import { a as QueryCtxWithPreferredOrmQueryTable, n as LookupByIdResultByCtx, t as DocByCtx } from "../query-context-CNo9ffvI.js"; import { t as GetAuth } from "../types-BCl8gfGy.js"; import { t as GenericCtx } from "../context-utils-OMkMGhBk.js"; import { S as defineAuth, _ as GenericAuthBeforeResult, a as AuthFunctions, b as GenericAuthTriggerHandlers, c as createApi, d as deleteOneHandler, f as findManyHandler, g as BetterAuthOptionsWithoutDatabase, h as updateOneHandler, i as getGeneratedAuthDisabledReason, l as createHandler, m as updateManyHandler, n as GeneratedAuthDisabledReasonKind, o as Triggers, p as findOneHandler, r as createDisabledAuthRuntime, s as createClient, t as AuthRuntime, u as deleteManyHandler, v as GenericAuthDefinition, x as GenericAuthTriggers, y as GenericAuthTriggerChange } from "../generated-contract-disabled-C_-KWRfT.js"; import * as convex_values0 from "convex/values"; import { Infer } from "convex/values"; import { AuthConfig, DocumentByName, GenericDataModel, GenericMutationCtx, GenericQueryCtx, GenericSchema, PaginationOptions, PaginationResult, SchemaDefinition, TableNamesInDataModel } from "convex/server"; import * as better_auth_adapters0 from "better-auth/adapters"; import { DBAdapterDebugLogOption } from "better-auth/adapters"; import { BetterAuthDBSchema } from "better-auth/db"; import { BetterAuthOptions } from "better-auth/minimal"; import * as better_auth_api0 from "better-auth/api"; import * as better_auth_plugins_oidc_provider0 from "better-auth/plugins/oidc-provider"; import * as jose from "jose"; import * as better_auth0 from "better-auth"; import { Session, User } from "better-auth"; import { Where } from "better-auth/types"; import { SetOptional } from "type-fest"; //#region src/auth/adapter.d.ts declare const handlePagination: (next: ({ paginationOpts }: { paginationOpts: PaginationOptions; }) => Promise, "page"> & { count?: number; }>, { limit, numItems }?: { limit?: number; numItems?: number; }) => Promise<{ count: number; cursor: string | null; docs: any[]; isDone: boolean; }>; type ConvexCleanedWhere = Where & { value: number[] | string[] | boolean | number | string | null; }; declare const adapterConfig: { adapterId: string; adapterName: string; debugLogs: false; disableIdGeneration: true; mapKeysTransformInput: { id: string; }; mapKeysTransformOutput: { _id: string; }; supportsJSON: false; supportsNumericIds: false; supportsDates: false; supportsArrays: true; transaction: false; usePlural: false; customTransformInput: ({ data, fieldAttributes }: { data: any; fieldAttributes: better_auth0.DBFieldAttribute; field: string; action: "create" | "update" | "findOne" | "findMany" | "updateMany" | "delete" | "deleteMany" | "count"; model: string; schema: BetterAuthDBSchema; options: BetterAuthOptions; }) => any; customTransformOutput: ({ data, fieldAttributes }: { data: any; fieldAttributes: better_auth0.DBFieldAttribute; field: string; select: string[]; model: string; schema: BetterAuthDBSchema; options: BetterAuthOptions; }) => any; }; declare const httpAdapter: >(ctx: GenericCtx, { authFunctions, debugLogs, schema }: { authFunctions: AuthFunctions; debugLogs?: DBAdapterDebugLogOption; schema?: Schema; }) => better_auth_adapters0.AdapterFactory; declare const dbAdapter: >(ctx: GenericCtx, getAuthOptions: (ctx: any) => BetterAuthOptions, { authFunctions, debugLogs, schema }: { authFunctions: AuthFunctions; schema: Schema; debugLogs?: DBAdapterDebugLogOption; }) => better_auth_adapters0.AdapterFactory; //#endregion //#region src/auth/adapter-utils.d.ts type AdapterPaginationOptions = PaginationOptions & { endCursor?: string | null; maximumRowsRead?: number; }; declare const adapterWhereValidator: convex_values0.VObject<{ mode?: "sensitive" | "insensitive" | undefined; connector?: "AND" | "OR" | undefined; operator?: "lt" | "lte" | "gt" | "gte" | "eq" | "in" | "not_in" | "ne" | "contains" | "starts_with" | "ends_with" | undefined; value: string | number | boolean | string[] | number[] | null; field: string; }, { connector: convex_values0.VUnion<"AND" | "OR" | undefined, [convex_values0.VLiteral<"AND", "required">, convex_values0.VLiteral<"OR", "required">], "optional", never>; field: convex_values0.VString; mode: convex_values0.VUnion<"sensitive" | "insensitive" | undefined, [convex_values0.VLiteral<"sensitive", "required">, convex_values0.VLiteral<"insensitive", "required">], "optional", never>; operator: convex_values0.VUnion<"lt" | "lte" | "gt" | "gte" | "eq" | "in" | "not_in" | "ne" | "contains" | "starts_with" | "ends_with" | undefined, [convex_values0.VLiteral<"lt", "required">, convex_values0.VLiteral<"lte", "required">, convex_values0.VLiteral<"gt", "required">, convex_values0.VLiteral<"gte", "required">, convex_values0.VLiteral<"eq", "required">, convex_values0.VLiteral<"in", "required">, convex_values0.VLiteral<"not_in", "required">, convex_values0.VLiteral<"ne", "required">, convex_values0.VLiteral<"contains", "required">, convex_values0.VLiteral<"starts_with", "required">, convex_values0.VLiteral<"ends_with", "required">], "optional", never>; value: convex_values0.VUnion, convex_values0.VFloat64, convex_values0.VBoolean, convex_values0.VArray, "required">, convex_values0.VArray, "required">, convex_values0.VNull], "required", never>; }, "required", "mode" | "value" | "connector" | "field" | "operator">; declare const adapterArgsValidator: convex_values0.VObject<{ select?: string[] | undefined; where?: { mode?: "sensitive" | "insensitive" | undefined; connector?: "AND" | "OR" | undefined; operator?: "lt" | "lte" | "gt" | "gte" | "eq" | "in" | "not_in" | "ne" | "contains" | "starts_with" | "ends_with" | undefined; value: string | number | boolean | string[] | number[] | null; field: string; }[] | undefined; limit?: number | undefined; offset?: number | undefined; sortBy?: { field: string; direction: "asc" | "desc"; } | undefined; model: string; }, { limit: convex_values0.VFloat64; model: convex_values0.VString; offset: convex_values0.VFloat64; select: convex_values0.VArray, "optional">; sortBy: convex_values0.VObject<{ field: string; direction: "asc" | "desc"; } | undefined, { direction: convex_values0.VUnion<"asc" | "desc", [convex_values0.VLiteral<"asc", "required">, convex_values0.VLiteral<"desc", "required">], "required", never>; field: convex_values0.VString; }, "optional", "field" | "direction">; where: convex_values0.VArray<{ mode?: "sensitive" | "insensitive" | undefined; connector?: "AND" | "OR" | undefined; operator?: "lt" | "lte" | "gt" | "gte" | "eq" | "in" | "not_in" | "ne" | "contains" | "starts_with" | "ends_with" | undefined; value: string | number | boolean | string[] | number[] | null; field: string; }[] | undefined, convex_values0.VObject<{ mode?: "sensitive" | "insensitive" | undefined; connector?: "AND" | "OR" | undefined; operator?: "lt" | "lte" | "gt" | "gte" | "eq" | "in" | "not_in" | "ne" | "contains" | "starts_with" | "ends_with" | undefined; value: string | number | boolean | string[] | number[] | null; field: string; }, { connector: convex_values0.VUnion<"AND" | "OR" | undefined, [convex_values0.VLiteral<"AND", "required">, convex_values0.VLiteral<"OR", "required">], "optional", never>; field: convex_values0.VString; mode: convex_values0.VUnion<"sensitive" | "insensitive" | undefined, [convex_values0.VLiteral<"sensitive", "required">, convex_values0.VLiteral<"insensitive", "required">], "optional", never>; operator: convex_values0.VUnion<"lt" | "lte" | "gt" | "gte" | "eq" | "in" | "not_in" | "ne" | "contains" | "starts_with" | "ends_with" | undefined, [convex_values0.VLiteral<"lt", "required">, convex_values0.VLiteral<"lte", "required">, convex_values0.VLiteral<"gt", "required">, convex_values0.VLiteral<"gte", "required">, convex_values0.VLiteral<"eq", "required">, convex_values0.VLiteral<"in", "required">, convex_values0.VLiteral<"not_in", "required">, convex_values0.VLiteral<"ne", "required">, convex_values0.VLiteral<"contains", "required">, convex_values0.VLiteral<"starts_with", "required">, convex_values0.VLiteral<"ends_with", "required">], "optional", never>; value: convex_values0.VUnion, convex_values0.VFloat64, convex_values0.VBoolean, convex_values0.VArray, "required">, convex_values0.VArray, "required">, convex_values0.VNull], "required", never>; }, "required", "mode" | "value" | "connector" | "field" | "operator">, "optional">; }, "required", "model" | "select" | "where" | "limit" | "offset" | "sortBy" | "sortBy.field" | "sortBy.direction">; declare const hasUniqueFields: (betterAuthSchema: BetterAuthDBSchema, model: string, input: Record) => boolean; declare const checkUniqueFields: >(ctx: GenericQueryCtx, schema: Schema, betterAuthSchema: BetterAuthDBSchema, table: string, input: Record, doc?: Record) => Promise; declare const selectFields: , D extends DocumentByName>(doc: D | null, select?: string[]) => D | null; declare const paginate: , T extends TableNamesInDataModel>(ctx: GenericQueryCtx, schema: SchemaDefinition, betterAuthSchema: BetterAuthDBSchema, args: Infer & { paginationOpts: AdapterPaginationOptions; }) => Promise>; declare const listOne: , T extends TableNamesInDataModel>(ctx: GenericQueryCtx, schema: SchemaDefinition, betterAuthSchema: BetterAuthDBSchema, args: Infer) => Promise; //#endregion //#region src/auth/generated-contract.d.ts type UnknownFn = (...args: never[]) => unknown; declare const getInvalidAuthDefinitionExportReason: (authDefinitionPath?: string) => string; type AuthDefinitionModule, AuthOptions extends BetterAuthOptionsWithoutDatabase> = { default: GenericAuthDefinition; }; type AuthDefinitionInput, AuthOptions extends BetterAuthOptionsWithoutDatabase> = GenericAuthDefinition | AuthDefinitionModule; declare const resolveGeneratedAuthDefinition: (input: unknown, reason: string) => Definition; declare const createAuthRuntime: , TriggerCtx extends GenericMutationCtx = GenericMutationCtx, GenericCtx = GenericMutationCtx, AuthOptions extends BetterAuthOptionsWithoutDatabase = BetterAuthOptionsWithoutDatabase>(config: { internal: unknown; moduleName: string; schema: Schema; auth: AuthDefinitionInput; context?: (ctx: GenericMutationCtx) => TriggerCtx | Promise; }) => AuthRuntime; //#endregion //#region src/auth/helpers.d.ts type SessionDoc> = DocByCtx; type SessionResult> = LookupByIdResultByCtx; type SessionLookupCtx> = QueryCtxWithPreferredOrmQueryTable; type SessionClientSignals = { ip?: string; userAgent?: string; }; declare const getAuthUserIdentity: (ctx: GenericQueryCtx) => Promise<{ sessionId: DocumentByName["_id"]; userId: DocumentByName["_id"]; tokenIdentifier: string; subject: string; issuer: string; name?: string; givenName?: string; familyName?: string; nickname?: string; preferredUsername?: string; profileUrl?: string; pictureUrl?: string; email?: string; emailVerified?: boolean; gender?: string; birthday?: string; timezone?: string; language?: string; phoneNumber?: string; phoneNumberVerified?: boolean; address?: string; updatedAt?: string; } | null>; declare const getAuthUserId: (ctx: GenericQueryCtx) => Promise; declare function getSession>(ctx: TCtx & SessionLookupCtx, _sessionId?: SessionDoc['_id']): Promise>; declare const getSessionNetworkSignals: >(ctx: TCtx & QueryCtxWithPreferredOrmQueryTable, session?: SessionResult | null) => Promise; declare const getHeaders: >(ctx: TCtx & QueryCtxWithPreferredOrmQueryTable, session?: SessionResult | null) => Promise; //#endregion //#region src/auth/internal/convex-plugin.d.ts declare const convex: (opts: { authConfig: AuthConfig; jwks?: string; jwksRotateOnTokenGenerationError?: boolean; jwt?: { definePayload?: (session: { session: Session & Record; user: User & Record; }) => Promise> | Record | undefined; expirationSeconds?: number; }; /** * @deprecated Use jwt.expirationSeconds instead. */ jwtExpirationSeconds?: number; options?: BetterAuthOptions; }) => { id: "convex"; init: (ctx: better_auth0.AuthContext) => void; hooks: { before: ({ matcher(context: better_auth0.HookEndpointContext): boolean; handler: (inputContext: better_auth0.MiddlewareInputContext) => Promise<{ context: { headers: Headers; }; } | undefined>; } | { matcher: (ctx: better_auth0.HookEndpointContext) => boolean; handler: (inputContext: better_auth0.MiddlewareInputContext) => Promise<{ context: better_auth0.MiddlewareContext & better_auth0.InfoContext & { options: BetterAuthOptions; trustedOrigins: string[]; trustedProviders: string[]; isTrustedOrigin: (url: string, settings?: { allowRelativePaths: boolean; }) => boolean; oauthConfig: { skipStateCookieCheck?: boolean | undefined; storeStateStrategy: "database" | "cookie"; }; newSession: { session: { id: string; createdAt: Date; updatedAt: Date; userId: string; expiresAt: Date; token: string; ipAddress?: string | null | undefined; userAgent?: string | null | undefined; } & Record; user: { id: string; createdAt: Date; updatedAt: Date; email: string; emailVerified: boolean; name: string; image?: string | null | undefined; } & Record; } | null; session: { session: { id: string; createdAt: Date; updatedAt: Date; userId: string; expiresAt: Date; token: string; ipAddress?: string | null | undefined; userAgent?: string | null | undefined; } & Record; user: { id: string; createdAt: Date; updatedAt: Date; email: string; emailVerified: boolean; name: string; image?: string | null | undefined; } & Record; } | null; setNewSession: (session: { session: { id: string; createdAt: Date; updatedAt: Date; userId: string; expiresAt: Date; token: string; ipAddress?: string | null | undefined; userAgent?: string | null | undefined; } & Record; user: { id: string; createdAt: Date; updatedAt: Date; email: string; emailVerified: boolean; name: string; image?: string | null | undefined; } & Record; } | null) => void; socialProviders: better_auth0.OAuthProvider[]; authCookies: better_auth0.BetterAuthCookies; logger: ReturnType<(options?: better_auth0.Logger | undefined) => better_auth0.InternalLogger>; rateLimit: { enabled: boolean; window: number; max: number; storage: "memory" | "database" | "secondary-storage"; } & Omit; adapter: better_auth0.DBAdapter; internalAdapter: better_auth0.InternalAdapter; createAuthCookie: (cookieName: string, overrideAttributes?: Partial | undefined) => better_auth0.BetterAuthCookie; secret: string; secretConfig: string | better_auth0.SecretConfig; sessionConfig: { updateAge: number; expiresIn: number; freshAge: number; cookieRefreshCache: false | { enabled: true; updateAge: number; }; }; generateId: (options: { model: better_auth0.ModelNames; size?: number | undefined; }) => string | false; secondaryStorage: better_auth0.SecondaryStorage | undefined; password: { hash: (password: string) => Promise; verify: (data: { password: string; hash: string; }) => Promise; config: { minPasswordLength: number; maxPasswordLength: number; }; checkPassword: (userId: string, ctx: better_auth0.GenericEndpointContext) => Promise; }; tables: better_auth0.BetterAuthDBSchema; runMigrations: () => Promise; publishTelemetry: (event: { type: string; anonymousId?: string | undefined; payload: Record; }) => Promise; skipOriginCheck: boolean | string[]; skipCSRFCheck: boolean; runInBackground: (promise: Promise) => void; runInBackgroundOrAwait: (promise: Promise | void) => better_auth0.Awaitable; }>; }>; })[]; after: { matcher: (context: better_auth0.HookEndpointContext) => boolean; handler: better_auth_api0.AuthMiddleware; }[]; }; endpoints: { getOpenIdConfig: better_auth0.StrictEndpoint<"/convex/.well-known/openid-configuration", { method: "GET"; metadata: { isAction: false; }; }, better_auth_plugins_oidc_provider0.OIDCMetadata>; getJwks: better_auth0.StrictEndpoint<"/convex/jwks", { method: "GET"; metadata: { openapi: { description: string; responses: { '200': { description: string; }; }; }; }; }, jose.JSONWebKeySet>; getLatestJwks: better_auth0.StrictEndpoint<"/convex/latest-jwks", { isAction: boolean; method: "POST"; metadata: { SERVER_ONLY: true; openapi: { description: string; }; }; }, any[]>; rotateKeys: better_auth0.StrictEndpoint<"/convex/rotate-keys", { isAction: boolean; method: "POST"; metadata: { SERVER_ONLY: true; openapi: { description: string; }; }; }, any[]>; getToken: better_auth0.StrictEndpoint<"/convex/token", { method: "GET"; requireHeaders: true; use: ((inputContext: better_auth0.MiddlewareInputContext) => Promise<{ session: { session: Record & { id: string; createdAt: Date; updatedAt: Date; userId: string; expiresAt: Date; token: string; ipAddress?: string | null | undefined; userAgent?: string | null | undefined; }; user: Record & { id: string; createdAt: Date; updatedAt: Date; email: string; emailVerified: boolean; name: string; image?: string | null | undefined; }; }; }>)[]; metadata: { openapi: { description: string; }; }; }, { token: string; }>; }; schema: { jwks: { fields: { publicKey: { type: "string"; required: true; }; privateKey: { type: "string"; required: true; }; createdAt: { type: "date"; required: true; }; expiresAt: { type: "date"; required: false; }; }; }; user: { readonly fields: { readonly userId: { readonly type: "string"; readonly required: false; readonly input: false; }; }; }; }; }; //#endregion export { type AuthFunctions, type AuthRuntime, BetterAuthOptionsWithoutDatabase, ConvexCleanedWhere, type GeneratedAuthDisabledReasonKind, GenericAuthBeforeResult, GenericAuthDefinition, GenericAuthTriggerChange, GenericAuthTriggerHandlers, GenericAuthTriggers, GetAuth, SessionClientSignals, type Triggers, adapterArgsValidator, adapterConfig, adapterWhereValidator, checkUniqueFields, convex, createApi, createAuthRuntime, createClient, createDisabledAuthRuntime, createHandler, dbAdapter, defineAuth, deleteManyHandler, deleteOneHandler, findManyHandler, findOneHandler, getAuthUserId, getAuthUserIdentity, getGeneratedAuthDisabledReason, getHeaders, getInvalidAuthDefinitionExportReason, getSession, getSessionNetworkSignals, handlePagination, hasUniqueFields, httpAdapter, listOne, paginate, resolveGeneratedAuthDefinition, selectFields, updateManyHandler, updateOneHandler };