@aura-stack/auth 0.1.0-rc.7 → 0.1.0-rc.8

package/dist/actions/index.d.ts

@@ -1,13 +1,13 @@
-export { signInAction } from './signIn/signIn.js';
-export { callbackAction } from './callback/callback.js';
-export { sessionAction } from './session/session.js';
-export { signOutAction } from './signOut/signOut.js';
-export { csrfTokenAction } from './csrfToken/csrfToken.js';
-import '@aura-stack/router';
-import '../index-DpfbvTZ_.js';
-import 'zod/v4';
-import '@aura-stack/jose/jose';
-import '../schemas.js';
-import 'zod/v4/core';
-import 'cookie';
-import '../@types/utility.js';
+export { signInAction } from "./signIn/signIn.js"
+export { callbackAction } from "./callback/callback.js"
+export { sessionAction } from "./session/session.js"
+export { signOutAction } from "./signOut/signOut.js"
+export { csrfTokenAction } from "./csrfToken/csrfToken.js"
+import "@aura-stack/router"
+import "../index-DpfbvTZ_.js"
+import "zod/v4"
+import "@aura-stack/jose/jose"
+import "../schemas.js"
+import "zod/v4/core"
+import "cookie"
+import "../@types/utility.js"

package/dist/actions/index.js

@@ -1,34 +1,18 @@
-import "../chunk-ITQ7352M.js";
-import {
-  csrfTokenAction
-} from "../chunk-SMQO5WD7.js";
-import {
-  sessionAction
-} from "../chunk-XXJKNKGQ.js";
-import {
-  signInAction
-} from "../chunk-LLR722CL.js";
-import {
-  signOutAction
-} from "../chunk-SJPDVKUS.js";
-import "../chunk-CAKJT3KS.js";
-import {
-  callbackAction
-} from "../chunk-HGJ4TXY4.js";
-import "../chunk-RLT4RFKV.js";
-import "../chunk-UJJ7R56J.js";
-import "../chunk-ZV4BH47P.js";
-import "../chunk-6SM22VVJ.js";
-import "../chunk-STHEPPUZ.js";
-import "../chunk-GZU3RBTB.js";
-import "../chunk-256KIVJL.js";
-import "../chunk-FJUDBLCP.js";
-import "../chunk-JAPMIE6S.js";
-import "../chunk-HMRKN75I.js";
-export {
-  callbackAction,
-  csrfTokenAction,
-  sessionAction,
-  signInAction,
-  signOutAction
-};
+import "../chunk-ITQ7352M.js"
+import { csrfTokenAction } from "../chunk-SMQO5WD7.js"
+import { sessionAction } from "../chunk-XXJKNKGQ.js"
+import { signInAction } from "../chunk-LLR722CL.js"
+import { signOutAction } from "../chunk-SJPDVKUS.js"
+import "../chunk-CAKJT3KS.js"
+import { callbackAction } from "../chunk-HGJ4TXY4.js"
+import "../chunk-RLT4RFKV.js"
+import "../chunk-UJJ7R56J.js"
+import "../chunk-ZV4BH47P.js"
+import "../chunk-6SM22VVJ.js"
+import "../chunk-STHEPPUZ.js"
+import "../chunk-GZU3RBTB.js"
+import "../chunk-256KIVJL.js"
+import "../chunk-FJUDBLCP.js"
+import "../chunk-JAPMIE6S.js"
+import "../chunk-HMRKN75I.js"
+export { callbackAction, csrfTokenAction, sessionAction, signInAction, signOutAction }

package/dist/actions/session/session.cjs

@@ -1,191 +1,197 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
+"use strict"
+var __defProp = Object.defineProperty
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor
+var __getOwnPropNames = Object.getOwnPropertyNames
+var __hasOwnProp = Object.prototype.hasOwnProperty
 var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
+    for (var name in all) __defProp(target, name, { get: all[name], enumerable: true })
+}
 var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+    if ((from && typeof from === "object") || typeof from === "function") {
+        for (let key of __getOwnPropNames(from))
+            if (!__hasOwnProp.call(to, key) && key !== except)
+                __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable })
+    }
+    return to
+}
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod)
 
 // src/actions/session/session.ts
-var session_exports = {};
+var session_exports = {}
 __export(session_exports, {
-  sessionAction: () => sessionAction
-});
-module.exports = __toCommonJS(session_exports);
-var import_router2 = require("@aura-stack/router");
+    sessionAction: () => sessionAction,
+})
+module.exports = __toCommonJS(session_exports)
+var import_router2 = require("@aura-stack/router")
 
 // src/utils.ts
-var import_router = require("@aura-stack/router");
+var import_router = require("@aura-stack/router")
 
 // src/error.ts
 var AuthError = class extends Error {
-  constructor(type, message) {
-    super(message);
-    this.type = type;
-    this.name = "AuthError";
-  }
-};
+    constructor(type, message) {
+        super(message)
+        this.type = type
+        this.name = "AuthError"
+    }
+}
 
 // src/utils.ts
 var toISOString = (date) => {
-  return new Date(date).toISOString();
-};
+    return new Date(date).toISOString()
+}
 
 // src/headers.ts
 var cacheControl = {
-  "Cache-Control": "no-store",
-  Pragma: "no-cache",
-  Expires: "0",
-  Vary: "Cookie"
-};
+    "Cache-Control": "no-store",
+    Pragma: "no-cache",
+    Expires: "0",
+    Vary: "Cookie",
+}
 
 // src/cookie.ts
-var import_cookie = require("cookie");
+var import_cookie = require("cookie")
 
 // src/assert.ts
 var isRequest = (value) => {
-  return typeof Request !== "undefined" && value instanceof Request;
-};
+    return typeof Request !== "undefined" && value instanceof Request
+}
 
 // src/cookie.ts
-var import_cookie2 = require("cookie");
-var COOKIE_NAME = "aura-auth";
+var import_cookie2 = require("cookie")
+var COOKIE_NAME = "aura-auth"
 var defaultCookieOptions = {
-  httpOnly: true,
-  sameSite: "lax",
-  path: "/",
-  maxAge: 60 * 60 * 24 * 15
-};
+    httpOnly: true,
+    sameSite: "lax",
+    path: "/",
+    maxAge: 60 * 60 * 24 * 15,
+}
 var defaultStandardCookieConfig = {
-  secure: false,
-  httpOnly: true,
-  prefix: ""
-};
+    secure: false,
+    httpOnly: true,
+    prefix: "",
+}
 var defaultSecureCookieConfig = {
-  secure: true,
-  prefix: "__Secure-"
-};
+    secure: true,
+    prefix: "__Secure-",
+}
 var defaultHostCookieConfig = {
-  secure: true,
-  prefix: "__Host-",
-  path: "/",
-  domain: void 0
-};
+    secure: true,
+    prefix: "__Host-",
+    path: "/",
+    domain: void 0,
+}
 var expiredCookieOptions = {
-  ...defaultCookieOptions,
-  expires: /* @__PURE__ */ new Date(0),
-  maxAge: 0
-};
-var defineDefaultCookieOptions = (options) => {
-  return {
-    name: options?.name ?? COOKIE_NAME,
-    prefix: options?.prefix ?? (options?.secure ? "__Secure-" : ""),
     ...defaultCookieOptions,
-    ...options
-  };
-};
+    expires: /* @__PURE__ */ new Date(0),
+    maxAge: 0,
+}
+var defineDefaultCookieOptions = (options) => {
+    return {
+        name: options?.name ?? COOKIE_NAME,
+        prefix: options?.prefix ?? (options?.secure ? "__Secure-" : ""),
+        ...defaultCookieOptions,
+        ...options,
+    }
+}
 var setCookie = (cookieName, value, options) => {
-  const { prefix, name } = defineDefaultCookieOptions(options);
-  const cookieNameWithPrefix = `${prefix}${name}.${cookieName}`;
-  return (0, import_cookie.serialize)(cookieNameWithPrefix, value, {
-    ...defaultCookieOptions,
-    ...options
-  });
-};
+    const { prefix, name } = defineDefaultCookieOptions(options)
+    const cookieNameWithPrefix = `${prefix}${name}.${cookieName}`
+    return (0, import_cookie.serialize)(cookieNameWithPrefix, value, {
+        ...defaultCookieOptions,
+        ...options,
+    })
+}
 var getCookie = (petition, cookie, options, optional = false) => {
-  const cookies = isRequest(petition) ? petition.headers.get("Cookie") : petition.headers.getSetCookie().join("; ");
-  if (!cookies) {
-    if (optional) {
-      return "";
+    const cookies = isRequest(petition) ? petition.headers.get("Cookie") : petition.headers.getSetCookie().join("; ")
+    if (!cookies) {
+        if (optional) {
+            return ""
+        }
+        throw new AuthError("invalid_request", "No cookies found. There is no active session")
     }
-    throw new AuthError("invalid_request", "No cookies found. There is no active session");
-  }
-  const { name, prefix } = defineDefaultCookieOptions(options);
-  const parsedCookies = (0, import_cookie.parse)(cookies);
-  const value = parsedCookies[`${prefix}${name}.${cookie}`];
-  if (value === void 0) {
-    if (optional) {
-      return "";
+    const { name, prefix } = defineDefaultCookieOptions(options)
+    const parsedCookies = (0, import_cookie.parse)(cookies)
+    const value = parsedCookies[`${prefix}${name}.${cookie}`]
+    if (value === void 0) {
+        if (optional) {
+            return ""
+        }
+        throw new AuthError("invalid_request", `Cookie "${cookie}" not found. There is no active session`)
     }
-    throw new AuthError("invalid_request", `Cookie "${cookie}" not found. There is no active session`);
-  }
-  return value;
-};
+    return value
+}
 var secureCookieOptions = (request, cookieOptions, trustedProxyHeaders) => {
-  const name = cookieOptions.name ?? COOKIE_NAME;
-  const isSecure = trustedProxyHeaders ? request.url.startsWith("https://") || request.headers.get("X-Forwarded-Proto") === "https" || request.headers.get("Forwarded")?.includes("proto=https") : request.url.startsWith("https://");
-  if (!cookieOptions.options?.httpOnly) {
-    console.warn(
-      "[WARNING]: Cookie is configured without HttpOnly. This allows JavaScript access via document.cookie and increases XSS risk."
-    );
-  }
-  if (cookieOptions.options?.domain === "*") {
-    console.warn("[WARNING]: Cookie 'Domain' is set to '*', which is insecure. Avoid wildcard domains.");
-  }
-  if (!isSecure) {
-    const options = cookieOptions.options;
-    if (options?.secure) {
-      console.warn(
-        "[WARNING]: The 'Secure' attribute will be disabled for this cookie. Serve over HTTPS to enforce Secure cookies."
-      );
+    const name = cookieOptions.name ?? COOKIE_NAME
+    const isSecure = trustedProxyHeaders
+        ? request.url.startsWith("https://") ||
+          request.headers.get("X-Forwarded-Proto") === "https" ||
+          request.headers.get("Forwarded")?.includes("proto=https")
+        : request.url.startsWith("https://")
+    if (!cookieOptions.options?.httpOnly) {
+        console.warn(
+            "[WARNING]: Cookie is configured without HttpOnly. This allows JavaScript access via document.cookie and increases XSS risk."
+        )
     }
-    if (options?.sameSite == "none") {
-      console.warn("[WARNING]: SameSite=None without a secure connection can be blocked by browsers.");
+    if (cookieOptions.options?.domain === "*") {
+        console.warn("[WARNING]: Cookie 'Domain' is set to '*', which is insecure. Avoid wildcard domains.")
     }
-    if (process.env.NODE_ENV === "production") {
-      console.warn("[WARNING]: In production, ensure cookies are served over HTTPS to maintain security.");
+    if (!isSecure) {
+        const options = cookieOptions.options
+        if (options?.secure) {
+            console.warn(
+                "[WARNING]: The 'Secure' attribute will be disabled for this cookie. Serve over HTTPS to enforce Secure cookies."
+            )
+        }
+        if (options?.sameSite == "none") {
+            console.warn("[WARNING]: SameSite=None without a secure connection can be blocked by browsers.")
+        }
+        if (process.env.NODE_ENV === "production") {
+            console.warn("[WARNING]: In production, ensure cookies are served over HTTPS to maintain security.")
+        }
+        return {
+            ...defaultCookieOptions,
+            ...cookieOptions.options,
+            sameSite: options?.sameSite === "none" ? "lax" : (options?.sameSite ?? "lax"),
+            ...defaultStandardCookieConfig,
+            name,
+        }
     }
-    return {
-      ...defaultCookieOptions,
-      ...cookieOptions.options,
-      sameSite: options?.sameSite === "none" ? "lax" : options?.sameSite ?? "lax",
-      ...defaultStandardCookieConfig,
-      name
-    };
-  }
-  return cookieOptions.strategy === "host" ? {
-    ...defaultCookieOptions,
-    ...cookieOptions.options,
-    ...defaultHostCookieConfig,
-    name
-  } : { ...defaultCookieOptions, ...cookieOptions.options, ...defaultSecureCookieConfig, name };
-};
+    return cookieOptions.strategy === "host"
+        ? {
+              ...defaultCookieOptions,
+              ...cookieOptions.options,
+              ...defaultHostCookieConfig,
+              name,
+          }
+        : { ...defaultCookieOptions, ...cookieOptions.options, ...defaultSecureCookieConfig, name }
+}
 var expireCookie = (name, options) => {
-  return setCookie(name, "", { ...options, ...expiredCookieOptions });
-};
+    return setCookie(name, "", { ...options, ...expiredCookieOptions })
+}
 
 // src/actions/session/session.ts
 var sessionAction = (0, import_router2.createEndpoint)("GET", "/session", async (ctx) => {
-  const {
-    request,
-    context: { cookies, jose, trustedProxyHeaders }
-  } = ctx;
-  const cookieOptions = secureCookieOptions(request, cookies, trustedProxyHeaders);
-  try {
-    const session = getCookie(request, "sessionToken", cookieOptions);
-    const decoded = await jose.decodeJWT(session);
-    const { exp, iat, jti, nbf, ...user } = decoded;
-    const headers = new Headers(cacheControl);
-    return Response.json({ user, expires: toISOString(exp * 1e3) }, { headers });
-  } catch {
-    const headers = new Headers(cacheControl);
-    const sessionCookie = expireCookie("sessionToken", cookieOptions);
-    headers.set("Set-Cookie", sessionCookie);
-    return Response.json({ authenticated: false, message: "Unauthorized" }, { status: 401, headers });
-  }
-});
+    const {
+        request,
+        context: { cookies, jose, trustedProxyHeaders },
+    } = ctx
+    const cookieOptions = secureCookieOptions(request, cookies, trustedProxyHeaders)
+    try {
+        const session = getCookie(request, "sessionToken", cookieOptions)
+        const decoded = await jose.decodeJWT(session)
+        const { exp, iat, jti, nbf, ...user } = decoded
+        const headers = new Headers(cacheControl)
+        return Response.json({ user, expires: toISOString(exp * 1e3) }, { headers })
+    } catch {
+        const headers = new Headers(cacheControl)
+        const sessionCookie = expireCookie("sessionToken", cookieOptions)
+        headers.set("Set-Cookie", sessionCookie)
+        return Response.json({ authenticated: false, message: "Unauthorized" }, { status: 401, headers })
+    }
+})
 // Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  sessionAction
-});
+0 &&
+    (module.exports = {
+        sessionAction,
+    })

package/dist/actions/session/session.d.ts

@@ -1,5 +1,5 @@
-import * as _aura_stack_router from '@aura-stack/router';
+import * as _aura_stack_router from "@aura-stack/router"
 
-declare const sessionAction: _aura_stack_router.RouteEndpoint<"GET", "/session", {}>;
+declare const sessionAction: _aura_stack_router.RouteEndpoint<"GET", "/session", {}>
 
-export { sessionAction };
+export { sessionAction }

package/dist/actions/session/session.js

@@ -1,11 +1,7 @@
-import {
-  sessionAction
-} from "../../chunk-XXJKNKGQ.js";
-import "../../chunk-ZV4BH47P.js";
-import "../../chunk-6SM22VVJ.js";
-import "../../chunk-STHEPPUZ.js";
-import "../../chunk-256KIVJL.js";
-import "../../chunk-FJUDBLCP.js";
-export {
-  sessionAction
-};
+import { sessionAction } from "../../chunk-XXJKNKGQ.js"
+import "../../chunk-ZV4BH47P.js"
+import "../../chunk-6SM22VVJ.js"
+import "../../chunk-STHEPPUZ.js"
+import "../../chunk-256KIVJL.js"
+import "../../chunk-FJUDBLCP.js"
+export { sessionAction }