better-auth-lead 0.0.1-dev.1 → 0.1.0

package/README.md

@@ -11,9 +11,11 @@ npm install better-auth-lead
 pnpm add better-auth-lead
 # yarn
 yarn add better-auth-lead
+# bun
+bun add better-auth-lead
 ```
 
-## Usage
+Add the plugin to your auth config
 
 ```ts
 // server/auth.ts
@@ -28,7 +30,14 @@ const betterAuth = createBetterAuth({
 Run better auth migration to create the lead table:
 
 ```bash
+# npm
 npx auth@latest generate
+# pnpm
+pnpm dlx auth@latest generate
+# yarn
+yarn dlx auth@latest generate
+# bun
+bun x auth@latest generate
 ```
 
 Add the lead plugin to your auth client:
@@ -42,3 +51,154 @@ const authClient = createAuthClient({
   plugins: [leadClient()],
 });
 ```
+
+## Usage
+
+### Subscribe
+
+```ts
+// POST /lead/subscribe
+const { data, error } = await authClient.lead.subscribe({
+  email: 'user@example.com',
+  // json object
+  metadata: {
+    preferences: 'engineering',
+  },
+});
+```
+
+### Verify
+
+```ts
+// GET /lead/verify
+await authClient.lead.verify({
+  query: {
+    token,
+  },
+});
+```
+
+### Unsubscribe
+
+```ts
+// POST /lead/unsubscribe
+const { data, error } = await authClient.lead.unsubscribe({ id: 'lead-id' });
+```
+
+### Resend
+
+```ts
+// POST /lead/resend
+const { data, error } = await authClient.lead.resend({
+  email: 'user@example.com',
+});
+```
+
+### Update
+
+```ts
+// POST /lead/update
+const { data, error } = await authClient.lead.update({
+  id: 'lead-id',
+  metadata: {
+    preferences: 'ai',
+  },
+});
+```
+
+### Email Verification
+
+To enable email verification, you need to pass a function that sends a verification email with a link. The `sendVerificationEmail` takes a data object with the following properties:
+
+- `email`: The lead email.
+- `url`: The URL to send to the user which contains the token.
+- `token`: A verification token used to complete the email verification.
+
+and a `request` object as the second parameter.
+
+```ts
+// server/auth.ts
+import { betterAuth } from 'better-auth';
+import { lead } from 'better-auth-lead';
+import { sendEmail } from './email'; // your email sending function
+
+export const auth = betterAuth({
+  plugins: [
+    lead({
+      sendVerificationEmail: async ({ email, url, token }) => {
+        void sendEmail({
+          to: email,
+          subject: 'Newsletter: Verify your email address',
+          text: `Click the link to verify your email: ${url}`,
+        });
+      },
+      onEmailVerified: async ({ lead }) => {
+        // do something when a lead's email is verified
+        console.log(`Lead ${lead.email} has been verified!`);
+      },
+    }),
+  ],
+});
+```
+
+> Avoid awaiting the email sending to prevent timing attacks.
+
+Additionally, you can provide an `onEmailVerified` callback to execute logic after a lead's email is verified.
+
+### Metadata Validation
+
+To validate and parse metadata, you can pass a Standard Schema compatible schema (e.g. Zod, Valibot, ArkType).
+
+```ts
+// server/auth.ts
+import { betterAuth } from 'better-auth';
+import { lead } from 'better-auth-lead';
+import * as z from 'zod';
+
+const metadataSchema = z.object({
+  preferences: z.enum(['engineering', 'marketing', 'design']),
+});
+
+export const auth = betterAuth({
+  plugins: [
+    lead({
+      metadata: {
+        validationSchema: metadataSchema,
+      },
+    }),
+  ],
+});
+```
+
+If the schema validation fails, the API `subscribe` and `update` routes will return a `400 Bad Request` error with `INVALID_METADATA`.
+
+## Schema
+
+### Lead
+
+Table name: `lead`
+
+|  Field         |  Type   |  Key   |  Description                    |
+| -------------- | ------- | ------ | ------------------------------- |
+| id             | string  | pk     | Unique identifier for each lead |
+| email          | string  | unique | Email address of the lead       |
+|  emailVerified | boolean |        | Whether the email is verified   |
+| metadata       | json    | ?      | Additional data about the lead  |
+| createdAt      | date    |        | Timestamp of lead creation      |
+| updatedAt      | date    |        | Timestamp of last update        |
+
+#### Prisma
+
+```prisma
+model Lead {
+  id            String   @id
+  createdAt     DateTime @default(now())
+  updatedAt     DateTime @updatedAt
+  email         String
+  emailVerified Boolean  @default(false)
+  metadata      String?
+
+  @@unique([email])
+  @@map("lead")
+}
+```

package/dist/client.d.mts

@@ -1,10 +1,16 @@
-import "./type-CedeOvZ6.mjs";
-import { lead } from "./index.mjs";
+import { t as lead } from "./index-B-BhgW_e.mjs";
+import * as better_auth0 from "better-auth";
 
 //#region src/client.d.ts
 declare const leadClient: () => {
   id: "lead";
   $InferServerPlugin: ReturnType<typeof lead>;
+  $ERROR_CODES: {
+    INVALID_EMAIL: better_auth0.RawError<"INVALID_EMAIL">;
+    INVALID_TOKEN: better_auth0.RawError<"INVALID_TOKEN">;
+    TOKEN_EXPIRED: better_auth0.RawError<"TOKEN_EXPIRED">;
+    INVALID_METADATA: better_auth0.RawError<"INVALID_METADATA">;
+  };
 };
 //#endregion
 export { leadClient };

package/dist/client.mjs

@@ -1,11 +1,13 @@
+import { t as LEAD_ERROR_CODES } from "./error-codes-CZUPEOrE.mjs";
 //#region src/client.ts
 const leadClient = () => {
 	return {
 		id: "lead",
-		$InferServerPlugin: {}
+		$InferServerPlugin: {},
+		$ERROR_CODES: LEAD_ERROR_CODES
 	};
 };
-
 //#endregion
 export { leadClient };
+
 //# sourceMappingURL=client.mjs.map

package/dist/client.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"client.mjs","names":[],"sources":["../src/client.ts"],"sourcesContent":["import type { BetterAuthClientPlugin } from 'better-auth/client';\nimport type { lead } from './index';\n\nexport const leadClient = () => {\n  return {\n    id: 'lead',\n    $InferServerPlugin: {} as ReturnType<typeof lead>,\n  } satisfies BetterAuthClientPlugin;\n};\n"],"mappings":";AAGA,MAAa,mBAAmB;AAC9B,QAAO;EACL,IAAI;EACJ,oBAAoB,EAAE;EACvB"}
+{"version":3,"file":"client.mjs","names":[],"sources":["../src/client.ts"],"sourcesContent":["import type { BetterAuthClientPlugin } from 'better-auth/client';\n\nimport { LEAD_ERROR_CODES } from './error-codes';\nimport type { lead } from './index';\n\nexport const leadClient = () => {\n  return {\n    id: 'lead',\n    $InferServerPlugin: {} as ReturnType<typeof lead>,\n    $ERROR_CODES: LEAD_ERROR_CODES,\n  } satisfies BetterAuthClientPlugin;\n};\n"],"mappings":";;AAKA,MAAa,mBAAmB;AAC9B,QAAO;EACL,IAAI;EACJ,oBAAoB,EAAE;EACtB,cAAc;EACf"}

package/dist/error-codes-CZUPEOrE.mjs

@@ -0,0 +1,12 @@
+import { defineErrorCodes } from "better-auth";
+//#region src/error-codes.ts
+const LEAD_ERROR_CODES = defineErrorCodes({
+	INVALID_EMAIL: "Invalid email",
+	INVALID_TOKEN: "Invalid token",
+	TOKEN_EXPIRED: "Token expired",
+	INVALID_METADATA: "Invalid metadata"
+});
+//#endregion
+export { LEAD_ERROR_CODES as t };
+
+//# sourceMappingURL=error-codes-CZUPEOrE.mjs.map

package/dist/error-codes-CZUPEOrE.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"error-codes-CZUPEOrE.mjs","names":[],"sources":["../src/error-codes.ts"],"sourcesContent":["import { defineErrorCodes } from 'better-auth';\n\nexport const LEAD_ERROR_CODES = defineErrorCodes({\n  INVALID_EMAIL: 'Invalid email',\n  INVALID_TOKEN: 'Invalid token',\n  TOKEN_EXPIRED: 'Token expired',\n  INVALID_METADATA: 'Invalid metadata',\n});\n"],"mappings":";;AAEA,MAAa,mBAAmB,iBAAiB;CAC/C,eAAe;CACf,eAAe;CACf,eAAe;CACf,kBAAkB;CACnB,CAAC"}

package/dist/index-B-BhgW_e.d.mts

@@ -0,0 +1,206 @@
+import * as better_auth0 from "better-auth";
+import { InferOptionSchema, StandardSchemaV1 } from "better-auth";
+import * as zod from "zod";
+
+//#region src/schema.d.ts
+declare const lead$1: {
+  lead: {
+    fields: {
+      createdAt: {
+        type: "date";
+        defaultValue: () => Date;
+        required: true;
+        input: false;
+      };
+      updatedAt: {
+        type: "date";
+        defaultValue: () => Date;
+        onUpdate: () => Date;
+        required: true;
+        input: false;
+      };
+      email: {
+        type: "string";
+        required: true;
+        unique: true;
+      };
+      emailVerified: {
+        type: "boolean";
+        defaultValue: false;
+        required: true;
+        input: false;
+      };
+      metadata: {
+        type: "string";
+        required: false;
+      };
+    };
+  };
+};
+//#endregion
+//#region src/type.d.ts
+interface LeadOptions {
+  /**
+   * Send a verification email
+   * @param data the data object
+   * @param request the request object
+   */
+  sendVerificationEmail?: (
+  /**
+   * @param email the email to send the verification email to
+   * @param url the verification url
+   * @param token the verification token
+   */
+
+  data: {
+    email: string;
+    url: string;
+    token: string;
+  }, request?: Request) => Promise<void>;
+  onEmailVerified?: (
+  /**
+   * @param lead the lead that was verified
+   */
+
+  data: {
+    lead: Lead;
+  }, request?: Request) => Promise<void>;
+  /**
+   * Number of seconds the verification token is
+   * valid for.
+   * @default 3600 seconds (1 hour)
+   */
+  expiresIn?: number;
+  /**
+   * Rate limit configuration for /lead/subscribe and /lead/resend endpoints.
+   */
+  rateLimit?: {
+    /**
+     * Time window in seconds for which the rate limit applies.
+     * @default 10 seconds
+     */
+    window: number;
+    /**
+     * Maximum number of requests allowed within the time window.
+     * @default 3 requests
+     */
+    max: number;
+  };
+  /**
+   * Schema for the lead plugin
+   */
+  schema?: InferOptionSchema<typeof lead$1> | undefined;
+  metadata?: {
+    validationSchema?: StandardSchemaV1;
+  };
+}
+interface Lead {
+  /**
+   * Database identifier
+   */
+  id: string;
+  createdAt: Date;
+  updatedAt: Date;
+  email: string;
+  emailVerified: boolean;
+  metadata?: string;
+}
+type LeadPayload = Omit<Lead, 'id' | 'createdAt' | 'updatedAt' | 'emailVerified'>;
+//#endregion
+//#region src/index.d.ts
+declare const lead: <O extends LeadOptions>(options?: O) => {
+  id: "lead";
+  schema: {
+    lead: {
+      fields: {
+        createdAt: {
+          type: "date";
+          defaultValue: () => Date;
+          required: true;
+          input: false;
+        };
+        updatedAt: {
+          type: "date";
+          defaultValue: () => Date;
+          onUpdate: () => Date;
+          required: true;
+          input: false;
+        };
+        email: {
+          type: "string";
+          required: true;
+          unique: true;
+        };
+        emailVerified: {
+          type: "boolean";
+          defaultValue: false;
+          required: true;
+          input: false;
+        };
+        metadata: {
+          type: "string";
+          required: false;
+        };
+      };
+    };
+  };
+  endpoints: {
+    subscribe: better_auth0.StrictEndpoint<"/lead/subscribe", {
+      method: "POST";
+      body: zod.ZodObject<{
+        email: zod.ZodString;
+        metadata: zod.ZodOptional<zod.ZodRecord<zod.ZodString, zod.ZodAny>>;
+      }, better_auth0.$strip>;
+    }, {
+      status: boolean;
+    }>;
+    verify: better_auth0.StrictEndpoint<"/lead/verify", {
+      method: "GET";
+      query: zod.ZodObject<{
+        token: zod.ZodString;
+      }, better_auth0.$strip>;
+    }, {
+      status: boolean;
+    }>;
+    unsubscribe: better_auth0.StrictEndpoint<"/lead/unsubscribe", {
+      method: "POST";
+      body: zod.ZodObject<{
+        id: zod.ZodString;
+      }, better_auth0.$strip>;
+    }, {
+      status: boolean;
+    }>;
+    resend: better_auth0.StrictEndpoint<"/lead/resend", {
+      method: "POST";
+      body: zod.ZodObject<{
+        email: zod.ZodString;
+      }, better_auth0.$strip>;
+    }, {
+      status: boolean;
+    }>;
+    update: better_auth0.StrictEndpoint<"/lead/update", {
+      method: "POST";
+      body: zod.ZodObject<{
+        id: zod.ZodString;
+        metadata: zod.ZodOptional<zod.ZodRecord<zod.ZodString, zod.ZodAny>>;
+      }, better_auth0.$strip>;
+    }, {
+      status: boolean;
+    }>;
+  };
+  options: NoInfer<O>;
+  rateLimit: {
+    pathMatcher: (path: string) => boolean;
+    window: number;
+    max: number;
+  }[];
+  $ERROR_CODES: {
+    INVALID_EMAIL: better_auth0.RawError<"INVALID_EMAIL">;
+    INVALID_TOKEN: better_auth0.RawError<"INVALID_TOKEN">;
+    TOKEN_EXPIRED: better_auth0.RawError<"TOKEN_EXPIRED">;
+    INVALID_METADATA: better_auth0.RawError<"INVALID_METADATA">;
+  };
+};
+//#endregion
+export { LeadPayload as i, Lead as n, LeadOptions as r, lead as t };
+//# sourceMappingURL=index-B-BhgW_e.d.mts.map

package/dist/index.d.mts

@@ -1,90 +1,2 @@
-import { n as LeadOptions, r as LeadPayload, t as Lead } from "./type-CedeOvZ6.mjs";
-import * as better_auth0 from "better-auth";
-import * as zod from "zod";
-
-//#region src/index.d.ts
-declare const lead: <O extends LeadOptions>(options: O) => {
-  id: "lead";
-  schema: {
-    lead: {
-      fields: {
-        createdAt: {
-          type: "date";
-          defaultValue: () => Date;
-          required: true;
-          input: false;
-        };
-        updatedAt: {
-          type: "date";
-          defaultValue: () => Date;
-          onUpdate: () => Date;
-          required: true;
-          input: false;
-        };
-        email: {
-          type: "string";
-          required: true;
-          unique: true;
-        };
-        emailVerified: {
-          type: "boolean";
-          defaultValue: false;
-          required: true;
-          input: false;
-        };
-        metadata: {
-          type: "string";
-          required: false;
-        };
-      };
-    };
-  };
-  endpoints: {
-    subscribe: better_auth0.StrictEndpoint<"/lead/subscribe", {
-      method: "POST";
-      body: zod.ZodObject<{
-        email: zod.ZodEmail;
-        metadata: zod.ZodOptional<zod.ZodRecord<zod.ZodString, zod.ZodAny>>;
-      }, better_auth0.$strip>;
-      metadata: {};
-    }, {
-      status: boolean;
-    }>;
-    verify: better_auth0.StrictEndpoint<"/lead/verify", {
-      method: "GET";
-      query: zod.ZodObject<{
-        token: zod.ZodString;
-      }, better_auth0.$strip>;
-      metadata: {};
-    }, {
-      status: boolean;
-    }>;
-    unsubscribe: better_auth0.StrictEndpoint<"/lead/unsubscribe", {
-      method: "POST";
-      body: zod.ZodObject<{
-        id: zod.ZodString;
-      }, better_auth0.$strip>;
-      metadata: {};
-    }, {
-      status: boolean;
-    }>;
-    resend: better_auth0.StrictEndpoint<"/lead/resend", {
-      method: "POST";
-      body: zod.ZodObject<{
-        email: zod.ZodEmail;
-      }, better_auth0.$strip>;
-      metadata: {};
-    }, {
-      status: boolean;
-    }>;
-  };
-  options: NoInfer<O>;
-  rateLimit: {
-    pathMatcher: (path: string) => boolean;
-    window: number;
-    max: number;
-  }[];
-};
-//#endregion
-export { Lead, LeadOptions, LeadPayload, lead };
-//# sourceMappingURL=index.d.mts.map
+import { i as LeadPayload, n as Lead, r as LeadOptions, t as lead } from "./index-B-BhgW_e.mjs";
+export { Lead, LeadOptions, LeadPayload, lead };

package/dist/index.mjs

@@ -1,57 +1,22 @@
-import "better-auth";
-import { mergeSchema } from "better-auth/db";
+import { t as LEAD_ERROR_CODES } from "./error-codes-CZUPEOrE.mjs";
+import { BASE_ERROR_CODES } from "better-auth";
 import { APIError, createAuthEndpoint, createEmailVerificationToken } from "better-auth/api";
-import * as z from "zod";
 import { jwtVerify } from "jose";
 import { JWTExpired } from "jose/errors";
-
-//#region src/schema.ts
-const lead$1 = { lead: { fields: {
-	createdAt: {
-		type: "date",
-		defaultValue: () => /* @__PURE__ */ new Date(),
-		required: true,
-		input: false
-	},
-	updatedAt: {
-		type: "date",
-		defaultValue: () => /* @__PURE__ */ new Date(),
-		onUpdate: () => /* @__PURE__ */ new Date(),
-		required: true,
-		input: false
-	},
-	email: {
-		type: "string",
-		required: true,
-		unique: true
-	},
-	emailVerified: {
-		type: "boolean",
-		defaultValue: false,
-		required: true,
-		input: false
-	},
-	metadata: {
-		type: "string",
-		required: false
-	}
-} } };
-const getSchema = (options) => {
-	return mergeSchema(lead$1, options.schema);
-};
-
-//#endregion
+import * as z from "zod";
+import { mergeSchema } from "better-auth/db";
 //#region src/routes.ts
 const subscribeSchema = z.object({
-	email: z.email(),
-	metadata: z.record(z.string(), z.any()).optional()
+	email: z.string().meta({ description: "Email address of the lead" }),
+	metadata: z.record(z.string(), z.any()).optional().meta({ description: "Additional metadata to store with the lead" })
 });
 const subscribe = (options) => createAuthEndpoint("/lead/subscribe", {
 	method: "POST",
-	body: subscribeSchema,
-	metadata: {}
+	body: subscribeSchema
 }, async (ctx) => {
-	const { email, metadata } = ctx.body;
+	const { email } = ctx.body;
+	if (!z.email().safeParse(email).success) throw APIError.from("BAD_REQUEST", LEAD_ERROR_CODES.INVALID_EMAIL);
+	const metadata = validateMetadata(options, ctx.body.metadata, ctx.context.logger);
 	const normalizedEmail = email.toLowerCase();
 	let lead = await ctx.context.adapter.findOne({
 		model: "lead",
@@ -78,14 +43,6 @@ const subscribe = (options) => createAuthEndpoint("/lead/subscribe", {
 			}]
 		});
 	}
-	else if (!lead.emailVerified) lead = await ctx.context.adapter.update({
-		model: "lead",
-		where: [{
-			field: "email",
-			value: normalizedEmail
-		}],
-		update: { metadata: metadata ? JSON.stringify(metadata) : lead.metadata }
-	});
 	if (options.sendVerificationEmail && lead && !lead.emailVerified) {
 		const token = await createEmailVerificationToken(ctx.context.secret, normalizedEmail, void 0, options.expiresIn ?? 3600);
 		const url = `${ctx.context.baseURL}/lead/verify?token=${token}`;
@@ -97,22 +54,21 @@ const subscribe = (options) => createAuthEndpoint("/lead/subscribe", {
 	}
 	return ctx.json({ status: true });
 });
-const verifySchema = z.object({ token: z.string() });
+const verifySchema = z.object({ token: z.string().meta({ description: "The token to verify the email" }) });
 const verify = (options) => createAuthEndpoint("/lead/verify", {
 	method: "GET",
-	query: verifySchema,
-	metadata: {}
+	query: verifySchema
 }, async (ctx) => {
 	const { token } = ctx.query;
 	let jwt;
 	try {
 		jwt = await jwtVerify(token, new TextEncoder().encode(ctx.context.secret), { algorithms: ["HS256"] });
 	} catch (e) {
-		if (e instanceof JWTExpired) throw new APIError("UNAUTHORIZED", { message: "Token expired" });
-		throw new APIError("UNAUTHORIZED", { message: "Invalid token" });
+		if (e instanceof JWTExpired) throw APIError.from("UNAUTHORIZED", LEAD_ERROR_CODES.TOKEN_EXPIRED);
+		throw APIError.from("UNAUTHORIZED", LEAD_ERROR_CODES.INVALID_TOKEN);
 	}
 	const parsed = subscribeSchema.parse(jwt.payload);
-	const lead = await ctx.context.adapter.findOne({
+	let lead = await ctx.context.adapter.findOne({
 		model: "lead",
 		where: [{
 			field: "email",
@@ -121,7 +77,7 @@ const verify = (options) => createAuthEndpoint("/lead/verify", {
 	});
 	if (!lead) return ctx.json({ status: true });
 	if (lead.emailVerified) return ctx.json({ status: true });
-	await ctx.context.adapter.update({
+	lead = await ctx.context.adapter.update({
 		model: "lead",
 		where: [{
 			field: "email",
@@ -129,13 +85,14 @@ const verify = (options) => createAuthEndpoint("/lead/verify", {
 		}],
 		update: { emailVerified: true }
 	});
+	if (!lead) return ctx.json({ status: true });
+	if (options.onEmailVerified) await ctx.context.runInBackgroundOrAwait(options.onEmailVerified({ lead }, ctx.request));
 	return ctx.json({ status: true });
 });
-const unsubscribeSchema = z.object({ id: z.string() });
+const unsubscribeSchema = z.object({ id: z.string().meta({ description: "The id of the lead to unsubscribe" }) });
 const unsubscribe = (options) => createAuthEndpoint("/lead/unsubscribe", {
 	method: "POST",
-	body: unsubscribeSchema,
-	metadata: {}
+	body: unsubscribeSchema
 }, async (ctx) => {
 	const { id } = ctx.body;
 	if (!await ctx.context.adapter.findOne({
@@ -154,13 +111,13 @@ const unsubscribe = (options) => createAuthEndpoint("/lead/unsubscribe", {
 	});
 	return ctx.json({ status: true });
 });
-const resendSchema = z.object({ email: z.email() });
+const resendSchema = z.object({ email: z.string().meta({ description: "Email address to resend the verification email to" }) });
 const resend = (options) => createAuthEndpoint("/lead/resend", {
 	method: "POST",
-	body: resendSchema,
-	metadata: {}
+	body: resendSchema
 }, async (ctx) => {
 	const { email } = ctx.body;
+	if (!z.email().safeParse(email).success) throw APIError.from("BAD_REQUEST", LEAD_ERROR_CODES.INVALID_EMAIL);
 	const normalizedEmail = email.toLowerCase();
 	const lead = await ctx.context.adapter.findOne({
 		model: "lead",
@@ -181,10 +138,81 @@ const resend = (options) => createAuthEndpoint("/lead/resend", {
 	}
 	return ctx.json({ status: true });
 });
-
+const updateSchema = z.object({
+	id: z.string().meta({ description: "The id of the lead to update" }),
+	metadata: z.record(z.string(), z.any()).optional().meta({ description: "Additional metadata to store with the lead" })
+});
+const update = (options) => createAuthEndpoint("/lead/update", {
+	method: "POST",
+	body: updateSchema
+}, async (ctx) => {
+	const { id } = ctx.body;
+	if (!await ctx.context.adapter.findOne({
+		model: "lead",
+		where: [{
+			field: "id",
+			value: id
+		}]
+	})) return ctx.json({ status: true });
+	const metadata = validateMetadata(options, ctx.body.metadata, ctx.context.logger);
+	await ctx.context.adapter.update({
+		model: "lead",
+		where: [{
+			field: "id",
+			value: id
+		}],
+		update: { metadata: metadata ? JSON.stringify(metadata) : void 0 }
+	});
+	return ctx.json({ status: true });
+});
+function validateMetadata(options, metadata, logger) {
+	if (!metadata || !options.metadata?.validationSchema) return metadata;
+	const validationResult = options.metadata.validationSchema["~standard"].validate(metadata);
+	if (validationResult instanceof Promise) throw APIError.from("INTERNAL_SERVER_ERROR", BASE_ERROR_CODES.ASYNC_VALIDATION_NOT_SUPPORTED);
+	if (validationResult.issues) {
+		logger.error("Invalid metadata", validationResult.issues);
+		throw APIError.from("BAD_REQUEST", LEAD_ERROR_CODES.INVALID_METADATA);
+	}
+	return validationResult.value;
+}
+//#endregion
+//#region src/schema.ts
+const lead$1 = { lead: { fields: {
+	createdAt: {
+		type: "date",
+		defaultValue: () => /* @__PURE__ */ new Date(),
+		required: true,
+		input: false
+	},
+	updatedAt: {
+		type: "date",
+		defaultValue: () => /* @__PURE__ */ new Date(),
+		onUpdate: () => /* @__PURE__ */ new Date(),
+		required: true,
+		input: false
+	},
+	email: {
+		type: "string",
+		required: true,
+		unique: true
+	},
+	emailVerified: {
+		type: "boolean",
+		defaultValue: false,
+		required: true,
+		input: false
+	},
+	metadata: {
+		type: "string",
+		required: false
+	}
+} } };
+const getSchema = (options) => {
+	return mergeSchema(lead$1, options.schema);
+};
 //#endregion
 //#region src/index.ts
-const lead = (options) => {
+const lead = (options = {}) => {
 	return {
 		id: "lead",
 		schema: getSchema(options),
@@ -192,17 +220,19 @@ const lead = (options) => {
 			subscribe: subscribe(options),
 			verify: verify(options),
 			unsubscribe: unsubscribe(options),
-			resend: resend(options)
+			resend: resend(options),
+			update: update(options)
 		},
 		options,
 		rateLimit: [{
 			pathMatcher: (path) => ["/lead/subscribe", "/lead/resend"].includes(path),
 			window: options.rateLimit?.window ?? 10,
 			max: options.rateLimit?.max ?? 3
-		}]
+		}],
+		$ERROR_CODES: LEAD_ERROR_CODES
 	};
 };
-
 //#endregion
 export { lead };
+
 //# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"index.mjs","names":["lead"],"sources":["../src/schema.ts","../src/routes.ts","../src/index.ts"],"sourcesContent":["import { type BetterAuthPluginDBSchema } from 'better-auth';\nimport type { LeadOptions } from './type';\nimport { mergeSchema } from 'better-auth/db';\n\nexport const lead = {\n  lead: {\n    fields: {\n      createdAt: {\n        type: 'date',\n        defaultValue: () => new Date(),\n        required: true,\n        input: false,\n      },\n      updatedAt: {\n        type: 'date',\n        defaultValue: () => new Date(),\n        onUpdate: () => new Date(),\n        required: true,\n        input: false,\n      },\n      email: {\n        type: 'string',\n        required: true,\n        unique: true,\n      },\n      emailVerified: {\n        type: 'boolean',\n        defaultValue: false,\n        required: true,\n        input: false,\n      },\n      metadata: {\n        type: 'string',\n        required: false,\n      },\n    },\n  },\n} satisfies BetterAuthPluginDBSchema;\n\nexport const getSchema = <O extends LeadOptions>(options: O) => {\n  return mergeSchema(lead, options.schema);\n};\n","import { APIError, createAuthEndpoint, createEmailVerificationToken } from 'better-auth/api';\nimport * as z from 'zod';\nimport type { Lead, LeadOptions, LeadPayload } from './type';\nimport { jwtVerify } from 'jose';\nimport type { JWTPayload, JWTVerifyResult } from 'jose';\nimport { JWTExpired } from 'jose/errors';\n\nconst subscribeSchema = z.object({\n  email: z.email(),\n  metadata: z.record(z.string(), z.any()).optional(),\n});\n\nexport const subscribe = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/subscribe',\n    {\n      method: 'POST',\n      body: subscribeSchema,\n      metadata: {\n        // TODO add openapi\n      },\n    },\n    async (ctx) => {\n      const { email, metadata } = ctx.body;\n\n      const normalizedEmail = email.toLowerCase();\n\n      let lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: normalizedEmail,\n          },\n        ],\n      });\n\n      if (!lead) {\n        try {\n          lead = await ctx.context.adapter.create<LeadPayload, Lead>({\n            model: 'lead',\n            data: {\n              email: normalizedEmail,\n              metadata: metadata ? JSON.stringify(metadata) : undefined,\n            },\n          });\n        } catch (e) {\n          ctx.context.logger.info('Error creating lead');\n          lead = await ctx.context.adapter.findOne<Lead>({\n            model: 'lead',\n            where: [\n              {\n                field: 'email',\n                value: normalizedEmail,\n              },\n            ],\n          });\n        }\n      } else if (!lead.emailVerified) {\n        lead = await ctx.context.adapter.update<Lead>({\n          model: 'lead',\n          where: [\n            {\n              field: 'email',\n              value: normalizedEmail,\n            },\n          ],\n          update: {\n            metadata: metadata ? JSON.stringify(metadata) : lead.metadata,\n          },\n        });\n      }\n\n      if (options.sendVerificationEmail && lead && !lead.emailVerified) {\n        const token = await createEmailVerificationToken(\n          ctx.context.secret,\n          normalizedEmail,\n          undefined,\n          options.expiresIn ?? 3600,\n        );\n        const url = `${ctx.context.baseURL}/lead/verify?token=${token}`;\n\n        await ctx.context.runInBackgroundOrAwait(\n          options.sendVerificationEmail({ email: normalizedEmail, url, token }, ctx.request),\n        );\n      }\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst verifySchema = z.object({\n  token: z.string(),\n});\n\nexport const verify = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/verify',\n    {\n      method: 'GET',\n      query: verifySchema,\n      metadata: {\n        // TODO add openapi\n      },\n    },\n    async (ctx) => {\n      const { token } = ctx.query;\n\n      let jwt: JWTVerifyResult<JWTPayload>;\n      try {\n        jwt = await jwtVerify(token, new TextEncoder().encode(ctx.context.secret), {\n          algorithms: ['HS256'],\n        });\n      } catch (e) {\n        if (e instanceof JWTExpired) {\n          throw new APIError('UNAUTHORIZED', {\n            message: 'Token expired',\n          });\n        }\n        throw new APIError('UNAUTHORIZED', {\n          message: 'Invalid token',\n        });\n      }\n\n      const parsed = subscribeSchema.parse(jwt.payload);\n\n      const lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: parsed.email,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      if (lead.emailVerified) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      await ctx.context.adapter.update<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: parsed.email,\n          },\n        ],\n        update: {\n          emailVerified: true,\n        },\n      });\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst unsubscribeSchema = z.object({\n  id: z.string(),\n});\n\nexport const unsubscribe = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/unsubscribe',\n    {\n      method: 'POST',\n      body: unsubscribeSchema,\n      metadata: {\n        // TODO add openapi\n      },\n    },\n    async (ctx) => {\n      const { id } = ctx.body;\n\n      const lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'id',\n            value: id,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      await ctx.context.adapter.delete({\n        model: 'lead',\n        where: [\n          {\n            field: 'id',\n            value: id,\n          },\n        ],\n      });\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst resendSchema = z.object({\n  email: z.email(),\n});\n\nexport const resend = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/resend',\n    {\n      method: 'POST',\n      body: resendSchema,\n      metadata: {\n        // TODO add openapi\n      },\n    },\n    async (ctx) => {\n      const { email } = ctx.body;\n\n      const normalizedEmail = email.toLowerCase();\n\n      const lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: normalizedEmail,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      if (options.sendVerificationEmail && lead && !lead.emailVerified) {\n        const token = await createEmailVerificationToken(\n          ctx.context.secret,\n          normalizedEmail,\n          undefined,\n          options.expiresIn ?? 3600,\n        );\n        const url = `${ctx.context.baseURL}/lead/verify?token=${token}`;\n\n        await ctx.context.runInBackgroundOrAwait(\n          options.sendVerificationEmail({ email: normalizedEmail, url, token }, ctx.request),\n        );\n      }\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n","import type { BetterAuthPlugin } from 'better-auth';\nimport type { LeadOptions } from './type';\nimport { getSchema } from './schema';\nimport { resend, subscribe, unsubscribe, verify } from './routes';\n\nexport const lead = <O extends LeadOptions>(options: O) => {\n  return {\n    id: 'lead',\n    schema: getSchema(options),\n    endpoints: {\n      subscribe: subscribe(options),\n      verify: verify(options),\n      unsubscribe: unsubscribe(options),\n      resend: resend(options),\n    },\n    options: options as NoInfer<O>,\n    rateLimit: [\n      {\n        pathMatcher: (path) => ['/lead/subscribe', '/lead/resend'].includes(path),\n        window: options.rateLimit?.window ?? 10,\n        max: options.rateLimit?.max ?? 3,\n      },\n    ],\n  } satisfies BetterAuthPlugin;\n};\n\nexport type * from './type';\n"],"mappings":";;;;;;;;AAIA,MAAaA,SAAO,EAClB,MAAM,EACJ,QAAQ;CACN,WAAW;EACT,MAAM;EACN,oCAAoB,IAAI,MAAM;EAC9B,UAAU;EACV,OAAO;EACR;CACD,WAAW;EACT,MAAM;EACN,oCAAoB,IAAI,MAAM;EAC9B,gCAAgB,IAAI,MAAM;EAC1B,UAAU;EACV,OAAO;EACR;CACD,OAAO;EACL,MAAM;EACN,UAAU;EACV,QAAQ;EACT;CACD,eAAe;EACb,MAAM;EACN,cAAc;EACd,UAAU;EACV,OAAO;EACR;CACD,UAAU;EACR,MAAM;EACN,UAAU;EACX;CACF,EACF,EACF;AAED,MAAa,aAAoC,YAAe;AAC9D,QAAO,YAAYA,QAAM,QAAQ,OAAO;;;;;ACjC1C,MAAM,kBAAkB,EAAE,OAAO;CAC/B,OAAO,EAAE,OAAO;CAChB,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,UAAU;CACnD,CAAC;AAEF,MAAa,aAAoC,YAC/C,mBACE,mBACA;CACE,QAAQ;CACR,MAAM;CACN,UAAU,EAET;CACF,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,OAAO,aAAa,IAAI;CAEhC,MAAM,kBAAkB,MAAM,aAAa;CAE3C,IAAI,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACjD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC;AAEF,KAAI,CAAC,KACH,KAAI;AACF,SAAO,MAAM,IAAI,QAAQ,QAAQ,OAA0B;GACzD,OAAO;GACP,MAAM;IACJ,OAAO;IACP,UAAU,WAAW,KAAK,UAAU,SAAS,GAAG;IACjD;GACF,CAAC;UACK,GAAG;AACV,MAAI,QAAQ,OAAO,KAAK,sBAAsB;AAC9C,SAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;GAC7C,OAAO;GACP,OAAO,CACL;IACE,OAAO;IACP,OAAO;IACR,CACF;GACF,CAAC;;UAEK,CAAC,KAAK,cACf,QAAO,MAAM,IAAI,QAAQ,QAAQ,OAAa;EAC5C,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACD,QAAQ,EACN,UAAU,WAAW,KAAK,UAAU,SAAS,GAAG,KAAK,UACtD;EACF,CAAC;AAGJ,KAAI,QAAQ,yBAAyB,QAAQ,CAAC,KAAK,eAAe;EAChE,MAAM,QAAQ,MAAM,6BAClB,IAAI,QAAQ,QACZ,iBACA,QACA,QAAQ,aAAa,KACtB;EACD,MAAM,MAAM,GAAG,IAAI,QAAQ,QAAQ,qBAAqB;AAExD,QAAM,IAAI,QAAQ,uBAChB,QAAQ,sBAAsB;GAAE,OAAO;GAAiB;GAAK;GAAO,EAAE,IAAI,QAAQ,CACnF;;AAGH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,eAAe,EAAE,OAAO,EAC5B,OAAO,EAAE,QAAQ,EAClB,CAAC;AAEF,MAAa,UAAiC,YAC5C,mBACE,gBACA;CACE,QAAQ;CACR,OAAO;CACP,UAAU,EAET;CACF,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,UAAU,IAAI;CAEtB,IAAI;AACJ,KAAI;AACF,QAAM,MAAM,UAAU,OAAO,IAAI,aAAa,CAAC,OAAO,IAAI,QAAQ,OAAO,EAAE,EACzE,YAAY,CAAC,QAAQ,EACtB,CAAC;UACK,GAAG;AACV,MAAI,aAAa,WACf,OAAM,IAAI,SAAS,gBAAgB,EACjC,SAAS,iBACV,CAAC;AAEJ,QAAM,IAAI,SAAS,gBAAgB,EACjC,SAAS,iBACV,CAAC;;CAGJ,MAAM,SAAS,gBAAgB,MAAM,IAAI,QAAQ;CAEjD,MAAM,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACnD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO,OAAO;GACf,CACF;EACF,CAAC;AAEF,KAAI,CAAC,KACH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,KAAI,KAAK,cACP,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,OAAM,IAAI,QAAQ,QAAQ,OAAa;EACrC,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO,OAAO;GACf,CACF;EACD,QAAQ,EACN,eAAe,MAChB;EACF,CAAC;AAEF,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,oBAAoB,EAAE,OAAO,EACjC,IAAI,EAAE,QAAQ,EACf,CAAC;AAEF,MAAa,eAAsC,YACjD,mBACE,qBACA;CACE,QAAQ;CACR,MAAM;CACN,UAAU,EAET;CACF,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,OAAO,IAAI;AAYnB,KAAI,CAVS,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACnD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC,CAGA,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,OAAM,IAAI,QAAQ,QAAQ,OAAO;EAC/B,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC;AAEF,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,eAAe,EAAE,OAAO,EAC5B,OAAO,EAAE,OAAO,EACjB,CAAC;AAEF,MAAa,UAAiC,YAC5C,mBACE,gBACA;CACE,QAAQ;CACR,MAAM;CACN,UAAU,EAET;CACF,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,UAAU,IAAI;CAEtB,MAAM,kBAAkB,MAAM,aAAa;CAE3C,MAAM,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACnD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC;AAEF,KAAI,CAAC,KACH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,KAAI,QAAQ,yBAAyB,QAAQ,CAAC,KAAK,eAAe;EAChE,MAAM,QAAQ,MAAM,6BAClB,IAAI,QAAQ,QACZ,iBACA,QACA,QAAQ,aAAa,KACtB;EACD,MAAM,MAAM,GAAG,IAAI,QAAQ,QAAQ,qBAAqB;AAExD,QAAM,IAAI,QAAQ,uBAChB,QAAQ,sBAAsB;GAAE,OAAO;GAAiB;GAAK;GAAO,EAAE,IAAI,QAAQ,CACnF;;AAGH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;;;;AC1QH,MAAa,QAA+B,YAAe;AACzD,QAAO;EACL,IAAI;EACJ,QAAQ,UAAU,QAAQ;EAC1B,WAAW;GACT,WAAW,UAAU,QAAQ;GAC7B,QAAQ,OAAO,QAAQ;GACvB,aAAa,YAAY,QAAQ;GACjC,QAAQ,OAAO,QAAQ;GACxB;EACQ;EACT,WAAW,CACT;GACE,cAAc,SAAS,CAAC,mBAAmB,eAAe,CAAC,SAAS,KAAK;GACzE,QAAQ,QAAQ,WAAW,UAAU;GACrC,KAAK,QAAQ,WAAW,OAAO;GAChC,CACF;EACF"}
+{"version":3,"file":"index.mjs","names":["lead"],"sources":["../src/routes.ts","../src/schema.ts","../src/index.ts"],"sourcesContent":["import { BASE_ERROR_CODES, type InternalLogger } from 'better-auth';\nimport { APIError, createAuthEndpoint, createEmailVerificationToken } from 'better-auth/api';\nimport { jwtVerify } from 'jose';\nimport type { JWTPayload, JWTVerifyResult } from 'jose';\nimport { JWTExpired } from 'jose/errors';\nimport * as z from 'zod';\n\nimport { LEAD_ERROR_CODES } from './error-codes';\nimport type { Lead, LeadOptions, LeadPayload } from './type';\n\nconst subscribeSchema = z.object({\n  email: z.string().meta({\n    description: 'Email address of the lead',\n  }),\n  metadata: z.record(z.string(), z.any()).optional().meta({\n    description: 'Additional metadata to store with the lead',\n  }),\n});\n\nexport const subscribe = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/subscribe',\n    {\n      method: 'POST',\n      body: subscribeSchema,\n    },\n    async (ctx) => {\n      const { email } = ctx.body;\n\n      const isValidEmail = z.email().safeParse(email);\n      if (!isValidEmail.success) {\n        throw APIError.from('BAD_REQUEST', LEAD_ERROR_CODES.INVALID_EMAIL);\n      }\n\n      const metadata = validateMetadata(options, ctx.body.metadata, ctx.context.logger);\n\n      const normalizedEmail = email.toLowerCase();\n\n      let lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: normalizedEmail,\n          },\n        ],\n      });\n\n      if (!lead) {\n        try {\n          lead = await ctx.context.adapter.create<LeadPayload, Lead>({\n            model: 'lead',\n            data: {\n              email: normalizedEmail,\n              metadata: metadata ? JSON.stringify(metadata) : undefined,\n            },\n          });\n        } catch (e) {\n          ctx.context.logger.info('Error creating lead');\n          lead = await ctx.context.adapter.findOne<Lead>({\n            model: 'lead',\n            where: [\n              {\n                field: 'email',\n                value: normalizedEmail,\n              },\n            ],\n          });\n        }\n      }\n\n      if (options.sendVerificationEmail && lead && !lead.emailVerified) {\n        const token = await createEmailVerificationToken(\n          ctx.context.secret,\n          normalizedEmail,\n          undefined,\n          options.expiresIn ?? 3600,\n        );\n        const url = `${ctx.context.baseURL}/lead/verify?token=${token}`;\n\n        await ctx.context.runInBackgroundOrAwait(\n          options.sendVerificationEmail({ email: normalizedEmail, url, token }, ctx.request),\n        );\n      }\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst verifySchema = z.object({\n  token: z.string().meta({\n    description: 'The token to verify the email',\n  }),\n});\n\nexport const verify = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/verify',\n    {\n      method: 'GET',\n      query: verifySchema,\n    },\n    async (ctx) => {\n      const { token } = ctx.query;\n\n      let jwt: JWTVerifyResult<JWTPayload>;\n      try {\n        jwt = await jwtVerify(token, new TextEncoder().encode(ctx.context.secret), {\n          algorithms: ['HS256'],\n        });\n      } catch (e) {\n        if (e instanceof JWTExpired) {\n          throw APIError.from('UNAUTHORIZED', LEAD_ERROR_CODES.TOKEN_EXPIRED);\n        }\n        throw APIError.from('UNAUTHORIZED', LEAD_ERROR_CODES.INVALID_TOKEN);\n      }\n\n      const parsed = subscribeSchema.parse(jwt.payload);\n\n      let lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: parsed.email,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      if (lead.emailVerified) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      lead = await ctx.context.adapter.update<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: parsed.email,\n          },\n        ],\n        update: {\n          emailVerified: true,\n        },\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      if (options.onEmailVerified) {\n        await ctx.context.runInBackgroundOrAwait(options.onEmailVerified({ lead }, ctx.request));\n      }\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst unsubscribeSchema = z.object({\n  id: z.string().meta({\n    description: 'The id of the lead to unsubscribe',\n  }),\n});\n\nexport const unsubscribe = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/unsubscribe',\n    {\n      method: 'POST',\n      body: unsubscribeSchema,\n    },\n    async (ctx) => {\n      const { id } = ctx.body;\n\n      const lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'id',\n            value: id,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      await ctx.context.adapter.delete({\n        model: 'lead',\n        where: [\n          {\n            field: 'id',\n            value: id,\n          },\n        ],\n      });\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst resendSchema = z.object({\n  email: z.string().meta({\n    description: 'Email address to resend the verification email to',\n  }),\n});\n\nexport const resend = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/resend',\n    {\n      method: 'POST',\n      body: resendSchema,\n    },\n    async (ctx) => {\n      const { email } = ctx.body;\n\n      const isValidEmail = z.email().safeParse(email);\n      if (!isValidEmail.success) {\n        throw APIError.from('BAD_REQUEST', LEAD_ERROR_CODES.INVALID_EMAIL);\n      }\n\n      const normalizedEmail = email.toLowerCase();\n\n      const lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'email',\n            value: normalizedEmail,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      if (options.sendVerificationEmail && lead && !lead.emailVerified) {\n        const token = await createEmailVerificationToken(\n          ctx.context.secret,\n          normalizedEmail,\n          undefined,\n          options.expiresIn ?? 3600,\n        );\n        const url = `${ctx.context.baseURL}/lead/verify?token=${token}`;\n\n        await ctx.context.runInBackgroundOrAwait(\n          options.sendVerificationEmail({ email: normalizedEmail, url, token }, ctx.request),\n        );\n      }\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nconst updateSchema = z.object({\n  id: z.string().meta({\n    description: 'The id of the lead to update',\n  }),\n  metadata: z.record(z.string(), z.any()).optional().meta({\n    description: 'Additional metadata to store with the lead',\n  }),\n});\n\nexport const update = <O extends LeadOptions>(options: O) =>\n  createAuthEndpoint(\n    '/lead/update',\n    {\n      method: 'POST',\n      body: updateSchema,\n    },\n    async (ctx) => {\n      const { id } = ctx.body;\n\n      const lead = await ctx.context.adapter.findOne<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'id',\n            value: id,\n          },\n        ],\n      });\n\n      if (!lead) {\n        return ctx.json({\n          status: true,\n        });\n      }\n\n      const metadata = validateMetadata(options, ctx.body.metadata, ctx.context.logger);\n\n      await ctx.context.adapter.update<Lead>({\n        model: 'lead',\n        where: [\n          {\n            field: 'id',\n            value: id,\n          },\n        ],\n        update: {\n          metadata: metadata ? JSON.stringify(metadata) : undefined,\n        },\n      });\n\n      return ctx.json({\n        status: true,\n      });\n    },\n  );\n\nfunction validateMetadata(\n  options: LeadOptions,\n  metadata: Record<string, any> | undefined,\n  logger: InternalLogger,\n) {\n  if (!metadata || !options.metadata?.validationSchema) {\n    return metadata;\n  }\n  const validationResult = options.metadata.validationSchema['~standard'].validate(metadata);\n\n  if (validationResult instanceof Promise) {\n    throw APIError.from('INTERNAL_SERVER_ERROR', BASE_ERROR_CODES.ASYNC_VALIDATION_NOT_SUPPORTED);\n  }\n\n  if (validationResult.issues) {\n    logger.error('Invalid metadata', validationResult.issues);\n    throw APIError.from('BAD_REQUEST', LEAD_ERROR_CODES.INVALID_METADATA);\n  }\n\n  return validationResult.value as Record<string, any>;\n}\n","import { type BetterAuthPluginDBSchema } from 'better-auth';\nimport { mergeSchema } from 'better-auth/db';\n\nimport type { LeadOptions } from './type';\n\nexport const lead = {\n  lead: {\n    fields: {\n      createdAt: {\n        type: 'date',\n        defaultValue: () => new Date(),\n        required: true,\n        input: false,\n      },\n      updatedAt: {\n        type: 'date',\n        defaultValue: () => new Date(),\n        onUpdate: () => new Date(),\n        required: true,\n        input: false,\n      },\n      email: {\n        type: 'string',\n        required: true,\n        unique: true,\n      },\n      emailVerified: {\n        type: 'boolean',\n        defaultValue: false,\n        required: true,\n        input: false,\n      },\n      metadata: {\n        type: 'string',\n        required: false,\n      },\n    },\n  },\n} satisfies BetterAuthPluginDBSchema;\n\nexport const getSchema = <O extends LeadOptions>(options: O) => {\n  return mergeSchema(lead, options.schema);\n};\n","import type { BetterAuthPlugin } from 'better-auth';\n\nimport { LEAD_ERROR_CODES } from './error-codes';\nimport { resend, subscribe, unsubscribe, update, verify } from './routes';\nimport { getSchema } from './schema';\nimport type { LeadOptions } from './type';\n\nexport const lead = <O extends LeadOptions>(options: O = {} as O) => {\n  return {\n    id: 'lead',\n    schema: getSchema(options),\n    endpoints: {\n      subscribe: subscribe(options),\n      verify: verify(options),\n      unsubscribe: unsubscribe(options),\n      resend: resend(options),\n      update: update(options),\n    },\n    options: options as NoInfer<O>,\n    rateLimit: [\n      {\n        pathMatcher: (path) => ['/lead/subscribe', '/lead/resend'].includes(path),\n        window: options.rateLimit?.window ?? 10,\n        max: options.rateLimit?.max ?? 3,\n      },\n    ],\n    $ERROR_CODES: LEAD_ERROR_CODES,\n  } satisfies BetterAuthPlugin;\n};\n\nexport type * from './type';\n"],"mappings":";;;;;;;;AAUA,MAAM,kBAAkB,EAAE,OAAO;CAC/B,OAAO,EAAE,QAAQ,CAAC,KAAK,EACrB,aAAa,6BACd,CAAC;CACF,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,UAAU,CAAC,KAAK,EACtD,aAAa,8CACd,CAAC;CACH,CAAC;AAEF,MAAa,aAAoC,YAC/C,mBACE,mBACA;CACE,QAAQ;CACR,MAAM;CACP,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,UAAU,IAAI;AAGtB,KAAI,CADiB,EAAE,OAAO,CAAC,UAAU,MAAM,CAC7B,QAChB,OAAM,SAAS,KAAK,eAAe,iBAAiB,cAAc;CAGpE,MAAM,WAAW,iBAAiB,SAAS,IAAI,KAAK,UAAU,IAAI,QAAQ,OAAO;CAEjF,MAAM,kBAAkB,MAAM,aAAa;CAE3C,IAAI,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACjD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC;AAEF,KAAI,CAAC,KACH,KAAI;AACF,SAAO,MAAM,IAAI,QAAQ,QAAQ,OAA0B;GACzD,OAAO;GACP,MAAM;IACJ,OAAO;IACP,UAAU,WAAW,KAAK,UAAU,SAAS,GAAG,KAAA;IACjD;GACF,CAAC;UACK,GAAG;AACV,MAAI,QAAQ,OAAO,KAAK,sBAAsB;AAC9C,SAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;GAC7C,OAAO;GACP,OAAO,CACL;IACE,OAAO;IACP,OAAO;IACR,CACF;GACF,CAAC;;AAIN,KAAI,QAAQ,yBAAyB,QAAQ,CAAC,KAAK,eAAe;EAChE,MAAM,QAAQ,MAAM,6BAClB,IAAI,QAAQ,QACZ,iBACA,KAAA,GACA,QAAQ,aAAa,KACtB;EACD,MAAM,MAAM,GAAG,IAAI,QAAQ,QAAQ,qBAAqB;AAExD,QAAM,IAAI,QAAQ,uBAChB,QAAQ,sBAAsB;GAAE,OAAO;GAAiB;GAAK;GAAO,EAAE,IAAI,QAAQ,CACnF;;AAGH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,eAAe,EAAE,OAAO,EAC5B,OAAO,EAAE,QAAQ,CAAC,KAAK,EACrB,aAAa,iCACd,CAAC,EACH,CAAC;AAEF,MAAa,UAAiC,YAC5C,mBACE,gBACA;CACE,QAAQ;CACR,OAAO;CACR,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,UAAU,IAAI;CAEtB,IAAI;AACJ,KAAI;AACF,QAAM,MAAM,UAAU,OAAO,IAAI,aAAa,CAAC,OAAO,IAAI,QAAQ,OAAO,EAAE,EACzE,YAAY,CAAC,QAAQ,EACtB,CAAC;UACK,GAAG;AACV,MAAI,aAAa,WACf,OAAM,SAAS,KAAK,gBAAgB,iBAAiB,cAAc;AAErE,QAAM,SAAS,KAAK,gBAAgB,iBAAiB,cAAc;;CAGrE,MAAM,SAAS,gBAAgB,MAAM,IAAI,QAAQ;CAEjD,IAAI,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACjD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO,OAAO;GACf,CACF;EACF,CAAC;AAEF,KAAI,CAAC,KACH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,KAAI,KAAK,cACP,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,QAAO,MAAM,IAAI,QAAQ,QAAQ,OAAa;EAC5C,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO,OAAO;GACf,CACF;EACD,QAAQ,EACN,eAAe,MAChB;EACF,CAAC;AAEF,KAAI,CAAC,KACH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,KAAI,QAAQ,gBACV,OAAM,IAAI,QAAQ,uBAAuB,QAAQ,gBAAgB,EAAE,MAAM,EAAE,IAAI,QAAQ,CAAC;AAG1F,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,oBAAoB,EAAE,OAAO,EACjC,IAAI,EAAE,QAAQ,CAAC,KAAK,EAClB,aAAa,qCACd,CAAC,EACH,CAAC;AAEF,MAAa,eAAsC,YACjD,mBACE,qBACA;CACE,QAAQ;CACR,MAAM;CACP,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,OAAO,IAAI;AAYnB,KAAI,CAVS,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACnD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC,CAGA,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,OAAM,IAAI,QAAQ,QAAQ,OAAO;EAC/B,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC;AAEF,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,eAAe,EAAE,OAAO,EAC5B,OAAO,EAAE,QAAQ,CAAC,KAAK,EACrB,aAAa,qDACd,CAAC,EACH,CAAC;AAEF,MAAa,UAAiC,YAC5C,mBACE,gBACA;CACE,QAAQ;CACR,MAAM;CACP,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,UAAU,IAAI;AAGtB,KAAI,CADiB,EAAE,OAAO,CAAC,UAAU,MAAM,CAC7B,QAChB,OAAM,SAAS,KAAK,eAAe,iBAAiB,cAAc;CAGpE,MAAM,kBAAkB,MAAM,aAAa;CAE3C,MAAM,OAAO,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACnD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC;AAEF,KAAI,CAAC,KACH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;AAGJ,KAAI,QAAQ,yBAAyB,QAAQ,CAAC,KAAK,eAAe;EAChE,MAAM,QAAQ,MAAM,6BAClB,IAAI,QAAQ,QACZ,iBACA,KAAA,GACA,QAAQ,aAAa,KACtB;EACD,MAAM,MAAM,GAAG,IAAI,QAAQ,QAAQ,qBAAqB;AAExD,QAAM,IAAI,QAAQ,uBAChB,QAAQ,sBAAsB;GAAE,OAAO;GAAiB;GAAK;GAAO,EAAE,IAAI,QAAQ,CACnF;;AAGH,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,MAAM,eAAe,EAAE,OAAO;CAC5B,IAAI,EAAE,QAAQ,CAAC,KAAK,EAClB,aAAa,gCACd,CAAC;CACF,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,UAAU,CAAC,KAAK,EACtD,aAAa,8CACd,CAAC;CACH,CAAC;AAEF,MAAa,UAAiC,YAC5C,mBACE,gBACA;CACE,QAAQ;CACR,MAAM;CACP,EACD,OAAO,QAAQ;CACb,MAAM,EAAE,OAAO,IAAI;AAYnB,KAAI,CAVS,MAAM,IAAI,QAAQ,QAAQ,QAAc;EACnD,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACF,CAAC,CAGA,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;CAGJ,MAAM,WAAW,iBAAiB,SAAS,IAAI,KAAK,UAAU,IAAI,QAAQ,OAAO;AAEjF,OAAM,IAAI,QAAQ,QAAQ,OAAa;EACrC,OAAO;EACP,OAAO,CACL;GACE,OAAO;GACP,OAAO;GACR,CACF;EACD,QAAQ,EACN,UAAU,WAAW,KAAK,UAAU,SAAS,GAAG,KAAA,GACjD;EACF,CAAC;AAEF,QAAO,IAAI,KAAK,EACd,QAAQ,MACT,CAAC;EAEL;AAEH,SAAS,iBACP,SACA,UACA,QACA;AACA,KAAI,CAAC,YAAY,CAAC,QAAQ,UAAU,iBAClC,QAAO;CAET,MAAM,mBAAmB,QAAQ,SAAS,iBAAiB,aAAa,SAAS,SAAS;AAE1F,KAAI,4BAA4B,QAC9B,OAAM,SAAS,KAAK,yBAAyB,iBAAiB,+BAA+B;AAG/F,KAAI,iBAAiB,QAAQ;AAC3B,SAAO,MAAM,oBAAoB,iBAAiB,OAAO;AACzD,QAAM,SAAS,KAAK,eAAe,iBAAiB,iBAAiB;;AAGvE,QAAO,iBAAiB;;;;AC7V1B,MAAaA,SAAO,EAClB,MAAM,EACJ,QAAQ;CACN,WAAW;EACT,MAAM;EACN,oCAAoB,IAAI,MAAM;EAC9B,UAAU;EACV,OAAO;EACR;CACD,WAAW;EACT,MAAM;EACN,oCAAoB,IAAI,MAAM;EAC9B,gCAAgB,IAAI,MAAM;EAC1B,UAAU;EACV,OAAO;EACR;CACD,OAAO;EACL,MAAM;EACN,UAAU;EACV,QAAQ;EACT;CACD,eAAe;EACb,MAAM;EACN,cAAc;EACd,UAAU;EACV,OAAO;EACR;CACD,UAAU;EACR,MAAM;EACN,UAAU;EACX;CACF,EACF,EACF;AAED,MAAa,aAAoC,YAAe;AAC9D,QAAO,YAAYA,QAAM,QAAQ,OAAO;;;;AClC1C,MAAa,QAA+B,UAAa,EAAE,KAAU;AACnE,QAAO;EACL,IAAI;EACJ,QAAQ,UAAU,QAAQ;EAC1B,WAAW;GACT,WAAW,UAAU,QAAQ;GAC7B,QAAQ,OAAO,QAAQ;GACvB,aAAa,YAAY,QAAQ;GACjC,QAAQ,OAAO,QAAQ;GACvB,QAAQ,OAAO,QAAQ;GACxB;EACQ;EACT,WAAW,CACT;GACE,cAAc,SAAS,CAAC,mBAAmB,eAAe,CAAC,SAAS,KAAK;GACzE,QAAQ,QAAQ,WAAW,UAAU;GACrC,KAAK,QAAQ,WAAW,OAAO;GAChC,CACF;EACD,cAAc;EACf"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "better-auth-lead",
-  "version": "0.0.1-dev.1",
+  "version": "0.1.0",
   "description": "Better Auth Lead plugin",
   "homepage": "https://github.com/marcjulian/better-auth-plugins#readme",
   "bugs": {
@@ -25,18 +25,18 @@
     "./package.json": "./package.json"
   },
   "dependencies": {
-    "jose": "^6.1.3",
+    "jose": "^6.2.1",
     "zod": "^4.3.6"
   },
   "devDependencies": {
-    "@types/node": "^25.3.0",
+    "@types/node": "^25.3.5",
     "bumpp": "^10.4.1",
-    "tsdown": "^0.20.3",
+    "tsdown": "^0.21.1",
     "typescript": "^5.9.3",
     "vitest": "^4.0.18"
   },
   "peerDependencies": {
-    "better-auth": "^1.5.1"
+    "better-auth": "^1.5.0"
   },
   "scripts": {
     "build": "tsdown",

package/dist/type-CedeOvZ6.d.mts

@@ -1,98 +0,0 @@
-import { InferOptionSchema } from "better-auth";
-
-//#region src/schema.d.ts
-declare const lead: {
-  lead: {
-    fields: {
-      createdAt: {
-        type: "date";
-        defaultValue: () => Date;
-        required: true;
-        input: false;
-      };
-      updatedAt: {
-        type: "date";
-        defaultValue: () => Date;
-        onUpdate: () => Date;
-        required: true;
-        input: false;
-      };
-      email: {
-        type: "string";
-        required: true;
-        unique: true;
-      };
-      emailVerified: {
-        type: "boolean";
-        defaultValue: false;
-        required: true;
-        input: false;
-      };
-      metadata: {
-        type: "string";
-        required: false;
-      };
-    };
-  };
-};
-//#endregion
-//#region src/type.d.ts
-interface LeadOptions {
-  /**
-   * Send a verification email
-   * @param data the data object
-   * @param request the request object
-   */
-  sendVerificationEmail?: (
-  /**
-   * @param email the email to send the verification email to
-   * @param url the verification url
-   * @param token the verification token
-   */
-
-  data: {
-    email: string;
-    url: string;
-    token: string;
-  }, request?: Request) => Promise<void>;
-  /**
-   * Number of seconds the verification token is
-   * valid for.
-   * @default 3600 seconds (1 hour)
-   */
-  expiresIn?: number;
-  /**
-   * Rate limit configuration for /lead/subscribe and /lead/resend endpoints.
-   */
-  rateLimit?: {
-    /**
-     * Time window in seconds for which the rate limit applies.
-     * @default 10 seconds
-     */
-    window: number;
-    /**
-     * Maximum number of requests allowed within the time window.
-     * @default 3 requests
-     */
-    max: number;
-  };
-  /**
-   * Schema for the lead plugin
-   */
-  schema?: InferOptionSchema<typeof lead> | undefined;
-}
-interface Lead {
-  /**
-   * Database identifier
-   */
-  id: string;
-  createdAt: Date;
-  updatedAt: Date;
-  email: string;
-  emailVerified: boolean;
-  metadata?: string;
-}
-type LeadPayload = Omit<Lead, 'id' | 'createdAt' | 'updatedAt' | 'emailVerified'>;
-//#endregion
-export { LeadOptions as n, LeadPayload as r, Lead as t };
-//# sourceMappingURL=type-CedeOvZ6.d.mts.map