@auditauth/core 0.2.0-beta.1

package/README.md

@@ -0,0 +1,42 @@
+# @auditauth/core
+
+`@auditauth/core` is the shared foundation used by the AuditAuth SDK packages.
+It provides token and portal helpers, request metrics helpers, shared types,
+and runtime settings used across the SDK ecosystem.
+
+## Install
+
+Install the package in your project.
+
+```bash
+npm install @auditauth/core
+```
+
+## Minimal example
+
+Import and use the core helpers directly.
+
+```ts
+import { buildAuthUrl, CORE_SETTINGS } from '@auditauth/core'
+
+const url = await buildAuthUrl({
+  apiKey: process.env.AUDITAUTH_API_KEY!,
+  redirectUrl: 'https://app.example.com/auth/callback',
+})
+
+console.log(url)
+console.log(CORE_SETTINGS.jwt_issuer)
+```
+
+## Compatibility
+
+This package requires Node.js `>=18.18.0`.
+
+## Resources
+
+- Repository: https://github.com/nimibyte/auditauth-sdk
+- Documentation: https://docs.auditauth.com
+
+## License
+
+MIT

package/dist/auth/authorizeCode.d.ts

@@ -0,0 +1,18 @@
+import { SessionUser } from "../types";
+type AuthorizePayload = {
+    code: string | null;
+    client_type: 'browser' | 'server';
+};
+type AuthorizeData = {
+    user: SessionUser;
+    access_token: string;
+    access_expires_seconds: number;
+    refresh_token?: string;
+    refresh_expires_seconds: number;
+};
+type AuthorizeReturns = {
+    response: Response;
+    data: AuthorizeData;
+};
+declare const authorizeCode: ({ code, client_type }: AuthorizePayload) => Promise<AuthorizeReturns>;
+export default authorizeCode;

package/dist/auth/authorizeCode.js

@@ -0,0 +1,20 @@
+import { CORE_SETTINGS } from "../settings";
+const authorizeCode = async ({ code, client_type }) => {
+    if (!code)
+        throw new Error('Invalid code');
+    const response = await fetch(`${CORE_SETTINGS.domains.api}/auth/authorize`, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ code, client_type }),
+        credentials: 'include',
+    });
+    if (!response.ok) {
+        throw new Error('Unauthorized');
+    }
+    const data = await response.json();
+    return {
+        response,
+        data: data,
+    };
+};
+export default authorizeCode;

package/dist/auth/buildAuthUrl.d.ts

@@ -0,0 +1,6 @@
+type BuildAuthUrlPayload = {
+    apiKey: string;
+    redirectUrl: string;
+};
+declare const buildAuthUrl: ({ apiKey, redirectUrl }: BuildAuthUrlPayload) => Promise<import("url").URL>;
+export default buildAuthUrl;

package/dist/auth/buildAuthUrl.js

@@ -0,0 +1,21 @@
+import { CORE_SETTINGS } from "../settings";
+const buildAuthUrl = async ({ apiKey, redirectUrl }) => {
+    const response = await fetch(`${CORE_SETTINGS.domains.api}/applications/login`, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json',
+            'x-api-key': apiKey,
+        },
+        body: JSON.stringify({ redirect_url: redirectUrl }),
+    });
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(error);
+    }
+    const body = await response.json();
+    const { redirectUrl: authRedirectUrl, code } = body;
+    const url = new URL(authRedirectUrl);
+    url.searchParams.set('code', code);
+    return url;
+};
+export default buildAuthUrl;

package/dist/auth/index.d.ts

@@ -0,0 +1,4 @@
+export { default as buildAuthUrl } from './buildAuthUrl';
+export { default as authorizeCode } from './authorizeCode';
+export { default as revokeSession } from './revokeSession';
+export { default as refreshTokens } from './refreshTokens';

package/dist/auth/index.js

@@ -0,0 +1,4 @@
+export { default as buildAuthUrl } from './buildAuthUrl';
+export { default as authorizeCode } from './authorizeCode';
+export { default as revokeSession } from './revokeSession';
+export { default as refreshTokens } from './refreshTokens';

package/dist/auth/refreshTokens.d.ts

@@ -0,0 +1,7 @@
+import { CredentialsResponse } from "../types";
+type RefreshTokensPayload = {
+    client_type: 'browser' | 'server';
+    refresh_token?: string;
+};
+declare const refreshTokens: ({ client_type, refresh_token }: RefreshTokensPayload) => Promise<CredentialsResponse | null>;
+export default refreshTokens;

package/dist/auth/refreshTokens.js

@@ -0,0 +1,14 @@
+import { CORE_SETTINGS } from "../settings";
+const refreshTokens = async ({ client_type, refresh_token }) => {
+    const response = await fetch(`${CORE_SETTINGS.domains.api}/auth/refresh`, {
+        method: 'POST',
+        credentials: 'include',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ client_type, refresh_token }),
+    });
+    if (!response.ok)
+        return null;
+    const data = await response.json();
+    return data;
+};
+export default refreshTokens;

package/dist/auth/revokeSession.d.ts

@@ -0,0 +1,5 @@
+type RevokeSessionPayload = {
+    access_token?: string;
+};
+declare const revokeSession: ({ access_token }: RevokeSessionPayload) => Promise<void>;
+export default revokeSession;

package/dist/auth/revokeSession.js

@@ -0,0 +1,11 @@
+import { CORE_SETTINGS } from "../settings";
+const revokeSession = async ({ access_token }) => {
+    const response = await fetch(`${CORE_SETTINGS.domains.api}/auth/revoke`, {
+        method: 'PATCH',
+        headers: { Authorization: `Bearer ${access_token}` },
+    });
+    if (!response.ok) {
+        throw new Error('Error revoking session');
+    }
+};
+export default revokeSession;

package/dist/index.d.ts

@@ -0,0 +1,5 @@
+export * from './settings';
+export type * from './types';
+export * from './auth';
+export * from './portal';
+export * from './metrics';

package/dist/index.js

@@ -0,0 +1,4 @@
+export * from './settings';
+export * from './auth';
+export * from './portal';
+export * from './metrics';

package/dist/metrics/index.d.ts

@@ -0,0 +1 @@
+export { default as sendMetrics } from './sendMetrics';

package/dist/metrics/index.js

@@ -0,0 +1 @@
+export { default as sendMetrics } from './sendMetrics';

package/dist/metrics/sendMetrics.d.ts

@@ -0,0 +1,8 @@
+import { Metric } from "../types";
+type SendMetricsPayload = {
+    payload: Metric;
+    appId: string;
+    apiKey: string;
+};
+declare const sendMetrics: ({ apiKey, appId, payload }: SendMetricsPayload) => Promise<void>;
+export default sendMetrics;

package/dist/metrics/sendMetrics.js

@@ -0,0 +1,11 @@
+import { CORE_SETTINGS } from "../settings";
+const sendMetrics = async ({ apiKey, appId, payload }) => {
+    await fetch(`${CORE_SETTINGS.domains.api}/metrics`, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json',
+        },
+        body: JSON.stringify({ ...payload, appId, apiKey }),
+    });
+};
+export default sendMetrics;

package/dist/portal/buildPortalUrl.d.ts

@@ -0,0 +1,6 @@
+type BuildPortalUrlPayload = {
+    access_token: string;
+    redirectUrl: string;
+};
+declare const buildPortalUrl: ({ access_token, redirectUrl }: BuildPortalUrlPayload) => Promise<import("url").URL>;
+export default buildPortalUrl;

package/dist/portal/buildPortalUrl.js

@@ -0,0 +1,20 @@
+import { CORE_SETTINGS } from "../settings";
+const buildPortalUrl = async ({ access_token, redirectUrl }) => {
+    const response = await fetch(`${CORE_SETTINGS.domains.api}/portal/exchange`, {
+        method: 'GET',
+        headers: {
+            Authorization: `Bearer ${access_token}`,
+        },
+    });
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(error);
+    }
+    const body = await response.json();
+    const { code, redirectUrl: portalUrl } = body;
+    const url = new URL(portalUrl);
+    url.searchParams.set('code', code);
+    url.searchParams.set('redirectUrl', redirectUrl);
+    return url;
+};
+export default buildPortalUrl;

package/dist/portal/index.d.ts

@@ -0,0 +1 @@
+export { default as buildPortalUrl } from './buildPortalUrl';

package/dist/portal/index.js

@@ -0,0 +1 @@
+export { default as buildPortalUrl } from './buildPortalUrl';

package/dist/settings.d.ts

@@ -0,0 +1,19 @@
+declare const CORE_SETTINGS: {
+    readonly jwt_public_key: "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2EYs4Q9OyjNuAEPqb4j\nIzc52JdfVcNvEbG43Xp8B2kI9QxwRyX7rtFSwKowj3W1BlCLaTIMK3TafWOf9QwH\nfemuL9Ni37PFcGptzpyuoCYYA650EuD82PENcO49lsObvty2cuXxQszbPPvAecm4\nJ/XG70td/W1UwbjAJcdmp8ktZGYR0JXM37hYA9Xq/aKwu7d0FTL6WdKTvt3L5VxL\nF6WNyLs65ZSbu+j8UEkwmoJ9h9Y0mLQmFtmkoh/HWOFyFDnBNiJX0vRb++RhJw6w\ncrSbqpbTu7z4vIep5lgSOut39P273SVTQZ3cGQIS+605Ur5wjkkSzzaJV1QLBBR9\nAQIDAQAB\n-----END PUBLIC KEY-----\n";
+    readonly jwt_issuer: "https://api.auditauth.com";
+    readonly domains: {
+        readonly api: "https://api.auditauth.com/v1";
+        readonly client: "https://auditauth.com";
+    } | {
+        readonly api: "http://localhost:4000/v1";
+        readonly client: "http://localhost:3000";
+    };
+    readonly storage_keys: {
+        readonly access: "auditauth_access";
+        readonly session: "auditauth_session";
+        readonly refresh: "auditauth_refresh";
+        readonly session_id: "auditauth_sid";
+        readonly sync: "__auditauth_sync__";
+    };
+};
+export { CORE_SETTINGS };

package/dist/settings.js

@@ -0,0 +1,39 @@
+const PROD_DOMAINS = {
+    api: 'https://api.auditauth.com/v1',
+    client: 'https://auditauth.com',
+};
+const LOCAL_DOMAINS = {
+    api: 'http://localhost:4000/v1',
+    client: 'http://localhost:3000',
+};
+const resolveSdkEnv = () => {
+    const importMetaEnv = typeof import.meta !== 'undefined'
+        ? (import.meta.env
+            ?.AUDITAUTH_SDK_ENV ??
+            import.meta.env
+                ?.VITE_AUDITAUTH_SDK_ENV)
+        : undefined;
+    const globalEnv = typeof globalThis !== 'undefined'
+        ? globalThis.__AUDITAUTH_SDK_ENV__
+        : undefined;
+    const processEnv = typeof process !== 'undefined'
+        ? process.env?.AUDITAUTH_SDK_ENV ??
+            process.env?.NEXT_PUBLIC_AUDITAUTH_SDK_ENV ??
+            process.env?.NODE_ENV
+        : undefined;
+    return (importMetaEnv ?? globalEnv ?? processEnv ?? 'production').toLowerCase();
+};
+const isDevelopmentEnv = ['development', 'dev', 'local'].includes(resolveSdkEnv());
+const CORE_SETTINGS = {
+    jwt_public_key: "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2EYs4Q9OyjNuAEPqb4j\nIzc52JdfVcNvEbG43Xp8B2kI9QxwRyX7rtFSwKowj3W1BlCLaTIMK3TafWOf9QwH\nfemuL9Ni37PFcGptzpyuoCYYA650EuD82PENcO49lsObvty2cuXxQszbPPvAecm4\nJ/XG70td/W1UwbjAJcdmp8ktZGYR0JXM37hYA9Xq/aKwu7d0FTL6WdKTvt3L5VxL\nF6WNyLs65ZSbu+j8UEkwmoJ9h9Y0mLQmFtmkoh/HWOFyFDnBNiJX0vRb++RhJw6w\ncrSbqpbTu7z4vIep5lgSOut39P273SVTQZ3cGQIS+605Ur5wjkkSzzaJV1QLBBR9\nAQIDAQAB\n-----END PUBLIC KEY-----\n",
+    jwt_issuer: "https://api.auditauth.com",
+    domains: isDevelopmentEnv ? LOCAL_DOMAINS : PROD_DOMAINS,
+    storage_keys: {
+        access: 'auditauth_access',
+        session: 'auditauth_session',
+        refresh: 'auditauth_refresh',
+        session_id: 'auditauth_sid',
+        sync: '__auditauth_sync__',
+    }
+};
+export { CORE_SETTINGS };

package/dist/types.d.ts

@@ -0,0 +1,43 @@
+type AuditAuthConfig = {
+    apiKey: string;
+    redirectUrl: string;
+    baseUrl: string;
+    appId: string;
+};
+type SessionUser = {
+    _id: string;
+    email: string;
+    email_verify: boolean;
+    name: string;
+    avatar: {
+        url: string | null;
+        format: string;
+    };
+    providers: string[];
+};
+type RequestMethod = 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
+type Metric = {
+    event_type: 'request';
+    runtime: 'browser' | 'server';
+    target: {
+        type: 'api';
+        method: RequestMethod;
+        path: string;
+        status: number;
+        duration_ms: number;
+    };
+} | {
+    event_type: 'navigation';
+    runtime: 'browser' | 'server';
+    target: {
+        type: 'page';
+        path: string;
+    };
+};
+type CredentialsResponse = {
+    access_token: string;
+    access_expires_seconds: number;
+    refresh_token: string;
+    refresh_expires_seconds: number;
+};
+export type { CredentialsResponse, AuditAuthConfig, SessionUser, Metric, RequestMethod };

package/dist/types.js

@@ -0,0 +1 @@
+export {};

package/package.json

@@ -0,0 +1,44 @@
+{
+  "name": "@auditauth/core",
+  "version": "0.2.0-beta.1",
+  "type": "module",
+  "license": "MIT",
+  "author": "Nimibyte",
+  "engines": {
+    "node": ">=18.18.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/nimibyte/auditauth-sdk.git"
+  },
+  "homepage": "https://docs.auditauth.com",
+  "bugs": {
+    "url": "https://github.com/nimibyte/auditauth-sdk/issues"
+  },
+  "keywords": [
+    "authentication",
+    "auth",
+    "oauth",
+    "identity",
+    "jwt",
+    "security",
+    "auditauth"
+  ],
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "sideEffects": false,
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    },
+    "./package.json": "./package.json"
+  },
+  "scripts": {
+    "build": "tsc -p tsconfig.build.json",
+    "dev": "tsc -p tsconfig.build.json --watch"
+  }
+}