o-auth-lib 1.0.0

package/README.md

@@ -0,0 +1,165 @@
+# o-auth-lib
+
+[![npm version](https://img.shields.io/npm/v/o-auth-lib.svg)](https://www.npmjs.com/package/o-auth-lib)
+[![License: ISC](https://img.shields.io/badge/License-ISC-yellow.svg)](https://opensource.org/licenses/ISC)
+
+A TypeScript authentication library for OAuth and normal login flows. The package is designed so consuming apps provide credentials and configuration at runtime, keeping the library reusable and secure.
+
+## Installation
+
+```bash
+npm install o-auth-lib react
+```
+
+```bash
+yarn add o-auth-lib react
+```
+
+```bash
+pnpm add o-auth-lib react
+```
+
+> **Requires:** `react@17` or `react@18`
+
+## Browser Support
+
+- Modern browsers with support for:
+  - `crypto.getRandomValues()` (for PKCE)
+  - `crypto.subtle.digest()` (for SHA-256)
+  - `fetch` API
+  - `URLSearchParams`
+
+Targets **ES2019** and above.
+
+## Usage
+
+### OAuth login
+
+`useAuth()` is the recommended hook for browser-based OAuth login flows.
+
+```ts
+import { useAuth } from "o-auth-lib";
+
+const oauthConfig = {
+  authType: "oauth" as const,
+  provider: "google" as const,
+  clientId: import.meta.env.VITE_GOOGLE_CLIENT_ID,
+  redirectUri: import.meta.env.VITE_APP_REDIRECT_URI,
+  scopes: ["openid", "profile", "email"],
+  usePKCE: true,
+};
+
+function LoginButton() {
+  const { execute, loading, error, result } = useAuth(oauthConfig);
+
+  return (
+    <button onClick={() => execute()} disabled={loading}>
+      {loading ? "Signing in..." : "Sign in with Google"}
+      {error && <div>{error}</div>}
+      {result && <div>Authenticated</div>}
+    </button>
+  );
+}
+```
+
+> `usePKCE` is enabled by default for OAuth code flows, so browser apps do not need to use `clientSecret` in the frontend.
+
+### Generic authentication helper
+
+For normal login flows, use `authenticate()` with a configurable auth endpoint.
+
+```ts
+import { authenticate } from "o-auth-lib";
+
+const normalConfig = {
+  authType: "normal" as const,
+  provider: "normal",
+  serviceName: "my-service",
+  authUrl: "https://api.example.com/auth/login",
+  email: "user@example.com",
+  password: "secret-password",
+  contentType: "application/json",
+};
+
+async function login() {
+  const result = await authenticate(normalConfig);
+  console.log(result.accessToken, result.data);
+}
+```
+
+### Custom provider example
+
+```ts
+import { authenticate } from "o-auth-lib";
+
+const customOAuthConfig = {
+  authType: "oauth" as const,
+  provider: {
+    authorizeUrl: "https://custom.example.com/oauth/authorize",
+    tokenUrl: "https://custom.example.com/oauth/token",
+    responseType: "code",
+    scopeSeparator: " ",
+  },
+  clientId: import.meta.env.VITE_CUSTOM_CLIENT_ID,
+  redirectUri: import.meta.env.VITE_APP_REDIRECT_URI,
+  scopes: ["read", "write"],
+};
+
+const result = await authenticate(customOAuthConfig);
+```
+
+## Supported provider presets
+
+- `google`
+- `github`
+- custom provider objects using `provider: { authorizeUrl, tokenUrl, ... }`
+
+## API Reference
+
+### `useAuth(config: AuthConfig): UseAuthResult`
+
+React hook for authentication flows.
+
+**Parameters:**
+- `config` – OAuth or normal auth configuration
+- `authType` – `"oauth"` or `"normal"`
+- `provider` – Provider name or custom preset
+
+**Returns:**
+- `execute()` – Function to trigger authentication
+- `loading` – Boolean indicating if auth is in progress
+- `error` – Error message if authentication failed
+- `result` – `AuthResult` containing access token and response data
+
+### `authenticate(config: AuthConfig): Promise<AuthResult>`
+
+Generic async function for OAuth or normal authentication.
+
+**Returns:**
+- `authType` – Type of authentication used
+- `provider` – Provider name
+- `accessToken` – Access/bearer token if available
+- `refreshToken` – Refresh token if available
+- `data` – Raw response from OAuth provider or auth endpoint
+
+### PKCE Support
+
+PKCE is enabled by default for OAuth authorization code flows. To disable:
+
+```ts
+const config = {
+  authType: "oauth" as const,
+  provider: "google",
+  clientId: "...",
+  redirectUri: "...",
+  usePKCE: false, // Disable PKCE
+};
+```
+
+## Important notes
+
+- Do not store real credentials inside the published package.
+- Pass `clientId` and other credentials from consuming apps, for example via environment variables.
+- `clientSecret` should not be used in browser-only OAuth flows unless the application is a confidential client and the token exchange is performed on a trusted backend.
+- The package publishes only `dist/` via `package.json` `files`, so local `.env` files are not included in the npm package.
+- State validation is automatic and prevents CSRF attacks in OAuth flows.

package/dist/authService.d.ts

@@ -0,0 +1,30 @@
+import { OAuthConfig } from "./oauthService";
+export type NormalAuthConfig = {
+    authType: "normal";
+    provider: "normal" | string;
+    serviceName?: string;
+    authUrl: string;
+    method?: "POST" | "PUT" | "PATCH" | "DELETE";
+    contentType?: "application/json" | "application/x-www-form-urlencoded";
+    email?: string;
+    password?: string;
+    credentials?: Record<string, string | number | boolean>;
+    extraBody?: Record<string, unknown>;
+    headers?: Record<string, string>;
+};
+export type OAuthAuthConfig = OAuthConfig & {
+    authType: "oauth";
+};
+export type AuthConfig = OAuthAuthConfig | NormalAuthConfig;
+export type AuthResult = {
+    authType: "oauth" | "normal";
+    provider: string;
+    serviceName?: string;
+    accessToken?: string | number;
+    refreshToken?: string | number;
+    data: any;
+};
+export declare function authenticate(config: AuthConfig): Promise<AuthResult>;
+export declare function authenticateOAuth(config: OAuthAuthConfig): Promise<AuthResult>;
+export declare function authenticateNormal(config: NormalAuthConfig): Promise<AuthResult>;
+//# sourceMappingURL=authService.d.ts.map

package/dist/authService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authService.d.ts","sourceRoot":"","sources":["../src/authService.ts"],"names":[],"mappings":"AAAA,OAAO,EAKL,WAAW,EACZ,MAAM,gBAAgB,CAAC;AAExB,MAAM,MAAM,gBAAgB,GAAG;IAC7B,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,QAAQ,GAAG,MAAM,CAAC;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,CAAC;IAC7C,WAAW,CAAC,EAAE,kBAAkB,GAAG,mCAAmC,CAAC;IACvE,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,CAAC;IACxD,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,WAAW,GAAG;IAC1C,QAAQ,EAAE,OAAO,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG,eAAe,GAAG,gBAAgB,CAAC;AAE5D,MAAM,MAAM,UAAU,GAAG;IACvB,QAAQ,EAAE,OAAO,GAAG,QAAQ,CAAC;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC9B,YAAY,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC/B,IAAI,EAAE,GAAG,CAAC;CACX,CAAC;AAEF,wBAAsB,YAAY,CAAC,MAAM,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC,CAM1E;AAED,wBAAsB,iBAAiB,CAAC,MAAM,EAAE,eAAe,GAAG,OAAO,CAAC,UAAU,CAAC,CAwBpF;AAsBD,wBAAsB,kBAAkB,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,UAAU,CAAC,CA8BtF"}

package/dist/authService.js

@@ -0,0 +1,76 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.authenticate = authenticate;
+exports.authenticateOAuth = authenticateOAuth;
+exports.authenticateNormal = authenticateNormal;
+const oauthService_1 = require("./oauthService");
+async function authenticate(config) {
+    if (config.authType === "normal") {
+        return authenticateNormal(config);
+    }
+    return authenticateOAuth(config);
+}
+async function authenticateOAuth(config) {
+    const authRequest = await (0, oauthService_1.createOAuthRequest)(config);
+    const oauthResult = await (0, oauthService_1.openAuthPopup)(authRequest.authUrl, config.redirectUri);
+    if (authRequest.state && oauthResult.state !== authRequest.state) {
+        throw new Error("OAuth state mismatch detected.");
+    }
+    if (oauthResult.error) {
+        throw new Error(oauthResult.error);
+    }
+    const tokenResponse = oauthResult.code
+        ? await (0, oauthService_1.fetchToken)(config, oauthResult.code, authRequest.codeVerifier)
+        : oauthResult;
+    return {
+        authType: "oauth",
+        provider: typeof config.provider === "string" ? config.provider : "custom",
+        serviceName: config.provider === "normal" ? "normal" : undefined,
+        accessToken: tokenResponse.access_token || tokenResponse.token || tokenResponse.accessToken,
+        refreshToken: tokenResponse.refresh_token || tokenResponse.refreshToken,
+        data: tokenResponse,
+    };
+}
+function buildNormalBody(config) {
+    const payload = {
+        ...(config.credentials || {}),
+        ...(config.email !== undefined ? { email: config.email } : {}),
+        ...(config.password !== undefined ? { password: config.password } : {}),
+        ...(config.extraBody || {}),
+    };
+    if ((config.contentType || "application/json") === "application/x-www-form-urlencoded") {
+        return new URLSearchParams(Object.entries(payload).reduce((result, [key, value]) => {
+            result[key] = String(value !== null && value !== void 0 ? value : "");
+            return result;
+        }, {})).toString();
+    }
+    return JSON.stringify(payload);
+}
+async function authenticateNormal(config) {
+    const method = config.method || "POST";
+    const contentType = config.contentType || "application/json";
+    const body = buildNormalBody(config);
+    const response = await fetch(config.authUrl, {
+        method,
+        headers: {
+            "Content-Type": contentType,
+            Accept: "application/json",
+            ...config.headers,
+        },
+        body,
+    });
+    if (!response.ok) {
+        const text = await response.text();
+        throw new Error(`Normal auth request failed: ${response.status} ${response.statusText} - ${text}`);
+    }
+    const data = await response.json();
+    return {
+        authType: "normal",
+        provider: config.provider,
+        serviceName: config.serviceName,
+        accessToken: data.access_token || data.token || data.accessToken,
+        refreshToken: data.refresh_token || data.refreshToken,
+        data,
+    };
+}
+//# sourceMappingURL=authService.js.map

package/dist/authService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authService.js","sourceRoot":"","sources":["../src/authService.ts"],"names":[],"mappings":";;AAqCA,oCAMC;AAED,8CAwBC;AAsBD,gDA8BC;AAzHD,iDAMwB;AA+BjB,KAAK,UAAU,YAAY,CAAC,MAAkB;IACnD,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,OAAO,kBAAkB,CAAC,MAAM,CAAC,CAAC;IACpC,CAAC;IAED,OAAO,iBAAiB,CAAC,MAAM,CAAC,CAAC;AACnC,CAAC;AAEM,KAAK,UAAU,iBAAiB,CAAC,MAAuB;IAC7D,MAAM,WAAW,GAAG,MAAM,IAAA,iCAAkB,EAAC,MAAM,CAAC,CAAC;IACrD,MAAM,WAAW,GAAG,MAAM,IAAA,4BAAa,EAAC,WAAW,CAAC,OAAO,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC;IAEjF,IAAI,WAAW,CAAC,KAAK,IAAI,WAAW,CAAC,KAAK,KAAK,WAAW,CAAC,KAAK,EAAE,CAAC;QACjE,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACpD,CAAC;IAED,IAAI,WAAW,CAAC,KAAK,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,WAAW,CAAC,KAAe,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,aAAa,GAAG,WAAW,CAAC,IAAI;QACpC,CAAC,CAAC,MAAM,IAAA,yBAAU,EAAC,MAAM,EAAE,WAAW,CAAC,IAAI,EAAE,WAAW,CAAC,YAAY,CAAC;QACtE,CAAC,CAAC,WAAW,CAAC;IAEhB,OAAO;QACL,QAAQ,EAAE,OAAO;QACjB,QAAQ,EAAE,OAAO,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ;QAC1E,WAAW,EAAE,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;QAChE,WAAW,EAAE,aAAa,CAAC,YAAY,IAAI,aAAa,CAAC,KAAK,IAAI,aAAa,CAAC,WAAW;QAC3F,YAAY,EAAE,aAAa,CAAC,aAAa,IAAI,aAAa,CAAC,YAAY;QACvE,IAAI,EAAE,aAAa;KACpB,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,MAAwB;IAC/C,MAAM,OAAO,GAAG;QACd,GAAG,CAAC,MAAM,CAAC,WAAW,IAAI,EAAE,CAAC;QAC7B,GAAG,CAAC,MAAM,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9D,GAAG,CAAC,MAAM,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC;KAC5B,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,WAAW,IAAI,kBAAkB,CAAC,KAAK,mCAAmC,EAAE,CAAC;QACvF,OAAO,IAAI,eAAe,CACxB,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,CAAyB,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE;YAC9E,MAAM,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,KAAK,aAAL,KAAK,cAAL,KAAK,GAAI,EAAE,CAAC,CAAC;YAClC,OAAO,MAAM,CAAC;QAChB,CAAC,EAAE,EAAE,CAAC,CACP,CAAC,QAAQ,EAAE,CAAC;IACf,CAAC;IAED,OAAO,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;AACjC,CAAC;AAEM,KAAK,UAAU,kBAAkB,CAAC,MAAwB;IAC/D,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC;IACvC,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,kBAAkB,CAAC;IAC7D,MAAM,IAAI,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IAErC,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE;QAC3C,MAAM;QACN,OAAO,EAAE;YACP,cAAc,EAAE,WAAW;YAC3B,MAAM,EAAE,kBAAkB;YAC1B,GAAG,MAAM,CAAC,OAAO;SAClB;QACD,IAAI;KACL,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,MAAM,IAAI,EAAE,CAAC,CAAC;IACrG,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IAEnC,OAAO;QACL,QAAQ,EAAE,QAAQ;QAClB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,WAAW,EAAE,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,WAAW;QAChE,YAAY,EAAE,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,YAAY;QACrD,IAAI;KACL,CAAC;AACJ,CAAC"}

package/dist/authService.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=authService.test.d.ts.map

package/dist/authService.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authService.test.d.ts","sourceRoot":"","sources":["../src/authService.test.ts"],"names":[],"mappings":""}

package/dist/authService.test.js

@@ -0,0 +1,51 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const vitest_1 = require("vitest");
+const authService_1 = require("./authService");
+const originalFetch = global.fetch;
+(0, vitest_1.afterEach)(() => {
+    vitest_1.vi.restoreAllMocks();
+    global.fetch = originalFetch;
+});
+(0, vitest_1.describe)("authService", () => {
+    (0, vitest_1.it)("sends JSON normal auth payload", async () => {
+        const fetchMock = vitest_1.vi.fn(() => Promise.resolve({
+            ok: true,
+            json: async () => ({ access_token: "abc123" }),
+        }));
+        global.fetch = fetchMock;
+        const result = await (0, authService_1.authenticate)({
+            authType: "normal",
+            provider: "normal",
+            authUrl: "https://example.com/login",
+            email: "user@example.com",
+            password: "secret",
+            contentType: "application/json",
+        });
+        (0, vitest_1.expect)(fetchMock).toHaveBeenCalled();
+        (0, vitest_1.expect)(result.accessToken).toBe("abc123");
+    });
+    (0, vitest_1.it)("sends form-urlencoded normal auth payload", async () => {
+        const fetchMock = vitest_1.vi.fn(() => Promise.resolve({
+            ok: true,
+            json: async () => ({ access_token: "abc123" }),
+        }));
+        global.fetch = fetchMock;
+        const result = await (0, authService_1.authenticate)({
+            authType: "normal",
+            provider: "normal",
+            authUrl: "https://example.com/login",
+            email: "user@example.com",
+            password: "secret",
+            contentType: "application/x-www-form-urlencoded",
+        });
+        (0, vitest_1.expect)(fetchMock).toHaveBeenCalledWith("https://example.com/login", vitest_1.expect.objectContaining({
+            method: "POST",
+            headers: vitest_1.expect.objectContaining({
+                "Content-Type": "application/x-www-form-urlencoded",
+            }),
+        }));
+        (0, vitest_1.expect)(result.accessToken).toBe("abc123");
+    });
+});
+//# sourceMappingURL=authService.test.js.map

package/dist/authService.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authService.test.js","sourceRoot":"","sources":["../src/authService.test.ts"],"names":[],"mappings":";;AAAA,mCAA6D;AAC7D,+CAA6C;AAE7C,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC;AAEnC,IAAA,kBAAS,EAAC,GAAG,EAAE;IACb,WAAE,CAAC,eAAe,EAAE,CAAC;IACrB,MAAM,CAAC,KAAK,GAAG,aAAa,CAAC;AAC/B,CAAC,CAAC,CAAC;AAEH,IAAA,iBAAQ,EAAC,aAAa,EAAE,GAAG,EAAE;IAC3B,IAAA,WAAE,EAAC,gCAAgC,EAAE,KAAK,IAAI,EAAE;QAC9C,MAAM,SAAS,GAAG,WAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAC3B,OAAO,CAAC,OAAO,CAAC;YACd,EAAE,EAAE,IAAI;YACR,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,YAAY,EAAE,QAAQ,EAAE,CAAC;SACxC,CAAC,CACV,CAAC;QAEF,MAAM,CAAC,KAAK,GAAG,SAAgB,CAAC;QAEhC,MAAM,MAAM,GAAG,MAAM,IAAA,0BAAY,EAAC;YAChC,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,QAAQ;YAClB,OAAO,EAAE,2BAA2B;YACpC,KAAK,EAAE,kBAAkB;YACzB,QAAQ,EAAE,QAAQ;YAClB,WAAW,EAAE,kBAAkB;SAChC,CAAC,CAAC;QAEH,IAAA,eAAM,EAAC,SAAS,CAAC,CAAC,gBAAgB,EAAE,CAAC;QACrC,IAAA,eAAM,EAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,2CAA2C,EAAE,KAAK,IAAI,EAAE;QACzD,MAAM,SAAS,GAAG,WAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAC3B,OAAO,CAAC,OAAO,CAAC;YACd,EAAE,EAAE,IAAI;YACR,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,YAAY,EAAE,QAAQ,EAAE,CAAC;SACxC,CAAC,CACV,CAAC;QAEF,MAAM,CAAC,KAAK,GAAG,SAAgB,CAAC;QAEhC,MAAM,MAAM,GAAG,MAAM,IAAA,0BAAY,EAAC;YAChC,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,QAAQ;YAClB,OAAO,EAAE,2BAA2B;YACpC,KAAK,EAAE,kBAAkB;YACzB,QAAQ,EAAE,QAAQ;YAClB,WAAW,EAAE,mCAAmC;SACjD,CAAC,CAAC;QAEH,IAAA,eAAM,EAAC,SAAS,CAAC,CAAC,oBAAoB,CACpC,2BAA2B,EAC3B,eAAM,CAAC,gBAAgB,CAAC;YACtB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,eAAM,CAAC,gBAAgB,CAAC;gBAC/B,cAAc,EAAE,mCAAmC;aACpD,CAAC;SACH,CAAC,CACH,CAAC;QACF,IAAA,eAAM,EAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,5 @@
+export * from "./oauthService";
+export * from "./authService";
+export * from "./useAuth";
+export * from "./useOAuth";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,eAAe,CAAC;AAC9B,cAAc,WAAW,CAAC;AAC1B,cAAc,YAAY,CAAC"}

package/dist/index.js

@@ -0,0 +1,21 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./oauthService"), exports);
+__exportStar(require("./authService"), exports);
+__exportStar(require("./useAuth"), exports);
+__exportStar(require("./useOAuth"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,iDAA+B;AAC/B,gDAA8B;AAC9B,4CAA0B;AAC1B,6CAA2B"}

package/dist/oauthService.d.ts

@@ -0,0 +1,50 @@
+export type OAuthProviderName = "google" | "github" | "normal";
+export type OAuthProviderPreset = {
+    authorizeUrl: string;
+    tokenUrl: string;
+    scopeSeparator?: string;
+    responseType?: "code" | "token";
+    additionalAuthParams?: Record<string, string>;
+    defaultScopes?: string[];
+};
+export type OAuthConfig = {
+    provider: OAuthProviderName | OAuthProviderPreset;
+    clientId: string;
+    clientSecret?: string;
+    redirectUri: string;
+    scopes?: string[];
+    state?: string;
+    extraAuthParams?: Record<string, string>;
+    extraTokenParams?: Record<string, string>;
+    responseType?: "code" | "token";
+    grantType?: string;
+    usePKCE?: boolean;
+    pkceMethod?: "S256" | "plain";
+    codeVerifier?: string;
+};
+export type OAuthAuthResponse = {
+    code?: string;
+    access_token?: string;
+    token_type?: string;
+    expires_in?: number;
+    refresh_token?: string;
+    error?: string;
+    state?: string;
+    [key: string]: string | number | undefined;
+};
+export type OAuthRequest = {
+    authUrl: string;
+    codeVerifier?: string;
+    state?: string;
+};
+export declare function buildAuthUrl(config: OAuthConfig): string;
+export declare function parseAuthResponse(url: string): OAuthAuthResponse;
+export declare function createOAuthRequest(config: OAuthConfig): Promise<OAuthRequest>;
+export declare function fetchToken(config: OAuthConfig, code: string, codeVerifier?: string): Promise<OAuthAuthResponse>;
+export type PopupOptions = {
+    width?: number;
+    height?: number;
+    timeoutMs?: number;
+};
+export declare function openAuthPopup(authUrl: string, redirectUri: string, options?: PopupOptions): Promise<OAuthAuthResponse>;
+//# sourceMappingURL=oauthService.d.ts.map

package/dist/oauthService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauthService.d.ts","sourceRoot":"","sources":["../src/oauthService.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,iBAAiB,GAAG,QAAQ,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAE/D,MAAM,MAAM,mBAAmB,GAAG;IAChC,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IAChC,oBAAoB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;CAC1B,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG;IACxB,QAAQ,EAAE,iBAAiB,GAAG,mBAAmB,CAAC;IAClD,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACzC,gBAAgB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IAChC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IAC9B,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC9B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC;CAC5C,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAAC;AAqEF,wBAAgB,YAAY,CAAC,MAAM,EAAE,WAAW,GAAG,MAAM,CAiBxD;AAED,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,iBAAiB,CAmBhE;AAED,wBAAsB,kBAAkB,CAAC,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,CA2BnF;AAED,wBAAsB,UAAU,CAC9B,MAAM,EAAE,WAAW,EACnB,IAAI,EAAE,MAAM,EACZ,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC,iBAAiB,CAAC,CAsC5B;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,wBAAsB,aAAa,CACjC,OAAO,EAAE,MAAM,EACf,WAAW,EAAE,MAAM,EACnB,OAAO,GAAE,YAAiB,GACzB,OAAO,CAAC,iBAAiB,CAAC,CAiD5B"}

package/dist/oauthService.js

@@ -0,0 +1,202 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.buildAuthUrl = buildAuthUrl;
+exports.parseAuthResponse = parseAuthResponse;
+exports.createOAuthRequest = createOAuthRequest;
+exports.fetchToken = fetchToken;
+exports.openAuthPopup = openAuthPopup;
+const providerPresets = {
+    google: {
+        authorizeUrl: "https://accounts.google.com/o/oauth2/v2/auth",
+        tokenUrl: "https://oauth2.googleapis.com/token",
+        scopeSeparator: " ",
+        responseType: "code",
+        defaultScopes: ["openid", "profile", "email"],
+    },
+    github: {
+        authorizeUrl: "https://github.com/login/oauth/authorize",
+        tokenUrl: "https://github.com/login/oauth/access_token",
+        scopeSeparator: " ",
+        responseType: "code",
+        additionalAuthParams: {
+            allow_signup: "true",
+        },
+    },
+    normal: {
+        authorizeUrl: "",
+        tokenUrl: "",
+        scopeSeparator: " ",
+        responseType: "code",
+    },
+};
+function normalizeProvider(config) {
+    if (typeof config.provider === "string") {
+        const preset = providerPresets[config.provider];
+        if (!preset) {
+            throw new Error(`OAuth provider preset "${config.provider}" is not defined.`);
+        }
+        return preset;
+    }
+    return config.provider;
+}
+function generateRandomString(length = 64) {
+    const array = new Uint8Array(length);
+    crypto.getRandomValues(array);
+    return Array.from(array)
+        .map((byte) => (byte % 36).toString(36))
+        .join("");
+}
+async function sha256(value) {
+    const encoder = new TextEncoder();
+    const data = encoder.encode(value);
+    return crypto.subtle.digest("SHA-256", data);
+}
+function base64UrlEncode(buffer) {
+    const bytes = new Uint8Array(buffer);
+    let binary = "";
+    bytes.forEach((byte) => {
+        binary += String.fromCharCode(byte);
+    });
+    return btoa(binary).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+}
+async function createCodeChallenge(verifier, method = "S256") {
+    if (method === "plain") {
+        return verifier;
+    }
+    const digest = await sha256(verifier);
+    return base64UrlEncode(digest);
+}
+function buildAuthUrl(config) {
+    const provider = normalizeProvider(config);
+    if (!provider.authorizeUrl) {
+        throw new Error("The OAuth provider authorizeUrl is required.");
+    }
+    const params = new URLSearchParams({
+        response_type: config.responseType || provider.responseType || "code",
+        client_id: config.clientId,
+        redirect_uri: config.redirectUri,
+        scope: (config.scopes || provider.defaultScopes || []).join(provider.scopeSeparator || " "),
+        state: config.state || generateRandomString(16),
+        ...provider.additionalAuthParams,
+        ...config.extraAuthParams,
+    });
+    return `${provider.authorizeUrl}?${params.toString()}`;
+}
+function parseAuthResponse(url) {
+    const parsed = new URL(url, window.location.origin);
+    const searchParams = new URLSearchParams(parsed.search);
+    const hashParams = new URLSearchParams(parsed.hash.replace(/^#/, ""));
+    const combined = new URLSearchParams();
+    searchParams.forEach((value, key) => combined.append(key, value));
+    hashParams.forEach((value, key) => combined.append(key, value));
+    const result = {};
+    combined.forEach((value, key) => {
+        if (key === "expires_in") {
+            result.expires_in = Number(value);
+        }
+        else {
+            result[key] = value;
+        }
+    });
+    return result;
+}
+async function createOAuthRequest(config) {
+    const provider = normalizeProvider(config);
+    if (!provider.authorizeUrl) {
+        throw new Error("The OAuth provider authorizeUrl is required.");
+    }
+    const state = config.state || generateRandomString(16);
+    const extraAuthParams = {
+        ...provider.additionalAuthParams,
+        ...config.extraAuthParams,
+    };
+    let codeVerifier;
+    if (config.usePKCE !== false && (config.responseType || provider.responseType || "code") === "code") {
+        codeVerifier = config.codeVerifier || generateRandomString(128);
+        const codeChallenge = await createCodeChallenge(codeVerifier, config.pkceMethod || "S256");
+        extraAuthParams.code_challenge = codeChallenge;
+        extraAuthParams.code_challenge_method = config.pkceMethod || "S256";
+    }
+    const authUrl = buildAuthUrl({
+        ...config,
+        state,
+        extraAuthParams,
+    });
+    return { authUrl, codeVerifier, state };
+}
+async function fetchToken(config, code, codeVerifier) {
+    const provider = normalizeProvider(config);
+    if (!provider.tokenUrl) {
+        throw new Error("The OAuth provider tokenUrl is required to exchange the authorization code.");
+    }
+    const body = new URLSearchParams({
+        grant_type: config.grantType || "authorization_code",
+        code,
+        redirect_uri: config.redirectUri,
+        client_id: config.clientId,
+        ...config.extraTokenParams,
+    });
+    if (codeVerifier) {
+        body.append("code_verifier", codeVerifier);
+    }
+    if (config.clientSecret) {
+        body.append("client_secret", config.clientSecret);
+    }
+    const response = await fetch(provider.tokenUrl, {
+        method: "POST",
+        headers: {
+            "Content-Type": "application/x-www-form-urlencoded",
+            Accept: "application/json",
+        },
+        body: body.toString(),
+    });
+    if (!response.ok) {
+        const text = await response.text();
+        throw new Error(`Token request failed: ${response.status} ${response.statusText} - ${text}`);
+    }
+    const data = await response.json();
+    return data;
+}
+async function openAuthPopup(authUrl, redirectUri, options = {}) {
+    var _a;
+    const width = options.width || 500;
+    const height = options.height || 650;
+    const left = window.screenX + (window.innerWidth - width) / 2;
+    const top = window.screenY + (window.innerHeight - height) / 2;
+    const popup = window.open(authUrl, "oauth_popup", `width=${width},height=${height},left=${left},top=${top},resizable,scrollbars=yes`);
+    if (!popup) {
+        throw new Error("Unable to open OAuth popup window. Please allow popups for this site.");
+    }
+    const start = Date.now();
+    const timeoutMs = (_a = options.timeoutMs) !== null && _a !== void 0 ? _a : 120000;
+    return new Promise((resolve, reject) => {
+        const interval = window.setInterval(() => {
+            if (popup.closed) {
+                clearInterval(interval);
+                reject(new Error("OAuth popup was closed before authentication completed."));
+                return;
+            }
+            try {
+                const popupUrl = popup.location.href;
+                if (!popupUrl || popupUrl === "about:blank") {
+                    return;
+                }
+                if (popupUrl.startsWith(redirectUri) || popup.location.search.includes("code") || popup.location.hash) {
+                    const result = parseAuthResponse(popupUrl);
+                    popup.close();
+                    clearInterval(interval);
+                    resolve(result);
+                }
+            }
+            catch (error) {
+                // Cross-origin access is expected until redirect back to our origin.
+            }
+            if (Date.now() - start > timeoutMs) {
+                clearInterval(interval);
+                popup.close();
+                reject(new Error("OAuth popup timeout exceeded."));
+            }
+        }, 500);
+    });
+}
+//# sourceMappingURL=oauthService.js.map

package/dist/oauthService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauthService.js","sourceRoot":"","sources":["../src/oauthService.ts"],"names":[],"mappings":";;AA+GA,oCAiBC;AAED,8CAmBC;AAED,gDA2BC;AAED,gCA0CC;AAQD,sCAqDC;AA/OD,MAAM,eAAe,GAAmD;IACtE,MAAM,EAAE;QACN,YAAY,EAAE,8CAA8C;QAC5D,QAAQ,EAAE,qCAAqC;QAC/C,cAAc,EAAE,GAAG;QACnB,YAAY,EAAE,MAAM;QACpB,aAAa,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;KAC9C;IACD,MAAM,EAAE;QACN,YAAY,EAAE,0CAA0C;QACxD,QAAQ,EAAE,6CAA6C;QACvD,cAAc,EAAE,GAAG;QACnB,YAAY,EAAE,MAAM;QACpB,oBAAoB,EAAE;YACpB,YAAY,EAAE,MAAM;SACrB;KACF;IACD,MAAM,EAAE;QACN,YAAY,EAAE,EAAE;QAChB,QAAQ,EAAE,EAAE;QACZ,cAAc,EAAE,GAAG;QACnB,YAAY,EAAE,MAAM;KACrB;CACF,CAAC;AAEF,SAAS,iBAAiB,CAAC,MAAmB;IAC5C,IAAI,OAAO,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACxC,MAAM,MAAM,GAAG,eAAe,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAChD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,0BAA0B,MAAM,CAAC,QAAQ,mBAAmB,CAAC,CAAC;QAChF,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IACD,OAAO,MAAM,CAAC,QAAQ,CAAC;AACzB,CAAC;AAED,SAAS,oBAAoB,CAAC,MAAM,GAAG,EAAE;IACvC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IAC9B,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC;SACrB,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,IAAI,GAAG,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;SACvC,IAAI,CAAC,EAAE,CAAC,CAAC;AACd,CAAC;AAED,KAAK,UAAU,MAAM,CAAC,KAAa;IACjC,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACnC,OAAO,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;AAC/C,CAAC;AAED,SAAS,eAAe,CAAC,MAAmB;IAC1C,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE;QACrB,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IACH,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACjF,CAAC;AAED,KAAK,UAAU,mBAAmB,CAAC,QAAgB,EAAE,SAA2B,MAAM;IACpF,IAAI,MAAM,KAAK,OAAO,EAAE,CAAC;QACvB,OAAO,QAAQ,CAAC;IAClB,CAAC;IACD,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;IACtC,OAAO,eAAe,CAAC,MAAM,CAAC,CAAC;AACjC,CAAC;AAED,SAAgB,YAAY,CAAC,MAAmB;IAC9C,MAAM,QAAQ,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAC3C,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;QACjC,aAAa,EAAE,MAAM,CAAC,YAAY,IAAI,QAAQ,CAAC,YAAY,IAAI,MAAM;QACrE,SAAS,EAAE,MAAM,CAAC,QAAQ;QAC1B,YAAY,EAAE,MAAM,CAAC,WAAW;QAChC,KAAK,EAAE,CAAC,MAAM,CAAC,MAAM,IAAI,QAAQ,CAAC,aAAa,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,IAAI,GAAG,CAAC;QAC3F,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,oBAAoB,CAAC,EAAE,CAAC;QAC/C,GAAG,QAAQ,CAAC,oBAAoB;QAChC,GAAG,MAAM,CAAC,eAAe;KAC1B,CAAC,CAAC;IAEH,OAAO,GAAG,QAAQ,CAAC,YAAY,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;AACzD,CAAC;AAED,SAAgB,iBAAiB,CAAC,GAAW;IAC3C,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACpD,MAAM,YAAY,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACxD,MAAM,UAAU,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC;IACtE,MAAM,QAAQ,GAAG,IAAI,eAAe,EAAE,CAAC;IAEvC,YAAY,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;IAClE,UAAU,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;IAEhE,MAAM,MAAM,GAAsB,EAAE,CAAC;IACrC,QAAQ,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;QAC9B,IAAI,GAAG,KAAK,YAAY,EAAE,CAAC;YACzB,MAAM,CAAC,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QACpC,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACtB,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC;AAEM,KAAK,UAAU,kBAAkB,CAAC,MAAmB;IAC1D,MAAM,QAAQ,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAC3C,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,oBAAoB,CAAC,EAAE,CAAC,CAAC;IACvD,MAAM,eAAe,GAA2B;QAC9C,GAAG,QAAQ,CAAC,oBAAoB;QAChC,GAAG,MAAM,CAAC,eAAe;KAC1B,CAAC;IAEF,IAAI,YAAgC,CAAC;IACrC,IAAI,MAAM,CAAC,OAAO,KAAK,KAAK,IAAI,CAAC,MAAM,CAAC,YAAY,IAAI,QAAQ,CAAC,YAAY,IAAI,MAAM,CAAC,KAAK,MAAM,EAAE,CAAC;QACpG,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,oBAAoB,CAAC,GAAG,CAAC,CAAC;QAChE,MAAM,aAAa,GAAG,MAAM,mBAAmB,CAAC,YAAY,EAAE,MAAM,CAAC,UAAU,IAAI,MAAM,CAAC,CAAC;QAC3F,eAAe,CAAC,cAAc,GAAG,aAAa,CAAC;QAC/C,eAAe,CAAC,qBAAqB,GAAG,MAAM,CAAC,UAAU,IAAI,MAAM,CAAC;IACtE,CAAC;IAED,MAAM,OAAO,GAAG,YAAY,CAAC;QAC3B,GAAG,MAAM;QACT,KAAK;QACL,eAAe;KAChB,CAAC,CAAC;IAEH,OAAO,EAAE,OAAO,EAAE,YAAY,EAAE,KAAK,EAAE,CAAC;AAC1C,CAAC;AAEM,KAAK,UAAU,UAAU,CAC9B,MAAmB,EACnB,IAAY,EACZ,YAAqB;IAErB,MAAM,QAAQ,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAC3C,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;QACvB,MAAM,IAAI,KAAK,CAAC,6EAA6E,CAAC,CAAC;IACjG,CAAC;IAED,MAAM,IAAI,GAAG,IAAI,eAAe,CAAC;QAC/B,UAAU,EAAE,MAAM,CAAC,SAAS,IAAI,oBAAoB;QACpD,IAAI;QACJ,YAAY,EAAE,MAAM,CAAC,WAAW;QAChC,SAAS,EAAE,MAAM,CAAC,QAAQ;QAC1B,GAAG,MAAM,CAAC,gBAAgB;KAC3B,CAAC,CAAC;IAEH,IAAI,YAAY,EAAE,CAAC;QACjB,IAAI,CAAC,MAAM,CAAC,eAAe,EAAE,YAAY,CAAC,CAAC;IAC7C,CAAC;IAED,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;QACxB,IAAI,CAAC,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,YAAY,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,QAAQ,EAAE;QAC9C,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;YACnD,MAAM,EAAE,kBAAkB;SAC3B;QACD,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;KACtB,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,yBAAyB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,MAAM,IAAI,EAAE,CAAC,CAAC;IAC/F,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,OAAO,IAAyB,CAAC;AACnC,CAAC;AAQM,KAAK,UAAU,aAAa,CACjC,OAAe,EACf,WAAmB,EACnB,UAAwB,EAAE;;IAE1B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,GAAG,CAAC;IACnC,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,GAAG,CAAC;IACrC,MAAM,IAAI,GAAG,MAAM,CAAC,OAAO,GAAG,CAAC,MAAM,CAAC,UAAU,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC;IAC9D,MAAM,GAAG,GAAG,MAAM,CAAC,OAAO,GAAG,CAAC,MAAM,CAAC,WAAW,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;IAC/D,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CACvB,OAAO,EACP,aAAa,EACb,SAAS,KAAK,WAAW,MAAM,SAAS,IAAI,QAAQ,GAAG,2BAA2B,CACnF,CAAC;IAEF,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,uEAAuE,CAAC,CAAC;IAC3F,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACzB,MAAM,SAAS,GAAG,MAAA,OAAO,CAAC,SAAS,mCAAI,MAAM,CAAC;IAE9C,OAAO,IAAI,OAAO,CAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACxD,MAAM,QAAQ,GAAG,MAAM,CAAC,WAAW,CAAC,GAAG,EAAE;YACvC,IAAI,KAAK,CAAC,MAAM,EAAE,CAAC;gBACjB,aAAa,CAAC,QAAQ,CAAC,CAAC;gBACxB,MAAM,CAAC,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC,CAAC;gBAC7E,OAAO;YACT,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC;gBACrC,IAAI,CAAC,QAAQ,IAAI,QAAQ,KAAK,aAAa,EAAE,CAAC;oBAC5C,OAAO;gBACT,CAAC;gBAED,IAAI,QAAQ,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;oBACtG,MAAM,MAAM,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;oBAC3C,KAAK,CAAC,KAAK,EAAE,CAAC;oBACd,aAAa,CAAC,QAAQ,CAAC,CAAC;oBACxB,OAAO,CAAC,MAAM,CAAC,CAAC;gBAClB,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,qEAAqE;YACvE,CAAC;YAED,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,GAAG,SAAS,EAAE,CAAC;gBACnC,aAAa,CAAC,QAAQ,CAAC,CAAC;gBACxB,KAAK,CAAC,KAAK,EAAE,CAAC;gBACd,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC,CAAC;YACrD,CAAC;QACH,CAAC,EAAE,GAAG,CAAC,CAAC;IACV,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/oauthService.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=oauthService.test.d.ts.map

package/dist/oauthService.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauthService.test.d.ts","sourceRoot":"","sources":["../src/oauthService.test.ts"],"names":[],"mappings":""}

package/dist/oauthService.test.js

@@ -0,0 +1,26 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const vitest_1 = require("vitest");
+const oauthService_1 = require("./oauthService");
+(0, vitest_1.describe)("oauthService", () => {
+    (0, vitest_1.it)("creates an OAuth request with PKCE and state", async () => {
+        const request = await (0, oauthService_1.createOAuthRequest)({
+            provider: "google",
+            clientId: "test-client",
+            redirectUri: "https://app.test/callback",
+            scopes: ["openid"],
+            usePKCE: true,
+        });
+        (0, vitest_1.expect)(request.authUrl).toContain("code_challenge=");
+        (0, vitest_1.expect)(request.authUrl).toContain("code_challenge_method=S256");
+        (0, vitest_1.expect)(request.authUrl).toContain("state=");
+        (0, vitest_1.expect)(request.codeVerifier).toBeDefined();
+        (0, vitest_1.expect)(request.state).toBeDefined();
+    });
+    (0, vitest_1.it)("parses an OAuth redirect response", () => {
+        const response = (0, oauthService_1.parseAuthResponse)("https://app.test/callback?code=abc123&state=xyz");
+        (0, vitest_1.expect)(response.code).toBe("abc123");
+        (0, vitest_1.expect)(response.state).toBe("xyz");
+    });
+});
+//# sourceMappingURL=oauthService.test.js.map

package/dist/oauthService.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauthService.test.js","sourceRoot":"","sources":["../src/oauthService.test.ts"],"names":[],"mappings":";;AAAA,mCAA8C;AAC9C,iDAAuE;AAEvE,IAAA,iBAAQ,EAAC,cAAc,EAAE,GAAG,EAAE;IAC5B,IAAA,WAAE,EAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC5D,MAAM,OAAO,GAAG,MAAM,IAAA,iCAAkB,EAAC;YACvC,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,aAAa;YACvB,WAAW,EAAE,2BAA2B;YACxC,MAAM,EAAE,CAAC,QAAQ,CAAC;YAClB,OAAO,EAAE,IAAI;SACd,CAAC,CAAC;QAEH,IAAA,eAAM,EAAC,OAAO,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,iBAAiB,CAAC,CAAC;QACrD,IAAA,eAAM,EAAC,OAAO,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;QAChE,IAAA,eAAM,EAAC,OAAO,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAA,eAAM,EAAC,OAAO,CAAC,YAAY,CAAC,CAAC,WAAW,EAAE,CAAC;QAC3C,IAAA,eAAM,EAAC,OAAO,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,mCAAmC,EAAE,GAAG,EAAE;QAC3C,MAAM,QAAQ,GAAG,IAAA,gCAAiB,EAAC,iDAAiD,CAAC,CAAC;QACtF,IAAA,eAAM,EAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACrC,IAAA,eAAM,EAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/useAuth.d.ts

@@ -0,0 +1,9 @@
+import { AuthConfig, AuthResult } from "./authService";
+export type UseAuthResult = {
+    execute: () => Promise<AuthResult>;
+    loading: boolean;
+    error?: string;
+    result?: AuthResult;
+};
+export declare function useAuth(config: AuthConfig): UseAuthResult;
+//# sourceMappingURL=useAuth.d.ts.map

package/dist/useAuth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"useAuth.d.ts","sourceRoot":"","sources":["../src/useAuth.ts"],"names":[],"mappings":"AACA,OAAO,EAAgB,UAAU,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAErE,MAAM,MAAM,aAAa,GAAG;IAC1B,OAAO,EAAE,MAAM,OAAO,CAAC,UAAU,CAAC,CAAC;IACnC,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,UAAU,CAAC;CACrB,CAAC;AAEF,wBAAgB,OAAO,CAAC,MAAM,EAAE,UAAU,GAAG,aAAa,CAuBzD"}

package/dist/useAuth.js

@@ -0,0 +1,29 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.useAuth = useAuth;
+const react_1 = require("react");
+const authService_1 = require("./authService");
+function useAuth(config) {
+    const [loading, setLoading] = (0, react_1.useState)(false);
+    const [error, setError] = (0, react_1.useState)();
+    const [result, setResult] = (0, react_1.useState)();
+    const execute = (0, react_1.useCallback)(async () => {
+        setLoading(true);
+        setError(undefined);
+        try {
+            const response = await (0, authService_1.authenticate)(config);
+            setResult(response);
+            return response;
+        }
+        catch (err) {
+            const message = err instanceof Error ? err.message : String(err);
+            setError(message);
+            throw err;
+        }
+        finally {
+            setLoading(false);
+        }
+    }, [config]);
+    return { execute, loading, error, result };
+}
+//# sourceMappingURL=useAuth.js.map

package/dist/useAuth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"useAuth.js","sourceRoot":"","sources":["../src/useAuth.ts"],"names":[],"mappings":";;AAUA,0BAuBC;AAjCD,iCAA8C;AAC9C,+CAAqE;AASrE,SAAgB,OAAO,CAAC,MAAkB;IACxC,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,IAAA,gBAAQ,EAAC,KAAK,CAAC,CAAC;IAC9C,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,gBAAQ,GAAU,CAAC;IAC7C,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,GAAG,IAAA,gBAAQ,GAAc,CAAC;IAEnD,MAAM,OAAO,GAAG,IAAA,mBAAW,EAAC,KAAK,IAAI,EAAE;QACrC,UAAU,CAAC,IAAI,CAAC,CAAC;QACjB,QAAQ,CAAC,SAAS,CAAC,CAAC;QAEpB,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAA,0BAAY,EAAC,MAAM,CAAC,CAAC;YAC5C,SAAS,CAAC,QAAQ,CAAC,CAAC;YACpB,OAAO,QAAQ,CAAC;QAClB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACjE,QAAQ,CAAC,OAAO,CAAC,CAAC;YAClB,MAAM,GAAG,CAAC;QACZ,CAAC;gBAAS,CAAC;YACT,UAAU,CAAC,KAAK,CAAC,CAAC;QACpB,CAAC;IACH,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC;IAEb,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC;AAC7C,CAAC"}

package/dist/useOAuth.d.ts

@@ -0,0 +1,2 @@
+export { useAuth as useOAuth } from "./useAuth";
+//# sourceMappingURL=useOAuth.d.ts.map

package/dist/useOAuth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"useOAuth.d.ts","sourceRoot":"","sources":["../src/useOAuth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,QAAQ,EAAE,MAAM,WAAW,CAAC"}

package/dist/useOAuth.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.useOAuth = void 0;
+var useAuth_1 = require("./useAuth");
+Object.defineProperty(exports, "useOAuth", { enumerable: true, get: function () { return useAuth_1.useAuth; } });
+//# sourceMappingURL=useOAuth.js.map

package/dist/useOAuth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"useOAuth.js","sourceRoot":"","sources":["../src/useOAuth.ts"],"names":[],"mappings":";;;AAAA,qCAAgD;AAAvC,mGAAA,OAAO,OAAY"}

package/package.json

@@ -0,0 +1,43 @@
+{
+  "name": "o-auth-lib",
+  "version": "1.0.0",
+  "description": "A TypeScript-friendly authentication library for OAuth and custom login flows with PKCE support.",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "prepare": "npm run build",
+    "test": "vitest run"
+  },
+  "keywords": [
+    "oauth",
+    "react",
+    "typescript",
+    "authentication",
+    "pkce"
+  ],
+  "author": "dataxis-labs",
+  "license": "ISC",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/Dataxis-UditSingh/o-auth-lib.git"
+  },
+  "bugs": {
+    "url": "https://github.com/Dataxis-UditSingh/o-auth-lib/issues"
+  },
+  "homepage": "https://github.com/Dataxis-UditSingh/o-auth-lib#readme",
+  "type": "commonjs",
+  "peerDependencies": {
+    "react": "^17 || ^18"
+  },
+  "devDependencies": {
+    "@types/node": "^20.0.0",
+    "@types/react": "^18.0.0",
+    "jsdom": "^29.1.1",
+    "typescript": "^5.0.0",
+    "vitest": "^4.1.7"
+  }
+}