@aura-stack/auth 0.1.0-rc.7 → 0.1.0-rc.9

package/dist/chunk-ZV4BH47P.js

@@ -1,154 +1,156 @@
-import {
-  isRequest
-} from "./chunk-6SM22VVJ.js";
-import {
-  AuthError
-} from "./chunk-FJUDBLCP.js";
+import { isRequest } from "./chunk-6SM22VVJ.js"
+import { AuthError } from "./chunk-FJUDBLCP.js"
 
 // src/cookie.ts
-import { parse, serialize } from "cookie";
-import { parse as parse2 } from "cookie";
-var COOKIE_NAME = "aura-auth";
+import { parse, serialize } from "cookie"
+import { parse as parse2 } from "cookie"
+var COOKIE_NAME = "aura-auth"
 var defaultCookieOptions = {
-  httpOnly: true,
-  sameSite: "lax",
-  path: "/",
-  maxAge: 60 * 60 * 24 * 15
-};
+    httpOnly: true,
+    sameSite: "lax",
+    path: "/",
+    maxAge: 60 * 60 * 24 * 15,
+}
 var defaultCookieConfig = {
-  strategy: "standard",
-  name: COOKIE_NAME,
-  options: defaultCookieOptions
-};
+    strategy: "standard",
+    name: COOKIE_NAME,
+    options: defaultCookieOptions,
+}
 var defaultStandardCookieConfig = {
-  secure: false,
-  httpOnly: true,
-  prefix: ""
-};
+    secure: false,
+    httpOnly: true,
+    prefix: "",
+}
 var defaultSecureCookieConfig = {
-  secure: true,
-  prefix: "__Secure-"
-};
+    secure: true,
+    prefix: "__Secure-",
+}
 var defaultHostCookieConfig = {
-  secure: true,
-  prefix: "__Host-",
-  path: "/",
-  domain: void 0
-};
+    secure: true,
+    prefix: "__Host-",
+    path: "/",
+    domain: void 0,
+}
 var expiredCookieOptions = {
-  ...defaultCookieOptions,
-  expires: /* @__PURE__ */ new Date(0),
-  maxAge: 0
-};
-var defineDefaultCookieOptions = (options) => {
-  return {
-    name: options?.name ?? COOKIE_NAME,
-    prefix: options?.prefix ?? (options?.secure ? "__Secure-" : ""),
     ...defaultCookieOptions,
-    ...options
-  };
-};
+    expires: /* @__PURE__ */ new Date(0),
+    maxAge: 0,
+}
+var defineDefaultCookieOptions = (options) => {
+    return {
+        name: options?.name ?? COOKIE_NAME,
+        prefix: options?.prefix ?? (options?.secure ? "__Secure-" : ""),
+        ...defaultCookieOptions,
+        ...options,
+    }
+}
 var setCookie = (cookieName, value, options) => {
-  const { prefix, name } = defineDefaultCookieOptions(options);
-  const cookieNameWithPrefix = `${prefix}${name}.${cookieName}`;
-  return serialize(cookieNameWithPrefix, value, {
-    ...defaultCookieOptions,
-    ...options
-  });
-};
+    const { prefix, name } = defineDefaultCookieOptions(options)
+    const cookieNameWithPrefix = `${prefix}${name}.${cookieName}`
+    return serialize(cookieNameWithPrefix, value, {
+        ...defaultCookieOptions,
+        ...options,
+    })
+}
 var getCookie = (petition, cookie, options, optional = false) => {
-  const cookies = isRequest(petition) ? petition.headers.get("Cookie") : petition.headers.getSetCookie().join("; ");
-  if (!cookies) {
-    if (optional) {
-      return "";
+    const cookies = isRequest(petition) ? petition.headers.get("Cookie") : petition.headers.getSetCookie().join("; ")
+    if (!cookies) {
+        if (optional) {
+            return ""
+        }
+        throw new AuthError("invalid_request", "No cookies found. There is no active session")
     }
-    throw new AuthError("invalid_request", "No cookies found. There is no active session");
-  }
-  const { name, prefix } = defineDefaultCookieOptions(options);
-  const parsedCookies = parse(cookies);
-  const value = parsedCookies[`${prefix}${name}.${cookie}`];
-  if (value === void 0) {
-    if (optional) {
-      return "";
+    const { name, prefix } = defineDefaultCookieOptions(options)
+    const parsedCookies = parse(cookies)
+    const value = parsedCookies[`${prefix}${name}.${cookie}`]
+    if (value === void 0) {
+        if (optional) {
+            return ""
+        }
+        throw new AuthError("invalid_request", `Cookie "${cookie}" not found. There is no active session`)
     }
-    throw new AuthError("invalid_request", `Cookie "${cookie}" not found. There is no active session`);
-  }
-  return value;
-};
+    return value
+}
 var createSessionCookie = async (session, cookieOptions, jose) => {
-  try {
-    const encoded = await jose.encodeJWT(session);
-    return setCookie("sessionToken", encoded, cookieOptions);
-  } catch (error) {
-    throw new AuthError("server_error", "Failed to create session cookie", { cause: error });
-  }
-};
+    try {
+        const encoded = await jose.encodeJWT(session)
+        return setCookie("sessionToken", encoded, cookieOptions)
+    } catch (error) {
+        throw new AuthError("server_error", "Failed to create session cookie", { cause: error })
+    }
+}
 var secureCookieOptions = (request, cookieOptions, trustedProxyHeaders) => {
-  const name = cookieOptions.name ?? COOKIE_NAME;
-  const isSecure = trustedProxyHeaders ? request.url.startsWith("https://") || request.headers.get("X-Forwarded-Proto") === "https" || request.headers.get("Forwarded")?.includes("proto=https") : request.url.startsWith("https://");
-  if (!cookieOptions.options?.httpOnly) {
-    console.warn(
-      "[WARNING]: Cookie is configured without HttpOnly. This allows JavaScript access via document.cookie and increases XSS risk."
-    );
-  }
-  if (cookieOptions.options?.domain === "*") {
-    console.warn("[WARNING]: Cookie 'Domain' is set to '*', which is insecure. Avoid wildcard domains.");
-  }
-  if (!isSecure) {
-    const options = cookieOptions.options;
-    if (options?.secure) {
-      console.warn(
-        "[WARNING]: The 'Secure' attribute will be disabled for this cookie. Serve over HTTPS to enforce Secure cookies."
-      );
+    const name = cookieOptions.name ?? COOKIE_NAME
+    const isSecure = trustedProxyHeaders
+        ? request.url.startsWith("https://") ||
+          request.headers.get("X-Forwarded-Proto") === "https" ||
+          request.headers.get("Forwarded")?.includes("proto=https")
+        : request.url.startsWith("https://")
+    if (!cookieOptions.options?.httpOnly) {
+        console.warn(
+            "[WARNING]: Cookie is configured without HttpOnly. This allows JavaScript access via document.cookie and increases XSS risk."
+        )
     }
-    if (options?.sameSite == "none") {
-      console.warn("[WARNING]: SameSite=None without a secure connection can be blocked by browsers.");
+    if (cookieOptions.options?.domain === "*") {
+        console.warn("[WARNING]: Cookie 'Domain' is set to '*', which is insecure. Avoid wildcard domains.")
     }
-    if (process.env.NODE_ENV === "production") {
-      console.warn("[WARNING]: In production, ensure cookies are served over HTTPS to maintain security.");
+    if (!isSecure) {
+        const options = cookieOptions.options
+        if (options?.secure) {
+            console.warn(
+                "[WARNING]: The 'Secure' attribute will be disabled for this cookie. Serve over HTTPS to enforce Secure cookies."
+            )
+        }
+        if (options?.sameSite == "none") {
+            console.warn("[WARNING]: SameSite=None without a secure connection can be blocked by browsers.")
+        }
+        if (process.env.NODE_ENV === "production") {
+            console.warn("[WARNING]: In production, ensure cookies are served over HTTPS to maintain security.")
+        }
+        return {
+            ...defaultCookieOptions,
+            ...cookieOptions.options,
+            sameSite: options?.sameSite === "none" ? "lax" : (options?.sameSite ?? "lax"),
+            ...defaultStandardCookieConfig,
+            name,
+        }
     }
-    return {
-      ...defaultCookieOptions,
-      ...cookieOptions.options,
-      sameSite: options?.sameSite === "none" ? "lax" : options?.sameSite ?? "lax",
-      ...defaultStandardCookieConfig,
-      name
-    };
-  }
-  return cookieOptions.strategy === "host" ? {
-    ...defaultCookieOptions,
-    ...cookieOptions.options,
-    ...defaultHostCookieConfig,
-    name
-  } : { ...defaultCookieOptions, ...cookieOptions.options, ...defaultSecureCookieConfig, name };
-};
+    return cookieOptions.strategy === "host"
+        ? {
+              ...defaultCookieOptions,
+              ...cookieOptions.options,
+              ...defaultHostCookieConfig,
+              name,
+          }
+        : { ...defaultCookieOptions, ...cookieOptions.options, ...defaultSecureCookieConfig, name }
+}
 var expireCookie = (name, options) => {
-  return setCookie(name, "", { ...options, ...expiredCookieOptions });
-};
+    return setCookie(name, "", { ...options, ...expiredCookieOptions })
+}
 var oauthCookie = (options) => {
-  return {
-    ...options,
-    secure: options.secure,
-    httpOnly: options.httpOnly,
-    maxAge: 5 * 60,
-    expires: new Date(Date.now() + 5 * 60 * 1e3)
-  };
-};
+    return {
+        ...options,
+        secure: options.secure,
+        httpOnly: options.httpOnly,
+        maxAge: 5 * 60,
+        expires: new Date(Date.now() + 5 * 60 * 1e3),
+    }
+}
 
 export {
-  COOKIE_NAME,
-  defaultCookieOptions,
-  defaultCookieConfig,
-  defaultStandardCookieConfig,
-  defaultSecureCookieConfig,
-  defaultHostCookieConfig,
-  expiredCookieOptions,
-  defineDefaultCookieOptions,
-  setCookie,
-  getCookie,
-  createSessionCookie,
-  secureCookieOptions,
-  expireCookie,
-  oauthCookie,
-  parse2 as parse
-};
+    COOKIE_NAME,
+    defaultCookieOptions,
+    defaultCookieConfig,
+    defaultStandardCookieConfig,
+    defaultSecureCookieConfig,
+    defaultHostCookieConfig,
+    expiredCookieOptions,
+    defineDefaultCookieOptions,
+    setCookie,
+    getCookie,
+    createSessionCookie,
+    secureCookieOptions,
+    expireCookie,
+    oauthCookie,
+    parse2 as parse,
+}