npm - @aura-stack/auth - Versions diffs - 0.1.0-rc.9 → 0.2.0 - Mend

@aura-stack/auth 0.1.0-rc.9 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (140) hide show

package/dist/@types/index.cjs +15 -15
package/dist/@types/index.d.ts +6 -31
package/dist/@types/index.js +1 -1
package/dist/@types/router.d.cjs +1 -1
package/dist/@types/router.d.d.ts +6 -7
package/dist/@types/utility.cjs +15 -15
package/dist/@types/utility.d.ts +4 -8
package/dist/@types/utility.js +1 -1
package/dist/actions/callback/access-token.cjs +159 -149
package/dist/actions/callback/access-token.d.ts +14 -20
package/dist/actions/callback/access-token.js +9 -4
package/dist/actions/callback/callback.cjs +371 -484
package/dist/actions/callback/callback.d.ts +9 -12
package/dist/actions/callback/callback.js +15 -12
package/dist/actions/callback/userinfo.cjs +149 -139
package/dist/actions/callback/userinfo.d.ts +8 -9
package/dist/actions/callback/userinfo.js +11 -6
package/dist/actions/csrfToken/csrfToken.cjs +112 -190
package/dist/actions/csrfToken/csrfToken.d.ts +3 -3
package/dist/actions/csrfToken/csrfToken.js +12 -8
package/dist/actions/index.cjs +623 -807
package/dist/actions/index.d.ts +12 -13
package/dist/actions/index.js +33 -18
package/dist/actions/session/session.cjs +86 -176
package/dist/actions/session/session.d.ts +3 -3
package/dist/actions/session/session.js +10 -7
package/dist/actions/signIn/authorization.cjs +248 -257
package/dist/actions/signIn/authorization.d.ts +11 -18
package/dist/actions/signIn/authorization.js +16 -6
package/dist/actions/signIn/signIn.cjs +302 -451
package/dist/actions/signIn/signIn.d.ts +9 -10
package/dist/actions/signIn/signIn.js +12 -10
package/dist/actions/signOut/signOut.cjs +299 -468
package/dist/actions/signOut/signOut.d.ts +3 -3
package/dist/actions/signOut/signOut.js +14 -11
package/dist/assert.cjs +40 -36
package/dist/assert.d.ts +12 -4
package/dist/assert.js +12 -2
package/dist/chunk-2RXNXMCZ.js +55 -0
package/dist/chunk-42XB3YCW.js +19 -17
package/dist/chunk-4V4JNXVF.js +55 -0
package/dist/chunk-6R2YZ4AC.js +22 -0
package/dist/chunk-7H3OR6UU.js +81 -0
package/dist/chunk-CXLATHS5.js +143 -0
package/dist/chunk-E3OXBRYF.js +19 -17
package/dist/chunk-EIL2FPSS.js +22 -0
package/dist/chunk-FIPU4MLT.js +18 -16
package/dist/chunk-FKRDCWBF.js +19 -17
package/dist/chunk-IKHPGFCW.js +11 -9
package/dist/chunk-IMICRJ5U.js +197 -0
package/dist/chunk-IUYZQTJV.js +30 -0
package/dist/chunk-KRNOMBXQ.js +19 -17
package/dist/chunk-N2APGLXA.js +71 -0
package/dist/chunk-NEVKX6K2.js +70 -0
package/dist/chunk-PTJUYB33.js +33 -0
package/dist/chunk-QDO2KSRJ.js +35 -0
package/dist/chunk-QEZL7EYN.js +96 -0
package/dist/chunk-RRLIF4PQ.js +55 -0
package/dist/chunk-STHEPPUZ.js +8 -6
package/dist/chunk-TLE4PXY3.js +39 -0
package/dist/chunk-UEH3LVON.js +97 -0
package/dist/chunk-WD7AUHQ5.js +79 -0
package/dist/chunk-ZLR3LI6X.js +55 -0
package/dist/cookie.cjs +222 -187
package/dist/cookie.d.ts +38 -76
package/dist/cookie.js +27 -34
package/dist/errors.cjs +85 -0
package/dist/errors.d.ts +48 -0
package/dist/errors.js +18 -0
package/dist/headers.cjs +28 -28
package/dist/headers.d.ts +2 -2
package/dist/headers.js +6 -2
package/dist/{index-DpfbvTZ_.d.ts → index-EqsoyjrF.d.ts} +351 -318
package/dist/index.cjs +1006 -1001
package/dist/index.d.ts +9 -31
package/dist/index.js +82 -51
package/dist/jose.cjs +74 -66
package/dist/jose.d.ts +11 -8
package/dist/jose.js +10 -5
package/dist/oauth/bitbucket.cjs +38 -38
package/dist/oauth/bitbucket.d.ts +6 -7
package/dist/oauth/bitbucket.js +6 -2
package/dist/oauth/discord.cjs +47 -48
package/dist/oauth/discord.d.ts +6 -7
package/dist/oauth/discord.js +6 -2
package/dist/oauth/figma.cjs +39 -39
package/dist/oauth/figma.d.ts +6 -7
package/dist/oauth/figma.js +6 -2
package/dist/oauth/github.cjs +31 -31
package/dist/oauth/github.d.ts +6 -7
package/dist/oauth/github.js +6 -2
package/dist/oauth/gitlab.cjs +39 -39
package/dist/oauth/gitlab.d.ts +6 -7
package/dist/oauth/gitlab.js +6 -2
package/dist/oauth/index.cjs +306 -180
package/dist/oauth/index.d.ts +6 -26
package/dist/oauth/index.js +43 -9
package/dist/oauth/spotify.cjs +39 -39
package/dist/oauth/spotify.d.ts +6 -7
package/dist/oauth/spotify.js +6 -2
package/dist/oauth/strava.cjs +46 -0
package/dist/oauth/strava.d.ts +6 -0
package/dist/oauth/strava.js +6 -0
package/dist/oauth/x.cjs +39 -39
package/dist/oauth/x.d.ts +6 -7
package/dist/oauth/x.js +6 -2
package/dist/schemas.cjs +97 -91
package/dist/schemas.d.ts +96 -126
package/dist/schemas.js +20 -18
package/dist/secure.cjs +106 -101
package/dist/secure.d.ts +16 -17
package/dist/secure.js +19 -4
package/dist/utils.cjs +197 -135
package/dist/utils.d.ts +20 -26
package/dist/utils.js +25 -21
package/package.json +5 -6
package/dist/chunk-256KIVJL.js +0 -110
package/dist/chunk-6SM22VVJ.js +0 -15
package/dist/chunk-CAKJT3KS.js +0 -77
package/dist/chunk-EBPE35JT.js +0 -29
package/dist/chunk-FJUDBLCP.js +0 -52
package/dist/chunk-GZU3RBTB.js +0 -51
package/dist/chunk-HGJ4TXY4.js +0 -105
package/dist/chunk-HMRKN75I.js +0 -74
package/dist/chunk-JAPMIE6S.js +0 -8
package/dist/chunk-LLR722CL.js +0 -75
package/dist/chunk-RLT4RFKV.js +0 -36
package/dist/chunk-SJPDVKUS.js +0 -93
package/dist/chunk-SMQO5WD7.js +0 -20
package/dist/chunk-UJJ7R56J.js +0 -42
package/dist/chunk-UTDLUEEG.js +0 -25
package/dist/chunk-VFTYH33W.js +0 -44
package/dist/chunk-XXJKNKGQ.js +0 -27
package/dist/chunk-ZV4BH47P.js +0 -156
package/dist/error.cjs +0 -88
package/dist/error.d.ts +0 -62
package/dist/error.js +0 -9
package/dist/response.cjs +0 -34
package/dist/response.d.ts +0 -10
package/dist/response.js +0 -2

package/dist/actions/index.d.ts CHANGED Viewed

@@ -1,13 +1,12 @@
-export { signInAction } from "./signIn/signIn.js"
-export { callbackAction } from "./callback/callback.js"
-export { sessionAction } from "./session/session.js"
-export { signOutAction } from "./signOut/signOut.js"
-export { csrfTokenAction } from "./csrfToken/csrfToken.js"
-import "@aura-stack/router"
-import "../index-DpfbvTZ_.js"
-import "zod/v4"
-import "@aura-stack/jose/jose"
-import "../schemas.js"
-import "zod/v4/core"
-import "cookie"
-import "../@types/utility.js"
+export { signInAction } from './signIn/signIn.js';
+export { callbackAction } from './callback/callback.js';
+export { sessionAction } from './session/session.js';
+export { signOutAction } from './signOut/signOut.js';
+export { csrfTokenAction } from './csrfToken/csrfToken.js';
+import '@aura-stack/router';
+import '../index-EqsoyjrF.js';
+import 'zod/v4';
+import '../schemas.js';
+import '@aura-stack/router/cookie';
+import '@aura-stack/jose/jose';
+import '../@types/utility.js';

package/dist/actions/index.js CHANGED Viewed

@@ -1,18 +1,33 @@
-import "../chunk-ITQ7352M.js"
-import { csrfTokenAction } from "../chunk-SMQO5WD7.js"
-import { sessionAction } from "../chunk-XXJKNKGQ.js"
-import { signInAction } from "../chunk-LLR722CL.js"
-import { signOutAction } from "../chunk-SJPDVKUS.js"
-import "../chunk-CAKJT3KS.js"
-import { callbackAction } from "../chunk-HGJ4TXY4.js"
-import "../chunk-RLT4RFKV.js"
-import "../chunk-UJJ7R56J.js"
-import "../chunk-ZV4BH47P.js"
-import "../chunk-6SM22VVJ.js"
-import "../chunk-STHEPPUZ.js"
-import "../chunk-GZU3RBTB.js"
-import "../chunk-256KIVJL.js"
-import "../chunk-FJUDBLCP.js"
-import "../chunk-JAPMIE6S.js"
-import "../chunk-HMRKN75I.js"
-export { callbackAction, csrfTokenAction, sessionAction, signInAction, signOutAction }
+import "../chunk-ITQ7352M.js";
+import {
+  csrfTokenAction
+} from "../chunk-QDO2KSRJ.js";
+import {
+  signInAction
+} from "../chunk-2RXNXMCZ.js";
+import {
+  sessionAction
+} from "../chunk-PTJUYB33.js";
+import {
+  signOutAction
+} from "../chunk-NEVKX6K2.js";
+import "../chunk-QEZL7EYN.js";
+import {
+  callbackAction
+} from "../chunk-UEH3LVON.js";
+import "../chunk-ZLR3LI6X.js";
+import "../chunk-4V4JNXVF.js";
+import "../chunk-IMICRJ5U.js";
+import "../chunk-STHEPPUZ.js";
+import "../chunk-WD7AUHQ5.js";
+import "../chunk-N2APGLXA.js";
+import "../chunk-CXLATHS5.js";
+import "../chunk-EIL2FPSS.js";
+import "../chunk-RRLIF4PQ.js";
+export {
+  callbackAction,
+  csrfTokenAction,
+  sessionAction,
+  signInAction,
+  signOutAction
+};

package/dist/actions/session/session.cjs CHANGED Viewed

@@ -1,197 +1,107 @@
-"use strict"
-var __defProp = Object.defineProperty
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor
-var __getOwnPropNames = Object.getOwnPropertyNames
-var __hasOwnProp = Object.prototype.hasOwnProperty
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __export = (target, all) => {
-    for (var name in all) __defProp(target, name, { get: all[name], enumerable: true })
-}
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
 var __copyProps = (to, from, except, desc) => {
-    if ((from && typeof from === "object") || typeof from === "function") {
-        for (let key of __getOwnPropNames(from))
-            if (!__hasOwnProp.call(to, key) && key !== except)
-                __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable })
-    }
-    return to
-}
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod)
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 // src/actions/session/session.ts
-var session_exports = {}
+var session_exports = {};
 __export(session_exports, {
-    sessionAction: () => sessionAction,
-})
-module.exports = __toCommonJS(session_exports)
-var import_router2 = require("@aura-stack/router")
+  sessionAction: () => sessionAction
+});
+module.exports = __toCommonJS(session_exports);
+var import_router2 = require("@aura-stack/router");
 // src/utils.ts
-var import_router = require("@aura-stack/router")
+var import_router = require("@aura-stack/router");
-// src/error.ts
-var AuthError = class extends Error {
-    constructor(type, message) {
-        super(message)
-        this.type = type
-        this.name = "AuthError"
-    }
-}
+// src/errors.ts
+var AuthInternalError = class extends Error {
+  type = "AUTH_INTERNAL_ERROR";
+  code;
+  constructor(code, message, options) {
+    super(message, options);
+    this.code = code;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
 // src/utils.ts
 var toISOString = (date) => {
-    return new Date(date).toISOString()
-}
+  return new Date(date).toISOString();
+};
 // src/headers.ts
 var cacheControl = {
-    "Cache-Control": "no-store",
-    Pragma: "no-cache",
-    Expires: "0",
-    Vary: "Cookie",
-}
+  "Cache-Control": "no-store",
+  Pragma: "no-cache",
+  Expires: "0",
+  Vary: "Cookie"
+};
 // src/cookie.ts
-var import_cookie = require("cookie")
-// src/assert.ts
-var isRequest = (value) => {
-    return typeof Request !== "undefined" && value instanceof Request
-}
-// src/cookie.ts
-var import_cookie2 = require("cookie")
-var COOKIE_NAME = "aura-auth"
+var import_cookie = require("@aura-stack/router/cookie");
 var defaultCookieOptions = {
-    httpOnly: true,
-    sameSite: "lax",
-    path: "/",
-    maxAge: 60 * 60 * 24 * 15,
-}
-var defaultStandardCookieConfig = {
-    secure: false,
-    httpOnly: true,
-    prefix: "",
-}
-var defaultSecureCookieConfig = {
-    secure: true,
-    prefix: "__Secure-",
-}
-var defaultHostCookieConfig = {
-    secure: true,
-    prefix: "__Host-",
-    path: "/",
-    domain: void 0,
-}
-var expiredCookieOptions = {
-    ...defaultCookieOptions,
-    expires: /* @__PURE__ */ new Date(0),
-    maxAge: 0,
-}
-var defineDefaultCookieOptions = (options) => {
-    return {
-        name: options?.name ?? COOKIE_NAME,
-        prefix: options?.prefix ?? (options?.secure ? "__Secure-" : ""),
-        ...defaultCookieOptions,
-        ...options,
-    }
-}
-var setCookie = (cookieName, value, options) => {
-    const { prefix, name } = defineDefaultCookieOptions(options)
-    const cookieNameWithPrefix = `${prefix}${name}.${cookieName}`
-    return (0, import_cookie.serialize)(cookieNameWithPrefix, value, {
-        ...defaultCookieOptions,
-        ...options,
-    })
-}
-var getCookie = (petition, cookie, options, optional = false) => {
-    const cookies = isRequest(petition) ? petition.headers.get("Cookie") : petition.headers.getSetCookie().join("; ")
-    if (!cookies) {
-        if (optional) {
-            return ""
-        }
-        throw new AuthError("invalid_request", "No cookies found. There is no active session")
-    }
-    const { name, prefix } = defineDefaultCookieOptions(options)
-    const parsedCookies = (0, import_cookie.parse)(cookies)
-    const value = parsedCookies[`${prefix}${name}.${cookie}`]
-    if (value === void 0) {
-        if (optional) {
-            return ""
-        }
-        throw new AuthError("invalid_request", `Cookie "${cookie}" not found. There is no active session`)
-    }
-    return value
-}
-var secureCookieOptions = (request, cookieOptions, trustedProxyHeaders) => {
-    const name = cookieOptions.name ?? COOKIE_NAME
-    const isSecure = trustedProxyHeaders
-        ? request.url.startsWith("https://") ||
-          request.headers.get("X-Forwarded-Proto") === "https" ||
-          request.headers.get("Forwarded")?.includes("proto=https")
-        : request.url.startsWith("https://")
-    if (!cookieOptions.options?.httpOnly) {
-        console.warn(
-            "[WARNING]: Cookie is configured without HttpOnly. This allows JavaScript access via document.cookie and increases XSS risk."
-        )
-    }
-    if (cookieOptions.options?.domain === "*") {
-        console.warn("[WARNING]: Cookie 'Domain' is set to '*', which is insecure. Avoid wildcard domains.")
-    }
-    if (!isSecure) {
-        const options = cookieOptions.options
-        if (options?.secure) {
-            console.warn(
-                "[WARNING]: The 'Secure' attribute will be disabled for this cookie. Serve over HTTPS to enforce Secure cookies."
-            )
-        }
-        if (options?.sameSite == "none") {
-            console.warn("[WARNING]: SameSite=None without a secure connection can be blocked by browsers.")
-        }
-        if (process.env.NODE_ENV === "production") {
-            console.warn("[WARNING]: In production, ensure cookies are served over HTTPS to maintain security.")
-        }
-        return {
-            ...defaultCookieOptions,
-            ...cookieOptions.options,
-            sameSite: options?.sameSite === "none" ? "lax" : (options?.sameSite ?? "lax"),
-            ...defaultStandardCookieConfig,
-            name,
-        }
-    }
-    return cookieOptions.strategy === "host"
-        ? {
-              ...defaultCookieOptions,
-              ...cookieOptions.options,
-              ...defaultHostCookieConfig,
-              name,
-          }
-        : { ...defaultCookieOptions, ...cookieOptions.options, ...defaultSecureCookieConfig, name }
-}
-var expireCookie = (name, options) => {
-    return setCookie(name, "", { ...options, ...expiredCookieOptions })
-}
+  httpOnly: true,
+  sameSite: "lax",
+  path: "/",
+  maxAge: 60 * 60 * 24 * 15
+};
+var oauthCookieOptions = {
+  httpOnly: true,
+  maxAge: 5 * 60,
+  sameSite: "lax",
+  expires: new Date(Date.now() + 5 * 60 * 1e3)
+};
+var expiredCookieAttributes = {
+  ...defaultCookieOptions,
+  expires: /* @__PURE__ */ new Date(0),
+  maxAge: 0
+};
+var getCookie = (request, cookieName) => {
+  const cookies = request.headers.get("Cookie");
+  if (!cookies) {
+    throw new AuthInternalError("COOKIE_NOT_FOUND", "No cookies found. There is no active session");
+  }
+  const value = (0, import_cookie.parse)(cookies)[cookieName];
+  if (!value) {
+    throw new AuthInternalError("COOKIE_NOT_FOUND", `Cookie "${cookieName}" not found. There is no active session`);
+  }
+  return value;
+};
 // src/actions/session/session.ts
 var sessionAction = (0, import_router2.createEndpoint)("GET", "/session", async (ctx) => {
-    const {
-        request,
-        context: { cookies, jose, trustedProxyHeaders },
-    } = ctx
-    const cookieOptions = secureCookieOptions(request, cookies, trustedProxyHeaders)
-    try {
-        const session = getCookie(request, "sessionToken", cookieOptions)
-        const decoded = await jose.decodeJWT(session)
-        const { exp, iat, jti, nbf, ...user } = decoded
-        const headers = new Headers(cacheControl)
-        return Response.json({ user, expires: toISOString(exp * 1e3) }, { headers })
-    } catch {
-        const headers = new Headers(cacheControl)
-        const sessionCookie = expireCookie("sessionToken", cookieOptions)
-        headers.set("Set-Cookie", sessionCookie)
-        return Response.json({ authenticated: false, message: "Unauthorized" }, { status: 401, headers })
-    }
-})
+  const {
+    request,
+    context: { jose, cookies }
+  } = ctx;
+  try {
+    const session = getCookie(request, cookies.sessionToken.name);
+    const decoded = await jose.decodeJWT(session);
+    const { exp, iat, jti, nbf, ...user } = decoded;
+    const headers = new Headers(cacheControl);
+    return Response.json({ user, expires: toISOString(exp * 1e3) }, { headers });
+  } catch (error) {
+    const headers = new import_router2.HeadersBuilder(cacheControl).setCookie(cookies.sessionToken.name, "", expiredCookieAttributes).toHeaders();
+    return Response.json({ authenticated: false, message: "Unauthorized" }, { status: 401, headers });
+  }
+});
 // Annotate the CommonJS export names for ESM import in node:
-0 &&
-    (module.exports = {
-        sessionAction,
-    })
+0 && (module.exports = {
+  sessionAction
+});

package/dist/actions/session/session.d.ts CHANGED Viewed

@@ -1,5 +1,5 @@
-import * as _aura_stack_router from "@aura-stack/router"
+import * as _aura_stack_router from '@aura-stack/router';
-declare const sessionAction: _aura_stack_router.RouteEndpoint<"GET", "/session", {}>
+declare const sessionAction: _aura_stack_router.RouteEndpoint<"GET", "/session", {}>;
-export { sessionAction }
+export { sessionAction };

package/dist/actions/session/session.js CHANGED Viewed

@@ -1,7 +1,10 @@
-import { sessionAction } from "../../chunk-XXJKNKGQ.js"
-import "../../chunk-ZV4BH47P.js"
-import "../../chunk-6SM22VVJ.js"
-import "../../chunk-STHEPPUZ.js"
-import "../../chunk-256KIVJL.js"
-import "../../chunk-FJUDBLCP.js"
-export { sessionAction }
+import {
+  sessionAction
+} from "../../chunk-PTJUYB33.js";
+import "../../chunk-IMICRJ5U.js";
+import "../../chunk-STHEPPUZ.js";
+import "../../chunk-CXLATHS5.js";
+import "../../chunk-RRLIF4PQ.js";
+export {
+  sessionAction
+};