UNPKG

@supabase/auth-js

Version:

Official SDK for Supabase Auth

github.com/supabase/supabase-js/tree/master/packages/core/auth-js

supabase/supabase-js

325 lines (293 loc) 8.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
import { WeakPasswordReasons } from './types' import { ErrorCode } from './error-codes' /** * Base error thrown by Supabase Auth helpers. * * @example * ```ts * import { AuthError } from '@supabase/auth-js' * * throw new AuthError('Unexpected auth error', 500, 'unexpected') * ``` */ export class AuthError extends Error { /** * Error code associated with the error. Most errors coming from * HTTP responses will have a code, though some errors that occur * before a response is received will not have one present. In that * case {@link #status} will also be undefined. */ code: ErrorCode | (string & {}) | undefined /** HTTP status code that caused the error. */ status: number | undefined protected __isAuthError = true constructor(message: string, status?: number, code?: string) { super(message) this.name = 'AuthError' this.status = status this.code = code } } export function isAuthError(error: unknown): error is AuthError { return typeof error === 'object' && error !== null && '__isAuthError' in error } /** * Error returned directly from the GoTrue REST API. * * @example * ```ts * import { AuthApiError } from '@supabase/auth-js' * * throw new AuthApiError('Invalid credentials', 400, 'invalid_credentials') * ``` */ export class AuthApiError extends AuthError { status: number constructor(message: string, status: number, code: string | undefined) { super(message, status, code) this.name = 'AuthApiError' this.status = status this.code = code } } export function isAuthApiError(error: unknown): error is AuthApiError { return isAuthError(error) && error.name === 'AuthApiError' } /** * Wraps non-standard errors so callers can inspect the root cause. * * @example * ```ts * import { AuthUnknownError } from '@supabase/auth-js' * * try { * await someAuthCall() * } catch (err) { * throw new AuthUnknownError('Auth failed', err) * } * ``` */ export class AuthUnknownError extends AuthError { originalError: unknown constructor(message: string, originalError: unknown) { super(message) this.name = 'AuthUnknownError' this.originalError = originalError } } /** * Flexible error class used to create named auth errors at runtime. * * @example * ```ts * import { CustomAuthError } from '@supabase/auth-js' * * throw new CustomAuthError('My custom auth error', 'MyAuthError', 400, 'custom_code') * ``` */ export class CustomAuthError extends AuthError { name: string status: number constructor(message: string, name: string, status: number, code: string | undefined) { super(message, status, code) this.name = name this.status = status } } /** * Error thrown when an operation requires a session but none is present. * * @example * ```ts * import { AuthSessionMissingError } from '@supabase/auth-js' * * throw new AuthSessionMissingError() * ``` */ export class AuthSessionMissingError extends CustomAuthError { constructor() { super('Auth session missing!', 'AuthSessionMissingError', 400, undefined) } } export function isAuthSessionMissingError(error: any): error is AuthSessionMissingError { return isAuthError(error) && error.name === 'AuthSessionMissingError' } /** * Error thrown when the token response is malformed. * * @example * ```ts * import { AuthInvalidTokenResponseError } from '@supabase/auth-js' * * throw new AuthInvalidTokenResponseError() * ``` */ export class AuthInvalidTokenResponseError extends CustomAuthError { constructor() { super('Auth session or user missing', 'AuthInvalidTokenResponseError', 500, undefined) } } /** * Error thrown when email/password credentials are invalid. * * @example * ```ts * import { AuthInvalidCredentialsError } from '@supabase/auth-js' * * throw new AuthInvalidCredentialsError('Email or password is incorrect') * ``` */ export class AuthInvalidCredentialsError extends CustomAuthError { constructor(message: string) { super(message, 'AuthInvalidCredentialsError', 400, undefined) } } /** * Error thrown when implicit grant redirects contain an error. * * @example * ```ts * import { AuthImplicitGrantRedirectError } from '@supabase/auth-js' * * throw new AuthImplicitGrantRedirectError('OAuth redirect failed', { * error: 'access_denied', * code: 'oauth_error', * }) * ``` */ export class AuthImplicitGrantRedirectError extends CustomAuthError { details: { error: string; code: string } | null = null constructor(message: string, details: { error: string; code: string } | null = null) { super(message, 'AuthImplicitGrantRedirectError', 500, undefined) this.details = details } toJSON() { return { name: this.name, message: this.message, status: this.status, details: this.details, } } } export function isAuthImplicitGrantRedirectError( error: any ): error is AuthImplicitGrantRedirectError { return isAuthError(error) && error.name === 'AuthImplicitGrantRedirectError' } /** * Error thrown during PKCE code exchanges. * * @example * ```ts * import { AuthPKCEGrantCodeExchangeError } from '@supabase/auth-js' * * throw new AuthPKCEGrantCodeExchangeError('PKCE exchange failed') * ``` */ export class AuthPKCEGrantCodeExchangeError extends CustomAuthError { details: { error: string; code: string } | null = null constructor(message: string, details: { error: string; code: string } | null = null) { super(message, 'AuthPKCEGrantCodeExchangeError', 500, undefined) this.details = details } toJSON() { return { name: this.name, message: this.message, status: this.status, details: this.details, } } } /** * Error thrown when the PKCE code verifier is not found in storage. * This typically happens when the auth flow was initiated in a different * browser, device, or the storage was cleared. * * @example * ```ts * import { AuthPKCECodeVerifierMissingError } from '@supabase/auth-js' * * throw new AuthPKCECodeVerifierMissingError() * ``` */ export class AuthPKCECodeVerifierMissingError extends CustomAuthError { constructor() { super( 'PKCE code verifier not found in storage. ' + 'This can happen if the auth flow was initiated in a different browser or device, ' + 'or if the storage was cleared. For SSR frameworks (Next.js, SvelteKit, etc.), ' + 'use @supabase/ssr on both the server and client to store the code verifier in cookies.', 'AuthPKCECodeVerifierMissingError', 400, 'pkce_code_verifier_not_found' ) } } export function isAuthPKCECodeVerifierMissingError( error: unknown ): error is AuthPKCECodeVerifierMissingError { return isAuthError(error) && error.name === 'AuthPKCECodeVerifierMissingError' } /** * Error thrown when a transient fetch issue occurs. * * @example * ```ts * import { AuthRetryableFetchError } from '@supabase/auth-js' * * throw new AuthRetryableFetchError('Service temporarily unavailable', 503) * ``` */ export class AuthRetryableFetchError extends CustomAuthError { constructor(message: string, status: number) { super(message, 'AuthRetryableFetchError', status, undefined) } } export function isAuthRetryableFetchError(error: unknown): error is AuthRetryableFetchError { return isAuthError(error) && error.name === 'AuthRetryableFetchError' } /** * This error is thrown on certain methods when the password used is deemed * weak. Inspect the reasons to identify what password strength rules are * inadequate. */ /** * Error thrown when a supplied password is considered weak. * * @example * ```ts * import { AuthWeakPasswordError } from '@supabase/auth-js' * * throw new AuthWeakPasswordError('Password too short', 400, ['min_length']) * ``` */ export class AuthWeakPasswordError extends CustomAuthError { /** * Reasons why the password is deemed weak. */ reasons: WeakPasswordReasons[] constructor(message: string, status: number, reasons: WeakPasswordReasons[]) { super(message, 'AuthWeakPasswordError', status, 'weak_password') this.reasons = reasons } } export function isAuthWeakPasswordError(error: unknown): error is AuthWeakPasswordError { return isAuthError(error) && error.name === 'AuthWeakPasswordError' } /** * Error thrown when a JWT cannot be verified or parsed. * * @example * ```ts * import { AuthInvalidJwtError } from '@supabase/auth-js' * * throw new AuthInvalidJwtError('Token signature is invalid') * ``` */ export class AuthInvalidJwtError extends CustomAuthError { constructor(message: string) { super(message, 'AuthInvalidJwtError', 400, 'invalid_jwt') } }