@umituz/react-native-auth 3.4.37 → 3.4.39

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@umituz/react-native-auth",
-  "version": "3.4.37",
+  "version": "3.4.39",
   "description": "Authentication service for React Native apps - Secure, type-safe, and production-ready. Provider-agnostic design with dependency injection, configurable validation, and comprehensive error handling.",
   "main": "./src/index.ts",
   "types": "./src/index.ts",

package/src/index.ts

@@ -151,8 +151,6 @@ export type { SocialAuthConfiguration } from './presentation/hooks/useAuthBottom
 
 // DOMAIN ENTITIES & UTILS
 export type { UserProfile, UpdateProfileParams } from './domain/entities/UserProfile';
-export { generateAnonymousName, getAnonymousDisplayName } from './domain/utils/anonymousNameGenerator';
-export type { AnonymousNameConfig } from './domain/utils/anonymousNameGenerator';
 export { migrateUserData, configureMigration } from './domain/utils/migration';
 export type { MigrationConfig } from './domain/utils/migration';
 

package/src/presentation/components/ProfileBenefitsList.tsx

@@ -17,7 +17,7 @@ export const ProfileBenefitsList: React.FC<ProfileBenefitsListProps> = ({ benefi
         <View style={styles.benefitsContainer}>
             {benefits.map((benefit, index) => (
                 <View key={index} style={styles.benefitItem}>
-                    <AtomicIcon name="Check" size="sm" color="primary" />
+                    <AtomicIcon name="checkmark-circle" size="sm" color="primary" />
                     <AtomicText
                         type="bodyMedium"
                         color="secondary"

package/src/presentation/hooks/useAccountManagement.ts

@@ -1,25 +1,30 @@
 /**
  * useAccountManagement Hook
  * Provides account management functionality (logout, delete)
- * Generic hook - reauthentication is handled via callback from calling app
  */
 
 import { useCallback, useState } from "react";
+import { Alert } from "react-native";
 import { useAuth } from "./useAuth";
 import { handleAccountDeletion } from "../utils/accountDeleteHandler.util";
 
 export interface UseAccountManagementOptions {
   /**
    * Callback invoked when reauthentication is required (for Google/Apple)
-   * App should show appropriate UI (Google/Apple sign-in) and return success status
-   * If not provided, reauthentication errors will be thrown
    */
   onReauthRequired?: () => Promise<boolean>;
   /**
-   * Callback invoked when password reauthentication is required (for email/password accounts)
-   * App should show password prompt and return the entered password, or null if cancelled
+   * Callback invoked when password reauthentication is required
+   * If not provided, built-in Alert.prompt will be used
    */
   onPasswordRequired?: () => Promise<string | null>;
+  /**
+   * Translations for built-in password prompt
+   */
+  passwordPromptTitle?: string;
+  passwordPromptMessage?: string;
+  passwordPromptCancel?: string;
+  passwordPromptConfirm?: string;
 }
 
 export interface UseAccountManagementReturn {
@@ -34,7 +39,31 @@ export const useAccountManagement = (
 ): UseAccountManagementReturn => {
   const { user, loading, signOut } = useAuth();
   const [isDeletingAccount, setIsDeletingAccount] = useState(false);
-  const { onReauthRequired, onPasswordRequired } = options;
+
+  const {
+    onReauthRequired,
+    onPasswordRequired,
+    passwordPromptTitle = "Password Required",
+    passwordPromptMessage = "Enter your password to delete account",
+    passwordPromptCancel = "Cancel",
+    passwordPromptConfirm = "Confirm",
+  } = options;
+
+  const defaultPasswordPrompt = useCallback((): Promise<string | null> => {
+    return new Promise((resolve) => {
+      Alert.prompt(
+        passwordPromptTitle,
+        passwordPromptMessage,
+        [
+          { text: passwordPromptCancel, style: "cancel", onPress: () => resolve(null) },
+          { text: passwordPromptConfirm, onPress: (pwd) => resolve(pwd || null) },
+        ],
+        "secure-text"
+      );
+    });
+  }, [passwordPromptTitle, passwordPromptMessage, passwordPromptCancel, passwordPromptConfirm]);
+
+  const passwordHandler = onPasswordRequired || defaultPasswordPrompt;
 
   const logout = useCallback(async () => {
     await signOut();
@@ -59,11 +88,14 @@ export const useAccountManagement = (
     setIsDeletingAccount(true);
 
     try {
-      await handleAccountDeletion({ onReauthRequired, onPasswordRequired });
+      await handleAccountDeletion({
+        onReauthRequired,
+        onPasswordRequired: passwordHandler,
+      });
     } finally {
       setIsDeletingAccount(false);
     }
-  }, [user, onReauthRequired, onPasswordRequired]);
+  }, [user, onReauthRequired, passwordHandler]);
 
   return {
     logout,

package/src/presentation/hooks/useUserProfile.ts

@@ -1,59 +1,52 @@
 /**
  * useUserProfile Hook
- * Generic hook for user profile configuration
  * Returns profile data for display in settings or profile screens
  */
 
 import { useMemo } from "react";
 import { useAuth } from "./useAuth";
-import { generateAnonymousName, type AnonymousNameConfig } from "../../domain/utils/anonymousNameGenerator";
 
 export interface UserProfileData {
-    displayName?: string;
-    userId?: string;
-    isAnonymous: boolean;
-    avatarUrl?: string;
-    accountSettingsRoute?: string;
-    benefits?: string[];
+  displayName?: string;
+  userId?: string;
+  isAnonymous: boolean;
+  avatarUrl?: string;
+  accountSettingsRoute?: string;
+  benefits?: string[];
 }
 
 export interface UseUserProfileParams {
-    anonymousDisplayName?: string;
-    accountRoute?: string;
-    anonymousNameConfig?: AnonymousNameConfig;
+  anonymousDisplayName?: string;
+  accountRoute?: string;
 }
 
 export const useUserProfile = (
-    params?: UseUserProfileParams,
+  params?: UseUserProfileParams,
 ): UserProfileData | undefined => {
-    const { user } = useAuth();
-
-    const anonymousName = params?.anonymousDisplayName;
-    const accountRoute = params?.accountRoute;
-    const nameConfig = params?.anonymousNameConfig;
-
-    return useMemo(() => {
-        if (!user) {
-            return undefined;
-        }
-
-        const isAnonymous = user.isAnonymous || false;
-
-        if (isAnonymous) {
-            return {
-                displayName: generateAnonymousName(user.uid, nameConfig),
-                userId: user.uid,
-                isAnonymous: true,
-                accountSettingsRoute: accountRoute,
-            };
-        }
-
-        return {
-            accountSettingsRoute: accountRoute,
-            displayName: user.displayName || user.email || anonymousName,
-            userId: user.uid,
-            isAnonymous: false,
-            avatarUrl: user.photoURL || undefined,
-        };
-    }, [user, anonymousName, accountRoute, nameConfig]);
+  const { user } = useAuth();
+  const anonymousName = params?.anonymousDisplayName ?? "Anonymous User";
+  const accountRoute = params?.accountRoute;
+
+  return useMemo(() => {
+    if (!user) return undefined;
+
+    const isAnonymous = user.isAnonymous || false;
+
+    if (isAnonymous) {
+      return {
+        displayName: anonymousName,
+        userId: user.uid,
+        isAnonymous: true,
+        accountSettingsRoute: accountRoute,
+      };
+    }
+
+    return {
+      accountSettingsRoute: accountRoute,
+      displayName: user.displayName || user.email || anonymousName,
+      userId: user.uid,
+      isAnonymous: false,
+      avatarUrl: user.photoURL || undefined,
+    };
+  }, [user, anonymousName, accountRoute]);
 };

package/src/presentation/utils/accountDeleteHandler.util.ts

@@ -58,7 +58,7 @@ async function handleReauthentication(
   const { onReauthRequired, onPasswordRequired } = callbacks;
 
   // Handle password reauth
-  if (initialResult.error?.code === "auth/password-reauth-required" && onPasswordRequired) {
+  if (initialResult.error?.code === "auth/password-reauth" && onPasswordRequired) {
     await retryWithPassword(onPasswordRequired);
     return;
   }

package/src/domain/README.md

@@ -1,444 +0,0 @@
-# Domain Layer
-
-Core business logic, domain entities, value objects, and domain rules.
-
----
-
-## Strategy
-
-**Purpose**: Contains business rules and domain models independent of external dependencies. Represents the core authentication logic.
-
-**When to Use**:
-- Understanding business rules
-- Working with domain entities
-- Implementing validation
-- Learning about data structures
-
-**Location**: `src/domain/`
-
----
-
-## Structure
-
-### Entities
-
-**entities/AuthUser.ts** - Provider-agnostic user entity
-**entities/UserProfile.ts** - User profile for Firestore
-
-### Value Objects
-
-**value-objects/AuthConfig.ts** - Authentication configuration
-
-### Errors
-
-**errors/AuthError.ts** - Domain-specific error hierarchy
-
-### Utils
-
-**utils/anonymousNameGenerator.ts** - Anonymous name generation
-**utils/migration.ts** - Data migration utilities
-
----
-
-## Domain Entities
-
-### AuthUser
-
-**PURPOSE**: Provider-agnostic user entity for authentication
-
-**IMPORT PATH**:
-```typescript
-import type { AuthUser } from '@umituz/react-native-auth';
-```
-
-**PROPERTIES**:
-- `uid: string` - Unique user identifier
-- `email: string | null` - Email address
-- `displayName: string | null` - Display name
-- `photoURL: string | null` - Profile photo URL
-- `isAnonymous: boolean` - Anonymous flag
-- `emailVerified: boolean` - Email verification status
-- `provider: AuthProviderType` - Auth provider type
-
-**Rules**:
-- MUST have unique uid
-- MUST NOT have empty uid
-- Anonymous users have null email
-- Provider indicates auth method
-- Email can be null for social auth
-
-**MUST NOT**:
-- Allow empty uid
-- Change uid after creation
-- Have anonymous user with email
-- Use invalid provider type
-
-**Documentation**: `entities/AuthUser.md`
-
----
-
-### UserProfile
-
-**PURPOSE**: User profile entity for Firestore document storage
-
-**IMPORT PATH**:
-```typescript
-import type { UserProfile } from '@umituz/react-native-auth';
-```
-
-**PROPERTIES**:
-- `uid: string` - User ID
-- `email: string | null` - Email address
-- `displayName: string | null` - Display name
-- `photoURL: string | null` - Profile photo URL
-- `isAnonymous: boolean` - Anonymous flag
-- `createdAt: Date | null` - Account creation date
-- `lastLoginAt: Date | null` - Last login timestamp
-
-**Rules**:
-- MUST create on user registration
-- MUST include uid
-- MUST set initial timestamps
-- MUST validate updates
-- MUST handle partial updates
-
-**MUST NOT**:
-- Delete existing profiles
-- Skip validation
-- Use client timestamps
-- Overwrite without checking
-
-**Documentation**: `entities/UserProfile.md`
-
----
-
-## Value Objects
-
-### AuthConfig
-
-**PURPOSE**: Authentication configuration value object
-
-**IMPORT PATH**:
-```typescript
-import type { AuthConfig } from '@umituz/react-native-auth';
-```
-
-**COMPONENTS**:
-- `password: PasswordConfig` - Password requirements
-- `social?: SocialAuthConfig` - Social provider config
-
-**PasswordConfig**:
-- `minLength: number` - Minimum password length
-- `requireUppercase: boolean` - Require uppercase
-- `requireLowercase: boolean` - Require lowercase
-- `requireNumber: boolean` - Require number
-- `requireSpecialChar: boolean` - Require special character
-
-**Rules**:
-- MUST set minLength between 4-128
-- MUST validate password against config
-- MUST provide password config
-- MAY provide social config
-
-**MUST NOT**:
-- Set minLength < 4
-- Set minLength > 128
-- Skip validation
-
-**Documentation**: `ConfigAndErrors.md`
-
----
-
-## Domain Errors
-
-### AuthError Hierarchy
-
-**PURPOSE**: Type-safe error handling with clear error types
-
-**IMPORT PATH**:
-```typescript
-import {
-  AuthError,
-  AuthUserNotFoundError,
-  AuthWrongPasswordError,
-  AuthEmailAlreadyInUseError,
-  AuthWeakPasswordError,
-  AuthInvalidEmailError,
-  AuthNetworkError
-} from '@umituz/react-native-auth';
-```
-
-**ERROR TYPES**:
-- `AuthUserNotFoundError` - User not found
-- `AuthWrongPasswordError` - Incorrect password
-- `AuthEmailAlreadyInUseError` - Email already registered
-- `AuthWeakPasswordError` - Password too weak
-- `AuthInvalidEmailError` - Invalid email format
-- `AuthNetworkError` - Network connection failure
-
-**Rules**:
-- MUST use domain errors (not Firebase)
-- MUST map Firebase errors to domain
-- MUST preserve error context
-- MUST show user-friendly messages
-- MUST not expose system details
-
-**MUST NOT**:
-- Throw Firebase errors directly
-- Expose error codes
-- Show stack traces
-- Reveal sensitive information
-
-**Documentation**: `ConfigAndErrors.md`
-
----
-
-## Domain Utilities
-
-### Anonymous Name Generator
-
-**PURPOSE**: Generate random names for anonymous users
-
-**IMPORT PATH**:
-```typescript
-import {
-  generateAnonymousName,
-  getAnonymousDisplayName
-} from '@umituz/react-native-auth';
-```
-
-**FUNCTIONS**:
-- `generateAnonymousName(uid, config?)` - Generate anonymous name
-- `getAnonymousDisplayName(uid)` - Get display name only
-
-**CONFIGURATION**:
-- `prefix` - Name prefix (default: 'User')
-- `adjectiveCount` - Number of adjectives (default: 2)
-- `nounCount` - Number of nouns (default: 1)
-- `showNumbers` - Include numbers (default: true)
-
-**Rules**:
-- MUST be deterministic for same uid
-- MUST generate unique names
-- MUST be human-readable
-- MUST not contain offensive words
-- MUST support custom configuration
-
-**MUST NOT**:
-- Generate duplicate names
-- Use offensive language
-- Be non-deterministic
-- Ignore configuration
-
----
-
-### Migration Utilities
-
-**PURPOSE**: Migrate user data between collections
-
-**IMPORT PATH**:
-```typescript
-import {
-  migrateUserData,
-  configureMigration
-} from '@umituz/react-native-auth';
-```
-
-**FUNCTIONS**:
-- `configureMigration(config)` - Configure migration
-- `migrateUserData(userId)` - Run migration
-
-**CONFIGURATION**:
-- `from` - Source collection name
-- `to` - Target collection name
-- `transform` - Data transformation function
-- `verify` - Verification function (optional)
-
-**Rules**:
-- MUST configure before migrating
-- MUST transform data correctly
-- MUST handle migration errors
-- MUST verify migration success
-- MUST not delete source automatically
-
-**MUST NOT**:
-- Skip configuration
-- Lose data during migration
-- Assume identical schemas
-- Delete source without verification
-
----
-
-## Type Guards
-
-### User Type Guards
-
-**PURPOSE**: Type-safe user checking
-
-**IMPORT PATH**:
-```typescript
-import {
-  isAuthenticatedUser,
-  isAnonymousUser,
-  hasEmail
-} from '@umituz/react-native-auth';
-```
-
-**GUARDS**:
-- `isAuthenticatedUser(user)` - Check if authenticated user
-- `isAnonymousUser(user)` - Check if anonymous user
-- `hasEmail(user)` - Check if has email
-
-**Rules**:
-- MUST use for type narrowing
-- MUST validate before operations
-- MUST check null cases
-- MUST return boolean
-
-**MUST NOT**:
-- Skip type guards
-- Assume user type
-- Skip null checks
-- Return non-boolean
-
----
-
-## Domain Rules
-
-### AuthUser Rules
-
-**MUST**:
-- Have unique uid
-- Validate uid not empty
-- Validate email format if provided
-- Check provider is valid
-- Verify required fields
-
-**MUST NOT**:
-- Allow empty uid
-- Accept invalid email
-- Use wrong provider type
-- Have anonymous user with email
-
-**Constraints**:
-- uid required
-- Email format validated
-- Provider must be known type
-- Anonymous users have null email
-
----
-
-### UserProfile Rules
-
-**MUST**:
-- Validate display name 2-50 characters
-- Validate photo URL format
-- Use server timestamps
-- Handle partial updates
-- Preserve existing data
-
-**MUST NOT**:
-- Allow display name < 2 chars
-- Accept invalid URLs
-- Use client timestamps
-- Overwrite existing data
-
-**Constraints**:
-- Display name min 2, max 100 chars
-- Cannot be only whitespace
-- Valid URL required for photoURL
-- One profile per uid
-
----
-
-### Password Rules
-
-**MUST**:
-- Enforce minimum length
-- Check uppercase if required
-- Check lowercase if required
-- Check number if required
-- Check special char if required
-
-**MUST NOT**:
-- Allow weak passwords
-- Skip validation checks
-- Accept passwords below minimum
-
-**Constraints**:
-- Minimum length: 4-128 chars
-- Requirements configurable
-- All requirements optional
-- Default min length: 6 (lenient)
-
----
-
-## Best Practices
-
-### Entity Usage
-
-**MUST**:
-- Use type guards for type narrowing
-- Validate before operations
-- Handle null values appropriately
-- Follow domain rules
-- Use proper error types
-
-**MUST NOT**:
-- Skip validation
-- Assume required fields present
-- Ignore null cases
-- Use generic error types
-- Break domain rules
-
----
-
-### Error Handling
-
-**MUST**:
-- Use domain error types
-- Map provider errors to domain
-- Provide context
-- Show user-friendly messages
-- Preserve error information
-
-**MUST NOT**:
-- Throw provider errors
-- Expose technical details
-- Lose error context
-- Show stack traces
-- Reveal sensitive data
-
----
-
-### Configuration
-
-**MUST**:
-- Validate configuration
-- Use appropriate defaults
-- Test with production config
-- Not use dev config in production
-
-**MUST NOT**:
-- Skip validation
-- Use invalid config
-- Ignore environment differences
-- Hardcode production values
-
----
-
-## Related Modules
-
-- **Application** (`../application/README.md`) - Ports and interfaces
-- **Infrastructure** (`../infrastructure/README.md`) - Implementations
-- **Presentation** (`../presentation/README.md`) - UI components
-
----
-
-## Entity Documentation
-
-### Detailed Entity Docs
-
-**AuthUser**: `entities/AuthUser.md`
-**UserProfile**: `entities/UserProfile.md`
-**AuthConfig & AuthError**: `ConfigAndErrors.md`

package/src/domain/utils/anonymousNameGenerator.ts

@@ -1,79 +0,0 @@
-/**
- * Anonymous User Name Generator
- * Generates friendly, random names for anonymous users
- * Fully generic - no app-specific content
- */
-
-const DEFAULT_NAMES = [
-    'Alex',
-    'Sam',
-    'Jordan',
-    'Taylor',
-    'Morgan',
-    'Casey',
-    'Riley',
-    'Avery',
-    'Quinn',
-    'Blake',
-    'Charlie',
-    'Dakota',
-    'Eden',
-    'Finley',
-    'Harper',
-    'Sage',
-    'River',
-    'Skylar',
-    'Rowan',
-    'Phoenix',
-];
-
-export interface AnonymousNameConfig {
-    names?: string[];
-    prefixes?: string[];
-    usePrefixes?: boolean;
-}
-
-/**
- * Generate a random anonymous name
- * Uses userId to ensure consistency per user
- */
-export function generateAnonymousName(
-    userId?: string,
-    config?: AnonymousNameConfig,
-): string {
-    const names = config?.names || DEFAULT_NAMES;
-    const prefixes = config?.prefixes || [];
-    const usePrefixes = config?.usePrefixes ?? false;
-
-    if (!userId) {
-        const randomIndex = Math.floor(Math.random() * names.length);
-        return names[randomIndex] ?? "Anonymous";
-    }
-
-    // Use userId hash for consistent name per user
-    const hash = userId.split('').reduce((acc, char) => {
-        return ((acc << 5) - acc + char.charCodeAt(0)) | 0;
-    }, 0);
-
-    const nameIndex = Math.abs(hash) % names.length;
-    const name = names[nameIndex] ?? "Anonymous";
-
-    if (usePrefixes && prefixes.length > 0) {
-        const prefixIndex = Math.abs(hash >> 8) % prefixes.length;
-        return `${prefixes[prefixIndex]} ${name}`;
-    }
-
-    return name;
-}
-
-/**
- * Get anonymous display name with fallback
- */
-export function getAnonymousDisplayName(
-    userId?: string,
-    fallback = 'Anonymous',
-    config?: AnonymousNameConfig,
-): string {
-    if (!userId) return fallback;
-    return generateAnonymousName(userId, config);
-}

package/src/presentation/hooks/useUserProfile.md

@@ -1,297 +0,0 @@
-# useUserProfile
-
-Hook for fetching and displaying user profile data.
-
----
-
-## Strategy
-
-**Purpose**: Provides formatted user profile data for display in UI components. Handles authenticated vs anonymous user differences automatically.
-
-**When to Use**:
-- Displaying user profile information
-- Need user display name and avatar
-- Showing account settings links
-- Differentiating authenticated vs anonymous users
-- Profile headers or user identification
-
-**Import Path**:
-```typescript
-import { useUserProfile } from '@umituz/react-native-auth';
-```
-
-**Hook Location**: `src/presentation/hooks/useUserProfile.ts`
-
----
-
-## Return Value
-
-### UserProfileData Structure
-
-**PROPERTIES**:
-- `displayName: string` - User's display name or generated name
-- `userId: string` - User ID (undefined for anonymous)
-- `isAnonymous: boolean` - Anonymous user status
-- `avatarUrl: string | undefined` - Profile photo URL
-- `accountSettingsRoute: string | undefined` - Navigation route for settings
-
-**RETURNS**: `UserProfileData | undefined`
-- `undefined` if no user exists
-- Object with above properties if user exists
-
-**Rules**:
-- MUST handle `undefined` return value
-- MUST check `isAnonymous` before showing account actions
-- MUST provide fallback for missing avatar
-- MUST NOT assume all properties exist
-
-**Constraints**:
-- Memoized for performance
-- Auto-updates on auth state changes
-- Generates names for anonymous users
-- Uses `useAuth` hook internally
-
----
-
-## Parameters
-
-### Configuration Options
-
-**anonymousDisplayName** (optional)
-- Type: `string`
-- Default: `undefined`
-- Purpose: Fallback name for anonymous users
-- Used when: Anonymous user has no custom name
-
-**accountRoute** (optional)
-- Type: `string`
-- Default: `undefined`
-- Purpose: Navigation route for account settings
-- Used when: Need to navigate to settings
-
-**anonymousNameConfig** (optional)
-- Type: `AnonymousNameConfig`
-- Default: `undefined`
-- Purpose: Customize anonymous name generation
-- Used when: Want custom anonymous naming
-
-**Rules**:
-- SHOULD provide `accountRoute` for profile editing
-- MAY provide `anonymousDisplayName` for better UX
-- MAY customize `anonymousNameConfig` for branding
-
-**Constraints**:
-- All parameters optional
-- Configuration affects return values
-- Changes trigger re-calculation
-
----
-
-## Anonymous User Handling
-
-### Strategy
-
-**Purpose**: Automatically generate appropriate names for anonymous users.
-
-**Rules**:
-- MUST generate random name for anonymous users
-- MUST indicate anonymous status clearly
-- SHOULD encourage account creation
-- MUST NOT hide anonymous nature
-
-**MUST NOT**:
-- Show anonymous users as authenticated
-- Use misleading names for anonymous users
-- Hide anonymous limitations
-
-### Constraints
-
-**NAME GENERATION**:
-- Default format: "User_Witty_Badger_1234"
-- Components: Prefix + Adjectives + Noun + ID
-- Ensures uniqueness with user ID
-- Memoized per anonymous user
-
-**CUSTOMIZATION**:
-```typescript
-anonymousNameConfig = {
-  prefix: string;         // Default: "User"
-  adjectiveCount: number; // Default: 2
-  nounCount: number;      // Default: 1
-}
-```
-
-**DISPLAY STRATEGY**:
-- Always show generated name
-- Indicate guest status
-- Offer upgrade path
-- Preserve name across sessions
-
----
-
-## Performance Optimization
-
-### Strategy
-
-**Purpose**: Efficient profile data computation and updates.
-
-**Rules**:
-- MUST memoize computed profile data
-- MUST minimize re-computations
-- MUST use dependency arrays correctly
-- MUST avoid unnecessary recalculations
-
-**Constraints**:
-- Uses `useMemo` internally
-- Only recalculates when dependencies change
-- Dependencies: user object, config params
-- No unnecessary re-renders
-
-**OPTIMIZATION TECHNIQUES**:
-- Memoized anonymous name generation
-- Cached avatar URL processing
-- Efficient auth state subscription
-- Minimal prop drilling
-
----
-
-## Avatar Handling
-
-### Strategy
-
-**Purpose**: Proper display of user profile photos with fallbacks.
-
-**Rules**:
-- MUST handle missing/invalid avatar URLs
-- MUST provide fallback avatar
-- MUST NOT break on missing photos
-- SHOULD show placeholder or initials
-
-**MUST NOT**:
-- Show broken image icons
-- Crash on invalid URLs
-- Leave avatar space empty
-
-### Constraints
-
-**AVATAR URLS**:
-- From Firebase user.photoURL
-- May be `null` or `undefined`
-- May be invalid URL
-- Should be validated before display
-
-**FALLBACK OPTIONS**:
-- Show user initials
-- Show generic avatar icon
-- Use placeholder image
-- Generate colored placeholder with initials
-
-**DISPLAY RULES**:
-- Use `avatarUrl` if valid and present
-- Fallback to initials placeholder
-- Default to generic icon
-- Consistent sizing across app
-
----
-
-## Navigation Integration
-
-### Strategy
-
-**Purpose**: Provide navigation paths for profile-related actions.
-
-**Rules**:
-- SHOULD provide `accountRoute` parameter
-- MUST handle navigation in parent component
-- MUST NOT hardcode navigation paths
-- MUST support different navigation patterns
-
-**Constraints**:
-
-**ROUTE HANDLING**:
-- `accountRoute` passed through to return value
-- Parent component uses route for navigation
-- Supports string routes or navigation objects
-- Compatible with React Navigation
-
-**INTEGRATION PATTERNS**:
-- Navigate to account settings on press
-- Pass route to navigation component
-- Handle deep linking if needed
-- Support custom navigation handlers
-
----
-
-## Security & Privacy
-
-### Strategy
-
-**Purpose**: Protect user information while displaying profile.
-
-**Rules**:
-- MUST NOT display full user ID in UI
-- MUST NOT expose sensitive tokens
-- MUST handle email display appropriately
-- MUST respect user privacy settings
-
-**MUST NOT**:
-- Show internal user identifiers
-- Display raw email publicly
-- Expose authentication tokens
-- Log profile data with sensitive info
-
-### Constraints
-
-**SAFE TO DISPLAY**:
-- Display name: ✅ Safe
-- Avatar: ✅ Safe
-- Anonymous status: ✅ Safe
-- Email: ⚠️ Only to account owner
-
-**NEVER DISPLAY**:
-- User ID (UID)
-- Authentication tokens
-- Session identifiers
-- Internal metadata
-
-**PRIVACY CONSIDERATIONS**:
-- User-controlled display name
-- Optional profile photo
-- Anonymous users have more privacy
-- GDPR/CCPA compliant
-
----
-
-## Platform Support
-
-### Strategy
-
-**Purpose**: Consistent behavior across all platforms.
-
-**Constraints**:
-- iOS: ✅ Fully supported
-- Android: ✅ Fully supported
-- Web: ✅ Fully supported
-
-**PLATFORM-SPECIFIC**:
-- Avatar display: Platform-appropriate components
-- Name formatting: Consistent across platforms
-- Navigation: Platform-specific patterns
-- Fallbacks: Platform-appropriate defaults
-
----
-
-## Related Hooks
-
-- **`useAuth`** (`src/presentation/hooks/useAuth.ts`) - Core authentication state
-- **`useProfileUpdate`** (`src/presentation/hooks/useProfileUpdate.md`) - Profile editing
-- **`useAccountManagement`** (`src/presentation/hooks/useAccountManagement.md`) - Account operations
-
-## Related Components
-
-- **`ProfileSection`** (`src/presentation/components/ProfileComponents.md`) - Profile display component
-- **`AccountActions`** (`src/presentation/components/ProfileComponents.md`) - Account management UI
-
-## Related Utilities
-
-- **`generateAnonymousName`** (`src/presentation/hooks/useUserProfile.ts`) - Anonymous name generation