@adonisjs/auth 9.0.0-8 → 9.0.0

package/build/chunk-3HZHOWKL.js

@@ -0,0 +1,8 @@
+// src/debug.ts
+import { debuglog } from "node:util";
+var debug_default = debuglog("adonisjs:auth");
+
+export {
+  debug_default
+};
+//# sourceMappingURL=chunk-3HZHOWKL.js.map

package/build/chunk-3HZHOWKL.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/debug.ts"],"sourcesContent":["/*\n * @adonisjs/auth\n *\n * (c) AdonisJS\n *\n * For the full copyright and license information, please view the LICENSE\n * file that was distributed with this source code.\n */\n\nimport { debuglog } from 'node:util'\n\nexport default debuglog('adonisjs:auth')\n"],"mappings":";AASA,SAAS,gBAAgB;AAEzB,IAAO,gBAAQ,SAAS,eAAe;","names":[]}

package/build/chunk-52DVKHJR.js

@@ -0,0 +1,246 @@
+import {
+  debug_default
+} from "./chunk-3HZHOWKL.js";
+import {
+  E_UNAUTHORIZED_ACCESS
+} from "./chunk-BHB55PBJ.js";
+
+// src/authenticator.ts
+import { RuntimeException } from "@adonisjs/core/exceptions";
+var Authenticator = class {
+  /**
+   * Registered guards
+   */
+  #config;
+  /**
+   * Cache of guards created during the HTTP request
+   */
+  #guardsCache = {};
+  /**
+   * Last guard that was used to perform the authentication via
+   * the "authenticateUsing" method.
+   *
+   * @note
+   * Reset on every call made to "authenticate", "check" and
+   * "authenticateUsing" method.
+   */
+  #authenticationAttemptedViaGuard;
+  /**
+   * Name of the guard using which the request has
+   * been authenticated successfully.
+   *
+   * @note
+   * Reset on every call made to "authenticate", "check" and
+   * "authenticateUsing" method.
+   */
+  #authenticatedViaGuard;
+  /**
+   * Reference to HTTP context
+   */
+  #ctx;
+  /**
+   * Name of the default guard
+   */
+  get defaultGuard() {
+    return this.#config.default;
+  }
+  /**
+   * Reference to the guard using which the current
+   * request has been authenticated.
+   */
+  get authenticatedViaGuard() {
+    return this.#authenticatedViaGuard;
+  }
+  /**
+   * A boolean to know if the current request has been authenticated. The
+   * property returns false when "authenticate" or "authenticateUsing"
+   * methods are not used.
+   */
+  get isAuthenticated() {
+    if (!this.#authenticationAttemptedViaGuard) {
+      return false;
+    }
+    return this.use(this.#authenticationAttemptedViaGuard).isAuthenticated;
+  }
+  /**
+   * Reference to the currently authenticated user. The property returns
+   * undefined when "authenticate" or "authenticateUsing" methods are
+   * not used.
+   */
+  get user() {
+    if (!this.#authenticationAttemptedViaGuard) {
+      return void 0;
+    }
+    return this.use(this.#authenticationAttemptedViaGuard).user;
+  }
+  /**
+   * Whether or not the authentication has been attempted during
+   * the current request. The property returns false when the
+   * "authenticate" or "authenticateUsing" methods are not
+   * used.
+   */
+  get authenticationAttempted() {
+    if (!this.#authenticationAttemptedViaGuard) {
+      return false;
+    }
+    return this.use(this.#authenticationAttemptedViaGuard).authenticationAttempted;
+  }
+  constructor(ctx, config) {
+    this.#ctx = ctx;
+    this.#config = config;
+    debug_default("creating authenticator. config %O", this.#config);
+  }
+  /**
+   * Returns an instance of the logged-in user or throws an
+   * exception
+   */
+  getUserOrFail() {
+    if (!this.#authenticationAttemptedViaGuard) {
+      throw new RuntimeException(
+        'Cannot access authenticated user. Please call "auth.authenticate" method first.'
+      );
+    }
+    return this.use(this.#authenticationAttemptedViaGuard).getUserOrFail();
+  }
+  /**
+   * Returns an instance of a known guard. Guards instances are
+   * cached during the lifecycle of an HTTP request.
+   */
+  use(guard) {
+    const guardToUse = guard || this.#config.default;
+    const cachedGuard = this.#guardsCache[guardToUse];
+    if (cachedGuard) {
+      debug_default('authenticator: using guard from cache. name: "%s"', guardToUse);
+      return cachedGuard;
+    }
+    const guardFactory = this.#config.guards[guardToUse];
+    debug_default('authenticator: creating guard. name: "%s"', guardToUse);
+    const guardInstance = guardFactory(this.#ctx);
+    this.#guardsCache[guardToUse] = guardInstance;
+    return guardInstance;
+  }
+  /**
+   * Authenticate current request using the default guard. Calling this
+   * method multiple times triggers multiple authentication with the
+   * guard.
+   */
+  async authenticate() {
+    await this.authenticateUsing();
+    return this.getUserOrFail();
+  }
+  /**
+   * Silently attempt to authenticate the request using the default
+   * guard. Calling this method multiple times triggers multiple
+   * authentication with the guard.
+   */
+  async check() {
+    this.#authenticationAttemptedViaGuard = this.defaultGuard;
+    const isAuthenticated = await this.use().check();
+    if (isAuthenticated) {
+      this.#authenticatedViaGuard = this.defaultGuard;
+    }
+    return isAuthenticated;
+  }
+  /**
+   * Authenticate the request using all of the mentioned guards
+   * or the default guard.
+   *
+   * The authentication process will stop after any of the mentioned
+   * guards is able to authenticate the request successfully.
+   *
+   * Otherwise, "E_UNAUTHORIZED_ACCESS" will be raised.
+   */
+  async authenticateUsing(guards, options) {
+    const guardsToUse = guards || [this.defaultGuard];
+    let lastUsedDriver;
+    for (let guardName of guardsToUse) {
+      debug_default('attempting to authenticate using guard "%s"', guardName);
+      this.#authenticationAttemptedViaGuard = guardName;
+      const guard = this.use(guardName);
+      lastUsedDriver = guard.driverName;
+      if (await guard.check()) {
+        this.#authenticatedViaGuard = guardName;
+        return this.getUserOrFail();
+      }
+    }
+    throw new E_UNAUTHORIZED_ACCESS("Unauthorized access", {
+      guardDriverName: lastUsedDriver,
+      redirectTo: options?.loginRoute
+    });
+  }
+};
+
+// src/authenticator_client.ts
+import { HttpContextFactory } from "@adonisjs/core/factories/http";
+var AuthenticatorClient = class {
+  /**
+   * Registered guards
+   */
+  #config;
+  /**
+   * Cache of guards
+   */
+  #guardsCache = {};
+  /**
+   * Name of the default guard
+   */
+  get defaultGuard() {
+    return this.#config.default;
+  }
+  constructor(config) {
+    this.#config = config;
+    debug_default("creating authenticator client. config %O", this.#config);
+  }
+  /**
+   * Returns an instance of a known guard. Guards instances are
+   * cached during the lifecycle of an HTTP request.
+   */
+  use(guard) {
+    const guardToUse = guard || this.#config.default;
+    const cachedGuard = this.#guardsCache[guardToUse];
+    if (cachedGuard) {
+      debug_default('authenticator client: using guard from cache. name: "%s"', guardToUse);
+      return cachedGuard;
+    }
+    const guardFactory = this.#config.guards[guardToUse];
+    debug_default('authenticator client: creating guard. name: "%s"', guardToUse);
+    const guardInstance = guardFactory(new HttpContextFactory().create());
+    this.#guardsCache[guardToUse] = guardInstance;
+    return guardInstance;
+  }
+};
+
+// src/auth_manager.ts
+var AuthManager = class {
+  constructor(config) {
+    this.config = config;
+    this.config = config;
+  }
+  /**
+   * Name of the default guard
+   */
+  get defaultGuard() {
+    return this.config.default;
+  }
+  /**
+   * Create an authenticator for a given HTTP request. The authenticator
+   * is used to authenticated in incoming HTTP request
+   */
+  createAuthenticator(ctx) {
+    return new Authenticator(ctx, this.config);
+  }
+  /**
+   * Creates an instance of the authenticator client. The client is
+   * used to setup authentication state during testing.
+   */
+  createAuthenticatorClient() {
+    return new AuthenticatorClient(this.config);
+  }
+};
+
+export {
+  Authenticator,
+  AuthenticatorClient,
+  AuthManager
+};
+//# sourceMappingURL=chunk-52DVKHJR.js.map

package/build/chunk-52DVKHJR.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/authenticator.ts","../src/authenticator_client.ts","../src/auth_manager.ts"],"sourcesContent":["/*\n * @adonisjs/auth\n *\n * (c) AdonisJS\n *\n * For the full copyright and license information, please view the LICENSE\n * file that was distributed with this source code.\n */\n\nimport type { HttpContext } from '@adonisjs/core/http'\nimport { RuntimeException } from '@adonisjs/core/exceptions'\n\nimport debug from './debug.js'\nimport type { GuardFactory } from './types.js'\nimport { E_UNAUTHORIZED_ACCESS } from './errors.js'\n\n/**\n * Authenticator is used to authenticate incoming HTTP requests\n * using one or more known guards.\n */\nexport class Authenticator<KnownGuards extends Record<string, GuardFactory>> {\n  /**\n   * Registered guards\n   */\n  #config: {\n    default: keyof KnownGuards\n    guards: KnownGuards\n  }\n\n  /**\n   * Cache of guards created during the HTTP request\n   */\n  #guardsCache: Partial<Record<keyof KnownGuards, unknown>> = {}\n\n  /**\n   * Last guard that was used to perform the authentication via\n   * the \"authenticateUsing\" method.\n   *\n   * @note\n   * Reset on every call made to \"authenticate\", \"check\" and\n   * \"authenticateUsing\" method.\n   */\n  #authenticationAttemptedViaGuard?: keyof KnownGuards\n\n  /**\n   * Name of the guard using which the request has\n   * been authenticated successfully.\n   *\n   * @note\n   * Reset on every call made to \"authenticate\", \"check\" and\n   * \"authenticateUsing\" method.\n   */\n  #authenticatedViaGuard?: keyof KnownGuards\n\n  /**\n   * Reference to HTTP context\n   */\n  #ctx: HttpContext\n\n  /**\n   * Name of the default guard\n   */\n  get defaultGuard(): keyof KnownGuards {\n    return this.#config.default\n  }\n\n  /**\n   * Reference to the guard using which the current\n   * request has been authenticated.\n   */\n  get authenticatedViaGuard(): keyof KnownGuards | undefined {\n    return this.#authenticatedViaGuard\n  }\n\n  /**\n   * A boolean to know if the current request has been authenticated. The\n   * property returns false when \"authenticate\" or \"authenticateUsing\"\n   * methods are not used.\n   */\n  get isAuthenticated(): boolean {\n    if (!this.#authenticationAttemptedViaGuard) {\n      return false\n    }\n\n    return this.use(this.#authenticationAttemptedViaGuard).isAuthenticated\n  }\n\n  /**\n   * Reference to the currently authenticated user. The property returns\n   * undefined when \"authenticate\" or \"authenticateUsing\" methods are\n   * not used.\n   */\n  get user(): {\n    [K in keyof KnownGuards]: ReturnType<KnownGuards[K]>['user']\n  }[keyof KnownGuards] {\n    if (!this.#authenticationAttemptedViaGuard) {\n      return undefined\n    }\n\n    return this.use(this.#authenticationAttemptedViaGuard).user\n  }\n\n  /**\n   * Whether or not the authentication has been attempted during\n   * the current request. The property returns false when the\n   * \"authenticate\" or \"authenticateUsing\" methods are not\n   * used.\n   */\n  get authenticationAttempted(): boolean {\n    if (!this.#authenticationAttemptedViaGuard) {\n      return false\n    }\n\n    return this.use(this.#authenticationAttemptedViaGuard).authenticationAttempted\n  }\n\n  constructor(ctx: HttpContext, config: { default: keyof KnownGuards; guards: KnownGuards }) {\n    this.#ctx = ctx\n    this.#config = config\n    debug('creating authenticator. config %O', this.#config)\n  }\n\n  /**\n   * Returns an instance of the logged-in user or throws an\n   * exception\n   */\n  getUserOrFail(): {\n    [K in keyof KnownGuards]: ReturnType<ReturnType<KnownGuards[K]>['getUserOrFail']>\n  }[keyof KnownGuards] {\n    if (!this.#authenticationAttemptedViaGuard) {\n      throw new RuntimeException(\n        'Cannot access authenticated user. Please call \"auth.authenticate\" method first.'\n      )\n    }\n\n    return this.use(this.#authenticationAttemptedViaGuard).getUserOrFail() as {\n      [K in keyof KnownGuards]: ReturnType<ReturnType<KnownGuards[K]>['getUserOrFail']>\n    }[keyof KnownGuards]\n  }\n\n  /**\n   * Returns an instance of a known guard. Guards instances are\n   * cached during the lifecycle of an HTTP request.\n   */\n  use<Guard extends keyof KnownGuards>(guard?: Guard): ReturnType<KnownGuards[Guard]> {\n    const guardToUse = guard || this.#config.default\n\n    /**\n     * Use cached copy if exists\n     */\n    const cachedGuard = this.#guardsCache[guardToUse]\n    if (cachedGuard) {\n      debug('authenticator: using guard from cache. name: \"%s\"', guardToUse)\n      return cachedGuard as ReturnType<KnownGuards[Guard]>\n    }\n\n    const guardFactory = this.#config.guards[guardToUse]\n\n    /**\n     * Construct guard and cache it\n     */\n    debug('authenticator: creating guard. name: \"%s\"', guardToUse)\n    const guardInstance = guardFactory(this.#ctx)\n    this.#guardsCache[guardToUse] = guardInstance\n\n    return guardInstance as ReturnType<KnownGuards[Guard]>\n  }\n\n  /**\n   * Authenticate current request using the default guard. Calling this\n   * method multiple times triggers multiple authentication with the\n   * guard.\n   */\n  async authenticate() {\n    await this.authenticateUsing()\n    return this.getUserOrFail()\n  }\n\n  /**\n   * Silently attempt to authenticate the request using the default\n   * guard. Calling this method multiple times triggers multiple\n   * authentication with the guard.\n   */\n  async check() {\n    this.#authenticationAttemptedViaGuard = this.defaultGuard\n    const isAuthenticated = await this.use().check()\n    if (isAuthenticated) {\n      this.#authenticatedViaGuard = this.defaultGuard\n    }\n\n    return isAuthenticated\n  }\n\n  /**\n   * Authenticate the request using all of the mentioned guards\n   * or the default guard.\n   *\n   * The authentication process will stop after any of the mentioned\n   * guards is able to authenticate the request successfully.\n   *\n   * Otherwise, \"E_UNAUTHORIZED_ACCESS\" will be raised.\n   */\n  async authenticateUsing(\n    guards?: (keyof KnownGuards)[],\n    options?: { loginRoute?: string }\n  ): Promise<\n    {\n      [K in keyof KnownGuards]: ReturnType<ReturnType<KnownGuards[K]>['getUserOrFail']>\n    }[keyof KnownGuards]\n  > {\n    const guardsToUse = guards || [this.defaultGuard]\n    let lastUsedDriver: string | undefined\n\n    for (let guardName of guardsToUse) {\n      debug('attempting to authenticate using guard \"%s\"', guardName)\n\n      this.#authenticationAttemptedViaGuard = guardName\n      const guard = this.use(guardName)\n      lastUsedDriver = guard.driverName\n\n      if (await guard.check()) {\n        this.#authenticatedViaGuard = guardName\n        return this.getUserOrFail()\n      }\n    }\n\n    throw new E_UNAUTHORIZED_ACCESS('Unauthorized access', {\n      guardDriverName: lastUsedDriver!,\n      redirectTo: options?.loginRoute,\n    })\n  }\n}\n","/*\n * @adonisjs/auth\n *\n * (c) AdonisJS\n *\n * For the full copyright and license information, please view the LICENSE\n * file that was distributed with this source code.\n */\n\nimport debug from './debug.js'\nimport type { GuardFactory } from './types.js'\nimport { HttpContextFactory } from '@adonisjs/core/factories/http'\n\n/**\n * Authenticator client is used to create guard instances for testing.\n * It passes a fake HTTPContext to the guards, so make sure to not\n * call server side APIs that might be relying on a real\n * HTTPContext instance.\n */\nexport class AuthenticatorClient<KnownGuards extends Record<string, GuardFactory>> {\n  /**\n   * Registered guards\n   */\n  #config: {\n    default: keyof KnownGuards\n    guards: KnownGuards\n  }\n\n  /**\n   * Cache of guards\n   */\n  #guardsCache: Partial<Record<keyof KnownGuards, unknown>> = {}\n\n  /**\n   * Name of the default guard\n   */\n  get defaultGuard(): keyof KnownGuards {\n    return this.#config.default\n  }\n\n  constructor(config: { default: keyof KnownGuards; guards: KnownGuards }) {\n    this.#config = config\n    debug('creating authenticator client. config %O', this.#config)\n  }\n\n  /**\n   * Returns an instance of a known guard. Guards instances are\n   * cached during the lifecycle of an HTTP request.\n   */\n  use<Guard extends keyof KnownGuards>(guard?: Guard): ReturnType<KnownGuards[Guard]> {\n    const guardToUse = guard || this.#config.default\n\n    /**\n     * Use cached copy if exists\n     */\n    const cachedGuard = this.#guardsCache[guardToUse]\n    if (cachedGuard) {\n      debug('authenticator client: using guard from cache. name: \"%s\"', guardToUse)\n      return cachedGuard as ReturnType<KnownGuards[Guard]>\n    }\n\n    const guardFactory = this.#config.guards[guardToUse]\n\n    /**\n     * Construct guard and cache it\n     */\n    debug('authenticator client: creating guard. name: \"%s\"', guardToUse)\n    const guardInstance = guardFactory(new HttpContextFactory().create())\n    this.#guardsCache[guardToUse] = guardInstance\n\n    return guardInstance as ReturnType<KnownGuards[Guard]>\n  }\n}\n","/*\n * @adonisjs/auth\n *\n * (c) AdonisJS\n *\n * For the full copyright and license information, please view the LICENSE\n * file that was distributed with this source code.\n */\n\nimport type { HttpContext } from '@adonisjs/core/http'\n\nimport type { GuardFactory } from './types.js'\nimport { Authenticator } from './authenticator.js'\nimport { AuthenticatorClient } from './authenticator_client.js'\n\n/**\n * Auth manager exposes the API to register and manage authentication\n * guards from the config\n */\nexport class AuthManager<KnownGuards extends Record<string, GuardFactory>> {\n  /**\n   * Name of the default guard\n   */\n  get defaultGuard() {\n    return this.config.default\n  }\n\n  constructor(public config: { default: keyof KnownGuards; guards: KnownGuards }) {\n    this.config = config\n  }\n\n  /**\n   * Create an authenticator for a given HTTP request. The authenticator\n   * is used to authenticated in incoming HTTP request\n   */\n  createAuthenticator(ctx: HttpContext) {\n    return new Authenticator<KnownGuards>(ctx, this.config)\n  }\n\n  /**\n   * Creates an instance of the authenticator client. The client is\n   * used to setup authentication state during testing.\n   */\n  createAuthenticatorClient() {\n    return new AuthenticatorClient<KnownGuards>(this.config)\n  }\n}\n"],"mappings":";;;;;;;;AAUA,SAAS,wBAAwB;AAU1B,IAAM,gBAAN,MAAsE;AAAA;AAAA;AAAA;AAAA,EAI3E;AAAA;AAAA;AAAA;AAAA,EAQA,eAA4D,CAAC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAU7D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA;AAAA;AAAA;AAAA;AAAA,EAKA;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,eAAkC;AACpC,WAAO,KAAK,QAAQ;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,IAAI,wBAAuD;AACzD,WAAO,KAAK;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,IAAI,kBAA2B;AAC7B,QAAI,CAAC,KAAK,kCAAkC;AAC1C,aAAO;AAAA,IACT;AAEA,WAAO,KAAK,IAAI,KAAK,gCAAgC,EAAE;AAAA,EACzD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,IAAI,OAEiB;AACnB,QAAI,CAAC,KAAK,kCAAkC;AAC1C,aAAO;AAAA,IACT;AAEA,WAAO,KAAK,IAAI,KAAK,gCAAgC,EAAE;AAAA,EACzD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,IAAI,0BAAmC;AACrC,QAAI,CAAC,KAAK,kCAAkC;AAC1C,aAAO;AAAA,IACT;AAEA,WAAO,KAAK,IAAI,KAAK,gCAAgC,EAAE;AAAA,EACzD;AAAA,EAEA,YAAY,KAAkB,QAA6D;AACzF,SAAK,OAAO;AACZ,SAAK,UAAU;AACf,kBAAM,qCAAqC,KAAK,OAAO;AAAA,EACzD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,gBAEqB;AACnB,QAAI,CAAC,KAAK,kCAAkC;AAC1C,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,WAAO,KAAK,IAAI,KAAK,gCAAgC,EAAE,cAAc;AAAA,EAGvE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,IAAqC,OAA+C;AAClF,UAAM,aAAa,SAAS,KAAK,QAAQ;AAKzC,UAAM,cAAc,KAAK,aAAa,UAAU;AAChD,QAAI,aAAa;AACf,oBAAM,qDAAqD,UAAU;AACrE,aAAO;AAAA,IACT;AAEA,UAAM,eAAe,KAAK,QAAQ,OAAO,UAAU;AAKnD,kBAAM,6CAA6C,UAAU;AAC7D,UAAM,gBAAgB,aAAa,KAAK,IAAI;AAC5C,SAAK,aAAa,UAAU,IAAI;AAEhC,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,eAAe;AACnB,UAAM,KAAK,kBAAkB;AAC7B,WAAO,KAAK,cAAc;AAAA,EAC5B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ;AACZ,SAAK,mCAAmC,KAAK;AAC7C,UAAM,kBAAkB,MAAM,KAAK,IAAI,EAAE,MAAM;AAC/C,QAAI,iBAAiB;AACnB,WAAK,yBAAyB,KAAK;AAAA,IACrC;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,kBACJ,QACA,SAKA;AACA,UAAM,cAAc,UAAU,CAAC,KAAK,YAAY;AAChD,QAAI;AAEJ,aAAS,aAAa,aAAa;AACjC,oBAAM,+CAA+C,SAAS;AAE9D,WAAK,mCAAmC;AACxC,YAAM,QAAQ,KAAK,IAAI,SAAS;AAChC,uBAAiB,MAAM;AAEvB,UAAI,MAAM,MAAM,MAAM,GAAG;AACvB,aAAK,yBAAyB;AAC9B,eAAO,KAAK,cAAc;AAAA,MAC5B;AAAA,IACF;AAEA,UAAM,IAAI,sBAAsB,uBAAuB;AAAA,MACrD,iBAAiB;AAAA,MACjB,YAAY,SAAS;AAAA,IACvB,CAAC;AAAA,EACH;AACF;;;AC5NA,SAAS,0BAA0B;AAQ5B,IAAM,sBAAN,MAA4E;AAAA;AAAA;AAAA;AAAA,EAIjF;AAAA;AAAA;AAAA;AAAA,EAQA,eAA4D,CAAC;AAAA;AAAA;AAAA;AAAA,EAK7D,IAAI,eAAkC;AACpC,WAAO,KAAK,QAAQ;AAAA,EACtB;AAAA,EAEA,YAAY,QAA6D;AACvE,SAAK,UAAU;AACf,kBAAM,4CAA4C,KAAK,OAAO;AAAA,EAChE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,IAAqC,OAA+C;AAClF,UAAM,aAAa,SAAS,KAAK,QAAQ;AAKzC,UAAM,cAAc,KAAK,aAAa,UAAU;AAChD,QAAI,aAAa;AACf,oBAAM,4DAA4D,UAAU;AAC5E,aAAO;AAAA,IACT;AAEA,UAAM,eAAe,KAAK,QAAQ,OAAO,UAAU;AAKnD,kBAAM,oDAAoD,UAAU;AACpE,UAAM,gBAAgB,aAAa,IAAI,mBAAmB,EAAE,OAAO,CAAC;AACpE,SAAK,aAAa,UAAU,IAAI;AAEhC,WAAO;AAAA,EACT;AACF;;;ACrDO,IAAM,cAAN,MAAoE;AAAA,EAQzE,YAAmB,QAA6D;AAA7D;AACjB,SAAK,SAAS;AAAA,EAChB;AAAA;AAAA;AAAA;AAAA,EANA,IAAI,eAAe;AACjB,WAAO,KAAK,OAAO;AAAA,EACrB;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,oBAAoB,KAAkB;AACpC,WAAO,IAAI,cAA2B,KAAK,KAAK,MAAM;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,4BAA4B;AAC1B,WAAO,IAAI,oBAAiC,KAAK,MAAM;AAAA,EACzD;AACF;","names":[]}

package/build/chunk-BHB55PBJ.js

@@ -0,0 +1,197 @@
+import {
+  __export
+} from "./chunk-CZCFTIBB.js";
+
+// src/errors.ts
+var errors_exports = {};
+__export(errors_exports, {
+  E_INVALID_CREDENTIALS: () => E_INVALID_CREDENTIALS,
+  E_UNAUTHORIZED_ACCESS: () => E_UNAUTHORIZED_ACCESS
+});
+import { Exception } from "@adonisjs/core/exceptions";
+var E_UNAUTHORIZED_ACCESS = class extends Exception {
+  static status = 401;
+  static code = "E_UNAUTHORIZED_ACCESS";
+  /**
+   * Endpoint to redirect to. Only used by "session" driver
+   * renderer
+   */
+  redirectTo;
+  /**
+   * Translation identifier. Can be customized
+   */
+  identifier = "errors.E_UNAUTHORIZED_ACCESS";
+  /**
+   * The guard name reference that raised the exception. It allows
+   * us to customize the logic of handling the exception.
+   */
+  guardDriverName;
+  /**
+   * A collection of renderers to render the exception to a
+   * response.
+   *
+   * The collection is a key-value pair, where the key is
+   * the guard driver name and value is a factory function
+   * to respond to the request.
+   */
+  renderers = {
+    /**
+     * Response when session driver is used
+     */
+    session: (message, error, ctx) => {
+      switch (ctx.request.accepts(["html", "application/vnd.api+json", "json"])) {
+        case "html":
+        case null:
+          ctx.session.flashExcept(["_csrf"]);
+          ctx.session.flashErrors({ [error.code]: message });
+          ctx.response.redirect(error.redirectTo || "/", true);
+          break;
+        case "json":
+          ctx.response.status(error.status).send({
+            errors: [
+              {
+                message
+              }
+            ]
+          });
+          break;
+        case "application/vnd.api+json":
+          ctx.response.status(error.status).send({
+            errors: [
+              {
+                code: error.code,
+                title: message
+              }
+            ]
+          });
+          break;
+      }
+    },
+    /**
+     * Response when basic auth driver is used
+     */
+    basic_auth: (message, _, ctx) => {
+      ctx.response.status(this.status).header("WWW-Authenticate", `Basic realm="Authenticate", charset="UTF-8"`).send(message);
+    },
+    /**
+     * Response when access tokens driver is used
+     */
+    access_tokens: (message, error, ctx) => {
+      switch (ctx.request.accepts(["html", "application/vnd.api+json", "json"])) {
+        case "html":
+        case null:
+          ctx.response.status(error.status).send(message);
+          break;
+        case "json":
+          ctx.response.status(error.status).send({
+            errors: [
+              {
+                message
+              }
+            ]
+          });
+          break;
+        case "application/vnd.api+json":
+          ctx.response.status(error.status).send({
+            errors: [
+              {
+                code: error.code,
+                title: message
+              }
+            ]
+          });
+          break;
+      }
+    }
+  };
+  /**
+   * Returns the message to be sent in the HTTP response.
+   * Feel free to override this method and return a custom
+   * response.
+   */
+  getResponseMessage(error, ctx) {
+    if ("i18n" in ctx) {
+      return ctx.i18n.t(error.identifier, {}, error.message);
+    }
+    return error.message;
+  }
+  constructor(message, options) {
+    super(message, {});
+    this.guardDriverName = options.guardDriverName;
+    this.redirectTo = options.redirectTo;
+  }
+  /**
+   * Converts exception to an HTTP response
+   */
+  async handle(error, ctx) {
+    const renderer = this.renderers[this.guardDriverName];
+    const message = error.getResponseMessage(error, ctx);
+    if (!renderer) {
+      return ctx.response.status(error.status).send(message);
+    }
+    return renderer(message, error, ctx);
+  }
+};
+var E_INVALID_CREDENTIALS = class extends Exception {
+  static status = 400;
+  static code = "E_INVALID_CREDENTIALS";
+  /**
+   * Translation identifier. Can be customized
+   */
+  identifier = "errors.E_INVALID_CREDENTIALS";
+  /**
+   * Returns the message to be sent in the HTTP response.
+   * Feel free to override this method and return a custom
+   * response.
+   */
+  getResponseMessage(error, ctx) {
+    if ("i18n" in ctx) {
+      return ctx.i18n.t(error.identifier, {}, error.message);
+    }
+    return error.message;
+  }
+  /**
+   * Converts exception to an HTTP response
+   */
+  async handle(error, ctx) {
+    const message = this.getResponseMessage(error, ctx);
+    switch (ctx.request.accepts(["html", "application/vnd.api+json", "json"])) {
+      case "html":
+      case null:
+        if (ctx.session) {
+          ctx.session.flashExcept(["_csrf"]);
+          ctx.session.flashErrors({ [error.code]: message });
+          ctx.response.redirect("back", true);
+        } else {
+          ctx.response.status(error.status).send(message);
+        }
+        break;
+      case "json":
+        ctx.response.status(error.status).send({
+          errors: [
+            {
+              message
+            }
+          ]
+        });
+        break;
+      case "application/vnd.api+json":
+        ctx.response.status(error.status).send({
+          errors: [
+            {
+              code: error.code,
+              title: message
+            }
+          ]
+        });
+        break;
+    }
+  }
+};
+
+export {
+  E_UNAUTHORIZED_ACCESS,
+  E_INVALID_CREDENTIALS,
+  errors_exports
+};
+//# sourceMappingURL=chunk-BHB55PBJ.js.map

package/build/chunk-BHB55PBJ.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/errors.ts"],"sourcesContent":["/*\n * @adonisjs/auth\n *\n * (c) AdonisJS\n *\n * For the full copyright and license information, please view the LICENSE\n * file that was distributed with this source code.\n */\n\nimport type { I18n } from '@adonisjs/i18n'\nimport { Exception } from '@adonisjs/core/exceptions'\nimport type { HttpContext } from '@adonisjs/core/http'\n\n/**\n * The \"E_UNAUTHORIZED_ACCESS\" exception is raised when unable to\n * authenticate an incoming HTTP request.\n *\n * The \"error.guardDriverName\" can be used to know the driver which\n * raised the error.\n */\nexport const E_UNAUTHORIZED_ACCESS = class extends Exception {\n  static status: number = 401\n  static code: string = 'E_UNAUTHORIZED_ACCESS'\n\n  /**\n   * Endpoint to redirect to. Only used by \"session\" driver\n   * renderer\n   */\n  redirectTo?: string\n\n  /**\n   * Translation identifier. Can be customized\n   */\n  identifier: string = 'errors.E_UNAUTHORIZED_ACCESS'\n\n  /**\n   * The guard name reference that raised the exception. It allows\n   * us to customize the logic of handling the exception.\n   */\n  guardDriverName: string\n\n  /**\n   * A collection of renderers to render the exception to a\n   * response.\n   *\n   * The collection is a key-value pair, where the key is\n   * the guard driver name and value is a factory function\n   * to respond to the request.\n   */\n  renderers: Record<\n    string,\n    (message: string, error: this, ctx: HttpContext) => Promise<void> | void\n  > = {\n    /**\n     * Response when session driver is used\n     */\n    session: (message, error, ctx) => {\n      switch (ctx.request.accepts(['html', 'application/vnd.api+json', 'json'])) {\n        case 'html':\n        case null:\n          ctx.session.flashExcept(['_csrf'])\n          ctx.session.flashErrors({ [error.code!]: message })\n          ctx.response.redirect(error.redirectTo || '/', true)\n          break\n        case 'json':\n          ctx.response.status(error.status).send({\n            errors: [\n              {\n                message,\n              },\n            ],\n          })\n          break\n        case 'application/vnd.api+json':\n          ctx.response.status(error.status).send({\n            errors: [\n              {\n                code: error.code,\n                title: message,\n              },\n            ],\n          })\n          break\n      }\n    },\n\n    /**\n     * Response when basic auth driver is used\n     */\n    basic_auth: (message, _, ctx) => {\n      ctx.response\n        .status(this.status)\n        .header('WWW-Authenticate', `Basic realm=\"Authenticate\", charset=\"UTF-8\"`)\n        .send(message)\n    },\n\n    /**\n     * Response when access tokens driver is used\n     */\n    access_tokens: (message, error, ctx) => {\n      switch (ctx.request.accepts(['html', 'application/vnd.api+json', 'json'])) {\n        case 'html':\n        case null:\n          ctx.response.status(error.status).send(message)\n          break\n        case 'json':\n          ctx.response.status(error.status).send({\n            errors: [\n              {\n                message,\n              },\n            ],\n          })\n          break\n        case 'application/vnd.api+json':\n          ctx.response.status(error.status).send({\n            errors: [\n              {\n                code: error.code,\n                title: message,\n              },\n            ],\n          })\n          break\n      }\n    },\n  }\n\n  /**\n   * Returns the message to be sent in the HTTP response.\n   * Feel free to override this method and return a custom\n   * response.\n   */\n  getResponseMessage(error: this, ctx: HttpContext) {\n    if ('i18n' in ctx) {\n      return (ctx.i18n as I18n).t(error.identifier, {}, error.message)\n    }\n    return error.message\n  }\n\n  constructor(\n    message: string,\n    options: {\n      redirectTo?: string\n      guardDriverName: string\n    }\n  ) {\n    super(message, {})\n    this.guardDriverName = options.guardDriverName\n    this.redirectTo = options.redirectTo\n  }\n\n  /**\n   * Converts exception to an HTTP response\n   */\n  async handle(error: this, ctx: HttpContext) {\n    const renderer = this.renderers[this.guardDriverName]\n    const message = error.getResponseMessage(error, ctx)\n\n    if (!renderer) {\n      return ctx.response.status(error.status).send(message)\n    }\n\n    return renderer(message, error, ctx)\n  }\n}\n\n/**\n * Exception is raised when user credentials are invalid\n */\nexport const E_INVALID_CREDENTIALS = class extends Exception {\n  static status: number = 400\n  static code: string = 'E_INVALID_CREDENTIALS'\n\n  /**\n   * Translation identifier. Can be customized\n   */\n  identifier: string = 'errors.E_INVALID_CREDENTIALS'\n\n  /**\n   * Returns the message to be sent in the HTTP response.\n   * Feel free to override this method and return a custom\n   * response.\n   */\n  getResponseMessage(error: this, ctx: HttpContext) {\n    if ('i18n' in ctx) {\n      return (ctx.i18n as I18n).t(error.identifier, {}, error.message)\n    }\n    return error.message\n  }\n\n  /**\n   * Converts exception to an HTTP response\n   */\n  async handle(error: this, ctx: HttpContext) {\n    const message = this.getResponseMessage(error, ctx)\n\n    switch (ctx.request.accepts(['html', 'application/vnd.api+json', 'json'])) {\n      case 'html':\n      case null:\n        if (ctx.session) {\n          ctx.session.flashExcept(['_csrf'])\n          ctx.session.flashErrors({ [error.code!]: message })\n          ctx.response.redirect('back', true)\n        } else {\n          ctx.response.status(error.status).send(message)\n        }\n        break\n      case 'json':\n        ctx.response.status(error.status).send({\n          errors: [\n            {\n              message,\n            },\n          ],\n        })\n        break\n      case 'application/vnd.api+json':\n        ctx.response.status(error.status).send({\n          errors: [\n            {\n              code: error.code,\n              title: message,\n            },\n          ],\n        })\n        break\n    }\n  }\n}\n"],"mappings":";;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAUA,SAAS,iBAAiB;AAUnB,IAAM,wBAAwB,cAAc,UAAU;AAAA,EAC3D,OAAO,SAAiB;AAAA,EACxB,OAAO,OAAe;AAAA;AAAA;AAAA;AAAA;AAAA,EAMtB;AAAA;AAAA;AAAA;AAAA,EAKA,aAAqB;AAAA;AAAA;AAAA;AAAA;AAAA,EAMrB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,YAGI;AAAA;AAAA;AAAA;AAAA,IAIF,SAAS,CAAC,SAAS,OAAO,QAAQ;AAChC,cAAQ,IAAI,QAAQ,QAAQ,CAAC,QAAQ,4BAA4B,MAAM,CAAC,GAAG;AAAA,QACzE,KAAK;AAAA,QACL,KAAK;AACH,cAAI,QAAQ,YAAY,CAAC,OAAO,CAAC;AACjC,cAAI,QAAQ,YAAY,EAAE,CAAC,MAAM,IAAK,GAAG,QAAQ,CAAC;AAClD,cAAI,SAAS,SAAS,MAAM,cAAc,KAAK,IAAI;AACnD;AAAA,QACF,KAAK;AACH,cAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK;AAAA,YACrC,QAAQ;AAAA,cACN;AAAA,gBACE;AAAA,cACF;AAAA,YACF;AAAA,UACF,CAAC;AACD;AAAA,QACF,KAAK;AACH,cAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK;AAAA,YACrC,QAAQ;AAAA,cACN;AAAA,gBACE,MAAM,MAAM;AAAA,gBACZ,OAAO;AAAA,cACT;AAAA,YACF;AAAA,UACF,CAAC;AACD;AAAA,MACJ;AAAA,IACF;AAAA;AAAA;AAAA;AAAA,IAKA,YAAY,CAAC,SAAS,GAAG,QAAQ;AAC/B,UAAI,SACD,OAAO,KAAK,MAAM,EAClB,OAAO,oBAAoB,6CAA6C,EACxE,KAAK,OAAO;AAAA,IACjB;AAAA;AAAA;AAAA;AAAA,IAKA,eAAe,CAAC,SAAS,OAAO,QAAQ;AACtC,cAAQ,IAAI,QAAQ,QAAQ,CAAC,QAAQ,4BAA4B,MAAM,CAAC,GAAG;AAAA,QACzE,KAAK;AAAA,QACL,KAAK;AACH,cAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK,OAAO;AAC9C;AAAA,QACF,KAAK;AACH,cAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK;AAAA,YACrC,QAAQ;AAAA,cACN;AAAA,gBACE;AAAA,cACF;AAAA,YACF;AAAA,UACF,CAAC;AACD;AAAA,QACF,KAAK;AACH,cAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK;AAAA,YACrC,QAAQ;AAAA,cACN;AAAA,gBACE,MAAM,MAAM;AAAA,gBACZ,OAAO;AAAA,cACT;AAAA,YACF;AAAA,UACF,CAAC;AACD;AAAA,MACJ;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,mBAAmB,OAAa,KAAkB;AAChD,QAAI,UAAU,KAAK;AACjB,aAAQ,IAAI,KAAc,EAAE,MAAM,YAAY,CAAC,GAAG,MAAM,OAAO;AAAA,IACjE;AACA,WAAO,MAAM;AAAA,EACf;AAAA,EAEA,YACE,SACA,SAIA;AACA,UAAM,SAAS,CAAC,CAAC;AACjB,SAAK,kBAAkB,QAAQ;AAC/B,SAAK,aAAa,QAAQ;AAAA,EAC5B;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,OAAa,KAAkB;AAC1C,UAAM,WAAW,KAAK,UAAU,KAAK,eAAe;AACpD,UAAM,UAAU,MAAM,mBAAmB,OAAO,GAAG;AAEnD,QAAI,CAAC,UAAU;AACb,aAAO,IAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK,OAAO;AAAA,IACvD;AAEA,WAAO,SAAS,SAAS,OAAO,GAAG;AAAA,EACrC;AACF;AAKO,IAAM,wBAAwB,cAAc,UAAU;AAAA,EAC3D,OAAO,SAAiB;AAAA,EACxB,OAAO,OAAe;AAAA;AAAA;AAAA;AAAA,EAKtB,aAAqB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOrB,mBAAmB,OAAa,KAAkB;AAChD,QAAI,UAAU,KAAK;AACjB,aAAQ,IAAI,KAAc,EAAE,MAAM,YAAY,CAAC,GAAG,MAAM,OAAO;AAAA,IACjE;AACA,WAAO,MAAM;AAAA,EACf;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,OAAa,KAAkB;AAC1C,UAAM,UAAU,KAAK,mBAAmB,OAAO,GAAG;AAElD,YAAQ,IAAI,QAAQ,QAAQ,CAAC,QAAQ,4BAA4B,MAAM,CAAC,GAAG;AAAA,MACzE,KAAK;AAAA,MACL,KAAK;AACH,YAAI,IAAI,SAAS;AACf,cAAI,QAAQ,YAAY,CAAC,OAAO,CAAC;AACjC,cAAI,QAAQ,YAAY,EAAE,CAAC,MAAM,IAAK,GAAG,QAAQ,CAAC;AAClD,cAAI,SAAS,SAAS,QAAQ,IAAI;AAAA,QACpC,OAAO;AACL,cAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK,OAAO;AAAA,QAChD;AACA;AAAA,MACF,KAAK;AACH,YAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK;AAAA,UACrC,QAAQ;AAAA,YACN;AAAA,cACE;AAAA,YACF;AAAA,UACF;AAAA,QACF,CAAC;AACD;AAAA,MACF,KAAK;AACH,YAAI,SAAS,OAAO,MAAM,MAAM,EAAE,KAAK;AAAA,UACrC,QAAQ;AAAA,YACN;AAAA,cACE,MAAM,MAAM;AAAA,cACZ,OAAO;AAAA,YACT;AAAA,UACF;AAAA,QACF,CAAC;AACD;AAAA,IACJ;AAAA,EACF;AACF;","names":[]}

package/build/chunk-CZCFTIBB.js

@@ -0,0 +1,21 @@
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __decorateClass = (decorators, target, key, kind) => {
+  var result = kind > 1 ? void 0 : kind ? __getOwnPropDesc(target, key) : target;
+  for (var i = decorators.length - 1, decorator; i >= 0; i--)
+    if (decorator = decorators[i])
+      result = (kind ? decorator(target, key, result) : decorator(result)) || result;
+  if (kind && result)
+    __defProp(target, key, result);
+  return result;
+};
+
+export {
+  __export,
+  __decorateClass
+};
+//# sourceMappingURL=chunk-CZCFTIBB.js.map

package/build/chunk-CZCFTIBB.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/build/index.d.ts

@@ -1,7 +1,8 @@
+export * as errors from './src/errors.js';
 export { configure } from './configure.js';
-export { stubsRoot } from './stubs/main.js';
-export * as symbols from './src/auth/symbols.js';
-export { AuthManager } from './src/auth/auth_manager.js';
-export { Authenticator } from './src/auth/authenticator.js';
-export { defineConfig, providers } from './src/auth/define_config.js';
-export { AuthenticationException, InvalidCredentialsException } from './src/auth/errors.js';
+export * as symbols from './src/symbols.js';
+export { AuthManager } from './src/auth_manager.js';
+export { defineConfig } from './src/define_config.js';
+export { Authenticator } from './src/authenticator.js';
+export { withAuthFinder } from './src/mixins/with_auth_finder.js';
+export { AuthenticatorClient } from './src/authenticator_client.js';