TernSecure · kayp514 · Dec 30, 2025 · Dec 30, 2025 · Dec 30, 2025
diff --git a/.changeset/puny-sloths-joke.md b/.changeset/puny-sloths-joke.md
@@ -0,0 +1,6 @@
+---
+'@tern-secure/backend': patch
+'@tern-secure/nextjs': patch
+---
+
+feat: import retriever user from backend
diff --git a/apps/test/app/layout.tsx b/apps/test/app/layout.tsx
@@ -33,14 +33,14 @@ export default async function RootLayout({
       <body className={`${geistSans.variable} ${geistMono.variable} antialiased`}>
         <TernSecureProvider
           appName='TernSecure'
-          appCheck={{
-            provider: 'reCaptchaV3',
-            siteKey: '6LfzGRgsAAAAAGEvbwbcLgT4IHWmuWv4kEDRA5hi',
+          //appCheck={{
+          //  provider: 'reCaptchaV3',
+          //  siteKey: '6LfzGRgsAAAAAGEvbwbcLgT4IHWmuWv4kEDRA5hi',
             //siteKey: '6Lc2aCIsAAAAAAZ2fYnqkPGqGnlsi6KE94qEzGKX',
             //siteKey: '6LfophwsAAAAAMvW43vd87iiuBCWDRYQZGS0rsRH',
-            isTokenAutoRefreshEnabled: true,
-            debugToken: process.env.FIREBASE_APPCHECK_DEBUG_TOKEN || false,
-          }}
+          //  isTokenAutoRefreshEnabled: true,
+          //  debugToken: process.env.FIREBASE_APPCHECK_DEBUG_TOKEN || false,
+         //</body> }}
           //requiresVerification={false}
           persistence='browserCookie'
           ternUIUrl='http://localhost:4000/ternsecure.browser.js'

diff --git a/apps/test/app/protected/page.tsx b/apps/test/app/protected/page.tsx
@@ -5,7 +5,7 @@ export const dynamic = 'force-dynamic';
 
 export default async function ProtectedPage() {
   const { user, require, redirectToSignIn } = await auth();
-  if (!require({ role: 'admin' })) return <div>Access Denied</div>;
+  if (!require({ role: 'admin' })) return <div>Access Denied now</div>;
 
   if (!user) return redirectToSignIn();
 

diff --git a/apps/test/app/protected/protectedClient.tsx b/apps/test/app/protected/protectedClient.tsx
@@ -1,9 +1,12 @@
 "use client";
 
 import { useRouter } from "next/navigation";
+import type { TernSecureUser } from "@tern-secure/nextjs";
+
+export type SerializableTernSecureUser = Omit<TernSecureUser, 'delete' | 'getIdToken' | 'getIdTokenResult' | 'reload' | 'toJSON'>;
 
 interface ProtectedPageClientProps {
-  user: any;
+  user: SerializableTernSecureUser;
 }
 
 export function ProtectedPageClient({

diff --git a/apps/test/app/user/page.tsx b/apps/test/app/user/page.tsx
diff --git a/packages/backend/src/admin/index.ts b/packages/backend/src/admin/index.ts
@@ -1,17 +1,17 @@
-export { 
-    createSessionCookie, 
+export {
+    createSessionCookie,
     createCustomTokenClaims,
     clearSessionCookie
 } from './sessionTernSecure'
-export { 
-    adminTernSecureAuth, 
-    adminTernSecureDb, 
+export {
+    adminTernSecureAuth,
+    adminTernSecureDb,
     appCheckAdmin,
-    TernSecureTenantManager 
+    TernSecureTenantManager
 } from '../utils/admin-init'
 export { initializeAdminConfig } from '../utils/config'
 export { createTenant, createTenantUser } from './tenant'
-export { 
+export {
     CreateNextSessionCookie,
     GetNextServerSessionCookie,
     GetNextIdToken,
@@ -24,4 +24,5 @@ export {
 
 export type { SignInAuthObject, RequestState } from '../instance/backendInstance'
 export { createBackendInstance, authenticateRequest, signedIn } from '../instance/backendInstance'
-export { RetrieveUser } from './user'
+export { RetrieveUser } from './user'
+export type { UserRecord } from './user'
diff --git a/packages/backend/src/admin/user.ts b/packages/backend/src/admin/user.ts
@@ -46,4 +46,7 @@ export function RetrieveUser(tenantId?: string) {
         getUserByEmail,
         getUserByPhoneNumber,
     }
-}
+}
+
+
+export type { UserRecord }
diff --git a/packages/nextjs/src/app-router/admin/index.ts b/packages/nextjs/src/app-router/admin/index.ts
@@ -6,7 +6,8 @@ export {
     createSessionCookieServer,
     createNextSessionCookie,
     setNextServerSession,
-    setNextServerToken
+    setNextServerToken,
+    RetrieveUser
 } from './actions'
 
 export { EndpointRouter } from './endpointRouter'