@tern-secure/nextjs 5.2.0-canary.v20251023005301 → 5.2.0-canary.v20251028151628

package/dist/esm/server/node/auth.js

@@ -1,63 +0,0 @@
-import { cookies } from "next/headers";
-import { cache } from "react";
-import { TernSecureError } from "../../errors";
-import { verifyFirebaseToken } from "./SessionTernSecure";
-const auth = cache(async () => {
-  try {
-    const cookieStore = await cookies();
-    const sessionCookie = cookieStore.get("_session_cookie")?.value;
-    if (sessionCookie) {
-      const result = await verifyFirebaseToken(sessionCookie);
-      if (result.valid) {
-        const user = {
-          uid: result.uid ?? "",
-          email: result.email && typeof result.email === "string" ? result.email : null,
-          tenantId: result.tenant || "default",
-          authTime: result.authTime && typeof result.authTime === "number" ? result.authTime : void 0
-        };
-        return { user, error: null };
-      }
-    }
-    return {
-      user: null,
-      error: new TernSecureError("UNAUTHENTICATED", "No valid session found")
-    };
-  } catch (error) {
-    console.error("Error in Auth:", error);
-    if (error instanceof TernSecureError) {
-      return {
-        user: null,
-        error
-      };
-    }
-    return {
-      user: null,
-      error: new TernSecureError(
-        "INTERNAL_ERROR",
-        "An unexpected error occurred"
-      )
-    };
-  }
-});
-const isAuthenticated = cache(async () => {
-  const { user } = await auth();
-  return user !== null;
-});
-const getUser = cache(async () => {
-  const { user } = await auth();
-  return user;
-});
-const requireAuth = cache(async () => {
-  const { user, error } = await auth();
-  if (!user) {
-    throw error || new Error("Authentication required");
-  }
-  return user;
-});
-export {
-  auth,
-  getUser,
-  isAuthenticated,
-  requireAuth
-};
-//# sourceMappingURL=auth.js.map

package/dist/esm/server/node/auth.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/auth.ts"],"sourcesContent":["import { cookies } from \"next/headers\";\nimport { cache } from \"react\";\n\nimport { TernSecureError } from \"../../errors\";\nimport type { BaseUser } from \"../../types\";\nimport { verifyFirebaseToken } from \"./SessionTernSecure\";\n\nexport interface AuthResult {\n  user: BaseUser | null;\n  error: Error | null;\n}\n\n/**\n * Get the current authenticated user from the session cookies\n */\nexport const auth = cache(async (): Promise<AuthResult> => {\n  try {\n    const cookieStore = await cookies();\n\n    const sessionCookie = cookieStore.get(\"_session_cookie\")?.value;\n    if (sessionCookie) {\n      const result = await verifyFirebaseToken(sessionCookie);\n      if (result.valid) {\n        const user: BaseUser = {\n          uid: result.uid ?? \"\",\n          email:\n            result.email && typeof result.email === \"string\"\n              ? result.email\n              : null,\n          tenantId: result.tenant || \"default\",\n          authTime:\n            result.authTime && typeof result.authTime === \"number\"\n              ? result.authTime\n              : undefined,\n        };\n        return { user, error: null };\n      }\n    }\n\n    return {\n      user: null,\n      error: new TernSecureError(\"UNAUTHENTICATED\", \"No valid session found\"),\n    };\n  } catch (error) {\n    console.error(\"Error in Auth:\", error);\n    if (error instanceof TernSecureError) {\n      return {\n        user: null,\n        error,\n      };\n    }\n    return {\n      user: null,\n      error: new TernSecureError(\n        \"INTERNAL_ERROR\",\n        \"An unexpected error occurred\"\n      ),\n    };\n  }\n});\n\n/**\n * Type guard to check if user is authenticated\n */\nexport const isAuthenticated = cache(async (): Promise<boolean> => {\n  const { user } = await auth();\n  return user !== null;\n});\n\n/**\n * Get user info from auth result\n */\nexport const getUser = cache(async (): Promise<BaseUser | null> => {\n  const { user } = await auth();\n  return user;\n});\n\n/**\n * Require authentication\n * Throws error if not authenticated\n */\nexport const requireAuth = cache(async (): Promise<BaseUser> => {\n  const { user, error } = await auth();\n\n  if (!user) {\n    throw error || new Error(\"Authentication required\");\n  }\n\n  return user;\n});\n"],"mappings":"AAAA,SAAS,eAAe;AACxB,SAAS,aAAa;AAEtB,SAAS,uBAAuB;AAEhC,SAAS,2BAA2B;AAU7B,MAAM,OAAO,MAAM,YAAiC;AACzD,MAAI;AACF,UAAM,cAAc,MAAM,QAAQ;AAElC,UAAM,gBAAgB,YAAY,IAAI,iBAAiB,GAAG;AAC1D,QAAI,eAAe;AACjB,YAAM,SAAS,MAAM,oBAAoB,aAAa;AACtD,UAAI,OAAO,OAAO;AAChB,cAAM,OAAiB;AAAA,UACrB,KAAK,OAAO,OAAO;AAAA,UACnB,OACE,OAAO,SAAS,OAAO,OAAO,UAAU,WACpC,OAAO,QACP;AAAA,UACN,UAAU,OAAO,UAAU;AAAA,UAC3B,UACE,OAAO,YAAY,OAAO,OAAO,aAAa,WAC1C,OAAO,WACP;AAAA,QACR;AACA,eAAO,EAAE,MAAM,OAAO,KAAK;AAAA,MAC7B;AAAA,IACF;AAEA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,OAAO,IAAI,gBAAgB,mBAAmB,wBAAwB;AAAA,IACxE;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,kBAAkB,KAAK;AACrC,QAAI,iBAAiB,iBAAiB;AACpC,aAAO;AAAA,QACL,MAAM;AAAA,QACN;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,OAAO,IAAI;AAAA,QACT;AAAA,QACA;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF,CAAC;AAKM,MAAM,kBAAkB,MAAM,YAA8B;AACjE,QAAM,EAAE,KAAK,IAAI,MAAM,KAAK;AAC5B,SAAO,SAAS;AAClB,CAAC;AAKM,MAAM,UAAU,MAAM,YAAsC;AACjE,QAAM,EAAE,KAAK,IAAI,MAAM,KAAK;AAC5B,SAAO;AACT,CAAC;AAMM,MAAM,cAAc,MAAM,YAA+B;AAC9D,QAAM,EAAE,MAAM,MAAM,IAAI,MAAM,KAAK;AAEnC,MAAI,CAAC,MAAM;AACT,UAAM,SAAS,IAAI,MAAM,yBAAyB;AAAA,EACpD;AAEA,SAAO;AACT,CAAC;","names":[]}

package/dist/esm/server/node/index.js

@@ -1,19 +0,0 @@
-import {
-  ternSecureMiddleware,
-  createRouteMatcher
-} from "./ternSecureNodeMiddleware";
-import {
-  auth,
-  getUser,
-  isAuthenticated,
-  requireAuth
-} from "./auth";
-export {
-  auth,
-  createRouteMatcher,
-  getUser,
-  isAuthenticated,
-  requireAuth,
-  ternSecureMiddleware
-};
-//# sourceMappingURL=index.js.map

package/dist/esm/server/node/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/index.ts"],"sourcesContent":["export {\n  ternSecureMiddleware,\n  createRouteMatcher,\n} from \"./ternSecureNodeMiddleware\";\nexport {\n  auth,\n  getUser,\n  isAuthenticated,\n  requireAuth,\n  type AuthResult,\n} from \"./auth\";"],"mappings":"AAAA;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OAEK;","names":[]}

package/dist/esm/server/node/node-session.js

@@ -1,36 +0,0 @@
-import { verifyFirebaseToken } from "./SessionTernSecure";
-async function verifySession(request) {
-  try {
-    const sessionCookie = request.cookies.get("_session_cookie")?.value;
-    if (sessionCookie) {
-      const result = await verifyFirebaseToken(sessionCookie);
-      if (result.valid) {
-        return {
-          isAuthenticated: true,
-          user: {
-            uid: result.uid ?? "",
-            email: result.email || null,
-            tenantId: result.tenant || "default",
-            disabled: false
-          }
-        };
-      }
-    }
-    return {
-      isAuthenticated: false,
-      user: null,
-      error: "No valid session found"
-    };
-  } catch (error) {
-    console.error("Session verification error:", error);
-    return {
-      isAuthenticated: false,
-      user: null,
-      error: error instanceof Error ? error.message : "Session verification failed"
-    };
-  }
-}
-export {
-  verifySession
-};
-//# sourceMappingURL=node-session.js.map

package/dist/esm/server/node/node-session.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/node-session.ts"],"sourcesContent":["import type { NextRequest } from \"next/server\";\n\nimport type { SessionResult } from \"../types\";\nimport { verifyFirebaseToken } from \"./SessionTernSecure\";\n\nexport async function verifySession(\n  request: NextRequest\n): Promise<SessionResult> {\n  try {\n    const sessionCookie = request.cookies.get(\"_session_cookie\")?.value;\n    if (sessionCookie) {\n      const result = await verifyFirebaseToken(sessionCookie);\n      if (result.valid) {\n        //const disabledKey = `disabled_user:${result.uid}`;\n        //const disabledUser: DisabledUserRecord | null =\n        // await redis.get(disabledKey);\n        //const isDisabled = !!disabledUser;\n        return {\n          isAuthenticated: true,\n          user: {\n            uid: result.uid ?? \"\",\n            email: result.email || null,\n            tenantId: result.tenant || \"default\",\n            disabled: false,\n          },\n        };\n      }\n    }\n    return {\n      isAuthenticated: false,\n      user: null,\n      error: \"No valid session found\",\n    };\n  } catch (error) {\n    console.error(\"Session verification error:\", error);\n    return {\n      isAuthenticated: false,\n      user: null,\n      error:\n        error instanceof Error ? error.message : \"Session verification failed\",\n    };\n  }\n}\n"],"mappings":"AAGA,SAAS,2BAA2B;AAEpC,eAAsB,cACpB,SACwB;AACxB,MAAI;AACF,UAAM,gBAAgB,QAAQ,QAAQ,IAAI,iBAAiB,GAAG;AAC9D,QAAI,eAAe;AACjB,YAAM,SAAS,MAAM,oBAAoB,aAAa;AACtD,UAAI,OAAO,OAAO;AAKhB,eAAO;AAAA,UACL,iBAAiB;AAAA,UACjB,MAAM;AAAA,YACJ,KAAK,OAAO,OAAO;AAAA,YACnB,OAAO,OAAO,SAAS;AAAA,YACvB,UAAU,OAAO,UAAU;AAAA,YAC3B,UAAU;AAAA,UACZ;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,MACL,iBAAiB;AAAA,MACjB,MAAM;AAAA,MACN,OAAO;AAAA,IACT;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,+BAA+B,KAAK;AAClD,WAAO;AAAA,MACL,iBAAiB;AAAA,MACjB,MAAM;AAAA,MACN,OACE,iBAAiB,QAAQ,MAAM,UAAU;AAAA,IAC7C;AAAA,EACF;AACF;","names":[]}

package/dist/esm/server/node/ternSecureNodeMiddleware.js

@@ -1,164 +0,0 @@
-import { createRedirect, createTernSecureRequest } from "@tern-secure/backend";
-import {
-  createBackendInstance
-} from "@tern-secure/backend/admin";
-import { NextResponse } from "next/server";
-import { SIGN_IN_URL, SIGN_UP_URL } from "../constant";
-import {
-  isNextjsNotFoundError,
-  isRedirectToSignInError,
-  isRedirectToSignUpError,
-  redirectToSignInError,
-  redirectToSignUpError
-} from "../nextErrors";
-const createRouteMatcher = (patterns) => {
-  return (request) => {
-    const { pathname } = request.nextUrl;
-    return patterns.some((pattern) => {
-      const regexPattern = pattern.replace(/[.*+?^${}()|[\]\\]/g, "\\$&").replace(/\\\*/g, ".*");
-      return new RegExp(`^${regexPattern}$`).test(pathname);
-    });
-  };
-};
-const authenticateMiddlewareRequest = async (request) => {
-  try {
-    const requestState = await createBackendInstance(request);
-    const authResult = requestState.requestState.auth();
-    return {
-      user: {
-        uid: authResult.session.uid,
-        email: authResult.session.email || null,
-        tenantId: authResult.session.firebase?.tenant || "default",
-        authTime: authResult.session.auth_time
-      },
-      session: requestState.requestState.token
-    };
-  } catch (error) {
-    console.error(
-      "Auth check error:",
-      error instanceof Error ? error.message : "Unknown error"
-    );
-    return {
-      user: null,
-      session: null
-    };
-  }
-};
-const ternSecureMiddleware = (...args) => {
-  const [request, event] = parseRequestAndEvent(args);
-  const [handler, params] = parseHandlerAndOptions(args);
-  const middleware = () => {
-    const withAuthNextMiddleware = async (request2, event2) => {
-      const resolvedParams = typeof params === "function" ? await params(request2) : params;
-      const signInUrl = resolvedParams.signInUrl || SIGN_IN_URL;
-      const signUpUrl = resolvedParams.signUpUrl || SIGN_UP_URL;
-      let handlerResult = NextResponse.next();
-      if (handler) {
-        const createAuthHandler = async () => {
-          const authObject = await authenticateMiddlewareRequest(request2);
-          const getAuth = async () => {
-            const ternSecureRequest = createTernSecureRequest(request2);
-            const { redirectToSignIn, redirectToSignUp } = createMiddlewareRedirects(
-              ternSecureRequest,
-              signInUrl,
-              signUpUrl
-            );
-            return {
-              ...authObject,
-              redirectToSignIn,
-              redirectToSignUp
-            };
-          };
-          const protect = async () => {
-            if (!authObject.user || !authObject.session) {
-              const redirectUrl = new URL(signInUrl || "/sign-in", request2.url);
-              redirectUrl.searchParams.set(
-                "redirect",
-                request2.nextUrl.pathname
-              );
-              redirectToSignInError(redirectUrl.toString());
-            }
-          };
-          const authHandler = Object.assign(getAuth, {
-            protect,
-            user: authObject.user,
-            session: authObject.session
-          });
-          return authHandler;
-        };
-        try {
-          const auth = await createAuthHandler();
-          const userHandlerResult = await handler(auth, request2, event2);
-          handlerResult = userHandlerResult || handlerResult;
-        } catch (error) {
-          const ternSecureRequest = createTernSecureRequest(request2);
-          handlerResult = handleControlError(error, ternSecureRequest, request2);
-        }
-        return handlerResult;
-      }
-      return handlerResult;
-    };
-    const nextMiddleware = async (request2, event2) => {
-      return withAuthNextMiddleware(request2, event2);
-    };
-    if (request && event) {
-      return nextMiddleware(request, event);
-    }
-    return nextMiddleware;
-  };
-  return middleware();
-};
-const parseRequestAndEvent = (args) => {
-  return [
-    args[0] instanceof Request ? args[0] : void 0,
-    args[0] instanceof Request ? args[1] : void 0
-  ];
-};
-const parseHandlerAndOptions = (args) => {
-  return [
-    typeof args[0] === "function" ? args[0] : void 0,
-    (args.length === 2 ? args[1] : typeof args[0] === "function" ? {} : args[0]) || {}
-  ];
-};
-const createMiddlewareRedirects = (ternSecureRequest, signInUrl, signUpUrl) => {
-  const redirectToSignIn = (opts = {}) => {
-    const url = signInUrl || ternSecureRequest.ternUrl.toString();
-    redirectToSignInError(url, opts.returnBackUrl);
-  };
-  const redirectToSignUp = (opts = {}) => {
-    const url = signUpUrl || ternSecureRequest.ternUrl.toString();
-    redirectToSignUpError(url, opts.returnBackUrl);
-  };
-  return { redirectToSignIn, redirectToSignUp };
-};
-const handleControlError = (error, ternSecureRequest, nextrequest) => {
-  if (isNextjsNotFoundError(error)) {
-    return NextResponse.rewrite(new URL("/404", nextrequest.url));
-  }
-  if (isRedirectToSignInError(error)) {
-    const redirectAdapter = (url) => NextResponse.redirect(new URL(url, nextrequest.url));
-    const { redirectToSignIn } = createRedirect({
-      redirectAdapter,
-      baseUrl: ternSecureRequest.ternUrl.origin,
-      signInUrl: SIGN_IN_URL,
-      signUpUrl: SIGN_UP_URL
-    });
-    return redirectToSignIn({ returnBackUrl: error.returnBackUrl });
-  }
-  if (isRedirectToSignUpError(error)) {
-    const redirectAdapter = (url) => NextResponse.redirect(new URL(url, nextrequest.url));
-    const { redirectToSignUp } = createRedirect({
-      redirectAdapter,
-      baseUrl: ternSecureRequest.ternUrl.origin,
-      signInUrl: SIGN_IN_URL,
-      signUpUrl: SIGN_UP_URL
-    });
-    return redirectToSignUp({ returnBackUrl: error.returnBackUrl });
-  }
-  throw error;
-};
-export {
-  createRouteMatcher,
-  ternSecureMiddleware
-};
-//# sourceMappingURL=ternSecureNodeMiddleware.js.map

package/dist/esm/server/node/ternSecureNodeMiddleware.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/ternSecureNodeMiddleware.ts"],"sourcesContent":["import {createRedirect,  createTernSecureRequest, type TernSecureRequest } from \"@tern-secure/backend\";\nimport {\n  createBackendInstance,\n} from \"@tern-secure/backend/admin\";\nimport type { NextMiddleware,NextRequest } from \"next/server\";\nimport {NextResponse } from \"next/server\";\n\nimport { SIGN_IN_URL, SIGN_UP_URL } from \"../constant\";\nimport {\n  isNextjsNotFoundError,\n  isRedirectToSignInError,\n  isRedirectToSignUpError,\n  redirectToSignInError,\n  redirectToSignUpError,\n} from \"../nextErrors\";\nimport type { BaseUser ,\n  NextMiddlewareEvtParam,\n  NextMiddlewareRequestParam,\n  NextMiddlewareReturn,\n} from \"../types\";\n\ntype RedirectToParams = { returnBackUrl?: string | URL | null };\nexport type RedirectFun<ReturnType> = (params?: RedirectToParams) => ReturnType;\n\nexport type AuthObject = {\n  user: BaseUser | null;\n  session: string | null;\n};\n\nexport interface MiddlewareAuth extends AuthObject {\n  (): Promise<MiddlewareAuthObject>;\n  protect: () => Promise<void>;\n}\n\ntype MiddlewareHandler = (\n  auth: MiddlewareAuth,\n  request: NextMiddlewareRequestParam,\n  event: NextMiddlewareEvtParam\n) => NextMiddlewareReturn;\n\nexport type MiddlewareAuthObject = AuthObject & {\n  redirectToSignIn: RedirectFun<Response>;\n  redirectToSignUp: RedirectFun<Response>;\n};\n\n/**\n * Create a route matcher function for public paths\n */\nexport const createRouteMatcher = (patterns: string[]) => {\n  return (request: NextRequest): boolean => {\n    const { pathname } = request.nextUrl;\n    return patterns.some((pattern) => {\n      const regexPattern = pattern\n        .replace(/[.*+?^${}()|[\\]\\\\]/g, \"\\\\$&\")\n        .replace(/\\\\\\*/g, \".*\");\n\n      return new RegExp(`^${regexPattern}$`).test(pathname);\n    });\n  };\n};\n\nconst authenticateMiddlewareRequest = async (\n  request: NextRequest\n): Promise<AuthObject> => {\n  try {\n    const requestState = await createBackendInstance(request);\n    const authResult = requestState.requestState.auth();\n\n    return {\n      user: {\n        uid: authResult.session.uid,\n        email: authResult.session.email || null,\n        tenantId: authResult.session.firebase?.tenant || \"default\",\n        authTime: authResult.session.auth_time,\n      },\n      session: requestState.requestState.token,\n    };\n  } catch (error) {\n    console.error(\n      \"Auth check error:\",\n      error instanceof Error ? error.message : \"Unknown error\"\n    );\n    return {\n      user: null,\n      session: null,\n    };\n  }\n};\n\nexport interface MiddlewareOptions {\n  signInUrl?: string;\n  signUpUrl?: string;\n  debug?: boolean;\n}\ntype MiddlewareOptionsCallback = (\n  req: NextRequest\n) => MiddlewareOptions | Promise<MiddlewareOptions>;\n\ninterface TernSecureMiddleware {\n  /**\n   * @example\n   * export default ternSecureMiddleware((auth, request, event) => { ... }, options);\n   */\n  (handler: MiddlewareHandler, options?: MiddlewareOptions): NextMiddleware;\n\n  /**\n   * @example\n   * export default ternSecureMiddleware((auth, request, event) => { ... }, (req) => options);\n   */\n  (\n    handler: MiddlewareHandler,\n    options?: MiddlewareOptionsCallback\n  ): NextMiddleware;\n\n  /**\n   * @example\n   * export default ternSecureMiddleware(options);\n   */\n  (options?: MiddlewareOptions): NextMiddleware;\n  /**\n   * @example\n   * export default ternSecureMiddleware;\n   */\n  (\n    request: NextMiddlewareRequestParam,\n    event: NextMiddlewareEvtParam\n  ): NextMiddlewareReturn;\n}\n\nexport const ternSecureMiddleware = ((\n  ...args: unknown[]\n): NextMiddleware | NextMiddlewareReturn => {\n  const [request, event] = parseRequestAndEvent(args);\n  const [handler, params] = parseHandlerAndOptions(args);\n\n  const middleware = () => {\n    const withAuthNextMiddleware: NextMiddleware = async (request, event) => {\n      const resolvedParams =\n        typeof params === \"function\" ? await params(request) : params;\n\n      const signInUrl = resolvedParams.signInUrl || SIGN_IN_URL;\n      const signUpUrl = resolvedParams.signUpUrl || SIGN_UP_URL;\n\n      let handlerResult: Response = NextResponse.next();\n\n      if (handler) {\n        const createAuthHandler = async (): Promise<MiddlewareAuth> => {\n          const authObject = await authenticateMiddlewareRequest(request);\n\n          const getAuth = async (): Promise<MiddlewareAuthObject> => {\n            const ternSecureRequest = createTernSecureRequest(request);\n            const { redirectToSignIn, redirectToSignUp } =\n              createMiddlewareRedirects(\n                ternSecureRequest,\n                signInUrl,\n                signUpUrl\n              );\n\n            return {\n              ...authObject,\n              redirectToSignIn,\n              redirectToSignUp,\n            };\n          };\n\n          const protect = async (): Promise<void> => {\n            if (!authObject.user || !authObject.session) {\n              const redirectUrl = new URL(signInUrl || \"/sign-in\", request.url);\n              redirectUrl.searchParams.set(\n                \"redirect\",\n                request.nextUrl.pathname\n              );\n              redirectToSignInError(redirectUrl.toString());\n            }\n          };\n\n          // Return the MiddlewareAuth object with direct property access\n          const authHandler = Object.assign(getAuth, {\n            protect,\n            user: authObject.user,\n            session: authObject.session,\n          });\n\n          return authHandler as MiddlewareAuth;\n        };\n\n        try {\n          const auth = await createAuthHandler();\n          const userHandlerResult = await handler(auth, request, event);\n          handlerResult = userHandlerResult || handlerResult;\n        } catch (error) {\n          const ternSecureRequest = createTernSecureRequest(request);\n          handlerResult = handleControlError(error, ternSecureRequest, request);\n        }\n\n        return handlerResult;\n      }\n\n      return handlerResult;\n    };\n\n    const nextMiddleware: NextMiddleware = async (request, event) => {\n      return withAuthNextMiddleware(request, event);\n    };\n\n    if (request && event) {\n      return nextMiddleware(request, event);\n    }\n\n    return nextMiddleware;\n  };\n  return middleware();\n}) as TernSecureMiddleware;\n\nconst parseRequestAndEvent = (args: unknown[]) => {\n  return [\n    args[0] instanceof Request ? args[0] : undefined,\n    args[0] instanceof Request ? args[1] : undefined,\n  ] as [\n    NextMiddlewareRequestParam | undefined,\n    NextMiddlewareEvtParam | undefined,\n  ];\n};\n\nconst parseHandlerAndOptions = (args: unknown[]) => {\n  return [\n    typeof args[0] === \"function\" ? args[0] : undefined,\n    (args.length === 2\n      ? args[1]\n      : typeof args[0] === \"function\"\n        ? {}\n        : args[0]) || {},\n  ] as [\n    MiddlewareHandler | undefined,\n    MiddlewareOptions | MiddlewareOptionsCallback,\n  ];\n};\n\n/**\n * Create middleware redirect functions\n */\nconst createMiddlewareRedirects = (\n  ternSecureRequest: TernSecureRequest,\n  signInUrl: string,\n  signUpUrl: string\n) => {\n  const redirectToSignIn: MiddlewareAuthObject[\"redirectToSignIn\"] = (\n    opts = {}\n  ) => {\n    const url = signInUrl || ternSecureRequest.ternUrl.toString();\n    redirectToSignInError(url, opts.returnBackUrl);\n  };\n\n  const redirectToSignUp: MiddlewareAuthObject[\"redirectToSignUp\"] = (\n    opts = {}\n  ) => {\n    const url = signUpUrl || ternSecureRequest.ternUrl.toString();\n    redirectToSignUpError(url, opts.returnBackUrl);\n  };\n\n  return { redirectToSignIn, redirectToSignUp };\n};\n\n/**\n * Handle control flow errors in middleware\n */\nconst handleControlError = (\n  error: any,\n  ternSecureRequest: TernSecureRequest,\n  nextrequest: NextRequest\n): Response => {\n  if (isNextjsNotFoundError(error)) {\n    return NextResponse.rewrite(new URL(\"/404\", nextrequest.url));\n  }\n\n  // Handle redirect to sign in errors\n  if (isRedirectToSignInError(error)) {\n    const redirectAdapter = (url: string) =>\n      NextResponse.redirect(new URL(url, nextrequest.url));\n    const { redirectToSignIn } = createRedirect({\n      redirectAdapter,\n      baseUrl: ternSecureRequest.ternUrl.origin,\n      signInUrl: SIGN_IN_URL,\n      signUpUrl: SIGN_UP_URL,\n    });\n\n    return redirectToSignIn({ returnBackUrl: error.returnBackUrl });\n  }\n\n  // Handle redirect to sign up errors\n  if (isRedirectToSignUpError(error)) {\n    const redirectAdapter = (url: string) =>\n      NextResponse.redirect(new URL(url, nextrequest.url));\n    const { redirectToSignUp } = createRedirect({\n      redirectAdapter,\n      baseUrl: ternSecureRequest.ternUrl.origin,\n      signInUrl: SIGN_IN_URL,\n      signUpUrl: SIGN_UP_URL,\n    });\n\n    return redirectToSignUp({ returnBackUrl: error.returnBackUrl });\n  }\n\n  throw error;\n};\n"],"mappings":"AAAA,SAAQ,gBAAiB,+BAAuD;AAChF;AAAA,EACE;AAAA,OACK;AAEP,SAAQ,oBAAoB;AAE5B,SAAS,aAAa,mBAAmB;AACzC;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAkCA,MAAM,qBAAqB,CAAC,aAAuB;AACxD,SAAO,CAAC,YAAkC;AACxC,UAAM,EAAE,SAAS,IAAI,QAAQ;AAC7B,WAAO,SAAS,KAAK,CAAC,YAAY;AAChC,YAAM,eAAe,QAClB,QAAQ,uBAAuB,MAAM,EACrC,QAAQ,SAAS,IAAI;AAExB,aAAO,IAAI,OAAO,IAAI,YAAY,GAAG,EAAE,KAAK,QAAQ;AAAA,IACtD,CAAC;AAAA,EACH;AACF;AAEA,MAAM,gCAAgC,OACpC,YACwB;AACxB,MAAI;AACF,UAAM,eAAe,MAAM,sBAAsB,OAAO;AACxD,UAAM,aAAa,aAAa,aAAa,KAAK;AAElD,WAAO;AAAA,MACL,MAAM;AAAA,QACJ,KAAK,WAAW,QAAQ;AAAA,QACxB,OAAO,WAAW,QAAQ,SAAS;AAAA,QACnC,UAAU,WAAW,QAAQ,UAAU,UAAU;AAAA,QACjD,UAAU,WAAW,QAAQ;AAAA,MAC/B;AAAA,MACA,SAAS,aAAa,aAAa;AAAA,IACrC;AAAA,EACF,SAAS,OAAO;AACd,YAAQ;AAAA,MACN;AAAA,MACA,iBAAiB,QAAQ,MAAM,UAAU;AAAA,IAC3C;AACA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,SAAS;AAAA,IACX;AAAA,EACF;AACF;AA0CO,MAAM,uBAAwB,IAChC,SACuC;AAC1C,QAAM,CAAC,SAAS,KAAK,IAAI,qBAAqB,IAAI;AAClD,QAAM,CAAC,SAAS,MAAM,IAAI,uBAAuB,IAAI;AAErD,QAAM,aAAa,MAAM;AACvB,UAAM,yBAAyC,OAAOA,UAASC,WAAU;AACvE,YAAM,iBACJ,OAAO,WAAW,aAAa,MAAM,OAAOD,QAAO,IAAI;AAEzD,YAAM,YAAY,eAAe,aAAa;AAC9C,YAAM,YAAY,eAAe,aAAa;AAE9C,UAAI,gBAA0B,aAAa,KAAK;AAEhD,UAAI,SAAS;AACX,cAAM,oBAAoB,YAAqC;AAC7D,gBAAM,aAAa,MAAM,8BAA8BA,QAAO;AAE9D,gBAAM,UAAU,YAA2C;AACzD,kBAAM,oBAAoB,wBAAwBA,QAAO;AACzD,kBAAM,EAAE,kBAAkB,iBAAiB,IACzC;AAAA,cACE;AAAA,cACA;AAAA,cACA;AAAA,YACF;AAEF,mBAAO;AAAA,cACL,GAAG;AAAA,cACH;AAAA,cACA;AAAA,YACF;AAAA,UACF;AAEA,gBAAM,UAAU,YAA2B;AACzC,gBAAI,CAAC,WAAW,QAAQ,CAAC,WAAW,SAAS;AAC3C,oBAAM,cAAc,IAAI,IAAI,aAAa,YAAYA,SAAQ,GAAG;AAChE,0BAAY,aAAa;AAAA,gBACvB;AAAA,gBACAA,SAAQ,QAAQ;AAAA,cAClB;AACA,oCAAsB,YAAY,SAAS,CAAC;AAAA,YAC9C;AAAA,UACF;AAGA,gBAAM,cAAc,OAAO,OAAO,SAAS;AAAA,YACzC;AAAA,YACA,MAAM,WAAW;AAAA,YACjB,SAAS,WAAW;AAAA,UACtB,CAAC;AAED,iBAAO;AAAA,QACT;AAEA,YAAI;AACF,gBAAM,OAAO,MAAM,kBAAkB;AACrC,gBAAM,oBAAoB,MAAM,QAAQ,MAAMA,UAASC,MAAK;AAC5D,0BAAgB,qBAAqB;AAAA,QACvC,SAAS,OAAO;AACd,gBAAM,oBAAoB,wBAAwBD,QAAO;AACzD,0BAAgB,mBAAmB,OAAO,mBAAmBA,QAAO;AAAA,QACtE;AAEA,eAAO;AAAA,MACT;AAEA,aAAO;AAAA,IACT;AAEA,UAAM,iBAAiC,OAAOA,UAASC,WAAU;AAC/D,aAAO,uBAAuBD,UAASC,MAAK;AAAA,IAC9C;AAEA,QAAI,WAAW,OAAO;AACpB,aAAO,eAAe,SAAS,KAAK;AAAA,IACtC;AAEA,WAAO;AAAA,EACT;AACA,SAAO,WAAW;AACpB;AAEA,MAAM,uBAAuB,CAAC,SAAoB;AAChD,SAAO;AAAA,IACL,KAAK,CAAC,aAAa,UAAU,KAAK,CAAC,IAAI;AAAA,IACvC,KAAK,CAAC,aAAa,UAAU,KAAK,CAAC,IAAI;AAAA,EACzC;AAIF;AAEA,MAAM,yBAAyB,CAAC,SAAoB;AAClD,SAAO;AAAA,IACL,OAAO,KAAK,CAAC,MAAM,aAAa,KAAK,CAAC,IAAI;AAAA,KACzC,KAAK,WAAW,IACb,KAAK,CAAC,IACN,OAAO,KAAK,CAAC,MAAM,aACjB,CAAC,IACD,KAAK,CAAC,MAAM,CAAC;AAAA,EACrB;AAIF;AAKA,MAAM,4BAA4B,CAChC,mBACA,WACA,cACG;AACH,QAAM,mBAA6D,CACjE,OAAO,CAAC,MACL;AACH,UAAM,MAAM,aAAa,kBAAkB,QAAQ,SAAS;AAC5D,0BAAsB,KAAK,KAAK,aAAa;AAAA,EAC/C;AAEA,QAAM,mBAA6D,CACjE,OAAO,CAAC,MACL;AACH,UAAM,MAAM,aAAa,kBAAkB,QAAQ,SAAS;AAC5D,0BAAsB,KAAK,KAAK,aAAa;AAAA,EAC/C;AAEA,SAAO,EAAE,kBAAkB,iBAAiB;AAC9C;AAKA,MAAM,qBAAqB,CACzB,OACA,mBACA,gBACa;AACb,MAAI,sBAAsB,KAAK,GAAG;AAChC,WAAO,aAAa,QAAQ,IAAI,IAAI,QAAQ,YAAY,GAAG,CAAC;AAAA,EAC9D;AAGA,MAAI,wBAAwB,KAAK,GAAG;AAClC,UAAM,kBAAkB,CAAC,QACvB,aAAa,SAAS,IAAI,IAAI,KAAK,YAAY,GAAG,CAAC;AACrD,UAAM,EAAE,iBAAiB,IAAI,eAAe;AAAA,MAC1C;AAAA,MACA,SAAS,kBAAkB,QAAQ;AAAA,MACnC,WAAW;AAAA,MACX,WAAW;AAAA,IACb,CAAC;AAED,WAAO,iBAAiB,EAAE,eAAe,MAAM,cAAc,CAAC;AAAA,EAChE;AAGA,MAAI,wBAAwB,KAAK,GAAG;AAClC,UAAM,kBAAkB,CAAC,QACvB,aAAa,SAAS,IAAI,IAAI,KAAK,YAAY,GAAG,CAAC;AACrD,UAAM,EAAE,iBAAiB,IAAI,eAAe;AAAA,MAC1C;AAAA,MACA,SAAS,kBAAkB,QAAQ;AAAA,MACnC,WAAW;AAAA,MACX,WAAW;AAAA,IACb,CAAC;AAED,WAAO,iBAAiB,EAAE,eAAe,MAAM,cAAc,CAAC;AAAA,EAChE;AAEA,QAAM;AACR;","names":["request","event"]}

package/dist/types/server/node/SessionTernSecure.d.ts

@@ -1,3 +0,0 @@
-import type { TernVerificationResult } from "@tern-secure/types";
-export declare function verifyFirebaseToken(token: string): Promise<TernVerificationResult>;
-//# sourceMappingURL=SessionTernSecure.d.ts.map

package/dist/types/server/node/SessionTernSecure.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"SessionTernSecure.d.ts","sourceRoot":"","sources":["../../../../src/server/node/SessionTernSecure.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,oBAAoB,CAAC;AAEjE,wBAAsB,mBAAmB,CACvC,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,sBAAsB,CAAC,CA0BjC"}

package/dist/types/server/node/auth.d.ts

@@ -1,23 +0,0 @@
-import type { BaseUser } from "../../types";
-export interface AuthResult {
-    user: BaseUser | null;
-    error: Error | null;
-}
-/**
- * Get the current authenticated user from the session cookies
- */
-export declare const auth: () => Promise<AuthResult>;
-/**
- * Type guard to check if user is authenticated
- */
-export declare const isAuthenticated: () => Promise<boolean>;
-/**
- * Get user info from auth result
- */
-export declare const getUser: () => Promise<BaseUser | null>;
-/**
- * Require authentication
- * Throws error if not authenticated
- */
-export declare const requireAuth: () => Promise<BaseUser>;
-//# sourceMappingURL=auth.d.ts.map

package/dist/types/server/node/auth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/server/node/auth.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAG5C,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,QAAQ,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;CACrB;AAED;;GAEG;AACH,eAAO,MAAM,IAAI,QAAmB,OAAO,CAAC,UAAU,CA4CpD,CAAC;AAEH;;GAEG;AACH,eAAO,MAAM,eAAe,QAAmB,OAAO,CAAC,OAAO,CAG5D,CAAC;AAEH;;GAEG;AACH,eAAO,MAAM,OAAO,QAAmB,OAAO,CAAC,QAAQ,GAAG,IAAI,CAG5D,CAAC;AAEH;;;GAGG;AACH,eAAO,MAAM,WAAW,QAAmB,OAAO,CAAC,QAAQ,CAQzD,CAAC"}

package/dist/types/server/node/index.d.ts

@@ -1,3 +0,0 @@
-export { ternSecureMiddleware, createRouteMatcher, } from "./ternSecureNodeMiddleware";
-export { auth, getUser, isAuthenticated, requireAuth, type AuthResult, } from "./auth";
-//# sourceMappingURL=index.d.ts.map

package/dist/types/server/node/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/server/node/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,oBAAoB,EACpB,kBAAkB,GACnB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,IAAI,EACJ,OAAO,EACP,eAAe,EACf,WAAW,EACX,KAAK,UAAU,GAChB,MAAM,QAAQ,CAAC"}

package/dist/types/server/node/node-session.d.ts

@@ -1,4 +0,0 @@
-import type { NextRequest } from "next/server";
-import type { SessionResult } from "../types";
-export declare function verifySession(request: NextRequest): Promise<SessionResult>;
-//# sourceMappingURL=node-session.d.ts.map

package/dist/types/server/node/node-session.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"node-session.d.ts","sourceRoot":"","sources":["../../../../src/server/node/node-session.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAG9C,wBAAsB,aAAa,CACjC,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC,CAmCxB"}

package/dist/types/server/node/ternSecureNodeMiddleware.d.ts

@@ -1,54 +0,0 @@
-import type { NextMiddleware, NextRequest } from "next/server";
-import type { BaseUser, NextMiddlewareEvtParam, NextMiddlewareRequestParam, NextMiddlewareReturn } from "../types";
-type RedirectToParams = {
-    returnBackUrl?: string | URL | null;
-};
-export type RedirectFun<ReturnType> = (params?: RedirectToParams) => ReturnType;
-export type AuthObject = {
-    user: BaseUser | null;
-    session: string | null;
-};
-export interface MiddlewareAuth extends AuthObject {
-    (): Promise<MiddlewareAuthObject>;
-    protect: () => Promise<void>;
-}
-type MiddlewareHandler = (auth: MiddlewareAuth, request: NextMiddlewareRequestParam, event: NextMiddlewareEvtParam) => NextMiddlewareReturn;
-export type MiddlewareAuthObject = AuthObject & {
-    redirectToSignIn: RedirectFun<Response>;
-    redirectToSignUp: RedirectFun<Response>;
-};
-/**
- * Create a route matcher function for public paths
- */
-export declare const createRouteMatcher: (patterns: string[]) => (request: NextRequest) => boolean;
-export interface MiddlewareOptions {
-    signInUrl?: string;
-    signUpUrl?: string;
-    debug?: boolean;
-}
-type MiddlewareOptionsCallback = (req: NextRequest) => MiddlewareOptions | Promise<MiddlewareOptions>;
-interface TernSecureMiddleware {
-    /**
-     * @example
-     * export default ternSecureMiddleware((auth, request, event) => { ... }, options);
-     */
-    (handler: MiddlewareHandler, options?: MiddlewareOptions): NextMiddleware;
-    /**
-     * @example
-     * export default ternSecureMiddleware((auth, request, event) => { ... }, (req) => options);
-     */
-    (handler: MiddlewareHandler, options?: MiddlewareOptionsCallback): NextMiddleware;
-    /**
-     * @example
-     * export default ternSecureMiddleware(options);
-     */
-    (options?: MiddlewareOptions): NextMiddleware;
-    /**
-     * @example
-     * export default ternSecureMiddleware;
-     */
-    (request: NextMiddlewareRequestParam, event: NextMiddlewareEvtParam): NextMiddlewareReturn;
-}
-export declare const ternSecureMiddleware: TernSecureMiddleware;
-export {};
-//# sourceMappingURL=ternSecureNodeMiddleware.d.ts.map

package/dist/types/server/node/ternSecureNodeMiddleware.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ternSecureNodeMiddleware.d.ts","sourceRoot":"","sources":["../../../../src/server/node/ternSecureNodeMiddleware.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,cAAc,EAAC,WAAW,EAAE,MAAM,aAAa,CAAC;AAW9D,OAAO,KAAK,EAAE,QAAQ,EACpB,sBAAsB,EACtB,0BAA0B,EAC1B,oBAAoB,EACrB,MAAM,UAAU,CAAC;AAElB,KAAK,gBAAgB,GAAG;IAAE,aAAa,CAAC,EAAE,MAAM,GAAG,GAAG,GAAG,IAAI,CAAA;CAAE,CAAC;AAChE,MAAM,MAAM,WAAW,CAAC,UAAU,IAAI,CAAC,MAAM,CAAC,EAAE,gBAAgB,KAAK,UAAU,CAAC;AAEhF,MAAM,MAAM,UAAU,GAAG;IACvB,IAAI,EAAE,QAAQ,GAAG,IAAI,CAAC;IACtB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;CACxB,CAAC;AAEF,MAAM,WAAW,cAAe,SAAQ,UAAU;IAChD,IAAI,OAAO,CAAC,oBAAoB,CAAC,CAAC;IAClC,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B;AAED,KAAK,iBAAiB,GAAG,CACvB,IAAI,EAAE,cAAc,EACpB,OAAO,EAAE,0BAA0B,EACnC,KAAK,EAAE,sBAAsB,KAC1B,oBAAoB,CAAC;AAE1B,MAAM,MAAM,oBAAoB,GAAG,UAAU,GAAG;IAC9C,gBAAgB,EAAE,WAAW,CAAC,QAAQ,CAAC,CAAC;IACxC,gBAAgB,EAAE,WAAW,CAAC,QAAQ,CAAC,CAAC;CACzC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,kBAAkB,GAAI,UAAU,MAAM,EAAE,MAC3C,SAAS,WAAW,KAAG,OAUhC,CAAC;AA8BF,MAAM,WAAW,iBAAiB;IAChC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AACD,KAAK,yBAAyB,GAAG,CAC/B,GAAG,EAAE,WAAW,KACb,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAEpD,UAAU,oBAAoB;IAC5B;;;OAGG;IACH,CAAC,OAAO,EAAE,iBAAiB,EAAE,OAAO,CAAC,EAAE,iBAAiB,GAAG,cAAc,CAAC;IAE1E;;;OAGG;IACH,CACE,OAAO,EAAE,iBAAiB,EAC1B,OAAO,CAAC,EAAE,yBAAyB,GAClC,cAAc,CAAC;IAElB;;;OAGG;IACH,CAAC,OAAO,CAAC,EAAE,iBAAiB,GAAG,cAAc,CAAC;IAC9C;;;OAGG;IACH,CACE,OAAO,EAAE,0BAA0B,EACnC,KAAK,EAAE,sBAAsB,GAC5B,oBAAoB,CAAC;CACzB;AAED,eAAO,MAAM,oBAAoB,EAmF3B,oBAAoB,CAAC"}