@tern-secure/nextjs 5.2.0-canary.v20251024005655 → 5.2.0-canary.v20251028151628

package/dist/cjs/server/node/auth.js

@@ -1,90 +0,0 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var auth_exports = {};
-__export(auth_exports, {
-  auth: () => auth,
-  getUser: () => getUser,
-  isAuthenticated: () => isAuthenticated,
-  requireAuth: () => requireAuth
-});
-module.exports = __toCommonJS(auth_exports);
-var import_headers = require("next/headers");
-var import_react = require("react");
-var import_errors = require("../../errors");
-var import_SessionTernSecure = require("./SessionTernSecure");
-const auth = (0, import_react.cache)(async () => {
-  try {
-    const cookieStore = await (0, import_headers.cookies)();
-    const sessionCookie = cookieStore.get("_session_cookie")?.value;
-    if (sessionCookie) {
-      const result = await (0, import_SessionTernSecure.verifyFirebaseToken)(sessionCookie);
-      if (result.valid) {
-        const user = {
-          uid: result.uid ?? "",
-          email: result.email && typeof result.email === "string" ? result.email : null,
-          tenantId: result.tenant || "default",
-          authTime: result.authTime && typeof result.authTime === "number" ? result.authTime : void 0
-        };
-        return { user, error: null };
-      }
-    }
-    return {
-      user: null,
-      error: new import_errors.TernSecureError("UNAUTHENTICATED", "No valid session found")
-    };
-  } catch (error) {
-    console.error("Error in Auth:", error);
-    if (error instanceof import_errors.TernSecureError) {
-      return {
-        user: null,
-        error
-      };
-    }
-    return {
-      user: null,
-      error: new import_errors.TernSecureError(
-        "INTERNAL_ERROR",
-        "An unexpected error occurred"
-      )
-    };
-  }
-});
-const isAuthenticated = (0, import_react.cache)(async () => {
-  const { user } = await auth();
-  return user !== null;
-});
-const getUser = (0, import_react.cache)(async () => {
-  const { user } = await auth();
-  return user;
-});
-const requireAuth = (0, import_react.cache)(async () => {
-  const { user, error } = await auth();
-  if (!user) {
-    throw error || new Error("Authentication required");
-  }
-  return user;
-});
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  auth,
-  getUser,
-  isAuthenticated,
-  requireAuth
-});
-//# sourceMappingURL=auth.js.map

package/dist/cjs/server/node/auth.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/auth.ts"],"sourcesContent":["import { cookies } from \"next/headers\";\nimport { cache } from \"react\";\n\nimport { TernSecureError } from \"../../errors\";\nimport type { BaseUser } from \"../../types\";\nimport { verifyFirebaseToken } from \"./SessionTernSecure\";\n\nexport interface AuthResult {\n  user: BaseUser | null;\n  error: Error | null;\n}\n\n/**\n * Get the current authenticated user from the session cookies\n */\nexport const auth = cache(async (): Promise<AuthResult> => {\n  try {\n    const cookieStore = await cookies();\n\n    const sessionCookie = cookieStore.get(\"_session_cookie\")?.value;\n    if (sessionCookie) {\n      const result = await verifyFirebaseToken(sessionCookie);\n      if (result.valid) {\n        const user: BaseUser = {\n          uid: result.uid ?? \"\",\n          email:\n            result.email && typeof result.email === \"string\"\n              ? result.email\n              : null,\n          tenantId: result.tenant || \"default\",\n          authTime:\n            result.authTime && typeof result.authTime === \"number\"\n              ? result.authTime\n              : undefined,\n        };\n        return { user, error: null };\n      }\n    }\n\n    return {\n      user: null,\n      error: new TernSecureError(\"UNAUTHENTICATED\", \"No valid session found\"),\n    };\n  } catch (error) {\n    console.error(\"Error in Auth:\", error);\n    if (error instanceof TernSecureError) {\n      return {\n        user: null,\n        error,\n      };\n    }\n    return {\n      user: null,\n      error: new TernSecureError(\n        \"INTERNAL_ERROR\",\n        \"An unexpected error occurred\"\n      ),\n    };\n  }\n});\n\n/**\n * Type guard to check if user is authenticated\n */\nexport const isAuthenticated = cache(async (): Promise<boolean> => {\n  const { user } = await auth();\n  return user !== null;\n});\n\n/**\n * Get user info from auth result\n */\nexport const getUser = cache(async (): Promise<BaseUser | null> => {\n  const { user } = await auth();\n  return user;\n});\n\n/**\n * Require authentication\n * Throws error if not authenticated\n */\nexport const requireAuth = cache(async (): Promise<BaseUser> => {\n  const { user, error } = await auth();\n\n  if (!user) {\n    throw error || new Error(\"Authentication required\");\n  }\n\n  return user;\n});\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,qBAAwB;AACxB,mBAAsB;AAEtB,oBAAgC;AAEhC,+BAAoC;AAU7B,MAAM,WAAO,oBAAM,YAAiC;AACzD,MAAI;AACF,UAAM,cAAc,UAAM,wBAAQ;AAElC,UAAM,gBAAgB,YAAY,IAAI,iBAAiB,GAAG;AAC1D,QAAI,eAAe;AACjB,YAAM,SAAS,UAAM,8CAAoB,aAAa;AACtD,UAAI,OAAO,OAAO;AAChB,cAAM,OAAiB;AAAA,UACrB,KAAK,OAAO,OAAO;AAAA,UACnB,OACE,OAAO,SAAS,OAAO,OAAO,UAAU,WACpC,OAAO,QACP;AAAA,UACN,UAAU,OAAO,UAAU;AAAA,UAC3B,UACE,OAAO,YAAY,OAAO,OAAO,aAAa,WAC1C,OAAO,WACP;AAAA,QACR;AACA,eAAO,EAAE,MAAM,OAAO,KAAK;AAAA,MAC7B;AAAA,IACF;AAEA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,OAAO,IAAI,8BAAgB,mBAAmB,wBAAwB;AAAA,IACxE;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,kBAAkB,KAAK;AACrC,QAAI,iBAAiB,+BAAiB;AACpC,aAAO;AAAA,QACL,MAAM;AAAA,QACN;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,OAAO,IAAI;AAAA,QACT;AAAA,QACA;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF,CAAC;AAKM,MAAM,sBAAkB,oBAAM,YAA8B;AACjE,QAAM,EAAE,KAAK,IAAI,MAAM,KAAK;AAC5B,SAAO,SAAS;AAClB,CAAC;AAKM,MAAM,cAAU,oBAAM,YAAsC;AACjE,QAAM,EAAE,KAAK,IAAI,MAAM,KAAK;AAC5B,SAAO;AACT,CAAC;AAMM,MAAM,kBAAc,oBAAM,YAA+B;AAC9D,QAAM,EAAE,MAAM,MAAM,IAAI,MAAM,KAAK;AAEnC,MAAI,CAAC,MAAM;AACT,UAAM,SAAS,IAAI,MAAM,yBAAyB;AAAA,EACpD;AAEA,SAAO;AACT,CAAC;","names":[]}

package/dist/cjs/server/node/index.js

@@ -1,40 +0,0 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var node_exports = {};
-__export(node_exports, {
-  auth: () => import_auth.auth,
-  createRouteMatcher: () => import_ternSecureNodeMiddleware.createRouteMatcher,
-  getUser: () => import_auth.getUser,
-  isAuthenticated: () => import_auth.isAuthenticated,
-  requireAuth: () => import_auth.requireAuth,
-  ternSecureMiddleware: () => import_ternSecureNodeMiddleware.ternSecureMiddleware
-});
-module.exports = __toCommonJS(node_exports);
-var import_ternSecureNodeMiddleware = require("./ternSecureNodeMiddleware");
-var import_auth = require("./auth");
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  auth,
-  createRouteMatcher,
-  getUser,
-  isAuthenticated,
-  requireAuth,
-  ternSecureMiddleware
-});
-//# sourceMappingURL=index.js.map

package/dist/cjs/server/node/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/index.ts"],"sourcesContent":["export {\n  ternSecureMiddleware,\n  createRouteMatcher,\n} from \"./ternSecureNodeMiddleware\";\nexport {\n  auth,\n  getUser,\n  isAuthenticated,\n  requireAuth,\n  type AuthResult,\n} from \"./auth\";"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,sCAGO;AACP,kBAMO;","names":[]}

package/dist/cjs/server/node/node-session.js

@@ -1,60 +0,0 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var node_session_exports = {};
-__export(node_session_exports, {
-  verifySession: () => verifySession
-});
-module.exports = __toCommonJS(node_session_exports);
-var import_SessionTernSecure = require("./SessionTernSecure");
-async function verifySession(request) {
-  try {
-    const sessionCookie = request.cookies.get("_session_cookie")?.value;
-    if (sessionCookie) {
-      const result = await (0, import_SessionTernSecure.verifyFirebaseToken)(sessionCookie);
-      if (result.valid) {
-        return {
-          isAuthenticated: true,
-          user: {
-            uid: result.uid ?? "",
-            email: result.email || null,
-            tenantId: result.tenant || "default",
-            disabled: false
-          }
-        };
-      }
-    }
-    return {
-      isAuthenticated: false,
-      user: null,
-      error: "No valid session found"
-    };
-  } catch (error) {
-    console.error("Session verification error:", error);
-    return {
-      isAuthenticated: false,
-      user: null,
-      error: error instanceof Error ? error.message : "Session verification failed"
-    };
-  }
-}
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  verifySession
-});
-//# sourceMappingURL=node-session.js.map

package/dist/cjs/server/node/node-session.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/node-session.ts"],"sourcesContent":["import type { NextRequest } from \"next/server\";\n\nimport type { SessionResult } from \"../types\";\nimport { verifyFirebaseToken } from \"./SessionTernSecure\";\n\nexport async function verifySession(\n  request: NextRequest\n): Promise<SessionResult> {\n  try {\n    const sessionCookie = request.cookies.get(\"_session_cookie\")?.value;\n    if (sessionCookie) {\n      const result = await verifyFirebaseToken(sessionCookie);\n      if (result.valid) {\n        //const disabledKey = `disabled_user:${result.uid}`;\n        //const disabledUser: DisabledUserRecord | null =\n        // await redis.get(disabledKey);\n        //const isDisabled = !!disabledUser;\n        return {\n          isAuthenticated: true,\n          user: {\n            uid: result.uid ?? \"\",\n            email: result.email || null,\n            tenantId: result.tenant || \"default\",\n            disabled: false,\n          },\n        };\n      }\n    }\n    return {\n      isAuthenticated: false,\n      user: null,\n      error: \"No valid session found\",\n    };\n  } catch (error) {\n    console.error(\"Session verification error:\", error);\n    return {\n      isAuthenticated: false,\n      user: null,\n      error:\n        error instanceof Error ? error.message : \"Session verification failed\",\n    };\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAGA,+BAAoC;AAEpC,eAAsB,cACpB,SACwB;AACxB,MAAI;AACF,UAAM,gBAAgB,QAAQ,QAAQ,IAAI,iBAAiB,GAAG;AAC9D,QAAI,eAAe;AACjB,YAAM,SAAS,UAAM,8CAAoB,aAAa;AACtD,UAAI,OAAO,OAAO;AAKhB,eAAO;AAAA,UACL,iBAAiB;AAAA,UACjB,MAAM;AAAA,YACJ,KAAK,OAAO,OAAO;AAAA,YACnB,OAAO,OAAO,SAAS;AAAA,YACvB,UAAU,OAAO,UAAU;AAAA,YAC3B,UAAU;AAAA,UACZ;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,MACL,iBAAiB;AAAA,MACjB,MAAM;AAAA,MACN,OAAO;AAAA,IACT;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,+BAA+B,KAAK;AAClD,WAAO;AAAA,MACL,iBAAiB;AAAA,MACjB,MAAM;AAAA,MACN,OACE,iBAAiB,QAAQ,MAAM,UAAU;AAAA,IAC7C;AAAA,EACF;AACF;","names":[]}

package/dist/cjs/server/node/ternSecureNodeMiddleware.js

@@ -1,181 +0,0 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var ternSecureNodeMiddleware_exports = {};
-__export(ternSecureNodeMiddleware_exports, {
-  createRouteMatcher: () => createRouteMatcher,
-  ternSecureMiddleware: () => ternSecureMiddleware
-});
-module.exports = __toCommonJS(ternSecureNodeMiddleware_exports);
-var import_backend = require("@tern-secure/backend");
-var import_admin = require("@tern-secure/backend/admin");
-var import_server = require("next/server");
-var import_constant = require("../constant");
-var import_nextErrors = require("../nextErrors");
-const createRouteMatcher = (patterns) => {
-  return (request) => {
-    const { pathname } = request.nextUrl;
-    return patterns.some((pattern) => {
-      const regexPattern = pattern.replace(/[.*+?^${}()|[\]\\]/g, "\\$&").replace(/\\\*/g, ".*");
-      return new RegExp(`^${regexPattern}$`).test(pathname);
-    });
-  };
-};
-const authenticateMiddlewareRequest = async (request) => {
-  try {
-    const requestState = await (0, import_admin.createBackendInstance)(request);
-    const authResult = requestState.requestState.auth();
-    return {
-      user: {
-        uid: authResult.session.uid,
-        email: authResult.session.email || null,
-        tenantId: authResult.session.firebase?.tenant || "default",
-        authTime: authResult.session.auth_time
-      },
-      session: requestState.requestState.token
-    };
-  } catch (error) {
-    console.error(
-      "Auth check error:",
-      error instanceof Error ? error.message : "Unknown error"
-    );
-    return {
-      user: null,
-      session: null
-    };
-  }
-};
-const ternSecureMiddleware = (...args) => {
-  const [request, event] = parseRequestAndEvent(args);
-  const [handler, params] = parseHandlerAndOptions(args);
-  const middleware = () => {
-    const withAuthNextMiddleware = async (request2, event2) => {
-      const resolvedParams = typeof params === "function" ? await params(request2) : params;
-      const signInUrl = resolvedParams.signInUrl || import_constant.SIGN_IN_URL;
-      const signUpUrl = resolvedParams.signUpUrl || import_constant.SIGN_UP_URL;
-      let handlerResult = import_server.NextResponse.next();
-      if (handler) {
-        const createAuthHandler = async () => {
-          const authObject = await authenticateMiddlewareRequest(request2);
-          const getAuth = async () => {
-            const ternSecureRequest = (0, import_backend.createTernSecureRequest)(request2);
-            const { redirectToSignIn, redirectToSignUp } = createMiddlewareRedirects(
-              ternSecureRequest,
-              signInUrl,
-              signUpUrl
-            );
-            return {
-              ...authObject,
-              redirectToSignIn,
-              redirectToSignUp
-            };
-          };
-          const protect = async () => {
-            if (!authObject.user || !authObject.session) {
-              const redirectUrl = new URL(signInUrl || "/sign-in", request2.url);
-              redirectUrl.searchParams.set(
-                "redirect",
-                request2.nextUrl.pathname
-              );
-              (0, import_nextErrors.redirectToSignInError)(redirectUrl.toString());
-            }
-          };
-          const authHandler = Object.assign(getAuth, {
-            protect,
-            user: authObject.user,
-            session: authObject.session
-          });
-          return authHandler;
-        };
-        try {
-          const auth = await createAuthHandler();
-          const userHandlerResult = await handler(auth, request2, event2);
-          handlerResult = userHandlerResult || handlerResult;
-        } catch (error) {
-          const ternSecureRequest = (0, import_backend.createTernSecureRequest)(request2);
-          handlerResult = handleControlError(error, ternSecureRequest, request2);
-        }
-        return handlerResult;
-      }
-      return handlerResult;
-    };
-    const nextMiddleware = async (request2, event2) => {
-      return withAuthNextMiddleware(request2, event2);
-    };
-    if (request && event) {
-      return nextMiddleware(request, event);
-    }
-    return nextMiddleware;
-  };
-  return middleware();
-};
-const parseRequestAndEvent = (args) => {
-  return [
-    args[0] instanceof Request ? args[0] : void 0,
-    args[0] instanceof Request ? args[1] : void 0
-  ];
-};
-const parseHandlerAndOptions = (args) => {
-  return [
-    typeof args[0] === "function" ? args[0] : void 0,
-    (args.length === 2 ? args[1] : typeof args[0] === "function" ? {} : args[0]) || {}
-  ];
-};
-const createMiddlewareRedirects = (ternSecureRequest, signInUrl, signUpUrl) => {
-  const redirectToSignIn = (opts = {}) => {
-    const url = signInUrl || ternSecureRequest.ternUrl.toString();
-    (0, import_nextErrors.redirectToSignInError)(url, opts.returnBackUrl);
-  };
-  const redirectToSignUp = (opts = {}) => {
-    const url = signUpUrl || ternSecureRequest.ternUrl.toString();
-    (0, import_nextErrors.redirectToSignUpError)(url, opts.returnBackUrl);
-  };
-  return { redirectToSignIn, redirectToSignUp };
-};
-const handleControlError = (error, ternSecureRequest, nextrequest) => {
-  if ((0, import_nextErrors.isNextjsNotFoundError)(error)) {
-    return import_server.NextResponse.rewrite(new URL("/404", nextrequest.url));
-  }
-  if ((0, import_nextErrors.isRedirectToSignInError)(error)) {
-    const redirectAdapter = (url) => import_server.NextResponse.redirect(new URL(url, nextrequest.url));
-    const { redirectToSignIn } = (0, import_backend.createRedirect)({
-      redirectAdapter,
-      baseUrl: ternSecureRequest.ternUrl.origin,
-      signInUrl: import_constant.SIGN_IN_URL,
-      signUpUrl: import_constant.SIGN_UP_URL
-    });
-    return redirectToSignIn({ returnBackUrl: error.returnBackUrl });
-  }
-  if ((0, import_nextErrors.isRedirectToSignUpError)(error)) {
-    const redirectAdapter = (url) => import_server.NextResponse.redirect(new URL(url, nextrequest.url));
-    const { redirectToSignUp } = (0, import_backend.createRedirect)({
-      redirectAdapter,
-      baseUrl: ternSecureRequest.ternUrl.origin,
-      signInUrl: import_constant.SIGN_IN_URL,
-      signUpUrl: import_constant.SIGN_UP_URL
-    });
-    return redirectToSignUp({ returnBackUrl: error.returnBackUrl });
-  }
-  throw error;
-};
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  createRouteMatcher,
-  ternSecureMiddleware
-});
-//# sourceMappingURL=ternSecureNodeMiddleware.js.map

package/dist/cjs/server/node/ternSecureNodeMiddleware.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/ternSecureNodeMiddleware.ts"],"sourcesContent":["import {createRedirect,  createTernSecureRequest, type TernSecureRequest } from \"@tern-secure/backend\";\nimport {\n  createBackendInstance,\n} from \"@tern-secure/backend/admin\";\nimport type { NextMiddleware,NextRequest } from \"next/server\";\nimport {NextResponse } from \"next/server\";\n\nimport { SIGN_IN_URL, SIGN_UP_URL } from \"../constant\";\nimport {\n  isNextjsNotFoundError,\n  isRedirectToSignInError,\n  isRedirectToSignUpError,\n  redirectToSignInError,\n  redirectToSignUpError,\n} from \"../nextErrors\";\nimport type { BaseUser ,\n  NextMiddlewareEvtParam,\n  NextMiddlewareRequestParam,\n  NextMiddlewareReturn,\n} from \"../types\";\n\ntype RedirectToParams = { returnBackUrl?: string | URL | null };\nexport type RedirectFun<ReturnType> = (params?: RedirectToParams) => ReturnType;\n\nexport type AuthObject = {\n  user: BaseUser | null;\n  session: string | null;\n};\n\nexport interface MiddlewareAuth extends AuthObject {\n  (): Promise<MiddlewareAuthObject>;\n  protect: () => Promise<void>;\n}\n\ntype MiddlewareHandler = (\n  auth: MiddlewareAuth,\n  request: NextMiddlewareRequestParam,\n  event: NextMiddlewareEvtParam\n) => NextMiddlewareReturn;\n\nexport type MiddlewareAuthObject = AuthObject & {\n  redirectToSignIn: RedirectFun<Response>;\n  redirectToSignUp: RedirectFun<Response>;\n};\n\n/**\n * Create a route matcher function for public paths\n */\nexport const createRouteMatcher = (patterns: string[]) => {\n  return (request: NextRequest): boolean => {\n    const { pathname } = request.nextUrl;\n    return patterns.some((pattern) => {\n      const regexPattern = pattern\n        .replace(/[.*+?^${}()|[\\]\\\\]/g, \"\\\\$&\")\n        .replace(/\\\\\\*/g, \".*\");\n\n      return new RegExp(`^${regexPattern}$`).test(pathname);\n    });\n  };\n};\n\nconst authenticateMiddlewareRequest = async (\n  request: NextRequest\n): Promise<AuthObject> => {\n  try {\n    const requestState = await createBackendInstance(request);\n    const authResult = requestState.requestState.auth();\n\n    return {\n      user: {\n        uid: authResult.session.uid,\n        email: authResult.session.email || null,\n        tenantId: authResult.session.firebase?.tenant || \"default\",\n        authTime: authResult.session.auth_time,\n      },\n      session: requestState.requestState.token,\n    };\n  } catch (error) {\n    console.error(\n      \"Auth check error:\",\n      error instanceof Error ? error.message : \"Unknown error\"\n    );\n    return {\n      user: null,\n      session: null,\n    };\n  }\n};\n\nexport interface MiddlewareOptions {\n  signInUrl?: string;\n  signUpUrl?: string;\n  debug?: boolean;\n}\ntype MiddlewareOptionsCallback = (\n  req: NextRequest\n) => MiddlewareOptions | Promise<MiddlewareOptions>;\n\ninterface TernSecureMiddleware {\n  /**\n   * @example\n   * export default ternSecureMiddleware((auth, request, event) => { ... }, options);\n   */\n  (handler: MiddlewareHandler, options?: MiddlewareOptions): NextMiddleware;\n\n  /**\n   * @example\n   * export default ternSecureMiddleware((auth, request, event) => { ... }, (req) => options);\n   */\n  (\n    handler: MiddlewareHandler,\n    options?: MiddlewareOptionsCallback\n  ): NextMiddleware;\n\n  /**\n   * @example\n   * export default ternSecureMiddleware(options);\n   */\n  (options?: MiddlewareOptions): NextMiddleware;\n  /**\n   * @example\n   * export default ternSecureMiddleware;\n   */\n  (\n    request: NextMiddlewareRequestParam,\n    event: NextMiddlewareEvtParam\n  ): NextMiddlewareReturn;\n}\n\nexport const ternSecureMiddleware = ((\n  ...args: unknown[]\n): NextMiddleware | NextMiddlewareReturn => {\n  const [request, event] = parseRequestAndEvent(args);\n  const [handler, params] = parseHandlerAndOptions(args);\n\n  const middleware = () => {\n    const withAuthNextMiddleware: NextMiddleware = async (request, event) => {\n      const resolvedParams =\n        typeof params === \"function\" ? await params(request) : params;\n\n      const signInUrl = resolvedParams.signInUrl || SIGN_IN_URL;\n      const signUpUrl = resolvedParams.signUpUrl || SIGN_UP_URL;\n\n      let handlerResult: Response = NextResponse.next();\n\n      if (handler) {\n        const createAuthHandler = async (): Promise<MiddlewareAuth> => {\n          const authObject = await authenticateMiddlewareRequest(request);\n\n          const getAuth = async (): Promise<MiddlewareAuthObject> => {\n            const ternSecureRequest = createTernSecureRequest(request);\n            const { redirectToSignIn, redirectToSignUp } =\n              createMiddlewareRedirects(\n                ternSecureRequest,\n                signInUrl,\n                signUpUrl\n              );\n\n            return {\n              ...authObject,\n              redirectToSignIn,\n              redirectToSignUp,\n            };\n          };\n\n          const protect = async (): Promise<void> => {\n            if (!authObject.user || !authObject.session) {\n              const redirectUrl = new URL(signInUrl || \"/sign-in\", request.url);\n              redirectUrl.searchParams.set(\n                \"redirect\",\n                request.nextUrl.pathname\n              );\n              redirectToSignInError(redirectUrl.toString());\n            }\n          };\n\n          // Return the MiddlewareAuth object with direct property access\n          const authHandler = Object.assign(getAuth, {\n            protect,\n            user: authObject.user,\n            session: authObject.session,\n          });\n\n          return authHandler as MiddlewareAuth;\n        };\n\n        try {\n          const auth = await createAuthHandler();\n          const userHandlerResult = await handler(auth, request, event);\n          handlerResult = userHandlerResult || handlerResult;\n        } catch (error) {\n          const ternSecureRequest = createTernSecureRequest(request);\n          handlerResult = handleControlError(error, ternSecureRequest, request);\n        }\n\n        return handlerResult;\n      }\n\n      return handlerResult;\n    };\n\n    const nextMiddleware: NextMiddleware = async (request, event) => {\n      return withAuthNextMiddleware(request, event);\n    };\n\n    if (request && event) {\n      return nextMiddleware(request, event);\n    }\n\n    return nextMiddleware;\n  };\n  return middleware();\n}) as TernSecureMiddleware;\n\nconst parseRequestAndEvent = (args: unknown[]) => {\n  return [\n    args[0] instanceof Request ? args[0] : undefined,\n    args[0] instanceof Request ? args[1] : undefined,\n  ] as [\n    NextMiddlewareRequestParam | undefined,\n    NextMiddlewareEvtParam | undefined,\n  ];\n};\n\nconst parseHandlerAndOptions = (args: unknown[]) => {\n  return [\n    typeof args[0] === \"function\" ? args[0] : undefined,\n    (args.length === 2\n      ? args[1]\n      : typeof args[0] === \"function\"\n        ? {}\n        : args[0]) || {},\n  ] as [\n    MiddlewareHandler | undefined,\n    MiddlewareOptions | MiddlewareOptionsCallback,\n  ];\n};\n\n/**\n * Create middleware redirect functions\n */\nconst createMiddlewareRedirects = (\n  ternSecureRequest: TernSecureRequest,\n  signInUrl: string,\n  signUpUrl: string\n) => {\n  const redirectToSignIn: MiddlewareAuthObject[\"redirectToSignIn\"] = (\n    opts = {}\n  ) => {\n    const url = signInUrl || ternSecureRequest.ternUrl.toString();\n    redirectToSignInError(url, opts.returnBackUrl);\n  };\n\n  const redirectToSignUp: MiddlewareAuthObject[\"redirectToSignUp\"] = (\n    opts = {}\n  ) => {\n    const url = signUpUrl || ternSecureRequest.ternUrl.toString();\n    redirectToSignUpError(url, opts.returnBackUrl);\n  };\n\n  return { redirectToSignIn, redirectToSignUp };\n};\n\n/**\n * Handle control flow errors in middleware\n */\nconst handleControlError = (\n  error: any,\n  ternSecureRequest: TernSecureRequest,\n  nextrequest: NextRequest\n): Response => {\n  if (isNextjsNotFoundError(error)) {\n    return NextResponse.rewrite(new URL(\"/404\", nextrequest.url));\n  }\n\n  // Handle redirect to sign in errors\n  if (isRedirectToSignInError(error)) {\n    const redirectAdapter = (url: string) =>\n      NextResponse.redirect(new URL(url, nextrequest.url));\n    const { redirectToSignIn } = createRedirect({\n      redirectAdapter,\n      baseUrl: ternSecureRequest.ternUrl.origin,\n      signInUrl: SIGN_IN_URL,\n      signUpUrl: SIGN_UP_URL,\n    });\n\n    return redirectToSignIn({ returnBackUrl: error.returnBackUrl });\n  }\n\n  // Handle redirect to sign up errors\n  if (isRedirectToSignUpError(error)) {\n    const redirectAdapter = (url: string) =>\n      NextResponse.redirect(new URL(url, nextrequest.url));\n    const { redirectToSignUp } = createRedirect({\n      redirectAdapter,\n      baseUrl: ternSecureRequest.ternUrl.origin,\n      signInUrl: SIGN_IN_URL,\n      signUpUrl: SIGN_UP_URL,\n    });\n\n    return redirectToSignUp({ returnBackUrl: error.returnBackUrl });\n  }\n\n  throw error;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,qBAAgF;AAChF,mBAEO;AAEP,oBAA4B;AAE5B,sBAAyC;AACzC,wBAMO;AAkCA,MAAM,qBAAqB,CAAC,aAAuB;AACxD,SAAO,CAAC,YAAkC;AACxC,UAAM,EAAE,SAAS,IAAI,QAAQ;AAC7B,WAAO,SAAS,KAAK,CAAC,YAAY;AAChC,YAAM,eAAe,QAClB,QAAQ,uBAAuB,MAAM,EACrC,QAAQ,SAAS,IAAI;AAExB,aAAO,IAAI,OAAO,IAAI,YAAY,GAAG,EAAE,KAAK,QAAQ;AAAA,IACtD,CAAC;AAAA,EACH;AACF;AAEA,MAAM,gCAAgC,OACpC,YACwB;AACxB,MAAI;AACF,UAAM,eAAe,UAAM,oCAAsB,OAAO;AACxD,UAAM,aAAa,aAAa,aAAa,KAAK;AAElD,WAAO;AAAA,MACL,MAAM;AAAA,QACJ,KAAK,WAAW,QAAQ;AAAA,QACxB,OAAO,WAAW,QAAQ,SAAS;AAAA,QACnC,UAAU,WAAW,QAAQ,UAAU,UAAU;AAAA,QACjD,UAAU,WAAW,QAAQ;AAAA,MAC/B;AAAA,MACA,SAAS,aAAa,aAAa;AAAA,IACrC;AAAA,EACF,SAAS,OAAO;AACd,YAAQ;AAAA,MACN;AAAA,MACA,iBAAiB,QAAQ,MAAM,UAAU;AAAA,IAC3C;AACA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,SAAS;AAAA,IACX;AAAA,EACF;AACF;AA0CO,MAAM,uBAAwB,IAChC,SACuC;AAC1C,QAAM,CAAC,SAAS,KAAK,IAAI,qBAAqB,IAAI;AAClD,QAAM,CAAC,SAAS,MAAM,IAAI,uBAAuB,IAAI;AAErD,QAAM,aAAa,MAAM;AACvB,UAAM,yBAAyC,OAAOA,UAASC,WAAU;AACvE,YAAM,iBACJ,OAAO,WAAW,aAAa,MAAM,OAAOD,QAAO,IAAI;AAEzD,YAAM,YAAY,eAAe,aAAa;AAC9C,YAAM,YAAY,eAAe,aAAa;AAE9C,UAAI,gBAA0B,2BAAa,KAAK;AAEhD,UAAI,SAAS;AACX,cAAM,oBAAoB,YAAqC;AAC7D,gBAAM,aAAa,MAAM,8BAA8BA,QAAO;AAE9D,gBAAM,UAAU,YAA2C;AACzD,kBAAM,wBAAoB,wCAAwBA,QAAO;AACzD,kBAAM,EAAE,kBAAkB,iBAAiB,IACzC;AAAA,cACE;AAAA,cACA;AAAA,cACA;AAAA,YACF;AAEF,mBAAO;AAAA,cACL,GAAG;AAAA,cACH;AAAA,cACA;AAAA,YACF;AAAA,UACF;AAEA,gBAAM,UAAU,YAA2B;AACzC,gBAAI,CAAC,WAAW,QAAQ,CAAC,WAAW,SAAS;AAC3C,oBAAM,cAAc,IAAI,IAAI,aAAa,YAAYA,SAAQ,GAAG;AAChE,0BAAY,aAAa;AAAA,gBACvB;AAAA,gBACAA,SAAQ,QAAQ;AAAA,cAClB;AACA,2DAAsB,YAAY,SAAS,CAAC;AAAA,YAC9C;AAAA,UACF;AAGA,gBAAM,cAAc,OAAO,OAAO,SAAS;AAAA,YACzC;AAAA,YACA,MAAM,WAAW;AAAA,YACjB,SAAS,WAAW;AAAA,UACtB,CAAC;AAED,iBAAO;AAAA,QACT;AAEA,YAAI;AACF,gBAAM,OAAO,MAAM,kBAAkB;AACrC,gBAAM,oBAAoB,MAAM,QAAQ,MAAMA,UAASC,MAAK;AAC5D,0BAAgB,qBAAqB;AAAA,QACvC,SAAS,OAAO;AACd,gBAAM,wBAAoB,wCAAwBD,QAAO;AACzD,0BAAgB,mBAAmB,OAAO,mBAAmBA,QAAO;AAAA,QACtE;AAEA,eAAO;AAAA,MACT;AAEA,aAAO;AAAA,IACT;AAEA,UAAM,iBAAiC,OAAOA,UAASC,WAAU;AAC/D,aAAO,uBAAuBD,UAASC,MAAK;AAAA,IAC9C;AAEA,QAAI,WAAW,OAAO;AACpB,aAAO,eAAe,SAAS,KAAK;AAAA,IACtC;AAEA,WAAO;AAAA,EACT;AACA,SAAO,WAAW;AACpB;AAEA,MAAM,uBAAuB,CAAC,SAAoB;AAChD,SAAO;AAAA,IACL,KAAK,CAAC,aAAa,UAAU,KAAK,CAAC,IAAI;AAAA,IACvC,KAAK,CAAC,aAAa,UAAU,KAAK,CAAC,IAAI;AAAA,EACzC;AAIF;AAEA,MAAM,yBAAyB,CAAC,SAAoB;AAClD,SAAO;AAAA,IACL,OAAO,KAAK,CAAC,MAAM,aAAa,KAAK,CAAC,IAAI;AAAA,KACzC,KAAK,WAAW,IACb,KAAK,CAAC,IACN,OAAO,KAAK,CAAC,MAAM,aACjB,CAAC,IACD,KAAK,CAAC,MAAM,CAAC;AAAA,EACrB;AAIF;AAKA,MAAM,4BAA4B,CAChC,mBACA,WACA,cACG;AACH,QAAM,mBAA6D,CACjE,OAAO,CAAC,MACL;AACH,UAAM,MAAM,aAAa,kBAAkB,QAAQ,SAAS;AAC5D,iDAAsB,KAAK,KAAK,aAAa;AAAA,EAC/C;AAEA,QAAM,mBAA6D,CACjE,OAAO,CAAC,MACL;AACH,UAAM,MAAM,aAAa,kBAAkB,QAAQ,SAAS;AAC5D,iDAAsB,KAAK,KAAK,aAAa;AAAA,EAC/C;AAEA,SAAO,EAAE,kBAAkB,iBAAiB;AAC9C;AAKA,MAAM,qBAAqB,CACzB,OACA,mBACA,gBACa;AACb,UAAI,yCAAsB,KAAK,GAAG;AAChC,WAAO,2BAAa,QAAQ,IAAI,IAAI,QAAQ,YAAY,GAAG,CAAC;AAAA,EAC9D;AAGA,UAAI,2CAAwB,KAAK,GAAG;AAClC,UAAM,kBAAkB,CAAC,QACvB,2BAAa,SAAS,IAAI,IAAI,KAAK,YAAY,GAAG,CAAC;AACrD,UAAM,EAAE,iBAAiB,QAAI,+BAAe;AAAA,MAC1C;AAAA,MACA,SAAS,kBAAkB,QAAQ;AAAA,MACnC,WAAW;AAAA,MACX,WAAW;AAAA,IACb,CAAC;AAED,WAAO,iBAAiB,EAAE,eAAe,MAAM,cAAc,CAAC;AAAA,EAChE;AAGA,UAAI,2CAAwB,KAAK,GAAG;AAClC,UAAM,kBAAkB,CAAC,QACvB,2BAAa,SAAS,IAAI,IAAI,KAAK,YAAY,GAAG,CAAC;AACrD,UAAM,EAAE,iBAAiB,QAAI,+BAAe;AAAA,MAC1C;AAAA,MACA,SAAS,kBAAkB,QAAQ;AAAA,MACnC,WAAW;AAAA,MACX,WAAW;AAAA,IACb,CAAC;AAED,WAAO,iBAAiB,EAAE,eAAe,MAAM,cAAc,CAAC;AAAA,EAChE;AAEA,QAAM;AACR;","names":["request","event"]}

package/dist/esm/server/node/SessionTernSecure.js

@@ -1,31 +0,0 @@
-"use server";
-import { VerifyNextTernSessionCookie } from "@tern-secure/backend/admin";
-async function verifyFirebaseToken(token) {
-  if (!token) {
-    return {
-      valid: false,
-      error: {
-        success: false,
-        code: "INVALID_TOKEN",
-        message: "Token is required for verification"
-      }
-    };
-  }
-  try {
-    return await VerifyNextTernSessionCookie(token);
-  } catch (error) {
-    console.error("Error verifying token:", error);
-    return {
-      valid: false,
-      error: {
-        success: false,
-        code: "INVALID_TOKEN",
-        message: error instanceof Error ? error.message : "Token verification failed"
-      }
-    };
-  }
-}
-export {
-  verifyFirebaseToken
-};
-//# sourceMappingURL=SessionTernSecure.js.map

package/dist/esm/server/node/SessionTernSecure.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/SessionTernSecure.ts"],"sourcesContent":["\"use server\";\n\nimport { VerifyNextTernSessionCookie } from \"@tern-secure/backend/admin\";\nimport type { TernVerificationResult } from \"@tern-secure/types\";\n\nexport async function verifyFirebaseToken(\n  token: string\n): Promise<TernVerificationResult> {\n  if (!token) {\n    return {\n      valid: false,\n      error: {\n        success: false,\n        code: \"INVALID_TOKEN\",\n        message: \"Token is required for verification\",\n      },\n    };\n  }\n\n  try {\n    return await VerifyNextTernSessionCookie(token);\n  } catch (error) {\n    console.error(\"Error verifying token:\", error);\n    return {\n      valid: false,\n      error: {\n        success: false,\n        code: \"INVALID_TOKEN\",\n        message:\n          error instanceof Error ? error.message : \"Token verification failed\",\n      },\n    };\n  }\n}\n"],"mappings":";AAEA,SAAS,mCAAmC;AAG5C,eAAsB,oBACpB,OACiC;AACjC,MAAI,CAAC,OAAO;AACV,WAAO;AAAA,MACL,OAAO;AAAA,MACP,OAAO;AAAA,QACL,SAAS;AAAA,QACT,MAAM;AAAA,QACN,SAAS;AAAA,MACX;AAAA,IACF;AAAA,EACF;AAEA,MAAI;AACF,WAAO,MAAM,4BAA4B,KAAK;AAAA,EAChD,SAAS,OAAO;AACd,YAAQ,MAAM,0BAA0B,KAAK;AAC7C,WAAO;AAAA,MACL,OAAO;AAAA,MACP,OAAO;AAAA,QACL,SAAS;AAAA,QACT,MAAM;AAAA,QACN,SACE,iBAAiB,QAAQ,MAAM,UAAU;AAAA,MAC7C;AAAA,IACF;AAAA,EACF;AACF;","names":[]}

package/dist/esm/server/node/auth.js

@@ -1,63 +0,0 @@
-import { cookies } from "next/headers";
-import { cache } from "react";
-import { TernSecureError } from "../../errors";
-import { verifyFirebaseToken } from "./SessionTernSecure";
-const auth = cache(async () => {
-  try {
-    const cookieStore = await cookies();
-    const sessionCookie = cookieStore.get("_session_cookie")?.value;
-    if (sessionCookie) {
-      const result = await verifyFirebaseToken(sessionCookie);
-      if (result.valid) {
-        const user = {
-          uid: result.uid ?? "",
-          email: result.email && typeof result.email === "string" ? result.email : null,
-          tenantId: result.tenant || "default",
-          authTime: result.authTime && typeof result.authTime === "number" ? result.authTime : void 0
-        };
-        return { user, error: null };
-      }
-    }
-    return {
-      user: null,
-      error: new TernSecureError("UNAUTHENTICATED", "No valid session found")
-    };
-  } catch (error) {
-    console.error("Error in Auth:", error);
-    if (error instanceof TernSecureError) {
-      return {
-        user: null,
-        error
-      };
-    }
-    return {
-      user: null,
-      error: new TernSecureError(
-        "INTERNAL_ERROR",
-        "An unexpected error occurred"
-      )
-    };
-  }
-});
-const isAuthenticated = cache(async () => {
-  const { user } = await auth();
-  return user !== null;
-});
-const getUser = cache(async () => {
-  const { user } = await auth();
-  return user;
-});
-const requireAuth = cache(async () => {
-  const { user, error } = await auth();
-  if (!user) {
-    throw error || new Error("Authentication required");
-  }
-  return user;
-});
-export {
-  auth,
-  getUser,
-  isAuthenticated,
-  requireAuth
-};
-//# sourceMappingURL=auth.js.map

package/dist/esm/server/node/auth.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/auth.ts"],"sourcesContent":["import { cookies } from \"next/headers\";\nimport { cache } from \"react\";\n\nimport { TernSecureError } from \"../../errors\";\nimport type { BaseUser } from \"../../types\";\nimport { verifyFirebaseToken } from \"./SessionTernSecure\";\n\nexport interface AuthResult {\n  user: BaseUser | null;\n  error: Error | null;\n}\n\n/**\n * Get the current authenticated user from the session cookies\n */\nexport const auth = cache(async (): Promise<AuthResult> => {\n  try {\n    const cookieStore = await cookies();\n\n    const sessionCookie = cookieStore.get(\"_session_cookie\")?.value;\n    if (sessionCookie) {\n      const result = await verifyFirebaseToken(sessionCookie);\n      if (result.valid) {\n        const user: BaseUser = {\n          uid: result.uid ?? \"\",\n          email:\n            result.email && typeof result.email === \"string\"\n              ? result.email\n              : null,\n          tenantId: result.tenant || \"default\",\n          authTime:\n            result.authTime && typeof result.authTime === \"number\"\n              ? result.authTime\n              : undefined,\n        };\n        return { user, error: null };\n      }\n    }\n\n    return {\n      user: null,\n      error: new TernSecureError(\"UNAUTHENTICATED\", \"No valid session found\"),\n    };\n  } catch (error) {\n    console.error(\"Error in Auth:\", error);\n    if (error instanceof TernSecureError) {\n      return {\n        user: null,\n        error,\n      };\n    }\n    return {\n      user: null,\n      error: new TernSecureError(\n        \"INTERNAL_ERROR\",\n        \"An unexpected error occurred\"\n      ),\n    };\n  }\n});\n\n/**\n * Type guard to check if user is authenticated\n */\nexport const isAuthenticated = cache(async (): Promise<boolean> => {\n  const { user } = await auth();\n  return user !== null;\n});\n\n/**\n * Get user info from auth result\n */\nexport const getUser = cache(async (): Promise<BaseUser | null> => {\n  const { user } = await auth();\n  return user;\n});\n\n/**\n * Require authentication\n * Throws error if not authenticated\n */\nexport const requireAuth = cache(async (): Promise<BaseUser> => {\n  const { user, error } = await auth();\n\n  if (!user) {\n    throw error || new Error(\"Authentication required\");\n  }\n\n  return user;\n});\n"],"mappings":"AAAA,SAAS,eAAe;AACxB,SAAS,aAAa;AAEtB,SAAS,uBAAuB;AAEhC,SAAS,2BAA2B;AAU7B,MAAM,OAAO,MAAM,YAAiC;AACzD,MAAI;AACF,UAAM,cAAc,MAAM,QAAQ;AAElC,UAAM,gBAAgB,YAAY,IAAI,iBAAiB,GAAG;AAC1D,QAAI,eAAe;AACjB,YAAM,SAAS,MAAM,oBAAoB,aAAa;AACtD,UAAI,OAAO,OAAO;AAChB,cAAM,OAAiB;AAAA,UACrB,KAAK,OAAO,OAAO;AAAA,UACnB,OACE,OAAO,SAAS,OAAO,OAAO,UAAU,WACpC,OAAO,QACP;AAAA,UACN,UAAU,OAAO,UAAU;AAAA,UAC3B,UACE,OAAO,YAAY,OAAO,OAAO,aAAa,WAC1C,OAAO,WACP;AAAA,QACR;AACA,eAAO,EAAE,MAAM,OAAO,KAAK;AAAA,MAC7B;AAAA,IACF;AAEA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,OAAO,IAAI,gBAAgB,mBAAmB,wBAAwB;AAAA,IACxE;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,kBAAkB,KAAK;AACrC,QAAI,iBAAiB,iBAAiB;AACpC,aAAO;AAAA,QACL,MAAM;AAAA,QACN;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,MACL,MAAM;AAAA,MACN,OAAO,IAAI;AAAA,QACT;AAAA,QACA;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF,CAAC;AAKM,MAAM,kBAAkB,MAAM,YAA8B;AACjE,QAAM,EAAE,KAAK,IAAI,MAAM,KAAK;AAC5B,SAAO,SAAS;AAClB,CAAC;AAKM,MAAM,UAAU,MAAM,YAAsC;AACjE,QAAM,EAAE,KAAK,IAAI,MAAM,KAAK;AAC5B,SAAO;AACT,CAAC;AAMM,MAAM,cAAc,MAAM,YAA+B;AAC9D,QAAM,EAAE,MAAM,MAAM,IAAI,MAAM,KAAK;AAEnC,MAAI,CAAC,MAAM;AACT,UAAM,SAAS,IAAI,MAAM,yBAAyB;AAAA,EACpD;AAEA,SAAO;AACT,CAAC;","names":[]}

package/dist/esm/server/node/index.js

@@ -1,19 +0,0 @@
-import {
-  ternSecureMiddleware,
-  createRouteMatcher
-} from "./ternSecureNodeMiddleware";
-import {
-  auth,
-  getUser,
-  isAuthenticated,
-  requireAuth
-} from "./auth";
-export {
-  auth,
-  createRouteMatcher,
-  getUser,
-  isAuthenticated,
-  requireAuth,
-  ternSecureMiddleware
-};
-//# sourceMappingURL=index.js.map

package/dist/esm/server/node/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/index.ts"],"sourcesContent":["export {\n  ternSecureMiddleware,\n  createRouteMatcher,\n} from \"./ternSecureNodeMiddleware\";\nexport {\n  auth,\n  getUser,\n  isAuthenticated,\n  requireAuth,\n  type AuthResult,\n} from \"./auth\";"],"mappings":"AAAA;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OAEK;","names":[]}

package/dist/esm/server/node/node-session.js

@@ -1,36 +0,0 @@
-import { verifyFirebaseToken } from "./SessionTernSecure";
-async function verifySession(request) {
-  try {
-    const sessionCookie = request.cookies.get("_session_cookie")?.value;
-    if (sessionCookie) {
-      const result = await verifyFirebaseToken(sessionCookie);
-      if (result.valid) {
-        return {
-          isAuthenticated: true,
-          user: {
-            uid: result.uid ?? "",
-            email: result.email || null,
-            tenantId: result.tenant || "default",
-            disabled: false
-          }
-        };
-      }
-    }
-    return {
-      isAuthenticated: false,
-      user: null,
-      error: "No valid session found"
-    };
-  } catch (error) {
-    console.error("Session verification error:", error);
-    return {
-      isAuthenticated: false,
-      user: null,
-      error: error instanceof Error ? error.message : "Session verification failed"
-    };
-  }
-}
-export {
-  verifySession
-};
-//# sourceMappingURL=node-session.js.map

package/dist/esm/server/node/node-session.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../src/server/node/node-session.ts"],"sourcesContent":["import type { NextRequest } from \"next/server\";\n\nimport type { SessionResult } from \"../types\";\nimport { verifyFirebaseToken } from \"./SessionTernSecure\";\n\nexport async function verifySession(\n  request: NextRequest\n): Promise<SessionResult> {\n  try {\n    const sessionCookie = request.cookies.get(\"_session_cookie\")?.value;\n    if (sessionCookie) {\n      const result = await verifyFirebaseToken(sessionCookie);\n      if (result.valid) {\n        //const disabledKey = `disabled_user:${result.uid}`;\n        //const disabledUser: DisabledUserRecord | null =\n        // await redis.get(disabledKey);\n        //const isDisabled = !!disabledUser;\n        return {\n          isAuthenticated: true,\n          user: {\n            uid: result.uid ?? \"\",\n            email: result.email || null,\n            tenantId: result.tenant || \"default\",\n            disabled: false,\n          },\n        };\n      }\n    }\n    return {\n      isAuthenticated: false,\n      user: null,\n      error: \"No valid session found\",\n    };\n  } catch (error) {\n    console.error(\"Session verification error:\", error);\n    return {\n      isAuthenticated: false,\n      user: null,\n      error:\n        error instanceof Error ? error.message : \"Session verification failed\",\n    };\n  }\n}\n"],"mappings":"AAGA,SAAS,2BAA2B;AAEpC,eAAsB,cACpB,SACwB;AACxB,MAAI;AACF,UAAM,gBAAgB,QAAQ,QAAQ,IAAI,iBAAiB,GAAG;AAC9D,QAAI,eAAe;AACjB,YAAM,SAAS,MAAM,oBAAoB,aAAa;AACtD,UAAI,OAAO,OAAO;AAKhB,eAAO;AAAA,UACL,iBAAiB;AAAA,UACjB,MAAM;AAAA,YACJ,KAAK,OAAO,OAAO;AAAA,YACnB,OAAO,OAAO,SAAS;AAAA,YACvB,UAAU,OAAO,UAAU;AAAA,YAC3B,UAAU;AAAA,UACZ;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,MACL,iBAAiB;AAAA,MACjB,MAAM;AAAA,MACN,OAAO;AAAA,IACT;AAAA,EACF,SAAS,OAAO;AACd,YAAQ,MAAM,+BAA+B,KAAK;AAClD,WAAO;AAAA,MACL,iBAAiB;AAAA,MACjB,MAAM;AAAA,MACN,OACE,iBAAiB,QAAQ,MAAM,UAAU;AAAA,IAC7C;AAAA,EACF;AACF;","names":[]}