authfyio-vue 0.2.1

package/README.md

@@ -0,0 +1,21 @@
+# authfyio-vue
+
+Vue 3 composables for Authfyio — useAuth, useUser, useSession, and conditional render helpers.
+
+> Part of [Authfyio](https://authfyio.com) — a self-hostable authentication platform.
+
+## Install
+
+```bash
+npm install authfyio-vue
+```
+
+## Usage
+
+See the full guide at **https://authfyio.com/docs**.
+
+Point the SDK at your Authfyio instance via the same-origin proxy (`/api/af`) or set `AF_API_BASE_URL` for server-side calls.
+
+## License
+
+MIT

package/dist/index.d.ts

@@ -0,0 +1,96 @@
+import { type Ref } from 'vue';
+/**
+ * Vue 3 composables for Authfyio. Provide the base URL near the root of
+ * your app with `provideAuthfyio` and then call `useAuth` / `useUser` /
+ * `useSession` in any component. Auto-refresh runs for as long as the
+ * provider is mounted.
+ */
+export type SessionClaims = {
+    sid: string;
+    sub: string;
+    env: string;
+    org?: string;
+    org_role?: string;
+    iat?: number;
+    exp?: number;
+};
+type SessionState = {
+    status: 'signed_out';
+} | {
+    status: 'signed_in';
+    jwt: string;
+    claims: SessionClaims;
+};
+type KolayCtx = {
+    baseUrl: string;
+    session: Ref<SessionState>;
+    refresh: () => Promise<void>;
+};
+/**
+ * Browser-side default. The Vue SDK assumes you've mounted a same-origin
+ * proxy at `/api/af` (use `authfyio-nextjs/proxy` for Next, or write
+ * an equivalent for your framework). Override `baseUrl` for self-hosted
+ * setups or non-Next backends.
+ */
+export declare const DEFAULT_BASE_URL = "/api/af";
+export type ProvideAuthfyioOptions = {
+    baseUrl?: string;
+    autoRefresh?: boolean;
+    refreshSkewSeconds?: number;
+};
+export declare function provideAuthfyio(opts?: ProvideAuthfyioOptions): KolayCtx;
+export declare function useAuthfyio(): KolayCtx;
+export declare function useSession(): Ref<SessionState, SessionState>;
+type HasCheck = {
+    role?: string;
+    permission?: string;
+    plan?: string;
+    feature?: string;
+};
+export declare function useAuth(): import("vue").ComputedRef<{
+    isSignedIn: false;
+    userId: null;
+    sessionId: null;
+    orgId: null;
+    orgRole: null;
+    environmentId: null;
+    getToken: () => string | null;
+    has: (_check: HasCheck) => boolean;
+} | {
+    isSignedIn: true;
+    userId: string;
+    sessionId: string;
+    orgId: string | null;
+    orgRole: string | null;
+    environmentId: string;
+    getToken: () => string | null;
+    has: (check: HasCheck) => boolean;
+}>;
+export type UserResource = {
+    id: string;
+    email: string | null;
+    username: string | null;
+    firstName: string | null;
+    lastName: string | null;
+    publicMetadata: Record<string, unknown>;
+};
+export declare function useUser(): {
+    user: Ref<{
+        id: string;
+        email: string | null;
+        username: string | null;
+        firstName: string | null;
+        lastName: string | null;
+        publicMetadata: Record<string, unknown>;
+    } | null, UserResource | {
+        id: string;
+        email: string | null;
+        username: string | null;
+        firstName: string | null;
+        lastName: string | null;
+        publicMetadata: Record<string, unknown>;
+    } | null>;
+    isLoaded: Ref<boolean, boolean>;
+};
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAiF,KAAK,GAAG,EAAE,MAAM,KAAK,CAAC;AAE9G;;;;;GAKG;AAEH,MAAM,MAAM,aAAa,GAAG;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;CACd,CAAC;AAEF,KAAK,YAAY,GACb;IAAE,MAAM,EAAE,YAAY,CAAA;CAAE,GACxB;IAAE,MAAM,EAAE,WAAW,CAAC;IAAC,GAAG,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,aAAa,CAAA;CAAE,CAAC;AAEhE,KAAK,QAAQ,GAAG;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,GAAG,CAAC,YAAY,CAAC,CAAC;IAC3B,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B,CAAC;AAIF;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,YAAY,CAAC;AAE1C,MAAM,MAAM,sBAAsB,GAAG;IACnC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,kBAAkB,CAAC,EAAE,MAAM,CAAC;CAC7B,CAAC;AAEF,wBAAgB,eAAe,CAAC,IAAI,GAAE,sBAA2B,GAAG,QAAQ,CA6C3E;AAED,wBAAgB,WAAW,IAAI,QAAQ,CAItC;AAED,wBAAgB,UAAU,oCAEzB;AAED,KAAK,QAAQ,GAAG;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB,CAAC;AAEF,wBAAgB,OAAO;;;;;;;oBAWS,MAAM,GAAG,IAAI;kBACvB,QAAQ,KAAG,OAAO;;;;;;;;oBAYX,MAAM,GAAG,IAAI;iBACvB,QAAQ,KAAG,OAAO;GAYpC;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,cAAc,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACzC,CAAC;AAEF,wBAAgB,OAAO;;YARjB,MAAM;eACH,MAAM,GAAG,IAAI;kBACV,MAAM,GAAG,IAAI;mBACZ,MAAM,GAAG,IAAI;kBACd,MAAM,GAAG,IAAI;wBACP,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;;YALnC,MAAM;eACH,MAAM,GAAG,IAAI;kBACV,MAAM,GAAG,IAAI;mBACZ,MAAM,GAAG,IAAI;kBACd,MAAM,GAAG,IAAI;wBACP,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;;;EAiCxC"}

package/dist/index.js

@@ -0,0 +1,169 @@
+import { inject, provide, ref, computed, onBeforeUnmount, onMounted } from 'vue';
+const KolayKey = Symbol('authfyio-vue');
+/**
+ * Browser-side default. The Vue SDK assumes you've mounted a same-origin
+ * proxy at `/api/af` (use `authfyio-nextjs/proxy` for Next, or write
+ * an equivalent for your framework). Override `baseUrl` for self-hosted
+ * setups or non-Next backends.
+ */
+export const DEFAULT_BASE_URL = '/api/af';
+export function provideAuthfyio(opts = {}) {
+    const baseUrl = (opts.baseUrl ?? DEFAULT_BASE_URL).replace(/\/+$/, '');
+    const session = ref(loadInitial());
+    async function refresh() {
+        const res = await fetch(`${baseUrl}/v1/auth/sessions/refresh`, {
+            method: 'POST',
+            credentials: 'include',
+        });
+        if (!res.ok) {
+            session.value = { status: 'signed_out' };
+            return;
+        }
+        const next = loadFromCookie();
+        session.value = next ?? { status: 'signed_out' };
+    }
+    let timer = null;
+    function schedule() {
+        if (timer)
+            clearTimeout(timer);
+        if (opts.autoRefresh === false)
+            return;
+        if (session.value.status !== 'signed_in')
+            return;
+        const exp = session.value.claims.exp;
+        if (!exp)
+            return;
+        const skew = opts.refreshSkewSeconds ?? 15;
+        const msUntil = Math.max(0, exp * 1000 - Date.now() - skew * 1000);
+        timer = setTimeout(() => {
+            refresh().catch(() => { });
+        }, msUntil);
+    }
+    onMounted(() => {
+        const fresh = loadFromCookie();
+        if (fresh)
+            session.value = fresh;
+        schedule();
+    });
+    onBeforeUnmount(() => {
+        if (timer)
+            clearTimeout(timer);
+    });
+    const ctx = { baseUrl, session, refresh };
+    provide(KolayKey, ctx);
+    return ctx;
+}
+export function useAuthfyio() {
+    const ctx = inject(KolayKey);
+    if (!ctx)
+        throw new Error('provideAuthfyio() must be called in an ancestor component.');
+    return ctx;
+}
+export function useSession() {
+    return useAuthfyio().session;
+}
+export function useAuth() {
+    const session = useSession();
+    return computed(() => {
+        if (session.value.status !== 'signed_in') {
+            return {
+                isSignedIn: false,
+                userId: null,
+                sessionId: null,
+                orgId: null,
+                orgRole: null,
+                environmentId: null,
+                getToken: () => null,
+                has: (_check) => false,
+            };
+        }
+        const { claims, jwt } = session.value;
+        const orgPerms = Array.isArray(claims.org_perms) ? claims.org_perms : [];
+        return {
+            isSignedIn: true,
+            userId: claims.sub,
+            sessionId: claims.sid,
+            orgId: claims.org ?? null,
+            orgRole: claims.org_role ?? null,
+            environmentId: claims.env,
+            getToken: () => jwt,
+            has: (check) => {
+                if (check.role && claims.org_role !== check.role)
+                    return false;
+                if (check.permission) {
+                    if (!claims.org)
+                        return false;
+                    if (!orgPerms.includes(check.permission))
+                        return false;
+                }
+                // plan / feature live in the billing surface — wire those up
+                // when authfyio-vue grows useBilling().
+                return true;
+            },
+        };
+    });
+}
+export function useUser() {
+    const { baseUrl } = useAuthfyio();
+    const session = useSession();
+    const user = ref(null);
+    const isLoaded = ref(false);
+    async function load() {
+        if (session.value.status !== 'signed_in') {
+            user.value = null;
+            isLoaded.value = true;
+            return;
+        }
+        try {
+            const res = await fetch(`${baseUrl}/v1/auth/sessions/current`, { credentials: 'include' });
+            if (!res.ok) {
+                user.value = null;
+            }
+            else {
+                const body = (await res.json());
+                user.value = body.user ?? null;
+            }
+        }
+        catch {
+            user.value = null;
+        }
+        finally {
+            isLoaded.value = true;
+        }
+    }
+    onMounted(load);
+    return { user, isLoaded };
+}
+/* ──────────────── Internals ──────────────── */
+function loadInitial() {
+    return loadFromCookie() ?? { status: 'signed_out' };
+}
+function loadFromCookie() {
+    if (typeof document === 'undefined')
+        return null;
+    const pairs = document.cookie.split(';');
+    for (const p of pairs) {
+        const eq = p.indexOf('=');
+        if (eq < 0)
+            continue;
+        const name = p.slice(0, eq).trim();
+        if (name !== '__session')
+            continue;
+        const value = decodeURIComponent(p.slice(eq + 1).trim());
+        try {
+            const claims = decodeJwt(value);
+            return { status: 'signed_in', jwt: value, claims };
+        }
+        catch {
+            return null;
+        }
+    }
+    return null;
+}
+function decodeJwt(token) {
+    const [, payload] = token.split('.');
+    const b64 = payload.replace(/-/g, '+').replace(/_/g, '/');
+    const padded = b64 + '='.repeat((4 - (b64.length % 4)) % 4);
+    const json = atob(padded);
+    return JSON.parse(json);
+}

package/package.json

@@ -0,0 +1,41 @@
+{
+  "name": "authfyio-vue",
+  "version": "0.2.1",
+  "description": "Vue 3 composables for Authfyio — useAuth, useUser, useSession, and conditional render helpers.",
+  "license": "MIT",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "scripts": {
+    "build": "tsc -p tsconfig.build.json",
+    "typecheck": "tsc -p tsconfig.build.json --noEmit",
+    "prepublishOnly": "npm run build"
+  },
+  "peerDependencies": {
+    "vue": ">=3"
+  },
+  "keywords": [
+    "authfyio",
+    "auth",
+    "vue",
+    "composables"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "homepage": "https://authfyio.com/docs",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/authfyio/authfyio.git"
+  }
+}