@@ -38,7 +39,7 @@ export const AuthClient = () => {
type="button"
variant="outline"
size="sm"
- disabled={isLoading}
+ disabled={isPending}
onClick={() => signOut()}
>
Sign Out
@@ -60,7 +61,7 @@ export const AuthClient = () => {
className="w-full rounded-none"
variant="outline"
size="sm"
- disabled={isLoading}
+ disabled={isPending}
onClick={() => signIn(provider.toLowerCase())}
>
Sign In with {provider}
diff --git a/apps/tanstack-start/src/components/header.tsx b/apps/tanstack-start/src/components/header.tsx
index 48d02eef..28354dc2 100644
--- a/apps/tanstack-start/src/components/header.tsx
+++ b/apps/tanstack-start/src/components/header.tsx
@@ -1,11 +1,12 @@
import { useState } from "react"
import { Menu, X } from "lucide-react"
-import { useAuth } from "@/contexts/auth"
import { Link } from "@tanstack/react-router"
import { Button } from "@/components/ui/button"
+import { useAuth } from "@aura-stack/react"
export const Header = () => {
- const { isAuthenticated, signOut } = useAuth()
+ const { status, signOut } = useAuth()
+ const isAuthenticated = status === "authenticated"
const [mobileMenuOpen, setMobileMenuOpen] = useState(false)
const handleSignOut = async () => {
diff --git a/apps/tanstack-start/src/contexts/auth.tsx b/apps/tanstack-start/src/contexts/auth.tsx
index 2f0ad9b2..63d05484 100644
--- a/apps/tanstack-start/src/contexts/auth.tsx
+++ b/apps/tanstack-start/src/contexts/auth.tsx
@@ -1,62 +1,10 @@
-import { createContext, use, useEffect, useState } from "react"
+import { AuthProvider as AuraAuthProvider, type AuthProviderProps } from "@aura-stack/react"
import { authClient } from "@/lib/auth-client"
-import type { Session, LiteralUnion, BuiltInOAuthProvider, SignInOptions, SignOutOptions } from "@aura-stack/auth"
-import type { AuthContextValue } from "@/@types/types"
-import type { AuthProviderProps } from "@/@types/props"
-export const AuthContext = createContext
(undefined)
-
-export const AuthProvider = ({ children, session: defaultSession }: AuthProviderProps) => {
- const [session, setSession] = useState(defaultSession ?? null)
- const [isLoading, setIsLoading] = useState(true)
- const isAuthenticated = Boolean(session?.user)
-
- const signIn = async (provider: LiteralUnion, options?: SignInOptions) => {
- setIsLoading(true)
- try {
- return await authClient.signIn(provider, options)
- } finally {
- setIsLoading(false)
- }
- }
-
- const signOut = async (options?: SignOutOptions) => {
- setIsLoading(true)
- try {
- const value = await authClient.signOut(options)
- setSession(null)
- return value
- } finally {
- setIsLoading(false)
- }
- }
-
- useEffect(() => {
- if (defaultSession !== undefined) {
- setSession(defaultSession)
- setIsLoading(false)
- return
- }
- const fetchSession = async () => {
- try {
- const session = await authClient.getSession()
- setSession(session)
- } catch {
- setSession(null)
- } finally {
- setIsLoading(false)
- }
- }
- fetchSession()
- }, [defaultSession])
-
- return {children}
-}
-
-export const useAuth = () => {
- const ctx = use(AuthContext)
- if (!ctx) {
- throw new Error("useAuth must be used within an component.")
- }
- return ctx
+export const AuthProvider = ({ children, initialSession }: Omit) => {
+ return (
+
+ {children}
+
+ )
}
diff --git a/apps/tanstack-start/tsconfig.json b/apps/tanstack-start/tsconfig.json
index c0f301c6..e299befa 100644
--- a/apps/tanstack-start/tsconfig.json
+++ b/apps/tanstack-start/tsconfig.json
@@ -2,7 +2,6 @@
"extends": "@aura-stack/tsconfig/tanstack.json",
"compilerOptions": {
"types": ["vite/client"],
- "baseUrl": ".",
"paths": {
"@/*": ["./src/*"]
}
diff --git a/package.json b/package.json
index a5b74ce9..1b9cb4c2 100644
--- a/package.json
+++ b/package.json
@@ -9,7 +9,7 @@
"dev:core": "turbo run @aura-stack/auth#dev",
"dev:docs": "turbo run docs#dev",
"build": "turbo run build --filter=./packages/* --filter=./apps/*",
- "build:prod": "turbo run build --filter=./packages/*",
+ "build:prod": "turbo run build --filter=./packages/* --continue",
"test": "turbo run test --parallel",
"format": "turbo run format format:root --parallel",
"format:root": "oxfmt \"!packages\" \"!apps\" \"!configs\"",
diff --git a/packages/core/README.md b/packages/core/README.md
index 6b8fc86f..518d665c 100644
--- a/packages/core/README.md
+++ b/packages/core/README.md
@@ -5,6 +5,7 @@
**Core authentication library for the Aura Stack ecosystem**
[](https://www.npmjs.com/package/@aura-stack/auth)
+[](https://jsr.io/@aura-stack/auth)
[](https://opensource.org/licenses/MIT)
[Official Docs](https://aura-stack-auth.vercel.app/docs) · [Core Package Docs](https://aura-stack-auth.vercel.app/docs/packages/core)
@@ -33,7 +34,7 @@ Visit the [**official documentation website**](https://aura-stack-auth.vercel.ap
## License
-Licensed under the [MIT License](LICENSE). © [Aura Stack](https://github.com/aura-stack-ts)
+Licensed under the [MIT License](../../LICENSE). © [Aura Stack](https://github.com/aura-stack-ts)
---
diff --git a/packages/core/package.json b/packages/core/package.json
index de88c2ef..6e3225fe 100644
--- a/packages/core/package.json
+++ b/packages/core/package.json
@@ -27,6 +27,7 @@
"access": "public",
"registry": "https://registry.npmjs.org/@aura-stack/auth"
},
+ "sideEffects": false,
"files": [
"dist"
],
diff --git a/packages/core/src/@types/utility.ts b/packages/core/src/@types/utility.ts
index 99797ed8..5feb102e 100644
--- a/packages/core/src/@types/utility.ts
+++ b/packages/core/src/@types/utility.ts
@@ -1,6 +1,7 @@
import type { User } from "@/@types/session.ts"
import type { AuthInstance } from "@/@types/config.ts"
-import type { ZodObject, ZodRawShape, ZodTypeAny, infer as Infer } from "zod/v4"
+import type { ZodObject, ZodRawShape, ZodTypeAny } from "zod/v4"
+import type { z } from "zod/v4"
export type Prettify = { [K in keyof T]: T[K] }
@@ -14,7 +15,7 @@ export type Merge = Omit & B
export type ShapeToObject = Merge<
{
- [K in keyof S]: Infer
+ [K in keyof S]: z.infer
},
User
>
diff --git a/packages/core/src/index.ts b/packages/core/src/index.ts
index 8c557bb2..e350acd4 100644
--- a/packages/core/src/index.ts
+++ b/packages/core/src/index.ts
@@ -43,6 +43,12 @@ export type {
SessionStrategy,
UserIdentityType,
UserShape,
+ CredentialsPayload,
+ DeepPartial,
+ UpdateSessionAPIOptions,
+ UpdateSessionReturn,
+ SignOutOptions,
+ SignInCredentialsOptions,
} from "@/@types/index.ts"
export type { Merge, ShapeToObject, EditableShape, InferShape, InferIdentity, InferAuthIdentity } from "@/@types/utility.ts"
diff --git a/packages/jose/README.md b/packages/jose/README.md
index db5db25d..fe0e5aa1 100644
--- a/packages/jose/README.md
+++ b/packages/jose/README.md
@@ -5,6 +5,7 @@
**Type-safe JOSE utilities for JWT signing, verification, and encryption**
[](https://www.npmjs.com/package/@aura-stack/jose)
+[](https://jsr.io/@aura-stack/jose)
[](https://opensource.org/licenses/MIT)
[Official Docs](https://aura-stack-auth.vercel.app/docs) · [JOSE Package Docs](https://aura-stack-auth.vercel.app/docs/packages/jose)
@@ -34,7 +35,7 @@ Visit the [**official documentation website**](https://aura-stack-auth.vercel.ap
## License
-Licensed under the [MIT License](LICENSE). © [Aura Stack](https://github.com/aura-stack-ts)
+Licensed under the [MIT License](../../LICENSE). © [Aura Stack](https://github.com/aura-stack-ts)
---
diff --git a/packages/jose/tsconfig.json b/packages/jose/tsconfig.json
index 9976e16e..f9f5a25c 100644
--- a/packages/jose/tsconfig.json
+++ b/packages/jose/tsconfig.json
@@ -4,7 +4,6 @@
"paths": {
"@/*": ["./src/*"]
},
- "baseUrl": ".",
"allowImportingTsExtensions": true,
"noEmit": true
},
diff --git a/packages/rate-limiter/README.md b/packages/rate-limiter/README.md
index e69de29b..b4bc8455 100644
--- a/packages/rate-limiter/README.md
+++ b/packages/rate-limiter/README.md
@@ -0,0 +1,73 @@
+
+
+
@aura-stack/rate-limiter
+
+**Rate limiting utilities for the Aura Stack ecosystem**
+
+[](https://www.npmjs.com/package/@aura-stack/rate-limiter)
+[](https://jsr.io/@aura-stack/rate-limiter)
+[](https://opensource.org/licenses/MIT)
+
+[Official Docs](https://aura-stack-auth.vercel.app/docs)
+
+
+
+## Overview
+
+`@aura-stack/rate-limiter` provides flexible and performant rate limiting solutions designed for the **Aura Stack** ecosystem but usable in any TypeScript project.
+
+It offers pluggable storage backends and algorithms to protect your APIs and authentication endpoints from brute-force attacks and abuse.
+
+## Features
+
+- **Token Bucket Algorithm** — Precise control over request rates with burst support.
+- **In-Memory Store** — Fast, built-in memory storage for single-instance applications.
+- **Framework Agnostic** — Works in Node.js, Bun, Deno, and Edge runtimes.
+- **Type-Safe** — Comprehensive TypeScript definitions for all algorithms and stores.
+- **Extensible** — Easily implement custom storage backends (Redis, Database, etc.).
+
+## Installation
+
+```bash
+pnpm add @aura-stack/rate-limiter
+```
+
+## Quick Start
+
+### Basic Usage with Token Bucket
+
+```tsx
+import { createRateLimiter } from "@aura-stack/rate-limiter"
+import { TokenBucket } from "@aura-stack/rate-limiter/algorithms"
+
+const limiter = createRateLimiter({
+ algorithm: new TokenBucket({
+ capacity: 10,
+ refillRate: 1, // 1 token per second
+ }),
+})
+
+async function handleRequest(userId: string) {
+ const result = await limiter.consume(userId)
+
+ if (!result.success) {
+ throw new Error("Too many requests. Try again later.")
+ }
+
+ // Proceed with request
+}
+```
+
+## Documentation
+
+Visit the [**official documentation website**](https://aura-stack-auth.vercel.app) for more detailed guides and API references.
+
+## License
+
+Licensed under the [MIT License](../../LICENSE). © [Aura Stack](https://github.com/aura-stack-ts)
+
+---
+
+
+ Made with ❤️ by Aura Stack team
+
diff --git a/packages/react/CHANGELOG.md b/packages/react/CHANGELOG.md
new file mode 100644
index 00000000..465837dc
--- /dev/null
+++ b/packages/react/CHANGELOG.md
@@ -0,0 +1,13 @@
+# Changelog - `@aura-stack/react`
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+---
+
+## [Unreleased]
+
+### Added
+
+- Introduced seamless React integration package that encapsulates the core authentication logic into a single React context, exposing powerful and easy-to-use hooks for session management and authentication flows. [#137](https://github.com/aura-stack-ts/auth/pull/137)
diff --git a/packages/react/README.md b/packages/react/README.md
new file mode 100644
index 00000000..47613e52
--- /dev/null
+++ b/packages/react/README.md
@@ -0,0 +1,96 @@
+
+
+
@aura-stack/react
+
+**React context and hooks for the Aura Stack authentication library**
+
+[](https://www.npmjs.com/package/@aura-stack/react)
+[](https://jsr.io/@aura-stack/react)
+[](https://opensource.org/licenses/MIT)
+
+[Official Docs](https://aura-stack-auth.vercel.app/docs)
+
+
+
+## Overview
+
+`@aura-stack/react` provides a seamless integration layer for **React** applications using **Aura Auth**. It encapsulates the core authentication logic into a single React context, exposing powerful and easy-to-use hooks for session management and authentication flows.
+
+It ensures that session state is synchronized across your entire component tree, reducing redundant network requests and providing a smooth developer experience.
+
+## Features
+
+- **Context-driven** — Single source of truth for session state and auth methods.
+- **Custom Hooks** — `useAuth`, `useSession`, `useSignIn`, `useSignOut`, and `useUpdateSession`.
+- **Type-safe** — Full TypeScript support for session objects and provider options.
+- **Optimistic Updates** — Built-in support for session refreshes and status transitions.
+- **Seamless Integration** — Works with any Aura Auth client configuration.
+
+## Installation
+
+```bash
+pnpm add @aura-stack/react @aura-stack/auth
+```
+
+> [!NOTE]
+> Ensure you have `react` (>= 19.x) installed.
+
+## Quick Start
+
+### 1. Configure the Provider
+
+Wrap your application with the `AuthProvider` and pass it a configured Aura Auth client.
+
+```tsx
+import { createAuthClient } from "@aura-stack/auth/client"
+import { AuthProvider } from "@aura-stack/react"
+
+const client = createAuthClient({
+ /* your config */
+})
+
+export const App = ({ children }) => {
+ return {children}
+}
+```
+
+### 2. Use the Hooks
+
+Access the session or authentication methods from any component in the tree.
+
+```tsx
+import { useSession, useSignIn, useSignOut } from "@aura-stack/react"
+
+export const UserProfile = () => {
+ const { session, status } = useSession()
+ const signIn = useSignIn()
+ const signOut = useSignOut()
+
+ if (status === "loading") return Loading...
+
+ if (!session) {
+ return
+ }
+
+ return (
+
+
Welcome, {session.user.name}!
+
+
+ Made with ❤️ by Aura Stack team
+
diff --git a/packages/react/deno.json b/packages/react/deno.json
new file mode 100644
index 00000000..798f9149
--- /dev/null
+++ b/packages/react/deno.json
@@ -0,0 +1,21 @@
+{
+ "name": "@aura-stack/react",
+ "version": "0.0.0",
+ "license": "MIT",
+ "tasks": {
+ "dev": "deno run --watch src/index.tsx"
+ },
+ "exports": {
+ ".": "./src/index.tsx",
+ "./hooks": "./src/hooks.ts",
+ "./context": "./src/context.ts",
+ "./types": "./src/types.ts"
+ },
+ "imports": {
+ "@/": "./src/"
+ },
+ "publish": {
+ "include": ["src/**/*.ts", "src/**/*.tsx", "README.md", "CHANGELOG.md"]
+ },
+ "exclude": ["dist", "node_modules"]
+}
diff --git a/packages/react/package.json b/packages/react/package.json
new file mode 100644
index 00000000..e8b0537c
--- /dev/null
+++ b/packages/react/package.json
@@ -0,0 +1,69 @@
+{
+ "name": "@aura-stack/react",
+ "version": "0.0.0",
+ "private": false,
+ "type": "module",
+ "description": "",
+ "scripts": {
+ "dev": "tsup --watch",
+ "build": "tsup",
+ "lint": "oxlint",
+ "lint:fix": "oxlint --fix",
+ "test": "vitest --run",
+ "test:watch": "vitest",
+ "test:coverage": "vitest --run --coverage",
+ "format": "oxfmt",
+ "format:check": "oxfmt --check",
+ "type-check": "tsc --noEmit",
+ "clean": "rm -rf dist"
+ },
+ "repository": {
+ "type": "git",
+ "url": "git+https://github.com/aura-stack-ts/auth"
+ },
+ "publishConfig": {
+ "access": "public"
+ },
+ "files": [
+ "dist"
+ ],
+ "exports": {
+ ".": {
+ "types": "./dist/index.d.ts",
+ "import": "./dist/index.js",
+ "require": "./dist/index.cjs"
+ },
+ "./hooks": {
+ "types": "./dist/hooks.d.ts",
+ "import": "./dist/hooks.js",
+ "require": "./dist/hooks.cjs"
+ },
+ "./context": {
+ "types": "./dist/context.d.ts",
+ "import": "./dist/context.js",
+ "require": "./dist/context.cjs"
+ },
+ "./types": "./dist/types.d.ts"
+ },
+ "keywords": [],
+ "author": "Aura Stack | Hernan Alvarado ",
+ "homepage": "https://aura-stack-auth.vercel.app",
+ "bugs": {
+ "url": "https://github.com/aura-stack-ts/auth/issues"
+ },
+ "license": "MIT",
+ "dependencies": {
+ "@aura-stack/auth": "workspace:*"
+ },
+ "devDependencies": {
+ "@aura-stack/tsconfig": "workspace:*",
+ "@aura-stack/tsup-config": "workspace:*",
+ "@testing-library/dom": "^10.4.1",
+ "@testing-library/react": "^16.3.2"
+ },
+ "peerDependencies": {
+ "react": ">=19.0.0",
+ "@types/react": ">=19.0.0"
+ },
+ "packageManager": "pnpm@10.15.0"
+}
diff --git a/packages/react/src/context.tsx b/packages/react/src/context.tsx
new file mode 100644
index 00000000..3edf8ddd
--- /dev/null
+++ b/packages/react/src/context.tsx
@@ -0,0 +1,128 @@
+"use client"
+
+import { createContext, useCallback, useEffect, useMemo, useState, useTransition } from "react"
+import type {
+ CredentialsPayload,
+ DeepPartial,
+ LiteralUnion,
+ BuiltInOAuthProvider,
+ Session,
+ SignInOptions,
+ SignOutOptions,
+ User,
+} from "@aura-stack/auth"
+import type { AuthProviderProps, AuthReactContextValue, UpdateSessionCallOptions } from "@/types.ts"
+
+/**
+ * React context for {@link AuthReactContextValue}. Use {@link AuthProvider} to supply a client and {@link useAuth} (or other hooks) to read it.
+ */
+export const AuthContext = createContext | null>(null)
+
+/**
+ * Provides session state and auth actions for the tree, using the {@link AuthProviderProps.client} you pass in.
+ * Swap or recreate `client` when you need different configuration; when `client` changes, session is re-synced like on mount.
+ */
+export const AuthProvider = ({
+ children,
+ client,
+ initialSession,
+}: AuthProviderProps) => {
+ const [session, setSession] = useState | null | undefined>(initialSession)
+ const [isPending, startTransition] = useTransition()
+
+ const status = useMemo((): AuthReactContextValue["status"] => {
+ if (session === undefined) return "loading"
+ return session ? "authenticated" : "unauthenticated"
+ }, [session])
+
+ const refresh = useCallback(async () => {
+ startTransition(async () => {
+ const next = await client.getSession()
+ setSession(next)
+ })
+ }, [client])
+
+ const signIn = useCallback(
+ async (oauth: LiteralUnion, signInOptions?: SignInOptions) => {
+ const result = await client.signIn(oauth, signInOptions)
+ if (!(signInOptions?.redirect ?? true)) {
+ await refresh()
+ }
+ return result
+ },
+ [client, refresh]
+ )
+
+ const signInCredentials = useCallback(
+ async (credentials: CredentialsPayload, signInOptions?: SignInOptions) => {
+ const result = await client.signInCredentials(credentials, signInOptions)
+ if (!(signInOptions?.redirect ?? true)) {
+ await refresh()
+ }
+ return result
+ },
+ [client, refresh]
+ )
+
+ const signOut = useCallback(
+ async (signOutOptions?: SignOutOptions) => {
+ const result = await client.signOut(signOutOptions)
+ if (!(signOutOptions?.redirect ?? true)) {
+ await refresh()
+ }
+ return result
+ },
+ [client, refresh]
+ )
+
+ const updateSession = useCallback(
+ async (partial: DeepPartial>, callOptions?: UpdateSessionCallOptions) => {
+ const result = await client.updateSession(partial)
+ if (!callOptions?.skipRefresh) {
+ await refresh()
+ }
+ return result
+ },
+ [client, refresh]
+ )
+
+ useEffect(() => {
+ if (initialSession !== undefined) {
+ startTransition(() => {
+ setSession(initialSession)
+ })
+ return
+ }
+
+ let cancelled = false
+ ;(async () => {
+ const next = await client.getSession()
+ if (!cancelled) {
+ startTransition(() => {
+ setSession(next)
+ })
+ }
+ })()
+
+ return () => {
+ cancelled = true
+ }
+ }, [initialSession, client])
+
+ const value = useMemo(
+ (): AuthReactContextValue => ({
+ session,
+ status,
+ isPending,
+ client,
+ refresh,
+ signIn,
+ signInCredentials,
+ signOut,
+ updateSession,
+ }),
+ [session, status, isPending, client, refresh, signIn, signInCredentials, signOut, updateSession]
+ )
+
+ return }>{children}
+}
diff --git a/packages/react/src/hooks.ts b/packages/react/src/hooks.ts
new file mode 100644
index 00000000..a0cb097a
--- /dev/null
+++ b/packages/react/src/hooks.ts
@@ -0,0 +1,82 @@
+"use client"
+
+import { use, useCallback, useRef } from "react"
+import type {
+ CredentialsPayload,
+ DeepPartial,
+ LiteralUnion,
+ BuiltInOAuthProvider,
+ Session,
+ SignInOptions,
+ SignOutOptions,
+ User,
+} from "@aura-stack/auth/types"
+import { AuthContext } from "@/context.tsx"
+import type { AuthReactContextValue, UpdateSessionCallOptions } from "@/types.ts"
+
+export const useAuth = (): AuthReactContextValue => {
+ const ctx = use(AuthContext)
+ if (!ctx) {
+ throw new Error("useAuth must be used within an AuthProvider.")
+ }
+ return ctx as AuthReactContextValue
+}
+
+export const useSession = () => {
+ const { session, status } = useAuth()
+ return { session, status }
+}
+
+/**
+ * OAuth sign-in. Pass default {@link SignInOptions} once; each call can still override
+ * `redirect`, `redirectTo`, etc. Call-time options win on conflict.
+ */
+export const useSignIn = (defaultOptions?: SignInOptions) => {
+ const { signIn } = useAuth()
+ const defaultsRef = useRef(defaultOptions)
+ defaultsRef.current = defaultOptions
+ return useCallback(
+ (oauth: LiteralUnion, signInOptions?: SignInOptions) =>
+ signIn(oauth, { ...defaultsRef.current, ...signInOptions }),
+ [signIn]
+ )
+}
+
+/**
+ * Credentials sign-in. Default {@link SignInOptions} are merged with per-invocation options.
+ */
+export const useSignInCredentials = (defaultOptions?: SignInOptions) => {
+ const { signInCredentials } = useAuth()
+ const defaultsRef = useRef(defaultOptions)
+ defaultsRef.current = defaultOptions
+ return useCallback(
+ (credentials: CredentialsPayload, signInOptions?: SignInOptions) =>
+ signInCredentials(credentials, { ...defaultsRef.current, ...signInOptions }),
+ [signInCredentials]
+ )
+}
+
+/**
+ * Sign-out. Default {@link SignOutOptions} (`redirect`, `redirectTo`, …) merge with each call.
+ */
+export const useSignOut = (defaultOptions?: SignOutOptions) => {
+ const { signOut } = useAuth()
+ const defaultsRef = useRef(defaultOptions)
+ defaultsRef.current = defaultOptions
+ return useCallback((signOutOptions?: SignOutOptions) => signOut({ ...defaultsRef.current, ...signOutOptions }), [signOut])
+}
+
+/**
+ * Patch session user/expiry. Default {@link UpdateSessionCallOptions} merge per call
+ * (e.g. `skipRefresh` to avoid a follow-up `getSession`).
+ */
+export const useUpdateSession = (defaultOptions?: UpdateSessionCallOptions) => {
+ const { updateSession } = useAuth()
+ const defaultsRef = useRef(defaultOptions)
+ defaultsRef.current = defaultOptions
+ return useCallback(
+ (partial: DeepPartial>, callOptions?: UpdateSessionCallOptions) =>
+ updateSession(partial, { ...defaultsRef.current, ...callOptions }),
+ [updateSession]
+ )
+}
diff --git a/packages/react/src/index.tsx b/packages/react/src/index.tsx
new file mode 100644
index 00000000..e6b3578b
--- /dev/null
+++ b/packages/react/src/index.tsx
@@ -0,0 +1,3 @@
+export { AuthProvider } from "@/context.tsx"
+export { useAuth, useSession, useSignIn, useSignInCredentials, useSignOut, useUpdateSession } from "@/hooks.ts"
+export type { AuthProviderProps, AuthClientInstance, AuthReactContextValue, AuthStatus } from "@/types.ts"
diff --git a/packages/react/src/types.ts b/packages/react/src/types.ts
new file mode 100644
index 00000000..084f71c3
--- /dev/null
+++ b/packages/react/src/types.ts
@@ -0,0 +1,60 @@
+import type { ReactNode } from "react"
+import type {
+ CredentialsPayload,
+ DeepPartial,
+ LiteralUnion,
+ BuiltInOAuthProvider,
+ Session,
+ SignInOptions,
+ SignOutOptions,
+ User,
+} from "@aura-stack/auth/types"
+
+export type AuthClientInstance = ReturnType<
+ typeof import("@aura-stack/auth/client").createAuthClient
+>
+
+export type AuthStatus = "authenticated" | "unauthenticated" | "loading"
+
+/** Options for {@link AuthReactContextValue.updateSession} (React layer; not sent to the HTTP API). */
+export type UpdateSessionCallOptions = {
+ /** When true, skip syncing session state via {@link AuthReactContextValue.refresh} after the update. */
+ skipRefresh?: boolean
+}
+
+/**
+ * Full auth surface exposed through a single React context so session state and
+ * mutations share one source of truth (no duplicate session fetches per subtree).
+ */
+export type AuthReactContextValue = {
+ session: Session | null | undefined
+ status: AuthStatus
+ /** True while a transition updates session state (e.g. after refresh or a non-redirect sign-in). */
+ isPending: boolean
+ client: AuthClientInstance
+ refresh: () => Promise
+ signIn: (
+ oauth: LiteralUnion,
+ options?: SignInOptions
+ ) => ReturnType["signIn"]>
+ signInCredentials: (
+ credentials: CredentialsPayload,
+ options?: SignInOptions
+ ) => ReturnType["signInCredentials"]>
+ signOut: (options?: SignOutOptions) => ReturnType["signOut"]>
+ updateSession: (
+ partial: DeepPartial>,
+ options?: UpdateSessionCallOptions
+ ) => ReturnType["updateSession"]>
+}
+
+export type AuthProviderProps = {
+ children: ReactNode
+ /** Auth API client from {@link createAuthClient}; swap this instance whenever your app needs a different client. */
+ client: AuthClientInstance
+ /**
+ * Server-rendered session when available. Omit or pass `undefined` to fetch on mount.
+ * Pass `null` when the server knows there is no session (skip the initial client fetch).
+ */
+ initialSession?: Session | null
+}
diff --git a/packages/react/test/hooks.test.tsx b/packages/react/test/hooks.test.tsx
new file mode 100644
index 00000000..3f6c6fc4
--- /dev/null
+++ b/packages/react/test/hooks.test.tsx
@@ -0,0 +1,153 @@
+import { act, renderHook, waitFor } from "@testing-library/react"
+import { describe, expect, test, vi } from "vitest"
+import { AuthProvider } from "@/context.tsx"
+import { useAuth, useSession, useSignIn, useSignInCredentials, useSignOut, useUpdateSession } from "@/hooks.ts"
+import type { ReactNode } from "react"
+import type { AuthClientInstance } from "@/types.ts"
+
+const mockUser = { id: "1", email: "test@example.com", name: "Test User" }
+const mockSession = { user: mockUser, expires: new Date(Date.now() + 3600 * 1000).toISOString() }
+
+const createMockClient = () =>
+ ({
+ getSession: vi.fn().mockResolvedValue(mockSession),
+ signIn: vi.fn().mockResolvedValue({ url: "/api/auth/signin" }),
+ signInCredentials: vi.fn().mockResolvedValue({ url: "/api/auth/signin" }),
+ signOut: vi.fn().mockResolvedValue({ url: "/api/auth/signout" }),
+ updateSession: vi.fn().mockResolvedValue(mockSession),
+ }) as unknown as AuthClientInstance
+
+const wrapper = ({ children, client, initialSession }: { children: ReactNode; client: any; initialSession?: any }) => (
+
+ {children}
+
+)
+
+describe("@aura-stack/react hooks", () => {
+ test("useSession with initialSession", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useSession(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: mockSession }),
+ })
+
+ expect(result.current.session).toEqual(mockSession)
+ expect(result.current.status).toBe("authenticated")
+ expect(client.getSession).not.toHaveBeenCalled()
+ })
+
+ test("useSignIn with redirect: false", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useSignIn(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: null }),
+ })
+
+ await act(async () => {
+ await result.current("github", { redirect: false })
+ })
+
+ expect(client.signIn).toHaveBeenCalledWith("github", { redirect: false })
+ await waitFor(() => expect(client.getSession).toHaveBeenCalledTimes(1))
+ })
+
+ test("useSignIn with redirectTo", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useSignIn(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: null }),
+ })
+
+ await act(async () => {
+ await result.current("github", { redirectTo: "/dashboard", redirect: true })
+ })
+
+ expect(client.signIn).toHaveBeenCalledWith("github", {
+ redirectTo: "/dashboard",
+ redirect: true,
+ })
+ })
+
+ test("useSignInCredentials with redirect: false", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useSignInCredentials(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: null }),
+ })
+
+ const credentials = { username: "test@example.com", password: "password" }
+ await act(async () => {
+ await result.current(credentials, { redirect: false })
+ })
+
+ expect(client.signInCredentials).toHaveBeenCalledWith(credentials, { redirect: false })
+ await waitFor(() => expect(client.getSession).toHaveBeenCalledTimes(1))
+ })
+
+ test("useSignOut calls client.signOut and refreshes session when redirect is false", async () => {
+ const client = createMockClient()
+ client.getSession = vi.fn().mockResolvedValueOnce(null)
+
+ const { result } = renderHook(() => useSignOut(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: mockSession }),
+ })
+
+ await act(async () => {
+ await result.current({ redirect: false })
+ })
+
+ expect(client.signOut).toHaveBeenCalledWith({ redirect: false })
+ await waitFor(() => expect(client.getSession).toHaveBeenCalledTimes(1))
+ })
+
+ test("useUpdateSession with refresh", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useUpdateSession(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: mockSession }),
+ })
+
+ const partial = { user: { name: "New Name" } }
+ await act(async () => {
+ await result.current(partial)
+ })
+
+ expect(client.updateSession).toHaveBeenCalledWith(partial)
+ await waitFor(() => expect(client.getSession).toHaveBeenCalledTimes(1))
+ })
+
+ test("useUpdateSession with skipRefresh", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useUpdateSession(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: mockSession }),
+ })
+
+ const partial = { user: { name: "New Name" } }
+ await act(async () => {
+ await result.current(partial, { skipRefresh: true })
+ })
+
+ expect(client.updateSession).toHaveBeenCalledWith(partial)
+ expect(client.getSession).not.toHaveBeenCalled()
+ })
+
+ test("useAuth returns full context value", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useAuth(), {
+ wrapper: ({ children }) => wrapper({ children, client, initialSession: mockSession }),
+ })
+
+ expect(result.current.session).toEqual(mockSession)
+ expect(result.current.status).toBe("authenticated")
+ expect(typeof result.current.signIn).toBe("function")
+ expect(typeof result.current.signOut).toBe("function")
+ expect(result.current.client).toBe(client)
+ })
+
+ test("context status transitions from loading to authenticated on mount", async () => {
+ const client = createMockClient()
+ const { result } = renderHook(() => useAuth(), {
+ wrapper: ({ children }) => wrapper({ children, client }),
+ })
+
+ expect(result.current.status).toBe("loading")
+
+ await waitFor(() => expect(result.current.status).toBe("authenticated"))
+ expect(result.current.session).toEqual(mockSession)
+ })
+})
diff --git a/packages/react/tsconfig.json b/packages/react/tsconfig.json
new file mode 100644
index 00000000..683985e3
--- /dev/null
+++ b/packages/react/tsconfig.json
@@ -0,0 +1,14 @@
+{
+ "extends": "@aura-stack/tsconfig/tsconfig.base.json",
+ "compilerOptions": {
+ "jsx": "react-jsx",
+ "allowImportingTsExtensions": true,
+ "noEmit": true,
+ "paths": {
+ "@/*": ["./src/*"],
+ "@test/*": ["./test/*"]
+ }
+ },
+ "include": ["src", "test"],
+ "exclude": ["dist", "node_modules"]
+}
diff --git a/packages/react/tsup.config.ts b/packages/react/tsup.config.ts
new file mode 100644
index 00000000..d970bafe
--- /dev/null
+++ b/packages/react/tsup.config.ts
@@ -0,0 +1,9 @@
+import { defineConfig } from "tsup"
+import { tsupConfig } from "@aura-stack/tsup-config"
+
+export default defineConfig({
+ ...tsupConfig,
+ banner: {
+ js: `"use client"`,
+ },
+})
diff --git a/packages/react/vitest.config.ts b/packages/react/vitest.config.ts
new file mode 100644
index 00000000..696d778f
--- /dev/null
+++ b/packages/react/vitest.config.ts
@@ -0,0 +1,19 @@
+import path from "node:path"
+import { fileURLToPath } from "node:url"
+import { defineConfig } from "vitest/config"
+
+const __dirname = path.dirname(fileURLToPath(import.meta.url))
+
+export default defineConfig({
+ test: {
+ include: ["test/**/*.test.tsx", "test/**/*.test.ts"],
+ environment: "jsdom",
+ globals: true,
+ },
+ resolve: {
+ alias: {
+ "@": path.resolve(__dirname, "./src"),
+ "@test": path.resolve(__dirname, "./test"),
+ },
+ },
+})
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index c9896c3d..4b44bc28 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -100,6 +100,9 @@ importers:
'@aura-stack/auth':
specifier: workspace:*
version: link:../../packages/core
+ '@aura-stack/react':
+ specifier: workspace:*
+ version: link:../../packages/react
'@radix-ui/react-slot':
specifier: ^1.2.4
version: 1.2.4(@types/react@19.2.14)(react@19.2.4)
@@ -241,6 +244,9 @@ importers:
'@aura-stack/auth':
specifier: workspace:*
version: link:../../../packages/core
+ '@aura-stack/react':
+ specifier: workspace:*
+ version: link:../../../packages/react
'@radix-ui/react-slot':
specifier: ^1.2.4
version: 1.2.4(@types/react@19.2.14)(react@19.2.4)
@@ -287,6 +293,9 @@ importers:
'@aura-stack/auth':
specifier: workspace:*
version: link:../../../packages/core
+ '@aura-stack/react':
+ specifier: workspace:*
+ version: link:../../../packages/react
'@radix-ui/react-slot':
specifier: ^1.2.4
version: 1.2.4(@types/react@19.2.14)(react@19.2.4)
@@ -367,6 +376,9 @@ importers:
'@aura-stack/auth':
specifier: workspace:*
version: link:../../packages/core
+ '@aura-stack/react':
+ specifier: workspace:*
+ version: link:../../packages/react
'@radix-ui/react-slot':
specifier: ^1.2.4
version: 1.2.4(@types/react@19.2.14)(react@19.2.4)
@@ -434,6 +446,9 @@ importers:
'@aura-stack/auth':
specifier: workspace:*
version: link:../../packages/core
+ '@aura-stack/react':
+ specifier: workspace:*
+ version: link:../../packages/react
'@hookform/resolvers':
specifier: ^5.2.2
version: 5.2.2(react-hook-form@7.71.2(react@19.2.4))
@@ -478,7 +493,7 @@ importers:
version: 0.561.0(react@19.2.4)
nitro:
specifier: npm:nitro-nightly@latest
- version: nitro-nightly@3.0.1-20260402-182549-a5a3389c(chokidar@5.0.0)(dotenv@17.3.1)(giget@3.1.2)(ioredis@5.10.0)(jiti@2.6.1)(lru-cache@11.2.7)(vite@7.3.1(@types/node@24.12.0)(jiti@2.6.1)(lightningcss@1.32.0)(terser@5.46.1)(tsx@4.21.0)(yaml@2.8.2))
+ version: nitro-nightly@3.0.1-20260409-145609-ab30376e(chokidar@5.0.0)(dotenv@17.3.1)(giget@3.1.2)(ioredis@5.10.0)(jiti@2.6.1)(lru-cache@11.2.7)(vite@7.3.1(@types/node@24.12.0)(jiti@2.6.1)(lightningcss@1.32.0)(terser@5.46.1)(tsx@4.21.0)(yaml@2.8.2))
react:
specifier: catalog:react
version: 19.2.4
@@ -685,6 +700,31 @@ importers:
specifier: workspace:*
version: link:../../configs/tsup-config
+ packages/react:
+ dependencies:
+ '@aura-stack/auth':
+ specifier: workspace:*
+ version: link:../core
+ '@types/react':
+ specifier: '>=19.0.0'
+ version: 19.2.14
+ react:
+ specifier: '>=19.0.0'
+ version: 19.2.4
+ devDependencies:
+ '@aura-stack/tsconfig':
+ specifier: workspace:*
+ version: link:../../configs/tsconfig
+ '@aura-stack/tsup-config':
+ specifier: workspace:*
+ version: link:../../configs/tsup-config
+ '@testing-library/dom':
+ specifier: ^10.4.1
+ version: 10.4.1
+ '@testing-library/react':
+ specifier: ^16.3.2
+ version: 16.3.2(@testing-library/dom@10.4.1)(@types/react-dom@19.2.3(@types/react@19.2.14))(@types/react@19.2.14)(react-dom@19.2.4(react@19.2.4))(react@19.2.4)
+
packages:
'@acemir/cssom@0.9.31':
@@ -6813,8 +6853,8 @@ packages:
nf3@0.3.16:
resolution: {integrity: sha512-Gs0xRPpUm2nDkqbi40NJ9g7qDIcjcJzgExiydnq6LAyqhI2jfno8wG3NKTL+IiJsx799UHOb1CnSd4Wg4SG4Pw==}
- nitro-nightly@3.0.1-20260402-182549-a5a3389c:
- resolution: {integrity: sha512-FlUsSGgM0DMMl+N8pdWqpAllNguCgj983LUmWpio7HQsDv+mhX0JUc7WMwszBW+d1e+gb2pe6rjrMlJeFFiFUw==}
+ nitro-nightly@3.0.1-20260409-145609-ab30376e:
+ resolution: {integrity: sha512-q1nEIMbzn+kqei7nVJ0RnC/EAEaBqQZVeScrni8Ndw1Ztt9HH1GHTH3TdHg7F6NoHV3uphMRtlcCQmmTbAGm0A==}
engines: {node: ^20.19.0 || >=22.12.0}
hasBin: true
peerDependencies:
@@ -14561,7 +14601,7 @@ snapshots:
h3@2.0.1-rc.16(crossws@0.4.4(srvx@0.11.15)):
dependencies:
rou3: 0.8.1
- srvx: 0.11.12
+ srvx: 0.11.15
optionalDependencies:
crossws: 0.4.4(srvx@0.11.15)
@@ -15832,7 +15872,7 @@ snapshots:
nf3@0.3.16: {}
- nitro-nightly@3.0.1-20260402-182549-a5a3389c(chokidar@5.0.0)(dotenv@17.3.1)(giget@3.1.2)(ioredis@5.10.0)(jiti@2.6.1)(lru-cache@11.2.7)(vite@7.3.1(@types/node@24.12.0)(jiti@2.6.1)(lightningcss@1.32.0)(terser@5.46.1)(tsx@4.21.0)(yaml@2.8.2)):
+ nitro-nightly@3.0.1-20260409-145609-ab30376e(chokidar@5.0.0)(dotenv@17.3.1)(giget@3.1.2)(ioredis@5.10.0)(jiti@2.6.1)(lru-cache@11.2.7)(vite@7.3.1(@types/node@24.12.0)(jiti@2.6.1)(lightningcss@1.32.0)(terser@5.46.1)(tsx@4.21.0)(yaml@2.8.2)):
dependencies:
consola: 3.4.2
crossws: 0.4.4(srvx@0.11.15)
diff --git a/turbo.json b/turbo.json
index 9b121cea..613d71de 100644
--- a/turbo.json
+++ b/turbo.json
@@ -23,6 +23,9 @@
".vercel/output/**"
]
},
+ "@aura-stack/react#build": {
+ "dependsOn": ["@aura-stack/auth#build"]
+ },
"test": {
"dependsOn": ["^test"],
"cache": false