better-auth 0.0.2-beta.7 → 0.0.2

package/dist/options-CH15FEBw.d.ts

@@ -1,1562 +0,0 @@
-import { A as Adapter, c as Session, U as User, d as Account, S as SessionAdapter, F as FieldAttributes, I as InternalFieldAttributes } from './types-DAxaMWCy.js';
-import { z, ZodSchema } from 'zod';
-
-interface CookieSerializeOptions {
-    /**
-     * Specifies the value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.3|Domain Set-Cookie attribute}. By default, no
-     * domain is set, and most clients will consider the cookie to apply to only
-     * the current domain.
-     */
-    domain?: string | undefined;
-    /**
-     * Specifies a function that will be used to encode a cookie's value. Since
-     * value of a cookie has a limited character set (and must be a simple
-     * string), this function can be used to encode a value into a string suited
-     * for a cookie's value.
-     *
-     * The default function is the global `encodeURIComponent`, which will
-     * encode a JavaScript string into UTF-8 byte sequences and then URL-encode
-     * any that fall outside of the cookie range.
-     */
-    encode?(value: string): string;
-    /**
-     * Specifies the `Date` object to be the value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.1|`Expires` `Set-Cookie` attribute}. By default,
-     * no expiration is set, and most clients will consider this a "non-persistent cookie" and will delete
-     * it on a condition like exiting a web browser application.
-     *
-     * *Note* the {@link https://tools.ietf.org/html/rfc6265#section-5.3|cookie storage model specification}
-     * states that if both `expires` and `maxAge` are set, then `maxAge` takes precedence, but it is
-     * possible not all clients by obey this, so if both are set, they should
-     * point to the same date and time.
-     */
-    expires?: Date | undefined;
-    /**
-     * Specifies the boolean value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.6|`HttpOnly` `Set-Cookie` attribute}.
-     * When truthy, the `HttpOnly` attribute is set, otherwise it is not. By
-     * default, the `HttpOnly` attribute is not set.
-     *
-     * *Note* be careful when setting this to true, as compliant clients will
-     * not allow client-side JavaScript to see the cookie in `document.cookie`.
-     */
-    httpOnly?: boolean | undefined;
-    /**
-     * Specifies the number (in seconds) to be the value for the `Max-Age`
-     * `Set-Cookie` attribute. The given number will be converted to an integer
-     * by rounding down. By default, no maximum age is set.
-     *
-     * *Note* the {@link https://tools.ietf.org/html/rfc6265#section-5.3|cookie storage model specification}
-     * states that if both `expires` and `maxAge` are set, then `maxAge` takes precedence, but it is
-     * possible not all clients by obey this, so if both are set, they should
-     * point to the same date and time.
-     */
-    maxAge?: number | undefined;
-    /**
-     * Specifies the value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.4|`Path` `Set-Cookie` attribute}.
-     * By default, the path is considered the "default path".
-     */
-    path?: string | undefined;
-    /**
-     * Specifies the `string` to be the value for the [`Priority` `Set-Cookie` attribute][rfc-west-cookie-priority-00-4.1].
-     *
-     * - `'low'` will set the `Priority` attribute to `Low`.
-     * - `'medium'` will set the `Priority` attribute to `Medium`, the default priority when not set.
-     * - `'high'` will set the `Priority` attribute to `High`.
-     *
-     * More information about the different priority levels can be found in
-     * [the specification][rfc-west-cookie-priority-00-4.1].
-     *
-     * **note** This is an attribute that has not yet been fully standardized, and may change in the future.
-     * This also means many clients may ignore this attribute until they understand it.
-     */
-    priority?: "low" | "medium" | "high" | undefined;
-    /**
-     * Specifies the boolean or string to be the value for the {@link https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-03#section-4.1.2.7|`SameSite` `Set-Cookie` attribute}.
-     *
-     * - `true` will set the `SameSite` attribute to `Strict` for strict same
-     * site enforcement.
-     * - `false` will not set the `SameSite` attribute.
-     * - `'lax'` will set the `SameSite` attribute to Lax for lax same site
-     * enforcement.
-     * - `'strict'` will set the `SameSite` attribute to Strict for strict same
-     * site enforcement.
-     *  - `'none'` will set the SameSite attribute to None for an explicit
-     *  cross-site cookie.
-     *
-     * More information about the different enforcement levels can be found in {@link https://tools.ietf.org/html/draft-ietf-httpbis-rfc6265bis-03#section-4.1.2.7|the specification}.
-     *
-     * *note* This is an attribute that has not yet been fully standardized, and may change in the future. This also means many clients may ignore this attribute until they understand it.
-     */
-    sameSite?: true | false | "lax" | "strict" | "none" | undefined;
-    /**
-     * Specifies the boolean value for the {@link https://tools.ietf.org/html/rfc6265#section-5.2.5|`Secure` `Set-Cookie` attribute}. When truthy, the
-     * `Secure` attribute is set, otherwise it is not. By default, the `Secure` attribute is not set.
-     *
-     * *Note* be careful when setting this to `true`, as compliant clients will
-     * not send the cookie back to the server in the future if the browser does
-     * not have an HTTPS connection.
-     */
-    secure?: boolean | undefined;
-    /**
-     * Specifies the `boolean` value for the [`Partitioned` `Set-Cookie`](rfc-cutler-httpbis-partitioned-cookies)
-     * attribute. When truthy, the `Partitioned` attribute is set, otherwise it is not. By default, the
-     * `Partitioned` attribute is not set.
-     *
-     * **note** This is an attribute that has not yet been fully standardized, and may change in the future.
-     * This also means many clients may ignore this attribute until they understand it.
-     *
-     * More information about can be found in [the proposal](https://github.com/privacycg/CHIPS)
-     */
-    partitioned?: boolean;
-}
-
-declare const cookieManager: (header: Headers) => CookieManager;
-type CookieManager = {
-    set: (name: string, value: string, options?: CookieSerializeOptions) => void;
-    get: (name: string) => string | null | undefined;
-};
-
-interface BetterAuthPlugin {
-    /**
-     * The unique identifier of the plugin.
-     * This will be used to redirect requests that starts with
-     * the plugin id.
-     */
-    id: string;
-    /**
-     * The name of the plugin.
-     */
-    name: string;
-    /**
-     * The version of the plugin.
-     */
-    version: string;
-    /**
-     * The handler of the plugin. This will be the main
-     * function that will be called if the request matches the
-     * plugin id.
-     */
-    handler?: GenericHandler;
-    /**
-     * Handler hooks
-     */
-    hooks?: HandlerHooks;
-    /**
-     * If the hook should be executed before or after
-     * better-auth internal plugins.
-     */
-    order?: "pre" | "post" | null;
-    getActions?: (options: BetterAuthOptions) => {
-        [key: string]: (request: Request | Headers, input: any) => any;
-    };
-    getClient?: () => {
-        [key: string]: (input: any) => any;
-    };
-    options?: any;
-}
-type BeforeHookHandler<T extends Context = Context> = (ctx: T) => Promise<{
-    response?: InternalResponse;
-    context?: Context;
-} | undefined | null>;
-type AfterHookHandler<T extends Context = Context> = (
-/**
- * The context of the request.
- */
-ctx: T, 
-/**
- * The response from the main function.
- */
-response: InternalResponse) => Promise<{
-    response?: InternalResponse;
-    context?: Context;
-} | undefined | null>;
-
-type InternalRequest<T, Q> = {
-    cookies: ReturnType<typeof cookieManager>;
-    method: string;
-    body: T;
-    query: Q;
-    headers: Headers;
-    url: URL;
-    action: Omit<string, BetterAuthActions> | BetterAuthActions;
-};
-type Body = Record<string, any> | string | null;
-type InternalResponse<T extends Body = any> = {
-    status: number;
-    statusText?: string;
-    body?: T;
-    headers?: Record<string, any>;
-    /**
-     * Metadata for use in plugins.
-     */
-    metadata?: {
-        isError?: boolean;
-    };
-};
-type Context<B = any, Q = any> = {
-    request: InternalRequest<B, Q>;
-} & InternalOptions;
-type GenericHandler<T = any, R extends Body = any, C extends Context = Context> = (ctx: Context<T> & C) => Promise<InternalResponse<R>>;
-type BetterAuthActions = "signin" | "signup" | "signout" | "callback" | "session";
-interface HandlerHooks {
-    /**
-     * A matcher. A hook will be added to an action if the
-     * matcher returns true.
-     */
-    matcher: (context: Context) => boolean;
-    /**
-     * A function that gets executed either before
-     * the main function. If the function returns a result,
-     * that result will be the output of the main function.
-     * If the function returns context, that context will be
-     * passed to the main function. If the function returns
-     * null or undefined, the main function will be executed
-     * with the original context.
-     */
-    before?: BeforeHookHandler;
-    /**
-     * A function that gets executed after the main function.
-     * If the function returns a result, that result will be
-     * the output of the main function.
-     * If the function returns context, that context will be
-     * passed to the main function. If the function returns
-     * null or undefined, the main function will be executed
-     * with the original context.
-     */
-    after?: AfterHookHandler;
-}
-interface CookieOptions {
-    expires?: Date;
-    maxAge?: number;
-    domain?: string;
-    path?: string;
-    secure?: boolean;
-    httpOnly?: boolean;
-    sameSite?: string;
-}
-
-declare const createInternalAdapter: (db: Adapter) => {
-    createSession: (userId: string, context: Context) => Promise<Session>;
-    updateSession: (session: Session, context: Context) => Promise<Session>;
-    deleteSession: (id: string, context: Context) => Promise<Session>;
-    createUser: (data: {
-        user: Record<string, any>;
-        account: {
-            providerId: string;
-            accountId: string;
-            [key: string]: any;
-        };
-    }, context: Context) => Promise<{
-        user: User;
-        account: Account;
-    }>;
-    updateUserByEmail: (email: string, data: Record<string, any>, context: Context) => Promise<User>;
-    findUserByEmail: (email: string, context: Context) => Promise<User | null>;
-    findSession: (id: string, context: Context) => Promise<Session | null>;
-    findUserById: (id: string, context: Context) => Promise<User | null>;
-    findAccount: (input: {
-        providerId: string;
-        accountId: string;
-    }, context: Context) => Promise<Account | null>;
-    linkAccount: (input: {
-        userId: string;
-        providerId: string;
-        accountId: string;
-    }, context: Context) => Promise<Account>;
-};
-type InternalAdapter$1 = ReturnType<typeof createInternalAdapter>;
-
-declare function getCookies(options: BetterAuthOptions): {
-    sessionToken: {
-        name: string;
-        options: {
-            domain?: string | undefined;
-            encode?: ((value: string) => string) | undefined;
-            expires?: Date | undefined;
-            httpOnly: boolean;
-            maxAge: number;
-            path: string;
-            priority?: "low" | "medium" | "high" | undefined;
-            sameSite: boolean | "lax" | "strict" | "none";
-            secure: boolean;
-            partitioned?: boolean | undefined;
-        };
-    };
-    csrfToken: {
-        name: string;
-        options: {
-            httpOnly: true;
-            sameSite: "lax";
-            path: string;
-            secure: boolean;
-        };
-    };
-    state: {
-        name: string;
-        options: {
-            httpOnly: true;
-            sameSite: "lax";
-            path: string;
-            secure: boolean;
-            maxAge: number;
-        };
-    };
-    pkCodeVerifier: {
-        name: string;
-        options: CookieSerializeOptions;
-    };
-    nonce: {
-        name: string;
-        options: CookieSerializeOptions;
-    };
-};
-
-declare const signUpSchema: z.ZodObject<{
-    data: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodAny>>;
-    provider: z.ZodString;
-    currentURL: z.ZodString;
-    callbackURL: z.ZodOptional<z.ZodString>;
-    autoCreateSession: z.ZodOptional<z.ZodBoolean>;
-}, "strip", z.ZodTypeAny, {
-    provider: string;
-    currentURL: string;
-    callbackURL?: string | undefined;
-    data?: Record<string, any> | undefined;
-    autoCreateSession?: boolean | undefined;
-}, {
-    provider: string;
-    currentURL: string;
-    callbackURL?: string | undefined;
-    data?: Record<string, any> | undefined;
-    autoCreateSession?: boolean | undefined;
-}>;
-type SignUpContext = Context<z.infer<typeof signUpSchema>>;
-
-interface AppleProfile {
-    /**
-     * The subject registered claim identifies the principal that’s the subject
-     * of the identity token. Because this token is for your app, the value is
-     * the unique identifier for the user.
-     */
-    sub: string;
-    /**
-     * A String value representing the user's email address.
-     * The email address is either the user's real email address or the proxy
-     * address, depending on their status private email relay service.
-     */
-    email: string;
-    /**
-     * A string or Boolean value that indicates whether the service verifies
-     * the email. The value can either be a string ("true" or "false") or a
-     * Boolean (true or false). The system may not verify email addresses for
-     * Sign in with Apple at Work & School users, and this claim is "false" or
-     * false for those users.
-     */
-    email_verified: true | "true";
-    /**
-     * A string or Boolean value that indicates whether the email that the user
-     * shares is the proxy address. The value can either be a string ("true" or
-     * "false") or a Boolean (true or false).
-     */
-    is_private_email: boolean;
-    /**
-     * An Integer value that indicates whether the user appears to be a real
-     * person. Use the value of this claim to mitigate fraud. The possible
-     * values are: 0 (or Unsupported), 1 (or Unknown), 2 (or LikelyReal). For
-     * more information, see ASUserDetectionStatus. This claim is present only
-     * in iOS 14 and later, macOS 11 and later, watchOS 7 and later, tvOS 14
-     * and later. The claim isn’t present or supported for web-based apps.
-     */
-    real_user_status: number;
-    /**
-     * The user’s full name in the format provided during the authorization
-     * process.
-     */
-    name: string;
-}
-interface AppleOption extends ProviderOptions<AppleProfile> {
-}
-declare const apple: (options: AppleOption) => {
-    id: "apple";
-    name: string;
-    type: "oidc";
-    params: {
-        authorizationEndpoint: string;
-        tokenEndpoint: string;
-        linkAccounts: {
-            field: string;
-            key: keyof AppleProfile;
-            enabler?: ((profile: AppleProfile) => boolean | Promise<boolean>) | undefined;
-        } | undefined;
-        redirectURL: string | undefined;
-        clientId: string;
-        clientSecret: string;
-    };
-    issuer: string;
-    scopes: string[];
-    getUserInfo(tokens: {
-        accessToken: string;
-        id_token: string;
-        refresh_token?: string | undefined;
-        expires_in?: number | undefined;
-    }): Promise<{
-        id: string;
-        email: string;
-        emailVerified: boolean;
-        /**
-         * The subject registered claim identifies the principal that’s the subject
-         * of the identity token. Because this token is for your app, the value is
-         * the unique identifier for the user.
-         */
-        sub: string;
-        /**
-         * A string or Boolean value that indicates whether the service verifies
-         * the email. The value can either be a string ("true" or "false") or a
-         * Boolean (true or false). The system may not verify email addresses for
-         * Sign in with Apple at Work & School users, and this claim is "false" or
-         * false for those users.
-         */
-        email_verified: true | "true";
-        /**
-         * A string or Boolean value that indicates whether the email that the user
-         * shares is the proxy address. The value can either be a string ("true" or
-         * "false") or a Boolean (true or false).
-         */
-        is_private_email: boolean;
-        /**
-         * An Integer value that indicates whether the user appears to be a real
-         * person. Use the value of this claim to mitigate fraud. The possible
-         * values are: 0 (or Unsupported), 1 (or Unknown), 2 (or LikelyReal). For
-         * more information, see ASUserDetectionStatus. This claim is present only
-         * in iOS 14 and later, macOS 11 and later, watchOS 7 and later, tvOS 14
-         * and later. The claim isn’t present or supported for web-based apps.
-         */
-        real_user_status: number;
-        /**
-         * The user’s full name in the format provided during the authorization
-         * process.
-         */
-        name: string;
-    }>;
-};
-
-type CredentialOption = {};
-/**
- * Credential provider for better auth.
- * Note: Credential provider only works on node environment.
- * It uses argon2 for hashing the password.
- */
-declare const credential: <O extends CredentialOption>(options?: O) => {
-    id: "credential";
-    name: string;
-    type: "custom";
-    signIn(context: Context): Promise<{
-        status: number;
-        body: {
-            error: string;
-            redirect?: undefined;
-            url?: undefined;
-        };
-    } | {
-        status: number;
-        body: {
-            redirect: boolean;
-            url: string;
-            error?: undefined;
-        };
-    }>;
-    signUp(context: SignUpContext): Promise<{
-        status: number;
-        body: {
-            error: string;
-            redirect?: undefined;
-            url?: undefined;
-        };
-    } | {
-        status: number;
-        body: {
-            redirect: boolean;
-            url: string | undefined;
-            error?: undefined;
-        };
-    }>;
-    input: z.ZodObject<{
-        email: z.ZodString;
-        password: z.ZodString;
-    }, "strip", z.ZodTypeAny, {
-        email: string;
-        password: string;
-    }, {
-        email: string;
-        password: string;
-    }>;
-};
-
-interface DiscordProfile extends Record<string, any> {
-    /** the user's id (i.e. the numerical snowflake) */
-    id: string;
-    /** the user's username, not unique across the platform */
-    username: string;
-    /** the user's Discord-tag */
-    discriminator: string;
-    /** the user's display name, if it is set  */
-    global_name: string | null;
-    /**
-     * the user's avatar hash:
-     * https://discord.com/developers/docs/reference#image-formatting
-     */
-    avatar: string | null;
-    /** whether the user belongs to an OAuth2 application */
-    bot?: boolean;
-    /**
-     * whether the user is an Official Discord System user (part of the urgent
-     * message system)
-     */
-    system?: boolean;
-    /** whether the user has two factor enabled on their account */
-    mfa_enabled: boolean;
-    /**
-     * the user's banner hash:
-     * https://discord.com/developers/docs/reference#image-formatting
-     */
-    banner: string | null;
-    /** the user's banner color encoded as an integer representation of hexadecimal color code */
-    accent_color: number | null;
-    /**
-     * the user's chosen language option:
-     * https://discord.com/developers/docs/reference#locales
-     */
-    locale: string;
-    /** whether the email on this account has been verified */
-    verified: boolean;
-    /** the user's email */
-    email: string;
-    /**
-     * the flags on a user's account:
-     * https://discord.com/developers/docs/resources/user#user-object-user-flags
-     */
-    flags: number;
-    /**
-     * the type of Nitro subscription on a user's account:
-     * https://discord.com/developers/docs/resources/user#user-object-premium-types
-     */
-    premium_type: number;
-    /**
-     * the public flags on a user's account:
-     * https://discord.com/developers/docs/resources/user#user-object-user-flags
-     */
-    public_flags: number;
-    /** undocumented field; corresponds to the user's custom nickname */
-    display_name: string | null;
-    /**
-     * undocumented field; corresponds to the Discord feature where you can e.g.
-     * put your avatar inside of an ice cube
-     */
-    avatar_decoration: string | null;
-    /**
-     * undocumented field; corresponds to the premium feature where you can
-     * select a custom banner color
-     */
-    banner_color: string | null;
-    /** undocumented field; the CDN URL of their profile picture */
-    image_url: string;
-}
-interface DiscordOptions extends ProviderOptions<DiscordProfile> {
-}
-declare const discord: (options: DiscordOptions) => {
-    id: "discord";
-    name: string;
-    type: "oauth";
-    params: {
-        clientId: string;
-        clientSecret: string;
-        linkAccounts: {
-            field: string;
-            key: keyof DiscordProfile;
-            enabler?: ((profile: DiscordProfile) => boolean | Promise<boolean>) | undefined;
-        } | undefined;
-        authorizationEndpoint: string;
-        tokenEndpoint: string;
-        redirectURL: string | undefined;
-    };
-    scopes: string[];
-    getUserInfo(tokens: TokenResponse): Promise<{
-        id: string;
-        email: string;
-        name: string;
-        emailVerified: boolean;
-        image: string;
-        /** the user's username, not unique across the platform */
-        username: string;
-        /** the user's Discord-tag */
-        discriminator: string;
-        /** the user's display name, if it is set  */
-        global_name: string | null;
-        /**
-         * the user's avatar hash:
-         * https://discord.com/developers/docs/reference#image-formatting
-         */
-        avatar: string | null;
-        /** whether the user belongs to an OAuth2 application */
-        bot?: boolean;
-        /**
-         * whether the user is an Official Discord System user (part of the urgent
-         * message system)
-         */
-        system?: boolean;
-        /** whether the user has two factor enabled on their account */
-        mfa_enabled: boolean;
-        /**
-         * the user's banner hash:
-         * https://discord.com/developers/docs/reference#image-formatting
-         */
-        banner: string | null;
-        /** the user's banner color encoded as an integer representation of hexadecimal color code */
-        accent_color: number | null;
-        /**
-         * the user's chosen language option:
-         * https://discord.com/developers/docs/reference#locales
-         */
-        locale: string;
-        /** whether the email on this account has been verified */
-        verified: boolean;
-        /**
-         * the flags on a user's account:
-         * https://discord.com/developers/docs/resources/user#user-object-user-flags
-         */
-        flags: number;
-        /**
-         * the type of Nitro subscription on a user's account:
-         * https://discord.com/developers/docs/resources/user#user-object-premium-types
-         */
-        premium_type: number;
-        /**
-         * the public flags on a user's account:
-         * https://discord.com/developers/docs/resources/user#user-object-user-flags
-         */
-        public_flags: number;
-        /** undocumented field; corresponds to the user's custom nickname */
-        display_name: string | null;
-        /**
-         * undocumented field; corresponds to the Discord feature where you can e.g.
-         * put your avatar inside of an ice cube
-         */
-        avatar_decoration: string | null;
-        /**
-         * undocumented field; corresponds to the premium feature where you can
-         * select a custom banner color
-         */
-        banner_color: string | null;
-        /** undocumented field; the CDN URL of their profile picture */
-        image_url: string;
-    }>;
-};
-
-interface FacebookProfile {
-    id: string;
-    name: string;
-    email: string;
-    email_verified: boolean;
-    picture: {
-        data: {
-            height: number;
-            is_silhouette: boolean;
-            url: string;
-            width: number;
-        };
-    };
-}
-interface FacebookOptions extends ProviderOptions<FacebookProfile> {
-}
-declare const facebook: (options: FacebookOptions) => {
-    id: "facebook";
-    name: string;
-    type: "oauth";
-    scopes: string[];
-    params: {
-        clientId: string;
-        clientSecret: string;
-        redirectURL: string | undefined;
-        authorizationEndpoint: string;
-        tokenEndpoint: string;
-    };
-    getUserInfo(tokens: TokenResponse): Promise<{
-        id: string;
-        name: string;
-        email: string;
-        emailVerified: boolean;
-        email_verified: boolean;
-        picture: {
-            data: {
-                height: number;
-                is_silhouette: boolean;
-                url: string;
-                width: number;
-            };
-        };
-    }>;
-};
-
-interface GithubProfile {
-    login: string;
-    id: string;
-    node_id: string;
-    avatar_url: string;
-    gravatar_id: string;
-    url: string;
-    html_url: string;
-    followers_url: string;
-    following_url: string;
-    gists_url: string;
-    starred_url: string;
-    subscriptions_url: string;
-    organizations_url: string;
-    repos_url: string;
-    events_url: string;
-    received_events_url: string;
-    type: string;
-    site_admin: boolean;
-    name: string;
-    company: string;
-    blog: string;
-    location: string;
-    email: string;
-    hireable: boolean;
-    bio: string;
-    twitter_username: string;
-    public_repos: string;
-    public_gists: string;
-    followers: string;
-    following: string;
-    created_at: string;
-    updated_at: string;
-    private_gists: string;
-    total_private_repos: string;
-    owned_private_repos: string;
-    disk_usage: string;
-    collaborators: string;
-    two_factor_authentication: boolean;
-    plan: {
-        name: string;
-        space: string;
-        private_repos: string;
-        collaborators: string;
-    };
-    first_name: string;
-    last_name: string;
-}
-interface GitHubOptions extends ProviderOptions<GithubProfile> {
-    /**
-     * Whether or not unauthenticated users will be offered
-     * an option to sign up for GitHub during the OAuth flow
-     * The default is true. Use false when a policy prohibits
-     * signup.
-     */
-    allowSignup?: boolean;
-}
-/**
- * Github OAuth provider. This provider allows users to sign
- * in with their Github account.
- */
-declare const github: (options: GitHubOptions) => {
-    id: "github";
-    name: string;
-    type: "oauth";
-    params: {
-        clientId: string;
-        clientSecret: string;
-        redirectURL: string | undefined;
-        linkAccounts: {
-            field: string;
-            key: keyof GithubProfile;
-            enabler?: ((profile: GithubProfile) => boolean | Promise<boolean>) | undefined;
-        } | undefined;
-        tokenEndpoint: string;
-        authorizationEndpoint: string;
-        extra: {
-            allow_signup: string;
-        };
-    };
-    scopes: string[];
-    getUserInfo(tokens: TokenResponse): Promise<{
-        id: string;
-        first_name: string;
-        last_name: string;
-        login: string;
-        node_id: string;
-        avatar_url: string;
-        gravatar_id: string;
-        url: string;
-        html_url: string;
-        followers_url: string;
-        following_url: string;
-        gists_url: string;
-        starred_url: string;
-        subscriptions_url: string;
-        organizations_url: string;
-        repos_url: string;
-        events_url: string;
-        received_events_url: string;
-        type: string;
-        site_admin: boolean;
-        name: string;
-        company: string;
-        blog: string;
-        location: string;
-        email: string;
-        hireable: boolean;
-        bio: string;
-        twitter_username: string;
-        public_repos: string;
-        public_gists: string;
-        followers: string;
-        following: string;
-        created_at: string;
-        updated_at: string;
-        private_gists: string;
-        total_private_repos: string;
-        owned_private_repos: string;
-        disk_usage: string;
-        collaborators: string;
-        two_factor_authentication: boolean;
-        plan: {
-            name: string;
-            space: string;
-            private_repos: string;
-            collaborators: string;
-        };
-    }>;
-};
-
-interface GitLabProfile {
-    /**
-     * the user's id (i.e. the numerical snowflake) as a string
-     */
-    id: string;
-    username: string;
-    email: string;
-    name: string;
-    state: string;
-    avatar_url: string;
-    web_url: string;
-    created_at: string;
-    bio: string;
-    location?: string;
-    public_email: string;
-    skype: string;
-    linkedin: string;
-    twitter: string;
-    website_url: string;
-    organization: string;
-    job_title: string;
-    pronouns: string;
-    bot: boolean;
-    work_information?: string;
-    followers: number;
-    following: number;
-    local_time: string;
-    last_sign_in_at: string;
-    confirmed_at: string;
-    theme_id: number;
-    last_activity_on: string;
-    color_scheme_id: number;
-    projects_limit: number;
-    current_sign_in_at: string;
-    identities: Array<{
-        provider: string;
-        extern_uid: string;
-    }>;
-    can_create_group: boolean;
-    can_create_project: boolean;
-    two_factor_enabled: boolean;
-    external: boolean;
-    private_profile: boolean;
-    commit_email: string;
-    shared_runners_minutes_limit: number;
-    extra_shared_runners_minutes_limit: number;
-}
-interface GitlabOptions extends ProviderOptions<GitLabProfile> {
-    domain?: string;
-}
-declare const gitlab: (options: GitlabOptions) => {
-    id: "gitlab";
-    name: string;
-    type: "oauth";
-    scopes: string[];
-    params: {
-        clientId: string;
-        clientSecret: string;
-        redirectURL: string | undefined;
-        authorizationEndpoint: string;
-        tokenEndpoint: string;
-    };
-    getUserInfo(tokens: TokenResponse): Promise<{
-        id: string;
-        email: string;
-        emailVerified: boolean;
-        image: string;
-        username: string;
-        name: string;
-        state: string;
-        avatar_url: string;
-        web_url: string;
-        created_at: string;
-        bio: string;
-        location?: string;
-        public_email: string;
-        skype: string;
-        linkedin: string;
-        twitter: string;
-        website_url: string;
-        organization: string;
-        job_title: string;
-        pronouns: string;
-        bot: boolean;
-        work_information?: string;
-        followers: number;
-        following: number;
-        local_time: string;
-        last_sign_in_at: string;
-        confirmed_at: string;
-        theme_id: number;
-        last_activity_on: string;
-        color_scheme_id: number;
-        projects_limit: number;
-        current_sign_in_at: string;
-        identities: Array<{
-            provider: string;
-            extern_uid: string;
-        }>;
-        can_create_group: boolean;
-        can_create_project: boolean;
-        two_factor_enabled: boolean;
-        external: boolean;
-        private_profile: boolean;
-        commit_email: string;
-        shared_runners_minutes_limit: number;
-        extra_shared_runners_minutes_limit: number;
-    }>;
-};
-
-interface GoogleProfile {
-    aud: string;
-    azp: string;
-    email: string;
-    email_verified: boolean;
-    exp: number;
-    /**
-     * The family name of the user, or last name in most
-     * Western languages.
-     */
-    family_name: string;
-    /**
-     * The given name of the user, or first name in most
-     * Western languages.
-     */
-    given_name: string;
-    hd?: string;
-    iat: number;
-    iss: string;
-    jti?: string;
-    locale?: string;
-    name: string;
-    nbf?: number;
-    picture: string;
-    sub: string;
-}
-interface GoogleOptions extends ProviderOptions<GoogleProfile> {
-}
-declare const google: (options: GoogleOptions) => {
-    id: "google";
-    name: string;
-    type: "oidc";
-    nonce: true;
-    params: {
-        clientId: string;
-        clientSecret: string;
-        linkAccounts: {
-            field: string;
-            key: keyof GoogleProfile;
-            enabler?: ((profile: GoogleProfile) => boolean | Promise<boolean>) | undefined;
-        } | undefined;
-        redirectURL: string | undefined;
-        tokenEndpoint: string;
-        authorizationEndpoint: string;
-    };
-    issuer: string;
-    scopes: string[];
-    pkCodeVerifier: true;
-    getUserInfo(tokens: {
-        accessToken: string;
-        id_token: string;
-        refresh_token?: string | undefined;
-        expires_in?: number | undefined;
-    }): Promise<{
-        id: string;
-        aud: string;
-        azp: string;
-        email: string;
-        email_verified: boolean;
-        exp: number;
-        /**
-         * The family name of the user, or last name in most
-         * Western languages.
-         */
-        family_name: string;
-        /**
-         * The given name of the user, or first name in most
-         * Western languages.
-         */
-        given_name: string;
-        hd?: string;
-        iat: number;
-        iss: string;
-        jti?: string;
-        locale?: string;
-        name: string;
-        nbf?: number;
-        picture: string;
-        sub: string;
-    }>;
-};
-
-interface MagicLinkOptions {
-    sendEmail: (email: string, url: string) => Promise<void>;
-    /**
-     * Redirect URL
-     * You can pass this when you call on the client.
-     */
-    redirect?: {
-        error: string;
-        success: string;
-    };
-}
-declare const magicLink: (options?: MagicLinkOptions) => {
-    id: "magic-link";
-    name: string;
-    type: "custom";
-    signIn: (context: Context) => Promise<{
-        status: number;
-        statusText: string;
-        Location?: undefined;
-        body?: undefined;
-    } | {
-        status: number;
-        Location: string;
-        statusText?: undefined;
-        body?: undefined;
-    } | {
-        status: number;
-        body: {
-            success: boolean;
-        };
-        statusText?: undefined;
-        Location?: undefined;
-    }>;
-    signUp(context: SignUpContext): Promise<{
-        status: number;
-        statusText: string;
-        Location?: undefined;
-        body?: undefined;
-    } | {
-        status: number;
-        body: {
-            success: boolean;
-        };
-        statusText?: undefined;
-        Location?: undefined;
-    } | {
-        status: number;
-        Location: string;
-    }>;
-    handler: {
-        matcher: (context: Context) => boolean;
-        handler: (context: {
-            request: InternalRequest<any, any>;
-        } & InternalOptions) => Promise<{
-            status: number;
-            Location?: undefined;
-        } | {
-            status: number;
-            Location: string;
-        }>;
-    };
-    input: z.ZodObject<{
-        email: z.ZodString;
-    }, "strip", z.ZodTypeAny, {
-        email: string;
-    }, {
-        email: string;
-    }>;
-};
-
-interface SpotifyOptions extends ProviderOptions<SpotifyProfile> {
-}
-interface SpotifyProfile {
-    id: string;
-    display_name: string;
-    email: string;
-    images: {
-        url: string;
-    }[];
-}
-declare const spotify: (options: SpotifyOptions) => {
-    id: "spotify";
-    name: string;
-    type: "oauth";
-    scopes: string[];
-    params: {
-        clientId: string;
-        clientSecret: string;
-        redirectURL: string | undefined;
-        authorizationEndpoint: string;
-        tokenEndpoint: string;
-    };
-    getUserInfo(tokens: TokenResponse): Promise<{
-        id: string;
-        email: string;
-        emailVerified: boolean;
-        name: string;
-        image: string | undefined;
-        display_name: string;
-        images: {
-            url: string;
-        }[];
-    }>;
-};
-
-interface TwitchProfile {
-    /**
-     * The sub of the user
-     */
-    sub: string;
-    /**
-     * The preferred username of the user
-     */
-    preferred_username: string;
-    /**
-     * The email of the user
-     */
-    email: string;
-    /**
-     * The picture of the user
-     */
-    picture: string;
-}
-interface TwitchOptions extends ProviderOptions<TwitchProfile> {
-}
-declare const Twitch: (options: TwitchOptions) => {
-    id: "twitch";
-    name: string;
-    type: "oauth";
-    scopes: string[];
-    params: {
-        clientId: string;
-        linkAccounts: {
-            field: string;
-            key: keyof TwitchProfile;
-            enabler?: ((profile: TwitchProfile) => boolean | Promise<boolean>) | undefined;
-        } | undefined;
-        clientSecret: string;
-        redirectURL: string | undefined;
-        authorizationEndpoint: string;
-        tokenEndpoint: string;
-    };
-    getUserInfo(tokens: TokenResponse): Promise<{
-        id: string;
-        email: string;
-        emailVerified: boolean;
-        name: string;
-        image: string;
-        /**
-         * The sub of the user
-         */
-        sub: string;
-        /**
-         * The preferred username of the user
-         */
-        preferred_username: string;
-        /**
-         * The picture of the user
-         */
-        picture: string;
-    }>;
-};
-
-type ProviderType = "oauth" | "oidc" | "custom";
-type Provider<T extends Record<string, any> = any> = OAuthProvider<T> | OIDCProvider<T> | CustomProvider;
-interface BaseProvider {
-    /**
-     * Make sure this is inferred as a literal type
-     *
-     * @example
-     * ```ts
-     * id: "custom" as const;
-     * ```
-     */
-    id: string;
-    /**
-     * The name of the provider
-     */
-    name: string;
-}
-interface BaseOAuthProvider<T> extends BaseProvider {
-    /**
-     * The scopes you want to request from the provider
-     */
-    scopes: string[];
-    /**
-     * The issuer of the provider. This will be used to discover the endpoints
-     * for the provider, if the endpoints are not provided.
-     */
-    issuer?: string;
-    /**
-     * The parameters required for the provider
-     */
-    params: {
-        clientId: string;
-        clientSecret: string;
-        authorizationEndpoint?: string;
-        tokenEndpoint?: string;
-        redirectURL?: string;
-        /**
-         * Extra parameters to be sent to the provider. This will be sent as query parameters.
-         */
-        extra?: Record<string, string>;
-        linkAccounts?: {
-            field: string;
-            key: keyof T;
-            enabler?: (profile: T) => Promise<boolean> | boolean;
-        };
-        responseMode?: "form_post" | "query";
-    };
-    /**
-     * If PKCE should be used for this provider
-     */
-    pkCodeVerifier?: boolean;
-    /**
-     * code_challenge_method for PKCE
-     */
-    codeChallengeMethod?: "S256" | "plain";
-    /**
-     * Get the tokens from the provider
-     */
-    getTokens?: (context: Context) => Promise<TokenResponse>;
-}
-interface OAuthProvider<T extends Record<string, any> = Record<string, any>> extends BaseOAuthProvider<T> {
-    /**i
-     * The type of the provider
-     */
-    type: "oauth";
-    /**
-     * Get the user info from the provider
-     */
-    getUserInfo: (tokens: TokenResponse) => Promise<T>;
-}
-interface OIDCProvider<T extends Record<string, any> = Record<string, any>> extends BaseOAuthProvider<T> {
-    /**
-     * The type of the provider
-     */
-    type: "oidc";
-    /**
-     * If nonce should be used for this provider
-     */
-    nonce?: boolean;
-    /**
-     * Get the user info from the provider
-     */
-    getUserInfo: (tokens: {
-        accessToken: string;
-        id_token: string;
-        refresh_token?: string;
-        expires_in?: number;
-    }) => Promise<T>;
-}
-interface CustomProvider<Input extends ZodSchema = ZodSchema> extends BaseProvider {
-    /**
-     * The type of the provider
-     */
-    type: "custom";
-    /**
-     * Sign in the user
-     */
-    signIn?: (context: Context) => Promise<InternalResponse>;
-    /**
-     * Sign up the user
-     */
-    signUp?: (context: SignUpContext) => Promise<InternalResponse>;
-    /**
-     * The signin Input schema for the provider
-     */
-    input: Input;
-    /**
-     * Options Schema
-     */
-    options?: ZodSchema;
-    /**
-     * Custom handler for a provider. This can be used to handle custom callbacks.
-     */
-    handler?: {
-        matcher: (context: Context) => boolean;
-        handler: GenericHandler;
-    };
-}
-interface ProviderOptions<T> {
-    /**
-     * The client ID of your application
-     */
-    clientId: string;
-    /**
-     * The client secret of your application
-     */
-    clientSecret: string;
-    /**
-     * The scopes you want to request from the provider
-     */
-    scopes?: string[];
-    /**
-     * The redirect URL for your application. This is where the provider will
-     * redirect the user after the sign in process. Make sure this URL is
-     * whitelisted in the provider's dashboard.
-     */
-    redirectURL?: string;
-    /**
-     * ⚠ Advanced Option: link multiple accounts to a single user. This is
-     * useful when you want to allow users to sign in
-     * with multiple providers.
-     *
-     * ► NOTE: This option might expose your application to account takeover
-     * attacks. Make sure you have proper security measures in place.
-     * @default false
-     */
-    linkAccounts?: {
-        /**
-         * The filed in the user schema to match the account
-         */
-        field: string;
-        /**
-         * The key on the provider profile to match the value
-         */
-        key: keyof T;
-        /**
-         * The enabler function to check if the account should be linked
-         *
-         * @example
-         * ```ts
-         * enabler: (profile) => profile.email_verified
-         * ```
-         * strongly recommended to use this option to prevent account takeover attacks
-         */
-        enabler?: (profile: T) => Promise<boolean> | boolean;
-    };
-}
-type Providers = {
-    apple: ReturnType<typeof apple>;
-    credential: ReturnType<typeof credential>;
-    discord: ReturnType<typeof discord>;
-    facebook: ReturnType<typeof facebook>;
-    github: ReturnType<typeof github>;
-    gitlab: ReturnType<typeof gitlab>;
-    "magic-link": ReturnType<typeof magicLink>;
-    google: ReturnType<typeof google>;
-    spotify: ReturnType<typeof spotify>;
-    twitch: ReturnType<typeof Twitch>;
-};
-
-interface TokenResponse {
-    access_token: string;
-    token_type?: string;
-    expires_in?: number;
-    refresh_token?: string;
-    scope?: string;
-    error: undefined;
-}
-
-interface BetterAuthOptions {
-    /**
-     * Base URL for the better auth. This is typically the
-     * root URL where your
-     * application server is hosted. If not explicitly set,
-     * the system will
-     * check the following environment variables in order:
-     * process.env.BETTER_AUTH_URL, process.env.AUTH_URL,
-     * process.env.VERCEL_URL.
-     * If none of these environment variables are set it will
-     * throw an error.
-     */
-    baseURL?: string;
-    /**
-     * Base path for the better auth. This is typically the path where the
-     * better auth routes are mounted. If not explicitly set, the system will
-     * check if the following environment variables includes a path in order:
-     * process.env.BETTER_AUTH_BASE_PATH, process.env.AUTH_BASE_PATH. If none
-     * of these environment variables are set, it will default to /api/auth/.
-     */
-    basePath?: string;
-    /**
-     * The secret used to sign the session token. This is required for the session to work. If not explicitly set, the system will check the following environment variables in order: process.env.BETTER_AUTH_SECRET, process.env.AUTH_SECRET. If none of these environment variables are set, on development mode, it will default to "better_auth_secret". On production mode, it will throw an error.
-     *
-     * to generate a good secret you can use the following command:
-     *
-     * @example openssl rand -base64 32
-     */
-    secret?: string;
-    /**
-     * List of providers for better auth
-     */
-    providers: Provider[];
-    /**
-     * List of plugins
-     */
-    plugins?: [BetterAuthPlugin, ...BetterAuthPlugin[]];
-    /**
-     * Database configuration.
-     */
-    /**
-     * The adapter to use. Make sure to install the appropriate package for
-     * your ORM or database.
-     */
-    adapter: Adapter;
-    /**
-     *	Adapter for session
-     */
-    sessionAdapter?: SessionAdapter;
-    /**
-     * Session configuration
-     */
-    session?: {
-        /**
-         * The name of the table.
-         * @default "session"
-         */
-        modelName?: string;
-        /**
-         * Additional fields on session table.
-         */
-        additionalFields?: {
-            [key: string]: FieldAttributes;
-        };
-        /**
-         * Expiration time for the session token. The value
-         * should be in seconds.
-         * @default 7 days (60 * 60 * 24 * 7)
-         */
-        expiresIn?: number;
-        /**
-         * How often the session should be refreshed. The value
-         * should be in seconds.
-         * If set 0 the session will be refreshed every time it is used.
-         * @default 1 day (60 * 60 * 24)
-         */
-        updateAge?: number;
-    };
-    /**
-     * Schema configuration for the user table.
-     */
-    user: {
-        /**
-         * The name of the table.
-         * @default "user"
-         */
-        modelName?: string;
-        /**
-         * fields on user table other than id.
-         *
-         * Make sure these fields are added on you actual
-         * database table.
-         * @example
-         * ```ts
-         * name: {
-         * 	type: "string",
-         * 	required: false,
-         * 	returned: true
-         * }
-         * ```
-         */
-        fields: {
-            [key: string]: FieldAttributes;
-        };
-    };
-    /**
-     * Schema configuration for the account table.
-     */
-    account?: {
-        /**
-         * The name of the table.
-         * @default "account"
-         */
-        modelName?: string;
-        /**
-         * Additional fields on account table.
-         * The key should map to a field on your database
-         * table and the value is the value you want to save.
-         *
-         * @example
-         * ```ts
-         * {
-         * 	accessToken: "access_token"
-         * }
-         * ```
-         */
-        additionalFields?: {
-            [key: string]: keyof TokenResponse;
-        };
-    };
-    /**
-     * Advanced options. Don't change these unless you know
-     * what you are doing.
-     */
-    advanced?: {
-        /**
-         * ⚠ Advanced Option: When set to `true` then all
-         * cookies set by HTTPS.
-         * By default this is set to false for URL begin with
-         * http:// and true for URL begin with https://
-         */
-        useSecureCookies?: boolean;
-        /** ⚠ Danger Option:
-         * The skipCSRFCheck option is a critical security feature that helps
-         * protect against Cross-Site Request Forgery attacks. It should only
-         * be modified if you are certain your application has an alternative,
-         * robust CSRF protection mechanism in place. Improper use of this
-         * option can expose your application to security vulnerabilities.
-         */
-        skipCSRFCheck?: boolean;
-        /**
-         * ⚠ Advanced Option: session cookie configuration
-         */
-        sessionCookie?: CookieSerializeOptions;
-    };
-}
-type InternalAdapter = ReturnType<typeof createInternalAdapter>;
-interface InternalOptions {
-    _db: Adapter;
-    adapter: InternalAdapter;
-    cookies: ReturnType<typeof getCookies>;
-    disableCSRF?: boolean;
-    plugins: BetterAuthPlugin[];
-    providers: Provider[];
-    secret: string;
-    basePath: string;
-    session: {
-        expiresIn: number;
-        updateAge: number;
-        modelName: string;
-        additionalFields?: Record<string, InternalFieldAttributes>;
-        selectFields: string[];
-    };
-    sessionAdapter?: SessionAdapter;
-    user: {
-        modelName: string;
-        fields: Record<string, InternalFieldAttributes>;
-        selectFields: string[];
-    };
-    account: {
-        modelName: string;
-        additionalFields?: Record<string, keyof TokenResponse>;
-        selectFields: string[];
-    };
-    baseURL: string;
-}
-type TypeOrTypeReturning<T, P = void, PR = false> = T | ((param: P extends infer R ? R : never) => PR extends true ? Promise<T> : T);
-
-export { type AfterHookHandler as A, type BetterAuthOptions as B, type Context as C, type TwitchProfile as D, type TwitchOptions as E, type FacebookProfile as F, type GenericHandler as G, type HandlerHooks as H, type InternalResponse as I, Twitch as J, type DiscordProfile as K, discord as L, magicLink as M, type OAuthProvider as O, type Providers as P, type TypeOrTypeReturning as T, type BetterAuthPlugin as a, type BeforeHookHandler as b, type Provider as c, type CustomProvider as d, type CookieManager as e, type InternalRequest as f, type BetterAuthActions as g, type CookieOptions as h, type InternalAdapter as i, type InternalOptions as j, createInternalAdapter as k, type InternalAdapter$1 as l, type ProviderType as m, type OIDCProvider as n, type ProviderOptions as o, type GoogleProfile as p, google as q, type GitHubOptions as r, github as s, credential as t, type FacebookOptions as u, facebook as v, apple as w, type GitLabProfile as x, gitlab as y, spotify as z };