authvital-sdk 0.1.1-dev.3.cefb119.0

package/dist/index.mjs

@@ -0,0 +1,1299 @@
+import {
+  AppAccessEventHandler,
+  AuthVitalEventHandler,
+  AuthVitalWebhooks,
+  InviteEventHandler,
+  LicenseEventHandler,
+  MemberEventHandler,
+  SYNC_EVENT_TYPES,
+  SubjectEventHandler,
+  WebhookRouter,
+  isAppAccessEvent,
+  isInviteEvent,
+  isLicenseEvent,
+  isMemberEvent,
+  isSubjectEvent
+} from "./chunk-ETJ5ICJ7.mjs";
+import {
+  checkAuthStatus,
+  decodeJwt,
+  decodeState,
+  encodeState,
+  exchangeCodeForTokens,
+  extractCallbackParams,
+  generateCodeChallenge,
+  generateCodeVerifier,
+  handleCallback,
+  loginToAuthVital,
+  logout,
+  signupAtAuthVital,
+  startAuthorizationFlow,
+  startLogin,
+  startSignup
+} from "./chunk-JNEJMHGA.mjs";
+import {
+  captureInviteTokenFromUrl,
+  clearStoredInviteToken,
+  consumeInvitation,
+  createInvitation,
+  getInvitation,
+  getStoredInviteToken,
+  listTenantInvitations,
+  revokeInvitation,
+  storeInviteToken
+} from "./chunk-JPODZIZT.mjs";
+
+// src/client/provider.tsx
+import { createContext, useContext, useState, useCallback } from "react";
+import { jsx } from "react/jsx-runtime";
+var AuthContext = createContext(null);
+var ConfigContext = createContext(null);
+function AuthVitalProvider({
+  clientId,
+  authVitalHost,
+  initialUser = null,
+  initialTenants = [],
+  children
+}) {
+  const [isLoading, setIsLoading] = useState(false);
+  const [isSigningIn, setIsSigningIn] = useState(false);
+  const [isSigningUp, setIsSigningUp] = useState(false);
+  const [user, setUser] = useState(initialUser);
+  const [tenants, setTenants] = useState(initialTenants);
+  const [currentTenant, setCurrentTenant] = useState(initialTenants[0] || null);
+  const [error, setError] = useState(null);
+  const setAuthState = useCallback((newUser, newTenants = []) => {
+    setUser(newUser);
+    setTenants(newTenants);
+    setCurrentTenant(newTenants[0] || null);
+    setError(null);
+  }, []);
+  const clearAuthState = useCallback(() => {
+    setUser(null);
+    setTenants([]);
+    setCurrentTenant(null);
+  }, []);
+  const login = useCallback(
+    async (_email, _password) => {
+      setIsSigningIn(true);
+      setError(null);
+      try {
+        const { startAuthorizationFlow: startAuthorizationFlow2 } = await import("./oauth-UAFXEKZ7.mjs");
+        const redirectUri = typeof window !== "undefined" ? window.location.origin + "/api/auth/callback" : "";
+        await startAuthorizationFlow2({
+          authVitalHost,
+          clientId,
+          redirectUri
+        });
+        return { user: null, tenants: [] };
+      } catch (err) {
+        const message = err instanceof Error ? err.message : "Login failed";
+        setError(message);
+        throw err;
+      } finally {
+        setIsSigningIn(false);
+      }
+    },
+    [authVitalHost, clientId]
+  );
+  const signUp = useCallback(
+    async (_data) => {
+      setIsSigningUp(true);
+      setError(null);
+      try {
+        const { startAuthorizationFlow: startAuthorizationFlow2 } = await import("./oauth-UAFXEKZ7.mjs");
+        const redirectUri = typeof window !== "undefined" ? window.location.origin + "/api/auth/callback" : "";
+        await startAuthorizationFlow2({
+          authVitalHost,
+          clientId,
+          redirectUri
+        }, { screen: "signup" });
+        return { user: null };
+      } catch (err) {
+        const message = err instanceof Error ? err.message : "Sign up failed";
+        setError(message);
+        throw err;
+      } finally {
+        setIsSigningUp(false);
+      }
+    },
+    [authVitalHost, clientId]
+  );
+  const signOut = useCallback(async () => {
+    clearAuthState();
+    const { logout: authVitalLogout } = await import("./oauth-UAFXEKZ7.mjs");
+    await authVitalLogout(authVitalHost, {
+      postLogoutRedirectUri: typeof window !== "undefined" ? window.location.origin : void 0
+    });
+  }, [authVitalHost, clearAuthState]);
+  const setActiveTenant = useCallback(
+    (tenantId) => {
+      const tenant = tenants.find((t) => t.id === tenantId);
+      if (tenant) setCurrentTenant(tenant);
+    },
+    [tenants]
+  );
+  const refreshToken = useCallback(async () => {
+  }, []);
+  const checkAuth = useCallback(async () => {
+    return !!user;
+  }, [user]);
+  const value = {
+    isAuthenticated: !!user,
+    isLoading,
+    isSigningIn,
+    isSigningUp,
+    user,
+    tenants,
+    currentTenant,
+    error,
+    // Auth methods (redirect to OAuth)
+    login,
+    signIn: login,
+    signUp,
+    signOut,
+    logout: signOut,
+    // Tenant methods
+    setActiveTenant,
+    switchTenant: setActiveTenant,
+    // Session methods (no-ops, server handles this)
+    refreshToken,
+    checkAuth,
+    // State setters (new!)
+    setAuthState,
+    clearAuthState
+  };
+  const configValue = { authVitalHost, clientId };
+  return /* @__PURE__ */ jsx(ConfigContext.Provider, { value: configValue, children: /* @__PURE__ */ jsx(AuthContext.Provider, { value, children }) });
+}
+function useAuth() {
+  const context = useContext(AuthContext);
+  if (!context) {
+    throw new Error("useAuth must be used within an AuthVitalProvider");
+  }
+  return context;
+}
+function useUser() {
+  const { user } = useAuth();
+  return user;
+}
+function useTenant() {
+  const { currentTenant } = useAuth();
+  return currentTenant;
+}
+function useTenants() {
+  const { tenants } = useAuth();
+  return tenants;
+}
+function useAuthVitalConfig() {
+  const context = useContext(ConfigContext);
+  if (!context) {
+    throw new Error("useAuthVitalConfig must be used within an AuthVitalProvider");
+  }
+  return context;
+}
+function useOAuth(options) {
+  const config = useAuthVitalConfig();
+  const { isAuthenticated } = useAuth();
+  const [isLoading, setIsLoading] = useState(false);
+  const redirectUri = options?.redirectUri || (typeof window !== "undefined" ? window.location.origin + "/api/auth/callback" : "");
+  const startLogin2 = useCallback(async (opts) => {
+    setIsLoading(true);
+    try {
+      const { startAuthorizationFlow: startAuthorizationFlow2 } = await import("./oauth-UAFXEKZ7.mjs");
+      await startAuthorizationFlow2({
+        authVitalHost: config.authVitalHost,
+        clientId: config.clientId,
+        redirectUri,
+        scope: opts?.scope
+      }, { state: opts?.state });
+    } finally {
+      setIsLoading(false);
+    }
+  }, [config, redirectUri]);
+  const startSignup2 = useCallback(async (opts) => {
+    setIsLoading(true);
+    try {
+      const { startAuthorizationFlow: startAuthorizationFlow2 } = await import("./oauth-UAFXEKZ7.mjs");
+      await startAuthorizationFlow2({
+        authVitalHost: config.authVitalHost,
+        clientId: config.clientId,
+        redirectUri,
+        scope: opts?.scope
+      }, { state: opts?.state, screen: "signup" });
+    } finally {
+      setIsLoading(false);
+    }
+  }, [config, redirectUri]);
+  const logoutFn = useCallback(async (logoutOptions) => {
+    const { logout: authVitalLogout } = await import("./oauth-UAFXEKZ7.mjs");
+    await authVitalLogout(config.authVitalHost, logoutOptions);
+  }, [config.authVitalHost]);
+  return {
+    isAuthenticated,
+    isLoading,
+    startLogin: startLogin2,
+    startSignup: startSignup2,
+    logout: logoutFn
+  };
+}
+function useInvitation(options = {}) {
+  const { onConsumed, onError } = options;
+  const config = useAuthVitalConfig();
+  const [invitation, setInvitation] = useState(null);
+  const [isLoading, setIsLoading] = useState(false);
+  const [error, setError] = useState(null);
+  const [consumed, setConsumed] = useState(false);
+  const fetchInvitation = useCallback(async (token) => {
+    setIsLoading(true);
+    setError(null);
+    try {
+      const { getInvitation: getInvitation2 } = await import("./invitations-EFJA5C6L.mjs");
+      const invite = await getInvitation2(config.authVitalHost, token);
+      setInvitation(invite);
+      return invite;
+    } catch (err) {
+      const error2 = err instanceof Error ? err : new Error("Failed to fetch invitation");
+      setError(error2);
+      throw error2;
+    } finally {
+      setIsLoading(false);
+    }
+  }, [config.authVitalHost]);
+  const acceptAndLogin = useCallback(async (token, loginOptions) => {
+    const { storeInviteToken: storeInviteToken2 } = await import("./invitations-EFJA5C6L.mjs");
+    const { startAuthorizationFlow: startAuthorizationFlow2 } = await import("./oauth-UAFXEKZ7.mjs");
+    storeInviteToken2(token);
+    await startAuthorizationFlow2({
+      authVitalHost: config.authVitalHost,
+      clientId: config.clientId,
+      redirectUri: typeof window !== "undefined" ? window.location.origin + "/api/auth/callback" : ""
+    }, { state: loginOptions?.state });
+  }, [config]);
+  const consumeInvite = useCallback(async (token) => {
+    setIsLoading(true);
+    setError(null);
+    try {
+      const { consumeInvitation: consumeInvitation2, clearStoredInviteToken: clearStoredInviteToken2 } = await import("./invitations-EFJA5C6L.mjs");
+      const result = await consumeInvitation2(config.authVitalHost, "", token);
+      clearStoredInviteToken2();
+      setConsumed(true);
+      onConsumed?.(result);
+      return result;
+    } catch (err) {
+      const error2 = err instanceof Error ? err : new Error("Failed to consume invitation");
+      setError(error2);
+      onError?.(error2);
+      throw error2;
+    } finally {
+      setIsLoading(false);
+    }
+  }, [config.authVitalHost, onConsumed, onError]);
+  return {
+    invitation,
+    isLoading,
+    error,
+    consumed,
+    hasPendingInvite: typeof window !== "undefined" ? !!sessionStorage.getItem("authvital_invite_token") : false,
+    fetchInvitation,
+    acceptAndLogin,
+    consumeInvite
+  };
+}
+
+// src/client/components/ProtectedRoute.tsx
+import { useEffect as useEffect2 } from "react";
+import { Fragment, jsx as jsx2, jsxs } from "react/jsx-runtime";
+function ProtectedRoute({
+  children,
+  redirectTo = "/login",
+  showLoading = true,
+  loadingComponent
+}) {
+  const { isAuthenticated, isLoading } = useAuth();
+  useEffect2(() => {
+    if (!isLoading && !isAuthenticated) {
+      window.location.href = redirectTo;
+    }
+  }, [isLoading, isAuthenticated, redirectTo]);
+  if (isLoading) {
+    if (loadingComponent) {
+      return /* @__PURE__ */ jsx2(Fragment, { children: loadingComponent });
+    }
+    if (showLoading) {
+      return /* @__PURE__ */ jsx2("div", { style: {
+        display: "flex",
+        alignItems: "center",
+        justifyContent: "center",
+        minHeight: "200px"
+      }, children: /* @__PURE__ */ jsx2(LoadingSpinner, {}) });
+    }
+    return null;
+  }
+  if (!isAuthenticated) {
+    return null;
+  }
+  return /* @__PURE__ */ jsx2(Fragment, { children });
+}
+function LoadingSpinner() {
+  return /* @__PURE__ */ jsxs(
+    "svg",
+    {
+      width: "24",
+      height: "24",
+      viewBox: "0 0 24 24",
+      fill: "none",
+      style: { animation: "spin 1s linear infinite" },
+      children: [
+        /* @__PURE__ */ jsx2("style", { children: `
+        @keyframes spin {
+          from { transform: rotate(0deg); }
+          to { transform: rotate(360deg); }
+        }
+      ` }),
+        /* @__PURE__ */ jsx2(
+          "circle",
+          {
+            cx: "12",
+            cy: "12",
+            r: "10",
+            stroke: "currentColor",
+            strokeWidth: "3",
+            strokeLinecap: "round",
+            strokeDasharray: "60 40",
+            opacity: "0.25"
+          }
+        ),
+        /* @__PURE__ */ jsx2(
+          "circle",
+          {
+            cx: "12",
+            cy: "12",
+            r: "10",
+            stroke: "#7c3aed",
+            strokeWidth: "3",
+            strokeLinecap: "round",
+            strokeDasharray: "60 40"
+          }
+        )
+      ]
+    }
+  );
+}
+
+// src/client/components/SignUpForm.tsx
+import { useState as useState2 } from "react";
+
+// src/client/components/styles.ts
+function getStyles(appearance = {}) {
+  const theme = appearance.theme || "light";
+  const vars = appearance.variables || {};
+  const elements = appearance.elements || {};
+  const isDark = theme === "dark";
+  const colors = {
+    primary: vars.colorPrimary || "#7c3aed",
+    background: vars.colorBackground || (isDark ? "#1e1e2e" : "#ffffff"),
+    text: vars.colorText || (isDark ? "#ffffff" : "#1a1a1a"),
+    textSecondary: vars.colorTextSecondary || (isDark ? "#a1a1aa" : "#6b7280"),
+    danger: vars.colorDanger || "#dc2626",
+    success: vars.colorSuccess || "#16a34a",
+    border: isDark ? "rgba(255,255,255,0.1)" : "#e5e7eb",
+    inputBg: isDark ? "rgba(255,255,255,0.05)" : "#ffffff"
+  };
+  const borderRadius = vars.borderRadius || "0.5rem";
+  const fontFamily = vars.fontFamily || "system-ui, -apple-system, sans-serif";
+  return {
+    card: {
+      maxWidth: "400px",
+      width: "100%",
+      padding: "2rem",
+      backgroundColor: colors.background,
+      borderRadius: "1rem",
+      boxShadow: isDark ? "0 25px 50px -12px rgba(0, 0, 0, 0.5)" : "0 25px 50px -12px rgba(0, 0, 0, 0.25)",
+      fontFamily,
+      ...elements.card
+    },
+    header: {
+      textAlign: "center",
+      marginBottom: "1.5rem",
+      ...elements.header
+    },
+    title: {
+      fontSize: "1.5rem",
+      fontWeight: 600,
+      color: colors.text,
+      margin: "0 0 0.25rem 0"
+    },
+    subtitle: {
+      fontSize: "0.875rem",
+      color: colors.textSecondary,
+      margin: 0
+    },
+    form: {
+      display: "flex",
+      flexDirection: "column",
+      gap: "1rem",
+      ...elements.form
+    },
+    inputGroup: {
+      display: "flex",
+      flexDirection: "column",
+      gap: "0.375rem"
+    },
+    label: {
+      fontSize: "0.875rem",
+      fontWeight: 500,
+      color: colors.text
+    },
+    input: {
+      padding: "0.75rem",
+      border: `1px solid ${colors.border}`,
+      borderRadius,
+      fontSize: "1rem",
+      backgroundColor: colors.inputBg,
+      color: colors.text,
+      outline: "none",
+      transition: "border-color 0.2s, box-shadow 0.2s",
+      ...elements.input
+    },
+    primaryButton: {
+      padding: "0.75rem 1.5rem",
+      backgroundColor: colors.primary,
+      color: "#ffffff",
+      border: "none",
+      borderRadius,
+      fontSize: "1rem",
+      fontWeight: 500,
+      cursor: "pointer",
+      transition: "opacity 0.2s",
+      ...elements.primaryButton
+    },
+    buttonDisabled: {
+      opacity: 0.6,
+      cursor: "not-allowed"
+    },
+    secondaryButton: {
+      padding: "0.75rem 1.5rem",
+      backgroundColor: "transparent",
+      color: colors.text,
+      border: `1px solid ${colors.border}`,
+      borderRadius,
+      fontSize: "1rem",
+      fontWeight: 500,
+      cursor: "pointer",
+      transition: "background-color 0.2s",
+      ...elements.secondaryButton
+    },
+    socialButtons: {
+      display: "flex",
+      flexDirection: "column",
+      gap: "0.75rem",
+      marginBottom: "1rem"
+    },
+    socialButton: {
+      display: "flex",
+      alignItems: "center",
+      justifyContent: "center",
+      padding: "0.75rem",
+      border: `1px solid ${colors.border}`,
+      borderRadius,
+      backgroundColor: "transparent",
+      color: colors.text,
+      fontSize: "0.875rem",
+      fontWeight: 500,
+      cursor: "pointer",
+      transition: "background-color 0.2s",
+      ...elements.socialButton
+    },
+    divider: {
+      display: "flex",
+      alignItems: "center",
+      gap: "1rem",
+      color: colors.textSecondary,
+      fontSize: "0.75rem",
+      margin: "0.5rem 0"
+    },
+    link: {
+      color: colors.primary,
+      textDecoration: "none",
+      cursor: "pointer",
+      fontWeight: 500,
+      ...elements.link
+    },
+    forgotPassword: {
+      textAlign: "right",
+      marginTop: "-0.5rem"
+    },
+    footer: {
+      textAlign: "center",
+      marginTop: "1.5rem",
+      fontSize: "0.875rem",
+      color: colors.textSecondary,
+      ...elements.footer
+    },
+    error: {
+      padding: "0.75rem",
+      backgroundColor: isDark ? "rgba(220, 38, 38, 0.1)" : "#fef2f2",
+      border: `1px solid ${isDark ? "rgba(220, 38, 38, 0.2)" : "#fecaca"}`,
+      borderRadius,
+      color: colors.danger,
+      fontSize: "0.875rem",
+      marginBottom: "1rem",
+      ...elements.error
+    },
+    success: {
+      padding: "0.75rem",
+      backgroundColor: isDark ? "rgba(22, 163, 74, 0.1)" : "#f0fdf4",
+      border: `1px solid ${isDark ? "rgba(22, 163, 74, 0.2)" : "#bbf7d0"}`,
+      borderRadius,
+      color: colors.success,
+      fontSize: "0.875rem",
+      marginBottom: "1rem"
+    },
+    userButton: {
+      display: "flex",
+      alignItems: "center",
+      gap: "0.5rem",
+      padding: "0.5rem",
+      border: "none",
+      borderRadius,
+      backgroundColor: "transparent",
+      cursor: "pointer",
+      transition: "background-color 0.2s"
+    },
+    avatar: {
+      width: "32px",
+      height: "32px",
+      borderRadius: "50%",
+      backgroundColor: colors.primary,
+      color: "#ffffff",
+      display: "flex",
+      alignItems: "center",
+      justifyContent: "center",
+      fontSize: "0.875rem",
+      fontWeight: 500
+    },
+    dropdown: {
+      position: "absolute",
+      top: "100%",
+      right: 0,
+      marginTop: "0.5rem",
+      minWidth: "200px",
+      backgroundColor: colors.background,
+      border: `1px solid ${colors.border}`,
+      borderRadius,
+      boxShadow: "0 10px 15px -3px rgba(0, 0, 0, 0.1)",
+      overflow: "hidden",
+      zIndex: 50
+    },
+    dropdownItem: {
+      display: "block",
+      width: "100%",
+      padding: "0.75rem 1rem",
+      textAlign: "left",
+      border: "none",
+      backgroundColor: "transparent",
+      color: colors.text,
+      fontSize: "0.875rem",
+      cursor: "pointer",
+      transition: "background-color 0.2s"
+    }
+  };
+}
+
+// src/client/components/SignUpForm.tsx
+import { jsx as jsx3, jsxs as jsxs2 } from "react/jsx-runtime";
+function SignUpForm({
+  onSuccess,
+  onError,
+  showSignInLink = true,
+  onSignInClick,
+  redirectUri,
+  appearance
+}) {
+  const config = useAuthVitalConfig();
+  const styles = getStyles(appearance);
+  const [email, setEmail] = useState2("");
+  const [givenName, setGivenName] = useState2("");
+  const [familyName, setFamilyName] = useState2("");
+  const [isLoading, setIsLoading] = useState2(false);
+  const [error, setError] = useState2(null);
+  const [emailSent, setEmailSent] = useState2(false);
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    setIsLoading(true);
+    setError(null);
+    try {
+      const response = await fetch(`${config.authVitalHost}/api/signup/initiate`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        credentials: "include",
+        body: JSON.stringify({
+          email,
+          givenName: givenName || void 0,
+          familyName: familyName || void 0,
+          redirectUri,
+          clientId: config.clientId
+        })
+      });
+      const result = await response.json();
+      if (!response.ok) {
+        throw new Error(result.message || "Failed to send verification email");
+      }
+      if (result.success) {
+        setEmailSent(true);
+        onSuccess?.({ email, message: result.message || "Verification email sent" });
+      } else {
+        throw new Error(result.message || "Failed to send verification email");
+      }
+    } catch (err) {
+      const error2 = err instanceof Error ? err : new Error("Failed to send verification email");
+      setError(error2.message);
+      onError?.(error2);
+    } finally {
+      setIsLoading(false);
+    }
+  };
+  const handleResend = async () => {
+    setIsLoading(true);
+    try {
+      const response = await fetch(`${config.authVitalHost}/api/signup/resend`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        credentials: "include",
+        body: JSON.stringify({ email, redirectUri })
+      });
+      if (!response.ok) {
+        const result = await response.json();
+        throw new Error(result.message || "Failed to resend email");
+      }
+      setError(null);
+    } catch (err) {
+      const error2 = err instanceof Error ? err : new Error("Failed to resend email");
+      setError(error2.message);
+    } finally {
+      setIsLoading(false);
+    }
+  };
+  if (emailSent) {
+    return /* @__PURE__ */ jsxs2("div", { style: styles.card, children: [
+      /* @__PURE__ */ jsxs2("div", { style: styles.header, children: [
+        /* @__PURE__ */ jsx3("div", { style: { ...styles.avatar, width: "64px", height: "64px", margin: "0 auto 1rem", fontSize: "1.5rem" }, children: "\u2709\uFE0F" }),
+        /* @__PURE__ */ jsx3("h1", { style: styles.title, children: "Check your email" }),
+        /* @__PURE__ */ jsx3("p", { style: styles.subtitle, children: "We sent a verification link to" }),
+        /* @__PURE__ */ jsx3("p", { style: { color: "#7c3aed", fontWeight: 500, marginTop: "0.5rem" }, children: email })
+      ] }),
+      /* @__PURE__ */ jsx3("p", { style: { ...styles.subtitle, marginBottom: "1.5rem" }, children: "Click the link in the email to verify your address and complete your signup." }),
+      /* @__PURE__ */ jsx3(
+        "button",
+        {
+          onClick: handleResend,
+          disabled: isLoading,
+          style: {
+            ...styles.secondaryButton,
+            width: "100%",
+            ...isLoading ? styles.buttonDisabled : {}
+          },
+          children: isLoading ? "Sending..." : "Resend verification email"
+        }
+      ),
+      /* @__PURE__ */ jsx3(
+        "button",
+        {
+          onClick: () => setEmailSent(false),
+          style: { ...styles.link, display: "block", marginTop: "1rem", textAlign: "center", width: "100%", background: "none", border: "none", cursor: "pointer" },
+          children: "Use a different email"
+        }
+      ),
+      error && /* @__PURE__ */ jsx3("div", { style: styles.error, children: error })
+    ] });
+  }
+  return /* @__PURE__ */ jsxs2("div", { style: styles.card, children: [
+    /* @__PURE__ */ jsxs2("div", { style: styles.header, children: [
+      /* @__PURE__ */ jsx3("h1", { style: styles.title, children: "Create an account" }),
+      /* @__PURE__ */ jsx3("p", { style: styles.subtitle, children: "Start your free trial today" })
+    ] }),
+    error && /* @__PURE__ */ jsx3("div", { style: styles.error, children: error }),
+    /* @__PURE__ */ jsxs2("form", { onSubmit: handleSubmit, style: styles.form, children: [
+      /* @__PURE__ */ jsxs2("div", { style: { display: "grid", gridTemplateColumns: "1fr 1fr", gap: "1rem" }, children: [
+        /* @__PURE__ */ jsxs2("div", { style: styles.inputGroup, children: [
+          /* @__PURE__ */ jsx3("label", { style: styles.label, children: "First name" }),
+          /* @__PURE__ */ jsx3(
+            "input",
+            {
+              type: "text",
+              value: givenName,
+              onChange: (e) => setGivenName(e.target.value),
+              placeholder: "John",
+              style: styles.input
+            }
+          )
+        ] }),
+        /* @__PURE__ */ jsxs2("div", { style: styles.inputGroup, children: [
+          /* @__PURE__ */ jsx3("label", { style: styles.label, children: "Last name" }),
+          /* @__PURE__ */ jsx3(
+            "input",
+            {
+              type: "text",
+              value: familyName,
+              onChange: (e) => setFamilyName(e.target.value),
+              placeholder: "Doe",
+              style: styles.input
+            }
+          )
+        ] })
+      ] }),
+      /* @__PURE__ */ jsxs2("div", { style: styles.inputGroup, children: [
+        /* @__PURE__ */ jsx3("label", { style: styles.label, children: "Work email" }),
+        /* @__PURE__ */ jsx3(
+          "input",
+          {
+            type: "email",
+            value: email,
+            onChange: (e) => setEmail(e.target.value),
+            placeholder: "you@company.com",
+            required: true,
+            style: styles.input
+          }
+        )
+      ] }),
+      /* @__PURE__ */ jsx3(
+        "button",
+        {
+          type: "submit",
+          disabled: isLoading,
+          style: {
+            ...styles.primaryButton,
+            width: "100%",
+            ...isLoading ? styles.buttonDisabled : {}
+          },
+          children: isLoading ? "Sending verification..." : "Continue with email"
+        }
+      )
+    ] }),
+    showSignInLink && /* @__PURE__ */ jsxs2("div", { style: styles.footer, children: [
+      "Already have an account?",
+      " ",
+      /* @__PURE__ */ jsx3(
+        "button",
+        {
+          type: "button",
+          onClick: onSignInClick,
+          style: { ...styles.link, background: "none", border: "none", cursor: "pointer", padding: 0 },
+          children: "Sign in"
+        }
+      )
+    ] })
+  ] });
+}
+
+// src/client/components/VerifyEmail.tsx
+import { useState as useState3, useEffect as useEffect3, useRef as useRef2 } from "react";
+import { jsx as jsx4, jsxs as jsxs3 } from "react/jsx-runtime";
+function VerifyEmail({
+  token,
+  onSuccess,
+  onError,
+  onContinueSignup,
+  onLogin,
+  onStartOver,
+  appearance
+}) {
+  const config = useAuthVitalConfig();
+  const styles = getStyles(appearance);
+  const [status, setStatus] = useState3("loading");
+  const [message, setMessage] = useState3("");
+  const [verifiedData, setVerifiedData] = useState3(null);
+  const hasVerified = useRef2(false);
+  useEffect3(() => {
+    if (hasVerified.current) return;
+    hasVerified.current = true;
+    const verifyToken = async () => {
+      if (!token) {
+        setStatus("error");
+        setMessage("Invalid verification link. No token provided.");
+        onError?.(new Error("No token provided"), "error");
+        return;
+      }
+      try {
+        const response = await fetch(`${config.authVitalHost}/api/signup/verify`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          credentials: "include",
+          body: JSON.stringify({ token })
+        });
+        const result = await response.json();
+        if (result.success) {
+          const data = {
+            token,
+            email: result.email,
+            givenName: result.givenName,
+            familyName: result.familyName,
+            tenantName: result.tenantName
+          };
+          setStatus("success");
+          setMessage(result.message || "Email verified successfully!");
+          setVerifiedData(data);
+          onSuccess?.(data);
+        } else {
+          let newStatus = "error";
+          switch (result.error) {
+            case "EXPIRED":
+              newStatus = "expired";
+              break;
+            case "ALREADY_COMPLETED":
+              newStatus = "already_completed";
+              break;
+          }
+          setStatus(newStatus);
+          setMessage(result.message || "Verification failed.");
+          onError?.(new Error(result.message || "Verification failed"), newStatus);
+        }
+      } catch (err) {
+        setStatus("error");
+        const error = err instanceof Error ? err : new Error("Verification failed");
+        setMessage(error.message);
+        onError?.(error, "error");
+      }
+    };
+    verifyToken();
+  }, [token, config.authVitalHost, onSuccess, onError]);
+  const handleContinueSignup = () => {
+    if (verifiedData) {
+      onContinueSignup?.(verifiedData);
+    }
+  };
+  const iconStyle = {
+    width: "64px",
+    height: "64px",
+    borderRadius: "50%",
+    display: "flex",
+    alignItems: "center",
+    justifyContent: "center",
+    margin: "0 auto 1rem",
+    fontSize: "2rem"
+  };
+  return /* @__PURE__ */ jsxs3("div", { style: styles.card, children: [
+    status === "loading" && /* @__PURE__ */ jsxs3("div", { style: { textAlign: "center" }, children: [
+      /* @__PURE__ */ jsx4("div", { style: { ...iconStyle, background: "rgba(124, 58, 237, 0.2)" }, children: "\u23F3" }),
+      /* @__PURE__ */ jsx4("h1", { style: styles.title, children: "Verifying your email..." }),
+      /* @__PURE__ */ jsx4("p", { style: styles.subtitle, children: "Please wait while we verify your email address." })
+    ] }),
+    status === "success" && /* @__PURE__ */ jsxs3("div", { style: { textAlign: "center" }, children: [
+      /* @__PURE__ */ jsx4("div", { style: { ...iconStyle, background: "rgba(22, 163, 74, 0.2)" }, children: "\u2713" }),
+      /* @__PURE__ */ jsx4("h1", { style: styles.title, children: "Email Verified!" }),
+      /* @__PURE__ */ jsx4("p", { style: styles.subtitle, children: message }),
+      verifiedData?.email && /* @__PURE__ */ jsx4("p", { style: { color: "#7c3aed", marginBottom: "1.5rem" }, children: verifiedData.email }),
+      /* @__PURE__ */ jsx4(
+        "button",
+        {
+          onClick: handleContinueSignup,
+          style: { ...styles.primaryButton, width: "100%" },
+          children: "Continue to Complete Signup"
+        }
+      )
+    ] }),
+    status === "expired" && /* @__PURE__ */ jsxs3("div", { style: { textAlign: "center" }, children: [
+      /* @__PURE__ */ jsx4("div", { style: { ...iconStyle, background: "rgba(234, 179, 8, 0.2)" }, children: "\u26A0\uFE0F" }),
+      /* @__PURE__ */ jsx4("h1", { style: styles.title, children: "Link Expired" }),
+      /* @__PURE__ */ jsx4("p", { style: { ...styles.subtitle, marginBottom: "1.5rem" }, children: message }),
+      /* @__PURE__ */ jsx4(
+        "button",
+        {
+          onClick: onStartOver,
+          style: { ...styles.primaryButton, width: "100%" },
+          children: "Sign Up Again"
+        }
+      )
+    ] }),
+    status === "already_completed" && /* @__PURE__ */ jsxs3("div", { style: { textAlign: "center" }, children: [
+      /* @__PURE__ */ jsx4("div", { style: { ...iconStyle, background: "rgba(59, 130, 246, 0.2)" }, children: "\u2713" }),
+      /* @__PURE__ */ jsx4("h1", { style: styles.title, children: "Already Verified" }),
+      /* @__PURE__ */ jsx4("p", { style: { ...styles.subtitle, marginBottom: "1.5rem" }, children: message }),
+      /* @__PURE__ */ jsx4(
+        "button",
+        {
+          onClick: onLogin,
+          style: { ...styles.primaryButton, width: "100%" },
+          children: "Sign In"
+        }
+      )
+    ] }),
+    status === "error" && /* @__PURE__ */ jsxs3("div", { style: { textAlign: "center" }, children: [
+      /* @__PURE__ */ jsx4("div", { style: { ...iconStyle, background: "rgba(220, 38, 38, 0.2)" }, children: "\u2717" }),
+      /* @__PURE__ */ jsx4("h1", { style: styles.title, children: "Verification Failed" }),
+      /* @__PURE__ */ jsx4("p", { style: { ...styles.subtitle, marginBottom: "1.5rem" }, children: message }),
+      /* @__PURE__ */ jsx4(
+        "button",
+        {
+          onClick: onStartOver,
+          style: { ...styles.primaryButton, width: "100%" },
+          children: "Try Again"
+        }
+      )
+    ] })
+  ] });
+}
+
+// src/client/components/CompleteSignupForm.tsx
+import { useState as useState4, useEffect as useEffect4 } from "react";
+import { Fragment as Fragment2, jsx as jsx5, jsxs as jsxs4 } from "react/jsx-runtime";
+var GENERIC_DOMAINS = [
+  "gmail.com",
+  "yahoo.com",
+  "hotmail.com",
+  "outlook.com",
+  "live.com",
+  "icloud.com",
+  "me.com",
+  "mac.com",
+  "aol.com",
+  "protonmail.com",
+  "zoho.com",
+  "yandex.com",
+  "mail.com",
+  "gmx.com",
+  "fastmail.com"
+];
+function isGenericDomain(email) {
+  const domain = email.split("@")[1]?.toLowerCase();
+  return GENERIC_DOMAINS.includes(domain);
+}
+function extractDomain(email) {
+  return email.split("@")[1]?.toLowerCase() || "";
+}
+function suggestOrgName(email) {
+  const domain = extractDomain(email);
+  const name = domain.split(".")[0];
+  return name.charAt(0).toUpperCase() + name.slice(1);
+}
+function suggestSlug(email) {
+  const domain = extractDomain(email);
+  return domain.split(".")[0].toLowerCase().replace(/[^a-z0-9]/g, "");
+}
+function CompleteSignupForm({
+  token,
+  email,
+  givenName: initialGivenName = "",
+  familyName: initialFamilyName = "",
+  tenantName: initialOrgName = "",
+  redirectUri,
+  onSuccess,
+  onError,
+  appearance
+}) {
+  const config = useAuthVitalConfig();
+  const styles = getStyles(appearance);
+  const [givenName, setGivenName] = useState4(initialGivenName);
+  const [familyName, setFamilyName] = useState4(initialFamilyName);
+  const [password, setPassword] = useState4("");
+  const [confirmPassword, setConfirmPassword] = useState4("");
+  const [tenantName, setTenantName] = useState4(initialOrgName || suggestOrgName(email));
+  const [slug, setSlug] = useState4(suggestSlug(email));
+  const [isLoading, setIsLoading] = useState4(false);
+  const [error, setError] = useState4(null);
+  const [success, setSuccess] = useState4(false);
+  const [slugAvailable, setSlugAvailable] = useState4(null);
+  const [checkingSlug, setCheckingSlug] = useState4(false);
+  const isGeneric = isGenericDomain(email);
+  const domain = extractDomain(email);
+  useEffect4(() => {
+    if (!slug || isGeneric) {
+      setSlugAvailable(null);
+      return;
+    }
+    const timer = setTimeout(async () => {
+      setCheckingSlug(true);
+      try {
+        const response = await fetch(`${config.authVitalHost}/api/tenants/check-slug/${slug}`, {
+          credentials: "include"
+        });
+        if (response.ok) {
+          const result = await response.json();
+          setSlugAvailable(result.available);
+        } else {
+          setSlugAvailable(true);
+        }
+      } catch {
+        setSlugAvailable(true);
+      } finally {
+        setCheckingSlug(false);
+      }
+    }, 500);
+    return () => clearTimeout(timer);
+  }, [slug, isGeneric, config.authVitalHost]);
+  const handleSubmit = async (e) => {
+    e.preventDefault();
+    if (password !== confirmPassword) {
+      setError("Passwords do not match");
+      return;
+    }
+    if (password.length < 8) {
+      setError("Password must be at least 8 characters");
+      return;
+    }
+    if (!isGeneric && !tenantName.trim()) {
+      setError("Organization name is required");
+      return;
+    }
+    setIsLoading(true);
+    setError(null);
+    try {
+      const response = await fetch(`${config.authVitalHost}/api/signup/complete`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        credentials: "include",
+        body: JSON.stringify({
+          email,
+          password,
+          token,
+          givenName: givenName || void 0,
+          familyName: familyName || void 0,
+          ...isGeneric ? {} : {
+            tenantName: tenantName.trim(),
+            slug: slug.trim()
+          }
+        })
+      });
+      const result = await response.json();
+      if (!response.ok) {
+        throw new Error(result.message || "Failed to complete signup");
+      }
+      setSuccess(true);
+      onSuccess?.(result);
+      setTimeout(() => {
+        if (result.tenant?.slug && result.initiateLoginUri) {
+          const redirectUrl = result.initiateLoginUri.replace("{tenant}", result.tenant.slug);
+          window.location.href = redirectUrl;
+        } else if (redirectUri) {
+          window.location.href = redirectUri;
+        }
+      }, 2e3);
+    } catch (err) {
+      const error2 = err instanceof Error ? err : new Error("Failed to complete signup");
+      setError(error2.message);
+      onError?.(error2);
+    } finally {
+      setIsLoading(false);
+    }
+  };
+  if (success) {
+    return /* @__PURE__ */ jsx5("div", { style: styles.card, children: /* @__PURE__ */ jsxs4("div", { style: { textAlign: "center" }, children: [
+      /* @__PURE__ */ jsx5("div", { style: {
+        width: "64px",
+        height: "64px",
+        borderRadius: "50%",
+        background: "rgba(22, 163, 74, 0.2)",
+        display: "flex",
+        alignItems: "center",
+        justifyContent: "center",
+        margin: "0 auto 1rem",
+        fontSize: "2rem"
+      }, children: "\u2713" }),
+      /* @__PURE__ */ jsx5("h1", { style: styles.title, children: "Account Created!" }),
+      /* @__PURE__ */ jsx5("p", { style: styles.subtitle, children: "Your account has been created successfully. Redirecting..." }),
+      /* @__PURE__ */ jsx5("div", { style: { marginTop: "1rem" }, children: "\u23F3" })
+    ] }) });
+  }
+  return /* @__PURE__ */ jsxs4("div", { style: styles.card, children: [
+    /* @__PURE__ */ jsxs4("div", { style: styles.header, children: [
+      /* @__PURE__ */ jsx5("h1", { style: styles.title, children: "Complete Your Account" }),
+      /* @__PURE__ */ jsx5("p", { style: { color: "#7c3aed" }, children: email })
+    ] }),
+    /* @__PURE__ */ jsxs4("div", { style: {
+      display: "flex",
+      alignItems: "center",
+      gap: "0.5rem",
+      padding: "0.75rem",
+      marginBottom: "1.5rem",
+      borderRadius: "0.5rem",
+      background: isGeneric ? "rgba(59, 130, 246, 0.1)" : "rgba(124, 58, 237, 0.1)",
+      border: `1px solid ${isGeneric ? "rgba(59, 130, 246, 0.2)" : "rgba(124, 58, 237, 0.2)"}`,
+      color: isGeneric ? "#3b82f6" : "#7c3aed",
+      fontSize: "0.875rem"
+    }, children: [
+      /* @__PURE__ */ jsx5("span", { children: isGeneric ? "\u{1F464}" : "\u{1F3E2}" }),
+      /* @__PURE__ */ jsx5("span", { children: isGeneric ? "Personal account" : `Business account for ${domain}` })
+    ] }),
+    error && /* @__PURE__ */ jsx5("div", { style: styles.error, children: error }),
+    /* @__PURE__ */ jsxs4("form", { onSubmit: handleSubmit, style: styles.form, children: [
+      /* @__PURE__ */ jsxs4("div", { style: { display: "grid", gridTemplateColumns: "1fr 1fr", gap: "1rem" }, children: [
+        /* @__PURE__ */ jsxs4("div", { style: styles.inputGroup, children: [
+          /* @__PURE__ */ jsx5("label", { style: styles.label, children: "First name" }),
+          /* @__PURE__ */ jsx5(
+            "input",
+            {
+              type: "text",
+              value: givenName,
+              onChange: (e) => setGivenName(e.target.value),
+              placeholder: "John",
+              style: styles.input
+            }
+          )
+        ] }),
+        /* @__PURE__ */ jsxs4("div", { style: styles.inputGroup, children: [
+          /* @__PURE__ */ jsx5("label", { style: styles.label, children: "Last name" }),
+          /* @__PURE__ */ jsx5(
+            "input",
+            {
+              type: "text",
+              value: familyName,
+              onChange: (e) => setFamilyName(e.target.value),
+              placeholder: "Doe",
+              style: styles.input
+            }
+          )
+        ] })
+      ] }),
+      !isGeneric && /* @__PURE__ */ jsxs4(Fragment2, { children: [
+        /* @__PURE__ */ jsxs4("div", { style: styles.inputGroup, children: [
+          /* @__PURE__ */ jsx5("label", { style: styles.label, children: "Tenant name" }),
+          /* @__PURE__ */ jsx5(
+            "input",
+            {
+              type: "text",
+              value: tenantName,
+              onChange: (e) => {
+                setTenantName(e.target.value);
+                setSlug(e.target.value.toLowerCase().replace(/[^a-z0-9]/g, ""));
+              },
+              placeholder: "Acme Inc.",
+              required: true,
+              style: styles.input
+            }
+          )
+        ] }),
+        /* @__PURE__ */ jsxs4("div", { style: styles.inputGroup, children: [
+          /* @__PURE__ */ jsx5("label", { style: styles.label, children: "URL slug" }),
+          /* @__PURE__ */ jsxs4("div", { style: { display: "flex", alignItems: "stretch" }, children: [
+            /* @__PURE__ */ jsx5("span", { style: {
+              padding: "0.5rem 0.75rem",
+              background: "rgba(255,255,255,0.05)",
+              border: "1px solid rgba(255,255,255,0.1)",
+              borderRight: "none",
+              borderRadius: "0.5rem 0 0 0.5rem",
+              color: "#9ca3af",
+              fontSize: "0.875rem",
+              display: "flex",
+              alignItems: "center"
+            }, children: "app.example.com/" }),
+            /* @__PURE__ */ jsx5(
+              "input",
+              {
+                type: "text",
+                value: slug,
+                onChange: (e) => setSlug(e.target.value.toLowerCase().replace(/[^a-z0-9-]/g, "")),
+                placeholder: "acme",
+                required: true,
+                style: {
+                  ...styles.input,
+                  borderRadius: "0 0.5rem 0.5rem 0",
+                  flex: 1
+                }
+              }
+            )
+          ] }),
+          checkingSlug && /* @__PURE__ */ jsx5("p", { style: { fontSize: "0.75rem", color: "#9ca3af", marginTop: "0.25rem" }, children: "Checking availability..." }),
+          !checkingSlug && slugAvailable === true && /* @__PURE__ */ jsx5("p", { style: { fontSize: "0.75rem", color: "#16a34a", marginTop: "0.25rem" }, children: "\u2713 Available" }),
+          !checkingSlug && slugAvailable === false && /* @__PURE__ */ jsx5("p", { style: { fontSize: "0.75rem", color: "#dc2626", marginTop: "0.25rem" }, children: "\u2717 Already taken" })
+        ] })
+      ] }),
+      /* @__PURE__ */ jsxs4("div", { style: styles.inputGroup, children: [
+        /* @__PURE__ */ jsx5("label", { style: styles.label, children: "Password" }),
+        /* @__PURE__ */ jsx5(
+          "input",
+          {
+            type: "password",
+            value: password,
+            onChange: (e) => setPassword(e.target.value),
+            placeholder: "\u2022\u2022\u2022\u2022\u2022\u2022\u2022\u2022",
+            required: true,
+            minLength: 8,
+            style: styles.input
+          }
+        ),
+        /* @__PURE__ */ jsx5("p", { style: { fontSize: "0.75rem", color: "#9ca3af", marginTop: "0.25rem" }, children: "At least 8 characters" })
+      ] }),
+      /* @__PURE__ */ jsxs4("div", { style: styles.inputGroup, children: [
+        /* @__PURE__ */ jsx5("label", { style: styles.label, children: "Confirm password" }),
+        /* @__PURE__ */ jsx5(
+          "input",
+          {
+            type: "password",
+            value: confirmPassword,
+            onChange: (e) => setConfirmPassword(e.target.value),
+            placeholder: "\u2022\u2022\u2022\u2022\u2022\u2022\u2022\u2022",
+            required: true,
+            style: styles.input
+          }
+        )
+      ] }),
+      /* @__PURE__ */ jsx5(
+        "button",
+        {
+          type: "submit",
+          disabled: isLoading || !isGeneric && slugAvailable === false,
+          style: {
+            ...styles.primaryButton,
+            width: "100%",
+            ...isLoading || !isGeneric && slugAvailable === false ? styles.buttonDisabled : {}
+          },
+          children: isLoading ? "Creating account..." : isGeneric ? "Create Personal Account" : "Create Organization"
+        }
+      )
+    ] })
+  ] });
+}
+export {
+  AppAccessEventHandler,
+  AuthVitalEventHandler,
+  AuthVitalProvider,
+  CompleteSignupForm,
+  InviteEventHandler,
+  LicenseEventHandler,
+  MemberEventHandler,
+  ProtectedRoute,
+  SYNC_EVENT_TYPES,
+  SignUpForm,
+  SubjectEventHandler,
+  VerifyEmail,
+  WebhookRouter,
+  AuthVitalWebhooks as WebhookVerifier,
+  captureInviteTokenFromUrl,
+  checkAuthStatus,
+  clearStoredInviteToken,
+  consumeInvitation,
+  createInvitation,
+  decodeJwt,
+  decodeState,
+  encodeState,
+  exchangeCodeForTokens,
+  extractCallbackParams,
+  generateCodeChallenge,
+  generateCodeVerifier,
+  getInvitation,
+  getStoredInviteToken,
+  getStyles,
+  handleCallback,
+  isAppAccessEvent,
+  isInviteEvent,
+  isLicenseEvent,
+  isMemberEvent,
+  isSubjectEvent,
+  listTenantInvitations,
+  loginToAuthVital,
+  logout,
+  revokeInvitation,
+  signupAtAuthVital,
+  startAuthorizationFlow,
+  startLogin,
+  startSignup,
+  storeInviteToken,
+  useAuth,
+  useAuthVitalConfig,
+  useInvitation,
+  useOAuth,
+  useTenant,
+  useTenants,
+  useUser
+};