npm - @versini/auth-provider - Versions diffs - 7.4.2 → 7.5.0 - Mend

@versini/auth-provider 7.4.2 → 7.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.js CHANGED Viewed

@@ -1,16 +1,16 @@
-var At = Object.defineProperty;
-var Tt = (e, t, r) => t in e ? At(e, t, { enumerable: !0, configurable: !0, writable: !0, value: r }) : e[t] = r;
-var X = (e, t, r) => Tt(e, typeof t != "symbol" ? t + "" : t, r);
-import { jsx as Oe } from "react/jsx-runtime";
-import Rt, { useSyncExternalStore as _t, useCallback as D, useEffect as Je, createContext as It, useReducer as bt, useRef as kt, useContext as Ot } from "react";
+var St = Object.defineProperty;
+var At = (e, t, r) => t in e ? St(e, t, { enumerable: !0, configurable: !0, writable: !0, value: r }) : e[t] = r;
+var Z = (e, t, r) => At(e, typeof t != "symbol" ? t + "" : t, r);
+import { jsx as ke } from "react/jsx-runtime";
+import Tt, { useSyncExternalStore as Rt, useCallback as D, useEffect as $e, createContext as _t, useReducer as It, useRef as bt, useContext as kt } from "react";
 /*!
-  @versini/auth-provider v7.4.2
+  @versini/auth-provider v7.5.0
   © 2025 gizmette.com
 */
 try {
   window.__VERSINI_AUTH_CLIENT__ || (window.__VERSINI_AUTH_CLIENT__ = {
-    version: "7.4.2",
-    buildTime: "02/09/2025 06:14 PM EST",
+    version: "7.5.0",
+    buildTime: "02/09/2025 07:44 PM EST",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
@@ -23,101 +23,101 @@ function k(e) {
     r += String.fromCharCode(a);
   return btoa(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
 }
-function oe(e) {
-  const t = e.replace(/-/g, "+").replace(/_/g, "/"), r = (4 - t.length % 4) % 4, n = t.padEnd(t.length + r, "="), a = atob(n), s = new ArrayBuffer(a.length), o = new Uint8Array(s);
+function se(e) {
+  const t = e.replace(/-/g, "+").replace(/_/g, "/"), r = (4 - t.length % 4) % 4, n = t.padEnd(t.length + r, "="), a = atob(n), o = new ArrayBuffer(a.length), s = new Uint8Array(o);
   for (let i = 0; i < a.length; i++)
-    o[i] = a.charCodeAt(i);
-  return s;
+    s[i] = a.charCodeAt(i);
+  return o;
 }
-function Te() {
+function Ae() {
   return window?.PublicKeyCredential !== void 0 && typeof window.PublicKeyCredential == "function";
 }
-function Ye(e) {
+function Je(e) {
   const { id: t } = e;
   return {
     ...e,
-    id: oe(t),
+    id: se(t),
     transports: e.transports
   };
 }
-function xe(e) {
+function Ye(e) {
   return e === "localhost" || /^([a-z0-9]+(-[a-z0-9]+)*\.)+[a-z]{2,}$/i.test(e);
 }
-class S extends Error {
+class A extends Error {
   constructor({ message: t, code: r, cause: n, name: a }) {
     super(t, { cause: n }), this.name = a ?? n.name, this.code = r;
   }
 }
-function vt({ error: e, options: t }) {
+function Ot({ error: e, options: t }) {
   const { publicKey: r } = t;
   if (!r)
     throw Error("options was missing required publicKey property");
   if (e.name === "AbortError") {
     if (t.signal instanceof AbortSignal)
-      return new S({
+      return new A({
         message: "Registration ceremony was sent an abort signal",
         code: "ERROR_CEREMONY_ABORTED",
         cause: e
       });
   } else if (e.name === "ConstraintError") {
     if (r.authenticatorSelection?.requireResidentKey === !0)
-      return new S({
+      return new A({
         message: "Discoverable credentials were required but no available authenticator supported it",
         code: "ERROR_AUTHENTICATOR_MISSING_DISCOVERABLE_CREDENTIAL_SUPPORT",
         cause: e
       });
     if (r.authenticatorSelection?.userVerification === "required")
-      return new S({
+      return new A({
         message: "User verification was required but no available authenticator supported it",
         code: "ERROR_AUTHENTICATOR_MISSING_USER_VERIFICATION_SUPPORT",
         cause: e
       });
   } else {
     if (e.name === "InvalidStateError")
-      return new S({
+      return new A({
         message: "The authenticator was previously registered",
         code: "ERROR_AUTHENTICATOR_PREVIOUSLY_REGISTERED",
         cause: e
       });
     if (e.name === "NotAllowedError")
-      return new S({
+      return new A({
         message: e.message,
         code: "ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY",
         cause: e
       });
     if (e.name === "NotSupportedError")
-      return r.pubKeyCredParams.filter((a) => a.type === "public-key").length === 0 ? new S({
+      return r.pubKeyCredParams.filter((a) => a.type === "public-key").length === 0 ? new A({
         message: 'No entry in pubKeyCredParams was of type "public-key"',
         code: "ERROR_MALFORMED_PUBKEYCREDPARAMS",
         cause: e
-      }) : new S({
+      }) : new A({
         message: "No available authenticator supported any of the specified pubKeyCredParams algorithms",
         code: "ERROR_AUTHENTICATOR_NO_SUPPORTED_PUBKEYCREDPARAMS_ALG",
         cause: e
       });
     if (e.name === "SecurityError") {
       const n = window.location.hostname;
-      if (xe(n)) {
+      if (Ye(n)) {
         if (r.rp.id !== n)
-          return new S({
+          return new A({
             message: `The RP ID "${r.rp.id}" is invalid for this domain`,
             code: "ERROR_INVALID_RP_ID",
             cause: e
           });
-      } else return new S({
+      } else return new A({
         message: `${window.location.hostname} is an invalid domain`,
         code: "ERROR_INVALID_DOMAIN",
         cause: e
       });
     } else if (e.name === "TypeError") {
       if (r.user.id.byteLength < 1 || r.user.id.byteLength > 64)
-        return new S({
+        return new A({
           message: "User ID was not between 1 and 64 characters",
           code: "ERROR_INVALID_USER_ID_LENGTH",
           cause: e
         });
     } else if (e.name === "UnknownError")
-      return new S({
+      return new A({
         message: "The authenticator was unable to process the specified options, or could not create a new credential",
         code: "ERROR_AUTHENTICATOR_GENERAL_ERROR",
         cause: e
@@ -125,7 +125,7 @@ function vt({ error: e, options: t }) {
   }
   return e;
 }
-class Pt {
+class vt {
   createNewAbortSignal() {
     if (this.controller) {
       const r = new Error("Cancelling existing WebAuthn API call for new one");
@@ -141,117 +141,117 @@ class Pt {
     }
   }
 }
-const Me = new Pt(), Ct = ["cross-platform", "platform"];
-function Ge(e) {
-  if (e && !(Ct.indexOf(e) < 0))
+const xe = new vt(), Pt = ["cross-platform", "platform"];
+function Me(e) {
+  if (e && !(Pt.indexOf(e) < 0))
     return e;
 }
-async function Nt(e) {
-  if (!Te())
+async function Ct(e) {
+  if (!Ae())
     throw new Error("WebAuthn is not supported in this browser");
   const r = { publicKey: {
     ...e,
-    challenge: oe(e.challenge),
+    challenge: se(e.challenge),
     user: {
       ...e.user,
-      id: oe(e.user.id)
+      id: se(e.user.id)
     },
-    excludeCredentials: e.excludeCredentials?.map(Ye)
+    excludeCredentials: e.excludeCredentials?.map(Je)
   } };
-  r.signal = Me.createNewAbortSignal();
+  r.signal = xe.createNewAbortSignal();
   let n;
   try {
     n = await navigator.credentials.create(r);
-  } catch (l) {
-    throw vt({ error: l, options: r });
+  } catch (d) {
+    throw Ot({ error: d, options: r });
   }
   if (!n)
     throw new Error("Registration was not completed");
-  const { id: a, rawId: s, response: o, type: i } = n;
+  const { id: a, rawId: o, response: s, type: i } = n;
   let c;
-  typeof o.getTransports == "function" && (c = o.getTransports());
-  let h;
-  if (typeof o.getPublicKeyAlgorithm == "function")
-    try {
-      h = o.getPublicKeyAlgorithm();
-    } catch (l) {
-      ye("getPublicKeyAlgorithm()", l);
-    }
+  typeof s.getTransports == "function" && (c = s.getTransports());
   let y;
-  if (typeof o.getPublicKey == "function")
+  if (typeof s.getPublicKeyAlgorithm == "function")
     try {
-      const l = o.getPublicKey();
-      l !== null && (y = k(l));
-    } catch (l) {
-      ye("getPublicKey()", l);
+      y = s.getPublicKeyAlgorithm();
+    } catch (d) {
+      pe("getPublicKeyAlgorithm()", d);
     }
   let p;
-  if (typeof o.getAuthenticatorData == "function")
+  if (typeof s.getPublicKey == "function")
+    try {
+      const d = s.getPublicKey();
+      d !== null && (p = k(d));
+    } catch (d) {
+      pe("getPublicKey()", d);
+    }
+  let h;
+  if (typeof s.getAuthenticatorData == "function")
     try {
-      p = k(o.getAuthenticatorData());
-    } catch (l) {
-      ye("getAuthenticatorData()", l);
+      h = k(s.getAuthenticatorData());
+    } catch (d) {
+      pe("getAuthenticatorData()", d);
     }
   return {
     id: a,
-    rawId: k(s),
+    rawId: k(o),
     response: {
-      attestationObject: k(o.attestationObject),
-      clientDataJSON: k(o.clientDataJSON),
+      attestationObject: k(s.attestationObject),
+      clientDataJSON: k(s.clientDataJSON),
       transports: c,
-      publicKeyAlgorithm: h,
-      publicKey: y,
-      authenticatorData: p
+      publicKeyAlgorithm: y,
+      publicKey: p,
+      authenticatorData: h
     },
     type: i,
     clientExtensionResults: n.getClientExtensionResults(),
-    authenticatorAttachment: Ge(n.authenticatorAttachment)
+    authenticatorAttachment: Me(n.authenticatorAttachment)
   };
 }
-function ye(e, t) {
+function pe(e, t) {
   console.warn(`The browser extension that intercepted this WebAuthn API call incorrectly implemented ${e}. You should report this error to them.
 `, t);
 }
-function Kt() {
-  if (!Te())
+function Nt() {
+  if (!Ae())
     return new Promise((t) => t(!1));
   const e = window.PublicKeyCredential;
   return e.isConditionalMediationAvailable === void 0 ? new Promise((t) => t(!1)) : e.isConditionalMediationAvailable();
 }
-function Dt({ error: e, options: t }) {
+function Kt({ error: e, options: t }) {
   const { publicKey: r } = t;
   if (!r)
     throw Error("options was missing required publicKey property");
   if (e.name === "AbortError") {
     if (t.signal instanceof AbortSignal)
-      return new S({
+      return new A({
         message: "Authentication ceremony was sent an abort signal",
         code: "ERROR_CEREMONY_ABORTED",
         cause: e
       });
   } else {
     if (e.name === "NotAllowedError")
-      return new S({
+      return new A({
         message: e.message,
         code: "ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY",
         cause: e
       });
     if (e.name === "SecurityError") {
       const n = window.location.hostname;
-      if (xe(n)) {
+      if (Ye(n)) {
         if (r.rpId !== n)
-          return new S({
+          return new A({
             message: `The RP ID "${r.rpId}" is invalid for this domain`,
             code: "ERROR_INVALID_RP_ID",
             cause: e
           });
-      } else return new S({
+      } else return new A({
         message: `${window.location.hostname} is an invalid domain`,
         code: "ERROR_INVALID_DOMAIN",
         cause: e
       });
     } else if (e.name === "UnknownError")
-      return new S({
+      return new A({
         message: "The authenticator was unable to process the specified options, or could not create a new assertion signature",
         code: "ERROR_AUTHENTICATOR_GENERAL_ERROR",
         cause: e
@@ -259,46 +259,46 @@ function Dt({ error: e, options: t }) {
   }
   return e;
 }
-async function Ut(e, t = !1) {
-  if (!Te())
+async function Dt(e, t = !1) {
+  if (!Ae())
     throw new Error("WebAuthn is not supported in this browser");
   let r;
-  e.allowCredentials?.length !== 0 && (r = e.allowCredentials?.map(Ye));
+  e.allowCredentials?.length !== 0 && (r = e.allowCredentials?.map(Je));
   const n = {
     ...e,
-    challenge: oe(e.challenge),
+    challenge: se(e.challenge),
     allowCredentials: r
   }, a = {};
   if (t) {
-    if (!await Kt())
+    if (!await Nt())
       throw Error("Browser does not support WebAuthn autofill");
     if (document.querySelectorAll("input[autocomplete$='webauthn']").length < 1)
       throw Error('No <input> with "webauthn" as the only or last value in its `autocomplete` attribute was detected');
     a.mediation = "conditional", n.allowCredentials = [];
   }
-  a.publicKey = n, a.signal = Me.createNewAbortSignal();
-  let s;
+  a.publicKey = n, a.signal = xe.createNewAbortSignal();
+  let o;
   try {
-    s = await navigator.credentials.get(a);
-  } catch (p) {
-    throw Dt({ error: p, options: a });
+    o = await navigator.credentials.get(a);
+  } catch (h) {
+    throw Kt({ error: h, options: a });
   }
-  if (!s)
+  if (!o)
     throw new Error("Authentication was not completed");
-  const { id: o, rawId: i, response: c, type: h } = s;
-  let y;
-  return c.userHandle && (y = k(c.userHandle)), {
-    id: o,
+  const { id: s, rawId: i, response: c, type: y } = o;
+  let p;
+  return c.userHandle && (p = k(c.userHandle)), {
+    id: s,
     rawId: k(i),
     response: {
       authenticatorData: k(c.authenticatorData),
       clientDataJSON: k(c.clientDataJSON),
       signature: k(c.signature),
-      userHandle: y
+      userHandle: p
     },
-    type: h,
-    clientExtensionResults: s.getClientExtensionResults(),
-    authenticatorAttachment: Ge(s.authenticatorAttachment)
+    type: y,
+    clientExtensionResults: o.getClientExtensionResults(),
+    authenticatorAttachment: Me(o.authenticatorAttachment)
   };
 }
 /*!
@@ -308,7 +308,7 @@ async function Ut(e, t = !1) {
 try {
   window.__VERSINI_AUTH_COMMON__ || (window.__VERSINI_AUTH_COMMON__ = {
     version: "4.2.0",
-    buildTime: "02/09/2025 06:14 PM EST",
+    buildTime: "02/09/2025 07:44 PM EST",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
@@ -321,9 +321,9 @@ const M = {
   CODE: "code",
   REFRESH_TOKEN: "refresh_token",
   PASSKEY: "passkey"
-}, Ve = {
+}, Ge = {
   CLIENT_ID: "X-Auth-ClientId"
-}, f = {
+}, E = {
   ALG: "RS256",
   USER_ID_KEY: "sub",
   USERNAME_KEY: "username",
@@ -336,7 +336,7 @@ const M = {
   SCOPES_KEY: "scopes",
   CLIENT_ID_KEY: "aud",
   ISSUER: "gizmette.com"
-}, Lt = `-----BEGIN PUBLIC KEY-----
+}, Ut = `-----BEGIN PUBLIC KEY-----
 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7
 w5PKyTYLGAI2I6SIIdpe6i6DOCbEkmDz7LdVsBqwNtVi8gvWYIj+8ol6rU3qu1v5
 i1Jd45GSK4kzkVdgCmQZbM5ak0KI99q5wsrAIzUd+LRJ2HRvWtr5IYdsIiXaQjle
@@ -349,9 +349,9 @@ awIDAQAB
   LOGOUT: "logout",
   LOGIN: "login",
   REFRESH: "refresh"
-}, le = crypto, je = (e) => e instanceof CryptoKey, Z = new TextEncoder(), q = new TextDecoder();
-function Ht(...e) {
-  const t = e.reduce((a, { length: s }) => a + s, 0), r = new Uint8Array(t);
+}, le = crypto, Ve = (e) => e instanceof CryptoKey, ee = new TextEncoder(), q = new TextDecoder();
+function Lt(...e) {
+  const t = e.reduce((a, { length: o }) => a + o, 0), r = new Uint8Array(t);
   let n = 0;
   for (const a of e)
     r.set(a, n), n += a.length;
@@ -371,107 +371,107 @@ const Wt = (e) => {
     throw new TypeError("The input to be decoded is not correctly encoded.");
   }
 };
-let A = class extends Error {
+let T = class extends Error {
   constructor(t, r) {
     var n;
     super(t, r), this.code = "ERR_JOSE_GENERIC", this.name = this.constructor.name, (n = Error.captureStackTrace) == null || n.call(Error, this, this.constructor);
   }
 };
-A.code = "ERR_JOSE_GENERIC";
-class _ extends A {
+T.code = "ERR_JOSE_GENERIC";
+class _ extends T {
   constructor(t, r, n = "unspecified", a = "unspecified") {
     super(t, { cause: { claim: n, reason: a, payload: r } }), this.code = "ERR_JWT_CLAIM_VALIDATION_FAILED", this.claim = n, this.reason = a, this.payload = r;
   }
 }
 _.code = "ERR_JWT_CLAIM_VALIDATION_FAILED";
-class Se extends A {
+class we extends T {
   constructor(t, r, n = "unspecified", a = "unspecified") {
     super(t, { cause: { claim: n, reason: a, payload: r } }), this.code = "ERR_JWT_EXPIRED", this.claim = n, this.reason = a, this.payload = r;
   }
 }
-Se.code = "ERR_JWT_EXPIRED";
-class Fe extends A {
+we.code = "ERR_JWT_EXPIRED";
+class je extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_ALG_NOT_ALLOWED";
   }
 }
-Fe.code = "ERR_JOSE_ALG_NOT_ALLOWED";
-class I extends A {
+je.code = "ERR_JOSE_ALG_NOT_ALLOWED";
+class I extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_NOT_SUPPORTED";
   }
 }
 I.code = "ERR_JOSE_NOT_SUPPORTED";
-class $t extends A {
+class Ht extends T {
   constructor(t = "decryption operation failed", r) {
     super(t, r), this.code = "ERR_JWE_DECRYPTION_FAILED";
   }
 }
-$t.code = "ERR_JWE_DECRYPTION_FAILED";
-class Jt extends A {
+Ht.code = "ERR_JWE_DECRYPTION_FAILED";
+class $t extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JWE_INVALID";
   }
 }
-Jt.code = "ERR_JWE_INVALID";
-class E extends A {
+$t.code = "ERR_JWE_INVALID";
+class g extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JWS_INVALID";
   }
 }
-E.code = "ERR_JWS_INVALID";
-let b = class extends A {
+g.code = "ERR_JWS_INVALID";
+let b = class extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JWT_INVALID";
   }
 };
 b.code = "ERR_JWT_INVALID";
-class Yt extends A {
+class Jt extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JWK_INVALID";
   }
 }
-Yt.code = "ERR_JWK_INVALID";
-class xt extends A {
+Jt.code = "ERR_JWK_INVALID";
+class Yt extends T {
   constructor() {
     super(...arguments), this.code = "ERR_JWKS_INVALID";
   }
 }
-xt.code = "ERR_JWKS_INVALID";
-class Mt extends A {
+Yt.code = "ERR_JWKS_INVALID";
+class xt extends T {
   constructor(t = "no applicable key found in the JSON Web Key Set", r) {
     super(t, r), this.code = "ERR_JWKS_NO_MATCHING_KEY";
   }
 }
-Mt.code = "ERR_JWKS_NO_MATCHING_KEY";
-class Gt extends A {
+xt.code = "ERR_JWKS_NO_MATCHING_KEY";
+class Mt extends T {
   constructor(t = "multiple matching keys found in the JSON Web Key Set", r) {
     super(t, r), this.code = "ERR_JWKS_MULTIPLE_MATCHING_KEYS";
   }
 }
-Gt.code = "ERR_JWKS_MULTIPLE_MATCHING_KEYS";
-class Vt extends A {
+Mt.code = "ERR_JWKS_MULTIPLE_MATCHING_KEYS";
+class Gt extends T {
   constructor(t = "request timed out", r) {
     super(t, r), this.code = "ERR_JWKS_TIMEOUT";
   }
 }
-Vt.code = "ERR_JWKS_TIMEOUT";
-class Be extends A {
+Gt.code = "ERR_JWKS_TIMEOUT";
+class Fe extends T {
   constructor(t = "signature verification failed", r) {
     super(t, r), this.code = "ERR_JWS_SIGNATURE_VERIFICATION_FAILED";
   }
 }
-Be.code = "ERR_JWS_SIGNATURE_VERIFICATION_FAILED";
+Fe.code = "ERR_JWS_SIGNATURE_VERIFICATION_FAILED";
 function v(e, t = "algorithm.name") {
   return new TypeError(`CryptoKey does not support this operation, its ${t} must be ${e}`);
 }
-function ee(e, t) {
+function te(e, t) {
   return e.name === t;
 }
-function fe(e) {
+function ye(e) {
   return parseInt(e.name.slice(4), 10);
 }
-function jt(e) {
+function Vt(e) {
   switch (e) {
     case "ES256":
       return "P-256";
@@ -483,7 +483,7 @@ function jt(e) {
       throw new Error("unreachable");
   }
 }
-function Ft(e, t) {
+function jt(e, t) {
   if (t.length && !t.some((r) => e.usages.includes(r))) {
     let r = "CryptoKey does not support this operation, its usages must include ";
     if (t.length > 2) {
@@ -493,35 +493,35 @@ function Ft(e, t) {
     throw new TypeError(r);
   }
 }
-function Bt(e, t, ...r) {
+function Ft(e, t, ...r) {
   switch (t) {
     case "HS256":
     case "HS384":
     case "HS512": {
-      if (!ee(e.algorithm, "HMAC"))
+      if (!te(e.algorithm, "HMAC"))
         throw v("HMAC");
       const n = parseInt(t.slice(2), 10);
-      if (fe(e.algorithm.hash) !== n)
+      if (ye(e.algorithm.hash) !== n)
         throw v(`SHA-${n}`, "algorithm.hash");
       break;
     }
     case "RS256":
     case "RS384":
     case "RS512": {
-      if (!ee(e.algorithm, "RSASSA-PKCS1-v1_5"))
+      if (!te(e.algorithm, "RSASSA-PKCS1-v1_5"))
         throw v("RSASSA-PKCS1-v1_5");
       const n = parseInt(t.slice(2), 10);
-      if (fe(e.algorithm.hash) !== n)
+      if (ye(e.algorithm.hash) !== n)
         throw v(`SHA-${n}`, "algorithm.hash");
       break;
     }
     case "PS256":
     case "PS384":
     case "PS512": {
-      if (!ee(e.algorithm, "RSA-PSS"))
+      if (!te(e.algorithm, "RSA-PSS"))
         throw v("RSA-PSS");
       const n = parseInt(t.slice(2), 10);
-      if (fe(e.algorithm.hash) !== n)
+      if (ye(e.algorithm.hash) !== n)
         throw v(`SHA-${n}`, "algorithm.hash");
       break;
     }
@@ -533,9 +533,9 @@ function Bt(e, t, ...r) {
     case "ES256":
     case "ES384":
     case "ES512": {
-      if (!ee(e.algorithm, "ECDSA"))
+      if (!te(e.algorithm, "ECDSA"))
         throw v("ECDSA");
-      const n = jt(t);
+      const n = Vt(t);
       if (e.algorithm.namedCurve !== n)
         throw v(n, "algorithm.namedCurve");
       break;
@@ -543,9 +543,9 @@ function Bt(e, t, ...r) {
     default:
       throw new TypeError("CryptoKey does not support this operation");
   }
-  Ft(e, r);
+  jt(e, r);
 }
-function qe(e, t, ...r) {
+function Be(e, t, ...r) {
   var n;
   if (r = r.filter(Boolean), r.length > 2) {
     const a = r.pop();
@@ -553,11 +553,11 @@ function qe(e, t, ...r) {
   } else r.length === 2 ? e += `one of type ${r[0]} or ${r[1]}.` : e += `of type ${r[0]}.`;
   return t == null ? e += ` Received ${t}` : typeof t == "function" && t.name ? e += ` Received function ${t.name}` : typeof t == "object" && t != null && (n = t.constructor) != null && n.name && (e += ` Received an instance of ${t.constructor.name}`), e;
 }
-const ve = (e, ...t) => qe("Key must be ", e, ...t);
-function ze(e, t, ...r) {
-  return qe(`Key for the ${e} algorithm must be `, t, ...r);
+const Oe = (e, ...t) => Be("Key must be ", e, ...t);
+function qe(e, t, ...r) {
+  return Be(`Key for the ${e} algorithm must be `, t, ...r);
 }
-const Qe = (e) => je(e) ? !0 : e?.[Symbol.toStringTag] === "KeyObject", se = ["CryptoKey"], qt = (...e) => {
+const ze = (e) => Ve(e) ? !0 : e?.[Symbol.toStringTag] === "KeyObject", ie = ["CryptoKey"], Bt = (...e) => {
   const t = e.filter(Boolean);
   if (t.length === 0 || t.length === 1)
     return !0;
@@ -568,19 +568,19 @@ const Qe = (e) => je(e) ? !0 : e?.[Symbol.toStringTag] === "KeyObject", se = ["C
       r = new Set(a);
       continue;
     }
-    for (const s of a) {
-      if (r.has(s))
+    for (const o of a) {
+      if (r.has(o))
         return !1;
-      r.add(s);
+      r.add(o);
     }
   }
   return !0;
 };
-function zt(e) {
+function qt(e) {
   return typeof e == "object" && e !== null;
 }
 function G(e) {
-  if (!zt(e) || Object.prototype.toString.call(e) !== "[object Object]")
+  if (!qt(e) || Object.prototype.toString.call(e) !== "[object Object]")
     return !1;
   if (Object.getPrototypeOf(e) === null)
     return !0;
@@ -589,7 +589,7 @@ function G(e) {
     t = Object.getPrototypeOf(t);
   return Object.getPrototypeOf(e) === t;
 }
-const Qt = (e, t) => {
+const zt = (e, t) => {
   if (e.startsWith("RS") || e.startsWith("PS")) {
     const { modulusLength: r } = t.algorithm;
     if (typeof r != "number" || r < 2048)
@@ -599,16 +599,16 @@ const Qt = (e, t) => {
 function j(e) {
   return G(e) && typeof e.kty == "string";
 }
-function Xt(e) {
+function Qt(e) {
   return e.kty !== "oct" && typeof e.d == "string";
 }
-function Zt(e) {
+function Xt(e) {
   return e.kty !== "oct" && typeof e.d > "u";
 }
-function er(e) {
+function Zt(e) {
   return j(e) && e.kty === "oct" && typeof e.k == "string";
 }
-function tr(e) {
+function er(e) {
   let t, r;
   switch (e.kty) {
     case "RSA": {
@@ -680,43 +680,43 @@ function tr(e) {
   }
   return { algorithm: t, keyUsages: r };
 }
-const Xe = async (e) => {
+const Qe = async (e) => {
   if (!e.alg)
     throw new TypeError('"alg" argument is required when "jwk.alg" is not present');
-  const { algorithm: t, keyUsages: r } = tr(e), n = [
+  const { algorithm: t, keyUsages: r } = er(e), n = [
     t,
     e.ext ?? !1,
     e.key_ops ?? r
   ], a = { ...e };
   return delete a.alg, delete a.use, le.subtle.importKey("jwk", a, ...n);
-}, Ze = (e) => C(e);
-let L, H;
-const et = (e) => e?.[Symbol.toStringTag] === "KeyObject", ie = async (e, t, r, n, a = !1) => {
-  let s = e.get(t);
-  if (s != null && s[n])
-    return s[n];
-  const o = await Xe({ ...r, alg: n });
-  return a && Object.freeze(t), s ? s[n] = o : e.set(t, { [n]: o }), o;
-}, rr = (e, t) => {
-  if (et(e)) {
+}, Xe = (e) => C(e);
+let L, W;
+const Ze = (e) => e?.[Symbol.toStringTag] === "KeyObject", ce = async (e, t, r, n, a = !1) => {
+  let o = e.get(t);
+  if (o != null && o[n])
+    return o[n];
+  const s = await Qe({ ...r, alg: n });
+  return a && Object.freeze(t), o ? o[n] = s : e.set(t, { [n]: s }), s;
+}, tr = (e, t) => {
+  if (Ze(e)) {
     let r = e.export({ format: "jwk" });
-    return delete r.d, delete r.dp, delete r.dq, delete r.p, delete r.q, delete r.qi, r.k ? Ze(r.k) : (H || (H = /* @__PURE__ */ new WeakMap()), ie(H, e, r, t));
+    return delete r.d, delete r.dp, delete r.dq, delete r.p, delete r.q, delete r.qi, r.k ? Xe(r.k) : (W || (W = /* @__PURE__ */ new WeakMap()), ce(W, e, r, t));
   }
-  return j(e) ? e.k ? C(e.k) : (H || (H = /* @__PURE__ */ new WeakMap()), ie(H, e, e, t, !0)) : e;
-}, nr = (e, t) => {
-  if (et(e)) {
+  return j(e) ? e.k ? C(e.k) : (W || (W = /* @__PURE__ */ new WeakMap()), ce(W, e, e, t, !0)) : e;
+}, rr = (e, t) => {
+  if (Ze(e)) {
     let r = e.export({ format: "jwk" });
-    return r.k ? Ze(r.k) : (L || (L = /* @__PURE__ */ new WeakMap()), ie(L, e, r, t));
+    return r.k ? Xe(r.k) : (L || (L = /* @__PURE__ */ new WeakMap()), ce(L, e, r, t));
   }
-  return j(e) ? e.k ? C(e.k) : (L || (L = /* @__PURE__ */ new WeakMap()), ie(L, e, e, t, !0)) : e;
-}, ar = { normalizePublicKey: rr, normalizePrivateKey: nr }, P = (e, t, r = 0) => {
+  return j(e) ? e.k ? C(e.k) : (L || (L = /* @__PURE__ */ new WeakMap()), ce(L, e, e, t, !0)) : e;
+}, nr = { normalizePublicKey: tr, normalizePrivateKey: rr }, P = (e, t, r = 0) => {
   r === 0 && (t.unshift(t.length), t.unshift(6));
   const n = e.indexOf(t[0], r);
   if (n === -1)
     return !1;
   const a = e.subarray(n, n + t.length);
-  return a.length !== t.length ? !1 : a.every((s, o) => s === t[o]) || P(e, t, n + 1);
-}, Pe = (e) => {
+  return a.length !== t.length ? !1 : a.every((o, s) => o === t[s]) || P(e, t, n + 1);
+}, ve = (e) => {
   switch (!0) {
     case P(e, [42, 134, 72, 206, 61, 3, 1, 7]):
       return "P-256";
@@ -735,60 +735,60 @@ const et = (e) => e?.[Symbol.toStringTag] === "KeyObject", ie = async (e, t, r,
     default:
       throw new I("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
   }
-}, or = async (e, t, r, n, a) => {
-  let s, o;
+}, ar = async (e, t, r, n, a) => {
+  let o, s;
   const i = new Uint8Array(atob(r.replace(e, "")).split("").map((c) => c.charCodeAt(0)));
   switch (n) {
     case "PS256":
     case "PS384":
     case "PS512":
-      s = { name: "RSA-PSS", hash: `SHA-${n.slice(-3)}` }, o = ["verify"];
+      o = { name: "RSA-PSS", hash: `SHA-${n.slice(-3)}` }, s = ["verify"];
       break;
     case "RS256":
     case "RS384":
     case "RS512":
-      s = { name: "RSASSA-PKCS1-v1_5", hash: `SHA-${n.slice(-3)}` }, o = ["verify"];
+      o = { name: "RSASSA-PKCS1-v1_5", hash: `SHA-${n.slice(-3)}` }, s = ["verify"];
       break;
     case "RSA-OAEP":
     case "RSA-OAEP-256":
     case "RSA-OAEP-384":
     case "RSA-OAEP-512":
-      s = {
+      o = {
         name: "RSA-OAEP",
         hash: `SHA-${parseInt(n.slice(-3), 10) || 1}`
-      }, o = ["encrypt", "wrapKey"];
+      }, s = ["encrypt", "wrapKey"];
       break;
     case "ES256":
-      s = { name: "ECDSA", namedCurve: "P-256" }, o = ["verify"];
+      o = { name: "ECDSA", namedCurve: "P-256" }, s = ["verify"];
       break;
     case "ES384":
-      s = { name: "ECDSA", namedCurve: "P-384" }, o = ["verify"];
+      o = { name: "ECDSA", namedCurve: "P-384" }, s = ["verify"];
       break;
     case "ES512":
-      s = { name: "ECDSA", namedCurve: "P-521" }, o = ["verify"];
+      o = { name: "ECDSA", namedCurve: "P-521" }, s = ["verify"];
       break;
     case "ECDH-ES":
     case "ECDH-ES+A128KW":
     case "ECDH-ES+A192KW":
     case "ECDH-ES+A256KW": {
-      const c = Pe(i);
-      s = c.startsWith("P-") ? { name: "ECDH", namedCurve: c } : { name: c }, o = [];
+      const c = ve(i);
+      o = c.startsWith("P-") ? { name: "ECDH", namedCurve: c } : { name: c }, s = [];
       break;
     }
     case "EdDSA":
-      s = { name: Pe(i) }, o = ["verify"];
+      o = { name: ve(i) }, s = ["verify"];
       break;
     default:
       throw new I('Invalid or unsupported "alg" (Algorithm) value');
   }
-  return le.subtle.importKey(t, i, s, !1, o);
-}, sr = (e, t, r) => or(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
-async function ir(e, t, r) {
+  return le.subtle.importKey(t, i, o, !1, s);
+}, or = (e, t, r) => ar(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
+async function sr(e, t, r) {
   if (e.indexOf("-----BEGIN PUBLIC KEY-----") !== 0)
     throw new TypeError('"spki" must be SPKI formatted string');
-  return sr(e, t);
+  return or(e, t);
 }
-async function cr(e, t) {
+async function ir(e, t) {
   if (!G(e))
     throw new TypeError("JWK must be an object");
   switch (t || (t = e.alg), e.kty) {
@@ -801,12 +801,12 @@ async function cr(e, t) {
         throw new I('RSA JWK "oth" (Other Primes Info) Parameter value is not supported');
     case "EC":
     case "OKP":
-      return Xe({ ...e, alg: t });
+      return Qe({ ...e, alg: t });
     default:
       throw new I('Unsupported "kty" (Key Type) Parameter value');
   }
 }
-const x = (e) => e?.[Symbol.toStringTag], Ae = (e, t, r) => {
+const x = (e) => e?.[Symbol.toStringTag], Se = (e, t, r) => {
   var n, a;
   if (t.use !== void 0 && t.use !== "sig")
     throw new TypeError("Invalid key for this operation, when present its use must be sig");
@@ -815,32 +815,32 @@ const x = (e) => e?.[Symbol.toStringTag], Ae = (e, t, r) => {
   if (t.alg !== void 0 && t.alg !== e)
     throw new TypeError(`Invalid key for this operation, when present its alg must be ${e}`);
   return !0;
-}, ur = (e, t, r, n) => {
+}, cr = (e, t, r, n) => {
   if (!(t instanceof Uint8Array)) {
     if (n && j(t)) {
-      if (er(t) && Ae(e, t, r))
+      if (Zt(t) && Se(e, t, r))
         return;
       throw new TypeError('JSON Web Key for symmetric algorithms must have JWK "kty" (Key Type) equal to "oct" and the JWK "k" (Key Value) present');
     }
-    if (!Qe(t))
-      throw new TypeError(ze(e, t, ...se, "Uint8Array", n ? "JSON Web Key" : null));
+    if (!ze(t))
+      throw new TypeError(qe(e, t, ...ie, "Uint8Array", n ? "JSON Web Key" : null));
     if (t.type !== "secret")
       throw new TypeError(`${x(t)} instances for symmetric algorithms must be of type "secret"`);
   }
-}, lr = (e, t, r, n) => {
+}, ur = (e, t, r, n) => {
   if (n && j(t))
     switch (r) {
       case "sign":
-        if (Xt(t) && Ae(e, t, r))
+        if (Qt(t) && Se(e, t, r))
           return;
         throw new TypeError("JSON Web Key for this operation be a private JWK");
       case "verify":
-        if (Zt(t) && Ae(e, t, r))
+        if (Xt(t) && Se(e, t, r))
           return;
         throw new TypeError("JSON Web Key for this operation be a public JWK");
     }
-  if (!Qe(t))
-    throw new TypeError(ze(e, t, ...se, n ? "JSON Web Key" : null));
+  if (!ze(t))
+    throw new TypeError(qe(e, t, ...ie, n ? "JSON Web Key" : null));
   if (t.type === "secret")
     throw new TypeError(`${x(t)} instances for asymmetric algorithms must not be of type "secret"`);
   if (r === "sign" && t.type === "public")
@@ -852,37 +852,37 @@ const x = (e) => e?.[Symbol.toStringTag], Ae = (e, t, r) => {
   if (t.algorithm && r === "encrypt" && t.type === "private")
     throw new TypeError(`${x(t)} instances for asymmetric algorithm encryption must be of type "public"`);
 };
-function tt(e, t, r, n) {
-  t.startsWith("HS") || t === "dir" || t.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(t) ? ur(t, r, n, e) : lr(t, r, n, e);
+function et(e, t, r, n) {
+  t.startsWith("HS") || t === "dir" || t.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(t) ? cr(t, r, n, e) : ur(t, r, n, e);
 }
-tt.bind(void 0, !1);
-const Ce = tt.bind(void 0, !0);
-function dr(e, t, r, n, a) {
+et.bind(void 0, !1);
+const Pe = et.bind(void 0, !0);
+function lr(e, t, r, n, a) {
   if (a.crit !== void 0 && n?.crit === void 0)
     throw new e('"crit" (Critical) Header Parameter MUST be integrity protected');
   if (!n || n.crit === void 0)
     return /* @__PURE__ */ new Set();
-  if (!Array.isArray(n.crit) || n.crit.length === 0 || n.crit.some((o) => typeof o != "string" || o.length === 0))
+  if (!Array.isArray(n.crit) || n.crit.length === 0 || n.crit.some((s) => typeof s != "string" || s.length === 0))
     throw new e('"crit" (Critical) Header Parameter MUST be an array of non-empty strings when present');
-  let s;
-  r !== void 0 ? s = new Map([...Object.entries(r), ...t.entries()]) : s = t;
-  for (const o of n.crit) {
-    if (!s.has(o))
-      throw new I(`Extension Header Parameter "${o}" is not recognized`);
-    if (a[o] === void 0)
-      throw new e(`Extension Header Parameter "${o}" is missing`);
-    if (s.get(o) && n[o] === void 0)
-      throw new e(`Extension Header Parameter "${o}" MUST be integrity protected`);
+  let o;
+  r !== void 0 ? o = new Map([...Object.entries(r), ...t.entries()]) : o = t;
+  for (const s of n.crit) {
+    if (!o.has(s))
+      throw new I(`Extension Header Parameter "${s}" is not recognized`);
+    if (a[s] === void 0)
+      throw new e(`Extension Header Parameter "${s}" is missing`);
+    if (o.get(s) && n[s] === void 0)
+      throw new e(`Extension Header Parameter "${s}" MUST be integrity protected`);
   }
   return new Set(n.crit);
 }
-const hr = (e, t) => {
+const dr = (e, t) => {
   if (t !== void 0 && (!Array.isArray(t) || t.some((r) => typeof r != "string")))
     throw new TypeError(`"${e}" option must be an array of strings`);
   if (t)
     return new Set(t);
 };
-function pr(e, t) {
+function hr(e, t) {
   const r = `SHA-${e.slice(-3)}`;
   switch (e) {
     case "HS256":
@@ -907,100 +907,100 @@ function pr(e, t) {
       throw new I(`alg ${e} is not supported either by JOSE or your javascript runtime`);
   }
 }
-async function yr(e, t, r) {
-  if (t = await ar.normalizePublicKey(t, e), je(t))
-    return Bt(t, e, r), t;
+async function pr(e, t, r) {
+  if (t = await nr.normalizePublicKey(t, e), Ve(t))
+    return Ft(t, e, r), t;
   if (t instanceof Uint8Array) {
     if (!e.startsWith("HS"))
-      throw new TypeError(ve(t, ...se));
+      throw new TypeError(Oe(t, ...ie));
     return le.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [r]);
   }
-  throw new TypeError(ve(t, ...se, "Uint8Array", "JSON Web Key"));
+  throw new TypeError(Oe(t, ...ie, "Uint8Array", "JSON Web Key"));
 }
-const fr = async (e, t, r, n) => {
-  const a = await yr(e, t, "verify");
-  Qt(e, a);
-  const s = pr(e, a.algorithm);
+const yr = async (e, t, r, n) => {
+  const a = await pr(e, t, "verify");
+  zt(e, a);
+  const o = hr(e, a.algorithm);
   try {
-    return await le.subtle.verify(s, a, r, n);
+    return await le.subtle.verify(o, a, r, n);
   } catch {
     return !1;
   }
 };
-async function Er(e, t, r) {
+async function fr(e, t, r) {
   if (!G(e))
-    throw new E("Flattened JWS must be an object");
+    throw new g("Flattened JWS must be an object");
   if (e.protected === void 0 && e.header === void 0)
-    throw new E('Flattened JWS must have either of the "protected" or "header" members');
+    throw new g('Flattened JWS must have either of the "protected" or "header" members');
   if (e.protected !== void 0 && typeof e.protected != "string")
-    throw new E("JWS Protected Header incorrect type");
+    throw new g("JWS Protected Header incorrect type");
   if (e.payload === void 0)
-    throw new E("JWS Payload missing");
+    throw new g("JWS Payload missing");
   if (typeof e.signature != "string")
-    throw new E("JWS Signature missing or incorrect type");
+    throw new g("JWS Signature missing or incorrect type");
   if (e.header !== void 0 && !G(e.header))
-    throw new E("JWS Unprotected Header incorrect type");
+    throw new g("JWS Unprotected Header incorrect type");
   let n = {};
   if (e.protected)
     try {
       const R = C(e.protected);
       n = JSON.parse(q.decode(R));
     } catch {
-      throw new E("JWS Protected Header is invalid");
+      throw new g("JWS Protected Header is invalid");
     }
-  if (!qt(n, e.header))
-    throw new E("JWS Protected and JWS Unprotected Header Parameter names must be disjoint");
+  if (!Bt(n, e.header))
+    throw new g("JWS Protected and JWS Unprotected Header Parameter names must be disjoint");
   const a = {
     ...n,
     ...e.header
-  }, s = dr(E, /* @__PURE__ */ new Map([["b64", !0]]), r?.crit, n, a);
-  let o = !0;
-  if (s.has("b64") && (o = n.b64, typeof o != "boolean"))
-    throw new E('The "b64" (base64url-encode payload) Header Parameter must be a boolean');
+  }, o = lr(g, /* @__PURE__ */ new Map([["b64", !0]]), r?.crit, n, a);
+  let s = !0;
+  if (o.has("b64") && (s = n.b64, typeof s != "boolean"))
+    throw new g('The "b64" (base64url-encode payload) Header Parameter must be a boolean');
   const { alg: i } = a;
   if (typeof i != "string" || !i)
-    throw new E('JWS "alg" (Algorithm) Header Parameter missing or invalid');
-  const c = r && hr("algorithms", r.algorithms);
+    throw new g('JWS "alg" (Algorithm) Header Parameter missing or invalid');
+  const c = r && dr("algorithms", r.algorithms);
   if (c && !c.has(i))
-    throw new Fe('"alg" (Algorithm) Header Parameter value not allowed');
-  if (o) {
+    throw new je('"alg" (Algorithm) Header Parameter value not allowed');
+  if (s) {
     if (typeof e.payload != "string")
-      throw new E("JWS Payload must be a string");
+      throw new g("JWS Payload must be a string");
   } else if (typeof e.payload != "string" && !(e.payload instanceof Uint8Array))
-    throw new E("JWS Payload must be a string or an Uint8Array instance");
-  let h = !1;
-  typeof t == "function" ? (t = await t(n, e), h = !0, Ce(i, t, "verify"), j(t) && (t = await cr(t, i))) : Ce(i, t, "verify");
-  const y = Ht(Z.encode(e.protected ?? ""), Z.encode("."), typeof e.payload == "string" ? Z.encode(e.payload) : e.payload);
-  let p;
+    throw new g("JWS Payload must be a string or an Uint8Array instance");
+  let y = !1;
+  typeof t == "function" ? (t = await t(n, e), y = !0, Pe(i, t, "verify"), j(t) && (t = await ir(t, i))) : Pe(i, t, "verify");
+  const p = Lt(ee.encode(e.protected ?? ""), ee.encode("."), typeof e.payload == "string" ? ee.encode(e.payload) : e.payload);
+  let h;
   try {
-    p = C(e.signature);
+    h = C(e.signature);
   } catch {
-    throw new E("Failed to base64url decode the signature");
+    throw new g("Failed to base64url decode the signature");
   }
-  if (!await fr(i, t, p, y))
-    throw new Be();
-  let l;
-  if (o)
+  if (!await yr(i, t, h, p))
+    throw new Fe();
+  let d;
+  if (s)
     try {
-      l = C(e.payload);
+      d = C(e.payload);
     } catch {
-      throw new E("Failed to base64url decode the payload");
+      throw new g("Failed to base64url decode the payload");
     }
-  else typeof e.payload == "string" ? l = Z.encode(e.payload) : l = e.payload;
-  const T = { payload: l };
-  return e.protected !== void 0 && (T.protectedHeader = n), e.header !== void 0 && (T.unprotectedHeader = e.header), h ? { ...T, key: t } : T;
+  else typeof e.payload == "string" ? d = ee.encode(e.payload) : d = e.payload;
+  const f = { payload: d };
+  return e.protected !== void 0 && (f.protectedHeader = n), e.header !== void 0 && (f.unprotectedHeader = e.header), y ? { ...f, key: t } : f;
 }
-async function gr(e, t, r) {
+async function Er(e, t, r) {
   if (e instanceof Uint8Array && (e = q.decode(e)), typeof e != "string")
-    throw new E("Compact JWS must be a string or Uint8Array");
-  const { 0: n, 1: a, 2: s, length: o } = e.split(".");
-  if (o !== 3)
-    throw new E("Invalid Compact JWS");
-  const i = await Er({ payload: a, protected: n, signature: s }, t, r), c = { payload: i.payload, protectedHeader: i.protectedHeader };
+    throw new g("Compact JWS must be a string or Uint8Array");
+  const { 0: n, 1: a, 2: o, length: s } = e.split(".");
+  if (s !== 3)
+    throw new g("Invalid Compact JWS");
+  const i = await fr({ payload: a, protected: n, signature: o }, t, r), c = { payload: i.payload, protectedHeader: i.protectedHeader };
   return typeof t == "function" ? { ...c, key: i.key } : c;
 }
-const mr = (e) => Math.floor(e.getTime() / 1e3), rt = 60, nt = rt * 60, Re = nt * 24, wr = Re * 7, Sr = Re * 365.25, Ar = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, Ne = (e) => {
-  const t = Ar.exec(e);
+const gr = (e) => Math.floor(e.getTime() / 1e3), tt = 60, rt = tt * 60, Te = rt * 24, mr = Te * 7, wr = Te * 365.25, Sr = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, Ce = (e) => {
+  const t = Sr.exec(e);
   if (!t || t[4] && t[1])
     throw new TypeError("Invalid time period format");
   const r = parseFloat(t[2]), n = t[3].toLowerCase();
@@ -1018,31 +1018,31 @@ const mr = (e) => Math.floor(e.getTime() / 1e3), rt = 60, nt = rt * 60, Re = nt
     case "min":
     case "mins":
     case "m":
-      a = Math.round(r * rt);
+      a = Math.round(r * tt);
       break;
     case "hour":
     case "hours":
     case "hr":
     case "hrs":
     case "h":
-      a = Math.round(r * nt);
+      a = Math.round(r * rt);
       break;
     case "day":
     case "days":
     case "d":
-      a = Math.round(r * Re);
+      a = Math.round(r * Te);
       break;
     case "week":
     case "weeks":
     case "w":
-      a = Math.round(r * wr);
+      a = Math.round(r * mr);
       break;
     default:
-      a = Math.round(r * Sr);
+      a = Math.round(r * wr);
       break;
   }
   return t[1] === "-" || t[4] === "ago" ? -a : a;
-}, Ke = (e) => e.toLowerCase().replace(/^application\//, ""), Tr = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Rr = (e, t, r = {}) => {
+}, Ne = (e) => e.toLowerCase().replace(/^application\//, ""), Ar = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Tr = (e, t, r = {}) => {
   let n;
   try {
     n = JSON.parse(q.decode(t));
@@ -1051,67 +1051,67 @@ const mr = (e) => Math.floor(e.getTime() / 1e3), rt = 60, nt = rt * 60, Re = nt
   if (!G(n))
     throw new b("JWT Claims Set must be a top-level JSON object");
   const { typ: a } = r;
-  if (a && (typeof e.typ != "string" || Ke(e.typ) !== Ke(a)))
+  if (a && (typeof e.typ != "string" || Ne(e.typ) !== Ne(a)))
     throw new _('unexpected "typ" JWT header value', n, "typ", "check_failed");
-  const { requiredClaims: s = [], issuer: o, subject: i, audience: c, maxTokenAge: h } = r, y = [...s];
-  h !== void 0 && y.push("iat"), c !== void 0 && y.push("aud"), i !== void 0 && y.push("sub"), o !== void 0 && y.push("iss");
-  for (const R of new Set(y.reverse()))
+  const { requiredClaims: o = [], issuer: s, subject: i, audience: c, maxTokenAge: y } = r, p = [...o];
+  y !== void 0 && p.push("iat"), c !== void 0 && p.push("aud"), i !== void 0 && p.push("sub"), s !== void 0 && p.push("iss");
+  for (const R of new Set(p.reverse()))
     if (!(R in n))
       throw new _(`missing required "${R}" claim`, n, R, "missing");
-  if (o && !(Array.isArray(o) ? o : [o]).includes(n.iss))
+  if (s && !(Array.isArray(s) ? s : [s]).includes(n.iss))
     throw new _('unexpected "iss" claim value', n, "iss", "check_failed");
   if (i && n.sub !== i)
     throw new _('unexpected "sub" claim value', n, "sub", "check_failed");
-  if (c && !Tr(n.aud, typeof c == "string" ? [c] : c))
+  if (c && !Ar(n.aud, typeof c == "string" ? [c] : c))
     throw new _('unexpected "aud" claim value', n, "aud", "check_failed");
-  let p;
+  let h;
   switch (typeof r.clockTolerance) {
     case "string":
-      p = Ne(r.clockTolerance);
+      h = Ce(r.clockTolerance);
       break;
     case "number":
-      p = r.clockTolerance;
+      h = r.clockTolerance;
       break;
     case "undefined":
-      p = 0;
+      h = 0;
       break;
     default:
       throw new TypeError("Invalid clockTolerance option type");
   }
-  const { currentDate: l } = r, T = mr(l || /* @__PURE__ */ new Date());
-  if ((n.iat !== void 0 || h) && typeof n.iat != "number")
+  const { currentDate: d } = r, f = gr(d || /* @__PURE__ */ new Date());
+  if ((n.iat !== void 0 || y) && typeof n.iat != "number")
     throw new _('"iat" claim must be a number', n, "iat", "invalid");
   if (n.nbf !== void 0) {
     if (typeof n.nbf != "number")
       throw new _('"nbf" claim must be a number', n, "nbf", "invalid");
-    if (n.nbf > T + p)
+    if (n.nbf > f + h)
       throw new _('"nbf" claim timestamp check failed', n, "nbf", "check_failed");
   }
   if (n.exp !== void 0) {
     if (typeof n.exp != "number")
       throw new _('"exp" claim must be a number', n, "exp", "invalid");
-    if (n.exp <= T - p)
-      throw new Se('"exp" claim timestamp check failed', n, "exp", "check_failed");
-  }
-  if (h) {
-    const R = T - n.iat, he = typeof h == "number" ? h : Ne(h);
-    if (R - p > he)
-      throw new Se('"iat" claim timestamp check failed (too far in the past)', n, "iat", "check_failed");
-    if (R < 0 - p)
+    if (n.exp <= f - h)
+      throw new we('"exp" claim timestamp check failed', n, "exp", "check_failed");
+  }
+  if (y) {
+    const R = f - n.iat, Q = typeof y == "number" ? y : Ce(y);
+    if (R - h > Q)
+      throw new we('"iat" claim timestamp check failed (too far in the past)', n, "iat", "check_failed");
+    if (R < 0 - h)
       throw new _('"iat" claim timestamp check failed (it should be in the past)', n, "iat", "check_failed");
   }
   return n;
 };
-async function _r(e, t, r) {
+async function Rr(e, t, r) {
   var n;
-  const a = await gr(e, t, r);
+  const a = await Er(e, t, r);
   if ((n = a.protectedHeader.crit) != null && n.includes("b64") && a.protectedHeader.b64 === !1)
     throw new b("JWTs MUST NOT use unencoded payload");
-  const s = { payload: Rr(a.protectedHeader, a.payload, r), protectedHeader: a.protectedHeader };
-  return typeof t == "function" ? { ...s, key: a.key } : s;
+  const o = { payload: Tr(a.protectedHeader, a.payload, r), protectedHeader: a.protectedHeader };
+  return typeof t == "function" ? { ...o, key: a.key } : o;
 }
-const Ir = C;
-function br(e) {
+const _r = C;
+function Ir(e) {
   if (typeof e != "string")
     throw new b("JWTs must use Compact JWS serialization, JWT must be a string");
   const { 1: t, length: r } = e.split(".");
@@ -1123,7 +1123,7 @@ function br(e) {
     throw new b("JWTs must contain a payload");
   let n;
   try {
-    n = Ir(t);
+    n = _r(t);
   } catch {
     throw new b("Failed to base64url decode the payload");
   }
@@ -1139,56 +1139,56 @@ function br(e) {
 }
 const V = async (e) => {
   try {
-    const t = f.ALG, r = await ir(Lt, t);
-    return await _r(e, r, {
-      issuer: f.ISSUER
+    const t = E.ALG, r = await sr(Ut, t);
+    return await Rr(e, r, {
+      issuer: E.ISSUER
     });
   } catch {
     return;
   }
-}, kr = (e) => {
+}, br = (e) => {
   try {
-    return br(e);
+    return Ir(e);
   } catch {
     return;
   }
-}, m = [];
+}, w = [];
 for (let e = 0; e < 256; ++e)
-  m.push((e + 256).toString(16).slice(1));
-function Or(e, t = 0) {
-  return (m[e[t + 0]] + m[e[t + 1]] + m[e[t + 2]] + m[e[t + 3]] + "-" + m[e[t + 4]] + m[e[t + 5]] + "-" + m[e[t + 6]] + m[e[t + 7]] + "-" + m[e[t + 8]] + m[e[t + 9]] + "-" + m[e[t + 10]] + m[e[t + 11]] + m[e[t + 12]] + m[e[t + 13]] + m[e[t + 14]] + m[e[t + 15]]).toLowerCase();
+  w.push((e + 256).toString(16).slice(1));
+function kr(e, t = 0) {
+  return (w[e[t + 0]] + w[e[t + 1]] + w[e[t + 2]] + w[e[t + 3]] + "-" + w[e[t + 4]] + w[e[t + 5]] + "-" + w[e[t + 6]] + w[e[t + 7]] + "-" + w[e[t + 8]] + w[e[t + 9]] + "-" + w[e[t + 10]] + w[e[t + 11]] + w[e[t + 12]] + w[e[t + 13]] + w[e[t + 14]] + w[e[t + 15]]).toLowerCase();
 }
-let Ee;
-const vr = new Uint8Array(16);
-function Pr() {
-  if (!Ee) {
+let fe;
+const Or = new Uint8Array(16);
+function vr() {
+  if (!fe) {
     if (typeof crypto > "u" || !crypto.getRandomValues)
       throw new Error("crypto.getRandomValues() not supported. See https://github.com/uuidjs/uuid#getrandomvalues-not-supported");
-    Ee = crypto.getRandomValues.bind(crypto);
+    fe = crypto.getRandomValues.bind(crypto);
   }
-  return Ee(vr);
+  return fe(Or);
 }
-const Cr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto), De = { randomUUID: Cr };
-function Ue(e, t, r) {
-  if (De.randomUUID && !t && !e)
-    return De.randomUUID();
+const Pr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto), Ke = { randomUUID: Pr };
+function De(e, t, r) {
+  if (Ke.randomUUID && !t && !e)
+    return Ke.randomUUID();
   e = e || {};
-  const n = e.random || (e.rng || Pr)();
-  return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, Or(n);
+  const n = e.random || (e.rng || vr)();
+  return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, kr(n);
 }
-const Le = globalThis.crypto, Nr = (e) => `${Ue()}${Ue()}`.slice(0, e), Kr = (e) => btoa(
+const Ue = globalThis.crypto, Cr = (e) => `${De()}${De()}`.slice(0, e), Nr = (e) => btoa(
   [...new Uint8Array(e)].map((t) => String.fromCharCode(t)).join("")
 );
-async function Dr(e) {
-  if (!Le.subtle)
+async function Kr(e) {
+  if (!Ue.subtle)
     throw new Error(
       "crypto.subtle is available only in secure contexts (HTTPS)."
     );
-  const t = new TextEncoder().encode(e), r = await Le.subtle.digest("SHA-256", t);
-  return Kr(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  const t = new TextEncoder().encode(e), r = await Ue.subtle.digest("SHA-256", t);
+  return Nr(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
 }
-async function Ur(e) {
-  const r = Nr(43), n = await Dr(r);
+async function Dr(e) {
+  const r = Cr(43), n = await Kr(r);
   return {
     code_verifier: r,
     code_challenge: n
@@ -1197,33 +1197,33 @@ async function Ur(e) {
 const sn = async (e, t) => {
   var r;
   const n = await V(e);
-  if (!n || !Array.isArray((r = n.payload) == null ? void 0 : r[f.SCOPES_KEY]))
+  if (!n || !Array.isArray((r = n.payload) == null ? void 0 : r[E.SCOPES_KEY]))
     return !1;
-  const a = n.payload[f.SCOPES_KEY];
-  return Array.isArray(t) ? t.every((s) => a.includes(s)) : Object.keys(t).some(
-    (s) => t[s].every((o) => a.includes(o))
+  const a = n.payload[E.SCOPES_KEY];
+  return Array.isArray(t) ? t.every((o) => a.includes(o)) : Object.keys(t).some(
+    (o) => t[o].every((s) => a.includes(s))
   );
 };
-function at(e, t) {
+function nt(e, t) {
   window.dispatchEvent(new StorageEvent("storage", { key: e, newValue: t }));
 }
-const He = (e, t) => {
+const Le = (e, t) => {
   const r = JSON.stringify(
     typeof t == "function" ? t() : t
   );
-  window.localStorage.setItem(e, r), at(e, r);
-}, Lr = (e) => {
-  window.localStorage.removeItem(e), at(e, null);
-}, We = (e) => window.localStorage.getItem(e), Hr = (e) => (window.addEventListener("storage", e), () => window.removeEventListener("storage", e));
-function te({
+  window.localStorage.setItem(e, r), nt(e, r);
+}, Ur = (e) => {
+  window.localStorage.removeItem(e), nt(e, null);
+}, We = (e) => window.localStorage.getItem(e), Lr = (e) => (window.addEventListener("storage", e), () => window.removeEventListener("storage", e));
+function re({
   key: e,
   initialValue: t
 }) {
-  const r = _t(Hr, () => We(e)), n = D(
-    (o) => {
+  const r = Rt(Lr, () => We(e)), n = D(
+    (s) => {
       try {
-        const i = typeof o == "function" ? o(JSON.parse(r)) : o;
-        i == null ? Lr(e) : He(e, i);
+        const i = typeof s == "function" ? s(JSON.parse(r)) : s;
+        i == null ? Ur(e) : Le(e, i);
       } catch (i) {
         console.warn(i);
       }
@@ -1231,42 +1231,42 @@ function te({
     [e, r]
   ), a = D(() => {
     n(t);
-  }, [t, n]), s = D(() => {
+  }, [t, n]), o = D(() => {
     n(null);
   }, [n]);
-  return Je(() => {
+  return $e(() => {
     try {
-      We(e) === null && typeof t < "u" && He(e, t);
-    } catch (o) {
-      console.warn(o);
+      We(e) === null && typeof t < "u" && Le(e, t);
+    } catch (s) {
+      console.warn(s);
     }
-  }, [e, t]), [r ? JSON.parse(r) : null, n, a, s];
+  }, [e, t]), [r ? JSON.parse(r) : null, n, a, o];
 }
-const w = [];
+const S = [];
 for (let e = 0; e < 256; ++e)
-  w.push((e + 256).toString(16).slice(1));
+  S.push((e + 256).toString(16).slice(1));
 function Wr(e, t = 0) {
-  return (w[e[t + 0]] + w[e[t + 1]] + w[e[t + 2]] + w[e[t + 3]] + "-" + w[e[t + 4]] + w[e[t + 5]] + "-" + w[e[t + 6]] + w[e[t + 7]] + "-" + w[e[t + 8]] + w[e[t + 9]] + "-" + w[e[t + 10]] + w[e[t + 11]] + w[e[t + 12]] + w[e[t + 13]] + w[e[t + 14]] + w[e[t + 15]]).toLowerCase();
+  return (S[e[t + 0]] + S[e[t + 1]] + S[e[t + 2]] + S[e[t + 3]] + "-" + S[e[t + 4]] + S[e[t + 5]] + "-" + S[e[t + 6]] + S[e[t + 7]] + "-" + S[e[t + 8]] + S[e[t + 9]] + "-" + S[e[t + 10]] + S[e[t + 11]] + S[e[t + 12]] + S[e[t + 13]] + S[e[t + 14]] + S[e[t + 15]]).toLowerCase();
 }
-let ge;
-const $r = new Uint8Array(16);
-function Jr() {
-  if (!ge) {
+let Ee;
+const Hr = new Uint8Array(16);
+function $r() {
+  if (!Ee) {
     if (typeof crypto > "u" || !crypto.getRandomValues)
       throw new Error("crypto.getRandomValues() not supported. See https://github.com/uuidjs/uuid#getrandomvalues-not-supported");
-    ge = crypto.getRandomValues.bind(crypto);
+    Ee = crypto.getRandomValues.bind(crypto);
   }
-  return ge($r);
+  return Ee(Hr);
 }
-const Yr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto), $e = { randomUUID: Yr };
-function me(e, t, r) {
-  if ($e.randomUUID && !t && !e)
-    return $e.randomUUID();
+const Jr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto), He = { randomUUID: Jr };
+function ge(e, t, r) {
+  if (He.randomUUID && !t && !e)
+    return He.randomUUID();
   e = e || {};
-  const n = e.random || (e.rng || Jr)();
+  const n = e.random || (e.rng || $r)();
   return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, Wr(n);
 }
-const W = "Your session has expired. For your security, please log in again to continue.", xr = "Your session has been successfully terminated.", we = "Login failed. Please try again.", Mr = "Error getting access token, please re-authenticate.", Gr = "You forgot to wrap your component in <AuthProvider>.", re = "@@auth@@", B = "LOADING", ae = "LOGIN", ot = "LOGOUT", z = "success", O = "failure", st = "include", it = "POST", ct = "application/json", ne = {
+const H = "Your session has expired. For your security, please log in again to continue.", Yr = "Your session has been successfully terminated.", me = "Login failed. Please try again.", xr = "Error getting access token, please re-authenticate.", Mr = "You forgot to wrap your component in <AuthProvider>.", ne = "@@auth@@", B = "LOADING", oe = "LOGIN", at = "LOGOUT", z = "success", O = "failure", ot = "include", st = "POST", it = "application/json", ae = {
   GET_REGISTRATION_OPTIONS: `mutation GetPasskeyRegistrationOptions(
 	$clientId: String!,
 	$username: String!,
@@ -1349,86 +1349,79 @@ const W = "Your session has expired. For your security, please log in again to c
 	}`
 }, $ = {
   GET_REGISTRATION_OPTIONS: {
-    schema: ne.GET_REGISTRATION_OPTIONS,
+    schema: ae.GET_REGISTRATION_OPTIONS,
     method: "getPasskeyRegistrationOptions"
   },
   VERIFY_REGISTRATION: {
-    schema: ne.VERIFY_REGISTRATION,
+    schema: ae.VERIFY_REGISTRATION,
     method: "verifyPasskeyRegistration"
   },
   GET_AUTHENTICATION_OPTIONS: {
-    schema: ne.GET_AUTHENTICATION_OPTIONS,
+    schema: ae.GET_AUTHENTICATION_OPTIONS,
     method: "getPasskeyAuthenticationOptions"
   },
   VERIFY_AUTHENTICATION: {
-    schema: ne.VERIFY_AUTHENTICATION,
+    schema: ae.VERIFY_AUTHENTICATION,
     method: "verifyPasskeyAuthentication"
   }
 }, J = async ({
   accessToken: e,
   type: t,
   clientId: r,
-  params: n = {}
+  params: n = {},
+  endpoint: a
 }) => {
   try {
-    const a = `Bearer ${e}`, s = await fetch(
-      ut ? `${ce.dev}/graphql` : `${ce.prod}/graphql`,
-      {
-        credentials: st,
-        method: it,
-        headers: {
-          authorization: a,
-          "Content-Type": ct,
-          [Ve.CLIENT_ID]: `${r}`
-        },
-        body: JSON.stringify({
-          query: t.schema,
-          variables: n
-        })
-      }
-    );
+    const o = `Bearer ${e}`, s = await fetch(`${a}/graphql`, {
+      credentials: ot,
+      method: st,
+      headers: {
+        authorization: o,
+        "Content-Type": it,
+        [Ge.CLIENT_ID]: `${r}`
+      },
+      body: JSON.stringify({
+        query: t.schema,
+        variables: n
+      })
+    });
     if (s.status !== 200)
       return { status: O, data: [] };
-    const { data: o } = await s.json();
+    const { data: i } = await s.json();
     return {
       status: z,
-      data: o[t.method]
+      data: i[t.method]
     };
-  } catch (a) {
-    return console.error(a), { status: O, data: [] };
+  } catch (o) {
+    return console.error(o), { status: O, data: [] };
   }
 }, de = async ({
   type: e,
   clientId: t,
-  params: r = {}
+  params: r = {},
+  endpoint: n
 }) => {
   try {
-    const n = await fetch(
-      ut ? `${ce.dev}/${e}` : `${ce.prod}/${e}`,
-      {
-        credentials: st,
-        method: it,
-        headers: {
-          "Content-Type": ct,
-          [Ve.CLIENT_ID]: `${t}`
-        },
-        body: JSON.stringify(r)
-      }
-    );
-    if (n.status !== 200)
+    const a = await fetch(`${n}/${e}`, {
+      credentials: ot,
+      method: st,
+      headers: {
+        "Content-Type": it,
+        [Ge.CLIENT_ID]: `${t}`
+      },
+      body: JSON.stringify(r)
+    });
+    if (a.status !== 200)
       return { status: O, data: [] };
-    const { data: a } = await n.json();
+    const { data: o } = await a.json();
     return {
       status: z,
-      data: a || []
+      data: o || []
     };
-  } catch (n) {
-    return console.error(n), { status: O, data: [] };
+  } catch (a) {
+    return console.error(a), { status: O, data: [] };
   }
-}, Vr = process.env.NODE_ENV === "production", ut = !Vr, ce = {
-  dev: process.env.PUBLIC_AUTH_SERVER_URL || "https://auth.gizmette.local.com:3003",
-  prod: "https://mylogin.gizmette.com/auth"
-}, lt = {
+}, Gr = process.env.NODE_ENV === "production", Vr = !Gr, ct = {
   isLoading: !0,
   isAuthenticated: !1,
   user: void 0,
@@ -1437,8 +1430,8 @@ const W = "Your session has expired. For your security, please log in again to c
   authenticationType: ""
 }, jr = (e) => {
   try {
-    const t = kr(e);
-    return t ? t[f.USER_ID_KEY] : "";
+    const t = br(e);
+    return t ? t[E.USER_ID_KEY] : "";
   } catch {
     return "";
   }
@@ -1446,11 +1439,13 @@ const W = "Your session has expired. For your security, please log in again to c
   userId: e,
   clientId: t,
   domain: r,
-  idToken: n = ""
+  idToken: n = "",
+  endpoint: a
 }) => {
   try {
     return {
       status: (await de({
+        endpoint: a,
         type: ue.LOGOUT,
         clientId: t,
         params: {
@@ -1471,34 +1466,36 @@ const W = "Your session has expired. For your security, please log in again to c
   clientId: r,
   nonce: n,
   type: a,
-  sessionExpiration: s,
-  code: o,
+  sessionExpiration: o,
+  code: s,
   code_verifier: i,
   domain: c,
-  ua: h
+  ua: y,
+  endpoint: p
 }) => {
   try {
-    const y = await de({
+    const h = await de({
+      endpoint: p,
       type: ue.LOGIN,
       clientId: r,
       params: {
         type: a || M.ID_AND_ACCESS_TOKEN,
         username: e,
         password: t,
-        sessionExpiration: s,
+        sessionExpiration: o,
         nonce: n,
-        code: o,
+        code: s,
         code_verifier: i,
         domain: c,
-        ua: h
+        ua: y
       }
-    }), p = await V(y?.data?.idToken);
-    return p && p.payload[f.USER_ID_KEY] !== "" && p.payload[f.NONCE_KEY] === n ? {
-      idToken: y.data.idToken,
-      accessToken: y.data.accessToken,
-      refreshToken: y.data.refreshToken,
-      userId: p.payload[f.USER_ID_KEY],
-      email: p.payload[f.EMAIL_KEY],
+    }), d = await V(h?.data?.idToken);
+    return d && d.payload[E.USER_ID_KEY] !== "" && d.payload[E.NONCE_KEY] === n ? {
+      idToken: h.data.idToken,
+      accessToken: h.data.accessToken,
+      refreshToken: h.data.refreshToken,
+      userId: d.payload[E.USER_ID_KEY],
+      email: d.payload[E.EMAIL_KEY],
       status: !0
     } : {
       status: !1
@@ -1511,10 +1508,12 @@ const W = "Your session has expired. For your security, please log in again to c
 }, qr = async ({
   nonce: e,
   clientId: t,
-  code_challenge: r
+  code_challenge: r,
+  endpoint: n
 }) => {
   try {
-    const n = await de({
+    const a = await de({
+      endpoint: n,
       type: ue.CODE,
       clientId: t,
       params: {
@@ -1523,9 +1522,9 @@ const W = "Your session has expired. For your security, please log in again to c
         code_challenge: r
       }
     });
-    return n?.data?.code ? {
+    return a?.data?.code ? {
       status: z,
-      data: n.data.code
+      data: a.data.code
     } : {
       status: O,
       data: ""
@@ -1542,10 +1541,12 @@ const W = "Your session has expired. For your security, please log in again to c
   nonce: r,
   refreshToken: n,
   accessToken: a,
-  domain: s
+  domain: o,
+  endpoint: s
 }) => {
   try {
-    const o = await de({
+    const i = await de({
+      endpoint: s,
       type: ue.REFRESH,
       clientId: e,
       params: {
@@ -1554,13 +1555,13 @@ const W = "Your session has expired. For your security, please log in again to c
         nonce: r,
         refreshToken: n,
         accessToken: a,
-        domain: s
+        domain: o
       }
-    }), i = await V(o?.data?.accessToken);
-    return i && i.payload[f.USER_ID_KEY] !== "" && i.payload[f.NONCE_KEY] === r ? {
-      accessToken: o.data.accessToken,
-      refreshToken: o.data.refreshToken,
-      userId: i.payload[f.USER_ID_KEY],
+    }), c = await V(i?.data?.accessToken);
+    return c && c.payload[E.USER_ID_KEY] !== "" && c.payload[E.NONCE_KEY] === r ? {
+      accessToken: i.data.accessToken,
+      refreshToken: i.data.refreshToken,
+      userId: c.payload[E.USER_ID_KEY],
       status: !0
     } : {
       status: !1
@@ -1573,18 +1574,20 @@ const W = "Your session has expired. For your security, please log in again to c
 };
 class Qr {
   constructor(t = null, r = null) {
-    X(this, "refreshTokenPromise", null);
-    X(this, "accessToken");
-    X(this, "refreshToken");
+    Z(this, "refreshTokenPromise", null);
+    Z(this, "accessToken");
+    Z(this, "refreshToken");
     this.accessToken = t || "", this.refreshToken = r || "";
   }
   async refreshtoken({
     clientId: t,
     userId: r,
     nonce: n,
-    domain: a
+    domain: a,
+    endpoint: o
   }) {
     this.refreshTokenPromise || (this.refreshTokenPromise = this._refreshToken({
+      endpoint: o,
       clientId: t,
       userId: r,
       nonce: n,
@@ -1597,25 +1600,27 @@ class Qr {
     }
   }
   async _refreshToken({
-    clientId: t,
-    userId: r,
-    nonce: n,
-    domain: a
+    endpoint: t,
+    clientId: r,
+    userId: n,
+    nonce: a,
+    domain: o
   }) {
     const s = await V(this.refreshToken);
-    if (s && s.payload[f.USER_ID_KEY] !== "") {
-      const o = await zr({
-        clientId: t,
-        userId: r,
-        nonce: n,
+    if (s && s.payload[E.USER_ID_KEY] !== "") {
+      const i = await zr({
+        endpoint: t,
+        clientId: r,
+        userId: n,
+        nonce: a,
         refreshToken: this.refreshToken,
         accessToken: this.accessToken,
-        domain: a
+        domain: o
       });
-      return o.status ? (this.accessToken = o.accessToken, this.refreshToken = o.refreshToken, {
+      return i.status ? (this.accessToken = i.accessToken, this.refreshToken = i.refreshToken, {
         status: z,
-        newAccessToken: o.accessToken,
-        newRefreshToken: o.refreshToken
+        newAccessToken: i.accessToken,
+        newRefreshToken: i.refreshToken
       }) : {
         status: O
       };
@@ -1631,8 +1636,8 @@ const Xr = (e) => D(
   },
   [e]
 ), Y = () => {
-  throw new Error(Gr);
-}, dt = It({
+  throw new Error(Mr);
+}, ut = _t({
   isAuthenticated: !1,
   isLoading: !1,
   login: Y,
@@ -1643,21 +1648,21 @@ const Xr = (e) => D(
   loginWithPasskey: Y,
   logoutReason: "",
   authenticationType: ""
-}), Zr = Rt.createContext({
-  state: lt,
+}), Zr = Tt.createContext({
+  state: ct,
   dispatch: () => {
   }
 }), en = (e, t) => t?.type === B ? {
   ...e,
   isLoading: t.payload.isLoading
-} : t?.type === ae ? {
+} : t?.type === oe ? {
   ...e,
   isLoading: !1,
   isAuthenticated: !0,
   user: t.payload.user,
   authenticationType: t.payload.authenticationType,
   logoutReason: ""
-} : t?.type === ot ? {
+} : t?.type === at ? {
   ...e,
   isLoading: !1,
   isAuthenticated: !1,
@@ -1669,106 +1674,118 @@ const Xr = (e) => D(
   sessionExpiration: t,
   clientId: r,
   domain: n = "",
-  debug: a = !1
+  debug: a = !1,
+  endpoint: o = Vr ? "https://auth.gizmette.local.com:3003" : "https://mylogin.gizmette.com/auth"
 }) => {
-  const [s, o] = bt(en, {
-    ...lt,
+  const [s, i] = It(en, {
+    ...ct,
     debug: a
-  }), i = Xr(a), c = kt(!1), [h, y, , p] = te({
-    key: `${re}::${r}::@@user@@`
-  }), [l, T, , R] = te({
-    key: `${re}::${r}::@@access@@`
-  }), [he, pe, , _e] = te(
+  }), c = Xr(a), y = bt(!1), [p, h, , d] = re({
+    key: `${ne}::${r}::@@user@@`
+  }), [f, R, , Q] = re({
+    key: `${ne}::${r}::@@access@@`
+  }), [lt, he, , Re] = re(
     {
-      key: `${re}::${r}::@@refresh@@`
+      key: `${ne}::${r}::@@refresh@@`
     }
-  ), [ht, Ie, , be] = te({
-    key: `${re}::${r}::@@nonce@@`
-  }), pt = new Qr(l, he), Q = D(() => {
-    i("removeLocalStorage: removing local storage"), p(), R(), _e(), be();
+  ), [dt, _e, , Ie] = re({
+    key: `${ne}::${r}::@@nonce@@`
+  }), ht = new Qr(f, lt), X = D(() => {
+    c("removeLocalStorage: removing local storage"), d(), Q(), Re(), Ie();
   }, [
-    R,
-    p,
-    be,
-    _e,
-    i
+    Q,
+    d,
+    Ie,
+    Re,
+    c
   ]), F = D(
     (u) => {
-      i(
+      c(
         "removeStateAndLocalStorage: removing state and local storage with reason: ",
         u
-      ), o({
-        type: ot,
+      ), i({
+        type: at,
         payload: {
-          logoutReason: u || W
+          logoutReason: u || H
         }
-      }), Q(), o({ type: B, payload: { isLoading: !1 } });
+      }), X(), i({ type: B, payload: { isLoading: !1 } });
     },
-    [Q, i]
+    [X, c]
   ), N = D(
     async (u) => {
-      i("invalidateAndLogout: invalidating and logging out");
-      const { user: g } = s, d = g?.userId || jr(h);
-      d || i(
+      c("invalidateAndLogout: invalidating and logging out");
+      const { user: m } = s, l = m?.userId || jr(p);
+      l || c(
         "invalidateAndLogout: user cannot be identified, logging out without userId"
       ), await Fr({
-        userId: d,
+        userId: l,
         clientId: r,
         domain: n,
-        idToken: h
-      }), F(u || W);
+        idToken: p,
+        endpoint: o
+      }), F(u || H);
     },
-    [h, s, r, n, F, i]
+    [
+      p,
+      s,
+      r,
+      n,
+      F,
+      c,
+      o
+    ]
   );
-  Je(() => {
-    if (!c.current)
-      return s.isLoading && h !== null ? (async () => {
+  $e(() => {
+    if (!y.current)
+      return s.isLoading && p !== null ? (async () => {
         try {
-          const u = await V(h);
-          u && u.payload[f.USER_ID_KEY] !== "" ? (i("useEffect: setting the authentication state"), o({
-            type: ae,
+          const u = await V(p);
+          u && u.payload[E.USER_ID_KEY] !== "" ? (c("useEffect: setting the authentication state"), i({
+            type: oe,
             payload: {
-              authenticationType: u.payload[f.AUTH_TYPE_KEY],
+              authenticationType: u.payload[E.AUTH_TYPE_KEY],
               user: {
-                userId: u.payload[f.USER_ID_KEY],
-                username: u.payload[f.USERNAME_KEY],
-                email: u.payload[f.EMAIL_KEY]
+                userId: u.payload[E.USER_ID_KEY],
+                username: u.payload[E.USERNAME_KEY],
+                email: u.payload[E.EMAIL_KEY]
               }
             }
-          })) : (i("useEffect: invalid JWT, invalidating and logging out"), await N(W));
+          })) : (c("useEffect: invalid JWT, invalidating and logging out"), await N(H));
         } catch {
-          i(
+          c(
             "useEffect: exception validating JWT, invalidating and logging out"
-          ), await N(W);
+          ), await N(H);
         }
-      })() : (i("useEffect: setting the loading state to false"), o({ type: B, payload: { isLoading: !1 } })), () => {
-        c.current = !0;
+      })() : (c("useEffect: setting the loading state to false"), i({ type: B, payload: { isLoading: !1 } })), () => {
+        y.current = !0;
       };
-  }, [s.isLoading, h, N, i]);
-  const yt = async (u, g) => {
-    o({ type: B, payload: { isLoading: !0 } }), Q();
-    const d = me();
-    Ie(d), i("login: Logging in with password");
-    const { code_verifier: K, code_challenge: St } = await Ur(), ke = await qr({
-      nonce: d,
+  }, [s.isLoading, p, N, c]);
+  const pt = async (u, m) => {
+    i({ type: B, payload: { isLoading: !0 } }), X();
+    const l = ge();
+    _e(l), c("login: Logging in with password");
+    const { code_verifier: K, code_challenge: wt } = await Dr(), be = await qr({
+      endpoint: o,
+      nonce: l,
       clientId: r,
-      code_challenge: St
+      code_challenge: wt
     });
-    if (ke.status) {
+    if (be.status) {
       const U = await Br({
+        endpoint: o,
         username: u,
-        password: g,
+        password: m,
         clientId: r,
         sessionExpiration: t,
-        nonce: d,
+        nonce: l,
         type: M.CODE,
-        code: ke.data,
+        code: be.data,
         code_verifier: K,
         domain: n,
         ua: navigator.userAgent
       });
-      return U.status ? (y(U.idToken), T(U.accessToken), pe(U.refreshToken), o({
-        type: ae,
+      return U.status ? (h(U.idToken), R(U.accessToken), he(U.refreshToken), i({
+        type: oe,
         payload: {
           authenticationType: M.CODE,
           user: {
@@ -1777,44 +1794,46 @@ const Xr = (e) => D(
             email: U.email
           }
         }
-      }), !0) : (F(we), !1);
+      }), !0) : (F(me), !1);
     }
     return !1;
-  }, ft = async (u) => {
-    u?.preventDefault(), await N(xr);
-  }, Et = async () => {
-    const { isAuthenticated: u, user: g } = s;
+  }, yt = async (u) => {
+    u?.preventDefault(), await N(Yr);
+  }, ft = async () => {
+    const { isAuthenticated: u, user: m } = s;
     try {
-      if (u && g && g.userId) {
-        if (l) {
-          i("getAccessToken");
-          const K = await V(l);
-          if (K && K.payload[f.USER_ID_KEY] !== "")
-            return l;
+      if (u && m && m.userId) {
+        if (f) {
+          c("getAccessToken");
+          const K = await V(f);
+          if (K && K.payload[E.USER_ID_KEY] !== "")
+            return f;
         }
-        i("getAccessToken: invalid access token, trying to refresh it");
-        const d = await pt.refreshtoken({
+        c("getAccessToken: invalid access token, trying to refresh it");
+        const l = await ht.refreshtoken({
+          endpoint: o,
           clientId: r,
-          userId: g.userId,
-          nonce: ht,
+          userId: m.userId,
+          nonce: dt,
           domain: n
         });
-        return d.status && d.status === "success" && d.newAccessToken ? (T(d.newAccessToken), pe(d.newRefreshToken), d.newAccessToken) : (i(
+        return l.status && l.status === "success" && l.newAccessToken ? (R(l.newAccessToken), he(l.newRefreshToken), l.newAccessToken) : (c(
           "getAccessToken: invalid refresh token, need to re-authenticate"
-        ), await N(W), "");
+        ), await N(H), "");
       }
-      return i(
+      return c(
         "getAccessToken: user is not authenticated, cannot get access token"
-      ), await N(W), "";
+      ), await N(H), "";
     } catch {
-      return i(
+      return c(
         "getAccessToken: exception occurred, invalidating and logging out"
-      ), await N(Mr), "";
+      ), await N(xr), "";
     }
-  }, gt = () => s.isAuthenticated && h ? h : "", mt = async () => {
+  }, Et = () => s.isAuthenticated && p ? p : "", gt = async () => {
     const { user: u } = s;
-    let g = await J({
-      accessToken: l,
+    let m = await J({
+      endpoint: o,
+      accessToken: f,
       clientId: r,
       type: $.GET_REGISTRATION_OPTIONS,
       params: {
@@ -1823,23 +1842,25 @@ const Xr = (e) => D(
         username: u?.username
       }
     });
-    if (g.status)
+    if (m.status)
       try {
-        const d = await Nt(g.data);
-        return g = await J({
-          accessToken: l,
+        const l = await Ct(m.data);
+        return m = await J({
+          endpoint: o,
+          accessToken: f,
           clientId: r,
           type: $.VERIFY_REGISTRATION,
           params: {
             clientId: r,
             id: u?.userId,
             username: u?.username,
-            registration: d
+            registration: l
           }
-        }), !!(g.status && g.data.length > 0);
+        }), !!(m.status && m.data.length > 0);
       } catch {
         return await J({
-          accessToken: l,
+          endpoint: o,
+          accessToken: f,
           clientId: r,
           type: $.VERIFY_REGISTRATION,
           params: {
@@ -1851,80 +1872,83 @@ const Xr = (e) => D(
         }), !1;
       }
     return !1;
-  }, wt = async () => {
-    o({ type: B, payload: { isLoading: !0 } }), Q();
-    const u = me();
-    Ie(u), i("loginWithPasskey");
-    const g = me();
-    let d = await J({
-      accessToken: l,
+  }, mt = async () => {
+    i({ type: B, payload: { isLoading: !0 } }), X();
+    const u = ge();
+    _e(u), c("loginWithPasskey");
+    const m = ge();
+    let l = await J({
+      endpoint: o,
+      accessToken: f,
       clientId: r,
       type: $.GET_AUTHENTICATION_OPTIONS,
       params: {
-        id: g,
+        id: m,
         clientId: r
       }
     });
-    if (d.status)
+    if (l.status)
       try {
-        const K = await Ut(d.data);
-        return d = await J({
-          accessToken: l,
+        const K = await Dt(l.data);
+        return l = await J({
+          endpoint: o,
+          accessToken: f,
           clientId: r,
           type: $.VERIFY_AUTHENTICATION,
           params: {
             clientId: r,
-            id: g,
+            id: m,
             authentication: K,
             nonce: u,
             domain: n,
             sessionExpiration: t,
             ua: navigator.userAgent
           }
-        }), d.data.status === z ? (y(d.data.idToken), T(d.data.accessToken), pe(d.data.refreshToken), o({
-          type: ae,
+        }), l.data.status === z ? (h(l.data.idToken), R(l.data.accessToken), he(l.data.refreshToken), i({
+          type: oe,
           payload: {
             authenticationType: M.PASSKEY,
             user: {
-              userId: d.data.userId,
-              username: d.data.username,
-              email: d.data.email
+              userId: l.data.userId,
+              username: l.data.username,
+              email: l.data.email
             }
           }
-        }), !0) : (F(we), !1);
+        }), !0) : (F(me), !1);
       } catch {
         return await J({
-          accessToken: l,
+          endpoint: o,
+          accessToken: f,
           clientId: r,
           type: $.VERIFY_AUTHENTICATION,
           params: {
             clientId: r,
-            id: g,
+            id: m,
             authentication: {},
             nonce: u,
             domain: n,
             sessionExpiration: t
           }
-        }), F(we), !1;
+        }), F(me), !1;
       }
     return !1;
   };
-  return /* @__PURE__ */ Oe(Zr.Provider, { value: { state: s, dispatch: o }, children: /* @__PURE__ */ Oe(
-    dt.Provider,
+  return /* @__PURE__ */ ke(Zr.Provider, { value: { state: s, dispatch: i }, children: /* @__PURE__ */ ke(
+    ut.Provider,
     {
       value: {
         ...s,
-        login: yt,
-        logout: ft,
-        getAccessToken: Et,
-        getIdToken: gt,
-        registeringForPasskey: mt,
-        loginWithPasskey: wt
+        login: pt,
+        logout: yt,
+        getAccessToken: ft,
+        getIdToken: Et,
+        registeringForPasskey: gt,
+        loginWithPasskey: mt
       },
       children: e
     }
   ) });
-}, un = (e = dt) => Ot(e);
+}, un = (e = ut) => kt(e);
 export {
   M as AUTH_TYPES,
   cn as AuthProvider,