refactor: 🎨 tab format

Author: willin

.eslintignore

@@ -2,6 +2,7 @@
 node_modules
 /build
 /.svelte-kit
+/static
 /package
 .env
 .env.*

.eslintrc.cjs

@@ -1,34 +1,34 @@
 /** @type { import("eslint").Linter.FlatConfig } */
 module.exports = {
-	root: true,
-	extends: [
-		'eslint:recommended',
-		'plugin:@typescript-eslint/recommended',
-		'plugin:svelte/recommended',
-		'prettier'
-	],
-	parser: '@typescript-eslint/parser',
-	plugins: ['@typescript-eslint'],
-	parserOptions: {
-		sourceType: 'module',
-		ecmaVersion: 2020,
-		extraFileExtensions: ['.svelte']
-	},
-	rules: {
-		'@typescript-eslint/no-explicit-any': 1
-	},
-	env: {
-		browser: true,
-		es2017: true,
-		node: true
-	},
-	overrides: [
-		{
-			files: ['*.svelte'],
-			parser: 'svelte-eslint-parser',
-			parserOptions: {
-				parser: '@typescript-eslint/parser'
-			}
-		}
-	]
+  root: true,
+  extends: [
+    'eslint:recommended',
+    'plugin:@typescript-eslint/recommended',
+    'plugin:svelte/recommended',
+    'prettier'
+  ],
+  parser: '@typescript-eslint/parser',
+  plugins: ['@typescript-eslint'],
+  parserOptions: {
+    sourceType: 'module',
+    ecmaVersion: 2020,
+    extraFileExtensions: ['.svelte']
+  },
+  rules: {
+    '@typescript-eslint/no-explicit-any': 1
+  },
+  env: {
+    browser: true,
+    es2017: true,
+    node: true
+  },
+  overrides: [
+    {
+      files: ['*.svelte'],
+      parser: 'svelte-eslint-parser',
+      parserOptions: {
+        parser: '@typescript-eslint/parser'
+      }
+    }
+  ]
 };

.prettierignore

@@ -1,6 +1,7 @@
 .DS_Store
 node_modules
 /build
+/static
 /.svelte-kit
 /package
 .env

.prettierrc

@@ -1,8 +1,11 @@
 {
-	"useTabs": true,
-	"singleQuote": true,
-	"trailingComma": "none",
-	"printWidth": 100,
-	"plugins": ["prettier-plugin-svelte"],
-	"overrides": [{ "files": "*.svelte", "options": { "parser": "svelte" } }]
+  "useTabs": false,
+  "tabWidth": 2,
+  "singleQuote": true,
+  "semi": true,
+  "bracketSameLine": true,
+  "trailingComma": "none",
+  "printWidth": 100,
+  "plugins": ["prettier-plugin-svelte"],
+  "overrides": [{ "files": "*.svelte", "options": { "parser": "svelte" } }]
 }

.vscode/extensions.json

@@ -1,13 +1,13 @@
 {
-	"recommendations": [
-		"streetsidesoftware.code-spell-checker",
-		"vivaxy.vscode-conventional-commits",
-		"aaron-bond.better-comments",
-		"editorconfig.editorconfig",
-		"dbaeumer.vscode-eslint",
-		"eamodio.gitlens",
-		"github.copilot",
-		"esbenp.prettier-vscode",
-		"svelte.svelte-vscode"
-	]
+  "recommendations": [
+    "streetsidesoftware.code-spell-checker",
+    "vivaxy.vscode-conventional-commits",
+    "aaron-bond.better-comments",
+    "editorconfig.editorconfig",
+    "dbaeumer.vscode-eslint",
+    "eamodio.gitlens",
+    "github.copilot",
+    "esbenp.prettier-vscode",
+    "svelte.svelte-vscode"
+  ]
 }

.vscode/settings.json

@@ -1,3 +1,3 @@
 {
-	"cSpell.words": ["willin"]
+  "cSpell.words": ["willin"]
 }

README.md

@@ -46,46 +46,46 @@ import { Auth } from '@svelte-dev/auth';
 import { OAuth2Strategy } from '@svelte-dev/auth-oauth2';
 
 export const handle = sequence(
-	handleSession({
-		adapter: {
-			name: 'cookie',
-			options: {
-				chunk: true
-			}
-		},
-		session: {
-			secrets: ['s3cr3t']
-		},
-		cookie: {
-			secure: !!env.SSO_CALLBACK_URL,
-			sameSite: 'lax',
-			path: '/',
-			httpOnly: !!env.SSO_CALLBACK_URL
-		}
-	}),
-	async function handle({ event, resolve }) {
-		const auth = new Auth(event);
-		const oauthStrategy = new OAuth2Strategy(
-			{
-				clientID: env.SSO_ID,
-				clientSecret: env.SSO_SECRET,
-				callbackURL: env.SSO_CALLBACK_URL || 'http://localhost:8788/auth/sso/callback'
-			},
-			async ({ profile }) => {
-				// Get the user data from your DB or API using the tokens and profile
-				return profile;
-			}
-		);
-		auth.use(oauthStrategy);
-		event.locals.auth = auth;
-		event.locals.user = event.locals.session.get(
-			// replace your session key, AuthOptions.sessionKey
-			'user'
-		);
-		const response = await resolve(event);
-
-		return response;
-	}
+  handleSession({
+    adapter: {
+      name: 'cookie',
+      options: {
+        chunk: true
+      }
+    },
+    session: {
+      secrets: ['s3cr3t']
+    },
+    cookie: {
+      secure: !!env.SSO_CALLBACK_URL,
+      sameSite: 'lax',
+      path: '/',
+      httpOnly: !!env.SSO_CALLBACK_URL
+    }
+  }),
+  async function handle({ event, resolve }) {
+    const auth = new Auth(event);
+    const oauthStrategy = new OAuth2Strategy(
+      {
+        clientID: env.SSO_ID,
+        clientSecret: env.SSO_SECRET,
+        callbackURL: env.SSO_CALLBACK_URL || 'http://localhost:8788/auth/sso/callback'
+      },
+      async ({ profile }) => {
+        // Get the user data from your DB or API using the tokens and profile
+        return profile;
+      }
+    );
+    auth.use(oauthStrategy);
+    event.locals.auth = auth;
+    event.locals.user = event.locals.session.get(
+      // replace your session key, AuthOptions.sessionKey
+      'user'
+    );
+    const response = await resolve(event);
+
+    return response;
+  }
 );
 ```
 
@@ -99,30 +99,30 @@ Modify `app.d.ts`, here is an example:
 // See https://kit.svelte.dev/docs/types#app
 // for information about these interfaces
 declare global {
-	namespace App {
-		// interface Error {}
-		interface Locals {
-			auth: Auth;
-			session: SessionStorage<{ user: any }>;
-			user:
-				| {
-						invalid?: boolean;
-						[key: string]: unknown;
-				  }
-				| unknown;
-		}
-		// interface PageData {}
-		interface Platform {
-			env: {
-				SSO_ID: string;
-				SSO_SECRET: string;
-			};
-			context: {
-				waitUntil(promise: Promise<unknown>): void;
-			};
-			caches: CacheStorage & { default: Cache };
-		}
-	}
+  namespace App {
+    // interface Error {}
+    interface Locals {
+      auth: Auth;
+      session: SessionStorage<{ user: any }>;
+      user:
+        | {
+            invalid?: boolean;
+            [key: string]: unknown;
+          }
+        | unknown;
+    }
+    // interface PageData {}
+    interface Platform {
+      env: {
+        SSO_ID: string;
+        SSO_SECRET: string;
+      };
+      context: {
+        waitUntil(promise: Promise<unknown>): void;
+      };
+      caches: CacheStorage & { default: Cache };
+    }
+  }
 }
 
 export {};

package.json

@@ -1,102 +1,102 @@
 {
-	"name": "@svelte-dev/auth",
-	"version": "0.1.0",
-	"description": "Simple Authentication for Svelte",
-	"author": "Willin Wang <willin@willin.org> (https://willin.wang/)",
-	"keywords": [
-		"svelte",
-		"auth",
-		"authentication",
-		"local",
-		"auth0",
-		"authing",
-		"oauth2",
-		"strategies"
-	],
-	"homepage": "https://github.com/willin/svelte-auth#readme",
-	"scripts": {
-		"dev": "vite dev --port 8788",
-		"dev:docs": "typedoc --watch",
-		"build": "vite build && npm run package",
-		"build:docs": "typedoc",
-		"preview": "vite preview",
-		"package": "svelte-kit sync && svelte-package && publint",
-		"prepublishOnly": "npm run package",
-		"check": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json",
-		"check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch",
-		"version": "conventional-changelog -p angular -i CHANGELOG.md -s && git add CHANGELOG.md",
-		"test": "vitest",
-		"coverage": "vitest run --coverage",
-		"prepare": "husky install",
-		"lint": "prettier --write . && eslint . --fix"
-	},
-	"exports": {
-		".": {
-			"types": "./dist/index.d.ts",
-			"svelte": "./dist/index.js"
-		}
-	},
-	"files": [
-		"dist",
-		"!dist/**/*.test.*",
-		"!dist/**/*.spec.*"
-	],
-	"dependencies": {},
-	"peerDependencies": {
-		"@svelte-dev/session": "^0.1.0",
-		"@sveltejs/kit": "^1.0.0",
-		"svelte": "^5.0.0||^4.0.0"
-	},
-	"devDependencies": {
-		"@commitlint/cli": "latest",
-		"@commitlint/config-conventional": "latest",
-		"@svelte-dev/auth-sso": "^0.0.5",
-		"@sveltejs/adapter-cloudflare": "^2.3.3",
-		"@sveltejs/kit": "^1.27.4",
-		"@sveltejs/package": "^2.2.3",
-		"@typescript-eslint/eslint-plugin": "^6.0.0",
-		"@typescript-eslint/parser": "^6.0.0",
-		"@vitest/coverage-istanbul": "^0.34.6",
-		"bun-types": "^1.0.15",
-		"conventional-changelog-cli": "latest",
-		"eslint": "^8.28.0",
-		"eslint-config-prettier": "^9.0.0",
-		"eslint-plugin-svelte": "^2.30.0",
-		"husky": "latest",
-		"lint-staged": "latest",
-		"prettier": "^3.0.0",
-		"prettier-plugin-svelte": "^3.0.0",
-		"publint": "^0.1.9",
-		"svelte": "^5.0.0-next.17",
-		"svelte-check": "^3.6.0",
-		"tslib": "^2.4.1",
-		"typedoc-plugin-extras": "^3.0.0",
-		"typedoc-plugin-google-ads": "^1.6.0",
-		"typedoc-plugin-keywords": "^1.6.0",
-		"typedocs": "^0.6.7",
-		"typescript": "^5.0.0",
-		"vite": "^4.4.2",
-		"vitest": "^0.34.0"
-	},
-	"svelte": "./dist/index.js",
-	"types": "./dist/index.d.ts",
-	"type": "module",
-	"publishConfig": {
-		"access": "public"
-	},
-	"repository": {
-		"type": "git",
-		"url": "git+https://github.com/willin/svelte-auth.git"
-	},
-	"bugs": {
-		"url": "https://github.com/willin/svelte-auth/issues"
-	},
-	"lint-staged": {
-		"*.+(js|jsx|json|yml|yaml|css|less|scss|ts|tsx|md|graphql|mdx|vue)": [
-			"prettier --write"
-		],
-		"*.+(js|jsx|ts|tsx|vue)": [
-			"eslint --fix"
-		]
-	}
+  "name": "@svelte-dev/auth",
+  "version": "0.1.0",
+  "description": "Simple Authentication for Svelte",
+  "author": "Willin Wang <willin@willin.org> (https://willin.wang/)",
+  "keywords": [
+    "svelte",
+    "auth",
+    "authentication",
+    "local",
+    "auth0",
+    "authing",
+    "oauth2",
+    "strategies"
+  ],
+  "homepage": "https://github.com/willin/svelte-auth#readme",
+  "scripts": {
+    "dev": "vite dev --port 8788",
+    "dev:docs": "typedoc --watch",
+    "build": "vite build && npm run package",
+    "build:docs": "typedoc",
+    "preview": "vite preview",
+    "package": "svelte-kit sync && svelte-package && publint",
+    "prepublishOnly": "npm run package",
+    "check": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json",
+    "check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch",
+    "version": "conventional-changelog -p angular -i CHANGELOG.md -s && git add CHANGELOG.md",
+    "test": "vitest",
+    "coverage": "vitest run --coverage",
+    "prepare": "husky install",
+    "lint": "prettier --write . && eslint . --fix"
+  },
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "svelte": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "!dist/**/*.test.*",
+    "!dist/**/*.spec.*"
+  ],
+  "dependencies": {},
+  "peerDependencies": {
+    "@svelte-dev/session": "^0.1.0",
+    "@sveltejs/kit": "^1.0.0",
+    "svelte": "^5.0.0||^4.0.0"
+  },
+  "devDependencies": {
+    "@commitlint/cli": "latest",
+    "@commitlint/config-conventional": "latest",
+    "@svelte-dev/auth-sso": "^0.0.5",
+    "@sveltejs/adapter-cloudflare": "^2.3.3",
+    "@sveltejs/kit": "^1.27.4",
+    "@sveltejs/package": "^2.2.3",
+    "@typescript-eslint/eslint-plugin": "^6.0.0",
+    "@typescript-eslint/parser": "^6.0.0",
+    "@vitest/coverage-istanbul": "^0.34.6",
+    "bun-types": "^1.0.15",
+    "conventional-changelog-cli": "latest",
+    "eslint": "^8.28.0",
+    "eslint-config-prettier": "^9.0.0",
+    "eslint-plugin-svelte": "^2.30.0",
+    "husky": "latest",
+    "lint-staged": "latest",
+    "prettier": "^3.0.0",
+    "prettier-plugin-svelte": "^3.0.0",
+    "publint": "^0.1.9",
+    "svelte": "^5.0.0-next.17",
+    "svelte-check": "^3.6.0",
+    "tslib": "^2.4.1",
+    "typedoc-plugin-extras": "^3.0.0",
+    "typedoc-plugin-google-ads": "^1.6.0",
+    "typedoc-plugin-keywords": "^1.6.0",
+    "typedocs": "^0.6.7",
+    "typescript": "^5.0.0",
+    "vite": "^4.4.2",
+    "vitest": "^0.34.0"
+  },
+  "svelte": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "type": "module",
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/willin/svelte-auth.git"
+  },
+  "bugs": {
+    "url": "https://github.com/willin/svelte-auth/issues"
+  },
+  "lint-staged": {
+    "*.+(js|jsx|json|yml|yaml|css|less|scss|ts|tsx|md|graphql|mdx|vue)": [
+      "prettier --write"
+    ],
+    "*.+(js|jsx|ts|tsx|vue)": [
+      "eslint --fix"
+    ]
+  }
 }

src/app.d.ts

@@ -6,30 +6,30 @@ import type { Auth } from '$lib/auth/auth.ts';
 // See https://kit.svelte.dev/docs/types#app
 // for information about these interfaces
 declare global {
-	namespace App {
-		// interface Error {}
-		interface Locals {
-			auth: Auth;
-			session: SessionStorage<{ user: any }>;
-			user?:
-				| {
-						invalid?: boolean;
-						[key: string]: unknown;
-				  }
-				| unknown;
-		}
-		// interface PageData {}
-		interface Platform {
-			env: {
-				SSO_ID: string;
-				SSO_SECRET: string;
-			};
-			context: {
-				waitUntil(promise: Promise<unknown>): void;
-			};
-			caches: CacheStorage & { default: Cache };
-		}
-	}
+  namespace App {
+    // interface Error {}
+    interface Locals {
+      auth: Auth;
+      session: SessionStorage<{ user: any }>;
+      user?:
+        | {
+            invalid?: boolean;
+            [key: string]: unknown;
+          }
+        | unknown;
+    }
+    // interface PageData {}
+    interface Platform {
+      env: {
+        SSO_ID: string;
+        SSO_SECRET: string;
+      };
+      context: {
+        waitUntil(promise: Promise<unknown>): void;
+      };
+      caches: CacheStorage & { default: Cache };
+    }
+  }
 }
 
 export {};

src/app.html

@@ -1,12 +1,12 @@
 <!doctype html>
 <html lang="en">
-	<head>
-		<meta charset="utf-8" />
-		<link rel="icon" href="%sveltekit.assets%/favicon.png" />
-		<meta name="viewport" content="width=device-width, initial-scale=1" />
-		%sveltekit.head%
-	</head>
-	<body data-sveltekit-preload-data="hover">
-		<div>%sveltekit.body%</div>
-	</body>
+  <head>
+    <meta charset="utf-8" />
+    <link rel="icon" href="%sveltekit.assets%/favicon.png" />
+    <meta name="viewport" content="width=device-width, initial-scale=1" />
+    %sveltekit.head%
+  </head>
+  <body data-sveltekit-preload-data="hover">
+    <div>%sveltekit.body%</div>
+  </body>
 </html>

src/hooks.server.ts

@@ -5,43 +5,43 @@ import { Auth } from '$lib/auth/auth.js';
 import { SSOStrategy } from '@svelte-dev/auth-sso';
 
 export const handle = sequence(
-	handleSession({
-		adapter: {
-			name: 'cookie',
-			options: {
-				chunk: true
-			}
-		},
-		session: {
-			secrets: ['s3cr3t']
-		},
-		cookie: {
-			secure: !!env.SSO_CALLBACK_URL,
-			sameSite: 'lax',
-			path: '/',
-			httpOnly: !!env.SSO_CALLBACK_URL,
-			maxAge: 604800000
-		}
-	}),
-	async function handle({ event, resolve }) {
-		const auth = new Auth(event);
-		const ssoStrategy = new SSOStrategy(
-			{
-				clientID: env.SSO_ID,
-				clientSecret: env.SSO_SECRET,
-				callbackURL: env.SSO_CALLBACK_URL || 'http://localhost:8788/auth/sso/callback'
-			},
-			async ({ profile }) => {
-				// Get the user data from your DB or API using the tokens and profile
-				return profile;
-			}
-		);
-		auth.use(ssoStrategy as any);
-		event.locals.auth = auth;
-		const user = event.locals.session.get('user');
-		event.locals.user = user;
-		const response = await resolve(event);
+  handleSession({
+    adapter: {
+      name: 'cookie',
+      options: {
+        chunk: true
+      }
+    },
+    session: {
+      secrets: ['s3cr3t']
+    },
+    cookie: {
+      secure: !!env.SSO_CALLBACK_URL,
+      sameSite: 'lax',
+      path: '/',
+      httpOnly: !!env.SSO_CALLBACK_URL,
+      maxAge: 604800000
+    }
+  }),
+  async function handle({ event, resolve }) {
+    const auth = new Auth(event);
+    const ssoStrategy = new SSOStrategy(
+      {
+        clientID: env.SSO_ID,
+        clientSecret: env.SSO_SECRET,
+        callbackURL: env.SSO_CALLBACK_URL || 'http://localhost:8788/auth/sso/callback'
+      },
+      async ({ profile }) => {
+        // Get the user data from your DB or API using the tokens and profile
+        return profile;
+      }
+    );
+    auth.use(ssoStrategy as any);
+    event.locals.auth = auth;
+    const user = event.locals.session.get('user');
+    event.locals.user = user;
+    const response = await resolve(event);
 
-		return response;
-	}
+    return response;
+  }
 );

src/lib/auth/auth.ts

@@ -4,73 +4,73 @@ import type { Strategy } from './strategy.js';
 import type { AuthOptions } from './types.js';
 
 export class Auth<User = unknown> {
-	/**
-	 * A map of the configured strategies, the key is the name of the strategy
-	 * @private
-	 */
-	#strategies = new Map<string, Strategy<User, never>>();
-	#session: SessionStorage;
+  /**
+   * A map of the configured strategies, the key is the name of the strategy
+   * @private
+   */
+  #strategies = new Map<string, Strategy<User, never>>();
+  #session: SessionStorage;
 
-	constructor(event: RequestEvent) {
-		this.#session = (event.locals as any)?.session;
-	}
+  constructor(event: RequestEvent) {
+    this.#session = (event.locals as any)?.session;
+  }
 
-	/**
-	 * Call this method with the Strategy, the optional name allows you to setup
-	 * the same strategy multiple times with different names.
-	 * It returns the Authenticator instance for concatenation.
-	 * @example
-	 * auth
-	 *  .use(new SomeStrategy({}, (user) => Promise.resolve(user)))
-	 *  .use(new SomeStrategy({}, (user) => Promise.resolve(user)), "another");
-	 */
-	use(strategy: Strategy<User, never>, name?: string): Auth<User> {
-		this.#strategies.set(name ?? strategy.name, strategy);
-		return this;
-	}
+  /**
+   * Call this method with the Strategy, the optional name allows you to setup
+   * the same strategy multiple times with different names.
+   * It returns the Authenticator instance for concatenation.
+   * @example
+   * auth
+   *  .use(new SomeStrategy({}, (user) => Promise.resolve(user)))
+   *  .use(new SomeStrategy({}, (user) => Promise.resolve(user)), "another");
+   */
+  use(strategy: Strategy<User, never>, name?: string): Auth<User> {
+    this.#strategies.set(name ?? strategy.name, strategy);
+    return this;
+  }
 
-	/**
-	 * Call this method with the name of the strategy you want to remove.
-	 * It returns the Authenticator instance for concatenation.
-	 * @example
-	 * auth.unuse("another").unuse("some");
-	 */
-	unuse(name: string): Auth<User> {
-		this.#strategies.delete(name);
-		return this;
-	}
+  /**
+   * Call this method with the name of the strategy you want to remove.
+   * It returns the Authenticator instance for concatenation.
+   * @example
+   * auth.unuse("another").unuse("some");
+   */
+  unuse(name: string): Auth<User> {
+    this.#strategies.delete(name);
+    return this;
+  }
 
-	/**
-	 * Call this to authenticate a request using some strategy. You pass the name
-	 * of the strategy you want to use and the request to authenticate.
-	 * @example
-	 * async function action({ locals }: RequestEvent) {
-	 *   return locals.auth.authenticate("some", {
-	 *     successRedirect: "/private",
-	 *     failureRedirect: "/login",
-	 *   });
-	 * };
-	 */
-	async authenticate(
-		event: RequestEvent,
-		strategy: string,
-		options: AuthOptions
-	): Promise<User | void> {
-		const strategyObj = this.#strategies.get(strategy);
-		if (!strategyObj) throw new Error(`Strategy ${strategy} not found.`);
-		return strategyObj.authenticate(event, {
-			...options,
-			name: strategy
-		});
-	}
+  /**
+   * Call this to authenticate a request using some strategy. You pass the name
+   * of the strategy you want to use and the request to authenticate.
+   * @example
+   * async function action({ locals }: RequestEvent) {
+   *   return locals.auth.authenticate("some", {
+   *     successRedirect: "/private",
+   *     failureRedirect: "/login",
+   *   });
+   * };
+   */
+  async authenticate(
+    event: RequestEvent,
+    strategy: string,
+    options: AuthOptions
+  ): Promise<User | void> {
+    const strategyObj = this.#strategies.get(strategy);
+    if (!strategyObj) throw new Error(`Strategy ${strategy} not found.`);
+    return strategyObj.authenticate(event, {
+      ...options,
+      name: strategy
+    });
+  }
 
-	/**
-	 * Destroy the user session throw a redirect to another URL.
-	 * @example
-	 *   await auth.logout({ redirectTo: "/login" });
-	 */
-	async logout(options: { redirectTo: string }): Promise<never> {
-		await this.#session.destory();
-		throw redirect(307, options.redirectTo);
-	}
+  /**
+   * Destroy the user session throw a redirect to another URL.
+   * @example
+   *   await auth.logout({ redirectTo: "/login" });
+   */
+  async logout(options: { redirectTo: string }): Promise<never> {
+    await this.#session.destory();
+    throw redirect(307, options.redirectTo);
+  }
 }

src/lib/auth/error.ts

@@ -1,8 +1,8 @@
 export class AuthorizationError extends Error {
-	constructor(
-		message?: string,
-		public cause?: Error
-	) {
-		super(message);
-	}
+  constructor(
+    message?: string,
+    public cause?: Error
+  ) {
+    super(message);
+  }
 }

src/lib/auth/strategy.ts

@@ -12,7 +12,7 @@ import type { SessionStorage } from '@svelte-dev/session';
  * @throws {AuthorizationError} If the user was not found. Any other error will be ignored and thrown again by the strategy.
  */
 export interface StrategyVerifyCallback<User, VerifyParams> {
-	(params: VerifyParams): Promise<User>;
+  (params: VerifyParams): Promise<User>;
 }
 
 /**
@@ -29,70 +29,70 @@ export interface StrategyVerifyCallback<User, VerifyParams> {
  * from within the strategy `authenticate` method.
  */
 export abstract class Strategy<User, VerifyOptions> {
-	/**
-	 * The name of the strategy.
-	 * This will be used by the Authenticator to identify and retrieve the
-	 * strategy.
-	 */
-	public abstract name: string;
+  /**
+   * The name of the strategy.
+   * This will be used by the Authenticator to identify and retrieve the
+   * strategy.
+   */
+  public abstract name: string;
 
-	public constructor(protected verify: StrategyVerifyCallback<User, VerifyOptions>) {}
+  public constructor(protected verify: StrategyVerifyCallback<User, VerifyOptions>) {}
 
-	/**
-	 * The authentication flow of the strategy.
-	 *
-	 * This method receives the Request to authenticator and the session storage
-	 * to use from the Authenticator. It may receive a custom callback.
-	 *
-	 * At the end of the flow, it will return a Response to be used by the
-	 * application.
-	 */
-	public abstract authenticate(event: RequestEvent, options: AuthOptions): Promise<User>;
+  /**
+   * The authentication flow of the strategy.
+   *
+   * This method receives the Request to authenticator and the session storage
+   * to use from the Authenticator. It may receive a custom callback.
+   *
+   * At the end of the flow, it will return a Response to be used by the
+   * application.
+   */
+  public abstract authenticate(event: RequestEvent, options: AuthOptions): Promise<User>;
 
-	/**
-	 * Throw an AuthorizationError or a redirect to the failureRedirect.
-	 * @param message The error message to set in the session.
-	 * @param event The RequestEvent to get the session out of.
-	 * @param options The strategy options.
-	 * @throws {AuthorizationError} If the throwOnError is set to true.
-	 * @throws {Response} If the failureRedirect is set or throwOnError is false.
-	 * @returns {Promise<never>}
-	 */
-	protected async failure(
-		message: string,
-		event: RequestEvent,
-		options: AuthOptions,
-		cause?: Error
-	): Promise<void> {
-		// if a failureRedirect is not set, we throw a 401 Response or an error
-		if (!options.failureRedirect) {
-			if (options.throwOnError) throw new AuthorizationError(message, cause);
-			throw json(
-				{ message },
-				{
-					status: 401
-				}
-			);
-		}
-		const session = (event.locals as any).session as SessionStorage;
-		session.flash(options.sessionErrorKey ?? 'auth:error', { message });
-		throw redirect(307, options.failureRedirect);
-	}
+  /**
+   * Throw an AuthorizationError or a redirect to the failureRedirect.
+   * @param message The error message to set in the session.
+   * @param event The RequestEvent to get the session out of.
+   * @param options The strategy options.
+   * @throws {AuthorizationError} If the throwOnError is set to true.
+   * @throws {Response} If the failureRedirect is set or throwOnError is false.
+   * @returns {Promise<never>}
+   */
+  protected async failure(
+    message: string,
+    event: RequestEvent,
+    options: AuthOptions,
+    cause?: Error
+  ): Promise<void> {
+    // if a failureRedirect is not set, we throw a 401 Response or an error
+    if (!options.failureRedirect) {
+      if (options.throwOnError) throw new AuthorizationError(message, cause);
+      throw json(
+        { message },
+        {
+          status: 401
+        }
+      );
+    }
+    const session = (event.locals as any).session as SessionStorage;
+    session.flash(options.sessionErrorKey ?? 'auth:error', { message });
+    throw redirect(307, options.failureRedirect);
+  }
 
-	/**
-	 * Returns the user data or throw a redirect to the successRedirect.
-	 * @param user The user data to set in the session.
-	 * @param event The RequestEvent to get the session out of.
-	 * @param options The strategy options.
-	 * @returns {Promise<User>} The user data.
-	 * @throws {Response} If the successRedirect is set, it will redirect to it.
-	 */
-	protected async success(user: User, event: RequestEvent, options: AuthOptions): Promise<User> {
-		// if a successRedirect is not set, we return the user
-		if (!options.successRedirect) return user;
-		const session = (event.locals as any).session as SessionStorage;
-		await session.set(options?.sessionKey ?? 'user', user);
-		await session.set('strategy', this.name);
-		throw redirect(307, options.successRedirect);
-	}
+  /**
+   * Returns the user data or throw a redirect to the successRedirect.
+   * @param user The user data to set in the session.
+   * @param event The RequestEvent to get the session out of.
+   * @param options The strategy options.
+   * @returns {Promise<User>} The user data.
+   * @throws {Response} If the successRedirect is set, it will redirect to it.
+   */
+  protected async success(user: User, event: RequestEvent, options: AuthOptions): Promise<User> {
+    // if a successRedirect is not set, we return the user
+    if (!options.successRedirect) return user;
+    const session = (event.locals as any).session as SessionStorage;
+    await session.set(options?.sessionKey ?? 'user', user);
+    await session.set('strategy', this.name);
+    throw redirect(307, options.successRedirect);
+  }
 }

src/lib/auth/types.ts

@@ -3,39 +3,39 @@ export type { SessionStorageOptions, SessionStorage } from '@svelte-dev/session'
  * Extra information from the Authenticator to the strategy
  */
 export interface AuthOptions {
-	/**
-	 * The name used to register the strategy
-	 */
-	name?: string;
-	/**
-	 * The key of the session used to set the user data.
-	 * @default "user"
-	 */
-	sessionKey?: string;
-	/**
-	 * In what key of the session the errors will be set.
-	 * @default "auth:error"
-	 */
-	sessionErrorKey?: string;
-	/**
-	 * The key of the session used to set the strategy used to authenticate the
-	 * user.
-	 */
-	sessionStrategyKey?: string;
-	/**
-	 * To what URL redirect in case of a successful authentication.
-	 * If not defined, it will return the user data.
-	 */
-	successRedirect?: string;
-	/**
-	 * To what URL redirect in case of a failed authentication.
-	 * If not defined, it will return null
-	 */
-	failureRedirect?: string;
-	/**
-	 * Set if the strategy should throw an error instead of a Reponse in case of
-	 * a failed authentication.
-	 * @default true
-	 */
-	throwOnError?: boolean;
+  /**
+   * The name used to register the strategy
+   */
+  name?: string;
+  /**
+   * The key of the session used to set the user data.
+   * @default "user"
+   */
+  sessionKey?: string;
+  /**
+   * In what key of the session the errors will be set.
+   * @default "auth:error"
+   */
+  sessionErrorKey?: string;
+  /**
+   * The key of the session used to set the strategy used to authenticate the
+   * user.
+   */
+  sessionStrategyKey?: string;
+  /**
+   * To what URL redirect in case of a successful authentication.
+   * If not defined, it will return the user data.
+   */
+  successRedirect?: string;
+  /**
+   * To what URL redirect in case of a failed authentication.
+   * If not defined, it will return null
+   */
+  failureRedirect?: string;
+  /**
+   * Set if the strategy should throw an error instead of a Reponse in case of
+   * a failed authentication.
+   * @default true
+   */
+  throwOnError?: boolean;
 }

src/routes/+layout.server.ts

@@ -1,10 +1,10 @@
 import type { LayoutServerLoad } from './$types.js';
 
 export const load: LayoutServerLoad = ({ locals }) => {
-	const { user } = locals; // locals.user set by hooks.server.ts/handle(), undefined if not logged in
-	return {
-		user
-	};
+  const { user } = locals; // locals.user set by hooks.server.ts/handle(), undefined if not logged in
+  return {
+    user
+  };
 };
 
 export const trailingSlash = 'always';

src/routes/+layout.svelte

@@ -1,28 +1,28 @@
 <main>
-	<h1>@svelte-dev/auth</h1>
-	<nav>
-		<a href="/">Demo</a> |
-		<a href="https://github.com/willin/svelte-auth" target="_blank">Tutorial</a> |
-		<a href="/docs/" target="_blank">Docs</a>
-	</nav>
-	<article>
-		<h2>Demo</h2>
-		<slot />
-	</article>
+  <h1>@svelte-dev/auth</h1>
+  <nav>
+    <a href="/">Demo</a> |
+    <a href="https://github.com/willin/svelte-auth" target="_blank">Tutorial</a> |
+    <a href="/docs/" target="_blank">Docs</a>
+  </nav>
+  <article>
+    <h2>Demo</h2>
+    <slot />
+  </article>
 </main>
 
 <style>
-	main {
-		display: flex;
-		flex-direction: column;
-		align-items: center;
-		justify-content: center;
-		min-height: 100vh;
-	}
-	a,
-	a:link,
-	a:visited {
-		text-decoration: none;
-		color: #69f;
-	}
+  main {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    min-height: 100vh;
+  }
+  a,
+  a:link,
+  a:visited {
+    text-decoration: none;
+    color: #69f;
+  }
 </style>

src/routes/auth/[provider]/+server.ts

@@ -1,16 +1,16 @@
 import { redirect, type RequestEvent } from '@sveltejs/kit';
 
 export const GET = async (event: RequestEvent) => {
-	if (event.locals.user) {
-		throw redirect(307, '/demo');
-	}
-	const { request } = event;
-	const provider = event.params.provider;
-	const referer = request.headers.get('referer');
-	const returnPath = referer ? new URL(referer).pathname : '/';
+  if (event.locals.user) {
+    throw redirect(307, '/demo');
+  }
+  const { request } = event;
+  const provider = event.params.provider;
+  const referer = request.headers.get('referer');
+  const returnPath = referer ? new URL(referer).pathname : '/';
 
-	return await event.locals.auth.authenticate(event, provider as string, {
-		successRedirect: returnPath,
-		failureRedirect: returnPath
-	});
+  return await event.locals.auth.authenticate(event, provider as string, {
+    successRedirect: returnPath,
+    failureRedirect: returnPath
+  });
 };

src/routes/auth/[provider]/callback/+server.ts

@@ -1,10 +1,10 @@
 import type { RequestEvent } from '@sveltejs/kit';
 
 export const GET = async (event: RequestEvent) => {
-	const provider = event.params.provider;
+  const provider = event.params.provider;
 
-	return await event.locals.auth.authenticate(event, provider as string, {
-		successRedirect: '/demo',
-		failureRedirect: '/'
-	});
+  return await event.locals.auth.authenticate(event, provider as string, {
+    successRedirect: '/demo',
+    failureRedirect: '/'
+  });
 };

src/routes/demo/+page.server.ts

@@ -1,6 +1,6 @@
 import type { PageServerLoad } from './$types.js';
 
 export const load: PageServerLoad = async (event) => {
-	const user = event.locals.user || { invalid: true };
-	return { user };
+  const user = event.locals.user || { invalid: true };
+  return { user };
 };

src/routes/demo/+page.svelte

@@ -1,17 +1,17 @@
 <script>
-	import { goto } from '$app/navigation';
+  import { goto } from '$app/navigation';
 
-	let { data } = $props();
+  let { data } = $props();
 
-	$effect(() => {
-		if (data.user && data.user.invalid) {
-			goto('/');
-		}
-	});
+  $effect(() => {
+    if (data.user && data.user.invalid) {
+      goto('/');
+    }
+  });
 </script>
 
 {#if data && !data.user.invalid}
-	<div>
-		<pre>{JSON.stringify(data, null, 2)}</pre>
-	</div>
+  <div>
+    <pre>{JSON.stringify(data, null, 2)}</pre>
+  </div>
 {/if}

svelte.config.js

@@ -3,23 +3,23 @@ import { vitePreprocess } from '@sveltejs/kit/vite';
 
 /** @type {import('@sveltejs/kit').Config} */
 const config = {
-	// Consult https://kit.svelte.dev/docs/integrations#preprocessors
-	// for more information about preprocessors
-	preprocess: vitePreprocess(),
-	compilerOptions: {
-		runes: true
-	},
-	kit: {
-		// adapter-auto only supports some environments, see https://kit.svelte.dev/docs/adapter-auto for a list.
-		// If your environment is not supported or you settled on a specific environment, switch out the adapter.
-		// See https://kit.svelte.dev/docs/adapters for more information about adapters.
-		adapter: adapter({
-			routes: {
-				include: ['/*'],
-				exclude: ['<build>', '<prerendered>', '/favicon.png', '/docs/*']
-			}
-		})
-	}
+  // Consult https://kit.svelte.dev/docs/integrations#preprocessors
+  // for more information about preprocessors
+  preprocess: vitePreprocess(),
+  compilerOptions: {
+    runes: true
+  },
+  kit: {
+    // adapter-auto only supports some environments, see https://kit.svelte.dev/docs/adapter-auto for a list.
+    // If your environment is not supported or you settled on a specific environment, switch out the adapter.
+    // See https://kit.svelte.dev/docs/adapters for more information about adapters.
+    adapter: adapter({
+      routes: {
+        include: ['/*'],
+        exclude: ['<build>', '<prerendered>', '/favicon.png', '/docs/*']
+      }
+    })
+  }
 };
 
 export default config;

tsconfig.json

@@ -1,17 +1,17 @@
 {
-	"extends": "./.svelte-kit/tsconfig.json",
-	"compilerOptions": {
-		"allowJs": true,
-		"checkJs": true,
-		"esModuleInterop": true,
-		"forceConsistentCasingInFileNames": true,
-		"resolveJsonModule": true,
-		"skipLibCheck": true,
-		"sourceMap": true,
-		"strict": true,
-		"module": "NodeNext",
-		"types": ["bun-types"],
-		"moduleResolution": "NodeNext",
-		"noImplicitAny": false
-	}
+  "extends": "./.svelte-kit/tsconfig.json",
+  "compilerOptions": {
+    "allowJs": true,
+    "checkJs": true,
+    "esModuleInterop": true,
+    "forceConsistentCasingInFileNames": true,
+    "resolveJsonModule": true,
+    "skipLibCheck": true,
+    "sourceMap": true,
+    "strict": true,
+    "module": "NodeNext",
+    "types": ["bun-types"],
+    "moduleResolution": "NodeNext",
+    "noImplicitAny": false
+  }
 }

tsconfig.typedoc.json

@@ -1,17 +1,17 @@
 {
-	"extends": ["./tsconfig.json", "typedoc/tsdoc.json"],
-	"include": [
-		"./.svelte-kit/ambient.d.ts",
-		"./.svelte-kit/types/**/$types.d.ts",
-		"./types/**/*.ts",
-		"./vite.config.ts",
-		"./src/**/*.ts",
-		"./src/**/*.svelte",
-		"./tests/**/*.js",
-		"./tests/**/*.ts",
-		"./tests/**/*.svelte",
-		"./dist/**/*.ts",
-		"./dist/**/*.svelte"
-	],
-	"exclude": ["**/*.test.ts", "**/*.js"]
+  "extends": ["./tsconfig.json", "typedoc/tsdoc.json"],
+  "include": [
+    "./.svelte-kit/ambient.d.ts",
+    "./.svelte-kit/types/**/$types.d.ts",
+    "./types/**/*.ts",
+    "./vite.config.ts",
+    "./src/**/*.ts",
+    "./src/**/*.svelte",
+    "./tests/**/*.js",
+    "./tests/**/*.ts",
+    "./tests/**/*.svelte",
+    "./dist/**/*.ts",
+    "./dist/**/*.svelte"
+  ],
+  "exclude": ["**/*.test.ts", "**/*.js"]
 }

typedoc.json

@@ -1,42 +1,42 @@
 {
-	"$schema": "https://typedoc.org/schema.json",
-	"entryPoints": ["./dist/index.d.ts"],
-	"out": "./static/docs",
-	"tsconfig": "tsconfig.typedoc.json",
-	"externalPattern": ["**/node_modules/[!svelte]**"],
-	"exclude": ["**/*+(index|.test|.spec|.e2e).ts"],
-	"cleanOutputDir": true,
-	"disableSources": true,
-	"hideParameterTypesInTitle": false,
-	"navigationLinks": {
-		"Demo": "https://svelte-auth.js.cool/",
-		"GitHub": "https://github.com/willin/svelte-auth",
-		"NPM": "https://npmjs.com/package/@svelte-dev/auth",
-		"Willin": "https://willin.wang"
-	},
-	"plugin": ["typedoc-plugin-extras", "typedoc-plugin-keywords", "typedoc-plugin-google-ads"],
-	"theme": "default",
-	"googleAdsId": "ca-pub-5059418763237956",
-	"name": "@svelet-dev/auth",
-	"customTitle": "@svelet-dev/auth",
-	"customDescription": "OIDC / OAuth2 authentication and authorization for prerendered / client-side-rendered SvelteKit apps.",
-	"favicon": "./static/favicon.png",
-	"footerTypedocVersion": true,
-	"keywords": [
-		"auth",
-		"authentication",
-		"authorization",
-		"svelte",
-		"sveltekit",
-		"oidc",
-		"oauth",
-		"oauth2",
-		"client",
-		"browser",
-		"prerender",
-		"client-side-rendering",
-		"csr",
-		"spa",
-		"mpa"
-	]
+  "$schema": "https://typedoc.org/schema.json",
+  "entryPoints": ["./dist/index.d.ts"],
+  "out": "./static/docs",
+  "tsconfig": "tsconfig.typedoc.json",
+  "externalPattern": ["**/node_modules/[!svelte]**"],
+  "exclude": ["**/*+(index|.test|.spec|.e2e).ts"],
+  "cleanOutputDir": true,
+  "disableSources": true,
+  "hideParameterTypesInTitle": false,
+  "navigationLinks": {
+    "Demo": "https://svelte-auth.js.cool/",
+    "GitHub": "https://github.com/willin/svelte-auth",
+    "NPM": "https://npmjs.com/package/@svelte-dev/auth",
+    "Willin": "https://willin.wang"
+  },
+  "plugin": ["typedoc-plugin-extras", "typedoc-plugin-keywords", "typedoc-plugin-google-ads"],
+  "theme": "default",
+  "googleAdsId": "ca-pub-5059418763237956",
+  "name": "@svelet-dev/auth",
+  "customTitle": "@svelet-dev/auth",
+  "customDescription": "OIDC / OAuth2 authentication and authorization for prerendered / client-side-rendered SvelteKit apps.",
+  "favicon": "./static/favicon.png",
+  "footerTypedocVersion": true,
+  "keywords": [
+    "auth",
+    "authentication",
+    "authorization",
+    "svelte",
+    "sveltekit",
+    "oidc",
+    "oauth",
+    "oauth2",
+    "client",
+    "browser",
+    "prerender",
+    "client-side-rendering",
+    "csr",
+    "spa",
+    "mpa"
+  ]
 }

vite.config.ts

@@ -2,24 +2,24 @@ import { sveltekit } from '@sveltejs/kit/vite';
 import { defineConfig } from 'vitest/config';
 
 export default defineConfig({
-	plugins: [sveltekit()],
-	test: {
-		include: ['src/lib/**/*.{test,spec}.{js,ts}'],
-		coverage: {
-			provider: 'istanbul',
-			reporter: ['text', 'json', 'html', 'lcov'],
-			include: ['src/lib/**/*.{js,ts}'],
-			exclude: [
-				'**/auth/handler.ts',
-				'**/types/**',
-				'**/hooks.server.ts',
-				'**/index.ts',
-				'**/constants/**',
-				'**/icons/**',
-				'**/*.d.ts',
-				'**/*.spec.{js,ts}'
-			],
-			reportsDirectory: './.coverage'
-		}
-	}
+  plugins: [sveltekit()],
+  test: {
+    include: ['src/lib/**/*.{test,spec}.{js,ts}'],
+    coverage: {
+      provider: 'istanbul',
+      reporter: ['text', 'json', 'html', 'lcov'],
+      include: ['src/lib/**/*.{js,ts}'],
+      exclude: [
+        '**/auth/handler.ts',
+        '**/types/**',
+        '**/hooks.server.ts',
+        '**/index.ts',
+        '**/constants/**',
+        '**/icons/**',
+        '**/*.d.ts',
+        '**/*.spec.{js,ts}'
+      ],
+      reportsDirectory: './.coverage'
+    }
+  }
 });