passkey-magic 0.1.0

package/dist/adapters/unstorage.mjs

@@ -0,0 +1,238 @@
+//#region src/adapters/unstorage.ts
+/**
+* Storage adapter backed by [unstorage](https://unstorage.unjs.io).
+* Works with any unstorage driver (memory, redis, fs, cloudflare-kv, etc.).
+*
+* Key schema:
+* ```
+* {base}:user:{id}              → User
+* {base}:user-email:{email}     → userId (secondary index)
+* {base}:cred:{id}              → Credential
+* {base}:user-creds:{userId}    → credentialId[] (index)
+* {base}:session:{id}           → Session
+* {base}:session-token:{token}  → sessionId (secondary index)
+* {base}:user-sessions:{userId} → sessionId[] (index)
+* {base}:challenge:{key}        → { challenge, expiresAt }
+* {base}:magic-link:{token}     → { email, expiresAt }
+* {base}:qr:{id}                → QRSession
+* ```
+*/
+function unstorageAdapter(storage, options = {}) {
+	const base = options.base ?? "auth";
+	const k = (key) => `${base}:${key}`;
+	function serialize(obj) {
+		return JSON.parse(JSON.stringify(obj));
+	}
+	function deserializeUser(raw) {
+		if (!raw) return null;
+		return {
+			...raw,
+			createdAt: new Date(raw.createdAt)
+		};
+	}
+	function deserializeCredential(raw) {
+		if (!raw) return null;
+		const pk = raw.publicKey;
+		return {
+			...raw,
+			publicKey: new Uint8Array(Object.values(pk)),
+			createdAt: new Date(raw.createdAt)
+		};
+	}
+	function deserializeSession(raw) {
+		if (!raw) return null;
+		return {
+			...raw,
+			expiresAt: new Date(raw.expiresAt),
+			createdAt: new Date(raw.createdAt)
+		};
+	}
+	function deserializeQRSession(raw) {
+		if (!raw) return null;
+		return {
+			...raw,
+			expiresAt: new Date(raw.expiresAt),
+			createdAt: new Date(raw.createdAt)
+		};
+	}
+	const adapter = {
+		async createUser(user) {
+			await storage.setItem(k(`user:${user.id}`), serialize(user));
+			if (user.email) await storage.setItem(k(`user-email:${user.email}`), user.id);
+			return { ...user };
+		},
+		async getUserById(id) {
+			return deserializeUser(await storage.getItem(k(`user:${id}`)));
+		},
+		async getUserByEmail(email) {
+			const userId = await storage.getItem(k(`user-email:${email}`));
+			if (!userId) return null;
+			return adapter.getUserById(userId);
+		},
+		async updateUser(id, update) {
+			const raw = await storage.getItem(k(`user:${id}`));
+			if (!raw) throw new Error(`User not found: ${id}`);
+			const user = deserializeUser(raw);
+			const oldEmail = user.email;
+			const updated = {
+				...user,
+				...update
+			};
+			await storage.setItem(k(`user:${id}`), serialize(updated));
+			if (update.email !== void 0 && update.email !== oldEmail) {
+				if (oldEmail) await storage.removeItem(k(`user-email:${oldEmail}`));
+				if (update.email) await storage.setItem(k(`user-email:${update.email}`), id);
+			}
+			return { ...updated };
+		},
+		async deleteUser(id) {
+			const raw = await storage.getItem(k(`user:${id}`));
+			if (!raw) return;
+			const user = deserializeUser(raw);
+			if (user.email) await storage.removeItem(k(`user-email:${user.email}`));
+			await storage.removeItem(k(`user:${id}`));
+		},
+		async createCredential(cred) {
+			await storage.setItem(k(`cred:${cred.id}`), serialize(cred));
+			const indexKey = k(`user-creds:${cred.userId}`);
+			const existing = await storage.getItem(indexKey) ?? [];
+			existing.push(cred.id);
+			await storage.setItem(indexKey, existing);
+			return { ...cred };
+		},
+		async getCredentialById(id) {
+			return deserializeCredential(await storage.getItem(k(`cred:${id}`)));
+		},
+		async getCredentialsByUserId(userId) {
+			const credIds = await storage.getItem(k(`user-creds:${userId}`)) ?? [];
+			const creds = [];
+			for (const id of credIds) {
+				const cred = await adapter.getCredentialById(id);
+				if (cred) creds.push(cred);
+			}
+			return creds;
+		},
+		async updateCredential(id, update) {
+			const raw = await storage.getItem(k(`cred:${id}`));
+			if (!raw) throw new Error(`Credential not found: ${id}`);
+			if (update.counter !== void 0) raw.counter = update.counter;
+			if (update.label !== void 0) raw.label = update.label;
+			await storage.setItem(k(`cred:${id}`), raw);
+		},
+		async deleteCredential(id) {
+			const raw = await storage.getItem(k(`cred:${id}`));
+			if (!raw) return;
+			const cred = deserializeCredential(raw);
+			await storage.removeItem(k(`cred:${id}`));
+			const indexKey = k(`user-creds:${cred.userId}`);
+			const existing = await storage.getItem(indexKey) ?? [];
+			await storage.setItem(indexKey, existing.filter((c) => c !== id));
+		},
+		async createSession(session) {
+			await storage.setItem(k(`session:${session.id}`), serialize(session));
+			await storage.setItem(k(`session-token:${session.token}`), session.id);
+			const indexKey = k(`user-sessions:${session.userId}`);
+			const existing = await storage.getItem(indexKey) ?? [];
+			existing.push(session.id);
+			await storage.setItem(indexKey, existing);
+			return { ...session };
+		},
+		async getSessionByToken(token) {
+			const sessionId = await storage.getItem(k(`session-token:${token}`));
+			if (!sessionId) return null;
+			const session = deserializeSession(await storage.getItem(k(`session:${sessionId}`)));
+			if (!session) return null;
+			if (/* @__PURE__ */ new Date() > session.expiresAt) {
+				await adapter.deleteSession(session.id);
+				return null;
+			}
+			return session;
+		},
+		async getSessionsByUserId(userId) {
+			const sessionIds = await storage.getItem(k(`user-sessions:${userId}`)) ?? [];
+			const result = [];
+			for (const id of sessionIds) {
+				const session = deserializeSession(await storage.getItem(k(`session:${id}`)));
+				if (session && /* @__PURE__ */ new Date() <= session.expiresAt) result.push(session);
+			}
+			return result;
+		},
+		async deleteSession(id) {
+			const raw = await storage.getItem(k(`session:${id}`));
+			if (!raw) return;
+			const session = deserializeSession(raw);
+			await storage.removeItem(k(`session:${id}`));
+			await storage.removeItem(k(`session-token:${session.token}`));
+			const indexKey = k(`user-sessions:${session.userId}`);
+			const existing = await storage.getItem(indexKey) ?? [];
+			await storage.setItem(indexKey, existing.filter((s) => s !== id));
+		},
+		async deleteSessionsByUserId(userId) {
+			const sessionIds = await storage.getItem(k(`user-sessions:${userId}`)) ?? [];
+			for (const id of sessionIds) {
+				const raw = await storage.getItem(k(`session:${id}`));
+				if (raw) {
+					const session = deserializeSession(raw);
+					await storage.removeItem(k(`session:${id}`));
+					await storage.removeItem(k(`session-token:${session.token}`));
+				}
+			}
+			await storage.setItem(k(`user-sessions:${userId}`), []);
+		},
+		async storeChallenge(key, challenge, ttlMs) {
+			await storage.setItem(k(`challenge:${key}`), {
+				challenge,
+				expiresAt: Date.now() + ttlMs
+			});
+		},
+		async getChallenge(key) {
+			const raw = await storage.getItem(k(`challenge:${key}`));
+			if (!raw) return null;
+			if (Date.now() > raw.expiresAt) {
+				await storage.removeItem(k(`challenge:${key}`));
+				return null;
+			}
+			return raw.challenge;
+		},
+		async deleteChallenge(key) {
+			await storage.removeItem(k(`challenge:${key}`));
+		},
+		async storeMagicLink(token, email, ttlMs) {
+			await storage.setItem(k(`magic-link:${token}`), {
+				email,
+				expiresAt: Date.now() + ttlMs
+			});
+		},
+		async getMagicLink(token) {
+			const raw = await storage.getItem(k(`magic-link:${token}`));
+			if (!raw) return null;
+			if (Date.now() > raw.expiresAt) {
+				await storage.removeItem(k(`magic-link:${token}`));
+				return null;
+			}
+			return { email: raw.email };
+		},
+		async deleteMagicLink(token) {
+			await storage.removeItem(k(`magic-link:${token}`));
+		},
+		async createQRSession(session) {
+			await storage.setItem(k(`qr:${session.id}`), serialize(session));
+			return { ...session };
+		},
+		async getQRSession(id) {
+			const session = deserializeQRSession(await storage.getItem(k(`qr:${id}`)));
+			if (!session) return null;
+			if (/* @__PURE__ */ new Date() > session.expiresAt && session.state === "pending") session.state = "expired";
+			return session;
+		},
+		async updateQRSession(id, update) {
+			const raw = await storage.getItem(k(`qr:${id}`));
+			if (!raw) return;
+			Object.assign(raw, serialize(update));
+			await storage.setItem(k(`qr:${id}`), raw);
+		}
+	};
+	return adapter;
+}
+//#endregion
+export { unstorageAdapter };

package/dist/better-auth/client.d.mts

@@ -0,0 +1,9 @@
+import { n as passkeyMagicPlugin } from "../index-BoHvgaqz.mjs";
+
+//#region src/better-auth/client.d.ts
+declare const passkeyMagicClientPlugin: () => {
+  id: "passkey-magic";
+  $InferServerPlugin: ReturnType<typeof passkeyMagicPlugin>;
+};
+//#endregion
+export { passkeyMagicClientPlugin };

package/dist/better-auth/client.mjs

@@ -0,0 +1,7 @@
+//#region src/better-auth/client.ts
+const passkeyMagicClientPlugin = () => ({
+	id: "passkey-magic",
+	$InferServerPlugin: {}
+});
+//#endregion
+export { passkeyMagicClientPlugin };

package/dist/better-auth/index.d.mts

@@ -0,0 +1,2 @@
+import { n as passkeyMagicPlugin, t as PasskeyMagicPluginOptions } from "../index-BoHvgaqz.mjs";
+export { PasskeyMagicPluginOptions, passkeyMagicPlugin };