strapi-plugin-firebase-authentication 1.1.0 → 1.1.7

package/dist/server/index.mjs

@@ -410,7 +410,7 @@ const firebaseController = {
       const result = await strapi.plugin(pluginName).service("firebaseService").validateFirebaseToken(idToken, profileMetaData, populate2);
       ctx.body = result;
     } catch (error2) {
-      strapi.log.error("validateToken controller error:", error2);
+      strapi.log.error("validateToken controller error:", error2.message);
       if (error2.name === "ValidationError") {
         return ctx.badRequest(error2.message);
       }
@@ -500,9 +500,11 @@ const firebaseController = {
     }
   },
   /**
-   * Reset password - authenticated with 1hr JWT
+   * Reset password - authenticated password change
    * POST /api/firebase-authentication/resetPassword
-   * Public endpoint - uses JWT from Authorization header
+   * Public endpoint - requires valid JWT in Authorization header
+   * Used for admin-initiated resets or user self-service password changes
+   * NOT used for forgot password email flow (which uses Firebase's hosted UI)
    */
   async resetPassword(ctx) {
     strapi.log.debug("resetPassword endpoint called");
@@ -5186,13 +5188,13 @@ lodash.exports;
         return string2.slice(position, position + target.length) == target;
       }
       function template(string2, options2, guard) {
-        var settings2 = lodash2.templateSettings;
+        var settings = lodash2.templateSettings;
         if (guard && isIterateeCall(string2, options2, guard)) {
           options2 = undefined$1;
         }
         string2 = toString4(string2);
-        options2 = assignInWith({}, options2, settings2, customDefaultsAssignIn);
-        var imports = assignInWith({}, options2.imports, settings2.imports, customDefaultsAssignIn), importsKeys = keys2(imports), importsValues = baseValues(imports, importsKeys);
+        options2 = assignInWith({}, options2, settings, customDefaultsAssignIn);
+        var imports = assignInWith({}, options2.imports, settings.imports, customDefaultsAssignIn), importsKeys = keys2(imports), importsValues = baseValues(imports, importsKeys);
         var isEscaping, isEvaluating, index2 = 0, interpolate = options2.interpolate || reNoMatch, source = "__p += '";
         var reDelimiters = RegExp2(
           (options2.escape || reNoMatch).source + "|" + interpolate.source + "|" + (interpolate === reInterpolate ? reEsTemplate : reNoMatch).source + "|" + (options2.evaluate || reNoMatch).source + "|$",
@@ -28902,9 +28904,6 @@ const userController = {
   }
 };
 const settingsController = {
-  setToken: async (ctx) => {
-    ctx.body = await strapi.plugin("firebase-authentication").service("settingsService").setToken(ctx);
-  },
   setFirebaseConfigJson: async (ctx) => {
     ctx.body = await strapi.plugin("firebase-authentication").service("settingsService").setFirebaseConfigJson(ctx);
   },
@@ -29059,13 +29058,7 @@ const controllers = {
 };
 const middlewares = {};
 const policies = {};
-const settings = [
-  {
-    method: "POST",
-    path: "/settings/token",
-    handler: "settingsController.setToken",
-    config: { policies: ["admin::isAuthenticatedAdmin"] }
-  },
+const settingsRoute = [
   {
     method: "POST",
     path: "/settings/firebase-config",
@@ -29099,75 +29092,9 @@ const settings = [
 ];
 const admin = {
   type: "admin",
-  routes: [...settings]
-};
-const contentApi = {
-  type: "content-api",
-  routes: [
-    {
-      method: "POST",
-      path: "/",
-      handler: "firebaseController.validateToken",
-      config: {
-        auth: false,
-        // Public endpoint - this IS the authentication endpoint
-        policies: []
-      }
-    },
-    {
-      method: "POST",
-      path: "/emailLogin",
-      handler: "firebaseController.emailLogin",
-      config: {
-        auth: false,
-        // Public endpoint - email/password login
-        policies: []
-      }
-    },
-    {
-      method: "POST",
-      path: "/forgotPassword",
-      handler: "firebaseController.forgotPassword",
-      config: {
-        auth: false,
-        // Public endpoint - no authentication required
-        policies: []
-      }
-    },
-    {
-      method: "POST",
-      path: "/resetPassword",
-      handler: "firebaseController.resetPassword",
-      config: {
-        auth: false,
-        // Public endpoint - uses JWT from Authorization header
-        policies: []
-      }
-    },
-    {
-      method: "GET",
-      path: "/config",
-      handler: "settingsController.getPublicConfig",
-      config: {
-        auth: false,
-        // Public endpoint - frontend needs this for validation
-        policies: []
-      }
-    },
-    {
-      method: "POST",
-      path: "/requestMagicLink",
-      handler: "firebaseController.requestMagicLink",
-      config: {
-        auth: false,
-        // Public endpoint - passwordless authentication
-        policies: []
-      }
-    }
-  ]
-};
-const contentInternalApi = {
   routes: [
+    ...settingsRoute,
+    // User management routes
     {
       method: "GET",
       path: "/users",
@@ -29231,23 +29158,77 @@ const contentInternalApi = {
       config: {
         policies: ["admin::isAuthenticatedAdmin"]
       }
+    }
+  ]
+};
+const contentApi = {
+  type: "content-api",
+  routes: [
+    {
+      method: "POST",
+      path: "/",
+      handler: "firebaseController.validateToken",
+      config: {
+        auth: false,
+        // Public endpoint - this IS the authentication endpoint
+        policies: []
+      }
+    },
+    {
+      method: "POST",
+      path: "/emailLogin",
+      handler: "firebaseController.emailLogin",
+      config: {
+        auth: false,
+        // Public endpoint - email/password login
+        policies: []
+      }
+    },
+    {
+      method: "POST",
+      path: "/forgotPassword",
+      handler: "firebaseController.forgotPassword",
+      config: {
+        auth: false,
+        // Public endpoint - no authentication required
+        policies: []
+      }
+    },
+    {
+      method: "POST",
+      path: "/resetPassword",
+      handler: "firebaseController.resetPassword",
+      config: {
+        auth: false,
+        // Public endpoint - authenticated password change, requires valid JWT in Authorization header
+        policies: []
+      }
     },
     {
       method: "GET",
       path: "/config",
       handler: "settingsController.getPublicConfig",
       config: {
+        auth: false,
+        // Public endpoint - frontend needs this for validation
         policies: []
-        // This is intentionally public for frontend config
       }
     },
-    ...settings
+    {
+      method: "POST",
+      path: "/requestMagicLink",
+      handler: "firebaseController.requestMagicLink",
+      config: {
+        auth: false,
+        // Public endpoint - passwordless authentication
+        policies: []
+      }
+    }
   ]
 };
 const routes = {
   admin,
-  "content-api": contentApi,
-  "content-internal-api": contentInternalApi
+  "content-api": contentApi
 };
 const checkValidJson = (jsonString) => {
   try {
@@ -29539,7 +29520,7 @@ const settingsService = ({ strapi: strapi2 }) => {
     /**
      * Updates only the magic link settings without affecting other configuration
      */
-    async updateMagicLinkSettings(settings2) {
+    async updateMagicLinkSettings(settings) {
       try {
         const foundConfig = await strapi2.db.query(CONFIG_CONTENT_TYPE).findOne({ where: {} });
         if (!foundConfig) {
@@ -29548,10 +29529,10 @@ const settingsService = ({ strapi: strapi2 }) => {
         const result = await strapi2.db.query(CONFIG_CONTENT_TYPE).update({
           where: { id: foundConfig.id },
           data: {
-            enableMagicLink: settings2.enableMagicLink,
-            magicLinkUrl: settings2.magicLinkUrl,
-            magicLinkEmailSubject: settings2.magicLinkEmailSubject,
-            magicLinkExpiryHours: settings2.magicLinkExpiryHours
+            enableMagicLink: settings.enableMagicLink,
+            magicLinkUrl: settings.magicLinkUrl,
+            magicLinkEmailSubject: settings.magicLinkEmailSubject,
+            magicLinkExpiryHours: settings.magicLinkExpiryHours
           }
         });
         return {
@@ -29967,7 +29948,7 @@ const userService = ({ strapi: strapi2 }) => {
         try {
           const actionCodeSettings = {
             url: passwordResetUrl,
-            handleCodeInApp: true
+            handleCodeInApp: false
           };
           const timeoutPromise = new Promise((_2, reject) => {
             setTimeout(
@@ -30188,17 +30169,13 @@ const firebaseService = ({ strapi: strapi2 }) => ({
       });
       if (userByEmail) {
         validateUserNotBlocked(userByEmail);
-        try {
-          await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").updateForUser(userByEmail.documentId, {
-            firebaseUserID: firebaseUID
-          });
-          strapi2.log.info(`Auto-linked user ${userByEmail.username} to Firebase UID ${firebaseUID}`);
-        } catch (error2) {
-          if (error2.code !== "23505") {
-            throw error2;
-          }
-          strapi2.log.info(`User ${userByEmail.username} already linked to Firebase (race condition handled)`);
+        const existingLink = await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").getByFirebaseUID(firebaseUID);
+        if (existingLink && existingLink.user) {
+          validateUserNotBlocked(existingLink.user);
+          return existingLink.user;
         }
+        await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").updateForUser(userByEmail.documentId, { firebaseUserID: firebaseUID });
+        strapi2.log.info(`Auto-linked user ${userByEmail.username} to Firebase UID ${firebaseUID}`);
         return userByEmail;
       }
       const firebaseDataByApple = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findMany({
@@ -30212,21 +30189,13 @@ const firebaseService = ({ strapi: strapi2 }) => ({
       const userByAppleEmail = firebaseDataByApple?.[0]?.user || null;
       if (userByAppleEmail) {
         validateUserNotBlocked(userByAppleEmail);
-        try {
-          await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").updateForUser(userByAppleEmail.documentId, {
-            firebaseUserID: firebaseUID
-          });
-          strapi2.log.info(
-            `Auto-linked Apple user ${userByAppleEmail.username} to Firebase UID ${firebaseUID}`
-          );
-        } catch (error2) {
-          if (error2.code !== "23505") {
-            throw error2;
-          }
-          strapi2.log.info(
-            `User ${userByAppleEmail.username} already linked to Firebase (race condition handled)`
-          );
+        const existingLink = await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").getByFirebaseUID(firebaseUID);
+        if (existingLink && existingLink.user) {
+          validateUserNotBlocked(existingLink.user);
+          return existingLink.user;
         }
+        await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").updateForUser(userByAppleEmail.documentId, { firebaseUserID: firebaseUID });
+        strapi2.log.info(`Auto-linked Apple user ${userByAppleEmail.username} to Firebase UID ${firebaseUID}`);
         return userByAppleEmail;
       }
     }
@@ -30237,17 +30206,13 @@ const firebaseService = ({ strapi: strapi2 }) => ({
       });
       if (userByPhone) {
         validateUserNotBlocked(userByPhone);
-        try {
-          await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").updateForUser(userByPhone.documentId, {
-            firebaseUserID: firebaseUID
-          });
-          strapi2.log.info(`Auto-linked phone user ${userByPhone.username} to Firebase UID ${firebaseUID}`);
-        } catch (error2) {
-          if (error2.code !== "23505") {
-            throw error2;
-          }
-          strapi2.log.info(`User ${userByPhone.username} already linked to Firebase (race condition handled)`);
+        const existingLink = await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").getByFirebaseUID(firebaseUID);
+        if (existingLink && existingLink.user) {
+          validateUserNotBlocked(existingLink.user);
+          return existingLink.user;
         }
+        await strapi2.plugin("firebase-authentication").service("firebaseUserDataService").updateForUser(userByPhone.documentId, { firebaseUserID: firebaseUID });
+        strapi2.log.info(`Auto-linked phone user ${userByPhone.username} to Firebase UID ${firebaseUID}`);
         return userByPhone;
       }
     }
@@ -30274,12 +30239,13 @@ const firebaseService = ({ strapi: strapi2 }) => ({
         type: "plugin",
         name: "users-permissions"
       });
-      const settings2 = await pluginStore.get({
+      const settings = await pluginStore.get({
         key: "advanced"
       });
-      const role = await strapi2.db.query("plugin::users-permissions.role").findOne({ where: { type: settings2.default_role } });
+      const role = await strapi2.db.query("plugin::users-permissions.role").findOne({ where: { type: settings.default_role } });
       userPayload.role = role.id;
       userPayload.confirmed = true;
+      userPayload.provider = "firebase";
       userPayload.email = decodedToken.email;
       userPayload.phoneNumber = decodedToken.phone_number;
       if (profileMetaData) {
@@ -30315,7 +30281,22 @@ const firebaseService = ({ strapi: strapi2 }) => ({
       strapi2.log.info(`Created user ${newUser.username} and linked to Firebase UID ${decodedToken.uid}`);
       return newUser;
     } catch (error2) {
-      if (newUser) {
+      if (error2.code === "23505") {
+        strapi2.log.warn(
+          `[Race Condition] User creation conflict for Firebase UID ${decodedToken.uid}. Another concurrent request created the user first. Retrying lookup...`
+        );
+        const existingUser = await strapi2.plugin("firebase-authentication").service("firebaseService").checkIfUserExists(decodedToken);
+        if (existingUser) {
+          strapi2.log.info(
+            `[Race Condition] Successfully found user ${existingUser.username} created by concurrent request`
+          );
+          return existingUser;
+        }
+        strapi2.log.error(
+          `[Race Condition] Failed to find user after race condition retry for Firebase UID ${decodedToken.uid}`
+        );
+      }
+      if (error2.code !== "23505" && newUser) {
         try {
           await strapi2.db.query("plugin::users-permissions.user").delete({
             where: { documentId: newUser.documentId }
@@ -30451,7 +30432,7 @@ const firebaseService = ({ strapi: strapi2 }) => ({
   },
   /**
    * Forgot password flow - sends reset email
-   * Public endpoint that generates a JWT token and sends a password reset email
+   * Public endpoint that sends a Firebase-hosted password reset email using Firebase's secure hosted UI
    */
   forgotPassword: async (ctx) => {
     const { email: email2 } = ctx.request.body;
@@ -30497,13 +30478,30 @@ const firebaseService = ({ strapi: strapi2 }) => ({
       if (!strapiUser) {
         return { message: "If an account with that email exists, a password reset link has been sent." };
       }
-      const jwtService = strapi2.plugin("users-permissions").service("jwt");
-      const token = jwtService.issue(
-        { id: strapiUser.id },
-        // Use numeric id, not documentId
-        { expiresIn: "1h" }
-      );
-      const resetLink = `${resetUrl}?token=${token}`;
+      const actionCodeSettings = {
+        url: resetUrl,
+        // Continue URL after reset completes on Firebase's page
+        handleCodeInApp: false
+      };
+      const timeoutPromise = new Promise((_2, reject) => {
+        setTimeout(
+          () => reject(new Error("Firebase generatePasswordResetLink timeout after 10 seconds")),
+          1e4
+        );
+      });
+      let resetLink;
+      try {
+        resetLink = await Promise.race([
+          strapi2.firebase.auth().generatePasswordResetLink(strapiUser.email, actionCodeSettings),
+          timeoutPromise
+        ]);
+        strapi2.log.info(
+          `✅ Password reset link generated successfully for ${strapiUser.email}: ${resetLink}`
+        );
+      } catch (error2) {
+        strapi2.log.error(`❌ Failed to generate password reset link for ${strapiUser.email}:`, error2);
+        throw error2;
+      }
       await strapi2.plugin("firebase-authentication").service("emailService").sendPasswordResetEmail(strapiUser, resetLink);
       return {
         message: "If an account with that email exists, a password reset link has been sent."
@@ -30517,7 +30515,17 @@ const firebaseService = ({ strapi: strapi2 }) => ({
   },
   /**
    * Reset password with authenticated JWT
-   * Public endpoint that validates a JWT token and resets the user's password
+   * Allows authenticated users (or admins) to change a user's Firebase password
+   *
+   * @param ctx - Koa context with JWT in Authorization header and new password in body
+   * @returns User object and fresh JWT for auto-login
+   *
+   * @remarks
+   * Use cases:
+   * 1. Admin-initiated password reset (via admin panel)
+   * 2. User-initiated password change (when already authenticated)
+   *
+   * NOT used for forgot password email flow - that now uses Firebase's hosted UI
    */
   resetPassword: async (ctx) => {
     const { password } = ctx.request.body;
@@ -31252,7 +31260,7 @@ const firebaseUserDataService = ({ strapi: strapi2 }) => ({
     if (!userId || typeof userId !== "string") {
       throw new Error("Invalid user documentId");
     }
-    let firebaseData = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findOne({
+    let firebaseData = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findFirst({
       filters: { user: { documentId: { $eq: userId } } },
       populate: ["user"]
     });
@@ -31267,7 +31275,7 @@ const firebaseUserDataService = ({ strapi: strapi2 }) => ({
    * @returns Firebase user data with populated user
    */
   async getByFirebaseUID(firebaseUID) {
-    return await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findOne({
+    return await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findFirst({
       filters: { firebaseUserID: { $eq: firebaseUID } },
       populate: ["user"]
     });
@@ -31278,7 +31286,7 @@ const firebaseUserDataService = ({ strapi: strapi2 }) => ({
    * @param data - Fields to update
    */
   async updateForUser(userId, data) {
-    let firebaseData = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findOne({
+    let firebaseData = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findFirst({
       filters: { user: { documentId: { $eq: userId } } }
     });
     if (!firebaseData) {
@@ -31294,8 +31302,8 @@ const firebaseUserDataService = ({ strapi: strapi2 }) => ({
         });
       } catch (error2) {
         if (error2.code === "23505") {
-          strapi2.log.warn(`Race condition detected for user ${userId}, retrying findOne`);
-          firebaseData = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findOne({
+          strapi2.log.warn(`Race condition detected for user ${userId}, retrying findFirst`);
+          firebaseData = await strapi2.documents("plugin::firebase-authentication.firebase-user-data").findFirst({
             filters: { user: { documentId: { $eq: userId } } }
           });
           if (firebaseData) {

package/dist/server/src/controllers/firebaseController.d.ts

@@ -27,9 +27,11 @@ declare const firebaseController: {
      */
     forgotPassword(ctx: any): Promise<void>;
     /**
-     * Reset password - authenticated with 1hr JWT
+     * Reset password - authenticated password change
      * POST /api/firebase-authentication/resetPassword
-     * Public endpoint - uses JWT from Authorization header
+     * Public endpoint - requires valid JWT in Authorization header
+     * Used for admin-initiated resets or user self-service password changes
+     * NOT used for forgot password email flow (which uses Firebase's hosted UI)
      */
     resetPassword(ctx: any): Promise<void>;
     requestMagicLink(ctx: Context): Promise<void>;

package/dist/server/src/controllers/index.d.ts

@@ -20,7 +20,6 @@ declare const _default: {
         sendResetEmail: (ctx: any) => Promise<void>;
     };
     settingsController: {
-        setToken: (ctx: import("koa").Context | import("koa").DefaultContext) => Promise<void>;
         setFirebaseConfigJson: (ctx: import("koa").Context | import("koa").DefaultContext) => Promise<void>;
         getFirebaseConfigJson: (ctx: import("koa").Context | import("koa").DefaultContext) => Promise<any>;
         delFirebaseConfigJson(ctx: import("koa").Context | import("koa").DefaultContext): Promise<void>;

package/dist/server/src/controllers/settingsController.d.ts

@@ -1,6 +1,5 @@
 import { Context, DefaultContext } from "koa";
 declare const _default: {
-    setToken: (ctx: DefaultContext | Context) => Promise<void>;
     setFirebaseConfigJson: (ctx: DefaultContext | Context) => Promise<void>;
     getFirebaseConfigJson: (ctx: DefaultContext | Context) => Promise<any>;
     delFirebaseConfigJson(ctx: DefaultContext | Context): Promise<void>;

package/dist/server/src/index.d.ts

@@ -41,7 +41,6 @@ declare const _default: {
             sendResetEmail: (ctx: any) => Promise<void>;
         };
         settingsController: {
-            setToken: (ctx: import("koa").Context | import("koa").DefaultContext) => Promise<void>;
             setFirebaseConfigJson: (ctx: import("koa").Context | import("koa").DefaultContext) => Promise<void>;
             getFirebaseConfigJson: (ctx: import("koa").Context | import("koa").DefaultContext) => Promise<any>;
             delFirebaseConfigJson(ctx: import("koa").Context | import("koa").DefaultContext): Promise<void>;
@@ -57,6 +56,9 @@ declare const _default: {
                 method: string;
                 path: string;
                 handler: string;
+                /**
+                 * Plugin server methods
+                 */
                 config: {
                     policies: string[];
                 };
@@ -74,16 +76,6 @@ declare const _default: {
                 };
             }[];
         };
-        "content-internal-api": {
-            routes: {
-                method: string;
-                path: string;
-                handler: string;
-                config: {
-                    policies: string[];
-                };
-            }[];
-        };
     };
     services: {
         settingsService: ({ strapi }: {

package/dist/server/src/routes/index.d.ts

@@ -22,15 +22,5 @@ declare const _default: {
             };
         }[];
     };
-    "content-internal-api": {
-        routes: {
-            method: string;
-            path: string;
-            handler: string;
-            config: {
-                policies: string[];
-            };
-        }[];
-    };
 };
 export default _default;

package/dist/server/src/services/firebaseService.d.ts

@@ -66,14 +66,24 @@ declare const _default: ({ strapi }: {
     }>;
     /**
      * Forgot password flow - sends reset email
-     * Public endpoint that generates a JWT token and sends a password reset email
+     * Public endpoint that sends a Firebase-hosted password reset email using Firebase's secure hosted UI
      */
     forgotPassword: (ctx: any) => Promise<{
         message: string;
     }>;
     /**
      * Reset password with authenticated JWT
-     * Public endpoint that validates a JWT token and resets the user's password
+     * Allows authenticated users (or admins) to change a user's Firebase password
+     *
+     * @param ctx - Koa context with JWT in Authorization header and new password in body
+     * @returns User object and fresh JWT for auto-login
+     *
+     * @remarks
+     * Use cases:
+     * 1. Admin-initiated password reset (via admin panel)
+     * 2. User-initiated password change (when already authenticated)
+     *
+     * NOT used for forgot password email flow - that now uses Firebase's hosted UI
      */
     resetPassword: (ctx: any) => Promise<{
         user: any;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "strapi-plugin-firebase-authentication",
-  "version": "1.1.0",
+  "version": "1.1.7",
   "description": "Allows easy integration between clients utilizing Firebase for authentication and Strapi",
   "license": "MIT",
   "repository": {
@@ -43,6 +43,7 @@
     "format": "npx prettier --write .",
     "format:check": "npx prettier -c .",
     "release": "npm run format && npm run build && npm run verify && changelogen --release && npm publish && git push --follow-tags",
+    "changelog": "changelogen --release",
     "test:ts:back": "run -T tsc -p server/tsconfig.json",
     "test:ts:front": "run -T tsc -p admin/tsconfig.json",
     "verify": "strapi-plugin verify",
@@ -50,8 +51,6 @@
     "watch:link": "strapi-plugin watch:link"
   },
   "dependencies": {
-    "@strapi/design-system": "^2.0.0-rc.16",
-    "@strapi/icons": "^2.0.0-rc.25",
     "@tanstack/react-query": "^5.90.2",
     "crypto-js": "^4.2.0",
     "destr": "^2.0.5",
@@ -67,8 +66,9 @@
   },
   "devDependencies": {
     "@strapi/sdk-plugin": "^5.3.2",
-    "@strapi/strapi": "^5.26.0",
     "@strapi/typescript-utils": "^5.23.3",
+    "@strapi/design-system": "^2.0.0-rc.16",
+    "@strapi/icons": "^2.0.0-rc.25",
     "@types/react": "^19.2.2",
     "@types/react-dom": "^19.2.1",
     "@types/react-syntax-highlighter": "^15.5.13",
@@ -82,12 +82,13 @@
     "typescript": "^5.7.3"
   },
   "peerDependencies": {
-    "@strapi/sdk-plugin": "^5.3.2",
-    "@strapi/strapi": "^5.0.1",
-    "react": "^19.2.0",
-    "react-dom": "^19.2.0",
-    "react-router-dom": "^7.9.3",
-    "styled-components": "^6.1.19"
+    "@strapi/strapi": "^5.0.0",
+    "@strapi/design-system": "^2.0.0-rc.0",
+    "@strapi/icons": "^2.0.0-rc.0",
+    "react": "^18.0.0",
+    "react-dom": "^18.0.0",
+    "react-router-dom": "^6.0.0",
+    "styled-components": "^6.0.0"
   },
   "engines": {
     "node": ">=18.0.0 <=22.x.x",

package/dist/server/src/routes/content-internal-api.d.ts

@@ -1,11 +0,0 @@
-declare const _default: {
-    routes: {
-        method: string;
-        path: string;
-        handler: string;
-        config: {
-            policies: string[];
-        };
-    }[];
-};
-export default _default;