@aura-stack/auth 0.1.0 → 0.2.0

package/dist/cookie.d.ts

@@ -1,11 +1,9 @@
-import { SerializeOptions } from 'cookie';
-export { parse } from 'cookie';
+import { SerializeOptions } from '@aura-stack/router/cookie';
 import { JWTPayload } from '@aura-stack/jose/jose';
-import { C as CookieConfig, a as CookieConfigInternal, b as CookieName, A as AuthRuntimeConfig } from './index-DpfbvTZ_.js';
-import { LiteralUnion } from './@types/utility.js';
+import { A as AuthRuntimeConfig, C as CookieConfig, a as CookieStoreConfig } from './index-EqsoyjrF.js';
 import 'zod/v4';
 import './schemas.js';
-import 'zod/v4/core';
+import './@types/utility.js';
 
 /**
  * Prefix for all cookies set by Aura Auth.
@@ -15,52 +13,51 @@ declare const COOKIE_NAME = "aura-auth";
  * Default cookie options used by Aura Auth.
  */
 declare const defaultCookieOptions: SerializeOptions;
+declare const defaultStandardCookieConfig: SerializeOptions;
 /**
- * Default cookie options for "standard" cookies.
- */
-declare const defaultCookieConfig: CookieConfig;
-declare const defaultStandardCookieConfig: CookieConfigInternal;
-/**
- * Default cookie options for "secure" cookies.
+ * Default cookie options for "__Secure-" cookies.
  * @see https://httpwg.org/http-extensions/draft-ietf-httpbis-rfc6265bis.html#name-the-__secure-prefix
  */
-declare const defaultSecureCookieConfig: CookieConfigInternal;
+declare const defaultSecureCookieConfig: SerializeOptions;
 /**
- * Default cookie options for "host" cookies.
+ * Default cookie options for "__Host-" cookies.
  * @see https://httpwg.org/http-extensions/draft-ietf-httpbis-rfc6265bis.html#name-the-__host-prefix
  */
-declare const defaultHostCookieConfig: CookieConfigInternal;
-/**
- * Cookie options for expired cookies.
- */
-declare const expiredCookieOptions: SerializeOptions;
-declare const defineDefaultCookieOptions: (options?: CookieConfigInternal) => CookieConfigInternal;
+declare const defaultHostCookieConfig: SerializeOptions;
 /**
- * Set a cookie with the given name, value and `CookieOptionsInternal`; supports secure
+ * Set a cookie with the given name, value and `SerializeOptions`; supports secure
  * cookies with the `__Secure-` and `__Host-` prefixes.
  *
  * Cookie attributes are serialized in the following order:
  * Expires, Max-Age, Domain, Path, Secure, HttpOnly, SameSite, Partitioned, Priority.
  */
-declare const setCookie: (cookieName: LiteralUnion<CookieName>, value: string, options?: CookieConfigInternal) => string;
+declare const setCookie: (cookieName: string, value: string, options?: SerializeOptions) => string;
+declare const expiredCookieAttributes: SerializeOptions;
 /**
  * Get a cookie by name from the request.
  *
  * @param request The incoming request object
  * @param cookie Cookie name to retrieve
- * @param options Cookie options to define the prefix and other attributes
- * @param optional If true, returns an empty string instead of throwing an error when the cookie is not found
- * @returns The value of the cookie or undefined if not found
+ * @returns The value of the cookie or throw an error if not found
+ */
+declare const getCookie: (request: Request, cookieName: string) => string;
+/**
+ * Get a Set-Cookie header value by cookie name from the response.
+ *
+ * @param response The response object
+ * @param cookieName Cookie name to retrieve
+ * @returns The value of the Set-Cookie header or throw an error if not found
  */
-declare const getCookie: (petition: Request | Response, cookie: LiteralUnion<CookieName>, options?: CookieConfigInternal, optional?: boolean) => string;
+declare const getSetCookie: (response: Response, cookieName: string) => string | undefined;
 /**
  * Create a session cookie containing a signed and encrypted JWT, using the
  * `@aura-stack/jose` package for the encoding.
  *
+ * @param jose - Jose Instance
  * @param session - The JWT payload to be encoded in the session cookie
  * @returns The serialized session cookie string
  */
-declare const createSessionCookie: (session: JWTPayload, cookieOptions: CookieConfigInternal, jose: AuthRuntimeConfig["jose"]) => Promise<string>;
+declare const createSessionCookie: (jose: AuthRuntimeConfig["jose"], session: JWTPayload) => Promise<string>;
 /**
  * Defines the cookie configuration based on the request security and cookie options passed
  * in the Aura Auth configuration (`createAuth` function). This function ensures the correct
@@ -69,25 +66,18 @@ declare const createSessionCookie: (session: JWTPayload, cookieOptions: CookieCo
  *
  * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Forwarded-Proto
  * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Forwarded
- * @param request The incoming request object
- * @param cookieOptions Cookie options from the Aura Auth configuration
+ * @param useSecure Whether the request is secure (HTTPS)
+ * @param attributes The cookie attributes to be applied
+ * @param strategy The cookie strategy: "host", "secure", or "standard"
  * @returns The finalized cookie options to be used for setting cookies
  */
-declare const secureCookieOptions: (request: Request, cookieOptions: CookieConfig, trustedProxyHeaders?: boolean) => CookieConfigInternal;
-/**
- * Expire a cookie by setting its value to an empty string and applying expired cookie options.
- *
- * @param name The name of the cookie to expire
- * @param options cookie options obtained from secureCookieOptions
- * @returns formatted cookie options for an expired cookie
- */
-declare const expireCookie: (name: LiteralUnion<CookieName>, options: CookieConfigInternal) => string;
+declare const defineSecureCookieOptions: (useSecure: boolean, attributes: SerializeOptions, strategy: "host" | "secure" | "standard") => SerializeOptions;
 /**
- * Set OAuth-specific cookie options, including a short maxAge of 5 minutes.
- *
- * @param options cookie options obtained from secureCookieOptions
- * @returns formatted cookie options for OAuth cookies
+ * @param useSecure Whether the request is secure (HTTPS)
+ * @param prefix Optional prefix added to all cookie names
+ * @param overrides Optional overrides for individual cookie configurations
+ * @returns The complete cookie store configuration
  */
-declare const oauthCookie: (options: CookieConfigInternal) => CookieConfigInternal;
+declare const createCookieStore: (useSecure: boolean, prefix?: string, overrides?: CookieConfig["overrides"]) => CookieStoreConfig;
 
-export { COOKIE_NAME, createSessionCookie, defaultCookieConfig, defaultCookieOptions, defaultHostCookieConfig, defaultSecureCookieConfig, defaultStandardCookieConfig, defineDefaultCookieOptions, expireCookie, expiredCookieOptions, getCookie, oauthCookie, secureCookieOptions, setCookie };
+export { COOKIE_NAME, createCookieStore, createSessionCookie, defaultCookieOptions, defaultHostCookieConfig, defaultSecureCookieConfig, defaultStandardCookieConfig, defineSecureCookieOptions, expiredCookieAttributes, getCookie, getSetCookie, setCookie };

package/dist/cookie.js

@@ -1,36 +1,29 @@
 import {
   COOKIE_NAME,
+  createCookieStore,
   createSessionCookie,
-  defaultCookieConfig,
   defaultCookieOptions,
   defaultHostCookieConfig,
   defaultSecureCookieConfig,
   defaultStandardCookieConfig,
-  defineDefaultCookieOptions,
-  expireCookie,
-  expiredCookieOptions,
+  defineSecureCookieOptions,
+  expiredCookieAttributes,
   getCookie,
-  oauthCookie,
-  parse,
-  secureCookieOptions,
+  getSetCookie,
   setCookie
-} from "./chunk-ZV4BH47P.js";
-import "./chunk-6SM22VVJ.js";
-import "./chunk-FJUDBLCP.js";
+} from "./chunk-IMICRJ5U.js";
+import "./chunk-RRLIF4PQ.js";
 export {
   COOKIE_NAME,
+  createCookieStore,
   createSessionCookie,
-  defaultCookieConfig,
   defaultCookieOptions,
   defaultHostCookieConfig,
   defaultSecureCookieConfig,
   defaultStandardCookieConfig,
-  defineDefaultCookieOptions,
-  expireCookie,
-  expiredCookieOptions,
+  defineSecureCookieOptions,
+  expiredCookieAttributes,
   getCookie,
-  oauthCookie,
-  parse,
-  secureCookieOptions,
+  getSetCookie,
   setCookie
 };

package/dist/errors.cjs

@@ -0,0 +1,85 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/errors.ts
+var errors_exports = {};
+__export(errors_exports, {
+  AuthInternalError: () => AuthInternalError,
+  AuthSecurityError: () => AuthSecurityError,
+  OAuthProtocolError: () => OAuthProtocolError,
+  isAuthInternalError: () => isAuthInternalError,
+  isAuthSecurityError: () => isAuthSecurityError,
+  isNativeError: () => isNativeError,
+  isOAuthProtocolError: () => isOAuthProtocolError
+});
+module.exports = __toCommonJS(errors_exports);
+var OAuthProtocolError = class extends Error {
+  type = "OAUTH_PROTOCOL_ERROR";
+  error;
+  errorURI;
+  constructor(error, description, errorURI, options) {
+    super(description, options);
+    this.error = error;
+    this.errorURI = errorURI;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
+var AuthInternalError = class extends Error {
+  type = "AUTH_INTERNAL_ERROR";
+  code;
+  constructor(code, message, options) {
+    super(message, options);
+    this.code = code;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
+var AuthSecurityError = class extends Error {
+  type = "AUTH_SECURITY_ERROR";
+  code;
+  constructor(code, message, options) {
+    super(message, options);
+    this.code = code;
+    this.name = new.target.name;
+    Error.captureStackTrace(this, new.target);
+  }
+};
+var isNativeError = (error) => {
+  return error instanceof Error;
+};
+var isOAuthProtocolError = (error) => {
+  return error instanceof OAuthProtocolError;
+};
+var isAuthInternalError = (error) => {
+  return error instanceof AuthInternalError;
+};
+var isAuthSecurityError = (error) => {
+  return error instanceof AuthSecurityError;
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AuthInternalError,
+  AuthSecurityError,
+  OAuthProtocolError,
+  isAuthInternalError,
+  isAuthSecurityError,
+  isNativeError,
+  isOAuthProtocolError
+});

package/dist/errors.d.ts

@@ -0,0 +1,48 @@
+import { E as ErrorType, b as AuthInternalErrorCode, c as AuthSecurityErrorCode } from './index-EqsoyjrF.js';
+import { LiteralUnion } from './@types/utility.js';
+import 'zod/v4';
+import './schemas.js';
+import '@aura-stack/router/cookie';
+import '@aura-stack/jose/jose';
+
+/**
+ * The object returned by the class to users its:
+ *   - type: "OAUTH_PROTOCOL_ERROR" to identify the error type
+ *   - error: A short error code
+ *   - description: A human-readable description of the error. The description is obtained from the message property of the Error class
+ *   - errorURI: A URI with more information about the error
+ */
+declare class OAuthProtocolError extends Error {
+    readonly type = "OAUTH_PROTOCOL_ERROR";
+    readonly error: string;
+    readonly errorURI?: string;
+    constructor(error: LiteralUnion<Uppercase<ErrorType>>, description?: string, errorURI?: string, options?: ErrorOptions);
+}
+/**
+ * The object returned when an internal error occurs in the Aura Auth library.
+ *   - type: "AUTH_INTERNAL_ERROR" to identify the error type
+ *   - message: A human-readable description of the error. The description is obtained from the message property of the Error class
+ *   - code: An optional error code that can be used to identify the specific error, for example, LIKE "ERR_AUTH_INTERNAL_ERROR"
+ */
+declare class AuthInternalError extends Error {
+    readonly type = "AUTH_INTERNAL_ERROR";
+    readonly code: string;
+    constructor(code: AuthInternalErrorCode, message?: string, options?: ErrorOptions);
+}
+/**
+ * The object returned when a security error occurs in the Aura Auth library.
+ *   - type: "AUTH_SECURITY_ERROR" to identify the error type
+ *   - message: A human-readable description of the error. The description is obtained from the message property of the Error class
+ *   - code: An optional error code that can be used to identify the specific error, for example, LIKE "ERR_AUTH_SECURITY_ERROR"
+ */
+declare class AuthSecurityError extends Error {
+    readonly type = "AUTH_SECURITY_ERROR";
+    readonly code: string;
+    constructor(code: AuthSecurityErrorCode, message?: string, options?: ErrorOptions);
+}
+declare const isNativeError: (error: unknown) => error is Error;
+declare const isOAuthProtocolError: (error: unknown) => error is OAuthProtocolError;
+declare const isAuthInternalError: (error: unknown) => error is AuthInternalError;
+declare const isAuthSecurityError: (error: unknown) => error is AuthSecurityError;
+
+export { AuthInternalError, AuthSecurityError, OAuthProtocolError, isAuthInternalError, isAuthSecurityError, isNativeError, isOAuthProtocolError };

package/dist/errors.js

@@ -0,0 +1,18 @@
+import {
+  AuthInternalError,
+  AuthSecurityError,
+  OAuthProtocolError,
+  isAuthInternalError,
+  isAuthSecurityError,
+  isNativeError,
+  isOAuthProtocolError
+} from "./chunk-RRLIF4PQ.js";
+export {
+  AuthInternalError,
+  AuthSecurityError,
+  OAuthProtocolError,
+  isAuthInternalError,
+  isAuthSecurityError,
+  isNativeError,
+  isOAuthProtocolError
+};