@testany/hephos 0.3.18 → 0.4.0-dev.3

package/out/auth/CallbackServer.js

@@ -0,0 +1,277 @@
+/**
+ * Local HTTP server to receive OAuth callback
+ * Listens on 127.0.0.1:8400 for security (localhost only)
+ */
+import * as http from 'http';
+import { URL } from 'url';
+import { CALLBACK_PORT, LOGIN_TIMEOUT_MS } from './AuthConfig.js';
+import { AuthError } from './types.js';
+/** HephOS favicon SVG (inline) */
+const HEPHOS_ICON = `<svg width="48" height="48" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 200 200"><g transform="scale(1.4) translate(-28, -28)" fill="#ffd6c9"><path d="M85.627,84.217h28.746c11.232,0,20.369-9.137,20.369-20.441c0-11.231-9.137-20.369-20.369-20.369H104V40c0-2.209-1.791-4-4-4s-4,1.791-4,4v3.406H85.627c-11.232,0-20.369,9.138-20.369,20.442C65.258,75.08,74.395,84.217,85.627,84.217z M85.627,51.406h28.746c6.82,0,12.369,5.549,12.369,12.442c0,6.82-5.549,12.368-12.369,12.368H85.627c-6.82,0-12.369-5.548-12.369-12.441C73.258,56.955,78.807,51.406,85.627,51.406z"/><ellipse cx="86.421" cy="63.812" rx="5.636" ry="5.719"/><ellipse cx="113.579" cy="63.812" rx="5.636" ry="5.719"/><path d="M83.355,102.72c-2.209,0-4,1.791-4,4v16.725c0,2.209,1.791,4,4,4h33.291c2.209,0,4-1.791,4-4V106.72c0-2.209-1.791-4-4-4H83.355z M112.646,119.444H87.355v-8.725h25.291V119.444z"/><path d="M159.219,67.697c-2.209,0-4,1.791-4,4v4c0,2.481-2.02,4.5-4.5,4.5s-4.5-2.019-4.5-4.5v-4c0-2.209-1.791-4-4-4s-4,1.791-4,4v4c0,5.478,3.547,10.133,8.461,11.818c-0.407,8.45-7.389,15.205-15.938,15.205c-2.209,0-4,1.791-4,4v20.884c0,3.309-2.691,6-6,6h-12.834H92.092H79.258c-3.309,0-6-2.691-6-6v-0.884c0-2.209-1.791-4-4-4s-4,1.791-4,4v0.884c0,7.72,6.281,14,14,14h8.834v10.489C88.092,158.658,93.434,164,100,164s11.908-5.342,11.908-11.907v-10.489h8.834c7.719,0,14-6.28,14-14v-17.245c11.061-1.87,19.554-11.321,19.936-22.814c4.956-1.661,8.541-6.339,8.541-11.847v-4C163.219,69.488,161.428,67.697,159.219,67.697z M103.908,152.093c0,2.154-1.754,3.907-3.908,3.907s-3.908-1.753-3.908-3.907v-10.489h7.816V152.093z"/><path d="M73.258,106.72v-4.16c0-3.309,2.691-6,6-6h51.484c2.209,0,4-1.791,4-4s-1.791-4-4-4H79.258c-7.719,0-14,6.28-14,14v0.16H53.281V87.529c4.934-1.673,8.5-6.339,8.5-11.832v-4c0-2.209-1.791-4-4-4s-4,1.791-4,4v4c0,2.481-2.02,4.5-4.5,4.5s-4.5-2.019-4.5-4.5v-4c0-2.209-1.791-4-4-4s-4,1.791-4,4v4c0,5.493,3.566,10.159,8.5,11.832v19.191c0,2.209,1.791,4,4,4h19.977C71.467,110.72,73.258,108.929,73.258,106.72z"/></g></svg>`;
+/** HTML response shown to user after successful login */
+const SUCCESS_HTML = `
+<!DOCTYPE html>
+<html>
+<head>
+  <meta charset="utf-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <title>Login Successful - HephOS</title>
+  <style>
+    * { box-sizing: border-box; margin: 0; padding: 0; }
+    body {
+      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', sans-serif;
+      display: flex;
+      justify-content: center;
+      align-items: center;
+      min-height: 100vh;
+      background: #1c1a18;
+      color: #e8e4df;
+    }
+    .container {
+      text-align: center;
+      padding: 48px;
+      max-width: 400px;
+    }
+    .icon {
+      margin-bottom: 24px;
+    }
+    .status {
+      display: inline-flex;
+      align-items: center;
+      gap: 8px;
+      padding: 8px 16px;
+      background: rgba(74, 222, 128, 0.15);
+      border: 1px solid rgba(74, 222, 128, 0.3);
+      border-radius: 24px;
+      color: #4ade80;
+      font-size: 14px;
+      font-weight: 500;
+      margin-bottom: 24px;
+    }
+    .status svg {
+      width: 16px;
+      height: 16px;
+    }
+    h1 {
+      font-size: 24px;
+      font-weight: 600;
+      margin-bottom: 12px;
+      color: #ffd6c9;
+    }
+    p {
+      font-size: 15px;
+      color: #a39e98;
+      line-height: 1.5;
+    }
+    .hint {
+      margin-top: 32px;
+      padding-top: 24px;
+      border-top: 1px solid #2d2a27;
+      font-size: 13px;
+      color: #6b6560;
+    }
+  </style>
+</head>
+<body>
+  <div class="container">
+    <div class="icon">${HEPHOS_ICON}</div>
+    <div class="status">
+      <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5">
+        <polyline points="20 6 9 17 4 12"></polyline>
+      </svg>
+      Login Successful
+    </div>
+    <h1>Welcome to HephOS</h1>
+    <p>You have been authenticated successfully. You can now close this window and return to the CLI.</p>
+    <div class="hint">This window can be closed safely.</div>
+  </div>
+</body>
+</html>
+`;
+/** HTML response shown on error */
+const ERROR_HTML = (message) => `
+<!DOCTYPE html>
+<html>
+<head>
+  <meta charset="utf-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <title>Login Failed - HephOS</title>
+  <style>
+    * { box-sizing: border-box; margin: 0; padding: 0; }
+    body {
+      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', sans-serif;
+      display: flex;
+      justify-content: center;
+      align-items: center;
+      min-height: 100vh;
+      background: #1c1a18;
+      color: #e8e4df;
+    }
+    .container {
+      text-align: center;
+      padding: 48px;
+      max-width: 400px;
+    }
+    .icon {
+      margin-bottom: 24px;
+    }
+    .status {
+      display: inline-flex;
+      align-items: center;
+      gap: 8px;
+      padding: 8px 16px;
+      background: rgba(239, 68, 68, 0.15);
+      border: 1px solid rgba(239, 68, 68, 0.3);
+      border-radius: 24px;
+      color: #ef4444;
+      font-size: 14px;
+      font-weight: 500;
+      margin-bottom: 24px;
+    }
+    .status svg {
+      width: 16px;
+      height: 16px;
+    }
+    h1 {
+      font-size: 24px;
+      font-weight: 600;
+      margin-bottom: 12px;
+      color: #ffd6c9;
+    }
+    p {
+      font-size: 15px;
+      color: #a39e98;
+      line-height: 1.5;
+    }
+    .error-detail {
+      margin-top: 16px;
+      padding: 12px 16px;
+      background: rgba(239, 68, 68, 0.1);
+      border-radius: 8px;
+      font-size: 13px;
+      color: #ef4444;
+      word-break: break-word;
+    }
+    .hint {
+      margin-top: 32px;
+      padding-top: 24px;
+      border-top: 1px solid #2d2a27;
+      font-size: 13px;
+      color: #6b6560;
+    }
+  </style>
+</head>
+<body>
+  <div class="container">
+    <div class="icon">${HEPHOS_ICON}</div>
+    <div class="status">
+      <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5">
+        <line x1="18" y1="6" x2="6" y2="18"></line>
+        <line x1="6" y1="6" x2="18" y2="18"></line>
+      </svg>
+      Login Failed
+    </div>
+    <h1>Authentication Error</h1>
+    <p>We couldn't complete the login process. Please try again.</p>
+    <div class="error-detail">${message}</div>
+    <div class="hint">Close this window and try again from the CLI.</div>
+  </div>
+</body>
+</html>
+`;
+/**
+ * Start a local HTTP server to receive OAuth callback
+ * Returns a promise that resolves with the authorization code and state
+ */
+export function startCallbackServer() {
+    return new Promise((resolve, reject) => {
+        let server = null;
+        let timeoutId = null;
+        const cleanup = () => {
+            if (timeoutId) {
+                clearTimeout(timeoutId);
+                timeoutId = null;
+            }
+            if (server) {
+                server.close();
+                server = null;
+            }
+        };
+        // Set timeout for login flow
+        timeoutId = setTimeout(() => {
+            cleanup();
+            reject(new AuthError('AUTH_CALLBACK_TIMEOUT', 'Login timed out. Please try again.'));
+        }, LOGIN_TIMEOUT_MS);
+        server = http.createServer((req, res) => {
+            // Only handle GET requests to /callback
+            if (req.method !== 'GET' || !req.url?.startsWith('/callback')) {
+                res.writeHead(404);
+                res.end('Not found');
+                return;
+            }
+            try {
+                const url = new URL(req.url, `http://127.0.0.1:${CALLBACK_PORT}`);
+                const code = url.searchParams.get('code');
+                const state = url.searchParams.get('state');
+                const error = url.searchParams.get('error');
+                const errorDescription = url.searchParams.get('error_description');
+                // Handle OAuth error response
+                if (error) {
+                    const message = errorDescription || error;
+                    res.writeHead(200, { 'Content-Type': 'text/html' });
+                    res.end(ERROR_HTML(message));
+                    cleanup();
+                    reject(new AuthError('AUTH_TOKEN_EXCHANGE_FAILED', `OAuth error: ${message}`));
+                    return;
+                }
+                // Validate required parameters
+                if (!code || !state) {
+                    res.writeHead(200, { 'Content-Type': 'text/html' });
+                    res.end(ERROR_HTML('Missing authorization code or state'));
+                    cleanup();
+                    reject(new AuthError('AUTH_TOKEN_EXCHANGE_FAILED', 'Missing authorization code or state in callback'));
+                    return;
+                }
+                // Success - send response and resolve
+                res.writeHead(200, { 'Content-Type': 'text/html' });
+                res.end(SUCCESS_HTML);
+                cleanup();
+                resolve({ code, state });
+            }
+            catch (err) {
+                res.writeHead(500);
+                res.end('Internal error');
+                cleanup();
+                reject(err);
+            }
+        });
+        // Listen only on localhost for security
+        server.listen(CALLBACK_PORT, '127.0.0.1', () => {
+            // Server started successfully
+        });
+        server.on('error', (err) => {
+            cleanup();
+            if (err.code === 'EADDRINUSE') {
+                reject(new AuthError('AUTH_PORT_IN_USE', `Port ${CALLBACK_PORT} is already in use. Please close any application using this port and try again.`));
+            }
+            else {
+                reject(new AuthError('AUTH_BROWSER_FAILED', `Failed to start callback server: ${err.message}`, err));
+            }
+        });
+    });
+}
+/**
+ * Check if port is available
+ */
+export function isPortAvailable(port = CALLBACK_PORT) {
+    return new Promise((resolve) => {
+        const server = http.createServer();
+        server.listen(port, '127.0.0.1', () => {
+            server.close(() => resolve(true));
+        });
+        server.on('error', () => {
+            resolve(false);
+        });
+    });
+}
+//# sourceMappingURL=CallbackServer.js.map

package/out/auth/CallbackServer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"CallbackServer.js","sourceRoot":"","sources":["../../src/auth/CallbackServer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,GAAG,EAAE,MAAM,KAAK,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAClE,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAGvC,kCAAkC;AAClC,MAAM,WAAW,GAAG,u7DAAu7D,CAAC;AAE58D,yDAAyD;AACzD,MAAM,YAAY,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;wBAiEG,WAAW;;;;;;;;;;;;;CAalC,CAAC;AAEF,mCAAmC;AACnC,MAAM,UAAU,GAAG,CAAC,OAAe,EAAE,EAAE,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;wBA0EhB,WAAW;;;;;;;;;;gCAUH,OAAO;;;;;CAKtC,CAAC;AAEF;;;GAGG;AACH,MAAM,UAAU,mBAAmB;IACjC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,MAAM,GAAuB,IAAI,CAAC;QACtC,IAAI,SAAS,GAA0B,IAAI,CAAC;QAE5C,MAAM,OAAO,GAAG,GAAG,EAAE;YACnB,IAAI,SAAS,EAAE,CAAC;gBACd,YAAY,CAAC,SAAS,CAAC,CAAC;gBACxB,SAAS,GAAG,IAAI,CAAC;YACnB,CAAC;YACD,IAAI,MAAM,EAAE,CAAC;gBACX,MAAM,CAAC,KAAK,EAAE,CAAC;gBACf,MAAM,GAAG,IAAI,CAAC;YAChB,CAAC;QACH,CAAC,CAAC;QAEF,6BAA6B;QAC7B,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE;YAC1B,OAAO,EAAE,CAAC;YACV,MAAM,CAAC,IAAI,SAAS,CAClB,uBAAuB,EACvB,oCAAoC,CACrC,CAAC,CAAC;QACL,CAAC,EAAE,gBAAgB,CAAC,CAAC;QAErB,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACtC,wCAAwC;YACxC,IAAI,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;gBAC9D,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;gBACnB,GAAG,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;gBACrB,OAAO;YACT,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,oBAAoB,aAAa,EAAE,CAAC,CAAC;gBAClE,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBAC1C,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;gBAC5C,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;gBAC5C,MAAM,gBAAgB,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;gBAEnE,8BAA8B;gBAC9B,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,OAAO,GAAG,gBAAgB,IAAI,KAAK,CAAC;oBAC1C,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;oBACpD,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC;oBAC7B,OAAO,EAAE,CAAC;oBACV,MAAM,CAAC,IAAI,SAAS,CAClB,4BAA4B,EAC5B,gBAAgB,OAAO,EAAE,CAC1B,CAAC,CAAC;oBACH,OAAO;gBACT,CAAC;gBAED,+BAA+B;gBAC/B,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;oBACpB,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;oBACpD,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,qCAAqC,CAAC,CAAC,CAAC;oBAC3D,OAAO,EAAE,CAAC;oBACV,MAAM,CAAC,IAAI,SAAS,CAClB,4BAA4B,EAC5B,iDAAiD,CAClD,CAAC,CAAC;oBACH,OAAO;gBACT,CAAC;gBAED,sCAAsC;gBACtC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;gBACpD,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;gBACtB,OAAO,EAAE,CAAC;gBACV,OAAO,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAE3B,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;gBACnB,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;gBAC1B,OAAO,EAAE,CAAC;gBACV,MAAM,CAAC,GAAG,CAAC,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,wCAAwC;QACxC,MAAM,CAAC,MAAM,CAAC,aAAa,EAAE,WAAW,EAAE,GAAG,EAAE;YAC7C,8BAA8B;QAChC,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAA0B,EAAE,EAAE;YAChD,OAAO,EAAE,CAAC;YACV,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC9B,MAAM,CAAC,IAAI,SAAS,CAClB,kBAAkB,EAClB,QAAQ,aAAa,iFAAiF,CACvG,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,IAAI,SAAS,CAClB,qBAAqB,EACrB,oCAAoC,GAAG,CAAC,OAAO,EAAE,EACjD,GAAG,CACJ,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,OAAe,aAAa;IAC1D,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QAEnC,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,WAAW,EAAE,GAAG,EAAE;YACpC,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACtB,OAAO,CAAC,KAAK,CAAC,CAAC;QACjB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/out/auth/TokenCache.d.ts

@@ -0,0 +1,81 @@
+/**
+ * Token cache management
+ * Stores tokens in ~/.agent-chatter/auth/token-cache.json with 0600 permissions
+ */
+import type { AuthRegion, AuthEnvironment, TokenSet, UserInfo, CachedToken } from './types.js';
+export declare class TokenCache {
+    private cachePath;
+    constructor(customPath?: string);
+    /**
+     * Ensure cache directory exists with proper permissions
+     */
+    private ensureDirectory;
+    /**
+     * Read cache file
+     */
+    private readCache;
+    /**
+     * Write cache file with 0600 permissions
+     */
+    private writeCache;
+    /**
+     * Save tokens for a region
+     * Note: Only one region can be logged in at a time.
+     * Logging into a new region will automatically clear the other region's tokens.
+     */
+    save(region: AuthRegion, tokens: TokenSet, userInfo: UserInfo, env?: AuthEnvironment): void;
+    /**
+     * Load tokens for a region
+     */
+    load(region: AuthRegion): CachedToken | null;
+    /**
+     * Check if token for a region is valid (not expired)
+     */
+    isValid(region: AuthRegion): boolean;
+    /**
+     * Check if token needs refresh (within threshold)
+     */
+    needsRefresh(region: AuthRegion): boolean;
+    /**
+     * Clear tokens for a region
+     */
+    clear(region: AuthRegion): void;
+    /**
+     * Clear all tokens
+     */
+    clearAll(): void;
+    /**
+     * Get the currently active region
+     */
+    getActiveRegion(): AuthRegion | null;
+    /**
+     * Get the currently active environment
+     */
+    getActiveEnv(): AuthEnvironment;
+    /**
+     * Set the active environment
+     */
+    setActiveEnv(env: AuthEnvironment): void;
+    /**
+     * Set the active region
+     */
+    setActiveRegion(region: AuthRegion): void;
+    /**
+     * Get access token for a region (if valid)
+     */
+    getAccessToken(region: AuthRegion): string | null;
+    /**
+     * Get refresh token for a region
+     */
+    getRefreshToken(region: AuthRegion): string | null;
+    /**
+     * Get user info for a region
+     */
+    getUserInfo(region: AuthRegion): UserInfo | null;
+    /**
+     * Get cache file path (for display)
+     */
+    getCachePath(): string;
+}
+export declare const tokenCache: TokenCache;
+//# sourceMappingURL=TokenCache.d.ts.map

package/out/auth/TokenCache.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TokenCache.d.ts","sourceRoot":"","sources":["../../src/auth/TokenCache.ts"],"names":[],"mappings":"AAAA;;;GAGG;AASH,OAAO,KAAK,EACV,UAAU,EACV,eAAe,EACf,QAAQ,EACR,QAAQ,EACR,WAAW,EAEZ,MAAM,YAAY,CAAC;AAQpB,qBAAa,UAAU;IACrB,OAAO,CAAC,SAAS,CAAS;gBAEd,UAAU,CAAC,EAAE,MAAM;IAI/B;;OAEG;IACH,OAAO,CAAC,eAAe;IAOvB;;OAEG;IACH,OAAO,CAAC,SAAS;IAoBjB;;OAEG;IACH,OAAO,CAAC,UAAU;IAQlB;;;;OAIG;IACH,IAAI,CAAC,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,CAAC,EAAE,eAAe,GAAG,IAAI;IAuB3F;;OAEG;IACH,IAAI,CAAC,MAAM,EAAE,UAAU,GAAG,WAAW,GAAG,IAAI;IAK5C;;OAEG;IACH,OAAO,CAAC,MAAM,EAAE,UAAU,GAAG,OAAO;IAUpC;;OAEG;IACH,YAAY,CAAC,MAAM,EAAE,UAAU,GAAG,OAAO;IAWzC;;OAEG;IACH,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI;IAa/B;;OAEG;IACH,QAAQ,IAAI,IAAI;IAIhB;;OAEG;IACH,eAAe,IAAI,UAAU,GAAG,IAAI;IAKpC;;OAEG;IACH,YAAY,IAAI,eAAe;IAK/B;;OAEG;IACH,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,IAAI;IAMxC;;OAEG;IACH,eAAe,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI;IAMzC;;OAEG;IACH,cAAc,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,GAAG,IAAI;IAMjD;;OAEG;IACH,eAAe,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,GAAG,IAAI;IAKlD;;OAEG;IACH,WAAW,CAAC,MAAM,EAAE,UAAU,GAAG,QAAQ,GAAG,IAAI;IAKhD;;OAEG;IACH,YAAY,IAAI,MAAM;CAGvB;AAGD,eAAO,MAAM,UAAU,YAAmB,CAAC"}

package/out/auth/TokenCache.js

@@ -0,0 +1,191 @@
+/**
+ * Token cache management
+ * Stores tokens in ~/.agent-chatter/auth/token-cache.json with 0600 permissions
+ */
+import * as fs from 'fs';
+import * as path from 'path';
+import * as os from 'os';
+import { TOKEN_CACHE_VERSION, REFRESH_THRESHOLD_MS, } from './AuthConfig.js';
+/** Default cache directory */
+const CACHE_DIR = path.join(os.homedir(), '.agent-chatter', 'auth');
+/** Default cache file name */
+const CACHE_FILE = 'token-cache.json';
+export class TokenCache {
+    cachePath;
+    constructor(customPath) {
+        this.cachePath = customPath || path.join(CACHE_DIR, CACHE_FILE);
+    }
+    /**
+     * Ensure cache directory exists with proper permissions
+     */
+    ensureDirectory() {
+        const dir = path.dirname(this.cachePath);
+        if (!fs.existsSync(dir)) {
+            fs.mkdirSync(dir, { recursive: true, mode: 0o700 });
+        }
+    }
+    /**
+     * Read cache file
+     */
+    readCache() {
+        try {
+            if (!fs.existsSync(this.cachePath)) {
+                return { version: TOKEN_CACHE_VERSION, tokens: {} };
+            }
+            const content = fs.readFileSync(this.cachePath, 'utf-8');
+            const cache = JSON.parse(content);
+            // Check version compatibility
+            if (cache.version !== TOKEN_CACHE_VERSION) {
+                // Future: handle migration
+                return { version: TOKEN_CACHE_VERSION, tokens: {} };
+            }
+            return cache;
+        }
+        catch {
+            return { version: TOKEN_CACHE_VERSION, tokens: {} };
+        }
+    }
+    /**
+     * Write cache file with 0600 permissions
+     */
+    writeCache(cache) {
+        this.ensureDirectory();
+        const content = JSON.stringify(cache, null, 2);
+        // Write with restricted permissions (owner read/write only)
+        fs.writeFileSync(this.cachePath, content, { mode: 0o600 });
+    }
+    /**
+     * Save tokens for a region
+     * Note: Only one region can be logged in at a time.
+     * Logging into a new region will automatically clear the other region's tokens.
+     */
+    save(region, tokens, userInfo, env) {
+        const cache = this.readCache();
+        // Clear all existing tokens - only one region can be logged in at a time
+        cache.tokens = {};
+        const cachedToken = {
+            access_token: tokens.access_token,
+            id_token: tokens.id_token,
+            refresh_token: tokens.refresh_token,
+            token_type: tokens.token_type,
+            expires_in: tokens.expires_in,
+            obtained_at: Date.now(),
+            user_info: userInfo,
+        };
+        cache.tokens[region] = cachedToken;
+        cache.active_region = region;
+        cache.active_env = env ?? cache.active_env ?? 'prod';
+        this.writeCache(cache);
+    }
+    /**
+     * Load tokens for a region
+     */
+    load(region) {
+        const cache = this.readCache();
+        return cache.tokens[region] || null;
+    }
+    /**
+     * Check if token for a region is valid (not expired)
+     */
+    isValid(region) {
+        const token = this.load(region);
+        if (!token)
+            return false;
+        const age = Date.now() - token.obtained_at;
+        const expiresInMs = token.expires_in * 1000;
+        return age < expiresInMs;
+    }
+    /**
+     * Check if token needs refresh (within threshold)
+     */
+    needsRefresh(region) {
+        const token = this.load(region);
+        if (!token)
+            return false;
+        const age = Date.now() - token.obtained_at;
+        const expiresInMs = token.expires_in * 1000;
+        const remaining = expiresInMs - age;
+        return remaining > 0 && remaining < REFRESH_THRESHOLD_MS;
+    }
+    /**
+     * Clear tokens for a region
+     */
+    clear(region) {
+        const cache = this.readCache();
+        delete cache.tokens[region];
+        // Clear active region if it was the cleared region
+        if (cache.active_region === region) {
+            cache.active_region = undefined;
+            cache.active_env = undefined;
+        }
+        this.writeCache(cache);
+    }
+    /**
+     * Clear all tokens
+     */
+    clearAll() {
+        this.writeCache({ version: TOKEN_CACHE_VERSION, tokens: {} });
+    }
+    /**
+     * Get the currently active region
+     */
+    getActiveRegion() {
+        const cache = this.readCache();
+        return cache.active_region || null;
+    }
+    /**
+     * Get the currently active environment
+     */
+    getActiveEnv() {
+        const cache = this.readCache();
+        return cache.active_env || 'prod';
+    }
+    /**
+     * Set the active environment
+     */
+    setActiveEnv(env) {
+        const cache = this.readCache();
+        cache.active_env = env;
+        this.writeCache(cache);
+    }
+    /**
+     * Set the active region
+     */
+    setActiveRegion(region) {
+        const cache = this.readCache();
+        cache.active_region = region;
+        this.writeCache(cache);
+    }
+    /**
+     * Get access token for a region (if valid)
+     */
+    getAccessToken(region) {
+        if (!this.isValid(region))
+            return null;
+        const token = this.load(region);
+        return token?.access_token || null;
+    }
+    /**
+     * Get refresh token for a region
+     */
+    getRefreshToken(region) {
+        const token = this.load(region);
+        return token?.refresh_token || null;
+    }
+    /**
+     * Get user info for a region
+     */
+    getUserInfo(region) {
+        const token = this.load(region);
+        return token?.user_info || null;
+    }
+    /**
+     * Get cache file path (for display)
+     */
+    getCachePath() {
+        return this.cachePath;
+    }
+}
+// Export singleton instance
+export const tokenCache = new TokenCache();
+//# sourceMappingURL=TokenCache.js.map

package/out/auth/TokenCache.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TokenCache.js","sourceRoot":"","sources":["../../src/auth/TokenCache.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,EACL,mBAAmB,EACnB,oBAAoB,GACrB,MAAM,iBAAiB,CAAC;AAUzB,8BAA8B;AAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,gBAAgB,EAAE,MAAM,CAAC,CAAC;AAEpE,8BAA8B;AAC9B,MAAM,UAAU,GAAG,kBAAkB,CAAC;AAEtC,MAAM,OAAO,UAAU;IACb,SAAS,CAAS;IAE1B,YAAY,UAAmB;QAC7B,IAAI,CAAC,SAAS,GAAG,UAAU,IAAI,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IAClE,CAAC;IAED;;OAEG;IACK,eAAe;QACrB,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACzC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;OAEG;IACK,SAAS;QACf,IAAI,CAAC;YACH,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;gBACnC,OAAO,EAAE,OAAO,EAAE,mBAAmB,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;YACtD,CAAC;YACD,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YACzD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAmB,CAAC;YAEpD,8BAA8B;YAC9B,IAAI,KAAK,CAAC,OAAO,KAAK,mBAAmB,EAAE,CAAC;gBAC1C,2BAA2B;gBAC3B,OAAO,EAAE,OAAO,EAAE,mBAAmB,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;YACtD,CAAC;YAED,OAAO,KAAK,CAAC;QACf,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,OAAO,EAAE,mBAAmB,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;OAEG;IACK,UAAU,CAAC,KAAqB;QACtC,IAAI,CAAC,eAAe,EAAE,CAAC;QACvB,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAE/C,4DAA4D;QAC5D,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED;;;;OAIG;IACH,IAAI,CAAC,MAAkB,EAAE,MAAgB,EAAE,QAAkB,EAAE,GAAqB;QAClF,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAE/B,yEAAyE;QACzE,KAAK,CAAC,MAAM,GAAG,EAAE,CAAC;QAElB,MAAM,WAAW,GAAgB;YAC/B,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,aAAa,EAAE,MAAM,CAAC,aAAa;YACnC,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,WAAW,EAAE,IAAI,CAAC,GAAG,EAAE;YACvB,SAAS,EAAE,QAAQ;SACpB,CAAC;QAEF,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,WAAW,CAAC;QACnC,KAAK,CAAC,aAAa,GAAG,MAAM,CAAC;QAC7B,KAAK,CAAC,UAAU,GAAG,GAAG,IAAI,KAAK,CAAC,UAAU,IAAI,MAAM,CAAC;QAErD,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,IAAI,CAAC,MAAkB;QACrB,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,MAAkB;QACxB,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,KAAK;YAAE,OAAO,KAAK,CAAC;QAEzB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,WAAW,CAAC;QAC3C,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,IAAI,CAAC;QAE5C,OAAO,GAAG,GAAG,WAAW,CAAC;IAC3B,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,MAAkB;QAC7B,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,KAAK;YAAE,OAAO,KAAK,CAAC;QAEzB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,WAAW,CAAC;QAC3C,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,IAAI,CAAC;QAC5C,MAAM,SAAS,GAAG,WAAW,GAAG,GAAG,CAAC;QAEpC,OAAO,SAAS,GAAG,CAAC,IAAI,SAAS,GAAG,oBAAoB,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAkB;QACtB,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAE5B,mDAAmD;QACnD,IAAI,KAAK,CAAC,aAAa,KAAK,MAAM,EAAE,CAAC;YACnC,KAAK,CAAC,aAAa,GAAG,SAAS,CAAC;YAChC,KAAK,CAAC,UAAU,GAAG,SAAS,CAAC;QAC/B,CAAC;QAED,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,QAAQ;QACN,IAAI,CAAC,UAAU,CAAC,EAAE,OAAO,EAAE,mBAAmB,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAChE,CAAC;IAED;;OAEG;IACH,eAAe;QACb,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC,aAAa,IAAI,IAAI,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,YAAY;QACV,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC,UAAU,IAAI,MAAM,CAAC;IACpC,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,GAAoB;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,KAAK,CAAC,UAAU,GAAG,GAAG,CAAC;QACvB,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,MAAkB;QAChC,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,KAAK,CAAC,aAAa,GAAG,MAAM,CAAC;QAC7B,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,cAAc,CAAC,MAAkB;QAC/B,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC;YAAE,OAAO,IAAI,CAAC;QACvC,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChC,OAAO,KAAK,EAAE,YAAY,IAAI,IAAI,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,MAAkB;QAChC,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChC,OAAO,KAAK,EAAE,aAAa,IAAI,IAAI,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,MAAkB;QAC5B,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChC,OAAO,KAAK,EAAE,SAAS,IAAI,IAAI,CAAC;IAClC,CAAC;IAED;;OAEG;IACH,YAAY;QACV,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;CACF;AAED,4BAA4B;AAC5B,MAAM,CAAC,MAAM,UAAU,GAAG,IAAI,UAAU,EAAE,CAAC"}

package/out/auth/index.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Auth module exports
+ */
+export type { AuthRegion, AuthEnvironment, TokenSet, UserInfo, CachedToken, TokenCacheFile, PKCEParams, AuthUrlResult, CallbackResult, LoginResult, AuthErrorCode, } from './types.js';
+export { AuthError } from './types.js';
+export { AUTH_CONFIG, REDIRECT_URI, CALLBACK_PORT, SCOPES, LOGIN_TIMEOUT_MS, REFRESH_THRESHOLD_MS, TOKEN_CACHE_VERSION, getOIDCEndpoints, isValidRegion, isValidEnvironment, getApiBaseUrl, DEFAULT_ENVIRONMENT, } from './AuthConfig.js';
+export type { RegionConfig } from './AuthConfig.js';
+export { TokenCache, tokenCache } from './TokenCache.js';
+export { startCallbackServer, isPortAvailable } from './CallbackServer.js';
+export { AuthService, createAuthService, maskToken } from './AuthService.js';
+//# sourceMappingURL=index.d.ts.map

package/out/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,YAAY,EACV,UAAU,EACV,eAAe,EACf,QAAQ,EACR,QAAQ,EACR,WAAW,EACX,cAAc,EACd,UAAU,EACV,aAAa,EACb,cAAc,EACd,WAAW,EACX,aAAa,GACd,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAGvC,OAAO,EACL,WAAW,EACX,YAAY,EACZ,aAAa,EACb,MAAM,EACN,gBAAgB,EAChB,oBAAoB,EACpB,mBAAmB,EACnB,gBAAgB,EAChB,aAAa,EACb,kBAAkB,EAClB,aAAa,EACb,mBAAmB,GACpB,MAAM,iBAAiB,CAAC;AAEzB,YAAY,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAGpD,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAGzD,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AAG3E,OAAO,EAAE,WAAW,EAAE,iBAAiB,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC"}

package/out/auth/index.js

@@ -0,0 +1,13 @@
+/**
+ * Auth module exports
+ */
+export { AuthError } from './types.js';
+// Config
+export { AUTH_CONFIG, REDIRECT_URI, CALLBACK_PORT, SCOPES, LOGIN_TIMEOUT_MS, REFRESH_THRESHOLD_MS, TOKEN_CACHE_VERSION, getOIDCEndpoints, isValidRegion, isValidEnvironment, getApiBaseUrl, DEFAULT_ENVIRONMENT, } from './AuthConfig.js';
+// Token cache
+export { TokenCache, tokenCache } from './TokenCache.js';
+// Callback server
+export { startCallbackServer, isPortAvailable } from './CallbackServer.js';
+// Auth service
+export { AuthService, createAuthService, maskToken } from './AuthService.js';
+//# sourceMappingURL=index.js.map

package/out/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAiBH,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAEvC,SAAS;AACT,OAAO,EACL,WAAW,EACX,YAAY,EACZ,aAAa,EACb,MAAM,EACN,gBAAgB,EAChB,oBAAoB,EACpB,mBAAmB,EACnB,gBAAgB,EAChB,aAAa,EACb,kBAAkB,EAClB,aAAa,EACb,mBAAmB,GACpB,MAAM,iBAAiB,CAAC;AAIzB,cAAc;AACd,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAEzD,kBAAkB;AAClB,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AAE3E,eAAe;AACf,OAAO,EAAE,WAAW,EAAE,iBAAiB,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC"}

package/out/auth/types.d.ts

@@ -0,0 +1,75 @@
+/**
+ * Auth module type definitions
+ */
+/** Supported authentication regions */
+export type AuthRegion = 'cn' | 'us';
+/** Supported environments */
+export type AuthEnvironment = 'prod' | 'staging';
+/** OAuth token set returned from Authing */
+export interface TokenSet {
+    access_token: string;
+    id_token: string;
+    refresh_token?: string;
+    token_type: string;
+    expires_in: number;
+}
+/** User information from Authing userInfo endpoint */
+export interface UserInfo {
+    sub: string;
+    email?: string;
+    email_verified?: boolean;
+    name?: string;
+    nickname?: string;
+    picture?: string;
+    preferred_username?: string;
+}
+/** Cached token with metadata */
+export interface CachedToken {
+    access_token: string;
+    id_token: string;
+    refresh_token?: string;
+    token_type: string;
+    expires_in: number;
+    obtained_at: number;
+    user_info: UserInfo;
+}
+/** Token cache file structure */
+export interface TokenCacheFile {
+    version: number;
+    tokens: Partial<Record<AuthRegion, CachedToken>>;
+    active_region?: AuthRegion;
+    active_env?: AuthEnvironment;
+}
+/** PKCE parameters */
+export interface PKCEParams {
+    verifier: string;
+    challenge: string;
+    state: string;
+}
+/** Authorization URL result */
+export interface AuthUrlResult {
+    url: string;
+    state: string;
+    verifier: string;
+}
+/** OAuth callback result */
+export interface CallbackResult {
+    code: string;
+    state: string;
+}
+/** Login result */
+export interface LoginResult {
+    tokens: TokenSet;
+    userInfo: UserInfo;
+    region: AuthRegion;
+    environment?: AuthEnvironment;
+}
+/** Auth error codes */
+export type AuthErrorCode = 'AUTH_BROWSER_FAILED' | 'AUTH_CALLBACK_TIMEOUT' | 'AUTH_STATE_MISMATCH' | 'AUTH_TOKEN_EXCHANGE_FAILED' | 'AUTH_USER_SYNC_FAILED' | 'AUTH_REFRESH_FAILED' | 'AUTH_INVALID_REGION' | 'AUTH_PORT_IN_USE';
+/** Custom auth error */
+export declare class AuthError extends Error {
+    code: AuthErrorCode;
+    cause?: Error | undefined;
+    constructor(code: AuthErrorCode, message: string, cause?: Error | undefined);
+}
+//# sourceMappingURL=types.d.ts.map