better-auth 0.2.11 → 0.3.1

package/dist/adapters/drizzle.d.ts

@@ -1,4 +1,4 @@
-import { A as Adapter } from '../index-PjYlcsPD.js';
+import { A as Adapter } from '../index-BRcc7HbO.js';
 import 'kysely';
 import '../index-JM-i6hLs.js';
 import 'arctic';

package/dist/adapters/mongodb.d.ts

@@ -1,5 +1,5 @@
 import { Db } from 'mongodb';
-import { W as Where } from '../index-PjYlcsPD.js';
+import { W as Where } from '../index-BRcc7HbO.js';
 import 'kysely';
 import '../index-JM-i6hLs.js';
 import 'arctic';

package/dist/adapters/prisma.d.ts

@@ -1,4 +1,4 @@
-import { A as Adapter } from '../index-PjYlcsPD.js';
+import { A as Adapter } from '../index-BRcc7HbO.js';
 import 'kysely';
 import '../index-JM-i6hLs.js';
 import 'arctic';

package/dist/api.d.ts

@@ -1,4 +1,4 @@
-export { e as AuthEndpoint, f as AuthMiddleware, n as callbackOAuth, L as changePassword, d as createAuthEndpoint, c as createAuthMiddleware, D as createEmailVerificationToken, V as csrfMiddleware, N as deleteUser, Q as error, y as forgetPassword, z as forgetPasswordCallback, O as getCSRFToken, l as getEndpoints, p as getSession, q as getSessionFromCtx, u as listSessions, T as ok, o as optionsMiddleware, C as resetPassword, v as revokeSession, w as revokeSessions, r as router, E as sendVerificationEmail, t as sessionMiddleware, M as setPassword, m as signInEmail, s as signInOAuth, x as signOut, U as signUpEmail, K as updateUser, J as verifyEmail } from './index-PjYlcsPD.js';
+export { f as AuthEndpoint, g as AuthMiddleware, n as callbackOAuth, L as changePassword, e as createAuthEndpoint, d as createAuthMiddleware, D as createEmailVerificationToken, V as csrfMiddleware, N as deleteUser, Q as error, y as forgetPassword, z as forgetPasswordCallback, O as getCSRFToken, l as getEndpoints, p as getSession, q as getSessionFromCtx, u as listSessions, T as ok, o as optionsMiddleware, C as resetPassword, v as revokeSession, w as revokeSessions, r as router, E as sendVerificationEmail, t as sessionMiddleware, M as setPassword, m as signInEmail, s as signInOAuth, x as signOut, U as signUpEmail, K as updateUser, J as verifyEmail } from './index-BRcc7HbO.js';
 import 'zod';
 import './helper-DPDj8Nix.js';
 import 'better-call';

package/dist/api.js

@@ -773,17 +773,6 @@ function getIp(req) {
 }
 
 // src/api/routes/session.ts
-function getRequestUniqueKey(ctx, token) {
-  if (!ctx.request) {
-    return "";
-  }
-  const { method, url, headers } = ctx.request;
-  const userAgent = ctx.request.headers.get("User-Agent") || "";
-  const ip = getIp(ctx.request) || "";
-  const headerString = JSON.stringify(headers);
-  const uniqueString = `${method}:${url}:${headerString}:${userAgent}:${ip}:${token}`;
-  return uniqueString;
-}
 var getSession = () => createAuthEndpoint(
   "/session",
   {
@@ -801,7 +790,6 @@ var getSession = () => createAuthEndpoint(
           status: 401
         });
       }
-      const key = getRequestUniqueKey(ctx, sessionCookieToken);
       const session = await ctx.context.internalAdapter.findSession(sessionCookieToken);
       if (!session || session.session.expiresAt < /* @__PURE__ */ new Date()) {
         deleteSessionCookie(ctx);
@@ -1167,10 +1155,66 @@ var verificationSchema = z5.object({
   identifier: z5.string()
 });
 
+// src/crypto/random.ts
+function byteToBinary(byte) {
+  return byte.toString(2).padStart(8, "0");
+}
+function bytesToBinary(bytes) {
+  return [...bytes].map((val) => byteToBinary(val)).join("");
+}
+function bytesToInteger(bytes) {
+  return parseInt(bytesToBinary(bytes), 2);
+}
+function generateRandomInteger(max) {
+  if (max < 0 || !Number.isInteger(max)) {
+    throw new Error(
+      "Argument 'max' must be an integer greater than or equal to 0"
+    );
+  }
+  const bitLength = (max - 1).toString(2).length;
+  const shift = bitLength % 8;
+  const bytes = new Uint8Array(Math.ceil(bitLength / 8));
+  crypto.getRandomValues(bytes);
+  if (shift !== 0) {
+    bytes[0] &= (1 << shift) - 1;
+  }
+  let result = bytesToInteger(bytes);
+  while (result >= max) {
+    crypto.getRandomValues(bytes);
+    if (shift !== 0) {
+      bytes[0] &= (1 << shift) - 1;
+    }
+    result = bytesToInteger(bytes);
+  }
+  return result;
+}
+function generateRandomString(length, alphabet2) {
+  let result = "";
+  for (let i = 0; i < length; i++) {
+    result += alphabet2[generateRandomInteger(alphabet2.length)];
+  }
+  return result;
+}
+function alphabet(...patterns) {
+  const patternSet = new Set(patterns);
+  let result = "";
+  for (const pattern of patternSet) {
+    if (pattern === "a-z") {
+      result += "abcdefghijklmnopqrstuvwxyz";
+    } else if (pattern === "A-Z") {
+      result += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
+    } else if (pattern === "0-9") {
+      result += "0123456789";
+    } else {
+      result += pattern;
+    }
+  }
+  return result;
+}
+
 // src/utils/id.ts
-import { nanoid } from "nanoid";
 var generateId = (size) => {
-  return nanoid(size);
+  return generateRandomString(size || 21, alphabet("a-z", "0-9", "A-Z"));
 };
 
 // src/utils/hide-metadata.ts
@@ -1736,65 +1780,6 @@ var verifyEmail = createAuthEndpoint(
 
 // src/api/routes/update-user.ts
 import { z as z10 } from "zod";
-
-// src/crypto/random.ts
-function byteToBinary(byte) {
-  return byte.toString(2).padStart(8, "0");
-}
-function bytesToBinary(bytes) {
-  return [...bytes].map((val) => byteToBinary(val)).join("");
-}
-function bytesToInteger(bytes) {
-  return parseInt(bytesToBinary(bytes), 2);
-}
-function generateRandomInteger(max) {
-  if (max < 0 || !Number.isInteger(max)) {
-    throw new Error(
-      "Argument 'max' must be an integer greater than or equal to 0"
-    );
-  }
-  const bitLength = (max - 1).toString(2).length;
-  const shift = bitLength % 8;
-  const bytes = new Uint8Array(Math.ceil(bitLength / 8));
-  crypto.getRandomValues(bytes);
-  if (shift !== 0) {
-    bytes[0] &= (1 << shift) - 1;
-  }
-  let result = bytesToInteger(bytes);
-  while (result >= max) {
-    crypto.getRandomValues(bytes);
-    if (shift !== 0) {
-      bytes[0] &= (1 << shift) - 1;
-    }
-    result = bytesToInteger(bytes);
-  }
-  return result;
-}
-function generateRandomString(length, alphabet2) {
-  let result = "";
-  for (let i = 0; i < length; i++) {
-    result += alphabet2[generateRandomInteger(alphabet2.length)];
-  }
-  return result;
-}
-function alphabet(...patterns) {
-  const patternSet = new Set(patterns);
-  let result = "";
-  for (const pattern of patternSet) {
-    if (pattern === "a-z") {
-      result += "abcdefghijklmnopqrstuvwxyz";
-    } else if (pattern === "A-Z") {
-      result += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
-    } else if (pattern === "0-9") {
-      result += "0123456789";
-    } else {
-      result += pattern;
-    }
-  }
-  return result;
-}
-
-// src/api/routes/update-user.ts
 var updateUser = createAuthEndpoint(
   "/user/update",
   {

package/dist/client/plugins.d.ts

@@ -2,14 +2,14 @@ import * as nanostores from 'nanostores';
 import { A as AccessControl, S as StatementsPrimitive, R as Role } from '../statement-CfnyN34h.js';
 import * as _better_fetch_fetch from '@better-fetch/fetch';
 import { BetterFetchOption } from '@better-fetch/fetch';
-import { o as organization, e as Organization, M as Member, I as Invitation, u as username, m as magicLink, d as phoneNumber } from '../index-CUD_IG9Z.js';
-export { g as getPasskeyActions, c as passkeyClient, a as twoFactorClient } from '../index-CUD_IG9Z.js';
+import { o as organization, f as Organization, M as Member, I as Invitation, u as username, m as magicLink, d as phoneNumber, e as anonymous } from '../index-B-Rb8u6d.js';
+export { g as getPasskeyActions, c as passkeyClient, a as twoFactorClient } from '../index-B-Rb8u6d.js';
 import { P as Prettify } from '../helper-DPDj8Nix.js';
 import '../index-JM-i6hLs.js';
 import 'arctic';
 import 'zod';
 import 'better-call';
-import '../index-PjYlcsPD.js';
+import '../index-BRcc7HbO.js';
 import 'kysely';
 import 'better-sqlite3';
 import 'mysql2';
@@ -153,4 +153,12 @@ declare const phoneNumberClient: () => {
     }[];
 };
 
-export { magicLinkClient, organizationClient, phoneNumberClient, usernameClient };
+declare const anonymousClient: () => {
+    id: "anonymous";
+    $InferServerPlugin: ReturnType<typeof anonymous>;
+    pathMethods: {
+        "/sign-in/anonymous": "POST";
+    };
+};
+
+export { anonymousClient, magicLinkClient, organizationClient, phoneNumberClient, usernameClient };

package/dist/client/plugins.js

@@ -493,7 +493,19 @@ var phoneNumberClient = () => {
     ]
   };
 };
+
+// src/plugins/anonymous/client.ts
+var anonymousClient = () => {
+  return {
+    id: "anonymous",
+    $InferServerPlugin: {},
+    pathMethods: {
+      "/sign-in/anonymous": "POST"
+    }
+  };
+};
 export {
+  anonymousClient,
   getPasskeyActions,
   magicLinkClient,
   organizationClient,

package/dist/client.d.ts

@@ -6,7 +6,7 @@ import { BetterFetch, BetterFetchError, BetterFetchOption } from '@better-fetch/
 import { U as UnionToIntersection, P as Prettify, S as StripEmptyObjects } from './helper-DPDj8Nix.js';
 import { ClientOptions, InferClientAPI, InferActions, InferAdditionalFromClient, InferSessionFromClient, InferUserFromClient, BetterAuthClientPlugin, IsSignal } from './types.js';
 export { AtomListener, InferPluginsFromClient } from './types.js';
-import './index-PjYlcsPD.js';
+import './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/{index-CUD_IG9Z.d.ts → index-B-Rb8u6d.d.ts}

@@ -5,7 +5,7 @@ import { P as Prettify } from './helper-DPDj8Nix.js';
 import { A as AccessControl, R as Role, S as StatementsPrimitive, g as defaultRoles } from './statement-CfnyN34h.js';
 import * as _better_fetch_fetch from '@better-fetch/fetch';
 import { BetterFetch, BetterFetchOption } from '@better-fetch/fetch';
-import { H as HookEndpointContext } from './index-PjYlcsPD.js';
+import { H as HookEndpointContext } from './index-BRcc7HbO.js';
 import * as nanostores from 'nanostores';
 import { atom } from 'nanostores';
 import * as _simplewebauthn_types from '@simplewebauthn/types';
@@ -4629,4 +4629,137 @@ declare const phoneNumber: (options?: {
     };
 };
 
-export { type Invitation as I, type Member as M, type OrganizationOptions as O, type PasskeyOptions as P, twoFactorClient as a, type Passkey as b, passkeyClient as c, phoneNumber as d, type Organization as e, getPasskeyActions as g, magicLink as m, organization as o, passkey as p, twoFactor as t, username as u };
+declare const anonymous: () => {
+    id: "anonymous";
+    endpoints: {
+        signInAnonymous: {
+            (ctx_0?: better_call.Context<"/sign-in/anonymous", {
+                method: "POST";
+            }> | undefined): Promise<{
+                user: {
+                    id: string;
+                    email: string;
+                    emailVerified: boolean;
+                    name: string;
+                    createdAt: Date;
+                    updatedAt: Date;
+                    image?: string | undefined;
+                } & Record<string, any>;
+                session: {
+                    id: string;
+                    userId: string;
+                    expiresAt: Date;
+                    ipAddress?: string | undefined;
+                    userAgent?: string | undefined;
+                };
+            } | null>;
+            path: "/sign-in/anonymous";
+            options: {
+                method: "POST";
+            };
+            method: better_call.Method | better_call.Method[];
+            headers: Headers;
+        };
+        linkAnonymous: {
+            (ctx_0: better_call.Context<"/user/link-anonymous", {
+                method: "POST";
+                body: z.ZodObject<{
+                    email: z.ZodOptional<z.ZodString>;
+                    password: z.ZodString;
+                }, "strip", z.ZodTypeAny, {
+                    password: string;
+                    email?: string | undefined;
+                }, {
+                    password: string;
+                    email?: string | undefined;
+                }>;
+                use: better_call.Endpoint<better_call.Handler<string, better_call.EndpointOptions, {
+                    session: {
+                        session: {
+                            id: string;
+                            userId: string;
+                            expiresAt: Date;
+                            ipAddress?: string | undefined;
+                            userAgent?: string | undefined;
+                        };
+                        user: {
+                            id: string;
+                            email: string;
+                            emailVerified: boolean;
+                            name: string;
+                            createdAt: Date;
+                            updatedAt: Date;
+                            image?: string | undefined;
+                        };
+                    };
+                }>, better_call.EndpointOptions>[];
+            }>): Promise<{
+                session: {
+                    id: string;
+                    userId: string;
+                    expiresAt: Date;
+                    ipAddress?: string | undefined;
+                    userAgent?: string | undefined;
+                };
+                user: {
+                    id: string;
+                    email: string;
+                    emailVerified: boolean;
+                    name: string;
+                    createdAt: Date;
+                    updatedAt: Date;
+                    image?: string | undefined;
+                };
+            } | null>;
+            path: "/user/link-anonymous";
+            options: {
+                method: "POST";
+                body: z.ZodObject<{
+                    email: z.ZodOptional<z.ZodString>;
+                    password: z.ZodString;
+                }, "strip", z.ZodTypeAny, {
+                    password: string;
+                    email?: string | undefined;
+                }, {
+                    password: string;
+                    email?: string | undefined;
+                }>;
+                use: better_call.Endpoint<better_call.Handler<string, better_call.EndpointOptions, {
+                    session: {
+                        session: {
+                            id: string;
+                            userId: string;
+                            expiresAt: Date;
+                            ipAddress?: string | undefined;
+                            userAgent?: string | undefined;
+                        };
+                        user: {
+                            id: string;
+                            email: string;
+                            emailVerified: boolean;
+                            name: string;
+                            createdAt: Date;
+                            updatedAt: Date;
+                            image?: string | undefined;
+                        };
+                    };
+                }>, better_call.EndpointOptions>[];
+            };
+            method: better_call.Method | better_call.Method[];
+            headers: Headers;
+        };
+    };
+    schema: {
+        user: {
+            fields: {
+                isAnonymous: {
+                    type: "boolean";
+                    defaultValue: true;
+                    required: false;
+                };
+            };
+        };
+    };
+};
+
+export { type Invitation as I, type Member as M, type OrganizationOptions as O, type PasskeyOptions as P, twoFactorClient as a, type Passkey as b, passkeyClient as c, phoneNumber as d, anonymous as e, type Organization as f, getPasskeyActions as g, magicLink as m, organization as o, passkey as p, twoFactor as t, username as u };

package/dist/{index-PjYlcsPD.d.ts → index-BRcc7HbO.d.ts}

@@ -100,7 +100,7 @@ declare const createInternalAdapter: (adapter: Adapter, ctx: {
             password?: string | null | undefined;
         } | null;
     } | null>;
-    createUser: (user: User) => Promise<{
+    createUser: (user: User & Record<string, any>) => Promise<({
         id: string;
         email: string;
         emailVerified: boolean;
@@ -108,7 +108,7 @@ declare const createInternalAdapter: (adapter: Adapter, ctx: {
         createdAt: Date;
         updatedAt: Date;
         image?: string | undefined;
-    } | null>;
+    } & Record<string, any>) | null>;
     deleteUser: (userId: string) => Promise<void>;
     createSession: (userId: string, request?: Request | Headers, dontRememberMe?: boolean) => Promise<{
         id: string;
@@ -2329,7 +2329,7 @@ declare const signUpEmail: {
             createdAt: Date;
             updatedAt: Date;
             image?: string | undefined;
-        };
+        } & Record<string, any>;
         session: {
             id: string;
             userId: string;
@@ -2669,7 +2669,7 @@ declare function getEndpoints<C extends AuthContext, Option extends BetterAuthOp
                     createdAt: Date;
                     updatedAt: Date;
                     image?: string | undefined;
-                };
+                } & Record<string, any>;
                 session: {
                     id: string;
                     userId: string;
@@ -3731,7 +3731,7 @@ declare const router: <C extends AuthContext, Option extends BetterAuthOptions>(
                     createdAt: Date;
                     updatedAt: Date;
                     image?: string | undefined;
-                };
+                } & Record<string, any>;
                 session: {
                     id: string;
                     userId: string;
@@ -4795,7 +4795,7 @@ declare const betterAuth: <O extends BetterAuthOptions>(options: O) => {
                     createdAt: Date;
                     updatedAt: Date;
                     image?: string | undefined;
-                };
+                } & Record<string, any>;
                 session: {
                     id: string;
                     userId: string;
@@ -5590,4 +5590,4 @@ type Auth = {
     options: BetterAuthOptions;
 };
 
-export { type Adapter as A, type BetterAuthOptions as B, resetPassword as C, createEmailVerificationToken as D, sendVerificationEmail as E, type FieldAttribute as F, type GenericEndpointContext as G, type HookEndpointContext as H, type InferFieldOutput as I, verifyEmail as J, updateUser as K, changePassword as L, setPassword as M, deleteUser as N, getCSRFToken as O, type PluginSchema as P, error as Q, type RateLimit as R, type SessionAdapter as S, ok as T, signUpEmail as U, csrfMiddleware as V, type Where as W, betterAuth as X, type Auth as a, type BetterAuthPlugin as b, createAuthMiddleware as c, createAuthEndpoint as d, type AuthEndpoint as e, type AuthMiddleware as f, type InferUser as g, type InferSession as h, type InferPluginTypes as i, init as j, type AuthContext as k, getEndpoints as l, signInEmail as m, callbackOAuth as n, optionsMiddleware as o, getSession as p, getSessionFromCtx as q, router as r, signInOAuth as s, sessionMiddleware as t, listSessions as u, revokeSession as v, revokeSessions as w, signOut as x, forgetPassword as y, forgetPasswordCallback as z };
+export { type Adapter as A, type BetterAuthOptions as B, resetPassword as C, createEmailVerificationToken as D, sendVerificationEmail as E, type FieldAttribute as F, type GenericEndpointContext as G, type HookEndpointContext as H, type InferFieldOutput as I, verifyEmail as J, updateUser as K, changePassword as L, setPassword as M, deleteUser as N, getCSRFToken as O, type PluginSchema as P, error as Q, type RateLimit as R, type SessionAdapter as S, ok as T, signUpEmail as U, csrfMiddleware as V, type Where as W, betterAuth as X, type Auth as a, type AuthContext as b, type BetterAuthPlugin as c, createAuthMiddleware as d, createAuthEndpoint as e, type AuthEndpoint as f, type AuthMiddleware as g, type InferUser as h, type InferSession as i, type InferPluginTypes as j, init as k, getEndpoints as l, signInEmail as m, callbackOAuth as n, optionsMiddleware as o, getSession as p, getSessionFromCtx as q, router as r, signInOAuth as s, sessionMiddleware as t, listSessions as u, revokeSession as v, revokeSessions as w, signOut as x, forgetPassword as y, forgetPasswordCallback as z };

package/dist/index.d.ts

@@ -1,4 +1,4 @@
-export { a as Auth, X as betterAuth } from './index-PjYlcsPD.js';
+export { a as Auth, X as betterAuth } from './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/index.js

@@ -863,17 +863,6 @@ function getIp(req) {
 }
 
 // src/api/routes/session.ts
-function getRequestUniqueKey(ctx, token) {
-  if (!ctx.request) {
-    return "";
-  }
-  const { method, url, headers } = ctx.request;
-  const userAgent = ctx.request.headers.get("User-Agent") || "";
-  const ip = getIp(ctx.request) || "";
-  const headerString = JSON.stringify(headers);
-  const uniqueString = `${method}:${url}:${headerString}:${userAgent}:${ip}:${token}`;
-  return uniqueString;
-}
 var getSession = () => createAuthEndpoint(
   "/session",
   {
@@ -891,7 +880,6 @@ var getSession = () => createAuthEndpoint(
           status: 401
         });
       }
-      const key = getRequestUniqueKey(ctx, sessionCookieToken);
       const session = await ctx.context.internalAdapter.findSession(sessionCookieToken);
       if (!session || session.session.expiresAt < /* @__PURE__ */ new Date()) {
         deleteSessionCookie(ctx);
@@ -1257,10 +1245,66 @@ var verificationSchema = z5.object({
   identifier: z5.string()
 });
 
+// src/crypto/random.ts
+function byteToBinary(byte) {
+  return byte.toString(2).padStart(8, "0");
+}
+function bytesToBinary(bytes) {
+  return [...bytes].map((val) => byteToBinary(val)).join("");
+}
+function bytesToInteger(bytes) {
+  return parseInt(bytesToBinary(bytes), 2);
+}
+function generateRandomInteger(max) {
+  if (max < 0 || !Number.isInteger(max)) {
+    throw new Error(
+      "Argument 'max' must be an integer greater than or equal to 0"
+    );
+  }
+  const bitLength = (max - 1).toString(2).length;
+  const shift = bitLength % 8;
+  const bytes = new Uint8Array(Math.ceil(bitLength / 8));
+  crypto.getRandomValues(bytes);
+  if (shift !== 0) {
+    bytes[0] &= (1 << shift) - 1;
+  }
+  let result = bytesToInteger(bytes);
+  while (result >= max) {
+    crypto.getRandomValues(bytes);
+    if (shift !== 0) {
+      bytes[0] &= (1 << shift) - 1;
+    }
+    result = bytesToInteger(bytes);
+  }
+  return result;
+}
+function generateRandomString(length, alphabet2) {
+  let result = "";
+  for (let i = 0; i < length; i++) {
+    result += alphabet2[generateRandomInteger(alphabet2.length)];
+  }
+  return result;
+}
+function alphabet(...patterns) {
+  const patternSet = new Set(patterns);
+  let result = "";
+  for (const pattern of patternSet) {
+    if (pattern === "a-z") {
+      result += "abcdefghijklmnopqrstuvwxyz";
+    } else if (pattern === "A-Z") {
+      result += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
+    } else if (pattern === "0-9") {
+      result += "0123456789";
+    } else {
+      result += pattern;
+    }
+  }
+  return result;
+}
+
 // src/utils/id.ts
-import { nanoid } from "nanoid";
 var generateId = (size) => {
-  return nanoid(size);
+  return generateRandomString(size || 21, alphabet("a-z", "0-9", "A-Z"));
 };
 
 // src/utils/hide-metadata.ts
@@ -1826,65 +1870,6 @@ var verifyEmail = createAuthEndpoint(
 
 // src/api/routes/update-user.ts
 import { z as z10 } from "zod";
-
-// src/crypto/random.ts
-function byteToBinary(byte) {
-  return byte.toString(2).padStart(8, "0");
-}
-function bytesToBinary(bytes) {
-  return [...bytes].map((val) => byteToBinary(val)).join("");
-}
-function bytesToInteger(bytes) {
-  return parseInt(bytesToBinary(bytes), 2);
-}
-function generateRandomInteger(max) {
-  if (max < 0 || !Number.isInteger(max)) {
-    throw new Error(
-      "Argument 'max' must be an integer greater than or equal to 0"
-    );
-  }
-  const bitLength = (max - 1).toString(2).length;
-  const shift = bitLength % 8;
-  const bytes = new Uint8Array(Math.ceil(bitLength / 8));
-  crypto.getRandomValues(bytes);
-  if (shift !== 0) {
-    bytes[0] &= (1 << shift) - 1;
-  }
-  let result = bytesToInteger(bytes);
-  while (result >= max) {
-    crypto.getRandomValues(bytes);
-    if (shift !== 0) {
-      bytes[0] &= (1 << shift) - 1;
-    }
-    result = bytesToInteger(bytes);
-  }
-  return result;
-}
-function generateRandomString(length, alphabet2) {
-  let result = "";
-  for (let i = 0; i < length; i++) {
-    result += alphabet2[generateRandomInteger(alphabet2.length)];
-  }
-  return result;
-}
-function alphabet(...patterns) {
-  const patternSet = new Set(patterns);
-  let result = "";
-  for (const pattern of patternSet) {
-    if (pattern === "a-z") {
-      result += "abcdefghijklmnopqrstuvwxyz";
-    } else if (pattern === "A-Z") {
-      result += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
-    } else if (pattern === "0-9") {
-      result += "0123456789";
-    } else {
-      result += pattern;
-    }
-  }
-  return result;
-}
-
-// src/api/routes/update-user.ts
 var updateUser = createAuthEndpoint(
   "/user/update",
   {

package/dist/next-js.d.ts

@@ -1,4 +1,4 @@
-import { a as Auth } from './index-PjYlcsPD.js';
+import { a as Auth } from './index-BRcc7HbO.js';
 import { U as User, S as Session } from './index-JM-i6hLs.js';
 import { NextRequest } from 'next/server';
 import 'kysely';

package/dist/node.d.ts

@@ -1,5 +1,5 @@
 import * as http from 'http';
-import { a as Auth } from './index-PjYlcsPD.js';
+import { a as Auth } from './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/plugins.d.ts

@@ -1,7 +1,7 @@
-export { O as OrganizationOptions, b as Passkey, P as PasskeyOptions, g as getPasskeyActions, m as magicLink, o as organization, p as passkey, c as passkeyClient, d as phoneNumber, t as twoFactor, a as twoFactorClient, u as username } from './index-CUD_IG9Z.js';
+export { O as OrganizationOptions, b as Passkey, P as PasskeyOptions, e as anonymous, g as getPasskeyActions, m as magicLink, o as organization, p as passkey, c as passkeyClient, d as phoneNumber, t as twoFactor, a as twoFactorClient, u as username } from './index-B-Rb8u6d.js';
 export { i as ac } from './index-DfAHOgpj.js';
-import { H as HookEndpointContext } from './index-PjYlcsPD.js';
-export { e as AuthEndpoint, f as AuthMiddleware, b as BetterAuthPlugin, P as PluginSchema, d as createAuthEndpoint, c as createAuthMiddleware, o as optionsMiddleware } from './index-PjYlcsPD.js';
+import { b as AuthContext } from './index-BRcc7HbO.js';
+export { f as AuthEndpoint, g as AuthMiddleware, c as BetterAuthPlugin, P as PluginSchema, e as createAuthEndpoint, d as createAuthMiddleware, o as optionsMiddleware } from './index-BRcc7HbO.js';
 import './index-JM-i6hLs.js';
 import 'arctic';
 import 'zod';
@@ -20,12 +20,9 @@ import 'mysql2';
  */
 declare const bearer: () => {
     id: "bearer";
-    hooks: {
-        before: {
-            matcher(context: HookEndpointContext): boolean;
-            handler: (ctx: HookEndpointContext) => Promise<void>;
-        }[];
-    };
+    onRequest(request: Request, ctx: AuthContext): Promise<{
+        request: Request;
+    } | undefined>;
 };
 
 declare const HIDE_METADATA: {

package/dist/plugins.js

@@ -682,46 +682,6 @@ function deleteSessionCookie(ctx) {
 
 // src/api/routes/session.ts
 import { z as z2 } from "zod";
-
-// src/utils/get-request-ip.ts
-function getIp(req) {
-  const testIP = "127.0.0.1";
-  if (process.env.NODE_ENV === "test") {
-    return testIP;
-  }
-  const headers = [
-    "x-client-ip",
-    "x-forwarded-for",
-    "cf-connecting-ip",
-    "fastly-client-ip",
-    "x-real-ip",
-    "x-cluster-client-ip",
-    "x-forwarded",
-    "forwarded-for",
-    "forwarded"
-  ];
-  for (const header of headers) {
-    const value = req.headers.get(header);
-    if (typeof value === "string") {
-      const ip = value.split(",")[0].trim();
-      if (ip) return ip;
-    }
-  }
-  return null;
-}
-
-// src/api/routes/session.ts
-function getRequestUniqueKey(ctx, token) {
-  if (!ctx.request) {
-    return "";
-  }
-  const { method, url, headers } = ctx.request;
-  const userAgent = ctx.request.headers.get("User-Agent") || "";
-  const ip = getIp(ctx.request) || "";
-  const headerString = JSON.stringify(headers);
-  const uniqueString = `${method}:${url}:${headerString}:${userAgent}:${ip}:${token}`;
-  return uniqueString;
-}
 var getSession = () => createAuthEndpoint(
   "/session",
   {
@@ -739,7 +699,6 @@ var getSession = () => createAuthEndpoint(
           status: 401
         });
       }
-      const key = getRequestUniqueKey(ctx, sessionCookieToken);
       const session = await ctx.context.internalAdapter.findSession(sessionCookieToken);
       if (!session || session.session.expiresAt < /* @__PURE__ */ new Date()) {
         deleteSessionCookie(ctx);
@@ -1080,10 +1039,66 @@ var verificationSchema = z4.object({
   identifier: z4.string()
 });
 
+// src/crypto/random.ts
+function byteToBinary(byte) {
+  return byte.toString(2).padStart(8, "0");
+}
+function bytesToBinary(bytes) {
+  return [...bytes].map((val) => byteToBinary(val)).join("");
+}
+function bytesToInteger(bytes) {
+  return parseInt(bytesToBinary(bytes), 2);
+}
+function generateRandomInteger(max) {
+  if (max < 0 || !Number.isInteger(max)) {
+    throw new Error(
+      "Argument 'max' must be an integer greater than or equal to 0"
+    );
+  }
+  const bitLength = (max - 1).toString(2).length;
+  const shift = bitLength % 8;
+  const bytes = new Uint8Array(Math.ceil(bitLength / 8));
+  crypto.getRandomValues(bytes);
+  if (shift !== 0) {
+    bytes[0] &= (1 << shift) - 1;
+  }
+  let result = bytesToInteger(bytes);
+  while (result >= max) {
+    crypto.getRandomValues(bytes);
+    if (shift !== 0) {
+      bytes[0] &= (1 << shift) - 1;
+    }
+    result = bytesToInteger(bytes);
+  }
+  return result;
+}
+function generateRandomString(length, alphabet2) {
+  let result = "";
+  for (let i = 0; i < length; i++) {
+    result += alphabet2[generateRandomInteger(alphabet2.length)];
+  }
+  return result;
+}
+function alphabet(...patterns) {
+  const patternSet = new Set(patterns);
+  let result = "";
+  for (const pattern of patternSet) {
+    if (pattern === "a-z") {
+      result += "abcdefghijklmnopqrstuvwxyz";
+    } else if (pattern === "A-Z") {
+      result += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
+    } else if (pattern === "0-9") {
+      result += "0123456789";
+    } else {
+      result += pattern;
+    }
+  }
+  return result;
+}
+
 // src/utils/id.ts
-import { nanoid } from "nanoid";
 var generateId = (size) => {
-  return nanoid(size);
+  return generateRandomString(size || 21, alphabet("a-z", "0-9", "A-Z"));
 };
 
 // src/utils/hide-metadata.ts
@@ -1649,65 +1664,6 @@ var verifyEmail = createAuthEndpoint(
 
 // src/api/routes/update-user.ts
 import { z as z9 } from "zod";
-
-// src/crypto/random.ts
-function byteToBinary(byte) {
-  return byte.toString(2).padStart(8, "0");
-}
-function bytesToBinary(bytes) {
-  return [...bytes].map((val) => byteToBinary(val)).join("");
-}
-function bytesToInteger(bytes) {
-  return parseInt(bytesToBinary(bytes), 2);
-}
-function generateRandomInteger(max) {
-  if (max < 0 || !Number.isInteger(max)) {
-    throw new Error(
-      "Argument 'max' must be an integer greater than or equal to 0"
-    );
-  }
-  const bitLength = (max - 1).toString(2).length;
-  const shift = bitLength % 8;
-  const bytes = new Uint8Array(Math.ceil(bitLength / 8));
-  crypto.getRandomValues(bytes);
-  if (shift !== 0) {
-    bytes[0] &= (1 << shift) - 1;
-  }
-  let result = bytesToInteger(bytes);
-  while (result >= max) {
-    crypto.getRandomValues(bytes);
-    if (shift !== 0) {
-      bytes[0] &= (1 << shift) - 1;
-    }
-    result = bytesToInteger(bytes);
-  }
-  return result;
-}
-function generateRandomString(length, alphabet2) {
-  let result = "";
-  for (let i = 0; i < length; i++) {
-    result += alphabet2[generateRandomInteger(alphabet2.length)];
-  }
-  return result;
-}
-function alphabet(...patterns) {
-  const patternSet = new Set(patterns);
-  let result = "";
-  for (const pattern of patternSet) {
-    if (pattern === "a-z") {
-      result += "abcdefghijklmnopqrstuvwxyz";
-    } else if (pattern === "A-Z") {
-      result += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
-    } else if (pattern === "0-9") {
-      result += "0123456789";
-    } else {
-      result += pattern;
-    }
-  }
-  return result;
-}
-
-// src/api/routes/update-user.ts
 var updateUser = createAuthEndpoint(
   "/user/update",
   {
@@ -5617,30 +5573,23 @@ import { serializeSigned } from "better-call";
 var bearer = () => {
   return {
     id: "bearer",
-    hooks: {
-      before: [
-        {
-          matcher(context) {
-            return context.request?.headers.get("authorization")?.startsWith("Bearer ") || false;
-          },
-          handler: async (ctx) => {
-            const token = ctx.request?.headers.get("authorization")?.replace("Bearer ", "");
-            if (!token) {
-              throw new BetterAuthError("No token found");
-            }
-            const headers = ctx.headers || new Headers();
-            const signedToken = await serializeSigned(
-              "",
-              token,
-              ctx.context.secret
-            );
-            headers.set(
-              "cookie",
-              `${ctx.context.authCookies.sessionToken.name}=${signedToken.replace("=", "")}`
-            );
-          }
-        }
-      ]
+    async onRequest(request, ctx) {
+      const token = request.headers.get("authorization")?.replace("Bearer ", "");
+      if (!token) {
+        return;
+      }
+      const headers = request.headers || new Headers();
+      const signedToken = await serializeSigned("", token, ctx.secret);
+      headers.set(
+        "cookie",
+        `${ctx.authCookies.sessionToken.name}=${signedToken.replace("=", "")}`
+      );
+      return {
+        request: new Request(request.url, {
+          method: request.method,
+          headers
+        })
+      };
     }
   };
 };
@@ -6139,9 +6088,133 @@ var phoneNumber = (options) => {
     }
   };
 };
+
+// src/plugins/anonymous/index.ts
+import { z as z26 } from "zod";
+var anonymous = () => {
+  return {
+    id: "anonymous",
+    endpoints: {
+      signInAnonymous: createAuthEndpoint(
+        "/sign-in/anonymous",
+        {
+          method: "POST"
+        },
+        async (ctx) => {
+          const tempEmail = "temporary-" + Date.now().toString() + "-better-auth@email.com";
+          const newUser = await ctx.context.internalAdapter.createUser({
+            id: generateId(),
+            email: tempEmail,
+            emailVerified: false,
+            isAnonymous: true,
+            name: "Anonymous",
+            createdAt: /* @__PURE__ */ new Date(),
+            updatedAt: /* @__PURE__ */ new Date()
+          });
+          if (!newUser) {
+            return ctx.json(null, {
+              status: 500,
+              body: {
+                message: "Failed to create user",
+                status: 500
+              }
+            });
+          }
+          const session = await ctx.context.internalAdapter.createSession(
+            newUser.id,
+            ctx.request
+          );
+          if (!session) {
+            return ctx.json(null, {
+              status: 400,
+              body: {
+                message: "Could not create session"
+              }
+            });
+          }
+          await setSessionCookie(ctx, session.id);
+          return ctx.json({ user: newUser, session });
+        }
+      ),
+      linkAnonymous: createAuthEndpoint(
+        "/user/link-anonymous",
+        {
+          method: "POST",
+          body: z26.object({
+            email: z26.string().email().optional(),
+            password: z26.string().min(6)
+          }),
+          use: [sessionMiddleware]
+        },
+        async (ctx) => {
+          const userId = ctx.context.session.user.id;
+          const { email, password } = ctx.body;
+          let updatedUser = null;
+          if (email && password) {
+            updatedUser = await ctx.context.internalAdapter.updateUser(userId, {
+              email
+            });
+          }
+          if (!updatedUser) {
+            return ctx.json(null, {
+              status: 500,
+              body: {
+                message: "Failed to update user",
+                status: 500
+              }
+            });
+          }
+          const hash = await ctx.context.password.hash(password);
+          const updateUserAccount = await ctx.context.internalAdapter.linkAccount({
+            id: generateRandomString(32, alphabet("a-z", "0-9", "A-Z")),
+            userId: updatedUser.id,
+            providerId: "credential",
+            password: hash,
+            accountId: updatedUser.id
+          });
+          if (!updateUserAccount) {
+            return ctx.json(null, {
+              status: 500,
+              body: {
+                message: "Failed to update account",
+                status: 500
+              }
+            });
+          }
+          const session = await ctx.context.internalAdapter.createSession(
+            updatedUser.id,
+            ctx.request
+          );
+          if (!session) {
+            return ctx.json(null, {
+              status: 400,
+              body: {
+                message: "Could not create session"
+              }
+            });
+          }
+          await setSessionCookie(ctx, session.id);
+          return ctx.json({ session, user: updatedUser });
+        }
+      )
+    },
+    schema: {
+      user: {
+        fields: {
+          isAnonymous: {
+            type: "boolean",
+            defaultValue: true,
+            required: false
+          }
+        }
+      }
+    }
+  };
+};
 export {
   HIDE_METADATA,
   access_exports as ac,
+  anonymous,
   bearer,
   createAuthEndpoint,
   createAuthMiddleware,

package/dist/react.d.ts

@@ -3,7 +3,7 @@ import { U as UnionToIntersection, P as Prettify, S as StripEmptyObjects } from
 import { ClientOptions, InferClientAPI, InferActions, InferAdditionalFromClient, BetterAuthClientPlugin, IsSignal } from './types.js';
 import { useStore } from '@nanostores/react';
 import 'zod';
-import './index-PjYlcsPD.js';
+import './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/solid-start.d.ts

@@ -1,4 +1,4 @@
-import { a as Auth } from './index-PjYlcsPD.js';
+import { a as Auth } from './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/solid.d.ts

@@ -3,7 +3,7 @@ import { U as UnionToIntersection, P as Prettify, S as StripEmptyObjects } from
 import { ClientOptions, InferClientAPI, InferActions, InferAdditionalFromClient, BetterAuthClientPlugin, IsSignal } from './types.js';
 import { Accessor } from 'solid-js';
 import 'zod';
-import './index-PjYlcsPD.js';
+import './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/svelte-kit.d.ts

@@ -1,4 +1,4 @@
-import { a as Auth, B as BetterAuthOptions } from './index-PjYlcsPD.js';
+import { a as Auth, B as BetterAuthOptions } from './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/svelte.d.ts

@@ -3,7 +3,7 @@ import * as _better_fetch_fetch from '@better-fetch/fetch';
 import { U as UnionToIntersection, P as Prettify, S as StripEmptyObjects } from './helper-DPDj8Nix.js';
 import { ClientOptions, InferClientAPI, InferActions, InferAdditionalFromClient, BetterAuthClientPlugin, IsSignal } from './types.js';
 import 'zod';
-import './index-PjYlcsPD.js';
+import './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/dist/types.d.ts

@@ -1,5 +1,5 @@
-import { b as BetterAuthPlugin, a as Auth, F as FieldAttribute, I as InferFieldOutput } from './index-PjYlcsPD.js';
-export { A as Adapter, k as AuthContext, B as BetterAuthOptions, G as GenericEndpointContext, H as HookEndpointContext, i as InferPluginTypes, h as InferSession, g as InferUser, P as PluginSchema, R as RateLimit, S as SessionAdapter, W as Where, j as init } from './index-PjYlcsPD.js';
+import { c as BetterAuthPlugin, a as Auth, F as FieldAttribute, I as InferFieldOutput } from './index-BRcc7HbO.js';
+export { A as Adapter, b as AuthContext, B as BetterAuthOptions, G as GenericEndpointContext, H as HookEndpointContext, j as InferPluginTypes, i as InferSession, h as InferUser, P as PluginSchema, R as RateLimit, S as SessionAdapter, W as Where, k as init } from './index-BRcc7HbO.js';
 import { U as UnionToIntersection, H as HasRequiredKeys, P as Prettify, S as StripEmptyObjects, L as LiteralString } from './helper-DPDj8Nix.js';
 export { D as DeepPartial, a as LiteralUnion, R as RequiredKeysOf, W as WithoutEmpty } from './helper-DPDj8Nix.js';
 import { S as Session, U as User } from './index-JM-i6hLs.js';

package/dist/vue.d.ts

@@ -3,7 +3,7 @@ import { U as UnionToIntersection, P as Prettify, S as StripEmptyObjects } from
 import { ClientOptions, InferClientAPI, InferActions, InferAdditionalFromClient, BetterAuthClientPlugin, IsSignal } from './types.js';
 import { Ref, DeepReadonly } from 'vue';
 import 'zod';
-import './index-PjYlcsPD.js';
+import './index-BRcc7HbO.js';
 import 'kysely';
 import './index-JM-i6hLs.js';
 import 'arctic';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "better-auth",
-  "version": "0.2.11",
+  "version": "0.3.1",
   "description": "The most comprehensive authentication library for TypeScript.",
   "type": "module",
   "main": "./dist/index.js",