npm - say-auth - Versions diffs - 1.1.0 → 1.1.1 - Mend

say-auth 1.1.0 → 1.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -290,6 +290,29 @@ interface AuthProviderProps {
 }
 declare function AuthProvider({ children, apiUrl, onError, onSessionExpired, onLogin, onLogout, autoRefresh, refreshThreshold }: AuthProviderProps): react_jsx_runtime.JSX.Element;
 declare function useAuthContext(): AuthContextValue;
+declare function withAuth<P extends object>(Component: React__default.ComponentType<P>): React__default.FC<P & {
+    auth?: AuthContextValue;
+}>;
+interface RoleBasedProps {
+    children: React__default.ReactNode;
+    roles: string | string[];
+    fallback?: React__default.ReactNode;
+}
+declare function RoleBased({ children, roles, fallback }: RoleBasedProps): react_jsx_runtime.JSX.Element;
+interface MFARequiredProps {
+    children: React__default.ReactNode;
+    redirectTo?: string;
+}
+declare function MFARequired({ children, redirectTo }: MFARequiredProps): react_jsx_runtime.JSX.Element | null;
+declare function AuthStatus(): react_jsx_runtime.JSX.Element;
+declare function SessionTimer(): react_jsx_runtime.JSX.Element | null;
+declare function AuthDebug(): react_jsx_runtime.JSX.Element | null;
+declare function SessionMonitor(): null;
+interface SessionExpiryWarningProps {
+    warningMinutes?: number[];
+    onExtend?: () => void;
+}
+declare function SessionExpiryWarning({ warningMinutes, onExtend }: SessionExpiryWarningProps): react_jsx_runtime.JSX.Element | null;
 interface ProtectedRouteProps {
     children: React.ReactNode;
@@ -379,4 +402,4 @@ declare const securityHeaders: {
 };
 declare function applySecurityHeaders(response: Response): Response;
-export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthProvider, AuthService, type AuthState, type AuthTokens, DeviceFingerprint, type LoginCredentials, LoginForm, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, STORAGE_KEYS, SessionManager, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, applySecurityHeaders, cn, errorTracker, formatDate, generateRandomString, getErrorMessage, initErrorTracker, isValidEmail, securityHeaders, setupAuthInterceptors, useAuth, useAuthContext, useProtectedRoute, validateEnvironment };
+export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthDebug, AuthProvider, AuthService, type AuthState, AuthStatus, type AuthTokens, DeviceFingerprint, type LoginCredentials, LoginForm, MFARequired, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, RoleBased, STORAGE_KEYS, SessionExpiryWarning, SessionManager, SessionMonitor, SessionTimer, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, applySecurityHeaders, cn, errorTracker, formatDate, generateRandomString, getErrorMessage, initErrorTracker, isValidEmail, securityHeaders, setupAuthInterceptors, useAuth, useAuthContext, useProtectedRoute, validateEnvironment, withAuth };

package/dist/index.d.ts CHANGED Viewed

@@ -290,6 +290,29 @@ interface AuthProviderProps {
 }
 declare function AuthProvider({ children, apiUrl, onError, onSessionExpired, onLogin, onLogout, autoRefresh, refreshThreshold }: AuthProviderProps): react_jsx_runtime.JSX.Element;
 declare function useAuthContext(): AuthContextValue;
+declare function withAuth<P extends object>(Component: React__default.ComponentType<P>): React__default.FC<P & {
+    auth?: AuthContextValue;
+}>;
+interface RoleBasedProps {
+    children: React__default.ReactNode;
+    roles: string | string[];
+    fallback?: React__default.ReactNode;
+}
+declare function RoleBased({ children, roles, fallback }: RoleBasedProps): react_jsx_runtime.JSX.Element;
+interface MFARequiredProps {
+    children: React__default.ReactNode;
+    redirectTo?: string;
+}
+declare function MFARequired({ children, redirectTo }: MFARequiredProps): react_jsx_runtime.JSX.Element | null;
+declare function AuthStatus(): react_jsx_runtime.JSX.Element;
+declare function SessionTimer(): react_jsx_runtime.JSX.Element | null;
+declare function AuthDebug(): react_jsx_runtime.JSX.Element | null;
+declare function SessionMonitor(): null;
+interface SessionExpiryWarningProps {
+    warningMinutes?: number[];
+    onExtend?: () => void;
+}
+declare function SessionExpiryWarning({ warningMinutes, onExtend }: SessionExpiryWarningProps): react_jsx_runtime.JSX.Element | null;
 interface ProtectedRouteProps {
     children: React.ReactNode;
@@ -379,4 +402,4 @@ declare const securityHeaders: {
 };
 declare function applySecurityHeaders(response: Response): Response;
-export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthProvider, AuthService, type AuthState, type AuthTokens, DeviceFingerprint, type LoginCredentials, LoginForm, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, STORAGE_KEYS, SessionManager, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, applySecurityHeaders, cn, errorTracker, formatDate, generateRandomString, getErrorMessage, initErrorTracker, isValidEmail, securityHeaders, setupAuthInterceptors, useAuth, useAuthContext, useProtectedRoute, validateEnvironment };
+export { API_ENDPOINTS, AUTH_CONFIG, AuditAction, type AuditEntry$1 as AuditEntry, AuditLogger, AuthDebug, AuthProvider, AuthService, type AuthState, AuthStatus, type AuthTokens, DeviceFingerprint, type LoginCredentials, LoginForm, MFARequired, MFAService, MFASetup, MFAVerification, type MFAVerify, ProtectedRoute, RateLimiter, type RegisterData, RoleBased, STORAGE_KEYS, SessionExpiryWarning, SessionManager, SessionMonitor, SessionTimer, SessionWarning, TokenBlacklist, type TokenBlacklistEntry, TokenManager, SecureTokenStorage as TokenStorage, type User, applySecurityHeaders, cn, errorTracker, formatDate, generateRandomString, getErrorMessage, initErrorTracker, isValidEmail, securityHeaders, setupAuthInterceptors, useAuth, useAuthContext, useProtectedRoute, validateEnvironment, withAuth };

package/dist/index.js CHANGED Viewed

@@ -5,7 +5,7 @@ var CryptoJS = require('crypto-js');
 var OTPAuth = require('otpauth');
 var QRCode = require('qrcode');
 var rfc4648 = require('rfc4648');
-var react = require('react');
+var React = require('react');
 var navigation = require('next/navigation');
 var jsxRuntime = require('react/jsx-runtime');
 var lucideReact = require('lucide-react');
@@ -34,6 +34,7 @@ var axios__default = /*#__PURE__*/_interopDefault(axios);
 var CryptoJS__default = /*#__PURE__*/_interopDefault(CryptoJS);
 var OTPAuth__namespace = /*#__PURE__*/_interopNamespace(OTPAuth);
 var QRCode__default = /*#__PURE__*/_interopDefault(QRCode);
+var React__default = /*#__PURE__*/_interopDefault(React);
 // src/utils/constants.ts
 var AUTH_CONFIG = {
@@ -1017,8 +1018,8 @@ var AuthService = class _AuthService {
   }
 };
 function useAuth(apiUrl) {
-  const [state, setState] = react.useState(AuthService.getInstance(apiUrl).getState());
-  react.useEffect(() => {
+  const [state, setState] = React.useState(AuthService.getInstance(apiUrl).getState());
+  React.useEffect(() => {
     const unsubscribe = AuthService.getInstance(apiUrl).subscribe(setState);
     return unsubscribe;
   }, [apiUrl]);
@@ -1053,7 +1054,7 @@ function useAuth(apiUrl) {
 function useProtectedRoute(redirectTo = "/login", requiredRole) {
   const { isAuthenticated, isLoading, hasRole } = useAuth();
   const router = navigation.useRouter();
-  react.useEffect(() => {
+  React.useEffect(() => {
     if (!isLoading && !isAuthenticated) {
       router.push(redirectTo);
     }
@@ -1063,7 +1064,7 @@ function useProtectedRoute(redirectTo = "/login", requiredRole) {
   }, [isAuthenticated, isLoading, router, redirectTo, requiredRole, hasRole]);
   return { isAuthenticated, isLoading };
 }
-var AuthContext = react.createContext(null);
+var AuthContext = React.createContext(null);
 function AuthProvider({
   children,
   apiUrl,
@@ -1074,17 +1075,17 @@ function AuthProvider({
   autoRefresh = true,
   refreshThreshold = AUTH_CONFIG.tokenRefreshThreshold
 }) {
-  const [state, setState] = react.useState({
+  const [state, setState] = React.useState({
     user: null,
     tokens: null,
     isAuthenticated: false,
     isLoading: true,
     error: null
   });
-  const [refreshTimeout, setRefreshTimeout] = react.useState(null);
-  const [sessionTimeout, setSessionTimeout] = react.useState(null);
-  const authService = react.useMemo(() => AuthService.getInstance(apiUrl), [apiUrl]);
-  react.useEffect(() => {
+  const [refreshTimeout, setRefreshTimeout] = React.useState(null);
+  const [sessionTimeout, setSessionTimeout] = React.useState(null);
+  const authService = React.useMemo(() => AuthService.getInstance(apiUrl), [apiUrl]);
+  React.useEffect(() => {
     const unsubscribe = authService.subscribe((newState) => {
       setState(newState);
       if (!newState.isAuthenticated && newState.error === "Session expired") {
@@ -1105,7 +1106,7 @@ function AuthProvider({
       if (sessionTimeout) clearTimeout(sessionTimeout);
     };
   }, [authService, onError, onSessionExpired, onLogin, onLogout]);
-  react.useEffect(() => {
+  React.useEffect(() => {
     if (!autoRefresh || !state.tokens?.accessToken || !state.isAuthenticated) {
       return;
     }
@@ -1128,7 +1129,7 @@ function AuthProvider({
       if (refreshTimeout) clearTimeout(refreshTimeout);
     };
   }, [state.tokens?.accessToken, state.isAuthenticated, autoRefresh, refreshThreshold]);
-  react.useEffect(() => {
+  React.useEffect(() => {
     if (!state.isAuthenticated || !state.tokens?.accessToken) {
       return;
     }
@@ -1150,7 +1151,7 @@ function AuthProvider({
       if (sessionTimeout) clearTimeout(sessionTimeout);
     };
   }, [state.tokens?.accessToken, state.isAuthenticated]);
-  const getTokenExpiry = react.useCallback((token) => {
+  const getTokenExpiry = React.useCallback((token) => {
     try {
       const payload = JSON.parse(atob(token.split(".")[1]));
       return payload.exp ? new Date(payload.exp * 1e3) : null;
@@ -1158,12 +1159,12 @@ function AuthProvider({
       return null;
     }
   }, []);
-  const handleSessionExpired = react.useCallback(async () => {
+  const handleSessionExpired = React.useCallback(async () => {
     console.warn("Session expired");
     await authService.logout("security");
     onSessionExpired?.();
   }, [authService, onSessionExpired]);
-  const login = react.useCallback(async (credentials) => {
+  const login = React.useCallback(async (credentials) => {
     try {
       const result = await authService.login(credentials);
       return result;
@@ -1172,7 +1173,7 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService]);
-  const register = react.useCallback(async (data) => {
+  const register = React.useCallback(async (data) => {
     try {
       const user = await authService.register(data);
       return user;
@@ -1181,14 +1182,14 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService]);
-  const logout = react.useCallback(async () => {
+  const logout = React.useCallback(async () => {
     try {
       await authService.logout("logout");
     } catch (error) {
       console.error("Logout error:", error);
     }
   }, [authService]);
-  const logoutAllDevices = react.useCallback(async () => {
+  const logoutAllDevices = React.useCallback(async () => {
     try {
       await authService.logoutAllDevices();
     } catch (error) {
@@ -1196,14 +1197,14 @@ function AuthProvider({
       throw error;
     }
   }, [authService]);
-  const refreshSession = react.useCallback(async () => {
+  const refreshSession = React.useCallback(async () => {
     try {
       await authService.refreshSession();
     } catch (error) {
       console.error("Session refresh failed:", error);
     }
   }, [authService]);
-  const changePassword = react.useCallback(async (currentPassword, newPassword) => {
+  const changePassword = React.useCallback(async (currentPassword, newPassword) => {
     try {
       await authService.changePassword(currentPassword, newPassword);
     } catch (error) {
@@ -1211,7 +1212,7 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService]);
-  const verifyMFA = react.useCallback(async (code, trustDevice) => {
+  const verifyMFA = React.useCallback(async (code, trustDevice) => {
     try {
       const user = await authService.verifyMFA(code, trustDevice || false);
       return user;
@@ -1220,7 +1221,7 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService]);
-  const setupMFA = react.useCallback(async () => {
+  const setupMFA = React.useCallback(async () => {
     try {
       const response = await authService.getAxiosInstance().post("/auth/mfa/setup");
       return response.data;
@@ -1229,7 +1230,7 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService]);
-  const disableMFA = react.useCallback(async (code) => {
+  const disableMFA = React.useCallback(async (code) => {
     try {
       await authService.getAxiosInstance().post("/auth/mfa/disable", { code });
       if (state.user) {
@@ -1243,16 +1244,16 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService, state.user]);
-  const hasRole = react.useCallback((role) => {
+  const hasRole = React.useCallback((role) => {
     return authService.hasRole(role);
   }, [authService]);
-  const getAxiosInstance = react.useCallback(() => {
+  const getAxiosInstance = React.useCallback(() => {
     return authService.getAxiosInstance();
   }, [authService]);
-  const getUser = react.useCallback(() => {
+  const getUser = React.useCallback(() => {
     return authService.getUser();
   }, [authService]);
-  const updateUser = react.useCallback(async (userData) => {
+  const updateUser = React.useCallback(async (userData) => {
     try {
       const updatedUser = await authService.getAxiosInstance().put("/users/profile", userData);
       setState((prev) => ({ ...prev, user: updatedUser.data }));
@@ -1261,34 +1262,34 @@ function AuthProvider({
       throw new Error(errorMessage);
     }
   }, [authService]);
-  const clearError = react.useCallback(() => {
+  const clearError = React.useCallback(() => {
     setState((prev) => ({ ...prev, error: null }));
   }, []);
-  const isTokenExpired = react.useCallback(() => {
+  const isTokenExpired = React.useCallback(() => {
     if (!state.tokens?.accessToken) return true;
     const expiry = getTokenExpiry(state.tokens.accessToken);
     if (!expiry) return true;
     return expiry.getTime() <= Date.now();
   }, [state.tokens?.accessToken, getTokenExpiry]);
-  const getAccessToken = react.useCallback(() => {
+  const getAccessToken = React.useCallback(() => {
     return state.tokens?.accessToken || null;
   }, [state.tokens?.accessToken]);
-  const healthCheck = react.useCallback(async () => {
+  const healthCheck = React.useCallback(async () => {
     return await authService.healthCheckWithRetry();
   }, [authService]);
-  const refreshTokens = react.useCallback(async () => {
+  const refreshTokens = React.useCallback(async () => {
     await authService.refreshSession();
   }, [authService]);
-  const getRemainingSessionTime = react.useCallback(() => {
+  const getRemainingSessionTime = React.useCallback(() => {
     if (!state.tokens?.accessToken) return 0;
     const expiry = getTokenExpiry(state.tokens.accessToken);
     if (!expiry) return 0;
     return Math.max(expiry.getTime() - Date.now(), 0);
   }, [state.tokens?.accessToken, getTokenExpiry]);
-  const extendSession = react.useCallback(async () => {
+  const extendSession = React.useCallback(async () => {
     await refreshSession();
   }, [refreshSession]);
-  const value = react.useMemo(() => ({
+  const value = React.useMemo(() => ({
     ...state,
     login,
     register,
@@ -1336,12 +1337,218 @@ function AuthProvider({
   return /* @__PURE__ */ jsxRuntime.jsx(AuthContext.Provider, { value, children });
 }
 function useAuthContext() {
-  const context = react.useContext(AuthContext);
+  const context = React.useContext(AuthContext);
   if (!context) {
     throw new Error("useAuthContext must be used within AuthProvider");
   }
   return context;
 }
+function withAuth(Component) {
+  return function WithAuthComponent(props) {
+    const auth = useAuthContext();
+    return React__default.default.createElement(Component, { ...props, auth });
+  };
+}
+function RoleBased({ children, roles, fallback = null }) {
+  const { hasRole, isAuthenticated } = useAuthContext();
+  if (isAuthenticated && hasRole(roles)) {
+    return /* @__PURE__ */ jsxRuntime.jsx(jsxRuntime.Fragment, { children });
+  }
+  return /* @__PURE__ */ jsxRuntime.jsx(jsxRuntime.Fragment, { children: fallback });
+}
+function MFARequired({ children, redirectTo = "/mfa/setup" }) {
+  const { user, isAuthenticated, isLoading } = useAuthContext();
+  if (isLoading) {
+    return /* @__PURE__ */ jsxRuntime.jsx("div", { children: "Loading..." });
+  }
+  if (!isAuthenticated) {
+    return null;
+  }
+  if (!user?.mfaEnabled) {
+    if (typeof window !== "undefined") {
+      window.location.href = redirectTo;
+    }
+    return null;
+  }
+  return /* @__PURE__ */ jsxRuntime.jsx(jsxRuntime.Fragment, { children });
+}
+function AuthStatus() {
+  const { user, isAuthenticated, isLoading, getRemainingSessionTime } = useAuthContext();
+  if (isLoading) return /* @__PURE__ */ jsxRuntime.jsx("div", { children: "Checking authentication..." });
+  if (!isAuthenticated) return /* @__PURE__ */ jsxRuntime.jsx("div", { children: "Not authenticated" });
+  const remainingTime = getRemainingSessionTime();
+  const remainingMinutes = Math.floor(remainingTime / 6e4);
+  return /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "text-sm", children: [
+    "Logged in as: ",
+    /* @__PURE__ */ jsxRuntime.jsx("strong", { children: user?.name }),
+    " (",
+    user?.email,
+    ")",
+    user?.role && /* @__PURE__ */ jsxRuntime.jsxs("span", { className: "ml-2 text-blue-600", children: [
+      "Role: ",
+      user.role
+    ] }),
+    user?.mfaEnabled && /* @__PURE__ */ jsxRuntime.jsx("span", { className: "ml-2 text-green-600", children: "\u2713 MFA" }),
+    remainingMinutes > 0 && /* @__PURE__ */ jsxRuntime.jsxs("span", { className: "ml-2 text-gray-500", children: [
+      "Session: ",
+      remainingMinutes,
+      "min"
+    ] })
+  ] });
+}
+function SessionTimer() {
+  const { getRemainingSessionTime, extendSession, logout } = useAuthContext();
+  const [timeLeft, setTimeLeft] = React.useState(getRemainingSessionTime());
+  React.useEffect(() => {
+    const interval = setInterval(() => {
+      const remaining = getRemainingSessionTime();
+      setTimeLeft(remaining);
+      if (remaining <= 5 * 60 * 1e3 && remaining > 0) {
+        const shouldExtend = window.confirm(
+          `Your session will expire in ${Math.floor(remaining / 6e4)} minutes. Would you like to extend it?`
+        );
+        if (shouldExtend) {
+          extendSession();
+        }
+      }
+      if (remaining <= 0) {
+        logout();
+      }
+    }, 1e3);
+    return () => clearInterval(interval);
+  }, [getRemainingSessionTime, extendSession, logout]);
+  if (timeLeft <= 0) return null;
+  const minutes = Math.floor(timeLeft / 6e4);
+  const seconds = Math.floor(timeLeft % 6e4 / 1e3);
+  return /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "fixed bottom-4 left-4 bg-gray-900 text-white px-3 py-1 rounded text-xs font-mono", children: [
+    "Session: ",
+    minutes,
+    ":",
+    seconds.toString().padStart(2, "0")
+  ] });
+}
+function AuthDebug() {
+  const auth = useAuthContext();
+  if (process.env.NODE_ENV !== "development") {
+    return null;
+  }
+  return /* @__PURE__ */ jsxRuntime.jsx("div", { className: "fixed bottom-4 right-4 bg-black text-white p-4 rounded-lg text-xs font-mono z-50 max-w-md overflow-auto shadow-xl", children: /* @__PURE__ */ jsxRuntime.jsxs("details", { children: [
+    /* @__PURE__ */ jsxRuntime.jsx("summary", { className: "cursor-pointer font-bold hover:text-gray-300", children: "\u{1F510} Auth Debug Info" }),
+    /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "mt-2 space-y-1", children: [
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u2705 Authenticated: ",
+        auth.isAuthenticated ? "Yes" : "No"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u23F3 Loading: ",
+        auth.isLoading ? "Yes" : "No"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u{1F464} User: ",
+        auth.user?.email || "None"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u{1F4DB} Name: ",
+        auth.user?.name || "None"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u{1F3AD} Role: ",
+        auth.user?.role || "None"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u{1F510} MFA: ",
+        auth.user?.mfaEnabled ? "Enabled" : "Disabled"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u23F0 Token Expired: ",
+        auth.isTokenExpired() ? "Yes" : "No"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u{1F3AB} Has Token: ",
+        auth.getAccessToken() ? "Yes" : "No"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        "\u23F1\uFE0F Session Time: ",
+        Math.floor(auth.getRemainingSessionTime() / 1e3),
+        "s"
+      ] }),
+      auth.error && /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "text-red-500", children: [
+        "\u274C Error: ",
+        auth.error
+      ] })
+    ] })
+  ] }) });
+}
+function SessionMonitor() {
+  const { isAuthenticated, refreshSession } = useAuthContext();
+  React.useEffect(() => {
+    if (!isAuthenticated) return;
+    const interval = setInterval(async () => {
+      try {
+        await refreshSession();
+      } catch (error) {
+        console.error("Session health check failed:", error);
+      }
+    }, 5 * 60 * 1e3);
+    return () => clearInterval(interval);
+  }, [isAuthenticated, refreshSession]);
+  return null;
+}
+function SessionExpiryWarning({
+  warningMinutes = [5, 2, 1],
+  onExtend
+}) {
+  const { getRemainingSessionTime, extendSession } = useAuthContext();
+  const [showWarning, setShowWarning] = React.useState(false);
+  const [timeLeft, setTimeLeft] = React.useState(0);
+  React.useEffect(() => {
+    const interval = setInterval(() => {
+      const remaining = getRemainingSessionTime();
+      setTimeLeft(remaining);
+      const shouldShow = warningMinutes.some(
+        (minutes2) => Math.abs(remaining - minutes2 * 60 * 1e3) < 1e3
+      );
+      setShowWarning(shouldShow && remaining > 0);
+    }, 1e3);
+    return () => clearInterval(interval);
+  }, [getRemainingSessionTime, warningMinutes]);
+  const handleExtend = async () => {
+    await extendSession();
+    setShowWarning(false);
+    onExtend?.();
+  };
+  if (!showWarning) return null;
+  const minutes = Math.floor(timeLeft / 6e4);
+  const seconds = Math.floor(timeLeft % 6e4 / 1e3);
+  return /* @__PURE__ */ jsxRuntime.jsx("div", { className: "fixed inset-0 bg-black bg-opacity-50 flex items-center justify-center z-50", children: /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "bg-white rounded-lg p-6 max-w-md mx-4", children: [
+    /* @__PURE__ */ jsxRuntime.jsx("h3", { className: "text-lg font-semibold mb-2", children: "Session Expiring Soon" }),
+    /* @__PURE__ */ jsxRuntime.jsxs("p", { className: "text-gray-600 mb-4", children: [
+      "Your session will expire in ",
+      minutes,
+      ":",
+      seconds.toString().padStart(2, "0"),
+      " minutes. Would you like to extend it?"
+    ] }),
+    /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex gap-3", children: [
+      /* @__PURE__ */ jsxRuntime.jsx(
+        "button",
+        {
+          onClick: handleExtend,
+          className: "bg-blue-500 text-white px-4 py-2 rounded hover:bg-blue-600",
+          children: "Extend Session"
+        }
+      ),
+      /* @__PURE__ */ jsxRuntime.jsx(
+        "button",
+        {
+          onClick: () => setShowWarning(false),
+          className: "bg-gray-300 text-gray-700 px-4 py-2 rounded hover:bg-gray-400",
+          children: "Dismiss"
+        }
+      )
+    ] })
+  ] }) });
+}
 function ProtectedRoute({
   children,
   requiredRole,
@@ -1389,11 +1596,11 @@ function generateRandomString(length) {
   return result;
 }
 function LoginForm({ onSubmit, isLoading = false, error, className }) {
-  const [email, setEmail] = react.useState("");
-  const [password, setPassword] = react.useState("");
-  const [showPassword, setShowPassword] = react.useState(false);
-  const [rememberMe, setRememberMe] = react.useState(false);
-  const [localError, setLocalError] = react.useState("");
+  const [email, setEmail] = React.useState("");
+  const [password, setPassword] = React.useState("");
+  const [showPassword, setShowPassword] = React.useState(false);
+  const [rememberMe, setRememberMe] = React.useState(false);
+  const [localError, setLocalError] = React.useState("");
   const handleSubmit = async (e) => {
     e.preventDefault();
     setLocalError("");
@@ -1494,13 +1701,13 @@ function LoginForm({ onSubmit, isLoading = false, error, className }) {
   ] }) }) });
 }
 function MFASetup({ userId, email, onComplete, onCancel }) {
-  const [step, setStep] = react.useState("setup");
-  const [qrCode, setQrCode] = react.useState("");
-  const [backupCodes, setBackupCodes] = react.useState([]);
-  const [verificationCode, setVerificationCode] = react.useState("");
-  const [error, setError] = react.useState("");
-  const [copied, setCopied] = react.useState(false);
-  const [isLoading, setIsLoading] = react.useState(false);
+  const [step, setStep] = React.useState("setup");
+  const [qrCode, setQrCode] = React.useState("");
+  const [backupCodes, setBackupCodes] = React.useState([]);
+  const [verificationCode, setVerificationCode] = React.useState("");
+  const [error, setError] = React.useState("");
+  const [copied, setCopied] = React.useState(false);
+  const [isLoading, setIsLoading] = React.useState(false);
   const handleSetup = async () => {
     setIsLoading(true);
     try {
@@ -1641,10 +1848,10 @@ function MFASetup({ userId, email, onComplete, onCancel }) {
   ] });
 }
 function MFAVerification({ onSubmit, onBack }) {
-  const [code, setCode] = react.useState("");
-  const [trustDevice, setTrustDevice] = react.useState(false);
-  const [error, setError] = react.useState("");
-  const [isLoading, setIsLoading] = react.useState(false);
+  const [code, setCode] = React.useState("");
+  const [trustDevice, setTrustDevice] = React.useState(false);
+  const [error, setError] = React.useState("");
+  const [isLoading, setIsLoading] = React.useState(false);
   const handleSubmit = async (e) => {
     e.preventDefault();
     if (code.length !== 6) {
@@ -1721,9 +1928,9 @@ function MFAVerification({ onSubmit, onBack }) {
 }
 function SessionWarning({ warningMinutes = 2 }) {
   const { refreshSession } = useAuth();
-  const [showWarning, setShowWarning] = react.useState(false);
-  const [timeLeft, setTimeLeft] = react.useState(0);
-  react.useEffect(() => {
+  const [showWarning, setShowWarning] = React.useState(false);
+  const [timeLeft, setTimeLeft] = React.useState(0);
+  React.useEffect(() => {
     const checkSession = () => {
       const tokens = localStorage.getItem("auth_tokens_encrypted");
       if (!tokens) return;
@@ -1903,17 +2110,24 @@ exports.API_ENDPOINTS = API_ENDPOINTS;
 exports.AUTH_CONFIG = AUTH_CONFIG;
 exports.AuditAction = AuditAction;
 exports.AuditLogger = AuditLogger;
+exports.AuthDebug = AuthDebug;
 exports.AuthProvider = AuthProvider;
 exports.AuthService = AuthService;
+exports.AuthStatus = AuthStatus;
 exports.DeviceFingerprint = DeviceFingerprint;
 exports.LoginForm = LoginForm;
+exports.MFARequired = MFARequired;
 exports.MFAService = MFAService;
 exports.MFASetup = MFASetup;
 exports.MFAVerification = MFAVerification;
 exports.ProtectedRoute = ProtectedRoute;
 exports.RateLimiter = RateLimiter;
+exports.RoleBased = RoleBased;
 exports.STORAGE_KEYS = STORAGE_KEYS;
+exports.SessionExpiryWarning = SessionExpiryWarning;
 exports.SessionManager = SessionManager;
+exports.SessionMonitor = SessionMonitor;
+exports.SessionTimer = SessionTimer;
 exports.SessionWarning = SessionWarning;
 exports.TokenBlacklist = TokenBlacklist;
 exports.TokenManager = TokenManager;
@@ -1931,5 +2145,6 @@ exports.useAuth = useAuth;
 exports.useAuthContext = useAuthContext;
 exports.useProtectedRoute = useProtectedRoute;
 exports.validateEnvironment = validateEnvironment;
+exports.withAuth = withAuth;
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map