say-auth 1.0.0 → 1.1.0

package/CHANGELOG.md

@@ -0,0 +1,45 @@
+# Changelog
+
+## [1.1.0] - 2024-01-XX
+
+### Added
+- New `useAuthContext` hook for better React 19 compatibility
+- Added `LoginForm` component with built-in validation
+- Added `MFAVerification` component for 2FA flows
+- Added `SessionWarning` component for session expiry notifications
+- Added `setupAuthInterceptors` for automatic token refresh
+- Added environment validation utilities
+- Added error tracking integration support
+- Added security headers utility
+- Added comprehensive TypeScript types
+
+### Changed
+- Improved React 16.8+ through 19 compatibility
+- Enhanced token storage with versioning and migration support
+- Better error messages and debugging information
+- Improved performance with memoized context values
+
+### Fixed
+- Fixed `createContext` error in React 19
+- Fixed token refresh race conditions
+- Fixed MFA verification timing issues
+- Fixed localStorage SSR issues
+
+## [1.0.0] - 2024-01-XX
+
+### Added
+- Initial release of say-auth
+- JWT authentication with refresh tokens
+- MFA/2FA support with TOTP
+- Role-Based Access Control (RBAC)
+- Auto token refresh mechanism
+- Rate limiting for login attempts
+- Audit logging for security events
+- Session management across devices
+- Token blacklisting for secure logout
+- Device fingerprinting for trusted devices
+- Secure encrypted token storage
+- React hooks: `useAuth`, `useProtectedRoute`
+- Components: `AuthProvider`, `ProtectedRoute`, `MFASetup`
+- TypeScript support with full type definitions
+- Next.js 13+ App Router support

package/dist/index.d.mts

@@ -1,6 +1,7 @@
 import { AxiosInstance } from 'axios';
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import React$1 from 'react';
+import * as React$1 from 'react';
+import React__default from 'react';
 
 interface User {
     id: string;
@@ -35,6 +36,11 @@ interface AuthState {
     isLoading: boolean;
     error: string | null;
 }
+interface MFASetup$1 {
+    secret: string;
+    qrCode: string;
+    backupCodes: string[];
+}
 interface MFAVerify {
     userId: string;
     code: string;
@@ -87,6 +93,9 @@ declare class AuthService {
     getAxiosInstance(): AxiosInstance;
     getUser(): User | null;
     getState(): AuthState;
+    setupMFA(): Promise<MFASetup$1>;
+    disableMFA(code: string): Promise<void>;
+    updateUser(userData: Partial<User>): Promise<User>;
 }
 
 declare class SecureTokenStorage {
@@ -244,18 +253,59 @@ declare function useProtectedRoute(redirectTo?: string, requiredRole?: string |
     isLoading: boolean;
 };
 
+interface AuthContextValue extends AuthState {
+    login: (credentials: LoginCredentials) => Promise<{
+        requiresMFA: boolean;
+        user?: User;
+    }>;
+    register: (data: RegisterData) => Promise<User>;
+    logout: () => Promise<void>;
+    logoutAllDevices: () => Promise<void>;
+    refreshSession: () => Promise<void>;
+    changePassword: (currentPassword: string, newPassword: string) => Promise<void>;
+    hasRole: (role: string | string[]) => boolean;
+    getAxiosInstance: () => any;
+    getUser: () => User | null;
+    verifyMFA: (code: string, trustDevice?: boolean) => Promise<User>;
+    setupMFA: () => Promise<MFASetup$1>;
+    disableMFA: (code: string) => Promise<void>;
+    updateUser: (userData: Partial<User>) => Promise<void>;
+    clearError: () => void;
+    isTokenExpired: () => boolean;
+    getAccessToken: () => string | null;
+    healthCheck: () => Promise<boolean>;
+    refreshTokens: () => Promise<void>;
+    getRemainingSessionTime: () => number;
+    extendSession: () => Promise<void>;
+}
 interface AuthProviderProps {
-    children: React$1.ReactNode;
+    children: React__default.ReactNode;
     apiUrl?: string;
+    onError?: (error: string) => void;
+    onSessionExpired?: () => void;
+    onLogin?: (user: User) => void;
+    onLogout?: () => void;
+    autoRefresh?: boolean;
+    refreshThreshold?: number;
 }
-declare function AuthProvider({ children, apiUrl }: AuthProviderProps): react_jsx_runtime.JSX.Element;
+declare function AuthProvider({ children, apiUrl, onError, onSessionExpired, onLogin, onLogout, autoRefresh, refreshThreshold }: AuthProviderProps): react_jsx_runtime.JSX.Element;
+declare function useAuthContext(): AuthContextValue;
 
 interface ProtectedRouteProps {
     children: React.ReactNode;
     requiredRole?: string | string[];
     fallback?: React.ReactNode;
+    redirectTo?: string;
 }
-declare function ProtectedRoute({ children, requiredRole, fallback }: ProtectedRouteProps): react_jsx_runtime.JSX.Element | null;
+declare function ProtectedRoute({ children, requiredRole, fallback, redirectTo }: ProtectedRouteProps): string | number | true | Iterable<React$1.ReactNode> | react_jsx_runtime.JSX.Element | null;
+
+interface LoginFormProps {
+    onSubmit: (email: string, password: string) => Promise<void>;
+    isLoading?: boolean;
+    error?: string;
+    className?: string;
+}
+declare function LoginForm({ onSubmit, isLoading, error, className }: LoginFormProps): react_jsx_runtime.JSX.Element;
 
 interface MFASetupProps {
     userId: string;
@@ -280,6 +330,8 @@ declare function setupAuthInterceptors(axiosInstance: AxiosInstance, baseURL: st
 declare function cn(...classes: (string | undefined | false)[]): string;
 declare function getErrorMessage(error: unknown): string;
 declare function isValidEmail(email: string): boolean;
+declare function formatDate(date: Date): string;
+declare function generateRandomString(length: number): string;
 
 declare const AUTH_CONFIG: {
     tokenRefreshThreshold: number;
@@ -309,4 +361,22 @@ declare const API_ENDPOINTS: {
     audit: string;
 };
 
-export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthProvider, AuthService, type AuthState, type AuthTokens, DeviceFingerprint, type LoginCredentials, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, STORAGE_KEYS, SessionManager, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, cn, getErrorMessage, isValidEmail, setupAuthInterceptors, useAuth, useProtectedRoute };
+declare function validateEnvironment(): void;
+
+interface ErrorTracker {
+    captureException(error: Error, context?: Record<string, any>): void;
+    captureMessage(message: string, context?: Record<string, any>): void;
+}
+declare let errorTracker: ErrorTracker;
+declare function initErrorTracker(tracker: ErrorTracker): void;
+
+declare const securityHeaders: {
+    'X-Frame-Options': string;
+    'X-Content-Type-Options': string;
+    'X-XSS-Protection': string;
+    'Referrer-Policy': string;
+    'Permissions-Policy': string;
+};
+declare function applySecurityHeaders(response: Response): Response;
+
+export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthProvider, AuthService, type AuthState, type AuthTokens, DeviceFingerprint, type LoginCredentials, LoginForm, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, STORAGE_KEYS, SessionManager, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, applySecurityHeaders, cn, errorTracker, formatDate, generateRandomString, getErrorMessage, initErrorTracker, isValidEmail, securityHeaders, setupAuthInterceptors, useAuth, useAuthContext, useProtectedRoute, validateEnvironment };

package/dist/index.d.ts

@@ -1,6 +1,7 @@
 import { AxiosInstance } from 'axios';
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import React$1 from 'react';
+import * as React$1 from 'react';
+import React__default from 'react';
 
 interface User {
     id: string;
@@ -35,6 +36,11 @@ interface AuthState {
     isLoading: boolean;
     error: string | null;
 }
+interface MFASetup$1 {
+    secret: string;
+    qrCode: string;
+    backupCodes: string[];
+}
 interface MFAVerify {
     userId: string;
     code: string;
@@ -87,6 +93,9 @@ declare class AuthService {
     getAxiosInstance(): AxiosInstance;
     getUser(): User | null;
     getState(): AuthState;
+    setupMFA(): Promise<MFASetup$1>;
+    disableMFA(code: string): Promise<void>;
+    updateUser(userData: Partial<User>): Promise<User>;
 }
 
 declare class SecureTokenStorage {
@@ -244,18 +253,59 @@ declare function useProtectedRoute(redirectTo?: string, requiredRole?: string |
     isLoading: boolean;
 };
 
+interface AuthContextValue extends AuthState {
+    login: (credentials: LoginCredentials) => Promise<{
+        requiresMFA: boolean;
+        user?: User;
+    }>;
+    register: (data: RegisterData) => Promise<User>;
+    logout: () => Promise<void>;
+    logoutAllDevices: () => Promise<void>;
+    refreshSession: () => Promise<void>;
+    changePassword: (currentPassword: string, newPassword: string) => Promise<void>;
+    hasRole: (role: string | string[]) => boolean;
+    getAxiosInstance: () => any;
+    getUser: () => User | null;
+    verifyMFA: (code: string, trustDevice?: boolean) => Promise<User>;
+    setupMFA: () => Promise<MFASetup$1>;
+    disableMFA: (code: string) => Promise<void>;
+    updateUser: (userData: Partial<User>) => Promise<void>;
+    clearError: () => void;
+    isTokenExpired: () => boolean;
+    getAccessToken: () => string | null;
+    healthCheck: () => Promise<boolean>;
+    refreshTokens: () => Promise<void>;
+    getRemainingSessionTime: () => number;
+    extendSession: () => Promise<void>;
+}
 interface AuthProviderProps {
-    children: React$1.ReactNode;
+    children: React__default.ReactNode;
     apiUrl?: string;
+    onError?: (error: string) => void;
+    onSessionExpired?: () => void;
+    onLogin?: (user: User) => void;
+    onLogout?: () => void;
+    autoRefresh?: boolean;
+    refreshThreshold?: number;
 }
-declare function AuthProvider({ children, apiUrl }: AuthProviderProps): react_jsx_runtime.JSX.Element;
+declare function AuthProvider({ children, apiUrl, onError, onSessionExpired, onLogin, onLogout, autoRefresh, refreshThreshold }: AuthProviderProps): react_jsx_runtime.JSX.Element;
+declare function useAuthContext(): AuthContextValue;
 
 interface ProtectedRouteProps {
     children: React.ReactNode;
     requiredRole?: string | string[];
     fallback?: React.ReactNode;
+    redirectTo?: string;
 }
-declare function ProtectedRoute({ children, requiredRole, fallback }: ProtectedRouteProps): react_jsx_runtime.JSX.Element | null;
+declare function ProtectedRoute({ children, requiredRole, fallback, redirectTo }: ProtectedRouteProps): string | number | true | Iterable<React$1.ReactNode> | react_jsx_runtime.JSX.Element | null;
+
+interface LoginFormProps {
+    onSubmit: (email: string, password: string) => Promise<void>;
+    isLoading?: boolean;
+    error?: string;
+    className?: string;
+}
+declare function LoginForm({ onSubmit, isLoading, error, className }: LoginFormProps): react_jsx_runtime.JSX.Element;
 
 interface MFASetupProps {
     userId: string;
@@ -280,6 +330,8 @@ declare function setupAuthInterceptors(axiosInstance: AxiosInstance, baseURL: st
 declare function cn(...classes: (string | undefined | false)[]): string;
 declare function getErrorMessage(error: unknown): string;
 declare function isValidEmail(email: string): boolean;
+declare function formatDate(date: Date): string;
+declare function generateRandomString(length: number): string;
 
 declare const AUTH_CONFIG: {
     tokenRefreshThreshold: number;
@@ -309,4 +361,22 @@ declare const API_ENDPOINTS: {
     audit: string;
 };
 
-export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthProvider, AuthService, type AuthState, type AuthTokens, DeviceFingerprint, type LoginCredentials, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, STORAGE_KEYS, SessionManager, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, cn, getErrorMessage, isValidEmail, setupAuthInterceptors, useAuth, useProtectedRoute };
+declare function validateEnvironment(): void;
+
+interface ErrorTracker {
+    captureException(error: Error, context?: Record<string, any>): void;
+    captureMessage(message: string, context?: Record<string, any>): void;
+}
+declare let errorTracker: ErrorTracker;
+declare function initErrorTracker(tracker: ErrorTracker): void;
+
+declare const securityHeaders: {
+    'X-Frame-Options': string;
+    'X-Content-Type-Options': string;
+    'X-XSS-Protection': string;
+    'Referrer-Policy': string;
+    'Permissions-Policy': string;
+};
+declare function applySecurityHeaders(response: Response): Response;
+
+export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthProvider, AuthService, type AuthState, type AuthTokens, DeviceFingerprint, type LoginCredentials, LoginForm, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, STORAGE_KEYS, SessionManager, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, applySecurityHeaders, cn, errorTracker, formatDate, generateRandomString, getErrorMessage, initErrorTracker, isValidEmail, securityHeaders, setupAuthInterceptors, useAuth, useAuthContext, useProtectedRoute, validateEnvironment };