UNPKG

better-auth

Version:

The most comprehensive authentication framework for TypeScript.

better-auth.com

better-auth/better-auth

50 lines (48 loc) 3.3 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
import { mergeSchema } from "../../db/schema.mjs"; import "../../db/index.mjs"; import { ms } from "../../utils/time.mjs"; import { DEVICE_AUTHORIZATION_ERROR_CODES } from "./error-codes.mjs"; import { deviceApprove, deviceCode, deviceDeny, deviceToken, deviceVerify } from "./routes.mjs"; import { schema } from "./schema.mjs"; import * as z from "zod"; //#region src/plugins/device-authorization/index.ts const timeStringSchema = z.custom((val) => { if (typeof val !== "string") return false; try { ms(val); return true; } catch { return false; } }, { message: "Invalid time string format. Use formats like '30m', '5s', '1h', etc." }); const deviceAuthorizationOptionsSchema = z.object({ expiresIn: timeStringSchema.default("30m").describe("Time in seconds until the device code expires. Use formats like '30m', '5s', '1h', etc."), interval: timeStringSchema.default("5s").describe("Time in seconds between polling attempts. Use formats like '30m', '5s', '1h', etc."), deviceCodeLength: z.number().int().positive().default(40).describe("Length of the device code to be generated. Default is 40 characters."), userCodeLength: z.number().int().positive().default(8).describe("Length of the user code to be generated. Default is 8 characters."), generateDeviceCode: z.custom((val) => typeof val === "function", { message: "generateDeviceCode must be a function that returns a string or a promise that resolves to a string." }).optional().describe("Function to generate a device code. If not provided, a default random string generator will be used."), generateUserCode: z.custom((val) => typeof val === "function", { message: "generateUserCode must be a function that returns a string or a promise that resolves to a string." }).optional().describe("Function to generate a user code. If not provided, a default random string generator will be used."), validateClient: z.custom((val) => typeof val === "function", { message: "validateClient must be a function that returns a boolean or a promise that resolves to a boolean." }).optional().describe("Function to validate the client ID. If not provided, no validation will be performed."), onDeviceAuthRequest: z.custom((val) => typeof val === "function", { message: "onDeviceAuthRequest must be a function that returns void or a promise that resolves to void." }).optional().describe("Function to handle device authorization requests. If not provided, no additional actions will be taken."), verificationUri: z.string().optional().describe("The URI where users verify their device code. Can be an absolute URL (https://example.com/device) or relative path (/custom-path). This will be returned as verification_uri in the device code response. If not provided, defaults to /device."), schema: z.custom(() => true) }); const deviceAuthorization = (options = {}) => { const opts = deviceAuthorizationOptionsSchema.parse(options); return { id: "device-authorization", schema: mergeSchema(schema, options?.schema), endpoints: { deviceCode: deviceCode(opts), deviceToken: deviceToken(opts), deviceVerify, deviceApprove, deviceDeny }, $ERROR_CODES: DEVICE_AUTHORIZATION_ERROR_CODES, options }; }; //#endregion export { deviceAuthorization, deviceAuthorizationOptionsSchema }; //# sourceMappingURL=index.mjs.map