alepha 0.19.1 → 0.19.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (530) hide show
  1. package/LICENSE +1 -1
  2. package/README.md +6 -9
  3. package/dist/api/audits/index.d.ts +378 -346
  4. package/dist/api/audits/index.d.ts.map +1 -1
  5. package/dist/api/files/index.d.ts +216 -184
  6. package/dist/api/files/index.d.ts.map +1 -1
  7. package/dist/api/jobs/index.d.ts +528 -496
  8. package/dist/api/jobs/index.d.ts.map +1 -1
  9. package/dist/api/jobs/index.js +3 -3
  10. package/dist/api/jobs/index.js.map +1 -1
  11. package/dist/api/keys/index.d.ts +207 -207
  12. package/dist/api/keys/index.d.ts.map +1 -1
  13. package/dist/api/notifications/index.d.ts +152 -152
  14. package/dist/api/notifications/index.d.ts.map +1 -1
  15. package/dist/api/organizations/index.browser.js +48 -0
  16. package/dist/api/organizations/index.browser.js.map +1 -0
  17. package/dist/api/organizations/index.d.ts +516 -0
  18. package/dist/api/organizations/index.d.ts.map +1 -0
  19. package/dist/api/organizations/index.js +202 -0
  20. package/dist/api/organizations/index.js.map +1 -0
  21. package/dist/api/parameters/index.d.ts +391 -358
  22. package/dist/api/parameters/index.d.ts.map +1 -1
  23. package/dist/api/parameters/index.js +5 -1
  24. package/dist/api/parameters/index.js.map +1 -1
  25. package/dist/api/users/index.browser.js +7 -5
  26. package/dist/api/users/index.browser.js.map +1 -1
  27. package/dist/api/users/index.d.ts +978 -913
  28. package/dist/api/users/index.d.ts.map +1 -1
  29. package/dist/api/users/index.js +160 -112
  30. package/dist/api/users/index.js.map +1 -1
  31. package/dist/api/verifications/index.d.ts +135 -135
  32. package/dist/api/verifications/index.d.ts.map +1 -1
  33. package/dist/api/verifications/index.js +2 -2
  34. package/dist/api/verifications/index.js.map +1 -1
  35. package/dist/batch/index.d.ts +6 -6
  36. package/dist/batch/index.d.ts.map +1 -1
  37. package/dist/billing/index.d.ts +1048 -0
  38. package/dist/billing/index.d.ts.map +1 -0
  39. package/dist/billing/index.js +713 -0
  40. package/dist/billing/index.js.map +1 -0
  41. package/dist/bin/index.js +0 -2
  42. package/dist/bin/index.js.map +1 -1
  43. package/dist/bucket/index.d.ts +10 -10
  44. package/dist/bucket/index.d.ts.map +1 -1
  45. package/dist/bucket/index.js +2 -2
  46. package/dist/bucket/index.js.map +1 -1
  47. package/dist/cache/core/index.d.ts +9 -9
  48. package/dist/cache/core/index.d.ts.map +1 -1
  49. package/dist/cache/core/index.js +2 -2
  50. package/dist/cache/core/index.js.map +1 -1
  51. package/dist/cache/core/index.workerd.js +2 -2
  52. package/dist/cache/core/index.workerd.js.map +1 -1
  53. package/dist/cache/redis/index.d.ts +6 -6
  54. package/dist/cache/redis/index.d.ts.map +1 -1
  55. package/dist/cache/redis/index.js +2 -2
  56. package/dist/cache/redis/index.js.map +1 -1
  57. package/dist/cli/config/index.d.ts +12 -2
  58. package/dist/cli/config/index.d.ts.map +1 -1
  59. package/dist/cli/config/index.js +4 -0
  60. package/dist/cli/config/index.js.map +1 -1
  61. package/dist/cli/core/index.d.ts +183 -140
  62. package/dist/cli/core/index.d.ts.map +1 -1
  63. package/dist/cli/core/index.js +279 -89
  64. package/dist/cli/core/index.js.map +1 -1
  65. package/dist/cli/devtools/index.d.ts +45 -0
  66. package/dist/cli/devtools/index.d.ts.map +1 -0
  67. package/dist/cli/devtools/index.js +170 -0
  68. package/dist/cli/devtools/index.js.map +1 -0
  69. package/dist/cli/platform/index.d.ts +383 -492
  70. package/dist/cli/platform/index.d.ts.map +1 -1
  71. package/dist/cli/platform/index.js +42 -511
  72. package/dist/cli/platform/index.js.map +1 -1
  73. package/dist/cli/vendor/index.d.ts +196 -0
  74. package/dist/cli/vendor/index.d.ts.map +1 -0
  75. package/dist/cli/vendor/index.js +384 -0
  76. package/dist/cli/vendor/index.js.map +1 -0
  77. package/dist/command/index.d.ts +18 -18
  78. package/dist/command/index.d.ts.map +1 -1
  79. package/dist/command/index.js +2 -2
  80. package/dist/command/index.js.map +1 -1
  81. package/dist/core/index.browser.js +4 -4
  82. package/dist/core/index.browser.js.map +1 -1
  83. package/dist/core/index.d.ts +10 -10
  84. package/dist/core/index.d.ts.map +1 -1
  85. package/dist/core/index.js +4 -4
  86. package/dist/core/index.js.map +1 -1
  87. package/dist/core/index.native.js +4 -4
  88. package/dist/core/index.native.js.map +1 -1
  89. package/dist/core/index.workerd.js +4 -4
  90. package/dist/core/index.workerd.js.map +1 -1
  91. package/dist/crypto/index.d.ts +7 -7
  92. package/dist/crypto/index.d.ts.map +1 -1
  93. package/dist/datetime/index.d.ts +4 -4
  94. package/dist/datetime/index.d.ts.map +1 -1
  95. package/dist/email/brevo/index.d.ts +4 -4
  96. package/dist/email/brevo/index.d.ts.map +1 -1
  97. package/dist/email/core/index.d.ts +15 -11
  98. package/dist/email/core/index.d.ts.map +1 -1
  99. package/dist/email/core/index.js +12 -35
  100. package/dist/email/core/index.js.map +1 -1
  101. package/dist/email/smtp/index.d.ts +12 -12
  102. package/dist/email/smtp/index.d.ts.map +1 -1
  103. package/dist/email/smtp/index.js +7 -4
  104. package/dist/email/smtp/index.js.map +1 -1
  105. package/dist/fake/index.d.ts +4 -8
  106. package/dist/fake/index.d.ts.map +1 -1
  107. package/dist/fake/index.js +55 -889
  108. package/dist/fake/index.js.map +1 -1
  109. package/dist/lock/core/index.d.ts +13 -13
  110. package/dist/lock/core/index.d.ts.map +1 -1
  111. package/dist/lock/core/index.js +2 -2
  112. package/dist/lock/core/index.js.map +1 -1
  113. package/dist/lock/redis/index.d.ts +4 -4
  114. package/dist/lock/redis/index.d.ts.map +1 -1
  115. package/dist/logger/index.d.ts +16 -15
  116. package/dist/logger/index.d.ts.map +1 -1
  117. package/dist/logger/index.js +5 -2
  118. package/dist/logger/index.js.map +1 -1
  119. package/dist/mcp/index.d.ts +11 -11
  120. package/dist/mcp/index.d.ts.map +1 -1
  121. package/dist/mcp/index.js +2 -2
  122. package/dist/mcp/index.js.map +1 -1
  123. package/dist/orm/core/index.browser.js +11 -1
  124. package/dist/orm/core/index.browser.js.map +1 -1
  125. package/dist/orm/core/index.bun.js +53 -16
  126. package/dist/orm/core/index.bun.js.map +1 -1
  127. package/dist/orm/core/index.d.ts +95 -51
  128. package/dist/orm/core/index.d.ts.map +1 -1
  129. package/dist/orm/core/index.js +55 -14
  130. package/dist/orm/core/index.js.map +1 -1
  131. package/dist/orm/postgres/index.d.ts +18 -17
  132. package/dist/orm/postgres/index.d.ts.map +1 -1
  133. package/dist/queue/core/index.d.ts +14 -14
  134. package/dist/queue/core/index.d.ts.map +1 -1
  135. package/dist/queue/core/index.js +2 -2
  136. package/dist/queue/core/index.js.map +1 -1
  137. package/dist/queue/core/index.workerd.js +2 -2
  138. package/dist/queue/core/index.workerd.js.map +1 -1
  139. package/dist/queue/redis/index.d.ts +4 -4
  140. package/dist/queue/redis/index.d.ts.map +1 -1
  141. package/dist/queue/redis/index.js +2 -2
  142. package/dist/queue/redis/index.js.map +1 -1
  143. package/dist/react/auth/index.d.ts +9 -9
  144. package/dist/react/auth/index.d.ts.map +1 -1
  145. package/dist/react/core/index.d.ts +6 -6
  146. package/dist/react/core/index.d.ts.map +1 -1
  147. package/dist/react/core/index.js +5 -4
  148. package/dist/react/core/index.js.map +1 -1
  149. package/dist/react/form/index.d.ts +4 -4
  150. package/dist/react/form/index.d.ts.map +1 -1
  151. package/dist/react/head/index.d.ts +4 -4
  152. package/dist/react/head/index.d.ts.map +1 -1
  153. package/dist/react/i18n/index.d.ts +9 -9
  154. package/dist/react/i18n/index.d.ts.map +1 -1
  155. package/dist/react/intro/index.d.ts +2 -2
  156. package/dist/react/intro/index.d.ts.map +1 -1
  157. package/dist/react/intro/index.js +1 -1
  158. package/dist/react/intro/index.js.map +1 -1
  159. package/dist/react/router/index.browser.js +4 -5
  160. package/dist/react/router/index.browser.js.map +1 -1
  161. package/dist/react/router/index.d.ts +215 -215
  162. package/dist/react/router/index.d.ts.map +1 -1
  163. package/dist/react/router/index.js +6 -7
  164. package/dist/react/router/index.js.map +1 -1
  165. package/dist/react/testing/index.d.ts +2 -2
  166. package/dist/react/testing/index.d.ts.map +1 -1
  167. package/dist/react/testing/index.js +2 -4
  168. package/dist/react/testing/index.js.map +1 -1
  169. package/dist/redis/index.d.ts +19 -19
  170. package/dist/redis/index.d.ts.map +1 -1
  171. package/dist/retry/index.d.ts +4 -4
  172. package/dist/retry/index.d.ts.map +1 -1
  173. package/dist/scheduler/index.d.ts +13 -13
  174. package/dist/scheduler/index.d.ts.map +1 -1
  175. package/dist/scheduler/index.js +2 -2
  176. package/dist/scheduler/index.js.map +1 -1
  177. package/dist/scheduler/index.workerd.js +2 -2
  178. package/dist/scheduler/index.workerd.js.map +1 -1
  179. package/dist/security/index.browser.js +1 -1
  180. package/dist/security/index.browser.js.map +1 -1
  181. package/dist/security/index.d.ts +47 -47
  182. package/dist/security/index.d.ts.map +1 -1
  183. package/dist/security/index.js +9 -12
  184. package/dist/security/index.js.map +1 -1
  185. package/dist/server/auth/index.d.ts +170 -169
  186. package/dist/server/auth/index.d.ts.map +1 -1
  187. package/dist/server/auth/index.js +16 -2
  188. package/dist/server/auth/index.js.map +1 -1
  189. package/dist/server/cookies/index.d.ts +7 -7
  190. package/dist/server/cookies/index.d.ts.map +1 -1
  191. package/dist/server/core/index.d.ts +76 -76
  192. package/dist/server/core/index.d.ts.map +1 -1
  193. package/dist/server/core/index.js +23 -17
  194. package/dist/server/core/index.js.map +1 -1
  195. package/dist/server/cors/index.d.ts +13 -13
  196. package/dist/server/cors/index.d.ts.map +1 -1
  197. package/dist/server/cors/index.js +2 -2
  198. package/dist/server/cors/index.js.map +1 -1
  199. package/dist/server/etag/index.d.ts +9 -9
  200. package/dist/server/etag/index.d.ts.map +1 -1
  201. package/dist/server/health/index.d.ts +20 -20
  202. package/dist/server/health/index.d.ts.map +1 -1
  203. package/dist/server/links/index.browser.js +2 -2
  204. package/dist/server/links/index.browser.js.map +1 -1
  205. package/dist/server/links/index.d.ts +66 -66
  206. package/dist/server/links/index.d.ts.map +1 -1
  207. package/dist/server/links/index.js +4 -4
  208. package/dist/server/links/index.js.map +1 -1
  209. package/dist/server/metrics/index.d.ts +7 -7
  210. package/dist/server/metrics/index.d.ts.map +1 -1
  211. package/dist/server/proxy/index.d.ts +5 -5
  212. package/dist/server/proxy/index.d.ts.map +1 -1
  213. package/dist/server/rate-limit/index.d.ts +12 -12
  214. package/dist/server/rate-limit/index.d.ts.map +1 -1
  215. package/dist/server/rate-limit/index.js +2 -2
  216. package/dist/server/rate-limit/index.js.map +1 -1
  217. package/dist/server/static/index.d.ts +5 -5
  218. package/dist/server/static/index.d.ts.map +1 -1
  219. package/dist/server/swagger/index.d.ts +7 -7
  220. package/dist/server/swagger/index.d.ts.map +1 -1
  221. package/dist/server/swagger/index.js +2 -2
  222. package/dist/server/swagger/index.js.map +1 -1
  223. package/dist/sms/index.d.ts +11 -7
  224. package/dist/sms/index.d.ts.map +1 -1
  225. package/dist/sms/index.js +9 -15
  226. package/dist/sms/index.js.map +1 -1
  227. package/dist/system/index.d.ts +4 -4
  228. package/dist/system/index.d.ts.map +1 -1
  229. package/dist/topic/core/index.d.ts +6 -6
  230. package/dist/topic/core/index.d.ts.map +1 -1
  231. package/dist/topic/redis/index.d.ts +7 -7
  232. package/dist/topic/redis/index.d.ts.map +1 -1
  233. package/dist/topic/redis/index.js +2 -2
  234. package/dist/topic/redis/index.js.map +1 -1
  235. package/dist/websocket/index.d.ts +36 -36
  236. package/dist/websocket/index.d.ts.map +1 -1
  237. package/dist/websocket/index.js +2 -2
  238. package/dist/websocket/index.js.map +1 -1
  239. package/package.json +36 -14
  240. package/src/api/jobs/{services → __tests__}/JobService.spec.ts +1 -1
  241. package/src/api/jobs/providers/JobProvider.ts +3 -3
  242. package/src/api/keys/{services → __tests__}/ApiKeyService.spec.ts +1 -1
  243. package/src/api/organizations/__tests__/OrganizationService.spec.ts +193 -0
  244. package/src/api/organizations/controllers/AdminOrganizationController.ts +103 -0
  245. package/src/api/organizations/entities/organizations.ts +20 -0
  246. package/src/api/organizations/index.browser.ts +10 -0
  247. package/src/api/organizations/index.ts +31 -0
  248. package/src/api/organizations/schemas/createOrganizationSchema.ts +10 -0
  249. package/src/api/organizations/schemas/organizationQuerySchema.ts +10 -0
  250. package/src/api/organizations/schemas/organizationResourceSchema.ts +6 -0
  251. package/src/api/organizations/schemas/updateOrganizationSchema.ts +7 -0
  252. package/src/api/organizations/services/OrganizationService.ts +75 -0
  253. package/src/api/parameters/services/ParameterProvider.ts +6 -1
  254. package/src/api/users/{services → __tests__}/SessionService.spec.ts +67 -0
  255. package/src/api/users/{jobs → __tests__}/UserJobs.spec.ts +1 -1
  256. package/src/api/users/entities/users.ts +9 -3
  257. package/src/api/users/index.ts +23 -4
  258. package/src/api/users/primitives/$realm.ts +6 -4
  259. package/src/api/users/providers/RealmProvider.ts +1 -1
  260. package/src/api/users/services/RegistrationService.ts +1 -1
  261. package/src/api/users/services/SessionService.ts +92 -5
  262. package/src/api/users/services/UserService.ts +1 -1
  263. package/src/api/verifications/{jobs → __tests__}/VerificationJobs.spec.ts +4 -2
  264. package/src/api/verifications/parameters/VerificationParameters.ts +2 -2
  265. package/src/billing/__tests__/BillingService.spec.ts +136 -0
  266. package/src/billing/__tests__/PaymentMethodService.spec.ts +78 -0
  267. package/src/billing/controllers/AdminBillingController.ts +149 -0
  268. package/src/billing/controllers/BillingController.ts +108 -0
  269. package/src/billing/entities/paymentIntents.ts +34 -0
  270. package/src/billing/entities/paymentMethods.ts +24 -0
  271. package/src/billing/entities/refunds.ts +22 -0
  272. package/src/billing/errors/BillingError.ts +5 -0
  273. package/src/billing/index.ts +76 -0
  274. package/src/billing/providers/BillingProvider.ts +79 -0
  275. package/src/billing/providers/MemoryBillingProvider.ts +139 -0
  276. package/src/billing/schemas/intentSchemas.ts +60 -0
  277. package/src/billing/schemas/paymentMethodSchemas.ts +13 -0
  278. package/src/billing/schemas/refundSchemas.ts +6 -0
  279. package/src/billing/services/BillingService.ts +325 -0
  280. package/src/billing/services/PaymentMethodService.ts +82 -0
  281. package/src/bin/index.ts +0 -2
  282. package/src/bucket/providers/LocalFileStorageProvider.ts +2 -2
  283. package/src/cache/core/{primitives → __tests__}/$cache.middleware.spec.ts +1 -1
  284. package/src/cache/core/{providers → __tests__}/MemoryCacheProvider.spec.ts +1 -1
  285. package/src/cache/core/primitives/$cache.ts +2 -2
  286. package/src/cache/redis/providers/RedisCacheProvider.ts +2 -2
  287. package/src/cli/config/defineConfig.ts +20 -0
  288. package/src/cli/core/{services → __tests__}/ProjectScaffolder.spec.ts +1 -1
  289. package/src/cli/core/{commands/gen → __tests__}/changelog.spec.ts +1 -1
  290. package/src/cli/core/{commands → __tests__}/init.spec.ts +2 -8
  291. package/src/cli/core/atoms/devOptions.ts +0 -5
  292. package/src/cli/core/commands/build.ts +2 -2
  293. package/src/cli/core/commands/dev.ts +165 -30
  294. package/src/cli/core/commands/gen/changelog.ts +2 -2
  295. package/src/cli/core/commands/init.ts +2 -7
  296. package/src/cli/core/commands/verify.ts +0 -1
  297. package/src/cli/core/providers/AppEntryProvider.ts +2 -2
  298. package/src/cli/core/providers/ViteDevServerProvider.ts +54 -66
  299. package/src/cli/core/services/PackageManagerUtils.ts +8 -3
  300. package/src/cli/core/services/ProjectScaffolder.ts +18 -18
  301. package/src/cli/core/tasks/BuildClientTask.ts +8 -0
  302. package/src/cli/core/tasks/BuildServerTask.ts +17 -4
  303. package/src/cli/core/templates/alephaConfigTs.ts +0 -6
  304. package/src/cli/core/templates/webAdminDashboardTsx.ts +17 -0
  305. package/src/cli/core/templates/webAppRouterTs.ts +85 -2
  306. package/src/cli/devtools/atoms/devtoolsOptions.ts +26 -0
  307. package/src/cli/devtools/index.ts +194 -0
  308. package/src/cli/platform/{adapters → __tests__}/CloudflareAdapter.spec.ts +2 -2
  309. package/src/cli/platform/{providers → __tests__}/GitHubSecretStore.spec.ts +1 -1
  310. package/src/cli/platform/{services → __tests__}/NamingService.spec.ts +1 -1
  311. package/src/cli/platform/{providers → __tests__}/PlatformCacheProvider.spec.ts +1 -1
  312. package/src/cli/platform/{services → __tests__}/PlatformInspector.spec.ts +1 -1
  313. package/src/cli/platform/{services → __tests__}/PlatformOrchestrator.spec.ts +3 -3
  314. package/src/cli/platform/{services → __tests__}/SecretFilterService.spec.ts +1 -1
  315. package/src/cli/platform/{commands → __tests__}/SecretsCommand.spec.ts +1 -1
  316. package/src/cli/platform/{adapters → __tests__}/VercelAdapter.spec.ts +2 -2
  317. package/src/cli/platform/atoms/platformOptions.ts +2 -10
  318. package/src/cli/platform/commands/SecretsCommand.ts +2 -2
  319. package/src/cli/platform/commands/platform.ts +2 -11
  320. package/src/cli/platform/index.ts +34 -11
  321. package/src/cli/platform/services/PlatformInspector.ts +2 -2
  322. package/src/cli/platform/services/PlatformOrchestrator.ts +0 -9
  323. package/src/cli/vendor/__tests__/VendorService.spec.ts +407 -0
  324. package/src/cli/vendor/atoms/vendorOptions.ts +41 -0
  325. package/src/cli/vendor/commands/VendorCommand.ts +204 -0
  326. package/src/cli/vendor/index.ts +43 -0
  327. package/src/cli/vendor/services/VendorService.ts +338 -0
  328. package/src/command/{providers → __tests__}/CliProvider.spec.ts +1 -1
  329. package/src/command/{helpers → __tests__}/EnvUtils.spec.ts +1 -1
  330. package/src/command/providers/CliProvider.ts +2 -2
  331. package/src/core/{primitives → __tests__}/$atom.spec.ts +2 -2
  332. package/src/core/{primitives → __tests__}/$memoize.spec.ts +1 -1
  333. package/src/core/{primitives → __tests__}/$mode.spec.ts +1 -1
  334. package/src/core/{primitives → __tests__}/$pipeline.spec.ts +1 -1
  335. package/src/core/{primitives → __tests__}/$scope.spec.ts +2 -2
  336. package/src/core/{providers → __tests__}/KeylessJsonSchemaCodec.spec.ts +1 -1
  337. package/src/core/{providers → __tests__}/SchemaValidator.spec.ts +1 -1
  338. package/src/core/{helpers → __tests__}/jsonSchemaToTypeBox.spec.ts +1 -1
  339. package/src/core/index.shared.ts +1 -1
  340. package/src/core/primitives/{$use.ts → $state.ts} +4 -4
  341. package/src/crypto/{providers → __tests__}/BrowserCryptoProvider.browser.spec.ts +1 -1
  342. package/src/crypto/{providers → __tests__}/CryptoProvider.spec.ts +1 -1
  343. package/src/datetime/{primitives → __tests__}/$debounce.spec.ts +1 -1
  344. package/src/datetime/{primitives → __tests__}/$throttle.spec.ts +1 -1
  345. package/src/datetime/{primitives → __tests__}/$timeout.spec.ts +1 -1
  346. package/src/email/brevo/{providers → __tests__}/BrevoEmailProvider.spec.ts +1 -1
  347. package/src/email/core/{providers → __tests__}/LocalEmailProvider.spec.ts +39 -150
  348. package/src/email/core/providers/LocalEmailProvider.ts +13 -51
  349. package/src/email/smtp/providers/NodemailerEmailProvider.ts +2 -2
  350. package/src/lock/core/{primitives → __tests__}/$lock.middleware.spec.ts +1 -1
  351. package/src/lock/core/primitives/$lock.ts +2 -2
  352. package/src/logger/index.ts +10 -4
  353. package/src/mcp/transports/SseMcpTransport.ts +2 -2
  354. package/src/orm/__tests__/ModelBuilder-tests.ts +53 -0
  355. package/src/orm/__tests__/ModelBuilder.spec.ts +80 -0
  356. package/src/orm/__tests__/organization-tests.ts +200 -0
  357. package/src/orm/__tests__/organization.spec.ts +103 -0
  358. package/src/orm/core/{providers/drivers → __tests__}/BunSqliteProvider.bun.spec.ts +5 -2
  359. package/src/orm/core/constants/PG_SYMBOLS.ts +2 -0
  360. package/src/orm/core/index.shared.ts +1 -0
  361. package/src/orm/core/primitives/$entity.ts +31 -0
  362. package/src/orm/core/providers/DatabaseTypeProvider.ts +11 -0
  363. package/src/orm/core/providers/DrizzleKitProvider.ts +1 -1
  364. package/src/orm/core/providers/drivers/BunSqliteProvider.ts +2 -2
  365. package/src/orm/core/providers/drivers/NodeSqliteProvider.ts +3 -3
  366. package/src/orm/core/services/ModelBuilder.ts +11 -0
  367. package/src/orm/core/services/QueryManager.ts +16 -2
  368. package/src/orm/core/services/Repository.ts +70 -10
  369. package/src/orm/postgres/{providers → __tests__}/BunPostgresProvider.bun.spec.ts +1 -1
  370. package/src/queue/core/providers/WorkerProvider.ts +2 -2
  371. package/src/queue/redis/providers/RedisQueueProvider.ts +2 -2
  372. package/src/react/core/{hooks → __tests__}/useAction.browser.spec.tsx +1 -1
  373. package/src/react/core/hooks/useAction.ts +7 -6
  374. package/src/react/head/{providers → __tests__}/BrowserHeadProvider.browser.spec.ts +1 -1
  375. package/src/react/head/{helpers → __tests__}/SeoExpander.spec.ts +1 -1
  376. package/src/react/i18n/{providers → __tests__}/I18nProvider.spec.ts +1 -1
  377. package/src/react/i18n/{hooks → __tests__}/useI18n.browser.spec.tsx +1 -1
  378. package/src/react/intro/components/GettingStartedDevtoolsSlide.tsx +1 -1
  379. package/src/react/router/{providers → __tests__}/ReactBrowserProvider.browser.spec.ts +1 -1
  380. package/src/react/router/providers/ReactBrowserProvider.ts +2 -2
  381. package/src/react/router/providers/ReactPageProvider.ts +2 -2
  382. package/src/react/router/providers/ReactServerProvider.ts +3 -3
  383. package/src/redis/{providers → __tests__}/BunRedisProvider.bun.spec.ts +4 -4
  384. package/src/retry/{primitives → __tests__}/$retry.middleware.spec.ts +1 -1
  385. package/src/router/{TemplatedPathParser.spec.ts → __tests__/TemplatedPathParser.spec.ts} +1 -1
  386. package/src/scheduler/primitives/$scheduler.ts +2 -2
  387. package/src/security/{primitives → __tests__}/$secure-browser.spec.ts +1 -1
  388. package/src/security/{primitives → __tests__}/$secure.spec.ts +1 -1
  389. package/src/security/primitives/$issuer.ts +1 -1
  390. package/src/security/providers/JwtProvider.ts +6 -10
  391. package/src/security/providers/SecurityProvider.ts +6 -11
  392. package/src/security/schemas/userAccountInfoSchema.ts +3 -3
  393. package/src/server/auth/providers/ServerAuthProvider.ts +24 -2
  394. package/src/server/cookies/{services → __tests__}/CookieParser.spec.ts +1 -1
  395. package/src/server/core/{primitives → __tests__}/$circuit.spec.ts +1 -1
  396. package/src/server/core/{providers → __tests__}/NodeHttpServerProvider.spec.ts +1 -1
  397. package/src/server/core/{providers → __tests__}/ServerBodyParserProvider.spec.ts +31 -1
  398. package/src/server/core/{providers → __tests__}/ServerCompressProvider.spec.ts +1 -1
  399. package/src/server/core/{providers → __tests__}/ServerHelmetProvider.spec.ts +4 -1
  400. package/src/server/core/{providers → __tests__}/ServerMultipartProvider.spec.ts +1 -1
  401. package/src/server/core/{services → __tests__}/ServerRequestParser.spec.ts +1 -1
  402. package/src/server/core/primitives/$action.ts +2 -2
  403. package/src/server/core/primitives/$sse.ts +2 -2
  404. package/src/server/core/providers/ServerBodyParserProvider.ts +21 -12
  405. package/src/server/core/providers/ServerCompressProvider.ts +2 -2
  406. package/src/server/core/providers/ServerHelmetProvider.ts +2 -2
  407. package/src/server/core/providers/ServerMultipartProvider.ts +2 -2
  408. package/src/server/core/providers/ServerRouterProvider.ts +1 -5
  409. package/src/server/cors/{primitives → __tests__}/$cors.spec.ts +1 -1
  410. package/src/server/cors/providers/ServerCorsProvider.ts +2 -2
  411. package/src/server/links/{services → __tests__}/BatchCollector.spec.ts +1 -1
  412. package/src/server/links/providers/LinkProvider.ts +2 -2
  413. package/src/server/links/providers/RemotePrimitiveProvider.ts +2 -2
  414. package/src/server/links/providers/ServerLinksProvider.ts +2 -2
  415. package/src/server/rate-limit/{primitives → __tests__}/$rateLimit.spec.ts +1 -1
  416. package/src/server/rate-limit/providers/ServerRateLimitProvider.ts +2 -2
  417. package/src/server/swagger/providers/ServerSwaggerProvider.ts +2 -2
  418. package/src/sms/{providers → __tests__}/LocalSmsProvider.spec.ts +35 -29
  419. package/src/sms/providers/LocalSmsProvider.ts +13 -24
  420. package/src/system/{providers → __tests__}/MemoryFileSystemProvider.spec.ts +1 -1
  421. package/src/system/{providers → __tests__}/MemoryShellProvider.spec.ts +1 -1
  422. package/src/topic/redis/providers/RedisTopicProvider.ts +2 -2
  423. package/src/websocket/{services → __tests__}/RoomManager.spec.ts +1 -1
  424. package/src/websocket/providers/NodeWebSocketServerProvider.ts +2 -2
  425. package/tsconfig.base.json +1 -0
  426. package/src/cli/platform/adapters/DockerAdapter.spec.ts +0 -378
  427. package/src/cli/platform/adapters/DockerAdapter.ts +0 -417
  428. package/src/cli/platform/services/DockerComposeGenerator.spec.ts +0 -490
  429. package/src/cli/platform/services/DockerComposeGenerator.ts +0 -353
  430. package/src/cli/platform/services/DockerSshService.spec.ts +0 -47
  431. package/src/cli/platform/services/DockerSshService.ts +0 -61
  432. /package/src/api/audits/{primitives → __tests__}/$audit.spec.ts +0 -0
  433. /package/src/api/audits/{services → __tests__}/AuditService.spec.ts +0 -0
  434. /package/src/api/files/{controllers → __tests__}/AdminFileStatsController.spec.ts +0 -0
  435. /package/src/api/files/{controllers → __tests__}/FileController.spec.ts +0 -0
  436. /package/src/api/files/{jobs → __tests__}/FileJobs.spec.ts +0 -0
  437. /package/src/api/files/{services → __tests__}/FileService.spec.ts +0 -0
  438. /package/src/api/jobs/{primitives → __tests__}/$job-middleware.spec.ts +0 -0
  439. /package/src/api/parameters/{primitives → __tests__}/$parameter.spec.ts +0 -0
  440. /package/src/api/users/{primitives → __tests__}/$realm.spec.ts +0 -0
  441. /package/src/api/users/{controllers → __tests__}/AdminIdentityController.spec.ts +0 -0
  442. /package/src/api/users/{controllers → __tests__}/AdminSessionController.spec.ts +0 -0
  443. /package/src/api/users/{controllers → __tests__}/AdminUserController.spec.ts +0 -0
  444. /package/src/api/users/{services → __tests__}/CredentialService.spec.ts +0 -0
  445. /package/src/api/users/{providers → __tests__}/RealmProvider.spec.ts +0 -0
  446. /package/src/api/users/{services → __tests__}/RegistrationService.spec.ts +0 -0
  447. /package/src/batch/{primitives → __tests__}/$batch.spec.ts +0 -0
  448. /package/src/batch/{providers → __tests__}/BatchProvider.spec.ts +0 -0
  449. /package/src/bucket/{primitives → __tests__}/$bucket.spec.ts +0 -0
  450. /package/src/bucket/{providers → __tests__}/FileStorageProvider.spec.ts +0 -0
  451. /package/src/bucket/{providers → __tests__}/LocalFileStorageProvider.spec.ts +0 -0
  452. /package/src/bucket/{providers → __tests__}/MemoryFileStorageProvider.spec.ts +0 -0
  453. /package/src/cache/core/{primitives → __tests__}/$cache.spec.ts +0 -0
  454. /package/src/cache/redis/{providers → __tests__}/RedisCacheProvider.spec.ts +0 -0
  455. /package/src/command/{primitives → __tests__}/$command.spec.ts +0 -0
  456. /package/src/command/{helpers → __tests__}/Asker.spec.ts +0 -0
  457. /package/src/command/{helpers → __tests__}/Runner.spec.ts +0 -0
  458. /package/src/core/{primitives → __tests__}/$context.spec.ts +0 -0
  459. /package/src/core/{primitives → __tests__}/$env.spec.ts +0 -0
  460. /package/src/core/{primitives → __tests__}/$hook.spec.ts +0 -0
  461. /package/src/core/{primitives → __tests__}/$inject.spec.ts +0 -0
  462. /package/src/core/{primitives → __tests__}/$module.spec.ts +0 -0
  463. /package/src/core/{providers → __tests__}/CodecManager.spec.ts +0 -0
  464. /package/src/core/{providers → __tests__}/EventManager.spec.ts +0 -0
  465. /package/src/core/{providers → __tests__}/StateManager.spec.ts +0 -0
  466. /package/src/core/{providers → __tests__}/TypeProvider.spec.ts +0 -0
  467. /package/src/datetime/{primitives → __tests__}/$interval.spec.ts +0 -0
  468. /package/src/datetime/{providers → __tests__}/DateTimeProvider.spec.ts +0 -0
  469. /package/src/email/core/{primitives → __tests__}/$email.spec.ts +0 -0
  470. /package/src/fake/{providers → __tests__}/FakeProvider.spec.ts +0 -0
  471. /package/src/lock/core/{providers → __tests__}/MemoryLockProvider.spec.ts +0 -0
  472. /package/src/lock/redis/{providers → __tests__}/RedisLockProvider.spec.ts +0 -0
  473. /package/src/logger/{primitives → __tests__}/$logger.spec.ts +0 -0
  474. /package/src/logger/{services → __tests__}/Logger.spec.ts +0 -0
  475. /package/src/mcp/{primitives → __tests__}/$prompt.spec.ts +0 -0
  476. /package/src/mcp/{primitives → __tests__}/$resource.spec.ts +0 -0
  477. /package/src/mcp/{primitives → __tests__}/$tool.spec.ts +0 -0
  478. /package/src/mcp/{providers → __tests__}/McpServerProvider.spec.ts +0 -0
  479. /package/src/mcp/{helpers → __tests__}/jsonrpc.spec.ts +0 -0
  480. /package/src/orm/core/{helpers → __tests__}/parseQueryString.spec.ts +0 -0
  481. /package/src/queue/core/{primitives → __tests__}/$consumer.spec.ts +0 -0
  482. /package/src/queue/core/{providers → __tests__}/MemoryQueueProvider.spec.ts +0 -0
  483. /package/src/queue/core/{providers → __tests__}/WorkerProvider.spec.ts +0 -0
  484. /package/src/queue/redis/{providers → __tests__}/RedisQueueProvider.spec.ts +0 -0
  485. /package/src/react/form/{hooks → __tests__}/useForm.browser.spec.tsx +0 -0
  486. /package/src/react/head/{hooks → __tests__}/useHead.spec.tsx +0 -0
  487. /package/src/react/i18n/{components → __tests__}/Localize.spec.tsx +0 -0
  488. /package/src/react/router/{primitives → __tests__}/$page.browser.spec.tsx +0 -0
  489. /package/src/react/router/{primitives → __tests__}/$page.middleware.spec.tsx +0 -0
  490. /package/src/react/router/{primitives → __tests__}/$page.spec.tsx +0 -0
  491. /package/src/react/router/{providers → __tests__}/ReactPreloadProvider.spec.ts +0 -0
  492. /package/src/react/router/{providers → __tests__}/ReactServerProvider.spec.tsx +0 -0
  493. /package/src/react/router/{providers → __tests__}/ReactServerTemplateProvider.spec.ts +0 -0
  494. /package/src/retry/{primitives → __tests__}/$retry.spec.ts +0 -0
  495. /package/src/retry/{providers → __tests__}/RetryProvider.spec.ts +0 -0
  496. /package/src/router/{providers → __tests__}/RouterProvider.spec.ts +0 -0
  497. /package/src/security/{primitives → __tests__}/$issuer.spec.ts +0 -0
  498. /package/src/security/{primitives → __tests__}/$permission.spec.ts +0 -0
  499. /package/src/security/{primitives → __tests__}/$role.spec.ts +0 -0
  500. /package/src/security/{primitives → __tests__}/$serviceAccount.spec.ts +0 -0
  501. /package/src/security/{providers → __tests__}/SecurityProvider.spec.ts +0 -0
  502. /package/src/server/cookies/{providers → __tests__}/ServerCookiesProvider.spec.ts +0 -0
  503. /package/src/server/core/{primitives → __tests__}/$action.spec.ts +0 -0
  504. /package/src/server/core/{primitives → __tests__}/$middleware.spec.ts +0 -0
  505. /package/src/server/core/{primitives → __tests__}/$route.spec.ts +0 -0
  506. /package/src/server/core/{primitives → __tests__}/$sse.spec.ts +0 -0
  507. /package/src/server/core/{providers → __tests__}/BunHttpServerProvider.bun.spec.ts +0 -0
  508. /package/src/server/core/{services → __tests__}/HttpClient.spec.ts +0 -0
  509. /package/src/server/core/{providers → __tests__}/ServerLoggerProvider.spec.ts +0 -0
  510. /package/src/server/core/{services → __tests__}/UserAgentParser.spec.ts +0 -0
  511. /package/src/server/cors/{providers → __tests__}/ServerCorsProvider.spec.ts +0 -0
  512. /package/src/server/etag/{providers → __tests__}/ServerEtagProvider.spec.ts +0 -0
  513. /package/src/server/health/{providers → __tests__}/ServerHealthProvider.spec.ts +0 -0
  514. /package/src/server/links/{primitives → __tests__}/$remote.spec.ts +0 -0
  515. /package/src/server/links/{services → __tests__}/BatchEndpoint.spec.ts +0 -0
  516. /package/src/server/links/{providers → __tests__}/LinkProvider.spec.ts +0 -0
  517. /package/src/server/links/{providers → __tests__}/ServerLinksProvider.spec.ts +0 -0
  518. /package/src/server/metrics/{providers → __tests__}/ServerMetricsProvider.spec.ts +0 -0
  519. /package/src/server/proxy/{primitives → __tests__}/$proxy.spec.ts +0 -0
  520. /package/src/server/rate-limit/{providers → __tests__}/ServerRateLimitProvider.spec.ts +0 -0
  521. /package/src/server/static/{primitives → __tests__}/$serve.spec.ts +0 -0
  522. /package/src/server/swagger/{primitives → __tests__}/$swagger.spec.ts +0 -0
  523. /package/src/sms/{primitives → __tests__}/$sms.spec.ts +0 -0
  524. /package/src/sms/{providers → __tests__}/MemorySmsProvider.spec.ts +0 -0
  525. /package/src/system/{services → __tests__}/FileDetector.spec.ts +0 -0
  526. /package/src/system/{providers → __tests__}/NodeFileSystemProvider.spec.ts +0 -0
  527. /package/src/topic/core/{primitives → __tests__}/$subscriber.spec.ts +0 -0
  528. /package/src/topic/core/{providers → __tests__}/MemoryTopicProvider.spec.ts +0 -0
  529. /package/src/topic/redis/{providers → __tests__}/RedisTopicProvider.spec.ts +0 -0
  530. /package/src/websocket/{primitives → __tests__}/$channel.spec.ts +0 -0
package/dist/server/auth/index.d.ts CHANGED
@@ -1,11 +1,11 @@
1
- import * as alepha from "alepha";
1
+ import * as _$alepha from "alepha";
2
2
  import { Alepha, Async, KIND, Primitive, Static } from "alepha";
3
- import * as alepha_server_cookies0 from "alepha/server/cookies";
3
+ import * as _$alepha_server_cookies0 from "alepha/server/cookies";
4
4
  import { Cookies, ServerCookiesProvider } from "alepha/server/cookies";
5
5
  import { DateTimeProvider } from "alepha/datetime";
6
6
  import { AccessTokenResponse, IssuerPrimitive, SecurityProvider, UserAccount } from "alepha/security";
7
- import * as alepha_logger0 from "alepha/logger";
8
- import * as alepha_server0 from "alepha/server";
7
+ import * as _$alepha_logger0 from "alepha/logger";
8
+ import * as _$alepha_server0 from "alepha/server";
9
9
  import { ServerLinksProvider } from "alepha/server/links";
10
10
 
11
11
  //#region ../../src/server/auth/constants/routes.d.ts
@@ -19,85 +19,85 @@ declare const alephaServerAuthRoutes: {
19
19
  };
20
20
  //#endregion
21
21
  //#region ../../src/server/auth/schemas/authenticationProviderSchema.d.ts
22
- declare const authenticationProviderSchema: alepha.TObject<{
23
- name: alepha.TString;
24
- type: alepha.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
22
+ declare const authenticationProviderSchema: _$alepha.TObject<{
23
+ name: _$alepha.TString;
24
+ type: _$alepha.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
25
25
  }>;
26
26
  type AuthenticationProvider = Static<typeof authenticationProviderSchema>;
27
27
  //#endregion
28
28
  //#region ../../src/server/auth/schemas/tokenResponseSchema.d.ts
29
- declare const tokenResponseSchema: alepha.TObject<{
30
- provider: alepha.TString;
31
- access_token: alepha.TString;
32
- issued_at: alepha.TNumber;
33
- expires_in: alepha.TOptional<alepha.TNumber>;
34
- refresh_token: alepha.TOptional<alepha.TString>;
35
- refresh_token_expires_in: alepha.TOptional<alepha.TNumber>;
36
- refresh_expires_in: alepha.TOptional<alepha.TNumber>;
37
- id_token: alepha.TOptional<alepha.TString>;
38
- scope: alepha.TOptional<alepha.TString>;
39
- user: alepha.TObject<{
40
- id: alepha.TString;
41
- name: alepha.TOptional<alepha.TString>;
42
- email: alepha.TOptional<alepha.TString>;
43
- username: alepha.TOptional<alepha.TString>;
44
- picture: alepha.TOptional<alepha.TString>;
45
- sessionId: alepha.TOptional<alepha.TString>;
46
- organizations: alepha.TOptional<alepha.TArray<alepha.TString>>;
47
- roles: alepha.TOptional<alepha.TArray<alepha.TString>>;
48
- realm: alepha.TOptional<alepha.TString>;
29
+ declare const tokenResponseSchema: _$alepha.TObject<{
30
+ provider: _$alepha.TString;
31
+ access_token: _$alepha.TString;
32
+ issued_at: _$alepha.TNumber;
33
+ expires_in: _$alepha.TOptional<_$alepha.TNumber>;
34
+ refresh_token: _$alepha.TOptional<_$alepha.TString>;
35
+ refresh_token_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
36
+ refresh_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
37
+ id_token: _$alepha.TOptional<_$alepha.TString>;
38
+ scope: _$alepha.TOptional<_$alepha.TString>;
39
+ user: _$alepha.TObject<{
40
+ id: _$alepha.TString;
41
+ name: _$alepha.TOptional<_$alepha.TString>;
42
+ email: _$alepha.TOptional<_$alepha.TString>;
43
+ username: _$alepha.TOptional<_$alepha.TString>;
44
+ picture: _$alepha.TOptional<_$alepha.TString>;
45
+ sessionId: _$alepha.TOptional<_$alepha.TString>;
46
+ organization: _$alepha.TOptional<_$alepha.TString>;
47
+ roles: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
48
+ realm: _$alepha.TOptional<_$alepha.TString>;
49
49
  }>;
50
- api: alepha.TObject<{
51
- prefix: alepha.TOptional<alepha.TString>;
52
- actions: alepha.TRecord<"^.*$", alepha.TObject<{
53
- path: alepha.TString;
54
- method: alepha.TOptional<alepha.TString>;
55
- contentType: alepha.TOptional<alepha.TString>;
56
- kind: alepha.TOptional<alepha.TString>;
57
- service: alepha.TOptional<alepha.TString>;
50
+ api: _$alepha.TObject<{
51
+ prefix: _$alepha.TOptional<_$alepha.TString>;
52
+ actions: _$alepha.TRecord<"^.*$", _$alepha.TObject<{
53
+ path: _$alepha.TString;
54
+ method: _$alepha.TOptional<_$alepha.TString>;
55
+ contentType: _$alepha.TOptional<_$alepha.TString>;
56
+ kind: _$alepha.TOptional<_$alepha.TString>;
57
+ service: _$alepha.TOptional<_$alepha.TString>;
58
58
  }>>;
59
- permissions: alepha.TOptional<alepha.TArray<alepha.TString>>;
59
+ permissions: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
60
60
  }>;
61
61
  }>;
62
62
  type TokenResponse = Static<typeof tokenResponseSchema>;
63
63
  //#endregion
64
64
  //#region ../../src/server/auth/schemas/tokensSchema.d.ts
65
- declare const tokensSchema: alepha.TObject<{
66
- provider: alepha.TString;
67
- access_token: alepha.TString;
68
- issued_at: alepha.TNumber;
69
- expires_in: alepha.TOptional<alepha.TNumber>;
70
- refresh_token: alepha.TOptional<alepha.TString>;
71
- refresh_token_expires_in: alepha.TOptional<alepha.TNumber>;
72
- refresh_expires_in: alepha.TOptional<alepha.TNumber>;
73
- id_token: alepha.TOptional<alepha.TString>;
74
- scope: alepha.TOptional<alepha.TString>;
65
+ declare const tokensSchema: _$alepha.TObject<{
66
+ provider: _$alepha.TString;
67
+ access_token: _$alepha.TString;
68
+ issued_at: _$alepha.TNumber;
69
+ expires_in: _$alepha.TOptional<_$alepha.TNumber>;
70
+ refresh_token: _$alepha.TOptional<_$alepha.TString>;
71
+ refresh_token_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
72
+ refresh_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
73
+ id_token: _$alepha.TOptional<_$alepha.TString>;
74
+ scope: _$alepha.TOptional<_$alepha.TString>;
75
75
  }>;
76
76
  type Tokens = Static<typeof tokensSchema>;
77
77
  //#endregion
78
78
  //#region ../../src/server/auth/schemas/userinfoResponseSchema.d.ts
79
- declare const userinfoResponseSchema: alepha.TObject<{
80
- user: alepha.TOptional<alepha.TObject<{
81
- id: alepha.TString;
82
- name: alepha.TOptional<alepha.TString>;
83
- email: alepha.TOptional<alepha.TString>;
84
- username: alepha.TOptional<alepha.TString>;
85
- picture: alepha.TOptional<alepha.TString>;
86
- sessionId: alepha.TOptional<alepha.TString>;
87
- organizations: alepha.TOptional<alepha.TArray<alepha.TString>>;
88
- roles: alepha.TOptional<alepha.TArray<alepha.TString>>;
89
- realm: alepha.TOptional<alepha.TString>;
79
+ declare const userinfoResponseSchema: _$alepha.TObject<{
80
+ user: _$alepha.TOptional<_$alepha.TObject<{
81
+ id: _$alepha.TString;
82
+ name: _$alepha.TOptional<_$alepha.TString>;
83
+ email: _$alepha.TOptional<_$alepha.TString>;
84
+ username: _$alepha.TOptional<_$alepha.TString>;
85
+ picture: _$alepha.TOptional<_$alepha.TString>;
86
+ sessionId: _$alepha.TOptional<_$alepha.TString>;
87
+ organization: _$alepha.TOptional<_$alepha.TString>;
88
+ roles: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
89
+ realm: _$alepha.TOptional<_$alepha.TString>;
90
90
  }>>;
91
- api: alepha.TObject<{
92
- prefix: alepha.TOptional<alepha.TString>;
93
- actions: alepha.TRecord<"^.*$", alepha.TObject<{
94
- path: alepha.TString;
95
- method: alepha.TOptional<alepha.TString>;
96
- contentType: alepha.TOptional<alepha.TString>;
97
- kind: alepha.TOptional<alepha.TString>;
98
- service: alepha.TOptional<alepha.TString>;
91
+ api: _$alepha.TObject<{
92
+ prefix: _$alepha.TOptional<_$alepha.TString>;
93
+ actions: _$alepha.TRecord<"^.*$", _$alepha.TObject<{
94
+ path: _$alepha.TString;
95
+ method: _$alepha.TOptional<_$alepha.TString>;
96
+ contentType: _$alepha.TOptional<_$alepha.TString>;
97
+ kind: _$alepha.TOptional<_$alepha.TString>;
98
+ service: _$alepha.TOptional<_$alepha.TString>;
99
99
  }>>;
100
- permissions: alepha.TOptional<alepha.TArray<alepha.TString>>;
100
+ permissions: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
101
101
  }>;
102
102
  }>;
103
103
  type UserinfoResponse = Static<typeof userinfoResponseSchema>;
@@ -1130,155 +1130,156 @@ declare class Configuration implements ConfigurationMethods, ConfigurationProper
1130
1130
  //#endregion
1131
1131
  //#region ../../src/server/auth/providers/ServerAuthProvider.d.ts
1132
1132
  declare class ServerAuthProvider {
1133
- protected readonly log: alepha_logger0.Logger;
1133
+ protected readonly log: _$alepha_logger0.Logger;
1134
1134
  protected readonly alepha: Alepha;
1135
1135
  protected readonly serverCookiesProvider: ServerCookiesProvider;
1136
1136
  protected readonly dateTimeProvider: DateTimeProvider;
1137
1137
  protected readonly serverLinksProvider: ServerLinksProvider;
1138
1138
  get identities(): Array<AuthPrimitive>;
1139
- protected readonly authorizationCode: alepha_server_cookies0.AbstractCookiePrimitive<alepha.TObject<{
1140
- provider: alepha.TString;
1141
- realm: alepha.TOptional<alepha.TString>;
1142
- codeVerifier: alepha.TOptional<alepha.TString>;
1143
- redirectUri: alepha.TOptional<alepha.TString>;
1144
- state: alepha.TOptional<alepha.TString>;
1145
- nonce: alepha.TOptional<alepha.TString>;
1139
+ protected readonly authorizationCode: _$alepha_server_cookies0.AbstractCookiePrimitive<_$alepha.TObject<{
1140
+ provider: _$alepha.TString;
1141
+ realm: _$alepha.TOptional<_$alepha.TString>;
1142
+ codeVerifier: _$alepha.TOptional<_$alepha.TString>;
1143
+ redirectUri: _$alepha.TOptional<_$alepha.TString>;
1144
+ loginUri: _$alepha.TOptional<_$alepha.TString>;
1145
+ state: _$alepha.TOptional<_$alepha.TString>;
1146
+ nonce: _$alepha.TOptional<_$alepha.TString>;
1146
1147
  }>>;
1147
- readonly tokens: alepha_server_cookies0.AbstractCookiePrimitive<alepha.TObject<{
1148
- provider: alepha.TString;
1149
- access_token: alepha.TString;
1150
- issued_at: alepha.TNumber;
1151
- expires_in: alepha.TOptional<alepha.TNumber>;
1152
- refresh_token: alepha.TOptional<alepha.TString>;
1153
- refresh_token_expires_in: alepha.TOptional<alepha.TNumber>;
1154
- refresh_expires_in: alepha.TOptional<alepha.TNumber>;
1155
- id_token: alepha.TOptional<alepha.TString>;
1156
- scope: alepha.TOptional<alepha.TString>;
1148
+ readonly tokens: _$alepha_server_cookies0.AbstractCookiePrimitive<_$alepha.TObject<{
1149
+ provider: _$alepha.TString;
1150
+ access_token: _$alepha.TString;
1151
+ issued_at: _$alepha.TNumber;
1152
+ expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1153
+ refresh_token: _$alepha.TOptional<_$alepha.TString>;
1154
+ refresh_token_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1155
+ refresh_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1156
+ id_token: _$alepha.TOptional<_$alepha.TString>;
1157
+ scope: _$alepha.TOptional<_$alepha.TString>;
1157
1158
  }>>;
1158
- protected readonly configure: alepha.HookPrimitive<"configure">;
1159
+ protected readonly configure: _$alepha.HookPrimitive<"configure">;
1159
1160
  /**
1160
1161
  * Fill request headers with access token from cookies or fallback to provider's fallback function.
1161
1162
  */
1162
- protected readonly onRequest: alepha.HookPrimitive<"server:onRequest">;
1163
+ protected readonly onRequest: _$alepha.HookPrimitive<"server:onRequest">;
1163
1164
  /**
1164
1165
  * Get user information.
1165
1166
  */
1166
- readonly userinfo: alepha_server0.RoutePrimitive<{
1167
- response: alepha.TObject<{
1168
- user: alepha.TOptional<alepha.TObject<{
1169
- id: alepha.TString;
1170
- name: alepha.TOptional<alepha.TString>;
1171
- email: alepha.TOptional<alepha.TString>;
1172
- username: alepha.TOptional<alepha.TString>;
1173
- picture: alepha.TOptional<alepha.TString>;
1174
- sessionId: alepha.TOptional<alepha.TString>;
1175
- organizations: alepha.TOptional<alepha.TArray<alepha.TString>>;
1176
- roles: alepha.TOptional<alepha.TArray<alepha.TString>>;
1177
- realm: alepha.TOptional<alepha.TString>;
1167
+ readonly userinfo: _$alepha_server0.RoutePrimitive<{
1168
+ response: _$alepha.TObject<{
1169
+ user: _$alepha.TOptional<_$alepha.TObject<{
1170
+ id: _$alepha.TString;
1171
+ name: _$alepha.TOptional<_$alepha.TString>;
1172
+ email: _$alepha.TOptional<_$alepha.TString>;
1173
+ username: _$alepha.TOptional<_$alepha.TString>;
1174
+ picture: _$alepha.TOptional<_$alepha.TString>;
1175
+ sessionId: _$alepha.TOptional<_$alepha.TString>;
1176
+ organization: _$alepha.TOptional<_$alepha.TString>;
1177
+ roles: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
1178
+ realm: _$alepha.TOptional<_$alepha.TString>;
1178
1179
  }>>;
1179
- api: alepha.TObject<{
1180
- prefix: alepha.TOptional<alepha.TString>;
1181
- actions: alepha.TRecord<"^.*$", alepha.TObject<{
1182
- path: alepha.TString;
1183
- method: alepha.TOptional<alepha.TString>;
1184
- contentType: alepha.TOptional<alepha.TString>;
1185
- kind: alepha.TOptional<alepha.TString>;
1186
- service: alepha.TOptional<alepha.TString>;
1180
+ api: _$alepha.TObject<{
1181
+ prefix: _$alepha.TOptional<_$alepha.TString>;
1182
+ actions: _$alepha.TRecord<"^.*$", _$alepha.TObject<{
1183
+ path: _$alepha.TString;
1184
+ method: _$alepha.TOptional<_$alepha.TString>;
1185
+ contentType: _$alepha.TOptional<_$alepha.TString>;
1186
+ kind: _$alepha.TOptional<_$alepha.TString>;
1187
+ service: _$alepha.TOptional<_$alepha.TString>;
1187
1188
  }>>;
1188
- permissions: alepha.TOptional<alepha.TArray<alepha.TString>>;
1189
+ permissions: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
1189
1190
  }>;
1190
1191
  }>;
1191
1192
  }>;
1192
1193
  /**
1193
1194
  * Refresh a token for internal providers.
1194
1195
  */
1195
- readonly refresh: alepha_server0.RoutePrimitive<{
1196
- query: alepha.TObject<{
1197
- provider: alepha.TString;
1196
+ readonly refresh: _$alepha_server0.RoutePrimitive<{
1197
+ query: _$alepha.TObject<{
1198
+ provider: _$alepha.TString;
1198
1199
  }>;
1199
- body: alepha.TObject<{
1200
- refresh_token: alepha.TString;
1201
- access_token: alepha.TOptional<alepha.TString>;
1200
+ body: _$alepha.TObject<{
1201
+ refresh_token: _$alepha.TString;
1202
+ access_token: _$alepha.TOptional<_$alepha.TString>;
1202
1203
  }>;
1203
- response: alepha.TObject<{
1204
- provider: alepha.TString;
1205
- access_token: alepha.TString;
1206
- issued_at: alepha.TNumber;
1207
- expires_in: alepha.TOptional<alepha.TNumber>;
1208
- refresh_token: alepha.TOptional<alepha.TString>;
1209
- refresh_token_expires_in: alepha.TOptional<alepha.TNumber>;
1210
- refresh_expires_in: alepha.TOptional<alepha.TNumber>;
1211
- id_token: alepha.TOptional<alepha.TString>;
1212
- scope: alepha.TOptional<alepha.TString>;
1204
+ response: _$alepha.TObject<{
1205
+ provider: _$alepha.TString;
1206
+ access_token: _$alepha.TString;
1207
+ issued_at: _$alepha.TNumber;
1208
+ expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1209
+ refresh_token: _$alepha.TOptional<_$alepha.TString>;
1210
+ refresh_token_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1211
+ refresh_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1212
+ id_token: _$alepha.TOptional<_$alepha.TString>;
1213
+ scope: _$alepha.TOptional<_$alepha.TString>;
1213
1214
  }>;
1214
1215
  }>;
1215
1216
  /**
1216
1217
  * Login for local password-based authentication.
1217
1218
  */
1218
- readonly token: alepha_server0.RoutePrimitive<{
1219
- query: alepha.TObject<{
1220
- provider: alepha.TString;
1221
- realm: alepha.TOptional<alepha.TString>;
1219
+ readonly token: _$alepha_server0.RoutePrimitive<{
1220
+ query: _$alepha.TObject<{
1221
+ provider: _$alepha.TString;
1222
+ realm: _$alepha.TOptional<_$alepha.TString>;
1222
1223
  }>;
1223
- body: alepha.TObject<{
1224
- username: alepha.TString;
1225
- password: alepha.TString;
1224
+ body: _$alepha.TObject<{
1225
+ username: _$alepha.TString;
1226
+ password: _$alepha.TString;
1226
1227
  }>;
1227
- response: alepha.TObject<{
1228
- provider: alepha.TString;
1229
- access_token: alepha.TString;
1230
- issued_at: alepha.TNumber;
1231
- expires_in: alepha.TOptional<alepha.TNumber>;
1232
- refresh_token: alepha.TOptional<alepha.TString>;
1233
- refresh_token_expires_in: alepha.TOptional<alepha.TNumber>;
1234
- refresh_expires_in: alepha.TOptional<alepha.TNumber>;
1235
- id_token: alepha.TOptional<alepha.TString>;
1236
- scope: alepha.TOptional<alepha.TString>;
1237
- user: alepha.TObject<{
1238
- id: alepha.TString;
1239
- name: alepha.TOptional<alepha.TString>;
1240
- email: alepha.TOptional<alepha.TString>;
1241
- username: alepha.TOptional<alepha.TString>;
1242
- picture: alepha.TOptional<alepha.TString>;
1243
- sessionId: alepha.TOptional<alepha.TString>;
1244
- organizations: alepha.TOptional<alepha.TArray<alepha.TString>>;
1245
- roles: alepha.TOptional<alepha.TArray<alepha.TString>>;
1246
- realm: alepha.TOptional<alepha.TString>;
1228
+ response: _$alepha.TObject<{
1229
+ provider: _$alepha.TString;
1230
+ access_token: _$alepha.TString;
1231
+ issued_at: _$alepha.TNumber;
1232
+ expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1233
+ refresh_token: _$alepha.TOptional<_$alepha.TString>;
1234
+ refresh_token_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1235
+ refresh_expires_in: _$alepha.TOptional<_$alepha.TNumber>;
1236
+ id_token: _$alepha.TOptional<_$alepha.TString>;
1237
+ scope: _$alepha.TOptional<_$alepha.TString>;
1238
+ user: _$alepha.TObject<{
1239
+ id: _$alepha.TString;
1240
+ name: _$alepha.TOptional<_$alepha.TString>;
1241
+ email: _$alepha.TOptional<_$alepha.TString>;
1242
+ username: _$alepha.TOptional<_$alepha.TString>;
1243
+ picture: _$alepha.TOptional<_$alepha.TString>;
1244
+ sessionId: _$alepha.TOptional<_$alepha.TString>;
1245
+ organization: _$alepha.TOptional<_$alepha.TString>;
1246
+ roles: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
1247
+ realm: _$alepha.TOptional<_$alepha.TString>;
1247
1248
  }>;
1248
- api: alepha.TObject<{
1249
- prefix: alepha.TOptional<alepha.TString>;
1250
- actions: alepha.TRecord<"^.*$", alepha.TObject<{
1251
- path: alepha.TString;
1252
- method: alepha.TOptional<alepha.TString>;
1253
- contentType: alepha.TOptional<alepha.TString>;
1254
- kind: alepha.TOptional<alepha.TString>;
1255
- service: alepha.TOptional<alepha.TString>;
1249
+ api: _$alepha.TObject<{
1250
+ prefix: _$alepha.TOptional<_$alepha.TString>;
1251
+ actions: _$alepha.TRecord<"^.*$", _$alepha.TObject<{
1252
+ path: _$alepha.TString;
1253
+ method: _$alepha.TOptional<_$alepha.TString>;
1254
+ contentType: _$alepha.TOptional<_$alepha.TString>;
1255
+ kind: _$alepha.TOptional<_$alepha.TString>;
1256
+ service: _$alepha.TOptional<_$alepha.TString>;
1256
1257
  }>>;
1257
- permissions: alepha.TOptional<alepha.TArray<alepha.TString>>;
1258
+ permissions: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
1258
1259
  }>;
1259
1260
  }>;
1260
1261
  }>;
1261
1262
  /**
1262
1263
  * Oauth2/OIDC login route.
1263
1264
  */
1264
- readonly login: alepha_server0.RoutePrimitive<{
1265
- query: alepha.TObject<{
1266
- provider: alepha.TString;
1267
- realm: alepha.TOptional<alepha.TString>;
1268
- redirect_uri: alepha.TOptional<alepha.TString>;
1265
+ readonly login: _$alepha_server0.RoutePrimitive<{
1266
+ query: _$alepha.TObject<{
1267
+ provider: _$alepha.TString;
1268
+ realm: _$alepha.TOptional<_$alepha.TString>;
1269
+ redirect_uri: _$alepha.TOptional<_$alepha.TString>;
1269
1270
  }>;
1270
1271
  }>;
1271
1272
  /**
1272
1273
  * Callback for OAuth2/OIDC providers.
1273
1274
  * It handles the authorization code flow and retrieves the access token.
1274
1275
  */
1275
- readonly callback: alepha_server0.RoutePrimitive<alepha_server0.RequestConfigSchema>;
1276
+ readonly callback: _$alepha_server0.RoutePrimitive<_$alepha_server0.RequestConfigSchema>;
1276
1277
  /**
1277
1278
  * Logout route for OAuth2/OIDC providers.
1278
1279
  */
1279
- readonly logout: alepha_server0.RoutePrimitive<{
1280
- query: alepha.TObject<{
1281
- post_logout_redirect_uri: alepha.TOptional<alepha.TString>;
1280
+ readonly logout: _$alepha_server0.RoutePrimitive<{
1281
+ query: _$alepha.TObject<{
1282
+ post_logout_redirect_uri: _$alepha.TOptional<_$alepha.TString>;
1282
1283
  }>;
1283
1284
  }>;
1284
1285
  getAuthenticationProviders(filters?: {
@@ -1614,7 +1615,7 @@ declare const $authGoogle: (realm: IssuerPrimitive & WithLinkFn, options?: Parti
1614
1615
  *
1615
1616
  * @module alepha.server.auth
1616
1617
  */
1617
- declare const AlephaServerAuth: alepha.Service<alepha.Module>;
1618
+ declare const AlephaServerAuth: _$alepha.Service<_$alepha.Module>;
1618
1619
  //#endregion
1619
1620
  export { $auth, $authCredentials, $authGithub, $authGoogle, AccessToken, AlephaServerAuth, AuthExternal, AuthInternal, AuthPrimitive, AuthPrimitiveOptions, AuthenticationProvider, Credentials, CredentialsFn, CredentialsOptions, LinkAccountFn, LinkAccountOptions, OAuth2Options, OAuth2Profile, OidcOptions, ServerAuthProvider, TokenResponse, Tokens, UserinfoResponse, WithLinkFn, WithLoginFn, alephaServerAuthRoutes, authenticationProviderSchema, tokenResponseSchema, tokensSchema, userinfoResponseSchema };
1620
1621
  //# sourceMappingURL=index.d.ts.map
package/dist/server/auth/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","names":["CryptoKey","crypto","subtle","generateKey","ReturnType","Awaited","Extract","type","CryptoKeyPair","privateKey","publicKey","JsonObject","JsonValue","Key","JsonArray","JsonPrimitive","ModifyAssertionFunction","Record","header","payload","PrivateKey","key","kid","JWSAlgorithm","JWK","kty","alg","use","key_ops","e","n","crv","x","y","pub","parameter","allowInsecureRequests","clockSkew","clockTolerance","customFetch","modifyAssertion","jweDecrypt","jwksCache","AuthorizationServer","MTLSEndpointAliases","issuer","authorization_endpoint","token_endpoint","jwks_uri","registration_endpoint","scopes_supported","response_types_supported","response_modes_supported","grant_types_supported","token_endpoint_auth_methods_supported","token_endpoint_auth_signing_alg_values_supported","service_documentation","ui_locales_supported","op_policy_uri","op_tos_uri","revocation_endpoint","revocation_endpoint_auth_methods_supported","revocation_endpoint_auth_signing_alg_values_supported","introspection_endpoint","introspection_endpoint_auth_methods_supported","introspection_endpoint_auth_signing_alg_values_supported","code_challenge_methods_supported","signed_metadata","device_authorization_endpoint","tls_client_certificate_bound_access_tokens","mtls_endpoint_aliases","userinfo_endpoint","acr_values_supported","subject_types_supported","id_token_signing_alg_values_supported","id_token_encryption_alg_values_supported","id_token_encryption_enc_values_supported","userinfo_signing_alg_values_supported","userinfo_encryption_alg_values_supported","userinfo_encryption_enc_values_supported","request_object_signing_alg_values_supported","request_object_encryption_alg_values_supported","request_object_encryption_enc_values_supported","display_values_supported","claim_types_supported","claims_supported","claims_locales_supported","claims_parameter_supported","request_parameter_supported","request_uri_parameter_supported","require_request_uri_registration","require_signed_request_object","pushed_authorization_request_endpoint","require_pushed_authorization_requests","introspection_signing_alg_values_supported","introspection_encryption_alg_values_supported","introspection_encryption_enc_values_supported","authorization_response_iss_parameter_supported","authorization_signing_alg_values_supported","authorization_encryption_alg_values_supported","authorization_encryption_enc_values_supported","backchannel_authentication_endpoint","backchannel_authentication_request_signing_alg_values_supported","backchannel_token_delivery_modes_supported","backchannel_user_code_parameter_supported","check_session_iframe","dpop_signing_alg_values_supported","end_session_endpoint","frontchannel_logout_session_supported","frontchannel_logout_supported","backchannel_logout_session_supported","backchannel_logout_supported","protected_resources","metadata","Pick","Client","client_id","id_token_signed_response_alg","authorization_signed_response_alg","require_auth_time","userinfo_signed_response_alg","introspection_signed_response_alg","default_max_age","use_mtls_endpoint_aliases","UnsupportedOperationError","Error","code","constructor","message","cause","options","OperationProcessingError","JWKSCacheOptions","JWKSCacheInput","CustomFetchOptions","Method","BodyType","AbortSignal","body","headers","method","redirect","signal","HttpRequestOptions","Headers","Response","Promise","url","DiscoveryRequestOptions","algorithm","discoveryRequest","URL","issuerIdentifier","processDiscoveryResponse","expectedIssuerIdentifier","response","generateRandomCodeVerifier","generateRandomState","generateRandomNonce","calculatePKCECodeChallenge","codeVerifier","DPoPRequestOptions","DPoPHandle","DPoP","PushedAuthorizationRequestOptions","URLSearchParams","ClientAuth","as","client","ClientSecretPost","clientSecret","ClientSecretBasic","ModifyAssertionOptions","PrivateKeyJwt","clientPrivateKey","ClientSecretJwt","None","TlsClientAuth","issueRequestObject","parameters","checkProtocol","enforceHttps","pushedAuthorizationRequest","clientAuthentication","calculateThumbprint","isDPoPNonceError","err","keyPair","PushedAuthorizationResponse","request_uri","expires_in","OAuth2Error","error","error_description","error_uri","algs","scope","ResponseBodyError","RESPONSE_BODY_ERROR","status","AuthorizationResponseError","AUTHORIZATION_RESPONSE_ERROR","WWWAuthenticateChallengeError","WWWAuthenticateChallenge","WWW_AUTHENTICATE_CHALLENGE","WWWAuthenticateChallengeParameters","Lowercase","realm","resource_metadata","scheme","token68","processPushedAuthorizationResponse","ProtectedResourceRequestBody","ArrayBuffer","ReadableStream","Uint8Array","ProtectedResourceRequestOptions","Omit","protectedResourceRequest","accessToken","UserInfoRequestOptions","userInfoRequest","UserInfoAddress","formatted","street_address","locality","region","postal_code","country","claim","UserInfoResponse","sub","name","given_name","family_name","middle_name","nickname","preferred_username","profile","picture","website","email","email_verified","gender","birthdate","zoneinfo","locale","phone_number","updated_at","address","ExportedJWKSCache","JWKS","jwks","uat","skipSubjectCheck","JWEDecryptOptions","JweDecryptFunction","RecognizedTokenTypes","TokenEndpointResponse","res","ProcessTokenResponseOptions","recognizedTokenTypes","processUserInfoResponse","expectedSubject","TokenEndpointRequestOptions","additionalParameters","refreshTokenGrantRequest","refreshToken","getValidatedIdTokenClaims","IDToken","ref","ValidateSignatureOptions","validateApplicationLevelSignature","processRefreshTokenResponse","nopkce","authorizationCodeGrantRequest","callbackParameters","redirectUri","JWTPayload","ConfirmationClaims","iss","aud","jti","nbf","exp","iat","cnf","nonce","auth_time","azp","AuthorizationDetails","locations","actions","datatypes","privileges","identifier","access_token","id_token","refresh_token","authorization_details","token_type","expectNoNonce","skipAuthTimeCheck","ProcessAuthorizationCodeResponseOptions","expectedNonce","maxAge","requireIdToken","processAuthorizationCodeResponse","UNSUPPORTED_OPERATION","JWT_USERINFO_EXPECTED","PARSE_ERROR","INVALID_RESPONSE","INVALID_REQUEST","RESPONSE_IS_NOT_JSON","RESPONSE_IS_NOT_CONFORM","HTTP_REQUEST_FORBIDDEN","REQUEST_PROTOCOL_FORBIDDEN","JWT_TIMESTAMP_CHECK","JWT_CLAIM_COMPARISON","JSON_ATTRIBUTE_COMPARISON","KEY_SELECTION","MISSING_SERVER_METADATA","INVALID_SERVER_METADATA","ClientCredentialsGrantRequestOptions","clientCredentialsGrantRequest","genericTokenEndpointRequest","grantType","processGenericTokenEndpointResponse","processClientCredentialsResponse","RevocationRequestOptions","revocationRequest","token","processRevocationResponse","IntrospectionRequestOptions","requestJwtResponse","introspectionRequest","jkt","IntrospectionResponse","active","sid","username","processIntrospectionResponse","keys","jwe","validateJwtAuthResponse","expectNoState","skipStateCheck","expectedState","validateDetachedSignatureResponse","Request","validateCodeIdTokenResponse","validateAuthResponse","DeviceAuthorizationRequestOptions","deviceAuthorizationRequest","DeviceAuthorizationResponse","device_code","user_code","verification_uri","verification_uri_complete","interval","processDeviceAuthorizationResponse","deviceCodeGrantRequest","deviceCode","processDeviceCodeResponse","GenerateKeyPairOptions","extractable","modulusLength","generateKeyPair","JWTAccessTokenClaims","ValidateJWTAccessTokenOptions","requireDPoP","signingAlgorithms","validateJwtAccessToken","request","expectedAudience","BackchannelAuthenticationRequestOptions","backchannelAuthenticationRequest","BackchannelAuthenticationResponse","auth_req_id","processBackchannelAuthenticationResponse","backchannelAuthenticationGrantRequest","authReqId","processBackchannelAuthenticationGrantResponse","OmitSymbolProperties","T","K","DynamicClientRegistrationRequestOptions","initialAccessToken","dynamicClientRegistrationRequest","Partial","processDynamicClientRegistrationResponse","ResourceServer","resource","authorization_servers","bearer_methods_supported","resource_signing_alg_values_supported","resource_name","resource_documentation","resource_policy_uri","resource_tos_uri","authorization_details_types_supported","dpop_bound_access_tokens_required","resourceDiscoveryRequest","resourceIdentifier","processResourceDiscoveryResponse","expectedResourceIdentifier","oauth","CryptoKey","crypto","subtle","generateKey","ReturnType","Awaited","Extract","type","CryptoKeyPair","privateKey","publicKey","AuthorizationResponseError","ResponseBodyError","WWWAuthenticateChallengeError","AuthorizationDetails","BackchannelAuthenticationResponse","ConfirmationClaims","DeviceAuthorizationResponse","OmitSymbolProperties","ExportedJWKSCache","GenerateKeyPairOptions","IDToken","IntrospectionResponse","JsonArray","JsonObject","JsonPrimitive","JsonValue","JWK","JWKS","JWSAlgorithm","ModifyAssertionFunction","ModifyAssertionOptions","MTLSEndpointAliases","PrivateKey","TokenEndpointResponse","UserInfoAddress","UserInfoResponse","WWWAuthenticateChallenge","WWWAuthenticateChallengeParameters","ClientAuth","ServerMetadata","ClientMetadata","URLSearchParams","Headers","as","client","body","headers","ClientSecretPost","clientSecret","ClientSecretBasic","ClientSecretJwt","options","None","PrivateKeyJwt","clientPrivateKey","TlsClientAuth","skipStateCheck","skipSubjectCheck","customFetch","modifyAssertion","clockSkew","clockTolerance","FetchBody","ArrayBuffer","ReadableStream","Uint8Array","DPoPHandle","Client","client_secret","use_mtls_endpoint_aliases","AuthorizationServer","calculatePKCECodeChallenge","Promise","codeVerifier","randomPKCECodeVerifier","randomNonce","randomState","ClientError","Error","code","randomDPoPKeyPair","alg","DiscoveryRequestOptions","CustomFetch","Configuration","Array","algorithm","execute","config","timeout","DynamicClientRegistrationRequestOptions","DPoPOptions","initialAccessToken","dynamicClientRegistration","URL","Partial","server","metadata","clientAuthentication","discovery","clientId","DecryptionKey","key","kid","enableDecryptingResponses","contentEncryptionAlgorithms","keys","ServerMetadataHelpers","supportsPKCE","method","ConfigurationMethods","Readonly","serverMetadata","clientMetadata","CustomFetchOptions","Record","AbortSignal","redirect","signal","Response","url","ConfigurationProperties","constructor","value","TokenEndpointResponseHelpers","claims","expiresIn","getDPoPHandle","keyPair","DeviceAuthorizationGrantPollOptions","pollDeviceAuthorizationGrant","deviceAuthorizationResponse","parameters","initiateDeviceAuthorization","initiateBackchannelAuthentication","BackchannelAuthenticationGrantPollOptions","pollBackchannelAuthenticationGrant","backchannelAuthenticationResponse","AuthorizationCodeGrantOptions","allowInsecureRequests","setJwksCache","jwksCache","getJwksCache","enableNonRepudiationChecks","useJwtResponseMode","enableDetachedSignatureResponseChecks","ImplicitAuthenticationResponseChecks","AuthorizationCodeGrantChecks","Pick","implicitAuthentication","Request","currentUrl","expectedNonce","checks","useCodeIdTokenResponseType","useIdTokenResponseType","expectedState","idTokenExpected","maxAge","pkceCodeVerifier","authorizationCodeGrant","tokenEndpointParameters","refreshTokenGrant","refreshToken","clientCredentialsGrant","buildAuthorizationUrl","buildAuthorizationUrlWithJAR","signingKey","buildAuthorizationUrlWithPAR","buildEndSessionUrl","fetchUserInfo","accessToken","expectedSubject","tokenIntrospection","token","DPoP","genericGrantRequest","grantType","tokenRevocation","fetchProtectedResource","DeviceAutorizationGrantPollOptions"],"sources":["../../../src/server/auth/constants/routes.ts","../../../src/server/auth/schemas/authenticationProviderSchema.ts","../../../src/server/auth/schemas/tokenResponseSchema.ts","../../../src/server/auth/schemas/tokensSchema.ts","../../../src/server/auth/schemas/userinfoResponseSchema.ts","../../../../../node_modules/oauth4webapi/build/index.d.ts","../../../../../node_modules/openid-client/build/index.d.ts","../../../src/server/auth/providers/ServerAuthProvider.ts","../../../src/server/auth/primitives/$auth.ts","../../../src/server/auth/primitives/$authCredentials.ts","../../../src/server/auth/primitives/$authGithub.ts","../../../src/server/auth/primitives/$authGoogle.ts","../../../src/server/auth/index.ts"],"x_google_ignoreList":[5,6],"mappings":";;;;;;;;;;;cAAa,sBAAA;;;;;;;;;;cCEA,4BAAA,SAA4B,OAAA;QAYxC,MAAA,CAAA,OAAA;;;KAEW,sBAAA,GAAyB,MAAA,QAC5B,4BAAA;;;cCZI,mBAAA,SAAmB,OAAA;YAG9B,MAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;KAEU,aAAA,GAAgB,MAAA,QAAc,mBAAA;;;cCP7B,YAAA,SAAY,OAAA;YAevB,MAAA,CAAA,OAAA;;;;;;;;;;KAEU,MAAA,GAAS,MAAA,QAAc,YAAA;;;cChBtB,sBAAA,SAAsB,OAAA;;QAGjC,MAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;KAEU,gBAAA,GAAmB,MAAA,QAAc,sBAAA;;;;AJT7C;;KKaYW,UAAAA,uBACUC,SAAAA;;;;KAKVE,SAAAA,GAAYF,SAAAA;;;;KAIZG,aAAAA;;;AJrBZ;KIyBYH,SAAAA,GAAYG,aAAAA,GAAgBJ,UAAAA,GAAaG,SAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAqFhCuB,SAAAA;;;;;;;;;;;;;;;;;cAiBAC,cAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AHvHrB;;;;;;;;ACPA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiBA;;;;;;;;AChBA;;;;cC8PqBC,aAAAA;;AAlJrB;;;;;AAiBA;UA+QiBI,mBAAAA;;;;WAIJE,MAAAA;EAlJkC;;;EAAA,SAsJlCC,sBAAAA;EARIH;;;EAAAA,SAYJI,cAAAA;EARAF;;;EAAAA,SAYAG,QAAAA;EAIAC;;;EAAAA,SAAAA,qBAAAA;EAmBAI;;;EAAAA,SAfAH,gBAAAA;EAkCAO;;;;EAAAA,SA7BAN,wBAAAA;EAsDAW;;;;EAAAA,SAjDAV,wBAAAA;EAwEAe;;;;EAAAA,SAnEAd,qBAAAA;EAoFAkB;;;EAAAA,SAhFAjB,qCAAAA;EAoGAqB;;;;EAAAA,SA/FApB,gDAAAA;EAqHAyB;;;;EAAAA,SAhHAxB,qBAAAA;EAwIA6B;;;;EAAAA,SAnIA5B,oBAAAA;EA4JAiC;;;;;EAAAA,SAtJAhC,aAAAA;EAkLAsC;;;;EAAAA,SA7KArC,UAAAA;EAqMA0C;;;EAAAA,SAjMAzC,mBAAAA;EAmNA6C;;;;EAAAA,SA9MA5C,0CAAAA;EAsOAiD;;;;EAAAA,SAjOAhD,qDAAAA;EA0O6B;;AAE1C;EAF0C,SAtO7BC,sBAAAA;;;;;WAKAC,6CAAAA;EAoOiB;;AAO9B;;;EAP8B,SA9NjBC,wDAAAA;EA+UR3B;;;EAAAA,SA3UQ4B,gCAAAA;EAqOTkD;;;EAAAA,SAjOSjD,eAAAA;EA2PTqD;;;EAAAA,SAvPSpD,6BAAAA;EA+TR/B;;;EAAAA,SA3TQgC,0CAAAA;EAgUoB;;AAoqDjC;;EApqDiC,SA3TpBC,qBAAAA,GAAwB1B,mBAAAA;EAg+DrBoV;;;EAAAA,SA59DHzT,iBAAAA;EA49DyC0T;;;;EAAAA,SAv9DzCzT,oBAAAA;EAu9DGwT;;;;EAAAA,SAl9DHvT,uBAAAA;EAk9D0C;;;;EAAA,SA78D1CC,qCAAAA;EC7fDoX;;;;EAAAA,SDkgBCnX,wCAAAA;EClgB+DsX;;;;EAAAA,SDugB/DrX,wCAAAA;ECvgBauX;;;EAAAA,SD2gBbtX,qCAAAA;EC3gByDwX;;;EAAAA,SD+gBzDvX,wCAAAA;EC/gBgG;AA0c7G;;EA1c6G,SDmhBhGC,wCAAAA;ECzE4BuU;;AAwFzC;;EAxFyCA,SD8E5BtU,2CAAAA;ECUWuY;;;;EAAAA,SDLXtY,8CAAAA;ECKkG;;;;EAAA,SDAlGC,8CAAAA;ECAkG;;AAgB/G;;EAhB+G,SDKlGC,wBAAAA;ECWuC;;;EAAA,SDPvCC,qBAAAA;EC+DTyY;;;AASJ;EATIA,SD1DSxY,gBAAAA;;;;ACiVb;WD5UaC,wBAAAA;;;;ACwVb;WDnVaC,0BAAAA;;;;;WAKAC,2BAAAA;ECsVkB8T;;;;EAAAA,SDjVlB7T,+BAAAA;EC6US8a;;;;EAAAA,SDxUT7a,gCAAAA;EC4UkB4T;;;;EAAAA,SDvUlB3T,6BAAAA;ECyUI+a;;;EAAAA,SDrUJ9a,qCAAAA;EC6UA+a;;;EAAAA,SDzUA9a,qCAAAA;ECqUTwW;;;;EAAAA,SDhUSvW,0CAAAA;EC6UT+a;;;;EAAAA,SDxUS9a,6CAAAA;ECkVD4Y;;;;EAAAA,SD7UC3Y,6CAAAA;ECsVmBgY;;;;EAAAA,SDjVnB/X,8CAAAA;ECiVb0W;;;;EAAAA,SD5UazW,0CAAAA;ECgVI+a;;;;EAAAA,SD3UJ9a,6CAAAA;ECkVOwY;;;;EAAAA,SD7UPvY,6CAAAA;EC6XqB;;;EAAA,SDzXrBC,mCAAAA;ECmYwDkZ;;;;EAAAA,SD9XxDjZ,+DAAAA;ECsY6C0V;;;EAAAA,SDlY7CzV,0CAAAA;EC8YJ2W;;;EAAAA,SD1YI1W,yCAAAA;EC4WuDya;;;;EAAAA,SDvWvDxa,oBAAAA;ECiXTya;;;EAAAA,SD7WSxa,iCAAAA;EC6WwD6Y;;;;EAAAA,SDxWxD5Y,oBAAAA;EC4WT6Z;;;;;EAAAA,SDtWS5Z,qCAAAA;EC0WkB0S;;;EAAAA,SDtWlBzS,6BAAAA;EC8WLoY;;;;EAAAA,SDzWKnY,oCAAAA;ECiXgB6X;;;EAAAA,SD7WhB5X,4BAAAA;;;;WAIAC,mBAAAA;EAAAA,UACCC,QAAAA,WAAmBrG,SAAAA;AAAAA;AAAAA,UAEhBgC,mBAAAA,SAA4BsE,IAAAA,CAAKvE,mBAAAA;EAAAA,UACpCsE,QAAAA;AAAAA;;;;;;UAOGE,MAAAA;;;;EAIbC,SAAAA;;;;;;;EAOAC,4BAAAA;EEvrBkC;;;;;;EF8rBlCC,iCAAAA;;;;;EAKAC,iBAAAA;;;;;;;EAOAC,4BAAAA;EEvqB0B;;;;;;EF8qB1BC,iCAAAA;;;;EAIAC,eAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAyDAC,yBAAAA;;;;GAICtF,SAAAA;;;;GAIAC,cAAAA;EAAAA,CACA2E,QAAAA,WAAmBrG,SAAAA;AAAAA;;;;KAoqDZmX,oBAAAA,oBACIC,CAAAA,IAAKC,CAAAA,0BAA2BA,CAAAA,GAAID,CAAAA,CAAEC,CAAAA;;;;;;;;;;;;;;;;;AJr+EtD;;;KK2BY6D,UAAAA,IAAcK,EAAAA,EAAIJ,cAAAA,EAAgBK,MAAAA,EAAQJ,cAAAA,EAAgBK,IAAAA,EAAMJ,eAAAA,EAAiBK,OAAAA,EAASJ,OAAAA;;;;;;;;;;AFpBtG;;;;;;;;ACIA;;;;;AAMA;;;;;AAIA;;;;;AAIA;;;;;;;;;;;;;AAqFA;;;;;AAiBA;;;;;AAiIA;;;;;AA8IA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA+TA;cCxOqBgB,WAAAA,SAAoB5D,aAAAA;AAAAA,KAwF7BgE,SAAAA,GAAYC,WAAAA,UAAqBC,cAAAA,YAA0BC,UAAAA,eAAyBxB,eAAAA;;;;;AAiFhG;;;UAjEiBD,cAAAA,SAAuB1C,MAAAA;EAiEyB;AA8QjE;;EA3UIsE,aAAAA;EAkVAwC;;AAKJ;;;;;;;;;;;;;;;;;;;;;;AAUA;;;;;;;;;;;;;;;;;;AA2BA;;;;;;;;;EAxUIvC,yBAAAA;AAAAA;;;;;AAqVJ;;;UA5UiB9B,cAAAA,SAAuBzC,mBAAAA;AAAAA,UA8QvB6G,qBAAAA;;;;;;;EAObC,YAAAA,CAAaC,MAAAA;AAAAA;;;;UAKAC,oBAAAA;;;;EAIbE,cAAAA,IAAkBD,QAAAA,CAASxE,cAAAA,IAAkBoE,qBAAAA;ECr3B/B;;;EDy3BdM,cAAAA,IAAkBF,QAAAA,CAASjH,oBAAAA,CAA2B0C,cAAAA;AAAAA;AAAAA,UAEzC0E,kBAAAA;;;;EAIbrE,IAAAA,EAAMiB,SAAAA;;;;EAINhB,OAAAA,EAASqE,MAAAA;;;;;EAKTN,MAAAA;;;;EAIAQ,QAAAA;;;;;EAKAC,MAAAA,GAASF,WAAAA;AAAAA;;;;KAKDjC,WAAAA;;;;;AAKZqC,GAAAA;;;;AAIArE,OAAAA,EAAS+D,kBAAAA,KAAuB1C,OAAAA,CAAQ+C,QAAAA;;;;UAIvBE,uBAAAA;;;;;;;GAOZ/D,WAAAA,IAAeyB,WAAAA;;;;;EAKhBM,OAAAA;AAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cA2CiBL,aAAAA,YAAyB0B,oBAAAA,EAAsBW,uBAAAA;;;;;;;;;;EAUhEC,WAAAA,CAAY1B,MAAAA,EAAQzD,cAAAA,EAAgB6D,QAAAA,UAAkBH,QAAAA,GAAWF,OAAAA,CAAQvD,cAAAA,YAA0B0D,oBAAAA,GAAuB5D,UAAAA;;;;EAI1H0E,cAAAA,CAAAA,GAAkBD,QAAAA,CAASxE,cAAAA,IAAkBoE,qBAAAA;;;;EAI7CM,cAAAA,CAAAA,GAAkBF,QAAAA,CAASjH,oBAAAA,CAA2B0C,cAAAA;;;;MAIlDiD,OAAAA,CAAAA;;;;MAIAA,OAAAA,CAAQkC,KAAAA;;;;OAIPjE,WAAAA,KAAgByB,WAAAA;ECj3BP;;;EAAA,KDq3BTzB,WAAAA,EAAaiE,KAAAA,EAAOxC,WAAAA;AAAAA;;;cCvhChB,kBAAA;EAAA,mBACQ,GAAA,EADU,cAAA,CACP,MAAA;EAAA,mBACH,MAAA,EAAM,MAAA;EAAA,mBACN,qBAAA,EAAqB,qBAAA;EAAA,mBACrB,gBAAA,EAAgB,gBAAA;EAAA,mBAChB,mBAAA,EAAmB,mBAAA;EAAA,IAE3B,UAAA,CAAA,GAAc,KAAA,CAAM,aAAA;EAAA,mBAMZ,iBAAA,EAAiB,sBAAA,CAAA,uBAAA,QAAA,OAAA;cANN,MAAA,CAAA,OAAA;;;;;;;WAoBd,MAAA,EAAM,sBAAA,CAAA,uBAAA,QAAA,OAAA;cAdc,MAAA,CAAA,OAAA;;;;;;;;;;qBAuBjB,SAAA,EATG,MAAA,CASM,aAAA;ENhEW;;;EAAA,mBM4EpB,SAAA,EAZS,MAAA,CAYA,aAAA;;;;WAqCZ,QAAA,iBAAQ,cAAA;;;YArCI,MAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;WA2EZ,OAAA,iBAAO,cAAA;;gBAtCC,MAAA,CAAA,OAAA;IAAA;;;;;;;;;;;;;;;;;;;;WA6ER,KAAA,iBAAK,cAAA;;gBAvCE,MAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;WAoHP,KAAA,iBAAK,cAAA;;gBA7EA,MAAA,CAAA,OAAA;;;;;;;;;WAuKL,QAAA,EAAQ,cAAA,CAAA,cAAA,CA1FH,cAAA,CA0FG,mBAAA;;;;WAmER,MAAA,iBAAM,cAAA;;iDAnEE,MAAA,CAAA,OAAA;IAAA;EAAA;EA2IjB,0BAAA,CACL,OAAA;IAAW,SAAA;EAAA,IACV,sBAAA;;;;;;YAwCO,QAAA,CACR,IAAA;IAAiB,QAAA;IAAkB,KAAA;EAAA,IAClC,aAAA;;;;;YA6Ba,eAAA,CACd,OAAA,EAAS,OAAA,GACR,OAAA,CAAQ,MAAA;EAAA,UA8BD,SAAA,CAAU,OAAA,GAAU,OAAA,GAAU,MAAA;EAAA,UAI9B,SAAA,CAAU,MAAA,EAAQ,MAAA,EAAQ,OAAA,GAAU,OAAA;EAAA,UAgBpC,kBAAA,CAAmB,MAAA,EAAQ,MAAA;EAAA,UAcrB,aAAA,CAAc,MAAA,EAAQ,MAAA,GAAS,OAAA,CAAQ,MAAA;AAAA;AAAA,UAqDxC,aAAA;EACf,GAAA;EACA,KAAA;EACA,IAAA;EACA,UAAA;EACA,WAAA;EACA,WAAA;EACA,QAAA;EACA,kBAAA;EACA,OAAA;EACA,OAAA;EACA,OAAA;EACA,cAAA;EACA,MAAA;EACA,SAAA;EACA,QAAA;EACA,MAAA;EACA,YAAA;EACA,qBAAA;EACA,OAAA;IACE,SAAA;IACA,cAAA;IACA,QAAA;IACA,MAAA;IACA,WAAA;IACA,OAAA;EAAA;EAEF,UAAA;EAAA,CAEC,GAAA;AAAA;;;;;;;;AP/sBH;;;;;;;;;;;;;;;ACEA;;;;;;;;;;;;;;cOyDa,KAAA;EAAA,UAAkB,oBAAA,GAAuB,aAAA;EAAA;;KAM1C,oBAAA;EPhDyB;;;;EOqDnC,IAAA;EN9DA;;;EMmEA,QAAA;AAAA,KACG,YAAA,GAAe,YAAA;;;;KAKR,YAAA;;;;EAIV,IAAA,EAAM,WAAA;;;;;;;;;;;;;;EAeN,QAAA,SAAiB,KAAA,CAAM,WAAA;AAAA;;;;;;;KASb,YAAA;EACV,MAAA,EAAQ,eAAA;AAAA;;;;;;;;EAUJ,WAAA,EAAa,kBAAA;AAAA;;;;;;;;EAUb,KAAA,EAAO,aAAA;AAAA;EN7HmB;;;;;;;;;EMyI1B,IAAA,EAAM,WAAA;AAAA;AAAA,KAIA,kBAAA;EACV,OAAA,EAAS,aAAA;AAAA;AAAA,KAGC,aAAA,IACV,WAAA,EAAa,WAAA,KACV,KAAA,CAAM,WAAA;AAAA,UAEM,WAAA;EACf,QAAA;EACA,QAAA;AAAA;AAAA,UAGe,WAAA;;;;EAIf,MAAA;;;;EAKA,QAAA;;;;;EAMA,YAAA;;;;;EAMA,WAAA;;;;;EAMA,UAAA;;;;EAKA,SAAA;;;;;EAMA,KAAA;EAEA,OAAA,GAAU,aAAA;AAAA;AAAA,UAGK,kBAAA;EACf,YAAA;EACA,IAAA,EAAM,aAAA;EACN,QAAA;EACA,UAAA;EACA,KAAA;AAAA;AAAA,KAGU,aAAA,IAAiB,MAAA,EAAQ,kBAAA,KAAuB,KAAA,CAAM,WAAA;AAAA,UAEjD,aAAA;;;;EAIf,QAAA;;;;EAKA,YAAA;;;;EAKA,aAAA;;;;EAKA,KAAA;;;;EAKA,QAAA,GAAW,MAAA,EAAQ,MAAA,KAAW,KAAA,CAAM,aAAA;EAEpC,OAAA,GAAU,aAAA;;ANpOZ;;EMyOE,WAAA;ENzO0B;;;EM8O1B,KAAA;AAAA;AAAA,cAKW,aAAA,SAAsB,SAAA,CAAU,oBAAA;EAAA,mBACxB,gBAAA,EAAgB,gBAAA;EAAA,mBAChB,gBAAA,EAAgB,gBAAA;EAAA,UAEzB,WAAA,GAAc,aAAA;EAAA,UACd,gBAAA,SAAyB,OAAA,CAAQ,aAAA;EAAA,IAEhC,KAAA,CAAA,GAAS,aAAA;;;;EAOP,QAAA,CAAA,GAAY,OAAA,CAAQ,aAAA;EAAA,IActB,IAAA,CAAA;EAAA,IAIA,MAAA,CAAA,GAAU,eAAA;EAAA,IAOV,QAAA,CAAA;EAAA,IAQA,KAAA,CAAA;EAAA,IAYA,YAAA,CAAA;;;;;EAgBE,OAAA,CACX,YAAA,UACA,WAAA,YACC,OAAA,CAAQ,mBAAA;ELxUY;;;;EKiXV,IAAA,CAAK,MAAA,EAAQ,MAAA,GAAS,OAAA,CAAQ,WAAA;EAAA,UAyCjC,kBAAA,CAAmB,OAAA,WAAkB,aAAA;EAYlC,OAAA,CAAA,GAAO,OAAA;AAAA;AAAA,KAsDV,WAAA;EAAyB,KAAA,QAAa,KAAA;AAAA;AAAA,UAEjC,UAAA;EACf,IAAA,IAAQ,IAAA,cAAkB,IAAA,EAAM,kBAAA,KAAuB,KAAA,CAAM,WAAA;AAAA;AAAA,UAG9C,WAAA;EACf,KAAA,IACE,QAAA,cACI,KAAA,EAAO,WAAA,KAAgB,KAAA,CAAM,WAAA;AAAA;;;;;;;;cC1dxB,gBAAA,GACX,KAAA,EAAO,eAAA,GAAkB,WAAA,EACzB,OAAA,GAAS,OAAA,CAAQ,kBAAA,MAAD,aAAA;;;;;;;;;;;;AThBlB;cUoBa,WAAA,GACX,KAAA,EAAO,eAAA,GAAkB,UAAA,EACzB,OAAA,GAAS,OAAA,CAAQ,WAAA,MAAD,aAAA;;;;;;;;;;;;AVtBlB;cWmBa,WAAA,GACX,KAAA,EAAO,eAAA,GAAkB,UAAA,EACzB,OAAA,GAAS,OAAA,CAAQ,WAAA,MAAD,aAAA;;;;;;;;AXrBlB;;;;;;;;;cY8Ba,gBAAA,EAAgB,MAAA,CAAA,OAAA,CAI3B,MAAA,CAJ2B,MAAA"}
1
+ {"version":3,"file":"index.d.ts","names":["CryptoKey","crypto","subtle","generateKey","ReturnType","Awaited","Extract","type","CryptoKeyPair","privateKey","publicKey","JsonObject","JsonValue","Key","JsonArray","JsonPrimitive","ModifyAssertionFunction","Record","header","payload","PrivateKey","key","kid","JWSAlgorithm","JWK","kty","alg","use","key_ops","e","n","crv","x","y","pub","parameter","allowInsecureRequests","clockSkew","clockTolerance","customFetch","modifyAssertion","jweDecrypt","jwksCache","AuthorizationServer","MTLSEndpointAliases","issuer","authorization_endpoint","token_endpoint","jwks_uri","registration_endpoint","scopes_supported","response_types_supported","response_modes_supported","grant_types_supported","token_endpoint_auth_methods_supported","token_endpoint_auth_signing_alg_values_supported","service_documentation","ui_locales_supported","op_policy_uri","op_tos_uri","revocation_endpoint","revocation_endpoint_auth_methods_supported","revocation_endpoint_auth_signing_alg_values_supported","introspection_endpoint","introspection_endpoint_auth_methods_supported","introspection_endpoint_auth_signing_alg_values_supported","code_challenge_methods_supported","signed_metadata","device_authorization_endpoint","tls_client_certificate_bound_access_tokens","mtls_endpoint_aliases","userinfo_endpoint","acr_values_supported","subject_types_supported","id_token_signing_alg_values_supported","id_token_encryption_alg_values_supported","id_token_encryption_enc_values_supported","userinfo_signing_alg_values_supported","userinfo_encryption_alg_values_supported","userinfo_encryption_enc_values_supported","request_object_signing_alg_values_supported","request_object_encryption_alg_values_supported","request_object_encryption_enc_values_supported","display_values_supported","claim_types_supported","claims_supported","claims_locales_supported","claims_parameter_supported","request_parameter_supported","request_uri_parameter_supported","require_request_uri_registration","require_signed_request_object","pushed_authorization_request_endpoint","require_pushed_authorization_requests","introspection_signing_alg_values_supported","introspection_encryption_alg_values_supported","introspection_encryption_enc_values_supported","authorization_response_iss_parameter_supported","authorization_signing_alg_values_supported","authorization_encryption_alg_values_supported","authorization_encryption_enc_values_supported","backchannel_authentication_endpoint","backchannel_authentication_request_signing_alg_values_supported","backchannel_token_delivery_modes_supported","backchannel_user_code_parameter_supported","check_session_iframe","dpop_signing_alg_values_supported","end_session_endpoint","frontchannel_logout_session_supported","frontchannel_logout_supported","backchannel_logout_session_supported","backchannel_logout_supported","protected_resources","metadata","Pick","Client","client_id","id_token_signed_response_alg","authorization_signed_response_alg","require_auth_time","userinfo_signed_response_alg","introspection_signed_response_alg","default_max_age","use_mtls_endpoint_aliases","UnsupportedOperationError","Error","code","constructor","message","cause","options","OperationProcessingError","JWKSCacheOptions","JWKSCacheInput","CustomFetchOptions","Method","BodyType","AbortSignal","body","headers","method","redirect","signal","HttpRequestOptions","Headers","Response","Promise","url","DiscoveryRequestOptions","algorithm","discoveryRequest","URL","issuerIdentifier","processDiscoveryResponse","expectedIssuerIdentifier","response","generateRandomCodeVerifier","generateRandomState","generateRandomNonce","calculatePKCECodeChallenge","codeVerifier","DPoPRequestOptions","DPoPHandle","DPoP","PushedAuthorizationRequestOptions","URLSearchParams","ClientAuth","as","client","ClientSecretPost","clientSecret","ClientSecretBasic","ModifyAssertionOptions","PrivateKeyJwt","clientPrivateKey","ClientSecretJwt","None","TlsClientAuth","issueRequestObject","parameters","checkProtocol","enforceHttps","pushedAuthorizationRequest","clientAuthentication","calculateThumbprint","isDPoPNonceError","err","keyPair","PushedAuthorizationResponse","request_uri","expires_in","OAuth2Error","error","error_description","error_uri","algs","scope","ResponseBodyError","RESPONSE_BODY_ERROR","status","AuthorizationResponseError","AUTHORIZATION_RESPONSE_ERROR","WWWAuthenticateChallengeError","WWWAuthenticateChallenge","WWW_AUTHENTICATE_CHALLENGE","WWWAuthenticateChallengeParameters","Lowercase","realm","resource_metadata","scheme","token68","processPushedAuthorizationResponse","ProtectedResourceRequestBody","ArrayBuffer","ReadableStream","Uint8Array","ProtectedResourceRequestOptions","Omit","protectedResourceRequest","accessToken","UserInfoRequestOptions","userInfoRequest","UserInfoAddress","formatted","street_address","locality","region","postal_code","country","claim","UserInfoResponse","sub","name","given_name","family_name","middle_name","nickname","preferred_username","profile","picture","website","email","email_verified","gender","birthdate","zoneinfo","locale","phone_number","updated_at","address","ExportedJWKSCache","JWKS","jwks","uat","skipSubjectCheck","JWEDecryptOptions","JweDecryptFunction","RecognizedTokenTypes","TokenEndpointResponse","res","ProcessTokenResponseOptions","recognizedTokenTypes","processUserInfoResponse","expectedSubject","TokenEndpointRequestOptions","additionalParameters","refreshTokenGrantRequest","refreshToken","getValidatedIdTokenClaims","IDToken","ref","ValidateSignatureOptions","validateApplicationLevelSignature","processRefreshTokenResponse","nopkce","authorizationCodeGrantRequest","callbackParameters","redirectUri","JWTPayload","ConfirmationClaims","iss","aud","jti","nbf","exp","iat","cnf","nonce","auth_time","azp","AuthorizationDetails","locations","actions","datatypes","privileges","identifier","access_token","id_token","refresh_token","authorization_details","token_type","expectNoNonce","skipAuthTimeCheck","ProcessAuthorizationCodeResponseOptions","expectedNonce","maxAge","requireIdToken","processAuthorizationCodeResponse","UNSUPPORTED_OPERATION","JWT_USERINFO_EXPECTED","PARSE_ERROR","INVALID_RESPONSE","INVALID_REQUEST","RESPONSE_IS_NOT_JSON","RESPONSE_IS_NOT_CONFORM","HTTP_REQUEST_FORBIDDEN","REQUEST_PROTOCOL_FORBIDDEN","JWT_TIMESTAMP_CHECK","JWT_CLAIM_COMPARISON","JSON_ATTRIBUTE_COMPARISON","KEY_SELECTION","MISSING_SERVER_METADATA","INVALID_SERVER_METADATA","ClientCredentialsGrantRequestOptions","clientCredentialsGrantRequest","genericTokenEndpointRequest","grantType","processGenericTokenEndpointResponse","processClientCredentialsResponse","RevocationRequestOptions","revocationRequest","token","processRevocationResponse","IntrospectionRequestOptions","requestJwtResponse","introspectionRequest","jkt","IntrospectionResponse","active","sid","username","processIntrospectionResponse","keys","jwe","validateJwtAuthResponse","expectNoState","skipStateCheck","expectedState","validateDetachedSignatureResponse","Request","validateCodeIdTokenResponse","validateAuthResponse","DeviceAuthorizationRequestOptions","deviceAuthorizationRequest","DeviceAuthorizationResponse","device_code","user_code","verification_uri","verification_uri_complete","interval","processDeviceAuthorizationResponse","deviceCodeGrantRequest","deviceCode","processDeviceCodeResponse","GenerateKeyPairOptions","extractable","modulusLength","generateKeyPair","JWTAccessTokenClaims","ValidateJWTAccessTokenOptions","requireDPoP","signingAlgorithms","validateJwtAccessToken","request","expectedAudience","BackchannelAuthenticationRequestOptions","backchannelAuthenticationRequest","BackchannelAuthenticationResponse","auth_req_id","processBackchannelAuthenticationResponse","backchannelAuthenticationGrantRequest","authReqId","processBackchannelAuthenticationGrantResponse","OmitSymbolProperties","T","K","DynamicClientRegistrationRequestOptions","initialAccessToken","dynamicClientRegistrationRequest","Partial","processDynamicClientRegistrationResponse","ResourceServer","resource","authorization_servers","bearer_methods_supported","resource_signing_alg_values_supported","resource_name","resource_documentation","resource_policy_uri","resource_tos_uri","authorization_details_types_supported","dpop_bound_access_tokens_required","resourceDiscoveryRequest","resourceIdentifier","processResourceDiscoveryResponse","expectedResourceIdentifier","oauth","CryptoKey","crypto","subtle","generateKey","ReturnType","Awaited","Extract","type","CryptoKeyPair","privateKey","publicKey","AuthorizationResponseError","ResponseBodyError","WWWAuthenticateChallengeError","AuthorizationDetails","BackchannelAuthenticationResponse","ConfirmationClaims","DeviceAuthorizationResponse","OmitSymbolProperties","ExportedJWKSCache","GenerateKeyPairOptions","IDToken","IntrospectionResponse","JsonArray","JsonObject","JsonPrimitive","JsonValue","JWK","JWKS","JWSAlgorithm","ModifyAssertionFunction","ModifyAssertionOptions","MTLSEndpointAliases","PrivateKey","TokenEndpointResponse","UserInfoAddress","UserInfoResponse","WWWAuthenticateChallenge","WWWAuthenticateChallengeParameters","ClientAuth","ServerMetadata","ClientMetadata","URLSearchParams","Headers","as","client","body","headers","ClientSecretPost","clientSecret","ClientSecretBasic","ClientSecretJwt","options","None","PrivateKeyJwt","clientPrivateKey","TlsClientAuth","skipStateCheck","skipSubjectCheck","customFetch","modifyAssertion","clockSkew","clockTolerance","FetchBody","ArrayBuffer","ReadableStream","Uint8Array","DPoPHandle","Client","client_secret","use_mtls_endpoint_aliases","AuthorizationServer","calculatePKCECodeChallenge","Promise","codeVerifier","randomPKCECodeVerifier","randomNonce","randomState","ClientError","Error","code","randomDPoPKeyPair","alg","DiscoveryRequestOptions","CustomFetch","Configuration","Array","algorithm","execute","config","timeout","DynamicClientRegistrationRequestOptions","DPoPOptions","initialAccessToken","dynamicClientRegistration","URL","Partial","server","metadata","clientAuthentication","discovery","clientId","DecryptionKey","key","kid","enableDecryptingResponses","contentEncryptionAlgorithms","keys","ServerMetadataHelpers","supportsPKCE","method","ConfigurationMethods","Readonly","serverMetadata","clientMetadata","CustomFetchOptions","Record","AbortSignal","redirect","signal","Response","url","ConfigurationProperties","constructor","value","TokenEndpointResponseHelpers","claims","expiresIn","getDPoPHandle","keyPair","DeviceAuthorizationGrantPollOptions","pollDeviceAuthorizationGrant","deviceAuthorizationResponse","parameters","initiateDeviceAuthorization","initiateBackchannelAuthentication","BackchannelAuthenticationGrantPollOptions","pollBackchannelAuthenticationGrant","backchannelAuthenticationResponse","AuthorizationCodeGrantOptions","allowInsecureRequests","setJwksCache","jwksCache","getJwksCache","enableNonRepudiationChecks","useJwtResponseMode","enableDetachedSignatureResponseChecks","ImplicitAuthenticationResponseChecks","AuthorizationCodeGrantChecks","Pick","implicitAuthentication","Request","currentUrl","expectedNonce","checks","useCodeIdTokenResponseType","useIdTokenResponseType","expectedState","idTokenExpected","maxAge","pkceCodeVerifier","authorizationCodeGrant","tokenEndpointParameters","refreshTokenGrant","refreshToken","clientCredentialsGrant","buildAuthorizationUrl","buildAuthorizationUrlWithJAR","signingKey","buildAuthorizationUrlWithPAR","buildEndSessionUrl","fetchUserInfo","accessToken","expectedSubject","tokenIntrospection","token","DPoP","genericGrantRequest","grantType","tokenRevocation","fetchProtectedResource","DeviceAutorizationGrantPollOptions"],"sources":["../../../src/server/auth/constants/routes.ts","../../../src/server/auth/schemas/authenticationProviderSchema.ts","../../../src/server/auth/schemas/tokenResponseSchema.ts","../../../src/server/auth/schemas/tokensSchema.ts","../../../src/server/auth/schemas/userinfoResponseSchema.ts","../../../../../node_modules/oauth4webapi/build/index.d.ts","../../../../../node_modules/openid-client/build/index.d.ts","../../../src/server/auth/providers/ServerAuthProvider.ts","../../../src/server/auth/primitives/$auth.ts","../../../src/server/auth/primitives/$authCredentials.ts","../../../src/server/auth/primitives/$authGithub.ts","../../../src/server/auth/primitives/$authGoogle.ts","../../../src/server/auth/index.ts"],"x_google_ignoreList":[5,6],"mappings":";;;;;;;;;;;cAAa,sBAAA;;;;;;;;;;cCEA,4BAAA,WAA4B,OAAA;QAYxC,QAAA,CAAA,OAAA;;;KAEW,sBAAA,GAAyB,MAAA,QAC5B,4BAAA;;;cCZI,mBAAA,WAAmB,OAAA;YAG9B,QAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;KAEU,aAAA,GAAgB,MAAA,QAAc,mBAAA;;;cCP7B,YAAA,WAAY,OAAA;YAevB,QAAA,CAAA,OAAA;;;;;;;;;;KAEU,MAAA,GAAS,MAAA,QAAc,YAAA;;;cChBtB,sBAAA,WAAsB,OAAA;;QAGjC,QAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;KAEU,gBAAA,GAAmB,MAAA,QAAc,sBAAA;;;;AJT7C;;KKaYW,UAAAA,uBACUC,SAAAA;;;;KAKVE,SAAAA,GAAYF,SAAAA;;;;KAIZG,aAAAA;;;AJrBZ;KIyBYH,SAAAA,GAAYG,aAAAA,GAAgBJ,UAAAA,GAAaG,SAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAqFhCuB,SAAAA;;;;;;;;;;;;;;;;;cAiBAC,cAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AHvHrB;;;;;;;;ACPA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiBA;;;;;;;;AChBA;;;;;;cC8PqBC,aAAAA;;;AAjIrB;;;;;UA+QiBI,mBAAAA;EA9I8B;;;EAAA,SAkJlCE,MAAAA;EAJIF;;;EAAAA,SAQJG,sBAAAA;EAJAD;;;EAAAA,SAQAE,cAAAA;EAQAE;;;EAAAA,SAJAD,QAAAA;EAuBAK;;;EAAAA,SAnBAJ,qBAAAA;EAsCAQ;;;EAAAA,SAlCAP,gBAAAA;EAsDAW;;;;EAAAA,SAjDAV,wBAAAA;EAyEAe;;;;EAAAA,SApEAd,wBAAAA;EAqFwBR;;;;EAAAA,SAhFxBS,qBAAAA;EAwGAsB;;;EAAAA,SApGArB,qCAAAA;EAqHAyB;;;;EAAAA,SAhHAxB,gDAAAA;EAwIA6B;;;;EAAAA,SAnIA5B,qBAAAA;EA4JAiC;;;;EAAAA,SAvJAhC,oBAAAA;EA8KAqC;;;;;EAAAA,SAxKApC,aAAAA;EAsMA0C;;;;EAAAA,SAjMAzC,UAAAA;EAuNA8C;;;EAAAA,SAnNA7C,mBAAAA;EAsOAiD;;;;EAAAA,SAjOAhD,0CAAAA;EA+OoBjD;;;AAEjC;EAFiCA,SA1OpBkD,qDAAAA;;;;WAIAC,sBAAAA;EAyOCkD;;;AAOd;EAPcA,SApODjD,6CAAAA;;;;;;WAMAC,wDAAAA;EAyOTmD;;;EAAAA,SArOSlD,gCAAAA;EA+PTsD;;;EAAAA,SA3PSrD,eAAAA;EAmUR9B;;;EAAAA,SA/TQ+B,6BAAAA;EAoUoB;;AAoqDjC;EApqDiC,SAhUpBC,0CAAAA;EAo+DmB2T;;;;EAAAA,SA/9DnB1T,qBAAAA,GAAwB1B,mBAAAA;EAg+DiBqV;;;EAAAA,SA59DzC1T,iBAAAA;EA49DR0T;;;;EAAAA,SAv9DQzT,oBAAAA;EAu9DyCyT;;;;EAAAA,SAl9DzCxT,uBAAAA;;ACxfb;;;WD6faC,qCAAAA;EC7fyCsX;;;;EAAAA,SDkgBzCrX,wCAAAA;EClgBiBoX;;;;EAAAA,SDugBjBnX,wCAAAA;ECvgByDyX;;;EAAAA,SD2gBzDxX,qCAAAA;EC3gBgG;AA0c7G;;EA1c6G,SD+gBhGC,wCAAAA;ECrE4BwU;;AAwFzC;EAxFyCA,SDyE5BvU,wCAAAA;;;;;WAKAC,2CAAAA;ECUkG;;;;EAAA,SDLlGC,8CAAAA;ECKmFgX;;;AAgBhG;EAhBgGA,SDAnF/W,8CAAAA;;;;;WAKAC,wBAAAA;ECmET0Y;;;EAAAA,SD/DSzY,qBAAAA;ECwEkB;;;;EAAA,SDnElBC,gBAAAA;ECiVyB;;;;EAAA,SD5UzBC,wBAAAA;ECwVwB;;;;EAAA,SDnVxBC,0BAAAA;EC2V6CyW;;;;EAAAA,SDtV7CxW,2BAAAA;ECkVTgb;;;;EAAAA,SD7US/a,+BAAAA;ECiVS8a;;;;EAAAA,SD5UT7a,gCAAAA;EC4U2D;AAExE;;;EAFwE,SDvU3DC,6BAAAA;ECiVAgb;;;EAAAA,SD7UA/a,qCAAAA;ECyUTyW;;;EAAAA,SDrUSxW,qCAAAA;EC8UTwa;;;;EAAAA,SDzUSva,0CAAAA;ECkVW;AAKxB;;;EALwB,SD7UXC,6CAAAA;EC2V2Bgb;;;;EAAAA,SDtV3B/a,6CAAAA;ECsVJ0a;;;;EAAAA,SDjVIza,8CAAAA;ECiVmC;AAIhD;;;EAJgD,SD5UnCC,0CAAAA;ECuVRgX;;;;EAAAA,SDlVQ/W,6CAAAA;ECkYQyY;;;;EAAAA,SD7XRxY,6CAAAA;ECuYwDmZ;;;EAAAA,SDnYxDlZ,mCAAAA;ECuYoC8Z;;;;EAAAA,SDlYpC7Z,+DAAAA;ECkZJ4W;;;EAAAA,SD9YI3W,0CAAAA;ECgXuD0a;;;EAAAA,SD5WvDza,yCAAAA;EC4WuDya;;;;EAAAA,SDvWvDxa,oBAAAA;ECiXwD8Y;;;EAAAA,SD7WxD7Y,iCAAAA;EC6W0FgZ;;;;EAAAA,SDxW1F/Y,oBAAAA;ECgXT8Z;;;;;EAAAA,SD1WS7Z,qCAAAA;ECkXLqY;;;EAAAA,SD9WKpY,6BAAAA;ECsXJqW;;;;EAAAA,SDjXIpW,oCAAAA;;;;WAIAC,4BAAAA;EE1qBkB;;;EAAA,SF8qBlBC,mBAAAA;EAAAA,UACCC,QAAAA,WAAmBrG,SAAAA;AAAAA;AAAAA,UAEhBgC,mBAAAA,SAA4BsE,IAAAA,CAAKvE,mBAAAA;EAAAA,UACpCsE,QAAAA;AAAAA;;;;;;UAOGE,MAAAA;;;;EAIbC,SAAAA;;;;;;;EAOAC,4BAAAA;;;;;;;EAOAC,iCAAAA;;;;;EAKAC,iBAAAA;;;;;;;EAOAC,4BAAAA;;;;;;;EAOAC,iCAAAA;;;;EAIAC,eAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAyDAC,yBAAAA;;;;GAICtF,SAAAA;;;;GAIAC,cAAAA;EAAAA,CACA2E,QAAAA,WAAmBrG,SAAAA;AAAAA;;;;KAoqDZmX,oBAAAA,oBACIC,CAAAA,IAAKC,CAAAA,0BAA2BA,CAAAA,GAAID,CAAAA,CAAEC,CAAAA;;;;;;;;;;;;;;;;;AJr+EtD;;;KK2BY6D,UAAAA,IAAcK,EAAAA,EAAIJ,cAAAA,EAAgBK,MAAAA,EAAQJ,cAAAA,EAAgBK,IAAAA,EAAMJ,eAAAA,EAAiBK,OAAAA,EAASJ,OAAAA;;;;;;AFpBtG;;;;;;;;ACIA;;;;;AAMA;;;;;AAIA;;;;;AAIA;;;;;;;;;;;;;AAqFA;;;;;AAiBA;;;;;AAiIA;;;;;AA8IA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA+TA;;;;;cCxOqBgB,WAAAA,SAAoB5D,aAAAA;AAAAA,KAwF7BgE,SAAAA,GAAYC,WAAAA,UAAqBC,cAAAA,YAA0BC,UAAAA,eAAyBxB,eAAAA;AAiFhG;;;;;AA8QA;;AA9QA,UAjEiBD,cAAAA,SAAuB1C,MAAAA;EAsVpC8G;;AAKJ;EAvVIxC,aAAAA;;;;;;;;;;;;;;;;;;;;;AAiWJ;;;;;;;;;;;;;;;;;;AA2BA;;;;;;;;;;;;;EAxUIC,yBAAAA;AAAAA;AAqVJ;;;;;;;AAAA,UA5UiB9B,cAAAA,SAAuBzC,mBAAAA;AAAAA,UA8QvB6G,qBAAAA;;;;;;;EAObC,YAAAA,CAAaC,MAAAA;AAAAA;;;;UAKAC,oBAAAA;;;;EAIbE,cAAAA,IAAkBD,QAAAA,CAASxE,cAAAA,IAAkBoE,qBAAAA;ECp3BzB;;;EDw3BpBM,cAAAA,IAAkBF,QAAAA,CAASjH,oBAAAA,CAA2B0C,cAAAA;AAAAA;AAAAA,UAEzC0E,kBAAAA;;;;EAIbrE,IAAAA,EAAMiB,SAAAA;;;;EAINhB,OAAAA,EAASqE,MAAAA;;;;;EAKTN,MAAAA;;;;EAIAQ,QAAAA;;;;;EAKAC,MAAAA,GAASF,WAAAA;AAAAA;;;;KAKDjC,WAAAA;;;;;AAKZqC,GAAAA;;;;AAIArE,OAAAA,EAAS+D,kBAAAA,KAAuB1C,OAAAA,CAAQ+C,QAAAA;;;;UAIvBE,uBAAAA;;;;;;;GAOZ/D,WAAAA,IAAeyB,WAAAA;;;;;EAKhBM,OAAAA;AAAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cA2CiBL,aAAAA,YAAyB0B,oBAAAA,EAAsBW,uBAAAA;;;;;;;;;;EAUhEC,WAAAA,CAAY1B,MAAAA,EAAQzD,cAAAA,EAAgB6D,QAAAA,UAAkBH,QAAAA,GAAWF,OAAAA,CAAQvD,cAAAA,YAA0B0D,oBAAAA,GAAuB5D,UAAAA;;;;EAI1H0E,cAAAA,CAAAA,GAAkBD,QAAAA,CAASxE,cAAAA,IAAkBoE,qBAAAA;;;;EAI7CM,cAAAA,CAAAA,GAAkBF,QAAAA,CAASjH,oBAAAA,CAA2B0C,cAAAA;;;;MAIlDiD,OAAAA,CAAAA;;;;MAIAA,OAAAA,CAAQkC,KAAAA;;;;OAIPjE,WAAAA,KAAgByB,WAAAA;;;;OAIhBzB,WAAAA,EAAaiE,KAAAA,EAAOxC,WAAAA;AAAAA;;;cCvhChB,kBAAA;EAAA,mBACQ,GAAA,EADU,gBAAA,CACP,MAAA;EAAA,mBACH,MAAA,EAAM,MAAA;EAAA,mBACN,qBAAA,EAAqB,qBAAA;EAAA,mBACrB,gBAAA,EAAgB,gBAAA;EAAA,mBAChB,mBAAA,EAAmB,mBAAA;EAAA,IAE3B,UAAA,CAAA,GAAc,KAAA,CAAM,aAAA;EAAA,mBAMZ,iBAAA,EAAiB,wBAAA,CAAA,uBAAA,UAAA,OAAA;cANN,QAAA,CAAA,OAAA;;;;;;;;WAqBd,MAAA,EAAM,wBAAA,CAAA,uBAAA,UAAA,OAAA;cAfc,QAAA,CAAA,OAAA;;;;;;;;;;qBAwBjB,SAAA,EATG,QAAA,CASM,aAAA;;;;qBAYT,SAAA,EAZS,QAAA,CAYA,aAAA;;;AN/D9B;WMoGkB,QAAA,mBAAQ,cAAA;;;YArCI,QAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;WA2EZ,OAAA,mBAAO,cAAA;;gBAtCC,QAAA,CAAA,OAAA;IAAA;;;;;;;;;;;;;;;;;;;;WA6ER,KAAA,mBAAK,cAAA;;gBAvCE,QAAA,CAAA,OAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;WAoHP,KAAA,mBAAK,cAAA;;gBA7EA,QAAA,CAAA,OAAA;;;;;;;;;WA6KL,QAAA,EAAQ,gBAAA,CAAA,cAAA,CAhGH,gBAAA,CAgGG,mBAAA;;;;WAkFR,MAAA,mBAAM,cAAA;;mDAlFE,QAAA,CAAA,OAAA;IAAA;EAAA;EA0JjB,0BAAA,CACL,OAAA;IAAW,SAAA;EAAA,IACV,sBAAA;;;;;;YAwCO,QAAA,CACR,IAAA;IAAiB,QAAA;IAAkB,KAAA;EAAA,IAClC,aAAA;;;;;YA6Ba,eAAA,CACd,OAAA,EAAS,OAAA,GACR,OAAA,CAAQ,MAAA;EAAA,UA8BD,SAAA,CAAU,OAAA,GAAU,OAAA,GAAU,MAAA;EAAA,UAI9B,SAAA,CAAU,MAAA,EAAQ,MAAA,EAAQ,OAAA,GAAU,OAAA;EAAA,UAgBpC,kBAAA,CAAmB,MAAA,EAAQ,MAAA;EAAA,UAcrB,aAAA,CAAc,MAAA,EAAQ,MAAA,GAAS,OAAA,CAAQ,MAAA;AAAA;AAAA,UAqDxC,aAAA;EACf,GAAA;EACA,KAAA;EACA,IAAA;EACA,UAAA;EACA,WAAA;EACA,WAAA;EACA,QAAA;EACA,kBAAA;EACA,OAAA;EACA,OAAA;EACA,OAAA;EACA,cAAA;EACA,MAAA;EACA,SAAA;EACA,QAAA;EACA,MAAA;EACA,YAAA;EACA,qBAAA;EACA,OAAA;IACE,SAAA;IACA,cAAA;IACA,QAAA;IACA,MAAA;IACA,WAAA;IACA,OAAA;EAAA;EAEF,UAAA;EAAA,CAEC,GAAA;AAAA;;;;;;;;APruBH;;;;;;;;;;;;;;;ACEA;;;;;;;;;;;;;;cOyDa,KAAA;EAAA,UAAkB,oBAAA,GAAuB,aAAA;EAAA;;KAM1C,oBAAA;EPhDyB;;;;EOqDnC,IAAA;EN9DA;;;EMmEA,QAAA;AAAA,KACG,YAAA,GAAe,YAAA;;;;KAKR,YAAA;;;;EAIV,IAAA,EAAM,WAAA;;;;;;;;;;;;;;EAeN,QAAA,SAAiB,KAAA,CAAM,WAAA;AAAA;;;;;;;KASb,YAAA;EACV,MAAA,EAAQ,eAAA;AAAA;;;;;;;;EAUJ,WAAA,EAAa,kBAAA;AAAA;;;;;;;;EAUb,KAAA,EAAO,aAAA;AAAA;EN7HmB;;;;;;;;;EMyI1B,IAAA,EAAM,WAAA;AAAA;AAAA,KAIA,kBAAA;EACV,OAAA,EAAS,aAAA;AAAA;AAAA,KAGC,aAAA,IACV,WAAA,EAAa,WAAA,KACV,KAAA,CAAM,WAAA;AAAA,UAEM,WAAA;EACf,QAAA;EACA,QAAA;AAAA;AAAA,UAGe,WAAA;;;;EAIf,MAAA;;;;EAKA,QAAA;;;;;EAMA,YAAA;;;;;EAMA,WAAA;;;;;EAMA,UAAA;;;;EAKA,SAAA;;;;;EAMA,KAAA;EAEA,OAAA,GAAU,aAAA;AAAA;AAAA,UAGK,kBAAA;EACf,YAAA;EACA,IAAA,EAAM,aAAA;EACN,QAAA;EACA,UAAA;EACA,KAAA;AAAA;AAAA,KAGU,aAAA,IAAiB,MAAA,EAAQ,kBAAA,KAAuB,KAAA,CAAM,WAAA;AAAA,UAEjD,aAAA;;;;EAIf,QAAA;;;;EAKA,YAAA;;;;EAKA,aAAA;;;;EAKA,KAAA;;;;EAKA,QAAA,GAAW,MAAA,EAAQ,MAAA,KAAW,KAAA,CAAM,aAAA;EAEpC,OAAA,GAAU,aAAA;ENpOa;;;EMyOvB,WAAA;;;;EAKA,KAAA;AAAA;AAAA,cAKW,aAAA,SAAsB,SAAA,CAAU,oBAAA;EAAA,mBACxB,gBAAA,EAAgB,gBAAA;EAAA,mBAChB,gBAAA,EAAgB,gBAAA;EAAA,UAEzB,WAAA,GAAc,aAAA;EAAA,UACd,gBAAA,SAAyB,OAAA,CAAQ,aAAA;EAAA,IAEhC,KAAA,CAAA,GAAS,aAAA;;;;EAOP,QAAA,CAAA,GAAY,OAAA,CAAQ,aAAA;EAAA,IActB,IAAA,CAAA;EAAA,IAIA,MAAA,CAAA,GAAU,eAAA;EAAA,IAOV,QAAA,CAAA;EAAA,IAQA,KAAA,CAAA;EAAA,IAYA,YAAA,CAAA;;;;;EAgBE,OAAA,CACX,YAAA,UACA,WAAA,YACC,OAAA,CAAQ,mBAAA;;;;;EAyCE,IAAA,CAAK,MAAA,EAAQ,MAAA,GAAS,OAAA,CAAQ,WAAA;EAAA,UAyCjC,kBAAA,CAAmB,OAAA,WAAkB,aAAA;EAYlC,OAAA,CAAA,GAAO,OAAA;AAAA;AAAA,KAsDV,WAAA;EAAyB,KAAA,QAAa,KAAA;AAAA;AAAA,UAEjC,UAAA;EACf,IAAA,IAAQ,IAAA,cAAkB,IAAA,EAAM,kBAAA,KAAuB,KAAA,CAAM,WAAA;AAAA;AAAA,UAG9C,WAAA;EACf,KAAA,IACE,QAAA,cACI,KAAA,EAAO,WAAA,KAAgB,KAAA,CAAM,WAAA;AAAA;;;;;;;;cC1dxB,gBAAA,GACX,KAAA,EAAO,eAAA,GAAkB,WAAA,EACzB,OAAA,GAAS,OAAA,CAAQ,kBAAA,MAAD,aAAA;;;;;;;;;;;;AThBlB;cUoBa,WAAA,GACX,KAAA,EAAO,eAAA,GAAkB,UAAA,EACzB,OAAA,GAAS,OAAA,CAAQ,WAAA,MAAD,aAAA;;;;;;;;;;;;AVtBlB;cWmBa,WAAA,GACX,KAAA,EAAO,eAAA,GAAkB,UAAA,EACzB,OAAA,GAAS,OAAA,CAAQ,WAAA,MAAD,aAAA;;;;;;;;AXrBlB;;;;;;;;;cY8Ba,gBAAA,EAAgB,QAAA,CAAA,OAAA,CAI3B,QAAA,CAJ2B,MAAA"}
package/dist/server/auth/index.js CHANGED
@@ -1438,6 +1438,7 @@ var ServerAuthProvider = class {
1438
1438
  realm: t.optional(t.text()),
1439
1439
  codeVerifier: t.optional(t.text({ size: "long" })),
1440
1440
  redirectUri: t.optional(t.text({ size: "long" })),
1441
+ loginUri: t.optional(t.text({ size: "long" })),
1441
1442
  state: t.optional(t.text()),
1442
1443
  nonce: t.optional(t.text())
1443
1444
  })
@@ -1598,7 +1599,8 @@ var ServerAuthProvider = class {
1598
1599
  realm: t.optional(t.text({ description: "Realm name for multi-realm setups" })),
1599
1600
  redirect_uri: t.optional(t.text({ size: "rich" }))
1600
1601
  }) },
1601
- handler: async ({ query, url, reply }) => {
1602
+ handler: async ({ query, url, reply, headers }) => {
1603
+ const loginUri = headers.referer ? new URL(headers.referer).pathname + new URL(headers.referer).search : void 0;
1602
1604
  const provider = this.provider({
1603
1605
  provider: query.provider,
1604
1606
  realm: query.realm
@@ -1621,6 +1623,7 @@ var ServerAuthProvider = class {
1621
1623
  state,
1622
1624
  nonce: parameters.nonce,
1623
1625
  redirectUri: query.redirect_uri ?? "/",
1626
+ loginUri,
1624
1627
  provider: query.provider,
1625
1628
  realm: query.realm
1626
1629
  });
@@ -1638,6 +1641,7 @@ var ServerAuthProvider = class {
1638
1641
  this.authorizationCode.set({
1639
1642
  codeVerifier,
1640
1643
  redirectUri: query.redirect_uri ?? "/",
1644
+ loginUri,
1641
1645
  provider: query.provider,
1642
1646
  realm: query.realm
1643
1647
  });
@@ -1657,6 +1661,7 @@ var ServerAuthProvider = class {
1657
1661
  const oauth = await provider.getOAuth();
1658
1662
  if (!oauth) throw new SecurityError(`Auth provider '${provider.name}' does not support OAuth2`);
1659
1663
  const redirectUri = authorizationCode.redirectUri ?? "/";
1664
+ const loginUri = authorizationCode.loginUri;
1660
1665
  const externalTokens = await authorizationCodeGrant(oauth, url, {
1661
1666
  pkceCodeVerifier: authorizationCode.codeVerifier,
1662
1667
  expectedState: authorizationCode.state,
@@ -1676,7 +1681,16 @@ var ServerAuthProvider = class {
1676
1681
  reply.redirect(redirectUri, 302);
1677
1682
  return;
1678
1683
  }
1679
- const user = await provider.user(externalTokens);
1684
+ let user;
1685
+ try {
1686
+ user = await provider.user(externalTokens);
1687
+ } catch (e) {
1688
+ this.log.warn("OAuth2 account linking failed", e);
1689
+ const errorUrl = new URL(loginUri || redirectUri, url.origin);
1690
+ errorUrl.searchParams.set("error", e instanceof BadRequestError ? e.message : "Authentication failed");
1691
+ reply.redirect(errorUrl.pathname + errorUrl.search, 302);
1692
+ return;
1693
+ }
1680
1694
  const tokens = await issuer.createToken(user);
1681
1695
  this.setTokens({
1682
1696
  ...tokens,