npm - @absolutejs/auth - Versions diffs - 0.26.0-beta.0 → 0.26.0-beta.2 - Mend

@absolutejs/auth 0.26.0-beta.0 → 0.26.0-beta.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/credentials/config.d.ts +1 -1
package/dist/index.d.ts +2 -0
package/dist/index.js +52 -3
package/dist/index.js.map +7 -6
package/dist/lockout/redisLockoutStore.d.ts +3 -0
package/dist/stores/redis.d.ts +5 -0
package/package.json +1 -1

package/dist/credentials/config.d.ts CHANGED Viewed

@@ -23,7 +23,7 @@ export type CredentialsConfig<UserType> = {
     getUserByEmail: (email: string) => Promise<UserType | null | undefined> | UserType | null | undefined;
     isMfaRequired?: (user: UserType) => boolean | Promise<boolean>;
     loginRoute?: RouteString;
-    onCreateCredentialUser: (identity: CredentialIdentity) => Promise<Response | StatusReturn | UserType> | Response | StatusReturn | UserType;
+    onCreateCredentialUser: (identity: CredentialIdentity & Record<string, unknown>) => Promise<Response | StatusReturn | UserType> | Response | StatusReturn | UserType;
     onCredentialsLoginError?: (context: {
         email: string;
         error: unknown;

package/dist/index.d.ts CHANGED Viewed

@@ -1189,5 +1189,7 @@ export * from './lockout/config';
 export * from './lockout/types';
 export { createInMemoryLockoutStore } from './lockout/inMemoryLockoutStore';
 export { createNeonLockoutStore, createPostgresLockoutStore, lockoutsTable } from './lockout/postgresLockoutStore';
+export { createRedisLockoutStore } from './lockout/redisLockoutStore';
+export type { RedisLike } from './stores/redis';
 export { createInMemoryAuditSink } from './audit/inMemoryAuditStore';
 export { auditEventsTable, createNeonAuditSink, createPostgresAuditSink } from './audit/postgresAuditStore';

package/dist/index.js CHANGED Viewed

@@ -2807,7 +2807,7 @@ var credentialsRegister = ({
   sessionDurationMs = DEFAULT_CREDENTIAL_SESSION_TTL_MS,
   verificationTokenDurationMs = DEFAULT_VERIFICATION_TOKEN_TTL_MS
 }) => new Elysia5().use(sessionStore()).post(registerRoute, async ({
-  body: { email, password },
+  body: { email, password, ...extraFields },
   cookie: { user_session_id },
   status,
   store: { session }
@@ -2828,6 +2828,7 @@ var credentialsRegister = ({
     return status("Conflict", "Email is already registered");
   }
   const created = await onCreateCredentialUser({
+    ...extraFields,
     email: normalizedEmail
   });
   if (created instanceof Response || isStatusResponse(created)) {
@@ -2872,7 +2873,7 @@ var credentialsRegister = ({
   await onCredentialsLoginSuccess?.({ user: created, userSessionId });
   return status("Created", { status: "authenticated" });
 }, {
-  body: t5.Object({ email: t5.String(), password: t5.String() }),
+  body: t5.Object({ email: t5.String(), password: t5.String() }, { additionalProperties: true }),
   cookie: t5.Cookie({ user_session_id: userSessionIdTypebox })
 });
@@ -15166,6 +15167,53 @@ var createPostgresLockoutStore = (db) => {
     }
   };
 };
+// src/lockout/redisLockoutStore.ts
+var DEFAULT_PREFIX = "auth:lockout:";
+var toRecord2 = (raw, key) => {
+  const parsed = JSON.parse(raw);
+  if (typeof parsed !== "object" || parsed === null)
+    return;
+  const failedAttempts = Reflect.get(parsed, "failedAttempts");
+  const windowStartedAt = Reflect.get(parsed, "windowStartedAt");
+  const lockedUntil = Reflect.get(parsed, "lockedUntil");
+  if (typeof failedAttempts !== "number" || typeof windowStartedAt !== "number") {
+    return;
+  }
+  return {
+    failedAttempts,
+    key,
+    lockedUntil: typeof lockedUntil === "number" ? lockedUntil : undefined,
+    windowStartedAt
+  };
+};
+var createRedisLockoutStore = (redis, keyPrefix = DEFAULT_PREFIX) => {
+  const read = async (key) => {
+    const raw = await redis.get(keyPrefix + key);
+    return raw ? toRecord2(raw, key) : undefined;
+  };
+  return {
+    get: read,
+    increment: async (key, windowMs) => {
+      const now = Date.now();
+      const existing = await read(key);
+      const next = existing !== undefined && now - existing.windowStartedAt <= windowMs ? { ...existing, failedAttempts: existing.failedAttempts + 1 } : { failedAttempts: 1, key, windowStartedAt: now };
+      await redis.set(keyPrefix + key, JSON.stringify(next), windowMs);
+      return next;
+    },
+    lock: async (key, lockedUntil) => {
+      const existing = await read(key) ?? {
+        failedAttempts: 0,
+        key,
+        windowStartedAt: Date.now()
+      };
+      const ttlMs = Math.max(lockedUntil - Date.now(), 1);
+      await redis.set(keyPrefix + key, JSON.stringify({ ...existing, lockedUntil }), ttlMs);
+    },
+    reset: async (key) => {
+      await redis.del(keyPrefix + key);
+    }
+  };
+};
 // src/audit/inMemoryAuditStore.ts
 var createInMemoryAuditSink = () => {
   const events = [];
@@ -15393,6 +15441,7 @@ export {
   credentialRoutes,
   credentialResetTokensTable,
   createTotpKeyUri,
+  createRedisLockoutStore,
   createPostgresMfaStore,
   createPostgresLockoutStore,
   createPostgresCredentialStore,
@@ -15436,5 +15485,5 @@ export {
   AuthIdentityConflictError
 };
-//# debugId=7ACDDE7FAAAD2C7B64756E2164756E21
+//# debugId=44D2758802359A7064756E2164756E21
 //# sourceMappingURL=index.js.map