@thunderid/nuxt 0.2.0 → 0.2.2

package/dist/module.json

@@ -1,7 +1,7 @@
 {
   "configKey": "thunderid",
   "name": "@thunderid/nuxt",
-  "version": "0.2.0",
+  "version": "0.2.2",
   "builder": {
     "@nuxt/module-builder": "1.0.1",
     "unbuild": "unknown"

package/dist/module.mjs

@@ -103,33 +103,6 @@ const module$1 = defineNuxtModule({
         method: "patch",
         route: "/api/auth/user/profile"
       },
-      // ── Organisations ─────────────────────────────────────────────────
-      {
-        handler: resolve("./runtime/server/routes/auth/organizations/index.get"),
-        route: "/api/auth/organizations"
-      },
-      {
-        handler: resolve("./runtime/server/routes/auth/organizations/index.post"),
-        method: "post",
-        route: "/api/auth/organizations"
-      },
-      {
-        handler: resolve("./runtime/server/routes/auth/organizations/me.get"),
-        route: "/api/auth/organizations/me"
-      },
-      {
-        handler: resolve("./runtime/server/routes/auth/organizations/current.get"),
-        route: "/api/auth/organizations/current"
-      },
-      {
-        handler: resolve("./runtime/server/routes/auth/organizations/id.get"),
-        route: "/api/auth/organizations/:id"
-      },
-      {
-        handler: resolve("./runtime/server/routes/auth/organizations/switch.post"),
-        method: "post",
-        route: "/api/auth/organizations/switch"
-      },
       // ── Branding ──────────────────────────────────────────────────────
       { handler: resolve("./runtime/server/routes/auth/branding/branding.get"), route: "/api/auth/branding" }
     ];
@@ -147,11 +120,9 @@ const module$1 = defineNuxtModule({
       { from: resolve("./runtime/composables/useThunderID"), name: "useThunderID" },
       // Composables from @thunderid/vue — auto-imported directly, no local wrappers
       { from: "@thunderid/vue", name: "useUser" },
-      { from: "@thunderid/vue", name: "useOrganization" },
       { from: "@thunderid/vue", name: "useFlow" },
       { from: "@thunderid/vue", name: "useFlowMeta" },
       { from: "@thunderid/vue", name: "useTheme" },
-      { from: "@thunderid/vue", name: "useBranding" },
       // useI18n aliased to `useThunderIDI18n` to avoid collision with @nuxtjs/i18n
       { as: "useThunderIDI18n", from: "@thunderid/vue", name: "useI18n" },
       // Middleware factory
@@ -172,23 +143,6 @@ const module$1 = defineNuxtModule({
     addComponent({ filePath: resolve("./runtime/components/user/User"), name: "ThunderIDUser" });
     addComponent({ filePath: resolve("./runtime/components/user/UserProfile"), name: "ThunderIDUserProfile" });
     addComponent({ filePath: resolve("./runtime/components/user/UserDropdown"), name: "ThunderIDUserDropdown" });
-    addComponent({ filePath: resolve("./runtime/components/organization/Organization"), name: "ThunderIDOrganization" });
-    addComponent({
-      filePath: resolve("./runtime/components/organization/OrganizationProfile"),
-      name: "ThunderIDOrganizationProfile"
-    });
-    addComponent({
-      filePath: resolve("./runtime/components/organization/OrganizationSwitcher"),
-      name: "ThunderIDOrganizationSwitcher"
-    });
-    addComponent({
-      filePath: resolve("./runtime/components/organization/OrganizationList"),
-      name: "ThunderIDOrganizationList"
-    });
-    addComponent({
-      filePath: resolve("./runtime/components/organization/CreateOrganization"),
-      name: "ThunderIDCreateOrganization"
-    });
     addComponent({ filePath: resolve("./runtime/components/auth/Callback"), name: "ThunderIDCallback" });
     extendViteConfig(
       (viteConfig) => {

package/dist/runtime/components/ThunderIDRoot.d.ts

@@ -24,19 +24,15 @@ import { type Component } from 'vue';
  * data as props to each Vue provider:
  *
  * - {@link I18nProvider}      ← `preferences.i18n`
- * - {@link BrandingProvider}  ← `brandingPreference` (from `thunderid:branding`)
- * - {@link ThemeProvider}     ← `inheritFromBranding`, `mode`
+ * - {@link ThemeProvider}     ← `mode`
  * - {@link FlowProvider}
  * - {@link UserProvider}      ← `profile`, `flattenedProfile`, `schemas`,
  *                               `updateProfile`, `revalidateProfile`, `onUpdateProfile`
- * - {@link OrganizationProvider} ← `currentOrganization`, `myOrganizations`,
- *                                  `onOrganizationSwitch`, `getAllOrganizations`,
- *                                  `revalidateMyOrganizations`
  *
  * The `THUNDERID_KEY` (config + auth state + actions) is still provided at the
  * app level by the Nuxt plugin; this component only supplies the auxiliary
- * provider contexts so downstream composables (`useUser`, `useOrganization`,
- * `useTheme`, `useBranding`, `useThunderIDI18n`) receive real data.
+ * provider contexts so downstream composables (`useUser`, `useTheme`,
+ * `useThunderIDI18n`) receive real data.
  *
  * @example
  * ```vue

package/dist/runtime/components/ThunderIDRoot.js

@@ -1,27 +1,14 @@
 import { generateFlattenedUserProfile } from "@thunderid/browser";
-import {
-  BrandingProvider,
-  FlowMetaProvider,
-  FlowProvider,
-  I18nProvider,
-  OrganizationProvider,
-  ThemeProvider,
-  UserProvider
-} from "@thunderid/vue";
+import { FlowMetaProvider, FlowProvider, I18nProvider, ThemeProvider, UserProvider } from "@thunderid/vue";
 import { defineComponent, h } from "vue";
 import { useState, useRuntimeConfig } from "#imports";
 const ThunderIDRoot = defineComponent({
   name: "ThunderIDRoot",
   setup(_props, { slots }) {
     const userProfileState = useState("thunderid:user-profile");
-    const currentOrgState = useState("thunderid:current-org");
-    const myOrgsState = useState("thunderid:my-orgs");
-    const brandingState = useState("thunderid:branding");
     const authState = useState("thunderid:auth");
     const prefs = useRuntimeConfig().public.thunderid?.preferences;
     const shouldFetchProfile = prefs?.user?.fetchUserProfile !== false;
-    const shouldFetchOrgs = prefs?.user?.fetchOrganizations !== false;
-    const shouldFetchBranding = prefs?.theme?.inheritFromBranding !== false;
     const themeMode = prefs?.theme?.mode ?? "light";
     const onUpdateProfile = (payload) => {
       const prev = userProfileState.value;
@@ -59,34 +46,6 @@ const ThunderIDRoot = defineComponent({
       } catch {
       }
     };
-    const onOrganizationSwitch = async (organization) => $fetch("/api/auth/organizations/switch", { body: { organization }, method: "POST" });
-    const getAllOrganizations = async () => $fetch("/api/auth/organizations");
-    const revalidateMyOrganizations = async () => {
-      try {
-        const res = await $fetch("/api/auth/organizations/me");
-        myOrgsState.value = res ?? [];
-        return myOrgsState.value;
-      } catch {
-        return myOrgsState.value;
-      }
-    };
-    const createOrganization = async (payload) => $fetch("/api/auth/organizations", { body: payload, method: "POST" });
-    const revalidateCurrentOrganization = async () => {
-      try {
-        const res = await $fetch("/api/auth/organizations/current");
-        currentOrgState.value = res ?? null;
-        return currentOrgState.value;
-      } catch {
-        return currentOrgState.value;
-      }
-    };
-    const revalidateBranding = async () => {
-      try {
-        const res = await $fetch("/api/auth/branding");
-        if (res) brandingState.value = res;
-      } catch {
-      }
-    };
     return () => h(
       I18nProvider,
       { preferences: prefs?.i18n },
@@ -96,59 +55,30 @@ const ThunderIDRoot = defineComponent({
           { enabled: false },
           {
             default: () => h(
-              BrandingProvider,
+              ThemeProvider,
               {
-                // When inheritFromBranding is disabled, pass null so the provider
-                // falls back to its own default theme without using SSR-fetched data.
-                brandingPreference: shouldFetchBranding ? brandingState.value : null,
-                revalidateBranding: shouldFetchBranding ? revalidateBranding : void 0
+                mode: themeMode
               },
               {
-                default: () => h(
-                  ThemeProvider,
-                  {
-                    // Mirror the same flag used in the Nitro plugin gate.
-                    inheritFromBranding: shouldFetchBranding,
-                    mode: themeMode
-                  },
-                  {
-                    default: () => h(FlowProvider, null, {
-                      default: () => h(
-                        UserProvider,
-                        {
-                          // When fetchUserProfile is false the Nitro plugin
-                          // skips SCIM calls, so we must also pass empty values
-                          // here to keep SSR and client in sync.
-                          flattenedProfile: shouldFetchProfile ? userProfileState.value?.flattenedProfile ?? null : null,
-                          onUpdateProfile: shouldFetchProfile ? onUpdateProfile : void 0,
-                          profile: shouldFetchProfile ? userProfileState.value : null,
-                          revalidateProfile: shouldFetchProfile ? revalidateProfile : void 0,
-                          schemas: shouldFetchProfile ? userProfileState.value?.schemas ?? null : null,
-                          updateProfile: shouldFetchProfile ? updateProfile : void 0
-                        },
-                        {
-                          default: () => h(
-                            OrganizationProvider,
-                            {
-                              // When fetchOrganizations is false pass empty
-                              // values so the provider renders without org data.
-                              createOrganization: shouldFetchOrgs ? createOrganization : void 0,
-                              currentOrganization: shouldFetchOrgs ? currentOrgState.value : null,
-                              getAllOrganizations: shouldFetchOrgs ? getAllOrganizations : void 0,
-                              myOrganizations: shouldFetchOrgs ? myOrgsState.value : [],
-                              onOrganizationSwitch: shouldFetchOrgs ? onOrganizationSwitch : void 0,
-                              revalidateCurrentOrganization: shouldFetchOrgs ? revalidateCurrentOrganization : void 0,
-                              revalidateMyOrganizations: shouldFetchOrgs ? revalidateMyOrganizations : void 0
-                            },
-                            {
-                              default: () => slots.default?.()
-                            }
-                          )
-                        }
-                      )
-                    })
-                  }
-                )
+                default: () => h(FlowProvider, null, {
+                  default: () => h(
+                    UserProvider,
+                    {
+                      // When fetchUserProfile is false the Nitro plugin
+                      // skips SCIM calls, so we must also pass empty values
+                      // here to keep SSR and client in sync.
+                      flattenedProfile: shouldFetchProfile ? userProfileState.value?.flattenedProfile ?? null : null,
+                      onUpdateProfile: shouldFetchProfile ? onUpdateProfile : void 0,
+                      profile: shouldFetchProfile ? userProfileState.value : null,
+                      revalidateProfile: shouldFetchProfile ? revalidateProfile : void 0,
+                      schemas: shouldFetchProfile ? userProfileState.value?.schemas ?? null : null,
+                      updateProfile: shouldFetchProfile ? updateProfile : void 0
+                    },
+                    {
+                      default: () => slots.default?.()
+                    }
+                  )
+                })
               }
             )
           }

package/dist/runtime/components/auth/SignUp.js

@@ -1,8 +1,5 @@
 import { navigateTo } from "#app";
-import {
-  EmbeddedFlowResponseType,
-  EmbeddedFlowType
-} from "@thunderid/browser";
+import { EmbeddedFlowResponseType, EmbeddedFlowType } from "@thunderid/browser";
 import { BaseSignUp } from "@thunderid/vue";
 import { defineComponent, h } from "vue";
 import { useThunderID } from "#imports";

package/dist/runtime/composables/useThunderID.js

@@ -24,7 +24,7 @@ export function useThunderID() {
         }
         return {
           authData: {},
-          flowStatus: EmbeddedSignInFlowStatus.SuccessCompleted
+          flowStatus: EmbeddedSignInFlowStatus.Complete
         };
       }
       return res.data;
@@ -41,17 +41,6 @@ export function useThunderID() {
   };
   const signUp = async (...args) => {
     const payload = args[0];
-    if (payload && typeof payload === "object" && "flowType" in payload) {
-      const res = await $fetch("/api/auth/signup", {
-        body: { payload },
-        method: "POST"
-      });
-      if (res.data?.afterSignUpUrl) {
-        await navigateTo(res.data.afterSignUpUrl, { external: false });
-        return void 0;
-      }
-      return res.data;
-    }
     const cfg = useRuntimeConfig().public.thunderid ?? {};
     if (cfg.signUpUrl) {
       await navigateTo(cfg.signUpUrl, { external: true });

package/dist/runtime/errors/error-codes.d.ts

@@ -27,8 +27,6 @@ export declare enum ErrorCode {
     OAuthCallbackError = "oauth/callback-error",
     OAuthStateInvalid = "oauth/state-invalid",
     OpenRedirectBlocked = "security/open-redirect-blocked",
-    OrganizationCreateFailed = "organization/create-failed",
-    OrganizationSwitchFailed = "organization/switch-failed",
     SessionExpired = "session/expired",
     SessionInvalid = "session/invalid",
     SessionMissing = "session/missing",

package/dist/runtime/errors/error-codes.js

@@ -5,8 +5,6 @@ export var ErrorCode = /* @__PURE__ */ ((ErrorCode2) => {
   ErrorCode2["OAuthCallbackError"] = "oauth/callback-error";
   ErrorCode2["OAuthStateInvalid"] = "oauth/state-invalid";
   ErrorCode2["OpenRedirectBlocked"] = "security/open-redirect-blocked";
-  ErrorCode2["OrganizationCreateFailed"] = "organization/create-failed";
-  ErrorCode2["OrganizationSwitchFailed"] = "organization/switch-failed";
   ErrorCode2["SessionExpired"] = "session/expired";
   ErrorCode2["SessionInvalid"] = "session/invalid";
   ErrorCode2["SessionMissing"] = "session/missing";

package/dist/runtime/plugins/thunderid.d.ts

@@ -29,9 +29,8 @@
  *     Action helpers (`signIn` / `signOut` / `signUp`) use Nuxt's
  *     `navigateTo` so redirects work on both server and client.
  *  3. **ThunderIDRoot** — register the wrapper component that mounts the rest
- *     of the provider tree (`I18nProvider`, `BrandingProvider`,
- *     `ThemeProvider`, `FlowProvider`, `UserProvider`, `OrganizationProvider`)
- *     so downstream composables receive real context values.
+ *     of the provider tree (`I18nProvider`, `ThemeProvider`, `FlowProvider`,
+ *     `UserProvider`) so downstream composables receive real context values.
  *  4. **ThunderIDPlugin (delegated)** — install the Vue SDK plugin in
  *     delegated mode so it skips browser-only initialisation (SSR-safe).
  */

package/dist/runtime/plugins/thunderid.js

@@ -1,8 +1,8 @@
-import { defineNuxtPlugin, useState, useRequestEvent, useRuntimeConfig, navigateTo } from "#app";
 import { getRedirectBasedSignUpUrl } from "@thunderid/browser";
 import { ThunderIDPlugin, THUNDERID_KEY } from "@thunderid/vue";
 import { computed } from "vue";
 import ThunderIDRoot from "../components/ThunderIDRoot.js";
+import { defineNuxtPlugin, useState, useRequestEvent, useRuntimeConfig, navigateTo } from "#app";
 export default defineNuxtPlugin((nuxtApp) => {
   const publicConfig = useRuntimeConfig().public.thunderid;
   if (import.meta.client && import.meta.dev) {
@@ -18,12 +18,6 @@ export default defineNuxtPlugin((nuxtApp) => {
     user: null
   }));
   const userProfileState = useState("thunderid:user-profile", () => null);
-  const currentOrgState = useState("thunderid:current-org", () => null);
-  const myOrgsState = useState("thunderid:my-orgs", () => []);
-  const brandingState = useState(
-    "thunderid:branding",
-    () => null
-  );
   if (import.meta.server) {
     const event = useRequestEvent();
     const ssr = event?.context?.thunderid?.ssr;
@@ -34,9 +28,6 @@ export default defineNuxtPlugin((nuxtApp) => {
         user: ssr.user
       };
       userProfileState.value = ssr.userProfile;
-      currentOrgState.value = ssr.currentOrganization;
-      myOrgsState.value = ssr.myOrganizations;
-      brandingState.value = ssr.brandingPreference;
     } else {
       const ssrContext = event?.context?.thunderid;
       if (ssrContext) {
@@ -58,7 +49,6 @@ export default defineNuxtPlugin((nuxtApp) => {
   const isLoading = computed(() => authState.value.isLoading);
   const isInitialized = computed(() => !authState.value.isLoading);
   const user = computed(() => authState.value.user ?? null);
-  const organizationRef = computed(() => currentOrgState.value);
   const signIn = async (options) => {
     const returnTo = typeof options?.returnTo === "string" ? options.returnTo : void 0;
     const url = returnTo ? `/api/auth/signin?returnTo=${encodeURIComponent(returnTo)}` : "/api/auth/signin";
@@ -108,7 +98,6 @@ export default defineNuxtPlugin((nuxtApp) => {
     isInitialized,
     isLoading,
     isSignedIn,
-    organization: organizationRef,
     organizationHandle: publicConfig.organizationHandle,
     platform: void 0,
     reInitialize: async () => false,
@@ -121,7 +110,6 @@ export default defineNuxtPlugin((nuxtApp) => {
     signUp,
     signUpUrl: publicConfig.signUpUrl,
     storage: void 0,
-    switchOrganization: noop,
     user
   });
   nuxtApp.vueApp.component("ThunderIDRoot", ThunderIDRoot);

package/dist/runtime/server/ThunderIDNuxtClient.d.ts

@@ -15,7 +15,7 @@
  * specific language governing permissions and limitations
  * under the License.
  */
-import { ThunderIDNodeClient, type IdToken, type Organization, type OrganizationDetails, type CreateOrganizationPayload, type Storage, type TokenExchangeRequestConfig, type TokenResponse, type User, type UserProfile, type UpdateMeProfileConfig, type AllOrganizationsApiResponse, type EmbeddedFlowExecuteRequestPayload, type EmbeddedFlowExecuteResponse, type ExtendedAuthorizeRequestUrlParams, type SignUpOptions, type GetBrandingPreferenceConfig, type BrandingPreference } from '@thunderid/node';
+import { ThunderIDNodeClient, type IdToken, type Storage, type TokenExchangeRequestConfig, type TokenResponse, type User, type UserProfile, type UpdateMeProfileConfig, type ExtendedAuthorizeRequestUrlParams, type SignUpOptions } from '@thunderid/node';
 import type { ThunderIDNuxtConfig, ThunderIDSessionPayload } from '../types.js';
 declare class ThunderIDNuxtClient extends ThunderIDNodeClient<ThunderIDNuxtConfig> {
     private static instance;
@@ -26,8 +26,7 @@ declare class ThunderIDNuxtClient extends ThunderIDNodeClient<ThunderIDNuxtConfi
     reInitialize(config: Partial<ThunderIDNuxtConfig>): Promise<boolean>;
     rehydrateSessionFromPayload(session: ThunderIDSessionPayload): Promise<void>;
     signIn(...args: any[]): Promise<any>;
-    signUp(options?: SignUpOptions): Promise<void>;
-    signUp(payload: EmbeddedFlowExecuteRequestPayload): Promise<EmbeddedFlowExecuteResponse>;
+    signUp(_options?: SignUpOptions): Promise<void>;
     getAuthorizeRequestUrl(customParams: ExtendedAuthorizeRequestUrlParams, userId?: string): Promise<string>;
     signOut(...args: any[]): Promise<string>;
     getUser(sessionId?: string): Promise<User>;
@@ -36,14 +35,7 @@ declare class ThunderIDNuxtClient extends ThunderIDNodeClient<ThunderIDNuxtConfi
     isSignedIn(sessionId?: string): Promise<boolean>;
     exchangeToken(config: TokenExchangeRequestConfig, sessionId?: string): Promise<TokenResponse | Response>;
     getUserProfile(sessionId: string): Promise<UserProfile>;
-    getCurrentOrganization(sessionId: string): Promise<Organization | null>;
-    getMyOrganizations(sessionId: string): Promise<Organization[]>;
-    getBrandingPreference(config: GetBrandingPreferenceConfig): Promise<BrandingPreference>;
     updateUserProfile(config: UpdateMeProfileConfig, sessionId: string): Promise<User>;
-    getAllOrganizations(options?: any, sessionId?: string): Promise<AllOrganizationsApiResponse>;
-    createOrganization(payload: CreateOrganizationPayload, sessionId: string): Promise<Organization>;
-    getOrganization(organizationId: string, sessionId: string): Promise<OrganizationDetails>;
-    switchOrganization(organization: Organization, sessionId: string): Promise<TokenResponse | Response>;
     getStorageManager(): any;
 }
 export default ThunderIDNuxtClient;

package/dist/runtime/server/ThunderIDNuxtClient.js

@@ -1,13 +1,5 @@
 import {
-  ThunderIDNodeClient,
-  getBrandingPreference,
-  getMeOrganizations,
-  getAllOrganizations,
-  createOrganization,
-  getOrganization,
-  initializeEmbeddedSignInFlow,
-  executeEmbeddedSignInFlow,
-  executeEmbeddedSignUpFlow
+  ThunderIDNodeClient
 } from "@thunderid/node";
 class ThunderIDNuxtClient extends ThunderIDNodeClient {
   static instance;
@@ -66,25 +58,6 @@ class ThunderIDNuxtClient extends ThunderIDNodeClient {
   }
   signIn(...args) {
     const arg0 = args[0];
-    if (typeof arg0 === "object" && arg0 !== null && "flowId" in arg0) {
-      const sessionId = args[2];
-      if (arg0.flowId === "") {
-        return this.getSignInUrl({ client_secret: "{{clientSecret}}", response_mode: "direct" }, sessionId).then(
-          (authorizeUrl) => {
-            const url = new URL(authorizeUrl);
-            return initializeEmbeddedSignInFlow({
-              payload: Object.fromEntries(url.searchParams.entries()),
-              url: `${url.origin}${url.pathname}`
-            });
-          }
-        );
-      }
-      const request = args[1] ?? {};
-      return executeEmbeddedSignInFlow({
-        payload: arg0,
-        url: request.url
-      });
-    }
     if (typeof arg0 === "object" && arg0 !== null && ("code" in arg0 || "state" in arg0)) {
       const payload = arg0;
       const code = typeof payload.code === "string" ? payload.code : void 0;
@@ -98,17 +71,8 @@ class ThunderIDNuxtClient extends ThunderIDNodeClient {
     }
     return super.signIn(args[0], args[1], args[2], args[3], args[4], args[5]);
   }
-  async signUp(payloadOrOptions) {
-    if (!payloadOrOptions || !("flowType" in payloadOrOptions)) {
-      return void 0;
-    }
-    const configData = this.getStorageManager().getConfigData();
-    const baseUrl = configData?.baseUrl;
-    const response = await executeEmbeddedSignUpFlow({
-      baseUrl,
-      payload: payloadOrOptions
-    });
-    return response;
+  async signUp(_options) {
+    return void 0;
   }
   async getAuthorizeRequestUrl(customParams, userId) {
     return this.getSignInUrl(customParams, userId);
@@ -136,86 +100,9 @@ class ThunderIDNuxtClient extends ThunderIDNodeClient {
     const user = await this.getUser(sessionId);
     return { flattenedProfile: user, profile: user, schemas: [] };
   }
-  async getCurrentOrganization(sessionId) {
-    try {
-      const idToken = await this.getDecodedIdToken(sessionId);
-      if (!idToken?.org_id) {
-        return null;
-      }
-      return {
-        id: idToken.org_id,
-        name: idToken.org_name ?? "",
-        orgHandle: idToken.org_handle ?? ""
-      };
-    } catch {
-      return null;
-    }
-  }
-  async getMyOrganizations(sessionId) {
-    const accessToken = await this.getAccessToken(sessionId);
-    const configData = this.getStorageManager().getConfigData();
-    const baseUrl = configData?.baseUrl ?? "";
-    return getMeOrganizations({
-      baseUrl,
-      headers: { Authorization: `Bearer ${accessToken}` }
-    });
-  }
-  async getBrandingPreference(config) {
-    return getBrandingPreference(config);
-  }
   async updateUserProfile(config, sessionId) {
     throw new Error("Profile updates are not supported for the ThunderID platform.");
   }
-  async getAllOrganizations(options, sessionId) {
-    const resolvedSessionId = sessionId ?? "";
-    const accessToken = await this.getAccessToken(resolvedSessionId);
-    const configData = this.getStorageManager().getConfigData();
-    const baseUrl = configData?.baseUrl ?? "";
-    return getAllOrganizations({
-      baseUrl,
-      headers: { Authorization: `Bearer ${accessToken}` }
-    });
-  }
-  async createOrganization(payload, sessionId) {
-    const accessToken = await this.getAccessToken(sessionId);
-    const configData = this.getStorageManager().getConfigData();
-    const baseUrl = configData?.baseUrl ?? "";
-    return createOrganization({
-      baseUrl,
-      headers: { Authorization: `Bearer ${accessToken}` },
-      payload
-    });
-  }
-  async getOrganization(organizationId, sessionId) {
-    const accessToken = await this.getAccessToken(sessionId);
-    const configData = this.getStorageManager().getConfigData();
-    const baseUrl = configData?.baseUrl ?? "";
-    return getOrganization({
-      baseUrl,
-      headers: { Authorization: `Bearer ${accessToken}` },
-      organizationId
-    });
-  }
-  async switchOrganization(organization, sessionId) {
-    if (!organization.id) {
-      throw new Error("Organization ID is required for switching organizations.");
-    }
-    const exchangeConfig = {
-      attachToken: false,
-      data: {
-        client_id: "{{clientId}}",
-        client_secret: "{{clientSecret}}",
-        grant_type: "organization_switch",
-        scope: "{{scopes}}",
-        switching_organization: organization.id,
-        token: "{{accessToken}}"
-      },
-      id: "organization-switch",
-      returnsSession: true,
-      signInRequired: true
-    };
-    return this.exchangeToken(exchangeConfig, sessionId);
-  }
   getStorageManager() {
     return super.getStorageManager();
   }

package/dist/runtime/server/plugins/thunderid-ssr.d.ts

@@ -27,12 +27,10 @@
  *    within an organisation.
  * 4. In parallel (gated by `preferences`):
  *    - Fetches user + SCIM2 user profile  (`preferences.user.fetchUserProfile !== false`)
- *    - Fetches current org + my orgs      (`preferences.user.fetchOrganizations !== false`)
- *    - Fetches branding preference        (`preferences.theme.inheritFromBranding !== false`)
  * 5. Writes the full {@link ThunderIDSSRData} to `event.context.thunderid.ssr`
  *    so the Nuxt plugin can seed `useState` keys for zero-cost hydration.
  *
- * Each fetch is individually wrapped in try/catch so a broken SCIM or branding
+ * Each fetch is individually wrapped in try/catch so a broken SCIM
  * call never crashes SSR — the client layer can recover via the existing
  * `/api/auth/*` routes.
  */

package/dist/runtime/server/plugins/thunderid-ssr.js

@@ -84,19 +84,11 @@ export default defineNitroPlugin((nitro) => {
     } catch {
     }
     const shouldFetchProfile = prefs?.user?.fetchUserProfile !== false;
-    const shouldFetchOrgs = prefs?.user?.fetchOrganizations !== false;
-    const shouldFetchBranding = prefs?.theme?.inheritFromBranding !== false;
-    const [userResult, userProfileResult, orgsResult, currentOrgResult, brandingResult] = await Promise.allSettled([
+    const [userResult, userProfileResult] = await Promise.allSettled([
       // Always fetch the basic user object (needed for ThunderIDAuthState.user)
       client.getUser(session.sessionId),
       // SCIM2 user profile (flattened + schemas)
-      shouldFetchProfile ? client.getUserProfile(session.sessionId) : Promise.resolve(null),
-      // User's organisations
-      shouldFetchOrgs ? client.getMyOrganizations(session.sessionId) : Promise.resolve([]),
-      // Current organisation (derived from the ID token)
-      shouldFetchOrgs ? client.getCurrentOrganization(session.sessionId) : Promise.resolve(null),
-      // Branding preference (does not require a session)
-      shouldFetchBranding ? client.getBrandingPreference({ baseUrl: resolvedBaseUrl }) : Promise.resolve(null)
+      shouldFetchProfile ? client.getUserProfile(session.sessionId) : Promise.resolve(null)
     ]);
     if (userResult.status === "rejected") {
       log.debug("Failed to fetch user:", userResult.reason);
@@ -104,20 +96,8 @@ export default defineNitroPlugin((nitro) => {
     if (userProfileResult.status === "rejected") {
       log.warn("Failed to fetch user profile (SCIM2):", userProfileResult.reason);
     }
-    if (orgsResult.status === "rejected") {
-      log.warn("Failed to fetch my organisations:", orgsResult.reason);
-    }
-    if (currentOrgResult.status === "rejected") {
-      log.warn("Failed to resolve current organisation:", currentOrgResult.reason);
-    }
-    if (brandingResult.status === "rejected") {
-      log.warn("Failed to fetch branding preference:", brandingResult.reason);
-    }
     const ssrData = {
-      brandingPreference: brandingResult.status === "fulfilled" ? brandingResult.value : null,
-      currentOrganization: currentOrgResult.status === "fulfilled" ? currentOrgResult.value : null,
       isSignedIn: true,
-      myOrganizations: orgsResult.status === "fulfilled" && Array.isArray(orgsResult.value) ? orgsResult.value : [],
       resolvedBaseUrl,
       session,
       user: userResult.status === "fulfilled" ? userResult.value : null,

package/dist/runtime/server/routes/auth/session/signin.post.d.ts

@@ -21,7 +21,7 @@
  * Handles embedded (app-native) sign-in flow steps.
  *
  * Request body:
- * - `payload` — the embedded flow step payload (`EmbeddedSignInFlowHandleRequestPayload`).
+ * - `payload` — the embedded flow step payload.
  *   When omitted or `{}`, the flow is initialised and the authorize URL is returned.
  * - `request` — optional per-step config (e.g. `{ url }` override).
  *

package/dist/runtime/server/routes/auth/session/signin.post.js

@@ -66,7 +66,7 @@ export default defineEventHandler(async (event) => {
       statusMessage: `Embedded sign-in step failed: ${err?.message ?? String(err)}`
     });
   }
-  if (response?.flowStatus === EmbeddedSignInFlowStatus.SuccessCompleted) {
+  if (response?.flowStatus === EmbeddedSignInFlowStatus.Complete) {
     const authData = response?.authData ?? {};
     const { code, state, session_state: sessionState } = authData;
     if (!code) {

package/dist/runtime/server/routes/auth/session/signup.post.js

@@ -1,4 +1,4 @@
-import { EmbeddedFlowStatus } from "@thunderid/node";
+import { EmbeddedSignUpFlowStatus } from "@thunderid/node";
 import { defineEventHandler, readBody, createError } from "h3";
 import ThunderIDNuxtClient from "../../../ThunderIDNuxtClient.js";
 import { useRuntimeConfig } from "#imports";
@@ -23,7 +23,7 @@ export default defineEventHandler(async (event) => {
       statusMessage: `Embedded sign-up step failed: ${err?.message ?? String(err)}`
     });
   }
-  if (hasFlowStatus(response) && response.flowStatus === EmbeddedFlowStatus.Complete) {
+  if (hasFlowStatus(response) && response.flowStatus === EmbeddedSignUpFlowStatus.Complete) {
     return { data: { afterSignUpUrl }, success: true };
   }
   return { data: response, success: true };