@ackplus/nest-auth-client 1.1.29

package/dist/token/jwt-utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-utils.js","sourceRoot":"","sources":["../../src/token/jwt-utils.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAYvC,MAAM,UAAU,SAAS,CAAC,KAAgC;IACtD,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IAExB,IAAI,CAAC;QACD,OAAO,SAAS,CAAa,KAAK,CAAC,CAAC;IACxC,CAAC;IAAC,MAAM,CAAC;QACL,OAAO,IAAI,CAAC;IAChB,CAAC;AACL,CAAC;AASD,MAAM,UAAU,cAAc,CAC1B,KAAiC,EACjC,mBAA2B,CAAC;IAE5B,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IAExB,MAAM,OAAO,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IAErE,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;QAC3B,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAC1C,OAAO,OAAO,CAAC,GAAG,IAAI,GAAG,GAAG,gBAAgB,CAAC;AACjD,CAAC;AAQD,MAAM,UAAU,sBAAsB,CAAC,KAAiC;IACpE,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IAExB,MAAM,OAAO,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IAErE,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;QAC3B,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,OAAO,IAAI,IAAI,CAAC,OAAO,CAAC,GAAG,GAAG,IAAI,CAAC,CAAC;AACxC,CAAC;AAQD,MAAM,UAAU,oBAAoB,CAAC,KAAiC;IAClE,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IAExB,MAAM,OAAO,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IAErE,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;QAC3B,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAC1C,OAAO,OAAO,CAAC,GAAG,GAAG,GAAG,CAAC;AAC7B,CAAC;AAQD,MAAM,UAAU,kBAAkB,CAAC,KAA6C;IAC5E,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IAExB,MAAM,OAAO,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IAErE,IAAI,CAAC,OAAO;QAAE,OAAO,IAAI,CAAC;IAG1B,OAAO,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,IAAI,OAAO,CAAC,OAAO,IAAI,IAAI,CAAC;AACpE,CAAC"}

package/dist/token/token-manager.d.ts

@@ -0,0 +1,29 @@
+import { ITokenPair as TokenPair } from '@ackplus/nest-auth-contracts';
+import { AccessTokenType } from '../types/config.types';
+import { StorageAdapter } from '../types/config.types';
+export interface TokenManagerConfig {
+    storage: StorageAdapter;
+    accessTokenType: AccessTokenType;
+    refreshThreshold?: number;
+}
+export declare class TokenManager {
+    private storage;
+    private mode;
+    private refreshThreshold;
+    constructor(config: TokenManagerConfig);
+    setMode(mode: 'header' | 'cookie'): void;
+    getMode(): 'header' | 'cookie';
+    isCookieMode(): boolean;
+    isHeaderMode(): boolean;
+    setTokens(tokens: TokenPair): Promise<void>;
+    getAccessToken(): Promise<string | null>;
+    getRefreshToken(): Promise<string | null>;
+    getTokens(): Promise<TokenPair | null>;
+    clearTokens(): Promise<void>;
+    isAccessTokenExpired(): Promise<boolean>;
+    isRefreshTokenExpired(): Promise<boolean>;
+    hasValidTokens(): Promise<boolean>;
+    needsRefresh(): Promise<boolean>;
+    getAuthorizationHeader(): Promise<string | null>;
+}
+//# sourceMappingURL=token-manager.d.ts.map

package/dist/token/token-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-manager.d.ts","sourceRoot":"","sources":["../../src/token/token-manager.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,UAAU,IAAI,SAAS,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAavD,MAAM,WAAW,kBAAkB;IAE/B,OAAO,EAAE,cAAc,CAAC;IAExB,eAAe,EAAE,eAAe,CAAC;IAEjC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC7B;AASD,qBAAa,YAAY;IACrB,OAAO,CAAC,OAAO,CAAiB;IAChC,OAAO,CAAC,IAAI,CAAkB;IAC9B,OAAO,CAAC,gBAAgB,CAAS;gBAErB,MAAM,EAAE,kBAAkB;IAStC,OAAO,CAAC,IAAI,EAAE,QAAQ,GAAG,QAAQ,GAAG,IAAI;IAOxC,OAAO,IAAI,QAAQ,GAAG,QAAQ;IAO9B,YAAY,IAAI,OAAO;IAOvB,YAAY,IAAI,OAAO;IAOjB,SAAS,CAAC,MAAM,EAAE,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC;IAa3C,cAAc,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAWxC,eAAe,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAWzC,SAAS,IAAI,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC;IActC,WAAW,IAAI,OAAO,CAAC,IAAI,CAAC;IAS5B,oBAAoB,IAAI,OAAO,CAAC,OAAO,CAAC;IAYxC,qBAAqB,IAAI,OAAO,CAAC,OAAO,CAAC;IAYzC,cAAc,IAAI,OAAO,CAAC,OAAO,CAAC;IAiBlC,YAAY,IAAI,OAAO,CAAC,OAAO,CAAC;IAehC,sBAAsB,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;CAYzD"}

package/dist/token/token-manager.js

@@ -0,0 +1,102 @@
+import { isTokenExpired } from './jwt-utils';
+const STORAGE_KEYS = {
+    ACCESS_TOKEN: 'access_token',
+    REFRESH_TOKEN: 'refresh_token',
+    EXPIRES_AT: 'expires_at',
+};
+export class TokenManager {
+    constructor(config) {
+        this.storage = config.storage;
+        this.mode = config.accessTokenType;
+        this.refreshThreshold = config.refreshThreshold ?? 60;
+    }
+    setMode(mode) {
+        this.mode = mode;
+    }
+    getMode() {
+        return this.mode || 'header';
+    }
+    isCookieMode() {
+        return this.getMode() === 'cookie';
+    }
+    isHeaderMode() {
+        return this.getMode() === 'header';
+    }
+    async setTokens(tokens) {
+        if (this.isCookieMode()) {
+            return;
+        }
+        await Promise.resolve(this.storage.set(STORAGE_KEYS.ACCESS_TOKEN, tokens.accessToken));
+        await Promise.resolve(this.storage.set(STORAGE_KEYS.REFRESH_TOKEN, tokens.refreshToken));
+    }
+    async getAccessToken() {
+        if (this.isCookieMode()) {
+            return null;
+        }
+        const token = this.storage.get(STORAGE_KEYS.ACCESS_TOKEN);
+        return Promise.resolve(token);
+    }
+    async getRefreshToken() {
+        if (this.isCookieMode()) {
+            return null;
+        }
+        const token = this.storage.get(STORAGE_KEYS.REFRESH_TOKEN);
+        return Promise.resolve(token);
+    }
+    async getTokens() {
+        const accessToken = await this.getAccessToken();
+        const refreshToken = await this.getRefreshToken();
+        if (!accessToken || !refreshToken) {
+            return null;
+        }
+        return { accessToken, refreshToken };
+    }
+    async clearTokens() {
+        await Promise.resolve(this.storage.remove(STORAGE_KEYS.ACCESS_TOKEN));
+        await Promise.resolve(this.storage.remove(STORAGE_KEYS.REFRESH_TOKEN));
+        await Promise.resolve(this.storage.remove(STORAGE_KEYS.EXPIRES_AT));
+    }
+    async isAccessTokenExpired() {
+        const token = await this.getAccessToken();
+        if (!token) {
+            return true;
+        }
+        const expired = isTokenExpired(token, this.refreshThreshold);
+        return expired ?? true;
+    }
+    async isRefreshTokenExpired() {
+        const token = await this.getRefreshToken();
+        if (!token) {
+            return true;
+        }
+        const expired = isTokenExpired(token);
+        return expired ?? true;
+    }
+    async hasValidTokens() {
+        if (this.isCookieMode()) {
+            return false;
+        }
+        const accessExpired = await this.isAccessTokenExpired();
+        const refreshExpired = await this.isRefreshTokenExpired();
+        return !accessExpired || !refreshExpired;
+    }
+    async needsRefresh() {
+        if (this.isCookieMode()) {
+            return false;
+        }
+        const accessExpired = await this.isAccessTokenExpired();
+        const refreshExpired = await this.isRefreshTokenExpired();
+        return accessExpired && !refreshExpired;
+    }
+    async getAuthorizationHeader() {
+        if (this.isCookieMode()) {
+            return null;
+        }
+        const token = await this.getAccessToken();
+        if (!token) {
+            return null;
+        }
+        return `Bearer ${token}`;
+    }
+}
+//# sourceMappingURL=token-manager.js.map

package/dist/token/token-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-manager.js","sourceRoot":"","sources":["../../src/token/token-manager.ts"],"names":[],"mappings":"AAQA,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAG7C,MAAM,YAAY,GAAG;IACjB,YAAY,EAAE,cAAc;IAC5B,aAAa,EAAE,eAAe;IAC9B,UAAU,EAAE,YAAY;CAC3B,CAAC;AAqBF,MAAM,OAAO,YAAY;IAKrB,YAAY,MAA0B;QAClC,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;QAC9B,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC,eAAe,CAAC;QACnC,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,IAAI,EAAE,CAAC;IAC1D,CAAC;IAKD,OAAO,CAAC,IAAyB;QAC7B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACrB,CAAC;IAKD,OAAO;QACH,OAAO,IAAI,CAAC,IAAI,IAAI,QAAQ,CAAC;IACjC,CAAC;IAKD,YAAY;QACR,OAAO,IAAI,CAAC,OAAO,EAAE,KAAK,QAAQ,CAAC;IACvC,CAAC;IAKD,YAAY;QACR,OAAO,IAAI,CAAC,OAAO,EAAE,KAAK,QAAQ,CAAC;IACvC,CAAC;IAKD,KAAK,CAAC,SAAS,CAAC,MAAiB;QAC7B,IAAI,IAAI,CAAC,YAAY,EAAE,EAAE,CAAC;YAEtB,OAAO;QACX,CAAC;QAED,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,YAAY,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC;QACvF,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,aAAa,EAAE,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC;IAC7F,CAAC;IAKD,KAAK,CAAC,cAAc;QAChB,IAAI,IAAI,CAAC,YAAY,EAAE,EAAE,CAAC;YACtB,OAAO,IAAI,CAAC;QAChB,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;QAC1D,OAAO,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAKD,KAAK,CAAC,eAAe;QACjB,IAAI,IAAI,CAAC,YAAY,EAAE,EAAE,CAAC;YACtB,OAAO,IAAI,CAAC;QAChB,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC;QAC3D,OAAO,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAKD,KAAK,CAAC,SAAS;QACX,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;QAChD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;QAElD,IAAI,CAAC,WAAW,IAAI,CAAC,YAAY,EAAE,CAAC;YAChC,OAAO,IAAI,CAAC;QAChB,CAAC;QAED,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,CAAC;IACzC,CAAC;IAKD,KAAK,CAAC,WAAW;QACb,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC,CAAC;QACtE,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC,CAAC;QACvE,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC;IACxE,CAAC;IAKD,KAAK,CAAC,oBAAoB;QACtB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;QAC1C,IAAI,CAAC,KAAK,EAAE,CAAC;YACT,OAAO,IAAI,CAAC;QAChB,CAAC;QACD,MAAM,OAAO,GAAG,cAAc,CAAC,KAAK,EAAE,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC7D,OAAO,OAAO,IAAI,IAAI,CAAC;IAC3B,CAAC;IAKD,KAAK,CAAC,qBAAqB;QACvB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;QAC3C,IAAI,CAAC,KAAK,EAAE,CAAC;YACT,OAAO,IAAI,CAAC;QAChB,CAAC;QACD,MAAM,OAAO,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;QACtC,OAAO,OAAO,IAAI,IAAI,CAAC;IAC3B,CAAC;IAKD,KAAK,CAAC,cAAc;QAChB,IAAI,IAAI,CAAC,YAAY,EAAE,EAAE,CAAC;YAGtB,OAAO,KAAK,CAAC;QACjB,CAAC;QAED,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACxD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,qBAAqB,EAAE,CAAC;QAG1D,OAAO,CAAC,aAAa,IAAI,CAAC,cAAc,CAAC;IAC7C,CAAC;IAKD,KAAK,CAAC,YAAY;QACd,IAAI,IAAI,CAAC,YAAY,EAAE,EAAE,CAAC;YACtB,OAAO,KAAK,CAAC;QACjB,CAAC;QAED,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACxD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,qBAAqB,EAAE,CAAC;QAG1D,OAAO,aAAa,IAAI,CAAC,cAAc,CAAC;IAC5C,CAAC;IAKD,KAAK,CAAC,sBAAsB;QACxB,IAAI,IAAI,CAAC,YAAY,EAAE,EAAE,CAAC;YACtB,OAAO,IAAI,CAAC;QAChB,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;QAC1C,IAAI,CAAC,KAAK,EAAE,CAAC;YACT,OAAO,IAAI,CAAC;QAChB,CAAC;QAED,OAAO,UAAU,KAAK,EAAE,CAAC;IAC7B,CAAC;CACJ"}

package/dist/types/auth.types.d.ts

@@ -0,0 +1,33 @@
+export type AuthStatus = 'loading' | 'authenticated' | 'unauthenticated';
+export interface ClientSession {
+    id: string;
+    userId: string;
+    expiresAt?: Date;
+    createdAt?: Date;
+    accessToken?: string;
+    refreshToken?: string;
+}
+export interface AuthState {
+    status: AuthStatus;
+    user: import('@ackplus/nest-auth-contracts').IAuthUser | null;
+    session: ClientSession | null;
+    error: AuthError | null;
+}
+export interface AuthError {
+    message: string;
+    code?: string;
+    statusCode?: number;
+    details?: Record<string, any>;
+}
+export interface DecodedJwt {
+    userId?: string;
+    sub?: string;
+    user_id?: string;
+    exp?: number;
+    iat?: number;
+    sessionId?: string;
+    tenantId?: string;
+    type?: string;
+    [key: string]: any;
+}
+//# sourceMappingURL=auth.types.d.ts.map

package/dist/types/auth.types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.types.d.ts","sourceRoot":"","sources":["../../src/types/auth.types.ts"],"names":[],"mappings":"AAQA,MAAM,MAAM,UAAU,GAAG,SAAS,GAAG,eAAe,GAAG,iBAAiB,CAAC;AAKzE,MAAM,WAAW,aAAa;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,IAAI,CAAC;IACjB,SAAS,CAAC,EAAE,IAAI,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;CACzB;AAKD,MAAM,WAAW,SAAS;IACtB,MAAM,EAAE,UAAU,CAAC;IACnB,IAAI,EAAE,OAAO,8BAA8B,EAAE,SAAS,GAAG,IAAI,CAAC;IAC9D,OAAO,EAAE,aAAa,GAAG,IAAI,CAAC;IAC9B,KAAK,EAAE,SAAS,GAAG,IAAI,CAAC;CAC3B;AAKD,MAAM,WAAW,SAAS;IACtB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CACjC;AAKD,MAAM,WAAW,UAAU;IACvB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACtB"}

package/dist/types/auth.types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=auth.types.js.map

package/dist/types/auth.types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.types.js","sourceRoot":"","sources":["../../src/types/auth.types.ts"],"names":[],"mappings":""}

package/dist/types/config.types.d.ts

@@ -0,0 +1,73 @@
+import { IAuthUser as AuthUser, ITokenPair as TokenPair } from '@ackplus/nest-auth-contracts';
+import { AuthError } from './auth.types';
+export interface StorageAdapter {
+    get(key: string): Promise<string | null> | string | null;
+    set(key: string, value: string): Promise<void> | void;
+    remove(key: string): Promise<void> | void;
+    clear?(): Promise<void> | void;
+}
+export interface HttpAdapter {
+    request<T = any>(options: HttpRequestOptions): Promise<HttpResponse<T>>;
+}
+export interface HttpRequestOptions {
+    url: string;
+    method: 'GET' | 'POST' | 'PUT' | 'DELETE' | 'PATCH';
+    headers?: Record<string, string>;
+    body?: any;
+    credentials?: 'include' | 'omit' | 'same-origin';
+    timeout?: number;
+    signal?: AbortSignal;
+}
+export interface HttpResponse<T = any> {
+    status: number;
+    data: T;
+    headers: Record<string, string>;
+    ok: boolean;
+}
+export interface Logger {
+    debug?(message: string, ...args: any[]): void;
+    info?(message: string, ...args: any[]): void;
+    warn?(message: string, ...args: any[]): void;
+    error?(message: string, ...args: any[]): void;
+}
+export interface EndpointConfig {
+    login?: string;
+    signup?: string;
+    logout?: string;
+    refresh?: string;
+    me?: string;
+    forgotPassword?: string;
+    verifyForgotPasswordOtp?: string;
+    resetPassword?: string;
+    verifyEmail?: string;
+    resendVerification?: string;
+    changePassword?: string;
+    send2fa?: string;
+    verify2fa?: string;
+    verifySession?: string;
+}
+export declare const DEFAULT_ENDPOINTS: Required<EndpointConfig>;
+export type AccessTokenType = 'header' | 'cookie' | null;
+export interface AuthClientConfig {
+    baseUrl: string;
+    endpoints?: EndpointConfig;
+    accessTokenType?: AccessTokenType;
+    storage?: StorageAdapter;
+    httpAdapter?: HttpAdapter;
+    logger?: Logger;
+    tenantId?: string | (() => string | undefined);
+    tenantHeader?: string;
+    autoRefresh?: boolean;
+    refreshThreshold?: number;
+    onAuthStateChange?: (user: AuthUser | null) => void;
+    onTokenRefreshed?: (tokens: TokenPair) => void;
+    onLogout?: () => void;
+    onError?: (error: AuthError) => void;
+}
+export interface RequestOptions {
+    timeout?: number;
+    headers?: Record<string, string>;
+    signal?: AbortSignal;
+    skipRefresh?: boolean;
+}
+//# sourceMappingURL=config.types.d.ts.map

package/dist/types/config.types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.types.d.ts","sourceRoot":"","sources":["../../src/types/config.types.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,SAAS,IAAI,QAAQ,EAAE,UAAU,IAAI,SAAS,EAAE,MAAM,8BAA8B,CAAC;AAC9F,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAMzC,MAAM,WAAW,cAAc;IAI3B,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,MAAM,GAAG,IAAI,CAAC;IAKzD,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAKtD,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAK1C,KAAK,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAClC;AAMD,MAAM,WAAW,WAAW;IAIxB,OAAO,CAAC,CAAC,GAAG,GAAG,EAAE,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;CAC3E;AAKD,MAAM,WAAW,kBAAkB;IAE/B,GAAG,EAAE,MAAM,CAAC;IAEZ,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,OAAO,CAAC;IAEpD,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAEjC,IAAI,CAAC,EAAE,GAAG,CAAC;IAEX,WAAW,CAAC,EAAE,SAAS,GAAG,MAAM,GAAG,aAAa,CAAC;IAEjD,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,MAAM,CAAC,EAAE,WAAW,CAAC;CACxB;AAKD,MAAM,WAAW,YAAY,CAAC,CAAC,GAAG,GAAG;IAEjC,MAAM,EAAE,MAAM,CAAC;IAEf,IAAI,EAAE,CAAC,CAAC;IAER,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAEhC,EAAE,EAAE,OAAO,CAAC;CACf;AAKD,MAAM,WAAW,MAAM;IACnB,KAAK,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;IAC9C,IAAI,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;IAC7C,IAAI,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;IAC7C,KAAK,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;CACjD;AAMD,MAAM,WAAW,cAAc;IAE3B,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,EAAE,CAAC,EAAE,MAAM,CAAC;IAEZ,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,uBAAuB,CAAC,EAAE,MAAM,CAAC;IAEjC,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAE5B,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,aAAa,CAAC,EAAE,MAAM,CAAC;CAC1B;AAKD,eAAO,MAAM,iBAAiB,EAAE,QAAQ,CAAC,cAAc,CAetD,CAAC;AAQF,MAAM,MAAM,eAAe,GAAG,QAAQ,GAAG,QAAQ,GAAG,IAAI,CAAC;AAKzD,MAAM,WAAW,gBAAgB;IAK7B,OAAO,EAAE,MAAM,CAAC;IAKhB,SAAS,CAAC,EAAE,cAAc,CAAC;IAQ3B,eAAe,CAAC,EAAE,eAAe,CAAC;IAMlC,OAAO,CAAC,EAAE,cAAc,CAAC;IAMzB,WAAW,CAAC,EAAE,WAAW,CAAC;IAK1B,MAAM,CAAC,EAAE,MAAM,CAAC;IAMhB,QAAQ,CAAC,EAAE,MAAM,GAAG,CAAC,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC;IAM/C,YAAY,CAAC,EAAE,MAAM,CAAC;IAMtB,WAAW,CAAC,EAAE,OAAO,CAAC;IAMtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAU1B,iBAAiB,CAAC,EAAE,CAAC,IAAI,EAAE,QAAQ,GAAG,IAAI,KAAK,IAAI,CAAC;IAKpD,gBAAgB,CAAC,EAAE,CAAC,MAAM,EAAE,SAAS,KAAK,IAAI,CAAC;IAK/C,QAAQ,CAAC,EAAE,MAAM,IAAI,CAAC;IAKtB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,SAAS,KAAK,IAAI,CAAC;CACxC;AAKD,MAAM,WAAW,cAAc;IAE3B,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAEjC,MAAM,CAAC,EAAE,WAAW,CAAC;IAErB,WAAW,CAAC,EAAE,OAAO,CAAC;CACzB"}

package/dist/types/config.types.js

@@ -0,0 +1,17 @@
+export const DEFAULT_ENDPOINTS = {
+    login: '/auth/login',
+    signup: '/auth/signup',
+    logout: '/auth/logout',
+    refresh: '/auth/refresh',
+    me: '/auth/me',
+    forgotPassword: '/auth/forgot-password',
+    verifyForgotPasswordOtp: '/auth/verify-forgot-password-otp',
+    resetPassword: '/auth/reset-password',
+    verifyEmail: '/auth/verify-email',
+    resendVerification: '/auth/send-email-verification',
+    changePassword: '/auth/change-password',
+    send2fa: '/auth/2fa/send',
+    verify2fa: '/auth/2fa/verify',
+    verifySession: '/auth/verify-session',
+};
+//# sourceMappingURL=config.types.js.map

package/dist/types/config.types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.types.js","sourceRoot":"","sources":["../../src/types/config.types.ts"],"names":[],"mappings":"AA8HA,MAAM,CAAC,MAAM,iBAAiB,GAA6B;IACvD,KAAK,EAAE,aAAa;IACpB,MAAM,EAAE,cAAc;IACtB,MAAM,EAAE,cAAc;IACtB,OAAO,EAAE,eAAe;IACxB,EAAE,EAAE,UAAU;IACd,cAAc,EAAE,uBAAuB;IACvC,uBAAuB,EAAE,kCAAkC;IAC3D,aAAa,EAAE,sBAAsB;IACrC,WAAW,EAAE,oBAAoB;IACjC,kBAAkB,EAAE,+BAA+B;IACnD,cAAc,EAAE,uBAAuB;IACvC,OAAO,EAAE,gBAAgB;IACzB,SAAS,EAAE,kBAAkB;IAC7B,aAAa,EAAE,sBAAsB;CACxC,CAAC"}

package/dist/utils/role-utils.d.ts

@@ -0,0 +1,12 @@
+import { IAuthUser as AuthUser } from '@ackplus/nest-auth-contracts';
+export declare function hasRole(user: AuthUser | null | undefined, role: string | string[], matchAll?: boolean): boolean;
+export declare function hasPermission(user: AuthUser | null | undefined, permission: string | string[], matchAll?: boolean): boolean;
+export declare function hasAnyAccess(user: AuthUser | null | undefined, requirements: {
+    roles?: string[];
+    permissions?: string[];
+}): boolean;
+export declare function hasAllAccess(user: AuthUser | null | undefined, requirements: {
+    roles?: string[];
+    permissions?: string[];
+}): boolean;
+//# sourceMappingURL=role-utils.d.ts.map

package/dist/utils/role-utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"role-utils.d.ts","sourceRoot":"","sources":["../../src/utils/role-utils.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,SAAS,IAAI,QAAQ,EAAE,MAAM,8BAA8B,CAAC;AAsBrE,wBAAgB,OAAO,CACnB,IAAI,EAAE,QAAQ,GAAG,IAAI,GAAG,SAAS,EACjC,IAAI,EAAE,MAAM,GAAG,MAAM,EAAE,EACvB,QAAQ,GAAE,OAAe,GAC1B,OAAO,CAYT;AAsBD,wBAAgB,aAAa,CACzB,IAAI,EAAE,QAAQ,GAAG,IAAI,GAAG,SAAS,EACjC,UAAU,EAAE,MAAM,GAAG,MAAM,EAAE,EAC7B,QAAQ,GAAE,OAAe,GAC1B,OAAO,CAYT;AAgBD,wBAAgB,YAAY,CACxB,IAAI,EAAE,QAAQ,GAAG,IAAI,GAAG,SAAS,EACjC,YAAY,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAA;CAAE,GAC3D,OAAO,CAYT;AAgBD,wBAAgB,YAAY,CACxB,IAAI,EAAE,QAAQ,GAAG,IAAI,GAAG,SAAS,EACjC,YAAY,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAA;CAAE,GAC3D,OAAO,CAYT"}

package/dist/utils/role-utils.js

@@ -0,0 +1,43 @@
+export function hasRole(user, role, matchAll = false) {
+    if (!user || !user.roles || user.roles.length === 0) {
+        return false;
+    }
+    const roles = Array.isArray(role) ? role : [role];
+    if (matchAll) {
+        return roles.every(r => user.roles.includes(r));
+    }
+    return roles.some(r => user.roles.includes(r));
+}
+export function hasPermission(user, permission, matchAll = false) {
+    if (!user || !user.permissions || user.permissions.length === 0) {
+        return false;
+    }
+    const permissions = Array.isArray(permission) ? permission : [permission];
+    if (matchAll) {
+        return permissions.every(p => user.permissions.includes(p));
+    }
+    return permissions.some(p => user.permissions.includes(p));
+}
+export function hasAnyAccess(user, requirements) {
+    if (!user)
+        return false;
+    const hasRequiredRole = requirements.roles && requirements.roles.length > 0
+        ? hasRole(user, requirements.roles)
+        : false;
+    const hasRequiredPermission = requirements.permissions && requirements.permissions.length > 0
+        ? hasPermission(user, requirements.permissions)
+        : false;
+    return hasRequiredRole || hasRequiredPermission;
+}
+export function hasAllAccess(user, requirements) {
+    if (!user)
+        return false;
+    const hasRequiredRoles = requirements.roles && requirements.roles.length > 0
+        ? hasRole(user, requirements.roles, true)
+        : true;
+    const hasRequiredPermissions = requirements.permissions && requirements.permissions.length > 0
+        ? hasPermission(user, requirements.permissions, true)
+        : true;
+    return hasRequiredRoles && hasRequiredPermissions;
+}
+//# sourceMappingURL=role-utils.js.map

package/dist/utils/role-utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role-utils.js","sourceRoot":"","sources":["../../src/utils/role-utils.ts"],"names":[],"mappings":"AA0BA,MAAM,UAAU,OAAO,CACnB,IAAiC,EACjC,IAAuB,EACvB,WAAoB,KAAK;IAEzB,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAClD,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IAElD,IAAI,QAAQ,EAAE,CAAC;QACX,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,KAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IACrD,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,KAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;AACpD,CAAC;AAsBD,MAAM,UAAU,aAAa,CACzB,IAAiC,EACjC,UAA6B,EAC7B,WAAoB,KAAK;IAEzB,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC9D,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;IAE1E,IAAI,QAAQ,EAAE,CAAC;QACX,OAAO,WAAW,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,WAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IACjE,CAAC;IAED,OAAO,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,WAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;AAChE,CAAC;AAgBD,MAAM,UAAU,YAAY,CACxB,IAAiC,EACjC,YAA0D;IAE1D,IAAI,CAAC,IAAI;QAAE,OAAO,KAAK,CAAC;IAExB,MAAM,eAAe,GAAG,YAAY,CAAC,KAAK,IAAI,YAAY,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC;QACvE,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,YAAY,CAAC,KAAK,CAAC;QACnC,CAAC,CAAC,KAAK,CAAC;IAEZ,MAAM,qBAAqB,GAAG,YAAY,CAAC,WAAW,IAAI,YAAY,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC;QACzF,CAAC,CAAC,aAAa,CAAC,IAAI,EAAE,YAAY,CAAC,WAAW,CAAC;QAC/C,CAAC,CAAC,KAAK,CAAC;IAEZ,OAAO,eAAe,IAAI,qBAAqB,CAAC;AACpD,CAAC;AAgBD,MAAM,UAAU,YAAY,CACxB,IAAiC,EACjC,YAA0D;IAE1D,IAAI,CAAC,IAAI;QAAE,OAAO,KAAK,CAAC;IAExB,MAAM,gBAAgB,GAAG,YAAY,CAAC,KAAK,IAAI,YAAY,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC;QACxE,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC;QACzC,CAAC,CAAC,IAAI,CAAC;IAEX,MAAM,sBAAsB,GAAG,YAAY,CAAC,WAAW,IAAI,YAAY,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC;QAC1F,CAAC,CAAC,aAAa,CAAC,IAAI,EAAE,YAAY,CAAC,WAAW,EAAE,IAAI,CAAC;QACrD,CAAC,CAAC,IAAI,CAAC;IAEX,OAAO,gBAAgB,IAAI,sBAAsB,CAAC;AACtD,CAAC"}

package/package.json

@@ -0,0 +1,56 @@
+{
+  "name": "@ackplus/nest-auth-client",
+  "version": "1.1.29",
+  "description": "NestJS authentication for REST APIs",
+  "type": "module",
+  "main": "./dist/index.js",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "keywords": [
+    "query-builder",
+    "rest",
+    "api",
+    "frontend",
+    "backend",
+    "filtering",
+    "pagination",
+    "relations",
+    "typescript",
+    "nestjs",
+    "react",
+    "angular",
+    "vue"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/ack-solutions/nest-auth"
+  },
+  "license": "MIT",
+  "author": "Ackplus",
+  "dependencies": {
+    "jwt-decode": "^4.0.0",
+    "tslib": "^2.3.0",
+    "@ackplus/nest-auth-contracts": "1.1.29"
+  },
+  "devDependencies": {
+    "typescript": "^5.7.3"
+  },
+  "scripts": {
+    "clean": "rm -rf dist tsconfig.build.tsbuildinfo",
+    "build": "pnpm clean && tsc -p tsconfig.build.json",
+    "format": "prettier --write \"src/**/*.ts\"",
+    "lint": "eslint \"src/**/*.ts\" --fix"
+  }
+}