create-croissant 0.1.8 → 0.1.9
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +1 -1
- package/template/apps/web/package.json +2 -0
- package/template/apps/web/src/components/login-form.tsx +95 -48
- package/template/apps/web/src/components/signup-form.tsx +149 -79
- package/template/apps/web/src/routes/__root.tsx +17 -12
- package/template/apps/web/src/routes/client-orpc-auth.tsx +8 -20
- package/template/apps/web/src/routes/client-orpc.tsx +203 -108
- package/template/apps/web/src/routes/ssr-orpc.tsx +169 -96
- package/template/package.json +3 -1
- package/template/apps/web/node_modules/@better-auth/core/LICENSE.md +0 -20
- package/template/apps/web/node_modules/@better-auth/core/README.md +0 -17
- package/template/apps/web/node_modules/@better-auth/core/dist/api/index.d.mts +0 -278
- package/template/apps/web/node_modules/@better-auth/core/dist/api/index.mjs +0 -56
- package/template/apps/web/node_modules/@better-auth/core/dist/async_hooks/index.d.mts +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/async_hooks/index.mjs +0 -20
- package/template/apps/web/node_modules/@better-auth/core/dist/async_hooks/pure.index.d.mts +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/async_hooks/pure.index.mjs +0 -33
- package/template/apps/web/node_modules/@better-auth/core/dist/context/endpoint-context.d.mts +0 -18
- package/template/apps/web/node_modules/@better-auth/core/dist/context/endpoint-context.mjs +0 -29
- package/template/apps/web/node_modules/@better-auth/core/dist/context/global.d.mts +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/context/global.mjs +0 -36
- package/template/apps/web/node_modules/@better-auth/core/dist/context/index.d.mts +0 -5
- package/template/apps/web/node_modules/@better-auth/core/dist/context/index.mjs +0 -5
- package/template/apps/web/node_modules/@better-auth/core/dist/context/request-state.d.mts +0 -27
- package/template/apps/web/node_modules/@better-auth/core/dist/context/request-state.mjs +0 -47
- package/template/apps/web/node_modules/@better-auth/core/dist/context/transaction.d.mts +0 -24
- package/template/apps/web/node_modules/@better-auth/core/dist/context/transaction.mjs +0 -93
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/factory.d.mts +0 -17
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/factory.mjs +0 -754
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-default-field-name.d.mts +0 -18
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-default-field-name.mjs +0 -36
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-default-model-name.d.mts +0 -12
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-default-model-name.mjs +0 -30
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-field-attributes.d.mts +0 -26
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-field-attributes.mjs +0 -37
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-field-name.d.mts +0 -18
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-field-name.mjs +0 -31
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-id-field.d.mts +0 -36
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-id-field.mjs +0 -64
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-model-name.d.mts +0 -12
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/get-model-name.mjs +0 -21
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/index.d.mts +0 -525
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/index.mjs +0 -24
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/types.d.mts +0 -105
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/utils.d.mts +0 -7
- package/template/apps/web/node_modules/@better-auth/core/dist/db/adapter/utils.mjs +0 -37
- package/template/apps/web/node_modules/@better-auth/core/dist/db/get-tables.d.mts +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/db/get-tables.mjs +0 -265
- package/template/apps/web/node_modules/@better-auth/core/dist/db/index.d.mts +0 -10
- package/template/apps/web/node_modules/@better-auth/core/dist/db/index.mjs +0 -8
- package/template/apps/web/node_modules/@better-auth/core/dist/db/plugin.d.mts +0 -12
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/account.d.mts +0 -28
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/account.mjs +0 -17
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/rate-limit.d.mts +0 -18
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/rate-limit.mjs +0 -9
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/session.d.mts +0 -23
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/session.mjs +0 -12
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/shared.d.mts +0 -10
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/shared.mjs +0 -9
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/user.d.mts +0 -22
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/user.mjs +0 -11
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/verification.d.mts +0 -21
- package/template/apps/web/node_modules/@better-auth/core/dist/db/schema/verification.mjs +0 -10
- package/template/apps/web/node_modules/@better-auth/core/dist/db/type.d.mts +0 -167
- package/template/apps/web/node_modules/@better-auth/core/dist/env/color-depth.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/env/color-depth.mjs +0 -86
- package/template/apps/web/node_modules/@better-auth/core/dist/env/env-impl.d.mts +0 -32
- package/template/apps/web/node_modules/@better-auth/core/dist/env/env-impl.mjs +0 -81
- package/template/apps/web/node_modules/@better-auth/core/dist/env/index.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/env/index.mjs +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/env/logger.d.mts +0 -48
- package/template/apps/web/node_modules/@better-auth/core/dist/env/logger.mjs +0 -79
- package/template/apps/web/node_modules/@better-auth/core/dist/error/codes.d.mts +0 -68
- package/template/apps/web/node_modules/@better-auth/core/dist/error/codes.mjs +0 -54
- package/template/apps/web/node_modules/@better-auth/core/dist/error/index.d.mts +0 -19
- package/template/apps/web/node_modules/@better-auth/core/dist/error/index.mjs +0 -27
- package/template/apps/web/node_modules/@better-auth/core/dist/index.d.mts +0 -9
- package/template/apps/web/node_modules/@better-auth/core/dist/index.mjs +0 -1
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/api.mjs +0 -12
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/attributes.d.mts +0 -11
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/attributes.mjs +0 -10
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/index.d.mts +0 -3
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/index.mjs +0 -3
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/noop.mjs +0 -42
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/pure.index.d.mts +0 -7
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/pure.index.mjs +0 -7
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/tracer.d.mts +0 -13
- package/template/apps/web/node_modules/@better-auth/core/dist/instrumentation/tracer.mjs +0 -53
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/client-credentials-token.d.mts +0 -56
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/client-credentials-token.mjs +0 -64
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/create-authorization-url.d.mts +0 -44
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/create-authorization-url.mjs +0 -41
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/index.d.mts +0 -8
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/index.mjs +0 -7
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/oauth-provider.d.mts +0 -192
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/refresh-access-token.d.mts +0 -54
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/refresh-access-token.mjs +0 -73
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/utils.d.mts +0 -16
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/utils.mjs +0 -37
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/validate-authorization-code.d.mts +0 -85
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/validate-authorization-code.mjs +0 -79
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/verify.d.mts +0 -42
- package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/verify.mjs +0 -92
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/apple.d.mts +0 -126
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/apple.mjs +0 -107
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/atlassian.d.mts +0 -70
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/atlassian.mjs +0 -80
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/cognito.d.mts +0 -85
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/cognito.mjs +0 -162
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/discord.d.mts +0 -124
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/discord.mjs +0 -62
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/dropbox.d.mts +0 -69
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/dropbox.mjs +0 -72
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/facebook.d.mts +0 -79
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/facebook.mjs +0 -124
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/figma.d.mts +0 -61
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/figma.mjs +0 -83
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/github.d.mts +0 -102
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/github.mjs +0 -92
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/gitlab.d.mts +0 -123
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/gitlab.mjs +0 -79
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/google.d.mts +0 -97
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/google.mjs +0 -109
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/huggingface.d.mts +0 -83
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/huggingface.mjs +0 -73
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/index.d.mts +0 -1834
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/index.mjs +0 -78
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/kakao.d.mts +0 -161
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/kakao.mjs +0 -70
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/kick.d.mts +0 -73
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/kick.mjs +0 -68
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/line.d.mts +0 -105
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/line.mjs +0 -110
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/linear.d.mts +0 -68
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/linear.mjs +0 -85
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/linkedin.d.mts +0 -67
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/linkedin.mjs +0 -73
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/microsoft-entra-id.d.mts +0 -174
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/microsoft-entra-id.mjs +0 -140
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/naver.d.mts +0 -92
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/naver.mjs +0 -65
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/notion.d.mts +0 -64
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/notion.mjs +0 -72
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/paybin.d.mts +0 -71
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/paybin.mjs +0 -81
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/paypal.d.mts +0 -129
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/paypal.mjs +0 -140
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/polar.d.mts +0 -74
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/polar.mjs +0 -71
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/railway.d.mts +0 -65
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/railway.mjs +0 -74
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/reddit.d.mts +0 -62
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/reddit.mjs +0 -80
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/roblox.d.mts +0 -70
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/roblox.mjs +0 -57
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/salesforce.d.mts +0 -79
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/salesforce.mjs +0 -87
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/slack.d.mts +0 -83
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/slack.mjs +0 -66
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/spotify.d.mts +0 -63
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/spotify.mjs +0 -69
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/tiktok.d.mts +0 -168
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/tiktok.mjs +0 -60
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/twitch.d.mts +0 -79
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/twitch.mjs +0 -75
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/twitter.d.mts +0 -126
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/twitter.mjs +0 -85
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/vercel.d.mts +0 -62
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/vercel.mjs +0 -58
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/vk.d.mts +0 -70
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/vk.mjs +0 -81
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/wechat.d.mts +0 -113
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/wechat.mjs +0 -81
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/zoom.d.mts +0 -163
- package/template/apps/web/node_modules/@better-auth/core/dist/social-providers/zoom.mjs +0 -69
- package/template/apps/web/node_modules/@better-auth/core/dist/types/context.d.mts +0 -277
- package/template/apps/web/node_modules/@better-auth/core/dist/types/cookie.d.mts +0 -15
- package/template/apps/web/node_modules/@better-auth/core/dist/types/helper.d.mts +0 -10
- package/template/apps/web/node_modules/@better-auth/core/dist/types/index.d.mts +0 -9
- package/template/apps/web/node_modules/@better-auth/core/dist/types/init-options.d.mts +0 -1358
- package/template/apps/web/node_modules/@better-auth/core/dist/types/plugin-client.d.mts +0 -113
- package/template/apps/web/node_modules/@better-auth/core/dist/types/plugin.d.mts +0 -124
- package/template/apps/web/node_modules/@better-auth/core/dist/types/secret.d.mts +0 -11
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/async.d.mts +0 -22
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/async.mjs +0 -32
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/db.d.mts +0 -9
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/db.mjs +0 -15
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/deprecate.d.mts +0 -9
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/deprecate.mjs +0 -16
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/error-codes.d.mts +0 -13
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/error-codes.mjs +0 -10
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/fetch-metadata.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/fetch-metadata.mjs +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/host.d.mts +0 -147
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/host.mjs +0 -291
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/id.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/id.mjs +0 -7
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/ip.d.mts +0 -54
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/ip.mjs +0 -116
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/is-api-error.d.mts +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/is-api-error.mjs +0 -8
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/json.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/json.mjs +0 -41
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/string.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/string.mjs +0 -6
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/url.d.mts +0 -20
- package/template/apps/web/node_modules/@better-auth/core/dist/utils/url.mjs +0 -31
- package/template/apps/web/node_modules/@better-auth/core/package.json +0 -193
- package/template/apps/web/node_modules/@better-auth/core/src/api/index.ts +0 -140
- package/template/apps/web/node_modules/@better-auth/core/src/async_hooks/index.ts +0 -40
- package/template/apps/web/node_modules/@better-auth/core/src/async_hooks/pure.index.ts +0 -46
- package/template/apps/web/node_modules/@better-auth/core/src/context/endpoint-context.ts +0 -50
- package/template/apps/web/node_modules/@better-auth/core/src/context/global.ts +0 -57
- package/template/apps/web/node_modules/@better-auth/core/src/context/index.ts +0 -23
- package/template/apps/web/node_modules/@better-auth/core/src/context/request-state.ts +0 -91
- package/template/apps/web/node_modules/@better-auth/core/src/context/transaction.ts +0 -136
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/factory.ts +0 -1440
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/get-default-field-name.ts +0 -59
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/get-default-model-name.ts +0 -51
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/get-field-attributes.ts +0 -62
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/get-field-name.ts +0 -43
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/get-id-field.ts +0 -150
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/get-model-name.ts +0 -36
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/index.ts +0 -567
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/types.ts +0 -132
- package/template/apps/web/node_modules/@better-auth/core/src/db/adapter/utils.ts +0 -61
- package/template/apps/web/node_modules/@better-auth/core/src/db/get-tables.ts +0 -296
- package/template/apps/web/node_modules/@better-auth/core/src/db/index.ts +0 -43
- package/template/apps/web/node_modules/@better-auth/core/src/db/plugin.ts +0 -11
- package/template/apps/web/node_modules/@better-auth/core/src/db/schema/account.ts +0 -47
- package/template/apps/web/node_modules/@better-auth/core/src/db/schema/rate-limit.ts +0 -36
- package/template/apps/web/node_modules/@better-auth/core/src/db/schema/session.ts +0 -29
- package/template/apps/web/node_modules/@better-auth/core/src/db/schema/shared.ts +0 -7
- package/template/apps/web/node_modules/@better-auth/core/src/db/schema/user.ts +0 -28
- package/template/apps/web/node_modules/@better-auth/core/src/db/schema/verification.ts +0 -28
- package/template/apps/web/node_modules/@better-auth/core/src/db/type.ts +0 -333
- package/template/apps/web/node_modules/@better-auth/core/src/env/color-depth.ts +0 -172
- package/template/apps/web/node_modules/@better-auth/core/src/env/env-impl.ts +0 -124
- package/template/apps/web/node_modules/@better-auth/core/src/env/index.ts +0 -23
- package/template/apps/web/node_modules/@better-auth/core/src/env/logger.ts +0 -145
- package/template/apps/web/node_modules/@better-auth/core/src/error/codes.ts +0 -71
- package/template/apps/web/node_modules/@better-auth/core/src/error/index.ts +0 -35
- package/template/apps/web/node_modules/@better-auth/core/src/index.ts +0 -1
- package/template/apps/web/node_modules/@better-auth/core/src/instrumentation/api.ts +0 -17
- package/template/apps/web/node_modules/@better-auth/core/src/instrumentation/attributes.ts +0 -22
- package/template/apps/web/node_modules/@better-auth/core/src/instrumentation/index.ts +0 -2
- package/template/apps/web/node_modules/@better-auth/core/src/instrumentation/noop.ts +0 -74
- package/template/apps/web/node_modules/@better-auth/core/src/instrumentation/pure.index.ts +0 -31
- package/template/apps/web/node_modules/@better-auth/core/src/instrumentation/tracer.ts +0 -95
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/client-credentials-token.ts +0 -126
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/create-authorization-url.ts +0 -89
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/index.ts +0 -33
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/oauth-provider.ts +0 -222
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/refresh-access-token.ts +0 -157
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/utils.ts +0 -51
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/validate-authorization-code.ts +0 -180
- package/template/apps/web/node_modules/@better-auth/core/src/oauth2/verify.ts +0 -221
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/apple.ts +0 -231
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/atlassian.ts +0 -133
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/cognito.ts +0 -281
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/discord.ts +0 -170
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/dropbox.ts +0 -112
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/facebook.ts +0 -215
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/figma.ts +0 -118
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/github.ts +0 -184
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/gitlab.ts +0 -155
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/google.ts +0 -204
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/huggingface.ts +0 -119
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/index.ts +0 -132
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/kakao.ts +0 -179
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/kick.ts +0 -109
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/line.ts +0 -169
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/linear.ts +0 -121
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/linkedin.ts +0 -110
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/microsoft-entra-id.ts +0 -352
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/naver.ts +0 -113
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/notion.ts +0 -108
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/paybin.ts +0 -118
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/paypal.ts +0 -263
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/polar.ts +0 -111
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/railway.ts +0 -100
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/reddit.ts +0 -122
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/roblox.ts +0 -112
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/salesforce.ts +0 -159
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/slack.ts +0 -112
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/spotify.ts +0 -94
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/tiktok.ts +0 -211
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/twitch.ts +0 -112
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/twitter.ts +0 -199
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/vercel.ts +0 -87
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/vk.ts +0 -125
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/wechat.ts +0 -213
- package/template/apps/web/node_modules/@better-auth/core/src/social-providers/zoom.ts +0 -230
- package/template/apps/web/node_modules/@better-auth/core/src/types/context.ts +0 -415
- package/template/apps/web/node_modules/@better-auth/core/src/types/cookie.ts +0 -10
- package/template/apps/web/node_modules/@better-auth/core/src/types/helper.ts +0 -27
- package/template/apps/web/node_modules/@better-auth/core/src/types/index.ts +0 -40
- package/template/apps/web/node_modules/@better-auth/core/src/types/init-options.ts +0 -1610
- package/template/apps/web/node_modules/@better-auth/core/src/types/plugin-client.ts +0 -129
- package/template/apps/web/node_modules/@better-auth/core/src/types/plugin.ts +0 -163
- package/template/apps/web/node_modules/@better-auth/core/src/types/secret.ts +0 -8
- package/template/apps/web/node_modules/@better-auth/core/src/utils/async.ts +0 -53
- package/template/apps/web/node_modules/@better-auth/core/src/utils/db.ts +0 -20
- package/template/apps/web/node_modules/@better-auth/core/src/utils/deprecate.ts +0 -21
- package/template/apps/web/node_modules/@better-auth/core/src/utils/error-codes.ts +0 -68
- package/template/apps/web/node_modules/@better-auth/core/src/utils/fetch-metadata.ts +0 -3
- package/template/apps/web/node_modules/@better-auth/core/src/utils/host.ts +0 -401
- package/template/apps/web/node_modules/@better-auth/core/src/utils/id.ts +0 -5
- package/template/apps/web/node_modules/@better-auth/core/src/utils/ip.ts +0 -211
- package/template/apps/web/node_modules/@better-auth/core/src/utils/is-api-error.ts +0 -10
- package/template/apps/web/node_modules/@better-auth/core/src/utils/json.ts +0 -56
- package/template/apps/web/node_modules/@better-auth/core/src/utils/string.ts +0 -3
- package/template/apps/web/node_modules/@better-auth/core/src/utils/url.ts +0 -43
- package/template/apps/web/node_modules/@better-auth/utils/README.md +0 -384
- package/template/apps/web/node_modules/@better-auth/utils/dist/base32.cjs +0 -104
- package/template/apps/web/node_modules/@better-auth/utils/dist/base32.d.cts +0 -44
- package/template/apps/web/node_modules/@better-auth/utils/dist/base32.d.mts +0 -44
- package/template/apps/web/node_modules/@better-auth/utils/dist/base32.d.ts +0 -44
- package/template/apps/web/node_modules/@better-auth/utils/dist/base32.mjs +0 -101
- package/template/apps/web/node_modules/@better-auth/utils/dist/base64.cjs +0 -80
- package/template/apps/web/node_modules/@better-auth/utils/dist/base64.d.cts +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/base64.d.mts +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/base64.d.ts +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/base64.mjs +0 -77
- package/template/apps/web/node_modules/@better-auth/utils/dist/binary.cjs +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/binary.d.cts +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/binary.d.mts +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/binary.d.ts +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/binary.mjs +0 -14
- package/template/apps/web/node_modules/@better-auth/utils/dist/ecdsa.cjs +0 -90
- package/template/apps/web/node_modules/@better-auth/utils/dist/ecdsa.d.cts +0 -19
- package/template/apps/web/node_modules/@better-auth/utils/dist/ecdsa.d.mts +0 -19
- package/template/apps/web/node_modules/@better-auth/utils/dist/ecdsa.d.ts +0 -19
- package/template/apps/web/node_modules/@better-auth/utils/dist/ecdsa.mjs +0 -88
- package/template/apps/web/node_modules/@better-auth/utils/dist/hash.cjs +0 -31
- package/template/apps/web/node_modules/@better-auth/utils/dist/hash.d.cts +0 -7
- package/template/apps/web/node_modules/@better-auth/utils/dist/hash.d.mts +0 -7
- package/template/apps/web/node_modules/@better-auth/utils/dist/hash.d.ts +0 -7
- package/template/apps/web/node_modules/@better-auth/utils/dist/hash.mjs +0 -29
- package/template/apps/web/node_modules/@better-auth/utils/dist/hex.cjs +0 -40
- package/template/apps/web/node_modules/@better-auth/utils/dist/hex.d.cts +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/hex.d.mts +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/hex.d.ts +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/hex.mjs +0 -38
- package/template/apps/web/node_modules/@better-auth/utils/dist/hmac.cjs +0 -58
- package/template/apps/web/node_modules/@better-auth/utils/dist/hmac.d.cts +0 -9
- package/template/apps/web/node_modules/@better-auth/utils/dist/hmac.d.mts +0 -9
- package/template/apps/web/node_modules/@better-auth/utils/dist/hmac.d.ts +0 -9
- package/template/apps/web/node_modules/@better-auth/utils/dist/hmac.mjs +0 -56
- package/template/apps/web/node_modules/@better-auth/utils/dist/index.cjs +0 -10
- package/template/apps/web/node_modules/@better-auth/utils/dist/index.d.cts +0 -3
- package/template/apps/web/node_modules/@better-auth/utils/dist/index.d.mts +0 -3
- package/template/apps/web/node_modules/@better-auth/utils/dist/index.d.ts +0 -3
- package/template/apps/web/node_modules/@better-auth/utils/dist/index.mjs +0 -8
- package/template/apps/web/node_modules/@better-auth/utils/dist/otp.cjs +0 -90
- package/template/apps/web/node_modules/@better-auth/utils/dist/otp.d.cts +0 -13
- package/template/apps/web/node_modules/@better-auth/utils/dist/otp.d.mts +0 -13
- package/template/apps/web/node_modules/@better-auth/utils/dist/otp.d.ts +0 -13
- package/template/apps/web/node_modules/@better-auth/utils/dist/otp.mjs +0 -88
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.cjs +0 -36
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.d.cts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.d.ts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.mjs +0 -33
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.node.cjs +0 -47
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.node.d.cts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.node.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.node.d.ts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/password.node.mjs +0 -44
- package/template/apps/web/node_modules/@better-auth/utils/dist/random.cjs +0 -55
- package/template/apps/web/node_modules/@better-auth/utils/dist/random.d.cts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/random.d.mts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/random.d.ts +0 -4
- package/template/apps/web/node_modules/@better-auth/utils/dist/random.mjs +0 -53
- package/template/apps/web/node_modules/@better-auth/utils/dist/rsa.cjs +0 -76
- package/template/apps/web/node_modules/@better-auth/utils/dist/rsa.d.cts +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/rsa.d.mts +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/rsa.d.ts +0 -16
- package/template/apps/web/node_modules/@better-auth/utils/dist/rsa.mjs +0 -74
- package/template/apps/web/node_modules/@better-auth/utils/dist/shared/utils.ecd028f7.d.cts +0 -22
- package/template/apps/web/node_modules/@better-auth/utils/dist/shared/utils.ecd028f7.d.mts +0 -22
- package/template/apps/web/node_modules/@better-auth/utils/dist/shared/utils.ecd028f7.d.ts +0 -22
- package/template/apps/web/node_modules/@better-auth/utils/package.json +0 -95
- package/template/apps/web/node_modules/better-call/LICENSE +0 -21
- package/template/apps/web/node_modules/better-call/dist/_virtual/_rolldown/runtime.cjs +0 -29
- package/template/apps/web/node_modules/better-call/dist/adapters/node/request.cjs +0 -181
- package/template/apps/web/node_modules/better-call/dist/adapters/node/request.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/adapters/node/request.d.cts +0 -16
- package/template/apps/web/node_modules/better-call/dist/adapters/node/request.d.mts +0 -16
- package/template/apps/web/node_modules/better-call/dist/adapters/node/request.mjs +0 -178
- package/template/apps/web/node_modules/better-call/dist/adapters/node/request.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/client.cjs +0 -23
- package/template/apps/web/node_modules/better-call/dist/client.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/client.d.cts +0 -53
- package/template/apps/web/node_modules/better-call/dist/client.d.mts +0 -53
- package/template/apps/web/node_modules/better-call/dist/client.mjs +0 -14
- package/template/apps/web/node_modules/better-call/dist/client.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/context.cjs +0 -103
- package/template/apps/web/node_modules/better-call/dist/context.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/context.d.cts +0 -341
- package/template/apps/web/node_modules/better-call/dist/context.d.mts +0 -341
- package/template/apps/web/node_modules/better-call/dist/context.mjs +0 -103
- package/template/apps/web/node_modules/better-call/dist/context.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/cookies.cjs +0 -87
- package/template/apps/web/node_modules/better-call/dist/cookies.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/cookies.d.cts +0 -103
- package/template/apps/web/node_modules/better-call/dist/cookies.d.mts +0 -103
- package/template/apps/web/node_modules/better-call/dist/cookies.mjs +0 -84
- package/template/apps/web/node_modules/better-call/dist/cookies.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/crypto.cjs +0 -39
- package/template/apps/web/node_modules/better-call/dist/crypto.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/crypto.mjs +0 -36
- package/template/apps/web/node_modules/better-call/dist/crypto.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/endpoint.cjs +0 -70
- package/template/apps/web/node_modules/better-call/dist/endpoint.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/endpoint.d.cts +0 -475
- package/template/apps/web/node_modules/better-call/dist/endpoint.d.mts +0 -475
- package/template/apps/web/node_modules/better-call/dist/endpoint.mjs +0 -70
- package/template/apps/web/node_modules/better-call/dist/endpoint.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/error.cjs +0 -141
- package/template/apps/web/node_modules/better-call/dist/error.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/error.d.cts +0 -103
- package/template/apps/web/node_modules/better-call/dist/error.d.mts +0 -103
- package/template/apps/web/node_modules/better-call/dist/error.mjs +0 -133
- package/template/apps/web/node_modules/better-call/dist/error.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/helper.d.cts +0 -12
- package/template/apps/web/node_modules/better-call/dist/helper.d.mts +0 -12
- package/template/apps/web/node_modules/better-call/dist/index.cjs +0 -28
- package/template/apps/web/node_modules/better-call/dist/index.d.cts +0 -11
- package/template/apps/web/node_modules/better-call/dist/index.d.mts +0 -11
- package/template/apps/web/node_modules/better-call/dist/index.mjs +0 -10
- package/template/apps/web/node_modules/better-call/dist/middleware.cjs +0 -52
- package/template/apps/web/node_modules/better-call/dist/middleware.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/middleware.d.cts +0 -123
- package/template/apps/web/node_modules/better-call/dist/middleware.d.mts +0 -123
- package/template/apps/web/node_modules/better-call/dist/middleware.mjs +0 -52
- package/template/apps/web/node_modules/better-call/dist/middleware.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/node.cjs +0 -18
- package/template/apps/web/node_modules/better-call/dist/node.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/node.d.cts +0 -9
- package/template/apps/web/node_modules/better-call/dist/node.d.mts +0 -9
- package/template/apps/web/node_modules/better-call/dist/node.mjs +0 -15
- package/template/apps/web/node_modules/better-call/dist/node.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/openapi.cjs +0 -191
- package/template/apps/web/node_modules/better-call/dist/openapi.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/openapi.d.cts +0 -113
- package/template/apps/web/node_modules/better-call/dist/openapi.d.mts +0 -113
- package/template/apps/web/node_modules/better-call/dist/openapi.mjs +0 -189
- package/template/apps/web/node_modules/better-call/dist/openapi.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/router.cjs +0 -118
- package/template/apps/web/node_modules/better-call/dist/router.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/router.d.cts +0 -103
- package/template/apps/web/node_modules/better-call/dist/router.d.mts +0 -103
- package/template/apps/web/node_modules/better-call/dist/router.mjs +0 -117
- package/template/apps/web/node_modules/better-call/dist/router.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/standard-schema.d.cts +0 -59
- package/template/apps/web/node_modules/better-call/dist/standard-schema.d.mts +0 -59
- package/template/apps/web/node_modules/better-call/dist/to-response.cjs +0 -153
- package/template/apps/web/node_modules/better-call/dist/to-response.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/to-response.d.cts +0 -12
- package/template/apps/web/node_modules/better-call/dist/to-response.d.mts +0 -12
- package/template/apps/web/node_modules/better-call/dist/to-response.mjs +0 -153
- package/template/apps/web/node_modules/better-call/dist/to-response.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/utils.cjs +0 -86
- package/template/apps/web/node_modules/better-call/dist/utils.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/utils.mjs +0 -82
- package/template/apps/web/node_modules/better-call/dist/utils.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/validator.cjs +0 -58
- package/template/apps/web/node_modules/better-call/dist/validator.cjs.map +0 -1
- package/template/apps/web/node_modules/better-call/dist/validator.mjs +0 -57
- package/template/apps/web/node_modules/better-call/dist/validator.mjs.map +0 -1
- package/template/apps/web/node_modules/better-call/package.json +0 -96
- package/template/apps/web/node_modules/set-cookie-parser/LICENSE +0 -21
- package/template/apps/web/node_modules/set-cookie-parser/README.md +0 -169
- package/template/apps/web/node_modules/set-cookie-parser/dist/.eslintrc.cjs +0 -16
- package/template/apps/web/node_modules/set-cookie-parser/dist/set-cookie.cjs +0 -260
- package/template/apps/web/node_modules/set-cookie-parser/lib/set-cookie.d.ts +0 -119
- package/template/apps/web/node_modules/set-cookie-parser/lib/set-cookie.js +0 -265
- package/template/apps/web/node_modules/set-cookie-parser/package.json +0 -61
package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/refresh-access-token.d.mts
DELETED
|
@@ -1,54 +0,0 @@
|
|
|
1
|
-
import { AwaitableFunction } from "../types/helper.mjs";
|
|
2
|
-
import { OAuth2Tokens, ProviderOptions } from "./oauth-provider.mjs";
|
|
3
|
-
|
|
4
|
-
//#region src/oauth2/refresh-access-token.d.ts
|
|
5
|
-
declare function refreshAccessTokenRequest({
|
|
6
|
-
refreshToken,
|
|
7
|
-
options,
|
|
8
|
-
authentication,
|
|
9
|
-
extraParams,
|
|
10
|
-
resource
|
|
11
|
-
}: {
|
|
12
|
-
refreshToken: string;
|
|
13
|
-
options: AwaitableFunction<Partial<ProviderOptions>>;
|
|
14
|
-
authentication?: ("basic" | "post") | undefined;
|
|
15
|
-
extraParams?: Record<string, string> | undefined;
|
|
16
|
-
resource?: (string | string[]) | undefined;
|
|
17
|
-
}): Promise<{
|
|
18
|
-
body: URLSearchParams;
|
|
19
|
-
headers: Record<string, any>;
|
|
20
|
-
}>;
|
|
21
|
-
/**
|
|
22
|
-
* @deprecated use async'd refreshAccessTokenRequest instead
|
|
23
|
-
*/
|
|
24
|
-
declare function createRefreshAccessTokenRequest({
|
|
25
|
-
refreshToken,
|
|
26
|
-
options,
|
|
27
|
-
authentication,
|
|
28
|
-
extraParams,
|
|
29
|
-
resource
|
|
30
|
-
}: {
|
|
31
|
-
refreshToken: string;
|
|
32
|
-
options: ProviderOptions;
|
|
33
|
-
authentication?: ("basic" | "post") | undefined;
|
|
34
|
-
extraParams?: Record<string, string> | undefined;
|
|
35
|
-
resource?: (string | string[]) | undefined;
|
|
36
|
-
}): {
|
|
37
|
-
body: URLSearchParams;
|
|
38
|
-
headers: Record<string, any>;
|
|
39
|
-
};
|
|
40
|
-
declare function refreshAccessToken({
|
|
41
|
-
refreshToken,
|
|
42
|
-
options,
|
|
43
|
-
tokenEndpoint,
|
|
44
|
-
authentication,
|
|
45
|
-
extraParams
|
|
46
|
-
}: {
|
|
47
|
-
refreshToken: string;
|
|
48
|
-
options: Partial<ProviderOptions>;
|
|
49
|
-
tokenEndpoint: string;
|
|
50
|
-
authentication?: ("basic" | "post") | undefined;
|
|
51
|
-
extraParams?: Record<string, string> | undefined;
|
|
52
|
-
}): Promise<OAuth2Tokens>;
|
|
53
|
-
//#endregion
|
|
54
|
-
export { createRefreshAccessTokenRequest, refreshAccessToken, refreshAccessTokenRequest };
|
package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/refresh-access-token.mjs
DELETED
|
@@ -1,73 +0,0 @@
|
|
|
1
|
-
import { base64 } from "@better-auth/utils/base64";
|
|
2
|
-
import { betterFetch } from "@better-fetch/fetch";
|
|
3
|
-
//#region src/oauth2/refresh-access-token.ts
|
|
4
|
-
async function refreshAccessTokenRequest({ refreshToken, options, authentication, extraParams, resource }) {
|
|
5
|
-
options = typeof options === "function" ? await options() : options;
|
|
6
|
-
return createRefreshAccessTokenRequest({
|
|
7
|
-
refreshToken,
|
|
8
|
-
options,
|
|
9
|
-
authentication,
|
|
10
|
-
extraParams,
|
|
11
|
-
resource
|
|
12
|
-
});
|
|
13
|
-
}
|
|
14
|
-
/**
|
|
15
|
-
* @deprecated use async'd refreshAccessTokenRequest instead
|
|
16
|
-
*/
|
|
17
|
-
function createRefreshAccessTokenRequest({ refreshToken, options, authentication, extraParams, resource }) {
|
|
18
|
-
const body = new URLSearchParams();
|
|
19
|
-
const headers = {
|
|
20
|
-
"content-type": "application/x-www-form-urlencoded",
|
|
21
|
-
accept: "application/json"
|
|
22
|
-
};
|
|
23
|
-
body.set("grant_type", "refresh_token");
|
|
24
|
-
body.set("refresh_token", refreshToken);
|
|
25
|
-
if (authentication === "basic") {
|
|
26
|
-
const primaryClientId = Array.isArray(options.clientId) ? options.clientId[0] : options.clientId;
|
|
27
|
-
if (primaryClientId) headers["authorization"] = "Basic " + base64.encode(`${primaryClientId}:${options.clientSecret ?? ""}`);
|
|
28
|
-
else headers["authorization"] = "Basic " + base64.encode(`:${options.clientSecret ?? ""}`);
|
|
29
|
-
} else {
|
|
30
|
-
const primaryClientId = Array.isArray(options.clientId) ? options.clientId[0] : options.clientId;
|
|
31
|
-
body.set("client_id", primaryClientId);
|
|
32
|
-
if (options.clientSecret) body.set("client_secret", options.clientSecret);
|
|
33
|
-
}
|
|
34
|
-
if (resource) if (typeof resource === "string") body.append("resource", resource);
|
|
35
|
-
else for (const _resource of resource) body.append("resource", _resource);
|
|
36
|
-
if (extraParams) for (const [key, value] of Object.entries(extraParams)) body.set(key, value);
|
|
37
|
-
return {
|
|
38
|
-
body,
|
|
39
|
-
headers
|
|
40
|
-
};
|
|
41
|
-
}
|
|
42
|
-
async function refreshAccessToken({ refreshToken, options, tokenEndpoint, authentication, extraParams }) {
|
|
43
|
-
const { body, headers } = await createRefreshAccessTokenRequest({
|
|
44
|
-
refreshToken,
|
|
45
|
-
options,
|
|
46
|
-
authentication,
|
|
47
|
-
extraParams
|
|
48
|
-
});
|
|
49
|
-
const { data, error } = await betterFetch(tokenEndpoint, {
|
|
50
|
-
method: "POST",
|
|
51
|
-
body,
|
|
52
|
-
headers
|
|
53
|
-
});
|
|
54
|
-
if (error) throw error;
|
|
55
|
-
const tokens = {
|
|
56
|
-
accessToken: data.access_token,
|
|
57
|
-
refreshToken: data.refresh_token,
|
|
58
|
-
tokenType: data.token_type,
|
|
59
|
-
scopes: data.scope?.split(" "),
|
|
60
|
-
idToken: data.id_token
|
|
61
|
-
};
|
|
62
|
-
if (data.expires_in) {
|
|
63
|
-
const now = /* @__PURE__ */ new Date();
|
|
64
|
-
tokens.accessTokenExpiresAt = new Date(now.getTime() + data.expires_in * 1e3);
|
|
65
|
-
}
|
|
66
|
-
if (data.refresh_token_expires_in) {
|
|
67
|
-
const now = /* @__PURE__ */ new Date();
|
|
68
|
-
tokens.refreshTokenExpiresAt = new Date(now.getTime() + data.refresh_token_expires_in * 1e3);
|
|
69
|
-
}
|
|
70
|
-
return tokens;
|
|
71
|
-
}
|
|
72
|
-
//#endregion
|
|
73
|
-
export { createRefreshAccessTokenRequest, refreshAccessToken, refreshAccessTokenRequest };
|
|
@@ -1,16 +0,0 @@
|
|
|
1
|
-
import { OAuth2Tokens } from "./oauth-provider.mjs";
|
|
2
|
-
|
|
3
|
-
//#region src/oauth2/utils.d.ts
|
|
4
|
-
declare function getOAuth2Tokens(data: Record<string, any>): OAuth2Tokens;
|
|
5
|
-
/**
|
|
6
|
-
* Return the provider's primary Client ID: the single string, or the entry at
|
|
7
|
-
* array index 0 for the cross-platform form used by ID token audience
|
|
8
|
-
* verification. Index 0 is the designated primary and pairs with
|
|
9
|
-
* `clientSecret` for the authorization code flow; later array entries are
|
|
10
|
-
* only used as additional accepted audiences. Returns `undefined` when the
|
|
11
|
-
* primary value is missing or an empty string.
|
|
12
|
-
*/
|
|
13
|
-
declare function getPrimaryClientId(clientId: unknown): string | undefined;
|
|
14
|
-
declare function generateCodeChallenge(codeVerifier: string): Promise<string>;
|
|
15
|
-
//#endregion
|
|
16
|
-
export { generateCodeChallenge, getOAuth2Tokens, getPrimaryClientId };
|
|
@@ -1,37 +0,0 @@
|
|
|
1
|
-
import { base64Url } from "@better-auth/utils/base64";
|
|
2
|
-
//#region src/oauth2/utils.ts
|
|
3
|
-
function getOAuth2Tokens(data) {
|
|
4
|
-
const getDate = (seconds) => {
|
|
5
|
-
const now = /* @__PURE__ */ new Date();
|
|
6
|
-
return new Date(now.getTime() + seconds * 1e3);
|
|
7
|
-
};
|
|
8
|
-
return {
|
|
9
|
-
tokenType: data.token_type,
|
|
10
|
-
accessToken: data.access_token,
|
|
11
|
-
refreshToken: data.refresh_token,
|
|
12
|
-
accessTokenExpiresAt: data.expires_in ? getDate(data.expires_in) : void 0,
|
|
13
|
-
refreshTokenExpiresAt: data.refresh_token_expires_in ? getDate(data.refresh_token_expires_in) : void 0,
|
|
14
|
-
scopes: data?.scope ? typeof data.scope === "string" ? data.scope.split(" ") : data.scope : [],
|
|
15
|
-
idToken: data.id_token,
|
|
16
|
-
raw: data
|
|
17
|
-
};
|
|
18
|
-
}
|
|
19
|
-
/**
|
|
20
|
-
* Return the provider's primary Client ID: the single string, or the entry at
|
|
21
|
-
* array index 0 for the cross-platform form used by ID token audience
|
|
22
|
-
* verification. Index 0 is the designated primary and pairs with
|
|
23
|
-
* `clientSecret` for the authorization code flow; later array entries are
|
|
24
|
-
* only used as additional accepted audiences. Returns `undefined` when the
|
|
25
|
-
* primary value is missing or an empty string.
|
|
26
|
-
*/
|
|
27
|
-
function getPrimaryClientId(clientId) {
|
|
28
|
-
const value = Array.isArray(clientId) ? clientId[0] : clientId;
|
|
29
|
-
return typeof value === "string" && value.length > 0 ? value : void 0;
|
|
30
|
-
}
|
|
31
|
-
async function generateCodeChallenge(codeVerifier) {
|
|
32
|
-
const data = new TextEncoder().encode(codeVerifier);
|
|
33
|
-
const hash = await crypto.subtle.digest("SHA-256", data);
|
|
34
|
-
return base64Url.encode(new Uint8Array(hash), { padding: false });
|
|
35
|
-
}
|
|
36
|
-
//#endregion
|
|
37
|
-
export { generateCodeChallenge, getOAuth2Tokens, getPrimaryClientId };
|
|
@@ -1,85 +0,0 @@
|
|
|
1
|
-
import { AwaitableFunction } from "../types/helper.mjs";
|
|
2
|
-
import { OAuth2Tokens, ProviderOptions } from "./oauth-provider.mjs";
|
|
3
|
-
import * as jose from "jose";
|
|
4
|
-
|
|
5
|
-
//#region src/oauth2/validate-authorization-code.d.ts
|
|
6
|
-
declare function authorizationCodeRequest({
|
|
7
|
-
code,
|
|
8
|
-
codeVerifier,
|
|
9
|
-
redirectURI,
|
|
10
|
-
options,
|
|
11
|
-
authentication,
|
|
12
|
-
deviceId,
|
|
13
|
-
headers,
|
|
14
|
-
additionalParams,
|
|
15
|
-
resource
|
|
16
|
-
}: {
|
|
17
|
-
code: string;
|
|
18
|
-
redirectURI: string;
|
|
19
|
-
options: AwaitableFunction<Partial<ProviderOptions>>;
|
|
20
|
-
codeVerifier?: string | undefined;
|
|
21
|
-
deviceId?: string | undefined;
|
|
22
|
-
authentication?: ("basic" | "post") | undefined;
|
|
23
|
-
headers?: Record<string, string> | undefined;
|
|
24
|
-
additionalParams?: Record<string, string> | undefined;
|
|
25
|
-
resource?: (string | string[]) | undefined;
|
|
26
|
-
}): Promise<{
|
|
27
|
-
body: URLSearchParams;
|
|
28
|
-
headers: Record<string, any>;
|
|
29
|
-
}>;
|
|
30
|
-
/**
|
|
31
|
-
* @deprecated use async'd authorizationCodeRequest instead
|
|
32
|
-
*/
|
|
33
|
-
declare function createAuthorizationCodeRequest({
|
|
34
|
-
code,
|
|
35
|
-
codeVerifier,
|
|
36
|
-
redirectURI,
|
|
37
|
-
options,
|
|
38
|
-
authentication,
|
|
39
|
-
deviceId,
|
|
40
|
-
headers,
|
|
41
|
-
additionalParams,
|
|
42
|
-
resource
|
|
43
|
-
}: {
|
|
44
|
-
code: string;
|
|
45
|
-
redirectURI: string;
|
|
46
|
-
options: Partial<ProviderOptions>;
|
|
47
|
-
codeVerifier?: string | undefined;
|
|
48
|
-
deviceId?: string | undefined;
|
|
49
|
-
authentication?: ("basic" | "post") | undefined;
|
|
50
|
-
headers?: Record<string, string> | undefined;
|
|
51
|
-
additionalParams?: Record<string, string> | undefined;
|
|
52
|
-
resource?: (string | string[]) | undefined;
|
|
53
|
-
}): {
|
|
54
|
-
body: URLSearchParams;
|
|
55
|
-
headers: Record<string, any>;
|
|
56
|
-
};
|
|
57
|
-
declare function validateAuthorizationCode({
|
|
58
|
-
code,
|
|
59
|
-
codeVerifier,
|
|
60
|
-
redirectURI,
|
|
61
|
-
options,
|
|
62
|
-
tokenEndpoint,
|
|
63
|
-
authentication,
|
|
64
|
-
deviceId,
|
|
65
|
-
headers,
|
|
66
|
-
additionalParams,
|
|
67
|
-
resource
|
|
68
|
-
}: {
|
|
69
|
-
code: string;
|
|
70
|
-
redirectURI: string;
|
|
71
|
-
options: AwaitableFunction<Partial<ProviderOptions>>;
|
|
72
|
-
codeVerifier?: string | undefined;
|
|
73
|
-
deviceId?: string | undefined;
|
|
74
|
-
tokenEndpoint: string;
|
|
75
|
-
authentication?: ("basic" | "post") | undefined;
|
|
76
|
-
headers?: Record<string, string> | undefined;
|
|
77
|
-
additionalParams?: Record<string, string> | undefined;
|
|
78
|
-
resource?: (string | string[]) | undefined;
|
|
79
|
-
}): Promise<OAuth2Tokens>;
|
|
80
|
-
declare function validateToken(token: string, jwksEndpoint: string, options?: {
|
|
81
|
-
audience?: string | string[];
|
|
82
|
-
issuer?: string | string[];
|
|
83
|
-
}): Promise<jose.JWTVerifyResult<jose.JWTPayload> & jose.ResolvedKey>;
|
|
84
|
-
//#endregion
|
|
85
|
-
export { authorizationCodeRequest, createAuthorizationCodeRequest, validateAuthorizationCode, validateToken };
|
package/template/apps/web/node_modules/@better-auth/core/dist/oauth2/validate-authorization-code.mjs
DELETED
|
@@ -1,79 +0,0 @@
|
|
|
1
|
-
import { getOAuth2Tokens } from "./utils.mjs";
|
|
2
|
-
import { base64 } from "@better-auth/utils/base64";
|
|
3
|
-
import { betterFetch } from "@better-fetch/fetch";
|
|
4
|
-
import { createRemoteJWKSet, jwtVerify } from "jose";
|
|
5
|
-
//#region src/oauth2/validate-authorization-code.ts
|
|
6
|
-
async function authorizationCodeRequest({ code, codeVerifier, redirectURI, options, authentication, deviceId, headers, additionalParams = {}, resource }) {
|
|
7
|
-
options = typeof options === "function" ? await options() : options;
|
|
8
|
-
return createAuthorizationCodeRequest({
|
|
9
|
-
code,
|
|
10
|
-
codeVerifier,
|
|
11
|
-
redirectURI,
|
|
12
|
-
options,
|
|
13
|
-
authentication,
|
|
14
|
-
deviceId,
|
|
15
|
-
headers,
|
|
16
|
-
additionalParams,
|
|
17
|
-
resource
|
|
18
|
-
});
|
|
19
|
-
}
|
|
20
|
-
/**
|
|
21
|
-
* @deprecated use async'd authorizationCodeRequest instead
|
|
22
|
-
*/
|
|
23
|
-
function createAuthorizationCodeRequest({ code, codeVerifier, redirectURI, options, authentication, deviceId, headers, additionalParams = {}, resource }) {
|
|
24
|
-
const body = new URLSearchParams();
|
|
25
|
-
const requestHeaders = {
|
|
26
|
-
"content-type": "application/x-www-form-urlencoded",
|
|
27
|
-
accept: "application/json",
|
|
28
|
-
...headers
|
|
29
|
-
};
|
|
30
|
-
body.set("grant_type", "authorization_code");
|
|
31
|
-
body.set("code", code);
|
|
32
|
-
codeVerifier && body.set("code_verifier", codeVerifier);
|
|
33
|
-
options.clientKey && body.set("client_key", options.clientKey);
|
|
34
|
-
deviceId && body.set("device_id", deviceId);
|
|
35
|
-
body.set("redirect_uri", options.redirectURI || redirectURI);
|
|
36
|
-
if (resource) if (typeof resource === "string") body.append("resource", resource);
|
|
37
|
-
else for (const _resource of resource) body.append("resource", _resource);
|
|
38
|
-
if (authentication === "basic") {
|
|
39
|
-
const primaryClientId = Array.isArray(options.clientId) ? options.clientId[0] : options.clientId;
|
|
40
|
-
requestHeaders["authorization"] = `Basic ${base64.encode(`${primaryClientId}:${options.clientSecret ?? ""}`)}`;
|
|
41
|
-
} else {
|
|
42
|
-
const primaryClientId = Array.isArray(options.clientId) ? options.clientId[0] : options.clientId;
|
|
43
|
-
body.set("client_id", primaryClientId);
|
|
44
|
-
if (options.clientSecret) body.set("client_secret", options.clientSecret);
|
|
45
|
-
}
|
|
46
|
-
for (const [key, value] of Object.entries(additionalParams)) if (!body.has(key)) body.append(key, value);
|
|
47
|
-
return {
|
|
48
|
-
body,
|
|
49
|
-
headers: requestHeaders
|
|
50
|
-
};
|
|
51
|
-
}
|
|
52
|
-
async function validateAuthorizationCode({ code, codeVerifier, redirectURI, options, tokenEndpoint, authentication, deviceId, headers, additionalParams = {}, resource }) {
|
|
53
|
-
const { body, headers: requestHeaders } = await authorizationCodeRequest({
|
|
54
|
-
code,
|
|
55
|
-
codeVerifier,
|
|
56
|
-
redirectURI,
|
|
57
|
-
options,
|
|
58
|
-
authentication,
|
|
59
|
-
deviceId,
|
|
60
|
-
headers,
|
|
61
|
-
additionalParams,
|
|
62
|
-
resource
|
|
63
|
-
});
|
|
64
|
-
const { data, error } = await betterFetch(tokenEndpoint, {
|
|
65
|
-
method: "POST",
|
|
66
|
-
body,
|
|
67
|
-
headers: requestHeaders
|
|
68
|
-
});
|
|
69
|
-
if (error) throw error;
|
|
70
|
-
return getOAuth2Tokens(data);
|
|
71
|
-
}
|
|
72
|
-
async function validateToken(token, jwksEndpoint, options) {
|
|
73
|
-
return await jwtVerify(token, createRemoteJWKSet(new URL(jwksEndpoint)), {
|
|
74
|
-
audience: options?.audience,
|
|
75
|
-
issuer: options?.issuer
|
|
76
|
-
});
|
|
77
|
-
}
|
|
78
|
-
//#endregion
|
|
79
|
-
export { authorizationCodeRequest, createAuthorizationCodeRequest, validateAuthorizationCode, validateToken };
|
|
@@ -1,42 +0,0 @@
|
|
|
1
|
-
import { JSONWebKeySet, JWTPayload, JWTVerifyOptions } from "jose";
|
|
2
|
-
|
|
3
|
-
//#region src/oauth2/verify.d.ts
|
|
4
|
-
interface VerifyAccessTokenRemote {
|
|
5
|
-
/** Full url of the introspect endpoint. Should end with `/oauth2/introspect` */
|
|
6
|
-
introspectUrl: string;
|
|
7
|
-
/** Client Secret */
|
|
8
|
-
clientId: string;
|
|
9
|
-
/** Client Secret */
|
|
10
|
-
clientSecret: string;
|
|
11
|
-
/**
|
|
12
|
-
* Forces remote verification of a token.
|
|
13
|
-
* This ensures attached session (if applicable)
|
|
14
|
-
* is also still active.
|
|
15
|
-
*/
|
|
16
|
-
force?: boolean;
|
|
17
|
-
}
|
|
18
|
-
/**
|
|
19
|
-
* Performs local verification of an access token for your APIs.
|
|
20
|
-
*
|
|
21
|
-
* Can also be configured for remote verification.
|
|
22
|
-
*/
|
|
23
|
-
declare function verifyJwsAccessToken(token: string, opts: {
|
|
24
|
-
/** Jwks url or promise of a Jwks */jwksFetch: string | (() => Promise<JSONWebKeySet | undefined>); /** Verify options */
|
|
25
|
-
verifyOptions: JWTVerifyOptions & Required<Pick<JWTVerifyOptions, "audience" | "issuer">>;
|
|
26
|
-
}): Promise<JWTPayload>;
|
|
27
|
-
declare function getJwks(token: string, opts: {
|
|
28
|
-
/** Jwks url or promise of a Jwks */jwksFetch: string | (() => Promise<JSONWebKeySet | undefined>);
|
|
29
|
-
}): Promise<JSONWebKeySet>;
|
|
30
|
-
/**
|
|
31
|
-
* Performs local verification of an access token for your API.
|
|
32
|
-
*
|
|
33
|
-
* Can also be configured for remote verification.
|
|
34
|
-
*/
|
|
35
|
-
declare function verifyAccessToken(token: string, opts: {
|
|
36
|
-
/** Verify options */verifyOptions: JWTVerifyOptions & Required<Pick<JWTVerifyOptions, "audience" | "issuer">>; /** Scopes to additionally verify. Token must include all but not exact. */
|
|
37
|
-
scopes?: string[]; /** Required to verify access token locally */
|
|
38
|
-
jwksUrl?: string; /** If provided, can verify a token remotely */
|
|
39
|
-
remoteVerify?: VerifyAccessTokenRemote;
|
|
40
|
-
}): Promise<JWTPayload>;
|
|
41
|
-
//#endregion
|
|
42
|
-
export { getJwks, verifyAccessToken, verifyJwsAccessToken };
|
|
@@ -1,92 +0,0 @@
|
|
|
1
|
-
import { logger } from "../env/logger.mjs";
|
|
2
|
-
import { APIError } from "better-call";
|
|
3
|
-
import { betterFetch } from "@better-fetch/fetch";
|
|
4
|
-
import { UnsecuredJWT, createLocalJWKSet, decodeProtectedHeader, jwtVerify } from "jose";
|
|
5
|
-
//#region src/oauth2/verify.ts
|
|
6
|
-
/** Last fetched jwks used locally in getJwks @internal */
|
|
7
|
-
let jwks;
|
|
8
|
-
/**
|
|
9
|
-
* Performs local verification of an access token for your APIs.
|
|
10
|
-
*
|
|
11
|
-
* Can also be configured for remote verification.
|
|
12
|
-
*/
|
|
13
|
-
async function verifyJwsAccessToken(token, opts) {
|
|
14
|
-
try {
|
|
15
|
-
const jwt = await jwtVerify(token, createLocalJWKSet(await getJwks(token, opts)), opts.verifyOptions);
|
|
16
|
-
if (jwt.payload.azp) jwt.payload.client_id = jwt.payload.azp;
|
|
17
|
-
return jwt.payload;
|
|
18
|
-
} catch (error) {
|
|
19
|
-
if (error instanceof Error) throw error;
|
|
20
|
-
throw new Error(error);
|
|
21
|
-
}
|
|
22
|
-
}
|
|
23
|
-
async function getJwks(token, opts) {
|
|
24
|
-
let jwtHeaders;
|
|
25
|
-
try {
|
|
26
|
-
jwtHeaders = decodeProtectedHeader(token);
|
|
27
|
-
} catch (error) {
|
|
28
|
-
if (error instanceof Error) throw error;
|
|
29
|
-
throw new Error(error);
|
|
30
|
-
}
|
|
31
|
-
if (!jwtHeaders.kid) throw new Error("Missing jwt kid");
|
|
32
|
-
if (!jwks || !jwks.keys.find((jwk) => jwk.kid === jwtHeaders.kid)) {
|
|
33
|
-
jwks = typeof opts.jwksFetch === "string" ? await betterFetch(opts.jwksFetch, { headers: { Accept: "application/json" } }).then(async (res) => {
|
|
34
|
-
if (res.error) throw new Error(`Jwks failed: ${res.error.message ?? res.error.statusText}`);
|
|
35
|
-
return res.data;
|
|
36
|
-
}) : await opts.jwksFetch();
|
|
37
|
-
if (!jwks) throw new Error("No jwks found");
|
|
38
|
-
}
|
|
39
|
-
return jwks;
|
|
40
|
-
}
|
|
41
|
-
/**
|
|
42
|
-
* Performs local verification of an access token for your API.
|
|
43
|
-
*
|
|
44
|
-
* Can also be configured for remote verification.
|
|
45
|
-
*/
|
|
46
|
-
async function verifyAccessToken(token, opts) {
|
|
47
|
-
let payload;
|
|
48
|
-
if (opts.jwksUrl && !opts?.remoteVerify?.force) try {
|
|
49
|
-
payload = await verifyJwsAccessToken(token, {
|
|
50
|
-
jwksFetch: opts.jwksUrl,
|
|
51
|
-
verifyOptions: opts.verifyOptions
|
|
52
|
-
});
|
|
53
|
-
} catch (error) {
|
|
54
|
-
if (error instanceof Error) if (error.name === "TypeError" || error.name === "JWSInvalid") {} else if (error.name === "JWTExpired") throw new APIError("UNAUTHORIZED", { message: "token expired" });
|
|
55
|
-
else if (error.name === "JWTInvalid") throw new APIError("UNAUTHORIZED", { message: "token invalid" });
|
|
56
|
-
else throw error;
|
|
57
|
-
else throw new Error(error);
|
|
58
|
-
}
|
|
59
|
-
if (opts?.remoteVerify) {
|
|
60
|
-
const { data: introspect, error: introspectError } = await betterFetch(opts.remoteVerify.introspectUrl, {
|
|
61
|
-
method: "POST",
|
|
62
|
-
headers: {
|
|
63
|
-
Accept: "application/json",
|
|
64
|
-
"Content-Type": "application/x-www-form-urlencoded"
|
|
65
|
-
},
|
|
66
|
-
body: new URLSearchParams({
|
|
67
|
-
client_id: opts.remoteVerify.clientId,
|
|
68
|
-
client_secret: opts.remoteVerify.clientSecret,
|
|
69
|
-
token,
|
|
70
|
-
token_type_hint: "access_token"
|
|
71
|
-
}).toString()
|
|
72
|
-
});
|
|
73
|
-
if (introspectError) logger.error(`Introspection failed: ${introspectError.message ?? introspectError.statusText}`);
|
|
74
|
-
if (!introspect) throw new APIError("INTERNAL_SERVER_ERROR", { message: "introspection failed" });
|
|
75
|
-
if (!introspect.active) throw new APIError("UNAUTHORIZED", { message: "token inactive" });
|
|
76
|
-
try {
|
|
77
|
-
const unsecuredJwt = new UnsecuredJWT(introspect).encode();
|
|
78
|
-
const { audience: _audience, ...verifyOptions } = opts.verifyOptions;
|
|
79
|
-
payload = (introspect.aud ? UnsecuredJWT.decode(unsecuredJwt, opts.verifyOptions) : UnsecuredJWT.decode(unsecuredJwt, verifyOptions)).payload;
|
|
80
|
-
} catch (error) {
|
|
81
|
-
throw new Error(error);
|
|
82
|
-
}
|
|
83
|
-
}
|
|
84
|
-
if (!payload) throw new APIError("UNAUTHORIZED", { message: `no token payload` });
|
|
85
|
-
if (opts.scopes) {
|
|
86
|
-
const validScopes = new Set(payload.scope?.split(" "));
|
|
87
|
-
for (const sc of opts.scopes) if (!validScopes.has(sc)) throw new APIError("FORBIDDEN", { message: `invalid scope ${sc}` });
|
|
88
|
-
}
|
|
89
|
-
return payload;
|
|
90
|
-
}
|
|
91
|
-
//#endregion
|
|
92
|
-
export { getJwks, verifyAccessToken, verifyJwsAccessToken };
|
|
@@ -1,126 +0,0 @@
|
|
|
1
|
-
import { OAuth2Tokens, ProviderOptions } from "../oauth2/oauth-provider.mjs";
|
|
2
|
-
//#region src/social-providers/apple.d.ts
|
|
3
|
-
interface AppleProfile {
|
|
4
|
-
/**
|
|
5
|
-
* The subject registered claim identifies the principal that’s the subject
|
|
6
|
-
* of the identity token. Because this token is for your app, the value is
|
|
7
|
-
* the unique identifier for the user.
|
|
8
|
-
*/
|
|
9
|
-
sub: string;
|
|
10
|
-
/**
|
|
11
|
-
* A String value representing the user's email address.
|
|
12
|
-
* The email address is either the user's real email address or the proxy
|
|
13
|
-
* address, depending on their status private email relay service.
|
|
14
|
-
*/
|
|
15
|
-
email: string;
|
|
16
|
-
/**
|
|
17
|
-
* A string or Boolean value that indicates whether the service verifies
|
|
18
|
-
* the email. The value can either be a string ("true" or "false") or a
|
|
19
|
-
* Boolean (true or false). The system may not verify email addresses for
|
|
20
|
-
* Sign in with Apple at Work & School users, and this claim is "false" or
|
|
21
|
-
* false for those users.
|
|
22
|
-
*/
|
|
23
|
-
email_verified: true | "true";
|
|
24
|
-
/**
|
|
25
|
-
* A string or Boolean value that indicates whether the email that the user
|
|
26
|
-
* shares is the proxy address. The value can either be a string ("true" or
|
|
27
|
-
* "false") or a Boolean (true or false).
|
|
28
|
-
*/
|
|
29
|
-
is_private_email: boolean;
|
|
30
|
-
/**
|
|
31
|
-
* An Integer value that indicates whether the user appears to be a real
|
|
32
|
-
* person. Use the value of this claim to mitigate fraud. The possible
|
|
33
|
-
* values are: 0 (or Unsupported), 1 (or Unknown), 2 (or LikelyReal). For
|
|
34
|
-
* more information, see ASUserDetectionStatus. This claim is present only
|
|
35
|
-
* in iOS 14 and later, macOS 11 and later, watchOS 7 and later, tvOS 14
|
|
36
|
-
* and later. The claim isn’t present or supported for web-based apps.
|
|
37
|
-
*/
|
|
38
|
-
real_user_status: number;
|
|
39
|
-
/**
|
|
40
|
-
* The user’s full name in the format provided during the authorization
|
|
41
|
-
* process.
|
|
42
|
-
*/
|
|
43
|
-
name: string;
|
|
44
|
-
/**
|
|
45
|
-
* The URL to the user's profile picture.
|
|
46
|
-
*/
|
|
47
|
-
picture: string;
|
|
48
|
-
user?: AppleNonConformUser | undefined;
|
|
49
|
-
}
|
|
50
|
-
/**
|
|
51
|
-
* This is the shape of the `user` query parameter that Apple sends the first
|
|
52
|
-
* time the user consents to the app.
|
|
53
|
-
* @see https://developer.apple.com/documentation/signinwithapplerestapi/request-an-authorization-to-the-sign-in-with-apple-server./
|
|
54
|
-
*/
|
|
55
|
-
interface AppleNonConformUser {
|
|
56
|
-
name: {
|
|
57
|
-
firstName: string;
|
|
58
|
-
lastName: string;
|
|
59
|
-
};
|
|
60
|
-
email: string;
|
|
61
|
-
}
|
|
62
|
-
interface AppleOptions extends ProviderOptions<AppleProfile> {
|
|
63
|
-
clientId: string | string[];
|
|
64
|
-
appBundleIdentifier?: string | undefined;
|
|
65
|
-
audience?: (string | string[]) | undefined;
|
|
66
|
-
}
|
|
67
|
-
declare const apple: (options: AppleOptions) => {
|
|
68
|
-
id: "apple";
|
|
69
|
-
name: string;
|
|
70
|
-
createAuthorizationURL({
|
|
71
|
-
state,
|
|
72
|
-
scopes,
|
|
73
|
-
redirectURI
|
|
74
|
-
}: {
|
|
75
|
-
state: string;
|
|
76
|
-
codeVerifier: string;
|
|
77
|
-
scopes?: string[] | undefined;
|
|
78
|
-
redirectURI: string;
|
|
79
|
-
display?: string | undefined;
|
|
80
|
-
loginHint?: string | undefined;
|
|
81
|
-
}): Promise<URL>;
|
|
82
|
-
validateAuthorizationCode: ({
|
|
83
|
-
code,
|
|
84
|
-
codeVerifier,
|
|
85
|
-
redirectURI
|
|
86
|
-
}: {
|
|
87
|
-
code: string;
|
|
88
|
-
redirectURI: string;
|
|
89
|
-
codeVerifier?: string | undefined;
|
|
90
|
-
deviceId?: string | undefined;
|
|
91
|
-
}) => Promise<OAuth2Tokens>;
|
|
92
|
-
verifyIdToken(token: string, nonce: string | undefined): Promise<boolean>;
|
|
93
|
-
refreshAccessToken: (refreshToken: string) => Promise<OAuth2Tokens>;
|
|
94
|
-
getUserInfo(token: OAuth2Tokens & {
|
|
95
|
-
user?: {
|
|
96
|
-
name?
|
|
97
|
-
/**
|
|
98
|
-
* An Integer value that indicates whether the user appears to be a real
|
|
99
|
-
* person. Use the value of this claim to mitigate fraud. The possible
|
|
100
|
-
* values are: 0 (or Unsupported), 1 (or Unknown), 2 (or LikelyReal). For
|
|
101
|
-
* more information, see ASUserDetectionStatus. This claim is present only
|
|
102
|
-
* in iOS 14 and later, macOS 11 and later, watchOS 7 and later, tvOS 14
|
|
103
|
-
* and later. The claim isn’t present or supported for web-based apps.
|
|
104
|
-
*/
|
|
105
|
-
: {
|
|
106
|
-
firstName?: string;
|
|
107
|
-
lastName?: string;
|
|
108
|
-
};
|
|
109
|
-
email?: string;
|
|
110
|
-
} | undefined;
|
|
111
|
-
}): Promise<{
|
|
112
|
-
user: {
|
|
113
|
-
id: string;
|
|
114
|
-
name?: string;
|
|
115
|
-
email?: string | null;
|
|
116
|
-
image?: string;
|
|
117
|
-
emailVerified: boolean;
|
|
118
|
-
[key: string]: any;
|
|
119
|
-
};
|
|
120
|
-
data: any;
|
|
121
|
-
} | null>;
|
|
122
|
-
options: AppleOptions;
|
|
123
|
-
};
|
|
124
|
-
declare const getApplePublicKey: (kid: string) => Promise<Uint8Array<ArrayBufferLike> | CryptoKey>;
|
|
125
|
-
//#endregion
|
|
126
|
-
export { AppleNonConformUser, AppleOptions, AppleProfile, apple, getApplePublicKey };
|