npm - timeback - Versions diffs - 0.1.3 → 0.1.5 - Mend

timeback 0.1.3 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (131) hide show

package/README.md +65 -550
package/dist/cli/src/config.d.ts +8 -0
package/dist/cli.js +131552 -0
package/dist/types/src/config.d.ts +186 -0
package/dist/types/src/index.d.ts +5 -0
package/dist/types/src/primitives.d.ts +53 -0
package/package.json +29 -91
package/schema.json +222 -0
package/dist/client/adapters/react/SignInButton.d.ts +0 -60
package/dist/client/adapters/react/SignInButton.d.ts.map +0 -1
package/dist/client/adapters/react/index.d.ts +0 -43
package/dist/client/adapters/react/index.d.ts.map +0 -1
package/dist/client/adapters/react/index.js +0 -478
package/dist/client/adapters/react/provider.d.ts +0 -74
package/dist/client/adapters/react/provider.d.ts.map +0 -1
package/dist/client/adapters/solid/SignInButton.d.ts +0 -52
package/dist/client/adapters/solid/SignInButton.d.ts.map +0 -1
package/dist/client/adapters/solid/SignInButton.tsx +0 -321
package/dist/client/adapters/solid/context.d.ts +0 -73
package/dist/client/adapters/solid/context.d.ts.map +0 -1
package/dist/client/adapters/solid/context.tsx +0 -91
package/dist/client/adapters/solid/index.d.ts +0 -42
package/dist/client/adapters/solid/index.d.ts.map +0 -1
package/dist/client/adapters/solid/index.ts +0 -46
package/dist/client/adapters/svelte/SignInButton.svelte +0 -234
package/dist/client/adapters/svelte/SignInButton.svelte.d.ts +0 -24
package/dist/client/adapters/svelte/index.d.ts +0 -33
package/dist/client/adapters/svelte/index.d.ts.map +0 -1
package/dist/client/adapters/svelte/index.ts +0 -38
package/dist/client/adapters/svelte/stores.d.ts +0 -62
package/dist/client/adapters/svelte/stores.d.ts.map +0 -1
package/dist/client/adapters/svelte/stores.ts +0 -139
package/dist/client/adapters/vue/SignInButton.vue +0 -260
package/dist/client/adapters/vue/SignInButton.vue.d.ts +0 -53
package/dist/client/adapters/vue/index.d.ts +0 -43
package/dist/client/adapters/vue/index.d.ts.map +0 -1
package/dist/client/adapters/vue/index.ts +0 -48
package/dist/client/adapters/vue/provider.d.ts +0 -94
package/dist/client/adapters/vue/provider.d.ts.map +0 -1
package/dist/client/adapters/vue/provider.ts +0 -147
package/dist/client/index.d.ts +0 -9
package/dist/client/index.d.ts.map +0 -1
package/dist/client/lib/activity/activity.class.d.ts +0 -73
package/dist/client/lib/activity/activity.class.d.ts.map +0 -1
package/dist/client/lib/activity/activity.d.ts +0 -16
package/dist/client/lib/activity/activity.d.ts.map +0 -1
package/dist/client/lib/activity/index.d.ts +0 -6
package/dist/client/lib/activity/index.d.ts.map +0 -1
package/dist/client/lib/utils.d.ts +0 -20
package/dist/client/lib/utils.d.ts.map +0 -1
package/dist/client/namespaces/activity.d.ts +0 -37
package/dist/client/namespaces/activity.d.ts.map +0 -1
package/dist/client/namespaces/auth.d.ts +0 -33
package/dist/client/namespaces/auth.d.ts.map +0 -1
package/dist/client/namespaces/index.d.ts +0 -7
package/dist/client/namespaces/index.d.ts.map +0 -1
package/dist/client/namespaces/user.d.ts +0 -29
package/dist/client/namespaces/user.d.ts.map +0 -1
package/dist/client/timeback-client.class.d.ts +0 -37
package/dist/client/timeback-client.class.d.ts.map +0 -1
package/dist/client/timeback-client.d.ts +0 -29
package/dist/client/timeback-client.d.ts.map +0 -1
package/dist/client.d.ts +0 -30
package/dist/client.d.ts.map +0 -1
package/dist/client.js +0 -198
package/dist/edge.d.ts +0 -13
package/dist/edge.d.ts.map +0 -1
package/dist/edge.js +0 -1149
package/dist/identity.d.ts +0 -14
package/dist/identity.d.ts.map +0 -1
package/dist/identity.js +0 -1019
package/dist/index.d.ts +0 -48
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -10221
package/dist/server/adapters/express.d.ts +0 -66
package/dist/server/adapters/express.d.ts.map +0 -1
package/dist/server/adapters/express.js +0 -9326
package/dist/server/adapters/native.d.ts +0 -47
package/dist/server/adapters/native.d.ts.map +0 -1
package/dist/server/adapters/native.js +0 -190
package/dist/server/adapters/nextjs.d.ts +0 -32
package/dist/server/adapters/nextjs.d.ts.map +0 -1
package/dist/server/adapters/nextjs.js +0 -202
package/dist/server/adapters/nuxt.d.ts +0 -98
package/dist/server/adapters/nuxt.d.ts.map +0 -1
package/dist/server/adapters/nuxt.js +0 -9395
package/dist/server/adapters/solid-start.d.ts +0 -63
package/dist/server/adapters/solid-start.d.ts.map +0 -1
package/dist/server/adapters/solid-start.js +0 -9294
package/dist/server/adapters/svelte-kit.d.ts +0 -84
package/dist/server/adapters/svelte-kit.d.ts.map +0 -1
package/dist/server/adapters/svelte-kit.js +0 -243
package/dist/server/adapters/tanstack-start.d.ts +0 -42
package/dist/server/adapters/tanstack-start.d.ts.map +0 -1
package/dist/server/adapters/tanstack-start.js +0 -9272
package/dist/server/adapters/types.d.ts +0 -294
package/dist/server/adapters/types.d.ts.map +0 -1
package/dist/server/adapters/utils.d.ts +0 -76
package/dist/server/adapters/utils.d.ts.map +0 -1
package/dist/server/handlers/activity.d.ts +0 -28
package/dist/server/handlers/activity.d.ts.map +0 -1
package/dist/server/handlers/identity-full.d.ts +0 -28
package/dist/server/handlers/identity-full.d.ts.map +0 -1
package/dist/server/handlers/identity-only.d.ts +0 -22
package/dist/server/handlers/identity-only.d.ts.map +0 -1
package/dist/server/handlers/index.d.ts +0 -9
package/dist/server/handlers/index.d.ts.map +0 -1
package/dist/server/handlers/user.d.ts +0 -30
package/dist/server/handlers/user.d.ts.map +0 -1
package/dist/server/index.d.ts +0 -9
package/dist/server/index.d.ts.map +0 -1
package/dist/server/lib/index.d.ts +0 -10
package/dist/server/lib/index.d.ts.map +0 -1
package/dist/server/lib/logger.d.ts +0 -21
package/dist/server/lib/logger.d.ts.map +0 -1
package/dist/server/lib/oidc.d.ts +0 -76
package/dist/server/lib/oidc.d.ts.map +0 -1
package/dist/server/lib/resolve-timeback-user.d.ts +0 -42
package/dist/server/lib/resolve-timeback-user.d.ts.map +0 -1
package/dist/server/lib/utils.d.ts +0 -54
package/dist/server/lib/utils.d.ts.map +0 -1
package/dist/server/timeback-identity.d.ts +0 -19
package/dist/server/timeback-identity.d.ts.map +0 -1
package/dist/server/timeback.d.ts +0 -68
package/dist/server/timeback.d.ts.map +0 -1
package/dist/server/types.d.ts +0 -402
package/dist/server/types.d.ts.map +0 -1
package/dist/shared/constants.d.ts +0 -18
package/dist/shared/constants.d.ts.map +0 -1
package/dist/shared/types.d.ts +0 -144
package/dist/shared/types.d.ts.map +0 -1

package/dist/server/lib/resolve-timeback-user.d.ts DELETED Viewed

@@ -1,42 +0,0 @@
-/**
- * Timeback User Resolution
- *
- * Resolves the Timeback user by email using server credentials.
- */
-import { TimebackClient } from '@timeback/core';
-import type { TimebackAuthUser } from '../../shared/types';
-import type { ApiCredentials, Environment, OIDCUserInfo, TimebackUserResolutionErrorCode } from '../types';
-/**
- * Error thrown when Timeback user resolution fails.
- */
-export declare class TimebackUserResolutionError extends Error {
-    readonly code: TimebackUserResolutionErrorCode;
-    constructor(message: string, code: TimebackUserResolutionErrorCode);
-}
-interface ResolveTimebackUserByEmailParams {
-    /** Environment (staging/production) */
-    env: Environment;
-    /** API credentials for Timeback API */
-    apiCredentials: ApiCredentials;
-    /** OIDC user info from the IdP */
-    userInfo: OIDCUserInfo;
-    /**
-     * Optional pre-configured Timeback client to use (e.g. `timeback.api`).
-     *
-     * When provided, this function will use it and will NOT close it.
-     */
-    client?: TimebackClient;
-}
-/**
- * Resolve a TimebackAuthUser by looking up the Timeback user via email.
- *
- * Uses server API credentials to query OneRoster for a user matching the IdP email.
- * Strict mode: fails if no user found or if multiple users match (ambiguous).
- *
- * @param params - Resolution parameters
- * @returns Resolved TimebackAuthUser with Timeback profile and IdP claims
- * @throws {TimebackUserResolutionError} If resolution fails
- */
-export declare function resolveTimebackUserByEmail(params: ResolveTimebackUserByEmailParams): Promise<TimebackAuthUser>;
-export {};
-//# sourceMappingURL=resolve-timeback-user.d.ts.map

package/dist/server/lib/resolve-timeback-user.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"resolve-timeback-user.d.ts","sourceRoot":"","sources":["../../../src/server/lib/resolve-timeback-user.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAA;AAM/C,OAAO,KAAK,EAAkB,gBAAgB,EAAmB,MAAM,oBAAoB,CAAA;AAC3F,OAAO,KAAK,EACX,cAAc,EACd,WAAW,EACX,YAAY,EACZ,+BAA+B,EAC/B,MAAM,UAAU,CAAA;AAIjB;;GAEG;AACH,qBAAa,2BAA4B,SAAQ,KAAK;aAGpC,IAAI,EAAE,+BAA+B;IAFtD,YACC,OAAO,EAAE,MAAM,EACC,IAAI,EAAE,+BAA+B,EAIrD;CACD;AAED,UAAU,gCAAgC;IACzC,uCAAuC;IACvC,GAAG,EAAE,WAAW,CAAA;IAChB,uCAAuC;IACvC,cAAc,EAAE,cAAc,CAAA;IAC9B,kCAAkC;IAClC,QAAQ,EAAE,YAAY,CAAA;IACtB;;;;OAIG;IACH,MAAM,CAAC,EAAE,cAAc,CAAA;CACvB;AAkBD;;;;;;;;;GASG;AACH,wBAAsB,0BAA0B,CAC/C,MAAM,EAAE,gCAAgC,GACtC,OAAO,CAAC,gBAAgB,CAAC,CAiG3B"}

package/dist/server/lib/utils.d.ts DELETED Viewed

@@ -1,54 +0,0 @@
-/**
- * Server Utilities
- *
- * Internal utility functions for the server SDK.
- */
-import type { Environment } from '../types';
-/**
- * Map SDK environment to the environment used for outbound Timeback API calls.
- *
- * The SDK's `env` config controls runtime mode, but for outbound service calls
- * (OneRoster, Caliper, etc.) we need a real Timeback environment:
- *
- *   - `local`      → `staging` (local dev uses staging services)
- *   - `staging`    → `staging`
- *   - `production` → `production`
- *
- * @param env - SDK environment setting
- * @returns Environment to use for TimebackClient
- */
-export declare function mapEnvForApi(env: Environment): 'staging' | 'production';
-/**
- * Create a JSON response.
- *
- * @param data - Response data
- * @param status - HTTP status code
- * @param headers - Additional headers
- * @returns JSON response
- */
-export declare function jsonResponse<T>(data: T, status?: number, headers?: HeadersInit): Response;
-/**
- * Create a redirect response.
- *
- * @param url - URL to redirect to
- * @param headers - Additional headers (e.g., Set-Cookie)
- * @returns Redirect response
- */
-export declare function redirectResponse(url: string, headers?: HeadersInit): Response;
-/**
- * Encode an object to a base64url-safe string.
- *
- * Used for OIDC state parameter.
- *
- * @param data - Data to encode
- * @returns Base64url encoded string
- */
-export declare function encodeBase64Url(data: unknown): string;
-/**
- * Decode a base64url string back to an object.
- *
- * @param encoded - Base64url encoded string
- * @returns Decoded object
- */
-export declare function decodeBase64Url<T>(encoded: string): T;
-//# sourceMappingURL=utils.d.ts.map

package/dist/server/lib/utils.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/server/lib/utils.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAA;AAE3C;;;;;;;;;;;;GAYG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,WAAW,GAAG,SAAS,GAAG,YAAY,CAMvE;AAED;;;;;;;GAOG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,SAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,QAAQ,CAItF;AAED;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,QAAQ,CAI7E;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,IAAI,EAAE,OAAO,GAAG,MAAM,CAIrD;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,CAAC,CAAC,EAAE,OAAO,EAAE,MAAM,GAAG,CAAC,CAKrD"}

package/dist/server/timeback-identity.d.ts DELETED Viewed

@@ -1,19 +0,0 @@
-/**
- * Timeback Server SDK (Identity-only)
- *
- * This file is intentionally Node-free so it can be used in edge runtimes
- * (e.g. Cloudflare Workers / workerd) without pulling in Node-only deps
- * like `jiti`, `fs`, etc.
- */
-import type { IdentityOnlyConfig, IdentityOnlyInstance } from './types';
-/**
- * Create an identity-only Timeback server instance.
- *
- * Use this when you only need SSO authentication without activity tracking
- * or Timeback API integration. Does not require `timeback.config.ts`.
- *
- * @param config - Identity-only configuration
- * @returns Identity-only Timeback server instance
- */
-export declare function createTimebackIdentity<TState = unknown>(config: IdentityOnlyConfig<TState>): IdentityOnlyInstance<TState>;
-//# sourceMappingURL=timeback-identity.d.ts.map

package/dist/server/timeback-identity.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"timeback-identity.d.ts","sourceRoot":"","sources":["../../src/server/timeback-identity.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,OAAO,KAAK,EAAE,kBAAkB,EAAE,oBAAoB,EAAE,MAAM,SAAS,CAAA;AAEvE;;;;;;;;GAQG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,GAAG,OAAO,EACtD,MAAM,EAAE,kBAAkB,CAAC,MAAM,CAAC,GAChC,oBAAoB,CAAC,MAAM,CAAC,CAY9B"}

package/dist/server/timeback.d.ts DELETED Viewed

@@ -1,68 +0,0 @@
-/**
- * Timeback Server SDK
- *
- * Factory functions to create Timeback server instances.
- */
-import type { TimebackConfig, TimebackInstance } from './types';
-/**
- * Create a Timeback server instance.
- *
- * Returns a framework-agnostic instance with raw handlers.
- *
- * Use an adapter to integrate with your framework:
- * - `toNextjsHandler()` for Next.js App Router
- * - `toHonoApp()` / `toHonoMiddleware()` for Hono
- * - `toExpressMiddleware()` / `mountExpressRoutes()` for Express
- *
- * When using SSO mode, the callback receives an enriched `TimebackAuthUser` with
- * `user.id` being the canonical Timeback user ID (timebackId).
- *
- * @param config - Server configuration
- * @returns Timeback instance with handlers
- *
- * @example SSO mode
- * ```typescript
- * import { createTimeback } from 'timeback'
- * import { toNextjsHandler } from 'timeback/nextjs'
- *
- * const timeback = await createTimeback({
- *   env: 'production',
- *   api: {
- *     clientId: process.env.TIMEBACK_API_CLIENT_ID!,
- *     clientSecret: process.env.TIMEBACK_API_CLIENT_SECRET!,
- *   },
- *   identity: {
- *     mode: 'sso',
- *     clientId: process.env.AWS_COGNITO_CLIENT_ID!,
- *     clientSecret: process.env.AWS_COGNITO_CLIENT_SECRET!,
- *     onCallbackSuccess: async ({ user, state, redirect }) => {
- *       // user.id is the timebackId (canonical stable identifier)
- *       await setSession({ id: user.id, email: user.email })
- *       return redirect(state.returnTo ?? '/')
- *     },
- *     onCallbackError: ({ error, redirect }) => redirect('/?error=sso_failed'),
- *     getUser: (req) => getSessionUser(req),
- *   },
- * })
- *
- * // For Next.js App Router
- * export const { GET, POST } = toNextjsHandler(timeback)
- * ```
- *
- * @example Custom identity mode (bring your own auth)
- * ```typescript
- * const timeback = await createTimeback({
- *   env: 'production',
- *   api: { ... },
- *   identity: {
- *     mode: 'custom',
- *     getUser: async (req) => {
- *       const session = await getSession(req)
- *       return session ? { id: session.userId, email: session.email } : undefined
- *     },
- *   },
- * })
- * ```
- */
-export declare function createTimeback<TState = unknown>(config: TimebackConfig<TState>): Promise<TimebackInstance<TState>>;
-//# sourceMappingURL=timeback.d.ts.map

package/dist/server/timeback.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"timeback.d.ts","sourceRoot":"","sources":["../../src/server/timeback.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAQH,OAAO,KAAK,EAAE,cAAc,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAA;AAE/D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2DG;AACH,wBAAsB,cAAc,CAAC,MAAM,GAAG,OAAO,EACpD,MAAM,EAAE,cAAc,CAAC,MAAM,CAAC,GAC5B,OAAO,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAgEnC"}

package/dist/server/types.d.ts DELETED Viewed

@@ -1,402 +0,0 @@
-/**
- * Server Types
- *
- * Configuration and internal types for the server SDK.
- */
-import type { TimebackClient } from '@timeback/core';
-import type { TimebackAuthUser, TimebackIdentity } from '../shared/types';
-/**
- * Environment configuration.
- */
-export type Environment = 'local' | 'staging' | 'production';
-/**
- * Error codes for Timeback user resolution failures.
- */
-export type TimebackUserResolutionErrorCode = 'missing_email' | 'timeback_user_not_found' | 'timeback_user_ambiguous' | 'timeback_user_lookup_failed';
-/**
- * API credentials for Timeback API calls.
- */
-export interface ApiCredentials {
-    clientId: string;
-    clientSecret: string;
-}
-/**
- * OIDC tokens returned from the identity provider.
- */
-export interface OIDCTokens {
-    /** Access token for API calls */
-    access_token: string;
-    /** ID token containing user claims */
-    id_token?: string;
-    /** Refresh token for obtaining new access tokens */
-    refresh_token?: string;
-    /** Token type (usually "Bearer") */
-    token_type: string;
-    /** Token expiration in seconds */
-    expires_in?: number;
-}
-/**
- * Identity provider link info (e.g., Google, Facebook).
- */
-export interface IdentityProviderLink {
-    /** When the identity was linked */
-    dateCreated: string;
-    /** User ID from the external provider */
-    userId: string;
-    /** Provider name (e.g., "Google", "Facebook") */
-    providerName: string;
-    /** Provider type */
-    providerType: string;
-    /** Issuer URL (if applicable) */
-    issuer: string | null;
-    /** Whether this is the primary identity */
-    primary: string;
-}
-/**
- * User info claims from the identity provider.
- */
-export interface OIDCUserInfo {
-    /** Subject identifier (unique user ID from IdP) */
-    sub: string;
-    /** User's email address */
-    email?: string;
-    /** Whether email is verified */
-    email_verified?: boolean | string;
-    /** User's full name */
-    name?: string;
-    /** User's given/first name */
-    given_name?: string;
-    /** User's family/last name */
-    family_name?: string;
-    /** User's profile picture URL */
-    picture?: string;
-    /** Username in the IdP */
-    username?: string;
-    /** Linked identity providers (JSON string from Cognito) */
-    identities?: string | IdentityProviderLink[];
-    /** Additional claims */
-    [key: string]: unknown;
-}
-/**
- * Context passed to buildState hook.
- */
-export interface BuildStateContext {
-    /** The incoming sign-in request */
-    req: Request;
-    /** Parsed URL for easy access to query params */
-    url: URL;
-}
-/**
- * Raw identity provider data (tokens and user info claims).
- */
-export interface IdpData {
-    /** OIDC tokens from the identity provider */
-    tokens: OIDCTokens;
-    /** User info claims from the identity provider */
-    userInfo: OIDCUserInfo;
-}
-/**
- * Context passed to onCallbackSuccess hook for full SDK (createTimeback).
- *
- * When using `createTimeback()` with SSO mode, the `user` field contains the
- * enriched `TimebackAuthUser` with `timebackId` as the canonical identifier. Raw IdP
- * data is available under `idp`.
- */
-export interface CallbackSuccessContext<TState = unknown> {
-    /** Authenticated user with Timeback profile and IdP claims */
-    user: TimebackAuthUser;
-    /** Raw identity provider data (tokens and user info) */
-    idp: IdpData;
-    /** State data from buildState (if provided) */
-    state: TState | undefined;
-    /** The incoming callback request */
-    req: Request;
-    /** Helper to create a redirect response */
-    redirect: (url: string, headers?: HeadersInit) => Response;
-    /** Helper to create a JSON response */
-    json: <T>(data: T, status?: number, headers?: HeadersInit) => Response;
-}
-/**
- * Context passed to onCallbackSuccess hook for identity-only SDK (createTimebackIdentity).
- *
- * When using `createTimebackIdentity()`, the `user` field contains raw OIDC user info
- * claims (no Timeback profile enrichment).
- */
-export interface IdentityOnlyCallbackSuccessContext<TState = unknown> {
-    /** OIDC tokens from the identity provider */
-    tokens: OIDCTokens;
-    /** User info claims from the identity provider */
-    user: OIDCUserInfo;
-    /** State data from buildState (if provided) */
-    state: TState | undefined;
-    /** The incoming callback request */
-    req: Request;
-    /** Helper to create a redirect response */
-    redirect: (url: string, headers?: HeadersInit) => Response;
-    /** Helper to create a JSON response */
-    json: <T>(data: T, status?: number, headers?: HeadersInit) => Response;
-}
-/**
- * Context passed to onCallbackError hook.
- */
-export interface CallbackErrorContext<TState = unknown> {
-    /** The error that occurred */
-    error: Error;
-    /** Error code from OIDC provider (if available) */
-    errorCode?: string;
-    /** State data from buildState (if available) */
-    state: TState | undefined;
-    /** The incoming callback request */
-    req: Request;
-    /** Helper to create a redirect response */
-    redirect: (url: string, headers?: HeadersInit) => Response;
-    /** Helper to create a JSON response */
-    json: <T>(data: T, status?: number, headers?: HeadersInit) => Response;
-}
-/**
- * Base SSO identity configuration fields (shared between full and identity-only).
- */
-interface BaseSsoIdentityConfig<TState = unknown> {
-    mode: 'sso';
-    /** OIDC client ID */
-    clientId: string;
-    /** OIDC client secret */
-    clientSecret: string;
-    /**
-     * Custom OIDC issuer URL.
-     *
-     * Override the default Timeback IdP URL. Useful for:
-     * - Local development with a mock OIDC server
-     * - Self-hosted Timeback instances
-     *
-     * @example 'http://localhost:3001/mock-oidc'
-     */
-    issuer?: string;
-    /**
-     * Custom OAuth redirect URI.
-     *
-     * Override the auto-computed callback URL. Use when your IdP has
-     * pre-configured callback URLs that differ from the SDK default.
-     *
-     * @example 'http://localhost:5174/api/auth/sso/callback/timeback'
-     */
-    redirectUri?: string;
-    /**
-     * Build custom state to pass through the OIDC flow.
-     *
-     * Use this to preserve data across the redirect (e.g., return URL, invite codes).
-     * State is encoded in the OIDC state parameter and returned in onCallbackSuccess.
-     *
-     * @param ctx - Context with request and parsed URL
-     * @returns State object (will be JSON serialized)
-     *
-     * @example
-     * ```typescript
-     * buildState: ({ url }) => ({
-     *   returnTo: url.searchParams.get('returnTo') ?? '/dashboard',
-     *   inviteId: url.searchParams.get('inviteId'),
-     * })
-     * ```
-     */
-    buildState?: (ctx: BuildStateContext) => TState;
-    /**
-     * Called when OIDC authentication fails.
-     *
-     * @param ctx - Context with error info and helpers
-     * @returns Response (typically a redirect to an error page)
-     *
-     * @example
-     * ```typescript
-     * onCallbackError: ({ error, redirect }) => {
-     *   console.error('SSO failed:', error)
-     *   return redirect('/login?error=sso_failed')
-     * }
-     * ```
-     */
-    onCallbackError?(ctx: CallbackErrorContext<TState>): Promise<Response> | Response;
-    /**
-     * Get the current user from the request.
-     *
-     * This is called by the activity handler to associate activities with users.
-     * Read your session cookie/JWT and return the user, or undefined if not authenticated.
-     *
-     * @param req - The incoming request
-     * @returns User object or undefined
-     *
-     * @example
-     * ```typescript
-     * // Async (with database/session lookup)
-     * getUser: async (req) => {
-     *   const session = await getSession(req)
-     *   if (!session) return undefined
-     *   return { id: session.userId, email: session.email }
-     * }
-     *
-     * // Sync (already have user in memory)
-     * getUser: (req) => currentUser
-     * ```
-     */
-    getUser(req: Request): Promise<TimebackIdentity | undefined> | TimebackIdentity | undefined;
-}
-/**
- * SSO identity configuration for full SDK (createTimeback).
- *
- * When using `createTimeback()`, the SSO callback provides an enriched `TimebackAuthUser`
- * with `timebackId` as the canonical identifier. The SDK resolves the Timeback
- * user by email using server API credentials.
- */
-export interface SsoIdentityConfig<TState = unknown, TSuccessContext = CallbackSuccessContext<TState>> extends BaseSsoIdentityConfig<TState> {
-    /**
-     * Called after successful OIDC authentication and Timeback user resolution.
-     *
-     * The `user` field contains the enriched `TimebackAuthUser` with:
-     * - `id`: Timeback user ID (canonical stable identifier)
-     * - `email`, `name`: User profile data
-     * - `claims`: Raw IdP claims (sub, firstName, lastName, pictureUrl)
-     *
-     * Raw IdP data (tokens, userInfo) is available under `idp`.
-     *
-     * @param ctx - Context with enriched user, IdP data, state, and helpers
-     * @returns Response (typically a redirect)
-     *
-     * @example
-     * ```typescript
-     * onCallbackSuccess: async ({ user, state, redirect }) => {
-     *   // user.id is the timebackId (canonical identifier)
-     *   await setSession({ id: user.id, email: user.email })
-     *   return redirect(state.returnTo ?? '/')
-     * }
-     * ```
-     */
-    onCallbackSuccess(ctx: TSuccessContext): Promise<Response> | Response;
-}
-/**
- * Custom identity configuration.
- *
- * Use when you have your own auth system (Clerk, Auth0, etc.).
- */
-export interface CustomIdentityConfig {
-    mode: 'custom';
-    /**
-     * Get the current user from the request.
-     *
-     * Read your session cookie/JWT and return the user, or undefined if not authenticated.
-     * Can return synchronously or as a Promise.
-     *
-     * @param req - The incoming request
-     * @returns User object or undefined (sync or async)
-     */
-    getUser(req: Request): Promise<TimebackIdentity | undefined> | TimebackIdentity | undefined;
-}
-/**
- * Identity configuration (SSO or custom).
- */
-export type IdentityConfig<TState = unknown> = SsoIdentityConfig<TState> | CustomIdentityConfig;
-/**
- * Full Timeback SDK configuration.
- */
-export interface TimebackConfig<TState = unknown> {
-    /** Optional path to timeback.config.ts (auto-discovered if not provided) */
-    configPath?: string;
-    /** Environment */
-    env: Environment;
-    /** API credentials for Timeback API */
-    api: ApiCredentials;
-    /** Identity configuration */
-    identity: IdentityConfig<TState>;
-}
-/**
- * Request handlers namespace.
- */
-export interface Handlers {
-    /** Activity submission handler */
-    activity: (req: Request) => Promise<Response>;
-    /** Identity-related handlers */
-    identity: {
-        /** Initiate sign-in (SSO only) */
-        signIn: (req: Request) => Promise<Response>;
-        /** Handle OAuth callback (SSO only) */
-        callback: (req: Request) => Promise<Response>;
-        /** Sign out user */
-        signOut: () => Response;
-    };
-    /** User profile handler */
-    user: {
-        /** Get current user profile */
-        me: (req: Request) => Promise<Response>;
-    };
-}
-/**
- * App configuration from timeback.config.ts.
- */
-export interface AppConfig {
-    name: string;
-    sensors: string[];
-}
-/**
- * Timeback SDK instance (framework-agnostic).
- */
-export interface TimebackInstance<TState = unknown> {
-    /** Configuration */
-    config: TimebackConfig<TState>;
-    /** Request handlers */
-    handle: Handlers;
-    /**
-     * Direct access to the Timeback API client.
-     *
-     * This is an escape hatch for advanced use cases that need to call Timeback
-     * services (OneRoster, Edubridge, Caliper, QTI) beyond what the SDK handlers
-     * provide. The client is created lazily on first access.
-     *
-     * Note: For `env: 'local'`, outbound API calls use `staging` environment.
-     *
-     * @example
-     * ```typescript
-     * // List users from OneRoster
-     * const { data: users } = await timeback.api.oneroster.users.list({ limit: 10 })
-     *
-     * // Send a Caliper event
-     * await timeback.api.caliper.emit(event)
-     * ```
-     */
-    api: TimebackClient;
-}
-/**
- * Identity-only configuration.
- *
- * Use this when you only need SSO authentication without activity tracking
- * or Timeback API integration.
- */
-export interface IdentityOnlyConfig<TState = unknown> {
-    /** Environment */
-    env: Environment;
-    /** Identity configuration (SSO mode required for identity-only) */
-    identity: SsoIdentityConfig<TState, IdentityOnlyCallbackSuccessContext<TState>>;
-}
-/**
- * Identity-only handlers.
- */
-export interface IdentityOnlyHandlers {
-    /** Identity-related handlers */
-    identity: {
-        /** Initiate sign-in */
-        signIn: (req: Request) => Promise<Response>;
-        /** Handle OAuth callback */
-        callback: (req: Request) => Promise<Response>;
-        /** Sign out user */
-        signOut: () => Response;
-    };
-}
-/**
- * Identity-only SDK instance.
- *
- * Returned by `createTimebackIdentity()` for SSO-only integrations.
- */
-export interface IdentityOnlyInstance<TState = unknown> {
-    /** Configuration */
-    config: IdentityOnlyConfig<TState>;
-    /** Request handlers (identity only) */
-    handle: IdentityOnlyHandlers;
-}
-export {};
-//# sourceMappingURL=types.d.ts.map

package/dist/server/types.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/server/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAA;AACpD,OAAO,KAAK,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAA;AAEzE;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,OAAO,GAAG,SAAS,GAAG,YAAY,CAAA;AAE5D;;GAEG;AACH,MAAM,MAAM,+BAA+B,GACxC,eAAe,GACf,yBAAyB,GACzB,yBAAyB,GACzB,6BAA6B,CAAA;AAEhC;;GAEG;AACH,MAAM,WAAW,cAAc;IAC9B,QAAQ,EAAE,MAAM,CAAA;IAChB,YAAY,EAAE,MAAM,CAAA;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IAC1B,iCAAiC;IACjC,YAAY,EAAE,MAAM,CAAA;IACpB,sCAAsC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,oDAAoD;IACpD,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,oCAAoC;IACpC,UAAU,EAAE,MAAM,CAAA;IAClB,kCAAkC;IAClC,UAAU,CAAC,EAAE,MAAM,CAAA;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACpC,mCAAmC;IACnC,WAAW,EAAE,MAAM,CAAA;IACnB,yCAAyC;IACzC,MAAM,EAAE,MAAM,CAAA;IACd,iDAAiD;IACjD,YAAY,EAAE,MAAM,CAAA;IACpB,oBAAoB;IACpB,YAAY,EAAE,MAAM,CAAA;IACpB,iCAAiC;IACjC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAA;IACrB,2CAA2C;IAC3C,OAAO,EAAE,MAAM,CAAA;CACf;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC5B,mDAAmD;IACnD,GAAG,EAAE,MAAM,CAAA;IACX,2BAA2B;IAC3B,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,gCAAgC;IAChC,cAAc,CAAC,EAAE,OAAO,GAAG,MAAM,CAAA;IACjC,uBAAuB;IACvB,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,8BAA8B;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,8BAA8B;IAC9B,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,iCAAiC;IACjC,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,0BAA0B;IAC1B,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,2DAA2D;IAC3D,UAAU,CAAC,EAAE,MAAM,GAAG,oBAAoB,EAAE,CAAA;IAC5C,wBAAwB;IACxB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAA;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IACjC,mCAAmC;IACnC,GAAG,EAAE,OAAO,CAAA;IACZ,iDAAiD;IACjD,GAAG,EAAE,GAAG,CAAA;CACR;AAED;;GAEG;AACH,MAAM,WAAW,OAAO;IACvB,6CAA6C;IAC7C,MAAM,EAAE,UAAU,CAAA;IAClB,kDAAkD;IAClD,QAAQ,EAAE,YAAY,CAAA;CACtB;AAED;;;;;;GAMG;AACH,MAAM,WAAW,sBAAsB,CAAC,MAAM,GAAG,OAAO;IACvD,8DAA8D;IAC9D,IAAI,EAAE,gBAAgB,CAAA;IACtB,wDAAwD;IACxD,GAAG,EAAE,OAAO,CAAA;IACZ,+CAA+C;IAC/C,KAAK,EAAE,MAAM,GAAG,SAAS,CAAA;IACzB,oCAAoC;IACpC,GAAG,EAAE,OAAO,CAAA;IACZ,2CAA2C;IAC3C,QAAQ,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,KAAK,QAAQ,CAAA;IAC1D,uCAAuC;IACvC,IAAI,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,CAAC,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,KAAK,QAAQ,CAAA;CACtE;AAED;;;;;GAKG;AACH,MAAM,WAAW,kCAAkC,CAAC,MAAM,GAAG,OAAO;IACnE,6CAA6C;IAC7C,MAAM,EAAE,UAAU,CAAA;IAClB,kDAAkD;IAClD,IAAI,EAAE,YAAY,CAAA;IAClB,+CAA+C;IAC/C,KAAK,EAAE,MAAM,GAAG,SAAS,CAAA;IACzB,oCAAoC;IACpC,GAAG,EAAE,OAAO,CAAA;IACZ,2CAA2C;IAC3C,QAAQ,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,KAAK,QAAQ,CAAA;IAC1D,uCAAuC;IACvC,IAAI,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,CAAC,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,KAAK,QAAQ,CAAA;CACtE;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB,CAAC,MAAM,GAAG,OAAO;IACrD,8BAA8B;IAC9B,KAAK,EAAE,KAAK,CAAA;IACZ,mDAAmD;IACnD,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,gDAAgD;IAChD,KAAK,EAAE,MAAM,GAAG,SAAS,CAAA;IACzB,oCAAoC;IACpC,GAAG,EAAE,OAAO,CAAA;IACZ,2CAA2C;IAC3C,QAAQ,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,KAAK,QAAQ,CAAA;IAC1D,uCAAuC;IACvC,IAAI,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,CAAC,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,KAAK,QAAQ,CAAA;CACtE;AAED;;GAEG;AACH,UAAU,qBAAqB,CAAC,MAAM,GAAG,OAAO;IAC/C,IAAI,EAAE,KAAK,CAAA;IACX,qBAAqB;IACrB,QAAQ,EAAE,MAAM,CAAA;IAChB,yBAAyB;IACzB,YAAY,EAAE,MAAM,CAAA;IACpB;;;;;;;;OAQG;IACH,MAAM,CAAC,EAAE,MAAM,CAAA;IAEf;;;;;;;OAOG;IACH,WAAW,CAAC,EAAE,MAAM,CAAA;IAEpB;;;;;;;;;;;;;;;;OAgBG;IACH,UAAU,CAAC,EAAE,CAAC,GAAG,EAAE,iBAAiB,KAAK,MAAM,CAAA;IAE/C;;;;;;;;;;;;;OAaG;IACH,eAAe,CAAC,CAAC,GAAG,EAAE,oBAAoB,CAAC,MAAM,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,GAAG,QAAQ,CAAA;IAEjF;;;;;;;;;;;;;;;;;;;;;OAqBG;IACH,OAAO,CAAC,GAAG,EAAE,OAAO,GAAG,OAAO,CAAC,gBAAgB,GAAG,SAAS,CAAC,GAAG,gBAAgB,GAAG,SAAS,CAAA;CAC3F;AAED;;;;;;GAMG;AACH,MAAM,WAAW,iBAAiB,CACjC,MAAM,GAAG,OAAO,EAChB,eAAe,GAAG,sBAAsB,CAAC,MAAM,CAAC,CAC/C,SAAQ,qBAAqB,CAAC,MAAM,CAAC;IACtC;;;;;;;;;;;;;;;;;;;;;OAqBG;IACH,iBAAiB,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,QAAQ,CAAC,GAAG,QAAQ,CAAA;CACrE;AAED;;;;GAIG;AACH,MAAM,WAAW,oBAAoB;IACpC,IAAI,EAAE,QAAQ,CAAA;IACd;;;;;;;;OAQG;IACH,OAAO,CAAC,GAAG,EAAE,OAAO,GAAG,OAAO,CAAC,gBAAgB,GAAG,SAAS,CAAC,GAAG,gBAAgB,GAAG,SAAS,CAAA;CAC3F;AAED;;GAEG;AACH,MAAM,MAAM,cAAc,CAAC,MAAM,GAAG,OAAO,IAAI,iBAAiB,CAAC,MAAM,CAAC,GAAG,oBAAoB,CAAA;AAE/F;;GAEG;AACH,MAAM,WAAW,cAAc,CAAC,MAAM,GAAG,OAAO;IAC/C,4EAA4E;IAC5E,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,kBAAkB;IAClB,GAAG,EAAE,WAAW,CAAA;IAChB,uCAAuC;IACvC,GAAG,EAAE,cAAc,CAAA;IACnB,6BAA6B;IAC7B,QAAQ,EAAE,cAAc,CAAC,MAAM,CAAC,CAAA;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACxB,kCAAkC;IAClC,QAAQ,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;IAC7C,gCAAgC;IAChC,QAAQ,EAAE;QACT,kCAAkC;QAClC,MAAM,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;QAC3C,uCAAuC;QACvC,QAAQ,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;QAC7C,oBAAoB;QACpB,OAAO,EAAE,MAAM,QAAQ,CAAA;KACvB,CAAA;IACD,2BAA2B;IAC3B,IAAI,EAAE;QACL,+BAA+B;QAC/B,EAAE,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;KACvC,CAAA;CACD;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACzB,IAAI,EAAE,MAAM,CAAA;IACZ,OAAO,EAAE,MAAM,EAAE,CAAA;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB,CAAC,MAAM,GAAG,OAAO;IACjD,oBAAoB;IACpB,MAAM,EAAE,cAAc,CAAC,MAAM,CAAC,CAAA;IAC9B,uBAAuB;IACvB,MAAM,EAAE,QAAQ,CAAA;IAChB;;;;;;;;;;;;;;;;;OAiBG;IACH,GAAG,EAAE,cAAc,CAAA;CACnB;AAMD;;;;;GAKG;AACH,MAAM,WAAW,kBAAkB,CAAC,MAAM,GAAG,OAAO;IACnD,kBAAkB;IAClB,GAAG,EAAE,WAAW,CAAA;IAChB,mEAAmE;IACnE,QAAQ,EAAE,iBAAiB,CAAC,MAAM,EAAE,kCAAkC,CAAC,MAAM,CAAC,CAAC,CAAA;CAC/E;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACpC,gCAAgC;IAChC,QAAQ,EAAE;QACT,uBAAuB;QACvB,MAAM,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;QAC3C,4BAA4B;QAC5B,QAAQ,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;QAC7C,oBAAoB;QACpB,OAAO,EAAE,MAAM,QAAQ,CAAA;KACvB,CAAA;CACD;AAED;;;;GAIG;AACH,MAAM,WAAW,oBAAoB,CAAC,MAAM,GAAG,OAAO;IACrD,oBAAoB;IACpB,MAAM,EAAE,kBAAkB,CAAC,MAAM,CAAC,CAAA;IAClC,uCAAuC;IACvC,MAAM,EAAE,oBAAoB,CAAA;CAC5B"}

package/dist/shared/constants.d.ts DELETED Viewed

@@ -1,18 +0,0 @@
-/**
- * Shared Constants
- */
-/** Default base path for Timeback API routes */
-export declare const DEFAULT_BASE_PATH = "/api/timeback";
-/** API route paths */
-export declare const ROUTES: {
-    readonly ACTIVITY: "/activity";
-    readonly IDENTITY: {
-        readonly SIGNIN: "/identity/signin";
-        readonly SIGNOUT: "/identity/signout";
-        readonly CALLBACK: "/identity/callback";
-    };
-    readonly USER: {
-        readonly ME: "/user/me";
-    };
-};
-//# sourceMappingURL=constants.d.ts.map

package/dist/shared/constants.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/shared/constants.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,gDAAgD;AAChD,eAAO,MAAM,iBAAiB,kBAAkB,CAAA;AAEhD,sBAAsB;AACtB,eAAO,MAAM,MAAM;;;;;;;;;;CAUT,CAAA"}