@zoneout/sdk 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 ZoneOut
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,124 @@
+# @zoneout/sdk
+
+SDK for integrating "Login with ZoneOut ID" into web applications.
+
+## Installation
+
+```bash
+npm install @zoneout/sdk
+```
+
+## Quick Start
+
+### Frontend (React)
+
+```tsx
+import { ZoneOutProvider, useZoneOut } from '@zoneout/sdk/react';
+
+function App() {
+  return (
+    <ZoneOutProvider config={{
+      clientId: process.env.NEXT_PUBLIC_ZONEOUT_CLIENT_ID!,
+      authServerUrl: process.env.NEXT_PUBLIC_ZONEOUT_AUTH_URL!,
+      redirectUri: `${window.location.origin}/auth/callback`,
+      scope: ['identity', 'trust:game', 'trust:social'],
+    }}>
+      <LoginButton />
+    </ZoneOutProvider>
+  );
+}
+
+function LoginButton() {
+  const { login, isLoading, error } = useZoneOut();
+
+  return (
+    <button onClick={login} disabled={isLoading}>
+      {isLoading ? 'Waiting for approval...' : 'Login with ZoneOut ID'}
+    </button>
+  );
+}
+```
+
+### Backend (Next.js Route Handler)
+
+```typescript
+// app/auth/callback/route.ts
+import { exchangeCodeForTokens } from '@zoneout/sdk/server';
+
+export async function GET(request: Request) {
+  const url = new URL(request.url);
+  const code = url.searchParams.get('code')!;
+  const codeVerifier = /* retrieve from session/cookie */;
+
+  const { access_token, refresh_token, user } = await exchangeCodeForTokens({
+    code,
+    clientId: process.env.ZONEOUT_CLIENT_ID!,
+    clientSecret: process.env.ZONEOUT_CLIENT_SECRET!,
+    codeVerifier,
+    redirectUri: `${process.env.NEXT_PUBLIC_BASE_URL}/auth/callback`,
+    authServerUrl: process.env.ZONEOUT_AUTH_URL!,
+  });
+
+  // Create session, set cookies, redirect
+}
+```
+
+## Architecture
+
+The SDK has two parts:
+
+1. **Client-side** (`@zoneout/sdk`): Handles login initiation, QR code generation, and polling
+2. **Server-side** (`@zoneout/sdk/server`): Handles token exchange using `client_secret` (never exposed to frontend)
+
+The `client_secret` is NEVER used in the browser. Token exchange always happens server-to-server.
+
+## API
+
+### `ZoneOutClient`
+
+Main client class for frontend use.
+
+```typescript
+import { ZoneOutClient } from '@zoneout/sdk';
+
+const client = new ZoneOutClient({
+  clientId: 'your-client-id',
+  authServerUrl: 'https://xxx.supabase.co/functions/v1',
+  redirectUri: 'https://yourapp.com/auth/callback',
+});
+
+// Full login flow (initiate + poll + redirect)
+await client.login();
+
+// Or step-by-step for custom UI
+const { qrCodeUrl, waitForApproval, abort } = await client.initiateLogin();
+// Show QR code with qrCodeUrl...
+const result = await waitForApproval();
+// Handle result...
+```
+
+### Server Helpers
+
+```typescript
+import { exchangeCodeForTokens, refreshAccessToken } from '@zoneout/sdk/server';
+
+// Exchange authorization code for tokens
+const tokens = await exchangeCodeForTokens({ code, clientId, clientSecret, codeVerifier, redirectUri, authServerUrl });
+
+// Refresh access token
+const newTokens = await refreshAccessToken({ refreshToken, clientId, clientSecret, authServerUrl });
+```
+
+### React
+
+```typescript
+import { ZoneOutProvider, useZoneOut } from '@zoneout/sdk/react';
+
+// Wrap your app
+<ZoneOutProvider config={...}>
+  <App />
+</ZoneOutProvider>
+
+// Use the hook
+const { login, initiateLogin, isLoading, qrCodeUrl, error } = useZoneOut();
+```

package/dist/cjs/client.d.ts

@@ -0,0 +1,53 @@
+import type { ZoneOutConfig, ZoneOutEvent, ZoneOutEventCallback } from './types';
+import { type PollingResult } from './polling';
+export interface LoginInitResult {
+    /** URL del QR code da mostrare all'utente: zoneout://approve?session={id} */
+    qrCodeUrl: string;
+    /** ID della sessione di login */
+    sessionId: string;
+    /** Scade a (ISO string) */
+    expiresAt: string;
+    /** AbortController per annullare il login */
+    abort: AbortController;
+    /**
+     * Promise che si risolve quando l'utente approva.
+     * Restituisce il risultato con authorization_code.
+     * Il consumer è responsabile del redirect.
+     */
+    waitForApproval: () => Promise<PollingResult>;
+}
+export declare class ZoneOutClient {
+    private config;
+    private listeners;
+    private _codeVerifier;
+    private _state;
+    constructor(config: ZoneOutConfig);
+    /**
+     * Avvia il flusso di login.
+     * Restituisce l'URL del QR code e una promise per attendere l'approvazione.
+     */
+    initiateLogin(): Promise<LoginInitResult>;
+    /**
+     * Restituisce il code_verifier generato nell'ultimo initiateLogin.
+     * Serve al backend per il token exchange.
+     * ATTENZIONE: NON inviare mai il code_verifier a terzi. Va solo al TUO backend.
+     */
+    getCodeVerifier(): string | null;
+    /**
+     * Restituisce lo state generato nell'ultimo initiateLogin.
+     */
+    getState(): string | null;
+    /**
+     * Genera l'URL di redirect al backend del consumer con i parametri necessari.
+     */
+    buildCallbackUrl(authorizationCode: string): string;
+    /**
+     * Flusso completo: initiate -> poll -> redirect.
+     */
+    login(): Promise<void>;
+    on(event: ZoneOutEvent, callback: ZoneOutEventCallback): void;
+    off(event: ZoneOutEvent, callback: ZoneOutEventCallback): void;
+    private emit;
+    private mapServerError;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/cjs/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,aAAa,EAEb,YAAY,EACZ,oBAAoB,EAErB,MAAM,SAAS,CAAC;AAGjB,OAAO,EAAmB,KAAK,aAAa,EAAE,MAAM,WAAW,CAAC;AAEhE,MAAM,WAAW,eAAe;IAC9B,6EAA6E;IAC7E,SAAS,EAAE,MAAM,CAAC;IAClB,iCAAiC;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,2BAA2B;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,6CAA6C;IAC7C,KAAK,EAAE,eAAe,CAAC;IACvB;;;;OAIG;IACH,eAAe,EAAE,MAAM,OAAO,CAAC,aAAa,CAAC,CAAC;CAC/C;AAED,qBAAa,aAAa;IACxB,OAAO,CAAC,MAAM,CAA0B;IACxC,OAAO,CAAC,SAAS,CAA2D;IAC5E,OAAO,CAAC,aAAa,CAAuB;IAC5C,OAAO,CAAC,MAAM,CAAuB;gBAEzB,MAAM,EAAE,aAAa;IAUjC;;;OAGG;IACG,aAAa,IAAI,OAAO,CAAC,eAAe,CAAC;IAgE/C;;;;OAIG;IACH,eAAe,IAAI,MAAM,GAAG,IAAI;IAIhC;;OAEG;IACH,QAAQ,IAAI,MAAM,GAAG,IAAI;IAIzB;;OAEG;IACH,gBAAgB,CAAC,iBAAiB,EAAE,MAAM,GAAG,MAAM;IAOnD;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAW5B,EAAE,CAAC,KAAK,EAAE,YAAY,EAAE,QAAQ,EAAE,oBAAoB,GAAG,IAAI;IAO7D,GAAG,CAAC,KAAK,EAAE,YAAY,EAAE,QAAQ,EAAE,oBAAoB,GAAG,IAAI;IAI9D,OAAO,CAAC,IAAI;IAIZ,OAAO,CAAC,cAAc;CAQvB"}

package/dist/cjs/client.js

@@ -0,0 +1,141 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZoneOutClient = void 0;
+const errors_1 = require("./errors");
+const pkce_1 = require("./pkce");
+const polling_1 = require("./polling");
+class ZoneOutClient {
+    constructor(config) {
+        this.listeners = new Map();
+        this._codeVerifier = null;
+        this._state = null;
+        this.config = {
+            ...config,
+            apiKey: config.apiKey ?? '',
+            scope: config.scope ?? ['identity'],
+            pollingTimeout: config.pollingTimeout ?? 300000,
+            pollingInterval: config.pollingInterval ?? 2000,
+        };
+    }
+    /**
+     * Avvia il flusso di login.
+     * Restituisce l'URL del QR code e una promise per attendere l'approvazione.
+     */
+    async initiateLogin() {
+        const codeVerifier = (0, pkce_1.generateCodeVerifier)();
+        const codeChallenge = await (0, pkce_1.generateCodeChallenge)(codeVerifier);
+        const state = (0, pkce_1.generateState)();
+        this._codeVerifier = codeVerifier;
+        this._state = state;
+        this.emit('login_start');
+        const res = await fetch(`${this.config.authServerUrl}/auth-login-initiate`, {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                ...(this.config.apiKey ? { apikey: this.config.apiKey, Authorization: `Bearer ${this.config.apiKey}` } : {}),
+            },
+            body: JSON.stringify({
+                client_id: this.config.clientId,
+                code_challenge: codeChallenge,
+                code_challenge_method: 'S256',
+                redirect_uri: this.config.redirectUri,
+                state,
+                scope: this.config.scope.join(' '),
+            }),
+        });
+        if (!res.ok) {
+            const body = await res.json().catch(() => ({}));
+            const code = this.mapServerError(body);
+            throw new errors_1.ZoneOutError(code, body.error || `Initiate failed: HTTP ${res.status}`, body);
+        }
+        const session = await res.json();
+        const abortController = new AbortController();
+        const qrCodeUrl = `zoneout://approve/${session.login_session_id}`;
+        const waitForApproval = async () => {
+            const result = await (0, polling_1.pollForApproval)({
+                sessionId: session.login_session_id,
+                authServerUrl: this.config.authServerUrl,
+                apiKey: this.config.apiKey,
+                interval: this.config.pollingInterval,
+                timeout: this.config.pollingTimeout,
+                signal: abortController.signal,
+                onStatusChange: (status) => {
+                    if (status === 'approved')
+                        this.emit('login_approved');
+                    if (status === 'rejected')
+                        this.emit('login_rejected');
+                    if (status === 'expired')
+                        this.emit('login_expired');
+                },
+            });
+            return result;
+        };
+        return {
+            qrCodeUrl,
+            sessionId: session.login_session_id,
+            expiresAt: session.expires_at,
+            abort: abortController,
+            waitForApproval,
+        };
+    }
+    /**
+     * Restituisce il code_verifier generato nell'ultimo initiateLogin.
+     * Serve al backend per il token exchange.
+     * ATTENZIONE: NON inviare mai il code_verifier a terzi. Va solo al TUO backend.
+     */
+    getCodeVerifier() {
+        return this._codeVerifier;
+    }
+    /**
+     * Restituisce lo state generato nell'ultimo initiateLogin.
+     */
+    getState() {
+        return this._state;
+    }
+    /**
+     * Genera l'URL di redirect al backend del consumer con i parametri necessari.
+     */
+    buildCallbackUrl(authorizationCode) {
+        const url = new URL(this.config.redirectUri);
+        url.searchParams.set('code', authorizationCode);
+        url.searchParams.set('state', this._state ?? '');
+        return url.toString();
+    }
+    /**
+     * Flusso completo: initiate -> poll -> redirect.
+     */
+    async login() {
+        const { waitForApproval } = await this.initiateLogin();
+        const result = await waitForApproval();
+        if (result.authorization_code) {
+            window.location.href = this.buildCallbackUrl(result.authorization_code);
+        }
+    }
+    // --- Event system ---
+    on(event, callback) {
+        if (!this.listeners.has(event)) {
+            this.listeners.set(event, new Set());
+        }
+        this.listeners.get(event).add(callback);
+    }
+    off(event, callback) {
+        this.listeners.get(event)?.delete(callback);
+    }
+    emit(event, data) {
+        this.listeners.get(event)?.forEach(cb => cb(event, data));
+    }
+    mapServerError(body) {
+        const error = String(body.error || '');
+        if (error.includes('client') || error.includes('client_id'))
+            return 'INVALID_CLIENT';
+        if (error.includes('redirect'))
+            return 'INVALID_REDIRECT';
+        if (error.includes('rate') || error.includes('limit'))
+            return 'RATE_LIMITED';
+        if (error.includes('provider'))
+            return 'PROVIDER_MISSING';
+        return 'UNKNOWN_ERROR';
+    }
+}
+exports.ZoneOutClient = ZoneOutClient;
+//# sourceMappingURL=client.js.map

package/dist/cjs/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":";;;AAOA,qCAAwC;AACxC,iCAAoF;AACpF,uCAAgE;AAmBhE,MAAa,aAAa;IAMxB,YAAY,MAAqB;QAJzB,cAAS,GAAiD,IAAI,GAAG,EAAE,CAAC;QACpE,kBAAa,GAAkB,IAAI,CAAC;QACpC,WAAM,GAAkB,IAAI,CAAC;QAGnC,IAAI,CAAC,MAAM,GAAG;YACZ,GAAG,MAAM;YACT,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,EAAE;YAC3B,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,CAAC,UAAU,CAAC;YACnC,cAAc,EAAE,MAAM,CAAC,cAAc,IAAI,MAAO;YAChD,eAAe,EAAE,MAAM,CAAC,eAAe,IAAI,IAAK;SACjD,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,aAAa;QACjB,MAAM,YAAY,GAAG,IAAA,2BAAoB,GAAE,CAAC;QAC5C,MAAM,aAAa,GAAG,MAAM,IAAA,4BAAqB,EAAC,YAAY,CAAC,CAAC;QAChE,MAAM,KAAK,GAAG,IAAA,oBAAa,GAAE,CAAC;QAE9B,IAAI,CAAC,aAAa,GAAG,YAAY,CAAC;QAClC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QAEpB,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAEzB,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,sBAAsB,EAAE;YAC1E,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,EAAE,UAAU,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aAC7G;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;gBAC/B,cAAc,EAAE,aAAa;gBAC7B,qBAAqB,EAAE,MAAM;gBAC7B,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW;gBACrC,KAAK;gBACL,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC;aACnC,CAAC;SACH,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAChD,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;YACvC,MAAM,IAAI,qBAAY,CAAC,IAAI,EAAE,IAAI,CAAC,KAAK,IAAI,yBAAyB,GAAG,CAAC,MAAM,EAAE,EAAE,IAAI,CAAC,CAAC;QAC1F,CAAC;QAED,MAAM,OAAO,GAAiB,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAC/C,MAAM,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;QAE9C,MAAM,SAAS,GAAG,qBAAqB,OAAO,CAAC,gBAAgB,EAAE,CAAC;QAElE,MAAM,eAAe,GAAG,KAAK,IAA4B,EAAE;YACzD,MAAM,MAAM,GAAG,MAAM,IAAA,yBAAe,EAAC;gBACnC,SAAS,EAAE,OAAO,CAAC,gBAAgB;gBACnC,aAAa,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa;gBACxC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM;gBAC1B,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,eAAe;gBACrC,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,cAAc;gBACnC,MAAM,EAAE,eAAe,CAAC,MAAM;gBAC9B,cAAc,EAAE,CAAC,MAAM,EAAE,EAAE;oBACzB,IAAI,MAAM,KAAK,UAAU;wBAAE,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;oBACvD,IAAI,MAAM,KAAK,UAAU;wBAAE,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;oBACvD,IAAI,MAAM,KAAK,SAAS;wBAAE,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;gBACvD,CAAC;aACF,CAAC,CAAC;YAEH,OAAO,MAAM,CAAC;QAChB,CAAC,CAAC;QAEF,OAAO;YACL,SAAS;YACT,SAAS,EAAE,OAAO,CAAC,gBAAgB;YACnC,SAAS,EAAE,OAAO,CAAC,UAAU;YAC7B,KAAK,EAAE,eAAe;YACtB,eAAe;SAChB,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,eAAe;QACb,OAAO,IAAI,CAAC,aAAa,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,QAAQ;QACN,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,iBAAyB;QACxC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;QAC7C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,iBAAiB,CAAC,CAAC;QAChD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC;QACjD,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;IACxB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,KAAK;QACT,MAAM,EAAE,eAAe,EAAE,GAAG,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;QACvD,MAAM,MAAM,GAAG,MAAM,eAAe,EAAE,CAAC;QAEvC,IAAI,MAAM,CAAC,kBAAkB,EAAE,CAAC;YAC9B,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC;QAC1E,CAAC;IACH,CAAC;IAED,uBAAuB;IAEvB,EAAE,CAAC,KAAmB,EAAE,QAA8B;QACpD,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC/B,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,GAAG,EAAE,CAAC,CAAC;QACvC,CAAC;QACD,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC3C,CAAC;IAED,GAAG,CAAC,KAAmB,EAAE,QAA8B;QACrD,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC9C,CAAC;IAEO,IAAI,CAAC,KAAmB,EAAE,IAAc;QAC9C,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC,CAAC;IAC5D,CAAC;IAEO,cAAc,CAAC,IAA6B;QAClD,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC;QACvC,IAAI,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC;YAAE,OAAO,gBAAgB,CAAC;QACrF,IAAI,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC;YAAE,OAAO,kBAAkB,CAAC;QAC1D,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC;YAAE,OAAO,cAAc,CAAC;QAC7E,IAAI,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC;YAAE,OAAO,kBAAkB,CAAC;QAC1D,OAAO,eAAe,CAAC;IACzB,CAAC;CACF;AAnJD,sCAmJC"}

package/dist/cjs/errors.d.ts

@@ -0,0 +1,7 @@
+import type { ZoneOutErrorCode } from './types';
+export declare class ZoneOutError extends Error {
+    readonly code: ZoneOutErrorCode;
+    readonly detail?: Record<string, unknown>;
+    constructor(code: ZoneOutErrorCode, message: string, detail?: Record<string, unknown>);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/cjs/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,qBAAa,YAAa,SAAQ,KAAK;IACrC,SAAgB,IAAI,EAAE,gBAAgB,CAAC;IACvC,SAAgB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;gBAErC,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAMtF"}

package/dist/cjs/errors.js

@@ -0,0 +1,13 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZoneOutError = void 0;
+class ZoneOutError extends Error {
+    constructor(code, message, detail) {
+        super(message);
+        this.name = 'ZoneOutError';
+        this.code = code;
+        this.detail = detail;
+    }
+}
+exports.ZoneOutError = ZoneOutError;
+//# sourceMappingURL=errors.js.map

package/dist/cjs/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":";;;AAEA,MAAa,YAAa,SAAQ,KAAK;IAIrC,YAAY,IAAsB,EAAE,OAAe,EAAE,MAAgC;QACnF,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;QAC3B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AAVD,oCAUC"}

package/dist/cjs/index.d.ts

@@ -0,0 +1,7 @@
+export { ZoneOutClient } from './client';
+export type { LoginInitResult } from './client';
+export { exchangeCodeForTokens, refreshAccessToken } from './server';
+export type { ZoneOutConfig, ZoneOutUser, ZoneOutTokens, ZoneOutLoginResult, LoginSession, LoginSessionStatus, LoginSessionDetail, LoginSessionResponse, TokenExchangeParams, TokenRefreshParams, TokenResponse, ZoneOutEvent, ZoneOutEventCallback, ZoneOutErrorCode, } from './types';
+export { ZoneOutError } from './errors';
+export { generateCodeVerifier, generateCodeChallenge, generateState } from './pkce';
+//# sourceMappingURL=index.d.ts.map

package/dist/cjs/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,YAAY,EAAE,eAAe,EAAE,MAAM,UAAU,CAAC;AAGhD,OAAO,EAAE,qBAAqB,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAGrE,YAAY,EACV,aAAa,EACb,WAAW,EACX,aAAa,EACb,kBAAkB,EAClB,YAAY,EACZ,kBAAkB,EAClB,kBAAkB,EAClB,oBAAoB,EACpB,mBAAmB,EACnB,kBAAkB,EAClB,aAAa,EACb,YAAY,EACZ,oBAAoB,EACpB,gBAAgB,GACjB,MAAM,SAAS,CAAC;AAGjB,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAGxC,OAAO,EAAE,oBAAoB,EAAE,qBAAqB,EAAE,aAAa,EAAE,MAAM,QAAQ,CAAC"}

package/dist/cjs/index.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateState = exports.generateCodeChallenge = exports.generateCodeVerifier = exports.ZoneOutError = exports.refreshAccessToken = exports.exchangeCodeForTokens = exports.ZoneOutClient = void 0;
+// Client (frontend)
+var client_1 = require("./client");
+Object.defineProperty(exports, "ZoneOutClient", { enumerable: true, get: function () { return client_1.ZoneOutClient; } });
+// Server helpers
+var server_1 = require("./server");
+Object.defineProperty(exports, "exchangeCodeForTokens", { enumerable: true, get: function () { return server_1.exchangeCodeForTokens; } });
+Object.defineProperty(exports, "refreshAccessToken", { enumerable: true, get: function () { return server_1.refreshAccessToken; } });
+// Errors
+var errors_1 = require("./errors");
+Object.defineProperty(exports, "ZoneOutError", { enumerable: true, get: function () { return errors_1.ZoneOutError; } });
+// PKCE utils (exported for advanced use cases)
+var pkce_1 = require("./pkce");
+Object.defineProperty(exports, "generateCodeVerifier", { enumerable: true, get: function () { return pkce_1.generateCodeVerifier; } });
+Object.defineProperty(exports, "generateCodeChallenge", { enumerable: true, get: function () { return pkce_1.generateCodeChallenge; } });
+Object.defineProperty(exports, "generateState", { enumerable: true, get: function () { return pkce_1.generateState; } });
+//# sourceMappingURL=index.js.map

package/dist/cjs/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";;;AAAA,oBAAoB;AACpB,mCAAyC;AAAhC,uGAAA,aAAa,OAAA;AAGtB,iBAAiB;AACjB,mCAAqE;AAA5D,+GAAA,qBAAqB,OAAA;AAAE,4GAAA,kBAAkB,OAAA;AAoBlD,SAAS;AACT,mCAAwC;AAA/B,sGAAA,YAAY,OAAA;AAErB,+CAA+C;AAC/C,+BAAoF;AAA3E,4GAAA,oBAAoB,OAAA;AAAE,6GAAA,qBAAqB,OAAA;AAAE,qGAAA,aAAa,OAAA"}

package/dist/cjs/pkce.d.ts

@@ -0,0 +1,4 @@
+export declare function generateCodeVerifier(): string;
+export declare function generateCodeChallenge(verifier: string): Promise<string>;
+export declare function generateState(): string;
+//# sourceMappingURL=pkce.d.ts.map

package/dist/cjs/pkce.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pkce.d.ts","sourceRoot":"","sources":["../../src/pkce.ts"],"names":[],"mappings":"AASA,wBAAgB,oBAAoB,IAAI,MAAM,CAI7C;AAED,wBAAsB,qBAAqB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAK7E;AAED,wBAAgB,aAAa,IAAI,MAAM,CAItC"}

package/dist/cjs/pkce.js

@@ -0,0 +1,30 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateCodeVerifier = generateCodeVerifier;
+exports.generateCodeChallenge = generateCodeChallenge;
+exports.generateState = generateState;
+function base64UrlEncode(buffer) {
+    const bytes = new Uint8Array(buffer);
+    let binary = '';
+    for (let i = 0; i < bytes.length; i++) {
+        binary += String.fromCharCode(bytes[i]);
+    }
+    return btoa(binary).replace(/\+/g, '-').replace(/\//g, '_').replace(/=+$/, '');
+}
+function generateCodeVerifier() {
+    const array = new Uint8Array(48);
+    crypto.getRandomValues(array);
+    return base64UrlEncode(array.buffer);
+}
+async function generateCodeChallenge(verifier) {
+    const encoder = new TextEncoder();
+    const data = encoder.encode(verifier);
+    const hash = await crypto.subtle.digest('SHA-256', data);
+    return base64UrlEncode(hash);
+}
+function generateState() {
+    const array = new Uint8Array(32);
+    crypto.getRandomValues(array);
+    return base64UrlEncode(array.buffer);
+}
+//# sourceMappingURL=pkce.js.map

package/dist/cjs/pkce.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pkce.js","sourceRoot":"","sources":["../../src/pkce.ts"],"names":[],"mappings":";;AASA,oDAIC;AAED,sDAKC;AAED,sCAIC;AA1BD,SAAS,eAAe,CAAC,MAAmB;IAC1C,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,CAAC;IACD,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACjF,CAAC;AAED,SAAgB,oBAAoB;IAClC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IACjC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IAC9B,OAAO,eAAe,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;AACvC,CAAC;AAEM,KAAK,UAAU,qBAAqB,CAAC,QAAgB;IAC1D,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IACtC,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IACzD,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC;AAC/B,CAAC;AAED,SAAgB,aAAa;IAC3B,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IACjC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IAC9B,OAAO,eAAe,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;AACvC,CAAC"}

package/dist/cjs/polling.d.ts

@@ -0,0 +1,15 @@
+export interface PollingOptions {
+    sessionId: string;
+    authServerUrl: string;
+    apiKey?: string;
+    interval: number;
+    timeout: number;
+    onStatusChange?: (status: string) => void;
+    signal?: AbortSignal;
+}
+export interface PollingResult {
+    status: string;
+    authorization_code?: string;
+}
+export declare function pollForApproval(options: PollingOptions): Promise<PollingResult>;
+//# sourceMappingURL=polling.d.ts.map

package/dist/cjs/polling.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"polling.d.ts","sourceRoot":"","sources":["../../src/polling.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,cAAc;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,cAAc,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,IAAI,CAAC;IAC1C,MAAM,CAAC,EAAE,WAAW,CAAC;CACtB;AAED,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,kBAAkB,CAAC,EAAE,MAAM,CAAC;CAC7B;AAED,wBAAsB,eAAe,CAAC,OAAO,EAAE,cAAc,GAAG,OAAO,CAAC,aAAa,CAAC,CAwDrF"}

package/dist/cjs/polling.js

@@ -0,0 +1,53 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.pollForApproval = pollForApproval;
+const errors_1 = require("./errors");
+async function pollForApproval(options) {
+    const { sessionId, authServerUrl, apiKey, interval, timeout, onStatusChange, signal } = options;
+    const startTime = Date.now();
+    while (true) {
+        if (signal?.aborted) {
+            throw new errors_1.ZoneOutError('USER_REJECTED', 'Login cancelled by user');
+        }
+        if (Date.now() - startTime > timeout) {
+            throw new errors_1.ZoneOutError('POLLING_TIMEOUT', 'Login session timed out');
+        }
+        try {
+            const url = `${authServerUrl}/auth-login-session?session_id=${encodeURIComponent(sessionId)}`;
+            const res = await fetch(url, {
+                headers: {
+                    ...(apiKey ? { apikey: apiKey, Authorization: `Bearer ${apiKey}` } : {}),
+                },
+            });
+            if (res.status === 429) {
+                throw new errors_1.ZoneOutError('RATE_LIMITED', 'Too many requests, slow down');
+            }
+            if (!res.ok) {
+                const body = await res.json().catch(() => ({}));
+                throw new errors_1.ZoneOutError('UNKNOWN_ERROR', body.error || `HTTP ${res.status}`);
+            }
+            const data = await res.json();
+            const status = data.session.status;
+            if (status === 'approved' && data.authorization_code) {
+                onStatusChange?.('approved');
+                return { status: 'approved', authorization_code: data.authorization_code };
+            }
+            if (status === 'rejected') {
+                onStatusChange?.('rejected');
+                throw new errors_1.ZoneOutError('USER_REJECTED', 'User rejected the login request');
+            }
+            if (status === 'expired') {
+                onStatusChange?.('expired');
+                throw new errors_1.ZoneOutError('SESSION_EXPIRED', 'Login session has expired');
+            }
+            onStatusChange?.('pending_approval');
+        }
+        catch (err) {
+            if (err instanceof errors_1.ZoneOutError)
+                throw err;
+            console.warn('[ZoneOut SDK] Polling error, retrying:', err);
+        }
+        await new Promise(resolve => setTimeout(resolve, interval));
+    }
+}
+//# sourceMappingURL=polling.js.map

package/dist/cjs/polling.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"polling.js","sourceRoot":"","sources":["../../src/polling.ts"],"names":[],"mappings":";;AAkBA,0CAwDC;AAzED,qCAAwC;AAiBjC,KAAK,UAAU,eAAe,CAAC,OAAuB;IAC3D,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,cAAc,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;IAChG,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,OAAO,IAAI,EAAE,CAAC;QACZ,IAAI,MAAM,EAAE,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,qBAAY,CAAC,eAAe,EAAE,yBAAyB,CAAC,CAAC;QACrE,CAAC;QAED,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,OAAO,EAAE,CAAC;YACrC,MAAM,IAAI,qBAAY,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,CAAC;QACvE,CAAC;QAED,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,GAAG,aAAa,kCAAkC,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;YAC9F,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAC3B,OAAO,EAAE;oBACP,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,UAAU,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;iBACzE;aACF,CAAC,CAAC;YAEH,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBACvB,MAAM,IAAI,qBAAY,CAAC,cAAc,EAAE,8BAA8B,CAAC,CAAC;YACzE,CAAC;YAED,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;gBAChD,MAAM,IAAI,qBAAY,CAAC,eAAe,EAAE,IAAI,CAAC,KAAK,IAAI,QAAQ,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;YAC9E,CAAC;YAED,MAAM,IAAI,GAAyB,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;YACpD,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC;YAEnC,IAAI,MAAM,KAAK,UAAU,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;gBACrD,cAAc,EAAE,CAAC,UAAU,CAAC,CAAC;gBAC7B,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,kBAAkB,EAAE,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC7E,CAAC;YAED,IAAI,MAAM,KAAK,UAAU,EAAE,CAAC;gBAC1B,cAAc,EAAE,CAAC,UAAU,CAAC,CAAC;gBAC7B,MAAM,IAAI,qBAAY,CAAC,eAAe,EAAE,iCAAiC,CAAC,CAAC;YAC7E,CAAC;YAED,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;gBACzB,cAAc,EAAE,CAAC,SAAS,CAAC,CAAC;gBAC5B,MAAM,IAAI,qBAAY,CAAC,iBAAiB,EAAE,2BAA2B,CAAC,CAAC;YACzE,CAAC;YAED,cAAc,EAAE,CAAC,kBAAkB,CAAC,CAAC;QACvC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG,YAAY,qBAAY;gBAAE,MAAM,GAAG,CAAC;YAC3C,OAAO,CAAC,IAAI,CAAC,wCAAwC,EAAE,GAAG,CAAC,CAAC;QAC9D,CAAC;QAED,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC;IAC9D,CAAC;AACH,CAAC"}

package/dist/cjs/react/index.d.ts

@@ -0,0 +1,3 @@
+export { ZoneOutProvider, useZoneOutClient } from './provider';
+export { useZoneOut } from './use-zoneout';
+//# sourceMappingURL=index.d.ts.map

package/dist/cjs/react/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/react/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAC/D,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC"}

package/dist/cjs/react/index.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.useZoneOut = exports.useZoneOutClient = exports.ZoneOutProvider = void 0;
+var provider_1 = require("./provider");
+Object.defineProperty(exports, "ZoneOutProvider", { enumerable: true, get: function () { return provider_1.ZoneOutProvider; } });
+Object.defineProperty(exports, "useZoneOutClient", { enumerable: true, get: function () { return provider_1.useZoneOutClient; } });
+var use_zoneout_1 = require("./use-zoneout");
+Object.defineProperty(exports, "useZoneOut", { enumerable: true, get: function () { return use_zoneout_1.useZoneOut; } });
+//# sourceMappingURL=index.js.map

package/dist/cjs/react/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/react/index.ts"],"names":[],"mappings":";;;AAAA,uCAA+D;AAAtD,2GAAA,eAAe,OAAA;AAAE,4GAAA,gBAAgB,OAAA;AAC1C,6CAA2C;AAAlC,yGAAA,UAAU,OAAA"}

package/dist/cjs/react/provider.d.ts

@@ -0,0 +1,11 @@
+import React from 'react';
+import { ZoneOutClient } from '../client';
+import type { ZoneOutConfig } from '../types';
+export declare function useZoneOutClient(): ZoneOutClient;
+interface ZoneOutProviderProps {
+    config: ZoneOutConfig;
+    children: React.ReactNode;
+}
+export declare function ZoneOutProvider({ config, children }: ZoneOutProviderProps): import("react/jsx-runtime").JSX.Element;
+export {};
+//# sourceMappingURL=provider.d.ts.map

package/dist/cjs/react/provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider.d.ts","sourceRoot":"","sources":["../../../src/react/provider.tsx"],"names":[],"mappings":"AAAA,OAAO,KAA6C,MAAM,OAAO,CAAC;AAClE,OAAO,EAAE,aAAa,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAQ9C,wBAAgB,gBAAgB,IAAI,aAAa,CAMhD;AAED,UAAU,oBAAoB;IAC5B,MAAM,EAAE,aAAa,CAAC;IACtB,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;CAC3B;AAED,wBAAgB,eAAe,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,oBAAoB,2CAYzE"}

package/dist/cjs/react/provider.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.useZoneOutClient = useZoneOutClient;
+exports.ZoneOutProvider = ZoneOutProvider;
+const jsx_runtime_1 = require("react/jsx-runtime");
+const react_1 = require("react");
+const client_1 = require("../client");
+const ZoneOutContext = (0, react_1.createContext)(null);
+function useZoneOutClient() {
+    const ctx = (0, react_1.useContext)(ZoneOutContext);
+    if (!ctx) {
+        throw new Error('useZoneOutClient must be used within <ZoneOutProvider>');
+    }
+    return ctx.client;
+}
+function ZoneOutProvider({ config, children }) {
+    const client = (0, react_1.useMemo)(() => new client_1.ZoneOutClient(config), [
+        config.clientId,
+        config.authServerUrl,
+        config.redirectUri,
+    ]);
+    return ((0, jsx_runtime_1.jsx)(ZoneOutContext.Provider, { value: { client }, children: children }));
+}
+//# sourceMappingURL=provider.js.map

package/dist/cjs/react/provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider.js","sourceRoot":"","sources":["../../../src/react/provider.tsx"],"names":[],"mappings":";;AAUA,4CAMC;AAOD,0CAYC;;AAnCD,iCAAkE;AAClE,sCAA0C;AAO1C,MAAM,cAAc,GAAG,IAAA,qBAAa,EAA6B,IAAI,CAAC,CAAC;AAEvE,SAAgB,gBAAgB;IAC9B,MAAM,GAAG,GAAG,IAAA,kBAAU,EAAC,cAAc,CAAC,CAAC;IACvC,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,wDAAwD,CAAC,CAAC;IAC5E,CAAC;IACD,OAAO,GAAG,CAAC,MAAM,CAAC;AACpB,CAAC;AAOD,SAAgB,eAAe,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAwB;IACxE,MAAM,MAAM,GAAG,IAAA,eAAO,EAAC,GAAG,EAAE,CAAC,IAAI,sBAAa,CAAC,MAAM,CAAC,EAAE;QACtD,MAAM,CAAC,QAAQ;QACf,MAAM,CAAC,aAAa;QACpB,MAAM,CAAC,WAAW;KACnB,CAAC,CAAC;IAEH,OAAO,CACL,uBAAC,cAAc,CAAC,QAAQ,IAAC,KAAK,EAAE,EAAE,MAAM,EAAE,YACvC,QAAQ,GACe,CAC3B,CAAC;AACJ,CAAC"}

package/dist/cjs/react/use-zoneout.d.ts

@@ -0,0 +1,25 @@
+import type { ZoneOutErrorCode } from '../types';
+interface UseZoneOutReturn {
+    /** Avvia il login. Restituisce l'URL del QR code. */
+    initiateLogin: () => Promise<{
+        qrCodeUrl: string;
+        sessionId: string;
+        expiresAt: string;
+        waitForApproval: () => Promise<void>;
+        abort: AbortController;
+    }>;
+    /** Flusso completo login -> redirect */
+    login: () => Promise<void>;
+    /** Loading state */
+    isLoading: boolean;
+    /** URL del QR code (disponibile dopo initiateLogin) */
+    qrCodeUrl: string | null;
+    /** Errore ultimo tentativo */
+    error: {
+        code: ZoneOutErrorCode;
+        message: string;
+    } | null;
+}
+export declare function useZoneOut(): UseZoneOutReturn;
+export {};
+//# sourceMappingURL=use-zoneout.d.ts.map