@ackplus/nest-auth-react-native 2.0.1

package/README.md

@@ -0,0 +1,115 @@
+# @ackplus/nest-auth-react-native
+
+React Native / Expo SDK for [`@ackplus/nest-auth`](https://github.com/ack-solutions/nest-auth).
+
+It adds the two things React Native needs on top of the React SDK:
+
+1. **Native token storage** — `AsyncStorageAdapter` and `SecureStoreAdapter` so sessions survive app restarts.
+2. **A header-mode client factory** — RN can't use http-only cookies, so tokens are sent in the `Authorization` header and persisted to your storage adapter.
+
+The provider, hooks, and guards from [`@ackplus/nest-auth-react`](../nest-auth-react) are re-exported and run unchanged on RN (their web-only code paths are feature-detected). Next.js helpers are intentionally **not** re-exported.
+
+## Install
+
+```bash
+npm install @ackplus/nest-auth-react-native @ackplus/nest-auth-react @ackplus/nest-auth-client react
+# pick a storage backend:
+npm install @react-native-async-storage/async-storage   # Bare RN / Expo
+# or
+npx expo install expo-secure-store                       # Expo, keychain-backed
+```
+
+This package never imports the native storage module directly — you pass it in — so it stays dependency-light and testable.
+
+## Quick start
+
+```tsx
+// auth.ts
+import AsyncStorage from '@react-native-async-storage/async-storage';
+import { createNestAuthClient, AsyncStorageAdapter } from '@ackplus/nest-auth-react-native';
+
+export const authClient = createNestAuthClient({
+  baseUrl: 'https://api.example.com',
+  storage: new AsyncStorageAdapter(AsyncStorage),
+});
+```
+
+```tsx
+// App.tsx
+import { AuthProvider } from '@ackplus/nest-auth-react-native';
+import { authClient } from './auth';
+
+export default function App() {
+  return (
+    <AuthProvider client={authClient}>
+      <RootNavigator />
+    </AuthProvider>
+  );
+}
+```
+
+```tsx
+// LoginScreen.tsx
+import { useNestAuth } from '@ackplus/nest-auth-react-native';
+
+export function LoginScreen() {
+  const { login, sessionData, isAuthenticated } = useNestAuth();
+
+  const onSubmit = async (email: string, password: string) => {
+    await login({ providerName: 'email', credentials: { email, password } });
+  };
+
+  if (isAuthenticated) return <Text>Welcome, {sessionData?.email}</Text>;
+  // ...render your form, call onSubmit
+}
+```
+
+### Secure storage (recommended for production)
+
+```ts
+import * as SecureStore from 'expo-secure-store';
+import { createNestAuthClient, SecureStoreAdapter } from '@ackplus/nest-auth-react-native';
+
+export const authClient = createNestAuthClient({
+  baseUrl: 'https://api.example.com',
+  storage: new SecureStoreAdapter(SecureStore),
+});
+```
+
+## Backend setup
+
+Your nest-auth backend should run in **header token mode** so tokens are returned in the response body:
+
+```ts
+NestAuthModule.forRoot({
+  session: { jwt: { secret: env.JWT_SECRET }, accessTokenType: 'header' },
+  // ...
+});
+```
+
+## API
+
+| Export | Purpose |
+| --- | --- |
+| `createNestAuthClient(config)` | Build a header-mode `AuthClient` with required `storage`. |
+| `AsyncStorageAdapter(storage, prefix?)` | `StorageAdapter` over AsyncStorage (or any compatible store). |
+| `SecureStoreAdapter(store, prefix?)` | `StorageAdapter` over Expo SecureStore. |
+| `AuthProvider`, `useNestAuth`, `useUser`, `useSession`, `useAccessToken`, `useAuthStatus`, `useHasRole`, `useHasPermission`, `useAuthHeaderFn` | Re-exported from the React SDK. |
+| `AuthGuard`, `GuestGuard`, `RequireRole`, `RequirePermission` | Conditional-render guards. |
+| `AuthClient`, `hasRole`, `hasPermission`, … + all `@ackplus/nest-auth-contracts` types | Re-exported from the core client. |
+
+## Social login
+
+Acquire the provider token natively (e.g. `@react-native-google-signin/google-signin`, Apple authentication) and pass it to `authClient.socialLogin(provider, token, opts)`.
+
+## Testing
+
+This package ships a real, no-mock E2E suite: it spawns a real nest-auth backend and drives the client through signup → login → refresh → logout over HTTP.
+
+```bash
+pnpm -F @ackplus/nest-auth-react-native test
+```
+
+## License
+
+MIT

package/dist/create-client.d.ts

@@ -0,0 +1,6 @@
+import { AuthClient } from '@ackplus/nest-auth-client';
+import type { AuthClientConfig, StorageAdapter } from '@ackplus/nest-auth-client';
+export interface NestAuthRNConfig extends Omit<AuthClientConfig, 'storage'> {
+    storage: StorageAdapter;
+}
+export declare function createNestAuthClient(config: NestAuthRNConfig): AuthClient;

package/dist/create-client.js

@@ -0,0 +1,8 @@
+import { AuthClient } from '@ackplus/nest-auth-client';
+export function createNestAuthClient(config) {
+    return new AuthClient({
+        accessTokenType: 'header',
+        ...config,
+    });
+}
+//# sourceMappingURL=create-client.js.map

package/dist/create-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"create-client.js","sourceRoot":"","sources":["../src/create-client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AAkCvD,MAAM,UAAU,oBAAoB,CAAC,MAAwB;IACzD,OAAO,IAAI,UAAU,CAAC;QAElB,eAAe,EAAE,QAAQ;QACzB,GAAG,MAAM;KACZ,CAAC,CAAC;AACP,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,13 @@
+export { AsyncStorageAdapter } from './storage/async-storage.adapter';
+export type { AsyncStorageLike } from './storage/async-storage.adapter';
+export { SecureStoreAdapter } from './storage/secure-store.adapter';
+export type { SecureStoreLike } from './storage/secure-store.adapter';
+export { createNestAuthClient } from './create-client';
+export type { NestAuthRNConfig } from './create-client';
+export { signInWithGoogle, signInWithApple } from './native-signin';
+export type { GoogleSigninLike, AppleAuthLike } from './native-signin';
+export { AuthClient, MemoryStorage, hasRole, hasPermission, hasAnyAccess, hasAllAccess, } from '@ackplus/nest-auth-client';
+export type { AuthClientConfig, StorageAdapter, AccessTokenType, EndpointConfig, } from '@ackplus/nest-auth-client';
+export * from '@ackplus/nest-auth-contracts';
+export { AuthProvider, useNestAuth, useUser, useSession, useAccessToken, useAuthStatus, useHasRole, useHasPermission, useAuthHeaderFn, useAuthHeaderFnSync, AuthGuard, GuestGuard, RequireRole, RequirePermission, } from '@ackplus/nest-auth-react';
+export type { AuthContextValue, AuthProviderProps, AuthStatusResult, } from '@ackplus/nest-auth-react';

package/dist/index.js

@@ -0,0 +1,8 @@
+export { AsyncStorageAdapter } from './storage/async-storage.adapter';
+export { SecureStoreAdapter } from './storage/secure-store.adapter';
+export { createNestAuthClient } from './create-client';
+export { signInWithGoogle, signInWithApple } from './native-signin';
+export { AuthClient, MemoryStorage, hasRole, hasPermission, hasAnyAccess, hasAllAccess, } from '@ackplus/nest-auth-client';
+export * from '@ackplus/nest-auth-contracts';
+export { AuthProvider, useNestAuth, useUser, useSession, useAccessToken, useAuthStatus, useHasRole, useHasPermission, useAuthHeaderFn, useAuthHeaderFnSync, AuthGuard, GuestGuard, RequireRole, RequirePermission, } from '@ackplus/nest-auth-react';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAYA,OAAO,EAAE,mBAAmB,EAAE,MAAM,iCAAiC,CAAC;AAEtE,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAC;AAEpE,OAAO,EAAE,oBAAoB,EAAE,MAAM,iBAAiB,CAAC;AAEvD,OAAO,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAC;AAIpE,OAAO,EACH,UAAU,EACV,aAAa,EACb,OAAO,EACP,aAAa,EACb,YAAY,EACZ,YAAY,GACf,MAAM,2BAA2B,CAAC;AASnC,cAAc,8BAA8B,CAAC;AAG7C,OAAO,EACH,YAAY,EACZ,WAAW,EACX,OAAO,EACP,UAAU,EACV,cAAc,EACd,aAAa,EACb,UAAU,EACV,gBAAgB,EAChB,eAAe,EACf,mBAAmB,EACnB,SAAS,EACT,UAAU,EACV,WAAW,EACX,iBAAiB,GACpB,MAAM,0BAA0B,CAAC"}

package/dist/native-signin.d.ts

@@ -0,0 +1,16 @@
+import type { AuthClient, IAuthResponse } from '@ackplus/nest-auth-client';
+export interface GoogleSigninLike {
+    hasPlayServices?(options?: unknown): Promise<unknown>;
+    signIn(): Promise<unknown>;
+}
+export declare function signInWithGoogle(client: AuthClient, googleSignin: GoogleSigninLike): Promise<IAuthResponse>;
+export interface AppleAuthLike {
+    signInAsync(options?: unknown): Promise<unknown>;
+    AppleAuthenticationScope?: {
+        FULL_NAME: unknown;
+        EMAIL: unknown;
+    };
+}
+export declare function signInWithApple(client: AuthClient, appleAuth: AppleAuthLike, options?: {
+    nonce?: string;
+}): Promise<IAuthResponse>;

package/dist/native-signin.js

@@ -0,0 +1,28 @@
+export async function signInWithGoogle(client, googleSignin) {
+    await googleSignin.hasPlayServices?.();
+    const result = (await googleSignin.signIn());
+    const idToken = result?.data?.idToken ?? result?.idToken ?? result?.user?.idToken;
+    if (!idToken) {
+        throw new Error('Google Sign-In returned no idToken. Configure the native SDK with your webClientId/serverClientId.');
+    }
+    return client.socialLogin('google', idToken, { type: 'idToken' });
+}
+export async function signInWithApple(client, appleAuth, options) {
+    const requestedScopes = appleAuth.AppleAuthenticationScope
+        ? [appleAuth.AppleAuthenticationScope.FULL_NAME, appleAuth.AppleAuthenticationScope.EMAIL]
+        : undefined;
+    const credential = (await appleAuth.signInAsync({
+        requestedScopes,
+        nonce: options?.nonce,
+    }));
+    const identityToken = credential?.identityToken;
+    if (!identityToken) {
+        throw new Error('Apple Sign-In returned no identityToken.');
+    }
+    const fullName = credential?.fullName;
+    const name = fullName
+        ? [fullName.givenName, fullName.familyName].filter(Boolean).join(' ') || undefined
+        : undefined;
+    return client.socialLogin('apple', identityToken, { nonce: options?.nonce, name });
+}
+//# sourceMappingURL=native-signin.js.map

package/dist/native-signin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"native-signin.js","sourceRoot":"","sources":["../src/native-signin.ts"],"names":[],"mappings":"AAmCA,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAClC,MAAkB,EAClB,YAA8B;IAE9B,MAAM,YAAY,CAAC,eAAe,EAAE,EAAE,CAAC;IACvC,MAAM,MAAM,GAAG,CAAC,MAAM,YAAY,CAAC,MAAM,EAAE,CAAQ,CAAC;IAEpD,MAAM,OAAO,GACT,MAAM,EAAE,IAAI,EAAE,OAAO,IAAI,MAAM,EAAE,OAAO,IAAI,MAAM,EAAE,IAAI,EAAE,OAAO,CAAC;IACtE,IAAI,CAAC,OAAO,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CACX,oGAAoG,CACvG,CAAC;IACN,CAAC;IACD,OAAO,MAAM,CAAC,WAAW,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC;AACtE,CAAC;AAqBD,MAAM,CAAC,KAAK,UAAU,eAAe,CACjC,MAAkB,EAClB,SAAwB,EACxB,OAA4B;IAE5B,MAAM,eAAe,GAAG,SAAS,CAAC,wBAAwB;QACtD,CAAC,CAAC,CAAC,SAAS,CAAC,wBAAwB,CAAC,SAAS,EAAE,SAAS,CAAC,wBAAwB,CAAC,KAAK,CAAC;QAC1F,CAAC,CAAC,SAAS,CAAC;IAEhB,MAAM,UAAU,GAAG,CAAC,MAAM,SAAS,CAAC,WAAW,CAAC;QAC5C,eAAe;QACf,KAAK,EAAE,OAAO,EAAE,KAAK;KACxB,CAAC,CAAQ,CAAC;IAEX,MAAM,aAAa,GAAuB,UAAU,EAAE,aAAa,CAAC;IACpE,IAAI,CAAC,aAAa,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,QAAQ,GAAG,UAAU,EAAE,QAAQ,CAAC;IACtC,MAAM,IAAI,GAAG,QAAQ;QACjB,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,SAAS;QAClF,CAAC,CAAC,SAAS,CAAC;IAEhB,OAAO,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,aAAa,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;AACvF,CAAC"}

package/dist/storage/async-storage.adapter.d.ts

@@ -0,0 +1,18 @@
+import type { StorageAdapter } from '@ackplus/nest-auth-client';
+export interface AsyncStorageLike {
+    getItem(key: string): Promise<string | null>;
+    setItem(key: string, value: string): Promise<void>;
+    removeItem(key: string): Promise<void>;
+    getAllKeys?(): Promise<readonly string[]>;
+    multiRemove?(keys: string[]): Promise<void>;
+}
+export declare class AsyncStorageAdapter implements StorageAdapter {
+    private readonly storage;
+    private readonly prefix;
+    constructor(storage: AsyncStorageLike, prefix?: string);
+    private k;
+    get(key: string): Promise<string | null>;
+    set(key: string, value: string): Promise<void>;
+    remove(key: string): Promise<void>;
+    clear(): Promise<void>;
+}

package/dist/storage/async-storage.adapter.js

@@ -0,0 +1,28 @@
+export class AsyncStorageAdapter {
+    constructor(storage, prefix = 'nest_auth.') {
+        this.storage = storage;
+        this.prefix = prefix;
+    }
+    k(key) {
+        return this.prefix + key;
+    }
+    get(key) {
+        return this.storage.getItem(this.k(key));
+    }
+    async set(key, value) {
+        await this.storage.setItem(this.k(key), value);
+    }
+    async remove(key) {
+        await this.storage.removeItem(this.k(key));
+    }
+    async clear() {
+        if (this.storage.getAllKeys && this.storage.multiRemove) {
+            const all = await this.storage.getAllKeys();
+            const mine = all.filter((k) => k.startsWith(this.prefix));
+            if (mine.length) {
+                await this.storage.multiRemove(mine);
+            }
+        }
+    }
+}
+//# sourceMappingURL=async-storage.adapter.js.map

package/dist/storage/async-storage.adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"async-storage.adapter.js","sourceRoot":"","sources":["../../src/storage/async-storage.adapter.ts"],"names":[],"mappings":"AAgCA,MAAM,OAAO,mBAAmB;IAC5B,YACqB,OAAyB,EACzB,SAAS,YAAY;QADrB,YAAO,GAAP,OAAO,CAAkB;QACzB,WAAM,GAAN,MAAM,CAAe;IACvC,CAAC;IAEI,CAAC,CAAC,GAAW;QACjB,OAAO,IAAI,CAAC,MAAM,GAAG,GAAG,CAAC;IAC7B,CAAC;IAED,GAAG,CAAC,GAAW;QACX,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7C,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,KAAa;QAChC,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW;QACpB,MAAM,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK,CAAC,KAAK;QACP,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;YACtD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;YAC5C,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC;YAC1D,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBACd,MAAM,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YACzC,CAAC;QACL,CAAC;IACL,CAAC;CACJ"}

package/dist/storage/secure-store.adapter.d.ts

@@ -0,0 +1,15 @@
+import type { StorageAdapter } from '@ackplus/nest-auth-client';
+export interface SecureStoreLike {
+    getItemAsync(key: string): Promise<string | null>;
+    setItemAsync(key: string, value: string): Promise<void>;
+    deleteItemAsync(key: string): Promise<void>;
+}
+export declare class SecureStoreAdapter implements StorageAdapter {
+    private readonly store;
+    private readonly prefix;
+    constructor(store: SecureStoreLike, prefix?: string);
+    private k;
+    get(key: string): Promise<string | null>;
+    set(key: string, value: string): Promise<void>;
+    remove(key: string): Promise<void>;
+}

package/dist/storage/secure-store.adapter.js

@@ -0,0 +1,19 @@
+export class SecureStoreAdapter {
+    constructor(store, prefix = 'nest_auth.') {
+        this.store = store;
+        this.prefix = prefix;
+    }
+    k(key) {
+        return this.prefix + key;
+    }
+    get(key) {
+        return this.store.getItemAsync(this.k(key));
+    }
+    async set(key, value) {
+        await this.store.setItemAsync(this.k(key), value);
+    }
+    async remove(key) {
+        await this.store.deleteItemAsync(this.k(key));
+    }
+}
+//# sourceMappingURL=secure-store.adapter.js.map

package/dist/storage/secure-store.adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"secure-store.adapter.js","sourceRoot":"","sources":["../../src/storage/secure-store.adapter.ts"],"names":[],"mappings":"AA+BA,MAAM,OAAO,kBAAkB;IAC3B,YACqB,KAAsB,EACtB,SAAS,YAAY;QADrB,UAAK,GAAL,KAAK,CAAiB;QACtB,WAAM,GAAN,MAAM,CAAe;IACvC,CAAC;IAEI,CAAC,CAAC,GAAW;QACjB,OAAO,IAAI,CAAC,MAAM,GAAG,GAAG,CAAC;IAC7B,CAAC;IAED,GAAG,CAAC,GAAW;QACX,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,KAAa;QAChC,MAAM,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAC;IACtD,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW;QACpB,MAAM,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAClD,CAAC;CACJ"}

package/package.json

@@ -0,0 +1,59 @@
+{
+  "name": "@ackplus/nest-auth-react-native",
+  "version": "2.0.1",
+  "description": "React Native / Expo SDK for NestJS authentication - hooks, guards, and secure token storage",
+  "type": "module",
+  "main": "./dist/index.js",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "keywords": [
+    "auth",
+    "authentication",
+    "react-native",
+    "expo",
+    "hooks",
+    "nestjs",
+    "jwt",
+    "oauth",
+    "asyncstorage"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/ack-solutions/nest-auth"
+  },
+  "license": "MIT",
+  "author": "Ackplus",
+  "peerDependencies": {
+    "react": "^18.0.0 || ^19.0.0"
+  },
+  "dependencies": {
+    "@ackplus/nest-auth-client": "2.0.1",
+    "@ackplus/nest-auth-react": "2.0.1",
+    "@ackplus/nest-auth-contracts": "2.0.1"
+  },
+  "devDependencies": {
+    "typescript": "^5.7.3",
+    "@types/react": "^18.0.0",
+    "vitest": "^3.0.0",
+    "jsonwebtoken": "^9.0.0",
+    "@types/jsonwebtoken": "^9.0.5"
+  },
+  "scripts": {
+    "clean": "rm -rf dist tsconfig.build.tsbuildinfo",
+    "build": "pnpm clean && tsc -p tsconfig.build.json",
+    "test": "vitest run",
+    "typecheck": "tsc -p tsconfig.json --noEmit"
+  }
+}