npm - mulguard - Versions diffs - 1.1.6 → 1.1.8 - Mend

mulguard 1.1.6 → 1.1.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (540) hide show

package/README.md +21 -1078
package/adapters.d.ts +2 -0
package/adapters.d.ts.map +1 -0
package/adapters.js +1 -0
package/index.d.ts +329 -0
package/index.d.ts.map +1 -0
package/index.js +145 -0
package/jwt.d.ts +9 -0
package/jwt.d.ts.map +1 -0
package/jwt.js +8 -0
package/lib/actions.d.ts +13 -0
package/lib/actions.d.ts.map +1 -0
package/lib/actions.js +86 -0
package/lib/client.d.ts +104 -0
package/lib/client.d.ts.map +1 -0
package/lib/client.js +95 -0
package/lib/env.d.ts +12 -0
package/lib/env.d.ts.map +1 -0
package/lib/env.js +38 -0
package/lib/index.d.ts +56 -0
package/lib/index.d.ts.map +1 -0
package/lib/index.js +187 -0
package/lib/types.d.ts +24 -0
package/lib/types.d.ts.map +1 -0
package/lib/types.js +1 -0
package/middleware.d.ts +9 -0
package/middleware.d.ts.map +1 -0
package/middleware.js +12 -0
package/next.d.ts +9 -0
package/next.d.ts.map +1 -0
package/next.js +12 -0
package/package.json +117 -73
package/providers/42-school.d.ts +3 -0
package/providers/42-school.d.ts.map +1 -0
package/providers/42-school.js +2 -0
package/providers/apple.d.ts +3 -0
package/providers/apple.d.ts.map +1 -0
package/providers/apple.js +2 -0
package/providers/asgardeo.d.ts +3 -0
package/providers/asgardeo.d.ts.map +1 -0
package/providers/asgardeo.js +2 -0
package/providers/atlassian.d.ts +3 -0
package/providers/atlassian.d.ts.map +1 -0
package/providers/atlassian.js +2 -0
package/providers/auth0.d.ts +3 -0
package/providers/auth0.d.ts.map +1 -0
package/providers/auth0.js +2 -0
package/providers/authentik.d.ts +3 -0
package/providers/authentik.d.ts.map +1 -0
package/providers/authentik.js +2 -0
package/providers/azure-ad-b2c.d.ts +3 -0
package/providers/azure-ad-b2c.d.ts.map +1 -0
package/providers/azure-ad-b2c.js +2 -0
package/providers/azure-ad.d.ts +3 -0
package/providers/azure-ad.d.ts.map +1 -0
package/providers/azure-ad.js +2 -0
package/providers/azure-devops.d.ts +3 -0
package/providers/azure-devops.d.ts.map +1 -0
package/providers/azure-devops.js +2 -0
package/providers/bankid-no.d.ts +3 -0
package/providers/bankid-no.d.ts.map +1 -0
package/providers/bankid-no.js +2 -0
package/providers/battlenet.d.ts +3 -0
package/providers/battlenet.d.ts.map +1 -0
package/providers/battlenet.js +2 -0
package/providers/beyondidentity.d.ts +3 -0
package/providers/beyondidentity.d.ts.map +1 -0
package/providers/beyondidentity.js +2 -0
package/providers/bitbucket.d.ts +3 -0
package/providers/bitbucket.d.ts.map +1 -0
package/providers/bitbucket.js +2 -0
package/providers/box.d.ts +3 -0
package/providers/box.d.ts.map +1 -0
package/providers/box.js +2 -0
package/providers/boxyhq-saml.d.ts +3 -0
package/providers/boxyhq-saml.d.ts.map +1 -0
package/providers/boxyhq-saml.js +2 -0
package/providers/bungie.d.ts +3 -0
package/providers/bungie.d.ts.map +1 -0
package/providers/bungie.js +2 -0
package/providers/click-up.d.ts +3 -0
package/providers/click-up.d.ts.map +1 -0
package/providers/click-up.js +2 -0
package/providers/cognito.d.ts +3 -0
package/providers/cognito.d.ts.map +1 -0
package/providers/cognito.js +2 -0
package/providers/coinbase.d.ts +3 -0
package/providers/coinbase.d.ts.map +1 -0
package/providers/coinbase.js +2 -0
package/providers/concept2.d.ts +3 -0
package/providers/concept2.d.ts.map +1 -0
package/providers/concept2.js +2 -0
package/providers/credentials.d.ts +3 -0
package/providers/credentials.d.ts.map +1 -0
package/providers/credentials.js +2 -0
package/providers/descope.d.ts +3 -0
package/providers/descope.d.ts.map +1 -0
package/providers/descope.js +2 -0
package/providers/discord.d.ts +3 -0
package/providers/discord.d.ts.map +1 -0
package/providers/discord.js +2 -0
package/providers/dribbble.d.ts +3 -0
package/providers/dribbble.d.ts.map +1 -0
package/providers/dribbble.js +2 -0
package/providers/dropbox.d.ts +3 -0
package/providers/dropbox.d.ts.map +1 -0
package/providers/dropbox.js +2 -0
package/providers/duende-identity-server6.d.ts +3 -0
package/providers/duende-identity-server6.d.ts.map +1 -0
package/providers/duende-identity-server6.js +2 -0
package/providers/email.d.ts +3 -0
package/providers/email.d.ts.map +1 -0
package/providers/email.js +2 -0
package/providers/eventbrite.d.ts +3 -0
package/providers/eventbrite.d.ts.map +1 -0
package/providers/eventbrite.js +2 -0
package/providers/eveonline.d.ts +3 -0
package/providers/eveonline.d.ts.map +1 -0
package/providers/eveonline.js +2 -0
package/providers/facebook.d.ts +3 -0
package/providers/facebook.d.ts.map +1 -0
package/providers/facebook.js +2 -0
package/providers/faceit.d.ts +3 -0
package/providers/faceit.d.ts.map +1 -0
package/providers/faceit.js +2 -0
package/providers/figma.d.ts +3 -0
package/providers/figma.d.ts.map +1 -0
package/providers/figma.js +2 -0
package/providers/forwardemail.d.ts +3 -0
package/providers/forwardemail.d.ts.map +1 -0
package/providers/forwardemail.js +2 -0
package/providers/foursquare.d.ts +3 -0
package/providers/foursquare.d.ts.map +1 -0
package/providers/foursquare.js +2 -0
package/providers/freshbooks.d.ts +3 -0
package/providers/freshbooks.d.ts.map +1 -0
package/providers/freshbooks.js +2 -0
package/providers/frontegg.d.ts +3 -0
package/providers/frontegg.d.ts.map +1 -0
package/providers/frontegg.js +2 -0
package/providers/fusionauth.d.ts +3 -0
package/providers/fusionauth.d.ts.map +1 -0
package/providers/fusionauth.js +2 -0
package/providers/github.d.ts +3 -0
package/providers/github.d.ts.map +1 -0
package/providers/github.js +2 -0
package/providers/gitlab.d.ts +3 -0
package/providers/gitlab.d.ts.map +1 -0
package/providers/gitlab.js +2 -0
package/providers/google.d.ts +3 -0
package/providers/google.d.ts.map +1 -0
package/providers/google.js +2 -0
package/providers/hubspot.d.ts +3 -0
package/providers/hubspot.d.ts.map +1 -0
package/providers/hubspot.js +2 -0
package/providers/huggingface.d.ts +3 -0
package/providers/huggingface.d.ts.map +1 -0
package/providers/huggingface.js +2 -0
package/providers/identity-server4.d.ts +3 -0
package/providers/identity-server4.d.ts.map +1 -0
package/providers/identity-server4.js +2 -0
package/providers/index.d.ts +2 -0
package/providers/index.d.ts.map +1 -0
package/providers/index.js +1 -0
package/providers/instagram.d.ts +3 -0
package/providers/instagram.d.ts.map +1 -0
package/providers/instagram.js +2 -0
package/providers/kakao.d.ts +3 -0
package/providers/kakao.d.ts.map +1 -0
package/providers/kakao.js +2 -0
package/providers/keycloak.d.ts +3 -0
package/providers/keycloak.d.ts.map +1 -0
package/providers/keycloak.js +2 -0
package/providers/kinde.d.ts +3 -0
package/providers/kinde.d.ts.map +1 -0
package/providers/kinde.js +2 -0
package/providers/line.d.ts +3 -0
package/providers/line.d.ts.map +1 -0
package/providers/line.js +2 -0
package/providers/linkedin.d.ts +3 -0
package/providers/linkedin.d.ts.map +1 -0
package/providers/linkedin.js +2 -0
package/providers/logto.d.ts +3 -0
package/providers/logto.d.ts.map +1 -0
package/providers/logto.js +2 -0
package/providers/loops.d.ts +3 -0
package/providers/loops.d.ts.map +1 -0
package/providers/loops.js +2 -0
package/providers/mailchimp.d.ts +3 -0
package/providers/mailchimp.d.ts.map +1 -0
package/providers/mailchimp.js +2 -0
package/providers/mailgun.d.ts +3 -0
package/providers/mailgun.d.ts.map +1 -0
package/providers/mailgun.js +2 -0
package/providers/mailru.d.ts +3 -0
package/providers/mailru.d.ts.map +1 -0
package/providers/mailru.js +2 -0
package/providers/mastodon.d.ts +3 -0
package/providers/mastodon.d.ts.map +1 -0
package/providers/mastodon.js +2 -0
package/providers/mattermost.d.ts +3 -0
package/providers/mattermost.d.ts.map +1 -0
package/providers/mattermost.js +2 -0
package/providers/medium.d.ts +3 -0
package/providers/medium.d.ts.map +1 -0
package/providers/medium.js +2 -0
package/providers/microsoft-entra-id.d.ts +3 -0
package/providers/microsoft-entra-id.d.ts.map +1 -0
package/providers/microsoft-entra-id.js +2 -0
package/providers/naver.d.ts +3 -0
package/providers/naver.d.ts.map +1 -0
package/providers/naver.js +2 -0
package/providers/netlify.d.ts +3 -0
package/providers/netlify.d.ts.map +1 -0
package/providers/netlify.js +2 -0
package/providers/netsuite.d.ts +3 -0
package/providers/netsuite.d.ts.map +1 -0
package/providers/netsuite.js +2 -0
package/providers/nextcloud.d.ts +3 -0
package/providers/nextcloud.d.ts.map +1 -0
package/providers/nextcloud.js +2 -0
package/providers/nodemailer.d.ts +3 -0
package/providers/nodemailer.d.ts.map +1 -0
package/providers/nodemailer.js +2 -0
package/providers/notion.d.ts +3 -0
package/providers/notion.d.ts.map +1 -0
package/providers/notion.js +2 -0
package/providers/okta.d.ts +3 -0
package/providers/okta.d.ts.map +1 -0
package/providers/okta.js +2 -0
package/providers/onelogin.d.ts +3 -0
package/providers/onelogin.d.ts.map +1 -0
package/providers/onelogin.js +2 -0
package/providers/ory-hydra.d.ts +3 -0
package/providers/ory-hydra.d.ts.map +1 -0
package/providers/ory-hydra.js +2 -0
package/providers/osso.d.ts +3 -0
package/providers/osso.d.ts.map +1 -0
package/providers/osso.js +2 -0
package/providers/osu.d.ts +3 -0
package/providers/osu.d.ts.map +1 -0
package/providers/osu.js +2 -0
package/providers/passage.d.ts +3 -0
package/providers/passage.d.ts.map +1 -0
package/providers/passage.js +2 -0
package/providers/passkey.d.ts +3 -0
package/providers/passkey.d.ts.map +1 -0
package/providers/passkey.js +2 -0
package/providers/patreon.d.ts +3 -0
package/providers/patreon.d.ts.map +1 -0
package/providers/patreon.js +2 -0
package/providers/ping-id.d.ts +3 -0
package/providers/ping-id.d.ts.map +1 -0
package/providers/ping-id.js +2 -0
package/providers/pinterest.d.ts +3 -0
package/providers/pinterest.d.ts.map +1 -0
package/providers/pinterest.js +2 -0
package/providers/pipedrive.d.ts +3 -0
package/providers/pipedrive.d.ts.map +1 -0
package/providers/pipedrive.js +2 -0
package/providers/postmark.d.ts +3 -0
package/providers/postmark.d.ts.map +1 -0
package/providers/postmark.js +2 -0
package/providers/reddit.d.ts +3 -0
package/providers/reddit.d.ts.map +1 -0
package/providers/reddit.js +2 -0
package/providers/resend.d.ts +3 -0
package/providers/resend.d.ts.map +1 -0
package/providers/resend.js +2 -0
package/providers/roblox.d.ts +3 -0
package/providers/roblox.d.ts.map +1 -0
package/providers/roblox.js +2 -0
package/providers/salesforce.d.ts +3 -0
package/providers/salesforce.d.ts.map +1 -0
package/providers/salesforce.js +2 -0
package/providers/sendgrid.d.ts +3 -0
package/providers/sendgrid.d.ts.map +1 -0
package/providers/sendgrid.js +2 -0
package/providers/simplelogin.d.ts +3 -0
package/providers/simplelogin.d.ts.map +1 -0
package/providers/simplelogin.js +2 -0
package/providers/slack.d.ts +3 -0
package/providers/slack.d.ts.map +1 -0
package/providers/slack.js +2 -0
package/providers/spotify.d.ts +3 -0
package/providers/spotify.d.ts.map +1 -0
package/providers/spotify.js +2 -0
package/providers/strava.d.ts +3 -0
package/providers/strava.d.ts.map +1 -0
package/providers/strava.js +2 -0
package/providers/threads.d.ts +3 -0
package/providers/threads.d.ts.map +1 -0
package/providers/threads.js +2 -0
package/providers/tiktok.d.ts +3 -0
package/providers/tiktok.d.ts.map +1 -0
package/providers/tiktok.js +2 -0
package/providers/todoist.d.ts +3 -0
package/providers/todoist.d.ts.map +1 -0
package/providers/todoist.js +2 -0
package/providers/trakt.d.ts +3 -0
package/providers/trakt.d.ts.map +1 -0
package/providers/trakt.js +2 -0
package/providers/twitch.d.ts +3 -0
package/providers/twitch.d.ts.map +1 -0
package/providers/twitch.js +2 -0
package/providers/twitter.d.ts +3 -0
package/providers/twitter.d.ts.map +1 -0
package/providers/twitter.js +2 -0
package/providers/united-effects.d.ts +3 -0
package/providers/united-effects.d.ts.map +1 -0
package/providers/united-effects.js +2 -0
package/providers/vipps.d.ts +3 -0
package/providers/vipps.d.ts.map +1 -0
package/providers/vipps.js +2 -0
package/providers/vk.d.ts +3 -0
package/providers/vk.d.ts.map +1 -0
package/providers/vk.js +2 -0
package/providers/webauthn.d.ts +3 -0
package/providers/webauthn.d.ts.map +1 -0
package/providers/webauthn.js +2 -0
package/providers/webex.d.ts +3 -0
package/providers/webex.d.ts.map +1 -0
package/providers/webex.js +2 -0
package/providers/wechat.d.ts +3 -0
package/providers/wechat.d.ts.map +1 -0
package/providers/wechat.js +2 -0
package/providers/wikimedia.d.ts +3 -0
package/providers/wikimedia.d.ts.map +1 -0
package/providers/wikimedia.js +2 -0
package/providers/wordpress.d.ts +3 -0
package/providers/wordpress.d.ts.map +1 -0
package/providers/wordpress.js +2 -0
package/providers/workos.d.ts +3 -0
package/providers/workos.d.ts.map +1 -0
package/providers/workos.js +2 -0
package/providers/yandex.d.ts +3 -0
package/providers/yandex.d.ts.map +1 -0
package/providers/yandex.js +2 -0
package/providers/zitadel.d.ts +3 -0
package/providers/zitadel.d.ts.map +1 -0
package/providers/zitadel.js +2 -0
package/providers/zoho.d.ts +3 -0
package/providers/zoho.d.ts.map +1 -0
package/providers/zoho.js +2 -0
package/providers/zoom.d.ts +3 -0
package/providers/zoom.d.ts.map +1 -0
package/providers/zoom.js +2 -0
package/react.d.ts +102 -0
package/react.d.ts.map +1 -0
package/react.js +361 -0
package/src/adapters.ts +1 -0
package/src/index.ts +430 -0
package/src/jwt.ts +9 -0
package/src/lib/actions.ts +144 -0
package/src/lib/client.ts +245 -0
package/src/lib/env.ts +36 -0
package/src/lib/index.ts +313 -0
package/src/lib/types.ts +30 -0
package/src/middleware.ts +16 -0
package/src/next.ts +16 -0
package/src/providers/42-school.ts +2 -0
package/src/providers/apple.ts +2 -0
package/src/providers/asgardeo.ts +2 -0
package/src/providers/atlassian.ts +2 -0
package/src/providers/auth0.ts +2 -0
package/src/providers/authentik.ts +2 -0
package/src/providers/azure-ad-b2c.ts +2 -0
package/src/providers/azure-ad.ts +2 -0
package/src/providers/azure-devops.ts +2 -0
package/src/providers/bankid-no.ts +2 -0
package/src/providers/battlenet.ts +2 -0
package/src/providers/beyondidentity.ts +2 -0
package/src/providers/bitbucket.ts +2 -0
package/src/providers/box.ts +2 -0
package/src/providers/boxyhq-saml.ts +2 -0
package/src/providers/bungie.ts +2 -0
package/src/providers/click-up.ts +2 -0
package/src/providers/cognito.ts +2 -0
package/src/providers/coinbase.ts +2 -0
package/src/providers/concept2.ts +2 -0
package/src/providers/credentials.ts +2 -0
package/src/providers/descope.ts +2 -0
package/src/providers/discord.ts +2 -0
package/src/providers/dribbble.ts +2 -0
package/src/providers/dropbox.ts +2 -0
package/src/providers/duende-identity-server6.ts +2 -0
package/src/providers/email.ts +2 -0
package/src/providers/eventbrite.ts +2 -0
package/src/providers/eveonline.ts +2 -0
package/src/providers/facebook.ts +2 -0
package/src/providers/faceit.ts +2 -0
package/src/providers/figma.ts +2 -0
package/src/providers/forwardemail.ts +2 -0
package/src/providers/foursquare.ts +2 -0
package/src/providers/freshbooks.ts +2 -0
package/src/providers/frontegg.ts +2 -0
package/src/providers/fusionauth.ts +2 -0
package/src/providers/github.ts +2 -0
package/src/providers/gitlab.ts +2 -0
package/src/providers/google.ts +2 -0
package/src/providers/hubspot.ts +2 -0
package/src/providers/huggingface.ts +2 -0
package/src/providers/identity-server4.ts +2 -0
package/src/providers/index.ts +1 -0
package/src/providers/instagram.ts +2 -0
package/src/providers/kakao.ts +2 -0
package/src/providers/keycloak.ts +2 -0
package/src/providers/kinde.ts +2 -0
package/src/providers/line.ts +2 -0
package/src/providers/linkedin.ts +2 -0
package/src/providers/logto.ts +2 -0
package/src/providers/loops.ts +2 -0
package/src/providers/mailchimp.ts +2 -0
package/src/providers/mailgun.ts +2 -0
package/src/providers/mailru.ts +2 -0
package/src/providers/mastodon.ts +2 -0
package/src/providers/mattermost.ts +2 -0
package/src/providers/medium.ts +2 -0
package/src/providers/microsoft-entra-id.ts +2 -0
package/src/providers/naver.ts +2 -0
package/src/providers/netlify.ts +2 -0
package/src/providers/netsuite.ts +2 -0
package/src/providers/nextcloud.ts +2 -0
package/src/providers/nodemailer.ts +2 -0
package/src/providers/notion.ts +2 -0
package/src/providers/okta.ts +2 -0
package/src/providers/onelogin.ts +2 -0
package/src/providers/ory-hydra.ts +2 -0
package/src/providers/osso.ts +2 -0
package/src/providers/osu.ts +2 -0
package/src/providers/passage.ts +2 -0
package/src/providers/passkey.ts +2 -0
package/src/providers/patreon.ts +2 -0
package/src/providers/ping-id.ts +2 -0
package/src/providers/pinterest.ts +2 -0
package/src/providers/pipedrive.ts +2 -0
package/src/providers/postmark.ts +2 -0
package/src/providers/reddit.ts +2 -0
package/src/providers/resend.ts +2 -0
package/src/providers/roblox.ts +2 -0
package/src/providers/salesforce.ts +2 -0
package/src/providers/sendgrid.ts +2 -0
package/src/providers/simplelogin.ts +2 -0
package/src/providers/slack.ts +2 -0
package/src/providers/spotify.ts +2 -0
package/src/providers/strava.ts +2 -0
package/src/providers/threads.ts +2 -0
package/src/providers/tiktok.ts +2 -0
package/src/providers/todoist.ts +2 -0
package/src/providers/trakt.ts +2 -0
package/src/providers/twitch.ts +2 -0
package/src/providers/twitter.ts +2 -0
package/src/providers/united-effects.ts +2 -0
package/src/providers/vipps.ts +2 -0
package/src/providers/vk.ts +2 -0
package/src/providers/webauthn.ts +2 -0
package/src/providers/webex.ts +2 -0
package/src/providers/wechat.ts +2 -0
package/src/providers/wikimedia.ts +2 -0
package/src/providers/wordpress.ts +2 -0
package/src/providers/workos.ts +2 -0
package/src/providers/yandex.ts +2 -0
package/src/providers/zitadel.ts +2 -0
package/src/providers/zoho.ts +2 -0
package/src/providers/zoom.ts +2 -0
package/src/react.tsx +546 -0
package/src/webauthn.ts +152 -0
package/webauthn.d.ts +9 -0
package/webauthn.d.ts.map +1 -0
package/webauthn.js +92 -0
package/LICENSE +0 -70
package/dist/actions-CExpv_dD.js +0 -1
package/dist/actions-DeCfLtHA.mjs +0 -184
package/dist/client/hooks.d.ts +0 -122
package/dist/client/index.d.ts +0 -5
package/dist/client/index.js +0 -1
package/dist/client/index.mjs +0 -478
package/dist/client/provider.d.ts +0 -69
package/dist/client/server-actions-helper.d.ts +0 -22
package/dist/components/AccountPicker.d.ts +0 -11
package/dist/components/OAuthButton.d.ts +0 -11
package/dist/components/PassKeyButton.d.ts +0 -11
package/dist/components/PassKeyRegister.d.ts +0 -10
package/dist/components/TwoFactorSetup.d.ts +0 -8
package/dist/components/TwoFactorVerify.d.ts +0 -9
package/dist/core/account-picker/encryption.d.ts +0 -22
package/dist/core/account-picker/index.d.ts +0 -22
package/dist/core/auth/index.d.ts +0 -40
package/dist/core/auth/oauth-providers.d.ts +0 -197
package/dist/core/auth/oauth-state-store-cookie.d.ts +0 -83
package/dist/core/auth/oauth-state-store-redis.d.ts +0 -25
package/dist/core/auth/oauth-state-store.d.ts +0 -45
package/dist/core/auth/oauth.d.ts +0 -20
package/dist/core/auth/passkey.d.ts +0 -35
package/dist/core/auth/password.d.ts +0 -22
package/dist/core/auth/signin-unified.d.ts +0 -33
package/dist/core/auth/two-factor.d.ts +0 -28
package/dist/core/client/index.d.ts +0 -132
package/dist/core/client/token-refresh-manager.d.ts +0 -48
package/dist/core/index.d.ts +0 -11
package/dist/core/mulguard/auth-handlers.d.ts +0 -100
package/dist/core/mulguard/defaults.d.ts +0 -58
package/dist/core/mulguard/index.d.ts +0 -9
package/dist/core/mulguard/oauth-handler.d.ts +0 -93
package/dist/core/mulguard/session-manager.d.ts +0 -94
package/dist/core/security/csrf.d.ts +0 -46
package/dist/core/security/headers.d.ts +0 -24
package/dist/core/security/index.d.ts +0 -132
package/dist/core/security/rate-limit.d.ts +0 -39
package/dist/core/security/validation.d.ts +0 -251
package/dist/core/security/xss.d.ts +0 -20
package/dist/core/session/index.d.ts +0 -35
package/dist/core/types/auth.d.ts +0 -290
package/dist/core/types/errors.d.ts +0 -200
package/dist/core/types/index.d.ts +0 -462
package/dist/core/utils/auth-helpers.d.ts +0 -136
package/dist/core/utils/logger.d.ts +0 -121
package/dist/handlers/api.d.ts +0 -10
package/dist/handlers/route.d.ts +0 -76
package/dist/index/index.js +0 -1
package/dist/index/index.mjs +0 -2229
package/dist/index.d.ts +0 -21
package/dist/middleware/index.d.ts +0 -28
package/dist/middleware/proxy.d.ts +0 -53
package/dist/middleware/security.d.ts +0 -9
package/dist/mulguard.d.ts +0 -373
package/dist/oauth-state-DKle8eCr.mjs +0 -289
package/dist/oauth-state-DlvrCV11.js +0 -1
package/dist/server/actions.d.ts +0 -86
package/dist/server/auth.d.ts +0 -65
package/dist/server/cookies.d.ts +0 -42
package/dist/server/helpers.d.ts +0 -10
package/dist/server/index.d.ts +0 -14
package/dist/server/index.js +0 -1
package/dist/server/index.mjs +0 -31
package/dist/server/middleware.d.ts +0 -39
package/dist/server/oauth-state.d.ts +0 -30
package/dist/server/session-helpers.d.ts +0 -26
package/dist/server/session.d.ts +0 -28
package/dist/server/utils.d.ts +0 -10

package/dist/core/client/token-refresh-manager.d.ts DELETED Viewed

@@ -1,48 +0,0 @@
-import { Session } from '../types';
-export interface TokenRefreshConfig {
-    /** Enable/disable automatic token refresh */
-    enabled?: boolean;
-    /** Time before token expiration to refresh (in seconds) */
-    refreshThreshold?: number;
-    /** Maximum number of refresh retries on failure */
-    maxRetries?: number;
-    /** Delay between retries (milliseconds) */
-    retryDelay?: number;
-    /** Maximum refresh requests per minute */
-    rateLimit?: number;
-    /** Enable/disable auto sign-out on refresh failure */
-    autoSignOutOnFailure?: boolean;
-    /** Login page URL for redirect on failure */
-    redirectToLogin?: string;
-    /** Enable/disable auto redirect on failure */
-    autoRedirectOnFailure?: boolean;
-    /** Callback on successful token refresh */
-    onTokenRefreshed?: (session: Session) => void | Promise<void>;
-    /** Callback on token refresh failure (before sign-out) */
-    onTokenRefreshFailed?: (error: Error) => void | Promise<void>;
-    /** Callback before redirect (can return false to cancel redirect) */
-    onBeforeRedirect?: (error: Error) => boolean | Promise<boolean>;
-}
-export interface TokenRefreshManager {
-    /** Refresh token with single refresh queue */
-    refreshToken(): Promise<Session | null>;
-    /** Check if refresh is in progress */
-    isRefreshing(): boolean;
-    /** Wait for current refresh to complete */
-    waitForRefresh(): Promise<Session | null>;
-    /** Clear state (on sign-out) */
-    clear(): void;
-    /** Handle token refresh failure */
-    handleRefreshFailure(error: Error): Promise<void>;
-}
-type RefreshFunction = () => Promise<Session | null>;
-type SignOutFunction = () => Promise<{
-    success: boolean;
-    error?: string;
-}>;
-type ClearSessionFunction = () => Promise<void>;
-/**
- * Create Token Refresh Manager
- */
-export declare function createTokenRefreshManager(refreshFn: RefreshFunction, signOutFn: SignOutFunction, clearSessionFn: ClearSessionFunction, config?: TokenRefreshConfig): TokenRefreshManager;
-export {};

package/dist/core/index.d.ts DELETED Viewed

@@ -1,11 +0,0 @@
-/**
- * Core authentication library - framework agnostic
- * Part of mulguard package
- */
-export type { MulguardConfig, SessionConfig, SecurityConfig, CallbacksConfig, AuthActions, Session, User, AuthResult, EmailCredentials, RegisterData, RequestContext, } from './types';
-export * from './security';
-export * from './utils/auth-helpers';
-export * from './auth/signin-unified';
-export * from './auth/oauth-providers';
-export * from './auth/oauth-state-store';
-export * from './auth/oauth-state-store-redis';

package/dist/core/mulguard/auth-handlers.d.ts DELETED Viewed

@@ -1,100 +0,0 @@
-import { AuthResult, EmailCredentials, RegisterData, User, Session, AuthActions, CallbacksConfig } from '../types';
-/**
- * Authentication handlers configuration.
- */
-export interface AuthHandlersConfig<TUser extends User = User, TSession extends Session<TUser> = Session<TUser>> {
-    readonly actions: AuthActions<TUser, TSession>;
-    readonly callbacks: CallbacksConfig;
-    readonly saveSessionAfterAuth: (result: AuthResult<TUser, TSession>) => Promise<{
-        success: boolean;
-        error?: string;
-        warning?: string;
-    }>;
-    readonly onError?: (error: Error, context: string) => Promise<void> | void;
-}
-/**
- * Sign-in handlers result.
- */
-export interface SignInHandlers<TUser extends User = User, TSession extends Session<TUser> = Session<TUser>> {
-    readonly email: (credentials: EmailCredentials) => Promise<AuthResult<TUser, TSession>>;
-    readonly oauth?: (provider: string) => Promise<{
-        url: string;
-        state: string;
-    }>;
-    readonly passkey?: (options?: {
-        userId?: string;
-    }) => Promise<AuthResult<TUser, TSession>>;
-    readonly otp?: (email: string, code?: string) => Promise<AuthResult<TUser, TSession>>;
-}
-/**
- * Creates unified sign-in handler that supports both provider-based and direct method calls.
- *
- * @template TUser - User type
- * @template TSession - Session type
- * @param config - Handler configuration
- * @param storeOAuthState - Function to store OAuth state
- * @returns Unified sign-in handler
- */
-export declare function createUnifiedSignInHandler<TUser extends User = User, TSession extends Session<TUser> = Session<TUser>>(config: AuthHandlersConfig<TUser, TSession>, storeOAuthState: (state: string, provider: string) => Promise<void>): SignInHandlers<TUser, TSession> & {
-    (provider: string): Promise<{
-        url: string;
-        state: string;
-    }>;
-    (provider: 'credentials', credentials: EmailCredentials): Promise<AuthResult<TUser, TSession>>;
-    (provider: 'otp', options: {
-        email: string;
-        code?: string;
-    }): Promise<AuthResult<TUser, TSession>>;
-    (provider: 'passkey', options?: {
-        userId?: string;
-    }): Promise<AuthResult<TUser, TSession>>;
-};
-/**
- * Creates sign-up handler.
- *
- * @template TUser - User type
- * @template TSession - Session type
- * @param config - Handler configuration
- * @returns Sign-up handler
- */
-export declare function createSignUpHandler<TUser extends User = User, TSession extends Session<TUser> = Session<TUser>>(config: AuthHandlersConfig<TUser, TSession>): (data: RegisterData) => Promise<AuthResult<TUser, TSession>>;
-/**
- * TODO: Performance
- * - [ ] Add request deduplication for concurrent sign-in attempts
- * - [ ] Implement rate limiting per email/IP
- * - [ ] Add sign-in attempt caching
- * - [ ] Optimize validation logic
- *
- * TODO: Features
- * - [ ] Add social login account linking
- * - [ ] Implement sign-in with magic link
- * - [ ] Add biometric authentication support
- * - [ ] Create sign-in attempt tracking
- *
- * TODO: Type Safety
- * - [ ] Add runtime validation for all inputs
- * - [ ] Create type-safe credential builders
- * - [ ] Implement compile-time provider validation
- *
- * TODO: Security
- * - [ ] Add CAPTCHA support for repeated failures
- * - [ ] Implement account lockout after failed attempts
- * - [ ] Add device fingerprinting
- * - [ ] Create security event logging
- *
- * TODO: Testing
- * - [ ] Add comprehensive handler tests
- * - [ ] Test all validation scenarios
- * - [ ] Test error handling
- * - [ ] Add integration tests
- *
- * TODO: Documentation
- * - [ ] Document all sign-in methods
- * - [ ] Add usage examples
- * - [ ] Create troubleshooting guide
- *
- * TODO: Limitations
- * - [ ] Input validation is basic (consider schema validation)
- * - [ ] No support for custom validation rules
- * - [ ] Error messages may be too generic
- */

package/dist/core/mulguard/defaults.d.ts DELETED Viewed

@@ -1,58 +0,0 @@
-import { SessionConfig } from '../types';
-import { TokenRefreshConfig } from '../client/token-refresh-manager';
-/**
- * Default session configuration.
- *
- * Auto-detects environment and applies secure defaults.
- *
- * @returns Default session configuration
- */
-export declare function getDefaultSessionConfig(): SessionConfig;
-/**
- * Default token refresh configuration.
- *
- * Optimized to prevent infinite loops and improve performance.
- *
- * @returns Default token refresh configuration
- */
-export declare function getDefaultTokenRefreshConfig(): TokenRefreshConfig;
-/**
- * Gets the base URL for OAuth redirects.
- *
- * Detects the base URL from environment variables or defaults to localhost.
- *
- * @returns Base URL string
- */
-export declare function getBaseUrl(): string;
-/**
- * TODO: Performance
- * - [ ] Cache base URL detection result
- * - [ ] Add configuration validation at startup
- * - [ ] Implement configuration hot-reload support
- *
- * TODO: Features
- * - [ ] Add environment-specific configuration presets
- * - [ ] Create configuration builder pattern
- * - [ ] Add configuration schema validation
- * - [ ] Implement configuration inheritance
- *
- * TODO: Type Safety
- * - [ ] Add type-level validation for configuration values
- * - [ ] Create branded types for configuration
- * - [ ] Implement compile-time configuration checking
- *
- * TODO: Testing
- * - [ ] Add tests for default configurations
- * - [ ] Test environment detection
- * - [ ] Test configuration merging
- *
- * TODO: Documentation
- * - [ ] Document all default values
- * - [ ] Add configuration examples
- * - [ ] Create configuration reference guide
- *
- * TODO: Limitations
- * - [ ] Base URL detection is basic (consider more sophisticated detection)
- * - [ ] No configuration validation at runtime
- * - [ ] Defaults are fixed (consider configurable defaults)
- */

package/dist/core/mulguard/index.d.ts DELETED Viewed

@@ -1,9 +0,0 @@
-/**
- * Mulguard core modules.
- *
- * @module @mulguard/core/mulguard
- */
-export * from './defaults';
-export * from './session-manager';
-export * from './auth-handlers';
-export * from './oauth-handler';

package/dist/core/mulguard/oauth-handler.d.ts DELETED Viewed

@@ -1,93 +0,0 @@
-import { AuthResult, OAuthUserInfo, User, Session, OAuthProviderConfig, OAuthProvidersConfig, CallbacksConfig } from '../types';
-import { exchangeOAuthCode } from '../auth/oauth-providers';
-/**
- * OAuth handler configuration.
- */
-export interface OAuthHandlerConfig<TUser extends User = User, TSession extends Session<TUser> = Session<TUser>> {
-    readonly oauthProviders: OAuthProvidersConfig;
-    readonly baseUrl: string;
-    readonly callbacks: CallbacksConfig;
-    readonly createSession: (user: TUser, userInfo: OAuthUserInfo, tokens: Awaited<ReturnType<typeof exchangeOAuthCode>>) => TSession;
-    readonly saveSession: (session: TSession) => Promise<void>;
-    readonly onError?: (error: Error, context: string) => Promise<void> | void;
-}
-/**
- * OAuth state validation function.
- */
-export type ValidateOAuthState = (state: string, provider: string) => Promise<boolean>;
-/**
- * Creates OAuth callback handler.
- *
- * Automatically handles:
- * 1. Code exchange for tokens
- * 2. User profile retrieval
- * 3. User creation/lookup via callback
- * 4. Session creation and storage
- *
- * @template TUser - User type
- * @template TSession - Session type
- * @param config - OAuth handler configuration
- * @param validateState - Function to validate OAuth state
- * @returns OAuth callback handler
- *
- * @example
- * ```typescript
- * const handler = createOAuthCallbackHandler(config, validateState)
- * const result = await handler('google', 'code123', 'state456')
- * ```
- */
-export declare function createOAuthCallbackHandler<TUser extends User = User, TSession extends Session<TUser> = Session<TUser>>(config: OAuthHandlerConfig<TUser, TSession>, _validateState: ValidateOAuthState): (provider: string, code: string, _state: string) => Promise<AuthResult<TUser, TSession>>;
-/**
- * Creates OAuth initiation action if providers are configured.
- *
- * @param oauthProviders - OAuth providers configuration
- * @param baseUrl - Base URL for redirects
- * @param generateState - Function to generate CSRF state
- * @param buildAuthUrl - Function to build authorization URL
- * @returns OAuth initiation action or undefined
- */
-export declare function createOAuthInitiationAction(oauthProviders: OAuthProvidersConfig, baseUrl: string, generateState: () => string, buildAuthUrl: (provider: string, config: OAuthProviderConfig, baseUrl: string, state: string) => string): ((provider: string) => Promise<{
-    url: string;
-    state: string;
-}>) | undefined;
-/**
- * TODO: Performance
- * - [ ] Add token exchange result caching
- * - [ ] Implement request retry logic
- * - [ ] Add connection pooling for OAuth API calls
- * - [ ] Cache user profile data
- *
- * TODO: Features
- * - [ ] Add PKCE support
- * - [ ] Implement token refresh flow
- * - [ ] Add OAuth 2.1 compliance
- * - [ ] Support for OpenID Connect
- * - [ ] Add account linking
- *
- * TODO: Type Safety
- * - [ ] Add type-safe provider configuration
- * - [ ] Create type-level endpoint validation
- * - [ ] Implement compile-time provider validation
- *
- * TODO: Security
- * - [ ] Add token validation before use
- * - [ ] Implement token encryption
- * - [ ] Add request signing
- * - [ ] Create security audit logging
- *
- * TODO: Testing
- * - [ ] Add comprehensive OAuth handler tests
- * - [ ] Test all provider flows
- * - [ ] Test error handling
- * - [ ] Add integration tests
- *
- * TODO: Documentation
- * - [ ] Document OAuth flow
- * - [ ] Add provider setup guides
- * - [ ] Create troubleshooting guide
- *
- * TODO: Limitations
- * - [ ] No support for OAuth 1.0
- * - [ ] Token refresh not implemented
- * - [ ] No PKCE support yet
- */

package/dist/core/mulguard/session-manager.d.ts DELETED Viewed

@@ -1,94 +0,0 @@
-import { Session, SessionConfig } from '../types';
-/**
- * Session cache entry.
- */
-interface SessionCacheEntry {
-    readonly session: Session | null;
-    readonly timestamp: number;
-}
-/**
- * Session manager configuration.
- */
-export interface SessionManagerConfig {
-    readonly sessionConfig: SessionConfig;
-    readonly cacheTtl: number;
-    readonly getSessionAction?: () => Promise<Session | null>;
-    readonly onSessionExpired?: (session: Session) => Promise<void> | void;
-    readonly onError?: (error: Error, context: string) => Promise<void> | void;
-}
-/**
- * Session operation result.
- */
-export interface SessionResult {
-    readonly success: boolean;
-    readonly error?: string;
-    readonly warning?: string;
-}
-/**
- * Creates a session manager instance.
- *
- * @param config - Session manager configuration
- * @returns Session manager functions
- */
-export declare function createSessionManager(config: SessionManagerConfig): {
-    getSession: () => Promise<Session | null>;
-    setSession: (session: Session) => Promise<SessionResult>;
-    clearSessionCookie: () => Promise<void>;
-    getAccessToken: () => Promise<string | null>;
-    getRefreshToken: () => Promise<string | null>;
-    hasValidTokens: () => Promise<boolean>;
-    clearCache: () => void;
-    getSessionConfig: () => {
-        cookieName: string;
-        config: SessionConfig;
-    };
-};
-/**
- * Type predicate to check if a value is a valid session cache entry.
- *
- * @param value - Value to check
- * @returns True if value is a valid cache entry
- */
-export declare function isSessionCacheEntry(value: unknown): value is SessionCacheEntry;
-export {};
-/**
- * TODO: Performance
- * - [ ] Add session compression for large sessions
- * - [ ] Implement session chunking for very large sessions
- * - [ ] Add session cache invalidation strategies
- * - [ ] Consider using WeakMap for session references
- *
- * TODO: Features
- * - [ ] Add session encryption at rest
- * - [ ] Implement session rotation
- * - [ ] Add session fingerprinting
- * - [ ] Create session analytics
- * - [ ] Add session migration support
- *
- * TODO: Type Safety
- * - [ ] Add type-level session validation
- * - [ ] Create type-safe session builders
- * - [ ] Implement session schema validation
- *
- * TODO: Security
- * - [ ] Add session hijacking detection
- * - [ ] Implement session timeout warnings
- * - [ ] Add session audit logging
- * - [ ] Create session security monitoring
- *
- * TODO: Testing
- * - [ ] Add comprehensive session manager tests
- * - [ ] Test cache invalidation
- * - [ ] Test session expiration
- * - [ ] Test error handling
- *
- * TODO: Documentation
- * - [ ] Document session lifecycle
- * - [ ] Add session best practices guide
- * - [ ] Create troubleshooting guide
- *
- * TODO: Limitations
- * - [ ] Session cache is in-memory (not shared across instances)
- * - [ ] No session persistence (consider database-backed sessions)
- * - [ ] Session validation is basic (consider schema validation)
- */

package/dist/core/security/csrf.d.ts DELETED Viewed

@@ -1,46 +0,0 @@
-/**
- * CSRF Protection utilities
- */
-export interface CSRFTokenStore {
-    get(key: string): string | null;
-    set(key: string, value: string, expiresIn?: number): void;
-    delete(key: string): void;
-}
-/**
- * In-memory CSRF token store (for server-side)
- */
-export declare class MemoryCSRFStore implements CSRFTokenStore {
-    private tokens;
-    get(key: string): string | null;
-    set(key: string, value: string, expiresIn?: number): void;
-    delete(key: string): void;
-    clear(): void;
-}
-/**
- * CSRF Protection manager
- */
-export declare class CSRFProtection {
-    private store;
-    private tokenLength;
-    constructor(store?: CSRFTokenStore, tokenLength?: number);
-    /**
-     * Generate CSRF token
-     */
-    generateToken(key: string, expiresIn?: number): string;
-    /**
-     * Validate CSRF token
-     */
-    validateToken(key: string, token: string): boolean;
-    /**
-     * Get stored token without validating
-     */
-    getToken(key: string): string | null;
-    /**
-     * Delete token
-     */
-    deleteToken(key: string): void;
-}
-/**
- * Create CSRF protection instance
- */
-export declare function createCSRFProtection(store?: CSRFTokenStore): CSRFProtection;

package/dist/core/security/headers.d.ts DELETED Viewed

@@ -1,24 +0,0 @@
-/**
- * Security Headers utilities
- */
-export interface SecurityHeaders {
-    'X-Content-Type-Options'?: string;
-    'X-Frame-Options'?: string;
-    'X-XSS-Protection'?: string;
-    'Strict-Transport-Security'?: string;
-    'Content-Security-Policy'?: string;
-    'Referrer-Policy'?: string;
-    'Permissions-Policy'?: string;
-}
-/**
- * Default security headers
- */
-export declare const DEFAULT_SECURITY_HEADERS: SecurityHeaders;
-/**
- * Get security headers
- */
-export declare function getSecurityHeaders(custom?: Partial<SecurityHeaders>): SecurityHeaders;
-/**
- * Apply security headers to response
- */
-export declare function applySecurityHeaders(headers: Headers, custom?: Partial<SecurityHeaders>): void;

package/dist/core/security/index.d.ts DELETED Viewed

@@ -1,132 +0,0 @@
-/**
- * Security utilities for Mulguard Authentication Library.
- *
- * Provides token generation, CSRF protection, input sanitization, and validation.
- *
- * @module @mulguard/core/security
- */
-/**
- * Generates a cryptographically secure random token.
- *
- * @param length - Token length in bytes (default: 32)
- * @returns Base64url-encoded token
- *
- * @example
- * ```typescript
- * const token = generateToken(32)
- * // Returns: 'abc123xyz...' (base64url encoded)
- * ```
- */
-export declare function generateToken(length?: number): string;
-/**
- * Generates a CSRF token for state validation.
- *
- * @returns Base64url-encoded CSRF token
- *
- * @example
- * ```typescript
- * const state = generateCSRFToken()
- * // Store state for validation
- * ```
- */
-export declare function generateCSRFToken(): string;
-/**
- * Validates a CSRF token using constant-time comparison.
- *
- * Uses constant-time comparison to prevent timing attacks.
- *
- * @param token - Token to validate
- * @param expected - Expected token value
- * @returns True if tokens match
- *
- * @example
- * ```typescript
- * const isValid = validateCSRFToken(receivedToken, storedToken)
- * if (!isValid) {
- *   throw new Error('Invalid CSRF token')
- * }
- * ```
- */
-export declare function validateCSRFToken(token: unknown, expected: unknown): boolean;
-/**
- * Type predicate to check if CSRF token is valid.
- *
- * @param token - Token to check
- * @param expected - Expected token
- * @returns True if token is valid
- */
-export declare function isValidCSRFToken(token: unknown, expected: unknown): token is string;
-/**
- * Sanitizes string input by trimming and removing dangerous characters.
- *
- * @param input - Input to sanitize
- * @returns Sanitized string
- *
- * @example
- * ```typescript
- * const sanitized = sanitizeInput('  <script>alert("xss")</script>  ')
- * // Returns: 'scriptalert("xss")script'
- * ```
- */
-export declare function sanitizeInput(input: unknown): string;
-/**
- * Validates email format.
- *
- * @param email - Email to validate
- * @returns True if email is valid
- *
- * @example
- * ```typescript
- * if (isValidEmail('user@example.com')) {
- *   // Email is valid
- * }
- * ```
- */
-export declare function isValidEmail(email: unknown): email is string;
-export * from './rate-limit';
-export * from './headers';
-export * from './validation';
-export * from './csrf';
-export * from './xss';
-/**
- * TODO: Performance
- * - [ ] Add token generation caching for high-frequency operations
- * - [ ] Optimize constant-time comparison for very long tokens
- * - [ ] Consider using Web Crypto API for token generation
- * - [ ] Add input sanitization result caching
- *
- * TODO: Features
- * - [ ] Add token expiration validation
- * - [ ] Implement token rotation support
- * - [ ] Add rate limiting for token generation
- * - [ ] Create token strength scoring
- * - [ ] Add token format validation helpers
- *
- * TODO: Type Safety
- * - [ ] Add branded types for tokens
- * - [ ] Create type-safe token validation
- * - [ ] Add type guards for all security functions
- * - [ ] Implement type-level security constraints
- *
- * TODO: Security
- * - [ ] Add token generation logging (with masking)
- * - [ ] Implement token blacklisting
- * - [ ] Add security event monitoring
- * - [ ] Create security audit logging
- *
- * TODO: Testing
- * - [ ] Add comprehensive security tests
- * - [ ] Test timing attack resistance
- * - [ ] Test token generation randomness
- * - [ ] Add fuzzing tests
- *
- * TODO: Documentation
- * - [ ] Document security best practices
- * - [ ] Add security considerations guide
- * - [ ] Document token lifecycle
- *
- * TODO: Limitations
- * - [ ] Token generation uses Node.js Buffer (consider Web Crypto API for browsers)
- * - [ ] Constant-time comparison may have micro-optimizations
- * - [ ] Email validation is basic (use validation.ts for comprehensive validation)
- */

package/dist/core/security/rate-limit.d.ts DELETED Viewed

@@ -1,39 +0,0 @@
-/**
- * Rate Limiting utilities
- * Client-side rate limiting helpers (actual rate limiting should be on backend)
- */
-export interface RateLimitConfig {
-    maxAttempts: number;
-    windowMs: number;
-    keyPrefix?: string;
-}
-export interface RateLimitResult {
-    allowed: boolean;
-    remaining: number;
-    resetAt: Date;
-}
-/**
- * Client-side rate limit tracker
- * Note: This is just a helper. Real rate limiting must be enforced on the backend.
- */
-export declare class RateLimiter {
-    private attempts;
-    private config;
-    constructor(config: RateLimitConfig);
-    /**
-     * Check if request is allowed
-     */
-    check(key: string): RateLimitResult;
-    /**
-     * Reset rate limit for a key
-     */
-    reset(key: string): void;
-    /**
-     * Clear all rate limits
-     */
-    clear(): void;
-}
-/**
- * Create rate limiter instance
- */
-export declare function createRateLimiter(config: RateLimitConfig): RateLimiter;