gBAAgB,KAAG,OAAO,CAAC,6BAA6B,CAAC;gCA5NvD,WAAW,KAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;wCAqDlC,eAAe,KAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;iCA0F7D,YAAY,GAAG,IAAI;kCAYxC,YAAY,kBACP,cAAc,KAC7B,YAAY,GAAG,IAAI;uCAaP,kBAAkB,GAAG,SAAS,qBACxB,GAAG,KACrB,YAAY,GAAG,IAAI;kCAgBmB,OAAO,CAAC;QAC/C,IAAI,EAAE,GAAG,CAAC;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,YAAY,CAAC;KACtB,CAAC;+BAYgC,MAAM,GAAG,SAAS,KAAG,YAAY,GAAG,IAAI;mCAhF7D,MAAM,mBACA,MAAM,GAAG,SAAS,KAClC,YAAY,GAAG,IAAI;6CAvG0B,WAAW,KAAG,YAAY;EAuS3E"}

package/dist/types/app-router/admin/index.d.ts

@@ -0,0 +1,4 @@
+export { createTernSecureNextJsHandler } from './ternsecureNextjsHandler';
+export { clearSessionCookieServer, clearNextSessionCookie, createSessionCookieServer, createNextSessionCookie, setNextServerSession, setNextServerToken } from './actions';
+export type { TernSecureHandlerOptions } from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/types/app-router/admin/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,6BAA6B,EAAE,MAAM,2BAA2B,CAAA;AAEzE,OAAO,EACH,wBAAwB,EACxB,sBAAsB,EACtB,yBAAyB,EACzB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EACrB,MAAM,WAAW,CAAA;AAElB,YAAY,EAAE,wBAAwB,EAAE,MAAM,SAAS,CAAA"}

package/dist/types/app-router/admin/responses.d.ts

@@ -0,0 +1,28 @@
+import { NextResponse } from 'next/server';
+/**
+ * Standardized error response creation
+ */
+export declare function createApiErrorResponse(code: string, message: string, status: number): NextResponse;
+/**
+ * Standardized success response creation
+ */
+export declare function createApiSuccessResponse<T>(data: T, status?: number): NextResponse;
+/**
+ * Session verification response utilities
+ */
+export declare class SessionResponseHelper {
+    static createVerificationResponse(decodedSession: any): NextResponse;
+    static createUnauthorizedResponse(): NextResponse;
+    static createSessionCreationResponse(res: any): NextResponse;
+    static createRefreshResponse(refreshRes: any): NextResponse;
+    static createRevokeResponse(res: any): NextResponse;
+}
+/**
+ * HTTP method response utilities
+ */
+export declare class HttpResponseHelper {
+    static createMethodNotAllowedResponse(): NextResponse;
+    static createNotFoundResponse(): NextResponse;
+    static createSubEndpointNotSupportedResponse(): NextResponse;
+}
+//# sourceMappingURL=responses.d.ts.map

package/dist/types/app-router/admin/responses.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"responses.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/responses.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,GACb,YAAY,CAiBd;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,GAAE,MAAY,GAAG,YAAY,CAQvF;AAED;;GAEG;AACH,qBAAa,qBAAqB;IAChC,MAAM,CAAC,0BAA0B,CAAC,cAAc,EAAE,GAAG,GAAG,YAAY;IAQpE,MAAM,CAAC,0BAA0B,IAAI,YAAY;IAIjD,MAAM,CAAC,6BAA6B,CAAC,GAAG,EAAE,GAAG,GAAG,YAAY;IAoB5D,MAAM,CAAC,qBAAqB,CAAC,UAAU,EAAE,GAAG,GAAG,YAAY;IAY3D,MAAM,CAAC,oBAAoB,CAAC,GAAG,EAAE,GAAG,GAAG,YAAY;CAUpD;AAED;;GAEG;AACH,qBAAa,kBAAkB;IAC7B,MAAM,CAAC,8BAA8B,IAAI,YAAY;IAIrD,MAAM,CAAC,sBAAsB,IAAI,YAAY;IAI7C,MAAM,CAAC,qCAAqC,IAAI,YAAY;CAO7D"}

package/dist/types/app-router/admin/sessionHandlers.d.ts

@@ -0,0 +1,26 @@
+import type { NextRequest, NextResponse } from 'next/server';
+import type { SessionSubEndpoint, TernSecureHandlerOptions, TernSecureInternalHandlerConfig } from './types';
+/**
+ * Session GET request handlers
+ */
+export declare class SessionGetHandler {
+    static handle(request: NextRequest, subEndpoint: SessionSubEndpoint, _config: Required<TernSecureHandlerOptions>): Promise<NextResponse>;
+    private static handleVerify;
+}
+/**
+ * Session POST request handlers
+ */
+export declare class SessionPostHandler {
+    static handle(request: NextRequest, subEndpoint: SessionSubEndpoint, _config: TernSecureInternalHandlerConfig): Promise<NextResponse>;
+    private static handleCreateSession;
+    private static handleRefreshSession;
+    private static handleRevokeSession;
+}
+/**
+ * Main session endpoint orchestrator
+ */
+export declare class SessionEndpointHandler {
+    static handle(request: NextRequest, method: string, subEndpoint: SessionSubEndpoint | undefined, config: Required<TernSecureHandlerOptions>): Promise<NextResponse>;
+    private static validateSubEndpoint;
+}
+//# sourceMappingURL=sessionHandlers.d.ts.map

package/dist/types/app-router/admin/sessionHandlers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sessionHandlers.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/sessionHandlers.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAI7D,OAAO,KAAK,EACV,kBAAkB,EAClB,wBAAwB,EACxB,+BAA+B,EAChC,MAAM,SAAS,CAAC;AAGjB;;GAEG;AACH,qBAAa,iBAAiB;WACf,MAAM,CACjB,OAAO,EAAE,WAAW,EACpB,WAAW,EAAE,kBAAkB,EAC/B,OAAO,EAAE,QAAQ,CAAC,wBAAwB,CAAC,GAC1C,OAAO,CAAC,YAAY,CAAC;mBASH,YAAY;CAiBlC;AAED;;GAEG;AACH,qBAAa,kBAAkB;WAChB,MAAM,CACjB,OAAO,EAAE,WAAW,EACpB,WAAW,EAAE,kBAAkB,EAC/B,OAAO,EAAE,+BAA+B,GACvC,OAAO,CAAC,YAAY,CAAC;mBA0BH,mBAAmB;mBAmBnB,oBAAoB;mBA0BpB,mBAAmB;CAIzC;AAED;;GAEG;AACH,qBAAa,sBAAsB;WACpB,MAAM,CACjB,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,kBAAkB,GAAG,SAAS,EAC3C,MAAM,EAAE,QAAQ,CAAC,wBAAwB,CAAC,GACzC,OAAO,CAAC,YAAY,CAAC;IA4BxB,OAAO,CAAC,MAAM,CAAC,mBAAmB;CAmBnC"}

package/dist/types/app-router/admin/ternsecureNextjsHandler.d.ts

@@ -0,0 +1,7 @@
+import type { NextRequest, NextResponse } from 'next/server';
+import type { TernSecureHandlerOptions } from './types';
+export declare function createTernSecureNextJsHandler(options?: TernSecureHandlerOptions): {
+    GET: (request: NextRequest) => Promise<NextResponse>;
+    POST: (request: NextRequest) => Promise<NextResponse>;
+};
+//# sourceMappingURL=ternsecureNextjsHandler.d.ts.map

package/dist/types/app-router/admin/ternsecureNextjsHandler.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ternsecureNextjsHandler.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/ternsecureNextjsHandler.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAO7D,OAAO,KAAK,EAGV,wBAAwB,EACQ,MAAM,SAAS,CAAC;AA4ClD,wBAAgB,6BAA6B,CAAC,OAAO,CAAC,EAAE,wBAAwB;mBAW9C,WAAW,KAAG,OAAO,CAAC,YAAY,CAAC;oBAAnC,WAAW,KAAG,OAAO,CAAC,YAAY,CAAC;EA0BpE"}

package/dist/types/app-router/admin/types.d.ts

@@ -0,0 +1,105 @@
+import { type NextResponse } from 'next/server';
+export interface CorsOptions {
+    allowedOrigins: string[] | '*';
+    allowedMethods?: string[];
+    allowedHeaders?: string[];
+    allowCredentials?: boolean;
+    maxAge?: number;
+    skipSameOrigin?: boolean;
+}
+export interface CookieOptions {
+    name?: string;
+    domain?: string;
+    path?: string;
+    secure?: boolean;
+    httpOnly?: boolean;
+    sameSite?: 'strict' | 'lax' | 'none';
+    maxAge?: number;
+}
+export interface RateLimitOptions {
+    windowMs?: number;
+    maxRequests?: number;
+    skipSuccessful?: boolean;
+    skipFailedRequests?: boolean;
+}
+export interface SecurityOptions {
+    requireCSRF?: boolean;
+    allowedReferers?: string[];
+    requiredHeaders?: Record<string, string>;
+    ipWhitelist?: string[];
+    userAgent?: {
+        block?: string[];
+        allow?: string[];
+    };
+}
+export interface EndpointConfig {
+    enabled: boolean;
+    methods: ('GET' | 'POST' | 'PUT' | 'DELETE')[];
+    requireAuth?: boolean;
+    rateLimit?: RateLimitOptions;
+    security?: SecurityOptions;
+    cors?: Partial<CorsOptions>;
+}
+export interface SessionEndpointConfig extends EndpointConfig {
+    subEndpoints?: {
+        [K in SessionSubEndpoint]?: Partial<EndpointConfig>;
+    };
+}
+export interface TernSecureHandlerOptions {
+    cors?: CorsOptions;
+    cookies?: CookieOptions;
+    rateLimit?: RateLimitOptions;
+    security?: SecurityOptions;
+    endpoints?: {
+        sessions?: SessionEndpointConfig;
+    };
+    debug?: boolean;
+    environment?: 'development' | 'production' | 'test';
+    basePath?: string;
+}
+/**
+ * Define an internal config type that extends the public options
+ * with server-side only values like tenantId.
+ */
+export type TernSecureInternalHandlerConfig = Required<TernSecureHandlerOptions> & {
+    tenantId?: string;
+};
+export type AuthEndpoint = 'sessions' | 'users';
+export type SessionSubEndpoint = 'verify' | 'createsession' | 'refresh' | 'revoke';
+export declare const DEFAULT_CORS_OPTIONS: CorsOptions;
+export declare const DEFAULT_COOKIE_OPTIONS: CookieOptions;
+export declare const DEFAULT_SECURITY_OPTIONS: SecurityOptions;
+export declare const DEFAULT_ENDPOINT_CONFIG: EndpointConfig;
+export declare const DEFAULT_SESSIONS_CONFIG: SessionEndpointConfig;
+export declare const DEFAULT_HANDLER_OPTIONS: Required<TernSecureHandlerOptions> & {
+    endpoints: Required<NonNullable<TernSecureHandlerOptions['endpoints']>>;
+};
+export interface ValidationResult {
+    error?: NextResponse;
+    data?: any;
+}
+export interface ValidationConfig {
+    cors?: CorsOptions;
+    security?: SecurityOptions;
+    endpoint?: {
+        name: AuthEndpoint;
+        config: EndpointConfig;
+    };
+    subEndpoint?: {
+        name: SessionSubEndpoint;
+        config: EndpointConfig;
+    };
+    requireIdToken?: boolean;
+    requireCsrfToken?: boolean;
+}
+export interface ComprehensiveValidationResult {
+    isValid: boolean;
+    error?: NextResponse;
+    corsResponse?: NextResponse;
+    sessionData?: {
+        body: any;
+        idToken?: string;
+        csrfToken?: string;
+    };
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types/app-router/admin/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,YAAY,EAAE,MAAM,aAAa,CAAC;AAEhD,MAAM,WAAW,WAAW;IAC1B,cAAc,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IAC/B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;IACrC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B;AAED,MAAM,WAAW,eAAe;IAC9B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACzC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,SAAS,CAAC,EAAE;QACV,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;KAClB,CAAC;CACH;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,CAAC,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,CAAC,EAAE,CAAC;IAC/C,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,IAAI,CAAC,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;CAC7B;AAED,MAAM,WAAW,qBAAsB,SAAQ,cAAc;IAC3D,YAAY,CAAC,EAAE;SACZ,CAAC,IAAI,kBAAkB,CAAC,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC;KACpD,CAAC;CACH;AAED,MAAM,WAAW,wBAAwB;IACvC,IAAI,CAAC,EAAE,WAAW,CAAC;IACnB,OAAO,CAAC,EAAE,aAAa,CAAC;IACxB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,SAAS,CAAC,EAAE;QACV,QAAQ,CAAC,EAAE,qBAAqB,CAAC;KAClC,CAAC;IAEF,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,WAAW,CAAC,EAAE,aAAa,GAAG,YAAY,GAAG,MAAM,CAAC;IACpD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,MAAM,+BAA+B,GAAG,QAAQ,CAAC,wBAAwB,CAAC,GAAG;IACjF,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,UAAU,GAAG,OAAO,CAAC;AAChD,MAAM,MAAM,kBAAkB,GAAG,QAAQ,GAAG,eAAe,GAAG,SAAS,GAAG,QAAQ,CAAC;AAEnF,eAAO,MAAM,oBAAoB,EAAE,WAMlC,CAAC;AAEF,eAAO,MAAM,sBAAsB,EAAE,aAOpC,CAAC;AAEF,eAAO,MAAM,wBAAwB,EAAE,eAStC,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,cAKrC,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,qBAqCrC,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,QAAQ,CAAC,wBAAwB,CAAC,GAAG;IACzE,SAAS,EAAE,QAAQ,CAAC,WAAW,CAAC,wBAAwB,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC;CAiBzE,CAAC;AAGF,MAAM,WAAW,gBAAgB;IAC/B,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB,IAAI,CAAC,EAAE,GAAG,CAAC;CACZ;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,CAAC,EAAE,WAAW,CAAC;IACnB,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,QAAQ,CAAC,EAAE;QACT,IAAI,EAAE,YAAY,CAAC;QACnB,MAAM,EAAE,cAAc,CAAC;KACxB,CAAC;IACF,WAAW,CAAC,EAAE;QACZ,IAAI,EAAE,kBAAkB,CAAC;QACzB,MAAM,EAAE,cAAc,CAAC;KACxB,CAAC;IACF,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC5B;AAED,MAAM,WAAW,6BAA6B;IAC5C,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,WAAW,CAAC,EAAE;QACZ,IAAI,EAAE,GAAG,CAAC;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;CACH"}

package/dist/types/app-router/admin/utils.d.ts

@@ -0,0 +1,53 @@
+import type { NextRequest } from 'next/server';
+/**
+ * HTTP utilities
+ */
+export declare class HttpUtils {
+    /**
+     * Extract client IP address from various headers
+     */
+    static getClientIP(request: NextRequest): string;
+    /**
+     * Parse URL path segments for routing
+     */
+    static parsePathSegments(url: URL): string[];
+    /**
+     * Extract authentication headers
+     */
+    static extractAuthHeaders(request: NextRequest): {
+        origin: string | null;
+        host: string | null;
+        referer: string | null;
+        userAgent: string;
+        authorization: string | null;
+        xRequestedWith: string | null;
+    };
+}
+/**
+ * Configuration utilities
+ */
+export declare class ConfigUtils {
+    /**
+     * Deep merge handler options with defaults
+     */
+    static mergeWithDefaults(defaults: any, options?: any): any;
+}
+/**
+ * Cookie utilities
+ */
+export declare class CookieUtils {
+    static extractSessionCookies(request: NextRequest): {
+        sessionCookie: string | undefined;
+        csrfCookie: string | undefined;
+        mainSession: string | undefined;
+    };
+}
+/**
+ * Logging utilities for debugging
+ */
+export declare class LoggingUtils {
+    static logRequest(request: NextRequest, context?: string): void;
+    static logError(error: any, context?: string): void;
+    static logWarning(message: string, context?: string): void;
+}
+//# sourceMappingURL=utils.d.ts.map

package/dist/types/app-router/admin/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/utils.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C;;GAEG;AACH,qBAAa,SAAS;IACpB;;OAEG;IACH,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,WAAW,GAAG,MAAM;IAYhD;;OAEG;IACH,MAAM,CAAC,iBAAiB,CAAC,GAAG,EAAE,GAAG,GAAG,MAAM,EAAE;IAI5C;;OAEG;IACH,MAAM,CAAC,kBAAkB,CAAC,OAAO,EAAE,WAAW;;;;;;;;CAU/C;AAED;;GAEG;AACH,qBAAa,WAAW;IACtB;;OAEG;IACH,MAAM,CAAC,iBAAiB,CACtB,QAAQ,EAAE,GAAG,EACb,OAAO,CAAC,EAAE,GAAG,GACZ,GAAG;CAgBP;AAED;;GAEG;AACH,qBAAa,WAAW;IACtB,MAAM,CAAC,qBAAqB,CAAC,OAAO,EAAE,WAAW;;;;;CAOlD;AAED;;GAEG;AACH,qBAAa,YAAY;IACvB,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,WAAW,EAAE,OAAO,CAAC,EAAE,MAAM;IAMxD,MAAM,CAAC,QAAQ,CAAC,KAAK,EAAE,GAAG,EAAE,OAAO,CAAC,EAAE,MAAM;IAI5C,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM;CAGpD"}

package/dist/types/app-router/admin/validators.d.ts

@@ -0,0 +1,46 @@
+import type { NextRequest } from 'next/server';
+import { NextResponse } from 'next/server';
+import type { AuthEndpoint, CorsOptions, SecurityOptions, SessionSubEndpoint } from './types';
+/**
+ * CORS validation utilities
+ */
+export declare class CorsValidator {
+    static validate(request: NextRequest, corsOptions: CorsOptions): Promise<NextResponse | null>;
+    static createOptionsResponse(corsOptions: CorsOptions): NextResponse;
+}
+/**
+ * Security validation utilities
+ */
+export declare class SecurityValidator {
+    static validate(request: NextRequest, securityOptions: SecurityOptions): Promise<NextResponse | null>;
+    private static validateCsrf;
+    private static validateRequiredHeaders;
+    private static validateUserAgent;
+}
+/**
+ * CSRF token validation utilities
+ */
+export declare class CsrfValidator {
+    static validate(csrfToken: string, csrfCookieValue: string | undefined): NextResponse | null;
+}
+/**
+ * Route validation utilities
+ */
+export declare class RouteValidator {
+    static validatePathStructure(pathSegments: string[]): NextResponse | null;
+    static validateEndpoint(_endpoint: AuthEndpoint, endpointConfig: any, method: string): NextResponse | null;
+    static validateSubEndpoint(subEndpoint: SessionSubEndpoint | undefined, subEndpointConfig: any, method: string): NextResponse | null;
+}
+/**
+ * Request body validation utilities
+ */
+export declare class RequestValidator {
+    static validateSessionRequest(request: NextRequest): Promise<{
+        body: any;
+        idToken?: string;
+        csrfToken?: string;
+        error?: NextResponse;
+    }>;
+    static validateIdToken(idToken: string | undefined): NextResponse | null;
+}
+//# sourceMappingURL=validators.d.ts.map

package/dist/types/app-router/admin/validators.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validators.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/validators.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAC,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAG3C,OAAO,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAE9F;;GAEG;AACH,qBAAa,aAAa;WACX,QAAQ,CACnB,OAAO,EAAE,WAAW,EACpB,WAAW,EAAE,WAAW,GACvB,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IA0B/B,MAAM,CAAC,qBAAqB,CAAC,WAAW,EAAE,WAAW,GAAG,YAAY;CA4BrE;AAED;;GAEG;AACH,qBAAa,iBAAiB;WACf,QAAQ,CACnB,OAAO,EAAE,WAAW,EACpB,eAAe,EAAE,eAAe,GAC/B,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAqB/B,OAAO,CAAC,MAAM,CAAC,YAAY;IAwB3B,OAAO,CAAC,MAAM,CAAC,uBAAuB;IAmBtC,OAAO,CAAC,MAAM,CAAC,iBAAiB;CA4BjC;AAED;;GAEG;AACH,qBAAa,aAAa;IACxB,MAAM,CAAC,QAAQ,CAAC,SAAS,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,GAAG,SAAS,GAAG,YAAY,GAAG,IAAI;CAe7F;AAED;;GAEG;AACH,qBAAa,cAAc;IACzB,MAAM,CAAC,qBAAqB,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,YAAY,GAAG,IAAI;IAWzE,MAAM,CAAC,gBAAgB,CACrB,SAAS,EAAE,YAAY,EACvB,cAAc,EAAE,GAAG,EACnB,MAAM,EAAE,MAAM,GACb,YAAY,GAAG,IAAI;IAYtB,MAAM,CAAC,mBAAmB,CACxB,WAAW,EAAE,kBAAkB,GAAG,SAAS,EAC3C,iBAAiB,EAAE,GAAG,EACtB,MAAM,EAAE,MAAM,GACb,YAAY,GAAG,IAAI;CAevB;AAED;;GAEG;AACH,qBAAa,gBAAgB;WACd,sBAAsB,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC;QACjE,IAAI,EAAE,GAAG,CAAC;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,YAAY,CAAC;KACtB,CAAC;IAYF,MAAM,CAAC,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,GAAG,YAAY,GAAG,IAAI;CAUzE"}

package/dist/types/app-router/client/TernSecureProvider.d.ts

@@ -0,0 +1,25 @@
+import React from "react";
+import type { TernSecureNextProps } from "../../types";
+/**
+ * Root Provider for TernSecure
+ * Use this in your Next.js App Router root layout
+ * Automatically handles client/server boundary and authentication state
+ *
+ * @example
+ * /// app/layout.tsx
+ * import { TernSecureProvider } from '@tern/secure'
+ *
+ * export default function RootLayout({ children }) {
+ *   return (
+ *     <html>
+ *       <body>
+ *         <TernSecureProvider>
+ *           {children}
+ *         </TernSecureProvider>
+ *       </body>
+ *     </html>
+ *   )
+ * }
+ */
+export declare function TernSecureProvider(props: React.PropsWithChildren<TernSecureNextProps>): import("react/jsx-runtime").JSX.Element;
+//# sourceMappingURL=TernSecureProvider.d.ts.map

package/dist/types/app-router/client/TernSecureProvider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TernSecureProvider.d.ts","sourceRoot":"","sources":["../../../../src/app-router/client/TernSecureProvider.tsx"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,OAAO,CAAA;AAEzB,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAA;AAatD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,KAAK,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,2CAQrF"}

package/dist/types/app-router/route-handler/internal-route.d.ts

@@ -0,0 +1,2 @@
+export { isBaseAuthRoute, isInternalRoute, isAuthRoute } from '@tern-secure/react';
+//# sourceMappingURL=internal-route.d.ts.map

package/dist/types/app-router/route-handler/internal-route.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"internal-route.d.ts","sourceRoot":"","sources":["../../../../src/app-router/route-handler/internal-route.tsx"],"names":[],"mappings":"AAAA,OAAO,EACL,eAAe,EACf,eAAe,EACf,WAAW,EACZ,MAAM,oBAAoB,CAAA"}

package/dist/types/app-router/server/auth.d.ts

@@ -0,0 +1,26 @@
+import type { AuthObject } from '@tern-secure/backend';
+import { redirect } from 'next/navigation';
+import { type AuthProtect } from '../../server/protect';
+import { type RedirectFun } from '../../server/redirect';
+import type { BaseUser } from '../../server/types';
+export interface AuthResult {
+    user: BaseUser | null;
+    error: Error | null;
+}
+/**
+ * `Auth` object of the currently active user and the `redirectToSignIn()` method.
+ */
+type Auth = AuthObject & {
+    redirectToSignIn: RedirectFun<ReturnType<typeof redirect>>;
+    redirectToSignUp: RedirectFun<ReturnType<typeof redirect>>;
+};
+export interface AuthFn {
+    (): Promise<Auth>;
+    protect: AuthProtect;
+}
+/**
+ * Get the current authenticated user from the session or token
+ */
+export declare const auth: AuthFn;
+export {};
+//# sourceMappingURL=auth.d.ts.map

package/dist/types/app-router/server/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/app-router/server/auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAQvD,OAAO,EAAY,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAIrD,OAAO,EAAE,KAAK,WAAW,EAAgB,MAAM,sBAAsB,CAAC;AACtE,OAAO,EAAkB,KAAK,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACzE,OAAO,KAAK,EAAE,QAAQ,EAAe,MAAM,oBAAoB,CAAC;AAGhE,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,QAAQ,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;CACrB;AAED;;GAEG;AACH,KAAK,IAAI,GAAG,UAAU,GAAG;IACvB,gBAAgB,EAAE,WAAW,CAAC,UAAU,CAAC,OAAO,QAAQ,CAAC,CAAC,CAAC;IAC3D,gBAAgB,EAAE,WAAW,CAAC,UAAU,CAAC,OAAO,QAAQ,CAAC,CAAC,CAAC;CAC5D,CAAC;AAEF,MAAM,WAAW,MAAM;IACrB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAElB,OAAO,EAAE,WAAW,CAAC;CACtB;AAyBD;;GAEG;AACH,eAAO,MAAM,IAAI,EAAE,MAwClB,CAAC"}

package/dist/types/app-router/server/utils.d.ts

@@ -0,0 +1,5 @@
+import { NextRequest } from 'next/server';
+export declare const isPrerenderingBailout: (e: unknown) => boolean;
+export declare function buildRequestLike(): Promise<NextRequest>;
+export declare function getScriptNonceFromHeader(cspHeaderValue: string): string | undefined;
+//# sourceMappingURL=utils.d.ts.map

package/dist/types/app-router/server/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../../src/app-router/server/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C,eAAO,MAAM,qBAAqB,GAAI,GAAG,OAAO,YAiB/C,CAAC;AAEF,wBAAsB,gBAAgB,IAAI,OAAO,CAAC,WAAW,CAAC,CAkB7D;AAGD,wBAAgB,wBAAwB,CAAC,cAAc,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CA0CnF"}

package/dist/types/boundary/components.d.ts

@@ -0,0 +1,2 @@
+export { useAuth, useIdToken, useSession, useSignIn, signIn, } from '@tern-secure/react';
+//# sourceMappingURL=components.d.ts.map

package/dist/types/boundary/components.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"components.d.ts","sourceRoot":"","sources":["../../../src/boundary/components.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,OAAO,EACP,UAAU,EACV,UAAU,EACV,SAAS,EACT,MAAM,GACT,MAAM,oBAAoB,CAAA"}

package/dist/types/boundary/hooks.d.ts

@@ -0,0 +1,2 @@
+export { useAuth, useIdToken } from '@tern-secure/react';
+//# sourceMappingURL=hooks.d.ts.map

package/dist/types/boundary/hooks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hooks.d.ts","sourceRoot":"","sources":["../../../src/boundary/hooks.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,OAAO,EACP,UAAU,EACb,MAAM,oBAAoB,CAAA"}

package/dist/types/constants.d.ts

@@ -0,0 +1,11 @@
+export declare const constants: {
+    readonly Headers: {
+        readonly NextRewrite: "x-middleware-rewrite";
+        readonly NextResume: "x-middleware-next";
+        readonly NextRedirect: "Location";
+        readonly NextUrl: "next-url";
+        readonly NextAction: "next-action";
+        readonly NextjsData: "x-nextjs-data";
+    };
+};
+//# sourceMappingURL=constants.d.ts.map

package/dist/types/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAWA,eAAO,MAAM,SAAS;;;;;;;;;CAEZ,CAAC"}

package/dist/types/errors.d.ts

@@ -0,0 +1,44 @@
+import type { SignInResponse } from "@tern-secure/types";
+export type ErrorCode = keyof typeof ERRORS;
+export interface AuthErrorResponse {
+    success: false;
+    message: string;
+    code: ErrorCode;
+}
+export declare const ERRORS: {
+    readonly SERVER_SIDE_INITIALIZATION: "TernSecure must be initialized on the client side";
+    readonly REQUIRES_VERIFICATION: "AUTH_REQUIRES_VERIFICATION";
+    readonly AUTHENTICATED: "AUTHENTICATED";
+    readonly UNAUTHENTICATED: "UNAUTHENTICATED";
+    readonly UNVERIFIED: "UNVERIFIED";
+    readonly NOT_INITIALIZED: "TernSecure services are not initialized. Call initializeTernSecure() first";
+    readonly HOOK_CONTEXT: "Hook must be used within TernSecureProvider";
+    readonly EMAIL_NOT_VERIFIED: "EMAIL_NOT_VERIFIED";
+    readonly INVALID_CREDENTIALS: "INVALID_CREDENTIALS";
+    readonly USER_DISABLED: "USER_DISABLED";
+    readonly TOO_MANY_ATTEMPTS: "TOO_MANY_ATTEMPTS";
+    readonly NETWORK_ERROR: "NETWORK_ERROR";
+    readonly INVALID_EMAIL: "INVALID_EMAIL";
+    readonly WEAK_PASSWORD: "WEAK_PASSWORD";
+    readonly EMAIL_EXISTS: "EMAIL_EXISTS";
+    readonly POPUP_BLOCKED: "POPUP_BLOCKED";
+    readonly OPERATION_NOT_ALLOWED: "OPERATION_NOT_ALLOWED";
+    readonly EXPIRED_TOKEN: "EXPIRED_TOKEN";
+    readonly INVALID_TOKEN: "INVALID_TOKEN";
+    readonly SESSION_EXPIRED: "SESSION_EXPIRED";
+    readonly INTERNAL_ERROR: "INTERNAL_ERROR";
+};
+export declare class TernSecureError extends Error {
+    code: ErrorCode;
+    constructor(code: ErrorCode, message?: string);
+}
+/**
+ * Handles Firebase authentication errors with multiple fallback mechanisms
+ */
+export declare function handleFirebaseAuthError(error: unknown): AuthErrorResponse;
+/**
+ * Type guard to check if a response is an AuthErrorResponse
+ */
+export declare function isAuthErrorResponse(response: unknown): response is AuthErrorResponse;
+export declare function getErrorAlertVariant(error: SignInResponse | undefined): "destructive" | "default";
+//# sourceMappingURL=errors.d.ts.map

package/dist/types/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAA;AAExD,MAAM,MAAM,SAAS,GAAG,MAAM,OAAO,MAAM,CAAA;AAE3C,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,KAAK,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,EAAE,SAAS,CAAA;CAChB;AAED,eAAO,MAAM,MAAM;;;;;;;;;;;;;;;;;;;;;;CAsBT,CAAA;AAmBV,qBAAa,eAAgB,SAAQ,KAAK;IACxC,IAAI,EAAE,SAAS,CAAA;gBAEH,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,MAAM;CAK9C;AAiJD;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,iBAAiB,CAwFzE;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,OAAO,GAAG,QAAQ,IAAI,iBAAiB,CASpF;AAID,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,cAAc,GAAG,SAAS,6BAsBrE"}

package/dist/types/index.d.ts

@@ -0,0 +1,5 @@
+export { TernSecureProvider } from './app-router/client/TernSecureProvider';
+export { useAuth, useIdToken, useSession, useSignIn, signIn } from './boundary/components';
+export type { TernSecureUser, TernSecureUserData, SignInResponseTree } from '@tern-secure/types';
+export type { UserInfo, SessionResult } from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,wCAAwC,CAAA;AAC3E,OAAO,EACH,OAAO,EACP,UAAU,EACV,UAAU,EACV,SAAS,EACT,MAAM,EAKT,MAAM,uBAAuB,CAAA;AAE9B,YAAY,EAAE,cAAc,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AAEhG,YAAY,EACR,QAAQ,EACR,aAAa,EAChB,MAAM,SAAS,CAAA"}

package/dist/types/server/constant.d.ts

@@ -0,0 +1,5 @@
+export declare const API_URL: string | undefined;
+export declare const API_VERSION: string;
+export declare const SIGN_IN_URL: string;
+export declare const SIGN_UP_URL: string;
+//# sourceMappingURL=constant.d.ts.map

package/dist/types/server/constant.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constant.d.ts","sourceRoot":"","sources":["../../../src/server/constant.ts"],"names":[],"mappings":"AACA,eAAO,MAAM,OAAO,oBAAiC,CAAA;AACrD,eAAO,MAAM,WAAW,QAA6C,CAAC;AACtE,eAAO,MAAM,WAAW,QAA4C,CAAC;AACrE,eAAO,MAAM,WAAW,QAA4C,CAAC"}

package/dist/types/server/crypto.d.ts

@@ -0,0 +1,3 @@
+export declare function encrypt(text: string): string;
+export declare function decrypt(encoded: string): string;
+//# sourceMappingURL=crypto.d.ts.map

package/dist/types/server/crypto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../../../src/server/crypto.ts"],"names":[],"mappings":"AAGA,wBAAgB,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAI5C;AAED,wBAAgB,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAM/C"}

package/dist/types/server/ctx-store.d.ts

@@ -0,0 +1,24 @@
+import type { User } from "./types";
+interface RequestContext {
+    user: UserVerificationRequirement;
+    sessionId: string;
+}
+declare global {
+    var __ternSecure: {
+        context: RequestContext | null;
+        sessions: Map<string, User>;
+    };
+}
+export declare class ContextStore {
+    static setContext(context: RequestContext): void;
+    static getContext(): RequestContext | null;
+    static setSession(sessionId: string, user: User): void;
+    static getSession(sessionId: string): User | null;
+    static debug(): {
+        sessionsCount: number;
+        currentSessionId: string | null;
+        sessions: [string, User][];
+    };
+}
+export {};
+//# sourceMappingURL=ctx-store.d.ts.map

package/dist/types/server/ctx-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ctx-store.d.ts","sourceRoot":"","sources":["../../../src/server/ctx-store.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,SAAS,CAAA;AAEnC,UAAU,cAAc;IACtB,IAAI,EAAE,2BAA2B,CAAA;IACjC,SAAS,EAAE,MAAM,CAAA;CAClB;AAGD,OAAO,CAAC,MAAM,CAAC;IACb,IAAI,YAAY,EAAE;QAChB,OAAO,EAAE,cAAc,GAAG,IAAI,CAAA;QAC9B,QAAQ,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;KAC5B,CAAA;CACF;AAWD,qBAAa,YAAY;IACvB,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,cAAc;IAMzC,MAAM,CAAC,UAAU,IAAI,cAAc,GAAG,IAAI;IAM1C,MAAM,CAAC,UAAU,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI;IAM/C,MAAM,CAAC,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI;IAMjD,MAAM,CAAC,KAAK;;;;;CAOb"}

package/dist/types/server/edge-session.d.ts

@@ -0,0 +1,16 @@
+import type { NextRequest } from "next/server";
+import type { BaseUser, SessionResult } from "./types";
+export declare function verifySession(request: NextRequest): Promise<SessionResult>;
+/**
+ * Edge-compatible token verification using Firebase Auth REST API
+ */
+export declare function verifyTokenEdge(idToken: string): Promise<BaseUser | null>;
+/**
+ * Edge-compatible session cookie verification
+ */
+export declare function verifySessionEdge(sessionCookie: string): Promise<BaseUser | null>;
+/**
+ * Edge-compatible session verification using Firebase Auth REST API
+ */
+export declare function VerifySessionWithRestApi(request: NextRequest): Promise<SessionResult>;
+//# sourceMappingURL=edge-session.d.ts.map

package/dist/types/server/edge-session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"edge-session.d.ts","sourceRoot":"","sources":["../../../src/server/edge-session.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAG/C,OAAO,KAAK,EAAE,QAAQ,EAAC,aAAa,EAAE,MAAM,SAAS,CAAC;AAEtD,wBAAsB,aAAa,CACjC,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC,CAgCxB;AAED;;GAEG;AACH,wBAAsB,eAAe,CACnC,OAAO,EAAE,MAAM,GACd,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CA+B1B;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CACrC,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CA+B1B;AAED;;GAEG;AACH,wBAAsB,wBAAwB,CAC5C,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC,CAmDxB"}