hazo_auth 1.6.6 → 3.0.0

package/dist/components/layouts/shared/hooks/use_hazo_auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"use_hazo_auth.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/hooks/use_hazo_auth.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AAItE;;GAEG;AACH,MAAM,MAAM,kBAAkB,GAAG;IAC/B;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;IAChC;;OAEG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,iBAAiB,GAAG,cAAc,GAAG;IAC/C;;OAEG;IACH,OAAO,EAAE,OAAO,CAAC;IACjB;;OAEG;IACH,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB;;OAEG;IACH,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B,CAAC;AAOF;;;GAGG;AACH,wBAAgB,yBAAyB,IAAI,IAAI,CAMhD;AAID;;;;;GAKG;AACH,wBAAgB,aAAa,CAC3B,OAAO,CAAC,EAAE,kBAAkB,GAC3B,iBAAiB,CAmFnB"}
+{"version":3,"file":"use_hazo_auth.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/hooks/use_hazo_auth.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AAKtE;;GAEG;AACH,MAAM,MAAM,kBAAkB,GAAG;IAC/B;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;IAChC;;OAEG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,iBAAiB,GAAG,cAAc,GAAG;IAC/C;;OAEG;IACH,OAAO,EAAE,OAAO,CAAC;IACjB;;OAEG;IACH,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB;;OAEG;IACH,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B,CAAC;AAOF;;;GAGG;AACH,wBAAgB,yBAAyB,IAAI,IAAI,CAMhD;AAID;;;;;GAKG;AACH,wBAAgB,aAAa,CAC3B,OAAO,CAAC,EAAE,kBAAkB,GAC3B,iBAAiB,CAoFnB"}

package/dist/components/layouts/shared/hooks/use_hazo_auth.js

@@ -3,6 +3,7 @@
 "use client";
 // section: imports
 import { useState, useEffect, useCallback } from "react";
+import { useHazoAuthConfig } from "../../../../contexts/hazo_auth_provider";
 // section: constants
 const AUTH_STATUS_CHANGE_EVENT = "hazo_auth_status_change";
 // section: helpers
@@ -23,6 +24,7 @@ export function trigger_hazo_auth_refresh() {
  * @returns UseHazoAuthResult with auth data, loading state, and refetch function
  */
 export function use_hazo_auth(options) {
+    const { apiBasePath } = useHazoAuthConfig();
     const [authResult, setAuthResult] = useState({
         authenticated: false,
         user: null,
@@ -39,7 +41,7 @@ export function use_hazo_auth(options) {
         setLoading(true);
         setError(null);
         try {
-            const response = await fetch("/api/hazo_auth/get_auth", {
+            const response = await fetch(`${apiBasePath}/get_auth`, {
                 method: "POST",
                 headers: {
                     "Content-Type": "application/json",
@@ -72,7 +74,7 @@ export function use_hazo_auth(options) {
         finally {
             setLoading(false);
         }
-    }, [options === null || options === void 0 ? void 0 : options.required_permissions, options === null || options === void 0 ? void 0 : options.strict, options === null || options === void 0 ? void 0 : options.skip]);
+    }, [apiBasePath, options === null || options === void 0 ? void 0 : options.required_permissions, options === null || options === void 0 ? void 0 : options.strict, options === null || options === void 0 ? void 0 : options.skip]);
     useEffect(() => {
         // Fetch auth status on mount
         void fetchAuth();

package/dist/components/layouts/shared/index.d.ts

@@ -1,5 +1,4 @@
 export { AlreadyLoggedInGuard } from "./components/already_logged_in_guard";
-export { AuthPageShell } from "./components/auth_page_shell";
 export { FieldErrorMessage } from "./components/field_error_message";
 export { FormActionButtons } from "./components/form_action_buttons";
 export { FormFieldWrapper } from "./components/form_field_wrapper";
@@ -8,7 +7,6 @@ export { LogoutButton } from "./components/logout_button";
 export { PasswordField } from "./components/password_field";
 export { ProfilePicMenuWrapper } from "./components/profile_pic_menu_wrapper";
 export { ProfilePicMenu } from "./components/profile_pic_menu";
-export { SidebarLayoutWrapper } from "./components/sidebar_layout_wrapper";
 export { StandaloneLayoutWrapper } from "./components/standalone_layout_wrapper";
 export { TwoColumnAuthLayout } from "./components/two_column_auth_layout";
 export { UnauthorizedGuard } from "./components/unauthorized_guard";

package/dist/components/layouts/shared/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/shared/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,oBAAoB,EAAE,MAAM,sCAAsC,CAAC;AAC5E,OAAO,EAAE,aAAa,EAAE,MAAM,8BAA8B,CAAC;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACnE,OAAO,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AACtD,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAC5D,OAAO,EAAE,qBAAqB,EAAE,MAAM,uCAAuC,CAAC;AAC9E,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAC/D,OAAO,EAAE,oBAAoB,EAAE,MAAM,qCAAqC,CAAC;AAC3E,OAAO,EAAE,uBAAuB,EAAE,MAAM,wCAAwC,CAAC;AACjF,OAAO,EAAE,mBAAmB,EAAE,MAAM,qCAAqC,CAAC;AAC1E,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAGxD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,aAAa,EAAE,yBAAyB,EAAE,MAAM,uBAAuB,CAAC;AACjF,YAAY,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAGnF,cAAc,+BAA+B,CAAC;AAG9C,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AACnE,YAAY,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAGlE,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,cAAc,oBAAoB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/shared/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,oBAAoB,EAAE,MAAM,sCAAsC,CAAC;AAE5E,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACnE,OAAO,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AACtD,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAC5D,OAAO,EAAE,qBAAqB,EAAE,MAAM,uCAAuC,CAAC;AAC9E,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAE/D,OAAO,EAAE,uBAAuB,EAAE,MAAM,wCAAwC,CAAC;AACjF,OAAO,EAAE,mBAAmB,EAAE,MAAM,qCAAqC,CAAC;AAC1E,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAGxD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,aAAa,EAAE,yBAAyB,EAAE,MAAM,uBAAuB,CAAC;AACjF,YAAY,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAGnF,cAAc,+BAA+B,CAAC;AAG9C,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AACnE,YAAY,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAGlE,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,cAAc,oBAAoB,CAAC"}

package/dist/components/layouts/shared/index.js

@@ -1,7 +1,7 @@
 // file_description: barrel export for shared layout components, hooks, and utilities
 // section: component_exports
 export { AlreadyLoggedInGuard } from "./components/already_logged_in_guard";
-export { AuthPageShell } from "./components/auth_page_shell";
+// AuthPageShell - NOT exported (test workspace component only)
 export { FieldErrorMessage } from "./components/field_error_message";
 export { FormActionButtons } from "./components/form_action_buttons";
 export { FormFieldWrapper } from "./components/form_field_wrapper";
@@ -10,7 +10,7 @@ export { LogoutButton } from "./components/logout_button";
 export { PasswordField } from "./components/password_field";
 export { ProfilePicMenuWrapper } from "./components/profile_pic_menu_wrapper";
 export { ProfilePicMenu } from "./components/profile_pic_menu";
-export { SidebarLayoutWrapper } from "./components/sidebar_layout_wrapper";
+// SidebarLayoutWrapper - NOT exported (test workspace component only)
 export { StandaloneLayoutWrapper } from "./components/standalone_layout_wrapper";
 export { TwoColumnAuthLayout } from "./components/two_column_auth_layout";
 export { UnauthorizedGuard } from "./components/unauthorized_guard";

package/dist/components/layouts/user_management/components/roles_matrix.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"roles_matrix.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/user_management/components/roles_matrix.tsx"],"names":[],"mappings":"AA+BA,MAAM,MAAM,eAAe,GAAG;IAC5B,KAAK,EAAE,KAAK,CAAC;QACX,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,OAAO,CAAC;QAClB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,CAAC,CAAC;CACJ,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,OAAO,CAAC;IACtC,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,IAAI,CAAC;IACzC,QAAQ,CAAC,EAAE,MAAM,IAAI,CAAC;IACtB,eAAe,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,KAAK,IAAI,CAAC;IAC/D,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAGF;;;;;;;GAOG;AACH,wBAAgB,WAAW,CAAC,EAC1B,kBAAyB,EACzB,2BAAkC,EAClC,qBAA6B,EAC7B,gBAAuB,EACvB,OAAO,EACP,MAAM,EACN,QAAQ,EACR,eAAe,EACf,SAAS,GACV,EAAE,gBAAgB,2CAshBlB"}
+{"version":3,"file":"roles_matrix.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/user_management/components/roles_matrix.tsx"],"names":[],"mappings":"AAgCA,MAAM,MAAM,eAAe,GAAG;IAC5B,KAAK,EAAE,KAAK,CAAC;QACX,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE,OAAO,CAAC;QAClB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,CAAC,CAAC;CACJ,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,OAAO,CAAC;IACtC,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,IAAI,CAAC;IACzC,QAAQ,CAAC,EAAE,MAAM,IAAI,CAAC;IACtB,eAAe,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,KAAK,IAAI,CAAC;IAC/D,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAGF;;;;;;;GAOG;AACH,wBAAgB,WAAW,CAAC,EAC1B,kBAAyB,EACzB,2BAAkC,EAClC,qBAA6B,EAC7B,gBAAuB,EACvB,OAAO,EACP,MAAM,EACN,QAAQ,EACR,eAAe,EACf,SAAS,GACV,EAAE,gBAAgB,2CAwhBlB"}

package/dist/components/layouts/user_management/components/roles_matrix.js

@@ -13,6 +13,7 @@ import { Label } from "../../../ui/label";
 import { Plus, Loader2, CircleCheck, CircleX } from "lucide-react";
 import { toast } from "sonner";
 import { Avatar, AvatarImage, AvatarFallback } from "../../../ui/avatar";
+import { useHazoAuthConfig } from "../../../../contexts/hazo_auth_provider";
 // section: component
 /**
  * Roles matrix component - reusable internal component for roles-permissions matrix
@@ -23,6 +24,7 @@ import { Avatar, AvatarImage, AvatarFallback } from "../../../ui/avatar";
  * @returns Roles matrix component
  */
 export function RolesMatrix({ add_button_enabled = true, role_name_selection_enabled = true, permissions_read_only = false, show_save_cancel = true, user_id, onSave, onCancel, onRoleSelection, className, }) {
+    const { apiBasePath } = useHazoAuthConfig();
     const [roles, setRoles] = useState([]);
     const [originalRoles, setOriginalRoles] = useState([]);
     const [permissions, setPermissions] = useState([]);
@@ -38,7 +40,7 @@ export function RolesMatrix({ add_button_enabled = true, role_name_selection_ena
             setLoading(true);
             try {
                 // Load roles and permissions
-                const roles_response = await fetch("/api/hazo_auth/user_management/roles");
+                const roles_response = await fetch(`${apiBasePath}/user_management/roles`);
                 const roles_data = await roles_response.json();
                 if (!roles_data.success) {
                     toast.error("Failed to load roles and permissions");
@@ -63,7 +65,7 @@ export function RolesMatrix({ add_button_enabled = true, role_name_selection_ena
                 // If user_id is provided, load user info and user roles
                 if (user_id) {
                     // Load user info
-                    const user_response = await fetch(`/api/hazo_auth/user_management/users?id=${user_id}`);
+                    const user_response = await fetch(`${apiBasePath}/user_management/users?id=${user_id}`);
                     const user_data = await user_response.json();
                     if (user_data.success && Array.isArray(user_data.users) && user_data.users.length > 0) {
                         const user = user_data.users[0];
@@ -74,7 +76,7 @@ export function RolesMatrix({ add_button_enabled = true, role_name_selection_ena
                         });
                     }
                     // Load user roles
-                    const user_roles_response = await fetch(`/api/hazo_auth/user_management/users/roles?user_id=${user_id}`);
+                    const user_roles_response = await fetch(`${apiBasePath}/user_management/users/roles?user_id=${user_id}`);
                     const user_roles_data = await user_roles_response.json();
                     if (user_roles_data.success && Array.isArray(user_roles_data.role_ids)) {
                         setUserRoleIds(user_roles_data.role_ids);
@@ -191,7 +193,7 @@ export function RolesMatrix({ add_button_enabled = true, role_name_selection_ena
                     .filter((role) => role.selected && role.role_id !== undefined)
                     .map((role) => role.role_id);
                 // Update user roles via API
-                const response = await fetch("/api/hazo_auth/user_management/users/roles", {
+                const response = await fetch(`${apiBasePath}/user_management/users/roles`, {
                     method: "PUT",
                     headers: {
                         "Content-Type": "application/json",
@@ -220,7 +222,7 @@ export function RolesMatrix({ add_button_enabled = true, role_name_selection_ena
                     onSave(roles_data);
                 }
                 // Save to API
-                const response = await fetch("/api/hazo_auth/user_management/roles", {
+                const response = await fetch(`${apiBasePath}/user_management/roles`, {
                     method: "PUT",
                     headers: {
                         "Content-Type": "application/json",
@@ -231,7 +233,7 @@ export function RolesMatrix({ add_button_enabled = true, role_name_selection_ena
                 if (data.success) {
                     toast.success("Roles and permissions saved successfully");
                     // Reload data to get updated role IDs
-                    const reload_response = await fetch("/api/hazo_auth/user_management/roles");
+                    const reload_response = await fetch(`${apiBasePath}/user_management/roles`);
                     const reload_data = await reload_response.json();
                     if (reload_data.success) {
                         const updated_roles = reload_data.roles.map((role) => ({

package/dist/components/layouts/user_management/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/user_management/index.tsx"],"names":[],"mappings":"AA4CA,MAAM,MAAM,yBAAyB,GAAG;IACtC,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAsBF;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,CAAC,EAAE,SAAS,EAAE,EAAE,yBAAyB,2CAisC5E"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/user_management/index.tsx"],"names":[],"mappings":"AA6CA,MAAM,MAAM,yBAAyB,GAAG;IACtC,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAsBF;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,CAAC,EAAE,SAAS,EAAE,EAAE,yBAAyB,2CAmsC5E"}

package/dist/components/layouts/user_management/index.js

@@ -17,6 +17,7 @@ import { RolesMatrix } from "./components/roles_matrix";
 import { UserX, KeyRound, Edit, Trash2, Loader2, CircleCheck, CircleX, Plus, UserPlus } from "lucide-react";
 import { toast } from "sonner";
 import { Tooltip, TooltipContent, TooltipProvider, TooltipTrigger } from "../../ui/tooltip";
+import { useHazoAuthConfig } from "../../../contexts/hazo_auth_provider";
 // section: component
 /**
  * User Management layout component with three tabs
@@ -27,6 +28,7 @@ import { Tooltip, TooltipContent, TooltipProvider, TooltipTrigger } from "../../
  * @returns User Management layout component
  */
 export function UserManagementLayout({ className }) {
+    const { apiBasePath } = useHazoAuthConfig();
     // Permission checks
     const authResult = use_hazo_auth();
     const hasUserManagementPermission = authResult.authenticated &&
@@ -64,7 +66,7 @@ export function UserManagementLayout({ className }) {
     const loadUsers = useCallback(async () => {
         setUsersLoading(true);
         try {
-            const response = await fetch("/api/hazo_auth/user_management/users");
+            const response = await fetch(`${apiBasePath}/user_management/users`);
             const data = await response.json();
             if (data.success) {
                 setUsers(data.users);
@@ -97,7 +99,7 @@ export function UserManagementLayout({ className }) {
         const loadPermissions = async () => {
             setPermissionsLoading(true);
             try {
-                const response = await fetch("/api/hazo_auth/user_management/permissions");
+                const response = await fetch(`${apiBasePath}/user_management/permissions`);
                 const data = await response.json();
                 if (data.success) {
                     const db_perms = data.db_permissions.map((p) => ({
@@ -133,7 +135,7 @@ export function UserManagementLayout({ className }) {
             return;
         setUsersActionLoading(true);
         try {
-            const response = await fetch("/api/hazo_auth/user_management/users", {
+            const response = await fetch(`${apiBasePath}/user_management/users`, {
                 method: "PATCH",
                 headers: {
                     "Content-Type": "application/json",
@@ -149,7 +151,7 @@ export function UserManagementLayout({ className }) {
                 setDeactivateDialogOpen(false);
                 setSelectedUser(null);
                 // Reload users
-                const reload_response = await fetch("/api/hazo_auth/user_management/users");
+                const reload_response = await fetch(`${apiBasePath}/user_management/users`);
                 const reload_data = await reload_response.json();
                 if (reload_data.success) {
                     setUsers(reload_data.users);
@@ -172,7 +174,7 @@ export function UserManagementLayout({ className }) {
             return;
         setUsersActionLoading(true);
         try {
-            const response = await fetch("/api/hazo_auth/user_management/users", {
+            const response = await fetch(`${apiBasePath}/user_management/users`, {
                 method: "POST",
                 headers: {
                     "Content-Type": "application/json",
@@ -203,7 +205,7 @@ export function UserManagementLayout({ className }) {
         var _a, _b;
         setMigrateLoading(true);
         try {
-            const response = await fetch("/api/hazo_auth/user_management/permissions?action=migrate", {
+            const response = await fetch(`${apiBasePath}/user_management/permissions?action=migrate`, {
                 method: "POST",
             });
             const data = await response.json();
@@ -224,7 +226,7 @@ export function UserManagementLayout({ className }) {
                     toast.info(`Skipped: ${data.skipped.join(", ")}`);
                 }
                 // Reload permissions
-                const reload_response = await fetch("/api/hazo_auth/user_management/permissions");
+                const reload_response = await fetch(`${apiBasePath}/user_management/permissions`);
                 const reload_data = await reload_response.json();
                 if (reload_data.success) {
                     const db_perms = reload_data.db_permissions.map((p) => ({
@@ -259,7 +261,7 @@ export function UserManagementLayout({ className }) {
             return;
         setPermissionsActionLoading(true);
         try {
-            const response = await fetch("/api/hazo_auth/user_management/permissions", {
+            const response = await fetch(`${apiBasePath}/user_management/permissions`, {
                 method: "PUT",
                 headers: {
                     "Content-Type": "application/json",
@@ -276,7 +278,7 @@ export function UserManagementLayout({ className }) {
                 setEditingPermission(null);
                 setEditDescription("");
                 // Reload permissions
-                const reload_response = await fetch("/api/hazo_auth/user_management/permissions");
+                const reload_response = await fetch(`${apiBasePath}/user_management/permissions`);
                 const reload_data = await reload_response.json();
                 if (reload_data.success) {
                     const db_perms = reload_data.db_permissions.map((p) => ({
@@ -313,7 +315,7 @@ export function UserManagementLayout({ className }) {
         }
         setPermissionsActionLoading(true);
         try {
-            const response = await fetch("/api/hazo_auth/user_management/permissions", {
+            const response = await fetch(`${apiBasePath}/user_management/permissions`, {
                 method: "POST",
                 headers: {
                     "Content-Type": "application/json",
@@ -330,7 +332,7 @@ export function UserManagementLayout({ className }) {
                 setNewPermissionName("");
                 setNewPermissionDescription("");
                 // Reload permissions
-                const reload_response = await fetch("/api/hazo_auth/user_management/permissions");
+                const reload_response = await fetch(`${apiBasePath}/user_management/permissions`);
                 const reload_data = await reload_response.json();
                 if (reload_data.success) {
                     const db_perms = reload_data.db_permissions.map((p) => ({
@@ -365,14 +367,14 @@ export function UserManagementLayout({ className }) {
             return;
         setPermissionsActionLoading(true);
         try {
-            const response = await fetch(`/api/hazo_auth/user_management/permissions?permission_id=${permission.id}`, {
+            const response = await fetch(`${apiBasePath}/user_management/permissions?permission_id=${permission.id}`, {
                 method: "DELETE",
             });
             const data = await response.json();
             if (data.success) {
                 toast.success("Permission deleted successfully");
                 // Reload permissions
-                const reload_response = await fetch("/api/hazo_auth/user_management/permissions");
+                const reload_response = await fetch(`${apiBasePath}/user_management/permissions`);
                 const reload_data = await reload_response.json();
                 if (reload_data.success) {
                     const db_perms = reload_data.db_permissions.map((p) => ({

package/dist/contexts/hazo_auth_config.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Runtime configuration for hazo_auth components
+ * Controls API paths and other runtime settings
+ */
+export type HazoAuthConfig = {
+    /**
+     * Base path for all hazo_auth API endpoints
+     * @default "/api/hazo_auth"
+     * @example "/api/v1/auth"
+     */
+    apiBasePath: string;
+};
+/**
+ * Default configuration values
+ * Used when no provider is present or when values are not specified
+ */
+export declare const DEFAULT_HAZO_AUTH_CONFIG: HazoAuthConfig;
+//# sourceMappingURL=hazo_auth_config.d.ts.map

package/dist/contexts/hazo_auth_config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hazo_auth_config.d.ts","sourceRoot":"","sources":["../../src/contexts/hazo_auth_config.ts"],"names":[],"mappings":"AAIA;;;GAGG;AACH,MAAM,MAAM,cAAc,GAAG;IAC3B;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,wBAAwB,EAAE,cAEtC,CAAC"}

package/dist/contexts/hazo_auth_config.js

@@ -0,0 +1,10 @@
+// file_description: Type definitions for HazoAuth runtime configuration
+// This file defines the configuration structure for the HazoAuthProvider context
+// section: types
+/**
+ * Default configuration values
+ * Used when no provider is present or when values are not specified
+ */
+export const DEFAULT_HAZO_AUTH_CONFIG = {
+    apiBasePath: "/api/hazo_auth",
+};

package/dist/contexts/hazo_auth_provider.d.ts

@@ -0,0 +1,73 @@
+import { type ReactNode } from "react";
+import { type HazoAuthConfig } from "./hazo_auth_config";
+/**
+ * Props for HazoAuthProvider component
+ */
+export type HazoAuthProviderProps = {
+    /**
+     * Base path for all hazo_auth API endpoints
+     * @default "/api/hazo_auth"
+     * @example "/api/v1/auth" - Custom API path
+     */
+    apiBasePath?: string;
+    /**
+     * Child components that will have access to the configuration
+     */
+    children: ReactNode;
+};
+/**
+ * Context Provider for hazo_auth runtime configuration
+ *
+ * Wrap your app (or specific parts) with this provider to customize
+ * API paths and other runtime settings for all hazo_auth components.
+ *
+ * @example
+ * ```tsx
+ * // In your root layout or app component
+ * import { HazoAuthProvider } from "hazo_auth/provider";
+ *
+ * export default function RootLayout({ children }) {
+ *   return (
+ *     <html>
+ *       <body>
+ *         <HazoAuthProvider apiBasePath="/api/v1/auth">
+ *           {children}
+ *         </HazoAuthProvider>
+ *       </body>
+ *     </html>
+ *   );
+ * }
+ * ```
+ *
+ * @example
+ * ```tsx
+ * // Using default values (no provider needed)
+ * // All components will use "/api/hazo_auth" as the base path
+ * export default function App() {
+ *   return <LoginPage />;
+ * }
+ * ```
+ */
+export declare function HazoAuthProvider({ apiBasePath, children }: HazoAuthProviderProps): import("react/jsx-runtime").JSX.Element;
+/**
+ * Hook to access hazo_auth runtime configuration
+ *
+ * Returns the current configuration from the nearest HazoAuthProvider,
+ * or default values if no provider is present.
+ *
+ * @example
+ * ```tsx
+ * function MyComponent() {
+ *   const { apiBasePath } = useHazoAuthConfig();
+ *
+ *   const response = await fetch(`${apiBasePath}/login`, {
+ *     method: "POST",
+ *     body: JSON.stringify({ email, password }),
+ *   });
+ * }
+ * ```
+ *
+ * @returns Current HazoAuthConfig
+ */
+export declare function useHazoAuthConfig(): HazoAuthConfig;
+//# sourceMappingURL=hazo_auth_provider.d.ts.map

package/dist/contexts/hazo_auth_provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hazo_auth_provider.d.ts","sourceRoot":"","sources":["../../src/contexts/hazo_auth_provider.tsx"],"names":[],"mappings":"AAMA,OAAc,EAAsC,KAAK,SAAS,EAAE,MAAM,OAAO,CAAC;AAClF,OAAO,EAA4B,KAAK,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAYnF;;GAEG;AACH,MAAM,MAAM,qBAAqB,GAAG;IAClC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,QAAQ,EAAE,SAAS,CAAC;CACrB,CAAC;AAIF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,wBAAgB,gBAAgB,CAAC,EAC/B,WAAkD,EAClD,QAAQ,EACT,EAAE,qBAAqB,2CAcvB;AAID;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,iBAAiB,IAAI,cAAc,CAMlD"}

package/dist/contexts/hazo_auth_provider.js

@@ -0,0 +1,82 @@
+// file_description: React Context Provider for hazo_auth runtime configuration
+// Provides global configuration for API paths and other runtime settings
+// Must be used as a wrapper in consuming apps for customizing API endpoints
+// section: imports
+"use client";
+import { jsx as _jsx } from "react/jsx-runtime";
+import { createContext, useContext, useMemo } from "react";
+import { DEFAULT_HAZO_AUTH_CONFIG } from "./hazo_auth_config";
+// section: context_definition
+/**
+ * React Context for hazo_auth configuration
+ * @internal
+ */
+const HazoAuthConfigContext = createContext(DEFAULT_HAZO_AUTH_CONFIG);
+// section: provider_component
+/**
+ * Context Provider for hazo_auth runtime configuration
+ *
+ * Wrap your app (or specific parts) with this provider to customize
+ * API paths and other runtime settings for all hazo_auth components.
+ *
+ * @example
+ * ```tsx
+ * // In your root layout or app component
+ * import { HazoAuthProvider } from "hazo_auth/provider";
+ *
+ * export default function RootLayout({ children }) {
+ *   return (
+ *     <html>
+ *       <body>
+ *         <HazoAuthProvider apiBasePath="/api/v1/auth">
+ *           {children}
+ *         </HazoAuthProvider>
+ *       </body>
+ *     </html>
+ *   );
+ * }
+ * ```
+ *
+ * @example
+ * ```tsx
+ * // Using default values (no provider needed)
+ * // All components will use "/api/hazo_auth" as the base path
+ * export default function App() {
+ *   return <LoginPage />;
+ * }
+ * ```
+ */
+export function HazoAuthProvider({ apiBasePath = DEFAULT_HAZO_AUTH_CONFIG.apiBasePath, children }) {
+    // Memoize config to avoid unnecessary re-renders
+    const config = useMemo(() => ({
+        apiBasePath,
+    }), [apiBasePath]);
+    return (_jsx(HazoAuthConfigContext.Provider, { value: config, children: children }));
+}
+// section: hook
+/**
+ * Hook to access hazo_auth runtime configuration
+ *
+ * Returns the current configuration from the nearest HazoAuthProvider,
+ * or default values if no provider is present.
+ *
+ * @example
+ * ```tsx
+ * function MyComponent() {
+ *   const { apiBasePath } = useHazoAuthConfig();
+ *
+ *   const response = await fetch(`${apiBasePath}/login`, {
+ *     method: "POST",
+ *     body: JSON.stringify({ email, password }),
+ *   });
+ * }
+ * ```
+ *
+ * @returns Current HazoAuthConfig
+ */
+export function useHazoAuthConfig() {
+    const context = useContext(HazoAuthConfigContext);
+    // Context will always have a value (either from provider or default)
+    // No need to check for undefined
+    return context;
+}

package/dist/index.d.ts

@@ -1,3 +1,5 @@
+export * from "./contexts/hazo_auth_provider";
+export * from "./contexts/hazo_auth_config";
 export * from "./components/index";
 export * from "./lib/index";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAEA,cAAc,oBAAoB,CAAC;AAGnC,cAAc,aAAa,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAEA,cAAc,+BAA+B,CAAC;AAC9C,cAAc,6BAA6B,CAAC;AAG5C,cAAc,oBAAoB,CAAC;AAGnC,cAAc,aAAa,CAAC"}

package/dist/index.js

@@ -1,4 +1,7 @@
 // file_description: main entry point for hazo_auth package - exports all public APIs
+// section: context_exports
+export * from "./contexts/hazo_auth_provider";
+export * from "./contexts/hazo_auth_config";
 // section: component_exports
 export * from "./components/index";
 // section: lib_exports

package/dist/lib/auth/hazo_get_auth.server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"hazo_get_auth.server.d.ts","sourceRoot":"","sources":["../../../src/lib/auth/hazo_get_auth.server.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAK1C,OAAO,KAAK,EAAE,cAAc,EAAgB,eAAe,EAAE,MAAM,cAAc,CAAC;AAkLlF;;;;;;;GAOG;AACH,wBAAsB,aAAa,CACjC,OAAO,EAAE,WAAW,EACpB,OAAO,CAAC,EAAE,eAAe,GACxB,OAAO,CAAC,cAAc,CAAC,CAuIzB"}
+{"version":3,"file":"hazo_get_auth.server.d.ts","sourceRoot":"","sources":["../../../src/lib/auth/hazo_get_auth.server.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAK1C,OAAO,KAAK,EAAE,cAAc,EAAgB,eAAe,EAAE,MAAM,cAAc,CAAC;AAmLlF;;;;;;;GAOG;AACH,wBAAsB,aAAa,CACjC,OAAO,EAAE,WAAW,EACpB,OAAO,CAAC,EAAE,eAAe,GACxB,OAAO,CAAC,cAAc,CAAC,CAmKzB"}

package/dist/lib/auth/hazo_get_auth.server.js

@@ -6,6 +6,7 @@ import { PermissionError } from "./auth_types";
 import { get_auth_cache } from "./auth_cache";
 import { get_rate_limiter } from "./auth_rate_limiter";
 import { get_auth_utility_config } from "../auth_utility_config.server";
+import { validate_session_token } from "../services/session_token_service";
 // section: helpers
 /**
  * Gets client IP address from request
@@ -146,14 +147,41 @@ function get_friendly_error_message(missing_permissions, config) {
  * @throws PermissionError if strict mode and permissions are missing
  */
 export async function hazo_get_auth(request, options) {
-    var _a, _b;
+    var _a, _b, _c;
     const logger = create_app_logger();
     const config = get_auth_utility_config();
     const cache = get_auth_cache(config.cache_max_users, config.cache_ttl_minutes, config.cache_max_age_minutes);
     const rate_limiter = get_rate_limiter();
     // Fast path: Check for authentication cookies
-    const user_id = (_a = request.cookies.get("hazo_auth_user_id")) === null || _a === void 0 ? void 0 : _a.value;
-    const user_email = (_b = request.cookies.get("hazo_auth_user_email")) === null || _b === void 0 ? void 0 : _b.value;
+    // Priority: 1. JWT session token (new), 2. Simple cookies (backward compatibility)
+    let user_id;
+    let user_email;
+    // Check for JWT session token first
+    const session_token = (_a = request.cookies.get("hazo_auth_session")) === null || _a === void 0 ? void 0 : _a.value;
+    if (session_token) {
+        try {
+            const token_result = await validate_session_token(session_token);
+            if (token_result.valid && token_result.user_id && token_result.email) {
+                user_id = token_result.user_id;
+                user_email = token_result.email;
+            }
+        }
+        catch (token_error) {
+            // If token validation fails, fall back to simple cookies
+            const token_error_message = token_error instanceof Error ? token_error.message : "Unknown error";
+            logger.debug("auth_utility_jwt_validation_failed", {
+                filename: get_filename(),
+                line_number: get_line_number(),
+                error: token_error_message,
+                note: "Falling back to simple cookie check",
+            });
+        }
+    }
+    // Fall back to simple cookies if JWT not present or invalid (backward compatibility)
+    if (!user_id || !user_email) {
+        user_id = (_b = request.cookies.get("hazo_auth_user_id")) === null || _b === void 0 ? void 0 : _b.value;
+        user_email = (_c = request.cookies.get("hazo_auth_user_email")) === null || _c === void 0 ? void 0 : _c.value;
+    }
     if (!user_id || !user_email) {
         // Unauthenticated - check rate limit by IP
         const client_ip = get_client_ip(request);

package/dist/lib/auth/session_token_validator.edge.d.ts

@@ -0,0 +1,15 @@
+import type { NextRequest } from "next/server";
+export type ValidateSessionCookieResult = {
+    valid: boolean;
+    user_id?: string;
+    email?: string;
+};
+/**
+ * Validates session cookie from NextRequest (Edge-compatible)
+ * Extracts hazo_auth_session cookie and validates JWT signature and expiry
+ * Works in Edge Runtime (Next.js proxy/middleware)
+ * @param request - NextRequest object
+ * @returns Validation result with user_id and email if valid
+ */
+export declare function validate_session_cookie(request: NextRequest): Promise<ValidateSessionCookieResult>;
+//# sourceMappingURL=session_token_validator.edge.d.ts.map

package/dist/lib/auth/session_token_validator.edge.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session_token_validator.edge.d.ts","sourceRoot":"","sources":["../../../src/lib/auth/session_token_validator.edge.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAG/C,MAAM,MAAM,2BAA2B,GAAG;IACxC,KAAK,EAAE,OAAO,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAAC;AAsBF;;;;;;GAMG;AACH,wBAAsB,uBAAuB,CAC3C,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,2BAA2B,CAAC,CAwCtC"}