@tern-secure/types 1.0.4 → 1.0.5

package/dist/index.js

@@ -22,10 +22,6 @@ var src_exports = {};
 __export(src_exports, {
   DEFAULT_TERN_SECURE_STATE: () => DEFAULT_TERN_SECURE_STATE,
   ERRORS: () => ERRORS,
-  TernSecureError: () => TernSecureError,
-  getErrorAlertVariant: () => getErrorAlertVariant,
-  handleFirebaseAuthError: () => handleFirebaseAuthError,
-  isAuthErrorResponse: () => isAuthErrorResponse,
   isSignInResponse: () => isSignInResponse,
   isSignInResponseTree: () => isSignInResponseTree
 });
@@ -66,108 +62,6 @@ var ERRORS = {
   INVALID_ID_TOKEN: "Invalid ID token.",
   REDIRECT_LOOP: "Redirect loop detected."
 };
-var TernSecureError = class extends Error {
-  code;
-  constructor(code, message) {
-    super(message || code);
-    this.name = "TernSecureError";
-    this.code = code;
-  }
-};
-function handleFirebaseAuthError(error) {
-  function extractErrorInfo(input) {
-    if (typeof input === "string") {
-      const match = input.match(/Firebase:\s*Error\s*\(auth\/([^)]+)\)/);
-      if (match) {
-        return { code: match[1], message: input };
-      }
-    }
-    if (input && typeof input === "object") {
-      const err = input;
-      if (err.message) {
-        const match = err.message.match(/Firebase:\s*Error\s*\(auth\/([^)]+)\)/);
-        if (match) {
-          return { code: match[1], message: err.message };
-        }
-      }
-      if (err.code) {
-        return {
-          code: err.code.replace("auth/", ""),
-          message: err.message || ""
-        };
-      }
-    }
-    return null;
-  }
-  const ERROR_MESSAGES = {
-    "invalid-email": { message: "Invalid email format", code: "INVALID_EMAIL" },
-    "invalid-credential": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
-    "invalid-login-credentials": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
-    "wrong-password": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
-    "user-not-found": { message: "Invalid email or password", code: "INVALID_CREDENTIALS" },
-    "user-disabled": { message: "This account has been disabled", code: "USER_DISABLED" },
-    "too-many-requests": { message: "Too many attempts. Please try again later", code: "TOO_MANY_ATTEMPTS" },
-    "network-request-failed": { message: "Network error. Please check your connection", code: "NETWORK_ERROR" },
-    "email-already-in-use": { message: "This email is already in use", code: "EMAIL_EXISTS" },
-    "weak-password": { message: "Password is too weak", code: "WEAK_PASSWORD" },
-    "operation-not-allowed": { message: "This login method is not enabled", code: "OPERATION_NOT_ALLOWED" },
-    "popup-blocked": { message: "Login popup was blocked. Please enable popups", code: "POPUP_BLOCKED" },
-    "expired-action-code": { message: "Your session has expired. Please login again", code: "EXPIRED_TOKEN" },
-    "user-token-expired": { message: "Your session has expired. Please login again", code: "EXPIRED_TOKEN" }
-  };
-  try {
-    const errorInfo = extractErrorInfo(error);
-    if (errorInfo) {
-      const mappedError = ERROR_MESSAGES[errorInfo.code];
-      if (mappedError) {
-        return {
-          success: false,
-          message: mappedError.message,
-          code: mappedError.code
-        };
-      }
-    }
-    const errorString = String(error);
-    const lastMatch = errorString.match(/Firebase:\s*Error\s*\(auth\/([^)]+)\)/);
-    if (lastMatch && ERROR_MESSAGES[lastMatch[1]]) {
-      return {
-        success: false,
-        ...ERROR_MESSAGES[lastMatch[1]]
-      };
-    }
-  } catch (e) {
-  }
-  return {
-    success: false,
-    message: "An unexpected error occurred. Please try again later",
-    code: "INTERNAL_ERROR"
-  };
-}
-function isAuthErrorResponse(response) {
-  return typeof response === "object" && response !== null && "success" in response && response.success === false && "code" in response && "message" in response;
-}
-function getErrorAlertVariant(error) {
-  if (!error) return "destructive";
-  switch (error.error) {
-    case "AUTHENTICATED":
-      return "default";
-    case "EMAIL_EXISTS":
-    case "UNAUTHENTICATED":
-    case "UNVERIFIED":
-    case "REQUIRES_VERIFICATION":
-    case "INVALID_EMAIL":
-    case "INVALID_TOKEN":
-    case "INTERNAL_ERROR":
-    case "USER_DISABLED":
-    case "TOO_MANY_ATTEMPTS":
-    case "NETWORK_ERROR":
-    case "SESSION_EXPIRED":
-    case "EXPIRED_TOKEN":
-    case "INVALID_CREDENTIALS":
-    default:
-      return "destructive";
-  }
-}
 
 // src/ternsecure.ts
 function isSignInResponse(value) {
@@ -196,10 +90,6 @@ function isSignInResponseTree(value) {
 0 && (module.exports = {
   DEFAULT_TERN_SECURE_STATE,
   ERRORS,
-  TernSecureError,
-  getErrorAlertVariant,
-  handleFirebaseAuthError,
-  isAuthErrorResponse,
   isSignInResponse,
   isSignInResponseTree
 });

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/index.ts","../src/errors.ts","../src/ternsecure.ts","../src/auth.ts","../src/signIn.ts"],"sourcesContent":["export * from './all'\nexport * from './errors'\nexport * from './ternsecure'\nexport * from './theme'\nexport * from './instanceTree'\nexport * from './auth'\nexport * from './signIn'\nexport * from './signUp'\nexport * from './session'\nexport * from './redirect'","export type ErrorCode = keyof typeof ERRORS\r\n\r\nexport interface AuthErrorResponse {\r\n  success: false\r\n  message: string\r\n  code: ErrorCode\r\n}\r\n\r\nexport interface AuthErrorTree extends Error {\r\n  code?: any | string;\r\n  message: string;\r\n  response?: any | string;\r\n}\r\n\r\nexport interface SignInResponseTree {\r\n  success: boolean;\r\n  message?: string;\r\n  error?: any | undefined;\r\n  user?: any;\r\n}\r\n\r\nexport const ERRORS = {\r\n  SERVER_SIDE_INITIALIZATION: \"TernSecure must be initialized on the client side\",\r\n  REQUIRES_VERIFICATION: \"AUTH_REQUIRES_VERIFICATION\",\r\n  AUTHENTICATED: \"AUTHENTICATED\",\r\n  UNAUTHENTICATED: \"UNAUTHENTICATED\",\r\n  UNVERIFIED: \"UNVERIFIED\",\r\n  NOT_INITIALIZED: \"TernSecure services are not initialized. Call initializeTernSecure() first\",\r\n  HOOK_CONTEXT: \"Hook must be used within TernSecureProvider\",\r\n  EMAIL_NOT_VERIFIED: \"EMAIL_NOT_VERIFIED\",\r\n  INVALID_CREDENTIALS: \"INVALID_CREDENTIALS\",\r\n  USER_DISABLED: \"USER_DISABLED\",\r\n  TOO_MANY_ATTEMPTS: \"TOO_MANY_ATTEMPTS\",\r\n  NETWORK_ERROR: \"NETWORK_ERROR\",\r\n  INVALID_EMAIL: \"INVALID_EMAIL\",\r\n  WEAK_PASSWORD: \"WEAK_PASSWORD\",\r\n  EMAIL_EXISTS: \"EMAIL_EXISTS\",\r\n  POPUP_BLOCKED: \"POPUP_BLOCKED\",\r\n  OPERATION_NOT_ALLOWED: \"OPERATION_NOT_ALLOWED\",\r\n  EXPIRED_TOKEN: \"EXPIRED_TOKEN\",\r\n  INVALID_TOKEN: \"INVALID_TOKEN\",\r\n  SESSION_EXPIRED: \"SESSION_EXPIRED\",\r\n  INTERNAL_ERROR: \"INTERNAL_ERROR\",\r\n  UNKNOWN_ERROR: \"An unknown error occurred.\",\r\n  INVALID_ARGUMENT: \"Invalid argument provided.\",\r\n  USER_NOT_FOUND: \"auth/user-not-found\",\r\n  WRONG_PASSWORD: \"auth/wrong-password\",\r\n  EMAIL_ALREADY_IN_USE: \"auth/email-already-in-use\",\r\n  REQUIRES_RECENT_LOGIN: \"auth/requires-recent-login\",\r\n  NO_SESSION_COOKIE: \"No session cookie found.\",\r\n  INVALID_SESSION_COOKIE: \"Invalid session cookie.\",\r\n  NO_ID_TOKEN: \"No ID token found.\",\r\n  INVALID_ID_TOKEN: \"Invalid ID token.\",\r\n  REDIRECT_LOOP: \"Redirect loop detected.\",\r\n} as const\r\n\r\nexport type AuthErrorCode = keyof typeof ERRORS\r\n\r\n// Firebase Auth Error Code patterns\r\nconst ERROR_PATTERNS = {\r\n  INVALID_EMAIL: /auth.*invalid.*email|invalid.*email.*auth|Firebase:.*Error.*auth\\/invalid-email/i,\r\n  INVALID_CREDENTIALS:\r\n    /auth.*invalid.*credential|invalid.*password|wrong.*password|Firebase:.*Error.*auth\\/(invalid-credential|wrong-password|user-not-found)/i,\r\n  USER_DISABLED: /user.*disabled|disabled.*user|Firebase:.*Error.*auth\\/user-disabled/i,\r\n  TOO_MANY_ATTEMPTS: /too.*many.*attempts|too.*many.*requests|Firebase:.*Error.*auth\\/too-many-requests/i,\r\n  NETWORK_ERROR: /network.*request.*failed|failed.*network|Firebase:.*Error.*auth\\/network-request-failed/i,\r\n  OPERATION_NOT_ALLOWED: /operation.*not.*allowed|method.*not.*allowed|Firebase:.*Error.*auth\\/operation-not-allowed/i,\r\n  POPUP_BLOCKED: /popup.*blocked|blocked.*popup|Firebase:.*Error.*auth\\/popup-blocked/i,\r\n  EMAIL_EXISTS: /email.*exists|email.*already.*use|Firebase:.*Error.*auth\\/email-already-in-use/i,\r\n  EXPIRED_TOKEN: /token.*expired|expired.*token|Firebase:.*Error.*auth\\/expired-token/i,\r\n  INVALID_TOKEN: /invalid.*token|token.*invalid|Firebase:.*Error.*auth\\/invalid-token/i,\r\n  SESSION_EXPIRED: /session.*expired|expired.*session|Firebase:.*Error.*auth\\/session-expired/i,\r\n  WEAK_PASSWORD: /weak.*password|password.*weak|Firebase:.*Error.*auth\\/weak-password/i,\r\n} as const\r\n\r\nexport class TernSecureError extends Error {\r\n  code: ErrorCode\r\n\r\n  constructor(code: ErrorCode, message?: string) {\r\n    super(message || code)\r\n    this.name = \"TernSecureError\"\r\n    this.code = code\r\n  }\r\n}\r\n\r\ninterface SerializedFirebaseError {\r\n  name?: string\r\n  code?: string\r\n  message?: string\r\n  stack?: string\r\n}\r\n\r\n/**\r\n * Determines if an object matches the shape of a Firebase Error\r\n */\r\nfunction isFirebaseErrorLike(error: unknown): error is SerializedFirebaseError {\r\n  if (!error || typeof error !== \"object\") return false\r\n\r\n  const err = error as SerializedFirebaseError\r\n\r\n  // Check for bundled Firebase error format: \"Firebase: Error (auth/error-code)\"\r\n  if (typeof err.message === \"string\") {\r\n    const bundledErrorMatch = err.message.match(/Firebase:\\s*Error\\s*$$auth\\/([^)]+)$$/)\r\n    if (bundledErrorMatch) {\r\n      // Add the extracted code to the error object\r\n      err.code = `auth/${bundledErrorMatch[1]}`\r\n      return true\r\n    }\r\n  }\r\n\r\n  return (\r\n    (typeof err.code === \"string\" && err.code.startsWith(\"auth/\")) ||\r\n    (typeof err.name === \"string\" && err.name.includes(\"FirebaseError\"))\r\n  )\r\n}\r\n\r\n/**\r\n * Extracts the error code from a Firebase-like error object\r\n */\r\nfunction extractFirebaseErrorCode(error: SerializedFirebaseError): string {\r\n  // First try to extract from bundled error message format\r\n  if (typeof error.message === \"string\") {\r\n    const bundledErrorMatch = error.message.match(/Firebase:\\s*Error\\s*$$auth\\/([^)]+)$$/)\r\n    if (bundledErrorMatch) {\r\n      return bundledErrorMatch[1]\r\n    }\r\n  }\r\n\r\n  // Then try the standard code property\r\n  if (error.code) {\r\n    return error.code.replace(\"auth/\", \"\")\r\n  }\r\n\r\n  // Finally try to extract from error message if it contains an error code\r\n  if (typeof error.message === \"string\") {\r\n    const messageCodeMatch = error.message.match(/auth\\/([a-z-]+)/)\r\n    if (messageCodeMatch) {\r\n      return messageCodeMatch[1]\r\n    }\r\n  }\r\n\r\n  return \"\"\r\n}\r\n\r\n/**\r\n * Maps a Firebase error code to our internal error code\r\n */\r\nfunction mapFirebaseErrorCode(code: string): ErrorCode {\r\n  // Direct mapping for known error codes\r\n  const directMappings: Record<string, ErrorCode> = {\r\n    \"invalid-email\": \"INVALID_EMAIL\",\r\n    \"user-disabled\": \"USER_DISABLED\",\r\n    \"too-many-requests\": \"TOO_MANY_ATTEMPTS\",\r\n    \"network-request-failed\": \"NETWORK_ERROR\",\r\n    \"operation-not-allowed\": \"OPERATION_NOT_ALLOWED\",\r\n    \"popup-blocked\": \"POPUP_BLOCKED\",\r\n    \"email-already-in-use\": \"EMAIL_EXISTS\",\r\n    \"weak-password\": \"WEAK_PASSWORD\",\r\n    \"invalid-credential\": \"INVALID_CREDENTIALS\",\r\n    \"wrong-password\": \"INVALID_CREDENTIALS\",\r\n    \"user-not-found\": \"INVALID_CREDENTIALS\",\r\n    \"invalid-password\": \"INVALID_CREDENTIALS\",\r\n    \"user-token-expired\": \"EXPIRED_TOKEN\",\r\n    \"invalid-id-token\": \"INVALID_TOKEN\",\r\n  }\r\n\r\n  return directMappings[code] || \"INTERNAL_ERROR\"\r\n}\r\n\r\n/**\r\n * Determines error type based on error message pattern matching\r\n */\r\nfunction determineErrorTypeFromMessage(message: string): ErrorCode {\r\n  // First check for bundled Firebase error format\r\n  const bundledErrorMatch = message.match(/Firebase:\\s*Error\\s*$$auth\\/([^)]+)$$/)\r\n  if (bundledErrorMatch) {\r\n    const errorCode = bundledErrorMatch[1]\r\n    const mappedCode = mapFirebaseErrorCode(errorCode)\r\n    if (mappedCode) {\r\n      return mappedCode\r\n    }\r\n  }\r\n\r\n  // Then check standard patterns\r\n  for (const [errorType, pattern] of Object.entries(ERROR_PATTERNS)) {\r\n    if (pattern.test(message)) {\r\n      return errorType as ErrorCode\r\n    }\r\n  }\r\n\r\n  return \"INTERNAL_ERROR\"\r\n}\r\n\r\n/**\r\n * Creates a standardized error response\r\n */\r\nfunction createErrorResponse(code: ErrorCode, message: string): AuthErrorResponse {\r\n  const defaultMessages: Record<ErrorCode, string> = {\r\n    INVALID_EMAIL: \"Invalid email format\",\r\n    INVALID_CREDENTIALS: \"Invalid email or password\",\r\n    USER_DISABLED: \"This account has been disabled\",\r\n    TOO_MANY_ATTEMPTS: \"Too many attempts. Please try again later\",\r\n    NETWORK_ERROR: \"Network error. Please check your connection\",\r\n    OPERATION_NOT_ALLOWED: \"This login method is not enabled\",\r\n    POPUP_BLOCKED: \"Login popup was blocked. Please enable popups\",\r\n    EMAIL_EXISTS: \"This email is already in use\",\r\n    EXPIRED_TOKEN: \"Your session has expired. Please login again\",\r\n    INVALID_TOKEN: \"Invalid authentication token\",\r\n    SESSION_EXPIRED: \"Your session has expired\",\r\n    WEAK_PASSWORD: \"Password is too weak\",\r\n    EMAIL_NOT_VERIFIED: \"Email verification required\",\r\n    INTERNAL_ERROR: \"An internal error occurred. Please try again\",\r\n    SERVER_SIDE_INITIALIZATION: \"TernSecure must be initialized on the client side\",\r\n    REQUIRES_VERIFICATION: \"Email verification required\",\r\n    AUTHENTICATED: \"Already authenticated\",\r\n    UNAUTHENTICATED: \"Authentication required\",\r\n    UNVERIFIED: \"Email verification required\",\r\n    NOT_INITIALIZED: \"TernSecure services are not initialized\",\r\n    HOOK_CONTEXT: \"Hook must be used within TernSecureProvider\",\r\n    UNKNOWN_ERROR: \"An unknown error occurred.\",\r\n    INVALID_ARGUMENT: \"Invalid argument provided.\",\r\n    USER_NOT_FOUND: \"User not found.\",\r\n    WRONG_PASSWORD: \"Wrong password.\",\r\n    EMAIL_ALREADY_IN_USE: \"Email already in use.\",\r\n    REQUIRES_RECENT_LOGIN: \"Requires recent login.\",\r\n    NO_SESSION_COOKIE: \"No session cookie found.\",\r\n    INVALID_SESSION_COOKIE: \"Invalid session cookie.\",\r\n    NO_ID_TOKEN: \"No ID token found.\",\r\n    INVALID_ID_TOKEN: \"Invalid ID token.\",\r\n    REDIRECT_LOOP: \"Redirect loop detected.\",\r\n  }\r\n\r\n  return {\r\n    success: false,\r\n    message: message || defaultMessages[code],\r\n    code,\r\n  }\r\n}\r\n\r\n/**\r\n * Handles Firebase authentication errors with multiple fallback mechanisms\r\n */\r\nexport function handleFirebaseAuthError(error: unknown): AuthErrorResponse {\r\n  // Helper to extract clean error code from bundled format\r\n  function extractErrorInfo(input: unknown): { code: string; message: string } | null {\r\n    // Case 1: String input (direct Firebase error message)\r\n    if (typeof input === 'string') {\r\n      const match = input.match(/Firebase:\\s*Error\\s*\\(auth\\/([^)]+)\\)/);\r\n      if (match) {\r\n        return { code: match[1], message: input };\r\n      }\r\n    }\r\n\r\n    // Case 2: Error object\r\n    if (input && typeof input === 'object') {\r\n      const err = input as { code?: string; message?: string };\r\n      \r\n      // Check for bundled message format first\r\n      if (err.message) {\r\n        const match = err.message.match(/Firebase:\\s*Error\\s*\\(auth\\/([^)]+)\\)/);\r\n        if (match) {\r\n          return { code: match[1], message: err.message };\r\n        }\r\n      }\r\n\r\n      // Check for direct code\r\n      if (err.code) {\r\n        return {\r\n          code: err.code.replace('auth/', ''),\r\n          message: err.message || ''\r\n        };\r\n      }\r\n    }\r\n\r\n    return null;\r\n  }\r\n\r\n  // Map error codes to user-friendly messages\r\n  const ERROR_MESSAGES: Record<string, { message: string; code: ErrorCode }> = {\r\n    'invalid-email': { message: 'Invalid email format', code: 'INVALID_EMAIL' },\r\n    'invalid-credential': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n    'invalid-login-credentials': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n    'wrong-password': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n    'user-not-found': { message: 'Invalid email or password', code: 'INVALID_CREDENTIALS' },\r\n    'user-disabled': { message: 'This account has been disabled', code: 'USER_DISABLED' },\r\n    'too-many-requests': { message: 'Too many attempts. Please try again later', code: 'TOO_MANY_ATTEMPTS' },\r\n    'network-request-failed': { message: 'Network error. Please check your connection', code: 'NETWORK_ERROR' },\r\n    'email-already-in-use': { message: 'This email is already in use', code: 'EMAIL_EXISTS' },\r\n    'weak-password': { message: 'Password is too weak', code: 'WEAK_PASSWORD' },\r\n    'operation-not-allowed': { message: 'This login method is not enabled', code: 'OPERATION_NOT_ALLOWED' },\r\n    'popup-blocked': { message: 'Login popup was blocked. Please enable popups', code: 'POPUP_BLOCKED' },\r\n    'expired-action-code': { message: 'Your session has expired. Please login again', code: 'EXPIRED_TOKEN' },\r\n    'user-token-expired': { message: 'Your session has expired. Please login again', code: 'EXPIRED_TOKEN' }\r\n  };\r\n\r\n  try {\r\n    // Extract error information\r\n    const errorInfo = extractErrorInfo(error);\r\n    \r\n    if (errorInfo) {\r\n      const mappedError = ERROR_MESSAGES[errorInfo.code];\r\n      if (mappedError) {\r\n        return {\r\n          success: false,\r\n          message: mappedError.message,\r\n          code: mappedError.code\r\n        };\r\n      }\r\n    }\r\n\r\n    // If we couldn't extract or map the error, try one last time with string conversion\r\n    const errorString = String(error);\r\n    const lastMatch = errorString.match(/Firebase:\\s*Error\\s*\\(auth\\/([^)]+)\\)/);\r\n    if (lastMatch && ERROR_MESSAGES[lastMatch[1]]) {\r\n      return {\r\n        success: false,\r\n        ...ERROR_MESSAGES[lastMatch[1]]\r\n      };\r\n    }\r\n\r\n  } catch (e) {\r\n    // Silent catch - we'll return the default error\r\n  }\r\n\r\n  // Default fallback\r\n  return {\r\n    success: false,\r\n    message: 'An unexpected error occurred. Please try again later',\r\n    code: 'INTERNAL_ERROR'\r\n  };\r\n}\r\n\r\n/**\r\n * Type guard to check if a response is an AuthErrorResponse\r\n */\r\nexport function isAuthErrorResponse(response: unknown): response is AuthErrorResponse {\r\n  return (\r\n    typeof response === \"object\" &&\r\n    response !== null &&\r\n    \"success\" in response &&\r\n    (response as { success: boolean }).success === false &&\r\n    \"code\" in response &&\r\n    \"message\" in response\r\n  )\r\n}\r\n\r\nexport function getErrorAlertVariant(error: any | undefined) {\r\n if (!error) return \"destructive\"\r\n\r\n  switch (error.error) {\r\n    case \"AUTHENTICATED\":\r\n      return \"default\"\r\n    case \"EMAIL_EXISTS\":\r\n    case \"UNAUTHENTICATED\":\r\n    case \"UNVERIFIED\":\r\n    case \"REQUIRES_VERIFICATION\":\r\n    case \"INVALID_EMAIL\":\r\n    case \"INVALID_TOKEN\":\r\n    case \"INTERNAL_ERROR\":\r\n    case \"USER_DISABLED\":\r\n    case \"TOO_MANY_ATTEMPTS\":\r\n    case \"NETWORK_ERROR\":\r\n    case \"SESSION_EXPIRED\":\r\n    case \"EXPIRED_TOKEN\":\r\n    case \"INVALID_CREDENTIALS\":\r\n    default:\r\n      return \"destructive\"\r\n  }\r\n}","import { \n    TernSecureUser \n} from './all';\nimport { Appearance } from './theme';\n\nexport interface TernSecureSession {\n  token: string | null;\n  expiresAt?: number;\n}\n\ntype SignInFormValues = {\n  email: string;\n  password: string;\n  phoneNumber?: string;\n}\n\nexport type SignInInitialValue = Partial<SignInFormValues>;\n\n\ntype SignUpFormValues = {\n  email: string;\n  password: string;\n  confirmPassword?: string;\n  displayName?: string;\n};\n\n\nexport type SignUpInitialValue = Partial<SignUpFormValues>;\n\nexport interface SignInResponse {\n  success: boolean;\n  message?: string;\n  error?: any | undefined;\n  user?: any;\n}\n\nexport interface AuthError extends Error {\n  code?: any | string \n  message: string\n  response?: SignInResponse\n}\n\nexport function isSignInResponse(value: any): value is SignInResponse {\n  return typeof value === \"object\" && \"success\" in value && typeof value.success === \"boolean\"\n}\n\nexport interface AuthActions {\n  signInWithEmail: (email: string, password: string) => Promise<SignInResponse>;\n  signInWithGoogle: () => Promise<void>;\n  signInWithMicrosoft: () => Promise<void>;\n  signOut: () => Promise<void>;\n  getRedirectResult: () => Promise<any>;\n  getIdToken: () => Promise<string | null>;\n  createUserWithEmailAndPassword?: (email: string, password: string) => Promise<SignInResponse>;\n  sendEmailVerification?: (user: TernSecureUser) => Promise<void>;\n}\n\nexport interface RedirectConfig {\n  // URL to redirect to after successful authentication\n  redirectUrl?: string\n  // Whether this is a return visit (e.g. after sign out)\n  isReturn?: boolean\n  // Priority of the redirect (higher number = higher priority)\n  priority?: number\n}\n\n\nexport interface SignInProps extends RedirectConfig {\n  initialValue?: SignInInitialValue;\n  logo?: string\n  appName?: string\n  appearance?: Appearance;\n  onError?: (error: AuthError) => void;\n  onSuccess?: (user: TernSecureUser | null) => void;\n}\n\n\n/**\n * SignUpProps interface defines the properties for the sign-up component.\n * It extends RedirectConfig to include redirect-related properties.\n */\nexport interface SignUpProps extends RedirectConfig {\n  initialValue?: SignUpInitialValue;\n  logo?: string\n  appName?: string\n  appearance?: Appearance;\n  onError?: (error: AuthError) => void;\n  onSuccess?: (user: TernSecureUser | null) => void;\n}\n\n/**\n * Defines the contract for a TernSecure instance.\n * This instance provides authentication state, user information, and methods\n * for managing the authentication lifecycle. It is designed to be used by\n * UI packages like tern-ui, which act as \"dumb\" renderers.\n */\nexport interface TernSecureInstance {\n  /** Indicates if the user is currently signed in. */\n  isSignedIn: () => boolean;\n\n  /** The current authenticated user object, or null if not signed in. */\n  user: TernSecureUser | null;\n\n  /** The current user session information, or null if not signed in. */\n  session: TernSecureSession | null;\n\n  /** Initiates the sign-out process for the current user. */\n  signOut: () => Promise<void>;\n\n  /**\n   * Prepares or signals to mount the sign-in interface.\n   * @param options Optional configuration or initial state for the sign-in UI, conforming to SignInProps.\n   */\n  mountSignIn: (options?: SignInProps) => void;\n\n  /** Cleans up or signals to unmount the sign-in interface. */\n  unmountSignIn: () => void;\n\n  /**\n   * Prepares or signals to mount the sign-up interface.\n   * @param options Optional configuration or initial state for the sign-up UI, conforming to SignUpProps.\n   */\n  mountSignUp: (options?: SignUpProps) => void;\n\n  /** Cleans up or signals to unmount the sign-up interface. */\n  unmountSignUp: () => void;\n\n  /**\n   * Determines if a redirect is necessary based on the current authentication\n   * state and the given path.\n   * @param currentPath The current URL path.\n   * @returns True if a redirect is needed, false otherwise, or a string path to redirect to.\n   */\n  shouldRedirect: (currentPath: string) => boolean | string;\n\n  /**\n   * Constructs a URL, appending necessary redirect parameters.\n   * Useful for redirecting back to the original page after authentication.\n   * @param baseUrl The base URL to which redirect parameters should be added.\n   * @returns The new URL string with redirect parameters.\n   */\n  constructUrlWithRedirect: (baseUrl: string) => string;\n\n  /**\n   * Redirects the user to the configured login page.\n   * @param redirectUrl Optional URL to redirect to after successful login.\n   */\n  redirectToLogin: (redirectUrl?: string) => void;\n\n  /** Indicates if an authentication operation is currently in progress. */\n  isLoading: boolean;\n\n  /** Holds any error that occurred during an authentication operation, or null otherwise. */\n  error: Error | null;\n    \n  /** Indicates if the user has verified their email address. */\n  sendVerificationEmail: () => Promise<void>;\n}","import { SignedInSession } from 'session';\nimport type { \n  TernSecureUser,\n  TernSecureConfig\n} from './all';\nimport type { \n    SignInResource\n} from './signIn';\nimport { SignUpResource } from 'signUp';\n\nexport interface TernSecureState {\n  userId: string | null\n  isLoaded: boolean\n  error: Error | null\n  isValid: boolean\n  isVerified: boolean\n  isAuthenticated: boolean\n  token: any | null\n  email: string | null\n  status: \"loading\" | \"authenticated\" | \"unauthenticated\" | \"unverified\"\n  user?: TernSecureUser | null\n}\n\n\nexport type AuthProviderStatus = 'idle' | 'pending' | 'error' | 'success';\n\nexport const DEFAULT_TERN_SECURE_STATE: TernSecureState = {\n  userId: null,\n  isLoaded: false,\n  error: null,\n  isValid: false,\n  isVerified: false,\n  isAuthenticated: false,\n  token: null,\n  email: null,\n  status: \"loading\",\n  user: null\n};\n\n\nexport interface TernSecureAuthProvider {\n  /** Current auth state */\n  internalAuthState: TernSecureState;\n\n  /** Current user*/\n  ternSecureUser(): TernSecureUser | null;\n\n  /** AuthCookie Manager */\n  authCookieManager(): void;\n\n  /** Current session */\n  currentSession: SignedInSession | null;\n\n  /** Sign in resource for authentication operations */\n  signIn: SignInResource;\n\n  /** SignUp resource for authentication operations */\n  signUp: SignUpResource;\n\n  /** The Firebase configuration used by this TernAuth instance. */\n  ternSecureConfig?: TernSecureConfig;\n\n  /** Sign out the current user */\n  signOut(): Promise<void>;\n}","import type { \n  SignInResponseTree\n} from './errors';\n\nexport type SignInStatus =\n  | 'idle'\n  | 'pending_email_password'\n  | 'pending_social'\n  | 'pending_mfa'\n  | 'redirecting'\n  | 'success'\n  | 'error';\n\n\n\nexport type SignInFormValuesTree = {\n  email: string;\n  password: string;\n  phoneNumber?: string;\n};\n\n\nexport type SignInInitialValueTree = Partial<SignInFormValuesTree>;\n\n\nexport interface ResendEmailVerification extends SignInResponseTree {\n  isVerified?: boolean;\n}\n\nexport function isSignInResponseTree(value: any): value is SignInResponseTree {\n  return (\n    typeof value === 'object' &&\n    'success' in value &&\n    typeof value.success === 'boolean'\n  );\n}\n\n\n\nexport interface SignInResource {\n  /**\n   * The current status of the sign-in process.\n   */\n  status?: SignInStatus;\n  /**\n   * Signs in a user with their email and password.\n   * @param params - The sign-in form values.\n   * @returns A promise that resolves with the sign-in response.\n   */\n  withEmailAndPassword: (params: SignInFormValuesTree) => Promise<SignInResponseTree>;\n  /**\n   * @param provider - The identifier of the social provider (e.g., 'google', 'microsoft', 'github').\n   * @param options - Optional configuration for the social sign-in flow.\n   * @returns A promise that resolves with the sign-in response or void if redirecting.\n   */\n  withSocialProvider: (provider: string, options?: { mode?: 'popup' | 'redirect' }) => Promise<SignInResponseTree | void>;\n  /**\n   * Completes an MFA (Multi-Factor Authentication) step after a primary authentication attempt.\n   * @param mfaToken - The MFA token or code submitted by the user.\n   * @param mfaContext - Optional context or session data from the MFA initiation step.\n   * @returns A promise that resolves with the sign-in response upon successful MFA verification.\n   */\n  completeMfaSignIn: (mfaToken: string, mfaContext?: any) => Promise<SignInResponseTree>;\n  /**\n   * Sends a password reset email to the given email address.\n   * @param email - The user's email address.\n   * @returns A promise that resolves when the email is sent.\n   */\n  sendPasswordResetEmail: (email: string) => Promise<void>;\n  /**\n   * Resends the email verification link to the user's email address.\n   * @returns A promise that resolves with the sign-in response.\n   */\n  resendEmailVerification: () => Promise<ResendEmailVerification>;\n  /**\n   * Checks the result of a redirect-based sign-in flow, typically used in OAuth or SSO scenarios.\n   * @returns A promise that resolves with the sign-in response or null if no result is available.\n   */\n  checkRedirectResult: () => Promise<SignInResponseTree | null>;\n}"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACqBO,IAAM,SAAS;AAAA,EACpB,4BAA4B;AAAA,EAC5B,uBAAuB;AAAA,EACvB,eAAe;AAAA,EACf,iBAAiB;AAAA,EACjB,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,cAAc;AAAA,EACd,oBAAoB;AAAA,EACpB,qBAAqB;AAAA,EACrB,eAAe;AAAA,EACf,mBAAmB;AAAA,EACnB,eAAe;AAAA,EACf,eAAe;AAAA,EACf,eAAe;AAAA,EACf,cAAc;AAAA,EACd,eAAe;AAAA,EACf,uBAAuB;AAAA,EACvB,eAAe;AAAA,EACf,eAAe;AAAA,EACf,iBAAiB;AAAA,EACjB,gBAAgB;AAAA,EAChB,eAAe;AAAA,EACf,kBAAkB;AAAA,EAClB,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,sBAAsB;AAAA,EACtB,uBAAuB;AAAA,EACvB,mBAAmB;AAAA,EACnB,wBAAwB;AAAA,EACxB,aAAa;AAAA,EACb,kBAAkB;AAAA,EAClB,eAAe;AACjB;AAqBO,IAAM,kBAAN,cAA8B,MAAM;AAAA,EACzC;AAAA,EAEA,YAAY,MAAiB,SAAkB;AAC7C,UAAM,WAAW,IAAI;AACrB,SAAK,OAAO;AACZ,SAAK,OAAO;AAAA,EACd;AACF;AA+JO,SAAS,wBAAwB,OAAmC;AAEzE,WAAS,iBAAiB,OAA0D;AAElF,QAAI,OAAO,UAAU,UAAU;AAC7B,YAAM,QAAQ,MAAM,MAAM,uCAAuC;AACjE,UAAI,OAAO;AACT,eAAO,EAAE,MAAM,MAAM,CAAC,GAAG,SAAS,MAAM;AAAA,MAC1C;AAAA,IACF;AAGA,QAAI,SAAS,OAAO,UAAU,UAAU;AACtC,YAAM,MAAM;AAGZ,UAAI,IAAI,SAAS;AACf,cAAM,QAAQ,IAAI,QAAQ,MAAM,uCAAuC;AACvE,YAAI,OAAO;AACT,iBAAO,EAAE,MAAM,MAAM,CAAC,GAAG,SAAS,IAAI,QAAQ;AAAA,QAChD;AAAA,MACF;AAGA,UAAI,IAAI,MAAM;AACZ,eAAO;AAAA,UACL,MAAM,IAAI,KAAK,QAAQ,SAAS,EAAE;AAAA,UAClC,SAAS,IAAI,WAAW;AAAA,QAC1B;AAAA,MACF;AAAA,IACF;AAEA,WAAO;AAAA,EACT;AAGA,QAAM,iBAAuE;AAAA,IAC3E,iBAAiB,EAAE,SAAS,wBAAwB,MAAM,gBAAgB;AAAA,IAC1E,sBAAsB,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IAC1F,6BAA6B,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IACjG,kBAAkB,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IACtF,kBAAkB,EAAE,SAAS,6BAA6B,MAAM,sBAAsB;AAAA,IACtF,iBAAiB,EAAE,SAAS,kCAAkC,MAAM,gBAAgB;AAAA,IACpF,qBAAqB,EAAE,SAAS,6CAA6C,MAAM,oBAAoB;AAAA,IACvG,0BAA0B,EAAE,SAAS,+CAA+C,MAAM,gBAAgB;AAAA,IAC1G,wBAAwB,EAAE,SAAS,gCAAgC,MAAM,eAAe;AAAA,IACxF,iBAAiB,EAAE,SAAS,wBAAwB,MAAM,gBAAgB;AAAA,IAC1E,yBAAyB,EAAE,SAAS,oCAAoC,MAAM,wBAAwB;AAAA,IACtG,iBAAiB,EAAE,SAAS,iDAAiD,MAAM,gBAAgB;AAAA,IACnG,uBAAuB,EAAE,SAAS,gDAAgD,MAAM,gBAAgB;AAAA,IACxG,sBAAsB,EAAE,SAAS,gDAAgD,MAAM,gBAAgB;AAAA,EACzG;AAEA,MAAI;AAEF,UAAM,YAAY,iBAAiB,KAAK;AAExC,QAAI,WAAW;AACb,YAAM,cAAc,eAAe,UAAU,IAAI;AACjD,UAAI,aAAa;AACf,eAAO;AAAA,UACL,SAAS;AAAA,UACT,SAAS,YAAY;AAAA,UACrB,MAAM,YAAY;AAAA,QACpB;AAAA,MACF;AAAA,IACF;AAGA,UAAM,cAAc,OAAO,KAAK;AAChC,UAAM,YAAY,YAAY,MAAM,uCAAuC;AAC3E,QAAI,aAAa,eAAe,UAAU,CAAC,CAAC,GAAG;AAC7C,aAAO;AAAA,QACL,SAAS;AAAA,QACT,GAAG,eAAe,UAAU,CAAC,CAAC;AAAA,MAChC;AAAA,IACF;AAAA,EAEF,SAAS,GAAG;AAAA,EAEZ;AAGA,SAAO;AAAA,IACL,SAAS;AAAA,IACT,SAAS;AAAA,IACT,MAAM;AAAA,EACR;AACF;AAKO,SAAS,oBAAoB,UAAkD;AACpF,SACE,OAAO,aAAa,YACpB,aAAa,QACb,aAAa,YACZ,SAAkC,YAAY,SAC/C,UAAU,YACV,aAAa;AAEjB;AAEO,SAAS,qBAAqB,OAAwB;AAC5D,MAAI,CAAC,MAAO,QAAO;AAElB,UAAQ,MAAM,OAAO;AAAA,IACnB,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL,KAAK;AAAA,IACL;AACE,aAAO;AAAA,EACX;AACF;;;ACtUO,SAAS,iBAAiB,OAAqC;AACpE,SAAO,OAAO,UAAU,YAAY,aAAa,SAAS,OAAO,MAAM,YAAY;AACrF;;;AClBO,IAAM,4BAA6C;AAAA,EACxD,QAAQ;AAAA,EACR,UAAU;AAAA,EACV,OAAO;AAAA,EACP,SAAS;AAAA,EACT,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,OAAO;AAAA,EACP,OAAO;AAAA,EACP,QAAQ;AAAA,EACR,MAAM;AACR;;;ACRO,SAAS,qBAAqB,OAAyC;AAC5E,SACE,OAAO,UAAU,YACjB,aAAa,SACb,OAAO,MAAM,YAAY;AAE7B;","names":[]}
+{"version":3,"sources":["../src/index.ts","../src/errors.ts","../src/ternsecure.ts","../src/auth.ts","../src/signIn.ts"],"sourcesContent":["export * from './all'\nexport * from './api'\nexport * from './cookie'\nexport * from './errors'\nexport * from './ternsecure'\nexport * from './theme'\nexport * from './instanceTree'\nexport * from './json'\nexport * from './jwt'\nexport * from './auth'\nexport * from './signIn'\nexport * from './signUp'\nexport * from './session'\nexport * from './redirect'\nexport * from './hooks'\nexport * from './multiDomain'\nexport * from './utils'","\r\nexport type AuthErrorCode = keyof typeof ERRORS\r\n\r\nexport type ErrorCode = keyof typeof ERRORS\r\n\r\n\r\nexport const ERRORS = {\r\n  SERVER_SIDE_INITIALIZATION: \"TernSecure must be initialized on the client side\",\r\n  REQUIRES_VERIFICATION: \"AUTH_REQUIRES_VERIFICATION\",\r\n  AUTHENTICATED: \"AUTHENTICATED\",\r\n  UNAUTHENTICATED: \"UNAUTHENTICATED\",\r\n  UNVERIFIED: \"UNVERIFIED\",\r\n  NOT_INITIALIZED: \"TernSecure services are not initialized. Call initializeTernSecure() first\",\r\n  HOOK_CONTEXT: \"Hook must be used within TernSecureProvider\",\r\n  EMAIL_NOT_VERIFIED: \"EMAIL_NOT_VERIFIED\",\r\n  INVALID_CREDENTIALS: \"INVALID_CREDENTIALS\",\r\n  USER_DISABLED: \"USER_DISABLED\",\r\n  TOO_MANY_ATTEMPTS: \"TOO_MANY_ATTEMPTS\",\r\n  NETWORK_ERROR: \"NETWORK_ERROR\",\r\n  INVALID_EMAIL: \"INVALID_EMAIL\",\r\n  WEAK_PASSWORD: \"WEAK_PASSWORD\",\r\n  EMAIL_EXISTS: \"EMAIL_EXISTS\",\r\n  POPUP_BLOCKED: \"POPUP_BLOCKED\",\r\n  OPERATION_NOT_ALLOWED: \"OPERATION_NOT_ALLOWED\",\r\n  EXPIRED_TOKEN: \"EXPIRED_TOKEN\",\r\n  INVALID_TOKEN: \"INVALID_TOKEN\",\r\n  SESSION_EXPIRED: \"SESSION_EXPIRED\",\r\n  INTERNAL_ERROR: \"INTERNAL_ERROR\",\r\n  UNKNOWN_ERROR: \"An unknown error occurred.\",\r\n  INVALID_ARGUMENT: \"Invalid argument provided.\",\r\n  USER_NOT_FOUND: \"auth/user-not-found\",\r\n  WRONG_PASSWORD: \"auth/wrong-password\",\r\n  EMAIL_ALREADY_IN_USE: \"auth/email-already-in-use\",\r\n  REQUIRES_RECENT_LOGIN: \"auth/requires-recent-login\",\r\n  NO_SESSION_COOKIE: \"No session cookie found.\",\r\n  INVALID_SESSION_COOKIE: \"Invalid session cookie.\",\r\n  NO_ID_TOKEN: \"No ID token found.\",\r\n  INVALID_ID_TOKEN: \"Invalid ID token.\",\r\n  REDIRECT_LOOP: \"Redirect loop detected.\",\r\n} as const\r\n\r\n","import type { \n    TernSecureUser \n} from './all';\nimport type { Appearance } from './theme';\n\nexport interface TernSecureSession {\n  token: string | null;\n  expiresAt?: number;\n}\n\ntype SignInFormValues = {\n  email: string;\n  password: string;\n  phoneNumber?: string;\n}\n\nexport type SignInInitialValue = Partial<SignInFormValues>;\n\n\ntype SignUpFormValues = {\n  email: string;\n  password: string;\n  confirmPassword?: string;\n  displayName?: string;\n};\n\n\nexport type SignUpInitialValue = Partial<SignUpFormValues>;\n\nexport interface SignInResponse {\n  success: boolean;\n  message?: string;\n  error?: any | undefined;\n  user?: any;\n}\n\nexport interface AuthError extends Error {\n  code?: any | string \n  message: string\n  response?: SignInResponse\n}\n\nexport function isSignInResponse(value: any): value is SignInResponse {\n  return typeof value === \"object\" && \"success\" in value && typeof value.success === \"boolean\"\n}\n\nexport interface AuthActions {\n  signInWithEmail: (email: string, password: string) => Promise<SignInResponse>;\n  signInWithGoogle: () => Promise<void>;\n  signInWithMicrosoft: () => Promise<void>;\n  signOut: () => Promise<void>;\n  getRedirectResult: () => Promise<any>;\n  getIdToken: () => Promise<string | null>;\n  createUserWithEmailAndPassword?: (email: string, password: string) => Promise<SignInResponse>;\n  sendEmailVerification?: (user: TernSecureUser) => Promise<void>;\n}\n\nexport interface RedirectConfig {\n  // URL to redirect to after successful authentication\n  redirectUrl?: string\n  // Whether this is a return visit (e.g. after sign out)\n  isReturn?: boolean\n  // Priority of the redirect (higher number = higher priority)\n  priority?: number\n}\n\n\nexport interface SignInProps extends RedirectConfig {\n  initialValue?: SignInInitialValue;\n  logo?: string\n  appName?: string\n  appearance?: Appearance;\n  onError?: (error: AuthError) => void;\n  onSuccess?: (user: TernSecureUser | null) => void;\n}\n\n\n/**\n * SignUpProps interface defines the properties for the sign-up component.\n * It extends RedirectConfig to include redirect-related properties.\n */\nexport interface SignUpProps extends RedirectConfig {\n  initialValue?: SignUpInitialValue;\n  logo?: string\n  appName?: string\n  appearance?: Appearance;\n  onError?: (error: AuthError) => void;\n  onSuccess?: (user: TernSecureUser | null) => void;\n}\n\n/**\n * Defines the contract for a TernSecure instance.\n * This instance provides authentication state, user information, and methods\n * for managing the authentication lifecycle. It is designed to be used by\n * UI packages like tern-ui, which act as \"dumb\" renderers.\n */\nexport interface TernSecureInstanceOld {\n  /** Indicates if the user is currently signed in. */\n  isSignedIn: () => boolean;\n\n  /** The current authenticated user object, or null if not signed in. */\n  user: TernSecureUser | null;\n\n  /** The current user session information, or null if not signed in. */\n  session: TernSecureSession | null;\n\n  /** Initiates the sign-out process for the current user. */\n  signOut: () => Promise<void>;\n\n  /**\n   * Prepares or signals to mount the sign-in interface.\n   * @param options Optional configuration or initial state for the sign-in UI, conforming to SignInProps.\n   */\n  mountSignIn: (options?: SignInProps) => void;\n\n  /** Cleans up or signals to unmount the sign-in interface. */\n  unmountSignIn: () => void;\n\n  /**\n   * Prepares or signals to mount the sign-up interface.\n   * @param options Optional configuration or initial state for the sign-up UI, conforming to SignUpProps.\n   */\n  mountSignUp: (options?: SignUpProps) => void;\n\n  /** Cleans up or signals to unmount the sign-up interface. */\n  unmountSignUp: () => void;\n\n  /**\n   * Determines if a redirect is necessary based on the current authentication\n   * state and the given path.\n   * @param currentPath The current URL path.\n   * @returns True if a redirect is needed, false otherwise, or a string path to redirect to.\n   */\n  shouldRedirect: (currentPath: string) => boolean | string;\n\n  /**\n   * Constructs a URL, appending necessary redirect parameters.\n   * Useful for redirecting back to the original page after authentication.\n   * @param baseUrl The base URL to which redirect parameters should be added.\n   * @returns The new URL string with redirect parameters.\n   */\n  constructUrlWithRedirect: (baseUrl: string) => string;\n\n  /**\n   * Redirects the user to the configured login page.\n   * @param redirectUrl Optional URL to redirect to after successful login.\n   */\n  redirectToLogin: (redirectUrl?: string) => void;\n\n  /** Indicates if an authentication operation is currently in progress. */\n  isLoading: boolean;\n\n  /** Holds any error that occurred during an authentication operation, or null otherwise. */\n  error: Error | null;\n    \n  /** Indicates if the user has verified their email address. */\n  sendVerificationEmail: () => Promise<void>;\n}","import type { SignedInSession } from \"session\";\nimport type { SignUpResource } from \"signUp\";\n\nimport type { InstanceType,TernSecureConfig, TernSecureUser } from \"./all\";\nimport type { DecodedIdToken } from \"./jwt\";\nimport type {\n  AfterSignOutUrl,\n  SignInRedirectUrl,\n  SignUpRedirectUrl,\n} from \"./redirect\";\nimport type { AuthErrorResponse,SignInResource } from \"./signIn\";\n\nexport interface InitialState {\n  userId: string | null;\n  token: any | null;\n  email: string | null;\n  user?: TernSecureUser | null;\n}\n\nexport interface TernSecureState {\n  userId: string | null;\n  isLoaded: boolean;\n  error: Error | null;\n  isValid: boolean;\n  isVerified: boolean;\n  isAuthenticated: boolean;\n  token: any | null;\n  email: string | null;\n  status: \"loading\" | \"authenticated\" | \"unauthenticated\" | \"unverified\";\n  user?: TernSecureUser | null;\n}\n\nexport type AuthProviderStatus = \"idle\" | \"pending\" | \"error\" | \"success\";\n\nexport const DEFAULT_TERN_SECURE_STATE: TernSecureState = {\n  userId: null,\n  isLoaded: false,\n  error: null,\n  isValid: false,\n  isVerified: false,\n  isAuthenticated: false,\n  token: null,\n  email: null,\n  status: \"loading\",\n  user: null,\n};\n\nexport interface TernSecureAuthProvider {\n  /** Current auth state */\n  internalAuthState: TernSecureState;\n\n  /** Current user*/\n  ternSecureUser(): TernSecureUser | null;\n\n  /** AuthCookie Manager */\n  authCookieManager(): void;\n\n  /** Current session */\n  currentSession: SignedInSession | null;\n\n  /** Sign in resource for authentication operations */\n  signIn: SignInResource | undefined;\n\n  /** SignUp resource for authentication operations */\n  signUp: SignUpResource | undefined;\n\n  /** The Firebase configuration used by this TernAuth instance. */\n  ternSecureConfig?: TernSecureConfig;\n\n  /** Sign out the current user */\n  signOut(): Promise<void>;\n}\n\nexport type Persistence = \"local\" | \"session\" | \"browserCookie\" | \"none\";\n\ntype Mode = \"browser\" | \"server\";\n\nexport type TernAuthSDK = {\n  /** SDK package name (e.g., @tern-secure/auth) */\n  name: string;\n  /** SDK version (e.g., 1.2.3) */\n  version: string;\n  /** Build environment (development, production, test) */\n  environment?: string;\n  /** Build date as ISO string */\n  buildDate?: string;\n  /** Additional build metadata */\n  buildInfo?: {\n    name: string;\n    version: string;\n    buildDate: string;\n    buildEnv: string;\n  };\n};\n\nexport interface TernSecureResources {\n  user?: TernSecureUser | null;\n  session?: SignedInSession | null;\n}\n\nexport type TernSecureAuthOptions = {\n  apiUrl?: string;\n  sdkMetadata?: TernAuthSDK;\n  signInUrl?: string;\n  signUpUrl?: string;\n  mode?: Mode;\n  requiresVerification?: boolean;\n  isTernSecureDev?: boolean;\n  ternSecureConfig?: TernSecureConfig;\n  persistence?: Persistence;\n  enableServiceWorker?: boolean;\n} & SignInRedirectUrl &\n  SignUpRedirectUrl &\n  AfterSignOutUrl;\n\nexport type TernAuthListenerEventPayload = {\n  authStateChanged: TernSecureState;\n  userChanged: TernSecureUser;\n  sessionChanged: SignedInSession | null;\n  tokenRefreshed: string | null;\n};\n\nexport type TernAuthListenerEvent = keyof TernAuthListenerEventPayload;\n\nexport type ListenerCallback = (emission: TernSecureResources) => void;\nexport type UnsubscribeCallback = () => void;\ntype TernSecureEvent = keyof TernAuthEventPayload;\ntype EventHandler<Events extends TernSecureEvent> = (\n  payload: TernAuthEventPayload[Events]\n) => void;\nexport type TernAuthEventPayload = {\n  status: TernSecureAuthStatus;\n};\n\nexport type TernSecureAuthStatus = \"error\" | \"loading\" | \"ready\";\n\ntype onEventListener = <E extends TernSecureEvent>(\n  event: E,\n  handler: EventHandler<E>, opt?: { notify?: boolean }\n) => void;\ntype OffEventListener = <E extends TernSecureEvent>(\n  event: E,\n  handler: EventHandler<E>\n) => void;\n\nexport type SignOutOptions = {\n  /** URL to redirect to after sign out */\n  redirectUrl?: string;\n  /** Callback to perform consumer-specific cleanup (e.g., delete session cookies) */\n  onBeforeSignOut?: () => Promise<void> | void;\n  /** Callback executed after successful sign out */\n  onAfterSignOut?: () => Promise<void> | void;\n};\n\nexport interface SignOut {\n  (options?: SignOutOptions): Promise<void>;\n}\n\nexport interface TernSecureAuth {\n  /** TernSecureAuth SDK version number */\n  version: string | undefined;\n\n  /** Metadata about the SDK instance */\n  sdkMetadata: TernAuthSDK | undefined;\n\n  /** Indicates if the TernSecureAuth instance is currently loading */\n  isLoading: boolean;\n\n  /** The current status of the TernSecureAuth instance */\n  status: TernSecureAuthStatus;\n\n  /** TernSecure API URL */\n  apiUrl: string;\n\n  /** TernSecure domain for API string */\n  domain: string;\n\n  /** TernSecure Proxy url */\n  proxyUrl?: string;\n\n  /** TernSecure Instance type */\n  instanceType: InstanceType | undefined;\n\n  /** Indicates if the TernSecureAuth instance is ready for use */\n  isReady: boolean;\n\n  /** Requires Verification */\n  requiresVerification: boolean;\n\n  /** Initialize TernSecureAuth */\n  initialize(options?: TernSecureAuthOptions): Promise<void>;\n\n  /** Current user*/\n  user: TernSecureUser | null | undefined;\n\n  /** Current session */\n  currentSession: SignedInSession | null;\n\n  /** Sign in resource for authentication operations */\n  signIn: SignInResource | undefined | null;\n\n  /** SignUp resource for authentication operations */\n  signUp: SignUpResource | undefined | null;\n\n  /** The Firebase configuration used by this TernAuth instance. */\n  ternSecureConfig?: TernSecureConfig;\n\n  /** Subscribe to auth state changes */\n  onAuthStateChanged(callback: (cb: any) => void): () => void;\n\n  /** Sign out the current user */\n  signOut: SignOut;\n\n  /** Subscribe to a single event */\n  on: onEventListener;\n\n  /** Remove event listener */\n  off: OffEventListener;\n\n  addListener: (callback: ListenerCallback) => UnsubscribeCallback;\n}\n\nexport interface TernSecureAuthFactory {\n  create(options?: TernSecureAuthOptions): TernSecureAuth;\n}\n\nexport type SharedSignInAuthObjectProperties = {\n  session: DecodedIdToken;\n  userId: string;\n};\n\nexport type CheckCustomClaims = {\n  role?: string | string[];\n  permissions?: string | string[];\n  [key: string]: any;\n};\n\nexport type CheckAuthorizationFromSessionClaims = (\n  isAuthorizedParams: CheckCustomClaims,\n) => boolean;\n\nexport type TernVerificationResult =\n  | (DecodedIdToken & {\n      valid: true;\n      token?: string;\n      error?: never;\n    })\n  | {\n      valid: false;\n      error: AuthErrorResponse;\n    };\n","import type { ErrorCode} from \"./errors\";\n\nexport type SignInStatus =\n  | 'idle'\n  | 'pending_email_password'\n  | 'pending_social'\n  | 'pending_mfa'\n  | 'redirecting'\n  | 'success'\n  | 'error';\n\n\nexport type SignInFormValuesTree = {\n  email: string;\n  password: string;\n  phoneNumber?: string;\n};\n\nexport interface AuthErrorResponse {\n  success: false\n  message: string\n  code: ErrorCode\n}\n\nexport interface AuthErrorTree extends Error {\n  code?: any | string;\n  message: string;\n  response?: any | string;\n}\n\n\nexport interface SignInResponseTree {\n  success: boolean;\n  message?: string;\n  error?: any | undefined;\n  user?: any;\n}\n\n\nexport type SignInInitialValueTree = Partial<SignInFormValuesTree>;\n\n\nexport interface ResendEmailVerification extends SignInResponseTree {\n  isVerified?: boolean;\n}\n\nexport function isSignInResponseTree(value: any): value is SignInResponseTree {\n  return (\n    typeof value === 'object' &&\n    'success' in value &&\n    typeof value.success === 'boolean'\n  );\n}\n\n\nexport interface SignInResource {\n  /**\n   * The current status of the sign-in process.\n   */\n  status?: SignInStatus;\n  /**\n   * Signs in a user with their email and password.\n   * @param params - The sign-in form values.\n   * @returns A promise that resolves with the sign-in response.\n   */\n  withEmailAndPassword: (params: SignInFormValuesTree) => Promise<SignInResponseTree>;\n  /**\n   * @param provider - The identifier of the social provider (e.g., 'google', 'microsoft', 'github').\n   * @param options - Optional configuration for the social sign-in flow.\n   * @returns A promise that resolves with the sign-in response or void if redirecting.\n   */\n  withSocialProvider: (provider: string, options?: { mode?: 'popup' | 'redirect' }) => Promise<SignInResponseTree | void>;\n  /**\n   * Completes an MFA (Multi-Factor Authentication) step after a primary authentication attempt.\n   * @param mfaToken - The MFA token or code submitted by the user.\n   * @param mfaContext - Optional context or session data from the MFA initiation step.\n   * @returns A promise that resolves with the sign-in response upon successful MFA verification.\n   */\n  completeMfaSignIn: (mfaToken: string, mfaContext?: any) => Promise<SignInResponseTree>;\n  /**\n   * Sends a password reset email to the given email address.\n   * @param email - The user's email address.\n   * @returns A promise that resolves when the email is sent.\n   */\n  sendPasswordResetEmail: (email: string) => Promise<void>;\n  /**\n   * Resends the email verification link to the user's email address.\n   * @returns A promise that resolves with the sign-in response.\n   */\n  resendEmailVerification: () => Promise<ResendEmailVerification>;\n  /**\n   * Checks the result of a redirect-based sign-in flow, typically used in OAuth or SSO scenarios.\n   * @returns A promise that resolves with the sign-in response or null if no result is available.\n   */\n  checkRedirectResult: () => Promise<SignInResponseTree | null>;\n}"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACMO,IAAM,SAAS;AAAA,EACpB,4BAA4B;AAAA,EAC5B,uBAAuB;AAAA,EACvB,eAAe;AAAA,EACf,iBAAiB;AAAA,EACjB,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,cAAc;AAAA,EACd,oBAAoB;AAAA,EACpB,qBAAqB;AAAA,EACrB,eAAe;AAAA,EACf,mBAAmB;AAAA,EACnB,eAAe;AAAA,EACf,eAAe;AAAA,EACf,eAAe;AAAA,EACf,cAAc;AAAA,EACd,eAAe;AAAA,EACf,uBAAuB;AAAA,EACvB,eAAe;AAAA,EACf,eAAe;AAAA,EACf,iBAAiB;AAAA,EACjB,gBAAgB;AAAA,EAChB,eAAe;AAAA,EACf,kBAAkB;AAAA,EAClB,gBAAgB;AAAA,EAChB,gBAAgB;AAAA,EAChB,sBAAsB;AAAA,EACtB,uBAAuB;AAAA,EACvB,mBAAmB;AAAA,EACnB,wBAAwB;AAAA,EACxB,aAAa;AAAA,EACb,kBAAkB;AAAA,EAClB,eAAe;AACjB;;;ACGO,SAAS,iBAAiB,OAAqC;AACpE,SAAO,OAAO,UAAU,YAAY,aAAa,SAAS,OAAO,MAAM,YAAY;AACrF;;;ACVO,IAAM,4BAA6C;AAAA,EACxD,QAAQ;AAAA,EACR,UAAU;AAAA,EACV,OAAO;AAAA,EACP,SAAS;AAAA,EACT,YAAY;AAAA,EACZ,iBAAiB;AAAA,EACjB,OAAO;AAAA,EACP,OAAO;AAAA,EACP,QAAQ;AAAA,EACR,MAAM;AACR;;;ACCO,SAAS,qBAAqB,OAAyC;AAC5E,SACE,OAAO,UAAU,YACjB,aAAa,SACb,OAAO,MAAM,YAAY;AAE7B;","names":[]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tern-secure/types",
-  "version": "1.0.4",
+  "version": "1.0.5",
   "description": "Type definitions for TernSecure packages",
   "repository": {
     "type": "git",
@@ -21,8 +21,10 @@
   },
   "scripts": {
     "clean": "rimraf dist",
-    "build": "pnpm clean && tsup && tsc -p tsconfig.add.json",
+    "build": "pnpm clean && tsup",
+    "build:add": "tsc -p tsconfig.add.json",
     "dev": "tsup --watch",
+    "check-types": "pnpm exec tsc --noEmit",
     "lint": "eslint src"
   }
 }

package/dist/all.d.ts

@@ -1,105 +0,0 @@
-/**
- * TernSecure User
- */
-export interface IdTokenResult {
-    authTime: string;
-    expirationTime: string;
-    issuedAtTime: string;
-    signInProvider: string | null;
-    signInSecondFactor: string | null;
-    token: string;
-    claims: Record<string, any>;
-}
-export interface UserInfo {
-    displayName: string | null;
-    email: string | null;
-    phoneNumber: string | null;
-    photoURL: string | null;
-    providerId: string;
-    uid: string;
-}
-export interface TernSecureUser extends UserInfo {
-    emailVerified: boolean;
-    isAnonymous: boolean;
-    metadata: {
-        creationTime?: string;
-        lastSignInTime?: string;
-    };
-    providerData: UserInfo[];
-    refreshToken: string;
-    tenantId: string | null;
-    delete(): Promise<void>;
-    getIdToken(forceRefresh?: boolean): Promise<string>;
-    getIdTokenResult(forceRefresh?: boolean): Promise<IdTokenResult>;
-    reload(): Promise<void>;
-    toJSON(): object;
-}
-export type TernSecureUserData = {
-    uid: string;
-    email: string | null;
-    emailVerified?: boolean;
-    displayName?: string | null;
-};
-/**
- * TernSecure Firebase configuration interface
- * Extends Firebase's base configuration options
- */
-export interface TernSecureConfig {
-    apiKey: string;
-    authDomain: string;
-    projectId: string;
-    storageBucket: string;
-    messagingSenderId: string;
-    appId: string;
-    measurementId?: string;
-    appName?: string;
-}
-/**
- * Configuration validation result
- */
-export interface ConfigValidationResult {
-    isValid: boolean;
-    errors: string[];
-    config: TernSecureConfig;
-}
-/**
- * TernSecure initialization options
- */
-export interface TernSecureOptions {
-    /** Environment setting for different configurations */
-    environment?: 'development' | 'production';
-    /** Geographic region for data storage */
-    region?: string;
-    /** Custom error handler */
-    onError?: (error: Error) => void;
-    /** Debug mode flag */
-    debug?: boolean;
-}
-/**
- * Firebase initialization state
- */
-export interface FirebaseState {
-    /** Whether Firebase has been initialized */
-    initialized: boolean;
-    /** Any initialization errors */
-    error: Error | null;
-    /** Timestamp of last initialization attempt */
-    lastInitAttempt?: number;
-}
-/**
- * Firebase Admin configuration interface
- */
-export interface TernSecureAdminConfig {
-    projectId: string;
-    clientEmail: string;
-    privateKey: string;
-}
-/**
- * Firebase Admin configuration validation result
- */
-export interface AdminConfigValidationResult {
-    isValid: boolean;
-    errors: string[];
-    config: TernSecureAdminConfig;
-}
-//# sourceMappingURL=all.d.ts.map

package/dist/all.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"all.d.ts","sourceRoot":"","sources":["../src/all.ts"],"names":[],"mappings":"AAIA;;GAEG;AAEH,MAAM,WAAW,aAAa;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;IACvB,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAC7B;AAED,MAAM,WAAW,QAAQ;IACvB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,GAAG,EAAE,MAAM,CAAC;CACb;AAED,MAAM,WAAW,cAAe,SAAQ,QAAQ;IAC9C,aAAa,EAAE,OAAO,CAAC;IACvB,WAAW,EAAE,OAAO,CAAC;IACrB,QAAQ,EAAE;QACR,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,cAAc,CAAC,EAAE,MAAM,CAAC;KACzB,CAAC;IACF,YAAY,EAAE,QAAQ,EAAE,CAAC;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACxB,UAAU,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACpD,gBAAgB,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;IACjE,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACxB,MAAM,IAAI,MAAM,CAAC;CAClB;AAED,MAAM,MAAM,kBAAkB,GAAG;IAC/B,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,EAAE,MAAM,GAAG,IAAI,CAAA;IACpB,aAAa,CAAC,EAAE,OAAO,CAAA;IACvB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;CAC5B,CAAA;AAGD;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,MAAM,CAAA;IACd,UAAU,EAAE,MAAM,CAAA;IAClB,SAAS,EAAE,MAAM,CAAA;IACjB,aAAa,EAAE,MAAM,CAAA;IACrB,iBAAiB,EAAE,MAAM,CAAA;IACzB,KAAK,EAAE,MAAM,CAAA;IACb,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,OAAO,EAAE,OAAO,CAAA;IAChB,MAAM,EAAE,MAAM,EAAE,CAAA;IAChB,MAAM,EAAE,gBAAgB,CAAA;CACzB;AAGD;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,uDAAuD;IACvD,WAAW,CAAC,EAAE,aAAa,GAAG,YAAY,CAAA;IAC1C,yCAAyC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,2BAA2B;IAC3B,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAA;IAChC,sBAAsB;IACtB,KAAK,CAAC,EAAE,OAAO,CAAA;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,4CAA4C;IAC5C,WAAW,EAAE,OAAO,CAAA;IACpB,gCAAgC;IAChC,KAAK,EAAE,KAAK,GAAG,IAAI,CAAA;IACnB,+CAA+C;IAC/C,eAAe,CAAC,EAAE,MAAM,CAAA;CACzB;AAGD;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,SAAS,EAAE,MAAM,CAAA;IACjB,WAAW,EAAE,MAAM,CAAA;IACnB,UAAU,EAAE,MAAM,CAAA;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,2BAA2B;IAC1C,OAAO,EAAE,OAAO,CAAA;IAChB,MAAM,EAAE,MAAM,EAAE,CAAA;IAChB,MAAM,EAAE,qBAAqB,CAAA;CAC9B"}

package/dist/auth.d.ts

@@ -1,37 +0,0 @@
-import { SignedInSession } from 'session';
-import type { TernSecureUser, TernSecureConfig } from './all';
-import type { SignInResource } from './signIn';
-import { SignUpResource } from 'signUp';
-export interface TernSecureState {
-    userId: string | null;
-    isLoaded: boolean;
-    error: Error | null;
-    isValid: boolean;
-    isVerified: boolean;
-    isAuthenticated: boolean;
-    token: any | null;
-    email: string | null;
-    status: "loading" | "authenticated" | "unauthenticated" | "unverified";
-    user?: TernSecureUser | null;
-}
-export type AuthProviderStatus = 'idle' | 'pending' | 'error' | 'success';
-export declare const DEFAULT_TERN_SECURE_STATE: TernSecureState;
-export interface TernSecureAuthProvider {
-    /** Current auth state */
-    internalAuthState: TernSecureState;
-    /** Current user*/
-    ternSecureUser(): TernSecureUser | null;
-    /** AuthCookie Manager */
-    authCookieManager(): void;
-    /** Current session */
-    currentSession: SignedInSession | null;
-    /** Sign in resource for authentication operations */
-    signIn: SignInResource;
-    /** SignUp resource for authentication operations */
-    signUp: SignUpResource;
-    /** The Firebase configuration used by this TernAuth instance. */
-    ternSecureConfig?: TernSecureConfig;
-    /** Sign out the current user */
-    signOut(): Promise<void>;
-}
-//# sourceMappingURL=auth.d.ts.map

package/dist/auth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAC1C,OAAO,KAAK,EACV,cAAc,EACd,gBAAgB,EACjB,MAAM,OAAO,CAAC;AACf,OAAO,KAAK,EACR,cAAc,EACjB,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,GAAG,IAAI,CAAA;IACrB,QAAQ,EAAE,OAAO,CAAA;IACjB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAA;IACnB,OAAO,EAAE,OAAO,CAAA;IAChB,UAAU,EAAE,OAAO,CAAA;IACnB,eAAe,EAAE,OAAO,CAAA;IACxB,KAAK,EAAE,GAAG,GAAG,IAAI,CAAA;IACjB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAA;IACpB,MAAM,EAAE,SAAS,GAAG,eAAe,GAAG,iBAAiB,GAAG,YAAY,CAAA;IACtE,IAAI,CAAC,EAAE,cAAc,GAAG,IAAI,CAAA;CAC7B;AAGD,MAAM,MAAM,kBAAkB,GAAG,MAAM,GAAG,SAAS,GAAG,OAAO,GAAG,SAAS,CAAC;AAE1E,eAAO,MAAM,yBAAyB,EAAE,eAWvC,CAAC;AAGF,MAAM,WAAW,sBAAsB;IACrC,yBAAyB;IACzB,iBAAiB,EAAE,eAAe,CAAC;IAEnC,kBAAkB;IAClB,cAAc,IAAI,cAAc,GAAG,IAAI,CAAC;IAExC,yBAAyB;IACzB,iBAAiB,IAAI,IAAI,CAAC;IAE1B,sBAAsB;IACtB,cAAc,EAAE,eAAe,GAAG,IAAI,CAAC;IAEvC,qDAAqD;IACrD,MAAM,EAAE,cAAc,CAAC;IAEvB,oDAAoD;IACpD,MAAM,EAAE,cAAc,CAAC;IAEvB,iEAAiE;IACjE,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IAEpC,gCAAgC;IAChC,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CAC1B"}

package/dist/errors.d.ts

@@ -1,66 +0,0 @@
-export type ErrorCode = keyof typeof ERRORS;
-export interface AuthErrorResponse {
-    success: false;
-    message: string;
-    code: ErrorCode;
-}
-export interface AuthErrorTree extends Error {
-    code?: any | string;
-    message: string;
-    response?: any | string;
-}
-export interface SignInResponseTree {
-    success: boolean;
-    message?: string;
-    error?: any | undefined;
-    user?: any;
-}
-export declare const ERRORS: {
-    readonly SERVER_SIDE_INITIALIZATION: "TernSecure must be initialized on the client side";
-    readonly REQUIRES_VERIFICATION: "AUTH_REQUIRES_VERIFICATION";
-    readonly AUTHENTICATED: "AUTHENTICATED";
-    readonly UNAUTHENTICATED: "UNAUTHENTICATED";
-    readonly UNVERIFIED: "UNVERIFIED";
-    readonly NOT_INITIALIZED: "TernSecure services are not initialized. Call initializeTernSecure() first";
-    readonly HOOK_CONTEXT: "Hook must be used within TernSecureProvider";
-    readonly EMAIL_NOT_VERIFIED: "EMAIL_NOT_VERIFIED";
-    readonly INVALID_CREDENTIALS: "INVALID_CREDENTIALS";
-    readonly USER_DISABLED: "USER_DISABLED";
-    readonly TOO_MANY_ATTEMPTS: "TOO_MANY_ATTEMPTS";
-    readonly NETWORK_ERROR: "NETWORK_ERROR";
-    readonly INVALID_EMAIL: "INVALID_EMAIL";
-    readonly WEAK_PASSWORD: "WEAK_PASSWORD";
-    readonly EMAIL_EXISTS: "EMAIL_EXISTS";
-    readonly POPUP_BLOCKED: "POPUP_BLOCKED";
-    readonly OPERATION_NOT_ALLOWED: "OPERATION_NOT_ALLOWED";
-    readonly EXPIRED_TOKEN: "EXPIRED_TOKEN";
-    readonly INVALID_TOKEN: "INVALID_TOKEN";
-    readonly SESSION_EXPIRED: "SESSION_EXPIRED";
-    readonly INTERNAL_ERROR: "INTERNAL_ERROR";
-    readonly UNKNOWN_ERROR: "An unknown error occurred.";
-    readonly INVALID_ARGUMENT: "Invalid argument provided.";
-    readonly USER_NOT_FOUND: "auth/user-not-found";
-    readonly WRONG_PASSWORD: "auth/wrong-password";
-    readonly EMAIL_ALREADY_IN_USE: "auth/email-already-in-use";
-    readonly REQUIRES_RECENT_LOGIN: "auth/requires-recent-login";
-    readonly NO_SESSION_COOKIE: "No session cookie found.";
-    readonly INVALID_SESSION_COOKIE: "Invalid session cookie.";
-    readonly NO_ID_TOKEN: "No ID token found.";
-    readonly INVALID_ID_TOKEN: "Invalid ID token.";
-    readonly REDIRECT_LOOP: "Redirect loop detected.";
-};
-export type AuthErrorCode = keyof typeof ERRORS;
-export declare class TernSecureError extends Error {
-    code: ErrorCode;
-    constructor(code: ErrorCode, message?: string);
-}
-/**
- * Handles Firebase authentication errors with multiple fallback mechanisms
- */
-export declare function handleFirebaseAuthError(error: unknown): AuthErrorResponse;
-/**
- * Type guard to check if a response is an AuthErrorResponse
- */
-export declare function isAuthErrorResponse(response: unknown): response is AuthErrorResponse;
-export declare function getErrorAlertVariant(error: any | undefined): "destructive" | "default";
-//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,SAAS,GAAG,MAAM,OAAO,MAAM,CAAA;AAE3C,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,KAAK,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,EAAE,SAAS,CAAA;CAChB;AAED,MAAM,WAAW,aAAc,SAAQ,KAAK;IAC1C,IAAI,CAAC,EAAE,GAAG,GAAG,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,GAAG,GAAG,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,GAAG,GAAG,SAAS,CAAC;IACxB,IAAI,CAAC,EAAE,GAAG,CAAC;CACZ;AAED,eAAO,MAAM,MAAM;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAiCT,CAAA;AAEV,MAAM,MAAM,aAAa,GAAG,MAAM,OAAO,MAAM,CAAA;AAmB/C,qBAAa,eAAgB,SAAQ,KAAK;IACxC,IAAI,EAAE,SAAS,CAAA;gBAEH,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,MAAM;CAK9C;AA4JD;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,iBAAiB,CAwFzE;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,OAAO,GAAG,QAAQ,IAAI,iBAAiB,CASpF;AAED,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,GAAG,GAAG,SAAS,6BAsB1D"}

package/dist/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,OAAO,CAAA;AACrB,cAAc,UAAU,CAAA;AACxB,cAAc,cAAc,CAAA;AAC5B,cAAc,SAAS,CAAA;AACvB,cAAc,gBAAgB,CAAA;AAC9B,cAAc,QAAQ,CAAA;AACtB,cAAc,UAAU,CAAA;AACxB,cAAc,UAAU,CAAA;AACxB,cAAc,WAAW,CAAA;AACzB,cAAc,YAAY,CAAA"}

package/dist/instanceTree.d.ts

@@ -1,140 +0,0 @@
-import type { Appearance, SignInUIConfig, SignUpUIConfig } from './theme';
-import type { TernSecureConfig, TernSecureUser } from './all';
-import type { TernSecureAuthProvider, TernSecureState } from 'auth';
-import type { TernSecureSessionTree, SignedInSession } from './session';
-import type { AuthErrorTree } from './errors';
-import type { RedirectOptions, SignInRedirectUrl, SignUpRedirectUrl } from './redirect';
-import type { SignInInitialValueTree } from './signIn';
-type Mode = 'browser' | 'server';
-export type TernSecureSDK = {
-    /** SDK package name (e.g., @tern-secure/ui) */
-    name: string;
-    /** SDK version (e.g., 1.2.3) */
-    version: string;
-    /** Build environment (development, production, test) */
-    environment?: string;
-    /** Build date as ISO string */
-    buildDate?: string;
-    /** Additional build metadata */
-    buildInfo?: {
-        name: string;
-        version: string;
-        buildDate: string;
-        buildEnv: string;
-    };
-};
-export type TernSecureInstanceTreeOptions = {
-    sdkMetadata?: TernSecureSDK;
-    initialSession?: TernSecureSessionTree | null;
-    defaultAppearance?: Appearance;
-    signInUrl?: string;
-    signUpUrl?: string;
-    mode?: Mode;
-    onAuthStateChanged?: (user: TernSecureUser | null) => void;
-    onError?: (error: AuthErrorTree) => void;
-    requiresVerification?: boolean;
-    isTernSecureDev?: boolean;
-    ternSecureConfig?: TernSecureConfig;
-    enableServiceWorker?: boolean;
-} & SignInRedirectUrl & SignUpRedirectUrl;
-export type TernSecureInstanceTreeStatus = 'error' | 'loading' | 'ready';
-/**
- * Instance interface for managing auth UI state
- */
-export interface TernSecureInstanceTree {
-    version: string | undefined;
-    sdkMetadata: TernSecureSDK | undefined;
-    customDomain?: string;
-    proxyUrl?: string;
-    apiKey?: string;
-    projectId?: string;
-    environment?: string | undefined;
-    mode?: Mode;
-    isReady: boolean;
-    status: TernSecureInstanceTreeStatus;
-    isVisible: boolean;
-    currentView: 'signIn' | 'signUp' | 'verify' | null;
-    isLoading: boolean;
-    error: Error | null;
-    requiresVerification: boolean;
-    /** Authentication State */
-    auth: {
-        /** Current authenticated user */
-        user: TernSecureUser | null;
-        /** Current session information */
-        session: SignedInSession | null;
-    };
-    /** Core Authentication Methods */
-    ternAuth: TernSecureAuthProvider | undefined;
-    showSignIn: (targetNode: HTMLDivElement, config?: SignInPropsTree) => void;
-    hideSignIn: (targetNode: HTMLDivElement) => void;
-    showSignUp: (targetNode: HTMLDivElement, config?: SignUpPropsTree) => void;
-    hideSignUp: (targetNode: HTMLDivElement) => void;
-    showUserButton: (targetNode: HTMLDivElement) => void;
-    hideUserButton: (targetNode: HTMLDivElement) => void;
-    clearError: () => void;
-    setLoading: (isLoading: boolean) => void;
-    /** Get redirect result from OAuth flows */
-    getRedirectResult: () => Promise<any>;
-    /** Check if redirect is needed */
-    shouldRedirect: (currentPath: string) => boolean | string;
-    /** Construct URL with redirect parameters */
-    constructUrlWithAuthRedirect: (to: string) => string;
-    /** Navigate to SignIn page */
-    redirectToSignIn(options?: SignInRedirectOptions): Promise<unknown>;
-    /** Navigate to SignUp page */
-    redirectToSignUp(options?: SignUpRedirectOptions): Promise<unknown>;
-    redirectAfterSignIn: () => void;
-    redirectAfterSignUp: () => void;
-    /** Error and Event Handling */
-    events: {
-        /** Subscribe to auth state changes */
-        onAuthStateChanged: (callback: (authState: TernSecureState) => void) => () => void;
-        /** Subscribe to error events */
-        onError: (callback: (error: AuthErrorTree) => void) => () => void;
-        /** Status */
-        onStatusChanged: (callback: (status: TernSecureInstanceTreeStatus) => void) => () => void;
-    };
-}
-export type SignUpFormValuesTree = {
-    email: string;
-    password: string;
-    confirmPassword?: string;
-    displayName?: string;
-};
-export type SignUpInitialValueTree = Partial<SignUpFormValuesTree>;
-/**
- * Props for SignIn component focusing on UI concerns
- */
-export type SignInPropsTree = {
-    /** Routing Path */
-    path?: string;
-    /** URL to navigate to after successfully sign-in */
-    forceRedirectUrl?: string | null;
-    /** Initial form values */
-    initialValue?: SignInInitialValueTree;
-    /** UI configuration */
-    ui?: SignInUIConfig;
-    /** Callbacks */
-    onError?: (error: AuthErrorTree) => void;
-    onSuccess?: (user: TernSecureUser | null) => void;
-} & SignUpRedirectUrl;
-/**
- * Props for SignUp component focusing on UI concerns
- */
-export type SignUpPropsTree = {
-    /** URL to navigate to after successfully sign-up */
-    forceRedirectUrl?: string | null;
-    /** Initial form values */
-    initialValue?: SignUpInitialValueTree;
-    /** UI configuration */
-    ui?: SignUpUIConfig;
-    /** Callbacks */
-    onSubmit?: (values: SignUpFormValuesTree) => Promise<void>;
-    onError?: (error: AuthErrorTree) => void;
-    onSuccess?: (user: TernSecureUser | null) => void;
-} & SignInRedirectUrl;
-export type SignInRedirectOptions = RedirectOptions;
-export type SignUpRedirectOptions = RedirectOptions;
-export {};
-//# sourceMappingURL=instanceTree.d.ts.map

package/dist/instanceTree.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"instanceTree.d.ts","sourceRoot":"","sources":["../src/instanceTree.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,UAAU,EACV,cAAc,EACd,cAAc,EACd,MAAM,SAAS,CAAC;AAClB,OAAO,KAAK,EACV,gBAAgB,EAChB,cAAc,EACf,MAAM,OAAO,CAAC;AACf,OAAO,KAAK,EACV,sBAAsB,EACtB,eAAe,EAChB,MAAM,MAAM,CAAC;AACd,OAAO,KAAK,EACV,qBAAqB,EACrB,eAAe,EAChB,MAAM,WAAW,CAAC;AACnB,OAAO,KAAK,EACV,aAAa,EACd,MAAM,UAAU,CAAC;AAClB,OAAO,KAAK,EACV,eAAe,EACf,iBAAiB,EACjB,iBAAiB,EAClB,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EACV,sBAAsB,EACvB,MAAM,UAAU,CAAC;AAIlB,KAAK,IAAI,GAAG,SAAS,GAAG,QAAQ,CAAC;AAEjC,MAAM,MAAM,aAAa,GAAG;IAC1B,+CAA+C;IAC/C,IAAI,EAAE,MAAM,CAAC;IACb,gCAAgC;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,wDAAwD;IACxD,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,+BAA+B;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,gCAAgC;IAChC,SAAS,CAAC,EAAE;QACV,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;CACH,CAAA;AAED,MAAM,MAAM,6BAA6B,GAAG;IAC1C,WAAW,CAAC,EAAE,aAAa,CAAC;IAC5B,cAAc,CAAC,EAAE,qBAAqB,GAAG,IAAI,CAAC;IAC9C,iBAAiB,CAAC,EAAE,UAAU,CAAC;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,kBAAkB,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;IAC3D,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,CAAC;IACzC,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,mBAAmB,CAAC,EAAE,OAAO,CAAC;CAC/B,GAAG,iBAAiB,GAAG,iBAAiB,CAAC;AAE1C,MAAM,MAAM,4BAA4B,GAAG,OAAO,GAAG,SAAS,GAAG,OAAO,CAAC;AAEzE;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,OAAO,EAAE,MAAM,GAAG,SAAS,CAAC;IAC5B,WAAW,EAAE,aAAa,GAAE,SAAS,CAAC;IACtC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,EAAE,4BAA4B,CAAC;IACrC,SAAS,EAAE,OAAO,CAAC;IACnB,WAAW,EAAE,QAAQ,GAAG,QAAQ,GAAG,QAAQ,GAAG,IAAI,CAAC;IACnD,SAAS,EAAE,OAAO,CAAC;IACnB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB,oBAAoB,EAAE,OAAO,CAAC;IAC9B,2BAA2B;IAC3B,IAAI,EAAE;QACJ,iCAAiC;QACjC,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;QAC5B,kCAAkC;QAClC,OAAO,EAAE,eAAe,GAAG,IAAI,CAAC;KACjC,CAAC;IAEF,kCAAkC;IAClC,QAAQ,EAAE,sBAAsB,GAAG,SAAS,CAAC;IAE7C,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,EAAE,MAAM,CAAC,EAAE,eAAe,KAAK,IAAI,CAAC;IAC3E,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACjD,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,EAAE,MAAM,CAAC,EAAE,eAAe,KAAK,IAAI,CAAC;IAC3E,UAAU,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACjD,cAAc,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACrD,cAAc,EAAE,CAAC,UAAU,EAAE,cAAc,KAAK,IAAI,CAAC;IACrD,UAAU,EAAE,MAAM,IAAI,CAAC;IACvB,UAAU,EAAE,CAAC,SAAS,EAAE,OAAO,KAAK,IAAI,CAAC;IAEzC,2CAA2C;IAC3C,iBAAiB,EAAE,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC;IACtC,kCAAkC;IAClC,cAAc,EAAE,CAAC,WAAW,EAAE,MAAM,KAAK,OAAO,GAAG,MAAM,CAAC;IAC1D,6CAA6C;IAC7C,4BAA4B,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK,MAAM,CAAC;IACrD,8BAA8B;IAC9B,gBAAgB,CAAC,OAAO,CAAC,EAAE,qBAAqB,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACpE,8BAA8B;IAC9B,gBAAgB,CAAC,OAAO,CAAC,EAAE,qBAAqB,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAEpE,mBAAmB,EAAE,MAAM,IAAI,CAAC;IAEhC,mBAAmB,EAAE,MAAM,IAAI,CAAC;IAEhC,+BAA+B;IAC/B,MAAM,EAAE;QACN,sCAAsC;QACtC,kBAAkB,EAAE,CAAC,QAAQ,EAAE,CAAC,SAAS,EAAE,eAAe,KAAK,IAAI,KAAK,MAAM,IAAI,CAAC;QACnF,gCAAgC;QAChC,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,KAAK,MAAM,IAAI,CAAC;QAClE,aAAa;QACb,eAAe,EAAE,CAAC,QAAQ,EAAE,CAAC,MAAM,EAAE,4BAA4B,KAAK,IAAI,KAAK,MAAM,IAAI,CAAC;KAC3F,CAAC;CACH;AAED,MAAM,MAAM,oBAAoB,GAAG;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,sBAAsB,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAAC;AAEnE;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG;IAC5B,mBAAmB;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,oDAAoD;IACpD,gBAAgB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,0BAA0B;IAC1B,YAAY,CAAC,EAAE,sBAAsB,CAAC;IACtC,uBAAuB;IACvB,EAAE,CAAC,EAAE,cAAc,CAAC;IACpB,gBAAgB;IAChB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,CAAC;IACzC,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;CACnD,GAAG,iBAAiB,CAAA;AAGrB;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG;IAC5B,oDAAoD;IACpD,gBAAgB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,0BAA0B;IAC1B,YAAY,CAAC,EAAE,sBAAsB,CAAC;IACtC,uBAAuB;IACvB,EAAE,CAAC,EAAE,cAAc,CAAC;IACpB,gBAAgB;IAChB,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3D,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,CAAC;IACzC,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,KAAK,IAAI,CAAC;CACnD,GAAG,iBAAiB,CAAA;AAErB,MAAM,MAAM,qBAAqB,GAAG,eAAe,CAAA;AACnD,MAAM,MAAM,qBAAqB,GAAG,eAAe,CAAC"}