npm - @tern-secure/types - Versions diffs - 1.0.0 - Mend

@tern-secure/types 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (28) hide show

package/dist/all.d.ts +105 -0
package/dist/all.d.ts.map +1 -0
package/dist/auth.d.ts +36 -0
package/dist/auth.d.ts.map +1 -0
package/dist/errors.d.ts +66 -0
package/dist/errors.d.ts.map +1 -0
package/dist/esm/index.js +173 -0
package/dist/esm/index.js.map +1 -0
package/dist/index.d.mts +717 -0
package/dist/index.d.ts +11 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +207 -0
package/dist/index.js.map +1 -0
package/dist/instanceTree.d.ts +116 -0
package/dist/instanceTree.d.ts.map +1 -0
package/dist/redirect.d.ts +8 -0
package/dist/redirect.d.ts.map +1 -0
package/dist/session.d.ts +76 -0
package/dist/session.d.ts.map +1 -0
package/dist/signIn.d.ts +51 -0
package/dist/signIn.d.ts.map +1 -0
package/dist/signUp.d.ts +20 -0
package/dist/signUp.d.ts.map +1 -0
package/dist/ternsecure.d.ts +123 -0
package/dist/ternsecure.d.ts.map +1 -0
package/dist/theme.d.ts +133 -0
package/dist/theme.d.ts.map +1 -0
package/package.json +28 -0

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+export * from './all';
+export * from './errors';
+export * from './ternsecure';
+export * from './theme';
+export * from './instanceTree';
+export * from './auth';
+export * from './signIn';
+export * from './signUp';
+export * from './session';
+export * from './redirect';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,OAAO,CAAA;AACrB,cAAc,UAAU,CAAA;AACxB,cAAc,cAAc,CAAA;AAC5B,cAAc,SAAS,CAAA;AACvB,cAAc,gBAAgB,CAAA;AAC9B,cAAc,QAAQ,CAAA;AACtB,cAAc,UAAU,CAAA;AACxB,cAAc,UAAU,CAAA;AACxB,cAAc,WAAW,CAAA;AACzB,cAAc,YAAY,CAAA"}

package/dist/index.js ADDED Viewed

@@ -0,0 +1,207 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var src_exports = {};
+__export(src_exports, {
+  DEFAULT_TERN_SECURE_STATE: () => DEFAULT_TERN_SECURE_STATE,
+  ERRORS: () => ERRORS,
+  TernSecureError: () => TernSecureError,
+  getErrorAlertVariant: () => getErrorAlertVariant,
+  handleFirebaseAuthError: () => handleFirebaseAuthError,
+  isAuthErrorResponse: () => isAuthErrorResponse,
+  isSignInResponse: () => isSignInResponse,
+  isSignInResponseTree: () => isSignInResponseTree
+});
+module.exports = __toCommonJS(src_exports);
+// src/errors.ts
+var ERRORS = {
+  SERVER_SIDE_INITIALIZATION: "TernSecure must be initialized on the client side",
+  REQUIRES_VERIFICATION: "AUTH_REQUIRES_VERIFICATION",
+  AUTHENTICATED: "AUTHENTICATED",
+  UNAUTHENTICATED: "UNAUTHENTICATED",
+  UNVERIFIED: "UNVERIFIED",
+  NOT_INITIALIZED: "TernSecure services are not initialized. Call initializeTernSecure() first",
+  HOOK_CONTEXT: "Hook must be used within TernSecureProvider",
+  EMAIL_NOT_VERIFIED: "EMAIL_NOT_VERIFIED",
+  INVALID_CREDENTIALS: "INVALID_CREDENTIALS",
+  USER_DISABLED: "USER_DISABLED",
+  TOO_MANY_ATTEMPTS: "TOO_MANY_ATTEMPTS",
+  NETWORK_ERROR: "NETWORK_ERROR",
+  INVALID_EMAIL: "INVALID_EMAIL",
+  WEAK_PASSWORD: "WEAK_PASSWORD",
+  EMAIL_EXISTS: "EMAIL_EXISTS",
+  POPUP_BLOCKED: "POPUP_BLOCKED",
+  OPERATION_NOT_ALLOWED: "OPERATION_NOT_ALLOWED",
+  EXPIRED_TOKEN: "EXPIRED_TOKEN",
+  INVALID_TOKEN: "INVALID_TOKEN",
+  SESSION_EXPIRED: "SESSION_EXPIRED",
+  INTERNAL_ERROR: "INTERNAL_ERROR",
+  UNKNOWN_ERROR: "An unknown error occurred.",
+  INVALID_ARGUMENT: "Invalid argument provided.",
+  USER_NOT_FOUND: "auth/user-not-found",
+  WRONG_PASSWORD: "auth/wrong-password",
+  EMAIL_ALREADY_IN_USE: "auth/email-already-in-use",
+  REQUIRES_RECENT_LOGIN: "auth/requires-recent-login",
+  NO_SESSION_COOKIE: "No session cookie found.",
+  INVALID_SESSION_COOKIE: "Invalid session cookie.",
+  NO_ID_TOKEN: "No ID token found.",
+  INVALID_ID_TOKEN: "Invalid ID token.",
+  REDIRECT_LOOP: "Redirect loop detected."
+};
+var TernSecureError = class extends Error {
+  code;
+  constructor(code, message) {
+    super(message || code);
+    this.name = "TernSecureError";
+    this.code = code;
+  }
+};
+function handleFirebaseAuthError(error) {
+  function extractErrorInfo(input) {
+    if (typeof input === "string") {
+      const match = input.match(/Firebase:\s*Error\s*\(auth\/([^)]+)\)/);
+      if (match) {
+        return { code: match[1], message: input };
+      }
+    }
+    if (input && typeof input === "object") {
+      const err = input;
+      if (err.message) {
+        const match = err.message.match(/Firebase:\s*Error\s*\(auth\/([^)]+)\)/);
+        if (match) {
+          return { code: match[1], message: err.message };
+        }
+      }
+      if (err.code) {
+        return {
+          code: err.code.replace("auth/", ""),
+          message: err.message || ""
+        };
+      }
+    }
+    return null;
+  }
+  const ERROR_MESSAGES = {
+    "invalid-email": { message: "Invalid email format", code: "INVALID_EMAIL" },
+    "invalid-credential": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
+    "invalid-login-credentials": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
+    "wrong-password": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
+    "user-not-found": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
+    "user-disabled": { message: "This account has been disabled", code: "USER_DISABLED" },
+    "too-many-requests": { message: "Too many attempts. Please try again later", code: "TOO_MANY_ATTEMPTS" },
+    "network-request-failed": { message: "Network error. Please check your connection", code: "NETWORK_ERROR" },
+    "email-already-in-use": { message: "This email is already in use", code: "EMAIL_EXISTS" },
+    "weak-password": { message: "Password is too weak", code: "WEAK_PASSWORD" },
+    "operation-not-allowed": { message: "This login method is not enabled", code: "OPERATION_NOT_ALLOWED" },
+    "popup-blocked": { message: "Login popup was blocked. Please enable popups", code: "POPUP_BLOCKED" },
+    "expired-action-code": { message: "Your session has expired. Please login again", code: "EXPIRED_TOKEN" },
+    "user-token-expired": { message: "Your session has expired. Please login again", code: "EXPIRED_TOKEN" }
+  };
+  try {
+    const errorInfo = extractErrorInfo(error);
+    if (errorInfo) {
+      const mappedError = ERROR_MESSAGES[errorInfo.code];
+      if (mappedError) {
+        return {
+          success: false,
+          message: mappedError.message,
+          code: mappedError.code
+        };
+      }
+    }
+    const errorString = String(error);
+    const lastMatch = errorString.match(/Firebase:\s*Error\s*\(auth\/([^)]+)\)/);
+    if (lastMatch && ERROR_MESSAGES[lastMatch[1]]) {
+      return {
+        success: false,
+        ...ERROR_MESSAGES[lastMatch[1]]
+      };
+    }
+  } catch (e) {
+  }
+  return {
+    success: false,
+    message: "An unexpected error occurred. Please try again later",
+    code: "INTERNAL_ERROR"
+  };
+}
+function isAuthErrorResponse(response) {
+  return typeof response === "object" && response !== null && "success" in response && response.success === false && "code" in response && "message" in response;
+}
+function getErrorAlertVariant(error) {
+  if (!error) return "destructive";
+  switch (error.error) {
+    case "AUTHENTICATED":
+      return "default";
+    case "EMAIL_EXISTS":
+    case "UNAUTHENTICATED":
+    case "UNVERIFIED":
+    case "REQUIRES_VERIFICATION":
+    case "INVALID_EMAIL":
+    case "INVALID_TOKEN":
+    case "INTERNAL_ERROR":
+    case "USER_DISABLED":
+    case "TOO_MANY_ATTEMPTS":
+    case "NETWORK_ERROR":
+    case "SESSION_EXPIRED":
+    case "EXPIRED_TOKEN":
+    case "INVALID_CREDENTIALS":
+    default:
+      return "destructive";
+  }
+}
+// src/ternsecure.ts
+function isSignInResponse(value) {
+  return typeof value === "object" && "success" in value && typeof value.success === "boolean";
+}
+// src/auth.ts
+var DEFAULT_TERN_SECURE_STATE = {
+  userId: null,
+  isLoaded: false,
+  error: null,
+  isValid: false,
+  isVerified: false,
+  isAuthenticated: false,
+  token: null,
+  email: null,
+  status: "loading",
+  requiresVerification: false,
+  user: null
+};
+// src/signIn.ts
+function isSignInResponseTree(value) {
+  return typeof value === "object" && "success" in value && typeof value.success === "boolean";
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  DEFAULT_TERN_SECURE_STATE,
+  ERRORS,
+  TernSecureError,
+  getErrorAlertVariant,
+  handleFirebaseAuthError,
+  isAuthErrorResponse,
+  isSignInResponse,
+  isSignInResponseTree
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/errors.ts","../src/ternsecure.ts","../src/auth.ts","../src/signIn.ts"],"sourcesContent":["export * from './all'\nexport * from './errors'\nexport * from './ternsecure'\nexport * from './theme'\nexport * from './instanceTree'\nexport * from './auth'\nexport * from './signIn'\nexport * from './signUp'\nexport * from './session'\nexport * from './redirect'","export type ErrorCode = keyof typeof ERRORS\r\n\r\nexport interface AuthErrorResponse {\r\n success: false\r\n message: string\r\n code: ErrorCode\r\n}\r\n\r\nexport interface AuthErrorTree extends Error {\r\n code?: any | string;\r\n message: string;\r\n response?: any | string;\r\n}\r\n\r\nexport interface SignInResponseTree {\r\n success: boolean;\r\n message?: string;\r\n error?: any | undefined;\r\n user?: any;\r\n}\r\n\r\nexport const ERRORS = {\r\n SERVER_SIDE_INITIALIZATION: \"TernSecure must be initialized on the client side\",\r\n REQUIRES_VERIFICATION: \"AUTH_REQUIRES_VERIFICATION\",\r\n AUTHENTICATED: \"AUTHENTICATED\",\r\n UNAUTHENTICATED: \"UNAUTHENTICATED\",\r\n UNVERIFIED: \"UNVERIFIED\",\r\n NOT_INITIALIZED: \"TernSecure services are not initialized. Call initializeTernSecure() first\",\r\n HOOK_CONTEXT: \"Hook must be used within TernSecureProvider\",\r\n EMAIL_NOT_VERIFIED: \"EMAIL_NOT_VERIFIED\",\r\n INVALID_CREDENTIALS: \"INVALID_CREDENTIALS\",\r\n USER_DISABLED: \"USER_DISABLED\",\r\n TOO_MANY_ATTEMPTS: \"TOO_MANY_ATTEMPTS\",\r\n NETWORK_ERROR: \"NETWORK_ERROR\",\r\n INVALID_EMAIL: \"INVALID_EMAIL\",\r\n WEAK_PASSWORD: \"WEAK_PASSWORD\",\r\n EMAIL_EXISTS: \"EMAIL_EXISTS\",\r\n POPUP_BLOCKED: \"POPUP_BLOCKED\",\r\n OPERATION_NOT_ALLOWED: \"OPERATION_NOT_ALLOWED\",\r\n EXPIRED_TOKEN: \"EXPIRED_TOKEN\",\r\n INVALID_TOKEN: \"INVALID_TOKEN\",\r\n SESSION_EXPIRED: \"SESSION_EXPIRED\",\r\n INTERNAL_ERROR: \"INTERNAL_ERROR\",\r\n UNKNOWN_ERROR: \"An unknown error occurred.\",\r\n INVALID_ARGUMENT: \"Invalid argument provided.\",\r\n USER_NOT_FOUND: \"auth/user-not-found\",\r\n WRONG_PASSWORD: \"auth/wrong-password\",\r\n EMAIL_ALREADY_IN_USE: \"auth/email-already-in-use\",\r\n REQUIRES_RECENT_LOGIN: \"auth/requires-recent-login\",\r\n NO_SESSION_COOKIE: \"No session cookie found.\",\r\n INVALID_SESSION_COOKIE: \"Invalid session cookie.\",\r\n NO_ID_TOKEN: \"No ID token found.\",\r\n INVALID_ID_TOKEN: \"Invalid ID token.\",\r\n REDIRECT_LOOP: \"Redirect loop detected.\",\r\n} as const\r\n\r\nexport type AuthErrorCode = keyof typeof ERRORS\r\n\r\n// Firebase Auth Error Code patterns\r\nconst ERROR_PATTERNS = {\r\n INVALID_EMAIL: /auth.*invalid.*email|invalid.*email.*auth|Firebase:.*Error.*auth\\/invalid-email/i,\r\n INVALID_CREDENTIALS:\r\n /auth.*invalid.*credential|invalid.*password|wrong.*password|Firebase:.*Error.*auth\\/(invalid-credential|wrong-password|user-not-found)/i,\r\n USER_DISABLED: /user.*disabled|disabled.*user|Firebase:.*Error.*auth\\/user-disabled/i,\r\n TOO_MANY_ATTEMPTS: /too.*many.*attempts|too.*many.*requests|Firebase:.*Error.*auth\\/too-many-requests/i,\r\n NETWORK_ERROR: /network.*request.*failed|failed.*network|Firebase:.*Error.*auth\\/network-request-failed/i,\r\n OPERATION_NOT_ALLOWED: /operation.*not.*allowed|method.*not.*allowed|Firebase:.*Error.*auth\\/operation-not-allowed/i,\r\n POPUP_BLOCKED: /popup.*blocked|blocked.*popup|Firebase:.*Error.*auth\\/popup-blocked/i,\r\n EMAIL_EXISTS: /email.*exists|email.*already.*use|Firebase:.*Error.*auth\\/email-already-in-use/i,\r\n EXPIRED_TOKEN: /token.*expired|expired.*token|Firebase:.*Error.*auth\\/expired-token/i,\r\n INVALID_TOKEN: /invalid.*token|token.*invalid|Firebase:.*Error.*auth\\/invalid-token/i,\r\n SESSION_EXPIRED: /session.*expired|expired.*session|Firebase:.*Error.*auth\\/session-expired/i,\r\n WEAK_PASSWORD: /weak.*password|password.*weak|Firebase:.*Error.*auth\\/weak-password/i,\r\n} as const\r\n\r\nexport class TernSecureError extends Error {\r\n code: ErrorCode\r\n\r\n constructor(code: ErrorCode, message?: string) {\r\n super(message || code)\r\n this.name = \"TernSecureError\"\r\n this.code = code\r\n }\r\n}\r\n\r\ninterface SerializedFirebaseError {\r\n name?: string\r\n code?: string\r\n message?: string\r\n stack?: string\r\n}\r\n\r\n/**\r\n * Determines if an object matches the shape of a Firebase Error\r\n */\r\nfunction isFirebaseErrorLike(error: unknown): error is SerializedFirebaseError {\r\n if (!error || typeof error !== \"object\") return false\r\n\r\n const err = error as SerializedFirebaseError\r\n\r\n // Check for bundled Firebase error format: \"Firebase: Error (auth/error-code)\"\r\n if (typeof err.message === \"string\") {\r\n const bundledErrorMatch = err.message.match(/Firebase:\\s*Error\\s*$$auth\\/([^)]+)$$/)\r\n if (bundledErrorMatch) {\r\n // Add the extracted code to the error object\r\n err.code = `auth/${bundledErrorMatch[1]}`\r\n return true\r\n }\r\n }\r\n\r\n return (\r\n (typeof err.code === \"string\" && err.code.startsWith(\"auth/\")) ||\r\n (typeof err.name === \"string\" && err.name.includes(\"FirebaseError\"))\r\n )\r\n}\r\n\r\n/**\r\n * Extracts the error code from a Firebase-like error object\r\n */\r\nfunction extractFirebaseErrorCode(error: SerializedFirebaseError): string {\r\n // First try to extract from bundled error message format\r\n if (typeof error.message === \"string\") {\r\n const bundledErrorMatch = error.message.match(/Firebase:\\s*Error\\s*$$auth\\/([^)]+)$$/)\r\n if (bundledErrorMatch) {\r\n return bundledErrorMatch[1]\r\n }\r\n }\r\n\r\n // Then try the standard code property\r\n if (error.code) {\r\n return error.code.replace(\"auth/\", \"\")\r\n }\r\n\r\n // Finally try to extract from error message if it contains an error code\r\n if (typeof error.message === \"string\") {\r\n const messageCodeMatch = error.message.match(/auth\\/([a-z-]+)/)\r\n if (messageCodeMatch) {\r\n return messageCodeMatch[1]\r\n }\r\n }\r\n\r\n return \"\"\r\n}\r\n\r\n/**\r\n * Maps a Firebase error code to our internal error code\r\n */\r\nfunction mapFirebaseErrorCode(code: string): ErrorCode {\r\n // Direct mapping for known error codes\r\n const directMappings: Record<string, ErrorCode> = {\r\n \"invalid-email\": \"INVALID_EMAIL\",\r\n \"user-disabled\": \"USER_DISABLED\",\r\n \"too-many-requests\": \"TOO_MANY_ATTEMPTS\",\r\n \"network-request-failed\": \"NETWORK_ERROR\",\r\n \"operation-not-allowed\": \"OPERATION_NOT_ALLOWED\",\r\n \"popup-blocked\": \"POPUP_BLOCKED\",\r\n \"email-already-in-use\": \"EMAIL_EXISTS\",\r\n \"weak-password\": \"WEAK_PASSWORD\",\r\n \"invalid-credential\": \"INVALID_CREDENTIALS\",\r\n \"wrong-password\": \"INVALID_CREDENTIALS\",\r\n \"user-not-found\": \"INVALID_CREDENTIALS\",\r\n \"invalid-password\": \"INVALID_CREDENTIALS\",\r\n \"user-token-expired\": \"EXPIRED_TOKEN\",\r\n \"invalid-id-token\": \"INVALID_TOKEN\",\r\n }\r\n\r\n return directMappings[code] || \"INTERNAL_ERROR\"\r\n}\r\n\r\n/**\r\n * Determines error type based on error message pattern matching\r\n */\r\nfunction determineErrorTypeFromMessage(message: string): ErrorCode {\r\n // First check for bundled Firebase error format\r\n const bundledErrorMatch = message.match(/Firebase:\\s*Error\\s*$$auth\\/([^)]+)$$/)\r\n if (bundledErrorMatch) {\r\n const errorCode = bundledErrorMatch[1]\r\n const mappedCode = mapFirebaseErrorCode(errorCode)\r\n if (mappedCode) {\r\n return mappedCode\r\n }\r\n }\r\n\r\n // Then check standard patterns\r\n for (const [errorType, pattern] of Object.entries(ERROR_PATTERNS)) {\r\n if (pattern.test(message)) {\r\n return errorType as ErrorCode\r\n }\r\n }\r\n\r\n return \"INTERNAL_ERROR\"\r\n}\r\n\r\n/**\r\n * Creates a standardized error response\r\n */\r\nfunction createErrorResponse(code: ErrorCode, message: string): AuthErrorResponse {\r\n const defaultMessages: Record<ErrorCode, string> = {\r\n INVALID_EMAIL: \"Invalid email format\",\r\n INVALID_CREDENTIALS: \"Invalid email or password\",\r\n USER_DISABLED: \"This account has been disabled\",\r\n TOO_MANY_ATTEMPTS: \"Too many attempts. Please try again later\",\r\n NETWORK_ERROR: \"Network error. Please check your connection\",\r\n OPERATION_NOT_ALLOWED: \"This login method is not enabled\",\r\n POPUP_BLOCKED: \"Login popup was blocked. Please enable popups\",\r\n EMAIL_EXISTS: \"This email is already in use\",\r\n EXPIRED_TOKEN: \"Your session has expired. Please login again\",\r\n INVALID_TOKEN: \"Invalid authentication token\",\r\n SESSION_EXPIRED: \"Your session has expired\",\r\n WEAK_PASSWORD: \"Password is too weak\",\r\n EMAIL_NOT_VERIFIED: \"Email verification required\",\r\n INTERNAL_ERROR: \"An internal error occurred. Please try again\",\r\n SERVER_SIDE_INITIALIZATION: \"TernSecure must be initialized on the client side\",\r\n REQUIRES_VERIFICATION: \"Email verification required\",\r\n AUTHENTICATED: \"Already authenticated\",\r\n UNAUTHENTICATED: \"Authentication required\",\r\n UNVERIFIED: \"Email verification required\",\r\n NOT_INITIALIZED: \"TernSecure services are not initialized\",\r\n HOOK_CONTEXT: \"Hook must be used within TernSecureProvider\",\r\n UNKNOWN_ERROR: \"An unknown error occurred.\",\r\n INVALID_ARGUMENT: \"Invalid argument provided.\",\r\n USER_NOT_FOUND: \"User not found.\",\r\n WRONG_PASSWORD: \"Wrong password.\",\r\n EMAIL_ALREADY_IN_USE: \"Email already in use.\",\r\n REQUIRES_RECENT_LOGIN: \"Requires recent login.\",\r\n NO_SESSION_COOKIE: \"No session cookie found.\",\r\n INVALID_SESSION_COOKIE: \"Invalid session cookie.\",\r\n NO_ID_TOKEN: \"No ID token found.\",\r\n INVALID_ID_TOKEN: \"Invalid ID token.\",\r\n REDIRECT_LOOP: \"Redirect loop detected.\",\r\n }\r\n\r\n return {\r\n success: false,\r\n message: message || defaultMessages[code],\r\n code,\r\n }\r\n}\r\n\r\n/**\r\n * Handles Firebase authentication errors with multiple fallback mechanisms\r\n */\r\nexport function handleFirebaseAuthError(error: unknown): AuthErrorResponse {\r\n // Helper to extract clean error code from bundled format\r\n function extractErrorInfo(input: unknown): { code: string; message: string } | null {\r\n // Case 1: String input (direct Firebase error message)\r\n if (typeof input === 'string') {\r\n const match = input.match(/Firebase:\\s*Error\\s*\$auth\\/([^)]+)\$/);\r\n if (match) {\r\n return { code: match[1], message: input };\r\n }\r\n }\r\n\r\n // Case 2: Error object\r\n if (input && typeof input === 'object') {\r\n const err = input as { code?: string; message?: string };\r\n \r\n // Check for bundled message format first\r\n if (err.message) {\r\n const match = err.message.match(/Firebase:\\s*Error\\s*\$auth\\/([^)]+)\$/);\r\n if (match) {\r\n return { code: match[1], message: err.message };\r\n }\r\n }\r\n\r\n // Check for direct code\r\n if (err.code) {\r\n return {\r\n code: err.code.replace('auth/', ''),\r\n message: err.message || ''\r\n };\r\n }\r\n }\r\n\r\n return null;\r\n }\r\n\r\n // Map error codes to user-friendly messages\r\n const ERROR_MESSAGES: Record<string, { message: string; code: ErrorCode }> = {\r\n 'invalid-email': { message: 'Invalid email format', code: 'INVALID_EMAIL' },\r\n 'invalid-credential': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n 'invalid-login-credentials': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n 'wrong-password': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n 'user-not-found': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n 'user-disabled': { message: 'This account has been disabled', code: 'USER_DISABLED' },\r\n 'too-many-requests': { message: 'Too many attempts. Please try again later', code: 'TOO_MANY_ATTEMPTS' },\r\n 'network-request-failed': { message: 'Network error. Please check your connection', code: 'NETWORK_ERROR' },\r\n 'email-already-in-use': { message: 'This email is already in use', code: 'EMAIL_EXISTS' },\r\n 'weak-password': { message: 'Password is too weak', code: 'WEAK_PASSWORD' },\r\n 'operation-not-allowed': { message: 'This login method is not enabled', code: 'OPERATION_NOT_ALLOWED' },\r\n 'popup-blocked': { message: 'Login popup was blocked. Please enable popups', code: 'POPUP_BLOCKED' },\r\n 'expired-action-code': { message: 'Your session has expired. Please login again', code: 'EXPIRED_TOKEN' },\r\n 'user-token-expired': { message: 'Your session has expired. Please login again', code: 'EXPIRED_TOKEN' }\r\n };\r\n\r\n try {\r\n // Extract error information\r\n const errorInfo = extractErrorInfo(error);\r\n \r\n if (errorInfo) {\r\n const mappedError = ERROR_MESSAGES[errorInfo.code];\r\n if (mappedError) {\r\n return {\r\n success: false,\r\n message: mappedError.message,\r\n code: mappedError.code\r\n };\r\n }\r\n }\r\n\r\n // If we couldn't extract or map the error, try one last time with string conversion\r\n const errorString = String(error);\r\n const lastMatch = errorString.match(/Firebase:\\s*Error\\s*\$auth\\/([^)]+)\$/);\r\n if (lastMatch && ERROR_MESSAGES[lastMatch[1]]) {\r\n return {\r\n success: false,\r\n ...ERROR_MESSAGES[lastMatch[1]]\r\n };\r\n }\r\n\r\n } catch (e) {\r\n // Silent catch - we'll return the default error\r\n }\r\n\r\n // Default fallback\r\n return {\r\n success: false,\r\n message: 'An unexpected error occurred. Please try again later',\r\n code: 'INTERNAL_ERROR'\r\n };\r\n}\r\n\r\n/**\r\n * Type guard to check if a response is an AuthErrorResponse\r\n */\r\nexport function isAuthErrorResponse(response: unknown): response is AuthErrorResponse {\r\n return (\r\n typeof response === \"object\" &&\r\n response !== null &&\r\n \"success\" in response &&\r\n (response as { success: boolean }).success === false &&\r\n \"code\" in response &&\r\n \"message\" in response\r\n )\r\n}\r\n\r\nexport function getErrorAlertVariant(error: any | undefined) {\r\n if (!error) return \"destructive\"\r\n\r\n switch (error.error) {\r\n case \"AUTHENTICATED\":\r\n return \"default\"\r\n case \"EMAIL_EXISTS\":\r\n case \"UNAUTHENTICATED\":\r\n case \"UNVERIFIED\":\r\n case \"REQUIRES_VERIFICATION\":\r\n case \"INVALID_EMAIL\":\r\n case \"INVALID_TOKEN\":\r\n case \"INTERNAL_ERROR\":\r\n case \"USER_DISABLED\":\r\n case \"TOO_MANY_ATTEMPTS\":\r\n case \"NETWORK_ERROR\":\r\n case \"SESSION_EXPIRED\":\r\n case \"EXPIRED_TOKEN\":\r\n case \"INVALID_CREDENTIALS\":\r\n default:\r\n return \"destructive\"\r\n }\r\n}","import { \n TernSecureUser \n} from './all';\nimport { Appearance } from './theme';\n\nexport interface TernSecureSession {\n token: string | null;\n expiresAt?: number;\n}\n\ntype SignInFormValues = {\n email: string;\n password: string;\n phoneNumber?: string;\n}\n\nexport type SignInInitialValue = Partial<SignInFormValues>;\n\n\ntype SignUpFormValues = {\n email: string;\n password: string;\n confirmPassword?: string;\n displayName?: string;\n};\n\n\nexport type SignUpInitialValue = Partial<SignUpFormValues>;\n\nexport interface SignInResponse {\n success: boolean;\n message?: string;\n error?: any | undefined;\n user?: any;\n}\n\nexport interface AuthError extends Error {\n code?: any | string \n message: string\n response?: SignInResponse\n}\n\nexport function isSignInResponse(value: any): value is SignInResponse {\n return typeof value === \"object\" && \"success\" in value && typeof value.success === \"boolean\"\n}\n\nexport interface AuthActions {\n signInWithEmail: (email: string, password: string) => Promise<SignInResponse>;\n signInWithGoogle: () => Promise<void>;\n signInWithMicrosoft: () => Promise<void>;\n signOut: () => Promise<void>;\n getRedirectResult: () => Promise<any>;\n getIdToken: () => Promise<string | null>;\n createUserWithEmailAndPassword?: (email: string, password: string) => Promise<SignInResponse>;\n sendEmailVerification?: (user: TernSecureUser) => Promise<void>;\n}\n\nexport interface RedirectConfig {\n // URL to redirect to after successful authentication\n redirectUrl?: string\n // Whether this is a return visit (e.g. after sign out)\n isReturn?: boolean\n // Priority of the redirect (higher number = higher priority)\n priority?: number\n}\n\n\nexport interface SignInProps extends RedirectConfig {\n initialValue?: SignInInitialValue;\n logo?: string\n appName?: string\n appearance?: Appearance;\n onError?: (error: AuthError) => void;\n onSuccess?: (user: TernSecureUser | null) => void;\n}\n\n\n/**\n * SignUpProps interface defines the properties for the sign-up component.\n * It extends RedirectConfig to include redirect-related properties.\n */\nexport interface SignUpProps extends RedirectConfig {\n initialValue?: SignUpInitialValue;\n logo?: string\n appName?: string\n appearance?: Appearance;\n onError?: (error: AuthError) => void;\n onSuccess?: (user: TernSecureUser | null) => void;\n}\n\n/**\n * Defines the contract for a TernSecure instance.\n * This instance provides authentication state, user information, and methods\n * for managing the authentication lifecycle. It is designed to be used by\n * UI packages like tern-ui, which act as \"dumb\" renderers.\n */\nexport interface TernSecureInstance {\n /** Indicates if the user is currently signed in. */\n isSignedIn: () => boolean;\n\n /** The current authenticated user object, or null if not signed in. */\n user: TernSecureUser | null;\n\n /** The current user session information, or null if not signed in. */\n session: TernSecureSession | null;\n\n /** Initiates the sign-out process for the current user. */\n signOut: () => Promise<void>;\n\n /**\n * Prepares or signals to mount the sign-in interface.\n * @param options Optional configuration or initial state for the sign-in UI, conforming to SignInProps.\n */\n mountSignIn: (options?: SignInProps) => void;\n\n /** Cleans up or signals to unmount the sign-in interface. */\n unmountSignIn: () => void;\n\n /**\n * Prepares or signals to mount the sign-up interface.\n * @param options Optional configuration or initial state for the sign-up UI, conforming to SignUpProps.\n */\n mountSignUp: (options?: SignUpProps) => void;\n\n /** Cleans up or signals to unmount the sign-up interface. */\n unmountSignUp: () => void;\n\n /**\n * Determines if a redirect is necessary based on the current authentication\n * state and the given path.\n * @param currentPath The current URL path.\n * @returns True if a redirect is needed, false otherwise, or a string path to redirect to.\n */\n shouldRedirect: (currentPath: string) => boolean | string;\n\n /**\n * Constructs a URL, appending necessary redirect parameters.\n * Useful for redirecting back to the original page after authentication.\n * @param baseUrl The base URL to which redirect parameters should be added.\n * @returns The new URL string with redirect parameters.\n */\n constructUrlWithRedirect: (baseUrl: string) => string;\n\n /**\n * Redirects the user to the configured login page.\n * @param redirectUrl Optional URL to redirect to after successful login.\n */\n redirectToLogin: (redirectUrl?: string) => void;\n\n /** Indicates if an authentication operation is currently in progress. */\n isLoading: boolean;\n\n /** Holds any error that occurred during an authentication operation, or null otherwise. */\n error: Error | null;\n \n /** Indicates if the user has verified their email address. */\n sendVerificationEmail: () => Promise<void>;\n}","import { SignedInSession } from 'session';\nimport type { \n TernSecureUser,\n TernSecureConfig\n} from './all';\nimport type { \n SignInResource\n} from './signIn';\nimport { SignUpResource } from 'signUp';\n\nexport interface TernSecureState {\n userId: string | null\n isLoaded: boolean\n error: Error | null\n isValid: boolean\n isVerified: boolean\n isAuthenticated: boolean\n token: any | null\n email: string | null\n status: \"loading\" | \"authenticated\" | \"unauthenticated\" | \"unverified\"\n requiresVerification?: boolean\n user?: TernSecureUser | null\n}\n\n\nexport type AuthProviderStatus = 'idle' | 'pending' | 'error' | 'success';\n\nexport const DEFAULT_TERN_SECURE_STATE: TernSecureState = {\n userId: null,\n isLoaded: false,\n error: null,\n isValid: false,\n isVerified: false,\n isAuthenticated: false,\n token: null,\n email: null,\n status: \"loading\",\n requiresVerification: false,\n user: null\n};\n\n\nexport interface TernSecureAuthProvider {\n /** Current auth state */\n internalAuthState: TernSecureState;\n\n /** Current user*/\n ternSecureUser(): TernSecureUser | null;\n\n /** Current session */\n currentSession: SignedInSession | null;\n\n /** Sign in resource for authentication operations */\n signIn: SignInResource;\n\n /** SignUp resource for authentication operations */\n signUp: SignUpResource;\n\n /** The Firebase configuration used by this TernAuth instance. */\n ternSecureConfig?: TernSecureConfig;\n\n /** Sign out the current user */\n signOut(): Promise<void>;\n}","import type { \n SignInResponseTree\n} from './errors';\n\nexport type SignInStatus =\n | 'idle'\n | 'pending_email_password'\n | 'pending_social'\n | 'pending_mfa'\n | 'redirecting'\n | 'success'\n | 'error';\n\n\n\nexport type SignInFormValuesTree = {\n email: string;\n password: string;\n phoneNumber?: string;\n};\n\n\nexport type SignInInitialValueTree = Partial<SignInFormValuesTree>;\n\n\nexport interface ResendEmailVerification extends SignInResponseTree {\n isVerified?: boolean;\n}\n\nexport function isSignInResponseTree(value: any): value is SignInResponseTree {\n return (\n typeof value === 'object' &&\n 'success' in value &&\n typeof value.success === 'boolean'\n );\n}\n\n\n\nexport interface SignInResource {\n /**\n * The current status of the sign-in process.\n */\n status?: SignInStatus;\n /**\n * Signs in a user with their email and password.\n * @param params - The sign-in form values.\n * @returns A promise that resolves with the sign-in response.\n */\n withEmailAndPassword: (params: SignInFormValuesTree) => Promise<SignInResponseTree>;\n /**\n * @param provider - The identifier of the social provider (e.g., 'google', 'microsoft', 'github').\n * @param options - Optional configuration for the social sign-in flow.\n * @returns A promise that resolves with the sign-in response or void if redirecting.\n */\n withSocialProvider: (provider: string, options?: { mode?: 'popup' | 'redirect' }) => Promise<SignInResponseTree | void>;\n /**\n * Completes an MFA (Multi-Factor Authentication) step after a primary authentication attempt.\n * @param mfaToken - The MFA token or code submitted by the user.\n * @param mfaContext - Optional context or session data from the MFA initiation step.\n * @returns A promise that resolves with the sign-in response upon successful MFA verification.\n */\n completeMfaSignIn: (mfaToken: string, mfaContext?: any) => Promise<SignInResponseTree>;\n /**\n * Sends a password reset email to the given email address.\n * @param email - The user's email address.\n * @returns A promise that resolves when the email is sent.\n */\n sendPasswordResetEmail: (email: string) => Promise<void>;\n /**\n * Resends the email verification link to the user's email address.\n * @returns A promise that resolves with the sign-in response.\n */\n resendEmailVerification: () => Promise<ResendEmailVerification>;\n}"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACqBO,IAAM,SAAS;AAAA,EACpB,4BAA4B;AAAA,EAC5B,uBAAuB;AAAA,EACvB,eAAe;AAAA,EACf,iBAAiB;AAAA,EACjB,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,cAAc;AAAA,EACd,oBAAoB;AAAA,EACpB,qBAAqB;AAAA,EACrB,eAAe;AAAA,EACf,mBAAmB;AAAA,EACnB,eAAe;AAAA,EACf,eAAe;AAAA,EACf,eAAe;AAAA,EACf,cAAc;AAAA,EACd,eAAe;AAAA,EACf,uBAAuB;AAAA,EACvB,eAAe;AAAA,EACf,eAAe;AAAA,EACf,iBAAiB;AAAA,EACjB,gBAAgB;AAAA,EAChB,eAAe;AAAA,EACf,kBAAkB;AAAA,EAClB,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,sBAAsB;AAAA,EACtB,uBAAuB;AAAA,EACvB,mBAAmB;AAAA,EACnB,wBAAwB;AAAA,EACxB,aAAa;AAAA,EACb,kBAAkB;AAAA,EAClB,eAAe;AACjB;AAqBO,IAAM,kBAAN,cAA8B,MAAM;AAAA,EACzC;AAAA,EAEA,YAAY,MAAiB,SAAkB;AAC7C,UAAM,WAAW,IAAI;AACrB,SAAK,OAAO;AACZ,SAAK,OAAO;AAAA,EACd;AACF;AA+JO,SAAS,wBAAwB,OAAmC;AAEzE,WAAS,iBAAiB,OAA0D;AAElF,QAAI,OAAO,UAAU,UAAU;AAC7B,YAAM,QAAQ,MAAM,MAAM,uCAAuC;AACjE,UAAI,OAAO;AACT,eAAO,EAAE,MAAM,MAAM,CAAC,GAAG,SAAS,MAAM;AAAA,MAC1C;AAAA,IACF;AAGA,QAAI,SAAS,OAAO,UAAU,UAAU;AACtC,YAAM,MAAM;AAGZ,UAAI,IAAI,SAAS;AACf,cAAM,QAAQ,IAAI,QAAQ,MAAM,uCAAuC;AACvE,YAAI,OAAO;AACT,iBAAO,EAAE,MAAM,MAAM,CAAC,GAAG,SAAS,IAAI,QAAQ;AAAA,QAChD;AAAA,MACF;AAGA,UAAI,IAAI,MAAM;AACZ,eAAO;AAAA,UACL,MAAM,IAAI,KAAK,QAAQ,SAAS,EAAE;AAAA,UAClC,SAAS,IAAI,WAAW;AAAA,QAC1B;AAAA,MACF;AAAA,IACF;AAEA,WAAO;AAAA,EACT;AAGA,QAAM,iBAAuE;AAAA,IAC3E,iBAAiB,EAAE,SAAS,wBAAwB,MAAM,gBAAgB;AAAA,IAC1E,sBAAsB,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IAC1F,6BAA6B,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IACjG,kBAAkB,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IACtF,kBAAkB,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IACtF,iBAAiB,EAAE,SAAS,kCAAkC,MAAM,gBAAgB;AAAA,IACpF,qBAAqB,EAAE,SAAS,6CAA6C,MAAM,oBAAoB;AAAA,IACvG,0BAA0B,EAAE,SAAS,+CAA+C,MAAM,gBAAgB;AAAA,IAC1G,wBAAwB,EAAE,SAAS,gCAAgC,MAAM,eAAe;AAAA,IACxF,iBAAiB,EAAE,SAAS,wBAAwB,MAAM,gBAAgB;AAAA,IAC1E,yBAAyB,EAAE,SAAS,oCAAoC,MAAM,wBAAwB;AAAA,IACtG,iBAAiB,EAAE,SAAS,iDAAiD,MAAM,gBAAgB;AAAA,IACnG,uBAAuB,EAAE,SAAS,gDAAgD,MAAM,gBAAgB;AAAA,IACxG,sBAAsB,EAAE,SAAS,gDAAgD,MAAM,gBAAgB;AAAA,EACzG;AAEA,MAAI;AAEF,UAAM,YAAY,iBAAiB,KAAK;AAExC,QAAI,WAAW;AACb,YAAM,cAAc,eAAe,UAAU,IAAI;AACjD,UAAI,aAAa;AACf,eAAO;AAAA,UACL,SAAS;AAAA,UACT,SAAS,YAAY;AAAA,UACrB,MAAM,YAAY;AAAA,QACpB;AAAA,MACF;AAAA,IACF;AAGA,UAAM,cAAc,OAAO,KAAK;AAChC,UAAM,YAAY,YAAY,MAAM,uCAAuC;AAC3E,QAAI,aAAa,eAAe,UAAU,CAAC,CAAC,GAAG;AAC7C,aAAO;AAAA,QACL,SAAS;AAAA,QACT,GAAG,eAAe,UAAU,CAAC,CAAC;AAAA,MAChC;AAAA,IACF;AAAA,EAEF,SAAS,GAAG;AAAA,EAEZ;AAGA,SAAO;AAAA,IACL,SAAS;AAAA,IACT,SAAS;AAAA,IACT,MAAM;AAAA,EACR;AACF;AAKO,SAAS,oBAAoB,UAAkD;AACpF,SACE,OAAO,aAAa,YACpB,aAAa,QACb,aAAa,YACZ,SAAkC,YAAY,SAC/C,UAAU,YACV,aAAa;AAEjB;AAEO,SAAS,qBAAqB,OAAwB;AAC5D,MAAI,CAAC,MAAO,QAAO;AAElB,UAAQ,MAAM,OAAO;AAAA,IACnB,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL;AACE,aAAO;AAAA,EACX;AACF;;;ACtUO,SAAS,iBAAiB,OAAqC;AACpE,SAAO,OAAO,UAAU,YAAY,aAAa,SAAS,OAAO,MAAM,YAAY;AACrF;;;ACjBO,IAAM,4BAA6C;AAAA,EACxD,QAAQ;AAAA,EACR,UAAU;AAAA,EACV,OAAO;AAAA,EACP,SAAS;AAAA,EACT,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,OAAO;AAAA,EACP,OAAO;AAAA,EACP,QAAQ;AAAA,EACR,sBAAsB;AAAA,EACtB,MAAM;AACR;;;ACVO,SAAS,qBAAqB,OAAyC;AAC5E,SACE,OAAO,UAAU,YACjB,aAAa,SACb,OAAO,MAAM,YAAY;AAE7B;","names":[]}

package/dist/instanceTree.d.ts ADDED Viewed

@@ -0,0 +1,116 @@
+import type { Appearance, SignInUIConfig, SignUpUIConfig } from './theme';
+import type { TernSecureConfig, TernSecureUser } from './all';
+import type { TernSecureAuthProvider, TernSecureState } from 'auth';
+import type { TernSecureSessionTree, SignedInSession } from './session';
+import type { AuthErrorTree } from './errors';
+import type { RedirectOptions, SignInRedirectUrl, SignUpRedirectUrl } from './redirect';
+import type { SignInInitialValueTree } from './signIn';
+type Mode = 'browser' | 'server';
+export type TernSecureInstanceTreeOptions = {
+    initialSession?: TernSecureSessionTree | null;
+    defaultAppearance?: Appearance;
+    signInUrl?: string;
+    signUpUrl?: string;
+    mode?: Mode;
+    onAuthStateChanged?: (user: TernSecureUser | null) => void;
+    onError?: (error: AuthErrorTree) => void;
+    environment?: string | undefined;
+    requireverification?: boolean;
+    ternSecureConfig?: TernSecureConfig;
+} & SignInRedirectUrl & SignUpRedirectUrl;
+export type TernSecureInstanceTreeStatus = 'error' | 'loading' | 'ready';
+/**
+ * Instance interface for managing auth UI state
+ */
+export interface TernSecureInstanceTree {
+    customDomain?: string;
+    proxyUrl?: string;
+    apiKey?: string;
+    projectId?: string;
+    environment?: string | undefined;
+    mode?: Mode;
+    isReady: boolean;
+    status: TernSecureInstanceTreeStatus;
+    isVisible: boolean;
+    currentView: 'signIn' | 'signUp' | 'verify' | null;
+    isLoading: boolean;
+    error: Error | null;
+    /** Authentication State */
+    auth: {
+        /** Current authenticated user */
+        user: TernSecureUser | null;
+        /** Current session information */
+        session: SignedInSession | null;
+    };
+    /** Core Authentication Methods */
+    ternAuth: TernSecureAuthProvider | undefined;
+    showSignIn: (targetNode: HTMLDivElement, config?: SignInPropsTree) => void;
+    hideSignIn: (targetNode: HTMLDivElement) => void;
+    showSignUp: (targetNode: HTMLDivElement, config?: SignUpPropsTree) => void;
+    hideSignUp: (targetNode: HTMLDivElement) => void;
+    showUserButton: (targetNode: HTMLDivElement) => void;
+    hideUserButton: (targetNode: HTMLDivElement) => void;
+    clearError: () => void;
+    setLoading: (isLoading: boolean) => void;
+    /** Get redirect result from OAuth flows */
+    getRedirectResult: () => Promise<any>;
+    /** Check if redirect is needed */
+    shouldRedirect: (currentPath: string) => boolean | string;
+    /** Construct URL with redirect parameters */
+    constructUrlWithRedirect: (to: string) => string;
+    /** Navigate to SignIn page */
+    redirectToSignIn(options?: SignInRedirectOptions): Promise<unknown>;
+    /** Navigate to SignUp page */
+    redirectToSignUp(options?: SignUpRedirectOptions): Promise<unknown>;
+    redirectAfterSignIn: () => void;
+    redirectAfterSignUp: () => void;
+    /** Error and Event Handling */
+    events: {
+        /** Subscribe to auth state changes */
+        onAuthStateChanged: (callback: (authState: TernSecureState) => void) => () => void;
+        /** Subscribe to error events */
+        onError: (callback: (error: AuthErrorTree) => void) => () => void;
+        /** Status */
+        onStatusChanged: (callback: (status: TernSecureInstanceTreeStatus) => void) => () => void;
+    };
+}
+export type SignUpFormValuesTree = {
+    email: string;
+    password: string;
+    confirmPassword?: string;
+    displayName?: string;
+};
+export type SignUpInitialValueTree = Partial<SignUpFormValuesTree>;
+/**
+ * Props for SignIn component focusing on UI concerns
+ */
+export type SignInPropsTree = {
+    /** URL to navigate to after successfully sign-in */
+    forceRedirectUrl?: string | null;
+    /** Initial form values */
+    initialValue?: SignInInitialValueTree;
+    /** UI configuration */
+    ui?: SignInUIConfig;
+    /** Callbacks */
+    onError?: (error: AuthErrorTree) => void;
+    onSuccess?: (user: TernSecureUser | null) => void;
+} & SignUpRedirectUrl;
+/**
+ * Props for SignUp component focusing on UI concerns
+ */
+export type SignUpPropsTree = {
+    /** URL to navigate to after successfully sign-up */
+    forceRedirectUrl?: string | null;
+    /** Initial form values */
+    initialValue?: SignUpInitialValueTree;
+    /** UI configuration */
+    ui?: SignUpUIConfig;
+    /** Callbacks */
+    onSubmit?: (values: SignUpFormValuesTree) => Promise<void>;
+    onError?: (error: AuthErrorTree) => void;
+    onSuccess?: (user: TernSecureUser | null) => void;
+} & SignInRedirectUrl;
+export type SignInRedirectOptions = RedirectOptions;
+export type SignUpRedirectOptions = RedirectOptions;
+export {};
+//# sourceMappingURL=instanceTree.d.ts.map

package/dist/instanceTree.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"instanceTree.d.ts","sourceRoot":"","sources":["../src/instanceTree.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,UAAU,EACV,cAAc,EACd,cAAc,EACd,MAAM,SAAS,CAAC;AAClB,OAAO,KAAK,EACV,gBAAgB,EAChB,cAAc,EACf,MAAM,OAAO,CAAC;AACf,OAAO,KAAK,EACV,sBAAsB,EACtB,eAAe,EAChB,MAAM,MAAM,CAAC;AACd,OAAO,KAAK,EACV,qBAAqB,EACrB,eAAe,EAChB,MAAM,WAAW,CAAC;AACnB,OAAO,KAAK,EACV,aAAa,EACd,MAAM,UAAU,CAAC;AAClB,OAAO,KAAK,EACV,eAAe,EACf,iBAAiB,EACjB,iBAAiB,EAClB,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EACV,sBAAsB,EACvB,MAAM,UAAU,CAAC;AAIlB,KAAK,IAAI,GAAG,SAAS,GAAG,QAAQ,CAAC;AAGjC,MAAM,MAAM,6BAA6B,GAAG;IAC1C,cAAc,CAAC,EAAE,qBAAqB,GAAG,IAAI,CAAC;IAC9C,iBAAiB,CAAC,EAAE,UAAU,CAAC;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,kBAAkB,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;IAC3D,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,CAAC;IACzC,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,gBAAgB,CAAC,EAAE,gBAAgB,CAAA;CACpC,GAAG,iBAAiB,GAAG,iBAAiB,CAAC;AAE1C,MAAM,MAAM,4BAA4B,GAAG,OAAO,GAAG,SAAS,GAAG,OAAO,CAAC;AAEzE;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,EAAE,4BAA4B,CAAC;IACrC,SAAS,EAAE,OAAO,CAAC;IACnB,WAAW,EAAE,QAAQ,GAAG,QAAQ,GAAG,QAAQ,GAAG,IAAI,CAAC;IACnD,SAAS,EAAE,OAAO,CAAC;IACnB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB,2BAA2B;IAC3B,IAAI,EAAE;QACJ,iCAAiC;QACjC,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;QAC5B,kCAAkC;QAClC,OAAO,EAAE,eAAe,GAAG,IAAI,CAAC;KACjC,CAAC;IAEF,kCAAkC;IAClC,QAAQ,EAAE,sBAAsB,GAAG,SAAS,CAAC;IAE7C,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,EAAE,MAAM,CAAC,EAAE,eAAe,KAAK,IAAI,CAAC;IAC3E,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACjD,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,EAAE,MAAM,CAAC,EAAE,eAAe,KAAK,IAAI,CAAC;IAC3E,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACjD,cAAc,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACrD,cAAc,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACrD,UAAU,EAAE,MAAM,IAAI,CAAC;IACvB,UAAU,EAAE,CAAC,SAAS,EAAE,OAAO,KAAK,IAAI,CAAC;IAEzC,2CAA2C;IAC3C,iBAAiB,EAAE,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC;IACtC,kCAAkC;IAClC,cAAc,EAAE,CAAC,WAAW,EAAE,MAAM,KAAK,OAAO,GAAG,MAAM,CAAC;IAC1D,6CAA6C;IAC7C,wBAAwB,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK,MAAM,CAAC;IACjD,8BAA8B;IAC9B,gBAAgB,CAAC,OAAO,CAAC,EAAE,qBAAqB,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACpE,8BAA8B;IAC9B,gBAAgB,CAAC,OAAO,CAAC,EAAE,qBAAqB,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAEpE,mBAAmB,EAAE,MAAM,IAAI,CAAC;IAEhC,mBAAmB,EAAE,MAAM,IAAI,CAAC;IAEhC,+BAA+B;IAC/B,MAAM,EAAE;QACN,sCAAsC;QACtC,kBAAkB,EAAE,CAAC,QAAQ,EAAE,CAAC,SAAS,EAAE,eAAe,KAAK,IAAI,KAAK,MAAM,IAAI,CAAC;QACnF,gCAAgC;QAChC,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,KAAK,MAAM,IAAI,CAAC;QAClE,aAAa;QACb,eAAe,EAAE,CAAC,QAAQ,EAAE,CAAC,MAAM,EAAE,4BAA4B,KAAK,IAAI,KAAK,MAAM,IAAI,CAAC;KAC3F,CAAC;CACH;AAED,MAAM,MAAM,oBAAoB,GAAG;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,sBAAsB,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAAC;AAEnE;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG;IAC5B,oDAAoD;IACpD,gBAAgB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,0BAA0B;IAC1B,YAAY,CAAC,EAAE,sBAAsB,CAAC;IACtC,uBAAuB;IACvB,EAAE,CAAC,EAAE,cAAc,CAAC;IACpB,gBAAgB;IAChB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,CAAC;IACzC,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;CACnD,GAAG,iBAAiB,CAAA;AAGrB;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG;IAC5B,oDAAoD;IACpD,gBAAgB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,0BAA0B;IAC1B,YAAY,CAAC,EAAE,sBAAsB,CAAC;IACtC,uBAAuB;IACvB,EAAE,CAAC,EAAE,cAAc,CAAC;IACpB,gBAAgB;IAChB,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3D,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,CAAC;IACzC,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;CACnD,GAAG,iBAAiB,CAAA;AAErB,MAAM,MAAM,qBAAqB,GAAG,eAAe,CAAA;AACnD,MAAM,MAAM,qBAAqB,GAAG,eAAe,CAAC"}

package/dist/redirect.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+export type SignInRedirectUrl = {
+    signInForceRedirectUrl?: string | null;
+};
+export type SignUpRedirectUrl = {
+    signUpForceRedirectUrl?: string | null;
+};
+export type RedirectOptions = SignInRedirectUrl | SignUpRedirectUrl;
+//# sourceMappingURL=redirect.d.ts.map

package/dist/redirect.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"redirect.d.ts","sourceRoot":"","sources":["../src/redirect.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,iBAAiB,GAAG;IAC5B,sBAAsB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1C,CAAA;AAED,MAAM,MAAM,iBAAiB,GAAG;IAC5B,sBAAsB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1C,CAAA;AAED,MAAM,MAAM,eAAe,GAAG,iBAAiB,GAAG,iBAAiB,CAAC"}

package/dist/session.d.ts ADDED Viewed

@@ -0,0 +1,76 @@
+export type SessionStatus = 'active' | 'expired' | 'revoked' | 'pending';
+/**
+ * parsed can be replaced with
+ */
+export declare interface ParsedToken {
+    /** Expiration time of the token. */
+    'exp'?: string;
+    /** UID of the user. */
+    'sub'?: string;
+    /** Time at which authentication was performed. */
+    'auth_time'?: string;
+    /** Issuance time of the token. */
+    'iat'?: string;
+    /** Firebase specific claims, containing the provider(s) used to authenticate the user. */
+    'firebase'?: {
+        'sign_in_provider'?: string;
+        'sign_in_second_factor'?: string;
+        'identities'?: Record<string, string>;
+    };
+    /** Map of any additional custom claims. */
+    [key: string]: unknown;
+}
+/**
+ * Core properties for any session that is or was authenticated.
+ * These properties are guaranteed to exist for active, expired, or revoked sessions.
+ */
+interface AuthenticatedSessionBase {
+    /** The Firebase Auth ID token JWT string. */
+    token: string;
+    /** The ID token expiration time (e.g., UTC string or Unix timestamp). */
+    expirationTime: string;
+    /** The ID token issuance time. */
+    issuedAtTime: string;
+    /** Time at which authentication was performed (from token claims). */
+    authTime: string;
+    /**
+    * The entire payload claims of the ID token including the standard reserved claims
+    * as well as custom claims.
+    */
+    claims: ParsedToken;
+    /**
+    * Time the user last signed in.
+    * This could be from Firebase User metadata or persisted by TernSecure.
+    */
+    lastSignedAt?: number;
+    /** signInProvider */
+    signInProvider: string;
+}
+/**
+ * Represents a session when the user is authenticated and the token is considered active.
+ */
+export interface ActiveSession extends AuthenticatedSessionBase {
+    status: 'active';
+}
+/**
+ * Represents a session when the user was authenticated, but the token has expired.
+ */
+export interface ExpiredSession extends AuthenticatedSessionBase {
+    status: 'expired';
+}
+/**
+ * Represents a session that is awaiting some action.
+ */
+export interface PendingSession extends AuthenticatedSessionBase {
+    status: 'pending';
+}
+/**
+ * Defines the possible states of a user's session within TernSecure.
+ * This is a discriminated union based on the `status` property.
+ * The actual `TernSecureUser` (Firebase User object) is typically stored separately,
+ * for example, in `TernSecureInstanceTree.auth.user`.
+ */
+export type TernSecureSessionTree = ActiveSession | ExpiredSession;
+export type SignedInSession = ActiveSession | PendingSession | ExpiredSession;
+export {};
+//# sourceMappingURL=session.d.ts.map

package/dist/session.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,aAAa,GAAG,QAAQ,GAAG,SAAS,GAAG,SAAS,GAAG,SAAS,CAAC;AAGzE;;GAEG;AAGH,MAAM,CAAC,OAAO,WAAW,WAAW;IAChC,oCAAoC;IACpC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,uBAAuB;IACvB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kDAAkD;IAClD,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kCAAkC;IAClC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,0FAA0F;IAC1F,UAAU,CAAC,EAAE;QACT,kBAAkB,CAAC,EAAE,MAAM,CAAC;QAC5B,uBAAuB,CAAC,EAAE,MAAM,CAAC;QACjC,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KACzC,CAAC;IACF,2CAA2C;IAC3C,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CAC1B;AAED;;;GAGG;AACH,UAAU,wBAAwB;IAChC,6CAA6C;IAC7C,KAAK,EAAE,MAAM,CAAC;IACd,yEAAyE;IACzE,cAAc,EAAE,MAAM,CAAC;IACvB,kCAAkC;IAClC,YAAY,EAAE,MAAM,CAAC;IACrB,sEAAsE;IACtE,QAAQ,EAAE,MAAM,CAAC;IACjB;;;MAGE;IACF,MAAM,EAAE,WAAW,CAAC;IACnB;;;MAGE;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,qBAAqB;IACrB,cAAc,EAAE,MAAM,CAAC;CACxB;AAGD;;GAEG;AACH,MAAM,WAAW,aAAc,SAAQ,wBAAwB;IAC7D,MAAM,EAAE,QAAQ,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,wBAAwB;IAC9D,MAAM,EAAE,SAAS,CAAC;CACnB;AAGD;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,wBAAwB;IAC9D,MAAM,EAAE,SAAS,CAAC;CACnB;AAGD;;;;;GAKG;AACH,MAAM,MAAM,qBAAqB,GAAG,aAAa,GAAG,cAAc,CAAC;AAGnE,MAAM,MAAM,eAAe,GAAG,aAAa,GAAG,cAAc,GAAG,cAAc,CAAC"}

package/dist/signIn.d.ts ADDED Viewed

@@ -0,0 +1,51 @@
+import type { SignInResponseTree } from './errors';
+export type SignInStatus = 'idle' | 'pending_email_password' | 'pending_social' | 'pending_mfa' | 'redirecting' | 'success' | 'error';
+export type SignInFormValuesTree = {
+    email: string;
+    password: string;
+    phoneNumber?: string;
+};
+export type SignInInitialValueTree = Partial<SignInFormValuesTree>;
+export interface ResendEmailVerification extends SignInResponseTree {
+    isVerified?: boolean;
+}
+export declare function isSignInResponseTree(value: any): value is SignInResponseTree;
+export interface SignInResource {
+    /**
+     * The current status of the sign-in process.
+     */
+    status?: SignInStatus;
+    /**
+     * Signs in a user with their email and password.
+     * @param params - The sign-in form values.
+     * @returns A promise that resolves with the sign-in response.
+     */
+    withEmailAndPassword: (params: SignInFormValuesTree) => Promise<SignInResponseTree>;
+    /**
+     * @param provider - The identifier of the social provider (e.g., 'google', 'microsoft', 'github').
+     * @param options - Optional configuration for the social sign-in flow.
+     * @returns A promise that resolves with the sign-in response or void if redirecting.
+     */
+    withSocialProvider: (provider: string, options?: {
+        mode?: 'popup' | 'redirect';
+    }) => Promise<SignInResponseTree | void>;
+    /**
+     * Completes an MFA (Multi-Factor Authentication) step after a primary authentication attempt.
+     * @param mfaToken - The MFA token or code submitted by the user.
+     * @param mfaContext - Optional context or session data from the MFA initiation step.
+     * @returns A promise that resolves with the sign-in response upon successful MFA verification.
+     */
+    completeMfaSignIn: (mfaToken: string, mfaContext?: any) => Promise<SignInResponseTree>;
+    /**
+     * Sends a password reset email to the given email address.
+     * @param email - The user's email address.
+     * @returns A promise that resolves when the email is sent.
+     */
+    sendPasswordResetEmail: (email: string) => Promise<void>;
+    /**
+     * Resends the email verification link to the user's email address.
+     * @returns A promise that resolves with the sign-in response.
+     */
+    resendEmailVerification: () => Promise<ResendEmailVerification>;
+}
+//# sourceMappingURL=signIn.d.ts.map

package/dist/signIn.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"signIn.d.ts","sourceRoot":"","sources":["../src/signIn.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,kBAAkB,EACnB,MAAM,UAAU,CAAC;AAElB,MAAM,MAAM,YAAY,GACpB,MAAM,GACN,wBAAwB,GACxB,gBAAgB,GAChB,aAAa,GACb,aAAa,GACb,SAAS,GACT,OAAO,CAAC;AAIZ,MAAM,MAAM,oBAAoB,GAAG;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB,CAAC;AAGF,MAAM,MAAM,sBAAsB,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAAC;AAGnE,MAAM,WAAW,uBAAwB,SAAQ,kBAAkB;IACjE,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAED,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,GAAG,GAAG,KAAK,IAAI,kBAAkB,CAM5E;AAID,MAAM,WAAW,cAAc;IAC7B;;OAEG;IACH,MAAM,CAAC,EAAE,YAAY,CAAC;IACtB;;;;OAIG;IACH,oBAAoB,EAAE,CAAC,MAAM,EAAE,oBAAoB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACpF;;;;OAIG;IACH,kBAAkB,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,OAAO,GAAG,UAAU,CAAA;KAAE,KAAK,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC,CAAC;IACxH;;;;;OAKG;IACH,iBAAiB,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,GAAG,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACvF;;;;OAIG;IACH,sBAAsB,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACzD;;;OAGG;IACH,uBAAuB,EAAE,MAAM,OAAO,CAAC,uBAAuB,CAAC,CAAC;CACjE"}

package/dist/signUp.d.ts ADDED Viewed

@@ -0,0 +1,20 @@
+import type { SignInResponseTree } from './errors';
+export interface SignUpResource {
+    status?: SignUpStatus | null;
+    username?: string | null;
+    firstName?: string | null;
+    lastName?: string | null;
+    displayName?: string | null;
+    email: string | null;
+    phoneNumber?: string | null;
+    /**
+     * @param provider - The identifier of the social provider (e.g., 'google', 'microsoft', 'github').
+     * @param options - Optional configuration for the social sign-in flow.
+     * @returns A promise that resolves with the sign-in response or void if redirecting.
+     */
+    withSocialProvider: (provider: string, options?: {
+        mode?: 'popup' | 'redirect';
+    }) => Promise<SignInResponseTree | void>;
+}
+export type SignUpStatus = 'missing_requirements' | 'complete' | 'abandoned';
+//# sourceMappingURL=signUp.d.ts.map

package/dist/signUp.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"signUp.d.ts","sourceRoot":"","sources":["../src/signUp.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACR,kBAAkB,EACrB,MAAM,UAAU,CAAC;AAGlB,MAAM,WAAW,cAAc;IAC3B,MAAM,CAAC,EAAE,YAAY,GAAG,IAAI,CAAC;IAC7B,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B;;;;OAIG;IACH,kBAAkB,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,OAAO,GAAG,UAAU,CAAA;KAAE,KAAK,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC,CAAC;CAC1H;AAED,MAAM,MAAM,YAAY,GAAG,sBAAsB,GAAG,UAAU,GAAG,WAAW,CAAC"}