npm - better-auth - Versions diffs - 1.3.1 → 1.3.2 - Mend

better-auth 1.3.1 → 1.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (241) hide show

package/dist/adapters/drizzle-adapter/index.d.cts +2 -2
package/dist/adapters/drizzle-adapter/index.d.mts +2 -2
package/dist/adapters/drizzle-adapter/index.d.ts +2 -2
package/dist/adapters/index.d.cts +3 -3
package/dist/adapters/index.d.mts +3 -3
package/dist/adapters/index.d.ts +3 -3
package/dist/adapters/kysely-adapter/index.d.cts +2 -2
package/dist/adapters/kysely-adapter/index.d.mts +2 -2
package/dist/adapters/kysely-adapter/index.d.ts +2 -2
package/dist/adapters/memory-adapter/index.d.cts +2 -2
package/dist/adapters/memory-adapter/index.d.mts +2 -2
package/dist/adapters/memory-adapter/index.d.ts +2 -2
package/dist/adapters/mongodb-adapter/index.d.cts +2 -2
package/dist/adapters/mongodb-adapter/index.d.mts +2 -2
package/dist/adapters/mongodb-adapter/index.d.ts +2 -2
package/dist/adapters/prisma-adapter/index.d.cts +2 -2
package/dist/adapters/prisma-adapter/index.d.mts +2 -2
package/dist/adapters/prisma-adapter/index.d.ts +2 -2
package/dist/adapters/test.d.cts +2 -2
package/dist/adapters/test.d.mts +2 -2
package/dist/adapters/test.d.ts +2 -2
package/dist/api/index.cjs +1 -1
package/dist/api/index.d.cts +2 -2
package/dist/api/index.d.mts +2 -2
package/dist/api/index.d.ts +2 -2
package/dist/api/index.mjs +2 -2
package/dist/client/index.d.cts +4 -4
package/dist/client/index.d.mts +4 -4
package/dist/client/index.d.ts +4 -4
package/dist/client/plugins/index.d.cts +4 -4
package/dist/client/plugins/index.d.mts +4 -4
package/dist/client/plugins/index.d.ts +4 -4
package/dist/client/react/index.d.cts +4 -4
package/dist/client/react/index.d.mts +4 -4
package/dist/client/react/index.d.ts +4 -4
package/dist/client/solid/index.d.cts +4 -4
package/dist/client/solid/index.d.mts +4 -4
package/dist/client/solid/index.d.ts +4 -4
package/dist/client/svelte/index.d.cts +4 -4
package/dist/client/svelte/index.d.mts +4 -4
package/dist/client/svelte/index.d.ts +4 -4
package/dist/client/vue/index.d.cts +4 -4
package/dist/client/vue/index.d.mts +4 -4
package/dist/client/vue/index.d.ts +4 -4
package/dist/cookies/index.d.cts +2 -2
package/dist/cookies/index.d.mts +2 -2
package/dist/cookies/index.d.ts +2 -2
package/dist/db/index.d.cts +12 -12
package/dist/db/index.d.mts +12 -12
package/dist/db/index.d.ts +12 -12
package/dist/index.cjs +2 -2
package/dist/index.d.cts +4 -4
package/dist/index.d.mts +4 -4
package/dist/index.d.ts +4 -4
package/dist/index.mjs +2 -2
package/dist/integrations/next-js.cjs +2 -2
package/dist/integrations/next-js.d.cts +2 -2
package/dist/integrations/next-js.d.mts +2 -2
package/dist/integrations/next-js.d.ts +2 -2
package/dist/integrations/next-js.mjs +2 -2
package/dist/integrations/node.d.cts +2 -2
package/dist/integrations/node.d.mts +2 -2
package/dist/integrations/node.d.ts +2 -2
package/dist/integrations/react-start.cjs +2 -2
package/dist/integrations/react-start.d.cts +2 -2
package/dist/integrations/react-start.d.mts +2 -2
package/dist/integrations/react-start.d.ts +2 -2
package/dist/integrations/react-start.mjs +2 -2
package/dist/integrations/svelte-kit.cjs +1 -1
package/dist/integrations/svelte-kit.d.cts +2 -2
package/dist/integrations/svelte-kit.d.mts +2 -2
package/dist/integrations/svelte-kit.d.ts +2 -2
package/dist/integrations/svelte-kit.mjs +1 -1
package/dist/oauth2/index.cjs +1 -1
package/dist/oauth2/index.d.cts +4 -4
package/dist/oauth2/index.d.mts +4 -4
package/dist/oauth2/index.d.ts +4 -4
package/dist/oauth2/index.mjs +1 -1
package/dist/plugins/admin/index.cjs +2 -2
package/dist/plugins/admin/index.d.cts +67 -67
package/dist/plugins/admin/index.d.mts +67 -67
package/dist/plugins/admin/index.d.ts +67 -67
package/dist/plugins/admin/index.mjs +2 -2
package/dist/plugins/anonymous/index.cjs +1 -1
package/dist/plugins/anonymous/index.d.cts +2 -2
package/dist/plugins/anonymous/index.d.mts +2 -2
package/dist/plugins/anonymous/index.d.ts +2 -2
package/dist/plugins/anonymous/index.mjs +1 -1
package/dist/plugins/bearer/index.cjs +1 -1
package/dist/plugins/bearer/index.d.cts +2 -2
package/dist/plugins/bearer/index.d.mts +2 -2
package/dist/plugins/bearer/index.d.ts +2 -2
package/dist/plugins/bearer/index.mjs +1 -1
package/dist/plugins/captcha/index.d.cts +2 -2
package/dist/plugins/captcha/index.d.mts +2 -2
package/dist/plugins/captcha/index.d.ts +2 -2
package/dist/plugins/custom-session/index.cjs +1 -1
package/dist/plugins/custom-session/index.d.cts +7 -7
package/dist/plugins/custom-session/index.d.mts +7 -7
package/dist/plugins/custom-session/index.d.ts +7 -7
package/dist/plugins/custom-session/index.mjs +1 -1
package/dist/plugins/email-otp/index.cjs +1 -1
package/dist/plugins/email-otp/index.d.cts +31 -31
package/dist/plugins/email-otp/index.d.mts +31 -31
package/dist/plugins/email-otp/index.d.ts +31 -31
package/dist/plugins/email-otp/index.mjs +1 -1
package/dist/plugins/generic-oauth/index.cjs +1 -1
package/dist/plugins/generic-oauth/index.d.cts +24 -24
package/dist/plugins/generic-oauth/index.d.mts +24 -24
package/dist/plugins/generic-oauth/index.d.ts +24 -24
package/dist/plugins/generic-oauth/index.mjs +1 -1
package/dist/plugins/haveibeenpwned/index.cjs +1 -1
package/dist/plugins/haveibeenpwned/index.d.cts +2 -2
package/dist/plugins/haveibeenpwned/index.d.mts +2 -2
package/dist/plugins/haveibeenpwned/index.d.ts +2 -2
package/dist/plugins/haveibeenpwned/index.mjs +1 -1
package/dist/plugins/index.cjs +7 -7
package/dist/plugins/index.d.cts +26 -26
package/dist/plugins/index.d.mts +26 -26
package/dist/plugins/index.d.ts +26 -26
package/dist/plugins/index.mjs +9 -9
package/dist/plugins/jwt/index.cjs +2 -2
package/dist/plugins/jwt/index.d.cts +2 -2
package/dist/plugins/jwt/index.d.mts +2 -2
package/dist/plugins/jwt/index.d.ts +2 -2
package/dist/plugins/jwt/index.mjs +2 -2
package/dist/plugins/magic-link/index.cjs +1 -1
package/dist/plugins/magic-link/index.d.cts +14 -14
package/dist/plugins/magic-link/index.d.mts +14 -14
package/dist/plugins/magic-link/index.d.ts +14 -14
package/dist/plugins/magic-link/index.mjs +1 -1
package/dist/plugins/multi-session/index.cjs +1 -1
package/dist/plugins/multi-session/index.d.cts +9 -9
package/dist/plugins/multi-session/index.d.mts +9 -9
package/dist/plugins/multi-session/index.d.ts +9 -9
package/dist/plugins/multi-session/index.mjs +1 -1
package/dist/plugins/oauth-proxy/index.cjs +1 -1
package/dist/plugins/oauth-proxy/index.d.cts +7 -7
package/dist/plugins/oauth-proxy/index.d.mts +7 -7
package/dist/plugins/oauth-proxy/index.d.ts +7 -7
package/dist/plugins/oauth-proxy/index.mjs +1 -1
package/dist/plugins/oidc-provider/index.cjs +3 -3
package/dist/plugins/oidc-provider/index.d.cts +27 -27
package/dist/plugins/oidc-provider/index.d.mts +27 -27
package/dist/plugins/oidc-provider/index.d.ts +27 -27
package/dist/plugins/oidc-provider/index.mjs +3 -3
package/dist/plugins/one-tap/index.cjs +1 -1
package/dist/plugins/one-tap/index.d.cts +4 -4
package/dist/plugins/one-tap/index.d.mts +4 -4
package/dist/plugins/one-tap/index.d.ts +4 -4
package/dist/plugins/one-tap/index.mjs +1 -1
package/dist/plugins/one-time-token/index.cjs +3 -3
package/dist/plugins/one-time-token/index.d.cts +6 -6
package/dist/plugins/one-time-token/index.d.mts +6 -6
package/dist/plugins/one-time-token/index.d.ts +6 -6
package/dist/plugins/one-time-token/index.mjs +3 -3
package/dist/plugins/open-api/index.cjs +1 -1
package/dist/plugins/open-api/index.d.cts +2 -2
package/dist/plugins/open-api/index.d.mts +2 -2
package/dist/plugins/open-api/index.d.ts +2 -2
package/dist/plugins/open-api/index.mjs +1 -1
package/dist/plugins/organization/index.cjs +3 -3
package/dist/plugins/organization/index.d.cts +390 -390
package/dist/plugins/organization/index.d.mts +390 -390
package/dist/plugins/organization/index.d.ts +390 -390
package/dist/plugins/organization/index.mjs +3 -3
package/dist/plugins/passkey/index.cjs +1 -1
package/dist/plugins/passkey/index.d.cts +23 -23
package/dist/plugins/passkey/index.d.mts +23 -23
package/dist/plugins/passkey/index.d.ts +23 -23
package/dist/plugins/passkey/index.mjs +1 -1
package/dist/plugins/phone-number/index.cjs +1 -1
package/dist/plugins/phone-number/index.d.cts +28 -28
package/dist/plugins/phone-number/index.d.mts +28 -28
package/dist/plugins/phone-number/index.d.ts +28 -28
package/dist/plugins/phone-number/index.mjs +1 -1
package/dist/plugins/siwe/index.cjs +297 -0
package/dist/plugins/siwe/index.d.cts +195 -0
package/dist/plugins/siwe/index.d.mts +195 -0
package/dist/plugins/siwe/index.d.ts +195 -0
package/dist/plugins/siwe/index.mjs +295 -0
package/dist/plugins/sso/index.cjs +1 -1
package/dist/plugins/sso/index.d.cts +45 -45
package/dist/plugins/sso/index.d.mts +45 -45
package/dist/plugins/sso/index.d.ts +45 -45
package/dist/plugins/sso/index.mjs +1 -1
package/dist/plugins/two-factor/index.cjs +1 -1
package/dist/plugins/two-factor/index.d.cts +38 -38
package/dist/plugins/two-factor/index.d.mts +38 -38
package/dist/plugins/two-factor/index.d.ts +38 -38
package/dist/plugins/two-factor/index.mjs +1 -1
package/dist/plugins/username/index.cjs +1 -1
package/dist/plugins/username/index.d.cts +12 -12
package/dist/plugins/username/index.d.mts +12 -12
package/dist/plugins/username/index.d.ts +12 -12
package/dist/plugins/username/index.mjs +1 -1
package/dist/shared/{better-auth.C-oNfZPH.d.cts → better-auth.B0e3ZzlM.d.cts} +36 -36
package/dist/shared/{better-auth.CE16lr3i.d.mts → better-auth.B1VHvePI.d.mts} +36 -36
package/dist/shared/{better-auth.DoKaQIwy.d.mts → better-auth.BF0l18Af.d.mts} +1 -1
package/dist/shared/{better-auth.CNTpFj_S.cjs → better-auth.BXW4aAiQ.cjs} +2 -2
package/dist/shared/{better-auth.DdKZcMVt.d.ts → better-auth.B_G094Aj.d.ts} +1 -1
package/dist/shared/{better-auth.DQfCK4Nb.mjs → better-auth.Bqt8-7ls.mjs} +2 -2
package/dist/shared/{better-auth.DevRAmVV.d.ts → better-auth.Bwe61noi.d.ts} +1 -1
package/dist/shared/{better-auth.B3K6UWYy.d.cts → better-auth.CF-FWRQL.d.cts} +1 -1
package/dist/shared/{better-auth.D2QnAIyP.d.ts → better-auth.CHvHihjD.d.ts} +36 -36
package/dist/shared/{better-auth.pnE8EkZO.cjs → better-auth.COsDmM8f.cjs} +1 -1
package/dist/shared/{better-auth.B8mbk3HM.cjs → better-auth.CSftMZoM.cjs} +1 -1
package/dist/shared/{better-auth.DG2FJeYI.cjs → better-auth.CU2ZnFFo.cjs} +4 -3
package/dist/shared/{better-auth.KpzJUkxw.d.mts → better-auth.CePXeKag.d.mts} +515 -515
package/dist/shared/{better-auth.CnqHgquB.cjs → better-auth.CeY8lCIq.cjs} +33 -11
package/dist/shared/{better-auth.Cgjn2thr.d.cts → better-auth.CiGummYu.d.cts} +515 -515
package/dist/shared/{better-auth.BP6KhZxK.mjs → better-auth.D1SaVuxk.mjs} +1 -1
package/dist/shared/{better-auth.BOumacvv.mjs → better-auth.D4HhkCZJ.mjs} +4 -3
package/dist/shared/{better-auth.PchrD52N.d.cts → better-auth.DEgvs2nh.d.cts} +1 -1
package/dist/shared/{better-auth._di0pH6c.mjs → better-auth.DGaVMVAI.mjs} +1 -1
package/dist/shared/{better-auth.PS9uuCnX.d.ts → better-auth.DPa2nz5L.d.ts} +3 -3
package/dist/shared/{better-auth.VKKx-2JU.mjs → better-auth.DR6QsC6j.mjs} +33 -11
package/dist/shared/{better-auth.ByEh_r9h.d.mts → better-auth.DbqVX6sp.d.mts} +1 -1
package/dist/shared/{better-auth.2lcgvW_O.d.ts → better-auth.Dj2HyOmw.d.ts} +515 -515
package/dist/shared/{better-auth.Bs90Z5lG.mjs → better-auth.DygEm6OX.mjs} +1 -1
package/dist/shared/{better-auth.jZedDYFo.mjs → better-auth.HDgvLN7B.mjs} +2 -2
package/dist/shared/{better-auth.KXK1cTP6.d.mts → better-auth.IegS6fw_.d.mts} +3 -3
package/dist/shared/{better-auth.B448Gbxg.cjs → better-auth.PIkdXr0U.cjs} +2 -2
package/dist/shared/{better-auth.DCdVWPIH.cjs → better-auth.TnpcdNJo.cjs} +1 -1
package/dist/shared/{better-auth.hWM7ExMT.mjs → better-auth.VOBpdwFt.mjs} +1 -1
package/dist/shared/{better-auth.CtknPsTc.cjs → better-auth.johXc5IC.cjs} +1 -1
package/dist/shared/{better-auth.DVIqLF8t.d.cts → better-auth.npEvGVS_.d.cts} +3 -3
package/dist/social-providers/index.cjs +1 -1
package/dist/social-providers/index.d.cts +1 -1
package/dist/social-providers/index.d.mts +1 -1
package/dist/social-providers/index.d.ts +1 -1
package/dist/social-providers/index.mjs +1 -1
package/dist/test-utils/index.cjs +3 -3
package/dist/test-utils/index.d.cts +732 -731
package/dist/test-utils/index.d.mts +732 -731
package/dist/test-utils/index.d.ts +732 -731
package/dist/test-utils/index.mjs +3 -3
package/dist/types/index.d.cts +3 -3
package/dist/types/index.d.mts +3 -3
package/dist/types/index.d.ts +3 -3
package/package.json +14 -1

package/dist/shared/{better-auth.BP6KhZxK.mjs → better-auth.D1SaVuxk.mjs} RENAMED Viewed

@@ -3,7 +3,7 @@ import { importJWK, SignJWT, generateKeyPair, exportJWK } from 'jose';
 import { B as BetterAuthError } from './better-auth.DdzSJf-n.mjs';
 import { symmetricEncrypt, symmetricDecrypt } from '../crypto/index.mjs';
 import 'better-call';
-import { i as createAuthMiddleware, j as createAuthEndpoint, l as sessionMiddleware } from './better-auth.BOumacvv.mjs';
+import { i as createAuthMiddleware, j as createAuthEndpoint, l as sessionMiddleware } from './better-auth.D4HhkCZJ.mjs';
 import 'zod/v4';
 import './better-auth.8zoxzg-F.mjs';
 import '@better-auth/utils/base64';

package/dist/shared/{better-auth.BOumacvv.mjs → better-auth.D4HhkCZJ.mjs} RENAMED Viewed

@@ -1516,12 +1516,13 @@ async function validateAuthorizationCode({
   options.clientKey && body.set("client_key", options.clientKey);
   deviceId && body.set("device_id", deviceId);
   body.set("redirect_uri", options.redirectURI || redirectURI);
+  body.set("client_id", options.clientId);
   if (authentication === "basic") {
-    requestHeaders["authorization"] = base64.encode(
+    const encodedCredentials = base64.encode(
       `${options.clientId}:${options.clientSecret}`
     );
+    requestHeaders["authorization"] = `Basic ${encodedCredentials}`;
   } else {
-    body.set("client_id", options.clientId);
     body.set("client_secret", options.clientSecret);
   }
   for (const [key, value] of Object.entries(additionalParams)) {
@@ -2654,7 +2655,7 @@ const twitter = (options) => {
       return validateAuthorizationCode({
         code,
         codeVerifier,
-        authentication: "post",
+        authentication: "basic",
         redirectURI,
         options,
         tokenEndpoint: "https://api.x.com/2/oauth2/token"

package/dist/shared/{better-auth.PchrD52N.d.cts → better-auth.DEgvs2nh.d.cts} RENAMED Viewed

@@ -1,4 +1,4 @@
-import { G as GenericEndpointContext } from './better-auth.Cgjn2thr.cjs';
+import { G as GenericEndpointContext } from './better-auth.CiGummYu.cjs';
 declare function generateState(c: GenericEndpointContext, link?: {
     email: string;

package/dist/shared/{better-auth._di0pH6c.mjs → better-auth.DGaVMVAI.mjs} RENAMED Viewed

@@ -1,4 +1,4 @@
-import { i as createAuthMiddleware, l as sessionMiddleware } from './better-auth.BOumacvv.mjs';
+import { i as createAuthMiddleware, l as sessionMiddleware } from './better-auth.D4HhkCZJ.mjs';
 import 'better-call';
 import * as z from 'zod/v4';
 import './better-auth.8zoxzg-F.mjs';

package/dist/shared/{better-auth.PS9uuCnX.d.ts → better-auth.DPa2nz5L.d.ts} RENAMED Viewed

@@ -1,5 +1,5 @@
 import { L as LiteralString, a as Prettify } from './better-auth.ZSfSbnQT.js';
-import * as zod_v4 from 'zod/v4';
+import * as z from 'zod/v4';
 import * as jose from 'jose';
 interface OAuth2Tokens {
@@ -2801,8 +2801,8 @@ declare const socialProviders: {
     };
 };
 declare const socialProviderList: ["github", ...(keyof typeof socialProviders)[]];
-declare const SocialProviderListEnum: zod_v4.ZodType<SocialProviderList[number] | (string & {})>;
-type SocialProvider = zod_v4.infer<typeof SocialProviderListEnum>;
+declare const SocialProviderListEnum: z.ZodType<SocialProviderList[number] | (string & {})>;
+type SocialProvider = z.infer<typeof SocialProviderListEnum>;
 type SocialProviders = {
     [K in SocialProviderList[number]]?: Prettify<Parameters<(typeof socialProviders)[K]>[0] & {
         enabled?: boolean;

package/dist/shared/{better-auth.VKKx-2JU.mjs → better-auth.DR6QsC6j.mjs} RENAMED Viewed

@@ -1,6 +1,6 @@
 import { APIError } from 'better-call';
 import * as z from 'zod/v4';
-import { j as createAuthEndpoint, k as getSessionFromCtx, l as sessionMiddleware, B as BASE_ERROR_CODES, a2 as requestOnlySessionMiddleware } from './better-auth.BOumacvv.mjs';
+import { j as createAuthEndpoint, k as getSessionFromCtx, l as sessionMiddleware, B as BASE_ERROR_CODES, a2 as requestOnlySessionMiddleware } from './better-auth.D4HhkCZJ.mjs';
 import './better-auth.8zoxzg-F.mjs';
 import '@better-auth/utils/base64';
 import '@better-auth/utils/hmac';
@@ -9,7 +9,7 @@ import './better-auth.n2KFGwjY.mjs';
 import { g as getDate } from './better-auth.CW6D9eSx.mjs';
 import { B as BetterAuthError } from './better-auth.DdzSJf-n.mjs';
 import { p as parseJSON } from './better-auth.ffWeg50w.mjs';
-import { o as orgMiddleware, a as orgSessionMiddleware, t as teamSchema } from './better-auth._di0pH6c.mjs';
+import { o as orgMiddleware, a as orgSessionMiddleware, t as teamSchema } from './better-auth.DGaVMVAI.mjs';
 import { setSessionCookie } from '../cookies/index.mjs';
 import './better-auth.DBGfIDnh.mjs';
 import 'defu';
@@ -312,6 +312,25 @@ const getOrgAdapter = (context, options) => {
       });
       return organization;
     },
+    checkMembership: async ({
+      userId,
+      organizationId
+    }) => {
+      const member = await adapter.findOne({
+        model: "member",
+        where: [
+          {
+            field: "userId",
+            value: userId
+          },
+          {
+            field: "organizationId",
+            value: organizationId
+          }
+        ]
+      });
+      return member;
+    },
     /**
      * @requires db
      */
@@ -2496,23 +2515,26 @@ const setActiveOrganization = (options) => {
         }
         organizationId = sessionOrgId;
       }
-      const organization = await adapter.findFullOrganization({
-        organizationId,
-        isSlug: !!ctx.body.organizationSlug
+      const isMember = await adapter.checkMembership({
+        userId: session.user.id,
+        organizationId
       });
-      const isMember = organization?.members.find(
-        (member) => member.userId === session.user.id
-      );
       if (!isMember) {
         await adapter.setActiveOrganization(session.session.token, null);
         throw new APIError("FORBIDDEN", {
           message: ORGANIZATION_ERROR_CODES.USER_IS_NOT_A_MEMBER_OF_THE_ORGANIZATION
         });
       }
+      let organization = await adapter.findOrganizationById(organizationId);
       if (!organization) {
-        throw new APIError("BAD_REQUEST", {
-          message: ORGANIZATION_ERROR_CODES.ORGANIZATION_NOT_FOUND
-        });
+        if (ctx.body.organizationSlug) {
+          organization = await adapter.findOrganizationBySlug(organizationId);
+        }
+        if (!organization) {
+          throw new APIError("BAD_REQUEST", {
+            message: ORGANIZATION_ERROR_CODES.ORGANIZATION_NOT_FOUND
+          });
+        }
       }
       const updatedSession = await adapter.setActiveOrganization(
         session.session.token,

package/dist/shared/{better-auth.ByEh_r9h.d.mts → better-auth.DbqVX6sp.d.mts} RENAMED Viewed

@@ -1,4 +1,4 @@
-import { h as BetterAuthPlugin, B as BetterAuthOptions, ad as InferFieldsInputClient, ab as InferFieldsOutput, U as User, S as Session, n as Auth } from './better-auth.KpzJUkxw.mjs';
+import { h as BetterAuthPlugin, B as BetterAuthOptions, ad as InferFieldsInputClient, ab as InferFieldsOutput, U as User, S as Session, n as Auth } from './better-auth.CePXeKag.mjs';
 import { BetterFetchOption, BetterFetchResponse, BetterFetch, BetterFetchPlugin } from '@better-fetch/fetch';
 import { WritableAtom, Atom } from 'nanostores';
 import { U as UnionToIntersection, H as HasRequiredKeys, a as Prettify, L as LiteralString, S as StripEmptyObjects } from './better-auth.ZSfSbnQT.mjs';