clearauth 0.3.0

package/dist/react.js

@@ -0,0 +1,296 @@
+import { jsx as _jsx } from "react/jsx-runtime";
+/**
+ * React hooks and utilities for ClearAuth
+ *
+ * This module provides React hooks for authentication with ClearAuth.
+ * Works with any React framework (Next.js, Vite, Create React App, etc.).
+ *
+ * @module react
+ */
+import { useState, useEffect, useCallback, createContext, useContext } from 'react';
+/**
+ * React context for authentication
+ */
+const AuthContext = createContext(undefined);
+/**
+ * Authentication provider component
+ *
+ * Wrap your app with this provider to enable authentication hooks.
+ *
+ * @param props - Provider props
+ * @param props.children - Child components
+ * @param props.baseUrl - Base URL for auth API (defaults to "/api/auth")
+ * @param props.fetchFn - Custom fetch function (defaults to global fetch)
+ *
+ * @example
+ * ```tsx
+ * import { AuthProvider } from 'clearauth/react'
+ *
+ * function App() {
+ *   return (
+ *     <AuthProvider baseUrl="/api/auth">
+ *       <YourApp />
+ *     </AuthProvider>
+ *   )
+ * }
+ * ```
+ *
+ * @example With custom base URL
+ * ```tsx
+ * <AuthProvider baseUrl="https://api.example.com/auth">
+ *   <YourApp />
+ * </AuthProvider>
+ * ```
+ */
+export function AuthProvider({ children, baseUrl = '/api/auth', fetchFn = fetch, }) {
+    const [user, setUser] = useState(null);
+    const [loading, setLoading] = useState(true);
+    const [error, setError] = useState(null);
+    // Helper to make authenticated requests
+    const authFetch = useCallback(async (path, options = {}) => {
+        const url = `${baseUrl}${path}`;
+        const response = await fetchFn(url, {
+            ...options,
+            credentials: 'include', // Include cookies
+            headers: {
+                'Content-Type': 'application/json',
+                ...options.headers,
+            },
+        });
+        if (!response.ok) {
+            const errorData = await response.json().catch(() => ({ error: 'Unknown error' }));
+            throw new Error(errorData.error || errorData.message || 'Request failed');
+        }
+        return response.json();
+    }, [baseUrl, fetchFn]);
+    // Check session on mount
+    const refresh = useCallback(async () => {
+        try {
+            setLoading(true);
+            setError(null);
+            // Session validation would be done server-side via cookie
+            // We'll implement a /session endpoint to check current session
+            const data = await authFetch('/session');
+            setUser(data.user || null);
+        }
+        catch (err) {
+            setUser(null);
+            // Don't set error for unauthenticated state
+            if (err.message !== 'Unauthorized') {
+                setError(err.message);
+            }
+        }
+        finally {
+            setLoading(false);
+        }
+    }, [authFetch]);
+    useEffect(() => {
+        refresh();
+    }, [refresh]);
+    // Sign in with email and password
+    const signIn = useCallback(async (email, password) => {
+        try {
+            setLoading(true);
+            setError(null);
+            const data = await authFetch('/login', {
+                method: 'POST',
+                body: JSON.stringify({ email, password }),
+            });
+            setUser(data.user);
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+        finally {
+            setLoading(false);
+        }
+    }, [authFetch]);
+    // Sign up with email and password
+    const signUp = useCallback(async (email, password, name) => {
+        try {
+            setLoading(true);
+            setError(null);
+            const data = await authFetch('/register', {
+                method: 'POST',
+                body: JSON.stringify({ email, password, name }),
+            });
+            setUser(data.user);
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+        finally {
+            setLoading(false);
+        }
+    }, [authFetch]);
+    // Sign out
+    const signOut = useCallback(async () => {
+        try {
+            setLoading(true);
+            setError(null);
+            await authFetch('/logout', { method: 'POST' });
+            setUser(null);
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+        finally {
+            setLoading(false);
+        }
+    }, [authFetch]);
+    // OAuth login helpers
+    const loginWithGitHub = useCallback(() => {
+        window.location.href = `${baseUrl}/github/login`;
+    }, [baseUrl]);
+    const loginWithGoogle = useCallback(() => {
+        window.location.href = `${baseUrl}/google/login`;
+    }, [baseUrl]);
+    // Password reset
+    const requestPasswordReset = useCallback(async (email) => {
+        try {
+            setError(null);
+            await authFetch('/request-reset', {
+                method: 'POST',
+                body: JSON.stringify({ email }),
+            });
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+    }, [authFetch]);
+    const resetPassword = useCallback(async (token, newPassword) => {
+        try {
+            setError(null);
+            await authFetch('/reset-password', {
+                method: 'POST',
+                body: JSON.stringify({ token, newPassword }),
+            });
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+    }, [authFetch]);
+    // Email verification
+    const verifyEmail = useCallback(async (token) => {
+        try {
+            setError(null);
+            await authFetch('/verify-email', {
+                method: 'POST',
+                body: JSON.stringify({ token }),
+            });
+            await refresh(); // Refresh to get updated email_verified status
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+    }, [authFetch, refresh]);
+    const resendVerification = useCallback(async (email) => {
+        try {
+            setError(null);
+            await authFetch('/resend-verification', {
+                method: 'POST',
+                body: JSON.stringify({ email }),
+            });
+        }
+        catch (err) {
+            setError(err.message);
+            throw err;
+        }
+    }, [authFetch]);
+    const value = {
+        user,
+        loading,
+        error,
+        signIn,
+        signUp,
+        signOut,
+        loginWithGitHub,
+        loginWithGoogle,
+        requestPasswordReset,
+        resetPassword,
+        verifyEmail,
+        resendVerification,
+        refresh,
+    };
+    return _jsx(AuthContext.Provider, { value: value, children: children });
+}
+/**
+ * Hook to access authentication state and actions
+ *
+ * Must be used within an AuthProvider.
+ *
+ * @returns Auth state and actions
+ * @throws Error if used outside AuthProvider
+ *
+ * @example
+ * ```tsx
+ * function LoginForm() {
+ *   const { signIn, loading, error } = useAuth()
+ *
+ *   const handleSubmit = async (e) => {
+ *     e.preventDefault()
+ *     await signIn(email, password)
+ *   }
+ *
+ *   return <form onSubmit={handleSubmit}>...</form>
+ * }
+ * ```
+ */
+export function useAuth() {
+    const context = useContext(AuthContext);
+    if (!context) {
+        throw new Error('useAuth must be used within an AuthProvider');
+    }
+    return context;
+}
+/**
+ * Hook to access current user
+ *
+ * Convenience hook that only returns the user object.
+ *
+ * @returns Current user or null
+ *
+ * @example
+ * ```tsx
+ * function UserProfile() {
+ *   const user = useUser()
+ *
+ *   if (!user) return <div>Not logged in</div>
+ *
+ *   return <div>Welcome, {user.name}!</div>
+ * }
+ * ```
+ */
+export function useUser() {
+    const { user } = useAuth();
+    return user;
+}
+/**
+ * Hook to check if user is authenticated
+ *
+ * @returns True if user is authenticated
+ *
+ * @example
+ * ```tsx
+ * function ProtectedContent() {
+ *   const isAuthenticated = useIsAuthenticated()
+ *
+ *   if (!isAuthenticated) {
+ *     return <LoginPrompt />
+ *   }
+ *
+ *   return <SecretContent />
+ * }
+ * ```
+ */
+export function useIsAuthenticated() {
+    const { user } = useAuth();
+    return user !== null;
+}
+//# sourceMappingURL=react.js.map

package/dist/react.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"react.js","sourceRoot":"","sources":["../src/react.tsx"],"names":[],"mappings":";AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,WAAW,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,OAAO,CAAA;AAwDnF;;GAEG;AACH,MAAM,WAAW,GAAG,aAAa,CAA+B,SAAS,CAAC,CAAA;AAE1E;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AACH,MAAM,UAAU,YAAY,CAAC,EAC3B,QAAQ,EACR,OAAO,GAAG,WAAW,EACrB,OAAO,GAAG,KAAK,GAGK;IACpB,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,GAAG,QAAQ,CAAc,IAAI,CAAC,CAAA;IACnD,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;IAC5C,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,QAAQ,CAAgB,IAAI,CAAC,CAAA;IAEvD,wCAAwC;IACxC,MAAM,SAAS,GAAG,WAAW,CAC3B,KAAK,EAAE,IAAY,EAAE,UAAuB,EAAE,EAAE,EAAE;QAChD,MAAM,GAAG,GAAG,GAAG,OAAO,GAAG,IAAI,EAAE,CAAA;QAC/B,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,GAAG,EAAE;YAClC,GAAG,OAAO;YACV,WAAW,EAAE,SAAS,EAAE,kBAAkB;YAC1C,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,GAAG,OAAO,CAAC,OAAO;aACnB;SACF,CAAC,CAAA;QAEF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC,CAAA;YACjF,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,KAAK,IAAI,SAAS,CAAC,OAAO,IAAI,gBAAgB,CAAC,CAAA;QAC3E,CAAC;QAED,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAA;IACxB,CAAC,EACD,CAAC,OAAO,EAAE,OAAO,CAAC,CACnB,CAAA;IAED,yBAAyB;IACzB,MAAM,OAAO,GAAG,WAAW,CAAC,KAAK,IAAI,EAAE;QACrC,IAAI,CAAC;YACH,UAAU,CAAC,IAAI,CAAC,CAAA;YAChB,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,0DAA0D;YAC1D,+DAA+D;YAC/D,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,UAAU,CAAC,CAAA;YACxC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,CAAA;QAC5B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CAAC,CAAA;YACb,4CAA4C;YAC5C,IAAK,GAAa,CAAC,OAAO,KAAK,cAAc,EAAE,CAAC;gBAC9C,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAClC,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAA;QACnB,CAAC;IACH,CAAC,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;IAEf,SAAS,CAAC,GAAG,EAAE;QACb,OAAO,EAAE,CAAA;IACX,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAA;IAEb,kCAAkC;IAClC,MAAM,MAAM,GAAG,WAAW,CACxB,KAAK,EAAE,KAAa,EAAE,QAAgB,EAAE,EAAE;QACxC,IAAI,CAAC;YACH,UAAU,CAAC,IAAI,CAAC,CAAA;YAChB,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,QAAQ,EAAE;gBACrC,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;aAC1C,CAAC,CAAA;YACF,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACpB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAA;QACnB,CAAC;IACH,CAAC,EACD,CAAC,SAAS,CAAC,CACZ,CAAA;IAED,kCAAkC;IAClC,MAAM,MAAM,GAAG,WAAW,CACxB,KAAK,EAAE,KAAa,EAAE,QAAgB,EAAE,IAAa,EAAE,EAAE;QACvD,IAAI,CAAC;YACH,UAAU,CAAC,IAAI,CAAC,CAAA;YAChB,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,WAAW,EAAE;gBACxC,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;aAChD,CAAC,CAAA;YACF,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACpB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAA;QACnB,CAAC;IACH,CAAC,EACD,CAAC,SAAS,CAAC,CACZ,CAAA;IAED,WAAW;IACX,MAAM,OAAO,GAAG,WAAW,CAAC,KAAK,IAAI,EAAE;QACrC,IAAI,CAAC;YACH,UAAU,CAAC,IAAI,CAAC,CAAA;YAChB,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,SAAS,CAAC,SAAS,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAA;YAC9C,OAAO,CAAC,IAAI,CAAC,CAAA;QACf,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAA;QACnB,CAAC;IACH,CAAC,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;IAEf,sBAAsB;IACtB,MAAM,eAAe,GAAG,WAAW,CAAC,GAAG,EAAE;QACvC,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,GAAG,OAAO,eAAe,CAAA;IAClD,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAA;IAEb,MAAM,eAAe,GAAG,WAAW,CAAC,GAAG,EAAE;QACvC,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,GAAG,OAAO,eAAe,CAAA;IAClD,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAA;IAEb,iBAAiB;IACjB,MAAM,oBAAoB,GAAG,WAAW,CACtC,KAAK,EAAE,KAAa,EAAE,EAAE;QACtB,IAAI,CAAC;YACH,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,SAAS,CAAC,gBAAgB,EAAE;gBAChC,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC;aAChC,CAAC,CAAA;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;IACH,CAAC,EACD,CAAC,SAAS,CAAC,CACZ,CAAA;IAED,MAAM,aAAa,GAAG,WAAW,CAC/B,KAAK,EAAE,KAAa,EAAE,WAAmB,EAAE,EAAE;QAC3C,IAAI,CAAC;YACH,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,SAAS,CAAC,iBAAiB,EAAE;gBACjC,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;aAC7C,CAAC,CAAA;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;IACH,CAAC,EACD,CAAC,SAAS,CAAC,CACZ,CAAA;IAED,qBAAqB;IACrB,MAAM,WAAW,GAAG,WAAW,CAC7B,KAAK,EAAE,KAAa,EAAE,EAAE;QACtB,IAAI,CAAC;YACH,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,SAAS,CAAC,eAAe,EAAE;gBAC/B,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC;aAChC,CAAC,CAAA;YACF,MAAM,OAAO,EAAE,CAAA,CAAC,+CAA+C;QACjE,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;IACH,CAAC,EACD,CAAC,SAAS,EAAE,OAAO,CAAC,CACrB,CAAA;IAED,MAAM,kBAAkB,GAAG,WAAW,CACpC,KAAK,EAAE,KAAa,EAAE,EAAE;QACtB,IAAI,CAAC;YACH,QAAQ,CAAC,IAAI,CAAC,CAAA;YACd,MAAM,SAAS,CAAC,sBAAsB,EAAE;gBACtC,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC;aAChC,CAAC,CAAA;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,QAAQ,CAAE,GAAa,CAAC,OAAO,CAAC,CAAA;YAChC,MAAM,GAAG,CAAA;QACX,CAAC;IACH,CAAC,EACD,CAAC,SAAS,CAAC,CACZ,CAAA;IAED,MAAM,KAAK,GAAqB;QAC9B,IAAI;QACJ,OAAO;QACP,KAAK;QACL,MAAM;QACN,MAAM;QACN,OAAO;QACP,eAAe;QACf,eAAe;QACf,oBAAoB;QACpB,aAAa;QACb,WAAW;QACX,kBAAkB;QAClB,OAAO;KACR,CAAA;IAED,OAAO,KAAC,WAAW,CAAC,QAAQ,IAAC,KAAK,EAAE,KAAK,YAAG,QAAQ,GAAwB,CAAA;AAC9E,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,MAAM,UAAU,OAAO;IACrB,MAAM,OAAO,GAAG,UAAU,CAAC,WAAW,CAAC,CAAA;IACvC,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAChE,CAAC;IACD,OAAO,OAAO,CAAA;AAChB,CAAC;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,UAAU,OAAO;IACrB,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAA;IAC1B,OAAO,IAAI,CAAA;AACb,CAAC;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,UAAU,kBAAkB;IAChC,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAA;IAC1B,OAAO,IAAI,KAAK,IAAI,CAAA;AACtB,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,190 @@
+/**
+ * Type definitions for ClearAuth
+ *
+ * Core configuration types and OAuth-related interfaces for the authentication system.
+ */
+import type { Kysely } from 'kysely';
+import type { Database } from './database/schema.js';
+import type { PasswordHasher } from './password-hasher.js';
+/**
+ * OAuth Provider Configuration
+ */
+export interface OAuthProviderConfig {
+    clientId: string;
+    clientSecret: string;
+    redirectUri: string;
+}
+/**
+ * OAuth Providers Configuration
+ */
+export interface OAuthProvidersConfig {
+    github?: OAuthProviderConfig;
+    google?: OAuthProviderConfig;
+}
+/**
+ * Session Configuration
+ */
+export interface SessionConfig {
+    /**
+     * Session expiration time in seconds
+     * @default 2592000 (30 days)
+     */
+    expiresIn?: number;
+    /**
+     * Cookie configuration
+     */
+    cookie?: {
+        name?: string;
+        sameSite?: 'strict' | 'lax' | 'none';
+        httpOnly?: boolean;
+        secure?: boolean;
+        path?: string;
+    };
+}
+/**
+ * Email/Password Configuration
+ */
+export interface EmailPasswordConfig {
+    enabled: boolean;
+    requireEmailVerification?: boolean;
+}
+/**
+ * Password Validation Configuration
+ */
+export interface PasswordConfig {
+    /**
+     * Minimum password length
+     * @default 8
+     */
+    minLength?: number;
+}
+/**
+ * CORS Configuration
+ */
+export interface CorsConfig {
+    /**
+     * Allowed origins for CORS requests
+     * - Single origin: "https://example.com"
+     * - Multiple origins: ["https://example.com", "https://app.example.com"]
+     * - Allow all: "*"
+     * @default "*"
+     */
+    origin?: string | string[];
+    /**
+     * Whether to allow credentials (cookies, authorization headers)
+     * @default true
+     */
+    credentials?: boolean;
+    /**
+     * Allowed HTTP methods
+     * @default ["GET", "POST", "OPTIONS"]
+     */
+    methods?: string[];
+    /**
+     * Allowed headers
+     * @default ["Content-Type", "Authorization"]
+     */
+    allowedHeaders?: string[];
+    /**
+     * Exposed headers
+     */
+    exposedHeaders?: string[];
+    /**
+     * Max age for preflight cache (in seconds)
+     * @default 86400 (24 hours)
+     */
+    maxAge?: number;
+}
+/**
+ * Main ClearAuth Configuration
+ */
+export interface ClearAuthConfig {
+    /**
+     * Database instance (Kysely)
+     */
+    database: Kysely<Database>;
+    /**
+     * Secret key for session signing
+     */
+    secret: string;
+    /**
+     * Base URL for the application (used for OAuth redirects)
+     */
+    baseUrl: string;
+    /**
+     * OAuth providers configuration
+     */
+    oauth?: OAuthProvidersConfig;
+    /**
+     * Session configuration
+     */
+    session?: SessionConfig;
+    /**
+     * Email/password authentication configuration
+     */
+    emailPassword?: EmailPasswordConfig;
+    /**
+     * Password validation configuration
+     */
+    password?: PasswordConfig;
+    /**
+     * Password hashing implementation
+     */
+    passwordHasher?: PasswordHasher;
+    /**
+     * CORS configuration for browser clients
+     */
+    cors?: CorsConfig;
+    /**
+     * Production mode flag
+     */
+    isProduction?: boolean;
+}
+/**
+ * Standardized OAuth User Profile
+ *
+ * Normalized user data from OAuth providers (GitHub, Google, etc.)
+ */
+export interface OAuthUserProfile {
+    /** Provider-specific user ID */
+    id: string;
+    /** User's email address */
+    email: string;
+    /** User's full name (may be null) */
+    name: string | null;
+    /** User's avatar URL (may be null) */
+    avatar_url: string | null;
+    /** Whether email is verified by provider */
+    email_verified?: boolean;
+}
+/**
+ * OAuth State Parameter (CSRF protection)
+ */
+export interface OAuthState {
+    /** Random state value */
+    state: string;
+    /** Timestamp when state was created */
+    createdAt: number;
+}
+/**
+ * OAuth Callback Result
+ */
+export interface OAuthCallbackResult {
+    /** User profile from OAuth provider */
+    profile: OAuthUserProfile;
+    /** Access token from provider (optional) */
+    accessToken?: string;
+    /** Refresh token from provider (optional) */
+    refreshToken?: string;
+}
+/**
+ * Request Context
+ *
+ * Information about the incoming HTTP request (for session creation)
+ */
+export interface RequestContext {
+    /** Client IP address */
+    ipAddress?: string;
+    /** User agent string */
+    userAgent?: string;
+}

package/dist/types.js

@@ -0,0 +1,7 @@
+/**
+ * Type definitions for ClearAuth
+ *
+ * Core configuration types and OAuth-related interfaces for the authentication system.
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG"}

package/dist/utils/cors.d.ts

@@ -0,0 +1,65 @@
+/**
+ * CORS (Cross-Origin Resource Sharing) Utilities
+ *
+ * Provides utilities for handling CORS headers in authentication endpoints.
+ * Essential for browser-based clients making cross-origin requests.
+ */
+import type { CorsConfig } from '../types.js';
+/**
+ * Create CORS headers for a response
+ *
+ * @param request - HTTP request
+ * @param config - CORS configuration
+ * @returns Headers object with CORS headers
+ *
+ * @example
+ * ```ts
+ * const headers = createCorsHeaders(request, config.cors)
+ * return new Response(body, { headers })
+ * ```
+ */
+export declare function createCorsHeaders(request: Request, config?: CorsConfig): Headers;
+/**
+ * Handle CORS preflight request (OPTIONS)
+ *
+ * @param request - HTTP OPTIONS request
+ * @param config - CORS configuration
+ * @returns Response with CORS headers
+ *
+ * @example
+ * ```ts
+ * if (request.method === 'OPTIONS') {
+ *   return handleCorsPreflightRequest(request, config.cors)
+ * }
+ * ```
+ */
+export declare function handleCorsPreflightRequest(request: Request, config?: CorsConfig): Response;
+/**
+ * Add CORS headers to an existing response
+ *
+ * @param response - Original response
+ * @param request - HTTP request
+ * @param config - CORS configuration
+ * @returns Response with CORS headers added
+ *
+ * @example
+ * ```ts
+ * const response = await handleAuthRequest(request, config)
+ * return addCorsHeaders(response, request, config.cors)
+ * ```
+ */
+export declare function addCorsHeaders(response: Response, request: Request, config?: CorsConfig): Response;
+/**
+ * Wrap a request handler with CORS support
+ *
+ * @param handler - Original request handler
+ * @param config - CORS configuration
+ * @returns Wrapped handler with CORS support
+ *
+ * @example
+ * ```ts
+ * const handleWithCors = withCors(handleAuthRequest, config.cors)
+ * return handleWithCors(request, config)
+ * ```
+ */
+export declare function withCors(handler: (request: Request, config: any) => Promise<Response>, corsConfig?: CorsConfig): (request: Request, config: any) => Promise<Response>;