mulguard 1.0.1

package/dist/client/index.js

@@ -0,0 +1 @@
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const o=require("react"),x=require("../signin-unified-Cw41EFkc.js"),O=require("react/jsx-runtime");function h(){return typeof window>"u"}async function v(){try{return await Promise.resolve().then(()=>require("../actions-CExpv_dD.js")).then(l=>l.actions)}catch{return null}}async function N(e,l){if(h())return e.verify2FA?e.verify2FA(l):{success:!1,error:"2FA verification is not configured"};try{const r=await v();if(r)return await r.verify2FAAction(e,l)}catch{}try{const r=await fetch("/api/auth/verify-2fa",{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify(l)});if(!r.ok){const a=await r.json().catch(()=>({}));return{success:!1,error:a.error||"2FA verification failed",errorCode:a.errorCode}}return await r.json()}catch(r){return{success:!1,error:r instanceof Error?r.message:"2FA verification failed"}}}async function _(e,l){var r;if(h())return(r=e.signIn)!=null&&r.email?e.signIn.email(l):{success:!1,error:"Email sign in is not configured"};try{const a=await v();if(a)return await a.signInEmailAction(e,l)}catch{}try{const a=await fetch("/api/auth/sign-in",{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify({provider:"email",credentials:l})});if(!a.ok){const u=await a.json().catch(()=>({}));return{success:!1,error:u.error||"Sign in failed",errorCode:u.errorCode}}return await a.json()}catch(a){return{success:!1,error:a instanceof Error?a.message:"Sign in failed"}}}async function D(e,l){if(h())return e.signUp?e.signUp(l):{success:!1,error:"Sign up is not configured"};try{const r=await v();if(r)return await r.signUpAction(e,l)}catch{}try{const r=await fetch("/api/auth/sign-up",{method:"POST",headers:{"Content-Type":"application/json"},credentials:"include",body:JSON.stringify(l)});if(!r.ok){const a=await r.json().catch(()=>({}));return{success:!1,error:a.error||"Sign up failed",errorCode:a.errorCode}}return await r.json()}catch(r){return{success:!1,error:r instanceof Error?r.message:"Sign up failed"}}}function A(e){const[l,r]=o.useState(null),[a,u]=o.useState(!0),c=o.useCallback(async(s=!1)=>{u(!0);try{const n="/api/auth/session"+(s?`?t=${Date.now()}`:""),i=await fetch(n,{method:"GET",credentials:"include",headers:{"Content-Type":"application/json","Cache-Control":"no-cache, no-store, must-revalidate",Pragma:"no-cache",Expires:"0"},cache:"no-store"});if(i.status===401||i.status===403){r(null);return}if(i.ok){const t=await i.json();t.session?r(t.session):r(null)}else r(null)}catch(n){process.env.NODE_ENV==="development"&&console.error("Failed to load session:",n),r(null)}finally{u(!1)}},[e]),g=o.useCallback(s=>{if(!s||!s.expiresAt||!e.refreshSession)return()=>{};const n=new Date(s.expiresAt),i=new Date,t=n.getTime()-i.getTime(),f=5*60*1e3;if(t>0&&t<f)return e.refreshSession().catch(()=>{}),()=>{};if(t>f){const p=t-f,k=setTimeout(()=>{var S;(S=e.refreshSession)==null||S.call(e).catch(()=>{})},p);return()=>clearTimeout(k)}return()=>{}},[e]);o.useEffect(()=>{let s=null;(async()=>{await c();try{const t=await fetch("/api/auth/session",{method:"GET",credentials:"include",headers:{"Content-Type":"application/json"},cache:"no-store"});if(t.ok){const f=await t.json();f.session?s=g(f.session):r(null)}else r(null)}catch(t){process.env.NODE_ENV==="development"&&console.debug("Failed to schedule proactive refresh:",t),r(null)}})();const i=setInterval(()=>{fetch("/api/auth/session",{method:"GET",credentials:"include",headers:{"Content-Type":"application/json"},cache:"no-store"}).then(t=>t.status===401||t.status===403?(r(null),s&&(s(),s=null),typeof window<"u"&&window.location.pathname!=="/auth/login"&&window.location.replace("/auth/login?reason=session_expired"),null):t.json()).then(t=>{t&&(t.session?(r(t.session),s&&s(),s=g(t.session)):(r(null),s&&(s(),s=null)))}).catch(()=>{r(null),s&&(s(),s=null)})},60*1e3);return()=>{clearInterval(i),s&&s()}},[c,g]);const y=o.useCallback(async s=>{try{const n=await _(e,s);return n.success&&await c(),n}catch(n){return{success:!1,error:n instanceof Error?n.message:"Sign in failed"}}},[e,c]),w=o.useCallback(async s=>{if(!e.signIn.oauth)throw new Error("OAuth sign in is not configured");return e.signIn.oauth(s)},[e]),d=o.useCallback(async s=>{if(!e.signIn.passkey)return{success:!1,error:"PassKey sign in is not configured"};try{const n=await e.signIn.passkey(s);return n.success&&await c(),n}catch(n){return{success:!1,error:n instanceof Error?n.message:"PassKey authentication failed"}}},[e,c]),m=o.useCallback(async s=>{if(!e.signUp)return{success:!1,error:"Sign up is not configured"};try{const n=await D(e,s);return n.success&&await c(),n}catch(n){return{success:!1,error:n instanceof Error?n.message:"Sign up failed"}}},[e,c]),I=o.useCallback(async()=>{var s,n;try{if(r(null),u(!0),typeof window<"u"){try{window.sessionStorage.clear()}catch{}try{const i=(s=e._getSessionConfig)==null?void 0:s.call(e),t=(i==null?void 0:i.cookieName)||"__mulguard_session";try{window.localStorage.removeItem(t)}catch{}}catch{}}if(await e.signOut(),await c(!0),r(null),u(!1),typeof window<"u"){const i="/auth/login",t=window.location.pathname,f=window.location.search;if(t===i||t.startsWith("/auth/")){window.location.reload();return}const p=new URL(i,window.location.origin);t&&t!=="/"&&p.searchParams.set("redirect",t+f),window.location.replace(p.toString())}}catch(i){if(process.env.NODE_ENV==="development"&&console.error("Sign out error:",i),r(null),u(!1),typeof window<"u"){try{window.sessionStorage.clear();const f=(n=e._getSessionConfig)==null?void 0:n.call(e),p=(f==null?void 0:f.cookieName)||"__mulguard_session";try{window.localStorage.removeItem(p)}catch{}}catch{}const t="/auth/login";window.location.pathname!==t&&!window.location.pathname.startsWith("/auth/")?window.location.replace(t):window.location.reload()}}},[e,c]),U=o.useCallback(async s=>{if(!e.resetPassword)throw new Error("Password reset is not configured");return e.resetPassword(s)},[e]),T=o.useCallback(async s=>{if(!e.verifyEmail)throw new Error("Email verification is not configured");return e.verifyEmail(s)},[e]),F=o.useCallback(async s=>{if(!e.verify2FA)return{success:!1,error:"2FA verification is not configured"};try{const n=await N(e,s);return n.success&&(await new Promise(i=>setTimeout(i,100)),await c()),n}catch(n){return{success:!1,error:n instanceof Error?n.message:"2FA verification failed"}}},[e,c]),j=o.useCallback(async(s,n)=>x.signIn(e,s,n),[e]);return{session:l,isLoading:a,signIn:j,signInMethods:{email:y,oauth:w,passkey:d,otp:o.useCallback(async(s,n)=>{if(!e.signIn.otp)return{success:!1,error:"OTP sign in is not configured"};try{const i=await e.signIn.otp(s,n);return i.success&&await c(),i}catch(i){return{success:!1,error:i instanceof Error?i.message:"OTP sign in failed"}}},[e,c])},signUp:m,signOut:I,resetPassword:U,verifyEmail:T,verify2FA:F}}function C(e){const[l,r]=o.useState(null),[a,u]=o.useState(!0),[c,g]=o.useState(null),y=o.useCallback(async()=>{u(!0),g(null);try{const w=await e.getSession();r(w)}catch(w){const d=w instanceof Error?w:new Error("Failed to load session");g(d),r(null)}finally{u(!1)}},[e]);return o.useEffect(()=>{y();const w=setInterval(()=>{y()},5*60*1e3);return()=>clearInterval(w)},[y]),{session:l,isLoading:a,error:c}}function E(e){const[l,r]=o.useState([]),[a,u]=o.useState(!0),c=o.useCallback(async()=>{if(!e.accountPicker){r([]),u(!1);return}u(!0);try{const d=await e.accountPicker.getLastUsers();r(d)}catch(d){process.env.NODE_ENV==="development"&&console.error("Failed to load last users:",d),r([])}finally{u(!1)}},[e]);o.useEffect(()=>{c()},[c]);const g=o.useCallback(async(d,m)=>{e.accountPicker&&(await e.accountPicker.rememberUser(d,m),await c())},[e,c]),y=o.useCallback(async d=>{e.accountPicker&&(await e.accountPicker.clearUser(d),await c())},[e,c]),w=o.useCallback(async()=>{e.accountPicker&&(await e.accountPicker.clearAll(),await c())},[e,c]);return{lastUsers:l,isLoading:a,rememberUser:g,clearUser:y,clearAll:w,refresh:c}}const P=o.createContext(null);function L({auth:e,children:l}){const r=C(e),a=E(e);return O.jsx(P.Provider,{value:{auth:e,session:r,accountPicker:a},children:l})}function b(){const e=o.useContext(P);if(!e)throw new Error("useAuthContext must be used within AuthProvider");return e}function R(){const{auth:e}=b();return A(e)}exports.AuthProvider=L;exports.useAccountPicker=E;exports.useAuth=A;exports.useAuthContext=b;exports.useAuthFromContext=R;exports.useSession=C;

package/dist/client/index.mjs

@@ -0,0 +1,476 @@
+import { useState as y, useCallback as l, useEffect as v, createContext as j, useContext as O } from "react";
+import { s as x } from "../signin-unified-BS2gxaG1.mjs";
+import { jsx as N } from "react/jsx-runtime";
+function E() {
+  return typeof window > "u";
+}
+async function S() {
+  try {
+    return await import("../actions-DeCfLtHA.mjs").then((a) => a.f);
+  } catch {
+    return null;
+  }
+}
+async function _(e, a) {
+  if (E())
+    return e.verify2FA ? e.verify2FA(a) : {
+      success: !1,
+      error: "2FA verification is not configured"
+    };
+  try {
+    const r = await S();
+    if (r)
+      return await r.verify2FAAction(e, a);
+  } catch {
+  }
+  try {
+    const r = await fetch("/api/auth/verify-2fa", {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      credentials: "include",
+      body: JSON.stringify(a)
+    });
+    if (!r.ok) {
+      const c = await r.json().catch(() => ({}));
+      return {
+        success: !1,
+        error: c.error || "2FA verification failed",
+        errorCode: c.errorCode
+      };
+    }
+    return await r.json();
+  } catch (r) {
+    return {
+      success: !1,
+      error: r instanceof Error ? r.message : "2FA verification failed"
+    };
+  }
+}
+async function b(e, a) {
+  var r;
+  if (E())
+    return (r = e.signIn) != null && r.email ? e.signIn.email(a) : {
+      success: !1,
+      error: "Email sign in is not configured"
+    };
+  try {
+    const c = await S();
+    if (c)
+      return await c.signInEmailAction(e, a);
+  } catch {
+  }
+  try {
+    const c = await fetch("/api/auth/sign-in", {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      credentials: "include",
+      body: JSON.stringify({ provider: "email", credentials: a })
+    });
+    if (!c.ok) {
+      const f = await c.json().catch(() => ({}));
+      return {
+        success: !1,
+        error: f.error || "Sign in failed",
+        errorCode: f.errorCode
+      };
+    }
+    return await c.json();
+  } catch (c) {
+    return {
+      success: !1,
+      error: c instanceof Error ? c.message : "Sign in failed"
+    };
+  }
+}
+async function D(e, a) {
+  if (E())
+    return e.signUp ? e.signUp(a) : {
+      success: !1,
+      error: "Sign up is not configured"
+    };
+  try {
+    const r = await S();
+    if (r)
+      return await r.signUpAction(e, a);
+  } catch {
+  }
+  try {
+    const r = await fetch("/api/auth/sign-up", {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      credentials: "include",
+      body: JSON.stringify(a)
+    });
+    if (!r.ok) {
+      const c = await r.json().catch(() => ({}));
+      return {
+        success: !1,
+        error: c.error || "Sign up failed",
+        errorCode: c.errorCode
+      };
+    }
+    return await r.json();
+  } catch (r) {
+    return {
+      success: !1,
+      error: r instanceof Error ? r.message : "Sign up failed"
+    };
+  }
+}
+function L(e) {
+  const [a, r] = y(null), [c, f] = y(!0), i = l(async (n = !1) => {
+    f(!0);
+    try {
+      const s = "/api/auth/session" + (n ? `?t=${Date.now()}` : ""), t = await fetch(s, {
+        method: "GET",
+        credentials: "include",
+        // Include cookies in request
+        headers: {
+          "Content-Type": "application/json",
+          "Cache-Control": "no-cache, no-store, must-revalidate",
+          // ✅ FIX: Prevent caching
+          Pragma: "no-cache",
+          Expires: "0"
+        },
+        cache: "no-store"
+        // ✅ FIX: Prevent caching
+      });
+      if (t.status === 401 || t.status === 403) {
+        r(null);
+        return;
+      }
+      if (t.ok) {
+        const o = await t.json();
+        o.session ? r(o.session) : r(null);
+      } else
+        r(null);
+    } catch (s) {
+      process.env.NODE_ENV === "development" && console.error("Failed to load session:", s), r(null);
+    } finally {
+      f(!1);
+    }
+  }, [e]), g = l((n) => {
+    if (!n || !n.expiresAt || !e.refreshSession)
+      return () => {
+      };
+    const s = new Date(n.expiresAt), t = /* @__PURE__ */ new Date(), o = s.getTime() - t.getTime(), u = 5 * 60 * 1e3;
+    if (o > 0 && o < u)
+      return e.refreshSession().catch(() => {
+      }), () => {
+      };
+    if (o > u) {
+      const m = o - u, A = setTimeout(() => {
+        var P;
+        (P = e.refreshSession) == null || P.call(e).catch(() => {
+        });
+      }, m);
+      return () => clearTimeout(A);
+    }
+    return () => {
+    };
+  }, [e]);
+  v(() => {
+    let n = null;
+    (async () => {
+      await i();
+      try {
+        const o = await fetch("/api/auth/session", {
+          method: "GET",
+          credentials: "include",
+          headers: {
+            "Content-Type": "application/json"
+          },
+          cache: "no-store"
+          // ✅ FIX: Prevent caching
+        });
+        if (o.ok) {
+          const u = await o.json();
+          u.session ? n = g(u.session) : r(null);
+        } else
+          r(null);
+      } catch (o) {
+        process.env.NODE_ENV === "development" && console.debug("Failed to schedule proactive refresh:", o), r(null);
+      }
+    })();
+    const t = setInterval(() => {
+      fetch("/api/auth/session", {
+        method: "GET",
+        credentials: "include",
+        headers: {
+          "Content-Type": "application/json"
+        },
+        cache: "no-store"
+        // ✅ FIX: Prevent caching
+      }).then((o) => o.status === 401 || o.status === 403 ? (r(null), n && (n(), n = null), typeof window < "u" && window.location.pathname !== "/auth/login" && window.location.replace("/auth/login?reason=session_expired"), null) : o.json()).then((o) => {
+        o && (o.session ? (r(o.session), n && n(), n = g(o.session)) : (r(null), n && (n(), n = null)));
+      }).catch(() => {
+        r(null), n && (n(), n = null);
+      });
+    }, 60 * 1e3);
+    return () => {
+      clearInterval(t), n && n();
+    };
+  }, [i, g]);
+  const p = l(
+    async (n) => {
+      try {
+        const s = await b(e, n);
+        return s.success && await i(), s;
+      } catch (s) {
+        return {
+          success: !1,
+          error: s instanceof Error ? s.message : "Sign in failed"
+        };
+      }
+    },
+    [e, i]
+  ), w = l(
+    async (n) => {
+      if (!e.signIn.oauth)
+        throw new Error("OAuth sign in is not configured");
+      return e.signIn.oauth(n);
+    },
+    [e]
+  ), d = l(
+    async (n) => {
+      if (!e.signIn.passkey)
+        return {
+          success: !1,
+          error: "PassKey sign in is not configured"
+        };
+      try {
+        const s = await e.signIn.passkey(n);
+        return s.success && await i(), s;
+      } catch (s) {
+        return {
+          success: !1,
+          error: s instanceof Error ? s.message : "PassKey authentication failed"
+        };
+      }
+    },
+    [e, i]
+  ), h = l(
+    async (n) => {
+      if (!e.signUp)
+        return {
+          success: !1,
+          error: "Sign up is not configured"
+        };
+      try {
+        const s = await D(e, n);
+        return s.success && await i(), s;
+      } catch (s) {
+        return {
+          success: !1,
+          error: s instanceof Error ? s.message : "Sign up failed"
+        };
+      }
+    },
+    [e, i]
+  ), k = l(async () => {
+    var n, s;
+    try {
+      if (r(null), f(!0), typeof window < "u") {
+        try {
+          window.sessionStorage.clear();
+        } catch {
+        }
+        try {
+          const t = (n = e._getSessionConfig) == null ? void 0 : n.call(e), o = (t == null ? void 0 : t.cookieName) || "__mulguard_session";
+          try {
+            window.localStorage.removeItem(o);
+          } catch {
+          }
+        } catch {
+        }
+      }
+      if (await e.signOut(), await i(!0), r(null), f(!1), typeof window < "u") {
+        const t = "/auth/login", o = window.location.pathname, u = window.location.search;
+        if (o === t || o.startsWith("/auth/")) {
+          window.location.reload();
+          return;
+        }
+        const m = new URL(t, window.location.origin);
+        o && o !== "/" && m.searchParams.set("redirect", o + u), window.location.replace(m.toString());
+      }
+    } catch (t) {
+      if (process.env.NODE_ENV === "development" && console.error("Sign out error:", t), r(null), f(!1), typeof window < "u") {
+        try {
+          window.sessionStorage.clear();
+          const u = (s = e._getSessionConfig) == null ? void 0 : s.call(e), m = (u == null ? void 0 : u.cookieName) || "__mulguard_session";
+          try {
+            window.localStorage.removeItem(m);
+          } catch {
+          }
+        } catch {
+        }
+        const o = "/auth/login";
+        window.location.pathname !== o && !window.location.pathname.startsWith("/auth/") ? window.location.replace(o) : window.location.reload();
+      }
+    }
+  }, [e, i]), U = l(
+    async (n) => {
+      if (!e.resetPassword)
+        throw new Error("Password reset is not configured");
+      return e.resetPassword(n);
+    },
+    [e]
+  ), C = l(
+    async (n) => {
+      if (!e.verifyEmail)
+        throw new Error("Email verification is not configured");
+      return e.verifyEmail(n);
+    },
+    [e]
+  ), T = l(
+    async (n) => {
+      if (!e.verify2FA)
+        return {
+          success: !1,
+          error: "2FA verification is not configured"
+        };
+      try {
+        const s = await _(e, n);
+        return s.success && (await new Promise((t) => setTimeout(t, 100)), await i()), s;
+      } catch (s) {
+        return {
+          success: !1,
+          error: s instanceof Error ? s.message : "2FA verification failed"
+        };
+      }
+    },
+    [e, i]
+  ), F = l(
+    async (n, s) => x(e, n, s),
+    [e]
+  );
+  return {
+    session: a,
+    isLoading: c,
+    signIn: F,
+    signInMethods: {
+      email: p,
+      oauth: w,
+      passkey: d,
+      otp: l(
+        async (n, s) => {
+          if (!e.signIn.otp)
+            return {
+              success: !1,
+              error: "OTP sign in is not configured"
+            };
+          try {
+            const t = await e.signIn.otp(n, s);
+            return t.success && await i(), t;
+          } catch (t) {
+            return {
+              success: !1,
+              error: t instanceof Error ? t.message : "OTP sign in failed"
+            };
+          }
+        },
+        [e, i]
+      )
+    },
+    signUp: h,
+    signOut: k,
+    resetPassword: U,
+    verifyEmail: C,
+    verify2FA: T
+  };
+}
+function W(e) {
+  const [a, r] = y(null), [c, f] = y(!0), [i, g] = y(null), p = l(async () => {
+    f(!0), g(null);
+    try {
+      const w = await e.getSession();
+      r(w);
+    } catch (w) {
+      const d = w instanceof Error ? w : new Error("Failed to load session");
+      g(d), r(null);
+    } finally {
+      f(!1);
+    }
+  }, [e]);
+  return v(() => {
+    p();
+    const w = setInterval(() => {
+      p();
+    }, 5 * 60 * 1e3);
+    return () => clearInterval(w);
+  }, [p]), {
+    session: a,
+    isLoading: c,
+    error: i
+  };
+}
+function R(e) {
+  const [a, r] = y([]), [c, f] = y(!0), i = l(async () => {
+    if (!e.accountPicker) {
+      r([]), f(!1);
+      return;
+    }
+    f(!0);
+    try {
+      const d = await e.accountPicker.getLastUsers();
+      r(d);
+    } catch (d) {
+      process.env.NODE_ENV === "development" && console.error("Failed to load last users:", d), r([]);
+    } finally {
+      f(!1);
+    }
+  }, [e]);
+  v(() => {
+    i();
+  }, [i]);
+  const g = l(
+    async (d, h) => {
+      e.accountPicker && (await e.accountPicker.rememberUser(d, h), await i());
+    },
+    [e, i]
+  ), p = l(
+    async (d) => {
+      e.accountPicker && (await e.accountPicker.clearUser(d), await i());
+    },
+    [e, i]
+  ), w = l(async () => {
+    e.accountPicker && (await e.accountPicker.clearAll(), await i());
+  }, [e, i]);
+  return {
+    lastUsers: a,
+    isLoading: c,
+    rememberUser: g,
+    clearUser: p,
+    clearAll: w,
+    refresh: i
+  };
+}
+const I = j(null);
+function K({ auth: e, children: a }) {
+  const r = W(e), c = R(e);
+  return /* @__PURE__ */ N(I.Provider, { value: { auth: e, session: r, accountPicker: c }, children: a });
+}
+function V() {
+  const e = O(I);
+  if (!e)
+    throw new Error("useAuthContext must be used within AuthProvider");
+  return e;
+}
+function $() {
+  const { auth: e } = V();
+  return L(e);
+}
+export {
+  K as AuthProvider,
+  R as useAccountPicker,
+  L as useAuth,
+  V as useAuthContext,
+  $ as useAuthFromContext,
+  W as useSession
+};

package/dist/client/provider.d.ts

@@ -0,0 +1,25 @@
+import { ReactNode } from 'react';
+import { MulguardInstance } from '../mulguard';
+import { useSession, useAccountPicker } from './hooks';
+interface AuthContextValue {
+    auth: MulguardInstance;
+    session: ReturnType<typeof useSession>;
+    accountPicker: ReturnType<typeof useAccountPicker>;
+}
+interface AuthProviderProps {
+    auth: MulguardInstance;
+    children: ReactNode;
+}
+/**
+ * Auth Provider - provides auth instance to children
+ */
+export declare function AuthProvider({ auth, children }: AuthProviderProps): import("react/jsx-runtime").JSX.Element;
+/**
+ * Use auth context
+ */
+export declare function useAuthContext(): AuthContextValue;
+/**
+ * Convenience hook that uses context
+ */
+export declare function useAuthFromContext(): import('./hooks').UseAuthReturn;
+export {};

package/dist/client/server-actions-helper.d.ts

@@ -0,0 +1,22 @@
+import { MulguardInstance } from '../mulguard';
+import { Verify2FAData, AuthResult, EmailCredentials, RegisterData } from '../core/types';
+/**
+ * Verify 2FA with automatic fallback
+ * Tries Server Action first, then falls back to Route Handler
+ */
+export declare function verify2FAWithFallback(auth: MulguardInstance, data: Verify2FAData): Promise<AuthResult>;
+/**
+ * Sign out with automatic fallback
+ */
+export declare function signOutWithFallback(auth: MulguardInstance): Promise<{
+    success: boolean;
+    error?: string;
+}>;
+/**
+ * Sign in with email with automatic fallback
+ */
+export declare function signInEmailWithFallback(auth: MulguardInstance, credentials: EmailCredentials): Promise<AuthResult>;
+/**
+ * Sign up with automatic fallback
+ */
+export declare function signUpWithFallback(auth: MulguardInstance, data: RegisterData): Promise<AuthResult>;

package/dist/components/AccountPicker.d.ts

@@ -0,0 +1,11 @@
+import { MulguardInstance } from '../mulguard';
+import { RememberedUser } from '../core/types';
+interface AccountPickerProps {
+    auth: MulguardInstance;
+    onSelectUser?: (user: RememberedUser) => void;
+    onUseDifferentAccount?: () => void;
+    maxDisplay?: number;
+    className?: string;
+}
+export declare function AccountPicker({ auth, onSelectUser, onUseDifferentAccount, maxDisplay, className, }: AccountPickerProps): import("react/jsx-runtime").JSX.Element | null;
+export {};

package/dist/components/OAuthButton.d.ts

@@ -0,0 +1,11 @@
+import { MulguardInstance } from '../mulguard';
+interface OAuthButtonProps {
+    auth: MulguardInstance;
+    provider: string;
+    children?: React.ReactNode;
+    className?: string;
+    onSuccess?: () => void;
+    onError?: (error: string) => void;
+}
+export declare function OAuthButton({ auth, provider, children, className, onSuccess, onError, }: OAuthButtonProps): import("react/jsx-runtime").JSX.Element;
+export {};

package/dist/components/PassKeyButton.d.ts

@@ -0,0 +1,11 @@
+import { MulguardInstance } from '../mulguard';
+interface PassKeyButtonProps {
+    auth: MulguardInstance;
+    children?: React.ReactNode;
+    className?: string;
+    onSuccess?: () => void;
+    onError?: (error: string) => void;
+    userId?: string;
+}
+export declare function PassKeyButton({ auth, children, className, onSuccess, onError, userId, }: PassKeyButtonProps): import("react/jsx-runtime").JSX.Element;
+export {};

package/dist/components/PassKeyRegister.d.ts

@@ -0,0 +1,10 @@
+import { MulguardInstance } from '../mulguard';
+interface PassKeyRegisterProps {
+    auth: MulguardInstance;
+    onSuccess?: (passkeyId: string) => void;
+    onError?: (error: string) => void;
+    userId?: string;
+    defaultName?: string;
+}
+export declare function PassKeyRegister({ auth, onSuccess, onError, userId, defaultName, }: PassKeyRegisterProps): import("react/jsx-runtime").JSX.Element;
+export {};

package/dist/components/TwoFactorSetup.d.ts

@@ -0,0 +1,8 @@
+import { MulguardInstance } from '../mulguard';
+interface TwoFactorSetupProps {
+    auth: MulguardInstance;
+    onSuccess?: () => void;
+    onError?: (error: string) => void;
+}
+export declare function TwoFactorSetup({ auth, onSuccess, onError }: TwoFactorSetupProps): import("react/jsx-runtime").JSX.Element | null;
+export {};

package/dist/components/TwoFactorVerify.d.ts

@@ -0,0 +1,9 @@
+import { MulguardInstance } from '../mulguard';
+interface TwoFactorVerifyProps {
+    auth: MulguardInstance;
+    onSuccess?: () => void;
+    onError?: (error: string) => void;
+    onUseBackupCode?: () => void;
+}
+export declare function TwoFactorVerify({ auth, onSuccess, onError, onUseBackupCode }: TwoFactorVerifyProps): import("react/jsx-runtime").JSX.Element;
+export {};

package/dist/core/account-picker/encryption.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Account Picker Encryption Utilities
+ * Supports multiple encryption methods for account picker storage
+ */
+export type EncryptionMethod = 'none' | 'base64' | 'aes-gcm';
+/**
+ * Encryption result with metadata
+ */
+interface EncryptionResult {
+    data: string;
+    method: EncryptionMethod;
+    iv?: string;
+}
+/**
+ * Encrypt data based on method
+ */
+export declare function encryptData(data: string, method?: EncryptionMethod): Promise<EncryptionResult>;
+/**
+ * Decrypt data - auto-detects method from stored data or uses provided method
+ */
+export declare function decryptData(encrypted: string, method?: EncryptionMethod): Promise<string>;
+export {};

package/dist/core/account-picker/index.d.ts

@@ -0,0 +1,22 @@
+import { RememberedUser, User } from '../types';
+import { EncryptionMethod } from './encryption';
+export type { EncryptionMethod } from './encryption';
+export interface AccountPickerConfig {
+    enabled: boolean;
+    maxAccounts?: number;
+    /** @deprecated Use encryptionMethod instead. If true, defaults to 'base64' */
+    encryptStorage?: boolean;
+    /** Encryption method: 'none' | 'base64' | 'aes-gcm' (default: 'base64' for backward compatibility) */
+    encryptionMethod?: EncryptionMethod;
+    storageKey?: string;
+}
+export interface AccountPickerMethods {
+    getLastUsers(): Promise<RememberedUser[]>;
+    rememberUser(user: User, provider?: 'email' | 'oauth' | 'passkey'): Promise<void>;
+    clearUser(userId: string): Promise<void>;
+    clearAll(): Promise<void>;
+}
+/**
+ * Create Account Picker methods
+ */
+export declare function createAccountPickerMethods(config: AccountPickerConfig): AccountPickerMethods;