npm - mulguard - Versions diffs - 1.1.7 → 1.1.9 - Mend

mulguard 1.1.7 → 1.1.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (546) hide show

package/LICENSE +3 -3
package/README.md +21 -582
package/adapters.d.ts +2 -0
package/adapters.d.ts.map +1 -0
package/adapters.js +1 -0
package/index.d.ts +329 -0
package/index.d.ts.map +1 -0
package/index.js +145 -0
package/jwt.d.ts +9 -0
package/jwt.d.ts.map +1 -0
package/jwt.js +8 -0
package/lib/actions.d.ts +13 -0
package/lib/actions.d.ts.map +1 -0
package/lib/actions.js +86 -0
package/lib/client.d.ts +104 -0
package/lib/client.d.ts.map +1 -0
package/lib/client.js +95 -0
package/lib/env.d.ts +12 -0
package/lib/env.d.ts.map +1 -0
package/lib/env.js +38 -0
package/lib/index.d.ts +56 -0
package/lib/index.d.ts.map +1 -0
package/lib/index.js +187 -0
package/lib/types.d.ts +24 -0
package/lib/types.d.ts.map +1 -0
package/lib/types.js +1 -0
package/middleware.d.ts +9 -0
package/middleware.d.ts.map +1 -0
package/middleware.js +12 -0
package/next.d.ts +9 -0
package/next.d.ts.map +1 -0
package/next.js +12 -0
package/package.json +93 -102
package/providers/42-school.d.ts +3 -0
package/providers/42-school.d.ts.map +1 -0
package/providers/42-school.js +2 -0
package/providers/apple.d.ts +3 -0
package/providers/apple.d.ts.map +1 -0
package/providers/apple.js +2 -0
package/providers/asgardeo.d.ts +3 -0
package/providers/asgardeo.d.ts.map +1 -0
package/providers/asgardeo.js +2 -0
package/providers/atlassian.d.ts +3 -0
package/providers/atlassian.d.ts.map +1 -0
package/providers/atlassian.js +2 -0
package/providers/auth0.d.ts +3 -0
package/providers/auth0.d.ts.map +1 -0
package/providers/auth0.js +2 -0
package/providers/authentik.d.ts +3 -0
package/providers/authentik.d.ts.map +1 -0
package/providers/authentik.js +2 -0
package/providers/azure-ad-b2c.d.ts +3 -0
package/providers/azure-ad-b2c.d.ts.map +1 -0
package/providers/azure-ad-b2c.js +2 -0
package/providers/azure-ad.d.ts +3 -0
package/providers/azure-ad.d.ts.map +1 -0
package/providers/azure-ad.js +2 -0
package/providers/azure-devops.d.ts +3 -0
package/providers/azure-devops.d.ts.map +1 -0
package/providers/azure-devops.js +2 -0
package/providers/bankid-no.d.ts +3 -0
package/providers/bankid-no.d.ts.map +1 -0
package/providers/bankid-no.js +2 -0
package/providers/battlenet.d.ts +3 -0
package/providers/battlenet.d.ts.map +1 -0
package/providers/battlenet.js +2 -0
package/providers/beyondidentity.d.ts +3 -0
package/providers/beyondidentity.d.ts.map +1 -0
package/providers/beyondidentity.js +2 -0
package/providers/bitbucket.d.ts +3 -0
package/providers/bitbucket.d.ts.map +1 -0
package/providers/bitbucket.js +2 -0
package/providers/box.d.ts +3 -0
package/providers/box.d.ts.map +1 -0
package/providers/box.js +2 -0
package/providers/boxyhq-saml.d.ts +3 -0
package/providers/boxyhq-saml.d.ts.map +1 -0
package/providers/boxyhq-saml.js +2 -0
package/providers/bungie.d.ts +3 -0
package/providers/bungie.d.ts.map +1 -0
package/providers/bungie.js +2 -0
package/providers/click-up.d.ts +3 -0
package/providers/click-up.d.ts.map +1 -0
package/providers/click-up.js +2 -0
package/providers/cognito.d.ts +3 -0
package/providers/cognito.d.ts.map +1 -0
package/providers/cognito.js +2 -0
package/providers/coinbase.d.ts +3 -0
package/providers/coinbase.d.ts.map +1 -0
package/providers/coinbase.js +2 -0
package/providers/concept2.d.ts +3 -0
package/providers/concept2.d.ts.map +1 -0
package/providers/concept2.js +2 -0
package/providers/credentials.d.ts +3 -0
package/providers/credentials.d.ts.map +1 -0
package/providers/credentials.js +2 -0
package/providers/descope.d.ts +3 -0
package/providers/descope.d.ts.map +1 -0
package/providers/descope.js +2 -0
package/providers/discord.d.ts +3 -0
package/providers/discord.d.ts.map +1 -0
package/providers/discord.js +2 -0
package/providers/dribbble.d.ts +3 -0
package/providers/dribbble.d.ts.map +1 -0
package/providers/dribbble.js +2 -0
package/providers/dropbox.d.ts +3 -0
package/providers/dropbox.d.ts.map +1 -0
package/providers/dropbox.js +2 -0
package/providers/duende-identity-server6.d.ts +3 -0
package/providers/duende-identity-server6.d.ts.map +1 -0
package/providers/duende-identity-server6.js +2 -0
package/providers/email.d.ts +3 -0
package/providers/email.d.ts.map +1 -0
package/providers/email.js +2 -0
package/providers/eventbrite.d.ts +3 -0
package/providers/eventbrite.d.ts.map +1 -0
package/providers/eventbrite.js +2 -0
package/providers/eveonline.d.ts +3 -0
package/providers/eveonline.d.ts.map +1 -0
package/providers/eveonline.js +2 -0
package/providers/facebook.d.ts +3 -0
package/providers/facebook.d.ts.map +1 -0
package/providers/facebook.js +2 -0
package/providers/faceit.d.ts +3 -0
package/providers/faceit.d.ts.map +1 -0
package/providers/faceit.js +2 -0
package/providers/figma.d.ts +3 -0
package/providers/figma.d.ts.map +1 -0
package/providers/figma.js +2 -0
package/providers/forwardemail.d.ts +3 -0
package/providers/forwardemail.d.ts.map +1 -0
package/providers/forwardemail.js +2 -0
package/providers/foursquare.d.ts +3 -0
package/providers/foursquare.d.ts.map +1 -0
package/providers/foursquare.js +2 -0
package/providers/freshbooks.d.ts +3 -0
package/providers/freshbooks.d.ts.map +1 -0
package/providers/freshbooks.js +2 -0
package/providers/frontegg.d.ts +3 -0
package/providers/frontegg.d.ts.map +1 -0
package/providers/frontegg.js +2 -0
package/providers/fusionauth.d.ts +3 -0
package/providers/fusionauth.d.ts.map +1 -0
package/providers/fusionauth.js +2 -0
package/providers/github.d.ts +3 -0
package/providers/github.d.ts.map +1 -0
package/providers/github.js +2 -0
package/providers/gitlab.d.ts +3 -0
package/providers/gitlab.d.ts.map +1 -0
package/providers/gitlab.js +2 -0
package/providers/google.d.ts +3 -0
package/providers/google.d.ts.map +1 -0
package/providers/google.js +2 -0
package/providers/hubspot.d.ts +3 -0
package/providers/hubspot.d.ts.map +1 -0
package/providers/hubspot.js +2 -0
package/providers/huggingface.d.ts +3 -0
package/providers/huggingface.d.ts.map +1 -0
package/providers/huggingface.js +2 -0
package/providers/identity-server4.d.ts +3 -0
package/providers/identity-server4.d.ts.map +1 -0
package/providers/identity-server4.js +2 -0
package/providers/index.d.ts +2 -0
package/providers/index.d.ts.map +1 -0
package/providers/index.js +1 -0
package/providers/instagram.d.ts +3 -0
package/providers/instagram.d.ts.map +1 -0
package/providers/instagram.js +2 -0
package/providers/kakao.d.ts +3 -0
package/providers/kakao.d.ts.map +1 -0
package/providers/kakao.js +2 -0
package/providers/keycloak.d.ts +3 -0
package/providers/keycloak.d.ts.map +1 -0
package/providers/keycloak.js +2 -0
package/providers/kinde.d.ts +3 -0
package/providers/kinde.d.ts.map +1 -0
package/providers/kinde.js +2 -0
package/providers/line.d.ts +3 -0
package/providers/line.d.ts.map +1 -0
package/providers/line.js +2 -0
package/providers/linkedin.d.ts +3 -0
package/providers/linkedin.d.ts.map +1 -0
package/providers/linkedin.js +2 -0
package/providers/logto.d.ts +3 -0
package/providers/logto.d.ts.map +1 -0
package/providers/logto.js +2 -0
package/providers/loops.d.ts +3 -0
package/providers/loops.d.ts.map +1 -0
package/providers/loops.js +2 -0
package/providers/mailchimp.d.ts +3 -0
package/providers/mailchimp.d.ts.map +1 -0
package/providers/mailchimp.js +2 -0
package/providers/mailgun.d.ts +3 -0
package/providers/mailgun.d.ts.map +1 -0
package/providers/mailgun.js +2 -0
package/providers/mailru.d.ts +3 -0
package/providers/mailru.d.ts.map +1 -0
package/providers/mailru.js +2 -0
package/providers/mastodon.d.ts +3 -0
package/providers/mastodon.d.ts.map +1 -0
package/providers/mastodon.js +2 -0
package/providers/mattermost.d.ts +3 -0
package/providers/mattermost.d.ts.map +1 -0
package/providers/mattermost.js +2 -0
package/providers/medium.d.ts +3 -0
package/providers/medium.d.ts.map +1 -0
package/providers/medium.js +2 -0
package/providers/microsoft-entra-id.d.ts +3 -0
package/providers/microsoft-entra-id.d.ts.map +1 -0
package/providers/microsoft-entra-id.js +2 -0
package/providers/naver.d.ts +3 -0
package/providers/naver.d.ts.map +1 -0
package/providers/naver.js +2 -0
package/providers/netlify.d.ts +3 -0
package/providers/netlify.d.ts.map +1 -0
package/providers/netlify.js +2 -0
package/providers/netsuite.d.ts +3 -0
package/providers/netsuite.d.ts.map +1 -0
package/providers/netsuite.js +2 -0
package/providers/nextcloud.d.ts +3 -0
package/providers/nextcloud.d.ts.map +1 -0
package/providers/nextcloud.js +2 -0
package/providers/nodemailer.d.ts +3 -0
package/providers/nodemailer.d.ts.map +1 -0
package/providers/nodemailer.js +2 -0
package/providers/notion.d.ts +3 -0
package/providers/notion.d.ts.map +1 -0
package/providers/notion.js +2 -0
package/providers/okta.d.ts +3 -0
package/providers/okta.d.ts.map +1 -0
package/providers/okta.js +2 -0
package/providers/onelogin.d.ts +3 -0
package/providers/onelogin.d.ts.map +1 -0
package/providers/onelogin.js +2 -0
package/providers/ory-hydra.d.ts +3 -0
package/providers/ory-hydra.d.ts.map +1 -0
package/providers/ory-hydra.js +2 -0
package/providers/osso.d.ts +3 -0
package/providers/osso.d.ts.map +1 -0
package/providers/osso.js +2 -0
package/providers/osu.d.ts +3 -0
package/providers/osu.d.ts.map +1 -0
package/providers/osu.js +2 -0
package/providers/passage.d.ts +3 -0
package/providers/passage.d.ts.map +1 -0
package/providers/passage.js +2 -0
package/providers/passkey.d.ts +3 -0
package/providers/passkey.d.ts.map +1 -0
package/providers/passkey.js +2 -0
package/providers/patreon.d.ts +3 -0
package/providers/patreon.d.ts.map +1 -0
package/providers/patreon.js +2 -0
package/providers/ping-id.d.ts +3 -0
package/providers/ping-id.d.ts.map +1 -0
package/providers/ping-id.js +2 -0
package/providers/pinterest.d.ts +3 -0
package/providers/pinterest.d.ts.map +1 -0
package/providers/pinterest.js +2 -0
package/providers/pipedrive.d.ts +3 -0
package/providers/pipedrive.d.ts.map +1 -0
package/providers/pipedrive.js +2 -0
package/providers/postmark.d.ts +3 -0
package/providers/postmark.d.ts.map +1 -0
package/providers/postmark.js +2 -0
package/providers/reddit.d.ts +3 -0
package/providers/reddit.d.ts.map +1 -0
package/providers/reddit.js +2 -0
package/providers/resend.d.ts +3 -0
package/providers/resend.d.ts.map +1 -0
package/providers/resend.js +2 -0
package/providers/roblox.d.ts +3 -0
package/providers/roblox.d.ts.map +1 -0
package/providers/roblox.js +2 -0
package/providers/salesforce.d.ts +3 -0
package/providers/salesforce.d.ts.map +1 -0
package/providers/salesforce.js +2 -0
package/providers/sendgrid.d.ts +3 -0
package/providers/sendgrid.d.ts.map +1 -0
package/providers/sendgrid.js +2 -0
package/providers/simplelogin.d.ts +3 -0
package/providers/simplelogin.d.ts.map +1 -0
package/providers/simplelogin.js +2 -0
package/providers/slack.d.ts +3 -0
package/providers/slack.d.ts.map +1 -0
package/providers/slack.js +2 -0
package/providers/spotify.d.ts +3 -0
package/providers/spotify.d.ts.map +1 -0
package/providers/spotify.js +2 -0
package/providers/strava.d.ts +3 -0
package/providers/strava.d.ts.map +1 -0
package/providers/strava.js +2 -0
package/providers/threads.d.ts +3 -0
package/providers/threads.d.ts.map +1 -0
package/providers/threads.js +2 -0
package/providers/tiktok.d.ts +3 -0
package/providers/tiktok.d.ts.map +1 -0
package/providers/tiktok.js +2 -0
package/providers/todoist.d.ts +3 -0
package/providers/todoist.d.ts.map +1 -0
package/providers/todoist.js +2 -0
package/providers/trakt.d.ts +3 -0
package/providers/trakt.d.ts.map +1 -0
package/providers/trakt.js +2 -0
package/providers/twitch.d.ts +3 -0
package/providers/twitch.d.ts.map +1 -0
package/providers/twitch.js +2 -0
package/providers/twitter.d.ts +3 -0
package/providers/twitter.d.ts.map +1 -0
package/providers/twitter.js +2 -0
package/providers/united-effects.d.ts +3 -0
package/providers/united-effects.d.ts.map +1 -0
package/providers/united-effects.js +2 -0
package/providers/vipps.d.ts +3 -0
package/providers/vipps.d.ts.map +1 -0
package/providers/vipps.js +2 -0
package/providers/vk.d.ts +3 -0
package/providers/vk.d.ts.map +1 -0
package/providers/vk.js +2 -0
package/providers/webauthn.d.ts +3 -0
package/providers/webauthn.d.ts.map +1 -0
package/providers/webauthn.js +2 -0
package/providers/webex.d.ts +3 -0
package/providers/webex.d.ts.map +1 -0
package/providers/webex.js +2 -0
package/providers/wechat.d.ts +3 -0
package/providers/wechat.d.ts.map +1 -0
package/providers/wechat.js +2 -0
package/providers/wikimedia.d.ts +3 -0
package/providers/wikimedia.d.ts.map +1 -0
package/providers/wikimedia.js +2 -0
package/providers/wordpress.d.ts +3 -0
package/providers/wordpress.d.ts.map +1 -0
package/providers/wordpress.js +2 -0
package/providers/workos.d.ts +3 -0
package/providers/workos.d.ts.map +1 -0
package/providers/workos.js +2 -0
package/providers/yandex.d.ts +3 -0
package/providers/yandex.d.ts.map +1 -0
package/providers/yandex.js +2 -0
package/providers/zitadel.d.ts +3 -0
package/providers/zitadel.d.ts.map +1 -0
package/providers/zitadel.js +2 -0
package/providers/zoho.d.ts +3 -0
package/providers/zoho.d.ts.map +1 -0
package/providers/zoho.js +2 -0
package/providers/zoom.d.ts +3 -0
package/providers/zoom.d.ts.map +1 -0
package/providers/zoom.js +2 -0
package/react.d.ts +102 -0
package/react.d.ts.map +1 -0
package/react.js +361 -0
package/src/adapters.ts +1 -0
package/src/index.ts +430 -0
package/src/jwt.ts +9 -0
package/src/lib/actions.ts +144 -0
package/src/lib/client.ts +245 -0
package/src/lib/env.ts +36 -0
package/src/lib/index.ts +313 -0
package/src/lib/types.ts +30 -0
package/src/middleware.ts +16 -0
package/src/next.ts +16 -0
package/src/providers/42-school.ts +2 -0
package/src/providers/apple.ts +2 -0
package/src/providers/asgardeo.ts +2 -0
package/src/providers/atlassian.ts +2 -0
package/src/providers/auth0.ts +2 -0
package/src/providers/authentik.ts +2 -0
package/src/providers/azure-ad-b2c.ts +2 -0
package/src/providers/azure-ad.ts +2 -0
package/src/providers/azure-devops.ts +2 -0
package/src/providers/bankid-no.ts +2 -0
package/src/providers/battlenet.ts +2 -0
package/src/providers/beyondidentity.ts +2 -0
package/src/providers/bitbucket.ts +2 -0
package/src/providers/box.ts +2 -0
package/src/providers/boxyhq-saml.ts +2 -0
package/src/providers/bungie.ts +2 -0
package/src/providers/click-up.ts +2 -0
package/src/providers/cognito.ts +2 -0
package/src/providers/coinbase.ts +2 -0
package/src/providers/concept2.ts +2 -0
package/src/providers/credentials.ts +2 -0
package/src/providers/descope.ts +2 -0
package/src/providers/discord.ts +2 -0
package/src/providers/dribbble.ts +2 -0
package/src/providers/dropbox.ts +2 -0
package/src/providers/duende-identity-server6.ts +2 -0
package/src/providers/email.ts +2 -0
package/src/providers/eventbrite.ts +2 -0
package/src/providers/eveonline.ts +2 -0
package/src/providers/facebook.ts +2 -0
package/src/providers/faceit.ts +2 -0
package/src/providers/figma.ts +2 -0
package/src/providers/forwardemail.ts +2 -0
package/src/providers/foursquare.ts +2 -0
package/src/providers/freshbooks.ts +2 -0
package/src/providers/frontegg.ts +2 -0
package/src/providers/fusionauth.ts +2 -0
package/src/providers/github.ts +2 -0
package/src/providers/gitlab.ts +2 -0
package/src/providers/google.ts +2 -0
package/src/providers/hubspot.ts +2 -0
package/src/providers/huggingface.ts +2 -0
package/src/providers/identity-server4.ts +2 -0
package/src/providers/index.ts +1 -0
package/src/providers/instagram.ts +2 -0
package/src/providers/kakao.ts +2 -0
package/src/providers/keycloak.ts +2 -0
package/src/providers/kinde.ts +2 -0
package/src/providers/line.ts +2 -0
package/src/providers/linkedin.ts +2 -0
package/src/providers/logto.ts +2 -0
package/src/providers/loops.ts +2 -0
package/src/providers/mailchimp.ts +2 -0
package/src/providers/mailgun.ts +2 -0
package/src/providers/mailru.ts +2 -0
package/src/providers/mastodon.ts +2 -0
package/src/providers/mattermost.ts +2 -0
package/src/providers/medium.ts +2 -0
package/src/providers/microsoft-entra-id.ts +2 -0
package/src/providers/naver.ts +2 -0
package/src/providers/netlify.ts +2 -0
package/src/providers/netsuite.ts +2 -0
package/src/providers/nextcloud.ts +2 -0
package/src/providers/nodemailer.ts +2 -0
package/src/providers/notion.ts +2 -0
package/src/providers/okta.ts +2 -0
package/src/providers/onelogin.ts +2 -0
package/src/providers/ory-hydra.ts +2 -0
package/src/providers/osso.ts +2 -0
package/src/providers/osu.ts +2 -0
package/src/providers/passage.ts +2 -0
package/src/providers/passkey.ts +2 -0
package/src/providers/patreon.ts +2 -0
package/src/providers/ping-id.ts +2 -0
package/src/providers/pinterest.ts +2 -0
package/src/providers/pipedrive.ts +2 -0
package/src/providers/postmark.ts +2 -0
package/src/providers/reddit.ts +2 -0
package/src/providers/resend.ts +2 -0
package/src/providers/roblox.ts +2 -0
package/src/providers/salesforce.ts +2 -0
package/src/providers/sendgrid.ts +2 -0
package/src/providers/simplelogin.ts +2 -0
package/src/providers/slack.ts +2 -0
package/src/providers/spotify.ts +2 -0
package/src/providers/strava.ts +2 -0
package/src/providers/threads.ts +2 -0
package/src/providers/tiktok.ts +2 -0
package/src/providers/todoist.ts +2 -0
package/src/providers/trakt.ts +2 -0
package/src/providers/twitch.ts +2 -0
package/src/providers/twitter.ts +2 -0
package/src/providers/united-effects.ts +2 -0
package/src/providers/vipps.ts +2 -0
package/src/providers/vk.ts +2 -0
package/src/providers/webauthn.ts +2 -0
package/src/providers/webex.ts +2 -0
package/src/providers/wechat.ts +2 -0
package/src/providers/wikimedia.ts +2 -0
package/src/providers/wordpress.ts +2 -0
package/src/providers/workos.ts +2 -0
package/src/providers/yandex.ts +2 -0
package/src/providers/zitadel.ts +2 -0
package/src/providers/zoho.ts +2 -0
package/src/providers/zoom.ts +2 -0
package/src/react.tsx +546 -0
package/src/webauthn.ts +152 -0
package/webauthn.d.ts +9 -0
package/webauthn.d.ts.map +1 -0
package/webauthn.js +92 -0
package/dist/actions-CMtg7FGv.js +0 -1
package/dist/actions-CjQUKaXF.mjs +0 -200
package/dist/client/index.js +0 -1
package/dist/client/index.mjs +0 -484
package/dist/components/AccountPicker.d.ts +0 -11
package/dist/components/OAuthButton.d.ts +0 -11
package/dist/components/PassKeyButton.d.ts +0 -11
package/dist/components/PassKeyRegister.d.ts +0 -10
package/dist/components/TwoFactorSetup.d.ts +0 -8
package/dist/components/TwoFactorVerify.d.ts +0 -9
package/dist/core/account-picker/encryption.d.ts +0 -22
package/dist/core/account-picker/index.d.ts +0 -22
package/dist/core/auth/email-password.d.ts +0 -145
package/dist/core/auth/oauth/index.d.ts +0 -14
package/dist/core/auth/oauth/oauth-handler.d.ts +0 -172
package/dist/core/auth/oauth/pkce.d.ts +0 -168
package/dist/core/auth/oauth/providers.d.ts +0 -198
package/dist/core/auth/oauth/state-store-cookie.d.ts +0 -83
package/dist/core/auth/oauth/state-store-redis.d.ts +0 -25
package/dist/core/auth/oauth/state-store.d.ts +0 -48
package/dist/core/auth/otp.d.ts +0 -184
package/dist/core/auth/passkey.d.ts +0 -35
package/dist/core/auth/password.d.ts +0 -22
package/dist/core/auth/signin-unified.d.ts +0 -33
package/dist/core/auth/two-factor.d.ts +0 -28
package/dist/core/client/index.d.ts +0 -132
package/dist/core/client/token-refresh-manager.d.ts +0 -48
package/dist/core/errors/index.d.ts +0 -269
package/dist/core/index.d.ts +0 -9
package/dist/core/logger/index.d.ts +0 -147
package/dist/core/mulguard/auth-handlers.d.ts +0 -100
package/dist/core/mulguard/defaults.d.ts +0 -58
package/dist/core/mulguard/index.d.ts +0 -9
package/dist/core/mulguard/integration.d.ts +0 -104
package/dist/core/mulguard/oauth-handler.d.ts +0 -93
package/dist/core/mulguard/session-manager.d.ts +0 -94
package/dist/core/security/csrf.d.ts +0 -46
package/dist/core/security/headers.d.ts +0 -24
package/dist/core/security/index.d.ts +0 -132
package/dist/core/security/rate-limit.d.ts +0 -39
package/dist/core/security/security-manager.d.ts +0 -236
package/dist/core/security/validation.d.ts +0 -251
package/dist/core/security/xss.d.ts +0 -20
package/dist/core/session/index.d.ts +0 -35
package/dist/core/session/session-manager.d.ts +0 -235
package/dist/core/types/auth.d.ts +0 -290
package/dist/core/types/errors.d.ts +0 -200
package/dist/core/types/index.d.ts +0 -484
package/dist/core/utils/auth-helpers.d.ts +0 -136
package/dist/core/utils/logger.d.ts +0 -121
package/dist/index/index.js +0 -1
package/dist/index/index.mjs +0 -2736
package/dist/index.d.ts +0 -18
package/dist/mulguard.d.ts +0 -373
package/dist/nextjs/client/hooks.d.ts +0 -122
package/dist/nextjs/client/index.d.ts +0 -13
package/dist/nextjs/client/provider.d.ts +0 -69
package/dist/nextjs/client/server-actions-helper.d.ts +0 -22
package/dist/nextjs/handlers/api.d.ts +0 -10
package/dist/nextjs/handlers/index.d.ts +0 -9
package/dist/nextjs/handlers/route.d.ts +0 -76
package/dist/nextjs/index.d.ts +0 -15
package/dist/nextjs/proxy/index.d.ts +0 -149
package/dist/nextjs/proxy/security.d.ts +0 -9
package/dist/nextjs/server/actions.d.ts +0 -30
package/dist/nextjs/server/auth.d.ts +0 -65
package/dist/nextjs/server/cookies.d.ts +0 -41
package/dist/nextjs/server/index.d.ts +0 -18
package/dist/nextjs/server/oauth-state.d.ts +0 -32
package/dist/nextjs/server/session-helpers.d.ts +0 -24
package/dist/nextjs/server/session.d.ts +0 -144
package/dist/oauth-state-Drwz6fES.js +0 -1
package/dist/oauth-state-pdypStuS.mjs +0 -210
package/dist/server/index.js +0 -1
package/dist/server/index.mjs +0 -29

package/src/index.ts ADDED Viewed

@@ -0,0 +1,430 @@
+/**
+ * MulGuard - Authentication for Next.js with Backend-First Architecture
+ *
+ * ## Installation
+ *
+ * ```bash npm2yarn
+ * npm install mulguard
+ * ```
+ *
+ * ## Environment variable inference
+ *
+ * `MULGUARD_URL` and `MULGUARD_SECRET` are automatically inferred.
+ *
+ * MulGuard can also automatically infer environment variables that are prefixed with `AUTH_`.
+ *
+ * For example `AUTH_GITHUB_ID` and `AUTH_GITHUB_SECRET` will be used as the `clientId` and `clientSecret` options for the GitHub provider.
+ *
+ * :::tip
+ * The environment variable name inferring has the following format for OAuth providers: `AUTH_{PROVIDER}_{ID|SECRET}`.
+ *
+ * `PROVIDER` is the uppercase snake case version of the provider's id, followed by either `ID` or `SECRET` respectively.
+ * :::
+ *
+ * `AUTH_SECRET` and `AUTH_URL` are also supported for backward compatibility.
+ *
+ * To add social login to your app, the configuration becomes:
+ *
+ * ```ts title="auth.ts"
+ * import MulGuard from "mulguard"
+ * import GitHub from "mulguard/providers/github"
+ * export const { handlers, auth } = MulGuard({ providers: [ GitHub ] })
+ * ```
+ *
+ * And the `.env.local` file:
+ *
+ * ```sh title=".env.local"
+ * AUTH_GITHUB_ID=...
+ * AUTH_GITHUB_SECRET=...
+ * AUTH_SECRET=...
+ * ```
+ *
+ * :::tip
+ * In production, `AUTH_SECRET` is a required environment variable - if not set, MulGuard will throw an error. See [MissingSecretError](https://authjs.dev/reference/core/errors#missingsecret) for more details.
+ * :::
+ *
+ * If you need to override the default values for a provider, you can still call it as a function `GitHub({...})` as before.
+ *
+ * ## Lazy initialization
+ * You can also initialize MulGuard lazily, which allows you to access the request context in the configuration in some cases, like Route Handlers, Middleware, API Routes or `getServerSideProps`.
+ * The above example becomes:
+ *
+ * ```ts title="auth.ts"
+ * import MulGuard from "mulguard"
+ * import GitHub from "mulguard/providers/github"
+ * export const { handlers, auth } = MulGuard(req => {
+ *  if (req) {
+ *   console.log(req) // do something with the request
+ *  }
+ *  return { providers: [ GitHub ] }
+ * })
+ * ```
+ *
+ * :::tip
+ * This is useful if you want to customize the configuration based on the request, for example, to add a different provider in staging/dev environments.
+ * :::
+ *
+ * @module mulguard
+ */
+import { Auth, customFetch } from "@mulverse/mulguard-core"
+import { reqWithEnvURL, setEnvDefaults } from "./lib/env.js"
+import { initAuth } from "./lib/index.js"
+import { signIn, signOut, update } from "./lib/actions.js"
+import type { Awaitable, Session } from "@mulverse/mulguard-core/types"
+import type { ProviderId } from "@mulverse/mulguard-core/providers"
+import type {
+  GetServerSidePropsContext,
+  NextApiRequest,
+  NextApiResponse,
+} from "next"
+import type {
+  AppRouteHandlerFn,
+  AppRouteHandlerFnContext,
+} from "./lib/types.js"
+// @ts-expect-error Next.js does not yet correctly use the `package.json#exports` field
+import type { NextRequest, NextMiddleware } from "next/server"
+import type {
+  MulGuardConfig,
+  MulGuardRequest,
+  MulGuardMiddleware,
+} from "./lib/index.js"
+// Type aliases for backward compatibility (exported and available in scope)
+type NextAuthConfig = MulGuardConfig
+type NextAuthRequest = MulGuardRequest
+type NextAuthMiddleware = MulGuardMiddleware
+export type { MulGuardConfig, MulGuardRequest, MulGuardMiddleware }
+export type { NextAuthConfig, NextAuthRequest, NextAuthMiddleware } // Backward compatibility
+export { AuthError, CredentialsSignin } from "@mulverse/mulguard-core/errors"
+export { customFetch }
+export type {
+  Session,
+  Account,
+  Profile,
+  DefaultSession,
+  User,
+} from "@mulverse/mulguard-core/types"
+export type { ServerActionsAdapter } from "@mulverse/mulguard-core/adapters"
+type AppRouteHandlers = Record<
+  "GET" | "POST",
+  (req: NextRequest) => Promise<Response>
+>
+/**
+ * The result of invoking {@link MulGuard|MulGuard}, initialized with the {@link MulGuardConfig}.
+ * It contains methods to set up and interact with MulGuard in your Next.js app.
+ */
+export interface MulGuardResult {
+  /**
+   * The MulGuard [Route Handler](https://beta.nextjs.org/docs/routing/route-handlers) methods. These are used to expose an endpoint for OAuth/Email providers,
+   * as well as REST API endpoints (such as `/api/auth/session`) that can be contacted from the client.
+   *
+   * After initializing MulGuard in `auth.ts`,
+   * re-export these methods.
+   *
+   * In `app/api/auth/[...mulguard]/route.ts`:
+   *
+   * ```ts title="app/api/auth/[...mulguard]/route.ts"
+   * export { GET, POST } from "../../../../auth"
+   * export const runtime = "edge" // optional
+   * ```
+   * Then `auth.ts`:
+   * ```ts title="auth.ts"
+   * // ...
+   * export const { handlers: { GET, POST }, auth } = MulGuard({...})
+   * ```
+   */
+  handlers: AppRouteHandlers
+  /**
+   * A universal method to interact with MulGuard in your Next.js app.
+   * After initializing MulGuard in `auth.ts`, use this method in Middleware, Server Components, Route Handlers (`app/`), and Edge or Node.js API Routes (`pages/`).
+   *
+   * ##### In Middleware
+   *
+   * :::info
+   * Adding `auth` to your Middleware is optional, but recommended to keep the user session alive.
+   * :::
+   *
+   * Authentication is done by the {@link MulGuardConfig.callbacks|callbacks.authorized} callback.
+   * @example
+   * ```ts title="middleware.ts"
+   * export { auth as middleware } from "./auth"
+   * ```
+   *
+   * Alternatively you can wrap your own middleware with `auth`, where `req` is extended with `auth`:
+   * @example
+   * ```ts title="middleware.ts"
+   * import { auth } from "./auth"
+   * export default auth((req) => {
+   *   // req.auth
+   * })
+   * ```
+   *
+   * ```ts
+   * // Optionally, don't invoke Middleware on some paths
+   * // Read more: https://nextjs.org/docs/app/building-your-application/routing/middleware#matcher
+   * export const config = {
+   *   matcher: ["/((?!api|_next/static|_next/image|favicon.ico).*)"],
+   * }
+   * ```
+   *
+   * ##### In Server Components
+   *
+   * @example
+   * ```ts title="app/page.ts"
+   * import { auth } from "../auth"
+   *
+   * export default async function Page() {
+   *   const { user } = await auth()
+   *   return <p>Hello {user?.name}</p>
+   * }
+   * ```
+   *
+   * ##### In Route Handlers
+   * @example
+   * ```ts title="app/api/route.ts"
+   * import { auth } from "../../auth"
+   *
+   * export const POST = auth((req) => {
+   *   // req.auth
+   * })
+   * ```
+   *
+   * ##### In Edge API Routes
+   *
+   * @example
+   * ```ts title="pages/api/protected.ts"
+   * import { auth } from "../../auth"
+   *
+   * export default auth((req) => {
+   *   // req.auth
+   * })
+   *
+   * export const config = { runtime: "edge" }
+   * ```
+   *
+   * ##### In API Routes
+   *
+   * @example
+   * ```ts title="pages/api/protected.ts"
+   * import { auth } from "../auth"
+   * import type { NextApiRequest, NextApiResponse } from "next"
+   *
+   * export default async (req: NextApiRequest, res: NextApiResponse) => {
+   *   const session = await auth(req, res)
+   *   if (session) {
+   *     // Do something with the session
+   *     return res.json("This is protected content.")
+   *   }
+   *   res.status(401).json("You must be signed in.")
+   * }
+   * ```
+   *
+   * ##### In `getServerSideProps`
+   *
+   * @example
+   * ```ts title="pages/protected-ssr.ts"
+   * import { auth } from "../auth"
+   *
+   * export const getServerSideProps: GetServerSideProps = async (context) => {
+   *   const session = await auth(context)
+   *
+   *   if (session) {
+   *     // Do something with the session
+   *     return { props: { session, content: (await res.json()).content } }
+   *   }
+   *
+   *   return { props: {} }
+   * }
+   * ```
+   */
+  auth: ((
+    ...args: [NextApiRequest, NextApiResponse]
+  ) => Promise<Session | null>) &
+    ((...args: []) => Promise<Session | null>) &
+    ((...args: [GetServerSidePropsContext]) => Promise<Session | null>) &
+    ((
+      ...args: [
+        (
+          req: NextAuthRequest,
+          ctx: AppRouteHandlerFnContext
+        ) => ReturnType<AppRouteHandlerFn>,
+      ]
+    ) => AppRouteHandlerFn) &
+    ((...args: [NextAuthMiddleware]) => NextMiddleware)
+  /**
+   * Sign in with a provider. If no provider is specified, the user will be redirected to the sign in page.
+   *
+   * By default, the user is redirected to the current page after signing in. You can override this behavior by setting the `redirectTo` option with a relative path.
+   *
+   * @example
+   * ```ts title="app/layout.tsx"
+   * import { signIn } from "../auth"
+   *
+   * export default function Layout() {
+   *  return (
+   *   <form action={async () => {
+   *     "use server"
+   *     await signIn("github")
+   *   }}>
+   *    <button>Sign in with GitHub</button>
+   *   </form>
+   * )
+   * ```
+   *
+   * If an error occurs during signin, an instance of {@link AuthError} will be thrown. You can catch it like this:
+   * ```ts title="app/layout.tsx"
+   * import { AuthError } from "mulguard"
+   * import { signIn } from "../auth"
+   *
+   * export default function Layout() {
+   *  return (
+   *    <form action={async (formData) => {
+   *      "use server"
+   *      try {
+   *        await signIn("credentials", formData)
+   *     } catch(error) {
+   *       if (error instanceof AuthError) // Handle auth errors
+   *       throw error // Rethrow all other errors
+   *     }
+   *    }}>
+   *     <button>Sign in</button>
+   *   </form>
+   *  )
+   * }
+   * ```
+   *
+   */
+  signIn: <P extends ProviderId, R extends boolean = true>(
+    /** Provider to sign in to */
+    provider?: P, // See: https://github.com/microsoft/TypeScript/issues/29729
+    options?:
+      | FormData
+      | ({
+          /** The relative path to redirect to after signing in. By default, the user is redirected to the current page. */
+          redirectTo?: string
+          /** If set to `false`, the `signIn` method will return the URL to redirect to instead of redirecting automatically. */
+          redirect?: R
+        } & Record<string, any>),
+    authorizationParams?:
+      | string[][]
+      | Record<string, string>
+      | string
+      | URLSearchParams
+  ) => Promise<R extends false ? any : never>
+  /**
+   * Sign out the user. If the session was created using a database strategy, the session will be removed from the database and the related cookie is invalidated.
+   * If the session was created using a JWT, the cookie is invalidated.
+   *
+   * By default the user is redirected to the current page after signing out. You can override this behavior by setting the `redirectTo` option with a relative path.
+   *
+   * @example
+   * ```ts title="app/layout.tsx"
+   * import { signOut } from "../auth"
+   *
+   * export default function Layout() {
+   *  return (
+   *   <form action={async () => {
+   *     "use server"
+   *     await signOut()
+   *   }}>
+   *    <button>Sign out</button>
+   *   </form>
+   * )
+   * ```
+   *
+   *
+   */
+  signOut: <R extends boolean = true>(options?: {
+    /** The relative path to redirect to after signing out. By default, the user is redirected to the current page. */
+    redirectTo?: string
+    /** If set to `false`, the `signOut` method will return the URL to redirect to instead of redirecting automatically. */
+    redirect?: R
+  }) => Promise<R extends false ? any : never>
+  unstable_update: (
+    data: Partial<Session | { user: Partial<Session["user"]> }>
+  ) => Promise<Session | null>
+}
+/**
+ *  Initialize MulGuard.
+ *
+ *  @example
+ * ```ts title="auth.ts"
+ * import MulGuard from "mulguard"
+ * import GitHub from "@mulverse/mulguard-core/providers/github"
+ *
+ * export const { handlers, auth } = MulGuard({ providers: [GitHub] })
+ * ```
+ *
+ * Lazy initialization:
+ *
+ * @example
+ * ```ts title="auth.ts"
+ * import MulGuard from "mulguard"
+ * import GitHub from "@mulverse/mulguard-core/providers/github"
+ *
+ * export const { handlers, auth } = MulGuard(async (req) => {
+ *   console.log(req) // do something with the request
+ *   return {
+ *     providers: [GitHub],
+ *   },
+ * })
+ * ```
+ */
+export default function MulGuard(
+  config:
+    | MulGuardConfig
+    | ((request: NextRequest | undefined) => Awaitable<MulGuardConfig>)
+): MulGuardResult {
+  if (typeof config === "function") {
+    const httpHandler = async (req: NextRequest) => {
+      const _config = await config(req)
+      setEnvDefaults(_config)
+      return Auth(reqWithEnvURL(req), _config)
+    }
+    return {
+      handlers: { GET: httpHandler, POST: httpHandler } as const,
+      // @ts-expect-error
+      auth: initAuth(config, (c) => setEnvDefaults(c)),
+      signIn: async (provider, options, authorizationParams) => {
+        const _config = await config(undefined)
+        setEnvDefaults(_config)
+        return signIn(provider, options, authorizationParams, _config)
+      },
+      signOut: async (options) => {
+        const _config = await config(undefined)
+        setEnvDefaults(_config)
+        return signOut(options, _config)
+      },
+      unstable_update: async (data) => {
+        const _config = await config(undefined)
+        setEnvDefaults(_config)
+        return update(data, _config)
+      },
+    }
+  }
+  setEnvDefaults(config)
+  const httpHandler = (req: NextRequest) => Auth(reqWithEnvURL(req), config)
+  return {
+    handlers: { GET: httpHandler, POST: httpHandler } as const,
+    // @ts-expect-error
+    auth: initAuth(config),
+    signIn: (provider, options, authorizationParams) => {
+      return signIn(provider, options, authorizationParams, config)
+    },
+    signOut: (options) => {
+      return signOut(options, config)
+    },
+    unstable_update: (data) => {
+      return update(data, config)
+    },
+  }
+}

package/src/jwt.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * :::warning Not recommended
+ * In NextAuth.js v5 or newer, we recommend other authentication methods server-side. Read more at: https://authjs.dev/getting-started/migrating-to-v5#authenticating-server-side
+ * :::
+ *
+ * @module jwt
+ */
+export * from "@mulverse/mulguard-core/jwt"

package/src/lib/actions.ts ADDED Viewed

@@ -0,0 +1,144 @@
+import { Auth, raw, skipCSRFCheck, createActionURL } from "@mulverse/mulguard-core"
+// @ts-expect-error Next.js does not yet correctly use the `package.json#exports` field
+import { headers as nextHeaders, cookies } from "next/headers"
+// @ts-expect-error Next.js does not yet correctly use the `package.json#exports` field
+import { redirect } from "next/navigation"
+import type { MulGuardConfig } from "./index.js"
+import type { MulGuardResult, Session } from "../index.js"
+import type { ProviderType } from "@mulverse/mulguard-core/providers"
+type SignInParams = Parameters<MulGuardResult["signIn"]>
+export async function signIn(
+  provider: SignInParams[0],
+  options: SignInParams[1] = {},
+  authorizationParams: SignInParams[2],
+  config: MulGuardConfig
+) {
+  const headers = new Headers(await nextHeaders())
+  const {
+    redirect: shouldRedirect = true,
+    redirectTo,
+    ...rest
+  } = options instanceof FormData ? Object.fromEntries(options) : options
+  const callbackUrl = redirectTo?.toString() ?? headers.get("Referer") ?? "/"
+  const signInURL = createActionURL(
+    "signin",
+    // @ts-expect-error `x-forwarded-proto` is not nullable, next.js sets it by default
+    headers.get("x-forwarded-proto"),
+    headers,
+    process.env,
+    config
+  )
+  if (!provider) {
+    signInURL.searchParams.append("callbackUrl", callbackUrl)
+    if (shouldRedirect) redirect(signInURL.toString())
+    return signInURL.toString()
+  }
+  let url = `${signInURL}/${provider}?${new URLSearchParams(
+    authorizationParams
+  )}`
+  let foundProvider: { id?: SignInParams[0]; type?: ProviderType } = {}
+  for (const providerConfig of config.providers) {
+    const { options, ...defaults } =
+      typeof providerConfig === "function" ? providerConfig() : providerConfig
+    const id = (options?.id as string | undefined) ?? defaults.id
+    if (id === provider) {
+      foundProvider = {
+        id,
+        type: (options?.type as ProviderType | undefined) ?? defaults.type,
+      }
+      break
+    }
+  }
+  if (!foundProvider.id) {
+    const url = `${signInURL}?${new URLSearchParams({ callbackUrl })}`
+    if (shouldRedirect) redirect(url)
+    return url
+  }
+  if (foundProvider.type === "credentials") {
+    url = url.replace("signin", "callback")
+  }
+  headers.set("Content-Type", "application/x-www-form-urlencoded")
+  const body = new URLSearchParams({ ...rest, callbackUrl })
+  const req = new Request(url, { method: "POST", headers, body })
+  const res = await Auth(req, { ...config, raw, skipCSRFCheck })
+  const cookieJar = await cookies()
+  for (const c of res?.cookies ?? []) cookieJar.set(c.name, c.value, c.options)
+  const responseUrl =
+    res instanceof Response ? res.headers.get("Location") : res.redirect
+  // NOTE: if for some unexpected reason the responseUrl is not set,
+  // we redirect to the original url
+  const redirectUrl = responseUrl ?? url
+  if (shouldRedirect) return redirect(redirectUrl)
+  return redirectUrl as any
+}
+type SignOutParams = Parameters<MulGuardResult["signOut"]>
+export async function signOut(
+  options: SignOutParams[0],
+  config: MulGuardConfig
+) {
+  const headers = new Headers(await nextHeaders())
+  headers.set("Content-Type", "application/x-www-form-urlencoded")
+  const url = createActionURL(
+    "signout",
+    // @ts-expect-error `x-forwarded-proto` is not nullable, next.js sets it by default
+    headers.get("x-forwarded-proto"),
+    headers,
+    process.env,
+    config
+  )
+  const callbackUrl = options?.redirectTo ?? headers.get("Referer") ?? "/"
+  const body = new URLSearchParams({ callbackUrl })
+  const req = new Request(url, { method: "POST", headers, body })
+  const res = await Auth(req, { ...config, raw, skipCSRFCheck })
+  const cookieJar = await cookies()
+  for (const c of res?.cookies ?? []) cookieJar.set(c.name, c.value, c.options)
+  if (options?.redirect ?? true) return redirect(res.redirect!)
+  return res as any
+}
+type UpdateParams = Parameters<MulGuardResult["unstable_update"]>
+export async function update(
+  data: UpdateParams[0],
+  config: MulGuardConfig
+): Promise<Session | null> {
+  const headers = new Headers(await nextHeaders())
+  headers.set("Content-Type", "application/json")
+  const url = createActionURL(
+    "session",
+    // @ts-expect-error `x-forwarded-proto` is not nullable, next.js sets it by default
+    headers.get("x-forwarded-proto"),
+    headers,
+    process.env,
+    config
+  )
+  const body = JSON.stringify({ data })
+  const req = new Request(url, { method: "POST", headers, body })
+  const res: any = await Auth(req, { ...config, raw, skipCSRFCheck })
+  const cookieJar = await cookies()
+  for (const c of res?.cookies ?? []) cookieJar.set(c.name, c.value, c.options)
+  return res.body
+}