@tern-secure/nextjs 5.1.8 → 5.1.9

package/dist/esm/utils/serverRedirectAuth.js

@@ -0,0 +1,17 @@
+import {
+  constants
+} from "@tern-secure/backend";
+import { NextResponse } from "next/server";
+const serverRedirectWithAuth = (ternSecureRequest, res) => {
+  const location = res.headers.get("location");
+  const shouldAppendDevBrowser = res.headers.get(constants.Headers.TernSecureRedirectTo) === "true";
+  if (shouldAppendDevBrowser && !!location && ternSecureRequest.ternUrl.isCrossOrigin(location)) {
+    const url = new URL(location);
+    return NextResponse.redirect(url.href, res);
+  }
+  return res;
+};
+export {
+  serverRedirectWithAuth
+};
+//# sourceMappingURL=serverRedirectAuth.js.map

package/dist/esm/utils/serverRedirectAuth.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/utils/serverRedirectAuth.ts"],"sourcesContent":["import type {\n  TernSecureRequest,\n} from \"@tern-secure/backend\";\nimport {\n  constants\n} from \"@tern-secure/backend\";\nimport { NextResponse } from 'next/server';\n\n/**\n * Grabs the dev browser JWT from cookies and appends it to the redirect URL when redirecting to cross-origin.\n */\nexport const serverRedirectWithAuth = (ternSecureRequest: TernSecureRequest, res: Response) => {\n  const location = res.headers.get('location');\n  const shouldAppendDevBrowser = res.headers.get(constants.Headers.TernSecureRedirectTo) === 'true';\n\n  if (\n    shouldAppendDevBrowser &&\n    !!location &&\n    ternSecureRequest.ternUrl.isCrossOrigin(location)\n  ) {\n    // Next.js 12.1+ allows redirects only to absolute URLs\n    const url = new URL(location);\n    return NextResponse.redirect(url.href, res);\n  }\n  return res;\n};\n"],"mappings":"AAGA;AAAA,EACE;AAAA,OACK;AACP,SAAS,oBAAoB;AAKtB,MAAM,yBAAyB,CAAC,mBAAsC,QAAkB;AAC7F,QAAM,WAAW,IAAI,QAAQ,IAAI,UAAU;AAC3C,QAAM,yBAAyB,IAAI,QAAQ,IAAI,UAAU,QAAQ,oBAAoB,MAAM;AAE3F,MACE,0BACA,CAAC,CAAC,YACF,kBAAkB,QAAQ,cAAc,QAAQ,GAChD;AAEA,UAAM,MAAM,IAAI,IAAI,QAAQ;AAC5B,WAAO,aAAa,SAAS,IAAI,MAAM,GAAG;AAAA,EAC5C;AACA,SAAO;AACT;","names":[]}

package/dist/esm/utils/ternsecure-sw.js

@@ -1,6 +1,6 @@
 "use client";
-import { useEffect } from "react";
 import { reg } from "@tern-secure/shared/serviceWorker";
+import { useEffect } from "react";
 const TernUIServiceWorker = ({
   ternSecureConfig,
   baseUrl = window.location.origin

package/dist/esm/utils/ternsecure-sw.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/utils/ternsecure-sw.ts"],"sourcesContent":["'use client';\n\nimport { useEffect } from 'react';\nimport type { TernSecureConfig } from '@tern-secure/types';\nimport { reg } from '@tern-secure/shared/serviceWorker';\n\ninterface TernUIServiceWorkerProps {\n    ternSecureConfig?: TernSecureConfig;\n    baseUrl?: string;\n}\n\nexport const TernUIServiceWorker: React.FC<TernUIServiceWorkerProps> = ({ \n    ternSecureConfig,\n    baseUrl = window.location.origin \n}) => {\n  useEffect(() => {\n    const registerServiceWorker = async () => {\n      if (!ternSecureConfig) {\n        console.warn('[TernSecure] Service worker registration skipped: config not provided');\n        return;\n      }\n\n      try {\n        await reg({\n          firebaseConfig: ternSecureConfig,\n          domain: baseUrl\n        });\n      } catch (error) {\n        console.error('[TernSecure] Service worker registration failed:', error);\n      }\n    };\n\n    registerServiceWorker();\n  }, [ternSecureConfig, baseUrl]);\n\n  return null;\n};"],"mappings":";AAEA,SAAS,iBAAiB;AAE1B,SAAS,WAAW;AAOb,MAAM,sBAA0D,CAAC;AAAA,EACpE;AAAA,EACA,UAAU,OAAO,SAAS;AAC9B,MAAM;AACJ,YAAU,MAAM;AACd,UAAM,wBAAwB,YAAY;AACxC,UAAI,CAAC,kBAAkB;AACrB,gBAAQ,KAAK,uEAAuE;AACpF;AAAA,MACF;AAEA,UAAI;AACF,cAAM,IAAI;AAAA,UACR,gBAAgB;AAAA,UAChB,QAAQ;AAAA,QACV,CAAC;AAAA,MACH,SAAS,OAAO;AACd,gBAAQ,MAAM,oDAAoD,KAAK;AAAA,MACzE;AAAA,IACF;AAEA,0BAAsB;AAAA,EACxB,GAAG,CAAC,kBAAkB,OAAO,CAAC;AAE9B,SAAO;AACT;","names":[]}
+{"version":3,"sources":["../../../src/utils/ternsecure-sw.ts"],"sourcesContent":["'use client';\n\nimport { reg } from '@tern-secure/shared/serviceWorker';\nimport type { TernSecureConfig } from '@tern-secure/types';\nimport { useEffect } from 'react';\n\ninterface TernUIServiceWorkerProps {\n    ternSecureConfig?: TernSecureConfig;\n    baseUrl?: string;\n}\n\nexport const TernUIServiceWorker: React.FC<TernUIServiceWorkerProps> = ({ \n    ternSecureConfig,\n    baseUrl = window.location.origin \n}) => {\n  useEffect(() => {\n    const registerServiceWorker = async () => {\n      if (!ternSecureConfig) {\n        console.warn('[TernSecure] Service worker registration skipped: config not provided');\n        return;\n      }\n\n      try {\n        await reg({\n          firebaseConfig: ternSecureConfig,\n          domain: baseUrl\n        });\n      } catch (error) {\n        console.error('[TernSecure] Service worker registration failed:', error);\n      }\n    };\n\n    registerServiceWorker();\n  }, [ternSecureConfig, baseUrl]);\n\n  return null;\n};"],"mappings":";AAEA,SAAS,WAAW;AAEpB,SAAS,iBAAiB;AAOnB,MAAM,sBAA0D,CAAC;AAAA,EACpE;AAAA,EACA,UAAU,OAAO,SAAS;AAC9B,MAAM;AACJ,YAAU,MAAM;AACd,UAAM,wBAAwB,YAAY;AACxC,UAAI,CAAC,kBAAkB;AACrB,gBAAQ,KAAK,uEAAuE;AACpF;AAAA,MACF;AAEA,UAAI;AACF,cAAM,IAAI;AAAA,UACR,gBAAgB;AAAA,UAChB,QAAQ;AAAA,QACV,CAAC;AAAA,MACH,SAAS,OAAO;AACd,gBAAQ,MAAM,oDAAoD,KAAK;AAAA,MACzE;AAAA,IACF;AAEA,0BAAsB;AAAA,EACxB,GAAG,CAAC,kBAAkB,OAAO,CAAC;AAE9B,SAAO;AACT;","names":[]}

package/dist/esm/utils/withLogger.js

@@ -0,0 +1,57 @@
+import { LogLevel, middlewareLogger } from "./logger";
+function createEdgeCompatibleLogger(debug = false) {
+  if (debug) {
+    middlewareLogger.enable();
+    middlewareLogger.setLevel(LogLevel.DEBUG);
+  }
+  return {
+    logStart: (requestId, method, url) => {
+      middlewareLogger.debug(`[${requestId}] Middleware started for ${method} ${url}`);
+    },
+    logEnd: (requestId, duration) => {
+      middlewareLogger.debug(`[${requestId}] Middleware completed in ${duration.toFixed(2)}ms`);
+    },
+    logError: (requestId, duration, error) => {
+      middlewareLogger.error(
+        `[${requestId}] Middleware failed after ${duration.toFixed(2)}ms:`,
+        error instanceof Error ? error.message : "Unknown error"
+      );
+    },
+    debug: (message, ...args) => middlewareLogger.debug(message, ...args),
+    info: (message, ...args) => middlewareLogger.info(message, ...args),
+    warn: (message, ...args) => middlewareLogger.warn(message, ...args),
+    error: (message, ...args) => middlewareLogger.error(message, ...args)
+  };
+}
+const withLogger = (middleware, options = {}) => {
+  const { debug = false, logLevel = LogLevel.INFO } = options;
+  if (debug) {
+    middlewareLogger.enable();
+    middlewareLogger.setLevel(LogLevel.DEBUG);
+  } else {
+    middlewareLogger.setLevel(logLevel);
+  }
+  return async (request, event) => {
+    const startTime = performance.now();
+    const requestId = crypto.randomUUID().slice(0, 8);
+    middlewareLogger.debug(`[${requestId}] Middleware started for ${request.method} ${request.url}`);
+    try {
+      const result = await middleware(request, event);
+      const duration = performance.now() - startTime;
+      middlewareLogger.debug(`[${requestId}] Middleware completed in ${duration.toFixed(2)}ms`);
+      return result;
+    } catch (error) {
+      const duration = performance.now() - startTime;
+      middlewareLogger.error(
+        `[${requestId}] Middleware failed after ${duration.toFixed(2)}ms:`,
+        error instanceof Error ? error.message : "Unknown error"
+      );
+      throw error;
+    }
+  };
+};
+export {
+  createEdgeCompatibleLogger,
+  withLogger
+};
+//# sourceMappingURL=withLogger.js.map

package/dist/esm/utils/withLogger.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/utils/withLogger.ts"],"sourcesContent":["import type { NextMiddleware } from \"next/server\"\n\nimport { LogLevel,middlewareLogger } from \"./logger\"\n\nexport interface WithLoggerOptions {\n  debug?: boolean\n  logLevel?: LogLevel\n}\n\nexport function createEdgeCompatibleLogger(debug: boolean = false) {\n  if (debug) {\n    middlewareLogger.enable()\n    middlewareLogger.setLevel(LogLevel.DEBUG)\n  }\n  \n  return {\n    logStart: (requestId: string, method: string, url: string) => {\n      middlewareLogger.debug(`[${requestId}] Middleware started for ${method} ${url}`)\n    },\n    logEnd: (requestId: string, duration: number) => {\n      middlewareLogger.debug(`[${requestId}] Middleware completed in ${duration.toFixed(2)}ms`)\n    },\n    logError: (requestId: string, duration: number, error: unknown) => {\n      middlewareLogger.error(\n        `[${requestId}] Middleware failed after ${duration.toFixed(2)}ms:`,\n        error instanceof Error ? error.message : 'Unknown error'\n      )\n    },\n    debug: (message: string, ...args: any[]) => middlewareLogger.debug(message, ...args),\n    info: (message: string, ...args: any[]) => middlewareLogger.info(message, ...args),\n    warn: (message: string, ...args: any[]) => middlewareLogger.warn(message, ...args),\n    error: (message: string, ...args: any[]) => middlewareLogger.error(message, ...args),\n  }\n}\n\nexport const withLogger = (\n  middleware: NextMiddleware,\n  options: WithLoggerOptions = {}\n): NextMiddleware => {\n  const { debug = false, logLevel = LogLevel.INFO } = options\n\n  if (debug) {\n    middlewareLogger.enable()\n    middlewareLogger.setLevel(LogLevel.DEBUG)\n  } else {\n    middlewareLogger.setLevel(logLevel)\n  }\n\n  return async (request, event) => {\n    const startTime = performance.now()\n    const requestId = crypto.randomUUID().slice(0, 8)\n    \n    middlewareLogger.debug(`[${requestId}] Middleware started for ${request.method} ${request.url}`)\n\n    try {\n      const result = await middleware(request, event)\n      const duration = performance.now() - startTime\n      \n      middlewareLogger.debug(`[${requestId}] Middleware completed in ${duration.toFixed(2)}ms`)\n      \n      return result\n    } catch (error) {\n      const duration = performance.now() - startTime\n      \n      middlewareLogger.error(\n        `[${requestId}] Middleware failed after ${duration.toFixed(2)}ms:`,\n        error instanceof Error ? error.message : 'Unknown error'\n      )\n      \n      throw error\n    }\n  }\n}"],"mappings":"AAEA,SAAS,UAAS,wBAAwB;AAOnC,SAAS,2BAA2B,QAAiB,OAAO;AACjE,MAAI,OAAO;AACT,qBAAiB,OAAO;AACxB,qBAAiB,SAAS,SAAS,KAAK;AAAA,EAC1C;AAEA,SAAO;AAAA,IACL,UAAU,CAAC,WAAmB,QAAgB,QAAgB;AAC5D,uBAAiB,MAAM,IAAI,SAAS,4BAA4B,MAAM,IAAI,GAAG,EAAE;AAAA,IACjF;AAAA,IACA,QAAQ,CAAC,WAAmB,aAAqB;AAC/C,uBAAiB,MAAM,IAAI,SAAS,6BAA6B,SAAS,QAAQ,CAAC,CAAC,IAAI;AAAA,IAC1F;AAAA,IACA,UAAU,CAAC,WAAmB,UAAkB,UAAmB;AACjE,uBAAiB;AAAA,QACf,IAAI,SAAS,6BAA6B,SAAS,QAAQ,CAAC,CAAC;AAAA,QAC7D,iBAAiB,QAAQ,MAAM,UAAU;AAAA,MAC3C;AAAA,IACF;AAAA,IACA,OAAO,CAAC,YAAoB,SAAgB,iBAAiB,MAAM,SAAS,GAAG,IAAI;AAAA,IACnF,MAAM,CAAC,YAAoB,SAAgB,iBAAiB,KAAK,SAAS,GAAG,IAAI;AAAA,IACjF,MAAM,CAAC,YAAoB,SAAgB,iBAAiB,KAAK,SAAS,GAAG,IAAI;AAAA,IACjF,OAAO,CAAC,YAAoB,SAAgB,iBAAiB,MAAM,SAAS,GAAG,IAAI;AAAA,EACrF;AACF;AAEO,MAAM,aAAa,CACxB,YACA,UAA6B,CAAC,MACX;AACnB,QAAM,EAAE,QAAQ,OAAO,WAAW,SAAS,KAAK,IAAI;AAEpD,MAAI,OAAO;AACT,qBAAiB,OAAO;AACxB,qBAAiB,SAAS,SAAS,KAAK;AAAA,EAC1C,OAAO;AACL,qBAAiB,SAAS,QAAQ;AAAA,EACpC;AAEA,SAAO,OAAO,SAAS,UAAU;AAC/B,UAAM,YAAY,YAAY,IAAI;AAClC,UAAM,YAAY,OAAO,WAAW,EAAE,MAAM,GAAG,CAAC;AAEhD,qBAAiB,MAAM,IAAI,SAAS,4BAA4B,QAAQ,MAAM,IAAI,QAAQ,GAAG,EAAE;AAE/F,QAAI;AACF,YAAM,SAAS,MAAM,WAAW,SAAS,KAAK;AAC9C,YAAM,WAAW,YAAY,IAAI,IAAI;AAErC,uBAAiB,MAAM,IAAI,SAAS,6BAA6B,SAAS,QAAQ,CAAC,CAAC,IAAI;AAExF,aAAO;AAAA,IACT,SAAS,OAAO;AACd,YAAM,WAAW,YAAY,IAAI,IAAI;AAErC,uBAAiB;AAAA,QACf,IAAI,SAAS,6BAA6B,SAAS,QAAQ,CAAC,CAAC;AAAA,QAC7D,iBAAiB,QAAQ,MAAM,UAAU;AAAA,MAC3C;AAEA,YAAM;AAAA,IACR;AAAA,EACF;AACF;","names":[]}

package/dist/types/app-router/admin/actions.d.ts

@@ -0,0 +1,19 @@
+export declare function createSessionCookieServer(idToken: string): Promise<import("@tern-secure/types").SessionResult>;
+export declare function clearSessionCookieServer(): Promise<import("@tern-secure/types").SessionResult>;
+export declare function clearNextSessionCookie(): Promise<{
+    success: boolean;
+    message: string;
+}>;
+export declare function setNextServerSession(idToken: string): Promise<{
+    success: boolean;
+    message: string;
+}>;
+export declare function setNextServerToken(token: string): Promise<{
+    success: boolean;
+    message: string;
+}>;
+export declare function createNextSessionCookie(idToken: string): Promise<{
+    success: boolean;
+    message: string;
+}>;
+//# sourceMappingURL=actions.d.ts.map

package/dist/types/app-router/admin/actions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"actions.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/actions.ts"],"names":[],"mappings":"AAcA,wBAAsB,yBAAyB,CAAC,OAAO,EAAE,MAAM,uDAG9D;AAED,wBAAsB,wBAAwB,wDAG7C;AAED,wBAAsB,sBAAsB;;;GAE3C;AAED,wBAAsB,oBAAoB,CAAC,OAAO,EAAE,MAAM;;;GAEzD;AAED,wBAAsB,kBAAkB,CAAC,KAAK,EAAE,MAAM;;;GAErD;AAED,wBAAsB,uBAAuB,CAAC,OAAO,EAAE,MAAM;;;GAE5D"}

package/dist/types/app-router/admin/constants.d.ts

@@ -0,0 +1,2 @@
+export declare const TENANT_ID: string;
+//# sourceMappingURL=constants.d.ts.map

package/dist/types/app-router/admin/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,SAAS,QAAmD,CAAC"}

package/dist/types/app-router/admin/fnValidators.d.ts

@@ -0,0 +1,35 @@
+import { type NextRequest, NextResponse } from 'next/server';
+import type { AuthEndpoint, ComprehensiveValidationResult, CorsOptions, EndpointConfig, SecurityOptions, SessionSubEndpoint, ValidationConfig } from './types';
+export interface RequestContext {
+    request: NextRequest;
+    origin: string | null;
+    host: string | null;
+    referer: string | null;
+    userAgent: string;
+    method: string;
+    pathSegments: string[];
+}
+export declare function createRequestContext(request: NextRequest): RequestContext;
+/**
+ * Main validators factory function
+ * Returns an object containing all validator functions and utilities
+ */
+export declare function createValidators(context: RequestContext): {
+    createValidationConfig: (overrides?: Partial<ValidationConfig>) => ValidationConfig;
+    validateRequest: (config: ValidationConfig) => Promise<ComprehensiveValidationResult>;
+    validateCors: (corsOptions: CorsOptions) => Promise<NextResponse | null>;
+    validateSecurity: (securityOptions: SecurityOptions) => Promise<NextResponse | null>;
+    validatePathStructure: () => NextResponse | null;
+    validateEndpoint: (_endpoint: AuthEndpoint, endpointConfig: EndpointConfig) => NextResponse | null;
+    validateSubEndpoint: (subEndpoint: SessionSubEndpoint | undefined, subEndpointConfig: any) => NextResponse | null;
+    validateSessionRequest: () => Promise<{
+        body: any;
+        idToken?: string;
+        csrfToken?: string;
+        error?: NextResponse;
+    }>;
+    validateIdToken: (idToken: string | undefined) => NextResponse | null;
+    validateCsrfToken: (csrfToken: string, csrfCookieValue: string | undefined) => NextResponse | null;
+    createCorsOptionsResponse: (corsOptions: CorsOptions) => NextResponse;
+};
+//# sourceMappingURL=fnValidators.d.ts.map

package/dist/types/app-router/admin/fnValidators.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fnValidators.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/fnValidators.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAG7D,OAAO,KAAK,EACV,YAAY,EACZ,6BAA6B,EAC7B,WAAW,EACX,cAAc,EACd,eAAe,EACf,kBAAkB,EAClB,gBAAgB,EACjB,MAAM,SAAS,CAAC;AAEjB,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,WAAW,CAAC;IACrB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,WAAW,GAAG,cAAc,CAazE;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,cAAc;yCA4SX,OAAO,CAAC,gBAAgB,CAAC,KAAQ,gBAAgB;8BA7ErD,gBAAgB,KAAG,OAAO,CAAC,6BAA6B,CAAC;gCA5NvD,WAAW,KAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;wCAqDlC,eAAe,KAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;iCA0F7D,YAAY,GAAG,IAAI;kCAYxC,YAAY,kBACP,cAAc,KAC7B,YAAY,GAAG,IAAI;uCAaP,kBAAkB,GAAG,SAAS,qBACxB,GAAG,KACrB,YAAY,GAAG,IAAI;kCAgBmB,OAAO,CAAC;QAC/C,IAAI,EAAE,GAAG,CAAC;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,YAAY,CAAC;KACtB,CAAC;+BAYgC,MAAM,GAAG,SAAS,KAAG,YAAY,GAAG,IAAI;mCAhF7D,MAAM,mBACA,MAAM,GAAG,SAAS,KAClC,YAAY,GAAG,IAAI;6CAvG0B,WAAW,KAAG,YAAY;EAuS3E"}

package/dist/types/app-router/admin/index.d.ts

@@ -1,2 +1,4 @@
-export { createSessionHandler } from './sessionHandler';
+export { createTernSecureNextJsHandler } from './ternsecureNextjsHandler';
+export { clearSessionCookieServer, clearNextSessionCookie, createSessionCookieServer, createNextSessionCookie, setNextServerSession, setNextServerToken } from './actions';
+export type { TernSecureHandlerOptions } from './types';
 //# sourceMappingURL=index.d.ts.map

package/dist/types/app-router/admin/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,6BAA6B,EAAE,MAAM,2BAA2B,CAAA;AAEzE,OAAO,EACH,wBAAwB,EACxB,sBAAsB,EACtB,yBAAyB,EACzB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EACrB,MAAM,WAAW,CAAA;AAElB,YAAY,EAAE,wBAAwB,EAAE,MAAM,SAAS,CAAA"}

package/dist/types/app-router/admin/responses.d.ts

@@ -0,0 +1,28 @@
+import { NextResponse } from 'next/server';
+/**
+ * Standardized error response creation
+ */
+export declare function createApiErrorResponse(code: string, message: string, status: number): NextResponse;
+/**
+ * Standardized success response creation
+ */
+export declare function createApiSuccessResponse<T>(data: T, status?: number): NextResponse;
+/**
+ * Session verification response utilities
+ */
+export declare class SessionResponseHelper {
+    static createVerificationResponse(decodedSession: any): NextResponse;
+    static createUnauthorizedResponse(): NextResponse;
+    static createSessionCreationResponse(res: any): NextResponse;
+    static createRefreshResponse(refreshRes: any): NextResponse;
+    static createRevokeResponse(res: any): NextResponse;
+}
+/**
+ * HTTP method response utilities
+ */
+export declare class HttpResponseHelper {
+    static createMethodNotAllowedResponse(): NextResponse;
+    static createNotFoundResponse(): NextResponse;
+    static createSubEndpointNotSupportedResponse(): NextResponse;
+}
+//# sourceMappingURL=responses.d.ts.map

package/dist/types/app-router/admin/responses.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"responses.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/responses.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,GACb,YAAY,CAiBd;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,GAAE,MAAY,GAAG,YAAY,CAQvF;AAED;;GAEG;AACH,qBAAa,qBAAqB;IAChC,MAAM,CAAC,0BAA0B,CAAC,cAAc,EAAE,GAAG,GAAG,YAAY;IAQpE,MAAM,CAAC,0BAA0B,IAAI,YAAY;IAIjD,MAAM,CAAC,6BAA6B,CAAC,GAAG,EAAE,GAAG,GAAG,YAAY;IAoB5D,MAAM,CAAC,qBAAqB,CAAC,UAAU,EAAE,GAAG,GAAG,YAAY;IAY3D,MAAM,CAAC,oBAAoB,CAAC,GAAG,EAAE,GAAG,GAAG,YAAY;CAUpD;AAED;;GAEG;AACH,qBAAa,kBAAkB;IAC7B,MAAM,CAAC,8BAA8B,IAAI,YAAY;IAIrD,MAAM,CAAC,sBAAsB,IAAI,YAAY;IAI7C,MAAM,CAAC,qCAAqC,IAAI,YAAY;CAO7D"}

package/dist/types/app-router/admin/sessionHandlers.d.ts

@@ -0,0 +1,26 @@
+import type { NextRequest, NextResponse } from 'next/server';
+import type { SessionSubEndpoint, TernSecureHandlerOptions, TernSecureInternalHandlerConfig } from './types';
+/**
+ * Session GET request handlers
+ */
+export declare class SessionGetHandler {
+    static handle(request: NextRequest, subEndpoint: SessionSubEndpoint, _config: Required<TernSecureHandlerOptions>): Promise<NextResponse>;
+    private static handleVerify;
+}
+/**
+ * Session POST request handlers
+ */
+export declare class SessionPostHandler {
+    static handle(request: NextRequest, subEndpoint: SessionSubEndpoint, _config: TernSecureInternalHandlerConfig): Promise<NextResponse>;
+    private static handleCreateSession;
+    private static handleRefreshSession;
+    private static handleRevokeSession;
+}
+/**
+ * Main session endpoint orchestrator
+ */
+export declare class SessionEndpointHandler {
+    static handle(request: NextRequest, method: string, subEndpoint: SessionSubEndpoint | undefined, config: Required<TernSecureHandlerOptions>): Promise<NextResponse>;
+    private static validateSubEndpoint;
+}
+//# sourceMappingURL=sessionHandlers.d.ts.map

package/dist/types/app-router/admin/sessionHandlers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sessionHandlers.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/sessionHandlers.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAI7D,OAAO,KAAK,EACV,kBAAkB,EAClB,wBAAwB,EACxB,+BAA+B,EAChC,MAAM,SAAS,CAAC;AAGjB;;GAEG;AACH,qBAAa,iBAAiB;WACf,MAAM,CACjB,OAAO,EAAE,WAAW,EACpB,WAAW,EAAE,kBAAkB,EAC/B,OAAO,EAAE,QAAQ,CAAC,wBAAwB,CAAC,GAC1C,OAAO,CAAC,YAAY,CAAC;mBASH,YAAY;CAiBlC;AAED;;GAEG;AACH,qBAAa,kBAAkB;WAChB,MAAM,CACjB,OAAO,EAAE,WAAW,EACpB,WAAW,EAAE,kBAAkB,EAC/B,OAAO,EAAE,+BAA+B,GACvC,OAAO,CAAC,YAAY,CAAC;mBA0BH,mBAAmB;mBAmBnB,oBAAoB;mBA0BpB,mBAAmB;CAIzC;AAED;;GAEG;AACH,qBAAa,sBAAsB;WACpB,MAAM,CACjB,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,kBAAkB,GAAG,SAAS,EAC3C,MAAM,EAAE,QAAQ,CAAC,wBAAwB,CAAC,GACzC,OAAO,CAAC,YAAY,CAAC;IA4BxB,OAAO,CAAC,MAAM,CAAC,mBAAmB;CAmBnC"}

package/dist/types/app-router/admin/ternsecureNextjsHandler.d.ts

@@ -0,0 +1,7 @@
+import type { NextRequest, NextResponse } from 'next/server';
+import type { TernSecureHandlerOptions } from './types';
+export declare function createTernSecureNextJsHandler(options?: TernSecureHandlerOptions): {
+    GET: (request: NextRequest) => Promise<NextResponse>;
+    POST: (request: NextRequest) => Promise<NextResponse>;
+};
+//# sourceMappingURL=ternsecureNextjsHandler.d.ts.map

package/dist/types/app-router/admin/ternsecureNextjsHandler.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ternsecureNextjsHandler.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/ternsecureNextjsHandler.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAO7D,OAAO,KAAK,EAGV,wBAAwB,EACQ,MAAM,SAAS,CAAC;AA4ClD,wBAAgB,6BAA6B,CAAC,OAAO,CAAC,EAAE,wBAAwB;mBAW9C,WAAW,KAAG,OAAO,CAAC,YAAY,CAAC;oBAAnC,WAAW,KAAG,OAAO,CAAC,YAAY,CAAC;EA0BpE"}

package/dist/types/app-router/admin/types.d.ts

@@ -0,0 +1,105 @@
+import { type NextResponse } from 'next/server';
+export interface CorsOptions {
+    allowedOrigins: string[] | '*';
+    allowedMethods?: string[];
+    allowedHeaders?: string[];
+    allowCredentials?: boolean;
+    maxAge?: number;
+    skipSameOrigin?: boolean;
+}
+export interface CookieOptions {
+    name?: string;
+    domain?: string;
+    path?: string;
+    secure?: boolean;
+    httpOnly?: boolean;
+    sameSite?: 'strict' | 'lax' | 'none';
+    maxAge?: number;
+}
+export interface RateLimitOptions {
+    windowMs?: number;
+    maxRequests?: number;
+    skipSuccessful?: boolean;
+    skipFailedRequests?: boolean;
+}
+export interface SecurityOptions {
+    requireCSRF?: boolean;
+    allowedReferers?: string[];
+    requiredHeaders?: Record<string, string>;
+    ipWhitelist?: string[];
+    userAgent?: {
+        block?: string[];
+        allow?: string[];
+    };
+}
+export interface EndpointConfig {
+    enabled: boolean;
+    methods: ('GET' | 'POST' | 'PUT' | 'DELETE')[];
+    requireAuth?: boolean;
+    rateLimit?: RateLimitOptions;
+    security?: SecurityOptions;
+    cors?: Partial<CorsOptions>;
+}
+export interface SessionEndpointConfig extends EndpointConfig {
+    subEndpoints?: {
+        [K in SessionSubEndpoint]?: Partial<EndpointConfig>;
+    };
+}
+export interface TernSecureHandlerOptions {
+    cors?: CorsOptions;
+    cookies?: CookieOptions;
+    rateLimit?: RateLimitOptions;
+    security?: SecurityOptions;
+    endpoints?: {
+        sessions?: SessionEndpointConfig;
+    };
+    debug?: boolean;
+    environment?: 'development' | 'production' | 'test';
+    basePath?: string;
+}
+/**
+ * Define an internal config type that extends the public options
+ * with server-side only values like tenantId.
+ */
+export type TernSecureInternalHandlerConfig = Required<TernSecureHandlerOptions> & {
+    tenantId?: string;
+};
+export type AuthEndpoint = 'sessions' | 'users';
+export type SessionSubEndpoint = 'verify' | 'createsession' | 'refresh' | 'revoke';
+export declare const DEFAULT_CORS_OPTIONS: CorsOptions;
+export declare const DEFAULT_COOKIE_OPTIONS: CookieOptions;
+export declare const DEFAULT_SECURITY_OPTIONS: SecurityOptions;
+export declare const DEFAULT_ENDPOINT_CONFIG: EndpointConfig;
+export declare const DEFAULT_SESSIONS_CONFIG: SessionEndpointConfig;
+export declare const DEFAULT_HANDLER_OPTIONS: Required<TernSecureHandlerOptions> & {
+    endpoints: Required<NonNullable<TernSecureHandlerOptions['endpoints']>>;
+};
+export interface ValidationResult {
+    error?: NextResponse;
+    data?: any;
+}
+export interface ValidationConfig {
+    cors?: CorsOptions;
+    security?: SecurityOptions;
+    endpoint?: {
+        name: AuthEndpoint;
+        config: EndpointConfig;
+    };
+    subEndpoint?: {
+        name: SessionSubEndpoint;
+        config: EndpointConfig;
+    };
+    requireIdToken?: boolean;
+    requireCsrfToken?: boolean;
+}
+export interface ComprehensiveValidationResult {
+    isValid: boolean;
+    error?: NextResponse;
+    corsResponse?: NextResponse;
+    sessionData?: {
+        body: any;
+        idToken?: string;
+        csrfToken?: string;
+    };
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types/app-router/admin/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,YAAY,EAAE,MAAM,aAAa,CAAC;AAEhD,MAAM,WAAW,WAAW;IAC1B,cAAc,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IAC/B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;IACrC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B;AAED,MAAM,WAAW,eAAe;IAC9B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACzC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,SAAS,CAAC,EAAE;QACV,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;KAClB,CAAC;CACH;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,CAAC,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,CAAC,EAAE,CAAC;IAC/C,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,IAAI,CAAC,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;CAC7B;AAED,MAAM,WAAW,qBAAsB,SAAQ,cAAc;IAC3D,YAAY,CAAC,EAAE;SACZ,CAAC,IAAI,kBAAkB,CAAC,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC;KACpD,CAAC;CACH;AAED,MAAM,WAAW,wBAAwB;IACvC,IAAI,CAAC,EAAE,WAAW,CAAC;IACnB,OAAO,CAAC,EAAE,aAAa,CAAC;IACxB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,SAAS,CAAC,EAAE;QACV,QAAQ,CAAC,EAAE,qBAAqB,CAAC;KAClC,CAAC;IAEF,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,WAAW,CAAC,EAAE,aAAa,GAAG,YAAY,GAAG,MAAM,CAAC;IACpD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,MAAM,+BAA+B,GAAG,QAAQ,CAAC,wBAAwB,CAAC,GAAG;IACjF,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,UAAU,GAAG,OAAO,CAAC;AAChD,MAAM,MAAM,kBAAkB,GAAG,QAAQ,GAAG,eAAe,GAAG,SAAS,GAAG,QAAQ,CAAC;AAEnF,eAAO,MAAM,oBAAoB,EAAE,WAMlC,CAAC;AAEF,eAAO,MAAM,sBAAsB,EAAE,aAOpC,CAAC;AAEF,eAAO,MAAM,wBAAwB,EAAE,eAStC,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,cAKrC,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,qBAqCrC,CAAC;AAEF,eAAO,MAAM,uBAAuB,EAAE,QAAQ,CAAC,wBAAwB,CAAC,GAAG;IACzE,SAAS,EAAE,QAAQ,CAAC,WAAW,CAAC,wBAAwB,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC;CAiBzE,CAAC;AAGF,MAAM,WAAW,gBAAgB;IAC/B,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB,IAAI,CAAC,EAAE,GAAG,CAAC;CACZ;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,CAAC,EAAE,WAAW,CAAC;IACnB,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,QAAQ,CAAC,EAAE;QACT,IAAI,EAAE,YAAY,CAAC;QACnB,MAAM,EAAE,cAAc,CAAC;KACxB,CAAC;IACF,WAAW,CAAC,EAAE;QACZ,IAAI,EAAE,kBAAkB,CAAC;QACzB,MAAM,EAAE,cAAc,CAAC;KACxB,CAAC;IACF,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC5B;AAED,MAAM,WAAW,6BAA6B;IAC5C,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,WAAW,CAAC,EAAE;QACZ,IAAI,EAAE,GAAG,CAAC;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;CACH"}

package/dist/types/app-router/admin/utils.d.ts

@@ -0,0 +1,53 @@
+import type { NextRequest } from 'next/server';
+/**
+ * HTTP utilities
+ */
+export declare class HttpUtils {
+    /**
+     * Extract client IP address from various headers
+     */
+    static getClientIP(request: NextRequest): string;
+    /**
+     * Parse URL path segments for routing
+     */
+    static parsePathSegments(url: URL): string[];
+    /**
+     * Extract authentication headers
+     */
+    static extractAuthHeaders(request: NextRequest): {
+        origin: string | null;
+        host: string | null;
+        referer: string | null;
+        userAgent: string;
+        authorization: string | null;
+        xRequestedWith: string | null;
+    };
+}
+/**
+ * Configuration utilities
+ */
+export declare class ConfigUtils {
+    /**
+     * Deep merge handler options with defaults
+     */
+    static mergeWithDefaults(defaults: any, options?: any): any;
+}
+/**
+ * Cookie utilities
+ */
+export declare class CookieUtils {
+    static extractSessionCookies(request: NextRequest): {
+        sessionCookie: string | undefined;
+        csrfCookie: string | undefined;
+        mainSession: string | undefined;
+    };
+}
+/**
+ * Logging utilities for debugging
+ */
+export declare class LoggingUtils {
+    static logRequest(request: NextRequest, context?: string): void;
+    static logError(error: any, context?: string): void;
+    static logWarning(message: string, context?: string): void;
+}
+//# sourceMappingURL=utils.d.ts.map

package/dist/types/app-router/admin/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/utils.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C;;GAEG;AACH,qBAAa,SAAS;IACpB;;OAEG;IACH,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,WAAW,GAAG,MAAM;IAYhD;;OAEG;IACH,MAAM,CAAC,iBAAiB,CAAC,GAAG,EAAE,GAAG,GAAG,MAAM,EAAE;IAI5C;;OAEG;IACH,MAAM,CAAC,kBAAkB,CAAC,OAAO,EAAE,WAAW;;;;;;;;CAU/C;AAED;;GAEG;AACH,qBAAa,WAAW;IACtB;;OAEG;IACH,MAAM,CAAC,iBAAiB,CACtB,QAAQ,EAAE,GAAG,EACb,OAAO,CAAC,EAAE,GAAG,GACZ,GAAG;CAgBP;AAED;;GAEG;AACH,qBAAa,WAAW;IACtB,MAAM,CAAC,qBAAqB,CAAC,OAAO,EAAE,WAAW;;;;;CAOlD;AAED;;GAEG;AACH,qBAAa,YAAY;IACvB,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,WAAW,EAAE,OAAO,CAAC,EAAE,MAAM;IAMxD,MAAM,CAAC,QAAQ,CAAC,KAAK,EAAE,GAAG,EAAE,OAAO,CAAC,EAAE,MAAM;IAI5C,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM;CAGpD"}

package/dist/types/app-router/admin/validators.d.ts

@@ -0,0 +1,46 @@
+import type { NextRequest } from 'next/server';
+import { NextResponse } from 'next/server';
+import type { AuthEndpoint, CorsOptions, SecurityOptions, SessionSubEndpoint } from './types';
+/**
+ * CORS validation utilities
+ */
+export declare class CorsValidator {
+    static validate(request: NextRequest, corsOptions: CorsOptions): Promise<NextResponse | null>;
+    static createOptionsResponse(corsOptions: CorsOptions): NextResponse;
+}
+/**
+ * Security validation utilities
+ */
+export declare class SecurityValidator {
+    static validate(request: NextRequest, securityOptions: SecurityOptions): Promise<NextResponse | null>;
+    private static validateCsrf;
+    private static validateRequiredHeaders;
+    private static validateUserAgent;
+}
+/**
+ * CSRF token validation utilities
+ */
+export declare class CsrfValidator {
+    static validate(csrfToken: string, csrfCookieValue: string | undefined): NextResponse | null;
+}
+/**
+ * Route validation utilities
+ */
+export declare class RouteValidator {
+    static validatePathStructure(pathSegments: string[]): NextResponse | null;
+    static validateEndpoint(_endpoint: AuthEndpoint, endpointConfig: any, method: string): NextResponse | null;
+    static validateSubEndpoint(subEndpoint: SessionSubEndpoint | undefined, subEndpointConfig: any, method: string): NextResponse | null;
+}
+/**
+ * Request body validation utilities
+ */
+export declare class RequestValidator {
+    static validateSessionRequest(request: NextRequest): Promise<{
+        body: any;
+        idToken?: string;
+        csrfToken?: string;
+        error?: NextResponse;
+    }>;
+    static validateIdToken(idToken: string | undefined): NextResponse | null;
+}
+//# sourceMappingURL=validators.d.ts.map

package/dist/types/app-router/admin/validators.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validators.d.ts","sourceRoot":"","sources":["../../../../src/app-router/admin/validators.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAC,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAG3C,OAAO,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAE9F;;GAEG;AACH,qBAAa,aAAa;WACX,QAAQ,CACnB,OAAO,EAAE,WAAW,EACpB,WAAW,EAAE,WAAW,GACvB,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IA0B/B,MAAM,CAAC,qBAAqB,CAAC,WAAW,EAAE,WAAW,GAAG,YAAY;CA4BrE;AAED;;GAEG;AACH,qBAAa,iBAAiB;WACf,QAAQ,CACnB,OAAO,EAAE,WAAW,EACpB,eAAe,EAAE,eAAe,GAC/B,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAqB/B,OAAO,CAAC,MAAM,CAAC,YAAY;IAwB3B,OAAO,CAAC,MAAM,CAAC,uBAAuB;IAmBtC,OAAO,CAAC,MAAM,CAAC,iBAAiB;CA4BjC;AAED;;GAEG;AACH,qBAAa,aAAa;IACxB,MAAM,CAAC,QAAQ,CAAC,SAAS,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,GAAG,SAAS,GAAG,YAAY,GAAG,IAAI;CAe7F;AAED;;GAEG;AACH,qBAAa,cAAc;IACzB,MAAM,CAAC,qBAAqB,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,YAAY,GAAG,IAAI;IAWzE,MAAM,CAAC,gBAAgB,CACrB,SAAS,EAAE,YAAY,EACvB,cAAc,EAAE,GAAG,EACnB,MAAM,EAAE,MAAM,GACb,YAAY,GAAG,IAAI;IAYtB,MAAM,CAAC,mBAAmB,CACxB,WAAW,EAAE,kBAAkB,GAAG,SAAS,EAC3C,iBAAiB,EAAE,GAAG,EACtB,MAAM,EAAE,MAAM,GACb,YAAY,GAAG,IAAI;CAevB;AAED;;GAEG;AACH,qBAAa,gBAAgB;WACd,sBAAsB,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC;QACjE,IAAI,EAAE,GAAG,CAAC;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,YAAY,CAAC;KACtB,CAAC;IAYF,MAAM,CAAC,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,GAAG,YAAY,GAAG,IAAI;CAUzE"}

package/dist/types/app-router/client/TernSecureProvider.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"TernSecureProvider.d.ts","sourceRoot":"","sources":["../../../../src/app-router/client/TernSecureProvider.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAA;AAIzB,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAA;AActD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,KAAK,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,2CASrF"}
+{"version":3,"file":"TernSecureProvider.d.ts","sourceRoot":"","sources":["../../../../src/app-router/client/TernSecureProvider.tsx"],"names":[],"mappings":"AAGA,OAAO,KAAK,MAAM,OAAO,CAAA;AAEzB,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAA;AAatD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,KAAK,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,2CAQrF"}

package/dist/types/app-router/server/auth.d.ts

@@ -0,0 +1,26 @@
+import type { AuthObject } from '@tern-secure/backend';
+import { redirect } from 'next/navigation';
+import { type AuthProtect } from '../../server/protect';
+import { type RedirectFun } from '../../server/redirect';
+import type { BaseUser } from '../../server/types';
+export interface AuthResult {
+    user: BaseUser | null;
+    error: Error | null;
+}
+/**
+ * `Auth` object of the currently active user and the `redirectToSignIn()` method.
+ */
+type Auth = AuthObject & {
+    redirectToSignIn: RedirectFun<ReturnType<typeof redirect>>;
+    redirectToSignUp: RedirectFun<ReturnType<typeof redirect>>;
+};
+export interface AuthFn {
+    (): Promise<Auth>;
+    protect: AuthProtect;
+}
+/**
+ * Get the current authenticated user from the session or token
+ */
+export declare const auth: AuthFn;
+export {};
+//# sourceMappingURL=auth.d.ts.map

package/dist/types/app-router/server/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/app-router/server/auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAQvD,OAAO,EAAY,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAIrD,OAAO,EAAE,KAAK,WAAW,EAAgB,MAAM,sBAAsB,CAAC;AACtE,OAAO,EAAkB,KAAK,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACzE,OAAO,KAAK,EAAE,QAAQ,EAAe,MAAM,oBAAoB,CAAC;AAGhE,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,QAAQ,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;CACrB;AAED;;GAEG;AACH,KAAK,IAAI,GAAG,UAAU,GAAG;IACvB,gBAAgB,EAAE,WAAW,CAAC,UAAU,CAAC,OAAO,QAAQ,CAAC,CAAC,CAAC;IAC3D,gBAAgB,EAAE,WAAW,CAAC,UAAU,CAAC,OAAO,QAAQ,CAAC,CAAC,CAAC;CAC5D,CAAC;AAEF,MAAM,WAAW,MAAM;IACrB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAElB,OAAO,EAAE,WAAW,CAAC;CACtB;AAyBD;;GAEG;AACH,eAAO,MAAM,IAAI,EAAE,MAwClB,CAAC"}

package/dist/types/app-router/server/utils.d.ts

@@ -0,0 +1,5 @@
+import { NextRequest } from 'next/server';
+export declare const isPrerenderingBailout: (e: unknown) => boolean;
+export declare function buildRequestLike(): Promise<NextRequest>;
+export declare function getScriptNonceFromHeader(cspHeaderValue: string): string | undefined;
+//# sourceMappingURL=utils.d.ts.map

package/dist/types/app-router/server/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../../src/app-router/server/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C,eAAO,MAAM,qBAAqB,GAAI,GAAG,OAAO,YAiB/C,CAAC;AAEF,wBAAsB,gBAAgB,IAAI,OAAO,CAAC,WAAW,CAAC,CAkB7D;AAGD,wBAAgB,wBAAwB,CAAC,cAAc,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CA0CnF"}

package/dist/types/boundary/components.d.ts

@@ -1,2 +1,2 @@
-export { useAuth, useIdToken, useSignUp, useSession, SignIn, SignUp, } from '@tern-secure/react';
+export { useAuth, useIdToken, useSession, useSignIn, signIn, } from '@tern-secure/react';
 //# sourceMappingURL=components.d.ts.map

package/dist/types/boundary/components.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"components.d.ts","sourceRoot":"","sources":["../../../src/boundary/components.ts"],"names":[],"mappings":"AAEA,OAAO,EACH,OAAO,EACP,UAAU,EACV,SAAS,EACT,UAAU,EACV,MAAM,EAGN,MAAM,GACT,MAAM,oBAAoB,CAAA"}
+{"version":3,"file":"components.d.ts","sourceRoot":"","sources":["../../../src/boundary/components.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,OAAO,EACP,UAAU,EACV,UAAU,EACV,SAAS,EACT,MAAM,GACT,MAAM,oBAAoB,CAAA"}

package/dist/types/constants.d.ts

@@ -0,0 +1,11 @@
+export declare const constants: {
+    readonly Headers: {
+        readonly NextRewrite: "x-middleware-rewrite";
+        readonly NextResume: "x-middleware-next";
+        readonly NextRedirect: "Location";
+        readonly NextUrl: "next-url";
+        readonly NextAction: "next-action";
+        readonly NextjsData: "x-nextjs-data";
+    };
+};
+//# sourceMappingURL=constants.d.ts.map

package/dist/types/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAWA,eAAO,MAAM,SAAS;;;;;;;;;CAEZ,CAAC"}

package/dist/types/errors.d.ts

@@ -1,4 +1,4 @@
-import { SignInResponse } from "@tern-secure/types";
+import type { SignInResponse } from "@tern-secure/types";
 export type ErrorCode = keyof typeof ERRORS;
 export interface AuthErrorResponse {
     success: false;

package/dist/types/errors.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAA;AAEnD,MAAM,MAAM,SAAS,GAAG,MAAM,OAAO,MAAM,CAAA;AAE3C,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,KAAK,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,EAAE,SAAS,CAAA;CAChB;AAED,eAAO,MAAM,MAAM;;;;;;;;;;;;;;;;;;;;;;CAsBT,CAAA;AAmBV,qBAAa,eAAgB,SAAQ,KAAK;IACxC,IAAI,EAAE,SAAS,CAAA;gBAEH,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,MAAM;CAK9C;AAiJD;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,iBAAiB,CAwFzE;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,OAAO,GAAG,QAAQ,IAAI,iBAAiB,CASpF;AAID,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,cAAc,GAAG,SAAS,6BAsBrE"}
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAA;AAExD,MAAM,MAAM,SAAS,GAAG,MAAM,OAAO,MAAM,CAAA;AAE3C,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,KAAK,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,EAAE,SAAS,CAAA;CAChB;AAED,eAAO,MAAM,MAAM;;;;;;;;;;;;;;;;;;;;;;CAsBT,CAAA;AAmBV,qBAAa,eAAgB,SAAQ,KAAK;IACxC,IAAI,EAAE,SAAS,CAAA;gBAEH,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,MAAM;CAK9C;AAiJD;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,iBAAiB,CAwFzE;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,OAAO,GAAG,QAAQ,IAAI,iBAAiB,CASpF;AAID,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,cAAc,GAAG,SAAS,6BAsBrE"}

package/dist/types/index.d.ts

@@ -1,5 +1,5 @@
 export { TernSecureProvider } from './app-router/client/TernSecureProvider';
-export { useAuth, useIdToken, useSignUp, useSession, } from './boundary/components';
-export { SignIn, SignUp, UserButton, } from './components/uiComponents';
-export type { TernSecureUser, TernSecureUserData } from '@tern-secure/types';
+export { useAuth, useIdToken, useSession, useSignIn, signIn } from './boundary/components';
+export type { TernSecureUser, TernSecureUserData, SignInResponseTree } from '@tern-secure/types';
+export type { UserInfo, SessionResult } from './types';
 //# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAYA,OAAO,EAAE,kBAAkB,EAAE,MAAM,wCAAwC,CAAA;AAC3E,OAAO,EACH,OAAO,EACP,UAAU,EACV,SAAS,EACT,UAAU,GAKb,MAAM,uBAAuB,CAAA;AAE9B,OAAO,EACH,MAAM,EACN,MAAM,EACN,UAAU,GACb,MAAM,2BAA2B,CAAA;AAElC,YAAY,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,wCAAwC,CAAA;AAC3E,OAAO,EACH,OAAO,EACP,UAAU,EACV,UAAU,EACV,SAAS,EACT,MAAM,EAKT,MAAM,uBAAuB,CAAA;AAE9B,YAAY,EAAE,cAAc,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AAEhG,YAAY,EACR,QAAQ,EACR,aAAa,EAChB,MAAM,SAAS,CAAA"}

package/dist/types/server/constant.d.ts

@@ -0,0 +1,5 @@
+export declare const API_URL: string | undefined;
+export declare const API_VERSION: string;
+export declare const SIGN_IN_URL: string;
+export declare const SIGN_UP_URL: string;
+//# sourceMappingURL=constant.d.ts.map

package/dist/types/server/constant.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constant.d.ts","sourceRoot":"","sources":["../../../src/server/constant.ts"],"names":[],"mappings":"AACA,eAAO,MAAM,OAAO,oBAAiC,CAAA;AACrD,eAAO,MAAM,WAAW,QAA6C,CAAC;AACtE,eAAO,MAAM,WAAW,QAA4C,CAAC;AACrE,eAAO,MAAM,WAAW,QAA4C,CAAC"}