/**
 * Session lifecycle functions.
 * Handles token verification, session validation, and logout.
 *
 * @internal This module is not exported from the main package.
 */
import type { CloudSession, VerifyResponse } from '../types.js';
/**
 * Options for verifyToken.
 */
export interface VerifyTokenOptions {
    projectId: string;
    cloudBaseUrl: string;
    token: string;
}
/**
 * Options for validateSession and destroySession.
 */
export interface SessionOptions {
    projectId: string;
    cloudBaseUrl: string;
    sessionToken: string;
}
/**
 * Verify an access token with Cloud API.
 *
 * @param options - Verification options
 * @returns User and role information
 * @throws AuthError with code 'verification_failed' if verification fails
 * @throws AuthError with code 'network_error' if network request fails
 */
export declare function verifyToken(options: VerifyTokenOptions): Promise<VerifyResponse>;
/**
 * Validate an existing session with Cloud API.
 *
 * @param options - Session options
 * @returns Session data if valid, null otherwise
 */
export declare function validateSession(options: SessionOptions): Promise<CloudSession | null>;
/**
 * Destroy a session with Cloud API.
 * Note: X-Project-ID not required for this endpoint.
 *
 * @param options - Session options
 */
export declare function destroySession(options: SessionOptions): Promise<void>;
/**
 * Get the logout URL for redirecting users.
 *
 * @param cloudBaseUrl - Cloud API base URL
 * @param postLogoutRedirectUri - URL to redirect to after logout (required)
 * @param idTokenHint - The access token (required by Cloud)
 * @returns Full logout URL with redirect and token parameters
 */
export declare function getLogoutUrl(cloudBaseUrl: string, postLogoutRedirectUri: string, idTokenHint: string): string;
//# sourceMappingURL=session.d.ts.map